1012 utilisateurs connectés
bonjour je pense avoir des virus !!
sardegna2009
le 06 aout 2009 à 14h59
bonjour depuis quelques jours je constate que j'ai des fenêtres publicitaire qui apparaissent toute seul sur mon bureau et je constate que certains programmes démarrent tout seul au démarrage du pc ?? seriez vous m aider merci je possède windows vista
répondre
bzhatao
le 06 aout 2009 à 17h17
sardegna2009 Impératif sous vista:
desactives tes comptes d'utilisateur:
http://www.zebulon.fr/astuces/220-desactiver-l-uac-dans-vista.html
Puis:
Télécharges RSIT (de random/random) sur le bureau :
- Double clique sur RSIT.exe qui est sur le bureau
- Clique sur Continue dans la fenêtre
- RSIT téléchargera HijackThis si il n’est pas présent où détecté, alors il faudra accepter la licence
- Poste le contenu de log.txt plus info.txt (réduit ds la barre de taches) à la fin de l’analyse .
Les rapports sont dans le dossier ici C:\rsit
a+
sardegna2009
le 06 aout 2009 à 18h40
voila :
Logfile of random's system information tool 1.06 (written by random/random)
Run by giova at 2009-08-06 18:38:14
Microsoft® Windows Vista™ Édition Familiale Premium Service Pack 1
System drive C: has 17 GB (6%) free of 305 GB
Total RAM: 3070 MB (61% free)
Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 18:38:41, on 6/08/2009
Platform: Windows Vista SP1 (WinNT 6.00.1905)
MSIE: Internet Explorer v8.00 (8.00.6001.18813)
Boot mode: Normal
Running processes:
C:\Windows\system32\Dwm.exe
C:\Windows\Explorer.EXE
C:\Windows\system32\taskeng.exe
C:\Program Files\Windows Defender\MSASCui.exe
C:\Program Files\Synaptics\SynTP\SynTPStart.exe
C:\Windows\RtHDVCpl.exe
C:\Program Files\Genesys PC Camera Device\GenePccMon.exe
C:\Program Files\Common Files\InstallShield\UpdateService\issch.exe
C:\Program Files\Java\jre6\bin\jusched.exe
C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
C:\Windows\System32\rundll32.exe
C:\Windows\System32\p2phost.exe
C:\Program Files\Windows Live\Messenger\msnmsgr.exe
C:\Program Files\Nokia\Nokia PC Suite 7\PCSuite.exe
C:\Windows\ehome\ehtray.exe
C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
C:\Program Files\DAEMON Tools Lite\daemon.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Windows Media Player\wmpnscfg.exe
C:\Windows\System32\rundll32.exe
C:\Windows\ehome\ehmsas.exe
C:\Windows\system32\wbem\unsecapp.exe
C:\Program Files\PC Connectivity Solution\Transports\NclToBTSrv.exe
C:\Program Files\Windows Live\Contacts\wlcomm.exe
C:\Windows\system32\conime.exe
C:\Users\giova\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\giova\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\giova\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Windows\system32\SearchFilterHost.exe
C:\Users\giova\Documents\Downloads\RSIT (1).exe
C:\Program Files\trend micro\giova.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.yoower.com/
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
O1 - Hosts: ::1 localhost
O2 - BHO: Aide pour le lien d'Adobe PDF Reader - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll
O2 - BHO: BitComet ClickCapture - {39F7E362-828A-4B5A-BCAF-5B79BFDFEA60} - C:\Program Files\BitComet\tools\BitCometBHO_1.3.3.2.dll
O2 - BHO: Click-to-Call BHO - {5C255C8A-E604-49b4-9D64-90988571CECB} - C:\Program Files\Windows Live\Messenger\wlchtc.dll
O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files\Google\Google Toolbar\GoogleToolbar.dll
O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\5.1.1309.15642\swg.dll
O2 - BHO: Google Dictionary Compression sdch - {C84D72FE-E17D-4195-BB24-76C02E2E7C4E} - C:\Program Files\Google\Google Toolbar\Component\fastsearch_A8904FB862BD9564.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll
O3 - Toolbar: Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar.dll
O4 - HKLM\..\Run: [Windows Defender] %ProgramFiles%\Windows Defender\MSASCui.exe -hide
O4 - HKLM\..\Run: [SynTPStart] C:\Program Files\Synaptics\SynTP\SynTPStart.exe
O4 - HKLM\..\Run: [RtHDVCpl] RtHDVCpl.exe
O4 - HKLM\..\Run: [Skytel] Skytel.exe
O4 - HKLM\..\Run: [GenePccMon.exe] C:\Program Files\Genesys PC Camera Device\GenePccMon.exe
O4 - HKLM\..\Run: [ISUSPM Startup] C:\PROGRA~1\COMMON~1\INSTAL~1\UPDATE~1\ISUSPM.exe -startup
O4 - HKLM\..\Run: [ISUSScheduler] "C:\Program Files\Common Files\InstallShield\UpdateService\issch.exe" -start
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre6\bin\jusched.exe"
O4 - HKLM\..\Run: [NvSvc] RUNDLL32.EXE C:\Windows\system32\nvsvc.dll,nvsvcStart
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\Windows\system32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\Windows\system32\NvMcTray.dll,NvTaskbarInit
O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe"
O4 - HKLM\..\Run: [Cake active] "C:\ProgramData\help plan plan.ahjmt"
O4 - HKLM\..\Run: [warn default inter for] "C:\ProgramData\Trust Logo Third.x9eqm"
O4 - HKLM\..\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
O4 - HKCU\..\Run: [WindowsWelcomeCenter] rundll32.exe oobefldr.dll,ShowWelcomeCenter
O4 - HKCU\..\Run: [CollaborationHost] C:\Windows\system32\p2phost.exe -s
O4 - HKCU\..\Run: [msnmsgr] "C:\Program Files\Windows Live\Messenger\MsnMsgr.Exe" /background
O4 - HKCU\..\Run: [PC Suite Tray] "C:\Program Files\Nokia\Nokia PC Suite 7\PCSuite.exe" -onlytray
O4 - HKCU\..\Run: [ccleaner] "C:\Program Files\CCleaner\CCleaner.exe" /AUTO
O4 - HKCU\..\Run: [ISUSScheduler] "C:\Program Files\Common Files\InstallShield\UpdateService\issch.exe" -start
O4 - HKCU\..\Run: [ehTray.exe] C:\Windows\ehome\ehTray.exe
O4 - HKCU\..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
O4 - HKCU\..\Run: [DAEMON Tools Lite] "C:\Program Files\DAEMON Tools Lite\daemon.exe" -autorun
O4 - HKCU\..\Run: [Google Update] "C:\Users\giova\AppData\Local\Google\Update\GoogleUpdate.exe" /c
O4 - HKCU\..\Run: [BitComet] "C:\Program Files\BitComet\BitComet.exe" /tray
O4 - HKCU\..\Run: [WMPNSCFG] C:\Program Files\Windows Media Player\WMPNSCFG.exe
O4 - HKCU\..\Run: [eMuleAutoStart] C:\Program Files\eMule\emule.exe -AutoStart
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-19\..\Run: [WindowsWelcomeCenter] rundll32.exe oobefldr.dll,ShowWelcomeCenter (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'SERVICE RÉSEAU')
O4 - Startup: Event Reminder.lnk = C:\pmw\PMREMIND.EXE
O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~4\Office12\EXCEL.EXE/3000
O8 - Extra context menu item: Tout télécharger avec BitComet - res://C:\Program Files\BitComet\BitComet.exe/AddAllLink.htm
O8 - Extra context menu item: Télécharger avec BitComet - res://C:\Program Files\BitComet\BitComet.exe/AddLink.htm
O8 - Extra context menu item: Télécharger toutes les vidéos avec BitComet - res://C:\Program Files\BitComet\BitComet.exe/AddVideo.htm
O9 - Extra button: Ajout Direct - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra 'Tools' menuitem: &Ajout Direct dans Windows Live Writer - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra button: Envoyer à OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~4\Office12\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: &Envoyer à OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~4\Office12\ONBttnIE.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~4\Office12\REFIEBAR.DLL
O9 - Extra button: BitComet - {D18A0B52-D63C-4ed0-AFC6-C1E3DC1AF43A} - res://C:\Program Files\BitComet\tools\BitCometBHO_1.3.3.2.dll/206 (file missing)
O13 - Gopher Prefix:
O16 - DPF: {5D6F45B3-9043-443D-A792-115447494D24} (UnoCtrl Class) - http://messenger.zone.msn.com/FR-BE/a-UNO1/GAME_UNO1.cab
O16 - DPF: {867E13F2-7F31-44FB-AC97-CD38E0DC46EF} (HardwareDetection Control) - http://fichiers.touslesdrivers.com/maconfig/MaConfig_3_1_2_1.cab
O16 - DPF: {C3F79A2B-B9B4-4A66-B012-3EE46475B072} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsPAClient.cab56907.cab
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab
O16 - DPF: {D71F9A27-723E-4B8B-B428-B725E47CBA3E} (Imikimi_activex_plugin Control) - http://imikimi.com/download/imikimi_plugin_0.5.1.cab
O18 - Filter: x-sdch - {B1759355-3EEC-4C1E-B0F1-B719FE26E377} - C:\Program Files\Google\Google Toolbar\Component\fastsearch_A8904FB862BD9564.dll
O20 - AppInit_DLLs: C:\PROGRA~1\Google\GOOGLE~3\GOEC62~1.DLL
O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - ALWIL Software - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
O23 - Service: avast! Antivirus - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashServ.exe
O23 - Service: avast! Mail Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
O23 - Service: avast! Web Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
O23 - Service: Google Desktop Manager 5.8.809.23506 (GoogleDesktopManager-092308-165331) - Google - C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe
O23 - Service: Google Software Updater (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\1050\Intel 32\IDriverT.exe
O23 - Service: Ma-Config Service (maconfservice) - CybelSoft - C:\Program Files\ma-config.com\maconfservice.exe
O23 - Service: Nero BackItUp Scheduler 4.0 - Nero AG - C:\Program Files\Common Files\Nero\Nero BackItUp 4\NBService.exe
O23 - Service: ServiceLayer - Nokia. - C:\Program Files\PC Connectivity Solution\ServiceLayer.exe
O23 - Service: TOSHIBA Bluetooth Service - TOSHIBA CORPORATION - C:\Program Files\Toshiba\Bluetooth Toshiba Stack\TosBtSrv.exe
O23 - Service: XAudioService - Conexant Systems, Inc. - C:\Windows\system32\DRIVERS\xaudio.exe
--
End of file - 10351 bytes
======Scheduled tasks folder======
C:\Windows\tasks\GlaryInitialize.job
C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-4179544620-4203920697-3270201199-1002Core.job
C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-4179544620-4203920697-3270201199-1002UA.job
C:\Windows\tasks\User_Feed_Synchronization-{A7D8A71A-3493-410B-B5EB-7EC12AB742A3}.job
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{06849E9F-C8D7-4D59-B87D-784B7D6BE0B3}]
Aide pour le lien d'Adobe PDF Reader - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll [2006-10-22 62080]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{39F7E362-828A-4B5A-BCAF-5B79BFDFEA60}]
BitComet Helper - C:\Program Files\BitComet\tools\BitCometBHO_1.3.3.2.dll [2009-03-02 636216]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{5C255C8A-E604-49b4-9D64-90988571CECB}]
Click-to-Call BHO - C:\Program Files\Windows Live\Messenger\wlchtc.dll [2009-02-06 73072]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
Programme d'aide de l'Assistant de connexion Windows Live - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2009-01-22 408448]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AA58ED58-01DD-4d91-8333-CF10577473F7}]
Google Toolbar Helper - C:\Program Files\Google\Google Toolbar\GoogleToolbar.dll [2009-06-20 259696]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AF69DE43-7D58-4638-B6FA-CE66B5AD205D}]
Google Toolbar Notifier BHO - C:\Program Files\Google\GoogleToolbarNotifier\5.1.1309.15642\swg.dll [2009-06-23 669168]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{C84D72FE-E17D-4195-BB24-76C02E2E7C4E}]
Google Dictionary Compression sdch - C:\Program Files\Google\Google Toolbar\Component\fastsearch_A8904FB862BD9564.dll [2009-06-20 470512]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre6\bin\jp2ssv.dll [2009-03-09 35840]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{2318C2B1-4965-11d4-9B18-009027A5CD4F} - Google Toolbar - C:\Program Files\Google\Google Toolbar\GoogleToolbar.dll [2009-06-20 259696]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"Windows Defender"=C:\Program Files\Windows Defender\MSASCui.exe [2008-01-19 1008184]
"SynTPStart"=C:\Program Files\Synaptics\SynTP\SynTPStart.exe [2007-10-09 102400]
"RtHDVCpl"=C:\Windows\RtHDVCpl.exe [2007-12-05 4710400]
"Skytel"=C:\Windows\Skytel.exe [2007-11-21 1826816]
"GenePccMon.exe"=C:\Program Files\Genesys PC Camera Device\GenePccMon.exe [2007-02-13 36864]
"ISUSPM Startup"=C:\PROGRA~1\COMMON~1\INSTAL~1\UPDATE~1\ISUSPM.exe [2006-08-25 221184]
"ISUSScheduler"=C:\Program Files\Common Files\InstallShield\UpdateService\issch.exe [2006-09-11 86960]
"SunJavaUpdateSched"=C:\Program Files\Java\jre6\bin\jusched.exe [2009-03-09 148888]
"NvSvc"=C:\Windows\system32\nvsvc.dll [2007-10-24 86016]
"NvCplDaemon"=C:\Windows\system32\NvCpl.dll [2007-10-24 8501792]
"NvMediaCenter"=C:\Windows\system32\NvMcTray.dll [2007-10-24 81920]
"Adobe Reader Speed Launcher"=C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe [2008-10-15 39792]
"Cake active"=C:\ProgramData\help plan plan.ahjmt [2009-08-06 376848]
"warn default inter for"=C:\ProgramData\Trust Logo Third.x9eqm [2009-08-04 36880]
"avast!"=C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe [2009-02-05 81000]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"WindowsWelcomeCenter"=oobefldr.dll,ShowWelcomeCenter []
"CollaborationHost"=C:\Windows\system32\p2phost.exe [2008-01-19 192000]
"msnmsgr"=C:\Program Files\Windows Live\Messenger\MsnMsgr.Exe [2009-02-06 3885408]
"PC Suite Tray"=C:\Program Files\Nokia\Nokia PC Suite 7\PCSuite.exe [2009-03-20 1312256]
"ccleaner"=C:\Program Files\CCleaner\CCleaner.exe [2009-05-07 1561840]
"ISUSScheduler"=C:\Program Files\Common Files\InstallShield\UpdateService\issch.exe [2006-09-11 86960]
"ehTray.exe"=C:\Windows\ehome\ehTray.exe [2008-01-19 125952]
"swg"=C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe [2009-06-20 39408]
"DAEMON Tools Lite"=C:\Program Files\DAEMON Tools Lite\daemon.exe [2009-04-23 691656]
"Google Update"=C:\Users\giova\AppData\Local\Google\Update\GoogleUpdate.exe [2009-07-03 133104]
"BitComet"=C:\Program Files\BitComet\BitComet.exe [2009-05-18 2592056]
"WMPNSCFG"=C:\Program Files\Windows Media Player\WMPNSCFG.exe [2008-01-19 202240]
"eMuleAutoStart"=C:\Program Files\eMule\emule.exe [2009-02-22 5668864]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe Reader Speed Launcher]
C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe [2008-10-15 39792]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\eMuleAutoStart]
C:\Program Files\eMule\emule.exe [2009-02-22 5668864]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\msnmsgr]
C:\Program Files\Windows Live\Messenger\msnmsgr.exe [2009-02-06 3885408]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Users^giova^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^OneNote 2007 - Capture d'écran et lancement.lnk]
C:\PROGRA~1\MICROS~4\Office12\ONENOTEM.EXE [2008-10-25 98696]
C:\Users\giova\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
Event Reminder.lnk - C:\pmw\PMREMIND.EXE
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows]
"AppInit_DLLS"="C:\PROGRA~1\Google\GOOGLE~3\GOEC62~1.DLL"
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\vsmon]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"EnableLUA"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
"EnableUIADesktopToggle"=0
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{5e1380be-0fcf-11de-9fa6-806e6f6e6963}]
shell\AutoRun\command - D:\Autorun.exe
======File associations======
.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*
======List of files/folders created in the last 1 months======
2009-08-06 18:38:14 ----D---- C:\rsit
2009-08-06 18:38:14 ----D---- C:\Program Files\trend micro
2009-08-06 12:21:41 ----A---- C:\Windows\system32\aswBoot.exe
2009-08-04 10:59:21 ----SHD---- C:\Config.Msi
2009-08-04 10:56:07 ----A---- C:\Windows\system32\occache.dll
2009-08-04 10:56:06 ----A---- C:\Windows\system32\msfeedsbs.dll
2009-08-04 10:56:06 ----A---- C:\Windows\system32\msfeeds.dll
2009-08-04 10:56:06 ----A---- C:\Windows\system32\jsproxy.dll
2009-08-04 10:56:06 ----A---- C:\Windows\system32\iepeers.dll
2009-08-04 10:56:05 ----A---- C:\Windows\system32\ieui.dll
2009-08-04 10:56:05 ----A---- C:\Windows\system32\iesetup.dll
2009-08-04 10:56:04 ----A---- C:\Windows\system32\wininet.dll
2009-08-04 10:56:04 ----A---- C:\Windows\system32\urlmon.dll
2009-08-04 10:56:04 ----A---- C:\Windows\system32\msfeedssync.exe
2009-08-04 10:56:04 ----A---- C:\Windows\system32\ieUnatt.exe
2009-08-04 10:56:04 ----A---- C:\Windows\system32\iesysprep.dll
2009-08-04 10:56:04 ----A---- C:\Windows\system32\iertutil.dll
2009-08-04 10:56:04 ----A---- C:\Windows\system32\iernonce.dll
2009-08-04 10:56:04 ----A---- C:\Windows\system32\iedkcs32.dll
2009-08-04 10:56:04 ----A---- C:\Windows\system32\ie4uinit.exe
2009-08-04 10:56:03 ----A---- C:\Windows\system32\ieframe.dll
2009-08-04 10:56:02 ----A---- C:\Windows\system32\mshtml.dll
2009-08-04 10:54:01 ----A---- C:\Windows\system32\mshtmler.dll
2009-08-04 10:54:01 ----A---- C:\Windows\system32\mshtmled.dll
2009-08-04 10:54:01 ----A---- C:\Windows\system32\icardie.dll
2009-08-04 10:54:01 ----A---- C:\Windows\system32\admparse.dll
2009-08-04 10:54:00 ----A---- C:\Windows\system32\msls31.dll
2009-08-04 10:54:00 ----A---- C:\Windows\system32\imgutil.dll
2009-08-04 10:54:00 ----A---- C:\Windows\system32\ieakeng.dll
2009-08-04 10:54:00 ----A---- C:\Windows\system32\dxtrans.dll
2009-08-04 10:54:00 ----A---- C:\Windows\system32\dxtmsft.dll
2009-08-04 10:54:00 ----A---- C:\Windows\system32\corpol.dll
2009-08-04 10:53:59 ----A---- C:\Windows\system32\WinFXDocObj.exe
2009-08-04 10:53:59 ----A---- C:\Windows\system32\wextract.exe
2009-08-04 10:53:59 ----A---- C:\Windows\system32\webcheck.dll
2009-08-04 10:53:59 ----A---- C:\Windows\system32\msrating.dll
2009-08-04 10:53:59 ----A---- C:\Windows\system32\licmgr10.dll
2009-08-04 10:53:59 ----A---- C:\Windows\system32\inseng.dll
2009-08-04 10:53:59 ----A---- C:\Windows\system32\ieakui.dll
2009-08-04 10:53:59 ----A---- C:\Windows\system32\ieaksie.dll
2009-08-04 10:53:58 ----A---- C:\Windows\system32\pngfilt.dll
2009-08-04 10:53:58 ----A---- C:\Windows\system32\mstime.dll
2009-08-04 10:53:58 ----A---- C:\Windows\system32\ieapfltr.dll
2009-08-04 10:53:58 ----A---- C:\Windows\system32\advpack.dll
2009-08-04 10:53:57 ----A---- C:\Windows\system32\vbscript.dll
2009-08-04 10:53:57 ----A---- C:\Windows\system32\url.dll
2009-08-04 10:53:57 ----A---- C:\Windows\system32\jscript.dll
2009-08-04 10:53:56 ----A---- C:\Windows\system32\SetIEInstalledDate.exe
2009-08-04 10:53:56 ----A---- C:\Windows\system32\SetDepNx.exe
2009-08-04 10:53:56 ----A---- C:\Windows\system32\RegisterIEPKEYs.exe
2009-08-04 10:53:56 ----A---- C:\Windows\system32\PDMSetup.exe
2009-08-04 10:53:56 ----A---- C:\Windows\system32\mshta.exe
2009-08-04 10:53:56 ----A---- C:\Windows\system32\iexpress.exe
2009-08-04 10:50:17 ----D---- C:\Program Files\WebCam Spy Lite
2009-08-04 10:22:13 ----D---- C:\Program Files\heart face math
2009-08-04 10:01:21 ----D---- C:\ProgramData\Time Dead Warn Default
2009-08-04 10:01:06 ----D---- C:\ProgramData\heart face math
2009-08-04 10:00:57 ----D---- C:\Program Files\TorrentSpeeder
2009-07-29 03:11:36 ----D---- C:\ProgramData\Electronic Arts
2009-07-21 18:49:18 ----A---- C:\Windows\system32\t2embed.dll
2009-07-21 18:49:18 ----A---- C:\Windows\system32\fontsub.dll
2009-07-21 18:49:18 ----A---- C:\Windows\system32\dciman32.dll
2009-07-21 18:49:18 ----A---- C:\Windows\system32\atmfd.dll
2009-07-17 14:03:40 ----D---- C:\Program Files\FlyGimp Pro
======List of files/folders modified in the last 1 months======
2009-08-06 18:38:25 ----D---- C:\Windows\Prefetch
2009-08-06 18:38:17 ----D---- C:\Windows\Temp
2009-08-06 18:38:14 ----RD---- C:\Program Files
2009-08-06 18:20:15 ----HD---- C:\ProgramData
2009-08-06 15:58:05 ----D---- C:\Windows\system32\catroot2
2009-08-06 15:58:01 ----SHD---- C:\System Volume Information
2009-08-06 12:39:43 ----D---- C:\Windows
2009-08-06 12:22:08 ----D---- C:\Windows\system32\drivers
2009-08-06 12:22:04 ----D---- C:\Windows\System32
2009-08-06 12:19:38 ----D---- C:\Program Files\BitComet
2009-08-06 12:19:12 ----D---- C:\Downloads
2009-08-05 14:57:41 ----D---- C:\Program Files\EA SPORTS
2009-08-04 20:11:43 ----A---- C:\Windows\NeroDigital.ini
2009-08-04 18:43:39 ----A---- C:\Windows\ACROREAD.INI
2009-08-04 17:06:11 ----D---- C:\Windows\rescache
2009-08-04 16:47:33 ----D---- C:\Windows\system32\migration
2009-08-04 16:47:33 ----D---- C:\Windows\system32\fr-FR
2009-08-04 16:47:33 ----D---- C:\Program Files\Internet Explorer
2009-08-04 16:47:32 ----D---- C:\Windows\system32\en-US
2009-08-04 16:47:32 ----D---- C:\Windows\PolicyDefinitions
2009-08-04 13:27:07 ----D---- C:\Windows\Microsoft.NET
2009-08-04 11:02:49 ----SHD---- C:\Windows\Installer
2009-08-04 11:01:36 ----D---- C:\ProgramData\Microsoft Help
2009-08-04 11:01:32 ----RSD---- C:\Windows\assembly
2009-08-04 10:59:49 ----RSD---- C:\Windows\Fonts
2009-08-04 10:59:42 ----D---- C:\Program Files\Common Files\microsoft shared
2009-08-04 10:59:26 ----D---- C:\Program Files\Microsoft Works
2009-08-04 10:56:38 ----D---- C:\Windows\winsxs
2009-08-04 10:56:32 ----D---- C:\Windows\system32\catroot
2009-08-04 10:07:11 ----D---- C:\Program Files\Intel
2009-08-02 10:46:35 ----D---- C:\Program Files\Microsoft Silverlight
2009-07-31 00:21:07 ----D---- C:\Windows\inf
2009-07-31 00:21:07 ----A---- C:\Windows\system32\PerfStringBackup.INI
2009-07-24 03:19:10 ----D---- C:\Program Files\Windows Live Safety Center
2009-07-22 20:43:30 ----D---- C:\Users\giova\AppData\Roaming\temp
2009-07-21 19:29:59 ----D---- C:\Windows\Debug
2009-07-21 19:22:22 ----D---- C:\Program Files\Windows Mail
2009-07-21 19:09:14 ----D---- C:\Windows\Internet Logs
2009-07-21 19:06:30 ----A---- C:\Windows\wininit.ini
2009-07-21 19:06:30 ----A---- C:\Windows\ka.ini
2009-07-21 19:04:36 ----DC---- C:\Windows\system32\DRVSTORE
2009-07-21 19:03:57 ----D---- C:\Program Files\Microsoft Office
2009-07-21 19:03:46 ----D---- C:\Windows\ShellNew
2009-07-21 19:03:45 ----D---- C:\Program Files\Common Files\System
2009-07-21 19:01:52 ----RSD---- C:\Windows\Media
2009-07-21 19:01:35 ----A---- C:\Windows\vbaddin.ini
2009-07-21 18:56:38 ----D---- C:\Program Files\Camfrog
2009-07-21 18:56:17 ----SD---- C:\ProgramData\Microsoft
2009-07-21 18:56:17 ----D---- C:\Users\giova\AppData\Roaming\Lavasoft
2009-07-21 18:55:52 ----D---- C:\Program Files\Microsoft
2009-07-21 18:51:29 ----HD---- C:\Program Files\InstallShield Installation Information
2009-07-21 18:49:35 ----D---- C:\Windows\system32\Tasks
2009-07-21 18:34:02 ----D---- C:\Windows\system32\wbem
2009-07-21 18:32:52 ----D---- C:\Windows\system32\config
2009-07-21 18:32:25 ----D---- C:\Windows\Tasks
2009-07-21 18:32:25 ----D---- C:\Windows\system32\spool
2009-07-21 18:32:25 ----D---- C:\Windows\system32\Msdtc
2009-07-21 18:32:25 ----D---- C:\Windows\system32\CodeIntegrity
2009-07-21 18:32:24 ----D---- C:\Users\giova\AppData\Roaming\vlc
2009-07-21 18:32:20 ----D---- C:\Program Files\Glary Utilities
2009-07-21 18:32:19 ----D---- C:\Windows\registration
2009-07-08 11:29:59 ----D---- C:\Windows\system32\WDI
2009-07-07 17:10:56 ----A---- C:\Windows\system32\mrt.exe
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R1 Tosrfcom;Bluetooth RFCOMM; C:\Windows\System32\Drivers\tosrfcom.sys [2005-08-01 64896]
R2 mdmxsdk;mdmxsdk; C:\Windows\system32\DRIVERS\mdmxsdk.sys [2006-06-18 12672]
R2 XAudio;XAudio; C:\Windows\system32\DRIVERS\xaudio.sys [2006-08-03 8192]
R3 CmBatt;Pilote pour Batterie à méthode de contrôle ACPI Microsoft; C:\Windows\system32\DRIVERS\CmBatt.sys [2008-01-19 14208]
R3 DCamUSBGene;GenesysLogic USB2.0 PC Camera; C:\Windows\system32\DRIVERS\usbgene.sys [2007-06-26 131584]
R3 HSF_DPV;HSF_DPV; C:\Windows\system32\DRIVERS\HSX_DPV.sys [2006-10-17 986624]
R3 HSXHWAZL;HSXHWAZL; C:\Windows\system32\DRIVERS\HSXHWAZL.sys [2006-10-17 206848]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\Windows\system32\drivers\RTKVHDA.sys [2007-12-06 2027032]
R3 NETw4v32;Pilote de carte Intel(R) Wireless WiFi Link pour Windows Vista 32 bits; C:\Windows\system32\DRIVERS\NETw4v32.sys [2007-10-19 2251776]
R3 nvlddmkm;nvlddmkm; C:\Windows\system32\DRIVERS\nvlddmkm.sys [2007-10-24 7629664]
R3 RTL8169;Realtek 8169 NT Driver; C:\Windows\system32\DRIVERS\Rtlh86.sys [2007-03-05 76288]
R3 RTSTOR;USB Mass Storage Device; C:\Windows\system32\drivers\RTSTOR.SYS [2007-06-15 47616]
R3 SynTP;Synaptics TouchPad Driver; C:\Windows\system32\DRIVERS\SynTP.sys [2007-10-09 192560]
R3 tosporte;Bluetooth COM Port; C:\Windows\system32\DRIVERS\tosporte.sys [2006-10-10 41600]
R3 tosrfbd;Bluetooth RFBUS; C:\Windows\system32\DRIVERS\tosrfbd.sys [2007-01-12 113792]
R3 tosrfbnp;Bluetooth RFBNEP; C:\Windows\System32\Drivers\tosrfbnp.sys [2006-11-20 36480]
R3 Tosrfhid;Bluetooth RFHID; C:\Windows\system32\DRIVERS\Tosrfhid.sys [2007-01-24 73728]
R3 tosrfnds;Bluetooth Personal Area Network; C:\Windows\system32\DRIVERS\tosrfnds.sys [2005-01-06 18612]
R3 Tosrfusb;Bluetooth USB Controller; C:\Windows\system32\DRIVERS\tosrfusb.sys [2007-01-12 40576]
R3 winachsf;winachsf; C:\Windows\system32\DRIVERS\HSX_CNXT.sys [2006-10-17 659968]
S1 aswRdr;aswRdr; C:\Windows\system32\drivers\aswRdr.sys [2009-02-05 23152]
S1 aswSP;avast! Self Protection; C:\Windows\system32\drivers\aswSP.sys [2009-02-05 114768]
S1 aswTdi;avast! Network Shield Support; C:\Windows\system32\drivers\aswTdi.sys [2009-02-05 51376]
S2 aswFsBlk;aswFsBlk; C:\Windows\system32\DRIVERS\aswFsBlk.sys [2009-02-05 20560]
S2 aswMonFlt;aswMonFlt; C:\Windows\system32\DRIVERS\aswMonFlt.sys [2009-02-05 51792]
S3 a9h9kwlx;a9h9kwlx; C:\Windows\system32\drivers\a9h9kwlx.sys []
S3 driverhardwarev2;driverhardwarev2; \??\C:\Program Files\ma-config.com\Drivers\driverhardwarev2.sys [2009-04-21 14336]
S3 drmkaud;Filtre de décodeur DRM (Noyau Microsoft); C:\Windows\system32\drivers\drmkaud.sys [2008-01-19 5632]
S3 fssfltr;FssFltr; C:\Windows\system32\DRIVERS\fssfltr.sys [2009-02-06 55280]
S3 HdAudAddService;Pilote de fonction UAA 1.1 Microsoft pour le service High Definition Audio; C:\Windows\system32\drivers\HdAudio.sys [2006-11-02 235520]
S3 HSFHWAZL;HSFHWAZL; C:\Windows\system32\DRIVERS\VSTAZL3.SYS [2006-11-02 200704]
S3 MSKSSRV;Proxy de service de répartition Microsoft; C:\Windows\system32\drivers\MSKSSRV.sys [2008-01-19 8192]
S3 MSPCLOCK;Proxy d'horloge de répartition Microsoft; C:\Windows\system32\drivers\MSPCLOCK.sys [2008-01-19 5888]
S3 MSPQM;Proxy de gestion de qualité de répartition Microsoft; C:\Windows\system32\drivers\MSPQM.sys [2008-01-19 5504]
S3 MSTEE;Convertisseur en T/site-à-site de répartition Microsoft; C:\Windows\system32\drivers\MSTEE.sys [2008-01-19 6016]
S3 NETw3v32;Pilote de carte Intel(R) PRO/Wireless 3945ABG pour Windows Vista 32 bits; C:\Windows\system32\DRIVERS\NETw3v32.sys [2006-11-02 1781760]
S3 nmwcd;Nokia USB Phone Parent; C:\Windows\system32\drivers\ccdcmb.sys [2009-02-09 17664]
S3 nmwcdc;Nokia USB Generic; C:\Windows\system32\drivers\ccdcmbo.sys [2009-02-09 22016]
S3 TosRfSnd;Bluetooth Audio; C:\Windows\system32\drivers\tosrfsnd.sys [2007-01-22 53376]
S3 upperdev;upperdev; C:\Windows\system32\DRIVERS\usbser_lowerflt.sys [2009-02-09 7808]
S3 USBCM;Scientific-Atlanta USB Cable Modem Driver; C:\Windows\system32\DRIVERS\Sacm2A.sys [2004-06-10 15429]
S3 usbser;USB Modem Driver; C:\Windows\system32\drivers\usbser.sys [2008-01-19 28160]
S3 UsbserFilt;UsbserFilt; C:\Windows\system32\DRIVERS\usbser_lowerfltj.sys [2009-02-09 7808]
S3 WUDFRd;WUDFRd; C:\Windows\system32\DRIVERS\WUDFRd.sys [2008-01-19 83328]
S4 UIUSys;Conexant Setup API; C:\Windows\system32\DRIVERS\UIUSYS.SYS [2006-06-08 6909]
S4 WmiAcpi;Microsoft Windows Management Interface for ACPI; C:\Windows\system32\drivers\wmiacpi.sys [2006-11-02 11264]
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 Nero BackItUp Scheduler 4.0;Nero BackItUp Scheduler 4.0; C:\Program Files\Common Files\Nero\Nero BackItUp 4\NBService.exe [2008-09-30 935208]
R2 TOSHIBA Bluetooth Service;TOSHIBA Bluetooth Service; C:\Program Files\Toshiba\Bluetooth Toshiba Stack\TosBtSrv.exe [2007-02-02 118784]
R2 XAudioService;XAudioService; C:\Windows\system32\DRIVERS\xaudio.exe [2006-08-03 386560]
R3 ServiceLayer;ServiceLayer; C:\Program Files\PC Connectivity Solution\ServiceLayer.exe [2009-03-04 621056]
S2 aswUpdSv;avast! iAVS4 Control Service; C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe [2009-02-05 18752]
S2 avast! Antivirus;avast! Antivirus; C:\Program Files\Alwil Software\Avast4\ashServ.exe [2009-02-05 138680]
S3 avast! Mail Scanner;avast! Mail Scanner; C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe [2009-02-05 254040]
S3 avast! Web Scanner;avast! Web Scanner; C:\Program Files\Alwil Software\Avast4\ashWebSv.exe [2009-02-05 352920]
S3 fsssvc;Windows Live Contrôle parental; C:\Program Files\Windows Live\Family Safety\fsssvc.exe [2009-02-06 533360]
S3 GoogleDesktopManager-092308-165331;Google Desktop Manager 5.8.809.23506; C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe [2009-06-22 30192]
S3 gusvc;Google Software Updater; C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe [2009-06-20 182768]
S3 IDriverT;InstallDriver Table Manager; C:\Program Files\Common Files\InstallShield\Driver\1050\Intel 32\IDriverT.exe [2004-10-22 73728]
S3 maconfservice;Ma-Config Service; C:\Program Files\ma-config.com\maconfservice.exe [2009-04-21 216232]
S3 odserv;Microsoft Office Diagnostics Service; C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE [2008-11-04 441712]
S3 ose;Office Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2006-10-26 145184]
-----------------EOF-----------------
Merci
Logfile of random's system information tool 1.06 (written by random/random)
Run by giova at 2009-08-06 18:38:14
Microsoft® Windows Vista™ Édition Familiale Premium Service Pack 1
System drive C: has 17 GB (6%) free of 305 GB
Total RAM: 3070 MB (61% free)
Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 18:38:41, on 6/08/2009
Platform: Windows Vista SP1 (WinNT 6.00.1905)
MSIE: Internet Explorer v8.00 (8.00.6001.18813)
Boot mode: Normal
Running processes:
C:\Windows\system32\Dwm.exe
C:\Windows\Explorer.EXE
C:\Windows\system32\taskeng.exe
C:\Program Files\Windows Defender\MSASCui.exe
C:\Program Files\Synaptics\SynTP\SynTPStart.exe
C:\Windows\RtHDVCpl.exe
C:\Program Files\Genesys PC Camera Device\GenePccMon.exe
C:\Program Files\Common Files\InstallShield\UpdateService\issch.exe
C:\Program Files\Java\jre6\bin\jusched.exe
C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
C:\Windows\System32\rundll32.exe
C:\Windows\System32\p2phost.exe
C:\Program Files\Windows Live\Messenger\msnmsgr.exe
C:\Program Files\Nokia\Nokia PC Suite 7\PCSuite.exe
C:\Windows\ehome\ehtray.exe
C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
C:\Program Files\DAEMON Tools Lite\daemon.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Windows Media Player\wmpnscfg.exe
C:\Windows\System32\rundll32.exe
C:\Windows\ehome\ehmsas.exe
C:\Windows\system32\wbem\unsecapp.exe
C:\Program Files\PC Connectivity Solution\Transports\NclToBTSrv.exe
C:\Program Files\Windows Live\Contacts\wlcomm.exe
C:\Windows\system32\conime.exe
C:\Users\giova\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\giova\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\giova\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Windows\system32\SearchFilterHost.exe
C:\Users\giova\Documents\Downloads\RSIT (1).exe
C:\Program Files\trend micro\giova.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.yoower.com/
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
O1 - Hosts: ::1 localhost
O2 - BHO: Aide pour le lien d'Adobe PDF Reader - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll
O2 - BHO: BitComet ClickCapture - {39F7E362-828A-4B5A-BCAF-5B79BFDFEA60} - C:\Program Files\BitComet\tools\BitCometBHO_1.3.3.2.dll
O2 - BHO: Click-to-Call BHO - {5C255C8A-E604-49b4-9D64-90988571CECB} - C:\Program Files\Windows Live\Messenger\wlchtc.dll
O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files\Google\Google Toolbar\GoogleToolbar.dll
O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\5.1.1309.15642\swg.dll
O2 - BHO: Google Dictionary Compression sdch - {C84D72FE-E17D-4195-BB24-76C02E2E7C4E} - C:\Program Files\Google\Google Toolbar\Component\fastsearch_A8904FB862BD9564.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll
O3 - Toolbar: Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar.dll
O4 - HKLM\..\Run: [Windows Defender] %ProgramFiles%\Windows Defender\MSASCui.exe -hide
O4 - HKLM\..\Run: [SynTPStart] C:\Program Files\Synaptics\SynTP\SynTPStart.exe
O4 - HKLM\..\Run: [RtHDVCpl] RtHDVCpl.exe
O4 - HKLM\..\Run: [Skytel] Skytel.exe
O4 - HKLM\..\Run: [GenePccMon.exe] C:\Program Files\Genesys PC Camera Device\GenePccMon.exe
O4 - HKLM\..\Run: [ISUSPM Startup] C:\PROGRA~1\COMMON~1\INSTAL~1\UPDATE~1\ISUSPM.exe -startup
O4 - HKLM\..\Run: [ISUSScheduler] "C:\Program Files\Common Files\InstallShield\UpdateService\issch.exe" -start
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre6\bin\jusched.exe"
O4 - HKLM\..\Run: [NvSvc] RUNDLL32.EXE C:\Windows\system32\nvsvc.dll,nvsvcStart
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\Windows\system32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\Windows\system32\NvMcTray.dll,NvTaskbarInit
O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe"
O4 - HKLM\..\Run: [Cake active] "C:\ProgramData\help plan plan.ahjmt"
O4 - HKLM\..\Run: [warn default inter for] "C:\ProgramData\Trust Logo Third.x9eqm"
O4 - HKLM\..\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
O4 - HKCU\..\Run: [WindowsWelcomeCenter] rundll32.exe oobefldr.dll,ShowWelcomeCenter
O4 - HKCU\..\Run: [CollaborationHost] C:\Windows\system32\p2phost.exe -s
O4 - HKCU\..\Run: [msnmsgr] "C:\Program Files\Windows Live\Messenger\MsnMsgr.Exe" /background
O4 - HKCU\..\Run: [PC Suite Tray] "C:\Program Files\Nokia\Nokia PC Suite 7\PCSuite.exe" -onlytray
O4 - HKCU\..\Run: [ccleaner] "C:\Program Files\CCleaner\CCleaner.exe" /AUTO
O4 - HKCU\..\Run: [ISUSScheduler] "C:\Program Files\Common Files\InstallShield\UpdateService\issch.exe" -start
O4 - HKCU\..\Run: [ehTray.exe] C:\Windows\ehome\ehTray.exe
O4 - HKCU\..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
O4 - HKCU\..\Run: [DAEMON Tools Lite] "C:\Program Files\DAEMON Tools Lite\daemon.exe" -autorun
O4 - HKCU\..\Run: [Google Update] "C:\Users\giova\AppData\Local\Google\Update\GoogleUpdate.exe" /c
O4 - HKCU\..\Run: [BitComet] "C:\Program Files\BitComet\BitComet.exe" /tray
O4 - HKCU\..\Run: [WMPNSCFG] C:\Program Files\Windows Media Player\WMPNSCFG.exe
O4 - HKCU\..\Run: [eMuleAutoStart] C:\Program Files\eMule\emule.exe -AutoStart
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-19\..\Run: [WindowsWelcomeCenter] rundll32.exe oobefldr.dll,ShowWelcomeCenter (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'SERVICE RÉSEAU')
O4 - Startup: Event Reminder.lnk = C:\pmw\PMREMIND.EXE
O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~4\Office12\EXCEL.EXE/3000
O8 - Extra context menu item: Tout télécharger avec BitComet - res://C:\Program Files\BitComet\BitComet.exe/AddAllLink.htm
O8 - Extra context menu item: Télécharger avec BitComet - res://C:\Program Files\BitComet\BitComet.exe/AddLink.htm
O8 - Extra context menu item: Télécharger toutes les vidéos avec BitComet - res://C:\Program Files\BitComet\BitComet.exe/AddVideo.htm
O9 - Extra button: Ajout Direct - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra 'Tools' menuitem: &Ajout Direct dans Windows Live Writer - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra button: Envoyer à OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~4\Office12\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: &Envoyer à OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~4\Office12\ONBttnIE.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~4\Office12\REFIEBAR.DLL
O9 - Extra button: BitComet - {D18A0B52-D63C-4ed0-AFC6-C1E3DC1AF43A} - res://C:\Program Files\BitComet\tools\BitCometBHO_1.3.3.2.dll/206 (file missing)
O13 - Gopher Prefix:
O16 - DPF: {5D6F45B3-9043-443D-A792-115447494D24} (UnoCtrl Class) - http://messenger.zone.msn.com/FR-BE/a-UNO1/GAME_UNO1.cab
O16 - DPF: {867E13F2-7F31-44FB-AC97-CD38E0DC46EF} (HardwareDetection Control) - http://fichiers.touslesdrivers.com/maconfig/MaConfig_3_1_2_1.cab
O16 - DPF: {C3F79A2B-B9B4-4A66-B012-3EE46475B072} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsPAClient.cab56907.cab
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab
O16 - DPF: {D71F9A27-723E-4B8B-B428-B725E47CBA3E} (Imikimi_activex_plugin Control) - http://imikimi.com/download/imikimi_plugin_0.5.1.cab
O18 - Filter: x-sdch - {B1759355-3EEC-4C1E-B0F1-B719FE26E377} - C:\Program Files\Google\Google Toolbar\Component\fastsearch_A8904FB862BD9564.dll
O20 - AppInit_DLLs: C:\PROGRA~1\Google\GOOGLE~3\GOEC62~1.DLL
O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - ALWIL Software - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
O23 - Service: avast! Antivirus - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashServ.exe
O23 - Service: avast! Mail Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
O23 - Service: avast! Web Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
O23 - Service: Google Desktop Manager 5.8.809.23506 (GoogleDesktopManager-092308-165331) - Google - C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe
O23 - Service: Google Software Updater (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\1050\Intel 32\IDriverT.exe
O23 - Service: Ma-Config Service (maconfservice) - CybelSoft - C:\Program Files\ma-config.com\maconfservice.exe
O23 - Service: Nero BackItUp Scheduler 4.0 - Nero AG - C:\Program Files\Common Files\Nero\Nero BackItUp 4\NBService.exe
O23 - Service: ServiceLayer - Nokia. - C:\Program Files\PC Connectivity Solution\ServiceLayer.exe
O23 - Service: TOSHIBA Bluetooth Service - TOSHIBA CORPORATION - C:\Program Files\Toshiba\Bluetooth Toshiba Stack\TosBtSrv.exe
O23 - Service: XAudioService - Conexant Systems, Inc. - C:\Windows\system32\DRIVERS\xaudio.exe
--
End of file - 10351 bytes
======Scheduled tasks folder======
C:\Windows\tasks\GlaryInitialize.job
C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-4179544620-4203920697-3270201199-1002Core.job
C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-4179544620-4203920697-3270201199-1002UA.job
C:\Windows\tasks\User_Feed_Synchronization-{A7D8A71A-3493-410B-B5EB-7EC12AB742A3}.job
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{06849E9F-C8D7-4D59-B87D-784B7D6BE0B3}]
Aide pour le lien d'Adobe PDF Reader - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll [2006-10-22 62080]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{39F7E362-828A-4B5A-BCAF-5B79BFDFEA60}]
BitComet Helper - C:\Program Files\BitComet\tools\BitCometBHO_1.3.3.2.dll [2009-03-02 636216]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{5C255C8A-E604-49b4-9D64-90988571CECB}]
Click-to-Call BHO - C:\Program Files\Windows Live\Messenger\wlchtc.dll [2009-02-06 73072]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
Programme d'aide de l'Assistant de connexion Windows Live - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2009-01-22 408448]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AA58ED58-01DD-4d91-8333-CF10577473F7}]
Google Toolbar Helper - C:\Program Files\Google\Google Toolbar\GoogleToolbar.dll [2009-06-20 259696]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AF69DE43-7D58-4638-B6FA-CE66B5AD205D}]
Google Toolbar Notifier BHO - C:\Program Files\Google\GoogleToolbarNotifier\5.1.1309.15642\swg.dll [2009-06-23 669168]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{C84D72FE-E17D-4195-BB24-76C02E2E7C4E}]
Google Dictionary Compression sdch - C:\Program Files\Google\Google Toolbar\Component\fastsearch_A8904FB862BD9564.dll [2009-06-20 470512]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre6\bin\jp2ssv.dll [2009-03-09 35840]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{2318C2B1-4965-11d4-9B18-009027A5CD4F} - Google Toolbar - C:\Program Files\Google\Google Toolbar\GoogleToolbar.dll [2009-06-20 259696]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"Windows Defender"=C:\Program Files\Windows Defender\MSASCui.exe [2008-01-19 1008184]
"SynTPStart"=C:\Program Files\Synaptics\SynTP\SynTPStart.exe [2007-10-09 102400]
"RtHDVCpl"=C:\Windows\RtHDVCpl.exe [2007-12-05 4710400]
"Skytel"=C:\Windows\Skytel.exe [2007-11-21 1826816]
"GenePccMon.exe"=C:\Program Files\Genesys PC Camera Device\GenePccMon.exe [2007-02-13 36864]
"ISUSPM Startup"=C:\PROGRA~1\COMMON~1\INSTAL~1\UPDATE~1\ISUSPM.exe [2006-08-25 221184]
"ISUSScheduler"=C:\Program Files\Common Files\InstallShield\UpdateService\issch.exe [2006-09-11 86960]
"SunJavaUpdateSched"=C:\Program Files\Java\jre6\bin\jusched.exe [2009-03-09 148888]
"NvSvc"=C:\Windows\system32\nvsvc.dll [2007-10-24 86016]
"NvCplDaemon"=C:\Windows\system32\NvCpl.dll [2007-10-24 8501792]
"NvMediaCenter"=C:\Windows\system32\NvMcTray.dll [2007-10-24 81920]
"Adobe Reader Speed Launcher"=C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe [2008-10-15 39792]
"Cake active"=C:\ProgramData\help plan plan.ahjmt [2009-08-06 376848]
"warn default inter for"=C:\ProgramData\Trust Logo Third.x9eqm [2009-08-04 36880]
"avast!"=C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe [2009-02-05 81000]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"WindowsWelcomeCenter"=oobefldr.dll,ShowWelcomeCenter []
"CollaborationHost"=C:\Windows\system32\p2phost.exe [2008-01-19 192000]
"msnmsgr"=C:\Program Files\Windows Live\Messenger\MsnMsgr.Exe [2009-02-06 3885408]
"PC Suite Tray"=C:\Program Files\Nokia\Nokia PC Suite 7\PCSuite.exe [2009-03-20 1312256]
"ccleaner"=C:\Program Files\CCleaner\CCleaner.exe [2009-05-07 1561840]
"ISUSScheduler"=C:\Program Files\Common Files\InstallShield\UpdateService\issch.exe [2006-09-11 86960]
"ehTray.exe"=C:\Windows\ehome\ehTray.exe [2008-01-19 125952]
"swg"=C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe [2009-06-20 39408]
"DAEMON Tools Lite"=C:\Program Files\DAEMON Tools Lite\daemon.exe [2009-04-23 691656]
"Google Update"=C:\Users\giova\AppData\Local\Google\Update\GoogleUpdate.exe [2009-07-03 133104]
"BitComet"=C:\Program Files\BitComet\BitComet.exe [2009-05-18 2592056]
"WMPNSCFG"=C:\Program Files\Windows Media Player\WMPNSCFG.exe [2008-01-19 202240]
"eMuleAutoStart"=C:\Program Files\eMule\emule.exe [2009-02-22 5668864]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe Reader Speed Launcher]
C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe [2008-10-15 39792]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\eMuleAutoStart]
C:\Program Files\eMule\emule.exe [2009-02-22 5668864]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\msnmsgr]
C:\Program Files\Windows Live\Messenger\msnmsgr.exe [2009-02-06 3885408]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Users^giova^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^OneNote 2007 - Capture d'écran et lancement.lnk]
C:\PROGRA~1\MICROS~4\Office12\ONENOTEM.EXE [2008-10-25 98696]
C:\Users\giova\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
Event Reminder.lnk - C:\pmw\PMREMIND.EXE
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows]
"AppInit_DLLS"="C:\PROGRA~1\Google\GOOGLE~3\GOEC62~1.DLL"
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\vsmon]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"EnableLUA"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
"EnableUIADesktopToggle"=0
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{5e1380be-0fcf-11de-9fa6-806e6f6e6963}]
shell\AutoRun\command - D:\Autorun.exe
======File associations======
.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*
======List of files/folders created in the last 1 months======
2009-08-06 18:38:14 ----D---- C:\rsit
2009-08-06 18:38:14 ----D---- C:\Program Files\trend micro
2009-08-06 12:21:41 ----A---- C:\Windows\system32\aswBoot.exe
2009-08-04 10:59:21 ----SHD---- C:\Config.Msi
2009-08-04 10:56:07 ----A---- C:\Windows\system32\occache.dll
2009-08-04 10:56:06 ----A---- C:\Windows\system32\msfeedsbs.dll
2009-08-04 10:56:06 ----A---- C:\Windows\system32\msfeeds.dll
2009-08-04 10:56:06 ----A---- C:\Windows\system32\jsproxy.dll
2009-08-04 10:56:06 ----A---- C:\Windows\system32\iepeers.dll
2009-08-04 10:56:05 ----A---- C:\Windows\system32\ieui.dll
2009-08-04 10:56:05 ----A---- C:\Windows\system32\iesetup.dll
2009-08-04 10:56:04 ----A---- C:\Windows\system32\wininet.dll
2009-08-04 10:56:04 ----A---- C:\Windows\system32\urlmon.dll
2009-08-04 10:56:04 ----A---- C:\Windows\system32\msfeedssync.exe
2009-08-04 10:56:04 ----A---- C:\Windows\system32\ieUnatt.exe
2009-08-04 10:56:04 ----A---- C:\Windows\system32\iesysprep.dll
2009-08-04 10:56:04 ----A---- C:\Windows\system32\iertutil.dll
2009-08-04 10:56:04 ----A---- C:\Windows\system32\iernonce.dll
2009-08-04 10:56:04 ----A---- C:\Windows\system32\iedkcs32.dll
2009-08-04 10:56:04 ----A---- C:\Windows\system32\ie4uinit.exe
2009-08-04 10:56:03 ----A---- C:\Windows\system32\ieframe.dll
2009-08-04 10:56:02 ----A---- C:\Windows\system32\mshtml.dll
2009-08-04 10:54:01 ----A---- C:\Windows\system32\mshtmler.dll
2009-08-04 10:54:01 ----A---- C:\Windows\system32\mshtmled.dll
2009-08-04 10:54:01 ----A---- C:\Windows\system32\icardie.dll
2009-08-04 10:54:01 ----A---- C:\Windows\system32\admparse.dll
2009-08-04 10:54:00 ----A---- C:\Windows\system32\msls31.dll
2009-08-04 10:54:00 ----A---- C:\Windows\system32\imgutil.dll
2009-08-04 10:54:00 ----A---- C:\Windows\system32\ieakeng.dll
2009-08-04 10:54:00 ----A---- C:\Windows\system32\dxtrans.dll
2009-08-04 10:54:00 ----A---- C:\Windows\system32\dxtmsft.dll
2009-08-04 10:54:00 ----A---- C:\Windows\system32\corpol.dll
2009-08-04 10:53:59 ----A---- C:\Windows\system32\WinFXDocObj.exe
2009-08-04 10:53:59 ----A---- C:\Windows\system32\wextract.exe
2009-08-04 10:53:59 ----A---- C:\Windows\system32\webcheck.dll
2009-08-04 10:53:59 ----A---- C:\Windows\system32\msrating.dll
2009-08-04 10:53:59 ----A---- C:\Windows\system32\licmgr10.dll
2009-08-04 10:53:59 ----A---- C:\Windows\system32\inseng.dll
2009-08-04 10:53:59 ----A---- C:\Windows\system32\ieakui.dll
2009-08-04 10:53:59 ----A---- C:\Windows\system32\ieaksie.dll
2009-08-04 10:53:58 ----A---- C:\Windows\system32\pngfilt.dll
2009-08-04 10:53:58 ----A---- C:\Windows\system32\mstime.dll
2009-08-04 10:53:58 ----A---- C:\Windows\system32\ieapfltr.dll
2009-08-04 10:53:58 ----A---- C:\Windows\system32\advpack.dll
2009-08-04 10:53:57 ----A---- C:\Windows\system32\vbscript.dll
2009-08-04 10:53:57 ----A---- C:\Windows\system32\url.dll
2009-08-04 10:53:57 ----A---- C:\Windows\system32\jscript.dll
2009-08-04 10:53:56 ----A---- C:\Windows\system32\SetIEInstalledDate.exe
2009-08-04 10:53:56 ----A---- C:\Windows\system32\SetDepNx.exe
2009-08-04 10:53:56 ----A---- C:\Windows\system32\RegisterIEPKEYs.exe
2009-08-04 10:53:56 ----A---- C:\Windows\system32\PDMSetup.exe
2009-08-04 10:53:56 ----A---- C:\Windows\system32\mshta.exe
2009-08-04 10:53:56 ----A---- C:\Windows\system32\iexpress.exe
2009-08-04 10:50:17 ----D---- C:\Program Files\WebCam Spy Lite
2009-08-04 10:22:13 ----D---- C:\Program Files\heart face math
2009-08-04 10:01:21 ----D---- C:\ProgramData\Time Dead Warn Default
2009-08-04 10:01:06 ----D---- C:\ProgramData\heart face math
2009-08-04 10:00:57 ----D---- C:\Program Files\TorrentSpeeder
2009-07-29 03:11:36 ----D---- C:\ProgramData\Electronic Arts
2009-07-21 18:49:18 ----A---- C:\Windows\system32\t2embed.dll
2009-07-21 18:49:18 ----A---- C:\Windows\system32\fontsub.dll
2009-07-21 18:49:18 ----A---- C:\Windows\system32\dciman32.dll
2009-07-21 18:49:18 ----A---- C:\Windows\system32\atmfd.dll
2009-07-17 14:03:40 ----D---- C:\Program Files\FlyGimp Pro
======List of files/folders modified in the last 1 months======
2009-08-06 18:38:25 ----D---- C:\Windows\Prefetch
2009-08-06 18:38:17 ----D---- C:\Windows\Temp
2009-08-06 18:38:14 ----RD---- C:\Program Files
2009-08-06 18:20:15 ----HD---- C:\ProgramData
2009-08-06 15:58:05 ----D---- C:\Windows\system32\catroot2
2009-08-06 15:58:01 ----SHD---- C:\System Volume Information
2009-08-06 12:39:43 ----D---- C:\Windows
2009-08-06 12:22:08 ----D---- C:\Windows\system32\drivers
2009-08-06 12:22:04 ----D---- C:\Windows\System32
2009-08-06 12:19:38 ----D---- C:\Program Files\BitComet
2009-08-06 12:19:12 ----D---- C:\Downloads
2009-08-05 14:57:41 ----D---- C:\Program Files\EA SPORTS
2009-08-04 20:11:43 ----A---- C:\Windows\NeroDigital.ini
2009-08-04 18:43:39 ----A---- C:\Windows\ACROREAD.INI
2009-08-04 17:06:11 ----D---- C:\Windows\rescache
2009-08-04 16:47:33 ----D---- C:\Windows\system32\migration
2009-08-04 16:47:33 ----D---- C:\Windows\system32\fr-FR
2009-08-04 16:47:33 ----D---- C:\Program Files\Internet Explorer
2009-08-04 16:47:32 ----D---- C:\Windows\system32\en-US
2009-08-04 16:47:32 ----D---- C:\Windows\PolicyDefinitions
2009-08-04 13:27:07 ----D---- C:\Windows\Microsoft.NET
2009-08-04 11:02:49 ----SHD---- C:\Windows\Installer
2009-08-04 11:01:36 ----D---- C:\ProgramData\Microsoft Help
2009-08-04 11:01:32 ----RSD---- C:\Windows\assembly
2009-08-04 10:59:49 ----RSD---- C:\Windows\Fonts
2009-08-04 10:59:42 ----D---- C:\Program Files\Common Files\microsoft shared
2009-08-04 10:59:26 ----D---- C:\Program Files\Microsoft Works
2009-08-04 10:56:38 ----D---- C:\Windows\winsxs
2009-08-04 10:56:32 ----D---- C:\Windows\system32\catroot
2009-08-04 10:07:11 ----D---- C:\Program Files\Intel
2009-08-02 10:46:35 ----D---- C:\Program Files\Microsoft Silverlight
2009-07-31 00:21:07 ----D---- C:\Windows\inf
2009-07-31 00:21:07 ----A---- C:\Windows\system32\PerfStringBackup.INI
2009-07-24 03:19:10 ----D---- C:\Program Files\Windows Live Safety Center
2009-07-22 20:43:30 ----D---- C:\Users\giova\AppData\Roaming\temp
2009-07-21 19:29:59 ----D---- C:\Windows\Debug
2009-07-21 19:22:22 ----D---- C:\Program Files\Windows Mail
2009-07-21 19:09:14 ----D---- C:\Windows\Internet Logs
2009-07-21 19:06:30 ----A---- C:\Windows\wininit.ini
2009-07-21 19:06:30 ----A---- C:\Windows\ka.ini
2009-07-21 19:04:36 ----DC---- C:\Windows\system32\DRVSTORE
2009-07-21 19:03:57 ----D---- C:\Program Files\Microsoft Office
2009-07-21 19:03:46 ----D---- C:\Windows\ShellNew
2009-07-21 19:03:45 ----D---- C:\Program Files\Common Files\System
2009-07-21 19:01:52 ----RSD---- C:\Windows\Media
2009-07-21 19:01:35 ----A---- C:\Windows\vbaddin.ini
2009-07-21 18:56:38 ----D---- C:\Program Files\Camfrog
2009-07-21 18:56:17 ----SD---- C:\ProgramData\Microsoft
2009-07-21 18:56:17 ----D---- C:\Users\giova\AppData\Roaming\Lavasoft
2009-07-21 18:55:52 ----D---- C:\Program Files\Microsoft
2009-07-21 18:51:29 ----HD---- C:\Program Files\InstallShield Installation Information
2009-07-21 18:49:35 ----D---- C:\Windows\system32\Tasks
2009-07-21 18:34:02 ----D---- C:\Windows\system32\wbem
2009-07-21 18:32:52 ----D---- C:\Windows\system32\config
2009-07-21 18:32:25 ----D---- C:\Windows\Tasks
2009-07-21 18:32:25 ----D---- C:\Windows\system32\spool
2009-07-21 18:32:25 ----D---- C:\Windows\system32\Msdtc
2009-07-21 18:32:25 ----D---- C:\Windows\system32\CodeIntegrity
2009-07-21 18:32:24 ----D---- C:\Users\giova\AppData\Roaming\vlc
2009-07-21 18:32:20 ----D---- C:\Program Files\Glary Utilities
2009-07-21 18:32:19 ----D---- C:\Windows\registration
2009-07-08 11:29:59 ----D---- C:\Windows\system32\WDI
2009-07-07 17:10:56 ----A---- C:\Windows\system32\mrt.exe
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R1 Tosrfcom;Bluetooth RFCOMM; C:\Windows\System32\Drivers\tosrfcom.sys [2005-08-01 64896]
R2 mdmxsdk;mdmxsdk; C:\Windows\system32\DRIVERS\mdmxsdk.sys [2006-06-18 12672]
R2 XAudio;XAudio; C:\Windows\system32\DRIVERS\xaudio.sys [2006-08-03 8192]
R3 CmBatt;Pilote pour Batterie à méthode de contrôle ACPI Microsoft; C:\Windows\system32\DRIVERS\CmBatt.sys [2008-01-19 14208]
R3 DCamUSBGene;GenesysLogic USB2.0 PC Camera; C:\Windows\system32\DRIVERS\usbgene.sys [2007-06-26 131584]
R3 HSF_DPV;HSF_DPV; C:\Windows\system32\DRIVERS\HSX_DPV.sys [2006-10-17 986624]
R3 HSXHWAZL;HSXHWAZL; C:\Windows\system32\DRIVERS\HSXHWAZL.sys [2006-10-17 206848]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\Windows\system32\drivers\RTKVHDA.sys [2007-12-06 2027032]
R3 NETw4v32;Pilote de carte Intel(R) Wireless WiFi Link pour Windows Vista 32 bits; C:\Windows\system32\DRIVERS\NETw4v32.sys [2007-10-19 2251776]
R3 nvlddmkm;nvlddmkm; C:\Windows\system32\DRIVERS\nvlddmkm.sys [2007-10-24 7629664]
R3 RTL8169;Realtek 8169 NT Driver; C:\Windows\system32\DRIVERS\Rtlh86.sys [2007-03-05 76288]
R3 RTSTOR;USB Mass Storage Device; C:\Windows\system32\drivers\RTSTOR.SYS [2007-06-15 47616]
R3 SynTP;Synaptics TouchPad Driver; C:\Windows\system32\DRIVERS\SynTP.sys [2007-10-09 192560]
R3 tosporte;Bluetooth COM Port; C:\Windows\system32\DRIVERS\tosporte.sys [2006-10-10 41600]
R3 tosrfbd;Bluetooth RFBUS; C:\Windows\system32\DRIVERS\tosrfbd.sys [2007-01-12 113792]
R3 tosrfbnp;Bluetooth RFBNEP; C:\Windows\System32\Drivers\tosrfbnp.sys [2006-11-20 36480]
R3 Tosrfhid;Bluetooth RFHID; C:\Windows\system32\DRIVERS\Tosrfhid.sys [2007-01-24 73728]
R3 tosrfnds;Bluetooth Personal Area Network; C:\Windows\system32\DRIVERS\tosrfnds.sys [2005-01-06 18612]
R3 Tosrfusb;Bluetooth USB Controller; C:\Windows\system32\DRIVERS\tosrfusb.sys [2007-01-12 40576]
R3 winachsf;winachsf; C:\Windows\system32\DRIVERS\HSX_CNXT.sys [2006-10-17 659968]
S1 aswRdr;aswRdr; C:\Windows\system32\drivers\aswRdr.sys [2009-02-05 23152]
S1 aswSP;avast! Self Protection; C:\Windows\system32\drivers\aswSP.sys [2009-02-05 114768]
S1 aswTdi;avast! Network Shield Support; C:\Windows\system32\drivers\aswTdi.sys [2009-02-05 51376]
S2 aswFsBlk;aswFsBlk; C:\Windows\system32\DRIVERS\aswFsBlk.sys [2009-02-05 20560]
S2 aswMonFlt;aswMonFlt; C:\Windows\system32\DRIVERS\aswMonFlt.sys [2009-02-05 51792]
S3 a9h9kwlx;a9h9kwlx; C:\Windows\system32\drivers\a9h9kwlx.sys []
S3 driverhardwarev2;driverhardwarev2; \??\C:\Program Files\ma-config.com\Drivers\driverhardwarev2.sys [2009-04-21 14336]
S3 drmkaud;Filtre de décodeur DRM (Noyau Microsoft); C:\Windows\system32\drivers\drmkaud.sys [2008-01-19 5632]
S3 fssfltr;FssFltr; C:\Windows\system32\DRIVERS\fssfltr.sys [2009-02-06 55280]
S3 HdAudAddService;Pilote de fonction UAA 1.1 Microsoft pour le service High Definition Audio; C:\Windows\system32\drivers\HdAudio.sys [2006-11-02 235520]
S3 HSFHWAZL;HSFHWAZL; C:\Windows\system32\DRIVERS\VSTAZL3.SYS [2006-11-02 200704]
S3 MSKSSRV;Proxy de service de répartition Microsoft; C:\Windows\system32\drivers\MSKSSRV.sys [2008-01-19 8192]
S3 MSPCLOCK;Proxy d'horloge de répartition Microsoft; C:\Windows\system32\drivers\MSPCLOCK.sys [2008-01-19 5888]
S3 MSPQM;Proxy de gestion de qualité de répartition Microsoft; C:\Windows\system32\drivers\MSPQM.sys [2008-01-19 5504]
S3 MSTEE;Convertisseur en T/site-à-site de répartition Microsoft; C:\Windows\system32\drivers\MSTEE.sys [2008-01-19 6016]
S3 NETw3v32;Pilote de carte Intel(R) PRO/Wireless 3945ABG pour Windows Vista 32 bits; C:\Windows\system32\DRIVERS\NETw3v32.sys [2006-11-02 1781760]
S3 nmwcd;Nokia USB Phone Parent; C:\Windows\system32\drivers\ccdcmb.sys [2009-02-09 17664]
S3 nmwcdc;Nokia USB Generic; C:\Windows\system32\drivers\ccdcmbo.sys [2009-02-09 22016]
S3 TosRfSnd;Bluetooth Audio; C:\Windows\system32\drivers\tosrfsnd.sys [2007-01-22 53376]
S3 upperdev;upperdev; C:\Windows\system32\DRIVERS\usbser_lowerflt.sys [2009-02-09 7808]
S3 USBCM;Scientific-Atlanta USB Cable Modem Driver; C:\Windows\system32\DRIVERS\Sacm2A.sys [2004-06-10 15429]
S3 usbser;USB Modem Driver; C:\Windows\system32\drivers\usbser.sys [2008-01-19 28160]
S3 UsbserFilt;UsbserFilt; C:\Windows\system32\DRIVERS\usbser_lowerfltj.sys [2009-02-09 7808]
S3 WUDFRd;WUDFRd; C:\Windows\system32\DRIVERS\WUDFRd.sys [2008-01-19 83328]
S4 UIUSys;Conexant Setup API; C:\Windows\system32\DRIVERS\UIUSYS.SYS [2006-06-08 6909]
S4 WmiAcpi;Microsoft Windows Management Interface for ACPI; C:\Windows\system32\drivers\wmiacpi.sys [2006-11-02 11264]
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 Nero BackItUp Scheduler 4.0;Nero BackItUp Scheduler 4.0; C:\Program Files\Common Files\Nero\Nero BackItUp 4\NBService.exe [2008-09-30 935208]
R2 TOSHIBA Bluetooth Service;TOSHIBA Bluetooth Service; C:\Program Files\Toshiba\Bluetooth Toshiba Stack\TosBtSrv.exe [2007-02-02 118784]
R2 XAudioService;XAudioService; C:\Windows\system32\DRIVERS\xaudio.exe [2006-08-03 386560]
R3 ServiceLayer;ServiceLayer; C:\Program Files\PC Connectivity Solution\ServiceLayer.exe [2009-03-04 621056]
S2 aswUpdSv;avast! iAVS4 Control Service; C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe [2009-02-05 18752]
S2 avast! Antivirus;avast! Antivirus; C:\Program Files\Alwil Software\Avast4\ashServ.exe [2009-02-05 138680]
S3 avast! Mail Scanner;avast! Mail Scanner; C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe [2009-02-05 254040]
S3 avast! Web Scanner;avast! Web Scanner; C:\Program Files\Alwil Software\Avast4\ashWebSv.exe [2009-02-05 352920]
S3 fsssvc;Windows Live Contrôle parental; C:\Program Files\Windows Live\Family Safety\fsssvc.exe [2009-02-06 533360]
S3 GoogleDesktopManager-092308-165331;Google Desktop Manager 5.8.809.23506; C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe [2009-06-22 30192]
S3 gusvc;Google Software Updater; C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe [2009-06-20 182768]
S3 IDriverT;InstallDriver Table Manager; C:\Program Files\Common Files\InstallShield\Driver\1050\Intel 32\IDriverT.exe [2004-10-22 73728]
S3 maconfservice;Ma-Config Service; C:\Program Files\ma-config.com\maconfservice.exe [2009-04-21 216232]
S3 odserv;Microsoft Office Diagnostics Service; C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE [2008-11-04 441712]
S3 ose;Office Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2006-10-26 145184]
-----------------EOF-----------------
Merci
bzhatao
le 06 aout 2009 à 18h48
sardegna2009 Fais un scan avec cet antispyware :
Telecharges Malwarebytes + tutoriel
Tu l´installes; mets le a jour...(onglet mise a jour)
Click maintenant sur l´onglet recherche et coche la case : "executer un examen rapide".
Puis click sur "rechercher".
Laisses le scanner le pc...
Si des elements on ete trouvés > click sur supprimer la selection.
si il t´es demandé de redemarrer > click sur "oui".
A la fin un rapport va s´ouvrir; sauvegarde le de maniere a le retrouver en vue de le poster sur le forum.
Copies et colles le rapport stp.
a+
sardegna2009
le 06 aout 2009 à 19h46
alwarebytes' Anti-Malware 1.40
Version de la base de données: 2570
Windows 6.0.6001 Service Pack 1
6/08/2009 19:45:06
mbam-log-2009-08-06 (19-45-06).txt
Type de recherche: Examen complet (C:\|)
Eléments examinés: 227115
Temps écoulé: 51 minute(s), 36 second(s)
Processus mémoire infecté(s): 0
Module(s) mémoire infecté(s): 0
Clé(s) du Registre infectée(s): 1
Valeur(s) du Registre infectée(s): 0
Elément(s) de données du Registre infecté(s): 0
Dossier(s) infecté(s): 0
Fichier(s) infecté(s): 0
Processus mémoire infecté(s):
(Aucun élément nuisible détecté)
Module(s) mémoire infecté(s):
(Aucun élément nuisible détecté)
Clé(s) du Registre infectée(s):
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{1d4db7d2-6ec9-47a3-bd87-1e41684e07bb} (Adware.MyWebSearch) -> Quarantined and deleted successfully.
Valeur(s) du Registre infectée(s):
(Aucun élément nuisible détecté)
Elément(s) de données du Registre infecté(s):
(Aucun élément nuisible détecté)
Dossier(s) infecté(s):
(Aucun élément nuisible détecté)
Fichier(s) infecté(s):
(Aucun élément nuisible détecté)
Version de la base de données: 2570
Windows 6.0.6001 Service Pack 1
6/08/2009 19:45:06
mbam-log-2009-08-06 (19-45-06).txt
Type de recherche: Examen complet (C:\|)
Eléments examinés: 227115
Temps écoulé: 51 minute(s), 36 second(s)
Processus mémoire infecté(s): 0
Module(s) mémoire infecté(s): 0
Clé(s) du Registre infectée(s): 1
Valeur(s) du Registre infectée(s): 0
Elément(s) de données du Registre infecté(s): 0
Dossier(s) infecté(s): 0
Fichier(s) infecté(s): 0
Processus mémoire infecté(s):
(Aucun élément nuisible détecté)
Module(s) mémoire infecté(s):
(Aucun élément nuisible détecté)
Clé(s) du Registre infectée(s):
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{1d4db7d2-6ec9-47a3-bd87-1e41684e07bb} (Adware.MyWebSearch) -> Quarantined and deleted successfully.
Valeur(s) du Registre infectée(s):
(Aucun élément nuisible détecté)
Elément(s) de données du Registre infecté(s):
(Aucun élément nuisible détecté)
Dossier(s) infecté(s):
(Aucun élément nuisible détecté)
Fichier(s) infecté(s):
(Aucun élément nuisible détecté)
bzhatao
le 06 aout 2009 à 20h30
sardegna Télécharge TOOLBAR s&d sur ton bureau...
* Lance l'installation du programme en exécutant le fichier téléchargé.
* Double-clique maintenant sur le raccourci de Toolbar-S&D.
* Sélectionne la langue souhaitée en tapant la lettre de ton choix puis en validant avec la touche Entrée.
* Choisis maintenant l'option 2 (Supression). Patiente jusqu'à la fin de la recherche.
* Poste le rapport généré. (C:\TB.txt)
a+
sardegna2009
le 06 aout 2009 à 21h43
-----------\\ ToolBar S&D 1.2.8 XP/Vista
Microsoft® Windows Vista™ Édition Familiale Premium ( v6.0.6001 ) Service Pack 1
X86-based PC ( Multiprocessor Free : Intel(R) Core(TM)2 Duo CPU T5800 @ 2.00GHz )
BIOS : Ver 1.00PARTTBL
USER : giova ( Administrator )
BOOT : Normal boot
Antivirus : Windows Live OneCare 1.0.0 (Not Activated)
Firewall : Pare-feu Windows Live OneCare 1.0.0 (Not Activated)
C:\ (Local Disk) - NTFS - Total:298 Go (Free:16 Go)
D:\ (CD or DVD) - CDFS - Total:0 Go (Free:0 Go)
E:\ (CD or DVD)
"C:\ToolBar SD" ( MAJ : 21-12-2008|20:47 )
Option : [2] ( jeu. 06/08/2009|21:42 )
[ UAC => 1 ]
-----------\\ SUPPRESSION
Supprime! - C:\Program Files\KaZaA\My Shared Folder
Supprime! - C:\Users\giova\FAVORI~1\ds torrent search.url
Supprime! - C:\Program Files\DAEMON Tools Toolbar
Supprime! - C:\Program Files\KaZaA
-----------\\ Recherche de Fichiers / Dossiers ...
-----------\\ [..\Internet Explorer\Main]
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
"Local Page"="C:\\Windows\\system32\\blank.htm"
"Search Page"="http://go.microsoft.com/fwlink/?LinkId=54896"
"Start Page"="http://www.google.com/ig"
"Start Page Restore"="http://www.google.com/ig"
"Url"="http://go.microsoft.com/fwlink/?LinkId=75720"
[HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Main]
"Start Page"="http://www.msn.com/"
"Default_Page_URL"="http://go.microsoft.com/fwlink/?LinkId=69157"
"Default_Search_URL"="http://go.microsoft.com/fwlink/?LinkId=54896"
"Search Page"="http://go.microsoft.com/fwlink/?LinkId=54896"
"Local Page"="C:\\Windows\\System32\\blank.htm"
--------------------\\ Recherche d'autres infections
--------------------\\ Cracks & Keygens ..
C:\Users\giova\Desktop\Nouveau dossier\Crack chato's webcam spy
C:\Users\giova\Desktop\Nouveau dossier\Crack chato's webcam spy .zip
C:\Users\giova\Desktop\Nouveau dossier\Crack chato's webcam spy\patch
C:\Users\giova\Desktop\Nouveau dossier\Crack chato's webcam spy\Setup32.exe
C:\Users\giova\Desktop\Nouveau dossier\Crack chato's webcam spy\patch\patch.exe
C:\Users\giova\Desktop\t‚l‚charger\ !!! Crack Need for Speed - Most Wanted Multilanguage !!!.zip
C:\Users\giova\Desktop\t‚l‚charger\crack no dvd need for speed most wanted.rar
C:\Users\giova\Desktop\t‚l‚charger\LFP MANAGER 2008 [FIFA Manager] PC Game Multilang FR-ITA-ESP-POL-DEU-ENG-NL Crack & Serial Inclus Verif Steph OK3r.iso
C:\Users\giova\Desktop\t‚l‚charger\LFP MANAGER 2008 [FIFA Manager] PC Game Multilang FR-ITA-ESP-POL-DEU-ENG-NL Crack & Serial Inclus Verif Steph OK4.r.iso
C:\Users\giova\Desktop\t‚l‚charger\Serial Cd Key Crack Pc Game Ita Eng Usa Need For Speed Carbon Nfs Carbon Nfscarbon Nfs Serial Cd Key Serial Code Codice Seriale Serial Key(3).txt
C:\Users\giova\Desktop\t‚l‚charger\SERIAL CD KEY CRACK PC GAME ITA ENG USA NEED FOR SPEED CARBON NFS CARBON NFSCARBON NFS SERIAL CD KEY SERIAL CODE CODICE SERIALE SERIAL KEY(4).txt
C:\Users\giova\Music\captain full\cap'tain 2007\06- Nutcracka.mp3
C:\Users\giova\Music\musiques\captain full\cap'tain 2007\06- Nutcracka.mp3
[ UAC => 1 ]
1 - "C:\ToolBar SD\TB_1.txt" - jeu. 06/08/2009|21:41 - Option : [1]
2 - "C:\ToolBar SD\TB_2.txt" - jeu. 06/08/2009|21:43 - Option : [2]
-----------\\ Fin du rapport a 21:43:18,34
Microsoft® Windows Vista™ Édition Familiale Premium ( v6.0.6001 ) Service Pack 1
X86-based PC ( Multiprocessor Free : Intel(R) Core(TM)2 Duo CPU T5800 @ 2.00GHz )
BIOS : Ver 1.00PARTTBL
USER : giova ( Administrator )
BOOT : Normal boot
Antivirus : Windows Live OneCare 1.0.0 (Not Activated)
Firewall : Pare-feu Windows Live OneCare 1.0.0 (Not Activated)
C:\ (Local Disk) - NTFS - Total:298 Go (Free:16 Go)
D:\ (CD or DVD) - CDFS - Total:0 Go (Free:0 Go)
E:\ (CD or DVD)
"C:\ToolBar SD" ( MAJ : 21-12-2008|20:47 )
Option : [2] ( jeu. 06/08/2009|21:42 )
[ UAC => 1 ]
-----------\\ SUPPRESSION
Supprime! - C:\Program Files\KaZaA\My Shared Folder
Supprime! - C:\Users\giova\FAVORI~1\ds torrent search.url
Supprime! - C:\Program Files\DAEMON Tools Toolbar
Supprime! - C:\Program Files\KaZaA
-----------\\ Recherche de Fichiers / Dossiers ...
-----------\\ [..\Internet Explorer\Main]
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
"Local Page"="C:\\Windows\\system32\\blank.htm"
"Search Page"="http://go.microsoft.com/fwlink/?LinkId=54896"
"Start Page"="http://www.google.com/ig"
"Start Page Restore"="http://www.google.com/ig"
"Url"="http://go.microsoft.com/fwlink/?LinkId=75720"
[HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Main]
"Start Page"="http://www.msn.com/"
"Default_Page_URL"="http://go.microsoft.com/fwlink/?LinkId=69157"
"Default_Search_URL"="http://go.microsoft.com/fwlink/?LinkId=54896"
"Search Page"="http://go.microsoft.com/fwlink/?LinkId=54896"
"Local Page"="C:\\Windows\\System32\\blank.htm"
--------------------\\ Recherche d'autres infections
--------------------\\ Cracks & Keygens ..
C:\Users\giova\Desktop\Nouveau dossier\Crack chato's webcam spy
C:\Users\giova\Desktop\Nouveau dossier\Crack chato's webcam spy .zip
C:\Users\giova\Desktop\Nouveau dossier\Crack chato's webcam spy\patch
C:\Users\giova\Desktop\Nouveau dossier\Crack chato's webcam spy\Setup32.exe
C:\Users\giova\Desktop\Nouveau dossier\Crack chato's webcam spy\patch\patch.exe
C:\Users\giova\Desktop\t‚l‚charger\ !!! Crack Need for Speed - Most Wanted Multilanguage !!!.zip
C:\Users\giova\Desktop\t‚l‚charger\crack no dvd need for speed most wanted.rar
C:\Users\giova\Desktop\t‚l‚charger\LFP MANAGER 2008 [FIFA Manager] PC Game Multilang FR-ITA-ESP-POL-DEU-ENG-NL Crack & Serial Inclus Verif Steph OK3r.iso
C:\Users\giova\Desktop\t‚l‚charger\LFP MANAGER 2008 [FIFA Manager] PC Game Multilang FR-ITA-ESP-POL-DEU-ENG-NL Crack & Serial Inclus Verif Steph OK4.r.iso
C:\Users\giova\Desktop\t‚l‚charger\Serial Cd Key Crack Pc Game Ita Eng Usa Need For Speed Carbon Nfs Carbon Nfscarbon Nfs Serial Cd Key Serial Code Codice Seriale Serial Key(3).txt
C:\Users\giova\Desktop\t‚l‚charger\SERIAL CD KEY CRACK PC GAME ITA ENG USA NEED FOR SPEED CARBON NFS CARBON NFSCARBON NFS SERIAL CD KEY SERIAL CODE CODICE SERIALE SERIAL KEY(4).txt
C:\Users\giova\Music\captain full\cap'tain 2007\06- Nutcracka.mp3
C:\Users\giova\Music\musiques\captain full\cap'tain 2007\06- Nutcracka.mp3
[ UAC => 1 ]
1 - "C:\ToolBar SD\TB_1.txt" - jeu. 06/08/2009|21:41 - Option : [1]
2 - "C:\ToolBar SD\TB_2.txt" - jeu. 06/08/2009|21:43 - Option : [2]
-----------\\ Fin du rapport a 21:43:18,34
bzhatao
le 06 aout 2009 à 22h01
sardegna2009 Un nouveau RSIT stp...
a+
sardegna2009
le 06 aout 2009 à 22h08
Logfile of random's system information tool 1.06 (written by random/random)
Run by giova at 2009-08-06 22:07:46
Microsoft® Windows Vista™ Édition Familiale Premium Service Pack 1
System drive C: has 16 GB (5%) free of 305 GB
Total RAM: 3070 MB (63% free)
Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 22:08:11, on 6/08/2009
Platform: Windows Vista SP1 (WinNT 6.00.1905)
MSIE: Internet Explorer v8.00 (8.00.6001.18813)
Boot mode: Normal
Running processes:
C:\Windows\system32\Dwm.exe
C:\Windows\Explorer.EXE
C:\Windows\system32\taskeng.exe
C:\Windows\system32\taskeng.exe
C:\Program Files\Windows Defender\MSASCui.exe
C:\Program Files\Synaptics\SynTP\SynTPStart.exe
C:\Windows\RtHDVCpl.exe
C:\Program Files\Genesys PC Camera Device\GenePccMon.exe
C:\Program Files\Common Files\InstallShield\UpdateService\issch.exe
C:\Program Files\Java\jre6\bin\jusched.exe
C:\Windows\System32\rundll32.exe
C:\Program Files\Adobe\Reader 8.0\Reader\reader_sl.exe
C:\Windows\system32\wbem\unsecapp.exe
C:\Program Files\Alwil Software\Avast4\ashDisp.exe
C:\Windows\System32\p2phost.exe
C:\Program Files\Nokia\Nokia PC Suite 7\PCSuite.exe
C:\Windows\ehome\ehtray.exe
C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
C:\Program Files\DAEMON Tools Lite\daemon.exe
C:\Program Files\eMule\emule.exe
C:\Windows\System32\rundll32.exe
C:\Windows\system32\ntvdm.exe
C:\Program Files\Windows Media Player\wmpnscfg.exe
C:\Windows\ehome\ehmsas.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
C:\Program Files\PC Connectivity Solution\Transports\NclToBTSrv.exe
C:\Users\giova\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\giova\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\giova\Documents\Downloads\RSIT (2).exe
C:\Program Files\trend micro\giova.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
R3 - Default URLSearchHook is missing
O1 - Hosts: ::1 localhost
O2 - BHO: Aide pour le lien d'Adobe PDF Reader - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll
O2 - BHO: BitComet ClickCapture - {39F7E362-828A-4B5A-BCAF-5B79BFDFEA60} - C:\Program Files\BitComet\tools\BitCometBHO_1.3.3.2.dll
O2 - BHO: Click-to-Call BHO - {5C255C8A-E604-49b4-9D64-90988571CECB} - C:\Program Files\Windows Live\Messenger\wlchtc.dll
O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files\Google\Google Toolbar\GoogleToolbar.dll
O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\5.1.1309.15642\swg.dll
O2 - BHO: Google Dictionary Compression sdch - {C84D72FE-E17D-4195-BB24-76C02E2E7C4E} - C:\Program Files\Google\Google Toolbar\Component\fastsearch_A8904FB862BD9564.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll
O4 - HKLM\..\Run: [Windows Defender] %ProgramFiles%\Windows Defender\MSASCui.exe -hide
O4 - HKLM\..\Run: [SynTPStart] C:\Program Files\Synaptics\SynTP\SynTPStart.exe
O4 - HKLM\..\Run: [RtHDVCpl] RtHDVCpl.exe
O4 - HKLM\..\Run: [Skytel] Skytel.exe
O4 - HKLM\..\Run: [GenePccMon.exe] C:\Program Files\Genesys PC Camera Device\GenePccMon.exe
O4 - HKLM\..\Run: [ISUSPM Startup] C:\PROGRA~1\COMMON~1\INSTAL~1\UPDATE~1\ISUSPM.exe -startup
O4 - HKLM\..\Run: [ISUSScheduler] "C:\Program Files\Common Files\InstallShield\UpdateService\issch.exe" -start
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre6\bin\jusched.exe"
O4 - HKLM\..\Run: [NvSvc] RUNDLL32.EXE C:\Windows\system32\nvsvc.dll,nvsvcStart
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\Windows\system32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\Windows\system32\NvMcTray.dll,NvTaskbarInit
O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe"
O4 - HKLM\..\Run: [Cake active] "C:\ProgramData\help plan plan.jj0ibo"
O4 - HKLM\..\Run: [warn default inter for] "C:\ProgramData\Trust Logo Third.x9eqm"
O4 - HKLM\..\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
O4 - HKCU\..\Run: [WindowsWelcomeCenter] rundll32.exe oobefldr.dll,ShowWelcomeCenter
O4 - HKCU\..\Run: [CollaborationHost] C:\Windows\system32\p2phost.exe -s
O4 - HKCU\..\Run: [msnmsgr] "C:\Program Files\Windows Live\Messenger\MsnMsgr.Exe" /background
O4 - HKCU\..\Run: [PC Suite Tray] "C:\Program Files\Nokia\Nokia PC Suite 7\PCSuite.exe" -onlytray
O4 - HKCU\..\Run: [ccleaner] "C:\Program Files\CCleaner\CCleaner.exe" /AUTO
O4 - HKCU\..\Run: [ISUSScheduler] "C:\Program Files\Common Files\InstallShield\UpdateService\issch.exe" -start
O4 - HKCU\..\Run: [ehTray.exe] C:\Windows\ehome\ehTray.exe
O4 - HKCU\..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
O4 - HKCU\..\Run: [DAEMON Tools Lite] "C:\Program Files\DAEMON Tools Lite\daemon.exe" -autorun
O4 - HKCU\..\Run: [Google Update] "C:\Users\giova\AppData\Local\Google\Update\GoogleUpdate.exe" /c
O4 - HKCU\..\Run: [WMPNSCFG] C:\Program Files\Windows Media Player\WMPNSCFG.exe
O4 - HKCU\..\Run: [eMuleAutoStart] C:\Program Files\eMule\emule.exe -AutoStart
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-19\..\Run: [WindowsWelcomeCenter] rundll32.exe oobefldr.dll,ShowWelcomeCenter (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'SERVICE RÉSEAU')
O4 - Startup: Event Reminder.lnk = C:\pmw\PMREMIND.EXE
O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~4\Office12\EXCEL.EXE/3000
O8 - Extra context menu item: Tout télécharger avec BitComet - res://C:\Program Files\BitComet\BitComet.exe/AddAllLink.htm
O8 - Extra context menu item: Télécharger avec BitComet - res://C:\Program Files\BitComet\BitComet.exe/AddLink.htm
O8 - Extra context menu item: Télécharger toutes les vidéos avec BitComet - res://C:\Program Files\BitComet\BitComet.exe/AddVideo.htm
O9 - Extra button: Ajout Direct - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra 'Tools' menuitem: &Ajout Direct dans Windows Live Writer - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra button: Envoyer à OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~4\Office12\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: &Envoyer à OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~4\Office12\ONBttnIE.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~4\Office12\REFIEBAR.DLL
O9 - Extra button: BitComet - {D18A0B52-D63C-4ed0-AFC6-C1E3DC1AF43A} - res://C:\Program Files\BitComet\tools\BitCometBHO_1.3.3.2.dll/206 (file missing)
O9 - Extra button: (no name) - cmdmapping - (no file) (HKCU)
O13 - Gopher Prefix:
O16 - DPF: {5D6F45B3-9043-443D-A792-115447494D24} (UnoCtrl Class) - http://messenger.zone.msn.com/FR-BE/a-UNO1/GAME_UNO1.cab
O16 - DPF: {867E13F2-7F31-44FB-AC97-CD38E0DC46EF} (HardwareDetection Control) - http://fichiers.touslesdrivers.com/maconfig/MaConfig_3_1_2_1.cab
O16 - DPF: {C3F79A2B-B9B4-4A66-B012-3EE46475B072} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsPAClient.cab56907.cab
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab
O16 - DPF: {D71F9A27-723E-4B8B-B428-B725E47CBA3E} (Imikimi_activex_plugin Control) - http://imikimi.com/download/imikimi_plugin_0.5.1.cab
O18 - Filter: x-sdch - {B1759355-3EEC-4C1E-B0F1-B719FE26E377} - C:\Program Files\Google\Google Toolbar\Component\fastsearch_A8904FB862BD9564.dll
O20 - AppInit_DLLs: C:\PROGRA~1\Google\GOOGLE~3\GOEC62~1.DLL
O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - ALWIL Software - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
O23 - Service: avast! Antivirus - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashServ.exe
O23 - Service: avast! Mail Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
O23 - Service: avast! Web Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
O23 - Service: Google Desktop Manager 5.8.809.23506 (GoogleDesktopManager-092308-165331) - Google - C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe
O23 - Service: Google Software Updater (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\1050\Intel 32\IDriverT.exe
O23 - Service: Ma-Config Service (maconfservice) - CybelSoft - C:\Program Files\ma-config.com\maconfservice.exe
O23 - Service: Nero BackItUp Scheduler 4.0 - Nero AG - C:\Program Files\Common Files\Nero\Nero BackItUp 4\NBService.exe
O23 - Service: ServiceLayer - Nokia. - C:\Program Files\PC Connectivity Solution\ServiceLayer.exe
O23 - Service: TOSHIBA Bluetooth Service - TOSHIBA CORPORATION - C:\Program Files\Toshiba\Bluetooth Toshiba Stack\TosBtSrv.exe
O23 - Service: XAudioService - Conexant Systems, Inc. - C:\Windows\system32\DRIVERS\xaudio.exe
--
End of file - 10069 bytes
======Scheduled tasks folder======
C:\Windows\tasks\GlaryInitialize.job
C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-4179544620-4203920697-3270201199-1002Core.job
C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-4179544620-4203920697-3270201199-1002UA.job
C:\Windows\tasks\User_Feed_Synchronization-{A7D8A71A-3493-410B-B5EB-7EC12AB742A3}.job
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{06849E9F-C8D7-4D59-B87D-784B7D6BE0B3}]
Aide pour le lien d'Adobe PDF Reader - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll [2006-10-22 62080]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{39F7E362-828A-4B5A-BCAF-5B79BFDFEA60}]
BitComet Helper - C:\Program Files\BitComet\tools\BitCometBHO_1.3.3.2.dll [2009-03-02 636216]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{5C255C8A-E604-49b4-9D64-90988571CECB}]
Click-to-Call BHO - C:\Program Files\Windows Live\Messenger\wlchtc.dll [2009-02-06 73072]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
Programme d'aide de l'Assistant de connexion Windows Live - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2009-01-22 408448]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AA58ED58-01DD-4d91-8333-CF10577473F7}]
Google Toolbar Helper - C:\Program Files\Google\Google Toolbar\GoogleToolbar.dll [2009-06-20 259696]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AF69DE43-7D58-4638-B6FA-CE66B5AD205D}]
Google Toolbar Notifier BHO - C:\Program Files\Google\GoogleToolbarNotifier\5.1.1309.15642\swg.dll [2009-06-23 669168]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{C84D72FE-E17D-4195-BB24-76C02E2E7C4E}]
Google Dictionary Compression sdch - C:\Program Files\Google\Google Toolbar\Component\fastsearch_A8904FB862BD9564.dll [2009-06-20 470512]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre6\bin\jp2ssv.dll [2009-03-09 35840]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"Windows Defender"=C:\Program Files\Windows Defender\MSASCui.exe [2008-01-19 1008184]
"SynTPStart"=C:\Program Files\Synaptics\SynTP\SynTPStart.exe [2007-10-09 102400]
"RtHDVCpl"=C:\Windows\RtHDVCpl.exe [2007-12-05 4710400]
"Skytel"=C:\Windows\Skytel.exe [2007-11-21 1826816]
"GenePccMon.exe"=C:\Program Files\Genesys PC Camera Device\GenePccMon.exe [2007-02-13 36864]
"ISUSPM Startup"=C:\PROGRA~1\COMMON~1\INSTAL~1\UPDATE~1\ISUSPM.exe [2006-08-25 221184]
"ISUSScheduler"=C:\Program Files\Common Files\InstallShield\UpdateService\issch.exe [2006-09-11 86960]
"SunJavaUpdateSched"=C:\Program Files\Java\jre6\bin\jusched.exe [2009-03-09 148888]
"NvSvc"=C:\Windows\system32\nvsvc.dll [2007-10-24 86016]
"NvCplDaemon"=C:\Windows\system32\NvCpl.dll [2007-10-24 8501792]
"NvMediaCenter"=C:\Windows\system32\NvMcTray.dll [2007-10-24 81920]
"Adobe Reader Speed Launcher"=C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe [2008-10-15 39792]
"Cake active"=C:\ProgramData\help plan plan.jj0ibo [2009-08-06 319504]
"warn default inter for"=C:\ProgramData\Trust Logo Third.x9eqm [2009-08-04 36880]
"avast!"=C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe [2009-02-05 81000]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"WindowsWelcomeCenter"=oobefldr.dll,ShowWelcomeCenter []
"CollaborationHost"=C:\Windows\system32\p2phost.exe [2008-01-19 192000]
"msnmsgr"=C:\Program Files\Windows Live\Messenger\MsnMsgr.Exe [2009-02-06 3885408]
"PC Suite Tray"=C:\Program Files\Nokia\Nokia PC Suite 7\PCSuite.exe [2009-03-20 1312256]
"ccleaner"=C:\Program Files\CCleaner\CCleaner.exe [2009-05-07 1561840]
"ISUSScheduler"=C:\Program Files\Common Files\InstallShield\UpdateService\issch.exe [2006-09-11 86960]
"ehTray.exe"=C:\Windows\ehome\ehTray.exe [2008-01-19 125952]
"swg"=C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe [2009-06-20 39408]
"DAEMON Tools Lite"=C:\Program Files\DAEMON Tools Lite\daemon.exe [2009-04-23 691656]
"Google Update"=C:\Users\giova\AppData\Local\Google\Update\GoogleUpdate.exe [2009-07-03 133104]
"WMPNSCFG"=C:\Program Files\Windows Media Player\WMPNSCFG.exe [2008-01-19 202240]
"eMuleAutoStart"=C:\Program Files\eMule\emule.exe [2009-02-22 5668864]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe Reader Speed Launcher]
C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe [2008-10-15 39792]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\eMuleAutoStart]
C:\Program Files\eMule\emule.exe [2009-02-22 5668864]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\msnmsgr]
C:\Program Files\Windows Live\Messenger\msnmsgr.exe [2009-02-06 3885408]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Users^giova^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^OneNote 2007 - Capture d'écran et lancement.lnk]
C:\PROGRA~1\MICROS~4\Office12\ONENOTEM.EXE [2008-10-25 98696]
C:\Users\giova\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
Event Reminder.lnk - C:\pmw\PMREMIND.EXE
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows]
"AppInit_DLLS"="C:\PROGRA~1\Google\GOOGLE~3\GOEC62~1.DLL"
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\vsmon]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
"FilterAdministratorToken"=1
"EnableUIADesktopToggle"=0
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{5e1380be-0fcf-11de-9fa6-806e6f6e6963}]
shell\AutoRun\command - D:\Autorun.exe
======File associations======
.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*
======List of files/folders created in the last 1 months======
2009-08-06 21:41:31 ----A---- C:\TB.txt
2009-08-06 21:40:46 ----D---- C:\ToolBar SD
2009-08-06 18:50:21 ----D---- C:\Users\giova\AppData\Roaming\Malwarebytes
2009-08-06 18:50:16 ----D---- C:\ProgramData\Malwarebytes
2009-08-06 18:50:16 ----D---- C:\Program Files\Malwarebytes' Anti-Malware
2009-08-06 18:38:14 ----D---- C:\rsit
2009-08-06 18:38:14 ----D---- C:\Program Files\trend micro
2009-08-06 12:21:41 ----A---- C:\Windows\system32\aswBoot.exe
2009-08-04 10:59:21 ----SHD---- C:\Config.Msi
2009-08-04 10:56:07 ----A---- C:\Windows\system32\occache.dll
2009-08-04 10:56:06 ----A---- C:\Windows\system32\msfeedsbs.dll
2009-08-04 10:56:06 ----A---- C:\Windows\system32\msfeeds.dll
2009-08-04 10:56:06 ----A---- C:\Windows\system32\jsproxy.dll
2009-08-04 10:56:06 ----A---- C:\Windows\system32\iepeers.dll
2009-08-04 10:56:05 ----A---- C:\Windows\system32\ieui.dll
2009-08-04 10:56:05 ----A---- C:\Windows\system32\iesetup.dll
2009-08-04 10:56:04 ----A---- C:\Windows\system32\wininet.dll
2009-08-04 10:56:04 ----A---- C:\Windows\system32\urlmon.dll
2009-08-04 10:56:04 ----A---- C:\Windows\system32\msfeedssync.exe
2009-08-04 10:56:04 ----A---- C:\Windows\system32\ieUnatt.exe
2009-08-04 10:56:04 ----A---- C:\Windows\system32\iesysprep.dll
2009-08-04 10:56:04 ----A---- C:\Windows\system32\iertutil.dll
2009-08-04 10:56:04 ----A---- C:\Windows\system32\iernonce.dll
2009-08-04 10:56:04 ----A---- C:\Windows\system32\iedkcs32.dll
2009-08-04 10:56:04 ----A---- C:\Windows\system32\ie4uinit.exe
2009-08-04 10:56:03 ----A---- C:\Windows\system32\ieframe.dll
2009-08-04 10:56:02 ----A---- C:\Windows\system32\mshtml.dll
2009-08-04 10:54:01 ----A---- C:\Windows\system32\mshtmler.dll
2009-08-04 10:54:01 ----A---- C:\Windows\system32\mshtmled.dll
2009-08-04 10:54:01 ----A---- C:\Windows\system32\icardie.dll
2009-08-04 10:54:01 ----A---- C:\Windows\system32\admparse.dll
2009-08-04 10:54:00 ----A---- C:\Windows\system32\msls31.dll
2009-08-04 10:54:00 ----A---- C:\Windows\system32\imgutil.dll
2009-08-04 10:54:00 ----A---- C:\Windows\system32\ieakeng.dll
2009-08-04 10:54:00 ----A---- C:\Windows\system32\dxtrans.dll
2009-08-04 10:54:00 ----A---- C:\Windows\system32\dxtmsft.dll
2009-08-04 10:54:00 ----A---- C:\Windows\system32\corpol.dll
2009-08-04 10:53:59 ----A---- C:\Windows\system32\WinFXDocObj.exe
2009-08-04 10:53:59 ----A---- C:\Windows\system32\wextract.exe
2009-08-04 10:53:59 ----A---- C:\Windows\system32\webcheck.dll
2009-08-04 10:53:59 ----A---- C:\Windows\system32\msrating.dll
2009-08-04 10:53:59 ----A---- C:\Windows\system32\licmgr10.dll
2009-08-04 10:53:59 ----A---- C:\Windows\system32\inseng.dll
2009-08-04 10:53:59 ----A---- C:\Windows\system32\ieakui.dll
2009-08-04 10:53:59 ----A---- C:\Windows\system32\ieaksie.dll
2009-08-04 10:53:58 ----A---- C:\Windows\system32\pngfilt.dll
2009-08-04 10:53:58 ----A---- C:\Windows\system32\mstime.dll
2009-08-04 10:53:58 ----A---- C:\Windows\system32\ieapfltr.dll
2009-08-04 10:53:58 ----A---- C:\Windows\system32\advpack.dll
2009-08-04 10:53:57 ----A---- C:\Windows\system32\vbscript.dll
2009-08-04 10:53:57 ----A---- C:\Windows\system32\url.dll
2009-08-04 10:53:57 ----A---- C:\Windows\system32\jscript.dll
2009-08-04 10:53:56 ----A---- C:\Windows\system32\SetIEInstalledDate.exe
2009-08-04 10:53:56 ----A---- C:\Windows\system32\SetDepNx.exe
2009-08-04 10:53:56 ----A---- C:\Windows\system32\RegisterIEPKEYs.exe
2009-08-04 10:53:56 ----A---- C:\Windows\system32\PDMSetup.exe
2009-08-04 10:53:56 ----A---- C:\Windows\system32\mshta.exe
2009-08-04 10:53:56 ----A---- C:\Windows\system32\iexpress.exe
2009-08-04 10:50:17 ----D---- C:\Program Files\WebCam Spy Lite
2009-08-04 10:22:13 ----D---- C:\Program Files\heart face math
2009-08-04 10:01:21 ----D---- C:\ProgramData\Time Dead Warn Default
2009-08-04 10:01:06 ----D---- C:\ProgramData\heart face math
2009-08-04 10:00:57 ----D---- C:\Program Files\TorrentSpeeder
2009-07-29 03:11:36 ----D---- C:\ProgramData\Electronic Arts
2009-07-21 18:49:18 ----A---- C:\Windows\system32\t2embed.dll
2009-07-21 18:49:18 ----A---- C:\Windows\system32\fontsub.dll
2009-07-21 18:49:18 ----A---- C:\Windows\system32\dciman32.dll
2009-07-21 18:49:18 ----A---- C:\Windows\system32\atmfd.dll
2009-07-17 14:03:40 ----D---- C:\Program Files\FlyGimp Pro
======List of files/folders modified in the last 1 months======
2009-08-06 22:07:50 ----D---- C:\Windows\Temp
2009-08-06 22:06:03 ----D---- C:\Windows
2009-08-06 22:04:11 ----D---- C:\Windows\Prefetch
2009-08-06 21:43:06 ----RD---- C:\Program Files
2009-08-06 21:36:50 ----HD---- C:\ProgramData
2009-08-06 18:50:17 ----D---- C:\Windows\system32\drivers
2009-08-06 16:09:01 ----SHD---- C:\System Volume Information
2009-08-06 15:58:05 ----D---- C:\Windows\system32\catroot2
2009-08-06 12:22:04 ----D---- C:\Windows\System32
2009-08-06 12:19:38 ----D---- C:\Program Files\BitComet
2009-08-06 12:19:12 ----D---- C:\Downloads
2009-08-05 14:57:41 ----D---- C:\Program Files\EA SPORTS
2009-08-04 20:11:43 ----A---- C:\Windows\NeroDigital.ini
2009-08-04 18:43:39 ----A---- C:\Windows\ACROREAD.INI
2009-08-04 17:06:11 ----D---- C:\Windows\rescache
2009-08-04 16:47:33 ----D---- C:\Windows\system32\migration
2009-08-04 16:47:33 ----D---- C:\Windows\system32\fr-FR
2009-08-04 16:47:33 ----D---- C:\Program Files\Internet Explorer
2009-08-04 16:47:32 ----D---- C:\Windows\system32\en-US
2009-08-04 16:47:32 ----D---- C:\Windows\PolicyDefinitions
2009-08-04 13:27:07 ----D---- C:\Windows\Microsoft.NET
2009-08-04 11:02:49 ----SHD---- C:\Windows\Installer
2009-08-04 11:01:36 ----D---- C:\ProgramData\Microsoft Help
2009-08-04 11:01:32 ----RSD---- C:\Windows\assembly
2009-08-04 10:59:49 ----RSD---- C:\Windows\Fonts
2009-08-04 10:59:42 ----D---- C:\Program Files\Common Files\microsoft shared
2009-08-04 10:59:26 ----D---- C:\Program Files\Microsoft Works
2009-08-04 10:56:38 ----D---- C:\Windows\winsxs
2009-08-04 10:56:32 ----D---- C:\Windows\system32\catroot
2009-08-04 10:07:11 ----D---- C:\Program Files\Intel
2009-08-02 10:46:35 ----D---- C:\Program Files\Microsoft Silverlight
2009-07-31 00:21:07 ----D---- C:\Windows\inf
2009-07-31 00:21:07 ----A---- C:\Windows\system32\PerfStringBackup.INI
2009-07-24 03:19:10 ----D---- C:\Program Files\Windows Live Safety Center
2009-07-22 20:43:30 ----D---- C:\Users\giova\AppData\Roaming\temp
2009-07-21 19:29:59 ----D---- C:\Windows\Debug
2009-07-21 19:22:22 ----D---- C:\Program Files\Windows Mail
2009-07-21 19:09:14 ----D---- C:\Windows\Internet Logs
2009-07-21 19:06:30 ----A---- C:\Windows\wininit.ini
2009-07-21 19:06:30 ----A---- C:\Windows\ka.ini
2009-07-21 19:04:36 ----DC---- C:\Windows\system32\DRVSTORE
2009-07-21 19:03:57 ----D---- C:\Program Files\Microsoft Office
2009-07-21 19:03:46 ----D---- C:\Windows\ShellNew
2009-07-21 19:03:45 ----D---- C:\Program Files\Common Files\System
2009-07-21 19:01:52 ----RSD---- C:\Windows\Media
2009-07-21 19:01:35 ----A---- C:\Windows\vbaddin.ini
2009-07-21 18:56:38 ----D---- C:\Program Files\Camfrog
2009-07-21 18:56:17 ----SD---- C:\ProgramData\Microsoft
2009-07-21 18:56:17 ----D---- C:\Users\giova\AppData\Roaming\Lavasoft
2009-07-21 18:55:52 ----D---- C:\Program Files\Microsoft
2009-07-21 18:51:29 ----HD---- C:\Program Files\InstallShield Installation Information
2009-07-21 18:49:35 ----D---- C:\Windows\system32\Tasks
2009-07-21 18:34:02 ----D---- C:\Windows\system32\wbem
2009-07-21 18:32:52 ----D---- C:\Windows\system32\config
2009-07-21 18:32:25 ----D---- C:\Windows\Tasks
2009-07-21 18:32:25 ----D---- C:\Windows\system32\spool
2009-07-21 18:32:25 ----D---- C:\Windows\system32\Msdtc
2009-07-21 18:32:25 ----D---- C:\Windows\system32\CodeIntegrity
2009-07-21 18:32:24 ----D---- C:\Users\giova\AppData\Roaming\vlc
2009-07-21 18:32:20 ----D---- C:\Program Files\Glary Utilities
2009-07-21 18:32:19 ----D---- C:\Windows\registration
2009-07-08 11:29:59 ----D---- C:\Windows\system32\WDI
2009-07-07 17:10:56 ----A---- C:\Windows\system32\mrt.exe
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R1 aswRdr;aswRdr; C:\Windows\system32\drivers\aswRdr.sys [2009-02-05 23152]
R1 aswSP;avast! Self Protection; C:\Windows\system32\drivers\aswSP.sys [2009-02-05 114768]
R1 aswTdi;avast! Network Shield Support; C:\Windows\system32\drivers\aswTdi.sys [2009-02-05 51376]
R1 Tosrfcom;Bluetooth RFCOMM; C:\Windows\System32\Drivers\tosrfcom.sys [2005-08-01 64896]
R2 aswFsBlk;aswFsBlk; C:\Windows\system32\DRIVERS\aswFsBlk.sys [2009-02-05 20560]
R2 aswMonFlt;aswMonFlt; C:\Windows\system32\DRIVERS\aswMonFlt.sys [2009-02-05 51792]
R2 mdmxsdk;mdmxsdk; C:\Windows\system32\DRIVERS\mdmxsdk.sys [2006-06-18 12672]
R2 XAudio;XAudio; C:\Windows\system32\DRIVERS\xaudio.sys [2006-08-03 8192]
R3 CmBatt;Pilote pour Batterie à méthode de contrôle ACPI Microsoft; C:\Windows\system32\DRIVERS\CmBatt.sys [2008-01-19 14208]
R3 DCamUSBGene;GenesysLogic USB2.0 PC Camera; C:\Windows\system32\DRIVERS\usbgene.sys [2007-06-26 131584]
R3 HSF_DPV;HSF_DPV; C:\Windows\system32\DRIVERS\HSX_DPV.sys [2006-10-17 986624]
R3 HSXHWAZL;HSXHWAZL; C:\Windows\system32\DRIVERS\HSXHWAZL.sys [2006-10-17 206848]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\Windows\system32\drivers\RTKVHDA.sys [2007-12-06 2027032]
R3 NETw4v32;Pilote de carte Intel(R) Wireless WiFi Link pour Windows Vista 32 bits; C:\Windows\system32\DRIVERS\NETw4v32.sys [2007-10-19 2251776]
R3 nvlddmkm;nvlddmkm; C:\Windows\system32\DRIVERS\nvlddmkm.sys [2007-10-24 7629664]
R3 RTL8169;Realtek 8169 NT Driver; C:\Windows\system32\DRIVERS\Rtlh86.sys [2007-03-05 76288]
R3 RTSTOR;USB Mass Storage Device; C:\Windows\system32\drivers\RTSTOR.SYS [2007-06-15 47616]
R3 SynTP;Synaptics TouchPad Driver; C:\Windows\system32\DRIVERS\SynTP.sys [2007-10-09 192560]
R3 tosporte;Bluetooth COM Port; C:\Windows\system32\DRIVERS\tosporte.sys [2006-10-10 41600]
R3 tosrfbd;Bluetooth RFBUS; C:\Windows\system32\DRIVERS\tosrfbd.sys [2007-01-12 113792]
R3 tosrfbnp;Bluetooth RFBNEP; C:\Windows\System32\Drivers\tosrfbnp.sys [2006-11-20 36480]
R3 Tosrfhid;Bluetooth RFHID; C:\Windows\system32\DRIVERS\Tosrfhid.sys [2007-01-24 73728]
R3 tosrfnds;Bluetooth Personal Area Network; C:\Windows\system32\DRIVERS\tosrfnds.sys [2005-01-06 18612]
R3 Tosrfusb;Bluetooth USB Controller; C:\Windows\system32\DRIVERS\tosrfusb.sys [2007-01-12 40576]
R3 winachsf;winachsf; C:\Windows\system32\DRIVERS\HSX_CNXT.sys [2006-10-17 659968]
S3 agd9izi3;agd9izi3; C:\Windows\system32\drivers\agd9izi3.sys []
S3 driverhardwarev2;driverhardwarev2; \??\C:\Program Files\ma-config.com\Drivers\driverhardwarev2.sys [2009-04-21 14336]
S3 drmkaud;Filtre de décodeur DRM (Noyau Microsoft); C:\Windows\system32\drivers\drmkaud.sys [2008-01-19 5632]
S3 fssfltr;FssFltr; C:\Windows\system32\DRIVERS\fssfltr.sys [2009-02-06 55280]
S3 HdAudAddService;Pilote de fonction UAA 1.1 Microsoft pour le service High Definition Audio; C:\Windows\system32\drivers\HdAudio.sys [2006-11-02 235520]
S3 HSFHWAZL;HSFHWAZL; C:\Windows\system32\DRIVERS\VSTAZL3.SYS [2006-11-02 200704]
S3 MSKSSRV;Proxy de service de répartition Microsoft; C:\Windows\system32\drivers\MSKSSRV.sys [2008-01-19 8192]
S3 MSPCLOCK;Proxy d'horloge de répartition Microsoft; C:\Windows\system32\drivers\MSPCLOCK.sys [2008-01-19 5888]
S3 MSPQM;Proxy de gestion de qualité de répartition Microsoft; C:\Windows\system32\drivers\MSPQM.sys [2008-01-19 5504]
S3 MSTEE;Convertisseur en T/site-à-site de répartition Microsoft; C:\Windows\system32\drivers\MSTEE.sys [2008-01-19 6016]
S3 NETw3v32;Pilote de carte Intel(R) PRO/Wireless 3945ABG pour Windows Vista 32 bits; C:\Windows\system32\DRIVERS\NETw3v32.sys [2006-11-02 1781760]
S3 nmwcd;Nokia USB Phone Parent; C:\Windows\system32\drivers\ccdcmb.sys [2009-02-09 17664]
S3 nmwcdc;Nokia USB Generic; C:\Windows\system32\drivers\ccdcmbo.sys [2009-02-09 22016]
S3 TosRfSnd;Bluetooth Audio; C:\Windows\system32\drivers\tosrfsnd.sys [2007-01-22 53376]
S3 upperdev;upperdev; C:\Windows\system32\DRIVERS\usbser_lowerflt.sys [2009-02-09 7808]
S3 USBCM;Scientific-Atlanta USB Cable Modem Driver; C:\Windows\system32\DRIVERS\Sacm2A.sys [2004-06-10 15429]
S3 usbser;USB Modem Driver; C:\Windows\system32\drivers\usbser.sys [2008-01-19 28160]
S3 UsbserFilt;UsbserFilt; C:\Windows\system32\DRIVERS\usbser_lowerfltj.sys [2009-02-09 7808]
S3 WUDFRd;WUDFRd; C:\Windows\system32\DRIVERS\WUDFRd.sys [2008-01-19 83328]
S4 UIUSys;Conexant Setup API; C:\Windows\system32\DRIVERS\UIUSYS.SYS [2006-06-08 6909]
S4 WmiAcpi;Microsoft Windows Management Interface for ACPI; C:\Windows\system32\drivers\wmiacpi.sys [2006-11-02 11264]
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 aswUpdSv;avast! iAVS4 Control Service; C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe [2009-02-05 18752]
R2 avast! Antivirus;avast! Antivirus; C:\Program Files\Alwil Software\Avast4\ashServ.exe [2009-02-05 138680]
R2 Nero BackItUp Scheduler 4.0;Nero BackItUp Scheduler 4.0; C:\Program Files\Common Files\Nero\Nero BackItUp 4\NBService.exe [2008-09-30 935208]
R2 TOSHIBA Bluetooth Service;TOSHIBA Bluetooth Service; C:\Program Files\Toshiba\Bluetooth Toshiba Stack\TosBtSrv.exe [2007-02-02 118784]
R2 XAudioService;XAudioService; C:\Windows\system32\DRIVERS\xaudio.exe [2006-08-03 386560]
R3 avast! Mail Scanner;avast! Mail Scanner; C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe [2009-02-05 254040]
R3 avast! Web Scanner;avast! Web Scanner; C:\Program Files\Alwil Software\Avast4\ashWebSv.exe [2009-02-05 352920]
R3 ServiceLayer;ServiceLayer; C:\Program Files\PC Connectivity Solution\ServiceLayer.exe [2009-03-04 621056]
S3 fsssvc;Windows Live Contrôle parental; C:\Program Files\Windows Live\Family Safety\fsssvc.exe [2009-02-06 533360]
S3 GoogleDesktopManager-092308-165331;Google Desktop Manager 5.8.809.23506; C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe [2009-06-22 30192]
S3 gusvc;Google Software Updater; C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe [2009-06-20 182768]
S3 IDriverT;InstallDriver Table Manager; C:\Program Files\Common Files\InstallShield\Driver\1050\Intel 32\IDriverT.exe [2004-10-22 73728]
S3 maconfservice;Ma-Config Service; C:\Program Files\ma-config.com\maconfservice.exe [2009-04-21 216232]
S3 odserv;Microsoft Office Diagnostics Service; C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE [2008-11-04 441712]
S3 ose;Office Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2006-10-26 145184]
-----------------EOF-----------------
Run by giova at 2009-08-06 22:07:46
Microsoft® Windows Vista™ Édition Familiale Premium Service Pack 1
System drive C: has 16 GB (5%) free of 305 GB
Total RAM: 3070 MB (63% free)
Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 22:08:11, on 6/08/2009
Platform: Windows Vista SP1 (WinNT 6.00.1905)
MSIE: Internet Explorer v8.00 (8.00.6001.18813)
Boot mode: Normal
Running processes:
C:\Windows\system32\Dwm.exe
C:\Windows\Explorer.EXE
C:\Windows\system32\taskeng.exe
C:\Windows\system32\taskeng.exe
C:\Program Files\Windows Defender\MSASCui.exe
C:\Program Files\Synaptics\SynTP\SynTPStart.exe
C:\Windows\RtHDVCpl.exe
C:\Program Files\Genesys PC Camera Device\GenePccMon.exe
C:\Program Files\Common Files\InstallShield\UpdateService\issch.exe
C:\Program Files\Java\jre6\bin\jusched.exe
C:\Windows\System32\rundll32.exe
C:\Program Files\Adobe\Reader 8.0\Reader\reader_sl.exe
C:\Windows\system32\wbem\unsecapp.exe
C:\Program Files\Alwil Software\Avast4\ashDisp.exe
C:\Windows\System32\p2phost.exe
C:\Program Files\Nokia\Nokia PC Suite 7\PCSuite.exe
C:\Windows\ehome\ehtray.exe
C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
C:\Program Files\DAEMON Tools Lite\daemon.exe
C:\Program Files\eMule\emule.exe
C:\Windows\System32\rundll32.exe
C:\Windows\system32\ntvdm.exe
C:\Program Files\Windows Media Player\wmpnscfg.exe
C:\Windows\ehome\ehmsas.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
C:\Program Files\PC Connectivity Solution\Transports\NclToBTSrv.exe
C:\Users\giova\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\giova\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\giova\Documents\Downloads\RSIT (2).exe
C:\Program Files\trend micro\giova.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
R3 - Default URLSearchHook is missing
O1 - Hosts: ::1 localhost
O2 - BHO: Aide pour le lien d'Adobe PDF Reader - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll
O2 - BHO: BitComet ClickCapture - {39F7E362-828A-4B5A-BCAF-5B79BFDFEA60} - C:\Program Files\BitComet\tools\BitCometBHO_1.3.3.2.dll
O2 - BHO: Click-to-Call BHO - {5C255C8A-E604-49b4-9D64-90988571CECB} - C:\Program Files\Windows Live\Messenger\wlchtc.dll
O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files\Google\Google Toolbar\GoogleToolbar.dll
O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\5.1.1309.15642\swg.dll
O2 - BHO: Google Dictionary Compression sdch - {C84D72FE-E17D-4195-BB24-76C02E2E7C4E} - C:\Program Files\Google\Google Toolbar\Component\fastsearch_A8904FB862BD9564.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll
O4 - HKLM\..\Run: [Windows Defender] %ProgramFiles%\Windows Defender\MSASCui.exe -hide
O4 - HKLM\..\Run: [SynTPStart] C:\Program Files\Synaptics\SynTP\SynTPStart.exe
O4 - HKLM\..\Run: [RtHDVCpl] RtHDVCpl.exe
O4 - HKLM\..\Run: [Skytel] Skytel.exe
O4 - HKLM\..\Run: [GenePccMon.exe] C:\Program Files\Genesys PC Camera Device\GenePccMon.exe
O4 - HKLM\..\Run: [ISUSPM Startup] C:\PROGRA~1\COMMON~1\INSTAL~1\UPDATE~1\ISUSPM.exe -startup
O4 - HKLM\..\Run: [ISUSScheduler] "C:\Program Files\Common Files\InstallShield\UpdateService\issch.exe" -start
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre6\bin\jusched.exe"
O4 - HKLM\..\Run: [NvSvc] RUNDLL32.EXE C:\Windows\system32\nvsvc.dll,nvsvcStart
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\Windows\system32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\Windows\system32\NvMcTray.dll,NvTaskbarInit
O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe"
O4 - HKLM\..\Run: [Cake active] "C:\ProgramData\help plan plan.jj0ibo"
O4 - HKLM\..\Run: [warn default inter for] "C:\ProgramData\Trust Logo Third.x9eqm"
O4 - HKLM\..\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
O4 - HKCU\..\Run: [WindowsWelcomeCenter] rundll32.exe oobefldr.dll,ShowWelcomeCenter
O4 - HKCU\..\Run: [CollaborationHost] C:\Windows\system32\p2phost.exe -s
O4 - HKCU\..\Run: [msnmsgr] "C:\Program Files\Windows Live\Messenger\MsnMsgr.Exe" /background
O4 - HKCU\..\Run: [PC Suite Tray] "C:\Program Files\Nokia\Nokia PC Suite 7\PCSuite.exe" -onlytray
O4 - HKCU\..\Run: [ccleaner] "C:\Program Files\CCleaner\CCleaner.exe" /AUTO
O4 - HKCU\..\Run: [ISUSScheduler] "C:\Program Files\Common Files\InstallShield\UpdateService\issch.exe" -start
O4 - HKCU\..\Run: [ehTray.exe] C:\Windows\ehome\ehTray.exe
O4 - HKCU\..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
O4 - HKCU\..\Run: [DAEMON Tools Lite] "C:\Program Files\DAEMON Tools Lite\daemon.exe" -autorun
O4 - HKCU\..\Run: [Google Update] "C:\Users\giova\AppData\Local\Google\Update\GoogleUpdate.exe" /c
O4 - HKCU\..\Run: [WMPNSCFG] C:\Program Files\Windows Media Player\WMPNSCFG.exe
O4 - HKCU\..\Run: [eMuleAutoStart] C:\Program Files\eMule\emule.exe -AutoStart
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-19\..\Run: [WindowsWelcomeCenter] rundll32.exe oobefldr.dll,ShowWelcomeCenter (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'SERVICE RÉSEAU')
O4 - Startup: Event Reminder.lnk = C:\pmw\PMREMIND.EXE
O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~4\Office12\EXCEL.EXE/3000
O8 - Extra context menu item: Tout télécharger avec BitComet - res://C:\Program Files\BitComet\BitComet.exe/AddAllLink.htm
O8 - Extra context menu item: Télécharger avec BitComet - res://C:\Program Files\BitComet\BitComet.exe/AddLink.htm
O8 - Extra context menu item: Télécharger toutes les vidéos avec BitComet - res://C:\Program Files\BitComet\BitComet.exe/AddVideo.htm
O9 - Extra button: Ajout Direct - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra 'Tools' menuitem: &Ajout Direct dans Windows Live Writer - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra button: Envoyer à OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~4\Office12\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: &Envoyer à OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~4\Office12\ONBttnIE.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~4\Office12\REFIEBAR.DLL
O9 - Extra button: BitComet - {D18A0B52-D63C-4ed0-AFC6-C1E3DC1AF43A} - res://C:\Program Files\BitComet\tools\BitCometBHO_1.3.3.2.dll/206 (file missing)
O9 - Extra button: (no name) - cmdmapping - (no file) (HKCU)
O13 - Gopher Prefix:
O16 - DPF: {5D6F45B3-9043-443D-A792-115447494D24} (UnoCtrl Class) - http://messenger.zone.msn.com/FR-BE/a-UNO1/GAME_UNO1.cab
O16 - DPF: {867E13F2-7F31-44FB-AC97-CD38E0DC46EF} (HardwareDetection Control) - http://fichiers.touslesdrivers.com/maconfig/MaConfig_3_1_2_1.cab
O16 - DPF: {C3F79A2B-B9B4-4A66-B012-3EE46475B072} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsPAClient.cab56907.cab
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab
O16 - DPF: {D71F9A27-723E-4B8B-B428-B725E47CBA3E} (Imikimi_activex_plugin Control) - http://imikimi.com/download/imikimi_plugin_0.5.1.cab
O18 - Filter: x-sdch - {B1759355-3EEC-4C1E-B0F1-B719FE26E377} - C:\Program Files\Google\Google Toolbar\Component\fastsearch_A8904FB862BD9564.dll
O20 - AppInit_DLLs: C:\PROGRA~1\Google\GOOGLE~3\GOEC62~1.DLL
O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - ALWIL Software - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
O23 - Service: avast! Antivirus - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashServ.exe
O23 - Service: avast! Mail Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
O23 - Service: avast! Web Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
O23 - Service: Google Desktop Manager 5.8.809.23506 (GoogleDesktopManager-092308-165331) - Google - C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe
O23 - Service: Google Software Updater (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\1050\Intel 32\IDriverT.exe
O23 - Service: Ma-Config Service (maconfservice) - CybelSoft - C:\Program Files\ma-config.com\maconfservice.exe
O23 - Service: Nero BackItUp Scheduler 4.0 - Nero AG - C:\Program Files\Common Files\Nero\Nero BackItUp 4\NBService.exe
O23 - Service: ServiceLayer - Nokia. - C:\Program Files\PC Connectivity Solution\ServiceLayer.exe
O23 - Service: TOSHIBA Bluetooth Service - TOSHIBA CORPORATION - C:\Program Files\Toshiba\Bluetooth Toshiba Stack\TosBtSrv.exe
O23 - Service: XAudioService - Conexant Systems, Inc. - C:\Windows\system32\DRIVERS\xaudio.exe
--
End of file - 10069 bytes
======Scheduled tasks folder======
C:\Windows\tasks\GlaryInitialize.job
C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-4179544620-4203920697-3270201199-1002Core.job
C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-4179544620-4203920697-3270201199-1002UA.job
C:\Windows\tasks\User_Feed_Synchronization-{A7D8A71A-3493-410B-B5EB-7EC12AB742A3}.job
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{06849E9F-C8D7-4D59-B87D-784B7D6BE0B3}]
Aide pour le lien d'Adobe PDF Reader - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll [2006-10-22 62080]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{39F7E362-828A-4B5A-BCAF-5B79BFDFEA60}]
BitComet Helper - C:\Program Files\BitComet\tools\BitCometBHO_1.3.3.2.dll [2009-03-02 636216]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{5C255C8A-E604-49b4-9D64-90988571CECB}]
Click-to-Call BHO - C:\Program Files\Windows Live\Messenger\wlchtc.dll [2009-02-06 73072]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
Programme d'aide de l'Assistant de connexion Windows Live - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2009-01-22 408448]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AA58ED58-01DD-4d91-8333-CF10577473F7}]
Google Toolbar Helper - C:\Program Files\Google\Google Toolbar\GoogleToolbar.dll [2009-06-20 259696]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AF69DE43-7D58-4638-B6FA-CE66B5AD205D}]
Google Toolbar Notifier BHO - C:\Program Files\Google\GoogleToolbarNotifier\5.1.1309.15642\swg.dll [2009-06-23 669168]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{C84D72FE-E17D-4195-BB24-76C02E2E7C4E}]
Google Dictionary Compression sdch - C:\Program Files\Google\Google Toolbar\Component\fastsearch_A8904FB862BD9564.dll [2009-06-20 470512]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre6\bin\jp2ssv.dll [2009-03-09 35840]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"Windows Defender"=C:\Program Files\Windows Defender\MSASCui.exe [2008-01-19 1008184]
"SynTPStart"=C:\Program Files\Synaptics\SynTP\SynTPStart.exe [2007-10-09 102400]
"RtHDVCpl"=C:\Windows\RtHDVCpl.exe [2007-12-05 4710400]
"Skytel"=C:\Windows\Skytel.exe [2007-11-21 1826816]
"GenePccMon.exe"=C:\Program Files\Genesys PC Camera Device\GenePccMon.exe [2007-02-13 36864]
"ISUSPM Startup"=C:\PROGRA~1\COMMON~1\INSTAL~1\UPDATE~1\ISUSPM.exe [2006-08-25 221184]
"ISUSScheduler"=C:\Program Files\Common Files\InstallShield\UpdateService\issch.exe [2006-09-11 86960]
"SunJavaUpdateSched"=C:\Program Files\Java\jre6\bin\jusched.exe [2009-03-09 148888]
"NvSvc"=C:\Windows\system32\nvsvc.dll [2007-10-24 86016]
"NvCplDaemon"=C:\Windows\system32\NvCpl.dll [2007-10-24 8501792]
"NvMediaCenter"=C:\Windows\system32\NvMcTray.dll [2007-10-24 81920]
"Adobe Reader Speed Launcher"=C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe [2008-10-15 39792]
"Cake active"=C:\ProgramData\help plan plan.jj0ibo [2009-08-06 319504]
"warn default inter for"=C:\ProgramData\Trust Logo Third.x9eqm [2009-08-04 36880]
"avast!"=C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe [2009-02-05 81000]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"WindowsWelcomeCenter"=oobefldr.dll,ShowWelcomeCenter []
"CollaborationHost"=C:\Windows\system32\p2phost.exe [2008-01-19 192000]
"msnmsgr"=C:\Program Files\Windows Live\Messenger\MsnMsgr.Exe [2009-02-06 3885408]
"PC Suite Tray"=C:\Program Files\Nokia\Nokia PC Suite 7\PCSuite.exe [2009-03-20 1312256]
"ccleaner"=C:\Program Files\CCleaner\CCleaner.exe [2009-05-07 1561840]
"ISUSScheduler"=C:\Program Files\Common Files\InstallShield\UpdateService\issch.exe [2006-09-11 86960]
"ehTray.exe"=C:\Windows\ehome\ehTray.exe [2008-01-19 125952]
"swg"=C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe [2009-06-20 39408]
"DAEMON Tools Lite"=C:\Program Files\DAEMON Tools Lite\daemon.exe [2009-04-23 691656]
"Google Update"=C:\Users\giova\AppData\Local\Google\Update\GoogleUpdate.exe [2009-07-03 133104]
"WMPNSCFG"=C:\Program Files\Windows Media Player\WMPNSCFG.exe [2008-01-19 202240]
"eMuleAutoStart"=C:\Program Files\eMule\emule.exe [2009-02-22 5668864]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe Reader Speed Launcher]
C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe [2008-10-15 39792]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\eMuleAutoStart]
C:\Program Files\eMule\emule.exe [2009-02-22 5668864]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\msnmsgr]
C:\Program Files\Windows Live\Messenger\msnmsgr.exe [2009-02-06 3885408]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Users^giova^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^OneNote 2007 - Capture d'écran et lancement.lnk]
C:\PROGRA~1\MICROS~4\Office12\ONENOTEM.EXE [2008-10-25 98696]
C:\Users\giova\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
Event Reminder.lnk - C:\pmw\PMREMIND.EXE
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows]
"AppInit_DLLS"="C:\PROGRA~1\Google\GOOGLE~3\GOEC62~1.DLL"
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\vsmon]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
"FilterAdministratorToken"=1
"EnableUIADesktopToggle"=0
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{5e1380be-0fcf-11de-9fa6-806e6f6e6963}]
shell\AutoRun\command - D:\Autorun.exe
======File associations======
.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*
======List of files/folders created in the last 1 months======
2009-08-06 21:41:31 ----A---- C:\TB.txt
2009-08-06 21:40:46 ----D---- C:\ToolBar SD
2009-08-06 18:50:21 ----D---- C:\Users\giova\AppData\Roaming\Malwarebytes
2009-08-06 18:50:16 ----D---- C:\ProgramData\Malwarebytes
2009-08-06 18:50:16 ----D---- C:\Program Files\Malwarebytes' Anti-Malware
2009-08-06 18:38:14 ----D---- C:\rsit
2009-08-06 18:38:14 ----D---- C:\Program Files\trend micro
2009-08-06 12:21:41 ----A---- C:\Windows\system32\aswBoot.exe
2009-08-04 10:59:21 ----SHD---- C:\Config.Msi
2009-08-04 10:56:07 ----A---- C:\Windows\system32\occache.dll
2009-08-04 10:56:06 ----A---- C:\Windows\system32\msfeedsbs.dll
2009-08-04 10:56:06 ----A---- C:\Windows\system32\msfeeds.dll
2009-08-04 10:56:06 ----A---- C:\Windows\system32\jsproxy.dll
2009-08-04 10:56:06 ----A---- C:\Windows\system32\iepeers.dll
2009-08-04 10:56:05 ----A---- C:\Windows\system32\ieui.dll
2009-08-04 10:56:05 ----A---- C:\Windows\system32\iesetup.dll
2009-08-04 10:56:04 ----A---- C:\Windows\system32\wininet.dll
2009-08-04 10:56:04 ----A---- C:\Windows\system32\urlmon.dll
2009-08-04 10:56:04 ----A---- C:\Windows\system32\msfeedssync.exe
2009-08-04 10:56:04 ----A---- C:\Windows\system32\ieUnatt.exe
2009-08-04 10:56:04 ----A---- C:\Windows\system32\iesysprep.dll
2009-08-04 10:56:04 ----A---- C:\Windows\system32\iertutil.dll
2009-08-04 10:56:04 ----A---- C:\Windows\system32\iernonce.dll
2009-08-04 10:56:04 ----A---- C:\Windows\system32\iedkcs32.dll
2009-08-04 10:56:04 ----A---- C:\Windows\system32\ie4uinit.exe
2009-08-04 10:56:03 ----A---- C:\Windows\system32\ieframe.dll
2009-08-04 10:56:02 ----A---- C:\Windows\system32\mshtml.dll
2009-08-04 10:54:01 ----A---- C:\Windows\system32\mshtmler.dll
2009-08-04 10:54:01 ----A---- C:\Windows\system32\mshtmled.dll
2009-08-04 10:54:01 ----A---- C:\Windows\system32\icardie.dll
2009-08-04 10:54:01 ----A---- C:\Windows\system32\admparse.dll
2009-08-04 10:54:00 ----A---- C:\Windows\system32\msls31.dll
2009-08-04 10:54:00 ----A---- C:\Windows\system32\imgutil.dll
2009-08-04 10:54:00 ----A---- C:\Windows\system32\ieakeng.dll
2009-08-04 10:54:00 ----A---- C:\Windows\system32\dxtrans.dll
2009-08-04 10:54:00 ----A---- C:\Windows\system32\dxtmsft.dll
2009-08-04 10:54:00 ----A---- C:\Windows\system32\corpol.dll
2009-08-04 10:53:59 ----A---- C:\Windows\system32\WinFXDocObj.exe
2009-08-04 10:53:59 ----A---- C:\Windows\system32\wextract.exe
2009-08-04 10:53:59 ----A---- C:\Windows\system32\webcheck.dll
2009-08-04 10:53:59 ----A---- C:\Windows\system32\msrating.dll
2009-08-04 10:53:59 ----A---- C:\Windows\system32\licmgr10.dll
2009-08-04 10:53:59 ----A---- C:\Windows\system32\inseng.dll
2009-08-04 10:53:59 ----A---- C:\Windows\system32\ieakui.dll
2009-08-04 10:53:59 ----A---- C:\Windows\system32\ieaksie.dll
2009-08-04 10:53:58 ----A---- C:\Windows\system32\pngfilt.dll
2009-08-04 10:53:58 ----A---- C:\Windows\system32\mstime.dll
2009-08-04 10:53:58 ----A---- C:\Windows\system32\ieapfltr.dll
2009-08-04 10:53:58 ----A---- C:\Windows\system32\advpack.dll
2009-08-04 10:53:57 ----A---- C:\Windows\system32\vbscript.dll
2009-08-04 10:53:57 ----A---- C:\Windows\system32\url.dll
2009-08-04 10:53:57 ----A---- C:\Windows\system32\jscript.dll
2009-08-04 10:53:56 ----A---- C:\Windows\system32\SetIEInstalledDate.exe
2009-08-04 10:53:56 ----A---- C:\Windows\system32\SetDepNx.exe
2009-08-04 10:53:56 ----A---- C:\Windows\system32\RegisterIEPKEYs.exe
2009-08-04 10:53:56 ----A---- C:\Windows\system32\PDMSetup.exe
2009-08-04 10:53:56 ----A---- C:\Windows\system32\mshta.exe
2009-08-04 10:53:56 ----A---- C:\Windows\system32\iexpress.exe
2009-08-04 10:50:17 ----D---- C:\Program Files\WebCam Spy Lite
2009-08-04 10:22:13 ----D---- C:\Program Files\heart face math
2009-08-04 10:01:21 ----D---- C:\ProgramData\Time Dead Warn Default
2009-08-04 10:01:06 ----D---- C:\ProgramData\heart face math
2009-08-04 10:00:57 ----D---- C:\Program Files\TorrentSpeeder
2009-07-29 03:11:36 ----D---- C:\ProgramData\Electronic Arts
2009-07-21 18:49:18 ----A---- C:\Windows\system32\t2embed.dll
2009-07-21 18:49:18 ----A---- C:\Windows\system32\fontsub.dll
2009-07-21 18:49:18 ----A---- C:\Windows\system32\dciman32.dll
2009-07-21 18:49:18 ----A---- C:\Windows\system32\atmfd.dll
2009-07-17 14:03:40 ----D---- C:\Program Files\FlyGimp Pro
======List of files/folders modified in the last 1 months======
2009-08-06 22:07:50 ----D---- C:\Windows\Temp
2009-08-06 22:06:03 ----D---- C:\Windows
2009-08-06 22:04:11 ----D---- C:\Windows\Prefetch
2009-08-06 21:43:06 ----RD---- C:\Program Files
2009-08-06 21:36:50 ----HD---- C:\ProgramData
2009-08-06 18:50:17 ----D---- C:\Windows\system32\drivers
2009-08-06 16:09:01 ----SHD---- C:\System Volume Information
2009-08-06 15:58:05 ----D---- C:\Windows\system32\catroot2
2009-08-06 12:22:04 ----D---- C:\Windows\System32
2009-08-06 12:19:38 ----D---- C:\Program Files\BitComet
2009-08-06 12:19:12 ----D---- C:\Downloads
2009-08-05 14:57:41 ----D---- C:\Program Files\EA SPORTS
2009-08-04 20:11:43 ----A---- C:\Windows\NeroDigital.ini
2009-08-04 18:43:39 ----A---- C:\Windows\ACROREAD.INI
2009-08-04 17:06:11 ----D---- C:\Windows\rescache
2009-08-04 16:47:33 ----D---- C:\Windows\system32\migration
2009-08-04 16:47:33 ----D---- C:\Windows\system32\fr-FR
2009-08-04 16:47:33 ----D---- C:\Program Files\Internet Explorer
2009-08-04 16:47:32 ----D---- C:\Windows\system32\en-US
2009-08-04 16:47:32 ----D---- C:\Windows\PolicyDefinitions
2009-08-04 13:27:07 ----D---- C:\Windows\Microsoft.NET
2009-08-04 11:02:49 ----SHD---- C:\Windows\Installer
2009-08-04 11:01:36 ----D---- C:\ProgramData\Microsoft Help
2009-08-04 11:01:32 ----RSD---- C:\Windows\assembly
2009-08-04 10:59:49 ----RSD---- C:\Windows\Fonts
2009-08-04 10:59:42 ----D---- C:\Program Files\Common Files\microsoft shared
2009-08-04 10:59:26 ----D---- C:\Program Files\Microsoft Works
2009-08-04 10:56:38 ----D---- C:\Windows\winsxs
2009-08-04 10:56:32 ----D---- C:\Windows\system32\catroot
2009-08-04 10:07:11 ----D---- C:\Program Files\Intel
2009-08-02 10:46:35 ----D---- C:\Program Files\Microsoft Silverlight
2009-07-31 00:21:07 ----D---- C:\Windows\inf
2009-07-31 00:21:07 ----A---- C:\Windows\system32\PerfStringBackup.INI
2009-07-24 03:19:10 ----D---- C:\Program Files\Windows Live Safety Center
2009-07-22 20:43:30 ----D---- C:\Users\giova\AppData\Roaming\temp
2009-07-21 19:29:59 ----D---- C:\Windows\Debug
2009-07-21 19:22:22 ----D---- C:\Program Files\Windows Mail
2009-07-21 19:09:14 ----D---- C:\Windows\Internet Logs
2009-07-21 19:06:30 ----A---- C:\Windows\wininit.ini
2009-07-21 19:06:30 ----A---- C:\Windows\ka.ini
2009-07-21 19:04:36 ----DC---- C:\Windows\system32\DRVSTORE
2009-07-21 19:03:57 ----D---- C:\Program Files\Microsoft Office
2009-07-21 19:03:46 ----D---- C:\Windows\ShellNew
2009-07-21 19:03:45 ----D---- C:\Program Files\Common Files\System
2009-07-21 19:01:52 ----RSD---- C:\Windows\Media
2009-07-21 19:01:35 ----A---- C:\Windows\vbaddin.ini
2009-07-21 18:56:38 ----D---- C:\Program Files\Camfrog
2009-07-21 18:56:17 ----SD---- C:\ProgramData\Microsoft
2009-07-21 18:56:17 ----D---- C:\Users\giova\AppData\Roaming\Lavasoft
2009-07-21 18:55:52 ----D---- C:\Program Files\Microsoft
2009-07-21 18:51:29 ----HD---- C:\Program Files\InstallShield Installation Information
2009-07-21 18:49:35 ----D---- C:\Windows\system32\Tasks
2009-07-21 18:34:02 ----D---- C:\Windows\system32\wbem
2009-07-21 18:32:52 ----D---- C:\Windows\system32\config
2009-07-21 18:32:25 ----D---- C:\Windows\Tasks
2009-07-21 18:32:25 ----D---- C:\Windows\system32\spool
2009-07-21 18:32:25 ----D---- C:\Windows\system32\Msdtc
2009-07-21 18:32:25 ----D---- C:\Windows\system32\CodeIntegrity
2009-07-21 18:32:24 ----D---- C:\Users\giova\AppData\Roaming\vlc
2009-07-21 18:32:20 ----D---- C:\Program Files\Glary Utilities
2009-07-21 18:32:19 ----D---- C:\Windows\registration
2009-07-08 11:29:59 ----D---- C:\Windows\system32\WDI
2009-07-07 17:10:56 ----A---- C:\Windows\system32\mrt.exe
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R1 aswRdr;aswRdr; C:\Windows\system32\drivers\aswRdr.sys [2009-02-05 23152]
R1 aswSP;avast! Self Protection; C:\Windows\system32\drivers\aswSP.sys [2009-02-05 114768]
R1 aswTdi;avast! Network Shield Support; C:\Windows\system32\drivers\aswTdi.sys [2009-02-05 51376]
R1 Tosrfcom;Bluetooth RFCOMM; C:\Windows\System32\Drivers\tosrfcom.sys [2005-08-01 64896]
R2 aswFsBlk;aswFsBlk; C:\Windows\system32\DRIVERS\aswFsBlk.sys [2009-02-05 20560]
R2 aswMonFlt;aswMonFlt; C:\Windows\system32\DRIVERS\aswMonFlt.sys [2009-02-05 51792]
R2 mdmxsdk;mdmxsdk; C:\Windows\system32\DRIVERS\mdmxsdk.sys [2006-06-18 12672]
R2 XAudio;XAudio; C:\Windows\system32\DRIVERS\xaudio.sys [2006-08-03 8192]
R3 CmBatt;Pilote pour Batterie à méthode de contrôle ACPI Microsoft; C:\Windows\system32\DRIVERS\CmBatt.sys [2008-01-19 14208]
R3 DCamUSBGene;GenesysLogic USB2.0 PC Camera; C:\Windows\system32\DRIVERS\usbgene.sys [2007-06-26 131584]
R3 HSF_DPV;HSF_DPV; C:\Windows\system32\DRIVERS\HSX_DPV.sys [2006-10-17 986624]
R3 HSXHWAZL;HSXHWAZL; C:\Windows\system32\DRIVERS\HSXHWAZL.sys [2006-10-17 206848]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\Windows\system32\drivers\RTKVHDA.sys [2007-12-06 2027032]
R3 NETw4v32;Pilote de carte Intel(R) Wireless WiFi Link pour Windows Vista 32 bits; C:\Windows\system32\DRIVERS\NETw4v32.sys [2007-10-19 2251776]
R3 nvlddmkm;nvlddmkm; C:\Windows\system32\DRIVERS\nvlddmkm.sys [2007-10-24 7629664]
R3 RTL8169;Realtek 8169 NT Driver; C:\Windows\system32\DRIVERS\Rtlh86.sys [2007-03-05 76288]
R3 RTSTOR;USB Mass Storage Device; C:\Windows\system32\drivers\RTSTOR.SYS [2007-06-15 47616]
R3 SynTP;Synaptics TouchPad Driver; C:\Windows\system32\DRIVERS\SynTP.sys [2007-10-09 192560]
R3 tosporte;Bluetooth COM Port; C:\Windows\system32\DRIVERS\tosporte.sys [2006-10-10 41600]
R3 tosrfbd;Bluetooth RFBUS; C:\Windows\system32\DRIVERS\tosrfbd.sys [2007-01-12 113792]
R3 tosrfbnp;Bluetooth RFBNEP; C:\Windows\System32\Drivers\tosrfbnp.sys [2006-11-20 36480]
R3 Tosrfhid;Bluetooth RFHID; C:\Windows\system32\DRIVERS\Tosrfhid.sys [2007-01-24 73728]
R3 tosrfnds;Bluetooth Personal Area Network; C:\Windows\system32\DRIVERS\tosrfnds.sys [2005-01-06 18612]
R3 Tosrfusb;Bluetooth USB Controller; C:\Windows\system32\DRIVERS\tosrfusb.sys [2007-01-12 40576]
R3 winachsf;winachsf; C:\Windows\system32\DRIVERS\HSX_CNXT.sys [2006-10-17 659968]
S3 agd9izi3;agd9izi3; C:\Windows\system32\drivers\agd9izi3.sys []
S3 driverhardwarev2;driverhardwarev2; \??\C:\Program Files\ma-config.com\Drivers\driverhardwarev2.sys [2009-04-21 14336]
S3 drmkaud;Filtre de décodeur DRM (Noyau Microsoft); C:\Windows\system32\drivers\drmkaud.sys [2008-01-19 5632]
S3 fssfltr;FssFltr; C:\Windows\system32\DRIVERS\fssfltr.sys [2009-02-06 55280]
S3 HdAudAddService;Pilote de fonction UAA 1.1 Microsoft pour le service High Definition Audio; C:\Windows\system32\drivers\HdAudio.sys [2006-11-02 235520]
S3 HSFHWAZL;HSFHWAZL; C:\Windows\system32\DRIVERS\VSTAZL3.SYS [2006-11-02 200704]
S3 MSKSSRV;Proxy de service de répartition Microsoft; C:\Windows\system32\drivers\MSKSSRV.sys [2008-01-19 8192]
S3 MSPCLOCK;Proxy d'horloge de répartition Microsoft; C:\Windows\system32\drivers\MSPCLOCK.sys [2008-01-19 5888]
S3 MSPQM;Proxy de gestion de qualité de répartition Microsoft; C:\Windows\system32\drivers\MSPQM.sys [2008-01-19 5504]
S3 MSTEE;Convertisseur en T/site-à-site de répartition Microsoft; C:\Windows\system32\drivers\MSTEE.sys [2008-01-19 6016]
S3 NETw3v32;Pilote de carte Intel(R) PRO/Wireless 3945ABG pour Windows Vista 32 bits; C:\Windows\system32\DRIVERS\NETw3v32.sys [2006-11-02 1781760]
S3 nmwcd;Nokia USB Phone Parent; C:\Windows\system32\drivers\ccdcmb.sys [2009-02-09 17664]
S3 nmwcdc;Nokia USB Generic; C:\Windows\system32\drivers\ccdcmbo.sys [2009-02-09 22016]
S3 TosRfSnd;Bluetooth Audio; C:\Windows\system32\drivers\tosrfsnd.sys [2007-01-22 53376]
S3 upperdev;upperdev; C:\Windows\system32\DRIVERS\usbser_lowerflt.sys [2009-02-09 7808]
S3 USBCM;Scientific-Atlanta USB Cable Modem Driver; C:\Windows\system32\DRIVERS\Sacm2A.sys [2004-06-10 15429]
S3 usbser;USB Modem Driver; C:\Windows\system32\drivers\usbser.sys [2008-01-19 28160]
S3 UsbserFilt;UsbserFilt; C:\Windows\system32\DRIVERS\usbser_lowerfltj.sys [2009-02-09 7808]
S3 WUDFRd;WUDFRd; C:\Windows\system32\DRIVERS\WUDFRd.sys [2008-01-19 83328]
S4 UIUSys;Conexant Setup API; C:\Windows\system32\DRIVERS\UIUSYS.SYS [2006-06-08 6909]
S4 WmiAcpi;Microsoft Windows Management Interface for ACPI; C:\Windows\system32\drivers\wmiacpi.sys [2006-11-02 11264]
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 aswUpdSv;avast! iAVS4 Control Service; C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe [2009-02-05 18752]
R2 avast! Antivirus;avast! Antivirus; C:\Program Files\Alwil Software\Avast4\ashServ.exe [2009-02-05 138680]
R2 Nero BackItUp Scheduler 4.0;Nero BackItUp Scheduler 4.0; C:\Program Files\Common Files\Nero\Nero BackItUp 4\NBService.exe [2008-09-30 935208]
R2 TOSHIBA Bluetooth Service;TOSHIBA Bluetooth Service; C:\Program Files\Toshiba\Bluetooth Toshiba Stack\TosBtSrv.exe [2007-02-02 118784]
R2 XAudioService;XAudioService; C:\Windows\system32\DRIVERS\xaudio.exe [2006-08-03 386560]
R3 avast! Mail Scanner;avast! Mail Scanner; C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe [2009-02-05 254040]
R3 avast! Web Scanner;avast! Web Scanner; C:\Program Files\Alwil Software\Avast4\ashWebSv.exe [2009-02-05 352920]
R3 ServiceLayer;ServiceLayer; C:\Program Files\PC Connectivity Solution\ServiceLayer.exe [2009-03-04 621056]
S3 fsssvc;Windows Live Contrôle parental; C:\Program Files\Windows Live\Family Safety\fsssvc.exe [2009-02-06 533360]
S3 GoogleDesktopManager-092308-165331;Google Desktop Manager 5.8.809.23506; C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe [2009-06-22 30192]
S3 gusvc;Google Software Updater; C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe [2009-06-20 182768]
S3 IDriverT;InstallDriver Table Manager; C:\Program Files\Common Files\InstallShield\Driver\1050\Intel 32\IDriverT.exe [2004-10-22 73728]
S3 maconfservice;Ma-Config Service; C:\Program Files\ma-config.com\maconfservice.exe [2009-04-21 216232]
S3 odserv;Microsoft Office Diagnostics Service; C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE [2008-11-04 441712]
S3 ose;Office Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2006-10-26 145184]
-----------------EOF-----------------
PRODUITS
- Portables |
- PC |
- Moniteurs |
- Photo / Vidéo |
- T.V. |
- Audio |
- GPS |
- Stockage |
- Téléphonie |
- autres catégories
TÉLÉCHARGER - LOGICIELS
- Windows & logiciels |
- Bureautique |
- Développement |
- Internet |
- Jeux |
- Loisirs |
- Multimédia |
- Personnaliser son pc |
- Sécurité |
- Utilitaires |
- Logiciels Linux |
- logiciels Mac
JEUX VIDÉOS
- jeux PC |
- Xbox |
- Playstation |
- Wii |
- PSP |
- DS |
- Action |
- Aventure |
- MMORPG |
- Sports |
- Simulation |
- Enfant |
- Soluces et astuces
LOISIRS
01NET PRO
- Réseaux et Internet |
- Programmation et développement |
- Logiciels d'entreprise |
- Systèmes d'exploitation en entreprise |
- Sécurité en entreprise |
- Entreprenariat |
- Emploi |
- Services PRO |
- Matériel PRO
AVIS ET COMMENTAIRES
- Les actualités de 01net. |
- Avis sur les jeux vidéos |
- Avis sur les produits |
- Avis sur les logiciels |
A PROPOS DE 01NET
publicité
Messages des modérateurs
A lire aussi
PRODUITS
- bonjour , perdu code de securiter sur samsung d500
- bonjour , perdu code de securiter sur samsung d500
- bonjour , perdu code de securiter sur samsung d500
- anti-virus
- bonjour
TÉLÉCHARGER - LOGICIELS
- anti virus
- Quel serait l'anti virus gratuit le plus efficace selon vous
- Kaspersky Virus Removal Tools``Résolu``
- Possibilité de virus
- anti virus!!
JEUX VIDÉOS
- Bonjour
- bonjour probleme avec steam
- bonjour probleme avec steam
- bonjour a tous quelq'un peu t'il maider svp
- bonjour a tous quelq'un peu t'il maider svp
LOISIRS
- le virus Netsky
- Un virus s'attaque au téléphone portable
- Qui pense que Rammstein est un groupe aux propos nazis, etc
- Svt ... question qui demande reflexion je pense
- Que pensé vous des casseur lors des manifestations anti-cpe
01NET PRO
AVIS ET COMMENTAIRES
- Pense-Bête
- avast! Virus Cleaner
- CA Anti-Virus
- « Bonjour, je suis une déclaration d'amour par SMS »
- Les virus infiltrent les images
A PROPOS DE 01NET
 |
 |
Espace Kids
Découvrez notre sélection de logiciels et de jeux pour les enfants !
|
 |
||
L'ORDINATEUR INDIVIDUEL
Le mensuel informatique qui vous informe et vous conseille.
Nous contacter
|
Charte de confiance
|
Voir notice légale
01net. - 01men - RMC - BFM Radio - BFM TV - TousLesPodcasts - 01informatique.fr - Association RMC-BFM
01net. - 01men - RMC - BFM Radio - BFM TV - TousLesPodcasts - 01informatique.fr - Association RMC-BFM
Tous droits réservés © 1999 - 2009 Internext - 01net.