Pc ralentit,suis je infecté,merci de m'aider?
1974lyly
Messages postés
60
Statut
Membre
-
plopus Messages postés 6113 Statut Contributeur sécurité -
plopus Messages postés 6113 Statut Contributeur sécurité -
Bonjour,
mon pc est tres lent,je n'arrive meme plus a regarder des vidéos sur youtube,ou alors il faut que j'attende un quart d'heure pour qu'elles se téléchargent,suis infecté?j'ai fais un rapport hijackthis.Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 22:08:19, on 17/06/2009
Platform: Windows Vista SP2 (WinNT 6.00.1906)
MSIE: Internet Explorer v8.00 (8.00.6001.18702)
Boot mode: Normal
Running processes:
C:\Windows\system32\Dwm.exe
C:\Windows\Explorer.EXE
C:\Windows\system32\taskeng.exe
C:\Program Files\ScanSoft\OmniPageSE4\OpWareSE4.exe
C:\Program Files\Google\Quick Search Box\qsb.exe
C:\Program Files\Common Files\Real\Update_OB\realsched.exe
C:\Program Files\BitDefender\BitDefender 2009\bdagent.exe
C:\Program Files\Java\jre6\bin\jusched.exe
C:\Windows\vsnp2std.exe
C:\Program Files\Windows Sidebar\sidebar.exe
C:\Program Files\Netlog 24\Notifier\Netlog24Notifier.exe
C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe
C:\Program Files\Windows Live\Messenger\msnmsgr.exe
C:\Program Files\Veoh Networks\VeohWebPlayer\veohwebplayer.exe
C:\Program Files\Ares\Ares.exe
C:\Program Files\Toshiba\Bluetooth Toshiba Stack\TosBtMng.exe
C:\Users\be\AppData\Roaming\Microsoft\Notification de cadeaux MSN\lsnfier.exe
C:\Users\be\AppData\Roaming\eoRezo\SoftwareUpdate\SoftwareUpdateHP.exe
C:\Program Files\Windows Media Player\wmpnscfg.exe
C:\Windows\system32\wbem\unsecapp.exe
C:\Program Files\OpenOffice.org 3\program\soffice.exe
C:\Program Files\OpenOffice.org 3\program\soffice.bin
C:\Program Files\Toshiba\Bluetooth Toshiba Stack\TosA2dp.exe
C:\Windows\system32\conime.exe
C:\Program Files\Toshiba\Bluetooth Toshiba Stack\TosBtHid.exe
C:\Program Files\Toshiba\Bluetooth Toshiba Stack\TosBtHsp.exe
C:\Program Files\BitDefender\BitDefender 2009\seccenter.exe
C:\Program Files\Windows Live\Contacts\wlcomm.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Windows Live\Toolbar\wltuser.exe
C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
C:\Windows\system32\Macromed\Flash\FlashUtil10a.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Trend Micro\hijackthis.exe
C:\Windows\system32\SearchFilterHost.exe
C:\Windows\system32\SearchProtocolHost.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://search.shareware.pro/?lang=fr
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.google.be
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = https://www.msn.com/fr-fr/?ocid=iehp
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://search.shareware.pro/?lang=fr
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://search.shareware.pro/?lang=fr
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: XBTB00892 - {2CC514F5-5881-49c2-AD9E-6F7A89AB4F1B} - C:\PROGRA~1\TRADUC~1\install.dll (file missing)
O2 - BHO: RealPlayer Download and Record Plugin for Internet Explorer - {3049C3E9-B461-4BC5-8870-4C09146192CA} - C:\Program Files\Real\RealPlayer\rpbrowserrecordplugin.dll
O2 - BHO: myBabylon Toolbar - {34ea1c70-42cc-42c5-aa29-ec58b95a343e} - C:\Program Files\myBabylon\tbmyB0.dll
O2 - BHO: Spybot-S&D IE Protection - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O2 - BHO: EoRezoBHO - {64F56FC1-1272-44CD-BA6E-39723696E350} - C:\Program Files\EoRezo\EoAdv\EoRezoBHO.dll (file missing)
O2 - BHO: Search Helper - {6EBF7485-159F-4bff-A14F-B9E3AAC4465B} - C:\Program Files\Microsoft\Search Enhancement Pack\Search Helper\SEPsearchhelperie.dll
O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Skyrock Toolbar - {A057A204-BACC-4D26-969A-2AB983EE729B} - C:\PROGRA~1\SKYROC~1\SKYROC~1.DLL
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files\Google\Google Toolbar\GoogleToolbar.dll
O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\5.1.1309.3572\swg.dll
O2 - BHO: EoBHO - {C7B76B90-3455-4AE6-A752-EAC4D19689E5} - C:\Program Files\EoRezo\EoAdv\EoRezoBHO.dll (file missing)
O2 - BHO: Google Dictionary Compression sdch - {C84D72FE-E17D-4195-BB24-76C02E2E7C4E} - C:\Program Files\Google\Google Toolbar\Component\fastsearch_A8904FB862BD9564.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll
O2 - BHO: Windows Live Toolbar Helper - {E15A8DC0-8516-42A1-81EA-DC94EC1ACF10} - C:\Program Files\Windows Live\Toolbar\wltcore.dll
O2 - BHO: Yontoo Layers - {FD72061E-9FDE-484D-A58A-0BAB4151CAD8} - C:\Program Files\Yontoo Layers Client for Internet Explorer\YontooIEClient.dll
O3 - Toolbar: myBabylon Toolbar - {34ea1c70-42cc-42c5-aa29-ec58b95a343e} - C:\Program Files\myBabylon\tbmyB0.dll
O3 - Toolbar: Traduction-online - {4F75DC45-5A92-4352-BEC4-4C32FB7DF2A8} - C:\Program Files\Traduction-online\install.dll (file missing)
O3 - Toolbar: &Windows Live Toolbar - {21FA44EF-376D-4D53-9B0F-8A89D3229068} - C:\Program Files\Windows Live\Toolbar\wltcore.dll
O3 - Toolbar: Skyrock Toolbar - {A057A204-BACC-4D26-969A-2AB983EE729B} - C:\PROGRA~1\SKYROC~1\SKYROC~1.DLL
O3 - Toolbar: BitDefender Toolbar - {381FFDE8-2394-4f90-B10D-FC6124A40F8C} - C:\Program Files\BitDefender\BitDefender 2009\IEToolbar.dll
O3 - Toolbar: Veoh Web Player Video Finder - {0FBB9689-D3D7-4f7a-A2E2-585B10099BFC} - C:\Program Files\Veoh Networks\VeohWebPlayer\VeohIEToolbar.dll
O3 - Toolbar: Veoh Video Compass - {52836EB0-631A-47B1-94A6-61F9D9112DAE} - C:\Program Files\Veoh Networks\Veoh Video Compass\SearchRecsPlugin.dll
O3 - Toolbar: Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar.dll
O4 - HKLM\..\Run: [SSBkgdUpdate] "C:\Program Files\Common Files\Scansoft Shared\SSBkgdUpdate\SSBkgdupdate.exe" -Embedding -boot
O4 - HKLM\..\Run: [OpwareSE4] "C:\Program Files\ScanSoft\OmniPageSE4\OpwareSE4.exe"
O4 - HKLM\..\Run: [vyka] C:\Windows\system32\dummoottoweb.exe
O4 - HKLM\..\Run: [Google Quick Search Box] "C:\Program Files\Google\Quick Search Box\qsb.exe" /autorun
O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Common Files\Real\Update_OB\realsched.exe" -osboot
O4 - HKLM\..\Run: [EoEngine] "C:\Program Files\EoRezo\EoEngine.exe"
O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe"
O4 - HKLM\..\Run: [BDAgent] "C:\Program Files\BitDefender\BitDefender 2009\bdagent.exe"
O4 - HKLM\..\Run: [BitDefender Antiphishing Helper] "C:\Program Files\BitDefender\BitDefender 2009\IEShow.exe"
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre6\bin\jusched.exe"
O4 - HKLM\..\Run: [snp2std] C:\Windows\vsnp2std.exe
O4 - HKLM\..\RunOnce: [SoftwareHelper] C:\Users\be\AppData\Roaming\eoRezo\SoftwareUpdate\SoftwareUpdateHP.exe -runonce
O4 - HKCU\..\Run: [Sidebar] "C:\Program Files\Windows Sidebar\sidebar.exe" /autoRun
O4 - HKCU\..\Run: [Nero PhotoShow Media Manager] C:\PROGRA~1\Nero\PHOTOS~1\data\Xtras\mssysmgr.exe
O4 - HKCU\..\Run: [Netlog 24] "C:\Program Files\Netlog 24\Notifier\Netlog24Notifier.exe"
O4 - HKCU\..\Run: [SpybotSD TeaTimer] C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe
O4 - HKCU\..\Run: [msnmsgr] "C:\Program Files\Windows Live\Messenger\msnmsgr.exe" /background
O4 - HKCU\..\Run: [VeohPlugin] "C:\Program Files\Veoh Networks\VeohWebPlayer\veohwebplayer.exe"
O4 - HKCU\..\Run: [WMPNSCFG] C:\Program Files\Windows Media Player\WMPNSCFG.exe
O4 - HKCU\..\Run: [ares] "C:\Program Files\Ares\Ares.exe" -h
O4 - HKCU\..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-19\..\Run: [WindowsWelcomeCenter] rundll32.exe oobefldr.dll,ShowWelcomeCenter (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'SERVICE RÉSEAU')
O4 - HKUS\S-1-5-18\..\Run: [msnmsgr] "C:\Program Files\Windows Live\Messenger\msnmsgr.exe" /background (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [msnmsgr] "C:\Program Files\Windows Live\Messenger\msnmsgr.exe" /background (User 'Default user')
O4 - Startup: Notification de cadeaux MSN.lnk = C:\Users\be\AppData\Roaming\Microsoft\Notification de cadeaux MSN\lsnfier.exe
O4 - Startup: OpenOffice.org 3.1.lnk = C:\Program Files\OpenOffice.org 3\program\quickstart.exe
O4 - Global Startup: Bluetooth Manager.lnk = ?
O8 - Extra context menu item: Add to Google Photos Screensa&ver - res://C:\Windows\system32\GPhotos.scr/200
O8 - Extra context menu item: Add to Windows &Live Favorites - https://onedrive.live.com/?id=favorites
O9 - Extra button: Ajout Direct - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra 'Tools' menuitem: &Ajout Direct dans Windows Live Writer - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra button: Traduction-online - {4F75DC45-5A92-4352-BEC4-4C32FB7DF2A8} - C:\Program Files\Traduction-online\install.dll (file missing)
O9 - Extra 'Tools' menuitem: Traduction-online - {4F75DC45-5A92-4352-BEC4-4C32FB7DF2A8} - C:\Program Files\Traduction-online\install.dll (file missing)
O9 - Extra button: (no name) - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O9 - Extra 'Tools' menuitem: Spybot - Search & Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O13 - Gopher Prefix:
O16 - DPF: CabBuilder - http://kiw.imgag.com/imgag/kiw/toolbar/download/InstallerControl.cab
O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) - http://update.microsoft.com/...
O16 - DPF: {BFF1950D-B1B4-4AE8-B842-B2CCF06D9A1B} (Zylom Games Player) - http://game11.zylom.com/activex/zylomgamesplayer.cab
O16 - DPF: {D0C0F75C-683A-4390-A791-1ACFD5599AB8} (Oberon Flash Game Host) - http://gamenextfr.oberon-media.com/Gameshell/GameHost/1.0/OberonGameHost.cab
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab
O16 - DPF: {D71F9A27-723E-4B8B-B428-B725E47CBA3E} (Imikimi_activex_plugin Control) - http://imikimi.com/download/imikimi_plugin_0.5.1.cab
O16 - DPF: {FE0BD779-44EE-4A4B-AA2E-743C63F2E5E6} (IWinAmpActiveX Class) - http://pdl.stream.aol.com/downloads/aol/unagi/ampx_en_dl.cab
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL
O18 - Filter: x-sdch - {B1759355-3EEC-4C1E-B0F1-B719FE26E377} - C:\Program Files\Google\Google Toolbar\Component\fastsearch_A8904FB862BD9564.dll
O23 - Service: Apple Mobile Device - Apple Inc. - C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
O23 - Service: BitDefender Arrakis Server (Arrakis3) - BitDefender S.R.L. https://www.bitdefender.fr/ - C:\Program Files\Common Files\BitDefender\BitDefender Arrakis Server\bin\Arrakis3.exe
O23 - Service: Service Bonjour (Bonjour Service) - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: Service Google Update (gupdate1c99b528c365244) (gupdate1c99b528c365244) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Google Software Updater (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: BitDefender Desktop Update Service (LIVESRV) - BitDefender SRL - C:\Program Files\Common Files\BitDefender\BitDefender Update Service\livesrv.exe
O23 - Service: NMSAccessU - Unknown owner - C:\Program Files\CDBurnerXP\NMSAccessU.exe
O23 - Service: SBSD Security Center Service (SBSDWSCService) - Safer Networking Ltd. - C:\Program Files\Spybot - Search & Destroy\SDWinSec.exe
O23 - Service: TOSHIBA Bluetooth Service - TOSHIBA CORPORATION - C:\Program Files\Toshiba\Bluetooth Toshiba Stack\TosBtSrv.exe
O23 - Service: BitDefender Virus Shield (VSSERV) - BitDefender S. R. L. - C:\Program Files\BitDefender\BitDefender 2009\vsserv.exe
mon pc est tres lent,je n'arrive meme plus a regarder des vidéos sur youtube,ou alors il faut que j'attende un quart d'heure pour qu'elles se téléchargent,suis infecté?j'ai fais un rapport hijackthis.Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 22:08:19, on 17/06/2009
Platform: Windows Vista SP2 (WinNT 6.00.1906)
MSIE: Internet Explorer v8.00 (8.00.6001.18702)
Boot mode: Normal
Running processes:
C:\Windows\system32\Dwm.exe
C:\Windows\Explorer.EXE
C:\Windows\system32\taskeng.exe
C:\Program Files\ScanSoft\OmniPageSE4\OpWareSE4.exe
C:\Program Files\Google\Quick Search Box\qsb.exe
C:\Program Files\Common Files\Real\Update_OB\realsched.exe
C:\Program Files\BitDefender\BitDefender 2009\bdagent.exe
C:\Program Files\Java\jre6\bin\jusched.exe
C:\Windows\vsnp2std.exe
C:\Program Files\Windows Sidebar\sidebar.exe
C:\Program Files\Netlog 24\Notifier\Netlog24Notifier.exe
C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe
C:\Program Files\Windows Live\Messenger\msnmsgr.exe
C:\Program Files\Veoh Networks\VeohWebPlayer\veohwebplayer.exe
C:\Program Files\Ares\Ares.exe
C:\Program Files\Toshiba\Bluetooth Toshiba Stack\TosBtMng.exe
C:\Users\be\AppData\Roaming\Microsoft\Notification de cadeaux MSN\lsnfier.exe
C:\Users\be\AppData\Roaming\eoRezo\SoftwareUpdate\SoftwareUpdateHP.exe
C:\Program Files\Windows Media Player\wmpnscfg.exe
C:\Windows\system32\wbem\unsecapp.exe
C:\Program Files\OpenOffice.org 3\program\soffice.exe
C:\Program Files\OpenOffice.org 3\program\soffice.bin
C:\Program Files\Toshiba\Bluetooth Toshiba Stack\TosA2dp.exe
C:\Windows\system32\conime.exe
C:\Program Files\Toshiba\Bluetooth Toshiba Stack\TosBtHid.exe
C:\Program Files\Toshiba\Bluetooth Toshiba Stack\TosBtHsp.exe
C:\Program Files\BitDefender\BitDefender 2009\seccenter.exe
C:\Program Files\Windows Live\Contacts\wlcomm.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Windows Live\Toolbar\wltuser.exe
C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
C:\Windows\system32\Macromed\Flash\FlashUtil10a.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Trend Micro\hijackthis.exe
C:\Windows\system32\SearchFilterHost.exe
C:\Windows\system32\SearchProtocolHost.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://search.shareware.pro/?lang=fr
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.google.be
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = https://www.msn.com/fr-fr/?ocid=iehp
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://search.shareware.pro/?lang=fr
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://search.shareware.pro/?lang=fr
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: XBTB00892 - {2CC514F5-5881-49c2-AD9E-6F7A89AB4F1B} - C:\PROGRA~1\TRADUC~1\install.dll (file missing)
O2 - BHO: RealPlayer Download and Record Plugin for Internet Explorer - {3049C3E9-B461-4BC5-8870-4C09146192CA} - C:\Program Files\Real\RealPlayer\rpbrowserrecordplugin.dll
O2 - BHO: myBabylon Toolbar - {34ea1c70-42cc-42c5-aa29-ec58b95a343e} - C:\Program Files\myBabylon\tbmyB0.dll
O2 - BHO: Spybot-S&D IE Protection - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O2 - BHO: EoRezoBHO - {64F56FC1-1272-44CD-BA6E-39723696E350} - C:\Program Files\EoRezo\EoAdv\EoRezoBHO.dll (file missing)
O2 - BHO: Search Helper - {6EBF7485-159F-4bff-A14F-B9E3AAC4465B} - C:\Program Files\Microsoft\Search Enhancement Pack\Search Helper\SEPsearchhelperie.dll
O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Skyrock Toolbar - {A057A204-BACC-4D26-969A-2AB983EE729B} - C:\PROGRA~1\SKYROC~1\SKYROC~1.DLL
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files\Google\Google Toolbar\GoogleToolbar.dll
O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\5.1.1309.3572\swg.dll
O2 - BHO: EoBHO - {C7B76B90-3455-4AE6-A752-EAC4D19689E5} - C:\Program Files\EoRezo\EoAdv\EoRezoBHO.dll (file missing)
O2 - BHO: Google Dictionary Compression sdch - {C84D72FE-E17D-4195-BB24-76C02E2E7C4E} - C:\Program Files\Google\Google Toolbar\Component\fastsearch_A8904FB862BD9564.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll
O2 - BHO: Windows Live Toolbar Helper - {E15A8DC0-8516-42A1-81EA-DC94EC1ACF10} - C:\Program Files\Windows Live\Toolbar\wltcore.dll
O2 - BHO: Yontoo Layers - {FD72061E-9FDE-484D-A58A-0BAB4151CAD8} - C:\Program Files\Yontoo Layers Client for Internet Explorer\YontooIEClient.dll
O3 - Toolbar: myBabylon Toolbar - {34ea1c70-42cc-42c5-aa29-ec58b95a343e} - C:\Program Files\myBabylon\tbmyB0.dll
O3 - Toolbar: Traduction-online - {4F75DC45-5A92-4352-BEC4-4C32FB7DF2A8} - C:\Program Files\Traduction-online\install.dll (file missing)
O3 - Toolbar: &Windows Live Toolbar - {21FA44EF-376D-4D53-9B0F-8A89D3229068} - C:\Program Files\Windows Live\Toolbar\wltcore.dll
O3 - Toolbar: Skyrock Toolbar - {A057A204-BACC-4D26-969A-2AB983EE729B} - C:\PROGRA~1\SKYROC~1\SKYROC~1.DLL
O3 - Toolbar: BitDefender Toolbar - {381FFDE8-2394-4f90-B10D-FC6124A40F8C} - C:\Program Files\BitDefender\BitDefender 2009\IEToolbar.dll
O3 - Toolbar: Veoh Web Player Video Finder - {0FBB9689-D3D7-4f7a-A2E2-585B10099BFC} - C:\Program Files\Veoh Networks\VeohWebPlayer\VeohIEToolbar.dll
O3 - Toolbar: Veoh Video Compass - {52836EB0-631A-47B1-94A6-61F9D9112DAE} - C:\Program Files\Veoh Networks\Veoh Video Compass\SearchRecsPlugin.dll
O3 - Toolbar: Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar.dll
O4 - HKLM\..\Run: [SSBkgdUpdate] "C:\Program Files\Common Files\Scansoft Shared\SSBkgdUpdate\SSBkgdupdate.exe" -Embedding -boot
O4 - HKLM\..\Run: [OpwareSE4] "C:\Program Files\ScanSoft\OmniPageSE4\OpwareSE4.exe"
O4 - HKLM\..\Run: [vyka] C:\Windows\system32\dummoottoweb.exe
O4 - HKLM\..\Run: [Google Quick Search Box] "C:\Program Files\Google\Quick Search Box\qsb.exe" /autorun
O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Common Files\Real\Update_OB\realsched.exe" -osboot
O4 - HKLM\..\Run: [EoEngine] "C:\Program Files\EoRezo\EoEngine.exe"
O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe"
O4 - HKLM\..\Run: [BDAgent] "C:\Program Files\BitDefender\BitDefender 2009\bdagent.exe"
O4 - HKLM\..\Run: [BitDefender Antiphishing Helper] "C:\Program Files\BitDefender\BitDefender 2009\IEShow.exe"
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre6\bin\jusched.exe"
O4 - HKLM\..\Run: [snp2std] C:\Windows\vsnp2std.exe
O4 - HKLM\..\RunOnce: [SoftwareHelper] C:\Users\be\AppData\Roaming\eoRezo\SoftwareUpdate\SoftwareUpdateHP.exe -runonce
O4 - HKCU\..\Run: [Sidebar] "C:\Program Files\Windows Sidebar\sidebar.exe" /autoRun
O4 - HKCU\..\Run: [Nero PhotoShow Media Manager] C:\PROGRA~1\Nero\PHOTOS~1\data\Xtras\mssysmgr.exe
O4 - HKCU\..\Run: [Netlog 24] "C:\Program Files\Netlog 24\Notifier\Netlog24Notifier.exe"
O4 - HKCU\..\Run: [SpybotSD TeaTimer] C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe
O4 - HKCU\..\Run: [msnmsgr] "C:\Program Files\Windows Live\Messenger\msnmsgr.exe" /background
O4 - HKCU\..\Run: [VeohPlugin] "C:\Program Files\Veoh Networks\VeohWebPlayer\veohwebplayer.exe"
O4 - HKCU\..\Run: [WMPNSCFG] C:\Program Files\Windows Media Player\WMPNSCFG.exe
O4 - HKCU\..\Run: [ares] "C:\Program Files\Ares\Ares.exe" -h
O4 - HKCU\..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-19\..\Run: [WindowsWelcomeCenter] rundll32.exe oobefldr.dll,ShowWelcomeCenter (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'SERVICE RÉSEAU')
O4 - HKUS\S-1-5-18\..\Run: [msnmsgr] "C:\Program Files\Windows Live\Messenger\msnmsgr.exe" /background (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [msnmsgr] "C:\Program Files\Windows Live\Messenger\msnmsgr.exe" /background (User 'Default user')
O4 - Startup: Notification de cadeaux MSN.lnk = C:\Users\be\AppData\Roaming\Microsoft\Notification de cadeaux MSN\lsnfier.exe
O4 - Startup: OpenOffice.org 3.1.lnk = C:\Program Files\OpenOffice.org 3\program\quickstart.exe
O4 - Global Startup: Bluetooth Manager.lnk = ?
O8 - Extra context menu item: Add to Google Photos Screensa&ver - res://C:\Windows\system32\GPhotos.scr/200
O8 - Extra context menu item: Add to Windows &Live Favorites - https://onedrive.live.com/?id=favorites
O9 - Extra button: Ajout Direct - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra 'Tools' menuitem: &Ajout Direct dans Windows Live Writer - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra button: Traduction-online - {4F75DC45-5A92-4352-BEC4-4C32FB7DF2A8} - C:\Program Files\Traduction-online\install.dll (file missing)
O9 - Extra 'Tools' menuitem: Traduction-online - {4F75DC45-5A92-4352-BEC4-4C32FB7DF2A8} - C:\Program Files\Traduction-online\install.dll (file missing)
O9 - Extra button: (no name) - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O9 - Extra 'Tools' menuitem: Spybot - Search & Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O13 - Gopher Prefix:
O16 - DPF: CabBuilder - http://kiw.imgag.com/imgag/kiw/toolbar/download/InstallerControl.cab
O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) - http://update.microsoft.com/...
O16 - DPF: {BFF1950D-B1B4-4AE8-B842-B2CCF06D9A1B} (Zylom Games Player) - http://game11.zylom.com/activex/zylomgamesplayer.cab
O16 - DPF: {D0C0F75C-683A-4390-A791-1ACFD5599AB8} (Oberon Flash Game Host) - http://gamenextfr.oberon-media.com/Gameshell/GameHost/1.0/OberonGameHost.cab
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab
O16 - DPF: {D71F9A27-723E-4B8B-B428-B725E47CBA3E} (Imikimi_activex_plugin Control) - http://imikimi.com/download/imikimi_plugin_0.5.1.cab
O16 - DPF: {FE0BD779-44EE-4A4B-AA2E-743C63F2E5E6} (IWinAmpActiveX Class) - http://pdl.stream.aol.com/downloads/aol/unagi/ampx_en_dl.cab
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL
O18 - Filter: x-sdch - {B1759355-3EEC-4C1E-B0F1-B719FE26E377} - C:\Program Files\Google\Google Toolbar\Component\fastsearch_A8904FB862BD9564.dll
O23 - Service: Apple Mobile Device - Apple Inc. - C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
O23 - Service: BitDefender Arrakis Server (Arrakis3) - BitDefender S.R.L. https://www.bitdefender.fr/ - C:\Program Files\Common Files\BitDefender\BitDefender Arrakis Server\bin\Arrakis3.exe
O23 - Service: Service Bonjour (Bonjour Service) - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: Service Google Update (gupdate1c99b528c365244) (gupdate1c99b528c365244) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Google Software Updater (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: BitDefender Desktop Update Service (LIVESRV) - BitDefender SRL - C:\Program Files\Common Files\BitDefender\BitDefender Update Service\livesrv.exe
O23 - Service: NMSAccessU - Unknown owner - C:\Program Files\CDBurnerXP\NMSAccessU.exe
O23 - Service: SBSD Security Center Service (SBSDWSCService) - Safer Networking Ltd. - C:\Program Files\Spybot - Search & Destroy\SDWinSec.exe
O23 - Service: TOSHIBA Bluetooth Service - TOSHIBA CORPORATION - C:\Program Files\Toshiba\Bluetooth Toshiba Stack\TosBtSrv.exe
O23 - Service: BitDefender Virus Shield (VSSERV) - BitDefender S. R. L. - C:\Program Files\BitDefender\BitDefender 2009\vsserv.exe
A voir également:
- Pc ralentit,suis je infecté,merci de m'aider?
- Pc ralenti - Guide
- Reinitialiser pc - Guide
- Downloader for pc - Télécharger - Téléchargement & Transfert
- Double ecran pc - Guide
- Forcer demarrage pc - Guide
24 réponses
Bonjour,
Fais ceci stp.
I)Desactiver l'UAC:
1)Cliquer sur le menu démarrer puis sur Panneau de configuration >> Comptes d'utilisateurs >>comptes d'utilisateurs (une 2ème fois),.
2)clique sur Activer ou désactiver le contrôle des comptes d'utilisateurs:
3)Une nouvelle fenêtre s'ouvre,Décoche la case Utiliser le contrôle des comptes d'utilisateurs pour vous aider à protéger votre ordinateur puis OK:
4)Une demande s'affiche si vous voulez redémarrer votre ordinateur, clique sur redémarrer maintenant.
https://forums.cnetfrance.fr
I)I)Télécharge AD-remover sur ton pc:
http://sd-1.archive-host.com/membres/up/16506160323759868/AD-R.exe
Double cliquer sur le raccourci qui à été crée « AD-R ».
Installer le logiciel normallement.
Double cliquer sur l’icône « Ad-remover »,un message d’avertissement apparaitra cliquer sur « ok ».
Choisit l’option A puis valide par la touche entrée (taper a).
Patienter un petit moment (5 minutes environ).
La recheche terminée, un message sera affichée « terminé !... appuyer sur une touche pour continuer.. »,appuis sur une touche pour afficher le rapport.
Un rapport va s’ouvrir, fait moi un copier-coller de celui-ci dans ta réponse (le rapport se trouve dans C:\ Ad-Report-Scan-XX.XX.XX)
Fais ceci stp.
I)Desactiver l'UAC:
1)Cliquer sur le menu démarrer puis sur Panneau de configuration >> Comptes d'utilisateurs >>comptes d'utilisateurs (une 2ème fois),.
2)clique sur Activer ou désactiver le contrôle des comptes d'utilisateurs:
3)Une nouvelle fenêtre s'ouvre,Décoche la case Utiliser le contrôle des comptes d'utilisateurs pour vous aider à protéger votre ordinateur puis OK:
4)Une demande s'affiche si vous voulez redémarrer votre ordinateur, clique sur redémarrer maintenant.
https://forums.cnetfrance.fr
I)I)Télécharge AD-remover sur ton pc:
http://sd-1.archive-host.com/membres/up/16506160323759868/AD-R.exe
Double cliquer sur le raccourci qui à été crée « AD-R ».
Installer le logiciel normallement.
Double cliquer sur l’icône « Ad-remover »,un message d’avertissement apparaitra cliquer sur « ok ».
Choisit l’option A puis valide par la touche entrée (taper a).
Patienter un petit moment (5 minutes environ).
La recheche terminée, un message sera affichée « terminé !... appuyer sur une touche pour continuer.. »,appuis sur une touche pour afficher le rapport.
Un rapport va s’ouvrir, fait moi un copier-coller de celui-ci dans ta réponse (le rapport se trouve dans C:\ Ad-Report-Scan-XX.XX.XX)
lut,
Si sa prend plus de 30 min laisse tomber...
I)Télécharger sur ton bureau Malwarebyte's Anti-Malware :
telecharge malware's bytes Anti-Malware a cette adresse:
http://www.malwarebytes.org/mbam/program/mbam-setup.exe
1)Double-cliquer sur « mbam-setup »,l'installation se lance (installer sans rien changer).
2)Lancer le programme,va dans l'onglet « mise à jour » puis cliquer sur « recherche de mise à jour ».
3)Va dans l'onglet « recherche » puis cocher « Exécuter un exament complet » >>cliquer « rechercher » puis lancer l'examen.
4)A la fin du scan ,si il y a des infections cliquer sur « afficher résultat ».
5)fermer toutes les autres applications.
6)Vérifier si tout est coché et clic « Supprimer la sélection ».
7)Un rapport s'ouvre copier-coller dans ta prochaine réponse
Puis refait moi un log hijackthis stp.
Si sa prend plus de 30 min laisse tomber...
I)Télécharger sur ton bureau Malwarebyte's Anti-Malware :
telecharge malware's bytes Anti-Malware a cette adresse:
http://www.malwarebytes.org/mbam/program/mbam-setup.exe
1)Double-cliquer sur « mbam-setup »,l'installation se lance (installer sans rien changer).
2)Lancer le programme,va dans l'onglet « mise à jour » puis cliquer sur « recherche de mise à jour ».
3)Va dans l'onglet « recherche » puis cocher « Exécuter un exament complet » >>cliquer « rechercher » puis lancer l'examen.
4)A la fin du scan ,si il y a des infections cliquer sur « afficher résultat ».
5)fermer toutes les autres applications.
6)Vérifier si tout est coché et clic « Supprimer la sélection ».
7)Un rapport s'ouvre copier-coller dans ta prochaine réponse
Puis refait moi un log hijackthis stp.
voilà le rapport de ADremover.
======= RAPPORT D'AD-REMOVER 1.1.4.5_J | UNIQUEMENT XP/VISTA/SEVEN =======
.
Mit à jour par C_XX le 14/06/2009 à 10:30 PM
Contact: AdRemover.contact@gmail.com
Site web: http://pagesperso-orange.fr/NosTools/ad_remover.html
.
Lancé à: 14:30:48, jeu. 18/06/2009 | Mode Normal | Option: SCAN
Exécuté de: C:\Program Files\Ad-remover\
Système d'exploitation: Microsoft® Windows Vista™ Home Basic Service Pack 2 v6.0.6002
Nom du PC: PC-DE-BE | Utilisateur actuel: be
.
Administrateur: Administrateur *Desactive*
Administrateur: be
N'est pas administrateur: Invité *Desactive*
.
============== ÉLÉMENT(S) TROUVÉ(S) ==============
.
.
HKCR\AppID\{362A53B2-2913-4F8A-82F5-7E0A23FDC6F9}
HKCR\AppID\EoRezoBHO.DLL
HKCR\CLSID\{64F56FC1-1272-44CD-BA6E-39723696E350}
HKCR\CLSID\{9afb8248-617f-460d-9366-d71cdeda3179}
HKCR\CLSID\{C7B76B90-3455-4AE6-A752-EAC4D19689E5}
HKCR\EoRezoBHO.EoBho
HKCR\EoRezoBHO.EoBho.1
HKCR\Interface\{B0D071A1-36B3-4757-A126-14C89C56013A}
HKCR\Typelib\{B4C656C9-F2E9-4E77-B3F4-443DF2BD778F}
HKCR\Typelib\{B6ACB3F1-6A83-432C-B854-3E1056F87F4E}
HKCU\Software\AppDataLow\Software\MyWebSearch
HKCU\Software\EoRezo
HKCU\Software\ItsLabel
HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{EEE6C360-6118-11DC-9C72-001320C79847}
HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{64F56FC1-1272-44CD-BA6E-39723696E350}
HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{EEE6C35B-6118-11DC-9C72-001320C79847}
HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{EEE6C35C-6118-11DC-9C72-001320C79847}
HKCU\Software\SweetIM
HKLM\Software\Classes\AppID\{362A53B2-2913-4F8A-82F5-7E0A23FDC6F9}
HKLM\Software\Classes\AppID\EoRezoBHO.DLL
HKLM\Software\Classes\CLSID\{64F56FC1-1272-44CD-BA6E-39723696E350}
HKLM\Software\Classes\CLSID\{C7B76B90-3455-4AE6-A752-EAC4D19689E5}
HKLM\Software\Classes\EoRezoBHO.EoBho
HKLM\Software\Classes\EoRezoBHO.EoBho.1
HKLM\Software\Classes\Interface\{B0D071A1-36B3-4757-A126-14C89C56013A}
HKLM\Software\Classes\Typelib\{B4C656C9-F2E9-4E77-B3F4-443DF2BD778F}
HKLM\Software\Classes\Typelib\{B6ACB3F1-6A83-432C-B854-3E1056F87F4E}
HKLM\Software\EoRezo
HKLM\Software\ItsLabel
HKLM\Software\Microsoft\Internet Explorer\SearchScopes\{EEE6C360-6118-11DC-9C72-001320C79847}
HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{64F56FC1-1272-44CD-BA6E-39723696E350}
HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{C7B76B90-3455-4AE6-A752-EAC4D19689E5}
HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\SoftwareUpdate_is1
HKLM\Software\SweetIM
HKU\S-1-5-21-282180640-1124877635-153106866-1000\Software\Appdatalow\Software\Fun Web Products
HKU\S-1-5-21-282180640-1124877635-153106866-1000\Software\Appdatalow\Software\MyWebSearch
HKU\S-1-5-21-282180640-1124877635-153106866-1000\Software\Eorezo
HKU\S-1-5-21-282180640-1124877635-153106866-1000\Software\ItsLabel
HKCU\Software\Microsoft\Internet Explorer\InternetRegistry\Registry\User\S-1-5-21-282180640-1124877635-153106866-1000\Software\Sweetim
HKLM\Software\Microsoft\Windows\CurrentVersion\Run\\Eoengine
HKLM\Software\Microsoft\Windows\CurrentVersion\RunOnce\\Softwarehelper
HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\\{EEE6C35B-6118-11DC-9C72-001320C79847}
HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\Userdata\S-1-5-18\Components\980289C22F80A7C4BB9323DC61255E4E
HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\Userdata\S-1-5-18\Components\FA96423FE2B98E248A3B23548D1E22D9
.
C:\PROGRA~2\SweetIM
C:\ProgramData\SweetIM
C:\Users\be\AppData\Roaming\EoRezo
C:\Users\be\AppData\Roaming\ItsLabel
C:\Users\be\AppData\LocalLow\SweetIM
C:\Program Files\ItsLabel
C:\Users\be\AppData\Roaming\MICROS~1\Windows\Cookies\be@eorezo[1].txt
C:\Users\be\AppData\Roaming\MICROS~1\Windows\Cookies\be@eorezo[2].txt
C:\Users\be\AppData\Roaming\MICROS~1\Windows\Cookies\be@partypoker[1].txt
.
============== Scan additionnel ==============
.
* Mozilla FireFox Version 3.5b4 *
Nom du profil: 8jrao6t5.default (be)
.
(Prefs.js) user_pref("browser.search.defaultenginename", "Google");
(Prefs.js) user_pref("browser.search.selectedEngine", "GoogIe");
(Prefs.js) user_pref("browser.search.defaulturl", "hxxp://www.google.com/search?lr=&ie=UTF-8&oe=UTF-8&q=");
(Prefs.js) user_pref("browser.startup.homepage", "hxxp://fr.msn.com/");
(Prefs.js) user_pref("browser.startup.homepage_override.mstone", "rv:1.9.1b4");
(User.js) user_pref("browser.search.selectedEngine", "GoogIe");
.
.
* Internet Explorer Version 8.0.6001.18783 *
[HKEY_CURRENT_USER\..\Internet Explorer\Main]
Search Page: hxxp://search.shareware.pro/?lang=fr
Start Page: hxxp://google.be/
[HKEY_LOCAL_MACHINE\..\Internet Explorer\Main]
Default_Page_URL: hxxp://go.microsoft.com/fwlink/?LinkId=69157
Default_Search_URL: hxxp://go.microsoft.com/fwlink/?LinkId=54896
Search Page: hxxp://search.shareware.pro/?lang=fr
Start Page: hxxp://search.shareware.pro/?lang=fr
[HKEY_LOCAL_MACHINE\..\Internet Explorer\ABOUTURLS]
Tabs: hxxp://y.lo.st
============== Suspect (Cracks, Serials ... ) ==============
.
+---------------------------------------------------------------------------+
5308 Octet(s) - C:\Ad-Report-SCAN.log
0 Fichier(s) - C:\Program Files\Ad-remover\BACKUP
0 Fichier(s) - C:\Program Files\Ad-remover\QUARANTINE
Fin à: 15:05:19 | jeu. 18/06/2009
.
============== E.O.F ==============
.
j'ai lancer le scan avec malware,je le poste dé qu'il a finit
======= RAPPORT D'AD-REMOVER 1.1.4.5_J | UNIQUEMENT XP/VISTA/SEVEN =======
.
Mit à jour par C_XX le 14/06/2009 à 10:30 PM
Contact: AdRemover.contact@gmail.com
Site web: http://pagesperso-orange.fr/NosTools/ad_remover.html
.
Lancé à: 14:30:48, jeu. 18/06/2009 | Mode Normal | Option: SCAN
Exécuté de: C:\Program Files\Ad-remover\
Système d'exploitation: Microsoft® Windows Vista™ Home Basic Service Pack 2 v6.0.6002
Nom du PC: PC-DE-BE | Utilisateur actuel: be
.
Administrateur: Administrateur *Desactive*
Administrateur: be
N'est pas administrateur: Invité *Desactive*
.
============== ÉLÉMENT(S) TROUVÉ(S) ==============
.
.
HKCR\AppID\{362A53B2-2913-4F8A-82F5-7E0A23FDC6F9}
HKCR\AppID\EoRezoBHO.DLL
HKCR\CLSID\{64F56FC1-1272-44CD-BA6E-39723696E350}
HKCR\CLSID\{9afb8248-617f-460d-9366-d71cdeda3179}
HKCR\CLSID\{C7B76B90-3455-4AE6-A752-EAC4D19689E5}
HKCR\EoRezoBHO.EoBho
HKCR\EoRezoBHO.EoBho.1
HKCR\Interface\{B0D071A1-36B3-4757-A126-14C89C56013A}
HKCR\Typelib\{B4C656C9-F2E9-4E77-B3F4-443DF2BD778F}
HKCR\Typelib\{B6ACB3F1-6A83-432C-B854-3E1056F87F4E}
HKCU\Software\AppDataLow\Software\MyWebSearch
HKCU\Software\EoRezo
HKCU\Software\ItsLabel
HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{EEE6C360-6118-11DC-9C72-001320C79847}
HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{64F56FC1-1272-44CD-BA6E-39723696E350}
HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{EEE6C35B-6118-11DC-9C72-001320C79847}
HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{EEE6C35C-6118-11DC-9C72-001320C79847}
HKCU\Software\SweetIM
HKLM\Software\Classes\AppID\{362A53B2-2913-4F8A-82F5-7E0A23FDC6F9}
HKLM\Software\Classes\AppID\EoRezoBHO.DLL
HKLM\Software\Classes\CLSID\{64F56FC1-1272-44CD-BA6E-39723696E350}
HKLM\Software\Classes\CLSID\{C7B76B90-3455-4AE6-A752-EAC4D19689E5}
HKLM\Software\Classes\EoRezoBHO.EoBho
HKLM\Software\Classes\EoRezoBHO.EoBho.1
HKLM\Software\Classes\Interface\{B0D071A1-36B3-4757-A126-14C89C56013A}
HKLM\Software\Classes\Typelib\{B4C656C9-F2E9-4E77-B3F4-443DF2BD778F}
HKLM\Software\Classes\Typelib\{B6ACB3F1-6A83-432C-B854-3E1056F87F4E}
HKLM\Software\EoRezo
HKLM\Software\ItsLabel
HKLM\Software\Microsoft\Internet Explorer\SearchScopes\{EEE6C360-6118-11DC-9C72-001320C79847}
HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{64F56FC1-1272-44CD-BA6E-39723696E350}
HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{C7B76B90-3455-4AE6-A752-EAC4D19689E5}
HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\SoftwareUpdate_is1
HKLM\Software\SweetIM
HKU\S-1-5-21-282180640-1124877635-153106866-1000\Software\Appdatalow\Software\Fun Web Products
HKU\S-1-5-21-282180640-1124877635-153106866-1000\Software\Appdatalow\Software\MyWebSearch
HKU\S-1-5-21-282180640-1124877635-153106866-1000\Software\Eorezo
HKU\S-1-5-21-282180640-1124877635-153106866-1000\Software\ItsLabel
HKCU\Software\Microsoft\Internet Explorer\InternetRegistry\Registry\User\S-1-5-21-282180640-1124877635-153106866-1000\Software\Sweetim
HKLM\Software\Microsoft\Windows\CurrentVersion\Run\\Eoengine
HKLM\Software\Microsoft\Windows\CurrentVersion\RunOnce\\Softwarehelper
HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\\{EEE6C35B-6118-11DC-9C72-001320C79847}
HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\Userdata\S-1-5-18\Components\980289C22F80A7C4BB9323DC61255E4E
HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\Userdata\S-1-5-18\Components\FA96423FE2B98E248A3B23548D1E22D9
.
C:\PROGRA~2\SweetIM
C:\ProgramData\SweetIM
C:\Users\be\AppData\Roaming\EoRezo
C:\Users\be\AppData\Roaming\ItsLabel
C:\Users\be\AppData\LocalLow\SweetIM
C:\Program Files\ItsLabel
C:\Users\be\AppData\Roaming\MICROS~1\Windows\Cookies\be@eorezo[1].txt
C:\Users\be\AppData\Roaming\MICROS~1\Windows\Cookies\be@eorezo[2].txt
C:\Users\be\AppData\Roaming\MICROS~1\Windows\Cookies\be@partypoker[1].txt
.
============== Scan additionnel ==============
.
* Mozilla FireFox Version 3.5b4 *
Nom du profil: 8jrao6t5.default (be)
.
(Prefs.js) user_pref("browser.search.defaultenginename", "Google");
(Prefs.js) user_pref("browser.search.selectedEngine", "GoogIe");
(Prefs.js) user_pref("browser.search.defaulturl", "hxxp://www.google.com/search?lr=&ie=UTF-8&oe=UTF-8&q=");
(Prefs.js) user_pref("browser.startup.homepage", "hxxp://fr.msn.com/");
(Prefs.js) user_pref("browser.startup.homepage_override.mstone", "rv:1.9.1b4");
(User.js) user_pref("browser.search.selectedEngine", "GoogIe");
.
.
* Internet Explorer Version 8.0.6001.18783 *
[HKEY_CURRENT_USER\..\Internet Explorer\Main]
Search Page: hxxp://search.shareware.pro/?lang=fr
Start Page: hxxp://google.be/
[HKEY_LOCAL_MACHINE\..\Internet Explorer\Main]
Default_Page_URL: hxxp://go.microsoft.com/fwlink/?LinkId=69157
Default_Search_URL: hxxp://go.microsoft.com/fwlink/?LinkId=54896
Search Page: hxxp://search.shareware.pro/?lang=fr
Start Page: hxxp://search.shareware.pro/?lang=fr
[HKEY_LOCAL_MACHINE\..\Internet Explorer\ABOUTURLS]
Tabs: hxxp://y.lo.st
============== Suspect (Cracks, Serials ... ) ==============
.
+---------------------------------------------------------------------------+
5308 Octet(s) - C:\Ad-Report-SCAN.log
0 Fichier(s) - C:\Program Files\Ad-remover\BACKUP
0 Fichier(s) - C:\Program Files\Ad-remover\QUARANTINE
Fin à: 15:05:19 | jeu. 18/06/2009
.
============== E.O.F ==============
.
j'ai lancer le scan avec malware,je le poste dé qu'il a finit
Vous n’avez pas trouvé la réponse que vous recherchez ?
Posez votre question
Relance Ad-remover,
• Au menu principal choisis l'option "L" et tape sur [entrée] .
• Laisse travailler l'outil et ne touche à rien ...
--> Poste le rapport qui apparait à la fin , sur le forum ...
( Le rapport est sauvegardé sous C:\Ad-report-clean.log )
( CTRL+A Pour tout sélectionner , CTRL+C pour copier et CTRL+V pour coller )
Note : "Process.exe", une composante de l'outil, est détecté par certains antivirus (AntiVir, Dr.Web, Kaspersky Anti-Virus) comme étant un RiskTool.
Il ne s'agit pas d'un virus, mais d'un utilitaire destiné à mettre fin à des processus.
Mis entre de mauvaises mains, cet utilitaire pourrait arrêter des logiciels de sécurité (Antivirus, Firewall...) d'où l'alerte émise par ces antivirus.
Aides en images (Nettoyage) : http://pagesperso-orange.fr/NosTools/tuto_ad_r3.html
• Au menu principal choisis l'option "L" et tape sur [entrée] .
• Laisse travailler l'outil et ne touche à rien ...
--> Poste le rapport qui apparait à la fin , sur le forum ...
( Le rapport est sauvegardé sous C:\Ad-report-clean.log )
( CTRL+A Pour tout sélectionner , CTRL+C pour copier et CTRL+V pour coller )
Note : "Process.exe", une composante de l'outil, est détecté par certains antivirus (AntiVir, Dr.Web, Kaspersky Anti-Virus) comme étant un RiskTool.
Il ne s'agit pas d'un virus, mais d'un utilitaire destiné à mettre fin à des processus.
Mis entre de mauvaises mains, cet utilitaire pourrait arrêter des logiciels de sécurité (Antivirus, Firewall...) d'où l'alerte émise par ces antivirus.
Aides en images (Nettoyage) : http://pagesperso-orange.fr/NosTools/tuto_ad_r3.html
voilà le rapport de malware,maintenant je vais faire ce que tu m'as dit plus haut avec ADremover Malwarebytes' Anti-Malware 1.37
Version de la base de données: 2296
Windows 6.0.6002 Service Pack 2
18/06/2009 17:54:57
mbam-log-2009-06-18 (17-54-57).txt
Type de recherche: Examen complet (A:\|C:\|D:\|E:\|)
Eléments examinés: 185484
Temps écoulé: 2 hour(s), 45 minute(s), 18 second(s)
Processus mémoire infecté(s): 1
Module(s) mémoire infecté(s): 0
Clé(s) du Registre infectée(s): 1
Valeur(s) du Registre infectée(s): 1
Elément(s) de données du Registre infecté(s): 0
Dossier(s) infecté(s): 0
Fichier(s) infecté(s): 2
Processus mémoire infecté(s):
C:\Users\be\AppData\Roaming\EoRezo\SoftwareUpdate\SoftwareUpdateHP.exe (Adware.EoRezo) -> Unloaded process successfully.
Module(s) mémoire infecté(s):
(Aucun élément nuisible détecté)
Clé(s) du Registre infectée(s):
HKEY_LOCAL_MACHINE\SOFTWARE\EoRezo (Rogue.Eorezo) -> Quarantined and deleted successfully.
Valeur(s) du Registre infectée(s):
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce\softwarehelper (Adware.EoRezo) -> Quarantined and deleted successfully.
Elément(s) de données du Registre infecté(s):
(Aucun élément nuisible détecté)
Dossier(s) infecté(s):
(Aucun élément nuisible détecté)
Fichier(s) infecté(s):
C:\Users\be\AppData\Roaming\EoRezo\SoftwareUpdate\SoftwareUpdateHP.exe (Adware.EoRezo) -> Quarantined and deleted successfully.
c:\Users\be\AppData\Roaming\EoRezo\softwareupdate\SoftwareUpdate.exe (Adware.EoRezo) -> Quarantined and deleted successfully.
Version de la base de données: 2296
Windows 6.0.6002 Service Pack 2
18/06/2009 17:54:57
mbam-log-2009-06-18 (17-54-57).txt
Type de recherche: Examen complet (A:\|C:\|D:\|E:\|)
Eléments examinés: 185484
Temps écoulé: 2 hour(s), 45 minute(s), 18 second(s)
Processus mémoire infecté(s): 1
Module(s) mémoire infecté(s): 0
Clé(s) du Registre infectée(s): 1
Valeur(s) du Registre infectée(s): 1
Elément(s) de données du Registre infecté(s): 0
Dossier(s) infecté(s): 0
Fichier(s) infecté(s): 2
Processus mémoire infecté(s):
C:\Users\be\AppData\Roaming\EoRezo\SoftwareUpdate\SoftwareUpdateHP.exe (Adware.EoRezo) -> Unloaded process successfully.
Module(s) mémoire infecté(s):
(Aucun élément nuisible détecté)
Clé(s) du Registre infectée(s):
HKEY_LOCAL_MACHINE\SOFTWARE\EoRezo (Rogue.Eorezo) -> Quarantined and deleted successfully.
Valeur(s) du Registre infectée(s):
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce\softwarehelper (Adware.EoRezo) -> Quarantined and deleted successfully.
Elément(s) de données du Registre infecté(s):
(Aucun élément nuisible détecté)
Dossier(s) infecté(s):
(Aucun élément nuisible détecté)
Fichier(s) infecté(s):
C:\Users\be\AppData\Roaming\EoRezo\SoftwareUpdate\SoftwareUpdateHP.exe (Adware.EoRezo) -> Quarantined and deleted successfully.
c:\Users\be\AppData\Roaming\EoRezo\softwareupdate\SoftwareUpdate.exe (Adware.EoRezo) -> Quarantined and deleted successfully.
.
======= RAPPORT D'AD-REMOVER 1.1.4.5_J | UNIQUEMENT XP/VISTA/SEVEN =======
.
Mit à jour par C_XX le 14/06/2009 à 10:30 PM
Contact: AdRemover.contact@gmail.com
Site web: http://pagesperso-orange.fr/NosTools/ad_remover.html
.
Lancé à: 18:52:44, jeu. 18/06/2009 | Mode Normal | Option: CLEAN
Exécuté de: C:\Program Files\Ad-remover\
Système d'exploitation: Microsoft® Windows Vista™ Home Basic Service Pack 2 v6.0.6002
Nom du PC: PC-DE-BE | Utilisateur actuel: be
.
Administrateur: Administrateur *Desactive*
Administrateur: be
N'est pas administrateur: Invité *Desactive*
.
============== ÉLÉMENT(S) NEUTRALISÉ(S) ==============
.
.
.
(!) -- Fichiers temporaires supprimés.
.
============== Scan additionnel ==============
.
* Mozilla FireFox Version 3.5b4 *
Nom du profil: 8jrao6t5.default (be)
.
(Prefs.js) user_pref("browser.search.defaultenginename", "Google");
(Prefs.js) user_pref("browser.search.selectedEngine", "GoogIe");
(Prefs.js) user_pref("browser.search.defaulturl", "hxxp://www.google.com/search?lr=&ie=UTF-8&oe=UTF-8&q=");
(Prefs.js) user_pref("browser.startup.homepage", "hxxp://fr.msn.com/");
(Prefs.js) user_pref("browser.startup.homepage_override.mstone", "rv:1.9.1b4");
(User.js) user_pref("browser.search.selectedEngine", "GoogIe");
.
.
* Internet Explorer Version 8.0.6001.18783 *
[HKEY_CURRENT_USER\..\Internet Explorer\Main]
Default_Page_URL: hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&pver=6&ar=msnhome
Default_Search_URL: hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
Search bar: hxxp://go.microsoft.com/fwlink/?linkid=54896
Search Page: hxxp://search.shareware.pro/?lang=fr
Start Page: hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&pver=6&ar=msnhome
[HKEY_LOCAL_MACHINE\..\Internet Explorer\Main]
Default_Page_URL: hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&pver=6&ar=msnhome
Default_Search_URL: hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
Search bar: hxxp://search.msn.com/spbasic.htm
Search Page: hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
Start Page: hxxp://fr.msn.com/
[HKEY_LOCAL_MACHINE\..\Internet Explorer\ABOUTURLS]
Tabs: res://ieframe.dll/tabswelcome.htm
============== Suspect (Cracks, Serials ... ) ==============
.
+---------------------------------------------------------------------------+
2392 Octet(s) - C:\Ad-Report-CLEAN.log
5535 Octet(s) - C:\Ad-Report-SCAN.log
19 Fichier(s) - C:\Program Files\Ad-remover\BACKUP
19 Fichier(s) - C:\Program Files\Ad-remover\QUARANTINE
Fin à: 19:28:27 | jeu. 18/06/2009
.
============== E.O.F ==============
.
voilà le dernier rapport
======= RAPPORT D'AD-REMOVER 1.1.4.5_J | UNIQUEMENT XP/VISTA/SEVEN =======
.
Mit à jour par C_XX le 14/06/2009 à 10:30 PM
Contact: AdRemover.contact@gmail.com
Site web: http://pagesperso-orange.fr/NosTools/ad_remover.html
.
Lancé à: 18:52:44, jeu. 18/06/2009 | Mode Normal | Option: CLEAN
Exécuté de: C:\Program Files\Ad-remover\
Système d'exploitation: Microsoft® Windows Vista™ Home Basic Service Pack 2 v6.0.6002
Nom du PC: PC-DE-BE | Utilisateur actuel: be
.
Administrateur: Administrateur *Desactive*
Administrateur: be
N'est pas administrateur: Invité *Desactive*
.
============== ÉLÉMENT(S) NEUTRALISÉ(S) ==============
.
.
.
(!) -- Fichiers temporaires supprimés.
.
============== Scan additionnel ==============
.
* Mozilla FireFox Version 3.5b4 *
Nom du profil: 8jrao6t5.default (be)
.
(Prefs.js) user_pref("browser.search.defaultenginename", "Google");
(Prefs.js) user_pref("browser.search.selectedEngine", "GoogIe");
(Prefs.js) user_pref("browser.search.defaulturl", "hxxp://www.google.com/search?lr=&ie=UTF-8&oe=UTF-8&q=");
(Prefs.js) user_pref("browser.startup.homepage", "hxxp://fr.msn.com/");
(Prefs.js) user_pref("browser.startup.homepage_override.mstone", "rv:1.9.1b4");
(User.js) user_pref("browser.search.selectedEngine", "GoogIe");
.
.
* Internet Explorer Version 8.0.6001.18783 *
[HKEY_CURRENT_USER\..\Internet Explorer\Main]
Default_Page_URL: hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&pver=6&ar=msnhome
Default_Search_URL: hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
Search bar: hxxp://go.microsoft.com/fwlink/?linkid=54896
Search Page: hxxp://search.shareware.pro/?lang=fr
Start Page: hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&pver=6&ar=msnhome
[HKEY_LOCAL_MACHINE\..\Internet Explorer\Main]
Default_Page_URL: hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&pver=6&ar=msnhome
Default_Search_URL: hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
Search bar: hxxp://search.msn.com/spbasic.htm
Search Page: hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
Start Page: hxxp://fr.msn.com/
[HKEY_LOCAL_MACHINE\..\Internet Explorer\ABOUTURLS]
Tabs: res://ieframe.dll/tabswelcome.htm
============== Suspect (Cracks, Serials ... ) ==============
.
+---------------------------------------------------------------------------+
2392 Octet(s) - C:\Ad-Report-CLEAN.log
5535 Octet(s) - C:\Ad-Report-SCAN.log
19 Fichier(s) - C:\Program Files\Ad-remover\BACKUP
19 Fichier(s) - C:\Program Files\Ad-remover\QUARANTINE
Fin à: 19:28:27 | jeu. 18/06/2009
.
============== E.O.F ==============
.
voilà le dernier rapport
Fais ceci stp.
I)Telecharger random's system information tool: (RSIT)
Téléchargement de RSIT ici
1)Double cliquer sur l’icône RSIT.exe .
2)Cliquer sur "continue".
3)L’analyse terminée, deux fichiers s’ouvriront, poste moi les 2 rapports stp.
4)Si les 2 fichiers ne s’ouvrent pas, va dans C:\rsit , tu y trouvera les 2 fichiers info.txt et log.txt.
I)Telecharger random's system information tool: (RSIT)
Téléchargement de RSIT ici
1)Double cliquer sur l’icône RSIT.exe .
2)Cliquer sur "continue".
3)L’analyse terminée, deux fichiers s’ouvriront, poste moi les 2 rapports stp.
4)Si les 2 fichiers ne s’ouvrent pas, va dans C:\rsit , tu y trouvera les 2 fichiers info.txt et log.txt.
voilà qui est fait,et encore merci de m'aider,je suis tres infecté?Logfile of random's system information tool 1.06 (written by random/random)
Run by be at 2009-06-18 21:23:45
Microsoft® Windows Vista™ Édition Familiale Basique Service Pack 2
System drive C: has 14 GB (29%) free of 50 GB
Total RAM: 958 MB (34% free)
Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 21:24:25, on 18/06/2009
Platform: Windows Vista SP2 (WinNT 6.00.1906)
MSIE: Internet Explorer v8.00 (8.00.6001.18702)
Boot mode: Normal
Running processes:
C:\Windows\system32\Dwm.exe
C:\Program Files\ScanSoft\OmniPageSE4\OpWareSE4.exe
C:\Program Files\BitDefender\BitDefender 2009\bdagent.exe
C:\Program Files\Java\jre6\bin\jusched.exe
C:\Windows\vsnp2std.exe
C:\Program Files\Common Files\Real\Update_OB\realsched.exe
C:\Program Files\Netlog 24\Notifier\Netlog24Notifier.exe
C:\Program Files\Veoh Networks\VeohWebPlayer\veohwebplayer.exe
C:\Program Files\Windows Media Player\wmpnscfg.exe
C:\Program Files\Ares\Ares.exe
C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
C:\Program Files\Toshiba\Bluetooth Toshiba Stack\TosBtMng.exe
C:\Program Files\OpenOffice.org 3\program\soffice.exe
C:\Windows\system32\taskeng.exe
C:\Program Files\OpenOffice.org 3\program\soffice.bin
C:\Program Files\Toshiba\Bluetooth Toshiba Stack\TosA2dp.exe
C:\Program Files\Toshiba\Bluetooth Toshiba Stack\TosBtHid.exe
C:\Program Files\BitDefender\BitDefender 2009\seccenter.exe
C:\Program Files\Toshiba\Bluetooth Toshiba Stack\TosBtHsp.exe
C:\Windows\explorer.exe
C:\Windows\system32\wbem\unsecapp.exe
C:\Windows\system32\notepad.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Windows Live\Toolbar\wltuser.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Users\be\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\EQJLFQJC\RSIT[1].exe
C:\Program Files\Trend Micro\be.exe
C:\Windows\system32\SearchFilterHost.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://search.shareware.pro/?lang=fr
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.google.be/?gws_rd=ssl
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.msn.com/fr-fr
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: XBTB00892 - {2CC514F5-5881-49c2-AD9E-6F7A89AB4F1B} - C:\PROGRA~1\TRADUC~1\install.dll (file missing)
O2 - BHO: RealPlayer Download and Record Plugin for Internet Explorer - {3049C3E9-B461-4BC5-8870-4C09146192CA} - C:\Program Files\Real\RealPlayer\rpbrowserrecordplugin.dll
O2 - BHO: Search Helper - {6EBF7485-159F-4bff-A14F-B9E3AAC4465B} - C:\Program Files\Microsoft\Search Enhancement Pack\Search Helper\SEPsearchhelperie.dll
O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Skyrock Toolbar - {A057A204-BACC-4D26-969A-2AB983EE729B} - C:\PROGRA~1\SKYROC~1\SKYROC~1.DLL
O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\5.1.1309.3572\swg.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll
O2 - BHO: Windows Live Toolbar Helper - {E15A8DC0-8516-42A1-81EA-DC94EC1ACF10} - C:\Program Files\Windows Live\Toolbar\wltcore.dll
O2 - BHO: Yontoo Layers - {FD72061E-9FDE-484D-A58A-0BAB4151CAD8} - C:\Program Files\Yontoo Layers Client for Internet Explorer\YontooIEClient.dll
O3 - Toolbar: Traduction-online - {4F75DC45-5A92-4352-BEC4-4C32FB7DF2A8} - C:\Program Files\Traduction-online\install.dll (file missing)
O3 - Toolbar: &Windows Live Toolbar - {21FA44EF-376D-4D53-9B0F-8A89D3229068} - C:\Program Files\Windows Live\Toolbar\wltcore.dll
O3 - Toolbar: Skyrock Toolbar - {A057A204-BACC-4D26-969A-2AB983EE729B} - C:\PROGRA~1\SKYROC~1\SKYROC~1.DLL
O3 - Toolbar: BitDefender Toolbar - {381FFDE8-2394-4f90-B10D-FC6124A40F8C} - C:\Program Files\BitDefender\BitDefender 2009\IEToolbar.dll
O3 - Toolbar: Veoh Web Player Video Finder - {0FBB9689-D3D7-4f7a-A2E2-585B10099BFC} - C:\Program Files\Veoh Networks\VeohWebPlayer\VeohIEToolbar.dll
O3 - Toolbar: Veoh Video Compass - {52836EB0-631A-47B1-94A6-61F9D9112DAE} - C:\Program Files\Veoh Networks\Veoh Video Compass\SearchRecsPlugin.dll
O4 - HKLM\..\Run: [SSBkgdUpdate] "C:\Program Files\Common Files\Scansoft Shared\SSBkgdUpdate\SSBkgdupdate.exe" -Embedding -boot
O4 - HKLM\..\Run: [OpwareSE4] "C:\Program Files\ScanSoft\OmniPageSE4\OpwareSE4.exe"
O4 - HKLM\..\Run: [vyka] C:\Windows\system32\dummoottoweb.exe
O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe"
O4 - HKLM\..\Run: [BDAgent] "C:\Program Files\BitDefender\BitDefender 2009\bdagent.exe"
O4 - HKLM\..\Run: [BitDefender Antiphishing Helper] "C:\Program Files\BitDefender\BitDefender 2009\IEShow.exe"
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre6\bin\jusched.exe"
O4 - HKLM\..\Run: [snp2std] C:\Windows\vsnp2std.exe
O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Common Files\Real\Update_OB\realsched.exe" -osboot
O4 - HKCU\..\Run: [Sidebar] "C:\Program Files\Windows Sidebar\sidebar.exe" /autoRun
O4 - HKCU\..\Run: [Nero PhotoShow Media Manager] C:\PROGRA~1\Nero\PHOTOS~1\data\Xtras\mssysmgr.exe
O4 - HKCU\..\Run: [Netlog 24] "C:\Program Files\Netlog 24\Notifier\Netlog24Notifier.exe"
O4 - HKCU\..\Run: [msnmsgr] "C:\Program Files\Windows Live\Messenger\msnmsgr.exe" /background
O4 - HKCU\..\Run: [VeohPlugin] "C:\Program Files\Veoh Networks\VeohWebPlayer\veohwebplayer.exe"
O4 - HKCU\..\Run: [WMPNSCFG] C:\Program Files\Windows Media Player\WMPNSCFG.exe
O4 - HKCU\..\Run: [ares] "C:\Program Files\Ares\Ares.exe" -h
O4 - HKCU\..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-19\..\Run: [WindowsWelcomeCenter] rundll32.exe oobefldr.dll,ShowWelcomeCenter (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'SERVICE RÉSEAU')
O4 - HKUS\S-1-5-18\..\Run: [msnmsgr] "C:\Program Files\Windows Live\Messenger\msnmsgr.exe" /background (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [msnmsgr] "C:\Program Files\Windows Live\Messenger\msnmsgr.exe" /background (User 'Default user')
O4 - Startup: OpenOffice.org 3.1.lnk = C:\Program Files\OpenOffice.org 3\program\quickstart.exe
O4 - Global Startup: Bluetooth Manager.lnk = ?
O8 - Extra context menu item: Add to Google Photos Screensa&ver - res://C:\Windows\system32\GPhotos.scr/200
O8 - Extra context menu item: Add to Windows &Live Favorites - https://onedrive.live.com/?id=favorites
O9 - Extra button: Ajout Direct - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra 'Tools' menuitem: &Ajout Direct dans Windows Live Writer - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra button: Traduction-online - {4F75DC45-5A92-4352-BEC4-4C32FB7DF2A8} - C:\Program Files\Traduction-online\install.dll (file missing)
O9 - Extra 'Tools' menuitem: Traduction-online - {4F75DC45-5A92-4352-BEC4-4C32FB7DF2A8} - C:\Program Files\Traduction-online\install.dll (file missing)
O13 - Gopher Prefix:
O16 - DPF: CabBuilder - http://kiw.imgag.com/imgag/kiw/toolbar/download/InstallerControl.cab
O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) - http://update.microsoft.com/...
O16 - DPF: {BFF1950D-B1B4-4AE8-B842-B2CCF06D9A1B} (Zylom Games Player) - http://game11.zylom.com/activex/zylomgamesplayer.cab
O16 - DPF: {D0C0F75C-683A-4390-A791-1ACFD5599AB8} (Oberon Flash Game Host) - http://gamenextfr.oberon-media.com/Gameshell/GameHost/1.0/OberonGameHost.cab
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab
O16 - DPF: {D71F9A27-723E-4B8B-B428-B725E47CBA3E} (Imikimi_activex_plugin Control) - http://imikimi.com/download/imikimi_plugin_0.5.1.cab
O16 - DPF: {FE0BD779-44EE-4A4B-AA2E-743C63F2E5E6} (IWinAmpActiveX Class) - http://pdl.stream.aol.com/downloads/aol/unagi/ampx_en_dl.cab
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL
O23 - Service: Apple Mobile Device - Apple Inc. - C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
O23 - Service: BitDefender Arrakis Server (Arrakis3) - BitDefender S.R.L. https://www.bitdefender.fr/ - C:\Program Files\Common Files\BitDefender\BitDefender Arrakis Server\bin\Arrakis3.exe
O23 - Service: Service Bonjour (Bonjour Service) - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: Service Google Update (gupdate1c99b528c365244) (gupdate1c99b528c365244) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Google Software Updater (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: BitDefender Desktop Update Service (LIVESRV) - BitDefender SRL - C:\Program Files\Common Files\BitDefender\BitDefender Update Service\livesrv.exe
O23 - Service: NMSAccessU - Unknown owner - C:\Program Files\CDBurnerXP\NMSAccessU.exe
O23 - Service: TOSHIBA Bluetooth Service - TOSHIBA CORPORATION - C:\Program Files\Toshiba\Bluetooth Toshiba Stack\TosBtSrv.exe
O23 - Service: BitDefender Virus Shield (VSSERV) - BitDefender S. R. L. - C:\Program Files\BitDefender\BitDefender 2009\vsserv.exe
Run by be at 2009-06-18 21:23:45
Microsoft® Windows Vista™ Édition Familiale Basique Service Pack 2
System drive C: has 14 GB (29%) free of 50 GB
Total RAM: 958 MB (34% free)
Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 21:24:25, on 18/06/2009
Platform: Windows Vista SP2 (WinNT 6.00.1906)
MSIE: Internet Explorer v8.00 (8.00.6001.18702)
Boot mode: Normal
Running processes:
C:\Windows\system32\Dwm.exe
C:\Program Files\ScanSoft\OmniPageSE4\OpWareSE4.exe
C:\Program Files\BitDefender\BitDefender 2009\bdagent.exe
C:\Program Files\Java\jre6\bin\jusched.exe
C:\Windows\vsnp2std.exe
C:\Program Files\Common Files\Real\Update_OB\realsched.exe
C:\Program Files\Netlog 24\Notifier\Netlog24Notifier.exe
C:\Program Files\Veoh Networks\VeohWebPlayer\veohwebplayer.exe
C:\Program Files\Windows Media Player\wmpnscfg.exe
C:\Program Files\Ares\Ares.exe
C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
C:\Program Files\Toshiba\Bluetooth Toshiba Stack\TosBtMng.exe
C:\Program Files\OpenOffice.org 3\program\soffice.exe
C:\Windows\system32\taskeng.exe
C:\Program Files\OpenOffice.org 3\program\soffice.bin
C:\Program Files\Toshiba\Bluetooth Toshiba Stack\TosA2dp.exe
C:\Program Files\Toshiba\Bluetooth Toshiba Stack\TosBtHid.exe
C:\Program Files\BitDefender\BitDefender 2009\seccenter.exe
C:\Program Files\Toshiba\Bluetooth Toshiba Stack\TosBtHsp.exe
C:\Windows\explorer.exe
C:\Windows\system32\wbem\unsecapp.exe
C:\Windows\system32\notepad.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Windows Live\Toolbar\wltuser.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Users\be\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\EQJLFQJC\RSIT[1].exe
C:\Program Files\Trend Micro\be.exe
C:\Windows\system32\SearchFilterHost.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://search.shareware.pro/?lang=fr
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.google.be/?gws_rd=ssl
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.msn.com/fr-fr
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: XBTB00892 - {2CC514F5-5881-49c2-AD9E-6F7A89AB4F1B} - C:\PROGRA~1\TRADUC~1\install.dll (file missing)
O2 - BHO: RealPlayer Download and Record Plugin for Internet Explorer - {3049C3E9-B461-4BC5-8870-4C09146192CA} - C:\Program Files\Real\RealPlayer\rpbrowserrecordplugin.dll
O2 - BHO: Search Helper - {6EBF7485-159F-4bff-A14F-B9E3AAC4465B} - C:\Program Files\Microsoft\Search Enhancement Pack\Search Helper\SEPsearchhelperie.dll
O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Skyrock Toolbar - {A057A204-BACC-4D26-969A-2AB983EE729B} - C:\PROGRA~1\SKYROC~1\SKYROC~1.DLL
O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\5.1.1309.3572\swg.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll
O2 - BHO: Windows Live Toolbar Helper - {E15A8DC0-8516-42A1-81EA-DC94EC1ACF10} - C:\Program Files\Windows Live\Toolbar\wltcore.dll
O2 - BHO: Yontoo Layers - {FD72061E-9FDE-484D-A58A-0BAB4151CAD8} - C:\Program Files\Yontoo Layers Client for Internet Explorer\YontooIEClient.dll
O3 - Toolbar: Traduction-online - {4F75DC45-5A92-4352-BEC4-4C32FB7DF2A8} - C:\Program Files\Traduction-online\install.dll (file missing)
O3 - Toolbar: &Windows Live Toolbar - {21FA44EF-376D-4D53-9B0F-8A89D3229068} - C:\Program Files\Windows Live\Toolbar\wltcore.dll
O3 - Toolbar: Skyrock Toolbar - {A057A204-BACC-4D26-969A-2AB983EE729B} - C:\PROGRA~1\SKYROC~1\SKYROC~1.DLL
O3 - Toolbar: BitDefender Toolbar - {381FFDE8-2394-4f90-B10D-FC6124A40F8C} - C:\Program Files\BitDefender\BitDefender 2009\IEToolbar.dll
O3 - Toolbar: Veoh Web Player Video Finder - {0FBB9689-D3D7-4f7a-A2E2-585B10099BFC} - C:\Program Files\Veoh Networks\VeohWebPlayer\VeohIEToolbar.dll
O3 - Toolbar: Veoh Video Compass - {52836EB0-631A-47B1-94A6-61F9D9112DAE} - C:\Program Files\Veoh Networks\Veoh Video Compass\SearchRecsPlugin.dll
O4 - HKLM\..\Run: [SSBkgdUpdate] "C:\Program Files\Common Files\Scansoft Shared\SSBkgdUpdate\SSBkgdupdate.exe" -Embedding -boot
O4 - HKLM\..\Run: [OpwareSE4] "C:\Program Files\ScanSoft\OmniPageSE4\OpwareSE4.exe"
O4 - HKLM\..\Run: [vyka] C:\Windows\system32\dummoottoweb.exe
O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe"
O4 - HKLM\..\Run: [BDAgent] "C:\Program Files\BitDefender\BitDefender 2009\bdagent.exe"
O4 - HKLM\..\Run: [BitDefender Antiphishing Helper] "C:\Program Files\BitDefender\BitDefender 2009\IEShow.exe"
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre6\bin\jusched.exe"
O4 - HKLM\..\Run: [snp2std] C:\Windows\vsnp2std.exe
O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Common Files\Real\Update_OB\realsched.exe" -osboot
O4 - HKCU\..\Run: [Sidebar] "C:\Program Files\Windows Sidebar\sidebar.exe" /autoRun
O4 - HKCU\..\Run: [Nero PhotoShow Media Manager] C:\PROGRA~1\Nero\PHOTOS~1\data\Xtras\mssysmgr.exe
O4 - HKCU\..\Run: [Netlog 24] "C:\Program Files\Netlog 24\Notifier\Netlog24Notifier.exe"
O4 - HKCU\..\Run: [msnmsgr] "C:\Program Files\Windows Live\Messenger\msnmsgr.exe" /background
O4 - HKCU\..\Run: [VeohPlugin] "C:\Program Files\Veoh Networks\VeohWebPlayer\veohwebplayer.exe"
O4 - HKCU\..\Run: [WMPNSCFG] C:\Program Files\Windows Media Player\WMPNSCFG.exe
O4 - HKCU\..\Run: [ares] "C:\Program Files\Ares\Ares.exe" -h
O4 - HKCU\..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-19\..\Run: [WindowsWelcomeCenter] rundll32.exe oobefldr.dll,ShowWelcomeCenter (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'SERVICE RÉSEAU')
O4 - HKUS\S-1-5-18\..\Run: [msnmsgr] "C:\Program Files\Windows Live\Messenger\msnmsgr.exe" /background (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [msnmsgr] "C:\Program Files\Windows Live\Messenger\msnmsgr.exe" /background (User 'Default user')
O4 - Startup: OpenOffice.org 3.1.lnk = C:\Program Files\OpenOffice.org 3\program\quickstart.exe
O4 - Global Startup: Bluetooth Manager.lnk = ?
O8 - Extra context menu item: Add to Google Photos Screensa&ver - res://C:\Windows\system32\GPhotos.scr/200
O8 - Extra context menu item: Add to Windows &Live Favorites - https://onedrive.live.com/?id=favorites
O9 - Extra button: Ajout Direct - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra 'Tools' menuitem: &Ajout Direct dans Windows Live Writer - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra button: Traduction-online - {4F75DC45-5A92-4352-BEC4-4C32FB7DF2A8} - C:\Program Files\Traduction-online\install.dll (file missing)
O9 - Extra 'Tools' menuitem: Traduction-online - {4F75DC45-5A92-4352-BEC4-4C32FB7DF2A8} - C:\Program Files\Traduction-online\install.dll (file missing)
O13 - Gopher Prefix:
O16 - DPF: CabBuilder - http://kiw.imgag.com/imgag/kiw/toolbar/download/InstallerControl.cab
O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) - http://update.microsoft.com/...
O16 - DPF: {BFF1950D-B1B4-4AE8-B842-B2CCF06D9A1B} (Zylom Games Player) - http://game11.zylom.com/activex/zylomgamesplayer.cab
O16 - DPF: {D0C0F75C-683A-4390-A791-1ACFD5599AB8} (Oberon Flash Game Host) - http://gamenextfr.oberon-media.com/Gameshell/GameHost/1.0/OberonGameHost.cab
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab
O16 - DPF: {D71F9A27-723E-4B8B-B428-B725E47CBA3E} (Imikimi_activex_plugin Control) - http://imikimi.com/download/imikimi_plugin_0.5.1.cab
O16 - DPF: {FE0BD779-44EE-4A4B-AA2E-743C63F2E5E6} (IWinAmpActiveX Class) - http://pdl.stream.aol.com/downloads/aol/unagi/ampx_en_dl.cab
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL
O23 - Service: Apple Mobile Device - Apple Inc. - C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
O23 - Service: BitDefender Arrakis Server (Arrakis3) - BitDefender S.R.L. https://www.bitdefender.fr/ - C:\Program Files\Common Files\BitDefender\BitDefender Arrakis Server\bin\Arrakis3.exe
O23 - Service: Service Bonjour (Bonjour Service) - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: Service Google Update (gupdate1c99b528c365244) (gupdate1c99b528c365244) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Google Software Updater (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: BitDefender Desktop Update Service (LIVESRV) - BitDefender SRL - C:\Program Files\Common Files\BitDefender\BitDefender Update Service\livesrv.exe
O23 - Service: NMSAccessU - Unknown owner - C:\Program Files\CDBurnerXP\NMSAccessU.exe
O23 - Service: TOSHIBA Bluetooth Service - TOSHIBA CORPORATION - C:\Program Files\Toshiba\Bluetooth Toshiba Stack\TosBtSrv.exe
O23 - Service: BitDefender Virus Shield (VSSERV) - BitDefender S. R. L. - C:\Program Files\BitDefender\BitDefender 2009\vsserv.exe
I)Télécharge OTM (de Old_Timer) sur ton Bureau.
http://www.geekstogo.com/forum/files/file/402-otm-oldtimers-move-it/
Double-cliquer sur OTM.exe pour le lancer.
Copier la liste qui se trouve en gras ci-dessous et colle-la dans le cadre de gauche de OTM sous "Paste Instructions for Items to be Moved".
:Reg
[-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{2CC514F5-5881-49c2-AD9E-6F7A89AB4F1B}]
cliquer sur MoveIt! pour lancer la suppression.
Le résultat apparaitra dans le cadre "Results".
Cliquer sur "Exit" pour fermer.
[center][b][u]I)Telecharge et enregistre sur ton bureau Hijackthis : [/u][/b][/center]
http://www.trendsecure.com/portal/fr/_download/HiJackThis.exe
[list][*]Lancer le logiciel hijackthis.
Arriver au menu, cliquer sur "do a system scan only ".
Cocher moi ces lignes en gras :
O2 - BHO: XBTB00892 - {2CC514F5-5881-49c2-AD9E-6F7A89AB4F1B} - C:\PROGRA~1\TRADUC~1\install.dll (file missing)
O3 - Toolbar: Traduction-online - {4F75DC45-5A92-4352-BEC4-4C32FB7DF2A8} - C:\Program Files\Traduction-online\install.dll (file missing)
O9 - Extra button: Traduction-online - {4F75DC45-5A92-4352-BEC4-4C32FB7DF2A8} - C:\Program Files\Traduction-online\install.dll (file missing)
O9 - Extra 'Tools' menuitem: Traduction-online - {4F75DC45-5A92-4352-BEC4-4C32FB7DF2A8} - C:\Program Files\Traduction-online\install.dll (file missing)
Cliquer sur « fix checked ».
puis reposte un nouveau log rsit stp.
http://www.geekstogo.com/forum/files/file/402-otm-oldtimers-move-it/
Double-cliquer sur OTM.exe pour le lancer.
Copier la liste qui se trouve en gras ci-dessous et colle-la dans le cadre de gauche de OTM sous "Paste Instructions for Items to be Moved".
:Reg
[-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{2CC514F5-5881-49c2-AD9E-6F7A89AB4F1B}]
cliquer sur MoveIt! pour lancer la suppression.
Le résultat apparaitra dans le cadre "Results".
Cliquer sur "Exit" pour fermer.
[center][b][u]I)Telecharge et enregistre sur ton bureau Hijackthis : [/u][/b][/center]
http://www.trendsecure.com/portal/fr/_download/HiJackThis.exe
[list][*]Lancer le logiciel hijackthis.
Arriver au menu, cliquer sur "do a system scan only ".
Cocher moi ces lignes en gras :
O2 - BHO: XBTB00892 - {2CC514F5-5881-49c2-AD9E-6F7A89AB4F1B} - C:\PROGRA~1\TRADUC~1\install.dll (file missing)
O3 - Toolbar: Traduction-online - {4F75DC45-5A92-4352-BEC4-4C32FB7DF2A8} - C:\Program Files\Traduction-online\install.dll (file missing)
O9 - Extra button: Traduction-online - {4F75DC45-5A92-4352-BEC4-4C32FB7DF2A8} - C:\Program Files\Traduction-online\install.dll (file missing)
O9 - Extra 'Tools' menuitem: Traduction-online - {4F75DC45-5A92-4352-BEC4-4C32FB7DF2A8} - C:\Program Files\Traduction-online\install.dll (file missing)
Cliquer sur « fix checked ».
puis reposte un nouveau log rsit stp.
j'ai fais tout ce que tu m'as dis,mais je n'arrive pas a trouver ceci,O2 - BHO: XBTB00892 - {2CC514F5-5881-49c2-AD9E-6F7A89AB4F1B} - C:\PROGRA~1\TRADUC~1\install.dll (file missing)
voilà un nouveau rapport:Logfile of random's system information tool 1.06 (written by random/random)
Run by be at 2009-06-18 21:47:42
Microsoft® Windows Vista™ Édition Familiale Basique Service Pack 2
System drive C: has 15 GB (29%) free of 50 GB
Total RAM: 958 MB (21% free)
Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 21:48:18, on 18/06/2009
Platform: Windows Vista SP2 (WinNT 6.00.1906)
MSIE: Internet Explorer v8.00 (8.00.6001.18702)
Boot mode: Normal
Running processes:
C:\Windows\system32\Dwm.exe
C:\Program Files\ScanSoft\OmniPageSE4\OpWareSE4.exe
C:\Program Files\BitDefender\BitDefender 2009\bdagent.exe
C:\Program Files\Java\jre6\bin\jusched.exe
C:\Windows\vsnp2std.exe
C:\Program Files\Common Files\Real\Update_OB\realsched.exe
C:\Program Files\Netlog 24\Notifier\Netlog24Notifier.exe
C:\Program Files\Veoh Networks\VeohWebPlayer\veohwebplayer.exe
C:\Program Files\Windows Media Player\wmpnscfg.exe
C:\Program Files\Ares\Ares.exe
C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
C:\Program Files\Toshiba\Bluetooth Toshiba Stack\TosBtMng.exe
C:\Program Files\OpenOffice.org 3\program\soffice.exe
C:\Windows\system32\taskeng.exe
C:\Program Files\OpenOffice.org 3\program\soffice.bin
C:\Program Files\Toshiba\Bluetooth Toshiba Stack\TosA2dp.exe
C:\Program Files\Toshiba\Bluetooth Toshiba Stack\TosBtHid.exe
C:\Program Files\BitDefender\BitDefender 2009\seccenter.exe
C:\Program Files\Toshiba\Bluetooth Toshiba Stack\TosBtHsp.exe
C:\Windows\explorer.exe
C:\Windows\system32\wbem\unsecapp.exe
C:\Windows\system32\notepad.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Windows Live\Toolbar\wltuser.exe
C:\Windows\system32\NOTEPAD.EXE
C:\Program Files\Windows Live\Messenger\msnmsgr.exe
C:\Program Files\Windows Live\Contacts\wlcomm.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Windows\system32\SearchProtocolHost.exe
C:\Windows\system32\SearchFilterHost.exe
C:\Users\be\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\BUHSUWRR\HiJackThis[1].exe
C:\Users\be\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\EQJLFQJC\RSIT[1].exe
C:\Program Files\trend micro\be.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://search.shareware.pro/?lang=fr
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.google.be/?gws_rd=ssl
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.msn.com/fr-fr
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: RealPlayer Download and Record Plugin for Internet Explorer - {3049C3E9-B461-4BC5-8870-4C09146192CA} - C:\Program Files\Real\RealPlayer\rpbrowserrecordplugin.dll
O2 - BHO: Search Helper - {6EBF7485-159F-4bff-A14F-B9E3AAC4465B} - C:\Program Files\Microsoft\Search Enhancement Pack\Search Helper\SEPsearchhelperie.dll
O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Skyrock Toolbar - {A057A204-BACC-4D26-969A-2AB983EE729B} - C:\PROGRA~1\SKYROC~1\SKYROC~1.DLL
O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\5.1.1309.3572\swg.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll
O2 - BHO: Windows Live Toolbar Helper - {E15A8DC0-8516-42A1-81EA-DC94EC1ACF10} - C:\Program Files\Windows Live\Toolbar\wltcore.dll
O2 - BHO: Yontoo Layers - {FD72061E-9FDE-484D-A58A-0BAB4151CAD8} - C:\Program Files\Yontoo Layers Client for Internet Explorer\YontooIEClient.dll
O3 - Toolbar: &Windows Live Toolbar - {21FA44EF-376D-4D53-9B0F-8A89D3229068} - C:\Program Files\Windows Live\Toolbar\wltcore.dll
O3 - Toolbar: Skyrock Toolbar - {A057A204-BACC-4D26-969A-2AB983EE729B} - C:\PROGRA~1\SKYROC~1\SKYROC~1.DLL
O3 - Toolbar: BitDefender Toolbar - {381FFDE8-2394-4f90-B10D-FC6124A40F8C} - C:\Program Files\BitDefender\BitDefender 2009\IEToolbar.dll
O3 - Toolbar: Veoh Web Player Video Finder - {0FBB9689-D3D7-4f7a-A2E2-585B10099BFC} - C:\Program Files\Veoh Networks\VeohWebPlayer\VeohIEToolbar.dll
O3 - Toolbar: Veoh Video Compass - {52836EB0-631A-47B1-94A6-61F9D9112DAE} - C:\Program Files\Veoh Networks\Veoh Video Compass\SearchRecsPlugin.dll
O4 - HKLM\..\Run: [SSBkgdUpdate] "C:\Program Files\Common Files\Scansoft Shared\SSBkgdUpdate\SSBkgdupdate.exe" -Embedding -boot
O4 - HKLM\..\Run: [OpwareSE4] "C:\Program Files\ScanSoft\OmniPageSE4\OpwareSE4.exe"
O4 - HKLM\..\Run: [vyka] C:\Windows\system32\dummoottoweb.exe
O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe"
O4 - HKLM\..\Run: [BDAgent] "C:\Program Files\BitDefender\BitDefender 2009\bdagent.exe"
O4 - HKLM\..\Run: [BitDefender Antiphishing Helper] "C:\Program Files\BitDefender\BitDefender 2009\IEShow.exe"
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre6\bin\jusched.exe"
O4 - HKLM\..\Run: [snp2std] C:\Windows\vsnp2std.exe
O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Common Files\Real\Update_OB\realsched.exe" -osboot
O4 - HKCU\..\Run: [Sidebar] "C:\Program Files\Windows Sidebar\sidebar.exe" /autoRun
O4 - HKCU\..\Run: [Nero PhotoShow Media Manager] C:\PROGRA~1\Nero\PHOTOS~1\data\Xtras\mssysmgr.exe
O4 - HKCU\..\Run: [Netlog 24] "C:\Program Files\Netlog 24\Notifier\Netlog24Notifier.exe"
O4 - HKCU\..\Run: [msnmsgr] "C:\Program Files\Windows Live\Messenger\msnmsgr.exe" /background
O4 - HKCU\..\Run: [VeohPlugin] "C:\Program Files\Veoh Networks\VeohWebPlayer\veohwebplayer.exe"
O4 - HKCU\..\Run: [WMPNSCFG] C:\Program Files\Windows Media Player\WMPNSCFG.exe
O4 - HKCU\..\Run: [ares] "C:\Program Files\Ares\Ares.exe" -h
O4 - HKCU\..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-19\..\Run: [WindowsWelcomeCenter] rundll32.exe oobefldr.dll,ShowWelcomeCenter (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'SERVICE RÉSEAU')
O4 - HKUS\S-1-5-18\..\Run: [msnmsgr] "C:\Program Files\Windows Live\Messenger\msnmsgr.exe" /background (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [msnmsgr] "C:\Program Files\Windows Live\Messenger\msnmsgr.exe" /background (User 'Default user')
O4 - Startup: OpenOffice.org 3.1.lnk = C:\Program Files\OpenOffice.org 3\program\quickstart.exe
O4 - Global Startup: Bluetooth Manager.lnk = ?
O8 - Extra context menu item: Add to Google Photos Screensa&ver - res://C:\Windows\system32\GPhotos.scr/200
O8 - Extra context menu item: Add to Windows &Live Favorites - https://onedrive.live.com/?id=favorites
O9 - Extra button: Ajout Direct - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra 'Tools' menuitem: &Ajout Direct dans Windows Live Writer - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll
O13 - Gopher Prefix:
O16 - DPF: CabBuilder - http://kiw.imgag.com/imgag/kiw/toolbar/download/InstallerControl.cab
O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) - http://update.microsoft.com/...
O16 - DPF: {BFF1950D-B1B4-4AE8-B842-B2CCF06D9A1B} (Zylom Games Player) - http://game11.zylom.com/activex/zylomgamesplayer.cab
O16 - DPF: {D0C0F75C-683A-4390-A791-1ACFD5599AB8} (Oberon Flash Game Host) - http://gamenextfr.oberon-media.com/Gameshell/GameHost/1.0/OberonGameHost.cab
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab
O16 - DPF: {D71F9A27-723E-4B8B-B428-B725E47CBA3E} (Imikimi_activex_plugin Control) - http://imikimi.com/download/imikimi_plugin_0.5.1.cab
O16 - DPF: {FE0BD779-44EE-4A4B-AA2E-743C63F2E5E6} (IWinAmpActiveX Class) - http://pdl.stream.aol.com/downloads/aol/unagi/ampx_en_dl.cab
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL
O23 - Service: Apple Mobile Device - Apple Inc. - C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
O23 - Service: BitDefender Arrakis Server (Arrakis3) - BitDefender S.R.L. https://www.bitdefender.fr/ - C:\Program Files\Common Files\BitDefender\BitDefender Arrakis Server\bin\Arrakis3.exe
O23 - Service: Service Bonjour (Bonjour Service) - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: Service Google Update (gupdate1c99b528c365244) (gupdate1c99b528c365244) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Google Software Updater (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: BitDefender Desktop Update Service (LIVESRV) - BitDefender SRL - C:\Program Files\Common Files\BitDefender\BitDefender Update Service\livesrv.exe
O23 - Service: NMSAccessU - Unknown owner - C:\Program Files\CDBurnerXP\NMSAccessU.exe
O23 - Service: TOSHIBA Bluetooth Service - TOSHIBA CORPORATION - C:\Program Files\Toshiba\Bluetooth Toshiba Stack\TosBtSrv.exe
O23 - Service: BitDefender Virus Shield (VSSERV) - BitDefender S. R. L. - C:\Program Files\BitDefender\BitDefender 2009\vsserv.exe
Run by be at 2009-06-18 21:47:42
Microsoft® Windows Vista™ Édition Familiale Basique Service Pack 2
System drive C: has 15 GB (29%) free of 50 GB
Total RAM: 958 MB (21% free)
Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 21:48:18, on 18/06/2009
Platform: Windows Vista SP2 (WinNT 6.00.1906)
MSIE: Internet Explorer v8.00 (8.00.6001.18702)
Boot mode: Normal
Running processes:
C:\Windows\system32\Dwm.exe
C:\Program Files\ScanSoft\OmniPageSE4\OpWareSE4.exe
C:\Program Files\BitDefender\BitDefender 2009\bdagent.exe
C:\Program Files\Java\jre6\bin\jusched.exe
C:\Windows\vsnp2std.exe
C:\Program Files\Common Files\Real\Update_OB\realsched.exe
C:\Program Files\Netlog 24\Notifier\Netlog24Notifier.exe
C:\Program Files\Veoh Networks\VeohWebPlayer\veohwebplayer.exe
C:\Program Files\Windows Media Player\wmpnscfg.exe
C:\Program Files\Ares\Ares.exe
C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
C:\Program Files\Toshiba\Bluetooth Toshiba Stack\TosBtMng.exe
C:\Program Files\OpenOffice.org 3\program\soffice.exe
C:\Windows\system32\taskeng.exe
C:\Program Files\OpenOffice.org 3\program\soffice.bin
C:\Program Files\Toshiba\Bluetooth Toshiba Stack\TosA2dp.exe
C:\Program Files\Toshiba\Bluetooth Toshiba Stack\TosBtHid.exe
C:\Program Files\BitDefender\BitDefender 2009\seccenter.exe
C:\Program Files\Toshiba\Bluetooth Toshiba Stack\TosBtHsp.exe
C:\Windows\explorer.exe
C:\Windows\system32\wbem\unsecapp.exe
C:\Windows\system32\notepad.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Windows Live\Toolbar\wltuser.exe
C:\Windows\system32\NOTEPAD.EXE
C:\Program Files\Windows Live\Messenger\msnmsgr.exe
C:\Program Files\Windows Live\Contacts\wlcomm.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Windows\system32\SearchProtocolHost.exe
C:\Windows\system32\SearchFilterHost.exe
C:\Users\be\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\BUHSUWRR\HiJackThis[1].exe
C:\Users\be\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\EQJLFQJC\RSIT[1].exe
C:\Program Files\trend micro\be.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://search.shareware.pro/?lang=fr
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.google.be/?gws_rd=ssl
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.msn.com/fr-fr
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: RealPlayer Download and Record Plugin for Internet Explorer - {3049C3E9-B461-4BC5-8870-4C09146192CA} - C:\Program Files\Real\RealPlayer\rpbrowserrecordplugin.dll
O2 - BHO: Search Helper - {6EBF7485-159F-4bff-A14F-B9E3AAC4465B} - C:\Program Files\Microsoft\Search Enhancement Pack\Search Helper\SEPsearchhelperie.dll
O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Skyrock Toolbar - {A057A204-BACC-4D26-969A-2AB983EE729B} - C:\PROGRA~1\SKYROC~1\SKYROC~1.DLL
O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\5.1.1309.3572\swg.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll
O2 - BHO: Windows Live Toolbar Helper - {E15A8DC0-8516-42A1-81EA-DC94EC1ACF10} - C:\Program Files\Windows Live\Toolbar\wltcore.dll
O2 - BHO: Yontoo Layers - {FD72061E-9FDE-484D-A58A-0BAB4151CAD8} - C:\Program Files\Yontoo Layers Client for Internet Explorer\YontooIEClient.dll
O3 - Toolbar: &Windows Live Toolbar - {21FA44EF-376D-4D53-9B0F-8A89D3229068} - C:\Program Files\Windows Live\Toolbar\wltcore.dll
O3 - Toolbar: Skyrock Toolbar - {A057A204-BACC-4D26-969A-2AB983EE729B} - C:\PROGRA~1\SKYROC~1\SKYROC~1.DLL
O3 - Toolbar: BitDefender Toolbar - {381FFDE8-2394-4f90-B10D-FC6124A40F8C} - C:\Program Files\BitDefender\BitDefender 2009\IEToolbar.dll
O3 - Toolbar: Veoh Web Player Video Finder - {0FBB9689-D3D7-4f7a-A2E2-585B10099BFC} - C:\Program Files\Veoh Networks\VeohWebPlayer\VeohIEToolbar.dll
O3 - Toolbar: Veoh Video Compass - {52836EB0-631A-47B1-94A6-61F9D9112DAE} - C:\Program Files\Veoh Networks\Veoh Video Compass\SearchRecsPlugin.dll
O4 - HKLM\..\Run: [SSBkgdUpdate] "C:\Program Files\Common Files\Scansoft Shared\SSBkgdUpdate\SSBkgdupdate.exe" -Embedding -boot
O4 - HKLM\..\Run: [OpwareSE4] "C:\Program Files\ScanSoft\OmniPageSE4\OpwareSE4.exe"
O4 - HKLM\..\Run: [vyka] C:\Windows\system32\dummoottoweb.exe
O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe"
O4 - HKLM\..\Run: [BDAgent] "C:\Program Files\BitDefender\BitDefender 2009\bdagent.exe"
O4 - HKLM\..\Run: [BitDefender Antiphishing Helper] "C:\Program Files\BitDefender\BitDefender 2009\IEShow.exe"
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre6\bin\jusched.exe"
O4 - HKLM\..\Run: [snp2std] C:\Windows\vsnp2std.exe
O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Common Files\Real\Update_OB\realsched.exe" -osboot
O4 - HKCU\..\Run: [Sidebar] "C:\Program Files\Windows Sidebar\sidebar.exe" /autoRun
O4 - HKCU\..\Run: [Nero PhotoShow Media Manager] C:\PROGRA~1\Nero\PHOTOS~1\data\Xtras\mssysmgr.exe
O4 - HKCU\..\Run: [Netlog 24] "C:\Program Files\Netlog 24\Notifier\Netlog24Notifier.exe"
O4 - HKCU\..\Run: [msnmsgr] "C:\Program Files\Windows Live\Messenger\msnmsgr.exe" /background
O4 - HKCU\..\Run: [VeohPlugin] "C:\Program Files\Veoh Networks\VeohWebPlayer\veohwebplayer.exe"
O4 - HKCU\..\Run: [WMPNSCFG] C:\Program Files\Windows Media Player\WMPNSCFG.exe
O4 - HKCU\..\Run: [ares] "C:\Program Files\Ares\Ares.exe" -h
O4 - HKCU\..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-19\..\Run: [WindowsWelcomeCenter] rundll32.exe oobefldr.dll,ShowWelcomeCenter (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'SERVICE RÉSEAU')
O4 - HKUS\S-1-5-18\..\Run: [msnmsgr] "C:\Program Files\Windows Live\Messenger\msnmsgr.exe" /background (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [msnmsgr] "C:\Program Files\Windows Live\Messenger\msnmsgr.exe" /background (User 'Default user')
O4 - Startup: OpenOffice.org 3.1.lnk = C:\Program Files\OpenOffice.org 3\program\quickstart.exe
O4 - Global Startup: Bluetooth Manager.lnk = ?
O8 - Extra context menu item: Add to Google Photos Screensa&ver - res://C:\Windows\system32\GPhotos.scr/200
O8 - Extra context menu item: Add to Windows &Live Favorites - https://onedrive.live.com/?id=favorites
O9 - Extra button: Ajout Direct - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra 'Tools' menuitem: &Ajout Direct dans Windows Live Writer - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll
O13 - Gopher Prefix:
O16 - DPF: CabBuilder - http://kiw.imgag.com/imgag/kiw/toolbar/download/InstallerControl.cab
O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) - http://update.microsoft.com/...
O16 - DPF: {BFF1950D-B1B4-4AE8-B842-B2CCF06D9A1B} (Zylom Games Player) - http://game11.zylom.com/activex/zylomgamesplayer.cab
O16 - DPF: {D0C0F75C-683A-4390-A791-1ACFD5599AB8} (Oberon Flash Game Host) - http://gamenextfr.oberon-media.com/Gameshell/GameHost/1.0/OberonGameHost.cab
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab
O16 - DPF: {D71F9A27-723E-4B8B-B428-B725E47CBA3E} (Imikimi_activex_plugin Control) - http://imikimi.com/download/imikimi_plugin_0.5.1.cab
O16 - DPF: {FE0BD779-44EE-4A4B-AA2E-743C63F2E5E6} (IWinAmpActiveX Class) - http://pdl.stream.aol.com/downloads/aol/unagi/ampx_en_dl.cab
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL
O23 - Service: Apple Mobile Device - Apple Inc. - C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
O23 - Service: BitDefender Arrakis Server (Arrakis3) - BitDefender S.R.L. https://www.bitdefender.fr/ - C:\Program Files\Common Files\BitDefender\BitDefender Arrakis Server\bin\Arrakis3.exe
O23 - Service: Service Bonjour (Bonjour Service) - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: Service Google Update (gupdate1c99b528c365244) (gupdate1c99b528c365244) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Google Software Updater (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: BitDefender Desktop Update Service (LIVESRV) - BitDefender SRL - C:\Program Files\Common Files\BitDefender\BitDefender Update Service\livesrv.exe
O23 - Service: NMSAccessU - Unknown owner - C:\Program Files\CDBurnerXP\NMSAccessU.exe
O23 - Service: TOSHIBA Bluetooth Service - TOSHIBA CORPORATION - C:\Program Files\Toshiba\Bluetooth Toshiba Stack\TosBtSrv.exe
O23 - Service: BitDefender Virus Shield (VSSERV) - BitDefender S. R. L. - C:\Program Files\BitDefender\BitDefender 2009\vsserv.exe
Salut
suite a ta demande en PV
peut tu reposter un NOUVEAU RSIT, juste le log.txt poste le en plusieurs fois si c'est trop long
et as tu encore des problemes en particuliers
suite a ta demande en PV
peut tu reposter un NOUVEAU RSIT, juste le log.txt poste le en plusieurs fois si c'est trop long
et as tu encore des problemes en particuliers
merci d'etre venu a mon aide,voilà la premiere partie:Logfile of random's system information tool 1.06 (written by random/random)
Run by be at 2009-06-19 20:19:37
Microsoft® Windows Vista™ Édition Familiale Basique Service Pack 2
System drive C: has 13 GB (27%) free of 50 GB
Total RAM: 958 MB (29% free)
Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 20:20:32, on 19/06/2009
Platform: Windows Vista SP2 (WinNT 6.00.1906)
MSIE: Internet Explorer v8.00 (8.00.6001.18702)
Boot mode: Normal
Running processes:
C:\Windows\system32\taskeng.exe
C:\Windows\system32\Dwm.exe
C:\Windows\Explorer.EXE
C:\Program Files\ScanSoft\OmniPageSE4\OpWareSE4.exe
C:\Program Files\BitDefender\BitDefender 2009\bdagent.exe
C:\Program Files\Java\jre6\bin\jusched.exe
C:\Windows\vsnp2std.exe
C:\Program Files\Common Files\Real\Update_OB\realsched.exe
C:\Program Files\Windows Sidebar\sidebar.exe
C:\Program Files\Netlog 24\Notifier\Netlog24Notifier.exe
C:\Program Files\Windows Live\Messenger\msnmsgr.exe
C:\Program Files\Windows Media Player\wmpnscfg.exe
C:\Program Files\Veoh Networks\VeohWebPlayer\veohwebplayer.exe
C:\Program Files\Ares\Ares.exe
C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
C:\Windows\system32\wbem\unsecapp.exe
C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe
C:\Program Files\Toshiba\Bluetooth Toshiba Stack\TosBtMng.exe
C:\Program Files\OpenOffice.org 3\program\soffice.exe
C:\Program Files\OpenOffice.org 3\program\soffice.bin
C:\Program Files\Toshiba\Bluetooth Toshiba Stack\TosA2dp.exe
C:\Program Files\Toshiba\Bluetooth Toshiba Stack\TosBtHid.exe
C:\Program Files\Toshiba\Bluetooth Toshiba Stack\TosBtHsp.exe
C:\Program Files\BitDefender\BitDefender 2009\seccenter.exe
C:\Program Files\Windows Live\Contacts\wlcomm.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Windows Live\Toolbar\wltuser.exe
C:\Windows\system32\Macromed\Flash\FlashUtil10b.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Windows\system32\SearchFilterHost.exe
C:\Users\be\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\1O23A2IC\RSIT[1].exe
C:\Program Files\trend micro\be.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://search.shareware.pro/?lang=fr
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.google.be/?gws_rd=ssl
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.msn.com/fr-fr
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: RealPlayer Download and Record Plugin for Internet Explorer - {3049C3E9-B461-4BC5-8870-4C09146192CA} - C:\Program Files\Real\RealPlayer\rpbrowserrecordplugin.dll
O2 - BHO: Spybot-S&D IE Protection - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O2 - BHO: Search Helper - {6EBF7485-159F-4bff-A14F-B9E3AAC4465B} - C:\Program Files\Microsoft\Search Enhancement Pack\Search Helper\SEPsearchhelperie.dll
O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Skyrock Toolbar - {A057A204-BACC-4D26-969A-2AB983EE729B} - C:\PROGRA~1\SKYROC~1\SKYROC~1.DLL
O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\5.1.1309.3572\swg.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll
O2 - BHO: Windows Live Toolbar Helper - {E15A8DC0-8516-42A1-81EA-DC94EC1ACF10} - C:\Program Files\Windows Live\Toolbar\wltcore.dll
O2 - BHO: Yontoo Layers - {FD72061E-9FDE-484D-A58A-0BAB4151CAD8} - C:\Program Files\Yontoo Layers Client for Internet Explorer\YontooIEClient.dll
O3 - Toolbar: &Windows Live Toolbar - {21FA44EF-376D-4D53-9B0F-8A89D3229068} - C:\Program Files\Windows Live\Toolbar\wltcore.dll
O3 - Toolbar: Skyrock Toolbar - {A057A204-BACC-4D26-969A-2AB983EE729B} - C:\PROGRA~1\SKYROC~1\SKYROC~1.DLL
O3 - Toolbar: BitDefender Toolbar - {381FFDE8-2394-4f90-B10D-FC6124A40F8C} - C:\Program Files\BitDefender\BitDefender 2009\IEToolbar.dll
O3 - Toolbar: Veoh Web Player Video Finder - {0FBB9689-D3D7-4f7a-A2E2-585B10099BFC} - C:\Program Files\Veoh Networks\VeohWebPlayer\VeohIEToolbar.dll
O3 - Toolbar: Veoh Video Compass - {52836EB0-631A-47B1-94A6-61F9D9112DAE} - C:\Program Files\Veoh Networks\Veoh Video Compass\SearchRecsPlugin.dll
O4 - HKLM\..\Run: [SSBkgdUpdate] "C:\Program Files\Common Files\Scansoft Shared\SSBkgdUpdate\SSBkgdupdate.exe" -Embedding -boot
O4 - HKLM\..\Run: [OpwareSE4] "C:\Program Files\ScanSoft\OmniPageSE4\OpwareSE4.exe"
O4 - HKLM\..\Run: [vyka] C:\Windows\system32\dummoottoweb.exe
O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe"
O4 - HKLM\..\Run: [BDAgent] "C:\Program Files\BitDefender\BitDefender 2009\bdagent.exe"
O4 - HKLM\..\Run: [BitDefender Antiphishing Helper] "C:\Program Files\BitDefender\BitDefender 2009\IEShow.exe"
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre6\bin\jusched.exe"
O4 - HKLM\..\Run: [snp2std] C:\Windows\vsnp2std.exe
O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Common Files\Real\Update_OB\realsched.exe" -osboot
O4 - HKCU\..\Run: [Sidebar] "C:\Program Files\Windows Sidebar\sidebar.exe" /autoRun
O4 - HKCU\..\Run: [Nero PhotoShow Media Manager] C:\PROGRA~1\Nero\PHOTOS~1\data\Xtras\mssysmgr.exe
O4 - HKCU\..\Run: [Netlog 24] "C:\Program Files\Netlog 24\Notifier\Netlog24Notifier.exe"
O4 - HKCU\..\Run: [msnmsgr] "C:\Program Files\Windows Live\Messenger\msnmsgr.exe" /background
O4 - HKCU\..\Run: [VeohPlugin] "C:\Program Files\Veoh Networks\VeohWebPlayer\veohwebplayer.exe"
O4 - HKCU\..\Run: [WMPNSCFG] C:\Program Files\Windows Media Player\WMPNSCFG.exe
O4 - HKCU\..\Run: [ares] "C:\Program Files\Ares\Ares.exe" -h
O4 - HKCU\..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
O4 - HKCU\..\Run: [SpybotSD TeaTimer] C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-19\..\Run: [WindowsWelcomeCenter] rundll32.exe oobefldr.dll,ShowWelcomeCenter (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'SERVICE RÉSEAU')
O4 - HKUS\S-1-5-18\..\Run: [msnmsgr] "C:\Program Files\Windows Live\Messenger\msnmsgr.exe" /background (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [msnmsgr] "C:\Program Files\Windows Live\Messenger\msnmsgr.exe" /background (User 'Default user')
O4 - Startup: OpenOffice.org 3.1.lnk = C:\Program Files\OpenOffice.org 3\program\quickstart.exe
O4 - Global Startup: Bluetooth Manager.lnk = ?
O8 - Extra context menu item: Add to Google Photos Screensa&ver - res://C:\Windows\system32\GPhotos.scr/200
O8 - Extra context menu item: Add to Windows &Live Favorites - https://onedrive.live.com/?id=favorites
O9 - Extra button: Ajout Direct - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra 'Tools' menuitem: &Ajout Direct dans Windows Live Writer - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra button: (no name) - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O9 - Extra 'Tools' menuitem: Spybot - Search & Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O13 - Gopher Prefix:
O16 - DPF: CabBuilder - http://kiw.imgag.com/imgag/kiw/toolbar/download/InstallerControl.cab
O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) - http://update.microsoft.com/...
O16 - DPF: {BFF1950D-B1B4-4AE8-B842-B2CCF06D9A1B} (Zylom Games Player) - http://game11.zylom.com/activex/zylomgamesplayer.cab
O16 - DPF: {D0C0F75C-683A-4390-A791-1ACFD5599AB8} (Oberon Flash Game Host) - http://gamenextfr.oberon-media.com/Gameshell/GameHost/1.0/OberonGameHost.cab
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab
O16 - DPF: {D71F9A27-723E-4B8B-B428-B725E47CBA3E} (Imikimi_activex_plugin Control) - http://imikimi.com/download/imikimi_plugin_0.5.1.cab
O16 - DPF: {FE0BD779-44EE-4A4B-AA2E-743C63F2E5E6} (IWinAmpActiveX Class) - http://pdl.stream.aol.com/downloads/aol/unagi/ampx_en_dl.cab
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL
O23 - Service: Apple Mobile Device - Apple Inc. - C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
O23 - Service: BitDefender Arrakis Server (Arrakis3) - BitDefender S.R.L. https://www.bitdefender.fr/ - C:\Program Files\Common Files\BitDefender\BitDefender Arrakis Server\bin\Arrakis3.exe
O23 - Service: Service Bonjour (Bonjour Service) - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: Service Google Update (gupdate1c99b528c365244) (gupdate1c99b528c365244) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Google Software Updater (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: BitDefender Desktop Update Service (LIVESRV) - BitDefender SRL - C:\Program Files\Common Files\BitDefender\BitDefender Update Service\livesrv.exe
O23 - Service: NMSAccessU - Unknown owner - C:\Program Files\CDBurnerXP\NMSAccessU.exe
O23 - Service: SBSD Security Center Service (SBSDWSCService) - Safer Networking Ltd. - C:\Program Files\Spybot - Search & Destroy\SDWinSec.exe
O23 - Service: TOSHIBA Bluetooth Service - TOSHIBA CORPORATION - C:\Program Files\Toshiba\Bluetooth Toshiba Stack\TosBtSrv.exe
O23 - Service: BitDefender Virus Shield (VSSERV) - BitDefender S. R. L. - C:\Program Files\BitDefender\BitDefender 2009\vsserv.exe
Run by be at 2009-06-19 20:19:37
Microsoft® Windows Vista™ Édition Familiale Basique Service Pack 2
System drive C: has 13 GB (27%) free of 50 GB
Total RAM: 958 MB (29% free)
Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 20:20:32, on 19/06/2009
Platform: Windows Vista SP2 (WinNT 6.00.1906)
MSIE: Internet Explorer v8.00 (8.00.6001.18702)
Boot mode: Normal
Running processes:
C:\Windows\system32\taskeng.exe
C:\Windows\system32\Dwm.exe
C:\Windows\Explorer.EXE
C:\Program Files\ScanSoft\OmniPageSE4\OpWareSE4.exe
C:\Program Files\BitDefender\BitDefender 2009\bdagent.exe
C:\Program Files\Java\jre6\bin\jusched.exe
C:\Windows\vsnp2std.exe
C:\Program Files\Common Files\Real\Update_OB\realsched.exe
C:\Program Files\Windows Sidebar\sidebar.exe
C:\Program Files\Netlog 24\Notifier\Netlog24Notifier.exe
C:\Program Files\Windows Live\Messenger\msnmsgr.exe
C:\Program Files\Windows Media Player\wmpnscfg.exe
C:\Program Files\Veoh Networks\VeohWebPlayer\veohwebplayer.exe
C:\Program Files\Ares\Ares.exe
C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
C:\Windows\system32\wbem\unsecapp.exe
C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe
C:\Program Files\Toshiba\Bluetooth Toshiba Stack\TosBtMng.exe
C:\Program Files\OpenOffice.org 3\program\soffice.exe
C:\Program Files\OpenOffice.org 3\program\soffice.bin
C:\Program Files\Toshiba\Bluetooth Toshiba Stack\TosA2dp.exe
C:\Program Files\Toshiba\Bluetooth Toshiba Stack\TosBtHid.exe
C:\Program Files\Toshiba\Bluetooth Toshiba Stack\TosBtHsp.exe
C:\Program Files\BitDefender\BitDefender 2009\seccenter.exe
C:\Program Files\Windows Live\Contacts\wlcomm.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Windows Live\Toolbar\wltuser.exe
C:\Windows\system32\Macromed\Flash\FlashUtil10b.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Windows\system32\SearchFilterHost.exe
C:\Users\be\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\1O23A2IC\RSIT[1].exe
C:\Program Files\trend micro\be.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://search.shareware.pro/?lang=fr
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.google.be/?gws_rd=ssl
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.msn.com/fr-fr
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: RealPlayer Download and Record Plugin for Internet Explorer - {3049C3E9-B461-4BC5-8870-4C09146192CA} - C:\Program Files\Real\RealPlayer\rpbrowserrecordplugin.dll
O2 - BHO: Spybot-S&D IE Protection - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O2 - BHO: Search Helper - {6EBF7485-159F-4bff-A14F-B9E3AAC4465B} - C:\Program Files\Microsoft\Search Enhancement Pack\Search Helper\SEPsearchhelperie.dll
O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Skyrock Toolbar - {A057A204-BACC-4D26-969A-2AB983EE729B} - C:\PROGRA~1\SKYROC~1\SKYROC~1.DLL
O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\5.1.1309.3572\swg.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll
O2 - BHO: Windows Live Toolbar Helper - {E15A8DC0-8516-42A1-81EA-DC94EC1ACF10} - C:\Program Files\Windows Live\Toolbar\wltcore.dll
O2 - BHO: Yontoo Layers - {FD72061E-9FDE-484D-A58A-0BAB4151CAD8} - C:\Program Files\Yontoo Layers Client for Internet Explorer\YontooIEClient.dll
O3 - Toolbar: &Windows Live Toolbar - {21FA44EF-376D-4D53-9B0F-8A89D3229068} - C:\Program Files\Windows Live\Toolbar\wltcore.dll
O3 - Toolbar: Skyrock Toolbar - {A057A204-BACC-4D26-969A-2AB983EE729B} - C:\PROGRA~1\SKYROC~1\SKYROC~1.DLL
O3 - Toolbar: BitDefender Toolbar - {381FFDE8-2394-4f90-B10D-FC6124A40F8C} - C:\Program Files\BitDefender\BitDefender 2009\IEToolbar.dll
O3 - Toolbar: Veoh Web Player Video Finder - {0FBB9689-D3D7-4f7a-A2E2-585B10099BFC} - C:\Program Files\Veoh Networks\VeohWebPlayer\VeohIEToolbar.dll
O3 - Toolbar: Veoh Video Compass - {52836EB0-631A-47B1-94A6-61F9D9112DAE} - C:\Program Files\Veoh Networks\Veoh Video Compass\SearchRecsPlugin.dll
O4 - HKLM\..\Run: [SSBkgdUpdate] "C:\Program Files\Common Files\Scansoft Shared\SSBkgdUpdate\SSBkgdupdate.exe" -Embedding -boot
O4 - HKLM\..\Run: [OpwareSE4] "C:\Program Files\ScanSoft\OmniPageSE4\OpwareSE4.exe"
O4 - HKLM\..\Run: [vyka] C:\Windows\system32\dummoottoweb.exe
O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe"
O4 - HKLM\..\Run: [BDAgent] "C:\Program Files\BitDefender\BitDefender 2009\bdagent.exe"
O4 - HKLM\..\Run: [BitDefender Antiphishing Helper] "C:\Program Files\BitDefender\BitDefender 2009\IEShow.exe"
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre6\bin\jusched.exe"
O4 - HKLM\..\Run: [snp2std] C:\Windows\vsnp2std.exe
O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Common Files\Real\Update_OB\realsched.exe" -osboot
O4 - HKCU\..\Run: [Sidebar] "C:\Program Files\Windows Sidebar\sidebar.exe" /autoRun
O4 - HKCU\..\Run: [Nero PhotoShow Media Manager] C:\PROGRA~1\Nero\PHOTOS~1\data\Xtras\mssysmgr.exe
O4 - HKCU\..\Run: [Netlog 24] "C:\Program Files\Netlog 24\Notifier\Netlog24Notifier.exe"
O4 - HKCU\..\Run: [msnmsgr] "C:\Program Files\Windows Live\Messenger\msnmsgr.exe" /background
O4 - HKCU\..\Run: [VeohPlugin] "C:\Program Files\Veoh Networks\VeohWebPlayer\veohwebplayer.exe"
O4 - HKCU\..\Run: [WMPNSCFG] C:\Program Files\Windows Media Player\WMPNSCFG.exe
O4 - HKCU\..\Run: [ares] "C:\Program Files\Ares\Ares.exe" -h
O4 - HKCU\..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
O4 - HKCU\..\Run: [SpybotSD TeaTimer] C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-19\..\Run: [WindowsWelcomeCenter] rundll32.exe oobefldr.dll,ShowWelcomeCenter (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'SERVICE RÉSEAU')
O4 - HKUS\S-1-5-18\..\Run: [msnmsgr] "C:\Program Files\Windows Live\Messenger\msnmsgr.exe" /background (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [msnmsgr] "C:\Program Files\Windows Live\Messenger\msnmsgr.exe" /background (User 'Default user')
O4 - Startup: OpenOffice.org 3.1.lnk = C:\Program Files\OpenOffice.org 3\program\quickstart.exe
O4 - Global Startup: Bluetooth Manager.lnk = ?
O8 - Extra context menu item: Add to Google Photos Screensa&ver - res://C:\Windows\system32\GPhotos.scr/200
O8 - Extra context menu item: Add to Windows &Live Favorites - https://onedrive.live.com/?id=favorites
O9 - Extra button: Ajout Direct - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra 'Tools' menuitem: &Ajout Direct dans Windows Live Writer - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra button: (no name) - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O9 - Extra 'Tools' menuitem: Spybot - Search & Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O13 - Gopher Prefix:
O16 - DPF: CabBuilder - http://kiw.imgag.com/imgag/kiw/toolbar/download/InstallerControl.cab
O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) - http://update.microsoft.com/...
O16 - DPF: {BFF1950D-B1B4-4AE8-B842-B2CCF06D9A1B} (Zylom Games Player) - http://game11.zylom.com/activex/zylomgamesplayer.cab
O16 - DPF: {D0C0F75C-683A-4390-A791-1ACFD5599AB8} (Oberon Flash Game Host) - http://gamenextfr.oberon-media.com/Gameshell/GameHost/1.0/OberonGameHost.cab
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab
O16 - DPF: {D71F9A27-723E-4B8B-B428-B725E47CBA3E} (Imikimi_activex_plugin Control) - http://imikimi.com/download/imikimi_plugin_0.5.1.cab
O16 - DPF: {FE0BD779-44EE-4A4B-AA2E-743C63F2E5E6} (IWinAmpActiveX Class) - http://pdl.stream.aol.com/downloads/aol/unagi/ampx_en_dl.cab
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL
O23 - Service: Apple Mobile Device - Apple Inc. - C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
O23 - Service: BitDefender Arrakis Server (Arrakis3) - BitDefender S.R.L. https://www.bitdefender.fr/ - C:\Program Files\Common Files\BitDefender\BitDefender Arrakis Server\bin\Arrakis3.exe
O23 - Service: Service Bonjour (Bonjour Service) - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: Service Google Update (gupdate1c99b528c365244) (gupdate1c99b528c365244) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Google Software Updater (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: BitDefender Desktop Update Service (LIVESRV) - BitDefender SRL - C:\Program Files\Common Files\BitDefender\BitDefender Update Service\livesrv.exe
O23 - Service: NMSAccessU - Unknown owner - C:\Program Files\CDBurnerXP\NMSAccessU.exe
O23 - Service: SBSD Security Center Service (SBSDWSCService) - Safer Networking Ltd. - C:\Program Files\Spybot - Search & Destroy\SDWinSec.exe
O23 - Service: TOSHIBA Bluetooth Service - TOSHIBA CORPORATION - C:\Program Files\Toshiba\Bluetooth Toshiba Stack\TosBtSrv.exe
O23 - Service: BitDefender Virus Shield (VSSERV) - BitDefender S. R. L. - C:\Program Files\BitDefender\BitDefender 2009\vsserv.exe
oups! pardon je suis distrete:ile associations======
.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*
======List of files/folders created in the last 1 months======
2009-06-19 00:15:40 ----D---- C:\Program Files\Mozilla Firefox
2009-06-18 21:38:55 ----D---- C:\_OTM
2009-06-18 12:27:55 ----D---- C:\Program Files\Common Files\SWF Studio
2009-06-18 11:24:44 ----SHD---- C:\Config.Msi
2009-06-18 02:51:26 ----D---- C:\Program Files\Common Files\xing shared
2009-06-18 02:51:10 ----A---- C:\Windows\system32\rmoc3260.dll
2009-06-18 02:50:17 ----A---- C:\Windows\system32\pndx5032.dll
2009-06-18 02:50:17 ----A---- C:\Windows\system32\pndx5016.dll
2009-06-18 02:50:15 ----A---- C:\Windows\system32\pncrt.dll
2009-06-10 13:26:35 ----A---- C:\Windows\system32\localspl.dll
2009-06-10 13:26:08 ----A---- C:\Windows\system32\rpcrt4.dll
2009-06-10 13:26:04 ----A---- C:\Windows\system32\mshtml.dll
2009-06-10 13:26:02 ----A---- C:\Windows\system32\ieframe.dll
2009-06-10 13:26:01 ----A---- C:\Windows\system32\iertutil.dll
2009-06-10 13:26:00 ----A---- C:\Windows\system32\wininet.dll
2009-06-10 13:26:00 ----A---- C:\Windows\system32\urlmon.dll
2009-06-10 13:26:00 ----A---- C:\Windows\system32\iedkcs32.dll
2009-06-10 13:25:59 ----A---- C:\Windows\system32\jsproxy.dll
2009-06-10 13:25:59 ----A---- C:\Windows\system32\ieui.dll
2009-06-10 13:25:58 ----A---- C:\Windows\system32\iesetup.dll
2009-06-10 13:25:58 ----A---- C:\Windows\system32\iernonce.dll
2009-06-10 13:25:58 ----A---- C:\Windows\system32\ie4uinit.exe
2009-06-09 00:02:08 ----D---- C:\Users\be\AppData\Roaming\GarageGames
2009-06-07 22:02:27 ----SHD---- C:\Users\be\AppData\Roaming\.#
2009-06-06 22:13:13 ----D---- C:\Users\be\AppData\Roaming\OpenOffice.org
2009-06-06 21:57:16 ----D---- C:\Program Files\JRE
2009-06-06 21:56:38 ----D---- C:\Program Files\OpenOffice.org 3
2009-05-28 10:50:03 ----D---- C:\Windows\system32\eu-ES
2009-05-28 10:50:03 ----D---- C:\Windows\system32\ca-ES
2009-05-28 10:50:02 ----D---- C:\Windows\system32\vi-VN
2009-05-27 23:30:50 ----D---- C:\Windows\system32\EventProviders
2009-05-27 23:10:46 ----A---- C:\Windows\system32\NlsLexicons0007.dll
2009-05-27 23:10:41 ----A---- C:\Windows\system32\SLCExt.dll
2009-05-27 23:10:40 ----A---- C:\Windows\system32\SLsvc.exe
2009-05-27 23:10:38 ----A---- C:\Windows\system32\FunctionDiscoveryFolder.dll
2009-05-27 23:10:38 ----A---- C:\Windows\system32\DevicePairingWizard.exe
2009-05-27 23:10:35 ----A---- C:\Windows\system32\NlsLexicons0009.dll
2009-05-27 23:10:33 ----A---- C:\Windows\system32\mssrch.dll
2009-05-27 23:10:30 ----A---- C:\Windows\system32\tquery.dll
2009-05-27 23:10:29 ----A---- C:\Windows\system32\PresentationNative_v0300.dll
2009-05-27 23:10:28 ----A---- C:\Windows\system32\RMActivate_isv.exe
2009-05-27 23:10:28 ----A---- C:\Windows\system32\lsasrv.dll
2009-05-27 23:10:27 ----A---- C:\Windows\system32\scavenge.dll
2009-05-27 23:10:27 ----A---- C:\Windows\system32\RMActivate.exe
2009-05-27 23:10:26 ----A---- C:\Windows\system32\msi.dll
2009-05-27 23:10:24 ----A---- C:\Windows\system32\imapi2fs.dll
2009-05-27 23:10:23 ----A---- C:\Windows\system32\WscEapPr.dll
2009-05-27 23:10:23 ----A---- C:\Windows\system32\wcnwiz2.dll
2009-05-27 23:10:23 ----A---- C:\Windows\system32\sysmain.dll
2009-05-27 23:10:23 ----A---- C:\Windows\system32\secproc_isv.dll
2009-05-27 23:10:21 ----A---- C:\Windows\system32\mf.dll
2009-05-27 23:10:21 ----A---- C:\Windows\system32\icardagt.exe
2009-05-27 23:10:20 ----A---- C:\Windows\system32\EhStorShell.dll
2009-05-27 23:10:19 ----A---- C:\Windows\system32\spreview.exe
2009-05-27 23:10:18 ----A---- C:\Windows\system32\spinstall.exe
2009-05-27 23:10:18 ----A---- C:\Windows\system32\drmv2clt.dll
2009-05-27 23:10:17 ----A---- C:\Windows\system32\spwizui.dll
2009-05-27 23:10:17 ----A---- C:\Windows\system32\secproc.dll
2009-05-27 23:10:17 ----A---- C:\Windows\system32\mcupdate_GenuineIntel.dll
2009-05-27 23:10:16 ----A---- C:\Windows\system32\shell32.dll
2009-05-27 23:10:15 ----A---- C:\Windows\system32\SearchIndexer.exe
2009-05-27 23:10:15 ----A---- C:\Windows\system32\p2psvc.dll
2009-05-27 23:10:15 ----A---- C:\Windows\system32\mssvp.dll
2009-05-27 23:10:14 ----A---- C:\Windows\system32\mssphtb.dll
2009-05-27 23:10:14 ----A---- C:\Windows\system32\mssph.dll
2009-05-27 23:10:14 ----A---- C:\Windows\system32\mscoree.dll
2009-05-27 23:10:14 ----A---- C:\Windows\system32\imapi2.dll
2009-05-27 23:10:12 ----A---- C:\Windows\system32\sdohlp.dll
2009-05-27 23:10:12 ----A---- C:\Windows\system32\ntkrnlpa.exe
2009-05-27 23:10:11 ----A---- C:\Windows\system32\IMJP10K.DLL
2009-05-27 23:10:11 ----A---- C:\Windows\system32\esent.dll
2009-05-27 23:10:10 ----A---- C:\Windows\system32\DevicePairing.dll
2009-05-27 23:10:09 ----A---- C:\Windows\system32\wevtsvc.dll
2009-05-27 23:10:09 ----A---- C:\Windows\system32\sperror.dll
2009-05-27 23:10:09 ----A---- C:\Windows\system32\RMActivate_ssp.exe
2009-05-27 23:10:09 ----A---- C:\Windows\system32\korwbrkr.dll
2009-05-27 23:10:08 ----A---- C:\Windows\system32\SLC.dll
2009-05-27 23:10:08 ----A---- C:\Windows\system32\RMActivate_ssp_isv.exe
2009-05-27 23:10:08 ----A---- C:\Windows\system32\PresentationHostProxy.dll
2009-05-27 23:10:08 ----A---- C:\Windows\system32\IasMigReader.exe
2009-05-27 23:10:07 ----A---- C:\Windows\system32\wmp.dll
2009-05-27 23:10:07 ----A---- C:\Windows\system32\msshsq.dll
2009-05-27 23:10:06 ----A---- C:\Windows\system32\WMVCORE.DLL
2009-05-27 23:10:06 ----A---- C:\Windows\system32\msjet40.dll
2009-05-27 23:10:05 ----A---- C:\Windows\system32\ntoskrnl.exe
2009-05-27 23:10:05 ----A---- C:\Windows\system32\MPSSVC.dll
2009-05-27 23:10:04 ----A---- C:\Windows\system32\msxml6.dll
2009-05-27 23:10:03 ----A---- C:\Windows\system32\Query.dll
2009-05-27 23:10:03 ----A---- C:\Windows\system32\qmgr.dll
2009-05-27 23:10:02 ----A---- C:\Windows\system32\P2PGraph.dll
2009-05-27 23:10:02 ----A---- C:\Windows\system32\msexch40.dll
2009-05-27 23:10:02 ----A---- C:\Windows\system32\diagperf.dll
2009-05-27 23:10:01 ----A---- C:\Windows\system32\ole32.dll
2009-05-27 23:10:01 ----A---- C:\Windows\system32\ntdll.dll
2009-05-27 23:10:00 ----A---- C:\Windows\system32\winload.exe
2009-05-27 23:10:00 ----A---- C:\Windows\system32\srchadmin.dll
2009-05-27 23:10:00 ----A---- C:\Windows\system32\msxml3.dll
2009-05-27 23:10:00 ----A---- C:\Windows\system32\mblctr.exe
2009-05-27 23:09:59 ----A---- C:\Windows\system32\uDWM.dll
2009-05-27 23:09:59 ----A---- C:\Windows\system32\mmc.exe
2009-05-27 23:09:59 ----A---- C:\Windows\system32\EncDec.dll
2009-05-27 23:09:59 ----A---- C:\Windows\system32\dfsr.exe
2009-05-27 23:09:58 ----A---- C:\Windows\system32\riched20.dll
2009-05-27 23:09:58 ----A---- C:\Windows\system32\IasMigPlugin.dll
2009-05-27 23:09:57 ----A---- C:\Windows\system32\fdBth.dll
2009-05-27 23:09:56 ----A---- C:\Windows\system32\RacEngn.dll
2009-05-27 23:09:54 ----A---- C:\Windows\system32\kernel32.dll
2009-05-27 23:09:53 ----A---- C:\Windows\system32\SearchProtocolHost.exe
2009-05-27 23:09:53 ----A---- C:\Windows\system32\SearchFilterHost.exe
2009-05-27 23:09:51 ----A---- C:\Windows\system32\milcore.dll
2009-05-27 23:09:50 ----A---- C:\Windows\system32\spoolss.dll
2009-05-27 23:09:50 ----A---- C:\Windows\system32\schedsvc.dll
2009-05-27 23:09:50 ----A---- C:\Windows\system32\NaturalLanguage6.dll
2009-05-27 23:09:50 ----A---- C:\Windows\system32\EhStorAPI.dll
2009-05-27 23:09:50 ----A---- C:\Windows\system32\CertEnroll.dll
2009-05-27 23:09:48 ----A---- C:\Windows\system32\msvcp60.dll
2009-05-27 23:09:48 ----A---- C:\Windows\system32\msjtes40.dll
2009-05-27 23:09:48 ----A---- C:\Windows\system32\infocardapi.dll
2009-05-27 23:09:48 ----A---- C:\Windows\system32\gpedit.dll
2009-05-27 23:09:47 ----A---- C:\Windows\system32\WinSAT.exe
2009-05-27 23:09:47 ----A---- C:\Windows\system32\es.dll
2009-05-27 23:09:46 ----A---- C:\Windows\system32\mstext40.dll
2009-05-27 23:09:46 ----A---- C:\Windows\system32\Magnify.exe
2009-05-27 23:09:45 ----A---- C:\Windows\system32\WMPhoto.dll
2009-05-27 23:09:45 ----A---- C:\Windows\system32\WebClnt.dll
2009-05-27 23:09:45 ----A---- C:\Windows\system32\msexcl40.dll
2009-05-27 23:09:45 ----A---- C:\Windows\system32\advapi32.dll
2009-05-27 23:09:44 ----A---- C:\Windows\system32\WindowsAnytimeUpgradeCPL.dll
2009-05-27 23:09:44 ----A---- C:\Windows\system32\slwmi.dll
2009-05-27 23:09:44 ----A---- C:\Windows\system32\msxbde40.dll
2009-05-27 23:09:44 ----A---- C:\Windows\system32\comsvcs.dll
2009-05-27 23:09:43 ----A---- C:\Windows\system32\vssapi.dll
2009-05-27 23:09:42 ----A---- C:\Windows\system32\mstscax.dll
2009-05-27 23:09:42 ----A---- C:\Windows\system32\authui.dll
2009-05-27 23:09:41 ----A---- C:\Windows\system32\PresentationHost.exe
2009-05-27 23:09:41 ----A---- C:\Windows\system32\newdev.dll
2009-05-27 23:09:41 ----A---- C:\Windows\system32\msrepl40.dll
2009-05-27 23:09:40 ----A---- C:\Windows\system32\propsys.dll
2009-05-27 23:09:40 ----A---- C:\Windows\system32\PresentationCFFRasterizerNative_v0300.dll
2009-05-27 23:09:40 ----A---- C:\Windows\system32\iasrecst.dll
2009-05-27 23:09:40 ----A---- C:\Windows\system32\gpsvc.dll
2009-05-27 23:09:40 ----A---- C:\Windows\system32\eudcedit.exe
2009-05-27 23:09:40 ----A---- C:\Windows\system32\crypt32.dll
2009-05-27 23:09:39 ----A---- C:\Windows\explorer.exe
2009-05-27 23:09:38 ----A---- C:\Windows\system32\setupapi.dll
2009-05-27 23:09:38 ----A---- C:\Windows\system32\rpcss.dll
2009-05-27 23:09:38 ----A---- C:\Windows\system32\mspbde40.dll
2009-05-27 23:09:37 ----A---- C:\Windows\system32\d3d9.dll
2009-05-27 23:09:36 ----A---- C:\Windows\system32\msltus40.dll
2009-05-27 23:09:36 ----A---- C:\Windows\system32\davclnt.dll
2009-05-27 23:09:35 ----A---- C:\Windows\system32\mfc42.dll
2009-05-27 23:09:34 ----A---- C:\Windows\system32\shlwapi.dll
2009-05-27 23:09:34 ----A---- C:\Windows\system32\EhStorPwdMgr.dll
2009-05-27 23:09:34 ----A---- C:\Windows\system32\EhStorAuthn.dll
2009-05-27 23:09:33 ----A---- C:\Windows\system32\msrd3x40.dll
2009-05-27 23:09:33 ----A---- C:\Windows\system32\msdtctm.dll
2009-05-27 23:09:32 ----A---- C:\Windows\system32\wevtapi.dll
2009-05-27 23:09:32 ----A---- C:\Windows\system32\photowiz.dll
2009-05-27 23:09:32 ----A---- C:\Windows\system32\nlhtml.dll
2009-05-27 23:09:32 ----A---- C:\Windows\system32\browseui.dll
2009-05-27 23:09:30 ----A---- C:\Windows\system32\user32.dll
2009-05-27 23:09:30 ----A---- C:\Windows\system32\samsrv.dll
2009-05-27 23:09:29 ----A---- C:\Windows\system32\win32spl.dll
2009-05-27 23:09:29 ----A---- C:\Windows\system32\quartz.dll
2009-05-27 23:09:29 ----A---- C:\Windows\system32\ci.dll
2009-05-27 23:09:28 ----A---- C:\Windows\system32\WcnNetsh.dll
2009-05-27 23:09:28 ----A---- C:\Windows\system32\SLCommDlg.dll
2009-05-27 23:09:28 ----A---- C:\Windows\system32\printfilterpipelinesvc.exe
2009-05-27 23:09:28 ----A---- C:\Windows\system32\oleaut32.dll
2009-05-27 23:09:28 ----A---- C:\Windows\system32\kerberos.dll
2009-05-27 23:09:27 ----A---- C:\Windows\system32\netshell.dll
2009-05-27 23:09:27 ----A---- C:\Windows\system32\msv1_0.dll
2009-05-27 23:09:27 ----A---- C:\Windows\system32\IKEEXT.DLL
2009-05-27 23:09:27 ----A---- C:\Windows\system32\compcln.exe
2009-05-27 23:09:26 ----A---- C:\Windows\system32\winhttp.dll
2009-05-27 23:09:26 ----A---- C:\Windows\system32\mswstr10.dll
2009-05-27 23:09:26 ----A---- C:\Windows\system32\apds.dll
2009-05-27 23:09:25 ----A---- C:\Windows\system32\xmlfilter.dll
2009-05-27 23:09:25 ----A---- C:\Windows\system32\msctf.dll
2009-05-27 23:09:25 ----A---- C:\Windows\system32\emdmgmt.dll
2009-05-27 23:09:25 ----A---- C:\Windows\system32\audiosrv.dll
2009-05-27 23:09:24 ----A---- C:\Windows\system32\msvcrt.dll
2009-05-27 23:09:23 ----A---- C:\Windows\system32\VSSVC.exe
2009-05-27 23:09:23 ----A---- C:\Windows\system32\QAGENTRT.DLL
2009-05-27 23:09:23 ----A---- C:\Windows\system32\iphlpsvc.dll
2009-05-27 23:09:23 ----A---- C:\Windows\system32\gdi32.dll
2009-05-27 23:09:22 ----A---- C:\Windows\system32\SLUI.exe
2009-05-27 23:09:22 ----A---- C:\Windows\system32\mfc42u.dll
2009-05-27 23:09:22 ----A---- C:\Windows\system32\eapphost.dll
2009-05-27 23:09:21 ----A---- C:\Windows\system32\sqlsrv32.dll
2009-05-27 23:09:21 ----A---- C:\Windows\system32\msrd2x40.dll
2009-05-27 23:09:20 ----A---- C:\Windows\system32\odbc32.dll
2009-05-27 23:09:19 ----A---- C:\Windows\system32\winresume.exe
2009-05-27 23:09:19 ----A---- C:\Windows\system32\shdocvw.dll
2009-05-27 23:09:19 ----A---- C:\Windows\system32\propdefs.dll
2009-05-27 23:09:17 ----A---- C:\Windows\system32\wevtutil.exe
2009-05-27 23:09:17 ----A---- C:\Windows\system32\dbgeng.dll
2009-05-27 23:09:16 ----A---- C:\Windows\system32\mssitlb.dll
2009-05-27 23:09:15 ----A---- C:\Windows\system32\WsmSvc.dll
2009-05-27 23:09:14 ----A---- C:\Windows\system32\swprv.dll
2009-05-27 23:09:14 ----A---- C:\Windows\system32\mmcndmgr.dll
2009-05-27 23:09:13 ----A---- C:\Windows\system32\usp10.dll
2009-05-27 23:09:12 ----A---- C:\Windows\system32\vds.exe
2009-05-27 23:09:12 ----A---- C:\Windows\system32\drvinst.exe
2009-05-27 23:09:12 ----A---- C:\Windows\system32\devmgr.dll
2009-05-27 23:09:11 ----A---- C:\Windows\system32\netlogon.dll
2009-05-27 23:09:11 ----A---- C:\Windows\system32\msscb.dll
2009-05-27 23:09:11 ----A---- C:\Windows\system32\msctfp.dll
2009-05-27 23:09:11 ----A---- C:\Windows\system32\fdBthProxy.dll
2009-05-27 23:09:11 ----A---- C:\Windows\system32\DevicePairingProxy.dll
2009-05-27 23:09:11 ----A---- C:\Windows\system32\adsldpc.dll
2009-05-27 23:09:10 ----A---- C:\Windows\system32\schannel.dll
2009-05-27 23:09:10 ----A---- C:\Windows\system32\evr.dll
2009-05-27 23:09:10 ----A---- C:\Windows\system32\BFE.DLL
2009-05-27 23:09:09 ----A---- C:\Windows\system32\WSDApi.dll
2009-05-27 23:09:09 ----A---- C:\Windows\system32\WMVSDECD.DLL
2009-05-27 23:09:09 ----A---- C:\Windows\system32\Wldap32.dll
2009-05-27 23:09:09 ----A---- C:\Windows\system32\wcnwiz.dll
2009-05-27 23:09:09 ----A---- C:\Windows\system32\PhotoMetadataHandler.dll
2009-05-27 23:09:08 ----A---- C:\Windows\system32\WindowsCodecs.dll
2009-05-27 23:09:07 ----A---- C:\Windows\system32\wercon.exe
2009-05-27 23:09:07 ----A---- C:\Windows\system32\services.exe
2009-05-27 23:09:06 ----A---- C:\Windows\system32\wcncsvc.dll
2009-05-27 23:09:06 ----A---- C:\Windows\system32\mimefilt.dll
2009-05-27 23:09:06 ----A---- C:\Windows\system32\comdlg32.dll
2009-05-27 23:09:06 ----A---- C:\Windows\system32\adtschema.dll
2009-05-27 23:09:05 ----A---- C:\Windows\system32\PortableDeviceApi.dll
2009-05-27 23:09:05 ----A---- C:\Windows\system32\msdtcprx.dll
2009-05-27 23:09:05 ----A---- C:\Windows\system32\msdrm.dll
2009-05-27 23:09:05 ----A---- C:\Windows\system32\certcli.dll
2009-05-27 23:09:04 ----A---- C:\Windows\system32\umpnpmgr.dll
2009-05-27 23:09:04 ----A---- C:\Windows\system32\taskeng.exe
2009-05-27 23:09:04 ----A---- C:\Windows\system32\rtffilt.dll
2009-05-27 23:09:04 ----A---- C:\Windows\system32\reg.exe
2009-05-27 23:09:04 ----A---- C:\Windows\system32\mswdat10.dll
2009-05-27 23:09:04 ----A---- C:\Windows\system32\msjter40.dll
2009-05-27 23:09:04 ----A---- C:\Windows\system32\ipsmsnap.dll
2009-05-27 23:09:04 ----A---- C:\Windows\system32\dnsapi.dll
2009-05-27 23:09:03 ----A---- C:\Windows\system32\certutil.exe
2009-05-27 23:09:02 ----A---- C:\Windows\system32\WMNetMgr.dll
2009-05-27 23:09:02 ----A---- C:\Windows\system32\w32time.dll
2009-05-27 23:09:01 ----A---- C:\Windows\system32\msshooks.dll
2009-05-27 23:09:01 ----A---- C:\Windows\system32\msscntrs.dll
2009-05-27 23:09:01 ----A---- C:\Windows\system32\IPSECSVC.DLL
2009-05-27 23:09:01 ----A---- C:\Windows\system32\bcrypt.dll
2009-05-27 23:09:00 ----A---- C:\Windows\system32\rsaenh.dll
2009-05-27 23:09:00 ----A---- C:\Windows\system32\msihnd.dll
2009-05-27 23:09:00 ----A---- C:\Windows\system32\bthserv.dll
2009-05-27 23:08:59 ----A---- C:\Windows\system32\TsWpfWrp.exe
2009-05-27 23:08:59 ----A---- C:\Windows\system32\netapi32.dll
2009-05-27 23:08:59 ----A---- C:\Windows\system32\msstrc.dll
2009-05-27 23:08:59 ----A---- C:\Windows\system32\MMDevAPI.dll
2009-05-27 23:08:59 ----A---- C:\Windows\system32\inetcomm.dll
2009-05-27 23:08:59 ----A---- C:\Windows\system32\dfshim.dll
2009-05-27 23:08:58 ----A---- C:\Windows\system32\mtxclu.dll
2009-05-27 23:08:58 ----A---- C:\Windows\system32\mscories.dll
2009-05-27 23:08:58 ----A---- C:\Windows\system32\inetpp.dll
2009-05-27 23:08:58 ----A---- C:\Windows\system32\hidserv.dll
2009-05-27 23:08:58 ----A---- C:\Windows\system32\fundisc.dll
2009-05-27 23:08:58 ----A---- C:\Windows\system32\cryptsvc.dll
2009-05-27 23:08:57 ----A---- C:\Windows\system32\wmicmiplugin.dll
2009-05-27 23:08:57 ----A---- C:\Windows\system32\termsrv.dll
2009-05-27 23:08:57 ----A---- C:\Windows\system32\profsvc.dll
2009-05-27 23:08:57 ----A---- C:\Windows\system32\dhcpcsvc6.dll
2009-05-27 23:08:56 ----A---- C:\Windows\system32\gameux.dll
2009-05-27 23:08:55 ----A---- C:\Windows\system32\shsvcs.dll
2009-05-27 23:08:55 ----A---- C:\Windows\system32\msiexec.exe
2009-05-27 23:08:55 ----A---- C:\Windows\system32\imapi.dll
2009-05-27 23:08:54 ----A---- C:\Windows\system32\wdc.dll
2009-05-27 23:08:54 ----A---- C:\Windows\system32\chsbrkr.dll
2009-05-27 23:08:53 ----A---- C:\Windows\system32\rasmans.dll
2009-05-27 23:08:53 ----A---- C:\Windows\system32\pnidui.dll
2009-05-27 23:08:53 ----A---- C:\Windows\system32\iassdo.dll
2009-05-27 23:08:52 ----A---- C:\Windows\system32\spoolsv.exe
2009-05-27 23:08:52 ----A---- C:\Windows\system32\icardres.dll
2009-05-27 23:08:52 ----A---- C:\Windows\system32\autofmt.exe
2009-05-27 23:08:51 ----A---- C:\Windows\system32\wersvc.dll
2009-05-27 23:08:51 ----A---- C:\Windows\system32\slmgr.vbs
2009-05-27 23:08:51 ----A---- C:\Windows\system32\scrrun.dll
2009-05-27 23:08:51 ----A---- C:\Windows\system32\PSHED.DLL
2009-05-27 23:08:50 ----A---- C:\Windows\system32\pdh.dll
2009-05-27 23:08:50 ----A---- C:\Windows\system32\dhcpcsvc.dll
2009-05-27 23:08:50 ----A---- C:\Windows\system32\CertEnrollUI.dll
2009-05-27 23:08:50 ----A---- C:\Windows\system32\azroles.dll
2009-05-27 23:08:49 ----A---- C:\Windows\system32\pidgenx.dll
2009-05-27 23:08:48 ----A---- C:\Windows\system32\wmpmde.dll
2009-05-27 23:08:48 ----A---- C:\Windows\system32\winlogon.exe
2009-05-27 23:08:47 ----A---- C:\Windows\system32\SyncCenter.dll
2009-05-27 23:08:45 ----A---- C:\Windows\system32\SLUINotify.dll
2009-05-27 23:08:45 ----A---- C:\Windows\system32\msjetoledb40.dll
2009-05-27 23:08:45 ----A---- C:\Windows\system32\comuid.dll
2009-05-27 23:08:44 ----A---- C:\Windows\system32\WindowsCodecsExt.dll
2009-05-27 23:08:44 ----A---- C:\Windows\system32\sethc.exe
2009-05-27 23:08:44 ----A---- C:\Windows\system32\ncrypt.dll
2009-05-27 23:08:44 ----A---- C:\Windows\system32\kd1394.dll
2009-05-27 23:08:44 ----A---- C:\Windows\system32\certmgr.dll
2009-05-27 23:08:43 ----A---- C:\Windows\system32\wisptis.exe
2009-05-27 23:08:43 ----A---- C:\Windows\system32\untfs.dll
2009-05-27 23:08:43 ----A---- C:\Windows\system32\spp.dll
2009-05-27 23:08:43 ----A---- C:\Windows\system32\scrobj.dll
2009-05-27 23:08:43 ----A---- C:\Windows\system32\rtutils.dll
2009-05-27 23:08:43 ----A---- C:\Windows\system32\iassam.dll
2009-05-27 23:08:42 ----A---- C:\Windows\system32\taskcomp.dll
2009-05-27 23:08:42 ----A---- C:\Windows\system32\dwm.exe
2009-05-27 23:08:42 ----A---- C:\Windows\system32\autochk.exe
2009-05-27 23:08:41 ----A---- C:\Windows\system32\iasnap.dll
2009-05-27 23:08:40 ----A---- C:\Windows\system32\printui.dll
2009-05-27 23:08:40 ----A---- C:\Windows\system32\autoconv.exe
2009-05-27 23:08:39 ----A---- C:\Windows\system32\winsrv.dll
2009-05-27 23:08:39 ----A---- C:\Windows\system32\onex.dll
2009-05-27 23:08:39 ----A---- C:\Windows\system32\kdcom.dll
2009-05-27 23:08:39 ----A---- C:\Windows\system32\cscript.exe
2009-05-27 23:08:39 ----A---- C:\Windows\system32\basecsp.dll
2009-05-27 23:08:38 ----A---- C:\Windows\system32\wow32.dll
2009-05-27 23:08:38 ----A---- C:\Windows\system32\userenv.dll
2009-05-27 23:08:38 ----A---- C:\Windows\system32\osk.exe
2009-05-27 23:08:38 ----A---- C:\Windows\system32\mswsock.dll
2009-05-27 23:08:38 ----A---- C:\Windows\system32\audiodg.exe
2009-05-27 23:08:36 ----A---- C:\Windows\system32\spcmsg.dll
2009-05-27 23:08:36 ----A---- C:\Windows\system32\RelMon.dll
2009-05-27 23:08:36 ----A---- C:\Windows\system32\kdusb.dll
2009-05-27 23:08:35 ----A---- C:\Windows\system32\winmm.dll
2009-05-27 23:08:34 ----A---- C:\Windows\system32\rdpencom.dll
2009-05-27 23:08:33 ----A---- C:\Windows\system32\WinSCard.dll
2009-05-27 23:08:33 ----A---- C:\Windows\system32\msftedit.dll
2009-05-27 23:08:32 ----A---- C:\Windows\system32\WerFaultSecure.exe
2009-05-27 23:08:32 ----A---- C:\Windows\system32\offfilt.dll
2009-05-27 23:08:31 ----A---- C:\Windows\system32\dnsrslvr.dll
2009-05-27 23:08:30 ----A---- C:\Windows\system32\wsepno.dll
2009-05-27 23:08:30 ----A---- C:\Windows\system32\WerFault.exe
2009-05-27 23:08:30 ----A---- C:\Windows\system32\Utilman.exe
2009-05-27 23:08:30 ----A---- C:\Windows\system32\stobject.dll
2009-05-27 23:08:30 ----A---- C:\Windows\system32\secproc_ssp_isv.dll
2009-05-27 23:08:30 ----A---- C:\Windows\system32\secproc_ssp.dll
2009-05-27 23:08:29 ----A---- C:\Windows\system32\SndVol.exe
2009-05-27 23:08:29 ----A---- C:\Windows\system32\mscms.dll
2009-05-27 23:08:29 ----A---- C:\Windows\system32\mfplat.dll
2009-05-27 23:08:29 ----A---- C:\Windows\system32\diskraid.exe
2009-05-27 23:08:29 ----A---- C:\Windows\system32\apphelp.dll
2009-05-27 23:08:28 ----A---- C:\Windows\system32\wiaservc.dll
2009-05-27 23:08:28 ----A---- C:\Windows\system32\sysclass.dll
2009-05-27 23:08:28 ----A---- C:\Windows\system32\prnntfy.dll
2009-05-27 23:08:28 ----A---- C:\Windows\system32\msnetobj.dll
2009-05-27 23:08:28 ----A---- C:\Windows\system32\adsmsext.dll
2009-05-27 23:08:27 ----A---- C:\Windows\system32\wscript.exe
2009-05-27 23:08:27 ----A---- C:\Windows\system32\ulib.dll
2009-05-27 23:08:27 ----A---- C:\Windows\system32\secur32.dll
2009-05-27 23:08:27 ----A---- C:\Windows\system32\odbccp32.dll
2009-05-27 23:08:27 ----A---- C:\Windows\system32\iasdatastore.dll
2009-05-27 23:08:26 ----A---- C:\Windows\system32\wscntfy.dll
2009-05-27 23:08:26 ----A---- C:\Windows\system32\rastapi.dll
2009-05-27 23:08:26 ----A---- C:\Windows\system32\IPHLPAPI.DLL
2009-05-27 23:08:26 ----A---- C:\Windows\system32\dsound.dll
2009-05-27 23:08:26 ----A---- C:\Windows\system32\cryptui.dll
2009-05-27 23:08:25 ----A---- C:\Windows\system32\wlansvc.dll
2009-05-27 23:08:25 ----A---- C:\Windows\system32\wlangpui.dll
2009-05-27 23:08:25 ----A---- C:\Windows\system32\pnpsetup.dll
2009-05-27 23:08:25 ----A---- C:\Windows\system32\ipsecsnp.dll
2009-05-27 23:08:25 ----A---- C:\Windows\system32\fdProxy.dll
2009-05-27 23:08:25 ----A---- C:\Windows\system32\brcpl.dll
2009-05-27 23:08:24 ----A---- C:\Windows\system32\wscsvc.dll
2009-05-27 23:08:24 ----A---- C:\Windows\system32\vdsdyn.dll
2009-05-27 23:08:24 ----A---- C:\Windows\system32\rastls.dll
2009-05-27 23:08:24 ----A---- C:\Windows\system32\netiohlp.dll
2009-05-27 23:08:24 ----A---- C:\Windows\system32\logman.exe
2009-05-27 23:08:24 ----A---- C:\Windows\system32\iashlpr.dll
2009-05-27 23:08:24 ----A---- C:\Windows\system32\gpapi.dll
2009-05-27 23:08:24 ----A---- C:\Windows\system32\diskpart.exe
2009-05-27 23:08:23 ----A---- C:\Windows\system32\WMVENCOD.DLL
2009-05-27 23:08:23 ----A---- C:\Windows\system32\rasapi32.dll
2009-05-27 23:08:22 ----A---- C:\Windows\system32\regsvc.dll
2009-05-27 23:08:22 ----A---- C:\Windows\system32\ntprint.dll
2009-05-27 23:08:22 ----A---- C:\Windows\system32\mscorier.dll
2009-05-27 23:08:21 ----A---- C:\Windows\system32\wusa.exe
2009-05-27 23:08:21 ----A---- C:\Windows\system32\iasrad.dll
2009-05-27 23:08:21 ----A---- C:\Windows\system32\findstr.exe
2009-05-27 23:08:20 ----A---- C:\Windows\system32\zipfldr.dll
2009-05-27 23:08:20 ----A---- C:\Windows\system32\wshext.dll
2009-05-27 23:08:20 ----A---- C:\Windows\system32\wpccpl.dll
2009-05-27 23:08:20 ----A---- C:\Windows\system32\netcenter.dll
2009-05-27 23:08:19 ----A---- C:\Windows\system32\wer.dll
2009-05-27 23:08:19 ----A---- C:\Windows\system32\rasdlg.dll
2009-05-27 23:08:19 ----A---- C:\Windows\system32\iassvcs.dll
2009-05-27 23:08:18 ----A---- C:\Windows\system32\wsnmp32.dll
2009-05-27 23:08:18 ----A---- C:\Windows\system32\themecpl.dll
2009-05-27 23:08:16 ----A---- C:\Windows\system32\uxsms.dll
2009-05-27 23:08:16 ----A---- C:\Windows\system32\tsbyuv.dll
2009-05-27 23:08:16 ----A---- C:\Windows\system32\srvsvc.dll
2009-05-27 23:08:16 ----A---- C:\Windows\system32\mssprxy.dll
2009-05-27 23:08:15 ----A---- C:\Windows\system32\slcc.dll
2009-05-27 23:08:15 ----A---- C:\Windows\system32\scansetting.dll
2009-05-27 23:08:15 ----A---- C:\Windows\system32\ntmarta.dll
2009-05-27 23:08:15 ----A---- C:\Windows\system32\msutb.dll
2009-05-27 23:08:15 ----A---- C:\Windows\system32\mstlsapi.dll
2009-05-27 23:08:15 ----A---- C:\Windows\system32\iasads.dll
2009-05-27 23:08:14 ----A---- C:\Windows\system32\powrprof.dll
2009-05-27 23:08:14 ----A---- C:\Windows\system32\mstsc.exe
2009-05-27 23:08:13 ----A---- C:\Windows\system32\networkmap.dll
2009-05-27 23:08:13 ----A---- C:\Windows\system32\iasacct.dll
2009-05-27 23:08:12 ----A---- C:\Windows\system32\powercpl.dll
2009-05-27 23:08:12 ----A---- C:\Windows\system32\PerfCenterCPL.dll
2009-05-27 23:08:11 ----A---- C:\Windows\system32\wlanhlp.dll
2009-05-27 23:08:11 ----A---- C:\Windows\system32\newdev.exe
2009-05-27 23:08:11 ----A---- C:\Windows\system32\connect.dll
2009-05-27 23:08:11 ----A---- C:\Windows\system32\authz.dll
2009-05-27 23:08:10 ----A---- C:\Windows\system32\sud.dll
2009-05-27 23:08:10 ----A---- C:\Windows\system32\dot3svc.dll
2009-05-27 23:08:08 ----A---- C:\Windows\system32\systemcpl.dll
2009-05-27 23:08:07 ----A---- C:\Windows\system32\themeui.dll
2009-05-27 23:08:07 ----A---- C:\Windows\system32\pcaui.dll
2009-05-27 23:08:06 ----A---- C:\Windows\system32\accessibilitycpl.dll
2009-05-27 23:08:05 ----A---- C:\Windows\system32\usercpl.dll
2009-05-27 23:08:05 ----A---- C:\Windows\system32\samlib.dll
2009-05-27 23:08:05 ----A---- C:\Windows\system32\mmci.dll
2009-05-27 23:08:05 ----A---- C:\Windows\system32\autoplay.dll
2009-05-27 23:08:04 ----A---- C:\Windows\system32\wlanpref.dll
2009-05-27 23:08:04 ----A---- C:\Windows\system32\qdvd.dll
2009-05-27 23:08:03 ----A---- C:\Windows\system32\rpchttp.dll
2009-05-27 23:08:03 ----A---- C:\Windows\system32\regapi.dll
2009-05-27 23:08:02 ----A---- C:\Windows\system32\wpcao.dll
2009-05-27 23:08:02 ----A---- C:\Windows\system32\vdsutil.dll
2009-05-27 23:08:02 ----A---- C:\Windows\system32\tapisrv.dll
2009-05-27 23:08:02 ----A---- C:\Windows\system32\msinfo32.exe
2009-05-27 23:08:01 ----A---- C:\Windows\system32\scksp.dll
2009-05-27 23:08:01 ----A---- C:\Windows\system32\scesrv.dll
2009-05-27 23:08:01 ----A---- C:\Windows\system32\psisdecd.dll
2009-05-27 23:08:01 ----A---- C:\Windows\system32\oleprn.dll
2009-05-27 23:08:01 ----A---- C:\Windows\system32\mpr.dll
2009-05-27 23:08:01 ----A---- C:\Windows\system32\feclient.dll
2009-05-27 23:08:00 ----A---- C:\Windows\system32\rekeywiz.exe
2009-05-27 23:08:00 ----A---- C:\Windows\system32\imm32.dll
2009-05-27 23:08:00 ----A---- C:\Windows\system32\Faultrep.dll
2009-05-27 23:08:00 ----A---- C:\Windows\system32\dot3msm.dll
2009-05-27 23:08:00 ----A---- C:\Windows\system32\AudioSes.dll
2009-05-27 23:07:59 ----A---- C:\Windows\system32\wscisvif.dll
2009-05-27 23:07:59 ----A---- C:\Windows\system32\sdclt.exe
2009-05-27 23:07:59 ----A---- C:\Windows\system32\iaspolcy.dll
2009-05-27 23:07:59 ----A---- C:\Windows\system32\dpapimig.exe
2009-05-27 23:07:59 ----A---- C:\Windows\system32\DeviceEject.exe
2009-05-27 23:07:58 ----A---- C:\Windows\system32\qedit.dll
2009-05-27 23:07:58 ----A---- C:\Windows\system32\pnpui.dll
2009-05-27 23:07:58 ----A---- C:\Windows\system32\perfdisk.dll
2009-05-27 23:07:58 ----A---- C:\Windows\system32\ncryptui.dll
2009-05-27 23:07:58 ----A---- C:\Windows\system32\hdwwiz.exe
2009-05-27 23:07:58 ----A---- C:\Windows\system32\certreq.exe
2009-05-27 23:07:57 ----A---- C:\Windows\system32\TSTheme.exe
2009-05-27 23:07:57 ----A---- C:\Windows\system32\SmartcardCredentialProvider.dll
2009-05-27 23:07:57 ----A---- C:\Windows\system32\scecli.dll
2009-05-27 23:07:57 ----A---- C:\Windows\system32\rasplap.dll
2009-05-27 23:07:57 ----A---- C:\Windows\system32\rasgcw.dll
2009-05-27 23:07:57 ----A---- C:\Windows\system32\FWPUCLNT.DLL
2009-05-27 23:07:56 ----A---- C:\Windows\system32\tcpipcfg.dll
2009-05-27 23:07:56 ----A---- C:\Windows\system32\spwinsat.dll
2009-05-27 23:07:55 ----A---- C:\Windows\system32\whealogr.dll
2009-05-27 23:07:55 ----A---- C:\Windows\system32\tcpmon.dll
2009-05-27 23:07:55 ----A---- C:\Windows\system32\PnPUnattend.exe
2009-05-27 23:07:55 ----A---- C:\Windows\system32\fdWSD.dll
2009-05-27 23:07:55 ----A---- C:\Windows\system32\cmmon32.exe
2009-05-27 23:07:54 ----A---- C:\Windows\system32\srcore.dll
2009-05-27 23:07:54 ----A---- C:\Windows\system32\SCardSvr.dll
2009-05-27 23:07:54 ----A---- C:\Windows\system32\raschap.dll
2009-05-27 23:07:54 ----A---- C:\Windows\system32\fontext.dll
2009-05-27 23:07:54 ----A---- C:\Windows\system32\conime.exe
2009-05-27 23:07:54 ----A---- C:\Windows\system32\cmdial32.dll
2009-05-27 23:07:53 ----A---- C:\Windows\system32\WMVXENCD.DLL
2009-05-27 23:07:53 ----A---- C:\Windows\system32\wlanui.dll
2009-05-27 23:07:53 ----A---- C:\Windows\system32\wiaaut.dll
2009-05-27 23:07:53 ----A---- C:\Windows\system32\MSVidCtl.dll
2009-05-27 23:07:52 ----A---- C:\Windows\system32\wlanmsm.dll
2009-05-27 23:07:52 ----A---- C:\Windows\system32\shwebsvc.dll
2009-05-27 23:07:52 ----A---- C:\Windows\system32\rasppp.dll
2009-05-27 23:07:52 ----A---- C:\Windows\system32\PnPutil.exe
2009-05-27 23:07:52 ----A---- C:\Windows\system32\dsprop.dll
2009-05-27 23:07:52 ----A---- C:\Windows\system32\dimsroam.dll
2009-05-27 23:07:51 ----A---- C:\Windows\system32\oobefldr.dll
2009-05-27 23:07:50 ----A---- C:\Windows\system32\shsetup.dll
2009-05-27 23:07:50 ----A---- C:\Windows\system32\rasmontr.dll
2009-05-27 23:07:50 ----A---- C:\Windows\system32\modemui.dll
2009-05-27 23:07:49 ----A---- C:\Windows\system32\wmdrmsdk.dll
2009-05-27 23:07:49 ----A---- C:\Windows\system32\mscandui.dll
2009-05-27 23:07:49 ----A---- C:\Windows\system32\dataclen.dll
2009-05-27 23:07:49 ----A---- C:\Windows\system32\chtbrkr.dll
2009-05-27 23:07:48 ----A---- C:\Windows\system32\wlgpclnt.dll
2009-05-27 23:07:48 ----A---- C:\Windows\system32\smss.exe
2009-05-27 23:07:48 ----A---- C:\Windows\system32\rdpwsx.dll
2009-05-27 23:07:48 ----A---- C:\Windows\system32\credui.dll
2009-05-27 23:07:48 ----A---- C:\Windows\system32\blackbox.dll
2009-05-27 23:07:47 ----A---- C:\Windows\system32\WSDMon.dll
2009-05-27 23:07:47 ----A---- C:\Windows\system32\wmpeffects.dll
2009-05-27 23:07:47 ----A---- C:\Windows\system32\netplwiz.dll
2009-05-27 23:07:46 ----A---- C:\Windows\system32\networkexplorer.dll
2009-05-27 23:07:46 ----A---- C:\Windows\system32\certprop.dll
2009-05-27 23:07:45 ----A---- C:\Windows\system32\wscapi.dll
2009-05-27 23:07:45 ----A---- C:\Windows\system32\wpcsvc.dll
2009-05-27 23:07:45 ----A---- C:\Windows\system32\msscp.dll
2009-05-27 23:07:45 ----A---- C:\Windows\system32\msimtf.dll
2009-05-27 23:07:45 ----A---- C:\Windows\system32\logagent.exe
2009-05-27 23:07:45 ----A---- C:\Windows\system32\InkEd.dll
2009-05-27 23:07:45 ----A---- C:\Windows\system32\ifmon.dll
2009-05-27 23:07:45 ----A---- C:\Windows\system32\gpresult.exe
2009-05-27 23:07:45 ----A---- C:\Windows\system32\cipher.exe
2009-05-27 23:07:44 ----A---- C:\Windows\system32\thawbrkr.dll
2009-05-27 23:07:44 ----A---- C:\Windows\system32\sendmail.dll
2009-05-27 23:07:43 ----A---- C:\Windows\system32\softkbd.dll
2009-05-27 23:07:43 ----A---- C:\Windows\system32\olepro32.dll
2009-05-27 23:07:43 ----A---- C:\Windows\system32\msctfui.dll
2009-05-27 23:07:43 ----A---- C:\Windows\system32\MediaMetadataHandler.dll
2009-05-27 23:07:43 ----A---- C:\Windows\system32\dmsynth.dll
2009-05-27 23:07:43 ----A---- C:\Windows\system32\Apphlpdm.dll
2009-05-27 23:07:42 ----A---- C:\Windows\system32\puiapi.dll
2009-05-27 23:07:42 ----A---- C:\Windows\system32\input.dll
2009-05-27 23:07:42 ----A---- C:\Windows\system32\drmmgrtn.dll
2009-05-27 23:07:42 ----A---- C:\Windows\system32\cdd.dll
2009-05-27 23:07:41 ----A---- C:\Windows\system32\wshbth.dll
2009-05-27 23:07:41 ----A---- C:\Windows\system32\version.dll
2009-05-27 23:07:41 ----A---- C:\Windows\system32\SLLUA.exe
2009-05-27 23:07:41 ----A---- C:\Windows\system32\msisip.dll
2009-05-27 23:07:41 ----A---- C:\Windows\system32\mprapi.dll
2009-05-27 23:07:41 ----A---- C:\Windows\system32\ExplorerFrame.dll
2009-05-27 23:07:40 ----A---- C:\Windows\system32\fc.exe
2009-05-27 23:07:39 ----A---- C:\Windows\system32\MsCtfMonitor.dll
2009-05-27 23:07:39 ----A---- C:\Windows\system32\fdSSDP.dll
2009-05-27 23:07:39 ----A---- C:\Windows\system32\dmusic.dll
2009-05-27 23:07:38 ----A---- C:\Windows\system32\printfilterpipelineprxy.dll
2009-05-27 23:07:38 ----A---- C:\Windows\system32\PortableDeviceClassExtension.dll
2009-05-27 23:07:38 ----A---- C:\Windows\system32\msjint40.dll
2009-05-27 23:07:38 ----A---- C:\Windows\system32\l2nacp.dll
2009-05-27 23:07:38 ----A---- C:\Windows\system32\ftp.exe
2009-05-27 23:07:38 ----A---- C:\Windows\system32\eapp3hst.dll
2009-05-27 23:07:38 ----A---- C:\Windows\system32\cscdll.dll
2009-05-27 23:07:38 ----A---- C:\Windows\system32\cscapi.dll
2009-05-27 23:07:37 ----A---- C:\Windows\system32\wsdchngr.dll
2009-05-27 23:07:37 ----A---- C:\Windows\system32\SMBHelperClass.dll
2009-05-27 23:07:37 ----A---- C:\Windows\system32\rrinstaller.exe
2009-05-27 23:07:37 ----A---- C:\Windows\system32\PortableDeviceTypes.dll
2009-05-27 23:07:37 ----A---- C:\Windows\system32\bthci.dll
2009-05-27 23:07:36 ----A---- C:\Windows\system32\Storprop.dll
2009-05-27 23:07:36 ----A---- C:\Windows\system32\rasdial.exe
2009-05-27 23:07:36 ----A---- C:\Windows\system32\rasdiag.dll
2009-05-27 23:07:36 ----A---- C:\Windows\system32\fdWCN.dll
2009-05-27 23:07:36 ----A---- C:\Windows\system32\dot3cfg.dll
2009-05-27 23:07:36 ----A---- C:\Windows\system32\bthudtask.exe
2009-05-27 23:07:35 ----A---- C:\Windows\system32\tscupgrd.exe
2009-05-27 23:07:35 ----A---- C:\Windows\system32\slcinst.dll
2009-05-27 23:07:35 ----A---- C:\Windows\system32\networkitemfactory.dll
2009-05-27 23:07:35 ----A---- C:\Windows\system32\mfps.dll
2009-05-27 23:07:35 ----A---- C:\Windows\system32\ipconfig.exe
2009-05-27 23:07:35 ----A---- C:\Windows\system32\eappcfg.dll
2009-05-27 23:07:35 ----A---- C:\Windows\system32\CHxReadingStringIME.dll
2009-05-27 23:07:35 ----A---- C:\Windows\system32\aaclient.dll
2009-05-27 23:07:34 ----A---- C:\Windows\system32\ocsetup.exe
2009-05-27 23:07:34 ----A---- C:\Windows\system32\nslookup.exe
2009-05-27 23:07:34 ----A---- C:\Windows\system32\FwRemoteSvr.dll
2009-05-27 23:07:34 ----A---- C:\Windows\system32\eappgnui.dll
2009-05-27 23:07:33 ----A---- C:\Windows\system32\hbaapi.dll
2009-05-27 23:07:33 ----A---- C:\Windows\system32\fdeploy.dll
2009-05-27 23:07:32 ----A---- C:\Windows\system32\mmcico.dll
2009-05-27 23:07:32 ----A---- C:\Windows\system32\mfpmp.exe
2009-05-27 23:07:31 ----A---- C:\Windows\system32\tsgqec.dll
2009-05-27 23:07:31 ----A---- C:\Windows\system32\PNPXAssoc.dll
2009-05-27 23:07:31 ----A---- C:\Windows\system32\gpupdate.exe
2009-05-27 23:07:30 ----A---- C:\Windows\system32\atmlib.dll
2009-05-27 23:07:29 ----A---- C:\Windows\system32\csrstub.exe
2009-05-27 23:07:29 ----A---- C:\Windows\system32\cbsra.exe
2009-05-27 23:07:29 ----A---- C:\Windows\system32\bitsigd.dll
2009-05-27 23:07:28 ----A---- C:\Windows\system32\NcdProp.dll
2009-05-27 23:07:28 ----A---- C:\Windows\system32\iscsilog.dll
2009-05-27 23:07:26 ----A---- C:\Windows\system32\vdmdbg.dll
2009-05-27 23:07:26 ----A---- C:\Windows\system32\slwga.dll
2009-05-27 23:07:26 ----A---- C:\Windows\system32\odbcconf.dll
2009-05-27 23:07:26 ----A---- C:\Windows\system32\inetppui.dll
2009-05-27 23:07:25 ----A---- C:\Windows\system32\winrnr.dll
2009-05-27 23:07:25 ----A---- C:\Windows\system32\midimap.dll
2009-05-27 23:07:24 ----A---- C:\Windows\system32\atmfd.dll
2009-05-27 23:07:21 ----A---- C:\Windows\system32\spwmp.dll
2009-05-27 23:07:21 ----A---- C:\Windows\system32\dxmasf.dll
2009-05-27 23:07:20 ----A---- C:\Windows\system32\wmploc.DLL
2009-05-27 23:07:19 ----A---- C:\Windows\system32\msimsg.dll
2009-05-27 23:07:19 ----A---- C:\Windows\system32\f3ahvoas.dll
2009-05-27 23:07:18 ----A---- C:\Windows\system32\mferror.dll
2009-05-27 23:06:28 ----A---- C:\Windows\system32\SmiEngine.dll
2009-05-27 23:06:22 ----A---- C:\Windows\system32\wdscore.dll
2009-05-27 23:06:22 ----A---- C:\Windows\system32\PkgMgr.exe
2009-05-27 23:06:06 ----A---- C:\Windows\system32\drvstore.dll
2009-05-26 18:05:10 ----D---- C:\Program Files\NOS
2009-05-26 18:03:32 ----D---- C:\Program Files\Midnight Racing
======List of files/folders modified in the last 1 months======
2009-06-19 20:19:45 ----D---- C:\Program Files\Trend Micro
2009-06-19 20:19:32 ----D---- C:\Windows\Prefetch
2009-06-19 20:19:26 ----D---- C:\Windows\Temp
2009-06-19 19:38:25 ----D---- C:\Windows\System32
2009-06-19 17:10:49 ----D---- C:\Windows\Tasks
2009-06-19 16:03:16 ----D---- C:\ProgramData\Google Updater
2009-06-19 00:15:40 ----RD---- C:\Program Files
2009-06-19 00:05:07 ----HD---- C:\ProgramData
2009-06-19 00:01:46 ----D---- C:\Program Files\Spybot - Search & Destroy
2009-06-19 00:01:30 ----D---- C:\ProgramData\Spybot - Search & Destroy
2009-06-18 23:29:13 ----SHD---- C:\System Volume Information
2009-06-18 22:44:00 ----D---- C:\Windows
2009-06-18 22:38:29 ----D---- C:\Windows\tracing
2009-06-18 19:28:26 ----D---- C:\Program Files\Ad-remover
2009-06-18 17:59:51 ----D---- C:\Windows\system32\drivers
2009-06-18 14:22:27 ----D---- C:\Program Files\Mozilla Firefox 3.1 Beta 2
2009-06-18 12:27:55 ----D---- C:\Program Files\Common Files
2009-06-18 11:24:53 ----SHD---- C:\Windows\Installer
2009-06-18 03:00:32 ----D---- C:\Users\be\AppData\Roaming\Real
2009-06-18 02:51:15 ----D---- C:\Program Files\Common Files\Real
2009-06-18 00:00:55 ----SD---- C:\Users\be\AppData\Roaming\Microsoft
2009-06-17 23:41:23 ----D---- C:\Windows\system32\catroot2
2009-06-17 23:40:31 ----D---- C:\Program Files\myBabylon
2009-06-17 23:40:31 ----D---- C:\Program Files\Conduit
2009-06-17 23:37:31 ----A---- C:\Windows\_MSRSTRT.EXE
2009-06-17 22:23:36 ----D---- C:\ProgramData\Google
2009-06-17 22:23:36 ----D---- C:\Program Files\Google
2009-06-12 15:09:46 ----D---- C:\Windows\Debug
2009-06-10 13:34:58 ----D---- C:\Windows\system32\migration
2009-06-10 13:34:58 ----D---- C:\Program Files\Internet Explorer
2009-06-10 13:32:25 ----D---- C:\Windows\winsxs
2009-06-10 13:28:07 ----D---- C:\Windows\system32\catroot
2009-06-08 17:06:21 ----A---- C:\Windows\system32\PerfStringBackup.INI
2009-06-08 17:06:20 ----D---- C:\Windows\inf
2009-06-07 21:57:11 ----SD---- C:\Windows\Downloaded Program Files
2009-06-06 22:03:38 ----RSD---- C:\Windows\assembly
2009-06-06 21:58:18 ----RSD---- C:\Windows\Fonts
2009-06-05 00:00:51 ----D---- C:\Users\be\AppData\Roaming\skypePM
2009-06-04 22:47:49 ----D---- C:\Users\be\AppData\Roaming\Skype
2009-06-04 04:01:55 ----D---- C:\Program Files\Messenger Plus! Live
2009-06-03 19:47:59 ----D---- C:\Program Files\Malwarebytes' Anti-Malware
2009-06-02 12:24:31 ----D---- C:\Windows\system32\Tasks
2009-06-01 18:51:12 ----A---- C:\Windows\system32\mrt.exe
2009-05-28 11:24:47 ----D---- C:\Windows\Microsoft.NET
2009-05-28 11:17:45 ----D---- C:\Windows\rescache
2009-05-28 10:59:43 ----SHD---- C:\Boot
2009-05-28 10:51:13 ----D---- C:\Program Files\Windows Mail
2009-05-28 10:51:13 ----D---- C:\Program Files\Windows Calendar
2009-05-28 10:51:13 ----D---- C:\Program Files\Movie Maker
2009-05-28 10:51:12 ----D---- C:\Program Files\Windows Sidebar
2009-05-28 10:51:12 ----D---- C:\Program Files\Windows Media Player
2009-05-28 10:51:12 ----D---- C:\Program Files\Windows Collaboration
2009-05-28 10:51:11 ----D---- C:\Program Files\Windows Photo Gallery
2009-05-28 10:51:11 ----D---- C:\Program Files\Common Files\System
2009-05-28 10:51:07 ----D---- C:\Windows\servicing
2009-05-28 10:51:07 ----D---- C:\Program Files\Windows Defender
2009-05-28 10:50:49 ----D---- C:\Windows\system32\XPSViewer
2009-05-28 10:50:49 ----D---- C:\Windows\system32\lv-LV
2009-05-28 10:50:49 ----D---- C:\Windows\system32\hr-HR
2009-05-28 10:50:49 ----D---- C:\Windows\system32\da-DK
2009-05-28 10:50:49 ----D---- C:\Windows\IME
2009-05-28 10:50:48 ----D---- C:\Windows\system32\sk-SK
2009-05-28 10:50:48 ----D---- C:\Windows\system32\oobe
2009-05-28 10:50:48 ----D---- C:\Windows\system32\ko-KR
2009-05-28 10:50:48 ----D---- C:\Windows\system32\it-IT
2009-05-28 10:50:48 ----D---- C:\Windows\system32\fr
2009-05-28 10:50:48 ----D---- C:\Windows\system32\et-EE
2009-05-28 10:50:48 ----D---- C:\Windows\system32\en-US
2009-05-28 10:50:48 ----D---- C:\Windows\system32\el-GR
2009-05-28 10:50:48 ----D---- C:\Windows\system32\de-DE
2009-05-28 10:50:46 ----D---- C:\Windows\system32\ru-RU
2009-05-28 10:50:46 ----D---- C:\Windows\system32\AdvancedInstallers
2009-05-28 10:50:44 ----D---- C:\Windows\system32\fr-FR
2009-05-28 10:50:41 ----D---- C:\Windows\system32\sv-SE
2009-05-28 10:50:41 ----D---- C:\Windows\system32\SLUI
2009-05-28 10:50:41 ----D---- C:\Windows\system32\setup
2009-05-28 10:50:41 ----D---- C:\Windows\system32\pt-PT
2009-05-28 10:50:41 ----D---- C:\Windows\system32\hu-HU
2009-05-28 10:50:41 ----D---- C:\Windows\system32\he-IL
2009-05-28 10:50:41 ----D---- C:\Windows\system32\fi-FI
2009-05-28 10:50:41 ----D---- C:\Windows\system32\cs-CZ
2009-05-28 10:50:40 ----D---- C:\Windows\system32\zh-TW
2009-05-28 10:50:40 ----D---- C:\Windows\system32\zh-CN
2009-05-28 10:50:40 ----D---- C:\Windows\system32\sr-Latn-CS
2009-05-28 10:50:40 ----D---- C:\Windows\system32\sl-SI
2009-05-28 10:50:40 ----D---- C:\Windows\system32\pl-PL
2009-05-28 10:50:40 ----D---- C:\Windows\system32\manifeststore
2009-05-28 10:50:40 ----D---- C:\Windows\system32\es-ES
2009-05-28 10:50:39 ----D---- C:\Windows\system32\uk-UA
2009-05-28 10:50:39 ----D---- C:\Windows\system32\th-TH
2009-05-28 10:50:39 ----D---- C:\Windows\system32\ro-RO
2009-05-28 10:50:39 ----D---- C:\Windows\system32\ja-JP
2009-05-28 10:50:39 ----D---- C:\Windows\system32\bg-BG
2009-05-28 10:50:37 ----D---- C:\Windows\system32\tr-TR
2009-05-28 10:50:36 ----D---- C:\Windows\system32\wbem
2009-05-28 10:50:36 ----D---- C:\Windows\system32\nb-NO
2009-05-28 10:50:35 ----D---- C:\Windows\system32\pt-BR
2009-05-28 10:50:35 ----D---- C:\Windows\system32\nl-NL
2009-05-28 10:50:35 ----D---- C:\Windows\system32\migwiz
2009-05-28 10:50:35 ----D---- C:\Windows\system32\lt-LT
2009-05-28 10:50:35 ----D---- C:\Windows\system32\ar-SA
2009-05-28 10:50:11 ----D---- C:\Windows\AppPatch
2009-05-28 10:50:02 ----D---- C:\Windows\system32\Boot
2009-05-27 15:45:24 ----D---- C:\ProgramData\NOS
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R1 bdftdif;bdftdif; \??\C:\Program Files\Common Files\BitDefender\BitDefender Firewall\bdftdif.sys [2009-03-29 137224]
R1 Tosrfcom;Bluetooth RFCOMM; C:\Windows\System32\Drivers\tosrfcom.sys [2007-05-24 64000]
R2 BDVEDISK;BDVEDISK; \??\C:\Program Files\BitDefender\BitDefender 2009\BDVEDISK.sys [2009-03-29 82696]
R3 bdfm;BDFM; C:\Windows\system32\drivers\bdfm.sys [2008-09-18 111112]
R3 Bdfndisf;BitDefender Firewall NDIS Filter Service; C:\Windows\system32\DRIVERS\bdfndisf.sys [2009-04-06 104328]
R3 bdfsfltr;bdfsfltr; C:\Windows\system32\DRIVERS\bdfsfltr.sys [2009-03-29 242184]
R3 BDSelfPr;BDSelfPr; \??\C:\Program Files\BitDefender\BitDefender 2009\bdselfpr.sys [2009-04-07 8832]
R3 FETNDIS;Service de pilote de carte VIA famille Rhine 10/100Mo Fast Ethernet; C:\Windows\system32\DRIVERS\fetnd5.sys [2006-11-02 45568]
R3 HdAudAddService;Pilote de fonction UAA 1.1 Microsoft pour le service High Definition Audio; C:\Windows\system32\drivers\HdAudio.sys [2009-04-11 236544]
R3 S3GIGP;S3GIGP; C:\Windows\system32\DRIVERS\VTGKModeDX32.sys [2007-07-20 791040]
R3 SNP2STD;USB2.0 PC Camera (SNP2STD); C:\Windows\system32\DRIVERS\snp2sxp.sys [2007-09-05 12212864]
R3 tosporte;Bluetooth COM Port; C:\Windows\system32\DRIVERS\tosporte.sys [2006-10-10 41600]
S3 BthEnum;Service d'énumérateur Bluetooth; C:\Windows\system32\DRIVERS\BthEnum.sys [2009-04-11 22528]
S3 BthPan;Périphérique Bluetooth (réseau personnel); C:\Windows\system32\DRIVERS\bthpan.sys [2008-01-19 92160]
S3 BTHPORT;Pilote de port Bluetooth; C:\Windows\System32\Drivers\BTHport.sys [2008-04-29 220160]
S3 BTHUSB;Pilote USB radio Bluetooth; C:\Windows\System32\Drivers\BTHUSB.sys [2008-04-29 29184]
S3 CA561;EZCam III; C:\Windows\System32\Drivers\SPCA561.SYS [2002-10-01 119798]
S3 catchme;catchme; \??\C:\Users\be\AppData\Local\Temp\catchme.sys []
S3 drmkaud;Filtre de décodeur DRM (Noyau Microsoft); C:\Windows\system32\drivers\drmkaud.sys [2008-01-19 5632]
S3 GMSIPCI;GMSIPCI; \??\E:\INSTALL\GMSIPCI.SYS []
S3 MSKSSRV;Proxy de service de répartition Microsoft; C:\Windows\system32\drivers\MSKSSRV.sys [2008-01-19 8192]
S3 MSPCLOCK;Proxy d'horloge de répartition Microsoft; C:\Windows\system32\drivers\MSPCLOCK.sys [2008-01-19 5888]
S3 MSPQM;Proxy de gestion de qualité de répartition Microsoft; C:\Windows\system32\drivers\MSPQM.sys [2008-01-19 5504]
S3 MSTEE;Convertisseur en T/site-à-site de répartition Microsoft; C:\Windows\system32\drivers\MSTEE.sys [2008-01-19 6016]
S3 pcouffin;VSO Software pcouffin; C:\Windows\System32\Drivers\pcouffin.sys [2009-01-15 47360]
S3 Profos;Profos; \??\C:\Program Files\Common Files\BitDefender\BitDefender Threat Scanner\profos.sys [2008-09-02 13056]
S3 RFCOMM;Périphérique Bluetooth (TDI protocole RFCOMM); C:\Windows\system32\DRIVERS\rfcomm.sys [2009-04-11 148992]
S3 ROOTMODEM;Microsoft Legacy Modem Driver; C:\Windows\System32\Drivers\RootMdm.sys [2008-01-19 8192]
S3 tosrfbd;Bluetooth RFBUS; C:\Windows\system32\DRIVERS\tosrfbd.sys [2007-04-24 113920]
S3 tosrfbnp;Bluetooth RFBNEP; C:\Windows\System32\Drivers\tosrfbnp.sys [2006-11-20 36480]
S3 Tosrfhid;Bluetooth RFHID; C:\Windows\system32\DRIVERS\Tosrfhid.sys [2007-03-01 73728]
S3 tosrfnds;Bluetooth Personal Area Network; C:\Windows\system32\DRIVERS\tosrfnds.sys [2005-01-06 18612]
S3 TosRfSnd;Bluetooth Audio; C:\Windows\system32\drivers\tosrfsnd.sys [2007-01-22 53376]
S3 Tosrfusb;Bluetooth USB Controller; C:\Windows\system32\DRIVERS\tosrfusb.sys [2007-06-11 41856]
S3 Trufos;Trufos; \??\C:\Program Files\Common Files\BitDefender\BitDefender Threat Scanner\trufos.sys [2009-04-14 39808]
S3 usbscan;Pilote de scanneur USB; C:\Windows\system32\DRIVERS\usbscan.sys [2008-01-19 35328]
S3 WUDFRd;WUDFRd; C:\Windows\system32\DRIVERS\WUDFRd.sys [2008-01-19 83328]
S4 WmiAcpi;Microsoft Windows Management Interface for ACPI; C:\Windows\system32\drivers\wmiacpi.sys [2006-11-02 11264]
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 Apple Mobile Device;Apple Mobile Device; C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe [2009-03-26 132424]
R2 Bonjour Service;Service Bonjour; C:\Program Files\Bonjour\mDNSResponder.exe [2008-12-12 238888]
R2 BthServ;@%SystemRoot%\System32\bthserv.dll,-101; C:\Windows\system32\svchost.exe [2008-01-19 21504]
R2 LIVESRV;BitDefender Desktop Update Service; C:\Program Files\Common Files\BitDefender\BitDefender Update Service\livesrv.exe [2009-04-06 415024]
R2 NMSAccessU;NMSAccessU; C:\Program Files\CDBurnerXP\NMSAccessU.exe [2008-10-20 71096]
R2 SBSDWSCService;SBSD Security Center Service; C:\Program Files\Spybot - Search & Destroy\SDWinSec.exe [2009-01-26 1153368]
R2 SeaPort;SeaPort; C:\Program Files\Microsoft\Search Enhancement Pack\SeaPort\SeaPort.exe [2009-05-19 240512]
R2 TOSHIBA Bluetooth Service;TOSHIBA Bluetooth Service; C:\Program Files\Toshiba\Bluetooth Toshiba Stack\TosBtSrv.exe [2007-02-25 125048]
R2 VSSERV;BitDefender Virus Shield; C:\Program Files\BitDefender\BitDefender 2009\vsserv.exe [2009-04-06 1626112]
S2 gupdate1c99b528c365244;Service Google Update (gupdate1c99b528c365244); C:\Program Files\Google\Update\GoogleUpdate.exe [2009-03-02 133104]
S2 gusvc;Google Software Updater; C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe [2009-03-25 183280]
S3 Arrakis3;BitDefender Arrakis Server; C:\Program Files\Common Files\BitDefender\BitDefender Arrakis Server\bin\Arrakis3.exe [2008-07-17 118784]
S3 ose;Office Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2003-07-28 89136]
S3 scan;BitDefender Threat Scanner; C:\Windows\System32\svchost.exe [2008-01-19 21504]
-----------------EOF-----------------
.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*
======List of files/folders created in the last 1 months======
2009-06-19 00:15:40 ----D---- C:\Program Files\Mozilla Firefox
2009-06-18 21:38:55 ----D---- C:\_OTM
2009-06-18 12:27:55 ----D---- C:\Program Files\Common Files\SWF Studio
2009-06-18 11:24:44 ----SHD---- C:\Config.Msi
2009-06-18 02:51:26 ----D---- C:\Program Files\Common Files\xing shared
2009-06-18 02:51:10 ----A---- C:\Windows\system32\rmoc3260.dll
2009-06-18 02:50:17 ----A---- C:\Windows\system32\pndx5032.dll
2009-06-18 02:50:17 ----A---- C:\Windows\system32\pndx5016.dll
2009-06-18 02:50:15 ----A---- C:\Windows\system32\pncrt.dll
2009-06-10 13:26:35 ----A---- C:\Windows\system32\localspl.dll
2009-06-10 13:26:08 ----A---- C:\Windows\system32\rpcrt4.dll
2009-06-10 13:26:04 ----A---- C:\Windows\system32\mshtml.dll
2009-06-10 13:26:02 ----A---- C:\Windows\system32\ieframe.dll
2009-06-10 13:26:01 ----A---- C:\Windows\system32\iertutil.dll
2009-06-10 13:26:00 ----A---- C:\Windows\system32\wininet.dll
2009-06-10 13:26:00 ----A---- C:\Windows\system32\urlmon.dll
2009-06-10 13:26:00 ----A---- C:\Windows\system32\iedkcs32.dll
2009-06-10 13:25:59 ----A---- C:\Windows\system32\jsproxy.dll
2009-06-10 13:25:59 ----A---- C:\Windows\system32\ieui.dll
2009-06-10 13:25:58 ----A---- C:\Windows\system32\iesetup.dll
2009-06-10 13:25:58 ----A---- C:\Windows\system32\iernonce.dll
2009-06-10 13:25:58 ----A---- C:\Windows\system32\ie4uinit.exe
2009-06-09 00:02:08 ----D---- C:\Users\be\AppData\Roaming\GarageGames
2009-06-07 22:02:27 ----SHD---- C:\Users\be\AppData\Roaming\.#
2009-06-06 22:13:13 ----D---- C:\Users\be\AppData\Roaming\OpenOffice.org
2009-06-06 21:57:16 ----D---- C:\Program Files\JRE
2009-06-06 21:56:38 ----D---- C:\Program Files\OpenOffice.org 3
2009-05-28 10:50:03 ----D---- C:\Windows\system32\eu-ES
2009-05-28 10:50:03 ----D---- C:\Windows\system32\ca-ES
2009-05-28 10:50:02 ----D---- C:\Windows\system32\vi-VN
2009-05-27 23:30:50 ----D---- C:\Windows\system32\EventProviders
2009-05-27 23:10:46 ----A---- C:\Windows\system32\NlsLexicons0007.dll
2009-05-27 23:10:41 ----A---- C:\Windows\system32\SLCExt.dll
2009-05-27 23:10:40 ----A---- C:\Windows\system32\SLsvc.exe
2009-05-27 23:10:38 ----A---- C:\Windows\system32\FunctionDiscoveryFolder.dll
2009-05-27 23:10:38 ----A---- C:\Windows\system32\DevicePairingWizard.exe
2009-05-27 23:10:35 ----A---- C:\Windows\system32\NlsLexicons0009.dll
2009-05-27 23:10:33 ----A---- C:\Windows\system32\mssrch.dll
2009-05-27 23:10:30 ----A---- C:\Windows\system32\tquery.dll
2009-05-27 23:10:29 ----A---- C:\Windows\system32\PresentationNative_v0300.dll
2009-05-27 23:10:28 ----A---- C:\Windows\system32\RMActivate_isv.exe
2009-05-27 23:10:28 ----A---- C:\Windows\system32\lsasrv.dll
2009-05-27 23:10:27 ----A---- C:\Windows\system32\scavenge.dll
2009-05-27 23:10:27 ----A---- C:\Windows\system32\RMActivate.exe
2009-05-27 23:10:26 ----A---- C:\Windows\system32\msi.dll
2009-05-27 23:10:24 ----A---- C:\Windows\system32\imapi2fs.dll
2009-05-27 23:10:23 ----A---- C:\Windows\system32\WscEapPr.dll
2009-05-27 23:10:23 ----A---- C:\Windows\system32\wcnwiz2.dll
2009-05-27 23:10:23 ----A---- C:\Windows\system32\sysmain.dll
2009-05-27 23:10:23 ----A---- C:\Windows\system32\secproc_isv.dll
2009-05-27 23:10:21 ----A---- C:\Windows\system32\mf.dll
2009-05-27 23:10:21 ----A---- C:\Windows\system32\icardagt.exe
2009-05-27 23:10:20 ----A---- C:\Windows\system32\EhStorShell.dll
2009-05-27 23:10:19 ----A---- C:\Windows\system32\spreview.exe
2009-05-27 23:10:18 ----A---- C:\Windows\system32\spinstall.exe
2009-05-27 23:10:18 ----A---- C:\Windows\system32\drmv2clt.dll
2009-05-27 23:10:17 ----A---- C:\Windows\system32\spwizui.dll
2009-05-27 23:10:17 ----A---- C:\Windows\system32\secproc.dll
2009-05-27 23:10:17 ----A---- C:\Windows\system32\mcupdate_GenuineIntel.dll
2009-05-27 23:10:16 ----A---- C:\Windows\system32\shell32.dll
2009-05-27 23:10:15 ----A---- C:\Windows\system32\SearchIndexer.exe
2009-05-27 23:10:15 ----A---- C:\Windows\system32\p2psvc.dll
2009-05-27 23:10:15 ----A---- C:\Windows\system32\mssvp.dll
2009-05-27 23:10:14 ----A---- C:\Windows\system32\mssphtb.dll
2009-05-27 23:10:14 ----A---- C:\Windows\system32\mssph.dll
2009-05-27 23:10:14 ----A---- C:\Windows\system32\mscoree.dll
2009-05-27 23:10:14 ----A---- C:\Windows\system32\imapi2.dll
2009-05-27 23:10:12 ----A---- C:\Windows\system32\sdohlp.dll
2009-05-27 23:10:12 ----A---- C:\Windows\system32\ntkrnlpa.exe
2009-05-27 23:10:11 ----A---- C:\Windows\system32\IMJP10K.DLL
2009-05-27 23:10:11 ----A---- C:\Windows\system32\esent.dll
2009-05-27 23:10:10 ----A---- C:\Windows\system32\DevicePairing.dll
2009-05-27 23:10:09 ----A---- C:\Windows\system32\wevtsvc.dll
2009-05-27 23:10:09 ----A---- C:\Windows\system32\sperror.dll
2009-05-27 23:10:09 ----A---- C:\Windows\system32\RMActivate_ssp.exe
2009-05-27 23:10:09 ----A---- C:\Windows\system32\korwbrkr.dll
2009-05-27 23:10:08 ----A---- C:\Windows\system32\SLC.dll
2009-05-27 23:10:08 ----A---- C:\Windows\system32\RMActivate_ssp_isv.exe
2009-05-27 23:10:08 ----A---- C:\Windows\system32\PresentationHostProxy.dll
2009-05-27 23:10:08 ----A---- C:\Windows\system32\IasMigReader.exe
2009-05-27 23:10:07 ----A---- C:\Windows\system32\wmp.dll
2009-05-27 23:10:07 ----A---- C:\Windows\system32\msshsq.dll
2009-05-27 23:10:06 ----A---- C:\Windows\system32\WMVCORE.DLL
2009-05-27 23:10:06 ----A---- C:\Windows\system32\msjet40.dll
2009-05-27 23:10:05 ----A---- C:\Windows\system32\ntoskrnl.exe
2009-05-27 23:10:05 ----A---- C:\Windows\system32\MPSSVC.dll
2009-05-27 23:10:04 ----A---- C:\Windows\system32\msxml6.dll
2009-05-27 23:10:03 ----A---- C:\Windows\system32\Query.dll
2009-05-27 23:10:03 ----A---- C:\Windows\system32\qmgr.dll
2009-05-27 23:10:02 ----A---- C:\Windows\system32\P2PGraph.dll
2009-05-27 23:10:02 ----A---- C:\Windows\system32\msexch40.dll
2009-05-27 23:10:02 ----A---- C:\Windows\system32\diagperf.dll
2009-05-27 23:10:01 ----A---- C:\Windows\system32\ole32.dll
2009-05-27 23:10:01 ----A---- C:\Windows\system32\ntdll.dll
2009-05-27 23:10:00 ----A---- C:\Windows\system32\winload.exe
2009-05-27 23:10:00 ----A---- C:\Windows\system32\srchadmin.dll
2009-05-27 23:10:00 ----A---- C:\Windows\system32\msxml3.dll
2009-05-27 23:10:00 ----A---- C:\Windows\system32\mblctr.exe
2009-05-27 23:09:59 ----A---- C:\Windows\system32\uDWM.dll
2009-05-27 23:09:59 ----A---- C:\Windows\system32\mmc.exe
2009-05-27 23:09:59 ----A---- C:\Windows\system32\EncDec.dll
2009-05-27 23:09:59 ----A---- C:\Windows\system32\dfsr.exe
2009-05-27 23:09:58 ----A---- C:\Windows\system32\riched20.dll
2009-05-27 23:09:58 ----A---- C:\Windows\system32\IasMigPlugin.dll
2009-05-27 23:09:57 ----A---- C:\Windows\system32\fdBth.dll
2009-05-27 23:09:56 ----A---- C:\Windows\system32\RacEngn.dll
2009-05-27 23:09:54 ----A---- C:\Windows\system32\kernel32.dll
2009-05-27 23:09:53 ----A---- C:\Windows\system32\SearchProtocolHost.exe
2009-05-27 23:09:53 ----A---- C:\Windows\system32\SearchFilterHost.exe
2009-05-27 23:09:51 ----A---- C:\Windows\system32\milcore.dll
2009-05-27 23:09:50 ----A---- C:\Windows\system32\spoolss.dll
2009-05-27 23:09:50 ----A---- C:\Windows\system32\schedsvc.dll
2009-05-27 23:09:50 ----A---- C:\Windows\system32\NaturalLanguage6.dll
2009-05-27 23:09:50 ----A---- C:\Windows\system32\EhStorAPI.dll
2009-05-27 23:09:50 ----A---- C:\Windows\system32\CertEnroll.dll
2009-05-27 23:09:48 ----A---- C:\Windows\system32\msvcp60.dll
2009-05-27 23:09:48 ----A---- C:\Windows\system32\msjtes40.dll
2009-05-27 23:09:48 ----A---- C:\Windows\system32\infocardapi.dll
2009-05-27 23:09:48 ----A---- C:\Windows\system32\gpedit.dll
2009-05-27 23:09:47 ----A---- C:\Windows\system32\WinSAT.exe
2009-05-27 23:09:47 ----A---- C:\Windows\system32\es.dll
2009-05-27 23:09:46 ----A---- C:\Windows\system32\mstext40.dll
2009-05-27 23:09:46 ----A---- C:\Windows\system32\Magnify.exe
2009-05-27 23:09:45 ----A---- C:\Windows\system32\WMPhoto.dll
2009-05-27 23:09:45 ----A---- C:\Windows\system32\WebClnt.dll
2009-05-27 23:09:45 ----A---- C:\Windows\system32\msexcl40.dll
2009-05-27 23:09:45 ----A---- C:\Windows\system32\advapi32.dll
2009-05-27 23:09:44 ----A---- C:\Windows\system32\WindowsAnytimeUpgradeCPL.dll
2009-05-27 23:09:44 ----A---- C:\Windows\system32\slwmi.dll
2009-05-27 23:09:44 ----A---- C:\Windows\system32\msxbde40.dll
2009-05-27 23:09:44 ----A---- C:\Windows\system32\comsvcs.dll
2009-05-27 23:09:43 ----A---- C:\Windows\system32\vssapi.dll
2009-05-27 23:09:42 ----A---- C:\Windows\system32\mstscax.dll
2009-05-27 23:09:42 ----A---- C:\Windows\system32\authui.dll
2009-05-27 23:09:41 ----A---- C:\Windows\system32\PresentationHost.exe
2009-05-27 23:09:41 ----A---- C:\Windows\system32\newdev.dll
2009-05-27 23:09:41 ----A---- C:\Windows\system32\msrepl40.dll
2009-05-27 23:09:40 ----A---- C:\Windows\system32\propsys.dll
2009-05-27 23:09:40 ----A---- C:\Windows\system32\PresentationCFFRasterizerNative_v0300.dll
2009-05-27 23:09:40 ----A---- C:\Windows\system32\iasrecst.dll
2009-05-27 23:09:40 ----A---- C:\Windows\system32\gpsvc.dll
2009-05-27 23:09:40 ----A---- C:\Windows\system32\eudcedit.exe
2009-05-27 23:09:40 ----A---- C:\Windows\system32\crypt32.dll
2009-05-27 23:09:39 ----A---- C:\Windows\explorer.exe
2009-05-27 23:09:38 ----A---- C:\Windows\system32\setupapi.dll
2009-05-27 23:09:38 ----A---- C:\Windows\system32\rpcss.dll
2009-05-27 23:09:38 ----A---- C:\Windows\system32\mspbde40.dll
2009-05-27 23:09:37 ----A---- C:\Windows\system32\d3d9.dll
2009-05-27 23:09:36 ----A---- C:\Windows\system32\msltus40.dll
2009-05-27 23:09:36 ----A---- C:\Windows\system32\davclnt.dll
2009-05-27 23:09:35 ----A---- C:\Windows\system32\mfc42.dll
2009-05-27 23:09:34 ----A---- C:\Windows\system32\shlwapi.dll
2009-05-27 23:09:34 ----A---- C:\Windows\system32\EhStorPwdMgr.dll
2009-05-27 23:09:34 ----A---- C:\Windows\system32\EhStorAuthn.dll
2009-05-27 23:09:33 ----A---- C:\Windows\system32\msrd3x40.dll
2009-05-27 23:09:33 ----A---- C:\Windows\system32\msdtctm.dll
2009-05-27 23:09:32 ----A---- C:\Windows\system32\wevtapi.dll
2009-05-27 23:09:32 ----A---- C:\Windows\system32\photowiz.dll
2009-05-27 23:09:32 ----A---- C:\Windows\system32\nlhtml.dll
2009-05-27 23:09:32 ----A---- C:\Windows\system32\browseui.dll
2009-05-27 23:09:30 ----A---- C:\Windows\system32\user32.dll
2009-05-27 23:09:30 ----A---- C:\Windows\system32\samsrv.dll
2009-05-27 23:09:29 ----A---- C:\Windows\system32\win32spl.dll
2009-05-27 23:09:29 ----A---- C:\Windows\system32\quartz.dll
2009-05-27 23:09:29 ----A---- C:\Windows\system32\ci.dll
2009-05-27 23:09:28 ----A---- C:\Windows\system32\WcnNetsh.dll
2009-05-27 23:09:28 ----A---- C:\Windows\system32\SLCommDlg.dll
2009-05-27 23:09:28 ----A---- C:\Windows\system32\printfilterpipelinesvc.exe
2009-05-27 23:09:28 ----A---- C:\Windows\system32\oleaut32.dll
2009-05-27 23:09:28 ----A---- C:\Windows\system32\kerberos.dll
2009-05-27 23:09:27 ----A---- C:\Windows\system32\netshell.dll
2009-05-27 23:09:27 ----A---- C:\Windows\system32\msv1_0.dll
2009-05-27 23:09:27 ----A---- C:\Windows\system32\IKEEXT.DLL
2009-05-27 23:09:27 ----A---- C:\Windows\system32\compcln.exe
2009-05-27 23:09:26 ----A---- C:\Windows\system32\winhttp.dll
2009-05-27 23:09:26 ----A---- C:\Windows\system32\mswstr10.dll
2009-05-27 23:09:26 ----A---- C:\Windows\system32\apds.dll
2009-05-27 23:09:25 ----A---- C:\Windows\system32\xmlfilter.dll
2009-05-27 23:09:25 ----A---- C:\Windows\system32\msctf.dll
2009-05-27 23:09:25 ----A---- C:\Windows\system32\emdmgmt.dll
2009-05-27 23:09:25 ----A---- C:\Windows\system32\audiosrv.dll
2009-05-27 23:09:24 ----A---- C:\Windows\system32\msvcrt.dll
2009-05-27 23:09:23 ----A---- C:\Windows\system32\VSSVC.exe
2009-05-27 23:09:23 ----A---- C:\Windows\system32\QAGENTRT.DLL
2009-05-27 23:09:23 ----A---- C:\Windows\system32\iphlpsvc.dll
2009-05-27 23:09:23 ----A---- C:\Windows\system32\gdi32.dll
2009-05-27 23:09:22 ----A---- C:\Windows\system32\SLUI.exe
2009-05-27 23:09:22 ----A---- C:\Windows\system32\mfc42u.dll
2009-05-27 23:09:22 ----A---- C:\Windows\system32\eapphost.dll
2009-05-27 23:09:21 ----A---- C:\Windows\system32\sqlsrv32.dll
2009-05-27 23:09:21 ----A---- C:\Windows\system32\msrd2x40.dll
2009-05-27 23:09:20 ----A---- C:\Windows\system32\odbc32.dll
2009-05-27 23:09:19 ----A---- C:\Windows\system32\winresume.exe
2009-05-27 23:09:19 ----A---- C:\Windows\system32\shdocvw.dll
2009-05-27 23:09:19 ----A---- C:\Windows\system32\propdefs.dll
2009-05-27 23:09:17 ----A---- C:\Windows\system32\wevtutil.exe
2009-05-27 23:09:17 ----A---- C:\Windows\system32\dbgeng.dll
2009-05-27 23:09:16 ----A---- C:\Windows\system32\mssitlb.dll
2009-05-27 23:09:15 ----A---- C:\Windows\system32\WsmSvc.dll
2009-05-27 23:09:14 ----A---- C:\Windows\system32\swprv.dll
2009-05-27 23:09:14 ----A---- C:\Windows\system32\mmcndmgr.dll
2009-05-27 23:09:13 ----A---- C:\Windows\system32\usp10.dll
2009-05-27 23:09:12 ----A---- C:\Windows\system32\vds.exe
2009-05-27 23:09:12 ----A---- C:\Windows\system32\drvinst.exe
2009-05-27 23:09:12 ----A---- C:\Windows\system32\devmgr.dll
2009-05-27 23:09:11 ----A---- C:\Windows\system32\netlogon.dll
2009-05-27 23:09:11 ----A---- C:\Windows\system32\msscb.dll
2009-05-27 23:09:11 ----A---- C:\Windows\system32\msctfp.dll
2009-05-27 23:09:11 ----A---- C:\Windows\system32\fdBthProxy.dll
2009-05-27 23:09:11 ----A---- C:\Windows\system32\DevicePairingProxy.dll
2009-05-27 23:09:11 ----A---- C:\Windows\system32\adsldpc.dll
2009-05-27 23:09:10 ----A---- C:\Windows\system32\schannel.dll
2009-05-27 23:09:10 ----A---- C:\Windows\system32\evr.dll
2009-05-27 23:09:10 ----A---- C:\Windows\system32\BFE.DLL
2009-05-27 23:09:09 ----A---- C:\Windows\system32\WSDApi.dll
2009-05-27 23:09:09 ----A---- C:\Windows\system32\WMVSDECD.DLL
2009-05-27 23:09:09 ----A---- C:\Windows\system32\Wldap32.dll
2009-05-27 23:09:09 ----A---- C:\Windows\system32\wcnwiz.dll
2009-05-27 23:09:09 ----A---- C:\Windows\system32\PhotoMetadataHandler.dll
2009-05-27 23:09:08 ----A---- C:\Windows\system32\WindowsCodecs.dll
2009-05-27 23:09:07 ----A---- C:\Windows\system32\wercon.exe
2009-05-27 23:09:07 ----A---- C:\Windows\system32\services.exe
2009-05-27 23:09:06 ----A---- C:\Windows\system32\wcncsvc.dll
2009-05-27 23:09:06 ----A---- C:\Windows\system32\mimefilt.dll
2009-05-27 23:09:06 ----A---- C:\Windows\system32\comdlg32.dll
2009-05-27 23:09:06 ----A---- C:\Windows\system32\adtschema.dll
2009-05-27 23:09:05 ----A---- C:\Windows\system32\PortableDeviceApi.dll
2009-05-27 23:09:05 ----A---- C:\Windows\system32\msdtcprx.dll
2009-05-27 23:09:05 ----A---- C:\Windows\system32\msdrm.dll
2009-05-27 23:09:05 ----A---- C:\Windows\system32\certcli.dll
2009-05-27 23:09:04 ----A---- C:\Windows\system32\umpnpmgr.dll
2009-05-27 23:09:04 ----A---- C:\Windows\system32\taskeng.exe
2009-05-27 23:09:04 ----A---- C:\Windows\system32\rtffilt.dll
2009-05-27 23:09:04 ----A---- C:\Windows\system32\reg.exe
2009-05-27 23:09:04 ----A---- C:\Windows\system32\mswdat10.dll
2009-05-27 23:09:04 ----A---- C:\Windows\system32\msjter40.dll
2009-05-27 23:09:04 ----A---- C:\Windows\system32\ipsmsnap.dll
2009-05-27 23:09:04 ----A---- C:\Windows\system32\dnsapi.dll
2009-05-27 23:09:03 ----A---- C:\Windows\system32\certutil.exe
2009-05-27 23:09:02 ----A---- C:\Windows\system32\WMNetMgr.dll
2009-05-27 23:09:02 ----A---- C:\Windows\system32\w32time.dll
2009-05-27 23:09:01 ----A---- C:\Windows\system32\msshooks.dll
2009-05-27 23:09:01 ----A---- C:\Windows\system32\msscntrs.dll
2009-05-27 23:09:01 ----A---- C:\Windows\system32\IPSECSVC.DLL
2009-05-27 23:09:01 ----A---- C:\Windows\system32\bcrypt.dll
2009-05-27 23:09:00 ----A---- C:\Windows\system32\rsaenh.dll
2009-05-27 23:09:00 ----A---- C:\Windows\system32\msihnd.dll
2009-05-27 23:09:00 ----A---- C:\Windows\system32\bthserv.dll
2009-05-27 23:08:59 ----A---- C:\Windows\system32\TsWpfWrp.exe
2009-05-27 23:08:59 ----A---- C:\Windows\system32\netapi32.dll
2009-05-27 23:08:59 ----A---- C:\Windows\system32\msstrc.dll
2009-05-27 23:08:59 ----A---- C:\Windows\system32\MMDevAPI.dll
2009-05-27 23:08:59 ----A---- C:\Windows\system32\inetcomm.dll
2009-05-27 23:08:59 ----A---- C:\Windows\system32\dfshim.dll
2009-05-27 23:08:58 ----A---- C:\Windows\system32\mtxclu.dll
2009-05-27 23:08:58 ----A---- C:\Windows\system32\mscories.dll
2009-05-27 23:08:58 ----A---- C:\Windows\system32\inetpp.dll
2009-05-27 23:08:58 ----A---- C:\Windows\system32\hidserv.dll
2009-05-27 23:08:58 ----A---- C:\Windows\system32\fundisc.dll
2009-05-27 23:08:58 ----A---- C:\Windows\system32\cryptsvc.dll
2009-05-27 23:08:57 ----A---- C:\Windows\system32\wmicmiplugin.dll
2009-05-27 23:08:57 ----A---- C:\Windows\system32\termsrv.dll
2009-05-27 23:08:57 ----A---- C:\Windows\system32\profsvc.dll
2009-05-27 23:08:57 ----A---- C:\Windows\system32\dhcpcsvc6.dll
2009-05-27 23:08:56 ----A---- C:\Windows\system32\gameux.dll
2009-05-27 23:08:55 ----A---- C:\Windows\system32\shsvcs.dll
2009-05-27 23:08:55 ----A---- C:\Windows\system32\msiexec.exe
2009-05-27 23:08:55 ----A---- C:\Windows\system32\imapi.dll
2009-05-27 23:08:54 ----A---- C:\Windows\system32\wdc.dll
2009-05-27 23:08:54 ----A---- C:\Windows\system32\chsbrkr.dll
2009-05-27 23:08:53 ----A---- C:\Windows\system32\rasmans.dll
2009-05-27 23:08:53 ----A---- C:\Windows\system32\pnidui.dll
2009-05-27 23:08:53 ----A---- C:\Windows\system32\iassdo.dll
2009-05-27 23:08:52 ----A---- C:\Windows\system32\spoolsv.exe
2009-05-27 23:08:52 ----A---- C:\Windows\system32\icardres.dll
2009-05-27 23:08:52 ----A---- C:\Windows\system32\autofmt.exe
2009-05-27 23:08:51 ----A---- C:\Windows\system32\wersvc.dll
2009-05-27 23:08:51 ----A---- C:\Windows\system32\slmgr.vbs
2009-05-27 23:08:51 ----A---- C:\Windows\system32\scrrun.dll
2009-05-27 23:08:51 ----A---- C:\Windows\system32\PSHED.DLL
2009-05-27 23:08:50 ----A---- C:\Windows\system32\pdh.dll
2009-05-27 23:08:50 ----A---- C:\Windows\system32\dhcpcsvc.dll
2009-05-27 23:08:50 ----A---- C:\Windows\system32\CertEnrollUI.dll
2009-05-27 23:08:50 ----A---- C:\Windows\system32\azroles.dll
2009-05-27 23:08:49 ----A---- C:\Windows\system32\pidgenx.dll
2009-05-27 23:08:48 ----A---- C:\Windows\system32\wmpmde.dll
2009-05-27 23:08:48 ----A---- C:\Windows\system32\winlogon.exe
2009-05-27 23:08:47 ----A---- C:\Windows\system32\SyncCenter.dll
2009-05-27 23:08:45 ----A---- C:\Windows\system32\SLUINotify.dll
2009-05-27 23:08:45 ----A---- C:\Windows\system32\msjetoledb40.dll
2009-05-27 23:08:45 ----A---- C:\Windows\system32\comuid.dll
2009-05-27 23:08:44 ----A---- C:\Windows\system32\WindowsCodecsExt.dll
2009-05-27 23:08:44 ----A---- C:\Windows\system32\sethc.exe
2009-05-27 23:08:44 ----A---- C:\Windows\system32\ncrypt.dll
2009-05-27 23:08:44 ----A---- C:\Windows\system32\kd1394.dll
2009-05-27 23:08:44 ----A---- C:\Windows\system32\certmgr.dll
2009-05-27 23:08:43 ----A---- C:\Windows\system32\wisptis.exe
2009-05-27 23:08:43 ----A---- C:\Windows\system32\untfs.dll
2009-05-27 23:08:43 ----A---- C:\Windows\system32\spp.dll
2009-05-27 23:08:43 ----A---- C:\Windows\system32\scrobj.dll
2009-05-27 23:08:43 ----A---- C:\Windows\system32\rtutils.dll
2009-05-27 23:08:43 ----A---- C:\Windows\system32\iassam.dll
2009-05-27 23:08:42 ----A---- C:\Windows\system32\taskcomp.dll
2009-05-27 23:08:42 ----A---- C:\Windows\system32\dwm.exe
2009-05-27 23:08:42 ----A---- C:\Windows\system32\autochk.exe
2009-05-27 23:08:41 ----A---- C:\Windows\system32\iasnap.dll
2009-05-27 23:08:40 ----A---- C:\Windows\system32\printui.dll
2009-05-27 23:08:40 ----A---- C:\Windows\system32\autoconv.exe
2009-05-27 23:08:39 ----A---- C:\Windows\system32\winsrv.dll
2009-05-27 23:08:39 ----A---- C:\Windows\system32\onex.dll
2009-05-27 23:08:39 ----A---- C:\Windows\system32\kdcom.dll
2009-05-27 23:08:39 ----A---- C:\Windows\system32\cscript.exe
2009-05-27 23:08:39 ----A---- C:\Windows\system32\basecsp.dll
2009-05-27 23:08:38 ----A---- C:\Windows\system32\wow32.dll
2009-05-27 23:08:38 ----A---- C:\Windows\system32\userenv.dll
2009-05-27 23:08:38 ----A---- C:\Windows\system32\osk.exe
2009-05-27 23:08:38 ----A---- C:\Windows\system32\mswsock.dll
2009-05-27 23:08:38 ----A---- C:\Windows\system32\audiodg.exe
2009-05-27 23:08:36 ----A---- C:\Windows\system32\spcmsg.dll
2009-05-27 23:08:36 ----A---- C:\Windows\system32\RelMon.dll
2009-05-27 23:08:36 ----A---- C:\Windows\system32\kdusb.dll
2009-05-27 23:08:35 ----A---- C:\Windows\system32\winmm.dll
2009-05-27 23:08:34 ----A---- C:\Windows\system32\rdpencom.dll
2009-05-27 23:08:33 ----A---- C:\Windows\system32\WinSCard.dll
2009-05-27 23:08:33 ----A---- C:\Windows\system32\msftedit.dll
2009-05-27 23:08:32 ----A---- C:\Windows\system32\WerFaultSecure.exe
2009-05-27 23:08:32 ----A---- C:\Windows\system32\offfilt.dll
2009-05-27 23:08:31 ----A---- C:\Windows\system32\dnsrslvr.dll
2009-05-27 23:08:30 ----A---- C:\Windows\system32\wsepno.dll
2009-05-27 23:08:30 ----A---- C:\Windows\system32\WerFault.exe
2009-05-27 23:08:30 ----A---- C:\Windows\system32\Utilman.exe
2009-05-27 23:08:30 ----A---- C:\Windows\system32\stobject.dll
2009-05-27 23:08:30 ----A---- C:\Windows\system32\secproc_ssp_isv.dll
2009-05-27 23:08:30 ----A---- C:\Windows\system32\secproc_ssp.dll
2009-05-27 23:08:29 ----A---- C:\Windows\system32\SndVol.exe
2009-05-27 23:08:29 ----A---- C:\Windows\system32\mscms.dll
2009-05-27 23:08:29 ----A---- C:\Windows\system32\mfplat.dll
2009-05-27 23:08:29 ----A---- C:\Windows\system32\diskraid.exe
2009-05-27 23:08:29 ----A---- C:\Windows\system32\apphelp.dll
2009-05-27 23:08:28 ----A---- C:\Windows\system32\wiaservc.dll
2009-05-27 23:08:28 ----A---- C:\Windows\system32\sysclass.dll
2009-05-27 23:08:28 ----A---- C:\Windows\system32\prnntfy.dll
2009-05-27 23:08:28 ----A---- C:\Windows\system32\msnetobj.dll
2009-05-27 23:08:28 ----A---- C:\Windows\system32\adsmsext.dll
2009-05-27 23:08:27 ----A---- C:\Windows\system32\wscript.exe
2009-05-27 23:08:27 ----A---- C:\Windows\system32\ulib.dll
2009-05-27 23:08:27 ----A---- C:\Windows\system32\secur32.dll
2009-05-27 23:08:27 ----A---- C:\Windows\system32\odbccp32.dll
2009-05-27 23:08:27 ----A---- C:\Windows\system32\iasdatastore.dll
2009-05-27 23:08:26 ----A---- C:\Windows\system32\wscntfy.dll
2009-05-27 23:08:26 ----A---- C:\Windows\system32\rastapi.dll
2009-05-27 23:08:26 ----A---- C:\Windows\system32\IPHLPAPI.DLL
2009-05-27 23:08:26 ----A---- C:\Windows\system32\dsound.dll
2009-05-27 23:08:26 ----A---- C:\Windows\system32\cryptui.dll
2009-05-27 23:08:25 ----A---- C:\Windows\system32\wlansvc.dll
2009-05-27 23:08:25 ----A---- C:\Windows\system32\wlangpui.dll
2009-05-27 23:08:25 ----A---- C:\Windows\system32\pnpsetup.dll
2009-05-27 23:08:25 ----A---- C:\Windows\system32\ipsecsnp.dll
2009-05-27 23:08:25 ----A---- C:\Windows\system32\fdProxy.dll
2009-05-27 23:08:25 ----A---- C:\Windows\system32\brcpl.dll
2009-05-27 23:08:24 ----A---- C:\Windows\system32\wscsvc.dll
2009-05-27 23:08:24 ----A---- C:\Windows\system32\vdsdyn.dll
2009-05-27 23:08:24 ----A---- C:\Windows\system32\rastls.dll
2009-05-27 23:08:24 ----A---- C:\Windows\system32\netiohlp.dll
2009-05-27 23:08:24 ----A---- C:\Windows\system32\logman.exe
2009-05-27 23:08:24 ----A---- C:\Windows\system32\iashlpr.dll
2009-05-27 23:08:24 ----A---- C:\Windows\system32\gpapi.dll
2009-05-27 23:08:24 ----A---- C:\Windows\system32\diskpart.exe
2009-05-27 23:08:23 ----A---- C:\Windows\system32\WMVENCOD.DLL
2009-05-27 23:08:23 ----A---- C:\Windows\system32\rasapi32.dll
2009-05-27 23:08:22 ----A---- C:\Windows\system32\regsvc.dll
2009-05-27 23:08:22 ----A---- C:\Windows\system32\ntprint.dll
2009-05-27 23:08:22 ----A---- C:\Windows\system32\mscorier.dll
2009-05-27 23:08:21 ----A---- C:\Windows\system32\wusa.exe
2009-05-27 23:08:21 ----A---- C:\Windows\system32\iasrad.dll
2009-05-27 23:08:21 ----A---- C:\Windows\system32\findstr.exe
2009-05-27 23:08:20 ----A---- C:\Windows\system32\zipfldr.dll
2009-05-27 23:08:20 ----A---- C:\Windows\system32\wshext.dll
2009-05-27 23:08:20 ----A---- C:\Windows\system32\wpccpl.dll
2009-05-27 23:08:20 ----A---- C:\Windows\system32\netcenter.dll
2009-05-27 23:08:19 ----A---- C:\Windows\system32\wer.dll
2009-05-27 23:08:19 ----A---- C:\Windows\system32\rasdlg.dll
2009-05-27 23:08:19 ----A---- C:\Windows\system32\iassvcs.dll
2009-05-27 23:08:18 ----A---- C:\Windows\system32\wsnmp32.dll
2009-05-27 23:08:18 ----A---- C:\Windows\system32\themecpl.dll
2009-05-27 23:08:16 ----A---- C:\Windows\system32\uxsms.dll
2009-05-27 23:08:16 ----A---- C:\Windows\system32\tsbyuv.dll
2009-05-27 23:08:16 ----A---- C:\Windows\system32\srvsvc.dll
2009-05-27 23:08:16 ----A---- C:\Windows\system32\mssprxy.dll
2009-05-27 23:08:15 ----A---- C:\Windows\system32\slcc.dll
2009-05-27 23:08:15 ----A---- C:\Windows\system32\scansetting.dll
2009-05-27 23:08:15 ----A---- C:\Windows\system32\ntmarta.dll
2009-05-27 23:08:15 ----A---- C:\Windows\system32\msutb.dll
2009-05-27 23:08:15 ----A---- C:\Windows\system32\mstlsapi.dll
2009-05-27 23:08:15 ----A---- C:\Windows\system32\iasads.dll
2009-05-27 23:08:14 ----A---- C:\Windows\system32\powrprof.dll
2009-05-27 23:08:14 ----A---- C:\Windows\system32\mstsc.exe
2009-05-27 23:08:13 ----A---- C:\Windows\system32\networkmap.dll
2009-05-27 23:08:13 ----A---- C:\Windows\system32\iasacct.dll
2009-05-27 23:08:12 ----A---- C:\Windows\system32\powercpl.dll
2009-05-27 23:08:12 ----A---- C:\Windows\system32\PerfCenterCPL.dll
2009-05-27 23:08:11 ----A---- C:\Windows\system32\wlanhlp.dll
2009-05-27 23:08:11 ----A---- C:\Windows\system32\newdev.exe
2009-05-27 23:08:11 ----A---- C:\Windows\system32\connect.dll
2009-05-27 23:08:11 ----A---- C:\Windows\system32\authz.dll
2009-05-27 23:08:10 ----A---- C:\Windows\system32\sud.dll
2009-05-27 23:08:10 ----A---- C:\Windows\system32\dot3svc.dll
2009-05-27 23:08:08 ----A---- C:\Windows\system32\systemcpl.dll
2009-05-27 23:08:07 ----A---- C:\Windows\system32\themeui.dll
2009-05-27 23:08:07 ----A---- C:\Windows\system32\pcaui.dll
2009-05-27 23:08:06 ----A---- C:\Windows\system32\accessibilitycpl.dll
2009-05-27 23:08:05 ----A---- C:\Windows\system32\usercpl.dll
2009-05-27 23:08:05 ----A---- C:\Windows\system32\samlib.dll
2009-05-27 23:08:05 ----A---- C:\Windows\system32\mmci.dll
2009-05-27 23:08:05 ----A---- C:\Windows\system32\autoplay.dll
2009-05-27 23:08:04 ----A---- C:\Windows\system32\wlanpref.dll
2009-05-27 23:08:04 ----A---- C:\Windows\system32\qdvd.dll
2009-05-27 23:08:03 ----A---- C:\Windows\system32\rpchttp.dll
2009-05-27 23:08:03 ----A---- C:\Windows\system32\regapi.dll
2009-05-27 23:08:02 ----A---- C:\Windows\system32\wpcao.dll
2009-05-27 23:08:02 ----A---- C:\Windows\system32\vdsutil.dll
2009-05-27 23:08:02 ----A---- C:\Windows\system32\tapisrv.dll
2009-05-27 23:08:02 ----A---- C:\Windows\system32\msinfo32.exe
2009-05-27 23:08:01 ----A---- C:\Windows\system32\scksp.dll
2009-05-27 23:08:01 ----A---- C:\Windows\system32\scesrv.dll
2009-05-27 23:08:01 ----A---- C:\Windows\system32\psisdecd.dll
2009-05-27 23:08:01 ----A---- C:\Windows\system32\oleprn.dll
2009-05-27 23:08:01 ----A---- C:\Windows\system32\mpr.dll
2009-05-27 23:08:01 ----A---- C:\Windows\system32\feclient.dll
2009-05-27 23:08:00 ----A---- C:\Windows\system32\rekeywiz.exe
2009-05-27 23:08:00 ----A---- C:\Windows\system32\imm32.dll
2009-05-27 23:08:00 ----A---- C:\Windows\system32\Faultrep.dll
2009-05-27 23:08:00 ----A---- C:\Windows\system32\dot3msm.dll
2009-05-27 23:08:00 ----A---- C:\Windows\system32\AudioSes.dll
2009-05-27 23:07:59 ----A---- C:\Windows\system32\wscisvif.dll
2009-05-27 23:07:59 ----A---- C:\Windows\system32\sdclt.exe
2009-05-27 23:07:59 ----A---- C:\Windows\system32\iaspolcy.dll
2009-05-27 23:07:59 ----A---- C:\Windows\system32\dpapimig.exe
2009-05-27 23:07:59 ----A---- C:\Windows\system32\DeviceEject.exe
2009-05-27 23:07:58 ----A---- C:\Windows\system32\qedit.dll
2009-05-27 23:07:58 ----A---- C:\Windows\system32\pnpui.dll
2009-05-27 23:07:58 ----A---- C:\Windows\system32\perfdisk.dll
2009-05-27 23:07:58 ----A---- C:\Windows\system32\ncryptui.dll
2009-05-27 23:07:58 ----A---- C:\Windows\system32\hdwwiz.exe
2009-05-27 23:07:58 ----A---- C:\Windows\system32\certreq.exe
2009-05-27 23:07:57 ----A---- C:\Windows\system32\TSTheme.exe
2009-05-27 23:07:57 ----A---- C:\Windows\system32\SmartcardCredentialProvider.dll
2009-05-27 23:07:57 ----A---- C:\Windows\system32\scecli.dll
2009-05-27 23:07:57 ----A---- C:\Windows\system32\rasplap.dll
2009-05-27 23:07:57 ----A---- C:\Windows\system32\rasgcw.dll
2009-05-27 23:07:57 ----A---- C:\Windows\system32\FWPUCLNT.DLL
2009-05-27 23:07:56 ----A---- C:\Windows\system32\tcpipcfg.dll
2009-05-27 23:07:56 ----A---- C:\Windows\system32\spwinsat.dll
2009-05-27 23:07:55 ----A---- C:\Windows\system32\whealogr.dll
2009-05-27 23:07:55 ----A---- C:\Windows\system32\tcpmon.dll
2009-05-27 23:07:55 ----A---- C:\Windows\system32\PnPUnattend.exe
2009-05-27 23:07:55 ----A---- C:\Windows\system32\fdWSD.dll
2009-05-27 23:07:55 ----A---- C:\Windows\system32\cmmon32.exe
2009-05-27 23:07:54 ----A---- C:\Windows\system32\srcore.dll
2009-05-27 23:07:54 ----A---- C:\Windows\system32\SCardSvr.dll
2009-05-27 23:07:54 ----A---- C:\Windows\system32\raschap.dll
2009-05-27 23:07:54 ----A---- C:\Windows\system32\fontext.dll
2009-05-27 23:07:54 ----A---- C:\Windows\system32\conime.exe
2009-05-27 23:07:54 ----A---- C:\Windows\system32\cmdial32.dll
2009-05-27 23:07:53 ----A---- C:\Windows\system32\WMVXENCD.DLL
2009-05-27 23:07:53 ----A---- C:\Windows\system32\wlanui.dll
2009-05-27 23:07:53 ----A---- C:\Windows\system32\wiaaut.dll
2009-05-27 23:07:53 ----A---- C:\Windows\system32\MSVidCtl.dll
2009-05-27 23:07:52 ----A---- C:\Windows\system32\wlanmsm.dll
2009-05-27 23:07:52 ----A---- C:\Windows\system32\shwebsvc.dll
2009-05-27 23:07:52 ----A---- C:\Windows\system32\rasppp.dll
2009-05-27 23:07:52 ----A---- C:\Windows\system32\PnPutil.exe
2009-05-27 23:07:52 ----A---- C:\Windows\system32\dsprop.dll
2009-05-27 23:07:52 ----A---- C:\Windows\system32\dimsroam.dll
2009-05-27 23:07:51 ----A---- C:\Windows\system32\oobefldr.dll
2009-05-27 23:07:50 ----A---- C:\Windows\system32\shsetup.dll
2009-05-27 23:07:50 ----A---- C:\Windows\system32\rasmontr.dll
2009-05-27 23:07:50 ----A---- C:\Windows\system32\modemui.dll
2009-05-27 23:07:49 ----A---- C:\Windows\system32\wmdrmsdk.dll
2009-05-27 23:07:49 ----A---- C:\Windows\system32\mscandui.dll
2009-05-27 23:07:49 ----A---- C:\Windows\system32\dataclen.dll
2009-05-27 23:07:49 ----A---- C:\Windows\system32\chtbrkr.dll
2009-05-27 23:07:48 ----A---- C:\Windows\system32\wlgpclnt.dll
2009-05-27 23:07:48 ----A---- C:\Windows\system32\smss.exe
2009-05-27 23:07:48 ----A---- C:\Windows\system32\rdpwsx.dll
2009-05-27 23:07:48 ----A---- C:\Windows\system32\credui.dll
2009-05-27 23:07:48 ----A---- C:\Windows\system32\blackbox.dll
2009-05-27 23:07:47 ----A---- C:\Windows\system32\WSDMon.dll
2009-05-27 23:07:47 ----A---- C:\Windows\system32\wmpeffects.dll
2009-05-27 23:07:47 ----A---- C:\Windows\system32\netplwiz.dll
2009-05-27 23:07:46 ----A---- C:\Windows\system32\networkexplorer.dll
2009-05-27 23:07:46 ----A---- C:\Windows\system32\certprop.dll
2009-05-27 23:07:45 ----A---- C:\Windows\system32\wscapi.dll
2009-05-27 23:07:45 ----A---- C:\Windows\system32\wpcsvc.dll
2009-05-27 23:07:45 ----A---- C:\Windows\system32\msscp.dll
2009-05-27 23:07:45 ----A---- C:\Windows\system32\msimtf.dll
2009-05-27 23:07:45 ----A---- C:\Windows\system32\logagent.exe
2009-05-27 23:07:45 ----A---- C:\Windows\system32\InkEd.dll
2009-05-27 23:07:45 ----A---- C:\Windows\system32\ifmon.dll
2009-05-27 23:07:45 ----A---- C:\Windows\system32\gpresult.exe
2009-05-27 23:07:45 ----A---- C:\Windows\system32\cipher.exe
2009-05-27 23:07:44 ----A---- C:\Windows\system32\thawbrkr.dll
2009-05-27 23:07:44 ----A---- C:\Windows\system32\sendmail.dll
2009-05-27 23:07:43 ----A---- C:\Windows\system32\softkbd.dll
2009-05-27 23:07:43 ----A---- C:\Windows\system32\olepro32.dll
2009-05-27 23:07:43 ----A---- C:\Windows\system32\msctfui.dll
2009-05-27 23:07:43 ----A---- C:\Windows\system32\MediaMetadataHandler.dll
2009-05-27 23:07:43 ----A---- C:\Windows\system32\dmsynth.dll
2009-05-27 23:07:43 ----A---- C:\Windows\system32\Apphlpdm.dll
2009-05-27 23:07:42 ----A---- C:\Windows\system32\puiapi.dll
2009-05-27 23:07:42 ----A---- C:\Windows\system32\input.dll
2009-05-27 23:07:42 ----A---- C:\Windows\system32\drmmgrtn.dll
2009-05-27 23:07:42 ----A---- C:\Windows\system32\cdd.dll
2009-05-27 23:07:41 ----A---- C:\Windows\system32\wshbth.dll
2009-05-27 23:07:41 ----A---- C:\Windows\system32\version.dll
2009-05-27 23:07:41 ----A---- C:\Windows\system32\SLLUA.exe
2009-05-27 23:07:41 ----A---- C:\Windows\system32\msisip.dll
2009-05-27 23:07:41 ----A---- C:\Windows\system32\mprapi.dll
2009-05-27 23:07:41 ----A---- C:\Windows\system32\ExplorerFrame.dll
2009-05-27 23:07:40 ----A---- C:\Windows\system32\fc.exe
2009-05-27 23:07:39 ----A---- C:\Windows\system32\MsCtfMonitor.dll
2009-05-27 23:07:39 ----A---- C:\Windows\system32\fdSSDP.dll
2009-05-27 23:07:39 ----A---- C:\Windows\system32\dmusic.dll
2009-05-27 23:07:38 ----A---- C:\Windows\system32\printfilterpipelineprxy.dll
2009-05-27 23:07:38 ----A---- C:\Windows\system32\PortableDeviceClassExtension.dll
2009-05-27 23:07:38 ----A---- C:\Windows\system32\msjint40.dll
2009-05-27 23:07:38 ----A---- C:\Windows\system32\l2nacp.dll
2009-05-27 23:07:38 ----A---- C:\Windows\system32\ftp.exe
2009-05-27 23:07:38 ----A---- C:\Windows\system32\eapp3hst.dll
2009-05-27 23:07:38 ----A---- C:\Windows\system32\cscdll.dll
2009-05-27 23:07:38 ----A---- C:\Windows\system32\cscapi.dll
2009-05-27 23:07:37 ----A---- C:\Windows\system32\wsdchngr.dll
2009-05-27 23:07:37 ----A---- C:\Windows\system32\SMBHelperClass.dll
2009-05-27 23:07:37 ----A---- C:\Windows\system32\rrinstaller.exe
2009-05-27 23:07:37 ----A---- C:\Windows\system32\PortableDeviceTypes.dll
2009-05-27 23:07:37 ----A---- C:\Windows\system32\bthci.dll
2009-05-27 23:07:36 ----A---- C:\Windows\system32\Storprop.dll
2009-05-27 23:07:36 ----A---- C:\Windows\system32\rasdial.exe
2009-05-27 23:07:36 ----A---- C:\Windows\system32\rasdiag.dll
2009-05-27 23:07:36 ----A---- C:\Windows\system32\fdWCN.dll
2009-05-27 23:07:36 ----A---- C:\Windows\system32\dot3cfg.dll
2009-05-27 23:07:36 ----A---- C:\Windows\system32\bthudtask.exe
2009-05-27 23:07:35 ----A---- C:\Windows\system32\tscupgrd.exe
2009-05-27 23:07:35 ----A---- C:\Windows\system32\slcinst.dll
2009-05-27 23:07:35 ----A---- C:\Windows\system32\networkitemfactory.dll
2009-05-27 23:07:35 ----A---- C:\Windows\system32\mfps.dll
2009-05-27 23:07:35 ----A---- C:\Windows\system32\ipconfig.exe
2009-05-27 23:07:35 ----A---- C:\Windows\system32\eappcfg.dll
2009-05-27 23:07:35 ----A---- C:\Windows\system32\CHxReadingStringIME.dll
2009-05-27 23:07:35 ----A---- C:\Windows\system32\aaclient.dll
2009-05-27 23:07:34 ----A---- C:\Windows\system32\ocsetup.exe
2009-05-27 23:07:34 ----A---- C:\Windows\system32\nslookup.exe
2009-05-27 23:07:34 ----A---- C:\Windows\system32\FwRemoteSvr.dll
2009-05-27 23:07:34 ----A---- C:\Windows\system32\eappgnui.dll
2009-05-27 23:07:33 ----A---- C:\Windows\system32\hbaapi.dll
2009-05-27 23:07:33 ----A---- C:\Windows\system32\fdeploy.dll
2009-05-27 23:07:32 ----A---- C:\Windows\system32\mmcico.dll
2009-05-27 23:07:32 ----A---- C:\Windows\system32\mfpmp.exe
2009-05-27 23:07:31 ----A---- C:\Windows\system32\tsgqec.dll
2009-05-27 23:07:31 ----A---- C:\Windows\system32\PNPXAssoc.dll
2009-05-27 23:07:31 ----A---- C:\Windows\system32\gpupdate.exe
2009-05-27 23:07:30 ----A---- C:\Windows\system32\atmlib.dll
2009-05-27 23:07:29 ----A---- C:\Windows\system32\csrstub.exe
2009-05-27 23:07:29 ----A---- C:\Windows\system32\cbsra.exe
2009-05-27 23:07:29 ----A---- C:\Windows\system32\bitsigd.dll
2009-05-27 23:07:28 ----A---- C:\Windows\system32\NcdProp.dll
2009-05-27 23:07:28 ----A---- C:\Windows\system32\iscsilog.dll
2009-05-27 23:07:26 ----A---- C:\Windows\system32\vdmdbg.dll
2009-05-27 23:07:26 ----A---- C:\Windows\system32\slwga.dll
2009-05-27 23:07:26 ----A---- C:\Windows\system32\odbcconf.dll
2009-05-27 23:07:26 ----A---- C:\Windows\system32\inetppui.dll
2009-05-27 23:07:25 ----A---- C:\Windows\system32\winrnr.dll
2009-05-27 23:07:25 ----A---- C:\Windows\system32\midimap.dll
2009-05-27 23:07:24 ----A---- C:\Windows\system32\atmfd.dll
2009-05-27 23:07:21 ----A---- C:\Windows\system32\spwmp.dll
2009-05-27 23:07:21 ----A---- C:\Windows\system32\dxmasf.dll
2009-05-27 23:07:20 ----A---- C:\Windows\system32\wmploc.DLL
2009-05-27 23:07:19 ----A---- C:\Windows\system32\msimsg.dll
2009-05-27 23:07:19 ----A---- C:\Windows\system32\f3ahvoas.dll
2009-05-27 23:07:18 ----A---- C:\Windows\system32\mferror.dll
2009-05-27 23:06:28 ----A---- C:\Windows\system32\SmiEngine.dll
2009-05-27 23:06:22 ----A---- C:\Windows\system32\wdscore.dll
2009-05-27 23:06:22 ----A---- C:\Windows\system32\PkgMgr.exe
2009-05-27 23:06:06 ----A---- C:\Windows\system32\drvstore.dll
2009-05-26 18:05:10 ----D---- C:\Program Files\NOS
2009-05-26 18:03:32 ----D---- C:\Program Files\Midnight Racing
======List of files/folders modified in the last 1 months======
2009-06-19 20:19:45 ----D---- C:\Program Files\Trend Micro
2009-06-19 20:19:32 ----D---- C:\Windows\Prefetch
2009-06-19 20:19:26 ----D---- C:\Windows\Temp
2009-06-19 19:38:25 ----D---- C:\Windows\System32
2009-06-19 17:10:49 ----D---- C:\Windows\Tasks
2009-06-19 16:03:16 ----D---- C:\ProgramData\Google Updater
2009-06-19 00:15:40 ----RD---- C:\Program Files
2009-06-19 00:05:07 ----HD---- C:\ProgramData
2009-06-19 00:01:46 ----D---- C:\Program Files\Spybot - Search & Destroy
2009-06-19 00:01:30 ----D---- C:\ProgramData\Spybot - Search & Destroy
2009-06-18 23:29:13 ----SHD---- C:\System Volume Information
2009-06-18 22:44:00 ----D---- C:\Windows
2009-06-18 22:38:29 ----D---- C:\Windows\tracing
2009-06-18 19:28:26 ----D---- C:\Program Files\Ad-remover
2009-06-18 17:59:51 ----D---- C:\Windows\system32\drivers
2009-06-18 14:22:27 ----D---- C:\Program Files\Mozilla Firefox 3.1 Beta 2
2009-06-18 12:27:55 ----D---- C:\Program Files\Common Files
2009-06-18 11:24:53 ----SHD---- C:\Windows\Installer
2009-06-18 03:00:32 ----D---- C:\Users\be\AppData\Roaming\Real
2009-06-18 02:51:15 ----D---- C:\Program Files\Common Files\Real
2009-06-18 00:00:55 ----SD---- C:\Users\be\AppData\Roaming\Microsoft
2009-06-17 23:41:23 ----D---- C:\Windows\system32\catroot2
2009-06-17 23:40:31 ----D---- C:\Program Files\myBabylon
2009-06-17 23:40:31 ----D---- C:\Program Files\Conduit
2009-06-17 23:37:31 ----A---- C:\Windows\_MSRSTRT.EXE
2009-06-17 22:23:36 ----D---- C:\ProgramData\Google
2009-06-17 22:23:36 ----D---- C:\Program Files\Google
2009-06-12 15:09:46 ----D---- C:\Windows\Debug
2009-06-10 13:34:58 ----D---- C:\Windows\system32\migration
2009-06-10 13:34:58 ----D---- C:\Program Files\Internet Explorer
2009-06-10 13:32:25 ----D---- C:\Windows\winsxs
2009-06-10 13:28:07 ----D---- C:\Windows\system32\catroot
2009-06-08 17:06:21 ----A---- C:\Windows\system32\PerfStringBackup.INI
2009-06-08 17:06:20 ----D---- C:\Windows\inf
2009-06-07 21:57:11 ----SD---- C:\Windows\Downloaded Program Files
2009-06-06 22:03:38 ----RSD---- C:\Windows\assembly
2009-06-06 21:58:18 ----RSD---- C:\Windows\Fonts
2009-06-05 00:00:51 ----D---- C:\Users\be\AppData\Roaming\skypePM
2009-06-04 22:47:49 ----D---- C:\Users\be\AppData\Roaming\Skype
2009-06-04 04:01:55 ----D---- C:\Program Files\Messenger Plus! Live
2009-06-03 19:47:59 ----D---- C:\Program Files\Malwarebytes' Anti-Malware
2009-06-02 12:24:31 ----D---- C:\Windows\system32\Tasks
2009-06-01 18:51:12 ----A---- C:\Windows\system32\mrt.exe
2009-05-28 11:24:47 ----D---- C:\Windows\Microsoft.NET
2009-05-28 11:17:45 ----D---- C:\Windows\rescache
2009-05-28 10:59:43 ----SHD---- C:\Boot
2009-05-28 10:51:13 ----D---- C:\Program Files\Windows Mail
2009-05-28 10:51:13 ----D---- C:\Program Files\Windows Calendar
2009-05-28 10:51:13 ----D---- C:\Program Files\Movie Maker
2009-05-28 10:51:12 ----D---- C:\Program Files\Windows Sidebar
2009-05-28 10:51:12 ----D---- C:\Program Files\Windows Media Player
2009-05-28 10:51:12 ----D---- C:\Program Files\Windows Collaboration
2009-05-28 10:51:11 ----D---- C:\Program Files\Windows Photo Gallery
2009-05-28 10:51:11 ----D---- C:\Program Files\Common Files\System
2009-05-28 10:51:07 ----D---- C:\Windows\servicing
2009-05-28 10:51:07 ----D---- C:\Program Files\Windows Defender
2009-05-28 10:50:49 ----D---- C:\Windows\system32\XPSViewer
2009-05-28 10:50:49 ----D---- C:\Windows\system32\lv-LV
2009-05-28 10:50:49 ----D---- C:\Windows\system32\hr-HR
2009-05-28 10:50:49 ----D---- C:\Windows\system32\da-DK
2009-05-28 10:50:49 ----D---- C:\Windows\IME
2009-05-28 10:50:48 ----D---- C:\Windows\system32\sk-SK
2009-05-28 10:50:48 ----D---- C:\Windows\system32\oobe
2009-05-28 10:50:48 ----D---- C:\Windows\system32\ko-KR
2009-05-28 10:50:48 ----D---- C:\Windows\system32\it-IT
2009-05-28 10:50:48 ----D---- C:\Windows\system32\fr
2009-05-28 10:50:48 ----D---- C:\Windows\system32\et-EE
2009-05-28 10:50:48 ----D---- C:\Windows\system32\en-US
2009-05-28 10:50:48 ----D---- C:\Windows\system32\el-GR
2009-05-28 10:50:48 ----D---- C:\Windows\system32\de-DE
2009-05-28 10:50:46 ----D---- C:\Windows\system32\ru-RU
2009-05-28 10:50:46 ----D---- C:\Windows\system32\AdvancedInstallers
2009-05-28 10:50:44 ----D---- C:\Windows\system32\fr-FR
2009-05-28 10:50:41 ----D---- C:\Windows\system32\sv-SE
2009-05-28 10:50:41 ----D---- C:\Windows\system32\SLUI
2009-05-28 10:50:41 ----D---- C:\Windows\system32\setup
2009-05-28 10:50:41 ----D---- C:\Windows\system32\pt-PT
2009-05-28 10:50:41 ----D---- C:\Windows\system32\hu-HU
2009-05-28 10:50:41 ----D---- C:\Windows\system32\he-IL
2009-05-28 10:50:41 ----D---- C:\Windows\system32\fi-FI
2009-05-28 10:50:41 ----D---- C:\Windows\system32\cs-CZ
2009-05-28 10:50:40 ----D---- C:\Windows\system32\zh-TW
2009-05-28 10:50:40 ----D---- C:\Windows\system32\zh-CN
2009-05-28 10:50:40 ----D---- C:\Windows\system32\sr-Latn-CS
2009-05-28 10:50:40 ----D---- C:\Windows\system32\sl-SI
2009-05-28 10:50:40 ----D---- C:\Windows\system32\pl-PL
2009-05-28 10:50:40 ----D---- C:\Windows\system32\manifeststore
2009-05-28 10:50:40 ----D---- C:\Windows\system32\es-ES
2009-05-28 10:50:39 ----D---- C:\Windows\system32\uk-UA
2009-05-28 10:50:39 ----D---- C:\Windows\system32\th-TH
2009-05-28 10:50:39 ----D---- C:\Windows\system32\ro-RO
2009-05-28 10:50:39 ----D---- C:\Windows\system32\ja-JP
2009-05-28 10:50:39 ----D---- C:\Windows\system32\bg-BG
2009-05-28 10:50:37 ----D---- C:\Windows\system32\tr-TR
2009-05-28 10:50:36 ----D---- C:\Windows\system32\wbem
2009-05-28 10:50:36 ----D---- C:\Windows\system32\nb-NO
2009-05-28 10:50:35 ----D---- C:\Windows\system32\pt-BR
2009-05-28 10:50:35 ----D---- C:\Windows\system32\nl-NL
2009-05-28 10:50:35 ----D---- C:\Windows\system32\migwiz
2009-05-28 10:50:35 ----D---- C:\Windows\system32\lt-LT
2009-05-28 10:50:35 ----D---- C:\Windows\system32\ar-SA
2009-05-28 10:50:11 ----D---- C:\Windows\AppPatch
2009-05-28 10:50:02 ----D---- C:\Windows\system32\Boot
2009-05-27 15:45:24 ----D---- C:\ProgramData\NOS
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R1 bdftdif;bdftdif; \??\C:\Program Files\Common Files\BitDefender\BitDefender Firewall\bdftdif.sys [2009-03-29 137224]
R1 Tosrfcom;Bluetooth RFCOMM; C:\Windows\System32\Drivers\tosrfcom.sys [2007-05-24 64000]
R2 BDVEDISK;BDVEDISK; \??\C:\Program Files\BitDefender\BitDefender 2009\BDVEDISK.sys [2009-03-29 82696]
R3 bdfm;BDFM; C:\Windows\system32\drivers\bdfm.sys [2008-09-18 111112]
R3 Bdfndisf;BitDefender Firewall NDIS Filter Service; C:\Windows\system32\DRIVERS\bdfndisf.sys [2009-04-06 104328]
R3 bdfsfltr;bdfsfltr; C:\Windows\system32\DRIVERS\bdfsfltr.sys [2009-03-29 242184]
R3 BDSelfPr;BDSelfPr; \??\C:\Program Files\BitDefender\BitDefender 2009\bdselfpr.sys [2009-04-07 8832]
R3 FETNDIS;Service de pilote de carte VIA famille Rhine 10/100Mo Fast Ethernet; C:\Windows\system32\DRIVERS\fetnd5.sys [2006-11-02 45568]
R3 HdAudAddService;Pilote de fonction UAA 1.1 Microsoft pour le service High Definition Audio; C:\Windows\system32\drivers\HdAudio.sys [2009-04-11 236544]
R3 S3GIGP;S3GIGP; C:\Windows\system32\DRIVERS\VTGKModeDX32.sys [2007-07-20 791040]
R3 SNP2STD;USB2.0 PC Camera (SNP2STD); C:\Windows\system32\DRIVERS\snp2sxp.sys [2007-09-05 12212864]
R3 tosporte;Bluetooth COM Port; C:\Windows\system32\DRIVERS\tosporte.sys [2006-10-10 41600]
S3 BthEnum;Service d'énumérateur Bluetooth; C:\Windows\system32\DRIVERS\BthEnum.sys [2009-04-11 22528]
S3 BthPan;Périphérique Bluetooth (réseau personnel); C:\Windows\system32\DRIVERS\bthpan.sys [2008-01-19 92160]
S3 BTHPORT;Pilote de port Bluetooth; C:\Windows\System32\Drivers\BTHport.sys [2008-04-29 220160]
S3 BTHUSB;Pilote USB radio Bluetooth; C:\Windows\System32\Drivers\BTHUSB.sys [2008-04-29 29184]
S3 CA561;EZCam III; C:\Windows\System32\Drivers\SPCA561.SYS [2002-10-01 119798]
S3 catchme;catchme; \??\C:\Users\be\AppData\Local\Temp\catchme.sys []
S3 drmkaud;Filtre de décodeur DRM (Noyau Microsoft); C:\Windows\system32\drivers\drmkaud.sys [2008-01-19 5632]
S3 GMSIPCI;GMSIPCI; \??\E:\INSTALL\GMSIPCI.SYS []
S3 MSKSSRV;Proxy de service de répartition Microsoft; C:\Windows\system32\drivers\MSKSSRV.sys [2008-01-19 8192]
S3 MSPCLOCK;Proxy d'horloge de répartition Microsoft; C:\Windows\system32\drivers\MSPCLOCK.sys [2008-01-19 5888]
S3 MSPQM;Proxy de gestion de qualité de répartition Microsoft; C:\Windows\system32\drivers\MSPQM.sys [2008-01-19 5504]
S3 MSTEE;Convertisseur en T/site-à-site de répartition Microsoft; C:\Windows\system32\drivers\MSTEE.sys [2008-01-19 6016]
S3 pcouffin;VSO Software pcouffin; C:\Windows\System32\Drivers\pcouffin.sys [2009-01-15 47360]
S3 Profos;Profos; \??\C:\Program Files\Common Files\BitDefender\BitDefender Threat Scanner\profos.sys [2008-09-02 13056]
S3 RFCOMM;Périphérique Bluetooth (TDI protocole RFCOMM); C:\Windows\system32\DRIVERS\rfcomm.sys [2009-04-11 148992]
S3 ROOTMODEM;Microsoft Legacy Modem Driver; C:\Windows\System32\Drivers\RootMdm.sys [2008-01-19 8192]
S3 tosrfbd;Bluetooth RFBUS; C:\Windows\system32\DRIVERS\tosrfbd.sys [2007-04-24 113920]
S3 tosrfbnp;Bluetooth RFBNEP; C:\Windows\System32\Drivers\tosrfbnp.sys [2006-11-20 36480]
S3 Tosrfhid;Bluetooth RFHID; C:\Windows\system32\DRIVERS\Tosrfhid.sys [2007-03-01 73728]
S3 tosrfnds;Bluetooth Personal Area Network; C:\Windows\system32\DRIVERS\tosrfnds.sys [2005-01-06 18612]
S3 TosRfSnd;Bluetooth Audio; C:\Windows\system32\drivers\tosrfsnd.sys [2007-01-22 53376]
S3 Tosrfusb;Bluetooth USB Controller; C:\Windows\system32\DRIVERS\tosrfusb.sys [2007-06-11 41856]
S3 Trufos;Trufos; \??\C:\Program Files\Common Files\BitDefender\BitDefender Threat Scanner\trufos.sys [2009-04-14 39808]
S3 usbscan;Pilote de scanneur USB; C:\Windows\system32\DRIVERS\usbscan.sys [2008-01-19 35328]
S3 WUDFRd;WUDFRd; C:\Windows\system32\DRIVERS\WUDFRd.sys [2008-01-19 83328]
S4 WmiAcpi;Microsoft Windows Management Interface for ACPI; C:\Windows\system32\drivers\wmiacpi.sys [2006-11-02 11264]
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 Apple Mobile Device;Apple Mobile Device; C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe [2009-03-26 132424]
R2 Bonjour Service;Service Bonjour; C:\Program Files\Bonjour\mDNSResponder.exe [2008-12-12 238888]
R2 BthServ;@%SystemRoot%\System32\bthserv.dll,-101; C:\Windows\system32\svchost.exe [2008-01-19 21504]
R2 LIVESRV;BitDefender Desktop Update Service; C:\Program Files\Common Files\BitDefender\BitDefender Update Service\livesrv.exe [2009-04-06 415024]
R2 NMSAccessU;NMSAccessU; C:\Program Files\CDBurnerXP\NMSAccessU.exe [2008-10-20 71096]
R2 SBSDWSCService;SBSD Security Center Service; C:\Program Files\Spybot - Search & Destroy\SDWinSec.exe [2009-01-26 1153368]
R2 SeaPort;SeaPort; C:\Program Files\Microsoft\Search Enhancement Pack\SeaPort\SeaPort.exe [2009-05-19 240512]
R2 TOSHIBA Bluetooth Service;TOSHIBA Bluetooth Service; C:\Program Files\Toshiba\Bluetooth Toshiba Stack\TosBtSrv.exe [2007-02-25 125048]
R2 VSSERV;BitDefender Virus Shield; C:\Program Files\BitDefender\BitDefender 2009\vsserv.exe [2009-04-06 1626112]
S2 gupdate1c99b528c365244;Service Google Update (gupdate1c99b528c365244); C:\Program Files\Google\Update\GoogleUpdate.exe [2009-03-02 133104]
S2 gusvc;Google Software Updater; C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe [2009-03-25 183280]
S3 Arrakis3;BitDefender Arrakis Server; C:\Program Files\Common Files\BitDefender\BitDefender Arrakis Server\bin\Arrakis3.exe [2008-07-17 118784]
S3 ose;Office Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2003-07-28 89136]
S3 scan;BitDefender Threat Scanner; C:\Windows\System32\svchost.exe [2008-01-19 21504]
-----------------EOF-----------------
re
Fait ceci :
affiche les dossier et fichiers cachés aide toi de sa :
http://www.commentcamarche.net/faq/sujet 825 afficher les extensions et les fichiers caches sous windows
puis
clic ici https://www.virustotal.com/gui/ et clic sur parcourir et va chercher ce fichier ci dessous et fait le analyser et poste les rapports en entier + le lien de la page du rapport, il ne faut pas melanger les rapports savoir quel fichier pour quel rapport
C:\Windows\system32\dummoottoweb.exe
C:\Users\be\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\1O23A2IC\RSIT[1].exe
Fait ceci :
affiche les dossier et fichiers cachés aide toi de sa :
http://www.commentcamarche.net/faq/sujet 825 afficher les extensions et les fichiers caches sous windows
puis
clic ici https://www.virustotal.com/gui/ et clic sur parcourir et va chercher ce fichier ci dessous et fait le analyser et poste les rapports en entier + le lien de la page du rapport, il ne faut pas melanger les rapports savoir quel fichier pour quel rapport
C:\Windows\system32\dummoottoweb.exe
C:\Users\be\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\1O23A2IC\RSIT[1].exe
C:\Windows\system32\dummoottoweb.exe rapport:a-squared 4.5.0.18 2009.06.19 -
AhnLab-V3 5.0.0.2 2009.06.19 -
AntiVir 7.9.0.193 2009.06.19 -
Antiy-AVL 2.0.3.1 2009.06.19 -
Authentium 5.1.2.4 2009.06.19 -
Avast 4.8.1335.0 2009.06.18 -
AVG 8.5.0.339 2009.06.19 -
BitDefender 7.2 2009.06.19 -
CAT-QuickHeal 10.00 2009.06.19 -
ClamAV 0.94.1 2009.06.19 -
Comodo 1373 2009.06.19 -
DrWeb 5.0.0.12182 2009.06.19 -
eSafe 7.0.17.0 2009.06.18 -
eTrust-Vet 31.6.6569 2009.06.19 -
F-Prot 4.4.4.56 2009.06.19 -
F-Secure 8.0.14470.0 2009.06.19 -
Fortinet 3.117.0.0 2009.06.19 -
GData 19 2009.06.19 -
Ikarus T3.1.1.59.0 2009.06.19 -
Jiangmin 11.0.706 2009.06.19 -
K7AntiVirus 7.10.768 2009.06.19 -
Kaspersky 7.0.0.125 2009.06.19 -
McAfee 5651 2009.06.19 -
McAfee+Artemis 5651 2009.06.19 -
McAfee-GW-Edition 6.7.6 2009.06.19 -
Microsoft 1.4803 2009.06.19 -
NOD32 4172 2009.06.19 -
Norman 6.01.09 2009.06.19 -
nProtect 2009.1.8.0 2009.06.19 -
Panda 10.0.0.16 2009.06.19 -
PCTools 4.4.2.0 2009.06.19 -
Prevx 3.0 2009.06.19 -
Rising 21.34.44.00 2009.06.19 -
Sophos 4.42.0 2009.06.19 -
Sunbelt 3.2.1858.2 2009.06.19 -
Symantec 1.4.4.12 2009.06.19 -
TheHacker 6.3.4.3.348 2009.06.19 -
TrendMicro 8.950.0.1094 2009.06.19 -
VBA32 3.12.10.7 2009.06.19 -
ViRobot 2009.6.19.1796 2009.06.19 -
VirusBuster 4.6.5.0 2009.06.19 -
Information additionnelle
File size: 2522 bytes
MD5...: 32442fc59ebe889060711dd4ecada98c
SHA1..: 2788312632832475aff2f4c2dc57ec2c2cf4a4dc
SHA256: 97d54b40330a2c15e1df4c2656a6c8c62e285557894e96c6e78f8801c7c6a198
ssdeep: 48:tKFe1ZGgd0tmPMoQd8MGd740d0RoUidJdnHrdZfFen/tFen/crFen/cgmCFen
/c+:ImPM+g4SnPU+
PEiD..: -
TrID..: File type identification
Windows Registry Data (Ver. 5.0 - UTF16) (96.8%)
Text - UTF-16 (LE) encoded (2.0%)
MP3 audio (1.0%)
Lumena CEL bitmap (0.0%)
Corel Photo Paint (0.0%)
PEInfo: -
PDFiD.: -
RDS...: NSRL Reference Data Set
-
packers (F-Prot): Unicode
ATTENTION: VirusTotal est un service gratuit offert par Hispasec Sistemas. Il n'y a aucune garantie quant à la disponibilité et la continuité de ce service. Bien que le taux de détection permis par l'utilisation de multiples moteurs antivirus soit bien supérieur à celui offert par seulement un produit, ces résultats NE garantissent PAS qu'un fichier est sans danger. Il n'y a actuellement aucune solution qui offre un taux d'efficacité de 100% pour la détection des virus et malwares.http://www.virustotal.com/fr/analisis/97d54b40330a2c15e1df4c2656a6c8c62e285557894e96c6e78f8801c7c6a198-1245438432
AhnLab-V3 5.0.0.2 2009.06.19 -
AntiVir 7.9.0.193 2009.06.19 -
Antiy-AVL 2.0.3.1 2009.06.19 -
Authentium 5.1.2.4 2009.06.19 -
Avast 4.8.1335.0 2009.06.18 -
AVG 8.5.0.339 2009.06.19 -
BitDefender 7.2 2009.06.19 -
CAT-QuickHeal 10.00 2009.06.19 -
ClamAV 0.94.1 2009.06.19 -
Comodo 1373 2009.06.19 -
DrWeb 5.0.0.12182 2009.06.19 -
eSafe 7.0.17.0 2009.06.18 -
eTrust-Vet 31.6.6569 2009.06.19 -
F-Prot 4.4.4.56 2009.06.19 -
F-Secure 8.0.14470.0 2009.06.19 -
Fortinet 3.117.0.0 2009.06.19 -
GData 19 2009.06.19 -
Ikarus T3.1.1.59.0 2009.06.19 -
Jiangmin 11.0.706 2009.06.19 -
K7AntiVirus 7.10.768 2009.06.19 -
Kaspersky 7.0.0.125 2009.06.19 -
McAfee 5651 2009.06.19 -
McAfee+Artemis 5651 2009.06.19 -
McAfee-GW-Edition 6.7.6 2009.06.19 -
Microsoft 1.4803 2009.06.19 -
NOD32 4172 2009.06.19 -
Norman 6.01.09 2009.06.19 -
nProtect 2009.1.8.0 2009.06.19 -
Panda 10.0.0.16 2009.06.19 -
PCTools 4.4.2.0 2009.06.19 -
Prevx 3.0 2009.06.19 -
Rising 21.34.44.00 2009.06.19 -
Sophos 4.42.0 2009.06.19 -
Sunbelt 3.2.1858.2 2009.06.19 -
Symantec 1.4.4.12 2009.06.19 -
TheHacker 6.3.4.3.348 2009.06.19 -
TrendMicro 8.950.0.1094 2009.06.19 -
VBA32 3.12.10.7 2009.06.19 -
ViRobot 2009.6.19.1796 2009.06.19 -
VirusBuster 4.6.5.0 2009.06.19 -
Information additionnelle
File size: 2522 bytes
MD5...: 32442fc59ebe889060711dd4ecada98c
SHA1..: 2788312632832475aff2f4c2dc57ec2c2cf4a4dc
SHA256: 97d54b40330a2c15e1df4c2656a6c8c62e285557894e96c6e78f8801c7c6a198
ssdeep: 48:tKFe1ZGgd0tmPMoQd8MGd740d0RoUidJdnHrdZfFen/tFen/crFen/cgmCFen
/c+:ImPM+g4SnPU+
PEiD..: -
TrID..: File type identification
Windows Registry Data (Ver. 5.0 - UTF16) (96.8%)
Text - UTF-16 (LE) encoded (2.0%)
MP3 audio (1.0%)
Lumena CEL bitmap (0.0%)
Corel Photo Paint (0.0%)
PEInfo: -
PDFiD.: -
RDS...: NSRL Reference Data Set
-
packers (F-Prot): Unicode
ATTENTION: VirusTotal est un service gratuit offert par Hispasec Sistemas. Il n'y a aucune garantie quant à la disponibilité et la continuité de ce service. Bien que le taux de détection permis par l'utilisation de multiples moteurs antivirus soit bien supérieur à celui offert par seulement un produit, ces résultats NE garantissent PAS qu'un fichier est sans danger. Il n'y a actuellement aucune solution qui offre un taux d'efficacité de 100% pour la détection des virus et malwares.http://www.virustotal.com/fr/analisis/97d54b40330a2c15e1df4c2656a6c8c62e285557894e96c6e78f8801c7c6a198-1245438432
