Aller au contenu

tinemy

Membres
 Afficher le profil  Afficher son activité

  • Compteur de contenus

    16

  • Inscription

  • Dernière visite

Autres informations

  • Mes langues
    français

tinemy's Achievements

Junior Member

Junior Member (3/12)

0

Réputation sur la communauté

  1. tinemy

    probleme avec explorer suite virus

    tinemy a répondu à un(e) sujet de tinemy dans Software

    Remise en Etat usine du Packard Bell réussie. C'est long mais facile et tout faonctionne très bien... Bon Noel à tous.
  2. tinemy

    probleme avec explorer suite virus

    tinemy a répondu à un(e) sujet de tinemy dans Software

    Bonjour J'ai un Packard Bell Ixtreme... Si quelqu'un a déjà une expérience... ? Merci
  3. tinemy

    probleme avec explorer suite virus

    tinemy a répondu à un(e) sujet de tinemy dans Software

    Bonjour, lance-yien m'a demandé de prendre conseil plutôt sur ce forum et m'a effectivement fait ré-initialiser les Points de Restauration parce qu'ils peuvent contenir des traces d'infection. Donc pas d'issu de ce côté je pense... ? Ou alors dois-je restaurer le PC comme à sa sortie d'usine ? est-ce que ça marche bien ? quels sont les inconvénients mis à part tout sauvegarder (mais c'est presque OK) et réinstaller les logiciels ? Je suis néophythe. Merci de m'aider pas à pas...
  4. tinemy
    Bonjour, Mon PC était infecté. Il a été nettoyé grace à ce forum mais depuis les problemes sont encore plus nombreux. Impossible d'épingler les icones du bureaudans la barre de tâche, Outloock plante très souvent surtout lorsqu'il y a un lien avec internet ou pour certaines touches..., impossible souvent d'ouvrir des fichiers Word...La récupération les rend impossible à lire etc. C'est la galère pour travailler. Merci de bien vouloir voouloir m'aider à remettre de l'ordre.
  5. tinemy
    Tu as été formidable de m'accompagner tout au long de ces jours ! Le mal ne triomphe jamais !! Je te souhaite sincèrement de très heureuses fêtes de fin d'année et une heureuse continuation dans tes activités. Tinemy
  6. tinemy
    Je suis désolée pour tout ce bazar ! Ce matin du envoyer de nombreusex mails mais outlock ferme souvent - conflit avec internet expplorer... ?? Voici les rapports. j'espère que j'ai fait ce qu'il fallait. A bientôt et merci lance_yien SystemLook 04.09.10 by jpshortstuff Log created at 12:05 on 21/12/2010 by misery Administrator - Elevation successful ========== filefind ========== Searching for "*explorer.exe*" C:\Program Files (x86)\GIMP-2.0\lib\gimp\2.0\plug-ins\cml-explorer.exe --a---- 94512 bytes [13:06 05/08/2010] [08:53 08/07/2010] 3B97518379FD14B102EFDFECDD867051 C:\Program Files (x86)\GIMP-2.0\lib\gimp\2.0\plug-ins\fractal-explorer.exe --a---- 111816 bytes [13:06 05/08/2010] [08:55 08/07/2010] F98D3431F0AD6E5E362558F5024023DF C:\Qoobox\Quarantine\C\Windows\explorer.exe.vir --a---- 2870272 bytes [08:29 03/03/2010] [06:34 31/10/2009] 9AAAEC8DAC27AA17B053E6352AD233AE C:\Windows\explorer.exe --a---- 2870272 bytes [08:29 03/03/2010] [06:34 31/10/2009] 9AAAEC8DAC27AA17B053E6352AD233AE C:\Windows\ERDNT\cache86\explorer.exe --a---- 2870272 bytes [16:44 19/12/2010] [06:34 31/10/2009] 9AAAEC8DAC27AA17B053E6352AD233AE C:\Windows\fr-FR\explorer.exe.mui --a---- 26624 bytes [18:08 05/01/2010] [18:08 05/01/2010] BE31703AC133F7C80896D7898687BEF0 C:\Windows\System32\explorer.exe ------- 2870272 bytes [14:02 14/12/2010] [06:34 31/10/2009] 9AAAEC8DAC27AA17B053E6352AD233AE C:\Windows\SysWOW64\explorer.exe --a---- 2614272 bytes [08:29 03/03/2010] [05:45 31/10/2009] 2626FC9755BE22F805D3CFA0CE3EE727 C:\Windows\SysWOW64\fr-FR\explorer.exe.mui --a---- 26624 bytes [18:08 05/01/2010] [18:08 05/01/2010] FD173730E78468962F9AF98C274B723B C:\Windows\winsxs\amd64_microsoft-windows-explorer.resources_31bf3856ad364e35_6.1.7600.16385_fr-fr_046a4ba7804bd9a2\explorer.exe.mui --a---- 26624 bytes [18:08 05/01/2010] [18:08 05/01/2010] BE31703AC133F7C80896D7898687BEF0 C:\Windows\winsxs\amd64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7600.16385_none_ada998b9936d7566\explorer.exe --a---- 2868224 bytes [23:56 13/07/2009] [01:39 14/07/2009] C235A51CB740E45FFA0EBFB9BAFCDA64 C:\Windows\winsxs\amd64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7600.16404_none_adff19b5932d79ae\explorer.exe --a---- 2868224 bytes [08:29 03/03/2010] [06:17 03/08/2009] F170B4A061C9E026437B193B4D571799 C:\Windows\winsxs\amd64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7600.16450_none_adc508f19359a007\explorer.exe --a---- 2870272 bytes [08:29 03/03/2010] [06:34 31/10/2009] 9AAAEC8DAC27AA17B053E6352AD233AE C:\Windows\winsxs\amd64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7600.20500_none_ae84b558ac4eb41c\explorer.exe --a---- 2868224 bytes [08:29 03/03/2010] [06:19 03/08/2009] 700073016DAC1C3D2E7E2CE4223334B6 C:\Windows\winsxs\amd64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7600.20563_none_ae46d6aeac7ca7c7\explorer.exe --a---- 2870272 bytes [08:29 03/03/2010] [06:38 31/10/2009] B8EC4BD49CE8F6FC457721BFC210B67F C:\Windows\winsxs\wow64_microsoft-windows-explorer.resources_31bf3856ad364e35_6.1.7600.16385_fr-fr_0ebef5f9b4ac9b9d\explorer.exe.mui --a---- 26624 bytes [18:08 05/01/2010] [18:08 05/01/2010] FD173730E78468962F9AF98C274B723B C:\Windows\winsxs\wow64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7600.16385_none_b7fe430bc7ce3761\explorer.exe --a---- 2613248 bytes [23:41 13/07/2009] [01:14 14/07/2009] 15BC38A7492BEFE831966ADB477CF76F C:\Windows\winsxs\wow64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7600.16404_none_b853c407c78e3ba9\explorer.exe --a---- 2613248 bytes [08:29 03/03/2010] [05:35 03/08/2009] B95EEB0F4E5EFBF1038A35B3351CF047 C:\Windows\winsxs\wow64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7600.16450_none_b819b343c7ba6202\explorer.exe --a---- 2614272 bytes [08:29 03/03/2010] [05:45 31/10/2009] 2626FC9755BE22F805D3CFA0CE3EE727 C:\Windows\winsxs\wow64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7600.20500_none_b8d95faae0af7617\explorer.exe --a---- 2613248 bytes [08:29 03/03/2010] [05:49 03/08/2009] 9FF6C4C91A3711C0A3B18F87B08B518D C:\Windows\winsxs\wow64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7600.20563_none_b89b8100e0dd69c2\explorer.exe --a---- 2614272 bytes [08:29 03/03/2010] [06:00 31/10/2009] C76153C7ECA00FA852BB0C193378F917 -= EOF =- explorer.exe - Jotti's malware scan
  7. tinemy
    J'ai éxécuté sfc /scannow et je suis étonnée qu'une fenetre noire fasse une apparition un quart de seconde ? Est-ce normal ? Quant à Combofix voici le rapport : Merci Lance_yien et bonne soirée ComboFix 10-12-19.03 - misery 20/12/2010 17:41:36.4.8 - x64 Microsoft Windows 7 Édition Familiale Premium 6.1.7600.0.1252.33.1036.18.8183.6827 [GMT 1:00] Lancé depuis: c:\users\misery\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\E71DNXHJ\ComboFix.exe AV: AntiVir Desktop *Disabled/Updated* {090F9C29-64CE-6C6F-379C-5901B49A85B7} SP: AntiVir Desktop *Disabled/Updated* {B26E7DCD-42F4-63E1-0D2C-6273CF1DCF0A} SP: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} . ((((((((((((((((((((((((((((( Fichiers créés du 2010-11-20 au 2010-12-20 )))))))))))))))))))))))))))))))))))) . 2010-12-20 16:45 . 2010-12-20 16:45 -------- d-----w- c:\users\misery\AppData\Local\temp 2010-12-20 16:45 . 2010-12-20 16:45 -------- d-----w- c:\users\Default\AppData\Local\temp 2010-12-20 10:54 . 2010-12-20 10:54 -------- d-----w- c:\programdata\Avira 2010-12-20 10:54 . 2010-12-20 10:54 -------- d-----w- c:\program files (x86)\Avira 2010-12-20 10:54 . 2010-08-17 12:39 81584 ----a-w- c:\windows\system32\drivers\avgntflt.sys 2010-12-20 10:54 . 2010-08-17 12:39 116568 ----a-w- c:\windows\system32\drivers\avipbb.sys 2010-12-19 19:39 . 2010-12-19 19:39 -------- d-----w- c:\users\misery\AppData\Roaming\diginet 2010-12-19 19:39 . 2010-12-19 19:39 -------- d-----w- c:\program files (x86)\Diginet 2010-12-17 16:56 . 2010-11-16 11:01 8199504 ----a-w- c:\programdata\Microsoft\Windows Defender\Definition Updates\{6A98BF23-5F00-471E-A870-4128BBEB54F0}\mpengine.dll 2010-12-16 14:10 . 2010-12-16 14:17 -------- d-----w- c:\program files (x86)\Unlocker 2010-12-14 17:39 . 2010-12-14 17:39 -------- d-----w- c:\windows\PCHEALTH 2010-12-14 17:37 . 2010-12-14 17:37 -------- d-----w- c:\program files (x86)\Microsoft Analysis Services 2010-12-14 17:37 . 2010-12-14 17:37 -------- d-----r- C:\MSOCache 2010-12-14 16:21 . 2010-12-14 16:21 -------- d-----w- c:\users\misery\AppData\Local\ESET 2010-12-14 14:02 . 2010-12-14 14:02 -------- d-----w- C:\_OTL 2010-12-14 14:02 . 2009-10-31 06:34 2870272 ------w- c:\windows\system32\explorer.exe 2010-12-10 16:19 . 2010-12-10 16:19 -------- d-----w- c:\users\misery\AppData\Local\Real 2010-12-10 16:19 . 2010-12-10 16:19 11776 ----a-w- c:\program files (x86)\Mozilla Firefox\plugins\nprjplug.dll 2010-12-10 16:19 . 2010-12-10 16:19 -------- d-----w- c:\program files (x86)\Common Files\xing shared 2010-12-10 16:19 . 2010-12-10 16:19 151776 ----a-w- c:\program files (x86)\Mozilla Firefox\plugins\nppl3260.dll 2010-12-10 16:18 . 2010-12-10 16:18 100352 ----a-w- c:\program files (x86)\Mozilla Firefox\plugins\nprpjplug.dll 2010-12-09 18:07 . 2010-12-09 18:07 -------- d-----w- C:\found.003 2010-12-08 12:51 . 2010-12-08 12:51 -------- d-----w- c:\program files\CCleaner 2010-12-03 10:04 . 2010-11-29 16:42 38224 ----a-w- c:\windows\SysWow64\drivers\mbamswissarmy.sys 2010-12-03 10:04 . 2010-12-16 15:10 -------- d-----w- c:\program files (x86)\Malwarebytes' Anti-Malware 2010-11-30 17:46 . 2010-12-19 16:35 -------- d-----w- c:\programdata\Spybot - Search & Destroy 2010-11-30 17:46 . 2010-11-30 17:53 -------- d-----w- c:\program files (x86)\Spybot - Search & Destroy 2010-11-30 12:33 . 2010-11-30 12:33 -------- d-----w- c:\users\misery\AppData\Roaming\Malwarebytes 2010-11-30 12:33 . 2010-11-30 12:33 -------- d-----w- c:\programdata\Malwarebytes 2010-11-30 12:33 . 2010-11-29 16:42 24152 ----a-w- c:\windows\system32\drivers\mbam.sys 2010-11-30 10:01 . 2010-11-30 10:01 -------- d-----w- C:\Packard Bell 2010-11-29 13:01 . 2010-11-29 13:01 -------- dc----w- c:\windows\system32\DRVSTORE 2010-11-29 13:01 . 2010-09-22 23:36 48488 ----a-w- c:\windows\system32\drivers\fssfltr.sys 2010-11-29 13:00 . 2010-11-29 13:00 -------- d-----w- c:\windows\system32\Live Remote 2010-11-29 12:59 . 2010-11-29 12:59 -------- d-----w- c:\program files (x86)\Microsoft 2010-11-29 12:59 . 2010-11-29 12:59 -------- d-----w- c:\program files (x86)\MSN Toolbar 2010-11-29 12:59 . 2010-08-11 05:19 3860992 ----a-w- c:\windows\system32\UIRibbon.dll 2010-11-29 12:59 . 2010-08-11 05:13 1164800 ----a-w- c:\windows\system32\UIRibbonRes.dll 2010-11-29 12:59 . 2010-08-11 04:44 2983424 ----a-w- c:\windows\SysWow64\UIRibbon.dll 2010-11-29 12:59 . 2010-08-11 04:35 1164800 ----a-w- c:\windows\SysWow64\UIRibbonRes.dll 2010-11-29 12:47 . 2010-11-29 12:47 2724120 ----a-w- c:\programdata\Microsoft\eHome\Packages\MCEClientUX\UpdateableMarkup-2\markup.dll 2010-11-29 12:47 . 2010-11-29 12:47 42776 ----a-w- c:\programdata\Microsoft\eHome\Packages\MCEClientUX\dSM\StartResources.dll 2010-11-29 09:42 . 2010-11-29 09:42 -------- d--h--w- c:\windows\system32\CanonIJ Uninstaller Information 2010-11-29 09:42 . 2007-04-17 08:17 1177088 ----a-w- c:\windows\system32\CNQ2412L.DLL 2010-11-29 09:42 . 2007-03-23 15:33 1439744 ----a-w- c:\windows\system32\CNQ2412C.DLL 2010-11-29 09:42 . 2007-03-23 15:32 92672 ----a-w- c:\windows\system32\CNQ2412I.DLL 2010-11-29 09:42 . 2007-03-15 13:13 229888 ----a-w- c:\windows\system32\CNQ2412O.DLL 2010-11-29 09:42 . 2010-11-29 09:42 -------- d--h--w- c:\program files\CanonBJ 2010-11-27 16:10 . 2010-11-27 16:10 -------- d-----w- c:\users\misery\AppData\Roaming\NewSoft 2010-11-27 16:10 . 2010-11-27 16:10 -------- d-----w- c:\users\misery\AppData\Local\NewSoft 2010-11-27 15:32 . 1999-05-06 13:22 27632 ----a-w- c:\windows\SysWow64\CTL3DV2.DLL 2010-11-27 15:32 . 1997-10-14 04:19 11776 ----a-w- c:\windows\SysWow64\pmsbfn32.dll 2010-11-27 15:31 . 2010-11-27 15:32 -------- d-----w- c:\program files (x86)\Common Files\NewSoft 2010-11-27 15:30 . 2010-11-27 15:30 -------- d-----w- c:\users\misery\AppData\Roaming\ScanSoft 2010-11-27 15:29 . 1995-08-01 03:44 212480 ----a-w- c:\windows\PCDLIB32.DLL 2010-11-27 15:28 . 2010-11-27 15:28 -------- d-----w- c:\program files\Common Files\CANON 2010-11-26 19:08 . 2010-11-26 19:28 -------- d-----w- c:\program files (x86)\Windows Live Safety Center 2010-11-24 17:26 . 2010-11-30 15:00 157712 ----a-w- c:\windows\SysWow64\drivers\tmcomm.sys 2010-11-24 17:22 . 2010-11-30 15:15 -------- d-----w- c:\windows\BDOSCAN8 2010-11-24 16:17 . 2010-11-24 20:04 -------- d-----w- c:\windows\system32\%LocalAppData% 2010-11-24 12:56 . 2010-11-24 13:11 -------- d-----w- c:\users\misery\AppData\Roaming\Download Manager 2010-11-24 08:45 . 2010-10-19 08:47 7680 ----a-w- c:\program files\Internet Explorer\iecompat.dll 2010-11-24 08:45 . 2010-10-19 08:10 7680 ----a-w- c:\program files (x86)\Internet Explorer\iecompat.dll . (((((((((((((((((((((((((((((((((( Compte-rendu de Find3M )))))))))))))))))))))))))))))))))))))))))))))))) . 2010-11-12 17:53 . 2010-06-10 13:15 472808 ----a-w- c:\windows\SysWow64\deployJava1.dll 2010-10-19 09:41 . 2010-03-18 07:49 270720 ------w- c:\windows\system32\MpSigStub.exe 2010-09-22 23:47 . 2010-09-22 23:47 49016 ----a-w- c:\windows\SysWow64\sirenacm.dll 2010-09-22 23:32 . 2010-09-22 23:32 301936 ----a-w- c:\windows\WLXPGSS.SCR . ((((((((((((((((((((((((((((( SnapShot@2010-12-19_16.44.27 ))))))))))))))))))))))))))))))))))))))))) . - 2009-07-14 04:54 . 2010-12-03 07:40 16384 c:\windows\SysWOW64\config\systemprofile\AppData\Roaming\Microsoft\Windows\Cookies\index.dat + 2009-07-14 04:54 . 2010-12-20 10:54 16384 c:\windows\SysWOW64\config\systemprofile\AppData\Roaming\Microsoft\Windows\Cookies\index.dat - 2009-07-14 04:54 . 2010-12-03 07:40 32768 c:\windows\SysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat + 2009-07-14 04:54 . 2010-12-20 10:54 32768 c:\windows\SysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat + 2009-07-14 04:54 . 2010-12-20 10:54 16384 c:\windows\SysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\History\History.IE5\index.dat - 2009-07-14 04:54 . 2010-12-03 07:40 16384 c:\windows\SysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\History\History.IE5\index.dat + 2009-11-28 03:02 . 2010-12-20 16:26 61376 c:\windows\system32\wdi\ShutdownPerformanceDiagnostics_SystemData.bin + 2009-07-14 05:10 . 2010-12-20 16:26 58384 c:\windows\system32\wdi\BootPerformanceDiagnostics_SystemData.bin + 2010-03-02 20:06 . 2010-12-20 16:26 15454 c:\windows\system32\wdi\{86432a0b-3c7d-4ddf-a89c-172faa90485d}\S-1-5-21-1301541909-812291784-3654414866-1001_UserData.bin + 2010-01-15 11:47 . 2010-12-20 13:50 16384 c:\windows\system32\config\systemprofile\AppData\Roaming\Microsoft\Windows\Cookies\index.dat - 2010-01-15 11:47 . 2010-12-19 10:57 16384 c:\windows\system32\config\systemprofile\AppData\Roaming\Microsoft\Windows\Cookies\index.dat - 2010-01-15 11:47 . 2010-12-19 10:57 32768 c:\windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat + 2010-01-15 11:47 . 2010-12-20 13:50 32768 c:\windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat + 2009-07-14 04:54 . 2010-12-20 13:50 16384 c:\windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\History\History.IE5\index.dat - 2009-07-14 04:54 . 2010-12-19 10:57 16384 c:\windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\History\History.IE5\index.dat + 2010-01-15 12:08 . 2010-12-20 16:03 16384 c:\windows\ServiceProfiles\LocalService\AppData\Roaming\Microsoft\Windows\Cookies\index.dat - 2010-01-15 12:08 . 2010-12-19 16:27 16384 c:\windows\ServiceProfiles\LocalService\AppData\Roaming\Microsoft\Windows\Cookies\index.dat - 2010-01-15 12:08 . 2010-12-19 16:27 16384 c:\windows\ServiceProfiles\LocalService\AppData\Local\Microsoft\Windows\History\History.IE5\index.dat + 2010-01-15 12:08 . 2010-12-20 16:03 16384 c:\windows\ServiceProfiles\LocalService\AppData\Local\Microsoft\Windows\History\History.IE5\index.dat - 2010-12-19 13:25 . 2010-12-19 13:25 2048 c:\windows\ServiceProfiles\LocalService\AppData\Local\lastalive1.dat + 2010-12-20 16:24 . 2010-12-20 16:24 2048 c:\windows\ServiceProfiles\LocalService\AppData\Local\lastalive1.dat + 2010-12-20 16:24 . 2010-12-20 16:24 2048 c:\windows\ServiceProfiles\LocalService\AppData\Local\lastalive0.dat - 2010-12-19 13:25 . 2010-12-19 13:25 2048 c:\windows\ServiceProfiles\LocalService\AppData\Local\lastalive0.dat + 2010-03-03 12:44 . 2010-12-20 13:12 431812 c:\windows\system32\wdi\SuspendPerformanceDiagnostics_SystemData_FastS4.bin - 2009-07-14 05:12 . 2010-12-19 10:57 262144 c:\windows\system32\config\systemprofile\AppData\Roaming\Microsoft\Windows\IETldCache\index.dat + 2009-07-14 05:12 . 2010-12-20 13:50 262144 c:\windows\system32\config\systemprofile\AppData\Roaming\Microsoft\Windows\IETldCache\index.dat - 2009-07-14 05:01 . 2010-11-29 16:21 482920 c:\windows\ServiceProfiles\LocalService\AppData\Local\FontCache-System.dat + 2009-07-14 05:01 . 2010-12-20 16:23 482920 c:\windows\ServiceProfiles\LocalService\AppData\Local\FontCache-System.dat + 2010-11-15 21:04 . 2010-12-20 16:23 3118408 c:\windows\ServiceProfiles\LocalService\AppData\Local\FontCache-S-1-5-21-1301541909-812291784-3654414866-1001-8192.dat - 2009-07-14 02:34 . 2010-12-19 13:35 10223616 c:\windows\system32\SMI\Store\Machine\schema.dat + 2009-07-14 02:34 . 2010-12-20 16:37 10223616 c:\windows\system32\SMI\Store\Machine\schema.dat . ((((((((((((((((((((((((((((((((( Points de chargement Reg )))))))))))))))))))))))))))))))))))))))))))))))) . . *Note* les éléments vides & les éléments initiaux légitimes ne sont pas listés REGEDIT4 [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "swg"="c:\program files (x86)\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe" [2009-11-28 39408] [HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run] "Packard Bell Photo Frame"="c:\program files (x86)\Packard Bell Photo Frame\ButtonMonitor.exe" [2009-07-20 124416] "AdobeCS4ServiceManager"="c:\program files (x86)\Common Files\Adobe\CS4ServiceManager\CS4ServiceManager.exe" [2008-08-14 611712] "Acrobat Assistant 8.0"="c:\program files (x86)\Adobe\Acrobat 8.0\Acrobat\Acrotray.exe" [2007-05-10 624248] "SunJavaUpdateSched"="c:\program files (x86)\Common Files\Java\Java Update\jusched.exe" [2010-05-14 248552] "Adobe Reader Speed Launcher"="c:\program files (x86)\Adobe\Reader 9.0\Reader\Reader_sl.exe" [2010-09-23 35760] "Adobe ARM"="c:\program files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe" [2010-09-20 932288] "TkBellExe"="c:\program files (x86)\real\realplayer\Update\realsched.exe" [2010-12-10 274608] "avgnt"="c:\program files (x86)\Avira\AntiVir Desktop\avgnt.exe" [2010-08-17 281768] [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system] "ConsentPromptBehaviorAdmin"= 5 (0x5) "ConsentPromptBehaviorUser"= 3 (0x3) "EnableUIADesktopToggle"= 0 (0x0) [HKEY_LOCAL_MACHINE\system\currentcontrolset\control\lsa] Security Packages REG_MULTI_SZ kerberos msv1_0 schannel wdigest tspkg pku2u livessp R2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;c:\windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-03-18 130384] R2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2010-03-18 138576] R2 ekrn;ESET Service;c:\program files\ESET\ESET Smart Security\x86\ekrn.exe [x] R2 gupdate;Service Google Update (gupdate);c:\program files (x86)\Google\Update\GoogleUpdate.exe [2010-03-02 135664] R3 Adobe Version Cue CS4;Adobe Version Cue CS4;c:\program files (x86)\Common Files\Adobe\Adobe Version Cue CS4\Server\bin\VersionCueCS4.exe [2008-08-15 284016] R3 WatAdminSvc;Service Windows Activation Technologies;c:\windows\system32\Wat\WatAdminSvc.exe [2010-05-20 1255736] R4 wlcrasvc;Windows Live Mesh remote connections service;c:\program files\Windows Live\Mesh\wlcrasvc.exe [2010-09-22 57184] S0 PxHlpa64;PxHlpa64;c:\windows\System32\Drivers\PxHlpa64.sys [2008-06-16 55024] S1 ehdrv;ehdrv;c:\windows\system32\DRIVERS\ehdrv.sys [2010-07-29 141264] S2 AdobeActiveFileMonitor7.0;Adobe Active File Monitor V7;c:\program files (x86)\Adobe\Photoshop Elements 7.0\PhotoshopElementsFileAgent.exe [2008-12-08 169312] S2 AntiVirSchedulerService;Avira AntiVir Planificateur;c:\program files (x86)\Avira\AntiVir Desktop\sched.exe [2010-08-17 135336] S2 eamonm;eamonm;c:\windows\system32\DRIVERS\eamonm.sys [2010-07-29 168544] S2 epfwwfp;epfwwfp;c:\windows\system32\DRIVERS\epfwwfp.sys [2010-07-29 50624] S2 Greg_Service;GRegService;c:\program files (x86)\Packard Bell\Registration\GregHSRW.exe [2009-08-28 1150496] S2 SBSDWSCService;SBSD Security Center Service;c:\program files (x86)\Spybot - Search & Destroy\SDWinSec.exe [2009-01-26 1153368] S2 Updater Service;Updater Service;c:\program files\Packard Bell\Packard Bell Updater\UpdaterService.exe [2009-07-04 240160] S3 e1kexpress;Intel® PRO/1000 PCI Express Network Connection Driver K;c:\windows\system32\DRIVERS\e1k62x64.sys [2009-09-23 283824] S3 MBfilt;MBfilt;c:\windows\system32\drivers\MBfilt64.sys [2009-08-25 25600] S3 NVHDA;Service for NVIDIA High Definition Audio Driver;c:\windows\system32\drivers\nvhda64v.sys [2009-08-21 84512] S3 osppsvc;Office Software Protection Platform;c:\program files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE [2010-01-09 4925184] . Contenu du dossier 'Tâches planifiées' 2010-12-20 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job - c:\program files (x86)\Google\Update\GoogleUpdate.exe [2010-03-02 20:17] 2010-12-20 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job - c:\program files (x86)\Google\Update\GoogleUpdate.exe [2010-03-02 20:17] . --------- x86-64 ----------- [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "IAAnotif"="c:\program files (x86)\Intel\Intel Matrix Storage Manager\iaanotif.exe" [2009-10-13 186904] "RtHDVCpl"="c:\program files\Realtek\Audio\HDA\RAVCpl64.exe" [2009-10-28 8312352] "WrtMon.exe"="c:\windows\system32\spool\drivers\x64\3\WrtMon.exe" [2006-09-20 20480] "egui"="c:\program files\ESET\ESET Smart Security\egui.exe" [bU] . ------- Examen supplémentaire ------- . uLocal Page = c:\windows\system32\blank.htm uStart Page = hxxp://www.liberation.fr/ mStart Page = hxxp://homepage.packardbell.com/rdr.aspx?b=ACPW&l=040c&m=ixtreme_m5740&r=173603102016p04f5v195y44130745 mLocal Page = c:\windows\SysWOW64\blank.htm IE: &Envoyer à OneNote - c:\progra~2\MICROS~1\Office14\ONBttnIE.dll/105 IE: E&xporter vers Microsoft Excel - c:\progra~2\MICROS~1\Office14\EXCEL.EXE/3000 IE: Google Sidewiki... - c:\program files (x86)\Google\Google Toolbar\Component\GoogleToolbarDynamic_mui_en_E11712C84EA7E12B.dll/cmsidewiki.html Filter: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - c:\program files (x86)\Common Files\microsoft shared\OFFICE14\MSOXMLMF.DLL DPF: {C345E174-3E87-4F41-A01C-B066A90A49B4} - hxxp://trial.trymicrosoftoffice.com/trialoaa/buymsoffice_assets/framework/microsoft/wrc32.ocx FF - ProfilePath - c:\users\misery\AppData\Roaming\Mozilla\Firefox\Profiles\0z0bg6io.default\ FF - Ext: Default: {972ce4c6-7e08-4474-a285-3208198ce6fd} - c:\program files (x86)\Mozilla Firefox\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd} FF - Ext: RealPlayer Browser Record Plugin: {ABDE892B-13A8-4d1b-88E6-365A6E755758} - c:\programdata\Real\RealPlayer\BrowserRecordPlugin\Firefox\Ext . - - - - ORPHELINS SUPPRIMES - - - - Toolbar-Locked - (no file) . --------------------- CLES DE REGISTRE BLOQUEES --------------------- [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}] @Denied: (A 2) (Everyone) @="FlashBroker" "LocalizedString"="@c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil10l_ActiveX.exe,-101" [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}\Elevation] "Enabled"=dword:00000001 [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}\LocalServer32] @="c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil10l_ActiveX.exe" [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}\TypeLib] @="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}" [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}] @Denied: (A 2) (Everyone) @="Shockwave Flash Object" [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\InprocServer32] @="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash10l.ocx" "ThreadingModel"="Apartment" [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\MiscStatus] @="0" [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ProgID] @="ShockwaveFlash.ShockwaveFlash.10" [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32] @="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash10l.ocx, 1" [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\TypeLib] @="{D27CDB6B-AE6D-11cf-96B8-444553540000}" [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\Version] @="1.0" [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID] @="ShockwaveFlash.ShockwaveFlash" [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}] @Denied: (A 2) (Everyone) @="Macromedia Flash Factory Object" [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\InprocServer32] @="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash10l.ocx" "ThreadingModel"="Apartment" [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ProgID] @="FlashFactory.FlashFactory.1" [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32] @="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash10l.ocx, 1" [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\TypeLib] @="{D27CDB6B-AE6D-11cf-96B8-444553540000}" [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\Version] @="1.0" [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID] @="FlashFactory.FlashFactory" [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\Interface\{E3F2C3CB-5EB8-4A04-B22C-7E3B4B6AF30F}] @Denied: (A 2) (Everyone) @="IFlashBroker4" [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\Interface\{E3F2C3CB-5EB8-4A04-B22C-7E3B4B6AF30F}\ProxyStubClsid32] @="{00020424-0000-0000-C000-000000000046}" [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\Interface\{E3F2C3CB-5EB8-4A04-B22C-7E3B4B6AF30F}\TypeLib] @="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}" "Version"="1.0" [HKEY_LOCAL_MACHINE\software\Wow6432Node\Microsoft\Office\Common\Smart Tag\Actions\{B7EFF951-E52F-45CC-9EF7-57124F2177CC}] @Denied: (A) (Everyone) "Solution"="{15727DE6-F92D-4E46-ACB4-0E2C58B31A18}" [HKEY_LOCAL_MACHINE\software\Wow6432Node\Microsoft\Schema Library\ActionsPane3] @Denied: (A) (Everyone) [HKEY_LOCAL_MACHINE\software\Wow6432Node\Microsoft\Schema Library\ActionsPane3\0] "Key"="ActionsPane3" "Location"="c:\\Program Files (x86)\\Common Files\\Microsoft Shared\\VSTO\\ActionsPane3.xsd" [HKEY_LOCAL_MACHINE\system\ControlSet001\Control\PCW\Security] @Denied: (Full) (Everyone) . Heure de fin: 2010-12-20 17:46:24 ComboFix-quarantined-files.txt 2010-12-20 16:46 ComboFix2.txt 2010-12-20 10:17 ComboFix3.txt 2010-12-20 10:08 ComboFix4.txt 2010-12-19 16:45 Avant-CF: 442 470 793 216 octets libres Après-CF: 442 447 351 808 octets libres - - End Of File - - F32E4FA0EA2B43C22C35BEBC7FDAE9F2
  8. tinemy
    Ce matin j'ai eu du mal à désinstaller ESET qui était récalcitrant! J'ai téléchargé AVIRA. Mais les forums conseillent une version paayante en général pour les gratuits. Tu en penses quoi ? Ca me semble plus sûr.. Le dossier explorer.exe est bien dans C:\windows J'ai eu du mal à le trouver mais en faisant le copier/coller on m'indiquait qu'il existait déjà donc j'ai annulé l'opération.
  9. tinemy
    Bonjour, Je te joins le rapport ci-dessous. Microsoft office est bizarre. Je n'arrive pas par exemple à ouvrir des fichiers Word et dans Outlock je n'arrive pas à acceder à Internet... Toujours impossible d'épingler des raccourcis dans la barre de tache. Dois-je réinstaller Office ? Je vais aussi installer un des antivirus que tu me conseilles. ESET ce n'est pas bien ? Je te remercie pour ta patience et te dis à bientôt... J'essaie de travailler au milieu de tout ce bazar. Merci vraiment pour ton suivi. Tinemy ComboFix 10-12-18.02 - misery 20/12/2010 11:14:23.3.8 - x64 Microsoft Windows 7 Édition Familiale Premium 6.1.7600.0.1252.33.1036.18.8183.6808 [GMT 1:00] Lancé depuis: c:\users\misery\Desktop\ComboFix.exe Commutateurs utilisés :: c:\users\misery\Desktop\CFScript.txt SP: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} FILE :: "C:\_OTL" "C:\found.003" "c:\program files (x86)\ESET" "c:\program files\ESET" "c:\programdata\Trend Micro" "c:\users\tinemy\AppData\Local\ESET" . (((((((((((((((((((((((((((((((((((( Autres suppressions )))))))))))))))))))))))))))))))))))))))))))))))) . . --------------- FCopy --------------- c:\windows\System32\explorer.exe --> c:\windows\explorer.exe . ((((((((((((((((((((((((((((( Fichiers créés du 2010-11-20 au 2010-12-20 )))))))))))))))))))))))))))))))))))) . 2010-12-20 10:16 . 2010-12-20 10:16 -------- d-----w- c:\users\misery\AppData\Local\temp 2010-12-20 10:16 . 2010-12-20 10:16 -------- d-----w- c:\users\Default\AppData\Local\temp 2010-12-19 19:39 . 2010-12-19 19:39 -------- d-----w- c:\users\misery\AppData\Roaming\diginet 2010-12-19 19:39 . 2010-12-19 19:39 -------- d-----w- c:\program files (x86)\Diginet 2010-12-17 16:56 . 2010-11-16 11:01 8199504 ----a-w- c:\programdata\Microsoft\Windows Defender\Definition Updates\{6A98BF23-5F00-471E-A870-4128BBEB54F0}\mpengine.dll 2010-12-16 14:10 . 2010-12-16 14:17 -------- d-----w- c:\program files (x86)\Unlocker 2010-12-14 17:39 . 2010-12-14 17:39 -------- d-----w- c:\windows\PCHEALTH 2010-12-14 17:37 . 2010-12-14 17:37 -------- d-----w- c:\program files (x86)\Microsoft Analysis Services 2010-12-14 17:37 . 2010-12-14 17:37 -------- d-----r- C:\MSOCache 2010-12-14 16:21 . 2010-12-14 16:21 -------- d-----w- c:\users\misery\AppData\Local\ESET 2010-12-14 14:02 . 2010-12-14 14:02 -------- d-----w- C:\_OTL 2010-12-14 14:02 . 2009-10-31 06:34 2870272 ------w- c:\windows\system32\explorer.exe 2010-12-10 16:19 . 2010-12-10 16:19 -------- d-----w- c:\users\misery\AppData\Local\Real 2010-12-10 16:19 . 2010-12-10 16:19 11776 ----a-w- c:\program files (x86)\Mozilla Firefox\plugins\nprjplug.dll 2010-12-10 16:19 . 2010-12-10 16:19 -------- d-----w- c:\program files (x86)\Common Files\xing shared 2010-12-10 16:19 . 2010-12-10 16:19 151776 ----a-w- c:\program files (x86)\Mozilla Firefox\plugins\nppl3260.dll 2010-12-10 16:18 . 2010-12-10 16:18 100352 ----a-w- c:\program files (x86)\Mozilla Firefox\plugins\nprpjplug.dll 2010-12-09 18:07 . 2010-12-09 18:07 -------- d-----w- C:\found.003 2010-12-08 12:51 . 2010-12-08 12:51 -------- d-----w- c:\program files\CCleaner 2010-12-03 10:04 . 2010-11-29 16:42 38224 ----a-w- c:\windows\SysWow64\drivers\mbamswissarmy.sys 2010-12-03 10:04 . 2010-12-16 15:10 -------- d-----w- c:\program files (x86)\Malwarebytes' Anti-Malware 2010-11-30 17:46 . 2010-12-19 16:35 -------- d-----w- c:\programdata\Spybot - Search & Destroy 2010-11-30 17:46 . 2010-11-30 17:53 -------- d-----w- c:\program files (x86)\Spybot - Search & Destroy 2010-11-30 12:33 . 2010-11-30 12:33 -------- d-----w- c:\users\misery\AppData\Roaming\Malwarebytes 2010-11-30 12:33 . 2010-11-30 12:33 -------- d-----w- c:\programdata\Malwarebytes 2010-11-30 12:33 . 2010-11-29 16:42 24152 ----a-w- c:\windows\system32\drivers\mbam.sys 2010-11-30 10:01 . 2010-11-30 10:01 -------- d-----w- C:\Packard Bell 2010-11-29 13:01 . 2010-11-29 13:01 -------- dc----w- c:\windows\system32\DRVSTORE 2010-11-29 13:01 . 2010-09-22 23:36 48488 ----a-w- c:\windows\system32\drivers\fssfltr.sys 2010-11-29 13:00 . 2010-11-29 13:00 -------- d-----w- c:\windows\system32\Live Remote 2010-11-29 12:59 . 2010-11-29 12:59 -------- d-----w- c:\program files (x86)\Microsoft 2010-11-29 12:59 . 2010-11-29 12:59 -------- d-----w- c:\program files (x86)\MSN Toolbar 2010-11-29 12:59 . 2010-08-11 05:19 3860992 ----a-w- c:\windows\system32\UIRibbon.dll 2010-11-29 12:59 . 2010-08-11 05:13 1164800 ----a-w- c:\windows\system32\UIRibbonRes.dll 2010-11-29 12:59 . 2010-08-11 04:44 2983424 ----a-w- c:\windows\SysWow64\UIRibbon.dll 2010-11-29 12:59 . 2010-08-11 04:35 1164800 ----a-w- c:\windows\SysWow64\UIRibbonRes.dll 2010-11-29 12:47 . 2010-11-29 12:47 2724120 ----a-w- c:\programdata\Microsoft\eHome\Packages\MCEClientUX\UpdateableMarkup-2\markup.dll 2010-11-29 12:47 . 2010-11-29 12:47 42776 ----a-w- c:\programdata\Microsoft\eHome\Packages\MCEClientUX\dSM\StartResources.dll 2010-11-29 09:42 . 2010-11-29 09:42 -------- d--h--w- c:\windows\system32\CanonIJ Uninstaller Information 2010-11-29 09:42 . 2007-04-17 08:17 1177088 ----a-w- c:\windows\system32\CNQ2412L.DLL 2010-11-29 09:42 . 2007-03-23 15:33 1439744 ----a-w- c:\windows\system32\CNQ2412C.DLL 2010-11-29 09:42 . 2007-03-23 15:32 92672 ----a-w- c:\windows\system32\CNQ2412I.DLL 2010-11-29 09:42 . 2007-03-15 13:13 229888 ----a-w- c:\windows\system32\CNQ2412O.DLL 2010-11-29 09:42 . 2010-11-29 09:42 -------- d--h--w- c:\program files\CanonBJ 2010-11-27 16:10 . 2010-11-27 16:10 -------- d-----w- c:\users\misery\AppData\Roaming\NewSoft 2010-11-27 16:10 . 2010-11-27 16:10 -------- d-----w- c:\users\misery\AppData\Local\NewSoft 2010-11-27 15:32 . 1999-05-06 13:22 27632 ----a-w- c:\windows\SysWow64\CTL3DV2.DLL 2010-11-27 15:32 . 1997-10-14 04:19 11776 ----a-w- c:\windows\SysWow64\pmsbfn32.dll 2010-11-27 15:31 . 2010-11-27 15:32 -------- d-----w- c:\program files (x86)\Common Files\NewSoft 2010-11-27 15:30 . 2010-11-27 15:30 -------- d-----w- c:\users\misery\AppData\Roaming\ScanSoft 2010-11-27 15:29 . 1995-08-01 03:44 212480 ----a-w- c:\windows\PCDLIB32.DLL 2010-11-27 15:28 . 2010-11-27 15:28 -------- d-----w- c:\program files\Common Files\CANON 2010-11-26 19:08 . 2010-11-26 19:28 -------- d-----w- c:\program files (x86)\Windows Live Safety Center 2010-11-24 17:26 . 2010-11-30 15:00 157712 ----a-w- c:\windows\SysWow64\drivers\tmcomm.sys 2010-11-24 17:22 . 2010-11-30 15:15 -------- d-----w- c:\windows\BDOSCAN8 2010-11-24 16:17 . 2010-11-24 20:04 -------- d-----w- c:\windows\system32\%LocalAppData% 2010-11-24 12:56 . 2010-11-24 13:11 -------- d-----w- c:\users\misery\AppData\Roaming\Download Manager 2010-11-24 08:45 . 2010-10-19 08:47 7680 ----a-w- c:\program files\Internet Explorer\iecompat.dll 2010-11-24 08:45 . 2010-10-19 08:10 7680 ----a-w- c:\program files (x86)\Internet Explorer\iecompat.dll . (((((((((((((((((((((((((((((((((( Compte-rendu de Find3M )))))))))))))))))))))))))))))))))))))))))))))))) . 2010-11-12 17:53 . 2010-06-10 13:15 472808 ----a-w- c:\windows\SysWow64\deployJava1.dll 2010-10-19 09:41 . 2010-03-18 07:49 270720 ------w- c:\windows\system32\MpSigStub.exe 2010-09-22 23:47 . 2010-09-22 23:47 49016 ----a-w- c:\windows\SysWow64\sirenacm.dll 2010-09-22 23:32 . 2010-09-22 23:32 301936 ----a-w- c:\windows\WLXPGSS.SCR 2010-09-21 13:49 . 2010-09-21 13:49 252800 ----a-w- c:\windows\system32\LIVESSP.DLL 2010-09-21 13:03 . 2010-09-21 13:03 208768 ----a-w- c:\windows\SysWow64\LIVESSP.DLL . ((((((((((((((((((((((((((((( SnapShot@2010-12-19_16.44.27 ))))))))))))))))))))))))))))))))))))))))) . + 2009-11-28 03:02 . 2010-12-20 09:58 60330 c:\windows\system32\wdi\ShutdownPerformanceDiagnostics_SystemData.bin - 2009-07-14 05:10 . 2010-12-19 13:26 58334 c:\windows\system32\wdi\BootPerformanceDiagnostics_SystemData.bin + 2009-07-14 05:10 . 2010-12-20 09:58 58334 c:\windows\system32\wdi\BootPerformanceDiagnostics_SystemData.bin + 2010-03-02 20:06 . 2010-12-20 09:58 15226 c:\windows\system32\wdi\{86432a0b-3c7d-4ddf-a89c-172faa90485d}\S-1-5-21-1301541909-812291784-3654414866-1001_UserData.bin - 2010-01-15 11:47 . 2010-12-19 10:57 16384 c:\windows\system32\config\systemprofile\AppData\Roaming\Microsoft\Windows\Cookies\index.dat + 2010-01-15 11:47 . 2010-12-20 09:18 16384 c:\windows\system32\config\systemprofile\AppData\Roaming\Microsoft\Windows\Cookies\index.dat + 2010-01-15 11:47 . 2010-12-20 09:18 32768 c:\windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat - 2010-01-15 11:47 . 2010-12-19 10:57 32768 c:\windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat + 2009-07-14 04:54 . 2010-12-20 09:18 16384 c:\windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\History\History.IE5\index.dat - 2009-07-14 04:54 . 2010-12-19 10:57 16384 c:\windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\History\History.IE5\index.dat + 2010-01-15 12:08 . 2010-12-20 10:14 16384 c:\windows\ServiceProfiles\LocalService\AppData\Roaming\Microsoft\Windows\Cookies\index.dat - 2010-01-15 12:08 . 2010-12-19 16:27 16384 c:\windows\ServiceProfiles\LocalService\AppData\Roaming\Microsoft\Windows\Cookies\index.dat - 2010-01-15 12:08 . 2010-12-19 16:27 16384 c:\windows\ServiceProfiles\LocalService\AppData\Local\Microsoft\Windows\History\History.IE5\index.dat + 2010-01-15 12:08 . 2010-12-20 10:14 16384 c:\windows\ServiceProfiles\LocalService\AppData\Local\Microsoft\Windows\History\History.IE5\index.dat - 2010-12-19 13:25 . 2010-12-19 13:25 2048 c:\windows\ServiceProfiles\LocalService\AppData\Local\lastalive1.dat + 2010-12-20 09:56 . 2010-12-20 09:56 2048 c:\windows\ServiceProfiles\LocalService\AppData\Local\lastalive1.dat + 2010-12-20 09:56 . 2010-12-20 09:56 2048 c:\windows\ServiceProfiles\LocalService\AppData\Local\lastalive0.dat - 2010-12-19 13:25 . 2010-12-19 13:25 2048 c:\windows\ServiceProfiles\LocalService\AppData\Local\lastalive0.dat - 2009-07-14 05:12 . 2010-12-19 10:57 262144 c:\windows\system32\config\systemprofile\AppData\Roaming\Microsoft\Windows\IETldCache\index.dat + 2009-07-14 05:12 . 2010-12-20 09:18 262144 c:\windows\system32\config\systemprofile\AppData\Roaming\Microsoft\Windows\IETldCache\index.dat - 2009-07-14 02:34 . 2010-12-19 13:35 10223616 c:\windows\system32\SMI\Store\Machine\schema.dat + 2009-07-14 02:34 . 2010-12-20 09:31 10223616 c:\windows\system32\SMI\Store\Machine\schema.dat . ((((((((((((((((((((((((((((((((( Points de chargement Reg )))))))))))))))))))))))))))))))))))))))))))))))) . . *Note* les éléments vides & les éléments initiaux légitimes ne sont pas listés REGEDIT4 [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "swg"="c:\program files (x86)\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe" [2009-11-28 39408] [HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run] "Packard Bell Photo Frame"="c:\program files (x86)\Packard Bell Photo Frame\ButtonMonitor.exe" [2009-07-20 124416] "AdobeCS4ServiceManager"="c:\program files (x86)\Common Files\Adobe\CS4ServiceManager\CS4ServiceManager.exe" [2008-08-14 611712] "Acrobat Assistant 8.0"="c:\program files (x86)\Adobe\Acrobat 8.0\Acrobat\Acrotray.exe" [2007-05-10 624248] "SunJavaUpdateSched"="c:\program files (x86)\Common Files\Java\Java Update\jusched.exe" [2010-05-14 248552] "Adobe Reader Speed Launcher"="c:\program files (x86)\Adobe\Reader 9.0\Reader\Reader_sl.exe" [2010-09-23 35760] "Adobe ARM"="c:\program files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe" [2010-09-20 932288] "TkBellExe"="c:\program files (x86)\real\realplayer\Update\realsched.exe" [2010-12-10 274608] [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system] "ConsentPromptBehaviorAdmin"= 5 (0x5) "ConsentPromptBehaviorUser"= 3 (0x3) "EnableUIADesktopToggle"= 0 (0x0) [HKEY_LOCAL_MACHINE\system\currentcontrolset\control\lsa] Security Packages REG_MULTI_SZ kerberos msv1_0 schannel wdigest tspkg pku2u livessp R2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;c:\windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-03-18 130384] R2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2010-03-18 138576] R2 ekrn;ESET Service;c:\program files\ESET\ESET Smart Security\x86\ekrn.exe [x] R2 gupdate;Service Google Update (gupdate);c:\program files (x86)\Google\Update\GoogleUpdate.exe [2010-03-02 135664] R3 Adobe Version Cue CS4;Adobe Version Cue CS4;c:\program files (x86)\Common Files\Adobe\Adobe Version Cue CS4\Server\bin\VersionCueCS4.exe [2008-08-15 284016] R3 WatAdminSvc;Service Windows Activation Technologies;c:\windows\system32\Wat\WatAdminSvc.exe [2010-05-20 1255736] R4 wlcrasvc;Windows Live Mesh remote connections service;c:\program files\Windows Live\Mesh\wlcrasvc.exe [2010-09-22 57184] S0 PxHlpa64;PxHlpa64;c:\windows\System32\Drivers\PxHlpa64.sys [2008-06-16 55024] S1 ehdrv;ehdrv;c:\windows\system32\DRIVERS\ehdrv.sys [2010-07-29 141264] S2 AdobeActiveFileMonitor7.0;Adobe Active File Monitor V7;c:\program files (x86)\Adobe\Photoshop Elements 7.0\PhotoshopElementsFileAgent.exe [2008-12-08 169312] S2 eamonm;eamonm;c:\windows\system32\DRIVERS\eamonm.sys [2010-07-29 168544] S2 epfwwfp;epfwwfp;c:\windows\system32\DRIVERS\epfwwfp.sys [2010-07-29 50624] S2 Greg_Service;GRegService;c:\program files (x86)\Packard Bell\Registration\GregHSRW.exe [2009-08-28 1150496] S2 SBSDWSCService;SBSD Security Center Service;c:\program files (x86)\Spybot - Search & Destroy\SDWinSec.exe [2009-01-26 1153368] S2 Updater Service;Updater Service;c:\program files\Packard Bell\Packard Bell Updater\UpdaterService.exe [2009-07-04 240160] S3 e1kexpress;Intel® PRO/1000 PCI Express Network Connection Driver K;c:\windows\system32\DRIVERS\e1k62x64.sys [2009-09-23 283824] S3 MBfilt;MBfilt;c:\windows\system32\drivers\MBfilt64.sys [2009-08-25 25600] S3 NVHDA;Service for NVIDIA High Definition Audio Driver;c:\windows\system32\drivers\nvhda64v.sys [2009-08-21 84512] S3 osppsvc;Office Software Protection Platform;c:\program files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE [2010-01-09 4925184] . Contenu du dossier 'Tâches planifiées' 2010-12-20 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job - c:\program files (x86)\Google\Update\GoogleUpdate.exe [2010-03-02 20:17] 2010-12-20 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job - c:\program files (x86)\Google\Update\GoogleUpdate.exe [2010-03-02 20:17] . --------- x86-64 ----------- [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "IAAnotif"="c:\program files (x86)\Intel\Intel Matrix Storage Manager\iaanotif.exe" [2009-10-13 186904] "RtHDVCpl"="c:\program files\Realtek\Audio\HDA\RAVCpl64.exe" [2009-10-28 8312352] "WrtMon.exe"="c:\windows\system32\spool\drivers\x64\3\WrtMon.exe" [2006-09-20 20480] "egui"="c:\program files\ESET\ESET Smart Security\egui.exe" [bU] . ------- Examen supplémentaire ------- . uLocal Page = c:\windows\system32\blank.htm uStart Page = hxxp://www.liberation.fr/ mStart Page = hxxp://homepage.packardbell.com/rdr.aspx?b=ACPW&l=040c&m=ixtreme_m5740&r=173603102016p04f5v195y44130745 mLocal Page = c:\windows\SysWOW64\blank.htm IE: &Envoyer à OneNote - c:\progra~2\MICROS~1\Office14\ONBttnIE.dll/105 IE: E&xporter vers Microsoft Excel - c:\progra~2\MICROS~1\Office14\EXCEL.EXE/3000 IE: Google Sidewiki... - c:\program files (x86)\Google\Google Toolbar\Component\GoogleToolbarDynamic_mui_en_E11712C84EA7E12B.dll/cmsidewiki.html Filter: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - c:\program files (x86)\Common Files\microsoft shared\OFFICE14\MSOXMLMF.DLL DPF: {C345E174-3E87-4F41-A01C-B066A90A49B4} - hxxp://trial.trymicrosoftoffice.com/trialoaa/buymsoffice_assets/framework/microsoft/wrc32.ocx FF - ProfilePath - c:\users\misery\AppData\Roaming\Mozilla\Firefox\Profiles\0z0bg6io.default\ FF - Ext: Default: {972ce4c6-7e08-4474-a285-3208198ce6fd} - c:\program files (x86)\Mozilla Firefox\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd} FF - Ext: RealPlayer Browser Record Plugin: {ABDE892B-13A8-4d1b-88E6-365A6E755758} - c:\programdata\Real\RealPlayer\BrowserRecordPlugin\Firefox\Ext . - - - - ORPHELINS SUPPRIMES - - - - Toolbar-Locked - (no file) . --------------------- CLES DE REGISTRE BLOQUEES --------------------- [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}] @Denied: (A 2) (Everyone) @="FlashBroker" "LocalizedString"="@c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil10l_ActiveX.exe,-101" [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}\Elevation] "Enabled"=dword:00000001 [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}\LocalServer32] @="c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil10l_ActiveX.exe" [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}\TypeLib] @="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}" [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}] @Denied: (A 2) (Everyone) @="Shockwave Flash Object" [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\InprocServer32] @="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash10l.ocx" "ThreadingModel"="Apartment" [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\MiscStatus] @="0" [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ProgID] @="ShockwaveFlash.ShockwaveFlash.10" [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32] @="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash10l.ocx, 1" [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\TypeLib] @="{D27CDB6B-AE6D-11cf-96B8-444553540000}" [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\Version] @="1.0" [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID] @="ShockwaveFlash.ShockwaveFlash" [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}] @Denied: (A 2) (Everyone) @="Macromedia Flash Factory Object" [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\InprocServer32] @="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash10l.ocx" "ThreadingModel"="Apartment" [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ProgID] @="FlashFactory.FlashFactory.1" [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32] @="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash10l.ocx, 1" [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\TypeLib] @="{D27CDB6B-AE6D-11cf-96B8-444553540000}" [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\Version] @="1.0" [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID] @="FlashFactory.FlashFactory" [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\Interface\{E3F2C3CB-5EB8-4A04-B22C-7E3B4B6AF30F}] @Denied: (A 2) (Everyone) @="IFlashBroker4" [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\Interface\{E3F2C3CB-5EB8-4A04-B22C-7E3B4B6AF30F}\ProxyStubClsid32] @="{00020424-0000-0000-C000-000000000046}" [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\Interface\{E3F2C3CB-5EB8-4A04-B22C-7E3B4B6AF30F}\TypeLib] @="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}" "Version"="1.0" [HKEY_LOCAL_MACHINE\software\Wow6432Node\Microsoft\Office\Common\Smart Tag\Actions\{B7EFF951-E52F-45CC-9EF7-57124F2177CC}] @Denied: (A) (Everyone) "Solution"="{15727DE6-F92D-4E46-ACB4-0E2C58B31A18}" [HKEY_LOCAL_MACHINE\software\Wow6432Node\Microsoft\Schema Library\ActionsPane3] @Denied: (A) (Everyone) [HKEY_LOCAL_MACHINE\software\Wow6432Node\Microsoft\Schema Library\ActionsPane3\0] "Key"="ActionsPane3" "Location"="c:\\Program Files (x86)\\Common Files\\Microsoft Shared\\VSTO\\ActionsPane3.xsd" [HKEY_LOCAL_MACHINE\system\ControlSet001\Control\PCW\Security] @Denied: (Full) (Everyone) . Heure de fin: 2010-12-20 11:17:37 ComboFix-quarantined-files.txt 2010-12-20 10:17 ComboFix2.txt 2010-12-20 10:08 ComboFix3.txt 2010-12-19 16:45 Avant-CF: 438 497 038 336 octets libres Après-CF: 438 435 561 472 octets libres - - End Of File - - 45AD3FA4BB07B81C20158CBE7F1AE6F4
  10. tinemy
    Bonjour et merci encore pour ta dernière réponse. je suis désolée de m'être trompée la dernière fois après avoir tenté de nombreuses fois d'executer les procédures. Ci-dessous le rapport demandé. C'est de l'hébreu pour moi tout celà mais c'est interessant de découvrir petit à petit son PC autrement ! A bientôt et bonne soirée. ComboFix 10-12-18.02 - misery 19/12/2010 17:41:06.1.8 - x64 Microsoft Windows 7 Édition Familiale Premium 6.1.7600.0.1252.33.1036.18.8183.6948 [GMT 1:00] Lancé depuis: c:\users\tinemy\Desktop\ComboFix.exe AV: ESET Smart Security 4.2 *Disabled/Updated* {77DEAFED-8149-104B-25A1-21771CA47CD1} FW: Pare-feu personnel d'ESET *Enabled* {4FE52EC8-CB26-1113-0EFE-8842E2773BAA} SP: ESET Smart Security 4.2 *Disabled/Updated* {CCBF4E09-A773-1FC5-1F11-1A056723366C} SP: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} . (((((((((((((((((((((((((((((((((((( Autres suppressions )))))))))))))))))))))))))))))))))))))))))))))))) . c:\programdata\FullRemove.exe c:\users\tinemy\AppData\Roaming\.# c:\windows\system32\muzapp.exe c:\windows\SysWow64\muzapp.exe . ((((((((((((((((((((((((((((( Fichiers créés du 2010-11-19 au 2010-12-19 )))))))))))))))))))))))))))))))))))) . 2010-12-19 16:44 . 2010-12-19 16:44 -------- d-----w- c:\users\misery\AppData\Local\temp 2010-12-19 16:44 . 2010-12-19 16:44 -------- d-----w- c:\users\Default\AppData\Local\temp 2010-12-17 16:56 . 2010-11-16 11:01 8199504 ----a-w- c:\programdata\Microsoft\Windows Defender\Definition Updates\{6A98BF23-5F00-471E-A870-4128BBEB54F0}\mpengine.dll 2010-12-16 14:10 . 2010-12-16 14:17 -------- d-----w- c:\program files (x86)\Unlocker 2010-12-14 17:39 . 2010-12-14 17:39 -------- d-----w- c:\windows\PCHEALTH 2010-12-14 17:37 . 2010-12-14 17:37 -------- d-----w- c:\program files (x86)\Microsoft Analysis Services 2010-12-14 17:37 . 2010-12-14 17:37 -------- d-----r- C:\MSOCache 2010-12-14 16:21 . 2010-12-14 16:21 -------- d-----w- c:\users\tinemy\AppData\Local\ESET 2010-12-14 16:21 . 2010-12-14 16:21 -------- d-----w- c:\program files\ESET 2010-12-14 14:02 . 2010-12-14 14:02 -------- d-----w- C:\_OTL 2010-12-14 14:02 . 2009-10-31 06:34 2870272 ----a-w- c:\windows\system32\explorer.exe 2010-12-10 16:19 . 2010-12-10 16:19 -------- d-----w- c:\users\tinemy\AppData\Local\Real 2010-12-10 16:19 . 2010-12-10 16:19 11776 ----a-w- c:\program files (x86)\Mozilla Firefox\plugins\nprjplug.dll 2010-12-10 16:19 . 2010-12-10 16:19 -------- d-----w- c:\program files (x86)\Common Files\xing shared 2010-12-10 16:19 . 2010-12-10 16:19 151776 ----a-w- c:\program files (x86)\Mozilla Firefox\plugins\nppl3260.dll 2010-12-10 16:18 . 2010-12-10 16:18 100352 ----a-w- c:\program files (x86)\Mozilla Firefox\plugins\nprpjplug.dll 2010-12-09 18:07 . 2010-12-09 18:07 -------- d-----w- C:\found.003 2010-12-08 19:02 . 2010-12-08 21:52 -------- d---a-w- C:\Kaspersky Rescue Disk 10.0 2010-12-08 13:57 . 2010-12-08 13:57 -------- d-----w- c:\program files (x86)\ESET 2010-12-08 12:51 . 2010-12-08 12:51 -------- d-----w- c:\program files\CCleaner 2010-12-03 10:04 . 2010-11-29 16:42 38224 ----a-w- c:\windows\SysWow64\drivers\mbamswissarmy.sys 2010-12-03 10:04 . 2010-12-16 15:10 -------- d-----w- c:\program files (x86)\Malwarebytes' Anti-Malware 2010-11-30 17:46 . 2010-12-19 16:35 -------- d-----w- c:\programdata\Spybot - Search & Destroy 2010-11-30 17:46 . 2010-11-30 17:53 -------- d-----w- c:\program files (x86)\Spybot - Search & Destroy 2010-11-30 12:33 . 2010-11-30 12:33 -------- d-----w- c:\users\tinemy\AppData\Roaming\Malwarebytes 2010-11-30 12:33 . 2010-11-30 12:33 -------- d-----w- c:\programdata\Malwarebytes 2010-11-30 12:33 . 2010-11-29 16:42 24152 ----a-w- c:\windows\system32\drivers\mbam.sys 2010-11-30 10:01 . 2010-11-30 10:01 -------- d-----w- C:\Packard Bell 2010-11-29 13:01 . 2010-11-29 13:01 -------- dc----w- c:\windows\system32\DRVSTORE 2010-11-29 13:01 . 2010-09-22 23:36 48488 ----a-w- c:\windows\system32\drivers\fssfltr.sys 2010-11-29 13:00 . 2010-11-29 13:00 -------- d-----w- c:\windows\system32\Live Remote 2010-11-29 12:59 . 2010-11-29 12:59 -------- d-----w- c:\program files (x86)\Microsoft 2010-11-29 12:59 . 2010-11-29 12:59 -------- d-----w- c:\program files (x86)\MSN Toolbar 2010-11-29 12:59 . 2010-11-29 13:00 -------- d-----w- c:\program files (x86)\Bing Bar Installer 2010-11-29 12:59 . 2010-08-11 05:19 3860992 ----a-w- c:\windows\system32\UIRibbon.dll 2010-11-29 12:59 . 2010-08-11 05:13 1164800 ----a-w- c:\windows\system32\UIRibbonRes.dll 2010-11-29 12:59 . 2010-08-11 04:44 2983424 ----a-w- c:\windows\SysWow64\UIRibbon.dll 2010-11-29 12:59 . 2010-08-11 04:35 1164800 ----a-w- c:\windows\SysWow64\UIRibbonRes.dll 2010-11-29 12:47 . 2010-11-29 12:47 2724120 ----a-w- c:\programdata\Microsoft\eHome\Packages\MCEClientUX\UpdateableMarkup-2\markup.dll 2010-11-29 12:47 . 2010-11-29 12:47 42776 ----a-w- c:\programdata\Microsoft\eHome\Packages\MCEClientUX\dSM\StartResources.dll 2010-11-29 09:42 . 2010-11-29 09:42 -------- d--h--w- c:\windows\system32\CanonIJ Uninstaller Information 2010-11-29 09:42 . 2007-04-17 08:17 1177088 ----a-w- c:\windows\system32\CNQ2412L.DLL 2010-11-29 09:42 . 2007-03-23 15:33 1439744 ----a-w- c:\windows\system32\CNQ2412C.DLL 2010-11-29 09:42 . 2007-03-23 15:32 92672 ----a-w- c:\windows\system32\CNQ2412I.DLL 2010-11-29 09:42 . 2007-03-15 13:13 229888 ----a-w- c:\windows\system32\CNQ2412O.DLL 2010-11-29 09:42 . 2010-11-29 09:42 -------- d--h--w- c:\program files\CanonBJ 2010-11-27 16:10 . 2010-11-27 16:10 -------- d-----w- c:\users\tinemy\AppData\Roaming\NewSoft 2010-11-27 16:10 . 2010-11-27 16:10 -------- d-----w- c:\users\tinemy\AppData\Local\NewSoft 2010-11-27 15:32 . 1999-05-06 13:22 27632 ----a-w- c:\windows\SysWow64\CTL3DV2.DLL 2010-11-27 15:32 . 1997-10-14 04:19 11776 ----a-w- c:\windows\SysWow64\pmsbfn32.dll 2010-11-27 15:31 . 2010-11-27 15:32 -------- d-----w- c:\program files (x86)\Common Files\NewSoft 2010-11-27 15:30 . 2010-11-27 15:30 -------- d-----w- c:\users\tinemy\AppData\Roaming\ScanSoft 2010-11-27 15:29 . 1995-08-01 03:44 212480 ----a-w- c:\windows\PCDLIB32.DLL 2010-11-27 15:28 . 2010-11-27 15:28 -------- d-----w- c:\program files\Common Files\CANON 2010-11-26 21:26 . 2010-12-14 15:57 -------- d-----w- c:\programdata\Trend Micro 2010-11-26 19:08 . 2010-11-26 19:28 -------- d-----w- c:\program files (x86)\Windows Live Safety Center 2010-11-24 17:26 . 2010-11-30 15:00 157712 ----a-w- c:\windows\SysWow64\drivers\tmcomm.sys 2010-11-24 17:22 . 2010-11-30 15:15 -------- d-----w- c:\windows\BDOSCAN8 2010-11-24 16:17 . 2010-11-24 20:04 -------- d-----w- c:\windows\system32\%LocalAppData% 2010-11-24 12:56 . 2010-11-24 13:11 -------- d-----w- c:\users\tinemy\AppData\Roaming\Download Manager 2010-11-24 08:45 . 2010-10-19 08:47 7680 ----a-w- c:\program files\Internet Explorer\iecompat.dll 2010-11-24 08:45 . 2010-10-19 08:10 7680 ----a-w- c:\program files (x86)\Internet Explorer\iecompat.dll . (((((((((((((((((((((((((((((((((( Compte-rendu de Find3M )))))))))))))))))))))))))))))))))))))))))))))))) . 2010-11-12 17:53 . 2010-06-10 13:15 472808 ----a-w- c:\windows\SysWow64\deployJava1.dll 2010-10-19 09:41 . 2010-03-18 07:49 270720 ------w- c:\windows\system32\MpSigStub.exe 2010-09-22 23:47 . 2010-09-22 23:47 49016 ----a-w- c:\windows\SysWow64\sirenacm.dll 2010-09-22 23:32 . 2010-09-22 23:32 301936 ----a-w- c:\windows\WLXPGSS.SCR 2010-09-21 13:49 . 2010-09-21 13:49 252800 ----a-w- c:\windows\system32\LIVESSP.DLL 2010-09-21 13:03 . 2010-09-21 13:03 208768 ----a-w- c:\windows\SysWow64\LIVESSP.DLL . ((((((((((((((((((((((((((((((((( Points de chargement Reg )))))))))))))))))))))))))))))))))))))))))))))))) . . *Note* les éléments vides & les éléments initiaux légitimes ne sont pas listés REGEDIT4 [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "swg"="c:\program files (x86)\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe" [2009-11-28 39408] [HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run] "Packard Bell Photo Frame"="c:\program files (x86)\Packard Bell Photo Frame\ButtonMonitor.exe" [2009-07-20 124416] "AdobeCS4ServiceManager"="c:\program files (x86)\Common Files\Adobe\CS4ServiceManager\CS4ServiceManager.exe" [2008-08-14 611712] "Acrobat Assistant 8.0"="c:\program files (x86)\Adobe\Acrobat 8.0\Acrobat\Acrotray.exe" [2007-05-10 624248] "SunJavaUpdateSched"="c:\program files (x86)\Common Files\Java\Java Update\jusched.exe" [2010-05-14 248552] "Adobe Reader Speed Launcher"="c:\program files (x86)\Adobe\Reader 9.0\Reader\Reader_sl.exe" [2010-09-23 35760] "Adobe ARM"="c:\program files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe" [2010-09-20 932288] "TkBellExe"="c:\program files (x86)\real\realplayer\Update\realsched.exe" [2010-12-10 274608] [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system] "ConsentPromptBehaviorAdmin"= 5 (0x5) "ConsentPromptBehaviorUser"= 3 (0x3) "EnableUIADesktopToggle"= 0 (0x0) [HKEY_LOCAL_MACHINE\system\currentcontrolset\control\lsa] Security Packages REG_MULTI_SZ kerberos msv1_0 schannel wdigest tspkg pku2u livessp R2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;c:\windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-03-18 130384] R2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2010-03-18 138576] R2 gupdate;Service Google Update (gupdate);c:\program files (x86)\Google\Update\GoogleUpdate.exe [2010-03-02 135664] R3 Adobe Version Cue CS4;Adobe Version Cue CS4;c:\program files (x86)\Common Files\Adobe\Adobe Version Cue CS4\Server\bin\VersionCueCS4.exe [2008-08-15 284016] R3 WatAdminSvc;Service Windows Activation Technologies;c:\windows\system32\Wat\WatAdminSvc.exe [2010-05-20 1255736] R4 wlcrasvc;Windows Live Mesh remote connections service;c:\program files\Windows Live\Mesh\wlcrasvc.exe [2010-09-22 57184] S0 PxHlpa64;PxHlpa64;c:\windows\System32\Drivers\PxHlpa64.sys [2008-06-16 55024] S1 ehdrv;ehdrv;c:\windows\system32\DRIVERS\ehdrv.sys [2010-07-29 141264] S2 AdobeActiveFileMonitor7.0;Adobe Active File Monitor V7;c:\program files (x86)\Adobe\Photoshop Elements 7.0\PhotoshopElementsFileAgent.exe [2008-12-08 169312] S2 eamonm;eamonm;c:\windows\system32\DRIVERS\eamonm.sys [2010-07-29 168544] S2 ekrn;ESET Service;c:\program files\ESET\ESET Smart Security\x86\ekrn.exe [2010-08-12 810144] S2 epfwwfp;epfwwfp;c:\windows\system32\DRIVERS\epfwwfp.sys [2010-07-29 50624] S2 Greg_Service;GRegService;c:\program files (x86)\Packard Bell\Registration\GregHSRW.exe [2009-08-28 1150496] S2 SBSDWSCService;SBSD Security Center Service;c:\program files (x86)\Spybot - Search & Destroy\SDWinSec.exe [2009-01-26 1153368] S2 Updater Service;Updater Service;c:\program files\Packard Bell\Packard Bell Updater\UpdaterService.exe [2009-07-04 240160] S3 e1kexpress;Intel® PRO/1000 PCI Express Network Connection Driver K;c:\windows\system32\DRIVERS\e1k62x64.sys [2009-09-23 283824] S3 MBfilt;MBfilt;c:\windows\system32\drivers\MBfilt64.sys [2009-08-25 25600] S3 NVHDA;Service for NVIDIA High Definition Audio Driver;c:\windows\system32\drivers\nvhda64v.sys [2009-08-21 84512] S3 osppsvc;Office Software Protection Platform;c:\program files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE [2010-01-09 4925184] . Contenu du dossier 'Tâches planifiées' 2010-12-19 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job - c:\program files (x86)\Google\Update\GoogleUpdate.exe [2010-03-02 20:17] 2010-12-19 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job - c:\program files (x86)\Google\Update\GoogleUpdate.exe [2010-03-02 20:17] . --------- x86-64 ----------- [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "IAAnotif"="c:\program files (x86)\Intel\Intel Matrix Storage Manager\iaanotif.exe" [2009-10-13 186904] "RtHDVCpl"="c:\program files\Realtek\Audio\HDA\RAVCpl64.exe" [2009-10-28 8312352] "WrtMon.exe"="c:\windows\system32\spool\drivers\x64\3\WrtMon.exe" [2006-09-20 20480] "egui"="c:\program files\ESET\ESET Smart Security\egui.exe" [2010-08-12 2916584] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows] "LoadAppInit_DLLs"=0x0 . ------- Examen supplémentaire ------- . uLocal Page = c:\windows\system32\blank.htm uStart Page = hxxp://www.liberation.fr/ mStart Page = hxxp://homepage.packardbell.com/rdr.aspx?b=ACPW&l=040c&m=ixtreme_m5740&r=173603102016p04f5v195y44130745 mLocal Page = c:\windows\SysWOW64\blank.htm IE: &Envoyer à OneNote - c:\progra~2\MICROS~1\Office14\ONBttnIE.dll/105 IE: E&xporter vers Microsoft Excel - c:\progra~2\MICROS~1\Office14\EXCEL.EXE/3000 IE: Google Sidewiki... - c:\program files (x86)\Google\Google Toolbar\Component\GoogleToolbarDynamic_mui_en_E11712C84EA7E12B.dll/cmsidewiki.html Filter: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - c:\program files (x86)\Common Files\microsoft shared\OFFICE14\MSOXMLMF.DLL DPF: {C345E174-3E87-4F41-A01C-B066A90A49B4} - hxxp://trial.trymicrosoftoffice.com/trialoaa/buymsoffice_assets/framework/microsoft/wrc32.ocx FF - ProfilePath - c:\users\tinemy\AppData\Roaming\Mozilla\Firefox\Profiles\0z0bg6io.default\ FF - Ext: Default: {972ce4c6-7e08-4474-a285-3208198ce6fd} - c:\program files (x86)\Mozilla Firefox\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd} FF - Ext: RealPlayer Browser Record Plugin: {ABDE892B-13A8-4d1b-88E6-365A6E755758} - c:\programdata\Real\RealPlayer\BrowserRecordPlugin\Firefox\Ext . - - - - ORPHELINS SUPPRIMES - - - - Toolbar-Locked - (no file) Wow6432Node-HKLM-Run-UnlockerAssistant - c:\program files (x86)\Unlocker\UnlockerAssistant.exe Toolbar-Locked - (no file) AddRemove-Adobe Shockwave Player - c:\windows\system32\Adobe\Shockwave 11\uninstaller.exe . --------------------- CLES DE REGISTRE BLOQUEES --------------------- [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}] @Denied: (A 2) (Everyone) @="FlashBroker" "LocalizedString"="@c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil10l_ActiveX.exe,-101" [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}\Elevation] "Enabled"=dword:00000001 [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}\LocalServer32] @="c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil10l_ActiveX.exe" [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}\TypeLib] @="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}" [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}] @Denied: (A 2) (Everyone) @="Shockwave Flash Object" [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\InprocServer32] @="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash10l.ocx" "ThreadingModel"="Apartment" [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\MiscStatus] @="0" [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ProgID] @="ShockwaveFlash.ShockwaveFlash.10" [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32] @="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash10l.ocx, 1" [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\TypeLib] @="{D27CDB6B-AE6D-11cf-96B8-444553540000}" [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\Version] @="1.0" [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID] @="ShockwaveFlash.ShockwaveFlash" [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}] @Denied: (A 2) (Everyone) @="Macromedia Flash Factory Object" [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\InprocServer32] @="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash10l.ocx" "ThreadingModel"="Apartment" [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ProgID] @="FlashFactory.FlashFactory.1" [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32] @="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash10l.ocx, 1" [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\TypeLib] @="{D27CDB6B-AE6D-11cf-96B8-444553540000}" [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\Version] @="1.0" [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID] @="FlashFactory.FlashFactory" [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\Interface\{E3F2C3CB-5EB8-4A04-B22C-7E3B4B6AF30F}] @Denied: (A 2) (Everyone) @="IFlashBroker4" [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\Interface\{E3F2C3CB-5EB8-4A04-B22C-7E3B4B6AF30F}\ProxyStubClsid32] @="{00020424-0000-0000-C000-000000000046}" [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\Interface\{E3F2C3CB-5EB8-4A04-B22C-7E3B4B6AF30F}\TypeLib] @="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}" "Version"="1.0" [HKEY_LOCAL_MACHINE\software\Wow6432Node\Microsoft\Office\Common\Smart Tag\Actions\{B7EFF951-E52F-45CC-9EF7-57124F2177CC}] @Denied: (A) (Everyone) "Solution"="{15727DE6-F92D-4E46-ACB4-0E2C58B31A18}" [HKEY_LOCAL_MACHINE\software\Wow6432Node\Microsoft\Schema Library\ActionsPane3] @Denied: (A) (Everyone) [HKEY_LOCAL_MACHINE\software\Wow6432Node\Microsoft\Schema Library\ActionsPane3\0] "Key"="ActionsPane3" "Location"="c:\\Program Files (x86)\\Common Files\\Microsoft Shared\\VSTO\\ActionsPane3.xsd" [HKEY_LOCAL_MACHINE\system\ControlSet001\Control\PCW\Security] @Denied: (Full) (Everyone) . Heure de fin: 2010-12-19 17:45:36 ComboFix-quarantined-files.txt 2010-12-19 16:45 Avant-CF: 436 575 952 896 octets libres Après-CF: 438 042 910 720 octets libres - - End Of File - - B99DE14E753950584485F990B0362F16
  11. tinemy
    Bonjour Lance-yien je reviens à toi hélas avec peu de bonnes nouvelles... Concernant OTLPE le rapport est celui-ci : OTL logfile created on: 16/12/2010 16:57:21 - Run OTLPE by OldTimer - Version 3.1.43.0 Folder = E:\Programs\OTLPE 64bit-Windows 7 Home Premium (Version = 6.1.7600) - Type = System Internet Explorer (Version = 8.0.7600.16385) Locale: | Country: | Language: | Date Format: 8,00 Gb Total Physical Memory | 6,00 Gb Available Physical Memory | 80,00% Memory free 16,00 Gb Paging File | 14,00 Gb Available in Paging File | 90,00% Paging File free Paging file location(s): ?:\pagefile.sys [binary data] %SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files (x86) Drive C: | 457,95 Gb Total Space | 407,82 Gb Free Space | 89,05% Space Free | Partition Type: NTFS Drive D: | 458,46 Gb Total Space | 441,26 Gb Free Space | 96,25% Space Free | Partition Type: NTFS Drive E: | 282,52 Mb Total Space | 0,00 Mb Free Space | 0,00% Space Free | Partition Type: CDFS Drive G: | 298,09 Gb Total Space | 253,76 Gb Free Space | 85,13% Space Free | Partition Type: NTFS Drive M: | 7,55 Gb Total Space | 6,42 Gb Free Space | 85,09% Space Free | Partition Type: FAT32 Drive N: | 1,95 Gb Total Space | 1,82 Gb Free Space | 93,08% Space Free | Partition Type: FAT Computer Name: MISERY-PC | User Name: misery Boot Mode: Normal | Scan Mode: All users | Include 64bit Scans Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days Using ControlSet: ControlSet001 ========== Win32 Services (SafeList) ========== SRV:64bit: - File not found [On_Demand] -- C:\Windows\System32\wwansvc.dll -- (WwanSvc) SRV:64bit: - File not found [Auto] -- C:\Windows\System32\WUDFSvc.dll -- (wudfsvc) SRV:64bit: - File not found [Auto] -- C:\Windows\System32\wuaueng.dll -- (wuauserv) SRV:64bit: - File not found [Auto] -- C:\Windows\System32\wscsvc.dll -- (wscsvc) SRV:64bit: - File not found [On_Demand] -- C:\Windows\System32\wpdbusenum.dll -- (WPDBusEnum) SRV:64bit: - File not found [Auto] -- C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe -- (WMPNetworkSvc) SRV:64bit: - File not found [On_Demand] -- C:\Windows\System32\wbem\WmiApSrv.exe -- (wmiApSrv) SRV:64bit: - File not found [On_Demand] -- C:\Windows\System32\wlansvc.dll -- (Wlansvc) SRV:64bit: - File not found [Auto] -- C:\Windows\System32\wbem\WMIsvc.dll -- (Winmgmt) SRV:64bit: - File not found [Auto] -- C:\Program Files (x86)\Windows Defender\mpsvc.dll -- (WinDefend) SRV:64bit: - File not found [On_Demand] -- C:\Windows\System32\WerSvc.dll -- (WerSvc) SRV:64bit: - File not found [On_Demand] -- C:\Windows\System32\wercplsupport.dll -- (wercplsupport) SRV:64bit: - File not found [On_Demand] -- C:\Windows\System32\wecsvc.dll -- (Wecsvc) SRV:64bit: - File not found [On_Demand] -- C:\Windows\System32\wbiosrvc.dll -- (WbioSrvc) SRV:64bit: - File not found [On_Demand] -- C:\Windows\System32\wbengine.exe -- (wbengine) SRV:64bit: - File not found [On_Demand] -- C:\Windows\System32\Wat\WatAdminSvc.exe -- (WatAdminSvc) SRV:64bit: - File not found [On_Demand] -- C:\Windows\System32\w32time.dll -- (W32Time) SRV:64bit: - File not found [On_Demand] -- C:\Windows\System32\vssvc.exe -- (VSS) SRV:64bit: - File not found [On_Demand] -- C:\Windows\System32\vds.exe -- (vds) SRV:64bit: - File not found [On_Demand] -- C:\Windows\System32\lsass.exe -- (VaultSvc) SRV:64bit: - File not found [Auto] -- C:\Windows\System32\uxsms.dll -- (UxSms) SRV:64bit: - File not found [On_Demand] -- C:\Windows\System32\UI0Detect.exe -- (UI0Detect) SRV:64bit: - File not found [Auto] -- C:\Windows\System32\trkwks.dll -- (TrkWks) SRV:64bit: - File not found [On_Demand] -- C:\Windows\System32\mmcss.dll -- (THREADORDER) SRV:64bit: - File not found [Auto] -- C:\Windows\System32\themeservice.dll -- (Themes) SRV:64bit: - File not found [On_Demand] -- C:\Windows\System32\termsrv.dll -- (TermService) SRV:64bit: - File not found [On_Demand] -- C:\Windows\System32\tbssvc.dll -- (TBS) SRV:64bit: - File not found [On_Demand] -- C:\Windows\System32\TabSvc.dll -- (TabletInputService) SRV:64bit: - File not found [Auto] -- C:\Windows\System32\sysmain.dll -- (SysMain) SRV:64bit: - File not found [On_Demand] -- C:\Windows\System32\swprv.dll -- (swprv) SRV:64bit: - File not found [Auto] -- C:\Windows\System32\wiaservc.dll -- (stisvc) SRV:64bit: - File not found [On_Demand] -- C:\Windows\System32\sstpsvc.dll -- (SstpSvc) SRV:64bit: - File not found [On_Demand] -- C:\Windows\System32\ssdpsrv.dll -- (SSDPSRV) SRV:64bit: - File not found [On_Demand] -- C:\Windows\System32\sppuinotify.dll -- (sppuinotify) SRV:64bit: - File not found [Auto] -- C:\Windows\System32\sppsvc.exe -- (sppsvc) SRV:64bit: - File not found [Auto] -- C:\Windows\System32\spoolsv.exe -- (Spooler) SRV:64bit: - File not found [On_Demand] -- C:\Windows\System32\snmptrap.exe -- (SNMPTRAP) SRV:64bit: - File not found [Disabled] -- C:\Windows\System32\ipnathlp.dll -- (SharedAccess) SRV:64bit: - File not found [On_Demand] -- C:\Windows\System32\sensrsvc.dll -- (SensrSvc) SRV:64bit: - File not found [On_Demand] -- C:\Windows\System32\seclogon.dll -- (seclogon) SRV:64bit: - File not found [On_Demand] -- C:\Windows\System32\SDRSVC.dll -- (SDRSVC) SRV:64bit: - File not found [On_Demand] -- C:\Windows\System32\certprop.dll -- (SCPolicySvc) SRV:64bit: - File not found [Auto] -- C:\Windows\System32\schedsvc.dll -- (Schedule) SRV:64bit: - File not found [On_Demand] -- C:\Windows\System32\SCardSvr.dll -- (SCardSvr) SRV:64bit: - File not found [Auto] -- C:\Windows\System32\lsass.exe -- (SamSs) SRV:64bit: - File not found [Auto] -- C:\Windows\System32\rpcss.dll -- (RpcSs) SRV:64bit: - File not found [On_Demand] -- C:\Windows\System32\locator.exe -- (RpcLocator) SRV:64bit: - File not found [Auto] -- C:\Windows\System32\RpcEpMap.dll -- (RpcEptMapper) SRV:64bit: - File not found [On_Demand] -- C:\Windows\System32\regsvc.dll -- (RemoteRegistry) SRV:64bit: - File not found [On_Demand] -- C:\Windows\System32\rasmans.dll -- (RasMan) SRV:64bit: - File not found [On_Demand] -- C:\Windows\System32\rasauto.dll -- (RasAuto) SRV:64bit: - File not found [On_Demand] -- C:\Windows\System32\lsass.exe -- (ProtectedStorage) SRV:64bit: - File not found [Auto] -- C:\Windows\System32\profsvc.dll -- (ProfSvc) SRV:64bit: - File not found [Auto] -- C:\Windows\System32\umpo.dll -- (Power) SRV:64bit: - File not found [On_Demand] -- C:\Windows\System32\ipsecsvc.dll -- (PolicyAgent) SRV:64bit: - File not found [On_Demand] -- C:\Windows\System32\pnrpsvc.dll -- (PNRPsvc) SRV:64bit: - File not found [On_Demand] -- C:\Windows\System32\pnrpauto.dll -- (PNRPAutoReg) SRV:64bit: - File not found [Auto] -- C:\Windows\System32\umpnpmgr.dll -- (PlugPlay) SRV:64bit: - File not found [Auto] -- C:\Windows\System32\pcasvc.dll -- (PcaSvc) SRV:64bit: - File not found [On_Demand] -- C:\Windows\System32\p2psvc.dll -- (p2psvc) SRV:64bit: - File not found [On_Demand] -- C:\Windows\System32\pnrpsvc.dll -- (p2pimsvc) SRV:64bit: - File not found [Auto] -- C:\Windows\System32\nvvsvc.exe -- (nvsvc) SRV:64bit: - File not found [Auto] -- C:\Windows\System32\nsisvc.dll -- (nsi) SRV:64bit: - File not found [Auto] -- C:\Windows\System32\nlasvc.dll -- (NlaSvc) SRV:64bit: - File not found [On_Demand] -- C:\Windows\System32\netman.dll -- (Netman) SRV:64bit: - File not found [On_Demand] -- C:\Windows\System32\lsass.exe -- (Netlogon) SRV:64bit: - File not found [On_Demand] -- C:\Windows\System32\qagentRT.dll -- (napagent) SRV:64bit: - File not found [On_Demand] -- C:\Windows\System32\iscsiexe.dll -- (MSiSCSI) SRV:64bit: - File not found [On_Demand] -- C:\Windows\System32\msdtc.exe -- (MSDTC) SRV:64bit: - File not found [Auto] -- C:\Windows\System32\mpssvc.dll -- (MpsSvc) SRV:64bit: - File not found [Auto] -- C:\Windows\System32\mmcss.dll -- (MMCSS) SRV:64bit: - File not found [Disabled] -- C:\Windows\System32\Mcx2Svc.dll -- (Mcx2Svc) SRV:64bit: - File not found [Auto] -- C:\Windows\System32\lmhsvc.dll -- (lmhosts) SRV:64bit: - File not found [On_Demand] -- C:\Windows\System32\lltdsvc.dll -- (lltdsvc) SRV:64bit: - File not found [Auto] -- C:\Windows\System32\wkssvc.dll -- (LanmanWorkstation) SRV:64bit: - File not found [Auto] -- C:\Windows\System32\srvsvc.dll -- (LanmanServer) SRV:64bit: - File not found [On_Demand] -- C:\Windows\System32\msdtckrm.dll -- (KtmRm) SRV:64bit: - File not found [On_Demand] -- C:\Windows\System32\lsass.exe -- (KeyIso) SRV:64bit: - File not found [Auto] -- C:\Windows\System32\iphlpsvc.dll -- (iphlpsvc) SRV:64bit: - File not found [On_Demand] -- C:\Windows\System32\ipbusenum.dll -- (IPBusEnum) SRV:64bit: - File not found [Auto] -- C:\Windows\System32\ikeext.dll -- (IKEEXT) SRV:64bit: - File not found [On_Demand] -- C:\Windows\System32\ListSvc.dll -- (HomeGroupListener) SRV:64bit: - File not found [On_Demand] -- C:\Windows\System32\kmsvc.dll -- (hkmsvc) SRV:64bit: - File not found [Auto] -- C:\Windows\System32\gpsvc.dll -- (gpsvc) SRV:64bit: - File not found [On_Demand] -- C:\Windows\System32\FntCache.dll -- (FontCache) SRV:64bit: - File not found [Auto] -- C:\Windows\System32\fdrespub.dll -- (FDResPub) SRV:64bit: - File not found [On_Demand] -- C:\Windows\System32\fdPHost.dll -- (fdPHost) SRV:64bit: - File not found [On_Demand] -- C:\Windows\System32\fxssvc.exe -- (Fax) SRV:64bit: - File not found [Auto] -- C:\Windows\System32\wevtsvc.dll -- (eventlog) SRV:64bit: - File not found [Auto] -- C:\Windows\System32\lsass.exe -- (EFS) SRV:64bit: - File not found [On_Demand] -- C:\Windows\System32\eapsvc.dll -- (EapHost) SRV:64bit: - File not found [Auto] -- C:\Windows\System32\dps.dll -- (DPS) SRV:64bit: - File not found [On_Demand] -- C:\Windows\System32\dot3svc.dll -- (dot3svc) SRV:64bit: - File not found [Auto] -- C:\Windows\System32\dnsrslvr.dll -- (Dnscache) SRV:64bit: - File not found [On_Demand] -- C:\Windows\System32\defragsvc.dll -- (defragsvc) SRV:64bit: - File not found [Auto] -- C:\Windows\System32\rpcss.dll -- (DcomLaunch) SRV:64bit: - File not found [On_Demand] -- C:\Windows\System32\certprop.dll -- (CertPropSvc) SRV:64bit: - File not found [On_Demand] -- C:\Windows\System32\bthserv.dll -- (bthserv) SRV:64bit: - File not found [On_Demand] -- C:\Windows\System32\browser.dll -- (Browser) SRV:64bit: - File not found [Auto] -- C:\Windows\System32\qmgr.dll -- (BITS) SRV:64bit: - File not found [Auto] -- C:\Windows\System32\bfe.dll -- (BFE) SRV:64bit: - File not found [On_Demand] -- C:\Windows\System32\bdesvc.dll -- (BDESVC) SRV:64bit: - File not found [On_Demand] -- C:\Windows\System32\AxInstSV.dll -- (AxInstSV) SRV:64bit: - File not found [Auto] -- C:\Windows\System32\Audiosrv.dll -- (AudioSrv) SRV:64bit: - File not found [Auto] -- C:\Windows\System32\Audiosrv.dll -- (AudioEndpointBuilder) SRV:64bit: - File not found [On_Demand] -- C:\Windows\System32\appinfo.dll -- (Appinfo) SRV:64bit: - File not found [On_Demand] -- C:\Windows\System32\appidsvc.dll -- (AppIDSvc) SRV:64bit: - File not found [On_Demand] -- C:\Windows\System32\alg.exe -- (ALG) SRV:64bit: - File not found [On_Demand] -- C:\Windows\System32\aelupsvc.dll -- (AeLookupSvc) SRV:64bit: - [2010/09/23 00:21:24 | 001,493,352 | ---- | M] (Microsoft Corporation) [On_Demand] -- C:\Program Files (x86)\Windows Live\Family Safety\fsssvc.exe -- (fsssvc) SRV:64bit: - [2010/09/22 12:03:38 | 000,249,136 | ---- | M] (Microsoft Corporation) [Auto] -- C:\Program Files (x86)\Microsoft\Search Enhancement Pack\SeaPort\SeaPort.exe -- (SeaPort) SRV:64bit: - [2010/03/05 14:41:59 | 000,655,624 | ---- | M] (Acresso Software Inc.) [On_Demand] -- C:\Program Files (x86)\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe -- (FLEXnet Licensing Service) SRV:64bit: - [2010/01/09 21:18:00 | 000,149,352 | ---- | M] (Microsoft Corporation) [On_Demand] -- C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE -- (ose) SRV:64bit: - [2009/10/13 11:25:30 | 000,354,840 | ---- | M] (Intel Corporation) [Auto] -- C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\IAANTMon.exe -- (IAANTMON) Intel® SRV:64bit: - [2009/08/28 10:38:58 | 001,150,496 | ---- | M] (Acer Incorporated) [Auto] -- C:\Program Files (x86)\Packard Bell\Registration\GregHSRW.exe -- (Greg_Service) SRV:64bit: - [2009/08/25 19:38:06 | 000,935,208 | ---- | M] (Nero AG) [On_Demand] -- C:\Program Files (x86)\Common Files\Nero\Nero BackItUp 4\NBService.exe -- (Nero BackItUp Scheduler 4.0) SRV:64bit: - [2009/07/14 02:16:12 | 000,165,376 | ---- | M] (Microsoft Corporation) [On_Demand] -- C:\Windows\System32\provsvc.dll -- (HomeGroupProvider) SRV:64bit: - [2009/07/14 02:15:11 | 000,253,440 | ---- | M] (Microsoft Corporation) [Auto] -- C:\Windows\System32\dhcpcore.dll -- (Dhcp) SRV:64bit: - [2009/01/26 15:31:10 | 001,153,368 | ---- | M] (Safer Networking Ltd.) [Auto] -- C:\Program Files (x86)\Spybot - Search & Destroy\SDWinSec.exe -- (SBSDWSCService) SRV:64bit: - [2008/12/08 15:16:56 | 000,169,312 | ---- | M] (Adobe Systems Incorporated) [Auto] -- C:\Program Files (x86)\Adobe\Photoshop Elements 7.0\PhotoshopElementsFileAgent.exe -- (AdobeActiveFileMonitor7.0) SRV:64bit: - [2008/08/15 05:46:20 | 000,284,016 | ---- | M] (Adobe Systems Incorporated) [On_Demand] -- C:\Program Files (x86)\Common Files\Adobe\Adobe Version Cue CS4\Server\bin\VersionCueCS4.exe -- (Adobe Version Cue CS4) SRV - [2010/09/22 18:10:10 | 000,057,184 | ---- | M] (Microsoft Corporation) [Disabled] -- C:\Program Files\Windows Live\Mesh\wlcrasvc.exe -- (wlcrasvc) SRV - [2010/09/21 14:49:00 | 002,286,976 | ---- | M] (Microsoft Corp.) [Auto] -- C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE -- (wlidsvc) SRV - [2010/08/12 14:18:40 | 000,042,360 | ---- | M] (ESET) [On_Demand] -- C:\Program Files\ESET\ESET Smart Security\EHttpSrv.exe -- (EhttpSrv) SRV - [2010/08/12 14:16:26 | 000,810,144 | ---- | M] (ESET) [Auto] -- C:\Program Files\ESET\ESET Smart Security\x86\ekrn.exe -- (ekrn) SRV - [2010/03/18 13:27:14 | 000,138,576 | ---- | M] (Microsoft Corporation) [Auto] -- C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe -- (clr_optimization_v4.0.30319_64) SRV - [2010/03/18 12:16:28 | 000,130,384 | ---- | M] (Microsoft Corporation) [Auto] -- C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe -- (clr_optimization_v4.0.30319_32) SRV - [2010/01/09 21:34:24 | 004,925,184 | ---- | M] (Microsoft Corporation) [On_Demand] -- C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE -- (osppsvc) SRV - [2009/07/14 02:16:12 | 000,165,376 | ---- | M] (Microsoft Corporation) [On_Demand] -- C:\Windows\SysWOW64\provsvc.dll -- (HomeGroupProvider) SRV - [2009/07/14 02:15:11 | 000,253,440 | ---- | M] (Microsoft Corporation) [Auto] -- C:\Windows\SysWOW64\dhcpcore.dll -- (Dhcp) SRV - [2009/07/04 03:47:12 | 000,240,160 | ---- | M] (Acer) [Auto] -- C:\Program Files\Packard Bell\Packard Bell Updater\UpdaterService.exe -- (Updater Service) SRV - [2009/06/10 22:23:09 | 000,066,384 | ---- | M] (Microsoft Corporation) [Disabled] -- C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe -- (clr_optimization_v2.0.50727_32) SRV - [2009/06/10 21:39:58 | 000,089,920 | ---- | M] (Microsoft Corporation) [Disabled] -- C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe -- (clr_optimization_v2.0.50727_64) SRV - [2009/06/10 21:30:59 | 000,042,840 | ---- | M] (Microsoft Corporation) [On_Demand] -- C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe -- (FontCache3.0.0.0) SRV - [2009/06/10 21:30:45 | 000,856,384 | ---- | M] (Microsoft Corporation) [On_Demand] -- C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe -- (idsvc) ========== Driver Services (SafeList) ========== DRV:64bit: - File not found [Kernel | On_Demand] -- C:\Windows\System32\DRIVERS\WUDFRd.sys -- (WUDFRd) DRV:64bit: - File not found [Kernel | On_Demand] -- C:\Windows\System32\drivers\WudfPf.sys -- (WudfPf) DRV:64bit: - File not found [Kernel | Disabled] -- C:\Windows\System32\drivers\ws2ifsl.sys -- (ws2ifsl) DRV:64bit: - File not found [Kernel | On_Demand] -- C:\Windows\System32\DRIVERS\wmiacpi.sys -- (WmiAcpi) DRV:64bit: - File not found [Kernel | On_Demand] -- C:\Windows\System32\DRIVERS\WinUsb.sys -- (WinUsb) DRV:64bit: - File not found [Kernel | System] -- C:\Windows\System32\DRIVERS\wfplwf.sys -- (WfpLwf) DRV:64bit: - File not found [Kernel | Boot] -- C:\Windows\System32\drivers\Wdf01000.sys -- (Wdf01000) DRV:64bit: - File not found [Kernel | On_Demand] -- C:\Windows\System32\DRIVERS\wd.sys -- (Wd) DRV:64bit: - File not found [Kernel | System] -- C:\Windows\System32\DRIVERS\wanarp.sys -- (Wanarpv6) DRV:64bit: - File not found [Kernel | On_Demand] -- C:\Windows\System32\DRIVERS\wanarp.sys -- (WANARP) DRV:64bit: - File not found [Kernel | On_Demand] -- C:\Windows\System32\DRIVERS\wacompen.sys -- (WacomPen) DRV:64bit: - File not found [Kernel | On_Demand] -- C:\Windows\System32\drivers\vwifibus.sys -- (vwifibus) DRV:64bit: - File not found [Kernel | On_Demand] -- C:\Windows\System32\DRIVERS\vsmraid.sys -- (vsmraid) DRV:64bit: - File not found [Kernel | Boot] -- C:\Windows\System32\DRIVERS\volsnap.sys -- (volsnap) DRV:64bit: - File not found [Kernel | Boot] -- C:\Windows\System32\drivers\volmgrx.sys -- (volmgrx) DRV:64bit: - File not found [Kernel | Boot] -- C:\Windows\System32\DRIVERS\volmgr.sys -- (volmgr) DRV:64bit: - File not found [Kernel | On_Demand] -- C:\Windows\System32\DRIVERS\viaide.sys -- (viaide) DRV:64bit: - File not found [Kernel | On_Demand] -- C:\Windows\System32\DRIVERS\vhdmp.sys -- (vhdmp) DRV:64bit: - File not found [Kernel | System] -- C:\Windows\System32\drivers\vga.sys -- (VgaSave) DRV:64bit: - File not found [Kernel | On_Demand] -- C:\Windows\System32\DRIVERS\vgapnp.sys -- (vga) DRV:64bit: - File not found [Kernel | Boot] -- C:\Windows\System32\DRIVERS\vdrvroot.sys -- (vdrvroot) DRV:64bit: - File not found [Kernel | On_Demand] -- C:\Windows\System32\DRIVERS\usbuhci.sys -- (usbuhci) DRV:64bit: - File not found [Kernel | On_Demand] -- C:\Windows\System32\DRIVERS\USBSTOR.SYS -- (USBSTOR) DRV:64bit: - File not found [Kernel | On_Demand] -- C:\Windows\System32\DRIVERS\usbscan.sys -- (usbscan) DRV:64bit: - File not found [Kernel | On_Demand] -- C:\Windows\System32\DRIVERS\usbprint.sys -- (usbprint) DRV:64bit: - File not found [Kernel | On_Demand] -- C:\Windows\System32\DRIVERS\usbohci.sys -- (usbohci) DRV:64bit: - File not found [Kernel | On_Demand] -- C:\Windows\System32\DRIVERS\usbhub.sys -- (usbhub) DRV:64bit: - File not found [Kernel | On_Demand] -- C:\Windows\System32\DRIVERS\usbehci.sys -- (usbehci) DRV:64bit: - File not found [Kernel | On_Demand] -- C:\Windows\System32\DRIVERS\usbcir.sys -- (usbcir) eHome Infrared Receiver (USBCIR) DRV:64bit: - File not found [Kernel | On_Demand] -- C:\Windows\System32\DRIVERS\usbccgp.sys -- (usbccgp) DRV:64bit: - File not found [Kernel | On_Demand] -- C:\Windows\System32\drivers\usbaudio.sys -- (usbaudio) Pilote USB audio (WDM) DRV:64bit: - File not found [Kernel | On_Demand] -- C:\Windows\System32\DRIVERS\umpass.sys -- (UmPass) DRV:64bit: - File not found [Kernel | On_Demand] -- C:\Windows\System32\DRIVERS\umbus.sys -- (umbus) DRV:64bit: - File not found [Kernel | On_Demand] -- C:\Windows\System32\DRIVERS\uliagpkx.sys -- (uliagpkx) DRV:64bit: - File not found [File_System | Disabled] -- C:\Windows\System32\DRIVERS\udfs.sys -- (udfs) DRV:64bit: - File not found [Kernel | On_Demand] -- C:\Windows\System32\DRIVERS\uagp35.sys -- (uagp35) DRV:64bit: - File not found [Kernel | On_Demand] -- C:\Windows\System32\DRIVERS\tunnel.sys -- (tunnel) DRV:64bit: - File not found [Kernel | On_Demand] -- C:\Windows\System32\DRIVERS\tssecsrv.sys -- (tssecsrv) DRV:64bit: - File not found [Kernel | System] -- C:\Windows\System32\DRIVERS\termdd.sys -- (TermDD) DRV:64bit: - File not found [Kernel | System] -- C:\Windows\System32\DRIVERS\tdx.sys -- (tdx) DRV:64bit: - File not found [Kernel | On_Demand] -- C:\Windows\System32\drivers\tdtcp.sys -- (TDTCP) DRV:64bit: - File not found [Kernel | On_Demand] -- C:\Windows\System32\drivers\tdpipe.sys -- (TDPIPE) DRV:64bit: - File not found [Kernel | Auto] -- C:\Windows\System32\drivers\tcpipreg.sys -- (tcpipreg) DRV:64bit: - File not found [Kernel | On_Demand] -- C:\Windows\System32\DRIVERS\tcpip.sys -- (TCPIP6) DRV:64bit: - File not found [Kernel | Boot] -- C:\Windows\System32\drivers\tcpip.sys -- (Tcpip) DRV:64bit: - File not found [Kernel | On_Demand] -- C:\Windows\System32\DRIVERS\swenum.sys -- (swenum) DRV:64bit: - File not found [Kernel | On_Demand] -- C:\Windows\System32\DRIVERS\stexstor.sys -- (stexstor) DRV:64bit: - File not found [File_System | On_Demand] -- C:\Windows\System32\DRIVERS\srvnet.sys -- (srvnet) DRV:64bit: - File not found [File_System | On_Demand] -- C:\Windows\System32\DRIVERS\srv2.sys -- (srv2) DRV:64bit: - File not found [File_System | On_Demand] -- C:\Windows\System32\DRIVERS\srv.sys -- (srv) DRV:64bit: - File not found [Kernel | On_Demand] -- C:\Windows\System32\DRIVERS\smb.sys -- (Smb) DRV:64bit: - File not found [Kernel | On_Demand] -- C:\Windows\System32\DRIVERS\sisraid4.sys -- (SiSRaid4) DRV:64bit: - File not found [Kernel | On_Demand] -- C:\Windows\System32\DRIVERS\SiSRaid2.sys -- (SiSRaid2) DRV:64bit: - File not found [Kernel | On_Demand] -- C:\Windows\System32\DRIVERS\sfloppy.sys -- (sfloppy) DRV:64bit: - File not found [Kernel | On_Demand] -- C:\Windows\System32\DRIVERS\sffp_sd.sys -- (sffp_sd) DRV:64bit: - File not found [Kernel | On_Demand] -- C:\Windows\System32\DRIVERS\sffp_mmc.sys -- (sffp_mmc) DRV:64bit: - File not found [Kernel | On_Demand] -- C:\Windows\System32\DRIVERS\sffdisk.sys -- (sffdisk) DRV:64bit: - File not found [Kernel | On_Demand] -- C:\Windows\System32\DRIVERS\sermouse.sys -- (sermouse) DRV:64bit: - File not found [Kernel | On_Demand] -- C:\Windows\System32\DRIVERS\serial.sys -- (Serial) DRV:64bit: - File not found [Kernel | On_Demand] -- C:\Windows\System32\DRIVERS\serenum.sys -- (Serenum) DRV:64bit: - File not found [Kernel | On_Demand] -- C:\Windows\System32\DRIVERS\scfilter.sys -- (scfilter) DRV:64bit: - File not found [Kernel | On_Demand] -- C:\Windows\System32\DRIVERS\sbp2port.sys -- (sbp2port) DRV:64bit: - File not found [Kernel | Auto] -- C:\Windows\System32\DRIVERS\rspndr.sys -- (rspndr) DRV:64bit: - File not found [Kernel | Boot] -- C:\Windows\System32\drivers\rdyboost.sys -- (rdyboost) DRV:64bit: - File not found [Kernel | System] -- C:\Windows\System32\drivers\rdprefmp.sys -- (RDPREFMP) DRV:64bit: - File not found [Kernel | System] -- C:\Windows\System32\drivers\rdpencdd.sys -- (RDPENCDD) DRV:64bit: - File not found [Kernel | System] -- C:\Windows\System32\DRIVERS\RDPCDD.sys -- (RDPCDD) DRV:64bit: - File not found [Kernel | On_Demand] -- C:\Windows\System32\DRIVERS\rdpbus.sys -- (rdpbus) DRV:64bit: - File not found [File_System | System] -- C:\Windows\System32\DRIVERS\rdbss.sys -- (rdbss) DRV:64bit: - File not found [Kernel | On_Demand] -- C:\Windows\System32\DRIVERS\rassstp.sys -- (RasSstp) DRV:64bit: - File not found [Kernel | On_Demand] -- C:\Windows\System32\DRIVERS\raspppoe.sys -- (RasPppoe) DRV:64bit: - File not found [Kernel | On_Demand] -- C:\Windows\System32\DRIVERS\rasl2tp.sys -- (Rasl2tp) DRV:64bit: - File not found [Kernel | On_Demand] -- C:\Windows\System32\DRIVERS\AgileVpn.sys -- (RasAgileVpn) WAN Miniport (IKEv2) DRV:64bit: - File not found [Kernel | On_Demand] -- C:\Windows\System32\DRIVERS\rasacd.sys -- (RasAcd) DRV:64bit: - File not found [Kernel | On_Demand] -- C:\Windows\System32\drivers\qwavedrv.sys -- (QWAVEdrv) DRV:64bit: - File not found [Kernel | On_Demand] -- C:\Windows\System32\DRIVERS\ql40xx.sys -- (ql40xx) DRV:64bit: - File not found [Kernel | On_Demand] -- C:\Windows\System32\DRIVERS\ql2300.sys -- (ql2300) DRV:64bit: - File not found [Kernel | Boot] -- C:\Windows\System32\Drivers\PxHlpa64.sys -- (PxHlpa64) DRV:64bit: - File not found [Kernel | System] -- C:\Windows\System32\DRIVERS\pacer.sys -- (Psched) DRV:64bit: - File not found [Kernel | On_Demand] -- C:\Windows\System32\DRIVERS\processr.sys -- (Processor) DRV:64bit: - File not found [Kernel | On_Demand] -- C:\Windows\System32\DRIVERS\raspptp.sys -- (PptpMiniport) DRV:64bit: - File not found [Kernel | Auto] -- C:\Windows\System32\drivers\peauth.sys -- (PEAUTH) DRV:64bit: - File not found [Kernel | Boot] -- C:\Windows\System32\drivers\pcw.sys -- (pcw) DRV:64bit: - File not found [Kernel | On_Demand] -- C:\Windows\System32\DRIVERS\pcmcia.sys -- (pcmcia) DRV:64bit: - File not found [Kernel | On_Demand] -- C:\Windows\System32\DRIVERS\pciide.sys -- (pciide) DRV:64bit: - File not found [Kernel | Boot] -- C:\Windows\System32\DRIVERS\pci.sys -- (pci) DRV:64bit: - File not found [Kernel | Boot] -- C:\Windows\System32\drivers\partmgr.sys -- (partmgr) DRV:64bit: - File not found [Kernel | On_Demand] -- C:\Windows\System32\DRIVERS\parport.sys -- (Parport) DRV:64bit: - File not found [Kernel | On_Demand] -- C:\Windows\System32\DRIVERS\ohci1394.sys -- (ohci1394) 1394 OHCI Compliant Host Controller (Legacy) DRV:64bit: - File not found [Kernel | On_Demand] -- C:\Windows\System32\DRIVERS\nvstor.sys -- (nvstor) DRV:64bit: - File not found [Kernel | On_Demand] -- C:\Windows\System32\DRIVERS\nvraid.sys -- (nvraid) DRV:64bit: - File not found [Kernel | On_Demand] -- C:\Windows\System32\DRIVERS\nvlddmkm.sys -- (nvlddmkm) DRV:64bit: - File not found [Kernel | On_Demand] -- C:\Windows\System32\drivers\nvhda64v.sys -- (NVHDA) DRV:64bit: - File not found [Kernel | On_Demand] -- C:\Windows\System32\DRIVERS\nv_agp.sys -- (nv_agp) DRV:64bit: - File not found [Kernel | System] -- C:\Windows\System32\drivers\nsiproxy.sys -- (nsiproxy) DRV:64bit: - File not found [Kernel | On_Demand] -- C:\Windows\System32\DRIVERS\nfrd960.sys -- (nfrd960) DRV:64bit: - File not found [Kernel | System] -- C:\Windows\System32\DRIVERS\netbt.sys -- (NetBT) DRV:64bit: - File not found [File_System | System] -- C:\Windows\System32\DRIVERS\netbios.sys -- (NetBIOS) DRV:64bit: - File not found [Kernel | On_Demand] -- C:\Windows\System32\DRIVERS\ndiswan.sys -- (NdisWan) DRV:64bit: - File not found [Kernel | On_Demand] -- C:\Windows\System32\DRIVERS\ndisuio.sys -- (Ndisuio) DRV:64bit: - File not found [Kernel | On_Demand] -- C:\Windows\System32\DRIVERS\ndistapi.sys -- (NdisTapi) DRV:64bit: - File not found [Kernel | On_Demand] -- C:\Windows\System32\DRIVERS\ndiscap.sys -- (NdisCap) DRV:64bit: - File not found [Kernel | Boot] -- C:\Windows\System32\drivers\ndis.sys -- (NDIS) DRV:64bit: - File not found [Kernel | On_Demand] -- C:\Windows\System32\DRIVERS\nwifi.sys -- (NativeWifiP) DRV:64bit: - File not found [File_System | Boot] -- C:\Windows\System32\Drivers\mup.sys -- (Mup) DRV:64bit: - File not found [Kernel | On_Demand] -- C:\Windows\System32\DRIVERS\MTConfig.sys -- (MTConfig) DRV:64bit: - File not found [Kernel | On_Demand] -- C:\Windows\System32\drivers\MSTEE.sys -- (MSTEE) DRV:64bit: - File not found [Kernel | System] -- C:\Windows\System32\DRIVERS\mssmbios.sys -- (mssmbios) DRV:64bit: - File not found [Kernel | On_Demand] -- C:\Windows\System32\drivers\MSPQM.sys -- (MSPQM) DRV:64bit: - File not found [Kernel | On_Demand] -- C:\Windows\System32\drivers\MSPCLOCK.sys -- (MSPCLOCK) DRV:64bit: - File not found [Kernel | On_Demand] -- C:\Windows\System32\drivers\MSKSSRV.sys -- (MSKSSRV) DRV:64bit: - File not found [Kernel | Boot] -- C:\Windows\System32\DRIVERS\msisadrv.sys -- (msisadrv) DRV:64bit: - File not found [Kernel | On_Demand] -- C:\Windows\System32\drivers\mshidkmdf.sys -- (mshidkmdf) DRV:64bit: - File not found [Kernel | On_Demand] -- C:\Windows\System32\DRIVERS\msdsm.sys -- (msdsm) DRV:64bit: - File not found [Kernel | Boot] -- C:\Windows\System32\DRIVERS\msahci.sys -- (msahci) DRV:64bit: - File not found [File_System | On_Demand] -- C:\Windows\System32\DRIVERS\mrxsmb20.sys -- (mrxsmb20) DRV:64bit: - File not found [File_System | On_Demand] -- C:\Windows\System32\DRIVERS\mrxsmb10.sys -- (mrxsmb10) DRV:64bit: - File not found [File_System | On_Demand] -- C:\Windows\System32\DRIVERS\mrxsmb.sys -- (mrxsmb) DRV:64bit: - File not found [File_System | On_Demand] -- C:\Windows\System32\drivers\mrxdav.sys -- (MRxDAV) DRV:64bit: - File not found [Kernel | On_Demand] -- C:\Windows\System32\drivers\mpsdrv.sys -- (mpsdrv) DRV:64bit: - File not found [Kernel | On_Demand] -- C:\Windows\System32\DRIVERS\mpio.sys -- (mpio) DRV:64bit: - File not found [Kernel | Boot] -- C:\Windows\System32\drivers\mountmgr.sys -- (mountmgr) DRV:64bit: - File not found [Kernel | On_Demand] -- C:\Windows\System32\DRIVERS\mouhid.sys -- (mouhid) DRV:64bit: - File not found [Kernel | On_Demand] -- C:\Windows\System32\DRIVERS\mouclass.sys -- (mouclass) DRV:64bit: - File not found [Kernel | On_Demand] -- C:\Windows\System32\DRIVERS\monitor.sys -- (monitor) DRV:64bit: - File not found [Kernel | On_Demand] -- C:\Windows\System32\drivers\modem.sys -- (Modem) DRV:64bit: - File not found [Kernel | On_Demand] -- C:\Windows\System32\DRIVERS\MegaSR.sys -- (MegaSR) DRV:64bit: - File not found [Kernel | On_Demand] -- C:\Windows\System32\DRIVERS\megasas.sys -- (megasas) DRV:64bit: - File not found [Kernel | On_Demand] -- C:\Windows\System32\drivers\MBfilt64.sys -- (MBfilt) DRV:64bit: - File not found [File_System | Auto] -- C:\Windows\System32\drivers\luafv.sys -- (luafv) DRV:64bit: - File not found [Kernel | On_Demand] -- C:\Windows\System32\DRIVERS\lsi_scsi.sys -- (LSI_SCSI) DRV:64bit: - File not found [Kernel | On_Demand] -- C:\Windows\System32\DRIVERS\lsi_sas2.sys -- (LSI_SAS2) DRV:64bit: - File not found [Kernel | On_Demand] -- C:\Windows\System32\DRIVERS\lsi_sas.sys -- (LSI_SAS) DRV:64bit: - File not found [Kernel | On_Demand] -- C:\Windows\System32\DRIVERS\lsi_fc.sys -- (LSI_FC) DRV:64bit: - File not found [Kernel | Auto] -- C:\Windows\System32\DRIVERS\lltdio.sys -- (lltdio) DRV:64bit: - File not found [Kernel | On_Demand] -- C:\Windows\System32\drivers\ksthunk.sys -- (ksthunk) DRV:64bit: - File not found [Kernel | Boot] -- C:\Windows\System32\Drivers\ksecpkg.sys -- (KSecPkg) DRV:64bit: - File not found [Kernel | Boot] -- C:\Windows\System32\Drivers\ksecdd.sys -- (KSecDD) DRV:64bit: - File not found [Kernel | On_Demand] -- C:\Windows\System32\DRIVERS\kbdhid.sys -- (kbdhid) DRV:64bit: - File not found [Kernel | On_Demand] -- C:\Windows\System32\DRIVERS\kbdclass.sys -- (kbdclass) DRV:64bit: - File not found [Kernel | Boot] -- C:\Windows\System32\DRIVERS\jraid.sys -- (JRAID) DRV:64bit: - File not found [Kernel | On_Demand] -- C:\Windows\System32\DRIVERS\msiscsi.sys -- (iScsiPrt) DRV:64bit: - File not found [Kernel | On_Demand] -- C:\Windows\System32\DRIVERS\isapnp.sys -- (isapnp) DRV:64bit: - File not found [Kernel | On_Demand] -- C:\Windows\System32\drivers\irenum.sys -- (IRENUM) DRV:64bit: - File not found [Kernel | On_Demand] -- C:\Windows\System32\drivers\ipnat.sys -- (IPNAT) DRV:64bit: - File not found [Kernel | On_Demand] -- C:\Windows\System32\DRIVERS\IPMIDrv.sys -- (IPMIDRV) DRV:64bit: - File not found [Kernel | On_Demand] -- C:\Windows\System32\DRIVERS\ipfltdrv.sys -- (IpFilterDriver) DRV:64bit: - File not found [Kernel | On_Demand] -- C:\Windows\System32\DRIVERS\intelppm.sys -- (intelppm) DRV:64bit: - File not found [Kernel | On_Demand] -- C:\Windows\System32\DRIVERS\intelide.sys -- (intelide) DRV:64bit: - File not found [Kernel | On_Demand] -- C:\Windows\System32\drivers\RTKVHD64.sys -- (IntcAzAudAddService) Service for Realtek HD Audio (WDM) DRV:64bit: - File not found [Kernel | On_Demand] -- C:\Windows\System32\DRIVERS\iirsp.sys -- (iirsp) DRV:64bit: - File not found [Kernel | On_Demand] -- C:\Windows\System32\DRIVERS\iaStorV.sys -- (iaStorV) DRV:64bit: - File not found [Kernel | Boot] -- C:\Windows\System32\DRIVERS\iaStor.sys -- (iaStor) DRV:64bit: - File not found [Kernel | On_Demand] -- C:\Windows\System32\DRIVERS\i8042prt.sys -- (i8042prt) DRV:64bit: - File not found [Kernel | Boot] -- C:\Windows\System32\drivers\hwpolicy.sys -- (hwpolicy) DRV:64bit: - File not found [Kernel | On_Demand] -- C:\Windows\System32\drivers\HTTP.sys -- (HTTP) DRV:64bit: - File not found [Kernel | On_Demand] -- C:\Windows\System32\DRIVERS\HpSAMD.sys -- (HpSAMD) DRV:64bit: - File not found [Kernel | On_Demand] -- C:\Windows\System32\DRIVERS\hidusb.sys -- (HidUsb) DRV:64bit: - File not found [Kernel | On_Demand] -- C:\Windows\System32\DRIVERS\hidir.sys -- (HidIr) DRV:64bit: - File not found [Kernel | On_Demand] -- C:\Windows\System32\DRIVERS\hidbth.sys -- (HidBth) DRV:64bit: - File not found [Kernel | On_Demand] -- C:\Windows\System32\DRIVERS\HidBatt.sys -- (HidBatt) DRV:64bit: - File not found [Kernel | On_Demand] -- C:\Windows\System32\DRIVERS\HDAudBus.sys -- (HDAudBus) DRV:64bit: - File not found [Kernel | On_Demand] -- C:\Windows\System32\drivers\HdAudio.sys -- (HdAudAddService) DRV:64bit: - File not found [Kernel | On_Demand] -- C:\Windows\System32\drivers\hcw85cir.sys -- (hcw85cir) DRV:64bit: - File not found [Kernel | On_Demand] -- C:\Windows\System32\DRIVERS\gagp30kx.sys -- (gagp30kx) DRV:64bit: - File not found [Kernel | Boot] -- C:\Windows\System32\DRIVERS\fvevol.sys -- (fvevol) DRV:64bit: - File not found [Kernel | On_Demand] -- C:\Windows\System32\DRIVERS\fssfltr.sys -- (fssfltr) DRV:64bit: - File not found [File_System | On_Demand] -- C:\Windows\System32\drivers\FsDepends.sys -- (FsDepends) DRV:64bit: - File not found [File_System | Boot] -- C:\Windows\System32\drivers\fltmgr.sys -- (FltMgr) DRV:64bit: - File not found [Kernel | On_Demand] -- C:\Windows\System32\DRIVERS\flpydisk.sys -- (flpydisk) DRV:64bit: - File not found [File_System | On_Demand] -- C:\Windows\System32\drivers\filetrace.sys -- (Filetrace) DRV:64bit: - File not found [File_System | Boot] -- C:\Windows\System32\drivers\fileinfo.sys -- (FileInfo) DRV:64bit: - File not found [Kernel | On_Demand] -- C:\Windows\System32\DRIVERS\fdc.sys -- (fdc) DRV:64bit: - File not found [Kernel | On_Demand] -- C:\Windows\System32\DRIVERS\errdev.sys -- (ErrDev) DRV:64bit: - File not found [Kernel | Auto] -- C:\Windows\System32\DRIVERS\epfwwfp.sys -- (epfwwfp) DRV:64bit: - File not found [Kernel | On_Demand] -- C:\Windows\System32\DRIVERS\Epfwndis.sys -- (Epfwndis) DRV:64bit: - File not found [Kernel | Auto] -- C:\Windows\System32\DRIVERS\epfw.sys -- (epfw) DRV:64bit: - File not found [Kernel | On_Demand] -- C:\Windows\System32\DRIVERS\elxstor.sys -- (elxstor) DRV:64bit: - File not found [Kernel | System] -- C:\Windows\System32\DRIVERS\ehdrv.sys -- (ehdrv) DRV:64bit: - File not found [Kernel | On_Demand] -- C:\Windows\System32\DRIVERS\evbda.sys -- (ebdrv) DRV:64bit: - File not found [File_System | Auto] -- C:\Windows\System32\DRIVERS\eamonm.sys -- (eamonm) DRV:64bit: - File not found [Kernel | On_Demand] -- C:\Windows\System32\DRIVERS\e1k62x64.sys -- (e1kexpress) Intel® DRV:64bit: - File not found [Kernel | On_Demand] -- C:\Windows\System32\drivers\dxgkrnl.sys -- (DXGKrnl) DRV:64bit: - File not found [Kernel | On_Demand] -- C:\Windows\System32\drivers\drmkaud.sys -- (drmkaud) DRV:64bit: - File not found [Kernel | Boot] -- C:\Windows\System32\DRIVERS\disk.sys -- (Disk) DRV:64bit: - File not found [Kernel | System] -- C:\Windows\System32\drivers\discache.sys -- (discache) DRV:64bit: - File not found [File_System | System] -- C:\Windows\System32\Drivers\dfsc.sys -- (DfsC) DRV:64bit: - File not found [Kernel | Disabled] -- C:\Windows\System32\DRIVERS\crcdisk.sys -- (crcdisk) DRV:64bit: - File not found [Kernel | On_Demand] -- C:\Windows\System32\DRIVERS\CompositeBus.sys -- (CompositeBus) DRV:64bit: - File not found [Kernel | On_Demand] -- C:\Windows\System32\DRIVERS\compbatt.sys -- (Compbatt) DRV:64bit: - File not found [Kernel | Boot] -- C:\Windows\System32\Drivers\cng.sys -- (CNG) DRV:64bit: - File not found [Kernel | On_Demand] -- C:\Windows\System32\DRIVERS\cmdide.sys -- (cmdide) DRV:64bit: - File not found [Kernel | On_Demand] -- C:\Windows\System32\DRIVERS\CmBatt.sys -- (CmBatt) DRV:64bit: - File not found [Kernel | Boot] -- C:\Windows\System32\CLFS.sys -- (CLFS) DRV:64bit: - File not found [Kernel | On_Demand] -- C:\Windows\System32\DRIVERS\circlass.sys -- (circlass) DRV:64bit: - File not found [Kernel | System] -- C:\Windows\System32\DRIVERS\cdrom.sys -- (cdrom) DRV:64bit: - File not found [File_System | Disabled] -- C:\Windows\System32\DRIVERS\cdfs.sys -- (cdfs) DRV:64bit: - File not found [Kernel | On_Demand] -- C:\Windows\System32\DRIVERS\bthmodem.sys -- (BTHMODEM) DRV:64bit: - File not found [Kernel | On_Demand] -- C:\Windows\System32\Drivers\BrUsbSer.sys -- (BrUsbSer) DRV:64bit: - File not found [Kernel | On_Demand] -- C:\Windows\System32\Drivers\BrUsbMdm.sys -- (BrUsbMdm) DRV:64bit: - File not found [Kernel | On_Demand] -- C:\Windows\System32\Drivers\BrSerWdm.sys -- (BrSerWdm) DRV:64bit: - File not found [Kernel | On_Demand] -- C:\Windows\System32\Drivers\Brserid.sys -- (Brserid) Brother MFC Serial Port Interface Driver (WDM) DRV:64bit: - File not found [Kernel | On_Demand] -- C:\Windows\System32\DRIVERS\BrFiltUp.sys -- (BrFiltUp) DRV:64bit: - File not found [Kernel | On_Demand] -- C:\Windows\System32\DRIVERS\BrFiltLo.sys -- (BrFiltLo) DRV:64bit: - File not found [File_System | On_Demand] -- C:\Windows\System32\DRIVERS\bowser.sys -- (bowser) DRV:64bit: - File not found [Kernel | System] -- C:\Windows\System32\DRIVERS\blbdrive.sys -- (blbdrive) DRV:64bit: - File not found [Kernel | On_Demand] -- C:\Windows\System32\DRIVERS\b57nd60a.sys -- (b57nd60a) DRV:64bit: - File not found [Kernel | On_Demand] -- C:\Windows\System32\DRIVERS\bxvbda.sys -- (b06bdrv) DRV:64bit: - File not found [Kernel | Boot] -- C:\Windows\System32\DRIVERS\atapi.sys -- (atapi) DRV:64bit: - File not found [Kernel | On_Demand] -- C:\Windows\System32\DRIVERS\asyncmac.sys -- (AsyncMac) DRV:64bit: - File not found [Kernel | On_Demand] -- C:\Windows\System32\DRIVERS\arcsas.sys -- (arcsas) DRV:64bit: - File not found [Kernel | On_Demand] -- C:\Windows\System32\DRIVERS\arc.sys -- (arc) DRV:64bit: - File not found [Kernel | On_Demand] -- C:\Windows\System32\drivers\appid.sys -- (AppID) DRV:64bit: - File not found [Kernel | Boot] -- C:\Windows\System32\DRIVERS\amdxata.sys -- (amdxata) DRV:64bit: - File not found [Kernel | On_Demand] -- C:\Windows\System32\DRIVERS\amdsbs.sys -- (amdsbs) DRV:64bit: - File not found [Kernel | On_Demand] -- C:\Windows\System32\DRIVERS\amdsata.sys -- (amdsata) DRV:64bit: - File not found [Kernel | On_Demand] -- C:\Windows\System32\DRIVERS\amdppm.sys -- (AmdPPM) DRV:64bit: - File not found [Kernel | On_Demand] -- C:\Windows\System32\DRIVERS\amdk8.sys -- (AmdK8) DRV:64bit: - File not found [Kernel | On_Demand] -- C:\Windows\System32\DRIVERS\amdide.sys -- (amdide) DRV:64bit: - File not found [Kernel | On_Demand] -- C:\Windows\System32\DRIVERS\aliide.sys -- (aliide) DRV:64bit: - File not found [Kernel | On_Demand] -- C:\Windows\System32\DRIVERS\agp440.sys -- (agp440) DRV:64bit: - File not found [Kernel | System] -- C:\Windows\System32\drivers\afd.sys -- (AFD) DRV:64bit: - File not found [Kernel | On_Demand] -- C:\Windows\System32\DRIVERS\adpu320.sys -- (adpu320) DRV:64bit: - File not found [Kernel | On_Demand] -- C:\Windows\System32\DRIVERS\adpahci.sys -- (adpahci) DRV:64bit: - File not found [Kernel | On_Demand] -- C:\Windows\System32\DRIVERS\adp94xx.sys -- (adp94xx) DRV:64bit: - File not found [Kernel | On_Demand] -- C:\Windows\System32\DRIVERS\acpipmi.sys -- (AcpiPmi) DRV:64bit: - File not found [Kernel | Boot] -- C:\Windows\System32\DRIVERS\ACPI.sys -- (ACPI) DRV:64bit: - File not found [Kernel | On_Demand] -- C:\Windows\System32\DRIVERS\1394ohci.sys -- (1394ohci) DRV:64bit: - [2009/07/14 02:19:10 | 000,019,008 | ---- | M] (Microsoft Corporation) [File_System | On_Demand] -- C:\Windows\System32\drivers\wimmount.sys -- (WIMMount) DRV - [2009/07/14 02:19:10 | 000,019,008 | ---- | M] (Microsoft Corporation) [File_System | On_Demand] -- C:\Windows\SysWOW64\drivers\wimmount.sys -- (WIMMount) DRV - [2008/08/14 07:57:42 | 000,074,720 | ---- | M] (Adobe Systems, Inc.) [Kernel | Auto] -- C:\Windows\SysWow64\drivers\adfs.sys -- (adfs) ========== Standard Registry (SafeList) ========== ========== Internet Explorer ========== IE:64bit: - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://homepage.packardbell.com/rdr.aspx?b=ACPW&l=040c&m=ixtreme_m5740&r=173603102016p04f5v195y44130745 IE:64bit: - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://homepage.packardbell.com/rdr.aspx?b=ACPW&l=040c&m=ixtreme_m5740&r=173603102016p04f5v195y44130745 IE - HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0 IE - HKU\S-1-5-21-1301541909-812291784-3654414866-1001\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://homepage.packardbell.com/rdr.aspx?b=ACPW&l=040c&m=ixtreme_m5740&r=173603102016p04f5v195y44130745 IE - HKU\S-1-5-21-1301541909-812291784-3654414866-1001\Software\Microsoft\Internet Explorer\Main,Start Page = Toute l'actualité avec Libération IE - HKU\S-1-5-21-1301541909-812291784-3654414866-1001\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0 FF - HKLM\software\mozilla\Firefox\Extensions\\{ABDE892B-13A8-4d1b-88E6-365A6E755758}: C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\Firefox\Ext [2010/12/10 17:19:13 | 000,000,000 | ---D | M] FF - HKLM\software\mozilla\Firefox\Extensions\\FFToolbar@bitdefender.com: C:\Program Files\BitDefender\BitDefender 2010\bdaphffext\ FF - HKLM\software\mozilla\Mozilla Firefox 3.6.12\extensions\\Components: C:\Program Files (x86)\Mozilla Firefox\components [2010/12/10 17:19:10 | 000,000,000 | ---D | M] FF - HKLM\software\mozilla\Mozilla Firefox 3.6.12\extensions\\Plugins: C:\Program Files (x86)\Mozilla Firefox\plugins [2010/12/10 17:19:20 | 000,000,000 | ---D | M] FF - HKLM\software\mozilla\Thunderbird\Extensions\\eplgTb@eset.com: C:\Program Files\ESET\ESET Smart Security\Mozilla Thunderbird [2010/12/14 17:21:07 | 000,000,000 | ---D | M] [2010/12/16 13:32:38 | 000,000,000 | ---D | M] -- C:\Program Files (x86)\Mozilla Firefox\extensions [2010/06/10 14:15:23 | 000,000,000 | ---D | M] (Java Console) -- C:\Program Files (x86)\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0020-ABCDEFFEDCBA} [2010/08/12 13:44:32 | 000,000,000 | ---D | M] (Java Console) -- C:\Program Files (x86)\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0021-ABCDEFFEDCBA} [2010/11/08 18:13:12 | 000,000,000 | ---D | M] (Java Console) -- C:\Program Files (x86)\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0022-ABCDEFFEDCBA} [2010/12/16 13:32:38 | 000,000,000 | ---D | M] (Java Console) -- C:\Program Files (x86)\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0023-ABCDEFFEDCBA} [2010/11/12 18:53:06 | 000,472,808 | ---- | M] (Sun Microsystems, Inc.) -- C:\Program Files (x86)\Mozilla Firefox\plugins\npdeployJava1.dll [2010/07/12 17:33:56 | 000,012,800 | ---- | M] (Nullsoft, Inc.) -- C:\Program Files (x86)\Mozilla Firefox\plugins\npwachk.dll [2010/08/13 09:26:08 | 000,001,516 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\amazon-france.xml [2010/08/13 09:26:08 | 000,001,822 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\cnrtl-tlfi-fr.xml [2010/08/13 09:26:08 | 000,000,757 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\eBay-france.xml [2010/08/13 09:26:08 | 000,001,426 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\wikipedia-fr.xml [2010/08/13 09:26:08 | 000,000,956 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\yahoo-france.xml O1 HOSTS File: ([2009/06/10 22:00:26 | 000,000,824 | ---- | M]) - C:\Windows\System32\drivers\etc\hosts O2:64bit: - BHO: (Windows Live ID Sign-in Helper) - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.) O2:64bit: - BHO: (Google Toolbar Helper) - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll (Google Inc.) O2:64bit: - BHO: (Google Toolbar Notifier BHO) - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\5.6.5805.1910\swg64.dll (Google Inc.) O2:64bit: - BHO: (Office Document Cache Handler) - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\PROGRA~1\MICROS~2\Office14\URLREDIR.DLL (Microsoft Corporation) O2 - BHO: (ContributeBHO Class) - {074C1DC5-9320-4A9A-947D-C042949C6216} - C:\Program Files (x86)\Adobe\/Adobe Contribute CS4/contributeieplugin.dll () O2 - BHO: (RealPlayer Download and Record Plugin for Internet Explorer) - {3049C3E9-B461-4BC5-8870-4C09146192CA} - C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\IE\rpbrowserrecordplugin.dll (RealPlayer) O2 - BHO: (Spybot-S&D IE Protection) - {53707962-6F74-2D53-2644-206D7942484F} - C:\Program Files (x86)\Spybot - Search & Destroy\SDHelper.dll (Safer Networking Limited) O2 - BHO: (Search Helper) - {6EBF7485-159F-4bff-A14F-B9E3AAC4465B} - C:\Program Files (x86)\Microsoft\Search Enhancement Pack\Search Helper\SEPsearchhelperie.dll (Microsoft Corporation) O2 - BHO: (Programme d'aide de l'Assistant de connexion Windows Live ID) - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\microsoft shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.) O2 - BHO: (Windows Live Messenger Companion Helper) - {9FDDE16B-836F-4806-AB1F-1455CBEFF289} - C:\Program Files (x86)\Windows Live\Companion\companioncore.dll (Microsoft Corporation) O2 - BHO: (Google Toolbar Helper) - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll (Google Inc.) O2 - BHO: (Google Toolbar Notifier BHO) - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files (x86)\Google\GoogleToolbarNotifier\5.6.5805.1910\swg.dll (Google Inc.) O2 - BHO: (Office Document Cache Handler) - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\Program Files (x86)\Microsoft Office\Office14\URLREDIR.DLL (Microsoft Corporation) O2 - BHO: (Bing Bar BHO) - {d2ce3e00-f94a-4740-988e-03dc2f38c34f} - C:\Program Files (x86)\MSN Toolbar\Platform\6.3.2322.0\npwinext.dll (Microsoft Corporation) O3:64bit: - HKLM\..\Toolbar: (Google Toolbar) - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll (Google Inc.) O3:64bit: - HKLM\..\Toolbar: (no name) - Locked - No CLSID value found. O3 - HKLM\..\Toolbar: (Google Toolbar) - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll (Google Inc.) O3 - HKLM\..\Toolbar: (Contribute Toolbar) - {517BDDE4-E3A7-4570-B21E-2B52B6139FC7} - C:\Program Files (x86)\Adobe\/Adobe Contribute CS4/contributeieplugin.dll () O3 - HKLM\..\Toolbar: (@C:\Program Files (x86)\MSN Toolbar\Platform\6.3.2322.0\npwinext.dll,-100) - {8dcb7100-df86-4384-8842-8fa844297b3f} - C:\Program Files (x86)\MSN Toolbar\Platform\6.3.2322.0\npwinext.dll (Microsoft Corporation) O3 - HKLM\..\Toolbar: (no name) - Locked - No CLSID value found. O3:64bit: - HKU\S-1-5-21-1301541909-812291784-3654414866-1001\..\Toolbar\WebBrowser: (Google Toolbar) - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll (Google Inc.) O3 - HKU\S-1-5-21-1301541909-812291784-3654414866-1001\..\Toolbar\WebBrowser: (Google Toolbar) - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll (Google Inc.) O4:64bit: - HKLM..\Run: [egui] C:\Program Files\ESET\ESET Smart Security\egui.exe (ESET) O4:64bit: - HKLM..\Run: [iAAnotif] C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\iaanotif.exe (Intel Corporation) O4:64bit: - HKLM..\Run: [RtHDVCpl] C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe (Realtek Semiconductor) O4:64bit: - HKLM..\Run: [WrtMon.exe] C:\Windows\System32\spool\drivers\x64\3\WrtMon.exe () O4 - HKLM..\Run: [] File not found O4 - HKLM..\Run: [Acrobat Assistant 8.0] C:\Program Files (x86)\Adobe\Acrobat 8.0\Acrobat\Acrotray.exe (Adobe Systems Inc.) O4 - HKLM..\Run: [Adobe_ID0ENQBO] C:\PROGRA~2\COMMON~1\Adobe\ADOBEV~1\Server\bin\VERSIO~2.EXE (Adobe Systems Incorporated) O4 - HKLM..\Run: [AdobeCS4ServiceManager] C:\Program Files (x86)\Common Files\Adobe\CS4ServiceManager\CS4ServiceManager.exe (Adobe Systems Incorporated) O4 - HKLM..\Run: [Packard Bell Photo Frame] C:\Program Files (x86)\Packard Bell Photo Frame\ButtonMonitor.exe (IOI) O4 - HKLM..\Run: [TkBellExe] C:\program files (x86)\real\realplayer\Update\realsched.exe (RealNetworks, Inc.) O4 - HKLM..\Run: [unlockerAssistant] C:\Program Files (x86)\Unlocker\UnlockerAssistant.exe File not found O4 - HKU\S-1-5-19..\Run: [sidebar] C:\Program Files (x86)\Windows Sidebar\Sidebar.exe (Microsoft Corporation) O4 - HKU\S-1-5-20..\Run: [sidebar] C:\Program Files (x86)\Windows Sidebar\Sidebar.exe (Microsoft Corporation) O4 - HKU\S-1-5-21-1301541909-812291784-3654414866-1001..\Run: [swg] C:\Program Files (x86)\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe (Google Inc.) O4 - HKU\S-1-5-19..\RunOnce: [mctadmin] C:\Windows\SysWow64\mctadmin.exe File not found O4 - HKU\S-1-5-20..\RunOnce: [mctadmin] C:\Windows\SysWow64\mctadmin.exe File not found O4 - Startup: Error locating startup folders. O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktop = 1 O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorAdmin = 5 O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorUser = 3 O7 - HKU\S-1-5-21-1301541909-812291784-3654414866-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145 O8:64bit: - Extra context menu item: &Envoyer à OneNote - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dll (Microsoft Corporation) O8:64bit: - Extra context menu item: Google Sidewiki... - C:\Program Files (x86)\Google\Google Toolbar\Component\GoogleToolbarDynamic_mui_en_E11712C84EA7E12B.dll (Google Inc.) O8 - Extra context menu item: &Envoyer à OneNote - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dll (Microsoft Corporation) O8 - Extra context menu item: Google Sidewiki... - C:\Program Files (x86)\Google\Google Toolbar\Component\GoogleToolbarDynamic_mui_en_E11712C84EA7E12B.dll (Google Inc.) O9:64bit: - Extra Button: Envoyer à OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office\Office14\ONBttnIE.dll (Microsoft Corporation) O9:64bit: - Extra 'Tools' menuitem : &Envoyer à OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office\Office14\ONBttnIE.dll (Microsoft Corporation) O9:64bit: - Extra Button: Notes &liées OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files\Microsoft Office\Office14\ONBttnIELinkedNotes.dll (Microsoft Corporation) O9:64bit: - Extra 'Tools' menuitem : Notes &liées OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files\Microsoft Office\Office14\ONBttnIELinkedNotes.dll (Microsoft Corporation) O9 - Extra Button: @C:\Program Files (x86)\Windows Live\Companion\companionlang.dll,-600 - {0000036B-C524-4050-81A0-243669A86B9F} - C:\Program Files (x86)\Windows Live\Companion\companioncore.dll (Microsoft Corporation) O9 - Extra Button: @C:\Program Files (x86)\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1004 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll (Microsoft Corporation) O9 - Extra 'Tools' menuitem : @C:\Program Files (x86)\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1003 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll (Microsoft Corporation) O9 - Extra Button: Envoyer à OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dll (Microsoft Corporation) O9 - Extra 'Tools' menuitem : &Envoyer à OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dll (Microsoft Corporation) O9 - Extra Button: Notes &liées OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIELinkedNotes.dll (Microsoft Corporation) O9 - Extra 'Tools' menuitem : Notes &liées OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIELinkedNotes.dll (Microsoft Corporation) O9 - Extra 'Tools' menuitem : Spybot - Search && Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\Program Files (x86)\Spybot - Search & Destroy\SDHelper.dll (Safer Networking Limited) O10:64bit: - NameSpace_Catalog5\Catalog_Entries\000000000007 [] - C:\Program Files (x86)\Common Files\microsoft shared\Windows Live\WLIDNSP.DLL (Microsoft Corp.) O10:64bit: - NameSpace_Catalog5\Catalog_Entries\000000000008 [] - C:\Program Files (x86)\Common Files\microsoft shared\Windows Live\WLIDNSP.DLL (Microsoft Corp.) O10 - NameSpace_Catalog5\Catalog_Entries\000000000007 [] - C:\Program Files (x86)\Common Files\microsoft shared\Windows Live\WLIDNSP.DLL (Microsoft Corp.) O10 - NameSpace_Catalog5\Catalog_Entries\000000000008 [] - C:\Program Files (x86)\Common Files\microsoft shared\Windows Live\WLIDNSP.DLL (Microsoft Corp.) O13:64bit: - gopher Prefix: missing O13 - gopher Prefix: missing O16 - DPF: {17492023-C23A-453E-A040-C7C580BBF700} http://download.microsoft.com/download/E/5/6/E5611B10-0D6D-4117-8430-A67417AA88CD/LegitCheckControl.cab (Windows Genuine Advantage Validation Tool) O16 - DPF: {233C1507-6A77-46A4-9443-F871F945D258} http://download.macromedia.com/pub/shockwave/cabs/director/sw.cab (Shockwave ActiveX Control) O16 - DPF: {3860DD98-0549-4D50-AA72-5D17D200EE10} http://cdn.scan.onecare.live.com/resource/download/scanner/en-US/wlscctrl2.cab (Windows Live OneCare safety scanner control) O16 - DPF: {3D3B42C2-11BF-4732-A304-A01384B70D68} http://picasaweb.google.fr/s/v/62.12/uploader2.cab (UploadListView Class) O16 - DPF: {4871A87A-BFDD-4106-8153-FFDE2BAC2967} http://dlm.tools.akamai.com/dlmanager/versions/activex/dlm-activex-2.2.5.7.cab (DLM Control) O16 - DPF: {5D86DDB5-BDF9-441B-9E9E-D4730F4EE499} http://download.bitdefender.com/resources/scanner/sources/fr/scan8/oscan8.cab (BDSCANONLINE Control) O16 - DPF: {7530BFB8-7293-4D34-9923-61A11451AFC5} http://download.eset.com/special/eos/OnlineScanner.cab (OnlineScanner Control) O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jinstall-1_6_0_23-windows-i586.cab (Java Plug-in 1.6.0_23) O16 - DPF: {C345E174-3E87-4F41-A01C-B066A90A49B4} http://trial.trymicrosoftoffice.com/trialoaa/buymsoffice_assets/framework/microsoft/wrc32.ocx (WRC Class) O16 - DPF: {CAFEEFAC-0016-0000-0023-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_23-windows-i586.cab (Java Plug-in 1.6.0_23) O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_23-windows-i586.cab (Java Plug-in 1.6.0_23) O16 - DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} http://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab (Reg Error: Key error.) O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 212.27.40.241 212.27.40.240 O18:64bit: - Protocol\Handler\livecall {828030A1-22C1-4009-854F-8E305202313F} - Reg Error: Key error. File not found O18:64bit: - Protocol\Handler\ms-help {314111c7-a502-11d2-bbca-00c04f8ec294} - Reg Error: Key error. File not found O18:64bit: - Protocol\Handler\ms-itss {0A9007C0-4076-11D3-8789-0000F8105754} - Reg Error: Key error. File not found O18:64bit: - Protocol\Handler\msnim {828030A1-22C1-4009-854F-8E305202313F} - Reg Error: Key error. File not found O18:64bit: - Protocol\Handler\wlmailhtml {03C514A3-1EFB-4856-9F99-10D7BE1653C0} - Reg Error: Key error. File not found O18:64bit: - Protocol\Handler\wlpg {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - Reg Error: Key error. File not found O18 - Protocol\Handler\livecall {828030A1-22C1-4009-854F-8E305202313F} - C:\Program Files (x86)\Windows Live\Messenger\msgrapp.dll (Microsoft Corporation) O18 - Protocol\Handler\ms-help {314111c7-a502-11d2-bbca-00c04f8ec294} - C:\Program Files (x86)\Common Files\microsoft shared\Help\hxds.dll (Microsoft Corporation) O18 - Protocol\Handler\ms-itss {0A9007C0-4076-11D3-8789-0000F8105754} - C:\Program Files (x86)\Common Files\microsoft shared\Information Retrieval\msitss.dll (Microsoft Corporation) O18 - Protocol\Handler\msnim {828030A1-22C1-4009-854F-8E305202313F} - C:\Program Files (x86)\Windows Live\Messenger\msgrapp.dll (Microsoft Corporation) O18 - Protocol\Handler\wlmailhtml {03C514A3-1EFB-4856-9F99-10D7BE1653C0} - C:\Program Files (x86)\Windows Live\Mail\mailcomm.dll (Microsoft Corporation) O18 - Protocol\Handler\wlpg {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files (x86)\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll (Microsoft Corporation) O18:64bit: - Protocol\Filter\text/xml {807573E5-5146-11D5-A672-00B0D022E945} - C:\Program Files\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLL (Microsoft Corporation) O18 - Protocol\Filter\text/xml {807573E5-5146-11D5-A672-00B0D022E945} - C:\Program Files (x86)\Common Files\microsoft shared\OFFICE14\MSOXMLMF.DLL (Microsoft Corporation) O20:64bit: - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\System32\explorer.exe (Microsoft Corporation) O20:64bit: - HKLM Winlogon: VMApplet - (SystemPropertiesPerformance.exe) - C:\Windows\System32\SystemPropertiesPerformance.exe (Microsoft Corporation) O20:64bit: - HKLM Winlogon: VMApplet - (/pagefile) - File not found O20 - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\SysWow64\explorer.exe (Microsoft Corporation) O20 - HKLM Winlogon: VMApplet - (SystemPropertiesPerformance.exe) - C:\Windows\SysWow64\SystemPropertiesPerformance.exe (Microsoft Corporation) O20 - HKLM Winlogon: VMApplet - (/pagefile) - File not found O21:64bit: - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - CLSID or File not found. O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - CLSID or File not found. O30:64bit: - LSA: Security Packages - (pku2u) - C:\Windows\System32\pku2u.dll (Microsoft Corporation) O30:64bit: - LSA: Security Packages - (livessp) - C:\Windows\System32\livessp.dll (Microsoft Corp.) O30 - LSA: Security Packages - (pku2u) - C:\Windows\SysWow64\pku2u.dll (Microsoft Corporation) O30 - LSA: Security Packages - (livessp) - C:\Windows\SysWow64\livessp.dll (Microsoft Corp.) O32 - HKLM CDRom: AutoRun - 1 O32 - AutoRun File - [2010/11/20 14:19:18 | 000,000,000 | ---D | M] - D:\automne2007 -- [ NTFS ] O32 - AutoRun File - [2006/03/24 12:06:41 | 000,000,053 | R--- | M] () - E:\AUTORUN.INF -- [ CDFS ] O34 - HKLM BootExecute: (autocheck autochk *) - File not found 64bit: O35 - HKLM\..comfile [open] -- "%1" %* File not found 64bit: O35 - HKLM\..exefile [open] -- "%1" %* File not found O35 - HKLM\..comfile [open] -- "%1" %* O35 - HKLM\..exefile [open] -- "%1" %* O37:64bit: - HKLM\...com [@ = comfile] -- "%1" %* O37:64bit: - HKLM\...exe [@ = exefile] -- "%1" %* O37 - HKLM\...com [@ = comfile] -- "%1" %* O37 - HKLM\...exe [@ = exefile] -- "%1" %* ========== Files/Folders - Created Within 30 Days ========== [2010/12/16 15:10:34 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Unlocker [2010/12/16 13:32:36 | 000,157,472 | ---- | C] (Sun Microsystems, Inc.) -- C:\Windows\SysWow64\javaws.exe [2010/12/16 13:32:36 | 000,157,472 | ---- | C] (Sun Microsystems, Inc.) -- C:\Windows\System32\javaws.exe [2010/12/16 13:32:36 | 000,145,184 | ---- | C] (Sun Microsystems, Inc.) -- C:\Windows\SysWow64\javaw.exe [2010/12/16 13:32:36 | 000,145,184 | ---- | C] (Sun Microsystems, Inc.) -- C:\Windows\System32\javaw.exe [2010/12/16 13:32:36 | 000,145,184 | ---- | C] (Sun Microsystems, Inc.) -- C:\Windows\SysWow64\java.exe [2010/12/16 13:32:36 | 000,145,184 | ---- | C] (Sun Microsystems, Inc.) -- C:\Windows\System32\java.exe [2010/12/15 09:48:32 | 000,002,048 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\tzres.dll [2010/12/15 09:48:28 | 000,496,128 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\taskschd.dll [2010/12/15 09:48:28 | 000,496,128 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\taskschd.dll [2010/12/15 09:48:28 | 000,192,000 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\taskeng.exe [2010/12/15 09:48:27 | 000,305,152 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\taskcomp.dll [2010/12/15 09:48:27 | 000,305,152 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\taskcomp.dll [2010/12/15 09:48:27 | 000,179,712 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\schtasks.exe [2010/12/15 09:48:27 | 000,179,712 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\schtasks.exe [2010/12/15 09:48:25 | 000,294,400 | ---- | C] (Adobe Systems Incorporated) -- C:\Windows\SysWow64\atmfd.dll [2010/12/15 09:48:25 | 000,294,400 | ---- | C] (Adobe Systems Incorporated) -- C:\Windows\System32\atmfd.dll [2010/12/15 09:48:25 | 000,034,304 | ---- | C] (Adobe Systems) -- C:\Windows\SysWow64\atmlib.dll [2010/12/15 09:48:25 | 000,034,304 | ---- | C] (Adobe Systems) -- C:\Windows\System32\atmlib.dll [2010/12/15 09:48:24 | 000,314,368 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\webio.dll [2010/12/15 09:48:24 | 000,314,368 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\webio.dll [2010/12/15 09:48:17 | 002,063,360 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\iertutil.dll [2010/12/15 09:48:17 | 002,063,360 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\iertutil.dll [2010/12/15 09:48:15 | 000,606,208 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mstime.dll [2010/12/15 09:48:15 | 000,606,208 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mstime.dll [2010/12/15 09:48:11 | 000,978,944 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\wininet.dll [2010/12/15 09:48:11 | 000,978,944 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wininet.dll [2010/12/15 09:48:10 | 001,638,912 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mshtml.tlb [2010/12/15 09:48:10 | 000,599,040 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\msfeeds.dll [2010/12/15 09:48:10 | 000,599,040 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msfeeds.dll [2010/12/15 09:48:10 | 000,386,048 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\html.iec [2010/12/15 09:48:10 | 000,386,048 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\html.iec [2010/12/15 09:48:10 | 000,381,440 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\iedkcs32.dll [2010/12/15 09:48:10 | 000,381,440 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\iedkcs32.dll [2010/12/15 09:48:10 | 000,185,856 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\iepeers.dll [2010/12/15 09:48:10 | 000,185,856 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\iepeers.dll [2010/12/15 09:48:10 | 000,176,640 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ieui.dll [2010/12/15 09:48:10 | 000,176,640 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ieui.dll [2010/12/15 09:48:10 | 000,067,072 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mshtmled.dll [2010/12/15 09:48:10 | 000,067,072 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mshtmled.dll [2010/12/15 09:48:10 | 000,064,512 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\msfeedsbs.dll [2010/12/15 09:48:10 | 000,064,512 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msfeedsbs.dll [2010/12/15 09:48:10 | 000,048,128 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\jsproxy.dll [2010/12/15 09:48:10 | 000,048,128 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\jsproxy.dll [2010/12/15 09:48:10 | 000,044,544 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\licmgr10.dll [2010/12/15 09:48:10 | 000,044,544 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\licmgr10.dll [2010/12/15 09:48:10 | 000,012,800 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\msfeedssync.exe [2010/12/15 09:48:10 | 000,012,800 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msfeedssync.exe [2010/12/14 18:39:44 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\DESIGNER [2010/12/14 18:39:35 | 000,000,000 | ---D | C] -- C:\Windows\PCHEALTH [2010/12/14 18:37:51 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Microsoft Analysis Services [2010/12/14 18:37:32 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Microsoft Office [2010/12/14 18:37:20 | 000,000,000 | RH-D | C] -- C:\MSOCache [2010/12/14 15:02:25 | 000,000,000 | ---D | C] -- C:\_OTL [2010/12/10 17:19:15 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\xing shared [2010/12/10 17:19:10 | 000,199,904 | ---- | C] (RealNetworks, Inc.) -- C:\Windows\SysWow64\rmoc3260.dll [2010/12/10 17:19:10 | 000,199,904 | ---- | C] (RealNetworks, Inc.) -- C:\Windows\System32\rmoc3260.dll [2010/12/10 17:18:55 | 000,272,896 | ---- | C] (Progressive Networks) -- C:\Windows\SysWow64\pncrt.dll [2010/12/10 17:18:55 | 000,272,896 | ---- | C] (Progressive Networks) -- C:\Windows\System32\pncrt.dll [2010/12/09 19:07:43 | 000,000,000 | -HSD | C] -- C:\found.003 [2010/12/08 20:02:41 | 000,000,000 | ---D | C] -- C:\Kaspersky Rescue Disk 10.0 [2010/12/08 14:57:59 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\ESET [2010/12/03 11:04:04 | 000,038,224 | ---- | C] (Malwarebytes Corporation) -- C:\Windows\SysWow64\drivers\mbamswissarmy.sys [2010/12/03 11:04:04 | 000,038,224 | ---- | C] (Malwarebytes Corporation) -- C:\Windows\System32\drivers\mbamswissarmy.sys [2010/12/03 11:04:01 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Malwarebytes' Anti-Malware [2010/11/30 18:46:38 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Spybot - Search & Destroy [2010/11/30 11:01:55 | 000,000,000 | ---D | C] -- C:\Packard Bell [2010/11/29 13:59:59 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Microsoft [2010/11/29 13:59:57 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\MSN Toolbar [2010/11/29 13:59:43 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Bing Bar Installer [2010/11/29 13:59:30 | 002,983,424 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\UIRibbon.dll [2010/11/29 13:59:30 | 002,983,424 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\UIRibbon.dll [2010/11/29 13:59:30 | 001,164,800 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\UIRibbonRes.dll [2010/11/29 13:59:30 | 001,164,800 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\UIRibbonRes.dll [2010/11/27 16:32:14 | 000,027,632 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\CTL3DV2.DLL [2010/11/27 16:32:14 | 000,027,632 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\CTL3DV2.DLL [2010/11/27 16:31:59 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\NewSoft [2010/11/27 16:29:11 | 000,212,480 | ---- | C] (Eastman Kodak) -- C:\Windows\PCDLIB32.DLL [2010/11/26 20:08:44 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Windows Live Safety Center [2010/11/24 18:26:51 | 000,157,712 | ---- | C] (Trend Micro Inc.) -- C:\Windows\SysWow64\drivers\tmcomm.sys [2010/11/24 18:26:51 | 000,157,712 | ---- | C] (Trend Micro Inc.) -- C:\Windows\System32\drivers\tmcomm.sys [2010/11/24 18:22:39 | 000,000,000 | ---D | C] -- C:\Windows\BDOSCAN8 ========== Files - Modified Within 30 Days ========== [2010/12/16 16:51:26 | 000,067,584 | --S- | M] () -- C:\Windows\bootstat.dat [2010/12/16 16:21:00 | 000,001,064 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineCore.job [2010/12/16 16:20:42 | 2140,491,775 | -HS- | M] () -- C:\hiberfil.sys [2010/12/16 16:01:00 | 000,001,068 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineUA.job [2010/12/10 17:19:10 | 000,199,904 | ---- | M] (RealNetworks, Inc.) -- C:\Windows\SysWow64\rmoc3260.dll [2010/12/10 17:19:10 | 000,199,904 | ---- | M] (RealNetworks, Inc.) -- C:\Windows\System32\rmoc3260.dll [2010/12/10 17:18:55 | 000,272,896 | ---- | M] (Progressive Networks) -- C:\Windows\SysWow64\pncrt.dll [2010/12/10 17:18:55 | 000,272,896 | ---- | M] (Progressive Networks) -- C:\Windows\System32\pncrt.dll [2010/12/10 17:18:55 | 000,006,656 | ---- | M] (RealNetworks, Inc.) -- C:\Windows\SysWow64\pndx5016.dll [2010/12/10 17:18:55 | 000,006,656 | ---- | M] (RealNetworks, Inc.) -- C:\Windows\System32\pndx5016.dll [2010/12/10 17:18:55 | 000,005,632 | ---- | M] (RealNetworks, Inc.) -- C:\Windows\SysWow64\pndx5032.dll [2010/12/10 17:18:55 | 000,005,632 | ---- | M] (RealNetworks, Inc.) -- C:\Windows\System32\pndx5032.dll [2010/11/30 16:00:46 | 000,157,712 | ---- | M] (Trend Micro Inc.) -- C:\Windows\SysWow64\drivers\tmcomm.sys [2010/11/30 16:00:46 | 000,157,712 | ---- | M] (Trend Micro Inc.) -- C:\Windows\System32\drivers\tmcomm.sys [2010/11/29 17:42:18 | 000,038,224 | ---- | M] (Malwarebytes Corporation) -- C:\Windows\SysWow64\drivers\mbamswissarmy.sys [2010/11/29 17:42:18 | 000,038,224 | ---- | M] (Malwarebytes Corporation) -- C:\Windows\System32\drivers\mbamswissarmy.sys [2010/11/28 11:25:18 | 000,000,264 | ---- | M] () -- C:\Windows\setup.iss [2010/11/26 13:15:14 | 000,000,121 | ---- | M] () -- C:\Windows\bdagent.INI [2010/11/24 16:33:42 | 001,577,122 | ---- | M] () -- C:\Windows\SysWow64\PerfStringBackup.INI ========== Files Created - No Company Name ========== [2010/11/27 16:32:30 | 000,000,264 | ---- | C] () -- C:\Windows\setup.iss [2010/11/27 16:32:14 | 000,011,776 | ---- | C] () -- C:\Windows\SysWow64\pmsbfn32.dll [2010/11/27 16:32:14 | 000,011,776 | ---- | C] () -- C:\Windows\System32\pmsbfn32.dll [2010/10/22 14:47:23 | 001,577,122 | ---- | C] () -- C:\Windows\SysWow64\PerfStringBackup.INI [2010/05/11 17:00:25 | 000,000,121 | ---- | C] () -- C:\Windows\bdagent.INI [2010/03/26 10:35:36 | 000,027,648 | ---- | C] () -- C:\Windows\SysWow64\AVSredirect.dll [2009/11/28 04:08:47 | 000,776,614 | ---- | C] () -- C:\Program Files (x86)\Common Files\packardbell.ico [2009/10/28 14:29:40 | 000,000,940 | ---- | C] () -- C:\Windows\bdoscandellang.ini [2009/08/03 00:21:54 | 000,197,912 | ---- | C] () -- C:\Windows\SysWow64\physxcudart_20.dll [2009/08/03 00:21:54 | 000,058,648 | ---- | C] () -- C:\Windows\SysWow64\AgCPanelTraditionalChinese.dll [2009/08/03 00:21:54 | 000,058,648 | ---- | C] () -- C:\Windows\SysWow64\AgCPanelSwedish.dll [2009/08/03 00:21:54 | 000,058,648 | ---- | C] () -- C:\Windows\SysWow64\AgCPanelSpanish.dll [2009/08/03 00:21:54 | 000,058,648 | ---- | C] () -- C:\Windows\SysWow64\AgCPanelSimplifiedChinese.dll [2009/08/03 00:21:54 | 000,058,648 | ---- | C] () -- C:\Windows\SysWow64\AgCPanelPortugese.dll [2009/08/03 00:21:54 | 000,058,648 | ---- | C] () -- C:\Windows\SysWow64\AgCPanelKorean.dll [2009/08/03 00:21:54 | 000,058,648 | ---- | C] () -- C:\Windows\SysWow64\AgCPanelJapanese.dll [2009/08/03 00:21:52 | 000,058,648 | ---- | C] () -- C:\Windows\SysWow64\AgCPanelGerman.dll [2009/08/03 00:21:52 | 000,058,648 | ---- | C] () -- C:\Windows\SysWow64\AgCPanelFrench.dll [2009/07/14 00:42:10 | 000,064,000 | ---- | C] () -- C:\Windows\SysWow64\BWContextHandler.dll [2009/07/13 22:03:59 | 000,364,544 | ---- | C] () -- C:\Windows\SysWow64\msjetoledb40.dll [2009/04/16 13:24:14 | 000,921,600 | ---- | C] () -- C:\Windows\SysWow64\vorbisenc.dll [2009/04/16 13:24:14 | 000,237,568 | ---- | C] () -- C:\Windows\SysWow64\OggDS.dll [2009/04/16 13:24:14 | 000,188,416 | ---- | C] () -- C:\Windows\SysWow64\vorbis.dll [2009/04/16 13:24:14 | 000,045,056 | ---- | C] () -- C:\Windows\SysWow64\Ogg.dll ========== LOP Check ========== [2010/11/27 14:43:59 | 000,032,496 | ---- | M] () -- C:\Windows\Tasks\SCHEDLGU.TXT ========== Purity Check ========== ========== Custom Scans ========== < :Files > < C:\Windows\System32\explorer.exe | C:\Windows\explorer.exe /replace > Invalid Switch: replace < End of report > Ensuite j'ai suivi les premières instructions avec Rkill Puis Malwarebytes' Anti-Malware qui bloque toujours avec le même fichier C\users\admini\appdata\local\temp\OWP3552tmp\Singlelmage... ESET en ligne quant lui bloque tout à 99% d'analyse sur un fichier aussi Singlelmage.... Cette fois-ci il indiquait : 2 Threats found! Win 32/adware ADON application Win 32/adware ADON application Et pour Results of screen317's Security Check version 0.99.6 : Windows 7 (UAC is enabled) Internet Explorer 8 `````````````````````````````` Antivirus/Firewall Check: ESET Online Scanner v3 WMI entry may not exist for antivirus; attempting automatic update. ``````````````````````````````` Anti-malware/Other Utilities Check: Malwarebytes' Anti-Malware Java 6 Update 23 Out of date Java installed! Adobe Flash Player 10.1.53.64 Adobe Reader 9.4.1 - Français Mozilla Firefox (3.6.12) ```````````````````````````````` Process Check: objlist.exe by Laurent Spybot Teatimer.exe is disabled! ```````````````````````````````` DNS Vulnerability Check: GREAT! (Not vulnerable to DNS cache poisoning) ``````````End of Log```````````` Désolée de te solliciter à nouveau... Que conseilles-tu ? Merci !
  12. tinemy
    Bonjour, Un ami m'a gravé le CD sur son PC (W XP). Je suppose que c'est tout bon. J'ai démarré en cliquant sur F12 pour aller sur le BIOS puis j'ai choisi le CD pour entrer. Reatogo semble s'installer très vite mais Windows s'ouvre (?) et ensuite apparait une fenetre bleue indiquant un message : A problem has been detected ans windows has been down to prevent ddamage to your computer... A tout hasard j'ai executé en mode normal Reatogo dont voici le post ci-dessous. je doute que ce soit utile ... ! Merci. A très bientôt. --------------- OTL logfile created on: 13/12/2010 17:34:53 - Run OTLPE by OldTimer - Version 3.1.43.0 Folder = E:\PROGRAMS\OTLPE 64bit-Windows 7 Home Premium (Version = 6.1.7600) - Type = System Internet Explorer (Version = 8.0.7600.16385) Locale: | Country: | Language: | Date Format: 8,00 Gb Total Physical Memory | 7,00 Gb Available Physical Memory | 82,00% Memory free 16,00 Gb Paging File | 14,00 Gb Available in Paging File | 90,00% Paging File free Paging file location(s): ?:\pagefile.sys [binary data] %SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files (x86) Drive C: | 457,95 Gb Total Space | 410,59 Gb Free Space | 89,66% Space Free | Partition Type: NTFS Drive D: | 458,46 Gb Total Space | 441,58 Gb Free Space | 96,32% Space Free | Partition Type: NTFS Drive E: | 282,52 Mb Total Space | 0,00 Mb Free Space | 0,00% Space Free | Partition Type: CDFS Drive F: | 3,73 Gb Total Space | 1,42 Gb Free Space | 38,08% Space Free | Partition Type: FAT32 Drive G: | 298,09 Gb Total Space | 253,86 Gb Free Space | 85,16% Space Free | Partition Type: NTFS Drive M: | 7,55 Gb Total Space | 6,43 Gb Free Space | 85,20% Space Free | Partition Type: FAT32 Drive N: | 1,95 Gb Total Space | 1,82 Gb Free Space | 93,08% Space Free | Partition Type: FAT Computer Name: MISERY-PC | User Name: misery Boot Mode: Normal | Scan Mode: All users | Include 64bit Scans Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days Using ControlSet: ControlSet001 ========== Win32 Services (SafeList) ========== SRV:64bit: - File not found [On_Demand] -- C:\Windows\System32\wwansvc.dll -- (WwanSvc) SRV:64bit: - File not found [Auto] -- C:\Windows\System32\WUDFSvc.dll -- (wudfsvc) SRV:64bit: - File not found [Auto] -- C:\Windows\System32\wuaueng.dll -- (wuauserv) SRV:64bit: - File not found [Auto] -- C:\Windows\System32\wscsvc.dll -- (wscsvc) SRV:64bit: - File not found [On_Demand] -- C:\Windows\System32\wpdbusenum.dll -- (WPDBusEnum) SRV:64bit: - File not found [Auto] -- C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe -- (WMPNetworkSvc) SRV:64bit: - File not found [On_Demand] -- C:\Windows\System32\wbem\WmiApSrv.exe -- (wmiApSrv) SRV:64bit: - File not found [On_Demand] -- C:\Windows\System32\wlansvc.dll -- (Wlansvc) SRV:64bit: - File not found [Auto] -- C:\Windows\System32\wbem\WMIsvc.dll -- (Winmgmt) SRV:64bit: - File not found [Auto] -- C:\Program Files (x86)\Windows Defender\mpsvc.dll -- (WinDefend) SRV:64bit: - File not found [On_Demand] -- C:\Windows\System32\WerSvc.dll -- (WerSvc) SRV:64bit: - File not found [On_Demand] -- C:\Windows\System32\wercplsupport.dll -- (wercplsupport) SRV:64bit: - File not found [On_Demand] -- C:\Windows\System32\wecsvc.dll -- (Wecsvc) SRV:64bit: - File not found [On_Demand] -- C:\Windows\System32\wbiosrvc.dll -- (WbioSrvc) SRV:64bit: - File not found [On_Demand] -- C:\Windows\System32\wbengine.exe -- (wbengine) SRV:64bit: - File not found [On_Demand] -- C:\Windows\System32\Wat\WatAdminSvc.exe -- (WatAdminSvc) SRV:64bit: - File not found [On_Demand] -- C:\Windows\System32\w32time.dll -- (W32Time) SRV:64bit: - File not found [On_Demand] -- C:\Windows\System32\vssvc.exe -- (VSS) SRV:64bit: - File not found [On_Demand] -- C:\Windows\System32\vds.exe -- (vds) SRV:64bit: - File not found [On_Demand] -- C:\Windows\System32\lsass.exe -- (VaultSvc) SRV:64bit: - File not found [Auto] -- C:\Windows\System32\uxsms.dll -- (UxSms) SRV:64bit: - File not found [On_Demand] -- C:\Windows\System32\UI0Detect.exe -- (UI0Detect) SRV:64bit: - File not found [Auto] -- C:\Windows\System32\trkwks.dll -- (TrkWks) SRV:64bit: - File not found [On_Demand] -- C:\Windows\System32\mmcss.dll -- (THREADORDER) SRV:64bit: - File not found [Auto] -- C:\Windows\System32\themeservice.dll -- (Themes) SRV:64bit: - File not found [On_Demand] -- C:\Windows\System32\termsrv.dll -- (TermService) SRV:64bit: - File not found [On_Demand] -- C:\Windows\System32\tbssvc.dll -- (TBS) SRV:64bit: - File not found [On_Demand] -- C:\Windows\System32\TabSvc.dll -- (TabletInputService) SRV:64bit: - File not found [Auto] -- C:\Windows\System32\sysmain.dll -- (SysMain) SRV:64bit: - File not found [On_Demand] -- C:\Windows\System32\swprv.dll -- (swprv) SRV:64bit: - File not found [Auto] -- C:\Windows\System32\wiaservc.dll -- (stisvc) SRV:64bit: - File not found [On_Demand] -- C:\Windows\System32\sstpsvc.dll -- (SstpSvc) SRV:64bit: - File not found [On_Demand] -- C:\Windows\System32\ssdpsrv.dll -- (SSDPSRV) SRV:64bit: - File not found [On_Demand] -- C:\Windows\System32\sppuinotify.dll -- (sppuinotify) SRV:64bit: - File not found [Auto] -- C:\Windows\System32\sppsvc.exe -- (sppsvc) SRV:64bit: - File not found [Auto] -- C:\Windows\System32\spoolsv.exe -- (Spooler) SRV:64bit: - File not found [On_Demand] -- C:\Windows\System32\snmptrap.exe -- (SNMPTRAP) SRV:64bit: - File not found [Disabled] -- C:\Windows\System32\ipnathlp.dll -- (SharedAccess) SRV:64bit: - File not found [On_Demand] -- C:\Windows\System32\sensrsvc.dll -- (SensrSvc) SRV:64bit: - File not found [On_Demand] -- C:\Windows\System32\seclogon.dll -- (seclogon) SRV:64bit: - File not found [On_Demand] -- C:\Windows\System32\SDRSVC.dll -- (SDRSVC) SRV:64bit: - File not found [On_Demand] -- C:\Windows\System32\certprop.dll -- (SCPolicySvc) SRV:64bit: - File not found [Auto] -- C:\Windows\System32\schedsvc.dll -- (Schedule) SRV:64bit: - File not found [On_Demand] -- C:\Windows\System32\SCardSvr.dll -- (SCardSvr) SRV:64bit: - File not found [Auto] -- C:\Windows\System32\lsass.exe -- (SamSs) SRV:64bit: - File not found [Auto] -- C:\Windows\System32\rpcss.dll -- (RpcSs) SRV:64bit: - File not found [On_Demand] -- C:\Windows\System32\locator.exe -- (RpcLocator) SRV:64bit: - File not found [Auto] -- C:\Windows\System32\RpcEpMap.dll -- (RpcEptMapper) SRV:64bit: - File not found [On_Demand] -- C:\Windows\System32\regsvc.dll -- (RemoteRegistry) SRV:64bit: - File not found [On_Demand] -- C:\Windows\System32\rasmans.dll -- (RasMan) SRV:64bit: - File not found [On_Demand] -- C:\Windows\System32\rasauto.dll -- (RasAuto) SRV:64bit: - File not found [On_Demand] -- C:\Windows\System32\lsass.exe -- (ProtectedStorage) SRV:64bit: - File not found [Auto] -- C:\Windows\System32\profsvc.dll -- (ProfSvc) SRV:64bit: - File not found [Auto] -- C:\Windows\System32\umpo.dll -- (Power) SRV:64bit: - File not found [On_Demand] -- C:\Windows\System32\ipsecsvc.dll -- (PolicyAgent) SRV:64bit: - File not found [On_Demand] -- C:\Windows\System32\pnrpsvc.dll -- (PNRPsvc) SRV:64bit: - File not found [On_Demand] -- C:\Windows\System32\pnrpauto.dll -- (PNRPAutoReg) SRV:64bit: - File not found [Auto] -- C:\Windows\System32\umpnpmgr.dll -- (PlugPlay) SRV:64bit: - File not found [Auto] -- C:\Windows\System32\pcasvc.dll -- (PcaSvc) SRV:64bit: - File not found [On_Demand] -- C:\Windows\System32\p2psvc.dll -- (p2psvc) SRV:64bit: - File not found [On_Demand] -- C:\Windows\System32\pnrpsvc.dll -- (p2pimsvc) SRV:64bit: - File not found [Auto] -- C:\Windows\System32\nvvsvc.exe -- (nvsvc) SRV:64bit: - File not found [Auto] -- C:\Windows\System32\nsisvc.dll -- (nsi) SRV:64bit: - File not found [Auto] -- C:\Windows\System32\nlasvc.dll -- (NlaSvc) SRV:64bit: - File not found [On_Demand] -- C:\Windows\System32\netman.dll -- (Netman) SRV:64bit: - File not found [On_Demand] -- C:\Windows\System32\lsass.exe -- (Netlogon) SRV:64bit: - File not found [On_Demand] -- C:\Windows\System32\qagentRT.dll -- (napagent) SRV:64bit: - File not found [On_Demand] -- C:\Windows\System32\iscsiexe.dll -- (MSiSCSI) SRV:64bit: - File not found [On_Demand] -- C:\Windows\System32\msdtc.exe -- (MSDTC) SRV:64bit: - File not found [Auto] -- C:\Windows\System32\mpssvc.dll -- (MpsSvc) SRV:64bit: - File not found [Auto] -- C:\Windows\System32\mmcss.dll -- (MMCSS) SRV:64bit: - File not found [Disabled] -- C:\Windows\System32\Mcx2Svc.dll -- (Mcx2Svc) SRV:64bit: - File not found [Auto] -- C:\Windows\System32\lmhsvc.dll -- (lmhosts) SRV:64bit: - File not found [On_Demand] -- C:\Windows\System32\lltdsvc.dll -- (lltdsvc) SRV:64bit: - File not found [Auto] -- C:\Windows\System32\wkssvc.dll -- (LanmanWorkstation) SRV:64bit: - File not found [Auto] -- C:\Windows\System32\srvsvc.dll -- (LanmanServer) SRV:64bit: - File not found [On_Demand] -- C:\Windows\System32\msdtckrm.dll -- (KtmRm) SRV:64bit: - File not found [On_Demand] -- C:\Windows\System32\lsass.exe -- (KeyIso) SRV:64bit: - File not found [Auto] -- C:\Windows\System32\iphlpsvc.dll -- (iphlpsvc) SRV:64bit: - File not found [On_Demand] -- C:\Windows\System32\ipbusenum.dll -- (IPBusEnum) SRV:64bit: - File not found [Auto] -- C:\Windows\System32\ikeext.dll -- (IKEEXT) SRV:64bit: - File not found [On_Demand] -- C:\Windows\System32\ListSvc.dll -- (HomeGroupListener) SRV:64bit: - File not found [On_Demand] -- C:\Windows\System32\kmsvc.dll -- (hkmsvc) SRV:64bit: - File not found [Auto] -- C:\Windows\System32\gpsvc.dll -- (gpsvc) SRV:64bit: - File not found [On_Demand] -- C:\Windows\System32\FntCache.dll -- (FontCache) SRV:64bit: - File not found [Auto] -- C:\Windows\System32\fdrespub.dll -- (FDResPub) SRV:64bit: - File not found [On_Demand] -- C:\Windows\System32\fdPHost.dll -- (fdPHost) SRV:64bit: - File not found [On_Demand] -- C:\Windows\System32\fxssvc.exe -- (Fax) SRV:64bit: - File not found [Auto] -- C:\Windows\System32\wevtsvc.dll -- (eventlog) SRV:64bit: - File not found [Auto] -- C:\Windows\System32\lsass.exe -- (EFS) SRV:64bit: - File not found [On_Demand] -- C:\Windows\System32\eapsvc.dll -- (EapHost) SRV:64bit: - File not found [Auto] -- C:\Windows\System32\dps.dll -- (DPS) SRV:64bit: - File not found [On_Demand] -- C:\Windows\System32\dot3svc.dll -- (dot3svc) SRV:64bit: - File not found [Auto] -- C:\Windows\System32\dnsrslvr.dll -- (Dnscache) SRV:64bit: - File not found [On_Demand] -- C:\Windows\System32\defragsvc.dll -- (defragsvc) SRV:64bit: - File not found [Auto] -- C:\Windows\System32\rpcss.dll -- (DcomLaunch) SRV:64bit: - File not found [On_Demand] -- C:\Windows\System32\certprop.dll -- (CertPropSvc) SRV:64bit: - File not found [On_Demand] -- C:\Windows\System32\bthserv.dll -- (bthserv) SRV:64bit: - File not found [On_Demand] -- C:\Windows\System32\browser.dll -- (Browser) SRV:64bit: - File not found [Auto] -- C:\Windows\System32\qmgr.dll -- (BITS) SRV:64bit: - File not found [Auto] -- C:\Windows\System32\bfe.dll -- (BFE) SRV:64bit: - File not found [On_Demand] -- C:\Windows\System32\bdesvc.dll -- (BDESVC) SRV:64bit: - File not found [On_Demand] -- C:\Windows\System32\AxInstSV.dll -- (AxInstSV) SRV:64bit: - File not found [Auto] -- C:\Windows\System32\Audiosrv.dll -- (AudioSrv) SRV:64bit: - File not found [Auto] -- C:\Windows\System32\Audiosrv.dll -- (AudioEndpointBuilder) SRV:64bit: - File not found [On_Demand] -- C:\Windows\System32\appinfo.dll -- (Appinfo) SRV:64bit: - File not found [On_Demand] -- C:\Windows\System32\appidsvc.dll -- (AppIDSvc) SRV:64bit: - File not found [On_Demand] -- C:\Windows\System32\alg.exe -- (ALG) SRV:64bit: - File not found [On_Demand] -- C:\Windows\System32\aelupsvc.dll -- (AeLookupSvc) SRV:64bit: - [2010/09/23 00:21:24 | 001,493,352 | ---- | M] (Microsoft Corporation) [On_Demand] -- C:\Program Files (x86)\Windows Live\Family Safety\fsssvc.exe -- (fsssvc) SRV:64bit: - [2010/09/22 12:03:38 | 000,249,136 | ---- | M] (Microsoft Corporation) [Auto] -- C:\Program Files (x86)\Microsoft\Search Enhancement Pack\SeaPort\SeaPort.exe -- (SeaPort) SRV:64bit: - [2010/03/05 14:41:59 | 000,655,624 | ---- | M] (Acresso Software Inc.) [On_Demand] -- C:\Program Files (x86)\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe -- (FLEXnet Licensing Service) SRV:64bit: - [2010/01/09 21:18:00 | 000,149,352 | ---- | M] (Microsoft Corporation) [On_Demand] -- C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE -- (ose) SRV:64bit: - [2009/10/13 11:25:30 | 000,354,840 | ---- | M] (Intel Corporation) [Auto] -- C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\IAANTMon.exe -- (IAANTMON) Intel® SRV:64bit: - [2009/08/28 10:38:58 | 001,150,496 | ---- | M] (Acer Incorporated) [Auto] -- C:\Program Files (x86)\Packard Bell\Registration\GregHSRW.exe -- (Greg_Service) SRV:64bit: - [2009/08/25 19:38:06 | 000,935,208 | ---- | M] (Nero AG) [On_Demand] -- C:\Program Files (x86)\Common Files\Nero\Nero BackItUp 4\NBService.exe -- (Nero BackItUp Scheduler 4.0) SRV:64bit: - [2009/07/14 02:16:12 | 000,165,376 | ---- | M] (Microsoft Corporation) [On_Demand] -- C:\Windows\System32\provsvc.dll -- (HomeGroupProvider) SRV:64bit: - [2009/07/14 02:15:11 | 000,253,440 | ---- | M] (Microsoft Corporation) [Auto] -- C:\Windows\System32\dhcpcore.dll -- (Dhcp) SRV:64bit: - [2009/01/26 15:31:10 | 001,153,368 | ---- | M] (Safer Networking Ltd.) [Auto] -- C:\Program Files (x86)\Spybot - Search & Destroy\SDWinSec.exe -- (SBSDWSCService) SRV:64bit: - [2008/12/08 15:16:56 | 000,169,312 | ---- | M] (Adobe Systems Incorporated) [Auto] -- C:\Program Files (x86)\Adobe\Photoshop Elements 7.0\PhotoshopElementsFileAgent.exe -- (AdobeActiveFileMonitor7.0) SRV:64bit: - [2008/08/15 05:46:20 | 000,284,016 | ---- | M] (Adobe Systems Incorporated) [On_Demand] -- C:\Program Files (x86)\Common Files\Adobe\Adobe Version Cue CS4\Server\bin\VersionCueCS4.exe -- (Adobe Version Cue CS4) SRV - [2010/10/01 18:10:54 | 000,267,480 | ---- | M] (Trend Micro Inc.) [Auto] -- C:\Program Files\Trend Micro\AMSP\coreServiceShell.exe -- (Amsp) SRV - [2010/09/22 18:10:10 | 000,057,184 | ---- | M] (Microsoft Corporation) [Disabled] -- C:\Program Files\Windows Live\Mesh\wlcrasvc.exe -- (wlcrasvc) SRV - [2010/09/21 14:49:00 | 002,286,976 | ---- | M] (Microsoft Corp.) [Auto] -- C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE -- (wlidsvc) SRV - [2010/03/18 13:27:14 | 000,138,576 | ---- | M] (Microsoft Corporation) [Auto] -- C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe -- (clr_optimization_v4.0.30319_64) SRV - [2010/03/18 12:16:28 | 000,130,384 | ---- | M] (Microsoft Corporation) [Auto] -- C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe -- (clr_optimization_v4.0.30319_32) SRV - [2010/01/09 21:34:24 | 004,925,184 | ---- | M] (Microsoft Corporation) [On_Demand] -- C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE -- (osppsvc) SRV - [2009/07/14 02:16:12 | 000,165,376 | ---- | M] (Microsoft Corporation) [On_Demand] -- C:\Windows\SysWOW64\provsvc.dll -- (HomeGroupProvider) SRV - [2009/07/14 02:15:11 | 000,253,440 | ---- | M] (Microsoft Corporation) [Auto] -- C:\Windows\SysWOW64\dhcpcore.dll -- (Dhcp) SRV - [2009/07/04 03:47:12 | 000,240,160 | ---- | M] (Acer) [Auto] -- C:\Program Files\Packard Bell\Packard Bell Updater\UpdaterService.exe -- (Updater Service) SRV - [2009/06/10 22:23:09 | 000,066,384 | ---- | M] (Microsoft Corporation) [Disabled] -- C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe -- (clr_optimization_v2.0.50727_32) SRV - [2009/06/10 21:39:58 | 000,089,920 | ---- | M] (Microsoft Corporation) [Disabled] -- C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe -- (clr_optimization_v2.0.50727_64) SRV - [2009/06/10 21:30:59 | 000,042,840 | ---- | M] (Microsoft Corporation) [On_Demand] -- C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe -- (FontCache3.0.0.0) SRV - [2009/06/10 21:30:45 | 000,856,384 | ---- | M] (Microsoft Corporation) [On_Demand] -- C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe -- (idsvc) ========== Driver Services (SafeList) ========== DRV:64bit: - File not found [Kernel | On_Demand] -- C:\Windows\System32\DRIVERS\WUDFRd.sys -- (WUDFRd) DRV:64bit: - File not found [Kernel | On_Demand] -- C:\Windows\System32\drivers\WudfPf.sys -- (WudfPf) DRV:64bit: - File not found [Kernel | Disabled] -- C:\Windows\System32\drivers\ws2ifsl.sys -- (ws2ifsl) DRV:64bit: - File not found [Kernel | On_Demand] -- C:\Windows\System32\DRIVERS\wmiacpi.sys -- (WmiAcpi) DRV:64bit: - File not found [Kernel | On_Demand] -- C:\Windows\System32\DRIVERS\WinUsb.sys -- (WinUsb) DRV:64bit: - File not found [Kernel | System] -- C:\Windows\System32\DRIVERS\wfplwf.sys -- (WfpLwf) DRV:64bit: - File not found [Kernel | Boot] -- C:\Windows\System32\drivers\Wdf01000.sys -- (Wdf01000) DRV:64bit: - File not found [Kernel | On_Demand] -- C:\Windows\System32\DRIVERS\wd.sys -- (Wd) DRV:64bit: - File not found [Kernel | System] -- C:\Windows\System32\DRIVERS\wanarp.sys -- (Wanarpv6) DRV:64bit: - File not found [Kernel | On_Demand] -- C:\Windows\System32\DRIVERS\wanarp.sys -- (WANARP) DRV:64bit: - File not found [Kernel | On_Demand] -- C:\Windows\System32\DRIVERS\wacompen.sys -- (WacomPen) DRV:64bit: - File not found [Kernel | On_Demand] -- C:\Windows\System32\drivers\vwifibus.sys -- (vwifibus) DRV:64bit: - File not found [Kernel | On_Demand] -- C:\Windows\System32\DRIVERS\vsmraid.sys -- (vsmraid) DRV:64bit: - File not found [Kernel | Boot] -- C:\Windows\System32\DRIVERS\volsnap.sys -- (volsnap) DRV:64bit: - File not found [Kernel | Boot] -- C:\Windows\System32\drivers\volmgrx.sys -- (volmgrx) DRV:64bit: - File not found [Kernel | Boot] -- C:\Windows\System32\DRIVERS\volmgr.sys -- (volmgr) DRV:64bit: - File not found [Kernel | On_Demand] -- C:\Windows\System32\DRIVERS\viaide.sys -- (viaide) DRV:64bit: - File not found [Kernel | On_Demand] -- C:\Windows\System32\DRIVERS\vhdmp.sys -- (vhdmp) DRV:64bit: - File not found [Kernel | System] -- C:\Windows\System32\drivers\vga.sys -- (VgaSave) DRV:64bit: - File not found [Kernel | On_Demand] -- C:\Windows\System32\DRIVERS\vgapnp.sys -- (vga) DRV:64bit: - File not found [Kernel | Boot] -- C:\Windows\System32\DRIVERS\vdrvroot.sys -- (vdrvroot) DRV:64bit: - File not found [Kernel | On_Demand] -- C:\Windows\System32\DRIVERS\usbuhci.sys -- (usbuhci) DRV:64bit: - File not found [Kernel | On_Demand] -- C:\Windows\System32\DRIVERS\USBSTOR.SYS -- (USBSTOR) DRV:64bit: - File not found [Kernel | On_Demand] -- C:\Windows\System32\DRIVERS\usbscan.sys -- (usbscan) DRV:64bit: - File not found [Kernel | On_Demand] -- C:\Windows\System32\DRIVERS\usbprint.sys -- (usbprint) DRV:64bit: - File not found [Kernel | On_Demand] -- C:\Windows\System32\DRIVERS\usbohci.sys -- (usbohci) DRV:64bit: - File not found [Kernel | On_Demand] -- C:\Windows\System32\DRIVERS\usbhub.sys -- (usbhub) DRV:64bit: - File not found [Kernel | On_Demand] -- C:\Windows\System32\DRIVERS\usbehci.sys -- (usbehci) DRV:64bit: - File not found [Kernel | On_Demand] -- C:\Windows\System32\DRIVERS\usbcir.sys -- (usbcir) eHome Infrared Receiver (USBCIR) DRV:64bit: - File not found [Kernel | On_Demand] -- C:\Windows\System32\DRIVERS\usbccgp.sys -- (usbccgp) DRV:64bit: - File not found [Kernel | On_Demand] -- C:\Windows\System32\drivers\usbaudio.sys -- (usbaudio) Pilote USB audio (WDM) DRV:64bit: - File not found [Kernel | On_Demand] -- C:\Windows\System32\DRIVERS\umpass.sys -- (UmPass) DRV:64bit: - File not found [Kernel | On_Demand] -- C:\Windows\System32\DRIVERS\umbus.sys -- (umbus) DRV:64bit: - File not found [Kernel | On_Demand] -- C:\Windows\System32\DRIVERS\uliagpkx.sys -- (uliagpkx) DRV:64bit: - File not found [File_System | Disabled] -- C:\Windows\System32\DRIVERS\udfs.sys -- (udfs) DRV:64bit: - File not found [Kernel | On_Demand] -- C:\Windows\System32\DRIVERS\uagp35.sys -- (uagp35) DRV:64bit: - File not found [Kernel | On_Demand] -- C:\Windows\System32\DRIVERS\tunnel.sys -- (tunnel) DRV:64bit: - File not found [Kernel | On_Demand] -- C:\Windows\System32\DRIVERS\tssecsrv.sys -- (tssecsrv) DRV:64bit: - File not found [Kernel | System] -- C:\Windows\System32\DRIVERS\tmtdi.sys -- (tmtdi) DRV:64bit: - File not found [Kernel | Auto] -- C:\Windows\System32\DRIVERS\tmevtmgr.sys -- (tmevtmgr) DRV:64bit: - File not found [Kernel | Auto] -- C:\Windows\System32\DRIVERS\tmactmon.sys -- (tmactmon) DRV:64bit: - File not found [Kernel | System] -- C:\Windows\System32\DRIVERS\termdd.sys -- (TermDD) DRV:64bit: - File not found [Kernel | System] -- C:\Windows\System32\DRIVERS\tdx.sys -- (tdx) DRV:64bit: - File not found [Kernel | On_Demand] -- C:\Windows\System32\drivers\tdtcp.sys -- (TDTCP) DRV:64bit: - File not found [Kernel | On_Demand] -- C:\Windows\System32\drivers\tdpipe.sys -- (TDPIPE) DRV:64bit: - File not found [Kernel | Auto] -- C:\Windows\System32\drivers\tcpipreg.sys -- (tcpipreg) DRV:64bit: - File not found [Kernel | On_Demand] -- C:\Windows\System32\DRIVERS\tcpip.sys -- (TCPIP6) DRV:64bit: - File not found [Kernel | Boot] -- C:\Windows\System32\drivers\tcpip.sys -- (Tcpip) DRV:64bit: - File not found [Kernel | On_Demand] -- C:\Windows\System32\DRIVERS\swenum.sys -- (swenum) DRV:64bit: - File not found [Kernel | On_Demand] -- C:\Windows\System32\DRIVERS\stexstor.sys -- (stexstor) DRV:64bit: - File not found [File_System | On_Demand] -- C:\Windows\System32\DRIVERS\srvnet.sys -- (srvnet) DRV:64bit: - File not found [File_System | On_Demand] -- C:\Windows\System32\DRIVERS\srv2.sys -- (srv2) DRV:64bit: - File not found [File_System | On_Demand] -- C:\Windows\System32\DRIVERS\srv.sys -- (srv) DRV:64bit: - File not found [Kernel | On_Demand] -- C:\Windows\System32\DRIVERS\smb.sys -- (Smb) DRV:64bit: - File not found [Kernel | On_Demand] -- C:\Windows\System32\DRIVERS\sisraid4.sys -- (SiSRaid4) DRV:64bit: - File not found [Kernel | On_Demand] -- C:\Windows\System32\DRIVERS\SiSRaid2.sys -- (SiSRaid2) DRV:64bit: - File not found [Kernel | On_Demand] -- C:\Windows\System32\DRIVERS\sfloppy.sys -- (sfloppy) DRV:64bit: - File not found [Kernel | On_Demand] -- C:\Windows\System32\DRIVERS\sffp_sd.sys -- (sffp_sd) DRV:64bit: - File not found [Kernel | On_Demand] -- C:\Windows\System32\DRIVERS\sffp_mmc.sys -- (sffp_mmc) DRV:64bit: - File not found [Kernel | On_Demand] -- C:\Windows\System32\DRIVERS\sffdisk.sys -- (sffdisk) DRV:64bit: - File not found [Kernel | On_Demand] -- C:\Windows\System32\DRIVERS\sermouse.sys -- (sermouse) DRV:64bit: - File not found [Kernel | On_Demand] -- C:\Windows\System32\DRIVERS\serial.sys -- (Serial) DRV:64bit: - File not found [Kernel | On_Demand] -- C:\Windows\System32\DRIVERS\serenum.sys -- (Serenum) DRV:64bit: - File not found [Kernel | On_Demand] -- C:\Windows\System32\DRIVERS\scfilter.sys -- (scfilter) DRV:64bit: - File not found [Kernel | On_Demand] -- C:\Windows\System32\DRIVERS\sbp2port.sys -- (sbp2port) DRV:64bit: - File not found [Kernel | Auto] -- C:\Windows\System32\DRIVERS\rspndr.sys -- (rspndr) DRV:64bit: - File not found [Kernel | Boot] -- C:\Windows\System32\drivers\rdyboost.sys -- (rdyboost) DRV:64bit: - File not found [Kernel | System] -- C:\Windows\System32\drivers\rdprefmp.sys -- (RDPREFMP) DRV:64bit: - File not found [Kernel | System] -- C:\Windows\System32\drivers\rdpencdd.sys -- (RDPENCDD) DRV:64bit: - File not found [Kernel | System] -- C:\Windows\System32\DRIVERS\RDPCDD.sys -- (RDPCDD) DRV:64bit: - File not found [Kernel | On_Demand] -- C:\Windows\System32\DRIVERS\rdpbus.sys -- (rdpbus) DRV:64bit: - File not found [File_System | System] -- C:\Windows\System32\DRIVERS\rdbss.sys -- (rdbss) DRV:64bit: - File not found [Kernel | On_Demand] -- C:\Windows\System32\DRIVERS\rassstp.sys -- (RasSstp) DRV:64bit: - File not found [Kernel | On_Demand] -- C:\Windows\System32\DRIVERS\raspppoe.sys -- (RasPppoe) DRV:64bit: - File not found [Kernel | On_Demand] -- C:\Windows\System32\DRIVERS\rasl2tp.sys -- (Rasl2tp) DRV:64bit: - File not found [Kernel | On_Demand] -- C:\Windows\System32\DRIVERS\AgileVpn.sys -- (RasAgileVpn) WAN Miniport (IKEv2) DRV:64bit: - File not found [Kernel | On_Demand] -- C:\Windows\System32\DRIVERS\rasacd.sys -- (RasAcd) DRV:64bit: - File not found [Kernel | On_Demand] -- C:\Windows\System32\drivers\qwavedrv.sys -- (QWAVEdrv) DRV:64bit: - File not found [Kernel | On_Demand] -- C:\Windows\System32\DRIVERS\ql40xx.sys -- (ql40xx) DRV:64bit: - File not found [Kernel | On_Demand] -- C:\Windows\System32\DRIVERS\ql2300.sys -- (ql2300) DRV:64bit: - File not found [Kernel | Boot] -- C:\Windows\System32\Drivers\PxHlpa64.sys -- (PxHlpa64) DRV:64bit: - File not found [Kernel | System] -- C:\Windows\System32\DRIVERS\pacer.sys -- (Psched) DRV:64bit: - File not found [Kernel | On_Demand] -- C:\Windows\System32\DRIVERS\processr.sys -- (Processor) DRV:64bit: - File not found [Kernel | On_Demand] -- C:\Windows\System32\DRIVERS\raspptp.sys -- (PptpMiniport) DRV:64bit: - File not found [Kernel | Auto] -- C:\Windows\System32\drivers\peauth.sys -- (PEAUTH) DRV:64bit: - File not found [Kernel | Boot] -- C:\Windows\System32\drivers\pcw.sys -- (pcw) DRV:64bit: - File not found [Kernel | On_Demand] -- C:\Windows\System32\DRIVERS\pcmcia.sys -- (pcmcia) DRV:64bit: - File not found [Kernel | On_Demand] -- C:\Windows\System32\DRIVERS\pciide.sys -- (pciide) DRV:64bit: - File not found [Kernel | Boot] -- C:\Windows\System32\DRIVERS\pci.sys -- (pci) DRV:64bit: - File not found [Kernel | Boot] -- C:\Windows\System32\drivers\partmgr.sys -- (partmgr) DRV:64bit: - File not found [Kernel | On_Demand] -- C:\Windows\System32\DRIVERS\parport.sys -- (Parport) DRV:64bit: - File not found [Kernel | On_Demand] -- C:\Windows\System32\DRIVERS\ohci1394.sys -- (ohci1394) 1394 OHCI Compliant Host Controller (Legacy) DRV:64bit: - File not found [Kernel | On_Demand] -- C:\Windows\System32\DRIVERS\nvstor.sys -- (nvstor) DRV:64bit: - File not found [Kernel | On_Demand] -- C:\Windows\System32\DRIVERS\nvraid.sys -- (nvraid) DRV:64bit: - File not found [Kernel | On_Demand] -- C:\Windows\System32\DRIVERS\nvlddmkm.sys -- (nvlddmkm) DRV:64bit: - File not found [Kernel | On_Demand] -- C:\Windows\System32\drivers\nvhda64v.sys -- (NVHDA) DRV:64bit: - File not found [Kernel | On_Demand] -- C:\Windows\System32\DRIVERS\nv_agp.sys -- (nv_agp) DRV:64bit: - File not found [Kernel | System] -- C:\Windows\System32\drivers\nsiproxy.sys -- (nsiproxy) DRV:64bit: - File not found [Kernel | On_Demand] -- C:\Windows\System32\DRIVERS\nfrd960.sys -- (nfrd960) DRV:64bit: - File not found [Kernel | System] -- C:\Windows\System32\DRIVERS\netbt.sys -- (NetBT) DRV:64bit: - File not found [File_System | System] -- C:\Windows\System32\DRIVERS\netbios.sys -- (NetBIOS) DRV:64bit: - File not found [Kernel | On_Demand] -- C:\Windows\System32\DRIVERS\ndiswan.sys -- (NdisWan) DRV:64bit: - File not found [Kernel | On_Demand] -- C:\Windows\System32\DRIVERS\ndisuio.sys -- (Ndisuio) DRV:64bit: - File not found [Kernel | On_Demand] -- C:\Windows\System32\DRIVERS\ndistapi.sys -- (NdisTapi) DRV:64bit: - File not found [Kernel | On_Demand] -- C:\Windows\System32\DRIVERS\ndiscap.sys -- (NdisCap) DRV:64bit: - File not found [Kernel | Boot] -- C:\Windows\System32\drivers\ndis.sys -- (NDIS) DRV:64bit: - File not found [Kernel | On_Demand] -- C:\Windows\System32\DRIVERS\nwifi.sys -- (NativeWifiP) DRV:64bit: - File not found [File_System | Boot] -- C:\Windows\System32\Drivers\mup.sys -- (Mup) DRV:64bit: - File not found [Kernel | On_Demand] -- C:\Windows\System32\DRIVERS\MTConfig.sys -- (MTConfig) DRV:64bit: - File not found [Kernel | On_Demand] -- C:\Windows\System32\drivers\MSTEE.sys -- (MSTEE) DRV:64bit: - File not found [Kernel | System] -- C:\Windows\System32\DRIVERS\mssmbios.sys -- (mssmbios) DRV:64bit: - File not found [Kernel | On_Demand] -- C:\Windows\System32\drivers\MSPQM.sys -- (MSPQM) DRV:64bit: - File not found [Kernel | On_Demand] -- C:\Windows\System32\drivers\MSPCLOCK.sys -- (MSPCLOCK) DRV:64bit: - File not found [Kernel | On_Demand] -- C:\Windows\System32\drivers\MSKSSRV.sys -- (MSKSSRV) DRV:64bit: - File not found [Kernel | Boot] -- C:\Windows\System32\DRIVERS\msisadrv.sys -- (msisadrv) DRV:64bit: - File not found [Kernel | On_Demand] -- C:\Windows\System32\drivers\mshidkmdf.sys -- (mshidkmdf) DRV:64bit: - File not found [Kernel | On_Demand] -- C:\Windows\System32\DRIVERS\msdsm.sys -- (msdsm) DRV:64bit: - File not found [Kernel | Boot] -- C:\Windows\System32\DRIVERS\msahci.sys -- (msahci) DRV:64bit: - File not found [File_System | On_Demand] -- C:\Windows\System32\DRIVERS\mrxsmb20.sys -- (mrxsmb20) DRV:64bit: - File not found [File_System | On_Demand] -- C:\Windows\System32\DRIVERS\mrxsmb10.sys -- (mrxsmb10) DRV:64bit: - File not found [File_System | On_Demand] -- C:\Windows\System32\DRIVERS\mrxsmb.sys -- (mrxsmb) DRV:64bit: - File not found [File_System | On_Demand] -- C:\Windows\System32\drivers\mrxdav.sys -- (MRxDAV) DRV:64bit: - File not found [Kernel | On_Demand] -- C:\Windows\System32\drivers\mpsdrv.sys -- (mpsdrv) DRV:64bit: - File not found [Kernel | On_Demand] -- C:\Windows\System32\DRIVERS\mpio.sys -- (mpio) DRV:64bit: - File not found [Kernel | Boot] -- C:\Windows\System32\drivers\mountmgr.sys -- (mountmgr) DRV:64bit: - File not found [Kernel | On_Demand] -- C:\Windows\System32\DRIVERS\mouhid.sys -- (mouhid) DRV:64bit: - File not found [Kernel | On_Demand] -- C:\Windows\System32\DRIVERS\mouclass.sys -- (mouclass) DRV:64bit: - File not found [Kernel | On_Demand] -- C:\Windows\System32\DRIVERS\monitor.sys -- (monitor) DRV:64bit: - File not found [Kernel | On_Demand] -- C:\Windows\System32\drivers\modem.sys -- (Modem) DRV:64bit: - File not found [Kernel | On_Demand] -- C:\Windows\System32\DRIVERS\MegaSR.sys -- (MegaSR) DRV:64bit: - File not found [Kernel | On_Demand] -- C:\Windows\System32\DRIVERS\megasas.sys -- (megasas) DRV:64bit: - File not found [Kernel | On_Demand] -- C:\Windows\System32\drivers\MBfilt64.sys -- (MBfilt) DRV:64bit: - File not found [File_System | Auto] -- C:\Windows\System32\drivers\luafv.sys -- (luafv) DRV:64bit: - File not found [Kernel | On_Demand] -- C:\Windows\System32\DRIVERS\lsi_scsi.sys -- (LSI_SCSI) DRV:64bit: - File not found [Kernel | On_Demand] -- C:\Windows\System32\DRIVERS\lsi_sas2.sys -- (LSI_SAS2) DRV:64bit: - File not found [Kernel | On_Demand] -- C:\Windows\System32\DRIVERS\lsi_sas.sys -- (LSI_SAS) DRV:64bit: - File not found [Kernel | On_Demand] -- C:\Windows\System32\DRIVERS\lsi_fc.sys -- (LSI_FC) DRV:64bit: - File not found [Kernel | Auto] -- C:\Windows\System32\DRIVERS\lltdio.sys -- (lltdio) DRV:64bit: - File not found [Kernel | On_Demand] -- C:\Windows\System32\drivers\ksthunk.sys -- (ksthunk) DRV:64bit: - File not found [Kernel | Boot] -- C:\Windows\System32\Drivers\ksecpkg.sys -- (KSecPkg) DRV:64bit: - File not found [Kernel | Boot] -- C:\Windows\System32\Drivers\ksecdd.sys -- (KSecDD) DRV:64bit: - File not found [Kernel | On_Demand] -- C:\Windows\System32\DRIVERS\kbdhid.sys -- (kbdhid) DRV:64bit: - File not found [Kernel | On_Demand] -- C:\Windows\System32\DRIVERS\kbdclass.sys -- (kbdclass) DRV:64bit: - File not found [Kernel | Boot] -- C:\Windows\System32\DRIVERS\jraid.sys -- (JRAID) DRV:64bit: - File not found [Kernel | On_Demand] -- C:\Windows\System32\DRIVERS\msiscsi.sys -- (iScsiPrt) DRV:64bit: - File not found [Kernel | On_Demand] -- C:\Windows\System32\DRIVERS\isapnp.sys -- (isapnp) DRV:64bit: - File not found [Kernel | On_Demand] -- C:\Windows\System32\drivers\irenum.sys -- (IRENUM) DRV:64bit: - File not found [Kernel | On_Demand] -- C:\Windows\System32\drivers\ipnat.sys -- (IPNAT) DRV:64bit: - File not found [Kernel | On_Demand] -- C:\Windows\System32\DRIVERS\IPMIDrv.sys -- (IPMIDRV) DRV:64bit: - File not found [Kernel | On_Demand] -- C:\Windows\System32\DRIVERS\ipfltdrv.sys -- (IpFilterDriver) DRV:64bit: - File not found [Kernel | On_Demand] -- C:\Windows\System32\DRIVERS\intelppm.sys -- (intelppm) DRV:64bit: - File not found [Kernel | On_Demand] -- C:\Windows\System32\DRIVERS\intelide.sys -- (intelide) DRV:64bit: - File not found [Kernel | On_Demand] -- C:\Windows\System32\drivers\RTKVHD64.sys -- (IntcAzAudAddService) Service for Realtek HD Audio (WDM) DRV:64bit: - File not found [Kernel | On_Demand] -- C:\Windows\System32\DRIVERS\iirsp.sys -- (iirsp) DRV:64bit: - File not found [Kernel | On_Demand] -- C:\Windows\System32\DRIVERS\iaStorV.sys -- (iaStorV) DRV:64bit: - File not found [Kernel | Boot] -- C:\Windows\System32\DRIVERS\iaStor.sys -- (iaStor) DRV:64bit: - File not found [Kernel | On_Demand] -- C:\Windows\System32\DRIVERS\i8042prt.sys -- (i8042prt) DRV:64bit: - File not found [Kernel | Boot] -- C:\Windows\System32\drivers\hwpolicy.sys -- (hwpolicy) DRV:64bit: - File not found [Kernel | On_Demand] -- C:\Windows\System32\drivers\HTTP.sys -- (HTTP) DRV:64bit: - File not found [Kernel | On_Demand] -- C:\Windows\System32\DRIVERS\HpSAMD.sys -- (HpSAMD) DRV:64bit: - File not found [Kernel | On_Demand] -- C:\Windows\System32\DRIVERS\hidusb.sys -- (HidUsb) DRV:64bit: - File not found [Kernel | On_Demand] -- C:\Windows\System32\DRIVERS\hidir.sys -- (HidIr) DRV:64bit: - File not found [Kernel | On_Demand] -- C:\Windows\System32\DRIVERS\hidbth.sys -- (HidBth) DRV:64bit: - File not found [Kernel | On_Demand] -- C:\Windows\System32\DRIVERS\HidBatt.sys -- (HidBatt) DRV:64bit: - File not found [Kernel | On_Demand] -- C:\Windows\System32\DRIVERS\HDAudBus.sys -- (HDAudBus) DRV:64bit: - File not found [Kernel | On_Demand] -- C:\Windows\System32\drivers\HdAudio.sys -- (HdAudAddService) DRV:64bit: - File not found [Kernel | On_Demand] -- C:\Windows\System32\drivers\hcw85cir.sys -- (hcw85cir) DRV:64bit: - File not found [Kernel | On_Demand] -- C:\Windows\System32\DRIVERS\gagp30kx.sys -- (gagp30kx) DRV:64bit: - File not found [Kernel | Boot] -- C:\Windows\System32\DRIVERS\fvevol.sys -- (fvevol) DRV:64bit: - File not found [Kernel | On_Demand] -- C:\Windows\System32\DRIVERS\fssfltr.sys -- (fssfltr) DRV:64bit: - File not found [File_System | On_Demand] -- C:\Windows\System32\drivers\FsDepends.sys -- (FsDepends) DRV:64bit: - File not found [File_System | Boot] -- C:\Windows\System32\drivers\fltmgr.sys -- (FltMgr) DRV:64bit: - File not found [Kernel | On_Demand] -- C:\Windows\System32\DRIVERS\flpydisk.sys -- (flpydisk) DRV:64bit: - File not found [File_System | On_Demand] -- C:\Windows\System32\drivers\filetrace.sys -- (Filetrace) DRV:64bit: - File not found [File_System | Boot] -- C:\Windows\System32\drivers\fileinfo.sys -- (FileInfo) DRV:64bit: - File not found [Kernel | On_Demand] -- C:\Windows\System32\DRIVERS\fdc.sys -- (fdc) DRV:64bit: - File not found [Kernel | On_Demand] -- C:\Windows\System32\DRIVERS\errdev.sys -- (ErrDev) DRV:64bit: - File not found [Kernel | On_Demand] -- C:\Windows\System32\DRIVERS\elxstor.sys -- (elxstor) DRV:64bit: - File not found [Kernel | On_Demand] -- C:\Windows\System32\DRIVERS\evbda.sys -- (ebdrv) DRV:64bit: - File not found [Kernel | On_Demand] -- C:\Windows\System32\DRIVERS\e1k62x64.sys -- (e1kexpress) Intel® DRV:64bit: - File not found [Kernel | On_Demand] -- C:\Windows\System32\drivers\dxgkrnl.sys -- (DXGKrnl) DRV:64bit: - File not found [Kernel | On_Demand] -- C:\Windows\System32\drivers\drmkaud.sys -- (drmkaud) DRV:64bit: - File not found [Kernel | Boot] -- C:\Windows\System32\DRIVERS\disk.sys -- (Disk) DRV:64bit: - File not found [Kernel | System] -- C:\Windows\System32\drivers\discache.sys -- (discache) DRV:64bit: - File not found [File_System | System] -- C:\Windows\System32\Drivers\dfsc.sys -- (DfsC) DRV:64bit: - File not found [Kernel | Disabled] -- C:\Windows\System32\DRIVERS\crcdisk.sys -- (crcdisk) DRV:64bit: - File not found [Kernel | On_Demand] -- C:\Windows\System32\DRIVERS\CompositeBus.sys -- (CompositeBus) DRV:64bit: - File not found [Kernel | On_Demand] -- C:\Windows\System32\DRIVERS\compbatt.sys -- (Compbatt) DRV:64bit: - File not found [Kernel | Boot] -- C:\Windows\System32\Drivers\cng.sys -- (CNG) DRV:64bit: - File not found [Kernel | On_Demand] -- C:\Windows\System32\DRIVERS\cmdide.sys -- (cmdide) DRV:64bit: - File not found [Kernel | On_Demand] -- C:\Windows\System32\DRIVERS\CmBatt.sys -- (CmBatt) DRV:64bit: - File not found [Kernel | Boot] -- C:\Windows\System32\CLFS.sys -- (CLFS) DRV:64bit: - File not found [Kernel | On_Demand] -- C:\Windows\System32\DRIVERS\circlass.sys -- (circlass) DRV:64bit: - File not found [Kernel | System] -- C:\Windows\System32\DRIVERS\cdrom.sys -- (cdrom) DRV:64bit: - File not found [File_System | Disabled] -- C:\Windows\System32\DRIVERS\cdfs.sys -- (cdfs) DRV:64bit: - File not found [Kernel | On_Demand] -- C:\Windows\System32\DRIVERS\bthmodem.sys -- (BTHMODEM) DRV:64bit: - File not found [Kernel | On_Demand] -- C:\Windows\System32\Drivers\BrUsbSer.sys -- (BrUsbSer) DRV:64bit: - File not found [Kernel | On_Demand] -- C:\Windows\System32\Drivers\BrUsbMdm.sys -- (BrUsbMdm) DRV:64bit: - File not found [Kernel | On_Demand] -- C:\Windows\System32\Drivers\BrSerWdm.sys -- (BrSerWdm) DRV:64bit: - File not found [Kernel | On_Demand] -- C:\Windows\System32\Drivers\Brserid.sys -- (Brserid) Brother MFC Serial Port Interface Driver (WDM) DRV:64bit: - File not found [Kernel | On_Demand] -- C:\Windows\System32\DRIVERS\BrFiltUp.sys -- (BrFiltUp) DRV:64bit: - File not found [Kernel | On_Demand] -- C:\Windows\System32\DRIVERS\BrFiltLo.sys -- (BrFiltLo) DRV:64bit: - File not found [File_System | On_Demand] -- C:\Windows\System32\DRIVERS\bowser.sys -- (bowser) DRV:64bit: - File not found [Kernel | System] -- C:\Windows\System32\DRIVERS\blbdrive.sys -- (blbdrive) DRV:64bit: - File not found [Kernel | On_Demand] -- C:\Windows\System32\DRIVERS\b57nd60a.sys -- (b57nd60a) DRV:64bit: - File not found [Kernel | On_Demand] -- C:\Windows\System32\DRIVERS\bxvbda.sys -- (b06bdrv) DRV:64bit: - File not found [Kernel | Boot] -- C:\Windows\System32\DRIVERS\atapi.sys -- (atapi) DRV:64bit: - File not found [Kernel | On_Demand] -- C:\Windows\System32\DRIVERS\asyncmac.sys -- (AsyncMac) DRV:64bit: - File not found [Kernel | On_Demand] -- C:\Windows\System32\DRIVERS\arcsas.sys -- (arcsas) DRV:64bit: - File not found [Kernel | On_Demand] -- C:\Windows\System32\DRIVERS\arc.sys -- (arc) DRV:64bit: - File not found [Kernel | On_Demand] -- C:\Windows\System32\drivers\appid.sys -- (AppID) DRV:64bit: - File not found [Kernel | Boot] -- C:\Windows\System32\DRIVERS\amdxata.sys -- (amdxata) DRV:64bit: - File not found [Kernel | On_Demand] -- C:\Windows\System32\DRIVERS\amdsbs.sys -- (amdsbs) DRV:64bit: - File not found [Kernel | On_Demand] -- C:\Windows\System32\DRIVERS\amdsata.sys -- (amdsata) DRV:64bit: - File not found [Kernel | On_Demand] -- C:\Windows\System32\DRIVERS\amdppm.sys -- (AmdPPM) DRV:64bit: - File not found [Kernel | On_Demand] -- C:\Windows\System32\DRIVERS\amdk8.sys -- (AmdK8) DRV:64bit: - File not found [Kernel | On_Demand] -- C:\Windows\System32\DRIVERS\amdide.sys -- (amdide) DRV:64bit: - File not found [Kernel | On_Demand] -- C:\Windows\System32\DRIVERS\aliide.sys -- (aliide) DRV:64bit: - File not found [Kernel | On_Demand] -- C:\Windows\System32\DRIVERS\agp440.sys -- (agp440) DRV:64bit: - File not found [Kernel | System] -- C:\Windows\System32\drivers\afd.sys -- (AFD) DRV:64bit: - File not found [Kernel | On_Demand] -- C:\Windows\System32\DRIVERS\adpu320.sys -- (adpu320) DRV:64bit: - File not found [Kernel | On_Demand] -- C:\Windows\System32\DRIVERS\adpahci.sys -- (adpahci) DRV:64bit: - File not found [Kernel | On_Demand] -- C:\Windows\System32\DRIVERS\adp94xx.sys -- (adp94xx) DRV:64bit: - File not found [Kernel | On_Demand] -- C:\Windows\System32\DRIVERS\acpipmi.sys -- (AcpiPmi) DRV:64bit: - File not found [Kernel | Boot] -- C:\Windows\System32\DRIVERS\ACPI.sys -- (ACPI) DRV:64bit: - File not found [Kernel | On_Demand] -- C:\Windows\System32\DRIVERS\1394ohci.sys -- (1394ohci) DRV:64bit: - [2010/11/30 16:00:46 | 000,157,712 | ---- | M] (Trend Micro Inc.) [Kernel | Auto] -- C:\Windows\System32\drivers\tmcomm.sys -- (tmcomm) DRV:64bit: - [2009/07/14 02:19:10 | 000,019,008 | ---- | M] (Microsoft Corporation) [File_System | On_Demand] -- C:\Windows\System32\drivers\wimmount.sys -- (WIMMount) DRV - [2010/11/30 16:00:46 | 000,157,712 | ---- | M] (Trend Micro Inc.) [Kernel | Auto] -- C:\Windows\SysWOW64\drivers\tmcomm.sys -- (tmcomm) DRV - [2009/07/14 02:19:10 | 000,019,008 | ---- | M] (Microsoft Corporation) [File_System | On_Demand] -- C:\Windows\SysWOW64\drivers\wimmount.sys -- (WIMMount) DRV - [2008/08/14 07:57:42 | 000,074,720 | ---- | M] (Adobe Systems, Inc.) [Kernel | Auto] -- C:\Windows\SysWow64\drivers\adfs.sys -- (adfs) ========== Standard Registry (SafeList) ========== ========== Internet Explorer ========== IE:64bit: - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://homepage.packardbell.com/rdr.aspx?b=ACPW&l=040c&m=ixtreme_m5740&r=173603102016p04f5v195y44130745 IE:64bit: - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://homepage.packardbell.com/rdr.aspx?b=ACPW&l=040c&m=ixtreme_m5740&r=173603102016p04f5v195y44130745 IE - HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0 IE - HKU\S-1-5-21-1301541909-812291784-3654414866-1001\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://homepage.packardbell.com/rdr.aspx?b=ACPW&l=040c&m=ixtreme_m5740&r=173603102016p04f5v195y44130745 IE - HKU\S-1-5-21-1301541909-812291784-3654414866-1001\Software\Microsoft\Internet Explorer\Main,Start Page = Toute l'actualité avec Libération IE - HKU\S-1-5-21-1301541909-812291784-3654414866-1001\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0 FF - HKLM\software\mozilla\Firefox\Extensions\\{ABDE892B-13A8-4d1b-88E6-365A6E755758}: C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\Firefox\Ext [2010/12/10 17:19:13 | 000,000,000 | ---D | M] FF - HKLM\software\mozilla\Firefox\Extensions\\FFToolbar@bitdefender.com: C:\Program Files\BitDefender\BitDefender 2010\bdaphffext\ FF - HKLM\software\mozilla\Firefox\Extensions\\{22181a4d-af90-4ca3-a569-faed9118d6bc}: C:\Program Files\Trend Micro\Titanium\UIFramework\Toolbar\firefoxextension [2010/11/30 14:35:42 | 000,000,000 | ---D | M] FF - HKLM\software\mozilla\Firefox\Extensions\\{22C7F6C6-8D67-4534-92B5-529A0EC09405}: C:\Program Files\Trend Micro\AMSP\Module\20004\1.5.1381\6.5.1234\firefoxextension\ [2010/11/30 14:36:15 | 000,000,000 | ---D | M] FF - HKLM\software\mozilla\Mozilla Firefox 3.6.12\extensions\\Components: C:\Program Files (x86)\Mozilla Firefox\components [2010/12/10 17:19:10 | 000,000,000 | ---D | M] FF - HKLM\software\mozilla\Mozilla Firefox 3.6.12\extensions\\Plugins: C:\Program Files (x86)\Mozilla Firefox\plugins [2010/12/10 17:19:20 | 000,000,000 | ---D | M] [2010/11/08 18:13:12 | 000,000,000 | ---D | M] -- C:\Program Files (x86)\Mozilla Firefox\extensions [2010/06/10 14:15:23 | 000,000,000 | ---D | M] (Java Console) -- C:\Program Files (x86)\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0020-ABCDEFFEDCBA} [2010/08/12 13:44:32 | 000,000,000 | ---D | M] (Java Console) -- C:\Program Files (x86)\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0021-ABCDEFFEDCBA} [2010/11/08 18:13:12 | 000,000,000 | ---D | M] (Java Console) -- C:\Program Files (x86)\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0022-ABCDEFFEDCBA} [2010/09/15 04:50:38 | 000,472,808 | ---- | M] (Sun Microsystems, Inc.) -- C:\Program Files (x86)\Mozilla Firefox\plugins\npdeployJava1.dll [2010/07/12 17:33:56 | 000,012,800 | ---- | M] (Nullsoft, Inc.) -- C:\Program Files (x86)\Mozilla Firefox\plugins\npwachk.dll [2010/08/13 09:26:08 | 000,001,516 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\amazon-france.xml [2010/08/13 09:26:08 | 000,001,822 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\cnrtl-tlfi-fr.xml [2010/08/13 09:26:08 | 000,000,757 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\eBay-france.xml [2010/08/13 09:26:08 | 000,001,426 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\wikipedia-fr.xml [2010/08/13 09:26:08 | 000,000,956 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\yahoo-france.xml O1 HOSTS File: ([2009/06/10 22:00:26 | 000,000,824 | ---- | M]) - C:\Windows\System32\drivers\etc\hosts O2:64bit: - BHO: (TmIEPlugInBHO Class) - {1CA1377B-DC1D-4A52-9585-6E06050FAC53} - C:\Program Files\Trend Micro\AMSP\Module\20004\1.5.1381\6.5.1234\TmIEPlg.dll (Trend Micro Inc.) O2:64bit: - BHO: (Windows Live ID Sign-in Helper) - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.) O2:64bit: - BHO: (Google Toolbar Helper) - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll (Google Inc.) O2:64bit: - BHO: (Google Toolbar Notifier BHO) - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\5.6.5805.1910\swg64.dll (Google Inc.) O2:64bit: - BHO: (Office Document Cache Handler) - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\PROGRA~1\MICROS~2\Office14\URLREDIR.DLL (Microsoft Corporation) O2:64bit: - BHO: (TmBpIeBHO Class) - {BBACBAFD-FA5E-4079-8B33-00EB9F13D4AC} - C:\Program Files\Trend Micro\AMSP\Module\20002\6.5.1234\6.5.1234\TmBpIe64.dll (Trend Micro Inc.) O2 - BHO: (ContributeBHO Class) - {074C1DC5-9320-4A9A-947D-C042949C6216} - C:\Program Files (x86)\Adobe\/Adobe Contribute CS4/contributeieplugin.dll () O2 - BHO: (TmIEPlugInBHO Class) - {1CA1377B-DC1D-4A52-9585-6E06050FAC53} - C:\Program Files\Trend Micro\AMSP\Module\20004\1.5.1381\6.5.1234\TmIEPlg32.dll (Trend Micro Inc.) O2 - BHO: (RealPlayer Download and Record Plugin for Internet Explorer) - {3049C3E9-B461-4BC5-8870-4C09146192CA} - C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\IE\rpbrowserrecordplugin.dll (RealPlayer) O2 - BHO: (TSToolbarBHO) - {43C6D902-A1C5-45c9-91F6-FD9E90337E18} - C:\Program Files\Trend Micro\Titanium\UIFramework\ToolbarIE.dll (Trend Micro Inc.) O2 - BHO: (Spybot-S&D IE Protection) - {53707962-6F74-2D53-2644-206D7942484F} - C:\Program Files (x86)\Spybot - Search & Destroy\SDHelper.dll (Safer Networking Limited) O2 - BHO: (Search Helper) - {6EBF7485-159F-4bff-A14F-B9E3AAC4465B} - C:\Program Files (x86)\Microsoft\Search Enhancement Pack\Search Helper\SEPsearchhelperie.dll (Microsoft Corporation) O2 - BHO: (Programme d'aide de l'Assistant de connexion Windows Live ID) - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\microsoft shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.) O2 - BHO: (Windows Live Messenger Companion Helper) - {9FDDE16B-836F-4806-AB1F-1455CBEFF289} - C:\Program Files (x86)\Windows Live\Companion\companioncore.dll (Microsoft Corporation) O2 - BHO: (Google Toolbar Helper) - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll (Google Inc.) O2 - BHO: (Google Toolbar Notifier BHO) - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files (x86)\Google\GoogleToolbarNotifier\5.6.5805.1910\swg.dll (Google Inc.) O2 - BHO: (Office Document Cache Handler) - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\Program Files (x86)\Microsoft Office\Office14\URLREDIR.DLL (Microsoft Corporation) O2 - BHO: (TmBpIeBHO Class) - {BBACBAFD-FA5E-4079-8B33-00EB9F13D4AC} - C:\Program Files\Trend Micro\AMSP\Module\20002\6.5.1234\6.5.1234\TmBpIe32.dll (Trend Micro Inc.) O2 - BHO: (Bing Bar BHO) - {d2ce3e00-f94a-4740-988e-03dc2f38c34f} - C:\Program Files (x86)\MSN Toolbar\Platform\6.3.2322.0\npwinext.dll (Microsoft Corporation) O3:64bit: - HKLM\..\Toolbar: (Google Toolbar) - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll (Google Inc.) O3:64bit: - HKLM\..\Toolbar: (no name) - Locked - No CLSID value found. O3 - HKLM\..\Toolbar: (Google Toolbar) - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll (Google Inc.) O3 - HKLM\..\Toolbar: (Contribute Toolbar) - {517BDDE4-E3A7-4570-B21E-2B52B6139FC7} - C:\Program Files (x86)\Adobe\/Adobe Contribute CS4/contributeieplugin.dll () O3 - HKLM\..\Toolbar: (@C:\Program Files (x86)\MSN Toolbar\Platform\6.3.2322.0\npwinext.dll,-100) - {8dcb7100-df86-4384-8842-8fa844297b3f} - C:\Program Files (x86)\MSN Toolbar\Platform\6.3.2322.0\npwinext.dll (Microsoft Corporation) O3 - HKLM\..\Toolbar: (Trend Micro Toolbar) - {CCAC5586-44D7-4c43-B64A-F042461A97D2} - C:\Program Files\Trend Micro\Titanium\UIFramework\ToolbarIE.dll (Trend Micro Inc.) O3 - HKLM\..\Toolbar: (no name) - Locked - No CLSID value found. O3:64bit: - HKU\S-1-5-21-1301541909-812291784-3654414866-1001\..\Toolbar\WebBrowser: (Google Toolbar) - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll (Google Inc.) O3 - HKU\S-1-5-21-1301541909-812291784-3654414866-1001\..\Toolbar\WebBrowser: (Google Toolbar) - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll (Google Inc.) O4:64bit: - HKLM..\Run: [iAAnotif] C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\iaanotif.exe (Intel Corporation) O4:64bit: - HKLM..\Run: [RtHDVCpl] C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe (Realtek Semiconductor) O4:64bit: - HKLM..\Run: [Trend Micro Client Framework] C:\Program Files\Trend Micro\UniClient\UiFrmWrk\UIWatchDog.exe (Trend Micro Inc.) O4:64bit: - HKLM..\Run: [Trend Micro Titanium] C:\Program Files\Trend Micro\Titanium\UIFramework\uiWinMgr.exe (Trend Micro Inc.) O4:64bit: - HKLM..\Run: [WrtMon.exe] C:\Windows\System32\spool\drivers\x64\3\WrtMon.exe () O4 - HKLM..\Run: [] File not found O4 - HKLM..\Run: [Acrobat Assistant 8.0] C:\Program Files (x86)\Adobe\Acrobat 8.0\Acrobat\Acrotray.exe (Adobe Systems Inc.) O4 - HKLM..\Run: [Adobe_ID0ENQBO] C:\PROGRA~2\COMMON~1\Adobe\ADOBEV~1\Server\bin\VERSIO~2.EXE (Adobe Systems Incorporated) O4 - HKLM..\Run: [AdobeCS4ServiceManager] C:\Program Files (x86)\Common Files\Adobe\CS4ServiceManager\CS4ServiceManager.exe (Adobe Systems Incorporated) O4 - HKLM..\Run: [Packard Bell Photo Frame] C:\Program Files (x86)\Packard Bell Photo Frame\ButtonMonitor.exe (IOI) O4 - HKLM..\Run: [TkBellExe] C:\program files (x86)\real\realplayer\Update\realsched.exe (RealNetworks, Inc.) O4 - HKU\S-1-5-19..\Run: [sidebar] C:\Program Files (x86)\Windows Sidebar\Sidebar.exe (Microsoft Corporation) O4 - HKU\S-1-5-20..\Run: [sidebar] C:\Program Files (x86)\Windows Sidebar\Sidebar.exe (Microsoft Corporation) O4 - HKU\S-1-5-21-1301541909-812291784-3654414866-1001..\Run: [swg] C:\Program Files (x86)\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe (Google Inc.) O4 - HKU\S-1-5-19..\RunOnce: [mctadmin] C:\Windows\SysWow64\mctadmin.exe File not found O4 - HKU\S-1-5-20..\RunOnce: [mctadmin] C:\Windows\SysWow64\mctadmin.exe File not found O4 - Startup: Error locating startup folders. O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktop = 1 O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorAdmin = 5 O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorUser = 3 O7 - HKU\S-1-5-21-1301541909-812291784-3654414866-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145 O8:64bit: - Extra context menu item: &Envoyer à OneNote - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dll (Microsoft Corporation) O8:64bit: - Extra context menu item: Google Sidewiki... - C:\Program Files (x86)\Google\Google Toolbar\Component\GoogleToolbarDynamic_mui_en_E11712C84EA7E12B.dll (Google Inc.) O8 - Extra context menu item: &Envoyer à OneNote - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dll (Microsoft Corporation) O8 - Extra context menu item: Google Sidewiki... - C:\Program Files (x86)\Google\Google Toolbar\Component\GoogleToolbarDynamic_mui_en_E11712C84EA7E12B.dll (Google Inc.) O9:64bit: - Extra Button: Envoyer à OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office\Office14\ONBttnIE.dll (Microsoft Corporation) O9:64bit: - Extra 'Tools' menuitem : &Envoyer à OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office\Office14\ONBttnIE.dll (Microsoft Corporation) O9:64bit: - Extra Button: Notes &liées OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files\Microsoft Office\Office14\ONBttnIELinkedNotes.dll (Microsoft Corporation) O9:64bit: - Extra 'Tools' menuitem : Notes &liées OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files\Microsoft Office\Office14\ONBttnIELinkedNotes.dll (Microsoft Corporation) O9 - Extra Button: @C:\Program Files (x86)\Windows Live\Companion\companionlang.dll,-600 - {0000036B-C524-4050-81A0-243669A86B9F} - C:\Program Files (x86)\Windows Live\Companion\companioncore.dll (Microsoft Corporation) O9 - Extra Button: @C:\Program Files (x86)\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1004 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll (Microsoft Corporation) O9 - Extra 'Tools' menuitem : @C:\Program Files (x86)\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1003 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll (Microsoft Corporation) O9 - Extra Button: Envoyer à OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dll (Microsoft Corporation) O9 - Extra 'Tools' menuitem : &Envoyer à OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dll (Microsoft Corporation) O9 - Extra Button: Notes &liées OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIELinkedNotes.dll (Microsoft Corporation) O9 - Extra 'Tools' menuitem : Notes &liées OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIELinkedNotes.dll (Microsoft Corporation) O9 - Extra 'Tools' menuitem : Spybot - Search && Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\Program Files (x86)\Spybot - Search & Destroy\SDHelper.dll (Safer Networking Limited) O10:64bit: - NameSpace_Catalog5\Catalog_Entries\000000000007 [] - C:\Program Files (x86)\Common Files\microsoft shared\Windows Live\WLIDNSP.DLL (Microsoft Corp.) O10:64bit: - NameSpace_Catalog5\Catalog_Entries\000000000008 [] - C:\Program Files (x86)\Common Files\microsoft shared\Windows Live\WLIDNSP.DLL (Microsoft Corp.) O10 - NameSpace_Catalog5\Catalog_Entries\000000000007 [] - C:\Program Files (x86)\Common Files\microsoft shared\Windows Live\WLIDNSP.DLL (Microsoft Corp.) O10 - NameSpace_Catalog5\Catalog_Entries\000000000008 [] - C:\Program Files (x86)\Common Files\microsoft shared\Windows Live\WLIDNSP.DLL (Microsoft Corp.) O13:64bit: - gopher Prefix: missing O13 - gopher Prefix: missing O16 - DPF: {17492023-C23A-453E-A040-C7C580BBF700} http://download.microsoft.com/download/E/5/6/E5611B10-0D6D-4117-8430-A67417AA88CD/LegitCheckControl.cab (Windows Genuine Advantage Validation Tool) O16 - DPF: {233C1507-6A77-46A4-9443-F871F945D258} http://download.macromedia.com/pub/shockwave/cabs/director/sw.cab (Shockwave ActiveX Control) O16 - DPF: {3860DD98-0549-4D50-AA72-5D17D200EE10} http://cdn.scan.onecare.live.com/resource/download/scanner/en-US/wlscctrl2.cab (Windows Live OneCare safety scanner control) O16 - DPF: {3D3B42C2-11BF-4732-A304-A01384B70D68} http://picasaweb.google.fr/s/v/62.12/uploader2.cab (UploadListView Class) O16 - DPF: {4871A87A-BFDD-4106-8153-FFDE2BAC2967} http://dlm.tools.akamai.com/dlmanager/versions/activex/dlm-activex-2.2.5.7.cab (DLM Control) O16 - DPF: {5D86DDB5-BDF9-441B-9E9E-D4730F4EE499} http://download.bitdefender.com/resources/scanner/sources/fr/scan8/oscan8.cab (BDSCANONLINE Control) O16 - DPF: {7530BFB8-7293-4D34-9923-61A11451AFC5} http://download.eset.com/special/eos/OnlineScanner.cab (OnlineScanner Control) O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jinstall-1_6_0_22-windows-i586.cab (Java Plug-in 1.6.0_22) O16 - DPF: {C345E174-3E87-4F41-A01C-B066A90A49B4} http://trial.trymicrosoftoffice.com/trialoaa/buymsoffice_assets/framework/microsoft/wrc32.ocx (WRC Class) O16 - DPF: {CAFEEFAC-0016-0000-0022-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_22-windows-i586.cab (Java Plug-in 1.6.0_22) O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_22-windows-i586.cab (Java Plug-in 1.6.0_22) O16 - DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} http://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab (Reg Error: Key error.) O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 212.27.40.241 212.27.40.240 O18:64bit: - Protocol\Handler\livecall {828030A1-22C1-4009-854F-8E305202313F} - Reg Error: Key error. File not found O18:64bit: - Protocol\Handler\ms-help {314111c7-a502-11d2-bbca-00c04f8ec294} - Reg Error: Key error. File not found O18:64bit: - Protocol\Handler\ms-itss {0A9007C0-4076-11D3-8789-0000F8105754} - Reg Error: Key error. File not found O18:64bit: - Protocol\Handler\msnim {828030A1-22C1-4009-854F-8E305202313F} - Reg Error: Key error. File not found O18:64bit: - Protocol\Handler\tmbp {1A77E7DC-C9A0-4110-8A37-2F36BAE71ECF} - C:\Program Files\Trend Micro\AMSP\Module\20002\6.5.1234\6.5.1234\TmBpIe64.dll (Trend Micro Inc.) O18:64bit: - Protocol\Handler\tmpx {0E526CB5-7446-41D1-A403-19BFE95E8C23} - C:\Program Files\Trend Micro\AMSP\Module\20004\1.5.1381\6.5.1234\TmIEPlg.dll (Trend Micro Inc.) O18:64bit: - Protocol\Handler\tmtb {04EAF3FB-4BAC-4B5A-A37D-A1CF210A5A42} - Reg Error: Key error. File not found O18:64bit: - Protocol\Handler\tmtbim {0B37915C-8B98-4B9E-80D4-464D2C830D10} - Reg Error: Key error. File not found O18:64bit: - Protocol\Handler\wlmailhtml {03C514A3-1EFB-4856-9F99-10D7BE1653C0} - Reg Error: Key error. File not found O18:64bit: - Protocol\Handler\wlpg {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - Reg Error: Key error. File not found O18 - Protocol\Handler\livecall {828030A1-22C1-4009-854F-8E305202313F} - C:\Program Files (x86)\Windows Live\Messenger\msgrapp.dll (Microsoft Corporation) O18 - Protocol\Handler\ms-help {314111c7-a502-11d2-bbca-00c04f8ec294} - C:\Program Files (x86)\Common Files\microsoft shared\Help\hxds.dll (Microsoft Corporation) O18 - Protocol\Handler\ms-itss {0A9007C0-4076-11D3-8789-0000F8105754} - C:\Program Files (x86)\Common Files\microsoft shared\Information Retrieval\msitss.dll (Microsoft Corporation) O18 - Protocol\Handler\msnim {828030A1-22C1-4009-854F-8E305202313F} - C:\Program Files (x86)\Windows Live\Messenger\msgrapp.dll (Microsoft Corporation) O18 - Protocol\Handler\tmbp {1A77E7DC-C9A0-4110-8A37-2F36BAE71ECF} - C:\Program Files\Trend Micro\AMSP\Module\20002\6.5.1234\6.5.1234\TmBpIe32.dll (Trend Micro Inc.) O18 - Protocol\Handler\tmpx {0E526CB5-7446-41D1-A403-19BFE95E8C23} - C:\Program Files\Trend Micro\AMSP\Module\20004\1.5.1381\6.5.1234\TmIEPlg32.dll (Trend Micro Inc.) O18 - Protocol\Handler\tmtb {04EAF3FB-4BAC-4B5A-A37D-A1CF210A5A42} - C:\Program Files\Trend Micro\Titanium\UIFramework\ToolbarIE.dll (Trend Micro Inc.) O18 - Protocol\Handler\tmtbim {0B37915C-8B98-4B9E-80D4-464D2C830D10} - C:\Program Files\Trend Micro\Titanium\UIFramework\ProToolbarIMRatingActiveX.dll (Trend Micro Inc.) O18 - Protocol\Handler\wlmailhtml {03C514A3-1EFB-4856-9F99-10D7BE1653C0} - C:\Program Files (x86)\Windows Live\Mail\mailcomm.dll (Microsoft Corporation) O18 - Protocol\Handler\wlpg {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files (x86)\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll (Microsoft Corporation) O18:64bit: - Protocol\Filter\text/xml {807573E5-5146-11D5-A672-00B0D022E945} - C:\Program Files\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLL (Microsoft Corporation) O18 - Protocol\Filter\text/xml {807573E5-5146-11D5-A672-00B0D022E945} - C:\Program Files (x86)\Common Files\microsoft shared\OFFICE14\MSOXMLMF.DLL (Microsoft Corporation) O20:64bit: - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\System32\explorer.exe (Microsoft Corporation) O20:64bit: - HKLM Winlogon: VMApplet - (SystemPropertiesPerformance.exe) - C:\Windows\System32\SystemPropertiesPerformance.exe (Microsoft Corporation) O20:64bit: - HKLM Winlogon: VMApplet - (/pagefile) - File not found O20 - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\SysWow64\explorer.exe (Microsoft Corporation) O20 - HKLM Winlogon: VMApplet - (SystemPropertiesPerformance.exe) - C:\Windows\SysWow64\SystemPropertiesPerformance.exe (Microsoft Corporation) O20 - HKLM Winlogon: VMApplet - (/pagefile) - File not found O21:64bit: - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - CLSID or File not found. O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - CLSID or File not found. O30:64bit: - LSA: Security Packages - (pku2u) - C:\Windows\System32\pku2u.dll (Microsoft Corporation) O30:64bit: - LSA: Security Packages - (livessp) - C:\Windows\System32\livessp.dll (Microsoft Corp.) O30 - LSA: Security Packages - (pku2u) - C:\Windows\SysWow64\pku2u.dll (Microsoft Corporation) O30 - LSA: Security Packages - (livessp) - C:\Windows\SysWow64\livessp.dll (Microsoft Corp.) O32 - HKLM CDRom: AutoRun - 1 O32 - AutoRun File - [2010/11/20 14:19:18 | 000,000,000 | ---D | M] - D:\automne2007 -- [ NTFS ] O32 - AutoRun File - [2006/03/24 12:06:41 | 000,000,053 | R--- | M] () - E:\AUTORUN.INF -- [ CDFS ] O34 - HKLM BootExecute: (autocheck autochk *) - File not found 64bit: O35 - HKLM\..comfile [open] -- "%1" %* File not found 64bit: O35 - HKLM\..exefile [open] -- "%1" %* File not found O35 - HKLM\..comfile [open] -- "%1" %* O35 - HKLM\..exefile [open] -- "%1" %* O37:64bit: - HKLM\...com [@ = comfile] -- "%1" %* O37:64bit: - HKLM\...exe [@ = exefile] -- "%1" %* O37 - HKLM\...com [@ = comfile] -- "%1" %* O37 - HKLM\...exe [@ = exefile] -- "%1" %* ========== Files/Folders - Created Within 30 Days ========== [2010/12/10 17:19:15 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\xing shared [2010/12/10 17:19:10 | 000,199,904 | ---- | C] (RealNetworks, Inc.) -- C:\Windows\SysWow64\rmoc3260.dll [2010/12/10 17:19:10 | 000,199,904 | ---- | C] (RealNetworks, Inc.) -- C:\Windows\System32\rmoc3260.dll [2010/12/10 17:18:55 | 000,272,896 | ---- | C] (Progressive Networks) -- C:\Windows\SysWow64\pncrt.dll [2010/12/10 17:18:55 | 000,272,896 | ---- | C] (Progressive Networks) -- C:\Windows\System32\pncrt.dll [2010/12/09 19:07:43 | 000,000,000 | -HSD | C] -- C:\found.003 [2010/12/08 20:02:41 | 000,000,000 | ---D | C] -- C:\Kaspersky Rescue Disk 10.0 [2010/12/08 14:57:59 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\ESET [2010/12/03 11:04:04 | 000,038,224 | ---- | C] (Malwarebytes Corporation) -- C:\Windows\SysWow64\drivers\mbamswissarmy.sys [2010/12/03 11:04:04 | 000,038,224 | ---- | C] (Malwarebytes Corporation) -- C:\Windows\System32\drivers\mbamswissarmy.sys [2010/12/03 11:04:01 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Malwarebytes' Anti-Malware [2010/11/30 18:46:38 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Spybot - Search & Destroy [2010/11/30 11:01:55 | 000,000,000 | ---D | C] -- C:\Packard Bell [2010/11/29 13:59:59 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Microsoft [2010/11/29 13:59:57 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\MSN Toolbar [2010/11/29 13:59:43 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Bing Bar Installer [2010/11/29 13:59:30 | 002,983,424 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\UIRibbon.dll [2010/11/29 13:59:30 | 002,983,424 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\UIRibbon.dll [2010/11/29 13:59:30 | 001,164,800 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\UIRibbonRes.dll [2010/11/29 13:59:30 | 001,164,800 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\UIRibbonRes.dll [2010/11/27 16:32:14 | 000,027,632 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\CTL3DV2.DLL [2010/11/27 16:32:14 | 000,027,632 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\CTL3DV2.DLL [2010/11/27 16:31:59 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\NewSoft [2010/11/27 16:29:11 | 000,212,480 | ---- | C] (Eastman Kodak) -- C:\Windows\PCDLIB32.DLL [2010/11/26 20:08:44 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Windows Live Safety Center [2010/11/25 15:52:46 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\DESIGNER [2010/11/25 15:52:35 | 000,000,000 | ---D | C] -- C:\Windows\PCHEALTH [2010/11/25 15:50:21 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Microsoft Analysis Services [2010/11/25 15:49:49 | 000,000,000 | RH-D | C] -- C:\MSOCache [2010/11/24 18:26:51 | 000,157,712 | ---- | C] (Trend Micro Inc.) -- C:\Windows\SysWow64\drivers\tmcomm.sys [2010/11/24 18:26:51 | 000,157,712 | ---- | C] (Trend Micro Inc.) -- C:\Windows\System32\drivers\tmcomm.sys [2010/11/24 18:22:39 | 000,000,000 | ---D | C] -- C:\Windows\BDOSCAN8 ========== Files - Modified Within 30 Days ========== [2010/12/13 17:25:24 | 000,001,064 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineCore.job [2010/12/13 17:25:13 | 000,067,584 | --S- | M] () -- C:\Windows\bootstat.dat [2010/12/13 17:25:08 | 2140,491,775 | -HS- | M] () -- C:\hiberfil.sys [2010/12/13 17:01:00 | 000,001,068 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineUA.job [2010/12/10 17:19:10 | 000,199,904 | ---- | M] (RealNetworks, Inc.) -- C:\Windows\SysWow64\rmoc3260.dll [2010/12/10 17:19:10 | 000,199,904 | ---- | M] (RealNetworks, Inc.) -- C:\Windows\System32\rmoc3260.dll [2010/12/10 17:18:55 | 000,272,896 | ---- | M] (Progressive Networks) -- C:\Windows\SysWow64\pncrt.dll [2010/12/10 17:18:55 | 000,272,896 | ---- | M] (Progressive Networks) -- C:\Windows\System32\pncrt.dll [2010/12/10 17:18:55 | 000,006,656 | ---- | M] (RealNetworks, Inc.) -- C:\Windows\SysWow64\pndx5016.dll [2010/12/10 17:18:55 | 000,006,656 | ---- | M] (RealNetworks, Inc.) -- C:\Windows\System32\pndx5016.dll [2010/12/10 17:18:55 | 000,005,632 | ---- | M] (RealNetworks, Inc.) -- C:\Windows\SysWow64\pndx5032.dll [2010/12/10 17:18:55 | 000,005,632 | ---- | M] (RealNetworks, Inc.) -- C:\Windows\System32\pndx5032.dll [2010/11/30 16:00:46 | 000,157,712 | ---- | M] (Trend Micro Inc.) -- C:\Windows\SysWow64\drivers\tmcomm.sys [2010/11/30 16:00:46 | 000,157,712 | ---- | M] (Trend Micro Inc.) -- C:\Windows\System32\drivers\tmcomm.sys [2010/11/29 17:42:18 | 000,038,224 | ---- | M] (Malwarebytes Corporation) -- C:\Windows\SysWow64\drivers\mbamswissarmy.sys [2010/11/29 17:42:18 | 000,038,224 | ---- | M] (Malwarebytes Corporation) -- C:\Windows\System32\drivers\mbamswissarmy.sys [2010/11/28 11:25:18 | 000,000,264 | ---- | M] () -- C:\Windows\setup.iss [2010/11/26 13:15:14 | 000,000,121 | ---- | M] () -- C:\Windows\bdagent.INI [2010/11/24 16:33:42 | 001,577,122 | ---- | M] () -- C:\Windows\SysWow64\PerfStringBackup.INI ========== Files Created - No Company Name ========== [2010/11/27 16:32:30 | 000,000,264 | ---- | C] () -- C:\Windows\setup.iss [2010/11/27 16:32:14 | 000,011,776 | ---- | C] () -- C:\Windows\SysWow64\pmsbfn32.dll [2010/11/27 16:32:14 | 000,011,776 | ---- | C] () -- C:\Windows\System32\pmsbfn32.dll [2010/10/22 14:47:23 | 001,577,122 | ---- | C] () -- C:\Windows\SysWow64\PerfStringBackup.INI [2010/05/11 17:00:25 | 000,000,121 | ---- | C] () -- C:\Windows\bdagent.INI [2010/03/26 10:35:36 | 000,027,648 | ---- | C] () -- C:\Windows\SysWow64\AVSredirect.dll [2009/11/28 04:08:47 | 000,776,614 | ---- | C] () -- C:\Program Files (x86)\Common Files\packardbell.ico [2009/10/28 14:29:40 | 000,000,940 | ---- | C] () -- C:\Windows\bdoscandellang.ini [2009/08/03 00:21:54 | 000,197,912 | ---- | C] () -- C:\Windows\SysWow64\physxcudart_20.dll [2009/08/03 00:21:54 | 000,058,648 | ---- | C] () -- C:\Windows\SysWow64\AgCPanelTraditionalChinese.dll [2009/08/03 00:21:54 | 000,058,648 | ---- | C] () -- C:\Windows\SysWow64\AgCPanelSwedish.dll [2009/08/03 00:21:54 | 000,058,648 | ---- | C] () -- C:\Windows\SysWow64\AgCPanelSpanish.dll [2009/08/03 00:21:54 | 000,058,648 | ---- | C] () -- C:\Windows\SysWow64\AgCPanelSimplifiedChinese.dll [2009/08/03 00:21:54 | 000,058,648 | ---- | C] () -- C:\Windows\SysWow64\AgCPanelPortugese.dll [2009/08/03 00:21:54 | 000,058,648 | ---- | C] () -- C:\Windows\SysWow64\AgCPanelKorean.dll [2009/08/03 00:21:54 | 000,058,648 | ---- | C] () -- C:\Windows\SysWow64\AgCPanelJapanese.dll [2009/08/03 00:21:52 | 000,058,648 | ---- | C] () -- C:\Windows\SysWow64\AgCPanelGerman.dll [2009/08/03 00:21:52 | 000,058,648 | ---- | C] () -- C:\Windows\SysWow64\AgCPanelFrench.dll [2009/07/14 00:42:10 | 000,064,000 | ---- | C] () -- C:\Windows\SysWow64\BWContextHandler.dll [2009/07/13 22:03:59 | 000,364,544 | ---- | C] () -- C:\Windows\SysWow64\msjetoledb40.dll [2009/04/16 13:24:14 | 000,921,600 | ---- | C] () -- C:\Windows\SysWow64\vorbisenc.dll [2009/04/16 13:24:14 | 000,237,568 | ---- | C] () -- C:\Windows\SysWow64\OggDS.dll [2009/04/16 13:24:14 | 000,188,416 | ---- | C] () -- C:\Windows\SysWow64\vorbis.dll [2009/04/16 13:24:14 | 000,045,056 | ---- | C] () -- C:\Windows\SysWow64\Ogg.dll ========== LOP Check ========== [2010/11/27 14:43:59 | 000,032,496 | ---- | M] () -- C:\Windows\Tasks\SCHEDLGU.TXT ========== Purity Check ========== < End of report >
  13. tinemy
    Bonjour lance_yien J'ai tenté tout ce que tu m'a indiqué mais je ne parviens toujours pas à faire une analyse ! AVIRA ne fonctionne pas : impossible de le télécharger Dr Web après 7h d'analyse n'a pas donné de rapport mais là par contre je crois que j'ai tapé F8 au lieu de F12. Vu la longueur je n'ai pas retenté. J'ai aussi essayé du coup Kaspersky Rescue Disk qui n'a rien trouvé. Il indique seulement "erreur lecture pour ce fichier : C/progr files(x86)/Adobe/Adoce device..." C'est compliqué car je dois en même temps travailler. Je te remecie pour tes réponses ! A bientôt
  14. tinemy
    Bonjour et grand merci pour votre message. J'ai bien lu vos instructions. Ca ne fonctionne pas hélas. Rkill ne voulait pas s'installer. Je l'ai donc téléchargé sur une clé USB. Le résultat : This log file is located at C:\rkill.log. Please post this only if requested to by the person helping you. Otherwise you can close this log when you wish. Rkill was run on 03/12/2010 at 14:38:07. Operating System: Windows 7 Home Premium Processes terminated by Rkill or while it was running: Rkill completed on 03/12/2010 at 14:38:14. Pour Malwarebytes' Anti-Malware : le logiciel est bien installé sur le bureau mais à chaque fois l'analyse bloque sur un fichier C\users\nom\appdata\... et je dois forcer l'ordinateur pour le fermer. Quelle prise de tête ! Merci pour votre attention. BON WE Tinemy
  15. tinemy
    Bonjour, POurriez-vous m'aider ? http://forum.zebulon.fr/les-antivirus-bloquent-comment-faire-t181341.html Je tente de comprendre vos discussions mais toute seule je ne m'en sors pas. Merci car je dois avancer dans mon travail avec un PC qui fonctionne bien (il est presque neuf)... BON WE
×
×
  • Créer...