About Online Clipboard…Clipboard Contents
http://www.miraclesalad.com/webtools/clip.php?clip=2e67
001 |
-------------------------------------------------------------------------------
KASPERSKY ON-LINE SCANNER REPORT
Friday, March 06, 2009 3:13:10 PM
Système d'exploitation : Microsoft Windows XP Professional, Service Pack 2 (Build 2600)
Kaspersky On-line Scanner version : 5.0.84.2
Dernière mise à jour de la base antivirus Kaspersky : 6/03/2009
Enregistrements dans la base antivirus Kaspersky : 1873040
-------------------------------------------------------------------------------
Paramètres d'analyse:
Analyser avec la base antivirus suivante: étendue
Analyser les archives: vrai
Analyser les bases de messagerie: vrai
Cible de l'analyse - Poste de travail:
C:\
D:\
F:\
Statistiques de l'analyse:
Total d'objets analysés: 115523
Nombre de virus trouvés: 6
Nombre d'objets infectés: 139 / 0
Nombre d'objets suspects: 0
Durée de l'analyse: 04:06:19
Nom de l'objet infecté / Nom du virus / Dernière action
C:\autorun.bat Infecté : Virus.VBS.Small.a ignoré
C:\autorun.inf Infecté : Virus.VBS.Small.a ignoré
C:\autorun.reg Infecté : Trojan.WinREG.AutoRun.a ignoré
C:\autorun.vbs Infecté : Virus.VBS.Small.a ignoré
C:\Documents and Settings\DICOUIT\Application Data\Mozilla\Firefox\Profiles\koduyh1a.default\cert8.db L'objet est verrouillé ignoré
C:\Documents and Settings\DICOUIT\Application Data\Mozilla\Firefox\Profiles\koduyh1a.default\content-prefs.sqlite L'objet est verrouillé ignoré
C:\Documents and Settings\DICOUIT\Application Data\Mozilla\Firefox\Profiles\koduyh1a.default\cookies.sqlite L'objet est verrouillé ignoré
C:\Documents and Settings\DICOUIT\Application Data\Mozilla\Firefox\Profiles\koduyh1a.default\downloads.sqlite L'objet est verrouillé ignoré
C:\Documents and Settings\DICOUIT\Application Data\Mozilla\Firefox\Profiles\koduyh1a.default\formhistory.sqlite L'objet est verrouillé ignoré
C:\Documents and Settings\DICOUIT\Application Data\Mozilla\Firefox\Profiles\koduyh1a.default\key3.db L'objet est verrouillé ignoré
C:\Documents and Settings\DICOUIT\Application Data\Mozilla\Firefox\Profiles\koduyh1a.default\parent.lock L'objet est verrouillé ignoré
C:\Documents and Settings\DICOUIT\Application Data\Mozilla\Firefox\Profiles\koduyh1a.default\permissions.sqlite L'objet est verrouillé ignoré
C:\Documents and Settings\DICOUIT\Application Data\Mozilla\Firefox\Profiles\koduyh1a.default\places.sqlite L'objet est verrouillé ignoré
C:\Documents and Settings\DICOUIT\Application Data\Mozilla\Firefox\Profiles\koduyh1a.default\places.sqlite-journal L'objet est verrouillé ignoré
C:\Documents and Settings\DICOUIT\Application Data\Mozilla\Firefox\Profiles\koduyh1a.default\search.sqlite L'objet est verrouillé ignoré
C:\Documents and Settings\DICOUIT\Cookies\index.dat L'objet est verrouillé ignoré
C:\Documents and Settings\DICOUIT\humyo.store\root\autorun.bat Infecté : Virus.VBS.Small.a ignoré
C:\Documents and Settings\DICOUIT\humyo.store\root\autorun.inf Infecté : Virus.VBS.Small.a ignoré
C:\Documents and Settings\DICOUIT\humyo.store\root\autorun.reg Infecté : Trojan.WinREG.AutoRun.a ignoré
C:\Documents and Settings\DICOUIT\humyo.store\root\autorun.vbs Infecté : Virus.VBS.Small.a ignoré
C:\Documents and Settings\DICOUIT\Local Settings\Application Data\Microsoft\Windows\UsrClass.dat L'objet est verrouillé ignoré
C:\Documents and Settings\DICOUIT\Local Settings\Application Data\Microsoft\Windows\UsrClass.dat.LOG L'objet est verrouillé ignoré
C:\Documents and Settings\DICOUIT\Local Settings\Application Data\Mozilla\Firefox\Profiles\koduyh1a.default\Cache\_CACHE_001_ L'objet est verrouillé ignoré
C:\Documents and Settings\DICOUIT\Local Settings\Application Data\Mozilla\Firefox\Profiles\koduyh1a.default\Cache\_CACHE_002_ L'objet est verrouillé ignoré
C:\Documents and Settings\DICOUIT\Local Settings\Application Data\Mozilla\Firefox\Profiles\koduyh1a.default\Cache\_CACHE_003_ L'objet est verrouillé ignoré
C:\Documents and Settings\DICOUIT\Local Settings\Application Data\Mozilla\Firefox\Profiles\koduyh1a.default\Cache\_CACHE_MAP_ L'objet est verrouillé ignoré
C:\Documents and Settings\DICOUIT\Local Settings\Application Data\Mozilla\Firefox\Profiles\koduyh1a.default\urlclassifier3.sqlite L'objet est verrouillé ignoré
C:\Documents and Settings\DICOUIT\Local Settings\Historique\History.IE5\index.dat L'objet est verrouillé ignoré
C:\Documents and Settings\DICOUIT\Local Settings\Temp\etilqs_QmXaNrzuBLRbjp1n6Bud L'objet est verrouillé ignoré
C:\Documents and Settings\DICOUIT\Local Settings\Temporary Internet Files\Content.IE5\index.dat L'objet est verrouillé ignoré
C:\Documents and Settings\DICOUIT\NTUSER.DAT L'objet est verrouillé ignoré
C:\Documents and Settings\DICOUIT\ntuser.dat.LOG L'objet est verrouillé ignoré
C:\Documents and Settings\LocalService\Cookies\index.dat L'objet est verrouillé ignoré
C:\Documents and Settings\LocalService\Local Settings\Application Data\Microsoft\Windows\UsrClass.dat L'objet est verrouillé ignoré
C:\Documents and Settings\LocalService\Local Settings\Application Data\Microsoft\Windows\UsrClass.dat.LOG L'objet est verrouillé ignoré
C:\Documents and Settings\LocalService\Local Settings\Historique\History.IE5\index.dat L'objet est verrouillé ignoré
C:\Documents and Settings\LocalService\Local Settings\Temporary Internet Files\Content.IE5\index.dat L'objet est verrouillé ignoré
C:\Documents and Settings\LocalService\NTUSER.DAT L'objet est verrouillé ignoré
C:\Documents and Settings\LocalService\ntuser.dat.LOG L'objet est verrouillé ignoré
C:\Documents and Settings\NetworkService\Local Settings\Application Data\Microsoft\Windows\UsrClass.dat L'objet est verrouillé ignoré
C:\Documents and Settings\NetworkService\Local Settings\Application Data\Microsoft\Windows\UsrClass.dat.LOG L'objet est verrouillé ignoré
C:\Documents and Settings\NetworkService\NTUSER.DAT L'objet est verrouillé ignoré
C:\Documents and Settings\NetworkService\ntuser.dat.LOG L'objet est verrouillé ignoré
C:\System Volume Information\MountPointManagerRemoteDatabase L'objet est verrouillé ignoré
C:\System Volume Information\_restore{1425BC74-7A67-4184-ADF6-3EA21CF8B75C}\RP685\A0152125.bat Infecté : Virus.VBS.Small.a ignoré
C:\System Volume Information\_restore{1425BC74-7A67-4184-ADF6-3EA21CF8B75C}\RP685\A0152126.inf Infecté : Virus.VBS.Small.a ignoré
C:\System Volume Information\_restore{1425BC74-7A67-4184-ADF6-3EA21CF8B75C}\RP685\A0152127.reg Infecté : Trojan.WinREG.AutoRun.a ignoré
C:\System Volume Information\_restore{1425BC74-7A67-4184-ADF6-3EA21CF8B75C}\RP685\A0152128.vbs Infecté : Virus.VBS.Small.a ignoré
C:\System Volume Information\_restore{1425BC74-7A67-4184-ADF6-3EA21CF8B75C}\RP685\A0152206.bat Infecté : Virus.VBS.Small.a ignoré
C:\System Volume Information\_restore{1425BC74-7A67-4184-ADF6-3EA21CF8B75C}\RP685\A0152207.inf Infecté : Virus.VBS.Small.a ignoré
C:\System Volume Information\_restore{1425BC74-7A67-4184-ADF6-3EA21CF8B75C}\RP685\A0152208.reg Infecté : Trojan.WinREG.AutoRun.a ignoré
C:\System Volume Information\_restore{1425BC74-7A67-4184-ADF6-3EA21CF8B75C}\RP685\A0152209.vbs Infecté : Virus.VBS.Small.a ignoré
C:\System Volume Information\_restore{1425BC74-7A67-4184-ADF6-3EA21CF8B75C}\RP685\A0152216.bat Infecté : Virus.VBS.Small.a ignoré
C:\System Volume Information\_restore{1425BC74-7A67-4184-ADF6-3EA21CF8B75C}\RP685\A0152217.inf Infecté : Virus.VBS.Small.a ignoré
C:\System Volume Information\_restore{1425BC74-7A67-4184-ADF6-3EA21CF8B75C}\RP685\A0152218.reg Infecté : Trojan.WinREG.AutoRun.a ignoré
C:\System Volume Information\_restore{1425BC74-7A67-4184-ADF6-3EA21CF8B75C}\RP685\A0152219.vbs Infecté : Virus.VBS.Small.a ignoré
C:\System Volume Information\_restore{1425BC74-7A67-4184-ADF6-3EA21CF8B75C}\RP685\A0152250.bat Infecté : Virus.VBS.Small.a ignoré
C:\System Volume Information\_restore{1425BC74-7A67-4184-ADF6-3EA21CF8B75C}\RP685\A0152251.inf Infecté : Virus.VBS.Small.a ignoré
C:\System Volume Information\_restore{1425BC74-7A67-4184-ADF6-3EA21CF8B75C}\RP685\A0152252.reg Infecté : Trojan.WinREG.AutoRun.a ignoré
C:\System Volume Information\_restore{1425BC74-7A67-4184-ADF6-3EA21CF8B75C}\RP685\A0152253.vbs Infecté : Virus.VBS.Small.a ignoré
C:\System Volume Information\_restore{1425BC74-7A67-4184-ADF6-3EA21CF8B75C}\RP685\A0152266.bat Infecté : Virus.VBS.Small.a ignoré
C:\System Volume Information\_restore{1425BC74-7A67-4184-ADF6-3EA21CF8B75C}\RP685\A0152267.inf Infecté : Virus.VBS.Small.a ignoré
C:\System Volume Information\_restore{1425BC74-7A67-4184-ADF6-3EA21CF8B75C}\RP685\A0152268.reg Infecté : Trojan.WinREG.AutoRun.a ignoré
C:\System Volume Information\_restore{1425BC74-7A67-4184-ADF6-3EA21CF8B75C}\RP685\A0152269.vbs Infecté : Virus.VBS.Small.a ignoré
C:\System Volume Information\_restore{1425BC74-7A67-4184-ADF6-3EA21CF8B75C}\RP685\A0152337.bat Infecté : Virus.VBS.Small.a ignoré
C:\System Volume Information\_restore{1425BC74-7A67-4184-ADF6-3EA21CF8B75C}\RP685\A0152338.inf Infecté : Virus.VBS.Small.a ignoré
C:\System Volume Information\_restore{1425BC74-7A67-4184-ADF6-3EA21CF8B75C}\RP685\A0152339.reg Infecté : Trojan.WinREG.AutoRun.a ignoré
C:\System Volume Information\_restore{1425BC74-7A67-4184-ADF6-3EA21CF8B75C}\RP685\A0152340.vbs Infecté : Virus.VBS.Small.a ignoré
C:\System Volume Information\_restore{1425BC74-7A67-4184-ADF6-3EA21CF8B75C}\RP685\A0152347.bat Infecté : Virus.VBS.Small.a ignoré
C:\System Volume Information\_restore{1425BC74-7A67-4184-ADF6-3EA21CF8B75C}\RP685\A0152348.inf Infecté : Virus.VBS.Small.a ignoré
C:\System Volume Information\_restore{1425BC74-7A67-4184-ADF6-3EA21CF8B75C}\RP685\A0152349.reg Infecté : Trojan.WinREG.AutoRun.a ignoré
C:\System Volume Information\_restore{1425BC74-7A67-4184-ADF6-3EA21CF8B75C}\RP685\A0152350.vbs Infecté : Virus.VBS.Small.a ignoré
C:\System Volume Information\_restore{1425BC74-7A67-4184-ADF6-3EA21CF8B75C}\RP685\A0152361.bat Infecté : Virus.VBS.Small.a ignoré
C:\System Volume Information\_restore{1425BC74-7A67-4184-ADF6-3EA21CF8B75C}\RP685\A0152362.inf Infecté : Virus.VBS.Small.a ignoré
C:\System Volume Information\_restore{1425BC74-7A67-4184-ADF6-3EA21CF8B75C}\RP685\A0152363.reg Infecté : Trojan.WinREG.AutoRun.a ignoré
C:\System Volume Information\_restore{1425BC74-7A67-4184-ADF6-3EA21CF8B75C}\RP685\A0152364.vbs Infecté : Virus.VBS.Small.a ignoré
C:\System Volume Information\_restore{1425BC74-7A67-4184-ADF6-3EA21CF8B75C}\RP685\A0152380.bat Infecté : Virus.VBS.Small.a ignoré
C:\System Volume Information\_restore{1425BC74-7A67-4184-ADF6-3EA21CF8B75C}\RP685\A0152381.inf Infecté : Virus.VBS.Small.a ignoré
C:\System Volume Information\_restore{1425BC74-7A67-4184-ADF6-3EA21CF8B75C}\RP685\A0152382.reg Infecté : Trojan.WinREG.AutoRun.a ignoré
C:\System Volume Information\_restore{1425BC74-7A67-4184-ADF6-3EA21CF8B75C}\RP685\A0152383.vbs Infecté : Virus.VBS.Small.a ignoré
C:\System Volume Information\_restore{1425BC74-7A67-4184-ADF6-3EA21CF8B75C}\RP685\A0152393.bat Infecté : Virus.VBS.Small.a ignoré
C:\System Volume Information\_restore{1425BC74-7A67-4184-ADF6-3EA21CF8B75C}\RP685\A0152394.inf Infecté : Virus.VBS.Small.a ignoré
C:\System Volume Information\_restore{1425BC74-7A67-4184-ADF6-3EA21CF8B75C}\RP685\A0152395.reg Infecté : Trojan.WinREG.AutoRun.a ignoré
C:\System Volume Information\_restore{1425BC74-7A67-4184-ADF6-3EA21CF8B75C}\RP685\A0152396.vbs Infecté : Virus.VBS.Small.a ignoré
C:\System Volume Information\_restore{1425BC74-7A67-4184-ADF6-3EA21CF8B75C}\RP686\A0152415.bat Infecté : Virus.VBS.Small.a ignoré
C:\System Volume Information\_restore{1425BC74-7A67-4184-ADF6-3EA21CF8B75C}\RP686\A0152416.inf Infecté : Virus.VBS.Small.a ignoré
C:\System Volume Information\_restore{1425BC74-7A67-4184-ADF6-3EA21CF8B75C}\RP686\A0152417.reg Infecté : Trojan.WinREG.AutoRun.a ignoré
C:\System Volume Information\_restore{1425BC74-7A67-4184-ADF6-3EA21CF8B75C}\RP686\A0152418.vbs Infecté : Virus.VBS.Small.a ignoré
C:\System Volume Information\_restore{1425BC74-7A67-4184-ADF6-3EA21CF8B75C}\RP687\A0152423.bat Infecté : Virus.VBS.Small.a ignoré
C:\System Volume Information\_restore{1425BC74-7A67-4184-ADF6-3EA21CF8B75C}\RP687\A0152424.inf Infecté : Virus.VBS.Small.a ignoré
C:\System Volume Information\_restore{1425BC74-7A67-4184-ADF6-3EA21CF8B75C}\RP687\A0152425.reg Infecté : Trojan.WinREG.AutoRun.a ignoré
C:\System Volume Information\_restore{1425BC74-7A67-4184-ADF6-3EA21CF8B75C}\RP687\A0152426.vbs Infecté : Virus.VBS.Small.a ignoré
C:\System Volume Information\_restore{1425BC74-7A67-4184-ADF6-3EA21CF8B75C}\RP688\A0152432.bat Infecté : Virus.VBS.Small.a ignoré
C:\System Volume Information\_restore{1425BC74-7A67-4184-ADF6-3EA21CF8B75C}\RP688\A0152433.inf Infecté : Virus.VBS.Small.a ignoré
C:\System Volume Information\_restore{1425BC74-7A67-4184-ADF6-3EA21CF8B75C}\RP688\A0152434.reg Infecté : Trojan.WinREG.AutoRun.a ignoré
C:\System Volume Information\_restore{1425BC74-7A67-4184-ADF6-3EA21CF8B75C}\RP688\A0152435.vbs Infecté : Virus.VBS.Small.a ignoré
C:\System Volume Information\_restore{1425BC74-7A67-4184-ADF6-3EA21CF8B75C}\RP688\A0152451.bat Infecté : Virus.VBS.Small.a ignoré
C:\System Volume Information\_restore{1425BC74-7A67-4184-ADF6-3EA21CF8B75C}\RP688\A0152452.inf Infecté : Virus.VBS.Small.a ignoré
C:\System Volume Information\_restore{1425BC74-7A67-4184-ADF6-3EA21CF8B75C}\RP688\A0152453.reg Infecté : Trojan.WinREG.AutoRun.a ignoré
C:\System Volume Information\_restore{1425BC74-7A67-4184-ADF6-3EA21CF8B75C}\RP688\A0152454.vbs Infecté : Virus.VBS.Small.a ignoré
C:\System Volume Information\_restore{1425BC74-7A67-4184-ADF6-3EA21CF8B75C}\RP688\A0152494.dll Infecté : not-a-virus:AdWare.Win32.MegaSearch.aj ignoré
C:\System Volume Information\_restore{1425BC74-7A67-4184-ADF6-3EA21CF8B75C}\RP689\A0152567.bat Infecté : Virus.VBS.Small.a ignoré
C:\System Volume Information\_restore{1425BC74-7A67-4184-ADF6-3EA21CF8B75C}\RP689\A0152568.inf Infecté : Virus.VBS.Small.a ignoré
C:\System Volume Information\_restore{1425BC74-7A67-4184-ADF6-3EA21CF8B75C}\RP689\A0152569.reg Infecté : Trojan.WinREG.AutoRun.a ignoré
C:\System Volume Information\_restore{1425BC74-7A67-4184-ADF6-3EA21CF8B75C}\RP689\A0152571.vbs Infecté : Virus.VBS.Small.a ignoré
C:\System Volume Information\_restore{1425BC74-7A67-4184-ADF6-3EA21CF8B75C}\RP689\A0152580.bat Infecté : Virus.VBS.Small.a ignoré
C:\System Volume Information\_restore{1425BC74-7A67-4184-ADF6-3EA21CF8B75C}\RP689\A0152581.inf Infecté : Virus.VBS.Small.a ignoré
C:\System Volume Information\_restore{1425BC74-7A67-4184-ADF6-3EA21CF8B75C}\RP689\A0152582.reg Infecté : Trojan.WinREG.AutoRun.a ignoré
C:\System Volume Information\_restore{1425BC74-7A67-4184-ADF6-3EA21CF8B75C}\RP689\A0152583.vbs Infecté : Virus.VBS.Small.a ignoré
C:\System Volume Information\_restore{1425BC74-7A67-4184-ADF6-3EA21CF8B75C}\RP689\change.log L'objet est verrouillé ignoré
C:\System Volume Information\_restore{8113D182-FDC0-4BB6-836F-31DC1B4469E6}\RP155\A0062064.reg Infecté : Trojan.WinREG.AutoRun.a ignoré
C:\System Volume Information\_restore{8113D182-FDC0-4BB6-836F-31DC1B4469E6}\RP156\A0062077.reg Infecté : Trojan.WinREG.AutoRun.a ignoré
C:\System Volume Information\_restore{8113D182-FDC0-4BB6-836F-31DC1B4469E6}\RP156\A0062135.reg Infecté : Trojan.WinREG.AutoRun.a ignoré
C:\System Volume Information\_restore{8113D182-FDC0-4BB6-836F-31DC1B4469E6}\RP157\A0063407.reg Infecté : Trojan.WinREG.AutoRun.a ignoré
C:\System Volume Information\_restore{8113D182-FDC0-4BB6-836F-31DC1B4469E6}\RP157\A0064476.bat Infecté : Virus.VBS.Small.a ignoré
C:\System Volume Information\_restore{8113D182-FDC0-4BB6-836F-31DC1B4469E6}\RP157\A0064477.inf Infecté : Virus.VBS.Small.a ignoré
C:\System Volume Information\_restore{8113D182-FDC0-4BB6-836F-31DC1B4469E6}\RP157\A0064478.vbs Infecté : Virus.VBS.Small.a ignoré
C:\System Volume Information\_restore{8113D182-FDC0-4BB6-836F-31DC1B4469E6}\RP157\A0064479.exe Infecté : Trojan-Proxy.Win32.Small.nd ignoré
C:\WINDOWS\Debug\PASSWD.LOG L'objet est verrouillé ignoré
C:\WINDOWS\SchedLgU.Txt L'objet est verrouillé ignoré
C:\WINDOWS\SoftwareDistribution\ReportingEvents.log L'objet est verrouillé ignoré
C:\WINDOWS\Sti_Trace.log L'objet est verrouillé ignoré
C:\WINDOWS\system32\autorun.bat Infecté : Virus.VBS.Small.a ignoré
C:\WINDOWS\system32\autorun.inf Infecté : Virus.VBS.Small.a ignoré
C:\WINDOWS\system32\autorun.reg Infecté : Trojan.WinREG.AutoRun.a ignoré
C:\WINDOWS\system32\autorun.vbs Infecté : Virus.VBS.Small.a ignoré
C:\WINDOWS\system32\CatRoot2\edb.log L'objet est verrouillé ignoré
C:\WINDOWS\system32\CatRoot2\tmp.edb L'objet est verrouillé ignoré
C:\WINDOWS\system32\config\ACEEvent.evt L'objet est verrouillé ignoré
C:\WINDOWS\system32\config\AppEvent.Evt L'objet est verrouillé ignoré
C:\WINDOWS\system32\config\default L'objet est verrouillé ignoré
C:\WINDOWS\system32\config\default.LOG L'objet est verrouillé ignoré
C:\WINDOWS\system32\config\SAM L'objet est verrouillé ignoré
C:\WINDOWS\system32\config\SAM.LOG L'objet est verrouillé ignoré
C:\WINDOWS\system32\config\SecEvent.Evt L'objet est verrouillé ignoré
C:\WINDOWS\system32\config\SECURITY L'objet est verrouillé ignoré
C:\WINDOWS\system32\config\SECURITY.LOG L'objet est verrouillé ignoré
C:\WINDOWS\system32\config\software L'objet est verrouillé ignoré
C:\WINDOWS\system32\config\software.LOG L'objet est verrouillé ignoré
C:\WINDOWS\system32\config\SysEvent.Evt L'objet est verrouillé ignoré
C:\WINDOWS\system32\config\system L'objet est verrouillé ignoré
C:\WINDOWS\system32\config\system.LOG L'objet est verrouillé ignoré
C:\WINDOWS\system32\h323log.txt L'objet est verrouillé ignoré
C:\WINDOWS\system32\LogFiles\WUDF\WUDFTrace.etl L'objet est verrouillé ignoré
C:\WINDOWS\system32\wbem\Repository\FS\INDEX.BTR L'objet est verrouillé ignoré
C:\WINDOWS\system32\wbem\Repository\FS\INDEX.MAP L'objet est verrouillé ignoré
C:\WINDOWS\system32\wbem\Repository\FS\MAPPING.VER L'objet est verrouillé ignoré
C:\WINDOWS\system32\wbem\Repository\FS\MAPPING1.MAP L'objet est verrouillé ignoré
C:\WINDOWS\system32\wbem\Repository\FS\MAPPING2.MAP L'objet est verrouillé ignoré
C:\WINDOWS\system32\wbem\Repository\FS\OBJECTS.DATA L'objet est verrouillé ignoré
C:\WINDOWS\system32\wbem\Repository\FS\OBJECTS.MAP L'objet est verrouillé ignoré
C:\WINDOWS\wiadebug.log L'objet est verrouillé ignoré
C:\WINDOWS\wiaservc.log L'objet est verrouillé ignoré
C:\WINDOWS\WindowsUpdate.log L'objet est verrouillé ignoré
D:\autorun.bat Infecté : Virus.VBS.Small.a ignoré
D:\autorun.inf Infecté : Virus.VBS.Small.a ignoré
D:\autorun.reg Infecté : Trojan.WinREG.AutoRun.a ignoré
D:\autorun.vbs Infecté : Virus.VBS.Small.a ignoré
D:\GPS\CryptLoad_1.1.6\CryptLoad_1.1.6\router\FRITZ!Box\nc.exe Infecté : not-a-virus:RemoteAdmin.Win32.NetCat.a ignoré
D:\LOGICIEL INSTALLER\PS3\PS3Portal\hfs.exe Infecté : not-a-virus:Server-FTP.Win32.SFH.a ignoré
D:\System Volume Information\MountPointManagerRemoteDatabase L'objet est verrouillé ignoré
D:\System Volume Information\_restore{1425BC74-7A67-4184-ADF6-3EA21CF8B75C}\RP685\A0152129.bat Infecté : Virus.VBS.Small.a ignoré
D:\System Volume Information\_restore{1425BC74-7A67-4184-ADF6-3EA21CF8B75C}\RP685\A0152130.inf Infecté : Virus.VBS.Small.a ignoré
D:\System Volume Information\_restore{1425BC74-7A67-4184-ADF6-3EA21CF8B75C}\RP685\A0152131.reg Infecté : Trojan.WinREG.AutoRun.a ignoré
D:\System Volume Information\_restore{1425BC74-7A67-4184-ADF6-3EA21CF8B75C}\RP685\A0152132.vbs Infecté : Virus.VBS.Small.a ignoré
D:\System Volume Information\_restore{1425BC74-7A67-4184-ADF6-3EA21CF8B75C}\RP685\A0152220.bat Infecté : Virus.VBS.Small.a ignoré
D:\System Volume Information\_restore{1425BC74-7A67-4184-ADF6-3EA21CF8B75C}\RP685\A0152221.inf Infecté : Virus.VBS.Small.a ignoré
D:\System Volume Information\_restore{1425BC74-7A67-4184-ADF6-3EA21CF8B75C}\RP685\A0152222.reg Infecté : Trojan.WinREG.AutoRun.a ignoré
D:\System Volume Information\_restore{1425BC74-7A67-4184-ADF6-3EA21CF8B75C}\RP685\A0152223.vbs Infecté : Virus.VBS.Small.a ignoré
D:\System Volume Information\_restore{1425BC74-7A67-4184-ADF6-3EA21CF8B75C}\RP685\A0152254.bat Infecté : Virus.VBS.Small.a ignoré
D:\System Volume Information\_restore{1425BC74-7A67-4184-ADF6-3EA21CF8B75C}\RP685\A0152255.inf Infecté : Virus.VBS.Small.a ignoré
D:\System Volume Information\_restore{1425BC74-7A67-4184-ADF6-3EA21CF8B75C}\RP685\A0152256.reg Infecté : Trojan.WinREG.AutoRun.a ignoré
D:\System Volume Information\_restore{1425BC74-7A67-4184-ADF6-3EA21CF8B75C}\RP685\A0152257.vbs Infecté : Virus.VBS.Small.a ignoré
D:\System Volume Information\_restore{1425BC74-7A67-4184-ADF6-3EA21CF8B75C}\RP685\A0152341.bat Infecté : Virus.VBS.Small.a ignoré
D:\System Volume Information\_restore{1425BC74-7A67-4184-ADF6-3EA21CF8B75C}\RP685\A0152342.inf Infecté : Virus.VBS.Small.a ignoré
D:\System Volume Information\_restore{1425BC74-7A67-4184-ADF6-3EA21CF8B75C}\RP685\A0152343.reg Infecté : Trojan.WinREG.AutoRun.a ignoré
D:\System Volume Information\_restore{1425BC74-7A67-4184-ADF6-3EA21CF8B75C}\RP685\A0152344.vbs Infecté : Virus.VBS.Small.a ignoré
D:\System Volume Information\_restore{1425BC74-7A67-4184-ADF6-3EA21CF8B75C}\RP685\A0152365.bat Infecté : Virus.VBS.Small.a ignoré
D:\System Volume Information\_restore{1425BC74-7A67-4184-ADF6-3EA21CF8B75C}\RP685\A0152366.inf Infecté : Virus.VBS.Small.a ignoré
D:\System Volume Information\_restore{1425BC74-7A67-4184-ADF6-3EA21CF8B75C}\RP685\A0152367.reg Infecté : Trojan.WinREG.AutoRun.a ignoré
D:\System Volume Information\_restore{1425BC74-7A67-4184-ADF6-3EA21CF8B75C}\RP685\A0152368.vbs Infecté : Virus.VBS.Small.a ignoré
D:\System Volume Information\_restore{1425BC74-7A67-4184-ADF6-3EA21CF8B75C}\RP685\A0152384.bat Infecté : Virus.VBS.Small.a ignoré
D:\System Volume Information\_restore{1425BC74-7A67-4184-ADF6-3EA21CF8B75C}\RP685\A0152385.inf Infecté : Virus.VBS.Small.a ignoré
D:\System Volume Information\_restore{1425BC74-7A67-4184-ADF6-3EA21CF8B75C}\RP685\A0152386.reg Infecté : Trojan.WinREG.AutoRun.a ignoré
D:\System Volume Information\_restore{1425BC74-7A67-4184-ADF6-3EA21CF8B75C}\RP685\A0152387.vbs Infecté : Virus.VBS.Small.a ignoré
D:\System Volume Information\_restore{1425BC74-7A67-4184-ADF6-3EA21CF8B75C}\RP686\A0152419.bat Infecté : Virus.VBS.Small.a ignoré
D:\System Volume Information\_restore{1425BC74-7A67-4184-ADF6-3EA21CF8B75C}\RP686\A0152420.inf Infecté : Virus.VBS.Small.a ignoré
D:\System Volume Information\_restore{1425BC74-7A67-4184-ADF6-3EA21CF8B75C}\RP686\A0152421.reg Infecté : Trojan.WinREG.AutoRun.a ignoré
D:\System Volume Information\_restore{1425BC74-7A67-4184-ADF6-3EA21CF8B75C}\RP686\A0152422.vbs Infecté : Virus.VBS.Small.a ignoré
D:\System Volume Information\_restore{1425BC74-7A67-4184-ADF6-3EA21CF8B75C}\RP687\A0152427.bat Infecté : Virus.VBS.Small.a ignoré
D:\System Volume Information\_restore{1425BC74-7A67-4184-ADF6-3EA21CF8B75C}\RP687\A0152428.inf Infecté : Virus.VBS.Small.a ignoré
D:\System Volume Information\_restore{1425BC74-7A67-4184-ADF6-3EA21CF8B75C}\RP687\A0152429.reg Infecté : Trojan.WinREG.AutoRun.a ignoré
D:\System Volume Information\_restore{1425BC74-7A67-4184-ADF6-3EA21CF8B75C}\RP687\A0152430.vbs Infecté : Virus.VBS.Small.a ignoré
D:\System Volume Information\_restore{1425BC74-7A67-4184-ADF6-3EA21CF8B75C}\RP688\A0152436.bat Infecté : Virus.VBS.Small.a ignoré
D:\System Volume Information\_restore{1425BC74-7A67-4184-ADF6-3EA21CF8B75C}\RP688\A0152437.inf Infecté : Virus.VBS.Small.a ignoré
D:\System Volume Information\_restore{1425BC74-7A67-4184-ADF6-3EA21CF8B75C}\RP688\A0152438.reg Infecté : Trojan.WinREG.AutoRun.a ignoré
D:\System Volume Information\_restore{1425BC74-7A67-4184-ADF6-3EA21CF8B75C}\RP688\A0152439.vbs Infecté : Virus.VBS.Small.a ignoré
D:\System Volume Information\_restore{1425BC74-7A67-4184-ADF6-3EA21CF8B75C}\RP688\A0152455.bat Infecté : Virus.VBS.Small.a ignoré
D:\System Volume Information\_restore{1425BC74-7A67-4184-ADF6-3EA21CF8B75C}\RP688\A0152456.inf Infecté : Virus.VBS.Small.a ignoré
D:\System Volume Information\_restore{1425BC74-7A67-4184-ADF6-3EA21CF8B75C}\RP688\A0152457.reg Infecté : Trojan.WinREG.AutoRun.a ignoré
D:\System Volume Information\_restore{1425BC74-7A67-4184-ADF6-3EA21CF8B75C}\RP688\A0152458.vbs Infecté : Virus.VBS.Small.a ignoré
D:\System Volume Information\_restore{1425BC74-7A67-4184-ADF6-3EA21CF8B75C}\RP689\A0152575.bat Infecté : Virus.VBS.Small.a ignoré
D:\System Volume Information\_restore{1425BC74-7A67-4184-ADF6-3EA21CF8B75C}\RP689\A0152576.inf Infecté : Virus.VBS.Small.a ignoré
D:\System Volume Information\_restore{1425BC74-7A67-4184-ADF6-3EA21CF8B75C}\RP689\A0152577.reg Infecté : Trojan.WinREG.AutoRun.a ignoré
D:\System Volume Information\_restore{1425BC74-7A67-4184-ADF6-3EA21CF8B75C}\RP689\A0152578.vbs Infecté : Virus.VBS.Small.a ignoré
D:\System Volume Information\_restore{1425BC74-7A67-4184-ADF6-3EA21CF8B75C}\RP689\change.log L'objet est verrouillé ignoré
D:\System Volume Information\_restore{8113D182-FDC0-4BB6-836F-31DC1B4469E6}\RP155\A0062068.reg Infecté : Trojan.WinREG.AutoRun.a ignoré
D:\System Volume Information\_restore{8113D182-FDC0-4BB6-836F-31DC1B4469E6}\RP156\A0062085.reg Infecté : Trojan.WinREG.AutoRun.a ignoré
D:\System Volume Information\_restore{8113D182-FDC0-4BB6-836F-31DC1B4469E6}\RP156\A0062139.reg Infecté : Trojan.WinREG.AutoRun.a ignoré
D:\System Volume Information\_restore{8113D182-FDC0-4BB6-836F-31DC1B4469E6}\RP157\A0063410.reg Infecté : Trojan.WinREG.AutoRun.a ignoré
Analyse terminée.
Logfile of random's system information tool 1.05 (written by random/random)
Run by DICOUIT at 2009-03-06 16:23:19
Microsoft Windows XP Professionnel Service Pack 2
System drive C: has 2 GB (12%) free of 13 GB
Total RAM: 895 MB (38% free)
Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 16:23:48, on 06/03/2009
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)
Boot mode: Normal
Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\WgaTray.exe
C:\WINDOWS\system32\wscript.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\wscntfy.exe
C:\WINDOWS\system32\ezSP_Px.exe
C:\Program Files\Neuf\Kit\WiFi\9wifi.exe
C:\WINDOWS\Philips\SPC500NC\Monitor.exe
C:\WINDOWS\SOUNDMAN.EXE
C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\ccc.exe
C:\Program Files\Mozilla Firefox\firefox.exe
D:\LOGICI~1\MICROS~1\Office\OUTLOOK.EXE
D:\TELECHARGEMENT\RSIT.exe
C:\Program Files\trend micro\DICOUIT.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = http://recherche.neuf.fr/ie/default.html
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://recherche.neuf.fr/
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://moteur.chat-land.org/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://recherche.neuf.fr/
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant = http://recherche.neuf.fr/ie/default.html
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
F2 - REG:system.ini: UserInit=userinit.exe,autorun.bat
O2 - BHO: Aide pour le lien d'Adobe PDF Reader - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Fichiers communs\Adobe\Acrobat\ActiveX\AcroIEHelper.dll
O2 - BHO: (no name) - {1633BFE3-2075-2AA5-021B-5300CACD88ED} - (no file)
O2 - BHO: (no name) - {4636EFE2-7020-0FAB-0A16-5F00B7C28198} - (no file)
O2 - BHO: IEHelperObject - {4DC16316-5372-4476-9CA5-88B2786B838F} - D:\LOGICIEL INSTALLER\humyo.com Client\HrfsDownloader.dll
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_03\bin\ssv.dll
O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)
O2 - BHO: MegaIEMn - {bf00e119-21a3-4fd1-b178-3b8537e75c92} - D:\LOGICIEL INSTALLER\megaup\MegaIEMn.dll
O4 - HKLM\..\Run: [ezShieldProtector for Px] C:\WINDOWS\system32\ezSP_Px.exe
O4 - HKLM\..\Run: [Autoconfigurateur WiFi Neuf] "C:\Program Files\Neuf\Kit\WiFi\9wifi.exe"
O4 - HKLM\..\Run: [SPC500NC_Monitor] C:\WINDOWS\Philips\SPC500NC\Monitor.exe
O4 - HKLM\..\Run: [SoundMan] SOUNDMAN.EXE
O4 - HKLM\..\Run: [PinnacleDriverCheck] C:\WINDOWS\system32\PSDrvCheck.exe -CheckReg
O4 - HKLM\..\Run: [ATIPTA] C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe
O4 - HKLM\..\Run: [StartCCC] "C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" MSRun
O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE RÉSEAU')
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
O4 - Global Startup: Post-it® Software Notes Lite.lnk = D:\LOGICIEL INSTALLER\post it\PsnLite.exe
O8 - Extra context menu item: Lookup on Merriam Webster - file://C:\Program Files\ieSpell\Merriam Webster.HTM
O8 - Extra context menu item: Lookup on Wikipedia - file://C:\Program Files\ieSpell\wikipedia.HTM
O8 - Extra context menu item: Save Image To humyo.com - D:\LOGICIEL INSTALLER\humyo.com Client\download.html
O8 - Extra context menu item: Save Target To humyo.com - D:\LOGICIEL INSTALLER\humyo.com Client\download.html
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_03\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_03\bin\ssv.dll
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O16 - DPF: {0EB0E74A-2A76-4AB3-A7FB-9BD8C29F7F75} (CKAVWebScan Object) - http://webscanner.kaspersky.fr/kavwebscan_unicode.cab
O16 - DPF: {17492023-C23A-453E-A040-C7C580BBF700} (Windows Genuine Advantage Validation Tool) - http://go.microsoft.com/fwlink/?linkid=39204
O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\WINDOWS\system32\Ati2evxx.exe
O23 - Service: ATI Smart - Unknown owner - C:\WINDOWS\system32\ati2sgag.exe
--
End of file - 5145 bytes
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{06849E9F-C8D7-4D59-B87D-784B7D6BE0B3}]
Aide pour le lien d'Adobe PDF Reader - C:\Program Files\Fichiers communs\Adobe\Acrobat\ActiveX\AcroIEHelper.dll [2006-10-22 62080]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{1633BFE3-2075-2AA5-021B-5300CACD88ED}]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{4636EFE2-7020-0FAB-0A16-5F00B7C28198}]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{4DC16316-5372-4476-9CA5-88B2786B838F}]
IEHelperObject Class - D:\LOGICIEL INSTALLER\humyo.com Client\HrfsDownloader.dll [2008-11-13 477120]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
SSVHelper Class - C:\Program Files\Java\jre1.6.0_03\bin\ssv.dll [2007-09-25 501136]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{7E853D72-626A-48EC-A868-BA8D5E23E045}]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{bf00e119-21a3-4fd1-b178-3b8537e75c92}]
IeMonitorBho Class - D:\LOGICIEL INSTALLER\megaup\MegaIEMn.dll [2008-06-23 110592]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"ezShieldProtector for Px"=C:\WINDOWS\system32\ezSP_Px.exe [2002-08-20 40960]
"Autoconfigurateur WiFi Neuf"=C:\Program Files\Neuf\Kit\WiFi\9wifi.exe [2007-09-09 283888]
"SPC500NC_Monitor"=C:\WINDOWS\Philips\SPC500NC\Monitor.exe [2006-11-03 319488]
"SoundMan"=C:\WINDOWS\SOUNDMAN.EXE [2005-01-20 77824]
"PinnacleDriverCheck"=C:\WINDOWS\system32\PSDrvCheck.exe [2003-11-10 406016]
"ATIPTA"=C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe [2005-02-01 339968]
"StartCCC"=C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe [2009-02-03 61440]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"=C:\WINDOWS\system32\ctfmon.exe [2004-08-03 15360]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe Reader Speed Launcher]
C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe [2008-10-15 39792]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\DataLayer]
C:\Program Files\Fichiers communs\PCSuite\DataLayer\DataLayer.exe [2007-05-04 863744]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Dot1XCfg]
C:\Program Files\Dot1XCfg\Dot1XCfg.exe []
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Flash Player2]
C:\DOCUME~1\DICOUIT\LOCALS~1\Temp\services.exe []
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Ghmcu]
C:\Program Files\?dobe\?hkntfs.exe []
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\KernelFaultCheck]
C:\WINDOWS\system32\dumprep 0 -k []
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\MessengerPlus3]
C:\Program Files\MessengerPlus! 3\MsgPlus.exe [2006-09-27 190024]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\MSMSGS]
C:\Program Files\Messenger\msmsgs.exe [2004-10-13 1694208]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\MsnMsgr]
C:\Program Files\MSN Messenger\MsnMsgr.Exe [2007-01-19 5674352]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NeroFilterCheck]
C:\WINDOWS\system32\NeroCheck.exe [2001-07-09 155648]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\OlStatusMon]
C:\Program Files\Olivetti\ANY_WAY\olDvcStatus.exe [2006-09-22 106496]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\oymsk]
c:\documents and settings\dicouit\local settings\application data\oymsk.exe [2008-11-26 329216]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\PCSuiteTrayApplication]
D:\LOGICIEL INSTALLER\nokia\Nokia PC Suite 6\LaunchApplication.exe [2007-06-18 271360]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\PMCRemote]
D:\Program Files\Pinnacle\Shared Files\Programs\Remote\Remoterm.exe []
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\PMCS]
D:\Program Files\Pinnacle\Shared Files\\Programs\MediaCenterService\PMC.Service.Main.exe []
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\QuickTime Task]
D:\LOGICIEL INSTALLER\QUICKTIME 7\qttask.exe [2006-06-07 155648]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Router]
C:\Program Files\Router\Router.exe []
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SfKg6w]
C:\Documents and Settings\DICOUIT\Application Data\Microsoft\Windows\frybes.exe []
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SunJavaUpdateSched]
C:\Program Files\Java\jre1.6.0_03\bin\jusched.exe [2007-09-25 132496]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\TkBellExe]
C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe [2008-04-26 185896]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Windows Service]
C:\Documents and Settings\DICOUIT\Mes documents\DICOUIT\bdfods.exe []
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\WinTouch]
C:\Documents and Settings\DICOUIT\Application Data\WinTouch\WinTouch.exe []
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\WOOKIT]
C:\PROGRA~1\Wanadoo\Shell.exe appLaunchClientZone.shl|PARAM= cnx []
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\WOOTASKBARICON]
C:\PROGRA~1\Wanadoo\GestMaj.exe TaskBarIcon.exe []
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\WOOWATCH]
C:\PROGRA~1\Wanadoo\Watch.exe []
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Wqv]
C:\Documents and Settings\DICOUIT\Application Data\W?nSxS\m?hta.exe []
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Documents and Settings^All Users^Menu Démarrer^Programmes^Démarrage^Adobe Gamma Loader.lnk]
C:\PROGRA~1\FICHIE~1\Adobe\CALIBR~1\ADOBEG~1.EXE [1999-11-04 113664]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Documents and Settings^All Users^Menu Démarrer^Programmes^Démarrage^Dial-Messenger.lnk]
C:\PROGRA~1\DIAL-M~1\DIAL-M~1.EXE 1 []
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Documents and Settings^All Users^Menu Démarrer^Programmes^Démarrage^Lancement rapide d'Adobe Reader.lnk]
C:\PROGRA~1\Adobe\ACROBA~1.0\Reader\READER~1.EXE []
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Documents and Settings^All Users^Menu Démarrer^Programmes^Démarrage^Microsoft Office.lnk]
D:\LOGICI~1\MICROS~1\Office\OSA9.EXE [2000-01-21 65588]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Documents and Settings^All Users^Menu Démarrer^Programmes^Démarrage^WinZip Quick Pick.lnk]
D:\LOGICI~1\WinZip\WZQKPICK.EXE [2006-04-06 122880]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Documents and Settings^DICOUIT^Menu Démarrer^Programmes^Démarrage^TribalWeb.net.lnk]
D:\LOGICI~1\TRIBAL~1.NET\TRIBAL~1.EXE -system:startup []
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Documents and Settings^DICOUIT^Menu Démarrer^Programmes^Démarrage^YesMessenger.lnk]
C:\PROGRA~1\YESMES~1\YESMES~1.EXE 1 []
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\services]
"usnjsvc"=3
"ServiceLayer"=3
"olMntrService"=2
"idsvc"=3
"IDriverT"=3
"humyo.com"=3
"FLEXnet Licensing Service"=3
"Bonjour Service"=2
"Adobe LM Service"=3
"SPTISRV"=3
"SLService"=2
"Ati HotKey Poller"=2
C:\Documents and Settings\All Users\Menu Démarrer\Programmes\Démarrage
Post-it® Software Notes Lite.lnk - D:\LOGICIEL INSTALLER\post it\PsnLite.exe
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\AtiExtEvent]
C:\WINDOWS\system32\Ati2evxx.dll [2009-02-04 155648]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\WgaLogon]
C:\WINDOWS\system32\WgaLogon.dll [2006-06-19 702768]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\WINDOWS\system32\WPDShServiceObj.dll [2006-10-18 133632]
UPnPMonitor - {e57ce738-33e8-4c51-8354-bb4de9d215d1} - C:\WINDOWS\system32\upnpui.dll [2004-08-03 240128]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=95000000
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"F:\StubInstaller.exe"="F:\StubInstaller.exe:*:Enabled:LimeWire swarmed installer"
"D:\LOGICIEL INSTALLER\TribalWeb.net\tribalweb.exe"="D:\LOGICIEL INSTALLER\TribalWeb.net\tribalweb.exe:*:Enabled:TribalWeb.net : Réseau privé sur Internet"
"D:\LOGICIEL INSTALLER\LimeWire\LimeWire.exe"="D:\LOGICIEL INSTALLER\LimeWire\LimeWire.exe:*:Enabled:LimeWire"
"C:\DOCUME~1\DICOUIT\LOCALS~1\Temp\Rar$EX00.141\TT-022-421-683.exe"="C:\DOCUME~1\DICOUIT\LOCALS~1\Temp\Rar$EX00.141\TT-022-421-683.exe:*:ENABLED:0"
"C:\DOCUME~1\DICOUIT\LOCALS~1\Temp\Rar$EX03.469\TT-022-421-683.exe"="C:\DOCUME~1\DICOUIT\LOCALS~1\Temp\Rar$EX03.469\TT-022-421-683.exe:*:ENABLED:0"
"D:\LOGICIEL INSTALLER\TNT\PMC.exe"="D:\LOGICIEL INSTALLER\TNT\PMC.exe:LocalSubNet:Enabled:Pmc.exe"
"D:\LOGICIEL INSTALLER\TNT\PSST.exe"="D:\LOGICIEL INSTALLER\TNT\PSST.exe:LocalSubNet:Enabled:PSST.exe"
"D:\LOGICIEL INSTALLER\TNT\PMSInstallInit.exe"="D:\LOGICIEL INSTALLER\TNT\PMSInstallInit.exe:LocalSubNet:Enabled:PMSInstallInit.exe"
"D:\LOGICIEL INSTALLER\TNT\PMC.Tvtv.Wizard.exe"="D:\LOGICIEL INSTALLER\TNT\PMC.Tvtv.Wizard.exe:LocalSubNet:Enabled:PMC.Tvtv.Wizard.exe"
"D:\Program Files\Pinnacle\Shared Files\Programs\MediaCenterService\PMC.Service.Main.exe"="D:\Program Files\Pinnacle\Shared Files\Programs\MediaCenterService\PMC.Service.Main.exe:LocalSubNet:Disabled:PMCService"
"C:\Program Files\uTorrent\utorrent.exe"="C:\Program Files\uTorrent\utorrent.exe:*:Enabled:µTorrent"
"C:\Program Files\MSN Messenger\msnmsgr.exe"="C:\Program Files\MSN Messenger\msnmsgr.exe:*:Enabled:Windows Live Messenger 8.1"
"C:\Program Files\MSN Messenger\livecall.exe"="C:\Program Files\MSN Messenger\livecall.exe:*:Enabled:Windows Live Messenger 8.1 (Phone)"
"C:\Program Files\Bonjour\mDNSResponder.exe"="C:\Program Files\Bonjour\mDNSResponder.exe:*:Enabled:Bonjour"
"C:\DOCUME~1\DICOUIT\LOCALS~1\Temp\services.exe"="C:\DOCUME~1\DICOUIT\LOCALS~1\Temp\services.exe:*:Enabled:Flash Player2"
"C:\Documents and Settings\DICOUIT\Mes documents\DICOUIT\bdfods.exe"="C:\Documents and Settings\DICOUIT\Mes documents\DICOUIT\bdfods.exe:*:Enabled:Windows Service"
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"C:\Program Files\MSN Messenger\msnmsgr.exe"="C:\Program Files\MSN Messenger\msnmsgr.exe:*:Enabled:Windows Live Messenger 8.1"
"C:\Program Files\MSN Messenger\livecall.exe"="C:\Program Files\MSN Messenger\livecall.exe:*:Enabled:Windows Live Messenger 8.1 (Phone)"
[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\E]
shell\AutoRun\command - E:\
shell\explore\command - WScript.exe .\autorun.vbs
shell\open\command - WScript.exe .\autorun.vbs
[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{07b8a394-f5f3-11da-90db-806d6172696f}]
shell\AutoRun\command - C:\
shell\explore\command - WScript.exe .\autorun.vbs
shell\open\command - WScript.exe .\autorun.vbs
[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{07b8a395-f5f3-11da-90db-806d6172696f}]
shell\AutoRun\command - D:\
shell\explore\command - WScript.exe .\autorun.vbs
shell\open\command - WScript.exe .\autorun.vbs
[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{093fdfea-99d9-11dc-af2e-0040d089e2e4}]
shell\AutoRun\command - G:\
shell\explore\command - WScript.exe .\autorun.vbs
shell\open\command - WScript.exe .\autorun.vbs
[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{1110ef24-9d40-11dc-af33-0040d089e2e4}]
shell\AutoRun\command - G:\
shell\explore\command - WScript.exe .\autorun.vbs
shell\open\command - WScript.exe .\autorun.vbs
[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{2f896150-8781-11db-adfd-0040d089e2e4}]
shell\AutoRun\command - G:\
shell\explore\command - WScript.exe .\autorun.vbs
shell\open\command - WScript.exe .\autorun.vbs
[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{3eac7fdc-42de-11dc-aea6-0040d089e2e4}]
shell\AutoRun\command - G:\
shell\explore\command - WScript.exe .\autorun.vbs
shell\open\command - WScript.exe .\autorun.vbs
[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{61703f06-fc05-11db-ae6c-0040d089e2e4}]
shell\AutoRun\command - G:\
shell\explore\command - WScript.exe .\autorun.vbs
shell\open\command - WScript.exe .\autorun.vbs
[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{63433b84-dcf1-11dd-b986-0012bf558217}]
shell\AutoRun\command - G:\
shell\explore\command - WScript.exe .\autorun.vbs
shell\open\command - WScript.exe .\autorun.vbs
[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{981d49f8-7fe8-11dc-af03-0040d089e2e4}]
shell\AutoRun\command - E:\
shell\explore\command - WScript.exe .\autorun.vbs
shell\open\command - WScript.exe .\autorun.vbs
[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{9861cfbc-4a82-11db-ada8-0040d089e2e4}]
shell\AutoRun\command - E:\
shell\explore\command - WScript.exe .\autorun.vbs
shell\open\command - WScript.exe .\autorun.vbs
[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{9b39ab52-bb1b-11dc-af67-0040d089e2e4}]
shell\AutoRun\command - E:\
shell\explore\command - WScript.exe .\autorun.vbs
shell\open\command - WScript.exe .\autorun.vbs
[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{bb8fee8f-f5e6-11da-ac78-a3d4948e4388}]
shell\AutoRun\command - G:\
shell\explore\command - WScript.exe .\autorun.vbs
shell\open\command - WScript.exe .\autorun.vbs
[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{d22f797e-ee2c-11dd-b99a-0012bf558217}]
shell\AutoRun\command - E:\
shell\explore\command - WScript.exe .\autorun.vbs
shell\open\command - WScript.exe .\autorun.vbs
[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{d22f7980-ee2c-11dd-b99a-0012bf558217}]
shell\AutoRun\command - I:\
shell\explore\command - WScript.exe .\autorun.vbs
shell\open\command - WScript.exe .\autorun.vbs
[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{dacef1ee-96fa-11dd-b90f-0040d089e2e4}]
shell\AutoRun\command - G:\
shell\explore\command - WScript.exe .\autorun.vbs
shell\open\command - WScript.exe .\autorun.vbs
[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{f845c85a-fa51-11da-ac92-00032f438392}]
shell\AutoRun\command - G:\
shell\explore\command - WScript.exe .\autorun.vbs
shell\open\command - WScript.exe .\autorun.vbs
[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{f845c85b-fa51-11da-ac92-00032f438392}]
shell\AutoRun\command - H:\
shell\explore\command - WScript.exe .\autorun.vbs
shell\open\command - WScript.exe .\autorun.vbs
======List of files/folders created in the last 1 months======
2009-03-06 16:23:22 ----D---- C:\Program Files\trend micro
2009-03-06 16:23:19 ----D---- C:\rsit
2009-03-06 04:51:39 ----D---- C:\WINDOWS\system32\Kaspersky Lab
2009-03-06 02:36:59 ----A---- C:\WINDOWS\system32\wucltui.dll.mui
2009-03-06 02:36:59 ----A---- C:\WINDOWS\system32\wuaueng.dll.mui
2009-03-06 02:36:57 ----A---- C:\WINDOWS\system32\wuapi.dll.mui
2009-03-06 02:36:40 ----D---- C:\WINDOWS\LastGood
2009-03-06 02:32:30 ----D---- C:\Documents and Settings\DICOUIT\Application Data\ATI
2009-03-06 02:32:30 ----D---- C:\Documents and Settings\All Users\Application Data\ATI
2009-03-06 02:21:26 ----N---- C:\WINDOWS\system32\ati2sgag.exe
2009-03-02 20:49:52 ----D---- C:\Documents and Settings\All Users\Application Data\Google
2009-03-02 20:17:31 ----D---- C:\Documents and Settings\All Users\Application Data\FLEXnet
2009-03-02 19:14:28 ----D---- C:\Program Files\Fichiers communs\Macrovision Shared
2009-02-19 22:58:44 ----D---- C:\Documents and Settings\DICOUIT\Application Data\Google
2009-02-19 22:54:40 ----D---- C:\Program Files\Google
======List of files/folders modified in the last 1 months======
2009-03-06 16:23:34 ----D---- C:\WINDOWS\Prefetch
2009-03-06 16:23:22 ----D---- C:\Program Files
2009-03-06 15:26:56 ----D---- C:\Program Files\Mozilla Firefox
2009-03-06 04:51:42 ----SD---- C:\WINDOWS\Downloaded Program Files
2009-03-06 04:51:39 ----D---- C:\WINDOWS\system32
2009-03-06 04:51:38 ----D---- C:\WINDOWS\inf
2009-03-06 04:51:38 ----D---- C:\WINDOWS
2009-03-06 04:51:03 ----SHD---- C:\WINDOWS\Installer
2009-03-06 04:29:23 ----D---- C:\WINDOWS\Debug
2009-03-06 04:29:22 ----D---- C:\WINDOWS\Minidump
2009-03-06 04:29:00 ----D---- C:\WINDOWS\Temp
2009-03-06 02:43:53 ----D---- C:\Program Files\Mozilla Thunderbird
2009-03-06 02:38:39 ----D---- C:\WINDOWS\system32\CatRoot
2009-03-06 02:37:07 ----D---- C:\WINDOWS\SoftwareDistribution
2009-03-06 02:37:06 ----D---- C:\WINDOWS\Help
2009-03-06 02:37:02 ----RSHDC---- C:\WINDOWS\system32\dllcache
2009-03-06 02:32:36 ----D---- C:\WINDOWS\system32\config
2009-03-06 02:31:14 ----D---- C:\WINDOWS\system32\CatRoot2
2009-03-06 02:27:30 ----N---- C:\WINDOWS\SchedLgU.Txt
2009-03-06 02:25:02 ----D---- C:\Program Files\ATI Technologies
2009-03-06 02:24:59 ----RSD---- C:\WINDOWS\assembly
2009-03-06 02:24:31 ----D---- C:\WINDOWS\WinSxS
2009-03-06 02:22:23 ----HD---- C:\Program Files\InstallShield Installation Information
2009-03-06 02:20:39 ----D---- C:\WINDOWS\system32\drivers
2009-03-06 02:01:00 ----A---- C:\WINDOWS\system32\PerfStringBackup.INI
2009-03-06 01:02:55 ----SH---- C:\boot.ini
2009-03-06 01:02:55 ----A---- C:\WINDOWS\win.ini
2009-03-06 01:02:55 ----A---- C:\WINDOWS\system.ini
2009-03-03 02:52:03 ----D---- C:\Program Files\Adobe
2009-03-03 02:23:22 ----D---- C:\Documents and Settings\DICOUIT\Application Data\Adobe
2009-03-02 20:49:49 ----SD---- C:\WINDOWS\Tasks
2009-03-02 20:05:48 ----D---- C:\Documents and Settings\All Users\Application Data\Adobe
2009-03-02 20:00:45 ----D---- C:\Program Files\Fichiers communs\Adobe
2009-03-02 19:47:18 ----RSD---- C:\WINDOWS\Fonts
2009-03-02 19:14:28 ----D---- C:\Program Files\Fichiers communs
2009-03-02 18:23:55 ----A---- C:\WINDOWS\NeroDigital.ini
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R1 AmdK8;AMD Processor Driver; C:\WINDOWS\system32\DRIVERS\AmdK8.sys [2005-03-09 36352]
R2 Aspi32;Aspi32; C:\WINDOWS\system32\drivers\Aspi32.sys [1999-09-10 25244]
R2 irda;Protocole IrDA; C:\WINDOWS\system32\DRIVERS\irda.sys [2004-08-03 87424]
R3 ALCXWDM;Service for Realtek AC97 Audio (WDM); C:\WINDOWS\system32\drivers\ALCXWDM.SYS [2005-01-28 2310272]
R3 Arp1394;Protocole client ARP 1394; C:\WINDOWS\system32\DRIVERS\arp1394.sys [2004-08-04 60800]
R3 ASAPIW2k;ASAPIW2K; C:\WINDOWS\system32\drivers\ASAPIW2k.sys [2005-05-26 11264]
R3 ati2mtag;ati2mtag; C:\WINDOWS\system32\DRIVERS\ati2mtag.sys [2009-02-04 3488768]
R3 CIR;Hid Device; C:\WINDOWS\system32\DRIVERS\CIR.sys [2005-05-10 5120]
R3 CmBatt;Pilote pour Batterie à méthode de contrôle ACPI Microsoft; C:\WINDOWS\system32\DRIVERS\CmBatt.sys [2004-08-04 14080]
R3 HidUsb;Pilote de classe HID Microsoft; C:\WINDOWS\system32\DRIVERS\hidusb.sys [2001-08-17 9600]
R3 kbd;Keyboard; C:\WINDOWS\system32\DRIVERS\kbd.sys [2005-05-10 21504]
R3 mouhid;Pilote HID de souris; C:\WINDOWS\system32\DRIVERS\mouhid.sys [2001-08-23 12288]
R3 Mtlmnt5;Mtlmnt5; C:\WINDOWS\system32\DRIVERS\SLDRV\Mtlmnt5.sys [2005-03-22 229848]
R3 NIC1394;Pilote réseau 1394; C:\WINDOWS\system32\DRIVERS\nic1394.sys [2004-08-04 61824]
R3 PCASp50;PCASp50 NDIS Protocol Driver; C:\WINDOWS\System32\Drivers\PCASp50.sys [2005-11-19 20096]
R3 pfc;Padus ASPI Shell; C:\WINDOWS\system32\drivers\pfc.sys [2003-09-08 14604]
R3 Rasirda;Miniport réseau étendu (IrDA); C:\WINDOWS\system32\DRIVERS\rasirda.sys [2001-08-17 19584]
R3 Slntamr;SmartLink AMR_PCI Driver; C:\WINDOWS\system32\DRIVERS\SLDRV\slntamr.sys [2005-03-22 653896]
R3 SlWdmSup;SlWdmSup; C:\WINDOWS\system32\DRIVERS\SLDRV\SlWdmSup.sys [2005-03-22 13280]
R3 StillCam;Pilote d'appareil photo numérique série; C:\WINDOWS\system32\DRIVERS\serscan.sys [2001-08-23 6912]
R3 usbehci;Pilote miniport de contrôleur d'hôte amélioré Microsoft USB 2.0; C:\WINDOWS\system32\DRIVERS\usbehci.sys [2004-08-03 26624]
R3 usbhub;Concentrateur USB2; C:\WINDOWS\system32\DRIVERS\usbhub.sys [2004-08-03 57600]
R3 usbohci;Pilote miniport de contrôleur hôte ouvert USB Microsoft; C:\WINDOWS\system32\DRIVERS\usbohci.sys [2004-08-03 17024]
R3 USBSTOR;Pilote de stockage de masse USB; C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS [2004-08-03 26496]
R3 WN6201;Wireless Network Adapter Service; C:\WINDOWS\system32\DRIVERS\WN6201.sys [2005-06-17 457472]
S1 InCDPass;InCDPass; C:\WINDOWS\system32\drivers\InCDPass.sys []
S1 InCDRm;InCD Reader; C:\WINDOWS\system32\drivers\InCDRm.sys []
S1 kbdhid;Pilote HID de clavier; C:\WINDOWS\system32\DRIVERS\kbdhid.sys [2004-08-03 14848]
S3 CCDECODE;Décodeur sous-titre fermé; C:\WINDOWS\system32\DRIVERS\CCDECODE.sys [2004-08-03 17024]
S3 CoachUsb;Coach Digital Camera on USB; C:\WINDOWS\system32\DRIVERS\CoachUsb.sys [2004-01-22 46944]
S3 CoachVc;Coach Video Capture; C:\WINDOWS\system32\DRIVERS\CoachVc.sys [2003-11-03 44256]
S3 efipsk;efipsk; \??\C:\DOCUME~1\DICOUIT\LOCALS~1\Temp\efipsk.sys []
S3 hrfsmrx;hrfsmrx; C:\WINDOWS\System32\Drivers\hrfsmrx.sys [2008-11-13 142144]
S3 MPE;Filtre BDA MPE; C:\WINDOWS\system32\DRIVERS\MPE.sys [2004-08-03 15360]
S3 MSTEE;Convertisseur en T/site-à-site de répartition Microsoft; C:\WINDOWS\system32\drivers\MSTEE.sys [2004-08-03 5504]
S3 Mtlstrm;Mtlstrm; C:\WINDOWS\system32\DRIVERS\SLDRV\Mtlstrm.sys [2005-03-22 1397136]
S3 NABTSFEC;Codec NABTS/FEC VBI; C:\WINDOWS\system32\DRIVERS\NABTSFEC.sys [2004-08-03 85376]
S3 NdisIP;Connection TV/vidéo Microsoft; C:\WINDOWS\system32\DRIVERS\NdisIP.sys [2004-08-03 10880]
S3 nmwcd;Nokia USB Phone Parent; C:\WINDOWS\system32\drivers\nmwcd.sys [2007-02-22 137216]
S3 nmwcdc;Nokia USB Generic; C:\WINDOWS\system32\drivers\nmwcdc.sys [2007-02-22 8320]
S3 nmwcdcj;Nokia USB Port; C:\WINDOWS\system32\drivers\nmwcdcj.sys [2007-02-22 12288]
S3 nmwcdcm;Nokia USB Modem; C:\WINDOWS\system32\drivers\nmwcdcm.sys [2007-02-22 12288]
S3 PCAMPR5;PCAMPR5 NDIS Protocol Driver; \??\C:\WINDOWS\system32\PCAMPR5.SYS []
S3 PCANDIS5;PCANDIS5 NDIS Protocol Driver; \??\C:\WINDOWS\system32\PCANDIS5.SYS []
S3 RT2500;RT2500 Wireless Driver; C:\WINDOWS\system32\DRIVERS\RT2500.sys [2005-09-07 243200]
S3 SIS163u;SiS163 usb Wireless LAN Adapter Driver; C:\WINDOWS\system32\DRIVERS\sis163u.sys []
S3 SLIP;Détrameur décalage BDA; C:\WINDOWS\system32\DRIVERS\SLIP.sys [2004-08-03 11136]
S3 SlNtHal;SlNtHal; C:\WINDOWS\system32\DRIVERS\SLDRV\Slnthal.sys [2005-03-22 101328]
S3 SONYPVU1;Pilote de filtrage Sony USB (SONYPVU1); C:\WINDOWS\system32\DRIVERS\SONYPVU1.SYS [2001-08-17 7552]
S3 SPC500NC;SPC 500NC Laptop Camera; C:\WINDOWS\system32\DRIVERS\SPC610NC.SYS [2007-01-19 409728]
S3 STIrUsb;Dongle SigmaTel USB-IrDA; C:\WINDOWS\system32\DRIVERS\irstusb.sys [2001-08-17 26624]
S3 streamip;BDA IPSink; C:\WINDOWS\system32\DRIVERS\StreamIP.sys [2004-08-03 15360]
S3 ULI5261;ULi Based Ethernet NT Driver; C:\WINDOWS\system32\DRIVERS\ULILAN.SYS [2004-12-31 28160]
S3 USB28xxBGA;Pinnacle PCTV DVB-T USB Stick; C:\WINDOWS\system32\DRIVERS\emBDA.sys [2005-11-22 209408]
S3 USB28xxOEM;USB 28xx OEM Filter; C:\WINDOWS\system32\DRIVERS\emOEM.sys [2005-11-22 17792]
S3 usbccgp;Pilote parent générique USB Microsoft; C:\WINDOWS\system32\DRIVERS\usbccgp.sys [2004-08-03 31616]
S3 usbprint;Classe d'imprimantes USB Microsoft; C:\WINDOWS\system32\DRIVERS\usbprint.sys [2004-08-03 25856]
S3 usbscan;Pilote de scanneur USB; C:\WINDOWS\system32\DRIVERS\usbscan.sys [2004-08-03 15104]
S3 wlanndi5;wlanndi5 NDIS Protocol Driver; \??\C:\WINDOWS\system32\wlanndi5.SYS []
S3 WSTCODEC;Codec Teletext standard; C:\WINDOWS\system32\DRIVERS\WSTCODEC.SYS [2004-08-03 19328]
S3 WudfRd;Windows Driver Foundation - User-mode Driver Framework Reflector; C:\WINDOWS\system32\DRIVERS\wudfrd.sys [2006-09-15 82688]
S4 InCDFs;InCD File System; C:\WINDOWS\system32\drivers\InCDFs.sys []
S4 IntelIde;IntelIde; C:\WINDOWS\system32\drivers\IntelIde.sys []
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 Ati HotKey Poller;Ati HotKey Poller; C:\WINDOWS\system32\Ati2evxx.exe [2009-02-04 602112]
R2 Irmon;Moniteur infrarouge; C:\WINDOWS\system32\svchost.exe [2004-08-03 14336]
R2 WudfSvc;Windows Driver Foundation - User-mode Driver Framework; C:\WINDOWS\system32\svchost.exe [2004-08-03 14336]
S2 ATI Smart;ATI Smart; C:\WINDOWS\system32\ati2sgag.exe [2009-02-03 593920]
S3 aspnet_state;ASP.NET State Service; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe [2005-09-23 29896]
S3 clr_optimization_v2.0.50727_32;.NET Runtime Optimization Service v2.0.50727_X86; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe [2005-09-23 66240]
S3 FontCache3.0.0.0;Windows Presentation Foundation Font Cache 3.0.0.0; C:\WINDOWS\Microsoft.Net\Framework\v3.0\WPF\PresentationFontCache.exe [2006-10-20 36864]
S4 Adobe LM Service;Adobe LM Service; C:\Program Files\Fichiers communs\Adobe Systems Shared\Service\Adobelmsvc.exe [2006-11-11 72704]
S4 Bonjour Service;##Id_String1.6844F930_1628_4223_B5CC_5BB94B879762##; C:\Program Files\Bonjour\mDNSResponder.exe [2006-02-28 229376]
S4 FLEXnet Licensing Service;FLEXnet Licensing Service; C:\Program Files\Fichiers communs\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe [2009-03-02 654848]
S4 humyo.com;humyo.com; D:\LOGICIEL INSTALLER\humyo.com Client\hrfscore.exe [2008-11-13 2361280]
S4 IDriverT;InstallDriver Table Manager; C:\Program Files\Fichiers communs\InstallShield\Driver\11\Intel 32\IDriverT.exe [2005-04-03 69632]
S4 idsvc;Windows CardSpace; C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe [2006-10-30 741376]
S4 NetTcpPortSharing;Net.Tcp Port Sharing Service; C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe [2006-10-30 122880]
S4 olMntrService;olMntrService; C:\Program Files\Olivetti\ANY_WAY\olMntrService.exe [2006-09-22 86016]
S4 ServiceLayer;ServiceLayer; C:\Program Files\PC Connectivity Solution\ServiceLayer.exe [2007-06-15 300544]
S4 SLService;SmartLinkService; C:\WINDOWS\system32\slserv.exe [2004-08-03 73796]
S4 SPTISRV;Sony SPTI Service; C:\PROGRA~1\FICHIE~1\SONYSH~1\AVLib\Sptisrv.exe [2002-12-24 65536]
S4 usnjsvc;Service Messenger Sharing Folders USN Journal Reader; C:\Program Files\MSN Messenger\usnsvc.exe [2007-01-19 97136]
-----------------EOF-----------------
info.txt logfile of random's system information tool 1.05 2009-03-06 16:23:51
======Uninstall list======
-->MsiExec.exe /X{E9F81423-211E-46B6-9AE0-38568BC5CF6F}
-->C:\Program Files\DivX\DivXConverterUninstall.exe /CONVERTER
-->C:\Program Files\Fichiers communs\Real\Update_OB\r1puninst.exe RealNetworks|RealPlayer|6.0
-->C:\Program Files\Nero\Nero 7\nero\uninstall\UNNERO.exe /UNINSTALL
-->C:\WINDOWS\system32\\MSIEXEC.EXE /x {9541FED0-327F-4df0-8B96-EF57EF622F19}
-->C:\WINDOWS\UNNeroBackItUp.exe /UNINSTALL
-->C:\WINDOWS\UNNeroMediaHome.exe /UNINSTALL
-->C:\WINDOWS\UNNeroShowTime.exe /UNINSTALL
-->C:\WINDOWS\UNNeroVision.exe /UNINSTALL
-->C:\WINDOWS\UNRecode.exe /UNINSTALL
-->rundll32.exe setupapi.dll,InstallHinfSection DefaultUninstall 132 C:\WINDOWS\INF\PCHealth.inf
Abrosoft FantaMorph 3.0-->"D:\LOGICIEL INSTALLER\FantaMorph3\unins000.exe"
Adobe Anchor Service CS3-->MsiExec.exe /I{90176341-0A8B-4CCC-A78D-F862228A6B95}
Adobe Asset Services CS3-->MsiExec.exe /I{6FF5DD7A-FE28-4439-B8CF-1E9AF4EA0A61}
Adobe Bridge 1.0-->MsiExec.exe /I{B74D4E10-6884-0000-0000-000000000101}
Adobe Bridge CS3-->MsiExec.exe /I{9C9824D9-9000-4373-A6A5-D0E5D4831394}
Adobe Bridge Start Meeting-->MsiExec.exe /I{08B32819-6EEF-4057-AEDA-5AB681A36A23}
Adobe Camera Raw 4.0-->MsiExec.exe /I{B3BF6689-A81D-40D8-9A86-4AC4ACD9FC1C}
Adobe CMaps-->MsiExec.exe /I{A2B242BD-FF8D-4840-9DAA-9170EABEC59C}
Adobe Color - Photoshop Specific-->MsiExec.exe /I{A2D81E70-2A98-4A08-A628-94388B063C5E}
Adobe Color Common Settings-->MsiExec.exe /I{DADD7B8A-BCB0-44F5-967A-ECB6B4F2ECD9}
Adobe Color EU Recommended Settings-->MsiExec.exe /I{73B5D990-04EA-4751-B10F-5534770B91F2}
Adobe Color JA Extra Settings-->MsiExec.exe /I{DD7DB3C5-6FA3-4FA3-8A71-C2F2940EB029}
Adobe Color NA Extra Settings-->MsiExec.exe /I{FF29A7E2-FF40-4D07-B7E4-2093DE59E10A}
Adobe Common File Installer-->MsiExec.exe /I{8EDBA74D-0686-4C99-BFDD-F894678E5101}
Adobe Default Language CS3-->MsiExec.exe /I{B9B35331-B7E4-4E5C-BF4C-7BC87856124D}
Adobe Device Central CS3-->MsiExec.exe /I{8D2BA474-F406-4710-9AE4-D4F22D21F0DD}
Adobe ExtendScript Toolkit 2-->C:\Program Files\Fichiers communs\Adobe\Installers\3e054d2218e7aa282c2369d939e58ff\Setup.exe
Adobe ExtendScript Toolkit 2-->MsiExec.exe /I{24D7346D-D4B4-45E8-98EA-75EC14B42DD8}
Adobe Flash Player 10 ActiveX-->C:\WINDOWS\system32\Macromed\Flash\uninstall_activeX.exe
Adobe Flash Player 10 Plugin-->C:\WINDOWS\system32\Macromed\Flash\uninstall_plugin.exe
Adobe Fonts All-->MsiExec.exe /I{6ABE0BEE-D572-4FE8-B434-9E72A289431B}
Adobe Help Center 1.0-->MsiExec.exe /I{E9787678-119F-4D52-B551-6739B2B22101}
Adobe Help Viewer CS3-->MsiExec.exe /I{04AF207D-9A77-465A-8B76-991F6AB66245}
Adobe Illustrator CS2 Version d'évaluation-->msiexec /I {7F9A0582-482D-4F0B-B85C-C1418418077F}
Adobe Linguistics CS3-->MsiExec.exe /I{54793AA1-5001-42F4-ABB6-C364617C6078}
Adobe PDF Library Files-->MsiExec.exe /I{D2559B88-CC9D-4B48-81BB-F492BAA9C48C}
Adobe Photoshop CS3-->C:\Program Files\Fichiers communs\Adobe\Installers\32e9033392a51340b32fdc6ad893ab7\Setup.exe
Adobe Photoshop CS3-->MsiExec.exe /I{BF794769-8875-4E01-B7BE-E00104604F4A}
Adobe Premiere Pro-->RunDll32 "C:\Program Files\Fichiers communs\InstallShield\Professional\RunTime\0701\Intel32\ctor.dll",LaunchSetup "C:\Program Files\InstallShield Installation Information\{084709F7-38C5-4609-B55F-2417939315EB}\setup.exe"
Adobe Reader 8.1.3 - Français-->MsiExec.exe /I{AC76BA86-7AD7-1036-7B44-A81300000003}
Adobe Reader Japanese Fonts-->MsiExec.exe /I{AC76BA86-7AD7-5760-0000-705000000001}
Adobe Setup-->MsiExec.exe /I{926DEB4E-2B0A-4C5C-AE4A-BF6C06949702}
Adobe Setup-->MsiExec.exe /I{B3C02EC1-A7B0-4987-9A43-8789426AAA7D}
Adobe Stock Photos 1.0-->MsiExec.exe /I{786C5747-0C40-4930-9AFE-113BCE553101}
Adobe Stock Photos CS3-->MsiExec.exe /I{29E5EA97-5F74-4A57-B8B2-D4F169117183}
Adobe SVG Viewer 3.0-->C:\Program Files\Fichiers communs\Adobe\SVG Viewer 3.0\Uninstall\Winstall.exe -u -fC:\Program Files\Fichiers communs\Adobe\SVG Viewer 3.0\Uninstall\Install.log
Adobe Type Support-->MsiExec.exe /I{8E6808E2-613D-4FCD-81A2-6C8FA8E03312}
Adobe Update Manager CS3-->MsiExec.exe /I{E69AE897-9E0B-485C-8552-7841F48D42D8}
Adobe Version Cue CS3 Client-->MsiExec.exe /I{D0DFF92A-492E-4C40-B862-A74A173C25C5}
Adobe WinSoft Linguistics Plugin-->MsiExec.exe /I{184CE391-7E0E-4C63-9935-D7A10EDFD3C6}
Adobe XMP Panels CS3-->MsiExec.exe /I{802771A9-A856-4A41-ACF7-1450E523C923}
Archiveur WinRAR-->D:\LOGICIEL INSTALLER\WIN RAR\uninstall.exe
ATI - Software Uninstall Utility-->C:\Program Files\ATI Technologies\UninstallAll\AtiCimUn.exe
ATI Catalyst Control Center-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\PROFES~1\RunTime\09\01\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{055EE59D-217B-43A7-ABFF-507B966405D8}\setup.exe" -l0x0
ATI Control Panel-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\engine\6\INTEL3~1\ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{0BEDBD |
3 updates, last one at Wed, Dec 31, 1969, 7:00pm.
Embed code: