Gros soucis de pc qui rame sans raison!!
blandissime
Messages postés
4
Statut
Membre
-
blandissime Messages postés 4 Statut Membre -
blandissime Messages postés 4 Statut Membre -
Bonjour,
ça va faire un mois que mon pc rame de façon totalement aléatoire!!!que j'ouvre msn, emule internet et word ou que je n'ai que word d'ouvert en étant même pas sur internet, mon UC atteint les 100%!!!en effet, le processeur s'enflamme sur l'application principale. J'ai fai des scans avec avast, spybot, adaware, virus scan mais rien!!!
aidez moi svpje suis à deux doigts de rebooter mon pc!!
merci!!
ça va faire un mois que mon pc rame de façon totalement aléatoire!!!que j'ouvre msn, emule internet et word ou que je n'ai que word d'ouvert en étant même pas sur internet, mon UC atteint les 100%!!!en effet, le processeur s'enflamme sur l'application principale. J'ai fai des scans avec avast, spybot, adaware, virus scan mais rien!!!
aidez moi svpje suis à deux doigts de rebooter mon pc!!
merci!!
A voir également:
- Gros soucis de pc qui rame sans raison!!
- Pc qui rame - Guide
- Pc qui freeze sans raison - Guide
- Reinitialiser pc - Guide
- Downloader for pc - Télécharger - Téléchargement & Transfert
- Double ecran pc - Guide
5 réponses
blandissime
Messages postés
4
Statut
Membre
je suis en train d'installer les logiciels g fai un scan et je vois car je préfère essayer tout avant de rebooter!!!car j'ai besoin de mon pc meme si il rame!!
salut.
tout dabord, sache que j'ai eu le même probleme que toi avc le miens.
J'ai filé mon pc a un technicien de chez darty qui ma dis que c'était la carte mère, lol ils disent tous sa car il parrait que 90% des problemes viennent de là.
J'ai refusé le devis qui me coutait commême 140E, pour un pc qui n'avait qu'un ans et acheté nuf sa fait mal.
J'ai ensuite filé mon à un ami d'un ami qui était technicien et qui m'as dit qu'il ne comprenait pas d'où venait le probleme car le matériel fonctionnait très bien, ainsi que la carte mère.
Bref seul solution, j'ai rebooté mon pc.
Comme il a bloqué en plein formatage et que plus rien ne fonctionnait, j'ai installé une version d'éssais de wp home ( tu peus le faire avec celui d'origine si tu l'as), puis j'ai éffacé l'anciènne partition ( à évité si tu as peur de le foutre en l'air, sinon crée une nouvelle partition ou bien la copié sur celle d'origine).
Si tu installe une version d'éssai de xp, ou bien si tu reboot ton pc, assure toi d'avoir une licence ( elle doit-être collé sur ta tour: key...... ...... ...... ...... etc.)
Si tu n'as pas l'étiquette avec le n° de licence alors telecharge AIDA32, ce logiciel gratuit analyse ton pc et tu pourras recopié le numéro de licence q'il t'indiquera.
Une fois installé, pour tout ce qui est driver vas sur le site d'origine de ton pc mais avant je te conseil d'aller voir si le site est en français et s'il propose des mise a jour ou bien les pillotes et logiciels d'origine pour éviter tout probleme par la suite.
Sa fais peut-être peur en théorie mais tkt sa va le faire.
Bon courage
tout dabord, sache que j'ai eu le même probleme que toi avc le miens.
J'ai filé mon pc a un technicien de chez darty qui ma dis que c'était la carte mère, lol ils disent tous sa car il parrait que 90% des problemes viennent de là.
J'ai refusé le devis qui me coutait commême 140E, pour un pc qui n'avait qu'un ans et acheté nuf sa fait mal.
J'ai ensuite filé mon à un ami d'un ami qui était technicien et qui m'as dit qu'il ne comprenait pas d'où venait le probleme car le matériel fonctionnait très bien, ainsi que la carte mère.
Bref seul solution, j'ai rebooté mon pc.
Comme il a bloqué en plein formatage et que plus rien ne fonctionnait, j'ai installé une version d'éssais de wp home ( tu peus le faire avec celui d'origine si tu l'as), puis j'ai éffacé l'anciènne partition ( à évité si tu as peur de le foutre en l'air, sinon crée une nouvelle partition ou bien la copié sur celle d'origine).
Si tu installe une version d'éssai de xp, ou bien si tu reboot ton pc, assure toi d'avoir une licence ( elle doit-être collé sur ta tour: key...... ...... ...... ...... etc.)
Si tu n'as pas l'étiquette avec le n° de licence alors telecharge AIDA32, ce logiciel gratuit analyse ton pc et tu pourras recopié le numéro de licence q'il t'indiquera.
Une fois installé, pour tout ce qui est driver vas sur le site d'origine de ton pc mais avant je te conseil d'aller voir si le site est en français et s'il propose des mise a jour ou bien les pillotes et logiciels d'origine pour éviter tout probleme par la suite.
Sa fais peut-être peur en théorie mais tkt sa va le faire.
Bon courage
***** NORMAL SCAN FOR ACTIVE MALWARE *****
Trojan Remover Ver 6.6.7.2517. For information, email support@simplysup1.com
[Unregistered version]
Scan started at: 27/02/2008 17:00:51
Using Database v6942
Operating System: Windows XP SP2 [Windows XP Home Edition Service Pack 2 (Build 2600)]
File System: FAT32
Data directory: C:\Documents and Settings\moi\Application Data\Simply Super Software\Trojan Remover\
Logfile directory: C:\Documents and Settings\moi\Mes documents\Simply Super Software\Trojan Remover Logfiles\
Program directory: C:\Program Files\Trojan Remover\
Running with Administrator privileges
**************************************************
**************************************************
17:00:51: Scanning ----------WIN.INI-----------
WIN.INI found in C:\WINDOWS
**************************************************
17:00:51: Scanning --------SYSTEM.INI---------
SYSTEM.INI found in C:\WINDOWS
**************************************************
17:00:52: ----- SCANNING FOR ROOTKIT SERVICES -----
No hidden Services were detected.
**************************************************
17:00:52: Scanning -----WINDOWS REGISTRY-----
--------------------
Checking HKCU\SOFTWARE\Microsoft\Windows NT\CurrentVersion\WinLogon
--------------------
Checking HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\WinLogon
This key's "Shell" value calls the following program(s):
File: Explorer.exe
C:\WINDOWS\Explorer.exe
1037312 bytes
Created: 05/08/2004
Modified: 13/06/2007
Company: Microsoft Corporation
----------
This key's "Userinit" value calls the following program(s):
File: C:\WINDOWS\system32\userinit.exe
C:\WINDOWS\system32\userinit.exe
25088 bytes
Created: 05/08/2004
Modified: 05/08/2004
Company: Microsoft Corporation
----------
This key's "System" value appears to be blank
----------
This key's "UIHost" value calls the following program:
File: logonui.exe
C:\WINDOWS\system32\logonui.exe
515584 bytes
Created: 05/08/2004
Modified: 05/08/2004
Company: Microsoft Corporation
----------
--------------------
Checking HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows
--------------------
Checking HKCU\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows
Value Name: load
--------------------
Checking HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run
Value Name: LaunchApp
Value Data:
The Value Data for this entry appears to be blank
--------------------
Value Name: AzMixerSel
Value Data: C:\Program Files\Realtek\InstallShield\AzMixerSel.exe
C:\Program Files\Realtek\InstallShield\AzMixerSel.exe
53248 bytes
Created: 19/10/2006
Modified: 14/04/2006
Company: Realtek Semiconductor Corp.
--------------------
Value Name: PCMService
Value Data: "C:\Program Files\Acer\Acer Arcade\PCMService.exe"
C:\Program Files\Acer\Acer Arcade\PCMService.exe
151552 bytes
Created: 27/04/2006
Modified: 27/04/2006
Company: CyberLink Corp.
--------------------
Value Name: ntiMUI
Value Data: C:\Program Files\NewTech Infosystems\NTI CD & DVD-Maker 7\ntiMUI.exe
C:\Program Files\NewTech Infosystems\NTI CD & DVD-Maker 7\ntiMUI.exe
45056 bytes
Created: 11/05/2005
Modified: 11/05/2005
Company:
--------------------
Value Name: Acer ePresentation HPD
Value Data: C:\Acer\Empowering Technology\ePresentation\ePresentation.exe
C:\Acer\Empowering Technology\ePresentation\ePresentation.exe
204800 bytes
Created: 31/03/2006
Modified: 31/03/2006
Company:
--------------------
Value Name: IMJPMIG8.1
Value Data: "C:\WINDOWS\IME\imjp8_1\IMJPMIG.EXE" /Spoil /RemAdvDef /Migration32
C:\WINDOWS\IME\imjp8_1\IMJPMIG.EXE
208952 bytes
Created: 05/08/2004
Modified: 05/08/2004
Company: Microsoft Corporation
--------------------
Value Name: MSPY2002
Value Data: C:\WINDOWS\system32\IME\PINTLGNT\ImScInst.exe /SYNC
C:\WINDOWS\system32\IME\PINTLGNT\ImScInst.exe
59392 bytes
Created: 05/08/2004
Modified: 05/08/2004
Company:
--------------------
Value Name: PHIME2002ASync
Value Data: C:\WINDOWS\system32\IME\TINTLGNT\TINTSETP.EXE /SYNC
C:\WINDOWS\system32\IME\TINTLGNT\TINTSETP.EXE
455168 bytes
Created: 05/08/2004
Modified: 05/08/2004
Company: Microsoft Corporation
--------------------
Value Name: PHIME2002A
Value Data: C:\WINDOWS\system32\IME\TINTLGNT\TINTSETP.EXE /IMEName
C:\WINDOWS\system32\IME\TINTLGNT\TINTSETP.EXE
455168 bytes
Created: 05/08/2004
Modified: 05/08/2004
Company: Microsoft Corporation
--------------------
Value Name: ATICCC
Value Data: "C:\Program Files\ATI Technologies\ATI.ACE\cli.exe" runtime -Delay
C:\Program Files\ATI Technologies\ATI.ACE\cli.exe
45056 bytes
Created: 02/01/2006
Modified: 02/01/2006
Company: ATI Technologies Inc.
--------------------
Value Name: eDataSecurity Loader
Value Data: C:\Acer\Empowering Technology\eDataSecurity\eDSloader.exe 1
C:\Acer\Empowering Technology\eDataSecurity\eDSloader.exe
345088 bytes
Created: 17/03/2006
Modified: 17/03/2006
Company: HiTRUST
--------------------
Value Name: ePower_DMC
Value Data: C:\Acer\Empowering Technology\ePower\ePower_DMC.exe
C:\Acer\Empowering Technology\ePower\ePower_DMC.exe
421888 bytes
Created: 19/10/2006
Modified: 30/05/2006
Company:
--------------------
Value Name: Boot
Value Data: C:\Acer\Empowering Technology\ePower\Boot.exe
C:\Acer\Empowering Technology\ePower\Boot.exe
579584 bytes
Created: 19/10/2006
Modified: 15/03/2006
Company:
--------------------
Value Name: RTHDCPL
Value Data: RTHDCPL.EXE
C:\WINDOWS\RTHDCPL.EXE
16248320 bytes
Created: 14/03/2006
Modified: 27/06/2006
Company: Realtek Semiconductor Corp.
--------------------
Value Name: SkyTel
Value Data: SkyTel.EXE
C:\WINDOWS\SkyTel.EXE
2879488 bytes
Created: 19/10/2006
Modified: 16/05/2006
Company: Realtek Semiconductor Corp.
--------------------
Value Name: Alcmtr
Value Data: ALCMTR.EXE
C:\WINDOWS\ALCMTR.EXE
69632 bytes
Created: 19/10/2006
Modified: 03/05/2005
Company: Realtek Semiconductor Corp.
--------------------
Value Name: SynTPEnh
Value Data: C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
761946 bytes
Created: 19/10/2006
Modified: 03/03/2006
Company: Synaptics, Inc.
--------------------
Value Name: LManager
Value Data: C:\PROGRA~1\LAUNCH~1\LManager.exe
C:\PROGRA~1\LAUNCH~1\LManager.exe
602112 bytes
Created: 09/09/2006
Modified: 23/06/2006
Company: Dritek System Inc.
--------------------
Value Name: eRecoveryService
Value Data: C:\Acer\Empowering Technology\eRecovery\eRAgent.exe
C:\Acer\Empowering Technology\eRecovery\eRAgent.exe
413696 bytes
Created: 19/10/2006
Modified: 01/06/2006
Company: Acer Inc.
--------------------
Value Name: ShStatEXE
Value Data: "C:\appli\VirusScan71\VirusScan71\SHSTAT.EXE" /STANDALONE
C:\appli\VirusScan71\VirusScan71\SHSTAT.EXE
81990 bytes
Created: 29/09/2003
Modified: 29/09/2003
Company: Network Associates, Inc.
--------------------
Value Name: McAfeeUpdaterUI
Value Data: "C:\appli\VirusScan71\Common Framework\UpdaterUI.exe" /StartedFromRunKey
C:\appli\VirusScan71\Common Framework\UpdaterUI.exe
135224 bytes
Created: 24/10/2006
Modified: 22/03/2004
Company: Network Associates, Inc.
--------------------
Value Name: Network Associates Error Reporting Service
Value Data: "C:\Program Files\Fichiers communs\Network Associates\TalkBack\TBMon.exe"
C:\Program Files\Fichiers communs\Network Associates\TalkBack\TBMon.exe
147514 bytes
Created: 24/10/2006
Modified: 17/07/2003
Company: Network Associates, Inc.
--------------------
Value Name: avast!
Value Data: C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
79224 bytes
Created: 03/11/2006
Modified: 04/12/2007
Company: ALWIL Software
--------------------
Value Name: NeroFilterCheck
Value Data: C:\WINDOWS\system32\NeroCheck.exe
C:\WINDOWS\system32\NeroCheck.exe
155648 bytes
Created: 21/01/2007
Modified: 09/07/2001
Company: Ahead Software Gmbh
--------------------
Value Name: KernelFaultCheck
Value Data: %systemroot%\system32\dumprep 0 -k
C:\WINDOWS\system32\dumprep.EXE
10752 bytes
Created: 05/08/2004
Modified: 05/08/2004
Company: Microsoft Corporation
--------------------
Value Name: Adobe Reader Speed Launcher
Value Data: "C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe"
C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe
39792 bytes
Created: 11/01/2008
Modified: 11/01/2008
Company: Adobe Systems Incorporated
--------------------
Value Name: QuickTime Task
Value Data: "C:\Program Files\QuickTime\QTTask.exe" -atboottime
C:\Program Files\QuickTime\QTTask.exe
385024 bytes
Created: 31/01/2008
Modified: 31/01/2008
Company: Apple Inc.
--------------------
Value Name: iTunesHelper
Value Data: "C:\Program Files\iTunes\iTunesHelper.exe"
C:\Program Files\iTunes\iTunesHelper.exe
267048 bytes
Created: 19/02/2008
Modified: 19/02/2008
Company: Apple Inc.
--------------------
Value Name: spywarefighterguard
Value Data: C:\Program Files\SPYWAREfighter\spftray.exe
C:\Program Files\SPYWAREfighter\spftray.exe
115344 bytes
Created: 21/02/2008
Modified: 21/02/2008
Company: SPAMfighter
--------------------
Value Name:
Value Data:
The Value Data for this entry appears to be blank
--------------------
Value Name: TrojanScanner
Value Data: C:\Program Files\Trojan Remover\Trjscan.exe
C:\Program Files\Trojan Remover\Trjscan.exe
863824 bytes
Created: 27/02/2008
Modified: 24/02/2008
Company: Simply Super Software
--------------------
--------------------
Checking HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce
This Registry Key appears to be empty
--------------------
Checking HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\RunServices
This Registry Key appears to be empty
--------------------
Checking HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\RunServicesOnce
This Registry Key appears to be empty
--------------------
Checking HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnceEx
This Registry Key appears to be empty
--------------------
Checking HKCU\Software\Microsoft\Windows\CurrentVersion\Run
Value Name: CTFMON.EXE
Value Data: C:\WINDOWS\system32\ctfmon.exe
C:\WINDOWS\system32\ctfmon.exe
15360 bytes
Created: 05/08/2004
Modified: 05/08/2004
Company: Microsoft Corporation
--------------------
Value Name: MsnMsgr
Value Data: "C:\Program Files\Windows Live\Messenger\MsnMsgr.Exe" /background
C:\Program Files\Windows Live\Messenger\MsnMsgr.Exe
5724184 bytes
Created: 18/10/2007
Modified: 18/10/2007
Company: Microsoft Corporation
--------------------
--------------------
Checking HKCU\Software\Microsoft\Windows\CurrentVersion\RunOnce
This Registry Key appears to be empty
--------------------
Checking HKCU\Software\Microsoft\Windows\CurrentVersion\RunServices
This Registry Key appears to be empty
--------------------
Checking HKCU\Software\Microsoft\Windows\CurrentVersion\RunServicesOnce
This Registry Key appears to be empty
--------------------
Checking HKCU\Software\Microsoft\Windows\CurrentVersion\RunOnceEx
This Registry Key appears to be empty
**************************************************
17:01:01: Scanning -----SHELLEXECUTEHOOKS-----
ValueName: {AEB6717E-7E19-11d0-97EE-00C04FD91972}
File: shell32.dll - this file is expected and has been left in place
----------
**************************************************
17:01:01: Scanning -----HIDDEN REGISTRY ENTRIES-----
Taskdir check completed
----------
No Hidden File-loading Registry Entries found
----------
**************************************************
17:01:02: Scanning -----ACTIVE SCREENSAVER-----
No active ScreenSaver found to scan.
**************************************************
17:01:02: Scanning ----- REGISTRY ACTIVE SETUP KEYS -----
**************************************************
17:01:02: Scanning ----- SERVICEDLL REGISTRY KEYS -----
Key: AppMgmt
%SystemRoot%\System32\appmgmts.dll - file is globally excluded (file cannot be found)
--------------------
**************************************************
17:01:06: Scanning ----- SERVICES REGISTRY KEYS -----
Key: abp480n5
ImagePath: system32\DRIVERS\ABP480N5.SYS
C:\WINDOWS\system32\DRIVERS\ABP480N5.SYS
23552 bytes
Created: 05/08/2004
Modified: 05/08/2004
Company: Microsoft Corporation
----------
Key: AcerMemUsageCheckService
ImagePath: C:\Acer\Empowering Technology\ePerformance\MemCheck.exe
C:\Acer\Empowering Technology\ePerformance\MemCheck.exe
28672 bytes
Created: 29/03/2006
Modified: 29/03/2006
Company: Acer Inc.
----------
Key: adpu160m
ImagePath: system32\DRIVERS\adpu160m.sys
C:\WINDOWS\system32\DRIVERS\adpu160m.sys
101888 bytes
Created: 05/08/2004
Modified: 05/08/2004
Company: Microsoft Corporation
----------
Key: agpCPQ
ImagePath: system32\DRIVERS\agpCPQ.sys
C:\WINDOWS\system32\DRIVERS\agpCPQ.sys
44928 bytes
Created: 03/08/2004
Modified: 03/08/2004
Company: Microsoft Corporation
----------
Key: Aha154x
ImagePath: system32\DRIVERS\aha154x.sys
C:\WINDOWS\system32\DRIVERS\aha154x.sys
12800 bytes
Created: 05/08/2004
Modified: 05/08/2004
Company: Microsoft Corporation
----------
Key: aic78u2
ImagePath: system32\DRIVERS\aic78u2.sys
C:\WINDOWS\system32\DRIVERS\aic78u2.sys
55168 bytes
Created: 05/08/2004
Modified: 05/08/2004
Company: Microsoft Corporation
----------
Key: aic78xx
ImagePath: system32\DRIVERS\aic78xx.sys
C:\WINDOWS\system32\DRIVERS\aic78xx.sys
56960 bytes
Created: 05/08/2004
Modified: 05/08/2004
Company: Microsoft Corporation
----------
Key: alim1541
ImagePath: system32\DRIVERS\alim1541.sys
C:\WINDOWS\system32\DRIVERS\alim1541.sys
42752 bytes
Created: 03/08/2004
Modified: 03/08/2004
Company: Microsoft Corporation
----------
Key: amdagp
ImagePath: system32\DRIVERS\amdagp.sys
C:\WINDOWS\system32\DRIVERS\amdagp.sys
43008 bytes
Created: 03/08/2004
Modified: 03/08/2004
Company: Advanced Micro Devices, Inc.
----------
Key: amsint
ImagePath: system32\DRIVERS\amsint.sys
C:\WINDOWS\system32\DRIVERS\amsint.sys
12032 bytes
Created: 05/08/2004
Modified: 05/08/2004
Company: Microsoft Corporation
----------
Key: Apple Mobile Device
ImagePath: "C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe"
C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
110592 bytes
Created: 04/09/2007
Modified: 04/09/2007
Company: Apple, Inc.
----------
Key: AR5211
ImagePath: system32\DRIVERS\ar5211.sys
C:\WINDOWS\system32\DRIVERS\ar5211.sys
488448 bytes
Created: 25/01/2006
Modified: 24/01/2006
Company: Atheros Communications, Inc.
----------
Key: asc
ImagePath: system32\DRIVERS\asc.sys
C:\WINDOWS\system32\DRIVERS\asc.sys
26496 bytes
Created: 05/08/2004
Modified: 05/08/2004
Company: Advanced System Products, Inc.
----------
Key: asc3350p
ImagePath: system32\DRIVERS\asc3350p.sys
C:\WINDOWS\system32\DRIVERS\asc3350p.sys
22400 bytes
Created: 05/08/2004
Modified: 05/08/2004
Company: Microsoft Corporation
----------
Key: asc3550
ImagePath: system32\DRIVERS\asc3550.sys
C:\WINDOWS\system32\DRIVERS\asc3550.sys
14848 bytes
Created: 05/08/2004
Modified: 05/08/2004
Company: Advanced System Products, Inc.
----------
Key: aswUpdSv
ImagePath: "C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe"
C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
17272 bytes
Created: 03/11/2006
Modified: 04/12/2007
Company: ALWIL Software
----------
Key: avast! Antivirus
ImagePath: "C:\Program Files\Alwil Software\Avast4\ashServ.exe"
C:\Program Files\Alwil Software\Avast4\ashServ.exe
140664 bytes
Created: 03/11/2006
Modified: 04/12/2007
Company: ALWIL Software
----------
Key: avast! Mail Scanner
ImagePath: "C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe" /service
C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
247160 bytes
Created: 03/11/2006
Modified: 04/12/2007
Company: ALWIL Software
----------
Key: avast! Web Scanner
ImagePath: "C:\Program Files\Alwil Software\Avast4\ashWebSv.exe" /service
C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
345464 bytes
Created: 03/11/2006
Modified: 04/12/2007
Company: ALWIL Software
----------
Key: Cam5603D
ImagePath: System32\Drivers\BisonCam.sys
C:\WINDOWS\System32\Drivers\BisonCam.sys
806272 bytes
Created: 12/05/2006
Modified: 12/05/2006
Company: Bison Electronics. Inc.
----------
Key: cbidf
ImagePath: system32\DRIVERS\cbidf2k.sys
C:\WINDOWS\system32\DRIVERS\cbidf2k.sys
13952 bytes
Created: 05/08/2004
Modified: 05/08/2004
Company: Microsoft Corporation
----------
Key: cd20xrnt
ImagePath: system32\DRIVERS\cd20xrnt.sys
C:\WINDOWS\system32\DRIVERS\cd20xrnt.sys
7680 bytes
Created: 05/08/2004
Modified: 05/08/2004
Company: Microsoft Corporation
----------
Key: CLCapSvc
ImagePath: "C:\Program Files\Acer\Acer Arcade\Kernel\TV\CLCapSvc.exe"
C:\Program Files\Acer\Acer Arcade\Kernel\TV\CLCapSvc.exe
254050 bytes
Created: 27/04/2006
Modified: 27/04/2006
Company:
----------
Key: CLSched
ImagePath: "C:\Program Files\Acer\Acer Arcade\Kernel\TV\CLSched.exe"
C:\Program Files\Acer\Acer Arcade\Kernel\TV\CLSched.exe
114784 bytes
Created: 27/04/2006
Modified: 27/04/2006
Company:
----------
Key: CmdIde
ImagePath: system32\DRIVERS\cmdide.sys
C:\WINDOWS\system32\DRIVERS\cmdide.sys
6656 bytes
Created: 05/08/2004
Modified: 05/08/2004
Company: CMD Technology, Inc.
----------
Key: Cpqarray
ImagePath: system32\DRIVERS\cpqarray.sys
C:\WINDOWS\system32\DRIVERS\cpqarray.sys
14976 bytes
Created: 05/08/2004
Modified: 05/08/2004
Company: Microsoft Corporation
----------
Key: CyberLink Media Library Service
ImagePath: "C:\Program Files\Acer\Acer Arcade\Kernel\CLML_NTService\CLMLServer.exe"
C:\Program Files\Acer\Acer Arcade\Kernel\CLML_NTService\CLMLServer.exe
61440 bytes
Created: 27/04/2006
Modified: 27/04/2006
Company: Cyberlink
----------
Key: dac2w2k
ImagePath: system32\DRIVERS\dac2w2k.sys
C:\WINDOWS\system32\DRIVERS\dac2w2k.sys
179584 bytes
Created: 05/08/2004
Modified: 05/08/2004
Company: Mylex Corporation
----------
Key: dac960nt
ImagePath: system32\DRIVERS\dac960nt.sys
C:\WINDOWS\system32\DRIVERS\dac960nt.sys
14720 bytes
Created: 05/08/2004
Modified: 05/08/2004
Company: Microsoft Corporation
----------
Key: DKbFltr
ImagePath: system32\DRIVERS\DKbFltr.sys
C:\WINDOWS\system32\DRIVERS\DKbFltr.sys
16896 bytes
Created: 09/09/2006
Modified: 07/12/2004
Company: Dritek System Inc.
----------
Key: dpti2o
ImagePath: system32\DRIVERS\dpti2o.sys
C:\WINDOWS\system32\DRIVERS\dpti2o.sys
20192 bytes
Created: 05/08/2004
Modified: 05/08/2004
Company: Microsoft Corporation
----------
Key: DritekPortIO
ImagePath: \??\C:\PROGRA~1\LAUNCH~1\DPortIO.sys
C:\PROGRA~1\LAUNCH~1\DPortIO.sys
13184 bytes
Created: 09/09/2006
Modified: 23/12/2005
Company: Dritek System Inc.
----------
Key: eLock2BurnerLockDriver
ImagePath: \??\C:\WINDOWS\system32\eLock2BurnerLockDriver.sys
C:\WINDOWS\system32\eLock2BurnerLockDriver.sys - this registry value has been removed [file not found to scan]
----------
Key: eLock2FSCTLDriver
ImagePath: \??\C:\WINDOWS\system32\eLock2FSCTLDriver.sys
C:\WINDOWS\system32\eLock2FSCTLDriver.sys - this registry value has been removed [file not found to scan]
----------
Key: EMSCR
ImagePath: system32\DRIVERS\EMS7SK.sys
C:\WINDOWS\system32\DRIVERS\EMS7SK.sys
61056 bytes
Created: 23/03/2006
Modified: 24/05/2006
Company: ENE Technology Inc.
----------
Key: ESDCR
ImagePath: system32\DRIVERS\ESD7SK.sys
C:\WINDOWS\system32\DRIVERS\ESD7SK.sys
40064 bytes
Created: 23/03/2006
Modified: 24/05/2006
Company: ENE Technology Inc.
----------
Key: ESMCR
ImagePath: system32\DRIVERS\ESM7SK.sys
C:\WINDOWS\system32\DRIVERS\ESM7SK.sys
74752 bytes
Created: 23/03/2006
Modified: 24/05/2006
Company: ENE Technology Inc.
----------
Key: Fax
ImagePath: %systemroot%\system32\fxssvc.exe
C:\WINDOWS\system32\fxssvc.exe
268800 bytes
Created: 05/08/2004
Modified: 05/08/2004
Company: Microsoft Corporation
----------
Key: FireHook
ImagePath: system32\DRIVERS\firehook.sys
C:\WINDOWS\system32\DRIVERS\firehook.sys
33856 bytes
Created: 24/10/2006
Modified: 19/09/2003
Company: Networks Associates Technology, Inc.
----------
Key: firelm01
ImagePath: \??\C:\WINDOWS\system32\drivers\firelm01.sys
C:\WINDOWS\system32\drivers\firelm01.sys
18936 bytes
Created: 24/10/2006
Modified: 19/09/2003
Company:
----------
Key: FirePM
ImagePath: system32\Drivers\FirePM.sys
C:\WINDOWS\system32\Drivers\FirePM.sys
100410 bytes
Created: 24/10/2006
Modified: 19/09/2003
Company: Networks Associates Technology, Inc.
----------
Key: FireSvc
ImagePath: C:\appli\DesktopFirewallv8.0\FireSvc.exe
C:\appli\DesktopFirewallv8.0\FireSvc.exe
819259 bytes
Created: 24/10/2006
Modified: 19/09/2003
Company: Networks Associates Technology, Inc.
----------
Key: FireTDI
ImagePath: \??\C:\WINDOWS\system32\Drivers\FireTDI.sys
C:\WINDOWS\system32\Drivers\FireTDI.sys
27707 bytes
Created: 24/10/2006
Modified: 19/09/2003
Company: Networks Associates Technology, Inc.
----------
Key: GEARAspiWDM
ImagePath: SYSTEM32\DRIVERS\GEARAspiWDM.sys
C:\WINDOWS\SYSTEM32\DRIVERS\GEARAspiWDM.sys
15664 bytes
Created: 19/09/2006
Modified: 19/09/2006
Company: GEAR Software Inc.
----------
Key: HDAudBus
ImagePath: system32\DRIVERS\HDAudBus.sys
C:\WINDOWS\system32\DRIVERS\HDAudBus.sys
138752 bytes
Created: 07/01/2005
Modified: 07/01/2005
Company: Windows (R) Server 2003 DDK provider
----------
Key: hpn
ImagePath: system32\DRIVERS\hpn.sys
C:\WINDOWS\system32\DRIVERS\hpn.sys
25952 bytes
Created: 05/08/2004
Modified: 05/08/2004
Company: Microsoft Corporation
----------
Key: HPZid412
ImagePath: system32\DRIVERS\HPZid412.sys
C:\WINDOWS\system32\DRIVERS\HPZid412.sys
-R- 51024 bytes
Created: 18/03/2007
Modified: 09/03/2003
Company: HP
----------
Key: HPZipr12
ImagePath: system32\DRIVERS\HPZipr12.sys
C:\WINDOWS\system32\DRIVERS\HPZipr12.sys
-R- 16080 bytes
Created: 18/03/2007
Modified: 09/03/2003
Company: HP
----------
Key: HPZius12
ImagePath: system32\DRIVERS\HPZius12.sys
C:\WINDOWS\system32\DRIVERS\HPZius12.sys
-R- 21456 bytes
Created: 18/03/2007
Modified: 09/03/2003
Company: HP
----------
Key: HSFHWAZL
ImagePath: system32\DRIVERS\HSFHWAZL.sys
C:\WINDOWS\system32\DRIVERS\HSFHWAZL.sys
208384 bytes
Created: 09/09/2006
Modified: 12/06/2006
Company: Conexant Systems, Inc.
----------
Key: HSF_DPV
ImagePath: system32\DRIVERS\HSF_DPV.sys
C:\WINDOWS\system32\DRIVERS\HSF_DPV.sys
990592 bytes
Created: 09/09/2006
Modified: 12/06/2006
Company: Conexant Systems, Inc.
----------
Key: HSXHWAZL
ImagePath: system32\DRIVERS\HSXHWAZL.sys
C:\WINDOWS\system32\DRIVERS\HSXHWAZL.sys
194048 bytes
Created: 11/01/2006
Modified: 11/01/2006
Company: Conexant Systems, Inc.
----------
Key: i2omp
ImagePath: system32\DRIVERS\i2omp.sys
C:\WINDOWS\system32\DRIVERS\i2omp.sys
18560 bytes
Created: 05/08/2004
Modified: 05/08/2004
Company: Microsoft Corporation
----------
Key: IDriverT
ImagePath: "C:\Program Files\Fichiers communs\InstallShield\Driver\1150\Intel 32\IDriverT.exe"
C:\Program Files\Fichiers communs\InstallShield\Driver\1150\Intel 32\IDriverT.exe
69632 bytes
Created: 14/11/2005
Modified: 14/11/2005
Company: Macrovision Corporation
----------
Key: ini910u
ImagePath: system32\DRIVERS\ini910u.sys
C:\WINDOWS\system32\DRIVERS\ini910u.sys
16000 bytes
Created: 05/08/2004
Modified: 05/08/2004
Company: Microsoft Corporation
----------
Key: int15
ImagePath: \??\C:\WINDOWS\system32\drivers\int15.sys
C:\WINDOWS\system32\drivers\int15.sys
69632 bytes
Created: 20/04/2006
Modified: 02/06/2006
Company:
----------
Key: IntcAzAudAddService
ImagePath: system32\drivers\RtkHDAud.sys
C:\WINDOWS\system32\drivers\RtkHDAud.sys
4304384 bytes
Created: 16/03/2006
Modified: 28/06/2006
Company: Realtek Semiconductor Corp.
----------
Key: iPod Service
ImagePath: "C:\Program Files\iPod\bin\iPodService.exe"
C:\Program Files\iPod\bin\iPodService.exe
504104 bytes
Created: 19/02/2008
Modified: 19/02/2008
Company: Apple Inc.
----------
Key: irsir
ImagePath: system32\DRIVERS\irsir.sys
C:\WINDOWS\system32\DRIVERS\irsir.sys
18688 bytes
Created: 17/08/2001
Modified: 17/08/2001
Company: Microsoft Corporation
----------
Key: LightScribeService
ImagePath: "C:\Program Files\Fichiers communs\LightScribe\LSSrvc.exe"
C:\Program Files\Fichiers communs\LightScribe\LSSrvc.exe
73728 bytes
Created: 17/02/2006
Modified: 17/02/2006
Company: Hewlett-Packard Company
----------
Key: McAfeeFramework
ImagePath: C:\appli\VirusScan71\Common Framework\FrameworkService.exe /ServiceStart
C:\appli\VirusScan71\Common Framework\FrameworkService.exe
106559 bytes
Created: 24/10/2006
Modified: 22/03/2004
Company: Network Associates, Inc.
----------
Key: McShield
ImagePath: "C:\appli\VirusScan71\VirusScan71\mcshield.exe"
C:\appli\VirusScan71\VirusScan71\mcshield.exe
237657 bytes
Created: 29/09/2003
Modified: 29/09/2003
Company: Network Associates, Inc.
----------
Key: McTaskManager
ImagePath: "C:\appli\VirusScan71\VirusScan71\vstskmgr.exe"
C:\appli\VirusScan71\VirusScan71\vstskmgr.exe
69706 bytes
Created: 29/09/2003
Modified: 29/09/2003
Company: Network Associates, Inc.
----------
Key: MDM
ImagePath: "C:\Program Files\Fichiers communs\Microsoft Shared\VS7DEBUG\MDM.EXE"
C:\Program Files\Fichiers communs\Microsoft Shared\VS7DEBUG\MDM.EXE
322120 bytes
Created: 20/06/2003
Modified: 20/06/2003
Company: Microsoft Corporation
----------
Key: mraid35x
ImagePath: system32\DRIVERS\mraid35x.sys
C:\WINDOWS\system32\DRIVERS\mraid35x.sys
17280 bytes
Created: 05/08/2004
Modified: 05/08/2004
Company: American Megatrends Inc.
----------
Key: NaiAvFilter1
ImagePath: system32\drivers\naiavf5x.sys
C:\WINDOWS\system32\drivers\naiavf5x.sys
83008 bytes
Created: 29/09/2003
Modified: 29/09/2003
Company: Network Associates, Inc.
----------
Key: NaiAvFilter101
ImagePath: \Device\NaiAvFilter101.sys
\Device\NaiAvFilter101.sys - this registry value has been removed [file not found to scan]
----------
Key: NTIDrvr
ImagePath: system32\DRIVERS\NTIDrvr.sys
C:\WINDOWS\system32\DRIVERS\NTIDrvr.sys
6144 bytes
Created: 23/05/2006
Modified: 23/05/2006
Company: NewTech Infosystems, Inc.
----------
Key: ose
ImagePath: "C:\Program Files\Fichiers communs\Microsoft Shared\Source Engine\OSE.EXE"
C:\Program Files\Fichiers communs\Microsoft Shared\Source Engine\OSE.EXE
89136 bytes
Created: 28/07/2003
Modified: 28/07/2003
Company: Microsoft Corporation
----------
Key: perc2
ImagePath: system32\DRIVERS\perc2.sys
C:\WINDOWS\system32\DRIVERS\perc2.sys
27296 bytes
Created: 05/08/2004
Modified: 05/08/2004
Company: Microsoft Corporation
----------
Key: perc2hib
ImagePath: system32\DRIVERS\perc2hib.sys
C:\WINDOWS\system32\DRIVERS\perc2hib.sys
5504 bytes
Created: 05/08/2004
Modified: 05/08/2004
Company: Microsoft Corporation
----------
Key: Pml Driver HPZ12
ImagePath: C:\WINDOWS\system32\HPZipm12.exe
C:\WINDOWS\system32\HPZipm12.exe
-R- 65795 bytes
Created: 18/03/2007
Modified: 09/03/2003
Company: HP
----------
Key: psdfilter
ImagePath: \??\C:\WINDOWS\system32\Drivers\psdfilter.sys
C:\WINDOWS\system32\Drivers\psdfilter.sys
12288 bytes
Created: 07/04/2006
Modified: 07/04/2006
Company: HiTRUST
----------
Key: psdvdisk
ImagePath: \??\C:\WINDOWS\system32\Drivers\psdvdisk.sys
C:\WINDOWS\system32\Drivers\psdvdisk.sys
60416 bytes
Created: 08/03/2006
Modified: 08/03/2006
Company: HiTRUST
----------
Key: PxHelp20
ImagePath: System32\Drivers\PxHelp20.sys
C:\WINDOWS\System32\Drivers\PxHelp20.sys
43528 bytes
Created: 04/05/2007
Modified: 27/07/2007
Company: Sonic Solutions
----------
Key: ql1080
ImagePath: system32\DRIVERS\ql1080.sys
C:\WINDOWS\system32\DRIVERS\ql1080.sys
40320 bytes
Created: 05/08/2004
Modified: 05/08/2004
Company: QLogic Corporation
----------
Key: Ql10wnt
ImagePath: system32\DRIVERS\ql10wnt.sys
C:\WINDOWS\system32\DRIVERS\ql10wnt.sys
33152 bytes
Created: 05/08/2004
Modified: 05/08/2004
Company: Microsoft Corporation
----------
Key: ql12160
ImagePath: system32\DRIVERS\ql12160.sys
C:\WINDOWS\system32\DRIVERS\ql12160.sys
45312 bytes
Created: 05/08/2004
Modified: 05/08/2004
Company: QLogic Corporation
----------
Key: ql1240
ImagePath: system32\DRIVERS\ql1240.sys
C:\WINDOWS\system32\DRIVERS\ql1240.sys
40448 bytes
Created: 05/08/2004
Modified: 05/08/2004
Company: Microsoft Corporation
----------
Key: ql1280
ImagePath: system32\DRIVERS\ql1280.sys
C:\WINDOWS\system32\DRIVERS\ql1280.sys
49024 bytes
Created: 05/08/2004
Modified: 05/08/2004
Company: QLogic Corporation
----------
Key: RichVideo
ImagePath: "C:\Program Files\CyberLink\Shared Files\RichVideo.exe"
C:\Program Files\CyberLink\Shared Files\RichVideo.exe
143360 bytes
Created: 21/01/2005
Modified: 21/01/2005
Company:
----------
Key: Secdrv
ImagePath: system32\DRIVERS\secdrv.sys
C:\WINDOWS\system32\DRIVERS\secdrv.sys
20480 bytes
Created: 05/08/2004
Modified: 13/11/2007
Company: Macrovision Corporation, Macrovision Europe Limited, and Macrovision Japan and Asia K.K.
----------
Key: sisagp
ImagePath: system32\DRIVERS\sisagp.sys
C:\WINDOWS\system32\DRIVERS\sisagp.sys
41088 bytes
Created: 03/08/2004
Modified: 03/08/2004
Company: Silicon Integrated Systems Corporation
----------
Key: SMCIRDA
ImagePath: system32\DRIVERS\smcirda.sys
C:\WINDOWS\system32\DRIVERS\smcirda.sys
46592 bytes
Created: 09/12/2004
Modified: 09/12/2004
Company: SMSC
----------
Key: Sparrow
ImagePath: system32\DRIVERS\sparrow.sys
C:\WINDOWS\system32\DRIVERS\sparrow.sys
19072 bytes
Created: 05/08/2004
Modified: 05/08/2004
Company: Adaptec, Inc.
----------
Key: sptd
ImagePath: System32\Drivers\sptd.sys - this file is globally excluded
----------
Key: SpyFighter
ImagePath: \??\C:\Program Files\SPYWAREfighter\spyfighter.sys
C:\Program Files\SPYWAREfighter\spyfighter.sys
8336 bytes
Created: 21/02/2008
Modified: 21/02/2008
Company:
----------
Key: SPYWAREfighterRP
ImagePath: "C:\Program Files\SPYWAREfighter\spfprc.exe"
C:\Program Files\SPYWAREfighter\spfprc.exe
406160 bytes
Created: 21/02/2008
Modified: 21/02/2008
Company: SpamFighter APS
----------
Key: SwPrv
ImagePath: C:\WINDOWS\system32\dllhost.exe /Processid:{93C7265F-612A-4275-9532-A9079D6CDE90}
C:\WINDOWS\system32\dllhost.exe
5120 bytes
Created: 05/08/2004
Modified: 05/08/2004
Company: Microsoft Corporation
----------
Key: symc810
ImagePath: system32\DRIVERS\symc810.sys
C:\WINDOWS\system32\DRIVERS\symc810.sys
16256 bytes
Created: 05/08/2004
Modified: 05/08/2004
Company: Symbios Logic Inc.
----------
Key: symc8xx
ImagePath: system32\DRIVERS\symc8xx.sys
C:\WINDOWS\system32\DRIVERS\symc8xx.sys
32640 bytes
Created: 05/08/2004
Modified: 05/08/2004
Company: LSI Logic
----------
Key: sym_hi
ImagePath: system32\DRIVERS\sym_hi.sys
C:\WINDOWS\system32\DRIVERS\sym_hi.sys
28384 bytes
Created: 05/08/2004
Modified: 05/08/2004
Company: LSI Logic
----------
Key: sym_u3
ImagePath: system32\DRIVERS\sym_u3.sys
C:\WINDOWS\system32\DRIVERS\sym_u3.sys
30688 bytes
Created: 05/08/2004
Modified: 05/08/2004
Company: LSI Logic
----------
Key: SynTP
ImagePath: system32\DRIVERS\SynTP.sys
C:\WINDOWS\system32\DRIVERS\SynTP.sys
192672 bytes
Created: 19/10/2006
Modified: 03/03/2006
Company: Synaptics, Inc.
----------
Key: TosIde
ImagePath: system32\DRIVERS\toside.sys
C:\WINDOWS\system32\DRIVERS\toside.sys
4992 bytes
Created: 05/08/2004
Modified: 05/08/2004
Company: Microsoft Corporation
----------
Key: tvicport
ImagePath: \??\C:\WINDOWS\system32\drivers\tvicport.sys
C:\WINDOWS\system32\drivers\tvicport.sys
14544 bytes
Created: 20/04/2006
Modified: 02/06/2006
Company: EnTech Taiwan
----------
Key: ultra
ImagePath: system32\DRIVERS\ultra.sys
C:\WINDOWS\system32\DRIVERS\ultra.sys
36736 bytes
Created: 05/08/2004
Modified: 05/08/2004
Company: Promise Technology, Inc.
----------
Key: UMAXPCLS
ImagePath: system32\DRIVERS\umaxpcls.sys
C:\WINDOWS\system32\DRIVERS\umaxpcls.sys
22912 bytes
Created: 29/04/2007
Modified: 17/08/2001
Company: Microsoft Corporation
----------
Key: USBAAPL
ImagePath: System32\Drivers\usbaapl.sys
C:\WINDOWS\System32\Drivers\usbaapl.sys
30464 bytes
Created: 08/09/2007
Modified: 31/10/2007
Company: Apple, Inc.
----------
Key: usnjsvc
ImagePath: "C:\Program Files\Windows Live\Messenger\usnsvc.exe"
C:\Program Files\Windows Live\Messenger\usnsvc.exe
98328 bytes
Created: 18/10/2007
Modified: 18/10/2007
Company: Microsoft Corporation
----------
Key: viaagp
ImagePath: system32\DRIVERS\viaagp.sys
C:\WINDOWS\system32\DRIVERS\viaagp.sys
42240 bytes
Created: 03/08/2004
Modified: 03/08/2004
Company: Microsoft Corporation
----------
Key: winachsf
ImagePath: system32\DRIVERS\HSF_CNXT.sys
C:\WINDOWS\system32\DRIVERS\HSF_CNXT.sys
727808 bytes
Created: 09/09/2006
Modified: 12/06/2006
Company: Conexant Systems, Inc.
----------
Key: WpdUsb
ImagePath: system32\DRIVERS\wpdusb.sys
C:\WINDOWS\system32\DRIVERS\wpdusb.sys
38528 bytes
Created: 28/01/2005
Modified: 18/10/2006
Company: Microsoft Corporation
----------
Key: zntport
ImagePath: \??\C:\WINDOWS\system32\drivers\zntport.sys
C:\WINDOWS\system32\drivers\zntport.sys
6080 bytes
Created: 20/04/2006
Modified: 02/06/2006
Company: Zeal SoftStudio
----------
**************************************************
17:02:20: Scanning -----VXD ENTRIES-----
**************************************************
17:02:20: Scanning ----- WINLOGON\NOTIFY DLLS -----
Key: AtiExtEvent
DLL: Ati2evxx.dll
C:\WINDOWS\system32\Ati2evxx.dll
61440 bytes
Created: 27/04/2006
Modified: 27/04/2006
Company: ATI Technologies Inc.
----------
**************************************************
17:02:21: Scanning ----- CONTEXTMENUHANDLERS -----
Key: avast
CLSID: {472083B0-C522-11CF-8763-00608CC02F24}
Path: C:\Program Files\Alwil Software\Avast4\ashShell.dll
C:\Program Files\Alwil Software\Avast4\ashShell.dll
75128 bytes
Created: 03/11/2006
Modified: 04/12/2007
Company: ALWIL Software
----------
Key: EDSshellExt
CLSID: {29FF7AB0-BE34-4992-A30B-53A9D86EE239}
Path: C:\WINDOWS\system32\eDSshellExt.dll
C:\WINDOWS\system32\eDSshellExt.dll
73728 bytes
Created: 08/03/2006
Modified: 08/03/2006
Company: HiTRUST
----------
Key: Fichiers hors connexion
CLSID: {750fdf0e-2a26-11d1-a3ea-080036587f03}
Path: %SystemRoot%\System32\cscui.dll
C:\WINDOWS\System32\cscui.dll
337920 bytes
Created: 05/08/2004
Modified: 05/08/2004
Company: Microsoft Corporation
----------
Key: Open With
CLSID: {09799AFB-AD67-11d1-ABCD-00C04FC30936}
Path: %SystemRoot%\system32\SHELL32.dll
C:\WINDOWS\system32\SHELL32.dll
8516608 bytes
Created: 05/08/2004
Modified: 25/10/2007
Company: Microsoft Corporation
----------
Key: Open With EncryptionMenu
CLSID: {A470F8CF-A1E8-4f65-8335-227475AA5C46}
Path: %SystemRoot%\system32\SHELL32.dll
C:\WINDOWS\system32\SHELL32.dll
8516608 bytes
Created: 05/08/2004
Modified: 25/10/2007
Company: Microsoft Corporation
----------
Key: SPYWAREfighter
CLSID: {44CB577A-837C-4C36-9C8D-80A1639B9333}
Path: C:\Program Files\SPYWAREfighter\spfext.dll
C:\Program Files\SPYWAREfighter\spfext.dll
123536 bytes
Created: 21/02/2008
Modified: 21/02/2008
Company: Spamfighter
----------
Key: Trojan Remover
CLSID: {52B87208-9CCF-42C9-B88E-069281105805}
Path: C:\PROGRA~1\TROJAN~1\Trshlex.dll
C:\PROGRA~1\TROJAN~1\Trshlex.dll
467552 bytes
Created: 27/02/2008
Modified: 05/02/2007
Company: Simply Super Software
----------
Key: VirusScan
CLSID: {cda2863e-2497-4c49-9b89-06840e070a87}
Path: C:\appli\VirusScan71\VirusScan71\shext.dll
C:\appli\VirusScan71\VirusScan71\shext.dll
28727 bytes
Created: 29/09/2003
Modified: 29/09/2003
Company: Network Associates, Inc.
----------
Key: WinRAR
CLSID: {B41DB860-8EE4-11D2-9906-E49FADC173CA}
Path: C:\Program Files\WinRAR\rarext.dll
C:\Program Files\WinRAR\rarext.dll
126464 bytes
Created: 18/01/2007
Modified: 03/12/2006
Company:
----------
Key: {a2a9545d-a0c2-42b4-9708-a0b2badd77c8}
Path: %SystemRoot%\system32\SHELL32.dll
C:\WINDOWS\system32\SHELL32.dll
8516608 bytes
Created: 05/08/2004
Modified: 25/10/2007
Company: Microsoft Corporation
----------
**************************************************
17:02:22: Scanning ----- FOLDER\COLUMNHANDLERS -----
Key: {0D2E74C4-3C34-11d2-A27E-00C04FC30871}
File: %SystemRoot%\system32\SHELL32.dll
C:\WINDOWS\system32\SHELL32.dll
8516608 bytes
Created: 05/08/2004
Modified: 25/10/2007
Company: Microsoft Corporation
----------
Key: {24F14F01-7B1C-11d1-838f-0000F80461CF}
File: %SystemRoot%\system32\SHELL32.dll
C:\WINDOWS\system32\SHELL32.dll
8516608 bytes
Created: 05/08/2004
Modified: 25/10/2007
Company: Microsoft Corporation
----------
Key: {24F14F02-7B1C-11d1-838f-0000F80461CF}
File: %SystemRoot%\system32\SHELL32.dll
C:\WINDOWS\system32\SHELL32.dll
8516608 bytes
Created: 05/08/2004
Modified: 25/10/2007
Company: Microsoft Corporation
----------
Key: {66742402-F9B9-11D1-A202-0000F81FEDEE}
File: %SystemRoot%\system32\SHELL32.dll
C:\WINDOWS\system32\SHELL32.dll
8516608 bytes
Created: 05/08/2004
Modified: 25/10/2007
Company: Microsoft Corporation
----------
Key: {F9DB5320-233E-11D1-9F84-707F02C10627}
File: C:\Program Files\Fichiers communs\Adobe\Acrobat\ActiveX\PDFShell.dll
C:\Program Files\Fichiers communs\Adobe\Acrobat\ActiveX\PDFShell.dll
372736 bytes
Created: 10/05/2007
Modified: 10/05/2007
Company: Adobe Systems, Inc.
----------
**************************************************
17:02:22: Scanning ----- BROWSER HELPER OBJECTS -----
Key: {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3}
BHO: C:\Program Files\Fichiers communs\Adobe\Acrobat\ActiveX\AcroIEHelper.dll
C:\Program Files\Fichiers communs\Adobe\Acrobat\ActiveX\AcroIEHelper.dll
62080 bytes
Created: 22/10/2006
Modified: 22/10/2006
Company: Adobe Systems Incorporated
----------
Key: {53707962-6F74-2D53-2644-206D7942484F}
BHO: C:\PROGRA~1\SPYBOT~1\SDHelper.dll
C:\PROGRA~1\SPYBOT~1\SDHelper.dll
853672 bytes
Created: 25/10/2006
Modified: 31/05/2005
Company: Safer Networking Limited
----------
Key: {9030D464-4C02-4ABF-8ECC-5164760863C6}
BHO: C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
328752 bytes
Created: 20/09/2007
Modified: 20/09/2007
Company: Microsoft Corporation
----------
**************************************************
17:02:23: Scanning ----- SHELLSERVICEOBJECTS -----
Key: PostBootReminder
CLSID: {7849596a-48ea-486e-8937-a2a3009f31a9}
Path: %SystemRoot%\system32\SHELL32.dll
C:\WINDOWS\system32\SHELL32.dll
8516608 bytes
Created: 05/08/2004
Modified: 25/10/2007
Company: Microsoft Corporation
----------
Key: CDBurn
CLSID: {fbeb8a05-beee-4442-804e-409d6c4515e9}
Path: %SystemRoot%\system32\SHELL32.dll
C:\WINDOWS\system32\SHELL32.dll
8516608 bytes
Created: 05/08/2004
Modified: 25/10/2007
Company: Microsoft Corporation
----------
Key: WebCheck
CLSID: {E6FB5E20-DE35-11CF-9C87-00AA005127ED}
Path: C:\WINDOWS\system32\webcheck.dll
C:\WINDOWS\system32\webcheck.dll
233472 bytes
Created: 05/08/2004
Modified: 07/12/2007
Company: Microsoft Corporation
----------
Key: SysTray
CLSID: {35CEC8A3-2BE6-11D2-8773-92E220524153}
Path: C:\WINDOWS\system32\stobject.dll
C:\WINDOWS\system32\stobject.dll
122368 bytes
Created: 05/08/2004
Modified: 05/08/2004
Company: Microsoft Corporation
----------
Key: WPDShServiceObj
CLSID: {AAA288BA-9A4C-45B0-95D7-94D524869DB5}
Path: C:\WINDOWS\system32\WPDShServiceObj.dll
C:\WINDOWS\system32\WPDShServiceObj.dll
133632 bytes
Created: 18/10/2006
Modified: 18/10/2006
Company: Microsoft Corporation
----------
**************************************************
17:02:23: Scanning ----- SHAREDTASKSCHEDULER ENTRIES -----
Value: {438755C2-A8BA-11D1-B96B-00A0C90312E1}
Comment: Pré-chargeur Browseui
File: %SystemRoot%\system32\browseui.dll
C:\WINDOWS\system32\browseui.dll
1022976 bytes
Created: 09/01/2006
Modified: 23/09/2006
Company: Microsoft Corporation
----------
Value: {8C7461EF-2B13-11d2-BE35-3078302C2030}
Comment: Démon de cache des catégories de composant
File: %SystemRoot%\system32\browseui.dll
C:\WINDOWS\system32\browseui.dll
1022976 bytes
Created: 09/01/2006
Modified: 23/09/2006
Company: Microsoft Corporation
----------
**************************************************
17:02:23: Scanning ----- IMAGEFILE DEBUGGERS -----
No "Debugger" entries found.
**************************************************
17:02:23: Scanning ----- APPINIT_DLLS -----
The AppInit_DLLs value is blank
**************************************************
17:02:24: Scanning ----- SECURITY PROVIDER DLLS -----
DLL: msapsspc.dll
C:\WINDOWS\system32\msapsspc.dll
86016 bytes
Created: 05/08/2004
Modified: 05/08/2004
Company: Microsoft Corporation
----------
DLL: schannel.dll
C:\WINDOWS\system32\schannel.dll
144896 bytes
Created: 05/08/2004
Modified: 25/04/2007
Company: Microsoft Corporation
----------
DLL: digest.dll
C:\WINDOWS\system32\digest.dll
68608 bytes
Created: 05/08/2004
Modified: 05/08/2004
Company: Microsoft Corporation
----------
DLL: msnsspc.dll
C:\WINDOWS\system32\msnsspc.dll
290816 bytes
Created: 05/08/2004
Modified: 05/08/2004
Company: Microsoft Corporation
----------
**************************************************
17:02:24: Scanning ------ COMMON STARTUP GROUP ------
[C:\Documents and Settings\All Users\Menu Démarrer\Programmes\Démarrage]
The Common Startup Group attempts to load the following file(s) at boot time:
C:\Documents and Settings\All Users\Menu Démarrer\Programmes\Démarrage\desktop.ini
-HS- 84 bytes
Created: 23/05/2006
Modified: 23/05/2006
Company:
--------------------
C:\Acer\Empowering Technology\Acer.Empowering.Framework.Launcher.exe
45056 bytes
Created: 27/03/2006
Modified: 29/06/2006
Company: Acer Inc.
Acer Empowering Technology.lnk - links to C:\Acer\Empowering Technology\Acer.Empowering.Framework.Launcher.exe
--------------------
C:\appli\DesktopFirewallv8.0\FireTray.exe
675900 bytes
Created: 24/10/2006
Modified: 19/09/2003
Company: Networks Associates Technology, Inc.
McAfee Desktop Firewall Tray.lnk - links to C:\appli\DesktopFirewallv8.0\FireTray.exe
--------------------
C:\Program Files\Hewlett-Packard\Digital Imaging\bin\hpotdd01.exe
28672 bytes
Created: 06/04/2003
Modified: 06/04/2003
Company: Hewlett-Packard
hpoddt01.exe.lnk - links to C:\Program Files\Hewlett-Packard\Digital Imaging\bin\hpotdd01.exe
--------------------
**************************************************
No User Startup Groups were located to check
**************************************************
17:02:25: Scanning ----- SCHEDULED TASKS -----
Taskname: FRU Task #Hewlett-Packard#hp psc 1200 series#1174240505.job
File: C:\Program Files\Hewlett-Packard\Digital Imaging\Bin\hpqfrucl.exe
C:\Program Files\Hewlett-Packard\Digital Imaging\Bin\hpqfrucl.exe
61440 bytes
Created: 06/04/2003
Modified: 06/04/2003
Company:
Parameters: -I "#Hewlett-Packard#hp psc 1200 series#1174240505"
Next Run Time: Never
Status: La tâche est prête à s'exécuter à l'heure prévue
Creator: moi
Comments: [blank]
----------
Taskname: AppleSoftwareUpdate.job
File: C:\Program Files\Apple Software Update\SoftwareUpdate.exe
C:\Program Files\Apple Software Update\SoftwareUpdate.exe
558424 bytes
Created: 29/08/2007
Modified: 29/08/2007
Company: Apple Inc.
Parameters: -task
Next Run Time: 03/03/2008 21:42:00
Status: La tâche est prête à s'exécuter à l'heure prévue
Creator: SYSTEM
Comments: [blank]
----------
**************************************************
17:02:25: ----- ADDITIONAL CHECKS -----
PE386 rootkit checks completed
----------
Winlogon registry rootkit checks completed
----------
Heuristic checks for hidden files/drivers completed
----------
Layered Service Provider entries checks completed
---------
Windows Explorer Policies checks completed
----------
Desktop Wallpaper: C:\Documents and Settings\moi\Local Settings\Application Data\Microsoft\Wallpaper1.bmp
C:\Documents and Settings\moi\Local Settings\Application Data\Microsoft\Wallpaper1.bmp
17842230 bytes
Created: 20/10/2006
Modified: 20/01/2008
Company:
----------
Additional file checks completed
---------
**************************************************
17:02:26: Scanning ----- RUNNING PROCESSES -----
[Only loaded modules not scanned already
during this scan will be scanned here]
C:\WINDOWS\System32\smss.exe
[1 loaded module]
--------------------
C:\WINDOWS\system32\csrss.exe
[13 loaded modules in total]
--------------------
C:\WINDOWS\system32\winlogon.exe
[67 loaded modules in total]
--------------------
C:\WINDOWS\system32\services.exe
[28 loaded modules in total]
--------------------
C:\WINDOWS\system32\lsass.exe
[59 loaded modules in total]
--------------------
C:\WINDOWS\system32\Ati2evxx.exe
[16 loaded modules in total]
--------------------
C:\WINDOWS\system32\svchost.exe
[53 loaded modules in total]
--------------------
C:\WINDOWS\system32\svchost.exe
[40 loaded modules in total]
--------------------
C:\WINDOWS\System32\svchost.exe
[164 loaded modules in total]
--------------------
C:\WINDOWS\system32\svchost.exe
[31 loaded modules in total]
--------------------
C:\WINDOWS\system32\svchost.exe
[31 loaded modules in total]
--------------------
C:\WINDOWS\system32\svchost.exe
[48 loaded modules in total]
--------------------
C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
[18 loaded modules in total]
--------------------
C:\Program Files\Alwil Software\Avast4\ashServ.exe
[59 loaded modules in total]
--------------------
C:\WINDOWS\system32\Ati2evxx.exe
[35 loaded modules in total]
--------------------
C:\WINDOWS\Explorer.EXE
[133 loaded modules in total]
--------------------
C:\WINDOWS\system32\spoolsv.exe
[54 loaded modules in total]
--------------------
C:\Acer\Empowering Technology\ePerformance\MemCheck.exe
[62 loaded modules in total]
--------------------
C:\Program Files\Acer\Acer Arcade\PCMService.exe
[72 loaded modules in total]
--------------------
C:\Program Files\ATI Technologies\ATI.ACE\cli.exe
[176 loaded modules in total]
--------------------
C:\Acer\Empowering Technology\eDataSecurity\eDSloader.exe
[46 loaded modules in total]
--------------------
C:\Acer\Empowering Technology\ePower\ePower_DMC.exe
[73 loaded modules in total]
--------------------
C:\WINDOWS\RTHDCPL.EXE
[46 loaded modules in total]
--------------------
C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
[36 loaded modules in total]
--------------------
C:\PROGRA~1\LAUNCH~1\LManager.exe
[65 loaded modules in total]
--------------------
C:\Acer\Empowering Technology\eRecovery\eRAgent.exe
[49 loaded modules in total]
--------------------
C:\appli\VirusScan71\VirusScan71\SHSTAT.EXE
[41 loaded modules in total]
--------------------
C:\appli\VirusScan71\Common Framework\UpdaterUI.exe
[45 loaded modules in total]
--------------------
C:\Program Files\Fichiers communs\Network Associates\TalkBack\TBMon.exe
[30 loaded modules in total]
--------------------
C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
[55 loaded modules in total]
--------------------
C:\Program Files\iTunes\iTunesHelper.exe
[63 loaded modules in total]
--------------------
C:\WINDOWS\system32\ctfmon.exe
[34 loaded modules in total]
--------------------
C:\Acer\Empowering Technology\Acer.Empowering.Framework.Launcher.exe
[155 loaded modules in total]
--------------------
C:\appli\DesktopFirewallv8.0\FireTray.exe
[43 loaded modules in total]
--------------------
C:\Program Files\Hewlett-Packard\Digital Imaging\bin\hpotdd01.exe
[37 loaded modules in total]
--------------------
C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
[21 loaded modules in total]
--------------------
C:\Program Files\Acer\Acer Arcade\Kernel\TV\CLCapSvc.exe
[52 loaded modules in total]
--------------------
C:\Program Files\Acer\Acer Arcade\Kernel\CLML_NTService\CLMLServer.exe
[10 loaded modules in total]
--------------------
C:\Program Files\Acer\Acer Arcade\Kernel\CLML_NTService\CLMLService.exe
[24 loaded modules in total]
--------------------
C:\Program Files\Stardock\ObjectDock\ObjectDock.exe
[87 loaded modules in total]
--------------------
C:\appli\DesktopFirewallv8.0\FireSvc.exe
[34 loaded modules in total]
--------------------
C:\Program Files\Fichiers communs\LightScribe\LSSrvc.exe
[17 loaded modules in total]
--------------------
C:\appli\VirusScan71\Common Framework\FrameworkService.exe
[66 loaded modules in total]
--------------------
C:\appli\VirusScan71\VirusScan71\mcshield.exe
[47 loaded modules in total]
--------------------
C:\appli\VIRUSS~1\COMMON~1\naPrdMgr.exe
[51 loaded modules in total]
--------------------
C:\appli\VirusScan71\VirusScan71\vstskmgr.exe
[46 loaded modules in total]
--------------------
C:\Program Files\Fichiers communs\Microsoft Shared\VS7DEBUG\MDM.EXE
[22 loaded modules in total]
--------------------
C:\Program Files\CyberLink\Shared Files\RichVideo.exe
[22 loaded modules in total]
--------------------
C:\WINDOWS\system32\svchost.exe
[44 loaded modules in total]
--------------------
C:\Program Files\Acer\Acer Arcade\Kernel\TV\CLSched.exe
[29 loaded modules in total]
--------------------
C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
[50 loaded modules in total]
--------------------
C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
[44 loaded modules in total]
--------------------
C:\WINDOWS\system32\wbem\wmiprvse.exe
[60 loaded modules in total]
--------------------
C:\Program Files\iPod\bin\iPodService.exe
[30 loaded modules in total]
--------------------
C:\WINDOWS\system32\wbem\wmiprvse.exe
[43 loaded modules in total]
--------------------
C:\WINDOWS\system32\wbem\wmiapsrv.exe
[46 loaded modules in total]
--------------------
C:\WINDOWS\system32\wbem\unsecapp.exe
[47 loaded modules in total]
--------------------
C:\WINDOWS\System32\alg.exe
[33 loaded modules in total]
--------------------
C:\Program Files\ATI Technologies\ATI.ACE\cli.exe
[95 loaded modules in total]
--------------------
C:\Program Files\ATI Technologies\ATI.ACE\cli.exe
[157 loaded modules in total]
--------------------
C:\WINDOWS\system32\taskmgr.exe
[49 loaded modules in total]
--------------------
C:\appli\office 2003\OFFICE11\WINWORD.EXE
[61 loaded modules in total]
--------------------
C:\Program Files\eMule\emule.exe
[87 loaded modules in total]
--------------------
C:\Program Files\Windows Live\Messenger\msnmsgr.exe
[136 loaded modules in total]
--------------------
C:\Program Files\Internet Explorer\IEXPLORE.EXE
[124 loaded modules in total]
--------------------
C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WLLoginProxy.exe
[55 loaded modules in total]
--------------------
C:\Program Files\Adobe\Reader 8.0\Reader\AcroRd32.exe
[102 loaded modules in total]
--------------------
C:\WINDOWS\system32\msiexec.exe
[64 loaded modules in total]
--------------------
C:\Program Files\SPYWAREfighter\spftray.exe
[42 loaded modules in total]
--------------------
C:\Program Files\SPYWAREfighter\spfprc.exe
[52 loaded modules in total]
--------------------
C:\Program Files\SPYWAREfighter\SPYWAREfighter.exe
[58 loaded modules in total]
--------------------
C:\Documents and Settings\moi\Application Data\Simply Super Software\Trojan Remover\qyp77.exe
FileSize: 2511424
[This is a Trojan Remover component]
[35 loaded modules in total]
--------------------
**************************************************
17:06:30: Checking AUTOEXEC.BAT file
AUTOEXEC.BAT found in C:\
No malicious entries were found in the AUTOEXEC.BAT file
**************************************************
17:06:30: Checking AUTOEXEC.NT file
AUTOEXEC.NT found in C:\WINDOWS\system32
No malicious entries were found in the AUTOEXEC.NT file
**************************************************
17:06:31: Checking HOSTS file
No malicious entries were found in the HOSTS file
**************************************************
------ INTERNET EXPLORER HOME/START/SEARCH SETTINGS ------
HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Main\"Start Page":
https://www.msn.com/fr-fr/?ocid=iehp
HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Main\"Local Page":
%SystemRoot%\system32\blank.htm
HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Main\"Search Page":
http://go.microsoft.com
Trojan Remover Ver 6.6.7.2517. For information, email support@simplysup1.com
[Unregistered version]
Scan started at: 27/02/2008 17:00:51
Using Database v6942
Operating System: Windows XP SP2 [Windows XP Home Edition Service Pack 2 (Build 2600)]
File System: FAT32
Data directory: C:\Documents and Settings\moi\Application Data\Simply Super Software\Trojan Remover\
Logfile directory: C:\Documents and Settings\moi\Mes documents\Simply Super Software\Trojan Remover Logfiles\
Program directory: C:\Program Files\Trojan Remover\
Running with Administrator privileges
**************************************************
**************************************************
17:00:51: Scanning ----------WIN.INI-----------
WIN.INI found in C:\WINDOWS
**************************************************
17:00:51: Scanning --------SYSTEM.INI---------
SYSTEM.INI found in C:\WINDOWS
**************************************************
17:00:52: ----- SCANNING FOR ROOTKIT SERVICES -----
No hidden Services were detected.
**************************************************
17:00:52: Scanning -----WINDOWS REGISTRY-----
--------------------
Checking HKCU\SOFTWARE\Microsoft\Windows NT\CurrentVersion\WinLogon
--------------------
Checking HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\WinLogon
This key's "Shell" value calls the following program(s):
File: Explorer.exe
C:\WINDOWS\Explorer.exe
1037312 bytes
Created: 05/08/2004
Modified: 13/06/2007
Company: Microsoft Corporation
----------
This key's "Userinit" value calls the following program(s):
File: C:\WINDOWS\system32\userinit.exe
C:\WINDOWS\system32\userinit.exe
25088 bytes
Created: 05/08/2004
Modified: 05/08/2004
Company: Microsoft Corporation
----------
This key's "System" value appears to be blank
----------
This key's "UIHost" value calls the following program:
File: logonui.exe
C:\WINDOWS\system32\logonui.exe
515584 bytes
Created: 05/08/2004
Modified: 05/08/2004
Company: Microsoft Corporation
----------
--------------------
Checking HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows
--------------------
Checking HKCU\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows
Value Name: load
--------------------
Checking HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run
Value Name: LaunchApp
Value Data:
The Value Data for this entry appears to be blank
--------------------
Value Name: AzMixerSel
Value Data: C:\Program Files\Realtek\InstallShield\AzMixerSel.exe
C:\Program Files\Realtek\InstallShield\AzMixerSel.exe
53248 bytes
Created: 19/10/2006
Modified: 14/04/2006
Company: Realtek Semiconductor Corp.
--------------------
Value Name: PCMService
Value Data: "C:\Program Files\Acer\Acer Arcade\PCMService.exe"
C:\Program Files\Acer\Acer Arcade\PCMService.exe
151552 bytes
Created: 27/04/2006
Modified: 27/04/2006
Company: CyberLink Corp.
--------------------
Value Name: ntiMUI
Value Data: C:\Program Files\NewTech Infosystems\NTI CD & DVD-Maker 7\ntiMUI.exe
C:\Program Files\NewTech Infosystems\NTI CD & DVD-Maker 7\ntiMUI.exe
45056 bytes
Created: 11/05/2005
Modified: 11/05/2005
Company:
--------------------
Value Name: Acer ePresentation HPD
Value Data: C:\Acer\Empowering Technology\ePresentation\ePresentation.exe
C:\Acer\Empowering Technology\ePresentation\ePresentation.exe
204800 bytes
Created: 31/03/2006
Modified: 31/03/2006
Company:
--------------------
Value Name: IMJPMIG8.1
Value Data: "C:\WINDOWS\IME\imjp8_1\IMJPMIG.EXE" /Spoil /RemAdvDef /Migration32
C:\WINDOWS\IME\imjp8_1\IMJPMIG.EXE
208952 bytes
Created: 05/08/2004
Modified: 05/08/2004
Company: Microsoft Corporation
--------------------
Value Name: MSPY2002
Value Data: C:\WINDOWS\system32\IME\PINTLGNT\ImScInst.exe /SYNC
C:\WINDOWS\system32\IME\PINTLGNT\ImScInst.exe
59392 bytes
Created: 05/08/2004
Modified: 05/08/2004
Company:
--------------------
Value Name: PHIME2002ASync
Value Data: C:\WINDOWS\system32\IME\TINTLGNT\TINTSETP.EXE /SYNC
C:\WINDOWS\system32\IME\TINTLGNT\TINTSETP.EXE
455168 bytes
Created: 05/08/2004
Modified: 05/08/2004
Company: Microsoft Corporation
--------------------
Value Name: PHIME2002A
Value Data: C:\WINDOWS\system32\IME\TINTLGNT\TINTSETP.EXE /IMEName
C:\WINDOWS\system32\IME\TINTLGNT\TINTSETP.EXE
455168 bytes
Created: 05/08/2004
Modified: 05/08/2004
Company: Microsoft Corporation
--------------------
Value Name: ATICCC
Value Data: "C:\Program Files\ATI Technologies\ATI.ACE\cli.exe" runtime -Delay
C:\Program Files\ATI Technologies\ATI.ACE\cli.exe
45056 bytes
Created: 02/01/2006
Modified: 02/01/2006
Company: ATI Technologies Inc.
--------------------
Value Name: eDataSecurity Loader
Value Data: C:\Acer\Empowering Technology\eDataSecurity\eDSloader.exe 1
C:\Acer\Empowering Technology\eDataSecurity\eDSloader.exe
345088 bytes
Created: 17/03/2006
Modified: 17/03/2006
Company: HiTRUST
--------------------
Value Name: ePower_DMC
Value Data: C:\Acer\Empowering Technology\ePower\ePower_DMC.exe
C:\Acer\Empowering Technology\ePower\ePower_DMC.exe
421888 bytes
Created: 19/10/2006
Modified: 30/05/2006
Company:
--------------------
Value Name: Boot
Value Data: C:\Acer\Empowering Technology\ePower\Boot.exe
C:\Acer\Empowering Technology\ePower\Boot.exe
579584 bytes
Created: 19/10/2006
Modified: 15/03/2006
Company:
--------------------
Value Name: RTHDCPL
Value Data: RTHDCPL.EXE
C:\WINDOWS\RTHDCPL.EXE
16248320 bytes
Created: 14/03/2006
Modified: 27/06/2006
Company: Realtek Semiconductor Corp.
--------------------
Value Name: SkyTel
Value Data: SkyTel.EXE
C:\WINDOWS\SkyTel.EXE
2879488 bytes
Created: 19/10/2006
Modified: 16/05/2006
Company: Realtek Semiconductor Corp.
--------------------
Value Name: Alcmtr
Value Data: ALCMTR.EXE
C:\WINDOWS\ALCMTR.EXE
69632 bytes
Created: 19/10/2006
Modified: 03/05/2005
Company: Realtek Semiconductor Corp.
--------------------
Value Name: SynTPEnh
Value Data: C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
761946 bytes
Created: 19/10/2006
Modified: 03/03/2006
Company: Synaptics, Inc.
--------------------
Value Name: LManager
Value Data: C:\PROGRA~1\LAUNCH~1\LManager.exe
C:\PROGRA~1\LAUNCH~1\LManager.exe
602112 bytes
Created: 09/09/2006
Modified: 23/06/2006
Company: Dritek System Inc.
--------------------
Value Name: eRecoveryService
Value Data: C:\Acer\Empowering Technology\eRecovery\eRAgent.exe
C:\Acer\Empowering Technology\eRecovery\eRAgent.exe
413696 bytes
Created: 19/10/2006
Modified: 01/06/2006
Company: Acer Inc.
--------------------
Value Name: ShStatEXE
Value Data: "C:\appli\VirusScan71\VirusScan71\SHSTAT.EXE" /STANDALONE
C:\appli\VirusScan71\VirusScan71\SHSTAT.EXE
81990 bytes
Created: 29/09/2003
Modified: 29/09/2003
Company: Network Associates, Inc.
--------------------
Value Name: McAfeeUpdaterUI
Value Data: "C:\appli\VirusScan71\Common Framework\UpdaterUI.exe" /StartedFromRunKey
C:\appli\VirusScan71\Common Framework\UpdaterUI.exe
135224 bytes
Created: 24/10/2006
Modified: 22/03/2004
Company: Network Associates, Inc.
--------------------
Value Name: Network Associates Error Reporting Service
Value Data: "C:\Program Files\Fichiers communs\Network Associates\TalkBack\TBMon.exe"
C:\Program Files\Fichiers communs\Network Associates\TalkBack\TBMon.exe
147514 bytes
Created: 24/10/2006
Modified: 17/07/2003
Company: Network Associates, Inc.
--------------------
Value Name: avast!
Value Data: C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
79224 bytes
Created: 03/11/2006
Modified: 04/12/2007
Company: ALWIL Software
--------------------
Value Name: NeroFilterCheck
Value Data: C:\WINDOWS\system32\NeroCheck.exe
C:\WINDOWS\system32\NeroCheck.exe
155648 bytes
Created: 21/01/2007
Modified: 09/07/2001
Company: Ahead Software Gmbh
--------------------
Value Name: KernelFaultCheck
Value Data: %systemroot%\system32\dumprep 0 -k
C:\WINDOWS\system32\dumprep.EXE
10752 bytes
Created: 05/08/2004
Modified: 05/08/2004
Company: Microsoft Corporation
--------------------
Value Name: Adobe Reader Speed Launcher
Value Data: "C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe"
C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe
39792 bytes
Created: 11/01/2008
Modified: 11/01/2008
Company: Adobe Systems Incorporated
--------------------
Value Name: QuickTime Task
Value Data: "C:\Program Files\QuickTime\QTTask.exe" -atboottime
C:\Program Files\QuickTime\QTTask.exe
385024 bytes
Created: 31/01/2008
Modified: 31/01/2008
Company: Apple Inc.
--------------------
Value Name: iTunesHelper
Value Data: "C:\Program Files\iTunes\iTunesHelper.exe"
C:\Program Files\iTunes\iTunesHelper.exe
267048 bytes
Created: 19/02/2008
Modified: 19/02/2008
Company: Apple Inc.
--------------------
Value Name: spywarefighterguard
Value Data: C:\Program Files\SPYWAREfighter\spftray.exe
C:\Program Files\SPYWAREfighter\spftray.exe
115344 bytes
Created: 21/02/2008
Modified: 21/02/2008
Company: SPAMfighter
--------------------
Value Name:
Value Data:
The Value Data for this entry appears to be blank
--------------------
Value Name: TrojanScanner
Value Data: C:\Program Files\Trojan Remover\Trjscan.exe
C:\Program Files\Trojan Remover\Trjscan.exe
863824 bytes
Created: 27/02/2008
Modified: 24/02/2008
Company: Simply Super Software
--------------------
--------------------
Checking HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce
This Registry Key appears to be empty
--------------------
Checking HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\RunServices
This Registry Key appears to be empty
--------------------
Checking HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\RunServicesOnce
This Registry Key appears to be empty
--------------------
Checking HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnceEx
This Registry Key appears to be empty
--------------------
Checking HKCU\Software\Microsoft\Windows\CurrentVersion\Run
Value Name: CTFMON.EXE
Value Data: C:\WINDOWS\system32\ctfmon.exe
C:\WINDOWS\system32\ctfmon.exe
15360 bytes
Created: 05/08/2004
Modified: 05/08/2004
Company: Microsoft Corporation
--------------------
Value Name: MsnMsgr
Value Data: "C:\Program Files\Windows Live\Messenger\MsnMsgr.Exe" /background
C:\Program Files\Windows Live\Messenger\MsnMsgr.Exe
5724184 bytes
Created: 18/10/2007
Modified: 18/10/2007
Company: Microsoft Corporation
--------------------
--------------------
Checking HKCU\Software\Microsoft\Windows\CurrentVersion\RunOnce
This Registry Key appears to be empty
--------------------
Checking HKCU\Software\Microsoft\Windows\CurrentVersion\RunServices
This Registry Key appears to be empty
--------------------
Checking HKCU\Software\Microsoft\Windows\CurrentVersion\RunServicesOnce
This Registry Key appears to be empty
--------------------
Checking HKCU\Software\Microsoft\Windows\CurrentVersion\RunOnceEx
This Registry Key appears to be empty
**************************************************
17:01:01: Scanning -----SHELLEXECUTEHOOKS-----
ValueName: {AEB6717E-7E19-11d0-97EE-00C04FD91972}
File: shell32.dll - this file is expected and has been left in place
----------
**************************************************
17:01:01: Scanning -----HIDDEN REGISTRY ENTRIES-----
Taskdir check completed
----------
No Hidden File-loading Registry Entries found
----------
**************************************************
17:01:02: Scanning -----ACTIVE SCREENSAVER-----
No active ScreenSaver found to scan.
**************************************************
17:01:02: Scanning ----- REGISTRY ACTIVE SETUP KEYS -----
**************************************************
17:01:02: Scanning ----- SERVICEDLL REGISTRY KEYS -----
Key: AppMgmt
%SystemRoot%\System32\appmgmts.dll - file is globally excluded (file cannot be found)
--------------------
**************************************************
17:01:06: Scanning ----- SERVICES REGISTRY KEYS -----
Key: abp480n5
ImagePath: system32\DRIVERS\ABP480N5.SYS
C:\WINDOWS\system32\DRIVERS\ABP480N5.SYS
23552 bytes
Created: 05/08/2004
Modified: 05/08/2004
Company: Microsoft Corporation
----------
Key: AcerMemUsageCheckService
ImagePath: C:\Acer\Empowering Technology\ePerformance\MemCheck.exe
C:\Acer\Empowering Technology\ePerformance\MemCheck.exe
28672 bytes
Created: 29/03/2006
Modified: 29/03/2006
Company: Acer Inc.
----------
Key: adpu160m
ImagePath: system32\DRIVERS\adpu160m.sys
C:\WINDOWS\system32\DRIVERS\adpu160m.sys
101888 bytes
Created: 05/08/2004
Modified: 05/08/2004
Company: Microsoft Corporation
----------
Key: agpCPQ
ImagePath: system32\DRIVERS\agpCPQ.sys
C:\WINDOWS\system32\DRIVERS\agpCPQ.sys
44928 bytes
Created: 03/08/2004
Modified: 03/08/2004
Company: Microsoft Corporation
----------
Key: Aha154x
ImagePath: system32\DRIVERS\aha154x.sys
C:\WINDOWS\system32\DRIVERS\aha154x.sys
12800 bytes
Created: 05/08/2004
Modified: 05/08/2004
Company: Microsoft Corporation
----------
Key: aic78u2
ImagePath: system32\DRIVERS\aic78u2.sys
C:\WINDOWS\system32\DRIVERS\aic78u2.sys
55168 bytes
Created: 05/08/2004
Modified: 05/08/2004
Company: Microsoft Corporation
----------
Key: aic78xx
ImagePath: system32\DRIVERS\aic78xx.sys
C:\WINDOWS\system32\DRIVERS\aic78xx.sys
56960 bytes
Created: 05/08/2004
Modified: 05/08/2004
Company: Microsoft Corporation
----------
Key: alim1541
ImagePath: system32\DRIVERS\alim1541.sys
C:\WINDOWS\system32\DRIVERS\alim1541.sys
42752 bytes
Created: 03/08/2004
Modified: 03/08/2004
Company: Microsoft Corporation
----------
Key: amdagp
ImagePath: system32\DRIVERS\amdagp.sys
C:\WINDOWS\system32\DRIVERS\amdagp.sys
43008 bytes
Created: 03/08/2004
Modified: 03/08/2004
Company: Advanced Micro Devices, Inc.
----------
Key: amsint
ImagePath: system32\DRIVERS\amsint.sys
C:\WINDOWS\system32\DRIVERS\amsint.sys
12032 bytes
Created: 05/08/2004
Modified: 05/08/2004
Company: Microsoft Corporation
----------
Key: Apple Mobile Device
ImagePath: "C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe"
C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
110592 bytes
Created: 04/09/2007
Modified: 04/09/2007
Company: Apple, Inc.
----------
Key: AR5211
ImagePath: system32\DRIVERS\ar5211.sys
C:\WINDOWS\system32\DRIVERS\ar5211.sys
488448 bytes
Created: 25/01/2006
Modified: 24/01/2006
Company: Atheros Communications, Inc.
----------
Key: asc
ImagePath: system32\DRIVERS\asc.sys
C:\WINDOWS\system32\DRIVERS\asc.sys
26496 bytes
Created: 05/08/2004
Modified: 05/08/2004
Company: Advanced System Products, Inc.
----------
Key: asc3350p
ImagePath: system32\DRIVERS\asc3350p.sys
C:\WINDOWS\system32\DRIVERS\asc3350p.sys
22400 bytes
Created: 05/08/2004
Modified: 05/08/2004
Company: Microsoft Corporation
----------
Key: asc3550
ImagePath: system32\DRIVERS\asc3550.sys
C:\WINDOWS\system32\DRIVERS\asc3550.sys
14848 bytes
Created: 05/08/2004
Modified: 05/08/2004
Company: Advanced System Products, Inc.
----------
Key: aswUpdSv
ImagePath: "C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe"
C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
17272 bytes
Created: 03/11/2006
Modified: 04/12/2007
Company: ALWIL Software
----------
Key: avast! Antivirus
ImagePath: "C:\Program Files\Alwil Software\Avast4\ashServ.exe"
C:\Program Files\Alwil Software\Avast4\ashServ.exe
140664 bytes
Created: 03/11/2006
Modified: 04/12/2007
Company: ALWIL Software
----------
Key: avast! Mail Scanner
ImagePath: "C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe" /service
C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
247160 bytes
Created: 03/11/2006
Modified: 04/12/2007
Company: ALWIL Software
----------
Key: avast! Web Scanner
ImagePath: "C:\Program Files\Alwil Software\Avast4\ashWebSv.exe" /service
C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
345464 bytes
Created: 03/11/2006
Modified: 04/12/2007
Company: ALWIL Software
----------
Key: Cam5603D
ImagePath: System32\Drivers\BisonCam.sys
C:\WINDOWS\System32\Drivers\BisonCam.sys
806272 bytes
Created: 12/05/2006
Modified: 12/05/2006
Company: Bison Electronics. Inc.
----------
Key: cbidf
ImagePath: system32\DRIVERS\cbidf2k.sys
C:\WINDOWS\system32\DRIVERS\cbidf2k.sys
13952 bytes
Created: 05/08/2004
Modified: 05/08/2004
Company: Microsoft Corporation
----------
Key: cd20xrnt
ImagePath: system32\DRIVERS\cd20xrnt.sys
C:\WINDOWS\system32\DRIVERS\cd20xrnt.sys
7680 bytes
Created: 05/08/2004
Modified: 05/08/2004
Company: Microsoft Corporation
----------
Key: CLCapSvc
ImagePath: "C:\Program Files\Acer\Acer Arcade\Kernel\TV\CLCapSvc.exe"
C:\Program Files\Acer\Acer Arcade\Kernel\TV\CLCapSvc.exe
254050 bytes
Created: 27/04/2006
Modified: 27/04/2006
Company:
----------
Key: CLSched
ImagePath: "C:\Program Files\Acer\Acer Arcade\Kernel\TV\CLSched.exe"
C:\Program Files\Acer\Acer Arcade\Kernel\TV\CLSched.exe
114784 bytes
Created: 27/04/2006
Modified: 27/04/2006
Company:
----------
Key: CmdIde
ImagePath: system32\DRIVERS\cmdide.sys
C:\WINDOWS\system32\DRIVERS\cmdide.sys
6656 bytes
Created: 05/08/2004
Modified: 05/08/2004
Company: CMD Technology, Inc.
----------
Key: Cpqarray
ImagePath: system32\DRIVERS\cpqarray.sys
C:\WINDOWS\system32\DRIVERS\cpqarray.sys
14976 bytes
Created: 05/08/2004
Modified: 05/08/2004
Company: Microsoft Corporation
----------
Key: CyberLink Media Library Service
ImagePath: "C:\Program Files\Acer\Acer Arcade\Kernel\CLML_NTService\CLMLServer.exe"
C:\Program Files\Acer\Acer Arcade\Kernel\CLML_NTService\CLMLServer.exe
61440 bytes
Created: 27/04/2006
Modified: 27/04/2006
Company: Cyberlink
----------
Key: dac2w2k
ImagePath: system32\DRIVERS\dac2w2k.sys
C:\WINDOWS\system32\DRIVERS\dac2w2k.sys
179584 bytes
Created: 05/08/2004
Modified: 05/08/2004
Company: Mylex Corporation
----------
Key: dac960nt
ImagePath: system32\DRIVERS\dac960nt.sys
C:\WINDOWS\system32\DRIVERS\dac960nt.sys
14720 bytes
Created: 05/08/2004
Modified: 05/08/2004
Company: Microsoft Corporation
----------
Key: DKbFltr
ImagePath: system32\DRIVERS\DKbFltr.sys
C:\WINDOWS\system32\DRIVERS\DKbFltr.sys
16896 bytes
Created: 09/09/2006
Modified: 07/12/2004
Company: Dritek System Inc.
----------
Key: dpti2o
ImagePath: system32\DRIVERS\dpti2o.sys
C:\WINDOWS\system32\DRIVERS\dpti2o.sys
20192 bytes
Created: 05/08/2004
Modified: 05/08/2004
Company: Microsoft Corporation
----------
Key: DritekPortIO
ImagePath: \??\C:\PROGRA~1\LAUNCH~1\DPortIO.sys
C:\PROGRA~1\LAUNCH~1\DPortIO.sys
13184 bytes
Created: 09/09/2006
Modified: 23/12/2005
Company: Dritek System Inc.
----------
Key: eLock2BurnerLockDriver
ImagePath: \??\C:\WINDOWS\system32\eLock2BurnerLockDriver.sys
C:\WINDOWS\system32\eLock2BurnerLockDriver.sys - this registry value has been removed [file not found to scan]
----------
Key: eLock2FSCTLDriver
ImagePath: \??\C:\WINDOWS\system32\eLock2FSCTLDriver.sys
C:\WINDOWS\system32\eLock2FSCTLDriver.sys - this registry value has been removed [file not found to scan]
----------
Key: EMSCR
ImagePath: system32\DRIVERS\EMS7SK.sys
C:\WINDOWS\system32\DRIVERS\EMS7SK.sys
61056 bytes
Created: 23/03/2006
Modified: 24/05/2006
Company: ENE Technology Inc.
----------
Key: ESDCR
ImagePath: system32\DRIVERS\ESD7SK.sys
C:\WINDOWS\system32\DRIVERS\ESD7SK.sys
40064 bytes
Created: 23/03/2006
Modified: 24/05/2006
Company: ENE Technology Inc.
----------
Key: ESMCR
ImagePath: system32\DRIVERS\ESM7SK.sys
C:\WINDOWS\system32\DRIVERS\ESM7SK.sys
74752 bytes
Created: 23/03/2006
Modified: 24/05/2006
Company: ENE Technology Inc.
----------
Key: Fax
ImagePath: %systemroot%\system32\fxssvc.exe
C:\WINDOWS\system32\fxssvc.exe
268800 bytes
Created: 05/08/2004
Modified: 05/08/2004
Company: Microsoft Corporation
----------
Key: FireHook
ImagePath: system32\DRIVERS\firehook.sys
C:\WINDOWS\system32\DRIVERS\firehook.sys
33856 bytes
Created: 24/10/2006
Modified: 19/09/2003
Company: Networks Associates Technology, Inc.
----------
Key: firelm01
ImagePath: \??\C:\WINDOWS\system32\drivers\firelm01.sys
C:\WINDOWS\system32\drivers\firelm01.sys
18936 bytes
Created: 24/10/2006
Modified: 19/09/2003
Company:
----------
Key: FirePM
ImagePath: system32\Drivers\FirePM.sys
C:\WINDOWS\system32\Drivers\FirePM.sys
100410 bytes
Created: 24/10/2006
Modified: 19/09/2003
Company: Networks Associates Technology, Inc.
----------
Key: FireSvc
ImagePath: C:\appli\DesktopFirewallv8.0\FireSvc.exe
C:\appli\DesktopFirewallv8.0\FireSvc.exe
819259 bytes
Created: 24/10/2006
Modified: 19/09/2003
Company: Networks Associates Technology, Inc.
----------
Key: FireTDI
ImagePath: \??\C:\WINDOWS\system32\Drivers\FireTDI.sys
C:\WINDOWS\system32\Drivers\FireTDI.sys
27707 bytes
Created: 24/10/2006
Modified: 19/09/2003
Company: Networks Associates Technology, Inc.
----------
Key: GEARAspiWDM
ImagePath: SYSTEM32\DRIVERS\GEARAspiWDM.sys
C:\WINDOWS\SYSTEM32\DRIVERS\GEARAspiWDM.sys
15664 bytes
Created: 19/09/2006
Modified: 19/09/2006
Company: GEAR Software Inc.
----------
Key: HDAudBus
ImagePath: system32\DRIVERS\HDAudBus.sys
C:\WINDOWS\system32\DRIVERS\HDAudBus.sys
138752 bytes
Created: 07/01/2005
Modified: 07/01/2005
Company: Windows (R) Server 2003 DDK provider
----------
Key: hpn
ImagePath: system32\DRIVERS\hpn.sys
C:\WINDOWS\system32\DRIVERS\hpn.sys
25952 bytes
Created: 05/08/2004
Modified: 05/08/2004
Company: Microsoft Corporation
----------
Key: HPZid412
ImagePath: system32\DRIVERS\HPZid412.sys
C:\WINDOWS\system32\DRIVERS\HPZid412.sys
-R- 51024 bytes
Created: 18/03/2007
Modified: 09/03/2003
Company: HP
----------
Key: HPZipr12
ImagePath: system32\DRIVERS\HPZipr12.sys
C:\WINDOWS\system32\DRIVERS\HPZipr12.sys
-R- 16080 bytes
Created: 18/03/2007
Modified: 09/03/2003
Company: HP
----------
Key: HPZius12
ImagePath: system32\DRIVERS\HPZius12.sys
C:\WINDOWS\system32\DRIVERS\HPZius12.sys
-R- 21456 bytes
Created: 18/03/2007
Modified: 09/03/2003
Company: HP
----------
Key: HSFHWAZL
ImagePath: system32\DRIVERS\HSFHWAZL.sys
C:\WINDOWS\system32\DRIVERS\HSFHWAZL.sys
208384 bytes
Created: 09/09/2006
Modified: 12/06/2006
Company: Conexant Systems, Inc.
----------
Key: HSF_DPV
ImagePath: system32\DRIVERS\HSF_DPV.sys
C:\WINDOWS\system32\DRIVERS\HSF_DPV.sys
990592 bytes
Created: 09/09/2006
Modified: 12/06/2006
Company: Conexant Systems, Inc.
----------
Key: HSXHWAZL
ImagePath: system32\DRIVERS\HSXHWAZL.sys
C:\WINDOWS\system32\DRIVERS\HSXHWAZL.sys
194048 bytes
Created: 11/01/2006
Modified: 11/01/2006
Company: Conexant Systems, Inc.
----------
Key: i2omp
ImagePath: system32\DRIVERS\i2omp.sys
C:\WINDOWS\system32\DRIVERS\i2omp.sys
18560 bytes
Created: 05/08/2004
Modified: 05/08/2004
Company: Microsoft Corporation
----------
Key: IDriverT
ImagePath: "C:\Program Files\Fichiers communs\InstallShield\Driver\1150\Intel 32\IDriverT.exe"
C:\Program Files\Fichiers communs\InstallShield\Driver\1150\Intel 32\IDriverT.exe
69632 bytes
Created: 14/11/2005
Modified: 14/11/2005
Company: Macrovision Corporation
----------
Key: ini910u
ImagePath: system32\DRIVERS\ini910u.sys
C:\WINDOWS\system32\DRIVERS\ini910u.sys
16000 bytes
Created: 05/08/2004
Modified: 05/08/2004
Company: Microsoft Corporation
----------
Key: int15
ImagePath: \??\C:\WINDOWS\system32\drivers\int15.sys
C:\WINDOWS\system32\drivers\int15.sys
69632 bytes
Created: 20/04/2006
Modified: 02/06/2006
Company:
----------
Key: IntcAzAudAddService
ImagePath: system32\drivers\RtkHDAud.sys
C:\WINDOWS\system32\drivers\RtkHDAud.sys
4304384 bytes
Created: 16/03/2006
Modified: 28/06/2006
Company: Realtek Semiconductor Corp.
----------
Key: iPod Service
ImagePath: "C:\Program Files\iPod\bin\iPodService.exe"
C:\Program Files\iPod\bin\iPodService.exe
504104 bytes
Created: 19/02/2008
Modified: 19/02/2008
Company: Apple Inc.
----------
Key: irsir
ImagePath: system32\DRIVERS\irsir.sys
C:\WINDOWS\system32\DRIVERS\irsir.sys
18688 bytes
Created: 17/08/2001
Modified: 17/08/2001
Company: Microsoft Corporation
----------
Key: LightScribeService
ImagePath: "C:\Program Files\Fichiers communs\LightScribe\LSSrvc.exe"
C:\Program Files\Fichiers communs\LightScribe\LSSrvc.exe
73728 bytes
Created: 17/02/2006
Modified: 17/02/2006
Company: Hewlett-Packard Company
----------
Key: McAfeeFramework
ImagePath: C:\appli\VirusScan71\Common Framework\FrameworkService.exe /ServiceStart
C:\appli\VirusScan71\Common Framework\FrameworkService.exe
106559 bytes
Created: 24/10/2006
Modified: 22/03/2004
Company: Network Associates, Inc.
----------
Key: McShield
ImagePath: "C:\appli\VirusScan71\VirusScan71\mcshield.exe"
C:\appli\VirusScan71\VirusScan71\mcshield.exe
237657 bytes
Created: 29/09/2003
Modified: 29/09/2003
Company: Network Associates, Inc.
----------
Key: McTaskManager
ImagePath: "C:\appli\VirusScan71\VirusScan71\vstskmgr.exe"
C:\appli\VirusScan71\VirusScan71\vstskmgr.exe
69706 bytes
Created: 29/09/2003
Modified: 29/09/2003
Company: Network Associates, Inc.
----------
Key: MDM
ImagePath: "C:\Program Files\Fichiers communs\Microsoft Shared\VS7DEBUG\MDM.EXE"
C:\Program Files\Fichiers communs\Microsoft Shared\VS7DEBUG\MDM.EXE
322120 bytes
Created: 20/06/2003
Modified: 20/06/2003
Company: Microsoft Corporation
----------
Key: mraid35x
ImagePath: system32\DRIVERS\mraid35x.sys
C:\WINDOWS\system32\DRIVERS\mraid35x.sys
17280 bytes
Created: 05/08/2004
Modified: 05/08/2004
Company: American Megatrends Inc.
----------
Key: NaiAvFilter1
ImagePath: system32\drivers\naiavf5x.sys
C:\WINDOWS\system32\drivers\naiavf5x.sys
83008 bytes
Created: 29/09/2003
Modified: 29/09/2003
Company: Network Associates, Inc.
----------
Key: NaiAvFilter101
ImagePath: \Device\NaiAvFilter101.sys
\Device\NaiAvFilter101.sys - this registry value has been removed [file not found to scan]
----------
Key: NTIDrvr
ImagePath: system32\DRIVERS\NTIDrvr.sys
C:\WINDOWS\system32\DRIVERS\NTIDrvr.sys
6144 bytes
Created: 23/05/2006
Modified: 23/05/2006
Company: NewTech Infosystems, Inc.
----------
Key: ose
ImagePath: "C:\Program Files\Fichiers communs\Microsoft Shared\Source Engine\OSE.EXE"
C:\Program Files\Fichiers communs\Microsoft Shared\Source Engine\OSE.EXE
89136 bytes
Created: 28/07/2003
Modified: 28/07/2003
Company: Microsoft Corporation
----------
Key: perc2
ImagePath: system32\DRIVERS\perc2.sys
C:\WINDOWS\system32\DRIVERS\perc2.sys
27296 bytes
Created: 05/08/2004
Modified: 05/08/2004
Company: Microsoft Corporation
----------
Key: perc2hib
ImagePath: system32\DRIVERS\perc2hib.sys
C:\WINDOWS\system32\DRIVERS\perc2hib.sys
5504 bytes
Created: 05/08/2004
Modified: 05/08/2004
Company: Microsoft Corporation
----------
Key: Pml Driver HPZ12
ImagePath: C:\WINDOWS\system32\HPZipm12.exe
C:\WINDOWS\system32\HPZipm12.exe
-R- 65795 bytes
Created: 18/03/2007
Modified: 09/03/2003
Company: HP
----------
Key: psdfilter
ImagePath: \??\C:\WINDOWS\system32\Drivers\psdfilter.sys
C:\WINDOWS\system32\Drivers\psdfilter.sys
12288 bytes
Created: 07/04/2006
Modified: 07/04/2006
Company: HiTRUST
----------
Key: psdvdisk
ImagePath: \??\C:\WINDOWS\system32\Drivers\psdvdisk.sys
C:\WINDOWS\system32\Drivers\psdvdisk.sys
60416 bytes
Created: 08/03/2006
Modified: 08/03/2006
Company: HiTRUST
----------
Key: PxHelp20
ImagePath: System32\Drivers\PxHelp20.sys
C:\WINDOWS\System32\Drivers\PxHelp20.sys
43528 bytes
Created: 04/05/2007
Modified: 27/07/2007
Company: Sonic Solutions
----------
Key: ql1080
ImagePath: system32\DRIVERS\ql1080.sys
C:\WINDOWS\system32\DRIVERS\ql1080.sys
40320 bytes
Created: 05/08/2004
Modified: 05/08/2004
Company: QLogic Corporation
----------
Key: Ql10wnt
ImagePath: system32\DRIVERS\ql10wnt.sys
C:\WINDOWS\system32\DRIVERS\ql10wnt.sys
33152 bytes
Created: 05/08/2004
Modified: 05/08/2004
Company: Microsoft Corporation
----------
Key: ql12160
ImagePath: system32\DRIVERS\ql12160.sys
C:\WINDOWS\system32\DRIVERS\ql12160.sys
45312 bytes
Created: 05/08/2004
Modified: 05/08/2004
Company: QLogic Corporation
----------
Key: ql1240
ImagePath: system32\DRIVERS\ql1240.sys
C:\WINDOWS\system32\DRIVERS\ql1240.sys
40448 bytes
Created: 05/08/2004
Modified: 05/08/2004
Company: Microsoft Corporation
----------
Key: ql1280
ImagePath: system32\DRIVERS\ql1280.sys
C:\WINDOWS\system32\DRIVERS\ql1280.sys
49024 bytes
Created: 05/08/2004
Modified: 05/08/2004
Company: QLogic Corporation
----------
Key: RichVideo
ImagePath: "C:\Program Files\CyberLink\Shared Files\RichVideo.exe"
C:\Program Files\CyberLink\Shared Files\RichVideo.exe
143360 bytes
Created: 21/01/2005
Modified: 21/01/2005
Company:
----------
Key: Secdrv
ImagePath: system32\DRIVERS\secdrv.sys
C:\WINDOWS\system32\DRIVERS\secdrv.sys
20480 bytes
Created: 05/08/2004
Modified: 13/11/2007
Company: Macrovision Corporation, Macrovision Europe Limited, and Macrovision Japan and Asia K.K.
----------
Key: sisagp
ImagePath: system32\DRIVERS\sisagp.sys
C:\WINDOWS\system32\DRIVERS\sisagp.sys
41088 bytes
Created: 03/08/2004
Modified: 03/08/2004
Company: Silicon Integrated Systems Corporation
----------
Key: SMCIRDA
ImagePath: system32\DRIVERS\smcirda.sys
C:\WINDOWS\system32\DRIVERS\smcirda.sys
46592 bytes
Created: 09/12/2004
Modified: 09/12/2004
Company: SMSC
----------
Key: Sparrow
ImagePath: system32\DRIVERS\sparrow.sys
C:\WINDOWS\system32\DRIVERS\sparrow.sys
19072 bytes
Created: 05/08/2004
Modified: 05/08/2004
Company: Adaptec, Inc.
----------
Key: sptd
ImagePath: System32\Drivers\sptd.sys - this file is globally excluded
----------
Key: SpyFighter
ImagePath: \??\C:\Program Files\SPYWAREfighter\spyfighter.sys
C:\Program Files\SPYWAREfighter\spyfighter.sys
8336 bytes
Created: 21/02/2008
Modified: 21/02/2008
Company:
----------
Key: SPYWAREfighterRP
ImagePath: "C:\Program Files\SPYWAREfighter\spfprc.exe"
C:\Program Files\SPYWAREfighter\spfprc.exe
406160 bytes
Created: 21/02/2008
Modified: 21/02/2008
Company: SpamFighter APS
----------
Key: SwPrv
ImagePath: C:\WINDOWS\system32\dllhost.exe /Processid:{93C7265F-612A-4275-9532-A9079D6CDE90}
C:\WINDOWS\system32\dllhost.exe
5120 bytes
Created: 05/08/2004
Modified: 05/08/2004
Company: Microsoft Corporation
----------
Key: symc810
ImagePath: system32\DRIVERS\symc810.sys
C:\WINDOWS\system32\DRIVERS\symc810.sys
16256 bytes
Created: 05/08/2004
Modified: 05/08/2004
Company: Symbios Logic Inc.
----------
Key: symc8xx
ImagePath: system32\DRIVERS\symc8xx.sys
C:\WINDOWS\system32\DRIVERS\symc8xx.sys
32640 bytes
Created: 05/08/2004
Modified: 05/08/2004
Company: LSI Logic
----------
Key: sym_hi
ImagePath: system32\DRIVERS\sym_hi.sys
C:\WINDOWS\system32\DRIVERS\sym_hi.sys
28384 bytes
Created: 05/08/2004
Modified: 05/08/2004
Company: LSI Logic
----------
Key: sym_u3
ImagePath: system32\DRIVERS\sym_u3.sys
C:\WINDOWS\system32\DRIVERS\sym_u3.sys
30688 bytes
Created: 05/08/2004
Modified: 05/08/2004
Company: LSI Logic
----------
Key: SynTP
ImagePath: system32\DRIVERS\SynTP.sys
C:\WINDOWS\system32\DRIVERS\SynTP.sys
192672 bytes
Created: 19/10/2006
Modified: 03/03/2006
Company: Synaptics, Inc.
----------
Key: TosIde
ImagePath: system32\DRIVERS\toside.sys
C:\WINDOWS\system32\DRIVERS\toside.sys
4992 bytes
Created: 05/08/2004
Modified: 05/08/2004
Company: Microsoft Corporation
----------
Key: tvicport
ImagePath: \??\C:\WINDOWS\system32\drivers\tvicport.sys
C:\WINDOWS\system32\drivers\tvicport.sys
14544 bytes
Created: 20/04/2006
Modified: 02/06/2006
Company: EnTech Taiwan
----------
Key: ultra
ImagePath: system32\DRIVERS\ultra.sys
C:\WINDOWS\system32\DRIVERS\ultra.sys
36736 bytes
Created: 05/08/2004
Modified: 05/08/2004
Company: Promise Technology, Inc.
----------
Key: UMAXPCLS
ImagePath: system32\DRIVERS\umaxpcls.sys
C:\WINDOWS\system32\DRIVERS\umaxpcls.sys
22912 bytes
Created: 29/04/2007
Modified: 17/08/2001
Company: Microsoft Corporation
----------
Key: USBAAPL
ImagePath: System32\Drivers\usbaapl.sys
C:\WINDOWS\System32\Drivers\usbaapl.sys
30464 bytes
Created: 08/09/2007
Modified: 31/10/2007
Company: Apple, Inc.
----------
Key: usnjsvc
ImagePath: "C:\Program Files\Windows Live\Messenger\usnsvc.exe"
C:\Program Files\Windows Live\Messenger\usnsvc.exe
98328 bytes
Created: 18/10/2007
Modified: 18/10/2007
Company: Microsoft Corporation
----------
Key: viaagp
ImagePath: system32\DRIVERS\viaagp.sys
C:\WINDOWS\system32\DRIVERS\viaagp.sys
42240 bytes
Created: 03/08/2004
Modified: 03/08/2004
Company: Microsoft Corporation
----------
Key: winachsf
ImagePath: system32\DRIVERS\HSF_CNXT.sys
C:\WINDOWS\system32\DRIVERS\HSF_CNXT.sys
727808 bytes
Created: 09/09/2006
Modified: 12/06/2006
Company: Conexant Systems, Inc.
----------
Key: WpdUsb
ImagePath: system32\DRIVERS\wpdusb.sys
C:\WINDOWS\system32\DRIVERS\wpdusb.sys
38528 bytes
Created: 28/01/2005
Modified: 18/10/2006
Company: Microsoft Corporation
----------
Key: zntport
ImagePath: \??\C:\WINDOWS\system32\drivers\zntport.sys
C:\WINDOWS\system32\drivers\zntport.sys
6080 bytes
Created: 20/04/2006
Modified: 02/06/2006
Company: Zeal SoftStudio
----------
**************************************************
17:02:20: Scanning -----VXD ENTRIES-----
**************************************************
17:02:20: Scanning ----- WINLOGON\NOTIFY DLLS -----
Key: AtiExtEvent
DLL: Ati2evxx.dll
C:\WINDOWS\system32\Ati2evxx.dll
61440 bytes
Created: 27/04/2006
Modified: 27/04/2006
Company: ATI Technologies Inc.
----------
**************************************************
17:02:21: Scanning ----- CONTEXTMENUHANDLERS -----
Key: avast
CLSID: {472083B0-C522-11CF-8763-00608CC02F24}
Path: C:\Program Files\Alwil Software\Avast4\ashShell.dll
C:\Program Files\Alwil Software\Avast4\ashShell.dll
75128 bytes
Created: 03/11/2006
Modified: 04/12/2007
Company: ALWIL Software
----------
Key: EDSshellExt
CLSID: {29FF7AB0-BE34-4992-A30B-53A9D86EE239}
Path: C:\WINDOWS\system32\eDSshellExt.dll
C:\WINDOWS\system32\eDSshellExt.dll
73728 bytes
Created: 08/03/2006
Modified: 08/03/2006
Company: HiTRUST
----------
Key: Fichiers hors connexion
CLSID: {750fdf0e-2a26-11d1-a3ea-080036587f03}
Path: %SystemRoot%\System32\cscui.dll
C:\WINDOWS\System32\cscui.dll
337920 bytes
Created: 05/08/2004
Modified: 05/08/2004
Company: Microsoft Corporation
----------
Key: Open With
CLSID: {09799AFB-AD67-11d1-ABCD-00C04FC30936}
Path: %SystemRoot%\system32\SHELL32.dll
C:\WINDOWS\system32\SHELL32.dll
8516608 bytes
Created: 05/08/2004
Modified: 25/10/2007
Company: Microsoft Corporation
----------
Key: Open With EncryptionMenu
CLSID: {A470F8CF-A1E8-4f65-8335-227475AA5C46}
Path: %SystemRoot%\system32\SHELL32.dll
C:\WINDOWS\system32\SHELL32.dll
8516608 bytes
Created: 05/08/2004
Modified: 25/10/2007
Company: Microsoft Corporation
----------
Key: SPYWAREfighter
CLSID: {44CB577A-837C-4C36-9C8D-80A1639B9333}
Path: C:\Program Files\SPYWAREfighter\spfext.dll
C:\Program Files\SPYWAREfighter\spfext.dll
123536 bytes
Created: 21/02/2008
Modified: 21/02/2008
Company: Spamfighter
----------
Key: Trojan Remover
CLSID: {52B87208-9CCF-42C9-B88E-069281105805}
Path: C:\PROGRA~1\TROJAN~1\Trshlex.dll
C:\PROGRA~1\TROJAN~1\Trshlex.dll
467552 bytes
Created: 27/02/2008
Modified: 05/02/2007
Company: Simply Super Software
----------
Key: VirusScan
CLSID: {cda2863e-2497-4c49-9b89-06840e070a87}
Path: C:\appli\VirusScan71\VirusScan71\shext.dll
C:\appli\VirusScan71\VirusScan71\shext.dll
28727 bytes
Created: 29/09/2003
Modified: 29/09/2003
Company: Network Associates, Inc.
----------
Key: WinRAR
CLSID: {B41DB860-8EE4-11D2-9906-E49FADC173CA}
Path: C:\Program Files\WinRAR\rarext.dll
C:\Program Files\WinRAR\rarext.dll
126464 bytes
Created: 18/01/2007
Modified: 03/12/2006
Company:
----------
Key: {a2a9545d-a0c2-42b4-9708-a0b2badd77c8}
Path: %SystemRoot%\system32\SHELL32.dll
C:\WINDOWS\system32\SHELL32.dll
8516608 bytes
Created: 05/08/2004
Modified: 25/10/2007
Company: Microsoft Corporation
----------
**************************************************
17:02:22: Scanning ----- FOLDER\COLUMNHANDLERS -----
Key: {0D2E74C4-3C34-11d2-A27E-00C04FC30871}
File: %SystemRoot%\system32\SHELL32.dll
C:\WINDOWS\system32\SHELL32.dll
8516608 bytes
Created: 05/08/2004
Modified: 25/10/2007
Company: Microsoft Corporation
----------
Key: {24F14F01-7B1C-11d1-838f-0000F80461CF}
File: %SystemRoot%\system32\SHELL32.dll
C:\WINDOWS\system32\SHELL32.dll
8516608 bytes
Created: 05/08/2004
Modified: 25/10/2007
Company: Microsoft Corporation
----------
Key: {24F14F02-7B1C-11d1-838f-0000F80461CF}
File: %SystemRoot%\system32\SHELL32.dll
C:\WINDOWS\system32\SHELL32.dll
8516608 bytes
Created: 05/08/2004
Modified: 25/10/2007
Company: Microsoft Corporation
----------
Key: {66742402-F9B9-11D1-A202-0000F81FEDEE}
File: %SystemRoot%\system32\SHELL32.dll
C:\WINDOWS\system32\SHELL32.dll
8516608 bytes
Created: 05/08/2004
Modified: 25/10/2007
Company: Microsoft Corporation
----------
Key: {F9DB5320-233E-11D1-9F84-707F02C10627}
File: C:\Program Files\Fichiers communs\Adobe\Acrobat\ActiveX\PDFShell.dll
C:\Program Files\Fichiers communs\Adobe\Acrobat\ActiveX\PDFShell.dll
372736 bytes
Created: 10/05/2007
Modified: 10/05/2007
Company: Adobe Systems, Inc.
----------
**************************************************
17:02:22: Scanning ----- BROWSER HELPER OBJECTS -----
Key: {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3}
BHO: C:\Program Files\Fichiers communs\Adobe\Acrobat\ActiveX\AcroIEHelper.dll
C:\Program Files\Fichiers communs\Adobe\Acrobat\ActiveX\AcroIEHelper.dll
62080 bytes
Created: 22/10/2006
Modified: 22/10/2006
Company: Adobe Systems Incorporated
----------
Key: {53707962-6F74-2D53-2644-206D7942484F}
BHO: C:\PROGRA~1\SPYBOT~1\SDHelper.dll
C:\PROGRA~1\SPYBOT~1\SDHelper.dll
853672 bytes
Created: 25/10/2006
Modified: 31/05/2005
Company: Safer Networking Limited
----------
Key: {9030D464-4C02-4ABF-8ECC-5164760863C6}
BHO: C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
328752 bytes
Created: 20/09/2007
Modified: 20/09/2007
Company: Microsoft Corporation
----------
**************************************************
17:02:23: Scanning ----- SHELLSERVICEOBJECTS -----
Key: PostBootReminder
CLSID: {7849596a-48ea-486e-8937-a2a3009f31a9}
Path: %SystemRoot%\system32\SHELL32.dll
C:\WINDOWS\system32\SHELL32.dll
8516608 bytes
Created: 05/08/2004
Modified: 25/10/2007
Company: Microsoft Corporation
----------
Key: CDBurn
CLSID: {fbeb8a05-beee-4442-804e-409d6c4515e9}
Path: %SystemRoot%\system32\SHELL32.dll
C:\WINDOWS\system32\SHELL32.dll
8516608 bytes
Created: 05/08/2004
Modified: 25/10/2007
Company: Microsoft Corporation
----------
Key: WebCheck
CLSID: {E6FB5E20-DE35-11CF-9C87-00AA005127ED}
Path: C:\WINDOWS\system32\webcheck.dll
C:\WINDOWS\system32\webcheck.dll
233472 bytes
Created: 05/08/2004
Modified: 07/12/2007
Company: Microsoft Corporation
----------
Key: SysTray
CLSID: {35CEC8A3-2BE6-11D2-8773-92E220524153}
Path: C:\WINDOWS\system32\stobject.dll
C:\WINDOWS\system32\stobject.dll
122368 bytes
Created: 05/08/2004
Modified: 05/08/2004
Company: Microsoft Corporation
----------
Key: WPDShServiceObj
CLSID: {AAA288BA-9A4C-45B0-95D7-94D524869DB5}
Path: C:\WINDOWS\system32\WPDShServiceObj.dll
C:\WINDOWS\system32\WPDShServiceObj.dll
133632 bytes
Created: 18/10/2006
Modified: 18/10/2006
Company: Microsoft Corporation
----------
**************************************************
17:02:23: Scanning ----- SHAREDTASKSCHEDULER ENTRIES -----
Value: {438755C2-A8BA-11D1-B96B-00A0C90312E1}
Comment: Pré-chargeur Browseui
File: %SystemRoot%\system32\browseui.dll
C:\WINDOWS\system32\browseui.dll
1022976 bytes
Created: 09/01/2006
Modified: 23/09/2006
Company: Microsoft Corporation
----------
Value: {8C7461EF-2B13-11d2-BE35-3078302C2030}
Comment: Démon de cache des catégories de composant
File: %SystemRoot%\system32\browseui.dll
C:\WINDOWS\system32\browseui.dll
1022976 bytes
Created: 09/01/2006
Modified: 23/09/2006
Company: Microsoft Corporation
----------
**************************************************
17:02:23: Scanning ----- IMAGEFILE DEBUGGERS -----
No "Debugger" entries found.
**************************************************
17:02:23: Scanning ----- APPINIT_DLLS -----
The AppInit_DLLs value is blank
**************************************************
17:02:24: Scanning ----- SECURITY PROVIDER DLLS -----
DLL: msapsspc.dll
C:\WINDOWS\system32\msapsspc.dll
86016 bytes
Created: 05/08/2004
Modified: 05/08/2004
Company: Microsoft Corporation
----------
DLL: schannel.dll
C:\WINDOWS\system32\schannel.dll
144896 bytes
Created: 05/08/2004
Modified: 25/04/2007
Company: Microsoft Corporation
----------
DLL: digest.dll
C:\WINDOWS\system32\digest.dll
68608 bytes
Created: 05/08/2004
Modified: 05/08/2004
Company: Microsoft Corporation
----------
DLL: msnsspc.dll
C:\WINDOWS\system32\msnsspc.dll
290816 bytes
Created: 05/08/2004
Modified: 05/08/2004
Company: Microsoft Corporation
----------
**************************************************
17:02:24: Scanning ------ COMMON STARTUP GROUP ------
[C:\Documents and Settings\All Users\Menu Démarrer\Programmes\Démarrage]
The Common Startup Group attempts to load the following file(s) at boot time:
C:\Documents and Settings\All Users\Menu Démarrer\Programmes\Démarrage\desktop.ini
-HS- 84 bytes
Created: 23/05/2006
Modified: 23/05/2006
Company:
--------------------
C:\Acer\Empowering Technology\Acer.Empowering.Framework.Launcher.exe
45056 bytes
Created: 27/03/2006
Modified: 29/06/2006
Company: Acer Inc.
Acer Empowering Technology.lnk - links to C:\Acer\Empowering Technology\Acer.Empowering.Framework.Launcher.exe
--------------------
C:\appli\DesktopFirewallv8.0\FireTray.exe
675900 bytes
Created: 24/10/2006
Modified: 19/09/2003
Company: Networks Associates Technology, Inc.
McAfee Desktop Firewall Tray.lnk - links to C:\appli\DesktopFirewallv8.0\FireTray.exe
--------------------
C:\Program Files\Hewlett-Packard\Digital Imaging\bin\hpotdd01.exe
28672 bytes
Created: 06/04/2003
Modified: 06/04/2003
Company: Hewlett-Packard
hpoddt01.exe.lnk - links to C:\Program Files\Hewlett-Packard\Digital Imaging\bin\hpotdd01.exe
--------------------
**************************************************
No User Startup Groups were located to check
**************************************************
17:02:25: Scanning ----- SCHEDULED TASKS -----
Taskname: FRU Task #Hewlett-Packard#hp psc 1200 series#1174240505.job
File: C:\Program Files\Hewlett-Packard\Digital Imaging\Bin\hpqfrucl.exe
C:\Program Files\Hewlett-Packard\Digital Imaging\Bin\hpqfrucl.exe
61440 bytes
Created: 06/04/2003
Modified: 06/04/2003
Company:
Parameters: -I "#Hewlett-Packard#hp psc 1200 series#1174240505"
Next Run Time: Never
Status: La tâche est prête à s'exécuter à l'heure prévue
Creator: moi
Comments: [blank]
----------
Taskname: AppleSoftwareUpdate.job
File: C:\Program Files\Apple Software Update\SoftwareUpdate.exe
C:\Program Files\Apple Software Update\SoftwareUpdate.exe
558424 bytes
Created: 29/08/2007
Modified: 29/08/2007
Company: Apple Inc.
Parameters: -task
Next Run Time: 03/03/2008 21:42:00
Status: La tâche est prête à s'exécuter à l'heure prévue
Creator: SYSTEM
Comments: [blank]
----------
**************************************************
17:02:25: ----- ADDITIONAL CHECKS -----
PE386 rootkit checks completed
----------
Winlogon registry rootkit checks completed
----------
Heuristic checks for hidden files/drivers completed
----------
Layered Service Provider entries checks completed
---------
Windows Explorer Policies checks completed
----------
Desktop Wallpaper: C:\Documents and Settings\moi\Local Settings\Application Data\Microsoft\Wallpaper1.bmp
C:\Documents and Settings\moi\Local Settings\Application Data\Microsoft\Wallpaper1.bmp
17842230 bytes
Created: 20/10/2006
Modified: 20/01/2008
Company:
----------
Additional file checks completed
---------
**************************************************
17:02:26: Scanning ----- RUNNING PROCESSES -----
[Only loaded modules not scanned already
during this scan will be scanned here]
C:\WINDOWS\System32\smss.exe
[1 loaded module]
--------------------
C:\WINDOWS\system32\csrss.exe
[13 loaded modules in total]
--------------------
C:\WINDOWS\system32\winlogon.exe
[67 loaded modules in total]
--------------------
C:\WINDOWS\system32\services.exe
[28 loaded modules in total]
--------------------
C:\WINDOWS\system32\lsass.exe
[59 loaded modules in total]
--------------------
C:\WINDOWS\system32\Ati2evxx.exe
[16 loaded modules in total]
--------------------
C:\WINDOWS\system32\svchost.exe
[53 loaded modules in total]
--------------------
C:\WINDOWS\system32\svchost.exe
[40 loaded modules in total]
--------------------
C:\WINDOWS\System32\svchost.exe
[164 loaded modules in total]
--------------------
C:\WINDOWS\system32\svchost.exe
[31 loaded modules in total]
--------------------
C:\WINDOWS\system32\svchost.exe
[31 loaded modules in total]
--------------------
C:\WINDOWS\system32\svchost.exe
[48 loaded modules in total]
--------------------
C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
[18 loaded modules in total]
--------------------
C:\Program Files\Alwil Software\Avast4\ashServ.exe
[59 loaded modules in total]
--------------------
C:\WINDOWS\system32\Ati2evxx.exe
[35 loaded modules in total]
--------------------
C:\WINDOWS\Explorer.EXE
[133 loaded modules in total]
--------------------
C:\WINDOWS\system32\spoolsv.exe
[54 loaded modules in total]
--------------------
C:\Acer\Empowering Technology\ePerformance\MemCheck.exe
[62 loaded modules in total]
--------------------
C:\Program Files\Acer\Acer Arcade\PCMService.exe
[72 loaded modules in total]
--------------------
C:\Program Files\ATI Technologies\ATI.ACE\cli.exe
[176 loaded modules in total]
--------------------
C:\Acer\Empowering Technology\eDataSecurity\eDSloader.exe
[46 loaded modules in total]
--------------------
C:\Acer\Empowering Technology\ePower\ePower_DMC.exe
[73 loaded modules in total]
--------------------
C:\WINDOWS\RTHDCPL.EXE
[46 loaded modules in total]
--------------------
C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
[36 loaded modules in total]
--------------------
C:\PROGRA~1\LAUNCH~1\LManager.exe
[65 loaded modules in total]
--------------------
C:\Acer\Empowering Technology\eRecovery\eRAgent.exe
[49 loaded modules in total]
--------------------
C:\appli\VirusScan71\VirusScan71\SHSTAT.EXE
[41 loaded modules in total]
--------------------
C:\appli\VirusScan71\Common Framework\UpdaterUI.exe
[45 loaded modules in total]
--------------------
C:\Program Files\Fichiers communs\Network Associates\TalkBack\TBMon.exe
[30 loaded modules in total]
--------------------
C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
[55 loaded modules in total]
--------------------
C:\Program Files\iTunes\iTunesHelper.exe
[63 loaded modules in total]
--------------------
C:\WINDOWS\system32\ctfmon.exe
[34 loaded modules in total]
--------------------
C:\Acer\Empowering Technology\Acer.Empowering.Framework.Launcher.exe
[155 loaded modules in total]
--------------------
C:\appli\DesktopFirewallv8.0\FireTray.exe
[43 loaded modules in total]
--------------------
C:\Program Files\Hewlett-Packard\Digital Imaging\bin\hpotdd01.exe
[37 loaded modules in total]
--------------------
C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
[21 loaded modules in total]
--------------------
C:\Program Files\Acer\Acer Arcade\Kernel\TV\CLCapSvc.exe
[52 loaded modules in total]
--------------------
C:\Program Files\Acer\Acer Arcade\Kernel\CLML_NTService\CLMLServer.exe
[10 loaded modules in total]
--------------------
C:\Program Files\Acer\Acer Arcade\Kernel\CLML_NTService\CLMLService.exe
[24 loaded modules in total]
--------------------
C:\Program Files\Stardock\ObjectDock\ObjectDock.exe
[87 loaded modules in total]
--------------------
C:\appli\DesktopFirewallv8.0\FireSvc.exe
[34 loaded modules in total]
--------------------
C:\Program Files\Fichiers communs\LightScribe\LSSrvc.exe
[17 loaded modules in total]
--------------------
C:\appli\VirusScan71\Common Framework\FrameworkService.exe
[66 loaded modules in total]
--------------------
C:\appli\VirusScan71\VirusScan71\mcshield.exe
[47 loaded modules in total]
--------------------
C:\appli\VIRUSS~1\COMMON~1\naPrdMgr.exe
[51 loaded modules in total]
--------------------
C:\appli\VirusScan71\VirusScan71\vstskmgr.exe
[46 loaded modules in total]
--------------------
C:\Program Files\Fichiers communs\Microsoft Shared\VS7DEBUG\MDM.EXE
[22 loaded modules in total]
--------------------
C:\Program Files\CyberLink\Shared Files\RichVideo.exe
[22 loaded modules in total]
--------------------
C:\WINDOWS\system32\svchost.exe
[44 loaded modules in total]
--------------------
C:\Program Files\Acer\Acer Arcade\Kernel\TV\CLSched.exe
[29 loaded modules in total]
--------------------
C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
[50 loaded modules in total]
--------------------
C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
[44 loaded modules in total]
--------------------
C:\WINDOWS\system32\wbem\wmiprvse.exe
[60 loaded modules in total]
--------------------
C:\Program Files\iPod\bin\iPodService.exe
[30 loaded modules in total]
--------------------
C:\WINDOWS\system32\wbem\wmiprvse.exe
[43 loaded modules in total]
--------------------
C:\WINDOWS\system32\wbem\wmiapsrv.exe
[46 loaded modules in total]
--------------------
C:\WINDOWS\system32\wbem\unsecapp.exe
[47 loaded modules in total]
--------------------
C:\WINDOWS\System32\alg.exe
[33 loaded modules in total]
--------------------
C:\Program Files\ATI Technologies\ATI.ACE\cli.exe
[95 loaded modules in total]
--------------------
C:\Program Files\ATI Technologies\ATI.ACE\cli.exe
[157 loaded modules in total]
--------------------
C:\WINDOWS\system32\taskmgr.exe
[49 loaded modules in total]
--------------------
C:\appli\office 2003\OFFICE11\WINWORD.EXE
[61 loaded modules in total]
--------------------
C:\Program Files\eMule\emule.exe
[87 loaded modules in total]
--------------------
C:\Program Files\Windows Live\Messenger\msnmsgr.exe
[136 loaded modules in total]
--------------------
C:\Program Files\Internet Explorer\IEXPLORE.EXE
[124 loaded modules in total]
--------------------
C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WLLoginProxy.exe
[55 loaded modules in total]
--------------------
C:\Program Files\Adobe\Reader 8.0\Reader\AcroRd32.exe
[102 loaded modules in total]
--------------------
C:\WINDOWS\system32\msiexec.exe
[64 loaded modules in total]
--------------------
C:\Program Files\SPYWAREfighter\spftray.exe
[42 loaded modules in total]
--------------------
C:\Program Files\SPYWAREfighter\spfprc.exe
[52 loaded modules in total]
--------------------
C:\Program Files\SPYWAREfighter\SPYWAREfighter.exe
[58 loaded modules in total]
--------------------
C:\Documents and Settings\moi\Application Data\Simply Super Software\Trojan Remover\qyp77.exe
FileSize: 2511424
[This is a Trojan Remover component]
[35 loaded modules in total]
--------------------
**************************************************
17:06:30: Checking AUTOEXEC.BAT file
AUTOEXEC.BAT found in C:\
No malicious entries were found in the AUTOEXEC.BAT file
**************************************************
17:06:30: Checking AUTOEXEC.NT file
AUTOEXEC.NT found in C:\WINDOWS\system32
No malicious entries were found in the AUTOEXEC.NT file
**************************************************
17:06:31: Checking HOSTS file
No malicious entries were found in the HOSTS file
**************************************************
------ INTERNET EXPLORER HOME/START/SEARCH SETTINGS ------
HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Main\"Start Page":
https://www.msn.com/fr-fr/?ocid=iehp
HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Main\"Local Page":
%SystemRoot%\system32\blank.htm
HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Main\"Search Page":
http://go.microsoft.com
ok mais dis moi t'as quoi comme anti-virus.
t'as éssayé avec spybot? il est pas mal mais il est possible que ce ne soit pas une affaire de virus car quand sa m'est arrivé, je venais d'acheté la licence de bitdefender 8.0, c'est comeme pas de la merde.
mon UC a moi dépasse rarement les 15% et mon pc ne rame pas.
t'as éssayé avec spybot? il est pas mal mais il est possible que ce ne soit pas une affaire de virus car quand sa m'est arrivé, je venais d'acheté la licence de bitdefender 8.0, c'est comeme pas de la merde.
mon UC a moi dépasse rarement les 15% et mon pc ne rame pas.
Vous n’avez pas trouvé la réponse que vous recherchez ?
Posez votre question