Sujet Précédent Sujet Suivant

Processus étrange exécuté dans la sandbox

Résolu
besoindaide1 Messages postés 552 Statut Membre -  
besoindaide1 Messages postés 552 Statut Membre -
Bonjour,

J'ai mis Internet Explorer dans la SandBox de Comodo et j'ai ramarqué que chaque fois que je lance IE, un processus sans nom se lance aussi (dans la Sandbox). Je viens de désinfecter ma clé hier (il y avait 3 virus) avec Usbfix et Antivir et j'ai fait un scan avec RSIT.

Voici les rapports :

Rapport log :

Logfile of random's system information tool 1.08 (written by random/random)
Run by Mip at 2010-10-06 08:02:59
Microsoft Windows 7 Édition Familiale Premium
System drive C: has 431 GB (92%) free of 469 GB
Total RAM: 4095 MB (71% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 08:03:12, on 06/10/2010
Platform: Windows 7 (WinNT 6.00.3504)
MSIE: Internet Explorer v8.00 (8.00.7600.16385)
Boot mode: Normal

Running processes:
C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe
C:\Program Files (x86)\Mozilla Firefox\firefox.exe
C:\Program Files (x86)\Mozilla Firefox\plugin-container.exe
C:\Users\Mip\Downloads\RSIT.exe
C:\Program Files (x86)\trend micro\Mip.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = http://go.microsoft.com/fwlink/?linkid=54896
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.msn.com/fr-fr
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.msn.com/fr-fr
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
F2 - REG:system.ini: UserInit=C:\Windows\SysWOW64\Userinit.exe,
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: (no name) - {5C255C8A-E604-49b4-9D64-90988571CECB} - (no file)
O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre6\bin\jp2ssv.dll
O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Reader_sl.exe"
O4 - HKLM\..\Run: [NortonOnlineBackupReminder] "C:\Program Files (x86)\Symantec\Norton Online Backup\Activation\NobuActivation.exe" UNATTENDED
O4 - HKLM\..\Run: [avgnt] "C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe" /min
O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'SERVICE RÉSEAU')
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'SERVICE RÉSEAU')
O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~2\MICROS~1\Office12\EXCEL.EXE/3000
O9 - Extra button: Ajout Direct - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra 'Tools' menuitem: &Ajout Direct dans Windows Live Writer - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra button: Send to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~2\MICROS~1\Office12\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: S&end to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~2\MICROS~1\Office12\ONBttnIE.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~2\MICROS~1\Office12\REFIEBAR.DLL
O17 - HKLM\System\CCS\Services\Tcpip\..\{3B205648-FA32-479F-9F4F-2053B6C5B394}: NameServer = 212.27.53.252,212.27.54.252
O17 - HKLM\System\CS1\Services\Tcpip\..\{3B205648-FA32-479F-9F4F-2053B6C5B394}: NameServer = 212.27.53.252,212.27.54.252
O17 - HKLM\System\CS2\Services\Tcpip\..\{3B205648-FA32-479F-9F4F-2053B6C5B394}: NameServer = 212.27.53.252,212.27.54.252
O23 - Service: Adobe Active File Monitor V7 (AdobeActiveFileMonitor7.0) - Adobe Systems Incorporated - c:\Program Files (x86)\Adobe\Photoshop Elements 7.0\PhotoshopElementsFileAgent.exe
O23 - Service: @%SystemRoot%\system32\aelupsvc.dll,-1 (AeLookupSvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: Avira AntiVir Planificateur (AntiVirSchedulerService) - Avira GmbH - C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe
O23 - Service: Avira AntiVir Guard (AntiVirService) - Avira GmbH - C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe
O23 - Service: @%systemroot%\system32\appidsvc.dll,-100 (AppIDSvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%systemroot%\system32\appinfo.dll,-100 (Appinfo) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\audiosrv.dll,-204 (AudioEndpointBuilder) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\audiosrv.dll,-200 (AudioSrv) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\AxInstSV.dll,-103 (AxInstSV) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\bdesvc.dll,-100 (BDESVC) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\bfe.dll,-1001 (BFE) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\qmgr.dll,-1000 (BITS) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%systemroot%\system32\browser.dll,-100 (Browser) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\System32\bthserv.dll,-101 (bthserv) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\System32\certprop.dll,-11 (CertPropSvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: COMODO Internet Security Helper Service (cmdAgent) - COMODO - C:\Program Files\COMODO\COMODO Internet Security\cmdagent.exe
O23 - Service: @%SystemRoot%\system32\cryptsvc.dll,-1001 (CryptSvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @oleres.dll,-5012 (DcomLaunch) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\defragsvc.dll,-101 (defragsvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\dhcpcore.dll,-100 (Dhcp) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\System32\dnsapi.dll,-101 (Dnscache) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%systemroot%\system32\dot3svc.dll,-1102 (dot3svc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%systemroot%\system32\dps.dll,-500 (DPS) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%systemroot%\system32\eapsvc.dll,-1 (EapHost) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\ehome\ehrecvr.exe,-101 (ehRecvr) - Unknown owner - C:\Windows\ehome\ehRecvr.exe
O23 - Service: @%SystemRoot%\ehome\ehsched.exe,-101 (ehSched) - Unknown owner - C:\Windows\ehome\ehsched.exe
O23 - Service: @%SystemRoot%\system32\wevtsvc.dll,-200 (eventlog) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @comres.dll,-2450 (EventSystem) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
O23 - Service: @%systemroot%\system32\fdPHost.dll,-100 (fdPHost) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%systemroot%\system32\fdrespub.dll,-100 (FDResPub) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: FLEXnet Licensing Service - Macrovision Europe Ltd. - C:\Program Files (x86)\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
O23 - Service: @%systemroot%\system32\FntCache.dll,-100 (FontCache) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: ForceWare Intelligent Application Manager (IAM) - Unknown owner - C:\Program Files\NVIDIA Corporation\NetworkAccessManager\bin32\nSvcAppFlt.exe
O23 - Service: @gpapi.dll,-112 (gpsvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: GRegService (Greg_Service) - Acer Incorporated - C:\Program Files (x86)\Packard Bell\Registration\GregHSRW.exe
O23 - Service: @%SystemRoot%\System32\hidserv.dll,-101 (hidserv) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\kmsvc.dll,-6 (hkmsvc) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\System32\ListSvc.dll,-100 (HomeGroupListener) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\System32\provsvc.dll,-100 (HomeGroupProvider) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\ikeext.dll,-501 (IKEEXT) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%systemroot%\system32\IPBusEnum.dll,-102 (IPBusEnum) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\iphlpsvc.dll,-500 (iphlpsvc) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @comres.dll,-2946 (KtmRm) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%systemroot%\system32\srvsvc.dll,-100 (LanmanServer) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%systemroot%\system32\wkssvc.dll,-100 (LanmanWorkstation) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\lltdres.dll,-1 (lltdsvc) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\lmhsvc.dll,-101 (lmhosts) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%systemroot%\system32\mmcss.dll,-100 (MMCSS) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\FirewallAPI.dll,-23090 (MpsSvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\iscsidsc.dll,-5000 (MSiSCSI) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\msimsg.dll,-27 (msiserver) - Unknown owner - C:\Windows\system32\msiexec.exe
O23 - Service: @%SystemRoot%\system32\qagentrt.dll,-6 (napagent) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: Nero BackItUp Scheduler 4.0 - Nero AG - C:\Program Files (x86)\Common Files\Nero\Nero BackItUp 4\NBService.exe
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\netman.dll,-109 (Netman) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\netprofm.dll,-202 (netprofm) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\System32\nlasvc.dll,-1 (NlaSvc) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\nsisvc.dll,-200 (nsi) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: ForceWare IP service (nSvcIp) - Unknown owner - C:\Program Files\NVIDIA Corporation\NetworkAccessManager\bin32\nSvcIp.exe
O23 - Service: NVIDIA Display Driver Service (nvsvc) - Unknown owner - C:\Windows\system32\nvvsvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\pnrpsvc.dll,-8004 (p2pimsvc) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\p2psvc.dll,-8006 (p2psvc) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\pcasvc.dll,-1 (PcaSvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%systemroot%\sysWow64\perfhost.exe,-2 (PerfHost) - Unknown owner - C:\Windows\SysWow64\perfhost.exe
O23 - Service: @%systemroot%\system32\pla.dll,-500 (pla) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\umpnpmgr.dll,-100 (PlugPlay) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\pnrpauto.dll,-8002 (PNRPAutoReg) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\pnrpsvc.dll,-8000 (PNRPsvc) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\System32\polstore.dll,-5010 (PolicyAgent) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\umpo.dll,-100 (Power) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%systemroot%\system32\profsvc.dll,-300 (ProfSvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\qwave.dll,-1 (QWAVE) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%Systemroot%\system32\rasauto.dll,-200 (RasAuto) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%Systemroot%\system32\rasmans.dll,-200 (RasMan) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @regsvc.dll,-1 (RemoteRegistry) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%windir%\system32\RpcEpMap.dll,-1001 (RpcEptMapper) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: @oleres.dll,-5010 (RpcSs) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\System32\SCardSvr.dll,-1 (SCardSvr) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\schedsvc.dll,-100 (Schedule) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\System32\certprop.dll,-13 (SCPolicySvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\sdrsvc.dll,-107 (SDRSVC) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\seclogon.dll,-7001 (seclogon) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\Sens.dll,-200 (SENS) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\System32\sensrsvc.dll,-1000 (SensrSvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\System32\SessEnv.dll,-1026 (SessionEnv) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\System32\shsvcs.dll,-12288 (ShellHWDetection) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppuinotify.dll,-103 (sppuinotify) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%systemroot%\system32\ssdpsrv.dll,-100 (SSDPSRV) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\sstpsvc.dll,-200 (SstpSvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\wiaservc.dll,-9 (stisvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\System32\swprv.dll,-103 (swprv) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\sysmain.dll,-1000 (SysMain) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\TabSvc.dll,-100 (TabletInputService) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\tapisrv.dll,-10100 (TapiSrv) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\tbssvc.dll,-100 (TBS) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\System32\termsrv.dll,-268 (TermService) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\System32\themeservice.dll,-8192 (Themes) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%systemroot%\system32\mmcss.dll,-102 (THREADORDER) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\trkwks.dll,-1 (TrkWks) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\servicing\TrustedInstaller.exe,-100 (TrustedInstaller) - Unknown owner - C:\Windows\servicing\TrustedInstaller.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: Updater Service - Acer - C:\Program Files\Packard Bell\Packard Bell Updater\UpdaterService.exe
O23 - Service: @%systemroot%\system32\upnphost.dll,-213 (upnphost) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\dwm.exe,-2000 (UxSms) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\w32time.dll,-200 (W32Time) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\Windows\system32\Wat\WatAdminSvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: @%systemroot%\system32\wbiosrvc.dll,-100 (WbioSrvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\wcncsvc.dll,-3 (wcncsvc) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\WcsPlugInService.dll,-200 (WcsPlugInService) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%systemroot%\system32\wdi.dll,-502 (WdiServiceHost) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%systemroot%\system32\wdi.dll,-500 (WdiSystemHost) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%systemroot%\system32\webclnt.dll,-100 (WebClient) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\wecsvc.dll,-200 (Wecsvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\System32\wercplsupport.dll,-101 (wercplsupport) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\System32\wersvc.dll,-100 (WerSvc) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%ProgramFiles%\Windows Defender\MsMpRes.dll,-103 (WinDefend) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\winhttp.dll,-100 (WinHttpAutoProxySvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%Systemroot%\system32\wbem\wmisvc.dll,-205 (Winmgmt) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%Systemroot%\system32\wsmsvc.dll,-101 (WinRM) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\System32\wlansvc.dll,-257 (Wlansvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)
O23 - Service: @%SystemRoot%\system32\wpcsvc.dll,-100 (WPCSvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\wpdbusenum.dll,-100 (WPDBusEnum) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\System32\wscsvc.dll,-200 (wscsvc) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%systemroot%\system32\SearchIndexer.exe,-103 (WSearch) - Unknown owner - C:\Windows\system32\SearchIndexer.exe
O23 - Service: @%systemroot%\system32\wuaueng.dll,-105 (wuauserv) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\wudfsvc.dll,-1000 (wudfsvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\System32\wwansvc.dll,-257 (WwanSvc) - Unknown owner - C:\Windows\system32\svchost.exe

--
End of file - 21249 bytes

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}]
Adobe PDF Link Helper - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2009-02-27 75128]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{5C255C8A-E604-49b4-9D64-90988571CECB}]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
Programme d'aide de l'Assistant de connexion Windows Live - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2009-01-22 408448]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files (x86)\Java\jre6\bin\jp2ssv.dll [2010-08-04 41760]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"Adobe Reader Speed Launcher"=C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Reader_sl.exe [2009-10-03 35696]
"NortonOnlineBackupReminder"=C:\Program Files (x86)\Symantec\Norton Online Backup\Activation\NobuActivation.exe [2009-07-25 588648]
"avgnt"=C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe [2010-08-17 281768]
"Adobe ARM"=C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2009-09-04 935288]
"SunJavaUpdateSched"=C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [2010-05-14 248552]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED}

[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=5
"ConsentPromptBehaviorUser"=3
"EnableUIADesktopToggle"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveAutoRun"=3
"NoDriveTypeAutoRun"=0

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoActiveDesktop"=1
"NoActiveDesktopChanges"=1
"ForceActiveDesktopOn"=0
"NoDriveAutoRun"=3
"NoDriveTypeAutoRun"=0

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

======File associations======

.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*

======List of files/folders created in the last 1 months======

2010-10-06 08:03:01 ----D---- C:\Program Files (x86)\trend micro
2010-10-06 08:02:59 ----D---- C:\rsit
2010-10-05 19:33:43 ----D---- C:\Autorun.inf
2010-10-05 19:30:26 ----D---- C:\UsbFix
2010-10-04 08:15:23 ----D---- C:\Windows\.jagex_cache_32
2010-10-04 08:14:00 ----D---- C:\Windows\Sun
2010-10-03 09:21:40 ----HD---- C:\VritualRoot
2010-10-03 09:13:03 ----D---- C:\Program Files (x86)\MSXML 4.0
2010-10-03 09:02:45 ----D---- C:\Windows\SysWOW64\Wat
2010-10-03 08:55:39 ----A---- C:\Windows\SysWOW64\msv1_0.dll
2010-10-03 08:49:13 ----A---- C:\Windows\SysWOW64\PresentationHostProxy.dll
2010-10-03 08:49:13 ----A---- C:\Windows\SysWOW64\PresentationHost.exe
2010-10-03 08:49:13 ----A---- C:\Windows\SysWOW64\netfxperf.dll
2010-10-03 08:49:13 ----A---- C:\Windows\SysWOW64\mscoree.dll
2010-10-03 08:49:13 ----A---- C:\Windows\SysWOW64\dfshim.dll
2010-10-03 05:18:07 ----A---- C:\Windows\SysWOW64\asycfilt.dll
2010-10-03 05:18:05 ----A---- C:\Windows\SysWOW64\vbscript.dll
2010-10-03 05:18:05 ----A---- C:\Windows\SysWOW64\ntdll.dll
2010-10-03 05:18:03 ----A---- C:\Windows\SysWOW64\schannel.dll
2010-10-03 05:18:01 ----A---- C:\Windows\SysWOW64\wmp.dll
2010-10-03 05:18:00 ----A---- C:\Windows\SysWOW64\CertEnroll.dll
2010-10-03 05:17:59 ----A---- C:\Windows\SysWOW64\wmploc.DLL
2010-10-03 05:17:57 ----A---- C:\Windows\SysWOW64\secproc_ssp_isv.dll
2010-10-03 05:17:57 ----A---- C:\Windows\SysWOW64\secproc_ssp.dll
2010-10-03 05:17:57 ----A---- C:\Windows\SysWOW64\secproc_isv.dll
2010-10-03 05:17:57 ----A---- C:\Windows\SysWOW64\secproc.dll
2010-10-03 05:17:57 ----A---- C:\Windows\SysWOW64\RMActivate_ssp_isv.exe
2010-10-03 05:17:57 ----A---- C:\Windows\SysWOW64\RMActivate_ssp.exe
2010-10-03 05:17:57 ----A---- C:\Windows\SysWOW64\RMActivate_isv.exe
2010-10-03 05:17:57 ----A---- C:\Windows\SysWOW64\RMActivate.exe
2010-10-03 05:17:50 ----A---- C:\Windows\SysWOW64\shell32.dll
2010-10-03 05:17:49 ----A---- C:\Windows\SysWOW64\inetcomm.dll
2010-10-03 05:17:48 ----A---- C:\Windows\SysWOW64\t2embed.dll
2010-10-03 05:17:42 ----A---- C:\Windows\SysWOW64\ntoskrnl.exe
2010-10-03 05:17:41 ----A---- C:\Windows\SysWOW64\ntkrnlpa.exe
2010-10-03 05:17:38 ----A---- C:\Windows\SysWOW64\mshtml.dll
2010-10-03 05:17:38 ----A---- C:\Windows\SysWOW64\ieframe.dll
2010-10-03 05:17:37 ----A---- C:\Windows\SysWOW64\wininet.dll
2010-10-03 05:17:37 ----A---- C:\Windows\SysWOW64\urlmon.dll
2010-10-03 05:17:37 ----A---- C:\Windows\SysWOW64\mstime.dll
2010-10-03 05:17:37 ----A---- C:\Windows\SysWOW64\msfeedssync.exe
2010-10-03 05:17:37 ----A---- C:\Windows\SysWOW64\msfeedsbs.dll
2010-10-03 05:17:37 ----A---- C:\Windows\SysWOW64\jsproxy.dll
2010-10-03 05:17:37 ----A---- C:\Windows\SysWOW64\ieui.dll
2010-10-03 05:17:37 ----A---- C:\Windows\SysWOW64\iepeers.dll
2010-10-03 05:17:37 ----A---- C:\Windows\SysWOW64\iedkcs32.dll
2010-10-03 05:17:33 ----A---- C:\Windows\SysWOW64\oleaut32.dll
2010-10-03 05:17:32 ----A---- C:\Windows\SysWOW64\explorer.exe
2010-10-03 05:17:32 ----A---- C:\Windows\explorer.exe
2010-10-03 05:17:31 ----A---- C:\Windows\SysWOW64\setup16.exe
2010-10-03 05:17:31 ----A---- C:\Windows\SysWOW64\rtutils.dll
2010-10-03 05:17:31 ----A---- C:\Windows\SysWOW64\ntvdm64.dll
2010-10-03 05:17:30 ----A---- C:\Windows\SysWOW64\wow32.dll
2010-10-03 05:17:30 ----A---- C:\Windows\SysWOW64\user.exe
2010-10-03 05:17:30 ----A---- C:\Windows\SysWOW64\instnm.exe
2010-10-03 05:17:23 ----A---- C:\Windows\SysWOW64\tzres.dll
2010-10-03 05:17:18 ----A---- C:\Windows\SysWOW64\iccvid.dll
2010-10-03 05:17:15 ----A---- C:\Windows\SysWOW64\CPFilters.dll
2010-10-03 05:17:14 ----A---- C:\Windows\SysWOW64\psisdecd.dll
2010-10-03 05:17:13 ----A---- C:\Windows\SysWOW64\quartz.dll
2010-10-03 05:17:12 ----A---- C:\Windows\SysWOW64\tsbyuv.dll
2010-10-03 05:17:12 ----A---- C:\Windows\SysWOW64\msyuv.dll
2010-10-03 05:17:12 ----A---- C:\Windows\SysWOW64\msvidc32.dll
2010-10-03 05:17:12 ----A---- C:\Windows\SysWOW64\msrle32.dll
2010-10-03 05:17:12 ----A---- C:\Windows\SysWOW64\mciavi32.dll
2010-10-03 05:17:12 ----A---- C:\Windows\SysWOW64\iyuv_32.dll
2010-10-03 05:17:12 ----A---- C:\Windows\SysWOW64\avifil32.dll
2010-10-03 05:17:10 ----A---- C:\Windows\SysWOW64\msxml3.dll
2010-10-03 05:17:08 ----A---- C:\Windows\SysWOW64\jscript.dll
2010-10-03 05:17:05 ----A---- C:\Windows\SysWOW64\sspicli.dll
2010-10-03 05:17:05 ----A---- C:\Windows\SysWOW64\secur32.dll
2010-10-03 05:17:03 ----A---- C:\Windows\SysWOW64\msasn1.dll
2010-10-03 05:17:02 ----A---- C:\Windows\SysWOW64\fontsub.dll
2010-10-03 05:17:02 ----A---- C:\Windows\SysWOW64\atmlib.dll
2010-10-03 05:17:02 ----A---- C:\Windows\SysWOW64\atmfd.dll
2010-10-03 01:26:30 ----D---- C:\Windows\fr-FR
2010-10-03 01:26:29 ----D---- C:\Windows\SysWOW64\XPSViewer
2010-10-03 01:26:29 ----D---- C:\Windows\SysWOW64\fr
2010-10-03 01:26:29 ----D---- C:\Windows\SysWOW64\drivers\fr-FR
2010-10-03 01:26:29 ----D---- C:\Windows\SysWOW64\040C
2010-10-02 21:44:40 ----D---- C:\Program Files (x86)\Common Files\Java
2010-10-02 21:44:29 ----A---- C:\Windows\SysWOW64\javaws.exe
2010-10-02 21:44:29 ----A---- C:\Windows\SysWOW64\javaw.exe
2010-10-02 21:44:29 ----A---- C:\Windows\SysWOW64\java.exe
2010-10-02 21:35:28 ----A---- C:\Windows\SysWOW64\wintrust.dll
2010-10-02 21:35:28 ----A---- C:\Windows\SysWOW64\cabview.dll
2010-10-02 18:22:42 ----D---- C:\Program Files (x86)\CCleaner
2010-10-02 18:00:52 ----D---- C:\Shockwave 11
2010-10-02 18:00:09 ----D---- C:\Windows\SysWOW64\Adobe
2010-10-02 17:49:26 ----D---- C:\Users\Mip\AppData\Roaming\OpenOffice.org
2010-10-02 17:46:02 ----D---- C:\Program Files (x86)\JRE
2010-10-02 17:46:00 ----D---- C:\Program Files (x86)\OpenOffice.org 3
2010-10-02 17:44:43 ----D---- C:\ProgramData\Sun
2010-10-02 17:44:36 ----A---- C:\Windows\SysWOW64\deployJava1.dll
2010-10-02 17:44:25 ----D---- C:\Program Files (x86)\Java
2010-10-02 17:17:38 ----HD---- C:\ProgramData\CanonBJ
2010-10-02 17:14:43 ----D---- C:\Program Files (x86)\Canon
2010-10-02 17:03:48 ----D---- C:\Users\Mip\AppData\Roaming\Avira
2010-10-02 17:00:16 ----D---- C:\ProgramData\Avira
2010-10-02 17:00:16 ----D---- C:\Program Files (x86)\Avira
2010-10-02 16:50:23 ----D---- C:\ProgramData\Comodo
2010-10-02 16:50:12 ----D---- C:\ProgramData\Comodo Downloader
2010-10-02 16:40:19 ----D---- C:\Users\Mip\AppData\Roaming\Mozilla
2010-10-02 16:39:59 ----D---- C:\Program Files (x86)\Mozilla Firefox
2010-10-02 16:34:12 ----D---- C:\Users\Mip\AppData\Roaming\Google
2010-10-02 16:19:00 ----D---- C:\Users\Mip\AppData\Roaming\Macromedia
2010-10-02 16:16:59 ----D---- C:\Program Files (x86)\Microsoft Visual Studio 8
2010-10-02 16:10:43 ----A---- C:\Windows\SysWOW64\d3dx9_32.dll
2010-10-02 16:10:12 ----D---- C:\Program Files (x86)\Microsoft SQL Server Compact Edition
2010-10-02 16:08:51 ----D---- C:\Program Files (x86)\Microsoft
2010-10-02 16:08:16 ----D---- C:\Program Files (x86)\Windows Live SkyDrive
2010-10-02 16:07:59 ----D---- C:\Program Files (x86)\Windows Live
2010-10-02 16:05:04 ----D---- C:\Program Files (x86)\Common Files\Windows Live
2010-10-02 16:03:59 ----D---- C:\Program Files (x86)\Common Files\Macrovision Shared
2010-10-02 16:03:48 ----D---- C:\Program Files (x86)\Common Files\Sonic Shared
2010-10-02 16:03:48 ----D---- C:\Program Files (x86)\Common Files\PX Storage Engine
2010-10-02 16:03:21 ----D---- C:\Windows\fonts\Fonts
2010-10-02 16:03:10 ----D---- C:\Users\Mip\AppData\Roaming\Adobe
2010-10-02 15:57:32 ----D---- C:\ProgramData\NVIDIA
2010-10-02 15:57:17 ----D---- C:\Users\Mip\AppData\Roaming\Identities
2010-10-02 15:54:54 ----D---- C:\Program Files (x86)\OEM
2010-10-02 15:54:41 ----SD---- C:\Users\Mip\AppData\Roaming\Microsoft
2010-10-02 15:54:41 ----D---- C:\Users\Mip\AppData\Roaming\Media Center Programs
2010-10-02 15:54:23 ----SHD---- C:\Recovery
2010-10-02 15:54:23 ----SHD---- C:\ProgramData\Modèles
2010-10-02 15:54:23 ----SHD---- C:\ProgramData\Menu Démarrer
2010-10-02 15:54:23 ----SHD---- C:\ProgramData\Favoris
2010-10-02 15:54:23 ----SHD---- C:\ProgramData\Bureau
2010-10-02 15:42:09 ----D---- C:\Windows\SoftwareDistribution
2010-10-02 15:38:49 ----SHD---- C:\System Volume Information
2010-10-02 15:38:49 ----ASH---- C:\pagefile.sys
2010-10-02 15:38:49 ----ASH---- C:\hiberfil.sys
2010-09-20 14:51:40 ----A---- C:\Windows\SysWOW64\msvcr71.dll
2010-09-20 14:51:40 ----A---- C:\Windows\SysWOW64\msvcp71.dll
2010-09-10 23:41:40 ----A---- C:\Windows\SysWOW64\guard32.dll

======List of files/folders modified in the last 1 months======

2010-10-06 08:03:12 ----D---- C:\Windows\Prefetch
2010-10-06 08:03:01 ----RD---- C:\Program Files (x86)
2010-10-06 06:10:21 ----D---- C:\Windows\System32
2010-10-06 06:10:21 ----D---- C:\Windows\inf
2010-10-06 06:06:08 ----D---- C:\Windows\Temp
2010-10-05 05:23:38 ----D---- C:\Windows
2010-10-04 11:27:21 ----D---- C:\Windows\rescache
2010-10-04 11:26:13 ----D---- C:\Windows\Logs
2010-10-03 16:39:00 ----SHD---- C:\Windows\Installer
2010-10-03 16:38:36 ----D---- C:\ProgramData\Adobe
2010-10-03 13:48:25 ----D---- C:\Windows\debug
2010-10-03 10:47:55 ----D---- C:\Windows\Microsoft.NET
2010-10-03 10:47:28 ----RSD---- C:\Windows\assembly
2010-10-03 10:35:46 ----SHD---- C:\$Recycle.Bin
2010-10-03 09:17:37 ----D---- C:\Windows\SysWOW64
2010-10-03 09:17:17 ----D---- C:\Windows\SysWOW64\fr-FR
2010-10-03 09:14:03 ----D---- C:\Windows\SysWOW64\en-US
2010-10-03 09:14:02 ----D---- C:\Program Files (x86)\Microsoft.NET
2010-10-03 09:13:07 ----D---- C:\Windows\winsxs
2010-10-03 09:03:02 ----D---- C:\Program Files (x86)\Windows Media Player
2010-10-03 09:02:58 ----D---- C:\Program Files (x86)\Windows Mail
2010-10-03 09:02:54 ----D---- C:\Windows\SysWOW64\migration
2010-10-03 09:02:54 ----D---- C:\Program Files (x86)\Internet Explorer
2010-10-03 09:02:50 ----D---- C:\Windows\AppPatch
2010-10-03 09:02:44 ----D---- C:\Windows\ehome
2010-10-03 09:01:41 ----D---- C:\Program Files (x86)\Microsoft Silverlight
2010-10-03 08:59:39 ----D---- C:\ProgramData\Microsoft Help
2010-10-03 08:54:19 ----D---- C:\Program Files (x86)\Microsoft Works
2010-10-03 08:47:36 ----SD---- C:\ProgramData\Microsoft
2010-10-03 08:45:35 ----D---- C:\Program Files (x86)\Common Files\System
2010-10-03 08:45:35 ----A---- C:\Windows\win.ini
2010-10-03 01:29:12 ----D---- C:\Windows\SysWOW64\winrm
2010-10-03 01:29:12 ----D---- C:\Windows\SysWOW64\WCN
2010-10-03 01:29:12 ----D---- C:\Windows\SysWOW64\sysprep
2010-10-03 01:29:12 ----D---- C:\Windows\SysWOW64\slmgr
2010-10-03 01:29:12 ----D---- C:\Windows\SysWOW64\oobe
2010-10-03 01:29:12 ----D---- C:\Windows\SysWOW64\MUI
2010-10-03 01:29:12 ----D---- C:\Windows\SysWOW64\DriverStore
2010-10-03 01:29:12 ----D---- C:\Windows\SysWOW64\drivers\UMDF
2010-10-03 01:29:12 ----D---- C:\Windows\servicing
2010-10-03 01:29:12 ----D---- C:\Windows\en-US
2010-10-03 01:26:30 ----D---- C:\Program Files (x86)\Windows Sidebar
2010-10-03 01:26:30 ----D---- C:\Program Files (x86)\Windows Photo Viewer
2010-10-03 01:26:30 ----D---- C:\Program Files (x86)\Windows Defender
2010-10-03 01:26:29 ----D---- C:\Windows\SysWOW64\wbem
2010-10-03 01:26:29 ----D---- C:\Windows\SysWOW64\Setup
2010-10-03 01:26:29 ----D---- C:\Windows\SysWOW64\Printing_Admin_Scripts
2010-10-03 01:26:29 ----D---- C:\Windows\SysWOW64\migwiz
2010-10-03 01:26:29 ----D---- C:\Windows\SysWOW64\drivers
2010-10-03 01:26:29 ----D---- C:\Windows\SysWOW64\Dism
2010-10-03 01:26:29 ----D---- C:\Windows\SysWOW64\com
2010-10-03 01:26:29 ----D---- C:\Windows\PolicyDefinitions
2010-10-03 01:26:29 ----D---- C:\Windows\IME
2010-10-03 01:26:29 ----D---- C:\Windows\DigitalLocker
2010-10-02 21:44:40 ----D---- C:\Program Files (x86)\Common Files
2010-10-02 21:37:46 ----HD---- C:\ProgramData
2010-10-02 17:53:13 ----D---- C:\Program Files (x86)\Common Files\Adobe
2010-10-02 17:46:21 ----RSD---- C:\Windows\Fonts
2010-10-02 17:20:47 ----RSD---- C:\Windows\Media
2010-10-02 17:17:22 ----D---- C:\Windows\twain_32
2010-10-02 17:16:03 ----RD---- C:\Program Files
2010-10-02 16:47:34 ----D---- C:\ProgramData\Partner
2010-10-02 16:47:34 ----D---- C:\Program Files (x86)\Google
2010-10-02 16:46:36 ----D---- C:\ProgramData\Norton
2010-10-02 16:44:01 ----D---- C:\Windows\Tasks
2010-10-02 16:44:01 ----D---- C:\ProgramData\Google
2010-10-02 16:25:51 ----HD---- C:\OEM
2010-10-02 16:19:21 ----D---- C:\Windows\Help
2010-10-02 16:18:59 ----D---- C:\Program Files (x86)\Packard Bell
2010-10-02 16:16:52 ----D---- C:\Windows\ShellNew
2010-10-02 16:16:46 ----D---- C:\Program Files (x86)\Microsoft Office
2010-10-02 16:12:46 ----D---- C:\Program Files (x86)\Common Files\microsoft shared
2010-10-02 16:03:11 ----D---- C:\Program Files (x86)\Adobe
2010-10-02 15:54:37 ----RD---- C:\Users
2010-10-02 15:54:26 ----D---- C:\Windows\Panther
2010-10-02 15:41:07 ----D---- C:\Windows\SysWOW64\RTCOM
2010-10-02 15:39:49 ----HD---- C:\Program Files (x86)\Temp

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 nvstor64;nvstor64; C:\Windows\system32\DRIVERS\nvstor64.sys []
R0 pciide;pciide; C:\Windows\system32\DRIVERS\pciide.sys []
R0 PxHlpa64;PxHlpa64; C:\Windows\System32\Drivers\PxHlpa64.sys []
R0 rdyboost;ReadyBoost; C:\Windows\System32\drivers\rdyboost.sys []
R1 avipbb;avipbb; C:\Windows\system32\DRIVERS\avipbb.sys []
R1 cmdGuard;COMODO Internet Security Sandbox Driver; C:\Windows\System32\DRIVERS\cmdguard.sys []
R1 cmdHlp;COMODO Internet Security Helper Driver; C:\Windows\System32\DRIVERS\cmdhlp.sys []
R1 inspect;COMODO Internet Security Firewall Driver; C:\Windows\system32\DRIVERS\inspect.sys []
R1 vwififlt;Virtual WiFi Filter Driver; C:\Windows\system32\DRIVERS\vwififlt.sys []
R2 avgntflt;avgntflt; C:\Windows\system32\DRIVERS\avgntflt.sys []
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\Windows\system32\drivers\RTKVHD64.sys []
R3 netr28x;Ralink 802.11n Extensible Wireless Driver; C:\Windows\system32\DRIVERS\netr28x.sys []
R3 NVHDA;Service for NVIDIA High Definition Audio Driver; C:\Windows\system32\drivers\nvhda64v.sys []
R3 NVNET;NVIDIA nForce 10/100/1000 Mbps Ethernet ; C:\Windows\system32\DRIVERS\nvmf6264.sys []
S3 NVENETFD;NVIDIA nForce Networking Controller Driver; C:\Windows\system32\DRIVERS\nvm62x64.sys []
S3 usbscan;Pilote de scanneur USB; C:\Windows\system32\DRIVERS\usbscan.sys []

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 AdobeActiveFileMonitor7.0;Adobe Active File Monitor V7; c:\Program Files (x86)\Adobe\Photoshop Elements 7.0\PhotoshopElementsFileAgent.exe [2008-12-08 169312]
R2 AntiVirSchedulerService;Avira AntiVir Planificateur; C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe [2010-08-17 135336]
R2 AntiVirService;Avira AntiVir Guard; C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe [2010-08-17 267944]
R2 cmdAgent;COMODO Internet Security Helper Service; C:\Program Files\COMODO\COMODO Internet Security\cmdagent.exe [2010-09-10 2528856]
R2 ForceWare Intelligent Application Manager (IAM);ForceWare Intelligent Application Manager (IAM); C:\Program Files\NVIDIA Corporation\NetworkAccessManager\bin32\nSvcAppFlt.exe [2009-05-29 625184]
R2 Greg_Service;GRegService; C:\Program Files (x86)\Packard Bell\Registration\GregHSRW.exe [2009-06-04 1150496]
R2 nSvcIp;ForceWare IP service; C:\Program Files\NVIDIA Corporation\NetworkAccessManager\bin32\nSvcIp.exe [2009-05-29 207904]
R2 nvsvc;NVIDIA Display Driver Service; C:\Windows\system32\nvvsvc.exe []
R2 Updater Service;Updater Service; C:\Program Files\Packard Bell\Packard Bell Updater\UpdaterService.exe [2009-07-04 240160]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-03-18 130384]
S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2010-03-18 138576]
S3 FLEXnet Licensing Service;FLEXnet Licensing Service; C:\Program Files (x86)\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe [2010-10-02 651720]
S3 Nero BackItUp Scheduler 4.0;Nero BackItUp Scheduler 4.0; C:\Program Files (x86)\Common Files\Nero\Nero BackItUp 4\NBService.exe [2009-07-28 935208]
S3 odserv;Microsoft Office Diagnostics Service; C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE [2008-11-04 441712]
S3 ose;Office Source Engine; C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2006-10-26 145184]
S3 WatAdminSvc;@%SystemRoot%\system32\Wat\WatUX.exe,-601; C:\Windows\system32\Wat\WatAdminSvc.exe []

-----------------EOF-----------------

Et le rapport info :

info.txt logfile of random's system information tool 1.08 2010-10-06 08:03:14

======Uninstall list======

2007 Microsoft Office Suite Service Pack 2 (SP2)-->msiexec /package {90120000-0016-0409-0000-0000000FF1CE} /uninstall {2FC4457D-409E-466F-861F-FB0CB796B53E}
2007 Microsoft Office Suite Service Pack 2 (SP2)-->msiexec /package {90120000-0018-0409-0000-0000000FF1CE} /uninstall {2FC4457D-409E-466F-861F-FB0CB796B53E}
2007 Microsoft Office Suite Service Pack 2 (SP2)-->msiexec /package {90120000-001B-0409-0000-0000000FF1CE} /uninstall {2FC4457D-409E-466F-861F-FB0CB796B53E}
2007 Microsoft Office Suite Service Pack 2 (SP2)-->msiexec /package {90120000-001F-0409-0000-0000000FF1CE} /uninstall {ABDDE972-355B-4AF1-89A8-DA50B7B5C045}
2007 Microsoft Office Suite Service Pack 2 (SP2)-->msiexec /package {90120000-001F-040C-0000-0000000FF1CE} /uninstall {F580DDD5-8D37-4998-968E-EBB76BB86787}
2007 Microsoft Office Suite Service Pack 2 (SP2)-->msiexec /package {90120000-001F-0C0A-0000-0000000FF1CE} /uninstall {187308AB-5FA7-4F14-9AB9-D290383A10D9}
2007 Microsoft Office Suite Service Pack 2 (SP2)-->msiexec /package {90120000-002A-0000-1000-0000000FF1CE} /uninstall {E64BA721-2310-4B55-BE5A-2925F9706192}
2007 Microsoft Office Suite Service Pack 2 (SP2)-->msiexec /package {90120000-002A-0409-1000-0000000FF1CE} /uninstall {DE5A002D-8122-4278-A7EE-3121E7EA254E}
2007 Microsoft Office Suite Service Pack 2 (SP2)-->msiexec /package {90120000-006E-0409-0000-0000000FF1CE} /uninstall {DE5A002D-8122-4278-A7EE-3121E7EA254E}
2007 Microsoft Office Suite Service Pack 2 (SP2)-->msiexec /package {90120000-00A1-0409-0000-0000000FF1CE} /uninstall {2FC4457D-409E-466F-861F-FB0CB796B53E}
2007 Microsoft Office Suite Service Pack 2 (SP2)-->msiexec /package {90120000-0115-0409-0000-0000000FF1CE} /uninstall {DE5A002D-8122-4278-A7EE-3121E7EA254E}
2007 Microsoft Office Suite Service Pack 2 (SP2)-->msiexec /package {90120000-0116-0409-1000-0000000FF1CE} /uninstall {DE5A002D-8122-4278-A7EE-3121E7EA254E}
2007 Microsoft Office Suite Service Pack 2 (SP2)-->msiexec /package {91120000-002F-0000-0000-0000000FF1CE} /uninstall {0B36C6D6-F5D8-4EAF-BF94-4376A230AD5B}
Acrobat.com-->MsiExec.exe /X{287ECFA4-719A-2143-A09B-D6A12DE54E40}
Adobe AIR-->c:\Program Files (x86)\Common Files\Adobe AIR\Versions\1.0\Resources\Adobe AIR Updater.exe -arp:uninstall
Adobe AIR-->MsiExec.exe /I{A2BCA9F1-566C-4805-97D1-7FDC93386723}
Adobe Flash Player 10 ActiveX-->C:\Windows\SysWOW64\Macromed\Flash\uninstall_activeX.exe
Adobe Flash Player 10 Plugin-->C:\Windows\SysWOW64\Macromed\Flash\FlashUtil10k_Plugin.exe -maintain plugin
Adobe Photoshop Elements 7.0-->msiexec /i {5511C07D-A83C-45AD-92B6-42DF99729A3C}
Adobe Photoshop Elements 7.0-->msiexec /i {CB6075D9-F912-40AE-BEA6-E590DA24F16B}
Adobe Photoshop Elements 7.0-->msiexec /i {CB6075D9-F912-40AE-BEA6-E590DA24F16B}
Adobe Reader 9.2 MUI-->MsiExec.exe /I{AC76BA86-7AD7-FFFF-7B44-A91000000001}
Adobe Shockwave Player 11.5-->"C:\Windows\system32\Adobe\Shockwave 11\uninstaller.exe"
Advertising Center-->MsiExec.exe /X{b2ec4a38-b545-4a00-8214-13fe0e915e6d}
Alice Greenfingers-->"C:\Program Files (x86)\Packard Bell GameZone\Alice Greenfingers\Uninstall.exe" "C:\Program Files (x86)\Packard Bell GameZone\Alice Greenfingers\install.log"
Amazonia-->"C:\Program Files (x86)\Packard Bell GameZone\Amazonia\Uninstall.exe" "C:\Program Files (x86)\Packard Bell GameZone\Amazonia\install.log"
Assistant de connexion Windows Live-->MsiExec.exe /I{DCE8CD14-FBF5-4464-B9A4-E18E473546C7}
Avira AntiVir Personal - Free Antivirus-->C:\Program Files (x86)\Avira\AntiVir Desktop\setup.exe /REMOVE
Canon MP Navigator 3.0-->"C:\Program Files (x86)\Canon\MP Navigator 3.0\Maint.exe" /UninstallRemove C:\Program Files (x86)\Canon\MP Navigator 3.0\uninst.ini
Canon Utilities Easy-PhotoPrint-->C:\Program Files (x86)\Canon\Easy-PhotoPrint\uninst.exe uninst.ini
CCleaner-->"C:\Program Files (x86)\CCleaner\uninst.exe"
Chicken Invaders 2-->"C:\Program Files (x86)\Packard Bell GameZone\Chicken Invaders 2\Uninstall.exe" "C:\Program Files (x86)\Packard Bell GameZone\Chicken Invaders 2\install.log"
Choice Guard-->MsiExec.exe /I{8FFC5648-FAF8-43A3-BC8F-42BA1E275C4E}
Dairy Dash-->"C:\Program Files (x86)\Packard Bell GameZone\Dairy Dash\Uninstall.exe" "C:\Program Files (x86)\Packard Bell GameZone\Dairy Dash\install.log"
Dream Day First Home-->"C:\Program Files (x86)\Packard Bell GameZone\Dream Day First Home\Uninstall.exe" "C:\Program Files (x86)\Packard Bell GameZone\Dream Day First Home\install.log"
eBay Worldwide-->MsiExec.exe /I{AAF89271-2594-468D-B578-96B2E30C41C4}
Enregistrement utilisateur de Canon MP160-->C:\Program Files (x86)\Canon\IJEREG\MP160\UNINST.EXE
Farm Frenzy 2-->"C:\Program Files (x86)\Packard Bell GameZone\Farm Frenzy 2\Uninstall.exe" "C:\Program Files (x86)\Packard Bell GameZone\Farm Frenzy 2\install.log"
Galerie de photos Windows Live-->MsiExec.exe /X{44E54A81-9D91-4AA1-9417-80AFF134F5FF}
Granny In Paradise-->"C:\Program Files (x86)\Packard Bell GameZone\Granny In Paradise\Uninstall.exe" "C:\Program Files (x86)\Packard Bell GameZone\Granny In Paradise\install.log"
Heroes of Hellas-->"C:\Program Files (x86)\Packard Bell GameZone\Heroes of Hellas\Uninstall.exe" "C:\Program Files (x86)\Packard Bell GameZone\Heroes of Hellas\install.log"
Identity Card-->C:\Program Files (x86)\Packard Bell\Identity Card\Uninstall.exe
Installation Windows Live-->C:\Program Files (x86)\Windows Live\Installer\wlarp.exe
Installation Windows Live-->MsiExec.exe /I{7370DF47-B4F9-4279-BFC3-3F09919F720D}
Java(TM) 6 Update 21-->MsiExec.exe /X{26A24AE4-039D-4CA4-87B4-2F83216020FF}
Junk Mail filter update-->MsiExec.exe /I{4DE3E3D9-AE81-45DE-9195-3015F7B1DBF3}
Merriam Websters Spell Jam-->"C:\Program Files (x86)\Packard Bell GameZone\Merriam Websters Spell Jam\Uninstall.exe" "C:\Program Files (x86)\Packard Bell GameZone\Merriam Websters Spell Jam\install.log"
Metaboli-->C:\Program Files (x86)\Packard Bell\metaboli\Uninstall.exe
Microsoft Office 2007 Service Pack 2 (SP2)-->msiexec /package {90120000-0015-040C-0000-0000000FF1CE} /uninstall {AE187E0D-EBA5-4EE1-A397-BF1A577CB24C}
Microsoft Office 2007 Service Pack 2 (SP2)-->msiexec /package {90120000-0016-040C-0000-0000000FF1CE} /uninstall {AE187E0D-EBA5-4EE1-A397-BF1A577CB24C}
Microsoft Office 2007 Service Pack 2 (SP2)-->msiexec /package {90120000-0018-040C-0000-0000000FF1CE} /uninstall {AE187E0D-EBA5-4EE1-A397-BF1A577CB24C}
Microsoft Office 2007 Service Pack 2 (SP2)-->msiexec /package {90120000-0019-040C-0000-0000000FF1CE} /uninstall {AE187E0D-EBA5-4EE1-A397-BF1A577CB24C}
Microsoft Office 2007 Service Pack 2 (SP2)-->msiexec /package {90120000-001A-040C-0000-0000000FF1CE} /uninstall {AE187E0D-EBA5-4EE1-A397-BF1A577CB24C}
Microsoft Office 2007 Service Pack 2 (SP2)-->msiexec /package {90120000-001B-040C-0000-0000000FF1CE} /uninstall {AE187E0D-EBA5-4EE1-A397-BF1A577CB24C}
Microsoft Office 2007 Service Pack 2 (SP2)-->msiexec /package {90120000-002A-040C-1000-0000000FF1CE} /uninstall {B165D3C2-40AE-4D39-86F7-E5C87C4264C0}
Microsoft Office 2007 Service Pack 2 (SP2)-->msiexec /package {90120000-0044-040C-0000-0000000FF1CE} /uninstall {AE187E0D-EBA5-4EE1-A397-BF1A577CB24C}
Microsoft Office 2007 Service Pack 2 (SP2)-->msiexec /package {90120000-006E-040C-0000-0000000FF1CE} /uninstall {B165D3C2-40AE-4D39-86F7-E5C87C4264C0}
Microsoft Office 2007 Service Pack 2 (SP2)-->msiexec /package {90120000-00A1-040C-0000-0000000FF1CE} /uninstall {AE187E0D-EBA5-4EE1-A397-BF1A577CB24C}
Microsoft Office 2007 Service Pack 2 (SP2)-->msiexec /package {90120000-00BA-040C-0000-0000000FF1CE} /uninstall {AE187E0D-EBA5-4EE1-A397-BF1A577CB24C}
Microsoft Office 2007 Service Pack 2 (SP2)-->msiexec /package {90120000-0100-040C-0000-0000000FF1CE} /uninstall {AE187E0D-EBA5-4EE1-A397-BF1A577CB24C}
Microsoft Office 2007 Service Pack 2 (SP2)-->msiexec /package {90120000-0101-040C-0000-0000000FF1CE} /uninstall {AE187E0D-EBA5-4EE1-A397-BF1A577CB24C}
Microsoft Office Access MUI (French) 2007-->MsiExec.exe /X{90120000-0015-040C-0000-0000000FF1CE}
Microsoft Office Excel MUI (English) 2007-->MsiExec.exe /X{90120000-0016-0409-0000-0000000FF1CE}
Microsoft Office Excel MUI (French) 2007-->MsiExec.exe /X{90120000-0016-040C-0000-0000000FF1CE}
Microsoft Office Groove MUI (French) 2007-->MsiExec.exe /X{90120000-00BA-040C-0000-0000000FF1CE}
Microsoft Office Home and Student 2007-->"C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE12\Office Setup Controller\setup.exe" /uninstall HOMESTUDENTR /dll OSETUP.DLL
Microsoft Office Home and Student 2007-->MsiExec.exe /X{91120000-002F-0000-0000-0000000FF1CE}
Microsoft Office InfoPath MUI (French) 2007-->MsiExec.exe /X{90120000-0044-040C-0000-0000000FF1CE}
Microsoft Office Language Pack 2007 - French/Français-->"C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE12\Office Setup Controller\setup.exe" /uninstall OMUI.FR-FR /dll OSETUP.DLL
Microsoft Office O MUI (French) 2007-->MsiExec.exe /X{90120000-0100-040C-0000-0000000FF1CE}
Microsoft Office OneNote MUI (English) 2007-->MsiExec.exe /X{90120000-00A1-0409-0000-0000000FF1CE}
Microsoft Office OneNote MUI (French) 2007-->MsiExec.exe /X{90120000-00A1-040C-0000-0000000FF1CE}
Microsoft Office Outlook MUI (French) 2007-->MsiExec.exe /X{90120000-001A-040C-0000-0000000FF1CE}
Microsoft Office PowerPoint MUI (English) 2007-->MsiExec.exe /X{90120000-0018-0409-0000-0000000FF1CE}
Microsoft Office PowerPoint MUI (French) 2007-->MsiExec.exe /X{90120000-0018-040C-0000-0000000FF1CE}
Microsoft Office PowerPoint Viewer 2007 (French)-->MsiExec.exe /X{95120000-00AF-040C-0000-0000000FF1CE}
Microsoft Office Proof (Arabic) 2007-->MsiExec.exe /X{90120000-001F-0401-0000-0000000FF1CE}
Microsoft Office Proof (Dutch) 2007-->MsiExec.exe /X{90120000-001F-0413-0000-0000000FF1CE}
Microsoft Office Proof (English) 2007-->MsiExec.exe /X{90120000-001F-0409-0000-0000000FF1CE}
Microsoft Office Proof (French) 2007-->MsiExec.exe /X{90120000-001F-040C-0000-0000000FF1CE}
Microsoft Office Proof (German) 2007-->MsiExec.exe /X{90120000-001F-0407-0000-0000000FF1CE}
Microsoft Office Proof (Spanish) 2007-->MsiExec.exe /X{90120000-001F-0C0A-0000-0000000FF1CE}
Microsoft Office Proofing (English) 2007-->MsiExec.exe /X{90120000-002C-0409-0000-0000000FF1CE}
Microsoft Office Proofing (French) 2007-->MsiExec.exe /X{90120000-002C-040C-0000-0000000FF1CE}
Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2)-->msiexec /package {90120000-001F-0401-0000-0000000FF1CE} /uninstall {14809F99-C601-4D4A-9391-F1E8FAA964C5}
Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2)-->msiexec /package {90120000-001F-0407-0000-0000000FF1CE} /uninstall {A0516415-ED61-419A-981D-93596DA74165}
Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2)-->msiexec /package {90120000-001F-0413-0000-0000000FF1CE} /uninstall {D66D5A44-E480-4BA4-B4F2-C554F6B30EBB}
Microsoft Office Publisher MUI (French) 2007-->MsiExec.exe /X{90120000-0019-040C-0000-0000000FF1CE}
Microsoft Office Shared MUI (English) 2007-->MsiExec.exe /X{90120000-006E-0409-0000-0000000FF1CE}
Microsoft Office Shared MUI (French) 2007-->MsiExec.exe /X{90120000-006E-040C-0000-0000000FF1CE}
Microsoft Office Shared Setup Metadata MUI (English) 2007-->MsiExec.exe /X{90120000-0115-0409-0000-0000000FF1CE}
Microsoft Office SharePoint Designer 2007 Service Pack 2 (SP2)-->msiexec /package {90120000-0017-040C-0000-0000000FF1CE} /uninstall {CCDA3DD6-E33D-4D75-B7C9-FF585580CE83}
Microsoft Office SharePoint Designer MUI (French) 2007-->MsiExec.exe /X{90120000-0017-040C-0000-0000000FF1CE}
Microsoft Office Suite Activation Assistant-->MsiExec.exe /X{E50AE784-FABE-46DA-A1F8-7B6B56DCB22E}
Microsoft Office Word MUI (English) 2007-->MsiExec.exe /X{90120000-001B-0409-0000-0000000FF1CE}
Microsoft Office Word MUI (French) 2007-->MsiExec.exe /X{90120000-001B-040C-0000-0000000FF1CE}
Microsoft Office X MUI (French) 2007-->MsiExec.exe /X{90120000-0101-040C-0000-0000000FF1CE}
Microsoft Silverlight-->MsiExec.exe /X{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}
Microsoft SQL Server 2005 Compact Edition [ENU]-->MsiExec.exe /I{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}
Microsoft Visual C++ 2005 Redistributable-->MsiExec.exe /X{7299052b-02a4-4627-81f2-1818da5d550d}
Microsoft Visual C++ 2005 Redistributable-->MsiExec.exe /X{837b34e3-7c30-493c-8f6a-2b0f04e2912c}
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148-->MsiExec.exe /X{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}
Microsoft Works-->MsiExec.exe /I{0214A441-A4AB-43A8-8DEF-2F73C5364673}
Mise à jour Microsoft Office Excel 2007 Help (KB963678)-->msiexec /package {90120000-0016-040C-0000-0000000FF1CE} /uninstall {B761869A-B85C-40E2-994C-A1CE78AC8F2C}
Mise à jour Microsoft Office Outlook 2007 Help (KB963677)-->msiexec /package {90120000-001A-040C-0000-0000000FF1CE} /uninstall {51EFB347-1F3D-4BAC-8B79-F056B904FE21}
Mise à jour Microsoft Office Powerpoint 2007 Help (KB963669)-->msiexec /package {90120000-0018-040C-0000-0000000FF1CE} /uninstall {C3DCA38E-005E-41BA-A52A-7C3429F351C3}
Mise à jour Microsoft Office Word 2007 Help (KB963665)-->msiexec /package {90120000-001B-040C-0000-0000000FF1CE} /uninstall {81536A04-DBFB-4DB3-978F-0F284590C223}
Module de compatibilité pour Microsoft Office System 2007-->MsiExec.exe /X{90120000-0020-040C-0000-0000000FF1CE}
Mozilla Firefox (3.6.10)-->C:\Program Files (x86)\Mozilla Firefox\uninstall\helper.exe
MSVCRT-->MsiExec.exe /I{22B775E7-6C42-4FC5-8E10-9A5E3257BD94}
MSXML 4.0 SP2 (KB954430)-->MsiExec.exe /I{86493ADD-824D-4B8E-BD72-8C5DCDC52A71}
MSXML 4.0 SP2 (KB973688)-->MsiExec.exe /I{F662A8E6-F4DC-41A2-901E-8C11F044BDEC}
Nero 9 Essentials-->C:\Program Files (x86)\Common Files\Nero\Nero ProductInstaller 4\SetupX.exe REMOVESERIALNUMBER="2M02-K081-XH39-289P-77C3-0U48-WU01-276P-WAPP-P288-2P9U-AZ0M-1E68-AE4Z-0000"
Nero ControlCenter-->MsiExec.exe /X{bd5ca0da-71ad-43da-b19e-6eee0c9adc9a}
Nero ControlCenter-->MsiExec.exe /X{f4041dce-3fe1-4e18-8a9e-9de65231ee36}
Nero DiscSpeed Help-->MsiExec.exe /X{cc019e3f-59d2-4486-8d4b-878105b62a71}
Nero DiscSpeed-->MsiExec.exe /X{869200db-287a-4dc0-b02b-2b6787fbcd4c}
Nero DriveSpeed Help-->MsiExec.exe /X{e5c7d048-f9b4-4219-b323-8bdb01a2563d}
Nero DriveSpeed-->MsiExec.exe /X{33cf58f5-48d8-4575-83d6-96f574e4d83a}
Nero Express Help-->MsiExec.exe /X{83202942-84b3-4c50-8622-b8c0aa2d2885}
Nero InfoTool Help-->MsiExec.exe /X{20400dbd-e6db-45b8-9b6b-1dd7033818ec}
Nero InfoTool-->MsiExec.exe /X{fbcdfd61-7dcf-4e71-9226-873ba0053139}
Nero Installer-->MsiExec.exe /X{e8a80433-302b-4ff1-815d-fcc8eac482ff}
Nero Online Upgrade-->MsiExec.exe /X{dba84796-8503-4ff0-af57-1747dd9a166d}
Nero StartSmart Help-->MsiExec.exe /X{2348b586-c9ae-46ce-936c-a68e9426e214}
Nero StartSmart OEM-->MsiExec.exe /X{4D43D635-6FDA-4fa5-AA9B-23CF73D058EA}
Nero StartSmart-->MsiExec.exe /X{7748ac8c-18e3-43bb-959b-088faea16fb2}
NeroExpress-->MsiExec.exe /X{595a3116-40bb-4e0f-a2e8-d7951da56270}
neroxml-->MsiExec.exe /I{56C049BE-79E9-4502-BEA7-9754A3E60F9B}
Norton Online Backup-->MsiExec.exe /X{C57BCDE1-7CB9-467D-B3BA-7E119916CDC1}
NVIDIA ForceWare Network Access Manager-->"C:\Program Files (x86)\InstallShield Installation Information\{7CFA46E3-CC2F-4355-82AE-6012DC3633FD}\setup.exe" -runfromtemp -l0x0409 -removeonly
OpenOffice.org 3.2-->MsiExec.exe /I{266517E6-D866-439D-919C-B8B1A52E6080}
Outil de téléchargement Windows Live-->MsiExec.exe /I{205C6BDD-7B73-42DE-8505-9A093F35A238}
Packard Bell GameZone Console-->"C:\Program Files (x86)\Packard Bell GameZone\GameConsole\unins000.exe"
Packard Bell InfoCentre-->C:\Program Files (x86)\Packard Bell\InfoCentre\Uninstall.exe
Packard Bell Recovery Management-->"C:\Program Files (x86)\InstallShield Installation Information\{7F811A54-5A09-4579-90E1-C93498E230D9}\setup.exe" -runfromtemp -l0x40c -removeonly
Packard Bell Registration-->C:\Program Files (x86)\Packard Bell\Registration\Uninstall.exe
Packard Bell ScreenSaver-->C:\Program Files (x86)\Packard Bell\Screensaver\Uninstall.exe
Packard Bell Software Suite SE-->C:\Program Files (x86)\Packard Bell\Software Suite SE\Uninstall.exe
Packard Bell Updater-->"C:\Program Files (x86)\InstallShield Installation Information\{EE171732-BEB4-4576-887D-CB62727F01CA}\setup.exe" -runfromtemp -l0x40c -removeonly
Realtek High Definition Audio Driver-->C:\Program Files\Realtek\Audio\HDA\RtlUpd64.exe -r -m -nrg2709
Security Update for 2007 Microsoft Office System (KB2277947)-->msiexec /package {91120000-002F-0000-0000-0000000FF1CE} /uninstall {5857EE21-03D0-482E-9620-5A30B314A2AE}
Security Update for 2007 Microsoft Office System (KB2288621)-->msiexec /package {91120000-002F-0000-0000-0000000FF1CE} /uninstall {5C497F0B-2061-4CC9-A61C-6B45B867354D}
Security Update for 2007 Microsoft Office System (KB969559)-->msiexec /package {91120000-002F-0000-0000-0000000FF1CE} /uninstall {69F52148-9BF6-4CDC-BF76-103DEAF3DD08}
Security Update for 2007 Microsoft Office System (KB976321)-->msiexec /package {91120000-002F-0000-0000-0000000FF1CE} /uninstall {7F207DCA-3399-40CB-A968-6E5991B1421A}
Security Update for 2007 Microsoft Office System (KB982312)-->msiexec /package {91120000-002F-0000-0000-0000000FF1CE} /uninstall {B0EC5722-241F-4CDA-83B4-AA5846B6F9F4}
Security Update for 2007 Microsoft Office System (KB982331)-->msiexec /package {91120000-002F-0000-0000-0000000FF1CE} /uninstall {E8766951-2B6C-4022-86E8-80D2D1762B76}
Security Update for Microsoft Office Excel 2007 (KB982308)-->msiexec /package {91120000-002F-0000-0000-0000000FF1CE} /uninstall {C3F9A0DC-A5D1-4BB6-870E-2953E5A2487B}
Security Update for Microsoft Office InfoPath 2007 (KB979441)-->msiexec /package {91120000-002F-0000-0000-0000000FF1CE} /uninstall {8CCB781A-CF6B-4FCB-B6D8-59C64DF5C6DB}
Security Update for Microsoft Office PowerPoint 2007 (KB982158)-->msiexec /package {91120000-002F-0000-0000-0000000FF1CE} /uninstall {F5B70033-E79C-4569-90BF-BC9B4E4F3F46}
Security Update for Microsoft Office system 2007 (972581)-->msiexec /package {91120000-002F-0000-0000-0000000FF1CE} /uninstall {3D019598-7B59-447A-80AE-815B703B84FF}
Security Update for Microsoft Office system 2007 (KB974234)-->msiexec /package {91120000-002F-0000-0000-0000000FF1CE} /uninstall {FCD742B9-7A55-44BC-A776-F795F21FEDDC}
Security Update for Microsoft Office Visio Viewer 2007 (KB973709)-->msiexec /package {91120000-002F-0000-0000-0000000FF1CE} /uninstall {71127777-8B2C-4F97-AF7A-6CF8CAC8224D}
Security Update for Microsoft Office Word 2007 (KB2251419)-->msiexec /package {91120000-002F-0000-0000-0000000FF1CE} /uninstall {7E9103DA-253F-41FF-9E83-7C83806C77DA}
Star Defender

10 réponses

Réponse 1 / 10
besoindaide1 Messages postés 552 Statut Membre 99
 
Up
0
Réponse 2 / 10
besoindaide1 Messages postés 552 Statut Membre 99
 
Aidez-moi svp :(
0
Réponse 3 / 10
sherred Messages postés 8605 Statut Membre 351
 
l'infection usb existe toujours, il me semble
C:\Windows\SysWOW64\explorer.exe

tu a desinfecté tout ton pc avec usbfix ?
0
Réponse 4 / 10
besoindaide1 Messages postés 552 Statut Membre 99
 
J'ai réussi à supprimer autorun.inf avec Usbfix, mais je n'ai pas pu enlever les 2 autres virus, donc je les ai mis en quarantaine avec Antivir puis supprimé.
Que dois-je donc faire à présent ?

Merci pour ton aide.
0
sherred Messages postés 8605 Statut Membre 351
 
tu peu me faire un rapport complet de usbfix ?

et tu l'a démarrer en tant qu'admin ? sur W7
0

Vous n’avez pas trouvé la réponse que vous recherchez ?

Posez votre question
Réponse 5 / 10
besoindaide1 Messages postés 552 Statut Membre 99
 
Oui je l'ai démarré en tant qu'admin sur Windows 7.
Voici le rapport avant la mise en quarantaine :

############################## | UsbFix 7.027 | [Suppression]

Utilisateur: Mip (Administrateur) # MIP-PC [Packard Bell imedia S3720]
Mis à jour le 28/09/10 par El Desaparecido / C_XX
Lancé à 19:42:16 | 05/10/2010
Site Web: http://www.teamxscript.org
Contact: FindyKill.Contact@gmail.com

CPU: Intel(R) Core(TM)2 Quad CPU Q8300 @ 2.50GHz
CPU 2: Intel(R) Core(TM)2 Quad CPU Q8300 @ 2.50GHz
Microsoft Windows 7 Édition Familiale Premium (6.1.7600 64-Bit) #
Internet Explorer 8.0.7600.16385

Pare-feu Windows: Activé
RAM -> 4095 Mo
A:\ -> Disque amovible # 1 Mo (1 Mo libre(s) - 59%) [] # FAT
C:\ (%systemdrive%) -> Disque fixe # 458 Go (421 Go libre(s) - 92%) [Packard Bell] # NTFS
D:\ -> Disque fixe # 458 Go (341 Go libre(s) - 74%) [DATA] # NTFS
E:\ -> CD-ROM
J:\ -> Disque amovible # 982 Mo (768 Mo libre(s) - 78%) [MEMUP] # FAT
K:\ -> Disque amovible # 4 Go (2 Go libre(s) - 43%) [UDISK 2.0] # FAT32

################## | Éléments infectieux |

Non supprimé ! A:\MS32DLL.dll.vbs
Non supprimé ! A:\Recycled\ctfmon.exe

################## | Registre |

################## | Mountpoints2 |

################## | Listing |

[02/06/2009 - 10:05:30 | AH | 4096] A:\._.Trashes
[02/06/2009 - 10:05:30 | HD ] A:\.Trashes
[09/05/2007 - 19:20:26 | A | 208896] A:\UDPv271.exe
[30/05/2005 - 18:26:08 | A | 358889] A:\USB Disk Pro v2.55.pdf
[14/03/2008 - 09:27:44 | RSHD ] A:\Recycled
[05/10/2010 - 19:28:32 | N | 3754] A:\MS32DLL.dll.vbs
[05/10/2010 - 19:33:44 | D ] A:\Autorun.inf
[03/10/2010 - 10:35:46 | SHD ] C:\$Recycle.Bin
[05/10/2010 - 19:41:55 | D ] C:\Autorun.inf
[15/08/2009 - 03:00:45 | RASH | 8192] C:\BOOTSECT.BAK
[14/07/2009 - 07:08:56 | SHD ] C:\Documents and Settings
[07/11/2007 - 08:00:40 | A | 17734] C:\eula.1028.txt
[07/11/2007 - 08:00:40 | A | 17734] C:\eula.1031.txt
[07/11/2007 - 08:00:40 | A | 10134] C:\eula.1033.txt
[07/11/2007 - 08:00:40 | A | 17734] C:\eula.1036.txt
[07/11/2007 - 08:00:40 | A | 17734] C:\eula.1040.txt
[07/11/2007 - 08:00:40 | A | 118] C:\eula.1041.txt
[07/11/2007 - 08:00:40 | A | 17734] C:\eula.1042.txt
[07/11/2007 - 08:00:40 | A | 17734] C:\eula.2052.txt
[07/11/2007 - 08:00:40 | A | 17734] C:\eula.3082.txt
[07/11/2007 - 08:00:40 | A | 1110] C:\globdata.ini
[05/10/2010 - 19:37:18 | ASH | 3220623360] C:\hiberfil.sys
[07/11/2007 - 08:44:20 | A | 855040] C:\install.exe
[07/11/2007 - 08:00:40 | A | 843] C:\install.ini
[07/11/2007 - 08:44:20 | A | 75280] C:\install.res.1028.dll
[07/11/2007 - 08:44:20 | A | 95248] C:\install.res.1031.dll
[07/11/2007 - 08:44:20 | A | 90128] C:\install.res.1033.dll
[07/11/2007 - 08:44:20 | A | 96272] C:\install.res.1036.dll
[07/11/2007 - 08:44:20 | A | 94224] C:\install.res.1040.dll
[07/11/2007 - 08:44:20 | A | 80400] C:\install.res.1041.dll
[07/11/2007 - 08:44:20 | A | 78864] C:\install.res.1042.dll
[07/11/2007 - 08:44:20 | A | 74768] C:\install.res.2052.dll
[07/11/2007 - 08:44:20 | A | 95248] C:\install.res.3082.dll
[15/08/2009 - 02:32:44 | RHD ] C:\MSOCache
[02/10/2010 - 16:25:51 | HD ] C:\OEM
[05/10/2010 - 19:37:21 | ASH | 4294168576] C:\pagefile.sys
[14/07/2009 - 05:20:08 | D ] C:\PerfLogs
[02/10/2010 - 17:16:03 | RD ] C:\Program Files
[03/10/2010 - 09:13:03 | RD ] C:\Program Files (x86)
[02/10/2010 - 21:37:46 | HD ] C:\ProgramData
[02/10/2010 - 15:54:24 | SHD ] C:\Recovery
[02/10/2010 - 15:39:49 | A | 1515] C:\RHDSetup.log
[02/10/2010 - 18:00:52 | D ] C:\Shockwave 11
[03/10/2010 - 14:04:44 | SHD ] C:\System Volume Information
[05/10/2010 - 19:43:03 | D ] C:\UsbFix
[05/10/2010 - 19:42:20 | A | 3594] C:\UsbFix.txt
[05/10/2010 - 19:33:59 | A | 2792] C:\UsbFix_Upload_Me_MIP-PC.zip
[02/10/2010 - 15:54:37 | RD ] C:\Users
[07/11/2007 - 08:00:40 | A | 5686] C:\vcredist.bmp
[07/11/2007 - 08:50:40 | A | 1927956] C:\VC_RED.cab
[07/11/2007 - 08:53:12 | A | 242176] C:\VC_RED.MSI
[05/10/2010 - 07:00:40 | HD ] C:\VritualRoot
[05/10/2010 - 05:23:38 | D ] C:\Windows
[02/10/2010 - 15:57:15 | SHD ] D:\$RECYCLE.BIN
[05/10/2010 - 19:33:44 | D ] D:\autorun.inf
[21/08/2010 - 17:28:39 | RD ] D:\ISABELLE-PC
[14/11/2009 - 17:10:16 | RA | 528] D:\MediaID.bin
[18/08/2010 - 15:58:59 | RD ] D:\MIP-PC
[18/09/2010 - 15:04:37 | HD ] D:\msdownld.tmp
[03/10/2010 - 10:57:55 | SHD ] D:\System Volume Information
[21/08/2010 - 17:29:54 | D ] D:\WindowsImageBackup
[16/03/2010 - 16:07:30 | D ] J:\autorun.inf
[29/09/2010 - 13:53:28 | D ] J:\Sémiologie radiologique 29 septembre
[29/09/2010 - 13:52:52 | D ] J:\Physique olivier 29 Septembre
[29/09/2010 - 13:54:06 | D ] J:\Infectiologie 29 septembre
[29/09/2010 - 13:54:24 | D ] J:\Bactériologie 29 septembre
[14/03/2008 - 09:27:18 | RSHD ] J:\Recycled
[27/05/2009 - 10:19:04 | RSHD ] J:\RECYCLER
[22/09/2010 - 20:08:36 | D ] K:\Cours hygiène hospitalière
[01/10/2010 - 08:10:34 | D ] K:\stage d'hygiène
[01/10/2010 - 19:36:08 | A | 257613700] K:\20100930_1112_M2CHE_ADA.m4v
[01/10/2010 - 19:37:18 | A | 346643836] K:\20101001_0910_M1B_NAMB.m4v
[01/10/2010 - 12:19:26 | D ] K:\usb
[28/09/2010 - 14:47:54 | A | 47243928] K:\WS550578.WMA
[28/09/2010 - 15:48:34 | A | 45063418] K:\WS550579.WMA
[05/10/2010 - 19:15:52 | A | 2545346] K:\Calc.bmp
[05/10/2010 - 19:33:46 | D ] K:\Autorun.inf

################## | Vaccin |

(!) Cet ordinateur n'est pas vacciné!

################## | Upload |

Veuillez envoyer le fichier: C:\UsbFix_Upload_Me_MIP-PC.zip
https://www.ionos.fr/?affiliate_id=77097
Merci de votre contribution.

################## | E.O.F |

Et voici le rapport après la mise en quarantaine et la suppression :

############################## | UsbFix 7.027 | [Suppression]

Utilisateur: Mip (Administrateur) # MIP-PC [Packard Bell imedia S3720]
Mis à jour le 28/09/10 par El Desaparecido / C_XX
Lancé à 21:44:13 | 05/10/2010
Site Web: http://www.teamxscript.org
Contact: FindyKill.Contact@gmail.com

CPU: Intel(R) Core(TM)2 Quad CPU Q8300 @ 2.50GHz
CPU 2: Intel(R) Core(TM)2 Quad CPU Q8300 @ 2.50GHz
Microsoft Windows 7 Édition Familiale Premium (6.1.7600 64-Bit) #
Internet Explorer 8.0.7600.16385

Pare-feu Windows: Activé
RAM -> 4095 Mo
A:\ -> Disque amovible # 1 Mo (1 Mo libre(s) - 61%) [] # FAT
C:\ (%systemdrive%) -> Disque fixe # 458 Go (421 Go libre(s) - 92%) [Packard Bell] # NTFS
D:\ -> Disque fixe # 458 Go (341 Go libre(s) - 74%) [DATA] # NTFS
E:\ -> CD-ROM
J:\ -> Disque amovible # 982 Mo (768 Mo libre(s) - 78%) [MEMUP] # FAT

################## | Éléments infectieux |

################## | Registre |

################## | Mountpoints2 |

################## | Listing |

[02/06/2009 - 10:05:30 | AH | 4096] A:\._.Trashes
[02/06/2009 - 10:05:30 | HD ] A:\.Trashes
[09/05/2007 - 19:20:26 | A | 208896] A:\UDPv271.exe
[30/05/2005 - 18:26:08 | A | 358889] A:\USB Disk Pro v2.55.pdf
[14/03/2008 - 09:27:44 | RSHD ] A:\Recycled
[05/10/2010 - 19:33:44 | D ] A:\Autorun.inf
[03/10/2010 - 10:35:46 | SHD ] C:\$Recycle.Bin
[05/10/2010 - 19:41:55 | D ] C:\Autorun.inf
[15/08/2009 - 03:00:45 | RASH | 8192] C:\BOOTSECT.BAK
[14/07/2009 - 07:08:56 | SHD ] C:\Documents and Settings
[07/11/2007 - 08:00:40 | A | 17734] C:\eula.1028.txt
[07/11/2007 - 08:00:40 | A | 17734] C:\eula.1031.txt
[07/11/2007 - 08:00:40 | A | 10134] C:\eula.1033.txt
[07/11/2007 - 08:00:40 | A | 17734] C:\eula.1036.txt
[07/11/2007 - 08:00:40 | A | 17734] C:\eula.1040.txt
[07/11/2007 - 08:00:40 | A | 118] C:\eula.1041.txt
[07/11/2007 - 08:00:40 | A | 17734] C:\eula.1042.txt
[07/11/2007 - 08:00:40 | A | 17734] C:\eula.2052.txt
[07/11/2007 - 08:00:40 | A | 17734] C:\eula.3082.txt
[07/11/2007 - 08:00:40 | A | 1110] C:\globdata.ini
[05/10/2010 - 19:45:04 | ASH | 3220623360] C:\hiberfil.sys
[07/11/2007 - 08:44:20 | A | 855040] C:\install.exe
[07/11/2007 - 08:00:40 | A | 843] C:\install.ini
[07/11/2007 - 08:44:20 | A | 75280] C:\install.res.1028.dll
[07/11/2007 - 08:44:20 | A | 95248] C:\install.res.1031.dll
[07/11/2007 - 08:44:20 | A | 90128] C:\install.res.1033.dll
[07/11/2007 - 08:44:20 | A | 96272] C:\install.res.1036.dll
[07/11/2007 - 08:44:20 | A | 94224] C:\install.res.1040.dll
[07/11/2007 - 08:44:20 | A | 80400] C:\install.res.1041.dll
[07/11/2007 - 08:44:20 | A | 78864] C:\install.res.1042.dll
[07/11/2007 - 08:44:20 | A | 74768] C:\install.res.2052.dll
[07/11/2007 - 08:44:20 | A | 95248] C:\install.res.3082.dll
[15/08/2009 - 02:32:44 | RHD ] C:\MSOCache
[02/10/2010 - 16:25:51 | HD ] C:\OEM
[05/10/2010 - 19:45:06 | ASH | 4294168576] C:\pagefile.sys
[14/07/2009 - 05:20:08 | D ] C:\PerfLogs
[02/10/2010 - 17:16:03 | RD ] C:\Program Files
[03/10/2010 - 09:13:03 | RD ] C:\Program Files (x86)
[02/10/2010 - 21:37:46 | HD ] C:\ProgramData
[02/10/2010 - 15:54:24 | SHD ] C:\Recovery
[02/10/2010 - 15:39:49 | A | 1515] C:\RHDSetup.log
[02/10/2010 - 18:00:52 | D ] C:\Shockwave 11
[03/10/2010 - 14:04:44 | SHD ] C:\System Volume Information
[05/10/2010 - 21:45:27 | D ] C:\UsbFix
[05/10/2010 - 21:44:18 | A | 3391] C:\UsbFix.txt
[05/10/2010 - 19:43:14 | A | 2808] C:\UsbFix_Upload_Me_MIP-PC.zip
[02/10/2010 - 15:54:37 | RD ] C:\Users
[07/11/2007 - 08:00:40 | A | 5686] C:\vcredist.bmp
[07/11/2007 - 08:50:40 | A | 1927956] C:\VC_RED.cab
[07/11/2007 - 08:53:12 | A | 242176] C:\VC_RED.MSI
[05/10/2010 - 07:00:40 | HD ] C:\VritualRoot
[05/10/2010 - 05:23:38 | D ] C:\Windows
[02/10/2010 - 15:57:15 | SHD ] D:\$RECYCLE.BIN
[05/10/2010 - 19:33:44 | D ] D:\autorun.inf
[21/08/2010 - 17:28:39 | RD ] D:\ISABELLE-PC
[14/11/2009 - 17:10:16 | RA | 528] D:\MediaID.bin
[18/08/2010 - 15:58:59 | RD ] D:\MIP-PC
[18/09/2010 - 15:04:37 | HD ] D:\msdownld.tmp
[03/10/2010 - 10:57:55 | SHD ] D:\System Volume Information
[21/08/2010 - 17:29:54 | D ] D:\WindowsImageBackup
[16/03/2010 - 16:07:30 | D ] J:\autorun.inf
[29/09/2010 - 13:53:28 | D ] J:\Sémiologie radiologique 29 septembre
[29/09/2010 - 13:52:52 | D ] J:\Physique olivier 29 Septembre
[29/09/2010 - 13:54:06 | D ] J:\Infectiologie 29 septembre
[29/09/2010 - 13:54:24 | D ] J:\Bactériologie 29 septembre
[14/03/2008 - 09:27:18 | RSHD ] J:\Recycled
[27/05/2009 - 10:19:04 | RSHD ] J:\RECYCLER

################## | Vaccin |

(!) Cet ordinateur n'est pas vacciné!

################## | Upload |

Veuillez envoyer le fichier: C:\UsbFix_Upload_Me_MIP-PC.zip
https://www.ionos.fr/?affiliate_id=77097
Merci de votre contribution.

################## | E.O.F |
0
Réponse 6 / 10
sherred Messages postés 8605 Statut Membre 351
 
ok

* Télécharge ZHPDiag (de Nicolas Coolman). https://www.zebulon.fr/telechargements/securite/systeme/zhpdiag.html
* Laisse toi guider lors de l'installation, il se lancera automatiquement à la fin.
* Clique sur l'icône représentant une loupe (« Lancer le diagnostic »)
* Enregistre le rapport sur ton Bureau à l'aide de l'icône représentant une disquette
Rend toi sur Cijoint http://www.cijoint.fr/
et indique l'emplacement du rapport à l'aide du bouton "Parcourir..." Ensuite Clique sur "Cliquez ici pour déposer le fichier"
Un lien sera généré, copie et colle-le dans ta prochaine réponse.
0
Réponse 7 / 10
besoindaide1 Messages postés 552 Statut Membre 99
 
Voici le lien :

http://www.cijoint.fr/cjlink.php?file=cj201010/cij9tMpBRB.txt

Vu que je dois partir maintenant, peut-on remettre ça à demain (vers 16-17H) ?
0
sherred Messages postés 8605 Statut Membre 351
 
ok , jai rendez vous aussi LOL
0
Réponse 8 / 10
sherred Messages postés 8605 Statut Membre 351
 
je ne vois rien d anormale

fait toujours un scan rapide MBAM
0
Réponse 9 / 10
besoindaide1 Messages postés 552 Statut Membre 99
 
Voici le rapport de MBAM :

Malwarebytes' Anti-Malware 1.46
www.malwarebytes.org

Version de la base de données: 4770

Windows 6.1.7600
Internet Explorer 8.0.7600.16385

07/10/2010 16:47:08
mbam-log-2010-10-07 (16-47-08).txt

Type d'examen: Examen complet (C:\|D:\|)
Elément(s) analysé(s): 235029
Temps écoulé: 30 minute(s), 5 seconde(s)

Processus mémoire infecté(s): 0
Module(s) mémoire infecté(s): 0
Clé(s) du Registre infectée(s): 0
Valeur(s) du Registre infectée(s): 0
Elément(s) de données du Registre infecté(s): 0
Dossier(s) infecté(s): 0
Fichier(s) infecté(s): 0

Processus mémoire infecté(s):
(Aucun élément nuisible détecté)

Module(s) mémoire infecté(s):
(Aucun élément nuisible détecté)

Clé(s) du Registre infectée(s):
(Aucun élément nuisible détecté)

Valeur(s) du Registre infectée(s):
(Aucun élément nuisible détecté)

Elément(s) de données du Registre infecté(s):
(Aucun élément nuisible détecté)

Dossier(s) infecté(s):
(Aucun élément nuisible détecté)

Fichier(s) infecté(s):
(Aucun élément nuisible détecté)

Visiblement, je crois qu'il n'y a rien, par contre est-ce que cette ligne est normale :
C:\Windows\SysWOW64\explorer.exe
?
0
sherred Messages postés 8605 Statut Membre 351
 
heu , je ne sais pas , sur W7 , c'est peu etre normale
0
Réponse 10 / 10
besoindaide1 Messages postés 552 Statut Membre 99
 
Etrange, je viens de regarder sur un ancien rapport et cette ligne n'y était pas :/
0

Discussions similaires

processus inactif du systeme
edsurf64 -
mick8 -

29 réponses
Uc à 100 %, processus inactif a 99 %
nono22461 -
nono22461 -

6 réponses
Processus de la déclaration TVA
comptabilit -
rgsr5 -

3 réponses
C'est quoi le processus inactif du system ?
siltex -
Utilisateur anonyme -

5 réponses
CHKDSK dans cmd accès refusé
leam451 -
leam451 -

9 réponses