PC infecté
Résolu/Fermé
pohpey
Messages postés
218
Date d'inscription
mardi 26 août 2008
Statut
Membre
Dernière intervention
31 décembre 2023
-
2 avril 2012 à 15:52
H3RV3 Messages postés 3591 Date d'inscription samedi 17 octobre 2009 Statut Contributeur sécurité Dernière intervention 7 novembre 2014 - 14 avril 2012 à 11:18
H3RV3 Messages postés 3591 Date d'inscription samedi 17 octobre 2009 Statut Contributeur sécurité Dernière intervention 7 novembre 2014 - 14 avril 2012 à 11:18
A voir également:
- PC infecté
- Test performance pc - Guide
- Reinitialiser pc - Guide
- Pc lent - Guide
- Whatsapp pc - Télécharger - Messagerie
- Audacity enregistrer son pc - Guide
31 réponses
H3RV3
Messages postés
3591
Date d'inscription
samedi 17 octobre 2009
Statut
Contributeur sécurité
Dernière intervention
7 novembre 2014
280
2 avril 2012 à 16:07
2 avril 2012 à 16:07
Salut,
Peux-tu détailler ce comportement bizarre
On va analyser ton PC :
● Télécharge ZHPDiag_silent.exe sur ton bureau. Ceci installera ZHPDiag de Nicolas Coolman.
● Double clique sur ZHPDiag_silent.exe
● Patiente pendant le scan.
● Copie/colle le lien fourni à la fin dans ta réponse.
Note :
Si tu as des alertes de ton antivirus et/ou pare-feu, ignore-les et autorise l'outil à accéder à internet.
Peux-tu détailler ce comportement bizarre
On va analyser ton PC :
● Télécharge ZHPDiag_silent.exe sur ton bureau. Ceci installera ZHPDiag de Nicolas Coolman.
● Double clique sur ZHPDiag_silent.exe
● Patiente pendant le scan.
● Copie/colle le lien fourni à la fin dans ta réponse.
Note :
Si tu as des alertes de ton antivirus et/ou pare-feu, ignore-les et autorise l'outil à accéder à internet.
pohpey
Messages postés
218
Date d'inscription
mardi 26 août 2008
Statut
Membre
Dernière intervention
31 décembre 2023
14
2 avril 2012 à 16:20
2 avril 2012 à 16:20
Merci pour ta réponse.
En fait mon ordi au bout d'un moment ralenti et ne répond plus.
Là je me suis mis en mode sans échec, mon pc est stable.
Voici pour le diagnostic :
https://pjjoint.malekal.com/files.php?read=ZHPDiag_20120402_v7q12k12t5k5
Rapport de ZHPDiag v1.28.34 par Nicolas Coolman, Update du 06/03/2012
Run by Administrateur at 02/04/2012 16:15:56
Web site : http://www.premiumorange.com/zeb-help-process/zhpdiag.html
Web site : http://nicolascoolman.skyrock.com/
State :
---\\ Web Browser
MSIE: Internet Explorer v8.0.6001.18702 (Defaut)
MFIE: Mozilla Firefox 9.0.1 v9.0.1
---\\ Windows Product Information
~ Langage: Français
Windows XP Home Edition Service Pack 3 (Build 2600)
Windows Automatic Updates : OK
Windows Genuine Advantage : OK
---\\ System Information
~ Processor: x86 Family 15 Model 28 Stepping 0, AuthenticAMD
~ Operating System: 32 Bits
Boot mode: Sans échec avec prise en charge du réseau (Fail-safe with network boot)
Total RAM: 1023 MB (67% free)
System Restore: Activé (Enable)
System drive C: has 115 GB (49%) free of 233 GB
---\\ Logged in mode
~ Computer Name: USER-E1E990331F
~ User Name: Administrateur
~ All Users Names: User, SUPPORT_388945a0, HelpAssistant, ASPNET, Administrateur,
~ Unselected Option: O45,O61,O62,O65,O80,O82
Logged in as Administrator
---\\ Environnement Variables
~ System Unit : C:\
~ %AppData% : C:\Documents and Settings\Administrateur\Application Data\
~ %Desktop% : C:\Documents and Settings\Administrateur\Bureau\
~ %Favorites% : C:\Documents and Settings\Administrateur\Favorites\
~ %LocalAppData% : C:\Documents and Settings\Administrateur\Local Settings\Application Data\
~ %StartMenu% : C:\Documents and Settings\Administrateur\Menu Démarrer\
~ %Windir% : C:\WINDOWS\
~ %System% : C:\WINDOWS\system32\
---\\ DOS/Devices
A:\ Floppy drive, Flash card reader, USB Key (Not Inserted)
C:\ Hard drive, Flash drive, Thumb drive (Free 115 Go of 233 Go)
D:\ CD-ROM drive (Not Inserted)
F:\ Floppy drive, Flash card reader, USB Key (Not Inserted)
G:\ Floppy drive, Flash card reader, USB Key (Not Inserted)
H:\ Floppy drive, Flash card reader, USB Key (Not Inserted)
I:\ Floppy drive, Flash card reader, USB Key (Not Inserted)
---\\ Security Center & Tools Informations
[HKLM\SOFTWARE\Microsoft\Security Center] AntiVirusOverride: OK
[HKLM\SOFTWARE\Microsoft\Security Center] AntiVirusDisableNotify: OK
[HKLM\SOFTWARE\Microsoft\Security Center] FirewallDisableNotify: OK
[HKLM\SOFTWARE\Microsoft\Security Center] FirewallOverride: OK
[HKLM\SOFTWARE\Microsoft\Security Center] UpdatesDisableNotify: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\system] EnableLUA: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\NOHIDDEN] CheckedValue: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\SHOWALL] CheckedValue: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Associations] Application: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Associations] Intl: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Associations] XMLLookup: OK
[HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon] Shell: OK
[HKCU\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows] Load: OK
[HKLM\SYSTEM\CurrentControlSet\Services] wscsvc : OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\WindowsUpdate\Auto Update\Results\Install] LastSuccessTime : OK
~ Scan Security Center in 00mn 00s
---\\ Recherche particulière de fichiers génériques
[MD5.F2317622D29F9FF0F88AEECD5F60F0DD] - (.Microsoft Corporation - Explorateur Windows.) (.14/04/2008 - 03:34:03.) -- C:\WINDOWS\Explorer.exe [1037824]
[MD5.93AD0B78C7357A05F50E594EC7C22300] - (.Microsoft Corporation - Exécuter une DLL en tant qu'application.) (.14/04/2008 - 03:34:20.) -- C:\WINDOWS\system32\rundll32.exe [33792]
[MD5.5C72F65D2F038E0BF481326423F9D266] - (.Microsoft Corporation - Internet Extensions for Win32.) (.17/12/2011 - 20:43:31.) -- C:\WINDOWS\system32\wininet.dll [916992]
[MD5.DD73D6B9F6B4CB630CF35B438B540174] - (.Microsoft Corporation - Application d'ouverture de session Windows NT.) (.14/04/2008 - 03:34:28.) -- C:\WINDOWS\system32\Winlogon.exe [512000]
[MD5.1E44BC1E83D8FD2305F8D452DB109CF9] - (.Microsoft Corporation - Ancillary Function Driver for WinSock.) (.17/08/2011 - 14:49:54.) -- C:\WINDOWS\system32\drivers\AFD.sys [138496]
[MD5.9F3A2F5AA6875C72BF062C712CFA2674] - (.Microsoft Corporation - IDE/ATAPI Port Driver.) (.13/04/2008 - 19:40:30.) -- C:\WINDOWS\system32\drivers\atapi.sys [96512]
[MD5.C885B02847F5D2FD45A24E219ED93B32] - (.Microsoft Corporation - CD-ROM File System Driver.) (.13/04/2008 - 20:14:21.) -- C:\WINDOWS\system32\drivers\Cdfs.sys [63744]
[MD5.1F4260CC5B42272D71F79E570A27A4FE] - (.Microsoft Corporation - SCSI CD-ROM Driver.) (.13/04/2008 - 19:40:46.) -- C:\WINDOWS\system32\drivers\Cdrom.sys [62976]
[MD5.31F923EB2170FC172C81ABDA0045D18C] - (.Microsoft Corporation - Pilote de cryptographie FIPS.) (.14/04/2008 - 02:57:38.) -- C:\WINDOWS\system32\drivers\Fips.sys [44672]
[MD5.573C7D0A32852B48F3058CFD8026F511] - (.Windows (R) Server 2003 DDK provider - High Definition Audio Bus Driver v1.0a.) (.13/04/2008 - 17:36:05.) -- C:\WINDOWS\system32\drivers\HDAudBus.sys [144384]
[MD5.A09BDC4ED10E3B2E0EC27BB94AF32516] - (.Microsoft Corporation - Pilote de port i8042.) (.14/04/2008 - 03:00:52.) -- C:\WINDOWS\system32\drivers\i8042prt.sys [54144]
[MD5.083A052659F5310DD8B6A6CB05EDCF8E] - (.Microsoft Corporation - IMAPI Kernel Driver.) (.13/04/2008 - 19:40:58.) -- C:\WINDOWS\system32\drivers\Imapi.sys [42112]
[MD5.CC748EA12C6EFFDE940EE98098BF96BB] - (.Microsoft Corporation - IP Network Address Translator.) (.13/04/2008 - 19:57:15.) -- C:\WINDOWS\system32\drivers\IpNat.sys [152832]
[MD5.23C74D75E36E7158768DD63D92789A91] - (.Microsoft Corporation - IPSec Driver.) (.13/04/2008 - 20:19:42.) -- C:\WINDOWS\system32\drivers\IPSec.sys [75264]
[MD5.7D304A5EB4344EBEEAB53A2FE3FFB9F0] - (.Microsoft Corporation - Windows NT SMB Minirdr.) (.15/07/2011 - 14:29:31.) -- C:\WINDOWS\system32\drivers\MRxSmb.sys [456320]
[MD5.74B2B2F5BEA5E9A3DC021D685551BD3D] - (.Microsoft Corporation - MBT Transport driver.) (.13/04/2008 - 20:21:00.) -- C:\WINDOWS\system32\drivers\netBT.sys [162816]
[MD5.78A08DD6A8D65E697C18E1DB01C5CDCA] - (.Microsoft Corporation - NT File System Driver.) (.13/04/2008 - 20:15:53.) -- C:\WINDOWS\system32\drivers\ntfs.sys [574976]
[MD5.8FD0BDBEA875D06CCF6C945CA9ABAF75] - (.Microsoft Corporation - Pilote de port parallèle.) (.14/04/2008 - 03:09:40.) -- C:\WINDOWS\system32\drivers\Parport.sys [80384]
[MD5.11B4A627BC9614B885C4969BFA5FF8A6] - (.Microsoft Corporation - RAS L2TP mini-port/call-manager driver.) (.13/04/2008 - 20:19:43.) -- C:\WINDOWS\system32\drivers\Rasl2tp.sys [51328]
[MD5.15CABD0F7C00C47C70124907916AF3F1] - (.Microsoft Corporation - Microsoft RDP Device redirector.) (.13/04/2008 - 19:32:51.) -- C:\WINDOWS\system32\drivers\rdpdr.sys [196224]
[MD5.D8EB2A7904DB6C916EB5361878DDCBAE] - (.Microsoft Corporation - Pilote de filtre audio Livre rouge.) (.14/04/2008 - 02:57:34.) -- C:\WINDOWS\system32\drivers\redbook.sys [58752]
[MD5.46DE1126684369BACE4849E4FC8C43CA] - (.Microsoft Corporation - Pilote de cliché instantané du volume.) (.14/04/2008 - 02:56:04.) -- C:\WINDOWS\system32\drivers\volsnap.sys [53376]
~ Scan Generic Processes in 00mn 00s
---\\ Etat des fichiers cachés (Caché/Total)
~ Mes images (My Pictures) : 0/0
~ Mes musiques (My Musics) : 0/0
~ Mes Videos (My Video) : 0/0
~ Mes Favoris (My Favorites) : Non accessible (Not found)
~ Mes Documents (My Documents) : 0/0
~ Mon Bureau (My Desktop) : 0/4
~ Menu demarrer (Programs) : 5/15
~ Scan Hidden Files in 00mn 00s
---\\ Processus lancés
[MD5.B60DDDD2D63CE41CB8C487FCFBB6419E] - (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files\Internet Explorer\iexplore.exe [638816] [PID.1856]
[MD5.E897110EE5E67FABB83B154DF9C68D6A] - (...) -- C:\Documents and Settings\Administrateur\Local Settings\Temporary Internet Files\Content.IE5\624S3QZ6\ZHPDiag_silent[1].exe [794216] [PID.1520]
[MD5.46AE705AC463F50AC714C8084A09A2A3] - (.Nicolas Coolman - Diagnostic Tool.) -- C:\Program Files\ZHPDiag\ZHPDiag.exe [2211328] [PID.836]
~ Scan Processes Running in 00mn 00s
---\\ Mozilla Firefox, Plugins,Demarrage,Recherche,Extensions (P2,M0,M1,M2,M3)
M3 - MFPP: Plugins - [Administrateur] -- C:\Program Files\Mozilla FireFox\searchplugins\amazon-france.xml
M3 - MFPP: Plugins - [Administrateur] -- C:\Program Files\Mozilla FireFox\searchplugins\bing.xml
M3 - MFPP: Plugins - [Administrateur] -- C:\Program Files\Mozilla FireFox\searchplugins\cnrtl-tlfi-fr.xml
M3 - MFPP: Plugins - [Administrateur] -- C:\Program Files\Mozilla FireFox\searchplugins\eBay-france.xml
M3 - MFPP: Plugins - [Administrateur] -- C:\Program Files\Mozilla FireFox\searchplugins\google.xml
M3 - MFPP: Plugins - [Administrateur] -- C:\Program Files\Mozilla FireFox\searchplugins\wikipedia-fr.xml
M3 - MFPP: Plugins - [Administrateur] -- C:\Program Files\Mozilla FireFox\searchplugins\yahoo-france.xml
P2 - FPN:Firefox Plugin Navigator . (.Sun Microsystems, Inc. - NPRuntime Script Plug-in Library for Java(TM) Deploy.) -- C:\Program Files\Mozilla Firefox\Plugins\npdeployJava1.dll
P2 - FPN:Firefox Plugin Navigator . (.DivX, Inc - npdivxplayerplugin.) -- C:\Program Files\Mozilla Firefox\Plugins\npDivxPlayerPlugin.dll
P2 - FPN:Firefox Plugin Navigator . (.Microsoft Corporation - 1.9.0009.1.) -- C:\Program Files\Mozilla Firefox\Plugins\npLegitCheckPlugin.dll
P2 - FPN:Firefox Plugin Navigator . (.Adobe Systems Inc. - Adobe PDF Plug-In For Firefox and Netscape 10.1.2.) -- C:\Program Files\Mozilla Firefox\Plugins\nppdf32.dll
P2 - FPN:Firefox Plugin Navigator . (.Apple Inc. - The QuickTime Plugin allows you to view a wide variety of multimedia c.) -- C:\Program Files\Mozilla Firefox\Plugins\npqtplugin.dll
P2 - FPN:Firefox Plugin Navigator . (.Apple Inc. - The QuickTime Plugin allows you to view a wide variety of multimedia c.) -- C:\Program Files\Mozilla Firefox\Plugins\npqtplugin2.dll
P2 - FPN:Firefox Plugin Navigator . (.Apple Inc. - The QuickTime Plugin allows you to view a wide variety of multimedia c.) -- C:\Program Files\Mozilla Firefox\Plugins\npqtplugin3.dll
P2 - FPN:Firefox Plugin Navigator . (.Apple Inc. - The QuickTime Plugin allows you to view a wide variety of multimedia c.) -- C:\Program Files\Mozilla Firefox\Plugins\npqtplugin4.dll
P2 - FPN:Firefox Plugin Navigator . (.Apple Inc. - The QuickTime Plugin allows you to view a wide variety of multimedia c.) -- C:\Program Files\Mozilla Firefox\Plugins\npqtplugin5.dll
P2 - FPN:Firefox Plugin Navigator . (.Apple Inc. - The QuickTime Plugin allows you to view a wide variety of multimedia c.) -- C:\Program Files\Mozilla Firefox\Plugins\npqtplugin6.dll
P2 - FPN:Firefox Plugin Navigator . (.Apple Inc. - The QuickTime Plugin allows you to view a wide variety of multimedia c.) -- C:\Program Files\Mozilla Firefox\Plugins\npqtplugin7.dll
P2 - FPN: [HKLM] [@adobe.com/FlashPlayer] - (...) -- C:\WINDOWS\system32\Macromed\Flash\NPSWF32.dll
P2 - FPN: [HKLM] [@adobe.com/ShockwavePlayer] - (.Adobe Systems, Inc. - Adobe Shockwave for Director Netscape plug-in, version 11.6.1.629.) -- C:\WINDOWS\system32\Adobe\Director\np32dsw.dll
P2 - FPN: [HKLM] [@canon.com/EPPEX] - (.CANON INC. - CANON iMAGE GATEWAY Album Plugin Utility Module.) -- C:\Program Files\Canon\Easy-PhotoPrint EX\NPEZFFPI.dll
P2 - FPN: [HKLM] [@divx.com/DivX Browser Plugin,version=1.0.0] - (.DivX,Inc. - DivX Web Player version 2.0.2.39.) -- C:\Program Files\DivX\DivX Plus Web Player\npdivx32.dll
P2 - FPN: [HKLM] [@divx.com/DivX Player Plugin,version=1.0.0] - (...) -- C:\Program Files\DivX\DivX Player\npDivxPlayerPlugin.dll (.not file.)
P2 - FPN: [HKLM] [@Google.com/GoogleEarthPlugin] - (.Google - GEPlugin.) -- C:\Program Files\Google\Google Earth\plugin\npgeplugin.dll
P2 - FPN: [HKLM] [@google.com/npPicasa2,version=2.0.0] - (...) -- C:\Program Files\Picasa2\npPicasa2.dll (.not file.)
P2 - FPN: [HKLM] [@java.com/JavaPlugin] - (.Sun Microsystems, Inc. - Next Generation Java Plug-in 1.6.0_26 for Mozilla browsers.) -- C:\Program Files\Java\jre6\bin\new_plugin\npjp2.dll
P2 - FPN: [HKLM] [@microsoft.com/WPF,version=3.5] - (.Microsoft Corporation - Windows Presentation Foundation (WPF) plug-in for Mozilla browsers.) -- C:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll
P2 - FPN: [HKLM] [@pack.google.com/Google Updater;version=14] - (.Google - Google Updater plugin<br><a href="http://pack.google.com/">http://pack.) -- C:\Program Files\Google\Google Updater\2.4.2432.1652\npCIDetect14.dll
P2 - FPN: [HKLM] [@tools.google.com/Google Update;version=3] - (.Google Inc. - Google Update.) -- C:\Program Files\Google\Update\1.3.21.111\npGoogleUpdate3.dll
P2 - FPN: [HKLM] [@tools.google.com/Google Update;version=9] - (.Google Inc. - Google Update.) -- C:\Program Files\Google\Update\1.3.21.111\npGoogleUpdate3.dll
P2 - FPN: [HKLM] [Adobe Reader] - (.Adobe Systems Inc. - Adobe PDF Plug-In For Firefox and Netscape 10.1.2.) -- C:\Program Files\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll
~ Scan Firefox Browser in 00mn 00s
---\\ Internet Explorer, Démarrage,Recherche,URLSearchHook, Phishing (R0,R1,R3,R4)
R0 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = https://www.microsoft.com/fr-fr/
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Extensions Off Page = about:noadd-ons
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Security Risk Page = about:securityrisk
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\AboutURLs,Tabs = res://ieframe.dll/tabswelcome.htm
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Search,SearchAssistant = https://www.bing.com/?toHttps=1&redig=17DBE7D168544FA98200E890A8051984
~ Scan IE Browser in 00mn 00s
---\\ Internet Explorer, Proxy Management (R5)
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyServer = no key
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyEnable = 0
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,MigrateProxy = 1
~ Scan Proxy management in 00mn 00s
---\\ Modification d'une valeur Ini (Changed inifile value, mapped to Registry) (F2)
F2 - REG:system.ini: UserInit=C:\WINDOWS\system32\userinit.exe,
F2 - REG:system.ini: VMApplet=rundll32 shell32,Control_RunDLL "sysdm.cpl"
~ Scan Keys in 00mn 00s
---\\ Redirection du fichier Hosts (O1)
~ Le fichier hosts est sain (The hosts file is clean).
~ Scan Hosts File in 00mn 00s
~ Nombre de lignes (Lines number): 1
---\\ Browser Helper Objects de navigateur (O2)
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} . (.Adobe Systems Incorporated - Adobe PDF Helper for Internet Explorer.) -- C:\Program Files\Fichiers communs\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: Canon Easy-WebPrint EX BHO - {3785D0AD-BFFF-47F6-BF5B-A587C162FED9} . (.CANON INC. - Easy-WebPrint EX.) -- C:\Program Files\Canon\Easy-WebPrint EX\ewpexbho.dll
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} . (.Sun Microsystems, Inc. - Java(TM) Platform SE binary.) -- C:\Program Files\Java\jre6\bin\ssv.dll
O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} . (.Microsoft Corporation - WindowsLiveLogin.dll.) -- C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: BHO Barre de Confiance - {988B07F5-7392-455A-8A1F-64935CB8B6ED} . (.Euro-Information - Barre de Confiance.) -- C:\Program Files\BarreConfCMCIC\TAPbar.dll
O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} . (.Google Inc. - GoogleToolbarNotifier.) -- C:\Program Files\Google\GoogleToolbarNotifier\5.7.6406.1642\swg.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} . (.Sun Microsystems, Inc. - Java(TM) Platform SE binary.) -- C:\Program Files\Java\jre6\bin\jp2ssv.dll
O2 - BHO: JQSIEStartDetectorImpl - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} . (.Sun Microsystems, Inc. - Java(TM) Quick Starter binary.) -- C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll
~ Scan BHO in 00mn 00s
---\\ Internet Explorer Toolbars (O3)
O3 - Toolbar: Barre de confiance - {55BDF3B0-C0A8-481A-B8A6-01CD2BE0F3FD} . (.Euro-Information - Barre de Confiance.) -- C:\Program Files\BarreConfCMCIC\TAPbar.dll
O3 - Toolbar: Canon Easy-WebPrint EX - {759D9886-0C6F-4498-BAB6-4A5F47C6C72F} . (.CANON INC. - Easy-WebPrint EX.) -- C:\Program Files\Canon\Easy-WebPrint EX\ewpexhlp.dll
~ Scan Toolbar in 00mn 00s
---\\ Applications démarrées par registre & par dossier (O4)
O4 - HKLM\..\Run: [NVRaidService] . (.NVIDIA Corporation - Raid Service U.S. English Resources.) -- C:\WINDOWS\system32\nvraidservice.exe
O4 - HKLM\..\Run: [SoundMan] . (.Realtek Semiconductor Corp. - Realtek Sound Manager.) -- C:\WINDOWS\SOUNDMAN.exe
O4 - HKLM\..\Run: [Adobe ARM] . (.Adobe Systems Incorporated - Adobe Reader and Acrobat Manager.) -- C:\Program Files\Fichiers communs\Adobe\ARM\1.0\AdobeARM.exe
O4 - HKLM\..\Run: [avgnt] . (.Avira Operations GmbH & Co. KG - Avira System Tray Tool.) -- C:\Program Files\Avira\AntiVir Desktop\avgnt.exe
O4 - HKCU\..\Run: [CTFMON.EXE] . (.Microsoft Corporation - CTF Loader.) -- C:\WINDOWS\system32\ctfmon.exe
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] . (.Microsoft Corporation - CTF Loader.) -- C:\WINDOWS\system32\ctfmon.exe
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] . (.Microsoft Corporation - CTF Loader.) -- C:\WINDOWS\system32\ctfmon.exe
O4 - HKUS\S-1-5-21-606747145-1647877149-839522115-500\..\Run: [CTFMON.EXE] . (.Microsoft Corporation - CTF Loader.) -- C:\WINDOWS\system32\ctfmon.exe
~ Scan Application in 00mn 00s
---\\ Autres liens utilisateurs (O4)
O4 - Global Startup: C:\Documents And Settings\All Users\Menu Démarrer\Programmes\Adobe ExtendScript Toolkit 2.lnk . (.Adobe Systems, Incorporated.) -- C:\Program Files\Adobe\Adobe Utilities\ExtendScript Toolkit 2\ExtendScript Toolkit 2.exe
O4 - Global Startup: C:\Documents And Settings\All Users\Menu Démarrer\Programmes\Adobe Photoshop Elements 6.0.lnk . (.Adobe Systems Incorporated.) -- C:\Program Files\Adobe\Photoshop Elements 6.0\Photoshop Elements 6.0.exe
O4 - Global Startup: C:\Documents And Settings\All Users\Menu Démarrer\Programmes\Adobe Reader X.lnk . (...) -- C:\WINDOWS\Installer\{AC76BA86-7AD7-1036-7B44-AA1000000001}\SC_Reader.ico
O4 - Global Startup: C:\Documents And Settings\All Users\Menu Démarrer\Programmes\Apple Software Update.lnk . (...) -- C:\WINDOWS\Installer\{789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}\AppleSoftwareUpdateIco.exe
O4 - Global Startup: C:\Documents And Settings\All Users\Menu Démarrer\Programmes\foobar2000.lnk . (...) -- C:\Program Files\foobar2000\foobar2000.exe
O4 - Global Startup: C:\Documents And Settings\All Users\Menu Démarrer\Programmes\Microsoft Access.lnk . (...) -- C:\WINDOWS\Installer\{0000040C-78E1-11D2-B60F-006097C998E7}\accicons.exe
O4 - Global Startup: C:\Documents And Settings\All Users\Menu Démarrer\Programmes\Microsoft Excel.lnk . (...) -- C:\WINDOWS\Installer\{0000040C-78E1-11D2-B60F-006097C998E7}\xlicons.exe
O4 - Global Startup: C:\Documents And Settings\All Users\Menu Démarrer\Programmes\Microsoft FrontPage.lnk . (...) -- C:\WINDOWS\Installer\{0000040C-78E1-11D2-B60F-006097C998E7}\misc.exe
O4 - Global Startup: C:\Documents And Settings\All Users\Menu Démarrer\Programmes\Microsoft Outlook.lnk . (...) -- C:\WINDOWS\Installer\{0000040C-78E1-11D2-B60F-006097C998E7}\outicon.exe
O4 - Global Startup: C:\Documents And Settings\All Users\Menu Démarrer\Programmes\Microsoft PowerPoint.lnk . (...) -- C:\WINDOWS\Installer\{0000040C-78E1-11D2-B60F-006097C998E7}\pptico.exe
O4 - Global Startup: C:\Documents And Settings\All Users\Menu Démarrer\Programmes\Mozilla Firefox.lnk . (.Mozilla Corporation.) -- C:\Program Files\Mozilla Firefox\firefox.exe
O4 - Global Startup: C:\Documents And Settings\All Users\Menu Démarrer\Programmes\Windows Movie Maker.lnk . (.Microsoft Corporation.) -- C:\Program Files\Movie Maker\moviemk.exe
O4 - Global Startup: C:\Documents And Settings\User\Menu Démarrer\Programmes\Assistance à distance.lnk . (.Microsoft Corporation.) -- C:\WINDOWS\system32\rcimlby.exe
O4 - Global Startup: C:\Documents And Settings\User\Menu Démarrer\Programmes\Internet Explorer.lnk . (.Microsoft Corporation.) -- C:\Program Files\Internet Explorer\iexplore.exe
O4 - Global Startup: C:\Documents And Settings\User\Menu Démarrer\Programmes\Outlook Express.lnk . (.Microsoft Corporation.) -- C:\Program Files\Outlook Express\msimn.exe
O4 - Global Startup: C:\Documents And Settings\User\Menu Démarrer\Programmes\Windows Media Player.lnk . (.Microsoft Corporation.) -- C:\Program Files\Windows Media Player\wmplayer.exe
O4 - Global Startup: C:\Documents And Settings\Administrateur\Menu Démarrer\Programmes\Assistance à distance.lnk . (.Microsoft Corporation.) -- C:\WINDOWS\system32\rcimlby.exe
O4 - Global Startup: C:\Documents And Settings\All Users\Menu Démarrer\Programmes\Adobe ExtendScript Toolkit 2.lnk . (.Adobe Systems, Incorporated.) -- C:\Program Files\Adobe\Adobe Utilities\ExtendScript Toolkit 2\ExtendScript Toolkit 2.exe
O4 - Global Startup: C:\Documents And Settings\All Users\Menu Démarrer\Programmes\Adobe Photoshop Elements 6.0.lnk . (.Adobe Systems Incorporated.) -- C:\Program Files\Adobe\Photoshop Elements 6.0\Photoshop Elements 6.0.exe
O4 - Global Startup: C:\Documents And Settings\All Users\Menu Démarrer\Programmes\Adobe Reader X.lnk . (...) -- C:\WINDOWS\Installer\{AC76BA86-7AD7-1036-7B44-AA1000000001}\SC_Reader.ico
O4 - Global Startup: C:\Documents And Settings\All Users\Menu Démarrer\Programmes\Apple Software Update.lnk . (...) -- C:\WINDOWS\Installer\{789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}\AppleSoftwareUpdateIco.exe
O4 - Global Startup: C:\Documents And Settings\All Users\Menu Démarrer\Programmes\foobar2000.lnk . (...) -- C:\Program Files\foobar2000\foobar2000.exe
O4 - Global Startup: C:\Documents And Settings\All Users\Menu Démarrer\Programmes\Microsoft Access.lnk . (...) -- C:\WINDOWS\Installer\{0000040C-78E1-11D2-B60F-006097C998E7}\accicons.exe
O4 - Global Startup: C:\Documents And Settings\All Users\Menu Démarrer\Programmes\Microsoft Excel.lnk . (...) -- C:\WINDOWS\Installer\{0000040C-78E1-11D2-B60F-006097C998E7}\xlicons.exe
O4 - Global Startup: C:\Documents And Settings\All Users\Menu Démarrer\Programmes\Microsoft FrontPage.lnk . (...) -- C:\WINDOWS\Installer\{0000040C-78E1-11D2-B60F-006097C998E7}\misc.exe
O4 - Global Startup: C:\Documents And Settings\All Users\Menu Démarrer\Programmes\Microsoft Outlook.lnk . (...) -- C:\WINDOWS\Installer\{0000040C-78E1-11D2-B60F-006097C998E7}\outicon.exe
O4 - Global Startup: C:\Documents And Settings\All Users\Menu Démarrer\Programmes\Microsoft PowerPoint.lnk . (...) -- C:\WINDOWS\Installer\{0000040C-78E1-11D2-B60F-006097C998E7}\pptico.exe
O4 - Global Startup: C:\Documents And Settings\All Users\Menu Démarrer\Programmes\Mozilla Firefox.lnk . (.Mozilla Corporation.) -- C:\Program Files\Mozilla Firefox\firefox.exe
O4 - Global Startup: C:\Documents And Settings\All Users\Menu Démarrer\Programmes\Windows Movie Maker.lnk . (.Microsoft Corporation.) -- C:\Program Files\Movie Maker\moviemk.exe
O4 - Global Startup: C:\Documents And Settings\User\Menu Démarrer\Programmes\Assistance à distance.lnk . (.Microsoft Corporation.) -- C:\WINDOWS\system32\rcimlby.exe
O4 - Global Startup: C:\Documents And Settings\User\Menu Démarrer\Programmes\Internet Explorer.lnk . (.Microsoft Corporation.) -- C:\Program Files\Internet Explorer\iexplore.exe
O4 - Global Startup: C:\Documents And Settings\User\Menu Démarrer\Programmes\Outlook Express.lnk . (.Microsoft Corporation.) -- C:\Program Files\Outlook Express\msimn.exe
O4 - Global Startup: C:\Documents And Settings\User\Menu Démarrer\Programmes\Windows Media Player.lnk . (.Microsoft Corporation.) -- C:\Program Files\Windows Media Player\wmplayer.exe
O4 - Global Startup: C:\Documents And Settings\Administrateur\Menu Démarrer\Programmes\Assistance à distance.lnk . (.Microsoft Corporation.) -- C:\WINDOWS\system32\rcimlby.exe
~ Scan Global Startup in 00mn 00s
---\\ Boutons situés sur la barre d'outils principale d'Internet Explorer (O9)
O9 - Extra button: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} -- Clé orpheline
O9 - Extra button: Console Java (Sun) - {688DC797-DC11-46A7-9F1B-445F4F58CE6E} . (...) -- C:\Program Files\Copernic Agent\Web\IEToolbarHotIcon.ico
O9 - Extra button: Console Java (Sun) - {D18A0B52-D63C-4ed0-AFC6-C1E3DC1AF43A} -- C:\Program Files\BitComet\tools\BitCometBHO_1.1.11.30.dll (.not file.)
O9 - Extra button: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} -- C:\Program Files\BitComet\tools\BitCometBHO_1.1.11.30.dll (.not file.)
O9 - Extra button: Messager Wanadoo - {FB5F1910-F110-11d2-BB9E-00C04F795683} . (...) -- C:\Program Files\Wanadoo Messager\Wanadoo Messager.ico
~ Scan IE Extra Buttons in 00mn 00s
---\\ Winsock hijacker (Layered Service Provider) (O10)
O10 - WLSP:\000000000001\Winsock LSP File . (.Microsoft Corporation - Fournisseur de service Sockets 2.0 de Microsoft Windows.) -- C:\WINDOWS\system32\mswsock.dll
O10 - WLSP:\000000000002\Winsock LSP File . (.Microsoft Corporation - LDAP RnR Provider DLL.) -- C:\WINDOWS\system32\winrnr.dll
O10 - WLSP:\000000000003\Winsock LSP File . (.Microsoft Corporation - Fournisseur de service Sockets 2.0 de Microsoft Windows.) -- C:\WINDOWS\system32\mswsock.dll
~ Scan Winsock in 00mn 00s
---\\ Objets ActiveX (Downloaded Program Files)(O16)
O16 - DPF: {166B1BCA-3F9C-11CF-8075-444553540000} (Shockwave ActiveX Control) - http://download.macromedia.com/pub/shockwave/cabs/director/sw.cab
O16 - DPF: {17492023-C23A-453E-A040-C7C580BBF700} (Windows Genuine Advantage Validation Tool) - http://download.microsoft.com/download/E/5/6/E5611B10-0D6D-4117-8430-A67417AA88CD/LegitCheckControl.cab
O16 - DPF: {74D05D43-3236-11D4-BDCD-00C04F9A3B61} (HouseCall Control) - https://www.trendmicro.com/en_us/forHome/products/housecall.html
O16 - DPF: {B38870E4-7ECB-40DA-8C6A-595F0A5519FF} (MsnMessengerSetupDownloadControl Class) - http://messenger.msn.com/download/MsnMessengerSetupDownloader.cab
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - https://fpdownload.macromedia.com/get/shockwave/cabs/flash/swflash.cab
~ Scan Objets ActiveX in 00mn 00s
---\\ Modification Domaine/Adresses DNS (O17)
O17 - HKLM\System\CCS\Services\Tcpip\..\{0329D469-E88C-4EDB-8950-DE05DE9D84EB}: DhcpNameServer = 192.168.1.1
O17 - HKLM\System\CS1\Services\Tcpip\..\{0329D469-E88C-4EDB-8950-DE05DE9D84EB}: DhcpNameServer = 192.168.1.1
O17 - HKLM\System\CS2\Services\Tcpip\..\{132E9E06-AC06-42C9-A819-7A962ABB3057}: DhcpNameServer = 192.168.1.1
O17 - HKLM\System\CS3\Services\Tcpip\..\{0329D469-E88C-4EDB-8950-DE05DE9D84EB}: DhcpNameServer = 192.168.1.1
~ Scan Domain in 00mn 00s
---\\ Protocole additionnel (O18)
O18 - Handler: about - {3050F406-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Microsoft (R) HTML Viewer.) -- C:\WINDOWS\system32\mshtml.dll
O18 - Handler: cdl - {3dd53d40-7b8b-11D0-b013-00aa0059ce02} . (.Microsoft Corporation - OLE32 Extensions for Win32.) -- C:\WINDOWS\system32\urlmon.dll
O18 - Handler: copernicagent - {A979B6BD-E40B-4A07-ABDD-A62C64A4EBF6} . (.Copernic Technologies Inc. - Copernic Agent Extensions.) -- C:\Program Files\Copernic Agent\CopernicAgentExt.dll
O18 - Handler: copernicagentcache - {AAC34CFD-274D-4A9D-B0DC-C74C05A67E1D} . (.Copernic Technologies Inc. - Copernic Agent Extensions.) -- C:\Program Files\Copernic Agent\CopernicAgentExt.dll
O18 - Handler: dvd - {12D51199-0DB5-46FE-A120-47A3D7D937CC} . (.Microsoft Corporation - Contrôle ActiveX pour le flux vidéo.) -- C:\WINDOWS\system32\msvidctl.dll
O18 - Handler: file - {79eac9e7-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - OLE32 Extensions for Win32.) -- C:\WINDOWS\system32\urlmon.dll
O18 - Handler: ftp - {79eac9e3-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - OLE32 Extensions for Win32.) -- C:\WINDOWS\system32\urlmon.dll
O18 - Handler: gopher - {79eac9e4-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - OLE32 Extensions for Win32.) -- C:\WINDOWS\system32\urlmon.dll
O18 - Handler: http - {79eac9e2-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - OLE32 Extensions for Win32.) -- C:\WINDOWS\system32\urlmon.dll
O18 - Handler: https - {79eac9e5-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - OLE32 Extensions for Win32.) -- C:\WINDOWS\system32\urlmon.dll
O18 - Handler: its - {9D148291-B9C8-11D0-A4CC-0000F80149F6} . (.Microsoft Corporation - Microsoft® InfoTech Storage System Library.) -- C:\WINDOWS\system32\itss.dll
O18 - Handler: javascript - {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Microsoft (R) HTML Viewer.) -- C:\WINDOWS\system32\mshtml.dll
O18 - Handler: local - {79eac9e7-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - OLE32 Extensions for Win32.) -- C:\WINDOWS\system32\urlmon.dll
O18 - Handler: mailto - {3050f3DA-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Microsoft (R) HTML Viewer.) -- C:\WINDOWS\system32\mshtml.dll
O18 - Handler: mhtml - {05300401-BCBC-11d0-85E3-00C04FD85AB4} . (.Microsoft Corporation - Microsoft Internet Messaging API.) -- C:\WINDOWS\system32\inetcomm.dll
O18 - Handler: mk - {79eac9e6-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - OLE32 Extensions for Win32.) -- C:\WINDOWS\system32\urlmon.dll
O18 - Handler: ms-its - {9D148291-B9C8-11D0-A4CC-0000F80149F6} . (.Microsoft Corporation - Microsoft® InfoTech Storage System Library.) -- C:\WINDOWS\system32\itss.dll
O18 - Handler: res - {3050F3BC-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Microsoft (R) HTML Viewer.) -- C:\WINDOWS\system32\mshtml.dll
O18 - Handler: sysimage - {76E67A63-06E9-11D2-A840-006008059382} . (.Microsoft Corporation - Microsoft (R) HTML Viewer.) -- C:\WINDOWS\system32\mshtml.dll
O18 - Handler: tv - {CBD30858-AF45-11D2-B6D6-00C04FBBDE6E} . (.Microsoft Corporation - Contrôle ActiveX pour le flux vidéo.) -- C:\WINDOWS\system32\msvidctl.dll
O18 - Handler: vbscript - {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Microsoft (R) HTML Viewer.) -- C:\WINDOWS\system32\mshtml.dll
O18 - Handler: wia - {13F3EA8B-91D7-4F0A-AD76-D2853AC8BECE} . (.Microsoft Corporation - WIA Scripting Layer.) -- C:\WINDOWS\system32\wiascr.dll
O18 - Filter: application/octet-stream - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} . (.Microsoft Corporation - Microsoft .NET Runtime Execution Engine.) -- C:\WINDOWS\system32\mscoree.dll
O18 - Filter: application/x-complus - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} . (.Microsoft Corporation - Microsoft .NET Runtime Execution Engine.) -- C:\WINDOWS\system32\mscoree.dll
O18 - Filter: application/x-msdownload - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} . (.Microsoft Corporation - Microsoft .NET Runtime Execution Engine.) -- C:\WINDOWS\system32\mscoree.dll
O18 - Filter: Class Install Handler - {32B533BB-EDAE-11d0-BD5A-00AA00B92AF1} . (.Microsoft Corporation - OLE32 Extensions for Win32.) -- C:\WINDOWS\system32\urlmon.dll
O18 - Filter: deflate - {8f6b0360-b80d-11d0-a9b3-006097942311} . (.Microsoft Corporation - OLE32 Extensions for Win32.) -- C:\WINDOWS\system32\urlmon.dll
O18 - Filter: gzip - {8f6b0360-b80d-11d0-a9b3-006097942311} . (.Microsoft Corporation - OLE32 Extensions for Win32.) -- C:\WINDOWS\system32\urlmon.dll
O18 - Filter: lzdhtml - {8f6b0360-b80d-11d0-a9b3-006097942311} . (.Microsoft Corporation - OLE32 Extensions for Win32.) -- C:\WINDOWS\system32\urlmon.dll
O18 - Filter: text/webviewhtml - {733AC4CB-F1A4-11d0-B951-00A0C90312E1} . (.Microsoft Corporation - DLL commune du shell Windows.) -- C:\WINDOWS\system32\shell32.dll
~ Scan Protocole Additionnel in 00mn 00s
---\\ Valeur de Registre AppInit_DLLs et sous-clés Winlogon Notify (autorun) (O20)
O20 - Winlogon Notify: crypt32chain . (.Microsoft Corporation - Crypto API32.) -- C:\WINDOWS\system32\crypt32.dll
O20 - Winlogon Notify: cryptnet . (.Microsoft Corporation - Crypto Network Related API.) -- C:\WINDOWS\system32\cryptnet.dll
O20 - Winlogon Notify: cscdll . (.Microsoft Corporation - Agent réseau hors connexion.) -- C:\WINDOWS\system32\cscdll.dll
O20 - Winlogon Notify: dimsntfy . (.Microsoft Corporation - DIMS Notification Handler.) -- C:\WINDOWS\system32\dimsntfy.dll
O20 - Winlogon Notify: ScCertProp . (.Microsoft Corporation - DLL commune de réception des notifications.) -- C:\WINDOWS\system32\wlnotify.dll
O20 - Winlogon Notify: Schedule . (.Microsoft Corporation - DLL commune de réception des notifications.) -- C:\WINDOWS\system32\wlnotify.dll
O20 - Winlogon Notify: sclgntfy . (.Microsoft Corporation - DLL secondaire de notification de service d.) -- C:\WINDOWS\system32\sclgntfy.dll
O20 - Winlogon Notify: SensLogn . (.Microsoft Corporation - DLL commune de réception des notifications.) -- C:\WINDOWS\system32\WlNotify.dll
O20 - Winlogon Notify: termsrv . (.Microsoft Corporation - DLL commune de réception des notifications.) -- C:\WINDOWS\system32\wlnotify.dll
O20 - Winlogon Notify: WgaLogon . (.Microsoft Corporation - Notifications Windows Genuine Advantage.) -- C:\WINDOWS\system32\WgaLogon.dll
O20 - Winlogon Notify: wlballoon . (.Microsoft Corporation - DLL commune de réception des notifications.) -- C:\WINDOWS\system32\wlnotify.dll
~ Scan Winlogon in 00mn 00s
---\\ Clé de Registre autorun ShellServiceObjectDelayLoad (SSO/SSODL) (O21)
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} . (.Microsoft Corporation - Web Site Monitor.) -- C:\WINDOWS\system32\webcheck.dll
O21 - SSODL: SysTray - {35CEC8A3-2BE6-11D2-8773-92E220524153} . (.Microsoft Corporation - Objet du service d'environnement Systray.) -- C:\WINDOWS\system32\stobject.dll
~ Scan SSODL in 00mn 00s
---\\ Clé de Registre autorun SharedTaskScheduler (STS) (O22)
O22 - SharedTaskScheduler: (no name) - {8C7461EF-2B13-11d2-BE35-3078302C2030} . (.Microsoft Corporation - Bibliothèque de l'interface utilisateur du.) -- C:\WINDOWS\system32\browseui.dll
~ Scan STS/SSO in 00mn 00s
---\\ Liste des services NT non Microsoft et non désactivés (O23)
O23 - Service: Adobe Active File Monitor V6 (AdobeActiveFileMonitor6.0) . (...) - C:\Program Files\Adobe\Photoshop Elements 6.0\PhotoshopElementsFileAgent.exe
O23 - Service: Avira Planificateur (AntiVirSchedulerService) . (.Avira Operations GmbH & Co. KG - Avira Scheduler.) - C:\Program Files\Avira\AntiVir Desktop\sched.exe
O23 - Service: Avira Protection temps réel (AntiVirService) . (.Avira Operations GmbH & Co. KG - Avira On-Access Service.) - C:\Program Files\Avira\AntiVir Desktop\avguard.exe
O23 - Service: France Telecom Routing Table Service (FTRTSVC) . (.France Telecom - FTRTSVC NT Service.) - C:\WINDOWS\system32\FTRTSVC.exe
O23 - Service: Google Update Service (gupdate1c9b961d6f (gupdate1c9b961d6fe301e) . (.Google Inc. - Programme d'installation de Google.) - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Google Software Updater (gusvc) . (.Google - gusvc.) - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: Java Quick Starter (JavaQuickStarterService) . (.Sun Microsystems, Inc. - Java(TM) Quick Starter Service.) - C:\Program Files\Java\jre6\bin\jqs.exe
~ Scan Services in 00mn 00s
---\\ Enumération Active Desktop & MHTML Editor (O24)
O24 - Default MHTML Editor: Last - .(...) - (.not file.)
~ Scan Desktop Component in 00mn 00s
---\\ BootExecute (O34)
O34 - HKLM BootExecute: (autocheck autochk *) - File not found
~ Scan Keys in 00mn 00s
---\\ Tâches planifiées en automatique (O39)
O39 - APT:Automatic Planified Task - C:\WINDOWS\Tasks\AppleSoftwareUpdate.job
O39 - APT:Automatic Planified Task - C:\WINDOWS\Tasks\Google Software Updater.job
O39 - APT:Automatic Planified Task - C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job
O39 - APT:Automatic Planified Task - C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job
[MD5.34EBD4FF6A24D86BB4716D6AFCC1A89B] [APT] [AppleSoftwareUpdate] (.Apple Inc..) -- C:\Program Files\Apple Software Update\SoftwareUpdate.exe
[MD5.408DDD80EEDE47175F6844817B90213E] [APT] [Google Software Updater] (.Google.) -- C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
[MD5.626A24ED1228580B9518C01930936DF9] [APT] [GoogleUpdateTaskMachineCore] (.Google Inc..) -- C:\Program Files\Google\Update\GoogleUpdate.exe
[MD5.626A24ED1228580B9518C01930936DF9] [APT] [GoogleUpdateTaskMachineUA] (.Google Inc..) -- C:\Program Files\Google\Update\GoogleUpdate.exe
~ Scan Scheduled Task in 00mn 00s
---\\ Composants installés (ActiveSetup Installed Components) (O40)
O40 - ASIC: Mise à jour de la version d'Internet Explorer - <{12d0ed0d-0ee0-4f90-8827-78cefb8f4988} . (.Microsoft Corporation - IE Per User Active Setup Uninstall Utility.) -- C:\WINDOWS\system32\ieudinit.exe
O40 - ASIC: Microsoft Windows Media Player - >{22d6f312-b0f6-11d0-94ab-0080c74c7e95} . (.Microsoft Corporation - Utilitaire d'installation du Lecteur Windows Media de Microsoft.) -- C:\WINDOWS\inf\unregmp2.exe
O40 - ASIC: Internet Explorer - >{26923b43-4d38-484f-9b9e-de460746276c} . (.Microsoft Corporation - Utilitaire d'initialisation d'Internet Explorer par utilisateur.) -- C:\WINDOWS\system32\ie4uinit.exe.mui
O40 - ASIC: Browser Customizations - >{60B49E34-C7CC-11D0-8953-00A0C90347FF} . (.Microsoft Corporation - IEAK branding.) -- C:\WINDOWS\system32\iedkcs32.dll
O40 - ASIC: Macromedia Shockwave Director 10.1 - {166B1BCA-3F9C-11CF-8075-444553540000} . (.Adobe Systems, Inc. - Shockwave ActiveX Control.) -- C:\WINDOWS\system32\Adobe\Director\SwDir.dll
O40 - ASIC: Microsoft NetShow Player - {2179C5D3-EBFF-11CF-B6FD-00AA00B4E220} . (.Microsoft Corporation - Windows Media Player Extension.) -- C:\WINDOWS\system32\wmpdxm.dll
O40 - ASIC: Microsoft Windows Media Player 6.4 - {22d6f312-b0f6-11d0-94ab-0080c74c7e95} . (.Microsoft Corporation - Windows Media Player Extension.) -- C:\WINDOWS\system32\wmpdxm.dll
O40 - ASIC: NetMeeting 3.01 - {44BBA842-CC51-11CF-AAFA-00AA00B6015B} . (...) -- C:\WINDOWS\INF\msnetmtg.inf
O40 - ASIC: Windows Messenger 4.7 - {5945c046-1e7d-11d1-bc44-00c04fd912be} . (...) -- C:\WINDOWS\INF\msmsgs.inf
O40 - ASIC: Browsing Enhancements - {630b1da0-b465-11d1-9948-00c04f98bbc9} . (.Microsoft Corporation - Extension Shell dossier FTP Microsoft Internet Explorer..) -- C:\WINDOWS\system32\msieftp.dll
O40 - ASIC: Microsoft Windows Media Player - {6BF52A52-394A-11d3-B153-00C04F79FAA6} . (...) -- C:\WINDOWS\INF\wmp11.inf
O40 - ASIC: Internet Explorer - {89820200-ECBD-11cf-8B85-00AA005B4383} . (.Microsoft Corporation - Utilitaire d'initialisation d'Internet Explorer par utilisateur.) -- C:\WINDOWS\system32\ie4uinit.exe.mui
O40 - ASIC: (no name) - {89B4C1CD-B018-4511-B0A1-5476DBF70820} . (.Microsoft Corporation - Microsoft .NET IE SECURITY REGISTRATION.) -- c:\WINDOWS\system32\mscories.dll
O40 - ASIC: Macromedia Shockwave Flash - {D27CDB6E-AE6D-11cf-96B8-444553540000} . (.Adobe Systems, Inc. - Adobe Flash Player 10.3 r181.) -- C:\WINDOWS\system32\Macromed\Flash\Flash10r.ocx
~ Scan Active Setup in 00mn 00s
---\\ Pilotes lancés au démarrage (O41)
O41 - Driver: (AFD) . (.Microsoft Corporation - Ancillary Function Driver for WinSock.) - C:\WINDOWS\system32\drivers\afd.sys
O41 - Driver: (AmdK8) . (.Advanced Micro Devices - AMD Processor Driver.) - C:\WINDOWS\system32\DRIVERS\AmdK8.sys
O41 - Driver: (avipbb) . (.Avira GmbH - Avira Driver for Security Enhancement.) - C:\WINDOWS\system32\DRIVERS\avipbb.sys
O41 - Driver: (avkmgr) . (.Avira GmbH - Avira Manager Driver.) - C:\WINDOWS\system32\DRIVERS\avkmgr.sys
O41 - Driver: (Cdrom) . (.Microsoft Corporation - SCSI CD-ROM Driver.) - C:\WINDOWS\system32\DRIVERS\cdrom.sys
O41 - Driver: (i8042prt) . (.Microsoft Corporation - Pilote de port i8042.) - C:\WINDOWS\system32\DRIVERS\i8042prt.sys
O41 - Driver: (Imapi) . (.Microsoft Corporation - IMAPI Kernel Driver.) - C:\WINDOWS\system32\DRIVERS\imapi.sys
O41 - Driver: (IPSec) . (.Microsoft Corporation - IPSec Driver.) - C:\WINDOWS\system32\DRIVERS\ipsec.sys
O41 - Driver: (Kbdclass) . (.Microsoft Corporation - Pilote de la classe Clavier.) - C:\WINDOWS\system32\DRIVERS\kbdclass.sys
O41 - Driver: (Mouclass) . (.Microsoft Corporation - Pilote de la classe Souris.) - C:\WINDOWS\system32\DRIVERS\mouclass.sys
O41 - Driver: (MRxSmb) . (.Microsoft Corporation - Windows NT SMB Minirdr.) - C:\WINDOWS\system32\DRIVERS\mrxsmb.sys
O41 - Driver: (NetBIOS) . (.Microsoft Corporation - NetBIOS interface driver.) - C:\WINDOWS\system32\DRIVERS\netbios.sys
O41 - Driver: (NetBT) . (.Microsoft Corporation - MBT Transport driver.) - C:\WINDOWS\system32\DRIVERS\netbt.sys
O41 - Driver: (Processor) . (.Microsoft Corporation - Pilote de périphérique processeur.) - C:\WINDOWS\system32\DRIVERS\processr.sys
O41 - Driver: (RasAcd) . (.Microsoft Corporation - RAS Automatic Connection Driver.) - C:\WINDOWS\system32\DRIVERS\rasacd.sys
O41 - Driver: (Rdbss) . (.Microsoft Corporation - Redirected Drive Buffering SubSystem Driver.) - C:\WINDOWS\system32\DRIVERS\rdbss.sys
O41 - Driver: (RDPCDD) . (.Microsoft Corporation - RDP Miniport.) - C:\WINDOWS\system32\DRIVERS\RDPCDD.sys
O41 - Driver: (redbook) . (.Microsoft Corporation - Pilote de filtre audio Livre rouge.) - C:\WINDOWS\system32\DRIVERS\redbook.sys
O41 - Driver: (Serial) . (.Microsoft Corporation - Pilote de périphérique série.) - C:\WINDOWS\system32\DRIVERS\serial.sys
O41 - Driver: (ssmdrv) . (.Avira GmbH - AVIRA SnapShot Driver.) - C:\WINDOWS\system32\DRIVERS\ssmdrv.sys
O41 - Driver: (Tcpip) . (.Microsoft Corporation - TCP/IP Protocol Driver.) - C:\WINDOWS\system32\DRIVERS\tcpip.sys
O41 - Driver: (TermDD) . (.Microsoft Corporation - Terminal Server Driver.) - C:\WINDOWS\system32\DRIVERS\termdd.sys
O41 - Driver: Carte vidéo VGA. (VgaSave) . (.Microsoft Corporation - VGA/Super VGA Video Driver.) - C:\WINDOWS\system32\drivers\vga.sys
O41 - Driver: (VgaSave) . (.Microsoft Corporation - VGA/Super VGA Video Driver.) - C:\WINDOWS\system32\drivers\vga.sys
~ Scan Drivers in 00mn 00s
---\\ Logiciels installés (O42)
O42 - Logiciel: AMD APP SDK Runtime - (.Advanced Micro Devices Inc..) [HKLM] -- {A25FF1C0-80B6-4B8B-A551-DC525697A408}
O42 - Logiciel: Adobe AIR - (.Adobe Systems Inc..) [HKLM] -- Adobe AIR
O42 - Logiciel: Adobe AIR - (.Adobe Systems Inc..) [HKLM] -- {B194272D-1F92-46DF-99EB-8D5CE91CB4EC}
O42 - Logiciel: Adobe ExtendScript Toolkit 2 - (.Adobe Systems Incorporated.) [HKLM] -- Adobe_3e054d2218e7aa282c2369d939e58ff
O42 - Logiciel: Adobe ExtendScript Toolkit 2 - (.Adobe Systems Incorporated.) [HKLM] -- {24D7346D-D4B4-45E8-98EA-75EC14B42DD8}
O42 - Logiciel: Adobe Flash Player 10 ActiveX - (.Adobe Systems Incorporated.) [HKLM] -- Adobe Flash Player ActiveX
O42 - Logiciel: Adobe Flash Player 11 Plugin - (.Adobe Systems Incorporated.) [HKLM] -- Adobe Flash Player Plugin
O42 - Logiciel: Adobe Photoshop Elements 6.0 - (.Adobe Systems, Inc..) [HKLM] -- Adobe Photoshop Elements 6
O42 - Logiciel: Adobe Reader X (10.1.2) - Français - (.Adobe Systems Incorporated.) [HKLM] -- {AC76BA86-7AD7-1036-7B44-AA1000000001}
O42 - Logiciel: Adobe Setup - (.Adobe Systems Incorporated.) [HKLM] -- {B3C02EC1-A7B0-4987-9A43-8789426AAA7D}
O42 - Logiciel: Adobe Shockwave Player 11.6 - (.Adobe Systems, Inc..) [HKLM] -- Adobe Shockwave Player
O42 - Logiciel: Apple Application Support - (.Apple Inc..) [HKLM] -- {EE6097DD-05F4-4178-9719-D3170BF098E8}
O42 - Logiciel: Apple Software Update - (.Apple Inc..) [HKLM] -- {789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}
O42 - Logiciel: Assistant de connexion Windows Live - (.Microsoft Corporation.) [HKLM] -- {DCE8CD14-FBF5-4464-B9A4-E18E473546C7}
O42 - Logiciel: Athlon 64 Processor Driver - (.Pas de propriétaire.) [HKLM] -- {C151CE54-E7EA-4804-854B-F515368B0798}
O42 - Logiciel: Avira Free Antivirus - (.Avira.) [HKLM] -- Avira AntiVir Desktop
O42 - Logiciel: Barre de confiance CM-CIC - (.Pas de propriétaire.) [HKLM] -- TAPBar
O42 - Logiciel: CCleaner - (.Piriform.) [HKLM] -- CCleaner
O42 - Logiciel: Canon Easy-WebPrint EX - (.Pas de propriétaire.) [HKLM] -- Easy-WebPrint EX
O42 - Logiciel: Canon MP Navigator EX 3.0 - (.Pas de propriétaire.) [HKLM] -- MP Navigator EX 3.0
O42 - Logiciel: Canon MP550 series MP Drivers - (.Pas de propriétaire.) [HKLM] -- {1199FAD5-9546-44f3-81CF-FFDB8040B7BF}_Canon_MP550_series
O42 - Logiciel: Canon ScanGear Starter - (.Pas de propriétaire.) [HKLM] -- {18A5DFF2-8A95-49F3-873F-743CB5549F3D}
O42 - Logiciel: Canon Utilities Easy-PhotoPrint EX - (.Pas de propriétaire.) [HKLM] -- Easy-PhotoPrint EX
O42 - Logiciel: Canon Utilities Easy-PhotoPrint EX - Données supplémentaires BG_FA3 - (.Pas de propriétaire.) [HKLM] -- Easy-PhotoPrint EX - BG_FA3
O42 - Logiciel: Canon Utilities Easy-PhotoPrint EX - Données supplémentaires BG_ST1 - (.Pas de propriétaire.) [HKLM] -- Easy-PhotoPrint EX - BG_ST1
O42 - Logiciel: Canon Utilities Easy-PhotoPrint EX - Données supplémentaires BG_ST2 - (.Pas de propriétaire.) [HKLM] -- Easy-PhotoPrint EX - BG_ST2
O42 - Logiciel: Canon Utilities Easy-PhotoPrint EX - Données supplémentaires BG_ST3 - (.Pas de propriétaire.) [HKLM] -- Easy-PhotoPrint EX - BG_ST3
O42 - Logiciel: Canon Utilities Easy-PhotoPrint EX - Données supplémentaires BG_ST4 - (.Pas de propriétaire.) [HKLM] -- Easy-PhotoPrint EX - BG_ST4
O42 - Logiciel: Canon Utilities My Printer - (.Pas de propriétaire.) [HKLM] -- CanonMyPrinter
O42 - Logiciel: Canon Utilities Solution Menu - (.Pas de propriétaire.) [HKLM] -- CanonSolutionMenu
O42 - Logiciel: Compatibility Pack for the 2007 Office system - (.Microsoft Corporation.) [HKLM] -- {90120000-0020-0409-0000-0000000FF1CE}
O42 - Logiciel: Copernic Agent Basic - (.Copernic.) [HKLM] -- Copernic Agent Basic
O42 - Logiciel: Defraggler - (.Piriform.) [HKLM] -- Defraggler
O42 - Logiciel: Easy-WebPrint - (.Pas de propriétaire.) [HKLM] -- Easy-WebPrint
O42 - Logiciel: Google Update Helper - (.Google Inc..) [HKLM] -- {A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}
O42 - Logiciel: Google Earth - (.Google.) [HKLM] -- {5A3C1721-F8ED-11E0-8AFB-B8AC6F97B88E}
O42 - Logiciel: Hotfix for Microsoft .NET Framework 3.5 SP1 (KB953595) - (.Microsoft Corporation.) [HKLM] -- {CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9}.KB953595
O42 - Logiciel: Hotfix for Windows XP (KB954550-v5) - (.Microsoft Corporation.) [HKLM] -- KB954550-v5
O42 - Logiciel: Hotfix for Windows XP (KB976002-v5) - (.Microsoft Corporation.) [HKLM] -- KB976002-v5
O42 - Logiciel: ImageMixer3 - (.PIXELA.) [HKLM] -- {751910E3-ECF1-44D0-BF3F-2936A4424514}
O42 - Logiciel: Java(TM) 6 Update 26 - (.Sun Microsystems, Inc..) [HKLM] -- {26A24AE4-039D-4CA4-87B4-2F83216011FF}
O42 - Logiciel: LG PC Suite II - (.LG PC Suite.) [HKLM] -- {14DCD95A-EBA3-4BF0-B7EF-533852E99BE6}
O42 - Logiciel: LG USB Modem driver - (.LG Electronics.) [HKLM] -- {C3ABE126-2BB2-4246-BFE1-6797679B3579}
O42 - Logiciel: Lecteur Windows Media 11 - (.Pas de propriétaire.) [HKLM] -- Windows Media Player
O42 - Logiciel: Livebox - (.Pas de propriétaire.) [HKLM] -- {FC7DDAAE-7F2B-4270-9BFD-5A130B667E9E}
O42 - Logiciel: MSXML 4.0 SP2 (KB954430) - (.Microsoft Corporation.) [HKLM] -- {86493ADD-824D-4B8E-BD72-8C5DCDC52A71}
O42 - Logiciel: MSXML 4.0 SP2 (KB973688) - (.Microsoft Corporation.) [HKLM] -- {F662A8E6-F4DC-41A2-901E-8C11F044BDEC}
O42 - Logiciel: Microsoft .NET Framework 1.1 - (.Microsoft.) [HKLM] -- {CB2F7EDD-9D1F-43C1-90FC-4F52EAE172A1}
O42 - Logiciel: Microsoft .NET Framework 1.1 - (.Pas de propriétaire.) [HKLM] -- Microsoft .NET Framework 1.1 (1033)
O42 - Logiciel: Microsoft .NET Framework 1.1 French Language Pack - (.Microsoft.) [HKLM] -- {9A394342-4A68-4EBA-85A6-55B559F4E700}
O42 - Logiciel: Microsoft .NET Framework 1.1 Security Update (KB2656353) - (.Pas de propriétaire.) [HKLM] -- M2656353
O42 - Logiciel: Microsoft .NET Framework 1.1 Security Update (KB979906) - (.Pas de propriétaire.) [HKLM] -- M979906
O42 - Logiciel: Microsoft .NET Framework 2.0 Service Pack 2 - (.Microsoft Corporation.) [HKLM] -- {C09FB3CD-3D0C-3F2D-899A-6A1D67F2073F}
O42 - Logiciel: Microsoft .NET Framework 2.0 Service Pack 2 Language Pack - FRA - (.Microsoft Corporation.) [HKLM] -- {72AD53CC-CCC0-3757-8480-9EE176866A7C}
O42 - Logiciel: Microsoft .NET Framework 3.0 Service Pack 2 - (.Microsoft Corporation.) [HKLM] -- {A3051CD0-2F64-3813-A88D-B8DCCDE8F8C7}
O42 - Logiciel: Microsoft .NET Framework 3.0 Service Pack 2 Language Pack - FRA - (.Microsoft Corporation.) [HKLM] -- {0BD83598-C2EF-3343-847B-7D2E84599128}
O42 - Logiciel: Microsoft .NET Framework 3.5 Language Pack SP1 - fra - (.Microsoft Corporation.) [HKLM] -- {3E31821C-7917-367E-938E-E65FC413EA31}
O42 - Logiciel: Microsoft .NET Framework 3.5 SP1 - (.Microsoft Corporation.) [HKLM] -- Microsoft .NET Framework 3.5 SP1
O42 - Logiciel: Microsoft .NET Framework 3.5 SP1 - (.Microsoft Corporation.) [HKLM] -- {CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9}
O42 - Logiciel: Microsoft Internationalized Domain Names Mitigation APIs - (.Microsoft Corporation.) [HKLM] -- IDNMitigationAPIs
O42 - Logiciel: Microsoft National Language Support Downlevel APIs - (.Microsoft Corporation.) [HKLM] -- NLSDownlevelMapping
O42 - Logiciel: Microsoft Office 2000 Premium - (.Microsoft Corporation.) [HKLM] -- {0000040C-78E1-11D2-B60F-006097C998E7}
O42 - Logiciel: Microsoft User-Mode Driver Framework Feature Pack 1.0 - (.Microsoft Corporation.) [HKLM] -- Wudf01000
O42 - Logiciel: Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053 - (.Microsoft Corporation.) [HKLM] -- {770657D0-A123-3C07-8E44-1C83EC895118}
O42 - Logiciel: Microsoft Visual C++ 2005 Redistributable - (.Microsoft Corporation.) [HKLM] -- {710f4c1c-cc18-4c49-8cbf-51240c89a1a2}
O42 - Logiciel: Microsoft Visual C++ 2008 ATL Update kb973924 - x86 9.0.30729.4148 - (.Microsoft Corporation.) [HKLM] -- {002D9D5E-29BA-3E6D-9BC4-3D7D6DBC735C}
O42 - Logiciel: Microsoft Visual C++ 2008 Redistributable - KB2467174 - x86 9.0.30729.5570 - (.Microsoft Corporation.) [HKLM] -- {86CE85E6-DBAC-3FFD-B977-E4B79F83C909}
O42 - Logiciel: Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 - (.Microsoft Corporation.) [HKLM] -- {9A25302D-30C0-39D9-BD6F-21E6EC160475}
O42 - Logiciel: Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 - (.Microsoft Corporation.) [HKLM] -- {1F1C2DFC-2D24-3E06-BCB8-725134ADF989}
O42 - Logiciel: Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 - (.Microsoft Corporation.) [HKLM] -- {9BE518E6-ECC6-35A9-88E4-87755C07200F}
O42 - Logiciel: Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 - (.Microsoft Corporation.) [HKLM] -- {F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}
O42 - Logiciel: Module linguistique Microsoft .NET Framework 3.5 SP1- fra - (.Microsoft Corporation.) [HKLM] -- Microsoft .NET Framework 3.5 Language Pack SP1 - fra
O42 - Logiciel: Mozilla Firefox 9.0.1 (x86 fr) - (.Mozilla.) [HKLM] -- Mozilla Firefox 9.0.1 (x86 fr)
O42 - Logiciel: NVIDIA Drivers - (.Pas de propriétaire.) [HKLM] -- NVIDIA Drivers
O42 - Logiciel: Nero Suite - (.Pas de propriétaire.) [HKLM] -- NeroMultiInstaller!UninstallKey
O42 - Logiciel: OpenAL - (.Pas de propriétaire.) [HKLM] -- OpenAL
O42 - Logiciel: Outil de connexion Wanadoo - (.Pas de propriétaire.) [HKLM] -- EspaceWanadoo.exe
O42 - Logiciel: Outil de téléchargement Windows Live - (.Microsoft Corporation.) [HKLM] -- {205C6BDD-7B73-42DE-8505-9A093F35A238}
O42 - Logiciel: Project64 1.6 - (.Project64.) [HKLM] -- {9559F7CA-5E34-4237-A2D9-D856464AD727}
O42 - Logiciel: QuickTime - (.Apple Inc..) [HKLM] -- {57752979-A1C9-4C02-856B-FBB27AC4E02C}
O42 - Logiciel: Realtek AC'97 Audio - (.Realtek Semiconductor Corp..) [HKLM] -- {FB08F381-6533-4108-B7DD-039E11FBC27E}
O42 - Logiciel: SAGEM Wi-Fi 11g USB adapter (Driver) - (.Pas de propriétaire.) [HKLM] -- {E2AA331E-E10E-438C-B1C0-24B2FFD3D9C4}
O42 - Logiciel: SAGEM Wi-Fi 11g USB adapter (Tool) - (.Pas de propriétaire.) [HKLM] -- {6266AB37-350F-483C-88D2-C530ACA42645}
O42 - Logiciel: Security Update for Microsoft .NET Framework 3.5 SP1 (KB2657424) - (.Microsoft Corporation.) [HKLM] -- {CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9}.KB2657424
O42 - Logiciel: Ubuntu - (.Ubuntu.) [HKLM] -- Wubi
O42 - Logiciel: Update for Microsoft .NET Framework 3.5 SP1 (KB963707) - (.Microsoft Corporation.) [HKLM] -- {CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9}.KB963707
O42 - Logiciel: VC80CRTRedist - 8.0.50727.4053 - (.DivX, Inc.) [HKLM] -- {5EE7D259-D137-4438-9A5F-42F432EC0421}
O42 - Logiciel: VideoLAN VLC media player 0.8.6c - (.VideoLAN Team.) [HKLM] -- VLC media player
O42 - Logiciel: Visual Install Pack - (.Phoenixx.) [HKLM] -- {549CC831-2542-47F2-A855-2F41E50EF015}
O42 - Logiciel: Wanadoo Messager - (.Pas de propriétaire.) [HKLM] -- Wanadoo Messager
O42 - Logiciel: WinRAR 4.10 (32-bit) - (.win.rar GmbH.) [HKLM] -- WinRAR archiver
O42 - Logiciel: Windows Genuine Advantage Notifications (KB905474) - (.Microsoft Corporation.) [HKLM] -- WgaNotify
O42 - Logiciel: Windows Genuine Advantage Validation Tool (KB892130) - (.Microsoft Corporation.) [HKLM] -- KB892130
O42 - Logiciel: Windows Genuine Advantage v1.3.0254.0 - (.Microsoft.) [HKLM] -- {63569CE9-FA00-469C-AF5C-E5D4D93ACF91}
O42 - Logiciel: Windows Internet Explorer 7 - (.Microsoft Corporation.) [HKLM] -- ie7
O42 - Logiciel: Windows Internet Explorer 8 - (.Microsoft Corporation.) [HKLM] -- ie8
O42 - Logiciel: Windows Media Format 11 runtime - (.Pas de propriétaire.) [HKLM] -- Windows Media Format Runtime
O42 - Logiciel: Windows XP Service Pack 3 - (.Microsoft Corporation.) [HKLM] -- Windows XP Service
O42 - Logiciel: XML Paper Specification Shared Components Language Pack 1.0 - (.Microsoft Corporation.) [HKLM] -- XPSEPSCLP
O42 - Logiciel: foobar2000 v1.1.11 - (.Peter Pawlowski.) [HKLM] -- foobar2000
O42 - Logiciel: swMSM - (.Adobe Systems, Inc.) [HKLM] -- {612C34C7-5E90-47D8-9B5C-0F717DD82726}
---\\ HKCU & HKLM Software Keys
[HKCU\Software\Classes]
[HKCU\Software\Google]
[HKCU\Software\Intel]
[HKCU\Software\Licenses]
[HKCU\Software\Macromedia]
[HKCU\Software\Malwarebytes' Anti-Malware]
[HKCU\Software\Mozilla]
[HKCU\Software\Netscape]
[HKCU\Software\Piriform]
[HKCU\Software\Policies]
[HKCU\Software\Safer Networking Limited]
[HKCU\Software\VB and VBA Program Settings]
[HKCU\Software\WinRAR]
[HKCU\Software\keyhole.com]
[HKLM\Software\8ec]
[HKLM\Software\AGD]
[HKLM\Software\AMD]
[HKLM\Software\ATI Technologies]
[HKLM\Software\Adobe]
[HKLM\Software\Ahead]
[HKLM\Software\AppDataLow]
[HKLM\Software\Apple Computer, Inc.]
[HKLM\Software\Apple Inc.]
[HKLM\Software\ArcSoft]
[HKLM\Software\Avance]
[HKLM\Software\Avira]
[HKLM\Software\C07ft5Y]
[HKLM\Software\CA561B]
[HKLM\Software\CDDB]
[HKLM\Software\Canon]
[HKLM\Software\Classes]
[HKLM\Software\Clients]
[HKLM\Software\Common Toolkit Suite]
[HKLM\Software\Copernic]
[HKLM\Software\CyberLink]
[HKLM\Software\DT Soft]
[HKLM\Software\Debug]
[HKLM\Software\DesktopSearch]
[HKLM\Software\Digital River]
[HKLM\Software\DivXNetworks]
[HKLM\Software\DivX]
[HKLM\Software\EID]
[HKLM\Software\Elcor Software]
[HKLM\Software\Exent]
[HKLM\Software\FRANCE TELECOM]
[HKLM\Software\Gemplus]
[HKLM\Software\Google]
[HKLM\Software\HaaliMkx]
[HKLM\Software\InfoWorks Technology]
[HKLM\Software\InstallShield]
[HKLM\Software\Intel]
[HKLM\Software\InterVideo]
[HKLM\Software\JavaSoft]
[HKLM\Software\Joy12]
[HKLM\Software\JreMetrics]
[HKLM\Software\KC Softwares]
[HKLM\Software\Khronos]
[HKLM\Software\LG Electronics]
[HKLM\Software\LG PC Suite]
[HKLM\Software\Logitech]
[HKLM\Software\MC4D]
[HKLM\Software\Macromedia]
[HKLM\Software\Macrovision]
[HKLM\Software\Malwarebytes' Anti-Malware]
[HKLM\Software\MozillaPlugins]
[HKLM\Software\Mozilla]
[HKLM\Software\NVIDIA Corporation]
[HKLM\Software\Nero]
[HKLM\Software\Novell]
[HKLM\Software\Nullsoft]
[HKLM\Software\ODBC]
[HKLM\Software\PIXELA]
[HKLM\Software\PepiMK Software]
[HKLM\Software\Piriform]
[HKLM\Software\Policies]
[HKLM\Software\Program Groups]
[HKLM\Software\RealNetworks]
[HKLM\Software\Realtek Semiconductor Corp.]
[HKLM\Software\Realtek]
[HKLM\Software\RegisteredApplications]
[HKLM\Software\S3R521]
[HKLM\Software\Safer Networking Limited]
[HKLM\Software\Sagem]
[HKLM\Software\Schlumberger]
[HKLM\Software\Screen Savers]
[HKLM\Software\Secure]
[HKLM\Software\Serif]
[HKLM\Software\Sonic]
[HKLM\Software\Sony Corporation]
[HKLM\Software\Sony Media Software]
[HKLM\Software\Toogame]
[HKLM\Software\Trad-FR]
[HKLM\Software\Uniblue]
[HKLM\Software\VSO]
[HKLM\Software\VideoLAN]
[HKLM\Software\WebSupergoo]
[HKLM\Software\WinRAR]
[HKLM\Software\Windows 3.1 Migration Status]
[HKLM\Software\Windows]
[HKLM\Software\Wise Solutions]
[HKLM\Software\Wow6432Node]
[HKLM\Software\X-AVCSD]
[HKLM\Software\Xing Technology Corp.]
[HKLM\Software\Yahoo]
[HKLM\Software\Z-Com, Inc.]
[HKLM\Software\Zone Labs]
[HKLM\Software\atomixmp3]
[HKLM\Software\edonkey2000]
[HKLM\Software\mozilla.org]
~ Scan Softwares in 00mn 00s
---\\ Contenu des dossiers Programs/ProgramFiles/ProgramData/AppData (O43)
O43 - CFD: 20/06/2011 - 20:09:14 - [549,433] ----D- C:\Program Files\Adobe
O43 - CFD: 24/08/2005 - 17:49:40 - [88,674] ----D- C:\Program Files\Ahead
O43 - CFD: 24/08/2005 - 17:36:04 - [0,119] ----D- C:\Program Files\AMD
O43 - CFD: 23/06/2011 - 21:08:26 - [1,861] ----D- C:\Program Files\AMD APP
O43 - CFD: 16/07/2011 - 19:11:40 - [2,316] ----D- C:\Program Files\Apple Software Update
O43 - CFD: 23/06/2011 - 21:08:04 - [16,550] ----D- C:\Program Files\ATI
O43 - CFD: 23/06/2011 - 21:08:08 - [0] ----D- C:\Program Files\ATI Technologies
O43 - CFD: 03/05/2010 - 20:42:16 - [0,036] ----D- C:\Program Files\AtomixMP3
O43 - CFD: 26/08/2008 - 19:19:58 - [0] ----D- C:\Program Files\avgahnc
O43 - CFD: 19/12/2011 - 11:29:40 - [167,335] ----D- C:\Program Files\Avira
O43 - CFD: 24/08/2005 - 17:35:20 - [5,226] ----D- C:\Program Files\AvRack
O43 - CFD: 13/02/2008 - 20:31:06 - [0,366] ----D- C:\Program Files\BarreConfCMCIC
O43 - CFD: 03/05/2010 - 20:43:32 - [370,917] ----D- C:\Program Files\Canon
O43 - CFD: 11/04/2010 - 15:09:24 - [15,180] --H-D- C:\Program Files\CanonBJ
O43 - CFD: 04/03/2012 - 18:21:32 - [5,073] ----D- C:\Program Files\CCleaner
O43 - CFD: 24/08/2008 - 11:22:04 - [0] ----D- C:\Program Files\Combined Community Codec Pack
O43 - CFD: 27/05/2010 - 18:53:02 - [0,000] ----D- C:\Program Files\CommonAppData
O43 - CFD: 21/10/2007 - 13:49:38 - [3,632] ----D- C:\Program Files\Copernic Agent
O43 - CFD: 06/06/2006 - 20:30:06 - [2,825] ----D- C:\Program Files\CyberLink
O43 - CFD: 16/03/2008 - 17:57:56 - [0,610] ----D- C:\Program Files\DebugMode
O43 - CFD: 12/11/2011 - 13:35:54 - [4,126] ----D- C:\Program Files\Defraggler
O43 - CFD: 27/05/2010 - 18:53:02 - [61,686] ----D- C:\Program Files\DirectX9c
O43 - CFD: 25/08/2010 - 11:44:50 - [74,022] ----D- C:\Program Files\DivX
O43 - CFD: 19/06/2011 - 15:14:36 - [231,283] ----D- C:\Program Files\eMule
O43 - CFD: 30/05/2006 - 22:51:00 - [0,160] ----D- C:\Program Files\ESTsoft
O43 - CFD: 15/07/2010 - 00:17:12 - [0,418] ----D- C:\Program Files\Everest Poker.fr
O43 - CFD: 12/11/2011 - 18:02:34 - [293,266] ----D- C:\Program Files\Fichiers communs
O43 - CFD: 11/11/2008 - 12:36:48 - [0,905] ----D- C:\Program Files\File Scanner Library (Spybot - Search & Destroy)
O43 - CFD: 29/01/2012 - 15:12:30 - [0,000] ----D- C:\Program Files\FileHippo.com
O43 - CFD: 24/02/2012 - 14:06:40 - [14,843] ----D- C:\Program Files\foobar2000
O43 - CFD: 07/04/2007 - 18:56:42 - [0,568] ----D- C:\Program Files\Free Internet TV
O43 - CFD: 20/11/2011 - 05:08:44 - [122,195] ----D- C:\Program Files\Google
O43 - CFD: 11/11/2008 - 12:30:56 - [0,168] ----D- C:\Program Files\History Sweeper
O43 - CFD: 21/05/2009 - 13:28:38 - [8,513] ----D- C:\P
En fait mon ordi au bout d'un moment ralenti et ne répond plus.
Là je me suis mis en mode sans échec, mon pc est stable.
Voici pour le diagnostic :
https://pjjoint.malekal.com/files.php?read=ZHPDiag_20120402_v7q12k12t5k5
Rapport de ZHPDiag v1.28.34 par Nicolas Coolman, Update du 06/03/2012
Run by Administrateur at 02/04/2012 16:15:56
Web site : http://www.premiumorange.com/zeb-help-process/zhpdiag.html
Web site : http://nicolascoolman.skyrock.com/
State :
---\\ Web Browser
MSIE: Internet Explorer v8.0.6001.18702 (Defaut)
MFIE: Mozilla Firefox 9.0.1 v9.0.1
---\\ Windows Product Information
~ Langage: Français
Windows XP Home Edition Service Pack 3 (Build 2600)
Windows Automatic Updates : OK
Windows Genuine Advantage : OK
---\\ System Information
~ Processor: x86 Family 15 Model 28 Stepping 0, AuthenticAMD
~ Operating System: 32 Bits
Boot mode: Sans échec avec prise en charge du réseau (Fail-safe with network boot)
Total RAM: 1023 MB (67% free)
System Restore: Activé (Enable)
System drive C: has 115 GB (49%) free of 233 GB
---\\ Logged in mode
~ Computer Name: USER-E1E990331F
~ User Name: Administrateur
~ All Users Names: User, SUPPORT_388945a0, HelpAssistant, ASPNET, Administrateur,
~ Unselected Option: O45,O61,O62,O65,O80,O82
Logged in as Administrator
---\\ Environnement Variables
~ System Unit : C:\
~ %AppData% : C:\Documents and Settings\Administrateur\Application Data\
~ %Desktop% : C:\Documents and Settings\Administrateur\Bureau\
~ %Favorites% : C:\Documents and Settings\Administrateur\Favorites\
~ %LocalAppData% : C:\Documents and Settings\Administrateur\Local Settings\Application Data\
~ %StartMenu% : C:\Documents and Settings\Administrateur\Menu Démarrer\
~ %Windir% : C:\WINDOWS\
~ %System% : C:\WINDOWS\system32\
---\\ DOS/Devices
A:\ Floppy drive, Flash card reader, USB Key (Not Inserted)
C:\ Hard drive, Flash drive, Thumb drive (Free 115 Go of 233 Go)
D:\ CD-ROM drive (Not Inserted)
F:\ Floppy drive, Flash card reader, USB Key (Not Inserted)
G:\ Floppy drive, Flash card reader, USB Key (Not Inserted)
H:\ Floppy drive, Flash card reader, USB Key (Not Inserted)
I:\ Floppy drive, Flash card reader, USB Key (Not Inserted)
---\\ Security Center & Tools Informations
[HKLM\SOFTWARE\Microsoft\Security Center] AntiVirusOverride: OK
[HKLM\SOFTWARE\Microsoft\Security Center] AntiVirusDisableNotify: OK
[HKLM\SOFTWARE\Microsoft\Security Center] FirewallDisableNotify: OK
[HKLM\SOFTWARE\Microsoft\Security Center] FirewallOverride: OK
[HKLM\SOFTWARE\Microsoft\Security Center] UpdatesDisableNotify: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\system] EnableLUA: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\NOHIDDEN] CheckedValue: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\SHOWALL] CheckedValue: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Associations] Application: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Associations] Intl: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Associations] XMLLookup: OK
[HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon] Shell: OK
[HKCU\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows] Load: OK
[HKLM\SYSTEM\CurrentControlSet\Services] wscsvc : OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\WindowsUpdate\Auto Update\Results\Install] LastSuccessTime : OK
~ Scan Security Center in 00mn 00s
---\\ Recherche particulière de fichiers génériques
[MD5.F2317622D29F9FF0F88AEECD5F60F0DD] - (.Microsoft Corporation - Explorateur Windows.) (.14/04/2008 - 03:34:03.) -- C:\WINDOWS\Explorer.exe [1037824]
[MD5.93AD0B78C7357A05F50E594EC7C22300] - (.Microsoft Corporation - Exécuter une DLL en tant qu'application.) (.14/04/2008 - 03:34:20.) -- C:\WINDOWS\system32\rundll32.exe [33792]
[MD5.5C72F65D2F038E0BF481326423F9D266] - (.Microsoft Corporation - Internet Extensions for Win32.) (.17/12/2011 - 20:43:31.) -- C:\WINDOWS\system32\wininet.dll [916992]
[MD5.DD73D6B9F6B4CB630CF35B438B540174] - (.Microsoft Corporation - Application d'ouverture de session Windows NT.) (.14/04/2008 - 03:34:28.) -- C:\WINDOWS\system32\Winlogon.exe [512000]
[MD5.1E44BC1E83D8FD2305F8D452DB109CF9] - (.Microsoft Corporation - Ancillary Function Driver for WinSock.) (.17/08/2011 - 14:49:54.) -- C:\WINDOWS\system32\drivers\AFD.sys [138496]
[MD5.9F3A2F5AA6875C72BF062C712CFA2674] - (.Microsoft Corporation - IDE/ATAPI Port Driver.) (.13/04/2008 - 19:40:30.) -- C:\WINDOWS\system32\drivers\atapi.sys [96512]
[MD5.C885B02847F5D2FD45A24E219ED93B32] - (.Microsoft Corporation - CD-ROM File System Driver.) (.13/04/2008 - 20:14:21.) -- C:\WINDOWS\system32\drivers\Cdfs.sys [63744]
[MD5.1F4260CC5B42272D71F79E570A27A4FE] - (.Microsoft Corporation - SCSI CD-ROM Driver.) (.13/04/2008 - 19:40:46.) -- C:\WINDOWS\system32\drivers\Cdrom.sys [62976]
[MD5.31F923EB2170FC172C81ABDA0045D18C] - (.Microsoft Corporation - Pilote de cryptographie FIPS.) (.14/04/2008 - 02:57:38.) -- C:\WINDOWS\system32\drivers\Fips.sys [44672]
[MD5.573C7D0A32852B48F3058CFD8026F511] - (.Windows (R) Server 2003 DDK provider - High Definition Audio Bus Driver v1.0a.) (.13/04/2008 - 17:36:05.) -- C:\WINDOWS\system32\drivers\HDAudBus.sys [144384]
[MD5.A09BDC4ED10E3B2E0EC27BB94AF32516] - (.Microsoft Corporation - Pilote de port i8042.) (.14/04/2008 - 03:00:52.) -- C:\WINDOWS\system32\drivers\i8042prt.sys [54144]
[MD5.083A052659F5310DD8B6A6CB05EDCF8E] - (.Microsoft Corporation - IMAPI Kernel Driver.) (.13/04/2008 - 19:40:58.) -- C:\WINDOWS\system32\drivers\Imapi.sys [42112]
[MD5.CC748EA12C6EFFDE940EE98098BF96BB] - (.Microsoft Corporation - IP Network Address Translator.) (.13/04/2008 - 19:57:15.) -- C:\WINDOWS\system32\drivers\IpNat.sys [152832]
[MD5.23C74D75E36E7158768DD63D92789A91] - (.Microsoft Corporation - IPSec Driver.) (.13/04/2008 - 20:19:42.) -- C:\WINDOWS\system32\drivers\IPSec.sys [75264]
[MD5.7D304A5EB4344EBEEAB53A2FE3FFB9F0] - (.Microsoft Corporation - Windows NT SMB Minirdr.) (.15/07/2011 - 14:29:31.) -- C:\WINDOWS\system32\drivers\MRxSmb.sys [456320]
[MD5.74B2B2F5BEA5E9A3DC021D685551BD3D] - (.Microsoft Corporation - MBT Transport driver.) (.13/04/2008 - 20:21:00.) -- C:\WINDOWS\system32\drivers\netBT.sys [162816]
[MD5.78A08DD6A8D65E697C18E1DB01C5CDCA] - (.Microsoft Corporation - NT File System Driver.) (.13/04/2008 - 20:15:53.) -- C:\WINDOWS\system32\drivers\ntfs.sys [574976]
[MD5.8FD0BDBEA875D06CCF6C945CA9ABAF75] - (.Microsoft Corporation - Pilote de port parallèle.) (.14/04/2008 - 03:09:40.) -- C:\WINDOWS\system32\drivers\Parport.sys [80384]
[MD5.11B4A627BC9614B885C4969BFA5FF8A6] - (.Microsoft Corporation - RAS L2TP mini-port/call-manager driver.) (.13/04/2008 - 20:19:43.) -- C:\WINDOWS\system32\drivers\Rasl2tp.sys [51328]
[MD5.15CABD0F7C00C47C70124907916AF3F1] - (.Microsoft Corporation - Microsoft RDP Device redirector.) (.13/04/2008 - 19:32:51.) -- C:\WINDOWS\system32\drivers\rdpdr.sys [196224]
[MD5.D8EB2A7904DB6C916EB5361878DDCBAE] - (.Microsoft Corporation - Pilote de filtre audio Livre rouge.) (.14/04/2008 - 02:57:34.) -- C:\WINDOWS\system32\drivers\redbook.sys [58752]
[MD5.46DE1126684369BACE4849E4FC8C43CA] - (.Microsoft Corporation - Pilote de cliché instantané du volume.) (.14/04/2008 - 02:56:04.) -- C:\WINDOWS\system32\drivers\volsnap.sys [53376]
~ Scan Generic Processes in 00mn 00s
---\\ Etat des fichiers cachés (Caché/Total)
~ Mes images (My Pictures) : 0/0
~ Mes musiques (My Musics) : 0/0
~ Mes Videos (My Video) : 0/0
~ Mes Favoris (My Favorites) : Non accessible (Not found)
~ Mes Documents (My Documents) : 0/0
~ Mon Bureau (My Desktop) : 0/4
~ Menu demarrer (Programs) : 5/15
~ Scan Hidden Files in 00mn 00s
---\\ Processus lancés
[MD5.B60DDDD2D63CE41CB8C487FCFBB6419E] - (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files\Internet Explorer\iexplore.exe [638816] [PID.1856]
[MD5.E897110EE5E67FABB83B154DF9C68D6A] - (...) -- C:\Documents and Settings\Administrateur\Local Settings\Temporary Internet Files\Content.IE5\624S3QZ6\ZHPDiag_silent[1].exe [794216] [PID.1520]
[MD5.46AE705AC463F50AC714C8084A09A2A3] - (.Nicolas Coolman - Diagnostic Tool.) -- C:\Program Files\ZHPDiag\ZHPDiag.exe [2211328] [PID.836]
~ Scan Processes Running in 00mn 00s
---\\ Mozilla Firefox, Plugins,Demarrage,Recherche,Extensions (P2,M0,M1,M2,M3)
M3 - MFPP: Plugins - [Administrateur] -- C:\Program Files\Mozilla FireFox\searchplugins\amazon-france.xml
M3 - MFPP: Plugins - [Administrateur] -- C:\Program Files\Mozilla FireFox\searchplugins\bing.xml
M3 - MFPP: Plugins - [Administrateur] -- C:\Program Files\Mozilla FireFox\searchplugins\cnrtl-tlfi-fr.xml
M3 - MFPP: Plugins - [Administrateur] -- C:\Program Files\Mozilla FireFox\searchplugins\eBay-france.xml
M3 - MFPP: Plugins - [Administrateur] -- C:\Program Files\Mozilla FireFox\searchplugins\google.xml
M3 - MFPP: Plugins - [Administrateur] -- C:\Program Files\Mozilla FireFox\searchplugins\wikipedia-fr.xml
M3 - MFPP: Plugins - [Administrateur] -- C:\Program Files\Mozilla FireFox\searchplugins\yahoo-france.xml
P2 - FPN:Firefox Plugin Navigator . (.Sun Microsystems, Inc. - NPRuntime Script Plug-in Library for Java(TM) Deploy.) -- C:\Program Files\Mozilla Firefox\Plugins\npdeployJava1.dll
P2 - FPN:Firefox Plugin Navigator . (.DivX, Inc - npdivxplayerplugin.) -- C:\Program Files\Mozilla Firefox\Plugins\npDivxPlayerPlugin.dll
P2 - FPN:Firefox Plugin Navigator . (.Microsoft Corporation - 1.9.0009.1.) -- C:\Program Files\Mozilla Firefox\Plugins\npLegitCheckPlugin.dll
P2 - FPN:Firefox Plugin Navigator . (.Adobe Systems Inc. - Adobe PDF Plug-In For Firefox and Netscape 10.1.2.) -- C:\Program Files\Mozilla Firefox\Plugins\nppdf32.dll
P2 - FPN:Firefox Plugin Navigator . (.Apple Inc. - The QuickTime Plugin allows you to view a wide variety of multimedia c.) -- C:\Program Files\Mozilla Firefox\Plugins\npqtplugin.dll
P2 - FPN:Firefox Plugin Navigator . (.Apple Inc. - The QuickTime Plugin allows you to view a wide variety of multimedia c.) -- C:\Program Files\Mozilla Firefox\Plugins\npqtplugin2.dll
P2 - FPN:Firefox Plugin Navigator . (.Apple Inc. - The QuickTime Plugin allows you to view a wide variety of multimedia c.) -- C:\Program Files\Mozilla Firefox\Plugins\npqtplugin3.dll
P2 - FPN:Firefox Plugin Navigator . (.Apple Inc. - The QuickTime Plugin allows you to view a wide variety of multimedia c.) -- C:\Program Files\Mozilla Firefox\Plugins\npqtplugin4.dll
P2 - FPN:Firefox Plugin Navigator . (.Apple Inc. - The QuickTime Plugin allows you to view a wide variety of multimedia c.) -- C:\Program Files\Mozilla Firefox\Plugins\npqtplugin5.dll
P2 - FPN:Firefox Plugin Navigator . (.Apple Inc. - The QuickTime Plugin allows you to view a wide variety of multimedia c.) -- C:\Program Files\Mozilla Firefox\Plugins\npqtplugin6.dll
P2 - FPN:Firefox Plugin Navigator . (.Apple Inc. - The QuickTime Plugin allows you to view a wide variety of multimedia c.) -- C:\Program Files\Mozilla Firefox\Plugins\npqtplugin7.dll
P2 - FPN: [HKLM] [@adobe.com/FlashPlayer] - (...) -- C:\WINDOWS\system32\Macromed\Flash\NPSWF32.dll
P2 - FPN: [HKLM] [@adobe.com/ShockwavePlayer] - (.Adobe Systems, Inc. - Adobe Shockwave for Director Netscape plug-in, version 11.6.1.629.) -- C:\WINDOWS\system32\Adobe\Director\np32dsw.dll
P2 - FPN: [HKLM] [@canon.com/EPPEX] - (.CANON INC. - CANON iMAGE GATEWAY Album Plugin Utility Module.) -- C:\Program Files\Canon\Easy-PhotoPrint EX\NPEZFFPI.dll
P2 - FPN: [HKLM] [@divx.com/DivX Browser Plugin,version=1.0.0] - (.DivX,Inc. - DivX Web Player version 2.0.2.39.) -- C:\Program Files\DivX\DivX Plus Web Player\npdivx32.dll
P2 - FPN: [HKLM] [@divx.com/DivX Player Plugin,version=1.0.0] - (...) -- C:\Program Files\DivX\DivX Player\npDivxPlayerPlugin.dll (.not file.)
P2 - FPN: [HKLM] [@Google.com/GoogleEarthPlugin] - (.Google - GEPlugin.) -- C:\Program Files\Google\Google Earth\plugin\npgeplugin.dll
P2 - FPN: [HKLM] [@google.com/npPicasa2,version=2.0.0] - (...) -- C:\Program Files\Picasa2\npPicasa2.dll (.not file.)
P2 - FPN: [HKLM] [@java.com/JavaPlugin] - (.Sun Microsystems, Inc. - Next Generation Java Plug-in 1.6.0_26 for Mozilla browsers.) -- C:\Program Files\Java\jre6\bin\new_plugin\npjp2.dll
P2 - FPN: [HKLM] [@microsoft.com/WPF,version=3.5] - (.Microsoft Corporation - Windows Presentation Foundation (WPF) plug-in for Mozilla browsers.) -- C:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll
P2 - FPN: [HKLM] [@pack.google.com/Google Updater;version=14] - (.Google - Google Updater plugin<br><a href="http://pack.google.com/">http://pack.) -- C:\Program Files\Google\Google Updater\2.4.2432.1652\npCIDetect14.dll
P2 - FPN: [HKLM] [@tools.google.com/Google Update;version=3] - (.Google Inc. - Google Update.) -- C:\Program Files\Google\Update\1.3.21.111\npGoogleUpdate3.dll
P2 - FPN: [HKLM] [@tools.google.com/Google Update;version=9] - (.Google Inc. - Google Update.) -- C:\Program Files\Google\Update\1.3.21.111\npGoogleUpdate3.dll
P2 - FPN: [HKLM] [Adobe Reader] - (.Adobe Systems Inc. - Adobe PDF Plug-In For Firefox and Netscape 10.1.2.) -- C:\Program Files\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll
~ Scan Firefox Browser in 00mn 00s
---\\ Internet Explorer, Démarrage,Recherche,URLSearchHook, Phishing (R0,R1,R3,R4)
R0 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = https://www.microsoft.com/fr-fr/
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Extensions Off Page = about:noadd-ons
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Security Risk Page = about:securityrisk
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\AboutURLs,Tabs = res://ieframe.dll/tabswelcome.htm
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Search,SearchAssistant = https://www.bing.com/?toHttps=1&redig=17DBE7D168544FA98200E890A8051984
~ Scan IE Browser in 00mn 00s
---\\ Internet Explorer, Proxy Management (R5)
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyServer = no key
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyEnable = 0
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,MigrateProxy = 1
~ Scan Proxy management in 00mn 00s
---\\ Modification d'une valeur Ini (Changed inifile value, mapped to Registry) (F2)
F2 - REG:system.ini: UserInit=C:\WINDOWS\system32\userinit.exe,
F2 - REG:system.ini: VMApplet=rundll32 shell32,Control_RunDLL "sysdm.cpl"
~ Scan Keys in 00mn 00s
---\\ Redirection du fichier Hosts (O1)
~ Le fichier hosts est sain (The hosts file is clean).
~ Scan Hosts File in 00mn 00s
~ Nombre de lignes (Lines number): 1
---\\ Browser Helper Objects de navigateur (O2)
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} . (.Adobe Systems Incorporated - Adobe PDF Helper for Internet Explorer.) -- C:\Program Files\Fichiers communs\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: Canon Easy-WebPrint EX BHO - {3785D0AD-BFFF-47F6-BF5B-A587C162FED9} . (.CANON INC. - Easy-WebPrint EX.) -- C:\Program Files\Canon\Easy-WebPrint EX\ewpexbho.dll
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} . (.Sun Microsystems, Inc. - Java(TM) Platform SE binary.) -- C:\Program Files\Java\jre6\bin\ssv.dll
O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} . (.Microsoft Corporation - WindowsLiveLogin.dll.) -- C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: BHO Barre de Confiance - {988B07F5-7392-455A-8A1F-64935CB8B6ED} . (.Euro-Information - Barre de Confiance.) -- C:\Program Files\BarreConfCMCIC\TAPbar.dll
O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} . (.Google Inc. - GoogleToolbarNotifier.) -- C:\Program Files\Google\GoogleToolbarNotifier\5.7.6406.1642\swg.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} . (.Sun Microsystems, Inc. - Java(TM) Platform SE binary.) -- C:\Program Files\Java\jre6\bin\jp2ssv.dll
O2 - BHO: JQSIEStartDetectorImpl - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} . (.Sun Microsystems, Inc. - Java(TM) Quick Starter binary.) -- C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll
~ Scan BHO in 00mn 00s
---\\ Internet Explorer Toolbars (O3)
O3 - Toolbar: Barre de confiance - {55BDF3B0-C0A8-481A-B8A6-01CD2BE0F3FD} . (.Euro-Information - Barre de Confiance.) -- C:\Program Files\BarreConfCMCIC\TAPbar.dll
O3 - Toolbar: Canon Easy-WebPrint EX - {759D9886-0C6F-4498-BAB6-4A5F47C6C72F} . (.CANON INC. - Easy-WebPrint EX.) -- C:\Program Files\Canon\Easy-WebPrint EX\ewpexhlp.dll
~ Scan Toolbar in 00mn 00s
---\\ Applications démarrées par registre & par dossier (O4)
O4 - HKLM\..\Run: [NVRaidService] . (.NVIDIA Corporation - Raid Service U.S. English Resources.) -- C:\WINDOWS\system32\nvraidservice.exe
O4 - HKLM\..\Run: [SoundMan] . (.Realtek Semiconductor Corp. - Realtek Sound Manager.) -- C:\WINDOWS\SOUNDMAN.exe
O4 - HKLM\..\Run: [Adobe ARM] . (.Adobe Systems Incorporated - Adobe Reader and Acrobat Manager.) -- C:\Program Files\Fichiers communs\Adobe\ARM\1.0\AdobeARM.exe
O4 - HKLM\..\Run: [avgnt] . (.Avira Operations GmbH & Co. KG - Avira System Tray Tool.) -- C:\Program Files\Avira\AntiVir Desktop\avgnt.exe
O4 - HKCU\..\Run: [CTFMON.EXE] . (.Microsoft Corporation - CTF Loader.) -- C:\WINDOWS\system32\ctfmon.exe
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] . (.Microsoft Corporation - CTF Loader.) -- C:\WINDOWS\system32\ctfmon.exe
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] . (.Microsoft Corporation - CTF Loader.) -- C:\WINDOWS\system32\ctfmon.exe
O4 - HKUS\S-1-5-21-606747145-1647877149-839522115-500\..\Run: [CTFMON.EXE] . (.Microsoft Corporation - CTF Loader.) -- C:\WINDOWS\system32\ctfmon.exe
~ Scan Application in 00mn 00s
---\\ Autres liens utilisateurs (O4)
O4 - Global Startup: C:\Documents And Settings\All Users\Menu Démarrer\Programmes\Adobe ExtendScript Toolkit 2.lnk . (.Adobe Systems, Incorporated.) -- C:\Program Files\Adobe\Adobe Utilities\ExtendScript Toolkit 2\ExtendScript Toolkit 2.exe
O4 - Global Startup: C:\Documents And Settings\All Users\Menu Démarrer\Programmes\Adobe Photoshop Elements 6.0.lnk . (.Adobe Systems Incorporated.) -- C:\Program Files\Adobe\Photoshop Elements 6.0\Photoshop Elements 6.0.exe
O4 - Global Startup: C:\Documents And Settings\All Users\Menu Démarrer\Programmes\Adobe Reader X.lnk . (...) -- C:\WINDOWS\Installer\{AC76BA86-7AD7-1036-7B44-AA1000000001}\SC_Reader.ico
O4 - Global Startup: C:\Documents And Settings\All Users\Menu Démarrer\Programmes\Apple Software Update.lnk . (...) -- C:\WINDOWS\Installer\{789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}\AppleSoftwareUpdateIco.exe
O4 - Global Startup: C:\Documents And Settings\All Users\Menu Démarrer\Programmes\foobar2000.lnk . (...) -- C:\Program Files\foobar2000\foobar2000.exe
O4 - Global Startup: C:\Documents And Settings\All Users\Menu Démarrer\Programmes\Microsoft Access.lnk . (...) -- C:\WINDOWS\Installer\{0000040C-78E1-11D2-B60F-006097C998E7}\accicons.exe
O4 - Global Startup: C:\Documents And Settings\All Users\Menu Démarrer\Programmes\Microsoft Excel.lnk . (...) -- C:\WINDOWS\Installer\{0000040C-78E1-11D2-B60F-006097C998E7}\xlicons.exe
O4 - Global Startup: C:\Documents And Settings\All Users\Menu Démarrer\Programmes\Microsoft FrontPage.lnk . (...) -- C:\WINDOWS\Installer\{0000040C-78E1-11D2-B60F-006097C998E7}\misc.exe
O4 - Global Startup: C:\Documents And Settings\All Users\Menu Démarrer\Programmes\Microsoft Outlook.lnk . (...) -- C:\WINDOWS\Installer\{0000040C-78E1-11D2-B60F-006097C998E7}\outicon.exe
O4 - Global Startup: C:\Documents And Settings\All Users\Menu Démarrer\Programmes\Microsoft PowerPoint.lnk . (...) -- C:\WINDOWS\Installer\{0000040C-78E1-11D2-B60F-006097C998E7}\pptico.exe
O4 - Global Startup: C:\Documents And Settings\All Users\Menu Démarrer\Programmes\Mozilla Firefox.lnk . (.Mozilla Corporation.) -- C:\Program Files\Mozilla Firefox\firefox.exe
O4 - Global Startup: C:\Documents And Settings\All Users\Menu Démarrer\Programmes\Windows Movie Maker.lnk . (.Microsoft Corporation.) -- C:\Program Files\Movie Maker\moviemk.exe
O4 - Global Startup: C:\Documents And Settings\User\Menu Démarrer\Programmes\Assistance à distance.lnk . (.Microsoft Corporation.) -- C:\WINDOWS\system32\rcimlby.exe
O4 - Global Startup: C:\Documents And Settings\User\Menu Démarrer\Programmes\Internet Explorer.lnk . (.Microsoft Corporation.) -- C:\Program Files\Internet Explorer\iexplore.exe
O4 - Global Startup: C:\Documents And Settings\User\Menu Démarrer\Programmes\Outlook Express.lnk . (.Microsoft Corporation.) -- C:\Program Files\Outlook Express\msimn.exe
O4 - Global Startup: C:\Documents And Settings\User\Menu Démarrer\Programmes\Windows Media Player.lnk . (.Microsoft Corporation.) -- C:\Program Files\Windows Media Player\wmplayer.exe
O4 - Global Startup: C:\Documents And Settings\Administrateur\Menu Démarrer\Programmes\Assistance à distance.lnk . (.Microsoft Corporation.) -- C:\WINDOWS\system32\rcimlby.exe
O4 - Global Startup: C:\Documents And Settings\All Users\Menu Démarrer\Programmes\Adobe ExtendScript Toolkit 2.lnk . (.Adobe Systems, Incorporated.) -- C:\Program Files\Adobe\Adobe Utilities\ExtendScript Toolkit 2\ExtendScript Toolkit 2.exe
O4 - Global Startup: C:\Documents And Settings\All Users\Menu Démarrer\Programmes\Adobe Photoshop Elements 6.0.lnk . (.Adobe Systems Incorporated.) -- C:\Program Files\Adobe\Photoshop Elements 6.0\Photoshop Elements 6.0.exe
O4 - Global Startup: C:\Documents And Settings\All Users\Menu Démarrer\Programmes\Adobe Reader X.lnk . (...) -- C:\WINDOWS\Installer\{AC76BA86-7AD7-1036-7B44-AA1000000001}\SC_Reader.ico
O4 - Global Startup: C:\Documents And Settings\All Users\Menu Démarrer\Programmes\Apple Software Update.lnk . (...) -- C:\WINDOWS\Installer\{789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}\AppleSoftwareUpdateIco.exe
O4 - Global Startup: C:\Documents And Settings\All Users\Menu Démarrer\Programmes\foobar2000.lnk . (...) -- C:\Program Files\foobar2000\foobar2000.exe
O4 - Global Startup: C:\Documents And Settings\All Users\Menu Démarrer\Programmes\Microsoft Access.lnk . (...) -- C:\WINDOWS\Installer\{0000040C-78E1-11D2-B60F-006097C998E7}\accicons.exe
O4 - Global Startup: C:\Documents And Settings\All Users\Menu Démarrer\Programmes\Microsoft Excel.lnk . (...) -- C:\WINDOWS\Installer\{0000040C-78E1-11D2-B60F-006097C998E7}\xlicons.exe
O4 - Global Startup: C:\Documents And Settings\All Users\Menu Démarrer\Programmes\Microsoft FrontPage.lnk . (...) -- C:\WINDOWS\Installer\{0000040C-78E1-11D2-B60F-006097C998E7}\misc.exe
O4 - Global Startup: C:\Documents And Settings\All Users\Menu Démarrer\Programmes\Microsoft Outlook.lnk . (...) -- C:\WINDOWS\Installer\{0000040C-78E1-11D2-B60F-006097C998E7}\outicon.exe
O4 - Global Startup: C:\Documents And Settings\All Users\Menu Démarrer\Programmes\Microsoft PowerPoint.lnk . (...) -- C:\WINDOWS\Installer\{0000040C-78E1-11D2-B60F-006097C998E7}\pptico.exe
O4 - Global Startup: C:\Documents And Settings\All Users\Menu Démarrer\Programmes\Mozilla Firefox.lnk . (.Mozilla Corporation.) -- C:\Program Files\Mozilla Firefox\firefox.exe
O4 - Global Startup: C:\Documents And Settings\All Users\Menu Démarrer\Programmes\Windows Movie Maker.lnk . (.Microsoft Corporation.) -- C:\Program Files\Movie Maker\moviemk.exe
O4 - Global Startup: C:\Documents And Settings\User\Menu Démarrer\Programmes\Assistance à distance.lnk . (.Microsoft Corporation.) -- C:\WINDOWS\system32\rcimlby.exe
O4 - Global Startup: C:\Documents And Settings\User\Menu Démarrer\Programmes\Internet Explorer.lnk . (.Microsoft Corporation.) -- C:\Program Files\Internet Explorer\iexplore.exe
O4 - Global Startup: C:\Documents And Settings\User\Menu Démarrer\Programmes\Outlook Express.lnk . (.Microsoft Corporation.) -- C:\Program Files\Outlook Express\msimn.exe
O4 - Global Startup: C:\Documents And Settings\User\Menu Démarrer\Programmes\Windows Media Player.lnk . (.Microsoft Corporation.) -- C:\Program Files\Windows Media Player\wmplayer.exe
O4 - Global Startup: C:\Documents And Settings\Administrateur\Menu Démarrer\Programmes\Assistance à distance.lnk . (.Microsoft Corporation.) -- C:\WINDOWS\system32\rcimlby.exe
~ Scan Global Startup in 00mn 00s
---\\ Boutons situés sur la barre d'outils principale d'Internet Explorer (O9)
O9 - Extra button: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} -- Clé orpheline
O9 - Extra button: Console Java (Sun) - {688DC797-DC11-46A7-9F1B-445F4F58CE6E} . (...) -- C:\Program Files\Copernic Agent\Web\IEToolbarHotIcon.ico
O9 - Extra button: Console Java (Sun) - {D18A0B52-D63C-4ed0-AFC6-C1E3DC1AF43A} -- C:\Program Files\BitComet\tools\BitCometBHO_1.1.11.30.dll (.not file.)
O9 - Extra button: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} -- C:\Program Files\BitComet\tools\BitCometBHO_1.1.11.30.dll (.not file.)
O9 - Extra button: Messager Wanadoo - {FB5F1910-F110-11d2-BB9E-00C04F795683} . (...) -- C:\Program Files\Wanadoo Messager\Wanadoo Messager.ico
~ Scan IE Extra Buttons in 00mn 00s
---\\ Winsock hijacker (Layered Service Provider) (O10)
O10 - WLSP:\000000000001\Winsock LSP File . (.Microsoft Corporation - Fournisseur de service Sockets 2.0 de Microsoft Windows.) -- C:\WINDOWS\system32\mswsock.dll
O10 - WLSP:\000000000002\Winsock LSP File . (.Microsoft Corporation - LDAP RnR Provider DLL.) -- C:\WINDOWS\system32\winrnr.dll
O10 - WLSP:\000000000003\Winsock LSP File . (.Microsoft Corporation - Fournisseur de service Sockets 2.0 de Microsoft Windows.) -- C:\WINDOWS\system32\mswsock.dll
~ Scan Winsock in 00mn 00s
---\\ Objets ActiveX (Downloaded Program Files)(O16)
O16 - DPF: {166B1BCA-3F9C-11CF-8075-444553540000} (Shockwave ActiveX Control) - http://download.macromedia.com/pub/shockwave/cabs/director/sw.cab
O16 - DPF: {17492023-C23A-453E-A040-C7C580BBF700} (Windows Genuine Advantage Validation Tool) - http://download.microsoft.com/download/E/5/6/E5611B10-0D6D-4117-8430-A67417AA88CD/LegitCheckControl.cab
O16 - DPF: {74D05D43-3236-11D4-BDCD-00C04F9A3B61} (HouseCall Control) - https://www.trendmicro.com/en_us/forHome/products/housecall.html
O16 - DPF: {B38870E4-7ECB-40DA-8C6A-595F0A5519FF} (MsnMessengerSetupDownloadControl Class) - http://messenger.msn.com/download/MsnMessengerSetupDownloader.cab
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - https://fpdownload.macromedia.com/get/shockwave/cabs/flash/swflash.cab
~ Scan Objets ActiveX in 00mn 00s
---\\ Modification Domaine/Adresses DNS (O17)
O17 - HKLM\System\CCS\Services\Tcpip\..\{0329D469-E88C-4EDB-8950-DE05DE9D84EB}: DhcpNameServer = 192.168.1.1
O17 - HKLM\System\CS1\Services\Tcpip\..\{0329D469-E88C-4EDB-8950-DE05DE9D84EB}: DhcpNameServer = 192.168.1.1
O17 - HKLM\System\CS2\Services\Tcpip\..\{132E9E06-AC06-42C9-A819-7A962ABB3057}: DhcpNameServer = 192.168.1.1
O17 - HKLM\System\CS3\Services\Tcpip\..\{0329D469-E88C-4EDB-8950-DE05DE9D84EB}: DhcpNameServer = 192.168.1.1
~ Scan Domain in 00mn 00s
---\\ Protocole additionnel (O18)
O18 - Handler: about - {3050F406-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Microsoft (R) HTML Viewer.) -- C:\WINDOWS\system32\mshtml.dll
O18 - Handler: cdl - {3dd53d40-7b8b-11D0-b013-00aa0059ce02} . (.Microsoft Corporation - OLE32 Extensions for Win32.) -- C:\WINDOWS\system32\urlmon.dll
O18 - Handler: copernicagent - {A979B6BD-E40B-4A07-ABDD-A62C64A4EBF6} . (.Copernic Technologies Inc. - Copernic Agent Extensions.) -- C:\Program Files\Copernic Agent\CopernicAgentExt.dll
O18 - Handler: copernicagentcache - {AAC34CFD-274D-4A9D-B0DC-C74C05A67E1D} . (.Copernic Technologies Inc. - Copernic Agent Extensions.) -- C:\Program Files\Copernic Agent\CopernicAgentExt.dll
O18 - Handler: dvd - {12D51199-0DB5-46FE-A120-47A3D7D937CC} . (.Microsoft Corporation - Contrôle ActiveX pour le flux vidéo.) -- C:\WINDOWS\system32\msvidctl.dll
O18 - Handler: file - {79eac9e7-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - OLE32 Extensions for Win32.) -- C:\WINDOWS\system32\urlmon.dll
O18 - Handler: ftp - {79eac9e3-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - OLE32 Extensions for Win32.) -- C:\WINDOWS\system32\urlmon.dll
O18 - Handler: gopher - {79eac9e4-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - OLE32 Extensions for Win32.) -- C:\WINDOWS\system32\urlmon.dll
O18 - Handler: http - {79eac9e2-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - OLE32 Extensions for Win32.) -- C:\WINDOWS\system32\urlmon.dll
O18 - Handler: https - {79eac9e5-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - OLE32 Extensions for Win32.) -- C:\WINDOWS\system32\urlmon.dll
O18 - Handler: its - {9D148291-B9C8-11D0-A4CC-0000F80149F6} . (.Microsoft Corporation - Microsoft® InfoTech Storage System Library.) -- C:\WINDOWS\system32\itss.dll
O18 - Handler: javascript - {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Microsoft (R) HTML Viewer.) -- C:\WINDOWS\system32\mshtml.dll
O18 - Handler: local - {79eac9e7-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - OLE32 Extensions for Win32.) -- C:\WINDOWS\system32\urlmon.dll
O18 - Handler: mailto - {3050f3DA-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Microsoft (R) HTML Viewer.) -- C:\WINDOWS\system32\mshtml.dll
O18 - Handler: mhtml - {05300401-BCBC-11d0-85E3-00C04FD85AB4} . (.Microsoft Corporation - Microsoft Internet Messaging API.) -- C:\WINDOWS\system32\inetcomm.dll
O18 - Handler: mk - {79eac9e6-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - OLE32 Extensions for Win32.) -- C:\WINDOWS\system32\urlmon.dll
O18 - Handler: ms-its - {9D148291-B9C8-11D0-A4CC-0000F80149F6} . (.Microsoft Corporation - Microsoft® InfoTech Storage System Library.) -- C:\WINDOWS\system32\itss.dll
O18 - Handler: res - {3050F3BC-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Microsoft (R) HTML Viewer.) -- C:\WINDOWS\system32\mshtml.dll
O18 - Handler: sysimage - {76E67A63-06E9-11D2-A840-006008059382} . (.Microsoft Corporation - Microsoft (R) HTML Viewer.) -- C:\WINDOWS\system32\mshtml.dll
O18 - Handler: tv - {CBD30858-AF45-11D2-B6D6-00C04FBBDE6E} . (.Microsoft Corporation - Contrôle ActiveX pour le flux vidéo.) -- C:\WINDOWS\system32\msvidctl.dll
O18 - Handler: vbscript - {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Microsoft (R) HTML Viewer.) -- C:\WINDOWS\system32\mshtml.dll
O18 - Handler: wia - {13F3EA8B-91D7-4F0A-AD76-D2853AC8BECE} . (.Microsoft Corporation - WIA Scripting Layer.) -- C:\WINDOWS\system32\wiascr.dll
O18 - Filter: application/octet-stream - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} . (.Microsoft Corporation - Microsoft .NET Runtime Execution Engine.) -- C:\WINDOWS\system32\mscoree.dll
O18 - Filter: application/x-complus - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} . (.Microsoft Corporation - Microsoft .NET Runtime Execution Engine.) -- C:\WINDOWS\system32\mscoree.dll
O18 - Filter: application/x-msdownload - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} . (.Microsoft Corporation - Microsoft .NET Runtime Execution Engine.) -- C:\WINDOWS\system32\mscoree.dll
O18 - Filter: Class Install Handler - {32B533BB-EDAE-11d0-BD5A-00AA00B92AF1} . (.Microsoft Corporation - OLE32 Extensions for Win32.) -- C:\WINDOWS\system32\urlmon.dll
O18 - Filter: deflate - {8f6b0360-b80d-11d0-a9b3-006097942311} . (.Microsoft Corporation - OLE32 Extensions for Win32.) -- C:\WINDOWS\system32\urlmon.dll
O18 - Filter: gzip - {8f6b0360-b80d-11d0-a9b3-006097942311} . (.Microsoft Corporation - OLE32 Extensions for Win32.) -- C:\WINDOWS\system32\urlmon.dll
O18 - Filter: lzdhtml - {8f6b0360-b80d-11d0-a9b3-006097942311} . (.Microsoft Corporation - OLE32 Extensions for Win32.) -- C:\WINDOWS\system32\urlmon.dll
O18 - Filter: text/webviewhtml - {733AC4CB-F1A4-11d0-B951-00A0C90312E1} . (.Microsoft Corporation - DLL commune du shell Windows.) -- C:\WINDOWS\system32\shell32.dll
~ Scan Protocole Additionnel in 00mn 00s
---\\ Valeur de Registre AppInit_DLLs et sous-clés Winlogon Notify (autorun) (O20)
O20 - Winlogon Notify: crypt32chain . (.Microsoft Corporation - Crypto API32.) -- C:\WINDOWS\system32\crypt32.dll
O20 - Winlogon Notify: cryptnet . (.Microsoft Corporation - Crypto Network Related API.) -- C:\WINDOWS\system32\cryptnet.dll
O20 - Winlogon Notify: cscdll . (.Microsoft Corporation - Agent réseau hors connexion.) -- C:\WINDOWS\system32\cscdll.dll
O20 - Winlogon Notify: dimsntfy . (.Microsoft Corporation - DIMS Notification Handler.) -- C:\WINDOWS\system32\dimsntfy.dll
O20 - Winlogon Notify: ScCertProp . (.Microsoft Corporation - DLL commune de réception des notifications.) -- C:\WINDOWS\system32\wlnotify.dll
O20 - Winlogon Notify: Schedule . (.Microsoft Corporation - DLL commune de réception des notifications.) -- C:\WINDOWS\system32\wlnotify.dll
O20 - Winlogon Notify: sclgntfy . (.Microsoft Corporation - DLL secondaire de notification de service d.) -- C:\WINDOWS\system32\sclgntfy.dll
O20 - Winlogon Notify: SensLogn . (.Microsoft Corporation - DLL commune de réception des notifications.) -- C:\WINDOWS\system32\WlNotify.dll
O20 - Winlogon Notify: termsrv . (.Microsoft Corporation - DLL commune de réception des notifications.) -- C:\WINDOWS\system32\wlnotify.dll
O20 - Winlogon Notify: WgaLogon . (.Microsoft Corporation - Notifications Windows Genuine Advantage.) -- C:\WINDOWS\system32\WgaLogon.dll
O20 - Winlogon Notify: wlballoon . (.Microsoft Corporation - DLL commune de réception des notifications.) -- C:\WINDOWS\system32\wlnotify.dll
~ Scan Winlogon in 00mn 00s
---\\ Clé de Registre autorun ShellServiceObjectDelayLoad (SSO/SSODL) (O21)
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} . (.Microsoft Corporation - Web Site Monitor.) -- C:\WINDOWS\system32\webcheck.dll
O21 - SSODL: SysTray - {35CEC8A3-2BE6-11D2-8773-92E220524153} . (.Microsoft Corporation - Objet du service d'environnement Systray.) -- C:\WINDOWS\system32\stobject.dll
~ Scan SSODL in 00mn 00s
---\\ Clé de Registre autorun SharedTaskScheduler (STS) (O22)
O22 - SharedTaskScheduler: (no name) - {8C7461EF-2B13-11d2-BE35-3078302C2030} . (.Microsoft Corporation - Bibliothèque de l'interface utilisateur du.) -- C:\WINDOWS\system32\browseui.dll
~ Scan STS/SSO in 00mn 00s
---\\ Liste des services NT non Microsoft et non désactivés (O23)
O23 - Service: Adobe Active File Monitor V6 (AdobeActiveFileMonitor6.0) . (...) - C:\Program Files\Adobe\Photoshop Elements 6.0\PhotoshopElementsFileAgent.exe
O23 - Service: Avira Planificateur (AntiVirSchedulerService) . (.Avira Operations GmbH & Co. KG - Avira Scheduler.) - C:\Program Files\Avira\AntiVir Desktop\sched.exe
O23 - Service: Avira Protection temps réel (AntiVirService) . (.Avira Operations GmbH & Co. KG - Avira On-Access Service.) - C:\Program Files\Avira\AntiVir Desktop\avguard.exe
O23 - Service: France Telecom Routing Table Service (FTRTSVC) . (.France Telecom - FTRTSVC NT Service.) - C:\WINDOWS\system32\FTRTSVC.exe
O23 - Service: Google Update Service (gupdate1c9b961d6f (gupdate1c9b961d6fe301e) . (.Google Inc. - Programme d'installation de Google.) - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Google Software Updater (gusvc) . (.Google - gusvc.) - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: Java Quick Starter (JavaQuickStarterService) . (.Sun Microsystems, Inc. - Java(TM) Quick Starter Service.) - C:\Program Files\Java\jre6\bin\jqs.exe
~ Scan Services in 00mn 00s
---\\ Enumération Active Desktop & MHTML Editor (O24)
O24 - Default MHTML Editor: Last - .(...) - (.not file.)
~ Scan Desktop Component in 00mn 00s
---\\ BootExecute (O34)
O34 - HKLM BootExecute: (autocheck autochk *) - File not found
~ Scan Keys in 00mn 00s
---\\ Tâches planifiées en automatique (O39)
O39 - APT:Automatic Planified Task - C:\WINDOWS\Tasks\AppleSoftwareUpdate.job
O39 - APT:Automatic Planified Task - C:\WINDOWS\Tasks\Google Software Updater.job
O39 - APT:Automatic Planified Task - C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job
O39 - APT:Automatic Planified Task - C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job
[MD5.34EBD4FF6A24D86BB4716D6AFCC1A89B] [APT] [AppleSoftwareUpdate] (.Apple Inc..) -- C:\Program Files\Apple Software Update\SoftwareUpdate.exe
[MD5.408DDD80EEDE47175F6844817B90213E] [APT] [Google Software Updater] (.Google.) -- C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
[MD5.626A24ED1228580B9518C01930936DF9] [APT] [GoogleUpdateTaskMachineCore] (.Google Inc..) -- C:\Program Files\Google\Update\GoogleUpdate.exe
[MD5.626A24ED1228580B9518C01930936DF9] [APT] [GoogleUpdateTaskMachineUA] (.Google Inc..) -- C:\Program Files\Google\Update\GoogleUpdate.exe
~ Scan Scheduled Task in 00mn 00s
---\\ Composants installés (ActiveSetup Installed Components) (O40)
O40 - ASIC: Mise à jour de la version d'Internet Explorer - <{12d0ed0d-0ee0-4f90-8827-78cefb8f4988} . (.Microsoft Corporation - IE Per User Active Setup Uninstall Utility.) -- C:\WINDOWS\system32\ieudinit.exe
O40 - ASIC: Microsoft Windows Media Player - >{22d6f312-b0f6-11d0-94ab-0080c74c7e95} . (.Microsoft Corporation - Utilitaire d'installation du Lecteur Windows Media de Microsoft.) -- C:\WINDOWS\inf\unregmp2.exe
O40 - ASIC: Internet Explorer - >{26923b43-4d38-484f-9b9e-de460746276c} . (.Microsoft Corporation - Utilitaire d'initialisation d'Internet Explorer par utilisateur.) -- C:\WINDOWS\system32\ie4uinit.exe.mui
O40 - ASIC: Browser Customizations - >{60B49E34-C7CC-11D0-8953-00A0C90347FF} . (.Microsoft Corporation - IEAK branding.) -- C:\WINDOWS\system32\iedkcs32.dll
O40 - ASIC: Macromedia Shockwave Director 10.1 - {166B1BCA-3F9C-11CF-8075-444553540000} . (.Adobe Systems, Inc. - Shockwave ActiveX Control.) -- C:\WINDOWS\system32\Adobe\Director\SwDir.dll
O40 - ASIC: Microsoft NetShow Player - {2179C5D3-EBFF-11CF-B6FD-00AA00B4E220} . (.Microsoft Corporation - Windows Media Player Extension.) -- C:\WINDOWS\system32\wmpdxm.dll
O40 - ASIC: Microsoft Windows Media Player 6.4 - {22d6f312-b0f6-11d0-94ab-0080c74c7e95} . (.Microsoft Corporation - Windows Media Player Extension.) -- C:\WINDOWS\system32\wmpdxm.dll
O40 - ASIC: NetMeeting 3.01 - {44BBA842-CC51-11CF-AAFA-00AA00B6015B} . (...) -- C:\WINDOWS\INF\msnetmtg.inf
O40 - ASIC: Windows Messenger 4.7 - {5945c046-1e7d-11d1-bc44-00c04fd912be} . (...) -- C:\WINDOWS\INF\msmsgs.inf
O40 - ASIC: Browsing Enhancements - {630b1da0-b465-11d1-9948-00c04f98bbc9} . (.Microsoft Corporation - Extension Shell dossier FTP Microsoft Internet Explorer..) -- C:\WINDOWS\system32\msieftp.dll
O40 - ASIC: Microsoft Windows Media Player - {6BF52A52-394A-11d3-B153-00C04F79FAA6} . (...) -- C:\WINDOWS\INF\wmp11.inf
O40 - ASIC: Internet Explorer - {89820200-ECBD-11cf-8B85-00AA005B4383} . (.Microsoft Corporation - Utilitaire d'initialisation d'Internet Explorer par utilisateur.) -- C:\WINDOWS\system32\ie4uinit.exe.mui
O40 - ASIC: (no name) - {89B4C1CD-B018-4511-B0A1-5476DBF70820} . (.Microsoft Corporation - Microsoft .NET IE SECURITY REGISTRATION.) -- c:\WINDOWS\system32\mscories.dll
O40 - ASIC: Macromedia Shockwave Flash - {D27CDB6E-AE6D-11cf-96B8-444553540000} . (.Adobe Systems, Inc. - Adobe Flash Player 10.3 r181.) -- C:\WINDOWS\system32\Macromed\Flash\Flash10r.ocx
~ Scan Active Setup in 00mn 00s
---\\ Pilotes lancés au démarrage (O41)
O41 - Driver: (AFD) . (.Microsoft Corporation - Ancillary Function Driver for WinSock.) - C:\WINDOWS\system32\drivers\afd.sys
O41 - Driver: (AmdK8) . (.Advanced Micro Devices - AMD Processor Driver.) - C:\WINDOWS\system32\DRIVERS\AmdK8.sys
O41 - Driver: (avipbb) . (.Avira GmbH - Avira Driver for Security Enhancement.) - C:\WINDOWS\system32\DRIVERS\avipbb.sys
O41 - Driver: (avkmgr) . (.Avira GmbH - Avira Manager Driver.) - C:\WINDOWS\system32\DRIVERS\avkmgr.sys
O41 - Driver: (Cdrom) . (.Microsoft Corporation - SCSI CD-ROM Driver.) - C:\WINDOWS\system32\DRIVERS\cdrom.sys
O41 - Driver: (i8042prt) . (.Microsoft Corporation - Pilote de port i8042.) - C:\WINDOWS\system32\DRIVERS\i8042prt.sys
O41 - Driver: (Imapi) . (.Microsoft Corporation - IMAPI Kernel Driver.) - C:\WINDOWS\system32\DRIVERS\imapi.sys
O41 - Driver: (IPSec) . (.Microsoft Corporation - IPSec Driver.) - C:\WINDOWS\system32\DRIVERS\ipsec.sys
O41 - Driver: (Kbdclass) . (.Microsoft Corporation - Pilote de la classe Clavier.) - C:\WINDOWS\system32\DRIVERS\kbdclass.sys
O41 - Driver: (Mouclass) . (.Microsoft Corporation - Pilote de la classe Souris.) - C:\WINDOWS\system32\DRIVERS\mouclass.sys
O41 - Driver: (MRxSmb) . (.Microsoft Corporation - Windows NT SMB Minirdr.) - C:\WINDOWS\system32\DRIVERS\mrxsmb.sys
O41 - Driver: (NetBIOS) . (.Microsoft Corporation - NetBIOS interface driver.) - C:\WINDOWS\system32\DRIVERS\netbios.sys
O41 - Driver: (NetBT) . (.Microsoft Corporation - MBT Transport driver.) - C:\WINDOWS\system32\DRIVERS\netbt.sys
O41 - Driver: (Processor) . (.Microsoft Corporation - Pilote de périphérique processeur.) - C:\WINDOWS\system32\DRIVERS\processr.sys
O41 - Driver: (RasAcd) . (.Microsoft Corporation - RAS Automatic Connection Driver.) - C:\WINDOWS\system32\DRIVERS\rasacd.sys
O41 - Driver: (Rdbss) . (.Microsoft Corporation - Redirected Drive Buffering SubSystem Driver.) - C:\WINDOWS\system32\DRIVERS\rdbss.sys
O41 - Driver: (RDPCDD) . (.Microsoft Corporation - RDP Miniport.) - C:\WINDOWS\system32\DRIVERS\RDPCDD.sys
O41 - Driver: (redbook) . (.Microsoft Corporation - Pilote de filtre audio Livre rouge.) - C:\WINDOWS\system32\DRIVERS\redbook.sys
O41 - Driver: (Serial) . (.Microsoft Corporation - Pilote de périphérique série.) - C:\WINDOWS\system32\DRIVERS\serial.sys
O41 - Driver: (ssmdrv) . (.Avira GmbH - AVIRA SnapShot Driver.) - C:\WINDOWS\system32\DRIVERS\ssmdrv.sys
O41 - Driver: (Tcpip) . (.Microsoft Corporation - TCP/IP Protocol Driver.) - C:\WINDOWS\system32\DRIVERS\tcpip.sys
O41 - Driver: (TermDD) . (.Microsoft Corporation - Terminal Server Driver.) - C:\WINDOWS\system32\DRIVERS\termdd.sys
O41 - Driver: Carte vidéo VGA. (VgaSave) . (.Microsoft Corporation - VGA/Super VGA Video Driver.) - C:\WINDOWS\system32\drivers\vga.sys
O41 - Driver: (VgaSave) . (.Microsoft Corporation - VGA/Super VGA Video Driver.) - C:\WINDOWS\system32\drivers\vga.sys
~ Scan Drivers in 00mn 00s
---\\ Logiciels installés (O42)
O42 - Logiciel: AMD APP SDK Runtime - (.Advanced Micro Devices Inc..) [HKLM] -- {A25FF1C0-80B6-4B8B-A551-DC525697A408}
O42 - Logiciel: Adobe AIR - (.Adobe Systems Inc..) [HKLM] -- Adobe AIR
O42 - Logiciel: Adobe AIR - (.Adobe Systems Inc..) [HKLM] -- {B194272D-1F92-46DF-99EB-8D5CE91CB4EC}
O42 - Logiciel: Adobe ExtendScript Toolkit 2 - (.Adobe Systems Incorporated.) [HKLM] -- Adobe_3e054d2218e7aa282c2369d939e58ff
O42 - Logiciel: Adobe ExtendScript Toolkit 2 - (.Adobe Systems Incorporated.) [HKLM] -- {24D7346D-D4B4-45E8-98EA-75EC14B42DD8}
O42 - Logiciel: Adobe Flash Player 10 ActiveX - (.Adobe Systems Incorporated.) [HKLM] -- Adobe Flash Player ActiveX
O42 - Logiciel: Adobe Flash Player 11 Plugin - (.Adobe Systems Incorporated.) [HKLM] -- Adobe Flash Player Plugin
O42 - Logiciel: Adobe Photoshop Elements 6.0 - (.Adobe Systems, Inc..) [HKLM] -- Adobe Photoshop Elements 6
O42 - Logiciel: Adobe Reader X (10.1.2) - Français - (.Adobe Systems Incorporated.) [HKLM] -- {AC76BA86-7AD7-1036-7B44-AA1000000001}
O42 - Logiciel: Adobe Setup - (.Adobe Systems Incorporated.) [HKLM] -- {B3C02EC1-A7B0-4987-9A43-8789426AAA7D}
O42 - Logiciel: Adobe Shockwave Player 11.6 - (.Adobe Systems, Inc..) [HKLM] -- Adobe Shockwave Player
O42 - Logiciel: Apple Application Support - (.Apple Inc..) [HKLM] -- {EE6097DD-05F4-4178-9719-D3170BF098E8}
O42 - Logiciel: Apple Software Update - (.Apple Inc..) [HKLM] -- {789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}
O42 - Logiciel: Assistant de connexion Windows Live - (.Microsoft Corporation.) [HKLM] -- {DCE8CD14-FBF5-4464-B9A4-E18E473546C7}
O42 - Logiciel: Athlon 64 Processor Driver - (.Pas de propriétaire.) [HKLM] -- {C151CE54-E7EA-4804-854B-F515368B0798}
O42 - Logiciel: Avira Free Antivirus - (.Avira.) [HKLM] -- Avira AntiVir Desktop
O42 - Logiciel: Barre de confiance CM-CIC - (.Pas de propriétaire.) [HKLM] -- TAPBar
O42 - Logiciel: CCleaner - (.Piriform.) [HKLM] -- CCleaner
O42 - Logiciel: Canon Easy-WebPrint EX - (.Pas de propriétaire.) [HKLM] -- Easy-WebPrint EX
O42 - Logiciel: Canon MP Navigator EX 3.0 - (.Pas de propriétaire.) [HKLM] -- MP Navigator EX 3.0
O42 - Logiciel: Canon MP550 series MP Drivers - (.Pas de propriétaire.) [HKLM] -- {1199FAD5-9546-44f3-81CF-FFDB8040B7BF}_Canon_MP550_series
O42 - Logiciel: Canon ScanGear Starter - (.Pas de propriétaire.) [HKLM] -- {18A5DFF2-8A95-49F3-873F-743CB5549F3D}
O42 - Logiciel: Canon Utilities Easy-PhotoPrint EX - (.Pas de propriétaire.) [HKLM] -- Easy-PhotoPrint EX
O42 - Logiciel: Canon Utilities Easy-PhotoPrint EX - Données supplémentaires BG_FA3 - (.Pas de propriétaire.) [HKLM] -- Easy-PhotoPrint EX - BG_FA3
O42 - Logiciel: Canon Utilities Easy-PhotoPrint EX - Données supplémentaires BG_ST1 - (.Pas de propriétaire.) [HKLM] -- Easy-PhotoPrint EX - BG_ST1
O42 - Logiciel: Canon Utilities Easy-PhotoPrint EX - Données supplémentaires BG_ST2 - (.Pas de propriétaire.) [HKLM] -- Easy-PhotoPrint EX - BG_ST2
O42 - Logiciel: Canon Utilities Easy-PhotoPrint EX - Données supplémentaires BG_ST3 - (.Pas de propriétaire.) [HKLM] -- Easy-PhotoPrint EX - BG_ST3
O42 - Logiciel: Canon Utilities Easy-PhotoPrint EX - Données supplémentaires BG_ST4 - (.Pas de propriétaire.) [HKLM] -- Easy-PhotoPrint EX - BG_ST4
O42 - Logiciel: Canon Utilities My Printer - (.Pas de propriétaire.) [HKLM] -- CanonMyPrinter
O42 - Logiciel: Canon Utilities Solution Menu - (.Pas de propriétaire.) [HKLM] -- CanonSolutionMenu
O42 - Logiciel: Compatibility Pack for the 2007 Office system - (.Microsoft Corporation.) [HKLM] -- {90120000-0020-0409-0000-0000000FF1CE}
O42 - Logiciel: Copernic Agent Basic - (.Copernic.) [HKLM] -- Copernic Agent Basic
O42 - Logiciel: Defraggler - (.Piriform.) [HKLM] -- Defraggler
O42 - Logiciel: Easy-WebPrint - (.Pas de propriétaire.) [HKLM] -- Easy-WebPrint
O42 - Logiciel: Google Update Helper - (.Google Inc..) [HKLM] -- {A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}
O42 - Logiciel: Google Earth - (.Google.) [HKLM] -- {5A3C1721-F8ED-11E0-8AFB-B8AC6F97B88E}
O42 - Logiciel: Hotfix for Microsoft .NET Framework 3.5 SP1 (KB953595) - (.Microsoft Corporation.) [HKLM] -- {CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9}.KB953595
O42 - Logiciel: Hotfix for Windows XP (KB954550-v5) - (.Microsoft Corporation.) [HKLM] -- KB954550-v5
O42 - Logiciel: Hotfix for Windows XP (KB976002-v5) - (.Microsoft Corporation.) [HKLM] -- KB976002-v5
O42 - Logiciel: ImageMixer3 - (.PIXELA.) [HKLM] -- {751910E3-ECF1-44D0-BF3F-2936A4424514}
O42 - Logiciel: Java(TM) 6 Update 26 - (.Sun Microsystems, Inc..) [HKLM] -- {26A24AE4-039D-4CA4-87B4-2F83216011FF}
O42 - Logiciel: LG PC Suite II - (.LG PC Suite.) [HKLM] -- {14DCD95A-EBA3-4BF0-B7EF-533852E99BE6}
O42 - Logiciel: LG USB Modem driver - (.LG Electronics.) [HKLM] -- {C3ABE126-2BB2-4246-BFE1-6797679B3579}
O42 - Logiciel: Lecteur Windows Media 11 - (.Pas de propriétaire.) [HKLM] -- Windows Media Player
O42 - Logiciel: Livebox - (.Pas de propriétaire.) [HKLM] -- {FC7DDAAE-7F2B-4270-9BFD-5A130B667E9E}
O42 - Logiciel: MSXML 4.0 SP2 (KB954430) - (.Microsoft Corporation.) [HKLM] -- {86493ADD-824D-4B8E-BD72-8C5DCDC52A71}
O42 - Logiciel: MSXML 4.0 SP2 (KB973688) - (.Microsoft Corporation.) [HKLM] -- {F662A8E6-F4DC-41A2-901E-8C11F044BDEC}
O42 - Logiciel: Microsoft .NET Framework 1.1 - (.Microsoft.) [HKLM] -- {CB2F7EDD-9D1F-43C1-90FC-4F52EAE172A1}
O42 - Logiciel: Microsoft .NET Framework 1.1 - (.Pas de propriétaire.) [HKLM] -- Microsoft .NET Framework 1.1 (1033)
O42 - Logiciel: Microsoft .NET Framework 1.1 French Language Pack - (.Microsoft.) [HKLM] -- {9A394342-4A68-4EBA-85A6-55B559F4E700}
O42 - Logiciel: Microsoft .NET Framework 1.1 Security Update (KB2656353) - (.Pas de propriétaire.) [HKLM] -- M2656353
O42 - Logiciel: Microsoft .NET Framework 1.1 Security Update (KB979906) - (.Pas de propriétaire.) [HKLM] -- M979906
O42 - Logiciel: Microsoft .NET Framework 2.0 Service Pack 2 - (.Microsoft Corporation.) [HKLM] -- {C09FB3CD-3D0C-3F2D-899A-6A1D67F2073F}
O42 - Logiciel: Microsoft .NET Framework 2.0 Service Pack 2 Language Pack - FRA - (.Microsoft Corporation.) [HKLM] -- {72AD53CC-CCC0-3757-8480-9EE176866A7C}
O42 - Logiciel: Microsoft .NET Framework 3.0 Service Pack 2 - (.Microsoft Corporation.) [HKLM] -- {A3051CD0-2F64-3813-A88D-B8DCCDE8F8C7}
O42 - Logiciel: Microsoft .NET Framework 3.0 Service Pack 2 Language Pack - FRA - (.Microsoft Corporation.) [HKLM] -- {0BD83598-C2EF-3343-847B-7D2E84599128}
O42 - Logiciel: Microsoft .NET Framework 3.5 Language Pack SP1 - fra - (.Microsoft Corporation.) [HKLM] -- {3E31821C-7917-367E-938E-E65FC413EA31}
O42 - Logiciel: Microsoft .NET Framework 3.5 SP1 - (.Microsoft Corporation.) [HKLM] -- Microsoft .NET Framework 3.5 SP1
O42 - Logiciel: Microsoft .NET Framework 3.5 SP1 - (.Microsoft Corporation.) [HKLM] -- {CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9}
O42 - Logiciel: Microsoft Internationalized Domain Names Mitigation APIs - (.Microsoft Corporation.) [HKLM] -- IDNMitigationAPIs
O42 - Logiciel: Microsoft National Language Support Downlevel APIs - (.Microsoft Corporation.) [HKLM] -- NLSDownlevelMapping
O42 - Logiciel: Microsoft Office 2000 Premium - (.Microsoft Corporation.) [HKLM] -- {0000040C-78E1-11D2-B60F-006097C998E7}
O42 - Logiciel: Microsoft User-Mode Driver Framework Feature Pack 1.0 - (.Microsoft Corporation.) [HKLM] -- Wudf01000
O42 - Logiciel: Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053 - (.Microsoft Corporation.) [HKLM] -- {770657D0-A123-3C07-8E44-1C83EC895118}
O42 - Logiciel: Microsoft Visual C++ 2005 Redistributable - (.Microsoft Corporation.) [HKLM] -- {710f4c1c-cc18-4c49-8cbf-51240c89a1a2}
O42 - Logiciel: Microsoft Visual C++ 2008 ATL Update kb973924 - x86 9.0.30729.4148 - (.Microsoft Corporation.) [HKLM] -- {002D9D5E-29BA-3E6D-9BC4-3D7D6DBC735C}
O42 - Logiciel: Microsoft Visual C++ 2008 Redistributable - KB2467174 - x86 9.0.30729.5570 - (.Microsoft Corporation.) [HKLM] -- {86CE85E6-DBAC-3FFD-B977-E4B79F83C909}
O42 - Logiciel: Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 - (.Microsoft Corporation.) [HKLM] -- {9A25302D-30C0-39D9-BD6F-21E6EC160475}
O42 - Logiciel: Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 - (.Microsoft Corporation.) [HKLM] -- {1F1C2DFC-2D24-3E06-BCB8-725134ADF989}
O42 - Logiciel: Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 - (.Microsoft Corporation.) [HKLM] -- {9BE518E6-ECC6-35A9-88E4-87755C07200F}
O42 - Logiciel: Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 - (.Microsoft Corporation.) [HKLM] -- {F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}
O42 - Logiciel: Module linguistique Microsoft .NET Framework 3.5 SP1- fra - (.Microsoft Corporation.) [HKLM] -- Microsoft .NET Framework 3.5 Language Pack SP1 - fra
O42 - Logiciel: Mozilla Firefox 9.0.1 (x86 fr) - (.Mozilla.) [HKLM] -- Mozilla Firefox 9.0.1 (x86 fr)
O42 - Logiciel: NVIDIA Drivers - (.Pas de propriétaire.) [HKLM] -- NVIDIA Drivers
O42 - Logiciel: Nero Suite - (.Pas de propriétaire.) [HKLM] -- NeroMultiInstaller!UninstallKey
O42 - Logiciel: OpenAL - (.Pas de propriétaire.) [HKLM] -- OpenAL
O42 - Logiciel: Outil de connexion Wanadoo - (.Pas de propriétaire.) [HKLM] -- EspaceWanadoo.exe
O42 - Logiciel: Outil de téléchargement Windows Live - (.Microsoft Corporation.) [HKLM] -- {205C6BDD-7B73-42DE-8505-9A093F35A238}
O42 - Logiciel: Project64 1.6 - (.Project64.) [HKLM] -- {9559F7CA-5E34-4237-A2D9-D856464AD727}
O42 - Logiciel: QuickTime - (.Apple Inc..) [HKLM] -- {57752979-A1C9-4C02-856B-FBB27AC4E02C}
O42 - Logiciel: Realtek AC'97 Audio - (.Realtek Semiconductor Corp..) [HKLM] -- {FB08F381-6533-4108-B7DD-039E11FBC27E}
O42 - Logiciel: SAGEM Wi-Fi 11g USB adapter (Driver) - (.Pas de propriétaire.) [HKLM] -- {E2AA331E-E10E-438C-B1C0-24B2FFD3D9C4}
O42 - Logiciel: SAGEM Wi-Fi 11g USB adapter (Tool) - (.Pas de propriétaire.) [HKLM] -- {6266AB37-350F-483C-88D2-C530ACA42645}
O42 - Logiciel: Security Update for Microsoft .NET Framework 3.5 SP1 (KB2657424) - (.Microsoft Corporation.) [HKLM] -- {CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9}.KB2657424
O42 - Logiciel: Ubuntu - (.Ubuntu.) [HKLM] -- Wubi
O42 - Logiciel: Update for Microsoft .NET Framework 3.5 SP1 (KB963707) - (.Microsoft Corporation.) [HKLM] -- {CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9}.KB963707
O42 - Logiciel: VC80CRTRedist - 8.0.50727.4053 - (.DivX, Inc.) [HKLM] -- {5EE7D259-D137-4438-9A5F-42F432EC0421}
O42 - Logiciel: VideoLAN VLC media player 0.8.6c - (.VideoLAN Team.) [HKLM] -- VLC media player
O42 - Logiciel: Visual Install Pack - (.Phoenixx.) [HKLM] -- {549CC831-2542-47F2-A855-2F41E50EF015}
O42 - Logiciel: Wanadoo Messager - (.Pas de propriétaire.) [HKLM] -- Wanadoo Messager
O42 - Logiciel: WinRAR 4.10 (32-bit) - (.win.rar GmbH.) [HKLM] -- WinRAR archiver
O42 - Logiciel: Windows Genuine Advantage Notifications (KB905474) - (.Microsoft Corporation.) [HKLM] -- WgaNotify
O42 - Logiciel: Windows Genuine Advantage Validation Tool (KB892130) - (.Microsoft Corporation.) [HKLM] -- KB892130
O42 - Logiciel: Windows Genuine Advantage v1.3.0254.0 - (.Microsoft.) [HKLM] -- {63569CE9-FA00-469C-AF5C-E5D4D93ACF91}
O42 - Logiciel: Windows Internet Explorer 7 - (.Microsoft Corporation.) [HKLM] -- ie7
O42 - Logiciel: Windows Internet Explorer 8 - (.Microsoft Corporation.) [HKLM] -- ie8
O42 - Logiciel: Windows Media Format 11 runtime - (.Pas de propriétaire.) [HKLM] -- Windows Media Format Runtime
O42 - Logiciel: Windows XP Service Pack 3 - (.Microsoft Corporation.) [HKLM] -- Windows XP Service
O42 - Logiciel: XML Paper Specification Shared Components Language Pack 1.0 - (.Microsoft Corporation.) [HKLM] -- XPSEPSCLP
O42 - Logiciel: foobar2000 v1.1.11 - (.Peter Pawlowski.) [HKLM] -- foobar2000
O42 - Logiciel: swMSM - (.Adobe Systems, Inc.) [HKLM] -- {612C34C7-5E90-47D8-9B5C-0F717DD82726}
---\\ HKCU & HKLM Software Keys
[HKCU\Software\Classes]
[HKCU\Software\Google]
[HKCU\Software\Intel]
[HKCU\Software\Licenses]
[HKCU\Software\Macromedia]
[HKCU\Software\Malwarebytes' Anti-Malware]
[HKCU\Software\Mozilla]
[HKCU\Software\Netscape]
[HKCU\Software\Piriform]
[HKCU\Software\Policies]
[HKCU\Software\Safer Networking Limited]
[HKCU\Software\VB and VBA Program Settings]
[HKCU\Software\WinRAR]
[HKCU\Software\keyhole.com]
[HKLM\Software\8ec]
[HKLM\Software\AGD]
[HKLM\Software\AMD]
[HKLM\Software\ATI Technologies]
[HKLM\Software\Adobe]
[HKLM\Software\Ahead]
[HKLM\Software\AppDataLow]
[HKLM\Software\Apple Computer, Inc.]
[HKLM\Software\Apple Inc.]
[HKLM\Software\ArcSoft]
[HKLM\Software\Avance]
[HKLM\Software\Avira]
[HKLM\Software\C07ft5Y]
[HKLM\Software\CA561B]
[HKLM\Software\CDDB]
[HKLM\Software\Canon]
[HKLM\Software\Classes]
[HKLM\Software\Clients]
[HKLM\Software\Common Toolkit Suite]
[HKLM\Software\Copernic]
[HKLM\Software\CyberLink]
[HKLM\Software\DT Soft]
[HKLM\Software\Debug]
[HKLM\Software\DesktopSearch]
[HKLM\Software\Digital River]
[HKLM\Software\DivXNetworks]
[HKLM\Software\DivX]
[HKLM\Software\EID]
[HKLM\Software\Elcor Software]
[HKLM\Software\Exent]
[HKLM\Software\FRANCE TELECOM]
[HKLM\Software\Gemplus]
[HKLM\Software\Google]
[HKLM\Software\HaaliMkx]
[HKLM\Software\InfoWorks Technology]
[HKLM\Software\InstallShield]
[HKLM\Software\Intel]
[HKLM\Software\InterVideo]
[HKLM\Software\JavaSoft]
[HKLM\Software\Joy12]
[HKLM\Software\JreMetrics]
[HKLM\Software\KC Softwares]
[HKLM\Software\Khronos]
[HKLM\Software\LG Electronics]
[HKLM\Software\LG PC Suite]
[HKLM\Software\Logitech]
[HKLM\Software\MC4D]
[HKLM\Software\Macromedia]
[HKLM\Software\Macrovision]
[HKLM\Software\Malwarebytes' Anti-Malware]
[HKLM\Software\MozillaPlugins]
[HKLM\Software\Mozilla]
[HKLM\Software\NVIDIA Corporation]
[HKLM\Software\Nero]
[HKLM\Software\Novell]
[HKLM\Software\Nullsoft]
[HKLM\Software\ODBC]
[HKLM\Software\PIXELA]
[HKLM\Software\PepiMK Software]
[HKLM\Software\Piriform]
[HKLM\Software\Policies]
[HKLM\Software\Program Groups]
[HKLM\Software\RealNetworks]
[HKLM\Software\Realtek Semiconductor Corp.]
[HKLM\Software\Realtek]
[HKLM\Software\RegisteredApplications]
[HKLM\Software\S3R521]
[HKLM\Software\Safer Networking Limited]
[HKLM\Software\Sagem]
[HKLM\Software\Schlumberger]
[HKLM\Software\Screen Savers]
[HKLM\Software\Secure]
[HKLM\Software\Serif]
[HKLM\Software\Sonic]
[HKLM\Software\Sony Corporation]
[HKLM\Software\Sony Media Software]
[HKLM\Software\Toogame]
[HKLM\Software\Trad-FR]
[HKLM\Software\Uniblue]
[HKLM\Software\VSO]
[HKLM\Software\VideoLAN]
[HKLM\Software\WebSupergoo]
[HKLM\Software\WinRAR]
[HKLM\Software\Windows 3.1 Migration Status]
[HKLM\Software\Windows]
[HKLM\Software\Wise Solutions]
[HKLM\Software\Wow6432Node]
[HKLM\Software\X-AVCSD]
[HKLM\Software\Xing Technology Corp.]
[HKLM\Software\Yahoo]
[HKLM\Software\Z-Com, Inc.]
[HKLM\Software\Zone Labs]
[HKLM\Software\atomixmp3]
[HKLM\Software\edonkey2000]
[HKLM\Software\mozilla.org]
~ Scan Softwares in 00mn 00s
---\\ Contenu des dossiers Programs/ProgramFiles/ProgramData/AppData (O43)
O43 - CFD: 20/06/2011 - 20:09:14 - [549,433] ----D- C:\Program Files\Adobe
O43 - CFD: 24/08/2005 - 17:49:40 - [88,674] ----D- C:\Program Files\Ahead
O43 - CFD: 24/08/2005 - 17:36:04 - [0,119] ----D- C:\Program Files\AMD
O43 - CFD: 23/06/2011 - 21:08:26 - [1,861] ----D- C:\Program Files\AMD APP
O43 - CFD: 16/07/2011 - 19:11:40 - [2,316] ----D- C:\Program Files\Apple Software Update
O43 - CFD: 23/06/2011 - 21:08:04 - [16,550] ----D- C:\Program Files\ATI
O43 - CFD: 23/06/2011 - 21:08:08 - [0] ----D- C:\Program Files\ATI Technologies
O43 - CFD: 03/05/2010 - 20:42:16 - [0,036] ----D- C:\Program Files\AtomixMP3
O43 - CFD: 26/08/2008 - 19:19:58 - [0] ----D- C:\Program Files\avgahnc
O43 - CFD: 19/12/2011 - 11:29:40 - [167,335] ----D- C:\Program Files\Avira
O43 - CFD: 24/08/2005 - 17:35:20 - [5,226] ----D- C:\Program Files\AvRack
O43 - CFD: 13/02/2008 - 20:31:06 - [0,366] ----D- C:\Program Files\BarreConfCMCIC
O43 - CFD: 03/05/2010 - 20:43:32 - [370,917] ----D- C:\Program Files\Canon
O43 - CFD: 11/04/2010 - 15:09:24 - [15,180] --H-D- C:\Program Files\CanonBJ
O43 - CFD: 04/03/2012 - 18:21:32 - [5,073] ----D- C:\Program Files\CCleaner
O43 - CFD: 24/08/2008 - 11:22:04 - [0] ----D- C:\Program Files\Combined Community Codec Pack
O43 - CFD: 27/05/2010 - 18:53:02 - [0,000] ----D- C:\Program Files\CommonAppData
O43 - CFD: 21/10/2007 - 13:49:38 - [3,632] ----D- C:\Program Files\Copernic Agent
O43 - CFD: 06/06/2006 - 20:30:06 - [2,825] ----D- C:\Program Files\CyberLink
O43 - CFD: 16/03/2008 - 17:57:56 - [0,610] ----D- C:\Program Files\DebugMode
O43 - CFD: 12/11/2011 - 13:35:54 - [4,126] ----D- C:\Program Files\Defraggler
O43 - CFD: 27/05/2010 - 18:53:02 - [61,686] ----D- C:\Program Files\DirectX9c
O43 - CFD: 25/08/2010 - 11:44:50 - [74,022] ----D- C:\Program Files\DivX
O43 - CFD: 19/06/2011 - 15:14:36 - [231,283] ----D- C:\Program Files\eMule
O43 - CFD: 30/05/2006 - 22:51:00 - [0,160] ----D- C:\Program Files\ESTsoft
O43 - CFD: 15/07/2010 - 00:17:12 - [0,418] ----D- C:\Program Files\Everest Poker.fr
O43 - CFD: 12/11/2011 - 18:02:34 - [293,266] ----D- C:\Program Files\Fichiers communs
O43 - CFD: 11/11/2008 - 12:36:48 - [0,905] ----D- C:\Program Files\File Scanner Library (Spybot - Search & Destroy)
O43 - CFD: 29/01/2012 - 15:12:30 - [0,000] ----D- C:\Program Files\FileHippo.com
O43 - CFD: 24/02/2012 - 14:06:40 - [14,843] ----D- C:\Program Files\foobar2000
O43 - CFD: 07/04/2007 - 18:56:42 - [0,568] ----D- C:\Program Files\Free Internet TV
O43 - CFD: 20/11/2011 - 05:08:44 - [122,195] ----D- C:\Program Files\Google
O43 - CFD: 11/11/2008 - 12:30:56 - [0,168] ----D- C:\Program Files\History Sweeper
O43 - CFD: 21/05/2009 - 13:28:38 - [8,513] ----D- C:\P
H3RV3
Messages postés
3591
Date d'inscription
samedi 17 octobre 2009
Statut
Contributeur sécurité
Dernière intervention
7 novembre 2014
280
2 avril 2012 à 16:46
2 avril 2012 à 16:46
Je ne vois rien de spécial sur ton rapport.
Apparemment, tu as Malwarebytes d'installé, as-tu fait un scan dernièrement ?
Si c'est le cas, merci de copier le rapport, sinon, mets le à jour et fais un scan complet puis copie le rapport (en mode normal plutôt qu'en mode sans échec).
Apparemment, tu as Malwarebytes d'installé, as-tu fait un scan dernièrement ?
Si c'est le cas, merci de copier le rapport, sinon, mets le à jour et fais un scan complet puis copie le rapport (en mode normal plutôt qu'en mode sans échec).
pohpey
Messages postés
218
Date d'inscription
mardi 26 août 2008
Statut
Membre
Dernière intervention
31 décembre 2023
14
2 avril 2012 à 17:21
2 avril 2012 à 17:21
J'ai essayé de passer en mode normal mais j'ai des fenetres de navigateur qui s'ouvrent, ces pages s'ouvrent en pleine écran et je n'arrive pas à les fermer et donc à revenir sur le bureau (ctrl/alt/suppr n'affiche pas le gestionnaire des taches.)
je suis donc revenu en mode sans échec pour le scan avec malware, je le post dès qu'il est fini
je suis donc revenu en mode sans échec pour le scan avec malware, je le post dès qu'il est fini
Vous n’avez pas trouvé la réponse que vous recherchez ?
Posez votre question
H3RV3
Messages postés
3591
Date d'inscription
samedi 17 octobre 2009
Statut
Contributeur sécurité
Dernière intervention
7 novembre 2014
280
2 avril 2012 à 17:28
2 avril 2012 à 17:28
OK, ensuite fais ceci :
● Télécharge RogueKiller.exe sur ton bureau.
● Sous XP : Double clique sur RogueKiller.exe
● Sous Vista/7 : Fais un clic droit sur RogueKiller.exe et sélectionne "Exécuter en tant qu'administrateur"
● Choisis l'option Scan
● Patiente pendant que l'outil travaille
● Clique sur le bouton Rapport et copie/colle le dans ta réponse
▲ Le rapport est sauvegardé sur le bureau
● Télécharge RogueKiller.exe sur ton bureau.
● Sous XP : Double clique sur RogueKiller.exe
● Sous Vista/7 : Fais un clic droit sur RogueKiller.exe et sélectionne "Exécuter en tant qu'administrateur"
● Choisis l'option Scan
● Patiente pendant que l'outil travaille
● Clique sur le bouton Rapport et copie/colle le dans ta réponse
▲ Le rapport est sauvegardé sur le bureau
pohpey
Messages postés
218
Date d'inscription
mardi 26 août 2008
Statut
Membre
Dernière intervention
31 décembre 2023
14
2 avril 2012 à 17:34
2 avril 2012 à 17:34
Re,
Voilà pour le rapport RK :
RogueKiller V7.3.2 [20/03/2012] par Tigzy
mail: tigzyRK<at>gmail<dot>com
Remontees: https://www.luanagames.com/index.fr.html
Blog: http://tigzyrk.blogspot.com
Systeme d'exploitation: Windows XP (5.1.2600 Service Pack 3) 32 bits version
Demarrage : Mode sans echec avec prise en charge reseau
Utilisateur: Administrateur [Droits d'admin]
Mode: Recherche -- Date: 02/04/2012 17:32:57
¤¤¤ Processus malicieux: 0 ¤¤¤
¤¤¤ Entrees de registre: 1 ¤¤¤
[SUSP PATH] ch8l0.exe.lnk @User : C:\WINDOWS\system32\rundll32.exe|C:\DOCUME~1\User\LOCALS~1\Temp\ch8l0.exe -> FOUND
¤¤¤ Fichiers / Dossiers particuliers: ¤¤¤
¤¤¤ Driver: [NON CHARGE] ¤¤¤
¤¤¤ Infection : ¤¤¤
¤¤¤ Fichier HOSTS: ¤¤¤
127.0.0.1 localhost
¤¤¤ MBR Verif: ¤¤¤
+++++ PhysicalDrive0: HDS722525VLAT80 +++++
--- User ---
[MBR] d559b0bf8451475fa81b0bb85b610d5d
[BSP] 2de82c202d5e8a2d8b91600c8f20d280 : Windows XP MBR Code
Partition table:
0 - [ACTIVE] NTFS (0x07) [VISIBLE] Offset (sectors): 63 | Size: 238472 Mo
Error reading LL1 MBR!
Error reading LL2 MBR!
Termine : << RKreport[1].txt >>
RKreport[1].txt
Le scan de malware est toujours en cours...
Voilà pour le rapport RK :
RogueKiller V7.3.2 [20/03/2012] par Tigzy
mail: tigzyRK<at>gmail<dot>com
Remontees: https://www.luanagames.com/index.fr.html
Blog: http://tigzyrk.blogspot.com
Systeme d'exploitation: Windows XP (5.1.2600 Service Pack 3) 32 bits version
Demarrage : Mode sans echec avec prise en charge reseau
Utilisateur: Administrateur [Droits d'admin]
Mode: Recherche -- Date: 02/04/2012 17:32:57
¤¤¤ Processus malicieux: 0 ¤¤¤
¤¤¤ Entrees de registre: 1 ¤¤¤
[SUSP PATH] ch8l0.exe.lnk @User : C:\WINDOWS\system32\rundll32.exe|C:\DOCUME~1\User\LOCALS~1\Temp\ch8l0.exe -> FOUND
¤¤¤ Fichiers / Dossiers particuliers: ¤¤¤
¤¤¤ Driver: [NON CHARGE] ¤¤¤
¤¤¤ Infection : ¤¤¤
¤¤¤ Fichier HOSTS: ¤¤¤
127.0.0.1 localhost
¤¤¤ MBR Verif: ¤¤¤
+++++ PhysicalDrive0: HDS722525VLAT80 +++++
--- User ---
[MBR] d559b0bf8451475fa81b0bb85b610d5d
[BSP] 2de82c202d5e8a2d8b91600c8f20d280 : Windows XP MBR Code
Partition table:
0 - [ACTIVE] NTFS (0x07) [VISIBLE] Offset (sectors): 63 | Size: 238472 Mo
Error reading LL1 MBR!
Error reading LL2 MBR!
Termine : << RKreport[1].txt >>
RKreport[1].txt
Le scan de malware est toujours en cours...
pohpey
Messages postés
218
Date d'inscription
mardi 26 août 2008
Statut
Membre
Dernière intervention
31 décembre 2023
14
2 avril 2012 à 17:45
2 avril 2012 à 17:45
Voici le log malware :
Malwarebytes Anti-Malware (Trial) 1.60.1.1000
www.malwarebytes.org
Database version: v2012.04.02.05
Windows XP Service Pack 3 x86 NTFS (Safe Mode/Networking)
Internet Explorer 8.0.6001.18702
Administrateur :: USER-E1E990331F [administrator]
Protection: Disabled
02/04/2012 17:17:18
mbam-log-2012-04-02 (17-43-45).txt
Scan type: Full scan
Scan options enabled: Memory | Startup | Registry | File System | Heuristics/Extra | Heuristics/Shuriken | PUP | PUM
Scan options disabled: P2P
Objects scanned: 266848
Time elapsed: 26 minute(s), 4 second(s)
Memory Processes Detected: 0
(No malicious items detected)
Memory Modules Detected: 0
(No malicious items detected)
Registry Keys Detected: 0
(No malicious items detected)
Registry Values Detected: 0
(No malicious items detected)
Registry Data Items Detected: 0
(No malicious items detected)
Folders Detected: 0
(No malicious items detected)
Files Detected: 1
C:\Documents and Settings\User\Local Settings\Temp\ch8l0.exe (Spyware.Password) -> No action taken.
(end)
Malwarebytes Anti-Malware (Trial) 1.60.1.1000
www.malwarebytes.org
Database version: v2012.04.02.05
Windows XP Service Pack 3 x86 NTFS (Safe Mode/Networking)
Internet Explorer 8.0.6001.18702
Administrateur :: USER-E1E990331F [administrator]
Protection: Disabled
02/04/2012 17:17:18
mbam-log-2012-04-02 (17-43-45).txt
Scan type: Full scan
Scan options enabled: Memory | Startup | Registry | File System | Heuristics/Extra | Heuristics/Shuriken | PUP | PUM
Scan options disabled: P2P
Objects scanned: 266848
Time elapsed: 26 minute(s), 4 second(s)
Memory Processes Detected: 0
(No malicious items detected)
Memory Modules Detected: 0
(No malicious items detected)
Registry Keys Detected: 0
(No malicious items detected)
Registry Values Detected: 0
(No malicious items detected)
Registry Data Items Detected: 0
(No malicious items detected)
Folders Detected: 0
(No malicious items detected)
Files Detected: 1
C:\Documents and Settings\User\Local Settings\Temp\ch8l0.exe (Spyware.Password) -> No action taken.
(end)
H3RV3
Messages postés
3591
Date d'inscription
samedi 17 octobre 2009
Statut
Contributeur sécurité
Dernière intervention
7 novembre 2014
280
2 avril 2012 à 21:00
2 avril 2012 à 21:00
OK, passe l'option Suppression de RogueKiller.
Puis essaie ceci :
● Télécharge ce fichier sur ton bureau ==> http://www.pandasecurity.com/resources/tools/yorkyt.exe
● Lance le, il va t'inviter à redémarrer ton PC. Fais le et laisse travailler au redémarrage. Il est possible qu'il faille que redémarre entre temps.
● Copie colle le rapport yorkyt.log
Puis essaie ceci :
● Télécharge ce fichier sur ton bureau ==> http://www.pandasecurity.com/resources/tools/yorkyt.exe
● Lance le, il va t'inviter à redémarrer ton PC. Fais le et laisse travailler au redémarrage. Il est possible qu'il faille que redémarre entre temps.
● Copie colle le rapport yorkyt.log
pohpey
Messages postés
218
Date d'inscription
mardi 26 août 2008
Statut
Membre
Dernière intervention
31 décembre 2023
14
3 avril 2012 à 13:18
3 avril 2012 à 13:18
Bonjour,
Je suis de nouveau en mode normal.
J'ai exécuté tes recommandations, par contre je n'ai pas trouvé de log yorkit.
Mon ordinateur a pourtant redémarré deux fois...
Je suis de nouveau en mode normal.
J'ai exécuté tes recommandations, par contre je n'ai pas trouvé de log yorkit.
Mon ordinateur a pourtant redémarré deux fois...
H3RV3
Messages postés
3591
Date d'inscription
samedi 17 octobre 2009
Statut
Contributeur sécurité
Dernière intervention
7 novembre 2014
280
3 avril 2012 à 13:31
3 avril 2012 à 13:31
Tu avais enregistré yorkyt.exe sur ton bureau avant de l'exécuter ?
pohpey
Messages postés
218
Date d'inscription
mardi 26 août 2008
Statut
Membre
Dernière intervention
31 décembre 2023
14
3 avril 2012 à 13:55
3 avril 2012 à 13:55
Effectivement !
j'ai refait yorkyt et voici le log :
2012-04-03 13:43:31: ****************************************************
2012-04-03 13:43:31: Starting UP ... v 0.0.0.192
2012-04-03 13:43:31: ****************************************************
2012-04-03 13:43:31: Listing processes...
2012-04-03 13:43:31: :[System Process]:0
2012-04-03 13:43:31: :System:4
2012-04-03 13:43:31: :smss.exe:364
2012-04-03 13:43:31: :csrss.exe:508
2012-04-03 13:43:31: :winlogon.exe:536
2012-04-03 13:43:31: :services.exe:580
2012-04-03 13:43:31: :lsass.exe:592
2012-04-03 13:43:31: :svchost.exe:752
2012-04-03 13:43:31: :svchost.exe:828
2012-04-03 13:43:31: :svchost.exe:944
2012-04-03 13:43:31: :svchost.exe:1048
2012-04-03 13:43:31: :svchost.exe:1108
2012-04-03 13:43:31: :spoolsv.exe:1372
2012-04-03 13:43:31: :sched.exe:1464
2012-04-03 13:43:31: :PhotoshopElementsFileAgent.exe:1516
2012-04-03 13:43:31: :avguard.exe:1540
2012-04-03 13:43:31: :svchost.exe:1560
2012-04-03 13:43:31: :FTRTSVC.exe:1588
2012-04-03 13:43:31: :jqs.exe:1888
2012-04-03 13:43:31: :explorer.exe:2000
2012-04-03 13:43:31: :mbamservice.exe:2044
2012-04-03 13:43:31: :svchost.exe:400
2012-04-03 13:43:31: :nvraidservice.exe:504
2012-04-03 13:43:31: :SOUNDMAN.EXE:388
2012-04-03 13:43:31: :wmiprvse.exe:992
2012-04-03 13:43:31: :avgnt.exe:1076
2012-04-03 13:43:31: :mbamgui.exe:1120
2012-04-03 13:43:31: :GoogleToolbarNotifier.exe:1240
2012-04-03 13:43:31: :ctfmon.exe:1248
2012-04-03 13:43:31: :WLANUTL.exe:816
2012-04-03 13:43:31: :unsecapp.exe:2580
2012-04-03 13:43:31: :avshadow.exe:2976
2012-04-03 13:43:31: :wmiapsrv.exe:3580
2012-04-03 13:43:31: :alg.exe:216
2012-04-03 13:43:31: :svchost.exe:3912
2012-04-03 13:43:31: :firefox.exe:3544
2012-04-03 13:43:31: :wuauclt.exe:1072
2012-04-03 13:43:31: :plugin-container.exe:1400
2012-04-03 13:43:31: :yorkyt.exe:2512
2012-04-03 13:43:31: :wmiprvse.exe:1232
2012-04-03 13:43:31:
2012-04-03 13:43:31: Setting restore point
2012-04-03 13:43:36: Determining autonomous or dropped mode...
2012-04-03 13:43:36: Autonomus mode
2012-04-03 13:43:38: Installing drivers...
2012-04-03 13:43:39: Checking that it installed...
2012-04-03 13:43:39: Driver is installed...
2012-04-03 13:43:39: cmd.exe /c start "C:\Documents and Settings\User\Bureau\yorkyt.exe"
2012-04-03 13:43:41: Restarting...
2012-04-03 13:46:53: ****************************************************
2012-04-03 13:46:54: Starting UP ... v 0.0.0.192
2012-04-03 13:46:54: ****************************************************
2012-04-03 13:46:54: Listing processes...
2012-04-03 13:46:54: :[System Process]:0
2012-04-03 13:46:54: :System:4
2012-04-03 13:46:54: :smss.exe:492
2012-04-03 13:46:54: :csrss.exe:644
2012-04-03 13:46:54: :winlogon.exe:676
2012-04-03 13:46:54: :services.exe:724
2012-04-03 13:46:54: :lsass.exe:740
2012-04-03 13:46:54: :svchost.exe:904
2012-04-03 13:46:54: :svchost.exe:992
2012-04-03 13:46:54: :svchost.exe:1096
2012-04-03 13:46:54: :svchost.exe:1204
2012-04-03 13:46:54: :svchost.exe:1280
2012-04-03 13:46:54: :spoolsv.exe:1600
2012-04-03 13:46:54: :sched.exe:1648
2012-04-03 13:46:54: :PhotoshopElementsFileAgent.exe:1696
2012-04-03 13:46:54: :avguard.exe:1724
2012-04-03 13:46:54: :svchost.exe:1756
2012-04-03 13:46:54: :FTRTSVC.exe:1780
2012-04-03 13:46:54: :WgaTray.exe:276
2012-04-03 13:46:54: :explorer.exe:332
2012-04-03 13:46:54: :jqs.exe:568
2012-04-03 13:46:54: :mbamservice.exe:620
2012-04-03 13:46:54: :yorkyt.exe:1408
2012-04-03 13:46:54: :svchost.exe:1864
2012-04-03 13:46:54: :nvraidservice.exe:1088
2012-04-03 13:46:54: :SOUNDMAN.EXE:1184
2012-04-03 13:46:54: :AdobeARM.exe:344
2012-04-03 13:46:54: :avgnt.exe:1264
2012-04-03 13:46:54: :mbamgui.exe:1308
2012-04-03 13:46:54: :GoogleToolbarNotifier.exe:1116
2012-04-03 13:46:54: :ctfmon.exe:1084
2012-04-03 13:46:54: :WLANUTL.exe:1432
2012-04-03 13:46:54: :wuauclt.exe:2004
2012-04-03 13:46:54: :wmiprvse.exe:2188
2012-04-03 13:46:54: :unsecapp.exe:2420
2012-04-03 13:46:54: :avshadow.exe:3212
2012-04-03 13:46:54: :wmiapsrv.exe:3648
2012-04-03 13:46:54: :wmiprvse.exe:3724
2012-04-03 13:46:54: :avwsc.exe:4076
2012-04-03 13:46:54: :alg.exe:1652
2012-04-03 13:46:54: :reader_sl.exe:3320
2012-04-03 13:46:54:
2012-04-03 13:46:54: RUN mode
2012-04-03 13:46:54: Determining autonomous or dropped mode...
2012-04-03 13:46:54: Autonomus mode
2012-04-03 13:46:55: Waiting for Explorer.exe...
2012-04-03 13:47:25: Launching parsers...
2012-04-03 13:47:31: Looking at \Device\HarddiskVolume1\WINDOWS\SYSTEM32\KDCOM.DLL kdcom.dll
2012-04-03 13:47:31: Looking at \Device\HarddiskVolume1\WINDOWS\SYSTEM32\BOOTVID.DLL bootvid.dll
2012-04-03 13:47:31: Looking at \Device\HarddiskVolume1\WINDOWS\SYSTEM32\DRIVERS\DASBOOT.SYS
2012-04-03 13:47:31: Looking at \Device\HarddiskVolume1\WINDOWS\SYSTEM32\DRIVERS\DASBOOTD.SYS
2012-04-03 13:47:31: Looking at \Device\HarddiskVolume1\WINDOWS\SYSTEM32\DRIVERS\DASBOOTK.SYS
2012-04-03 13:47:31: Looking at \Device\HarddiskVolume1\WINDOWS\SYSTEM32\DRIVERS\DASBOOTI.SYS
2012-04-03 13:47:31: Looking at \Device\HarddiskVolume1\WINDOWS\SYSTEM32\DRIVERS\DASBOOTS.SYS
2012-04-03 13:47:31: Looking at \Device\HarddiskVolume1\WINDOWS\SYSTEM32\DRIVERS\SPTD.SYS sptd.sys
2012-04-03 13:47:31: Looking at \Device\HarddiskVolume1\WINDOWS\SYSTEM32\DRIVERS\WMILIB.SYS WmiLib.sys
2012-04-03 13:47:31: Looking at \Device\HarddiskVolume1\WINDOWS\SYSTEM32\DRIVERS\SCSIPORT.SYS scsiport.sys
2012-04-03 13:47:31: Looking at \Device\HarddiskVolume1\WINDOWS\SYSTEM32\DRIVERS\ACPI.SYS ACPI.sys
2012-04-03 13:47:31: Looking at \Device\HarddiskVolume1\WINDOWS\SYSTEM32\DRIVERS\PCI.SYS pci.sys
2012-04-03 13:47:31: Looking at \Device\HarddiskVolume1\WINDOWS\SYSTEM32\DRIVERS\ISAPNP.SYS isapnp.sys
2012-04-03 13:47:31: Looking at \Device\HarddiskVolume1\WINDOWS\SYSTEM32\DRIVERS\PCIIDE.SYS pciide.sys
2012-04-03 13:47:31: Looking at \Device\HarddiskVolume1\WINDOWS\SYSTEM32\DRIVERS\PCIIDEX.SYS pciidex.sys
2012-04-03 13:47:31: Looking at \Device\HarddiskVolume1\WINDOWS\SYSTEM32\DRIVERS\MOUNTMGR.SYS mountmgr.sys
2012-04-03 13:47:31: Looking at \Device\HarddiskVolume1\WINDOWS\SYSTEM32\DRIVERS\FTDISK.SYS ftdisk.sys
2012-04-03 13:47:31: Looking at \Device\HarddiskVolume1\WINDOWS\SYSTEM32\DRIVERS\PARTMGR.SYS partmgr.sys
2012-04-03 13:47:31: Looking at \Device\HarddiskVolume1\WINDOWS\SYSTEM32\DRIVERS\NVRAID.SYS nvraid.sys
2012-04-03 13:47:31: Looking at \Device\HarddiskVolume1\WINDOWS\SYSTEM32\DRIVERS\CLASSPNP.SYS Classpnp.sys
2012-04-03 13:47:31: Looking at \Device\HarddiskVolume1\WINDOWS\SYSTEM32\DRIVERS\VOLSNAP.SYS volsnap.sys
2012-04-03 13:47:31: Looking at \Device\HarddiskVolume1\WINDOWS\SYSTEM32\DRIVERS\ATAPI.SYS atapi.sys
2012-04-03 13:47:31: Looking at \Device\HarddiskVolume1\WINDOWS\SYSTEM32\DRIVERS\NVATABUS.SYS nvatabus.sys
2012-04-03 13:47:31: Looking at \Device\HarddiskVolume1\WINDOWS\SYSTEM32\DRIVERS\DISK.SYS scsidisk.sys
2012-04-03 13:47:31: Looking at \Device\HarddiskVolume1\WINDOWS\SYSTEM32\DRIVERS\FLTMGR.SYS fltMgr.sys
2012-04-03 13:47:31: Looking at \Device\HarddiskVolume1\WINDOWS\SYSTEM32\DRIVERS\SR.SYS sr.sys
2012-04-03 13:47:31: Looking at \Device\HarddiskVolume1\WINDOWS\SYSTEM32\DRIVERS\PXHELP20.SYS PxHelp20.sys
2012-04-03 13:47:31: Looking at \Device\HarddiskVolume1\WINDOWS\SYSTEM32\DRIVERS\KSECDD.SYS ksecdd.sys
2012-04-03 13:47:32: Looking at \Device\HarddiskVolume1\WINDOWS\SYSTEM32\DRIVERS\NTFS.SYS ntfs.sys
2012-04-03 13:47:32: Looking at \Device\HarddiskVolume1\WINDOWS\SYSTEM32\DRIVERS\NDIS.SYS NDIS.SYS
2012-04-03 13:47:32: Looking at \Device\HarddiskVolume1\WINDOWS\SYSTEM32\DRIVERS\NV_AGP.SYS nv_agp.sys
2012-04-03 13:47:32: Looking at \Device\HarddiskVolume1\WINDOWS\SYSTEM32\DRIVERS\MUP.SYS MUP.SYS
2012-04-03 13:47:32: Looking at \Device\HarddiskVolume1\WINDOWS\SYSTEM32\DRIVERS\DASBOOTF.SYS
2012-04-03 13:47:32: Looking at \DEVICE\HARDDISKVOLUME1\WINDOWS\SYSTEM32\DRIVERS\FDC.SYS fdc.sys
2012-04-03 13:47:32: Looking at \DEVICE\HARDDISKVOLUME1\WINDOWS\SYSTEM32\DRIVERS\PARPORT.SYS parport.sys
2012-04-03 13:47:32: Looking at \Device\HarddiskVolume1\WINDOWS\SYSTEM32\DRIVERS\USBD.SYS usbd.sys
2012-04-03 13:47:32: Looking at \DEVICE\HARDDISKVOLUME1\WINDOWS\SYSTEM32\DRIVERS\GAMEENUM.SYS gameenum.sys
2012-04-03 13:47:32: Looking at \DEVICE\HARDDISKVOLUME1\WINDOWS\SYSTEM32\DRIVERS\I8042PRT.SYS i8042prt.sys
2012-04-03 13:47:32: Looking at \DEVICE\HARDDISKVOLUME1\WINDOWS\SYSTEM32\DRIVERS\KBDCLASS.SYS kbdclass.sys
2012-04-03 13:47:32: Looking at \DEVICE\HARDDISKVOLUME1\WINDOWS\SYSTEM32\DRIVERS\MOUCLASS.SYS mouclass.sys
2012-04-03 13:47:32: Looking at \DEVICE\HARDDISKVOLUME1\WINDOWS\SYSTEM32\DRIVERS\SERIAL.SYS serial.sys
2012-04-03 13:47:32: Looking at \DEVICE\HARDDISKVOLUME1\WINDOWS\SYSTEM32\DRIVERS\SERENUM.SYS serenum.sys
2012-04-03 13:47:32: Looking at \Device\HarddiskVolume1\WINDOWS\SYSTEM32\DRIVERS\USBPORT.SYS usbport.sys
2012-04-03 13:47:32: Looking at \DEVICE\HARDDISKVOLUME1\WINDOWS\SYSTEM32\DRIVERS\USBOHCI.SYS USBOHCI.sys
2012-04-03 13:47:32: Looking at \DEVICE\HARDDISKVOLUME1\WINDOWS\SYSTEM32\DRIVERS\USBEHCI.SYS USBEHCI.sys
2012-04-03 13:47:32: Looking at \Device\HarddiskVolume1\WINDOWS\SYSTEM32\DRIVERS\NVSNPU.SYS NVSNPU.SYS
2012-04-03 13:47:32: Looking at \Device\HarddiskVolume1\WINDOWS\SYSTEM32\DRIVERS\NVNRM.SYS NVNRM.SYS
2012-04-03 13:47:32: Looking at \DEVICE\HARDDISKVOLUME1\WINDOWS\SYSTEM32\DRIVERS\NVNETBUS.SYS NVNETBUS.SYS
2012-04-03 13:47:32: Looking at \Device\HarddiskVolume1\WINDOWS\SYSTEM32\DRIVERS\KS.SYS ks.sys
2012-04-03 13:47:32: Looking at \Device\HarddiskVolume1\WINDOWS\SYSTEM32\DRIVERS\DRMK.SYS drmk.sys
2012-04-03 13:47:32: Looking at \Device\HarddiskVolume1\WINDOWS\SYSTEM32\DRIVERS\PORTCLS.SYS portcls.sys
2012-04-03 13:47:32: Looking at \DEVICE\HARDDISKVOLUME1\WINDOWS\SYSTEM32\DRIVERS\ALCXWDM.SYS ALCXWDM.SYS
2012-04-03 13:47:32: Looking at \DEVICE\HARDDISKVOLUME1\WINDOWS\SYSTEM32\DRIVERS\IMAPI.SYS IMAPI.sys
2012-04-03 13:47:32: Looking at \DEVICE\HARDDISKVOLUME1\WINDOWS\SYSTEM32\DRIVERS\PFC.SYS Pfc.sys
2012-04-03 13:47:32: Looking at \DEVICE\HARDDISKVOLUME1\WINDOWS\SYSTEM32\DRIVERS\CDROM.SYS cdrom.sys
2012-04-03 13:47:32: Looking at \DEVICE\HARDDISKVOLUME1\WINDOWS\SYSTEM32\DRIVERS\REDBOOK.SYS redbook.sys
2012-04-03 13:47:32: Looking at \Device\HarddiskVolume1\WINDOWS\SYSTEM32\DRIVERS\VIDEOPRT.SYS videoprt.sys
2012-04-03 13:47:32: Looking at \DEVICE\HARDDISKVOLUME1\WINDOWS\SYSTEM32\DRIVERS\ATI2MTAG.SYS ati2mtaa.sys
2012-04-03 13:47:32: Looking at \DEVICE\HARDDISKVOLUME1\WINDOWS\SYSTEM32\DRIVERS\AMDK8.SYS AmdK8.sys
2012-04-03 13:47:32: Looking at \DEVICE\HARDDISKVOLUME1\WINDOWS\SYSTEM32\DRIVERS\AUDSTUB.SYS audstub.sys
2012-04-03 13:47:32: Looking at \Device\HarddiskVolume1\WINDOWS\SYSTEM32\DRIVERS\TDI.SYS tdi.sys
2012-04-03 13:47:32: Looking at \DEVICE\HARDDISKVOLUME1\WINDOWS\SYSTEM32\DRIVERS\RASIRDA.SYS irwan.sys
2012-04-03 13:47:32: Looking at \DEVICE\HARDDISKVOLUME1\WINDOWS\SYSTEM32\DRIVERS\RASL2TP.SYS rasl2tp.sys
2012-04-03 13:47:32: Looking at \DEVICE\HARDDISKVOLUME1\WINDOWS\SYSTEM32\DRIVERS\NDISTAPI.SYS NDISTAPI.SYS
2012-04-03 13:47:32: Looking at \DEVICE\HARDDISKVOLUME1\WINDOWS\SYSTEM32\DRIVERS\NDISWAN.SYS NDISWAN.SYS
2012-04-03 13:47:32: Looking at \DEVICE\HARDDISKVOLUME1\WINDOWS\SYSTEM32\DRIVERS\RASPPPOE.SYS raspppoe.sys
2012-04-03 13:47:32: Looking at \DEVICE\HARDDISKVOLUME1\WINDOWS\SYSTEM32\DRIVERS\RASPPTP.SYS RASPPTP.SYS
2012-04-03 13:47:32: Looking at \DEVICE\HARDDISKVOLUME1\WINDOWS\SYSTEM32\DRIVERS\PTILINK.SYS ptilink.sys
2012-04-03 13:47:32: Looking at \DEVICE\HARDDISKVOLUME1\WINDOWS\SYSTEM32\DRIVERS\RASPTI.SYS raspti.sys
2012-04-03 13:47:32: Looking at \DEVICE\HARDDISKVOLUME1\WINDOWS\SYSTEM32\DRIVERS\TERMDD.SYS termdd.sys
2012-04-03 13:47:32: Looking at \DEVICE\HARDDISKVOLUME1\WINDOWS\SYSTEM32\DRIVERS\SWENUM.SYS swenum.sys
2012-04-03 13:47:32: Looking at \DEVICE\HARDDISKVOLUME1\WINDOWS\SYSTEM32\DRIVERS\UPDATE.SYS update.sys
2012-04-03 13:47:32: Looking at \DEVICE\HARDDISKVOLUME1\WINDOWS\SYSTEM32\DRIVERS\MSSMBIOS.SYS smbios.sys
2012-04-03 13:47:32: Looking at \DEVICE\HARDDISKVOLUME1\WINDOWS\SYSTEM32\DRIVERS\NDPROXY.SYS ndproxy.sys
2012-04-03 13:47:32: Looking at \DEVICE\HARDDISKVOLUME1\WINDOWS\SYSTEM32\DRIVERS\USBHUB.SYS usbhub.sys
2012-04-03 13:47:32: Looking at \DEVICE\HARDDISKVOLUME1\WINDOWS\SYSTEM32\DRIVERS\NVENETFD.SYS NVEFDXP.SYS
2012-04-03 13:47:32: Looking at \DEVICE\HARDDISKVOLUME1\WINDOWS\SYSTEM32\DRIVERS\FLPYDISK.SYS floppy.sys
2012-04-03 13:47:33: Looking at \DEVICE\HARDDISKVOLUME1\WINDOWS\SYSTEM32\DRIVERS\CDAUDIO.SYS cdaudio.sys
2012-04-03 13:47:33: Looking at \DEVICE\HARDDISKVOLUME1\WINDOWS\SYSTEM32\DRIVERS\FS_REC.SYS fs_rec.sys
2012-04-03 13:47:33: Looking at \DEVICE\HARDDISKVOLUME1\WINDOWS\SYSTEM32\DRIVERS\NULL.SYS null.sys
2012-04-03 13:47:33: Looking at \DEVICE\HARDDISKVOLUME1\WINDOWS\SYSTEM32\DRIVERS\BEEP.SYS beep.sys
2012-04-03 13:47:33: Looking at \DEVICE\HARDDISKVOLUME1\WINDOWS\SYSTEM32\DRIVERS\VGA.SYS vga.sys
2012-04-03 13:47:33: Looking at \DEVICE\HARDDISKVOLUME1\WINDOWS\SYSTEM32\DRIVERS\MNMDD.SYS videosim.sys
2012-04-03 13:47:33: Looking at \DEVICE\HARDDISKVOLUME1\WINDOWS\SYSTEM32\DRIVERS\RDPCDD.SYS RDPCDD.SYS
2012-04-03 13:47:33: Looking at \DEVICE\HARDDISKVOLUME1\WINDOWS\SYSTEM32\DRIVERS\MSFS.SYS MSFS.SYS
2012-04-03 13:47:33: Looking at \DEVICE\HARDDISKVOLUME1\WINDOWS\SYSTEM32\DRIVERS\NPFS.SYS npfs.sys
2012-04-03 13:47:33: Looking at \DEVICE\HARDDISKVOLUME1\WINDOWS\SYSTEM32\DRIVERS\RASACD.SYS rasacd.sys
2012-04-03 13:47:33: Looking at \DEVICE\HARDDISKVOLUME1\WINDOWS\SYSTEM32\DRIVERS\IPSEC.SYS ipsec.sys
2012-04-03 13:47:33: Looking at \DEVICE\HARDDISKVOLUME1\WINDOWS\SYSTEM32\DRIVERS\MSGPC.SYS MSGPC.SYS
2012-04-03 13:47:33: Looking at \DEVICE\HARDDISKVOLUME1\WINDOWS\SYSTEM32\DRIVERS\TCPIP.SYS tcpip.sys
2012-04-03 13:47:33: Looking at \DEVICE\HARDDISKVOLUME1\WINDOWS\SYSTEM32\DRIVERS\NETBT.SYS netbt.sys
2012-04-03 13:47:33: Looking at \DEVICE\HARDDISKVOLUME1\WINDOWS\SYSTEM32\DRIVERS\IPNAT.SYS IPNAT.SYS
2012-04-03 13:47:33: Looking at \DEVICE\HARDDISKVOLUME1\WINDOWS\SYSTEM32\DRIVERS\AFD.SYS afd.sys
2012-04-03 13:47:33: Looking at \DEVICE\HARDDISKVOLUME1\WINDOWS\SYSTEM32\DRIVERS\NETBIOS.SYS NETBIOS.SYS
2012-04-03 13:47:33: Looking at \DEVICE\HARDDISKVOLUME1\WINDOWS\SYSTEM32\DRIVERS\PROCESSR.SYS processr.sys
2012-04-03 13:47:33: Looking at \DEVICE\HARDDISKVOLUME1\WINDOWS\SYSTEM32\DRIVERS\SSMDRV.SYS ssmdrv.sys
2012-04-03 13:47:33: Looking at \DEVICE\HARDDISKVOLUME1\WINDOWS\SYSTEM32\DRIVERS\RDBSS.SYS RDBSS.Sys
2012-04-03 13:47:33: Looking at \DEVICE\HARDDISKVOLUME1\WINDOWS\SYSTEM32\DRIVERS\MRXSMB.SYS MRXSMB.Sys
2012-04-03 13:47:33: Looking at \DEVICE\HARDDISKVOLUME1\WINDOWS\SYSTEM32\DRIVERS\FIPS.SYS fips.sys
2012-04-03 13:47:33: Looking at \DEVICE\HARDDISKVOLUME1\WINDOWS\SYSTEM32\DRIVERS\AVKMGR.SYS avkmgr.sys
2012-04-03 13:47:33: Looking at \DEVICE\HARDDISKVOLUME1\WINDOWS\SYSTEM32\DRIVERS\AVIPBB.SYS avipbb.sys
2012-04-03 13:47:33: Looking at \DEVICE\HARDDISKVOLUME1\WINDOWS\SYSTEM32\DRIVERS\WLANUZXP.SYS ZD1211U.SYS
2012-04-03 13:47:33: Looking at \DEVICE\HARDDISKVOLUME1\WINDOWS\SYSTEM32\DRIVERS\WANARP.SYS WANARP.SYS
2012-04-03 13:47:33: Looking at \DEVICE\HARDDISKVOLUME1\WINDOWS\SYSTEM32\DRIVERS\USBSTOR.SYS usbstor.sys
2012-04-03 13:47:33: Looking at \DEVICE\HARDDISKVOLUME1\WINDOWS\SYSTEM32\DRIVERS\CDFS.SYS cdfs.sys
2012-04-03 13:47:33: Looking at \Device\HarddiskVolume1\WINDOWS\SYSTEM32\DRIVERS\WMILIB.SYS WmiLib.sys
2012-04-03 13:47:33: Looking at \Device\HarddiskVolume1\WINDOWS\SYSTEM32\DRIVERS\NVATABUS.SYS nvatabus.sys
2012-04-03 13:47:33: Looking at \Device\HarddiskVolume1\WINDOWS\SYSTEM32\DRIVERS\DXAPI.SYS dxapi.sys
2012-04-03 13:47:33: Looking at \Device\HarddiskVolume1\WINDOWS\SYSTEM32\WATCHDOG.SYS watchdog.sys
2012-04-03 13:47:33: Looking at \Device\HarddiskVolume1\WINDOWS\SYSTEM32\WIN32K.SYS win32k.sys
2012-04-03 13:47:33: Looking at \Device\HarddiskVolume1\WINDOWS\SYSTEM32\DRIVERS\DXGTHK.SYS dxgthk.sys
2012-04-03 13:47:33: Looking at \Device\HarddiskVolume1\WINDOWS\SYSTEM32\DRIVERS\DXG.SYS dxg.sys
2012-04-03 13:47:33: Looking at \Device\HarddiskVolume1\WINDOWS\SYSTEM32\ATI2DVAG.DLL ati2dvag.dll
2012-04-03 13:47:33: Looking at \Device\HarddiskVolume1\WINDOWS\SYSTEM32\ATI2CQAG.DLL ati2cqag.dll
2012-04-03 13:47:33: Looking at \Device\HarddiskVolume1\WINDOWS\SYSTEM32\VGA.DLL vga.dll
2012-04-03 13:47:33: Looking at \Device\HarddiskVolume1\WINDOWS\SYSTEM32\ATI3DUAG.DLL ati3duag.dll
2012-04-03 13:47:33: Looking at \Device\HarddiskVolume1\WINDOWS\SYSTEM32\ATIVVAXX.DLL ativvaxx.dll
2012-04-03 13:47:33: Looking at \Device\HarddiskVolume1\WINDOWS\SYSTEM32\ATMFD.DLL ATMFD.DLL
2012-04-03 13:47:33: Looking at \DEVICE\HARDDISKVOLUME1\WINDOWS\SYSTEM32\DRIVERS\AVGNTFLT.SYS avgntflt.sys
2012-04-03 13:47:33: Looking at \Device\HarddiskVolume1\WINDOWS\SYSTEM32\DRIVERS\MBAM.SYS mbam.sys
2012-04-03 13:47:33: Looking at \DEVICE\HARDDISKVOLUME1\WINDOWS\SYSTEM32\DRIVERS\IRDA.SYS irda.sys
2012-04-03 13:47:33: Looking at \DEVICE\HARDDISKVOLUME1\WINDOWS\SYSTEM32\DRIVERS\NDISUIO.SYS NDISUIO.SYS
2012-04-03 13:47:33: Looking at \DEVICE\HARDDISKVOLUME1\WINDOWS\SYSTEM32\DRIVERS\PARVDM.SYS parvdm.sys
2012-04-03 13:47:34: Looking at \DEVICE\HARDDISKVOLUME1\WINDOWS\SYSTEM32\DRIVERS\WDMAUD.SYS WDMAUD.SYS
2012-04-03 13:47:34: Looking at \DEVICE\HARDDISKVOLUME1\WINDOWS\SYSTEM32\DRIVERS\SYSAUDIO.SYS sysaudio.sys
2012-04-03 13:47:34: Looking at \DEVICE\HARDDISKVOLUME1\WINDOWS\SYSTEM32\DRIVERS\SPLITTER.SYS splitter.sys
2012-04-03 13:47:34: Looking at \DEVICE\HARDDISKVOLUME1\WINDOWS\SYSTEM32\DRIVERS\AEC.SYS aec.sys
2012-04-03 13:47:34: Looking at \DEVICE\HARDDISKVOLUME1\WINDOWS\SYSTEM32\DRIVERS\SWMIDI.SYS swmidi.sys
2012-04-03 13:47:34: Looking at \DEVICE\HARDDISKVOLUME1\WINDOWS\SYSTEM32\DRIVERS\DMUSIC.SYS DMusic.sys
2012-04-03 13:47:34: Looking at \DEVICE\HARDDISKVOLUME1\WINDOWS\SYSTEM32\DRIVERS\KMIXER.SYS kmixer.sys
2012-04-03 13:47:34: Looking at \DEVICE\HARDDISKVOLUME1\WINDOWS\SYSTEM32\DRIVERS\LVUSBSTA.SYS LVUSBSta.sys
2012-04-03 13:47:34: Looking at \DEVICE\HARDDISKVOLUME1\WINDOWS\SYSTEM32\DRIVERS\DRMKAUD.SYS drmkaud.sys
2012-04-03 13:47:34: Looking at \DEVICE\HARDDISKVOLUME1\WINDOWS\SYSTEM32\DRIVERS\SRV.SYS SRV.SYS
2012-04-03 13:47:34: Looking at \DEVICE\HARDDISKVOLUME1\WINDOWS\SYSTEM32\DRIVERS\FASTFAT.SYS FastFAT.Sys
2012-04-03 13:47:34: Looking at \DEVICE\HARDDISKVOLUME1\WINDOWS\SYSTEM32\DRIVERS\HTTP.SYS http.sys
2012-04-03 13:47:34: Looking at \DEVICE\HARDDISKVOLUME1\WINDOWS\SYSTEM32\DRIVERS\IPFLTDRV.SYS ipfltdrv.sys
2012-04-03 13:47:34: Looking at \Device\HarddiskVolume1\WINDOWS\SYSTEM32\ZDPNDIS5.SYS PCANDIS5.SYS
2012-04-03 13:47:34: Looking at \DEVICE\HARDDISKVOLUME1\WINDOWS\SYSTEM32\DRIVERS\PRSBDRVR.SYS
2012-04-03 13:47:34: Looking at \Device\HarddiskVolume1\WINDOWS\system32\ntdll.dll ntdll.dll
2012-04-03 13:47:34: Looking at \Device\HarddiskVolume1\WINDOWS\system32\drivers\fdc.sys fdc.sys
2012-04-03 13:47:34: Looking at \Device\HarddiskVolume1\WINDOWS\system32\drivers\parport.sys parport.sys
2012-04-03 13:47:34: Looking at \Device\HarddiskVolume1\WINDOWS\system32\drivers\LVUSBSta.sys LVUSBSta.sys
2012-04-03 13:47:34: Looking at \Device\HarddiskVolume1\WINDOWS\system32\drivers\usbd.sys usbd.sys
2012-04-03 13:47:34: Looking at \Device\HarddiskVolume1\WINDOWS\system32\drivers\gameenum.sys gameenum.sys
2012-04-03 13:47:34: Looking at \Device\HarddiskVolume1\WINDOWS\system32\drivers\i8042prt.sys i8042prt.sys
2012-04-03 13:47:34: Looking at \Device\HarddiskVolume1\WINDOWS\system32\drivers\kbdclass.sys kbdclass.sys
2012-04-03 13:47:34: Looking at \Device\HarddiskVolume1\WINDOWS\system32\drivers\mouclass.sys mouclass.sys
2012-04-03 13:47:34: Looking at \Device\HarddiskVolume1\WINDOWS\system32\drivers\serial.sys serial.sys
2012-04-03 13:47:34: Looking at \Device\HarddiskVolume1\WINDOWS\system32\drivers\serenum.sys serenum.sys
2012-04-03 13:47:34: Looking at \Device\HarddiskVolume1\WINDOWS\system32\drivers\usbohci.sys USBOHCI.sys
2012-04-03 13:47:34: Looking at \Device\HarddiskVolume1\WINDOWS\system32\drivers\usbport.sys usbport.sys
2012-04-03 13:47:34: Looking at \Device\HarddiskVolume1\WINDOWS\system32\drivers\usbehci.sys USBEHCI.sys
2012-04-03 13:47:34: Looking at \Device\HarddiskVolume1\WINDOWS\system32\drivers\nvnetbus.sys NVNETBUS.SYS
2012-04-03 13:47:34: Looking at \Device\HarddiskVolume1\WINDOWS\system32\drivers\nvnrm.sys NVNRM.SYS
2012-04-03 13:47:34: Looking at \Device\HarddiskVolume1\WINDOWS\system32\drivers\nvsnpu.sys NVSNPU.SYS
2012-04-03 13:47:34: Looking at \Device\HarddiskVolume1\WINDOWS\system32\drivers\ALCXWDM.SYS ALCXWDM.SYS
2012-04-03 13:47:34: Looking at \Device\HarddiskVolume1\WINDOWS\system32\drivers\portcls.sys portcls.sys
2012-04-03 13:47:34: Looking at \Device\HarddiskVolume1\WINDOWS\system32\drivers\drmk.sys drmk.sys
2012-04-03 13:47:34: Looking at \Device\HarddiskVolume1\WINDOWS\system32\drivers\ks.sys ks.sys
2012-04-03 13:47:34: Looking at \Device\HarddiskVolume1\WINDOWS\system32\drivers\imapi.sys IMAPI.sys
2012-04-03 13:47:34: Looking at \Device\HarddiskVolume1\WINDOWS\system32\drivers\pfc.sys Pfc.sys
2012-04-03 13:47:34: Looking at \Device\HarddiskVolume1\WINDOWS\system32\drivers\cdrom.sys cdrom.sys
2012-04-03 13:47:34: Looking at \Device\HarddiskVolume1\WINDOWS\system32\drivers\redbook.sys redbook.sys
2012-04-03 13:47:34: Looking at \Device\HarddiskVolume1\WINDOWS\system32\drivers\ati2mtag.sys ati2mtaa.sys
2012-04-03 13:47:34: Looking at \Device\HarddiskVolume1\WINDOWS\system32\drivers\videoprt.sys videoprt.sys
2012-04-03 13:47:34: Looking at \Device\HarddiskVolume1\WINDOWS\system32\drivers\AmdK8.sys AmdK8.sys
2012-04-03 13:47:34: Looking at \Device\HarddiskVolume1\WINDOWS\system32\drivers\audstub.sys audstub.sys
2012-04-03 13:47:34: Looking at \Device\HarddiskVolume1\WINDOWS\system32\drivers\rasirda.sys irwan.sys
2012-04-03 13:47:34: Looking at \Device\HarddiskVolume1\WINDOWS\system32\drivers\tdi.sys tdi.sys
2012-04-03 13:47:34: Looking at \Device\HarddiskVolume1\WINDOWS\system32\drivers\rasl2tp.sys rasl2tp.sys
2012-04-03 13:47:34: Looking at \Device\HarddiskVolume1\WINDOWS\system32\drivers\ndistapi.sys NDISTAPI.SYS
2012-04-03 13:47:34: Looking at \Device\HarddiskVolume1\WINDOWS\system32\drivers\ndiswan.sys NDISWAN.SYS
2012-04-03 13:47:34: Looking at \Device\HarddiskVolume1\WINDOWS\system32\drivers\raspppoe.sys raspppoe.sys
2012-04-03 13:47:34: Looking at \Device\HarddiskVolume1\WINDOWS\system32\drivers\raspptp.sys RASPPTP.SYS
2012-04-03 13:47:34: Looking at \Device\HarddiskVolume1\WINDOWS\system32\drivers\ptilink.sys ptilink.sys
2012-04-03 13:47:34: Looking at \Device\HarddiskVolume1\WINDOWS\system32\drivers\raspti.sys raspti.sys
2012-04-03 13:47:34: Looking at \Device\HarddiskVolume1\WINDOWS\system32\drivers\termdd.sys termdd.sys
2012-04-03 13:47:34: Looking at \Device\HarddiskVolume1\WINDOWS\system32\drivers\swenum.sys swenum.sys
2012-04-03 13:47:34: Looking at \Device\HarddiskVolume1\WINDOWS\system32\drivers\update.sys update.sys
2012-04-03 13:47:34: Looking at \Device\HarddiskVolume1\WINDOWS\system32\drivers\mssmbios.sys smbios.sys
2012-04-03 13:47:34: Looking at \Device\HarddiskVolume1\WINDOWS\system32\drivers\ndproxy.sys ndproxy.sys
2012-04-03 13:47:34: Looking at \Device\HarddiskVolume1\WINDOWS\system32\drivers\usbhub.sys usbhub.sys
2012-04-03 13:47:34: Looking at \Device\HarddiskVolume1\WINDOWS\system32\drivers\NVENETFD.sys NVEFDXP.SYS
2012-04-03 13:47:34: Looking at \Device\HarddiskVolume1\WINDOWS\system32\drivers\flpydisk.sys floppy.sys
2012-04-03 13:47:34: Looking at \Device\HarddiskVolume1\WINDOWS\system32\drivers\cdaudio.sys cdaudio.sys
2012-04-03 13:47:34: Looking at \Device\HarddiskVolume1\WINDOWS\system32\drivers\fs_rec.sys fs_rec.sys
2012-04-03 13:47:34: Looking at \Device\HarddiskVolume1\WINDOWS\system32\drivers\null.sys null.sys
2012-04-03 13:47:34: Looking at \Device\HarddiskVolume1\WINDOWS\system32\drivers\beep.sys beep.sys
2012-04-03 13:47:34: Looking at \Device\HarddiskVolume1\WINDOWS\system32\drivers\vga.sys vga.sys
2012-04-03 13:47:34: Looking at \Device\HarddiskVolume1\WINDOWS\system32\drivers\mnmdd.sys videosim.sys
2012-04-03 13:47:34: Looking at \Device\HarddiskVolume1\WINDOWS\system32\drivers\rdpcdd.sys RDPCDD.SYS
2012-04-03 13:47:34: Looking at \Device\HarddiskVolume1\WINDOWS\system32\drivers\msfs.sys MSFS.SYS
2012-04-03 13:47:34: Looking at \Device\HarddiskVolume1\WINDOWS\system32\drivers\npfs.sys npfs.sys
2012-04-03 13:47:34: Looking at \Device\HarddiskVolume1\WINDOWS\system32\drivers\rasacd.sys rasacd.sys
2012-04-03 13:47:34: Looking at \Device\HarddiskVolume1\WINDOWS\system32\drivers\ipsec.sys ipsec.sys
2012-04-03 13:47:34: Looking at \Device\HarddiskVolume1\WINDOWS\system32\drivers\msgpc.sys MSGPC.SYS
2012-04-03 13:47:34: Looking at \Device\HarddiskVolume1\WINDOWS\system32\drivers\tcpip.sys tcpip.sys
2012-04-03 13:47:34: Looking at \Device\HarddiskVolume1\WINDOWS\system32\drivers\netbt.sys netbt.sys
2012-04-03 13:47:34: Looking at \Device\HarddiskVolume1\WINDOWS\system32\drivers\ipnat.sys IPNAT.SYS
2012-04-03 13:47:34: Looking at \Device\HarddiskVolume1\WINDOWS\system32\drivers\afd.sys afd.sys
2012-04-03 13:47:34: Looking at \Device\HarddiskVolume1\WINDOWS\system32\drivers\netbios.sys NETBIOS.SYS
2012-04-03 13:47:34: Looking at \Device\HarddiskVolume1\WINDOWS\system32\drivers\processr.sys processr.sys
2012-04-03 13:47:34: Looking at \Device\HarddiskVolume1\WINDOWS\system32\drivers\ssmdrv.sys ssmdrv.sys
2012-04-03 13:47:34: Looking at \Device\HarddiskVolume1\WINDOWS\system32\drivers\rdbss.sys RDBSS.Sys
2012-04-03 13:47:34: Looking at \Device\HarddiskVolume1\WINDOWS\system32\drivers\mrxsmb.sys MRXSMB.Sys
2012-04-03 13:47:34: Looking at \Device\HarddiskVolume1\WINDOWS\system32\drivers\fips.sys fips.sys
2012-04-03 13:47:34: Looking at \Device\HarddiskVolume1\WINDOWS\system32\drivers\avkmgr.sys avkmgr.sys
2012-04-03 13:47:34: Looking at \Device\HarddiskVolume1\WINDOWS\system32\drivers\avipbb.sys avipbb.sys
2012-04-03 13:47:34: Looking at \Device\HarddiskVolume1\WINDOWS\system32\smss.exe smss.exe
2012-04-03 13:47:34: Looking at \Device\HarddiskVolume1\WINDOWS\system32\autochk.exe AutoChk.Exe
2012-04-03 13:47:34: Looking at \Device\HarddiskVolume1\WINDOWS\system32\sfcfiles.dll sfcfiles.dll
2012-04-03 13:47:34: Looking at \Device\HarddiskVolume1\WINDOWS\system32\advapi32.dll advapi32.dll
2012-04-03 13:47:34: Looking at \Device\HarddiskVolume1\WINDOWS\system32\comdlg32.dll comdlg32.dll
2012-04-03 13:47:34: Looking at \Device\HarddiskVolume1\WINDOWS\system32\gdi32.dll gdi32
2012-04-03 13:47:34: Looking at \Device\HarddiskVolume1\WINDOWS\system32\imagehlp.dll IMAGEHLP.DLL
2012-04-03 13:47:34: Looking at \Device\HarddiskVolume1\WINDOWS\system32\kernel32.dll kernel32
2012-04-03 13:47:34: Looking at \Device\HarddiskVolume1\WINDOWS\system32\lz32.dll LZ32.DLL
2012-04-03 13:47:34: Looking at \Device\HarddiskVolume1\WINDOWS\system32\ole32.dll OLE32.DLL
2012-04-03 13:47:34: Looking at \Device\HarddiskVolume1\WINDOWS\system32\drivers\WlanUZXP.sys ZD1211U.SYS
2012-04-03 13:47:34: Looking at \Device\HarddiskVolume1\WINDOWS\system32\oleaut32.dll
2012-04-03 13:47:34: Looking at \Device\HarddiskVolume1\WINDOWS\system32\drivers\wanarp.sys WANARP.SYS
2012-04-03 13:47:34: Looking at \Device\HarddiskVolume1\WINDOWS\system32\olecli32.dll OLECLI32.DLL
2012-04-03 13:47:34: Looking at \Device\HarddiskVolume1\WINDOWS\system32\olecnv32.dll OLECNV32.DLL
2012-04-03 13:47:34: Looking at \Device\HarddiskVolume1\WINDOWS\system32\drivers\usbstor.sys usbstor.sys
2012-04-03 13:47:34: Looking at \Device\HarddiskVolume1\WINDOWS\system32\olesvr32.dll OLESVR32.DLL
2012-04-03 13:47:35: Looking at \Device\HarddiskVolume1\WINDOWS\system32\olethk32.dll OLETHK32.DLL
2012-04-03 13:47:35: Looking at \Device\HarddiskVolume1\WINDOWS\system32\rpcrt4.dll rpcrt4.dll
2012-04-03 13:47:35: Looking at \Device\HarddiskVolume1\WINDOWS\system32\shell32.dll SHELL32.DLL
2012-04-03 13:47:35: Looking at \Device\HarddiskVolume1\WINDOWS\system32\url.dll URL.DLL
2012-04-03 13:47:35: Looking at \Device\HarddiskVolume1\WINDOWS\system32\urlmon.dll UrlMon.dll
2012-04-03 13:47:35: Looking at \Device\HarddiskVolume1\WINDOWS\system32\user32.dll user32
2012-04-03 13:47:35: Looking at \Device\HarddiskVolume1\WINDOWS\system32\version.dll VERSION.DLL
2012-04-03 13:47:35: Looking at \Device\HarddiskVolume1\WINDOWS\system32\wininet.dll wininet.dll
2012-04-03 13:47:35: Looking at \Device\HarddiskVolume1\WINDOWS\system32\wldap32.dll WLDAP32.DLL
2012-04-03 13:47:35: Looking at \Device\HarddiskVolume1\WINDOWS\system32\comctl32.dll COMCTL32.DLL
2012-04-03 13:47:35: Looking at \Device\HarddiskVolume1\WINDOWS\system32\shlwapi.dll SHLWAPI.DLL
2012-04-03 13:47:35: Looking at \Device\HarddiskVolume1\WINDOWS\system32\msvcrt.dll msvcrt.dll
2012-04-03 13:47:35: Looking at \Device\HarddiskVolume1\WINDOWS\system32\mpr.dll mpr.dll
2012-04-03 13:47:35: Looking at \Device\HarddiskVolume1\WINDOWS\system32\ntvdm.exe NTVDM.EXE
2012-04-03 13:47:35: Looking at \Device\HarddiskVolume1\WINDOWS\system32\wow32.dll WOW32.DLL
2012-04-03 13:47:35: Looking at \Device\HarddiskVolume1\WINDOWS\system32\secur32.dll security.dll
2012-04-03 13:47:36: Looking at \Device\HarddiskVolume1\WINDOWS\system32\iertutil.dll IeRtUtil.dll
2012-04-03 13:47:36: Looking at \Device\HarddiskVolume1\WINDOWS\system32\ieframe.dll IEFRAME.DLL
2012-04-03 13:47:36: Looking at \Device\HarddiskVolume1\WINDOWS\system32\normaliz.dll normaliz.dll
2012-04-03 13:47:36: Looking at \Device\HarddiskVolume1\WINDOWS\system32\apphelp.dll Apphelp
2012-04-03 13:47:36: Looking at \Device\HarddiskVolume1\WINDOWS\system32\userenv.dll userenv.dll
2012-04-03 13:47:36: Looking at \Device\HarddiskVolume1\WINDOWS\system32\drivers\cdfs.sys cdfs.sys
2012-04-03 13:47:36: Looking at \Device\HarddiskVolume1\WINDOWS\system32\drivers\nvatabus.sys nvatabus.sys
2012-04-03 13:47:36: Looking at \Device\HarddiskVolume1\WINDOWS\system32\drivers\wmilib.sys WmiLib.sys
2012-04-03 13:47:36: Looking at \Device\HarddiskVolume1\WINDOWS\system32\win32k.sys win32k.sys
2012-04-03 13:47:36: Looking at \Device\HarddiskVolume1\WINDOWS\system32\drivers\dxapi.sys dxapi.sys
2012-04-03 13:47:36: Looking at \Device\HarddiskVolume1\WINDOWS\system32\watchdog.sys watchdog.sys
2012-04-03 13:47:36: Looking at \Device\HarddiskVolume1\WINDOWS\system32\csrss.exe CSRSS.Exe
2012-04-03 13:47:36: Looking at \Device\HarddiskVolume1\WINDOWS\system32\csrsrv.dll CSRSrv.DLL
2012-04-03 13:47:36: Looking at \Device\HarddiskVolume1\WINDOWS\system32\basesrv.dll basesrv
2012-04-03 13:47:36: Looking at \Device\HarddiskVolume1\WINDOWS\system32\winsrv.dll winsrv.dll
2012-04-03 13:47:36: Looking at \Device\HarddiskVolume1\WINDOWS\system32\drivers\dxg.sys dxg.sys
2012-04-03 13:47:36: Looking at \Device\HarddiskVolume1\WINDOWS\system32\drivers\dxgthk.sys dxgthk.sys
2012-04-03 13:47:36: Looking at \Device\HarddiskVolume1\WINDOWS\system32\ati2dvag.dll ati2dvag.dll
2012-04-03 13:47:36: Looking at \Device\HarddiskVolume1\WINDOWS\system32\ati2cqag.dll ati2cqag.dll
2012-04-03 13:47:36: Looking at \Device\HarddiskVolume1\WINDOWS\system32\vga.dll vga.dll
2012-04-03 13:47:36: Looking at \Device\HarddiskVolume1\WINDOWS\system32\ati3duag.dll ati3duag.dll
2012-04-03 13:47:36: Looking at \Device\HarddiskVolume1\WINDOWS\system32\ativvaxx.dll ativvaxx.dll
2012-04-03 13:47:36: Looking at \Device\HarddiskVolume1\WINDOWS\system32\winlogon.exe WINLOGON.EXE
2012-04-03 13:47:36: Looking at \Device\HarddiskVolume1\WINDOWS\system32\authz.dll authz.dll
2012-04-03 13:47:36: Looking at \Device\HarddiskVolume1\WINDOWS\system32\crypt32.dll CRYPT32.DLL
2012-04-03 13:47:36: Looking at \Device\HarddiskVolume1\WINDOWS\system32\msasn1.dll msasn1.dll
2012-04-03 13:47:36: Looking at \Device\HarddiskVolume1\WINDOWS\system32\nddeapi.dll NDDEAPI.DLL
2012-04-03 13:47:36: Looking at \Device\HarddiskVolume1\WINDOWS\system32\profmap.dll userenv.dll
2012-04-03 13:47:36: Looking at \Device\HarddiskVolume1\WINDOWS\system32\netapi32.dll NetApi32.DLL
2012-04-03 13:47:36: Looking at \Device\HarddiskVolume1\WINDOWS\system32\psapi.dll PSAPI
2012-04-03 13:47:36: Looking at \Device\HarddiskVolume1\WINDOWS\system32\regapi.dll regapi.dll
2012-04-03 13:47:37: Looking at \Device\HarddiskVolume1\WINDOWS\system32\setupapi.dll SETUPAPI.DLL
2012-04-03 13:47:37: Looking at \Device\HarddiskVolume1\WINDOWS\system32\winsta.dll winsta.dll
2012-04-03 13:47:37: Looking at \Device\HarddiskVolume1\WINDOWS\system32\wintrust.dll WINTRUST.DLL
2012-04-03 13:47:37: Looking at \Device\HarddiskVolume1\WINDOWS\system32\ws2_32.dll ws2_32.dll
2012-04-03 13:47:37: Looking at \Device\HarddiskVolume1\WINDOWS\system32\ws2help.dll ws2help.dll
2012-04-03 13:47:37: Looking at \Device\HarddiskVolume1\WINDOWS\system32\imm32.dll imm32
2012-04-03 13:47:37: Looking at \Device\HarddiskVolume1\WINDOWS\system32\kbdfr.dll kbdfr.dll
2012-04-03 13:47:37: Looking at \Device\HarddiskVolume1\WINDOWS\system32\msctfime.ime MSCTFIME.IME
2012-04-03 13:47:37: Looking at \Device\HarddiskVolume1\WINDOWS\system32\kbdus.dll kbdus.dll
2012-04-03 13:47:37: Looking at \Device\HarddiskVolume1\WINDOWS\system32\msgina.dll MSGINA.DLL
2012-04-03 13:47:37: Looking at \Device\HarddiskVolume1\WINDOWS\system32\odbc32.dll ODBC32
2012-04-03 13:47:37: Looking at \Device\HarddiskVolume1\WINDOWS\system32\sxs.dll SXS.DLL
2012-04-03 13:47:37: Looking at \Device\HarddiskVolume1\WINDOWS\WinSxS\x86_Microsoft.Windows.Common-Controls_6595b64144ccf1df_6.0.2600.6028_x-ww_61e65202\comctl32.dll comctl32.DLL
2012-04-03 13:47:37: Looking at \Device\HarddiskVolume1\WINDOWS\WindowsShell.Manifest
2012-04-03 13:47:37: Looking at \Device\HarddiskVolume1\WINDOWS\system32\odbcint.dll ODBCINT
2012-04-03 13:47:37: Looking at \Device\HarddiskVolume1\WINDOWS\system32\shsvcs.dll SHSVCS.DLL
2012-04-03 13:47:37: Looking at \Device\HarddiskVolume1\WINDOWS\system32\sfc.dll sfc.dll
2012-04-03 13:47:37: Looking at \Device\HarddiskVolume1\WINDOWS\system32\sfc_os.dll sfc.dll
2012-04-03 13:47:37: Looking at \Device\HarddiskVolume1\WINDOWS\system32\services.exe services.exe
2012-04-03 13:47:37: Looking at \Device\HarddiskVolume1\WINDOWS\system32\lsass.exe lsass.exe
2012-04-03 13:47:37: Looking at \Device\HarddiskVolume1\WINDOWS\system32\ncobjapi.dll NCObjAPI.DLL
2012-04-03 13:47:37: Looking at \Device\HarddiskVolume1\WINDOWS\system32\msvcp60.dll MSVCP60.DLL
2012-04-03 13:47:37: Looking at \Device\HarddiskVolume1\WINDOWS\system32\scesrv.dll scesrv
2012-04-03 13:47:37: Looking at \Device\HarddiskVolume1\WINDOWS\system32\lsasrv.dll lsasrv.dll
2012-04-03 13:47:37: Looking at \Device\HarddiskVolume1\WINDOWS\system32\umpnpmgr.dll Umpnpmgr.DLL
2012-04-03 13:47:37: Looking at \Device\HarddiskVolume1\WINDOWS\system32\ntdsapi.dll ntdsapi.dll
2012-04-03 13:47:37: Looking at \Device\HarddiskVolume1\WINDOWS\system32\shimeng.dll ShimEngineDLL(IAT)
2012-04-03 13:47:37: Looking at \Device\HarddiskVolume1\WINDOWS\system32\dnsapi.dll dnsapi
2012-04-03 13:47:37: Looking at \Device\HarddiskVolume1\WINDOWS\AppPatch\acadproc.dll
2012-04-03 13:47:37: Looking at \Device\HarddiskVolume1\WINDOWS\system32\samlib.dll SAMLib.DLL
2012-04-03 13:47:38: Looking at \Device\HarddiskVolume1\WINDOWS\system32\samsrv.dll samsrv.dll
2012-04-03 13:47:38: Looking at \Device\HarddiskVolume1\WINDOWS\system32\cryptdll.dll cryptdll.dll
2012-04-03 13:47:38: Looking at \Device\HarddiskVolume1\WINDOWS\AppPatch\acgenral.dll
2012-04-03 13:47:38: Looking at \Device\HarddiskVolume1\WINDOWS\system32\winmm.dll WINMM.DLL
2012-04-03 13:47:38: Looking at \Device\HarddiskVolume1\WINDOWS\system32\msacm32.dll msfltr32.acm
2012-04-03 13:47:38: Looking at \Device\HarddiskVolume1\WINDOWS\system32\uxtheme.dll UxTheme.dll
2012-04-03 13:47:38: Looking at \Device\HarddiskVolume1\WINDOWS\system32\msapsspc.dll MSAPSSPC.DLL
2012-04-03 13:47:38: Looking at \Device\HarddiskVolume1\WINDOWS\system32\msvcrt40.dll msvcrt40.dll
2012-04-03 13:47:38: Looking at \Device\HarddiskVolume1\WINDOWS\system32\schannel.dll schannel.dll
2012-04-03 13:47:38: Looking at \Device\HarddiskVolume1\WINDOWS\system32\digest.dll digest.dll
2012-04-03 13:47:38: Looking at \Device\HarddiskVolume1\WINDOWS\system32\msnsspc.dll MSNSSPC.DLL
2012-04-03 13:47:38: Looking at \Device\HarddiskVolume1\WINDOWS\system32\msprivs.dll mspriv.dll
2012-04-03 13:47:38: Looking at \Device\HarddiskVolume1\WINDOWS\system32\WindowsLogon.manifest
2012-04-03 13:47:38: Looking at \Device\HarddiskVolume1\WINDOWS\system32\kerberos.dll kerberos.dll
2012-04-03 13:47:38: Looking at \Device\HarddiskVolume1\WINDOWS\system32\msv1_0.dll MSV1_0.DLL
2012-04-03 13:47:38: Looking at \Device\HarddiskVolume1\WINDOWS\system32\iphlpapi.dll iphlpapi.dll
2012-04-03 13:47:38: Looking at \Device\HarddiskVolume1\WINDOWS\system32\atmfd.dll ATMFD.DLL
2012-04-03 13:47:38: Looking at \Device\HarddiskVolume1\WINDOWS\system32\netlogon.dll NetLogon.DLL
2012-04-03 13:47:38: Looking at \Device\HarddiskVolume1\WINDOWS\system32\w32time.dll w32time.dll
2012-04-03 13:47:38: Looking at \Device\HarddiskVolume1\WINDOWS\system32\wdigest.dll WDIGEST.DLL
2012-04-03 13:47:38: Looking at \Device\HarddiskVolume1\WINDOWS\system32\rsaenh.dll rsaenh.dll
2012-04-03 13:47:38: Looking at \Device\HarddiskVolume1\WINDOWS\system32\msctf.dll MSCTF.DLL
2012-04-03 13:47:38: Looking at \Device\HarddiskVolume1\WINDOWS\system32\winscard.dll winscard.dll
2012-04-03 13:47:38: Looking at \Device\HarddiskVolume1\WINDOWS\system32\wtsapi32.dll wtsapi32.dll
2012-04-03 13:47:38: Looking at \Device\HarddiskVolume1\WINDOWS\system32\drivers\avgntflt.sys avgntflt.sys
2012-04-03 13:47:38: Looking at \Device\HarddiskVolume1\WINDOWS\system32\scecli.dll scecli
2012-04-03 13:47:38: Looking at \Device\HarddiskVolume1\WINDOWS\system32\drivers\mbam.sys mbam.sys
2012-04-03 13:47:38: Looking at \Device\HarddiskVolume1\WINDOWS\system32\svchost.exe svchost.exe
2012-04-03 13:47:38: Looking at \Device\HarddiskVolume1\WINDOWS\system32\ntmarta.dll ntmarta.dll
2012-04-03 13:47:38: Looking at \Device\HarddiskVolume1\WINDOWS\system32\rpcss.dll rpcss.dll
2012-04-03 13:47:38: Looking at \Device\HarddiskVolume1\WINDOWS\system32\eventlog.dll Eventlog.DLL
2012-04-03 13:47:38: Looking at \Device\HarddiskVolume1\WINDOWS\system32\xpsp2res.dll xpsp2res.dll
2012-04-03 13:47:38: Looking at \Device\HarddiskVolume1\WINDOWS\system32\logonui.exe LOGONUI.EXE
2012-04-03 13:47:38: Looking at \Device\HarddiskVolume1\WINDOWS\system32\duser.dll DUser.DLL
2012-04-03 13:47:38: Looking at \Device\HarddiskVolume1\WINDOWS\system32\msimg32.dll gdiext
2012-04-03 13:47:39: Looking at \Device\HarddiskVolume1\WINDOWS\system32\oleacc.dll OLEACC.DLL
2012-04-03 13:47:39: Looking at \Device\HarddiskVolume1\WINDOWS\system32\mswsock.dll mswsock.dll
2012-04-03 13:47:39: Looking at \Device\HarddiskVolume1\WINDOWS\system32\hnetcfg.dll HNETCFG.DLL
2012-04-03 13:47:39: Looking at \Device\HarddiskVolume1\WINDOWS\system32\clbcatq.dll
2012-04-03 13:47:39: Looking at \Device\HarddiskVolume1\WINDOWS\system32\wshtcpip.dll wshtcpip.dll
2012-04-03 13:47:39: Looking at \Device\HarddiskVolume1\WINDOWS\system32\winrnr.dll winrnr
2012-04-03 13:47:39: Looking at \Device\HarddiskVolume1\WINDOWS\system32\comres.dll
2012-04-03 13:47:39: Looking at \Device\HarddiskVolume1\WINDOWS\system32\rasadhlp.dll rasadhlp.dll
2012-04-03 13:47:39: Looking at \Device\HarddiskVolume1\WINDOWS\system32\shgina.dll SHGINA.DLL
2012-04-03 13:47:39: Looking at \Device\HarddiskVolume1\WINDOWS\system32\drivers\irda.sys irda.sys
2012-04-03 13:47:39: Looking at \Device\HarddiskVolume1\WINDOWS\system32\drivers\ndisuio.sys NDISUIO.SYS
2012-04-03 13:47:39: Looking at \Device\HarddiskVolume1\WINDOWS\system32\dhcpcsvc.dll dhcpcsvc.dll
2012-04-03 13:47:39: Looking at \Device\HarddiskVolume1\WINDOWS\system32\dnsrslvr.dll dnsrslvr.dll
2012-04-03 13:47:39: Looking at \Device\HarddiskVolume1\WINDOWS\Resources\Themes\Luna\luna.msstyles luna.mst
2012-04-03 13:47:39: Looking at \Device\HarddiskVolume1\WINDOWS\system32\cscdll.dll CSCDLL.DLL
2012-04-03 13:47:39: Looking at \Device\HarddiskVolume1\WINDOWS\system32\dimsntfy.dll dimsntfy.dll
2012-04-03 13:47:39: Looking at \Device\HarddiskVolume1\WINDOWS\system32\wlnotify.dll WlNotify.dll
2012-04-03 13:47:39: Looking at \Device\HarddiskVolume1\WINDOWS\system32\winspool.drv winspool.drv
2012-04-03 13:47:39: Looking at \Device\HarddiskVolume1\WINDOWS\system32\WgaLogon.dll WgaLogon.dll
2012-04-03 13:47:39: Looking at \Device\HarddiskVolume1\WINDOWS\system32\msxml3.dll MSXML3.dll
2012-04-03 13:47:39: Looking at \Device\HarddiskVolume1\WINDOWS\system32\msxml3r.dll MSXML3R.dll
2012-04-03 13:47:39: Looking at \Device\HarddiskVolume1\WINDOWS\system32\lmhsvc.dll lmhsvc.dll
2012-04-03 13:47:39: Looking at \Device\HarddiskVolume1\WINDOWS\system32\termsrv.dll termsrv.exe
2012-04-03 13:47:39: Looking at \Device\HarddiskVolume1\WINDOWS\system32\wzcsvc.dll wzcsvc.dll
2012-04-03 13:47:39: Looking at \Device\HarddiskVolume1\WINDOWS\system32\icaapi.dll icaapi.dll
2012-04-03 13:47:39: Looking at \Device\HarddiskVolume1\WINDOWS\system32\rtutils.dll RTUTILS.DLL
2012-04-03 13:47:39: Looking at \Device\HarddiskVolume1\WINDOWS\system32\mstlsapi.dll mstlsapi.dll
2012-04-03 13:47:39: Looking at \Device\HarddiskVolume1\WINDOWS\system32\wmi.dll wmi.DLL
2012-04-03 13:47:39: Looking at \Device\HarddiskVolume1\WINDOWS\system32\eapolqec.dll EapolQec.dll
2012-04-03 13:47:39: Looking at \Device\HarddiskVolume1\WINDOWS\system32\activeds.dll ADs
2012-04-03 13:47:39: Looking at \Device\HarddiskVolume1\WINDOWS\system32\atl.dll ATL.DLL
2012-04-03 13:47:39: Looking at \Device\HarddiskVolume1\WINDOWS\system32\adsldpc.dll adsldpc
2012-04-03 13:47:39: Looking at \Device\HarddiskVolume1\WINDOWS\system32\qutil.dll QUtil.DLL
2012-04-03 13:47:40: Looking at \Device\HarddiskVolume1\WINDOWS\system32\dot3api.dll dot3api.dll
2012-04-03 13:47:40: Looking at \Device\HarddiskVolume1\WINDOWS\system32\esent.dll esent.dll
2012-04-03 13:47:40: Looking at \Device\HarddiskVolume1\WINDOWS\system32\irmon.dll irmon.dll
2012-04-03 13:47:40: Looking at \Device\HarddiskVolume1\WINDOWS\system32\wshirda.dll wshirda.dll
2012-04-03 13:47:40: Looking at \Device\HarddiskVolume1\WINDOWS\system32\mlang.dll MLANG.DLL
2012-04-03 13:47:40: Looking at \Device\HarddiskVolume1\WINDOWS\system32\rastls.dll rastls.dll
2012-04-03 13:47:40: Looking at \Device\HarddiskVolume1\WINDOWS\system32\cryptui.dll CRYPTUI.DLL
2012-04-03 13:47:40: Looking at \Device\HarddiskVolume1\WINDOWS\system32\mprapi.dll mprapi.dll
2012-04-03 13:47:40: Looking at \Device\HarddiskVolume1\WINDOWS\system32\rasapi32.dll rasapi32.dll
2012-04-03 13:47:40: Looking at \Device\HarddiskVolume1\WINDOWS\system32\rasman.dll Rasman.dll
2012-04-03 13:47:40: Looking at \Device\HarddiskVolume1\WINDOWS\system32\tapi32.dll TAPI32.DLL
2012-04-03 13:47:40: Looking at \Device\HarddiskVolume1\WINDOWS\system32\riched20.dll riched20.dll
2012-04-03 13:47:40: Looking at \Device\HarddiskVolume1\WINDOWS\system32\raschap.dll raschap.dll
2012-04-03 13:47:40: Looking at \Device\HarddiskVolume1\WINDOWS\system32\xmlprovi.dll xmlprovi.dll
2012-04-03 13:47:40: Looking at \Device\HarddiskVolume1\WINDOWS\system32\wzcsapi.dll wzcsapi.dll
2012-04-03 13:47:40: Looking at \Device\HarddiskVolume1\WINDOWS\system32\netman.dll netman.dll
2012-04-03 13:47:40: Looking at \Device\HarddiskVolume1\WINDOWS\system32\netshell.dll netshell.dll
2012-04-03 13:47:40: Looking at \Device\HarddiskVolume1\WINDOWS\system32\credui.dll credui.dll
2012-04-03 13:47:40: Looking at \Device\HarddiskVolume1\WINDOWS\system32\dot3dlg.dll dot3dlg.dll
2012-04-03 13:47:40: Looking at \Device\HarddiskVolume1\WINDOWS\system32\onex.dll onex.dll
2012-04-03 13:47:40: Looking at \Device\HarddiskVolume1\WINDOWS\system32\eappcfg.dll eappcfg.DLL
2012-04-03 13:47:40: Looking at \Device\HarddiskVolume1\WINDOWS\system32\eappprxy.dll eappprxy.dll
2012-04-03 13:47:40: Looking at \Device\HarddiskVolume1\WINDOWS\system32\schedsvc.dll schedsvc.dll
2012-04-03 13:47:40: Looking at \Device\HarddiskVolume1\WINDOWS\system32\cscui.dll cscui.dll
2012-04-03 13:47:40: Looking at \Device\HarddiskVolume1\WINDOWS\system32\powrprof.dll POWRPROF.DLL
2012-04-03 13:47:40: Looking at \Device\HarddiskVolume1\WINDOWS\system32\spoolsv.exe spoolsv.exe
2012-04-03 13:47:40: Looking at \Device\HarddiskVolume1\WINDOWS\system32\msidle.dll MSIDLE.DLL
2012-04-03 13:47:40: Looking at \Device\HarddiskVolume1\WINDOWS\system32\dpcdll.dll Dpcdll.dll
2012-04-03 13:47:40: Looking at \Device\HarddiskVolume1\WINDOWS\system32\audiosrv.dll audiosrv.dll
2012-04-03 13:47:40: Looking at \Device\HarddiskVolume1\Program Files\Avira\AntiVir Desktop\sched.exe
2012-04-03 13:47:40: Looking at \Device\HarddiskVolume1\WINDOWS\system32\msvcp100.dll msvcp100.dll
2012-04-03 13:47:40: Looking at \Device\HarddiskVolume1\WINDOWS\system32\msvcr100.dll msvcr100_clr0400.dll
2012-04-03 13:47:40: Looking at \Device\HarddiskVolume1\Program Files\Avira\AntiVir Desktop\grdcore.dll
2012-04-03 13:47:40: Looking at \Device\HarddiskVolume1\Program Files\Avira\AntiVir Desktop\rctext.dll
2012-04-03 13:47:40: Looking at \Device\HarddiskVolume1\Program Files\Avira\AntiVir Desktop\sched.xml
2012-04-03 13:47:41: Looking at \Device\HarddiskVolume1\Program Files\Avira\AntiVir Desktop\scewxmlw.dll scewxml.dll
2012-04-03 13:47:41: Looking at \Device\HarddiskVolume1\Program Files\Avira\AntiVir Desktop\cfglib.dll
2012-04-03 13:47:41: Looking at \Device\HarddiskVolume1\WINDOWS\system32\wkssvc.dll WKSSVC.DLL
2012-04-03 13:47:41: Looking at \Device\HarddiskVolume1\Program Files\Avira\AntiVir Desktop\gpipc.dll
2012-04-03 13:47:41: Looking at \Device\HarddiskVolume1\Program Files\Avira\AntiVir Desktop\gpgen.dll
2012-04-03 13:47:41: Looking at \Device\HarddiskVolume1\Program Files\Avira\AntiVir Desktop\gpschd.dll
2012-04-03 13:47:41: Looking at \Device\HarddiskVolume1\Program Files\Avira\AntiVir Desktop\schedr.dll
2012-04-03 13:47:41: Looking at \Device\HarddiskVolume1\Program Files\Avira\AntiVir Desktop\avevtlog.dll
2012-04-03 13:47:41: Looking at \Device\HarddiskVolume1\Program Files\Avira\AntiVir Desktop\sqlite3.dll sqlite3.dll
2012-04-03 13:47:41: Looking at \Device\HarddiskVolume1\Program Files\Avira\AntiVir Desktop\guardmsg.dll
2012-04-03 13:47:41: Looking at \Device\HarddiskVolume1\WINDOWS\system32\drivers\parvdm.sys parvdm.sys
2012-04-03 13:47:41: Looking at \Device\HarddiskVolume1\Program Files\Adobe\Photoshop Elements 6.0\PhotoshopElementsFileAgent.exe
2012-04-03 13:47:41: Looking at \Device\HarddiskVolume1\Program Files\Adobe\Photoshop Elements 6.0\platform.DLL platform.dll
2012-04-03 13:47:41: Looking at \Device\HarddiskVolume1\WINDOWS\WinSxS\x86_Microsoft.VC80.CRT_1fc8b3b9a1e18e3b_8.0.50727.6195_x-ww_44262b86\msvcp80.dll MSVCP80.DLL
2012-04-03 13:47:41: Looking at \Device\HarddiskVolume1\WINDOWS\WinSxS\x86_Microsoft.VC80.CRT_1fc8b3b9a1e18e3b_8.0.50727.6195_x-ww_44262b86\msvcr80.dll MSVCR80.DLL
2012-04-03 13:47:41: Looking at \Device\HarddiskVolume1\Program Files\Avira\AntiVir Desktop\avguard.exe
2012-04-03 13:47:41: Looking at \Device\HarddiskVolume1\Program Files\Avira\AntiVir Desktop\avguard.xml
2012-04-03 13:47:41: Looking at \Device\HarddiskVolume1\WINDOWS\system32\cryptsvc.dll cryptsvc.dll
2012-04-03 13:47:41: Looking at \Device\HarddiskVolume1\Program Files\Avira\AntiVir Desktop\gpgrd.dll
2012-04-03 13:47:41: Looking at \Device\HarddiskVolume1\WINDOWS\system32\eapsvc.dll eapsvc.dll
2012-04-03 13:47:41: Looking at \Device\HarddiskVolume1\WINDOWS\system32\FTRTSVC.exe FTRTSVC.EXE
2012-04-03 13:47:41: Looking at \Device\HarddiskVolume1\WINDOWS\system32\IfHelper.dll IfHelper.dll
2012-04-03 13:47:41: Looking at \Device\HarddiskVolume1\WINDOWS\system32\wdmaud.drv WDMAUD.DRV
2012-04-03 13:47:41: Looking at \Device\HarddiskVolume1\WINDOWS\system32\certcli.dll CertCli
2012-04-03 13:47:41: Looking at \Device\HarddiskVolume1\WINDOWS\system32\eapphost.dll eapphost.dll
2012-04-03 13:47:41: Looking at \Device\HarddiskVolume1\Program Files\Avira\AntiVir Desktop\gpavgio.dll
2012-04-03 13:47:41: Looking at \Device\HarddiskVolume1\WINDOWS\system32\drivers\wdmaud.sys WDMAUD.SYS
2012-04-03 13:47:41: Looking at \Device\HarddiskVolume1\WINDOWS\system32\drivers\sysaudio.sys sysaudio.sys
2012-04-03 13:47:41: Looking at \Device\HarddiskVolume1\Program Files\Avira\AntiVir Desktop\gpgui.dll
2012-04-03 13:47:41: Looking at \Device\HarddiskVolume1\WINDOWS\system32\drivers\splitter.sys splitter.sys
2012-04-03 13:47:41: Looking at \Device\HarddiskVolume1\WINDOWS\system32\es.dll
2012-04-03 13:47:41: Looking at \Device\HarddiskVolume1\WINDOWS\system32\mfc42.dll MFC42.DLL
2012-04-03 13:47:41: Looking at \Device\HarddiskVolume1\WINDOWS\system32\drivers\aec.sys aec.sys
2012-04-03 13:47:41: Looking at \Device\HarddiskVolume1\Program Files\Avira\AntiVir Desktop\gplegacy.dll
2012-04-03 13:47:41: Looking at \Device\HarddiskVolume1\WINDOWS\system32\drivers\swmidi.sys swmidi.sys
2012-04-03 13:47:41: Looking at \Device\HarddiskVolume1\WINDOWS\system32\drivers\dmusic.sys DMusic.sys
2012-04-03 13:47:41: Looking at \Device\HarddiskVolume1\WINDOWS\system32\drivers\kmixer.sys kmixer.sys
2012-04-03 13:47:41: Looking at \Device\HarddiskVolume1\WINDOWS\system32\ersvc.dll ERSVC.DLL
2012-04-03 13:47:41: Looking at \Device\HarddiskVolume1\Program Files\Avira\AntiVir Desktop\gpgavid.dll
2012-04-03 13:47:41: Looking at \Device\HarddiskVolume1\WINDOWS\system32\drivers\drmkaud.sys drmkaud.sys
2012-04-03 13:47:41: Looking at \Device\HarddiskVolume1\WINDOWS\system32\msacm32.drv msacm32.acm
2012-04-03 13:47:42: Looking at \Device\HarddiskVolume1\WINDOWS\system32\mfc42loc.dll
2012-04-03 13:47:42: Looking at \Device\HarddiskVolume1\WINDOWS\system32\midimap.dll midimap.dll
2012-04-03 13:47:42: Looking at \Device\HarddiskVolume1\Program Files\Avira\AntiVir Desktop\libdb44.dll libdb44.dll
2012-04-03 13:47:42: Looking at \Device\HarddiskVolume1\Program Files\Avira\AntiVir Desktop\gpgenrep.dll
2012-04-03 13:47:42: Looking at \Device\HarddiskVolume1\Program Files\Avira\AntiVir Desktop\onlcfg.dll
2012-04-03 13:47:42: Looking at \Device\HarddiskVolume1\Program Files\Avira\AntiVir Desktop\avpref.dll
2012-04-03 13:47:42: Looking at \Device\HarddiskVolume1\Program Files\Avira\AntiVir Desktop\avipc.dll
2012-04-03 13:47:42: Looking at \Device\HarddiskVolume1\Program Files\Avira\AntiVir Desktop\avwinll.dll
2012-04-03 13:47:42: Looking at \Device\HarddiskVolume1\Program Files\Avira\AntiVir Desktop\avgio.dll
2012-04-03 13:47:42: Looking at \Device\HarddiskVolume1\WINDOWS\system32\fltlib.dll filterLib.dll
2012-04-03 13:47:42: Looking at \Device\HarddiskVolume1\Program Files\Google\Update\GoogleUpdate.exe GoogleUpdate.exe
2012-04-03 13:47:42: Looking at \Device\HarddiskVolume1\Program Files\Avira\AntiVir Desktop\aecore.dll aecore.dll
2012-04-03 13:47:42: Looking at \Device\HarddiskVolume1\Program Files\Avira\AntiVir Desktop\aevdf.dll aevdf.dll
2012-04-03 13:47:42: Looking at \Device\HarddiskVolume1\Program Files\Google\Update\1.3.21.111\goopdate.dll goopdate.dll
2012-04-03 13:47:42: Looking at \Device\HarddiskVolume1\Program Files\Avira\AntiVir Desktop\aescript.dll aescript.dll
2012-04-03 13:47:42: Looking at \Device\HarddiskVolume1\WINDOWS\system32\userinit.exe USERINIT.EXE
2012-04-03 13:47:42: Looking at \Device\HarddiskVolume1\Program Files\Avira\AntiVir Desktop\aescn.dll aescn.dll
2012-04-03 13:47:42: Looking at \Device\HarddiskVolume1\WINDOWS\system32\WgaTray.exe WgaTray.exe
2012-04-03 13:47:42: Looking at \Device\HarddiskVolume1\WINDOWS\system32\msi.dll msi.dll
2012-04-03 13:47:42: Looking at \Device\HarddiskVolume1\WINDOWS\system32\msi.dll msi.dll
2012-04-03 13:47:42: Looking at \Device\HarddiskVolume1\Program Files\Avira\AntiVir Desktop\aesbx.dll aesbx.dll
2012-04-03 13:47:42: Looking at \Device\HarddiskVolume1\WINDOWS\explorer.exe EXPLORER.EXE
2012-04-03 13:47:42: Looking at \Device\HarddiskVolume1\WINDOWS\system32\dbghelp.dll DBGHELP.DLL
2012-04-03 13:47:42: Looking at \Device\HarddiskVolume1\Program Files\Avira\AntiVir Desktop\aerdl.dll aerdl.dll
2012-04-03 13:47:42: Looking at \Device\HarddiskVolume1\WINDOWS\system32\browseui.dll BROWSEUI.DLL
2012-04-03 13:47:42: Looking at \Device\HarddiskVolume1\Program Files\Google\Update\1.3.21.111\goopdateres_fr.dll goopdateres_fr.dll
2012-04-03 13:47:42: Looking at \Device\HarddiskVolume1\Program Files\Google\Update\1.3.21.111\GoogleCrashHandler.exe GoogleUpdate.exe
2012-04-03 13:47:42: Looking at \Device\HarddiskVolume1\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe GoogleUpdaterService.exe
2012-04-03 13:47:42: Looking at \Device\HarddiskVolume1\WINDOWS\system32\cryptnet.dll CRYPTNET.DLL
2012-04-03 13:47:42: Looking at \Device\HarddiskVolume1\WINDOWS\system32\sensapi.dll SensApi.dll
2012-04-03 13:47:42: Looking at \Device\HarddiskVolume1\WINDOWS\system32\mstask.dll mstask.dll
2012-04-03 13:47:43: Looking at \Device\HarddiskVolume1\Program Files\Avira\AntiVir Desktop\aepack.dll aepack.dll
2012-04-03 13:47:43: Looking at \Device\HarddiskVolume1\WINDOWS\pchealth\helpctr\binaries\pchsvc.dll PCHSVC.DLL
2012-04-03 13:47:43: Looking at \Device\HarddiskVolume1\Program Files\Java\jre6\bin\jqs.exe jqs.exe
2012-04-03 13:47:43: Looking at \Device\HarddiskVolume1\WINDOWS\system32\winhttp.dll winhttp.dll
2012-04-03 13:47:43: Looking at \Device\HarddiskVolume1\WINDOWS\system32\shdocvw.dll SHDOCVW.DLL
2012-04-03 13:47:43: Looking at \Device\HarddiskVolume1\Program Files\Java\jre6\bin\msvcr71.dll MSVCR71.DLL
2012-04-03 13:47:43: Looking at \Device\HarddiskVolume1\Program Files\Avira\AntiVir Desktop\aeoffice.dll aeoffice.dll
2012-04-03 13:47:43: Looking at \Device\HarddiskVolume1\WINDOWS\system32\pdh.dll PDH.DLL
2012-04-03 13:47:43: Looking at \Device\HarddiskVolume1\WINDOWS\system32\LegitCheckControl.dll LegitCheckControl.dll
2012-04-03 13:47:43: Looking at \Device\HarddiskVolume1\WINDOWS\system32\odbcbcp.dll ODBCBCP
2012-04-03 13:47:43: Looking at \Device\HarddiskVolume1\WINDOWS\system32\srvsvc.dll SRVSVC.DLL
2012-04-03 13:47:43: Looking at \Device\HarddiskVolume1\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe mbamservice.exe
2012-04-03 13:47:43: Looking at \Device\HarddiskVolume1\WINDOWS\system32\netmsg.dll netmsg.DLL
2012-04-03 13:47:43: Looking at \Device\HarddiskVolume1\Program Files\Avira\AntiVir Desktop\aeheur.dll aeheur.dll
2012-04-03 13:47:43: Looking at \Device\HarddiskVolume1\WINDOWS\system32\drivers\srv.sys SRV.SYS
2012-04-03 13:47:43: Looking at \Device\HarddiskVolume1\WINDOWS\system32\wbem\wbemprox.dll wbemprox.dll
2012-04-03 13:47:43: Looking at \Device\HarddiskVolume1\WINDOWS\system32\netfxperf.dll netfxperf.dll
2012-04-03 13:47:43: Looking at \Device\HarddiskVolume1\WINDOWS\system32\wbem\wbemcomn.dll wbemcomn.dll
2012-04-03 13:47:43: Looking at \Device\HarddiskVolume1\Program Files\Malwarebytes' Anti-Malware\mbamcore.dll mbamcore.dll
2012-04-03 13:47:43: Looking at \Device\HarddiskVolume1\WINDOWS\system32\mscoree.dll mscoree.dll
2012-04-03 13:47:43: Looking at \Device\HarddiskVolume1\Program Files\Malwarebytes' Anti-Malware\mbam.dll mbam.dll
2012-04-03 13:47:43: Looking at \Device\HarddiskVolume1\WINDOWS\Microsoft.NET\Framework\v2.0.50727\PerfCounter.dll perfcounter.dll
2012-04-03 13:47:43: Looking at \Device\HarddiskVolume1\WINDOWS\system32\desk.cpl DESK.CPL
2012-04-03 13:47:43: Looking at \Device\HarddiskVolume1\WINDOWS\system32\themeui.dll ThemeUI.DLL
2012-04-03 13:47:43: Looking at \Device\HarddiskVolume1\WINDOWS\system32\actxprxy.dll ActXPrxy.dll
2012-04-03 13:47:44: Looking at \Device\HarddiskVolume1\Program Files\Malwarebytes' Anti-Malware\mbamnet.dll mbamnet.dll
2012-04-03 13:47:44: Looking at \Device\HarddiskVolume1\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorwks.dll mscorwks.dll
2012-04-03 13:47:44: Looking at \Device\HarddiskVolume1\WINDOWS\system32\cmd.exe Cmd.Exe
2012-04-03 13:47:44: Looking at \Device\HarddiskVolume1\WINDOWS\system32\spoolss.dll spoolss.dll
2012-04-03 13:47:44: Looking at \Device\HarddiskVolume1\Program Files\Avira\AntiVir Desktop\aehelp.dll aehelp.dll
2012-04-03 13:47:44: Looking at \Device\HarddiskVolume1\WINDOWS\Microsoft.NET\Framework\v2.0.50727\CORPerfMonExt.dll CORPerfMonExt.dll
2012-04-03 13:47:44: Looking at \Device\HarddiskVolume1\WINDOWS\Microsoft.NET\Framework\v2.0.50727\Aspnet_perf.dll aspnet_perf.dll
2012-04-03 13:47:44: Looking at \Device\HarddiskVolume1\WINDOWS\system32\localspl.dll localspl.dll
2012-04-03 13:47:44: Looking at \Device\HarddiskVolume1\WINDOWS\system32\cnbjmon.dll CNBJMON.DLL
2012-04-03 13:47:44: Looking at \Device\HarddiskVolume1\Program Files\Avira\AntiVir Desktop\aegen.dll aegen.dll
2012-04-03 13:47:44: Looking at \Device\HarddiskVolume1\WINDOWS\Microsoft.NET\Framework\v1.1.4322\aspnet_isapi.dll aspnet_isapi.lib
2012-04-03 13:47:44: Looking at \Device\HarddiskVolume1\WINDOWS\system32\CNMLM9Z.DLL CNMLMON2.DLL
2012-04-03 13:47:44: Looking at \Device\HarddiskVolume1\WINDOWS\Microsoft.NET\Framework\v1.1.4322\fr\aspnet_rc.dll aspnet_rc.dll
2012-04-03 13:47:44: Looking at \Device\HarddiskVolume1\Documents and Settings\User\Bureau\yorkyt.exe
2012-04-03 13:47:44: Looking at \Device\HarddiskVolume1\WINDOWS\system32\pjlmon.dll PJLMON.DLL
2012-04-03 13:47:44: Looking at \Device\HarddiskVolume1\WINDOWS\system32\wsock32.dll wsock32.dll
2012-04-03 13:47:44: Looking at \Device\HarddiskVolume1\Program Files\Avira\AntiVir Desktop\aeexp.dll aeexp.dll
2012-04-03 13:47:44: Looking at \Device\HarddiskVolume1\WINDOWS\system32\tcpmon.dll tcpmon.dll
2012-04-03 13:47:44: Looking at \Device\HarddiskVolume1\WINDOWS\system32\msimtf.dll MSIMTF.DLL
2012-04-03 13:47:44: Looking at \Device\HarddiskVolume1\WINDOWS\system32\usbmon.dll DynaMon.dll
2012-04-03 13:47:44: Looking at \Device\HarddiskVolume1\WINDOWS\system32\spool\prtprocs\w32x86\CNMPD9Z.DLL CNMPD.DLL
2012-04-03 13:47:44: Looking at \Device\HarddiskVolume1\Program Files\Avira\AntiVir Desktop\aeemu.dll aeemu.so
2012-04-03 13:47:44: Looking at \Device\HarddiskVolume1\WINDOWS\system32\query.dll query.dll
2012-04-03 13:47:44: Looking at \Device\HarddiskVolume1\WINDOWS\system32\spool\prtprocs\w32x86\filterpipelineprintproc.dll PrintFilterPipelinePrxy.dll
2012-04-03 13:47:44: Looking at \Device\HarddiskVolume1\WINDOWS\system32\msutb.dll MSUTB.DLL
2012-04-03 13:47:44: Looking at \Device\HarddiskVolume1\Program Files\Avira\AntiVir Desktop\aebb.dll aebb.dll
2012-04-03 13:47:45: Looking at \Device\HarddiskVolume1\WINDOWS\system32\win32spl.dll win32spl.dll
2012-04-03 13:47:45: Looking at \Device\HarddiskVolume1\WINDOWS\system32\ipsecsvc.dll ipsecsvc.dll
2012-04-03 13:47:45: Looking at \Device\HarddiskVolume1\WINDOWS\system32\srsvc.dll SERVICE.DLL
2012-04-03 13:47:45: Looking at \Device\HarddiskVolume1\Documents and Settings\All Users\Application Data\Malwarebytes\Malwarebytes' Anti-Malware\Configuration\local.conf
2012-04-03 13:47:45: Looking at \Device\HarddiskVolume1\WINDOWS\system32\netrap.dll NetRap.DLL
2012-04-03 13:47:45: Looking at \Device\HarddiskVolume1\Documents and Settings\All Users\Application Data\Malwarebytes\Malwarebytes' Anti-Malware\Configuration\custom.conf
2012-04-03 13:47:45: Looking at \Device\HarddiskVolume1\WINDOWS\system32\wiaservc.dll WIASERVC.DLL
2012-04-03 13:47:45: Looking at \Device\HarddiskVolume1\Documents and Settings\All Users\Application Data\Malwarebytes\Malwarebytes' Anti-Malware\Configuration\manifest.conf
2012-04-03 13:47:45: Looking at \Device\HarddiskVolume1\Documents and Settings\All Users\Application Data\Malwarebytes\Malwarebytes' Anti-Malware\Configuration\database.conf
2012-04-03 13:47:45: Looking at \Device\HarddiskVolume1\Documents and Settings\All Users\Application Data\Malwarebytes\Malwarebytes' Anti-Malware\Configuration\build.conf
2012-04-03 13:47:45: Looking at \Device\HarddiskVolume1\WINDOWS\system32\sens.dll sens.dll
2012-04-03 13:47:45: Looking at \Device\HarddiskVolume1\WINDOWS\system32\oakley.dll oakley.dll
2012-04-03 13:47:45: Looking at \Device\HarddiskVolume1\WINDOWS\system32\cfgmgr32.dll CFGMGR32.DLL
2012-04-03 13:47:45: Looking at \Device\HarddiskVolume1\Documents and Settings\All Users\Application Data\Malwarebytes\Malwarebytes' Anti-Malware\Configuration\news.conf
2012-04-03 13:47:45: Looking at \Device\HarddiskVolume1\WINDOWS\system32\inetpp.dll inetpp.dll
2012-04-03 13:47:45: Looking at \Device\HarddiskVolume1\WINDOWS\system32\msdtcuiu.dll
2012-04-03 13:47:45: Looking at \Device\HarddiskVolume1\Documents and Settings\All Users\Application Data\Malwarebytes\Malwarebytes' Anti-Malware\Configuration\config.conf
2012-04-03 13:47:45: Looking at \Device\HarddiskVolume1\WINDOWS\system32\winipsec.dll winipsec.dll
2012-04-03 13:47:45: Looking at \Device\HarddiskVolume1\WINDOWS\system32\seclogon.dll SECLOGON.EXE
2012-04-03 13:47:45: Looking at \Device\HarddiskVolume1\WINDOWS\system32\wbem\wbemdisp.dll WBEMDISP.DLL
2012-04-03 13:47:45: Looking at \Device\HarddiskVolume1\WINDOWS\system32\mscms.dll MSCMS.DLL
2012-04-03 13:47:45: Looking at \Device\HarddiskVolume1\WINDOWS\system32\pstorsvc.dll Protectedstorageserver
2012-04-03 13:47:45: Looking at \Device\HarddiskVolume1\WINDOWS\system32\browser.dll browser.dll
2012-04-03 13:47:45: Looking at \Device\Hard
j'ai refait yorkyt et voici le log :
2012-04-03 13:43:31: ****************************************************
2012-04-03 13:43:31: Starting UP ... v 0.0.0.192
2012-04-03 13:43:31: ****************************************************
2012-04-03 13:43:31: Listing processes...
2012-04-03 13:43:31: :[System Process]:0
2012-04-03 13:43:31: :System:4
2012-04-03 13:43:31: :smss.exe:364
2012-04-03 13:43:31: :csrss.exe:508
2012-04-03 13:43:31: :winlogon.exe:536
2012-04-03 13:43:31: :services.exe:580
2012-04-03 13:43:31: :lsass.exe:592
2012-04-03 13:43:31: :svchost.exe:752
2012-04-03 13:43:31: :svchost.exe:828
2012-04-03 13:43:31: :svchost.exe:944
2012-04-03 13:43:31: :svchost.exe:1048
2012-04-03 13:43:31: :svchost.exe:1108
2012-04-03 13:43:31: :spoolsv.exe:1372
2012-04-03 13:43:31: :sched.exe:1464
2012-04-03 13:43:31: :PhotoshopElementsFileAgent.exe:1516
2012-04-03 13:43:31: :avguard.exe:1540
2012-04-03 13:43:31: :svchost.exe:1560
2012-04-03 13:43:31: :FTRTSVC.exe:1588
2012-04-03 13:43:31: :jqs.exe:1888
2012-04-03 13:43:31: :explorer.exe:2000
2012-04-03 13:43:31: :mbamservice.exe:2044
2012-04-03 13:43:31: :svchost.exe:400
2012-04-03 13:43:31: :nvraidservice.exe:504
2012-04-03 13:43:31: :SOUNDMAN.EXE:388
2012-04-03 13:43:31: :wmiprvse.exe:992
2012-04-03 13:43:31: :avgnt.exe:1076
2012-04-03 13:43:31: :mbamgui.exe:1120
2012-04-03 13:43:31: :GoogleToolbarNotifier.exe:1240
2012-04-03 13:43:31: :ctfmon.exe:1248
2012-04-03 13:43:31: :WLANUTL.exe:816
2012-04-03 13:43:31: :unsecapp.exe:2580
2012-04-03 13:43:31: :avshadow.exe:2976
2012-04-03 13:43:31: :wmiapsrv.exe:3580
2012-04-03 13:43:31: :alg.exe:216
2012-04-03 13:43:31: :svchost.exe:3912
2012-04-03 13:43:31: :firefox.exe:3544
2012-04-03 13:43:31: :wuauclt.exe:1072
2012-04-03 13:43:31: :plugin-container.exe:1400
2012-04-03 13:43:31: :yorkyt.exe:2512
2012-04-03 13:43:31: :wmiprvse.exe:1232
2012-04-03 13:43:31:
2012-04-03 13:43:31: Setting restore point
2012-04-03 13:43:36: Determining autonomous or dropped mode...
2012-04-03 13:43:36: Autonomus mode
2012-04-03 13:43:38: Installing drivers...
2012-04-03 13:43:39: Checking that it installed...
2012-04-03 13:43:39: Driver is installed...
2012-04-03 13:43:39: cmd.exe /c start "C:\Documents and Settings\User\Bureau\yorkyt.exe"
2012-04-03 13:43:41: Restarting...
2012-04-03 13:46:53: ****************************************************
2012-04-03 13:46:54: Starting UP ... v 0.0.0.192
2012-04-03 13:46:54: ****************************************************
2012-04-03 13:46:54: Listing processes...
2012-04-03 13:46:54: :[System Process]:0
2012-04-03 13:46:54: :System:4
2012-04-03 13:46:54: :smss.exe:492
2012-04-03 13:46:54: :csrss.exe:644
2012-04-03 13:46:54: :winlogon.exe:676
2012-04-03 13:46:54: :services.exe:724
2012-04-03 13:46:54: :lsass.exe:740
2012-04-03 13:46:54: :svchost.exe:904
2012-04-03 13:46:54: :svchost.exe:992
2012-04-03 13:46:54: :svchost.exe:1096
2012-04-03 13:46:54: :svchost.exe:1204
2012-04-03 13:46:54: :svchost.exe:1280
2012-04-03 13:46:54: :spoolsv.exe:1600
2012-04-03 13:46:54: :sched.exe:1648
2012-04-03 13:46:54: :PhotoshopElementsFileAgent.exe:1696
2012-04-03 13:46:54: :avguard.exe:1724
2012-04-03 13:46:54: :svchost.exe:1756
2012-04-03 13:46:54: :FTRTSVC.exe:1780
2012-04-03 13:46:54: :WgaTray.exe:276
2012-04-03 13:46:54: :explorer.exe:332
2012-04-03 13:46:54: :jqs.exe:568
2012-04-03 13:46:54: :mbamservice.exe:620
2012-04-03 13:46:54: :yorkyt.exe:1408
2012-04-03 13:46:54: :svchost.exe:1864
2012-04-03 13:46:54: :nvraidservice.exe:1088
2012-04-03 13:46:54: :SOUNDMAN.EXE:1184
2012-04-03 13:46:54: :AdobeARM.exe:344
2012-04-03 13:46:54: :avgnt.exe:1264
2012-04-03 13:46:54: :mbamgui.exe:1308
2012-04-03 13:46:54: :GoogleToolbarNotifier.exe:1116
2012-04-03 13:46:54: :ctfmon.exe:1084
2012-04-03 13:46:54: :WLANUTL.exe:1432
2012-04-03 13:46:54: :wuauclt.exe:2004
2012-04-03 13:46:54: :wmiprvse.exe:2188
2012-04-03 13:46:54: :unsecapp.exe:2420
2012-04-03 13:46:54: :avshadow.exe:3212
2012-04-03 13:46:54: :wmiapsrv.exe:3648
2012-04-03 13:46:54: :wmiprvse.exe:3724
2012-04-03 13:46:54: :avwsc.exe:4076
2012-04-03 13:46:54: :alg.exe:1652
2012-04-03 13:46:54: :reader_sl.exe:3320
2012-04-03 13:46:54:
2012-04-03 13:46:54: RUN mode
2012-04-03 13:46:54: Determining autonomous or dropped mode...
2012-04-03 13:46:54: Autonomus mode
2012-04-03 13:46:55: Waiting for Explorer.exe...
2012-04-03 13:47:25: Launching parsers...
2012-04-03 13:47:31: Looking at \Device\HarddiskVolume1\WINDOWS\SYSTEM32\KDCOM.DLL kdcom.dll
2012-04-03 13:47:31: Looking at \Device\HarddiskVolume1\WINDOWS\SYSTEM32\BOOTVID.DLL bootvid.dll
2012-04-03 13:47:31: Looking at \Device\HarddiskVolume1\WINDOWS\SYSTEM32\DRIVERS\DASBOOT.SYS
2012-04-03 13:47:31: Looking at \Device\HarddiskVolume1\WINDOWS\SYSTEM32\DRIVERS\DASBOOTD.SYS
2012-04-03 13:47:31: Looking at \Device\HarddiskVolume1\WINDOWS\SYSTEM32\DRIVERS\DASBOOTK.SYS
2012-04-03 13:47:31: Looking at \Device\HarddiskVolume1\WINDOWS\SYSTEM32\DRIVERS\DASBOOTI.SYS
2012-04-03 13:47:31: Looking at \Device\HarddiskVolume1\WINDOWS\SYSTEM32\DRIVERS\DASBOOTS.SYS
2012-04-03 13:47:31: Looking at \Device\HarddiskVolume1\WINDOWS\SYSTEM32\DRIVERS\SPTD.SYS sptd.sys
2012-04-03 13:47:31: Looking at \Device\HarddiskVolume1\WINDOWS\SYSTEM32\DRIVERS\WMILIB.SYS WmiLib.sys
2012-04-03 13:47:31: Looking at \Device\HarddiskVolume1\WINDOWS\SYSTEM32\DRIVERS\SCSIPORT.SYS scsiport.sys
2012-04-03 13:47:31: Looking at \Device\HarddiskVolume1\WINDOWS\SYSTEM32\DRIVERS\ACPI.SYS ACPI.sys
2012-04-03 13:47:31: Looking at \Device\HarddiskVolume1\WINDOWS\SYSTEM32\DRIVERS\PCI.SYS pci.sys
2012-04-03 13:47:31: Looking at \Device\HarddiskVolume1\WINDOWS\SYSTEM32\DRIVERS\ISAPNP.SYS isapnp.sys
2012-04-03 13:47:31: Looking at \Device\HarddiskVolume1\WINDOWS\SYSTEM32\DRIVERS\PCIIDE.SYS pciide.sys
2012-04-03 13:47:31: Looking at \Device\HarddiskVolume1\WINDOWS\SYSTEM32\DRIVERS\PCIIDEX.SYS pciidex.sys
2012-04-03 13:47:31: Looking at \Device\HarddiskVolume1\WINDOWS\SYSTEM32\DRIVERS\MOUNTMGR.SYS mountmgr.sys
2012-04-03 13:47:31: Looking at \Device\HarddiskVolume1\WINDOWS\SYSTEM32\DRIVERS\FTDISK.SYS ftdisk.sys
2012-04-03 13:47:31: Looking at \Device\HarddiskVolume1\WINDOWS\SYSTEM32\DRIVERS\PARTMGR.SYS partmgr.sys
2012-04-03 13:47:31: Looking at \Device\HarddiskVolume1\WINDOWS\SYSTEM32\DRIVERS\NVRAID.SYS nvraid.sys
2012-04-03 13:47:31: Looking at \Device\HarddiskVolume1\WINDOWS\SYSTEM32\DRIVERS\CLASSPNP.SYS Classpnp.sys
2012-04-03 13:47:31: Looking at \Device\HarddiskVolume1\WINDOWS\SYSTEM32\DRIVERS\VOLSNAP.SYS volsnap.sys
2012-04-03 13:47:31: Looking at \Device\HarddiskVolume1\WINDOWS\SYSTEM32\DRIVERS\ATAPI.SYS atapi.sys
2012-04-03 13:47:31: Looking at \Device\HarddiskVolume1\WINDOWS\SYSTEM32\DRIVERS\NVATABUS.SYS nvatabus.sys
2012-04-03 13:47:31: Looking at \Device\HarddiskVolume1\WINDOWS\SYSTEM32\DRIVERS\DISK.SYS scsidisk.sys
2012-04-03 13:47:31: Looking at \Device\HarddiskVolume1\WINDOWS\SYSTEM32\DRIVERS\FLTMGR.SYS fltMgr.sys
2012-04-03 13:47:31: Looking at \Device\HarddiskVolume1\WINDOWS\SYSTEM32\DRIVERS\SR.SYS sr.sys
2012-04-03 13:47:31: Looking at \Device\HarddiskVolume1\WINDOWS\SYSTEM32\DRIVERS\PXHELP20.SYS PxHelp20.sys
2012-04-03 13:47:31: Looking at \Device\HarddiskVolume1\WINDOWS\SYSTEM32\DRIVERS\KSECDD.SYS ksecdd.sys
2012-04-03 13:47:32: Looking at \Device\HarddiskVolume1\WINDOWS\SYSTEM32\DRIVERS\NTFS.SYS ntfs.sys
2012-04-03 13:47:32: Looking at \Device\HarddiskVolume1\WINDOWS\SYSTEM32\DRIVERS\NDIS.SYS NDIS.SYS
2012-04-03 13:47:32: Looking at \Device\HarddiskVolume1\WINDOWS\SYSTEM32\DRIVERS\NV_AGP.SYS nv_agp.sys
2012-04-03 13:47:32: Looking at \Device\HarddiskVolume1\WINDOWS\SYSTEM32\DRIVERS\MUP.SYS MUP.SYS
2012-04-03 13:47:32: Looking at \Device\HarddiskVolume1\WINDOWS\SYSTEM32\DRIVERS\DASBOOTF.SYS
2012-04-03 13:47:32: Looking at \DEVICE\HARDDISKVOLUME1\WINDOWS\SYSTEM32\DRIVERS\FDC.SYS fdc.sys
2012-04-03 13:47:32: Looking at \DEVICE\HARDDISKVOLUME1\WINDOWS\SYSTEM32\DRIVERS\PARPORT.SYS parport.sys
2012-04-03 13:47:32: Looking at \Device\HarddiskVolume1\WINDOWS\SYSTEM32\DRIVERS\USBD.SYS usbd.sys
2012-04-03 13:47:32: Looking at \DEVICE\HARDDISKVOLUME1\WINDOWS\SYSTEM32\DRIVERS\GAMEENUM.SYS gameenum.sys
2012-04-03 13:47:32: Looking at \DEVICE\HARDDISKVOLUME1\WINDOWS\SYSTEM32\DRIVERS\I8042PRT.SYS i8042prt.sys
2012-04-03 13:47:32: Looking at \DEVICE\HARDDISKVOLUME1\WINDOWS\SYSTEM32\DRIVERS\KBDCLASS.SYS kbdclass.sys
2012-04-03 13:47:32: Looking at \DEVICE\HARDDISKVOLUME1\WINDOWS\SYSTEM32\DRIVERS\MOUCLASS.SYS mouclass.sys
2012-04-03 13:47:32: Looking at \DEVICE\HARDDISKVOLUME1\WINDOWS\SYSTEM32\DRIVERS\SERIAL.SYS serial.sys
2012-04-03 13:47:32: Looking at \DEVICE\HARDDISKVOLUME1\WINDOWS\SYSTEM32\DRIVERS\SERENUM.SYS serenum.sys
2012-04-03 13:47:32: Looking at \Device\HarddiskVolume1\WINDOWS\SYSTEM32\DRIVERS\USBPORT.SYS usbport.sys
2012-04-03 13:47:32: Looking at \DEVICE\HARDDISKVOLUME1\WINDOWS\SYSTEM32\DRIVERS\USBOHCI.SYS USBOHCI.sys
2012-04-03 13:47:32: Looking at \DEVICE\HARDDISKVOLUME1\WINDOWS\SYSTEM32\DRIVERS\USBEHCI.SYS USBEHCI.sys
2012-04-03 13:47:32: Looking at \Device\HarddiskVolume1\WINDOWS\SYSTEM32\DRIVERS\NVSNPU.SYS NVSNPU.SYS
2012-04-03 13:47:32: Looking at \Device\HarddiskVolume1\WINDOWS\SYSTEM32\DRIVERS\NVNRM.SYS NVNRM.SYS
2012-04-03 13:47:32: Looking at \DEVICE\HARDDISKVOLUME1\WINDOWS\SYSTEM32\DRIVERS\NVNETBUS.SYS NVNETBUS.SYS
2012-04-03 13:47:32: Looking at \Device\HarddiskVolume1\WINDOWS\SYSTEM32\DRIVERS\KS.SYS ks.sys
2012-04-03 13:47:32: Looking at \Device\HarddiskVolume1\WINDOWS\SYSTEM32\DRIVERS\DRMK.SYS drmk.sys
2012-04-03 13:47:32: Looking at \Device\HarddiskVolume1\WINDOWS\SYSTEM32\DRIVERS\PORTCLS.SYS portcls.sys
2012-04-03 13:47:32: Looking at \DEVICE\HARDDISKVOLUME1\WINDOWS\SYSTEM32\DRIVERS\ALCXWDM.SYS ALCXWDM.SYS
2012-04-03 13:47:32: Looking at \DEVICE\HARDDISKVOLUME1\WINDOWS\SYSTEM32\DRIVERS\IMAPI.SYS IMAPI.sys
2012-04-03 13:47:32: Looking at \DEVICE\HARDDISKVOLUME1\WINDOWS\SYSTEM32\DRIVERS\PFC.SYS Pfc.sys
2012-04-03 13:47:32: Looking at \DEVICE\HARDDISKVOLUME1\WINDOWS\SYSTEM32\DRIVERS\CDROM.SYS cdrom.sys
2012-04-03 13:47:32: Looking at \DEVICE\HARDDISKVOLUME1\WINDOWS\SYSTEM32\DRIVERS\REDBOOK.SYS redbook.sys
2012-04-03 13:47:32: Looking at \Device\HarddiskVolume1\WINDOWS\SYSTEM32\DRIVERS\VIDEOPRT.SYS videoprt.sys
2012-04-03 13:47:32: Looking at \DEVICE\HARDDISKVOLUME1\WINDOWS\SYSTEM32\DRIVERS\ATI2MTAG.SYS ati2mtaa.sys
2012-04-03 13:47:32: Looking at \DEVICE\HARDDISKVOLUME1\WINDOWS\SYSTEM32\DRIVERS\AMDK8.SYS AmdK8.sys
2012-04-03 13:47:32: Looking at \DEVICE\HARDDISKVOLUME1\WINDOWS\SYSTEM32\DRIVERS\AUDSTUB.SYS audstub.sys
2012-04-03 13:47:32: Looking at \Device\HarddiskVolume1\WINDOWS\SYSTEM32\DRIVERS\TDI.SYS tdi.sys
2012-04-03 13:47:32: Looking at \DEVICE\HARDDISKVOLUME1\WINDOWS\SYSTEM32\DRIVERS\RASIRDA.SYS irwan.sys
2012-04-03 13:47:32: Looking at \DEVICE\HARDDISKVOLUME1\WINDOWS\SYSTEM32\DRIVERS\RASL2TP.SYS rasl2tp.sys
2012-04-03 13:47:32: Looking at \DEVICE\HARDDISKVOLUME1\WINDOWS\SYSTEM32\DRIVERS\NDISTAPI.SYS NDISTAPI.SYS
2012-04-03 13:47:32: Looking at \DEVICE\HARDDISKVOLUME1\WINDOWS\SYSTEM32\DRIVERS\NDISWAN.SYS NDISWAN.SYS
2012-04-03 13:47:32: Looking at \DEVICE\HARDDISKVOLUME1\WINDOWS\SYSTEM32\DRIVERS\RASPPPOE.SYS raspppoe.sys
2012-04-03 13:47:32: Looking at \DEVICE\HARDDISKVOLUME1\WINDOWS\SYSTEM32\DRIVERS\RASPPTP.SYS RASPPTP.SYS
2012-04-03 13:47:32: Looking at \DEVICE\HARDDISKVOLUME1\WINDOWS\SYSTEM32\DRIVERS\PTILINK.SYS ptilink.sys
2012-04-03 13:47:32: Looking at \DEVICE\HARDDISKVOLUME1\WINDOWS\SYSTEM32\DRIVERS\RASPTI.SYS raspti.sys
2012-04-03 13:47:32: Looking at \DEVICE\HARDDISKVOLUME1\WINDOWS\SYSTEM32\DRIVERS\TERMDD.SYS termdd.sys
2012-04-03 13:47:32: Looking at \DEVICE\HARDDISKVOLUME1\WINDOWS\SYSTEM32\DRIVERS\SWENUM.SYS swenum.sys
2012-04-03 13:47:32: Looking at \DEVICE\HARDDISKVOLUME1\WINDOWS\SYSTEM32\DRIVERS\UPDATE.SYS update.sys
2012-04-03 13:47:32: Looking at \DEVICE\HARDDISKVOLUME1\WINDOWS\SYSTEM32\DRIVERS\MSSMBIOS.SYS smbios.sys
2012-04-03 13:47:32: Looking at \DEVICE\HARDDISKVOLUME1\WINDOWS\SYSTEM32\DRIVERS\NDPROXY.SYS ndproxy.sys
2012-04-03 13:47:32: Looking at \DEVICE\HARDDISKVOLUME1\WINDOWS\SYSTEM32\DRIVERS\USBHUB.SYS usbhub.sys
2012-04-03 13:47:32: Looking at \DEVICE\HARDDISKVOLUME1\WINDOWS\SYSTEM32\DRIVERS\NVENETFD.SYS NVEFDXP.SYS
2012-04-03 13:47:32: Looking at \DEVICE\HARDDISKVOLUME1\WINDOWS\SYSTEM32\DRIVERS\FLPYDISK.SYS floppy.sys
2012-04-03 13:47:33: Looking at \DEVICE\HARDDISKVOLUME1\WINDOWS\SYSTEM32\DRIVERS\CDAUDIO.SYS cdaudio.sys
2012-04-03 13:47:33: Looking at \DEVICE\HARDDISKVOLUME1\WINDOWS\SYSTEM32\DRIVERS\FS_REC.SYS fs_rec.sys
2012-04-03 13:47:33: Looking at \DEVICE\HARDDISKVOLUME1\WINDOWS\SYSTEM32\DRIVERS\NULL.SYS null.sys
2012-04-03 13:47:33: Looking at \DEVICE\HARDDISKVOLUME1\WINDOWS\SYSTEM32\DRIVERS\BEEP.SYS beep.sys
2012-04-03 13:47:33: Looking at \DEVICE\HARDDISKVOLUME1\WINDOWS\SYSTEM32\DRIVERS\VGA.SYS vga.sys
2012-04-03 13:47:33: Looking at \DEVICE\HARDDISKVOLUME1\WINDOWS\SYSTEM32\DRIVERS\MNMDD.SYS videosim.sys
2012-04-03 13:47:33: Looking at \DEVICE\HARDDISKVOLUME1\WINDOWS\SYSTEM32\DRIVERS\RDPCDD.SYS RDPCDD.SYS
2012-04-03 13:47:33: Looking at \DEVICE\HARDDISKVOLUME1\WINDOWS\SYSTEM32\DRIVERS\MSFS.SYS MSFS.SYS
2012-04-03 13:47:33: Looking at \DEVICE\HARDDISKVOLUME1\WINDOWS\SYSTEM32\DRIVERS\NPFS.SYS npfs.sys
2012-04-03 13:47:33: Looking at \DEVICE\HARDDISKVOLUME1\WINDOWS\SYSTEM32\DRIVERS\RASACD.SYS rasacd.sys
2012-04-03 13:47:33: Looking at \DEVICE\HARDDISKVOLUME1\WINDOWS\SYSTEM32\DRIVERS\IPSEC.SYS ipsec.sys
2012-04-03 13:47:33: Looking at \DEVICE\HARDDISKVOLUME1\WINDOWS\SYSTEM32\DRIVERS\MSGPC.SYS MSGPC.SYS
2012-04-03 13:47:33: Looking at \DEVICE\HARDDISKVOLUME1\WINDOWS\SYSTEM32\DRIVERS\TCPIP.SYS tcpip.sys
2012-04-03 13:47:33: Looking at \DEVICE\HARDDISKVOLUME1\WINDOWS\SYSTEM32\DRIVERS\NETBT.SYS netbt.sys
2012-04-03 13:47:33: Looking at \DEVICE\HARDDISKVOLUME1\WINDOWS\SYSTEM32\DRIVERS\IPNAT.SYS IPNAT.SYS
2012-04-03 13:47:33: Looking at \DEVICE\HARDDISKVOLUME1\WINDOWS\SYSTEM32\DRIVERS\AFD.SYS afd.sys
2012-04-03 13:47:33: Looking at \DEVICE\HARDDISKVOLUME1\WINDOWS\SYSTEM32\DRIVERS\NETBIOS.SYS NETBIOS.SYS
2012-04-03 13:47:33: Looking at \DEVICE\HARDDISKVOLUME1\WINDOWS\SYSTEM32\DRIVERS\PROCESSR.SYS processr.sys
2012-04-03 13:47:33: Looking at \DEVICE\HARDDISKVOLUME1\WINDOWS\SYSTEM32\DRIVERS\SSMDRV.SYS ssmdrv.sys
2012-04-03 13:47:33: Looking at \DEVICE\HARDDISKVOLUME1\WINDOWS\SYSTEM32\DRIVERS\RDBSS.SYS RDBSS.Sys
2012-04-03 13:47:33: Looking at \DEVICE\HARDDISKVOLUME1\WINDOWS\SYSTEM32\DRIVERS\MRXSMB.SYS MRXSMB.Sys
2012-04-03 13:47:33: Looking at \DEVICE\HARDDISKVOLUME1\WINDOWS\SYSTEM32\DRIVERS\FIPS.SYS fips.sys
2012-04-03 13:47:33: Looking at \DEVICE\HARDDISKVOLUME1\WINDOWS\SYSTEM32\DRIVERS\AVKMGR.SYS avkmgr.sys
2012-04-03 13:47:33: Looking at \DEVICE\HARDDISKVOLUME1\WINDOWS\SYSTEM32\DRIVERS\AVIPBB.SYS avipbb.sys
2012-04-03 13:47:33: Looking at \DEVICE\HARDDISKVOLUME1\WINDOWS\SYSTEM32\DRIVERS\WLANUZXP.SYS ZD1211U.SYS
2012-04-03 13:47:33: Looking at \DEVICE\HARDDISKVOLUME1\WINDOWS\SYSTEM32\DRIVERS\WANARP.SYS WANARP.SYS
2012-04-03 13:47:33: Looking at \DEVICE\HARDDISKVOLUME1\WINDOWS\SYSTEM32\DRIVERS\USBSTOR.SYS usbstor.sys
2012-04-03 13:47:33: Looking at \DEVICE\HARDDISKVOLUME1\WINDOWS\SYSTEM32\DRIVERS\CDFS.SYS cdfs.sys
2012-04-03 13:47:33: Looking at \Device\HarddiskVolume1\WINDOWS\SYSTEM32\DRIVERS\WMILIB.SYS WmiLib.sys
2012-04-03 13:47:33: Looking at \Device\HarddiskVolume1\WINDOWS\SYSTEM32\DRIVERS\NVATABUS.SYS nvatabus.sys
2012-04-03 13:47:33: Looking at \Device\HarddiskVolume1\WINDOWS\SYSTEM32\DRIVERS\DXAPI.SYS dxapi.sys
2012-04-03 13:47:33: Looking at \Device\HarddiskVolume1\WINDOWS\SYSTEM32\WATCHDOG.SYS watchdog.sys
2012-04-03 13:47:33: Looking at \Device\HarddiskVolume1\WINDOWS\SYSTEM32\WIN32K.SYS win32k.sys
2012-04-03 13:47:33: Looking at \Device\HarddiskVolume1\WINDOWS\SYSTEM32\DRIVERS\DXGTHK.SYS dxgthk.sys
2012-04-03 13:47:33: Looking at \Device\HarddiskVolume1\WINDOWS\SYSTEM32\DRIVERS\DXG.SYS dxg.sys
2012-04-03 13:47:33: Looking at \Device\HarddiskVolume1\WINDOWS\SYSTEM32\ATI2DVAG.DLL ati2dvag.dll
2012-04-03 13:47:33: Looking at \Device\HarddiskVolume1\WINDOWS\SYSTEM32\ATI2CQAG.DLL ati2cqag.dll
2012-04-03 13:47:33: Looking at \Device\HarddiskVolume1\WINDOWS\SYSTEM32\VGA.DLL vga.dll
2012-04-03 13:47:33: Looking at \Device\HarddiskVolume1\WINDOWS\SYSTEM32\ATI3DUAG.DLL ati3duag.dll
2012-04-03 13:47:33: Looking at \Device\HarddiskVolume1\WINDOWS\SYSTEM32\ATIVVAXX.DLL ativvaxx.dll
2012-04-03 13:47:33: Looking at \Device\HarddiskVolume1\WINDOWS\SYSTEM32\ATMFD.DLL ATMFD.DLL
2012-04-03 13:47:33: Looking at \DEVICE\HARDDISKVOLUME1\WINDOWS\SYSTEM32\DRIVERS\AVGNTFLT.SYS avgntflt.sys
2012-04-03 13:47:33: Looking at \Device\HarddiskVolume1\WINDOWS\SYSTEM32\DRIVERS\MBAM.SYS mbam.sys
2012-04-03 13:47:33: Looking at \DEVICE\HARDDISKVOLUME1\WINDOWS\SYSTEM32\DRIVERS\IRDA.SYS irda.sys
2012-04-03 13:47:33: Looking at \DEVICE\HARDDISKVOLUME1\WINDOWS\SYSTEM32\DRIVERS\NDISUIO.SYS NDISUIO.SYS
2012-04-03 13:47:33: Looking at \DEVICE\HARDDISKVOLUME1\WINDOWS\SYSTEM32\DRIVERS\PARVDM.SYS parvdm.sys
2012-04-03 13:47:34: Looking at \DEVICE\HARDDISKVOLUME1\WINDOWS\SYSTEM32\DRIVERS\WDMAUD.SYS WDMAUD.SYS
2012-04-03 13:47:34: Looking at \DEVICE\HARDDISKVOLUME1\WINDOWS\SYSTEM32\DRIVERS\SYSAUDIO.SYS sysaudio.sys
2012-04-03 13:47:34: Looking at \DEVICE\HARDDISKVOLUME1\WINDOWS\SYSTEM32\DRIVERS\SPLITTER.SYS splitter.sys
2012-04-03 13:47:34: Looking at \DEVICE\HARDDISKVOLUME1\WINDOWS\SYSTEM32\DRIVERS\AEC.SYS aec.sys
2012-04-03 13:47:34: Looking at \DEVICE\HARDDISKVOLUME1\WINDOWS\SYSTEM32\DRIVERS\SWMIDI.SYS swmidi.sys
2012-04-03 13:47:34: Looking at \DEVICE\HARDDISKVOLUME1\WINDOWS\SYSTEM32\DRIVERS\DMUSIC.SYS DMusic.sys
2012-04-03 13:47:34: Looking at \DEVICE\HARDDISKVOLUME1\WINDOWS\SYSTEM32\DRIVERS\KMIXER.SYS kmixer.sys
2012-04-03 13:47:34: Looking at \DEVICE\HARDDISKVOLUME1\WINDOWS\SYSTEM32\DRIVERS\LVUSBSTA.SYS LVUSBSta.sys
2012-04-03 13:47:34: Looking at \DEVICE\HARDDISKVOLUME1\WINDOWS\SYSTEM32\DRIVERS\DRMKAUD.SYS drmkaud.sys
2012-04-03 13:47:34: Looking at \DEVICE\HARDDISKVOLUME1\WINDOWS\SYSTEM32\DRIVERS\SRV.SYS SRV.SYS
2012-04-03 13:47:34: Looking at \DEVICE\HARDDISKVOLUME1\WINDOWS\SYSTEM32\DRIVERS\FASTFAT.SYS FastFAT.Sys
2012-04-03 13:47:34: Looking at \DEVICE\HARDDISKVOLUME1\WINDOWS\SYSTEM32\DRIVERS\HTTP.SYS http.sys
2012-04-03 13:47:34: Looking at \DEVICE\HARDDISKVOLUME1\WINDOWS\SYSTEM32\DRIVERS\IPFLTDRV.SYS ipfltdrv.sys
2012-04-03 13:47:34: Looking at \Device\HarddiskVolume1\WINDOWS\SYSTEM32\ZDPNDIS5.SYS PCANDIS5.SYS
2012-04-03 13:47:34: Looking at \DEVICE\HARDDISKVOLUME1\WINDOWS\SYSTEM32\DRIVERS\PRSBDRVR.SYS
2012-04-03 13:47:34: Looking at \Device\HarddiskVolume1\WINDOWS\system32\ntdll.dll ntdll.dll
2012-04-03 13:47:34: Looking at \Device\HarddiskVolume1\WINDOWS\system32\drivers\fdc.sys fdc.sys
2012-04-03 13:47:34: Looking at \Device\HarddiskVolume1\WINDOWS\system32\drivers\parport.sys parport.sys
2012-04-03 13:47:34: Looking at \Device\HarddiskVolume1\WINDOWS\system32\drivers\LVUSBSta.sys LVUSBSta.sys
2012-04-03 13:47:34: Looking at \Device\HarddiskVolume1\WINDOWS\system32\drivers\usbd.sys usbd.sys
2012-04-03 13:47:34: Looking at \Device\HarddiskVolume1\WINDOWS\system32\drivers\gameenum.sys gameenum.sys
2012-04-03 13:47:34: Looking at \Device\HarddiskVolume1\WINDOWS\system32\drivers\i8042prt.sys i8042prt.sys
2012-04-03 13:47:34: Looking at \Device\HarddiskVolume1\WINDOWS\system32\drivers\kbdclass.sys kbdclass.sys
2012-04-03 13:47:34: Looking at \Device\HarddiskVolume1\WINDOWS\system32\drivers\mouclass.sys mouclass.sys
2012-04-03 13:47:34: Looking at \Device\HarddiskVolume1\WINDOWS\system32\drivers\serial.sys serial.sys
2012-04-03 13:47:34: Looking at \Device\HarddiskVolume1\WINDOWS\system32\drivers\serenum.sys serenum.sys
2012-04-03 13:47:34: Looking at \Device\HarddiskVolume1\WINDOWS\system32\drivers\usbohci.sys USBOHCI.sys
2012-04-03 13:47:34: Looking at \Device\HarddiskVolume1\WINDOWS\system32\drivers\usbport.sys usbport.sys
2012-04-03 13:47:34: Looking at \Device\HarddiskVolume1\WINDOWS\system32\drivers\usbehci.sys USBEHCI.sys
2012-04-03 13:47:34: Looking at \Device\HarddiskVolume1\WINDOWS\system32\drivers\nvnetbus.sys NVNETBUS.SYS
2012-04-03 13:47:34: Looking at \Device\HarddiskVolume1\WINDOWS\system32\drivers\nvnrm.sys NVNRM.SYS
2012-04-03 13:47:34: Looking at \Device\HarddiskVolume1\WINDOWS\system32\drivers\nvsnpu.sys NVSNPU.SYS
2012-04-03 13:47:34: Looking at \Device\HarddiskVolume1\WINDOWS\system32\drivers\ALCXWDM.SYS ALCXWDM.SYS
2012-04-03 13:47:34: Looking at \Device\HarddiskVolume1\WINDOWS\system32\drivers\portcls.sys portcls.sys
2012-04-03 13:47:34: Looking at \Device\HarddiskVolume1\WINDOWS\system32\drivers\drmk.sys drmk.sys
2012-04-03 13:47:34: Looking at \Device\HarddiskVolume1\WINDOWS\system32\drivers\ks.sys ks.sys
2012-04-03 13:47:34: Looking at \Device\HarddiskVolume1\WINDOWS\system32\drivers\imapi.sys IMAPI.sys
2012-04-03 13:47:34: Looking at \Device\HarddiskVolume1\WINDOWS\system32\drivers\pfc.sys Pfc.sys
2012-04-03 13:47:34: Looking at \Device\HarddiskVolume1\WINDOWS\system32\drivers\cdrom.sys cdrom.sys
2012-04-03 13:47:34: Looking at \Device\HarddiskVolume1\WINDOWS\system32\drivers\redbook.sys redbook.sys
2012-04-03 13:47:34: Looking at \Device\HarddiskVolume1\WINDOWS\system32\drivers\ati2mtag.sys ati2mtaa.sys
2012-04-03 13:47:34: Looking at \Device\HarddiskVolume1\WINDOWS\system32\drivers\videoprt.sys videoprt.sys
2012-04-03 13:47:34: Looking at \Device\HarddiskVolume1\WINDOWS\system32\drivers\AmdK8.sys AmdK8.sys
2012-04-03 13:47:34: Looking at \Device\HarddiskVolume1\WINDOWS\system32\drivers\audstub.sys audstub.sys
2012-04-03 13:47:34: Looking at \Device\HarddiskVolume1\WINDOWS\system32\drivers\rasirda.sys irwan.sys
2012-04-03 13:47:34: Looking at \Device\HarddiskVolume1\WINDOWS\system32\drivers\tdi.sys tdi.sys
2012-04-03 13:47:34: Looking at \Device\HarddiskVolume1\WINDOWS\system32\drivers\rasl2tp.sys rasl2tp.sys
2012-04-03 13:47:34: Looking at \Device\HarddiskVolume1\WINDOWS\system32\drivers\ndistapi.sys NDISTAPI.SYS
2012-04-03 13:47:34: Looking at \Device\HarddiskVolume1\WINDOWS\system32\drivers\ndiswan.sys NDISWAN.SYS
2012-04-03 13:47:34: Looking at \Device\HarddiskVolume1\WINDOWS\system32\drivers\raspppoe.sys raspppoe.sys
2012-04-03 13:47:34: Looking at \Device\HarddiskVolume1\WINDOWS\system32\drivers\raspptp.sys RASPPTP.SYS
2012-04-03 13:47:34: Looking at \Device\HarddiskVolume1\WINDOWS\system32\drivers\ptilink.sys ptilink.sys
2012-04-03 13:47:34: Looking at \Device\HarddiskVolume1\WINDOWS\system32\drivers\raspti.sys raspti.sys
2012-04-03 13:47:34: Looking at \Device\HarddiskVolume1\WINDOWS\system32\drivers\termdd.sys termdd.sys
2012-04-03 13:47:34: Looking at \Device\HarddiskVolume1\WINDOWS\system32\drivers\swenum.sys swenum.sys
2012-04-03 13:47:34: Looking at \Device\HarddiskVolume1\WINDOWS\system32\drivers\update.sys update.sys
2012-04-03 13:47:34: Looking at \Device\HarddiskVolume1\WINDOWS\system32\drivers\mssmbios.sys smbios.sys
2012-04-03 13:47:34: Looking at \Device\HarddiskVolume1\WINDOWS\system32\drivers\ndproxy.sys ndproxy.sys
2012-04-03 13:47:34: Looking at \Device\HarddiskVolume1\WINDOWS\system32\drivers\usbhub.sys usbhub.sys
2012-04-03 13:47:34: Looking at \Device\HarddiskVolume1\WINDOWS\system32\drivers\NVENETFD.sys NVEFDXP.SYS
2012-04-03 13:47:34: Looking at \Device\HarddiskVolume1\WINDOWS\system32\drivers\flpydisk.sys floppy.sys
2012-04-03 13:47:34: Looking at \Device\HarddiskVolume1\WINDOWS\system32\drivers\cdaudio.sys cdaudio.sys
2012-04-03 13:47:34: Looking at \Device\HarddiskVolume1\WINDOWS\system32\drivers\fs_rec.sys fs_rec.sys
2012-04-03 13:47:34: Looking at \Device\HarddiskVolume1\WINDOWS\system32\drivers\null.sys null.sys
2012-04-03 13:47:34: Looking at \Device\HarddiskVolume1\WINDOWS\system32\drivers\beep.sys beep.sys
2012-04-03 13:47:34: Looking at \Device\HarddiskVolume1\WINDOWS\system32\drivers\vga.sys vga.sys
2012-04-03 13:47:34: Looking at \Device\HarddiskVolume1\WINDOWS\system32\drivers\mnmdd.sys videosim.sys
2012-04-03 13:47:34: Looking at \Device\HarddiskVolume1\WINDOWS\system32\drivers\rdpcdd.sys RDPCDD.SYS
2012-04-03 13:47:34: Looking at \Device\HarddiskVolume1\WINDOWS\system32\drivers\msfs.sys MSFS.SYS
2012-04-03 13:47:34: Looking at \Device\HarddiskVolume1\WINDOWS\system32\drivers\npfs.sys npfs.sys
2012-04-03 13:47:34: Looking at \Device\HarddiskVolume1\WINDOWS\system32\drivers\rasacd.sys rasacd.sys
2012-04-03 13:47:34: Looking at \Device\HarddiskVolume1\WINDOWS\system32\drivers\ipsec.sys ipsec.sys
2012-04-03 13:47:34: Looking at \Device\HarddiskVolume1\WINDOWS\system32\drivers\msgpc.sys MSGPC.SYS
2012-04-03 13:47:34: Looking at \Device\HarddiskVolume1\WINDOWS\system32\drivers\tcpip.sys tcpip.sys
2012-04-03 13:47:34: Looking at \Device\HarddiskVolume1\WINDOWS\system32\drivers\netbt.sys netbt.sys
2012-04-03 13:47:34: Looking at \Device\HarddiskVolume1\WINDOWS\system32\drivers\ipnat.sys IPNAT.SYS
2012-04-03 13:47:34: Looking at \Device\HarddiskVolume1\WINDOWS\system32\drivers\afd.sys afd.sys
2012-04-03 13:47:34: Looking at \Device\HarddiskVolume1\WINDOWS\system32\drivers\netbios.sys NETBIOS.SYS
2012-04-03 13:47:34: Looking at \Device\HarddiskVolume1\WINDOWS\system32\drivers\processr.sys processr.sys
2012-04-03 13:47:34: Looking at \Device\HarddiskVolume1\WINDOWS\system32\drivers\ssmdrv.sys ssmdrv.sys
2012-04-03 13:47:34: Looking at \Device\HarddiskVolume1\WINDOWS\system32\drivers\rdbss.sys RDBSS.Sys
2012-04-03 13:47:34: Looking at \Device\HarddiskVolume1\WINDOWS\system32\drivers\mrxsmb.sys MRXSMB.Sys
2012-04-03 13:47:34: Looking at \Device\HarddiskVolume1\WINDOWS\system32\drivers\fips.sys fips.sys
2012-04-03 13:47:34: Looking at \Device\HarddiskVolume1\WINDOWS\system32\drivers\avkmgr.sys avkmgr.sys
2012-04-03 13:47:34: Looking at \Device\HarddiskVolume1\WINDOWS\system32\drivers\avipbb.sys avipbb.sys
2012-04-03 13:47:34: Looking at \Device\HarddiskVolume1\WINDOWS\system32\smss.exe smss.exe
2012-04-03 13:47:34: Looking at \Device\HarddiskVolume1\WINDOWS\system32\autochk.exe AutoChk.Exe
2012-04-03 13:47:34: Looking at \Device\HarddiskVolume1\WINDOWS\system32\sfcfiles.dll sfcfiles.dll
2012-04-03 13:47:34: Looking at \Device\HarddiskVolume1\WINDOWS\system32\advapi32.dll advapi32.dll
2012-04-03 13:47:34: Looking at \Device\HarddiskVolume1\WINDOWS\system32\comdlg32.dll comdlg32.dll
2012-04-03 13:47:34: Looking at \Device\HarddiskVolume1\WINDOWS\system32\gdi32.dll gdi32
2012-04-03 13:47:34: Looking at \Device\HarddiskVolume1\WINDOWS\system32\imagehlp.dll IMAGEHLP.DLL
2012-04-03 13:47:34: Looking at \Device\HarddiskVolume1\WINDOWS\system32\kernel32.dll kernel32
2012-04-03 13:47:34: Looking at \Device\HarddiskVolume1\WINDOWS\system32\lz32.dll LZ32.DLL
2012-04-03 13:47:34: Looking at \Device\HarddiskVolume1\WINDOWS\system32\ole32.dll OLE32.DLL
2012-04-03 13:47:34: Looking at \Device\HarddiskVolume1\WINDOWS\system32\drivers\WlanUZXP.sys ZD1211U.SYS
2012-04-03 13:47:34: Looking at \Device\HarddiskVolume1\WINDOWS\system32\oleaut32.dll
2012-04-03 13:47:34: Looking at \Device\HarddiskVolume1\WINDOWS\system32\drivers\wanarp.sys WANARP.SYS
2012-04-03 13:47:34: Looking at \Device\HarddiskVolume1\WINDOWS\system32\olecli32.dll OLECLI32.DLL
2012-04-03 13:47:34: Looking at \Device\HarddiskVolume1\WINDOWS\system32\olecnv32.dll OLECNV32.DLL
2012-04-03 13:47:34: Looking at \Device\HarddiskVolume1\WINDOWS\system32\drivers\usbstor.sys usbstor.sys
2012-04-03 13:47:34: Looking at \Device\HarddiskVolume1\WINDOWS\system32\olesvr32.dll OLESVR32.DLL
2012-04-03 13:47:35: Looking at \Device\HarddiskVolume1\WINDOWS\system32\olethk32.dll OLETHK32.DLL
2012-04-03 13:47:35: Looking at \Device\HarddiskVolume1\WINDOWS\system32\rpcrt4.dll rpcrt4.dll
2012-04-03 13:47:35: Looking at \Device\HarddiskVolume1\WINDOWS\system32\shell32.dll SHELL32.DLL
2012-04-03 13:47:35: Looking at \Device\HarddiskVolume1\WINDOWS\system32\url.dll URL.DLL
2012-04-03 13:47:35: Looking at \Device\HarddiskVolume1\WINDOWS\system32\urlmon.dll UrlMon.dll
2012-04-03 13:47:35: Looking at \Device\HarddiskVolume1\WINDOWS\system32\user32.dll user32
2012-04-03 13:47:35: Looking at \Device\HarddiskVolume1\WINDOWS\system32\version.dll VERSION.DLL
2012-04-03 13:47:35: Looking at \Device\HarddiskVolume1\WINDOWS\system32\wininet.dll wininet.dll
2012-04-03 13:47:35: Looking at \Device\HarddiskVolume1\WINDOWS\system32\wldap32.dll WLDAP32.DLL
2012-04-03 13:47:35: Looking at \Device\HarddiskVolume1\WINDOWS\system32\comctl32.dll COMCTL32.DLL
2012-04-03 13:47:35: Looking at \Device\HarddiskVolume1\WINDOWS\system32\shlwapi.dll SHLWAPI.DLL
2012-04-03 13:47:35: Looking at \Device\HarddiskVolume1\WINDOWS\system32\msvcrt.dll msvcrt.dll
2012-04-03 13:47:35: Looking at \Device\HarddiskVolume1\WINDOWS\system32\mpr.dll mpr.dll
2012-04-03 13:47:35: Looking at \Device\HarddiskVolume1\WINDOWS\system32\ntvdm.exe NTVDM.EXE
2012-04-03 13:47:35: Looking at \Device\HarddiskVolume1\WINDOWS\system32\wow32.dll WOW32.DLL
2012-04-03 13:47:35: Looking at \Device\HarddiskVolume1\WINDOWS\system32\secur32.dll security.dll
2012-04-03 13:47:36: Looking at \Device\HarddiskVolume1\WINDOWS\system32\iertutil.dll IeRtUtil.dll
2012-04-03 13:47:36: Looking at \Device\HarddiskVolume1\WINDOWS\system32\ieframe.dll IEFRAME.DLL
2012-04-03 13:47:36: Looking at \Device\HarddiskVolume1\WINDOWS\system32\normaliz.dll normaliz.dll
2012-04-03 13:47:36: Looking at \Device\HarddiskVolume1\WINDOWS\system32\apphelp.dll Apphelp
2012-04-03 13:47:36: Looking at \Device\HarddiskVolume1\WINDOWS\system32\userenv.dll userenv.dll
2012-04-03 13:47:36: Looking at \Device\HarddiskVolume1\WINDOWS\system32\drivers\cdfs.sys cdfs.sys
2012-04-03 13:47:36: Looking at \Device\HarddiskVolume1\WINDOWS\system32\drivers\nvatabus.sys nvatabus.sys
2012-04-03 13:47:36: Looking at \Device\HarddiskVolume1\WINDOWS\system32\drivers\wmilib.sys WmiLib.sys
2012-04-03 13:47:36: Looking at \Device\HarddiskVolume1\WINDOWS\system32\win32k.sys win32k.sys
2012-04-03 13:47:36: Looking at \Device\HarddiskVolume1\WINDOWS\system32\drivers\dxapi.sys dxapi.sys
2012-04-03 13:47:36: Looking at \Device\HarddiskVolume1\WINDOWS\system32\watchdog.sys watchdog.sys
2012-04-03 13:47:36: Looking at \Device\HarddiskVolume1\WINDOWS\system32\csrss.exe CSRSS.Exe
2012-04-03 13:47:36: Looking at \Device\HarddiskVolume1\WINDOWS\system32\csrsrv.dll CSRSrv.DLL
2012-04-03 13:47:36: Looking at \Device\HarddiskVolume1\WINDOWS\system32\basesrv.dll basesrv
2012-04-03 13:47:36: Looking at \Device\HarddiskVolume1\WINDOWS\system32\winsrv.dll winsrv.dll
2012-04-03 13:47:36: Looking at \Device\HarddiskVolume1\WINDOWS\system32\drivers\dxg.sys dxg.sys
2012-04-03 13:47:36: Looking at \Device\HarddiskVolume1\WINDOWS\system32\drivers\dxgthk.sys dxgthk.sys
2012-04-03 13:47:36: Looking at \Device\HarddiskVolume1\WINDOWS\system32\ati2dvag.dll ati2dvag.dll
2012-04-03 13:47:36: Looking at \Device\HarddiskVolume1\WINDOWS\system32\ati2cqag.dll ati2cqag.dll
2012-04-03 13:47:36: Looking at \Device\HarddiskVolume1\WINDOWS\system32\vga.dll vga.dll
2012-04-03 13:47:36: Looking at \Device\HarddiskVolume1\WINDOWS\system32\ati3duag.dll ati3duag.dll
2012-04-03 13:47:36: Looking at \Device\HarddiskVolume1\WINDOWS\system32\ativvaxx.dll ativvaxx.dll
2012-04-03 13:47:36: Looking at \Device\HarddiskVolume1\WINDOWS\system32\winlogon.exe WINLOGON.EXE
2012-04-03 13:47:36: Looking at \Device\HarddiskVolume1\WINDOWS\system32\authz.dll authz.dll
2012-04-03 13:47:36: Looking at \Device\HarddiskVolume1\WINDOWS\system32\crypt32.dll CRYPT32.DLL
2012-04-03 13:47:36: Looking at \Device\HarddiskVolume1\WINDOWS\system32\msasn1.dll msasn1.dll
2012-04-03 13:47:36: Looking at \Device\HarddiskVolume1\WINDOWS\system32\nddeapi.dll NDDEAPI.DLL
2012-04-03 13:47:36: Looking at \Device\HarddiskVolume1\WINDOWS\system32\profmap.dll userenv.dll
2012-04-03 13:47:36: Looking at \Device\HarddiskVolume1\WINDOWS\system32\netapi32.dll NetApi32.DLL
2012-04-03 13:47:36: Looking at \Device\HarddiskVolume1\WINDOWS\system32\psapi.dll PSAPI
2012-04-03 13:47:36: Looking at \Device\HarddiskVolume1\WINDOWS\system32\regapi.dll regapi.dll
2012-04-03 13:47:37: Looking at \Device\HarddiskVolume1\WINDOWS\system32\setupapi.dll SETUPAPI.DLL
2012-04-03 13:47:37: Looking at \Device\HarddiskVolume1\WINDOWS\system32\winsta.dll winsta.dll
2012-04-03 13:47:37: Looking at \Device\HarddiskVolume1\WINDOWS\system32\wintrust.dll WINTRUST.DLL
2012-04-03 13:47:37: Looking at \Device\HarddiskVolume1\WINDOWS\system32\ws2_32.dll ws2_32.dll
2012-04-03 13:47:37: Looking at \Device\HarddiskVolume1\WINDOWS\system32\ws2help.dll ws2help.dll
2012-04-03 13:47:37: Looking at \Device\HarddiskVolume1\WINDOWS\system32\imm32.dll imm32
2012-04-03 13:47:37: Looking at \Device\HarddiskVolume1\WINDOWS\system32\kbdfr.dll kbdfr.dll
2012-04-03 13:47:37: Looking at \Device\HarddiskVolume1\WINDOWS\system32\msctfime.ime MSCTFIME.IME
2012-04-03 13:47:37: Looking at \Device\HarddiskVolume1\WINDOWS\system32\kbdus.dll kbdus.dll
2012-04-03 13:47:37: Looking at \Device\HarddiskVolume1\WINDOWS\system32\msgina.dll MSGINA.DLL
2012-04-03 13:47:37: Looking at \Device\HarddiskVolume1\WINDOWS\system32\odbc32.dll ODBC32
2012-04-03 13:47:37: Looking at \Device\HarddiskVolume1\WINDOWS\system32\sxs.dll SXS.DLL
2012-04-03 13:47:37: Looking at \Device\HarddiskVolume1\WINDOWS\WinSxS\x86_Microsoft.Windows.Common-Controls_6595b64144ccf1df_6.0.2600.6028_x-ww_61e65202\comctl32.dll comctl32.DLL
2012-04-03 13:47:37: Looking at \Device\HarddiskVolume1\WINDOWS\WindowsShell.Manifest
2012-04-03 13:47:37: Looking at \Device\HarddiskVolume1\WINDOWS\system32\odbcint.dll ODBCINT
2012-04-03 13:47:37: Looking at \Device\HarddiskVolume1\WINDOWS\system32\shsvcs.dll SHSVCS.DLL
2012-04-03 13:47:37: Looking at \Device\HarddiskVolume1\WINDOWS\system32\sfc.dll sfc.dll
2012-04-03 13:47:37: Looking at \Device\HarddiskVolume1\WINDOWS\system32\sfc_os.dll sfc.dll
2012-04-03 13:47:37: Looking at \Device\HarddiskVolume1\WINDOWS\system32\services.exe services.exe
2012-04-03 13:47:37: Looking at \Device\HarddiskVolume1\WINDOWS\system32\lsass.exe lsass.exe
2012-04-03 13:47:37: Looking at \Device\HarddiskVolume1\WINDOWS\system32\ncobjapi.dll NCObjAPI.DLL
2012-04-03 13:47:37: Looking at \Device\HarddiskVolume1\WINDOWS\system32\msvcp60.dll MSVCP60.DLL
2012-04-03 13:47:37: Looking at \Device\HarddiskVolume1\WINDOWS\system32\scesrv.dll scesrv
2012-04-03 13:47:37: Looking at \Device\HarddiskVolume1\WINDOWS\system32\lsasrv.dll lsasrv.dll
2012-04-03 13:47:37: Looking at \Device\HarddiskVolume1\WINDOWS\system32\umpnpmgr.dll Umpnpmgr.DLL
2012-04-03 13:47:37: Looking at \Device\HarddiskVolume1\WINDOWS\system32\ntdsapi.dll ntdsapi.dll
2012-04-03 13:47:37: Looking at \Device\HarddiskVolume1\WINDOWS\system32\shimeng.dll ShimEngineDLL(IAT)
2012-04-03 13:47:37: Looking at \Device\HarddiskVolume1\WINDOWS\system32\dnsapi.dll dnsapi
2012-04-03 13:47:37: Looking at \Device\HarddiskVolume1\WINDOWS\AppPatch\acadproc.dll
2012-04-03 13:47:37: Looking at \Device\HarddiskVolume1\WINDOWS\system32\samlib.dll SAMLib.DLL
2012-04-03 13:47:38: Looking at \Device\HarddiskVolume1\WINDOWS\system32\samsrv.dll samsrv.dll
2012-04-03 13:47:38: Looking at \Device\HarddiskVolume1\WINDOWS\system32\cryptdll.dll cryptdll.dll
2012-04-03 13:47:38: Looking at \Device\HarddiskVolume1\WINDOWS\AppPatch\acgenral.dll
2012-04-03 13:47:38: Looking at \Device\HarddiskVolume1\WINDOWS\system32\winmm.dll WINMM.DLL
2012-04-03 13:47:38: Looking at \Device\HarddiskVolume1\WINDOWS\system32\msacm32.dll msfltr32.acm
2012-04-03 13:47:38: Looking at \Device\HarddiskVolume1\WINDOWS\system32\uxtheme.dll UxTheme.dll
2012-04-03 13:47:38: Looking at \Device\HarddiskVolume1\WINDOWS\system32\msapsspc.dll MSAPSSPC.DLL
2012-04-03 13:47:38: Looking at \Device\HarddiskVolume1\WINDOWS\system32\msvcrt40.dll msvcrt40.dll
2012-04-03 13:47:38: Looking at \Device\HarddiskVolume1\WINDOWS\system32\schannel.dll schannel.dll
2012-04-03 13:47:38: Looking at \Device\HarddiskVolume1\WINDOWS\system32\digest.dll digest.dll
2012-04-03 13:47:38: Looking at \Device\HarddiskVolume1\WINDOWS\system32\msnsspc.dll MSNSSPC.DLL
2012-04-03 13:47:38: Looking at \Device\HarddiskVolume1\WINDOWS\system32\msprivs.dll mspriv.dll
2012-04-03 13:47:38: Looking at \Device\HarddiskVolume1\WINDOWS\system32\WindowsLogon.manifest
2012-04-03 13:47:38: Looking at \Device\HarddiskVolume1\WINDOWS\system32\kerberos.dll kerberos.dll
2012-04-03 13:47:38: Looking at \Device\HarddiskVolume1\WINDOWS\system32\msv1_0.dll MSV1_0.DLL
2012-04-03 13:47:38: Looking at \Device\HarddiskVolume1\WINDOWS\system32\iphlpapi.dll iphlpapi.dll
2012-04-03 13:47:38: Looking at \Device\HarddiskVolume1\WINDOWS\system32\atmfd.dll ATMFD.DLL
2012-04-03 13:47:38: Looking at \Device\HarddiskVolume1\WINDOWS\system32\netlogon.dll NetLogon.DLL
2012-04-03 13:47:38: Looking at \Device\HarddiskVolume1\WINDOWS\system32\w32time.dll w32time.dll
2012-04-03 13:47:38: Looking at \Device\HarddiskVolume1\WINDOWS\system32\wdigest.dll WDIGEST.DLL
2012-04-03 13:47:38: Looking at \Device\HarddiskVolume1\WINDOWS\system32\rsaenh.dll rsaenh.dll
2012-04-03 13:47:38: Looking at \Device\HarddiskVolume1\WINDOWS\system32\msctf.dll MSCTF.DLL
2012-04-03 13:47:38: Looking at \Device\HarddiskVolume1\WINDOWS\system32\winscard.dll winscard.dll
2012-04-03 13:47:38: Looking at \Device\HarddiskVolume1\WINDOWS\system32\wtsapi32.dll wtsapi32.dll
2012-04-03 13:47:38: Looking at \Device\HarddiskVolume1\WINDOWS\system32\drivers\avgntflt.sys avgntflt.sys
2012-04-03 13:47:38: Looking at \Device\HarddiskVolume1\WINDOWS\system32\scecli.dll scecli
2012-04-03 13:47:38: Looking at \Device\HarddiskVolume1\WINDOWS\system32\drivers\mbam.sys mbam.sys
2012-04-03 13:47:38: Looking at \Device\HarddiskVolume1\WINDOWS\system32\svchost.exe svchost.exe
2012-04-03 13:47:38: Looking at \Device\HarddiskVolume1\WINDOWS\system32\ntmarta.dll ntmarta.dll
2012-04-03 13:47:38: Looking at \Device\HarddiskVolume1\WINDOWS\system32\rpcss.dll rpcss.dll
2012-04-03 13:47:38: Looking at \Device\HarddiskVolume1\WINDOWS\system32\eventlog.dll Eventlog.DLL
2012-04-03 13:47:38: Looking at \Device\HarddiskVolume1\WINDOWS\system32\xpsp2res.dll xpsp2res.dll
2012-04-03 13:47:38: Looking at \Device\HarddiskVolume1\WINDOWS\system32\logonui.exe LOGONUI.EXE
2012-04-03 13:47:38: Looking at \Device\HarddiskVolume1\WINDOWS\system32\duser.dll DUser.DLL
2012-04-03 13:47:38: Looking at \Device\HarddiskVolume1\WINDOWS\system32\msimg32.dll gdiext
2012-04-03 13:47:39: Looking at \Device\HarddiskVolume1\WINDOWS\system32\oleacc.dll OLEACC.DLL
2012-04-03 13:47:39: Looking at \Device\HarddiskVolume1\WINDOWS\system32\mswsock.dll mswsock.dll
2012-04-03 13:47:39: Looking at \Device\HarddiskVolume1\WINDOWS\system32\hnetcfg.dll HNETCFG.DLL
2012-04-03 13:47:39: Looking at \Device\HarddiskVolume1\WINDOWS\system32\clbcatq.dll
2012-04-03 13:47:39: Looking at \Device\HarddiskVolume1\WINDOWS\system32\wshtcpip.dll wshtcpip.dll
2012-04-03 13:47:39: Looking at \Device\HarddiskVolume1\WINDOWS\system32\winrnr.dll winrnr
2012-04-03 13:47:39: Looking at \Device\HarddiskVolume1\WINDOWS\system32\comres.dll
2012-04-03 13:47:39: Looking at \Device\HarddiskVolume1\WINDOWS\system32\rasadhlp.dll rasadhlp.dll
2012-04-03 13:47:39: Looking at \Device\HarddiskVolume1\WINDOWS\system32\shgina.dll SHGINA.DLL
2012-04-03 13:47:39: Looking at \Device\HarddiskVolume1\WINDOWS\system32\drivers\irda.sys irda.sys
2012-04-03 13:47:39: Looking at \Device\HarddiskVolume1\WINDOWS\system32\drivers\ndisuio.sys NDISUIO.SYS
2012-04-03 13:47:39: Looking at \Device\HarddiskVolume1\WINDOWS\system32\dhcpcsvc.dll dhcpcsvc.dll
2012-04-03 13:47:39: Looking at \Device\HarddiskVolume1\WINDOWS\system32\dnsrslvr.dll dnsrslvr.dll
2012-04-03 13:47:39: Looking at \Device\HarddiskVolume1\WINDOWS\Resources\Themes\Luna\luna.msstyles luna.mst
2012-04-03 13:47:39: Looking at \Device\HarddiskVolume1\WINDOWS\system32\cscdll.dll CSCDLL.DLL
2012-04-03 13:47:39: Looking at \Device\HarddiskVolume1\WINDOWS\system32\dimsntfy.dll dimsntfy.dll
2012-04-03 13:47:39: Looking at \Device\HarddiskVolume1\WINDOWS\system32\wlnotify.dll WlNotify.dll
2012-04-03 13:47:39: Looking at \Device\HarddiskVolume1\WINDOWS\system32\winspool.drv winspool.drv
2012-04-03 13:47:39: Looking at \Device\HarddiskVolume1\WINDOWS\system32\WgaLogon.dll WgaLogon.dll
2012-04-03 13:47:39: Looking at \Device\HarddiskVolume1\WINDOWS\system32\msxml3.dll MSXML3.dll
2012-04-03 13:47:39: Looking at \Device\HarddiskVolume1\WINDOWS\system32\msxml3r.dll MSXML3R.dll
2012-04-03 13:47:39: Looking at \Device\HarddiskVolume1\WINDOWS\system32\lmhsvc.dll lmhsvc.dll
2012-04-03 13:47:39: Looking at \Device\HarddiskVolume1\WINDOWS\system32\termsrv.dll termsrv.exe
2012-04-03 13:47:39: Looking at \Device\HarddiskVolume1\WINDOWS\system32\wzcsvc.dll wzcsvc.dll
2012-04-03 13:47:39: Looking at \Device\HarddiskVolume1\WINDOWS\system32\icaapi.dll icaapi.dll
2012-04-03 13:47:39: Looking at \Device\HarddiskVolume1\WINDOWS\system32\rtutils.dll RTUTILS.DLL
2012-04-03 13:47:39: Looking at \Device\HarddiskVolume1\WINDOWS\system32\mstlsapi.dll mstlsapi.dll
2012-04-03 13:47:39: Looking at \Device\HarddiskVolume1\WINDOWS\system32\wmi.dll wmi.DLL
2012-04-03 13:47:39: Looking at \Device\HarddiskVolume1\WINDOWS\system32\eapolqec.dll EapolQec.dll
2012-04-03 13:47:39: Looking at \Device\HarddiskVolume1\WINDOWS\system32\activeds.dll ADs
2012-04-03 13:47:39: Looking at \Device\HarddiskVolume1\WINDOWS\system32\atl.dll ATL.DLL
2012-04-03 13:47:39: Looking at \Device\HarddiskVolume1\WINDOWS\system32\adsldpc.dll adsldpc
2012-04-03 13:47:39: Looking at \Device\HarddiskVolume1\WINDOWS\system32\qutil.dll QUtil.DLL
2012-04-03 13:47:40: Looking at \Device\HarddiskVolume1\WINDOWS\system32\dot3api.dll dot3api.dll
2012-04-03 13:47:40: Looking at \Device\HarddiskVolume1\WINDOWS\system32\esent.dll esent.dll
2012-04-03 13:47:40: Looking at \Device\HarddiskVolume1\WINDOWS\system32\irmon.dll irmon.dll
2012-04-03 13:47:40: Looking at \Device\HarddiskVolume1\WINDOWS\system32\wshirda.dll wshirda.dll
2012-04-03 13:47:40: Looking at \Device\HarddiskVolume1\WINDOWS\system32\mlang.dll MLANG.DLL
2012-04-03 13:47:40: Looking at \Device\HarddiskVolume1\WINDOWS\system32\rastls.dll rastls.dll
2012-04-03 13:47:40: Looking at \Device\HarddiskVolume1\WINDOWS\system32\cryptui.dll CRYPTUI.DLL
2012-04-03 13:47:40: Looking at \Device\HarddiskVolume1\WINDOWS\system32\mprapi.dll mprapi.dll
2012-04-03 13:47:40: Looking at \Device\HarddiskVolume1\WINDOWS\system32\rasapi32.dll rasapi32.dll
2012-04-03 13:47:40: Looking at \Device\HarddiskVolume1\WINDOWS\system32\rasman.dll Rasman.dll
2012-04-03 13:47:40: Looking at \Device\HarddiskVolume1\WINDOWS\system32\tapi32.dll TAPI32.DLL
2012-04-03 13:47:40: Looking at \Device\HarddiskVolume1\WINDOWS\system32\riched20.dll riched20.dll
2012-04-03 13:47:40: Looking at \Device\HarddiskVolume1\WINDOWS\system32\raschap.dll raschap.dll
2012-04-03 13:47:40: Looking at \Device\HarddiskVolume1\WINDOWS\system32\xmlprovi.dll xmlprovi.dll
2012-04-03 13:47:40: Looking at \Device\HarddiskVolume1\WINDOWS\system32\wzcsapi.dll wzcsapi.dll
2012-04-03 13:47:40: Looking at \Device\HarddiskVolume1\WINDOWS\system32\netman.dll netman.dll
2012-04-03 13:47:40: Looking at \Device\HarddiskVolume1\WINDOWS\system32\netshell.dll netshell.dll
2012-04-03 13:47:40: Looking at \Device\HarddiskVolume1\WINDOWS\system32\credui.dll credui.dll
2012-04-03 13:47:40: Looking at \Device\HarddiskVolume1\WINDOWS\system32\dot3dlg.dll dot3dlg.dll
2012-04-03 13:47:40: Looking at \Device\HarddiskVolume1\WINDOWS\system32\onex.dll onex.dll
2012-04-03 13:47:40: Looking at \Device\HarddiskVolume1\WINDOWS\system32\eappcfg.dll eappcfg.DLL
2012-04-03 13:47:40: Looking at \Device\HarddiskVolume1\WINDOWS\system32\eappprxy.dll eappprxy.dll
2012-04-03 13:47:40: Looking at \Device\HarddiskVolume1\WINDOWS\system32\schedsvc.dll schedsvc.dll
2012-04-03 13:47:40: Looking at \Device\HarddiskVolume1\WINDOWS\system32\cscui.dll cscui.dll
2012-04-03 13:47:40: Looking at \Device\HarddiskVolume1\WINDOWS\system32\powrprof.dll POWRPROF.DLL
2012-04-03 13:47:40: Looking at \Device\HarddiskVolume1\WINDOWS\system32\spoolsv.exe spoolsv.exe
2012-04-03 13:47:40: Looking at \Device\HarddiskVolume1\WINDOWS\system32\msidle.dll MSIDLE.DLL
2012-04-03 13:47:40: Looking at \Device\HarddiskVolume1\WINDOWS\system32\dpcdll.dll Dpcdll.dll
2012-04-03 13:47:40: Looking at \Device\HarddiskVolume1\WINDOWS\system32\audiosrv.dll audiosrv.dll
2012-04-03 13:47:40: Looking at \Device\HarddiskVolume1\Program Files\Avira\AntiVir Desktop\sched.exe
2012-04-03 13:47:40: Looking at \Device\HarddiskVolume1\WINDOWS\system32\msvcp100.dll msvcp100.dll
2012-04-03 13:47:40: Looking at \Device\HarddiskVolume1\WINDOWS\system32\msvcr100.dll msvcr100_clr0400.dll
2012-04-03 13:47:40: Looking at \Device\HarddiskVolume1\Program Files\Avira\AntiVir Desktop\grdcore.dll
2012-04-03 13:47:40: Looking at \Device\HarddiskVolume1\Program Files\Avira\AntiVir Desktop\rctext.dll
2012-04-03 13:47:40: Looking at \Device\HarddiskVolume1\Program Files\Avira\AntiVir Desktop\sched.xml
2012-04-03 13:47:41: Looking at \Device\HarddiskVolume1\Program Files\Avira\AntiVir Desktop\scewxmlw.dll scewxml.dll
2012-04-03 13:47:41: Looking at \Device\HarddiskVolume1\Program Files\Avira\AntiVir Desktop\cfglib.dll
2012-04-03 13:47:41: Looking at \Device\HarddiskVolume1\WINDOWS\system32\wkssvc.dll WKSSVC.DLL
2012-04-03 13:47:41: Looking at \Device\HarddiskVolume1\Program Files\Avira\AntiVir Desktop\gpipc.dll
2012-04-03 13:47:41: Looking at \Device\HarddiskVolume1\Program Files\Avira\AntiVir Desktop\gpgen.dll
2012-04-03 13:47:41: Looking at \Device\HarddiskVolume1\Program Files\Avira\AntiVir Desktop\gpschd.dll
2012-04-03 13:47:41: Looking at \Device\HarddiskVolume1\Program Files\Avira\AntiVir Desktop\schedr.dll
2012-04-03 13:47:41: Looking at \Device\HarddiskVolume1\Program Files\Avira\AntiVir Desktop\avevtlog.dll
2012-04-03 13:47:41: Looking at \Device\HarddiskVolume1\Program Files\Avira\AntiVir Desktop\sqlite3.dll sqlite3.dll
2012-04-03 13:47:41: Looking at \Device\HarddiskVolume1\Program Files\Avira\AntiVir Desktop\guardmsg.dll
2012-04-03 13:47:41: Looking at \Device\HarddiskVolume1\WINDOWS\system32\drivers\parvdm.sys parvdm.sys
2012-04-03 13:47:41: Looking at \Device\HarddiskVolume1\Program Files\Adobe\Photoshop Elements 6.0\PhotoshopElementsFileAgent.exe
2012-04-03 13:47:41: Looking at \Device\HarddiskVolume1\Program Files\Adobe\Photoshop Elements 6.0\platform.DLL platform.dll
2012-04-03 13:47:41: Looking at \Device\HarddiskVolume1\WINDOWS\WinSxS\x86_Microsoft.VC80.CRT_1fc8b3b9a1e18e3b_8.0.50727.6195_x-ww_44262b86\msvcp80.dll MSVCP80.DLL
2012-04-03 13:47:41: Looking at \Device\HarddiskVolume1\WINDOWS\WinSxS\x86_Microsoft.VC80.CRT_1fc8b3b9a1e18e3b_8.0.50727.6195_x-ww_44262b86\msvcr80.dll MSVCR80.DLL
2012-04-03 13:47:41: Looking at \Device\HarddiskVolume1\Program Files\Avira\AntiVir Desktop\avguard.exe
2012-04-03 13:47:41: Looking at \Device\HarddiskVolume1\Program Files\Avira\AntiVir Desktop\avguard.xml
2012-04-03 13:47:41: Looking at \Device\HarddiskVolume1\WINDOWS\system32\cryptsvc.dll cryptsvc.dll
2012-04-03 13:47:41: Looking at \Device\HarddiskVolume1\Program Files\Avira\AntiVir Desktop\gpgrd.dll
2012-04-03 13:47:41: Looking at \Device\HarddiskVolume1\WINDOWS\system32\eapsvc.dll eapsvc.dll
2012-04-03 13:47:41: Looking at \Device\HarddiskVolume1\WINDOWS\system32\FTRTSVC.exe FTRTSVC.EXE
2012-04-03 13:47:41: Looking at \Device\HarddiskVolume1\WINDOWS\system32\IfHelper.dll IfHelper.dll
2012-04-03 13:47:41: Looking at \Device\HarddiskVolume1\WINDOWS\system32\wdmaud.drv WDMAUD.DRV
2012-04-03 13:47:41: Looking at \Device\HarddiskVolume1\WINDOWS\system32\certcli.dll CertCli
2012-04-03 13:47:41: Looking at \Device\HarddiskVolume1\WINDOWS\system32\eapphost.dll eapphost.dll
2012-04-03 13:47:41: Looking at \Device\HarddiskVolume1\Program Files\Avira\AntiVir Desktop\gpavgio.dll
2012-04-03 13:47:41: Looking at \Device\HarddiskVolume1\WINDOWS\system32\drivers\wdmaud.sys WDMAUD.SYS
2012-04-03 13:47:41: Looking at \Device\HarddiskVolume1\WINDOWS\system32\drivers\sysaudio.sys sysaudio.sys
2012-04-03 13:47:41: Looking at \Device\HarddiskVolume1\Program Files\Avira\AntiVir Desktop\gpgui.dll
2012-04-03 13:47:41: Looking at \Device\HarddiskVolume1\WINDOWS\system32\drivers\splitter.sys splitter.sys
2012-04-03 13:47:41: Looking at \Device\HarddiskVolume1\WINDOWS\system32\es.dll
2012-04-03 13:47:41: Looking at \Device\HarddiskVolume1\WINDOWS\system32\mfc42.dll MFC42.DLL
2012-04-03 13:47:41: Looking at \Device\HarddiskVolume1\WINDOWS\system32\drivers\aec.sys aec.sys
2012-04-03 13:47:41: Looking at \Device\HarddiskVolume1\Program Files\Avira\AntiVir Desktop\gplegacy.dll
2012-04-03 13:47:41: Looking at \Device\HarddiskVolume1\WINDOWS\system32\drivers\swmidi.sys swmidi.sys
2012-04-03 13:47:41: Looking at \Device\HarddiskVolume1\WINDOWS\system32\drivers\dmusic.sys DMusic.sys
2012-04-03 13:47:41: Looking at \Device\HarddiskVolume1\WINDOWS\system32\drivers\kmixer.sys kmixer.sys
2012-04-03 13:47:41: Looking at \Device\HarddiskVolume1\WINDOWS\system32\ersvc.dll ERSVC.DLL
2012-04-03 13:47:41: Looking at \Device\HarddiskVolume1\Program Files\Avira\AntiVir Desktop\gpgavid.dll
2012-04-03 13:47:41: Looking at \Device\HarddiskVolume1\WINDOWS\system32\drivers\drmkaud.sys drmkaud.sys
2012-04-03 13:47:41: Looking at \Device\HarddiskVolume1\WINDOWS\system32\msacm32.drv msacm32.acm
2012-04-03 13:47:42: Looking at \Device\HarddiskVolume1\WINDOWS\system32\mfc42loc.dll
2012-04-03 13:47:42: Looking at \Device\HarddiskVolume1\WINDOWS\system32\midimap.dll midimap.dll
2012-04-03 13:47:42: Looking at \Device\HarddiskVolume1\Program Files\Avira\AntiVir Desktop\libdb44.dll libdb44.dll
2012-04-03 13:47:42: Looking at \Device\HarddiskVolume1\Program Files\Avira\AntiVir Desktop\gpgenrep.dll
2012-04-03 13:47:42: Looking at \Device\HarddiskVolume1\Program Files\Avira\AntiVir Desktop\onlcfg.dll
2012-04-03 13:47:42: Looking at \Device\HarddiskVolume1\Program Files\Avira\AntiVir Desktop\avpref.dll
2012-04-03 13:47:42: Looking at \Device\HarddiskVolume1\Program Files\Avira\AntiVir Desktop\avipc.dll
2012-04-03 13:47:42: Looking at \Device\HarddiskVolume1\Program Files\Avira\AntiVir Desktop\avwinll.dll
2012-04-03 13:47:42: Looking at \Device\HarddiskVolume1\Program Files\Avira\AntiVir Desktop\avgio.dll
2012-04-03 13:47:42: Looking at \Device\HarddiskVolume1\WINDOWS\system32\fltlib.dll filterLib.dll
2012-04-03 13:47:42: Looking at \Device\HarddiskVolume1\Program Files\Google\Update\GoogleUpdate.exe GoogleUpdate.exe
2012-04-03 13:47:42: Looking at \Device\HarddiskVolume1\Program Files\Avira\AntiVir Desktop\aecore.dll aecore.dll
2012-04-03 13:47:42: Looking at \Device\HarddiskVolume1\Program Files\Avira\AntiVir Desktop\aevdf.dll aevdf.dll
2012-04-03 13:47:42: Looking at \Device\HarddiskVolume1\Program Files\Google\Update\1.3.21.111\goopdate.dll goopdate.dll
2012-04-03 13:47:42: Looking at \Device\HarddiskVolume1\Program Files\Avira\AntiVir Desktop\aescript.dll aescript.dll
2012-04-03 13:47:42: Looking at \Device\HarddiskVolume1\WINDOWS\system32\userinit.exe USERINIT.EXE
2012-04-03 13:47:42: Looking at \Device\HarddiskVolume1\Program Files\Avira\AntiVir Desktop\aescn.dll aescn.dll
2012-04-03 13:47:42: Looking at \Device\HarddiskVolume1\WINDOWS\system32\WgaTray.exe WgaTray.exe
2012-04-03 13:47:42: Looking at \Device\HarddiskVolume1\WINDOWS\system32\msi.dll msi.dll
2012-04-03 13:47:42: Looking at \Device\HarddiskVolume1\WINDOWS\system32\msi.dll msi.dll
2012-04-03 13:47:42: Looking at \Device\HarddiskVolume1\Program Files\Avira\AntiVir Desktop\aesbx.dll aesbx.dll
2012-04-03 13:47:42: Looking at \Device\HarddiskVolume1\WINDOWS\explorer.exe EXPLORER.EXE
2012-04-03 13:47:42: Looking at \Device\HarddiskVolume1\WINDOWS\system32\dbghelp.dll DBGHELP.DLL
2012-04-03 13:47:42: Looking at \Device\HarddiskVolume1\Program Files\Avira\AntiVir Desktop\aerdl.dll aerdl.dll
2012-04-03 13:47:42: Looking at \Device\HarddiskVolume1\WINDOWS\system32\browseui.dll BROWSEUI.DLL
2012-04-03 13:47:42: Looking at \Device\HarddiskVolume1\Program Files\Google\Update\1.3.21.111\goopdateres_fr.dll goopdateres_fr.dll
2012-04-03 13:47:42: Looking at \Device\HarddiskVolume1\Program Files\Google\Update\1.3.21.111\GoogleCrashHandler.exe GoogleUpdate.exe
2012-04-03 13:47:42: Looking at \Device\HarddiskVolume1\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe GoogleUpdaterService.exe
2012-04-03 13:47:42: Looking at \Device\HarddiskVolume1\WINDOWS\system32\cryptnet.dll CRYPTNET.DLL
2012-04-03 13:47:42: Looking at \Device\HarddiskVolume1\WINDOWS\system32\sensapi.dll SensApi.dll
2012-04-03 13:47:42: Looking at \Device\HarddiskVolume1\WINDOWS\system32\mstask.dll mstask.dll
2012-04-03 13:47:43: Looking at \Device\HarddiskVolume1\Program Files\Avira\AntiVir Desktop\aepack.dll aepack.dll
2012-04-03 13:47:43: Looking at \Device\HarddiskVolume1\WINDOWS\pchealth\helpctr\binaries\pchsvc.dll PCHSVC.DLL
2012-04-03 13:47:43: Looking at \Device\HarddiskVolume1\Program Files\Java\jre6\bin\jqs.exe jqs.exe
2012-04-03 13:47:43: Looking at \Device\HarddiskVolume1\WINDOWS\system32\winhttp.dll winhttp.dll
2012-04-03 13:47:43: Looking at \Device\HarddiskVolume1\WINDOWS\system32\shdocvw.dll SHDOCVW.DLL
2012-04-03 13:47:43: Looking at \Device\HarddiskVolume1\Program Files\Java\jre6\bin\msvcr71.dll MSVCR71.DLL
2012-04-03 13:47:43: Looking at \Device\HarddiskVolume1\Program Files\Avira\AntiVir Desktop\aeoffice.dll aeoffice.dll
2012-04-03 13:47:43: Looking at \Device\HarddiskVolume1\WINDOWS\system32\pdh.dll PDH.DLL
2012-04-03 13:47:43: Looking at \Device\HarddiskVolume1\WINDOWS\system32\LegitCheckControl.dll LegitCheckControl.dll
2012-04-03 13:47:43: Looking at \Device\HarddiskVolume1\WINDOWS\system32\odbcbcp.dll ODBCBCP
2012-04-03 13:47:43: Looking at \Device\HarddiskVolume1\WINDOWS\system32\srvsvc.dll SRVSVC.DLL
2012-04-03 13:47:43: Looking at \Device\HarddiskVolume1\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe mbamservice.exe
2012-04-03 13:47:43: Looking at \Device\HarddiskVolume1\WINDOWS\system32\netmsg.dll netmsg.DLL
2012-04-03 13:47:43: Looking at \Device\HarddiskVolume1\Program Files\Avira\AntiVir Desktop\aeheur.dll aeheur.dll
2012-04-03 13:47:43: Looking at \Device\HarddiskVolume1\WINDOWS\system32\drivers\srv.sys SRV.SYS
2012-04-03 13:47:43: Looking at \Device\HarddiskVolume1\WINDOWS\system32\wbem\wbemprox.dll wbemprox.dll
2012-04-03 13:47:43: Looking at \Device\HarddiskVolume1\WINDOWS\system32\netfxperf.dll netfxperf.dll
2012-04-03 13:47:43: Looking at \Device\HarddiskVolume1\WINDOWS\system32\wbem\wbemcomn.dll wbemcomn.dll
2012-04-03 13:47:43: Looking at \Device\HarddiskVolume1\Program Files\Malwarebytes' Anti-Malware\mbamcore.dll mbamcore.dll
2012-04-03 13:47:43: Looking at \Device\HarddiskVolume1\WINDOWS\system32\mscoree.dll mscoree.dll
2012-04-03 13:47:43: Looking at \Device\HarddiskVolume1\Program Files\Malwarebytes' Anti-Malware\mbam.dll mbam.dll
2012-04-03 13:47:43: Looking at \Device\HarddiskVolume1\WINDOWS\Microsoft.NET\Framework\v2.0.50727\PerfCounter.dll perfcounter.dll
2012-04-03 13:47:43: Looking at \Device\HarddiskVolume1\WINDOWS\system32\desk.cpl DESK.CPL
2012-04-03 13:47:43: Looking at \Device\HarddiskVolume1\WINDOWS\system32\themeui.dll ThemeUI.DLL
2012-04-03 13:47:43: Looking at \Device\HarddiskVolume1\WINDOWS\system32\actxprxy.dll ActXPrxy.dll
2012-04-03 13:47:44: Looking at \Device\HarddiskVolume1\Program Files\Malwarebytes' Anti-Malware\mbamnet.dll mbamnet.dll
2012-04-03 13:47:44: Looking at \Device\HarddiskVolume1\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorwks.dll mscorwks.dll
2012-04-03 13:47:44: Looking at \Device\HarddiskVolume1\WINDOWS\system32\cmd.exe Cmd.Exe
2012-04-03 13:47:44: Looking at \Device\HarddiskVolume1\WINDOWS\system32\spoolss.dll spoolss.dll
2012-04-03 13:47:44: Looking at \Device\HarddiskVolume1\Program Files\Avira\AntiVir Desktop\aehelp.dll aehelp.dll
2012-04-03 13:47:44: Looking at \Device\HarddiskVolume1\WINDOWS\Microsoft.NET\Framework\v2.0.50727\CORPerfMonExt.dll CORPerfMonExt.dll
2012-04-03 13:47:44: Looking at \Device\HarddiskVolume1\WINDOWS\Microsoft.NET\Framework\v2.0.50727\Aspnet_perf.dll aspnet_perf.dll
2012-04-03 13:47:44: Looking at \Device\HarddiskVolume1\WINDOWS\system32\localspl.dll localspl.dll
2012-04-03 13:47:44: Looking at \Device\HarddiskVolume1\WINDOWS\system32\cnbjmon.dll CNBJMON.DLL
2012-04-03 13:47:44: Looking at \Device\HarddiskVolume1\Program Files\Avira\AntiVir Desktop\aegen.dll aegen.dll
2012-04-03 13:47:44: Looking at \Device\HarddiskVolume1\WINDOWS\Microsoft.NET\Framework\v1.1.4322\aspnet_isapi.dll aspnet_isapi.lib
2012-04-03 13:47:44: Looking at \Device\HarddiskVolume1\WINDOWS\system32\CNMLM9Z.DLL CNMLMON2.DLL
2012-04-03 13:47:44: Looking at \Device\HarddiskVolume1\WINDOWS\Microsoft.NET\Framework\v1.1.4322\fr\aspnet_rc.dll aspnet_rc.dll
2012-04-03 13:47:44: Looking at \Device\HarddiskVolume1\Documents and Settings\User\Bureau\yorkyt.exe
2012-04-03 13:47:44: Looking at \Device\HarddiskVolume1\WINDOWS\system32\pjlmon.dll PJLMON.DLL
2012-04-03 13:47:44: Looking at \Device\HarddiskVolume1\WINDOWS\system32\wsock32.dll wsock32.dll
2012-04-03 13:47:44: Looking at \Device\HarddiskVolume1\Program Files\Avira\AntiVir Desktop\aeexp.dll aeexp.dll
2012-04-03 13:47:44: Looking at \Device\HarddiskVolume1\WINDOWS\system32\tcpmon.dll tcpmon.dll
2012-04-03 13:47:44: Looking at \Device\HarddiskVolume1\WINDOWS\system32\msimtf.dll MSIMTF.DLL
2012-04-03 13:47:44: Looking at \Device\HarddiskVolume1\WINDOWS\system32\usbmon.dll DynaMon.dll
2012-04-03 13:47:44: Looking at \Device\HarddiskVolume1\WINDOWS\system32\spool\prtprocs\w32x86\CNMPD9Z.DLL CNMPD.DLL
2012-04-03 13:47:44: Looking at \Device\HarddiskVolume1\Program Files\Avira\AntiVir Desktop\aeemu.dll aeemu.so
2012-04-03 13:47:44: Looking at \Device\HarddiskVolume1\WINDOWS\system32\query.dll query.dll
2012-04-03 13:47:44: Looking at \Device\HarddiskVolume1\WINDOWS\system32\spool\prtprocs\w32x86\filterpipelineprintproc.dll PrintFilterPipelinePrxy.dll
2012-04-03 13:47:44: Looking at \Device\HarddiskVolume1\WINDOWS\system32\msutb.dll MSUTB.DLL
2012-04-03 13:47:44: Looking at \Device\HarddiskVolume1\Program Files\Avira\AntiVir Desktop\aebb.dll aebb.dll
2012-04-03 13:47:45: Looking at \Device\HarddiskVolume1\WINDOWS\system32\win32spl.dll win32spl.dll
2012-04-03 13:47:45: Looking at \Device\HarddiskVolume1\WINDOWS\system32\ipsecsvc.dll ipsecsvc.dll
2012-04-03 13:47:45: Looking at \Device\HarddiskVolume1\WINDOWS\system32\srsvc.dll SERVICE.DLL
2012-04-03 13:47:45: Looking at \Device\HarddiskVolume1\Documents and Settings\All Users\Application Data\Malwarebytes\Malwarebytes' Anti-Malware\Configuration\local.conf
2012-04-03 13:47:45: Looking at \Device\HarddiskVolume1\WINDOWS\system32\netrap.dll NetRap.DLL
2012-04-03 13:47:45: Looking at \Device\HarddiskVolume1\Documents and Settings\All Users\Application Data\Malwarebytes\Malwarebytes' Anti-Malware\Configuration\custom.conf
2012-04-03 13:47:45: Looking at \Device\HarddiskVolume1\WINDOWS\system32\wiaservc.dll WIASERVC.DLL
2012-04-03 13:47:45: Looking at \Device\HarddiskVolume1\Documents and Settings\All Users\Application Data\Malwarebytes\Malwarebytes' Anti-Malware\Configuration\manifest.conf
2012-04-03 13:47:45: Looking at \Device\HarddiskVolume1\Documents and Settings\All Users\Application Data\Malwarebytes\Malwarebytes' Anti-Malware\Configuration\database.conf
2012-04-03 13:47:45: Looking at \Device\HarddiskVolume1\Documents and Settings\All Users\Application Data\Malwarebytes\Malwarebytes' Anti-Malware\Configuration\build.conf
2012-04-03 13:47:45: Looking at \Device\HarddiskVolume1\WINDOWS\system32\sens.dll sens.dll
2012-04-03 13:47:45: Looking at \Device\HarddiskVolume1\WINDOWS\system32\oakley.dll oakley.dll
2012-04-03 13:47:45: Looking at \Device\HarddiskVolume1\WINDOWS\system32\cfgmgr32.dll CFGMGR32.DLL
2012-04-03 13:47:45: Looking at \Device\HarddiskVolume1\Documents and Settings\All Users\Application Data\Malwarebytes\Malwarebytes' Anti-Malware\Configuration\news.conf
2012-04-03 13:47:45: Looking at \Device\HarddiskVolume1\WINDOWS\system32\inetpp.dll inetpp.dll
2012-04-03 13:47:45: Looking at \Device\HarddiskVolume1\WINDOWS\system32\msdtcuiu.dll
2012-04-03 13:47:45: Looking at \Device\HarddiskVolume1\Documents and Settings\All Users\Application Data\Malwarebytes\Malwarebytes' Anti-Malware\Configuration\config.conf
2012-04-03 13:47:45: Looking at \Device\HarddiskVolume1\WINDOWS\system32\winipsec.dll winipsec.dll
2012-04-03 13:47:45: Looking at \Device\HarddiskVolume1\WINDOWS\system32\seclogon.dll SECLOGON.EXE
2012-04-03 13:47:45: Looking at \Device\HarddiskVolume1\WINDOWS\system32\wbem\wbemdisp.dll WBEMDISP.DLL
2012-04-03 13:47:45: Looking at \Device\HarddiskVolume1\WINDOWS\system32\mscms.dll MSCMS.DLL
2012-04-03 13:47:45: Looking at \Device\HarddiskVolume1\WINDOWS\system32\pstorsvc.dll Protectedstorageserver
2012-04-03 13:47:45: Looking at \Device\HarddiskVolume1\WINDOWS\system32\browser.dll browser.dll
2012-04-03 13:47:45: Looking at \Device\Hard
H3RV3
Messages postés
3591
Date d'inscription
samedi 17 octobre 2009
Statut
Contributeur sécurité
Dernière intervention
7 novembre 2014
280
3 avril 2012 à 15:52
3 avril 2012 à 15:52
Le rapport n'est pas entier, peux-tu l'héberger sur ce site : http://pjjoint.malekal.com/
Puis copie/colle le lien donné dans ta réponse.
Sinon, il y a une amélioration avec ton PC ?
Puis copie/colle le lien donné dans ta réponse.
Sinon, il y a une amélioration avec ton PC ?
pohpey
Messages postés
218
Date d'inscription
mardi 26 août 2008
Statut
Membre
Dernière intervention
31 décembre 2023
14
3 avril 2012 à 17:12
3 avril 2012 à 17:12
https://pjjoint.malekal.com/files.php?id=20120403_b11w8c12w13n5
Bien qu'il soit assez lent au démarrage, il est par la suite stable
Bien qu'il soit assez lent au démarrage, il est par la suite stable
pohpey
Messages postés
218
Date d'inscription
mardi 26 août 2008
Statut
Membre
Dernière intervention
31 décembre 2023
14
3 avril 2012 à 17:15
3 avril 2012 à 17:15
J'ai également une mise à jour sécurité windows qui revient à chaque démarrage, il s'agit de la mise à jour de sécurité pour windows XP KB960859...
H3RV3
Messages postés
3591
Date d'inscription
samedi 17 octobre 2009
Statut
Contributeur sécurité
Dernière intervention
7 novembre 2014
280
3 avril 2012 à 17:33
3 avril 2012 à 17:33
Peux-tu faire un nouveau rapport ZHPDiag en mode normal et l'héberger sur http://pjjoint.malekal.com/
Concernant la mise à jour, elle ne s'installe pas ? Tu as un message et/ou un code d'erreur ?
Concernant la mise à jour, elle ne s'installe pas ? Tu as un message et/ou un code d'erreur ?
pohpey
Messages postés
218
Date d'inscription
mardi 26 août 2008
Statut
Membre
Dernière intervention
31 décembre 2023
14
4 avril 2012 à 08:25
4 avril 2012 à 08:25
Bonjour,
concernant la mise à jour elle parait s'installer normalement, je n'ai pas de message d'erreur mais à chaque redémarrage du PC elle réapparait. En fait elle revient en boucle à chaque fois.
Je t'envois le rapport ZHPdiag dès que je l'ai fait.
concernant la mise à jour elle parait s'installer normalement, je n'ai pas de message d'erreur mais à chaque redémarrage du PC elle réapparait. En fait elle revient en boucle à chaque fois.
Je t'envois le rapport ZHPdiag dès que je l'ai fait.
pohpey
Messages postés
218
Date d'inscription
mardi 26 août 2008
Statut
Membre
Dernière intervention
31 décembre 2023
14
6 avril 2012 à 13:01
6 avril 2012 à 13:01
Bonjour,
Voici le rapport demandé :
https://pjjoint.malekal.com/files.php?id=ZHPDiag_20120406_z11j5x5f9n6
Voici le rapport demandé :
https://pjjoint.malekal.com/files.php?id=ZHPDiag_20120406_z11j5x5f9n6
H3RV3
Messages postés
3591
Date d'inscription
samedi 17 octobre 2009
Statut
Contributeur sécurité
Dernière intervention
7 novembre 2014
280
6 avril 2012 à 13:35
6 avril 2012 à 13:35
Tu peux essayer de télécharger la mise à jour ici : http://www.microsoft.com/downloads/fr-fr/details.aspx?FamilyID=B3331388-1E52-4924-B512-23275A8FDE84
et de l'installer manuellement.
et de l'installer manuellement.
pohpey
Messages postés
218
Date d'inscription
mardi 26 août 2008
Statut
Membre
Dernière intervention
31 décembre 2023
14
6 avril 2012 à 14:43
6 avril 2012 à 14:43
J'ai déjà essayé mais cela n'a rien changé, à chaque démarrage du PC la mise à jour m'est à nouveau proposé au bout de cinq minutes. Pourtant, même de façon manuelle, aucun message d'erreur, la mise à jour s'effectue normalement.
H3RV3
Messages postés
3591
Date d'inscription
samedi 17 octobre 2009
Statut
Contributeur sécurité
Dernière intervention
7 novembre 2014
280
6 avril 2012 à 15:21
6 avril 2012 à 15:21
Tu peux essayer de la désinstaller par ajout/suppression de programmes puis la réinstaller.
pohpey
Messages postés
218
Date d'inscription
mardi 26 août 2008
Statut
Membre
Dernière intervention
31 décembre 2023
14
8 avril 2012 à 12:38
8 avril 2012 à 12:38
Bonjour,
Bon à priori je n'ai plus ce problème de MAJ
Y a t il encore des manips à effectuer pour le reste
Bon à priori je n'ai plus ce problème de MAJ
Y a t il encore des manips à effectuer pour le reste