Sujet Précédent Sujet Suivant

VIRUS BUGLE

Bidoulleux02 Messages postés 41 Statut Membre -  
 Utilisateur anonyme -
Bonjour,

Je voudrais savoir comment supprimer le virus bagle. Il y a un dossier dans lequel est ce virus qui est dans C:\Utilisateurs\[monnomdutilisateur]\AppData\Roaming\drivers. Ce dossier contient : un autre dossier appelé downld, srosa.sys, srosa2.sys et winupgro.exe. Lorsque j'essaie de supprimer le virus avec Findykill et que l'ordinateur redémarre, Findykill ne se lance pas. Il m'est aussi impossible de faire une analyse avec en démarrage normal.
Au début de certains démarrages, une fenêtre s'ouvre avec "NTSB investigators flight recorder (black box) analyser" comme titre, c'est aussi cette fenêtre qui a installé le virus.

Merci beaucoup de votre aide.
A voir également:

35 réponses

  • 1
  • 2
Réponse 1 / 35
Bidoulleux02 Messages postés 41 Statut Membre
 
Mon antivirus ne trouve pas le virus mais il peut toujours être lancer. J'ai aussi essayé avec spybot qui le détecte mais le virus se réinstalle après.
0
Réponse 2 / 35
Bidoulleux02 Messages postés 41 Statut Membre
 
J'ai réussi à faire un rapport avec FindyKill en mode sans échecs, le voici :

----------------- FindyKill V4.710 ------------------

* User : SYSTEM - PC-DE-RAZOR1911
* Emplacement : C:\Program Files\FindyKill
* Outils Mis a jours le 21/12/08 par Chiquitine29
* Recherche effectuée à 19:36:23 le 28/12/2008
* Windows Vista - Internet Explorer 8.0.6001.18241

((((((((((((((((( *** Recherche *** ))))))))))))))))))

--------------- [ Processus actifs ] ----------------

C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbam.exe

--------------- [ Fichiers/Dossiers infectieux ] ----------------

»»»» Presence des fichiers dans C:

»»»» Presence des fichiers dans C:\Windows

»»»» Presence des fichiers dans C:\Windows\Prefetch

»»»» Presence des fichiers dans C:\Windows\system32

»»»» Presence des fichiers dans C:\Windows\system32\config\systemprofile\AppData\Roaming

»»»» Presence des fichiers dans C:\Windows\system32\drivers

»»»» Presence des fichiers dans

Found ! [18/06/2008 18:15] - "\drivers"

»»»» Presence des fichiers dans C:\Windows\system32\config\SYSTEM~1\AppData\Local\Temp

»»»» Presence des fichiers dans C:\Windows\system32\config\systemprofile\Local Settings\Temporary Internet Files\Content.IE5

--------------- [ Registre / Startup ] ----------------

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\run]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\run]
Habu="C:\Program Files (x86)\Razer\Habu\razerhid.exe"
atwtusb=atwtusb.exe beta
SysMon=C:\Windows\system32\rundll32.exe "C:\ProgramData\SysMon\SysMon.dll" rdl
IJNetworkScanUtility="C:\Program Files (x86)\Canon\Canon IJ Network Scan Utility\CNMNSUT.EXE"
WinFast2KLoadDefault=rundll32.exe C:\Windows\system32\wf2kcpl.dll,DllLoadDefaultSettings
VMware hqtray="C:\Program Files (x86)\VMware\VMware Player\hqtray.exe"
<NO NAME>=
Acrobat Assistant 8.0="C:\Program Files (x86)\Adobe\Acrobat 9.0\Acrobat\Acrotray.exe"
AdobeCS4ServiceManager="C:\Program Files (x86)\Common Files\Adobe\CS4ServiceManager\CS4ServiceManager.exe" -launchedbylogin
HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\run\OptionalComponents=
<NO NAME>=
HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\run\OptionalComponents\IMAIL=
Installed=1
<NO NAME>=
HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\run\OptionalComponents\MAPI=
NoChange=1
Installed=1
<NO NAME>=
HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\run\OptionalComponents\MSFS=
Installed=1
<NO NAME>=

--------------- [ Registre / Clés infectieuses ] ----------------

--------------- [ Etat / Services ] ----------------

+- Services : [ Auto=2 / Demande=3 / Désactivé=4 ]

/!\ Ndisuio - Type de démarrage = 4

EapHost - Type de démarrage = 3

Wlansvc - Type de démarrage = 3

SharedAccess - Type de démarrage = 2

wuauserv - Type de démarrage = 2

--------------- [ Recherche dans supports amovibles] ----------------

+- Informations :

C: - Lecteur fixe
D: - Lecteur fixe
G: - Lecteur amovible

+- presence des fichiers :

--------------- [ Registre / Mountpoint2 ] ----------------

-> Not found !

------------------- ! Fin du rapport ! --------------------

J'ai aussi fais un rapport avec Elibagle :

Sun Dec 28 16:26:06 2008
EliBagle v12.07 (c)2008 S.G.H. / Satinfo S.L. (Actualizado el 18 de Diciembre del 2008)
----------------------------------------------
Lista de Acciones (por Acción Directa):
C:\WINDOWS\SYSTEM32\WINTEMS.EXE --> Eliminado Bagle
C:\WINDOWS\SYSTEM32\MDELK.EXE --> Eliminado Bagle

Sun Dec 28 16:26:20 2008
EliBagle v12.07 (c)2008 S.G.H. / Satinfo S.L. (Actualizado el 18 de Diciembre del 2008)
----------------------------------------------
Lista de Acciones (por Acción Directa):

Sun Dec 28 16:26:41 2008
EliBagle v12.07 (c)2008 S.G.H. / Satinfo S.L. (Actualizado el 18 de Diciembre del 2008)
----------------------------------------------
Lista de Acciones (por Acción Directa):

Sun Dec 28 16:26:42 2008
EliBagle v12.07 (c)2008 S.G.H. / Satinfo S.L. (Actualizado el 18 de Diciembre del 2008)
----------------------------------------------
Lista de Acciones (por Exploración):
Explorando "C:\"

Sun Dec 28 17:15:09 2008
EliBagle v12.07 (c)2008 S.G.H. / Satinfo S.L. (Actualizado el 18 de Diciembre del 2008)
----------------------------------------------
Lista de Acciones (por Acción Directa):

Sun Dec 28 17:15:10 2008
EliBagle v12.07 (c)2008 S.G.H. / Satinfo S.L. (Actualizado el 18 de Diciembre del 2008)
----------------------------------------------
Lista de Acciones (por Exploración):
Explorando "C:\"
C:\Users\Razor1911\AppData\Roaming\drivers\SROSA.SYS --> Eliminado Bagle(rootkit)

Sun Dec 28 17:20:52 2008
EliBagle v12.07 (c)2008 S.G.H. / Satinfo S.L. (Actualizado el 18 de Diciembre del 2008)
----------------------------------------------
Lista de Acciones (por Acción Directa):

Nº Total de Directorios: 18804
Nº Total de Ficheros: 208661
Nº de Ficheros Analizados: 17874
Nº de Ficheros Infectados: 1
Nº de Ficheros Limpiados: 1
Exploración Detenida por el Usuario.

Sun Dec 28 17:21:13 2008
EliBagle v12.07 (c)2008 S.G.H. / Satinfo S.L. (Actualizado el 18 de Diciembre del 2008)
----------------------------------------------
Lista de Acciones (por Exploración):
Explorando "C:\"

Nº Total de Directorios: 934
Nº Total de Ficheros: 11278
Nº de Ficheros Analizados: 610
Nº de Ficheros Infectados: 0
Nº de Ficheros Limpiados: 0
Exploración Detenida por el Usuario.

Sun Dec 28 17:21:31 2008
EliBagle v12.07 (c)2008 S.G.H. / Satinfo S.L. (Actualizado el 18 de Diciembre del 2008)
----------------------------------------------
Lista de Acciones (por Acción Directa):

Sun Dec 28 17:21:33 2008
EliBagle v12.07 (c)2008 S.G.H. / Satinfo S.L. (Actualizado el 18 de Diciembre del 2008)
----------------------------------------------
Lista de Acciones (por Exploración):
Explorando "C:\"

Nº Total de Directorios: 12655
Nº Total de Ficheros: 124747
Nº de Ficheros Analizados: 10963
Nº de Ficheros Infectados: 0
Nº de Ficheros Limpiados: 0
Exploración Detenida por el Usuario.

Sun Dec 28 18:58:11 2008
EliBagle v12.07 (c)2008 S.G.H. / Satinfo S.L. (Actualizado el 18 de Diciembre del 2008)
----------------------------------------------
Lista de Acciones (por Acción Directa):

Sun Dec 28 18:58:37 2008
EliBagle v12.07 (c)2008 S.G.H. / Satinfo S.L. (Actualizado el 18 de Diciembre del 2008)
----------------------------------------------
Lista de Acciones (por Exploración):
Explorando "G:\"

Nº Total de Directorios: 0
Nº Total de Ficheros: 3
Nº de Ficheros Analizados: 3
Nº de Ficheros Infectados: 0
Nº de Ficheros Limpiados: 0

Sun Dec 28 18:58:42 2008
EliBagle v12.07 (c)2008 S.G.H. / Satinfo S.L. (Actualizado el 18 de Diciembre del 2008)
----------------------------------------------
Lista de Acciones (por Exploración):
Explorando "G:\"

Nº Total de Directorios: 0
Nº Total de Ficheros: 3
Nº de Ficheros Analizados: 3
Nº de Ficheros Infectados: 0
Nº de Ficheros Limpiados: 0

Sun Dec 28 18:58:44 2008
EliBagle v12.07 (c)2008 S.G.H. / Satinfo S.L. (Actualizado el 18 de Diciembre del 2008)
----------------------------------------------
Lista de Acciones (por Exploración):
Explorando "G:\"

Nº Total de Directorios: 0
Nº Total de Ficheros: 3
Nº de Ficheros Analizados: 3
Nº de Ficheros Infectados: 0
Nº de Ficheros Limpiados: 0

Sun Dec 28 18:59:02 2008
EliBagle v12.07 (c)2008 S.G.H. / Satinfo S.L. (Actualizado el 18 de Diciembre del 2008)
----------------------------------------------
Lista de Acciones (por Exploración):
Explorando "D:\"

Nº Total de Directorios: 865
Nº Total de Ficheros: 10072
Nº de Ficheros Analizados: 651
Nº de Ficheros Infectados: 0
Nº de Ficheros Limpiados: 0
Exploración Detenida por el Usuario.

Sun Dec 28 18:59:24 2008
EliBagle v12.07 (c)2008 S.G.H. / Satinfo S.L. (Actualizado el 18 de Diciembre del 2008)
----------------------------------------------
Lista de Acciones (por Acción Directa):

Sun Dec 28 18:59:27 2008
EliBagle v12.07 (c)2008 S.G.H. / Satinfo S.L. (Actualizado el 18 de Diciembre del 2008)
----------------------------------------------
Lista de Acciones (por Exploración):
Explorando "D:\"

Nº Total de Directorios: 10836
Nº Total de Ficheros: 57796
Nº de Ficheros Analizados: 11841
Nº de Ficheros Infectados: 0
Nº de Ficheros Limpiados: 0

Sun Dec 28 19:03:46 2008
EliBagle v12.07 (c)2008 S.G.H. / Satinfo S.L. (Actualizado el 18 de Diciembre del 2008)
----------------------------------------------
Lista de Acciones (por Acción Directa):

Sun Dec 28 19:04:05 2008
EliBagle v12.07 (c)2008 S.G.H. / Satinfo S.L. (Actualizado el 18 de Diciembre del 2008)
----------------------------------------------
Lista de Acciones (por Exploración):
Explorando "C:\"
C:\Users\Razor1911\AppData\Roaming\drivers\SROSA.SYS --> Eliminado Bagle(rootkit)

Nº Total de Directorios: 31542
Nº Total de Ficheros: 258637
Nº de Ficheros Analizados: 28112
Nº de Ficheros Infectados: 1
Nº de Ficheros Limpiados: 1
0
Réponse 3 / 35
Utilisateur anonyme
 
Salut,

Vire ellibagla et fait ce qui suit:

Findykill de chiquitine29 option 2:

▶ Branche tes disques amovibles à ton PC ( (clefs USB, disque dur externe, etc...) sans les ouvrir

▶ Double-clique sur le raccourci FindyKill sur ton bureau

▶ Au menu principal, choisisl'option 2 (Suppression)

/!\ Il y aura 2 redémarrages, laisse travailler l'outil jusqu'à l'apparition du message "nettoyage effectué" /!\

𥭮nsuite, poste le rapport FindyKill.txt

Note : le rapport FindyKill.txt est sauvegardé à la racine du disque.

Si un rapport ne passe pas faire une alerte à la conciergerie avec le /!\ jaune.
0
Réponse 4 / 35
Bidoulleux02 Messages postés 41 Statut Membre
 
Le logiciel fait bien redémarrer le pc mais il ne le fais qu'une seule fois après il ne se relance plus.
0

Vous n’avez pas trouvé la réponse que vous recherchez ?

Posez votre question
Réponse 5 / 35
Utilisateur anonyme
 
Re,

Je te répond et plus personne !!

0
Réponse 6 / 35
Utilisateur anonyme
 
Re,

Fait le en mode sans échec alors!!
0
Réponse 7 / 35
Bidoulleux02 Messages postés 41 Statut Membre
 
J'ai essayé aussi je vais voir en faisant l'option 1 en mode sans échecs et je poste le rapport.
0
Réponse 8 / 35
Utilisateur anonyme
 
Re,

Tu lance les deux options tu peut le faire et poste les deux rapports.

Ensuite en mode normal tu feras sa :

▶ Télécharge random's system information tool (RSIT) et enregistre le sur ton bureau.

▶ Double clique sur RSIT.exe pour lancer l'outil.

▶ Clique sur ' continue ' à l'écran Disclaimer.

Si l'outil HIjackThis (version à jour) n'est pas présent ou non détecté sur l'ordinateur, RSIT le téléchargera et tu devras accepter la licence.

▶ Une fois le scan fini , 2 rapports vont apparaitre. Poste le contenu des 2 rapports
( log.txt & info.txt )

(CTRL+A Pour tout selectionner , CTRL+C pour copier et CTRL+V pour coller )

Si un rapport ne passe pas faire une alerte à la conciergerie avec le /!\ jaune.
0
Réponse 9 / 35
Bidoulleux02 Messages postés 41 Statut Membre
 
Voici le rapport avec l'option 1 de Findykill :

----------------- FindyKill V4.710 ------------------

* User : SYSTEM - PC-DE-RAZOR1911
* Emplacement : C:\Program Files\FindyKill
* Outils Mis a jours le 21/12/08 par Chiquitine29
* Recherche effectuée à 17:21:54 le 29/12/2008
* Windows Vista - Internet Explorer 8.0.6001.18241

((((((((((((((((( *** Recherche *** ))))))))))))))))))

--------------- [ Processus actifs ] ----------------

--------------- [ Fichiers/Dossiers infectieux ] ----------------

»»»» Presence des fichiers dans C:

Found ! [29/12/2008 11:57] - C:\InfoSat.txt

»»»» Presence des fichiers dans C:\Windows

»»»» Presence des fichiers dans C:\Windows\Prefetch

»»»» Presence des fichiers dans C:\Windows\system32

»»»» Presence des fichiers dans C:\Windows\system32\config\systemprofile\AppData\Roaming

»»»» Presence des fichiers dans C:\Windows\system32\drivers

»»»» Presence des fichiers dans

Found ! [18/06/2008 18:15] - "\drivers"

»»»» Presence des fichiers dans C:\Windows\system32\config\SYSTEM~1\AppData\Local\Temp

»»»» Presence des fichiers dans C:\Windows\system32\config\systemprofile\Local Settings\Temporary Internet Files\Content.IE5

--------------- [ Registre / Startup ] ----------------

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\run]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\run]
Habu="C:\Program Files (x86)\Razer\Habu\razerhid.exe"
atwtusb=atwtusb.exe beta
SysMon=C:\Windows\system32\rundll32.exe "C:\ProgramData\SysMon\SysMon.dll" rdl
WinFast2KLoadDefault=rundll32.exe C:\Windows\system32\wf2kcpl.dll,DllLoadDefaultSettings
VMware hqtray="C:\Program Files (x86)\VMware\VMware Player\hqtray.exe"
Acrobat Assistant 8.0="C:\Program Files (x86)\Adobe\Acrobat 9.0\Acrobat\Acrotray.exe"
AdobeCS4ServiceManager="C:\Program Files (x86)\Common Files\Adobe\CS4ServiceManager\CS4ServiceManager.exe" -launchedbylogin
avgnt="C:\Program Files (x86)\Avira\AntiVir PersonalEdition Classic\avgnt.exe" /min
HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\run\OptionalComponents=
<NO NAME>=
HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\run\OptionalComponents\IMAIL=
Installed=1
<NO NAME>=
HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\run\OptionalComponents\MAPI=
NoChange=1
Installed=1
<NO NAME>=
HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\run\OptionalComponents\MSFS=
Installed=1
<NO NAME>=

--------------- [ Registre / Clés infectieuses ] ----------------

--------------- [ Etat / Services ] ----------------

+- Services : [ Auto=2 / Demande=3 / Désactivé=4 ]

/!\ Ndisuio - Type de démarrage = 4

EapHost - Type de démarrage = 3

Wlansvc - Type de démarrage = 3

SharedAccess - Type de démarrage = 2

wuauserv - Type de démarrage = 2

--------------- [ Recherche dans supports amovibles] ----------------

+- Informations :

C: - Lecteur fixe
D: - Lecteur fixe
G: - Lecteur amovible

+- presence des fichiers :

--------------- [ Registre / Mountpoint2 ] ----------------

-> Not found !

------------------- ! Fin du rapport ! --------------------
0
Réponse 10 / 35
Bidoulleux02 Messages postés 41 Statut Membre
 
Logfile of random's system information tool 1.05 (written by random/random)
Run by Razor1911 at 2008-12-29 18:11:35
Microsoft® Windows Vista™ Ultimate Édition Service Pack 1
System drive C: has 381 GB (53%) free of 715 GB
Total RAM: 2047 MB (50% free)

HijackThis download failed

======Scheduled tasks folder======

C:\Windows\tasks\Maintenance en 1 clic.job
C:\Windows\tasks\NeroLiveEpgUpdate-PC-de-Razor1911_Razor1911.job
C:\Windows\tasks\User_Feed_Synchronization-{CFD6A199-A2E2-4411-8CB4-E8B857A9856F}.job

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{06849E9F-C8D7-4D59-B87D-784B7D6BE0B3}]
Aide pour le lien d'Adobe PDF Reader - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll [2008-06-11 61816]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}]
Adobe PDF Link Helper - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2008-06-11 75128]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{5C255C8A-E604-49b4-9D64-90988571CECB}]
Click-to-Call BHO - C:\Program Files (x86)\Windows Live\Messenger\wlchtc.dll [2008-12-02 73040]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{6EBF7485-159F-4bff-A14F-B9E3AAC4465B}]
Search Helper - C:\Program Files (x86)\Microsoft\Search Enhancement Pack\Search Helper\SearchHelper.dll [2008-12-04 92504]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
SSVHelper Class - C:\Program Files (x86)\Java\jre1.6.0_07\bin\ssv.dll [2008-06-10 509328]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
Programme d'aide de l'Assistant de connexion Windows Live - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2008-11-18 408952]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{A057A204-BACC-4D26-8287-79A187E26987}]
VMN Toolbar - C:\PROGRA~2\VMNTOO~1\VMNTOO~1.DLL [2007-09-24 2022912]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{A44CBB0B-C77D-4BF5-87CC-B4EE79AD1B7E}]
SnapFlash Class - C:\Program Files (x86)\Common Files\Justdo\Jd2002.dll [2006-03-16 131072]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AE7CD045-E861-484f-8273-0445EE161910}]
Adobe PDF Conversion Toolbar Helper - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll [2008-06-11 345480]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E15A8DC0-8516-42A1-81EA-DC94EC1ACF10}]
Windows Live Toolbar Helper - C:\Program Files (x86)\Windows Live\Toolbar\wltcore.dll [2008-12-08 1067352]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{F4971EE7-DAA0-4053-9964-665D8EE6A077}]
SmartSelect Class - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll [2008-06-11 345480]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{A057A204-BACC-4D26-8287-79A187E26987} - VMN Toolbar - C:\PROGRA~2\VMNTOO~1\VMNTOO~1.DLL [2007-09-24 2022912]
{47833539-D0C5-4125-9FA8-0819E2EAAC93} - Adobe PDF - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll [2008-06-11 345480]
{21FA44EF-376D-4D53-9B0F-8A89D3229068} - &Windows Live Toolbar - C:\Program Files (x86)\Windows Live\Toolbar\wltcore.dll [2008-12-08 1067352]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"Habu"=C:\Program Files (x86)\Razer\Habu\razerhid.exe [2007-05-11 176128]
"atwtusb"=atwtusb.exe beta []
"SysMon"=C:\ProgramData\SysMon\SysMon.dll [2008-01-24 626688]
"WinFast2KLoadDefault"=C:\Windows\system32\wf2kcpl.dll [2005-09-16 616448]
"VMware hqtray"=C:\Program Files (x86)\VMware\VMware Player\hqtray.exe [2008-10-28 64048]
"Acrobat Assistant 8.0"=C:\Program Files (x86)\Adobe\Acrobat 9.0\Acrobat\Acrotray.exe [2008-06-11 640376]
"AdobeCS4ServiceManager"=C:\Program Files (x86)\Common Files\Adobe\CS4ServiceManager\CS4ServiceManager.exe [2008-08-14 611712]
"avgnt"=C:\Program Files (x86)\Avira\AntiVir PersonalEdition Classic\avgnt.exe [2008-06-12 266497]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"Sidebar"=C:\Program Files\Windows Sidebar\sidebar.exe [2008-03-18 1555968]
"ehTray.exe"=C:\Windows\ehome\ehTray.exe [2008-03-18 138240]
"Steam"=C:\Program Files (x86)\Steam\Steam.exe -silent []
"AnyDVD"=C:\Program Files (x86)\SlySoft\AnyDVD\AnyDVD.exe [2008-12-01 89024]
"ISUSPM Startup"=c:\PROGRA~2\COMMON~1\INSTAL~1\UPDATE~1\isuspm.exe [2005-02-16 221184]
"SpybotSD TeaTimer"=C:\Program Files (x86)\Spybot - Search & Destroy\TeaTimer.exe [2008-09-16 1833296]
"IndxStoreSvr_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}"=C:\Program Files (x86)\Common Files\Nero\Lib\NMIndexStoreSvr.exe ASO-616B5711-6DAE-4795-A05F-39A1E5104020 []

C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup
Privoxy.lnk.disabled - C:\Program Files (x86)\Privoxy\privoxy.exe

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=0
"ConsentPromptBehaviorUser"=0
"EnableInstallerDetection"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
"EnableLUA"=0

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=145

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoActiveDesktop"=
"ForceActiveDesktopOn"=
"NoDriveTypeAutoRun"=
"NoActiveDesktopChanges"=

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

======File associations======

.js - edit -
.js - open -
.txt - open -

======List of files/folders created in the last 1 months======

2079-04-10 23:08:45 ----D---- C:\ProgramData\Spybot - Search & Destroy
2079-04-10 23:08:45 ----D---- C:\Program Files (x86)\Spybot - Search & Destroy
2079-04-10 22:43:27 ----D---- C:\Program Files (x86)\UltraISO
2079-04-10 22:43:27 ----D---- C:\Program Files (x86)\Common Files\EZB Systems
2008-12-29 17:28:37 ----D---- C:\Program Files (x86)\trend micro
2008-12-29 17:28:36 ----D---- C:\rsit
2008-12-29 17:21:54 ----A---- C:\FindyKill.txt
2008-12-29 14:56:20 ----D---- C:\ProgramData\Avira
2008-12-29 14:56:20 ----D---- C:\Program Files (x86)\Avira
2008-12-29 14:17:29 ----A---- C:\Windows\ntbtlog.txt
2008-12-29 13:02:40 ----D---- C:\Program Files (x86)\Safer Networking
2008-12-28 20:40:22 ----D---- C:\ComboetFix
2008-12-28 20:40:20 ----A---- C:\Windows\system32\CF31518.exe
2008-12-28 20:37:19 ----A---- C:\Windows\system32\CF30943.exe
2008-12-28 20:25:32 ----A---- C:\Windows\system32\CF28693.exe
2008-12-28 20:25:29 ----A---- C:\Windows\system32\cmd.execf
2008-12-28 20:24:54 ----A---- C:\Windows\system32\CF28556.exe
2008-12-28 20:24:50 ----A---- C:\Windows\system32\swsc.exe
2008-12-28 20:24:49 ----A---- C:\Bug.txt
2008-12-28 20:24:35 ----A---- C:\InfoSat.txt
2008-12-28 19:34:46 ----D---- C:\Program Files (x86)\FindyKill
2008-12-28 16:40:11 ----D---- C:\Nouveau dossier
2008-12-28 16:27:28 ----D---- C:\Users\Razor1911\AppData\Roaming\Malwarebytes
2008-12-28 16:27:19 ----D---- C:\ProgramData\Malwarebytes
2008-12-28 16:27:19 ----D---- C:\Program Files (x86)\Malwarebytes' Anti-Malware
2008-12-28 14:13:20 ----D---- C:\Users\Razor1911\AppData\Roaming\DxO_Labs
2008-12-28 14:09:55 ----D---- C:\ProgramData\DxO_Labs
2008-12-28 13:31:41 ----A---- C:\Windows\system32\icardres.dll
2008-12-28 13:31:40 ----A---- C:\Windows\system32\PresentationNative_v0300.dll
2008-12-28 13:31:40 ----A---- C:\Windows\system32\PresentationHostProxy.dll
2008-12-28 13:31:40 ----A---- C:\Windows\system32\infocardapi.dll
2008-12-28 13:31:40 ----A---- C:\Windows\system32\icardagt.exe
2008-12-28 13:31:32 ----A---- C:\Windows\system32\PresentationCFFRasterizerNative_v0300.dll
2008-12-28 13:31:30 ----A---- C:\Windows\system32\PresentationHost.exe
2008-12-28 13:23:07 ----A---- C:\Windows\system32\netfxperf.dll
2008-12-28 13:22:54 ----A---- C:\Windows\system32\dfshim.dll
2008-12-28 13:22:40 ----A---- C:\Windows\system32\mscoree.dll
2008-12-28 13:22:32 ----A---- C:\Windows\system32\mscorier.dll
2008-12-28 13:22:29 ----A---- C:\Windows\system32\mscories.dll
2008-12-23 14:21:38 ----D---- C:\Users\Razor1911\AppData\Roaming\IDMComp
2008-12-23 14:21:38 ----D---- C:\Program Files (x86)\IDM Computer Solutions
2008-12-22 19:01:16 ----D---- C:\ProgramData\ACD Systems
2008-12-22 19:01:13 ----D---- C:\Program Files (x86)\ACD Systems
2008-12-22 18:44:58 ----D---- C:\ProgramData\Avg8
2008-12-21 19:03:16 ----A---- C:\Windows\aspack.ini
2008-12-21 18:59:48 ----D---- C:\Program Files (x86)\ASPack
2008-12-21 17:21:47 ----D---- C:\Users\Razor1911\AppData\Roaming\HDRsoft
2008-12-21 16:26:23 ----A---- C:\Windows\system32\mshtml.dll
2008-12-21 10:24:15 ----D---- C:\Program Files (x86)\Badaboom
2008-12-20 20:13:49 ----D---- C:\ProgramData\Messenger Plus!
2008-12-20 18:44:43 ----D---- C:\Program Files (x86)\Realtek AC97
2008-12-19 19:11:32 ----D---- C:\Program Files (x86)\Microsoft Sync Framework
2008-12-19 19:10:45 ----D---- C:\Program Files (x86)\Microsoft
2008-12-19 19:10:03 ----D---- C:\Program Files (x86)\Windows Live SkyDrive
2008-12-19 18:52:44 ----D---- C:\Windows\system32\wdi
2008-12-19 17:51:04 ----A---- C:\Windows\system32\jsproxy.dll
2008-12-19 17:51:04 ----A---- C:\Windows\system32\ieui.dll
2008-12-19 17:51:04 ----A---- C:\Windows\system32\ieakeng.dll
2008-12-19 17:51:04 ----A---- C:\Windows\system32\icardie.dll
2008-12-19 17:51:04 ----A---- C:\Windows\system32\corpol.dll
2008-12-19 17:51:04 ----A---- C:\Windows\system32\advpack.dll
2008-12-19 17:51:04 ----A---- C:\Windows\system32\admparse.dll
2008-12-19 17:51:03 ----A---- C:\Windows\system32\msls31.dll
2008-12-19 17:51:03 ----A---- C:\Windows\system32\msfeedsbs.dll
2008-12-19 17:51:02 ----A---- C:\Windows\system32\PrivacIE.dll
2008-12-19 17:51:02 ----A---- C:\Windows\system32\msfeeds.dll
2008-12-19 17:51:02 ----A---- C:\Windows\system32\iernonce.dll
2008-12-19 17:51:02 ----A---- C:\Windows\system32\ieapfltr.dll
2008-12-19 17:51:01 ----A---- C:\Windows\system32\occache.dll
2008-12-19 17:51:01 ----A---- C:\Windows\system32\inseng.dll
2008-12-19 17:51:01 ----A---- C:\Windows\system32\imgutil.dll
2008-12-19 17:51:01 ----A---- C:\Windows\system32\iepeers.dll
2008-12-19 17:51:01 ----A---- C:\Windows\system32\dxtrans.dll
2008-12-19 17:51:01 ----A---- C:\Windows\system32\dxtmsft.dll
2008-12-19 17:51:00 ----A---- C:\Windows\system32\webcheck.dll
2008-12-19 17:51:00 ----A---- C:\Windows\system32\pngfilt.dll
2008-12-19 17:51:00 ----A---- C:\Windows\system32\mstime.dll
2008-12-19 17:51:00 ----A---- C:\Windows\system32\msrating.dll
2008-12-19 17:51:00 ----A---- C:\Windows\system32\mshtmled.dll
2008-12-19 17:51:00 ----A---- C:\Windows\system32\licmgr10.dll
2008-12-19 17:51:00 ----A---- C:\Windows\system32\iesetup.dll
2008-12-19 17:51:00 ----A---- C:\Windows\system32\ieaksie.dll
2008-12-19 17:50:59 ----A---- C:\Windows\system32\WinFXDocObj.exe
2008-12-19 17:50:59 ----A---- C:\Windows\system32\wextract.exe
2008-12-19 17:50:59 ----A---- C:\Windows\system32\url.dll
2008-12-19 17:50:59 ----A---- C:\Windows\system32\SetIEInstalledDate.exe
2008-12-19 17:50:59 ----A---- C:\Windows\system32\SetDepNx.exe
2008-12-19 17:50:59 ----A---- C:\Windows\system32\PDMSetup.exe
2008-12-19 17:50:59 ----A---- C:\Windows\system32\mshtmler.dll
2008-12-19 17:50:59 ----A---- C:\Windows\system32\msfeedssync.exe
2008-12-19 17:50:59 ----A---- C:\Windows\system32\jscript.dll
2008-12-19 17:50:59 ----A---- C:\Windows\system32\ieUnatt.exe
2008-12-19 17:50:59 ----A---- C:\Windows\system32\iedkcs32.dll
2008-12-19 17:50:59 ----A---- C:\Windows\system32\ieakui.dll
2008-12-19 17:50:58 ----A---- C:\Windows\system32\wininet.dll
2008-12-19 17:50:58 ----A---- C:\Windows\system32\mshta.exe
2008-12-19 17:50:58 ----A---- C:\Windows\system32\iertutil.dll
2008-12-19 17:50:58 ----A---- C:\Windows\system32\ie4uinit.exe
2008-12-19 17:50:57 ----A---- C:\Windows\system32\iexpress.exe
2008-12-19 17:50:56 ----A---- C:\Windows\system32\urlmon.dll
2008-12-19 17:50:55 ----A---- C:\Windows\system32\ieframe.dll
2008-12-19 17:40:27 ----D---- C:\Program Files (x86)\Microsoft Office Outlook Connector
2008-12-14 17:52:14 ----D---- C:\Users\Razor1911\AppData\Roaming\SolidWorks 2008
2008-12-14 17:50:33 ----D---- C:\Users\Razor1911\AppData\Roaming\SolidWorks
2008-12-14 17:37:53 ----D---- C:\ProgramData\SolidWorks
2008-12-14 17:37:53 ----D---- C:\Program Files (x86)\SolidWorks
2008-12-14 14:34:35 ----A---- C:\MDL 2.0 Debug.txt
2008-12-13 17:53:49 ----A---- C:\Windows\system32\tzres.dll
2008-12-13 17:48:52 ----A---- C:\Windows\system32\shell32.dll
2008-12-13 17:48:40 ----A---- C:\Windows\system32\Apphlpdm.dll
2008-12-13 17:48:37 ----A---- C:\Windows\system32\GameUXLegacyGDFs.dll
2008-12-13 17:48:34 ----A---- C:\Windows\system32\gdi32.dll
2008-12-13 17:48:33 ----A---- C:\Windows\system32\mf.dll
2008-12-13 17:48:30 ----A---- C:\Windows\system32\WMVCORE.DLL
2008-12-13 17:48:29 ----A---- C:\Windows\system32\WMNetMgr.dll
2008-12-13 17:48:28 ----A---- C:\Windows\system32\logagent.exe
2008-12-13 17:47:51 ----A---- C:\Windows\explorer.exe
2008-12-13 17:47:50 ----A---- C:\Windows\system32\explorer.exe
2008-12-13 17:29:22 ----D---- C:\Users\Razor1911\AppData\Roaming\NewsLeecher
2008-12-13 17:16:24 ----D---- C:\Program Files (x86)\Justdo Software
2008-12-13 17:16:24 ----D---- C:\Program Files (x86)\Common Files\Justdo
2008-12-13 17:11:35 ----D---- C:\Program Files (x86)\NewsLeecher
2008-12-13 16:48:48 ----D---- C:\Program Files (x86)\PDF Password Remover v3.0
2008-12-12 18:46:08 ----A---- C:\Windows\system32\uxtuneup.dll
2008-12-12 18:46:07 ----A---- C:\Windows\system32\authuitu.dll
2008-12-06 11:12:41 ----D---- C:\Program Files (x86)\AVG
2008-12-06 10:59:02 ----D---- C:\Program Files (x86)\TuneUp Utilities 2009
2008-12-06 10:58:01 ----SHD---- C:\ProgramData\{55A29068-F2CE-456C-9148-C869879E2357}
2008-12-06 10:45:24 ----A---- C:\Windows\system32\WindowsCodecsExt.dll
2008-12-06 10:45:24 ----A---- C:\Windows\system32\PhotoMetadataHandler.dll
2008-12-06 10:45:23 ----A---- C:\Windows\system32\WindowsCodecs.dll
2008-12-06 10:45:14 ----A---- C:\Windows\system32\connect.dll
2008-12-06 10:45:13 ----A---- C:\Windows\system32\PortableDeviceApi.dll
2008-12-03 18:04:14 ----A---- C:\Windows\system32\wups.dll
2008-12-03 18:04:14 ----A---- C:\Windows\system32\wudriver.dll
2008-12-03 18:04:14 ----A---- C:\Windows\system32\wuapi.dll
2008-12-03 18:04:06 ----A---- C:\Windows\system32\wuwebv.dll
2008-12-03 18:04:06 ----A---- C:\Windows\system32\wuapp.exe
2008-12-03 15:33:35 ----D---- C:\DriveKey
2008-12-03 14:37:45 ----D---- C:\Program Files (x86)\WinHTTrack
2008-12-02 22:37:20 ----A---- C:\Windows\system32\sirenacm.dll
2008-12-02 17:28:55 ----D---- C:\Program Files (x86)\XN Resource Editor
2008-12-02 17:10:24 ----D---- C:\Users\Razor1911\AppData\Roaming\PE Explorer
2008-12-02 17:10:19 ----D---- C:\Program Files (x86)\PE Explorer
2008-11-30 18:16:55 ----D---- C:\Users\Razor1911\AppData\Roaming\VMware
2008-11-30 18:15:32 ----A---- C:\Windows\system32\vmnetdhcp.exe
2008-11-30 18:15:28 ----A---- C:\Windows\system32\vmnat.exe
2008-11-30 18:14:49 ----D---- C:\ProgramData\VMware
2008-11-30 18:14:48 ----D---- C:\Program Files (x86)\VMware
2008-11-30 14:50:41 ----A---- C:\Windows\system32\sipr3260.dll
2008-11-30 13:52:21 ----D---- C:\Program Files (x86)\Orca

======List of files/folders modified in the last 1 months======

2079-04-10 22:39:31 ----D---- C:\Program Files (x86)\Ad-Aware
2079-04-10 22:34:18 ----D---- C:\Program Files (x86)\EasyRecovery
2008-12-29 18:02:50 ----D---- C:\Windows\Microsoft.NET
2008-12-29 18:00:38 ----RSD---- C:\Windows\assembly
2008-12-29 17:33:07 ----D---- C:\Windows\temp
2008-12-29 17:28:37 ----RD---- C:\Program Files (x86)
2008-12-29 15:58:51 ----D---- C:\Program Files (x86)\Steam
2008-12-29 15:44:25 ----AD---- C:\Windows
2008-12-29 14:56:23 ----HD---- C:\Windows\system32\drivers
2008-12-29 14:56:20 ----HD---- C:\ProgramData
2008-12-29 14:54:09 ----SHD---- C:\Windows\Installer
2008-12-29 14:54:07 ----HD---- C:\Config.Msi
2008-12-29 14:54:02 ----D---- C:\Windows\inf
2008-12-29 14:53:36 ----RD---- C:\Program Files
2008-12-29 14:25:03 ----D---- C:\Program Files (x86)\Canon
2008-12-29 13:54:21 ----D---- C:\Windows\Prefetch
2008-12-29 11:44:34 ----D---- C:\Windows\Minidump
2008-12-28 20:40:20 ----D---- C:\Windows\SysWOW64
2008-12-28 16:27:08 ----D---- C:\Windows\System32
2008-12-28 16:03:44 ----D---- C:\Program Files (x86)\Mozilla Firefox
2008-12-28 15:35:52 ----D---- C:\Windows\rescache
2008-12-28 14:53:01 ----D---- C:\Windows\system32\fr-FR
2008-12-28 14:52:56 ----D---- C:\Windows\system32\XPSViewer
2008-12-28 14:52:56 ----D---- C:\Windows\system32\wbem
2008-12-28 14:52:56 ----D---- C:\Windows\system32\en-US
2008-12-28 14:47:27 ----A---- C:\Windows\system32\BASSMOD.dll
2008-12-28 14:40:27 ----D---- C:\Program Files (x86)\eMule
2008-12-28 14:19:33 ----ASD---- C:\ProgramData\Microsoft
2008-12-28 14:19:33 ----AD---- C:\Program Files (x86)\Common Files\microsoft shared
2008-12-28 14:13:08 ----D---- C:\Program Files (x86)\Adobe
2008-12-28 13:49:30 ----D---- C:\Windows\winsxs
2008-12-24 18:23:15 ----D---- C:\Users\Razor1911\AppData\Roaming\uTorrent
2008-12-24 15:38:41 ----D---- C:\Users\Razor1911\AppData\Roaming\ZoomBrowser EX
2008-12-24 09:50:09 ----D---- C:\Users\Razor1911\AppData\Roaming\Canon
2008-12-24 09:26:04 ----D---- C:\Users\Razor1911\AppData\Roaming\Adobe
2008-12-23 18:57:18 ----D---- C:\Program Files (x86)\Common Files\Adobe
2008-12-23 18:57:06 ----RSD---- C:\Windows\Fonts
2008-12-23 17:53:57 ----D---- C:\Program Files (x86)\CCleaner
2008-12-23 16:06:37 ----AD---- C:\ProgramData\TEMP
2008-12-22 19:01:19 ----D---- C:\Program Files (x86)\Common Files\ACD Systems
2008-12-22 16:06:55 ----D---- C:\Users\Razor1911\AppData\Roaming\Download Manager
2008-12-22 13:28:00 ----A---- C:\Windows\aiptbl.ini
2008-12-21 17:42:23 ----D---- C:\ProgramData\NVIDIA
2008-12-21 17:16:38 ----D---- C:\Program Files (x86)\PhotomatixPro3
2008-12-21 17:03:36 ----A---- C:\Windows\NeroDigital.ini
2008-12-21 15:42:02 ----D---- C:\Windows\Debug
2008-12-20 20:08:35 ----D---- C:\Program Files (x86)\Messenger Plus! Live
2008-12-20 18:44:39 ----A---- C:\Windows\HideWin.exe
2008-12-20 17:21:26 ----SHD---- C:\System Volume Information
2008-12-20 16:31:23 ----D---- C:\ProgramData\ZoomBrowser
2008-12-19 19:35:30 ----SD---- C:\Users\Razor1911\AppData\Roaming\Microsoft
2008-12-19 19:12:39 ----D---- C:\Program Files (x86)\Windows Live
2008-12-19 18:59:48 ----D---- C:\Windows\Tasks
2008-12-19 18:52:45 ----D---- C:\Program Files (x86)\Internet Explorer
2008-12-19 18:52:44 ----D---- C:\Windows\system32\migration
2008-12-19 18:52:38 ----D---- C:\Windows\PolicyDefinitions
2008-12-19 17:40:28 ----D---- C:\Program Files (x86)\Common Files\System
2008-12-17 17:14:20 ----D---- C:\Program Files (x86)\SpeedFan
2008-12-17 17:08:40 ----D---- C:\Windows\Registration
2008-12-17 16:18:28 ----D---- C:\Users\Razor1911\AppData\Roaming\IM
2008-12-17 13:23:05 ----D---- C:\Temp
2008-12-14 17:41:54 ----D---- C:\Program Files (x86)\Common Files\SolidWorks Shared
2008-12-14 17:37:55 ----D---- C:\Windows\system32\GroupPolicy
2008-12-14 17:37:55 ----D---- C:\Program Files (x86)\Common Files\eDrawings2008
2008-12-14 17:37:55 ----D---- C:\Program Files (x86)\AGEIA Technologies
2008-12-14 17:37:54 ----D---- C:\SolidWorks Data
2008-12-14 14:46:03 ----D---- C:\Anciens documents
2008-12-14 14:24:17 ----RD---- C:\Users
2008-12-14 10:49:17 ----D---- C:\Windows\AppPatch
2008-12-14 10:49:17 ----D---- C:\Program Files (x86)\Windows Mail
2008-12-13 18:13:10 ----D---- C:\ProgramData\Microsoft Help
2008-12-13 17:46:29 ----D---- C:\ProgramData\FLEXnet
2008-12-13 17:16:24 ----HD---- C:\Program Files (x86)\InstallShield Installation Information
2008-12-13 17:16:24 ----D---- C:\Program Files (x86)\Common Files
2008-12-13 15:39:39 ----D---- C:\ProgramData\Adobe
2008-12-12 18:22:26 ----D---- C:\Program Files (x86)\Registry Mechanic
2008-12-10 17:34:06 ----D---- C:\Users\Razor1911\AppData\Roaming\Wireshark
2008-12-03 13:08:49 ----HD---- C:\Windows\msdownld.tmp
2008-12-03 13:00:04 ----D---- C:\Program Files (x86)\Common Files\Steam
2008-12-02 17:55:28 ----D---- C:\Windows\system32\directx
2008-12-02 16:49:55 ----D---- C:\ProgramData\Kaspersky Lab Setup Files
2008-11-30 18:14:59 ----A---- C:\Windows\system32\PerfStringBackup.INI
2008-11-30 16:49:25 ----D---- C:\Users\Razor1911\AppData\Roaming\Vso
2008-11-30 13:12:36 ----D---- C:\Program Files (x86)\intelliScore Polyphonic Demo

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R1 easdrv;easdrv; C:\Windows\system32\DRIVERS\easdrv.sys []
R1 ElbyCDIO;ElbyCDIO Driver; C:\Windows\System32\Drivers\ElbyCDIO.sys []
R1 epfwtdi;epfwtdi; C:\Windows\system32\DRIVERS\epfwtdi.sys []
R1 SCDEmu;SCDEmu; C:\Windows\system32\drivers\SCDEmu.sys []
R2 adfs;adfs; C:\Windows\system32\drivers\adfs.sys [2008-08-14 74720]
R2 avgntflt;avgntflt; C:\Windows\system32\DRIVERS\avgntflt.sys []
R2 eamon;EAMON; C:\Windows\system32\DRIVERS\eamon.sys []
R2 epfw;epfw; C:\Windows\system32\DRIVERS\epfw.sys []
R2 hcmon;VMware hcmon; \??\C:\Windows\system32\drivers\hcmon.sys []
R2 RMCAST;Pilote du protocole RMCAT PGMP; C:\Windows\system32\DRIVERS\RMCAST.sys []
R2 vmci;VMware vmci; \??\C:\Windows\system32\drivers\vmci.sys []
R2 VMnetBridge;VMware Bridge Protocol; C:\Windows\system32\DRIVERS\vmnetbridge.sys []
R2 VMnetuserif;VMware Network Application Interface; \??\C:\Windows\system32\drivers\vmnetuserif.sys []
R2 VMparport;VMware VMparport; \??\C:\Windows\system32\drivers\VMparport.sys []
R2 vmx86;VMware vmx86; \??\C:\Windows\system32\drivers\vmx86.sys []
R2 vstor2-ws60;Vstor2 WS60 Virtual Storage Driver; \??\C:\Program Files (x86)\VMware\VMware Player\vstor2-ws60.sys [2008-10-02 32816]
R3 ALCXWDM;Service for Realtek AC97 Audio (WDM); C:\Windows\system32\drivers\RTKVAC64.SYS []
R3 AnyDVD;AnyDVD; C:\Windows\System32\Drivers\AnyDVD.sys [2008-12-01 119744]
R3 Epfwndis;Eset Personal Firewall; C:\Windows\system32\DRIVERS\Epfwndis.sys []
R3 HabuFltr;Habu Mouse; C:\Windows\system32\drivers\habu.sys []
R3 ksthunk;Kernel Streaming Thunks; C:\Windows\system32\drivers\ksthunk.sys []
R3 LVPr2M64;Logitech LVPr2M64 Driver; C:\Windows\system32\DRIVERS\LVPr2M64.sys []
R3 NVENETFD;NVIDIA nForce 10/100/1000 Mbps Ethernet ; C:\Windows\system32\DRIVERS\nvmfdx64.sys []
R3 nvlddmkm;nvlddmkm; C:\Windows\system32\DRIVERS\nvlddmkm.sys []
R3 pcouffin;VSO Software pcouffin; C:\Windows\System32\Drivers\pcouffin.sys []
R3 SG762_64;SAGEM 802.11g XG762 1211B Driver; C:\Windows\system32\DRIVERS\WlanBZ64.sys []
R3 StillCam;Pilote d'appareil photo numérique série; C:\Windows\system32\DRIVERS\serscan.sys []
R3 vmkbd;VMware kbd; \??\C:\Windows\system32\drivers\VMkbd.sys []
R3 VMnetAdapter;VMware Virtual Ethernet Adapter Driver; C:\Windows\system32\DRIVERS\vmnetadapter.sys []
R3 WUDFRd;WUDFRd; C:\Windows\system32\DRIVERS\WUDFRd.sys []
S1 ntiomin;ntiomin; C:\Windows\system32\drivers\ntiomin.sys []
S1 ntiopnp;ntiopnp; C:\Windows\system32\drivers\ntiopnp.sys [2008-04-12 11264]
S2 TBPanel;TBPanel; C:\Windows\system32\drivers\TBPanel.sys [2002-07-25 5306]
S3 a24hsa2p;a24hsa2p; C:\Windows\system32\drivers\a24hsa2p.sys []
S3 ab818gl7;ab818gl7; C:\Windows\system32\drivers\ab818gl7.sys []
S3 b57nd60a;Broadcom NetXtreme Gigabit Ethernet - NDIS 6.0; C:\Windows\system32\DRIVERS\b57nd60a.sys []
S3 CmBatt;Pilote pour Batterie à méthode de contrôle ACPI Microsoft; C:\Windows\system32\DRIVERS\CmBatt.sys []
S3 driverhardwarev2x64;driverhardwarev2x64; \??\C:\Program Files (x86)\ma-config.com\Drivers\driverhardwarev2x64.sys [2008-09-02 16888]
S3 drmkaud;Filtre de décodeur DRM (Noyau Microsoft); C:\Windows\system32\drivers\drmkaud.sys []
S3 HdAudAddService;Pilote de fonction UAA 1.1 Microsoft pour le service High Definition Audio; C:\Windows\system32\drivers\HdAudio.sys []
S3 HSF_DPV;HSF_DPV; C:\Windows\system32\DRIVERS\VSTDPV6.SYS []
S3 HSFHWAZL;HSFHWAZL; C:\Windows\system32\DRIVERS\VSTAZL6.SYS []
S3 LVcKap64;Logitech AEC Driver; C:\Windows\system32\DRIVERS\LVcKap64.sys []
S3 LVMVDrv;Logitech Machine Vision Engine Loader; C:\Windows\system32\DRIVERS\LVMVDrv.sys []
S3 MRV6X64P;Pilote WiFi natif Vista 64-bits; C:\Windows\system32\DRIVERS\MRVW13C.sys []
S3 MSKSSRV;Proxy de service de répartition Microsoft; C:\Windows\system32\drivers\MSKSSRV.sys []
S3 MSPCLOCK;Proxy d'horloge de répartition Microsoft; C:\Windows\system32\drivers\MSPCLOCK.sys []
S3 MSPQM;Proxy de gestion de qualité de répartition Microsoft; C:\Windows\system32\drivers\MSPQM.sys []
S3 MSTEE;Convertisseur en T/site-à-site de répartition Microsoft; C:\Windows\system32\drivers\MSTEE.sys []
S3 NETw3v64;Intel(R) PRO/Wireless 3945ABG Adapter Driver for Windows Vista 64 Bit; C:\Windows\system32\DRIVERS\NETw3v64.sys []
S3 NETw4v64;Pilote de carte Intel(R) Wireless WiFi Link pour Windows Vista 64 bits; C:\Windows\system32\DRIVERS\NETw4v64.sys []
S3 NPF;NetGroup Packet Filter Driver; C:\Windows\system32\drivers\npf.sys [2004-05-14 32896]
S3 PCAMp50a64;PCAMp50a64 NDIS Protocol Driver; C:\Windows\System32\Drivers\PCAMp50a64.sys []
S3 PCASp50a64;PCASp50a64 NDIS Protocol Driver; C:\Windows\System32\Drivers\PCASp50a64.sys []
S3 SiwvidStart;SiwvidStart; \??\C:\Users\RAZOR1~1\AppData\Local\Temp\_ISTMP1.DIR\_ISTMP0.DIR\siwvid.sys []
S3 tbhsd;Tunebite High-Speed Dubbing; C:\Windows\system32\drivers\tbhsd.sys []
S3 uisp;Freescale USB JW32 driver; C:\Windows\System32\Drivers\usbicp.sys []
S3 usbscan;Pilote de scanneur USB; C:\Windows\system32\DRIVERS\usbscan.sys []
S3 vmusb;VMware USB Client Driver; C:\Windows\System32\Drivers\vmusb.sys []
S3 W8335X64;OLITEC WiFi Card Driver for Windows XP x64 ; C:\Windows\system32\DRIVERS\Mrvw126.sys []
S3 WimFltr;WimFltr; C:\Windows\system32\DRIVERS\wimfltr.sys []
S3 winachsf;winachsf; C:\Windows\system32\DRIVERS\VSTCNXT6.SYS []
S3 WpdUsb;WpdUsb; C:\Windows\system32\DRIVERS\wpdusb.sys []
S3 WSDPrintDevice;Prise en charge de l’impression WSD via UMB; C:\Windows\system32\DRIVERS\WSDPrint.sys []
S3 yukonx64;NDIS6.0 Miniport Driver for Marvell Yukon Ethernet Controller; C:\Windows\system32\DRIVERS\yk60x64.sys []
S4 MTsensor;ATK0110 ACPI UTILITY; C:\Windows\system32\DRIVERS\ASACPI.sys []
S4 rimmptsk;rimmptsk; C:\Windows\system32\DRIVERS\rimmpx64.sys []
S4 rimsptsk;rimsptsk; C:\Windows\system32\DRIVERS\rimspx64.sys []
S4 rismxdp;Ricoh xD-Picture Card Driver; C:\Windows\system32\DRIVERS\rixdpx64.sys []
S4 sdbus;sdbus; C:\Windows\system32\DRIVERS\sdbus.sys []
S4 WmiAcpi;Microsoft Windows Management Interface for ACPI; C:\Windows\system32\DRIVERS\wmiacpi.sys []

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 AntiVirScheduler;Avira AntiVir Personal - Free Antivirus Scheduler; C:\Program Files (x86)\Avira\AntiVir PersonalEdition Classic\sched.exe [2008-10-15 68865]
R2 AntiVirService;Avira AntiVir Personal - Free Antivirus Guard; C:\Program Files (x86)\Avira\AntiVir PersonalEdition Classic\avguard.exe [2008-10-15 151297]
R2 CPUCooLServer;CPUCooLServer Service; C:\Program Files (x86)\CPUCooL\CooLSrv.exe [2008-04-12 118784]
R2 ekrn;Eset Service; C:\Program Files\ESET\ESET Smart Security\x86\ekrn.exe [2008-08-18 468224]
R2 FLEXnet Licensing Service;FLEXnet Licensing Service; C:\Program Files (x86)\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe [2008-10-29 655624]
R2 IDriverT;InstallDriver Table Manager; C:\Program Files (x86)\Common Files\InstallShield\Driver\1050\Intel 32\IDriverT.exe [2004-10-22 73728]
R2 LVCOMSer;LVCOMSer; C:\Program Files\Common Files\LogiShrd\LVCOMSER\LVCSer64.exe [2007-10-19 255000]
R2 LVPrcS64;Process Monitor; C:\Program Files\Common Files\LogiShrd\LVMVFM\LVPrcSrv.exe [2007-10-19 182296]
R2 maconfservice;Ma-Config Service; C:\Program Files (x86)\ma-config.com\maconfservice.exe [2008-09-02 191656]
R2 MDM;Machine Debug Manager; C:\Program Files (x86)\Common Files\Microsoft Shared\VS7DEBUG\mdm.exe [2006-10-26 335872]
R2 msvsmon90;Visual Studio 2008 Remote Debugger; C:\Program Files\Microsoft Visual Studio 9.0\Common7\IDE\Remote Debugger\x64\msvsmon.exe [2007-11-08 4466688]
R2 Nero BackItUp Scheduler 4.0;Nero BackItUp Scheduler 4.0; C:\Program Files (x86)\Common Files\Nero\Nero BackItUp 4\NBService.exe [2008-09-24 935208]
R2 Net Driver HPZ12;Net Driver HPZ12; C:\Windows\System32\svchost.exe [2008-03-18 21504]
R2 nvsvc;NVIDIA Display Driver Service; C:\Windows\system32\nvvsvc.exe []
R2 O&O Defrag;O&O Defrag; C:\Windows\system32\oodag.exe []
R2 ose;Office Source Engine; C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2006-10-26 145184]
R2 PerfHost;Hôte de DLL de compteur de performance; C:\Windows\SysWow64\perfhost.exe [2008-03-18 19968]
R2 Pml Driver HPZ12;Pml Driver HPZ12; C:\Windows\System32\svchost.exe [2008-03-18 21504]
R2 PnkBstrA;PnkBstrA; C:\Windows\system32\PnkBstrA.exe [2008-06-11 66872]
R2 ScsiAccess;ScsiAccess; C:\Program Files (x86)\Photodex\ProShowProducer\ScsiAccess.exe [2008-10-27 181312]
R2 SeaPort;SeaPort; C:\Program Files (x86)\Microsoft\Search Enhancement Pack\SeaPort\SeaPort.exe [2008-12-04 226640]
R2 SolidWorks Licensing Service;SolidWorks Licensing Service; C:\Program Files (x86)\Common Files\SolidWorks Shared\Service\SolidWorksLicensing.exe [2008-08-04 79360]
R2 StarWindServiceAE;StarWind AE Service; C:\Program Files (x86)\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe [2007-05-28 275968]
R2 TuneUp.ProgramStatisticsSvc;@%SystemRoot%\System32\TUProgSt.exe,-1; C:\Windows\System32\TUProgSt.exe []
R2 ufad-ws60;VMware Agent Service; C:\Program Files (x86)\VMware\VMware Player\vmware-ufad.exe [2008-10-02 191024]
R2 UxTuneUp;@%SystemRoot%\System32\uxtuneup.dll,-4096; C:\Windows\System32\svchost.exe [2008-03-18 21504]
R2 VMAuthdService;VMware Authorization Service; C:\Program Files (x86)\VMware\VMware Player\vmware-authd.exe [2008-10-28 113200]
R2 VMnetDHCP;VMware DHCP Service; C:\Windows\system32\vmnetdhcp.exe [2008-10-28 326192]
R2 VMware NAT Service;VMware NAT Service; C:\Windows\system32\vmnat.exe [2008-10-28 399920]
S2 LVSrvLauncher;LVSrvLauncher; C:\Program Files\Common Files\LogiShrd\SrvLnch\SrvLnch.exe [2007-10-19 171032]
S2 odserv;Microsoft Office Diagnostics Service; C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE [2007-08-24 443776]
S2 rpcapd;Remote Packet Capture Protocol v.0 (experimental); C:\Program Files (x86)\WinPcap\rpcapd.exe [2007-11-14 92792]
S2 SBSDWSCService;SBSD Security Center Service; C:\Program Files (x86)\Spybot - Search & Destroy\SDWinSec.exe [2008-07-07 809296]
S2 skdll32;Serial Keys; C:\Windows\system32\skdll32.dll [2004-07-17 11264]
S2 Steam Client Service;Steam Client Service; C:\Program Files (x86)\Common Files\Steam\SteamService.exe [2008-12-03 104944]
S3 AppMgmt;Gestion d'applications; C:\Windows\system32\svchost.exe [2008-03-18 21504]
S3 clr_optimization_v2.0.50727_64;Microsoft .NET Framework NGEN v2.0.50727_X64; C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe [2008-07-27 93184]
S3 EhttpSrv;Eset HTTP Server; C:\Program Files\ESET\ESET Smart Security\EHttpSrv.exe [2008-08-18 21760]
S3 FLEXnet Licensing Service 64;FLEXnet Licensing Service 64; C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService64.exe [2008-12-23 1038088]
S3 TuneUp.Defrag;@%SystemRoot%\System32\TuneUpDefragService.exe,-1; C:\Windows\System32\TuneUpDefragService.exe []
S3 UmRdpService;Redirecteur de port du mode utilisateur des services Terminal Server; C:\Windows\System32\svchost.exe [2008-03-18 21504]
S4 Fax;Télécopie; C:\Windows\system32\fxssvc.exe []

-----------------EOF-----------------

Logfile of random's system information tool 1.05 (written by random/random)
Run by Razor1911 at 2008-12-29 18:11:35
Microsoft® Windows Vista™ Ultimate Édition Service Pack 1
System drive C: has 381 GB (53%) free of 715 GB
Total RAM: 2047 MB (50% free)

HijackThis download failed

======Scheduled tasks folder======

C:\Windows\tasks\Maintenance en 1 clic.job
C:\Windows\tasks\NeroLiveEpgUpdate-PC-de-Razor1911_Razor1911.job
C:\Windows\tasks\User_Feed_Synchronization-{CFD6A199-A2E2-4411-8CB4-E8B857A9856F}.job

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{06849E9F-C8D7-4D59-B87D-784B7D6BE0B3}]
Aide pour le lien d'Adobe PDF Reader - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll [2008-06-11 61816]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}]
Adobe PDF Link Helper - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2008-06-11 75128]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{5C255C8A-E604-49b4-9D64-90988571CECB}]
Click-to-Call BHO - C:\Program Files (x86)\Windows Live\Messenger\wlchtc.dll [2008-12-02 73040]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{6EBF7485-159F-4bff-A14F-B9E3AAC4465B}]
Search Helper - C:\Program Files (x86)\Microsoft\Search Enhancement Pack\Search Helper\SearchHelper.dll [2008-12-04 92504]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
SSVHelper Class - C:\Program Files (x86)\Java\jre1.6.0_07\bin\ssv.dll [2008-06-10 509328]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
Programme d'aide de l'Assistant de connexion Windows Live - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2008-11-18 408952]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{A057A204-BACC-4D26-8287-79A187E26987}]
VMN Toolbar - C:\PROGRA~2\VMNTOO~1\VMNTOO~1.DLL [2007-09-24 2022912]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{A44CBB0B-C77D-4BF5-87CC-B4EE79AD1B7E}]
SnapFlash Class - C:\Program Files (x86)\Common Files\Justdo\Jd2002.dll [2006-03-16 131072]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AE7CD045-E861-484f-8273-0445EE161910}]
Adobe PDF Conversion Toolbar Helper - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll [2008-06-11 345480]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E15A8DC0-8516-42A1-81EA-DC94EC1ACF10}]
Windows Live Toolbar Helper - C:\Program Files (x86)\Windows Live\Toolbar\wltcore.dll [2008-12-08 1067352]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{F4971EE7-DAA0-4053-9964-665D8EE6A077}]
SmartSelect Class - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll [2008-06-11 345480]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{A057A204-BACC-4D26-8287-79A187E26987} - VMN Toolbar - C:\PROGRA~2\VMNTOO~1\VMNTOO~1.DLL [2007-09-24 2022912]
{47833539-D0C5-4125-9FA8-0819E2EAAC93} - Adobe PDF - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll [2008-06-11 345480]
{21FA44EF-376D-4D53-9B0F-8A89D3229068} - &Windows Live Toolbar - C:\Program Files (x86)\Windows Live\Toolbar\wltcore.dll [2008-12-08 1067352]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"Habu"=C:\Program Files (x86)\Razer\Habu\razerhid.exe [2007-05-11 176128]
"atwtusb"=atwtusb.exe beta []
"SysMon"=C:\ProgramData\SysMon\SysMon.dll [2008-01-24 626688]
"WinFast2KLoadDefault"=C:\Windows\system32\wf2kcpl.dll [2005-09-16 616448]
"VMware hqtray"=C:\Program Files (x86)\VMware\VMware Player\hqtray.exe [2008-10-28 64048]
"Acrobat Assistant 8.0"=C:\Program Files (x86)\Adobe\Acrobat 9.0\Acrobat\Acrotray.exe [2008-06-11 640376]
"AdobeCS4ServiceManager"=C:\Program Files (x86)\Common Files\Adobe\CS4ServiceManager\CS4ServiceManager.exe [2008-08-14 611712]
"avgnt"=C:\Program Files (x86)\Avira\AntiVir PersonalEdition Classic\avgnt.exe [2008-06-12 266497]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"Sidebar"=C:\Program Files\Windows Sidebar\sidebar.exe [2008-03-18 1555968]
"ehTray.exe"=C:\Windows\ehome\ehTray.exe [2008-03-18 138240]
"Steam"=C:\Program Files (x86)\Steam\Steam.exe -silent []
"AnyDVD"=C:\Program Files (x86)\SlySoft\AnyDVD\AnyDVD.exe [2008-12-01 89024]
"ISUSPM Startup"=c:\PROGRA~2\COMMON~1\INSTAL~1\UPDATE~1\isuspm.exe [2005-02-16 221184]
"SpybotSD TeaTimer"=C:\Program Files (x86)\Spybot - Search & Destroy\TeaTimer.exe [2008-09-16 1833296]
"IndxStoreSvr_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}"=C:\Program Files (x86)\Common Files\Nero\Lib\NMIndexStoreSvr.exe ASO-616B5711-6DAE-4795-A05F-39A1E5104020 []

C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup
Privoxy.lnk.disabled - C:\Program Files (x86)\Privoxy\privoxy.exe

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=0
"ConsentPromptBehaviorUser"=0
"EnableInstallerDetection"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
"EnableLUA"=0

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=145

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoActiveDesktop"=
"ForceActiveDesktopOn"=
"NoDriveTypeAutoRun"=
"NoActiveDesktopChanges"=

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

======File associations======

.js - edit -
.js - open -
.txt - open -

======List of files/folders created in the last 1 months======

2079-04-10 23:08:45 ----D---- C:\ProgramData\Spybot - Search & Destroy
2079-04-10 23:08:45 ----D---- C:\Program Files (x86)\Spybot - Search & Destroy
2079-04-10 22:43:27 ----D---- C:\Program Files (x86)\UltraISO
2079-04-10 22:43:27 ----D---- C:\Program Files (x86)\Common Files\EZB Systems
2008-12-29 17:28:37 ----D---- C:\Program Files (x86)\trend micro
2008-12-29 17:28:36 ----D---- C:\rsit
2008-12-29 17:21:54 ----A---- C:\FindyKill.txt
2008-12-29 14:56:20 ----D---- C:\ProgramData\Avira
2008-12-29 14:56:20 ----D---- C:\Program Files (x86)\Avira
2008-12-29 14:17:29 ----A---- C:\Windows\ntbtlog.txt
2008-12-29 13:02:40 ----D---- C:\Program Files (x86)\Safer Networking
2008-12-28 20:40:22 ----D---- C:\ComboetFix
2008-12-28 20:40:20 ----A---- C:\Windows\system32\CF31518.exe
2008-12-28 20:37:19 ----A---- C:\Windows\system32\CF30943.exe
2008-12-28 20:25:32 ----A---- C:\Windows\system32\CF28693.exe
2008-12-28 20:25:29 ----A---- C:\Windows\system32\cmd.execf
2008-12-28 20:24:54 ----A---- C:\Windows\system32\CF28556.exe
2008-12-28 20:24:50 ----A---- C:\Windows\system32\swsc.exe
2008-12-28 20:24:49 ----A---- C:\Bug.txt
2008-12-28 20:24:35 ----A---- C:\InfoSat.txt
2008-12-28 19:34:46 ----D---- C:\Program Files (x86)\FindyKill
2008-12-28 16:40:11 ----D---- C:\Nouveau dossier
2008-12-28 16:27:28 ----D---- C:\Users\Razor1911\AppData\Roaming\Malwarebytes
2008-12-28 16:27:19 ----D---- C:\ProgramData\Malwarebytes
2008-12-28 16:27:19 ----D---- C:\Program Files (x86)\Malwarebytes' Anti-Malware
2008-12-28 14:13:20 ----D---- C:\Users\Razor1911\AppData\Roaming\DxO_Labs
2008-12-28 14:09:55 ----D---- C:\ProgramData\DxO_Labs
2008-12-28 13:31:41 ----A---- C:\Windows\system32\icardres.dll
2008-12-28 13:31:40 ----A---- C:\Windows\system32\PresentationNative_v0300.dll
2008-12-28 13:31:40 ----A---- C:\Windows\system32\PresentationHostProxy.dll
2008-12-28 13:31:40 ----A---- C:\Windows\system32\infocardapi.dll
2008-12-28 13:31:40 ----A---- C:\Windows\system32\icardagt.exe
2008-12-28 13:31:32 ----A---- C:\Windows\system32\PresentationCFFRasterizerNative_v0300.dll
2008-12-28 13:31:30 ----A---- C:\Windows\system32\PresentationHost.exe
2008-12-28 13:23:07 ----A---- C:\Windows\system32\netfxperf.dll
2008-12-28 13:22:54 ----A---- C:\Windows\system32\dfshim.dll
2008-12-28 13:22:40 ----A---- C:\Windows\system32\mscoree.dll
2008-12-28 13:22:32 ----A---- C:\Windows\system32\mscorier.dll
2008-12-28 13:22:29 ----A---- C:\Windows\system32\mscories.dll
2008-12-23 14:21:38 ----D---- C:\Users\Razor1911\AppData\Roaming\IDMComp
2008-12-23 14:21:38 ----D---- C:\Program Files (x86)\IDM Computer Solutions
2008-12-22 19:01:16 ----D---- C:\ProgramData\ACD Systems
2008-12-22 19:01:13 ----D---- C:\Program Files (x86)\ACD Systems
2008-12-22 18:44:58 ----D---- C:\ProgramData\Avg8
2008-12-21 19:03:16 ----A---- C:\Windows\aspack.ini
2008-12-21 18:59:48 ----D---- C:\Program Files (x86)\ASPack
2008-12-21 17:21:47 ----D---- C:\Users\Razor1911\AppData\Roaming\HDRsoft
2008-12-21 16:26:23 ----A---- C:\Windows\system32\mshtml.dll
2008-12-21 10:24:15 ----D---- C:\Program Files (x86)\Badaboom
2008-12-20 20:13:49 ----D---- C:\ProgramData\Messenger Plus!
2008-12-20 18:44:43 ----D---- C:\Program Files (x86)\Realtek AC97
2008-12-19 19:11:32 ----D---- C:\Program Files (x86)\Microsoft Sync Framework
2008-12-19 19:10:45 ----D---- C:\Program Files (x86)\Microsoft
2008-12-19 19:10:03 ----D---- C:\Program Files (x86)\Windows Live SkyDrive
2008-12-19 18:52:44 ----D---- C:\Windows\system32\wdi
2008-12-19 17:51:04 ----A---- C:\Windows\system32\jsproxy.dll
2008-12-19 17:51:04 ----A---- C:\Windows\system32\ieui.dll
2008-12-19 17:51:04 ----A---- C:\Windows\system32\ieakeng.dll
2008-12-19 17:51:04 ----A---- C:\Windows\system32\icardie.dll
2008-12-19 17:51:04 ----A---- C:\Windows\system32\corpol.dll
2008-12-19 17:51:04 ----A---- C:\Windows\system32\advpack.dll
2008-12-19 17:51:04 ----A---- C:\Windows\system32\admparse.dll
2008-12-19 17:51:03 ----A---- C:\Windows\system32\msls31.dll
2008-12-19 17:51:03 ----A---- C:\Windows\system32\msfeedsbs.dll
2008-12-19 17:51:02 ----A---- C:\Windows\system32\PrivacIE.dll
2008-12-19 17:51:02 ----A---- C:\Windows\system32\msfeeds.dll
2008-12-19 17:51:02 ----A---- C:\Windows\system32\iernonce.dll
2008-12-19 17:51:02 ----A---- C:\Windows\system32\ieapfltr.dll
2008-12-19 17:51:01 ----A---- C:\Windows\system32\occache.dll
2008-12-19 17:51:01 ----A---- C:\Windows\system32\inseng.dll
2008-12-19 17:51:01 ----A---- C:\Windows\system32\imgutil.dll
2008-12-19 17:51:01 ----A---- C:\Windows\system32\iepeers.dll
2008-12-19 17:51:01 ----A---- C:\Windows\system32\dxtrans.dll
2008-12-19 17:51:01 ----A---- C:\Windows\system32\dxtmsft.dll
2008-12-19 17:51:00 ----A---- C:\Windows\system32\webcheck.dll
2008-12-19 17:51:00 ----A---- C:\Windows\system32\pngfilt.dll
2008-12-19 17:51:00 ----A---- C:\Windows\system32\mstime.dll
2008-12-19 17:51:00 ----A---- C:\Windows\system32\msrating.dll
2008-12-19 17:51:00 ----A---- C:\Windows\system32\mshtmled.dll
2008-12-19 17:51:00 ----A---- C:\Windows\system32\licmgr10.dll
2008-12-19 17:51:00 ----A---- C:\Windows\system32\iesetup.dll
2008-12-19 17:51:00 ----A---- C:\Windows\system32\ieaksie.dll
2008-12-19 17:50:59 ----A---- C:\Windows\system32\WinFXDocObj.exe
2008-12-19 17:50:59 ----A---- C:\Windows\system32\wextract.exe
2008-12-19 17:50:59 ----A---- C:\Windows\system32\url.dll
2008-12-19 17:50:59 ----A---- C:\Windows\system32\SetIEInstalledDate.exe
2008-12-19 17:50:59 ----A---- C:\Windows\system32\SetDepNx.exe
2008-12-19 17:50:59 ----A---- C:\Windows\system32\PDMSetup.exe
2008-12-19 17:50:59 ----A---- C:\Windows\system32\mshtmler.dll
2008-12-19 17:50:59 ----A---- C:\Windows\system32\msfeedssync.exe
2008-12-19 17:50:59 ----A---- C:\Windows\system32\jscript.dll
2008-12-19 17:50:59 ----A---- C:\Windows\system32\ieUnatt.exe
2008-12-19 17:50:59 ----A---- C:\Windows\system32\iedkcs32.dll
2008-12-19 17:50:59 ----A---- C:\Windows\system32\ieakui.dll
2008-12-19 17:50:58 ----A---- C:\Windows\system32\wininet.dll
2008-12-19 17:50:58 ----A---- C:\Windows\system32\mshta.exe
2008-12-19 17:50:58 ----A---- C:\Windows\system32\iertutil.dll
2008-12-19 17:50:58 ----A---- C:\Windows\system32\ie4uinit.exe
2008-12-19 17:50:57 ----A---- C:\Windows\system32\iexpress.exe
2008-12-19 17:50:56 ----A---- C:\Windows\system32\urlmon.dll
2008-12-19 17:50:55 ----A---- C:\Windows\system32\ieframe.dll
2008-12-19 17:40:27 ----D---- C:\Program Files (x86)\Microsoft Office Outlook Connector
2008-12-14 17:52:14 ----D---- C:\Users\Razor1911\AppData\Roaming\SolidWorks 2008
2008-12-14 17:50:33 ----D---- C:\Users\Razor1911\AppData\Roaming\SolidWorks
2008-12-14 17:37:53 ----D---- C:\ProgramData\SolidWorks
2008-12-14 17:37:53 ----D---- C:\Program Files (x86)\SolidWorks
2008-12-14 14:34:35 ----A---- C:\MDL 2.0 Debug.txt
2008-12-13 17:53:49 ----A---- C:\Windows\system32\tzres.dll
2008-12-13 17:48:52 ----A---- C:\Windows\system32\shell32.dll
2008-12-13 17:48:40 ----A---- C:\Windows\system32\Apphlpdm.dll
2008-12-13 17:48:37 ----A---- C:\Windows\system32\GameUXLegacyGDFs.dll
2008-12-13 17:48:34 ----A---- C:\Windows\system32\gdi32.dll
2008-12-13 17:48:33 ----A---- C:\Windows\system32\mf.dll
2008-12-13 17:48:30 ----A---- C:\Windows\system32\WMVCORE.DLL
2008-12-13 17:48:29 ----A---- C:\Windows\system32\WMNetMgr.dll
2008-12-13 17:48:28 ----A---- C:\Windows\system32\logagent.exe
2008-12-13 17:47:51 ----A---- C:\Windows\explorer.exe
2008-12-13 17:47:50 ----A---- C:\Windows\system32\explorer.exe
2008-12-13 17:29:22 ----D---- C:\Users\Razor1911\AppData\Roaming\NewsLeecher
2008-12-13 17:16:24 ----D---- C:\Program Files (x86)\Justdo Software
2008-12-13 17:16:24 ----D---- C:\Program Files (x86)\Common Files\Justdo
2008-12-13 17:11:35 ----D---- C:\Program Files (x86)\NewsLeecher
2008-12-13 16:48:48 ----D---- C:\Program Files (x86)\PDF Password Remover v3.0
2008-12-12 18:46:08 ----A---- C:\Windows\system32\uxtuneup.dll
2008-12-12 18:46:07 ----A---- C:\Windows\system32\authuitu.dll
2008-12-06 11:12:41 ----D---- C:\Program Files (x86)\AVG
2008-12-06 10:59:02 ----D---- C:\Program Files (x86)\TuneUp Utilities 2009
2008-12-06 10:58:01 ----SHD---- C:\ProgramData\{55A29068-F2CE-456C-9148-C869879E2357}
2008-12-06 10:45:24 ----A---- C:\Windows\system32\WindowsCodecsExt.dll
2008-12-06 10:45:24 ----A---- C:\Windows\system32\PhotoMetadataHandler.dll
2008-12-06 10:45:23 ----A---- C:\Windows\system32\WindowsCodecs.dll
2008-12-06 10:45:14 ----A---- C:\Windows\system32\connect.dll
2008-12-06 10:45:13 ----A---- C:\Windows\system32\PortableDeviceApi.dll
2008-12-03 18:04:14 ----A---- C:\Windows\system32\wups.dll
2008-12-03 18:04:14 ----A---- C:\Windows\system32\wudriver.dll
2008-12-03 18:04:14 ----A---- C:\Windows\system32\wuapi.dll
2008-12-03 18:04:06 ----A---- C:\Windows\system32\wuwebv.dll
2008-12-03 18:04:06 ----A---- C:\Windows\system32\wuapp.exe
2008-12-03 15:33:35 ----D---- C:\DriveKey
2008-12-03 14:37:45 ----D---- C:\Program Files (x86)\WinHTTrack
2008-12-02 22:37:20 ----A---- C:\Windows\system32\sirenacm.dll
2008-12-02 17:28:55 ----D---- C:\Program Files (x86)\XN Resource Editor
2008-12-02 17:10:24 ----D---- C:\Users\Razor1911\AppData\Roaming\PE Explorer
2008-12-02 17:10:19 ----D---- C:\Program Files (x86)\PE Explorer
2008-11-30 18:16:55 ----D---- C:\Users\Razor1911\AppData\Roaming\VMware
2008-11-30 18:15:32 ----A---- C:\Windows\system32\vmnetdhcp.exe
2008-11-30 18:15:28 ----A---- C:\Windows\system32\vmnat.exe
2008-11-30 18:14:49 ----D---- C:\ProgramData\VMware
2008-11-30 18:14:48 ----D---- C:\Program Files (x86)\VMware
2008-11-30 14:50:41 ----A---- C:\Windows\system32\sipr3260.dll
2008-11-30 13:52:21 ----D---- C:\Program Files (x86)\Orca

======List of files/folders modified in the last 1 months======

2079-04-10 22:39:31 ----D---- C:\Program Files (x86)\Ad-Aware
2079-04-10 22:34:18 ----D---- C:\Program Files (x86)\EasyRecovery
2008-12-29 18:02:50 ----D---- C:\Windows\Microsoft.NET
2008-12-29 18:00:38 ----RSD---- C:\Windows\assembly
2008-12-29 17:33:07 ----D---- C:\Windows\temp
2008-12-29 17:28:37 ----RD---- C:\Program Files (x86)
2008-12-29 15:58:51 ----D---- C:\Program Files (x86)\Steam
2008-12-29 15:44:25 ----AD---- C:\Windows
2008-12-29 14:56:23 ----HD---- C:\Windows\system32\drivers
2008-12-29 14:56:20 ----HD---- C:\ProgramData
2008-12-29 14:54:09 ----SHD---- C:\Windows\Installer
2008-12-29 14:54:07 ----HD---- C:\Config.Msi
2008-12-29 14:54:02 ----D---- C:\Windows\inf
2008-12-29 14:53:36 ----RD---- C:\Program Files
2008-12-29 14:25:03 ----D---- C:\Program Files (x86)\Canon
2008-12-29 13:54:21 ----D---- C:\Windows\Prefetch
2008-12-29 11:44:34 ----D---- C:\Windows\Minidump
2008-12-28 20:40:20 ----D---- C:\Windows\SysWOW64
2008-12-28 16:27:08 ----D---- C:\Windows\System32
2008-12-28 16:03:44 ----D---- C:\Program Files (x86)\Mozilla Firefox
2008-12-28 15:35:52 ----D---- C:\Windows\rescache
2008-12-28 14:53:01 ----D---- C:\Windows\system32\fr-FR
2008-12-28 14:52:56 ----D---- C:\Windows\system32\XPSViewer
2008-12-28 14:52:56 ----D---- C:\Windows\system32\wbem
2008-12-28 14:52:56 ----D---- C:\Windows\system32\en-US
2008-12-28 14:47:27 ----A---- C:\Windows\system32\BASSMOD.dll
2008-12-28 14:40:27 ----D---- C:\Program Files (x86)\eMule
2008-12-28 14:19:33 ----ASD---- C:\ProgramData\Microsoft
2008-12-28 14:19:33 ----AD---- C:\Program Files (x86)\Common Files\microsoft shared
2008-12-28 14:13:08 ----D---- C:\Program Files (x86)\Adobe
2008-12-28 13:49:30 ----D---- C:\Windows\winsxs
2008-12-24 18:23:15 ----D---- C:\Users\Razor1911\AppData\Roaming\uTorrent
2008-12-24 15:38:41 ----D---- C:\Users\Razor1911\AppData\Roaming\ZoomBrowser EX
2008-12-24 09:50:09 ----D---- C:\Users\Razor1911\AppData\Roaming\Canon
2008-12-24 09:26:04 ----D---- C:\Users\Razor1911\AppData\Roaming\Adobe
2008-12-23 18:57:18 ----D---- C:\Program Files (x86)\Common Files\Adobe
2008-12-23 18:57:06 ----RSD---- C:\Windows\Fonts
2008-12-23 17:53:57 ----D---- C:\Program Files (x86)\CCleaner
2008-12-23 16:06:37 ----AD---- C:\ProgramData\TEMP
2008-12-22 19:01:19 ----D---- C:\Program Files (x86)\Common Files\ACD Systems
2008-12-22 16:06:55 ----D---- C:\Users\Razor1911\AppData\Roaming\Download Manager
2008-12-22 13:28:00 ----A---- C:\Windows\aiptbl.ini
2008-12-21 17:42:23 ----D---- C:\ProgramData\NVIDIA
2008-12-21 17:16:38 ----D---- C:\Program Files (x86)\PhotomatixPro3
2008-12-21 17:03:36 ----A---- C:\Windows\NeroDigital.ini
2008-12-21 15:42:02 ----D---- C:\Windows\Debug
2008-12-20 20:08:35 ----D---- C:\Program Files (x86)\Messenger Plus! Live
2008-12-20 18:44:39 ----A---- C:\Windows\HideWin.exe
2008-12-20 17:21:26 ----SHD---- C:\System Volume Information
2008-12-20 16:31:23 ----D---- C:\ProgramData\ZoomBrowser
2008-12-19 19:35:30 ----SD---- C:\Users\Razor1911\AppData\Roaming\Microsoft
2008-12-19 19:12:39 ----D---- C:\Program Files (x86)\Windows Live
2008-12-19 18:59:48 ----D---- C:\Windows\Tasks
2008-12-19 18:52:45 ----D---- C:\Program Files (x86)\Internet Explorer
2008-12-19 18:52:44 ----D---- C:\Windows\system32\migration
2008-12-19 18:52:38 ----D---- C:\Windows\PolicyDefinitions
2008-12-19 17:40:28 ----D---- C:\Program Files (x86)\Common Files\System
2008-12-17 17:14:20 ----D---- C:\Program Files (x86)\SpeedFan
2008-12-17 17:08:40 ----D---- C:\Windows\Registration
2008-12-17 16:18:28 ----D---- C:\Users\Razor1911\AppData\Roaming\IM
2008-12-17 13:23:05 ----D---- C:\Temp
2008-12-14 17:41:54 ----D---- C:\Program Files (x86)\Common Files\SolidWorks Shared
2008-12-14 17:37:55 ----D---- C:\Windows\system32\GroupPolicy
2008-12-14 17:37:55 ----D---- C:\Program Files (x86)\Common Files\eDrawings2008
2008-12-14 17:37:55 ----D---- C:\Program Files (x86)\AGEIA Technologies
2008-12-14 17:37:54 ----D---- C:\SolidWorks Data
2008-12-14 14:46:03 ----D---- C:\Anciens documents
2008-12-14 14:24:17 ----RD---- C:\Users
2008-12-14 10:49:17 ----D---- C:\Windows\AppPatch
2008-12-14 10:49:17 ----D---- C:\Program Files (x86)\Windows Mail
2008-12-13 18:13:10 ----D---- C:\ProgramData\Microsoft Help
2008-12-13 17:46:29 ----D---- C:\ProgramData\FLEXnet
2008-12-13 17:16:24 ----HD---- C:\Program Files (x86)\InstallShield Installation Information
2008-12-13 17:16:24 ----D---- C:\Program Files (x86)\Common Files
2008-12-13 15:39:39 ----D---- C:\ProgramData\Adobe
2008-12-12 18:22:26 ----D---- C:\Program Files (x86)\Registry Mechanic
2008-12-10 17:34:06 ----D---- C:\Users\Razor1911\AppData\Roaming\Wireshark
2008-12-03 13:08:49 ----HD---- C:\Windows\msdownld.tmp
2008-12-03 13:00:04 ----D---- C:\Program Files (x86)\Common Files\Steam
2008-12-02 17:55:28 ----D---- C:\Windows\system32\directx
2008-12-02 16:49:55 ----D---- C:\ProgramData\Kaspersky Lab Setup Files
2008-11-30 18:14:59 ----A---- C:\Windows\system32\PerfStringBackup.INI
2008-11-30 16:49:25 ----D---- C:\Users\Razor1911\AppData\Roaming\Vso
2008-11-30 13:12:36 ----D---- C:\Program Files (x86)\intelliScore Polyphonic Demo

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R1 easdrv;easdrv; C:\Windows\system32\DRIVERS\easdrv.sys []
R1 ElbyCDIO;ElbyCDIO Driver; C:\Windows\System32\Drivers\ElbyCDIO.sys []
R1 epfwtdi;epfwtdi; C:\Windows\system32\DRIVERS\epfwtdi.sys []
R1 SCDEmu;SCDEmu; C:\Windows\system32\drivers\SCDEmu.sys []
R2 adfs;adfs; C:\Windows\system32\drivers\adfs.sys [2008-08-14 74720]
R2 avgntflt;avgntflt; C:\Windows\system32\DRIVERS\avgntflt.sys []
R2 eamon;EAMON; C:\Windows\system32\DRIVERS\eamon.sys []
R2 epfw;epfw; C:\Windows\system32\DRIVERS\epfw.sys []
R2 hcmon;VMware hcmon; \??\C:\Windows\system32\drivers\hcmon.sys []
R2 RMCAST;Pilote du protocole RMCAT PGMP; C:\Windows\system32\DRIVERS\RMCAST.sys []
R2 vmci;VMware vmci; \??\C:\Windows\system32\drivers\vmci.sys []
R2 VMnetBridge;VMware Bridge Protocol; C:\Windows\system32\DRIVERS\vmnetbridge.sys []
R2 VMnetuserif;VMware Network Application Interface; \??\C:\Windows\system32\drivers\vmnetuserif.sys []
R2 VMparport;VMware VMparport; \??\C:\Windows\system32\drivers\VMparport.sys []
R2 vmx86;VMware vmx86; \??\C:\Windows\system32\drivers\vmx86.sys []
R2 vstor2-ws60;Vstor2 WS60 Virtual Storage Driver; \??\C:\Program Files (x86)\VMware\VMware Player\vstor2-ws60.sys [2008-10-02 32816]
R3 ALCXWDM;Service for Realtek AC97 Audio (WDM); C:\Windows\system32\drivers\RTKVAC64.SYS []
R3 AnyDVD;AnyDVD; C:\Windows\System32\Drivers\AnyDVD.sys [2008-12-01 119744]
R3 Epfwndis;Eset Personal Firewall; C:\Windows\system32\DRIVERS\Epfwndis.sys []
R3 HabuFltr;Habu Mouse; C:\Windows\system32\drivers\habu.sys []
R3 ksthunk;Kernel Streaming Thunks; C:\Windows\system32\drivers\ksthunk.sys []
R3 LVPr2M64;Logitech LVPr2M64 Driver; C:\Windows\system32\DRIVERS\LVPr2M64.sys []
R3 NVENETFD;NVIDIA nForce 10/100/1000 Mbps Ethernet ; C:\Windows\system32\DRIVERS\nvmfdx64.sys []
R3 nvlddmkm;nvlddmkm; C:\Windows\system32\DRIVERS\nvlddmkm.sys []
R3 pcouffin;VSO Software pcouffin; C:\Windows\System32\Drivers\pcouffin.sys []
R3 SG762_64;SAGEM 802.11g XG762 1211B Driver; C:\Windows\system32\DRIVERS\WlanBZ64.sys []
R3 StillCam;Pilote d'appareil photo numérique série; C:\Windows\system32\DRIVERS\serscan.sys []
R3 vmkbd;VMware kbd; \??\C:\Windows\system32\drivers\VMkbd.sys []
R3 VMnetAdapter;VMware Virtual Ethernet Adapter Driver; C:\Windows\system32\DRIVERS\vmnetadapter.sys []
R3 WUDFRd;WUDFRd; C:\Windows\system32\DRIVERS\WUDFRd.sys []
S1 ntiomin;ntiomin; C:\Windows\system32\drivers\ntiomin.sys []
S1 ntiopnp;ntiopnp; C:\Windows\system32\drivers\ntiopnp.sys [2008-04-12 11264]
S2 TBPanel;TBPanel; C:\Windows\system32\drivers\TBPanel.sys [2002-07-25 5306]
S3 a24hsa2p;a24hsa2p; C:\Windows\system32\drivers\a24hsa2p.sys []
S3 ab818gl7;ab818gl7; C:\Windows\system32\drivers\ab818gl7.sys []
S3 b57nd60a;Broadcom NetXtreme Gigabit Ethernet - NDIS 6.0; C:\Windows\system32\DRIVERS\b57nd60a.sys []
S3 CmBatt;Pilote pour Batterie à méthode de contrôle ACPI Microsoft; C:\Windows\system32\DRIVERS\CmBatt.sys []
S3 driverhardwarev2x64;driverhardwarev2x64; \??\C:\Program Files (x86)\ma-config.com\Drivers\driverhardwarev2x64.sys [2008-09-02 16888]
S3 drmkaud;Filtre de décodeur DRM (Noyau Microsoft); C:\Windows\system32\drivers\drmkaud.sys []
S3 HdAudAddService;Pilote de fonction UAA 1.1 Microsoft pour le service High Definition Audio; C:\Windows\system32\drivers\HdAudio.sys []
S3 HSF_DPV;HSF_DPV; C:\Windows\system32\DRIVERS\VSTDPV6.SYS []
S3 HSFHWAZL;HSFHWAZL; C:\Windows\system32\DRIVERS\VSTAZL6.SYS []
S3 LVcKap64;Logitech AEC Driver; C:\Windows\system32\DRIVERS\LVcKap64.sys []
S3 LVMVDrv;Logitech Machine Vision Engine Loader; C:\Windows\system32\DRIVERS\LVMVDrv.sys []
S3 MRV6X64P;Pilote WiFi natif Vista 64-bits; C:\Windows\system32\DRIVERS\MRVW13C.sys []
S3 MSKSSRV;Proxy de service de répartition Microsoft; C:\Windows\system32\drivers\MSKSSRV.sys []
S3 MSPCLOCK;Proxy d'horloge de répartition Microsoft; C:\Windows\system32\drivers\MSPCLOCK.sys []
S3 MSPQM;Proxy de gestion de qualité de répartition Microsoft; C:\Windows\system32\drivers\MSPQM.sys []
S3 MSTEE;Convertisseur en T/site-à-site de répartition Microsoft; C:\Windows\system32\drivers\MSTEE.sys []
S3 NETw3v64;Intel(R) PRO/Wireless 3945ABG Adapter Driver for Windows Vista 64 Bit; C:\Windows\system32\DRIVERS\NETw3v64.sys []
S3 NETw4v64;Pilote de carte Intel(R) Wireless WiFi Link pour Windows Vista 64 bits; C:\Windows\system32\DRIVERS\NETw4v64.sys []
S3 NPF;NetGroup Packet Filter Driver; C:\Windows\system32\drivers\npf.sys [2004-05-14 32896]
S3 PCAMp50a64;PCAMp50a64 NDIS Protocol Driver; C:\Windows\System32\Drivers\PCAMp50a64.sys []
S3 PCASp50a64;PCASp50a64 NDIS Protocol Driver; C:\Windows\System32\Drivers\PCASp50a64.sys []
S3 SiwvidStart;SiwvidStart; \??\C:\Users\RAZOR1~1\AppData\Local\Temp\_ISTMP1.DIR\_ISTMP0.DIR\siwvid.sys []
S3 tbhsd;Tunebite High-Speed Dubbing; C:\Windows\system32\drivers\tbhsd.sys []
S3 uisp;Freescale USB JW32 driver; C:\Windows\System32\Drivers\usbicp.sys []
S3 usbscan;Pilote de scanneur USB; C:\Windows\system32\DRIVERS\usbscan.sys []
S3 vmusb;VMware USB Client Driver; C:\Windows\System32\Drivers\vmusb.sys []
S3 W8335X64;OLITEC WiFi Card Driver for Windows XP x64 ; C:\Windows\system32\DRIVERS\Mrvw126.sys []
S3 WimFltr;WimFltr; C:\Windows\system32\DRIVERS\wimfltr.sys []
S3 winachsf;winachsf; C:\Windows\system32\DRIVERS\VSTCNXT6.SYS []
S3 WpdUsb;WpdUsb; C:\Windows\system32\DRIVERS\wpdusb.sys []
S3 WSDPrintDevice;Prise en charge de l’impression WSD via UMB; C:\Windows\system32\DRIVERS\WSDPrint.sys []
S3 yukonx
0
Réponse 11 / 35
Utilisateur anonyme
 
Re,

Il manque un rapport et as tu fait l'option 2 de findykill ?

Poste le rapport.
0
Réponse 12 / 35
Bidoulleux02 Messages postés 41 Statut Membre
 
Je n'ai pas posté avec l'option 2 de findykill car le PC ne redémarre qu'une seule fois et après plus riien. Apparement je viens de neutraliser le bagle mais comment faut-il faire pour réactiver le wifi en sachant que j'ai Windows Vista. J'ai aussi un problème dans l'invité de commande où les lettres avec accent s'affichent mal ?

Merci.
0
Réponse 13 / 35
Utilisateur anonyme
 
Re,

Tu croit avoir neutraliser le bagle toi !!!!

http://www.actuneuf.com/tutoriels/configurer-sa-connexion-wifi-manuellement/

Il me faut aussi le rapport LOG.TXT de RSIT.
0
Réponse 14 / 35
Bidoulleux02 Messages postés 41 Statut Membre
 
Apparemment srosa et winupgro on disparus et ont bien été effacés car même le dossier "drivers" ne réapparait pas dans AppData\Roaming.

Logfile of random's system information tool 1.05 (written by random/random)
Run by Razor1911 at 2008-12-30 17:22:26
Microsoft® Windows Vista™ Ultimate Édition Service Pack 1
System drive C: has 380 GB (53%) free of 715 GB
Total RAM: 2047 MB (43% free)

HijackThis download failed

======Scheduled tasks folder======

C:\Windows\tasks\Maintenance en 1 clic.job
C:\Windows\tasks\NeroLiveEpgUpdate-PC-de-Razor1911_Razor1911.job
C:\Windows\tasks\User_Feed_Synchronization-{CFD6A199-A2E2-4411-8CB4-E8B857A9856F}.job

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{06849E9F-C8D7-4D59-B87D-784B7D6BE0B3}]
Aide pour le lien d'Adobe PDF Reader - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll [2008-06-11 61816]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}]
Adobe PDF Link Helper - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2008-06-11 75128]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{5C255C8A-E604-49b4-9D64-90988571CECB}]
Click-to-Call BHO - C:\Program Files (x86)\Windows Live\Messenger\wlchtc.dll [2008-12-02 73040]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{6EBF7485-159F-4bff-A14F-B9E3AAC4465B}]
Search Helper - C:\Program Files (x86)\Microsoft\Search Enhancement Pack\Search Helper\SearchHelper.dll [2008-12-04 92504]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
SSVHelper Class - C:\Program Files (x86)\Java\jre1.6.0_07\bin\ssv.dll [2008-06-10 509328]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
Programme d'aide de l'Assistant de connexion Windows Live - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2008-11-18 408952]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{A057A204-BACC-4D26-8287-79A187E26987}]
VMN Toolbar - C:\PROGRA~2\VMNTOO~1\VMNTOO~1.DLL [2007-09-24 2022912]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{A44CBB0B-C77D-4BF5-87CC-B4EE79AD1B7E}]
SnapFlash Class - C:\Program Files (x86)\Common Files\Justdo\Jd2002.dll [2006-03-16 131072]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AE7CD045-E861-484f-8273-0445EE161910}]
Adobe PDF Conversion Toolbar Helper - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll [2008-06-11 345480]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E15A8DC0-8516-42A1-81EA-DC94EC1ACF10}]
Windows Live Toolbar Helper - C:\Program Files (x86)\Windows Live\Toolbar\wltcore.dll [2008-12-08 1067352]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{F4971EE7-DAA0-4053-9964-665D8EE6A077}]
SmartSelect Class - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll [2008-06-11 345480]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{A057A204-BACC-4D26-8287-79A187E26987} - VMN Toolbar - C:\PROGRA~2\VMNTOO~1\VMNTOO~1.DLL [2007-09-24 2022912]
{47833539-D0C5-4125-9FA8-0819E2EAAC93} - Adobe PDF - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll [2008-06-11 345480]
{21FA44EF-376D-4D53-9B0F-8A89D3229068} - &Windows Live Toolbar - C:\Program Files (x86)\Windows Live\Toolbar\wltcore.dll [2008-12-08 1067352]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"Habu"=C:\Program Files (x86)\Razer\Habu\razerhid.exe [2007-05-11 176128]
"atwtusb"=atwtusb.exe beta []
"SysMon"=C:\ProgramData\SysMon\SysMon.dll [2008-01-24 626688]
"WinFast2KLoadDefault"=C:\Windows\system32\wf2kcpl.dll [2005-09-16 616448]
"VMware hqtray"=C:\Program Files (x86)\VMware\VMware Player\hqtray.exe [2008-10-28 64048]
"Acrobat Assistant 8.0"=C:\Program Files (x86)\Adobe\Acrobat 9.0\Acrobat\Acrotray.exe [2008-06-11 640376]
"AdobeCS4ServiceManager"=C:\Program Files (x86)\Common Files\Adobe\CS4ServiceManager\CS4ServiceManager.exe [2008-08-14 611712]
"avgnt"=C:\Program Files (x86)\Avira\AntiVir PersonalEdition Classic\avgnt.exe [2008-06-12 266497]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"Sidebar"=C:\Program Files\Windows Sidebar\sidebar.exe [2008-03-18 1555968]
"ehTray.exe"=C:\Windows\ehome\ehTray.exe [2008-03-18 138240]
"AnyDVD"=C:\Program Files (x86)\SlySoft\AnyDVD\AnyDVD.exe [2008-12-01 89024]
"ISUSPM Startup"=c:\PROGRA~2\COMMON~1\INSTAL~1\UPDATE~1\isuspm.exe [2005-02-16 221184]
"SpybotSD TeaTimer"=C:\Program Files (x86)\Spybot - Search & Destroy\TeaTimer.exe [2008-09-16 1833296]

C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup
Privoxy.lnk.disabled - C:\Program Files (x86)\Privoxy\privoxy.exe

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=0
"ConsentPromptBehaviorUser"=0
"EnableInstallerDetection"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
"EnableLUA"=0

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=145

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoActiveDesktop"=
"ForceActiveDesktopOn"=
"NoDriveTypeAutoRun"=
"NoActiveDesktopChanges"=

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

======File associations======

.js - edit -
.js - open -
.txt - open -

======List of files/folders created in the last 1 months======

2079-04-10 23:08:45 ----D---- C:\ProgramData\Spybot - Search & Destroy
2079-04-10 23:08:45 ----D---- C:\Program Files (x86)\Spybot - Search & Destroy
2079-04-10 22:43:27 ----D---- C:\Program Files (x86)\UltraISO
2079-04-10 22:43:27 ----D---- C:\Program Files (x86)\Common Files\EZB Systems
2008-12-29 17:28:37 ----D---- C:\Program Files (x86)\trend micro
2008-12-29 17:28:36 ----D---- C:\rsit
2008-12-29 17:21:54 ----A---- C:\FindyKill.txt
2008-12-29 14:56:20 ----D---- C:\ProgramData\Avira
2008-12-29 14:56:20 ----D---- C:\Program Files (x86)\Avira
2008-12-29 13:02:40 ----D---- C:\Program Files (x86)\Safer Networking
2008-12-28 20:40:22 ----D---- C:\ComboetFix
2008-12-28 20:40:20 ----A---- C:\Windows\system32\CF31518.exe
2008-12-28 20:37:19 ----A---- C:\Windows\system32\CF30943.exe
2008-12-28 20:25:32 ----A---- C:\Windows\system32\CF28693.exe
2008-12-28 20:25:29 ----A---- C:\Windows\system32\cmd.execf
2008-12-28 20:24:54 ----A---- C:\Windows\system32\CF28556.exe
2008-12-28 20:24:50 ----A---- C:\Windows\system32\swsc.exe
2008-12-28 20:24:49 ----A---- C:\Bug.txt
2008-12-28 20:24:35 ----A---- C:\InfoSat.txt
2008-12-28 19:34:46 ----D---- C:\Program Files (x86)\FindyKill
2008-12-28 16:40:11 ----D---- C:\Nouveau dossier
2008-12-28 16:27:28 ----D---- C:\Users\Razor1911\AppData\Roaming\Malwarebytes
2008-12-28 16:27:19 ----D---- C:\ProgramData\Malwarebytes
2008-12-28 16:27:19 ----D---- C:\Program Files (x86)\Malwarebytes' Anti-Malware
2008-12-28 14:13:20 ----D---- C:\Users\Razor1911\AppData\Roaming\DxO_Labs
2008-12-28 14:09:55 ----D---- C:\ProgramData\DxO_Labs
2008-12-28 13:31:41 ----A---- C:\Windows\system32\icardres.dll
2008-12-28 13:31:40 ----A---- C:\Windows\system32\PresentationNative_v0300.dll
2008-12-28 13:31:40 ----A---- C:\Windows\system32\PresentationHostProxy.dll
2008-12-28 13:31:40 ----A---- C:\Windows\system32\infocardapi.dll
2008-12-28 13:31:40 ----A---- C:\Windows\system32\icardagt.exe
2008-12-28 13:31:32 ----A---- C:\Windows\system32\PresentationCFFRasterizerNative_v0300.dll
2008-12-28 13:31:30 ----A---- C:\Windows\system32\PresentationHost.exe
2008-12-28 13:23:07 ----A---- C:\Windows\system32\netfxperf.dll
2008-12-28 13:22:54 ----A---- C:\Windows\system32\dfshim.dll
2008-12-28 13:22:40 ----A---- C:\Windows\system32\mscoree.dll
2008-12-28 13:22:32 ----A---- C:\Windows\system32\mscorier.dll
2008-12-28 13:22:29 ----A---- C:\Windows\system32\mscories.dll
2008-12-23 14:21:38 ----D---- C:\Users\Razor1911\AppData\Roaming\IDMComp
2008-12-23 14:21:38 ----D---- C:\Program Files (x86)\IDM Computer Solutions
2008-12-22 19:01:16 ----D---- C:\ProgramData\ACD Systems
2008-12-22 19:01:13 ----D---- C:\Program Files (x86)\ACD Systems
2008-12-22 18:44:58 ----D---- C:\ProgramData\Avg8
2008-12-21 19:03:16 ----A---- C:\Windows\aspack.ini
2008-12-21 18:59:48 ----D---- C:\Program Files (x86)\ASPack
2008-12-21 17:21:47 ----D---- C:\Users\Razor1911\AppData\Roaming\HDRsoft
2008-12-21 16:26:23 ----A---- C:\Windows\system32\mshtml.dll
2008-12-21 10:24:15 ----D---- C:\Program Files (x86)\Badaboom
2008-12-20 20:13:49 ----D---- C:\ProgramData\Messenger Plus!
2008-12-20 18:44:43 ----D---- C:\Program Files (x86)\Realtek AC97
2008-12-19 19:11:32 ----D---- C:\Program Files (x86)\Microsoft Sync Framework
2008-12-19 19:10:45 ----D---- C:\Program Files (x86)\Microsoft
2008-12-19 19:10:03 ----D---- C:\Program Files (x86)\Windows Live SkyDrive
2008-12-19 18:52:44 ----D---- C:\Windows\system32\wdi
2008-12-19 17:51:04 ----A---- C:\Windows\system32\jsproxy.dll
2008-12-19 17:51:04 ----A---- C:\Windows\system32\ieui.dll
2008-12-19 17:51:04 ----A---- C:\Windows\system32\ieakeng.dll
2008-12-19 17:51:04 ----A---- C:\Windows\system32\icardie.dll
2008-12-19 17:51:04 ----A---- C:\Windows\system32\corpol.dll
2008-12-19 17:51:04 ----A---- C:\Windows\system32\advpack.dll
2008-12-19 17:51:04 ----A---- C:\Windows\system32\admparse.dll
2008-12-19 17:51:03 ----A---- C:\Windows\system32\msls31.dll
2008-12-19 17:51:03 ----A---- C:\Windows\system32\msfeedsbs.dll
2008-12-19 17:51:02 ----A---- C:\Windows\system32\PrivacIE.dll
2008-12-19 17:51:02 ----A---- C:\Windows\system32\msfeeds.dll
2008-12-19 17:51:02 ----A---- C:\Windows\system32\iernonce.dll
2008-12-19 17:51:02 ----A---- C:\Windows\system32\ieapfltr.dll
2008-12-19 17:51:01 ----A---- C:\Windows\system32\occache.dll
2008-12-19 17:51:01 ----A---- C:\Windows\system32\inseng.dll
2008-12-19 17:51:01 ----A---- C:\Windows\system32\imgutil.dll
2008-12-19 17:51:01 ----A---- C:\Windows\system32\iepeers.dll
2008-12-19 17:51:01 ----A---- C:\Windows\system32\dxtrans.dll
2008-12-19 17:51:01 ----A---- C:\Windows\system32\dxtmsft.dll
2008-12-19 17:51:00 ----A---- C:\Windows\system32\webcheck.dll
2008-12-19 17:51:00 ----A---- C:\Windows\system32\pngfilt.dll
2008-12-19 17:51:00 ----A---- C:\Windows\system32\mstime.dll
2008-12-19 17:51:00 ----A---- C:\Windows\system32\msrating.dll
2008-12-19 17:51:00 ----A---- C:\Windows\system32\mshtmled.dll
2008-12-19 17:51:00 ----A---- C:\Windows\system32\licmgr10.dll
2008-12-19 17:51:00 ----A---- C:\Windows\system32\iesetup.dll
2008-12-19 17:51:00 ----A---- C:\Windows\system32\ieaksie.dll
2008-12-19 17:50:59 ----A---- C:\Windows\system32\WinFXDocObj.exe
2008-12-19 17:50:59 ----A---- C:\Windows\system32\wextract.exe
2008-12-19 17:50:59 ----A---- C:\Windows\system32\url.dll
2008-12-19 17:50:59 ----A---- C:\Windows\system32\SetIEInstalledDate.exe
2008-12-19 17:50:59 ----A---- C:\Windows\system32\SetDepNx.exe
2008-12-19 17:50:59 ----A---- C:\Windows\system32\PDMSetup.exe
2008-12-19 17:50:59 ----A---- C:\Windows\system32\mshtmler.dll
2008-12-19 17:50:59 ----A---- C:\Windows\system32\msfeedssync.exe
2008-12-19 17:50:59 ----A---- C:\Windows\system32\jscript.dll
2008-12-19 17:50:59 ----A---- C:\Windows\system32\ieUnatt.exe
2008-12-19 17:50:59 ----A---- C:\Windows\system32\iedkcs32.dll
2008-12-19 17:50:59 ----A---- C:\Windows\system32\ieakui.dll
2008-12-19 17:50:58 ----A---- C:\Windows\system32\wininet.dll
2008-12-19 17:50:58 ----A---- C:\Windows\system32\mshta.exe
2008-12-19 17:50:58 ----A---- C:\Windows\system32\iertutil.dll
2008-12-19 17:50:58 ----A---- C:\Windows\system32\ie4uinit.exe
2008-12-19 17:50:57 ----A---- C:\Windows\system32\iexpress.exe
2008-12-19 17:50:56 ----A---- C:\Windows\system32\urlmon.dll
2008-12-19 17:50:55 ----A---- C:\Windows\system32\ieframe.dll
2008-12-19 17:40:27 ----D---- C:\Program Files (x86)\Microsoft Office Outlook Connector
2008-12-14 17:52:14 ----D---- C:\Users\Razor1911\AppData\Roaming\SolidWorks 2008
2008-12-14 17:50:33 ----D---- C:\Users\Razor1911\AppData\Roaming\SolidWorks
2008-12-14 17:37:53 ----D---- C:\ProgramData\SolidWorks
2008-12-14 17:37:53 ----D---- C:\Program Files (x86)\SolidWorks
2008-12-14 14:34:35 ----A---- C:\MDL 2.0 Debug.txt
2008-12-13 17:53:49 ----A---- C:\Windows\system32\tzres.dll
2008-12-13 17:48:52 ----A---- C:\Windows\system32\shell32.dll
2008-12-13 17:48:40 ----A---- C:\Windows\system32\Apphlpdm.dll
2008-12-13 17:48:37 ----A---- C:\Windows\system32\GameUXLegacyGDFs.dll
2008-12-13 17:48:34 ----A---- C:\Windows\system32\gdi32.dll
2008-12-13 17:48:33 ----A---- C:\Windows\system32\mf.dll
2008-12-13 17:48:30 ----A---- C:\Windows\system32\WMVCORE.DLL
2008-12-13 17:48:29 ----A---- C:\Windows\system32\WMNetMgr.dll
2008-12-13 17:48:28 ----A---- C:\Windows\system32\logagent.exe
2008-12-13 17:47:51 ----A---- C:\Windows\explorer.exe
2008-12-13 17:47:50 ----A---- C:\Windows\system32\explorer.exe
2008-12-13 17:29:22 ----D---- C:\Users\Razor1911\AppData\Roaming\NewsLeecher
2008-12-13 17:16:24 ----D---- C:\Program Files (x86)\Justdo Software
2008-12-13 17:16:24 ----D---- C:\Program Files (x86)\Common Files\Justdo
2008-12-13 17:11:35 ----D---- C:\Program Files (x86)\NewsLeecher
2008-12-13 16:48:48 ----D---- C:\Program Files (x86)\PDF Password Remover v3.0
2008-12-12 18:46:08 ----A---- C:\Windows\system32\uxtuneup.dll
2008-12-12 18:46:07 ----A---- C:\Windows\system32\authuitu.dll
2008-12-06 11:12:41 ----D---- C:\Program Files (x86)\AVG
2008-12-06 10:59:02 ----D---- C:\Program Files (x86)\TuneUp Utilities 2009
2008-12-06 10:58:01 ----SHD---- C:\ProgramData\{55A29068-F2CE-456C-9148-C869879E2357}
2008-12-06 10:45:24 ----A---- C:\Windows\system32\WindowsCodecsExt.dll
2008-12-06 10:45:24 ----A---- C:\Windows\system32\PhotoMetadataHandler.dll
2008-12-06 10:45:23 ----A---- C:\Windows\system32\WindowsCodecs.dll
2008-12-06 10:45:14 ----A---- C:\Windows\system32\connect.dll
2008-12-06 10:45:13 ----A---- C:\Windows\system32\PortableDeviceApi.dll
2008-12-03 18:04:14 ----A---- C:\Windows\system32\wups.dll
2008-12-03 18:04:14 ----A---- C:\Windows\system32\wudriver.dll
2008-12-03 18:04:14 ----A---- C:\Windows\system32\wuapi.dll
2008-12-03 18:04:06 ----A---- C:\Windows\system32\wuwebv.dll
2008-12-03 18:04:06 ----A---- C:\Windows\system32\wuapp.exe
2008-12-03 15:33:35 ----D---- C:\DriveKey
2008-12-03 14:37:45 ----D---- C:\Program Files (x86)\WinHTTrack
2008-12-02 22:37:20 ----A---- C:\Windows\system32\sirenacm.dll
2008-12-02 17:28:55 ----D---- C:\Program Files (x86)\XN Resource Editor
2008-12-02 17:10:24 ----D---- C:\Users\Razor1911\AppData\Roaming\PE Explorer
2008-12-02 17:10:19 ----D---- C:\Program Files (x86)\PE Explorer

======List of files/folders modified in the last 1 months======

2079-04-10 22:39:31 ----D---- C:\Program Files (x86)\Ad-Aware
2079-04-10 22:34:18 ----D---- C:\Program Files (x86)\EasyRecovery
2008-12-30 17:14:05 ----D---- C:\Windows\temp
2008-12-30 17:13:51 ----D---- C:\Windows\System32
2008-12-30 17:13:51 ----D---- C:\Windows\inf
2008-12-30 17:10:36 ----D---- C:\ProgramData\VMware
2008-12-30 17:09:32 ----AD---- C:\Windows
2008-12-30 17:09:31 ----D---- C:\Windows\Minidump
2008-12-29 19:34:06 ----SHD---- C:\Windows\Installer
2008-12-29 19:34:00 ----HD---- C:\Config.Msi
2008-12-29 19:33:59 ----RD---- C:\Program Files
2008-12-29 19:11:29 ----RSD---- C:\Windows\assembly
2008-12-29 19:04:11 ----D---- C:\Windows\Microsoft.NET
2008-12-29 17:28:37 ----RD---- C:\Program Files (x86)
2008-12-29 15:58:51 ----D---- C:\Program Files (x86)\Steam
2008-12-29 14:56:23 ----HD---- C:\Windows\system32\drivers
2008-12-29 14:56:20 ----HD---- C:\ProgramData
2008-12-29 14:25:03 ----D---- C:\Program Files (x86)\Canon
2008-12-29 13:54:21 ----D---- C:\Windows\Prefetch
2008-12-28 20:40:20 ----D---- C:\Windows\SysWOW64
2008-12-28 16:03:44 ----D---- C:\Program Files (x86)\Mozilla Firefox
2008-12-28 15:35:52 ----D---- C:\Windows\rescache
2008-12-28 14:53:01 ----D---- C:\Windows\system32\fr-FR
2008-12-28 14:52:56 ----D---- C:\Windows\system32\XPSViewer
2008-12-28 14:52:56 ----D---- C:\Windows\system32\wbem
2008-12-28 14:52:56 ----D---- C:\Windows\system32\en-US
2008-12-28 14:47:27 ----A---- C:\Windows\system32\BASSMOD.dll
2008-12-28 14:40:27 ----D---- C:\Program Files (x86)\eMule
2008-12-28 14:19:33 ----ASD---- C:\ProgramData\Microsoft
2008-12-28 14:19:33 ----AD---- C:\Program Files (x86)\Common Files\microsoft shared
2008-12-28 14:13:08 ----D---- C:\Program Files (x86)\Adobe
2008-12-28 13:49:30 ----D---- C:\Windows\winsxs
2008-12-24 18:23:15 ----D---- C:\Users\Razor1911\AppData\Roaming\uTorrent
2008-12-24 15:38:41 ----D---- C:\Users\Razor1911\AppData\Roaming\ZoomBrowser EX
2008-12-24 09:50:09 ----D---- C:\Users\Razor1911\AppData\Roaming\Canon
2008-12-24 09:26:04 ----D---- C:\Users\Razor1911\AppData\Roaming\Adobe
2008-12-23 18:57:18 ----D---- C:\Program Files (x86)\Common Files\Adobe
2008-12-23 18:57:06 ----RSD---- C:\Windows\Fonts
2008-12-23 17:53:57 ----D---- C:\Program Files (x86)\CCleaner
2008-12-23 16:06:37 ----AD---- C:\ProgramData\TEMP
2008-12-22 19:01:19 ----D---- C:\Program Files (x86)\Common Files\ACD Systems
2008-12-22 16:06:55 ----D---- C:\Users\Razor1911\AppData\Roaming\Download Manager
2008-12-22 13:28:00 ----A---- C:\Windows\aiptbl.ini
2008-12-21 17:42:23 ----D---- C:\ProgramData\NVIDIA
2008-12-21 17:16:38 ----D---- C:\Program Files (x86)\PhotomatixPro3
2008-12-21 17:03:36 ----A---- C:\Windows\NeroDigital.ini
2008-12-21 15:42:02 ----D---- C:\Windows\Debug
2008-12-20 20:08:35 ----D---- C:\Program Files (x86)\Messenger Plus! Live
2008-12-20 18:44:39 ----A---- C:\Windows\HideWin.exe
2008-12-20 17:21:26 ----SHD---- C:\System Volume Information
2008-12-20 16:31:23 ----D---- C:\ProgramData\ZoomBrowser
2008-12-19 19:35:30 ----SD---- C:\Users\Razor1911\AppData\Roaming\Microsoft
2008-12-19 19:12:39 ----D---- C:\Program Files (x86)\Windows Live
2008-12-19 18:59:48 ----D---- C:\Windows\Tasks
2008-12-19 18:52:45 ----D---- C:\Program Files (x86)\Internet Explorer
2008-12-19 18:52:44 ----D---- C:\Windows\system32\migration
2008-12-19 18:52:38 ----D---- C:\Windows\PolicyDefinitions
2008-12-19 17:40:28 ----D---- C:\Program Files (x86)\Common Files\System
2008-12-17 17:14:20 ----D---- C:\Program Files (x86)\SpeedFan
2008-12-17 17:08:40 ----D---- C:\Windows\Registration
2008-12-17 16:18:28 ----D---- C:\Users\Razor1911\AppData\Roaming\IM
2008-12-17 13:23:05 ----D---- C:\Temp
2008-12-14 17:41:54 ----D---- C:\Program Files (x86)\Common Files\SolidWorks Shared
2008-12-14 17:37:55 ----D---- C:\Windows\system32\GroupPolicy
2008-12-14 17:37:55 ----D---- C:\Program Files (x86)\Common Files\eDrawings2008
2008-12-14 17:37:55 ----D---- C:\Program Files (x86)\AGEIA Technologies
2008-12-14 17:37:54 ----D---- C:\SolidWorks Data
2008-12-14 14:46:03 ----D---- C:\Anciens documents
2008-12-14 14:24:17 ----RD---- C:\Users
2008-12-14 10:49:17 ----D---- C:\Windows\AppPatch
2008-12-14 10:49:17 ----D---- C:\Program Files (x86)\Windows Mail
2008-12-13 18:13:10 ----D---- C:\ProgramData\Microsoft Help
2008-12-13 17:46:29 ----D---- C:\ProgramData\FLEXnet
2008-12-13 17:16:24 ----HD---- C:\Program Files (x86)\InstallShield Installation Information
2008-12-13 17:16:24 ----D---- C:\Program Files (x86)\Common Files
2008-12-13 15:39:39 ----D---- C:\ProgramData\Adobe
2008-12-12 18:22:26 ----D---- C:\Program Files (x86)\Registry Mechanic
2008-12-10 17:34:06 ----D---- C:\Users\Razor1911\AppData\Roaming\Wireshark
2008-12-03 13:08:49 ----HD---- C:\Windows\msdownld.tmp
2008-12-03 13:00:04 ----D---- C:\Program Files (x86)\Common Files\Steam
2008-12-02 18:29:15 ----D---- C:\Users\Razor1911\AppData\Roaming\VMware
2008-12-02 17:55:28 ----D---- C:\Windows\system32\directx
2008-12-02 16:49:55 ----D---- C:\ProgramData\Kaspersky Lab Setup Files

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R1 ElbyCDIO;ElbyCDIO Driver; C:\Windows\System32\Drivers\ElbyCDIO.sys []
R1 SCDEmu;SCDEmu; C:\Windows\system32\drivers\SCDEmu.sys []
R2 adfs;adfs; C:\Windows\system32\drivers\adfs.sys [2008-08-14 74720]
R2 avgntflt;avgntflt; C:\Windows\system32\DRIVERS\avgntflt.sys []
R2 hcmon;VMware hcmon; \??\C:\Windows\system32\drivers\hcmon.sys []
R2 RMCAST;Pilote du protocole RMCAT PGMP; C:\Windows\system32\DRIVERS\RMCAST.sys []
R2 vmci;VMware vmci; \??\C:\Windows\system32\drivers\vmci.sys []
R2 VMnetBridge;VMware Bridge Protocol; C:\Windows\system32\DRIVERS\vmnetbridge.sys []
R2 VMnetuserif;VMware Network Application Interface; \??\C:\Windows\system32\drivers\vmnetuserif.sys []
R2 VMparport;VMware VMparport; \??\C:\Windows\system32\drivers\VMparport.sys []
R2 vmx86;VMware vmx86; \??\C:\Windows\system32\drivers\vmx86.sys []
R2 vstor2-ws60;Vstor2 WS60 Virtual Storage Driver; \??\C:\Program Files (x86)\VMware\VMware Player\vstor2-ws60.sys [2008-10-02 32816]
R3 ALCXWDM;Service for Realtek AC97 Audio (WDM); C:\Windows\system32\drivers\RTKVAC64.SYS []
R3 AnyDVD;AnyDVD; C:\Windows\System32\Drivers\AnyDVD.sys [2008-12-01 119744]
R3 HabuFltr;Habu Mouse; C:\Windows\system32\drivers\habu.sys []
R3 ksthunk;Kernel Streaming Thunks; C:\Windows\system32\drivers\ksthunk.sys []
R3 LVPr2M64;Logitech LVPr2M64 Driver; C:\Windows\system32\DRIVERS\LVPr2M64.sys []
R3 NVENETFD;NVIDIA nForce 10/100/1000 Mbps Ethernet ; C:\Windows\system32\DRIVERS\nvmfdx64.sys []
R3 nvlddmkm;nvlddmkm; C:\Windows\system32\DRIVERS\nvlddmkm.sys []
R3 pcouffin;VSO Software pcouffin; C:\Windows\System32\Drivers\pcouffin.sys []
R3 StillCam;Pilote d'appareil photo numérique série; C:\Windows\system32\DRIVERS\serscan.sys []
R3 vmkbd;VMware kbd; \??\C:\Windows\system32\drivers\VMkbd.sys []
R3 VMnetAdapter;VMware Virtual Ethernet Adapter Driver; C:\Windows\system32\DRIVERS\vmnetadapter.sys []
R3 WUDFRd;WUDFRd; C:\Windows\system32\DRIVERS\WUDFRd.sys []
S1 ntiomin;ntiomin; C:\Windows\system32\drivers\ntiomin.sys []
S1 ntiopnp;ntiopnp; C:\Windows\system32\drivers\ntiopnp.sys [2008-04-12 11264]
S2 TBPanel;TBPanel; C:\Windows\system32\drivers\TBPanel.sys [2002-07-25 5306]
S3 akphcb4h;akphcb4h; C:\Windows\system32\drivers\akphcb4h.sys []
S3 awdt7zr2;awdt7zr2; C:\Windows\system32\drivers\awdt7zr2.sys []
S3 b57nd60a;Broadcom NetXtreme Gigabit Ethernet - NDIS 6.0; C:\Windows\system32\DRIVERS\b57nd60a.sys []
S3 CmBatt;Pilote pour Batterie à méthode de contrôle ACPI Microsoft; C:\Windows\system32\DRIVERS\CmBatt.sys []
S3 driverhardwarev2x64;driverhardwarev2x64; \??\C:\Program Files (x86)\ma-config.com\Drivers\driverhardwarev2x64.sys [2008-09-02 16888]
S3 drmkaud;Filtre de décodeur DRM (Noyau Microsoft); C:\Windows\system32\drivers\drmkaud.sys []
S3 HdAudAddService;Pilote de fonction UAA 1.1 Microsoft pour le service High Definition Audio; C:\Windows\system32\drivers\HdAudio.sys []
S3 HSF_DPV;HSF_DPV; C:\Windows\system32\DRIVERS\VSTDPV6.SYS []
S3 HSFHWAZL;HSFHWAZL; C:\Windows\system32\DRIVERS\VSTAZL6.SYS []
S3 LVcKap64;Logitech AEC Driver; C:\Windows\system32\DRIVERS\LVcKap64.sys []
S3 LVMVDrv;Logitech Machine Vision Engine Loader; C:\Windows\system32\DRIVERS\LVMVDrv.sys []
S3 MRV6X64P;Pilote WiFi natif Vista 64-bits; C:\Windows\system32\DRIVERS\MRVW13C.sys []
S3 MSKSSRV;Proxy de service de répartition Microsoft; C:\Windows\system32\drivers\MSKSSRV.sys []
S3 MSPCLOCK;Proxy d'horloge de répartition Microsoft; C:\Windows\system32\drivers\MSPCLOCK.sys []
S3 MSPQM;Proxy de gestion de qualité de répartition Microsoft; C:\Windows\system32\drivers\MSPQM.sys []
S3 MSTEE;Convertisseur en T/site-à-site de répartition Microsoft; C:\Windows\system32\drivers\MSTEE.sys []
S3 NETw3v64;Intel(R) PRO/Wireless 3945ABG Adapter Driver for Windows Vista 64 Bit; C:\Windows\system32\DRIVERS\NETw3v64.sys []
S3 NETw4v64;Pilote de carte Intel(R) Wireless WiFi Link pour Windows Vista 64 bits; C:\Windows\system32\DRIVERS\NETw4v64.sys []
S3 NPF;NetGroup Packet Filter Driver; C:\Windows\system32\drivers\npf.sys [2004-05-14 32896]
S3 PCAMp50a64;PCAMp50a64 NDIS Protocol Driver; C:\Windows\System32\Drivers\PCAMp50a64.sys []
S3 PCASp50a64;PCASp50a64 NDIS Protocol Driver; C:\Windows\System32\Drivers\PCASp50a64.sys []
S3 SG762_64;SAGEM 802.11g XG762 1211B Driver; C:\Windows\system32\DRIVERS\WlanBZ64.sys []
S3 SiwvidStart;SiwvidStart; \??\C:\Users\RAZOR1~1\AppData\Local\Temp\_ISTMP1.DIR\_ISTMP0.DIR\siwvid.sys []
S3 tbhsd;Tunebite High-Speed Dubbing; C:\Windows\system32\drivers\tbhsd.sys []
S3 uisp;Freescale USB JW32 driver; C:\Windows\System32\Drivers\usbicp.sys []
S3 usbscan;Pilote de scanneur USB; C:\Windows\system32\DRIVERS\usbscan.sys []
S3 vmusb;VMware USB Client Driver; C:\Windows\System32\Drivers\vmusb.sys []
S3 W8335X64;OLITEC WiFi Card Driver for Windows XP x64 ; C:\Windows\system32\DRIVERS\Mrvw126.sys []
S3 WimFltr;WimFltr; C:\Windows\system32\DRIVERS\wimfltr.sys []
S3 winachsf;winachsf; C:\Windows\system32\DRIVERS\VSTCNXT6.SYS []
S3 WpdUsb;WpdUsb; C:\Windows\system32\DRIVERS\wpdusb.sys []
S3 WSDPrintDevice;Prise en charge de l’impression WSD via UMB; C:\Windows\system32\DRIVERS\WSDPrint.sys []
S3 yukonx64;NDIS6.0 Miniport Driver for Marvell Yukon Ethernet Controller; C:\Windows\system32\DRIVERS\yk60x64.sys []
S4 MTsensor;ATK0110 ACPI UTILITY; C:\Windows\system32\DRIVERS\ASACPI.sys []
S4 rimmptsk;rimmptsk; C:\Windows\system32\DRIVERS\rimmpx64.sys []
S4 rimsptsk;rimsptsk; C:\Windows\system32\DRIVERS\rimspx64.sys []
S4 rismxdp;Ricoh xD-Picture Card Driver; C:\Windows\system32\DRIVERS\rixdpx64.sys []
S4 sdbus;sdbus; C:\Windows\system32\DRIVERS\sdbus.sys []
S4 WmiAcpi;Microsoft Windows Management Interface for ACPI; C:\Windows\system32\DRIVERS\wmiacpi.sys []

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 AntiVirScheduler;Avira AntiVir Personal - Free Antivirus Scheduler; C:\Program Files (x86)\Avira\AntiVir PersonalEdition Classic\sched.exe [2008-10-15 68865]
R2 AntiVirService;Avira AntiVir Personal - Free Antivirus Guard; C:\Program Files (x86)\Avira\AntiVir PersonalEdition Classic\avguard.exe [2008-10-15 151297]
R2 CPUCooLServer;CPUCooLServer Service; C:\Program Files (x86)\CPUCooL\CooLSrv.exe [2008-04-12 118784]
R2 FLEXnet Licensing Service;FLEXnet Licensing Service; C:\Program Files (x86)\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe [2008-10-29 655624]
R2 IDriverT;InstallDriver Table Manager; C:\Program Files (x86)\Common Files\InstallShield\Driver\1050\Intel 32\IDriverT.exe [2004-10-22 73728]
R2 LVCOMSer;LVCOMSer; C:\Program Files\Common Files\LogiShrd\LVCOMSER\LVCSer64.exe [2007-10-19 255000]
R2 LVPrcS64;Process Monitor; C:\Program Files\Common Files\LogiShrd\LVMVFM\LVPrcSrv.exe [2007-10-19 182296]
R2 maconfservice;Ma-Config Service; C:\Program Files (x86)\ma-config.com\maconfservice.exe [2008-09-02 191656]
R2 MDM;Machine Debug Manager; C:\Program Files (x86)\Common Files\Microsoft Shared\VS7DEBUG\mdm.exe [2006-10-26 335872]
R2 msvsmon90;Visual Studio 2008 Remote Debugger; C:\Program Files\Microsoft Visual Studio 9.0\Common7\IDE\Remote Debugger\x64\msvsmon.exe [2007-11-08 4466688]
R2 Nero BackItUp Scheduler 4.0;Nero BackItUp Scheduler 4.0; C:\Program Files (x86)\Common Files\Nero\Nero BackItUp 4\NBService.exe [2008-09-24 935208]
R2 Net Driver HPZ12;Net Driver HPZ12; C:\Windows\System32\svchost.exe [2008-03-18 21504]
R2 nvsvc;NVIDIA Display Driver Service; C:\Windows\system32\nvvsvc.exe []
R2 O&O Defrag;O&O Defrag; C:\Windows\system32\oodag.exe []
R2 ose;Office Source Engine; C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2006-10-26 145184]
R2 PerfHost;Hôte de DLL de compteur de performance; C:\Windows\SysWow64\perfhost.exe [2008-03-18 19968]
R2 Pml Driver HPZ12;Pml Driver HPZ12; C:\Windows\System32\svchost.exe [2008-03-18 21504]
R2 PnkBstrA;PnkBstrA; C:\Windows\system32\PnkBstrA.exe [2008-06-11 66872]
R2 ScsiAccess;ScsiAccess; C:\Program Files (x86)\Photodex\ProShowProducer\ScsiAccess.exe [2008-10-27 181312]
R2 SeaPort;SeaPort; C:\Program Files (x86)\Microsoft\Search Enhancement Pack\SeaPort\SeaPort.exe [2008-12-04 226640]
R2 SolidWorks Licensing Service;SolidWorks Licensing Service; C:\Program Files (x86)\Common Files\SolidWorks Shared\Service\SolidWorksLicensing.exe [2008-08-04 79360]
R2 StarWindServiceAE;StarWind AE Service; C:\Program Files (x86)\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe [2007-05-28 275968]
R2 TuneUp.ProgramStatisticsSvc;@%SystemRoot%\System32\TUProgSt.exe,-1; C:\Windows\System32\TUProgSt.exe []
R2 ufad-ws60;VMware Agent Service; C:\Program Files (x86)\VMware\VMware Player\vmware-ufad.exe [2008-10-02 191024]
R2 UxTuneUp;@%SystemRoot%\System32\uxtuneup.dll,-4096; C:\Windows\System32\svchost.exe [2008-03-18 21504]
R2 VMAuthdService;VMware Authorization Service; C:\Program Files (x86)\VMware\VMware Player\vmware-authd.exe [2008-10-28 113200]
R2 VMnetDHCP;VMware DHCP Service; C:\Windows\system32\vmnetdhcp.exe [2008-10-28 326192]
R2 VMware NAT Service;VMware NAT Service; C:\Windows\system32\vmnat.exe [2008-10-28 399920]
S2 LVSrvLauncher;LVSrvLauncher; C:\Program Files\Common Files\LogiShrd\SrvLnch\SrvLnch.exe [2007-10-19 171032]
S2 odserv;Microsoft Office Diagnostics Service; C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE [2007-08-24 443776]
S2 rpcapd;Remote Packet Capture Protocol v.0 (experimental); C:\Program Files (x86)\WinPcap\rpcapd.exe [2007-11-14 92792]
S2 SBSDWSCService;SBSD Security Center Service; C:\Program Files (x86)\Spybot - Search & Destroy\SDWinSec.exe [2008-07-07 809296]
S2 skdll32;Serial Keys; C:\Windows\system32\skdll32.dll [2004-07-17 11264]
S2 Steam Client Service;Steam Client Service; C:\Program Files (x86)\Common Files\Steam\SteamService.exe [2008-12-03 104944]
S3 AppMgmt;Gestion d'applications; C:\Windows\system32\svchost.exe [2008-03-18 21504]
S3 clr_optimization_v2.0.50727_64;Microsoft .NET Framework NGEN v2.0.50727_X64; C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe [2008-07-27 93184]
S3 FLEXnet Licensing Service 64;FLEXnet Licensing Service 64; C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService64.exe [2008-12-23 1038088]
S3 TuneUp.Defrag;@%SystemRoot%\System32\TuneUpDefragService.exe,-1; C:\Windows\System32\TuneUpDefragService.exe []
S3 UmRdpService;Redirecteur de port du mode utilisateur des services Terminal Server; C:\Windows\System32\svchost.exe [2008-03-18 21504]
S4 Fax;Télécopie; C:\Windows\system32\fxssvc.exe []

-----------------EOF-----------------
0
Réponse 15 / 35
Bidoulleux02 Messages postés 41 Statut Membre
 
Dans mes services je n'ai pas "Configuration automatique réseau sans fil" mais quand j'ouvre "Connexion réseau", est ce normal que je trouve "LocalSystemNetworkRestricted" à la fin de C:\Windows\System32\svchost.exe -k ? Est ce que l'on peut réinstaller ce service ou supprimer svchost.exe (dans system32) pour qu'il se réinstalle tout seul ?
0
Réponse 16 / 35
Bidoulleux02 Messages postés 41 Statut Membre
 
Aussi, dans est-ce normal que le service s'appelle netman et pas svchost.exe ?
0
Réponse 17 / 35
Utilisateur anonyme
 
Re,

Ce n'est pas se rapport la que je veut mais l'autres.
0
Réponse 18 / 35
Utilisateur anonyme
 
Re,

regarde la

Et poste moi le rapport log txt de rsit.

Dernière fois que je le demande.
0
Réponse 19 / 35
Bidoulleux02 Messages postés 41 Statut Membre
 
a ok désolé j'ai mi le rapport d'hijackthis à la place
0
Réponse 20 / 35
Bidoulleux02 Messages postés 41 Statut Membre
 
att
0

Discussions similaires

Softonic,est-ce un virus ?
techmel1 -
techmel1 -

6 réponses
Désinstaller Softonic
Diguimette -
lilidurhone -

5 réponses
virus Artemis!
mabiche37 -
Malekal_morte- -

14 réponses
Message Apple virus !!
Souclik67 -
MPMP10 -

3 réponses