Sujet Précédent Sujet Suivant

Pc infecter svp aidez moi

youououou -  
 youououou -
Bonjour, suis je infecter svp
Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 20:41:25, on 29/01/2009
Platform: Windows Vista SP1 (WinNT 6.00.1905)
MSIE: Internet Explorer v7.00 (7.00.6001.18000)
Boot mode: Normal

Running processes:
C:\Windows\system32\taskeng.exe
C:\Windows\system32\Dwm.exe
C:\Windows\Explorer.EXE
C:\Program Files\Windows Defender\MSASCui.exe
C:\Windows\RtHDVCpl.exe
C:\Program Files\Acer\Empowering Technology\SysMonitor.exe
C:\Program Files\Acer\Empowering Technology\Framework.Launcher.exe
C:\Program Files\Acer\Empowering Technology\eDataSecurity\x86\eDSLoader.exe
C:\Program Files\NewTech Infosystems\NTI Backup Now 5\BkupTray.exe
C:\Windows\System32\rundll32.exe
C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe
C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe
C:\Program Files\Windows Live\Messenger\msnmsgr.exe
C:\Program Files\Ares\Ares.exe
C:\Program Files\TRENDnet\TEW-424UB\WlanCU.exe
C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe
C:\Program Files\Internet Explorer\IEUser.exe
C:\Program Files\Windows Media Player\wmplayer.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Google\Google Toolbar\GoogleToolbarUser.exe
C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLLoginProxy.exe
C:\Windows\system32\Macromed\Flash\FlashUtil9f.exe
C:\Users\Lefeve Catherine\Downloads\HiJackThis.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://homepage.acer.com/rdr.aspx?b=ACAW&l=040c&s=1&o=vp32&d=1006&m=aspire_x3200
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.google.fr/?gws_rd=ssl
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://homepage.acer.com/rdr.aspx?b=ACAW&l=040c&s=1&o=vp32&d=1006&m=aspire_x3200
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = https://fr.yahoo.com/
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
R3 - URLSearchHook: Search Class - {08C06D61-F1F3-4799-86F8-BE1A89362C85} - C:\Program Files\OrangeHSS\SearchURLHook\SearchPageURL.dll
R3 - URLSearchHook: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll
O1 - Hosts: ::1 localhost
O2 - BHO: &Yahoo! Toolbar Helper - {02478D38-C3F9-4efb-9B51-7695ECA05670} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll
O2 - BHO: Aide pour le lien d'Adobe PDF Reader - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll
O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)
O2 - BHO: ShowBarObj Class - {83A2F9B1-01A2-4AA5-87D1-45B6B8505E96} - C:\Program Files\Acer\Empowering Technology\eDataSecurity\x86\ActiveToolBand.dll
O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files\Google\Google Toolbar\GoogleToolbar.dll
O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\5.0.926.3450\swg.dll
O2 - BHO: Google Dictionary Compression sdch - {C84D72FE-E17D-4195-BB24-76C02E2E7C4E} - C:\Program Files\Google\Google Toolbar\Component\fastsearch_219B3E1547538286.dll
O2 - BHO: SingleInstance Class - {FDAD4DA1-61A2-4FD8-9C17-86F7AC245081} - C:\Program Files\Yahoo!\Companion\Installs\cpn\YTSingleInstance.dll
O3 - Toolbar: Acer eDataSecurity Management - {5CBE3B7C-1E47-477e-A7DD-396DB0476E29} - C:\Program Files\Acer\Empowering Technology\eDataSecurity\x86\eDStoolbar.dll
O3 - Toolbar: &Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar.dll
O3 - Toolbar: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll
O4 - HKLM\..\Run: [Windows Defender] "C:\Program Files\Windows Defender\MSASCui.exe" -hide
O4 - HKLM\..\Run: [RtHDVCpl] "C:\Windows\RtHDVCpl.exe"
O4 - HKLM\..\Run: [Acer Empowering Technology Monitor] "C:\Program Files\Acer\Empowering Technology\SysMonitor.exe"
O4 - HKLM\..\Run: [EmpoweringTechnology] "C:\Program Files\Acer\Empowering Technology\Framework.Launcher.exe" boot
O4 - HKLM\..\Run: [eDataSecurity Loader] "C:\Program Files\Acer\Empowering Technology\eDataSecurity\x86\eDSloader.exe"
O4 - HKLM\..\Run: [PCMMediaSharing] "C:\Program Files\Acer Arcade Live\Acer HomeMedia Connect\Kernel\DMS\PCMMediaSharing.exe"
O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe"
O4 - HKLM\..\Run: [BkupTray] "C:\Program Files\NewTech Infosystems\NTI Backup Now 5\BkupTray.exe"
O4 - HKLM\..\Run: [NvCplDaemon] "C:\Windows\system32\RUNDLL32.EXE" C:\Windows\system32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [NvMediaCenter] "C:\Windows\system32\RUNDLL32.EXE" C:\Windows\system32\NvMcTray.dll,NvTaskbarInit
O4 - HKLM\..\Run: [WarReg_PopUp] "C:\Program Files\Acer\WR_PopUp\WarReg_PopUp.exe"
O4 - HKLM\..\Run: [Google Desktop Search] "C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe" /startup
O4 - HKLM\..\Run: [ORAHSSSessionManager] "C:\Program Files\OrangeHSS\SessionManager\SessionManager.exe"
O4 - HKLM\..\Run: [egui] "C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe" /hide /waitservice
O4 - HKCU\..\Run: [MsnMsgr] "C:\Program Files\Windows Live\Messenger\MsnMsgr.Exe" /background
O4 - HKCU\..\Run: [ares] "C:\Program Files\Ares\Ares.exe" -h
O4 - HKCU\..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
O4 - Global Startup: Wireless Configuration Utility.lnk = C:\Program Files\TRENDnet\TEW-424UB\WlanCU.exe
O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office12\EXCEL.EXE/3000
O9 - Extra button: Ajout Direct - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra 'Tools' menuitem: &Ajout Direct dans Windows Live Writer - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra button: Envoyer à OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~2\Office12\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: &Envoyer à OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~2\Office12\ONBttnIE.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\Office12\REFIEBAR.DLL
O10 - Unknown file in Winsock LSP: c:\windows\system32\nvlsp.dll
O10 - Unknown file in Winsock LSP: c:\windows\system32\nvlsp.dll
O10 - Unknown file in Winsock LSP: c:\windows\system32\nvlsp.dll
O10 - Unknown file in Winsock LSP: c:\windows\system32\nvlsp.dll
O13 - Gopher Prefix:
O16 - DPF: {20A60F0D-9AFA-4515-A0FD-83BD84642501} (Checkers Class) - http://messenger.zone.msn.com/binary/msgrchkr.cab56986.cab
O16 - DPF: {C3F79A2B-B9B4-4A66-B012-3EE46475B072} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsPAClient.cab56907.cab
O20 - AppInit_DLLs: C:\PROGRA~1\Google\GOOGLE~1\GOEC62~1.DLL
O23 - Service: Acer HomeMedia Connect Service - CyberLink - C:\Program Files\Acer Arcade Live\Acer HomeMedia Connect\Kernel\DMS\CLMSServer.exe
O23 - Service: NTI Backup Now 5 Agent Service (BUNAgentSvc) - NewTech Infosystems, Inc. - C:\Program Files\NewTech Infosystems\NTI Backup Now 5\Client\Agentsvc.exe
O23 - Service: eDataSecurity Service - Egis Incorporated - C:\Program Files\Acer\Empowering Technology\eDataSecurity\x86\eDSService.exe
O23 - Service: Eset HTTP Server (EHttpSrv) - ESET - C:\Program Files\ESET\ESET NOD32 Antivirus\EHttpSrv.exe
O23 - Service: Eset Service (ekrn) - ESET - C:\Program Files\ESET\ESET NOD32 Antivirus\ekrn.exe
O23 - Service: Empowering Technology Service (ETService) - Unknown owner - C:\Program Files\Acer\Empowering Technology\Service\ETService.exe
O23 - Service: ForceWare Intelligent Application Manager (IAM) - Unknown owner - C:\Program Files\bin32\nSvcAppFlt.exe
O23 - Service: France Telecom Routing Table Service (FTRTSVC) - France Telecom SA - C:\PROGRA~1\COMMON~1\France Telecom\Shared Modules\FTRTSVC\0\FTRTSVC.exe
O23 - Service: Google Desktop Manager 5.7.808.7150 (GoogleDesktopManager-080708-050100) - Google - C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe
O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\1150\Intel 32\IDriverT.exe
O23 - Service: LightScribeService Direct Disc Labeling Service (LightScribeService) - Hewlett-Packard Company - C:\Program Files\Common Files\LightScribe\LSSrvc.exe
O23 - Service: ForceWare IP service (nSvcIp) - Unknown owner - C:\Program Files\bin32\nSvcIp.exe
O23 - Service: NTI Backup Now 5 Backup Service (NTIBackupSvc) - NewTech InfoSystems, Inc. - C:\Program Files\NewTech Infosystems\NTI Backup Now 5\BackupSvc.exe
O23 - Service: NTI Backup Now 5 Scheduler Service (NTISchedulerSvc) - Unknown owner - C:\Program Files\NewTech Infosystems\NTI Backup Now 5\SchedulerSvc.exe
O23 - Service: NVIDIA Display Driver Service (nvsvc) - NVIDIA Corporation - C:\Windows\system32\nvvsvc.exe
O23 - Service: Cyberlink RichVideo Service(CRVS) (RichVideo) - Unknown owner - C:\Program Files\CyberLink\Shared Files\RichVideo.exe
O23 - Service: Moteur Webroot Spy Sweeper (WebrootSpySweeperService) - Webroot Software, Inc. (www.webroot.com) - C:\Program Files\Webroot\Spy Sweeper\SpySweeper.exe
A voir également:

170 réponses

Précédent
Réponse 21 / 170
molosse
 
sa y est je te posterai le scan
0
Réponse 22 / 170
youououou
 
molosse =youououou
0
Réponse 23 / 170
youououou
 
sa a replanter pffffffffffffff
0
Réponse 24 / 170
Utilisateur anonyme
 
Télécharge Random's System Information Tool (RSIT) de random/random et enregistre l'exécutable sur ton Bureau.

-> http://images.malwareremoval.com/random/RSIT.exe

! Déconnecte toi et ferme toutes tes applications en cours !

Double-clique sur " RSIT.exe " pour le lancer .

-> Une première fenêtre s'ouvre avec en titre : " Disclaimer of warranty " .

* Devant l'option "List files/folders created ..." , tu choisis : 2 months

* clique ensuite sur " Continue " pour lancer l'analyse ...

-> laisse faire le scan et ne touche pas au PC ...

Lorsque l'analyse sera terminée, deux fichiers texte s'ouvriront (probablement avec le bloc-note).

Poste le contenu de " log.txt " (c'est celui qui apparait à l'écran), ainsi que de " info.txt " (que tu verras dans la barre des tâches), pour analyse et attends la suite ...

Important : poste un rapport, puis l'autre dans la réponse suivante
Si tu essaies de poster les deux en même temps, cela risque d'être trop long pour le forum

( Note : les rapports seront en outre sauvegardés dans ce dossier -> C:\rsit )

0

Vous n’avez pas trouvé la réponse que vous recherchez ?

Posez votre question
Réponse 25 / 170
youououou
 
Logfile of random's system information tool 1.05 (written by random/random)
Run by Lefeve Catherine at 2009-01-30 00:09:14
Microsoft® Windows Vista™ Édition Familiale Premium Service Pack 1
System drive C: has 82 GB (57%) free of 144 GB
Total RAM: 2814 MB (46% free)

Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 00:11:31, on 30/01/2009
Platform: Windows Vista SP1 (WinNT 6.00.1905)
MSIE: Internet Explorer v7.00 (7.00.6001.18000)
Boot mode: Normal

Running processes:
C:\Windows\system32\taskeng.exe
C:\Windows\system32\Dwm.exe
C:\Windows\Explorer.EXE
C:\Windows\system32\conime.exe
C:\Program Files\Windows Defender\MSASCui.exe
C:\Windows\RtHDVCpl.exe
C:\Program Files\Acer\Empowering Technology\SysMonitor.exe
C:\Program Files\Acer\Empowering Technology\Framework.Launcher.exe
C:\Program Files\Acer\Empowering Technology\eDataSecurity\x86\eDSLoader.exe
C:\Program Files\NewTech Infosystems\NTI Backup Now 5\BkupTray.exe
C:\Windows\System32\rundll32.exe
C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe
C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe
C:\Program Files\Windows Live\Messenger\msnmsgr.exe
C:\Program Files\Ares\Ares.exe
C:\Program Files\TRENDnet\TEW-424UB\WlanCU.exe
C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLLoginProxy.exe
C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe
C:\Users\Lefeve Catherine\Downloads\RSIT.exe
C:\Users\Lefeve Catherine\Downloads\Lefeve Catherine.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://homepage.acer.com/rdr.aspx?b=ACAW&l=040c&s=1&o=vp32&d=1006&m=aspire_x3200
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.google.fr/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://fr.fr.acer.yahoo.com
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://fr.fr.acer.yahoo.com
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
R3 - URLSearchHook: Search Class - {08C06D61-F1F3-4799-86F8-BE1A89362C85} - C:\Program Files\OrangeHSS\SearchURLHook\SearchPageURL.dll
R3 - URLSearchHook: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll
O1 - Hosts: ::1 localhost
O2 - BHO: &Yahoo! Toolbar Helper - {02478D38-C3F9-4efb-9B51-7695ECA05670} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll
O2 - BHO: Aide pour le lien d'Adobe PDF Reader - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll
O2 - BHO: Spybot-S&D IE Protection - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)
O2 - BHO: ShowBarObj Class - {83A2F9B1-01A2-4AA5-87D1-45B6B8505E96} - C:\Program Files\Acer\Empowering Technology\eDataSecurity\x86\ActiveToolBand.dll
O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files\Google\Google Toolbar\GoogleToolbar.dll
O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\5.0.926.3450\swg.dll
O2 - BHO: Google Dictionary Compression sdch - {C84D72FE-E17D-4195-BB24-76C02E2E7C4E} - C:\Program Files\Google\Google Toolbar\Component\fastsearch_219B3E1547538286.dll
O2 - BHO: SingleInstance Class - {FDAD4DA1-61A2-4FD8-9C17-86F7AC245081} - C:\Program Files\Yahoo!\Companion\Installs\cpn\YTSingleInstance.dll
O3 - Toolbar: Acer eDataSecurity Management - {5CBE3B7C-1E47-477e-A7DD-396DB0476E29} - C:\Program Files\Acer\Empowering Technology\eDataSecurity\x86\eDStoolbar.dll
O3 - Toolbar: &Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar.dll
O3 - Toolbar: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll
O4 - HKLM\..\Run: [Windows Defender] "C:\Program Files\Windows Defender\MSASCui.exe" -hide
O4 - HKLM\..\Run: [RtHDVCpl] "C:\Windows\RtHDVCpl.exe"
O4 - HKLM\..\Run: [Acer Empowering Technology Monitor] "C:\Program Files\Acer\Empowering Technology\SysMonitor.exe"
O4 - HKLM\..\Run: [EmpoweringTechnology] "C:\Program Files\Acer\Empowering Technology\Framework.Launcher.exe" boot
O4 - HKLM\..\Run: [eDataSecurity Loader] "C:\Program Files\Acer\Empowering Technology\eDataSecurity\x86\eDSloader.exe"
O4 - HKLM\..\Run: [PCMMediaSharing] "C:\Program Files\Acer Arcade Live\Acer HomeMedia Connect\Kernel\DMS\PCMMediaSharing.exe"
O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe"
O4 - HKLM\..\Run: [BkupTray] "C:\Program Files\NewTech Infosystems\NTI Backup Now 5\BkupTray.exe"
O4 - HKLM\..\Run: [NvCplDaemon] "C:\Windows\system32\RUNDLL32.EXE" C:\Windows\system32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [NvMediaCenter] "C:\Windows\system32\RUNDLL32.EXE" C:\Windows\system32\NvMcTray.dll,NvTaskbarInit
O4 - HKLM\..\Run: [WarReg_PopUp] "C:\Program Files\Acer\WR_PopUp\WarReg_PopUp.exe"
O4 - HKLM\..\Run: [Google Desktop Search] "C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe" /startup
O4 - HKLM\..\Run: [ORAHSSSessionManager] "C:\Program Files\OrangeHSS\SessionManager\SessionManager.exe"
O4 - HKLM\..\Run: [egui] "C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe" /hide /waitservice
O4 - HKCU\..\Run: [MsnMsgr] "C:\Program Files\Windows Live\Messenger\MsnMsgr.Exe" /background
O4 - HKCU\..\Run: [ares] "C:\Program Files\Ares\Ares.exe" -h
O4 - HKCU\..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
O4 - HKCU\..\Run: [SpybotSD TeaTimer] C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-19\..\Run: [WindowsWelcomeCenter] rundll32.exe oobefldr.dll,ShowWelcomeCenter (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'SERVICE RÉSEAU')
O4 - Global Startup: Wireless Configuration Utility.lnk = C:\Program Files\TRENDnet\TEW-424UB\WlanCU.exe
O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office12\EXCEL.EXE/3000
O9 - Extra button: Ajout Direct - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra 'Tools' menuitem: &Ajout Direct dans Windows Live Writer - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra button: Envoyer à OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~2\Office12\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: &Envoyer à OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~2\Office12\ONBttnIE.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\Office12\REFIEBAR.DLL
O9 - Extra button: (no name) - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O9 - Extra 'Tools' menuitem: Spybot - Search & Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O10 - Unknown file in Winsock LSP: c:\windows\system32\nvlsp.dll
O10 - Unknown file in Winsock LSP: c:\windows\system32\nvlsp.dll
O10 - Unknown file in Winsock LSP: c:\windows\system32\nvlsp.dll
O10 - Unknown file in Winsock LSP: c:\windows\system32\nvlsp.dll
O13 - Gopher Prefix:
O20 - AppInit_DLLs: C:\PROGRA~1\Google\GOOGLE~1\GOEC62~1.DLL
O23 - Service: Acer HomeMedia Connect Service - CyberLink - C:\Program Files\Acer Arcade Live\Acer HomeMedia Connect\Kernel\DMS\CLMSServer.exe
O23 - Service: NTI Backup Now 5 Agent Service (BUNAgentSvc) - NewTech Infosystems, Inc. - C:\Program Files\NewTech Infosystems\NTI Backup Now 5\Client\Agentsvc.exe
O23 - Service: eDataSecurity Service - Egis Incorporated - C:\Program Files\Acer\Empowering Technology\eDataSecurity\x86\eDSService.exe
O23 - Service: Eset HTTP Server (EHttpSrv) - ESET - C:\Program Files\ESET\ESET NOD32 Antivirus\EHttpSrv.exe
O23 - Service: Eset Service (ekrn) - ESET - C:\Program Files\ESET\ESET NOD32 Antivirus\ekrn.exe
O23 - Service: Empowering Technology Service (ETService) - Unknown owner - C:\Program Files\Acer\Empowering Technology\Service\ETService.exe
O23 - Service: ForceWare Intelligent Application Manager (IAM) - Unknown owner - C:\Program Files\bin32\nSvcAppFlt.exe
O23 - Service: France Telecom Routing Table Service (FTRTSVC) - France Telecom SA - C:\PROGRA~1\COMMON~1\France Telecom\Shared Modules\FTRTSVC\0\FTRTSVC.exe
O23 - Service: Google Desktop Manager 5.7.808.7150 (GoogleDesktopManager-080708-050100) - Google - C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe
O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\1150\Intel 32\IDriverT.exe
O23 - Service: LightScribeService Direct Disc Labeling Service (LightScribeService) - Hewlett-Packard Company - C:\Program Files\Common Files\LightScribe\LSSrvc.exe
O23 - Service: ForceWare IP service (nSvcIp) - Unknown owner - C:\Program Files\bin32\nSvcIp.exe
O23 - Service: NTI Backup Now 5 Backup Service (NTIBackupSvc) - NewTech InfoSystems, Inc. - C:\Program Files\NewTech Infosystems\NTI Backup Now 5\BackupSvc.exe
O23 - Service: NTI Backup Now 5 Scheduler Service (NTISchedulerSvc) - Unknown owner - C:\Program Files\NewTech Infosystems\NTI Backup Now 5\SchedulerSvc.exe
O23 - Service: NVIDIA Display Driver Service (nvsvc) - NVIDIA Corporation - C:\Windows\system32\nvvsvc.exe
O23 - Service: Cyberlink RichVideo Service(CRVS) (RichVideo) - Unknown owner - C:\Program Files\CyberLink\Shared Files\RichVideo.exe
O23 - Service: SBSD Security Center Service (SBSDWSCService) - Safer Networking Ltd. - C:\Program Files\Spybot - Search & Destroy\SDWinSec.exe
O23 - Service: Moteur Webroot Spy Sweeper (WebrootSpySweeperService) - Webroot Software, Inc. (www.webroot.com) - C:\Program Files\Webroot\Spy Sweeper\SpySweeper.exe
0
Réponse 26 / 170
youououou
 
======Scheduled tasks folder======

C:\Windows\tasks\Norton Security Scan for Lefeve Catherine.job

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{02478D38-C3F9-4efb-9B51-7695ECA05670}]
&Yahoo! Toolbar Helper - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll [2008-07-28 882416]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{06849E9F-C8D7-4D59-B87D-784B7D6BE0B3}]
Aide pour le lien d'Adobe PDF Reader - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll [2006-10-22 62080]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{53707962-6F74-2D53-2644-206D7942484F}]
Spybot-S&D IE Protection - C:\PROGRA~1\SPYBOT~1\SDHelper.dll [2009-01-26 1879896]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{7E853D72-626A-48EC-A868-BA8D5E23E045}]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{83A2F9B1-01A2-4AA5-87D1-45B6B8505E96}]
ShowBarObj Class - C:\Program Files\Acer\Empowering Technology\eDataSecurity\x86\ActiveToolBand.dll [2008-03-04 312880]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
Programme d'aide de l'Assistant de connexion Windows Live - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2007-09-20 328752]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AA58ED58-01DD-4d91-8333-CF10577473F7}]
Google Toolbar Helper - C:\Program Files\Google\Google Toolbar\GoogleToolbar.dll [2009-01-25 251504]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AF69DE43-7D58-4638-B6FA-CE66B5AD205D}]
Google Toolbar Notifier BHO - C:\Program Files\Google\GoogleToolbarNotifier\5.0.926.3450\swg.dll [2009-01-25 657904]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{C84D72FE-E17D-4195-BB24-76C02E2E7C4E}]
Google Dictionary Compression sdch - C:\Program Files\Google\Google Toolbar\Component\fastsearch_219B3E1547538286.dll [2009-01-25 522224]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{FDAD4DA1-61A2-4FD8-9C17-86F7AC245081}]
SingleInstance Class - C:\Program Files\Yahoo!\Companion\Installs\cpn\YTSingleInstance.dll [2008-07-28 160496]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{5CBE3B7C-1E47-477e-A7DD-396DB0476E29} - Acer eDataSecurity Management - C:\Program Files\Acer\Empowering Technology\eDataSecurity\x86\eDStoolbar.dll [2008-03-04 142896]
{2318C2B1-4965-11d4-9B18-009027A5CD4F} - &Google Toolbar - C:\Program Files\Google\Google Toolbar\GoogleToolbar.dll [2009-01-25 251504]
{EF99BD32-C1FB-11D2-892F-0090271D4F88} - Yahoo! Toolbar - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll [2008-07-28 882416]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"Windows Defender"=C:\Program Files\Windows Defender\MSASCui.exe [2008-01-21 1008184]
"RtHDVCpl"=C:\Windows\RtHDVCpl.exe [2008-03-26 5369856]
"Acer Empowering Technology Monitor"=C:\Program Files\Acer\Empowering Technology\SysMonitor.exe [2008-04-25 319488]
"EmpoweringTechnology"=C:\Program Files\Acer\Empowering Technology\Framework.Launcher.exe [2008-04-25 319488]
"eDataSecurity Loader"=C:\Program Files\Acer\Empowering Technology\eDataSecurity\x86\eDSloader.exe [2008-03-04 526896]
"PCMMediaSharing"=C:\Program Files\Acer Arcade Live\Acer HomeMedia Connect\Kernel\DMS\PCMMediaSharing.exe [2008-01-25 204908]
"Adobe Reader Speed Launcher"=C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe [2007-05-11 40048]
"BkupTray"=C:\Program Files\NewTech Infosystems\NTI Backup Now 5\BkupTray.exe [2008-04-25 28672]
"NvCplDaemon"=C:\Windows\system32\NvCpl.dll [2008-04-22 13535776]
"NvMediaCenter"=C:\Windows\system32\NvMcTray.dll [2008-04-22 92704]
"eRecoveryService"= []
"WarReg_PopUp"=C:\Program Files\Acer\WR_PopUp\WarReg_PopUp.exe [2008-01-29 303104]
"Google Desktop Search"=C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe [2008-12-26 24064]
"ORAHSSSessionManager"=C:\Program Files\OrangeHSS\SessionManager\SessionManager.exe [2007-12-12 107248]
"egui"=C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe [2008-02-20 1443072]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"MsnMsgr"=C:\Program Files\Windows Live\Messenger\MsnMsgr.Exe [2007-10-18 5724184]
"ares"=C:\Program Files\Ares\Ares.exe [2009-01-03 893952]
"swg"=C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe [2009-01-25 39408]
"SpybotSD TeaTimer"=C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe [2009-01-26 2144088]

C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup
Wireless Configuration Utility.lnk - C:\Program Files\TRENDnet\TEW-424UB\WlanCU.exe

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows]
"AppInit_DLLS"="C:\PROGRA~1\Google\GOOGLE~1\GOEC62~1.DLL"

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
"EnableUIADesktopToggle"=0

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
"C:\Program Files\OrangeHSS\Connectivity\ConnectivityManager.exe"="C:\Program Files\OrangeHSS\Connectivity\ConnectivityManager.exe:*:enabled:CSS"

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

======List of files/folders created in the last 2 months======

2009-01-30 00:04:08 ----D---- C:\rsit
2009-01-29 23:05:40 ----A---- C:\FindyKill.txt
2009-01-29 22:39:40 ----D---- C:\Program Files\FindyKill
2009-01-26 23:09:01 ----D---- C:\ProgramData\Yahoo! Companion
2009-01-26 23:08:53 ----D---- C:\Program Files\CCleaner
2009-01-26 20:43:38 ----DC---- C:\Windows\system32\DRVSTORE
2009-01-26 20:43:20 ----A---- C:\Windows\system32\d3dx9_32.dll
2009-01-26 20:42:39 ----D---- C:\Program Files\Microsoft SQL Server Compact Edition
2009-01-25 21:56:56 ----D---- C:\ProgramData\Google Updater
2009-01-25 19:20:23 ----D---- C:\SDFix
2009-01-25 18:33:14 ----D---- C:\ProgramData\WebRoot
2009-01-25 13:03:53 ----D---- C:\Program Files\Webroot
2009-01-24 23:33:20 ----D---- C:\ProgramData\Avg8
2009-01-24 21:29:33 ----D---- C:\Program Files\AVG
2009-01-24 20:39:21 ----D---- C:\Users\Lefeve Catherine\AppData\Roaming\Malwarebytes
2009-01-24 20:39:14 ----D---- C:\ProgramData\Malwarebytes
2009-01-24 15:47:16 ----D---- C:\Program Files\Alwil Software
2009-01-24 14:42:03 ----D---- C:\Program Files\Microsoft Silverlight
2009-01-24 13:36:11 ----D---- C:\ProgramData\Spybot - Search & Destroy
2009-01-24 13:36:11 ----D---- C:\Program Files\Spybot - Search & Destroy
2009-01-22 14:24:10 ----D---- C:\Users\Lefeve Catherine\AppData\Roaming\CyberLink
2009-01-22 01:42:08 ----D---- C:\Users\Lefeve Catherine\AppData\Roaming\Yahoo!
2009-01-22 01:42:05 ----D---- C:\Program Files\Yahoo!
2009-01-22 01:41:56 ----D---- C:\Program Files\Veoh Networks
2009-01-18 22:15:55 ----D---- C:\Program Files\Common Files\Windows Live
2009-01-16 20:21:37 ----D---- C:\Program Files\Dofus
2009-01-11 18:54:48 ----D---- C:\ProgramData\NortonInstaller
2009-01-09 18:39:43 ----D---- C:\Program Files\Ares
2009-01-08 20:38:42 ----D---- C:\Users\Lefeve Catherine\AppData\Roaming\Template
2009-01-06 21:33:55 ----D---- C:\Users\Lefeve Catherine\AppData\Roaming\dvdcss
2009-01-03 14:47:06 ----D---- C:\Program Files\SiteAdvisor
2009-01-03 14:38:16 ----D---- C:\ProgramData\AWEM
2009-01-03 14:27:37 ----D---- C:\ProgramData\MumboJumbo
2009-01-02 22:24:48 ----D---- C:\Users\Lefeve Catherine\AppData\Roaming\FloodLightGames
2009-01-02 22:17:23 ----A---- C:\Windows\off-road-uninst.exe
2009-01-02 21:13:15 ----A---- C:\Windows\system32\d3dx10_35.dll
2009-01-02 21:13:14 ----A---- C:\Windows\system32\D3DCompiler_35.dll
2009-01-02 21:13:13 ----A---- C:\Windows\system32\d3dx9_35.dll
2009-01-02 21:13:12 ----A---- C:\Windows\system32\d3dx10_34.dll
2009-01-02 21:13:12 ----A---- C:\Windows\system32\D3DCompiler_34.dll
2009-01-02 21:13:10 ----A---- C:\Windows\system32\d3dx9_34.dll
2009-01-02 21:13:09 ----A---- C:\Windows\system32\xinput1_3.dll
2009-01-02 21:12:38 ----D---- C:\ProgramData\Media Center Programs
2009-01-02 21:10:30 ----D---- C:\Program Files\Electronic Arts
2009-01-02 19:59:38 ----D---- C:\Program Files\Acer GameZone Online
2009-01-02 19:45:24 ----D---- C:\Program Files\EA GAMES
2009-01-02 19:29:51 ----AD---- C:\ProgramData\TEMP
2009-01-01 22:26:40 ----D---- C:\Users\Lefeve Catherine\AppData\Roaming\vlc
2009-01-01 15:52:51 ----D---- C:\Downloads
2009-01-01 15:52:23 ----D---- C:\Program Files\BitComet
2009-01-01 00:30:29 ----D---- C:\Program Files\eMule
2008-12-31 22:46:58 ----D---- C:\Users\Lefeve Catherine\AppData\Roaming\Shareaza
2008-12-31 22:46:58 ----D---- C:\Program Files\Shareaza
2008-12-31 20:48:19 ----D---- C:\Program Files\SHARP
2008-12-29 20:37:35 ----D---- C:\Program Files\VideoLAN
2008-12-29 15:51:55 ----D---- C:\Users\Lefeve Catherine\AppData\Roaming\Vso
2008-12-29 15:51:48 ----A---- C:\Windows\system32\wvc1dmod.dll
2008-12-29 15:51:48 ----A---- C:\Windows\system32\vp7vfw.dll
2008-12-29 15:51:48 ----A---- C:\Windows\system32\sipr3260.dll
2008-12-29 15:51:48 ----A---- C:\Windows\system32\Pncrt.dll
2008-12-29 15:51:48 ----A---- C:\Windows\system32\drv43260.dll
2008-12-29 15:51:48 ----A---- C:\Windows\system32\drv33260.dll
2008-12-29 15:51:48 ----A---- C:\Windows\system32\drv23260.dll
2008-12-29 15:51:48 ----A---- C:\Windows\system32\cook3260.dll
2008-12-29 15:51:46 ----D---- C:\Program Files\VSO
2008-12-28 22:33:30 ----D---- C:\Program Files\Norton Security Scan
2008-12-28 16:31:19 ----D---- C:\Windows\system32\Adobe
2008-12-27 17:56:05 ----D---- C:\ProgramData\ESET
2008-12-27 17:56:05 ----D---- C:\Program Files\ESET
2008-12-27 15:14:34 ----SHD---- C:\Users\Lefeve Catherine\AppData\Roaming\.#
2008-12-27 00:43:30 ----A---- C:\Windows\system32\mshtml.dll
2008-12-27 00:40:39 ----A---- C:\Windows\system32\msshooks.dll
2008-12-27 00:40:39 ----A---- C:\Windows\system32\msscb.dll
2008-12-27 00:40:37 ----A---- C:\Windows\system32\thawbrkr.dll
2008-12-27 00:40:37 ----A---- C:\Windows\system32\srchadmin.dll
2008-12-27 00:40:37 ----A---- C:\Windows\system32\SearchFilterHost.exe
2008-12-27 00:40:37 ----A---- C:\Windows\system32\propsys.dll
2008-12-27 00:40:37 ----A---- C:\Windows\system32\propdefs.dll
2008-12-27 00:40:37 ----A---- C:\Windows\system32\msstrc.dll
2008-12-27 00:40:37 ----A---- C:\Windows\system32\mssprxy.dll
2008-12-27 00:40:37 ----A---- C:\Windows\system32\mssitlb.dll
2008-12-27 00:40:37 ----A---- C:\Windows\system32\msshsq.dll
2008-12-27 00:40:37 ----A---- C:\Windows\system32\korwbrkr.dll
2008-12-27 00:40:36 ----A---- C:\Windows\system32\xmlfilter.dll
2008-12-27 00:40:36 ----A---- C:\Windows\system32\wsepno.dll
2008-12-27 00:40:36 ----A---- C:\Windows\system32\rtffilt.dll
2008-12-27 00:40:36 ----A---- C:\Windows\system32\offfilt.dll
2008-12-27 00:40:36 ----A---- C:\Windows\system32\nlhtml.dll
2008-12-27 00:40:36 ----A---- C:\Windows\system32\msscntrs.dll
2008-12-27 00:40:36 ----A---- C:\Windows\system32\mimefilt.dll
2008-12-27 00:40:36 ----A---- C:\Windows\system32\chsbrkr.dll
2008-12-27 00:40:35 ----A---- C:\Windows\system32\tquery.dll
2008-12-27 00:40:35 ----A---- C:\Windows\system32\SearchProtocolHost.exe
2008-12-27 00:40:35 ----A---- C:\Windows\system32\SearchIndexer.exe
2008-12-27 00:40:35 ----A---- C:\Windows\system32\mssvp.dll
2008-12-27 00:40:35 ----A---- C:\Windows\system32\mssrch.dll
2008-12-27 00:40:35 ----A---- C:\Windows\system32\mssphtb.dll
2008-12-27 00:40:35 ----A---- C:\Windows\system32\mssph.dll
2008-12-27 00:40:35 ----A---- C:\Windows\system32\chtbrkr.dll
2008-12-27 00:39:55 ----A---- C:\Windows\system32\tzres.dll
2008-12-27 00:33:35 ----D---- C:\Program Files\MSXML 4.0
2008-12-26 21:46:10 ----A---- C:\Windows\system32\shell32.dll
2008-12-26 21:46:01 ----A---- C:\Windows\system32\rpcrt4.dll
2008-12-26 21:45:59 ----A---- C:\Windows\system32\pacerprf.dll
2008-12-26 21:45:52 ----A---- C:\Windows\system32\EncDec.dll
2008-12-26 21:45:49 ----A---- C:\Windows\system32\psisdecd.dll
2008-12-26 21:45:24 ----A---- C:\Windows\system32\urlmon.dll
2008-12-26 21:45:24 ----A---- C:\Windows\system32\ieframe.dll
2008-12-26 21:45:22 ----A---- C:\Windows\system32\wininet.dll
2008-12-26 21:45:22 ----A---- C:\Windows\system32\iertutil.dll
2008-12-26 21:45:21 ----A---- C:\Windows\system32\mstime.dll
2008-12-26 21:45:19 ----A---- C:\Windows\system32\jsproxy.dll
2008-12-26 21:45:13 ----A---- C:\Windows\system32\NlsLexicons0007.dll
2008-12-26 21:45:11 ----A---- C:\Windows\system32\NlsLexicons0009.dll
2008-12-26 21:44:58 ----A---- C:\Windows\system32\NaturalLanguage6.dll
2008-12-26 21:44:23 ----A---- C:\Windows\system32\gdi32.dll
2008-12-26 21:44:16 ----A---- C:\Windows\system32\PortableDeviceApi.dll
2008-12-26 21:44:14 ----A---- C:\Windows\system32\netapi32.dll
2008-12-26 21:44:12 ----A---- C:\Windows\system32\mf.dll
2008-12-26 21:44:11 ----A---- C:\Windows\system32\WMVCORE.DLL
2008-12-26 21:44:09 ----A---- C:\Windows\system32\WMNetMgr.dll
2008-12-26 21:44:09 ----A---- C:\Windows\system32\logagent.exe
2008-12-26 21:44:05 ----A---- C:\Windows\system32\vbscript.dll
2008-12-26 21:44:05 ----A---- C:\Windows\system32\jscript.dll
2008-12-26 21:44:04 ----A---- C:\Windows\system32\wshext.dll
2008-12-26 21:44:04 ----A---- C:\Windows\system32\wscript.exe
2008-12-26 21:44:04 ----A---- C:\Windows\system32\scrrun.dll
2008-12-26 21:44:04 ----A---- C:\Windows\system32\scrobj.dll
2008-12-26 21:44:04 ----A---- C:\Windows\system32\cscript.exe
2008-12-26 21:43:58 ----A---- C:\Windows\system32\Apphlpdm.dll
2008-12-26 21:43:55 ----A---- C:\Windows\system32\GameUXLegacyGDFs.dll
2008-12-26 21:43:48 ----A---- C:\Windows\system32\es.dll
2008-12-26 21:43:41 ----A---- C:\Windows\system32\win32spl.dll
2008-12-26 21:43:38 ----A---- C:\Windows\system32\WindowsCodecsExt.dll
2008-12-26 21:43:38 ----A---- C:\Windows\system32\WindowsCodecs.dll
2008-12-26 21:43:38 ----A---- C:\Windows\system32\PhotoMetadataHandler.dll
2008-12-26 21:43:35 ----A---- C:\Windows\system32\msxml3.dll
2008-12-26 21:43:33 ----A---- C:\Windows\system32\IPSECSVC.DLL
2008-12-26 21:43:28 ----A---- C:\Windows\explorer.exe
2008-12-26 21:43:25 ----A---- C:\Windows\system32\emdmgmt.dll
2008-12-26 21:43:25 ----A---- C:\Windows\system32\dataclen.dll
2008-12-26 21:43:25 ----A---- C:\Windows\system32\cdd.dll
2008-12-26 21:43:23 ----A---- C:\Windows\system32\Faultrep.dll
2008-12-26 21:43:22 ----A---- C:\Windows\system32\wersvc.dll
2008-12-26 21:43:17 ----A---- C:\Windows\system32\wmpeffects.dll
2008-12-26 21:42:56 ----A---- C:\Windows\system32\ntkrnlpa.exe
2008-12-26 21:42:55 ----A---- C:\Windows\system32\ntoskrnl.exe
2008-12-26 21:41:57 ----A---- C:\Windows\system32\inetcomm.dll
2008-12-26 21:38:36 ----A---- C:\Windows\system32\quartz.dll
2008-12-26 21:38:35 ----A---- C:\Windows\system32\connect.dll
2008-12-26 21:38:33 ----A---- C:\Windows\system32\msxml6.dll
2008-12-26 21:33:50 ----A---- C:\Windows\system32\wups2.dll
2008-12-26 21:33:50 ----A---- C:\Windows\system32\wucltux.dll
2008-12-26 21:33:50 ----A---- C:\Windows\system32\wuaueng.dll
2008-12-26 21:33:50 ----A---- C:\Windows\system32\wuauclt.exe
2008-12-26 21:33:42 ----A---- C:\Windows\system32\wups.dll
2008-12-26 21:33:42 ----A---- C:\Windows\system32\wudriver.dll
2008-12-26 21:33:42 ----A---- C:\Windows\system32\wuapi.dll
2008-12-26 21:33:37 ----A---- C:\Windows\system32\wuwebv.dll
2008-12-26 21:33:37 ----A---- C:\Windows\system32\wuapp.exe
2008-12-26 21:23:10 ----SHDC---- C:\Program Files\Common Files\WindowsLiveInstaller
2008-12-26 21:23:00 ----D---- C:\Program Files\Windows Live
2008-12-26 21:22:36 ----D---- C:\ProgramData\WLInstaller
2008-12-26 20:39:12 ----D---- C:\Program Files\TRENDnet
2008-12-26 20:05:32 ----D---- C:\Users\Lefeve Catherine\AppData\Roaming\Google
2008-12-26 19:52:25 ----D---- C:\Program Files\Securitoo
2008-12-26 19:51:30 ----A---- C:\Windows\system32\Autodial2000.dll
2008-12-26 19:51:18 ----D---- C:\Program Files\OrangeHSS
2008-12-26 19:50:53 ----D---- C:\Program Files\Common Files\France Telecom
2008-12-26 19:45:07 ----D---- C:\Users\Lefeve Catherine\AppData\Roaming\Adobe
2008-12-26 19:19:58 ----D---- C:\Users\Lefeve Catherine\AppData\Roaming\Macromedia
2008-12-26 19:19:33 ----D---- C:\Users\Lefeve Catherine\AppData\Roaming\Identities
2008-12-26 19:18:59 ----D---- C:\ProgramData\Google
2008-12-26 19:18:36 ----D---- C:\Program Files\Google
2008-12-26 19:18:13 ----D---- C:\ACERSW
2008-12-26 19:17:45 ----SD---- C:\Users\Lefeve Catherine\AppData\Roaming\Microsoft
2008-12-26 19:17:45 ----D---- C:\Users\Lefeve Catherine\AppData\Roaming\Media Center Programs
2008-12-26 19:17:45 ----D---- C:\Users\Lefeve Catherine\AppData\Roaming\Acer GameZone Console
2008-12-26 19:14:09 ----SHD---- C:\ProgramData\Modèles
2008-12-26 19:14:09 ----SHD---- C:\ProgramData\Menu Démarrer
2008-12-26 19:14:09 ----SHD---- C:\ProgramData\Favoris
2008-12-26 19:14:09 ----SHD---- C:\ProgramData\Bureau
2008-12-26 19:14:09 ----SHD---- C:\Program Files\Fichiers communs

======List of files/folders modified in the last 2 months======

2009-01-30 00:11:31 ----D---- C:\Windows\Temp
2009-01-30 00:11:11 ----D---- C:\Windows\Prefetch
2009-01-30 00:03:44 ----RD---- C:\Program Files
2009-01-30 00:03:43 ----D---- C:\Windows\system32\drivers
2009-01-30 00:02:09 ----D---- C:\Windows
2009-01-29 23:12:18 ----D---- C:\Windows\System32
2009-01-29 23:12:18 ----A---- C:\Windows\system32\PerfStringBackup.INI
2009-01-29 23:06:54 ----SD---- C:\Windows\Downloaded Program Files
2009-01-29 22:38:05 ----D---- C:\ProgramData\NVIDIA
2009-01-29 15:59:46 ----SHD---- C:\System Volume Information
2009-01-28 19:21:25 ----SHD---- C:\Windows\Installer
2009-01-28 19:18:07 ----D---- C:\Windows\winsxs
2009-01-28 16:40:03 ----HD---- C:\Program Files\InstallShield Installation Information
2009-01-28 16:39:27 ----D---- C:\Program Files\Acer GameZone
2009-01-28 16:39:23 ----D---- C:\Program Files\Common Files\Oberon Media
2009-01-27 21:42:58 ----D---- C:\ACER
2009-01-26 23:36:19 ----D---- C:\Windows\system32\LogFiles
2009-01-26 23:10:43 ----D---- C:\Windows\Debug
2009-01-26 23:09:01 ----HD---- C:\ProgramData
2009-01-26 20:42:42 ----RSD---- C:\Windows\assembly
2009-01-26 20:39:46 ----D---- C:\Windows\system32\catroot
2009-01-25 21:31:47 ----D---- C:\Windows\system32\catroot2
2009-01-25 19:21:50 ----D---- C:\Windows\system32\Tasks
2009-01-25 18:32:16 ----D---- C:\Windows\Tasks
2009-01-25 18:32:15 ----RD---- C:\Users
2009-01-25 13:04:01 ----A---- C:\Windows\win.ini
2009-01-25 12:41:13 ----D---- C:\ProgramData\McAfee
2009-01-25 12:41:13 ----D---- C:\Program Files\Common Files
2009-01-25 12:36:24 ----D---- C:\Windows\system32\Msdtc
2009-01-25 12:36:22 ----D---- C:\Windows\system32\wbem
2009-01-25 12:35:30 ----D---- C:\Windows\system32\config
2009-01-25 12:34:10 ----D---- C:\Windows\system32\spool
2009-01-25 12:34:10 ----D---- C:\Windows\system32\CodeIntegrity
2009-01-25 12:34:10 ----D---- C:\Windows\nvtmpinst
2009-01-25 12:34:09 ----D---- C:\Windows\inf
2009-01-25 12:34:09 ----D---- C:\Windows\ehome
2009-01-25 12:34:09 ----D---- C:\Windows\AppPatch
2009-01-25 12:34:01 ----D---- C:\Program Files\Windows Photo Gallery
2009-01-25 12:34:01 ----D---- C:\Program Files\Windows Media Player
2009-01-25 12:34:01 ----D---- C:\Program Files\Windows Defender
2009-01-25 12:33:58 ----D---- C:\Program Files\Internet Explorer
2009-01-25 12:33:52 ----D---- C:\Windows\registration
2009-01-25 12:33:48 ----D---- C:\Windows\system32\Macromed
2009-01-25 12:33:45 ----SHD---- C:\$RECYCLE.BIN
2009-01-25 12:33:34 ----D---- C:\Windows\WindowsMobile
2009-01-25 12:33:34 ----D---- C:\Windows\Web
2009-01-25 12:33:34 ----D---- C:\Windows\system32\XPSViewer
2009-01-25 12:33:34 ----D---- C:\Windows\system32\winrm
2009-01-25 12:33:34 ----D---- C:\Windows\system32\WCN
2009-01-25 12:33:33 ----SD---- C:\Windows\system32\Microsoft
2009-01-25 12:33:33 ----D---- C:\Windows\system32\sysprep
2009-01-25 12:33:33 ----D---- C:\Windows\system32\Speech
2009-01-25 12:33:33 ----D---- C:\Windows\system32\SMI
2009-01-25 12:33:33 ----D---- C:\Windows\system32\slmgr
2009-01-25 12:33:33 ----D---- C:\Windows\system32\RemInst
2009-01-25 12:33:33 ----D---- C:\Windows\system32\Printing_Admin_Scripts
2009-01-25 12:33:33 ----D---- C:\Windows\system32\oobe
2009-01-25 12:33:33 ----D---- C:\Windows\system32\OEM
2009-01-25 12:33:33 ----D---- C:\Windows\system32\networklist
2009-01-25 12:33:33 ----D---- C:\Windows\system32\MUI
2009-01-25 12:33:33 ----D---- C:\Windows\system32\migwiz
2009-01-25 12:33:33 ----D---- C:\Windows\system32\migration
2009-01-25 12:33:33 ----D---- C:\Windows\system32\licensing
2009-01-25 12:33:33 ----D---- C:\Windows\system32\IME
2009-01-25 12:33:32 ----D---- C:\Windows\system32\fr-FR
2009-01-25 12:33:32 ----D---- C:\Windows\system32\DriverStore
2009-01-25 12:33:30 ----D---- C:\Windows\system32\com
2009-01-25 12:33:30 ----D---- C:\Windows\system32\Boot
2009-01-25 12:33:30 ----D---- C:\Windows\Speech
2009-01-25 12:33:30 ----D---- C:\Windows\Setup
2009-01-25 12:33:30 ----D---- C:\Windows\servicing
2009-01-25 12:33:30 ----D---- C:\Windows\ServiceProfiles
2009-01-25 12:33:30 ----D---- C:\Windows\security
2009-01-25 12:33:30 ----D---- C:\Windows\schemas
2009-01-25 12:33:30 ----D---- C:\Windows\Resources
2009-01-25 12:33:30 ----D---- C:\Windows\Provisioning
2009-01-25 12:33:30 ----D---- C:\Windows\PolicyDefinitions
2009-01-25 12:33:30 ----D---- C:\Windows\PLA
2009-01-25 12:33:29 ----D---- C:\Windows\Performance
2009-01-25 12:33:29 ----D---- C:\Windows\MSAgent
2009-01-25 12:33:28 ----D---- C:\Windows\IME
2009-01-25 12:33:28 ----D---- C:\Windows\Help
2009-01-25 12:33:28 ----D---- C:\Windows\DigitalLocker
2009-01-25 12:33:28 ----D---- C:\Windows\Branding
2009-01-25 12:33:28 ----D---- C:\Windows\Boot
2009-01-25 12:33:26 ----SD---- C:\ProgramData\Microsoft
2009-01-25 12:33:26 ----D---- C:\ProgramData\CyberLink
2009-01-25 12:33:26 ----D---- C:\Program Files\Windows Sidebar
2009-01-25 12:33:26 ----D---- C:\Program Files\Windows NT
2009-01-25 12:33:26 ----D---- C:\Program Files\Common Files\InstallShield
2009-01-25 12:33:25 ----D---- C:\Program Files\Windows Mail
2009-01-25 12:33:25 ----D---- C:\Program Files\Windows Journal
2009-01-25 12:33:25 ----D---- C:\Program Files\Windows Collaboration
2009-01-25 12:33:25 ----D---- C:\Program Files\Windows Calendar
2009-01-25 12:33:25 ----D---- C:\Program Files\Reference Assemblies
2009-01-25 12:33:25 ----D---- C:\Program Files\Realtek
2009-01-25 12:33:25 ----D---- C:\Program Files\profile
2009-01-25 12:33:25 ----D---- C:\Program Files\NewTech Infosystems
2009-01-25 12:33:25 ----D---- C:\Program Files\MSBuild
2009-01-25 12:33:25 ----D---- C:\Program Files\Acer
2009-01-25 12:33:24 ----D---- C:\Program Files\YUAN
2009-01-25 12:33:24 ----D---- C:\Program Files\Movie Maker
2009-01-25 12:33:24 ----D---- C:\Program Files\Microsoft.NET
2009-01-25 12:33:24 ----D---- C:\Program Files\Microsoft Office
2009-01-25 12:33:24 ----D---- C:\Program Files\Microsoft Games
2009-01-25 12:33:24 ----D---- C:\Program Files\eSobi
2009-01-25 12:33:24 ----D---- C:\Program Files\CyberLink
2009-01-25 12:33:24 ----D---- C:\Program Files\Common Files\System
2009-01-25 12:33:24 ----D---- C:\Program Files\Common Files\SpeechEngines
2009-01-25 12:33:24 ----D---- C:\Program Files\Common Files\microsoft shared
2009-01-25 12:33:23 ----D---- C:\Program Files\Common Files\LightScribe
2009-01-25 12:33:23 ----D---- C:\Program Files\Common Files\Adobe
2009-01-25 12:33:22 ----D---- C:\Program Files\bin32
2009-01-25 12:33:22 ----D---- C:\Program Files\Adobe
2009-01-25 12:33:22 ----D---- C:\Program Files\Activation Assistant for the 2007 Microsoft Office suites
2009-01-25 12:33:20 ----D---- C:\Program Files\Acer Arcade Live
2009-01-25 12:33:19 ----RHD---- C:\MSOCache
2009-01-10 02:35:28 ----A---- C:\Windows\system32\mrt.exe
2009-01-07 14:34:05 ----D---- C:\Windows\system32\WDI
2009-01-02 18:20:51 ----D---- C:\ProgramData\SiteAdvisor
2008-12-27 20:40:21 ----D---- C:\Windows\rescache
2008-12-27 20:22:19 ----D---- C:\Windows\Logs
2008-12-27 01:07:48 ----D---- C:\Windows\Microsoft.NET
2008-12-27 00:47:35 ----D---- C:\ProgramData\Microsoft Help
2008-12-27 00:33:50 ----D---- C:\Program Files\Microsoft Works
2008-12-27 00:30:25 ----D---- C:\Windows\system32\NDF
2008-12-26 21:16:31 ----D---- C:\Windows\SoftwareDistribution
2008-12-26 19:19:59 ----D---- C:\Windows\Acer_Normal

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R1 easdrv;easdrv; C:\Windows\system32\DRIVERS\easdrv.sys [2008-02-20 29704]
R1 epfwtdir;epfwtdir; C:\Windows\system32\DRIVERS\epfwtdir.sys [2008-02-20 33800]
R2 eamon;EAMON; C:\Windows\system32\DRIVERS\eamon.sys [2008-02-20 39944]
R2 int15;int15; \??\C:\Windows\system32\drivers\int15.sys [2008-04-25 15392]
R2 PSDNServ;PSDNServ; C:\Windows\system32\DRIVERS\PSDNServ.sys [2008-03-04 16944]
R2 psdvdisk;PSDVdisk; C:\Windows\system32\DRIVERS\PSDVdisk.sys [2008-03-04 60464]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\Windows\system32\drivers\RTKVHDA.sys [2008-03-26 2103512]
R3 MBAMSwissArmy;MBAMSwissArmy; \??\C:\Windows\system32\drivers\mbamswissarmy.sys []
R3 NTIDrvr;Upper Class Filter Driver; C:\Windows\system32\DRIVERS\NTIDrvr.sys [2008-01-30 14848]
R3 NVENETFD;NVIDIA nForce Networking Controller Driver; C:\Windows\system32\DRIVERS\nvmfdx32.sys [2008-01-29 1042464]
R3 NVHDA;Service for NVIDIA High Definition Audio Driver; C:\Windows\system32\drivers\nvhda32v.sys [2008-04-22 43552]
R3 nvlddmkm;nvlddmkm; C:\Windows\system32\DRIVERS\nvlddmkm.sys [2008-04-22 7451040]
R3 nvsmu;nvsmu; C:\Windows\system32\DRIVERS\nvsmu.sys [2007-10-12 13312]
R3 pcouffin;VSO Software pcouffin; C:\Windows\System32\Drivers\pcouffin.sys [2009-01-01 47360]
R3 RTL8187B;TRENDnet TEW-424UB 54M USB Dongle; C:\Windows\system32\DRIVERS\RTL8187B.sys [2007-07-19 281088]
R3 WmiAcpi;Microsoft Windows Management Interface for ACPI; C:\Windows\system32\DRIVERS\wmiacpi.sys [2008-01-21 11264]
R3 WUDFRd;WUDFRd; C:\Windows\system32\DRIVERS\WUDFRd.sys [2008-01-21 83328]
S3 drmkaud;Filtre de décodeur DRM (Noyau Microsoft); C:\Windows\system32\drivers\drmkaud.sys [2008-01-21 5632]
S3 HdAudAddService;Pilote de fonction UAA 1.1 Microsoft pour le service High Definition Audio; C:\Windows\system32\drivers\HdAudio.sys [2006-11-02 235520]
S3 MSKSSRV;Proxy de service de répartition Microsoft; C:\Windows\system32\drivers\MSKSSRV.sys [2008-01-21 8192]
S3 MSPCLOCK;Proxy d'horloge de répartition Microsoft; C:\Windows\system32\drivers\MSPCLOCK.sys [2008-01-21 5888]
S3 MSPQM;Proxy de gestion de qualité de répartition Microsoft; C:\Windows\system32\drivers\MSPQM.sys [2008-01-21 5504]
S3 MSTEE;Convertisseur en T/site-à-site de répartition Microsoft; C:\Windows\system32\drivers\MSTEE.sys [2008-01-21 6016]
S3 nmwcd;Nokia USB Phone Parent; C:\Windows\system32\drivers\ccdcmb.sys [2008-05-02 17536]
S3 nmwcdc;Nokia USB Generic; C:\Windows\system32\drivers\ccdcmbo.sys [2008-05-02 20864]
S3 PCAMp50;PCAMp50 NDIS Protocol Driver; C:\Windows\System32\Drivers\PCAMp50.sys [2006-11-28 28224]
S3 PCASp50;PCASp50 NDIS Protocol Driver; C:\Windows\System32\Drivers\PCASp50.sys [2006-11-28 27072]
S3 upperdev;upperdev; C:\Windows\system32\DRIVERS\usbser_lowerflt.sys [2008-05-02 8064]
S3 usbser;Nokia USB Serial Port; C:\Windows\system32\DRIVERS\usbser.sys [2008-01-21 28160]
S3 UsbserFilt;UsbserFilt; C:\Windows\system32\DRIVERS\usbser_lowerfltj.sys [2008-05-02 8064]
S3 WpdUsb;WpdUsb; C:\Windows\system32\DRIVERS\wpdusb.sys [2008-01-21 39936]
S4 ErrDev;Microsoft Hardware Error Device Driver; C:\Windows\system32\drivers\errdev.sys [2008-01-21 6656]
S4 MegaSR;MegaSR; C:\Windows\system32\drivers\megasr.sys [2008-01-21 386616]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 Acer HomeMedia Connect Service;Acer HomeMedia Connect Service; C:\Program Files\Acer Arcade Live\Acer HomeMedia Connect\Kernel\DMS\CLMSServer.exe [2008-01-25 269448]
R2 BUNAgentSvc;NTI Backup Now 5 Agent Service; C:\Program Files\NewTech Infosystems\NTI Backup Now 5\Client\Agentsvc.exe [2008-03-03 16384]
R2 eDataSecurity Service;eDataSecurity Service; C:\Program Files\Acer\Empowering Technology\eDataSecurity\x86\eDSService.exe [2008-03-04 500784]
R2 ekrn;Eset Service; C:\Program Files\ESET\ESET NOD32 Antivirus\ekrn.exe [2008-02-20 472320]
R2 ETService;Empowering Technology Service; C:\Program Files\Acer\Empowering Technology\Service\ETService.exe [2008-04-25 24576]
R2 ForceWare Intelligent Application Manager (IAM);ForceWare Intelligent Application Manager (IAM); C:\Program Files\bin32\nSvcAppFlt.exe [2008-01-29 598016]
R2 FTRTSVC;France Telecom Routing Table Service; C:\PROGRA~1\COMMON~1\France Telecom\Shared Modules\FTRTSVC\0\FTRTSVC.exe [2007-12-11 65536]
R2 gusvc;Google Updater Service; C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe [2009-01-25 168432]
R2 LightScribeService;LightScribeService Direct Disc Labeling Service; C:\Program Files\Common Files\LightScribe\LSSrvc.exe [2007-01-17 61440]
R2 nSvcIp;ForceWare IP service; C:\Program Files\bin32\nSvcIp.exe [2008-01-29 163840]
R2 NTIBackupSvc;NTI Backup Now 5 Backup Service; C:\Program Files\NewTech Infosystems\NTI Backup Now 5\BackupSvc.exe [2008-04-25 45056]
R2 NTISchedulerSvc;NTI Backup Now 5 Scheduler Service; C:\Program Files\NewTech Infosystems\NTI Backup Now 5\SchedulerSvc.exe [2008-04-25 131072]
R2 nvsvc;NVIDIA Display Driver Service; C:\Windows\system32\nvvsvc.exe [2008-04-22 118784]
R2 RichVideo;Cyberlink RichVideo Service(CRVS); C:\Program Files\CyberLink\Shared Files\RichVideo.exe [2006-07-19 262247]
S2 SBSDWSCService;SBSD Security Center Service; C:\Program Files\Spybot - Search & Destroy\SDWinSec.exe [2009-01-26 1153368]
S2 WebrootSpySweeperService;Moteur Webroot Spy Sweeper; C:\Program Files\Webroot\Spy Sweeper\SpySweeper.exe [2008-08-09 3585384]
S3 EHttpSrv;Eset HTTP Server; C:\Program Files\ESET\ESET NOD32 Antivirus\EHttpSrv.exe [2008-02-20 19200]
S3 GoogleDesktopManager-080708-050100;Google Desktop Manager 5.7.808.7150; C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe [2008-12-26 24064]
S3 IDriverT;InstallDriver Table Manager; C:\Program Files\Common Files\InstallShield\Driver\1150\Intel 32\IDriverT.exe [2005-11-14 69632]
S3 odserv;Microsoft Office Diagnostics Service; C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE [2007-08-24 443776]
S3 ose;Office Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2006-10-26 145184]
S3 usnjsvc;Service Messenger Sharing Folders USN Journal Reader; C:\Program Files\Windows Live\Messenger\usnsvc.exe [2007-10-18 98328]
S3 WLSetupSvc;Windows Live Setup Service; C:\Program Files\Windows Live\installer\WLSetupSvc.exe [2007-10-25 266240]

-----------------EOF-----------------
0
Réponse 27 / 170
Utilisateur anonyme
 

0
Réponse 28 / 170
az
 
mdr nn jte jur g tout
0
Réponse 29 / 170
youououou
 
g u kun bloc note aussi moi koment faire alor
0
Réponse 30 / 170
Utilisateur anonyme
 
retente Malwarebytes en mode sans echec
0
Réponse 31 / 170
youououou
 
je te tiens o courant si sa marche ou aps
0
Réponse 32 / 170
pu d pieds
 
re: ya rien Malwarebytes' Anti-Malware 1.33
Version de la base de données: 1705
Windows 6.0.6001 Service Pack 1

30/01/2009 00:51:06
mbam-log-2009-01-30 (00-51-06).txt

Type de recherche: Examen complet (C:\|D:\|F:\|G:\|)
Eléments examinés: 160863
Temps écoulé: 16 minute(s), 27 second(s)

Processus mémoire infecté(s): 0
Module(s) mémoire infecté(s): 0
Clé(s) du Registre infectée(s): 0
Valeur(s) du Registre infectée(s): 0
Elément(s) de données du Registre infecté(s): 0
Dossier(s) infecté(s): 0
Fichier(s) infecté(s): 0

Processus mémoire infecté(s):
(Aucun élément nuisible détecté)

Module(s) mémoire infecté(s):
(Aucun élément nuisible détecté)

Clé(s) du Registre infectée(s):
(Aucun élément nuisible détecté)

Valeur(s) du Registre infectée(s):
(Aucun élément nuisible détecté)

Elément(s) de données du Registre infecté(s):
(Aucun élément nuisible détecté)

Dossier(s) infecté(s):
(Aucun élément nuisible détecté)

Fichier(s) infecté(s):
(Aucun élément nuisible détecté)
0
Réponse 33 / 170
youououou
 
ya rien du ttMalwarebytes' Anti-Malware 1.33
Version de la base de données: 1705
Windows 6.0.6001 Service Pack 1

30/01/2009 00:51:06
mbam-log-2009-01-30 (00-51-06).txt

Type de recherche: Examen complet (C:\|D:\|F:\|G:\|)
Eléments examinés: 160863
Temps écoulé: 16 minute(s), 27 second(s)

Processus mémoire infecté(s): 0
Module(s) mémoire infecté(s): 0
Clé(s) du Registre infectée(s): 0
Valeur(s) du Registre infectée(s): 0
Elément(s) de données du Registre infecté(s): 0
Dossier(s) infecté(s): 0
Fichier(s) infecté(s): 0

Processus mémoire infecté(s):
(Aucun élément nuisible détecté)

Module(s) mémoire infecté(s):
(Aucun élément nuisible détecté)

Clé(s) du Registre infectée(s):
(Aucun élément nuisible détecté)

Valeur(s) du Registre infectée(s):
(Aucun élément nuisible détecté)

Elément(s) de données du Registre infecté(s):
(Aucun élément nuisible détecté)

Dossier(s) infecté(s):
(Aucun élément nuisible détecté)

Fichier(s) infecté(s):
(Aucun élément nuisible détecté)
0
Réponse 34 / 170
Utilisateur anonyme
 
télécharge GenProc http://www.alt-shift-return.org/Info/Fichiers/GenProc.zip sur ton bureau
Pour Vista : Désactive l'UAC jusqu'à la résolution du problème http://forum.telecharger.01net.com/forum/high-tech/PRODUITS/Questions-techniques/desactiver-controle-utilisateurs-sujet_198996_1.htm
dézippe le dossier, double-clique sur GenProc.bat

http://forum.telecharger.01net.com/forum/­­­jeanchretien1-3.gif

et poste le contenu du rapport qui s'ouvre

Aide en images : http://www.alt-shift-return.org/Info/GenProc-­HowTo.html</code>

0
Réponse 35 / 170
youououou
 
bn jvé me coucher(g 16 ans quand meme) peut tu mdire la prochaine manip stp jte tiendrais o courant demain et stp ne me lache pas tu es mon seul recours o faite si sa peut taider nod32(mon antivirus) a mis en quarantaine win 32 le virus dc voila a demain jspr et je ten supplie bne nuit
0
Réponse 36 / 170
youououou
 
les liens ne sont pas bon!!
0
Réponse 37 / 170
youououou
 
ne ten fais pas demain midi je repasse et fais t manip ms lesliens ne son plu bon a demain
0
Réponse 38 / 170
Utilisateur anonyme
 
ok a demain :

télécharge GenProc http://www.alt-shift-return.org/Info/Fichiers/GenProc.zip sur ton bureau
Pour Vista : Désactive l'UAC jusqu'à la résolution du problème http://forum.telecharger.01net.com/forum/high-tech/PRODUITS/Questions-techniques/desactiver-controle-utilisateurs-sujet_198996_1.htm
dézippe le dossier, double-clique sur GenProc.bat

laisse le travailler et copie-colles le rapport qui apparait
0
Réponse 39 / 170
y
 
Rapport GenProc 2.351 [1] - 30/01/2009 - Windows Vista

GenProc n'a détecté aucune infection caractéristique et suggère de suivre la procédure suivante :

Poste un rapport NanoScan https://www.micro-astuce.com/securite/NanoScan-Panda.php

__________________________________________________________________________________________________________

Sites officiels GenProc : www.alt-shift-return.org et www.genproc.com
0
youououou
 
bonjour!! ya rein jcroiRapport GenProc 2.351 [1] - 30/01/2009 - Windows Vista

GenProc n'a détecté aucune infection caractéristique et suggère de suivre la procédure suivante :


Poste un rapport NanoScan https://www.micro-astuce.com/securite/NanoScan-Panda.php


__________________________________________________________________________________________________________

Sites officiels GenProc : www.alt-shift-return.org et www.genproc.com
0
Réponse 40 / 170
Utilisateur anonyme
 
salut tu peux faire ce scan Panda :)
0