Bilan de santé
dj knock
-
Utilisateur anonyme -
Utilisateur anonyme -
Bonjour,Logfile of random's system information tool 1.06 (written by random/random)
Run by USER at 2009-09-18 14:13:45
Microsoft Windows XP Professionnel Service Pack 2
System drive C: has 18 GB (45%) free of 40 GB
Total RAM: 1527 MB (45% free)
Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 14:14:19, on 18/09/2009
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v8.00 (8.00.6001.18702)
Boot mode: Normal
Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
C:\Program Files\CheckPoint\ZAForceField\IswSvc.exe
C:\Program Files\Alwil Software\Avast4\ashServ.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\CheckPoint\ZAForceField\ForceField.exe
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\RTHDCPL.EXE
C:\WINDOWS\system32\igfxtray.exe
C:\WINDOWS\system32\hkcmd.exe
C:\WINDOWS\system32\igfxpers.exe
C:\Program Files\HP\HP Software Update\HPWuSchd2.exe
C:\Program Files\Hewlett-Packard\OrderReminder\OrderReminder.exe
C:\Program Files\Java\jre6\bin\jusched.exe
C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
C:\WINDOWS\system32\igfxsrvc.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe
C:\Program Files\Bonjour\mDNSResponder.exe
C:\Documents and Settings\All Users.WINDOWS\Application Data\Findbasic\findbasic121.exe
C:\Program Files\Java\jre6\bin\jqs.exe
C:\WINDOWS\system32\HPZipm12.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Yahoo!\SoftwareUpdate\YahooAUService.exe
C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
C:\Program Files\Findbasic\findbasic.exe
C:\WINDOWS\system32\wuauclt.exe
C:\Program Files\CCP Server 5\ccpsrv.exe
C:\Documents and Settings\USER\Local Settings\Application Data\Google\Chrome\Application\chrome.exe
C:\Documents and Settings\USER\Local Settings\Application Data\Google\Chrome\Application\chrome.exe
C:\Program Files\Windows Media Player\wmplayer.exe
C:\Documents and Settings\USER\Local Settings\Application Data\Google\Chrome\Application\chrome.exe
C:\Documents and Settings\USER\Local Settings\Application Data\Google\Chrome\Application\chrome.exe
C:\Documents and Settings\USER\Local Settings\Application Data\Google\Chrome\Application\chrome.exe
C:\Program Files\Diskeeper Corporation\Diskeeper\DkService.exe
C:\Program Files\Internet Download Manager\IDMan.exe
C:\WINDOWS\system32\NOTEPAD.EXE
C:\Documents and Settings\USER\Local Settings\Application Data\Google\Chrome\Application\chrome.exe
C:\Documents and Settings\USER\Mes documents\Downloads\Programs\RSIT.exe
C:\Program Files\trend micro\USER.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = about:blank
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.google.fr/?gws_rd=ssl
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = https://www.msn.com/fr-fr/?ocid=iehp
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Bar = about:blank
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.msn.com/fr-fr/?ocid=iehp
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Favoris
R3 - URLSearchHook: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\PROGRA~1\Yahoo!\Companion\Installs\cpn0\yt.dll
O2 - BHO: IDM Helper - {0055C089-8582-441B-A0BF-17B458C2A3A8} - C:\Program Files\Internet Download Manager\IDMIECC.dll
O2 - BHO: &Yahoo! Toolbar Helper - {02478D38-C3F9-4efb-9B51-7695ECA05670} - C:\PROGRA~1\Yahoo!\Companion\Installs\cpn0\yt.dll
O2 - BHO: AskBar BHO - {201f27d4-3704-41d6-89c1-aa35e39143ed} - C:\Program Files\AskBarDis\bar\bin\askBar.dll
O2 - BHO: Spybot-S&D IE Protection - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O2 - BHO: ZoneAlarm Toolbar Registrar - {8A4A36C2-0535-4D2C-BD3D-496CB7EED6E3} - C:\Program Files\CheckPoint\ZAForceField\TrustChecker\bin\TrustCheckerIEPlugin.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll
O2 - BHO: JQSIEStartDetectorImpl - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll
O2 - BHO: SingleInstance Class - {FDAD4DA1-61A2-4FD8-9C17-86F7AC245081} - C:\PROGRA~1\Yahoo!\Companion\Installs\cpn0\YTSingleInstance.dll
O3 - Toolbar: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\PROGRA~1\Yahoo!\Companion\Installs\cpn0\yt.dll
O3 - Toolbar: Systran40premi.IEPlugIn - {CFB25594-4D5F-11D6-AB7B-00B0D094B576} - C:\Program Files\Systran\4_0\Premium\IEPlugIn.dll
O3 - Toolbar: (no name) - {CCC7A320-B3CA-4199-B1A6-9F516DD69829} - (no file)
O3 - Toolbar: Foxit Toolbar - {3041d03e-fd4b-44e0-b742-2d9b88305f98} - C:\Program Files\AskBarDis\bar\bin\askBar.dll
O3 - Toolbar: ZoneAlarm Toolbar - {EE2AC4E5-B0B0-4EC6-88A9-BCA1A32AB107} - C:\Program Files\CheckPoint\ZAForceField\TrustChecker\bin\TrustCheckerIEPlugin.dll
O3 - Toolbar: (no name) - {9F849A78-A3E0-4ECA-BC6A-9B7193B28CE1} - (no file)
O4 - HKLM\..\Run: [RTHDCPL] RTHDCPL.EXE
O4 - HKLM\..\Run: [Alcmtr] ALCMTR.EXE
O4 - HKLM\..\Run: [IgfxTray] C:\WINDOWS\system32\igfxtray.exe
O4 - HKLM\..\Run: [HotKeysCmds] C:\WINDOWS\system32\hkcmd.exe
O4 - HKLM\..\Run: [Persistence] C:\WINDOWS\system32\igfxpers.exe
O4 - HKLM\..\Run: [HP Software Update] C:\Program Files\HP\HP Software Update\HPWuSchd2.exe
O4 - HKLM\..\Run: [OrderReminder] C:\Program Files\Hewlett-Packard\OrderReminder\OrderReminder.exe
O4 - HKLM\..\Run: [NBKeyScan] "C:\Program Files\Nero\Nero8\Nero BackItUp\NBKeyScan.exe"
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre6\bin\jusched.exe"
O4 - HKLM\..\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
O4 - HKLM\..\Run: [ZoneAlarm Client] "C:\Program Files\Zone Labs\ZoneAlarm\zlclient.exe"
O4 - HKLM\..\Run: [ISW] "C:\Program Files\CheckPoint\ZAForceField\ForceField.exe" /icon="hidden"
O4 - HKLM\..\Run: [Ad-Watch] C:\Program Files\Lavasoft\Ad-Aware\AAWTray.exe
O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}] "C:\Program Files\Fichiers communs\Nero\Lib\NMBgMonitor.exe"
O4 - HKCU\..\Run: [ExplorerClient] "C:\Program Files\Softvision\Softvision Explorer 3\ExplorerClient.exe" AUTO
O4 - HKCU\..\Run: [OpenDNS Updater] "C:\Program Files\OpenDNS Updater\OpenDNSUpdater.exe" /autostart
O4 - HKCU\..\Run: [IDMan] C:\Program Files\Internet Download Manager\IDMan.exe /onboot
O4 - HKCU\..\Run: [SpybotSD TeaTimer] C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE RÉSEAU')
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
O6 - HKCU\Software\Policies\Microsoft\Internet Explorer\Toolbars\Restrictions present
O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office12\EXCEL.EXE/3000
O8 - Extra context menu item: Télécharger avec IDM - C:\Program Files\Internet Download Manager\IEExt.htm
O8 - Extra context menu item: Télécharger le contenu de video FLV avec IDM - C:\Program Files\Internet Download Manager\IEGetVL.htm
O8 - Extra context menu item: Télécharger tous les liens avec IDM - C:\Program Files\Internet Download Manager\IEGetAll.htm
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\Office12\REFIEBAR.DLL
O9 - Extra button: (no name) - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O9 - Extra 'Tools' menuitem: Spybot - Search & Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O10 - Unknown file in Winsock LSP: c:\windows\system32\nwprovau.dll
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab
O16 - DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} - http://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab
O17 - HKLM\System\CCS\Services\Tcpip\..\{615ACE12-1FE2-4CFD-A43A-E76359EF4D39}: NameServer = 208.67.222.222,208.67.220.220
O17 - HKLM\System\CS1\Services\Tcpip\..\{615ACE12-1FE2-4CFD-A43A-E76359EF4D39}: NameServer = 208.67.222.222,208.67.220.220
O17 - HKLM\System\CS4\Services\Tcpip\..\{615ACE12-1FE2-4CFD-A43A-E76359EF4D39}: NameServer = 208.67.222.222,208.67.220.220
O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - ALWIL Software - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
O23 - Service: avast! Antivirus - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashServ.exe
O23 - Service: avast! Mail Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
O23 - Service: avast! Web Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
O23 - Service: ##Id_String1.6844F930_1628_4223_B5CC_5BB94B879762## (Bonjour Service) - Apple Computer, Inc. - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: Diskeeper - Diskeeper Corporation - C:\Program Files\Diskeeper Corporation\Diskeeper\DkService.exe
O23 - Service: Findbasic Service - Unknown owner - C:\Documents and Settings\All Users.WINDOWS\Application Data\Findbasic\findbasic121.exe
O23 - Service: ZoneAlarm Toolbar IswSvc (IswSvc) - Check Point Software Technologies - C:\Program Files\CheckPoint\ZAForceField\IswSvc.exe
O23 - Service: Java Quick Starter (JavaQuickStarterService) - Sun Microsystems, Inc. - C:\Program Files\Java\jre6\bin\jqs.exe
O23 - Service: Nero BackItUp Scheduler 4.0 - Unknown owner - C:\Program Files\Fichiers communs\Nero\Nero BackItUp 4\NBService.exe (file missing)
O23 - Service: Pml Driver HPZ12 - HP - C:\WINDOWS\system32\HPZipm12.exe
O23 - Service: Yahoo! Updater (YahooAUService) - Yahoo! Inc. - C:\Program Files\Yahoo!\SoftwareUpdate\YahooAUService.exe
--
End of file - 10323 bytes
======Scheduled tasks folder======
C:\WINDOWS\tasks\User_Feed_Synchronization-{FB1EE39B-E18B-43D9-A66D-06A2865C2BCD}.job
C:\WINDOWS\tasks\WGASetup.job
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{0055C089-8582-441B-A0BF-17B458C2A3A8}]
IDMIEHlprObj Class - C:\Program Files\Internet Download Manager\IDMIECC.dll [2009-09-09 173488]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{02478D38-C3F9-4efb-9B51-7695ECA05670}]
&Yahoo! Toolbar Helper - C:\PROGRA~1\Yahoo!\Companion\Installs\cpn0\yt.dll [2009-03-13 908528]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{201f27d4-3704-41d6-89c1-aa35e39143ed}]
AskBar BHO - C:\Program Files\AskBarDis\bar\bin\askBar.dll [2008-11-18 333192]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{53707962-6F74-2D53-2644-206D7942484F}]
Spybot-S&D IE Protection - C:\PROGRA~1\SPYBOT~1\SDHelper.dll [2009-01-26 1879896]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8A4A36C2-0535-4D2C-BD3D-496CB7EED6E3}]
ZoneAlarm Toolbar Registrar - C:\Program Files\CheckPoint\ZAForceField\TrustChecker\bin\TrustCheckerIEPlugin.dll [2009-08-26 578928]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre6\bin\jp2ssv.dll [2009-08-21 41760]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E7E6F031-17CE-4C07-BC86-EABFE594F69C}]
JQSIEStartDetectorImpl Class - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll [2009-08-21 73728]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{FDAD4DA1-61A2-4FD8-9C17-86F7AC245081}]
SingleInstance Class - C:\PROGRA~1\Yahoo!\Companion\Installs\cpn0\YTSingleInstance.dll [2009-03-13 165616]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{EF99BD32-C1FB-11D2-892F-0090271D4F88} - Yahoo! Toolbar - C:\PROGRA~1\Yahoo!\Companion\Installs\cpn0\yt.dll [2009-03-13 908528]
{CFB25594-4D5F-11D6-AB7B-00B0D094B576} - Systran40premi.IEPlugIn - C:\Program Files\Systran\4_0\Premium\IEPlugIn.dll [2002-04-12 65536]
{CCC7A320-B3CA-4199-B1A6-9F516DD69829}
{3041d03e-fd4b-44e0-b742-2d9b88305f98} - Foxit Toolbar - C:\Program Files\AskBarDis\bar\bin\askBar.dll [2008-11-18 333192]
{EE2AC4E5-B0B0-4EC6-88A9-BCA1A32AB107} - ZoneAlarm Toolbar - C:\Program Files\CheckPoint\ZAForceField\TrustChecker\bin\TrustCheckerIEPlugin.dll [2009-08-26 578928]
{9F849A78-A3E0-4ECA-BC6A-9B7193B28CE1}
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"RTHDCPL"=C:\WINDOWS\RTHDCPL.EXE [2008-01-29 16859648]
"Alcmtr"=C:\WINDOWS\ALCMTR.EXE [2005-05-03 69632]
"IgfxTray"=C:\WINDOWS\system32\igfxtray.exe [2007-12-19 135168]
"HotKeysCmds"=C:\WINDOWS\system32\hkcmd.exe [2007-12-19 159744]
"Persistence"=C:\WINDOWS\system32\igfxpers.exe [2007-12-19 131072]
"HP Software Update"=C:\Program Files\HP\HP Software Update\HPWuSchd2.exe [2006-02-19 49152]
"OrderReminder"=C:\Program Files\Hewlett-Packard\OrderReminder\OrderReminder.exe [2006-07-30 98304]
"NBKeyScan"=C:\Program Files\Nero\Nero8\Nero BackItUp\NBKeyScan.exe []
"SunJavaUpdateSched"=C:\Program Files\Java\jre6\bin\jusched.exe [2009-08-21 149280]
"avast!"=C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe [2009-08-17 81000]
"ZoneAlarm Client"=C:\Program Files\Zone Labs\ZoneAlarm\zlclient.exe [2009-08-26 1011080]
"ISW"=C:\Program Files\CheckPoint\ZAForceField\ForceField.exe [2009-08-26 722288]
"Ad-Watch"=C:\Program Files\Lavasoft\Ad-Aware\AAWTray.exe []
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"=C:\WINDOWS\system32\ctfmon.exe [2004-08-03 15360]
"BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}"=C:\Program Files\Fichiers communs\Nero\Lib\NMBgMonitor.exe []
"ExplorerClient"=C:\Program Files\Softvision\Softvision Explorer 3\ExplorerClient.exe AUTO []
"OpenDNS Updater"=C:\Program Files\OpenDNS Updater\OpenDNSUpdater.exe /autostart []
"IDMan"=C:\Program Files\Internet Download Manager\IDMan.exe [2009-09-09 3118512]
"SpybotSD TeaTimer"=C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe [2009-03-05 2260480]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\igfxcui]
C:\WINDOWS\system32\igfxdev.dll [2007-12-19 208896]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\WINDOWS\system32\WPDShServiceObj.dll [2006-08-24 133120]
UPnPMonitor - {e57ce738-33e8-4c51-8354-bb4de9d215d1} - C:\WINDOWS\system32\upnpui.dll [2004-08-03 240128]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Lsa]
"notification packages"=
scecli
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Lavasoft Ad-Aware Service]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Lavasoft Ad-Aware Service]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\nm]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\nm.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\vsmon]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"DisableTaskMgr"=0
"DisableChangePassword"=0
"DisableLockWorkstation"=0
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NofolderOptions"=0
"NoFind"=0
"NoRun"=0
"SpecifyDefaultButtons"=0
"NoBandCustomize"=0
"NoToolbarCustomize"=0
"NoFileUrl"=0
"NoAddPrinter"=0
"NoDeletePrinter"=0
"NoViewContextMenu"=0
"NoDrives"=0
"NoViewOnDrive"=0
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=
"NoFolderOptions"=
"HonorAutoRunSetting"=
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"C:\Program Files\CCP Server 5\ccpsrv.exe"="C:\Program Files\CCP Server 5\ccpsrv.exe:*:Enabled:CyberCafePro Main Control Station"
"C:\Program Files\Microsoft Office\Office12\OUTLOOK.EXE"="C:\Program Files\Microsoft Office\Office12\OUTLOOK.EXE:*:Enabled:Microsoft Office Outlook"
"C:\Program Files\Yahoo!\Messenger\YahooMessenger.exe"="C:\Program Files\Yahoo!\Messenger\YahooMessenger.exe:*:Enabled:Yahoo! Messenger"
"F:\driver\usb\usb_driver.exe"="F:\driver\usb\usb_driver.exe:*:Enabled:microssofts"
"C:\Program Files\TVUPlayer\TVUPlayer.exe"="C:\Program Files\TVUPlayer\TVUPlayer.exe:*:Enabled:TVUPlayer Component"
"C:\Program Files\VoipBuster.com\VoipBuster\VoipBuster.exe"="C:\Program Files\VoipBuster.com\VoipBuster\VoipBuster.exe:*:Enabled:VoipBuster"
"C:\Program Files\Bonjour\mDNSResponder.exe"="C:\Program Files\Bonjour\mDNSResponder.exe:*:Enabled:Bonjour"
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{0c85d223-a2fb-11de-81d3-0019dbe51d6f}]
shell\AutoRun\command - F:\DRIVER///vozacka.exe
shell\explore\command - F:\DRIVER//vozacka.exe
shell\open\command - F:\DRIVER//vozacka.exe
[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{27453fd5-9eb5-11de-81c2-0019dbe51d6f}]
shell\AutoRun\command - C:\WINDOWS\system32\RunDLL32.EXE Shell32.DLL,ShellExec_RunDLL log.exe
shell\Ouvrir\command - F:\log.exe
[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{2a478fe9-8274-11de-8174-0019dbe51d6f}]
shell\AutoRun\command - C:\WINDOWS\system32\RunDLL32.EXE Shell32.DLL,ShellExec_RunDLL log.exe
shell\Ouvrir\command - F:\log.exe
[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{2b171b27-a2a1-11de-81d2-0019dbe51d6f}]
shell\AutoRun\command - F:\LaunchU3.exe -a
[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{2b171b28-a2a1-11de-81d2-0019dbe51d6f}]
shell\AutoRun\command - G:\ZNAM\potom.exe
shell\explore\command - G:\.////ZNAM/\\\\potom.exe
shell\open\command - G:\ZNAM/////\\\\potom.exe
[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{31be8492-8403-11de-817a-0019dbe51d6f}]
shell\AutoRun\command - F:\lcw.exe
shell\open\command - F:\lcw.exe
[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{31be8496-8403-11de-817a-0019dbe51d6f}]
shell\AutoRun\command - F:\driver\usb\usb_driver.exe
shell\open\command - F:\driver\usb\usb_driver.exe
[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{31be8498-8403-11de-817a-0019dbe51d6f}]
shell\AutoRun\command - F:\driver\usb\usb_driver.exe
shell\open\command - F:\driver\usb\usb_driver.exe
[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{436dd04a-a1da-11de-81d0-0019dbe51d6f}]
shell\AutoRun\command - F:\LaunchU3.exe -a
[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{44146e31-869a-11de-817f-0019dbe51d6f}]
shell\AutoRun\command - F:\LaunchU3.exe -a
[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{57507f0e-8751-11de-8182-0019dbe51d6f}]
shell\AutoRun\command - F:\driver\usb\usb_driver.exe
shell\open\command - F:\driver\usb\usb_driver.exe
[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{64961e19-8264-11de-816f-0019dbe51d6f}]
shell\AutoRun\command - F:\d1vmq.exe
shell\open\command - F:\d1vmq.exe
[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{65ff0d21-93ae-11de-81a7-0019dbe51d6f}]
shell\AutoRun\command - INFO\solar.exe
shell\explore\command - .////INFO/\\\\solar.exe
shell\open\command - INFO/////\\\\solar.exe
[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{7bac0931-8ca2-11de-8191-0019dbe51d6f}]
shell\AutoRun\command - F:\CRNI\vrag.exe
shell\explore\command - F:\.////CRNI/\\\\vrag.exe
shell\open\command - F:\CRNI/////\\\\vrag.exe
[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{abe0800b-9b90-11de-81b5-0019dbe51d6f}]
shell\AutoRun\command - C:\WINDOWS\system32\RunDLL32.EXE Shell32.DLL,ShellExec_RunDLL Wscript.exe /e:vbs winfile.jpg
[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{abe08010-9b90-11de-81b5-0019dbe51d6f}]
shell\AutoRun\command - zPharaoh.exe
shell\explore\command - zPharaoh.exe
shell\open\command - zPharaoh.exe
[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{c0b9d97e-9620-11de-81aa-0019dbe51d6f}]
shell\AutoRun\command - F:\ReCYCleR\sE.exe
shell\OpEn\command - F:\ReCYCleR\sE.exe
[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{c0b9d980-9620-11de-81aa-0019dbe51d6f}]
shell\AutoRun\command - F:\windows\usbv.exe
shell\open\command - F:\windows\usbv.exe
[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{ccc71e66-a110-11de-81cb-0019dbe51d6f}]
shell\AutoRun\command - F:\DATA\FILES\BEAST.exe
shell\open\command - F:\DATA\FILES\BEAST.exe
[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{d586a692-87ee-11de-8183-0019dbe51d6f}]
shell\AutoRun\command - F:\driver\usb\usb_driver.exe
shell\open\command - F:\driver\usb\usb_driver.exe
[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{d586a695-87ee-11de-8183-0019dbe51d6f}]
shell\AutoRun\command - F:\driver\usb\usb_driver.exe
shell\open\command - F:\driver\usb\usb_driver.exe
[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{d586a696-87ee-11de-8183-0019dbe51d6f}]
shell\AutoRun\command - F:\driver\usb\usb_driver.exe
shell\open\command - F:\driver\usb\usb_driver.exe
[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{dc4eac24-88d4-11de-8189-0019dbe51d6f}]
shell\AutoRun\command - F:\driver\usb\usb_driver.exe
shell\open\command - F:\driver\usb\usb_driver.exe
[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{dd3baf0c-9a0b-11de-81b1-0019dbe51d6f}]
shell\AutoRun\command - F:\lcw.exe
shell\open\command - F:\lcw.exe
[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{eecfe946-96d3-11de-81ab-0019dbe51d6f}]
shell\AutoRun\command - F:\LaunchU3.exe -a
[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{f2bb578f-85ba-11de-817d-0019dbe51d6f}]
shell\AutoRun\command - F:\LaunchU3.exe -a
[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{f2bb5794-85ba-11de-817d-0019dbe51d6f}]
shell\AutoRun\command - F:\NEBO\zeljko.exe
shell\explore\command - F:\.////NEBO/\\\\zeljko.exe
shell\open\command - F:\NEBO/////\\\\zeljko.exe
[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{f2bb5795-85ba-11de-817d-0019dbe51d6f}]
shell\AutoRun\command - F:\driver\usb\usb_driver.exe
shell\open\command - F:\driver\usb\usb_driver.exe
======List of files/folders created in the last 1 months======
2009-09-18 14:07:13 ----D---- C:\Program Files\trend micro
2009-09-18 14:07:12 ----D---- C:\rsit
2009-09-18 12:24:51 ----D---- C:\Program Files\Fichiers communs\Diskeeper Corporation
2009-09-18 12:24:50 ----D---- C:\Documents and Settings\All Users.WINDOWS\Application Data\Diskeeper Corporation
2009-09-18 12:24:47 ----D---- C:\Program Files\Diskeeper Corporation
2009-09-16 19:44:27 ----D---- C:\WINDOWS\Minidump
2009-09-16 19:42:13 ----D---- C:\Documents and Settings\All Users.WINDOWS\Application Data\Lavasoft
2009-09-16 19:39:26 ----D---- C:\Program Files\Spybot - Search & Destroy
2009-09-16 19:39:26 ----D---- C:\Documents and Settings\All Users.WINDOWS\Application Data\Spybot - Search & Destroy
2009-09-16 09:14:42 ----D---- C:\Documents and Settings\USER\Application Data\Xilisoft Corporation
2009-09-16 08:45:40 ----D---- C:\Documents and Settings\USER\Application Data\IDM
2009-09-16 08:45:40 ----D---- C:\Documents and Settings\USER\Application Data\DMCache
2009-09-16 08:45:34 ----D---- C:\Program Files\Internet Download Manager
2009-09-14 20:10:10 ----D---- C:\Documents and Settings\USER\Application Data\AVS4YOU
2009-09-14 20:10:09 ----D---- C:\Documents and Settings\All Users.WINDOWS\Application Data\AVS4YOU
2009-09-14 20:08:44 ----D---- C:\Program Files\Fichiers communs\AVSMedia
2009-09-14 20:08:06 ----HDC---- C:\WINDOWS\$NtUninstallWMFDist11$
2009-09-14 20:06:44 ----A---- C:\WINDOWS\system32\msvcr70.dll
2009-09-14 20:06:44 ----A---- C:\WINDOWS\system32\msvcp70.dll
2009-09-14 20:06:44 ----A---- C:\WINDOWS\system32\mfc70.dll
2009-09-14 20:06:44 ----A---- C:\WINDOWS\system32\GdiPlus.dll
2009-09-14 20:06:43 ----D---- C:\Program Files\AVS4YOU
2009-09-14 20:06:43 ----A---- C:\WINDOWS\system32\msxml3a.dll
2009-09-13 19:03:15 ----D---- C:\Documents and Settings\USER\Application Data\#ISW.FS#
2009-09-12 20:05:31 ----D---- C:\Documents and Settings\USER\Application Data\OpenDNS Updater
2009-09-12 12:14:59 ----D---- C:\Documents and Settings\All Users.WINDOWS\Application Data\Kaspersky SDK
2009-09-12 11:56:12 ----D---- C:\Documents and Settings\USER\Application Data\CheckPoint
2009-09-12 11:55:48 ----D---- C:\Documents and Settings\USER\Application Data\pdfforge
2009-09-12 11:55:17 ----D---- C:\Program Files\CheckPoint
2009-09-12 11:55:11 ----A---- C:\WINDOWS\zllsputility.exe
2009-09-12 11:54:37 ----A---- C:\WINDOWS\system32\vsregexp.dll
2009-09-12 11:54:35 ----A---- C:\WINDOWS\system32\zlcommdb.dll
2009-09-12 11:54:35 ----A---- C:\WINDOWS\system32\zlcomm.dll
2009-09-12 11:54:28 ----A---- C:\WINDOWS\system32\vswmi.dll
2009-09-12 11:54:27 ----D---- C:\WINDOWS\system32\ZoneLabs
2009-09-12 11:54:27 ----A---- C:\WINDOWS\system32\zpeng25.dll
2009-09-12 11:54:27 ----A---- C:\WINDOWS\system32\vsxml.dll
2009-09-12 11:54:27 ----A---- C:\WINDOWS\system32\vspubapi.dll
2009-09-12 11:54:27 ----A---- C:\WINDOWS\system32\vsmonapi.dll
2009-09-12 11:53:36 ----A---- C:\WINDOWS\system32\vsutil.dll
2009-09-12 11:53:36 ----A---- C:\WINDOWS\system32\vsinit.dll
2009-09-12 11:53:36 ----A---- C:\WINDOWS\system32\vsdata.dll
2009-09-12 11:48:37 ----HDC---- C:\WINDOWS\$NtUninstallKB943232$
2009-09-12 11:48:13 ----D---- C:\Program Files\Zone Labs
2009-09-12 11:48:00 ----D---- C:\WINDOWS\Internet Logs
2009-09-11 19:32:51 ----A---- C:\WINDOWS\system32\aswBoot.exe
2009-09-10 19:32:07 ----D---- C:\Program Files\Findbasic
2009-09-10 19:32:07 ----D---- C:\Documents and Settings\All Users.WINDOWS\Application Data\Findbasic
2009-09-10 19:32:04 ----D---- C:\Documents and Settings\USER\Application Data\DealAssistant
2009-09-10 19:32:04 ----A---- C:\WINDOWS\system32\2e78.dll
2009-09-10 09:19:51 ----D---- C:\Program Files\AskBarDis
2009-09-10 08:37:05 ----HDC---- C:\WINDOWS\$NtUninstallKB956844$
2009-09-10 08:36:59 ----HDC---- C:\WINDOWS\$NtUninstallKB968816_WM9$
2009-09-09 14:55:30 ----D---- C:\Program Files\AVG
2009-09-09 09:52:58 ----A---- C:\WINDOWS\system32\idmmbc.dll
2009-09-08 14:57:48 ----D---- C:\WINDOWS\Sun
2009-09-08 09:05:06 ----D---- C:\Program Files\Foxit Software
2009-09-08 09:05:06 ----D---- C:\Documents and Settings\USER\Application Data\Foxit
2009-09-07 20:45:16 ----D---- C:\Documents and Settings\USER\Application Data\tazebama
2009-09-06 16:44:54 ----D---- C:\WINDOWS\system32\CatRoot_bak
2009-09-06 16:41:04 ----D---- C:\WINDOWS\Prefetch
2009-09-04 08:49:25 ----D---- C:\Program Files\Fichiers communs\DVDVideoSoft
2009-09-03 11:51:54 ----HD---- C:\WINDOWS\PIF
2009-08-29 08:55:23 ----HDC---- C:\WINDOWS\$NtUninstallKB951978$
2009-08-29 08:55:16 ----HDC---- C:\WINDOWS\$NtUninstallKB956744$
2009-08-29 08:55:07 ----HDC---- C:\WINDOWS\$NtUninstallKB973540_WM9$
2009-08-29 08:54:57 ----HDC---- C:\WINDOWS\$NtUninstallKB954459$
2009-08-27 20:34:03 ----D---- C:\Documents and Settings\All Users.WINDOWS\Application Data\Windows Genuine Advantage
2009-08-27 20:04:23 ----A---- C:\WINDOWS\system32\wmpns.dll
2009-08-27 18:45:09 ----D---- C:\WINDOWS\system32\bits
2009-08-27 18:39:13 ----A---- C:\WINDOWS\system32\qmgr.dll
2009-08-27 18:39:10 ----A---- C:\WINDOWS\system32\ntbackup.exe
2009-08-27 18:38:46 ----A---- C:\WINDOWS\system32\magnify.exe
2009-08-27 18:38:45 ----A---- C:\WINDOWS\system32\mobsync.exe
2009-08-27 18:38:42 ----A---- C:\WINDOWS\system32\mspaint.exe
2009-08-27 18:38:40 ----A---- C:\WINDOWS\system32\notepad.exe
2009-08-27 18:38:39 ----A---- C:\WINDOWS\system32\odbcad32.exe
2009-08-27 18:38:38 ----A---- C:\WINDOWS\system32\osk.exe
2009-08-27 18:38:34 ----A---- C:\WINDOWS\system32\sndrec32.exe
2009-08-27 18:38:33 ----A---- C:\WINDOWS\system32\spider.exe
2009-08-27 18:38:28 ----A---- C:\WINDOWS\system32\msgsvc.dll
2009-08-27 18:38:28 ----A---- C:\WINDOWS\system32\mgmtapi.dll
2009-08-27 18:38:28 ----A---- C:\WINDOWS\system32\lsasrv.dll
2009-08-27 18:38:28 ----A---- C:\WINDOWS\system32\locator.exe
2009-08-27 18:38:28 ----A---- C:\WINDOWS\system32\localspl.dll
2009-08-27 18:38:28 ----A---- C:\WINDOWS\system32\lmhsvc.dll
2009-08-27 18:38:28 ----A---- C:\WINDOWS\system32\kernel32.dll
2009-08-27 18:38:28 ----A---- C:\WINDOWS\system32\imagehlp.dll
2009-08-27 18:38:28 ----A---- C:\WINDOWS\system32\ftp.exe
2009-08-27 18:38:28 ----A---- C:\WINDOWS\system32\format.com
2009-08-27 18:38:28 ----A---- C:\WINDOWS\system32\dhcpcsvc.dll
2009-08-27 18:38:28 ----A---- C:\WINDOWS\system32\csrsrv.dll
2009-08-27 18:38:28 ----A---- C:\WINDOWS\system32\comdlg32.dll
2009-08-27 18:38:28 ----A---- C:\WINDOWS\system32\comctl32.dll
2009-08-27 18:38:28 ----A---- C:\WINDOWS\system32\cmd.exe
2009-08-27 18:38:28 ----A---- C:\WINDOWS\system32\cacls.exe
2009-08-27 18:38:28 ----A---- C:\WINDOWS\system32\autoconv.exe
2009-08-27 18:38:28 ----A---- C:\WINDOWS\system32\autochk.exe
2009-08-27 18:38:28 ----A---- C:\WINDOWS\system32\advapi32.dll
2009-08-27 18:38:27 ----A---- C:\WINDOWS\system32\userinit.exe
2009-08-27 18:38:27 ----A---- C:\WINDOWS\system32\untfs.dll
2009-08-27 18:38:27 ----A---- C:\WINDOWS\system32\ulib.dll
2009-08-27 18:38:27 ----A---- C:\WINDOWS\system32\tcpmonui.dll
2009-08-27 18:38:27 ----A---- C:\WINDOWS\system32\syssetup.dll
2009-08-27 18:38:27 ----A---- C:\WINDOWS\system32\srvsvc.dll
2009-08-27 18:38:27 ----A---- C:\WINDOWS\system32\smss.exe
2009-08-27 18:38:27 ----A---- C:\WINDOWS\system32\setupapi.dll
2009-08-27 18:38:27 ----A---- C:\WINDOWS\system32\sessmgr.exe
2009-08-27 18:38:27 ----A---- C:\WINDOWS\system32\services.exe
2009-08-27 18:38:27 ----A---- C:\WINDOWS\system32\schannel.dll
2009-08-27 18:38:27 ----A---- C:\WINDOWS\system32\scardsvr.exe
2009-08-27 18:38:27 ----A---- C:\WINDOWS\system32\savedump.exe
2009-08-27 18:38:27 ----A---- C:\WINDOWS\system32\samsrv.dll
2009-08-27 18:38:27 ----A---- C:\WINDOWS\system32\samlib.dll
2009-08-27 18:38:27 ----A---- C:\WINDOWS\system32\rshx32.dll
2009-08-27 18:38:27 ----A---- C:\WINDOWS\system32\rastapi.dll
2009-08-27 18:38:27 ----A---- C:\WINDOWS\system32\rasman.dll
2009-08-27 18:38:27 ----A---- C:\WINDOWS\system32\rasdlg.dll
2009-08-27 18:38:27 ----A---- C:\WINDOWS\system32\rasauto.dll
2009-08-27 18:38:27 ----A---- C:\WINDOWS\system32\rasapi32.dll
2009-08-27 18:38:27 ----A---- C:\WINDOWS\system32\printui.dll
2009-08-27 18:38:27 ----A---- C:\WINDOWS\system32\perfctrs.dll
2009-08-27 18:38:27 ----A---- C:\WINDOWS\system32\olecnv32.dll
2009-08-27 18:38:27 ----A---- C:\WINDOWS\system32\oleaut32.dll
2009-08-27 18:38:27 ----A---- C:\WINDOWS\system32\nwprovau.dll
2009-08-27 18:38:27 ----A---- C:\WINDOWS\system32\ntvdm.exe
2009-08-27 18:38:27 ----A---- C:\WINDOWS\system32\ntprint.dll
2009-08-27 18:38:27 ----A---- C:\WINDOWS\system32\ntlsapi.dll
2009-08-27 18:38:27 ----A---- C:\WINDOWS\system32\ntdll.dll
2009-08-27 18:38:27 ----A---- C:\WINDOWS\system32\nslookup.exe
2009-08-27 18:38:27 ----A---- C:\WINDOWS\system32\msv1_0.dll
2009-08-27 18:38:26 ----A---- C:\WINDOWS\system32\wkssvc.dll
2009-08-27 18:38:26 ----A---- C:\WINDOWS\system32\win32spl.dll
2009-08-27 18:38:23 ----A---- C:\WINDOWS\system32\hal.dll
2009-08-27 18:38:22 ----A---- C:\WINDOWS\system32\ntoskrnl.exe
2009-08-27 18:38:22 ----A---- C:\WINDOWS\system32\ntkrnlpa.exe
2009-08-27 18:34:31 ----D---- C:\Documents and Settings\USER\Application Data\dvdcss
2009-08-27 10:33:33 ----D---- C:\divx
2009-08-27 10:29:49 ----D---- C:\Documents and Settings\USER\Application Data\vlc
2009-08-27 10:18:41 ----D---- C:\Documents and Settings\USER\Application Data\DivX
2009-08-27 10:12:02 ----D---- C:\Program Files\DivX
2009-08-27 10:05:53 ----D---- C:\Program Files\VideoLAN
2009-08-27 08:22:53 ----HDC---- C:\WINDOWS\$NtUninstallKB970653-v3$
2009-08-25 12:45:21 ----D---- C:\Program Files\Bonjour
2009-08-25 12:35:50 ----D---- C:\Program Files\Fichiers communs\Macrovision Shared
2009-08-22 21:24:13 ----A---- C:\WINDOWS\NeroDigital.ini
2009-08-22 20:00:54 ----A---- C:\WINDOWS\Irremote.ini
2009-08-21 09:25:07 ----A---- C:\WINDOWS\system32\javaws.exe
2009-08-21 09:25:07 ----A---- C:\WINDOWS\system32\javaw.exe
2009-08-21 09:25:07 ----A---- C:\WINDOWS\system32\java.exe
2009-08-21 09:25:07 ----A---- C:\WINDOWS\system32\deploytk.dll
2009-08-21 09:20:10 ----D---- C:\Documents and Settings\USER\Application Data\Sun
2009-08-20 09:17:20 ----D---- C:\WINDOWS\ie8updates
2009-08-20 09:15:38 ----HDC---- C:\WINDOWS\ie8
2009-08-20 09:09:12 ----A---- C:\WINDOWS\system32\MRT.exe
======List of files/folders modified in the last 1 months======
2009-09-18 14:07:13 ----RD---- C:\Program Files
2009-09-18 13:05:31 ----D---- C:\WINDOWS\Temp
2009-09-18 12:40:00 ----A---- C:\WINDOWS\SchedLgU.Txt
2009-09-18 12:25:07 ----SHD---- C:\WINDOWS\Installer
2009-09-18 12:24:57 ----HD---- C:\Config.Msi
2009-09-18 12:24:52 ----D---- C:\WINDOWS\Help
2009-09-18 12:24:51 ----D---- C:\Program Files\Fichiers communs
2009-09-18 10:18:59 ----D---- C:\WINDOWS\system32\CatRoot2
2009-09-17 18:58:40 ----D---- C:\Program Files\Mozilla Firefox
2009-09-17 18:53:25 ----D---- C:\WINDOWS\system32
2009-09-17 18:24:42 ----DC---- C:\WINDOWS\system32\DRVSTORE
2009-09-17 18:24:42 ----D---- C:\Program Files\Yahoo!
2009-09-17 18:24:39 ----D---- C:\WINDOWS\security
2009-09-17 18:23:42 ----D---- C:\WINDOWS\system32\Restore
2009-09-16 19:56:36 ----HD---- C:\WINDOWS\inf
2009-09-16 19:45:00 ----D---- C:\WINDOWS
2009-09-16 19:43:25 ----D---- C:\WINDOWS\system32\drivers
2009-09-16 19:42:05 ----D---- C:\WINDOWS\WinSxS
2009-09-16 12:09:02 ----A---- C:\WINDOWS\system32\PerfStringBackup.INI
2009-09-15 18:51:07 ----D---- C:\WINDOWS\system32\CatRoot
2009-09-14 20:08:39 ----A---- C:\WINDOWS\imsins.BAK
2009-09-14 20:08:15 ----RSHDC---- C:\WINDOWS\system32\dllcache
2009-09-12 13:55:19 ----SHD---- C:\WINDOWS\system32\bycool
2009-09-12 10:44:24 ----SD---- C:\WINDOWS\Tasks
2009-09-12 08:35:11 ----D---- C:\Documents and Settings\All Users.WINDOWS\Application Data\Microsoft Help
2009-09-12 08:28:42 ----D---- C:\Program Files\Fichiers communs\DESIGNER
2009-09-12 08:28:33 ----RSD---- C:\WINDOWS\Fonts
2009-09-11 20:53:43 ----SHD---- C:\WINDOWS\system32\bycool1
2009-09-11 20:41:48 ----D---- C:\Program Files\PDFCreator
2009-09-11 20:41:21 ----D---- C:\Program Files\Mozilla Thunderbird
2009-09-11 20:20:33 ----SD---- C:\Documents and Settings\USER\Application Data\Microsoft
2009-09-10 12:38:44 ----D---- C:\Documents and Settings
2009-09-10 08:37:04 ----HD---- C:\WINDOWS\$hf_mig$
2009-09-09 16:29:56 ----A---- C:\WINDOWS\unvise32.exe
2009-09-09 15:56:40 ----D---- C:\hp_LJ1018_Full_Solution
2009-09-09 15:52:48 ----A---- C:\WINDOWS\system32\zshp1018.exe
2009-09-09 14:31:38 ----D---- C:\Program Files\Windows NT
2009-09-09 14:31:38 ----D---- C:\Program Files\Windows Media Player
2009-09-09 14:31:38 ----D---- C:\Program Files\Outlook Express
2009-09-09 14:31:38 ----D---- C:\Program Files\NetMeeting
2009-09-09 14:31:38 ----D---- C:\Program Files\Movie Maker
2009-09-09 14:22:17 ----D---- C:\WINDOWS\system32\wbem
2009-09-09 10:18:38 ----D---- C:\Program Files\WinPcap
2009-09-09 10:17:22 ----D---- C:\Program Files\Internet Explorer
2009-09-09 09:55:50 ----D---- C:\Documents and Settings\USER\Application Data\Skype
2009-09-08 08:41:48 ----SD---- C:\WINDOWS\Downloaded Program Files
2009-09-07 20:28:10 ----D---- C:\Program Files\Fichiers communs\Adobe
2009-09-07 20:28:08 ----D---- C:\Documents and Settings\All Users.WINDOWS\Application Data\Adobe
2009-09-07 13:01:07 ----D---- C:\Program Files\CCP Server 5
2009-09-07 08:42:21 ----D---- C:\Program Files\Messenger
2009-09-06 16:40:46 ----D---- C:\WINDOWS\system32\Setup
2009-09-06 16:40:46 ----D---- C:\WINDOWS\AppPatch
2009-09-06 16:40:41 ----D---- C:\Program Files\Fichiers communs\System
2009-09-06 16:26:23 ----D---- C:\WINDOWS\ServicePackFiles
2009-09-06 16:24:30 ----D---- C:\WINDOWS\system32\usmt
2009-09-06 16:24:26 ----D---- C:\WINDOWS\system32\oobe
2009-09-06 16:24:25 ----D---- C:\WINDOWS\system32\npp
2009-09-06 16:23:39 ----D---- C:\WINDOWS\system32\Com
2009-09-06 16:22:03 ----D---- C:\WINDOWS\system
2009-09-06 16:22:02 ----D---- C:\WINDOWS\srchasst
2009-09-06 16:22:02 ----D---- C:\WINDOWS\PeerNet
2009-09-06 16:21:59 ----D---- C:\WINDOWS\msagent
2009-09-06 16:21:52 ----D---- C:\WINDOWS\ime
2009-09-06 16:21:14 ----D---- C:\WINDOWS\system32\inetsrv
2009-09-06 16:20:24 ----D---- C:\WINDOWS\Network Diagnostic
2009-09-06 16:20:24 ----D---- C:\WINDOWS\L2Schemas
2009-09-06 16:20:24 ----D---- C:\WINDOWS\ehome
2009-09-06 16:13:20 ----D---- C:\Program Files\Apple Software Update
2009-09-02 08:14:59 ----D---- C:\Program Files\Fichiers communs\Nero
2009-09-02 08:12:55 ----D---- C:\Documents and Settings\All Users.WINDOWS\Application Data\Nero
2009-09-02 08:03:04 ----D---- C:\Program Files\Nero
2009-09-02 07:58:36 ----D---- C:\Program Files\QuickTime
2009-08-28 08:37:51 ----A---- C:\WINDOWS\OEWABLog.txt
2009-08-28 08:36:51 ----A---- C:\WINDOWS\setuplog.txt
2009-08-27 18:45:11 ----D---- C:\WINDOWS\system32\fr-fr
2009-08-27 18:45:10 ----D---- C:\WINDOWS\system32\fr
2009-08-27 18:40:42 ----D---- C:\WINDOWS\system32\ReinstallBackups
2009-08-27 09:02:05 ----D---- C:\Documents and Settings\USER\Application Data\Adobe
2009-08-25 12:46:44 ----D---- C:\Program Files\Adobe
2009-08-22 21:21:03 ----D---- C:\Documents and Settings\USER\Application Data\Nero
2009-08-21 09:24:50 ----D---- C:\Program Files\Java
2009-08-20 09:16:49 ----D---- C:\WINDOWS\system32\config
2009-08-20 09:16:42 ----D---- C:\WINDOWS\wbem
2009-08-20 09:16:35 ----D---- C:\WINDOWS\Media
2009-08-20 09:09:14 ----D---- C:\WINDOWS\Debug
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R1 Aavmker4;avast! Asynchronous Virus Monitor; C:\WINDOWS\system32\drivers\Aavmker4.sys [2009-08-17 26944]
R1 aswSP;avast! Self Protection; C:\WINDOWS\system32\drivers\aswSP.sys [2009-08-17 114768]
R1 aswTdi;avast! Network Shield Support; C:\WINDOWS\system32\drivers\aswTdi.sys [2009-08-17 51376]
R1 intelppm;Pilote de processeur Intel; C:\WINDOWS\system32\DRIVERS\intelppm.sys [2004-08-03 40320]
R1 KLIF;Kaspersky Lab Driver; C:\WINDOWS\system32\DRIVERS\klif.sys [2009-07-21 303248]
R1 WS2IFSL;Environnement de prise en charge de Fournisseur de services non-IFS Windows Sockets 2.0; C:\WINDOWS\System32\drivers\ws2ifsl.sys [2001-08-28 12032]
R2 aswFsBlk;aswFsBlk; C:\WINDOWS\system32\DRIVERS\aswFsBlk.sys [2009-08-17 20560]
R2 aswMon2;avast! Standard Shield Support; C:\WINDOWS\system32\drivers\aswMon2.sys [2009-08-17 94160]
R2 ISWKL;ZoneAlarm Toolbar ISWKL; \??\C:\Program Files\CheckPoint\ZAForceField\ISWKL.sys []
R2 NwlnkIpx;Protocole de transport compatible NWLink IPX/SPX/NetBIOS; C:\WINDOWS\system32\DRIVERS\nwlnkipx.sys [2004-08-03 88448]
R2 NwlnkNb;NetBIOS NWLink; C:\WINDOWS\system32\DRIVERS\nwlnknb.sys [2001-08-28 63232]
R2 NwlnkSpx;Protocole NWLink SPX/SPXII; C:\WINDOWS\system32\DRIVERS\nwlnkspx.sys [2001-08-28 55936]
R3 aswRdr;aswRdr; C:\WINDOWS\system32\drivers\aswRdr.sys [2009-08-17 23152]
R3 HDAudBus;Microsoft UAA Bus Driver for High Definition Audio; C:\WINDOWS\system32\DRIVERS\HDAudBus.sys [2005-01-07 138752]
R3 hidusb;Pilote de classe HID Microsoft; C:\WINDOWS\system32\DRIVERS\hidusb.sys [2001-08-28 9600]
R3 ialm;ialm; C:\WINDOWS\system32\DRIVERS\igxpmp32.sys [2007-12-19 5854688]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\WINDOWS\system32\drivers\RtkHDAud.sys [2008-01-30 4725760]
R3 mouhid;Pilote HID de souris; C:\WINDOWS\system32\DRIVERS\mouhid.sys [2001-08-28 12288]
R3 RTLE8023xp;Realtek 10/100/1000 PCI-E NIC Family NDIS XP Driver; C:\WINDOWS\system32\DRIVERS\Rtenicxp.sys [2008-01-03 105856]
R3 usbehci;Pilote miniport de contrôleur d'hôte amélioré Microsoft USB 2.0; C:\WINDOWS\system32\DRIVERS\usbehci.sys [2004-08-03 26624]
R3 usbhub;Pilote de concentrateur standard USB Microsoft; C:\WINDOWS\system32\DRIVERS\usbhub.sys [2004-08-03 57600]
R3 usbprint;Classe d'imprimantes USB Microsoft; C:\WINDOWS\system32\DRIVERS\usbprint.sys [2004-08-03 25856]
R3 usbuhci;Pilote miniport de contrôleur hôte universel USB Microsoft; C:\WINDOWS\system32\DRIVERS\usbuhci.sys [2004-08-03 20480]
R3 vsdatant;vsdatant; C:\WINDOWS\System32\vsdatant.sys [2009-08-26 483208]
S3 GMSIPCI;GMSIPCI; \??\E:\INSTALL\GMSIPCI.SYS []
S3 MSICPL;MSICPL; \??\E:\install4\MSICPL.sys []
S3 nm;Pilote du Moniteur réseau; C:\WINDOWS\system32\DRIVERS\NMnt.sys [2004-08-03 40320]
S3 NPF;NetGroup Packet Filter Driver; C:\WINDOWS\system32\drivers\npf.sys [2007-11-06 34064]
S3 NTACCESS;NTACCESS; \??\E:\NTACCESS.sys []
S3 SetupNTGLM7X;SetupNTGLM7X; \??\E:\NTGLM7X.sys []
S3 usbccgp;Pilote parent générique USB Microsoft; C:\WINDOWS\system32\DRIVERS\usbccgp.sys [2004-08-03 31616]
S3 usbscan;Pilote de scanneur USB; C:\WINDOWS\system32\DRIVERS\usbscan.sys [2004-08-03 15104]
S3 USBSTOR;Pilote de stockage de masse USB; C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS [2004-08-03 26496]
S3 WpdUsb;WpdUsb; C:\WINDOWS\System32\Drivers\wpdusb.sys [2006-08-24 38656]
S4 IntelIde;IntelIde; C:\WINDOWS\system32\drivers\IntelIde.sys []
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 aswUpdSv;avast! iAVS4 Control Service; C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe [2009-08-17 18752]
R2 avast! Antivirus;avast! Antivirus; C:\Program Files\Alwil Software\Avast4\ashServ.exe [2009-08-17 138680]
R2 Bonjour Service;##Id_String1.6844F930_1628_4223_B5CC_5BB94B879762##; C:\Program Files\Bonjour\mDNSResponder.exe [2006-02-28 229376]
R2 Diskeeper;Diskeeper; C:\Program Files\Diskeeper Corporation\Diskeeper\DkService.exe [2008-11-22 1333016]
R2 Findbasic Service;Findbasic Service; C:\Documents and Settings\All Users.WINDOWS\Application Data\Findbasic\findbasic121.exe [2009-09-02 54776]
R2 IswSvc;ZoneAlarm Toolbar IswSvc; C:\Program Files\CheckPoint\ZAForceField\IswSvc.exe [2009-08-26 435568]
R2 JavaQuickStarterService;Java Quick Starter; C:\Program Files\Java\jre6\bin\jqs.exe [2009-08-21 153376]
R2 Pml Driver HPZ12;Pml Driver HPZ12; C:\WINDOWS\system32\HPZipm12.exe [2006-03-03 69632]
R2 YahooAUService;Yahoo! Updater; C:\Program Files\Yahoo!\SoftwareUpdate\YahooAUService.exe [2008-11-09 602392]
R3 avast! Mail Scanner;avast! Mail Scanner; C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe [2009-08-17 254040]
S2 Nero BackItUp Scheduler 4.0;Nero BackItUp Scheduler 4.0; C:\Program Files\Fichiers communs\Nero\Nero BackItUp 4\NBService.exe []
S3 avast! Web Scanner;avast! Web Scanner; C:\Program Files\Alwil Software\Avast4\ashWebSv.exe [2009-08-17 352920]
S3 odserv;Microsoft Office Diagnostics Service; C:\Program Files\Fichiers communs\Microsoft Shared\OFFICE12\ODSERV.EXE [2006-10-26 441136]
S3 ose;Office Source Engine; C:\Program Files\Fichiers communs\Microsoft Shared\Source Engine\OSE.EXE [2006-10-26 145184]
-----------------EOF-----------------
Run by USER at 2009-09-18 14:13:45
Microsoft Windows XP Professionnel Service Pack 2
System drive C: has 18 GB (45%) free of 40 GB
Total RAM: 1527 MB (45% free)
Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 14:14:19, on 18/09/2009
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v8.00 (8.00.6001.18702)
Boot mode: Normal
Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
C:\Program Files\CheckPoint\ZAForceField\IswSvc.exe
C:\Program Files\Alwil Software\Avast4\ashServ.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\CheckPoint\ZAForceField\ForceField.exe
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\RTHDCPL.EXE
C:\WINDOWS\system32\igfxtray.exe
C:\WINDOWS\system32\hkcmd.exe
C:\WINDOWS\system32\igfxpers.exe
C:\Program Files\HP\HP Software Update\HPWuSchd2.exe
C:\Program Files\Hewlett-Packard\OrderReminder\OrderReminder.exe
C:\Program Files\Java\jre6\bin\jusched.exe
C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
C:\WINDOWS\system32\igfxsrvc.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe
C:\Program Files\Bonjour\mDNSResponder.exe
C:\Documents and Settings\All Users.WINDOWS\Application Data\Findbasic\findbasic121.exe
C:\Program Files\Java\jre6\bin\jqs.exe
C:\WINDOWS\system32\HPZipm12.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Yahoo!\SoftwareUpdate\YahooAUService.exe
C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
C:\Program Files\Findbasic\findbasic.exe
C:\WINDOWS\system32\wuauclt.exe
C:\Program Files\CCP Server 5\ccpsrv.exe
C:\Documents and Settings\USER\Local Settings\Application Data\Google\Chrome\Application\chrome.exe
C:\Documents and Settings\USER\Local Settings\Application Data\Google\Chrome\Application\chrome.exe
C:\Program Files\Windows Media Player\wmplayer.exe
C:\Documents and Settings\USER\Local Settings\Application Data\Google\Chrome\Application\chrome.exe
C:\Documents and Settings\USER\Local Settings\Application Data\Google\Chrome\Application\chrome.exe
C:\Documents and Settings\USER\Local Settings\Application Data\Google\Chrome\Application\chrome.exe
C:\Program Files\Diskeeper Corporation\Diskeeper\DkService.exe
C:\Program Files\Internet Download Manager\IDMan.exe
C:\WINDOWS\system32\NOTEPAD.EXE
C:\Documents and Settings\USER\Local Settings\Application Data\Google\Chrome\Application\chrome.exe
C:\Documents and Settings\USER\Mes documents\Downloads\Programs\RSIT.exe
C:\Program Files\trend micro\USER.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = about:blank
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.google.fr/?gws_rd=ssl
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = https://www.msn.com/fr-fr/?ocid=iehp
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Bar = about:blank
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.msn.com/fr-fr/?ocid=iehp
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Favoris
R3 - URLSearchHook: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\PROGRA~1\Yahoo!\Companion\Installs\cpn0\yt.dll
O2 - BHO: IDM Helper - {0055C089-8582-441B-A0BF-17B458C2A3A8} - C:\Program Files\Internet Download Manager\IDMIECC.dll
O2 - BHO: &Yahoo! Toolbar Helper - {02478D38-C3F9-4efb-9B51-7695ECA05670} - C:\PROGRA~1\Yahoo!\Companion\Installs\cpn0\yt.dll
O2 - BHO: AskBar BHO - {201f27d4-3704-41d6-89c1-aa35e39143ed} - C:\Program Files\AskBarDis\bar\bin\askBar.dll
O2 - BHO: Spybot-S&D IE Protection - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O2 - BHO: ZoneAlarm Toolbar Registrar - {8A4A36C2-0535-4D2C-BD3D-496CB7EED6E3} - C:\Program Files\CheckPoint\ZAForceField\TrustChecker\bin\TrustCheckerIEPlugin.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll
O2 - BHO: JQSIEStartDetectorImpl - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll
O2 - BHO: SingleInstance Class - {FDAD4DA1-61A2-4FD8-9C17-86F7AC245081} - C:\PROGRA~1\Yahoo!\Companion\Installs\cpn0\YTSingleInstance.dll
O3 - Toolbar: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\PROGRA~1\Yahoo!\Companion\Installs\cpn0\yt.dll
O3 - Toolbar: Systran40premi.IEPlugIn - {CFB25594-4D5F-11D6-AB7B-00B0D094B576} - C:\Program Files\Systran\4_0\Premium\IEPlugIn.dll
O3 - Toolbar: (no name) - {CCC7A320-B3CA-4199-B1A6-9F516DD69829} - (no file)
O3 - Toolbar: Foxit Toolbar - {3041d03e-fd4b-44e0-b742-2d9b88305f98} - C:\Program Files\AskBarDis\bar\bin\askBar.dll
O3 - Toolbar: ZoneAlarm Toolbar - {EE2AC4E5-B0B0-4EC6-88A9-BCA1A32AB107} - C:\Program Files\CheckPoint\ZAForceField\TrustChecker\bin\TrustCheckerIEPlugin.dll
O3 - Toolbar: (no name) - {9F849A78-A3E0-4ECA-BC6A-9B7193B28CE1} - (no file)
O4 - HKLM\..\Run: [RTHDCPL] RTHDCPL.EXE
O4 - HKLM\..\Run: [Alcmtr] ALCMTR.EXE
O4 - HKLM\..\Run: [IgfxTray] C:\WINDOWS\system32\igfxtray.exe
O4 - HKLM\..\Run: [HotKeysCmds] C:\WINDOWS\system32\hkcmd.exe
O4 - HKLM\..\Run: [Persistence] C:\WINDOWS\system32\igfxpers.exe
O4 - HKLM\..\Run: [HP Software Update] C:\Program Files\HP\HP Software Update\HPWuSchd2.exe
O4 - HKLM\..\Run: [OrderReminder] C:\Program Files\Hewlett-Packard\OrderReminder\OrderReminder.exe
O4 - HKLM\..\Run: [NBKeyScan] "C:\Program Files\Nero\Nero8\Nero BackItUp\NBKeyScan.exe"
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre6\bin\jusched.exe"
O4 - HKLM\..\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
O4 - HKLM\..\Run: [ZoneAlarm Client] "C:\Program Files\Zone Labs\ZoneAlarm\zlclient.exe"
O4 - HKLM\..\Run: [ISW] "C:\Program Files\CheckPoint\ZAForceField\ForceField.exe" /icon="hidden"
O4 - HKLM\..\Run: [Ad-Watch] C:\Program Files\Lavasoft\Ad-Aware\AAWTray.exe
O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}] "C:\Program Files\Fichiers communs\Nero\Lib\NMBgMonitor.exe"
O4 - HKCU\..\Run: [ExplorerClient] "C:\Program Files\Softvision\Softvision Explorer 3\ExplorerClient.exe" AUTO
O4 - HKCU\..\Run: [OpenDNS Updater] "C:\Program Files\OpenDNS Updater\OpenDNSUpdater.exe" /autostart
O4 - HKCU\..\Run: [IDMan] C:\Program Files\Internet Download Manager\IDMan.exe /onboot
O4 - HKCU\..\Run: [SpybotSD TeaTimer] C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE RÉSEAU')
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
O6 - HKCU\Software\Policies\Microsoft\Internet Explorer\Toolbars\Restrictions present
O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office12\EXCEL.EXE/3000
O8 - Extra context menu item: Télécharger avec IDM - C:\Program Files\Internet Download Manager\IEExt.htm
O8 - Extra context menu item: Télécharger le contenu de video FLV avec IDM - C:\Program Files\Internet Download Manager\IEGetVL.htm
O8 - Extra context menu item: Télécharger tous les liens avec IDM - C:\Program Files\Internet Download Manager\IEGetAll.htm
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\Office12\REFIEBAR.DLL
O9 - Extra button: (no name) - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O9 - Extra 'Tools' menuitem: Spybot - Search & Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O10 - Unknown file in Winsock LSP: c:\windows\system32\nwprovau.dll
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab
O16 - DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} - http://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab
O17 - HKLM\System\CCS\Services\Tcpip\..\{615ACE12-1FE2-4CFD-A43A-E76359EF4D39}: NameServer = 208.67.222.222,208.67.220.220
O17 - HKLM\System\CS1\Services\Tcpip\..\{615ACE12-1FE2-4CFD-A43A-E76359EF4D39}: NameServer = 208.67.222.222,208.67.220.220
O17 - HKLM\System\CS4\Services\Tcpip\..\{615ACE12-1FE2-4CFD-A43A-E76359EF4D39}: NameServer = 208.67.222.222,208.67.220.220
O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - ALWIL Software - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
O23 - Service: avast! Antivirus - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashServ.exe
O23 - Service: avast! Mail Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
O23 - Service: avast! Web Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
O23 - Service: ##Id_String1.6844F930_1628_4223_B5CC_5BB94B879762## (Bonjour Service) - Apple Computer, Inc. - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: Diskeeper - Diskeeper Corporation - C:\Program Files\Diskeeper Corporation\Diskeeper\DkService.exe
O23 - Service: Findbasic Service - Unknown owner - C:\Documents and Settings\All Users.WINDOWS\Application Data\Findbasic\findbasic121.exe
O23 - Service: ZoneAlarm Toolbar IswSvc (IswSvc) - Check Point Software Technologies - C:\Program Files\CheckPoint\ZAForceField\IswSvc.exe
O23 - Service: Java Quick Starter (JavaQuickStarterService) - Sun Microsystems, Inc. - C:\Program Files\Java\jre6\bin\jqs.exe
O23 - Service: Nero BackItUp Scheduler 4.0 - Unknown owner - C:\Program Files\Fichiers communs\Nero\Nero BackItUp 4\NBService.exe (file missing)
O23 - Service: Pml Driver HPZ12 - HP - C:\WINDOWS\system32\HPZipm12.exe
O23 - Service: Yahoo! Updater (YahooAUService) - Yahoo! Inc. - C:\Program Files\Yahoo!\SoftwareUpdate\YahooAUService.exe
--
End of file - 10323 bytes
======Scheduled tasks folder======
C:\WINDOWS\tasks\User_Feed_Synchronization-{FB1EE39B-E18B-43D9-A66D-06A2865C2BCD}.job
C:\WINDOWS\tasks\WGASetup.job
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{0055C089-8582-441B-A0BF-17B458C2A3A8}]
IDMIEHlprObj Class - C:\Program Files\Internet Download Manager\IDMIECC.dll [2009-09-09 173488]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{02478D38-C3F9-4efb-9B51-7695ECA05670}]
&Yahoo! Toolbar Helper - C:\PROGRA~1\Yahoo!\Companion\Installs\cpn0\yt.dll [2009-03-13 908528]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{201f27d4-3704-41d6-89c1-aa35e39143ed}]
AskBar BHO - C:\Program Files\AskBarDis\bar\bin\askBar.dll [2008-11-18 333192]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{53707962-6F74-2D53-2644-206D7942484F}]
Spybot-S&D IE Protection - C:\PROGRA~1\SPYBOT~1\SDHelper.dll [2009-01-26 1879896]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8A4A36C2-0535-4D2C-BD3D-496CB7EED6E3}]
ZoneAlarm Toolbar Registrar - C:\Program Files\CheckPoint\ZAForceField\TrustChecker\bin\TrustCheckerIEPlugin.dll [2009-08-26 578928]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre6\bin\jp2ssv.dll [2009-08-21 41760]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E7E6F031-17CE-4C07-BC86-EABFE594F69C}]
JQSIEStartDetectorImpl Class - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll [2009-08-21 73728]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{FDAD4DA1-61A2-4FD8-9C17-86F7AC245081}]
SingleInstance Class - C:\PROGRA~1\Yahoo!\Companion\Installs\cpn0\YTSingleInstance.dll [2009-03-13 165616]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{EF99BD32-C1FB-11D2-892F-0090271D4F88} - Yahoo! Toolbar - C:\PROGRA~1\Yahoo!\Companion\Installs\cpn0\yt.dll [2009-03-13 908528]
{CFB25594-4D5F-11D6-AB7B-00B0D094B576} - Systran40premi.IEPlugIn - C:\Program Files\Systran\4_0\Premium\IEPlugIn.dll [2002-04-12 65536]
{CCC7A320-B3CA-4199-B1A6-9F516DD69829}
{3041d03e-fd4b-44e0-b742-2d9b88305f98} - Foxit Toolbar - C:\Program Files\AskBarDis\bar\bin\askBar.dll [2008-11-18 333192]
{EE2AC4E5-B0B0-4EC6-88A9-BCA1A32AB107} - ZoneAlarm Toolbar - C:\Program Files\CheckPoint\ZAForceField\TrustChecker\bin\TrustCheckerIEPlugin.dll [2009-08-26 578928]
{9F849A78-A3E0-4ECA-BC6A-9B7193B28CE1}
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"RTHDCPL"=C:\WINDOWS\RTHDCPL.EXE [2008-01-29 16859648]
"Alcmtr"=C:\WINDOWS\ALCMTR.EXE [2005-05-03 69632]
"IgfxTray"=C:\WINDOWS\system32\igfxtray.exe [2007-12-19 135168]
"HotKeysCmds"=C:\WINDOWS\system32\hkcmd.exe [2007-12-19 159744]
"Persistence"=C:\WINDOWS\system32\igfxpers.exe [2007-12-19 131072]
"HP Software Update"=C:\Program Files\HP\HP Software Update\HPWuSchd2.exe [2006-02-19 49152]
"OrderReminder"=C:\Program Files\Hewlett-Packard\OrderReminder\OrderReminder.exe [2006-07-30 98304]
"NBKeyScan"=C:\Program Files\Nero\Nero8\Nero BackItUp\NBKeyScan.exe []
"SunJavaUpdateSched"=C:\Program Files\Java\jre6\bin\jusched.exe [2009-08-21 149280]
"avast!"=C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe [2009-08-17 81000]
"ZoneAlarm Client"=C:\Program Files\Zone Labs\ZoneAlarm\zlclient.exe [2009-08-26 1011080]
"ISW"=C:\Program Files\CheckPoint\ZAForceField\ForceField.exe [2009-08-26 722288]
"Ad-Watch"=C:\Program Files\Lavasoft\Ad-Aware\AAWTray.exe []
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"=C:\WINDOWS\system32\ctfmon.exe [2004-08-03 15360]
"BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}"=C:\Program Files\Fichiers communs\Nero\Lib\NMBgMonitor.exe []
"ExplorerClient"=C:\Program Files\Softvision\Softvision Explorer 3\ExplorerClient.exe AUTO []
"OpenDNS Updater"=C:\Program Files\OpenDNS Updater\OpenDNSUpdater.exe /autostart []
"IDMan"=C:\Program Files\Internet Download Manager\IDMan.exe [2009-09-09 3118512]
"SpybotSD TeaTimer"=C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe [2009-03-05 2260480]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\igfxcui]
C:\WINDOWS\system32\igfxdev.dll [2007-12-19 208896]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\WINDOWS\system32\WPDShServiceObj.dll [2006-08-24 133120]
UPnPMonitor - {e57ce738-33e8-4c51-8354-bb4de9d215d1} - C:\WINDOWS\system32\upnpui.dll [2004-08-03 240128]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Lsa]
"notification packages"=
scecli
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Lavasoft Ad-Aware Service]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Lavasoft Ad-Aware Service]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\nm]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\nm.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\vsmon]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"DisableTaskMgr"=0
"DisableChangePassword"=0
"DisableLockWorkstation"=0
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NofolderOptions"=0
"NoFind"=0
"NoRun"=0
"SpecifyDefaultButtons"=0
"NoBandCustomize"=0
"NoToolbarCustomize"=0
"NoFileUrl"=0
"NoAddPrinter"=0
"NoDeletePrinter"=0
"NoViewContextMenu"=0
"NoDrives"=0
"NoViewOnDrive"=0
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=
"NoFolderOptions"=
"HonorAutoRunSetting"=
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"C:\Program Files\CCP Server 5\ccpsrv.exe"="C:\Program Files\CCP Server 5\ccpsrv.exe:*:Enabled:CyberCafePro Main Control Station"
"C:\Program Files\Microsoft Office\Office12\OUTLOOK.EXE"="C:\Program Files\Microsoft Office\Office12\OUTLOOK.EXE:*:Enabled:Microsoft Office Outlook"
"C:\Program Files\Yahoo!\Messenger\YahooMessenger.exe"="C:\Program Files\Yahoo!\Messenger\YahooMessenger.exe:*:Enabled:Yahoo! Messenger"
"F:\driver\usb\usb_driver.exe"="F:\driver\usb\usb_driver.exe:*:Enabled:microssofts"
"C:\Program Files\TVUPlayer\TVUPlayer.exe"="C:\Program Files\TVUPlayer\TVUPlayer.exe:*:Enabled:TVUPlayer Component"
"C:\Program Files\VoipBuster.com\VoipBuster\VoipBuster.exe"="C:\Program Files\VoipBuster.com\VoipBuster\VoipBuster.exe:*:Enabled:VoipBuster"
"C:\Program Files\Bonjour\mDNSResponder.exe"="C:\Program Files\Bonjour\mDNSResponder.exe:*:Enabled:Bonjour"
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{0c85d223-a2fb-11de-81d3-0019dbe51d6f}]
shell\AutoRun\command - F:\DRIVER///vozacka.exe
shell\explore\command - F:\DRIVER//vozacka.exe
shell\open\command - F:\DRIVER//vozacka.exe
[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{27453fd5-9eb5-11de-81c2-0019dbe51d6f}]
shell\AutoRun\command - C:\WINDOWS\system32\RunDLL32.EXE Shell32.DLL,ShellExec_RunDLL log.exe
shell\Ouvrir\command - F:\log.exe
[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{2a478fe9-8274-11de-8174-0019dbe51d6f}]
shell\AutoRun\command - C:\WINDOWS\system32\RunDLL32.EXE Shell32.DLL,ShellExec_RunDLL log.exe
shell\Ouvrir\command - F:\log.exe
[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{2b171b27-a2a1-11de-81d2-0019dbe51d6f}]
shell\AutoRun\command - F:\LaunchU3.exe -a
[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{2b171b28-a2a1-11de-81d2-0019dbe51d6f}]
shell\AutoRun\command - G:\ZNAM\potom.exe
shell\explore\command - G:\.////ZNAM/\\\\potom.exe
shell\open\command - G:\ZNAM/////\\\\potom.exe
[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{31be8492-8403-11de-817a-0019dbe51d6f}]
shell\AutoRun\command - F:\lcw.exe
shell\open\command - F:\lcw.exe
[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{31be8496-8403-11de-817a-0019dbe51d6f}]
shell\AutoRun\command - F:\driver\usb\usb_driver.exe
shell\open\command - F:\driver\usb\usb_driver.exe
[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{31be8498-8403-11de-817a-0019dbe51d6f}]
shell\AutoRun\command - F:\driver\usb\usb_driver.exe
shell\open\command - F:\driver\usb\usb_driver.exe
[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{436dd04a-a1da-11de-81d0-0019dbe51d6f}]
shell\AutoRun\command - F:\LaunchU3.exe -a
[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{44146e31-869a-11de-817f-0019dbe51d6f}]
shell\AutoRun\command - F:\LaunchU3.exe -a
[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{57507f0e-8751-11de-8182-0019dbe51d6f}]
shell\AutoRun\command - F:\driver\usb\usb_driver.exe
shell\open\command - F:\driver\usb\usb_driver.exe
[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{64961e19-8264-11de-816f-0019dbe51d6f}]
shell\AutoRun\command - F:\d1vmq.exe
shell\open\command - F:\d1vmq.exe
[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{65ff0d21-93ae-11de-81a7-0019dbe51d6f}]
shell\AutoRun\command - INFO\solar.exe
shell\explore\command - .////INFO/\\\\solar.exe
shell\open\command - INFO/////\\\\solar.exe
[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{7bac0931-8ca2-11de-8191-0019dbe51d6f}]
shell\AutoRun\command - F:\CRNI\vrag.exe
shell\explore\command - F:\.////CRNI/\\\\vrag.exe
shell\open\command - F:\CRNI/////\\\\vrag.exe
[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{abe0800b-9b90-11de-81b5-0019dbe51d6f}]
shell\AutoRun\command - C:\WINDOWS\system32\RunDLL32.EXE Shell32.DLL,ShellExec_RunDLL Wscript.exe /e:vbs winfile.jpg
[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{abe08010-9b90-11de-81b5-0019dbe51d6f}]
shell\AutoRun\command - zPharaoh.exe
shell\explore\command - zPharaoh.exe
shell\open\command - zPharaoh.exe
[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{c0b9d97e-9620-11de-81aa-0019dbe51d6f}]
shell\AutoRun\command - F:\ReCYCleR\sE.exe
shell\OpEn\command - F:\ReCYCleR\sE.exe
[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{c0b9d980-9620-11de-81aa-0019dbe51d6f}]
shell\AutoRun\command - F:\windows\usbv.exe
shell\open\command - F:\windows\usbv.exe
[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{ccc71e66-a110-11de-81cb-0019dbe51d6f}]
shell\AutoRun\command - F:\DATA\FILES\BEAST.exe
shell\open\command - F:\DATA\FILES\BEAST.exe
[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{d586a692-87ee-11de-8183-0019dbe51d6f}]
shell\AutoRun\command - F:\driver\usb\usb_driver.exe
shell\open\command - F:\driver\usb\usb_driver.exe
[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{d586a695-87ee-11de-8183-0019dbe51d6f}]
shell\AutoRun\command - F:\driver\usb\usb_driver.exe
shell\open\command - F:\driver\usb\usb_driver.exe
[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{d586a696-87ee-11de-8183-0019dbe51d6f}]
shell\AutoRun\command - F:\driver\usb\usb_driver.exe
shell\open\command - F:\driver\usb\usb_driver.exe
[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{dc4eac24-88d4-11de-8189-0019dbe51d6f}]
shell\AutoRun\command - F:\driver\usb\usb_driver.exe
shell\open\command - F:\driver\usb\usb_driver.exe
[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{dd3baf0c-9a0b-11de-81b1-0019dbe51d6f}]
shell\AutoRun\command - F:\lcw.exe
shell\open\command - F:\lcw.exe
[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{eecfe946-96d3-11de-81ab-0019dbe51d6f}]
shell\AutoRun\command - F:\LaunchU3.exe -a
[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{f2bb578f-85ba-11de-817d-0019dbe51d6f}]
shell\AutoRun\command - F:\LaunchU3.exe -a
[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{f2bb5794-85ba-11de-817d-0019dbe51d6f}]
shell\AutoRun\command - F:\NEBO\zeljko.exe
shell\explore\command - F:\.////NEBO/\\\\zeljko.exe
shell\open\command - F:\NEBO/////\\\\zeljko.exe
[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{f2bb5795-85ba-11de-817d-0019dbe51d6f}]
shell\AutoRun\command - F:\driver\usb\usb_driver.exe
shell\open\command - F:\driver\usb\usb_driver.exe
======List of files/folders created in the last 1 months======
2009-09-18 14:07:13 ----D---- C:\Program Files\trend micro
2009-09-18 14:07:12 ----D---- C:\rsit
2009-09-18 12:24:51 ----D---- C:\Program Files\Fichiers communs\Diskeeper Corporation
2009-09-18 12:24:50 ----D---- C:\Documents and Settings\All Users.WINDOWS\Application Data\Diskeeper Corporation
2009-09-18 12:24:47 ----D---- C:\Program Files\Diskeeper Corporation
2009-09-16 19:44:27 ----D---- C:\WINDOWS\Minidump
2009-09-16 19:42:13 ----D---- C:\Documents and Settings\All Users.WINDOWS\Application Data\Lavasoft
2009-09-16 19:39:26 ----D---- C:\Program Files\Spybot - Search & Destroy
2009-09-16 19:39:26 ----D---- C:\Documents and Settings\All Users.WINDOWS\Application Data\Spybot - Search & Destroy
2009-09-16 09:14:42 ----D---- C:\Documents and Settings\USER\Application Data\Xilisoft Corporation
2009-09-16 08:45:40 ----D---- C:\Documents and Settings\USER\Application Data\IDM
2009-09-16 08:45:40 ----D---- C:\Documents and Settings\USER\Application Data\DMCache
2009-09-16 08:45:34 ----D---- C:\Program Files\Internet Download Manager
2009-09-14 20:10:10 ----D---- C:\Documents and Settings\USER\Application Data\AVS4YOU
2009-09-14 20:10:09 ----D---- C:\Documents and Settings\All Users.WINDOWS\Application Data\AVS4YOU
2009-09-14 20:08:44 ----D---- C:\Program Files\Fichiers communs\AVSMedia
2009-09-14 20:08:06 ----HDC---- C:\WINDOWS\$NtUninstallWMFDist11$
2009-09-14 20:06:44 ----A---- C:\WINDOWS\system32\msvcr70.dll
2009-09-14 20:06:44 ----A---- C:\WINDOWS\system32\msvcp70.dll
2009-09-14 20:06:44 ----A---- C:\WINDOWS\system32\mfc70.dll
2009-09-14 20:06:44 ----A---- C:\WINDOWS\system32\GdiPlus.dll
2009-09-14 20:06:43 ----D---- C:\Program Files\AVS4YOU
2009-09-14 20:06:43 ----A---- C:\WINDOWS\system32\msxml3a.dll
2009-09-13 19:03:15 ----D---- C:\Documents and Settings\USER\Application Data\#ISW.FS#
2009-09-12 20:05:31 ----D---- C:\Documents and Settings\USER\Application Data\OpenDNS Updater
2009-09-12 12:14:59 ----D---- C:\Documents and Settings\All Users.WINDOWS\Application Data\Kaspersky SDK
2009-09-12 11:56:12 ----D---- C:\Documents and Settings\USER\Application Data\CheckPoint
2009-09-12 11:55:48 ----D---- C:\Documents and Settings\USER\Application Data\pdfforge
2009-09-12 11:55:17 ----D---- C:\Program Files\CheckPoint
2009-09-12 11:55:11 ----A---- C:\WINDOWS\zllsputility.exe
2009-09-12 11:54:37 ----A---- C:\WINDOWS\system32\vsregexp.dll
2009-09-12 11:54:35 ----A---- C:\WINDOWS\system32\zlcommdb.dll
2009-09-12 11:54:35 ----A---- C:\WINDOWS\system32\zlcomm.dll
2009-09-12 11:54:28 ----A---- C:\WINDOWS\system32\vswmi.dll
2009-09-12 11:54:27 ----D---- C:\WINDOWS\system32\ZoneLabs
2009-09-12 11:54:27 ----A---- C:\WINDOWS\system32\zpeng25.dll
2009-09-12 11:54:27 ----A---- C:\WINDOWS\system32\vsxml.dll
2009-09-12 11:54:27 ----A---- C:\WINDOWS\system32\vspubapi.dll
2009-09-12 11:54:27 ----A---- C:\WINDOWS\system32\vsmonapi.dll
2009-09-12 11:53:36 ----A---- C:\WINDOWS\system32\vsutil.dll
2009-09-12 11:53:36 ----A---- C:\WINDOWS\system32\vsinit.dll
2009-09-12 11:53:36 ----A---- C:\WINDOWS\system32\vsdata.dll
2009-09-12 11:48:37 ----HDC---- C:\WINDOWS\$NtUninstallKB943232$
2009-09-12 11:48:13 ----D---- C:\Program Files\Zone Labs
2009-09-12 11:48:00 ----D---- C:\WINDOWS\Internet Logs
2009-09-11 19:32:51 ----A---- C:\WINDOWS\system32\aswBoot.exe
2009-09-10 19:32:07 ----D---- C:\Program Files\Findbasic
2009-09-10 19:32:07 ----D---- C:\Documents and Settings\All Users.WINDOWS\Application Data\Findbasic
2009-09-10 19:32:04 ----D---- C:\Documents and Settings\USER\Application Data\DealAssistant
2009-09-10 19:32:04 ----A---- C:\WINDOWS\system32\2e78.dll
2009-09-10 09:19:51 ----D---- C:\Program Files\AskBarDis
2009-09-10 08:37:05 ----HDC---- C:\WINDOWS\$NtUninstallKB956844$
2009-09-10 08:36:59 ----HDC---- C:\WINDOWS\$NtUninstallKB968816_WM9$
2009-09-09 14:55:30 ----D---- C:\Program Files\AVG
2009-09-09 09:52:58 ----A---- C:\WINDOWS\system32\idmmbc.dll
2009-09-08 14:57:48 ----D---- C:\WINDOWS\Sun
2009-09-08 09:05:06 ----D---- C:\Program Files\Foxit Software
2009-09-08 09:05:06 ----D---- C:\Documents and Settings\USER\Application Data\Foxit
2009-09-07 20:45:16 ----D---- C:\Documents and Settings\USER\Application Data\tazebama
2009-09-06 16:44:54 ----D---- C:\WINDOWS\system32\CatRoot_bak
2009-09-06 16:41:04 ----D---- C:\WINDOWS\Prefetch
2009-09-04 08:49:25 ----D---- C:\Program Files\Fichiers communs\DVDVideoSoft
2009-09-03 11:51:54 ----HD---- C:\WINDOWS\PIF
2009-08-29 08:55:23 ----HDC---- C:\WINDOWS\$NtUninstallKB951978$
2009-08-29 08:55:16 ----HDC---- C:\WINDOWS\$NtUninstallKB956744$
2009-08-29 08:55:07 ----HDC---- C:\WINDOWS\$NtUninstallKB973540_WM9$
2009-08-29 08:54:57 ----HDC---- C:\WINDOWS\$NtUninstallKB954459$
2009-08-27 20:34:03 ----D---- C:\Documents and Settings\All Users.WINDOWS\Application Data\Windows Genuine Advantage
2009-08-27 20:04:23 ----A---- C:\WINDOWS\system32\wmpns.dll
2009-08-27 18:45:09 ----D---- C:\WINDOWS\system32\bits
2009-08-27 18:39:13 ----A---- C:\WINDOWS\system32\qmgr.dll
2009-08-27 18:39:10 ----A---- C:\WINDOWS\system32\ntbackup.exe
2009-08-27 18:38:46 ----A---- C:\WINDOWS\system32\magnify.exe
2009-08-27 18:38:45 ----A---- C:\WINDOWS\system32\mobsync.exe
2009-08-27 18:38:42 ----A---- C:\WINDOWS\system32\mspaint.exe
2009-08-27 18:38:40 ----A---- C:\WINDOWS\system32\notepad.exe
2009-08-27 18:38:39 ----A---- C:\WINDOWS\system32\odbcad32.exe
2009-08-27 18:38:38 ----A---- C:\WINDOWS\system32\osk.exe
2009-08-27 18:38:34 ----A---- C:\WINDOWS\system32\sndrec32.exe
2009-08-27 18:38:33 ----A---- C:\WINDOWS\system32\spider.exe
2009-08-27 18:38:28 ----A---- C:\WINDOWS\system32\msgsvc.dll
2009-08-27 18:38:28 ----A---- C:\WINDOWS\system32\mgmtapi.dll
2009-08-27 18:38:28 ----A---- C:\WINDOWS\system32\lsasrv.dll
2009-08-27 18:38:28 ----A---- C:\WINDOWS\system32\locator.exe
2009-08-27 18:38:28 ----A---- C:\WINDOWS\system32\localspl.dll
2009-08-27 18:38:28 ----A---- C:\WINDOWS\system32\lmhsvc.dll
2009-08-27 18:38:28 ----A---- C:\WINDOWS\system32\kernel32.dll
2009-08-27 18:38:28 ----A---- C:\WINDOWS\system32\imagehlp.dll
2009-08-27 18:38:28 ----A---- C:\WINDOWS\system32\ftp.exe
2009-08-27 18:38:28 ----A---- C:\WINDOWS\system32\format.com
2009-08-27 18:38:28 ----A---- C:\WINDOWS\system32\dhcpcsvc.dll
2009-08-27 18:38:28 ----A---- C:\WINDOWS\system32\csrsrv.dll
2009-08-27 18:38:28 ----A---- C:\WINDOWS\system32\comdlg32.dll
2009-08-27 18:38:28 ----A---- C:\WINDOWS\system32\comctl32.dll
2009-08-27 18:38:28 ----A---- C:\WINDOWS\system32\cmd.exe
2009-08-27 18:38:28 ----A---- C:\WINDOWS\system32\cacls.exe
2009-08-27 18:38:28 ----A---- C:\WINDOWS\system32\autoconv.exe
2009-08-27 18:38:28 ----A---- C:\WINDOWS\system32\autochk.exe
2009-08-27 18:38:28 ----A---- C:\WINDOWS\system32\advapi32.dll
2009-08-27 18:38:27 ----A---- C:\WINDOWS\system32\userinit.exe
2009-08-27 18:38:27 ----A---- C:\WINDOWS\system32\untfs.dll
2009-08-27 18:38:27 ----A---- C:\WINDOWS\system32\ulib.dll
2009-08-27 18:38:27 ----A---- C:\WINDOWS\system32\tcpmonui.dll
2009-08-27 18:38:27 ----A---- C:\WINDOWS\system32\syssetup.dll
2009-08-27 18:38:27 ----A---- C:\WINDOWS\system32\srvsvc.dll
2009-08-27 18:38:27 ----A---- C:\WINDOWS\system32\smss.exe
2009-08-27 18:38:27 ----A---- C:\WINDOWS\system32\setupapi.dll
2009-08-27 18:38:27 ----A---- C:\WINDOWS\system32\sessmgr.exe
2009-08-27 18:38:27 ----A---- C:\WINDOWS\system32\services.exe
2009-08-27 18:38:27 ----A---- C:\WINDOWS\system32\schannel.dll
2009-08-27 18:38:27 ----A---- C:\WINDOWS\system32\scardsvr.exe
2009-08-27 18:38:27 ----A---- C:\WINDOWS\system32\savedump.exe
2009-08-27 18:38:27 ----A---- C:\WINDOWS\system32\samsrv.dll
2009-08-27 18:38:27 ----A---- C:\WINDOWS\system32\samlib.dll
2009-08-27 18:38:27 ----A---- C:\WINDOWS\system32\rshx32.dll
2009-08-27 18:38:27 ----A---- C:\WINDOWS\system32\rastapi.dll
2009-08-27 18:38:27 ----A---- C:\WINDOWS\system32\rasman.dll
2009-08-27 18:38:27 ----A---- C:\WINDOWS\system32\rasdlg.dll
2009-08-27 18:38:27 ----A---- C:\WINDOWS\system32\rasauto.dll
2009-08-27 18:38:27 ----A---- C:\WINDOWS\system32\rasapi32.dll
2009-08-27 18:38:27 ----A---- C:\WINDOWS\system32\printui.dll
2009-08-27 18:38:27 ----A---- C:\WINDOWS\system32\perfctrs.dll
2009-08-27 18:38:27 ----A---- C:\WINDOWS\system32\olecnv32.dll
2009-08-27 18:38:27 ----A---- C:\WINDOWS\system32\oleaut32.dll
2009-08-27 18:38:27 ----A---- C:\WINDOWS\system32\nwprovau.dll
2009-08-27 18:38:27 ----A---- C:\WINDOWS\system32\ntvdm.exe
2009-08-27 18:38:27 ----A---- C:\WINDOWS\system32\ntprint.dll
2009-08-27 18:38:27 ----A---- C:\WINDOWS\system32\ntlsapi.dll
2009-08-27 18:38:27 ----A---- C:\WINDOWS\system32\ntdll.dll
2009-08-27 18:38:27 ----A---- C:\WINDOWS\system32\nslookup.exe
2009-08-27 18:38:27 ----A---- C:\WINDOWS\system32\msv1_0.dll
2009-08-27 18:38:26 ----A---- C:\WINDOWS\system32\wkssvc.dll
2009-08-27 18:38:26 ----A---- C:\WINDOWS\system32\win32spl.dll
2009-08-27 18:38:23 ----A---- C:\WINDOWS\system32\hal.dll
2009-08-27 18:38:22 ----A---- C:\WINDOWS\system32\ntoskrnl.exe
2009-08-27 18:38:22 ----A---- C:\WINDOWS\system32\ntkrnlpa.exe
2009-08-27 18:34:31 ----D---- C:\Documents and Settings\USER\Application Data\dvdcss
2009-08-27 10:33:33 ----D---- C:\divx
2009-08-27 10:29:49 ----D---- C:\Documents and Settings\USER\Application Data\vlc
2009-08-27 10:18:41 ----D---- C:\Documents and Settings\USER\Application Data\DivX
2009-08-27 10:12:02 ----D---- C:\Program Files\DivX
2009-08-27 10:05:53 ----D---- C:\Program Files\VideoLAN
2009-08-27 08:22:53 ----HDC---- C:\WINDOWS\$NtUninstallKB970653-v3$
2009-08-25 12:45:21 ----D---- C:\Program Files\Bonjour
2009-08-25 12:35:50 ----D---- C:\Program Files\Fichiers communs\Macrovision Shared
2009-08-22 21:24:13 ----A---- C:\WINDOWS\NeroDigital.ini
2009-08-22 20:00:54 ----A---- C:\WINDOWS\Irremote.ini
2009-08-21 09:25:07 ----A---- C:\WINDOWS\system32\javaws.exe
2009-08-21 09:25:07 ----A---- C:\WINDOWS\system32\javaw.exe
2009-08-21 09:25:07 ----A---- C:\WINDOWS\system32\java.exe
2009-08-21 09:25:07 ----A---- C:\WINDOWS\system32\deploytk.dll
2009-08-21 09:20:10 ----D---- C:\Documents and Settings\USER\Application Data\Sun
2009-08-20 09:17:20 ----D---- C:\WINDOWS\ie8updates
2009-08-20 09:15:38 ----HDC---- C:\WINDOWS\ie8
2009-08-20 09:09:12 ----A---- C:\WINDOWS\system32\MRT.exe
======List of files/folders modified in the last 1 months======
2009-09-18 14:07:13 ----RD---- C:\Program Files
2009-09-18 13:05:31 ----D---- C:\WINDOWS\Temp
2009-09-18 12:40:00 ----A---- C:\WINDOWS\SchedLgU.Txt
2009-09-18 12:25:07 ----SHD---- C:\WINDOWS\Installer
2009-09-18 12:24:57 ----HD---- C:\Config.Msi
2009-09-18 12:24:52 ----D---- C:\WINDOWS\Help
2009-09-18 12:24:51 ----D---- C:\Program Files\Fichiers communs
2009-09-18 10:18:59 ----D---- C:\WINDOWS\system32\CatRoot2
2009-09-17 18:58:40 ----D---- C:\Program Files\Mozilla Firefox
2009-09-17 18:53:25 ----D---- C:\WINDOWS\system32
2009-09-17 18:24:42 ----DC---- C:\WINDOWS\system32\DRVSTORE
2009-09-17 18:24:42 ----D---- C:\Program Files\Yahoo!
2009-09-17 18:24:39 ----D---- C:\WINDOWS\security
2009-09-17 18:23:42 ----D---- C:\WINDOWS\system32\Restore
2009-09-16 19:56:36 ----HD---- C:\WINDOWS\inf
2009-09-16 19:45:00 ----D---- C:\WINDOWS
2009-09-16 19:43:25 ----D---- C:\WINDOWS\system32\drivers
2009-09-16 19:42:05 ----D---- C:\WINDOWS\WinSxS
2009-09-16 12:09:02 ----A---- C:\WINDOWS\system32\PerfStringBackup.INI
2009-09-15 18:51:07 ----D---- C:\WINDOWS\system32\CatRoot
2009-09-14 20:08:39 ----A---- C:\WINDOWS\imsins.BAK
2009-09-14 20:08:15 ----RSHDC---- C:\WINDOWS\system32\dllcache
2009-09-12 13:55:19 ----SHD---- C:\WINDOWS\system32\bycool
2009-09-12 10:44:24 ----SD---- C:\WINDOWS\Tasks
2009-09-12 08:35:11 ----D---- C:\Documents and Settings\All Users.WINDOWS\Application Data\Microsoft Help
2009-09-12 08:28:42 ----D---- C:\Program Files\Fichiers communs\DESIGNER
2009-09-12 08:28:33 ----RSD---- C:\WINDOWS\Fonts
2009-09-11 20:53:43 ----SHD---- C:\WINDOWS\system32\bycool1
2009-09-11 20:41:48 ----D---- C:\Program Files\PDFCreator
2009-09-11 20:41:21 ----D---- C:\Program Files\Mozilla Thunderbird
2009-09-11 20:20:33 ----SD---- C:\Documents and Settings\USER\Application Data\Microsoft
2009-09-10 12:38:44 ----D---- C:\Documents and Settings
2009-09-10 08:37:04 ----HD---- C:\WINDOWS\$hf_mig$
2009-09-09 16:29:56 ----A---- C:\WINDOWS\unvise32.exe
2009-09-09 15:56:40 ----D---- C:\hp_LJ1018_Full_Solution
2009-09-09 15:52:48 ----A---- C:\WINDOWS\system32\zshp1018.exe
2009-09-09 14:31:38 ----D---- C:\Program Files\Windows NT
2009-09-09 14:31:38 ----D---- C:\Program Files\Windows Media Player
2009-09-09 14:31:38 ----D---- C:\Program Files\Outlook Express
2009-09-09 14:31:38 ----D---- C:\Program Files\NetMeeting
2009-09-09 14:31:38 ----D---- C:\Program Files\Movie Maker
2009-09-09 14:22:17 ----D---- C:\WINDOWS\system32\wbem
2009-09-09 10:18:38 ----D---- C:\Program Files\WinPcap
2009-09-09 10:17:22 ----D---- C:\Program Files\Internet Explorer
2009-09-09 09:55:50 ----D---- C:\Documents and Settings\USER\Application Data\Skype
2009-09-08 08:41:48 ----SD---- C:\WINDOWS\Downloaded Program Files
2009-09-07 20:28:10 ----D---- C:\Program Files\Fichiers communs\Adobe
2009-09-07 20:28:08 ----D---- C:\Documents and Settings\All Users.WINDOWS\Application Data\Adobe
2009-09-07 13:01:07 ----D---- C:\Program Files\CCP Server 5
2009-09-07 08:42:21 ----D---- C:\Program Files\Messenger
2009-09-06 16:40:46 ----D---- C:\WINDOWS\system32\Setup
2009-09-06 16:40:46 ----D---- C:\WINDOWS\AppPatch
2009-09-06 16:40:41 ----D---- C:\Program Files\Fichiers communs\System
2009-09-06 16:26:23 ----D---- C:\WINDOWS\ServicePackFiles
2009-09-06 16:24:30 ----D---- C:\WINDOWS\system32\usmt
2009-09-06 16:24:26 ----D---- C:\WINDOWS\system32\oobe
2009-09-06 16:24:25 ----D---- C:\WINDOWS\system32\npp
2009-09-06 16:23:39 ----D---- C:\WINDOWS\system32\Com
2009-09-06 16:22:03 ----D---- C:\WINDOWS\system
2009-09-06 16:22:02 ----D---- C:\WINDOWS\srchasst
2009-09-06 16:22:02 ----D---- C:\WINDOWS\PeerNet
2009-09-06 16:21:59 ----D---- C:\WINDOWS\msagent
2009-09-06 16:21:52 ----D---- C:\WINDOWS\ime
2009-09-06 16:21:14 ----D---- C:\WINDOWS\system32\inetsrv
2009-09-06 16:20:24 ----D---- C:\WINDOWS\Network Diagnostic
2009-09-06 16:20:24 ----D---- C:\WINDOWS\L2Schemas
2009-09-06 16:20:24 ----D---- C:\WINDOWS\ehome
2009-09-06 16:13:20 ----D---- C:\Program Files\Apple Software Update
2009-09-02 08:14:59 ----D---- C:\Program Files\Fichiers communs\Nero
2009-09-02 08:12:55 ----D---- C:\Documents and Settings\All Users.WINDOWS\Application Data\Nero
2009-09-02 08:03:04 ----D---- C:\Program Files\Nero
2009-09-02 07:58:36 ----D---- C:\Program Files\QuickTime
2009-08-28 08:37:51 ----A---- C:\WINDOWS\OEWABLog.txt
2009-08-28 08:36:51 ----A---- C:\WINDOWS\setuplog.txt
2009-08-27 18:45:11 ----D---- C:\WINDOWS\system32\fr-fr
2009-08-27 18:45:10 ----D---- C:\WINDOWS\system32\fr
2009-08-27 18:40:42 ----D---- C:\WINDOWS\system32\ReinstallBackups
2009-08-27 09:02:05 ----D---- C:\Documents and Settings\USER\Application Data\Adobe
2009-08-25 12:46:44 ----D---- C:\Program Files\Adobe
2009-08-22 21:21:03 ----D---- C:\Documents and Settings\USER\Application Data\Nero
2009-08-21 09:24:50 ----D---- C:\Program Files\Java
2009-08-20 09:16:49 ----D---- C:\WINDOWS\system32\config
2009-08-20 09:16:42 ----D---- C:\WINDOWS\wbem
2009-08-20 09:16:35 ----D---- C:\WINDOWS\Media
2009-08-20 09:09:14 ----D---- C:\WINDOWS\Debug
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R1 Aavmker4;avast! Asynchronous Virus Monitor; C:\WINDOWS\system32\drivers\Aavmker4.sys [2009-08-17 26944]
R1 aswSP;avast! Self Protection; C:\WINDOWS\system32\drivers\aswSP.sys [2009-08-17 114768]
R1 aswTdi;avast! Network Shield Support; C:\WINDOWS\system32\drivers\aswTdi.sys [2009-08-17 51376]
R1 intelppm;Pilote de processeur Intel; C:\WINDOWS\system32\DRIVERS\intelppm.sys [2004-08-03 40320]
R1 KLIF;Kaspersky Lab Driver; C:\WINDOWS\system32\DRIVERS\klif.sys [2009-07-21 303248]
R1 WS2IFSL;Environnement de prise en charge de Fournisseur de services non-IFS Windows Sockets 2.0; C:\WINDOWS\System32\drivers\ws2ifsl.sys [2001-08-28 12032]
R2 aswFsBlk;aswFsBlk; C:\WINDOWS\system32\DRIVERS\aswFsBlk.sys [2009-08-17 20560]
R2 aswMon2;avast! Standard Shield Support; C:\WINDOWS\system32\drivers\aswMon2.sys [2009-08-17 94160]
R2 ISWKL;ZoneAlarm Toolbar ISWKL; \??\C:\Program Files\CheckPoint\ZAForceField\ISWKL.sys []
R2 NwlnkIpx;Protocole de transport compatible NWLink IPX/SPX/NetBIOS; C:\WINDOWS\system32\DRIVERS\nwlnkipx.sys [2004-08-03 88448]
R2 NwlnkNb;NetBIOS NWLink; C:\WINDOWS\system32\DRIVERS\nwlnknb.sys [2001-08-28 63232]
R2 NwlnkSpx;Protocole NWLink SPX/SPXII; C:\WINDOWS\system32\DRIVERS\nwlnkspx.sys [2001-08-28 55936]
R3 aswRdr;aswRdr; C:\WINDOWS\system32\drivers\aswRdr.sys [2009-08-17 23152]
R3 HDAudBus;Microsoft UAA Bus Driver for High Definition Audio; C:\WINDOWS\system32\DRIVERS\HDAudBus.sys [2005-01-07 138752]
R3 hidusb;Pilote de classe HID Microsoft; C:\WINDOWS\system32\DRIVERS\hidusb.sys [2001-08-28 9600]
R3 ialm;ialm; C:\WINDOWS\system32\DRIVERS\igxpmp32.sys [2007-12-19 5854688]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\WINDOWS\system32\drivers\RtkHDAud.sys [2008-01-30 4725760]
R3 mouhid;Pilote HID de souris; C:\WINDOWS\system32\DRIVERS\mouhid.sys [2001-08-28 12288]
R3 RTLE8023xp;Realtek 10/100/1000 PCI-E NIC Family NDIS XP Driver; C:\WINDOWS\system32\DRIVERS\Rtenicxp.sys [2008-01-03 105856]
R3 usbehci;Pilote miniport de contrôleur d'hôte amélioré Microsoft USB 2.0; C:\WINDOWS\system32\DRIVERS\usbehci.sys [2004-08-03 26624]
R3 usbhub;Pilote de concentrateur standard USB Microsoft; C:\WINDOWS\system32\DRIVERS\usbhub.sys [2004-08-03 57600]
R3 usbprint;Classe d'imprimantes USB Microsoft; C:\WINDOWS\system32\DRIVERS\usbprint.sys [2004-08-03 25856]
R3 usbuhci;Pilote miniport de contrôleur hôte universel USB Microsoft; C:\WINDOWS\system32\DRIVERS\usbuhci.sys [2004-08-03 20480]
R3 vsdatant;vsdatant; C:\WINDOWS\System32\vsdatant.sys [2009-08-26 483208]
S3 GMSIPCI;GMSIPCI; \??\E:\INSTALL\GMSIPCI.SYS []
S3 MSICPL;MSICPL; \??\E:\install4\MSICPL.sys []
S3 nm;Pilote du Moniteur réseau; C:\WINDOWS\system32\DRIVERS\NMnt.sys [2004-08-03 40320]
S3 NPF;NetGroup Packet Filter Driver; C:\WINDOWS\system32\drivers\npf.sys [2007-11-06 34064]
S3 NTACCESS;NTACCESS; \??\E:\NTACCESS.sys []
S3 SetupNTGLM7X;SetupNTGLM7X; \??\E:\NTGLM7X.sys []
S3 usbccgp;Pilote parent générique USB Microsoft; C:\WINDOWS\system32\DRIVERS\usbccgp.sys [2004-08-03 31616]
S3 usbscan;Pilote de scanneur USB; C:\WINDOWS\system32\DRIVERS\usbscan.sys [2004-08-03 15104]
S3 USBSTOR;Pilote de stockage de masse USB; C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS [2004-08-03 26496]
S3 WpdUsb;WpdUsb; C:\WINDOWS\System32\Drivers\wpdusb.sys [2006-08-24 38656]
S4 IntelIde;IntelIde; C:\WINDOWS\system32\drivers\IntelIde.sys []
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 aswUpdSv;avast! iAVS4 Control Service; C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe [2009-08-17 18752]
R2 avast! Antivirus;avast! Antivirus; C:\Program Files\Alwil Software\Avast4\ashServ.exe [2009-08-17 138680]
R2 Bonjour Service;##Id_String1.6844F930_1628_4223_B5CC_5BB94B879762##; C:\Program Files\Bonjour\mDNSResponder.exe [2006-02-28 229376]
R2 Diskeeper;Diskeeper; C:\Program Files\Diskeeper Corporation\Diskeeper\DkService.exe [2008-11-22 1333016]
R2 Findbasic Service;Findbasic Service; C:\Documents and Settings\All Users.WINDOWS\Application Data\Findbasic\findbasic121.exe [2009-09-02 54776]
R2 IswSvc;ZoneAlarm Toolbar IswSvc; C:\Program Files\CheckPoint\ZAForceField\IswSvc.exe [2009-08-26 435568]
R2 JavaQuickStarterService;Java Quick Starter; C:\Program Files\Java\jre6\bin\jqs.exe [2009-08-21 153376]
R2 Pml Driver HPZ12;Pml Driver HPZ12; C:\WINDOWS\system32\HPZipm12.exe [2006-03-03 69632]
R2 YahooAUService;Yahoo! Updater; C:\Program Files\Yahoo!\SoftwareUpdate\YahooAUService.exe [2008-11-09 602392]
R3 avast! Mail Scanner;avast! Mail Scanner; C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe [2009-08-17 254040]
S2 Nero BackItUp Scheduler 4.0;Nero BackItUp Scheduler 4.0; C:\Program Files\Fichiers communs\Nero\Nero BackItUp 4\NBService.exe []
S3 avast! Web Scanner;avast! Web Scanner; C:\Program Files\Alwil Software\Avast4\ashWebSv.exe [2009-08-17 352920]
S3 odserv;Microsoft Office Diagnostics Service; C:\Program Files\Fichiers communs\Microsoft Shared\OFFICE12\ODSERV.EXE [2006-10-26 441136]
S3 ose;Office Source Engine; C:\Program Files\Fichiers communs\Microsoft Shared\Source Engine\OSE.EXE [2006-10-26 145184]
-----------------EOF-----------------
Configuration: Windows XP Safari 532.0
A voir également:
- Bilan de santé
- Bilan de santé du pc - Guide
- Bilan de stage exemple - Guide
- Santé disque dur - Télécharger - Informations & Diagnostic
- Mon espace santé mon compte - Guide
- Samia, kevin et jason ont gardé la trace de leurs ventes quotidiennes du mois de juillet 2016. dans la feuille bilan, il manque les résultats de jason. insérez une colonne entre samia et kevin et reportez-y les résultats de jason. quel mot secret apparait en f2 ? - Forum Excel
