Aller au contenu

  • Pas encore inscrit ?

    Pourquoi ne pas vous inscrire ? C'est simple, rapide et gratuit.
    Pour en savoir plus, lisez Les avantages de l'inscription... et la Charte de Zébulon.
    De plus, les messages que vous postez en tant qu'invité restent invisibles tant qu'un modérateur ne les a pas validés. Inscrivez-vous, ce sera un gain de temps pour tout le monde, vous, les helpeurs et les modérateurs ! :wink:

Infection sérieuse [résolu]

zorka

Par zorka
dans Analyses et éradication malwares

 Partager

Messages recommandés

Falkra Devil Member !

Falkra

Posté(e)
Posté(e)
Ok mais c'est normal que le pc dont on s'occupe continue à déconner ?
On n'a pas terminé, de toute façon.

 

On en saura plus d'ici quelques rapports. ;)

 

Poste moi le rapport USB Fix nettoyage de ce PC stp. :)

zorka Member

zorka

Posté(e)
  • Auteur
Posté(e)

ah oui oui!

 

Voici le rapport :

 

############################## | UsbFix 7.014 | [suppression]

 

Utilisateur: maya (Administrateur) # MAYAFIXE [ ]

Mis à jour le 24/06/10 par El Desaparecido / C_XX

Lancé à 18:12:49 | 27/06/2010

Site Web: Bienvenue dans nos Pages Persos

Contact: FindyKill.Contact@gmail.com

 

CPU: Intel® Core2 Duo CPU E7500 @ 2.93GHz

CPU 2: Intel® Core2 Duo CPU E7500 @ 2.93GHz

Microsoft Windows XP Professionnel (5.1.2600 32-Bit) # Service Pack 3

Internet Explorer 6.0.2900.5512

 

Pare-feu Windows: Activé

Antivirus: AntiVir Desktop 9.0.1.32 [(!) Disabled | (!) Outdated]

RAM -> 3071 Mo

C:\ (%systemdrive%) -> Disque fixe # 466 Go (114 Go libre(s) - 24%) [OS] # NTFS

D:\ -> CD-ROM

E:\ -> Disque fixe # 466 Go (320 Go libre(s) - 69%) [My Book] # FAT32

F:\ -> Disque amovible # 967 Mo (948 Mo libre(s) - 98%) [] # FAT

G:\ -> CD-ROM

H:\ -> CD-ROM

I:\ -> Disque amovible # 7 Go (7 Go libre(s) - 96%) [NOLIMIT] # FAT32

 

################## | Éléments infectieux |

 

Non supprimé ! E:\setise\\\zeljko.exe

Supprimé! E:\Autorun.inf

Supprimé! F:\Autorun.inf

Supprimé! F:\muza

 

################## | Registre |

 

Supprimé! HKLM\Software\Microsoft\Windows\CurrentVersion\Policies\System|DisableRegistryTools

Supprimé! HKLM\Software\Microsoft\Windows\CurrentVersion\Policies\explorer|NoDrives

Supprimé! HKCU\Software\Microsoft\Windows\CurrentVersion\Policies\explorer|NoDrives

 

################## | Mountpoints2 |

 

 

################## | Listing |

 

[03/01/2010 - 20:13:16 | D ] C:\Adobe

[16/01/2010 - 01:05:07 | N | 12764347258] C:\Adobe.rar

[25/04/2008 - 20:00:56 | A | 0] C:\AUTOEXEC.BAT

[19/12/2008 - 03:31:28 | RD ] C:\Boot

[25/06/2010 - 01:53:24 | RASH | 212] C:\boot.ini

[14/04/2008 - 14:00:00 | RASH | 4952] C:\Bootfont.bin

[19/12/2008 - 03:31:28 | D ] C:\BootImage

[19/01/2008 - 08:45:46 | RASH | 333203] C:\bootmgr

[25/06/2010 - 09:34:23 | A | 21075] C:\ComboFix.txt

[25/04/2008 - 20:00:56 | A | 0] C:\CONFIG.SYS

[24/06/2010 - 23:16:34 | D ] C:\dell

[19/12/2009 - 04:38:09 | RAH | 5690] C:\dell.sdr

[30/05/2010 - 22:20:12 | A | 26258] C:\DIALux Setup Information.txt

[31/05/2010 - 07:52:45 | A | 4428] C:\DIALux Setup Log.txt

[24/06/2010 - 11:40:19 | D ] C:\Documents and Settings

[12/01/2010 - 12:19:07 | D ] C:\drivers

[27/06/2010 - 11:59:34 | ASH | 3220160512] C:\hiberfil.sys

[29/10/2008 - 00:12:48 | D ] C:\I386

[18/12/2009 - 20:52:51 | D ] C:\Intel

[25/04/2008 - 20:00:56 | AH | 0] C:\IO.SYS

[07/02/2010 - 13:57:12 | A | 486] C:\lxctscan.log

[23/12/2009 - 14:56:09 | D ] C:\Memeo

[25/04/2008 - 20:00:56 | AH | 0] C:\MSDOS.SYS

[08/06/2010 - 07:47:07 | RD ] C:\MSOCache

[14/04/2008 - 14:00:00 | RASH | 47564] C:\NTDETECT.COM

[14/04/2008 - 14:00:00 | RASH | 252240] C:\ntldr

[11/03/2009 - 16:15:26 | D ] C:\P465M

[27/06/2010 - 11:59:32 | ASH | 2145386496] C:\pagefile.sys

[25/06/2010 - 11:21:38 | RD ] C:\Program Files

[25/06/2010 - 09:34:25 | AD ] C:\Qoobox

[27/06/2010 - 18:17:09 | SHD ] C:\RECYCLER

[27/06/2010 - 12:03:22 | D ] C:\rsit

[22/12/2009 - 18:49:22 | A | 159] C:\Setup.log

[17/03/2009 - 21:21:16 | RD ] C:\Sources

[25/06/2010 - 01:53:30 | SHD ] C:\System Volume Information

[27/06/2010 - 18:17:09 | D ] C:\UsbFix

[27/06/2010 - 18:17:10 | A | 1142] C:\UsbFix.txt

[27/06/2010 - 11:59:43 | D ] C:\WINDOWS

[26/06/2010 - 23:02:02 | D ] C:\_OTM

[23/01/2010 - 19:15:32 | A | 3612160] E:\AFSSAPS_AuditTechnique_Janvier2010.doc

[13/09/2008 - 06:46:42 | D ] E:\autorun

[26/06/2007 - 12:02:12 | A | 212992] E:\Setup.exe

[10/02/2010 - 20:22:54 | A | 177] E:\Install.log

[13/09/2008 - 06:46:48 | D ] E:\wd_windows_tools

[12/01/2010 - 10:37:08 | A | 67072] E:\CVDetails_ConceptionErgonomie_MDronne.doc

[13/03/2008 - 19:15:28 | D ] E:\$RECYCLE.BIN

[13/03/2008 - 19:15:26 | D ] E:\MAYA

[08/02/2010 - 09:25:46 | A | 6173] E:\19183943.jpg-r_120_-1-f_jpg-q_x-20091015_054934.jpg

[01/05/2010 - 14:10:30 | N | 4294939648] E:\Backup.bkf

[24/06/2010 - 23:18:16 | D ] E:\DellBackups

[24/06/2010 - 23:20:38 | D ] E:\tmp

[28/01/2010 - 16:12:12 | AH | 162] E:\~$transcription complète de l'entretien Gilles 2003.doc

[24/06/2010 - 23:18:18 | A | 166] E:\ResSys.ini

[12/06/2010 - 09:49:40 | A | 120320] E:\Review.xls

[08/04/2010 - 09:44:44 | A | 21117] E:\PlanningRevision_CNAM.ods

[24/06/2010 - 09:04:22 | A | 125952] E:\suivi_Gestion_global.xls

[04/06/2010 - 07:48:02 | A | 248931] E:\LIG.IIHM.2005-2009.pdf

[26/06/2010 - 09:10:10 | RSHD ] E:\setise

[23/12/2009 - 13:43:22 | SHD ] E:\System Volume Information

[25/12/2009 - 01:37:20 | SHD ] E:\Recycled

[25/12/2009 - 10:02:46 | D ] E:\Download

[17/08/2009 - 11:00:56 | AH | 4096] F:\._Epreuves.doc

[09/01/2009 - 15:55:04 | AH | 4096] F:\._Annexe P&C.pdf

[27/04/2008 - 20:23:40 | HD ] F:\.Spotlight-V100

[28/08/2009 - 17:07:22 | AH | 4096] F:\._La Langue.doc

[01/07/2008 - 15:23:30 | HD ] F:\.TemporaryItems

[01/07/2008 - 15:23:30 | AH | 4096] F:\._.TemporaryItems

[29/08/2009 - 14:08:00 | AH | 4096] F:\._PdG.pdf

[20/01/2009 - 09:33:26 | AH | 4096] F:\._EAT.doc

[30/06/2009 - 13:41:12 | AH | 4096] F:\._annonce 3.pdf

[29/08/2009 - 16:39:16 | AH | 4096] F:\._pour les secrétaires oisives.rtf

[31/08/2009 - 12:27:44 | AH | 4096] F:\._PdG-2.pdf

[13/09/2009 - 18:07:12 | AH | 4096] F:\._RIB.pdf

[13/09/2009 - 18:07:12 | AH | 4096] F:\._Décompte financier.pdf

[31/08/2009 - 14:56:48 | A | 1618] F:\BOOTEX.LOG

[16/06/2010 - 09:33:48 | D ] F:\SCROON

[17/06/2010 - 08:19:02 | D ] F:\PV

[23/06/2010 - 15:57:56 | RSHD ] F:\setise

 

################## | Vaccin |

 

C:\Autorun.inf -> Dossier créé par UsbFix (El Desaparecido & C_XX)

E:\Autorun.inf -> Dossier créé par UsbFix (El Desaparecido & C_XX)

F:\Autorun.inf -> Dossier créé par UsbFix (El Desaparecido & C_XX)

 

################## | Upload |

 

Veuillez envoyer le fichier: C:\UsbFix_Upload_Me_MAYAFIXE.zip

Upload pour UsbFix, Ad-Remover & FindyKill

Merci de votre contribution.

 

################## | E.O.F |

 

On n'a pas terminé, de toute façon.

 

On en saura plus d'ici quelques rapports. ;)

 

Poste moi le rapport USB Fix nettoyage de ce PC stp. :)

Falkra Devil Member !

Falkra

Posté(e)
Posté(e)

Ok, l'infection est confirmée, nettoie les autres postes, là les clés sont ok.

 

Ensuite pour ce poste, poste un nouveau rapport RSIT stp.

zorka Member

zorka

Posté(e)
  • Auteur
Posté(e)

Tu parles du portable ou du fixe ?

Je me perds :-)

 

Ok, l'infection est confirmée, nettoie les autres postes, là les clés sont ok.

 

Ensuite pour ce poste, poste un nouveau rapport RSIT stp.

zorka Member

zorka

Posté(e)
  • Auteur
Posté(e)

Alors euh je ne sais plus très bien comment je dois procéder mais déjà voici le RSIT du fixe (du principal quoi!) :

 

Logfile of random's system information tool 1.07 (written by random/random)

Run by maya at 2010-06-27 22:27:54

Microsoft Windows XP Professionnel Service Pack 3

System drive C: has 117 GB (24%) free of 477 GB

Total RAM: 3071 MB (77% free)

 

HijackThis download failed

 

======Scheduled tasks folder======

 

C:\WINDOWS\tasks\AppleSoftwareUpdate.job

C:\WINDOWS\tasks\expressripSevenDays.job

C:\WINDOWS\tasks\expressripShakeIcon.job

C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job

C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job

C:\WINDOWS\tasks\RealUpgradeLogonTaskS-1-5-21-2181963443-102153872-2277512569-1005.job

C:\WINDOWS\tasks\RealUpgradeScheduledTaskS-1-5-21-2181963443-102153872-2277512569-1005.job

C:\WINDOWS\tasks\wavepadShakeIcon.job

 

======Registry dump======

 

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{074C1DC5-9320-4A9A-947D-C042949C6216}]

ContributeBHO Class - C:\Program Files\Adobe\/Adobe Contribute CS4/contributeieplugin.dll [2008-08-28 136560]

 

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}]

Adobe PDF Link Helper - C:\Program Files\Fichiers communs\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2009-02-27 75128]

 

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{53707962-6F74-2D53-2644-206D7942484F}]

Spybot-S&D IE Protection - C:\PROGRA~1\SPYBOT~1\SDHelper.dll [2009-01-26 1879896]

 

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{5C255C8A-E604-49b4-9D64-90988571CECB}]

 

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{69AB812A-8CE4-4BF3-B49B-3B60A9F31FB2}]

DIALux 3.1 ULDBrowserHelper Class - C:\Program Files\DIALux\DLXShellExtension.dll [2010-05-12 542208]

 

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{6EBF7485-159F-4bff-A14F-B9E3AAC4465B}]

Search Helper - C:\Program Files\Microsoft\Search Enhancement Pack\Search Helper\SEPsearchhelperie.dll [2009-05-19 137600]

 

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]

Programme d'aide de l'Assistant de connexion Windows Live - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2009-01-22 408448]

 

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AE7CD045-E861-484f-8273-0445EE161910}]

Adobe PDF Conversion Toolbar Helper - C:\Program Files\Fichiers communs\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll [2008-06-11 345480]

 

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]

Java Plug-In 2 SSV Helper - C:\Program Files\Java\jre6\bin\jp2ssv.dll [2009-12-18 41760]

 

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E15A8DC0-8516-42A1-81EA-DC94EC1ACF10}]

Windows Live Toolbar Helper - C:\Program Files\Windows Live\Toolbar\wltcore.dll [2009-02-06 1068904]

 

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E7E6F031-17CE-4C07-BC86-EABFE594F69C}]

JQSIEStartDetectorImpl Class - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll [2009-12-18 73728]

 

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{F4971EE7-DAA0-4053-9964-665D8EE6A077}]

SmartSelect Class - C:\Program Files\Fichiers communs\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll [2008-06-11 345480]

 

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]

{21FA44EF-376D-4D53-9B0F-8A89D3229068} - &Windows Live Toolbar - C:\Program Files\Windows Live\Toolbar\wltcore.dll [2009-02-06 1068904]

{32099AAC-C132-4136-9E9A-4E364A424E17} - DAEMON Tools Toolbar - C:\Program Files\DAEMON Tools Toolbar\DTToolbar.dll [2009-11-24 953800]

{47833539-D0C5-4125-9FA8-0819E2EAAC93} - Adobe PDF - C:\Program Files\Fichiers communs\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll [2008-06-11 345480]

{517BDDE4-E3A7-4570-B21E-2B52B6139FC7} - Contribute Toolbar - C:\Program Files\Adobe\/Adobe Contribute CS4/contributeieplugin.dll [2008-08-28 136560]

 

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]

"WTClient"=C:\WINDOWS\system32\WTClient.exe [2007-04-11 40960]

"TkBellExe"=C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe [2010-03-10 202256]

"SystrayORAHSS"=C:\Program Files\Orange HSS\Systray\SystrayApp.exe [2007-07-24 94208]

"SunJavaUpdateSched"=C:\Program Files\Java\jre6\bin\jusched.exe [2009-12-18 149280]

"StartCCC"=C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe [2009-02-13 61440]

"SpyHunter Security Suite"=C:\Program Files\Enigma Software Group\SpyHunter\SpyHunter3.exe [2009-12-09 866200]

"RTHDCPL"=C:\WINDOWS\RTHDCPL.EXE [2008-08-19 16806912]

"Recordpad"=C:\Program Files\NCH Swift Sound\Recordpad\recordpad.exe [2010-03-01 913412]

"QuickTime Task"=C:\Program Files\QuickTime\QTTask.exe [2009-11-11 417792]

"PDVDDXSrv"=C:\Program Files\CyberLink\PowerDVD DX\PDVDDXSrv.exe [2009-02-04 128232]

"ORAHSSSessionManager"=C:\Program Files\Orange HSS\SessionManager\SessionManager.exe [2007-07-24 102400]

"lxctmon.exe"=C:\Program Files\Lexmark 5400 Series\lxctmon.exe [2007-01-11 291760]

"LVCOMSX"=C:\Program Files\Fichiers communs\LogiShrd\LComMgr\LVComSX.exe [2007-01-12 244512]

"LogitechCommunicationsManager"=C:\Program Files\Fichiers communs\LogiShrd\LComMgr\Communications_Helper.exe [2007-01-12 488984]

"Lexmark 5400 Series Fax Server"=C:\Program Files\Lexmark 5400 Series\fm3032.exe [2006-07-10 294912]

"Kernel and Hardware Abstraction Layer"=C:\WINDOWS\KHALMNPR.EXE [2007-04-11 56080]

"iTunesHelper"=C:\Program Files\iTunes\iTunesHelper.exe [2010-01-22 141608]

"IAAnotif"=C:\Program Files\Intel\Intel Matrix Storage Manager\iaanotif.exe [2009-02-11 186904]

"EzPrint"=C:\Program Files\Lexmark 5400 Series\ezprint.exe [2006-06-07 98304]

"Broadcom Wireless Manager UI"=C:\WINDOWS\system32\WLTRAY.exe [2009-01-19 2289664]

"avgnt"=C:\Program Files\Avira\AntiVir Desktop\avgnt.exe [2009-03-02 209153]

"AppleSyncNotifier"=C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleSyncNotifier.exe [2009-08-13 177440]

"Adobe_ID0ENQBO"=C:\PROGRA~1\FICHIE~1\Adobe\ADOBEV~2\Server\bin\VERSIO~2.EXE [2008-08-15 378224]

"AdobeCS4ServiceManager"=C:\Program Files\Fichiers communs\Adobe\CS4ServiceManager\CS4ServiceManager.exe [2008-08-14 611712]

"Adobe Reader Speed Launcher"=C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe [2009-10-03 35696]

"Adobe ARM"=C:\Program Files\Fichiers communs\Adobe\ARM\1.0\AdobeARM.exe [2010-03-24 952768]

"Adobe Acrobat Speed Launcher"=C:\Program Files\Adobe\Acrobat 9.0\Acrobat\Acrobat_sl.exe [2008-06-12 37232]

"Acrobat Assistant 8.0"=C:\Program Files\Adobe\Acrobat 9.0\Acrobat\Acrotray.exe [2008-06-11 640376]

"8169Diag"=C:\Program Files\Realtek\Diagnostics Utility\8169Diag.exe [2008-02-26 909312]

"LXCTCATS"=rundll32 C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\LXCTtime.dll,_RunDLLEntry@16 []

 

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]

"Skype"=C:\Program Files\Skype\Phone\Skype.exe [2009-10-09 25623336]

"CTFMON.EXE"=C:\WINDOWS\system32\ctfmon.exe [2008-04-14 15360]

 

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\services]

"Bonjour Service"=2

 

C:\Documents and Settings\All Users\Menu Démarrer\Programmes\Démarrage

Logitech SetPoint.lnk - C:\Program Files\Logitech\SetPoint\SetPoint.exe

Post-it® Software Notes Lite.lnk - C:\Program Files\3M\PSNLite\PsnLite.exe

Windows Search.lnk - C:\Program Files\Windows Desktop Search\WindowsSearch.exe

 

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\AtiExtEvent]

C:\WINDOWS\system32\Ati2evxx.dll [2009-05-26 155648]

 

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\WgaLogon]

C:\WINDOWS\system32\WgaLogon.dll [2009-03-10 265088]

 

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]

"{56F9679E-7826-4C84-81F3-532071A8BCC5}"=C:\Program Files\Windows Desktop Search\MSNLNamespaceMgr.dll [2009-05-25 304128]

 

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\PEVSystemStart]

 

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\procexp90.Sys]

 

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\WdfLoadGroup]

 

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\PEVSystemStart]

 

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\procexp90.Sys]

 

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WdfLoadGroup]

 

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]

"dontdisplaylastusername"=0

"legalnoticecaption"=

"legalnoticetext"=

"shutdownwithoutlogon"=1

"undockwithoutlogon"=1

 

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]

"NoDriveTypeAutoRun"=0

"NoDriveAutoRun"=0

 

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]

"HonorAutoRunSetting"=

"NoDriveAutoRun"=

"NoDriveTypeAutoRun"=

 

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

"C:\WINDOWS\Network Diagnostic\xpnetdiag.exe"="C:\WINDOWS\Network Diagnostic\xpnetdiag.exe:*:Disabled:@xpsp3res.dll,-20000"

"C:\Program Files\Windows Live\Messenger\wlcsdk.exe"="C:\Program Files\Windows Live\Messenger\wlcsdk.exe:*:Disabled:Windows Live Call"

"C:\Program Files\Windows Live\Sync\WindowsLiveSync.exe"="C:\Program Files\Windows Live\Sync\WindowsLiveSync.exe:*:Disabled:Windows Live FolderShare"

"C:\Program Files\Windows Live\Messenger\msnmsgr.exe"="C:\Program Files\Windows Live\Messenger\msnmsgr.exe:*:Disabled:Windows Live Messenger"

"C:\Program Files\Messenger\msmsgs.exe"="C:\Program Files\Messenger\msmsgs.exe:*:Disabled:Windows Messenger"

"C:\WINDOWS\system32\lxctcoms.exe"="C:\WINDOWS\system32\lxctcoms.exe:*:Enabled:Lexmark Communications System"

"C:\Program Files\iTunes\iTunes.exe"="C:\Program Files\iTunes\iTunes.exe:*:Enabled:iTunes"

"C:\Program Files\Fichiers communs\Adobe\CS4ServiceManager\CS4ServiceManager.exe"="C:\Program Files\Fichiers communs\Adobe\CS4ServiceManager\CS4ServiceManager.exe:*:Disabled:Adobe CSI CS4"

"C:\Program Files\Fichiers communs\Adobe\Adobe Version Cue CS4\Server\bin\VersionCueCS4.exe"="C:\Program Files\Fichiers communs\Adobe\Adobe Version Cue CS4\Server\bin\VersionCueCS4.exe:*:Disabled:Adobe Version Cue CS4 Server"

"C:\WINDOWS\system32\sessmgr.exe"="C:\WINDOWS\system32\sessmgr.exe:*:Disabled:@xpsp2res.dll,-22019"

"C:\Program Files\Orange HSS\Connectivity\ConnectivityManager.exe"="C:\Program Files\Orange HSS\Connectivity\ConnectivityManager.exe:*:Disabled:CSS"

"C:\WINDOWS\system32\mqsvc.exe"="C:\WINDOWS\system32\mqsvc.exe:*:Enabled:Message Queuing"

"C:\Program Files\Skype\Plugin Manager\skypePM.exe"="C:\Program Files\Skype\Plugin Manager\skypePM.exe:*:Enabled:Skype Extras Manager"

"C:\Program Files\Skype\Phone\Skype.exe"="C:\Program Files\Skype\Phone\Skype.exe:*:Enabled:Skype"

 

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"

"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"

"C:\Program Files\Windows Live\Messenger\wlcsdk.exe"="C:\Program Files\Windows Live\Messenger\wlcsdk.exe:*:Enabled:Windows Live Call"

"C:\Program Files\Windows Live\Messenger\msnmsgr.exe"="C:\Program Files\Windows Live\Messenger\msnmsgr.exe:*:Enabled:Windows Live Messenger"

"C:\Program Files\Windows Live\Sync\WindowsLiveSync.exe"="C:\Program Files\Windows Live\Sync\WindowsLiveSync.exe:*:Enabled:Windows Live FolderShare"

"C:\WINDOWS\system32\mqsvc.exe"="C:\WINDOWS\system32\mqsvc.exe:*:Enabled:Message Queuing"

 

======List of files/folders created in the last 1 months======

 

2010-06-27 18:23:01 ----RASHD---- C:\Autorun.inf

2010-06-27 16:46:36 ----D---- C:\UsbFix

2010-06-26 23:02:15 ----SHD---- C:\RECYCLER

2010-06-26 23:02:02 ----D---- C:\_OTM

2010-06-25 11:21:38 ----D---- C:\rsit

2010-06-25 11:21:38 ----D---- C:\Program Files\trend micro

2010-06-25 09:34:23 ----A---- C:\ComboFix.txt

2010-06-25 09:07:39 ----A---- C:\WINDOWS\zip.exe

2010-06-25 09:07:39 ----A---- C:\WINDOWS\SWXCACLS.exe

2010-06-25 09:07:39 ----A---- C:\WINDOWS\SWSC.exe

2010-06-25 09:07:39 ----A---- C:\WINDOWS\SWREG.exe

2010-06-25 09:07:39 ----A---- C:\WINDOWS\sed.exe

2010-06-25 09:07:39 ----A---- C:\WINDOWS\PEV.exe

2010-06-25 09:07:39 ----A---- C:\WINDOWS\NIRCMD.exe

2010-06-25 09:07:39 ----A---- C:\WINDOWS\MBR.exe

2010-06-25 09:07:39 ----A---- C:\WINDOWS\grep.exe

2010-06-25 09:07:31 ----D---- C:\WINDOWS\ERDNT

2010-06-25 09:05:02 ----AD---- C:\Qoobox

2010-06-24 23:06:42 ----D---- C:\WINDOWS\system32\msmq

2010-06-24 22:52:56 ----D---- C:\Program Files\Microsoft.NET

2010-06-12 03:13:51 ----HDC---- C:\WINDOWS\$NtUninstallKB980218$

2010-06-12 03:13:09 ----HDC---- C:\WINDOWS\$NtUninstallKB980195$

2010-06-12 03:09:38 ----HDC---- C:\WINDOWS\$NtUninstallKB979559$

2010-06-12 03:04:47 ----HDC---- C:\WINDOWS\$NtUninstallKB978695_WM9$

2010-06-12 03:03:55 ----HDC---- C:\WINDOWS\$NtUninstallKB979482$

2010-06-12 03:03:51 ----HDC---- C:\WINDOWS\$NtUninstallKB975562$

2010-06-12 03:00:47 ----HDC---- C:\WINDOWS\$NtUninstallKB982381$

2010-06-08 07:47:07 ----RD---- C:\MSOCache

2010-06-05 19:51:54 ----N---- C:\WINDOWS\Setup1.exe

2010-06-05 19:51:53 ----A---- C:\WINDOWS\ST6UNST.EXE

2010-05-30 22:20:16 ----A---- C:\WINDOWS\system32\d3dx9_27.dll

2010-05-30 22:20:08 ----A---- C:\DIALux Setup Information.txt

2010-05-30 22:20:01 ----A---- C:\WINDOWS\system32\cdintf251.dll

2010-05-30 22:19:56 ----A---- C:\WINDOWS\system32\cdintf300.dll

2010-05-30 22:19:55 ----A---- C:\WINDOWS\Dialux.ini

2010-05-30 22:16:54 ----D---- C:\Documents and Settings\All Users\Application Data\DIALux

2010-05-30 22:16:50 ----D---- C:\WINDOWS\DIALux

2010-05-30 22:16:50 ----D---- C:\Program Files\Fichiers communs\DIALux

2010-05-30 22:16:50 ----D---- C:\Program Files\DIALux

2010-05-30 20:31:49 ----A---- C:\DIALux Setup Log.txt

 

======List of files/folders modified in the last 1 months======

 

2010-06-27 21:39:13 ----D---- C:\Documents and Settings\maya\Application Data\Skype

2010-06-27 20:11:12 ----D---- C:\Program Files\Mozilla Thunderbird

2010-06-27 20:02:04 ----D---- C:\WINDOWS\Prefetch

2010-06-27 19:15:30 ----AD---- C:\WINDOWS\Temp

2010-06-27 18:39:24 ----D---- C:\WINDOWS\system32\drivers

2010-06-27 18:37:47 ----D---- C:\WINDOWS\system32\CatRoot2

2010-06-27 18:37:40 ----D---- C:\WINDOWS

2010-06-27 18:35:24 ----A---- C:\WINDOWS\SchedLgU.Txt

2010-06-27 08:05:28 ----D---- C:\Documents and Settings\maya\Application Data\skypePM

2010-06-26 23:02:14 ----D---- C:\WINDOWS\system32

2010-06-25 11:21:38 ----RD---- C:\Program Files

2010-06-25 09:25:05 ----A---- C:\WINDOWS\system.ini

2010-06-25 09:23:08 ----D---- C:\WINDOWS\system32\config

2010-06-25 09:19:29 ----D---- C:\WINDOWS\AppPatch

2010-06-25 09:19:28 ----D---- C:\Program Files\Fichiers communs

2010-06-25 02:19:18 ----D---- C:\Program Files\Mozilla Firefox

2010-06-25 01:53:30 ----SHD---- C:\System Volume Information

2010-06-25 01:53:25 ----D---- C:\WINDOWS\pss

2010-06-25 01:53:24 ----RASH---- C:\boot.ini

2010-06-25 01:53:24 ----A---- C:\WINDOWS\win.ini

2010-06-25 00:13:30 ----D---- C:\WINDOWS\system32\NtmsData

2010-06-24 23:16:34 ----D---- C:\dell

2010-06-24 23:09:54 ----SHD---- C:\WINDOWS\Installer

2010-06-24 23:09:14 ----D---- C:\Program Files\Fichiers communs\Microsoft Shared

2010-06-24 23:09:13 ----D---- C:\Program Files\Fichiers communs\System

2010-06-24 23:09:11 ----D---- C:\Program Files\Microsoft Office

2010-06-24 23:09:06 ----D---- C:\WINDOWS\ShellNew

2010-06-24 23:07:27 ----D---- C:\WINDOWS\Registration

2010-06-24 23:07:03 ----A---- C:\WINDOWS\imsins.BAK

2010-06-24 23:06:59 ----A---- C:\WINDOWS\system32\PerfStringBackup.INI

2010-06-24 23:06:48 ----D---- C:\WINDOWS\Help

2010-06-24 23:06:45 ----D---- C:\WINDOWS\Cursors

2010-06-24 23:06:44 ----D---- C:\Program Files\Windows NT

2010-06-24 22:54:25 ----D---- C:\Program Files\Microsoft Works

2010-06-24 22:54:04 ----D---- C:\Program Files\Google

2010-06-24 22:54:04 ----D---- C:\Program Files\Fichiers communs\Adobe

2010-06-24 22:54:04 ----D---- C:\Documents and Settings\All Users\Application Data\Google

2010-06-24 22:54:03 ----D---- C:\Program Files\Adobe

2010-06-24 22:53:57 ----D---- C:\WINDOWS\WinSxS

2010-06-24 22:53:45 ----RSHDC---- C:\WINDOWS\system32\dllcache

2010-06-24 22:53:44 ----HD---- C:\WINDOWS\inf

2010-06-24 22:53:17 ----SD---- C:\Documents and Settings\maya\Application Data\Microsoft

2010-06-24 22:53:17 ----HD---- C:\WINDOWS\$hf_mig$

2010-06-24 22:52:57 ----RSD---- C:\WINDOWS\Fonts

2010-06-24 22:52:56 ----SD---- C:\Documents and Settings\All Users\Application Data\Microsoft

2010-06-24 22:50:03 ----D---- C:\Program Files\NCH Swift Sound

2010-06-24 22:49:59 ----D---- C:\Documents and Settings\maya\Application Data\Adobe

2010-06-24 22:48:27 ----HD---- C:\Program Files\InstallShield Installation Information

2010-06-24 21:03:30 ----D---- C:\WINDOWS\system32\wbem

2010-06-24 21:02:04 ----D---- C:\WINDOWS\security

2010-06-24 21:01:21 ----D---- C:\WINDOWS\system32\Restore

2010-06-24 11:40:19 ----D---- C:\Documents and Settings

2010-06-24 10:53:29 ----D---- C:\WINDOWS\Microsoft.NET

2010-06-24 10:53:27 ----RSD---- C:\WINDOWS\assembly

2010-06-08 07:49:25 ----A---- C:\WINDOWS\ODBC.INI

2010-06-08 07:47:16 ----D---- C:\WINDOWS\system

2010-06-07 15:48:28 ----D---- C:\Program Files\Lx_cats

2010-05-30 22:20:17 ----D---- C:\WINDOWS\system32\DirectX

2010-05-30 12:40:30 ----D---- C:\Program Files\Logitech

2010-05-30 12:36:44 ----D---- C:\WINDOWS\Minidump

2010-05-28 21:37:34 ----A---- C:\WINDOWS\system32\MRT.exe

 

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

 

R1 avgio;avgio; \??\C:\Program Files\Avira\AntiVir Desktop\avgio.sys []

R1 avipbb;avipbb; C:\WINDOWS\system32\DRIVERS\avipbb.sys [2009-03-30 96104]

R1 intelppm;Pilote de processeur Intel; C:\WINDOWS\system32\DRIVERS\intelppm.sys [2008-04-14 40576]

R1 kbdhid;Pilote HID de clavier; C:\WINDOWS\system32\DRIVERS\kbdhid.sys [2008-04-13 14720]

R1 SCDEmu;SCDEmu; C:\WINDOWS\system32\drivers\SCDEmu.sys [2009-11-09 59388]

R1 ssmdrv;ssmdrv; C:\WINDOWS\system32\DRIVERS\ssmdrv.sys [2009-12-25 28520]

R2 adfs;adfs; C:\WINDOWS\system32\drivers\adfs.sys [2008-08-14 74720]

R2 avgntflt;avgntflt; C:\WINDOWS\system32\DRIVERS\avgntflt.sys [2009-12-25 56816]

R2 fssfltr;FssFltr; C:\WINDOWS\system32\DRIVERS\fssfltr_tdi.sys [2009-08-05 54752]

R2 LANPkt;Realtek LANPkt Protocol Driver; C:\WINDOWS\system32\DRIVERS\LANPkt.sys [2007-11-20 8960]

R3 ati2mtag;ati2mtag; C:\WINDOWS\system32\DRIVERS\ati2mtag.sys [2009-05-26 3565056]

R3 AtiHdmiService;ATI Function Driver for HDMI Service; C:\WINDOWS\system32\drivers\AtiHdmi.sys [2009-05-26 93184]

R3 bbcap;bbcap; C:\WINDOWS\system32\DRIVERS\bbcap.sys [2009-12-25 4096]

R3 Diag69xp;Diag69xp; C:\WINDOWS\System32\Drivers\Diag69xp.sys [2007-12-03 11264]

R3 GEARAspiWDM;GEAR ASPI Filter Driver; C:\WINDOWS\system32\DRIVERS\GEARAspiWDM.sys [2009-05-18 26600]

R3 HDAudBus;Pilote de bus Microsoft UAA pour High Definition Audio; C:\WINDOWS\system32\DRIVERS\HDAudBus.sys [2008-04-14 144384]

R3 hidusb;Pilote de classe HID Microsoft; C:\WINDOWS\system32\DRIVERS\hidusb.sys [2008-04-14 10368]

R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\WINDOWS\system32\drivers\RtkHDAud.sys [2008-08-19 4752896]

R3 LHidFilt;Logitech SetPoint KMDF HID Filter Driver; C:\WINDOWS\system32\DRIVERS\LHidFilt.Sys [2007-04-11 34832]

R3 LMouFilt;Logitech SetPoint KMDF Mouse Filter Driver; C:\WINDOWS\system32\DRIVERS\LMouFilt.Sys [2007-04-11 36112]

R3 LUsbFilt;Logitech SetPoint KMDF USB Filter; C:\WINDOWS\System32\Drivers\LUsbFilt.Sys [2007-04-11 28688]

R3 mouhid;Pilote HID de souris; C:\WINDOWS\system32\DRIVERS\mouhid.sys [2001-08-23 12288]

R3 MQAC;Message Queuing access control; \??\C:\WINDOWS\system32\drivers\mqac.sys []

R3 RMCAST;Reliable Multicast Protocol driver; \??\C:\WINDOWS\system32\drivers\RMCast.sys []

R3 RTLE8023xp;Realtek 10/100/1000 PCI-E NIC Family NDIS XP Driver; C:\WINDOWS\system32\DRIVERS\Rtenicxp.sys [2009-05-04 130688]

R3 usbccgp;Pilote parent générique USB Microsoft; C:\WINDOWS\system32\DRIVERS\usbccgp.sys [2008-04-14 32128]

R3 usbehci;Pilote miniport de contrôleur d'hôte amélioré Microsoft USB 2.0; C:\WINDOWS\system32\DRIVERS\usbehci.sys [2009-03-18 30336]

R3 usbhub;Pilote de concentrateur standard USB Microsoft; C:\WINDOWS\system32\DRIVERS\usbhub.sys [2008-04-14 59520]

R3 USBSTOR;Pilote de stockage de masse USB; C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS [2008-04-13 26368]

R3 usbuhci;Pilote miniport de contrôleur hôte universel USB Microsoft; C:\WINDOWS\system32\DRIVERS\usbuhci.sys [2008-04-14 20608]

R3 Wdf01000;Wdf01000; C:\WINDOWS\system32\DRIVERS\Wdf01000.sys [2006-11-02 492000]

S1 WmiAcpi;Interface de gestion Microsoft Windows pour ACPI; C:\WINDOWS\system32\DRIVERS\wmiacpi.sys [2008-04-14 8832]

S3 a3m7u02g;a3m7u02g; C:\WINDOWS\system32\drivers\a3m7u02g.sys []

S3 BCM43XX;Pilote de la carte réseau local sans fil Wireless de Dell; C:\WINDOWS\system32\DRIVERS\bcmwl5.sys [2009-01-19 1391104]

S3 catchme;catchme; \??\C:\ComboFix\catchme.sys []

S3 PCAMPR5;PCAMPR5 NDIS Protocol Driver; \??\C:\WINDOWS\system32\PCAMPR5.SYS []

S3 PCANDIS5;PCANDIS5 NDIS Protocol Driver; \??\C:\WINDOWS\system32\PCANDIS5.SYS []

S3 RTLVLAN;Realtek VLAN Intermediate Driver; C:\WINDOWS\system32\DRIVERS\RTLVLAN.SYS [2007-11-20 16640]

S3 Tablet2k;Serial Tablet Port Driver; C:\WINDOWS\System32\Drivers\Tablet2k.sys []

S3 TClass2k;Tablet Class Driver; C:\WINDOWS\system32\DRIVERS\TClass2k.sys [2007-04-23 18432]

S3 UCTblHid;HID Tablet Port Driver; C:\WINDOWS\system32\DRIVERS\UCTblHid.sys [2008-09-08 14848]

S3 USBAAPL;Apple Mobile USB Driver; C:\WINDOWS\System32\Drivers\usbaapl.sys [2009-08-28 40448]

S3 usbprint;Classe d'imprimantes USB Microsoft; C:\WINDOWS\system32\DRIVERS\usbprint.sys [2008-04-13 25856]

S3 usbscan;Pilote de scanneur USB; C:\WINDOWS\system32\DRIVERS\usbscan.sys [2008-04-13 15104]

S4 agp440;Filtre de bus AGP Intel; C:\WINDOWS\system32\DRIVERS\agp440.sys [2008-04-14 42368]

S4 agpCPQ;Filtre de bus AGP Compaq; C:\WINDOWS\system32\DRIVERS\agpCPQ.sys [2008-04-14 44928]

S4 alim1541;Filtre de bus AGP ALI; C:\WINDOWS\system32\DRIVERS\alim1541.sys [2008-04-14 42752]

S4 amdagp;Pilote de filtre du bus AMD AGP; C:\WINDOWS\system32\DRIVERS\amdagp.sys [2008-04-14 43008]

S4 atapi;Contrôleur de disque dur IDE/ESDI standard; C:\WINDOWS\system32\DRIVERS\atapi.sys [2008-04-14 96512]

S4 cbidf;cbidf; C:\WINDOWS\system32\DRIVERS\cbidf2k.sys [2001-08-18 13952]

S4 IntelIde;IntelIde; C:\WINDOWS\system32\DRIVERS\intelide.sys [2008-04-14 5504]

S4 sisagp;Filtre de bus AGP SIS; C:\WINDOWS\system32\DRIVERS\sisagp.sys [2008-04-14 40960]

S4 viaagp;Filtre de bus AGP VIA; C:\WINDOWS\system32\DRIVERS\viaagp.sys [2008-04-14 42240]

 

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

 

R2 AntiVirSchedulerService;Avira AntiVir Planificateur; C:\Program Files\Avira\AntiVir Desktop\sched.exe [2009-12-25 108289]

R2 AntiVirService;Avira AntiVir Guard; C:\Program Files\Avira\AntiVir Desktop\avguard.exe [2009-12-25 185089]

R2 Ati HotKey Poller;Ati HotKey Poller; C:\WINDOWS\system32\Ati2evxx.exe [2009-05-26 602112]

R2 FTRTSVC;France Telecom Routing Table Service; C:\PROGRA~1\FICHIE~1\France Telecom\Shared Modules\FTRTSVC\0\FTRTSVC.exe [2007-07-31 65536]

R2 IAANTMON;Intel® Matrix Storage Event Monitor; C:\Program Files\Intel\Intel Matrix Storage Manager\IAANTMon.exe [2009-02-11 354840]

R2 JavaQuickStarterService;Java Quick Starter; C:\Program Files\Java\jre6\bin\jqs.exe [2009-12-18 153376]

R2 lxct_device;lxct_device; C:\WINDOWS\system32\lxctcoms.exe [2006-07-13 528384]

R2 MSMQ;Message Queuing; C:\WINDOWS\system32\mqsvc.exe [2008-04-14 4608]

R2 MSMQTriggers;Message Queuing Triggers; C:\WINDOWS\system32\mqtgsvc.exe [2008-04-14 117248]

R2 SeaPort;SeaPort; C:\Program Files\Microsoft\Search Enhancement Pack\SeaPort\SeaPort.exe [2009-05-19 240512]

R2 WinTabService;WinTab Service; C:\WINDOWS\System32\Drivers\WTSRV.EXE [2009-03-04 69632]

R2 wltrysvc;Dell Wireless WLAN Tray Service; C:\WINDOWS\System32\WLTRYSVC.EXE [2009-01-19 24576]

R2 WSearch;Windows Search; C:\WINDOWS\system32\SearchIndexer.exe [2008-05-27 439808]

R3 iPod Service;Service de l’iPod; C:\Program Files\iPod\bin\iPodService.exe [2010-01-22 545576]

S3 Apple Mobile Device;Apple Mobile Device; C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe [2009-08-28 144672]

S3 aspnet_state;Service d'état ASP.NET; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe [2008-07-26 34312]

S3 clr_optimization_v2.0.50727_32;.NET Runtime Optimization Service v2.0.50727_X86; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe [2008-07-26 69632]

S3 FLEXnet Licensing Service;FLEXnet Licensing Service; C:\Program Files\Fichiers communs\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe [2010-01-03 655624]

S3 FontCache3.0.0.0;Windows Presentation Foundation Font Cache 3.0.0.0; C:\WINDOWS\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe [2008-07-30 46104]

S3 fsssvc;Service Windows Live Contrôle parental; C:\Program Files\Windows Live\Family Safety\fsssvc.exe [2009-08-05 704864]

S3 gupdate;Service Google Update (gupdate); C:\Program Files\Google\Update\GoogleUpdate.exe [2010-04-06 135664]

S3 idsvc;Windows CardSpace; C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe [2008-07-30 881664]

S3 ose;Office Source Engine; C:\Program Files\Fichiers communs\Microsoft Shared\Source Engine\OSE.EXE [2003-07-28 89136]

S3 stllssvr;stllssvr; c:\Program Files\Fichiers communs\SureThing Shared\stllssvr.exe [2009-01-16 74392]

S4 Adobe Version Cue CS4;Adobe Version Cue CS4; C:\Program Files\Fichiers communs\Adobe\Adobe Version Cue CS4\Server\bin\VersionCueCS4.exe [2008-08-15 284016]

S4 Fax;Fax; C:\WINDOWS\system32\fxssvc.exe [2008-04-14 268800]

S4 NetTcpPortSharing;Service de partage de ports Net.Tcp; C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe [2008-07-30 132096]

 

-----------------EOF-----------------

zorka Member

zorka

Posté(e)
  • Auteur
Posté(e)

Et voici celui du portable!!!

 

Logfile of random's system information tool 1.07 (written by random/random)

Run by Maya at 2010-06-27 22:38:39

Microsoft® Windows Vista Édition Familiale Premium Service Pack 2

System drive C: has 14 GB (14%) free of 101 GB

Total RAM: 2037 MB (41% free)

 

Logfile of Trend Micro HijackThis v2.0.4

Scan saved at 22:38:46, on 27/06/2010

Platform: Windows Vista SP2 (WinNT 6.00.1906)

MSIE: Internet Explorer v7.00 (7.00.6002.18005)

Boot mode: Normal

 

Running processes:

C:\Windows\system32\Dwm.exe

C:\Program Files\Avira\AntiVir Desktop\avgnt.exe

C:\Windows\system32\taskeng.exe

C:\Windows\Explorer.exe

C:\Program Files\OpenOffice.org 2.3\program\soffice.exe

C:\Program Files\OpenOffice.org 2.3\program\soffice.BIN

C:\Windows\system32\wbem\unsecapp.exe

C:\Program Files\Mozilla Firefox\firefox.exe

C:\Users\Maya\Desktop\RSIT.exe

C:\Program Files\trend micro\Maya.exe

C:\Windows\system32\SearchFilterHost.exe

 

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = Bing

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = MSN : Hotmail, Messenger, Bing, Actualité et Sport

R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = MSN : Hotmail, Messenger, Bing, Actualité et Sport

R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =

R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,First Home Page = Moteur de recherche : Web, Photos, Videos, Voyages, Encyclopédie

R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyServer = 10.50.1.254:3128

R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =

R3 - URLSearchHook: Yahoo! Toolbar avec bloqueur de fenêtres pop-up - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - (no file)

R3 - URLSearchHook: SearchSettings Class - {E312764E-7706-43F1-8DAB-FCDD2B1E416D} - C:\Program Files\Search Settings\kb127\SearchSettings.dll

O1 - Hosts: ::1 localhost

O2 - BHO: Aide pour le lien d'Adobe PDF Reader - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll

O2 - BHO: Lexmark Barre d'outils - {1017A80C-6F09-4548-A84D-EDD6AC9525F0} - C:\Program Files\Lexmark Toolbar\toolband.dll

O2 - BHO: RealPlayer Download and Record Plugin for Internet Explorer - {3049C3E9-B461-4BC5-8870-4C09146192CA} - C:\Program Files\Real\RealPlayer\rpbrowserrecordplugin.dll

O2 - BHO: (no name) - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll

O2 - BHO: (no name) - {5C255C8A-E604-49b4-9D64-90988571CECB} - (no file)

O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_02\bin\ssv.dll

O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll

O2 - BHO: SkypeIEPluginBHO - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll

O2 - BHO: EoBHO - {C7B76B90-3455-4AE6-A752-EAC4D19689E5} - C:\Program Files\EoRezo\EoAdv\EoRezoBHO.dll

O2 - BHO: SearchSettings Class - {E312764E-7706-43F1-8DAB-FCDD2B1E416D} - C:\Program Files\Search Settings\kb127\SearchSettings.dll

O3 - Toolbar: Lexmark Barre d'outils - {1017A80C-6F09-4548-A84D-EDD6AC9525F0} - C:\Program Files\Lexmark Toolbar\toolband.dll

O4 - HKLM\..\Run: [Windows Defender] %ProgramFiles%\Windows Defender\MSASCui.exe -hide

O4 - HKLM\..\Run: [RtHDVCpl] RtHDVCpl.exe

O4 - HKLM\..\Run: [Apoint] C:\Program Files\Apoint\Apoint.exe

O4 - HKLM\..\Run: [iSBMgr.exe] "C:\Program Files\Sony\ISB Utility\ISBMgr.exe"

O4 - HKLM\..\Run: [lxctmon.exe] "C:\Program Files\Lexmark 5400 Series\lxctmon.exe"

O4 - HKLM\..\Run: [Lexmark 5400 Series Fax Server] "C:\Program Files\Lexmark 5400 Series\fm3032.exe" /s

O4 - HKLM\..\Run: [EzPrint] "C:\Program Files\Lexmark 5400 Series\ezprint.exe"

O4 - HKLM\..\Run: [LXCTCATS] rundll32 C:\Windows\system32\spool\DRIVERS\W32X86\3\LXCTtime.dll,_RunDLLEntry@16

O4 - HKLM\..\Run: [sunJavaUpdateSched] "C:\Program Files\Java\jre1.6.0_02\bin\jusched.exe"

O4 - HKLM\..\Run: [igfxTray] C:\Windows\system32\igfxtray.exe

O4 - HKLM\..\Run: [HotKeysCmds] C:\Windows\system32\hkcmd.exe

O4 - HKLM\..\Run: [Persistence] C:\Windows\system32\igfxpers.exe

O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe"

O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Common Files\Real\Update_OB\realsched.exe" -osboot

O4 - HKLM\..\Run: [searchSettings] C:\Program Files\Search Settings\SearchSettings.exe

O4 - HKLM\..\Run: [EoEngine] "C:\Program Files\EoRezo\EoEngine.exe"

O4 - HKLM\..\Run: [avgnt] "C:\Program Files\Avira\AntiVir Desktop\avgnt.exe" /min

O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\QTTask.exe" -atboottime

O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe"

O4 - HKLM\..\RunOnce: [softwareHelper] C:\Users\Maya\AppData\Roaming\eoRezo\SoftwareUpdate\SoftwareUpdateHP.exe -runonce

O4 - HKCU\..\Run: [sidebar] C:\Program Files\Windows Sidebar\sidebar.exe /autoRun

O4 - HKCU\..\Run: [spybotSD TeaTimer] C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe

O4 - HKCU\..\Run: [MsnMsgr] "C:\Program Files\Windows Live\Messenger\msnmsgr.exe" /background

O4 - HKCU\..\Run: [skype] "C:\Program Files\Skype\\Phone\Skype.exe" /nosplash /minimized

O4 - HKUS\S-1-5-19\..\Run: [sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'SERVICE LOCAL')

O4 - HKUS\S-1-5-19\..\Run: [WindowsWelcomeCenter] rundll32.exe oobefldr.dll,ShowWelcomeCenter (User 'SERVICE LOCAL')

O4 - HKUS\S-1-5-20\..\Run: [sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'SERVICE RÉSEAU')

O4 - Startup: OpenOffice.org 2.3.lnk = C:\Program Files\OpenOffice.org 2.3\program\quickstart.exe

O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~3\Office12\EXCEL.EXE/3000

O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_02\bin\ssv.dll

O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_02\bin\ssv.dll

O9 - Extra button: Envoyer à OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~3\Office12\ONBttnIE.dll

O9 - Extra 'Tools' menuitem: &Envoyer à OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~3\Office12\ONBttnIE.dll

O9 - Extra button: Skype add-on for Internet Explorer - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll

O9 - Extra 'Tools' menuitem: Skype add-on for Internet Explorer - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll

O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~3\Office12\REFIEBAR.DLL

O18 - Protocol: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll

O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL

O22 - SharedTaskScheduler: Component Categories cache daemon - {8C7461EF-2B13-11d2-BE35-3078302C2030} - C:\Windows\system32\browseui.dll

O23 - Service: @%SystemRoot%\system32\aelupsvc.dll,-1 (AeLookupSvc) - Unknown owner - C:\Windows\system32\svchost.exe

O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe

O23 - Service: Avira AntiVir Scheduler (AntiVirSchedulerService) - Avira GmbH - C:\Program Files\Avira\AntiVir Desktop\sched.exe

O23 - Service: Avira AntiVir Guard (AntiVirService) - Avira GmbH - C:\Program Files\Avira\AntiVir Desktop\avguard.exe

O23 - Service: @%systemroot%\system32\appinfo.dll,-100 (Appinfo) - Unknown owner - C:\Windows\system32\svchost.exe

O23 - Service: Apple Mobile Device - Apple Inc. - C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe

O23 - Service: @%SystemRoot%\system32\audiosrv.dll,-204 (AudioEndpointBuilder) - Unknown owner - C:\Windows\System32\svchost.exe

O23 - Service: @%SystemRoot%\system32\audiosrv.dll,-200 (Audiosrv) - Unknown owner - C:\Windows\System32\svchost.exe

O23 - Service: @%SystemRoot%\system32\bfe.dll,-1001 (BFE) - Unknown owner - C:\Windows\system32\svchost.exe

O23 - Service: @%SystemRoot%\system32\qmgr.dll,-1000 (BITS) - Unknown owner - C:\Windows\System32\svchost.exe

O23 - Service: Service Bonjour (Bonjour Service) - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe

O23 - Service: @%systemroot%\system32\browser.dll,-100 (Browser) - Unknown owner - C:\Windows\System32\svchost.exe

O23 - Service: @%SystemRoot%\System32\certprop.dll,-11 (CertPropSvc) - Unknown owner - C:\Windows\system32\svchost.exe

O23 - Service: Symantec Lic NetConnect service (CLTNetCnService) - Unknown owner - C:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe (file missing)

O23 - Service: @%SystemRoot%\system32\cryptsvc.dll,-1001 (CryptSvc) - Unknown owner - C:\Windows\system32\svchost.exe

O23 - Service: @oleres.dll,-5012 (DcomLaunch) - Unknown owner - C:\Windows\system32\svchost.exe

O23 - Service: @dfsrres.dll,-101 (DFSR) - Unknown owner - C:\Windows\system32\DFSR.exe

O23 - Service: @%SystemRoot%\system32\dhcpcsvc.dll,-100 (Dhcp) - Unknown owner - C:\Windows\system32\svchost.exe

O23 - Service: @%SystemRoot%\System32\dnsapi.dll,-101 (Dnscache) - Unknown owner - C:\Windows\system32\svchost.exe

O23 - Service: @%systemroot%\system32\dot3svc.dll,-1102 (dot3svc) - Unknown owner - C:\Windows\system32\svchost.exe

O23 - Service: @%systemroot%\system32\dps.dll,-500 (DPS) - Unknown owner - C:\Windows\System32\svchost.exe

O23 - Service: @%systemroot%\system32\eapsvc.dll,-1 (EapHost) - Unknown owner - C:\Windows\System32\svchost.exe

O23 - Service: @%SystemRoot%\ehome\ehrecvr.exe,-101 (ehRecvr) - Unknown owner - C:\Windows\ehome\ehRecvr.exe

O23 - Service: @%SystemRoot%\ehome\ehsched.exe,-101 (ehSched) - Unknown owner - C:\Windows\ehome\ehsched.exe

O23 - Service: @%SystemRoot%\ehome\ehstart.dll,-101 (ehstart) - Unknown owner - C:\Windows\system32\svchost.exe

O23 - Service: @%SystemRoot%\system32\emdmgmt.dll,-1000 (EMDMgmt) - Unknown owner - C:\Windows\system32\svchost.exe

O23 - Service: @%SystemRoot%\system32\wevtsvc.dll,-200 (Eventlog) - Unknown owner - C:\Windows\System32\svchost.exe

O23 - Service: @comres.dll,-2450 (EventSystem) - Unknown owner - C:\Windows\system32\svchost.exe

O23 - Service: @%systemroot%\system32\fdPHost.dll,-100 (fdPHost) - Unknown owner - C:\Windows\system32\svchost.exe

O23 - Service: @%systemroot%\system32\fdrespub.dll,-100 (FDResPub) - Unknown owner - C:\Windows\system32\svchost.exe

O23 - Service: FLEXnet Licensing Service - Macrovision Europe Ltd. - C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe

O23 - Service: @%systemroot%\system32\FntCache.dll,-100 (FontCache) - Unknown owner - C:\Windows\system32\svchost.exe

O23 - Service: @gpapi.dll,-112 (gpsvc) - Unknown owner - C:\Windows\system32\svchost.exe

O23 - Service: @%SystemRoot%\System32\hidserv.dll,-101 (hidserv) - Unknown owner - C:\Windows\system32\svchost.exe

O23 - Service: @%SystemRoot%\system32\kmsvc.dll,-6 (hkmsvc) - Unknown owner - C:\Windows\System32\svchost.exe

O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\1050\Intel 32\IDriverT.exe

O23 - Service: @%SystemRoot%\system32\ikeext.dll,-501 (IKEEXT) - Unknown owner - C:\Windows\system32\svchost.exe

O23 - Service: @%systemroot%\system32\IPBusEnum.dll,-102 (IPBusEnum) - Unknown owner - C:\Windows\system32\svchost.exe

O23 - Service: @%SystemRoot%\system32\iphlpsvc.dll,-200 (iphlpsvc) - Unknown owner - C:\Windows\System32\svchost.exe

O23 - Service: Service de l’iPod (iPod Service) - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe

O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe

O23 - Service: @comres.dll,-2946 (KtmRm) - Unknown owner - C:\Windows\System32\svchost.exe

O23 - Service: @%systemroot%\system32\srvsvc.dll,-100 (LanmanServer) - Unknown owner - C:\Windows\system32\svchost.exe

O23 - Service: @%systemroot%\system32\wkssvc.dll,-100 (LanmanWorkstation) - Unknown owner - C:\Windows\System32\svchost.exe

O23 - Service: @%SystemRoot%\system32\lltdres.dll,-1 (lltdsvc) - Unknown owner - C:\Windows\System32\svchost.exe

O23 - Service: @%SystemRoot%\system32\lmhsvc.dll,-101 (lmhosts) - Unknown owner - C:\Windows\system32\svchost.exe

O23 - Service: lxct_device - - C:\Windows\system32\lxctcoms.exe

O23 - Service: @%systemroot%\system32\mmcss.dll,-100 (MMCSS) - Unknown owner - C:\Windows\system32\svchost.exe

O23 - Service: @%SystemRoot%\system32\FirewallAPI.dll,-23090 (MpsSvc) - Unknown owner - C:\Windows\system32\svchost.exe

O23 - Service: MSCSPTISRV - Sony Corporation - C:\Program Files\Common Files\Sony Shared\AvLib\MSCSPTISRV.exe

O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe

O23 - Service: @%SystemRoot%\system32\iscsidsc.dll,-5000 (MSiSCSI) - Unknown owner - C:\Windows\system32\svchost.exe

O23 - Service: @%SystemRoot%\system32\msimsg.dll,-27 (msiserver) - Unknown owner - C:\Windows\system32\msiexec.exe

O23 - Service: @%SystemRoot%\system32\qagentrt.dll,-6 (napagent) - Unknown owner - C:\Windows\System32\svchost.exe

O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe

O23 - Service: @%SystemRoot%\system32\netman.dll,-109 (Netman) - Unknown owner - C:\Windows\System32\svchost.exe

O23 - Service: @%SystemRoot%\system32\netprof.dll,-246 (netprofm) - Unknown owner - C:\Windows\System32\svchost.exe

O23 - Service: @%SystemRoot%\System32\nlasvc.dll,-1 (NlaSvc) - Unknown owner - C:\Windows\System32\svchost.exe

O23 - Service: @%SystemRoot%\system32\nsisvc.dll,-200 (nsi) - Unknown owner - C:\Windows\system32\svchost.exe

O23 - Service: @%SystemRoot%\system32\p2psvc.dll,-8004 (p2pimsvc) - Unknown owner - C:\Windows\System32\svchost.exe

O23 - Service: @%SystemRoot%\system32\p2psvc.dll,-8006 (p2psvc) - Unknown owner - C:\Windows\System32\svchost.exe

O23 - Service: PACSPTISVR - Unknown owner - C:\Program Files\Common Files\Sony Shared\AvLib\PACSPTISVR.exe

O23 - Service: @%SystemRoot%\system32\pcasvc.dll,-1 (PcaSvc) - Unknown owner - C:\Windows\system32\svchost.exe

O23 - Service: @%systemroot%\system32\pla.dll,-500 (pla) - Unknown owner - C:\Windows\System32\svchost.exe

O23 - Service: @%SystemRoot%\system32\umpnpmgr.dll,-100 (PlugPlay) - Unknown owner - C:\Windows\system32\svchost.exe

O23 - Service: @%SystemRoot%\system32\p2psvc.dll,-8002 (PNRPAutoReg) - Unknown owner - C:\Windows\System32\svchost.exe

O23 - Service: @%SystemRoot%\system32\p2psvc.dll,-8000 (PNRPsvc) - Unknown owner - C:\Windows\System32\svchost.exe

O23 - Service: @%SystemRoot%\System32\polstore.dll,-5010 (PolicyAgent) - Unknown owner - C:\Windows\system32\svchost.exe

O23 - Service: @%systemroot%\system32\profsvc.dll,-300 (ProfSvc) - Unknown owner - C:\Windows\system32\svchost.exe

O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe

O23 - Service: @%SystemRoot%\system32\qwave.dll,-1 (QWAVE) - Unknown owner - C:\Windows\system32\svchost.exe

O23 - Service: @%Systemroot%\system32\rasauto.dll,-200 (RasAuto) - Unknown owner - C:\Windows\system32\svchost.exe

O23 - Service: @%Systemroot%\system32\rasmans.dll,-200 (RasMan) - Unknown owner - C:\Windows\system32\svchost.exe

O23 - Service: @regsvc.dll,-1 (RemoteRegistry) - Unknown owner - C:\Windows\system32\svchost.exe

O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe

O23 - Service: @oleres.dll,-5010 (RpcSs) - Unknown owner - C:\Windows\system32\svchost.exe

O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe

O23 - Service: @%SystemRoot%\System32\SCardSvr.dll,-1 (SCardSvr) - Unknown owner - C:\Windows\system32\svchost.exe

O23 - Service: @%SystemRoot%\system32\schedsvc.dll,-100 (Schedule) - Unknown owner - C:\Windows\system32\svchost.exe

O23 - Service: @%SystemRoot%\System32\certprop.dll,-13 (SCPolicySvc) - Unknown owner - C:\Windows\system32\svchost.exe

O23 - Service: @%SystemRoot%\system32\sdrsvc.dll,-107 (SDRSVC) - Unknown owner - C:\Windows\system32\svchost.exe

O23 - Service: @%SystemRoot%\system32\seclogon.dll,-7001 (seclogon) - Unknown owner - C:\Windows\system32\svchost.exe

O23 - Service: @%SystemRoot%\system32\Sens.dll,-200 (SENS) - Unknown owner - C:\Windows\system32\svchost.exe

O23 - Service: ServiceLayer - Nokia. - C:\Program Files\PC Connectivity Solution\ServiceLayer.exe

O23 - Service: @%SystemRoot%\System32\SessEnv.dll,-1026 (SessionEnv) - Unknown owner - C:\Windows\System32\svchost.exe

O23 - Service: @%SystemRoot%\system32\ipnathlp.dll,-106 (SharedAccess) - Unknown owner - C:\Windows\System32\svchost.exe

O23 - Service: @%SystemRoot%\System32\shsvcs.dll,-12288 (ShellHWDetection) - Unknown owner - C:\Windows\System32\svchost.exe

O23 - Service: @%SystemRoot%\system32\SLsvc.exe,-101 (slsvc) - Unknown owner - C:\Windows\system32\SLsvc.exe

O23 - Service: @%SystemRoot%\system32\SLUINotify.dll,-103 (SLUINotify) - Unknown owner - C:\Windows\system32\svchost.exe

O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe

O23 - Service: SonicStage Back-End Service - Sony Corporation - C:\Program Files\Common Files\Sony Shared\AvLib\SsBeSvc.exe

O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe

O23 - Service: Sony SPTI Service (SPTISRV) - Sony Corporation - C:\Program Files\Common Files\Sony Shared\AvLib\SPTISRV.exe

O23 - Service: @%systemroot%\system32\ssdpsrv.dll,-100 (SSDPSRV) - Unknown owner - C:\Windows\system32\svchost.exe

O23 - Service: SonicStage SCSI Service (SSScsiSV) - Sony Corporation - C:\Program Files\Common Files\Sony Shared\AvLib\SSScsiSV.exe

O23 - Service: @%SystemRoot%\system32\sstpsvc.dll,-200 (SstpSvc) - Unknown owner - C:\Windows\system32\svchost.exe

O23 - Service: @%SystemRoot%\system32\wiaservc.dll,-9 (stisvc) - Unknown owner - C:\Windows\system32\svchost.exe

O23 - Service: @%SystemRoot%\System32\swprv.dll,-103 (swprv) - Unknown owner - C:\Windows\System32\svchost.exe

O23 - Service: @%SystemRoot%\system32\sysmain.dll,-1000 (SysMain) - Unknown owner - C:\Windows\system32\svchost.exe

O23 - Service: @%SystemRoot%\system32\TabSvc.dll,-100 (TabletInputService) - Unknown owner - C:\Windows\System32\svchost.exe

O23 - Service: @%SystemRoot%\system32\tapisrv.dll,-10100 (TapiSrv) - Unknown owner - C:\Windows\System32\svchost.exe

O23 - Service: @%SystemRoot%\system32\tbssvc.dll,-100 (TBS) - Unknown owner - C:\Windows\System32\svchost.exe

O23 - Service: @%SystemRoot%\System32\termsrv.dll,-268 (TermService) - Unknown owner - C:\Windows\System32\svchost.exe

O23 - Service: @%SystemRoot%\System32\shsvcs.dll,-8192 (Themes) - Unknown owner - C:\Windows\System32\svchost.exe

O23 - Service: @%systemroot%\system32\mmcss.dll,-102 (THREADORDER) - Unknown owner - C:\Windows\system32\svchost.exe

O23 - Service: @%SystemRoot%\system32\trkwks.dll,-1 (TrkWks) - Unknown owner - C:\Windows\System32\svchost.exe

O23 - Service: @%SystemRoot%\servicing\TrustedInstaller.exe,-100 (TrustedInstaller) - Unknown owner - C:\Windows\servicing\TrustedInstaller.exe

O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe

O23 - Service: @%systemroot%\system32\upnphost.dll,-213 (upnphost) - Unknown owner - C:\Windows\system32\svchost.exe

O23 - Service: @%SystemRoot%\system32\dwm.exe,-2000 (UxSms) - Unknown owner - C:\Windows\System32\svchost.exe

O23 - Service: VAIO Entertainment TV Device Arbitration Service - Sony Corporation - C:\Program Files\Common Files\Sony Shared\VAIO Entertainment Platform\VzCs\VzHardwareResourceManager\VzHardwareResourceManager.exe

O23 - Service: VAIO Event Service - Sony Corporation - C:\Program Files\sony\VAIO Event Service\VESMgr.exe

O23 - Service: VAIO Media Integrated Server (VAIOMediaPlatform-IntegratedServer-AppServer) - Sony Corporation - C:\Program Files\sony\VAIO Media Integrated Server\VMISrv.exe

O23 - Service: VAIO Media Integrated Server (HTTP) (VAIOMediaPlatform-IntegratedServer-HTTP) - Sony Corporation - C:\Program Files\sony\VAIO Media Integrated Server\Platform\SV_Httpd.exe

O23 - Service: VAIO Media Integrated Server (UPnP) (VAIOMediaPlatform-IntegratedServer-UPnP) - Sony Corporation - C:\Program Files\sony\VAIO Media Integrated Server\Platform\UPnPFramework.exe

O23 - Service: VAIO Media Gateway Server (VAIOMediaPlatform-Mobile-Gateway) - Sony Corporation - C:\Program Files\sony\VAIO Media Integrated Server\Platform\VmGateway.exe

O23 - Service: VAIO Media Content Collection (VAIOMediaPlatform-UCLS-AppServer) - Sony Corporation - C:\Program Files\sony\VAIO Media Integrated Server\UCLS.exe

O23 - Service: VAIO Media Content Collection (HTTP) (VAIOMediaPlatform-UCLS-HTTP) - Sony Corporation - C:\Program Files\sony\VAIO Media Integrated Server\Platform\SV_Httpd.exe

O23 - Service: VAIO Media Content Collection (UPnP) (VAIOMediaPlatform-UCLS-UPnP) - Sony Corporation - C:\Program Files\sony\VAIO Media Integrated Server\Platform\UPnPFramework.exe

O23 - Service: VAIO Entertainment UPnP Client Adapter (Vcsw) - Sony Corporation - C:\Program Files\Common Files\Sony Shared\VAIO Entertainment Platform\VCSW\VCSW.exe

O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe

O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe

O23 - Service: VAIO Entertainment Database Service (VzCdbSvc) - Sony Corporation - C:\Program Files\Common Files\Sony Shared\VAIO Entertainment Platform\VzCdb\VzCdbSvc.exe

O23 - Service: VAIO Entertainment File Import Service (VzFw) - Sony Corporation - C:\Program Files\Common Files\Sony Shared\VAIO Entertainment Platform\VzCdb\VzFw.exe

O23 - Service: @%SystemRoot%\system32\w32time.dll,-200 (W32Time) - Unknown owner - C:\Windows\system32\svchost.exe

O23 - Service: @%SystemRoot%\system32\wcncsvc.dll,-3 (wcncsvc) - Unknown owner - C:\Windows\System32\svchost.exe

O23 - Service: @%SystemRoot%\system32\WcsPlugInService.dll,-200 (WcsPlugInService) - Unknown owner - C:\Windows\system32\svchost.exe

O23 - Service: @%systemroot%\system32\wdi.dll,-502 (WdiServiceHost) - Unknown owner - C:\Windows\System32\svchost.exe

O23 - Service: @%systemroot%\system32\wdi.dll,-500 (WdiSystemHost) - Unknown owner - C:\Windows\System32\svchost.exe

O23 - Service: @%systemroot%\system32\webclnt.dll,-100 (WebClient) - Unknown owner - C:\Windows\system32\svchost.exe

O23 - Service: @%SystemRoot%\system32\wecsvc.dll,-200 (Wecsvc) - Unknown owner - C:\Windows\system32\svchost.exe

O23 - Service: @%SystemRoot%\System32\wercplsupport.dll,-101 (wercplsupport) - Unknown owner - C:\Windows\System32\svchost.exe

O23 - Service: @%SystemRoot%\System32\wersvc.dll,-100 (WerSvc) - Unknown owner - C:\Windows\System32\svchost.exe

O23 - Service: @%ProgramFiles%\Windows Defender\MsMpRes.dll,-103 (WinDefend) - Unknown owner - C:\Windows\System32\svchost.exe

O23 - Service: @%SystemRoot%\system32\winhttp.dll,-100 (WinHttpAutoProxySvc) - Unknown owner - C:\Windows\system32\svchost.exe

O23 - Service: @%Systemroot%\system32\wbem\wmisvc.dll,-205 (Winmgmt) - Unknown owner - C:\Windows\system32\svchost.exe

O23 - Service: @%Systemroot%\system32\wsmsvc.dll,-101 (WinRM) - Unknown owner - C:\Windows\System32\svchost.exe

O23 - Service: @%SystemRoot%\System32\wlansvc.dll,-257 (Wlansvc) - Unknown owner - C:\Windows\system32\svchost.exe

O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe

O23 - Service: @%ProgramFiles%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files\Windows Media Player\wmpnetwk.exe

O23 - Service: @%SystemRoot%\system32\wpcsvc.dll,-100 (WPCSvc) - Unknown owner - C:\Windows\system32\svchost.exe

O23 - Service: @%SystemRoot%\system32\wpdbusenum.dll,-100 (WPDBusEnum) - Unknown owner - C:\Windows\system32\svchost.exe

O23 - Service: @C:\Windows\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe,-100 (WPFFontCache_v0400) - Unknown owner - C:\Windows\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe

O23 - Service: @%SystemRoot%\System32\wscsvc.dll,-200 (wscsvc) - Unknown owner - C:\Windows\System32\svchost.exe

O23 - Service: @%systemroot%\system32\SearchIndexer.exe,-103 (WSearch) - Unknown owner - C:\Windows\system32\SearchIndexer.exe

O23 - Service: @%systemroot%\system32\wuaueng.dll,-105 (wuauserv) - Unknown owner - C:\Windows\system32\svchost.exe

O23 - Service: @%SystemRoot%\system32\wudfsvc.dll,-1000 (wudfsvc) - Unknown owner - C:\Windows\system32\svchost.exe

O23 - Service: XAudioService - Conexant Systems, Inc. - C:\Windows\system32\DRIVERS\xaudio.exe

 

--

End of file - 25060 bytes

 

======Scheduled tasks folder======

 

C:\Windows\tasks\Spybot - Search & Destroy - Scheduled Task.job

C:\Windows\tasks\User_Feed_Synchronization-{27C020B6-8DB2-4BC6-81A2-65067EB395C8}.job

 

======Registry dump======

 

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{06849E9F-C8D7-4D59-B87D-784B7D6BE0B3}]

Aide pour le lien d'Adobe PDF Reader - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll [2006-10-23 62080]

 

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{1017A80C-6F09-4548-A84D-EDD6AC9525F0}]

Lexmark Barre d'outils - C:\Program Files\Lexmark Toolbar\toolband.dll [2006-08-09 184320]

 

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{3049C3E9-B461-4BC5-8870-4C09146192CA}]

RealPlayer Download and Record Plugin for Internet Explorer - C:\Program Files\Real\RealPlayer\rpbrowserrecordplugin.dll [2008-09-19 308856]

 

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{53707962-6F74-2D53-2644-206D7942484F}]

C:\PROGRA~1\SPYBOT~1\SDHelper.dll [2005-05-31 853672]

 

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{5C255C8A-E604-49b4-9D64-90988571CECB}]

 

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]

SSVHelper Class - C:\Program Files\Java\jre1.6.0_02\bin\ssv.dll [2007-06-14 509592]

 

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]

Programme d'aide de l'Assistant de connexion Windows Live - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2009-02-17 408440]

 

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}]

Skype add-on for Internet Explorer - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll [2010-02-08 804136]

 

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{C7B76B90-3455-4AE6-A752-EAC4D19689E5}]

EoBHO Class - C:\Program Files\EoRezo\EoAdv\EoRezoBHO.dll [2008-11-18 42792]

 

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E312764E-7706-43F1-8DAB-FCDD2B1E416D}]

SearchSettings Class - C:\Program Files\Search Settings\kb127\SearchSettings.dll [2008-06-12 1111904]

 

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]

{1017A80C-6F09-4548-A84D-EDD6AC9525F0} - Lexmark Barre d'outils - C:\Program Files\Lexmark Toolbar\toolband.dll [2006-08-09 184320]

 

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]

"Windows Defender"=C:\Program Files\Windows Defender\MSASCui.exe [2008-01-19 1008184]

"RtHDVCpl"=C:\Windows\RtHDVCpl.exe [2007-02-06 4317184]

"Apoint"=C:\Program Files\Apoint\Apoint.exe [2007-01-12 118784]

"ISBMgr.exe"=C:\Program Files\Sony\ISB Utility\ISBMgr.exe [2007-01-22 321656]

"lxctmon.exe"=C:\Program Files\Lexmark 5400 Series\lxctmon.exe [2006-11-22 291760]

"Lexmark 5400 Series Fax Server"=C:\Program Files\Lexmark 5400 Series\fm3032.exe [2006-11-22 304048]

"EzPrint"=C:\Program Files\Lexmark 5400 Series\ezprint.exe [2006-11-22 82864]

"LXCTCATS"=rundll32 C:\Windows\system32\spool\DRIVERS\W32X86\3\LXCTtime.dll,_RunDLLEntry@16 []

"SunJavaUpdateSched"=C:\Program Files\Java\jre1.6.0_02\bin\jusched.exe [2007-06-14 132760]

"IgfxTray"=C:\Windows\system32\igfxtray.exe [2007-09-13 141848]

"HotKeysCmds"=C:\Windows\system32\hkcmd.exe [2007-09-13 154136]

"Persistence"=C:\Windows\system32\igfxpers.exe [2007-09-13 129560]

"Adobe Reader Speed Launcher"=C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe [2008-01-11 39792]

"TkBellExe"=C:\Program Files\Common Files\Real\Update_OB\realsched.exe [2008-09-19 185896]

"SearchSettings"=C:\Program Files\Search Settings\SearchSettings.exe [2008-06-12 991584]

"EoEngine"=C:\Program Files\EoRezo\EoEngine.exe [2009-02-23 472872]

"avgnt"=C:\Program Files\Avira\AntiVir Desktop\avgnt.exe [2009-03-02 209153]

"QuickTime Task"=C:\Program Files\QuickTime\QTTask.exe [2009-11-11 417792]

"iTunesHelper"=C:\Program Files\iTunes\iTunesHelper.exe [2009-11-12 141600]

 

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\RunOnce]

"SoftwareHelper"=C:\Users\Maya\AppData\Roaming\eoRezo\SoftwareUpdate\SoftwareUpdateHP.exe [2008-12-09 368224]

""= []

""= []

""= []

""= []

""= []

""= []

""= []

""= []

""= []

""= []

""= []

""= []

""= []

""= []

""= []

""= []

""= []

""= []

""= []

""= []

""= []

""= []

""= []

""= []

""= []

""= []

""= []

""= []

""= []

""= []

""= []

""= []

""= []

""= []

""= []

""= []

""= []

""= []

""= []

""= []

""= []

""= []

""= []

""= []

""= []

""= []

""= []

""= []

""= []

""= []

""= []

""= []

""= []

""= []

""= []

""= []

""= []

""= []

""= []

""= []

""= []

""= []

""= []

""= []

""= []

""= []

""= []

""= []

""= []

""= []

""= []

""= []

""= []

""= []

""= []

""= []

""= []

""= []

""= []

""= []

""= []

""= []

""= []

""= []

""= []

""= []

""= []

""= []

""= []

""= []

""= []

""= []

""= []

""= []

""= []

""= []

""= []

""= []

""= []

 

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]

"Sidebar"=C:\Program Files\Windows Sidebar\sidebar.exe [2009-04-11 1233920]

"SpybotSD TeaTimer"=C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe [2005-05-31 1415824]

"MsnMsgr"=C:\Program Files\Windows Live\Messenger\msnmsgr.exe [2009-07-26 3883856]

"Skype"=C:\Program Files\Skype\\Phone\Skype.exe [2010-05-13 26192168]

 

C:\Users\Maya\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup

OpenOffice.org 2.3.lnk - C:\Program Files\OpenOffice.org 2.3\program\quickstart.exe

 

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\igfxcui]

C:\Windows\system32\igfxdev.dll [2007-09-13 204800]

 

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\VESWinlogon]

C:\Windows\system32\VESWinlogon.dll [2007-02-13 98304]

 

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WudfPf]

 

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WudfRd]

 

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WudfSvc]

 

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WudfUsbccidDriver]

 

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]

"dontdisplaylastusername"=0

"legalnoticecaption"=

"legalnoticetext"=

"shutdownwithoutlogon"=1

"undockwithoutlogon"=1

"EnableUIADesktopToggle"=0

 

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]

"NoDriveTypeAutoRun"=0

"NoDriveAutoRun"=0

 

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]

"BindDirectlyToPropertySetStorage"=

"NoDriveAutoRun"=

"NoDriveTypeAutoRun"=

 

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

 

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

 

[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{77e23e19-cd32-11de-8400-001a8043e87e}]

shell\AutoRun\command - C:\Windows\system32\RunDLL32.EXE Shell32.DLL,ShellExec_RunDLL I:\NoLimit.exe

 

 

======File associations======

 

.js - edit -

.js - open -

.txt - open -

 

======List of files/folders created in the last 1 months======

 

2010-06-27 22:26:14 ----D---- C:\Program Files\trend micro

2010-06-27 22:26:12 ----D---- C:\rsit

2010-06-27 18:18:22 ----RASHD---- C:\Autorun.inf

2010-06-27 16:59:56 ----A---- C:\UsbFix.txt

2010-06-27 16:59:47 ----D---- C:\UsbFix

2010-06-27 10:22:58 ----D---- C:\Windows\pss

2010-06-26 03:27:36 ----D---- C:\Program Files\Windows Portable Devices

2010-06-26 03:08:13 ----A---- C:\Windows\system32\UIAnimation.dll

2010-06-26 03:08:12 ----A---- C:\Windows\system32\UIRibbonRes.dll

2010-06-26 03:08:11 ----A---- C:\Windows\system32\UIRibbon.dll

2010-06-26 03:07:22 ----A---- C:\Windows\system32\WMPhoto.dll

2010-06-26 03:07:21 ----A---- C:\Windows\system32\cdd.dll

2010-06-26 03:07:20 ----A---- C:\Windows\system32\XpsRasterService.dll

2010-06-26 03:07:20 ----A---- C:\Windows\system32\XpsGdiConverter.dll

2010-06-26 03:07:20 ----A---- C:\Windows\system32\printfilterpipelineprxy.dll

2010-06-26 03:07:20 ----A---- C:\Windows\system32\d3d10warp.dll

2010-06-26 03:07:20 ----A---- C:\Windows\system32\d2d1.dll

2010-06-26 03:07:19 ----A---- C:\Windows\system32\WindowsCodecsExt.dll

2010-06-26 03:07:19 ----A---- C:\Windows\system32\WindowsCodecs.dll

2010-06-26 03:07:19 ----A---- C:\Windows\system32\printfilterpipelinesvc.exe

2010-06-26 03:07:19 ----A---- C:\Windows\system32\PhotoMetadataHandler.dll

2010-06-26 03:07:19 ----A---- C:\Windows\system32\dxdiagn.dll

2010-06-26 03:07:19 ----A---- C:\Windows\system32\dxdiag.exe

2010-06-26 03:07:18 ----A---- C:\Windows\system32\xpsservices.dll

2010-06-26 03:07:18 ----A---- C:\Windows\system32\XpsPrint.dll

2010-06-26 03:07:18 ----A---- C:\Windows\system32\OpcServices.dll

2010-06-26 03:07:18 ----A---- C:\Windows\system32\FntCache.dll

2010-06-26 03:07:18 ----A---- C:\Windows\system32\DWrite.dll

2010-06-26 03:07:18 ----A---- C:\Windows\system32\d3d10level9.dll

2010-06-26 03:07:18 ----A---- C:\Windows\system32\d3d10core.dll

2010-06-26 03:07:18 ----A---- C:\Windows\system32\d3d10_1core.dll

2010-06-26 03:07:17 ----A---- C:\Windows\system32\dxgi.dll

2010-06-26 03:07:17 ----A---- C:\Windows\system32\d3d11.dll

2010-06-26 03:07:17 ----A---- C:\Windows\system32\d3d10_1.dll

2010-06-26 03:07:17 ----A---- C:\Windows\system32\d3d10.dll

2010-06-26 03:06:35 ----A---- C:\Windows\system32\WPDShextAutoplay.exe

2010-06-26 03:06:35 ----A---- C:\Windows\system32\wpdbusenum.dll

2010-06-26 03:06:35 ----A---- C:\Windows\system32\BthMtpContextHandler.dll

2010-06-26 03:06:31 ----A---- C:\Windows\system32\PortableDeviceConnectApi.dll

2010-06-26 03:06:28 ----A---- C:\Windows\system32\WpdConns.dll

2010-06-26 03:06:27 ----A---- C:\Windows\system32\WPDShServiceObj.dll

2010-06-26 03:06:27 ----A---- C:\Windows\system32\wpdshext.dll

2010-06-26 03:06:27 ----A---- C:\Windows\system32\WpdMtpUS.dll

2010-06-26 03:06:27 ----A---- C:\Windows\system32\WpdMtp.dll

2010-06-26 03:06:27 ----A---- C:\Windows\system32\wpd_ci.dll

2010-06-26 03:06:27 ----A---- C:\Windows\system32\PortableDeviceWMDRM.dll

2010-06-26 03:06:27 ----A---- C:\Windows\system32\PortableDeviceTypes.dll

2010-06-26 03:06:27 ----A---- C:\Windows\system32\PortableDeviceClassExtension.dll

2010-06-26 03:06:27 ----A---- C:\Windows\system32\PortableDeviceApi.dll

2010-06-26 03:06:26 ----A---- C:\Windows\system32\WPDSp.dll

2010-06-26 03:05:01 ----A---- C:\Windows\system32\UIAutomationCore.dll

2010-06-26 03:05:01 ----A---- C:\Windows\system32\oleaccrc.dll

2010-06-26 03:05:01 ----A---- C:\Windows\system32\oleacc.dll

2010-06-24 23:27:33 ----D---- C:\Windows\system32\eu-ES

2010-06-24 23:27:33 ----D---- C:\Windows\system32\ca-ES

2010-06-24 23:27:31 ----D---- C:\Windows\system32\vi-VN

2010-06-24 22:49:40 ----D---- C:\Windows\system32\EventProviders

2010-06-24 21:03:48 ----A---- C:\Windows\system32\PresentationHostProxy.dll

2010-06-24 21:03:48 ----A---- C:\Windows\system32\PresentationHost.exe

2010-06-24 21:03:48 ----A---- C:\Windows\system32\netfxperf.dll

2010-06-24 21:03:48 ----A---- C:\Windows\system32\mscoree.dll

2010-06-24 21:03:48 ----A---- C:\Windows\system32\dfshim.dll

2010-06-24 17:19:42 ----A---- C:\Windows\system32\gameux.dll

2010-06-24 17:19:41 ----A---- C:\Windows\system32\Apphlpdm.dll

2010-06-24 17:19:40 ----A---- C:\Windows\system32\GameUXLegacyGDFs.dll

2010-06-24 12:00:12 ----A---- C:\Windows\wininit.ini

2010-06-23 17:22:04 ----RSH---- C:\Users\Maya\AppData\Roaming\mrpky.exe

2010-06-16 18:27:39 ----D---- C:\Users\Maya\AppData\Roaming\skypePM

2010-06-16 14:27:33 ----D---- C:\Users\Maya\AppData\Roaming\Skype

2010-06-16 14:26:47 ----D---- C:\Program Files\Common Files\Skype

2010-06-16 11:20:39 ----A---- C:\Windows\system32\asycfilt.dll

2010-06-16 11:20:34 ----A---- C:\Windows\system32\atmfd.dll

2010-06-16 11:20:33 ----A---- C:\Windows\system32\atmlib.dll

2010-06-16 11:20:22 ----A---- C:\Windows\system32\mshtml.dll

2010-06-16 11:20:21 ----A---- C:\Windows\system32\ieframe.dll

2010-06-16 11:20:19 ----A---- C:\Windows\system32\wininet.dll

2010-06-16 11:20:19 ----A---- C:\Windows\system32\urlmon.dll

2010-06-16 11:20:17 ----A---- C:\Windows\system32\ieapfltr.dll

2010-06-16 11:20:16 ----A---- C:\Windows\system32\mshtmled.dll

2010-06-16 11:20:15 ----A---- C:\Windows\system32\ieui.dll

2010-06-16 11:20:15 ----A---- C:\Windows\system32\iepeers.dll

2010-06-16 11:20:15 ----A---- C:\Windows\system32\ieencode.dll

2010-06-06 08:22:10 ----A---- C:\Windows\system32\browserchoice.exe

2010-06-06 08:15:40 ----A---- C:\Windows\system32\nshhttp.dll

2010-06-06 08:15:35 ----A---- C:\Windows\system32\httpapi.dll

2010-06-04 19:53:00 ----A---- C:\Windows\system32\inetcomm.dll

2010-06-04 19:52:15 ----A---- C:\Windows\system32\ntoskrnl.exe

2010-06-04 19:52:14 ----A---- C:\Windows\system32\ntkrnlpa.exe

2010-06-04 19:51:58 ----A---- C:\Windows\system32\vbscript.dll

2010-06-04 19:51:37 ----A---- C:\Windows\system32\tzres.dll

2010-06-04 19:50:27 ----A---- C:\Windows\system32\iphlpsvc.dll

2010-06-04 19:50:17 ----A---- C:\Windows\system32\secproc_isv.dll

2010-06-04 19:50:17 ----A---- C:\Windows\system32\RMActivate_isv.exe

2010-06-04 19:50:17 ----A---- C:\Windows\system32\RMActivate.exe

2010-06-04 19:50:16 ----A---- C:\Windows\system32\secproc.dll

2010-06-04 19:50:15 ----A---- C:\Windows\system32\RMActivate_ssp_isv.exe

2010-06-04 19:50:15 ----A---- C:\Windows\system32\RMActivate_ssp.exe

2010-06-04 19:50:13 ----A---- C:\Windows\system32\secproc_ssp_isv.dll

2010-06-04 19:50:13 ----A---- C:\Windows\system32\secproc_ssp.dll

2010-06-04 19:50:13 ----A---- C:\Windows\system32\msdrm.dll

2010-06-04 19:50:07 ----A---- C:\Windows\system32\wintrust.dll

2010-06-04 19:50:04 ----A---- C:\Windows\system32\cabview.dll

2010-06-04 19:43:54 ----A---- C:\Windows\system32\quartz.dll

2010-06-04 19:43:53 ----A---- C:\Windows\system32\tsbyuv.dll

2010-06-04 19:43:53 ----A---- C:\Windows\system32\msyuv.dll

2010-06-04 19:43:53 ----A---- C:\Windows\system32\msvidc32.dll

2010-06-04 19:43:53 ----A---- C:\Windows\system32\msvfw32.dll

2010-06-04 19:43:53 ----A---- C:\Windows\system32\msrle32.dll

2010-06-04 19:43:53 ----A---- C:\Windows\system32\mciavi32.dll

2010-06-04 19:43:53 ----A---- C:\Windows\system32\iyuv_32.dll

2010-06-04 19:43:53 ----A---- C:\Windows\system32\avifil32.dll

 

======List of files/folders modified in the last 1 months======

 

2010-06-27 22:38:43 ----D---- C:\Windows\Temp

2010-06-27 22:35:56 ----D---- C:\Program Files\Mozilla Firefox

2010-06-27 22:35:52 ----D---- C:\Windows\System32

2010-06-27 22:35:52 ----A---- C:\Windows\system32\PerfStringBackup.INI

2010-06-27 22:35:51 ----D---- C:\Windows\inf

2010-06-27 22:35:27 ----D---- C:\Windows\Prefetch

2010-06-27 22:26:14 ----RD---- C:\Program Files

2010-06-27 20:07:35 ----SHD---- C:\$Recycle.Bin

2010-06-27 18:18:29 ----D---- C:\Users\Maya\AppData\Roaming\OpenOffice.org2

2010-06-27 17:36:19 ----D---- C:\Users\Maya\AppData\Roaming\EoRezo

2010-06-27 10:58:57 ----D---- C:\Windows\rescache

2010-06-27 10:42:16 ----D---- C:\Windows\system32\LogFiles

2010-06-27 10:22:58 ----D---- C:\Windows

2010-06-27 10:15:58 ----SHD---- C:\System Volume Information

2010-06-27 10:07:46 ----D---- C:\Windows\winsxs

2010-06-27 01:29:42 ----D---- C:\Windows\Minidump

2010-06-26 08:54:41 ----D---- C:\Windows\system32\Tasks

2010-06-26 03:45:45 ----D---- C:\Windows\Microsoft.NET

2010-06-26 03:45:08 ----RSD---- C:\Windows\assembly

2010-06-26 03:27:37 ----D---- C:\Windows\system32\fr-FR

2010-06-26 03:27:36 ----D---- C:\Windows\system32\drivers

2010-06-26 03:27:35 ----D---- C:\Windows\system32\wbem

2010-06-26 03:27:33 ----D---- C:\Windows\system32\zh-HK

2010-06-26 03:27:33 ----D---- C:\Windows\system32\uk-UA

2010-06-26 03:27:33 ----D---- C:\Windows\system32\sl-SI

2010-06-26 03:27:33 ----D---- C:\Windows\system32\pt-PT

2010-06-26 03:27:33 ----D---- C:\Windows\system32\pt-BR

2010-06-26 03:27:33 ----D---- C:\Windows\system32\pl-PL

2010-06-26 03:27:33 ----D---- C:\Windows\system32\ko-KR

2010-06-26 03:27:33 ----D---- C:\Windows\system32\it-IT

2010-06-26 03:27:33 ----D---- C:\Windows\system32\hu-HU

2010-06-26 03:27:33 ----D---- C:\Windows\system32\hr-HR

2010-06-26 03:27:33 ----D---- C:\Windows\system32\he-IL

2010-06-26 03:27:33 ----D---- C:\Windows\system32\el-GR

2010-06-26 03:27:33 ----D---- C:\Windows\system32\bg-BG

2010-06-26 03:27:32 ----D---- C:\Windows\system32\zh-TW

2010-06-26 03:27:32 ----D---- C:\Windows\system32\zh-CN

2010-06-26 03:27:32 ----D---- C:\Windows\system32\tr-TR

2010-06-26 03:27:32 ----D---- C:\Windows\system32\th-TH

2010-06-26 03:27:32 ----D---- C:\Windows\system32\sv-SE

2010-06-26 03:27:32 ----D---- C:\Windows\system32\sr-Latn-CS

2010-06-26 03:27:32 ----D---- C:\Windows\system32\sk-SK

2010-06-26 03:27:32 ----D---- C:\Windows\system32\ro-RO

2010-06-26 03:27:32 ----D---- C:\Windows\system32\nl-NL

2010-06-26 03:27:32 ----D---- C:\Windows\system32\lv-LV

2010-06-26 03:27:32 ----D---- C:\Windows\system32\lt-LT

2010-06-26 03:27:32 ----D---- C:\Windows\system32\ja-JP

2010-06-26 03:27:32 ----D---- C:\Windows\system32\fi-FI

2010-06-26 03:27:32 ----D---- C:\Windows\system32\et-EE

2010-06-26 03:27:32 ----D---- C:\Windows\system32\es-ES

2010-06-26 03:27:32 ----D---- C:\Windows\system32\de-DE

2010-06-26 03:27:32 ----D---- C:\Windows\system32\cs-CZ

2010-06-26 03:27:32 ----D---- C:\Windows\system32\ar-SA

2010-06-26 03:27:31 ----D---- C:\Windows\system32\ru-RU

2010-06-26 03:27:31 ----D---- C:\Windows\system32\nb-NO

2010-06-26 03:27:31 ----D---- C:\Windows\system32\en-US

2010-06-26 03:27:31 ----D---- C:\Windows\system32\da-DK

2010-06-26 03:08:29 ----D---- C:\Windows\system32\catroot

2010-06-26 03:07:02 ----D---- C:\Windows\system32\catroot2

2010-06-25 09:14:37 ----D---- C:\Program Files\ESET

2010-06-24 23:41:29 ----SHD---- C:\Boot

2010-06-24 23:29:59 ----D---- C:\Program Files\Windows Mail

2010-06-24 23:29:59 ----D---- C:\Program Files\Windows Calendar

2010-06-24 23:29:59 ----D---- C:\Program Files\Movie Maker

2010-06-24 23:29:56 ----D---- C:\Program Files\Windows Sidebar

2010-06-24 23:29:56 ----D---- C:\Program Files\Windows Media Player

2010-06-24 23:29:56 ----D---- C:\Program Files\Internet Explorer

2010-06-24 23:29:55 ----D---- C:\Program Files\Windows Journal

2010-06-24 23:29:55 ----D---- C:\Program Files\Windows Collaboration

2010-06-24 23:29:52 ----D---- C:\Program Files\Windows Photo Gallery

2010-06-24 23:29:52 ----D---- C:\Program Files\Common Files\System

2010-06-24 23:29:44 ----D---- C:\Windows\servicing

2010-06-24 23:29:44 ----D---- C:\Windows\ehome

2010-06-24 23:29:44 ----D---- C:\Program Files\Windows Defender

2010-06-24 23:29:20 ----D---- C:\Windows\system32\XPSViewer

2010-06-24 23:29:20 ----D---- C:\Windows\IME

2010-06-24 23:29:18 ----D---- C:\Windows\system32\oobe

2010-06-24 23:29:17 ----D---- C:\Windows\system32\migration

2010-06-24 23:29:17 ----D---- C:\Windows\system32\fr

2010-06-24 23:29:09 ----D---- C:\Windows\system32\AdvancedInstallers

2010-06-24 23:29:03 ----D---- C:\Windows\system32\SLUI

2010-06-24 23:29:03 ----D---- C:\Windows\system32\setup

2010-06-24 23:29:02 ----D---- C:\Windows\system32\manifeststore

2010-06-24 23:28:54 ----D---- C:\Windows\system32\migwiz

2010-06-24 23:27:43 ----RSD---- C:\Windows\Fonts

2010-06-24 23:27:43 ----D---- C:\Windows\AppPatch

2010-06-24 23:27:31 ----D---- C:\Windows\system32\Boot

2010-06-24 23:24:08 ----D---- C:\Windows\system32\RTCOM

2010-06-24 21:11:39 ----SHD---- C:\Windows\Installer

2010-06-24 21:06:54 ----D---- C:\Program Files\Microsoft.NET

2010-06-24 12:02:09 ----AD---- C:\ProgramData\TEMP

2010-06-22 14:15:02 ----D---- C:\Users\Maya\AppData\Roaming\Adobe

2010-06-17 03:15:13 ----D---- C:\ProgramData\Microsoft Help

2010-06-16 18:27:46 ----HD---- C:\ProgramData

2010-06-16 14:27:20 ----RD---- C:\Program Files\Skype

2010-06-16 14:26:47 ----D---- C:\Program Files\Common Files

2010-06-16 14:26:44 ----D---- C:\ProgramData\Skype

2010-06-04 20:26:11 ----D---- C:\Windows\system32\config

2010-06-04 20:25:15 ----D---- C:\Windows\Tasks

2010-06-04 20:25:15 ----D---- C:\Windows\system32\spool

2010-06-04 20:25:15 ----D---- C:\Windows\system32\Msdtc

2010-06-04 20:24:56 ----D---- C:\Windows\registration

2010-06-04 12:09:19 ----D---- C:\Program Files\EoRezo

2010-05-28 21:37:34 ----A---- C:\Windows\system32\mrt.exe

 

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

 

R1 avgio;avgio; \??\C:\Program Files\Avira\AntiVir Desktop\avgio.sys [2009-02-13 11608]

R1 avipbb;avipbb; C:\Windows\system32\DRIVERS\avipbb.sys [2009-03-30 96104]

R1 DMICall;Sony DMI Call service; C:\Windows\system32\DRIVERS\DMICall.sys [2006-10-18 10216]

R1 eeCtrl;Symantec Eraser Control driver; \??\C:\Program Files\Common Files\Symantec Shared\EENGINE\eeCtrl.sys [2008-01-22 385072]

R1 ssmdrv;ssmdrv; C:\Windows\system32\DRIVERS\ssmdrv.sys [2009-05-11 28520]

R2 avgntflt;avgntflt; C:\Windows\system32\DRIVERS\avgntflt.sys [2009-12-08 56816]

R2 mdmxsdk;mdmxsdk; C:\Windows\system32\DRIVERS\mdmxsdk.sys [2007-01-10 12672]

R2 XAudio;XAudio; C:\Windows\system32\DRIVERS\xaudio.sys [2007-01-10 8192]

R3 ApfiltrService;Alps Pointing-device Filter Driver; C:\Windows\system32\DRIVERS\Apfiltr.sys [2007-01-12 140800]

R3 athr;Atheros Extensible Wireless LAN device driver; C:\Windows\system32\DRIVERS\athr.sys [2006-12-28 509440]

R3 CmBatt;Pilote pour Batterie à méthode de contrôle ACPI Microsoft; C:\Windows\system32\DRIVERS\CmBatt.sys [2008-01-19 14208]

R3 GEARAspiWDM;GEAR ASPI Filter Driver; C:\Windows\System32\Drivers\GEARAspiWDM.sys [2009-05-18 26600]

R3 HSF_DPV;HSF_DPV; C:\Windows\system32\DRIVERS\HSX_DPV.sys [2007-01-10 986624]

R3 HSXHWAZL;HSXHWAZL; C:\Windows\system32\DRIVERS\HSXHWAZL.sys [2007-01-10 206848]

R3 igfx;igfx; C:\Windows\system32\DRIVERS\igdkmd32.sys [2007-09-13 1925632]

R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\Windows\system32\drivers\RTKVHDA.sys [2007-02-06 1668456]

R3 SNC;Sony Firmware Extension Parser Device; C:\Windows\System32\Drivers\SonyNC.sys [2007-02-06 27520]

R3 ti21sony;ti21sony; C:\Windows\system32\drivers\ti21sony.sys [2007-02-08 807424]

R3 winachsf;winachsf; C:\Windows\system32\DRIVERS\HSX_CNXT.sys [2007-01-10 659968]

R3 WUDFRd;WUDFRd; C:\Windows\system32\DRIVERS\WUDFRd.sys [2008-01-19 83328]

R3 yukonwlh;NDIS6.0 Miniport Driver for Marvell Yukon Ethernet Controller; C:\Windows\system32\DRIVERS\yk60x86.sys [2007-01-29 195072]

S1 KLIM6;Kaspersky Anti-Virus NDIS 6 Filter; C:\Windows\system32\DRIVERS\klim6.sys [2007-04-04 20760]

S3 drmkaud;Filtre de décodeur DRM (Noyau Microsoft); C:\Windows\system32\drivers\drmkaud.sys [2008-01-19 5632]

S3 HdAudAddService;Pilote de fonction UAA 1.1 Microsoft pour le service High Definition Audio; C:\Windows\system32\drivers\HdAudio.sys [2006-11-02 235520]

S3 MSKSSRV;Proxy de service de répartition Microsoft; C:\Windows\system32\drivers\MSKSSRV.sys [2008-01-19 8192]

S3 MSPCLOCK;Proxy d'horloge de répartition Microsoft; C:\Windows\system32\drivers\MSPCLOCK.sys [2008-01-19 5888]

S3 MSPQM;Proxy de gestion de qualité de répartition Microsoft; C:\Windows\system32\drivers\MSPQM.sys [2008-01-19 5504]

S3 MSTEE;Convertisseur en T/site-à-site de répartition Microsoft; C:\Windows\system32\drivers\MSTEE.sys [2008-01-19 6016]

S3 NETw3v32;Pilote de carte réseau Intel® PRO/Wireless 3945ABG pour Windows Vista 32 bits; C:\Windows\system32\DRIVERS\NETw3v32.sys [2007-01-24 1786880]

S3 pccsmcfd;PCCS Mode Change Filter Driver; C:\Windows\system32\DRIVERS\pccsmcfd.sys [2008-08-26 18816]

S3 Ph3xIB32;Philips 713x Inbox PCI TV Card; C:\Windows\system32\DRIVERS\Ph3xIB32.sys [2007-04-03 1131136]

S3 upperdev;upperdev; C:\Windows\system32\DRIVERS\usbser_lowerflt.sys []

S3 USBAAPL;Apple Mobile USB Driver; C:\Windows\System32\Drivers\usbaapl.sys [2009-08-28 40448]

S3 usbscan;Pilote de scanneur USB; C:\Windows\system32\DRIVERS\usbscan.sys [2008-01-19 35328]

S3 WpdUsb;WpdUsb; C:\Windows\system32\DRIVERS\wpdusb.sys [2009-10-01 40448]

S4 WmiAcpi;Microsoft Windows Management Interface for ACPI; C:\Windows\system32\drivers\wmiacpi.sys [2006-11-02 11264]

 

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

 

R2 AntiVirSchedulerService;Avira AntiVir Scheduler; C:\Program Files\Avira\AntiVir Desktop\sched.exe [2009-05-13 108289]

R2 AntiVirService;Avira AntiVir Guard; C:\Program Files\Avira\AntiVir Desktop\avguard.exe [2009-07-21 185089]

R2 Apple Mobile Device;Apple Mobile Device; C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe [2009-08-28 144672]

R2 SQLBrowser;SQL Server Browser; C:\Program Files\Microsoft SQL Server\90\Shared\sqlbrowser.exe [2008-11-24 239968]

S2 Bonjour Service;Service Bonjour; C:\Program Files\Bonjour\mDNSResponder.exe [2008-12-12 238888]

S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-03-18 130384]

S2 CLTNetCnService;Symantec Lic NetConnect service; C:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe /h ccCommon []

S2 lxct_device;lxct_device; C:\Windows\system32\lxctcoms.exe [2006-11-22 537520]

S2 MSSQL$VAIO_VEDB;SQL Server (VAIO_VEDB); C:\Program Files\Microsoft SQL Server\MSSQL.1\MSSQL\Binn\sqlservr.exe [2009-05-27 29262680]

S2 SQLWriter;Enregistreur VSS SQL Server; C:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe [2008-11-24 87904]

S2 VAIO Event Service;VAIO Event Service; C:\Program Files\sony\VAIO Event Service\VESMgr.exe [2007-02-13 182392]

S2 VzCdbSvc;VAIO Entertainment Database Service; C:\Program Files\Common Files\Sony Shared\VAIO Entertainment Platform\VzCdb\VzCdbSvc.exe [2006-11-28 172032]

S2 VzFw;VAIO Entertainment File Import Service; C:\Program Files\Common Files\Sony Shared\VAIO Entertainment Platform\VzCdb\VzFw.exe [2006-11-28 135168]

S2 XAudioService;XAudioService; C:\Windows\system32\DRIVERS\xaudio.exe [2007-01-10 386560]

S3 FLEXnet Licensing Service;FLEXnet Licensing Service; C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe [2008-07-06 654848]

S3 FontCache;@%systemroot%\system32\FntCache.dll,-100; C:\Windows\system32\svchost.exe [2008-01-19 21504]

S3 IDriverT;InstallDriver Table Manager; C:\Program Files\Common Files\InstallShield\Driver\1050\Intel 32\IDriverT.exe [2004-10-22 73728]

S3 iPod Service;Service de l’iPod; C:\Program Files\iPod\bin\iPodService.exe [2009-11-12 545568]

S3 MSCSPTISRV;MSCSPTISRV; C:\Program Files\Common Files\Sony Shared\AvLib\MSCSPTISRV.exe [2006-12-14 45056]

S3 odserv;Microsoft Office Diagnostics Service; C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE [2008-11-04 441712]

S3 ose;Office Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2006-10-26 145184]

S3 PACSPTISVR;PACSPTISVR; C:\Program Files\Common Files\Sony Shared\AvLib\PACSPTISVR.exe [2006-12-14 57344]

S3 ServiceLayer;ServiceLayer; C:\Program Files\PC Connectivity Solution\ServiceLayer.exe [2009-06-02 637952]

S3 SonicStage Back-End Service;SonicStage Back-End Service; C:\Program Files\Common Files\Sony Shared\AvLib\SsBeSvc.exe [2007-01-24 112184]

S3 SPTISRV;Sony SPTI Service; C:\Program Files\Common Files\Sony Shared\AvLib\SPTISRV.exe [2006-12-14 69632]

S3 SSScsiSV;SonicStage SCSI Service; C:\Program Files\Common Files\Sony Shared\AvLib\SSScsiSV.exe [2007-01-24 75320]

S3 VAIO Entertainment TV Device Arbitration Service;VAIO Entertainment TV Device Arbitration Service; C:\Program Files\Common Files\Sony Shared\VAIO Entertainment Platform\VzCs\VzHardwareResourceManager\VzHardwareResourceManager.exe [2007-01-10 73728]

S3 VAIOMediaPlatform-IntegratedServer-AppServer;VAIO Media Integrated Server; C:\Program Files\sony\VAIO Media Integrated Server\VMISrv.exe [2007-01-16 2523136]

S3 VAIOMediaPlatform-IntegratedServer-HTTP;VAIO Media Integrated Server (HTTP); C:\Program Files\sony\VAIO Media Integrated Server\Platform\SV_Httpd.exe [2007-01-08 397312]

S3 VAIOMediaPlatform-IntegratedServer-UPnP;VAIO Media Integrated Server (UPnP); C:\Program Files\sony\VAIO Media Integrated Server\Platform\UPnPFramework.exe [2007-01-16 1089536]

S3 VAIOMediaPlatform-Mobile-Gateway;VAIO Media Gateway Server; C:\Program Files\sony\VAIO Media Integrated Server\Platform\VmGateway.exe [2007-01-08 491520]

S3 VAIOMediaPlatform-UCLS-AppServer;VAIO Media Content Collection; C:\Program Files\sony\VAIO Media Integrated Server\UCLS.exe [2007-01-10 745472]

S3 VAIOMediaPlatform-UCLS-HTTP;VAIO Media Content Collection (HTTP); C:\Program Files\sony\VAIO Media Integrated Server\Platform\SV_Httpd.exe [2007-01-08 397312]

S3 VAIOMediaPlatform-UCLS-UPnP;VAIO Media Content Collection (UPnP); C:\Program Files\sony\VAIO Media Integrated Server\Platform\UPnPFramework.exe [2007-01-16 1089536]

S3 Vcsw;VAIO Entertainment UPnP Client Adapter; C:\Program Files\Common Files\Sony Shared\VAIO Entertainment Platform\VCSW\VCSW.exe [2006-11-28 274432]

S3 WPFFontCache_v0400;@C:\Windows\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe,-100; C:\Windows\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe [2010-03-18 753504]

S4 MSSQLServerADHelper;SQL Server Active Directory Helper; C:\Program Files\Microsoft SQL Server\90\Shared\sqladhlp90.exe [2008-11-24 45408]

 

-----------------EOF-----------------

Falkra Devil Member !

Falkra

Posté(e)
Posté(e)

Je parle du PC du tout début, et là c'est clean. Ca tourne bien ?

 

Tape ceci dans menu démarrer, exécuter :

sc delete a3m7u02g

zorka Member

zorka

Posté(e)
  • Auteur
Posté(e)

Alors c'est le fixe :-)

Non, il tourne pas bien, il continue à me dupliquer des fichiers et il ne trouve aucun périphérique ou presque

 

Je parle du PC du tout début, et là c'est clean. Ca tourne bien ?

 

Tape ceci dans menu démarrer, exécuter :

sc delete a3m7u02g

zorka Member

zorka

Posté(e)
  • Auteur
Posté(e)

Ok, c'est fait: ça doit donner quoi ? Il continue toujours à me sélectionner / dupliquer les fichiers

 

Alors c'est le fixe :-)

Non, il tourne pas bien, il continue à me dupliquer des fichiers et il ne trouve aucun périphérique ou presque

zorka Member

zorka

Posté(e)
  • Auteur
Posté(e)

Ok, c'est fait: ça doit donner quoi ? Il continue toujours à me sélectionner / dupliquer les fichiers

 

 

Aussi: quand je le reboote, il émet des couinements assez étranges :-), ça a l'air de faire mal!

Rejoindre la conversation

Vous pouvez publier maintenant et vous inscrire plus tard. Si vous avez un compte, connectez-vous maintenant pour publier avec votre compte.
Remarque : votre message nécessitera l’approbation d’un modérateur avant de pouvoir être visible.

Invité
Répondre à ce sujet…

×   Collé en tant que texte enrichi.   Coller en tant que texte brut à la place

  Seulement 75 émoticônes maximum sont autorisées.

×   Votre lien a été automatiquement intégré.   Afficher plutôt comme un lien

×   Votre contenu précédent a été rétabli.   Vider l’éditeur

×   Vous ne pouvez pas directement coller des images. Envoyez-les depuis votre ordinateur ou insérez-les depuis une URL.

×
 Partager
Aller sur la liste des sujets

  • En ligne récemment   0 membre est en ligne

    • Aucun utilisateur enregistré regarde cette page.
×
×
  • Créer...