Bilan de santé
dj knock
-
Utilisateur anonyme -
Utilisateur anonyme -
Bonjour,Logfile of random's system information tool 1.06 (written by random/random)
Run by USER at 2009-09-18 14:13:45
Microsoft Windows XP Professionnel Service Pack 2
System drive C: has 18 GB (45%) free of 40 GB
Total RAM: 1527 MB (45% free)
Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 14:14:19, on 18/09/2009
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v8.00 (8.00.6001.18702)
Boot mode: Normal
Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
C:\Program Files\CheckPoint\ZAForceField\IswSvc.exe
C:\Program Files\Alwil Software\Avast4\ashServ.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\CheckPoint\ZAForceField\ForceField.exe
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\RTHDCPL.EXE
C:\WINDOWS\system32\igfxtray.exe
C:\WINDOWS\system32\hkcmd.exe
C:\WINDOWS\system32\igfxpers.exe
C:\Program Files\HP\HP Software Update\HPWuSchd2.exe
C:\Program Files\Hewlett-Packard\OrderReminder\OrderReminder.exe
C:\Program Files\Java\jre6\bin\jusched.exe
C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
C:\WINDOWS\system32\igfxsrvc.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe
C:\Program Files\Bonjour\mDNSResponder.exe
C:\Documents and Settings\All Users.WINDOWS\Application Data\Findbasic\findbasic121.exe
C:\Program Files\Java\jre6\bin\jqs.exe
C:\WINDOWS\system32\HPZipm12.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Yahoo!\SoftwareUpdate\YahooAUService.exe
C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
C:\Program Files\Findbasic\findbasic.exe
C:\WINDOWS\system32\wuauclt.exe
C:\Program Files\CCP Server 5\ccpsrv.exe
C:\Documents and Settings\USER\Local Settings\Application Data\Google\Chrome\Application\chrome.exe
C:\Documents and Settings\USER\Local Settings\Application Data\Google\Chrome\Application\chrome.exe
C:\Program Files\Windows Media Player\wmplayer.exe
C:\Documents and Settings\USER\Local Settings\Application Data\Google\Chrome\Application\chrome.exe
C:\Documents and Settings\USER\Local Settings\Application Data\Google\Chrome\Application\chrome.exe
C:\Documents and Settings\USER\Local Settings\Application Data\Google\Chrome\Application\chrome.exe
C:\Program Files\Diskeeper Corporation\Diskeeper\DkService.exe
C:\Program Files\Internet Download Manager\IDMan.exe
C:\WINDOWS\system32\NOTEPAD.EXE
C:\Documents and Settings\USER\Local Settings\Application Data\Google\Chrome\Application\chrome.exe
C:\Documents and Settings\USER\Mes documents\Downloads\Programs\RSIT.exe
C:\Program Files\trend micro\USER.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = about:blank
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.google.fr/?gws_rd=ssl
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = https://www.msn.com/fr-fr/?ocid=iehp
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Bar = about:blank
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.msn.com/fr-fr/?ocid=iehp
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Favoris
R3 - URLSearchHook: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\PROGRA~1\Yahoo!\Companion\Installs\cpn0\yt.dll
O2 - BHO: IDM Helper - {0055C089-8582-441B-A0BF-17B458C2A3A8} - C:\Program Files\Internet Download Manager\IDMIECC.dll
O2 - BHO: &Yahoo! Toolbar Helper - {02478D38-C3F9-4efb-9B51-7695ECA05670} - C:\PROGRA~1\Yahoo!\Companion\Installs\cpn0\yt.dll
O2 - BHO: AskBar BHO - {201f27d4-3704-41d6-89c1-aa35e39143ed} - C:\Program Files\AskBarDis\bar\bin\askBar.dll
O2 - BHO: Spybot-S&D IE Protection - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O2 - BHO: ZoneAlarm Toolbar Registrar - {8A4A36C2-0535-4D2C-BD3D-496CB7EED6E3} - C:\Program Files\CheckPoint\ZAForceField\TrustChecker\bin\TrustCheckerIEPlugin.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll
O2 - BHO: JQSIEStartDetectorImpl - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll
O2 - BHO: SingleInstance Class - {FDAD4DA1-61A2-4FD8-9C17-86F7AC245081} - C:\PROGRA~1\Yahoo!\Companion\Installs\cpn0\YTSingleInstance.dll
O3 - Toolbar: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\PROGRA~1\Yahoo!\Companion\Installs\cpn0\yt.dll
O3 - Toolbar: Systran40premi.IEPlugIn - {CFB25594-4D5F-11D6-AB7B-00B0D094B576} - C:\Program Files\Systran\4_0\Premium\IEPlugIn.dll
O3 - Toolbar: (no name) - {CCC7A320-B3CA-4199-B1A6-9F516DD69829} - (no file)
O3 - Toolbar: Foxit Toolbar - {3041d03e-fd4b-44e0-b742-2d9b88305f98} - C:\Program Files\AskBarDis\bar\bin\askBar.dll
O3 - Toolbar: ZoneAlarm Toolbar - {EE2AC4E5-B0B0-4EC6-88A9-BCA1A32AB107} - C:\Program Files\CheckPoint\ZAForceField\TrustChecker\bin\TrustCheckerIEPlugin.dll
O3 - Toolbar: (no name) - {9F849A78-A3E0-4ECA-BC6A-9B7193B28CE1} - (no file)
O4 - HKLM\..\Run: [RTHDCPL] RTHDCPL.EXE
O4 - HKLM\..\Run: [Alcmtr] ALCMTR.EXE
O4 - HKLM\..\Run: [IgfxTray] C:\WINDOWS\system32\igfxtray.exe
O4 - HKLM\..\Run: [HotKeysCmds] C:\WINDOWS\system32\hkcmd.exe
O4 - HKLM\..\Run: [Persistence] C:\WINDOWS\system32\igfxpers.exe
O4 - HKLM\..\Run: [HP Software Update] C:\Program Files\HP\HP Software Update\HPWuSchd2.exe
O4 - HKLM\..\Run: [OrderReminder] C:\Program Files\Hewlett-Packard\OrderReminder\OrderReminder.exe
O4 - HKLM\..\Run: [NBKeyScan] "C:\Program Files\Nero\Nero8\Nero BackItUp\NBKeyScan.exe"
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre6\bin\jusched.exe"
O4 - HKLM\..\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
O4 - HKLM\..\Run: [ZoneAlarm Client] "C:\Program Files\Zone Labs\ZoneAlarm\zlclient.exe"
O4 - HKLM\..\Run: [ISW] "C:\Program Files\CheckPoint\ZAForceField\ForceField.exe" /icon="hidden"
O4 - HKLM\..\Run: [Ad-Watch] C:\Program Files\Lavasoft\Ad-Aware\AAWTray.exe
O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}] "C:\Program Files\Fichiers communs\Nero\Lib\NMBgMonitor.exe"
O4 - HKCU\..\Run: [ExplorerClient] "C:\Program Files\Softvision\Softvision Explorer 3\ExplorerClient.exe" AUTO
O4 - HKCU\..\Run: [OpenDNS Updater] "C:\Program Files\OpenDNS Updater\OpenDNSUpdater.exe" /autostart
O4 - HKCU\..\Run: [IDMan] C:\Program Files\Internet Download Manager\IDMan.exe /onboot
O4 - HKCU\..\Run: [SpybotSD TeaTimer] C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE RÉSEAU')
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
O6 - HKCU\Software\Policies\Microsoft\Internet Explorer\Toolbars\Restrictions present
O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office12\EXCEL.EXE/3000
O8 - Extra context menu item: Télécharger avec IDM - C:\Program Files\Internet Download Manager\IEExt.htm
O8 - Extra context menu item: Télécharger le contenu de video FLV avec IDM - C:\Program Files\Internet Download Manager\IEGetVL.htm
O8 - Extra context menu item: Télécharger tous les liens avec IDM - C:\Program Files\Internet Download Manager\IEGetAll.htm
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\Office12\REFIEBAR.DLL
O9 - Extra button: (no name) - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O9 - Extra 'Tools' menuitem: Spybot - Search & Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O10 - Unknown file in Winsock LSP: c:\windows\system32\nwprovau.dll
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab
O16 - DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} - http://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab
O17 - HKLM\System\CCS\Services\Tcpip\..\{615ACE12-1FE2-4CFD-A43A-E76359EF4D39}: NameServer = 208.67.222.222,208.67.220.220
O17 - HKLM\System\CS1\Services\Tcpip\..\{615ACE12-1FE2-4CFD-A43A-E76359EF4D39}: NameServer = 208.67.222.222,208.67.220.220
O17 - HKLM\System\CS4\Services\Tcpip\..\{615ACE12-1FE2-4CFD-A43A-E76359EF4D39}: NameServer = 208.67.222.222,208.67.220.220
O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - ALWIL Software - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
O23 - Service: avast! Antivirus - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashServ.exe
O23 - Service: avast! Mail Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
O23 - Service: avast! Web Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
O23 - Service: ##Id_String1.6844F930_1628_4223_B5CC_5BB94B879762## (Bonjour Service) - Apple Computer, Inc. - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: Diskeeper - Diskeeper Corporation - C:\Program Files\Diskeeper Corporation\Diskeeper\DkService.exe
O23 - Service: Findbasic Service - Unknown owner - C:\Documents and Settings\All Users.WINDOWS\Application Data\Findbasic\findbasic121.exe
O23 - Service: ZoneAlarm Toolbar IswSvc (IswSvc) - Check Point Software Technologies - C:\Program Files\CheckPoint\ZAForceField\IswSvc.exe
O23 - Service: Java Quick Starter (JavaQuickStarterService) - Sun Microsystems, Inc. - C:\Program Files\Java\jre6\bin\jqs.exe
O23 - Service: Nero BackItUp Scheduler 4.0 - Unknown owner - C:\Program Files\Fichiers communs\Nero\Nero BackItUp 4\NBService.exe (file missing)
O23 - Service: Pml Driver HPZ12 - HP - C:\WINDOWS\system32\HPZipm12.exe
O23 - Service: Yahoo! Updater (YahooAUService) - Yahoo! Inc. - C:\Program Files\Yahoo!\SoftwareUpdate\YahooAUService.exe
--
End of file - 10323 bytes
======Scheduled tasks folder======
C:\WINDOWS\tasks\User_Feed_Synchronization-{FB1EE39B-E18B-43D9-A66D-06A2865C2BCD}.job
C:\WINDOWS\tasks\WGASetup.job
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{0055C089-8582-441B-A0BF-17B458C2A3A8}]
IDMIEHlprObj Class - C:\Program Files\Internet Download Manager\IDMIECC.dll [2009-09-09 173488]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{02478D38-C3F9-4efb-9B51-7695ECA05670}]
&Yahoo! Toolbar Helper - C:\PROGRA~1\Yahoo!\Companion\Installs\cpn0\yt.dll [2009-03-13 908528]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{201f27d4-3704-41d6-89c1-aa35e39143ed}]
AskBar BHO - C:\Program Files\AskBarDis\bar\bin\askBar.dll [2008-11-18 333192]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{53707962-6F74-2D53-2644-206D7942484F}]
Spybot-S&D IE Protection - C:\PROGRA~1\SPYBOT~1\SDHelper.dll [2009-01-26 1879896]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8A4A36C2-0535-4D2C-BD3D-496CB7EED6E3}]
ZoneAlarm Toolbar Registrar - C:\Program Files\CheckPoint\ZAForceField\TrustChecker\bin\TrustCheckerIEPlugin.dll [2009-08-26 578928]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre6\bin\jp2ssv.dll [2009-08-21 41760]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E7E6F031-17CE-4C07-BC86-EABFE594F69C}]
JQSIEStartDetectorImpl Class - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll [2009-08-21 73728]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{FDAD4DA1-61A2-4FD8-9C17-86F7AC245081}]
SingleInstance Class - C:\PROGRA~1\Yahoo!\Companion\Installs\cpn0\YTSingleInstance.dll [2009-03-13 165616]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{EF99BD32-C1FB-11D2-892F-0090271D4F88} - Yahoo! Toolbar - C:\PROGRA~1\Yahoo!\Companion\Installs\cpn0\yt.dll [2009-03-13 908528]
{CFB25594-4D5F-11D6-AB7B-00B0D094B576} - Systran40premi.IEPlugIn - C:\Program Files\Systran\4_0\Premium\IEPlugIn.dll [2002-04-12 65536]
{CCC7A320-B3CA-4199-B1A6-9F516DD69829}
{3041d03e-fd4b-44e0-b742-2d9b88305f98} - Foxit Toolbar - C:\Program Files\AskBarDis\bar\bin\askBar.dll [2008-11-18 333192]
{EE2AC4E5-B0B0-4EC6-88A9-BCA1A32AB107} - ZoneAlarm Toolbar - C:\Program Files\CheckPoint\ZAForceField\TrustChecker\bin\TrustCheckerIEPlugin.dll [2009-08-26 578928]
{9F849A78-A3E0-4ECA-BC6A-9B7193B28CE1}
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"RTHDCPL"=C:\WINDOWS\RTHDCPL.EXE [2008-01-29 16859648]
"Alcmtr"=C:\WINDOWS\ALCMTR.EXE [2005-05-03 69632]
"IgfxTray"=C:\WINDOWS\system32\igfxtray.exe [2007-12-19 135168]
"HotKeysCmds"=C:\WINDOWS\system32\hkcmd.exe [2007-12-19 159744]
"Persistence"=C:\WINDOWS\system32\igfxpers.exe [2007-12-19 131072]
"HP Software Update"=C:\Program Files\HP\HP Software Update\HPWuSchd2.exe [2006-02-19 49152]
"OrderReminder"=C:\Program Files\Hewlett-Packard\OrderReminder\OrderReminder.exe [2006-07-30 98304]
"NBKeyScan"=C:\Program Files\Nero\Nero8\Nero BackItUp\NBKeyScan.exe []
"SunJavaUpdateSched"=C:\Program Files\Java\jre6\bin\jusched.exe [2009-08-21 149280]
"avast!"=C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe [2009-08-17 81000]
"ZoneAlarm Client"=C:\Program Files\Zone Labs\ZoneAlarm\zlclient.exe [2009-08-26 1011080]
"ISW"=C:\Program Files\CheckPoint\ZAForceField\ForceField.exe [2009-08-26 722288]
"Ad-Watch"=C:\Program Files\Lavasoft\Ad-Aware\AAWTray.exe []
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"=C:\WINDOWS\system32\ctfmon.exe [2004-08-03 15360]
"BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}"=C:\Program Files\Fichiers communs\Nero\Lib\NMBgMonitor.exe []
"ExplorerClient"=C:\Program Files\Softvision\Softvision Explorer 3\ExplorerClient.exe AUTO []
"OpenDNS Updater"=C:\Program Files\OpenDNS Updater\OpenDNSUpdater.exe /autostart []
"IDMan"=C:\Program Files\Internet Download Manager\IDMan.exe [2009-09-09 3118512]
"SpybotSD TeaTimer"=C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe [2009-03-05 2260480]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\igfxcui]
C:\WINDOWS\system32\igfxdev.dll [2007-12-19 208896]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\WINDOWS\system32\WPDShServiceObj.dll [2006-08-24 133120]
UPnPMonitor - {e57ce738-33e8-4c51-8354-bb4de9d215d1} - C:\WINDOWS\system32\upnpui.dll [2004-08-03 240128]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Lsa]
"notification packages"=
scecli
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Lavasoft Ad-Aware Service]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Lavasoft Ad-Aware Service]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\nm]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\nm.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\vsmon]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"DisableTaskMgr"=0
"DisableChangePassword"=0
"DisableLockWorkstation"=0
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NofolderOptions"=0
"NoFind"=0
"NoRun"=0
"SpecifyDefaultButtons"=0
"NoBandCustomize"=0
"NoToolbarCustomize"=0
"NoFileUrl"=0
"NoAddPrinter"=0
"NoDeletePrinter"=0
"NoViewContextMenu"=0
"NoDrives"=0
"NoViewOnDrive"=0
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=
"NoFolderOptions"=
"HonorAutoRunSetting"=
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"C:\Program Files\CCP Server 5\ccpsrv.exe"="C:\Program Files\CCP Server 5\ccpsrv.exe:*:Enabled:CyberCafePro Main Control Station"
"C:\Program Files\Microsoft Office\Office12\OUTLOOK.EXE"="C:\Program Files\Microsoft Office\Office12\OUTLOOK.EXE:*:Enabled:Microsoft Office Outlook"
"C:\Program Files\Yahoo!\Messenger\YahooMessenger.exe"="C:\Program Files\Yahoo!\Messenger\YahooMessenger.exe:*:Enabled:Yahoo! Messenger"
"F:\driver\usb\usb_driver.exe"="F:\driver\usb\usb_driver.exe:*:Enabled:microssofts"
"C:\Program Files\TVUPlayer\TVUPlayer.exe"="C:\Program Files\TVUPlayer\TVUPlayer.exe:*:Enabled:TVUPlayer Component"
"C:\Program Files\VoipBuster.com\VoipBuster\VoipBuster.exe"="C:\Program Files\VoipBuster.com\VoipBuster\VoipBuster.exe:*:Enabled:VoipBuster"
"C:\Program Files\Bonjour\mDNSResponder.exe"="C:\Program Files\Bonjour\mDNSResponder.exe:*:Enabled:Bonjour"
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{0c85d223-a2fb-11de-81d3-0019dbe51d6f}]
shell\AutoRun\command - F:\DRIVER///vozacka.exe
shell\explore\command - F:\DRIVER//vozacka.exe
shell\open\command - F:\DRIVER//vozacka.exe
[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{27453fd5-9eb5-11de-81c2-0019dbe51d6f}]
shell\AutoRun\command - C:\WINDOWS\system32\RunDLL32.EXE Shell32.DLL,ShellExec_RunDLL log.exe
shell\Ouvrir\command - F:\log.exe
[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{2a478fe9-8274-11de-8174-0019dbe51d6f}]
shell\AutoRun\command - C:\WINDOWS\system32\RunDLL32.EXE Shell32.DLL,ShellExec_RunDLL log.exe
shell\Ouvrir\command - F:\log.exe
[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{2b171b27-a2a1-11de-81d2-0019dbe51d6f}]
shell\AutoRun\command - F:\LaunchU3.exe -a
[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{2b171b28-a2a1-11de-81d2-0019dbe51d6f}]
shell\AutoRun\command - G:\ZNAM\potom.exe
shell\explore\command - G:\.////ZNAM/\\\\potom.exe
shell\open\command - G:\ZNAM/////\\\\potom.exe
[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{31be8492-8403-11de-817a-0019dbe51d6f}]
shell\AutoRun\command - F:\lcw.exe
shell\open\command - F:\lcw.exe
[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{31be8496-8403-11de-817a-0019dbe51d6f}]
shell\AutoRun\command - F:\driver\usb\usb_driver.exe
shell\open\command - F:\driver\usb\usb_driver.exe
[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{31be8498-8403-11de-817a-0019dbe51d6f}]
shell\AutoRun\command - F:\driver\usb\usb_driver.exe
shell\open\command - F:\driver\usb\usb_driver.exe
[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{436dd04a-a1da-11de-81d0-0019dbe51d6f}]
shell\AutoRun\command - F:\LaunchU3.exe -a
[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{44146e31-869a-11de-817f-0019dbe51d6f}]
shell\AutoRun\command - F:\LaunchU3.exe -a
[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{57507f0e-8751-11de-8182-0019dbe51d6f}]
shell\AutoRun\command - F:\driver\usb\usb_driver.exe
shell\open\command - F:\driver\usb\usb_driver.exe
[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{64961e19-8264-11de-816f-0019dbe51d6f}]
shell\AutoRun\command - F:\d1vmq.exe
shell\open\command - F:\d1vmq.exe
[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{65ff0d21-93ae-11de-81a7-0019dbe51d6f}]
shell\AutoRun\command - INFO\solar.exe
shell\explore\command - .////INFO/\\\\solar.exe
shell\open\command - INFO/////\\\\solar.exe
[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{7bac0931-8ca2-11de-8191-0019dbe51d6f}]
shell\AutoRun\command - F:\CRNI\vrag.exe
shell\explore\command - F:\.////CRNI/\\\\vrag.exe
shell\open\command - F:\CRNI/////\\\\vrag.exe
[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{abe0800b-9b90-11de-81b5-0019dbe51d6f}]
shell\AutoRun\command - C:\WINDOWS\system32\RunDLL32.EXE Shell32.DLL,ShellExec_RunDLL Wscript.exe /e:vbs winfile.jpg
[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{abe08010-9b90-11de-81b5-0019dbe51d6f}]
shell\AutoRun\command - zPharaoh.exe
shell\explore\command - zPharaoh.exe
shell\open\command - zPharaoh.exe
[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{c0b9d97e-9620-11de-81aa-0019dbe51d6f}]
shell\AutoRun\command - F:\ReCYCleR\sE.exe
shell\OpEn\command - F:\ReCYCleR\sE.exe
[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{c0b9d980-9620-11de-81aa-0019dbe51d6f}]
shell\AutoRun\command - F:\windows\usbv.exe
shell\open\command - F:\windows\usbv.exe
[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{ccc71e66-a110-11de-81cb-0019dbe51d6f}]
shell\AutoRun\command - F:\DATA\FILES\BEAST.exe
shell\open\command - F:\DATA\FILES\BEAST.exe
[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{d586a692-87ee-11de-8183-0019dbe51d6f}]
shell\AutoRun\command - F:\driver\usb\usb_driver.exe
shell\open\command - F:\driver\usb\usb_driver.exe
[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{d586a695-87ee-11de-8183-0019dbe51d6f}]
shell\AutoRun\command - F:\driver\usb\usb_driver.exe
shell\open\command - F:\driver\usb\usb_driver.exe
[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{d586a696-87ee-11de-8183-0019dbe51d6f}]
shell\AutoRun\command - F:\driver\usb\usb_driver.exe
shell\open\command - F:\driver\usb\usb_driver.exe
[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{dc4eac24-88d4-11de-8189-0019dbe51d6f}]
shell\AutoRun\command - F:\driver\usb\usb_driver.exe
shell\open\command - F:\driver\usb\usb_driver.exe
[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{dd3baf0c-9a0b-11de-81b1-0019dbe51d6f}]
shell\AutoRun\command - F:\lcw.exe
shell\open\command - F:\lcw.exe
[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{eecfe946-96d3-11de-81ab-0019dbe51d6f}]
shell\AutoRun\command - F:\LaunchU3.exe -a
[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{f2bb578f-85ba-11de-817d-0019dbe51d6f}]
shell\AutoRun\command - F:\LaunchU3.exe -a
[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{f2bb5794-85ba-11de-817d-0019dbe51d6f}]
shell\AutoRun\command - F:\NEBO\zeljko.exe
shell\explore\command - F:\.////NEBO/\\\\zeljko.exe
shell\open\command - F:\NEBO/////\\\\zeljko.exe
[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{f2bb5795-85ba-11de-817d-0019dbe51d6f}]
shell\AutoRun\command - F:\driver\usb\usb_driver.exe
shell\open\command - F:\driver\usb\usb_driver.exe
======List of files/folders created in the last 1 months======
2009-09-18 14:07:13 ----D---- C:\Program Files\trend micro
2009-09-18 14:07:12 ----D---- C:\rsit
2009-09-18 12:24:51 ----D---- C:\Program Files\Fichiers communs\Diskeeper Corporation
2009-09-18 12:24:50 ----D---- C:\Documents and Settings\All Users.WINDOWS\Application Data\Diskeeper Corporation
2009-09-18 12:24:47 ----D---- C:\Program Files\Diskeeper Corporation
2009-09-16 19:44:27 ----D---- C:\WINDOWS\Minidump
2009-09-16 19:42:13 ----D---- C:\Documents and Settings\All Users.WINDOWS\Application Data\Lavasoft
2009-09-16 19:39:26 ----D---- C:\Program Files\Spybot - Search & Destroy
2009-09-16 19:39:26 ----D---- C:\Documents and Settings\All Users.WINDOWS\Application Data\Spybot - Search & Destroy
2009-09-16 09:14:42 ----D---- C:\Documents and Settings\USER\Application Data\Xilisoft Corporation
2009-09-16 08:45:40 ----D---- C:\Documents and Settings\USER\Application Data\IDM
2009-09-16 08:45:40 ----D---- C:\Documents and Settings\USER\Application Data\DMCache
2009-09-16 08:45:34 ----D---- C:\Program Files\Internet Download Manager
2009-09-14 20:10:10 ----D---- C:\Documents and Settings\USER\Application Data\AVS4YOU
2009-09-14 20:10:09 ----D---- C:\Documents and Settings\All Users.WINDOWS\Application Data\AVS4YOU
2009-09-14 20:08:44 ----D---- C:\Program Files\Fichiers communs\AVSMedia
2009-09-14 20:08:06 ----HDC---- C:\WINDOWS\$NtUninstallWMFDist11$
2009-09-14 20:06:44 ----A---- C:\WINDOWS\system32\msvcr70.dll
2009-09-14 20:06:44 ----A---- C:\WINDOWS\system32\msvcp70.dll
2009-09-14 20:06:44 ----A---- C:\WINDOWS\system32\mfc70.dll
2009-09-14 20:06:44 ----A---- C:\WINDOWS\system32\GdiPlus.dll
2009-09-14 20:06:43 ----D---- C:\Program Files\AVS4YOU
2009-09-14 20:06:43 ----A---- C:\WINDOWS\system32\msxml3a.dll
2009-09-13 19:03:15 ----D---- C:\Documents and Settings\USER\Application Data\#ISW.FS#
2009-09-12 20:05:31 ----D---- C:\Documents and Settings\USER\Application Data\OpenDNS Updater
2009-09-12 12:14:59 ----D---- C:\Documents and Settings\All Users.WINDOWS\Application Data\Kaspersky SDK
2009-09-12 11:56:12 ----D---- C:\Documents and Settings\USER\Application Data\CheckPoint
2009-09-12 11:55:48 ----D---- C:\Documents and Settings\USER\Application Data\pdfforge
2009-09-12 11:55:17 ----D---- C:\Program Files\CheckPoint
2009-09-12 11:55:11 ----A---- C:\WINDOWS\zllsputility.exe
2009-09-12 11:54:37 ----A---- C:\WINDOWS\system32\vsregexp.dll
2009-09-12 11:54:35 ----A---- C:\WINDOWS\system32\zlcommdb.dll
2009-09-12 11:54:35 ----A---- C:\WINDOWS\system32\zlcomm.dll
2009-09-12 11:54:28 ----A---- C:\WINDOWS\system32\vswmi.dll
2009-09-12 11:54:27 ----D---- C:\WINDOWS\system32\ZoneLabs
2009-09-12 11:54:27 ----A---- C:\WINDOWS\system32\zpeng25.dll
2009-09-12 11:54:27 ----A---- C:\WINDOWS\system32\vsxml.dll
2009-09-12 11:54:27 ----A---- C:\WINDOWS\system32\vspubapi.dll
2009-09-12 11:54:27 ----A---- C:\WINDOWS\system32\vsmonapi.dll
2009-09-12 11:53:36 ----A---- C:\WINDOWS\system32\vsutil.dll
2009-09-12 11:53:36 ----A---- C:\WINDOWS\system32\vsinit.dll
2009-09-12 11:53:36 ----A---- C:\WINDOWS\system32\vsdata.dll
2009-09-12 11:48:37 ----HDC---- C:\WINDOWS\$NtUninstallKB943232$
2009-09-12 11:48:13 ----D---- C:\Program Files\Zone Labs
2009-09-12 11:48:00 ----D---- C:\WINDOWS\Internet Logs
2009-09-11 19:32:51 ----A---- C:\WINDOWS\system32\aswBoot.exe
2009-09-10 19:32:07 ----D---- C:\Program Files\Findbasic
2009-09-10 19:32:07 ----D---- C:\Documents and Settings\All Users.WINDOWS\Application Data\Findbasic
2009-09-10 19:32:04 ----D---- C:\Documents and Settings\USER\Application Data\DealAssistant
2009-09-10 19:32:04 ----A---- C:\WINDOWS\system32\2e78.dll
2009-09-10 09:19:51 ----D---- C:\Program Files\AskBarDis
2009-09-10 08:37:05 ----HDC---- C:\WINDOWS\$NtUninstallKB956844$
2009-09-10 08:36:59 ----HDC---- C:\WINDOWS\$NtUninstallKB968816_WM9$
2009-09-09 14:55:30 ----D---- C:\Program Files\AVG
2009-09-09 09:52:58 ----A---- C:\WINDOWS\system32\idmmbc.dll
2009-09-08 14:57:48 ----D---- C:\WINDOWS\Sun
2009-09-08 09:05:06 ----D---- C:\Program Files\Foxit Software
2009-09-08 09:05:06 ----D---- C:\Documents and Settings\USER\Application Data\Foxit
2009-09-07 20:45:16 ----D---- C:\Documents and Settings\USER\Application Data\tazebama
2009-09-06 16:44:54 ----D---- C:\WINDOWS\system32\CatRoot_bak
2009-09-06 16:41:04 ----D---- C:\WINDOWS\Prefetch
2009-09-04 08:49:25 ----D---- C:\Program Files\Fichiers communs\DVDVideoSoft
2009-09-03 11:51:54 ----HD---- C:\WINDOWS\PIF
2009-08-29 08:55:23 ----HDC---- C:\WINDOWS\$NtUninstallKB951978$
2009-08-29 08:55:16 ----HDC---- C:\WINDOWS\$NtUninstallKB956744$
2009-08-29 08:55:07 ----HDC---- C:\WINDOWS\$NtUninstallKB973540_WM9$
2009-08-29 08:54:57 ----HDC---- C:\WINDOWS\$NtUninstallKB954459$
2009-08-27 20:34:03 ----D---- C:\Documents and Settings\All Users.WINDOWS\Application Data\Windows Genuine Advantage
2009-08-27 20:04:23 ----A---- C:\WINDOWS\system32\wmpns.dll
2009-08-27 18:45:09 ----D---- C:\WINDOWS\system32\bits
2009-08-27 18:39:13 ----A---- C:\WINDOWS\system32\qmgr.dll
2009-08-27 18:39:10 ----A---- C:\WINDOWS\system32\ntbackup.exe
2009-08-27 18:38:46 ----A---- C:\WINDOWS\system32\magnify.exe
2009-08-27 18:38:45 ----A---- C:\WINDOWS\system32\mobsync.exe
2009-08-27 18:38:42 ----A---- C:\WINDOWS\system32\mspaint.exe
2009-08-27 18:38:40 ----A---- C:\WINDOWS\system32\notepad.exe
2009-08-27 18:38:39 ----A---- C:\WINDOWS\system32\odbcad32.exe
2009-08-27 18:38:38 ----A---- C:\WINDOWS\system32\osk.exe
2009-08-27 18:38:34 ----A---- C:\WINDOWS\system32\sndrec32.exe
2009-08-27 18:38:33 ----A---- C:\WINDOWS\system32\spider.exe
2009-08-27 18:38:28 ----A---- C:\WINDOWS\system32\msgsvc.dll
2009-08-27 18:38:28 ----A---- C:\WINDOWS\system32\mgmtapi.dll
2009-08-27 18:38:28 ----A---- C:\WINDOWS\system32\lsasrv.dll
2009-08-27 18:38:28 ----A---- C:\WINDOWS\system32\locator.exe
2009-08-27 18:38:28 ----A---- C:\WINDOWS\system32\localspl.dll
2009-08-27 18:38:28 ----A---- C:\WINDOWS\system32\lmhsvc.dll
2009-08-27 18:38:28 ----A---- C:\WINDOWS\system32\kernel32.dll
2009-08-27 18:38:28 ----A---- C:\WINDOWS\system32\imagehlp.dll
2009-08-27 18:38:28 ----A---- C:\WINDOWS\system32\ftp.exe
2009-08-27 18:38:28 ----A---- C:\WINDOWS\system32\format.com
2009-08-27 18:38:28 ----A---- C:\WINDOWS\system32\dhcpcsvc.dll
2009-08-27 18:38:28 ----A---- C:\WINDOWS\system32\csrsrv.dll
2009-08-27 18:38:28 ----A---- C:\WINDOWS\system32\comdlg32.dll
2009-08-27 18:38:28 ----A---- C:\WINDOWS\system32\comctl32.dll
2009-08-27 18:38:28 ----A---- C:\WINDOWS\system32\cmd.exe
2009-08-27 18:38:28 ----A---- C:\WINDOWS\system32\cacls.exe
2009-08-27 18:38:28 ----A---- C:\WINDOWS\system32\autoconv.exe
2009-08-27 18:38:28 ----A---- C:\WINDOWS\system32\autochk.exe
2009-08-27 18:38:28 ----A---- C:\WINDOWS\system32\advapi32.dll
2009-08-27 18:38:27 ----A---- C:\WINDOWS\system32\userinit.exe
2009-08-27 18:38:27 ----A---- C:\WINDOWS\system32\untfs.dll
2009-08-27 18:38:27 ----A---- C:\WINDOWS\system32\ulib.dll
2009-08-27 18:38:27 ----A---- C:\WINDOWS\system32\tcpmonui.dll
2009-08-27 18:38:27 ----A---- C:\WINDOWS\system32\syssetup.dll
2009-08-27 18:38:27 ----A---- C:\WINDOWS\system32\srvsvc.dll
2009-08-27 18:38:27 ----A---- C:\WINDOWS\system32\smss.exe
2009-08-27 18:38:27 ----A---- C:\WINDOWS\system32\setupapi.dll
2009-08-27 18:38:27 ----A---- C:\WINDOWS\system32\sessmgr.exe
2009-08-27 18:38:27 ----A---- C:\WINDOWS\system32\services.exe
2009-08-27 18:38:27 ----A---- C:\WINDOWS\system32\schannel.dll
2009-08-27 18:38:27 ----A---- C:\WINDOWS\system32\scardsvr.exe
2009-08-27 18:38:27 ----A---- C:\WINDOWS\system32\savedump.exe
2009-08-27 18:38:27 ----A---- C:\WINDOWS\system32\samsrv.dll
2009-08-27 18:38:27 ----A---- C:\WINDOWS\system32\samlib.dll
2009-08-27 18:38:27 ----A---- C:\WINDOWS\system32\rshx32.dll
2009-08-27 18:38:27 ----A---- C:\WINDOWS\system32\rastapi.dll
2009-08-27 18:38:27 ----A---- C:\WINDOWS\system32\rasman.dll
2009-08-27 18:38:27 ----A---- C:\WINDOWS\system32\rasdlg.dll
2009-08-27 18:38:27 ----A---- C:\WINDOWS\system32\rasauto.dll
2009-08-27 18:38:27 ----A---- C:\WINDOWS\system32\rasapi32.dll
2009-08-27 18:38:27 ----A---- C:\WINDOWS\system32\printui.dll
2009-08-27 18:38:27 ----A---- C:\WINDOWS\system32\perfctrs.dll
2009-08-27 18:38:27 ----A---- C:\WINDOWS\system32\olecnv32.dll
2009-08-27 18:38:27 ----A---- C:\WINDOWS\system32\oleaut32.dll
2009-08-27 18:38:27 ----A---- C:\WINDOWS\system32\nwprovau.dll
2009-08-27 18:38:27 ----A---- C:\WINDOWS\system32\ntvdm.exe
2009-08-27 18:38:27 ----A---- C:\WINDOWS\system32\ntprint.dll
2009-08-27 18:38:27 ----A---- C:\WINDOWS\system32\ntlsapi.dll
2009-08-27 18:38:27 ----A---- C:\WINDOWS\system32\ntdll.dll
2009-08-27 18:38:27 ----A---- C:\WINDOWS\system32\nslookup.exe
2009-08-27 18:38:27 ----A---- C:\WINDOWS\system32\msv1_0.dll
2009-08-27 18:38:26 ----A---- C:\WINDOWS\system32\wkssvc.dll
2009-08-27 18:38:26 ----A---- C:\WINDOWS\system32\win32spl.dll
2009-08-27 18:38:23 ----A---- C:\WINDOWS\system32\hal.dll
2009-08-27 18:38:22 ----A---- C:\WINDOWS\system32\ntoskrnl.exe
2009-08-27 18:38:22 ----A---- C:\WINDOWS\system32\ntkrnlpa.exe
2009-08-27 18:34:31 ----D---- C:\Documents and Settings\USER\Application Data\dvdcss
2009-08-27 10:33:33 ----D---- C:\divx
2009-08-27 10:29:49 ----D---- C:\Documents and Settings\USER\Application Data\vlc
2009-08-27 10:18:41 ----D---- C:\Documents and Settings\USER\Application Data\DivX
2009-08-27 10:12:02 ----D---- C:\Program Files\DivX
2009-08-27 10:05:53 ----D---- C:\Program Files\VideoLAN
2009-08-27 08:22:53 ----HDC---- C:\WINDOWS\$NtUninstallKB970653-v3$
2009-08-25 12:45:21 ----D---- C:\Program Files\Bonjour
2009-08-25 12:35:50 ----D---- C:\Program Files\Fichiers communs\Macrovision Shared
2009-08-22 21:24:13 ----A---- C:\WINDOWS\NeroDigital.ini
2009-08-22 20:00:54 ----A---- C:\WINDOWS\Irremote.ini
2009-08-21 09:25:07 ----A---- C:\WINDOWS\system32\javaws.exe
2009-08-21 09:25:07 ----A---- C:\WINDOWS\system32\javaw.exe
2009-08-21 09:25:07 ----A---- C:\WINDOWS\system32\java.exe
2009-08-21 09:25:07 ----A---- C:\WINDOWS\system32\deploytk.dll
2009-08-21 09:20:10 ----D---- C:\Documents and Settings\USER\Application Data\Sun
2009-08-20 09:17:20 ----D---- C:\WINDOWS\ie8updates
2009-08-20 09:15:38 ----HDC---- C:\WINDOWS\ie8
2009-08-20 09:09:12 ----A---- C:\WINDOWS\system32\MRT.exe
======List of files/folders modified in the last 1 months======
2009-09-18 14:07:13 ----RD---- C:\Program Files
2009-09-18 13:05:31 ----D---- C:\WINDOWS\Temp
2009-09-18 12:40:00 ----A---- C:\WINDOWS\SchedLgU.Txt
2009-09-18 12:25:07 ----SHD---- C:\WINDOWS\Installer
2009-09-18 12:24:57 ----HD---- C:\Config.Msi
2009-09-18 12:24:52 ----D---- C:\WINDOWS\Help
2009-09-18 12:24:51 ----D---- C:\Program Files\Fichiers communs
2009-09-18 10:18:59 ----D---- C:\WINDOWS\system32\CatRoot2
2009-09-17 18:58:40 ----D---- C:\Program Files\Mozilla Firefox
2009-09-17 18:53:25 ----D---- C:\WINDOWS\system32
2009-09-17 18:24:42 ----DC---- C:\WINDOWS\system32\DRVSTORE
2009-09-17 18:24:42 ----D---- C:\Program Files\Yahoo!
2009-09-17 18:24:39 ----D---- C:\WINDOWS\security
2009-09-17 18:23:42 ----D---- C:\WINDOWS\system32\Restore
2009-09-16 19:56:36 ----HD---- C:\WINDOWS\inf
2009-09-16 19:45:00 ----D---- C:\WINDOWS
2009-09-16 19:43:25 ----D---- C:\WINDOWS\system32\drivers
2009-09-16 19:42:05 ----D---- C:\WINDOWS\WinSxS
2009-09-16 12:09:02 ----A---- C:\WINDOWS\system32\PerfStringBackup.INI
2009-09-15 18:51:07 ----D---- C:\WINDOWS\system32\CatRoot
2009-09-14 20:08:39 ----A---- C:\WINDOWS\imsins.BAK
2009-09-14 20:08:15 ----RSHDC---- C:\WINDOWS\system32\dllcache
2009-09-12 13:55:19 ----SHD---- C:\WINDOWS\system32\bycool
2009-09-12 10:44:24 ----SD---- C:\WINDOWS\Tasks
2009-09-12 08:35:11 ----D---- C:\Documents and Settings\All Users.WINDOWS\Application Data\Microsoft Help
2009-09-12 08:28:42 ----D---- C:\Program Files\Fichiers communs\DESIGNER
2009-09-12 08:28:33 ----RSD---- C:\WINDOWS\Fonts
2009-09-11 20:53:43 ----SHD---- C:\WINDOWS\system32\bycool1
2009-09-11 20:41:48 ----D---- C:\Program Files\PDFCreator
2009-09-11 20:41:21 ----D---- C:\Program Files\Mozilla Thunderbird
2009-09-11 20:20:33 ----SD---- C:\Documents and Settings\USER\Application Data\Microsoft
2009-09-10 12:38:44 ----D---- C:\Documents and Settings
2009-09-10 08:37:04 ----HD---- C:\WINDOWS\$hf_mig$
2009-09-09 16:29:56 ----A---- C:\WINDOWS\unvise32.exe
2009-09-09 15:56:40 ----D---- C:\hp_LJ1018_Full_Solution
2009-09-09 15:52:48 ----A---- C:\WINDOWS\system32\zshp1018.exe
2009-09-09 14:31:38 ----D---- C:\Program Files\Windows NT
2009-09-09 14:31:38 ----D---- C:\Program Files\Windows Media Player
2009-09-09 14:31:38 ----D---- C:\Program Files\Outlook Express
2009-09-09 14:31:38 ----D---- C:\Program Files\NetMeeting
2009-09-09 14:31:38 ----D---- C:\Program Files\Movie Maker
2009-09-09 14:22:17 ----D---- C:\WINDOWS\system32\wbem
2009-09-09 10:18:38 ----D---- C:\Program Files\WinPcap
2009-09-09 10:17:22 ----D---- C:\Program Files\Internet Explorer
2009-09-09 09:55:50 ----D---- C:\Documents and Settings\USER\Application Data\Skype
2009-09-08 08:41:48 ----SD---- C:\WINDOWS\Downloaded Program Files
2009-09-07 20:28:10 ----D---- C:\Program Files\Fichiers communs\Adobe
2009-09-07 20:28:08 ----D---- C:\Documents and Settings\All Users.WINDOWS\Application Data\Adobe
2009-09-07 13:01:07 ----D---- C:\Program Files\CCP Server 5
2009-09-07 08:42:21 ----D---- C:\Program Files\Messenger
2009-09-06 16:40:46 ----D---- C:\WINDOWS\system32\Setup
2009-09-06 16:40:46 ----D---- C:\WINDOWS\AppPatch
2009-09-06 16:40:41 ----D---- C:\Program Files\Fichiers communs\System
2009-09-06 16:26:23 ----D---- C:\WINDOWS\ServicePackFiles
2009-09-06 16:24:30 ----D---- C:\WINDOWS\system32\usmt
2009-09-06 16:24:26 ----D---- C:\WINDOWS\system32\oobe
2009-09-06 16:24:25 ----D---- C:\WINDOWS\system32\npp
2009-09-06 16:23:39 ----D---- C:\WINDOWS\system32\Com
2009-09-06 16:22:03 ----D---- C:\WINDOWS\system
2009-09-06 16:22:02 ----D---- C:\WINDOWS\srchasst
2009-09-06 16:22:02 ----D---- C:\WINDOWS\PeerNet
2009-09-06 16:21:59 ----D---- C:\WINDOWS\msagent
2009-09-06 16:21:52 ----D---- C:\WINDOWS\ime
2009-09-06 16:21:14 ----D---- C:\WINDOWS\system32\inetsrv
2009-09-06 16:20:24 ----D---- C:\WINDOWS\Network Diagnostic
2009-09-06 16:20:24 ----D---- C:\WINDOWS\L2Schemas
2009-09-06 16:20:24 ----D---- C:\WINDOWS\ehome
2009-09-06 16:13:20 ----D---- C:\Program Files\Apple Software Update
2009-09-02 08:14:59 ----D---- C:\Program Files\Fichiers communs\Nero
2009-09-02 08:12:55 ----D---- C:\Documents and Settings\All Users.WINDOWS\Application Data\Nero
2009-09-02 08:03:04 ----D---- C:\Program Files\Nero
2009-09-02 07:58:36 ----D---- C:\Program Files\QuickTime
2009-08-28 08:37:51 ----A---- C:\WINDOWS\OEWABLog.txt
2009-08-28 08:36:51 ----A---- C:\WINDOWS\setuplog.txt
2009-08-27 18:45:11 ----D---- C:\WINDOWS\system32\fr-fr
2009-08-27 18:45:10 ----D---- C:\WINDOWS\system32\fr
2009-08-27 18:40:42 ----D---- C:\WINDOWS\system32\ReinstallBackups
2009-08-27 09:02:05 ----D---- C:\Documents and Settings\USER\Application Data\Adobe
2009-08-25 12:46:44 ----D---- C:\Program Files\Adobe
2009-08-22 21:21:03 ----D---- C:\Documents and Settings\USER\Application Data\Nero
2009-08-21 09:24:50 ----D---- C:\Program Files\Java
2009-08-20 09:16:49 ----D---- C:\WINDOWS\system32\config
2009-08-20 09:16:42 ----D---- C:\WINDOWS\wbem
2009-08-20 09:16:35 ----D---- C:\WINDOWS\Media
2009-08-20 09:09:14 ----D---- C:\WINDOWS\Debug
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R1 Aavmker4;avast! Asynchronous Virus Monitor; C:\WINDOWS\system32\drivers\Aavmker4.sys [2009-08-17 26944]
R1 aswSP;avast! Self Protection; C:\WINDOWS\system32\drivers\aswSP.sys [2009-08-17 114768]
R1 aswTdi;avast! Network Shield Support; C:\WINDOWS\system32\drivers\aswTdi.sys [2009-08-17 51376]
R1 intelppm;Pilote de processeur Intel; C:\WINDOWS\system32\DRIVERS\intelppm.sys [2004-08-03 40320]
R1 KLIF;Kaspersky Lab Driver; C:\WINDOWS\system32\DRIVERS\klif.sys [2009-07-21 303248]
R1 WS2IFSL;Environnement de prise en charge de Fournisseur de services non-IFS Windows Sockets 2.0; C:\WINDOWS\System32\drivers\ws2ifsl.sys [2001-08-28 12032]
R2 aswFsBlk;aswFsBlk; C:\WINDOWS\system32\DRIVERS\aswFsBlk.sys [2009-08-17 20560]
R2 aswMon2;avast! Standard Shield Support; C:\WINDOWS\system32\drivers\aswMon2.sys [2009-08-17 94160]
R2 ISWKL;ZoneAlarm Toolbar ISWKL; \??\C:\Program Files\CheckPoint\ZAForceField\ISWKL.sys []
R2 NwlnkIpx;Protocole de transport compatible NWLink IPX/SPX/NetBIOS; C:\WINDOWS\system32\DRIVERS\nwlnkipx.sys [2004-08-03 88448]
R2 NwlnkNb;NetBIOS NWLink; C:\WINDOWS\system32\DRIVERS\nwlnknb.sys [2001-08-28 63232]
R2 NwlnkSpx;Protocole NWLink SPX/SPXII; C:\WINDOWS\system32\DRIVERS\nwlnkspx.sys [2001-08-28 55936]
R3 aswRdr;aswRdr; C:\WINDOWS\system32\drivers\aswRdr.sys [2009-08-17 23152]
R3 HDAudBus;Microsoft UAA Bus Driver for High Definition Audio; C:\WINDOWS\system32\DRIVERS\HDAudBus.sys [2005-01-07 138752]
R3 hidusb;Pilote de classe HID Microsoft; C:\WINDOWS\system32\DRIVERS\hidusb.sys [2001-08-28 9600]
R3 ialm;ialm; C:\WINDOWS\system32\DRIVERS\igxpmp32.sys [2007-12-19 5854688]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\WINDOWS\system32\drivers\RtkHDAud.sys [2008-01-30 4725760]
R3 mouhid;Pilote HID de souris; C:\WINDOWS\system32\DRIVERS\mouhid.sys [2001-08-28 12288]
R3 RTLE8023xp;Realtek 10/100/1000 PCI-E NIC Family NDIS XP Driver; C:\WINDOWS\system32\DRIVERS\Rtenicxp.sys [2008-01-03 105856]
R3 usbehci;Pilote miniport de contrôleur d'hôte amélioré Microsoft USB 2.0; C:\WINDOWS\system32\DRIVERS\usbehci.sys [2004-08-03 26624]
R3 usbhub;Pilote de concentrateur standard USB Microsoft; C:\WINDOWS\system32\DRIVERS\usbhub.sys [2004-08-03 57600]
R3 usbprint;Classe d'imprimantes USB Microsoft; C:\WINDOWS\system32\DRIVERS\usbprint.sys [2004-08-03 25856]
R3 usbuhci;Pilote miniport de contrôleur hôte universel USB Microsoft; C:\WINDOWS\system32\DRIVERS\usbuhci.sys [2004-08-03 20480]
R3 vsdatant;vsdatant; C:\WINDOWS\System32\vsdatant.sys [2009-08-26 483208]
S3 GMSIPCI;GMSIPCI; \??\E:\INSTALL\GMSIPCI.SYS []
S3 MSICPL;MSICPL; \??\E:\install4\MSICPL.sys []
S3 nm;Pilote du Moniteur réseau; C:\WINDOWS\system32\DRIVERS\NMnt.sys [2004-08-03 40320]
S3 NPF;NetGroup Packet Filter Driver; C:\WINDOWS\system32\drivers\npf.sys [2007-11-06 34064]
S3 NTACCESS;NTACCESS; \??\E:\NTACCESS.sys []
S3 SetupNTGLM7X;SetupNTGLM7X; \??\E:\NTGLM7X.sys []
S3 usbccgp;Pilote parent générique USB Microsoft; C:\WINDOWS\system32\DRIVERS\usbccgp.sys [2004-08-03 31616]
S3 usbscan;Pilote de scanneur USB; C:\WINDOWS\system32\DRIVERS\usbscan.sys [2004-08-03 15104]
S3 USBSTOR;Pilote de stockage de masse USB; C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS [2004-08-03 26496]
S3 WpdUsb;WpdUsb; C:\WINDOWS\System32\Drivers\wpdusb.sys [2006-08-24 38656]
S4 IntelIde;IntelIde; C:\WINDOWS\system32\drivers\IntelIde.sys []
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 aswUpdSv;avast! iAVS4 Control Service; C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe [2009-08-17 18752]
R2 avast! Antivirus;avast! Antivirus; C:\Program Files\Alwil Software\Avast4\ashServ.exe [2009-08-17 138680]
R2 Bonjour Service;##Id_String1.6844F930_1628_4223_B5CC_5BB94B879762##; C:\Program Files\Bonjour\mDNSResponder.exe [2006-02-28 229376]
R2 Diskeeper;Diskeeper; C:\Program Files\Diskeeper Corporation\Diskeeper\DkService.exe [2008-11-22 1333016]
R2 Findbasic Service;Findbasic Service; C:\Documents and Settings\All Users.WINDOWS\Application Data\Findbasic\findbasic121.exe [2009-09-02 54776]
R2 IswSvc;ZoneAlarm Toolbar IswSvc; C:\Program Files\CheckPoint\ZAForceField\IswSvc.exe [2009-08-26 435568]
R2 JavaQuickStarterService;Java Quick Starter; C:\Program Files\Java\jre6\bin\jqs.exe [2009-08-21 153376]
R2 Pml Driver HPZ12;Pml Driver HPZ12; C:\WINDOWS\system32\HPZipm12.exe [2006-03-03 69632]
R2 YahooAUService;Yahoo! Updater; C:\Program Files\Yahoo!\SoftwareUpdate\YahooAUService.exe [2008-11-09 602392]
R3 avast! Mail Scanner;avast! Mail Scanner; C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe [2009-08-17 254040]
S2 Nero BackItUp Scheduler 4.0;Nero BackItUp Scheduler 4.0; C:\Program Files\Fichiers communs\Nero\Nero BackItUp 4\NBService.exe []
S3 avast! Web Scanner;avast! Web Scanner; C:\Program Files\Alwil Software\Avast4\ashWebSv.exe [2009-08-17 352920]
S3 odserv;Microsoft Office Diagnostics Service; C:\Program Files\Fichiers communs\Microsoft Shared\OFFICE12\ODSERV.EXE [2006-10-26 441136]
S3 ose;Office Source Engine; C:\Program Files\Fichiers communs\Microsoft Shared\Source Engine\OSE.EXE [2006-10-26 145184]
-----------------EOF-----------------
Run by USER at 2009-09-18 14:13:45
Microsoft Windows XP Professionnel Service Pack 2
System drive C: has 18 GB (45%) free of 40 GB
Total RAM: 1527 MB (45% free)
Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 14:14:19, on 18/09/2009
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v8.00 (8.00.6001.18702)
Boot mode: Normal
Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
C:\Program Files\CheckPoint\ZAForceField\IswSvc.exe
C:\Program Files\Alwil Software\Avast4\ashServ.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\CheckPoint\ZAForceField\ForceField.exe
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\RTHDCPL.EXE
C:\WINDOWS\system32\igfxtray.exe
C:\WINDOWS\system32\hkcmd.exe
C:\WINDOWS\system32\igfxpers.exe
C:\Program Files\HP\HP Software Update\HPWuSchd2.exe
C:\Program Files\Hewlett-Packard\OrderReminder\OrderReminder.exe
C:\Program Files\Java\jre6\bin\jusched.exe
C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
C:\WINDOWS\system32\igfxsrvc.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe
C:\Program Files\Bonjour\mDNSResponder.exe
C:\Documents and Settings\All Users.WINDOWS\Application Data\Findbasic\findbasic121.exe
C:\Program Files\Java\jre6\bin\jqs.exe
C:\WINDOWS\system32\HPZipm12.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Yahoo!\SoftwareUpdate\YahooAUService.exe
C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
C:\Program Files\Findbasic\findbasic.exe
C:\WINDOWS\system32\wuauclt.exe
C:\Program Files\CCP Server 5\ccpsrv.exe
C:\Documents and Settings\USER\Local Settings\Application Data\Google\Chrome\Application\chrome.exe
C:\Documents and Settings\USER\Local Settings\Application Data\Google\Chrome\Application\chrome.exe
C:\Program Files\Windows Media Player\wmplayer.exe
C:\Documents and Settings\USER\Local Settings\Application Data\Google\Chrome\Application\chrome.exe
C:\Documents and Settings\USER\Local Settings\Application Data\Google\Chrome\Application\chrome.exe
C:\Documents and Settings\USER\Local Settings\Application Data\Google\Chrome\Application\chrome.exe
C:\Program Files\Diskeeper Corporation\Diskeeper\DkService.exe
C:\Program Files\Internet Download Manager\IDMan.exe
C:\WINDOWS\system32\NOTEPAD.EXE
C:\Documents and Settings\USER\Local Settings\Application Data\Google\Chrome\Application\chrome.exe
C:\Documents and Settings\USER\Mes documents\Downloads\Programs\RSIT.exe
C:\Program Files\trend micro\USER.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = about:blank
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.google.fr/?gws_rd=ssl
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = https://www.msn.com/fr-fr/?ocid=iehp
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Bar = about:blank
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.msn.com/fr-fr/?ocid=iehp
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Favoris
R3 - URLSearchHook: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\PROGRA~1\Yahoo!\Companion\Installs\cpn0\yt.dll
O2 - BHO: IDM Helper - {0055C089-8582-441B-A0BF-17B458C2A3A8} - C:\Program Files\Internet Download Manager\IDMIECC.dll
O2 - BHO: &Yahoo! Toolbar Helper - {02478D38-C3F9-4efb-9B51-7695ECA05670} - C:\PROGRA~1\Yahoo!\Companion\Installs\cpn0\yt.dll
O2 - BHO: AskBar BHO - {201f27d4-3704-41d6-89c1-aa35e39143ed} - C:\Program Files\AskBarDis\bar\bin\askBar.dll
O2 - BHO: Spybot-S&D IE Protection - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O2 - BHO: ZoneAlarm Toolbar Registrar - {8A4A36C2-0535-4D2C-BD3D-496CB7EED6E3} - C:\Program Files\CheckPoint\ZAForceField\TrustChecker\bin\TrustCheckerIEPlugin.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll
O2 - BHO: JQSIEStartDetectorImpl - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll
O2 - BHO: SingleInstance Class - {FDAD4DA1-61A2-4FD8-9C17-86F7AC245081} - C:\PROGRA~1\Yahoo!\Companion\Installs\cpn0\YTSingleInstance.dll
O3 - Toolbar: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\PROGRA~1\Yahoo!\Companion\Installs\cpn0\yt.dll
O3 - Toolbar: Systran40premi.IEPlugIn - {CFB25594-4D5F-11D6-AB7B-00B0D094B576} - C:\Program Files\Systran\4_0\Premium\IEPlugIn.dll
O3 - Toolbar: (no name) - {CCC7A320-B3CA-4199-B1A6-9F516DD69829} - (no file)
O3 - Toolbar: Foxit Toolbar - {3041d03e-fd4b-44e0-b742-2d9b88305f98} - C:\Program Files\AskBarDis\bar\bin\askBar.dll
O3 - Toolbar: ZoneAlarm Toolbar - {EE2AC4E5-B0B0-4EC6-88A9-BCA1A32AB107} - C:\Program Files\CheckPoint\ZAForceField\TrustChecker\bin\TrustCheckerIEPlugin.dll
O3 - Toolbar: (no name) - {9F849A78-A3E0-4ECA-BC6A-9B7193B28CE1} - (no file)
O4 - HKLM\..\Run: [RTHDCPL] RTHDCPL.EXE
O4 - HKLM\..\Run: [Alcmtr] ALCMTR.EXE
O4 - HKLM\..\Run: [IgfxTray] C:\WINDOWS\system32\igfxtray.exe
O4 - HKLM\..\Run: [HotKeysCmds] C:\WINDOWS\system32\hkcmd.exe
O4 - HKLM\..\Run: [Persistence] C:\WINDOWS\system32\igfxpers.exe
O4 - HKLM\..\Run: [HP Software Update] C:\Program Files\HP\HP Software Update\HPWuSchd2.exe
O4 - HKLM\..\Run: [OrderReminder] C:\Program Files\Hewlett-Packard\OrderReminder\OrderReminder.exe
O4 - HKLM\..\Run: [NBKeyScan] "C:\Program Files\Nero\Nero8\Nero BackItUp\NBKeyScan.exe"
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre6\bin\jusched.exe"
O4 - HKLM\..\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
O4 - HKLM\..\Run: [ZoneAlarm Client] "C:\Program Files\Zone Labs\ZoneAlarm\zlclient.exe"
O4 - HKLM\..\Run: [ISW] "C:\Program Files\CheckPoint\ZAForceField\ForceField.exe" /icon="hidden"
O4 - HKLM\..\Run: [Ad-Watch] C:\Program Files\Lavasoft\Ad-Aware\AAWTray.exe
O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}] "C:\Program Files\Fichiers communs\Nero\Lib\NMBgMonitor.exe"
O4 - HKCU\..\Run: [ExplorerClient] "C:\Program Files\Softvision\Softvision Explorer 3\ExplorerClient.exe" AUTO
O4 - HKCU\..\Run: [OpenDNS Updater] "C:\Program Files\OpenDNS Updater\OpenDNSUpdater.exe" /autostart
O4 - HKCU\..\Run: [IDMan] C:\Program Files\Internet Download Manager\IDMan.exe /onboot
O4 - HKCU\..\Run: [SpybotSD TeaTimer] C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE RÉSEAU')
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
O6 - HKCU\Software\Policies\Microsoft\Internet Explorer\Toolbars\Restrictions present
O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office12\EXCEL.EXE/3000
O8 - Extra context menu item: Télécharger avec IDM - C:\Program Files\Internet Download Manager\IEExt.htm
O8 - Extra context menu item: Télécharger le contenu de video FLV avec IDM - C:\Program Files\Internet Download Manager\IEGetVL.htm
O8 - Extra context menu item: Télécharger tous les liens avec IDM - C:\Program Files\Internet Download Manager\IEGetAll.htm
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\Office12\REFIEBAR.DLL
O9 - Extra button: (no name) - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O9 - Extra 'Tools' menuitem: Spybot - Search & Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O10 - Unknown file in Winsock LSP: c:\windows\system32\nwprovau.dll
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab
O16 - DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} - http://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab
O17 - HKLM\System\CCS\Services\Tcpip\..\{615ACE12-1FE2-4CFD-A43A-E76359EF4D39}: NameServer = 208.67.222.222,208.67.220.220
O17 - HKLM\System\CS1\Services\Tcpip\..\{615ACE12-1FE2-4CFD-A43A-E76359EF4D39}: NameServer = 208.67.222.222,208.67.220.220
O17 - HKLM\System\CS4\Services\Tcpip\..\{615ACE12-1FE2-4CFD-A43A-E76359EF4D39}: NameServer = 208.67.222.222,208.67.220.220
O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - ALWIL Software - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
O23 - Service: avast! Antivirus - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashServ.exe
O23 - Service: avast! Mail Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
O23 - Service: avast! Web Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
O23 - Service: ##Id_String1.6844F930_1628_4223_B5CC_5BB94B879762## (Bonjour Service) - Apple Computer, Inc. - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: Diskeeper - Diskeeper Corporation - C:\Program Files\Diskeeper Corporation\Diskeeper\DkService.exe
O23 - Service: Findbasic Service - Unknown owner - C:\Documents and Settings\All Users.WINDOWS\Application Data\Findbasic\findbasic121.exe
O23 - Service: ZoneAlarm Toolbar IswSvc (IswSvc) - Check Point Software Technologies - C:\Program Files\CheckPoint\ZAForceField\IswSvc.exe
O23 - Service: Java Quick Starter (JavaQuickStarterService) - Sun Microsystems, Inc. - C:\Program Files\Java\jre6\bin\jqs.exe
O23 - Service: Nero BackItUp Scheduler 4.0 - Unknown owner - C:\Program Files\Fichiers communs\Nero\Nero BackItUp 4\NBService.exe (file missing)
O23 - Service: Pml Driver HPZ12 - HP - C:\WINDOWS\system32\HPZipm12.exe
O23 - Service: Yahoo! Updater (YahooAUService) - Yahoo! Inc. - C:\Program Files\Yahoo!\SoftwareUpdate\YahooAUService.exe
--
End of file - 10323 bytes
======Scheduled tasks folder======
C:\WINDOWS\tasks\User_Feed_Synchronization-{FB1EE39B-E18B-43D9-A66D-06A2865C2BCD}.job
C:\WINDOWS\tasks\WGASetup.job
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{0055C089-8582-441B-A0BF-17B458C2A3A8}]
IDMIEHlprObj Class - C:\Program Files\Internet Download Manager\IDMIECC.dll [2009-09-09 173488]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{02478D38-C3F9-4efb-9B51-7695ECA05670}]
&Yahoo! Toolbar Helper - C:\PROGRA~1\Yahoo!\Companion\Installs\cpn0\yt.dll [2009-03-13 908528]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{201f27d4-3704-41d6-89c1-aa35e39143ed}]
AskBar BHO - C:\Program Files\AskBarDis\bar\bin\askBar.dll [2008-11-18 333192]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{53707962-6F74-2D53-2644-206D7942484F}]
Spybot-S&D IE Protection - C:\PROGRA~1\SPYBOT~1\SDHelper.dll [2009-01-26 1879896]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8A4A36C2-0535-4D2C-BD3D-496CB7EED6E3}]
ZoneAlarm Toolbar Registrar - C:\Program Files\CheckPoint\ZAForceField\TrustChecker\bin\TrustCheckerIEPlugin.dll [2009-08-26 578928]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre6\bin\jp2ssv.dll [2009-08-21 41760]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E7E6F031-17CE-4C07-BC86-EABFE594F69C}]
JQSIEStartDetectorImpl Class - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll [2009-08-21 73728]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{FDAD4DA1-61A2-4FD8-9C17-86F7AC245081}]
SingleInstance Class - C:\PROGRA~1\Yahoo!\Companion\Installs\cpn0\YTSingleInstance.dll [2009-03-13 165616]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{EF99BD32-C1FB-11D2-892F-0090271D4F88} - Yahoo! Toolbar - C:\PROGRA~1\Yahoo!\Companion\Installs\cpn0\yt.dll [2009-03-13 908528]
{CFB25594-4D5F-11D6-AB7B-00B0D094B576} - Systran40premi.IEPlugIn - C:\Program Files\Systran\4_0\Premium\IEPlugIn.dll [2002-04-12 65536]
{CCC7A320-B3CA-4199-B1A6-9F516DD69829}
{3041d03e-fd4b-44e0-b742-2d9b88305f98} - Foxit Toolbar - C:\Program Files\AskBarDis\bar\bin\askBar.dll [2008-11-18 333192]
{EE2AC4E5-B0B0-4EC6-88A9-BCA1A32AB107} - ZoneAlarm Toolbar - C:\Program Files\CheckPoint\ZAForceField\TrustChecker\bin\TrustCheckerIEPlugin.dll [2009-08-26 578928]
{9F849A78-A3E0-4ECA-BC6A-9B7193B28CE1}
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"RTHDCPL"=C:\WINDOWS\RTHDCPL.EXE [2008-01-29 16859648]
"Alcmtr"=C:\WINDOWS\ALCMTR.EXE [2005-05-03 69632]
"IgfxTray"=C:\WINDOWS\system32\igfxtray.exe [2007-12-19 135168]
"HotKeysCmds"=C:\WINDOWS\system32\hkcmd.exe [2007-12-19 159744]
"Persistence"=C:\WINDOWS\system32\igfxpers.exe [2007-12-19 131072]
"HP Software Update"=C:\Program Files\HP\HP Software Update\HPWuSchd2.exe [2006-02-19 49152]
"OrderReminder"=C:\Program Files\Hewlett-Packard\OrderReminder\OrderReminder.exe [2006-07-30 98304]
"NBKeyScan"=C:\Program Files\Nero\Nero8\Nero BackItUp\NBKeyScan.exe []
"SunJavaUpdateSched"=C:\Program Files\Java\jre6\bin\jusched.exe [2009-08-21 149280]
"avast!"=C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe [2009-08-17 81000]
"ZoneAlarm Client"=C:\Program Files\Zone Labs\ZoneAlarm\zlclient.exe [2009-08-26 1011080]
"ISW"=C:\Program Files\CheckPoint\ZAForceField\ForceField.exe [2009-08-26 722288]
"Ad-Watch"=C:\Program Files\Lavasoft\Ad-Aware\AAWTray.exe []
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"=C:\WINDOWS\system32\ctfmon.exe [2004-08-03 15360]
"BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}"=C:\Program Files\Fichiers communs\Nero\Lib\NMBgMonitor.exe []
"ExplorerClient"=C:\Program Files\Softvision\Softvision Explorer 3\ExplorerClient.exe AUTO []
"OpenDNS Updater"=C:\Program Files\OpenDNS Updater\OpenDNSUpdater.exe /autostart []
"IDMan"=C:\Program Files\Internet Download Manager\IDMan.exe [2009-09-09 3118512]
"SpybotSD TeaTimer"=C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe [2009-03-05 2260480]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\igfxcui]
C:\WINDOWS\system32\igfxdev.dll [2007-12-19 208896]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\WINDOWS\system32\WPDShServiceObj.dll [2006-08-24 133120]
UPnPMonitor - {e57ce738-33e8-4c51-8354-bb4de9d215d1} - C:\WINDOWS\system32\upnpui.dll [2004-08-03 240128]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Lsa]
"notification packages"=
scecli
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Lavasoft Ad-Aware Service]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Lavasoft Ad-Aware Service]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\nm]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\nm.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\vsmon]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"DisableTaskMgr"=0
"DisableChangePassword"=0
"DisableLockWorkstation"=0
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NofolderOptions"=0
"NoFind"=0
"NoRun"=0
"SpecifyDefaultButtons"=0
"NoBandCustomize"=0
"NoToolbarCustomize"=0
"NoFileUrl"=0
"NoAddPrinter"=0
"NoDeletePrinter"=0
"NoViewContextMenu"=0
"NoDrives"=0
"NoViewOnDrive"=0
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=
"NoFolderOptions"=
"HonorAutoRunSetting"=
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"C:\Program Files\CCP Server 5\ccpsrv.exe"="C:\Program Files\CCP Server 5\ccpsrv.exe:*:Enabled:CyberCafePro Main Control Station"
"C:\Program Files\Microsoft Office\Office12\OUTLOOK.EXE"="C:\Program Files\Microsoft Office\Office12\OUTLOOK.EXE:*:Enabled:Microsoft Office Outlook"
"C:\Program Files\Yahoo!\Messenger\YahooMessenger.exe"="C:\Program Files\Yahoo!\Messenger\YahooMessenger.exe:*:Enabled:Yahoo! Messenger"
"F:\driver\usb\usb_driver.exe"="F:\driver\usb\usb_driver.exe:*:Enabled:microssofts"
"C:\Program Files\TVUPlayer\TVUPlayer.exe"="C:\Program Files\TVUPlayer\TVUPlayer.exe:*:Enabled:TVUPlayer Component"
"C:\Program Files\VoipBuster.com\VoipBuster\VoipBuster.exe"="C:\Program Files\VoipBuster.com\VoipBuster\VoipBuster.exe:*:Enabled:VoipBuster"
"C:\Program Files\Bonjour\mDNSResponder.exe"="C:\Program Files\Bonjour\mDNSResponder.exe:*:Enabled:Bonjour"
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{0c85d223-a2fb-11de-81d3-0019dbe51d6f}]
shell\AutoRun\command - F:\DRIVER///vozacka.exe
shell\explore\command - F:\DRIVER//vozacka.exe
shell\open\command - F:\DRIVER//vozacka.exe
[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{27453fd5-9eb5-11de-81c2-0019dbe51d6f}]
shell\AutoRun\command - C:\WINDOWS\system32\RunDLL32.EXE Shell32.DLL,ShellExec_RunDLL log.exe
shell\Ouvrir\command - F:\log.exe
[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{2a478fe9-8274-11de-8174-0019dbe51d6f}]
shell\AutoRun\command - C:\WINDOWS\system32\RunDLL32.EXE Shell32.DLL,ShellExec_RunDLL log.exe
shell\Ouvrir\command - F:\log.exe
[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{2b171b27-a2a1-11de-81d2-0019dbe51d6f}]
shell\AutoRun\command - F:\LaunchU3.exe -a
[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{2b171b28-a2a1-11de-81d2-0019dbe51d6f}]
shell\AutoRun\command - G:\ZNAM\potom.exe
shell\explore\command - G:\.////ZNAM/\\\\potom.exe
shell\open\command - G:\ZNAM/////\\\\potom.exe
[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{31be8492-8403-11de-817a-0019dbe51d6f}]
shell\AutoRun\command - F:\lcw.exe
shell\open\command - F:\lcw.exe
[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{31be8496-8403-11de-817a-0019dbe51d6f}]
shell\AutoRun\command - F:\driver\usb\usb_driver.exe
shell\open\command - F:\driver\usb\usb_driver.exe
[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{31be8498-8403-11de-817a-0019dbe51d6f}]
shell\AutoRun\command - F:\driver\usb\usb_driver.exe
shell\open\command - F:\driver\usb\usb_driver.exe
[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{436dd04a-a1da-11de-81d0-0019dbe51d6f}]
shell\AutoRun\command - F:\LaunchU3.exe -a
[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{44146e31-869a-11de-817f-0019dbe51d6f}]
shell\AutoRun\command - F:\LaunchU3.exe -a
[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{57507f0e-8751-11de-8182-0019dbe51d6f}]
shell\AutoRun\command - F:\driver\usb\usb_driver.exe
shell\open\command - F:\driver\usb\usb_driver.exe
[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{64961e19-8264-11de-816f-0019dbe51d6f}]
shell\AutoRun\command - F:\d1vmq.exe
shell\open\command - F:\d1vmq.exe
[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{65ff0d21-93ae-11de-81a7-0019dbe51d6f}]
shell\AutoRun\command - INFO\solar.exe
shell\explore\command - .////INFO/\\\\solar.exe
shell\open\command - INFO/////\\\\solar.exe
[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{7bac0931-8ca2-11de-8191-0019dbe51d6f}]
shell\AutoRun\command - F:\CRNI\vrag.exe
shell\explore\command - F:\.////CRNI/\\\\vrag.exe
shell\open\command - F:\CRNI/////\\\\vrag.exe
[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{abe0800b-9b90-11de-81b5-0019dbe51d6f}]
shell\AutoRun\command - C:\WINDOWS\system32\RunDLL32.EXE Shell32.DLL,ShellExec_RunDLL Wscript.exe /e:vbs winfile.jpg
[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{abe08010-9b90-11de-81b5-0019dbe51d6f}]
shell\AutoRun\command - zPharaoh.exe
shell\explore\command - zPharaoh.exe
shell\open\command - zPharaoh.exe
[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{c0b9d97e-9620-11de-81aa-0019dbe51d6f}]
shell\AutoRun\command - F:\ReCYCleR\sE.exe
shell\OpEn\command - F:\ReCYCleR\sE.exe
[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{c0b9d980-9620-11de-81aa-0019dbe51d6f}]
shell\AutoRun\command - F:\windows\usbv.exe
shell\open\command - F:\windows\usbv.exe
[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{ccc71e66-a110-11de-81cb-0019dbe51d6f}]
shell\AutoRun\command - F:\DATA\FILES\BEAST.exe
shell\open\command - F:\DATA\FILES\BEAST.exe
[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{d586a692-87ee-11de-8183-0019dbe51d6f}]
shell\AutoRun\command - F:\driver\usb\usb_driver.exe
shell\open\command - F:\driver\usb\usb_driver.exe
[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{d586a695-87ee-11de-8183-0019dbe51d6f}]
shell\AutoRun\command - F:\driver\usb\usb_driver.exe
shell\open\command - F:\driver\usb\usb_driver.exe
[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{d586a696-87ee-11de-8183-0019dbe51d6f}]
shell\AutoRun\command - F:\driver\usb\usb_driver.exe
shell\open\command - F:\driver\usb\usb_driver.exe
[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{dc4eac24-88d4-11de-8189-0019dbe51d6f}]
shell\AutoRun\command - F:\driver\usb\usb_driver.exe
shell\open\command - F:\driver\usb\usb_driver.exe
[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{dd3baf0c-9a0b-11de-81b1-0019dbe51d6f}]
shell\AutoRun\command - F:\lcw.exe
shell\open\command - F:\lcw.exe
[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{eecfe946-96d3-11de-81ab-0019dbe51d6f}]
shell\AutoRun\command - F:\LaunchU3.exe -a
[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{f2bb578f-85ba-11de-817d-0019dbe51d6f}]
shell\AutoRun\command - F:\LaunchU3.exe -a
[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{f2bb5794-85ba-11de-817d-0019dbe51d6f}]
shell\AutoRun\command - F:\NEBO\zeljko.exe
shell\explore\command - F:\.////NEBO/\\\\zeljko.exe
shell\open\command - F:\NEBO/////\\\\zeljko.exe
[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{f2bb5795-85ba-11de-817d-0019dbe51d6f}]
shell\AutoRun\command - F:\driver\usb\usb_driver.exe
shell\open\command - F:\driver\usb\usb_driver.exe
======List of files/folders created in the last 1 months======
2009-09-18 14:07:13 ----D---- C:\Program Files\trend micro
2009-09-18 14:07:12 ----D---- C:\rsit
2009-09-18 12:24:51 ----D---- C:\Program Files\Fichiers communs\Diskeeper Corporation
2009-09-18 12:24:50 ----D---- C:\Documents and Settings\All Users.WINDOWS\Application Data\Diskeeper Corporation
2009-09-18 12:24:47 ----D---- C:\Program Files\Diskeeper Corporation
2009-09-16 19:44:27 ----D---- C:\WINDOWS\Minidump
2009-09-16 19:42:13 ----D---- C:\Documents and Settings\All Users.WINDOWS\Application Data\Lavasoft
2009-09-16 19:39:26 ----D---- C:\Program Files\Spybot - Search & Destroy
2009-09-16 19:39:26 ----D---- C:\Documents and Settings\All Users.WINDOWS\Application Data\Spybot - Search & Destroy
2009-09-16 09:14:42 ----D---- C:\Documents and Settings\USER\Application Data\Xilisoft Corporation
2009-09-16 08:45:40 ----D---- C:\Documents and Settings\USER\Application Data\IDM
2009-09-16 08:45:40 ----D---- C:\Documents and Settings\USER\Application Data\DMCache
2009-09-16 08:45:34 ----D---- C:\Program Files\Internet Download Manager
2009-09-14 20:10:10 ----D---- C:\Documents and Settings\USER\Application Data\AVS4YOU
2009-09-14 20:10:09 ----D---- C:\Documents and Settings\All Users.WINDOWS\Application Data\AVS4YOU
2009-09-14 20:08:44 ----D---- C:\Program Files\Fichiers communs\AVSMedia
2009-09-14 20:08:06 ----HDC---- C:\WINDOWS\$NtUninstallWMFDist11$
2009-09-14 20:06:44 ----A---- C:\WINDOWS\system32\msvcr70.dll
2009-09-14 20:06:44 ----A---- C:\WINDOWS\system32\msvcp70.dll
2009-09-14 20:06:44 ----A---- C:\WINDOWS\system32\mfc70.dll
2009-09-14 20:06:44 ----A---- C:\WINDOWS\system32\GdiPlus.dll
2009-09-14 20:06:43 ----D---- C:\Program Files\AVS4YOU
2009-09-14 20:06:43 ----A---- C:\WINDOWS\system32\msxml3a.dll
2009-09-13 19:03:15 ----D---- C:\Documents and Settings\USER\Application Data\#ISW.FS#
2009-09-12 20:05:31 ----D---- C:\Documents and Settings\USER\Application Data\OpenDNS Updater
2009-09-12 12:14:59 ----D---- C:\Documents and Settings\All Users.WINDOWS\Application Data\Kaspersky SDK
2009-09-12 11:56:12 ----D---- C:\Documents and Settings\USER\Application Data\CheckPoint
2009-09-12 11:55:48 ----D---- C:\Documents and Settings\USER\Application Data\pdfforge
2009-09-12 11:55:17 ----D---- C:\Program Files\CheckPoint
2009-09-12 11:55:11 ----A---- C:\WINDOWS\zllsputility.exe
2009-09-12 11:54:37 ----A---- C:\WINDOWS\system32\vsregexp.dll
2009-09-12 11:54:35 ----A---- C:\WINDOWS\system32\zlcommdb.dll
2009-09-12 11:54:35 ----A---- C:\WINDOWS\system32\zlcomm.dll
2009-09-12 11:54:28 ----A---- C:\WINDOWS\system32\vswmi.dll
2009-09-12 11:54:27 ----D---- C:\WINDOWS\system32\ZoneLabs
2009-09-12 11:54:27 ----A---- C:\WINDOWS\system32\zpeng25.dll
2009-09-12 11:54:27 ----A---- C:\WINDOWS\system32\vsxml.dll
2009-09-12 11:54:27 ----A---- C:\WINDOWS\system32\vspubapi.dll
2009-09-12 11:54:27 ----A---- C:\WINDOWS\system32\vsmonapi.dll
2009-09-12 11:53:36 ----A---- C:\WINDOWS\system32\vsutil.dll
2009-09-12 11:53:36 ----A---- C:\WINDOWS\system32\vsinit.dll
2009-09-12 11:53:36 ----A---- C:\WINDOWS\system32\vsdata.dll
2009-09-12 11:48:37 ----HDC---- C:\WINDOWS\$NtUninstallKB943232$
2009-09-12 11:48:13 ----D---- C:\Program Files\Zone Labs
2009-09-12 11:48:00 ----D---- C:\WINDOWS\Internet Logs
2009-09-11 19:32:51 ----A---- C:\WINDOWS\system32\aswBoot.exe
2009-09-10 19:32:07 ----D---- C:\Program Files\Findbasic
2009-09-10 19:32:07 ----D---- C:\Documents and Settings\All Users.WINDOWS\Application Data\Findbasic
2009-09-10 19:32:04 ----D---- C:\Documents and Settings\USER\Application Data\DealAssistant
2009-09-10 19:32:04 ----A---- C:\WINDOWS\system32\2e78.dll
2009-09-10 09:19:51 ----D---- C:\Program Files\AskBarDis
2009-09-10 08:37:05 ----HDC---- C:\WINDOWS\$NtUninstallKB956844$
2009-09-10 08:36:59 ----HDC---- C:\WINDOWS\$NtUninstallKB968816_WM9$
2009-09-09 14:55:30 ----D---- C:\Program Files\AVG
2009-09-09 09:52:58 ----A---- C:\WINDOWS\system32\idmmbc.dll
2009-09-08 14:57:48 ----D---- C:\WINDOWS\Sun
2009-09-08 09:05:06 ----D---- C:\Program Files\Foxit Software
2009-09-08 09:05:06 ----D---- C:\Documents and Settings\USER\Application Data\Foxit
2009-09-07 20:45:16 ----D---- C:\Documents and Settings\USER\Application Data\tazebama
2009-09-06 16:44:54 ----D---- C:\WINDOWS\system32\CatRoot_bak
2009-09-06 16:41:04 ----D---- C:\WINDOWS\Prefetch
2009-09-04 08:49:25 ----D---- C:\Program Files\Fichiers communs\DVDVideoSoft
2009-09-03 11:51:54 ----HD---- C:\WINDOWS\PIF
2009-08-29 08:55:23 ----HDC---- C:\WINDOWS\$NtUninstallKB951978$
2009-08-29 08:55:16 ----HDC---- C:\WINDOWS\$NtUninstallKB956744$
2009-08-29 08:55:07 ----HDC---- C:\WINDOWS\$NtUninstallKB973540_WM9$
2009-08-29 08:54:57 ----HDC---- C:\WINDOWS\$NtUninstallKB954459$
2009-08-27 20:34:03 ----D---- C:\Documents and Settings\All Users.WINDOWS\Application Data\Windows Genuine Advantage
2009-08-27 20:04:23 ----A---- C:\WINDOWS\system32\wmpns.dll
2009-08-27 18:45:09 ----D---- C:\WINDOWS\system32\bits
2009-08-27 18:39:13 ----A---- C:\WINDOWS\system32\qmgr.dll
2009-08-27 18:39:10 ----A---- C:\WINDOWS\system32\ntbackup.exe
2009-08-27 18:38:46 ----A---- C:\WINDOWS\system32\magnify.exe
2009-08-27 18:38:45 ----A---- C:\WINDOWS\system32\mobsync.exe
2009-08-27 18:38:42 ----A---- C:\WINDOWS\system32\mspaint.exe
2009-08-27 18:38:40 ----A---- C:\WINDOWS\system32\notepad.exe
2009-08-27 18:38:39 ----A---- C:\WINDOWS\system32\odbcad32.exe
2009-08-27 18:38:38 ----A---- C:\WINDOWS\system32\osk.exe
2009-08-27 18:38:34 ----A---- C:\WINDOWS\system32\sndrec32.exe
2009-08-27 18:38:33 ----A---- C:\WINDOWS\system32\spider.exe
2009-08-27 18:38:28 ----A---- C:\WINDOWS\system32\msgsvc.dll
2009-08-27 18:38:28 ----A---- C:\WINDOWS\system32\mgmtapi.dll
2009-08-27 18:38:28 ----A---- C:\WINDOWS\system32\lsasrv.dll
2009-08-27 18:38:28 ----A---- C:\WINDOWS\system32\locator.exe
2009-08-27 18:38:28 ----A---- C:\WINDOWS\system32\localspl.dll
2009-08-27 18:38:28 ----A---- C:\WINDOWS\system32\lmhsvc.dll
2009-08-27 18:38:28 ----A---- C:\WINDOWS\system32\kernel32.dll
2009-08-27 18:38:28 ----A---- C:\WINDOWS\system32\imagehlp.dll
2009-08-27 18:38:28 ----A---- C:\WINDOWS\system32\ftp.exe
2009-08-27 18:38:28 ----A---- C:\WINDOWS\system32\format.com
2009-08-27 18:38:28 ----A---- C:\WINDOWS\system32\dhcpcsvc.dll
2009-08-27 18:38:28 ----A---- C:\WINDOWS\system32\csrsrv.dll
2009-08-27 18:38:28 ----A---- C:\WINDOWS\system32\comdlg32.dll
2009-08-27 18:38:28 ----A---- C:\WINDOWS\system32\comctl32.dll
2009-08-27 18:38:28 ----A---- C:\WINDOWS\system32\cmd.exe
2009-08-27 18:38:28 ----A---- C:\WINDOWS\system32\cacls.exe
2009-08-27 18:38:28 ----A---- C:\WINDOWS\system32\autoconv.exe
2009-08-27 18:38:28 ----A---- C:\WINDOWS\system32\autochk.exe
2009-08-27 18:38:28 ----A---- C:\WINDOWS\system32\advapi32.dll
2009-08-27 18:38:27 ----A---- C:\WINDOWS\system32\userinit.exe
2009-08-27 18:38:27 ----A---- C:\WINDOWS\system32\untfs.dll
2009-08-27 18:38:27 ----A---- C:\WINDOWS\system32\ulib.dll
2009-08-27 18:38:27 ----A---- C:\WINDOWS\system32\tcpmonui.dll
2009-08-27 18:38:27 ----A---- C:\WINDOWS\system32\syssetup.dll
2009-08-27 18:38:27 ----A---- C:\WINDOWS\system32\srvsvc.dll
2009-08-27 18:38:27 ----A---- C:\WINDOWS\system32\smss.exe
2009-08-27 18:38:27 ----A---- C:\WINDOWS\system32\setupapi.dll
2009-08-27 18:38:27 ----A---- C:\WINDOWS\system32\sessmgr.exe
2009-08-27 18:38:27 ----A---- C:\WINDOWS\system32\services.exe
2009-08-27 18:38:27 ----A---- C:\WINDOWS\system32\schannel.dll
2009-08-27 18:38:27 ----A---- C:\WINDOWS\system32\scardsvr.exe
2009-08-27 18:38:27 ----A---- C:\WINDOWS\system32\savedump.exe
2009-08-27 18:38:27 ----A---- C:\WINDOWS\system32\samsrv.dll
2009-08-27 18:38:27 ----A---- C:\WINDOWS\system32\samlib.dll
2009-08-27 18:38:27 ----A---- C:\WINDOWS\system32\rshx32.dll
2009-08-27 18:38:27 ----A---- C:\WINDOWS\system32\rastapi.dll
2009-08-27 18:38:27 ----A---- C:\WINDOWS\system32\rasman.dll
2009-08-27 18:38:27 ----A---- C:\WINDOWS\system32\rasdlg.dll
2009-08-27 18:38:27 ----A---- C:\WINDOWS\system32\rasauto.dll
2009-08-27 18:38:27 ----A---- C:\WINDOWS\system32\rasapi32.dll
2009-08-27 18:38:27 ----A---- C:\WINDOWS\system32\printui.dll
2009-08-27 18:38:27 ----A---- C:\WINDOWS\system32\perfctrs.dll
2009-08-27 18:38:27 ----A---- C:\WINDOWS\system32\olecnv32.dll
2009-08-27 18:38:27 ----A---- C:\WINDOWS\system32\oleaut32.dll
2009-08-27 18:38:27 ----A---- C:\WINDOWS\system32\nwprovau.dll
2009-08-27 18:38:27 ----A---- C:\WINDOWS\system32\ntvdm.exe
2009-08-27 18:38:27 ----A---- C:\WINDOWS\system32\ntprint.dll
2009-08-27 18:38:27 ----A---- C:\WINDOWS\system32\ntlsapi.dll
2009-08-27 18:38:27 ----A---- C:\WINDOWS\system32\ntdll.dll
2009-08-27 18:38:27 ----A---- C:\WINDOWS\system32\nslookup.exe
2009-08-27 18:38:27 ----A---- C:\WINDOWS\system32\msv1_0.dll
2009-08-27 18:38:26 ----A---- C:\WINDOWS\system32\wkssvc.dll
2009-08-27 18:38:26 ----A---- C:\WINDOWS\system32\win32spl.dll
2009-08-27 18:38:23 ----A---- C:\WINDOWS\system32\hal.dll
2009-08-27 18:38:22 ----A---- C:\WINDOWS\system32\ntoskrnl.exe
2009-08-27 18:38:22 ----A---- C:\WINDOWS\system32\ntkrnlpa.exe
2009-08-27 18:34:31 ----D---- C:\Documents and Settings\USER\Application Data\dvdcss
2009-08-27 10:33:33 ----D---- C:\divx
2009-08-27 10:29:49 ----D---- C:\Documents and Settings\USER\Application Data\vlc
2009-08-27 10:18:41 ----D---- C:\Documents and Settings\USER\Application Data\DivX
2009-08-27 10:12:02 ----D---- C:\Program Files\DivX
2009-08-27 10:05:53 ----D---- C:\Program Files\VideoLAN
2009-08-27 08:22:53 ----HDC---- C:\WINDOWS\$NtUninstallKB970653-v3$
2009-08-25 12:45:21 ----D---- C:\Program Files\Bonjour
2009-08-25 12:35:50 ----D---- C:\Program Files\Fichiers communs\Macrovision Shared
2009-08-22 21:24:13 ----A---- C:\WINDOWS\NeroDigital.ini
2009-08-22 20:00:54 ----A---- C:\WINDOWS\Irremote.ini
2009-08-21 09:25:07 ----A---- C:\WINDOWS\system32\javaws.exe
2009-08-21 09:25:07 ----A---- C:\WINDOWS\system32\javaw.exe
2009-08-21 09:25:07 ----A---- C:\WINDOWS\system32\java.exe
2009-08-21 09:25:07 ----A---- C:\WINDOWS\system32\deploytk.dll
2009-08-21 09:20:10 ----D---- C:\Documents and Settings\USER\Application Data\Sun
2009-08-20 09:17:20 ----D---- C:\WINDOWS\ie8updates
2009-08-20 09:15:38 ----HDC---- C:\WINDOWS\ie8
2009-08-20 09:09:12 ----A---- C:\WINDOWS\system32\MRT.exe
======List of files/folders modified in the last 1 months======
2009-09-18 14:07:13 ----RD---- C:\Program Files
2009-09-18 13:05:31 ----D---- C:\WINDOWS\Temp
2009-09-18 12:40:00 ----A---- C:\WINDOWS\SchedLgU.Txt
2009-09-18 12:25:07 ----SHD---- C:\WINDOWS\Installer
2009-09-18 12:24:57 ----HD---- C:\Config.Msi
2009-09-18 12:24:52 ----D---- C:\WINDOWS\Help
2009-09-18 12:24:51 ----D---- C:\Program Files\Fichiers communs
2009-09-18 10:18:59 ----D---- C:\WINDOWS\system32\CatRoot2
2009-09-17 18:58:40 ----D---- C:\Program Files\Mozilla Firefox
2009-09-17 18:53:25 ----D---- C:\WINDOWS\system32
2009-09-17 18:24:42 ----DC---- C:\WINDOWS\system32\DRVSTORE
2009-09-17 18:24:42 ----D---- C:\Program Files\Yahoo!
2009-09-17 18:24:39 ----D---- C:\WINDOWS\security
2009-09-17 18:23:42 ----D---- C:\WINDOWS\system32\Restore
2009-09-16 19:56:36 ----HD---- C:\WINDOWS\inf
2009-09-16 19:45:00 ----D---- C:\WINDOWS
2009-09-16 19:43:25 ----D---- C:\WINDOWS\system32\drivers
2009-09-16 19:42:05 ----D---- C:\WINDOWS\WinSxS
2009-09-16 12:09:02 ----A---- C:\WINDOWS\system32\PerfStringBackup.INI
2009-09-15 18:51:07 ----D---- C:\WINDOWS\system32\CatRoot
2009-09-14 20:08:39 ----A---- C:\WINDOWS\imsins.BAK
2009-09-14 20:08:15 ----RSHDC---- C:\WINDOWS\system32\dllcache
2009-09-12 13:55:19 ----SHD---- C:\WINDOWS\system32\bycool
2009-09-12 10:44:24 ----SD---- C:\WINDOWS\Tasks
2009-09-12 08:35:11 ----D---- C:\Documents and Settings\All Users.WINDOWS\Application Data\Microsoft Help
2009-09-12 08:28:42 ----D---- C:\Program Files\Fichiers communs\DESIGNER
2009-09-12 08:28:33 ----RSD---- C:\WINDOWS\Fonts
2009-09-11 20:53:43 ----SHD---- C:\WINDOWS\system32\bycool1
2009-09-11 20:41:48 ----D---- C:\Program Files\PDFCreator
2009-09-11 20:41:21 ----D---- C:\Program Files\Mozilla Thunderbird
2009-09-11 20:20:33 ----SD---- C:\Documents and Settings\USER\Application Data\Microsoft
2009-09-10 12:38:44 ----D---- C:\Documents and Settings
2009-09-10 08:37:04 ----HD---- C:\WINDOWS\$hf_mig$
2009-09-09 16:29:56 ----A---- C:\WINDOWS\unvise32.exe
2009-09-09 15:56:40 ----D---- C:\hp_LJ1018_Full_Solution
2009-09-09 15:52:48 ----A---- C:\WINDOWS\system32\zshp1018.exe
2009-09-09 14:31:38 ----D---- C:\Program Files\Windows NT
2009-09-09 14:31:38 ----D---- C:\Program Files\Windows Media Player
2009-09-09 14:31:38 ----D---- C:\Program Files\Outlook Express
2009-09-09 14:31:38 ----D---- C:\Program Files\NetMeeting
2009-09-09 14:31:38 ----D---- C:\Program Files\Movie Maker
2009-09-09 14:22:17 ----D---- C:\WINDOWS\system32\wbem
2009-09-09 10:18:38 ----D---- C:\Program Files\WinPcap
2009-09-09 10:17:22 ----D---- C:\Program Files\Internet Explorer
2009-09-09 09:55:50 ----D---- C:\Documents and Settings\USER\Application Data\Skype
2009-09-08 08:41:48 ----SD---- C:\WINDOWS\Downloaded Program Files
2009-09-07 20:28:10 ----D---- C:\Program Files\Fichiers communs\Adobe
2009-09-07 20:28:08 ----D---- C:\Documents and Settings\All Users.WINDOWS\Application Data\Adobe
2009-09-07 13:01:07 ----D---- C:\Program Files\CCP Server 5
2009-09-07 08:42:21 ----D---- C:\Program Files\Messenger
2009-09-06 16:40:46 ----D---- C:\WINDOWS\system32\Setup
2009-09-06 16:40:46 ----D---- C:\WINDOWS\AppPatch
2009-09-06 16:40:41 ----D---- C:\Program Files\Fichiers communs\System
2009-09-06 16:26:23 ----D---- C:\WINDOWS\ServicePackFiles
2009-09-06 16:24:30 ----D---- C:\WINDOWS\system32\usmt
2009-09-06 16:24:26 ----D---- C:\WINDOWS\system32\oobe
2009-09-06 16:24:25 ----D---- C:\WINDOWS\system32\npp
2009-09-06 16:23:39 ----D---- C:\WINDOWS\system32\Com
2009-09-06 16:22:03 ----D---- C:\WINDOWS\system
2009-09-06 16:22:02 ----D---- C:\WINDOWS\srchasst
2009-09-06 16:22:02 ----D---- C:\WINDOWS\PeerNet
2009-09-06 16:21:59 ----D---- C:\WINDOWS\msagent
2009-09-06 16:21:52 ----D---- C:\WINDOWS\ime
2009-09-06 16:21:14 ----D---- C:\WINDOWS\system32\inetsrv
2009-09-06 16:20:24 ----D---- C:\WINDOWS\Network Diagnostic
2009-09-06 16:20:24 ----D---- C:\WINDOWS\L2Schemas
2009-09-06 16:20:24 ----D---- C:\WINDOWS\ehome
2009-09-06 16:13:20 ----D---- C:\Program Files\Apple Software Update
2009-09-02 08:14:59 ----D---- C:\Program Files\Fichiers communs\Nero
2009-09-02 08:12:55 ----D---- C:\Documents and Settings\All Users.WINDOWS\Application Data\Nero
2009-09-02 08:03:04 ----D---- C:\Program Files\Nero
2009-09-02 07:58:36 ----D---- C:\Program Files\QuickTime
2009-08-28 08:37:51 ----A---- C:\WINDOWS\OEWABLog.txt
2009-08-28 08:36:51 ----A---- C:\WINDOWS\setuplog.txt
2009-08-27 18:45:11 ----D---- C:\WINDOWS\system32\fr-fr
2009-08-27 18:45:10 ----D---- C:\WINDOWS\system32\fr
2009-08-27 18:40:42 ----D---- C:\WINDOWS\system32\ReinstallBackups
2009-08-27 09:02:05 ----D---- C:\Documents and Settings\USER\Application Data\Adobe
2009-08-25 12:46:44 ----D---- C:\Program Files\Adobe
2009-08-22 21:21:03 ----D---- C:\Documents and Settings\USER\Application Data\Nero
2009-08-21 09:24:50 ----D---- C:\Program Files\Java
2009-08-20 09:16:49 ----D---- C:\WINDOWS\system32\config
2009-08-20 09:16:42 ----D---- C:\WINDOWS\wbem
2009-08-20 09:16:35 ----D---- C:\WINDOWS\Media
2009-08-20 09:09:14 ----D---- C:\WINDOWS\Debug
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R1 Aavmker4;avast! Asynchronous Virus Monitor; C:\WINDOWS\system32\drivers\Aavmker4.sys [2009-08-17 26944]
R1 aswSP;avast! Self Protection; C:\WINDOWS\system32\drivers\aswSP.sys [2009-08-17 114768]
R1 aswTdi;avast! Network Shield Support; C:\WINDOWS\system32\drivers\aswTdi.sys [2009-08-17 51376]
R1 intelppm;Pilote de processeur Intel; C:\WINDOWS\system32\DRIVERS\intelppm.sys [2004-08-03 40320]
R1 KLIF;Kaspersky Lab Driver; C:\WINDOWS\system32\DRIVERS\klif.sys [2009-07-21 303248]
R1 WS2IFSL;Environnement de prise en charge de Fournisseur de services non-IFS Windows Sockets 2.0; C:\WINDOWS\System32\drivers\ws2ifsl.sys [2001-08-28 12032]
R2 aswFsBlk;aswFsBlk; C:\WINDOWS\system32\DRIVERS\aswFsBlk.sys [2009-08-17 20560]
R2 aswMon2;avast! Standard Shield Support; C:\WINDOWS\system32\drivers\aswMon2.sys [2009-08-17 94160]
R2 ISWKL;ZoneAlarm Toolbar ISWKL; \??\C:\Program Files\CheckPoint\ZAForceField\ISWKL.sys []
R2 NwlnkIpx;Protocole de transport compatible NWLink IPX/SPX/NetBIOS; C:\WINDOWS\system32\DRIVERS\nwlnkipx.sys [2004-08-03 88448]
R2 NwlnkNb;NetBIOS NWLink; C:\WINDOWS\system32\DRIVERS\nwlnknb.sys [2001-08-28 63232]
R2 NwlnkSpx;Protocole NWLink SPX/SPXII; C:\WINDOWS\system32\DRIVERS\nwlnkspx.sys [2001-08-28 55936]
R3 aswRdr;aswRdr; C:\WINDOWS\system32\drivers\aswRdr.sys [2009-08-17 23152]
R3 HDAudBus;Microsoft UAA Bus Driver for High Definition Audio; C:\WINDOWS\system32\DRIVERS\HDAudBus.sys [2005-01-07 138752]
R3 hidusb;Pilote de classe HID Microsoft; C:\WINDOWS\system32\DRIVERS\hidusb.sys [2001-08-28 9600]
R3 ialm;ialm; C:\WINDOWS\system32\DRIVERS\igxpmp32.sys [2007-12-19 5854688]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\WINDOWS\system32\drivers\RtkHDAud.sys [2008-01-30 4725760]
R3 mouhid;Pilote HID de souris; C:\WINDOWS\system32\DRIVERS\mouhid.sys [2001-08-28 12288]
R3 RTLE8023xp;Realtek 10/100/1000 PCI-E NIC Family NDIS XP Driver; C:\WINDOWS\system32\DRIVERS\Rtenicxp.sys [2008-01-03 105856]
R3 usbehci;Pilote miniport de contrôleur d'hôte amélioré Microsoft USB 2.0; C:\WINDOWS\system32\DRIVERS\usbehci.sys [2004-08-03 26624]
R3 usbhub;Pilote de concentrateur standard USB Microsoft; C:\WINDOWS\system32\DRIVERS\usbhub.sys [2004-08-03 57600]
R3 usbprint;Classe d'imprimantes USB Microsoft; C:\WINDOWS\system32\DRIVERS\usbprint.sys [2004-08-03 25856]
R3 usbuhci;Pilote miniport de contrôleur hôte universel USB Microsoft; C:\WINDOWS\system32\DRIVERS\usbuhci.sys [2004-08-03 20480]
R3 vsdatant;vsdatant; C:\WINDOWS\System32\vsdatant.sys [2009-08-26 483208]
S3 GMSIPCI;GMSIPCI; \??\E:\INSTALL\GMSIPCI.SYS []
S3 MSICPL;MSICPL; \??\E:\install4\MSICPL.sys []
S3 nm;Pilote du Moniteur réseau; C:\WINDOWS\system32\DRIVERS\NMnt.sys [2004-08-03 40320]
S3 NPF;NetGroup Packet Filter Driver; C:\WINDOWS\system32\drivers\npf.sys [2007-11-06 34064]
S3 NTACCESS;NTACCESS; \??\E:\NTACCESS.sys []
S3 SetupNTGLM7X;SetupNTGLM7X; \??\E:\NTGLM7X.sys []
S3 usbccgp;Pilote parent générique USB Microsoft; C:\WINDOWS\system32\DRIVERS\usbccgp.sys [2004-08-03 31616]
S3 usbscan;Pilote de scanneur USB; C:\WINDOWS\system32\DRIVERS\usbscan.sys [2004-08-03 15104]
S3 USBSTOR;Pilote de stockage de masse USB; C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS [2004-08-03 26496]
S3 WpdUsb;WpdUsb; C:\WINDOWS\System32\Drivers\wpdusb.sys [2006-08-24 38656]
S4 IntelIde;IntelIde; C:\WINDOWS\system32\drivers\IntelIde.sys []
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 aswUpdSv;avast! iAVS4 Control Service; C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe [2009-08-17 18752]
R2 avast! Antivirus;avast! Antivirus; C:\Program Files\Alwil Software\Avast4\ashServ.exe [2009-08-17 138680]
R2 Bonjour Service;##Id_String1.6844F930_1628_4223_B5CC_5BB94B879762##; C:\Program Files\Bonjour\mDNSResponder.exe [2006-02-28 229376]
R2 Diskeeper;Diskeeper; C:\Program Files\Diskeeper Corporation\Diskeeper\DkService.exe [2008-11-22 1333016]
R2 Findbasic Service;Findbasic Service; C:\Documents and Settings\All Users.WINDOWS\Application Data\Findbasic\findbasic121.exe [2009-09-02 54776]
R2 IswSvc;ZoneAlarm Toolbar IswSvc; C:\Program Files\CheckPoint\ZAForceField\IswSvc.exe [2009-08-26 435568]
R2 JavaQuickStarterService;Java Quick Starter; C:\Program Files\Java\jre6\bin\jqs.exe [2009-08-21 153376]
R2 Pml Driver HPZ12;Pml Driver HPZ12; C:\WINDOWS\system32\HPZipm12.exe [2006-03-03 69632]
R2 YahooAUService;Yahoo! Updater; C:\Program Files\Yahoo!\SoftwareUpdate\YahooAUService.exe [2008-11-09 602392]
R3 avast! Mail Scanner;avast! Mail Scanner; C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe [2009-08-17 254040]
S2 Nero BackItUp Scheduler 4.0;Nero BackItUp Scheduler 4.0; C:\Program Files\Fichiers communs\Nero\Nero BackItUp 4\NBService.exe []
S3 avast! Web Scanner;avast! Web Scanner; C:\Program Files\Alwil Software\Avast4\ashWebSv.exe [2009-08-17 352920]
S3 odserv;Microsoft Office Diagnostics Service; C:\Program Files\Fichiers communs\Microsoft Shared\OFFICE12\ODSERV.EXE [2006-10-26 441136]
S3 ose;Office Source Engine; C:\Program Files\Fichiers communs\Microsoft Shared\Source Engine\OSE.EXE [2006-10-26 145184]
-----------------EOF-----------------
Configuration: Windows XP Safari 532.0
A voir également:
- Bilan de santé
- Bilan de santé du pc - Guide
- Santé disque dur - Télécharger - Informations & Diagnostic
- Bilan de stage exemple - Guide
- Mon espace santé mon compte - Guide
- Bilan@outlook - Forum Outlook
