High-Tech Santé Médecine Droit-Finances

Réalisation

vidéo numérique

Rechercher : dans
Par :

Infecté par Backdoor.Win32.Frauder!IK

Dernière réponse le 14 avr 2009 à 19:13:52 MENUISERIE94, le 9 avr 2009 à 15:59:07 
 Signaler ce message aux modérateurs

Bonjour,
Depuis quelques jours, A-squared me prévient que mon PC est infecté par un Trojan nommé Backdoor.Win32.Frauder!IK. J'ai beau tout tenté pour l'éradiquer : rien à faire ! Quelqu'un peut-il m'aider ? Merci par avance.

Configuration: Windows XP
Internet Explorer 7.0

Posez votre question Répondre

1

verni29, le 9 avr 2009 à 16:01:56
  • +1

Bonjour,

Télécharge Random's System Information Tool (RSIT) de random/random et enregistre le sur ton Bureau.
http://images.malwareremoval.com/random/RSIT.exe

Double-clique sur " RSIT.exe " pour le lancer .
dans la fenêtre qui va s’ouvrir choisis 2 months pour l'option "List files/folders created ..." ,
cliques ensuite sur " Continue " pour lancer l'analyse ...

Si la dernière version de HijackThis n'est pas trouvée sur ton PC, RSIT la téléchargera et te demandera d'accepter la licence.

Attends jusqu’à la fin de l’analyse.
deux rapports vont être generés.

Poste uniquement le contenu de " log.txt ", et garde " info.txt " ( dans la barre des tâches), pour analyse, si je te le demande.

Si tu ne les trouves pas,les rapports sont sauvegardés dans le dossier C:\rsit.

A+ Pas de désinfection par MP. 

   
Répondre à verni29

2

 MENUISERIE94, le 14 avr 2009 à 19:13:52

Logfile of random's system information tool 1.06 (written by random/random)
Run by Philippe at 2009-04-14 19:08:59
Microsoft Windows XP Professionnel Service Pack 3
System drive C: has 129 GB (84%) free of 154 GB
Total RAM: 1015 MB (18% free)

Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 19:09:31, on 14/04/2009
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v8.00 (8.00.6001.18702)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Windows Defender\MsMpEng.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\a-squared Free\a2service.exe
C:\Program Files\Fichiers communs\ABBYY\FineReader\9.00\Licensing\PE\NetworkLicenseSer­ver.exe
C:\Program Files\G DATA\TotalCare\AVK\AVKService.exe
C:\Program Files\G DATA\TotalCare\AVK\AVKWCtl.exe
C:\WINDOWS\system32\dlcqcoms.exe
C:\PROGRA~1\FICHIE~1\France Telecom\Shared Modules\FTRTSVC\0\FTRTSVC.exe
C:\WINDOWS\system32\inetsrv\inetinfo.exe
C:\Program Files\Java\jre6\bin\jqs.exe
C:\PROGRA~1\McAfee\MSC\mcmscsvc.exe
c:\PROGRA~1\FICHIE~1\mcafee\mna\mcnasvc.exe
c:\PROGRA~1\FICHIE~1\mcafee\mcproxy\mcproxy.exe
C:\PROGRA~1\McAfee\VIRUSS~1\mcshield.exe
C:\Program Files\McAfee\MPF\MPFSrv.exe
C:\Program Files\McAfee\MSK\MskSrver.exe
C:\WINDOWS\System32\snmp.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\G DATA\TotalCare\AVKBackup\AVKBackupService.exe
c:\PROGRA~1\mcafee.com\agent\mcagent.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\Java\jre6\bin\jusched.exe
C:\PROGRA~1\FICHIE~1\France Telecom\Shared Modules\AlertModule\0\AlertModule.exe
C:\Program Files\OrangeHSS\systray\systrayapp.exe
C:\PROGRA~1\McAfee\VIRUSS~1\mcsysmon.exe
C:\Program Files\G DATA\TotalCare\AVK\AVK.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Documents and Settings\Philippe\Bureau\RSIT.exe
C:\Program Files\trend micro\Philippe.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.orange.fr/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page =
R1 - HKCU\Software\Microsoft\Internet Connection Wizard,ShellNext = http://go.microsoft.com/fwlink/?LinkId=74005
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
O2 - BHO: (no name) - {02478D38-C3F9-4efb-9B51-7695ECA05670} - (no file)
O2 - BHO: McAfee Phishing Filter - {27B4851A-3207-45A2-B947-BE8AFE6163AB} - c:\PROGRA~1\mcafee\msk\mskapbho.dll
O2 - BHO: scriptproxy - {7DB2D5A0-7241-4E79-B68D-6309F01C5231} - C:\Program Files\McAfee\VirusScan\scriptsn.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll
O2 - BHO: JQSIEStartDetectorImpl - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll
O3 - Toolbar: Barre d'outils Copernic Desktop Search - Home - {4A1C6093-14F9-44D7-860E-5D265CFCA9D9} - C:\Program Files\Copernic Desktop Search 2\Toolbar\ToolbarContainer101000048.dll
O4 - HKLM\..\Run: [FaxCenterServer] "C:\Program Files\Dell PC Fax\fm3032.exe" /s
O4 - HKLM\..\Run: [DLCQCATS] rundll32 C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\DLCQtime.dll,_RunDLLEntry@16
O4 - HKLM\..\Run: [SSBkgdUpdate] "C:\Program Files\Fichiers communs\Scansoft Shared\SSBkgdUpdate\SSBkgdupdate.exe" -Embedding -boot
O4 - HKLM\..\Run: [ORAHSSSessionManager] C:\Program Files\OrangeHSS\SessionManager\SessionManager.exe
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre6\bin\jusched.exe"
O4 - HKLM\..\Run: [mcagent_exe] "C:\Program Files\McAfee.com\Agent\mcagent.exe" /runkey
O4 - HKLM\..\Run: [McENUI] C:\PROGRA~1\McAfee\MHN\McENUI.exe /hide
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE RÉSEAU')
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\Office12\REFIEBAR.DLL
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O15 - Trusted Zone: http://*.mcafee.com
O23 - Service: a-squared Free Service (a2free) - Emsi Software GmbH - C:\Program Files\a-squared Free\a2service.exe
O23 - Service: ABBYY FineReader 9.0 PE Licensing Service (ABBYY.Licensing.FineReader.Professional.9.0) - ABBYY (BIT Software) - C:\Program Files\Fichiers communs\ABBYY\FineReader\9.00\Licensing\PE\NetworkLicenseServer.exe
O23 - Service: Planificateur G DATA (AVKService) - G DATA Software AG - C:\Program Files\G DATA\TotalCare\AVK\AVKService.exe
O23 - Service: Gardien d'AntiVirus (AVKWCtl) - G DATA Software AG - C:\Program Files\G DATA\TotalCare\AVK\AVKWCtl.exe
O23 - Service: BvrpKrnl - Unknown owner - C:\Program Files\WinPhone Ultimate Edition\BVRPKrnl.exe
O23 - Service: dlcq_device - - C:\WINDOWS\system32\dlcqcoms.exe
O23 - Service: France Telecom Routing Table Service (FTRTSVC) - France Telecom SA - C:\PROGRA~1\FICHIE~1\France Telecom\Shared Modules\FTRTSVC\0\FTRTSVC.exe
O23 - Service: G DATA Tuner Service - G DATA Software AG - C:\Program Files\G DATA\TotalCare\AVKTuner\AVKTunerService.exe
O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Fichiers communs\InstallShield\Driver\1150\Intel 32\IDriverT.exe
O23 - Service: Java Quick Starter (JavaQuickStarterService) - Sun Microsystems, Inc. - C:\Program Files\Java\jre6\bin\jqs.exe
O23 - Service: MBackMonitor - McAfee - C:\Program Files\McAfee\MBK\MBackMonitor.exe
O23 - Service: McAfee Services (mcmscsvc) - McAfee, Inc. - C:\PROGRA~1\McAfee\MSC\mcmscsvc.exe
O23 - Service: McAfee Network Agent (McNASvc) - McAfee, Inc. - c:\PROGRA~1\FICHIE~1\mcafee\mna\mcnasvc.exe
O23 - Service: McAfee Scanner (McODS) - McAfee, Inc. - C:\PROGRA~1\McAfee\VIRUSS~1\mcods.exe
O23 - Service: McAfee Proxy Service (McProxy) - McAfee, Inc. - c:\PROGRA~1\FICHIE~1\mcafee\mcproxy\mcproxy.exe
O23 - Service: McAfee Real-time Scanner (McShield) - McAfee, Inc. - C:\PROGRA~1\McAfee\VIRUSS~1\mcshield.exe
O23 - Service: McAfee SystemGuards (McSysmon) - McAfee, Inc. - C:\PROGRA~1\McAfee\VIRUSS~1\mcsysmon.exe
O23 - Service: McAfee Personal Firewall Service (MpfService) - McAfee, Inc. - C:\Program Files\McAfee\MPF\MPFSrv.exe
O23 - Service: McAfee Anti-Spam Service (MSK80Service) - McAfee, Inc. - C:\Program Files\McAfee\MSK\MskSrver.exe
O23 - Service: Service de sauvegarde G DATA - G DATA Software AG - C:\Program Files\G DATA\TotalCare\AVKBackup\AVKBackupService.exe
End of file - 8058 bytes

======Scheduled tasks folder======

C:\WINDOWS\tasks\McDefragTask.job
C:\WINDOWS\tasks\McQcTask.job
C:\WINDOWS\tasks\MP Scheduled Scan.job
C:\WINDOWS\tasks\ParetoLogic Registration.job
C:\WINDOWS\tasks\Uniblue SpeedUpMyPC Nag.job
C:\WINDOWS\tasks\Uniblue SpeedUpMyPC.job

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{02478D38-C3F9-4efb-9B51-7695ECA05670}]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{27B4851A-3207-45A2-B947-BE8AFE6163AB}]
McAfee Phishing Filter - c:\PROGRA~1\mcafee\msk\mskapbho.dll [2009-01-09 246800]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{7DB2D5A0-7241-4E79-B68D-6309F01C5231}]
scriptproxy - C:\Program Files\McAfee\VirusScan\scriptsn.dll [2009-01-16 58688]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre6\bin\jp2ssv.dll [2009-04-08 35840]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E7E6F031-17CE-4C07-BC86-EABFE594F69C}]
JQSIEStartDetectorImpl Class - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll [2009-04-08 73728]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{4A1C6093-14F9-44D7-860E-5D265CFCA9D9} - Barre d'outils Copernic Desktop Search - Home - C:\Program Files\Copernic Desktop Search 2\Toolbar\ToolbarContainer101000048.dll [2008-12-11 2305456]
Locked

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"FaxCenterServer"=C:\Program Files\Dell PC Fax\fm3032.exe [2006-12-12 312200]
"DLCQCATS"=rundll32 C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\DLCQtime.dll,_RunDLLEntry@16 []
"SSBkgdUpdate"=C:\Program Files\Fichiers communs\Scansoft Shared\SSBkgdUpdate\SSBkgdupdate.exe [2003-09-30 155648]
"ORAHSSSessionManager"=C:\Program Files\OrangeHSS\SessionManager\SessionManager.exe [2007-12-12 107248]
"SunJavaUpdateSched"=C:\Program Files\Java\jre6\bin\jusched.exe [2009-04-08 148888]
"mcagent_exe"=C:\Program Files\McAfee.com\Agent\mcagent.exe [2009-01-08 645328]
"McENUI"=C:\PROGRA~1\McAfee\MHN\McENUI.exe [2009-01-09 1176808]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Alcmtr]
C:\WINDOWS\ALCMTR.EXE [2005-05-03 69632]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Copernic Desktop Search - Home]
C:\Program Files\Copernic Desktop Search 2\DesktopSearchService.exe [2008-12-11 1588224]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\dlcqmon.exe]
C:\Program Files\Dell Photo AIO Printer 966\dlcqmon.exe [2006-12-12 291720]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\G DATA AntiVirus Trayapplication]
C:\Program Files\G DATA\TotalCare\AVKTray\AVKTray.exe [2008-09-10 996424]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\GDFirewallTray]
C:\Program Files\G DATA\TotalCare\Firewall\GDFirewallTray.exe [2008-09-09 1037992]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\HotKeysCmds]
C:\WINDOWS\system32\hkcmd.exe [2006-10-05 114688]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\IgfxTray]
C:\WINDOWS\system32\igfxtray.exe [2006-10-05 98304]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ISUSPM Startup]
C:\Program Files\Fichiers communs\InstallShield\UpdateService\isuspm.exe [2005-06-10 249856]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ISUSScheduler]
C:\Program Files\Fichiers communs\InstallShield\UpdateService\issch.exe [2005-06-10 81920]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\MemoryCardManager]
C:\Program Files\Dell Photo AIO Printer 966\memcard.exe [2006-12-12 304008]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NeroCheck]
C:\WINDOWS\system32\NeroCheck.exe [2001-07-09 155648]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Persistence]
C:\WINDOWS\system32\igfxpers.exe [2006-10-05 94208]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\RTHDCPL]
C:\WINDOWS\RTHDCPL.EXE [2007-04-10 16126464]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SkyTel]
C:\WINDOWS\SkyTel.EXE [2007-04-04 1822720]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\TkBellExe]
C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe [2008-03-12 185896]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Windows Defender]
C:\Program Files\Windows Defender\MSASCui.exe [2006-11-03 866584]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Documents and Settings^Philippe^Menu Démarrer^Programmes^Démarrage^HotSync Manager.lnk]
C:\PROGRA~1\palmOne\HOTSYNC.EXE [2004-04-12 299008]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\igfxcui]
C:\WINDOWS\system32\igfxdev.dll [2006-10-05 155648]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\WgaLogon]
C:\WINDOWS\system32\WgaLogon.dll [2009-03-10 265088]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\WINDOWS\system32\WPDShServiceObj.dll [2006-10-18 133632]
UPnPMonitor - {e57ce738-33e8-4c51-8354-bb4de9d215d1} - C:\WINDOWS\system32\upnpui.dll [2008-04-14 240128]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{091EB208-39DD-417D-A5DD-7E2C2D8FB9CB}"=C:\PROGRA~1\WINDOW~4\MpShHook.dll [2006-11-03 83224]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\mcmscsvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MCODS]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\WinDefend]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\mcmscsvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\MCODS]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\MpfService]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WinDefend]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=145

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"HonorAutoRunSetting"=

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
"C:\WINDOWS\system32\dlcqcoms.exe"="C:\WINDOWS\system32\dlcqcoms.exe:*:Enabled:Lexmark Communications System"
"C:\Program Files\Microsoft Office\Office12\OUTLOOK.EXE"="C:\Program Files\Microsoft Office\Office12\OUTLOOK.EXE:*:Enabled:Microsoft Office Outlook"
"C:\Program Files\OrangeHSS\Connectivity\ConnectivityManager.exe"="C:\Program Files\OrangeHSS\Connectivity\ConnectivityManager.exe:*:enabled:CSS"
"C:\Program Files\Fichiers communs\McAfee\MNA\McNASvc.exe"="C:\Program Files\Fichiers communs\McAfee\MNA\McNASvc.exe:*:Enabled:McAfee Network Agent"

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"

======List of files/folders created in the last 2 months======

2009-04-14 19:09:01 ----D---- C:\Program Files\trend micro
2009-04-14 19:08:59 ----D---- C:\rsit
2009-04-10 19:27:16 ----D---- C:\Program Files\Fichiers communs\McAfee
2009-04-10 19:27:12 ----D---- C:\Program Files\McAfee.com
2009-04-10 19:27:00 ----D---- C:\Program Files\McAfee
2009-04-10 17:37:09 ----D---- C:\Program Files\RegCleaner
2009-04-10 11:35:58 ----D---- C:\Program Files\Exterminate It!
2009-04-10 11:30:16 ----D---- C:\WINDOWS\pss
2009-04-10 11:16:11 ----D---- C:\WINDOWS\Sun
2009-04-10 11:05:50 ----D---- C:\Documents and Settings\Philippe\Application Data\McAfee
2009-04-08 14:40:12 ----A---- C:\WINDOWS\system32\XceedZip.dll
2009-04-08 13:02:56 ----D---- C:\Program Files\Mamutu
2009-04-08 11:55:49 ----A---- C:\WINDOWS\system32\javaws.exe
2009-04-08 11:55:49 ----A---- C:\WINDOWS\system32\javaw.exe
2009-04-08 11:55:49 ----A---- C:\WINDOWS\system32\java.exe
2009-04-08 11:55:49 ----A---- C:\WINDOWS\system32\deploytk.dll
2009-04-08 11:54:44 ----D---- C:\Program Files\Java
2009-04-08 11:52:53 ----D---- C:\Documents and Settings\Philippe\Application Data\Sun
2009-04-08 11:20:45 ----D---- C:\Program Files\Spybot - Search & Destroy
2009-04-08 11:20:45 ----D---- C:\Documents and Settings\All Users\Application Data\Spybot - Search & Destroy
2009-04-08 11:12:46 ----AD---- C:\Documents and Settings\All Users\Application Data\TEMP
2009-04-07 18:30:44 ----SHD---- C:\#GDATA.Trash.Store#
2009-04-07 18:30:23 ----D---- C:\Program Files\G DATA
2009-04-07 18:30:23 ----D---- C:\Program Files\Fichiers communs\G DATA
2009-04-07 18:30:23 ----D---- C:\Documents and Settings\All Users\Application Data\G DATA
2009-04-02 15:49:34 ----D---- C:\Program Files\Fichiers communs\ParetoLogic
2009-04-02 15:49:34 ----D---- C:\Documents and Settings\All Users\Application Data\ParetoLogic
2009-04-01 14:43:55 ----D---- C:\Program Files\Callserve
2009-04-01 14:43:16 ----D---- C:\Program Files\Avanquest update
2009-04-01 14:42:50 ----D---- C:\vocfiles
2009-04-01 14:41:58 ----A---- C:\WINDOWS\system32\msxml3a.dll
2009-04-01 14:41:35 ----D---- C:\Program Files\WinPhone Ultimate Edition
2009-04-01 13:20:38 ----D---- C:\Program Files\CCleaner
2009-04-01 12:16:33 ----D---- C:\Documents and Settings\All Users\Application Data\Lavasoft
2009-03-31 10:03:22 ----D---- C:\Documents and Settings\Philippe\Application Data\Yahoo!
2009-03-31 10:03:12 ----D---- C:\Program Files\Yahoo!
2009-03-25 13:32:22 ----D---- C:\Program Files\FDF
2009-03-25 11:49:21 ----HDC---- C:\WINDOWS\ie8
2009-03-24 15:31:11 ----D---- C:\Program Files\IKEA HomePlanner
2009-03-24 15:30:58 ----D---- C:\Program Files\Fichiers communs\Wise Installation Wizard
2009-03-08 15:17:46 ----N---- C:\WINDOWS\system32\msrating.dll.mui
2009-03-08 15:17:30 ----N---- C:\WINDOWS\system32\mshta.exe.mui
2009-03-08 15:16:06 ----N---- C:\WINDOWS\system32\ie4uinit.exe.mui
2009-03-08 15:15:48 ----N---- C:\WINDOWS\system32\iedkcs32.dll.mui
2009-03-05 10:51:31 ----A---- C:\WINDOWS\system32\Autodial2000.dll
2009-03-05 10:51:13 ----D---- C:\Program Files\OrangeHSS
2009-03-05 10:50:38 ----D---- C:\Program Files\Fichiers communs\France Telecom
2009-03-05 10:50:37 ----A---- C:\WINDOWS\system32\atl71.dll
2009-03-03 21:34:17 ----D---- C:\Documents and Settings\Philippe\Application Data\Malwarebytes
2009-03-03 21:34:12 ----D---- C:\Program Files\Malwarebytes' Anti-Malware
2009-03-03 21:34:12 ----D---- C:\Documents and Settings\All Users\Application Data\Malwarebytes
2009-03-03 17:38:42 ----D---- C:\Program Files\802.11 Wireless LAN
2009-03-03 17:38:29 ----D---- C:\WINDOWS\Downloaded Installations
2009-03-03 17:33:19 ----D---- C:\Program Files\Wireless LAN Utility
2009-03-03 17:33:19 ----A---- C:\WINDOWS\system32\unWdWu.exe
2009-02-27 15:28:04 ----D---- C:\Documents and Settings\Philippe\Application Data\WinRAR
2009-02-27 12:20:25 ----HD---- C:\BJPrinter
2009-02-26 16:01:48 ----D---- C:\Program Files\Fichiers communs\Adobe
2009-02-26 15:59:15 ----D---- C:\Documents and Settings\Philippe\Application Data\ABBYY
2009-02-26 15:50:53 ----D---- C:\Program Files\TestLAB 2002
2009-02-26 15:28:59 ----D---- C:\Program Files\Fichiers communs\ABBYY
2009-02-26 15:26:53 ----D---- C:\Program Files\ABBYY FineReader 9.0
2009-02-26 15:26:53 ----D---- C:\Documents and Settings\All Users\Application Data\ABBYY
2009-02-26 15:23:47 ----D---- C:\temp
2009-02-24 14:46:50 ----D---- C:\Documents and Settings\Philippe\Application Data\Help
2009-02-24 12:37:44 ----N---- C:\WINDOWS\system32\MultiSZ.dll
2009-02-20 19:00:52 ----D---- C:\Documents and Settings\Philippe\Application Data\Leadertech
2009-02-19 20:58:34 ----D---- C:\Program Files\BlueSquad
2009-02-19 20:35:23 ----D---- C:\Program Files\Fichiers communs\ScanSoft Shared
2009-02-19 20:35:23 ----D---- C:\Documents and Settings\All Users\Application Data\ScanSoft
2009-02-19 20:35:11 ----D---- C:\Documents and Settings\All Users\Application Data\Zeon
2009-02-19 20:31:02 ----A---- C:\WINDOWS\uninNMP.exe
2009-02-19 20:30:52 ----A---- C:\WINDOWS\unin040c.exe
2009-02-19 19:54:17 ----D---- C:\Program Files\ahead
2009-02-19 14:30:07 ----D---- C:\Documents and Settings\Philippe\Application Data\Copernic
2009-02-18 16:15:49 ----A---- C:\WINDOWS\system32\mlcorert.dll
2009-02-18 14:34:57 ----D---- C:\Documents and Settings\Philippe\Application Data\ScanSoft
2009-02-18 14:19:33 ----D---- C:\Documents and Settings\Philippe\Application Data\OfficeUpdate12
2009-02-18 14:19:13 ----D---- C:\Documents and Settings\All Users\Application Data\Office Genuine Advantage
2009-02-18 12:40:11 ----D---- C:\Documents and Settings\Philippe\Application Data\Macromedia
2009-02-18 12:40:11 ----D---- C:\Documents and Settings\Philippe\Application Data\Adobe
2009-02-18 12:16:09 ----D---- C:\Documents and Settings\Philippe\Application Data\Zeon
2009-02-18 12:13:36 ----D---- C:\Documents and Settings\Philippe\Application Data\DellFaxCtr
2009-02-18 12:13:35 ----D---- C:\Documents and Settings\Philippe\Application Data\Real
2009-02-18 12:13:18 ----D---- C:\Documents and Settings\Philippe\Application Data\Identities
2009-02-18 12:12:39 ----D---- C:\Documents and Settings\Philippe\Application Data\Microsoft
2009-02-17 21:37:03 ----A---- C:\WINDOWS\system32\acXMLParser.dll
2009-02-17 21:37:02 ----A---- C:\WINDOWS\system32\cdintf300.dll
2009-02-17 21:36:48 ----D---- C:\Program Files\Fichiers communs\Ciel
2009-02-17 21:36:48 ----D---- C:\Program Files\Ciel
2009-02-17 21:23:32 ----D---- C:\Program Files\Microsoft Works
2009-02-17 21:23:07 ----D---- C:\Program Files\Microsoft Visual Studio
2009-02-17 21:23:06 ----D---- C:\Program Files\Fichiers communs\DESIGNER
2009-02-17 21:22:29 ----D---- C:\Program Files\Microsoft.NET
2009-02-17 21:20:26 ----D---- C:\Config.Msi
2009-02-17 21:19:27 ----D---- C:\Documents and Settings\All Users\Application Data\Microsoft Help
2009-02-17 21:18:48 ----RHD---- C:\MSOCache
2009-02-17 20:56:51 ----D---- C:\Données Ciel
2009-02-17 20:43:15 ----D---- C:\Documents and Settings\All Users\Application Data\Ciel
2009-02-17 20:43:05 ----D---- C:\Program Files\Fichiers communs\Sage
2009-02-17 20:42:58 ----A---- C:\WINDOWS\system32\jit.dll
2009-02-17 20:42:58 ----A---- C:\WINDOWS\system32\javaee.dll
2009-02-17 20:42:58 ----A---- C:\WINDOWS\system32\dx3j.dll
2009-02-17 20:42:58 ----A---- C:\WINDOWS\setdebug.exe
2009-02-17 20:42:53 ----A---- C:\WINDOWS\system32\wjview.exe
2009-02-17 20:42:53 ----A---- C:\WINDOWS\system32\vmhelper.dll
2009-02-17 20:42:52 ----A---- C:\WINDOWS\system32\msjdbc10.dll
2009-02-17 20:42:52 ----A---- C:\WINDOWS\system32\msjava.dll
2009-02-17 20:42:52 ----A---- C:\WINDOWS\system32\msawt.dll
2009-02-17 20:42:51 ----A---- C:\WINDOWS\system32\jview.exe
2009-02-17 20:42:51 ----A---- C:\WINDOWS\system32\jdbgmgr.exe
2009-02-17 20:42:51 ----A---- C:\WINDOWS\system32\javart.dll
2009-02-17 20:42:51 ----A---- C:\WINDOWS\system32\javaprxy.dll
2009-02-17 20:42:51 ----A---- C:\WINDOWS\system32\javacypt.dll
2009-02-17 20:42:49 ----A---- C:\WINDOWS\system32\clspack.exe

======List of files/folders modified in the last 2 months======

2009-04-14 19:09:12 ----D---- C:\WINDOWS\Temp
2009-04-14 19:09:01 ----D---- C:\WINDOWS\Prefetch
2009-04-14 19:09:01 ----D---- C:\Program Files
2009-04-14 19:08:41 ----D---- C:\Program Files\Dl_cats
2009-04-14 18:57:45 ----D---- C:\WINDOWS\system32\inetsrv
2009-04-14 18:56:32 ----SD---- C:\WINDOWS\Tasks
2009-04-14 18:54:27 ----D---- C:\WINDOWS
2009-04-14 18:54:05 ----AC---- C:\WINDOWS\ModemLog_Olitec Self Memory 56000 V90 & K56 PnP.txt
2009-04-14 18:52:42 ----A---- C:\WINDOWS\SchedLgU.Txt
2009-04-14 18:51:42 ----D---- C:\WINDOWS\system32\config
2009-04-14 18:49:00 ----D---- C:\WINDOWS\system32
2009-04-14 18:47:16 ----RASH---- C:\boot.ini
2009-04-14 18:47:16 ----A---- C:\WINDOWS\win.ini
2009-04-14 18:47:16 ----A---- C:\WINDOWS\system.ini
2009-04-14 18:39:37 ----D---- C:\Program Files\JkDefrag
2009-04-14 18:31:17 ----D---- C:\WINDOWS\Registration
2009-04-14 16:44:23 ----D---- C:\WINDOWS\system32\LogFiles
2009-04-14 14:25:12 ----D---- C:\WINDOWS\system32\CatRoot
2009-04-14 14:24:01 ----RSHDC---- C:\WINDOWS\system32\dllcache
2009-04-14 14:23:12 ----HD---- C:\WINDOWS\inf
2009-04-14 14:23:09 ----D---- C:\WINDOWS\system32\CatRoot2
2009-04-14 12:21:39 ----D---- C:\Pilotes
2009-04-14 11:01:47 ----D---- C:\Program Files\a-squared Free
2009-04-10 19:32:31 ----D---- C:\Documents and Settings\All Users\Application Data\McAfee
2009-04-10 19:28:45 ----D---- C:\WINDOWS\system32\drivers
2009-04-10 19:27:16 ----D---- C:\Program Files\Fichiers communs
2009-04-10 19:08:14 ----SHD---- C:\WINDOWS\Installer
2009-04-10 19:01:28 ----A---- C:\WINDOWS\system32\PerfStringBackup.INI
2009-04-10 12:17:03 ----D---- C:\WINDOWS\Debug
2009-04-08 17:17:03 ----D---- C:\Documents and Settings
2009-04-01 17:12:15 ----D---- C:\WINDOWS\WinSxS
2009-04-01 17:12:15 ----D---- C:\Program Files\Fichiers communs\Microsoft Shared
2009-04-01 14:43:55 ----HD---- C:\Program Files\InstallShield Installation Information
2009-04-01 14:27:08 ----D---- C:\Program Files\Windows Live Toolbar
2009-04-01 14:26:59 ----SD---- C:\Documents and Settings\All Users\Application Data\Microsoft
2009-04-01 13:51:43 ----A---- C:\WINDOWS\ModemLog_Modem standard.txt
2009-03-25 11:59:41 ----D---- C:\WINDOWS\system32\fr-fr
2009-03-25 11:59:40 ----D---- C:\WINDOWS\Media
2009-03-25 11:59:40 ----D---- C:\WINDOWS\Help
2009-03-25 11:59:40 ----D---- C:\Program Files\Internet Explorer
2009-03-25 11:52:18 ----HD---- C:\WINDOWS\$hf_mig$
2009-03-24 19:02:46 ----SD---- C:\WINDOWS\Downloaded Program Files
2009-03-10 22:18:20 ----N---- C:\WINDOWS\system32\WgaTray.exe
2009-03-10 22:18:20 ----A---- C:\WINDOWS\system32\LegitCheckControl.dll
2009-03-10 22:18:00 ----A---- C:\WINDOWS\system32\WgaLogon.dll
2009-03-08 15:18:02 ----A---- C:\WINDOWS\system32\ieframe.dll.mui
2009-03-08 15:16:06 ----A---- C:\WINDOWS\system32\advpack.dll.mui
2009-03-08 15:09:26 ----A---- C:\WINDOWS\system32\iedkcs32.dll
2009-03-08 05:41:16 ----A---- C:\WINDOWS\system32\mshtml.dll
2009-03-08 05:39:48 ----A---- C:\WINDOWS\system32\ieframe.dll
2009-03-08 05:34:58 ----A---- C:\WINDOWS\system32\wininet.dll
2009-03-08 05:34:56 ----A---- C:\WINDOWS\system32\urlmon.dll
2009-03-08 05:34:48 ----A---- C:\WINDOWS\system32\WinFXDocObj.exe
2009-03-08 05:34:48 ----A---- C:\WINDOWS\system32\webcheck.dll
2009-03-08 05:34:30 ----A---- C:\WINDOWS\system32\licmgr10.dll
2009-03-08 05:34:28 ----A---- C:\WINDOWS\system32\url.dll
2009-03-08 05:34:18 ----A---- C:\WINDOWS\system32\occache.dll
2009-03-08 05:34:18 ----A---- C:\WINDOWS\system32\msrating.dll
2009-03-08 05:33:40 ----A---- C:\WINDOWS\system32\corpol.dll
2009-03-08 05:33:26 ----A---- C:\WINDOWS\system32\jsproxy.dll
2009-03-08 05:33:16 ----A---- C:\WINDOWS\system32\jscript.dll
2009-03-08 05:33:08 ----A---- C:\WINDOWS\system32\ieaksie.dll
2009-03-08 05:33:06 ----A---- C:\WINDOWS\system32\vbscript.dll
2009-03-08 05:33:02 ----A---- C:\WINDOWS\system32\ieakeng.dll
2009-03-08 05:32:56 ----A---- C:\WINDOWS\system32\admparse.dll
2009-03-08 05:32:54 ----A---- C:\WINDOWS\system32\ie4uinit.exe
2009-03-08 05:32:52 ----A---- C:\WINDOWS\system32\ieudinit.exe
2009-03-08 05:32:52 ----A---- C:\WINDOWS\system32\ieakui.dll
2009-03-08 05:32:50 ----A---- C:\WINDOWS\system32\iesetup.dll
2009-03-08 05:32:50 ----A---- C:\WINDOWS\system32\iernonce.dll
2009-03-08 05:32:48 ----A---- C:\WINDOWS\system32\advpack.dll
2009-03-08 05:32:46 ----A---- C:\WINDOWS\system32\inseng.dll
2009-03-08 05:32:26 ----A---- C:\WINDOWS\system32\msfeeds.dll
2009-03-08 05:32:22 ----A---- C:\WINDOWS\system32\iertutil.dll
2009-03-08 05:32:04 ----A---- C:\WINDOWS\system32\mstime.dll
2009-03-08 05:31:56 ----A---- C:\WINDOWS\system32\iepeers.dll
2009-03-08 05:31:54 ----A---- C:\WINDOWS\system32\msfeedssync.exe
2009-03-08 05:31:52 ----A---- C:\WINDOWS\system32\msfeedsbs.dll
2009-03-08 05:31:52 ----A---- C:\WINDOWS\system32\icardie.dll
2009-03-08 05:31:44 ----A---- C:\WINDOWS\system32\dxtmsft.dll
2009-03-08 05:31:38 ----A---- C:\WINDOWS\system32\imgutil.dll
2009-03-08 05:31:38 ----A---- C:\WINDOWS\system32\dxtrans.dll
2009-03-08 05:31:36 ----A---- C:\WINDOWS\system32\pngfilt.dll
2009-03-08 05:31:26 ----A---- C:\WINDOWS\system32\mshtmled.dll
2009-03-08 05:31:18 ----A---- C:\WINDOWS\system32\mshtmler.dll
2009-03-08 05:31:02 ----A---- C:\WINDOWS\system32\mshta.exe
2009-03-08 05:22:46 ----A---- C:\WINDOWS\system32\ieui.dll
2009-03-08 05:22:38 ----A---- C:\WINDOWS\system32\msls31.dll
2009-03-08 05:11:12 ----A---- C:\WINDOWS\system32\ieapfltr.dll
2009-03-05 11:01:27 ----D---- C:\WINDOWS\system32\ReinstallBackups
2009-03-03 21:42:51 ----D---- C:\WINDOWS\network diagnostic
2009-03-03 21:20:04 ----D---- C:\Program Files\Inventel
2009-03-03 20:01:35 ----D---- C:\WINDOWS\SoftwareDistribution
2009-02-26 15:50:56 ----D---- C:\WINDOWS\system
2009-02-26 12:14:25 ----D---- C:\WINDOWS\system32\wbem
2009-02-25 22:54:59 ----A---- C:\WINDOWS\system32\MRT.exe
2009-02-24 14:46:50 ----D---- C:\Program Files\palmOne
2009-02-20 19:58:21 ----RSD---- C:\WINDOWS\assembly
2009-02-20 19:57:49 ----D---- C:\Program Files\Paint.NET
2009-02-20 17:24:39 ----D---- C:\WINDOWS\ie8updates
2009-02-19 19:58:40 ----D---- C:\Program Files\Copernic Desktop Search 2
2009-02-19 19:49:51 ----D---- C:\WINDOWS\system32\appmgmt
2009-02-18 12:38:21 ----SHD---- C:\RECYCLER
2009-02-17 21:27:06 ----D---- C:\WINDOWS\ShellNew
2009-02-17 21:26:51 ----D---- C:\Program Files\Fichiers communs\System
2009-02-17 21:23:11 ----D---- C:\Program Files\Microsoft Office
2009-02-17 21:22:38 ----RSD---- C:\WINDOWS\Fonts
2009-02-17 20:42:57 ----D---- C:\WINDOWS\java

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R1 GRD;G DATA Rootkit Detector Driver; \??\C:\WINDOWS\system32\drivers\GRD.sys []
R1 intelppm;Pilote de processeur Intel; C:\WINDOWS\system32\DRIVERS\intelppm.sys [2008-04-14 40576]
R1 KLIF;KLIF; C:\WINDOWS\System32\DRIVERS\klif.sys [2009-02-18 186128]
R1 mfehidk;McAfee Inc. mfehidk; C:\WINDOWS\system32\drivers\mfehidk.sys [2009-01-16 213640]
R1 MPFP;MPFP; C:\WINDOWS\System32\Drivers\Mpfp.sys [2008-10-23 120136]
R2 GDTdiInterceptor;GDTdiInterceptor; \??\C:\WINDOWS\system32\drivers\GDTdiIcpt.sys []
R3 AtcL002;NDIS Miniport Driver for Atheros L2 Fast Ethernet Controller; C:\WINDOWS\system32\DRIVERS\l251x86.sys [2007-07-03 29696]
R3 GDMnIcpt;GDMnIcpt; \??\C:\WINDOWS\system32\drivers\MiniIcpt.sys []
R3 GearAspiWDM;GEARAspiWDM; C:\WINDOWS\System32\drivers\GEARAspiWDM.sys [2008-02-22 16168]
R3 HDAudBus;Pilote de bus Microsoft UAA pour High Definition Audio; C:\WINDOWS\system32\DRIVERS\HDAudBus.sys [2008-04-13 144384]
R3 HidUsb;Pilote de classe HID Microsoft; C:\WINDOWS\system32\DRIVERS\hidusb.sys [2008-04-13 10368]
R3 HookCentre;HookCentre; \??\C:\WINDOWS\system32\drivers\HookCentre.sys []
R3 ialm;ialm; C:\WINDOWS\system32\DRIVERS\igxpmp32.sys [2006-10-05 1181824]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\WINDOWS\system32\drivers\RtkHDAud.sys [2007-04-10 4397568]
R3 mfeavfk;McAfee Inc. mfeavfk; C:\WINDOWS\system32\drivers\mfeavfk.sys [2009-01-16 79304]
R3 mfebopk;McAfee Inc. mfebopk; C:\WINDOWS\system32\drivers\mfebopk.sys [2009-01-16 35272]
R3 mfesmfk;McAfee Inc. mfesmfk; C:\WINDOWS\system32\drivers\mfesmfk.sys [2009-01-16 40552]
R3 MODEMCSA;Périphérique de filtrage de flux Unimodem; C:\WINDOWS\system32\drivers\MODEMCSA.sys [2001-08-17 16128]
R3 MTsensor;ATK0110 ACPI UTILITY; C:\WINDOWS\system32\DRIVERS\ASACPI.sys [2004-08-13 5810]
R3 NETGEARUHOST;NETGEAR Network USB Host Controller; C:\WINDOWS\system32\DRIVERS\NETGEARUHOST.sys [2007-03-08 12032]
R3 NETGEARUHUB;NETGEAR Network USB Root Hub; C:\WINDOWS\system32\DRIVERS\NETGEARUHUB.sys [2007-03-08 39424]
R3 RimVSerPort;RIM Virtual Serial Port v2; C:\WINDOWS\system32\DRIVERS\RimSerial.sys [2006-06-30 26752]
R3 SIS163u;SiS163 USB Wireless LAN Adapter Driver; C:\WINDOWS\system32\DRIVERS\sis163u.sys [2005-11-02 215552]
R3 usbccgp;Pilote parent générique USB Microsoft; C:\WINDOWS\system32\DRIVERS\usbccgp.sys [2008-04-13 32128]
R3 usbehci;Pilote miniport de contrôleur d'hôte amélioré Microsoft USB 2.0; C:\WINDOWS\system32\DRIVERS\usbehci.sys [2008-04-13 30208]
R3 usbhub;Concentrateur USB2; C:\WINDOWS\system32\DRIVERS\usbhub.sys [2008-04-13 59520]
R3 usbohci;Pilote miniport de contrôleur hôte ouvert USB Microsoft; C:\WINDOWS\system32\DRIVERS\usbohci.sys [2008-04-13 17152]
R3 usbprint;Classe d'imprimantes USB Microsoft; C:\WINDOWS\system32\DRIVERS\usbprint.sys [2008-04-13 25856]
R3 usbscan;Pilote de scanneur USB; C:\WINDOWS\system32\DRIVERS\usbscan.sys [2008-04-13 15104]
R3 USBSTOR;Pilote de stockage de masse USB; C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS [2008-04-13 26368]
R3 usbuhci;Pilote miniport de contrôleur hôte universel USB Microsoft; C:\WINDOWS\system32\DRIVERS\usbuhci.sys [2008-04-13 20608]
S1 kbdhid;Pilote HID de clavier; C:\WINDOWS\system32\DRIVERS\kbdhid.sys [2008-04-14 14720]
S3 mferkdk;McAfee Inc. mferkdk; C:\WINDOWS\system32\drivers\mferkdk.sys [2009-01-16 34216]
S3 mouhid;Pilote HID de souris; C:\WINDOWS\system32\DRIVERS\mouhid.sys [2001-08-23 12288]
S3 NETGEARUCOMP;NETGEAR Network USB Composite Device; C:\WINDOWS\system32\DRIVERS\NETGEARUCOMP.sys [2007-03-08 12672]
S3 NuidFltr;NUID filter driver; C:\WINDOWS\system32\DRIVERS\NuidFltr.sys [2007-01-15 9728]
S3 PalmUSBD;PalmUSBD; C:\WINDOWS\system32\drivers\PalmUSBD.sys []
S3 PCAMPR5;PCAMPR5 NDIS Protocol Driver; \??\C:\WINDOWS\system32\PCAMPR5.SYS []
S3 PCANDIS5;PCANDIS5 NDIS Protocol Driver; \??\C:\WINDOWS\system32\PCANDIS5.SYS []
S3 RimUsb;Appareil BlackBerry; C:\WINDOWS\System32\Drivers\RimUsb.sys [2006-07-13 22528]
S3 ROOTMODEM;Microsoft Legacy Modem Driver; C:\WINDOWS\System32\Drivers\RootMdm.sys [2004-08-05 5888]
S3 SONYPVU1;Pilote de filtrage Sony USB (SONYPVU1); C:\WINDOWS\system32\DRIVERS\SONYPVU1.SYS [2001-08-17 7552]
S3 Wdf01000;Wdf01000; C:\WINDOWS\system32\DRIVERS\Wdf01000.sys [2006-11-02 492000]
S3 WudfPf;Windows Driver Foundation - User-mode Driver Framework Platform Driver; C:\WINDOWS\system32\DRIVERS\WudfPf.sys [2006-09-28 77568]
S3 WudfRd;Windows Driver Foundation - User-mode Driver Framework Reflector; C:\WINDOWS\system32\DRIVERS\wudfrd.sys [2006-09-28 82944]
S4 IntelIde;IntelIde; C:\WINDOWS\system32\drivers\IntelIde.sys []

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 a2free;a-squared Free Service; C:\Program Files\a-squared Free\a2service.exe [2009-02-27 425080]
R2 ABBYY.Licensing.FineReader.Professional.9.0;ABBYY FineReader 9.0 PE Licensing Service; C:\Program Files\Fichiers communs\ABBYY\FineReader\9.00\Licensing\PE\NetworkLicenseServer.exe [2008-05-16 759072]
R2 AVKService;Planificateur G DATA; C:\Program Files\G DATA\TotalCare\AVK\AVKService.exe [2008-09-08 386120]
R2 AVKWCtl;Gardien d'AntiVirus; C:\Program Files\G DATA\TotalCare\AVK\AVKWCtl.exe [2008-08-14 1185496]
R2 dlcq_device;dlcq_device; C:\WINDOWS\system32\dlcqcoms.exe [2006-12-12 537480]
R2 FTRTSVC;France Telecom Routing Table Service; C:\PROGRA~1\FICHIE~1\France Telecom\Shared Modules\FTRTSVC\0\FTRTSVC.exe [2007-12-11 65536]
R2 IISADMIN;Administration IIS; C:\WINDOWS\system32\inetsrv\inetinfo.exe [2008-04-14 15872]
R2 JavaQuickStarterService;Java Quick Starter; C:\Program Files\Java\jre6\bin\jqs.exe [2009-04-08 152984]
R2 mcmscsvc;McAfee Services; C:\PROGRA~1\McAfee\MSC\mcmscsvc.exe [2009-01-08 797864]
R2 McNASvc;McAfee Network Agent; c:\PROGRA~1\FICHIE~1\mcafee\mna\mcnasvc.exe [2009-01-09 2482848]
R2 McProxy;McAfee Proxy Service; c:\PROGRA~1\FICHIE~1\mcafee\mcproxy\mcproxy.exe [2009-01-09 359952]
R2 McShield;McAfee Real-time Scanner; C:\PROGRA~1\McAfee\VIRUSS~1\mcshield.exe [2009-01-16 144704]
R2 MpfService;McAfee Personal Firewall Service; C:\Program Files\McAfee\MPF\MPFSrv.exe [2009-01-09 884360]
R2 MSK80Service;McAfee Anti-Spam Service; C:\Program Files\McAfee\MSK\MskSrver.exe [2009-01-09 26640]
R2 SMTPSVC;Simple Mail Transfer Protocol (SMTP); C:\WINDOWS\system32\inetsrv\inetinfo.exe [2008-04-14 15872]
R2 SNMP;Service SNMP; C:\WINDOWS\System32\snmp.exe [2008-04-14 33280]
R2 W3SVC;Publication World Wide Web; C:\WINDOWS\system32\inetsrv\inetinfo.exe [2008-04-14 15872]
R2 WinDefend;Windows Defender; C:\Program Files\Windows Defender\MsMpEng.exe [2006-11-03 13592]
R3 McSysmon;McAfee SystemGuards; C:\PROGRA~1\McAfee\VIRUSS~1\mcsysmon.exe [2009-01-16 606736]
R3 Service de sauvegarde G DATA;Service de sauvegarde G DATA; C:\Program Files\G DATA\TotalCare\AVKBackup\AVKBackupService.exe [2008-08-22 882760]
S2 Fax;Fax; C:\WINDOWS\system32\fxssvc.exe [2008-04-14 268800]
S3 aspnet_state;Service d'état ASP.NET; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe [2008-07-25 34312]
S3 BvrpKrnl;BvrpKrnl; C:\Program Files\WinPhone Ultimate Edition\BVRPKrnl.exe [2006-01-16 544768]
S3 clr_optimization_v2.0.50727_32;.NET Runtime Optimization Service v2.0.50727_X86; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe [2008-07-25 69632]
S3 FontCache3.0.0.0;Windows Presentation Foundation Font Cache 3.0.0.0; c:\WINDOWS\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe [2008-07-29 46104]
S3 G DATA Tuner Service;G DATA Tuner Service; C:\Program Files\G DATA\TotalCare\AVKTuner\AVKTunerService.exe [2008-08-19 925768]
S3 gusvc;Google Updater Service; C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe [2008-08-01 136120]
S3 IDriverT;InstallDriver Table Manager; C:\Program Files\Fichiers communs\InstallShield\Driver\1150\Intel 32\IDriverT.exe [2005-11-14 69632]
S3 idsvc;Windows CardSpace; C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe [2008-07-29 881664]
S3 LPDSVC;Serveur d'impression TCP/IP; C:\WINDOWS\system32\tcpsvcs.exe [2004-08-05 19456]
S3 MBackMonitor;MBackMonitor; C:\Program Files\McAfee\MBK\MBackMonitor.exe [2009-01-09 68112]
S3 McODS;McAfee Scanner; C:\PROGRA~1\McAfee\VIRUSS~1\mcods.exe [2009-01-17 365072]
S3 odserv;Microsoft Office Diagnostics Service; C:\Program Files\Fichiers communs\Microsoft Shared\OFFICE12\ODSERV.EXE [2007-08-24 443776]
S3 ose;Office Source Engine; C:\Program Files\Fichiers communs\Microsoft Shared\Source Engine\OSE.EXE [2006-10-26 145184]
S3 SNMPTRAP;Service d'interruption SNMP; C:\WINDOWS\System32\snmptrap.exe [2008-04-14 8704]
S3 WMPNetworkSvc;Service Partage réseau du Lecteur Windows Media; C:\Program Files\Windows Media Player\WMPNetwk.exe [2006-11-03 918016]
S3 WudfSvc;Windows Driver Foundation - User-mode Driver Framework; C:\WINDOWS\system32\svchost.exe [2008-04-14 14336]
S4 NetTcpPortSharing;Service de partage de ports Net.Tcp; C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe [2008-07-29 132096]

-----------------EOF-----------------
Voilà, mon cher verni29 ! Que dois-je faire maintenant ?

   
Répondre à MENUISERIE94
Posez votre question Répondre
Ils ont besoin de votre aide