PC qui rame, plante et autres pb

[rygabou]

Bonjour,

J'ai un PC portable DELL de 3 ans qui est extrêmement lent, pour tout.

En regardant le premier tuto je me suis rendu compte qu'il n'y avait que 3 ligne et non 4 dans la rubrique serveur DSN. A la place de la dernière ligne il y a NET BIOS over TCpip......: Enable

Lorsque l'on fait tourner Malwarebytes en analyse rapide, aucun nuisible n'est détecté.

Pourtant le PC rame toujours et plante régulièrement.

Pouvez vous m'aider

Me contacter

Merci

 

Rygabou

[pear]

Bonjour,

 

 

Téléchargez cet outil de diagnostic.

.

Téléchargez Random's system information tool (RSIT) et sauvegardez-le sur le Bureau

 

Si vous avez un systeme 64bits :

Téléchargez Rsitx64 et sauvegardez-le sur le Bureau

 

Sous Xp

Double-cliquez sur RSIT.exe pour le lancer.

Sous Vista

Clic droit sur l'icône et "Exécuter en tant qu'administrateur"

Sous Sept

Sur le bureau, faire un clic droit sur le fichier RSIT.exe

Dans Propriétés->onglet Compatibilité-> cocher Exécuter ce programme en mode compatibilité pour

et dans le menu choisir Vista SP2 et la case dans Niveau de privilège.

Valider par Appliquer.

 

* Cliquez Continue à l'écran Disclaimer.

* Si l'outil HIjackThis (version à jour) n'est pas présent ou détecté sur l'ordinateur, RSIT le télécharge et vous acceptez la licence.

* L'analyse terminée, deux fichiers texte s'ouvriront.:

Poster le contenu de log.txt (qui sera affiché)

ainsi que de info.txt (qui sera réduit dans la Barre des Tâches).

* Si ces deux rapports n'apparaissent pas, vous les trouverez dans le dossier C:\rsit

 

Comment poster les rapports

Vous copiez/collez tout ou partie des rapports dans un ou plusieurs messages.

Autre solution:

Aller sur le site :Ci-Joint

Appuyez sur Parcourir et chercher les rapports sur le disque,

Ensuite appuyez sur Créer le lien CJoint,

>> dans la page suivante --> ,,

une adresse http//.. sera créée

Copier /coller cette adresse dans votre prochain message,

 

 

 

[rygabou]

Bonjour Pear,

Merci de ton aide

 

Voici les 2 rapports:

Info

 

info.txt logfile of random's system information tool 1.08 2010-11-27 13:22:34

 

======Uninstall list======

 

-->C:\Program Files\DivX\DivXConverterUninstall.exe /CONVERTER

-->MsiExec.exe /I{AC76BA86-1033-F400-7760-000000000001}

-->RunDll32 "C:\Program Files\Common Files\InstallShield\Professional\RunTime\0701\Intel32\ctor.dll",LaunchSetup "C:\Program Files\InstallShield Installation Information\{91A4AD99-69CE-4745-97B7-0E0DFBECFDE5}\setup.exe"

-->RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\PROFES~1\RunTime\0701\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{01958032-9877-4118-B87F-9EFA74B3F15F}\setup.exe" -l0x40c

-->RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\PROFES~1\RunTime\0701\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{2C0DAEA5-826C-4A76-B176-56959B99D3F0}\setup.exe" -l0x40c

-->RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\PROFES~1\RunTime\0701\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{EFB21DE7-8C19-4A88-BB28-A766E16493BC}\setup.exe" -l0x40c

Adobe Creative Suite-->C:\PROGRA~1\INSTAL~1\{D52EC~1\setup.exe /Relaunched=yes /Uninstall /Relaunched=yes

Adobe Flash Player 10 ActiveX-->C:\Windows\system32\Macromed\Flash\uninstall_activeX.exe

Adobe Flash Player Plugin-->C:\Windows\system32\Macromed\Flash\uninstall_plugin.exe

Adobe Reader 7.1.0-->MsiExec.exe /I{AC76BA86-7AD7-1033-7B44-A71000000002}

Adobe SVG Viewer 3.0-->C:\Program Files\Common Files\Adobe\SVG Viewer 3.0\Uninstall\Winstall.exe -u -fC:\Program Files\Common Files\Adobe\SVG Viewer 3.0\Uninstall\Install.log

Apple Mobile Device Support-->MsiExec.exe /I{44734179-8A79-4DEE-BB08-73037F065543}

Apple Software Update-->MsiExec.exe /I{02DFF6B1-1654-411C-8D7B-FD6052EF016F}

Assistant de connexion Windows Live-->MsiExec.exe /I{DCE8CD14-FBF5-4464-B9A4-E18E473546C7}

avast! Free Antivirus-->C:\Program Files\Alwil Software\Avast5\aswRunDll.exe "C:\Program Files\Alwil Software\Avast5\Setup\setiface.dll" RunSetup

Bonjour-->MsiExec.exe /I{07287123-B8AC-41CE-8346-3D777245C35B}

Broadcom Management Programs-->MsiExec.exe /I{C99C0593-3B48-41D9-B42F-6E035B320449}

CDisplay 1.8-->"C:\Program Files\CDisplay\unins000.exe"

Conexant HDA D330 MDC V.92 Modem-->C:\Program Files\CONEXANT\CNXT_MODEM_HDAUDIO_VEN_14F1&DEV_2C06&SUBSYS_14F1000F\HXFSETUP.EXE -U -Idel000fz.inf

Content Transfer-->MsiExec.exe /X{CFADE4AF-C0CF-4A04-A776-741318F1658F}

Dell DataSafe Online-->MsiExec.exe /I{2C6C74C2-042F-4D36-B7B0-0C538FCF01AB}

Dell Support Center-->MsiExec.exe /I{B8C54AB1-7E1A-40E8-B794-EDB6E8921F3A}

Dell System Customization Wizard-->MsiExec.exe /I{13BA7B44-B712-4DEE-A7B8-1DD564F37AE5}

Dell Touchpad-->C:\Program Files\DellTPad\Uninstap.exe ADDREMOVE

Dell Wireless WLAN Card-->"C:\Program Files\Dell\Dell Wireless WLAN Card\bcmwlu00.exe" verbose /rootkey="Software\Broadcom\802.11\UninstallInfo" /rootdir="C:\Program Files\Dell\Dell Wireless WLAN Card"

DellSupport-->MsiExec.exe /X{7EFA5E6F-74F7-4AFB-8AEA-AA790BD3A76D}

Digital Line Detect-->C:\Program Files\InstallShield Installation Information\{E646DCF0-5A68-11D5-B229-002078017FBF}\setup.exe -runfromtemp -l0x0009 -removeonly

DivX Codec-->C:\Program Files\DivX\DivXCodecUninstall.exe /CODEC

DivX Converter-->C:\Program Files\DivX\DivXConverterUninstall.exe /CONVERTER

DivX Player-->C:\Program Files\DivX\DivXPlayerUninstall.exe /PLAYER

DivX Web Player-->C:\Program Files\DivX\DivXWebPlayerUninstall.exe /PLUGIN

Download Manager 2.3.10-->C:\Program Files\Download Manager\uninst.exe

DVD Shrink 3.2-->"C:\Program Files\DVD Shrink\unins000.exe"

Games, Music, & Photos Launcher-->MsiExec.exe /I{3E25E350-949F-4DB7-8288-2A60E018B4C1}

Google Update Helper-->MsiExec.exe /I{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}

Heroes of Might & Magic V: Hammers of Fate-->RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{66FF4C48-0083-4E60-8556-B883AB200091}\setup.exe" -l0x40c

Heroes of Might and Magic V - Tribes of the East-->RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{66FF4C48-0083-4E60-8556-B883AB200092}\setup.exe" -l0x40c

Heroes of Might and Magic V Collector Edition-->RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{1898B8E5-43E2-4BCA-AD6A-B9FBE0C93F84}\setup.exe" -l0x40c

Hotfix for Microsoft .NET Framework 3.5 SP1 (KB953595)-->C:\Windows\system32\msiexec.exe /package {CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9} /uninstall /qb+ REBOOTPROMPT=""

Hotfix for Microsoft .NET Framework 3.5 SP1 (KB958484)-->C:\Windows\system32\msiexec.exe /package {CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9} /uninstall {A7EEA2F2-BFCD-4A54-A575-7B81A786E658} /qb+ REBOOTPROMPT=""

Installation Windows Live-->C:\Program Files\Windows Live\Installer\wlarp.exe

Installation Windows Live-->MsiExec.exe /I{46ABBC54-1872-4AA3-95E2-F2C063A63F31}

iTunes-->MsiExec.exe /I{585776BC-4BD6-4BD2-A19A-1D6CB44A403B}

Java SE Runtime Environment 6-->MsiExec.exe /I{3248F0A8-6813-11D6-A77B-00B0D0160000}

JMP 7-->RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\PROFES~1\RunTime\11\50\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{12089734-6365-4E86-A926-310AAED42527}\setup.exe" -l0x9 -removeonly

Junk Mail filter update-->MsiExec.exe /I{E2DFE069-083E-4631-9B6C-43C48E991DE5}

Loki-->"C:\Program Files\Loki\unins000.exe"

Loki-->C:\Program Files\Loki\unins000.exe

Malwarebytes' Anti-Malware-->"C:\Program Files\Malwarebytes' Anti-Malware\unins000.exe"

MediaDirect-->C:\Program Files\InstallShield Installation Information\{9C6978E8-B6D0-4AB7-A7A0-D81A74FBF745}\setup.exe -runfromtemp -l0x0009 -cluninstall

Microsoft .NET Framework 3.5 SP1-->C:\Windows\Microsoft.NET\Framework\v3.5\Microsoft .NET Framework 3.5 SP1\setup.exe

Microsoft .NET Framework 3.5 SP1-->MsiExec.exe /I{CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9}

Microsoft .NET Framework 4 Client Profile-->C:\Windows\Microsoft.NET\Framework\v4.0.30319\SetupCache\Client\Setup.exe /repair /x86 /parameterfolder Client

Microsoft .NET Framework 4 Client Profile-->MsiExec.exe /X{3C3901C5-3455-3E0A-A214-0B093A5070A6}

Microsoft Choice Guard-->MsiExec.exe /X{F0E12BBA-AD66-4022-A453-A1C8A0C4D570}

Microsoft Office 2007 Service Pack 2 (SP2)-->msiexec /package {90120000-0011-0000-0000-0000000FF1CE} /uninstall {0B36C6D6-F5D8-4EAF-BF94-4376A230AD5B}

Microsoft Office 2007 Service Pack 2 (SP2)-->msiexec /package {90120000-0015-040C-0000-0000000FF1CE} /uninstall {AE187E0D-EBA5-4EE1-A397-BF1A577CB24C}

Microsoft Office 2007 Service Pack 2 (SP2)-->msiexec /package {90120000-0016-040C-0000-0000000FF1CE} /uninstall {AE187E0D-EBA5-4EE1-A397-BF1A577CB24C}

Microsoft Office 2007 Service Pack 2 (SP2)-->msiexec /package {90120000-0018-040C-0000-0000000FF1CE} /uninstall {AE187E0D-EBA5-4EE1-A397-BF1A577CB24C}

Microsoft Office 2007 Service Pack 2 (SP2)-->msiexec /package {90120000-0019-040C-0000-0000000FF1CE} /uninstall {AE187E0D-EBA5-4EE1-A397-BF1A577CB24C}

Microsoft Office 2007 Service Pack 2 (SP2)-->msiexec /package {90120000-001A-040C-0000-0000000FF1CE} /uninstall {AE187E0D-EBA5-4EE1-A397-BF1A577CB24C}

Microsoft Office 2007 Service Pack 2 (SP2)-->msiexec /package {90120000-001B-040C-0000-0000000FF1CE} /uninstall {AE187E0D-EBA5-4EE1-A397-BF1A577CB24C}

Microsoft Office 2007 Service Pack 2 (SP2)-->msiexec /package {90120000-0044-040C-0000-0000000FF1CE} /uninstall {AE187E0D-EBA5-4EE1-A397-BF1A577CB24C}

Microsoft Office 2007 Service Pack 2 (SP2)-->msiexec /package {90120000-006E-040C-0000-0000000FF1CE} /uninstall {B165D3C2-40AE-4D39-86F7-E5C87C4264C0}

Microsoft Office Access MUI (French) 2007-->MsiExec.exe /X{90120000-0015-040C-0000-0000000FF1CE}

Microsoft Office Excel MUI (French) 2007-->MsiExec.exe /X{90120000-0016-040C-0000-0000000FF1CE}

Microsoft Office InfoPath MUI (French) 2007-->MsiExec.exe /X{90120000-0044-040C-0000-0000000FF1CE}

Microsoft Office Live Add-in 1.3-->MsiExec.exe /I{57F0ED40-8F11-41AA-B926-4A66D0D1A9CC}

Microsoft Office Outlook Connector-->MsiExec.exe /I{95120000-0122-040C-0000-0000000FF1CE}

Microsoft Office Outlook MUI (French) 2007-->MsiExec.exe /X{90120000-001A-040C-0000-0000000FF1CE}

Microsoft Office PowerPoint MUI (French) 2007-->MsiExec.exe /X{90120000-0018-040C-0000-0000000FF1CE}

Microsoft Office Professional Plus 2007-->"C:\Program Files\Common Files\Microsoft Shared\OFFICE12\Office Setup Controller\setup.exe" /uninstall PROPLUS /dll OSETUP.DLL

Microsoft Office Professional Plus 2007-->MsiExec.exe /X{90120000-0011-0000-0000-0000000FF1CE}

Microsoft Office Proof (Arabic) 2007-->MsiExec.exe /X{90120000-001F-0401-0000-0000000FF1CE}

Microsoft Office Proof (Dutch) 2007-->MsiExec.exe /X{90120000-001F-0413-0000-0000000FF1CE}

Microsoft Office Proof (English) 2007-->MsiExec.exe /X{90120000-001F-0409-0000-0000000FF1CE}

Microsoft Office Proof (French) 2007-->MsiExec.exe /X{90120000-001F-040C-0000-0000000FF1CE}

Microsoft Office Proof (German) 2007-->MsiExec.exe /X{90120000-001F-0407-0000-0000000FF1CE}

Microsoft Office Proof (Spanish) 2007-->MsiExec.exe /X{90120000-001F-0C0A-0000-0000000FF1CE}

Microsoft Office Proofing (French) 2007-->MsiExec.exe /X{90120000-002C-040C-0000-0000000FF1CE}

Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2)-->msiexec /package {90120000-001F-0401-0000-0000000FF1CE} /uninstall {14809F99-C601-4D4A-9391-F1E8FAA964C5}

Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2)-->msiexec /package {90120000-001F-0407-0000-0000000FF1CE} /uninstall {A0516415-ED61-419A-981D-93596DA74165}

Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2)-->msiexec /package {90120000-001F-0409-0000-0000000FF1CE} /uninstall {ABDDE972-355B-4AF1-89A8-DA50B7B5C045}

Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2)-->msiexec /package {90120000-001F-040C-0000-0000000FF1CE} /uninstall {F580DDD5-8D37-4998-968E-EBB76BB86787}

Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2)-->msiexec /package {90120000-001F-0413-0000-0000000FF1CE} /uninstall {D66D5A44-E480-4BA4-B4F2-C554F6B30EBB}

Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2)-->msiexec /package {90120000-001F-0C0A-0000-0000000FF1CE} /uninstall {187308AB-5FA7-4F14-9AB9-D290383A10D9}

Microsoft Office Publisher MUI (French) 2007-->MsiExec.exe /X{90120000-0019-040C-0000-0000000FF1CE}

Microsoft Office Shared MUI (French) 2007-->MsiExec.exe /X{90120000-006E-040C-0000-0000000FF1CE}

Microsoft Office Word MUI (French) 2007-->MsiExec.exe /X{90120000-001B-040C-0000-0000000FF1CE}

Microsoft Project Standard 2002-->MsiExec.exe /I{903A040C-6000-11D3-8CFE-0050048383C9}

Microsoft Search Enhancement Pack-->MsiExec.exe /X{4CBA3D4C-8F51-4D60-B27E-F6B641C571E7}

Microsoft Silverlight-->MsiExec.exe /X{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}

Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053-->MsiExec.exe /X{770657D0-A123-3C07-8E44-1C83EC895118}

Microsoft Visual C++ 2005 Redistributable-->MsiExec.exe /X{7299052b-02a4-4627-81f2-1818da5d550d}

Microsoft Visual C++ 2005 Redistributable-->MsiExec.exe /X{A49F249F-0C91-497F-86DF-B2585E8E76B7}

Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148-->MsiExec.exe /X{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}

Microsoft Works-->MsiExec.exe /I{6D52C408-B09A-4520-9B18-475B81D393F1}

Mise à jour Microsoft Office Excel 2007 Help (KB963678)-->msiexec /package {90120000-0016-040C-0000-0000000FF1CE} /uninstall {B761869A-B85C-40E2-994C-A1CE78AC8F2C}

Mise à jour Microsoft Office Outlook 2007 Help (KB963677)-->msiexec /package {90120000-001A-040C-0000-0000000FF1CE} /uninstall {51EFB347-1F3D-4BAC-8B79-F056B904FE21}

Mise à jour Microsoft Office Powerpoint 2007 Help (KB963669)-->msiexec /package {90120000-0018-040C-0000-0000000FF1CE} /uninstall {C3DCA38E-005E-41BA-A52A-7C3429F351C3}

Mise à jour Microsoft Office Word 2007 Help (KB963665)-->msiexec /package {90120000-001B-040C-0000-0000000FF1CE} /uninstall {81536A04-DBFB-4DB3-978F-0F284590C223}

Modem Diagnostic Tool-->MsiExec.exe /I{F63A3748-B93D-4360-9AD4-B064481A5C7B}

MSVCRT-->MsiExec.exe /I{22B775E7-6C42-4FC5-8E10-9A5E3257BD94}

MSXML 4.0 SP2 (KB927978)-->MsiExec.exe /I{37477865-A3F1-4772-AD43-AAFC6BCFF99F}

MSXML 4.0 SP2 (KB936181)-->MsiExec.exe /I{C04E32E0-0416-434D-AFB9-6969D703A9EF}

MSXML 4.0 SP2 (KB941833)-->MsiExec.exe /I{C523D256-313D-4866-B36A-F3DE528246EF}

MSXML 4.0 SP2 (KB954430)-->MsiExec.exe /I{86493ADD-824D-4B8E-BD72-8C5DCDC52A71}

MSXML 4.0 SP2 (KB973688)-->MsiExec.exe /I{F662A8E6-F4DC-41A2-901E-8C11F044BDEC}

NetWaiting-->C:\Program Files\InstallShield Installation Information\{3F92ABBB-6BBF-11D5-B229-002078017FBF}\setup.exe -runfromtemp -l0x0009 -removeonly

NWZ-E340 WALKMAN Guide-->MsiExec.exe /X{E33956B7-301C-429D-9E6C-2C12EACB8A62}

Outil de téléchargement Windows Live-->MsiExec.exe /I{205C6BDD-7B73-42DE-8505-9A093F35A238}

OutlookAddinSetup-->MsiExec.exe /I{9BDEF074-020E-458D-ADC5-8FF68E0C9B56}

Product Documentation Launcher-->MsiExec.exe /I{89CEAE14-DD0F-448E-9554-15781EC9DB24}

QuickSet-->MsiExec.exe /I{7F0C4457-8E64-491B-8D7B-991504365D1E}

QuickTime-->MsiExec.exe /I{1838C5A2-AB32-4145-85C1-BB9B8DFA24CD}

Real Alternative 1.7.5-->"C:\Program Files\Real Alternative\unins000.exe"

Roxio Creator Audio-->MsiExec.exe /I{83FFCFC7-88C6-41c6-8752-958A45325C82}

Roxio Creator BDAV Plugin-->MsiExec.exe /I{880AF49C-34F7-4285-A8AD-8F7A3D1C33DC}

Roxio Creator Copy-->MsiExec.exe /I{619CDD8A-14B6-43a1-AB6C-0F4EE48CE048}

Roxio Creator Data-->MsiExec.exe /I{0D397393-9B50-4c52-84D5-77E344289F87}

Roxio Creator DE-->MsiExec.exe /I{C8B0680B-CDAE-4809-9F91-387B6DE00F7C}

Roxio Creator Tools-->MsiExec.exe /I{0394CDC8-FABD-4ed8-B104-03393876DFDF}

Roxio Express Labeler-->MsiExec.exe /I{6675CA7F-E51B-4F6A-99D4-F8F0124C6EAA}

Roxio MyDVD DE-->MsiExec.exe /I{D639085F-4B6E-4105-9F37-A0DBB023E2FB}

Roxio Update Manager-->MsiExec.exe /I{30465B6C-B53F-49A1-9EBA-A3F187AD502E}

SAS Private JRE (J2SE Java Runtime Environment 1.4.2_09)-->C:\Program Files\SAS\Shared Files\JRE\1.4.2_09\_uninst\Uninst.exe

Security Update for 2007 Microsoft Office System (KB2288621)-->msiexec /package {90120000-0011-0000-0000-0000000FF1CE} /uninstall {5C497F0B-2061-4CC9-A61C-6B45B867354D}

Security Update for 2007 Microsoft Office System (KB2289158)-->msiexec /package {90120000-0011-0000-0000-0000000FF1CE} /uninstall {210B16C0-CEBD-4DE9-B474-04A7E8735E16}

Security Update for 2007 Microsoft Office System (KB2344875)-->msiexec /package {90120000-0011-0000-0000-0000000FF1CE} /uninstall {6FC5C4C1-D7AE-44C3-94B7-6424FC3E752F}

Security Update for 2007 Microsoft Office System (KB2345043)-->msiexec /package {90120000-0011-0000-0000-0000000FF1CE} /uninstall {536FB502-775F-4494-BACE-C02CC90B7A5B}

Security Update for 2007 Microsoft Office System (KB969559)-->msiexec /package {90120000-0011-0000-0000-0000000FF1CE} /uninstall {69F52148-9BF6-4CDC-BF76-103DEAF3DD08}

Security Update for 2007 Microsoft Office System (KB976321)-->msiexec /package {90120000-0011-0000-0000-0000000FF1CE} /uninstall {7F207DCA-3399-40CB-A968-6E5991B1421A}

Security Update for CAPICOM (KB931906)-->MsiExec.exe /I{0EFDF2F9-836D-4EB7-A32D-038BD3F1FB2A}

Security Update for CAPICOM (KB931906)-->MsiExec.exe /X{0EFDF2F9-836D-4EB7-A32D-038BD3F1FB2A}

Security Update for Microsoft .NET Framework 3.5 SP1 (KB2416473)-->C:\Windows\system32\msiexec.exe /package {CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9} /uninstall {A8894F19-59C8-38D2-8A75-36C0CCE56A5B} /qb+ REBOOTPROMPT=""

Security Update for Microsoft Office Access 2007 (KB979440)-->msiexec /package {90120000-0011-0000-0000-0000000FF1CE} /uninstall {1142CCEC-ACA9-484B-BA90-C3A5CA1988C5}

Security Update for Microsoft Office Access 2007 (KB979440)-->msiexec /package {90120000-0011-0000-0000-0000000FF1CE} /uninstall {5A4E43D5-858F-49BD-BA72-8F30E1793060}

Security Update for Microsoft Office Excel 2007 (KB2345035)-->msiexec /package {90120000-0011-0000-0000-0000000FF1CE} /uninstall {B23002DD-34EC-4988-B810-A5E2A0BF04F1}

Security Update for Microsoft Office InfoPath 2007 (KB979441)-->msiexec /package {90120000-0011-0000-0000-0000000FF1CE} /uninstall {1109D0B3-EFA3-4553-AAED-4C3E9AD130E8}

Security Update for Microsoft Office InfoPath 2007 (KB979441)-->msiexec /package {90120000-0011-0000-0000-0000000FF1CE} /uninstall {8CCB781A-CF6B-4FCB-B6D8-59C64DF5C6DB}

Security Update for Microsoft Office Outlook 2007 (KB2288953)-->msiexec /package {90120000-0011-0000-0000-0000000FF1CE} /uninstall {8B772E1C-7C05-42D2-839D-3EC2D39EFF22}

Security Update for Microsoft Office PowerPoint 2007 (KB982158)-->msiexec /package {90120000-0011-0000-0000-0000000FF1CE} /uninstall {F5B70033-E79C-4569-90BF-BC9B4E4F3F46}

Security Update for Microsoft Office PowerPoint Viewer (KB2413381)-->msiexec /package {90120000-0011-0000-0000-0000000FF1CE} /uninstall {3DED0A62-44C8-4E00-A785-5212F297A9D9}

Security Update for Microsoft Office Publisher 2007 (KB982124)-->msiexec /package {90120000-0011-0000-0000-0000000FF1CE} /uninstall {289FA8BC-6A8E-4341-B194-EB26B49E9F5D}

Security Update for Microsoft Office system 2007 (972581)-->msiexec /package {90120000-0011-0000-0000-0000000FF1CE} /uninstall {3D019598-7B59-447A-80AE-815B703B84FF}

Security Update for Microsoft Office system 2007 (KB974234)-->msiexec /package {90120000-0011-0000-0000-0000000FF1CE} /uninstall {FCD742B9-7A55-44BC-A776-F795F21FEDDC}

Security Update for Microsoft Office Visio Viewer 2007 (KB973709)-->msiexec /package {90120000-0011-0000-0000-0000000FF1CE} /uninstall {71127777-8B2C-4F97-AF7A-6CF8CAC8224D}

Security Update for Microsoft Office Word 2007 (KB2344993)-->msiexec /package {90120000-0011-0000-0000-0000000FF1CE} /uninstall {7A5B74FA-7A92-4FC9-821A-2DD5D4E73E48}

SigmaTel Audio-->RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\PROFES~1\RunTime\10\01\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{A462213D-EED4-42C2-9A60-7BDD4D4B0B17}\setup.exe" -l0x40c -remove -removeonly

Sonic Activation Module-->MsiExec.exe /I{35E1EC43-D4FC-4E4A-AAB3-20DDA27E8BB0}

System Requirements Lab-->MsiExec.exe /I{1E99F5D7-4262-4C7C-9135-F066E7485811}

Update for 2007 Microsoft Office System (KB967642)-->msiexec /package {90120000-0011-0000-0000-0000000FF1CE} /uninstall {C444285D-5E4F-48A4-91DD-47AAAA68E92D}

Update for Microsoft .NET Framework 3.5 SP1 (KB963707)-->C:\Windows\system32\msiexec.exe /package {CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9} /uninstall {B2AE9C82-DC7B-3641-BFC8-87275C4F3607} /qb+ REBOOTPROMPT=""

Update for Outlook 2007 Junk Email Filter (KB2443839)-->msiexec /package {90120000-0011-0000-0000-0000000FF1CE} /uninstall {E8CFA21A-2D44-446D-8324-ADFA3C9FCAD2}

URL Assistant-->regsvr32 /u /s "C:\Program Files\BAE\BAE.dll"

User's Guides-->RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\engine\6\INTEL3~1\ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{5CD29180-A95E-11D3-A4EB-00C04F7BDB2C}\setup.exe"

VideoLAN VLC media player 0.8.6f-->C:\Program Files\VideoLAN\VLC\uninstall.exe

WIDCOMM Bluetooth Software 6.0.1.3100-->MsiExec.exe /X{A13E07E1-A423-44FB-9DEE-B24C75C1BAF2}

Windows Live Call-->MsiExec.exe /I{82C7B308-0BDD-49D8-8EA5-9CD3A3F9DF41}

Windows Live Communications Platform-->MsiExec.exe /I{3B4E636E-9D65-4D67-BA61-189800823F52}

Windows Live Mail-->MsiExec.exe /I{5DD76286-9BE7-4894-A990-E905E91AC818}

Windows Live Messenger-->MsiExec.exe /X{770F1BEC-2871-4E70-B837-FB8525FFA3B1}

 

======Environment variables======

 

"ComSpec"=%SystemRoot%\system32\cmd.exe

"FP_NO_HOST_CHECK"=NO

"OS"=Windows_NT

"Path"=%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\System32\Wbem;C:\Program Files\Common Files\Roxio Shared\DLLShared\;C:\Program Files\Common Files\Roxio Shared\DLLShared\;C:\Program Files\Common Files\Roxio Shared\9.0\DLLShared\;C:\Program Files\QuickTime\QTSystem\

"PATHEXT"=.COM;.EXE;.BAT;.CMD;.VBS;.VBE;.JS;.JSE;.WSF;.WSH;.MSC

"PROCESSOR_ARCHITECTURE"=x86

"TEMP"=%SystemRoot%\TEMP

"TMP"=%SystemRoot%\TEMP

"USERNAME"=SYSTEM

"windir"=%SystemRoot%

"PROCESSOR_LEVEL"=6

"PROCESSOR_IDENTIFIER"=x86 Family 6 Model 15 Stepping 10, GenuineIntel

"PROCESSOR_REVISION"=0f0a

"NUMBER_OF_PROCESSORS"=2

"RoxioCentral"=C:\Program Files\Common Files\Roxio Shared\9.0\Roxio Central33\

"CLASSPATH"=.;C:\Program Files\Java\jre1.6.0\lib\ext\QTJava.zip

"QTJAVA"=C:\Program Files\Java\jre1.6.0\lib\ext\QTJava.zip

 

-----------------EOF-----------------

[rygabou]

Et log:

 

Logfile of random's system information tool 1.08 (written by random/random)

Run by Simon at 2010-11-27 13:22:08

Microsoft® Windows Vista™ Home Premium Service Pack 1

System drive C: has 4 GB (3%) free of 102 GB

Total RAM: 2037 MB (55% free)

 

Logfile of Trend Micro HijackThis v2.0.4

Scan saved at 13:22:32, on 2010-11-27

Platform: Windows Vista SP1 (WinNT 6.00.1905)

MSIE: Internet Explorer v7.00 (7.00.6001.18527)

Boot mode: Normal

 

Running processes:

C:\Windows\system32\Dwm.exe

C:\Windows\Explorer.EXE

C:\Program Files\Windows Defender\MSASCui.exe

C:\Windows\System32\hkcmd.exe

C:\Windows\System32\igfxpers.exe

C:\Windows\System32\WLTRAY.EXE

C:\Program Files\Common Files\InstallShield\UpdateService\issch.exe

C:\Program Files\Dell\MediaDirect\PCMService.exe

C:\Program Files\Adobe\Adobe Version Cue\ControlPanel\VersionCueTray.exe

C:\Program Files\iTunes\iTunesHelper.exe

C:\Program Files\Alwil Software\Avast5\AvastUI.exe

C:\Windows\system32\igfxsrvc.exe

C:\Program Files\SigmaTel\C-Major Audio\WDM\sttray.exe

C:\Program Files\Sony\Content Transfer\ContentTransferWMDetector.exe

C:\Windows\ehome\ehtray.exe

C:\Program Files\Windows Media Player\wmpnscfg.exe

C:\Program Files\Adobe\Adobe Acrobat 6.0\Distillr\acrotray.exe

C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe

C:\Program Files\Digital Line Detect\DLG.exe

C:\Program Files\Dell\QuickSet\quickset.exe

C:\Windows\ehome\ehmsas.exe

C:\Windows\system32\taskeng.exe

c:\Program Files\WIDCOMM\Bluetooth Software\BtStackServer.exe

C:\Program Files\Internet Explorer\ieuser.exe

C:\Windows\system32\wuauclt.exe

C:\Users\Simon\AppData\Local\Google\Chrome\Application\chrome.exe

C:\Users\Simon\AppData\Local\Google\Chrome\Application\chrome.exe

C:\Users\Simon\AppData\Local\Google\Chrome\Application\chrome.exe

C:\Users\Simon\Desktop\RSIT.exe

C:\Program Files\trend micro\Simon.exe

 

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = Dell Start Page

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = Bing

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = Dell Start Page

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = Dell Start Page

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = Bing

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = Bing

R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = MSN : Hotmail, Messenger, Bing, Actualité et Sport

R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =

R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Window Title = Internet Explorer provided by Dell

R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local

R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =

O1 - Hosts: ::1 localhost

O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll

O2 - BHO: (no name) - {5C255C8A-E604-49b4-9D64-90988571CECB} - (no file)

O2 - BHO: Search Helper - {6EBF7485-159F-4bff-A14F-B9E3AAC4465B} - C:\Program Files\Microsoft\Search Enhancement Pack\Search Helper\SEPsearchhelperie.dll

O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - c:\Program Files\Java\jre1.6.0\bin\ssv.dll

O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll

O2 - BHO: AcroIEToolbarHelper Class - {AE7CD045-E861-484f-8273-0445EE161910} - C:\Program Files\Adobe\Adobe Acrobat 6.0\Acrobat\AcroIEFavClient.dll

O2 - BHO: Browser Address Error Redirector - {CA6319C0-31B7-401E-A518-A07C3DB8F777} - C:\Program Files\BAE\BAE.dll

O3 - Toolbar: Adobe PDF - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files\Adobe\Adobe Acrobat 6.0\Acrobat\AcroIEFavClient.dll

O4 - HKLM\..\Run: [Windows Defender] %ProgramFiles%\Windows Defender\MSASCui.exe -hide

O4 - HKLM\..\Run: [igfxTray] C:\Windows\system32\igfxtray.exe

O4 - HKLM\..\Run: [HotKeysCmds] C:\Windows\system32\hkcmd.exe

O4 - HKLM\..\Run: [Persistence] C:\Windows\system32\igfxpers.exe

O4 - HKLM\..\Run: [broadcom Wireless Manager UI] C:\Windows\system32\WLTRAY.exe

O4 - HKLM\..\Run: [iSUSScheduler] "C:\Program Files\Common Files\InstallShield\UpdateService\issch.exe" -start

O4 - HKLM\..\Run: [PCMService] "C:\Program Files\Dell\MediaDirect\PCMService.exe"

O4 - HKLM\..\Run: [AdobeVersionCue] C:\Program Files\Adobe\Adobe Version Cue\ControlPanel\VersionCueTray.exe

O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\QTTask.exe" -atboottime

O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe"

O4 - HKLM\..\Run: [avast5] C:\PROGRA~1\ALWILS~1\Avast5\avastUI.exe /nogui

O4 - HKLM\..\Run: [Apoint] C:\Program Files\DellTPad\Apoint.exe

O4 - HKLM\..\Run: [sigmatelSysTrayApp] %ProgramFiles%\SigmaTel\C-Major Audio\WDM\sttray.exe

O4 - HKLM\..\Run: [ContentTransferWMDetector.exe] C:\Program Files\Sony\Content Transfer\ContentTransferWMDetector.exe

O4 - HKCU\..\Run: [ehTray.exe] C:\Windows\ehome\ehTray.exe

O4 - HKCU\..\Run: [Google Update] "C:\Users\Simon\AppData\Local\Google\Update\GoogleUpdate.exe" /c

O4 - HKCU\..\Run: [WMPNSCFG] C:\Program Files\Windows Media Player\WMPNSCFG.exe

O4 - HKCU\..\Run: [igndlm.exe] C:\Program Files\Download Manager\DLM.exe /windowsstart /startifwork

O4 - HKUS\S-1-5-19\..\Run: [sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'LOCAL SERVICE')

O4 - HKUS\S-1-5-19\..\Run: [WindowsWelcomeCenter] rundll32.exe oobefldr.dll,ShowWelcomeCenter (User 'LOCAL SERVICE')

O4 - HKUS\S-1-5-20\..\Run: [sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'NETWORK SERVICE')

O4 - Global Startup: Adobe Gamma Loader.lnk = C:\Program Files\Common Files\Adobe\Calibration\Adobe Gamma Loader.exe

O4 - Global Startup: Adobe Reader Speed Launch.lnk = C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe

O4 - Global Startup: Assistant d'Acrobat.lnk = C:\Program Files\Adobe\Adobe Acrobat 6.0\Distillr\acrotray.exe

O4 - Global Startup: Bluetooth.lnk = ?

O4 - Global Startup: Digital Line Detect.lnk = C:\Program Files\Digital Line Detect\DLG.exe

O4 - Global Startup: Microsoft Office.lnk = C:\Program Files\Microsoft Office\Office10\OSA.EXE

O4 - Global Startup: QuickSet.lnk = ?

O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~3\Office12\EXCEL.EXE/3000

O8 - Extra context menu item: Google Sidewiki... - res://C:\Program Files\Google\Google Toolbar\Component\GoogleToolbarDynamic_mui_en_950DF09FAB501E03.dll/cmsidewiki.html

O8 - Extra context menu item: Send image to &Bluetooth Device... - c:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie_ctx.htm

O8 - Extra context menu item: Send page to &Bluetooth Device... - c:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm

O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - c:\Program Files\Java\jre1.6.0\bin\npjpi160.dll

O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - c:\Program Files\Java\jre1.6.0\bin\npjpi160.dll

O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~3\Office12\REFIEBAR.DLL

O9 - Extra button: @btrez.dll,-4015 - {CCA281CA-C863-46ef-9331-5C8D4460577F} - c:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm

O9 - Extra 'Tools' menuitem: @btrez.dll,-12650 - {CCA281CA-C863-46ef-9331-5C8D4460577F} - c:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm

O16 - DPF: {39B0684F-D7BF-4743-B050-FDC3F48F7E3B} (CDownloadCtrl Object) - http://www.fileplanet.com/fpdlmgr/cabs/FPDC_2.3.10.115.cab

O16 - DPF: {40F576AD-8680-4F9E-9490-99D069CD665F} (System Requirements Lab Class) - http://srtest-cdn.systemrequirementslab.com.s3.amazonaws.com/bin/sysreqlabdetect.cab

O22 - SharedTaskScheduler: Component Categories cache daemon - {8C7461EF-2B13-11d2-BE35-3078302C2030} - C:\Windows\system32\browseui.dll

O23 - Service: Adobe LM Service - Unknown owner - C:\Program Files\Common Files\Adobe Systems Shared\Service\Adobelmsvc.exe

O23 - Service: AdobeVersionCue - Adobe Sytems - C:\Program Files\Adobe\Adobe Version Cue\service\VersionCue.exe

O23 - Service: Andrea ST Filters Service (AESTFilters) - Andrea Electronics Corporation - C:\Windows\system32\aestsrv.exe

O23 - Service: Apple Mobile Device - Apple, Inc. - C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe

O23 - Service: avast! Antivirus - AVAST Software - C:\Program Files\Alwil Software\Avast5\AvastSvc.exe

O23 - Service: avast! Mail Scanner - AVAST Software - C:\Program Files\Alwil Software\Avast5\AvastSvc.exe

O23 - Service: avast! Web Scanner - AVAST Software - C:\Program Files\Alwil Software\Avast5\AvastSvc.exe

O23 - Service: Service Bonjour (Bonjour Service) - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe

O23 - Service: Symantec Lic NetConnect service (CLTNetCnService) - Unknown owner - C:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe (file missing)

O23 - Service: DSBrokerService - Unknown owner - C:\Program Files\DellSupport\brkrsvc.exe

O23 - Service: Service Google Update (gupdate1c98fd46f7edd1) (gupdate1c98fd46f7edd1) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe

O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\1050\Intel 32\IDriverT.exe

O23 - Service: Service de l'iPod (iPod Service) - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe

O23 - Service: RoxMediaDB9 - Sonic Solutions - C:\Program Files\Common Files\Roxio Shared\9.0\SharedCOM\RoxMediaDB9.exe

O23 - Service: Roxio Hard Drive Watcher 9 (RoxWatch9) - Sonic Solutions - C:\Program Files\Common Files\Roxio Shared\9.0\SharedCOM\RoxWatch9.exe

O23 - Service: SigmaTel Audio Service (STacSV) - IDT, Inc. - C:\Windows\system32\STacSV.exe

O23 - Service: stllssvr - MicroVision Development, Inc. - C:\Program Files\Common Files\SureThing Shared\stllssvr.exe

O23 - Service: Dell Wireless WLAN Tray Service (wltrysvc) - Unknown owner - C:\Windows\System32\WLTRYSVC.EXE

O23 - Service: XAudioService - Conexant Systems, Inc. - C:\Windows\system32\DRIVERS\xaudio.exe

O23 - Service: {dkst! - Conexant Systems, Inc. - (no file)

 

--

End of file - 10616 bytes

 

======Scheduled tasks folder======

 

C:\Windows\tasks\GoogleUpdateTaskMachineCore.job

C:\Windows\tasks\GoogleUpdateTaskMachineUA.job

C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-2418779808-202553223-246998947-1000Core.job

C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-2418779808-202553223-246998947-1000UA.job

 

======Registry dump======

 

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{06849E9F-C8D7-4D59-B87D-784B7D6BE0B3}]

Adobe PDF Reader Link Helper - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll [2006-12-18 59032]

 

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{5C255C8A-E604-49b4-9D64-90988571CECB}]

 

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{6EBF7485-159F-4bff-A14F-B9E3AAC4465B}]

Search Helper - C:\Program Files\Microsoft\Search Enhancement Pack\Search Helper\SEPsearchhelperie.dll [2009-05-19 137600]

 

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]

SSVHelper Class - c:\Program Files\Java\jre1.6.0\bin\ssv.dll [2007-08-14 501384]

 

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]

Programme d'aide de l'Assistant de connexion Windows Live - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2009-01-22 408448]

 

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AE7CD045-E861-484f-8273-0445EE161910}]

AcroIEToolbarHelper Class - C:\Program Files\Adobe\Adobe Acrobat 6.0\Acrobat\AcroIEFavClient.dll [2003-05-15 147456]

 

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{CA6319C0-31B7-401E-A518-A07C3DB8F777}]

CBrowserHelperObject Object - C:\Program Files\BAE\BAE.dll [2007-03-16 98304]

 

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]

{47833539-D0C5-4125-9FA8-0819E2EAAC93} - Adobe PDF - C:\Program Files\Adobe\Adobe Acrobat 6.0\Acrobat\AcroIEFavClient.dll [2003-05-15 147456]

 

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]

"Windows Defender"=C:\Program Files\Windows Defender\MSASCui.exe [2008-01-19 1008184]

"IgfxTray"=C:\Windows\system32\igfxtray.exe [2007-05-15 138008]

"HotKeysCmds"=C:\Windows\system32\hkcmd.exe [2007-05-15 154392]

"Persistence"=C:\Windows\system32\igfxpers.exe [2007-05-15 133912]

"Broadcom Wireless Manager UI"=C:\Windows\system32\WLTRAY.exe [2007-03-21 1548288]

"ISUSScheduler"=C:\Program Files\Common Files\InstallShield\UpdateService\issch.exe [2006-10-03 81920]

""= []

"PCMService"=C:\Program Files\Dell\MediaDirect\PCMService.exe [2007-04-16 184320]

"AdobeVersionCue"=C:\Program Files\Adobe\Adobe Version Cue\ControlPanel\VersionCueTray.exe [2003-10-22 1732608]

"QuickTime Task"=C:\Program Files\QuickTime\QTTask.exe [2008-03-28 413696]

"iTunesHelper"=C:\Program Files\iTunes\iTunesHelper.exe [2008-03-30 267048]

"avast5"=C:\PROGRA~1\ALWILS~1\Avast5\avastUI.exe [2010-09-07 2838912]

"Apoint"=C:\Program Files\DellTPad\Apoint.exe [2007-04-17 159744]

"SigmatelSysTrayApp"=C:\Program Files\SigmaTel\C-Major Audio\WDM\sttray.exe [2007-09-07 405504]

"ContentTransferWMDetector.exe"=C:\Program Files\Sony\Content Transfer\ContentTransferWMDetector.exe [2009-07-30 497000]

 

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]

"ehTray.exe"=C:\Windows\ehome\ehTray.exe [2008-01-19 125952]

"Google Update"=C:\Users\Simon\AppData\Local\Google\Update\GoogleUpdate.exe [2008-09-04 133104]

"WMPNSCFG"=C:\Program Files\Windows Media Player\WMPNSCFG.exe [2008-01-19 202240]

"igndlm.exe"=C:\Program Files\Download Manager\DLM.exe [2009-10-27 1103216]

 

C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup

Adobe Gamma Loader.lnk - C:\Program Files\Common Files\Adobe\Calibration\Adobe Gamma Loader.exe

Adobe Reader Speed Launch.lnk - C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe

Assistant d'Acrobat.lnk - C:\Program Files\Adobe\Adobe Acrobat 6.0\Distillr\acrotray.exe

Bluetooth.lnk - C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe

Digital Line Detect.lnk - C:\Program Files\Digital Line Detect\DLG.exe

Microsoft Office.lnk - C:\Program Files\Microsoft Office\Office10\OSA.EXE

QuickSet.lnk - C:\Windows\Installer\{7F0C4457-8E64-491B-8D7B-991504365D1E}\NewShortcut2_53A01CC614B04512A2E710D39BF83DC4.exe

 

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\igfxcui]

C:\Windows\system32\igfxdev.dll [2007-05-15 204800]

 

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]

"dontdisplaylastusername"=0

"legalnoticecaption"=

"legalnoticetext"=

"shutdownwithoutlogon"=1

"undockwithoutlogon"=1

"EnableUIADesktopToggle"=0

 

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

 

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

 

======List of files/folders created in the last 1 months======

 

2010-11-27 13:22:08 ----D---- C:\rsit

2010-11-27 13:22:08 ----D---- C:\Program Files\trend micro

2010-11-25 20:52:00 ----D---- C:\Users\Simon\AppData\Roaming\Malwarebytes

2010-11-25 20:51:54 ----A---- C:\Windows\system32\drivers\mbamswissarmy.sys

2010-11-25 20:51:53 ----D---- C:\ProgramData\Malwarebytes

2010-11-25 20:51:53 ----D---- C:\Program Files\Malwarebytes' Anti-Malware

2010-11-25 20:51:53 ----A---- C:\Windows\system32\drivers\mbam.sys

 

======List of files/folders modified in the last 1 months======

 

2010-11-27 13:22:16 ----D---- C:\Windows\Temp

2010-11-27 13:22:08 ----RD---- C:\Program Files

2010-11-27 13:03:12 ----SHD---- C:\System Volume Information

2010-11-27 13:02:09 ----D---- C:\Windows\Logs

2010-11-26 17:30:24 ----D---- C:\Windows\Minidump

2010-11-26 17:29:38 ----D---- C:\Windows

2010-11-26 17:15:10 ----D---- C:\Windows\system32\catroot

2010-11-26 17:15:09 ----D---- C:\Windows\system32\catroot2

2010-11-26 17:15:08 ----D---- C:\Windows\winsxs

2010-11-25 20:51:54 ----D---- C:\Windows\system32\drivers

2010-11-25 20:51:53 ----HD---- C:\ProgramData

2010-11-25 20:18:54 ----D---- C:\Windows\system32\Tasks

2010-11-25 20:10:13 ----D---- C:\Program Files\Google

2010-11-25 20:08:51 ----AD---- C:\ProgramData\TEMP

2010-11-25 20:08:05 ----D---- C:\Windows\Tasks

2010-11-25 20:00:58 ----D---- C:\ProgramData\Google

2010-11-25 20:00:56 ----SHD---- C:\Windows\Installer

2010-11-25 18:04:51 ----D---- C:\Users\Simon\AppData\Roaming\Adobe

2010-11-14 12:21:32 ----D---- C:\Windows\Microsoft.NET

2010-11-14 12:21:30 ----RSD---- C:\Windows\assembly

2010-11-12 16:33:17 ----D---- C:\Windows\System32

2010-11-12 16:33:17 ----A---- C:\Windows\system32\PerfStringBackup.INI

2010-11-12 16:33:14 ----D---- C:\Windows\inf

2010-11-12 16:25:01 ----D---- C:\Program Files\Microsoft.NET

2010-11-11 23:18:58 ----D---- C:\Windows\system32\en-US

2010-11-10 22:42:38 ----D---- C:\ProgramData\Microsoft Help

2010-11-10 22:38:14 ----A---- C:\Windows\system32\mrt.exe

 

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

 

R0 iaStor;Intel AHCI Controller; C:\Windows\system32\drivers\iastor.sys [2007-02-12 277784]

R0 PxHelp20;PxHelp20; C:\Windows\System32\Drivers\PxHelp20.sys [2006-07-24 36528]

R1 aswRdr;aswRdr; C:\Windows\system32\drivers\aswRdr.sys [2010-09-07 23376]

R1 aswSP;aswSP; C:\Windows\system32\drivers\aswSP.sys [2010-09-07 165584]

R1 aswTdi;avast! Network Shield Support; C:\Windows\system32\drivers\aswTdi.sys [2010-09-07 46672]

R2 aswFsBlk;aswFsBlk; C:\Windows\system32\drivers\aswFsBlk.sys [2010-09-07 17744]

R2 aswMonFlt;aswMonFlt; \??\C:\Windows\system32\drivers\aswMonFlt.sys [2010-09-07 50768]

R2 dsunidrv;DellSupport UniDriver; C:\Windows\system32\DRIVERS\dsunidrv.sys [2007-02-25 5376]

R2 mdmxsdk;mdmxsdk; C:\Windows\system32\DRIVERS\mdmxsdk.sys [2006-06-19 12672]

R2 rimmptsk;rimmptsk; C:\Windows\system32\DRIVERS\rimmptsk.sys [2006-11-27 32256]

R2 rimsptsk;rimsptsk; C:\Windows\system32\DRIVERS\rimsptsk.sys [2006-11-27 43520]

R2 rismxdp;Ricoh xD-Picture Card Driver; C:\Windows\system32\DRIVERS\rixdptsk.sys [2006-11-27 37376]

R2 XAudio;XAudio; C:\Windows\system32\DRIVERS\xaudio.sys [2006-08-04 8192]

R3 ApfiltrService;Alps Touch Pad Filter Driver for Windows 2000/XP/Vista; C:\Windows\system32\DRIVERS\Apfiltr.sys [2007-04-12 157184]

R3 BCM43XX;Dell Wireless WLAN Card Driver; C:\Windows\system32\DRIVERS\bcmwl6.sys [2007-03-21 534016]

R3 bcm4sbxp;Broadcom 440x 10/100 Integrated Controller XP Driver; C:\Windows\system32\DRIVERS\bcm4sbxp.sys [2006-11-21 45568]

R3 BthEnum;Bluetooth Enumerator Service; C:\Windows\system32\DRIVERS\BthEnum.sys [2008-01-19 19456]

R3 BthPan;Bluetooth Device (Personal Area Network); C:\Windows\system32\DRIVERS\bthpan.sys [2008-01-19 92160]

R3 BTHUSB;Bluetooth Radio USB Driver; C:\Windows\System32\Drivers\BTHUSB.sys [2008-04-28 29184]

R3 btwaudio;Bluetooth Audio Device Service; C:\Windows\system32\drivers\btwaudio.sys [2006-11-06 78128]

R3 btwavdt;Bluetooth AVDT; C:\Windows\system32\drivers\btwavdt.sys [2006-11-06 80176]

R3 btwrchid;btwrchid; C:\Windows\system32\DRIVERS\btwrchid.sys [2006-11-06 16560]

R3 GEARAspiWDM;GEARAspiWDM; C:\Windows\System32\Drivers\GEARAspiWDM.sys [2008-01-29 16168]

R3 HSF_DPV;HSF_DPV; C:\Windows\system32\DRIVERS\HSX_DPV.sys [2006-11-02 986624]

R3 HSXHWAZL;HSXHWAZL; C:\Windows\system32\DRIVERS\HSXHWAZL.sys [2006-11-02 206848]

R3 igfx;igfx; C:\Windows\system32\DRIVERS\igdkmd32.sys [2007-05-15 1674240]

R3 RFCOMM;Bluetooth Device (RFCOMM Protocol TDI); C:\Windows\system32\DRIVERS\rfcomm.sys [2008-01-19 49664]

R3 sdbus;sdbus; C:\Windows\system32\DRIVERS\sdbus.sys [2008-01-19 88576]

R3 STHDA;SigmaTel High Definition Audio CODEC; C:\Windows\system32\drivers\stwrt.sys [2007-09-07 330240]

R3 winachsf;winachsf; C:\Windows\system32\DRIVERS\HSX_CNXT.sys [2006-11-02 659968]

S3 BTHPORT;Bluetooth Port Driver; C:\Windows\System32\Drivers\BTHport.sys [2008-04-28 220160]

S3 drmkaud;Microsoft Kernel DRM Audio Descrambler; C:\Windows\system32\drivers\drmkaud.sys [2008-01-19 5632]

S3 DSproct;DSproct; \??\C:\Program Files\DellSupport\GTAction\triggers\DSproct.sys [2006-10-05 4736]

S3 e1express;Intel® PRO/1000 PCI Express Network Connection Driver; C:\Windows\system32\DRIVERS\e1e6032.sys [2006-11-02 200704]

S3 HdAudAddService;Microsoft 1.1 UAA Function Driver for High Definition Audio Service; C:\Windows\system32\drivers\HdAudio.sys [2006-11-02 235520]

S3 MSKSSRV;Microsoft Streaming Service Proxy; C:\Windows\system32\drivers\MSKSSRV.sys [2008-01-19 8192]

S3 MSPCLOCK;Microsoft Streaming Clock Proxy; C:\Windows\system32\drivers\MSPCLOCK.sys [2008-01-19 5888]

S3 MSPQM;Microsoft Streaming Quality Manager Proxy; C:\Windows\system32\drivers\MSPQM.sys [2008-01-19 5504]

S3 MSTEE;Microsoft Streaming Tee/Sink-to-Sink Converter; C:\Windows\system32\drivers\MSTEE.sys [2008-01-19 6016]

S3 R300;R300; C:\Windows\system32\DRIVERS\atikmdag.sys [2006-11-02 2028032]

S3 WpdUsb;WpdUsb; C:\Windows\system32\DRIVERS\wpdusb.sys [2008-01-19 39936]

S3 WUDFRd;WUDFRd; C:\Windows\system32\DRIVERS\WUDFRd.sys [2008-01-19 83328]

 

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

 

R2 AESTFilters;Andrea ST Filters Service; C:\Windows\system32\aestsrv.exe [2007-08-29 73728]

R2 Apple Mobile Device;Apple Mobile Device; C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe [2008-02-18 110592]

R2 avast! Antivirus;avast! Antivirus; C:\Program Files\Alwil Software\Avast5\AvastSvc.exe [2010-09-07 40384]

R2 Bonjour Service;Service Bonjour; C:\Program Files\Bonjour\mDNSResponder.exe [2008-12-12 238888]

R2 BthServ;@%SystemRoot%\System32\bthserv.dll,-101; C:\Windows\system32\svchost.exe [2008-01-19 21504]

R2 SeaPort;SeaPort; C:\Program Files\Microsoft\Search Enhancement Pack\SeaPort\SeaPort.exe [2009-05-19 240512]

R2 STacSV;SigmaTel Audio Service; C:\Windows\system32\STacSV.exe [2007-09-07 102400]

R2 wltrysvc;Dell Wireless WLAN Tray Service; C:\Windows\System32\WLTRYSVC.EXE [2007-03-21 24064]

R2 XAudioService;XAudioService; C:\Windows\system32\DRIVERS\xaudio.exe [2006-08-04 386560]

R3 avast! Mail Scanner;avast! Mail Scanner; C:\Program Files\Alwil Software\Avast5\AvastSvc.exe [2010-09-07 40384]

R3 avast! Web Scanner;avast! Web Scanner; C:\Program Files\Alwil Software\Avast5\AvastSvc.exe [2010-09-07 40384]

R3 iPod Service;Service de l'iPod; C:\Program Files\iPod\bin\iPodService.exe [2008-03-30 504104]

S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-03-18 130384]

S2 CLTNetCnService;Symantec Lic NetConnect service; C:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe /h ccCommon []

S2 gupdate1c98fd46f7edd1;Service Google Update (gupdate1c98fd46f7edd1); C:\Program Files\Google\Update\GoogleUpdate.exe [2009-02-15 133104]

S2 RoxWatch9;Roxio Hard Drive Watcher 9; C:\Program Files\Common Files\Roxio Shared\9.0\SharedCOM\RoxWatch9.exe [2006-11-05 159744]

S3 Adobe LM Service;Adobe LM Service; C:\Program Files\Common Files\Adobe Systems Shared\Service\Adobelmsvc.exe [2008-03-17 68096]

S3 AdobeVersionCue;AdobeVersionCue; C:\Program Files\Adobe\Adobe Version Cue\service\VersionCue.exe [2003-10-22 61440]

S3 DSBrokerService;DSBrokerService; C:\Program Files\DellSupport\brkrsvc.exe [2007-03-19 70656]

S3 IDriverT;InstallDriver Table Manager; C:\Program Files\Common Files\InstallShield\Driver\1050\Intel 32\IDriverT.exe [2004-10-22 73728]

S3 odserv;Microsoft Office Diagnostics Service; C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE [2008-11-04 441712]

S3 ose;Office Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2006-10-26 145184]

S3 RoxMediaDB9;RoxMediaDB9; C:\Program Files\Common Files\Roxio Shared\9.0\SharedCOM\RoxMediaDB9.exe [2006-11-05 880640]

S3 stllssvr;stllssvr; C:\Program Files\Common Files\SureThing Shared\stllssvr.exe [2006-09-14 73728]

S3 WPFFontCache_v0400;@C:\Windows\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe,-100; C:\Windows\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe [2010-03-18 753504]

 

-----------------EOF-----------------

[pear]

Bonsoir,

 

Téléchargez Hijackthis de TrendMicro.

* Décompressez le dans un dossier à la racine du disque dur(généralement C:\)

* Lancer le fichier Hijackthis.exe

* Cliquer sur Do a system scan and save a log file

Cochez:

O2 - BHO: (no name) - {5C255C8A-E604-49b4-9D64-90988571CECB} - (no file)

O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe"

O4 - Global Startup: Bluetooth.lnk = ?

O4 - Global Startup: QuickSet.lnk = ?

O4 - HKLM\..\Run: [iSUSScheduler] "C:\Program Files\Common Files\InstallShield\UpdateService\issch.exe" -start

O4 - HKLM\..\Run: [AdobeVersionCue] C:\Program Files\Adobe\Adobe Version Cue\ControlPanel\VersionCueTray.exe

O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\QTTask.exe" -atboottime

O4 - HKUS\S-1-5-19\..\Run: [WindowsWelcomeCenter] rundll32.exe oobefldr.dll,ShowWelcomeCenter (User 'LOCAL SERVICE')

O4 - Global Startup: Adobe Gamma Loader.lnk = C:\Program Files\Common Files\Adobe\Calibration\Adobe Gamma Loader.exe

O4 - Global Startup: Adobe Reader Speed Launch.lnk = C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe

O4 - Global Startup: Digital Line Detect.lnk = C:\Program Files\Digital Line Detect\DLG.exe

O4 - Global Startup: Microsoft Office.lnk = C:\Program Files\Microsoft Office\Office10\OSA.EXE

O23 - Service: Service Bonjour (Bonjour Service) - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe

Cliquez sur fix checked.

 

Java n'est pas à jour,donc vulnérable.

Téléchargez Javara

vers le bureau.

Dézippez.

lancez Javara.exe

clic sur mise à jour via jucheck

 

ou , si vous préférez par le site de Sun:

Download Now

S'ouvre une nouvelle page.

Vous descendrez là:

Java Runtime Environment (JRE) 6 Update 22

Clic sur Download

Nouvelle page.

Sélectionnez votre platform->Windows

Cochez "I agree to the java..."

clic sur continue

Nouvelle page

Cochez:

Windows Online Installation

Cochez la flèche orange

" Cochez ici"jre-6u22-windows-i586-p-iftw.exe

 

clic sur installer

 

Revenez dans JavaRa

 

Cliquez Effacer les anciennes versions

Puis..... Autres Options ->Cocher Effacer les fichiers JRE Inutiles ->Exécuter

 

 

Il n'y a pas d'infection visible.

Pour voir s'y en a de cachées:

 

Télécharger GMER

clic sur "Download EXE" et télécharger le fichier sur le bureau.

 

Désactiver les protection (antivirus, antispyware etc) et fermer tous les programmes ouverts.

Double-clic sur le fichier GMER téléchargé.

- Dans la section de droite de la fenêtre de l'outil, Vérifiez que soient décochées :

Show All

Une fois lancé, clic droit sur le fond blanc et clic sur "Only Non MS files"

Clic en bas à droite sur le bouton "Scan" pour lancer le scan.

 

 

Lorsque le scan est terminé, clic sur "Copy"

 

Il peut arriver que GMER plante sans raison apparente.

Vous pouvez essayer ceci : décocher "Devices" dans un premier temps et repasser l'outil ;

si ça coince toujours, décocher en plus "Files" et ré-essayez un scan.

Lorsque les informations sur le scan s'affichent , les éléments détectés comme rootkit apparaissent en rouge dans chaque section.

 

 

Ouvrez le bloc-note et clic sur le Menu Edition / Coller

Le rapport doit alors apparaître.

Enregistrer le fichier sur le bureau et copier/coller le contenu.

[rygabou]

Bonjour Pear

Voici le rapport:

 

GMER 1.0.15.15530 - GMER - Rootkit Detector and Remover

Rootkit scan 2010-11-30 18:48:26

Windows 6.0.6001 Service Pack 1

Running: oxrqg7uq.exe; Driver: C:\Users\Simon\AppData\Local\Temp\pglcypog.sys

 

 

---- Modules - GMER 1.0.15 ----

 

Module \SystemRoot\system32\drivers\iastorv.sys (Intel Matrix Storage Manager driver (base)/Intel Corporation) 82E03000-82EA3000 (655360 bytes)

Module \SystemRoot\system32\drivers\iastor.sys (Intel Matrix Storage Manager driver - ia32/Intel Corporation) 82EA3000-82F61000 (778240 bytes)

Module \SystemRoot\System32\Drivers\PxHelp20.sys (Px Engine Device Driver for Windows 2000/XP/Sonic Solutions) 82FC9000-82FD2000 (36864 bytes)

Module \SystemRoot\system32\DRIVERS\igdkmd32.sys (Intel Graphics Kernel Mode Driver/Intel Corporation) 8C802000-8CDE8000 (6184960 bytes)

Module \SystemRoot\system32\DRIVERS\bcmwl6.sys (Broadcom 802.11 Network Adapter wireless driver/Broadcom Corporation) 8DD1F000-8DDA5000 (548864 bytes)

Module \SystemRoot\system32\DRIVERS\bcm4sbxp.sys (Broadcom Corporation NDIS 5.1 ethernet driver/Broadcom Corporation) 8DDA5000-8DDB5000 (65536 bytes)

Module \SystemRoot\system32\DRIVERS\rimmptsk.sys (RICOH MMC Driver/REDC) 8DDED000-8DDFB000 (57344 bytes)

Module \SystemRoot\system32\DRIVERS\rimsptsk.sys (RICOH MS Driver/REDC) 8CDE8000-8CDFC000 (81920 bytes)

Module \SystemRoot\system32\DRIVERS\rixdptsk.sys (RICOH XD SM Driver/REDC) 805AC000-805FD000 (331776 bytes)

Module \SystemRoot\system32\DRIVERS\Apfiltr.sys (Alps Touch Pad Driver/Alps Electric Co., Ltd.) 82FD2000-82FFE000 (180224 bytes)

Module \SystemRoot\System32\Drivers\GEARAspiWDM.sys (CD DVD Filter/GEAR Software Inc.) 8DDFB000-8DDFE000 (12288 bytes)

Module \SystemRoot\system32\DRIVERS\mssmbios.sys (System Management BIOS Driver/Microsoft Corporation) 8E506000-8E510000 (40960 bytes)

Module \SystemRoot\system32\drivers\stwrt.sys (NDHF/IDT, Inc.) 8E562000-8E5B7000 (348160 bytes)

Module \SystemRoot\system32\DRIVERS\HSXHWAZL.sys (HSF_HWAZL WDM driver/Conexant Systems, Inc.) 8F432000-8F46F000 (249856 bytes)

Module \SystemRoot\system32\DRIVERS\HSX_DPV.sys (HSF_DP driver/Conexant Systems, Inc.) 8F46F000-8F572000 (1060864 bytes)

Module \SystemRoot\system32\DRIVERS\HSX_CNXT.sys (HSF_CNXT driver/Conexant Systems, Inc.) 8F605000-8F6B9000 (737280 bytes)

Module \SystemRoot\System32\Drivers\aswTdi.SYS (avast! TDI Filter Driver/AVAST Software) 8F762000-8F76C000 (40960 bytes)

Module \SystemRoot\System32\Drivers\aswRdr.SYS (avast! TDI RDR Driver/AVAST Software) 8F7C8000-8F7CD000 (20480 bytes)

Module \SystemRoot\System32\Drivers\aswSP.SYS (avast! self protection module/AVAST Software) 8F806000-8F82D000 (159744 bytes)

Module \SystemRoot\system32\drivers\btwavdt.sys (Broadcom Bluetooth AVDT Service/Broadcom Corporation.) 8F8AA000-8F910000 (417792 bytes)

Module \SystemRoot\system32\drivers\btwaudio.sys (Bluetooth Audio Device/Broadcom Corporation.) 8F910000-8F98B000 (503808 bytes)

Module \SystemRoot\system32\DRIVERS\btwrchid.sys (Bluetooth Remote Control HID Minidriver/Broadcom Corporation.) 8F98B000-8F98E000 (12288 bytes)

Module \??\C:\Windows\system32\drivers\aswMonFlt.sys (avast! File System Minifilter for Windows 2003/Vista/AVAST Software) 9860D000-98644000 (225280 bytes)

Module \SystemRoot\System32\Drivers\aswFsBlk.SYS (avast! File System Access Blocking Driver/AVAST Software) 98644000-98647000 (12288 bytes)

Module \SystemRoot\system32\DRIVERS\dsunidrv.sys (GUniDriver/Gteko Ltd.) 97338000-9733A000 (8192 bytes)

Module \SystemRoot\system32\DRIVERS\mdmxsdk.sys (Diagnostic Interface x86 Driver/Conexant) 9733A000-9733E000 (16384 bytes)

Module \SystemRoot\System32\Drivers\secdrv.SYS (Macrovision SECURITY Driver/Macrovision Corporation, Macrovision Europe Limited, and Macrovision Japan and Asia K.K.) B3D10000-B3D1A000 (40960 bytes)

Module \SystemRoot\system32\DRIVERS\xaudio.sys (Modem Audio Device Driver/Conexant Systems, Inc.) B3D26000-B3D2E000 (32768 bytes)

Module \??\C:\Users\Simon\AppData\Local\Temp\pglcypog.sys (GMER) B3D2E000-B3D46000 (98304 bytes)

 

---- Processes - GMER 1.0.15 ----

 

Process C:\Windows\system32\csrss.exe (Client Server Runtime Process/Microsoft Corporation) 588

Library C:\Windows\system32\USP10.dll (Uniscribe Unicode script processor/Microsoft Corporation) 0x76FC0000

 

Process C:\Windows\system32\wininit.exe (Windows Start-Up Application/Microsoft Corporation) 632

Library C:\Windows\system32\USP10.dll (Uniscribe Unicode script processor/Microsoft Corporation) 0x76FC0000

 

Process C:\Windows\system32\csrss.exe (Client Server Runtime Process/Microsoft Corporation) 644

Library C:\Windows\system32\USP10.dll (Uniscribe Unicode script processor/Microsoft Corporation) 0x76FC0000

 

Process C:\Windows\system32\services.exe (Services and Controller app/Microsoft Corporation) 676

Library C:\Windows\system32\USP10.dll (Uniscribe Unicode script processor/Microsoft Corporation) 0x76FC0000

 

Process C:\Windows\system32\lsass.exe (Local Security Authority Process/Microsoft Corporation) 688

Library C:\Windows\system32\USP10.dll (Uniscribe Unicode script processor/Microsoft Corporation) 0x76FC0000

 

Process C:\Windows\system32\lsm.exe (Local Session Manager Service/Microsoft Corporation) 696

Library C:\Windows\system32\USP10.dll (Uniscribe Unicode script processor/Microsoft Corporation) 0x76FC0000

 

Process C:\Program Files\Dell\MediaDirect\PCMService.exe (CyberLink PowerCinema Resident Program/CyberLink Corp.) 748

Library C:\Program Files\Dell\MediaDirect\PCMService.exe (CyberLink PowerCinema Resident Program/CyberLink Corp.) 0x00400000

Library C:\Windows\system32\USP10.dll (Uniscribe Unicode script processor/Microsoft Corporation) 0x76FC0000

Library C:\Windows\system32\MSIMG32.dll (GDIEXT Client DLL/Microsoft Corporation) 0x74BA0000

Library C:\Program Files\Dell\MediaDirect\Kernel\common\CLRCEngine3.dll (Cyberlink Remote Control Module for PCM/CyberLink Corp.) 0x10000000

 

Process C:\Windows\system32\winlogon.exe (Windows Logon Application/Microsoft Corporation) 820

Library C:\Windows\system32\USP10.dll (Uniscribe Unicode script processor/Microsoft Corporation) 0x76FC0000

 

Process C:\Windows\system32\svchost.exe (Host Process for Windows Services/Microsoft Corporation) 884

Library C:\Windows\system32\USP10.dll (Uniscribe Unicode script processor/Microsoft Corporation) 0x76FC0000

 

Process C:\Windows\System32\spoolsv.exe (Spooler SubSystem App/Microsoft Corporation) 948

Library C:\Windows\system32\USP10.dll (Uniscribe Unicode script processor/Microsoft Corporation) 0x76FC0000

Library C:\Windows\system32\AdobePDF.dll (Acrobat ® PDF Port/Adobe Systems Incorporated.) 0x50400000

Library C:\Program Files\Adobe\Adobe Acrobat 6.0\Distillr\AdistRes.FRA 0x10000000

Library C:\Windows\System32\usbmon.dll (Standard Dynamic Printing Port Monitor DLL/Microsoft Corporation) 0x6E500000

Library C:\Program Files\Bonjour\mdnsNSP.dll (Bonjour Namespace Provider/Apple Inc.) 0x16080000

 

Process C:\Windows\system32\svchost.exe (Host Process for Windows Services/Microsoft Corporation) 964

Library C:\Windows\system32\USP10.dll (Uniscribe Unicode script processor/Microsoft Corporation) 0x76FC0000

 

Process C:\Windows\System32\svchost.exe (Host Process for Windows Services/Microsoft Corporation) 1012

Library C:\Windows\system32\USP10.dll (Uniscribe Unicode script processor/Microsoft Corporation) 0x76FC0000

 

Process C:\Windows\System32\svchost.exe (Host Process for Windows Services/Microsoft Corporation) 1100

Library C:\Windows\system32\USP10.dll (Uniscribe Unicode script processor/Microsoft Corporation) 0x76FC0000

Library C:\Windows\system32\stapo.dll (Audio LFX/GFX/IDT, Inc.) 0x71E10000

Library C:\Windows\system32\ctapo32.dll (Creative Audio Processing Object Module/Creative Technology Ltd.) 0x71D90000

 

Process C:\Windows\System32\svchost.exe (Host Process for Windows Services/Microsoft Corporation) 1160

Library C:\Windows\system32\USP10.dll (Uniscribe Unicode script processor/Microsoft Corporation) 0x76FC0000

Library c:\windows\system32\tabsvc.dll (Microsoft Tablet PC Input Service/Microsoft Corporation) 0x73DF0000

Library C:\Windows\System32\ACTIVEDS.dll (ADs Router Layer DLL/Microsoft Corporation) 0x74400000

 

Process C:\Program Files\Windows Defender\MSASCui.exe (Windows Defender User Interface/Microsoft Corporation) 1176

Library C:\Windows\system32\USP10.dll (Uniscribe Unicode script processor/Microsoft Corporation) 0x76FC0000

 

Process C:\Windows\system32\svchost.exe (Host Process for Windows Services/Microsoft Corporation) 1184

Library C:\Windows\system32\USP10.dll (Uniscribe Unicode script processor/Microsoft Corporation) 0x76FC0000

Library C:\Windows\system32\ACTIVEDS.dll (ADs Router Layer DLL/Microsoft Corporation) 0x74400000

Library C:\Program Files\Bonjour\mdnsNSP.dll (Bonjour Namespace Provider/Apple Inc.) 0x16080000

Library C:\Windows\system32\wbem\ncprov.dll (Non-COM WMI Event Provision APIs/Microsoft Corporation) 0x69B80000

Library C:\Windows\system32\MSIMG32.dll (GDIEXT Client DLL/Microsoft Corporation) 0x74BA0000

 

Process C:\Windows\system32\AUDIODG.EXE (Windows Audio Device Graph Isolation /Microsoft Corporation) 1268

Library C:\Windows\system32\USP10.dll (Uniscribe Unicode script processor/Microsoft Corporation) 0x76FC0000

Library C:\Windows\system32\stapo.dll (Audio LFX/GFX/IDT, Inc.) 0x71E10000

Library C:\Windows\system32\aestaren.dll (Render Noise Filters (32-bit)/Andrea Electronics Corporation) 0x72550000

Library C:\Windows\system32\ctapo32.dll (Creative Audio Processing Object Module/Creative Technology Ltd.) 0x71D90000

 

Process C:\Windows\system32\SLsvc.exe (Microsoft Software Licensing Service/Microsoft Corporation) 1300

Library C:\Windows\system32\USP10.dll (Uniscribe Unicode script processor/Microsoft Corporation) 0x76FC0000

 

Process C:\Windows\system32\svchost.exe (Host Process for Windows Services/Microsoft Corporation) 1324

Library C:\Windows\system32\USP10.dll (Uniscribe Unicode script processor/Microsoft Corporation) 0x76FC0000

Library c:\windows\system32\webclnt.dll (Web DAV Service DLL/Microsoft Corporation) 0x74580000

Library c:\windows\system32\upnphost.dll (UPnP Device Host/Microsoft Corporation) 0x6BC50000

Library C:\Windows\System32\npmproxy.dll (Network List Manager Proxy/Microsoft Corporation) 0x6C7F0000

Library C:\Program Files\Bonjour\mdnsNSP.dll (Bonjour Namespace Provider/Apple Inc.) 0x16080000

 

Process C:\Users\Simon\Desktop\oxrqg7uq.exe 1348

Library C:\Users\Simon\Desktop\oxrqg7uq.exe 0x00400000

Library C:\Windows\system32\USP10.dll (Uniscribe Unicode script processor/Microsoft Corporation) 0x76FC0000

 

Process C:\Windows\System32\hkcmd.exe (hkcmd Module/Intel Corporation) 1364

Library C:\Windows\System32\hkcmd.exe (hkcmd Module/Intel Corporation) 0x00400000

Library C:\Windows\System32\hccutils.DLL (hccutils Module/Intel Corporation) 0x10000000

Library C:\Windows\system32\USP10.dll (Uniscribe Unicode script processor/Microsoft Corporation) 0x76FC0000

Library C:\Windows\system32\igfxsrvc.dll (igfxsrvc Module/Intel Corporation) 0x003C0000

Library C:\Intel\ExtremeGraphics\CUI\Resource\igfxres.dll (igfxres Module/Intel Corporation) 0x01910000

 

Process C:\Windows\System32\igfxpers.exe (persistence Module/Intel Corporation) 1408

Library C:\Windows\System32\igfxpers.exe (persistence Module/Intel Corporation) 0x00400000

Library C:\Windows\system32\USP10.dll (Uniscribe Unicode script processor/Microsoft Corporation) 0x76FC0000

Library C:\Windows\system32\igfxsrvc.dll (igfxsrvc Module/Intel Corporation) 0x10000000

 

Process C:\Windows\system32\svchost.exe (Host Process for Windows Services/Microsoft Corporation) 1452

Library C:\Windows\system32\USP10.dll (Uniscribe Unicode script processor/Microsoft Corporation) 0x76FC0000

Library c:\windows\system32\ACTIVEDS.dll (ADs Router Layer DLL/Microsoft Corporation) 0x74400000

Library C:\Windows\system32\ndptsp.tsp (NDIS Proxy TAPI Service Provider/Microsoft Corporation) 0x697A0000

Library C:\Program Files\Bonjour\mdnsNSP.dll (Bonjour Namespace Provider/Apple Inc.) 0x16080000

 

Process C:\Program Files\SigmaTel\C-Major Audio\WDM\sttray.exe (Sigmatel Audio system tray application/IDT, Inc.) 1508

Library C:\Program Files\SigmaTel\C-Major Audio\WDM\sttray.exe (Sigmatel Audio system tray application/IDT, Inc.) 0x00400000

Library C:\Program Files\SigmaTel\C-Major Audio\WDM\STLang.dll (Localize Module/SigmaTel, Inc.) 0x10000000

Library C:\Windows\system32\USP10.dll (Uniscribe Unicode script processor/Microsoft Corporation) 0x76FC0000

Library C:\Windows\system32\stapi32.dll (STACAPI.DLL/IDT, Inc.) 0x6DBB0000

 

Process C:\Windows\System32\WLTRYSVC.EXE 1628

Library C:\Windows\System32\WLTRYSVC.EXE 0x00400000

Library C:\Windows\system32\USP10.dll (Uniscribe Unicode script processor/Microsoft Corporation) 0x76FC0000

 

Process C:\Windows\System32\bcmwltry.exe (Dell Wireless WLAN Card Wireless Network Controller/Dell Inc.) 1644

Library C:\Windows\System32\bcmwltry.exe (Dell Wireless WLAN Card Wireless Network Controller/Dell Inc.) 0x00400000

Library C:\Windows\system32\USP10.dll (Uniscribe Unicode script processor/Microsoft Corporation) 0x76FC0000

Library C:\Windows\System32\bcmwlrmt.dll 0x10000000

Library C:\Windows\System32\wltrynt.dll (Wireless Notification Provider/Broadcom Corporation) 0x01B00000

 

Process C:\Program Files\Alwil Software\Avast5\AvastSvc.exe (avast! Service/AVAST Software) 1652

Library C:\Program Files\Alwil Software\Avast5\AvastSvc.exe (avast! Service/AVAST Software) 0x00400000

Library C:\Program Files\Alwil Software\Avast5\aswCmnBS.dll (Common functions/AVAST Software) 0x72C20000

Library C:\Program Files\Alwil Software\Avast5\aswCmnOS.dll (Antivirus HW dependent library/AVAST Software) 0x72F70000

Library C:\Program Files\Alwil Software\Avast5\aswCmnIS.dll (Antivirus independent functions/AVAST Software) 0x72B80000

Library C:\Program Files\Alwil Software\Avast5\ashBase.dll (Basic Functionality Module/AVAST Software) 0x64500000

Library C:\Program Files\Alwil Software\Avast5\aswEngLdr.dll (Antivirus engine loader/AVAST Software) 0x64BC0000

Library C:\Windows\system32\USP10.dll (Uniscribe Unicode script processor/Microsoft Corporation) 0x76FC0000

Library C:\Program Files\Alwil Software\Avast5\1036\Base.dll (avast! French Basic Module/AVAST Software) 0x66080000

Library C:\Program Files\Alwil Software\Avast5\ashServ.dll (avast! antivirus service/AVAST Software) 0x65080000

Library C:\Program Files\Alwil Software\Avast5\aswAux.dll (avast! Auxiliary Library/AVAST Software) 0x64580000

Library C:\Program Files\Alwil Software\Avast5\ashTask.dll (Task Handling Module/AVAST Software) 0x64800000

Library C:\Program Files\Alwil Software\Avast5\ashTaskEx.dll (avast! TaskEx library/AVAST Software) 0x73090000

Library C:\Program Files\Alwil Software\Avast5\aswLog.dll (avast! Log library/AVAST Software) 0x64700000

Library C:\Program Files\Alwil Software\Avast5\aswSqLt.dll (avast! SQLite library/AVAST Software) 0x64840000

Library C:\Program Files\Alwil Software\Avast5\aswProperty.dll (avast! Property Storage library/AVAST Software) 0x64740000

Library C:\Program Files\Alwil Software\Avast5\Aavm4h.dll (avast! Asynchronous Virus Monitor (AAVM)/AVAST Software) 0x65000000

Library C:\Program Files\Alwil Software\Avast5\AavmRpch.dll (avast! AAVM Remote Procedure Call Library/AVAST Software) 0x65400000

Library C:\Program Files\Alwil Software\Avast5\aswIdle.dll (avast! Idle Hook Library/AVAST Software) 0x64A00000

Library C:\Windows\system32\FltLib.dll (Filter Library/Microsoft Corporation) 0x71550000

Library C:\Program Files\Alwil Software\Avast5\AhResBhv.dll (avast! Behavior Shield AAVM Provider Library/AVAST Software) 0x65920000

Library C:\Program Files\Alwil Software\Avast5\AhResMai.dll (avast! e-Mail Scanner AAVM Provider Library/AVAST Software) 0x65840000

Library C:\Program Files\Alwil Software\Avast5\ahResMes.dll (avast! Messenger scanner AAVM Provider Library/AVAST Software) 0x65880000

Library C:\Program Files\Alwil Software\Avast5\AhResNS.dll (avast! Network Shield AAVM Provider Library/AVAST Software) 0x658C0000

Library C:\Program Files\Alwil Software\Avast5\ahResP2P.dll (avast! P2P Shield AAVM Provider Library/AVAST Software) 0x658A0000

Library C:\Program Files\Alwil Software\Avast5\AhResStd.dll (avast! Standard Shield AAVM Provider Library/AVAST Software) 0x65800000

Library C:\Program Files\Alwil Software\Avast5\AhResWS.dll (avast! HTTP Scanner AAVM Provider Library/AVAST Software) 0x658E0000

Library C:\Program Files\Bonjour\mdnsNSP.dll (Bonjour Namespace Provider/Apple Inc.) 0x16080000

Library C:\Program Files\Alwil Software\Avast5\ashMaiSv.dll (avast! e-Mail Scanner Service/AVAST Software) 0x65200000

Library C:\Program Files\Alwil Software\Avast5\ashWebSv.dll (avast! Web Scanner/AVAST Software) 0x65100000

Library C:\Program Files\Alwil Software\Avast5\ashWsFtr.dll (avast! Web Shield Filter Module/AVAST Software) 0x68300000

Library C:\Program Files\Alwil Software\Avast5\aswDld.dll 0x646C0000

Library C:\Program Files\Alwil Software\Avast5\defs\10113001\aswEngin.dll (High level antivirus engine/AVAST Software) 0x090B0000

Library C:\Program Files\Alwil Software\Avast5\defs\10113001\aswCmnOS.dll (Antivirus HW dependent library/AVAST Software) 0x68FA0000

Library C:\Program Files\Alwil Software\Avast5\defs\10113001\aswCmnIS.dll (Antivirus independent functions/AVAST Software) 0x670E0000

Library C:\Program Files\Alwil Software\Avast5\defs\10113001\aswCmnBS.dll (Common functions/AVAST Software) 0x67040000

Library C:\Program Files\Alwil Software\Avast5\defs\10113001\aswScan.dll (Low level antivirus engine/AVAST Software) 0x01ED0000

Library C:\Program Files\Alwil Software\Avast5\defs\10113001\algo.dll 0x093D0000

Library C:\Program Files\Alwil Software\Avast5\defs\10113001\arPot.dll (ArPot usermode dll component/AVAST Software) 0x63B20000

 

Process C:\Windows\system32\taskeng.exe (Task Scheduler Engine/Microsoft Corporation) 1748

Library C:\Windows\system32\USP10.dll (Uniscribe Unicode script processor/Microsoft Corporation) 0x76FC0000

Library C:\Windows\system32\pautoenr.dll (Auto Enrollment DLL/Microsoft Corporation) 0x69300000

 

Process C:\Windows\System32\WLTRAY.EXE (Dell Wireless WLAN Card Wireless Network Tray Applet/Dell Inc.) 1760

Library C:\Windows\System32\WLTRAY.EXE (Dell Wireless WLAN Card Wireless Network Tray Applet/Dell Inc.) 0x00400000

Library C:\Windows\System32\MSIMG32.dll (GDIEXT Client DLL/Microsoft Corporation) 0x74BA0000

Library C:\Windows\system32\USP10.dll (Uniscribe Unicode script processor/Microsoft Corporation) 0x76FC0000

Library C:\Windows\System32\bcmwlrmt.dll 0x10000000

 

Process C:\Program Files\Alwil Software\Avast5\AvastUI.exe (avast! Antivirus/AVAST Software) 1816

Library C:\Program Files\Alwil Software\Avast5\AvastUI.exe (avast! Antivirus/AVAST Software) 0x00400000

Library C:\Program Files\Alwil Software\Avast5\aswUtil.dll (avast! Utility library/AVAST Software) 0x64780000

Library C:\Program Files\Alwil Software\Avast5\ashBase.dll (Basic Functionality Module/AVAST Software) 0x64500000

Library C:\Program Files\Alwil Software\Avast5\aswEngLdr.dll (Antivirus engine loader/AVAST Software) 0x64BC0000

Library C:\Program Files\Alwil Software\Avast5\aswCmnOS.dll (Antivirus HW dependent library/AVAST Software) 0x72F70000

Library C:\Program Files\Alwil Software\Avast5\aswCmnIS.dll (Antivirus independent functions/AVAST Software) 0x72B80000

Library C:\Program Files\Alwil Software\Avast5\aswCmnBS.dll (Common functions/AVAST Software) 0x72C20000

Library C:\Program Files\Alwil Software\Avast5\ashTask.dll (Task Handling Module/AVAST Software) 0x64800000

Library C:\Program Files\Alwil Software\Avast5\aswAux.dll (avast! Auxiliary Library/AVAST Software) 0x64580000

Library C:\Program Files\Alwil Software\Avast5\aswLog.dll (avast! Log library/AVAST Software) 0x64700000

Library C:\Program Files\Alwil Software\Avast5\aswSqLt.dll (avast! SQLite library/AVAST Software) 0x64840000

Library C:\Program Files\Alwil Software\Avast5\aswProperty.dll (avast! Property Storage library/AVAST Software) 0x64740000

Library C:\Windows\system32\MSIMG32.dll (GDIEXT Client DLL/Microsoft Corporation) 0x74BA0000

Library C:\Windows\system32\USP10.dll (Uniscribe Unicode script processor/Microsoft Corporation) 0x76FC0000

Library C:\Program Files\Alwil Software\Avast5\1036\Base.dll (avast! French Basic Module/AVAST Software) 0x66080000

Library C:\Program Files\Alwil Software\Avast5\aswData.dll (avast! UI Layer library/AVAST Software) 0x64680000

Library C:\Program Files\Alwil Software\Avast5\ashTaskEx.dll (avast! TaskEx library/AVAST Software) 0x73090000

Library C:\Program Files\Alwil Software\Avast5\Aavm4h.dll (avast! Asynchronous Virus Monitor (AAVM)/AVAST Software) 0x65000000

Library C:\Program Files\Alwil Software\Avast5\AavmRpch.dll (avast! AAVM Remote Procedure Call Library/AVAST Software) 0x65400000

Library C:\Program Files\Alwil Software\Avast5\1036\UILangRes.dll (UILangRes/AVAST Software) 0x6E9D0000

Library C:\Program Files\Alwil Software\Avast5\CommonRes.dll (Common UI resources/AVAST Software) 0x66100000

Library C:\Windows\system32\MSACM32.dll (Microsoft ACM Audio Filter/Microsoft Corporation) 0x72820000

Library C:\Windows\System32\l3codeca.acm (MPEG Layer-3 Audio Codec for MSACM/Fraunhofer Institut Integrierte Schaltungen IIS) 0x67110000

 

Process C:\Windows\system32\svchost.exe (Host Process for Windows Services/Microsoft Corporation) 1880

Library C:\Windows\system32\USP10.dll (Uniscribe Unicode script processor/Microsoft Corporation) 0x76FC0000

Library C:\Windows\System32\npmproxy.dll (Network List Manager Proxy/Microsoft Corporation) 0x6C7F0000

 

Process C:\Windows\system32\Dwm.exe (Desktop Window Manager/Microsoft Corporation) 1916

Library C:\Windows\system32\USP10.dll (Uniscribe Unicode script processor/Microsoft Corporation) 0x76FC0000

Library C:\Windows\system32\igdumd32.dll (LDDM User Mode Driver for Intel® Graphics Technology/Intel Corporation) 0x10000000

Library C:\Program Files\Dell\QuickSet\dadkeyb.dll 0x01B80000

Library C:\Program Files\WIDCOMM\Bluetooth Software\btkeyind.dll 0x02730000

Library C:\Windows\System32\hccutils.DLL (hccutils Module/Intel Corporation) 0x02340000

 

Process C:\Windows\system32\igfxsrvc.exe (igfxsrvc Module/Intel Corporation) 2072

Library C:\Windows\system32\igfxsrvc.exe (igfxsrvc Module/Intel Corporation) 0x00400000

Library C:\Windows\system32\USP10.dll (Uniscribe Unicode script processor/Microsoft Corporation) 0x76FC0000

Library C:\Windows\system32\igfxsrvc.dll (igfxsrvc Module/Intel Corporation) 0x10000000

Library C:\Windows\system32\igfxdev.dll (igfxdev Module/Intel Corporation) 0x00390000

 

Process C:\Program Files\Sony\Content Transfer\ContentTransferWMDetector.exe (Content Transfer Walkman Detector/Sony Corporation) 2092

Library C:\Program Files\Sony\Content Transfer\ContentTransferWMDetector.exe (Content Transfer Walkman Detector/Sony Corporation) 0x00400000

Library C:\Windows\system32\USP10.dll (Uniscribe Unicode script processor/Microsoft Corporation) 0x76FC0000

 

Process C:\Windows\ehome\ehtray.exe (Media Center Tray Applet/Microsoft Corporation) 2128

Library C:\Windows\system32\USP10.dll (Uniscribe Unicode script processor/Microsoft Corporation) 0x76FC0000

 

Process c:\Program Files\WIDCOMM\Bluetooth Software\BtStackServer.exe (Bluetooth Stack COM Server/Broadcom Corporation.) 2192

Library c:\Program Files\WIDCOMM\Bluetooth Software\BtStackServer.exe (Bluetooth Stack COM Server/Broadcom Corporation.) 0x00400000

Library C:\Windows\system32\btins.dll (Bluetooth Installation dll/Broadcom Corporation.) 0x10000000

Library C:\Windows\system32\btosif.dll (BTOSIF DLL/Broadcom Corporation.) 0x00150000

Library C:\Windows\system32\BtAudioHelper.dll (BtAudioHelper/Broadcom Corporation.) 0x001A0000

Library C:\Windows\system32\USP10.dll (Uniscribe Unicode script processor/Microsoft Corporation) 0x76FC0000

Library C:\Windows\system32\bthprops.cpl (Bluetooth Control Panel Applet/Microsoft Corporation) 0x6E030000

Library C:\Windows\system32\btosif_ol.dll (BTOSIF Outlook DLL/Broadcom Corporation.) 0x02400000

Library C:\Windows\system32\btosif_olx.dll (BTOSIF Outlook Express DLL/Broadcom Corporation.) 0x02480000

Library C:\Windows\system32\btosif_notes.dll (BTOSIF Notes DLL/Broadcom Corporation.) 0x02530000

Library C:\Windows\system32\MSACM32.dll (Microsoft ACM Audio Filter/Microsoft Corporation) 0x72820000

 

Process C:\Program Files\Windows Media Player\wmpnscfg.exe (Windows Media Player Network Sharing Service Configuration Application/Microsoft Corporation) 2212

Library C:\Windows\system32\USP10.dll (Uniscribe Unicode script processor/Microsoft Corporation) 0x76FC0000

 

Process C:\Program Files\Adobe\Adobe Acrobat 6.0\Distillr\acrotray.exe (AcroTray/Adobe Systems Inc.) 2276

Library C:\Program Files\Adobe\Adobe Acrobat 6.0\Distillr\acrotray.exe (AcroTray/Adobe Systems Inc.) 0x00400000

Library C:\Windows\system32\ShimEng.dll (Shim Engine DLL/Microsoft Corporation) 0x748B0000

Library C:\Windows\system32\MSACM32.dll (Microsoft ACM Audio Filter/Microsoft Corporation) 0x72820000

Library C:\Windows\system32\USP10.dll (Uniscribe Unicode script processor/Microsoft Corporation) 0x76FC0000

Library C:\Program Files\Adobe\Adobe Acrobat 6.0\Distillr\acrotray.fra (AcroTray/Adobe Systems Inc.) 0x10000000

 

Process C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe (Bluetooth Tray Application/Broadcom Corporation.) 2284

Library C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe (Bluetooth Tray Application/Broadcom Corporation.) 0x00400000

Library C:\Windows\system32\btwapi.dll (WBTApi DLL/Broadcom Corporation.) 0x10000000

Library C:\Windows\system32\btosif.dll (BTOSIF DLL/Broadcom Corporation.) 0x00150000

Library C:\Windows\system32\btwhidcs.DLL 0x002C0000

Library C:\Program Files\WIDCOMM\Bluetooth Software\BtBalloon.dll (Balloon Tooltip Routine DLL/Broadcom Corporation.) 0x00340000

Library C:\Windows\system32\USP10.dll (Uniscribe Unicode script processor/Microsoft Corporation) 0x76FC0000

Library C:\Windows\system32\bthprops.cpl (Bluetooth Control Panel Applet/Microsoft Corporation) 0x6E030000

Library C:\Windows\system32\btrez.dll (btrez DLL/Broadcom Corporation.) 0x02520000

Library C:\Program Files\WIDCOMM\Bluetooth Software\btkeyind.dll 0x01B20000

Library C:\Windows\system32\btmmhook.dll (Multimedia Keys Hook DLL/Broadcom Corporation.) 0x02E30000

 

Process C:\Windows\system32\taskeng.exe (Task Scheduler Engine/Microsoft Corporation) 2444

Library C:\Windows\system32\USP10.dll (Uniscribe Unicode script processor/Microsoft Corporation) 0x76FC0000

Library C:\Windows\system32\MSACM32.dll (Microsoft ACM Audio Filter/Microsoft Corporation) 0x72820000

Library C:\Windows\system32\igfxTMM.dll 0x10000000

Library C:\Windows\system32\igfxdev.dll (igfxdev Module/Intel Corporation) 0x02760000

Library C:\Windows\system32\igfxsrvc.dll (igfxsrvc Module/Intel Corporation) 0x02600000

Library C:\Windows\system32\pautoenr.dll (Auto Enrollment DLL/Microsoft Corporation) 0x69300000

 

Process C:\Program Files\Dell\QuickSet\quickset.exe (QuickSet/Dell Inc) 2472

Library C:\Program Files\Dell\QuickSet\quickset.exe (QuickSet/Dell Inc) 0x00400000

Library C:\Windows\system32\ACTIVEDS.dll (ADs Router Layer DLL/Microsoft Corporation) 0x74400000

Library C:\Windows\system32\USP10.dll (Uniscribe Unicode script processor/Microsoft Corporation) 0x76FC0000

Library C:\Program Files\Dell\QuickSet\dadkeyb.dll 0x10000000

 

Process C:\Windows\system32\wbem\unsecapp.exe (Sink to receive asynchronous callbacks for WMI client application/Microsoft Corporation) 2600

Library C:\Windows\system32\USP10.dll (Uniscribe Unicode script processor/Microsoft Corporation) 0x76FC0000

 

Process C:\Windows\system32\wuauclt.exe (Windows Update/Microsoft Corporation) 2644

Library C:\Windows\system32\USP10.dll (Uniscribe Unicode script processor/Microsoft Corporation) 0x76FC0000

Library C:\Windows\system32\MSIMG32.dll (GDIEXT Client DLL/Microsoft Corporation) 0x74BA0000

 

Process C:\Windows\ehome\ehmsas.exe (Media Center Media Status Aggregator Service/Microsoft Corporation) 2908

Library C:\Windows\system32\USP10.dll (Uniscribe Unicode script processor/Microsoft Corporation) 0x76FC0000

 

Process C:\Windows\system32\aestsrv.exe (Andrea filters APO access service (32-bit)/Andrea Electronics Corporation) 3188

Library C:\Windows\system32\aestsrv.exe (Andrea filters APO access service (32-bit)/Andrea Electronics Corporation) 0x00400000

 

Process C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe (Apple Mobile Device Service/Apple, Inc.) 3204

Library C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe (Apple Mobile Device Service/Apple, Inc.) 0x00400000

Library C:\Windows\system32\USP10.dll (Uniscribe Unicode script processor/Microsoft Corporation) 0x76FC0000

 

Process C:\Program Files\Bonjour\mDNSResponder.exe (Bonjour Service/Apple Inc.) 3216

Library C:\Program Files\Bonjour\mDNSResponder.exe (Bonjour Service/Apple Inc.) 0x00400000

Library C:\Windows\system32\USP10.dll (Uniscribe Unicode script processor/Microsoft Corporation) 0x76FC0000

 

Process C:\Windows\system32\svchost.exe (Host Process for Windows Services/Microsoft Corporation) 3228

Library C:\Windows\system32\USP10.dll (Uniscribe Unicode script processor/Microsoft Corporation) 0x76FC0000

 

Process C:\Windows\system32\svchost.exe (Host Process for Windows Services/Microsoft Corporation) 3300

Library C:\Windows\system32\USP10.dll (Uniscribe Unicode script processor/Microsoft Corporation) 0x76FC0000

 

Process C:\Program Files\Microsoft\Search Enhancement Pack\SeaPort\SeaPort.exe (Microsoft SeaPort Search Enhancement Broker/Microsoft Corporation) 3552

Library C:\Windows\system32\USP10.dll (Uniscribe Unicode script processor/Microsoft Corporation) 0x76FC0000

Library C:\Program Files\Bonjour\mdnsNSP.dll (Bonjour Namespace Provider/Apple Inc.) 0x16080000

 

Process C:\Windows\system32\STacSV.exe (STacSV Module/IDT, Inc.) 3592

Library C:\Windows\system32\STacSV.exe (STacSV Module/IDT, Inc.) 0x00400000

Library C:\Windows\system32\USP10.dll (Uniscribe Unicode script processor/Microsoft Corporation) 0x76FC0000

Library C:\Windows\system32\stapi32.dll (STACAPI.DLL/IDT, Inc.) 0x6DBB0000

 

Process C:\Windows\system32\svchost.exe (Host Process for Windows Services/Microsoft Corporation) 3624

Library C:\Windows\system32\USP10.dll (Uniscribe Unicode script processor/Microsoft Corporation) 0x76FC0000

 

Process C:\Windows\System32\svchost.exe (Host Process for Windows Services/Microsoft Corporation) 3656

Library C:\Windows\system32\USP10.dll (Uniscribe Unicode script processor/Microsoft Corporation) 0x76FC0000

 

Process C:\Windows\system32\SearchIndexer.exe (Microsoft Windows Search Indexer/Microsoft Corporation) 3684

Library C:\Windows\system32\USP10.dll (Uniscribe Unicode script processor/Microsoft Corporation) 0x76FC0000

 

Process C:\Windows\system32\DRIVERS\xaudio.exe (Modem Audio Service/Conexant Systems, Inc.) 3760

Library C:\Windows\system32\DRIVERS\xaudio.exe (Modem Audio Service/Conexant Systems, Inc.) 0x00400000

Library C:\Windows\system32\USP10.dll (Uniscribe Unicode script processor/Microsoft Corporation) 0x76FC0000

 

Process C:\Program Files\Windows Media Player\wmpnetwk.exe (Windows Media Player Network Sharing Service/Microsoft Corporation) 3952

Library C:\Windows\system32\USP10.dll (Uniscribe Unicode script processor/Microsoft Corporation) 0x76FC0000

Library C:\Windows\System32\npmproxy.dll (Network List Manager Proxy/Microsoft Corporation) 0x6C7F0000

 

Process C:\Program Files\iPod\bin\iPodService.exe (iPodService Module/Apple Inc.) 4048

Library C:\Program Files\iPod\bin\iPodService.exe (iPodService Module/Apple Inc.) 0x00400000

Library C:\Windows\system32\USP10.dll (Uniscribe Unicode script processor/Microsoft Corporation) 0x76FC0000

Library C:\Program Files\iPod\bin\iPodService.Resources\fr.lproj\iPodServiceLocalized.DLL (Bibliothèque de ressources iPodService/Apple Inc.) 0x10000000

Library C:\Program Files\iPod\bin\iPodService.Resources\iPodService.DLL (iPodService Resource Library/Apple Inc.) 0x00170000

 

Process C:\Windows\system32\wbem\wmiprvse.exe (WMI Provider Host/Microsoft Corporation) 4084

Library C:\Windows\system32\USP10.dll (Uniscribe Unicode script processor/Microsoft Corporation) 0x76FC0000

 

Process C:\Windows\explorer.exe (Windows Explorer/Microsoft Corporation) 4764

Library C:\Windows\system32\USP10.dll (Uniscribe Unicode script processor/Microsoft Corporation) 0x76FC0000

Library C:\Windows\System32\npmproxy.dll (Network List Manager Proxy/Microsoft Corporation) 0x6C7F0000

Library C:\Windows\system32\wscntfy.dll (Windows Security Center Notification App/Microsoft Corporation) 0x714B0000

Library C:\Windows\system32\btncopy.dll (BTNCopy Module/Broadcom Corporation.) 0x10000000

Library C:\Windows\system32\bthprops.cpl (Bluetooth Control Panel Applet/Microsoft Corporation) 0x6E030000

Library C:\Program Files\Dell\QuickSet\dadkeyb.dll 0x048D0000

Library C:\Program Files\WIDCOMM\Bluetooth Software\btkeyind.dll 0x04E20000

Library C:\Windows\System32\hccutils.DLL (hccutils Module/Intel Corporation) 0x04EA0000

Library C:\Program Files\Adobe\Adobe Acrobat 6.0\Acrobat Elements\ContextMenu.dll (Adobe Acrobat Elements/Adobe Systems Inc.) 0x064C0000

Library C:\Program Files\Adobe\Adobe Acrobat 6.0\Acrobat Elements\ContextMenu.fra (Adobe Acrobat Elements/Adobe Systems Inc.) 0x05800000

Library C:\Program Files\Malwarebytes' Anti-Malware\mbamext.dll (Malwarebytes' Anti-Malware/Malwarebytes Corporation) 0x059A0000

Library C:\Program Files\Alwil Software\Avast5\ashShell.dll (avast! Shell Extension/AVAST Software) 0x64E40000

Library C:\Windows\system32\igfxpph.dll (igfxpph Module/Intel Corporation) 0x059C0000

Library C:\Intel\ExtremeGraphics\CUI\Resource\igfxres.dll (igfxres Module/Intel Corporation) 0x05A90000

Library C:\Windows\system32\igfxress.dll (igfxress Module/Intel Corporation) 0x080E0000

Library C:\Windows\system32\igfxsrvc.dll (igfxsrvc Module/Intel Corporation) 0x05AC0000

 

Process c:\program files\common files\installshield\updateservice\isuspm.exe (Macrovision FLEXnet Connect Software Manager/Macrovision Corporation) 4932

Library c:\program files\common files\installshield\updateservice\isuspm.exe (Macrovision FLEXnet Connect Software Manager/Macrovision Corporation) 0x00400000

Library C:\Windows\system32\USP10.dll (Uniscribe Unicode script processor/Microsoft Corporation) 0x76FC0000

Library C:\Program Files\Common Files\InstallShield\UpdateService\_ispmres.dll (Macrovision FLEXnet Connect Resource DLL/Macrovision Corporation) 0x10000000

 

Process c:\program files\windows defender\MpCmdRun.exe (Windows Defender Command Line Utility/Microsoft Corporation) 5360

Library C:\Windows\system32\USP10.dll (Uniscribe Unicode script processor/Microsoft Corporation) 0x76FC0000

 

Process C:\Program Files\Common Files\InstallShield\UpdateService\agent.exe (Macrovision FLEXnet Connect Agent/Macrovision Corporation) 5424

Library C:\Program Files\Common Files\InstallShield\UpdateService\agent.exe (Macrovision FLEXnet Connect Agent/Macrovision Corporation) 0x00400000

Library C:\Windows\system32\USP10.dll (Uniscribe Unicode script processor/Microsoft Corporation) 0x76FC0000

 

Process C:\Windows\system32\taskeng.exe (Task Scheduler Engine/Microsoft Corporation) 5632

Library C:\Windows\system32\USP10.dll (Uniscribe Unicode script processor/Microsoft Corporation) 0x76FC0000

 

Process C:\Windows\System32\svchost.exe (Host Process for Windows Services/Microsoft Corporation) 5708

Library C:\Windows\system32\USP10.dll (Uniscribe Unicode script processor/Microsoft Corporation) 0x76FC0000

 

Process C:\Windows\system32\msiexec.exe (Windows® installer/Microsoft Corporation) 5740

Library C:\Windows\system32\ShimEng.dll (Shim Engine DLL/Microsoft Corporation) 0x748B0000

Library C:\Windows\system32\MSACM32.dll (Microsoft ACM Audio Filter/Microsoft Corporation) 0x72820000

Library C:\Windows\system32\USP10.dll (Uniscribe Unicode script processor/Microsoft Corporation) 0x76FC0000

 

---- Services - GMER 1.0.15 ----

 

Service C:\Program Files\Common Files\Adobe Systems Shared\Service\Adobelmsvc.exe [MANUAL] Adobe LM Service

Service C:\Program Files\Adobe\Adobe Version Cue\service\VersionCue.exe (Adobe Version Cue™/Adobe Sytems) [MANUAL] AdobeVersionCue

Service C:\Windows\system32\aestsrv.exe (Andrea filters APO access service (32-bit)/Andrea Electronics Corporation) [AUTO] AESTFilters

Service C:\Windows\system32\DRIVERS\Apfiltr.sys (Alps Touch Pad Driver/Alps Electric Co., Ltd.) [MANUAL] ApfiltrService

Service C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe (Apple Mobile Device Service/Apple, Inc.) [AUTO] Apple Mobile Device

Service (avast! File System Access Blocking Driver/AVAST Software) [AUTO] aswFsBlk

Service C:\??\C:\Windows\system32\drivers\aswMonFlt.sys [AUTO] aswMonFlt

Service (avast! TDI RDR Driver/AVAST Software) [sYSTEM] aswRdr

Service (avast! self protection module/AVAST Software) [sYSTEM] aswSP

Service (avast! TDI Filter Driver/AVAST Software) [sYSTEM] aswTdi

Service C:\Program Files\Alwil Software\Avast5\AvastSvc.exe (avast! Service/AVAST Software) [AUTO] avast! Antivirus

Service C:\Program Files\Alwil Software\Avast5\AvastSvc.exe (avast! Service/AVAST Software) [MANUAL] avast! Mail Scanner

Service C:\Program Files\Alwil Software\Avast5\AvastSvc.exe (avast! Service/AVAST Software) [MANUAL] avast! Web Scanner

Service C:\Windows\system32\DRIVERS\bcmwl6.sys (Broadcom 802.11 Network Adapter wireless driver/Broadcom Corporation) [MANUAL] BCM43XX

Service C:\Windows\system32\DRIVERS\bcm4sbxp.sys (Broadcom Corporation NDIS 5.1 ethernet driver/Broadcom Corporation) [MANUAL] bcm4sbxp

Service BCMLogon

Service C:\Program Files\Bonjour\mDNSResponder.exe (Bonjour Service/Apple Inc.) [AUTO] Bonjour Service

Service C:\Windows\system32\drivers\brfiltlo.sys (Windows ME USB Mass-Storage Bulk-Only Lower Filter Driver/Brother Industries, Ltd.) [MANUAL] BrFiltLo

Service C:\Windows\system32\drivers\brfiltup.sys (Windows ME USB Mass-Storage Bulk-Only Upper Filter Driver/Brother Industries, Ltd.) [MANUAL] BrFiltUp

Service C:\Windows\system32\drivers\brusbser.sys (Brother USB Serial Driver/Brother Industries Ltd.) [MANUAL] BrUsbSer

Service BTKRNL

Service C:\Windows\system32\drivers\btwaudio.sys (Bluetooth Audio Device/Broadcom Corporation.) [MANUAL] btwaudio

Service C:\Windows\system32\drivers\btwavdt.sys (Broadcom Bluetooth AVDT Service/Broadcom Corporation.) [MANUAL] btwavdt

Service C:\Windows\system32\DRIVERS\btwrchid.sys (Bluetooth Remote Control HID Minidriver/Broadcom Corporation.) [MANUAL] btwrchid

Service C:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe [AUTO] CLTNetCnService

Service C:\Program Files\DellSupport\brkrsvc.exe [MANUAL] DSBrokerService

Service C:\??\C:\Program Files\DellSupport\GTAction\triggers\DSproct.sys [MANUAL] DSproct

Service C:\Windows\system32\DRIVERS\dsunidrv.sys (GUniDriver/Gteko Ltd.) [AUTO] dsunidrv

Service C:\Windows\system32\DRIVERS\e1e6032.sys (Intel® PRO/1000 Adapter NDIS 6 deserialized driver/Intel Corporation) [MANUAL] e1express

Service C:\Windows\system32\DRIVERS\E1G60I32.sys (Intel® PRO/1000 Adapter NDIS 6 deserialized driver/Intel Corporation) [MANUAL] E1G60

Service C:\Windows\System32\Drivers\GEARAspiWDM.sys (CD DVD Filter/GEAR Software Inc.) [MANUAL] GEARAspiWDM

Service C:\Program Files\Google\Update\GoogleUpdate.exe (Google Installer/Google Inc.) [AUTO] gupdate1c98fd46f7edd1

Service C:\Windows\system32\DRIVERS\HSX_DPV.sys (HSF_DP driver/Conexant Systems, Inc.) [MANUAL] HSF_DPV

Service C:\Windows\system32\DRIVERS\HSXHWAZL.sys (HSF_HWAZL WDM driver/Conexant Systems, Inc.) [MANUAL] HSXHWAZL

Service C:\Windows\system32\drivers\iastor.sys (Intel Matrix Storage Manager driver - ia32/Intel Corporation) [bOOT] iaStor

Service C:\Windows\system32\drivers\iastorv.sys (Intel Matrix Storage Manager driver (base)/Intel Corporation) [bOOT] iaStorV

Service C:\Program Files\Common Files\InstallShield\Driver\1050\Intel 32\IDriverT.exe (IDriverT Module/Macrovision Corporation) [MANUAL] IDriverT

Service C:\Windows\system32\DRIVERS\igdkmd32.sys (Intel Graphics Kernel Mode Driver/Intel Corporation) [MANUAL] igfx

Service system32\DRIVERS\ipinip.sys [MANUAL] IpInIp

Service C:\Program Files\iPod\bin\iPodService.exe (iPodService Module/Apple Inc.) [MANUAL] iPod Service

Service C:\Windows\system32\DRIVERS\mdmxsdk.sys (Diagnostic Interface x86 Driver/Conexant) [AUTO] mdmxsdk

Service Messenger

Service MSDTC Bridge 3.0.0.0

Service MSDTC Bridge 4.0.0.0

Service C:\Windows\system32\DRIVERS\mssmbios.sys (System Management BIOS Driver/Microsoft Corporation) [MANUAL] mssmbios

Service system32\DRIVERS\nwlnkflt.sys [MANUAL] NwlnkFlt

Service system32\DRIVERS\nwlnkfwd.sys [MANUAL] NwlnkFwd

Service Outlook

Service C:\Windows\System32\Drivers\PxHelp20.sys (Px Engine Device Driver for Windows 2000/XP/Sonic Solutions) [bOOT] PxHelp20

Service C:\Windows\system32\DRIVERS\atikmdag.sys (ATI Radeon Kernel Mode Driver/ATI Technologies Inc.) [MANUAL] R300

Service C:\Windows\system32\DRIVERS\rimmptsk.sys (RICOH MMC Driver/REDC) [AUTO] rimmptsk

Service C:\Windows\system32\DRIVERS\rimsptsk.sys (RICOH MS Driver/REDC) [AUTO] rimsptsk

Service C:\Windows\system32\DRIVERS\rixdptsk.sys (RICOH XD SM Driver/REDC) [AUTO] rismxdp

Service C:\Program Files\Common Files\Roxio Shared\9.0\SharedCOM\RoxMediaDB9.exe (RoxMediaDB9 Module/Sonic Solutions) [MANUAL] RoxMediaDB9

Service C:\Program Files\Common Files\Roxio Shared\9.0\SharedCOM\RoxWatch9.exe (RoxSniffer9 Module/Sonic Solutions) [AUTO] RoxWatch9

Service (Macrovision SECURITY Driver/Macrovision Corporation, Macrovision Europe Limited, and Macrovision Japan and Asia K.K.) [AUTO] secdrv

Service ServiceModelEndpoint 3.0.0.0

Service ServiceModelOperation 3.0.0.0

Service ServiceModelService 3.0.0.0

Service SMSvcHost 3.0.0.0

Service SMSvcHost 4.0.0.0

Service C:\Windows\system32\STacSV.exe (STacSV Module/IDT, Inc.) [AUTO] STacSV

Service C:\Windows\system32\drivers\stwrt.sys (NDHF/IDT, Inc.) [MANUAL] STHDA

Service C:\Program Files\Common Files\SureThing Shared\stllssvr.exe (SureThing Labelflash Disc Printer Service Module/MicroVision Development, Inc.) [MANUAL] stllssvr

Service C:\Windows\system32\DRIVERS\vgapnp.sys (VGA/Super VGA Video Driver/Microsoft Corporation) [MANUAL] vga

Service C:\Windows\system32\DRIVERS\HSX_CNXT.sys (HSF_CNXT driver/Conexant Systems, Inc.) [MANUAL] winachsf

Service Windows Workflow Foundation 3.0.0.0

Service C:\Windows\System32\WLTRYSVC.EXE [AUTO] wltrysvc

Service WSearchIdxPi

Service C:\Windows\system32\DRIVERS\xaudio.sys (Modem Audio Device Driver/Conexant Systems, Inc.) [AUTO] XAudio

Service C:\Windows\system32\DRIVERS\xaudio.exe (Modem Audio Service/Conexant Systems, Inc.) [AUTO] XAudioService

 

---- EOF - GMER 1.0.15 ----

 

Merci,

[pear]

Bonjour,

 

Un inconnu à tester:

 

Poste de travail->Outils ->Options des dossiers ->Affichage

Cocher "Afficher les dossiers cachés"

Décocher" Masquer les extension des fichiers dont le type est connus "ainsi que "Masquer les fichiers protégés du système d exploitation"

--> un message dit que cela peut endommager le système, ne pas en tenir compte, valider par oui.

 

Rendez vous à cette adresse:

Cliquez sur parcourir pour trouver ces fichiers

C:\Users\Simon\Desktop\oxrqg7uq.exe

et cliquez sur "envoyer le fichier"

Copiez /collez la réponse dans votre prochain message.

Note: il peut arriver que le fichier ait déjà été analysé. Si c'est le cas, cliquez sur le bouton Reanalyse file now

[rygabou]

Bonjour Pear

Voici:

 

2 VT Community user(s) with a total of 49 reputation credit(s) say(s) this sample is goodware. 0 VT Community user(s) with a total of 0 reputation credit(s) say(s) this sample is malware.

File name: oxrqg7uq.exe

Submission date: 2010-12-05 15:46:54 (UTC)

Current status: finished

Result: 0/ 43 (0.0%)

VT Community

 

goodware

Safety score: 100.0%

Compact

Print results

Antivirus Version Last Update Result

AhnLab-V3 2010.12.05.00 2010.12.04 -

AntiVir 7.10.14.189 2010.12.03 -

Antiy-AVL 2.0.3.7 2010.12.05 -

Avast 4.8.1351.0 2010.12.05 -

Avast5 5.0.677.0 2010.12.05 -

AVG 9.0.0.851 2010.12.05 -

BitDefender 7.2 2010.12.05 -

CAT-QuickHeal 11.00 2010.12.04 -

ClamAV 0.96.4.0 2010.12.05 -

Command 5.2.11.5 2010.12.04 -

Comodo 6957 2010.12.05 -

DrWeb 5.0.2.03300 2010.12.05 -

Emsisoft 5.0.0.50 2010.12.05 -

eSafe 7.0.17.0 2010.12.05 -

eTrust-Vet 36.1.8018 2010.12.05 -

F-Prot 4.6.2.117 2010.12.04 -

F-Secure 9.0.16160.0 2010.12.05 -

Fortinet 4.2.254.0 2010.12.05 -

GData 21 2010.12.05 -

Ikarus T3.1.1.90.0 2010.12.05 -

Jiangmin 13.0.900 2010.12.05 -

K7AntiVirus 9.70.3162 2010.12.04 -

Kaspersky 7.0.0.125 2010.12.05 -

McAfee 5.400.0.1158 2010.12.05 -

McAfee-GW-Edition 2010.1C 2010.12.05 -

Microsoft 1.6402 2010.12.05 -

NOD32 5675 2010.12.05 -

Norman 6.06.10 2010.12.04 -

nProtect 2010-12-05.01 2010.12.05 -

Panda 10.0.2.7 2010.12.05 -

PCTools 7.0.3.5 2010.12.05 -

Prevx 3.0 2010.12.05 -

Rising 22.76.05.00 2010.12.05 -

Sophos 4.60.0 2010.12.05 -

SUPERAntiSpyware 4.40.0.1006 2010.12.05 -

Symantec 20101.2.0.161 2010.12.05 -

TheHacker 6.7.0.1.095 2010.12.05 -

TrendMicro 9.120.0.1004 2010.12.05 -

TrendMicro-HouseCall 9.120.0.1004 2010.12.05 -

VBA32 3.12.14.2 2010.12.03 -

VIPRE 7520 2010.12.05 -

ViRobot 2010.12.4.4185 2010.12.05 -

VirusBuster 13.6.75.0 2010.12.05 -

Additional informationShow all

MD5 : df7501a91a7c99cc3f0269080748ee61

SHA1 : 453b6bed84bcc63f52d00b76ab6572f039c69b1f

SHA256: f2ffef9c4aee46839f249583d7469885e1bd34e49da8ddd31c7548b0d55ae85c

VT Community

 

User:jeje

Reputation: 48 credits

Comment date: 2010-11-09 14:30:27 (UTC)

Tags: Goodware

Was this comment helpful? Yes (0) | No (0) | Report abuse

 

User: Anonymous

Reputation: 1 credits

Comment date: 2010-11-28 23:45:26 (UTC)

Tags: Goodware

 

Dois-je réinitialiser les options dans poste de travail?