Aller au contenu

  • Pas encore inscrit ?

    Pourquoi ne pas vous inscrire ? C'est simple, rapide et gratuit.
    Pour en savoir plus, lisez Les avantages de l'inscription... et la Charte de Zébulon.
    De plus, les messages que vous postez en tant qu'invité restent invisibles tant qu'un modérateur ne les a pas validés. Inscrivez-vous, ce sera un gain de temps pour tout le monde, vous, les helpeurs et les modérateurs ! :wink:

Analyse rapport walwares anti walwares + problème installation sims 3

drenou3

Par drenou3
dans Analyses et éradication malwares

 Partager

Messages recommandés

drenou3 Junior Member

drenou3

Posté(e)
Posté(e)

Bonjour,

 

Je suis toute nouvelle ici suite à une infection d'un trojan sur mon pc.

J'ai télécharger le logiciel Walwares anti walwares. J'ai fais un scan, supprimé tous les fichiers infectés.

Voici le fichier .log

 

 

Malwarebytes' Anti-Malware 1.45

www.malwarebytes.org

 

Version de la base de données: 3930

 

Windows 5.1.2600 Service Pack 3

Internet Explorer 7.0.5730.11

 

27/04/2010 06:39:11

mbam-log-2010-04-27 (06-39-11).txt

 

Type d'examen: Examen complet (C:\|E:\|)

Elément(s) analysé(s): 197937

Temps écoulé: 1 heure(s), 35 minute(s), 43 seconde(s)

 

Processus mémoire infecté(s): 0

Module(s) mémoire infecté(s): 1

Clé(s) du Registre infectée(s): 8

Valeur(s) du Registre infectée(s): 0

Elément(s) de données du Registre infecté(s): 1

Dossier(s) infecté(s): 2

Fichier(s) infecté(s): 56

 

Processus mémoire infecté(s):

(Aucun élément nuisible détecté)

 

Module(s) mémoire infecté(s):

C:\WINDOWS\system32\encapi32.dll (Trojan.Tracur) -> Delete on reboot.

 

Clé(s) du Registre infectée(s):

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\a8c035da684 (Trojan.Tracur) -> Delete on reboot.

HKEY_CLASSES_ROOT\.fsharproj (Trojan.Tracur) -> Quarantined and deleted successfully.

HKEY_LOCAL_MACHINE\SOFTWARE\avsoft (Trojan.Fraudpack) -> Quarantined and deleted successfully.

HKEY_CURRENT_USER\SOFTWARE\fcn (Rogue.Residue) -> Quarantined and deleted successfully.

HKEY_CURRENT_USER\SOFTWARE\OOO (Malware.Trace) -> Quarantined and deleted successfully.

HKEY_LOCAL_MACHINE\SOFTWARE\EoRezo (Rogue.Eorezo) -> Quarantined and deleted successfully.

HKEY_LOCAL_MACHINE\SOFTWARE\OOO (Rogue.LivePlayer) -> Quarantined and deleted successfully.

HKEY_CURRENT_USER\Software\avsoft (Trojan.Fraudpack) -> Quarantined and deleted successfully.

 

Valeur(s) du Registre infectée(s):

(Aucun élément nuisible détecté)

 

Elément(s) de données du Registre infecté(s):

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Main\Start Page (Hijack.StartPage) -> Bad: (http://www.nixud.com/) Good: (http://www.google.com) -> Quarantined and deleted successfully.

 

Dossier(s) infecté(s):

C:\WINDOWS\system32\LocalService (Worm.Archive) -> Quarantined and deleted successfully.

C:\WINDOWS\system32\SysWoW32 (Worm.Archive) -> Quarantined and deleted successfully.

 

Fichier(s) infecté(s):

C:\Documents and Settings\pol\Local Settings\Application Data\tjiddsf_navps.dat (Adware.Navipromo.H) -> Quarantined and deleted successfully.

C:\Documents and Settings\pol\Local Settings\Application Data\tjiddsf_nav.dat (Adware.Navipromo.H) -> Quarantined and deleted successfully.

C:\Documents and Settings\pol\Local Settings\Application Data\tjiddsf.dat (Adware.Navipromo.H) -> Quarantined and deleted successfully.

C:\WINDOWS\system32\encapi32.dll (Trojan.Tracur) -> Delete on reboot.

C:\Program Files\eoRezo\EoAdv\EoAdv.dll (Rogue.Eorezo) -> Quarantined and deleted successfully.

C:\WINDOWS\system32\B8.tmp (Trojan.Tracur) -> Quarantined and deleted successfully.

C:\WINDOWS\system32\278.tmp (Trojan.Agent) -> Quarantined and deleted successfully.

C:\WINDOWS\system32\279.tmp (Trojan.Agent) -> Quarantined and deleted successfully.

C:\WINDOWS\system32\2A1.tmp (Trojan.Agent) -> Quarantined and deleted successfully.

C:\WINDOWS\system32\3C.tmp (Trojan.Agent) -> Quarantined and deleted successfully.

C:\WINDOWS\system32\40.tmp (Trojan.Tracur) -> Quarantined and deleted successfully.

C:\WINDOWS\system32\51.tmp (Trojan.Tracur) -> Quarantined and deleted successfully.

C:\WINDOWS\system32\5C.tmp (Trojan.Tracur) -> Quarantined and deleted successfully.

C:\WINDOWS\system32\5D.tmp (Trojan.Tracur) -> Quarantined and deleted successfully.

C:\WINDOWS\system32\6.tmp (Trojan.Tracur) -> Quarantined and deleted successfully.

C:\WINDOWS\system32\61.tmp (Trojan.Agent) -> Quarantined and deleted successfully.

C:\WINDOWS\system32\7.tmp (Trojan.Tracur) -> Quarantined and deleted successfully.

C:\WINDOWS\system32\7A.tmp (Trojan.Tracur) -> Quarantined and deleted successfully.

C:\WINDOWS\system32\8.tmp (Worm.P2P) -> Quarantined and deleted successfully.

C:\WINDOWS\system32\LocalService\329.crack.zip.kwd (Worm.Archive) -> Quarantined and deleted successfully.

C:\WINDOWS\system32\LocalService\330.keygen.zip.kwd (Worm.Archive) -> Quarantined and deleted successfully.

C:\WINDOWS\system32\LocalService\331.serial.zip.kwd (Worm.Archive) -> Quarantined and deleted successfully.

C:\WINDOWS\system32\LocalService\332.setup.zip.kwd (Worm.Archive) -> Quarantined and deleted successfully.

C:\WINDOWS\system32\LocalService\333.music.au.kwd (Worm.Archive) -> Quarantined and deleted successfully.

C:\WINDOWS\system32\LocalService\334.music2.au.kwd (Worm.Archive) -> Quarantined and deleted successfully.

C:\WINDOWS\system32\LocalService\335.music3.au.kwd (Worm.Archive) -> Quarantined and deleted successfully.

C:\WINDOWS\system32\LocalService\336.music4.au.kwd (Worm.Archive) -> Quarantined and deleted successfully.

C:\WINDOWS\system32\SysWoW32\@u1922723712v0 (Worm.Archive) -> Quarantined and deleted successfully.

C:\WINDOWS\system32\SysWoW32\@u1922723712v4 (Worm.Archive) -> Quarantined and deleted successfully.

C:\WINDOWS\system32\SysWoW32\@u1922723712v5 (Worm.Archive) -> Quarantined and deleted successfully.

C:\WINDOWS\system32\SysWoW32\@u1922723712v6 (Worm.Archive) -> Quarantined and deleted successfully.

C:\WINDOWS\system32\SysWoW32\@u1922723712v7 (Worm.Archive) -> Quarantined and deleted successfully.

C:\WINDOWS\system32\SysWoW32\mu1922723712v4 (Worm.Archive) -> Quarantined and deleted successfully.

C:\WINDOWS\system32\SysWoW32\mu1922723712v4.kwd (Worm.Archive) -> Quarantined and deleted successfully.

C:\WINDOWS\system32\SysWoW32\mu1922723712v5 (Worm.Archive) -> Quarantined and deleted successfully.

C:\WINDOWS\system32\SysWoW32\mu1922723712v5.kwd (Worm.Archive) -> Quarantined and deleted successfully.

C:\WINDOWS\system32\SysWoW32\mu1922723712v6 (Worm.Archive) -> Quarantined and deleted successfully.

C:\WINDOWS\system32\SysWoW32\mu1922723712v6.kwd (Worm.Archive) -> Quarantined and deleted successfully.

C:\WINDOWS\system32\SysWoW32\mu1922723712v7 (Worm.Archive) -> Quarantined and deleted successfully.

C:\WINDOWS\system32\SysWoW32\mu1922723712v7.kwd (Worm.Archive) -> Quarantined and deleted successfully.

C:\WINDOWS\system32\SysWoW32\wu1922723712v0 (Worm.Archive) -> Quarantined and deleted successfully.

C:\WINDOWS\system32\SysWoW32\wu1922723712v0.kwd (Worm.Archive) -> Quarantined and deleted successfully.

C:\WINDOWS\system32\SysWoW32\wu1922723712v1 (Worm.Archive) -> Quarantined and deleted successfully.

C:\WINDOWS\system32\SysWoW32\wu1922723712v1.kwd (Worm.Archive) -> Quarantined and deleted successfully.

C:\WINDOWS\system32\SysWoW32\wu1922723712v2 (Worm.Archive) -> Quarantined and deleted successfully.

C:\WINDOWS\system32\SysWoW32\wu1922723712v2.kwd (Worm.Archive) -> Quarantined and deleted successfully.

C:\WINDOWS\system32\SysWoW32\wu1922723712v3 (Worm.Archive) -> Quarantined and deleted successfully.

C:\WINDOWS\system32\SysWoW32\wu1922723712v3.kwd (Worm.Archive) -> Quarantined and deleted successfully.

C:\WINDOWS\system32\SysWoW32\wu1922723712v6.kwd (Worm.Archive) -> Quarantined and deleted successfully.

C:\WINDOWS\system32\SysWoW32\_u1922723712v0 (Worm.Archive) -> Quarantined and deleted successfully.

C:\WINDOWS\system32\SysWoW32\_u1922723712v4 (Worm.Archive) -> Quarantined and deleted successfully.

C:\WINDOWS\system32\SysWoW32\_u1922723712v5 (Worm.Archive) -> Quarantined and deleted successfully.

C:\WINDOWS\system32\SysWoW32\_u1922723712v6 (Worm.Archive) -> Quarantined and deleted successfully.

C:\WINDOWS\system32\SysWoW32\_u1922723712v7 (Worm.Archive) -> Quarantined and deleted successfully.

C:\WINDOWS\system32\GroupPolicy000.dat (Malware.Trace) -> Quarantined and deleted successfully.

C:\WINDOWS\GnuHashes.ini (Malware.Trace) -> Quarantined and deleted successfully.

 

 

Ensuite j'ai suivi toutes vos indications avec RSIT. Il a repéré Hijackthis. Mais cela a abouti à un seul fichier.

 

 

Logfile of random's system information tool 1.06 (written by random/random)

Run by pol at 2010-04-27 18:57:42

Microsoft Windows XP Édition familiale Service Pack 3

System drive C: has 25 GB (45%) free of 55 GB

Total RAM: 1023 MB (45% free)

 

Logfile of Trend Micro HijackThis v2.0.2

Scan saved at 18:57:47, on 27/04/2010

Platform: Windows XP SP3 (WinNT 5.01.2600)

MSIE: Internet Explorer v7.00 (7.00.6000.17023)

Boot mode: Normal

 

Running processes:

C:\WINDOWS\System32\smss.exe

C:\WINDOWS\system32\winlogon.exe

C:\WINDOWS\system32\services.exe

C:\WINDOWS\system32\lsass.exe

C:\WINDOWS\system32\svchost.exe

C:\WINDOWS\System32\svchost.exe

C:\WINDOWS\system32\svchost.exe

C:\WINDOWS\Explorer.EXE

C:\Program Files\CheckPoint\ZAForceField\IswSvc.exe

C:\WINDOWS\system32\spoolsv.exe

C:\Program Files\Avira\AntiVir Desktop\sched.exe

C:\Program Files\CheckPoint\ZAForceField\ForceField.exe

C:\Program Files\a-squared Free\a2service.exe

C:\Program Files\Avira\AntiVir Desktop\avguard.exe

C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe

C:\Program Files\Application Updater\ApplicationUpdater.exe

C:\Program Files\Java\jre6\bin\jqs.exe

C:\Program Files\Fichiers communs\Symantec Shared\PIF\{B8E1DD85-8582-4c61-B58F-2F227FCA9A08}\PIFSvc.exe

C:\Program Files\Fichiers communs\Microsoft Shared\VS7DEBUG\MDM.EXE

C:\WINDOWS\system32\nvsvc32.exe

C:\Program Files\Microsoft\Search Enhancement Pack\SeaPort\SeaPort.exe

C:\WINDOWS\system32\svchost.exe

C:\WINDOWS\system32\wscntfy.exe

C:\WINDOWS\system32\wbem\wmiapsrv.exe

C:\WINDOWS\System32\svchost.exe

C:\Program Files\HP\HP Software Update\HPWuSchd2.exe

C:\Program Files\Java\jre6\bin\jusched.exe

C:\Program Files\QuickTime\QTTask.exe

C:\Program Files\SweetIM\Messenger\SweetIM.exe

C:\Program Files\Search Settings\SearchSettings.exe

C:\Program Files\Avira\AntiVir Desktop\avgnt.exe

C:\Program Files\Zone Labs\ZoneAlarm\zlclient.exe

C:\Program Files\Google\Google Talk\googletalk.exe

C:\WINDOWS\system32\ctfmon.exe

C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe

C:\Program Files\Sony\Sony Picture Utility\VolumeWatcher\SPUVolumeWatcher.exe

C:\Program Files\HP\Digital Imaging\bin\hpqimzone.exe

C:\Program Files\HP\Digital Imaging\bin\hpqSTE08.exe

C:\WINDOWS\system32\ZoneLabs\vsmon.exe

C:\Program Files\Electronic Arts\EADM\Core.exe

C:\Program Files\Mozilla Firefox\firefox.exe

C:\Program Files\MagicISO\MagicISO.exe

C:\WINDOWS\system32\NOTEPAD.EXE

C:\Documents and Settings\pol\Bureau\RSIT.exe

C:\Documents and Settings\pol\Bureau\ANTIVIRUS\pol.exe

 

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://fr.ask.com?o=15161&l=dis

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://red.clientapps.yahoo.com/customize/...//www.yahoo.com

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Bar = http://red.clientapps.yahoo.com/customize/...rch/search.html

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://red.clientapps.yahoo.com/customize/...//www.yahoo.com

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Window Title = Internet Explorer avec Club-Internet

R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens

R3 - URLSearchHook: MyPlayCity Toolbar - {4724c5d8-dfa7-417a-a2f5-1eabfee9b4ac} - C:\Program Files\MyPlayCity\tbMyP1.dll

R3 - URLSearchHook: SweetIM ToolbarURLSearchHook Class - {EEE6C35D-6118-11DC-9C72-001320C79847} - C:\Program Files\SweetIM\Toolbars\Internet Explorer\mgHelper.dll

R3 - URLSearchHook: SearchSettings Class - {E312764E-7706-43F1-8DAB-FCDD2B1E416D} - C:\Program Files\Search Settings\SearchSettings.dll

O2 - BHO: (no name) - {00BB1DA3-B5FE-40B1-B621-98C73A5177Bd} - (no file)

O2 - BHO: (no name) - {01398B87-61AF-4FFB-9AB5-1A1C5FB39A9C} - (no file)

O2 - BHO: (no name) - {05D8ED19-B5FE-40B1-B621-98C73A5177Bd} - (no file)

O2 - BHO: Aide pour le lien d'Adobe PDF Reader - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Fichiers communs\Adobe\Acrobat\ActiveX\AcroIEHelper.dll

O2 - BHO: MyPlayCity Toolbar - {4724c5d8-dfa7-417a-a2f5-1eabfee9b4ac} - C:\Program Files\MyPlayCity\tbMyP1.dll

O2 - BHO: EoBho Class - {64F56FC1-1272-44CD-BA6E-39723696E350} - C:\Program Files\eoRezo\EoAdv\EoRezoBHO.dll

O2 - BHO: Search Helper - {6EBF7485-159F-4bff-A14F-B9E3AAC4465B} - C:\Program Files\Microsoft\Search Enhancement Pack\Search Helper\SEPsearchhelperie.dll

O2 - BHO: ZoneAlarm Toolbar Registrar - {8A4A36C2-0535-4D2C-BD3D-496CB7EED6E3} - C:\Program Files\CheckPoint\ZAForceField\TrustChecker\bin\TrustCheckerIEPlugin.dll

O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll

O2 - BHO: (no name) - {9394EDE7-C8B5-483E-8773-474BF36AF6E4} - (no file)

O2 - BHO: (no name) - {BDBD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - (no file)

O2 - BHO: Java Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll

O2 - BHO: SearchSettings Class - {E312764E-7706-43F1-8DAB-FCDD2B1E416D} - C:\Program Files\Search Settings\SearchSettings.dll

O2 - BHO: JQSIEStartDetectorImpl - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll

O2 - BHO: SWEETIE - {EEE6C35C-6118-11DC-9C72-001320C79847} - C:\Program Files\SweetIM\Toolbars\Internet Explorer\mgToolbarIE.dll

O3 - Toolbar: (no name) - {BDAD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - (no file)

O3 - Toolbar: MyPlayCity Toolbar - {4724c5d8-dfa7-417a-a2f5-1eabfee9b4ac} - C:\Program Files\MyPlayCity\tbMyP1.dll

O3 - Toolbar: SweetIM Toolbar for Internet Explorer - {EEE6C35B-6118-11DC-9C72-001320C79847} - C:\Program Files\SweetIM\Toolbars\Internet Explorer\mgToolbarIE.dll

O3 - Toolbar: (no name) - {01398B87-61AF-4FFB-9AB5-1A1C5FB39A9C} - (no file)

O3 - Toolbar: ZoneAlarm Toolbar - {EE2AC4E5-B0B0-4EC6-88A9-BCA1A32AB107} - C:\Program Files\CheckPoint\ZAForceField\TrustChecker\bin\TrustCheckerIEPlugin.dll

O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup

O4 - HKLM\..\Run: [HP Software Update] C:\Program Files\HP\HP Software Update\HPWuSchd2.exe

O4 - HKLM\..\Run: [sunJavaUpdateSched] "C:\Program Files\Java\jre6\bin\jusched.exe"

O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\QTTask.exe" -atboottime

O4 - HKLM\..\Run: [sweetIM] C:\Program Files\SweetIM\Messenger\SweetIM.exe

O4 - HKLM\..\Run: [searchSettings] C:\Program Files\Search Settings\SearchSettings.exe

O4 - HKLM\..\Run: [avgnt] "C:\Program Files\Avira\AntiVir Desktop\avgnt.exe" /min

O4 - HKLM\..\Run: [ZoneAlarm Client] "C:\Program Files\Zone Labs\ZoneAlarm\zlclient.exe"

O4 - HKLM\..\Run: [iSW] "C:\Program Files\CheckPoint\ZAForceField\ForceField.exe" /icon="hidden"

O4 - HKLM\..\Run: [googletalk] C:\Program Files\Google\Google Talk\googletalk.exe /autostart

O4 - HKCU\..\Run: [fsc-reminder.exe] C:\WINDOWS\reminder\fsc-reminder.exe 2453836 10

O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe

O4 - HKCU\..\Run: [DAEMON Tools Lite] "C:\Program Files\DAEMON Tools Lite\DTLite.exe" -autorun

O4 - HKCU\..\Run: [EA Core] "C:\Program Files\Electronic Arts\EADM\Core.exe" -silent

O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE LOCAL')

O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE RÉSEAU')

O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')

O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')

O4 - S-1-5-18 Startup: Outil de détection de support Picture Motion Browser.lnk = C:\Program Files\Sony\Sony Picture Utility\VolumeWatcher\SPUVolumeWatcher.exe (User 'SYSTEM')

O4 - .DEFAULT Startup: Outil de détection de support Picture Motion Browser.lnk = C:\Program Files\Sony\Sony Picture Utility\VolumeWatcher\SPUVolumeWatcher.exe (User 'Default user')

O4 - Startup: Outil de détection de support Picture Motion Browser.lnk = C:\Program Files\Sony\Sony Picture Utility\VolumeWatcher\SPUVolumeWatcher.exe

O4 - Global Startup: Démarrage rapide de HP Photosmart Premier.lnk = C:\Program Files\HP\Digital Imaging\bin\hpqthb08.exe

O4 - Global Startup: HP Digital Imaging Monitor.lnk = C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe

O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~3\OFFICE11\EXCEL.EXE/3000

O9 - Extra button: Recherche - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~3\OFFICE11\REFIEBAR.DLL

O9 - Extra button: PartyPoker.com - {B7FE5D70-9AA2-40F1-9C6B-12A255F085E1} - C:\Program Files\PartyGaming\PartyPoker\RunApp.exe (file missing)

O9 - Extra 'Tools' menuitem: PartyPoker.com - {B7FE5D70-9AA2-40F1-9C6B-12A255F085E1} - C:\Program Files\PartyGaming\PartyPoker\RunApp.exe (file missing)

O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe

O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe

O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe

O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe

O16 - DPF: {02BF25D5-8C17-4B23-BC80-D3488ABDDC6B} (QuickTime Object) - http://a1540.g.akamai.net/7/1540/52/200612...ex/qtplugin.cab

O16 - DPF: {C45B1500-7B63-47C2-AB25-C28CB46AFDEE} (MediaBar) - http://sib1.od2.com/common/musicmanager/in...nagerPlugin.CAB

O18 - Protocol: CDS300 - {AD43AA67-6860-4531-AC8A-0E68F9CF023E} - D:\Player\__CDS2.dll (file missing)

O23 - Service: a-squared Free Service (a2free) - Emsi Software GmbH - C:\Program Files\a-squared Free\a2service.exe

O23 - Service: Avira AntiVir Planificateur (AntiVirSchedulerService) - Avira GmbH - C:\Program Files\Avira\AntiVir Desktop\sched.exe

O23 - Service: Avira AntiVir Guard (AntiVirService) - Avira GmbH - C:\Program Files\Avira\AntiVir Desktop\avguard.exe

O23 - Service: Apple Mobile Device - Apple Inc. - C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe

O23 - Service: Application Updater - Spigot, Inc. - C:\Program Files\Application Updater\ApplicationUpdater.exe

O23 - Service: Symantec Lic NetConnect service (CLTNetCnService) - Unknown owner - C:\Program Files\Fichiers communs\Symantec Shared\ccSvcHst.exe (file missing)

O23 - Service: HP Port Resolver - Hewlett-Packard Company - C:\WINDOWS\system32\spool\drivers\w32x86\3\HPBPRO.EXE

O23 - Service: HP Status Server - Hewlett-Packard Company - C:\WINDOWS\system32\spool\drivers\w32x86\3\HPBOID.EXE

O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Fichiers communs\InstallShield\Driver\11\Intel 32\IDriverT.exe

O23 - Service: Service de l’iPod (iPod Service) - Unknown owner - C:\Program Files\iPod\bin\iPodService.exe (file missing)

O23 - Service: ZoneAlarm Toolbar IswSvc (IswSvc) - Check Point Software Technologies - C:\Program Files\CheckPoint\ZAForceField\IswSvc.exe

O23 - Service: Java Quick Starter (JavaQuickStarterService) - Sun Microsystems, Inc. - C:\Program Files\Java\jre6\bin\jqs.exe

O23 - Service: LiveUpdate Notice Service Ex (LiveUpdate Notice Ex) - Unknown owner - C:\Program Files\Fichiers communs\Symantec Shared\ccSvcHst.exe (file missing)

O23 - Service: LiveUpdate Notice Service - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\PIF\{B8E1DD85-8582-4c61-B58F-2F227FCA9A08}\PIFSvc.exe

O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe

O23 - Service: Planificateur LiveUpdate automatique - Unknown owner - C:\Program Files\Symantec\LiveUpdate\ALUSchedulerSvc.exe (file missing)

O23 - Service: Pml Driver HPZ12 - HP - C:\WINDOWS\system32\HPZipm12.exe

O23 - Service: TrueVector Internet Monitor (vsmon) - Check Point Software Technologies LTD - C:\WINDOWS\system32\ZoneLabs\vsmon.exe

 

--

End of file - 12200 bytes

 

======Scheduled tasks folder======

 

C:\WINDOWS\tasks\AppleSoftwareUpdate.job

C:\WINDOWS\tasks\Microsoft_Hardware_Launch_setup_exe.job

 

======Registry dump======

 

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{00BB1DA3-B5FE-40B1-B621-98C73A5177Bd}]

 

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{01398B87-61AF-4FFB-9AB5-1A1C5FB39A9C}]

 

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{05D8ED19-B5FE-40B1-B621-98C73A5177Bd}]

 

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{06849E9F-C8D7-4D59-B87D-784B7D6BE0B3}]

Aide pour le lien d'Adobe PDF Reader - C:\Program Files\Fichiers communs\Adobe\Acrobat\ActiveX\AcroIEHelper.dll [2006-10-23 62080]

 

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{4724c5d8-dfa7-417a-a2f5-1eabfee9b4ac}]

MyPlayCity Toolbar - C:\Program Files\MyPlayCity\tbMyP1.dll [2009-11-30 2166296]

 

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{64F56FC1-1272-44CD-BA6E-39723696E350}]

EoBho Class - C:\Program Files\eoRezo\EoAdv\EoRezoBHO.dll [2007-01-25 106496]

 

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{6EBF7485-159F-4bff-A14F-B9E3AAC4465B}]

Search Helper - C:\Program Files\Microsoft\Search Enhancement Pack\Search Helper\SEPsearchhelperie.dll [2009-05-19 137600]

 

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8A4A36C2-0535-4D2C-BD3D-496CB7EED6E3}]

ZoneAlarm Toolbar Registrar - C:\Program Files\CheckPoint\ZAForceField\TrustChecker\bin\TrustCheckerIEPlugin.dll [2009-10-27 583024]

 

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]

Programme d'aide de l'Assistant de connexion Windows Live - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2009-02-17 408440]

 

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9394EDE7-C8B5-483E-8773-474BF36AF6E4}]

 

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{BDBD1DAD-C946-4A17-ADC1-64B5B4FF55D0}]

 

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]

Java Plug-In 2 SSV Helper - C:\Program Files\Java\jre6\bin\jp2ssv.dll [2009-03-09 35840]

 

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E312764E-7706-43F1-8DAB-FCDD2B1E416D}]

SearchSettings Class - C:\Program Files\Search Settings\SearchSettings.dll [2009-12-16 1109504]

 

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E7E6F031-17CE-4C07-BC86-EABFE594F69C}]

JQSIEStartDetectorImpl Class - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll [2009-03-09 73728]

 

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{EEE6C35C-6118-11DC-9C72-001320C79847}]

SweetIM Toolbar Helper - C:\Program Files\SweetIM\Toolbars\Internet Explorer\mgToolbarIE.dll [2009-10-19 1345336]

 

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]

{BDAD1DAD-C946-4A17-ADC1-64B5B4FF55D0}

{4724c5d8-dfa7-417a-a2f5-1eabfee9b4ac} - MyPlayCity Toolbar - C:\Program Files\MyPlayCity\tbMyP1.dll [2009-11-30 2166296]

{EEE6C35B-6118-11DC-9C72-001320C79847} - SweetIM Toolbar for Internet Explorer - C:\Program Files\SweetIM\Toolbars\Internet Explorer\mgToolbarIE.dll [2009-10-19 1345336]

{01398B87-61AF-4FFB-9AB5-1A1C5FB39A9C}

{EE2AC4E5-B0B0-4EC6-88A9-BCA1A32AB107} - ZoneAlarm Toolbar - C:\Program Files\CheckPoint\ZAForceField\TrustChecker\bin\TrustCheckerIEPlugin.dll [2009-10-27 583024]

 

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]

"NvCplDaemon"=C:\WINDOWS\system32\NvCpl.dll [2005-11-24 7122944]

"HP Software Update"=C:\Program Files\HP\HP Software Update\HPWuSchd2.exe [2007-05-08 54840]

"SunJavaUpdateSched"=C:\Program Files\Java\jre6\bin\jusched.exe [2009-03-09 148888]

"QuickTime Task"=C:\Program Files\QuickTime\QTTask.exe [2009-09-05 417792]

"SweetIM"=C:\Program Files\SweetIM\Messenger\SweetIM.exe [2009-10-20 111928]

"SearchSettings"=C:\Program Files\Search Settings\SearchSettings.exe [2009-12-16 975360]

"avgnt"=C:\Program Files\Avira\AntiVir Desktop\avgnt.exe [2009-03-02 209153]

"ZoneAlarm Client"=C:\Program Files\Zone Labs\ZoneAlarm\zlclient.exe [2009-12-04 1037192]

"ISW"=C:\Program Files\CheckPoint\ZAForceField\ForceField.exe [2009-10-27 730480]

"googletalk"=C:\Program Files\Google\Google Talk\googletalk.exe [2007-01-01 3739648]

 

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]

"fsc-reminder.exe"=C:\WINDOWS\reminder\fsc-reminder.exe [2005-01-19 28672]

"ctfmon.exe"=C:\WINDOWS\system32\ctfmon.exe [2008-04-13 15360]

"DAEMON Tools Lite"=C:\Program Files\DAEMON Tools Lite\DTLite.exe [2010-04-01 357696]

"EA Core"=C:\Program Files\Electronic Arts\EADM\Core.exe [2009-03-28 3325952]

 

C:\Documents and Settings\All Users\Menu Démarrer\Programmes\Démarrage

Démarrage rapide de HP Photosmart Premier.lnk - C:\Program Files\HP\Digital Imaging\bin\hpqthb08.exe

HP Digital Imaging Monitor.lnk - C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe

 

C:\Documents and Settings\pol\Menu Démarrer\Programmes\Démarrage

Outil de détection de support Picture Motion Browser.lnk - C:\Program Files\Sony\Sony Picture Utility\VolumeWatcher\SPUVolumeWatcher.exe

 

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\WgaLogon]

C:\WINDOWS\system32\WgaLogon.dll [2007-03-15 236928]

 

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]

WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\WINDOWS\system32\WPDShServiceObj.dll [2006-10-18 133632]

 

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\vsmon]

 

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]

"dontdisplaylastusername"=0

"legalnoticecaption"=

"legalnoticetext"=

"shutdownwithoutlogon"=1

"undockwithoutlogon"=1

 

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]

"NoDriveTypeAutoRun"=0

 

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]

"HonorAutoRunSetting"=

 

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"

"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"

"C:\Program Files\LimeWire\LimeWire.exe"="C:\Program Files\LimeWire\LimeWire.exe:*:Enabled:LimeWire"

"C:\Program Files\Steam\SteamApps\keke91160\day of defeat source beta\hl2.exe"="C:\Program Files\Steam\SteamApps\keke91160\day of defeat source beta\hl2.exe:*:Enabled:hl2"

"C:\Program Files\Steam\SteamApps\keke91160\counter-strike source\hl2.exe"="C:\Program Files\Steam\SteamApps\keke91160\counter-strike source\hl2.exe:*:Enabled:hl2"

"C:\Program Files\Steam\SteamApps\keke91160\day of defeat source\hl2.exe"="C:\Program Files\Steam\SteamApps\keke91160\day of defeat source\hl2.exe:*:Enabled:hl2"

"C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe"="C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe:*:Enabled:hpqtra08.exe"

"C:\Program Files\HP\Digital Imaging\bin\hpqste08.exe"="C:\Program Files\HP\Digital Imaging\bin\hpqste08.exe:*:Enabled:hpqste08.exe"

"C:\Program Files\HP\Digital Imaging\bin\hpofxm08.exe"="C:\Program Files\HP\Digital Imaging\bin\hpofxm08.exe:*:Enabled:hpofxm08.exe"

"C:\Program Files\HP\Digital Imaging\bin\hposfx08.exe"="C:\Program Files\HP\Digital Imaging\bin\hposfx08.exe:*:Enabled:hposfx08.exe"

"C:\Program Files\HP\Digital Imaging\bin\hposid01.exe"="C:\Program Files\HP\Digital Imaging\bin\hposid01.exe:*:Enabled:hposid01.exe"

"C:\Program Files\HP\Digital Imaging\bin\hpqscnvw.exe"="C:\Program Files\HP\Digital Imaging\bin\hpqscnvw.exe:*:Enabled:hpqscnvw.exe"

"C:\Program Files\HP\Digital Imaging\bin\hpqkygrp.exe"="C:\Program Files\HP\Digital Imaging\bin\hpqkygrp.exe:*:Enabled:hpqkygrp.exe"

"C:\Program Files\HP\Digital Imaging\bin\hpqCopy.exe"="C:\Program Files\HP\Digital Imaging\bin\hpqCopy.exe:*:Enabled:hpqcopy.exe"

"C:\Program Files\HP\Digital Imaging\bin\hpfccopy.exe"="C:\Program Files\HP\Digital Imaging\bin\hpfccopy.exe:*:Enabled:hpfccopy.exe"

"C:\Program Files\HP\Digital Imaging\bin\hpzwiz01.exe"="C:\Program Files\HP\Digital Imaging\bin\hpzwiz01.exe:*:Enabled:hpzwiz01.exe"

"C:\Program Files\HP\Digital Imaging\Unload\HpqPhUnl.exe"="C:\Program Files\HP\Digital Imaging\Unload\HpqPhUnl.exe:*:Enabled:hpqphunl.exe"

"C:\Program Files\HP\Digital Imaging\Unload\HpqDIA.exe"="C:\Program Files\HP\Digital Imaging\Unload\HpqDIA.exe:*:Enabled:hpqdia.exe"

"C:\Program Files\HP\Digital Imaging\bin\hpoews01.exe"="C:\Program Files\HP\Digital Imaging\bin\hpoews01.exe:*:Enabled:hpoews01.exe"

"C:\Program Files\HP\Digital Imaging\bin\hpqnrs08.exe"="C:\Program Files\HP\Digital Imaging\bin\hpqnrs08.exe:*:Enabled:hpqnrs08.exe"

"C:\Program Files\Azureus\Azureus.exe"="C:\Program Files\Azureus\Azureus.exe:*:Enabled:Azureus"

"C:\WINDOWS\explorer.exe"="C:\WINDOWS\explorer.exe:*:Enabled:Windows Shell"

"C:\Program Files\iTunes\iTunes.exe"="C:\Program Files\iTunes\iTunes.exe:*:Enabled:iTunes"

"C:\Program Files\Windows Live\Messenger\msnmsgr.exe"="C:\Program Files\Windows Live\Messenger\msnmsgr.exe:*:Enabled:Windows Live Messenger"

"C:\Program Files\Google\Google Talk\googletalk.exe"="C:\Program Files\Google\Google Talk\googletalk.exe:*:Enabled:Google Talk"

 

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"

"C:\Program Files\MSN Messenger\msncall.exe"="C:\Program Files\MSN Messenger\msncall.exe:*:Enabled:Windows Live Messenger 8.0 (Phone)"

"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"

"C:\Program Files\MSN Messenger\livecall.exe"="C:\Program Files\MSN Messenger\livecall.exe:*:Enabled:Windows Live Messenger 8.1 (Phone)"

"C:\Program Files\Windows Live\Messenger\msnmsgr.exe"="C:\Program Files\Windows Live\Messenger\msnmsgr.exe:*:Enabled:Windows Live Messenger"

 

[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{04247b48-69fd-11dd-92a3-0013cebfd034}]

shell\AutoRun\command - E:\.pspware\PSPWareLauncher.exe

 

[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{1b84506f-9f02-11db-99a4-0013cebfd034}]

shell\AutoRun\command - E:\.pspware\PSPWareLauncher.exe

 

[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{90132fb6-8ef7-11da-a0ba-806d6172696f}]

shell\AutoRun\command - D:\Autorun.exe

 

[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{a49a00a6-7d58-11de-9380-0013cebfd034}]

shell\AutoRun\command - C:\WINDOWS\system32\RunDLL32.EXE Shell32.DLL,ShellExec_RunDLL wscript.exe MS32DLL.dll.vbs

 

[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{f15a97bb-9848-11db-999b-0013cebfd034}]

shell\AutoRun\command - E:\.pspware\PSPWareLauncher.exe

 

 

======List of files/folders created in the last 1 months======

 

2010-04-27 17:51:32 ----D---- C:\Program Files\CCleaner

2010-04-27 17:25:39 ----D---- C:\ProgramData

2010-04-27 17:25:39 ----D---- C:\Documents and Settings\All Users\Application Data\Electronic Arts

2010-04-27 17:21:49 ----D---- C:\Program Files\Electronic Arts

2010-04-27 17:20:29 ----RA---- C:\WINDOWS\system32\vp6vfw.dll

2010-04-27 17:20:27 ----D---- C:\Program Files\Microsoft WSE

2010-04-27 15:32:29 ----D---- C:\rsit

2010-04-26 22:06:52 ----D---- C:\Documents and Settings\pol\Application Data\Malwarebytes

2010-04-26 22:06:14 ----D---- C:\Documents and Settings\All Users\Application Data\Malwarebytes

2010-04-26 22:06:13 ----D---- C:\Program Files\Malwarebytes' Anti-Malware

2010-04-26 19:15:46 ----D---- C:\Program Files\a-squared Free

2010-04-26 16:43:53 ----D---- C:\Program Files\Symantec

2010-04-26 16:36:14 ----D---- C:\Program Files\MagicISO

2010-04-26 16:17:27 ----D---- C:\Program Files\DAEMON Tools Lite

2010-04-26 16:16:37 ----D---- C:\Documents and Settings\pol\Application Data\DAEMON Tools Lite

2010-04-26 16:16:21 ----D---- C:\Documents and Settings\All Users\Application Data\DAEMON Tools Lite

2010-04-26 15:56:59 ----D---- C:\WINDOWS\Prefetch

2010-04-26 13:17:30 ----D---- C:\Documents and Settings\All Users\Application Data\2DBoy

2010-04-26 13:16:04 ----D---- C:\Program Files\WorldOfGoo

2010-04-26 11:13:14 ----HDC---- C:\WINDOWS\$NtUninstallKB969059$

2010-04-26 11:12:23 ----HDC---- C:\WINDOWS\$NtUninstallKB968537$

2010-04-26 11:10:54 ----HDC---- C:\WINDOWS\$NtUninstallKB968389$

2010-04-26 11:10:06 ----D---- C:\Program Files\Real

2010-04-26 11:10:00 ----D---- C:\My Games

2010-04-26 11:08:52 ----HDC---- C:\WINDOWS\$NtUninstallKB967715$

2010-04-26 11:06:53 ----HDC---- C:\WINDOWS\$NtUninstallKB961503$

2010-04-26 11:05:28 ----HDC---- C:\WINDOWS\$NtUninstallKB961501$

2010-04-26 11:03:25 ----HDC---- C:\WINDOWS\$NtUninstallKB961373$

2010-04-26 11:01:42 ----HDC---- C:\WINDOWS\$NtUninstallKB961371$

2010-04-26 11:00:13 ----D---- C:\Documents and Settings\All Users\Application Data\DivX

2010-04-26 10:58:51 ----HDC---- C:\WINDOWS\$NtUninstallKB961118$

2010-04-26 10:56:30 ----HDC---- C:\WINDOWS\$NtUninstallKB960859$

2010-04-26 10:55:00 ----HDC---- C:\WINDOWS\$NtUninstallKB960803$

2010-04-26 10:52:59 ----HDC---- C:\WINDOWS\$NtUninstallKB960225$

2010-04-26 10:50:59 ----HDC---- C:\WINDOWS\$NtUninstallKB959426$

2010-04-26 10:48:38 ----HDC---- C:\WINDOWS\$NtUninstallKB958690$

2010-04-26 10:46:59 ----HDC---- C:\WINDOWS\$NtUninstallKB958687$

2010-04-26 10:45:16 ----HDC---- C:\WINDOWS\$NtUninstallKB958644$

2010-04-26 10:43:45 ----HDC---- C:\WINDOWS\$NtUninstallKB957097$

2010-04-26 10:42:18 ----HDC---- C:\WINDOWS\$NtUninstallKB957095$

2010-04-26 10:40:47 ----HDC---- C:\WINDOWS\$NtUninstallKB956844$

2010-04-26 10:39:22 ----HDC---- C:\WINDOWS\$NtUninstallKB956841$

2010-04-26 10:37:53 ----HDC---- C:\WINDOWS\$NtUninstallKB956803$

2010-04-26 10:36:27 ----HDC---- C:\WINDOWS\$NtUninstallKB956802$

2010-04-26 10:34:32 ----HDC---- C:\WINDOWS\$NtUninstallKB956572$

2010-04-26 10:32:15 ----HDC---- C:\WINDOWS\$NtUninstallKB955759$

2010-04-26 10:30:30 ----HDC---- C:\WINDOWS\$NtUninstallKB973687$

2010-04-26 10:28:57 ----HDC---- C:\WINDOWS\$NtUninstallKB955069$

2010-04-26 10:27:31 ----HDC---- C:\WINDOWS\$NtUninstallKB974112$

2010-04-26 10:25:58 ----HDC---- C:\WINDOWS\$NtUninstallKB954600$

2010-04-26 10:24:33 ----HDC---- C:\WINDOWS\$NtUninstallKB954211$

2010-04-26 10:22:56 ----HDC---- C:\WINDOWS\$NtUninstallKB952954$

2010-04-26 10:21:32 ----HDC---- C:\WINDOWS\$NtUninstallKB952287$

2010-04-26 10:20:06 ----HDC---- C:\WINDOWS\$NtUninstallKB952004$

2010-04-26 10:18:40 ----HDC---- C:\WINDOWS\$NtUninstallKB951748$

2010-04-26 10:17:13 ----HDC---- C:\WINDOWS\$NtUninstallKB951698$

2010-04-26 10:15:44 ----HDC---- C:\WINDOWS\$NtUninstallKB951376-v2$

2010-04-26 10:14:19 ----HDC---- C:\WINDOWS\$NtUninstallKB951376$

2010-04-26 10:12:42 ----HDC---- C:\WINDOWS\$NtUninstallKB951066$

2010-04-26 10:11:13 ----HDC---- C:\WINDOWS\$NtUninstallKB950974$

2010-04-26 10:09:45 ----HDC---- C:\WINDOWS\$NtUninstallKB950762$

2010-04-26 10:08:10 ----HDC---- C:\WINDOWS\$NtUninstallKB938464$

2010-04-26 10:06:25 ----HDC---- C:\WINDOWS\$NtUninstallKB923561$

2010-04-26 09:54:46 ----D---- C:\Program Files\Messenger

2010-04-26 09:54:39 ----N---- C:\WINDOWS\system32\ati2dvaa.dll

2010-04-26 09:54:39 ----N---- C:\WINDOWS\system32\ati2cqag.dll

2010-04-26 09:54:39 ----N---- C:\WINDOWS\system32\aaclient.dll

2010-04-26 09:54:38 ----N---- C:\WINDOWS\system32\ativtmxx.dll

2010-04-26 09:54:38 ----N---- C:\WINDOWS\system32\ati3duag.dll

2010-04-26 09:54:38 ----N---- C:\WINDOWS\system32\ati3d1ag.dll

2010-04-26 09:54:38 ----N---- C:\WINDOWS\system32\ati2dvag.dll

2010-04-26 09:54:37 ----N---- C:\WINDOWS\system32\bitsprx4.dll

2010-04-26 09:54:37 ----N---- C:\WINDOWS\system32\azroles.dll

2010-04-26 09:54:37 ----N---- C:\WINDOWS\system32\ativvaxx.dll

2010-04-26 09:54:36 ----N---- C:\WINDOWS\system32\dot3gpclnt.dll

2010-04-26 09:54:36 ----N---- C:\WINDOWS\system32\dot3dlg.dll

2010-04-26 09:54:36 ----N---- C:\WINDOWS\system32\dot3cfg.dll

2010-04-26 09:54:36 ----N---- C:\WINDOWS\system32\dot3api.dll

2010-04-26 09:54:36 ----N---- C:\WINDOWS\system32\dimsroam.dll

2010-04-26 09:54:36 ----N---- C:\WINDOWS\system32\dimsntfy.dll

2010-04-26 09:54:36 ----N---- C:\WINDOWS\system32\dhcpqec.dll

2010-04-26 09:54:36 ----N---- C:\WINDOWS\system32\credssp.dll

2010-04-26 09:54:35 ----N---- C:\WINDOWS\system32\dot3ui.dll

2010-04-26 09:54:35 ----N---- C:\WINDOWS\system32\dot3svc.dll

2010-04-26 09:54:35 ----N---- C:\WINDOWS\system32\dot3msm.dll

2010-04-26 09:54:34 ----N---- C:\WINDOWS\system32\eappgnui.dll

2010-04-26 09:54:34 ----N---- C:\WINDOWS\system32\eappcfg.dll

2010-04-26 09:54:34 ----N---- C:\WINDOWS\system32\eapp3hst.dll

2010-04-26 09:54:34 ----N---- C:\WINDOWS\system32\eapolqec.dll

2010-04-26 09:54:33 ----N---- C:\WINDOWS\system32\eapsvc.dll

2010-04-26 09:54:33 ----N---- C:\WINDOWS\system32\eapqec.dll

2010-04-26 09:54:33 ----N---- C:\WINDOWS\system32\eappprxy.dll

2010-04-26 09:54:33 ----N---- C:\WINDOWS\system32\eapphost.dll

2010-04-26 09:54:32 ----N---- C:\WINDOWS\system32\hsfcisp2.dll

2010-04-26 09:54:29 ----N---- C:\WINDOWS\system32\kmsvc.dll

2010-04-26 09:54:29 ----N---- C:\WINDOWS\system32\kbdpash.dll

2010-04-26 09:54:29 ----N---- C:\WINDOWS\system32\kbdnepr.dll

2010-04-26 09:54:29 ----N---- C:\WINDOWS\system32\kbdiultn.dll

2010-04-26 09:54:29 ----N---- C:\WINDOWS\system32\kbdbhc.dll

2010-04-26 09:54:28 ----N---- C:\WINDOWS\system32\mdmxsdk.dll

2010-04-26 09:54:28 ----N---- C:\WINDOWS\system32\l2gpstore.dll

2010-04-26 09:54:27 ----N---- C:\WINDOWS\system32\mmcperf.exe

2010-04-26 09:54:27 ----N---- C:\WINDOWS\system32\mmcfxcommon.dll

2010-04-26 09:54:27 ----N---- C:\WINDOWS\system32\mmcex.dll

2010-04-26 09:54:27 ----N---- C:\WINDOWS\system32\microsoft.managementconsole.dll

2010-04-26 09:54:26 ----N---- C:\WINDOWS\system32\napstat.exe

2010-04-26 09:54:26 ----N---- C:\WINDOWS\system32\napmontr.dll

2010-04-26 09:54:26 ----N---- C:\WINDOWS\system32\napipsec.dll

2010-04-26 09:54:26 ----N---- C:\WINDOWS\system32\mtxparhd.dll

2010-04-26 09:54:26 ----N---- C:\WINDOWS\system32\msshavmsg.dll

2010-04-26 09:54:26 ----N---- C:\WINDOWS\system32\mssha.dll

2010-04-26 09:54:25 ----N---- C:\WINDOWS\system32\onex.dll

2010-04-26 09:54:24 ----N---- C:\WINDOWS\system32\s3gnb.dll

2010-04-26 09:54:24 ----N---- C:\WINDOWS\system32\rhttpaa.dll

2010-04-26 09:54:24 ----N---- C:\WINDOWS\system32\rasqec.dll

2010-04-26 09:54:24 ----N---- C:\WINDOWS\system32\qutil.dll

2010-04-26 09:54:24 ----N---- C:\WINDOWS\system32\qcliprov.dll

2010-04-26 09:54:24 ----N---- C:\WINDOWS\system32\qagentrt.dll

2010-04-26 09:54:24 ----N---- C:\WINDOWS\system32\qagent.dll

2010-04-26 09:54:23 ----N---- C:\WINDOWS\system32\slserv.exe

2010-04-26 09:54:23 ----N---- C:\WINDOWS\system32\slrundll.exe

2010-04-26 09:54:23 ----N---- C:\WINDOWS\system32\slgen.dll

2010-04-26 09:54:23 ----N---- C:\WINDOWS\system32\slextspk.dll

2010-04-26 09:54:23 ----N---- C:\WINDOWS\system32\slcoinst.dll

2010-04-26 09:54:23 ----N---- C:\WINDOWS\system32\setupn.exe

2010-04-26 09:54:21 ----N---- C:\WINDOWS\system32\tspkg.dll

2010-04-26 09:54:21 ----N---- C:\WINDOWS\system32\tsgqec.dll

2010-04-26 09:54:19 ----N---- C:\WINDOWS\system32\wlanapi.dll

2010-04-26 09:54:17 ----N---- C:\WINDOWS\slrundll.exe

2010-04-26 09:54:12 ----D---- C:\WINDOWS\l2schemas

2010-04-26 09:54:12 ----D---- C:\Program Files\msn

2010-04-26 09:54:11 ----D---- C:\WINDOWS\system32\fr

2010-04-26 09:54:11 ----D---- C:\WINDOWS\system32\bits

2010-04-26 09:41:37 ----A---- C:\WINDOWS\003011_.tmp

2010-04-26 09:37:53 ----HDC---- C:\WINDOWS\$NtServicePackUninstall$

2010-04-26 09:28:10 ----D---- C:\93840e104bda97fe9dca372b

2010-04-26 09:22:02 ----D---- C:\Program Files\ABC

2010-04-26 09:03:20 ----D---- C:\Program Files\Fichiers communs\DESIGNER

2010-04-26 09:02:44 ----D---- C:\WINDOWS\SHELLNEW

2010-04-26 09:01:35 ----D---- C:\Program Files\Microsoft.NET

2010-04-26 09:01:34 ----D---- C:\Program Files\Fichiers communs\ODBC

2010-04-26 08:57:49 ----RHD---- C:\MSOCache

2010-04-25 20:55:45 ----D---- C:\Documents and Settings\pol\Application Data\CheckPoint

2010-04-25 20:55:26 ----D---- C:\Program Files\CheckPoint

2010-04-25 20:55:00 ----A---- C:\WINDOWS\system32\vsutil_loc040c.dll

2010-04-25 20:54:57 ----A---- C:\WINDOWS\system32\vsregexp.dll

2010-04-25 20:54:52 ----A---- C:\WINDOWS\system32\zlcommdb.dll

2010-04-25 20:54:52 ----A---- C:\WINDOWS\system32\zlcomm.dll

2010-04-25 20:54:44 ----A---- C:\WINDOWS\system32\vswmi.dll

2010-04-25 20:54:42 ----A---- C:\WINDOWS\system32\zpeng25.dll

2010-04-25 20:54:42 ----A---- C:\WINDOWS\system32\vsxml.dll

2010-04-25 20:54:41 ----D---- C:\WINDOWS\system32\ZoneLabs

2010-04-25 20:54:41 ----A---- C:\WINDOWS\system32\vspubapi.dll

2010-04-25 20:54:41 ----A---- C:\WINDOWS\system32\vsmonapi.dll

2010-04-25 20:54:36 ----D---- C:\Program Files\Zone Labs

2010-04-25 17:17:49 ----D---- C:\WINDOWS\Internet Logs

2010-04-25 17:17:48 ----A---- C:\WINDOWS\system32\vsinit.dll

2010-04-25 17:17:48 ----A---- C:\WINDOWS\system32\vsdata.dll

2010-04-25 17:17:47 ----A---- C:\WINDOWS\system32\vsutil.dll

2010-04-25 16:50:25 ----D---- C:\Program Files\Avira

2010-04-25 16:50:25 ----D---- C:\Documents and Settings\All Users\Application Data\Avira

2010-04-01 23:40:29 ----SHD---- C:\Documents and Settings\All Users\Application Data\{D3742F82-1C1A-4DCC-ABBD-0E7C3C0185CC}

2010-04-01 03:04:55 ----N---- C:\WINDOWS\system32\browserchoice.exe

 

======List of files/folders modified in the last 1 months======

 

2010-04-27 17:55:54 ----D---- C:\WINDOWS\Debug

2010-04-27 17:55:54 ----D---- C:\WINDOWS

2010-04-27 17:55:52 ----D---- C:\WINDOWS\Minidump

2010-04-27 17:55:51 ----D---- C:\WINDOWS\Temp

2010-04-27 17:51:32 ----AD---- C:\Program Files

2010-04-27 17:48:30 ----D---- C:\Program Files\Mozilla Firefox

2010-04-27 17:20:30 ----SD---- C:\Documents and Settings\All Users\Application Data\Microsoft

2010-04-27 17:20:29 ----AD---- C:\WINDOWS\system32

2010-04-27 17:20:28 ----SHD---- C:\WINDOWS\Installer

2010-04-27 17:20:28 ----RSD---- C:\WINDOWS\assembly

2010-04-27 17:20:28 ----HD---- C:\Config.Msi

2010-04-27 16:58:09 ----HD---- C:\Program Files\InstallShield Installation Information

2010-04-27 16:24:20 ----A---- C:\WINDOWS\ModemLog_Motorola SM56 Data Fax Modem.txt

2010-04-27 16:23:56 ----D---- C:\WINDOWS\system32\CatRoot2

2010-04-27 16:22:46 ----D---- C:\WINDOWS\system32\drivers

2010-04-27 16:22:46 ----D---- C:\WINDOWS\Resources

2010-04-27 16:21:36 ----N---- C:\WINDOWS\SchedLgU.Txt

2010-04-27 06:40:44 ----D---- C:\WINDOWS\java

2010-04-26 20:30:35 ----D---- C:\WINDOWS\system32\452088509

2010-04-26 16:21:28 ----HD---- C:\WINDOWS\inf

2010-04-26 15:55:40 ----D---- C:\WINDOWS\system32\Setup

2010-04-26 15:55:40 ----D---- C:\WINDOWS\AppPatch

2010-04-26 15:55:39 ----D---- C:\WINDOWS\system32\wbem

2010-04-26 15:55:38 ----RSD---- C:\WINDOWS\Fonts

2010-04-26 15:12:39 ----D---- C:\WINDOWS\security

2010-04-26 15:11:11 ----D---- C:\WINDOWS\system32\FlashAX

2010-04-26 11:15:22 ----D---- C:\WINDOWS\system32\CatRoot

2010-04-26 11:13:41 ----RSHDC---- C:\WINDOWS\system32\dllcache

2010-04-26 11:01:11 ----D---- C:\Program Files\Google

2010-04-26 10:59:53 ----D---- C:\WINDOWS\Downloaded Installations

2010-04-26 09:55:19 ----D---- C:\WINDOWS\WinSxS

2010-04-26 09:54:44 ----D---- C:\WINDOWS\network diagnostic

2010-04-26 09:54:43 ----D---- C:\WINDOWS\ime

2010-04-26 09:54:43 ----D---- C:\WINDOWS\Help

2010-04-26 09:54:17 ----D---- C:\WINDOWS\system32\usmt

2010-04-26 09:54:17 ----D---- C:\WINDOWS\system32\fr-fr

2010-04-26 09:54:11 ----D---- C:\WINDOWS\PeerNet

2010-04-26 09:54:11 ----D---- C:\Program Files\Movie Maker

2010-04-26 09:48:28 ----D---- C:\WINDOWS\ServicePackFiles

2010-04-26 09:48:19 ----D---- C:\WINDOWS\system32\Restore

2010-04-26 09:48:18 ----D---- C:\WINDOWS\system32\npp

2010-04-26 09:48:16 ----D---- C:\WINDOWS\msagent

2010-04-26 09:48:13 ----D---- C:\WINDOWS\srchasst

2010-04-26 09:48:11 ----D---- C:\Program Files\NetMeeting

2010-04-26 09:48:09 ----D---- C:\WINDOWS\system32\Com

2010-04-26 09:48:06 ----D---- C:\Program Files\Windows Media Player

2010-04-26 09:48:05 ----D---- C:\Program Files\Windows NT

2010-04-26 09:48:05 ----D---- C:\Program Files\Outlook Express

2010-04-26 09:48:01 ----D---- C:\Program Files\Fichiers communs\System

2010-04-26 09:47:38 ----AD---- C:\WINDOWS\system32\oobe

2010-04-26 09:47:34 ----D---- C:\WINDOWS\system

2010-04-26 09:41:33 ----D---- C:\WINDOWS\system32\ReinstallBackups

2010-04-26 09:37:21 ----D---- C:\WINDOWS\EHome

2010-04-26 09:19:42 ----SHD---- C:\RECYCLER

2010-04-26 09:07:08 ----AC---- C:\WINDOWS\ODBC.INI

2010-04-26 09:05:28 ----A---- C:\WINDOWS\win.ini

2010-04-26 09:04:17 ----D---- C:\Program Files\Fichiers communs\Microsoft Shared

2010-04-26 09:04:12 ----D---- C:\Documents and Settings\pol\Application Data\WinRAR

2010-04-26 09:03:27 ----D---- C:\Program Files\Microsoft Office

2010-04-26 09:03:20 ----D---- C:\Program Files\Fichiers communs

2010-04-26 08:54:08 ----D---- C:\WINDOWS\system32\FxsTmp

2010-04-25 16:58:50 ----D---- C:\Program Files\WinRAR

2010-04-22 22:20:58 ----D---- C:\WINDOWS\Microsoft.NET

2010-04-22 22:04:45 ----D---- C:\Program Files\VideoLAN

2010-04-22 22:04:22 ----AD---- C:\Documents and Settings\All Users\Application Data\TEMP

2010-04-22 22:02:58 ----D---- C:\Documents and Settings\All Users\Application Data\TuneUp Software

2010-04-22 22:00:27 ----SD---- C:\WINDOWS\Tasks

2010-04-22 21:19:08 ----AC---- C:\WINDOWS\system32\PerfStringBackup.INI

2010-04-19 21:30:32 ----D---- C:\Documents and Settings\pol\Application Data\dvdcss

2010-04-01 23:43:16 ----D---- C:\WINDOWS\system32\config

2010-04-01 16:02:00 ----D---- C:\Program Files\Internet Explorer

2010-04-01 00:26:32 ----HD---- C:\WINDOWS\$hf_mig$

 

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

 

R1 avgio;avgio; \??\C:\Program Files\Avira\AntiVir Desktop\avgio.sys []

R1 avipbb;avipbb; C:\WINDOWS\system32\DRIVERS\avipbb.sys [2009-03-30 96104]

R1 intelppm;Pilote de processeur Intel; C:\WINDOWS\system32\DRIVERS\intelppm.sys [2008-04-13 40576]

R1 oreans32;oreans32; \??\C:\WINDOWS\system32\drivers\oreans32.sys []

R1 PQNTDrv;PQNTDrv; C:\WINDOWS\system32\drivers\PQNTDrv.sys [2004-05-05 4228]

R1 sdcplh;sdcplh; C:\WINDOWS\System32\drivers\sdcplh.sys [2005-11-08 55168]

R1 ssmdrv;ssmdrv; C:\WINDOWS\system32\DRIVERS\ssmdrv.sys [2010-04-26 28520]

R1 vsdatant;vsdatant; C:\WINDOWS\System32\vsdatant.sys [2009-12-04 486280]

R1 WmiAcpi;Interface de gestion Microsoft Windows pour ACPI; C:\WINDOWS\system32\DRIVERS\wmiacpi.sys [2008-04-13 8832]

R2 atksgt;atksgt; C:\WINDOWS\system32\DRIVERS\atksgt.sys [2007-08-23 165376]

R2 avgntflt;avgntflt; C:\WINDOWS\system32\DRIVERS\avgntflt.sys [2010-04-26 56816]

R2 ISWKL;ZoneAlarm Toolbar ISWKL; \??\C:\Program Files\CheckPoint\ZAForceField\ISWKL.sys []

R2 lirsgt;lirsgt; C:\WINDOWS\system32\DRIVERS\lirsgt.sys [2007-08-23 18048]

R3 CmBatt;Pilote pour Batterie à méthode de contrôle ACPI Microsoft; C:\WINDOWS\system32\DRIVERS\CmBatt.sys [2008-04-13 13952]

R3 GEARAspiWDM;GEAR ASPI Filter Driver; C:\WINDOWS\System32\Drivers\GEARAspiWDM.sys [2009-05-18 26600]

R3 HDAudBus;Pilote de bus Microsoft UAA pour High Definition Audio; C:\WINDOWS\system32\DRIVERS\HDAudBus.sys [2008-04-13 144384]

R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\WINDOWS\system32\drivers\RtkHDAud.sys [2005-03-23 2547008]

R3 nv;nv; C:\WINDOWS\system32\DRIVERS\nv4_mini.sys [2005-11-24 3223648]

R3 RTL8023xp;Realtek RTL8139/810x/8169/8110 all in one NDIS XP Driver; C:\WINDOWS\system32\DRIVERS\Rtlnicxp.sys [2004-12-02 70912]

R3 smserial;smserial; C:\WINDOWS\system32\DRIVERS\smserial.sys [2005-08-01 839724]

R3 SynTP;Synaptics TouchPad Driver; C:\WINDOWS\system32\DRIVERS\SynTP.sys [2005-03-18 188928]

R3 usbehci;Pilote miniport de contrôleur d'hôte amélioré Microsoft USB 2.0; C:\WINDOWS\system32\DRIVERS\usbehci.sys [2008-04-13 30208]

R3 usbhub;Concentrateur USB2; C:\WINDOWS\system32\DRIVERS\usbhub.sys [2008-04-13 59520]

R3 usbuhci;Pilote miniport de contrôleur hôte universel USB Microsoft; C:\WINDOWS\system32\DRIVERS\usbuhci.sys [2008-04-13 20608]

R3 w29n51;Pilote de carte de connexion réseau Intel® PRO/Wireless 2200BG pour Windows XP; C:\WINDOWS\system32\DRIVERS\w29n51.sys [2004-10-29 3222784]

S1 kbdhid;Pilote HID de clavier; C:\WINDOWS\system32\DRIVERS\kbdhid.sys [2008-04-13 14720]

S3 Arp1394;Protocole client ARP 1394; C:\WINDOWS\system32\DRIVERS\arp1394.sys [2008-04-13 60800]

S3 c8fd10c2-a7cd-4bf4-a4fc-e14ea095bcdd;c8fd10c2-a7cd-4bf4-a4fc-e14ea095bcdd; \??\D:\Player\cds300.dll []

S3 CCDECODE;Décodeur sous-titre fermé; C:\WINDOWS\system32\DRIVERS\CCDECODE.sys [2008-04-13 17024]

S3 DSDrv4;DSDrv4; \??\C:\PROGRA~1\K!TV\Plugins\S_Bt8x8\DSDrv4.sys []

S3 fbxusb;Carte réseau virtuelle FreeBox USB; C:\WINDOWS\system32\DRIVERS\fbxusb32.sys [2004-10-20 21344]

S3 HdAudAddService;Pilote de fonction Microsoft UAA pour Service High Definition Audio; C:\WINDOWS\system32\drivers\HdAudio.sys [2005-01-07 145920]

S3 HidUsb;Pilote de classe HID Microsoft; C:\WINDOWS\system32\DRIVERS\hidusb.sys [2008-04-13 10368]

S3 HPZid412;IEEE-1284.4 Driver HPZid412; C:\WINDOWS\system32\DRIVERS\HPZid412.sys [2006-04-13 49664]

S3 HPZipr12;Print Class Driver for IEEE-1284.4 HPZipr12; C:\WINDOWS\system32\DRIVERS\HPZipr12.sys [2006-04-13 16496]

S3 HPZius12;USB to IEEE-1284.4 Translation Driver HPZius12; C:\WINDOWS\system32\DRIVERS\HPZius12.sys [2006-04-13 21568]

S3 mouhid;Pilote HID de souris; C:\WINDOWS\system32\DRIVERS\mouhid.sys [2001-08-23 12288]

S3 MREMPR5;MREMPR5 NDIS Protocol Driver; \??\c:\PROGRA~1\COMMON~1\motive\MREMPR5.SYS []

S3 MRENDIS5;MRENDIS5 NDIS Protocol Driver; \??\c:\PROGRA~1\COMMON~1\motive\MRENDIS5.SYS []

S3 MSTEE;Convertisseur en T/site-à-site de répartition Microsoft; C:\WINDOWS\system32\drivers\MSTEE.sys [2008-04-13 5504]

S3 NABTSFEC;Codec NABTS/FEC VBI; C:\WINDOWS\system32\DRIVERS\NABTSFEC.sys [2008-04-13 85248]

S3 NdisIP;Connection TV/vidéo Microsoft; C:\WINDOWS\system32\DRIVERS\NdisIP.sys [2008-04-13 10880]

S3 NIC1394;Pilote réseau 1394; C:\WINDOWS\system32\DRIVERS\nic1394.sys [2008-04-13 61824]

S3 PCANDIS5;PCANDIS5 Protocol Driver; \??\C:\WINDOWS\system32\PCANDIS5.SYS []

S3 pcouffin;VSO Software pcouffin; C:\WINDOWS\System32\Drivers\pcouffin.sys [2007-10-15 47360]

S3 SG760_XP;SAGEM 802.11g XG760 1211 Driver; C:\WINDOWS\system32\DRIVERS\WlanUZXP.sys [2005-07-13 260608]

S3 slabbus;CP2101 USB Composite Device driver (WDM); C:\WINDOWS\system32\DRIVERS\slabbus.sys []

S3 slabser;CP2101 USB to UART Bridge Controller Drivers; C:\WINDOWS\system32\DRIVERS\slabser.sys []

S3 SLIP;Détrameur décalage BDA; C:\WINDOWS\system32\DRIVERS\SLIP.sys [2008-04-13 11136]

S3 SQTECH905C;DualCamera; C:\WINDOWS\System32\Drivers\Capt905c.sys [2005-07-13 33890]

S3 streamip;BDA IPSink; C:\WINDOWS\system32\DRIVERS\StreamIP.sys [2008-04-13 15232]

S3 usb_rndisx;USB RNDIS Adapter; C:\WINDOWS\system32\DRIVERS\usb8023x.sys [2005-10-21 12800]

S3 USBAAPL;Apple Mobile USB Driver; C:\WINDOWS\System32\Drivers\usbaapl.sys [2009-08-28 40448]

S3 usbaudio;Pilote USB audio (WDM); C:\WINDOWS\system32\drivers\usbaudio.sys [2008-04-13 60032]

S3 usbccgp;Pilote parent générique USB Microsoft; C:\WINDOWS\system32\DRIVERS\usbccgp.sys [2008-04-13 32128]

S3 usbprint;Classe d'imprimantes USB Microsoft; C:\WINDOWS\system32\DRIVERS\usbprint.sys [2008-04-13 25856]

S3 usbscan;Pilote de scanneur USB; C:\WINDOWS\system32\DRIVERS\usbscan.sys [2008-04-13 15104]

S3 USBSTOR;Pilote de stockage de masse USB; C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS [2008-04-13 26368]

S3 VX1000;VX-1000; C:\WINDOWS\system32\DRIVERS\VX1000.sys [2007-04-10 1966312]

S3 WpdUsb;WpdUsb; C:\WINDOWS\system32\DRIVERS\wpdusb.sys [2006-10-18 38528]

S3 WSTCODEC;Codec Teletext standard; C:\WINDOWS\system32\DRIVERS\WSTCODEC.SYS [2008-04-13 19200]

S3 WudfRd;Windows Driver Foundation - User-mode Driver Framework Reflector; C:\WINDOWS\system32\DRIVERS\wudfrd.sys [2006-09-28 82944]

 

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

 

R2 a2free;a-squared Free Service; C:\Program Files\a-squared Free\a2service.exe [2010-04-15 1872320]

R2 AntiVirSchedulerService;Avira AntiVir Planificateur; C:\Program Files\Avira\AntiVir Desktop\sched.exe [2010-04-26 108289]

R2 AntiVirService;Avira AntiVir Guard; C:\Program Files\Avira\AntiVir Desktop\avguard.exe [2010-04-26 185089]

R2 Apple Mobile Device;Apple Mobile Device; C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe [2009-08-28 144672]

R2 Application Updater;Application Updater; C:\Program Files\Application Updater\ApplicationUpdater.exe [2009-12-16 375296]

R2 IswSvc;ZoneAlarm Toolbar IswSvc; C:\Program Files\CheckPoint\ZAForceField\IswSvc.exe [2009-10-27 476528]

R2 JavaQuickStarterService;Java Quick Starter; C:\Program Files\Java\jre6\bin\jqs.exe [2009-03-09 152984]

R2 LiveUpdate Notice Service;LiveUpdate Notice Service; C:\Program Files\Fichiers communs\Symantec Shared\PIF\{B8E1DD85-8582-4c61-B58F-2F227FCA9A08}\PIFSvc.exe [2008-01-29 583048]

R2 MDM;Machine Debug Manager; C:\Program Files\Fichiers communs\Microsoft Shared\VS7DEBUG\MDM.EXE [2003-06-20 322120]

R2 NVSvc;NVIDIA Display Driver Service; C:\WINDOWS\system32\nvsvc32.exe [2005-11-24 127042]

R2 SeaPort;SeaPort; C:\Program Files\Microsoft\Search Enhancement Pack\SeaPort\SeaPort.exe [2009-05-19 240512]

R2 vsmon;TrueVector Internet Monitor; C:\WINDOWS\system32\ZoneLabs\vsmon.exe [2009-12-04 2384240]

R2 WudfSvc;Windows Driver Foundation - User-mode Driver Framework; C:\WINDOWS\system32\svchost.exe [2008-04-13 14336]

S2 CLTNetCnService;Symantec Lic NetConnect service; C:\Program Files\Fichiers communs\Symantec Shared\ccSvcHst.exe /h ccCommon []

S2 Fax;Fax; C:\WINDOWS\system32\fxssvc.exe [2008-04-13 268800]

S2 LiveUpdate Notice Ex;LiveUpdate Notice Service Ex; C:\Program Files\Fichiers communs\Symantec Shared\ccSvcHst.exe /h ccCommon []

S2 Planificateur LiveUpdate automatique;Planificateur LiveUpdate automatique; C:\Program Files\Symantec\LiveUpdate\ALUSchedulerSvc.exe []

S2 Pml Driver HPZ12;Pml Driver HPZ12; C:\WINDOWS\system32\HPZipm12.exe [2007-08-09 73728]

S3 aspnet_state;ASP.NET State Service; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe [2008-07-25 34312]

S3 clr_optimization_v2.0.50727_32;.NET Runtime Optimization Service v2.0.50727_X86; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe [2008-07-25 69632]

S3 FontCache3.0.0.0;Windows Presentation Foundation Font Cache 3.0.0.0; c:\WINDOWS\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe [2008-07-29 46104]

S3 HP Port Resolver;HP Port Resolver; C:\WINDOWS\system32\spool\drivers\w32x86\3\HPBPRO.EXE [2005-05-20 81920]

S3 HP Status Server;HP Status Server; C:\WINDOWS\system32\spool\drivers\w32x86\3\HPBOID.EXE [2004-10-16 73728]

S3 IDriverT;InstallDriver Table Manager; C:\Program Files\Fichiers communs\InstallShield\Driver\11\Intel 32\IDriverT.exe [2005-04-04 69632]

S3 idsvc;Windows CardSpace; c:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe [2008-07-29 881664]

S3 iPod Service;Service de l’iPod; C:\Program Files\iPod\bin\iPodService.exe []

S3 ose;Office Source Engine; C:\Program Files\Fichiers communs\Microsoft Shared\Source Engine\OSE.EXE [2003-07-28 89136]

S3 WMPNetworkSvc;Service Partage réseau du Lecteur Windows Media; C:\Program Files\Windows Media Player\WMPNetwk.exe [2006-11-03 918016]

S4 NetTcpPortSharing;Net.Tcp Port Sharing Service; c:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe [2008-07-29 132096]

 

-----------------EOF-----------------

 

 

Si vous pouviez me dire ce que vous en pensez ? Voir si je suis toujours infectée.....

Parce que j'ai un problème qui est lié à tout cela je pense, lorsque je lance l'.exe des sims 3 destination aventure, ce message apparaît: :P

 

 

>SetupNew\setup.cpp (140)

PAPP:

PVENDOR:

PGUID:

$15.0.0.498

@windows XP service pack 3 (2600)

IE version: 7.0.5730.11

 

Qu'en pensez-vous ?

 

Un grand merci d'avance pour les réponses que vous m'apporterez!

Rejoindre la conversation

Vous pouvez publier maintenant et vous inscrire plus tard. Si vous avez un compte, connectez-vous maintenant pour publier avec votre compte.
Remarque : votre message nécessitera l’approbation d’un modérateur avant de pouvoir être visible.

Invité
Répondre à ce sujet…

×   Collé en tant que texte enrichi.   Coller en tant que texte brut à la place

  Seulement 75 émoticônes maximum sont autorisées.

×   Votre lien a été automatiquement intégré.   Afficher plutôt comme un lien

×   Votre contenu précédent a été rétabli.   Vider l’éditeur

×   Vous ne pouvez pas directement coller des images. Envoyez-les depuis votre ordinateur ou insérez-les depuis une URL.

×
 Partager
Aller sur la liste des sujets

  • En ligne récemment   0 membre est en ligne

    • Aucun utilisateur enregistré regarde cette page.
×
×
  • Créer...