gats99

Membres

Afficher le profil Afficher son activité

Compteur de contenus
10
Inscription
le 29 juillet 2011
Dernière visite
le 30 juillet 2011

Type de contenu

Toute l’activité

Profils

Forums

Blogs

Tout ce qui a été posté par gats99

analyse highjackthis...gros problèmes sur mon PC

gats99 a répondu à un(e) sujet de gats99 dans Analyses et éradication malwares

Bonjour, Voici le dernier rapport texte de USBFIX après désinfection, à présent je vais le désinstaller. ############################## | UsbFix 7.052 | [suppression] Utilisateur: GAETAN (Administrateur) # MAXDATA-CFB910E [ ] Mis à jour le 26/07/2011 par El Desaparecido Lancé à 09:56:37 | 30/07/2011 Site Web: http://www.teamxscript.org Submit your sample: http://www.teamxscript.org/Upload.php Contact: TeamXscript.ElDesaparecido@gmail.com CPU: AMD Athlon XP 2000+ Microsoft Windows XP Édition familiale (5.1.2600 32-Bit) # Service Pack 2 Internet Explorer 7.0.5730.11 Pare-feu Windows: Activé Antivirus: avast! Antivirus 5.0.100664499 [Enabled | Updated] RAM -> 1503 Mo C:\ (%systemdrive%) -> Disque fixe # 37 Go (13 Go libre(s) - 35%) [] # NTFS D:\ -> CD-ROM E:\ -> CD-ROM F:\ -> Disque fixe # 37 Go (36 Go libre(s) - 96%) [DONNEES] # NTFS G:\ -> Disque fixe # 56 Go (9 Go libre(s) - 16%) [sTOREX] # FAT32 ################## | Éléments infectieux | Supprimé! F:\Recycler\S-1-5-21-3737384884-1087915889-35962653-1005 Supprimé! C:\aston.exe ################## | Registre | Supprimé! HKLM\Software\Microsoft\Windows\CurrentVersion\Policies\System|DisableRegistryTools Supprimé! HKLM\Software\Microsoft\Windows\CurrentVersion\Policies\explorer|NoDrives Supprimé! HKCU\Software\Microsoft\Windows\CurrentVersion\Policies\explorer|NoDrives ################## | Mountpoints2 | ################## | Listing | [25/08/2010 - 16:42:27 | N | 271872] C:\adhesion_Z_2010-2011.doc [29/03/2006 - 16:33:02 | N | 597] C:\ASY.log [11/02/2008 - 12:20:30 | D ] C:\Bear [21/10/2010 - 13:36:48 | N | 216] C:\Boot.bak [29/07/2011 - 23:12:43 | N | 332] C:\boot.ini [30/08/2002 - 12:00:00 | N | 4952] C:\Bootfont.bin [14/03/2004 - 00:58:16 | D ] C:\CDI [29/07/2011 - 23:12:41 | D ] C:\cmdcons [03/08/2004 - 23:00:08 | N | 263488] C:\cmldr [18/02/2008 - 18:19:36 | N | 74] C:\CMLoader.log [03/04/2005 - 11:33:19 | D ] C:\COKTEL [30/07/2011 - 00:55:45 | N | 14356] C:\ComboFix.txt [28/07/2011 - 06:50:01 | D ] C:\Config.Msi [13/11/2007 - 11:15:57 | D ] C:\Converted Music [22/02/2008 - 10:18:31 | D ] C:\ConvertTemp [02/02/2004 - 09:55:38 | DC ] C:\Documents and Settings [25/04/2005 - 19:53:00 | N | 511002] C:\EasyShareInstall.log [23/03/2004 - 19:51:36 | D ] C:\emme [03/10/2004 - 09:19:17 | D ] C:\FrankieDemo [17/06/2004 - 17:31:33 | N | 15] C:\ftplog.txt [07/02/2004 - 21:58:55 | N | 0] C:\IO.SYS [25/07/2007 - 01:20:41 | D ] C:\Microgaming [07/02/2004 - 21:58:55 | N | 0] C:\MSDOS.SYS [19/11/2004 - 01:09:00 | N | 47564] C:\NTDETECT.COM [19/11/2004 - 01:09:00 | N | 251712] C:\NTLDR [19/03/2006 - 14:46:56 | D ] C:\NVIDIA [29/02/2004 - 17:44:34 | N | 52576] C:\orange.bmp [12/02/2010 - 22:53:49 | D ] C:\OtsLabs [30/07/2011 - 09:32:25 | ASH | 754974720] C:\pagefile.sys [29/07/2011 - 19:37:16 | N | 512] C:\PhysicalDisk0_MBR.bin [12/12/2004 - 22:36:47 | D ] C:\PR1 [30/07/2011 - 00:35:46 | D ] C:\Program Files [30/07/2011 - 00:55:54 | D ] C:\Qoobox [30/07/2011 - 10:00:30 | SHD ] C:\RECYCLER [10/06/2008 - 17:57:47 | N | 68] C:\scandata.dat [13/03/2008 - 20:48:46 | D ] C:\spoolerlogs [26/05/2009 - 19:23:15 | N | 268] C:\sqmdata00.sqm [13/06/2009 - 22:09:56 | N | 268] C:\sqmdata01.sqm [16/07/2009 - 21:53:03 | N | 268] C:\sqmdata02.sqm [14/08/2009 - 21:40:29 | N | 268] C:\sqmdata03.sqm [29/08/2009 - 15:12:19 | N | 232] C:\sqmdata04.sqm [16/09/2009 - 20:40:27 | N | 268] C:\sqmdata05.sqm [01/10/2009 - 20:39:30 | N | 268] C:\sqmdata06.sqm [02/10/2009 - 23:05:03 | N | 172] C:\sqmdata07.sqm [06/10/2009 - 03:48:38 | N | 232] C:\sqmdata08.sqm [18/11/2009 - 13:19:41 | N | 232] C:\sqmdata09.sqm [18/11/2009 - 13:24:37 | N | 232] C:\sqmdata10.sqm [13/02/2009 - 00:35:50 | N | 232] C:\sqmdata11.sqm [27/02/2009 - 21:52:06 | N | 268] C:\sqmdata12.sqm [16/03/2009 - 21:10:59 | N | 268] C:\sqmdata13.sqm [18/03/2009 - 19:39:41 | N | 232] C:\sqmdata14.sqm [18/03/2009 - 19:39:43 | N | 208] C:\sqmdata15.sqm [18/03/2009 - 19:39:55 | N | 268] C:\sqmdata16.sqm [19/04/2009 - 00:18:01 | N | 232] C:\sqmdata17.sqm [22/04/2009 - 16:19:36 | N | 268] C:\sqmdata18.sqm [26/05/2009 - 19:23:15 | N | 268] C:\sqmdata19.sqm [26/05/2009 - 19:23:15 | N | 244] C:\sqmnoopt00.sqm [13/06/2009 - 22:09:55 | N | 244] C:\sqmnoopt01.sqm [16/07/2009 - 21:53:02 | N | 244] C:\sqmnoopt02.sqm [14/08/2009 - 21:40:29 | N | 244] C:\sqmnoopt03.sqm [29/08/2009 - 15:12:18 | N | 244] C:\sqmnoopt04.sqm [16/09/2009 - 20:40:27 | N | 244] C:\sqmnoopt05.sqm [01/10/2009 - 20:39:30 | N | 244] C:\sqmnoopt06.sqm [02/10/2009 - 23:05:03 | N | 172] C:\sqmnoopt07.sqm [06/10/2009 - 03:48:38 | N | 244] C:\sqmnoopt08.sqm [18/11/2009 - 13:19:41 | N | 244] C:\sqmnoopt09.sqm [18/11/2009 - 13:24:37 | N | 244] C:\sqmnoopt10.sqm [13/02/2009 - 00:35:50 | N | 244] C:\sqmnoopt11.sqm [27/02/2009 - 21:52:06 | N | 244] C:\sqmnoopt12.sqm [16/03/2009 - 21:10:59 | N | 244] C:\sqmnoopt13.sqm [18/03/2009 - 19:39:40 | N | 244] C:\sqmnoopt14.sqm [18/03/2009 - 19:39:43 | N | 172] C:\sqmnoopt15.sqm [18/03/2009 - 19:39:55 | N | 244] C:\sqmnoopt16.sqm [19/04/2009 - 00:18:00 | N | 244] C:\sqmnoopt17.sqm [22/04/2009 - 16:19:36 | N | 244] C:\sqmnoopt18.sqm [26/05/2009 - 19:23:15 | N | 244] C:\sqmnoopt19.sqm [19/11/2004 - 01:27:12 | SHD ] C:\System Volume Information [29/07/2011 - 21:52:28 | N | 95418] C:\TDSSKiller.2.5.13.0_29.07.2011_21.41.33_log.txt [18/08/2002 - 13:41:26 | N | 2843] C:\TIPS.TXT [30/07/2011 - 10:00:30 | D ] C:\UsbFix [30/07/2011 - 10:03:06 | A | 1276] C:\UsbFix.txt [18/12/2002 - 22:52:02 | N | 3668] C:\wa3frlicence.txt [18/12/2002 - 22:37:12 | N | 10208] C:\whatsnew.txt [30/07/2011 - 00:45:45 | D ] C:\WINDOWS [20/11/2006 - 20:00:56 | N | 10086] C:\WINDOWSMOBILOG.TXT [19/12/2007 - 14:31:47 | N | 7] C:\WMDO.CFG [11/07/2004 - 15:41:06 | D ] C:\WUTemp [12/12/2004 - 22:05:10 | D ] C:\~BVDCD.T [13/11/2010 - 10:39:50 | N | 23924429] F:\figaro 2010.wmv [31/12/2010 - 00:29:23 | N | 250678485] F:\Montage vacances oliveres.wmv [01/12/2010 - 08:41:38 | N | 237884066] F:\oliveres 1ere partie.wmv [01/12/2010 - 06:50:12 | N | 107266575] F:\oliveres.wmv [30/07/2011 - 10:00:30 | SHD ] F:\RECYCLER [21/10/2010 - 13:25:47 | SHD ] F:\System Volume Information [16/10/2010 - 14:13:16 | N | 733947904] F:\Tout ce qui brille.avi [03/06/2010 - 15:53:06 | N | 4096] G:\._.Trashes [25/01/2008 - 22:52:30 | SHD ] G:\System Volume Information [03/06/2010 - 15:53:06 | D ] G:\.Trashes [03/06/2010 - 15:53:06 | D ] G:\.fseventsd [03/06/2010 - 15:53:06 | D ] G:\.Spotlight-V100 [29/07/2011 - 16:37:48 | N | 10486] G:\hijackthis.log [27/07/2011 - 22:57:24 | D ] G:\bookmark de mes favoris internet [27/07/2011 - 23:20:14 | D ] G:\copie photofiltre programmes files dans C [26/01/2008 - 07:33:58 | SHD ] G:\Recycled [27/07/2011 - 23:01:44 | D ] G:\copie mes documents de disque C faite le 27 07 2011 [29/07/2011 - 16:28:36 | N | 19456] G:\site pour highjackthis à quoi ça sert.doc [08/04/2009 - 15:56:14 | ASH | 223232] G:\Thumbs.db [15/08/2009 - 02:04:00 | D ] G:\7b07adaa97de166a0e2a0b85 [06/11/2009 - 20:05:06 | D ] G:\CLAUDINE [06/11/2009 - 20:06:34 | D ] G:\PHOTOS [27/01/2010 - 15:17:48 | D ] G:\copie PC TOUT [27/01/2010 - 19:48:58 | D ] G:\Book Bijoux CLÉO C [14/02/2010 - 01:23:14 | D ] G:\restore_mcf-Dateien [10/06/2010 - 21:49:28 | D ] G:\$RECYCLE.BIN ################## | Vaccin | C:\Autorun.inf -> Vaccin créé par UsbFix (TeamXscript) F:\Autorun.inf -> Vaccin créé par UsbFix (TeamXscript) G:\Autorun.inf -> Vaccin créé par UsbFix (TeamXscript) ################## | Upload | Veuillez envoyer le fichier: C:\UsbFix_Upload_Me_MAXDATA-CFB910E.zip http://www.teamxscript.org/Upload.php Merci de votre contribution. ################## | E.O.F |
- le 30 juillet 2011
- 16 réponses
analyse highjackthis...gros problèmes sur mon PC

gats99 a répondu à un(e) sujet de gats99 dans Analyses et éradication malwares

Voici le rapport USBFix, je me reconnecte dès demain matin....pour la suite, encore un immense merci de m'aider ainsi. @+++ ############################## | UsbFix 7.052 | [Recherche] Utilisateur: GAETAN (Administrateur) # MAXDATA-CFB910E [ ] Mis à jour le 26/07/2011 par El Desaparecido Lancé à 01:26:15 | 30/07/2011 Site Web: http://www.teamxscript.org Submit your sample: http://www.teamxscript.org/Upload.php Contact: TeamXscript.ElDesaparecido@gmail.com CPU: AMD Athlon XP 2000+ Microsoft Windows XP Édition familiale (5.1.2600 32-Bit) # Service Pack 2 Internet Explorer 7.0.5730.11 Pare-feu Windows: Activé Antivirus: avast! Antivirus 5.0.100664499 [Enabled | Updated] RAM -> 1503 Mo C:\ (%systemdrive%) -> Disque fixe # 37 Go (13 Go libre(s) - 35%) [] # NTFS D:\ -> CD-ROM E:\ -> CD-ROM F:\ -> Disque fixe # 37 Go (36 Go libre(s) - 96%) [DONNEES] # NTFS G:\ -> Disque fixe # 56 Go (9 Go libre(s) - 16%) [sTOREX] # FAT32 ################## | Éléments infectieux | Présent! C:\aston.exe ################## | Registre | Présent! HKLM\Software\Microsoft\Windows\CurrentVersion\Policies\System|DisableRegistryTools Présent! HKLM\Software\Microsoft\Windows\CurrentVersion\Policies\explorer|NoDrives Présent! HKCU\Software\Microsoft\Windows\CurrentVersion\Policies\explorer|NoDrives ################## | Mountpoints2 | ################## | Vaccin | (!) Cet ordinateur n'est pas vacciné! ################## | E.O.F |
- le 29 juillet 2011
- 16 réponses
analyse highjackthis...gros problèmes sur mon PC

gats99 a répondu à un(e) sujet de gats99 dans Analyses et éradication malwares

Veuillez m'excuser d'avoir mis tant de temps à poster le rapport Combofix, mais j'ai du m'y reprendre à 2 fois car la première fois, le PC s'est éteint tout seul puis a redémarré et terminé l'analyse Combofix, mais pas de rapport ni sur l'écran, ni dans C/Combofix.txt. J'ai donc tout recommencé et cette fois voici donc le rapport ci-dessous : ComboFix 11-07-29.03 - GAETAN 30/07/2011 0:21.2.1 - x86 Microsoft Windows XP Édition familiale 5.1.2600.2.1252.33.1036.18.1503.1096 [GMT 2:00] Lancé depuis: c:\documents and settings\GAETAN\Bureau\ComboFix.exe AV: avast! Antivirus *Disabled/Updated* {7591DB91-41F0-48A3-B128-1A293FD8233D} . . (((((((((((((((((((((((((((((((((((( Autres suppressions )))))))))))))))))))))))))))))))))))))))))))))))) . . c:\documents and settings\GAETAN\Recent\Thumbs.db c:\documents and settings\GAETAN\WINDOWS c:\program files\INSTALL.LOG C:\readme.txt C:\sfide.exe c:\windows\iun6002.exe c:\windows\ST6UNST.000 c:\windows\system32\Thumbs.db . . ((((((((((((((((((((((((((((((((((((((( Pilotes/Services ))))))))))))))))))))))))))))))))))))))))))))))))) . . -------\Legacy_MYS_MUTEX_ALGORITHM_SERVICE -------\Legacy_SYSDRV32 -------\Legacy_WKSPATCH -------\Service_WksPatch . . ((((((((((((((((((((((((((((( Fichiers créés du 2011-06-28 au 2011-07-29 )))))))))))))))))))))))))))))))))))) . . 2011-07-29 17:37 . 2011-07-29 17:37 512 ----a-w- C:\PhysicalDisk0_MBR.bin 2011-07-29 17:22 . 2011-07-29 17:36 -------- d-----w- c:\program files\ZHPDiag 2011-07-18 16:47 . 2011-07-18 16:47 -------- d-----w- c:\program files\Fichiers communs\Skype . . . (((((((((((((((((((((((((((((((((( Compte-rendu de Find3M )))))))))))))))))))))))))))))))))))))))))))))))) . 2011-07-05 04:38 . 2011-05-14 13:26 404640 ----a-w- c:\windows\system32\FlashPlayerCPLApp.cpl 2011-07-04 11:43 . 2010-07-11 10:11 40112 ----a-w- c:\windows\avastSS.scr 2011-07-04 11:43 . 2007-01-17 18:20 199304 ----a-w- c:\windows\system32\aswBoot.exe 2011-07-04 11:36 . 2011-06-25 06:23 441176 ----a-w- c:\windows\system32\drivers\aswSnx.sys 2011-07-04 11:36 . 2008-04-20 14:17 309848 ----a-w- c:\windows\system32\drivers\aswSP.sys 2011-07-04 11:35 . 2007-01-17 18:21 43608 ----a-w- c:\windows\system32\drivers\aswTdi.sys 2011-07-04 11:35 . 2007-01-17 18:21 102616 ----a-w- c:\windows\system32\drivers\aswmon2.sys 2011-07-04 11:35 . 2007-01-17 18:21 96344 ----a-w- c:\windows\system32\drivers\aswmon.sys 2011-07-04 11:32 . 2007-01-17 18:21 25432 ----a-w- c:\windows\system32\drivers\aswRdr.sys 2011-07-04 11:32 . 2007-01-17 18:21 30808 ----a-w- c:\windows\system32\drivers\aavmker4.sys 2011-07-04 11:32 . 2008-04-20 14:17 19544 ----a-w- c:\windows\system32\drivers\aswFsBlk.sys 2011-05-04 02:52 . 2010-04-27 16:15 472808 ----a-w- c:\windows\system32\deployJava1.dll 2011-05-04 00:25 . 2007-05-01 07:49 73728 ----a-w- c:\windows\system32\javacpl.cpl 2006-06-05 21:01 . 2006-06-05 21:01 60526 ----a-w- c:\program files\mozilla firefox\components\jar50.dll 2006-06-05 21:01 . 2006-06-05 21:01 49256 ----a-w- c:\program files\mozilla firefox\components\jsd3250.dll 2006-06-05 21:01 . 2006-06-05 21:01 166000 ----a-w- c:\program files\mozilla firefox\components\xpinstal.dll . . ((((((((((((((((((((((((((((((((( Points de chargement Reg )))))))))))))))))))))))))))))))))))))))))))))))) . . *Note* les éléments vides & les éléments initiaux légitimes ne sont pas listés REGEDIT4 . [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\00avast] @="{472083B0-C522-11CF-8763-00608CC02F24}" [HKEY_CLASSES_ROOT\CLSID\{472083B0-C522-11CF-8763-00608CC02F24}] 2011-07-04 11:43 122512 ----a-w- c:\program files\Alwil Software\Avast5\ashShell.dll . [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "swg"="c:\program files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe" [2007-04-01 68856] "Picasa Media Detector"="c:\program files\Picasa2\PicasaMediaDetector.exe" [2008-08-21 443968] . [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "SoundMan"="SOUNDMAN.EXE" [2003-02-10 47104] "VTTimer"="VTTimer.exe" [2003-05-07 36864] "EPSON Stylus C84 Series"="c:\windows\System32\spool\DRIVERS\W32X86\3\E_S10IC2.EXE" [2003-05-27 99840] "QuickTime Task"="c:\program files\QuickTime\QTTask.exe" [2010-11-29 421888] "avast"="c:\program files\Alwil Software\Avast5\avastUI.exe" [2011-07-04 3493720] "SunJavaUpdateSched"="c:\program files\Fichiers communs\Java\Java Update\jusched.exe" [2011-04-08 254696] . [HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run] "CTFMON.EXE"="c:\windows\System32\CTFMON.EXE" [2004-08-19 15360] "ALUAlert"="c:\program files\Symantec\LiveUpdate\ALUNotify.exe" [2004-08-24 263280] . [HKLM\~\startupfolder\C:^Documents and Settings^All Users^Menu Démarrer^Programmes^Démarrage^Adobe Gamma Loader.exe.lnk] path=c:\documents and settings\All Users\Menu Démarrer\Programmes\Démarrage\Adobe Gamma Loader.exe.lnk backup=c:\windows\pss\Adobe Gamma Loader.exe.lnkCommon Startup . [HKLM\~\startupfolder\C:^Documents and Settings^All Users^Menu Démarrer^Programmes^Démarrage^Adobe Gamma Loader.lnk] path=c:\documents and settings\All Users\Menu Démarrer\Programmes\Démarrage\Adobe Gamma Loader.lnk backup=c:\windows\pss\Adobe Gamma Loader.lnkCommon Startup . [HKLM\~\startupfolder\C:^Documents and Settings^All Users^Menu Démarrer^Programmes^Démarrage^e-Carte Bleue La Banque Postale.lnk] path=c:\documents and settings\All Users\Menu Démarrer\Programmes\Démarrage\e-Carte Bleue La Banque Postale.lnk backup=c:\windows\pss\e-Carte Bleue La Banque Postale.lnkCommon Startup . [HKLM\~\startupfolder\C:^Documents and Settings^All Users^Menu Démarrer^Programmes^Démarrage^Microsoft Office.lnk] path=c:\documents and settings\All Users\Menu Démarrer\Programmes\Démarrage\Microsoft Office.lnk backup=c:\windows\pss\Microsoft Office.lnkCommon Startup . [HKLM\~\startupfolder\C:^Documents and Settings^All Users^Menu Démarrer^Programmes^Démarrage^WinZip Quick Pick.lnk] path=c:\documents and settings\All Users\Menu Démarrer\Programmes\Démarrage\WinZip Quick Pick.lnk backup=c:\windows\pss\WinZip Quick Pick.lnkCommon Startup . [HKLM\~\startupfolder\C:^Documents and Settings^GAETAN^Menu Démarrer^Programmes^Démarrage^Stardock ObjectDock.lnk] path=c:\documents and settings\GAETAN\Menu Démarrer\Programmes\Démarrage\Stardock ObjectDock.lnk backup=c:\windows\pss\Stardock ObjectDock.lnkStartup . [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\CamserviceDeluxe2] 2007-08-10 13:38 81920 ----a-w- c:\program files\Hercules\Deluxe Optical Glass\CamService.exe . [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\eCarteBleue-LP-P1] 2002-12-20 08:49 188416 ----a-w- c:\documents and settings\GAETAN\Mes documents\CDI\ecartebleue_laposte_adesio\ECB.exe . [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\HomePlayer] 2007-11-06 20:58 294912 ----a-w- c:\program files\HomePlayer\HomePlayer.exe . [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\QuickTime Task] 2010-11-29 15:38 421888 ----a-w- c:\program files\QuickTime\QTTask.exe . [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Skype] 2010-10-11 14:49 14940040 ----a-r- c:\program files\Skype\Phone\Skype.exe . [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Sony Ericsson PC Suite] 2007-03-27 23:07 593920 ----a-r- c:\program files\Sony Ericsson\Mobile2\Application Launcher\Application Launcher.exe . [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\swg] 2007-04-01 17:20 68856 ----a-w- c:\program files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe . [HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List] "%windir%\\system32\\sessmgr.exe"= "c:\\Program Files\\eMule\\emule.exe"= "c:\\WINDOWS\\system32\\spool\\drivers\\w32x86\\3\\SAGENT4.EXE"= "c:\\Program Files\\Freeplayer\\vlc\\vlc.exe"= "%windir%\\Network Diagnostic\\xpnetdiag.exe"= "c:\\Documents and Settings\\GAETAN\\Application Data\\SopCast\\adv\\SopAdver.exe"= "c:\\Program Files\\MaxTV\\maxtv.exe"= "c:\\Program Files\\Hercules\\Deluxe Optical Glass\\Station2.exe"= "c:\\Program Files\\HomePlayer\\HomePlayer.exe"= "c:\\Program Files\\HomePlayer\\VLC\\vlc.exe"= "c:\\Program Files\\Windows Live\\Messenger\\wlcsdk.exe"= "c:\\Program Files\\Windows Live\\Messenger\\msnmsgr.exe"= "c:\\Program Files\\Messenger\\msmsgs.exe"= "c:\\Program Files\\Skype\\Plugin Manager\\skypePM.exe"= "c:\\Program Files\\Bonjour\\mDNSResponder.exe"= "c:\\Program Files\\Skype\\Phone\\Skype.exe"= . [HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\GloballyOpenPorts\List] "3389:TCP"= 3389:TCP:@xpsp2res.dll,-22009 . R0 xmasbus;xmasbus;c:\windows\system32\drivers\xmasbus.sys [26/02/2005 17:02 140800] R0 xmasscsi;xmasscsi;c:\windows\system32\drivers\xmasscsi.sys [26/02/2005 17:02 5248] R1 aswSnx;aswSnx;c:\windows\system32\drivers\aswSnx.sys [25/06/2011 08:23 441176] R1 aswSP;aswSP;c:\windows\system32\drivers\aswSP.sys [20/04/2008 16:17 309848] R2 aswFsBlk;aswFsBlk;c:\windows\system32\drivers\aswFsBlk.sys [20/04/2008 16:17 19544] R3 camfilt2;camfilt2;c:\windows\system32\drivers\camfilt2.sys [08/01/2009 19:45 94720] S2 gupdate;Service Google Update (gupdate);c:\program files\Google\Update\GoogleUpdate.exe [30/01/2010 11:23 135664] S3 fbxusb;FreeBox USB Network Adapter;c:\windows\system32\drivers\fbxusb.sys [31/12/2003 11:35 18848] S3 gupdatem;Service Google Update (gupdatem);c:\program files\Google\Update\GoogleUpdate.exe [30/01/2010 11:23 135664] S3 sea3bus;Sony Ericsson Device 0A3 driver (WDM);c:\windows\system32\drivers\sea3bus.sys [24/07/2009 08:23 61600] S3 sea3mdfl;Sony Ericsson Device 0A3 USB WMC Modem Filter;c:\windows\system32\drivers\sea3mdfl.sys [24/07/2009 08:23 9392] S3 sea3mdm;Sony Ericsson Device 0A3 USB WMC Modem Driver;c:\windows\system32\drivers\sea3mdm.sys [24/07/2009 08:23 97152] S3 sea3mgmt;Sony Ericsson Device 0A3 USB WMC Device Management Drivers (WDM);c:\windows\system32\drivers\sea3mgmt.sys [24/07/2009 08:27 88656] S3 sea3nd5;Sony Ericsson Device 0A3 USB Ethernet Emulation SEMCA3 (NDIS);c:\windows\system32\drivers\sea3nd5.sys [24/07/2009 08:27 18736] S3 sea3obex;Sony Ericsson Device 0A3 USB WMC OBEX Interface;c:\windows\system32\drivers\sea3obex.sys [24/07/2009 08:24 86464] S3 sea3unic;Sony Ericsson Device 0A3 USB Ethernet Emulation SEMCA3 (WDM);c:\windows\system32\drivers\sea3unic.sys [24/07/2009 08:27 90832] . --- Autres Services/Pilotes en mémoire --- . *NewlyCreated* - GDINTERCEPTOR *Deregistered* - GDInterceptor . Contenu du dossier 'Tâches planifiées' . 2011-07-26 c:\windows\Tasks\AppleSoftwareUpdate.job - c:\program files\Apple Software Update\SoftwareUpdate.exe [2008-07-30 10:34] . 2011-07-29 c:\windows\Tasks\Google Software Updater.job - c:\program files\Google\Common\Google Updater\GoogleUpdaterService.exe [2007-01-03 22:49] . 2011-07-29 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job - c:\program files\Google\Update\GoogleUpdate.exe [2010-01-30 09:23] . 2011-07-29 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job - c:\program files\Google\Update\GoogleUpdate.exe [2010-01-30 09:23] . . ------- Examen supplémentaire ------- . uInternet Settings,ProxyOverride = <local>;*.local IE: Add to Google Photos Screensa&ver - c:\windows\system32\GPhotos.scr/200 IE: Add to Windows &Live Favorites - http://favorites.live.com/quickadd.aspx IE: E&xporter vers Microsoft Excel - c:\progra~1\MICROS~2\Office10\EXCEL.EXE/3000 IE: Google Sidewiki... - c:\program files\Google\Google Toolbar\Component\GoogleToolbarDynamic_mui_en_43C348BC2E93EB2B.dll/cmsidewiki.html IE: {{C53BFCFC-7A54-4627-AEBA-2CD4871FCA97} - c:\microgaming\Poker\UnibetpokerMPP\MPPoker.exe TCP: DhcpNameServer = 212.27.40.241 212.27.40.240 DPF: DirectAnimation Java Classes - file://c:\windows\Java\classes\dajava.cab DPF: Microsoft XML Parser for Java - file://c:\windows\Java\classes\xmldso.cab DPF: {1F83CD9E-505E-4F87-BECE-0832A763E36F} - hxxp://www.mypixmania.com/importer/MypixUploader.cab DPF: {6DB731A3-B074-4118-8B1C-32511C65D836} - hxxp://www.mypixmania.com/tools/activex/fpu.cab FF - ProfilePath - c:\documents and settings\GAETAN\Application Data\Mozilla\Firefox\Profiles\tq93po6j.default\ FF - prefs.js: browser.search.selectedEngine - FF - prefs.js: keyword.URL - hxxp://search.live.com/results.aspx?mkt=fr-fr&FORM=MIMWA2&q= . - - - - ORPHELINS SUPPRIMES - - - - . HKCU-Run-MS Sound Config 16bit - sndcfg16.exe HKU-Default-Run-Microsoft Updates - wkssvr.exe HKU-Default-Run-Microsoft Services - lsrv.exe HKU-Default-Run-Microsoft Update - wuagmsd.exe HKU-Default-Run-Microsoft Update Machine - ntconfig.exe HKU-Default-Run-MS Sound Config 16bit - sndcfg16.exe MSConfigStartUp-MS Sound Config 16bit - sndcfg16.exe MSConfigStartUp-PopUpKiller - c:\docume~1\GAETAN\LOCALS~1\Temp\Rar$EX02.313\PopUpKiller.EXE AddRemove-iPlayer_1.0 - c:\windows\iun6002.exe . . . ************************************************************************** . catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, GMER - Rootkit Detector and Remover Rootkit scan 2011-07-30 00:45 Windows 5.1.2600 Service Pack 2 NTFS . Recherche de processus cachés ... . Recherche d'éléments en démarrage automatique cachés ... . Recherche de fichiers cachés ... . Scan terminé avec succès Fichiers cachés: 0 . ************************************************************************** . --------------------- DLLs chargées dans les processus actifs --------------------- . - - - - - - - > 'explorer.exe'(2364) c:\windows\system32\WPDShServiceObj.dll c:\program files\ArcSoft\Software Suite\PhotoImpression\share\pihook.dll c:\windows\system32\PortableDeviceTypes.dll c:\windows\system32\PortableDeviceApi.dll . ------------------------ Autres processus actifs ------------------------ . c:\program files\Alwil Software\Avast5\AvastSvc.exe c:\program files\Bonjour\mDNSResponder.exe c:\program files\Java\jre6\bin\jqs.exe c:\program files\Fichiers communs\Microsoft Shared\VS7DEBUG\MDM.EXE c:\program files\Microsoft\Search Enhancement Pack\SeaPort\SeaPort.exe c:\windows\SOUNDMAN.EXE . ************************************************************************** . Heure de fin: 2011-07-30 00:55:43 - La machine a redémarré ComboFix-quarantined-files.txt 2011-07-29 22:55 . Avant-CF: 13 455 179 776 octets libres Après-CF: 13 986 914 304 octets libres . - - End Of File - - 53D1D17754CF232E4BC46B83A5A80387
- le 29 juillet 2011
- 16 réponses
analyse highjackthis...gros problèmes sur mon PC

gats99 a répondu à un(e) sujet de gats99 dans Analyses et éradication malwares

rapport TDSSKiller KAPERSKY : 2011/07/29 21:41:33.0839 3508 TDSS rootkit removing tool 2.5.13.0 Jul 29 2011 17:24:11 2011/07/29 21:41:34.0073 3508 ================================================================================ 2011/07/29 21:41:34.0073 3508 SystemInfo: 2011/07/29 21:41:34.0073 3508 2011/07/29 21:41:34.0073 3508 OS Version: 5.1.2600 ServicePack: 2.0 2011/07/29 21:41:34.0073 3508 Product type: Workstation 2011/07/29 21:41:34.0073 3508 ComputerName: MAXDATA-CFB910E 2011/07/29 21:41:34.0073 3508 UserName: GAETAN 2011/07/29 21:41:34.0073 3508 Windows directory: C:\WINDOWS 2011/07/29 21:41:34.0073 3508 System windows directory: C:\WINDOWS 2011/07/29 21:41:34.0073 3508 Processor architecture: Intel x86 2011/07/29 21:41:34.0073 3508 Number of processors: 1 2011/07/29 21:41:34.0073 3508 Page size: 0x1000 2011/07/29 21:41:34.0073 3508 Boot type: Normal boot 2011/07/29 21:41:34.0073 3508 ================================================================================ 2011/07/29 21:41:36.0230 3508 Initialize success 2011/07/29 21:42:00.0089 1224 ================================================================================ 2011/07/29 21:42:00.0089 1224 Scan started 2011/07/29 21:42:00.0089 1224 Mode: Manual; 2011/07/29 21:42:00.0089 1224 ================================================================================ 2011/07/29 21:42:00.0761 1224 61883 (86d7b1e70661d754685b9ac6d749aae5) C:\WINDOWS\system32\DRIVERS\61883.sys 2011/07/29 21:42:01.0011 1224 Aavmker4 (dfcdd5936cad0138775d5a105d4c7716) C:\WINDOWS\system32\drivers\Aavmker4.sys 2011/07/29 21:42:01.0698 1224 ACPI (0bd94fbfc14ea3606cd6ca4c0255baa3) C:\WINDOWS\system32\DRIVERS\ACPI.sys 2011/07/29 21:42:01.0933 1224 ACPIEC (e4abc1212b70bb03d35e60681c447210) C:\WINDOWS\system32\drivers\ACPIEC.sys 2011/07/29 21:42:02.0152 1224 adpu160m (9a11864873da202c996558b2106b0bbc) C:\WINDOWS\System32\DRIVERS\adpu160m.sys 2011/07/29 21:42:02.0417 1224 aec (1ee7b434ba961ef845de136224c30fec) C:\WINDOWS\system32\drivers\aec.sys 2011/07/29 21:42:02.0683 1224 AFD (55e6e1c51b6d30e54335750955453702) C:\WINDOWS\System32\drivers\afd.sys 2011/07/29 21:42:03.0136 1224 aic78u2 (19dd0fb48b0c18892f70e2e7d61a1529) C:\WINDOWS\System32\DRIVERS\aic78u2.sys 2011/07/29 21:42:03.0370 1224 aic78xx (b7fe594a7468aa0132deb03fb8e34326) C:\WINDOWS\System32\DRIVERS\aic78xx.sys 2011/07/29 21:42:03.0667 1224 ALCXWDM (ae754b357eefcd586b297dff373122ae) C:\WINDOWS\system32\drivers\ALCXWDM.SYS 2011/07/29 21:42:04.0152 1224 AmdK7 (c0f59933070392e662b3c2bb2be77955) C:\WINDOWS\system32\DRIVERS\amdk7.sys 2011/07/29 21:42:04.0652 1224 Arp1394 (f0d692b0bffb46e30eb3cea168bbc49f) C:\WINDOWS\system32\DRIVERS\arp1394.sys 2011/07/29 21:42:05.0605 1224 aswFsBlk (861cb512e4e850e87dd2316f88d69330) C:\WINDOWS\system32\drivers\aswFsBlk.sys 2011/07/29 21:42:05.0839 1224 aswMon2 (7857e0b4c817f69ff463eea2c63e56f9) C:\WINDOWS\system32\drivers\aswMon2.sys 2011/07/29 21:42:06.0120 1224 aswRdr (8db043bf96bb6d334e5b4888e709e1c7) C:\WINDOWS\system32\drivers\aswRdr.sys 2011/07/29 21:42:06.0386 1224 aswSnx (17230708a2028cd995656df455f2e303) C:\WINDOWS\system32\drivers\aswSnx.sys 2011/07/29 21:42:06.0636 1224 aswSP (dbedd9d43b00630966ef05d2d8d04cee) C:\WINDOWS\system32\drivers\aswSP.sys 2011/07/29 21:42:06.0870 1224 aswTdi (984cfce2168286c2511695c2f9621475) C:\WINDOWS\system32\drivers\aswTdi.sys 2011/07/29 21:42:07.0089 1224 AsyncMac (02000abf34af4c218c35d257024807d6) C:\WINDOWS\system32\DRIVERS\asyncmac.sys 2011/07/29 21:42:07.0323 1224 atapi (cdfe4411a69c224bd1d11b2da92dac51) C:\WINDOWS\system32\DRIVERS\atapi.sys 2011/07/29 21:42:07.0823 1224 Atmarpc (ec88da854ab7d7752ec8be11a741bb7f) C:\WINDOWS\system32\DRIVERS\atmarpc.sys 2011/07/29 21:42:08.0089 1224 audstub (d9f724aa26c010a217c97606b160ed68) C:\WINDOWS\system32\DRIVERS\audstub.sys 2011/07/29 21:42:08.0323 1224 Avc (87c223adb8f7596b31caae3c67b16ddd) C:\WINDOWS\system32\DRIVERS\avc.sys 2011/07/29 21:42:08.0761 1224 Beep (da1f27d85e0d1525f6621372e7b685e9) C:\WINDOWS\system32\drivers\Beep.sys 2011/07/29 21:42:09.0089 1224 camfilt2 (088c0978203d59425a12b2a53fccd02b) C:\WINDOWS\system32\DRIVERS\camfilt2.sys 2011/07/29 21:42:09.0292 1224 cbidf2k (90a673fc8e12a79afbed2576f6a7aaf9) C:\WINDOWS\system32\drivers\cbidf2k.sys 2011/07/29 21:42:09.0511 1224 CCDECODE (6163ed60b684bab19d3352ab22fc48b2) C:\WINDOWS\system32\DRIVERS\CCDECODE.sys 2011/07/29 21:42:09.0917 1224 Cdaudio (c1b486a7658353d33a10cc15211a873b) C:\WINDOWS\system32\drivers\Cdaudio.sys 2011/07/29 21:42:10.0214 1224 Cdfs (cd7d5152df32b47f4e36f710b35aae02) C:\WINDOWS\system32\drivers\Cdfs.sys 2011/07/29 21:42:10.0417 1224 cdrbsvsd (7fc46240546c16c0448c29c9d233b915) C:\WINDOWS\system32\drivers\cdrbsvsd.sys 2011/07/29 21:42:10.0667 1224 Cdrom (7b53584d94e9d8716b2de91d5f1cb42d) C:\WINDOWS\system32\DRIVERS\cdrom.sys 2011/07/29 21:42:12.0089 1224 Disk (00ca44e4534865f8a3b64f7c0984bff0) C:\WINDOWS\system32\DRIVERS\disk.sys 2011/07/29 21:42:12.0402 1224 dmboot (e2d3b7620310fe56685f9b15a6b404b3) C:\WINDOWS\system32\drivers\dmboot.sys 2011/07/29 21:42:12.0652 1224 dmio (c77f5c20aa70197a69aa84baa9de43c8) C:\WINDOWS\system32\drivers\dmio.sys 2011/07/29 21:42:12.0902 1224 dmload (e9317282a63ca4d188c0df5e09c6ac5f) C:\WINDOWS\system32\drivers\dmload.sys 2011/07/29 21:42:13.0136 1224 DMusic (a6f881284ac1150e37d9ae47ff601267) C:\WINDOWS\system32\drivers\DMusic.sys 2011/07/29 21:42:13.0589 1224 drmkaud (1ed4dbbae9f5d558dbba4cc450e3eb2e) C:\WINDOWS\system32\drivers\drmkaud.sys 2011/07/29 21:42:13.0902 1224 Fastfat (3117f595e9615e04f05a54fc15a03b20) C:\WINDOWS\system32\drivers\Fastfat.sys 2011/07/29 21:42:14.0136 1224 fbxusb (99b2f2d42631afaf14269a92ab68390f) C:\WINDOWS\system32\DRIVERS\fbxusb.sys 2011/07/29 21:42:14.0386 1224 Fdc (ced2e8396a8838e59d8fd529c680e02c) C:\WINDOWS\system32\DRIVERS\fdc.sys 2011/07/29 21:42:14.0652 1224 FETNDIS (e9648254056bce81a85380c0c3647dc4) C:\WINDOWS\system32\DRIVERS\fetnd5.sys 2011/07/29 21:42:14.0886 1224 Fips (8b121ff880683607ab2aef0340721718) C:\WINDOWS\system32\drivers\Fips.sys 2011/07/29 21:42:15.0136 1224 Flpydisk (0dd1de43115b93f4d85e889d7a86f548) C:\WINDOWS\system32\DRIVERS\flpydisk.sys 2011/07/29 21:42:15.0355 1224 FltMgr (3d234fb6d6ee875eb009864a299bea29) C:\WINDOWS\system32\drivers\fltmgr.sys 2011/07/29 21:42:15.0573 1224 Fs_Rec (3e1e2bd4f39b0e2b7dc4f4d2bcc2779a) C:\WINDOWS\system32\drivers\Fs_Rec.sys 2011/07/29 21:42:15.0792 1224 Ftdisk (a86859b77b908c18c2657f284aa29fe3) C:\WINDOWS\system32\DRIVERS\ftdisk.sys 2011/07/29 21:42:16.0058 1224 Gpc (c0f1d4a21de5a415df8170616703debf) C:\WINDOWS\system32\DRIVERS\msgpc.sys 2011/07/29 21:42:16.0386 1224 HidUsb (1de6783b918f540149aa69943bdfeba8) C:\WINDOWS\system32\DRIVERS\hidusb.sys 2011/07/29 21:42:16.0870 1224 HTTP (9f8b0f4276f618964fd118be4289b7cd) C:\WINDOWS\system32\Drivers\HTTP.sys 2011/07/29 21:42:17.0558 1224 i8042prt (d1efcbd693b5ba21314d06368c471070) C:\WINDOWS\system32\DRIVERS\i8042prt.sys 2011/07/29 21:42:17.0839 1224 Imapi (f8aa320c6a0409c0380e5d8a99d76ec6) C:\WINDOWS\system32\DRIVERS\imapi.sys 2011/07/29 21:42:18.0339 1224 IntelIde (1367812f8a974e0c13a4888fa5e7ede6) C:\WINDOWS\System32\DRIVERS\intelide.sys 2011/07/29 21:42:18.0573 1224 ip6fw (4448006b6bc60e6c027932cfc38d6855) C:\WINDOWS\system32\drivers\ip6fw.sys 2011/07/29 21:42:18.0808 1224 IpFilterDriver (731f22ba402ee4b62748adaf6363c182) C:\WINDOWS\system32\DRIVERS\ipfltdrv.sys 2011/07/29 21:42:19.0042 1224 IpInIp (e1ec7f5da720b640cd8fb8424f1b14bb) C:\WINDOWS\system32\DRIVERS\ipinip.sys 2011/07/29 21:42:19.0292 1224 IpNat (e2168cbc7098ffe963c6f23f472a3593) C:\WINDOWS\system32\DRIVERS\ipnat.sys 2011/07/29 21:42:19.0527 1224 IPSec (64537aa5c003a6afeee1df819062d0d1) C:\WINDOWS\system32\DRIVERS\ipsec.sys 2011/07/29 21:42:19.0745 1224 IRENUM (50708daa1b1cbb7d6ac1cf8f56a24410) C:\WINDOWS\system32\DRIVERS\irenum.sys 2011/07/29 21:42:19.0964 1224 isapnp (54632f1a7de61dc3615d756f2a90fa72) C:\WINDOWS\system32\DRIVERS\isapnp.sys 2011/07/29 21:42:20.0245 1224 Kbdclass (e798705e8dc7fab596ef6bfdf167e007) C:\WINDOWS\system32\DRIVERS\kbdclass.sys 2011/07/29 21:42:20.0511 1224 kmixer (ba5deda4d934e6288c2f66caf58d2562) C:\WINDOWS\system32\drivers\kmixer.sys 2011/07/29 21:42:20.0777 1224 KSecDD (674d3e5a593475915dc6643317192403) C:\WINDOWS\system32\drivers\KSecDD.sys 2011/07/29 21:42:21.0339 1224 mnmdd (4ae068242760a1fb6e1a44bf4e16afa6) C:\WINDOWS\system32\drivers\mnmdd.sys 2011/07/29 21:42:21.0573 1224 Modem (5ac7e16f5b40a6da14b5f2b3ada4693e) C:\WINDOWS\system32\drivers\Modem.sys 2011/07/29 21:42:21.0823 1224 Mouclass (7d4f19411bd941e1d432a99e24230386) C:\WINDOWS\system32\DRIVERS\mouclass.sys 2011/07/29 21:42:22.0042 1224 mouhid (124d6846040c79b9c997f78ef4b2a4e5) C:\WINDOWS\system32\DRIVERS\mouhid.sys 2011/07/29 21:42:22.0277 1224 MountMgr (65653f3b4477f3c63e68a9659f85ee2e) C:\WINDOWS\system32\drivers\MountMgr.sys 2011/07/29 21:42:22.0745 1224 MRxDAV (29414447eb5bde2f8397dc965dbb3156) C:\WINDOWS\system32\DRIVERS\mrxdav.sys 2011/07/29 21:42:23.0011 1224 MRxSmb (fb6c89bb3ce282b08bdb1e3c179e1c39) C:\WINDOWS\system32\DRIVERS\mrxsmb.sys 2011/07/29 21:42:23.0292 1224 MSDV (6dd721dfd2648f3f6d5808b5ba6cb095) C:\WINDOWS\system32\DRIVERS\msdv.sys 2011/07/29 21:42:23.0542 1224 Msfs (561b3a4333ca2dbdba28b5b956822519) C:\WINDOWS\system32\drivers\Msfs.sys 2011/07/29 21:42:23.0792 1224 MSKSSRV (ae431a8dd3c1d0d0610cdbac16057ad0) C:\WINDOWS\system32\drivers\MSKSSRV.sys 2011/07/29 21:42:24.0042 1224 MSPCLOCK (13e75fef9dfeb08eeded9d0246e1f448) C:\WINDOWS\system32\drivers\MSPCLOCK.sys 2011/07/29 21:42:24.0292 1224 MSPQM (1988a33ff19242576c3d0ef9ce785da7) C:\WINDOWS\system32\drivers\MSPQM.sys 2011/07/29 21:42:24.0527 1224 mssmbios (469541f8bfd2b32659d5d463a6714bce) C:\WINDOWS\system32\DRIVERS\mssmbios.sys 2011/07/29 21:42:24.0745 1224 MSTEE (bf13612142995096ab084f2db7f40f77) C:\WINDOWS\system32\drivers\MSTEE.sys 2011/07/29 21:42:24.0995 1224 Mup (82035e0f41c2dd05ae41d27fe6cf7de1) C:\WINDOWS\system32\drivers\Mup.sys 2011/07/29 21:42:25.0230 1224 NABTSFEC (5c8dc6429c43dc6177c1fa5b76290d1a) C:\WINDOWS\system32\DRIVERS\NABTSFEC.sys 2011/07/29 21:42:25.0464 1224 NDIS (558635d3af1c7546d26067d5d9b6959e) C:\WINDOWS\system32\drivers\NDIS.sys 2011/07/29 21:42:25.0714 1224 NdisIP (520ce427a8b298f54112857bcf6bde15) C:\WINDOWS\system32\DRIVERS\NdisIP.sys 2011/07/29 21:42:25.0933 1224 NdisTapi (08d43bbdacdf23f34d79e44ed35c1b4c) C:\WINDOWS\system32\DRIVERS\ndistapi.sys 2011/07/29 21:42:26.0167 1224 Ndisuio (34d6cd56409da9a7ed573e1c90a308bf) C:\WINDOWS\system32\DRIVERS\ndisuio.sys 2011/07/29 21:42:26.0402 1224 NdisWan (0b90e255a9490166ab368cd55a529893) C:\WINDOWS\system32\DRIVERS\ndiswan.sys 2011/07/29 21:42:26.0667 1224 NDProxy (59fc3fb44d2669bc144fd87826bb571f) C:\WINDOWS\system32\drivers\NDProxy.sys 2011/07/29 21:42:26.0933 1224 NetBIOS (3a2aca8fc1d7786902ca434998d7ceb4) C:\WINDOWS\system32\DRIVERS\netbios.sys 2011/07/29 21:42:27.0183 1224 NetBT (0c80e410cd2f47134407ee7dd19cc86b) C:\WINDOWS\system32\DRIVERS\netbt.sys 2011/07/29 21:42:27.0527 1224 NIC1394 (5c5c53db4fef16cf87b9911c7e8c6fbc) C:\WINDOWS\system32\DRIVERS\nic1394.sys 2011/07/29 21:42:27.0792 1224 Npfs (4f601bcb8f64ea3ac0994f98fed03f8e) C:\WINDOWS\system32\drivers\Npfs.sys 2011/07/29 21:42:28.0073 1224 Ntfs (19a811ef5f1ed5c926a028ce107ff1af) C:\WINDOWS\system32\drivers\Ntfs.sys 2011/07/29 21:42:28.0339 1224 Null (73c1e1f395918bc2c6dd67af7591a3ad) C:\WINDOWS\system32\drivers\Null.sys 2011/07/29 21:42:28.0558 1224 NwlnkFlt (b305f3fad35083837ef46a0bbce2fc57) C:\WINDOWS\system32\DRIVERS\nwlnkflt.sys 2011/07/29 21:42:28.0792 1224 NwlnkFwd (c99b3415198d1aab7227f2c88fd664b9) C:\WINDOWS\system32\DRIVERS\nwlnkfwd.sys 2011/07/29 21:42:29.0042 1224 ohci1394 (0951db8e5823ea366b0e408d71e1ba2a) C:\WINDOWS\system32\DRIVERS\ohci1394.sys 2011/07/29 21:42:29.0292 1224 Parport (318696359ac7df48d1e51974ec527dd2) C:\WINDOWS\system32\DRIVERS\parport.sys 2011/07/29 21:42:29.0527 1224 PartMgr (3334430c29dc338092f79c38ef7b4cd0) C:\WINDOWS\system32\drivers\PartMgr.sys 2011/07/29 21:42:29.0745 1224 ParVdm (9575c5630db8fb804649a6959737154c) C:\WINDOWS\system32\drivers\ParVdm.sys 2011/07/29 21:42:29.0980 1224 PCI (7c5da5c1ed801ad8b0309d5514f0b75e) C:\WINDOWS\system32\DRIVERS\pci.sys 2011/07/29 21:42:30.0448 1224 PCIIde (f4bfde7209c14a07aaa61e4d6ae69eac) C:\WINDOWS\system32\DRIVERS\pciide.sys 2011/07/29 21:42:30.0683 1224 Pcmcia (641da274e163617ea7a33506bc6da8e3) C:\WINDOWS\system32\drivers\Pcmcia.sys 2011/07/29 21:42:32.0277 1224 pfc (444f122e68db44c0589227781f3c8b3f) C:\WINDOWS\system32\drivers\pfc.sys 2011/07/29 21:42:32.0558 1224 PptpMiniport (1c5cc65aac0783c344f16353e60b72ac) C:\WINDOWS\system32\DRIVERS\raspptp.sys 2011/07/29 21:42:32.0777 1224 Processor (f480712b761e538bc8e44ede60f3a3c3) C:\WINDOWS\system32\DRIVERS\processr.sys 2011/07/29 21:42:33.0027 1224 PSched (48671f327553dcf1d27f6197f622a668) C:\WINDOWS\system32\DRIVERS\psched.sys 2011/07/29 21:42:33.0245 1224 Ptilink (80d317bd1c3dbc5d4fe7b1678c60cadd) C:\WINDOWS\system32\DRIVERS\ptilink.sys 2011/07/29 21:42:33.0495 1224 PxHelp20 (49452bfcec22f36a7a9b9c2181bc3042) C:\WINDOWS\system32\Drivers\PxHelp20.sys 2011/07/29 21:42:34.0808 1224 RasAcd (fe0d99d6f31e4fad8159f690d68ded9c) C:\WINDOWS\system32\DRIVERS\rasacd.sys 2011/07/29 21:42:35.0058 1224 Rasl2tp (98faeb4a4dcf812ba1c6fca4aa3e115c) C:\WINDOWS\system32\DRIVERS\rasl2tp.sys 2011/07/29 21:42:35.0355 1224 RasPppoe (7306eeed8895454cbed4669be9f79faa) C:\WINDOWS\system32\DRIVERS\raspppoe.sys 2011/07/29 21:42:35.0589 1224 Raspti (fdbb1d60066fcfbb7452fd8f9829b242) C:\WINDOWS\system32\DRIVERS\raspti.sys 2011/07/29 21:42:35.0823 1224 Rdbss (03b965b1ca47f6ef60eb5e51cb50e0af) C:\WINDOWS\system32\DRIVERS\rdbss.sys 2011/07/29 21:42:36.0058 1224 RDPCDD (4912d5b403614ce99c28420f75353332) C:\WINDOWS\system32\DRIVERS\RDPCDD.sys 2011/07/29 21:42:36.0323 1224 RDPWD (b54cd38a9ebfbf2b3561426e3fe26f62) C:\WINDOWS\system32\drivers\RDPWD.sys 2011/07/29 21:42:36.0589 1224 redbook (2cc30b68dd62b73d444a41322cd7fc4c) C:\WINDOWS\system32\DRIVERS\redbook.sys 2011/07/29 21:42:36.0917 1224 s616bus (ef4b5a8d53f15cb269469dd4e4bb0109) C:\WINDOWS\system32\DRIVERS\s616bus.sys 2011/07/29 21:42:37.0136 1224 s616mdfl (96187731eefcf83e844bc1ce6617aaeb) C:\WINDOWS\system32\DRIVERS\s616mdfl.sys 2011/07/29 21:42:37.0370 1224 s616mdm (d2dd87368bfecfa099e50dc120f3f513) C:\WINDOWS\system32\DRIVERS\s616mdm.sys 2011/07/29 21:42:37.0620 1224 s616mgmt (5f0be24e4d4fa134b0b2fef35d3a9d90) C:\WINDOWS\system32\DRIVERS\s616mgmt.sys 2011/07/29 21:42:37.0870 1224 s616nd5 (b9b507fcc67e204ef38e05ffd4176345) C:\WINDOWS\system32\DRIVERS\s616nd5.sys 2011/07/29 21:42:38.0136 1224 s616unic (e7e55048ebd5c17bfa791b4a6ec3d54b) C:\WINDOWS\system32\DRIVERS\s616unic.sys 2011/07/29 21:42:38.0433 1224 se59bus (7c38fc284136981ebe002252fa0900d3) C:\WINDOWS\system32\DRIVERS\se59bus.sys 2011/07/29 21:42:38.0667 1224 se59mdfl (3ced539f4373ccf8d3fe71ae51053d5d) C:\WINDOWS\system32\DRIVERS\se59mdfl.sys 2011/07/29 21:42:38.0902 1224 se59mdm (c6a6aa039d14f2ea1998e5f922014067) C:\WINDOWS\system32\DRIVERS\se59mdm.sys 2011/07/29 21:42:39.0152 1224 se59mgmt (7eecfa334292b1cd8de4990b63e02360) C:\WINDOWS\system32\DRIVERS\se59mgmt.sys 2011/07/29 21:42:39.0370 1224 se59nd5 (555895a241611c59ce057c42bc8b6e85) C:\WINDOWS\system32\DRIVERS\se59nd5.sys 2011/07/29 21:42:39.0620 1224 se59obex (729dfa6451b7356834bfa6faec9e3092) C:\WINDOWS\system32\DRIVERS\se59obex.sys 2011/07/29 21:42:39.0855 1224 se59unic (5f453e3e797dbeefe35869dc0239effa) C:\WINDOWS\system32\DRIVERS\se59unic.sys 2011/07/29 21:42:40.0105 1224 sea3bus (a7fb7460367b2748000685c97c151c9e) C:\WINDOWS\system32\DRIVERS\sea3bus.sys 2011/07/29 21:42:40.0308 1224 sea3mdfl (4d5690a96572683607eb78156a998dfa) C:\WINDOWS\system32\DRIVERS\sea3mdfl.sys 2011/07/29 21:42:40.0558 1224 sea3mdm (60b8cc9e40acd39a4148f13b7e7948c8) C:\WINDOWS\system32\DRIVERS\sea3mdm.sys 2011/07/29 21:42:40.0808 1224 sea3mgmt (8d44302858b808ee22e46ebdd85cd895) C:\WINDOWS\system32\DRIVERS\sea3mgmt.sys 2011/07/29 21:42:41.0058 1224 sea3nd5 (c77c6e067b4f913f21a315f4d3debecb) C:\WINDOWS\system32\DRIVERS\sea3nd5.sys 2011/07/29 21:42:41.0323 1224 sea3obex (407ddceb298755d0b0634145ce38cae2) C:\WINDOWS\system32\DRIVERS\sea3obex.sys 2011/07/29 21:42:41.0558 1224 sea3unic (a37aefbb7f2921c20fb68589bbf00074) C:\WINDOWS\system32\DRIVERS\sea3unic.sys 2011/07/29 21:42:41.0808 1224 Secdrv (90a3935d05b494a5a39d37e71f09a677) C:\WINDOWS\system32\DRIVERS\secdrv.sys 2011/07/29 21:42:42.0058 1224 serenum (a2d868aeeff612e70e213c451a70cafb) C:\WINDOWS\system32\DRIVERS\serenum.sys 2011/07/29 21:42:42.0323 1224 Serial (653201755ca96ab4aaa4131daf6da356) C:\WINDOWS\system32\DRIVERS\serial.sys 2011/07/29 21:42:42.0620 1224 Sfloppy (0d13b6df6e9e101013a7afb0ce629fe0) C:\WINDOWS\system32\DRIVERS\sfloppy.sys 2011/07/29 21:42:43.0152 1224 SLIP (5caeed86821fa2c6139e32e9e05ccdc9) C:\WINDOWS\system32\DRIVERS\SLIP.sys 2011/07/29 21:42:43.0823 1224 SNPSTD3 (9cd6ffc9f5b999eb5df69b9177d9848f) C:\WINDOWS\system32\DRIVERS\snpstd3.sys 2011/07/29 21:42:44.0417 1224 splitter (0ce218578fff5f4f7e4201539c45c78f) C:\WINDOWS\system32\drivers\splitter.sys 2011/07/29 21:42:44.0683 1224 sr (b52181023b827acda36c1b76751ebffd) C:\WINDOWS\system32\DRIVERS\sr.sys 2011/07/29 21:42:44.0980 1224 Srv (7a4f147cc6b133f905f6e65e2f8669fb) C:\WINDOWS\system32\DRIVERS\srv.sys 2011/07/29 21:42:45.0277 1224 ssm_bus (df5c19f053eff7f8ba25d73aea899656) C:\WINDOWS\system32\DRIVERS\ssm_bus.sys 2011/07/29 21:42:45.0511 1224 ssm_mdfl (5347169fa449eabc4d0728ae39fab926) C:\WINDOWS\system32\DRIVERS\ssm_mdfl.sys 2011/07/29 21:42:45.0761 1224 ssm_mdm (7aae23dd105eed15c4f45fc269fa42a9) C:\WINDOWS\system32\DRIVERS\ssm_mdm.sys 2011/07/29 21:42:46.0011 1224 ss_bus (bd15182e9d2d3fabc1d1313badbd2415) C:\WINDOWS\system32\DRIVERS\ss_bus.sys 2011/07/29 21:42:46.0261 1224 ss_mdfl (67d1144f249a3c5e03ebd7a2304dee11) C:\WINDOWS\system32\DRIVERS\ss_mdfl.sys 2011/07/29 21:42:46.0511 1224 ss_mdm (954b7ce2d54c703d6a8471d6b05a5e13) C:\WINDOWS\system32\DRIVERS\ss_mdm.sys 2011/07/29 21:42:46.0730 1224 StarOpen (306521935042fc0a6988d528643619b3) C:\WINDOWS\system32\drivers\StarOpen.sys 2011/07/29 21:42:47.0011 1224 streamip (284c57df5dc7abca656bc2b96a667afb) C:\WINDOWS\system32\DRIVERS\StreamIP.sys 2011/07/29 21:42:47.0245 1224 swenum (03c1bae4766e2450219d20b993d6e046) C:\WINDOWS\system32\DRIVERS\swenum.sys 2011/07/29 21:42:47.0495 1224 swmidi (94abc808fc4b6d7d2bbf42b85e25bb4d) C:\WINDOWS\system32\drivers\swmidi.sys 2011/07/29 21:42:47.0980 1224 symc8xx (070e001d95cf725186ef8b20335f933c) C:\WINDOWS\System32\DRIVERS\symc8xx.sys 2011/07/29 21:42:48.0386 1224 sym_u3 (bf4fab949a382a8e105f46ebb4937058) C:\WINDOWS\System32\DRIVERS\sym_u3.sys 2011/07/29 21:42:48.0620 1224 sysaudio (650ad082d46bac0e64c9c0e0928492fd) C:\WINDOWS\system32\drivers\sysaudio.sys 2011/07/29 21:42:48.0902 1224 Tcpip (2a5554fc5b1e04e131230e3ce035c3f9) C:\WINDOWS\system32\DRIVERS\tcpip.sys 2011/07/29 21:42:49.0152 1224 TDPIPE (38d437cf2d98965f239b0abcd66dcb0f) C:\WINDOWS\system32\drivers\TDPIPE.sys 2011/07/29 21:42:49.0402 1224 TDTCP (ed0580af02502d00ad8c4c066b156be9) C:\WINDOWS\system32\drivers\TDTCP.sys 2011/07/29 21:42:49.0652 1224 TermDD (a540a99c281d933f3d69d55e48727f47) C:\WINDOWS\system32\DRIVERS\termdd.sys 2011/07/29 21:42:50.0183 1224 Udfs (12f70256f140cd7d52c58c7048fde657) C:\WINDOWS\system32\drivers\Udfs.sys 2011/07/29 21:42:50.0683 1224 Update (aff2e5045961bbc0a602bb6f95eb1345) C:\WINDOWS\system32\DRIVERS\update.sys 2011/07/29 21:42:51.0198 1224 usbaudio (45a0d14b26c35497ad93bce7e15c9941) C:\WINDOWS\system32\drivers\usbaudio.sys 2011/07/29 21:42:51.0417 1224 usbccgp (79fee3cfec5b14194dbe0a703d82b2a4) C:\WINDOWS\system32\DRIVERS\usbccgp.sys 2011/07/29 21:42:51.0620 1224 usbehci (15e993ba2f6946b2bfbbfcd30398621e) C:\WINDOWS\system32\DRIVERS\usbehci.sys 2011/07/29 21:42:51.0855 1224 usbhub (c72f40947f92cea56a8fb532edf025f1) C:\WINDOWS\system32\DRIVERS\usbhub.sys 2011/07/29 21:42:52.0105 1224 usbprint (a42369b7cd8886cd7c70f33da6fcbcf5) C:\WINDOWS\system32\DRIVERS\usbprint.sys 2011/07/29 21:42:52.0308 1224 USBSTOR (4923c60f9c381eae679db04021d26abb) C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS 2011/07/29 21:42:52.0542 1224 usbuhci (f8fd1400092e23c8f2f31406ef06167b) C:\WINDOWS\system32\DRIVERS\usbuhci.sys 2011/07/29 21:42:52.0792 1224 VgaSave (8a60edd72b4ea5aea8202daf0e427925) C:\WINDOWS\System32\drivers\vga.sys 2011/07/29 21:42:53.0042 1224 viaagp1 (0e3e3fae3a0a58b8d936a8e841a17d16) C:\WINDOWS\system32\DRIVERS\viaagp1.sys 2011/07/29 21:42:53.0339 1224 viagfx (3bcc43e2225851e0aef2a8c27ce420ea) C:\WINDOWS\system32\DRIVERS\vtmini.sys 2011/07/29 21:42:53.0589 1224 ViaIde (a5d8b6c8d43786d4215c1df6fab0aae0) C:\WINDOWS\system32\DRIVERS\viaidexp.sys 2011/07/29 21:42:53.0855 1224 VolSnap (313b1a0d5db26dfe1c34a6c13b2ce0a7) C:\WINDOWS\system32\drivers\VolSnap.sys 2011/07/29 21:42:54.0167 1224 Wanarp (984ef0b9788abf89974cfed4bfbaacbc) C:\WINDOWS\system32\DRIVERS\wanarp.sys 2011/07/29 21:42:54.0605 1224 wdmaud (efd235ca22b57c81118c1aeb4798f1c1) C:\WINDOWS\system32\drivers\wdmaud.sys 2011/07/29 21:42:55.0073 1224 WpdUsb (cf4def1bf66f06964dc0d91844239104) C:\WINDOWS\system32\Drivers\wpdusb.sys 2011/07/29 21:42:55.0339 1224 WSTCODEC (d5842484f05e12121c511aa93f6439ec) C:\WINDOWS\system32\DRIVERS\WSTCODEC.SYS 2011/07/29 21:42:55.0573 1224 WudfPf (f15feafffbb3644ccc80c5da584e6311) C:\WINDOWS\system32\DRIVERS\WudfPf.sys 2011/07/29 21:42:55.0823 1224 WudfRd (28b524262bce6de1f7ef9f510ba3985b) C:\WINDOWS\system32\DRIVERS\wudfrd.sys 2011/07/29 21:42:56.0105 1224 xmasbus (ddd8286b88fe764ad2a8bd171e7b569a) C:\WINDOWS\system32\DRIVERS\xmasbus.sys 2011/07/29 21:42:56.0323 1224 xmasscsi (4059ad5e639fa47e334304cbe82e9572) C:\WINDOWS\system32\Drivers\xmasscsi.sys 2011/07/29 21:42:56.0573 1224 MBR (0x1B8) (8f558eb6672622401da993e1e865c861) \Device\Harddisk0\DR0 2011/07/29 21:42:56.0745 1224 MBR (0x1B8) (c99c3199cfaa4cbdcd91493f6d113a50) \Device\Harddisk1\DR1 2011/07/29 21:42:56.0808 1224 MBR (0x1B8) (671b81004fdd1588fa9ed1331c9ceca9) \Device\Harddisk2\DR4 2011/07/29 21:42:56.0870 1224 Boot (0x1200) (2ab8cde39de78fb4e0ed718fc772ccaf) \Device\Harddisk0\DR0\Partition0 2011/07/29 21:42:56.0933 1224 Boot (0x1200) (d2074f3e458c27b88a6ef25718d9fe72) \Device\Harddisk1\DR1\Partition0 2011/07/29 21:42:56.0995 1224 Boot (0x1200) (239d3aabcc85278860c5318a35832407) \Device\Harddisk2\DR4\Partition0 2011/07/29 21:42:57.0027 1224 ================================================================================ 2011/07/29 21:42:57.0027 1224 Scan finished 2011/07/29 21:42:57.0027 1224 ================================================================================ 2011/07/29 21:42:57.0089 3932 Detected object count: 0 2011/07/29 21:42:57.0089 3932 Actual detected object count: 0 2011/07/29 21:44:30.0402 3900 ================================================================================ 2011/07/29 21:44:30.0402 3900 Scan started 2011/07/29 21:44:30.0402 3900 Mode: Manual; 2011/07/29 21:44:30.0402 3900 ================================================================================ 2011/07/29 21:44:31.0042 3900 61883 (86d7b1e70661d754685b9ac6d749aae5) C:\WINDOWS\system32\DRIVERS\61883.sys 2011/07/29 21:44:31.0292 3900 Aavmker4 (dfcdd5936cad0138775d5a105d4c7716) C:\WINDOWS\system32\drivers\Aavmker4.sys 2011/07/29 21:44:31.0933 3900 ACPI (0bd94fbfc14ea3606cd6ca4c0255baa3) C:\WINDOWS\system32\DRIVERS\ACPI.sys 2011/07/29 21:44:32.0167 3900 ACPIEC (e4abc1212b70bb03d35e60681c447210) C:\WINDOWS\system32\drivers\ACPIEC.sys 2011/07/29 21:44:32.0386 3900 adpu160m (9a11864873da202c996558b2106b0bbc) C:\WINDOWS\System32\DRIVERS\adpu160m.sys 2011/07/29 21:44:32.0620 3900 aec (1ee7b434ba961ef845de136224c30fec) C:\WINDOWS\system32\drivers\aec.sys 2011/07/29 21:44:32.0839 3900 AFD (55e6e1c51b6d30e54335750955453702) C:\WINDOWS\System32\drivers\afd.sys 2011/07/29 21:44:33.0198 3900 aic78u2 (19dd0fb48b0c18892f70e2e7d61a1529) C:\WINDOWS\System32\DRIVERS\aic78u2.sys 2011/07/29 21:44:33.0480 3900 aic78xx (b7fe594a7468aa0132deb03fb8e34326) C:\WINDOWS\System32\DRIVERS\aic78xx.sys 2011/07/29 21:44:33.0745 3900 ALCXWDM (ae754b357eefcd586b297dff373122ae) C:\WINDOWS\system32\drivers\ALCXWDM.SYS 2011/07/29 21:44:34.0214 3900 AmdK7 (c0f59933070392e662b3c2bb2be77955) C:\WINDOWS\system32\DRIVERS\amdk7.sys 2011/07/29 21:44:34.0683 3900 Arp1394 (f0d692b0bffb46e30eb3cea168bbc49f) C:\WINDOWS\system32\DRIVERS\arp1394.sys 2011/07/29 21:44:35.0652 3900 aswFsBlk (861cb512e4e850e87dd2316f88d69330) C:\WINDOWS\system32\drivers\aswFsBlk.sys 2011/07/29 21:44:35.0886 3900 aswMon2 (7857e0b4c817f69ff463eea2c63e56f9) C:\WINDOWS\system32\drivers\aswMon2.sys 2011/07/29 21:44:36.0105 3900 aswRdr (8db043bf96bb6d334e5b4888e709e1c7) C:\WINDOWS\system32\drivers\aswRdr.sys 2011/07/29 21:44:36.0370 3900 aswSnx (17230708a2028cd995656df455f2e303) C:\WINDOWS\system32\drivers\aswSnx.sys 2011/07/29 21:44:36.0605 3900 aswSP (dbedd9d43b00630966ef05d2d8d04cee) C:\WINDOWS\system32\drivers\aswSP.sys 2011/07/29 21:44:36.0870 3900 aswTdi (984cfce2168286c2511695c2f9621475) C:\WINDOWS\system32\drivers\aswTdi.sys 2011/07/29 21:44:37.0073 3900 AsyncMac (02000abf34af4c218c35d257024807d6) C:\WINDOWS\system32\DRIVERS\asyncmac.sys 2011/07/29 21:44:37.0308 3900 atapi (cdfe4411a69c224bd1d11b2da92dac51) C:\WINDOWS\system32\DRIVERS\atapi.sys 2011/07/29 21:44:37.0777 3900 Atmarpc (ec88da854ab7d7752ec8be11a741bb7f) C:\WINDOWS\system32\DRIVERS\atmarpc.sys 2011/07/29 21:44:38.0011 3900 audstub (d9f724aa26c010a217c97606b160ed68) C:\WINDOWS\system32\DRIVERS\audstub.sys 2011/07/29 21:44:38.0230 3900 Avc (87c223adb8f7596b31caae3c67b16ddd) C:\WINDOWS\system32\DRIVERS\avc.sys 2011/07/29 21:44:38.0636 3900 Beep (da1f27d85e0d1525f6621372e7b685e9) C:\WINDOWS\system32\drivers\Beep.sys 2011/07/29 21:44:38.0948 3900 camfilt2 (088c0978203d59425a12b2a53fccd02b) C:\WINDOWS\system32\DRIVERS\camfilt2.sys 2011/07/29 21:44:39.0183 3900 cbidf2k (90a673fc8e12a79afbed2576f6a7aaf9) C:\WINDOWS\system32\drivers\cbidf2k.sys 2011/07/29 21:44:39.0386 3900 CCDECODE (6163ed60b684bab19d3352ab22fc48b2) C:\WINDOWS\system32\DRIVERS\CCDECODE.sys 2011/07/29 21:44:39.0808 3900 Cdaudio (c1b486a7658353d33a10cc15211a873b) C:\WINDOWS\system32\drivers\Cdaudio.sys 2011/07/29 21:44:40.0058 3900 Cdfs (cd7d5152df32b47f4e36f710b35aae02) C:\WINDOWS\system32\drivers\Cdfs.sys 2011/07/29 21:44:40.0292 3900 cdrbsvsd (7fc46240546c16c0448c29c9d233b915) C:\WINDOWS\system32\drivers\cdrbsvsd.sys 2011/07/29 21:44:40.0527 3900 Cdrom (7b53584d94e9d8716b2de91d5f1cb42d) C:\WINDOWS\system32\DRIVERS\cdrom.sys 2011/07/29 21:44:41.0964 3900 Disk (00ca44e4534865f8a3b64f7c0984bff0) C:\WINDOWS\system32\DRIVERS\disk.sys 2011/07/29 21:44:42.0261 3900 dmboot (e2d3b7620310fe56685f9b15a6b404b3) C:\WINDOWS\system32\drivers\dmboot.sys 2011/07/29 21:44:42.0511 3900 dmio (c77f5c20aa70197a69aa84baa9de43c8) C:\WINDOWS\system32\drivers\dmio.sys 2011/07/29 21:44:42.0745 3900 dmload (e9317282a63ca4d188c0df5e09c6ac5f) C:\WINDOWS\system32\drivers\dmload.sys 2011/07/29 21:44:42.0995 3900 DMusic (a6f881284ac1150e37d9ae47ff601267) C:\WINDOWS\system32\drivers\DMusic.sys 2011/07/29 21:44:43.0464 3900 drmkaud (1ed4dbbae9f5d558dbba4cc450e3eb2e) C:\WINDOWS\system32\drivers\drmkaud.sys 2011/07/29 21:44:43.0730 3900 Fastfat (3117f595e9615e04f05a54fc15a03b20) C:\WINDOWS\system32\drivers\Fastfat.sys 2011/07/29 21:44:43.0980 3900 fbxusb (99b2f2d42631afaf14269a92ab68390f) C:\WINDOWS\system32\DRIVERS\fbxusb.sys 2011/07/29 21:44:44.0214 3900 Fdc (ced2e8396a8838e59d8fd529c680e02c) C:\WINDOWS\system32\DRIVERS\fdc.sys 2011/07/29 21:44:44.0495 3900 FETNDIS (e9648254056bce81a85380c0c3647dc4) C:\WINDOWS\system32\DRIVERS\fetnd5.sys 2011/07/29 21:44:44.0730 3900 Fips (8b121ff880683607ab2aef0340721718) C:\WINDOWS\system32\drivers\Fips.sys 2011/07/29 21:44:44.0964 3900 Flpydisk (0dd1de43115b93f4d85e889d7a86f548) C:\WINDOWS\system32\DRIVERS\flpydisk.sys 2011/07/29 21:44:45.0198 3900 FltMgr (3d234fb6d6ee875eb009864a299bea29) C:\WINDOWS\system32\drivers\fltmgr.sys 2011/07/29 21:44:45.0417 3900 Fs_Rec (3e1e2bd4f39b0e2b7dc4f4d2bcc2779a) C:\WINDOWS\system32\drivers\Fs_Rec.sys 2011/07/29 21:44:45.0683 3900 Ftdisk (a86859b77b908c18c2657f284aa29fe3) C:\WINDOWS\system32\DRIVERS\ftdisk.sys 2011/07/29 21:44:45.0917 3900 Gpc (c0f1d4a21de5a415df8170616703debf) C:\WINDOWS\system32\DRIVERS\msgpc.sys 2011/07/29 21:44:46.0230 3900 HidUsb (1de6783b918f540149aa69943bdfeba8) C:\WINDOWS\system32\DRIVERS\hidusb.sys 2011/07/29 21:44:46.0714 3900 HTTP (9f8b0f4276f618964fd118be4289b7cd) C:\WINDOWS\system32\Drivers\HTTP.sys 2011/07/29 21:44:47.0386 3900 i8042prt (d1efcbd693b5ba21314d06368c471070) C:\WINDOWS\system32\DRIVERS\i8042prt.sys 2011/07/29 21:44:47.0683 3900 Imapi (f8aa320c6a0409c0380e5d8a99d76ec6) C:\WINDOWS\system32\DRIVERS\imapi.sys 2011/07/29 21:44:48.0214 3900 IntelIde (1367812f8a974e0c13a4888fa5e7ede6) C:\WINDOWS\System32\DRIVERS\intelide.sys 2011/07/29 21:44:48.0448 3900 ip6fw (4448006b6bc60e6c027932cfc38d6855) C:\WINDOWS\system32\drivers\ip6fw.sys 2011/07/29 21:44:48.0683 3900 IpFilterDriver (731f22ba402ee4b62748adaf6363c182) C:\WINDOWS\system32\DRIVERS\ipfltdrv.sys 2011/07/29 21:44:48.0917 3900 IpInIp (e1ec7f5da720b640cd8fb8424f1b14bb) C:\WINDOWS\system32\DRIVERS\ipinip.sys 2011/07/29 21:44:49.0152 3900 IpNat (e2168cbc7098ffe963c6f23f472a3593) C:\WINDOWS\system32\DRIVERS\ipnat.sys 2011/07/29 21:44:49.0370 3900 IPSec (64537aa5c003a6afeee1df819062d0d1) C:\WINDOWS\system32\DRIVERS\ipsec.sys 2011/07/29 21:44:49.0636 3900 IRENUM (50708daa1b1cbb7d6ac1cf8f56a24410) C:\WINDOWS\system32\DRIVERS\irenum.sys 2011/07/29 21:44:49.0870 3900 isapnp (54632f1a7de61dc3615d756f2a90fa72) C:\WINDOWS\system32\DRIVERS\isapnp.sys 2011/07/29 21:44:50.0120 3900 Kbdclass (e798705e8dc7fab596ef6bfdf167e007) C:\WINDOWS\system32\DRIVERS\kbdclass.sys 2011/07/29 21:44:50.0355 3900 kmixer (ba5deda4d934e6288c2f66caf58d2562) C:\WINDOWS\system32\drivers\kmixer.sys 2011/07/29 21:44:50.0636 3900 KSecDD (674d3e5a593475915dc6643317192403) C:\WINDOWS\system32\drivers\KSecDD.sys 2011/07/29 21:44:51.0214 3900 mnmdd (4ae068242760a1fb6e1a44bf4e16afa6) C:\WINDOWS\system32\drivers\mnmdd.sys 2011/07/29 21:44:51.0480 3900 Modem (5ac7e16f5b40a6da14b5f2b3ada4693e) C:\WINDOWS\system32\drivers\Modem.sys 2011/07/29 21:44:51.0698 3900 Mouclass (7d4f19411bd941e1d432a99e24230386) C:\WINDOWS\system32\DRIVERS\mouclass.sys 2011/07/29 21:44:51.0902 3900 mouhid (124d6846040c79b9c997f78ef4b2a4e5) C:\WINDOWS\system32\DRIVERS\mouhid.sys 2011/07/29 21:44:52.0152 3900 MountMgr (65653f3b4477f3c63e68a9659f85ee2e) C:\WINDOWS\system32\drivers\MountMgr.sys 2011/07/29 21:44:52.0573 3900 MRxDAV (29414447eb5bde2f8397dc965dbb3156) C:\WINDOWS\system32\DRIVERS\mrxdav.sys 2011/07/29 21:44:52.0839 3900 MRxSmb (fb6c89bb3ce282b08bdb1e3c179e1c39) C:\WINDOWS\system32\DRIVERS\mrxsmb.sys 2011/07/29 21:44:53.0120 3900 MSDV (6dd721dfd2648f3f6d5808b5ba6cb095) C:\WINDOWS\system32\DRIVERS\msdv.sys 2011/07/29 21:44:53.0339 3900 Msfs (561b3a4333ca2dbdba28b5b956822519) C:\WINDOWS\system32\drivers\Msfs.sys 2011/07/29 21:44:53.0589 3900 MSKSSRV (ae431a8dd3c1d0d0610cdbac16057ad0) C:\WINDOWS\system32\drivers\MSKSSRV.sys 2011/07/29 21:44:53.0808 3900 MSPCLOCK (13e75fef9dfeb08eeded9d0246e1f448) C:\WINDOWS\system32\drivers\MSPCLOCK.sys 2011/07/29 21:44:54.0042 3900 MSPQM (1988a33ff19242576c3d0ef9ce785da7) C:\WINDOWS\system32\drivers\MSPQM.sys 2011/07/29 21:44:54.0277 3900 mssmbios (469541f8bfd2b32659d5d463a6714bce) C:\WINDOWS\system32\DRIVERS\mssmbios.sys 2011/07/29 21:44:54.0511 3900 MSTEE (bf13612142995096ab084f2db7f40f77) C:\WINDOWS\system32\drivers\MSTEE.sys 2011/07/29 21:44:54.0792 3900 Mup (82035e0f41c2dd05ae41d27fe6cf7de1) C:\WINDOWS\system32\drivers\Mup.sys 2011/07/29 21:44:55.0011 3900 NABTSFEC (5c8dc6429c43dc6177c1fa5b76290d1a) C:\WINDOWS\system32\DRIVERS\NABTSFEC.sys 2011/07/29 21:44:55.0245 3900 NDIS (558635d3af1c7546d26067d5d9b6959e) C:\WINDOWS\system32\drivers\NDIS.sys 2011/07/29 21:44:55.0495 3900 NdisIP (520ce427a8b298f54112857bcf6bde15) C:\WINDOWS\system32\DRIVERS\NdisIP.sys 2011/07/29 21:44:55.0730 3900 NdisTapi (08d43bbdacdf23f34d79e44ed35c1b4c) C:\WINDOWS\system32\DRIVERS\ndistapi.sys 2011/07/29 21:44:55.0964 3900 Ndisuio (34d6cd56409da9a7ed573e1c90a308bf) C:\WINDOWS\system32\DRIVERS\ndisuio.sys 2011/07/29 21:44:56.0198 3900 NdisWan (0b90e255a9490166ab368cd55a529893) C:\WINDOWS\system32\DRIVERS\ndiswan.sys 2011/07/29 21:44:56.0433 3900 NDProxy (59fc3fb44d2669bc144fd87826bb571f) C:\WINDOWS\system32\drivers\NDProxy.sys 2011/07/29 21:44:56.0652 3900 NetBIOS (3a2aca8fc1d7786902ca434998d7ceb4) C:\WINDOWS\system32\DRIVERS\netbios.sys 2011/07/29 21:44:56.0886 3900 NetBT (0c80e410cd2f47134407ee7dd19cc86b) C:\WINDOWS\system32\DRIVERS\netbt.sys 2011/07/29 21:44:57.0214 3900 NIC1394 (5c5c53db4fef16cf87b9911c7e8c6fbc) C:\WINDOWS\system32\DRIVERS\nic1394.sys 2011/07/29 21:44:57.0480 3900 Npfs (4f601bcb8f64ea3ac0994f98fed03f8e) C:\WINDOWS\system32\drivers\Npfs.sys 2011/07/29 21:44:57.0730 3900 Ntfs (19a811ef5f1ed5c926a028ce107ff1af) C:\WINDOWS\system32\drivers\Ntfs.sys 2011/07/29 21:44:58.0011 3900 Null (73c1e1f395918bc2c6dd67af7591a3ad) C:\WINDOWS\system32\drivers\Null.sys 2011/07/29 21:44:58.0230 3900 NwlnkFlt (b305f3fad35083837ef46a0bbce2fc57) C:\WINDOWS\system32\DRIVERS\nwlnkflt.sys 2011/07/29 21:44:58.0448 3900 NwlnkFwd (c99b3415198d1aab7227f2c88fd664b9) C:\WINDOWS\system32\DRIVERS\nwlnkfwd.sys 2011/07/29 21:44:58.0761 3900 ohci1394 (0951db8e5823ea366b0e408d71e1ba2a) C:\WINDOWS\system32\DRIVERS\ohci1394.sys 2011/07/29 21:44:58.0995 3900 Parport (318696359ac7df48d1e51974ec527dd2) C:\WINDOWS\system32\DRIVERS\parport.sys 2011/07/29 21:44:59.0214 3900 PartMgr (3334430c29dc338092f79c38ef7b4cd0) C:\WINDOWS\system32\drivers\PartMgr.sys 2011/07/29 21:44:59.0433 3900 ParVdm (9575c5630db8fb804649a6959737154c) C:\WINDOWS\system32\drivers\ParVdm.sys 2011/07/29 21:44:59.0698 3900 PCI (7c5da5c1ed801ad8b0309d5514f0b75e) C:\WINDOWS\system32\DRIVERS\pci.sys 2011/07/29 21:45:00.0136 3900 PCIIde (f4bfde7209c14a07aaa61e4d6ae69eac) C:\WINDOWS\system32\DRIVERS\pciide.sys 2011/07/29 21:45:00.0370 3900 Pcmcia (641da274e163617ea7a33506bc6da8e3) C:\WINDOWS\system32\drivers\Pcmcia.sys 2011/07/29 21:45:01.0995 3900 pfc (444f122e68db44c0589227781f3c8b3f) C:\WINDOWS\system32\drivers\pfc.sys 2011/07/29 21:45:02.0277 3900 PptpMiniport (1c5cc65aac0783c344f16353e60b72ac) C:\WINDOWS\system32\DRIVERS\raspptp.sys 2011/07/29 21:45:02.0527 3900 Processor (f480712b761e538bc8e44ede60f3a3c3) C:\WINDOWS\system32\DRIVERS\processr.sys 2011/07/29 21:45:02.0777 3900 PSched (48671f327553dcf1d27f6197f622a668) C:\WINDOWS\system32\DRIVERS\psched.sys 2011/07/29 21:45:03.0027 3900 Ptilink (80d317bd1c3dbc5d4fe7b1678c60cadd) C:\WINDOWS\system32\DRIVERS\ptilink.sys 2011/07/29 21:45:03.0277 3900 PxHelp20 (49452bfcec22f36a7a9b9c2181bc3042) C:\WINDOWS\system32\Drivers\PxHelp20.sys 2011/07/29 21:45:04.0573 3900 RasAcd (fe0d99d6f31e4fad8159f690d68ded9c) C:\WINDOWS\system32\DRIVERS\rasacd.sys 2011/07/29 21:45:04.0839 3900 Rasl2tp (98faeb4a4dcf812ba1c6fca4aa3e115c) C:\WINDOWS\system32\DRIVERS\rasl2tp.sys 2011/07/29 21:45:05.0105 3900 RasPppoe (7306eeed8895454cbed4669be9f79faa) C:\WINDOWS\system32\DRIVERS\raspppoe.sys 2011/07/29 21:45:05.0308 3900 Raspti (fdbb1d60066fcfbb7452fd8f9829b242) C:\WINDOWS\system32\DRIVERS\raspti.sys 2011/07/29 21:45:05.0573 3900 Rdbss (03b965b1ca47f6ef60eb5e51cb50e0af) C:\WINDOWS\system32\DRIVERS\rdbss.sys 2011/07/29 21:45:05.0808 3900 RDPCDD (4912d5b403614ce99c28420f75353332) C:\WINDOWS\system32\DRIVERS\RDPCDD.sys 2011/07/29 21:45:06.0105 3900 RDPWD (b54cd38a9ebfbf2b3561426e3fe26f62) C:\WINDOWS\system32\drivers\RDPWD.sys 2011/07/29 21:45:06.0355 3900 redbook (2cc30b68dd62b73d444a41322cd7fc4c) C:\WINDOWS\system32\DRIVERS\redbook.sys 2011/07/29 21:45:06.0667 3900 s616bus (ef4b5a8d53f15cb269469dd4e4bb0109) C:\WINDOWS\system32\DRIVERS\s616bus.sys 2011/07/29 21:45:06.0886 3900 s616mdfl (96187731eefcf83e844bc1ce6617aaeb) C:\WINDOWS\system32\DRIVERS\s616mdfl.sys 2011/07/29 21:45:07.0136 3900 s616mdm (d2dd87368bfecfa099e50dc120f3f513) C:\WINDOWS\system32\DRIVERS\s616mdm.sys 2011/07/29 21:45:07.0386 3900 s616mgmt (5f0be24e4d4fa134b0b2fef35d3a9d90) C:\WINDOWS\system32\DRIVERS\s616mgmt.sys 2011/07/29 21:45:07.0636 3900 s616nd5 (b9b507fcc67e204ef38e05ffd4176345) C:\WINDOWS\system32\DRIVERS\s616nd5.sys 2011/07/29 21:45:07.0886 3900 s616unic (e7e55048ebd5c17bfa791b4a6ec3d54b) C:\WINDOWS\system32\DRIVERS\s616unic.sys 2011/07/29 21:45:08.0214 3900 se59bus (7c38fc284136981ebe002252fa0900d3) C:\WINDOWS\system32\DRIVERS\se59bus.sys 2011/07/29 21:45:08.0448 3900 se59mdfl (3ced539f4373ccf8d3fe71ae51053d5d) C:\WINDOWS\system32\DRIVERS\se59mdfl.sys 2011/07/29 21:45:08.0683 3900 se59mdm (c6a6aa039d14f2ea1998e5f922014067) C:\WINDOWS\system32\DRIVERS\se59mdm.sys 2011/07/29 21:45:08.0917 3900 se59mgmt (7eecfa334292b1cd8de4990b63e02360) C:\WINDOWS\system32\DRIVERS\se59mgmt.sys 2011/07/29 21:45:09.0152 3900 se59nd5 (555895a241611c59ce057c42bc8b6e85) C:\WINDOWS\system32\DRIVERS\se59nd5.sys 2011/07/29 21:45:09.0386 3900 se59obex (729dfa6451b7356834bfa6faec9e3092) C:\WINDOWS\system32\DRIVERS\se59obex.sys 2011/07/29 21:45:09.0636 3900 se59unic (5f453e3e797dbeefe35869dc0239effa) C:\WINDOWS\system32\DRIVERS\se59unic.sys 2011/07/29 21:45:09.0886 3900 sea3bus (a7fb7460367b2748000685c97c151c9e) C:\WINDOWS\system32\DRIVERS\sea3bus.sys 2011/07/29 21:45:10.0136 3900 sea3mdfl (4d5690a96572683607eb78156a998dfa) C:\WINDOWS\system32\DRIVERS\sea3mdfl.sys 2011/07/29 21:45:10.0370 3900 sea3mdm (60b8cc9e40acd39a4148f13b7e7948c8) C:\WINDOWS\system32\DRIVERS\sea3mdm.sys 2011/07/29 21:45:10.0636 3900 sea3mgmt (8d44302858b808ee22e46ebdd85cd895) C:\WINDOWS\system32\DRIVERS\sea3mgmt.sys 2011/07/29 21:45:10.0886 3900 sea3nd5 (c77c6e067b4f913f21a315f4d3debecb) C:\WINDOWS\system32\DRIVERS\sea3nd5.sys 2011/07/29 21:45:11.0136 3900 sea3obex (407ddceb298755d0b0634145ce38cae2) C:\WINDOWS\system32\DRIVERS\sea3obex.sys 2011/07/29 21:45:11.0386 3900 sea3unic (a37aefbb7f2921c20fb68589bbf00074) C:\WINDOWS\system32\DRIVERS\sea3unic.sys 2011/07/29 21:45:11.0652 3900 Secdrv (90a3935d05b494a5a39d37e71f09a677) C:\WINDOWS\system32\DRIVERS\secdrv.sys 2011/07/29 21:45:11.0933 3900 serenum (a2d868aeeff612e70e213c451a70cafb) C:\WINDOWS\system32\DRIVERS\serenum.sys 2011/07/29 21:45:12.0183 3900 Serial (653201755ca96ab4aaa4131daf6da356) C:\WINDOWS\system32\DRIVERS\serial.sys 2011/07/29 21:45:12.0495 3900 Sfloppy (0d13b6df6e9e101013a7afb0ce629fe0) C:\WINDOWS\system32\DRIVERS\sfloppy.sys 2011/07/29 21:45:12.0933 3900 SLIP (5caeed86821fa2c6139e32e9e05ccdc9) C:\WINDOWS\system32\DRIVERS\SLIP.sys 2011/07/29 21:45:13.0620 3900 SNPSTD3 (9cd6ffc9f5b999eb5df69b9177d9848f) C:\WINDOWS\system32\DRIVERS\snpstd3.sys 2011/07/29 21:45:14.0214 3900 splitter (0ce218578fff5f4f7e4201539c45c78f) C:\WINDOWS\system32\drivers\splitter.sys 2011/07/29 21:45:14.0464 3900 sr (b52181023b827acda36c1b76751ebffd) C:\WINDOWS\system32\DRIVERS\sr.sys 2011/07/29 21:45:14.0745 3900 Srv (7a4f147cc6b133f905f6e65e2f8669fb) C:\WINDOWS\system32\DRIVERS\srv.sys 2011/07/29 21:45:15.0011 3900 ssm_bus (df5c19f053eff7f8ba25d73aea899656) C:\WINDOWS\system32\DRIVERS\ssm_bus.sys 2011/07/29 21:45:15.0230 3900 ssm_mdfl (5347169fa449eabc4d0728ae39fab926) C:\WINDOWS\system32\DRIVERS\ssm_mdfl.sys 2011/07/29 21:45:15.0464 3900 ssm_mdm (7aae23dd105eed15c4f45fc269fa42a9) C:\WINDOWS\system32\DRIVERS\ssm_mdm.sys 2011/07/29 21:45:15.0730 3900 ss_bus (bd15182e9d2d3fabc1d1313badbd2415) C:\WINDOWS\system32\DRIVERS\ss_bus.sys 2011/07/29 21:45:15.0980 3900 ss_mdfl (67d1144f249a3c5e03ebd7a2304dee11) C:\WINDOWS\system32\DRIVERS\ss_mdfl.sys 2011/07/29 21:45:16.0214 3900 ss_mdm (954b7ce2d54c703d6a8471d6b05a5e13) C:\WINDOWS\system32\DRIVERS\ss_mdm.sys 2011/07/29 21:45:16.0448 3900 StarOpen (306521935042fc0a6988d528643619b3) C:\WINDOWS\system32\drivers\StarOpen.sys 2011/07/29 21:45:16.0730 3900 streamip (284c57df5dc7abca656bc2b96a667afb) C:\WINDOWS\system32\DRIVERS\StreamIP.sys 2011/07/29 21:45:16.0964 3900 swenum (03c1bae4766e2450219d20b993d6e046) C:\WINDOWS\system32\DRIVERS\swenum.sys 2011/07/29 21:45:17.0198 3900 swmidi (94abc808fc4b6d7d2bbf42b85e25bb4d) C:\WINDOWS\system32\drivers\swmidi.sys 2011/07/29 21:45:17.0683 3900 symc8xx (070e001d95cf725186ef8b20335f933c) C:\WINDOWS\System32\DRIVERS\symc8xx.sys 2011/07/29 21:45:18.0120 3900 sym_u3 (bf4fab949a382a8e105f46ebb4937058) C:\WINDOWS\System32\DRIVERS\sym_u3.sys 2011/07/29 21:45:18.0339 3900 sysaudio (650ad082d46bac0e64c9c0e0928492fd) C:\WINDOWS\system32\drivers\sysaudio.sys 2011/07/29 21:45:18.0605 3900 Tcpip (2a5554fc5b1e04e131230e3ce035c3f9) C:\WINDOWS\system32\DRIVERS\tcpip.sys 2011/07/29 21:45:18.0870 3900 TDPIPE (38d437cf2d98965f239b0abcd66dcb0f) C:\WINDOWS\system32\drivers\TDPIPE.sys 2011/07/29 21:45:19.0089 3900 TDTCP (ed0580af02502d00ad8c4c066b156be9) C:\WINDOWS\system32\drivers\TDTCP.sys 2011/07/29 21:45:19.0339 3900 TermDD (a540a99c281d933f3d69d55e48727f47) C:\WINDOWS\system32\DRIVERS\termdd.sys 2011/07/29 21:45:19.0902 3900 Udfs (12f70256f140cd7d52c58c7048fde657) C:\WINDOWS\system32\drivers\Udfs.sys 2011/07/29 21:45:20.0370 3900 Update (aff2e5045961bbc0a602bb6f95eb1345) C:\WINDOWS\system32\DRIVERS\update.sys 2011/07/29 21:45:20.0839 3900 usbaudio (45a0d14b26c35497ad93bce7e15c9941) C:\WINDOWS\system32\drivers\usbaudio.sys 2011/07/29 21:45:21.0073 3900 usbccgp (79fee3cfec5b14194dbe0a703d82b2a4) C:\WINDOWS\system32\DRIVERS\usbccgp.sys 2011/07/29 21:45:21.0323 3900 usbehci (15e993ba2f6946b2bfbbfcd30398621e) C:\WINDOWS\system32\DRIVERS\usbehci.sys 2011/07/29 21:45:21.0573 3900 usbhub (c72f40947f92cea56a8fb532edf025f1) C:\WINDOWS\system32\DRIVERS\usbhub.sys 2011/07/29 21:45:21.0823 3900 usbprint (a42369b7cd8886cd7c70f33da6fcbcf5) C:\WINDOWS\system32\DRIVERS\usbprint.sys 2011/07/29 21:45:22.0042 3900 USBSTOR (4923c60f9c381eae679db04021d26abb) C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS 2011/07/29 21:45:22.0277 3900 usbuhci (f8fd1400092e23c8f2f31406ef06167b) C:\WINDOWS\system32\DRIVERS\usbuhci.sys 2011/07/29 21:45:22.0511 3900 VgaSave (8a60edd72b4ea5aea8202daf0e427925) C:\WINDOWS\System32\drivers\vga.sys 2011/07/29 21:45:22.0777 3900 viaagp1 (0e3e3fae3a0a58b8d936a8e841a17d16) C:\WINDOWS\system32\DRIVERS\viaagp1.sys 2011/07/29 21:45:23.0027 3900 viagfx (3bcc43e2225851e0aef2a8c27ce420ea) C:\WINDOWS\system32\DRIVERS\vtmini.sys 2011/07/29 21:45:23.0292 3900 ViaIde (a5d8b6c8d43786d4215c1df6fab0aae0) C:\WINDOWS\system32\DRIVERS\viaidexp.sys 2011/07/29 21:45:23.0542 3900 VolSnap (313b1a0d5db26dfe1c34a6c13b2ce0a7) C:\WINDOWS\system32\drivers\VolSnap.sys 2011/07/29 21:45:23.0902 3900 Wanarp (984ef0b9788abf89974cfed4bfbaacbc) C:\WINDOWS\system32\DRIVERS\wanarp.sys 2011/07/29 21:45:24.0355 3900 wdmaud (efd235ca22b57c81118c1aeb4798f1c1) C:\WINDOWS\system32\drivers\wdmaud.sys 2011/07/29 21:45:24.0823 3900 WpdUsb (cf4def1bf66f06964dc0d91844239104) C:\WINDOWS\system32\Drivers\wpdusb.sys 2011/07/29 21:45:25.0089 3900 WSTCODEC (d5842484f05e12121c511aa93f6439ec) C:\WINDOWS\system32\DRIVERS\WSTCODEC.SYS 2011/07/29 21:45:25.0308 3900 WudfPf (f15feafffbb3644ccc80c5da584e6311) C:\WINDOWS\system32\DRIVERS\WudfPf.sys 2011/07/29 21:45:25.0527 3900 WudfRd (28b524262bce6de1f7ef9f510ba3985b) C:\WINDOWS\system32\DRIVERS\wudfrd.sys 2011/07/29 21:45:25.0839 3900 xmasbus (ddd8286b88fe764ad2a8bd171e7b569a) C:\WINDOWS\system32\DRIVERS\xmasbus.sys 2011/07/29 21:45:26.0058 3900 xmasscsi (4059ad5e639fa47e334304cbe82e9572) C:\WINDOWS\system32\Drivers\xmasscsi.sys 2011/07/29 21:45:26.0308 3900 MBR (0x1B8) (8f558eb6672622401da993e1e865c861) \Device\Harddisk0\DR0 2011/07/29 21:45:26.0511 3900 MBR (0x1B8) (c99c3199cfaa4cbdcd91493f6d113a50) \Device\Harddisk1\DR1 2011/07/29 21:45:26.0573 3900 MBR (0x1B8) (671b81004fdd1588fa9ed1331c9ceca9) \Device\Harddisk2\DR4 2011/07/29 21:45:26.0620 3900 Boot (0x1200) (2ab8cde39de78fb4e0ed718fc772ccaf) \Device\Harddisk0\DR0\Partition0 2011/07/29 21:45:26.0683 3900 Boot (0x1200) (d2074f3e458c27b88a6ef25718d9fe72) \Device\Harddisk1\DR1\Partition0 2011/07/29 21:45:26.0745 3900 Boot (0x1200) (239d3aabcc85278860c5318a35832407) \Device\Harddisk2\DR4\Partition0 2011/07/29 21:45:26.0777 3900 ================================================================================ 2011/07/29 21:45:26.0777 3900 Scan finished 2011/07/29 21:45:26.0777 3900 ================================================================================ 2011/07/29 21:45:26.0839 3240 Detected object count: 0 2011/07/29 21:45:26.0839 3240 Actual detected object count: 0
- le 29 juillet 2011
- 16 réponses
analyse highjackthis...gros problèmes sur mon PC

gats99 a répondu à un(e) sujet de gats99 dans Analyses et éradication malwares

Alors pour le rapport 2 : RogueKiller V5.2.8 [23/07/2011] par Tigzy contact sur Forum Sciences / Forum Informatique - Sur la Toile (SLT) mail: tigzyRK<at>gmail<dot>com Remontees: [RogueKiller] Remontées (1/31) Systeme d'exploitation: Windows XP (5.1.2600 Service Pack 2) 32 bits version Demarrage : Mode normal Utilisateur: GAETAN [Droits d'admin] Mode: Suppression -- Date : 29/07/2011 20:53:32 Processus malicieux: 0 Entrees de registre: 2 [bLACKLIST] HKLM\[...]\Root : LEGACY_USNJSVC () -> DELETED [HJ] HKLM\[...]\NewStartPanel : {20D04FE0-3AEA-1069-A2D8-08002B30309D} (1) -> REPLACED (0) Fichier HOSTS: Termine : << RKreport[1].txt >> RKreport[1].txt Pour le rapport 5 : RogueKiller V5.2.8 [23/07/2011] par Tigzy contact sur Forum Sciences / Forum Informatique - Sur la Toile (SLT) mail: tigzyRK<at>gmail<dot>com Remontees: [RogueKiller] Remontées (1/31) Systeme d'exploitation: Windows XP (5.1.2600 Service Pack 2) 32 bits version Demarrage : Mode normal Utilisateur: GAETAN [Droits d'admin] Mode: DNS RAZ -- Date : 29/07/2011 20:57:44 Processus malicieux: 0 Entrees de registre: 0 Termine : << RKreport[2].txt >> RKreport[1].txt ; RKreport[2].txt
- le 29 juillet 2011
- 16 réponses
analyse highjackthis...gros problèmes sur mon PC

gats99 a répondu à un(e) sujet de gats99 dans Analyses et éradication malwares

je fais une copie des autres liens que j'ai car j'ai l'impression que le 1er n'a pas marché vu le résultat sur ma réponse postée...! Download ZHPDiag.txt from Sendspace.com - send big files the easy way <a title="Download your file from SendSpace" href="http://www.sendspace.com/file/hpn8r9"'>http://www.sendspace.com/file/hpn8r9" target="_blank">Download ZHPDiag.txt from SendSpace</a> http://www.sendspace.com/file/hpn8r9 sendspace | Delete File Cijoint.fr - Service gratuit de dépôt de fichiers
- le 29 juillet 2011
- 16 réponses
analyse highjackthis...gros problèmes sur mon PC

gats99 a répondu à un(e) sujet de gats99 dans Analyses et éradication malwares

Voilà, le lien du rapport ZHPDiag.txt hébergé sur Cijoint.fr. J'espère que j'aurai exécuté correctement les consignes, merci pour tout ce temps passé sur mes problèmes, votre aide m'est très précieuse. Cijoint.fr - Service gratuit de dépôt de fichiers
- le 29 juillet 2011
- 16 réponses
analyse highjackthis...gros problèmes sur mon PC

gats99 a répondu à un(e) sujet de gats99 dans Analyses et éradication malwares

Tout d'abord MERCI d'avoir répondu aussi vite à mon message. Voici les 2 rapports de Ad-Report : ======= RAPPORT D'AD-REMOVER 2.0.0.2,G | UNIQUEMENT XP/VISTA/7 ======= Mis à jour par TeamXscript le 12/04/11 Contact: AdRemover[DOT]contact[AT]gmail[DOT]com Site web: http://www.teamxscript.org C:\Program Files\Ad-Remover\main.exe (SCAN [1]) -> Lancé à 17:51:16 le 29/07/2011, Mode normal Microsoft Windows XP Édition familiale Service Pack 2 (X86) GAETAN@MAXDATA-CFB910E ( ) ============== RECHERCHE ============== Fichier trouvé: C:\WINDOWS\gvcasinos.ini Fichier trouvé: C:\WINDOWS\Tasks\Scheduled Update for Ask Toolbar.job Dossier trouvé: C:\Documents and Settings\GAETAN\Application Data\Mozilla\FireFox\Profiles\tq93po6j.default\extensions\toolbar@ask.com Fichier trouvé: C:\Documents and Settings\GAETAN\Application Data\Mozilla\FireFox\Profiles\tq93po6j.default\searchplugins\ask.xml Dossier trouvé: C:\Program Files\Ask.com Dossier trouvé: C:\Documents and Settings\GAETAN\Local Settings\Application Data\AskToolbar Dossier trouvé: C:\Documents and Settings\GAETAN\Application Data\Toolbar4 Dossier trouvé: C:\Program Files\TorrentSpeeder Dossier trouvé: C:\Documents and Settings\GAETAN\Application Data\EoRezo Dossier trouvé: C:\Program Files\EoRezo Clé trouvée: HKLM\Software\Classes\CLSID\{64F56FC1-1272-44CD-BA6E-39723696E350} Clé trouvée: HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{64F56FC1-1272-44CD-BA6E-39723696E350} Clé trouvée: HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{64F56FC1-1272-44CD-BA6E-39723696E350} Clé trouvée: HKLM\Software\Classes\CLSID\{D4027C7F-154A-4066-A1AD-4243D8127440} Clé trouvée: HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{D4027C7F-154A-4066-A1AD-4243D8127440} Clé trouvée: HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{D4027C7F-154A-4066-A1AD-4243D8127440} Clé trouvée: HKLM\Software\Classes\Interface\{0494D0D4-F8E0-41AD-92A3-14154ECE70AC} Clé trouvée: HKLM\Software\Classes\Interface\{0494D0D6-F8E0-41AD-92A3-14154ECE70AC} Clé trouvée: HKLM\Software\Classes\Interface\{6C434537-053E-486D-B62A-160059D9D456} Clé trouvée: HKLM\Software\Classes\Interface\{91CF619A-4686-4CA4-9232-3B2E6B63AA92} Clé trouvée: HKLM\Software\Classes\Interface\{AC71B60E-94C9-4EDE-BA46-E146747BB67E} Clé trouvée: HKLM\Software\Classes\Interface\{B0D071A1-36B3-4757-A126-14C89C56013A} Clé trouvée: HKLM\Software\Classes\TypeLib\{0494D0D0-F8E0-41AD-92A3-14154ECE70AC} Clé trouvée: HKLM\Software\Classes\TypeLib\{2996F0E7-292B-4CAE-893F-47B8B1C05B56} Clé trouvée: HKLM\Software\Classes\TypeLib\{B4C656C9-F2E9-4E77-B3F4-443DF2BD778F} Clé trouvée: HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\ednfwo Clé trouvée: HKLM\Software\Classes\GenericAskToolbar.ToolbarWnd Clé trouvée: HKLM\Software\Classes\GenericAskToolbar.ToolbarWnd.1 Clé trouvée: HKLM\Software\Classes\AppID\GenericAskToolbar.DLL Clé trouvée: HKLM\Software\Classes\AppID\{9B0CB95C-933A-4B8C-B6D4-EDCD19A43874} Clé trouvée: HKLM\Software\soft2PC Clé trouvée: HKCU\Software\Ask.com Clé trouvée: HKCU\Software\AskToolbar Clé trouvée: HKCU\Software\EoRezo Clé trouvée: HKCU\Software\Grand Virtual Clé trouvée: HKCU\Software\soft2PC Clé trouvée: HKCU\Software\AppDataLow\AskToolbarInfo Clé trouvée: HKCU\Software\Microsoft\Windows\CurrentVersion\Explorer\MenuOrder\Start Menu2\Programs\live-player Clé trouvée: HKLM\Software\Classes\Installer\Products\A28B4D68DEBAA244EB686953B7074FEF Clé trouvée: HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\Userdata\S-1-5-18\Products\A28B4D68DEBAA244EB686953B7074FEF Clé trouvée: HKLM\Software\Microsoft\Shared Tools\MSConfig\startupreg\Eoengine Clé trouvée: HKLM\Software\Microsoft\Shared Tools\MSConfig\startupreg\Eorezo Clé trouvée: HKLM\Software\Microsoft\Shared Tools\MSConfig\startupreg\soft2PC Clé trouvée: HKCU\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{A5AA24EA-11B8-4113-95AE-9ED71DEAF12A} Clé trouvée: HKLM\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{A5AA24EA-11B8-4113-95AE-9ED71DEAF12A} Clé trouvée: HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\{86D4B82A-ABED-442A-BE86-96357B70F4FE} Valeur trouvée: HKCU\Software\Netscape\Netscape Navigator\Automation Shutdown|MyWayToolbar.NetscapeShutdown.1 Valeur trouvée: HKCU\Software\Netscape\Netscape Navigator\Automation Startup|MyWayToolbar.NetscapeStartup.1 Valeur trouvée: HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings\5.0\User Agent\post platform|AskTB5.5 Valeur trouvée: HKLM\Software\Microsoft\Internet Explorer\Toolbar|{D4027C7F-154A-4066-A1AD-4243D8127440} Valeur trouvée: HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser|{D4027C7F-154A-4066-A1AD-4243D8127440} ============== SCAN ADDITIONNEL ============== **** Mozilla Firefox Version [1.5 (fr)] **** FIREFOX.EXE\Shell\Open\Command - "C:\Program Files\Mozilla Firefox\firefox.exe" Plugins\npqtplugin8.dll (Apple Computer, Inc.) Components\jar50.dll (Mozilla Foundation) Components\jsd3250.dll (Mozilla Foundation) Components\nsCloseAllWindows.js Components\nsDictionary.js Components\nsPostUpdateWin.js Components\nsXmlRpcClient.js Components\xpinstal.dll (Mozilla Foundation) -- C:\Documents and Settings\GAETAN\Application Data\Mozilla\FireFox\Profiles\tq93po6j.default -- Extensions\toolbar@ask.com (Ask Toolbar) Extensions\{C9B68337-E93A-44EA-94DC-CB300EC06444} (IMinent Toolbar) Searchplugins\Ask.xml (?) Prefs.js - browser.search.defaultenginename, Prefs.js - browser.search.selectedEngine, Prefs.js - browser.startup.homepage_override.mstone, rv:1.8.0.4 Prefs.js - keyword.URL, hxxp://search.live.com/results.aspx?mkt=fr-fr&FORM=MIMWA2&q= ======================================== **** Internet Explorer Version [7.0.5730.11] **** HKCU_Main|Default_Search_URL - hxxp://www.google.com/ie HKCU_Main|SearchMigratedDefaultURL - hxxp://www.google.com/search?q={searchTerms}&sourceid=ie7&rls=com.microsoft:en-US&ie=utf8&oe=utf8 HKCU_Main|Start Page - hxxp://www.forexstart.net/ HKCU_Main|Start Page Restore - hxxp://fr.msn.com/ HKLM_Main|Default_Page_URL - hxxp://go.microsoft.com/fwlink/?LinkId=69157 HKLM_Main|Default_Search_URL - hxxp://go.microsoft.com/fwlink/?LinkId=54896 HKLM_Main|Search Page - hxxp://go.microsoft.com/fwlink/?LinkId=54896 HKLM_Main|Start Page - hxxp://go.microsoft.com/fwlink/?LinkId=69157 AboutUrls|Tabs - hxxp://y.lo.st HKCU_SearchScopes\{B61A2A4E-559E-FEA4-259F-6EBD3BC10172} - "Free Search" (hxxp://www.forexstart.net/s/?q={searchTerms}&s=sbox) HKCU_Toolbar\WebBrowser|{42CDD1BF-3FFB-4238-8AD1-7859DF00B1D6} (x) HKCU_Toolbar\WebBrowser|{BDAD1DAD-C946-4A17-ADC1-64B5B4FF55D0} (x) HKCU_Toolbar\WebBrowser|{D4027C7F-154A-4066-A1AD-4243D8127440} (C:\Program Files\Ask.com\GenericAskToolbar.dll) HKLM_Toolbar|{D4027C7F-154A-4066-A1AD-4243D8127440} (C:\Program Files\Ask.com\GenericAskToolbar.dll) HKCU_ElevationPolicy\{A5AA24EA-11B8-4113-95AE-9ED71DEAF12A} - C:\Program Files\Ask.com\SaUpdate.exe (?) HKLM_ElevationPolicy\{628F3201-34D0-49C0-BB9A-82A26AEFB291} - C:\Program Files\IMinent Toolbar\TbHelper2.exe (x) HKLM_ElevationPolicy\{A5AA24EA-11B8-4113-95AE-9ED71DEAF12A} - C:\Program Files\Ask.com\SaUpdate.exe (?) HKLM_ElevationPolicy\{E6B969FB-6D33-48d2-9061-8BBD4899EB08} - C:\Program Files\Iminent\MMServer\Iminent.MMServer.exe (x) HKLM_Extensions\{C53BFCFC-7A54-4627-AEBA-2CD4871FCA97} - "Unibet Poker" (C:\Microgaming\Poker\UnibetpokerMPP\MPPoker.exe,1) HKLM_Extensions\{e2e2dd38-d088-4134-82b7-f2ba38496583} - "?" (?) BHO\{06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - "AcroIEHlprObj Class" (C:\Program Files\Adobe\Acrobat 5.0\Reader\ActiveX\AcroIEHelper.ocx) BHO\{2E03C0FD-4C48-43A7-9A54-00240C70FF16} - "ECarteBleueBrowserHelper Class" (C:\WINDOWS\system32\BhoECart.dll) BHO\{53707962-6F74-2D53-2644-206D7942484F} - "?" (C:\PROGRA~1\SPYBOT~1\SDHelper.dll) BHO\{5C255C8A-E604-49b4-9D64-90988571CECB} (?) BHO\{64F56FC1-1272-44CD-BA6E-39723696E350} - "EoBho Class" (C:\PROGRA~1\EoRezo\EoAdv\EOREZO~1.DLL) BHO\{6EBF7485-159F-4bff-A14F-B9E3AAC4465B} - "Search Helper" (C:\Program Files\Microsoft\Search Enhancement Pack\Search Helper\SEPsearchhelperie.dll) BHO\{D4027C7F-154A-4066-A1AD-4243D8127440} - "Ask Toolbar" (C:\Program Files\Ask.com\GenericAskToolbar.dll) ======================================== C:\Program Files\Ad-Remover\Quarantine: 0 Fichier(s) C:\Program Files\Ad-Remover\Backup: 1 Fichier(s) C:\Ad-Report-SCAN[1].txt - 29/07/2011 17:51:28 (5735 Octet(s)) Fin à: 17:52:18, 29/07/2011 ============== E.O.F ============== ======= RAPPORT D'AD-REMOVER 2.0.0.2,G | UNIQUEMENT XP/VISTA/7 ======= Mis à jour par TeamXscript le 12/04/11 Contact: AdRemover[DOT]contact[AT]gmail[DOT]com Site web: http://www.teamxscript.org C:\Program Files\Ad-Remover\main.exe (CLEAN [1]) -> Lancé à 17:57:10 le 29/07/2011, Mode normal Microsoft Windows XP Édition familiale Service Pack 2 (X86) GAETAN@MAXDATA-CFB910E ( ) ============== ACTION(S) ============== Fichier supprimé: C:\WINDOWS\gvcasinos.ini Fichier supprimé: C:\WINDOWS\Tasks\Scheduled Update for Ask Toolbar.job Dossier supprimé: C:\Documents and Settings\GAETAN\Application Data\Mozilla\FireFox\Profiles\tq93po6j.default\extensions\toolbar@ask.com Fichier supprimé: C:\Documents and Settings\GAETAN\Application Data\Mozilla\FireFox\Profiles\tq93po6j.default\searchplugins\ask.xml Dossier supprimé: C:\Program Files\Ask.com Dossier supprimé: C:\Documents and Settings\GAETAN\Local Settings\Application Data\AskToolbar Dossier supprimé: C:\Documents and Settings\GAETAN\Application Data\Toolbar4 Dossier supprimé: C:\Program Files\TorrentSpeeder Dossier supprimé: C:\Documents and Settings\GAETAN\Application Data\EoRezo Dossier supprimé: C:\Program Files\EoRezo (!) -- Fichiers temporaires supprimés. Clé supprimée: HKLM\Software\Classes\CLSID\{64F56FC1-1272-44CD-BA6E-39723696E350} Clé supprimée: HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{64F56FC1-1272-44CD-BA6E-39723696E350} Clé supprimée: HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{64F56FC1-1272-44CD-BA6E-39723696E350} Clé supprimée: HKLM\Software\Classes\CLSID\{D4027C7F-154A-4066-A1AD-4243D8127440} Clé supprimée: HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{D4027C7F-154A-4066-A1AD-4243D8127440} Clé supprimée: HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{D4027C7F-154A-4066-A1AD-4243D8127440} Clé supprimée: HKLM\Software\Classes\Interface\{0494D0D4-F8E0-41AD-92A3-14154ECE70AC} Clé supprimée: HKLM\Software\Classes\Interface\{0494D0D6-F8E0-41AD-92A3-14154ECE70AC} Clé supprimée: HKLM\Software\Classes\Interface\{6C434537-053E-486D-B62A-160059D9D456} Clé supprimée: HKLM\Software\Classes\Interface\{91CF619A-4686-4CA4-9232-3B2E6B63AA92} Clé supprimée: HKLM\Software\Classes\Interface\{AC71B60E-94C9-4EDE-BA46-E146747BB67E} Clé supprimée: HKLM\Software\Classes\Interface\{B0D071A1-36B3-4757-A126-14C89C56013A} Clé supprimée: HKLM\Software\Classes\TypeLib\{0494D0D0-F8E0-41AD-92A3-14154ECE70AC} Clé supprimée: HKLM\Software\Classes\TypeLib\{2996F0E7-292B-4CAE-893F-47B8B1C05B56} Clé supprimée: HKLM\Software\Classes\TypeLib\{B4C656C9-F2E9-4E77-B3F4-443DF2BD778F} Clé supprimée: HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\ednfwo Clé supprimée: HKLM\Software\Classes\GenericAskToolbar.ToolbarWnd Clé supprimée: HKLM\Software\Classes\GenericAskToolbar.ToolbarWnd.1 Clé supprimée: HKLM\Software\Classes\AppID\GenericAskToolbar.DLL Clé supprimée: HKLM\Software\Classes\AppID\{9B0CB95C-933A-4B8C-B6D4-EDCD19A43874} Clé supprimée: HKLM\Software\soft2PC Clé supprimée: HKCU\Software\Ask.com Clé supprimée: HKCU\Software\AskToolbar Clé supprimée: HKCU\Software\EoRezo Clé supprimée: HKCU\Software\Grand Virtual Clé supprimée: HKCU\Software\soft2PC Clé supprimée: HKCU\Software\AppDataLow\AskToolbarInfo Clé supprimée: HKCU\Software\Microsoft\Windows\CurrentVersion\Explorer\MenuOrder\Start Menu2\Programs\live-player Clé supprimée: HKLM\Software\Classes\Installer\Products\A28B4D68DEBAA244EB686953B7074FEF Clé supprimée: HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\Userdata\S-1-5-18\Products\A28B4D68DEBAA244EB686953B7074FEF Clé supprimée: HKLM\Software\Microsoft\Shared Tools\MSConfig\startupreg\Eoengine Clé supprimée: HKLM\Software\Microsoft\Shared Tools\MSConfig\startupreg\Eorezo Clé supprimée: HKLM\Software\Microsoft\Shared Tools\MSConfig\startupreg\soft2PC Clé supprimée: HKCU\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{A5AA24EA-11B8-4113-95AE-9ED71DEAF12A} Clé supprimée: HKLM\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{A5AA24EA-11B8-4113-95AE-9ED71DEAF12A} Clé supprimée: HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\{86D4B82A-ABED-442A-BE86-96357B70F4FE} Valeur supprimée: HKCU\Software\Netscape\Netscape Navigator\Automation Shutdown|MyWayToolbar.NetscapeShutdown.1 Valeur supprimée: HKCU\Software\Netscape\Netscape Navigator\Automation Startup|MyWayToolbar.NetscapeStartup.1 Valeur supprimée: HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings\5.0\User Agent\post platform|AskTB5.5 Valeur supprimée: HKLM\Software\Microsoft\Internet Explorer\Toolbar|{D4027C7F-154A-4066-A1AD-4243D8127440} Valeur supprimée: HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser|{D4027C7F-154A-4066-A1AD-4243D8127440} ============== SCAN ADDITIONNEL ============== **** Mozilla Firefox Version [1.5 (fr)] **** FIREFOX.EXE\Shell\Open\Command - "C:\Program Files\Mozilla Firefox\firefox.exe" Plugins\npqtplugin8.dll (Apple Computer, Inc.) Components\jar50.dll (Mozilla Foundation) Components\jsd3250.dll (Mozilla Foundation) Components\nsCloseAllWindows.js Components\nsDictionary.js Components\nsPostUpdateWin.js Components\nsXmlRpcClient.js Components\xpinstal.dll (Mozilla Foundation) -- C:\Documents and Settings\GAETAN\Application Data\Mozilla\FireFox\Profiles\tq93po6j.default -- Extensions\{C9B68337-E93A-44EA-94DC-CB300EC06444} (IMinent Toolbar) Prefs.js - browser.search.defaultenginename, Prefs.js - browser.search.selectedEngine, Prefs.js - browser.startup.homepage_override.mstone, rv:1.8.0.4 Prefs.js - keyword.URL, hxxp://search.live.com/results.aspx?mkt=fr-fr&FORM=MIMWA2&q= ======================================== **** Internet Explorer Version [7.0.5730.11] **** HKCU_Main|Default_Page_URL - hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&pver=6&ar=msnhome HKCU_Main|Default_Search_URL - hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch HKCU_Main|Search bar - hxxp://go.microsoft.com/fwlink/?linkid=54896 HKCU_Main|Start Page - hxxp://fr.msn.com/ HKLM_Main|Default_Page_URL - hxxp://go.microsoft.com/fwlink/?LinkId=54896 HKLM_Main|Default_Search_URL - hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch HKLM_Main|Search bar - hxxp://search.msn.com/spbasic.htm HKLM_Main|Search Page - hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch HKLM_Main|Start Page - hxxp://fr.msn.com/ HKCU_SearchScopes\{B61A2A4E-559E-FEA4-259F-6EBD3BC10172} - "Free Search" (hxxp://www.forexstart.net/s/?q={searchTerms}&s=sbox) HKCU_Toolbar\WebBrowser|{42CDD1BF-3FFB-4238-8AD1-7859DF00B1D6} (x) HKCU_Toolbar\WebBrowser|{BDAD1DAD-C946-4A17-ADC1-64B5B4FF55D0} (x) HKLM_ElevationPolicy\{628F3201-34D0-49C0-BB9A-82A26AEFB291} - C:\Program Files\IMinent Toolbar\TbHelper2.exe (x) HKLM_ElevationPolicy\{E6B969FB-6D33-48d2-9061-8BBD4899EB08} - C:\Program Files\Iminent\MMServer\Iminent.MMServer.exe (x) HKLM_Extensions\{C53BFCFC-7A54-4627-AEBA-2CD4871FCA97} - "Unibet Poker" (C:\Microgaming\Poker\UnibetpokerMPP\MPPoker.exe,1) HKLM_Extensions\{e2e2dd38-d088-4134-82b7-f2ba38496583} - "?" (?) BHO\{06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - "AcroIEHlprObj Class" (C:\Program Files\Adobe\Acrobat 5.0\Reader\ActiveX\AcroIEHelper.ocx) BHO\{2E03C0FD-4C48-43A7-9A54-00240C70FF16} - "ECarteBleueBrowserHelper Class" (C:\WINDOWS\system32\BhoECart.dll) BHO\{53707962-6F74-2D53-2644-206D7942484F} - "?" (C:\PROGRA~1\SPYBOT~1\SDHelper.dll) BHO\{5C255C8A-E604-49b4-9D64-90988571CECB} (?) BHO\{6EBF7485-159F-4bff-A14F-B9E3AAC4465B} - "Search Helper" (C:\Program Files\Microsoft\Search Enhancement Pack\Search Helper\SEPsearchhelperie.dll) ======================================== C:\Program Files\Ad-Remover\Quarantine: 99 Fichier(s) C:\Program Files\Ad-Remover\Backup: 14 Fichier(s) C:\Ad-Report-CLEAN[1].txt - 29/07/2011 17:57:21 (7794 Octet(s)) C:\Ad-Report-SCAN[1].txt - 29/07/2011 17:51:28 (8560 Octet(s)) Fin à: 17:58:33, 29/07/2011 ============== E.O.F ==============
- le 29 juillet 2011
- 16 réponses
analyse highjackthis...gros problèmes sur mon PC

gats99 a répondu à un(e) sujet de gats99 dans Analyses et éradication malwares
- le 29 juillet 2011
- 16 réponses
analyse highjackthis...gros problèmes sur mon PC

gats99 a posté un sujet dans Analyses et éradication malwares

Bonjour, Je rencontre les problèmes suivants avec mon PC et je ne suis pas chevronnée dans le domaine ! - Mon PC s'éteind et redémarre seul - quand je bouge la souris alors que je suis en veille depuis assez longtemps, il faut un très grand moment avant que l'écran s'allume (il reste noir) - Lorsque je suis sur internet, le programme s'éteind seul et un message pour un rapport à envoyer apparaît Cela m'arrive aussi sur photofiltre avant même que j'ai eu le temps de sauvegarder mon travail. J'ai fait une analyse avec highjackthis mais suis incapable de la lire. Pouvez-vous m'aider svp et me dire d'où peut provenir mon problème (enfin mes problèmes), mon PC est-il mort ? Par avance merci de ce que vous pourrez faire pour moi. Voici le copier/coller de mon rapport highjackthis : Logfile of Trend Micro HijackThis v2.0.2 Scan saved at 16:36:51, on 29/07/2011 Platform: Windows XP SP2 (WinNT 5.01.2600) MSIE: Internet Explorer v7.00 (7.00.6000.17055) Boot mode: Normal Running processes: C:\WINDOWS\System32\smss.exe C:\WINDOWS\system32\winlogon.exe C:\WINDOWS\system32\services.exe C:\WINDOWS\system32\lsass.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\System32\svchost.exe C:\WINDOWS\system32\svchost.exe C:\Program Files\Alwil Software\Avast5\AvastSvc.exe C:\WINDOWS\system32\spoolsv.exe C:\Program Files\Bonjour\mDNSResponder.exe C:\Program Files\Java\jre6\bin\jqs.exe C:\Program Files\Fichiers communs\Microsoft Shared\VS7DEBUG\MDM.EXE C:\Program Files\Microsoft\Search Enhancement Pack\SeaPort\SeaPort.exe C:\WINDOWS\System32\svchost.exe C:\WINDOWS\explorer.exe C:\WINDOWS\system32\wuauclt.exe C:\WINDOWS\SOUNDMAN.EXE C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\E_S10IC2.EXE C:\Program Files\QuickTime\QTTask.exe C:\Program Files\Alwil Software\Avast5\avastUI.exe C:\Program Files\Fichiers communs\Java\Java Update\jusched.exe C:\WINDOWS\system32\ctfmon.exe C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe C:\Program Files\Picasa2\PicasaMediaDetector.exe C:\Program Files\Fichiers communs\Teleca Shared\Generic.exe C:\Program Files\Sony Ericsson\Mobile2\Mobile Phone Monitor\epmworker.exe C:\Documents and Settings\GAETAN\Bureau\HiJackThis.exe R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = Forex Start R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = MSN : Hotmail, Messenger, Bing, Actualité et Sport R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = Bing R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = Bing R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = MSN : Hotmail, Messenger, Bing, Actualité et Sport R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant = R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens F2 - REG:system.ini: Shell=explorer.exe O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 5.0\Reader\ActiveX\AcroIEHelper.ocx O2 - BHO: e-Carte Bleue Browser Helper Object - {2E03C0FD-4C48-43A7-9A54-00240C70FF16} - C:\WINDOWS\system32\BhoECart.dll O2 - BHO: (no name) - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll O2 - BHO: (no name) - {5C255C8A-E604-49b4-9D64-90988571CECB} - (no file) O2 - BHO: EoRezoBHO - {64F56FC1-1272-44CD-BA6E-39723696E350} - C:\PROGRA~1\EoRezo\EoAdv\EOREZO~1.DLL O2 - BHO: Search Helper - {6EBF7485-159F-4bff-A14F-B9E3AAC4465B} - C:\Program Files\Microsoft\Search Enhancement Pack\Search Helper\SEPsearchhelperie.dll O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll O2 - BHO: SkypeIEPluginBHO - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\5.7.6406.1642\swg.dll O2 - BHO: Ask Toolbar BHO - {D4027C7F-154A-4066-A1AD-4243D8127440} - C:\Program Files\Ask.com\GenericAskToolbar.dll O2 - BHO: Java Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll O2 - BHO: Windows Live Toolbar Helper - {E15A8DC0-8516-42A1-81EA-DC94EC1ACF10} - C:\Program Files\Windows Live\Toolbar\wltcore.dll O2 - BHO: JQSIEStartDetectorImpl - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll O3 - Toolbar: &Windows Live Toolbar - {21FA44EF-376D-4D53-9B0F-8A89D3229068} - C:\Program Files\Windows Live\Toolbar\wltcore.dll O3 - Toolbar: Ask Toolbar - {D4027C7F-154A-4066-A1AD-4243D8127440} - C:\Program Files\Ask.com\GenericAskToolbar.dll O3 - Toolbar: Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll O4 - HKLM\..\Run: [soundMan] SOUNDMAN.EXE O4 - HKLM\..\Run: [VTTimer] VTTimer.exe O4 - HKLM\..\Run: [EPSON Stylus C84 Series] C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\E_S10IC2.EXE /P23 "EPSON Stylus C84 Series" /O6 "USB001" /M "Stylus C84" O4 - HKLM\..\Run: [Microsoft Services] lsrv.exe O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\QTTask.exe" -atboottime O4 - HKLM\..\Run: [avast] "C:\Program Files\Alwil Software\Avast5\avastUI.exe" /nogui O4 - HKLM\..\Run: [sunJavaUpdateSched] "C:\Program Files\Fichiers communs\Java\Java Update\jusched.exe" O4 - HKLM\..\RunServices: [Microsoft Updates] wkssvr.exe O4 - HKLM\..\RunServices: [Microsoft Services] lsrv.exe O4 - HKLM\..\RunServices: [MS Sound Config 16bit] sndcfg16.exe
- le 29 juillet 2011
- 16 réponses

Connexion

gats99

Compteur de contenus

Inscription

Dernière visite

Type de contenu

Profils

Forums

Blogs

Tout ce qui a été posté par gats99

analyse highjackthis...gros problèmes sur mon PC

analyse highjackthis...gros problèmes sur mon PC

analyse highjackthis...gros problèmes sur mon PC

analyse highjackthis...gros problèmes sur mon PC

analyse highjackthis...gros problèmes sur mon PC

analyse highjackthis...gros problèmes sur mon PC

analyse highjackthis...gros problèmes sur mon PC

analyse highjackthis...gros problèmes sur mon PC

analyse highjackthis...gros problèmes sur mon PC

analyse highjackthis...gros problèmes sur mon PC

Zebulon

Outils en ligne

Naviguer