Gro pb winifigter lancement application
Résolu/Fermé
A voir également:
- Gro pb winifigter lancement application
- Application gps sans internet - Guide
- Desinstaller application sur pc - Guide
- Application partage photo entre amis - Guide
- Télécharger application tensiomètre gratuit - Télécharger - Vie quotidienne
- Lancement automatique application windows 10 - Guide
10 réponses
Utilisateur anonyme
27 juil. 2009 à 14:57
27 juil. 2009 à 14:57
salut :
Désactive le contrôle des comptes utilisateurs (tu le réactiveras après ta désinfection):
- Vas dans "Démarrer" puis Panneau de configuration.
- Double Clique sur l'icône Comptes d'utilisateurs et sur Activer ou désactiver le contrôle des comptes d'utilisateurs.
- Clique sur Continuer.
- Décoche la case Utiliser le contrôle des comptes d'utilisateurs pour vous aider à protéger votre ordinateur.
- Valide par OK et redémarre.
Tuto
ensuite :
♦ Télécharge DDS.scr de sUBs Sur le bureau.:
♦ L'outil ne nécessite pas d'installation.
♦ Lance-le en cliquant sur l'icône dds.scr
♦ Cette fenêtre DOS va apparaitre:
♦ Le scan ne doit pas dépasser trois minutes.
♦ Un premier rapport va s'ouvrir que tu enregistreras sous DDS.txt par défaut sur le bureau.
♦ Il te sera demandé si tu veux faire le scan optionnel.
♦ Accepte par Oui
♦ Un nouveau rapport s'ouvre que tu enregistres sous Attach.txt sur le bureau.
♦ Tu ne le fourniras que si nécessaire.
♦ Poste le rapport DDS.txt
Désactive le contrôle des comptes utilisateurs (tu le réactiveras après ta désinfection):
- Vas dans "Démarrer" puis Panneau de configuration.
- Double Clique sur l'icône Comptes d'utilisateurs et sur Activer ou désactiver le contrôle des comptes d'utilisateurs.
- Clique sur Continuer.
- Décoche la case Utiliser le contrôle des comptes d'utilisateurs pour vous aider à protéger votre ordinateur.
- Valide par OK et redémarre.
Tuto
ensuite :
♦ Télécharge DDS.scr de sUBs Sur le bureau.:
♦ L'outil ne nécessite pas d'installation.
♦ Lance-le en cliquant sur l'icône dds.scr
♦ Cette fenêtre DOS va apparaitre:
♦ Le scan ne doit pas dépasser trois minutes.
♦ Un premier rapport va s'ouvrir que tu enregistreras sous DDS.txt par défaut sur le bureau.
♦ Il te sera demandé si tu veux faire le scan optionnel.
♦ Accepte par Oui
♦ Un nouveau rapport s'ouvre que tu enregistres sous Attach.txt sur le bureau.
♦ Tu ne le fourniras que si nécessaire.
♦ Poste le rapport DDS.txt
le contrôle des comptes utilisateurs est desactiver depuis longtemps
est il ne ve pa demarer dds.scr
est il ne ve pa demarer dds.scr
Utilisateur anonyme
27 juil. 2009 à 15:05
27 juil. 2009 à 15:05
clic droit en tant qu'administrateur et si negatif , en mode sans echec
UNLESS SPECIFICALLY INSTRUCTED, DO NOT POST THIS LOG.
IF REQUESTED, ZIP IT UP & ATTACH IT
DDS (Ver_09-06-26.01)
Microsoft® Windows Vista™ Édition Familiale Premium
Boot Device: \Device\HarddiskVolume2
Install Date: 08/09/2008 21:34:24
System Uptime: 27/07/2009 15:08:16 (0 hours ago)
Motherboard: Acer, Inc. | | Mammoth
Processor: Intel(R) Core(TM)2 Duo CPU T5800 @ 2.00GHz | U2E1 | 1995/200mhz
==== Disk Partitions =========================
C: is FIXED (NTFS) - 111 GiB total, 45,445 GiB free.
D: is FIXED (NTFS) - 111 GiB total, 99,935 GiB free.
E: is CDROM ()
==== Disabled Device Manager Items =============
Class GUID:
Description:
Device ID: ROOT\SCSIADAPTER\0000
Manufacturer:
Name:
PNP Device ID: ROOT\SCSIADAPTER\0000
Service:
Class GUID: {4d36e97d-e325-11ce-bfc1-08002be10318}
Description: Périphériques IR grand public
Device ID: ROOT\SYSTEM\0001
Manufacturer: Microsoft
Name: Périphériques IR grand public
PNP Device ID: ROOT\SYSTEM\0001
Service: circlass
==== System Restore Points ===================
RP243: 26/06/2009 21:02:45 - Point de contrôle planifié
RP244: 28/06/2009 14:32:36 - Point de contrôle planifié
RP245: 01/07/2009 12:02:44 - Point de contrôle planifié
RP246: 03/07/2009 21:37:17 - Point de contrôle planifié
RP248: 11/07/2009 17:54:36 - DirectX est installé
RP249: 12/07/2009 21:15:30 - Point de contrôle planifié
RP250: 13/07/2009 12:03:39 - Point de contrôle planifié
RP251: 21/07/2009 14:23:04 - Point de contrôle planifié
==== Installed Programs ======================
123 Free Solitaire
2007 Microsoft Office Suite Service Pack 1 (SP1)
3Planesoft Screensaver Manager 1.2
7-Zip 4.65
Acer Arcade Deluxe
Acer Bio Protection
Acer Crystal Eye Webcam 2.0.8
Acer eAudio Management
Acer eDataSecurity Management
Acer Empowering Technology
Acer ePower Management
Acer eRecovery Management
Acer eSettings Management
Acer GameZone Console 2.0.1.1
Acer GridVista
Acer Mobility Center Plug-In
Acer ScreenSaver
Activation Assistant for the 2007 Microsoft Office suites
Adobe Acrobat 5.0
Adobe Acrobat 8 Professional - English, Français, Deutsch
Adobe Acrobat 8.1.3 Professional
Adobe After Effects CS3
Adobe After Effects CS3 Presets
Adobe Anchor Service CS3
Adobe Asset Services CS3
Adobe Bridge CS3
Adobe Bridge Start Meeting
Adobe BridgeTalk Plugin CS3
Adobe Camera Raw 4.0
Adobe CMaps
Adobe Color - Photoshop Specific
Adobe Color Common Settings
Adobe Color EU Recommended Settings
Adobe Color JA Extra Settings
Adobe Color NA Extra Settings
Adobe Contribute CS3
Adobe Creative Suite 3 Master Collection
Adobe Default Language CS3
Adobe Device Central CS3
Adobe Dreamweaver CS3
Adobe Encore CS3
Adobe Encore CS3 Codecs
Adobe ExtendScript Toolkit 2
Adobe Extension Manager CS3
Adobe Fireworks CS3
Adobe Flash CS3
Adobe Flash Player 10 ActiveX
Adobe Flash Player 10 Plugin
Adobe Flash Video Encoder
Adobe Fonts All
Adobe Help Viewer CS3
Adobe Illustrator CS3
Adobe InDesign CS3
Adobe InDesign CS3 Icon Handler
Adobe Linguistics CS3
Adobe MotionPicture Color Files
Adobe PDF Library Files
Adobe Photoshop CS3
Adobe Premiere Pro CS3
Adobe Premiere Pro CS3 Functional Content
Adobe Premiere Pro CS3 Third Party Content
Adobe Reader 8.1.3
Adobe Setup
Adobe Shockwave Player
Adobe SING CS3
Adobe Soundbooth CS3
Adobe Soundbooth CS3 Codecs
Adobe Stock Photos CS3
Adobe Type Support
Adobe Update Manager CS3
Adobe Version Cue CS3 Client
Adobe Version Cue CS3 Server
Adobe Video Profiles
Adobe WAS CS3
Adobe WinSoft Linguistics Plugin
Adobe XMP DVA Panels CS3
Adobe XMP Panels CS3
Agatha Christie Death on the Nile
Agere Systems HDA Modem
AHV content for Acrobat and Flash
Ajouter ou supprimer Adobe Creative Suite 3 Master Collection
Alice Greenfingers
Applian FLV Player
Architecte 3D Silver Advanced
ArcSoft PhotoStudio 5.5
Army Hero Screensaver
AuthenTec Fingerprint Sensor Minimum Install
avast! Antivirus
AVerMedia A310 (MiniCard, DVB-T) 1.1.0.27
Azada
Battlefield 2(TM)
Battlefield Heroes
BF2 Unlock Weapons Mods Final
Big Kahuna Reef
Bricks of Egypt
Broadcom Gigabit Integrated Controller
Cake Mania
Canon ScanGear Starter
CanoScan Toolbox Ver4.9
CF SCR
Chicken Invaders 3
Code de la Route Pratic
Contextual Tool Snappyads
Cross Fire En
Digsby
Diner Dash Flo on the Go
Discovery 3D Screensaver 1.1
Disketch CD Label Software
e-Carte Bleue Caisse d'Epargne
eoEngine 8.0
eSobi v2
Far Cry 2
Fight Screen saver
Fireplace 3D Screensaver 1.0
Fraps
Google Desktop
Google Toolbar for Internet Explorer
Google Update Helper
Google Earth
Graffiti Studio 2.0
Gutterball
Heredis 8
HyperCam 2
Ice Clock 3D Screensaver 1.1
IKEA Home Planner
Intel® Matrix Storage Manager
Java(TM) 6 Update 13
Jewel Quest Solitaire
JMicron JMB38X Flash Media Controller
Kick N Rush
Kwinzy 1.0 build 127
La France à la loupe
Launch Manager
Lexmark Z500-Z600 Series
LightScribe 1.4.142.1
LimeWire 5.1.2
Livre Album Fuji Photo
Mahjong Escape Ancient China
Mahjongg Artifacts
MathmosScreensaver
Mechanical Clock 3D Screensaver 1.0
Messenger Plus! Live & Sponsor (CiD)
Microsoft Office Excel MUI (French) 2007
Microsoft Office Home and Student 2007
Microsoft Office OneNote MUI (French) 2007
Microsoft Office PowerPoint MUI (French) 2007
Microsoft Office Proof (Arabic) 2007
Microsoft Office Proof (Dutch) 2007
Microsoft Office Proof (English) 2007
Microsoft Office Proof (French) 2007
Microsoft Office Proof (German) 2007
Microsoft Office Proof (Spanish) 2007
Microsoft Office Proofing (French) 2007
Microsoft Office Shared MUI (French) 2007
Microsoft Office Word MUI (French) 2007
Microsoft Visual C++ 2005 Redistributable
Microsoft Works
Mozilla Firefox (3.0.12)
Mozilla Firefox (3.5b4)
MSXML 4.0 SP2 (KB936181)
MSXML 4.0 SP2 (KB941833)
MSXML 4.0 SP2 (KB954430)
myBabylon_English Toolbar
Mystery Case Files - Huntsville
Mystery Solitaire - Secret Island
NCH Toolbox
NTI Backup Now 5
NTI Backup Now Standard
NTI Media Maker 8
NVIDIA Drivers
Orion
Outil de mise à jour Google
Paintball
PDF Settings
Pen Tablet
Performance Dashboard Snappyads
PhotoNow!
PowerDirector
PremierOpinion
Prison Tycoon 2
PunkBuster Services
Quick Zip 4.60.012
Realtek High Definition Audio Driver
Sandlot Games Client Services 1.2.2
Search Assistant Mysidesearch
Skype™ 3.8
Snappyads Games Collection
Synaptics Pointing Device Driver
TeamSpeak 2 RC2
TeamSpeak Client
The One Ring 3D Screensaver 1.0
The Three Missing Words - Puzzles
TmNationsForever
Tom Clancy's Rainbow Six: Lockdown
totalvid
TRACTION In-Game Radio Player 1.0 Beta
TuneUp Utilities 2008
Turbo Pizza
Unlock&EuFor Weapon Test Mod
Update for Office 2007 (KB946691)
Versailles
VirtualCloneDrive
VisuIco® 3.12
VLC media player 0.9.4
War Rock
WarRock
Water Clock 3D Screensaver 1.0
Watermill 3D Screensaver 2.0
Winamp
Winbond CIR Device Drivers
Windows Live Messenger
Windows Live OneCare safety scanner
Windows Media Player Firefox Plugin
WinRAR archiver
Yahoo! Install Manager
Zuma Deluxe
IF REQUESTED, ZIP IT UP & ATTACH IT
DDS (Ver_09-06-26.01)
Microsoft® Windows Vista™ Édition Familiale Premium
Boot Device: \Device\HarddiskVolume2
Install Date: 08/09/2008 21:34:24
System Uptime: 27/07/2009 15:08:16 (0 hours ago)
Motherboard: Acer, Inc. | | Mammoth
Processor: Intel(R) Core(TM)2 Duo CPU T5800 @ 2.00GHz | U2E1 | 1995/200mhz
==== Disk Partitions =========================
C: is FIXED (NTFS) - 111 GiB total, 45,445 GiB free.
D: is FIXED (NTFS) - 111 GiB total, 99,935 GiB free.
E: is CDROM ()
==== Disabled Device Manager Items =============
Class GUID:
Description:
Device ID: ROOT\SCSIADAPTER\0000
Manufacturer:
Name:
PNP Device ID: ROOT\SCSIADAPTER\0000
Service:
Class GUID: {4d36e97d-e325-11ce-bfc1-08002be10318}
Description: Périphériques IR grand public
Device ID: ROOT\SYSTEM\0001
Manufacturer: Microsoft
Name: Périphériques IR grand public
PNP Device ID: ROOT\SYSTEM\0001
Service: circlass
==== System Restore Points ===================
RP243: 26/06/2009 21:02:45 - Point de contrôle planifié
RP244: 28/06/2009 14:32:36 - Point de contrôle planifié
RP245: 01/07/2009 12:02:44 - Point de contrôle planifié
RP246: 03/07/2009 21:37:17 - Point de contrôle planifié
RP248: 11/07/2009 17:54:36 - DirectX est installé
RP249: 12/07/2009 21:15:30 - Point de contrôle planifié
RP250: 13/07/2009 12:03:39 - Point de contrôle planifié
RP251: 21/07/2009 14:23:04 - Point de contrôle planifié
==== Installed Programs ======================
123 Free Solitaire
2007 Microsoft Office Suite Service Pack 1 (SP1)
3Planesoft Screensaver Manager 1.2
7-Zip 4.65
Acer Arcade Deluxe
Acer Bio Protection
Acer Crystal Eye Webcam 2.0.8
Acer eAudio Management
Acer eDataSecurity Management
Acer Empowering Technology
Acer ePower Management
Acer eRecovery Management
Acer eSettings Management
Acer GameZone Console 2.0.1.1
Acer GridVista
Acer Mobility Center Plug-In
Acer ScreenSaver
Activation Assistant for the 2007 Microsoft Office suites
Adobe Acrobat 5.0
Adobe Acrobat 8 Professional - English, Français, Deutsch
Adobe Acrobat 8.1.3 Professional
Adobe After Effects CS3
Adobe After Effects CS3 Presets
Adobe Anchor Service CS3
Adobe Asset Services CS3
Adobe Bridge CS3
Adobe Bridge Start Meeting
Adobe BridgeTalk Plugin CS3
Adobe Camera Raw 4.0
Adobe CMaps
Adobe Color - Photoshop Specific
Adobe Color Common Settings
Adobe Color EU Recommended Settings
Adobe Color JA Extra Settings
Adobe Color NA Extra Settings
Adobe Contribute CS3
Adobe Creative Suite 3 Master Collection
Adobe Default Language CS3
Adobe Device Central CS3
Adobe Dreamweaver CS3
Adobe Encore CS3
Adobe Encore CS3 Codecs
Adobe ExtendScript Toolkit 2
Adobe Extension Manager CS3
Adobe Fireworks CS3
Adobe Flash CS3
Adobe Flash Player 10 ActiveX
Adobe Flash Player 10 Plugin
Adobe Flash Video Encoder
Adobe Fonts All
Adobe Help Viewer CS3
Adobe Illustrator CS3
Adobe InDesign CS3
Adobe InDesign CS3 Icon Handler
Adobe Linguistics CS3
Adobe MotionPicture Color Files
Adobe PDF Library Files
Adobe Photoshop CS3
Adobe Premiere Pro CS3
Adobe Premiere Pro CS3 Functional Content
Adobe Premiere Pro CS3 Third Party Content
Adobe Reader 8.1.3
Adobe Setup
Adobe Shockwave Player
Adobe SING CS3
Adobe Soundbooth CS3
Adobe Soundbooth CS3 Codecs
Adobe Stock Photos CS3
Adobe Type Support
Adobe Update Manager CS3
Adobe Version Cue CS3 Client
Adobe Version Cue CS3 Server
Adobe Video Profiles
Adobe WAS CS3
Adobe WinSoft Linguistics Plugin
Adobe XMP DVA Panels CS3
Adobe XMP Panels CS3
Agatha Christie Death on the Nile
Agere Systems HDA Modem
AHV content for Acrobat and Flash
Ajouter ou supprimer Adobe Creative Suite 3 Master Collection
Alice Greenfingers
Applian FLV Player
Architecte 3D Silver Advanced
ArcSoft PhotoStudio 5.5
Army Hero Screensaver
AuthenTec Fingerprint Sensor Minimum Install
avast! Antivirus
AVerMedia A310 (MiniCard, DVB-T) 1.1.0.27
Azada
Battlefield 2(TM)
Battlefield Heroes
BF2 Unlock Weapons Mods Final
Big Kahuna Reef
Bricks of Egypt
Broadcom Gigabit Integrated Controller
Cake Mania
Canon ScanGear Starter
CanoScan Toolbox Ver4.9
CF SCR
Chicken Invaders 3
Code de la Route Pratic
Contextual Tool Snappyads
Cross Fire En
Digsby
Diner Dash Flo on the Go
Discovery 3D Screensaver 1.1
Disketch CD Label Software
e-Carte Bleue Caisse d'Epargne
eoEngine 8.0
eSobi v2
Far Cry 2
Fight Screen saver
Fireplace 3D Screensaver 1.0
Fraps
Google Desktop
Google Toolbar for Internet Explorer
Google Update Helper
Google Earth
Graffiti Studio 2.0
Gutterball
Heredis 8
HyperCam 2
Ice Clock 3D Screensaver 1.1
IKEA Home Planner
Intel® Matrix Storage Manager
Java(TM) 6 Update 13
Jewel Quest Solitaire
JMicron JMB38X Flash Media Controller
Kick N Rush
Kwinzy 1.0 build 127
La France à la loupe
Launch Manager
Lexmark Z500-Z600 Series
LightScribe 1.4.142.1
LimeWire 5.1.2
Livre Album Fuji Photo
Mahjong Escape Ancient China
Mahjongg Artifacts
MathmosScreensaver
Mechanical Clock 3D Screensaver 1.0
Messenger Plus! Live & Sponsor (CiD)
Microsoft Office Excel MUI (French) 2007
Microsoft Office Home and Student 2007
Microsoft Office OneNote MUI (French) 2007
Microsoft Office PowerPoint MUI (French) 2007
Microsoft Office Proof (Arabic) 2007
Microsoft Office Proof (Dutch) 2007
Microsoft Office Proof (English) 2007
Microsoft Office Proof (French) 2007
Microsoft Office Proof (German) 2007
Microsoft Office Proof (Spanish) 2007
Microsoft Office Proofing (French) 2007
Microsoft Office Shared MUI (French) 2007
Microsoft Office Word MUI (French) 2007
Microsoft Visual C++ 2005 Redistributable
Microsoft Works
Mozilla Firefox (3.0.12)
Mozilla Firefox (3.5b4)
MSXML 4.0 SP2 (KB936181)
MSXML 4.0 SP2 (KB941833)
MSXML 4.0 SP2 (KB954430)
myBabylon_English Toolbar
Mystery Case Files - Huntsville
Mystery Solitaire - Secret Island
NCH Toolbox
NTI Backup Now 5
NTI Backup Now Standard
NTI Media Maker 8
NVIDIA Drivers
Orion
Outil de mise à jour Google
Paintball
PDF Settings
Pen Tablet
Performance Dashboard Snappyads
PhotoNow!
PowerDirector
PremierOpinion
Prison Tycoon 2
PunkBuster Services
Quick Zip 4.60.012
Realtek High Definition Audio Driver
Sandlot Games Client Services 1.2.2
Search Assistant Mysidesearch
Skype™ 3.8
Snappyads Games Collection
Synaptics Pointing Device Driver
TeamSpeak 2 RC2
TeamSpeak Client
The One Ring 3D Screensaver 1.0
The Three Missing Words - Puzzles
TmNationsForever
Tom Clancy's Rainbow Six: Lockdown
totalvid
TRACTION In-Game Radio Player 1.0 Beta
TuneUp Utilities 2008
Turbo Pizza
Unlock&EuFor Weapon Test Mod
Update for Office 2007 (KB946691)
Versailles
VirtualCloneDrive
VisuIco® 3.12
VLC media player 0.9.4
War Rock
WarRock
Water Clock 3D Screensaver 1.0
Watermill 3D Screensaver 2.0
Winamp
Winbond CIR Device Drivers
Windows Live Messenger
Windows Live OneCare safety scanner
Windows Media Player Firefox Plugin
WinRAR archiver
Yahoo! Install Manager
Zuma Deluxe
Vous n’avez pas trouvé la réponse que vous recherchez ?
Posez votre question
DDS (Ver_09-06-26.01) - NTFSx86 NETWORK
Run by romain at 15:16:05,05 on 27/07/2009
Internet Explorer: 7.0.6001.18000 BrowserJavaVersion: 1.6.0_13
Microsoft® Windows Vista™ Édition Familiale Premium 6.0.6001.1.1252.33.1036.18.3066.2458 [GMT 2:00]
AV: avast! antivirus 4.8.1229 [VPS 081114-0] *On-access scanning enabled* (Updated) {7591DB91-41F0-48A3-B128-1A293FD8233D}
SP: Windows Defender *enabled* (Updated) {D68DDC3A-831F-4FAE-9E44-DA132C1ACF46}
SP: avast! antivirus 4.8.1229 [VPS 081114-0] *enabled* (Updated) {7591DB91-41F0-48A3-B128-1A293FD8233D}
============== Running Processes ===============
C:\Windows\system32\wininit.exe
C:\Windows\system32\lsm.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
C:\Windows\system32\svchost.exe -k rpcss
C:\Windows\System32\svchost.exe -k secsvcs
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\system32\svchost.exe -k netsvcs
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k NetworkService
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted
C:\Windows\Explorer.EXE
C:\Program Files\Windows Media Player\wmpnscfg.exe
C:\Windows\System32\svchost.exe -k swprv
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Windows\system32\wbem\wmiprvse.exe
C:\Windows\system32\wbem\wmiprvse.exe
C:\Users\romain\Desktop\dds.scr
C:\Windows\system32\conime.exe
============== Pseudo HJT Report ===============
uStart Page = hxxp://search.babylon.com/home
uDefault_Page_URL = hxxp://homepage.acer.com/rdr.aspx?b=ACAW&l=040c&s=2&o=vp32&d=0908&m=aspire_7730g
mStart Page = hxxp://homepage.acer.com/rdr.aspx?b=ACAW&l=040c&s=2&o=vp32&d=0908&m=aspire_7730g
mDefault_Page_URL = hxxp://fr.fr.acer.yahoo.com
uInternet Settings,ProxyOverride = *.local
uURLSearchHooks: myBabylon English Toolbar: {b2e293ee-fd7e-4c71-a714-5f4750d8d7b7} - c:\program files\mybabylon_english\tbmyB1.dll
mURLSearchHooks: myBabylon English Toolbar: {b2e293ee-fd7e-4c71-a714-5f4750d8d7b7} - c:\program files\mybabylon_english\tbmyB1.dll
BHO: {02478D38-C3F9-4efb-9B51-7695ECA05670} - No File
BHO: Aide pour le lien d'Adobe PDF Reader: {06849e9f-c8d7-4d59-b87d-784b7d6be0b3} - c:\program files\common files\adobe\acrobat\activex\AcroIEHelper.dll
BHO: ContributeBHO Class: {074c1dc5-9320-4a9a-947d-c042949c6216} - d:\program files\adobe\/Adobe Contribute CS3/contributeieplugin.dll
BHO: mysidesearch search enhancer: {1093d679-3a1e-e944-c095-fac4cbe8dad4} - c:\windows\system32\vjypvjbrieva.dll
BHO: Skype add-on (mastermind): {22bf413b-c6d2-4d91-82a9-a0f997ba588c} - c:\program files\skype\toolbars\internet explorer\SkypeIEPlugin.dll
BHO: snappyads browser enhancer: {299c01c6-667c-e454-5b0c-c4d75dd9c04a} - c:\windows\system32\nbnifprvmwznuby.dll
BHO: snappyads: {3ae6b295-341b-6e7c-a4ac-76d8f5fb44d4} - c:\windows\system32\nsn7389.dll
BHO: EoBHO Class: {64f56fc1-1272-44cd-ba6e-39723696e350} - c:\program files\eorezo\eoadv\EoRezoBHO.dll
BHO: {7E853D72-626A-48EC-A868-BA8D5E23E045} - No File
BHO: Google Toolbar Helper: {aa58ed58-01dd-4d91-8333-cf10577473f7} - c:\program files\google\google toolbar\GoogleToolbar_32.dll
BHO: Adobe PDF Conversion Toolbar Helper: {ae7cd045-e861-484f-8273-0445ee161910} - d:\program files\adobe\acrobat 8.0\acrobat\AcroIEFavClient.dll
BHO: Google Toolbar Notifier BHO: {af69de43-7d58-4638-b6fa-ce66b5ad205d} - c:\program files\google\googletoolbarnotifier\5.2.4204.1700\swg.dll
BHO: myBabylon English Toolbar: {b2e293ee-fd7e-4c71-a714-5f4750d8d7b7} - c:\program files\mybabylon_english\tbmyB1.dll
BHO: Google Dictionary Compression sdch: {c84d72fe-e17d-4195-bb24-76c02e2e7c4e} - c:\program files\google\google toolbar\component\fastsearch_B7C5AC242193BB3E.dll
BHO: Java(tm) Plug-In 2 SSV Helper: {dbc80044-a445-435b-bc74-9c25c1c588a9} - c:\program files\java\jre6\bin\jp2ssv.dll
TB: Acer eDataSecurity Management: {5cbe3b7c-1e47-477e-a7dd-396db0476e29} - c:\program files\acer\empowering technology\edatasecurity\x86\eDStoolbar.dll
TB: Adobe PDF: {47833539-d0c5-4125-9fa8-0819e2eaac93} - d:\program files\adobe\acrobat 8.0\acrobat\AcroIEFavClient.dll
TB: Contribute Toolbar: {517bdde4-e3a7-4570-b21e-2b52b6139fc7} - d:\program files\adobe\/Adobe Contribute CS3/contributeieplugin.dll
TB: myBabylon English Toolbar: {b2e293ee-fd7e-4c71-a714-5f4750d8d7b7} - c:\program files\mybabylon_english\tbmyB1.dll
TB: Google Toolbar: {2318c2b1-4965-11d4-9b18-009027a5cd4f} - c:\program files\google\google toolbar\GoogleToolbar_32.dll
EB: Adobe PDF: {182ec0be-5110-49c8-a062-beb1d02a220b} - d:\program files\adobe\acrobat 8.0\acrobat\AcroIEFavClient.dll
EB: Search panel: {54fef9a0-3eab-7bb5-471f-61b4b1af138e} - c:\windows\system32\vjypvjbrieva.dll
uRun: [WindowsWelcomeCenter] rundll32.exe oobefldr.dll,ShowWelcomeCenter
uRun: [AdobeUpdater] "c:\program files\common files\adobe\updater5\AdobeUpdater.exe"
uRun: [swg] c:\program files\google\googletoolbarnotifier\GoogleToolbarNotifier.exe
uRun: [msnmsgr] "c:\program files\msn messenger\msnmsgr.exe" /background
uRun: [scvhost] c:\tar\scvhost.exe
uRun: [WMPNSCFG] c:\program files\windows media player\WMPNSCFG.exe
uRun: [setup2.exe] c:\windows\system32\setup2.exe
mRun: [Windows Defender] %ProgramFiles%\Windows Defender\MSASCui.exe -hide
mRun: [RtHDVCpl] RtHDVCpl.exe
mRun: [SynTPEnh] c:\program files\synaptics\syntp\SynTPEnh.exe
mRun: [ePower_DMC] c:\program files\acer\empowering technology\epower\ePower_DMC.exe
mRun: [eDataSecurity Loader] c:\program files\acer\empowering technology\edatasecurity\x86\eDSloader.exe
mRun: [eAudio] "c:\program files\acer\empowering technology\eaudio\eAudio.exe"
mRun: [BkupTray] "c:\program files\newtech infosystems\nti backup now 5\BkupTray.exe"
mRun: [IAAnotif] c:\program files\intel\intel matrix storage manager\iaanotif.exe
mRun: [NvCplDaemon] RUNDLL32.EXE c:\windows\system32\NvCpl.dll,NvStartup
mRun: [NvMediaCenter] RUNDLL32.EXE c:\windows\system32\NvMcTray.dll,NvTaskbarInit
mRun: [LManager] c:\progra~1\launch~1\QtZgAcer.EXE
mRun: [PLFSetI] c:\windows\PLFSetI.exe
mRun: [ZPdtWzdVitaKey MC3000] "c:\program files\acer\acer bio protection\PdtWzd.exe" show
mRun: [ArcadeDeluxeAgent] "c:\program files\acer arcade deluxe\acer arcade deluxe\ArcadeDeluxeAgent.exe"
mRun: [WarReg_PopUp] c:\program files\acer\wr_popup\WarReg_PopUp.exe
mRun: [VirtualCloneDrive] "c:\program files\elaborate bytes\virtualclonedrive\VCDDaemon.exe" /s
mRun: [avast!] c:\progra~1\alwils~1\avast4\ashDisp.exe
mRun: [Acrobat Assistant 8.0] "d:\program files\adobe\acrobat 8.0\acrobat\Acrotray.exe"
mRun: [<NO NAME>]
mRun: [Adobe_ID0EYTHM] c:\progra~1\common~1\adobe\adobev~1\server\bin\VERSIO~2.EXE
mRun: [WinampAgent] "d:\program files\winamp\winampa.exe"
mRun: [Adobe Reader Speed Launcher] "c:\program files\adobe\reader 8.0\reader\Reader_sl.exe"
mRun: [sumnbroifzwhs] c:\windows\system32\regsvr32.exe /s "c:\windows\system32\nbnifprvmwznuby.dll"
mRun: [SunJavaUpdateSched] "c:\program files\java\jre6\bin\jusched.exe"
mRun: [WiniFighter] c:\program files\winifighter software\winifighter\WiniFighter.exe -min -noclose
mPolicies-system: EnableLUA = 0 (0x0)
mPolicies-system: EnableUIADesktopToggle = 0 (0x0)
IE: Ajouter au fichier PDF existant - d:\program files\adobe\acrobat 8.0\acrobat\AcroIEFavClient.dll/AcroIEAppend.html
IE: Convertir en Adobe PDF - d:\program files\adobe\acrobat 8.0\acrobat\AcroIEFavClient.dll/AcroIECapture.html
IE: Convertir la cible du lien en Adobe PDF - d:\program files\adobe\acrobat 8.0\acrobat\AcroIEFavClient.dll/AcroIECapture.html
IE: Convertir la cible du lien en un fichier PDF existant - d:\program files\adobe\acrobat 8.0\acrobat\AcroIEFavClient.dll/AcroIEAppend.html
IE: Convertir la sélection en Adobe PDF - d:\program files\adobe\acrobat 8.0\acrobat\AcroIEFavClient.dll/AcroIECapture.html
IE: Convertir la sélection en un fichier PDF existant - d:\program files\adobe\acrobat 8.0\acrobat\AcroIEFavClient.dll/AcroIEAppend.html
IE: Convertir les liens sélectionnés en fichier Adobe PDF - d:\program files\adobe\acrobat 8.0\acrobat\AcroIEFavClient.dll/AcroIECaptureSelLinks.html
IE: Convertir les liens sélectionnés en un fichier PDF existant - d:\program files\adobe\acrobat 8.0\acrobat\AcroIEFavClient.dll/AcroIEAppendSelLinks.html
IE: E&xporter vers Microsoft Excel - c:\progra~1\micros~2\office12\EXCEL.EXE/3000
IE: {10954C80-4F0F-11d3-B17C-00C0DFE39736} - c:\program files\acer\acer bio protection\PwdBank.exe
IE: {2670000A-7350-4f3c-8081-5663EE0C6C49} - {48E73304-E1D6-4330-914C-F5F514E3486C} - c:\progra~1\micros~2\office12\ONBttnIE.dll
IE: {77BF5300-1474-4EC7-9980-D32B190E9B07} - {77BF5300-1474-4EC7-9980-D32B190E9B07} - c:\program files\skype\toolbars\internet explorer\SkypeIEPlugin.dll
IE: {92780B25-18CC-41C8-B9BE-3C9C571A8263} - {FF059E31-CC5A-4E2E-BF3B-96E929D65503} - c:\progra~1\micros~2\office12\REFIEBAR.DLL
DPF: {30528230-99f7-4bb4-88d8-fa1d4f56a2ab} - c:\program files\yahoo!\common\Yinsthelper.dll
DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_13-windows-i586.cab
DPF: {CAFEEFAC-0016-0000-0013-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_13-windows-i586.cab
DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_13-windows-i586.cab
TCP: NameServer = 85.255.116.147,85.255.112.211
TCP: {9A0BE692-9CB6-4545-B107-06816C9B04AE} = 85.255.116.147,85.255.112.211
TCP: {C7500266-E0AF-4F88-928A-E00E2DAF0334} = 85.255.116.147,85.255.112.211
Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - c:\progra~1\common~1\skype\SKYPE4~1.DLL
Notify: AWinNotifyVitaKey MC3000 - c:\program files\acer\acer bio protection\WinNotify.dll
AppInit_DLLs: c:\progra~1\google\google~1\GOEC62~1.DLL
LSA: Notification Packages = scecli c:\program files\acer\acer bio protection\PwdFilter
================= FIREFOX ===================
FF - ProfilePath - c:\users\romain\appdata\roaming\mozilla\firefox\profiles\gbno8pmq.default\
FF - prefs.js: browser.search.defaulturl - hxxp://www15.yoog.com/search.php?q=
FF - prefs.js: browser.search.selectedEngine - Yoog Search
FF - prefs.js: browser.startup.homepage - hxxp://www.google.com/
FF - prefs.js: keyword.URL - hxxp://www15.yoog.com/search.php?q=
FF - component: c:\program files\mozilla firefox\components\3bd26101-6c00-28ba-5830-325c3384226e.dll
FF - component: c:\program files\mozilla firefox\components\vjypvjbrieva.dll
FF - component: c:\program files\premieropinion\components\pmxg.dll
FF - plugin: c:\program files\google\google updater\2.4.1536.6592\npCIDetect13.dll
FF - plugin: c:\program files\google\update\1.2.183.7\npGoogleOneClick8.dll
FF - plugin: c:\program files\mozilla firefox\plugins\npyaxmpb.dll
FF - plugin: c:\users\romain\appdata\roaming\mozilla\firefox\profiles\gbno8pmq.default\extensions\battlefieldheroespatcher@ea.com\platform\winnt_x86-msvc\plugins\npBFHUpdater.dll
FF - plugin: c:\users\romain\appdata\roaming\mozilla\firefox\profiles\gbno8pmq.default\extensions\oberongamehost@oberongames.com\platform\winnt_x86-msvc\plugins\npOberonGameHost.dll
FF - HiddenExtension: *xg.dll: {6E19037A-12E3-4295-8915-ED48BC341614} - c:\program files\PremierOpinion
FF - HiddenExtension: Java Console: No Registry Reference - c:\program files\mozilla firefox\extensions\{CAFEEFAC-0016-0000-0010-ABCDEFFEDCBA}
FF - HiddenExtension: Java Console: No Registry Reference - c:\program files\mozilla firefox\extensions\{CAFEEFAC-0016-0000-0011-ABCDEFFEDCBA}
FF - HiddenExtension: Java Console: No Registry Reference - c:\program files\mozilla firefox\extensions\{CAFEEFAC-0016-0000-0013-ABCDEFFEDCBA}
---- FIREFOX POLICIES ----
FF - user.js: yahoo.homepage.dontask - true
FF - user.js: browser.search.defaultenginename - Yoog Search
FF - user.js: browser.search.defaulturl - hxxp://www15.yoog.com/search.php?q=
FF - user.js: browser.search.selectedEngine - Yoog Search
FF - user.js: keyword.URL - hxxp://www15.yoog.com/search.php?q=
FF - user.js: keyword.enabled - true
FF - user.js: google.toolbar.linkdoctor.enabled - false
============= SERVICES / DRIVERS ===============
R0 AlfaFF;AlfaFF File System mini-filter;c:\windows\system32\drivers\AlfaFF.sys [2008-9-8 43184]
R3 b57nd60x;Broadcom NetXtreme Gigabit Ethernet - NDIS 6.0;c:\windows\system32\drivers\b57nd60x.sys [2008-3-28 210432]
R3 NETw5v32;Pilote de carte Intel(R) Wireless WiFi Link pour Windows Vista 32 bits ;c:\windows\system32\drivers\NETw5v32.sys [2008-4-18 3658752]
R3 winbondcir;Winbond IR Transceiver;c:\windows\system32\drivers\winbondcir.sys [2007-3-28 43008]
S1 aswSP;avast! Self Protection;c:\windows\system32\drivers\aswSP.sys [2008-11-9 114768]
S2 {49DE1C67-83F8-4102-99E0-C16DCC7EEC796};{49DE1C67-83F8-4102-99E0-C16DCC7EEC796};c:\program files\acer arcade deluxe\playmovie\000.fcl [2008-9-8 61424]
S2 aswFsBlk;aswFsBlk;c:\windows\system32\drivers\aswFsBlk.sys [2008-11-9 20560]
S2 aswMonFlt;aswMonFlt;c:\windows\system32\drivers\aswMonFlt.sys [2008-11-9 51792]
S2 BUNAgentSvc;NTI Backup Now 5 Agent Service;c:\program files\newtech infosystems\nti backup now 5\client\Agentsvc.exe [2008-3-3 16384]
S2 CLHNService;CLHNService;c:\program files\acer arcade deluxe\homemedia\kernel\dmp\CLHNService.exe [2008-9-8 81504]
S2 ETService;Empowering Technology Service;c:\program files\acer\empowering technology\service\ETService.exe [2008-4-18 24576]
S2 gupdate1c9ba411925e60;Service Google Update (gupdate1c9ba411925e60);c:\program files\google\update\GoogleUpdate.exe [2009-4-11 133104]
S2 IGBASVC;iGroupTec Service;c:\program files\acer\acer bio protection\BASVC.exe [2008-9-8 3471360]
S2 KwinzySrch Service;KwinzySrch Service;c:\programdata\kwinzysrch\kwinzy127.exe [2009-7-15 54760]
S2 lxbc_device;lxbc_device;c:\windows\system32\lxbccoms.exe -service --> c:\windows\system32\lxbccoms.exe -service [?]
S2 NTIBackupSvc;NTI Backup Now 5 Backup Service;c:\program files\newtech infosystems\nti backup now 5\BackupSvc.exe [2008-4-6 50424]
S2 NTIPPKernel;NTIPPKernel;c:\program files\acer arcade deluxe\homemedia\kernel\dmp\NTIPPKernel.sys [2008-9-8 122368]
S2 NTISchedulerSvc;NTI Backup Now 5 Scheduler Service;c:\program files\newtech infosystems\nti backup now 5\SchedulerSvc.exe [2008-4-4 131072]
S2 PremierOpinion;PremierOpinion;c:\program files\premieropinion\pmservice.exe [2009-2-13 45056]
S2 TabletServicePen;TabletServicePen;c:\windows\system32\Pen_Tablet.exe [2009-2-19 1373480]
S2 Windows Service Manager;Windows Service Manager;\\?\globalroot\systemroot\system32\wsmanager.exe [2009-7-27 66560]
S2 WiniFighterSvc;WiniFighter Security Service;c:\program files\winifighter software\winifighter\winifightersvc.exe --> c:\program files\winifighter software\winifighter\WiniFighterSvc.exe [?]
S3 A310;AVerMedia A310 DVB-T;c:\windows\system32\drivers\AVerA310USB.sys [2008-4-18 25856]
S3 BDASwCap;AVerMedia A310 BDA DVBT Capture Device;c:\windows\system32\drivers\AVerA310Cap.sys [2008-4-18 42880]
S3 GoogleDesktopManager-080708-050100;Google Desktop Manager 5.7.808.7150;c:\program files\google\google desktop search\GoogleDesktop.exe [2008-11-7 24064]
S3 JMCR;JMCR;c:\windows\system32\drivers\jmcr.sys [2008-4-18 81296]
S3 npggsvc;nProtect GameGuard Service;c:\windows\system32\gamemon.des -service --> c:\windows\system32\GameMon.des -service [?]
S3 NVHDA;Service for NVIDIA High Definition Audio Driver;c:\windows\system32\drivers\nvhda32v.sys [2008-4-21 43552]
=============== Created Last 30 ================
2009-07-27 12:33 <DIR> --d----- c:\programdata\WindowsSearch
2009-07-27 00:55 379,399,320 a------- c:\windows\MEMORY.DMP
2009-07-26 09:52 17,223 a------- c:\windows\24835virusz19.ocx
2009-07-26 08:40 5,777 a------- c:\windows\6276wo5m9z3.dll
2009-07-26 01:07 4,920 a------- c:\windows\5d0ezhre5t8992.ocx
2009-07-25 20:48 794,624 a------- c:\windows\system32\spr32d35.dll
2009-07-25 20:48 753,808 a------- c:\windows\system32\temp.001
2009-07-25 20:48 140,224 a------- c:\windows\system32\temp.000
2009-07-25 20:33 <DIR> --d----- c:\program files\Architecte_3D_Silver_Advanced
2009-07-25 19:49 <DIR> --d----- c:\program files\Anuman Interactive
2009-07-23 08:47 10,323 a------- c:\windows\system32\5593sp5ware2005z.ocx
2009-07-22 20:44 268 a---h--- C:\sqmdata07.sqm
2009-07-22 20:44 172 a---h--- C:\sqmnoopt07.sqm
2009-07-22 17:06 0 a---h--- c:\windows\system32\drivers\Msft_User_WpdMtpDr_01_00_00.Wdf
2009-07-22 16:48 10,124 a------- c:\windows\1zd5v9r444.cpl
2009-07-22 02:13 268 a---h--- C:\sqmdata06.sqm
2009-07-22 02:13 244 a---h--- C:\sqmnoopt06.sqm
2009-07-21 20:12 12,511 a------- c:\windows\system32\4z99threa52122.exe
2009-07-20 10:31 11,288 a------- c:\windows\17e1z5ief2960.bin
2009-07-18 19:10 4,750 a------- c:\windows\9408sz97b5.cpl
2009-07-17 18:45 14,742 a------- c:\windows\system32\z550backdo5r3099.exe
2009-07-17 16:50 528,384 a------- c:\windows\system32\vjypvjbrieva.dll
2009-07-15 07:49 <DIR> --d----- c:\programdata\KwinzySrch
2009-07-15 07:49 <DIR> --d----- c:\program files\KwinzySrch
2009-07-15 07:49 <DIR> --d----- c:\progra~2\KwinzySrch
2009-07-14 16:30 6,485 a------- c:\windows\74159hreat2z00.cpl
2009-07-11 17:55 <DIR> --d----- c:\programdata\TrackMania
2009-07-11 17:52 <DIR> --d----- c:\program files\TmNationsForever
2009-07-10 11:47 <DIR> --d----- c:\program files\common files\Windows Live
2009-07-10 03:40 3,128 a------- c:\windows\system32\23383v59zs4a5.dll
2009-07-09 02:04 9,875 a------- c:\windows\91aathrzat224395.bin
2009-07-08 21:19 11,828 a------- c:\windows\138z1worm5c59.ocx
2009-07-08 02:01 292 a---h--- C:\sqmdata05.sqm
2009-07-08 02:01 172 a---h--- C:\sqmnoopt05.sqm
2009-07-07 13:48 17,982 a------- c:\windows\system32\98c1az5ware2481.bin
2009-07-07 08:13 16,748 a------- c:\windows\system32\fb0th5eat29z6.bin
2009-07-06 16:44 5,907 a------- c:\windows\539fzpyware5975.exe
2009-07-06 12:47 189,488 a------- c:\windows\system32\PnkBstrB.xtr
2009-07-05 21:30 2,985 a------- c:\windows\15z52hacktool29c.cpl
2009-07-05 13:54 18,377 a------- c:\windows\9cz5thief1582.bin
2009-07-03 23:45 7,981 a------- c:\windows\system32\5723troz559.exe
2009-07-03 19:12 17,024 a------- c:\windows\system32\50f0threaz95445.ocx
2009-07-03 17:13 4,184 a------- c:\windows\system32\30a9zac9do5r2762.ocx
2009-07-02 09:10 8,642 a------- c:\windows\5d91sparse1955z.bin
2009-07-02 03:32 1,342,976 a------- c:\windows\system32\nsn7389.dll
2009-07-01 23:28 12,569 a------- c:\windows\e69add5arz813.dll
2009-07-01 19:53 5,691 a------- c:\windows\6620s5yware9z5.exe
2009-06-29 01:59 14,622 a------- c:\windows\system32\51559irus43z.bin
2009-06-27 18:02 3,535 a------- c:\windows\system32\za159parse2223.dll
==================== Find3M ====================
2009-07-27 15:13 668,580 a------- c:\windows\system32\perfh00C.dat
2009-07-27 15:13 122,972 a------- c:\windows\system32\perfc00C.dat
2009-07-27 13:36 56,926 a------- c:\programdata\nvModes.dat
2009-07-27 13:36 56,926 a------- c:\progra~2\nvModes.dat
2009-07-26 19:24 58,738 a------- c:\windows\system32\vjypvjbrieva.dll-uninst.exe
2009-07-24 15:55 86,032 a------- c:\windows\system32\GDIPFONTCACHEV1.DAT
2009-07-18 02:17 66,560 a------- c:\windows\system32\wsmanager.exe
2009-07-07 15:26 189,488 a------- c:\windows\system32\PnkBstrB.exe
2009-07-07 14:39 139,016 a------- c:\windows\system32\drivers\PnkBstrK.sys
2009-07-06 00:35 139,152 a------- c:\users\romain\appdata\roaming\PnkBstrK.sys
2009-07-06 00:35 794,408 a------- c:\windows\system32\pbsvc.exe
2009-07-06 00:35 75,064 a------- c:\windows\system32\PnkBstrA.exe
2009-07-03 20:46 86,672 a------- c:\windows\system32\60d97db8-d21b-6e44-5b61-18c5011f49de.exe
2009-06-27 06:35 3,960 a------- c:\windows\system32\31896zack5ool295.bin
2009-06-27 05:36 14,886 a------- c:\windows\system32\52a4tzi5f493.exe
2009-06-26 19:29 16,554 a------- c:\windows\214069r5j1z4.exe
2009-06-26 17:57 2,890 a------- c:\windows\15674vzr5s98f.exe
2009-06-26 14:35 5,255 a------- c:\windows\2z58spyware5739.bin
2009-06-25 04:11 4,579 a------- c:\windows\1405thi95260z.exe
2009-06-24 16:35 7,426 a------- c:\windows\system32\11z47h9c5tool52e.exe
2009-06-24 01:58 11,710 a------- c:\windows\system32\7z95spyware3169.exe
2009-06-19 02:34 5,316 a------- c:\windows\system32\280d5i9144z.exe
2009-06-16 16:33 9,541 a------- c:\windows\7b55spywarz2899.dll
2009-06-16 03:07 13,808 a------- c:\windows\system32\9c7az9ware1594.dll
2009-06-15 19:51 9,591 a------- c:\windows\system32\3715sze9l1105.exe
2009-06-15 02:00 10,129 a------- c:\windows\system32\38f9vzr5943.bin
2009-06-14 10:08 2,762 a------- c:\windows\system32\50195vi9zs6d5.exe
2009-06-14 03:53 15,498 a------- c:\windows\5494spambotz49.exe
2009-06-13 10:53 10,025 a------- c:\windows\system32\299149py65dz.exe
2009-06-11 18:33 8,296 a------- c:\windows\9c95thiefz09.bin
2009-06-09 12:08 9,905 a------- c:\windows\435azpyware5973.dll
2009-06-08 22:50 3,760 a------- c:\windows\305cvi5z789.bin
2009-06-08 04:27 16,819 a------- c:\windows\21543worm1z9.dll
2009-06-02 11:53 14,053 a------- c:\windows\system32\50zbspyware985.exe
2009-06-01 15:27 4,789 a------- c:\windows\703ct5ief96z9.dll
2009-05-27 14:58 1,536,782 a------- c:\users\romain\Bf2_Ussni_m82a1_Fixed.zip
2009-05-19 20:00 16,680 a------- c:\windows\system32\61bebackd5oz10689.bin
2009-05-19 02:37 15,438 a------- c:\windows\4z9fdo5nloader2781.exe
2009-05-18 17:46 2,726 a------- c:\windows\system32\aezspa5se3942.bin
2009-05-17 22:14 14,000 a------- c:\windows\system32\4953threat970z4.bin
2009-05-16 14:04 520,192 a------- c:\windows\system32\MathmosScreensaver.scr
2009-05-16 03:05 12,822 a------- c:\windows\system32\6c51add9aze512.bin
2009-05-12 11:51 3,874 a------- c:\windows\7b98spars5199z.exe
2009-05-10 18:23 48,281 a------- c:\windows\system32\uxavspelfypycv.exe
2009-05-09 21:54 3,592 a------- c:\windows\system32\33995parse907z.bin
2009-05-09 16:41 5,095 a------- c:\windows\z335addwa9e1196.exe
2009-05-09 04:36 3,439 a------- c:\windows\system32\6e19spywarz5395.dll
2009-05-09 01:23 105,984 a------- c:\windows\system32\c_dll.dll
2009-05-08 12:37 7,175 a------- c:\windows\15249spy57z.dll
2009-05-08 04:09 9,623 a------- c:\windows\2z495not9a5virus29c.dll
2009-05-07 12:20 2,935 a------- c:\windows\system32\7edazownloader5279.exe
2009-05-07 07:58 7,576 a------- c:\windows\system32\19925wzrm30d.bin
2009-05-06 03:46 8,735 a------- c:\windows\8f95teal2z55.exe
2009-05-05 07:27 15,509 a------- c:\windows\z05a5ac9door1745.dll
2009-05-04 14:45 7,334 a------- c:\windows\79149aczt5olaf.exe
2009-05-02 02:30 2,630 a------- c:\windows\3d6fth5efz95.exe
2009-04-28 21:37 15,879 a------- c:\windows\265es9ezl608.exe
2009-02-19 22:56 143,360 a------- c:\windows\inf\infstrng.dat
2009-02-19 22:56 51,200 a------- c:\windows\inf\infpub.dat
2009-02-19 22:33 86,016 a------- c:\windows\inf\infstor.dat
2008-11-08 22:21 56 a---h--- c:\programdata\ezsidmv.dat
2008-11-08 22:21 56 a---h--- c:\progra~2\ezsidmv.dat
2008-11-07 21:52 665,600 a------- c:\windows\inf\drvindex.dat
2008-01-21 10:37 340,236 a------- c:\windows\inf\perflib\040c\perfi.dat
2008-01-21 10:37 340,236 a------- c:\windows\inf\perflib\040c\perfh.dat
2008-01-21 10:37 37,390 a------- c:\windows\inf\perflib\040c\perfd.dat
2008-01-21 10:37 37,390 a------- c:\windows\inf\perflib\040c\perfc.dat
2008-01-21 04:43 174 a--sh--- c:\program files\desktop.ini
2006-11-02 11:20 287,440 a------- c:\windows\inf\perflib\0000\perfi.dat
2006-11-02 11:20 287,440 a------- c:\windows\inf\perflib\0000\perfh.dat
2006-11-02 11:20 30,674 a------- c:\windows\inf\perflib\0000\perfd.dat
2006-11-02 11:20 30,674 a------- c:\windows\inf\perflib\0000\perfc.dat
2009-02-14 15:25 1,546 a--sh--- c:\windows\system32\GroupPolicy000.dat
============= FINISH: 15:16:17,73 ===============
Run by romain at 15:16:05,05 on 27/07/2009
Internet Explorer: 7.0.6001.18000 BrowserJavaVersion: 1.6.0_13
Microsoft® Windows Vista™ Édition Familiale Premium 6.0.6001.1.1252.33.1036.18.3066.2458 [GMT 2:00]
AV: avast! antivirus 4.8.1229 [VPS 081114-0] *On-access scanning enabled* (Updated) {7591DB91-41F0-48A3-B128-1A293FD8233D}
SP: Windows Defender *enabled* (Updated) {D68DDC3A-831F-4FAE-9E44-DA132C1ACF46}
SP: avast! antivirus 4.8.1229 [VPS 081114-0] *enabled* (Updated) {7591DB91-41F0-48A3-B128-1A293FD8233D}
============== Running Processes ===============
C:\Windows\system32\wininit.exe
C:\Windows\system32\lsm.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
C:\Windows\system32\svchost.exe -k rpcss
C:\Windows\System32\svchost.exe -k secsvcs
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\system32\svchost.exe -k netsvcs
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k NetworkService
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted
C:\Windows\Explorer.EXE
C:\Program Files\Windows Media Player\wmpnscfg.exe
C:\Windows\System32\svchost.exe -k swprv
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Windows\system32\wbem\wmiprvse.exe
C:\Windows\system32\wbem\wmiprvse.exe
C:\Users\romain\Desktop\dds.scr
C:\Windows\system32\conime.exe
============== Pseudo HJT Report ===============
uStart Page = hxxp://search.babylon.com/home
uDefault_Page_URL = hxxp://homepage.acer.com/rdr.aspx?b=ACAW&l=040c&s=2&o=vp32&d=0908&m=aspire_7730g
mStart Page = hxxp://homepage.acer.com/rdr.aspx?b=ACAW&l=040c&s=2&o=vp32&d=0908&m=aspire_7730g
mDefault_Page_URL = hxxp://fr.fr.acer.yahoo.com
uInternet Settings,ProxyOverride = *.local
uURLSearchHooks: myBabylon English Toolbar: {b2e293ee-fd7e-4c71-a714-5f4750d8d7b7} - c:\program files\mybabylon_english\tbmyB1.dll
mURLSearchHooks: myBabylon English Toolbar: {b2e293ee-fd7e-4c71-a714-5f4750d8d7b7} - c:\program files\mybabylon_english\tbmyB1.dll
BHO: {02478D38-C3F9-4efb-9B51-7695ECA05670} - No File
BHO: Aide pour le lien d'Adobe PDF Reader: {06849e9f-c8d7-4d59-b87d-784b7d6be0b3} - c:\program files\common files\adobe\acrobat\activex\AcroIEHelper.dll
BHO: ContributeBHO Class: {074c1dc5-9320-4a9a-947d-c042949c6216} - d:\program files\adobe\/Adobe Contribute CS3/contributeieplugin.dll
BHO: mysidesearch search enhancer: {1093d679-3a1e-e944-c095-fac4cbe8dad4} - c:\windows\system32\vjypvjbrieva.dll
BHO: Skype add-on (mastermind): {22bf413b-c6d2-4d91-82a9-a0f997ba588c} - c:\program files\skype\toolbars\internet explorer\SkypeIEPlugin.dll
BHO: snappyads browser enhancer: {299c01c6-667c-e454-5b0c-c4d75dd9c04a} - c:\windows\system32\nbnifprvmwznuby.dll
BHO: snappyads: {3ae6b295-341b-6e7c-a4ac-76d8f5fb44d4} - c:\windows\system32\nsn7389.dll
BHO: EoBHO Class: {64f56fc1-1272-44cd-ba6e-39723696e350} - c:\program files\eorezo\eoadv\EoRezoBHO.dll
BHO: {7E853D72-626A-48EC-A868-BA8D5E23E045} - No File
BHO: Google Toolbar Helper: {aa58ed58-01dd-4d91-8333-cf10577473f7} - c:\program files\google\google toolbar\GoogleToolbar_32.dll
BHO: Adobe PDF Conversion Toolbar Helper: {ae7cd045-e861-484f-8273-0445ee161910} - d:\program files\adobe\acrobat 8.0\acrobat\AcroIEFavClient.dll
BHO: Google Toolbar Notifier BHO: {af69de43-7d58-4638-b6fa-ce66b5ad205d} - c:\program files\google\googletoolbarnotifier\5.2.4204.1700\swg.dll
BHO: myBabylon English Toolbar: {b2e293ee-fd7e-4c71-a714-5f4750d8d7b7} - c:\program files\mybabylon_english\tbmyB1.dll
BHO: Google Dictionary Compression sdch: {c84d72fe-e17d-4195-bb24-76c02e2e7c4e} - c:\program files\google\google toolbar\component\fastsearch_B7C5AC242193BB3E.dll
BHO: Java(tm) Plug-In 2 SSV Helper: {dbc80044-a445-435b-bc74-9c25c1c588a9} - c:\program files\java\jre6\bin\jp2ssv.dll
TB: Acer eDataSecurity Management: {5cbe3b7c-1e47-477e-a7dd-396db0476e29} - c:\program files\acer\empowering technology\edatasecurity\x86\eDStoolbar.dll
TB: Adobe PDF: {47833539-d0c5-4125-9fa8-0819e2eaac93} - d:\program files\adobe\acrobat 8.0\acrobat\AcroIEFavClient.dll
TB: Contribute Toolbar: {517bdde4-e3a7-4570-b21e-2b52b6139fc7} - d:\program files\adobe\/Adobe Contribute CS3/contributeieplugin.dll
TB: myBabylon English Toolbar: {b2e293ee-fd7e-4c71-a714-5f4750d8d7b7} - c:\program files\mybabylon_english\tbmyB1.dll
TB: Google Toolbar: {2318c2b1-4965-11d4-9b18-009027a5cd4f} - c:\program files\google\google toolbar\GoogleToolbar_32.dll
EB: Adobe PDF: {182ec0be-5110-49c8-a062-beb1d02a220b} - d:\program files\adobe\acrobat 8.0\acrobat\AcroIEFavClient.dll
EB: Search panel: {54fef9a0-3eab-7bb5-471f-61b4b1af138e} - c:\windows\system32\vjypvjbrieva.dll
uRun: [WindowsWelcomeCenter] rundll32.exe oobefldr.dll,ShowWelcomeCenter
uRun: [AdobeUpdater] "c:\program files\common files\adobe\updater5\AdobeUpdater.exe"
uRun: [swg] c:\program files\google\googletoolbarnotifier\GoogleToolbarNotifier.exe
uRun: [msnmsgr] "c:\program files\msn messenger\msnmsgr.exe" /background
uRun: [scvhost] c:\tar\scvhost.exe
uRun: [WMPNSCFG] c:\program files\windows media player\WMPNSCFG.exe
uRun: [setup2.exe] c:\windows\system32\setup2.exe
mRun: [Windows Defender] %ProgramFiles%\Windows Defender\MSASCui.exe -hide
mRun: [RtHDVCpl] RtHDVCpl.exe
mRun: [SynTPEnh] c:\program files\synaptics\syntp\SynTPEnh.exe
mRun: [ePower_DMC] c:\program files\acer\empowering technology\epower\ePower_DMC.exe
mRun: [eDataSecurity Loader] c:\program files\acer\empowering technology\edatasecurity\x86\eDSloader.exe
mRun: [eAudio] "c:\program files\acer\empowering technology\eaudio\eAudio.exe"
mRun: [BkupTray] "c:\program files\newtech infosystems\nti backup now 5\BkupTray.exe"
mRun: [IAAnotif] c:\program files\intel\intel matrix storage manager\iaanotif.exe
mRun: [NvCplDaemon] RUNDLL32.EXE c:\windows\system32\NvCpl.dll,NvStartup
mRun: [NvMediaCenter] RUNDLL32.EXE c:\windows\system32\NvMcTray.dll,NvTaskbarInit
mRun: [LManager] c:\progra~1\launch~1\QtZgAcer.EXE
mRun: [PLFSetI] c:\windows\PLFSetI.exe
mRun: [ZPdtWzdVitaKey MC3000] "c:\program files\acer\acer bio protection\PdtWzd.exe" show
mRun: [ArcadeDeluxeAgent] "c:\program files\acer arcade deluxe\acer arcade deluxe\ArcadeDeluxeAgent.exe"
mRun: [WarReg_PopUp] c:\program files\acer\wr_popup\WarReg_PopUp.exe
mRun: [VirtualCloneDrive] "c:\program files\elaborate bytes\virtualclonedrive\VCDDaemon.exe" /s
mRun: [avast!] c:\progra~1\alwils~1\avast4\ashDisp.exe
mRun: [Acrobat Assistant 8.0] "d:\program files\adobe\acrobat 8.0\acrobat\Acrotray.exe"
mRun: [<NO NAME>]
mRun: [Adobe_ID0EYTHM] c:\progra~1\common~1\adobe\adobev~1\server\bin\VERSIO~2.EXE
mRun: [WinampAgent] "d:\program files\winamp\winampa.exe"
mRun: [Adobe Reader Speed Launcher] "c:\program files\adobe\reader 8.0\reader\Reader_sl.exe"
mRun: [sumnbroifzwhs] c:\windows\system32\regsvr32.exe /s "c:\windows\system32\nbnifprvmwznuby.dll"
mRun: [SunJavaUpdateSched] "c:\program files\java\jre6\bin\jusched.exe"
mRun: [WiniFighter] c:\program files\winifighter software\winifighter\WiniFighter.exe -min -noclose
mPolicies-system: EnableLUA = 0 (0x0)
mPolicies-system: EnableUIADesktopToggle = 0 (0x0)
IE: Ajouter au fichier PDF existant - d:\program files\adobe\acrobat 8.0\acrobat\AcroIEFavClient.dll/AcroIEAppend.html
IE: Convertir en Adobe PDF - d:\program files\adobe\acrobat 8.0\acrobat\AcroIEFavClient.dll/AcroIECapture.html
IE: Convertir la cible du lien en Adobe PDF - d:\program files\adobe\acrobat 8.0\acrobat\AcroIEFavClient.dll/AcroIECapture.html
IE: Convertir la cible du lien en un fichier PDF existant - d:\program files\adobe\acrobat 8.0\acrobat\AcroIEFavClient.dll/AcroIEAppend.html
IE: Convertir la sélection en Adobe PDF - d:\program files\adobe\acrobat 8.0\acrobat\AcroIEFavClient.dll/AcroIECapture.html
IE: Convertir la sélection en un fichier PDF existant - d:\program files\adobe\acrobat 8.0\acrobat\AcroIEFavClient.dll/AcroIEAppend.html
IE: Convertir les liens sélectionnés en fichier Adobe PDF - d:\program files\adobe\acrobat 8.0\acrobat\AcroIEFavClient.dll/AcroIECaptureSelLinks.html
IE: Convertir les liens sélectionnés en un fichier PDF existant - d:\program files\adobe\acrobat 8.0\acrobat\AcroIEFavClient.dll/AcroIEAppendSelLinks.html
IE: E&xporter vers Microsoft Excel - c:\progra~1\micros~2\office12\EXCEL.EXE/3000
IE: {10954C80-4F0F-11d3-B17C-00C0DFE39736} - c:\program files\acer\acer bio protection\PwdBank.exe
IE: {2670000A-7350-4f3c-8081-5663EE0C6C49} - {48E73304-E1D6-4330-914C-F5F514E3486C} - c:\progra~1\micros~2\office12\ONBttnIE.dll
IE: {77BF5300-1474-4EC7-9980-D32B190E9B07} - {77BF5300-1474-4EC7-9980-D32B190E9B07} - c:\program files\skype\toolbars\internet explorer\SkypeIEPlugin.dll
IE: {92780B25-18CC-41C8-B9BE-3C9C571A8263} - {FF059E31-CC5A-4E2E-BF3B-96E929D65503} - c:\progra~1\micros~2\office12\REFIEBAR.DLL
DPF: {30528230-99f7-4bb4-88d8-fa1d4f56a2ab} - c:\program files\yahoo!\common\Yinsthelper.dll
DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_13-windows-i586.cab
DPF: {CAFEEFAC-0016-0000-0013-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_13-windows-i586.cab
DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_13-windows-i586.cab
TCP: NameServer = 85.255.116.147,85.255.112.211
TCP: {9A0BE692-9CB6-4545-B107-06816C9B04AE} = 85.255.116.147,85.255.112.211
TCP: {C7500266-E0AF-4F88-928A-E00E2DAF0334} = 85.255.116.147,85.255.112.211
Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - c:\progra~1\common~1\skype\SKYPE4~1.DLL
Notify: AWinNotifyVitaKey MC3000 - c:\program files\acer\acer bio protection\WinNotify.dll
AppInit_DLLs: c:\progra~1\google\google~1\GOEC62~1.DLL
LSA: Notification Packages = scecli c:\program files\acer\acer bio protection\PwdFilter
================= FIREFOX ===================
FF - ProfilePath - c:\users\romain\appdata\roaming\mozilla\firefox\profiles\gbno8pmq.default\
FF - prefs.js: browser.search.defaulturl - hxxp://www15.yoog.com/search.php?q=
FF - prefs.js: browser.search.selectedEngine - Yoog Search
FF - prefs.js: browser.startup.homepage - hxxp://www.google.com/
FF - prefs.js: keyword.URL - hxxp://www15.yoog.com/search.php?q=
FF - component: c:\program files\mozilla firefox\components\3bd26101-6c00-28ba-5830-325c3384226e.dll
FF - component: c:\program files\mozilla firefox\components\vjypvjbrieva.dll
FF - component: c:\program files\premieropinion\components\pmxg.dll
FF - plugin: c:\program files\google\google updater\2.4.1536.6592\npCIDetect13.dll
FF - plugin: c:\program files\google\update\1.2.183.7\npGoogleOneClick8.dll
FF - plugin: c:\program files\mozilla firefox\plugins\npyaxmpb.dll
FF - plugin: c:\users\romain\appdata\roaming\mozilla\firefox\profiles\gbno8pmq.default\extensions\battlefieldheroespatcher@ea.com\platform\winnt_x86-msvc\plugins\npBFHUpdater.dll
FF - plugin: c:\users\romain\appdata\roaming\mozilla\firefox\profiles\gbno8pmq.default\extensions\oberongamehost@oberongames.com\platform\winnt_x86-msvc\plugins\npOberonGameHost.dll
FF - HiddenExtension: *xg.dll: {6E19037A-12E3-4295-8915-ED48BC341614} - c:\program files\PremierOpinion
FF - HiddenExtension: Java Console: No Registry Reference - c:\program files\mozilla firefox\extensions\{CAFEEFAC-0016-0000-0010-ABCDEFFEDCBA}
FF - HiddenExtension: Java Console: No Registry Reference - c:\program files\mozilla firefox\extensions\{CAFEEFAC-0016-0000-0011-ABCDEFFEDCBA}
FF - HiddenExtension: Java Console: No Registry Reference - c:\program files\mozilla firefox\extensions\{CAFEEFAC-0016-0000-0013-ABCDEFFEDCBA}
---- FIREFOX POLICIES ----
FF - user.js: yahoo.homepage.dontask - true
FF - user.js: browser.search.defaultenginename - Yoog Search
FF - user.js: browser.search.defaulturl - hxxp://www15.yoog.com/search.php?q=
FF - user.js: browser.search.selectedEngine - Yoog Search
FF - user.js: keyword.URL - hxxp://www15.yoog.com/search.php?q=
FF - user.js: keyword.enabled - true
FF - user.js: google.toolbar.linkdoctor.enabled - false
============= SERVICES / DRIVERS ===============
R0 AlfaFF;AlfaFF File System mini-filter;c:\windows\system32\drivers\AlfaFF.sys [2008-9-8 43184]
R3 b57nd60x;Broadcom NetXtreme Gigabit Ethernet - NDIS 6.0;c:\windows\system32\drivers\b57nd60x.sys [2008-3-28 210432]
R3 NETw5v32;Pilote de carte Intel(R) Wireless WiFi Link pour Windows Vista 32 bits ;c:\windows\system32\drivers\NETw5v32.sys [2008-4-18 3658752]
R3 winbondcir;Winbond IR Transceiver;c:\windows\system32\drivers\winbondcir.sys [2007-3-28 43008]
S1 aswSP;avast! Self Protection;c:\windows\system32\drivers\aswSP.sys [2008-11-9 114768]
S2 {49DE1C67-83F8-4102-99E0-C16DCC7EEC796};{49DE1C67-83F8-4102-99E0-C16DCC7EEC796};c:\program files\acer arcade deluxe\playmovie\000.fcl [2008-9-8 61424]
S2 aswFsBlk;aswFsBlk;c:\windows\system32\drivers\aswFsBlk.sys [2008-11-9 20560]
S2 aswMonFlt;aswMonFlt;c:\windows\system32\drivers\aswMonFlt.sys [2008-11-9 51792]
S2 BUNAgentSvc;NTI Backup Now 5 Agent Service;c:\program files\newtech infosystems\nti backup now 5\client\Agentsvc.exe [2008-3-3 16384]
S2 CLHNService;CLHNService;c:\program files\acer arcade deluxe\homemedia\kernel\dmp\CLHNService.exe [2008-9-8 81504]
S2 ETService;Empowering Technology Service;c:\program files\acer\empowering technology\service\ETService.exe [2008-4-18 24576]
S2 gupdate1c9ba411925e60;Service Google Update (gupdate1c9ba411925e60);c:\program files\google\update\GoogleUpdate.exe [2009-4-11 133104]
S2 IGBASVC;iGroupTec Service;c:\program files\acer\acer bio protection\BASVC.exe [2008-9-8 3471360]
S2 KwinzySrch Service;KwinzySrch Service;c:\programdata\kwinzysrch\kwinzy127.exe [2009-7-15 54760]
S2 lxbc_device;lxbc_device;c:\windows\system32\lxbccoms.exe -service --> c:\windows\system32\lxbccoms.exe -service [?]
S2 NTIBackupSvc;NTI Backup Now 5 Backup Service;c:\program files\newtech infosystems\nti backup now 5\BackupSvc.exe [2008-4-6 50424]
S2 NTIPPKernel;NTIPPKernel;c:\program files\acer arcade deluxe\homemedia\kernel\dmp\NTIPPKernel.sys [2008-9-8 122368]
S2 NTISchedulerSvc;NTI Backup Now 5 Scheduler Service;c:\program files\newtech infosystems\nti backup now 5\SchedulerSvc.exe [2008-4-4 131072]
S2 PremierOpinion;PremierOpinion;c:\program files\premieropinion\pmservice.exe [2009-2-13 45056]
S2 TabletServicePen;TabletServicePen;c:\windows\system32\Pen_Tablet.exe [2009-2-19 1373480]
S2 Windows Service Manager;Windows Service Manager;\\?\globalroot\systemroot\system32\wsmanager.exe [2009-7-27 66560]
S2 WiniFighterSvc;WiniFighter Security Service;c:\program files\winifighter software\winifighter\winifightersvc.exe --> c:\program files\winifighter software\winifighter\WiniFighterSvc.exe [?]
S3 A310;AVerMedia A310 DVB-T;c:\windows\system32\drivers\AVerA310USB.sys [2008-4-18 25856]
S3 BDASwCap;AVerMedia A310 BDA DVBT Capture Device;c:\windows\system32\drivers\AVerA310Cap.sys [2008-4-18 42880]
S3 GoogleDesktopManager-080708-050100;Google Desktop Manager 5.7.808.7150;c:\program files\google\google desktop search\GoogleDesktop.exe [2008-11-7 24064]
S3 JMCR;JMCR;c:\windows\system32\drivers\jmcr.sys [2008-4-18 81296]
S3 npggsvc;nProtect GameGuard Service;c:\windows\system32\gamemon.des -service --> c:\windows\system32\GameMon.des -service [?]
S3 NVHDA;Service for NVIDIA High Definition Audio Driver;c:\windows\system32\drivers\nvhda32v.sys [2008-4-21 43552]
=============== Created Last 30 ================
2009-07-27 12:33 <DIR> --d----- c:\programdata\WindowsSearch
2009-07-27 00:55 379,399,320 a------- c:\windows\MEMORY.DMP
2009-07-26 09:52 17,223 a------- c:\windows\24835virusz19.ocx
2009-07-26 08:40 5,777 a------- c:\windows\6276wo5m9z3.dll
2009-07-26 01:07 4,920 a------- c:\windows\5d0ezhre5t8992.ocx
2009-07-25 20:48 794,624 a------- c:\windows\system32\spr32d35.dll
2009-07-25 20:48 753,808 a------- c:\windows\system32\temp.001
2009-07-25 20:48 140,224 a------- c:\windows\system32\temp.000
2009-07-25 20:33 <DIR> --d----- c:\program files\Architecte_3D_Silver_Advanced
2009-07-25 19:49 <DIR> --d----- c:\program files\Anuman Interactive
2009-07-23 08:47 10,323 a------- c:\windows\system32\5593sp5ware2005z.ocx
2009-07-22 20:44 268 a---h--- C:\sqmdata07.sqm
2009-07-22 20:44 172 a---h--- C:\sqmnoopt07.sqm
2009-07-22 17:06 0 a---h--- c:\windows\system32\drivers\Msft_User_WpdMtpDr_01_00_00.Wdf
2009-07-22 16:48 10,124 a------- c:\windows\1zd5v9r444.cpl
2009-07-22 02:13 268 a---h--- C:\sqmdata06.sqm
2009-07-22 02:13 244 a---h--- C:\sqmnoopt06.sqm
2009-07-21 20:12 12,511 a------- c:\windows\system32\4z99threa52122.exe
2009-07-20 10:31 11,288 a------- c:\windows\17e1z5ief2960.bin
2009-07-18 19:10 4,750 a------- c:\windows\9408sz97b5.cpl
2009-07-17 18:45 14,742 a------- c:\windows\system32\z550backdo5r3099.exe
2009-07-17 16:50 528,384 a------- c:\windows\system32\vjypvjbrieva.dll
2009-07-15 07:49 <DIR> --d----- c:\programdata\KwinzySrch
2009-07-15 07:49 <DIR> --d----- c:\program files\KwinzySrch
2009-07-15 07:49 <DIR> --d----- c:\progra~2\KwinzySrch
2009-07-14 16:30 6,485 a------- c:\windows\74159hreat2z00.cpl
2009-07-11 17:55 <DIR> --d----- c:\programdata\TrackMania
2009-07-11 17:52 <DIR> --d----- c:\program files\TmNationsForever
2009-07-10 11:47 <DIR> --d----- c:\program files\common files\Windows Live
2009-07-10 03:40 3,128 a------- c:\windows\system32\23383v59zs4a5.dll
2009-07-09 02:04 9,875 a------- c:\windows\91aathrzat224395.bin
2009-07-08 21:19 11,828 a------- c:\windows\138z1worm5c59.ocx
2009-07-08 02:01 292 a---h--- C:\sqmdata05.sqm
2009-07-08 02:01 172 a---h--- C:\sqmnoopt05.sqm
2009-07-07 13:48 17,982 a------- c:\windows\system32\98c1az5ware2481.bin
2009-07-07 08:13 16,748 a------- c:\windows\system32\fb0th5eat29z6.bin
2009-07-06 16:44 5,907 a------- c:\windows\539fzpyware5975.exe
2009-07-06 12:47 189,488 a------- c:\windows\system32\PnkBstrB.xtr
2009-07-05 21:30 2,985 a------- c:\windows\15z52hacktool29c.cpl
2009-07-05 13:54 18,377 a------- c:\windows\9cz5thief1582.bin
2009-07-03 23:45 7,981 a------- c:\windows\system32\5723troz559.exe
2009-07-03 19:12 17,024 a------- c:\windows\system32\50f0threaz95445.ocx
2009-07-03 17:13 4,184 a------- c:\windows\system32\30a9zac9do5r2762.ocx
2009-07-02 09:10 8,642 a------- c:\windows\5d91sparse1955z.bin
2009-07-02 03:32 1,342,976 a------- c:\windows\system32\nsn7389.dll
2009-07-01 23:28 12,569 a------- c:\windows\e69add5arz813.dll
2009-07-01 19:53 5,691 a------- c:\windows\6620s5yware9z5.exe
2009-06-29 01:59 14,622 a------- c:\windows\system32\51559irus43z.bin
2009-06-27 18:02 3,535 a------- c:\windows\system32\za159parse2223.dll
==================== Find3M ====================
2009-07-27 15:13 668,580 a------- c:\windows\system32\perfh00C.dat
2009-07-27 15:13 122,972 a------- c:\windows\system32\perfc00C.dat
2009-07-27 13:36 56,926 a------- c:\programdata\nvModes.dat
2009-07-27 13:36 56,926 a------- c:\progra~2\nvModes.dat
2009-07-26 19:24 58,738 a------- c:\windows\system32\vjypvjbrieva.dll-uninst.exe
2009-07-24 15:55 86,032 a------- c:\windows\system32\GDIPFONTCACHEV1.DAT
2009-07-18 02:17 66,560 a------- c:\windows\system32\wsmanager.exe
2009-07-07 15:26 189,488 a------- c:\windows\system32\PnkBstrB.exe
2009-07-07 14:39 139,016 a------- c:\windows\system32\drivers\PnkBstrK.sys
2009-07-06 00:35 139,152 a------- c:\users\romain\appdata\roaming\PnkBstrK.sys
2009-07-06 00:35 794,408 a------- c:\windows\system32\pbsvc.exe
2009-07-06 00:35 75,064 a------- c:\windows\system32\PnkBstrA.exe
2009-07-03 20:46 86,672 a------- c:\windows\system32\60d97db8-d21b-6e44-5b61-18c5011f49de.exe
2009-06-27 06:35 3,960 a------- c:\windows\system32\31896zack5ool295.bin
2009-06-27 05:36 14,886 a------- c:\windows\system32\52a4tzi5f493.exe
2009-06-26 19:29 16,554 a------- c:\windows\214069r5j1z4.exe
2009-06-26 17:57 2,890 a------- c:\windows\15674vzr5s98f.exe
2009-06-26 14:35 5,255 a------- c:\windows\2z58spyware5739.bin
2009-06-25 04:11 4,579 a------- c:\windows\1405thi95260z.exe
2009-06-24 16:35 7,426 a------- c:\windows\system32\11z47h9c5tool52e.exe
2009-06-24 01:58 11,710 a------- c:\windows\system32\7z95spyware3169.exe
2009-06-19 02:34 5,316 a------- c:\windows\system32\280d5i9144z.exe
2009-06-16 16:33 9,541 a------- c:\windows\7b55spywarz2899.dll
2009-06-16 03:07 13,808 a------- c:\windows\system32\9c7az9ware1594.dll
2009-06-15 19:51 9,591 a------- c:\windows\system32\3715sze9l1105.exe
2009-06-15 02:00 10,129 a------- c:\windows\system32\38f9vzr5943.bin
2009-06-14 10:08 2,762 a------- c:\windows\system32\50195vi9zs6d5.exe
2009-06-14 03:53 15,498 a------- c:\windows\5494spambotz49.exe
2009-06-13 10:53 10,025 a------- c:\windows\system32\299149py65dz.exe
2009-06-11 18:33 8,296 a------- c:\windows\9c95thiefz09.bin
2009-06-09 12:08 9,905 a------- c:\windows\435azpyware5973.dll
2009-06-08 22:50 3,760 a------- c:\windows\305cvi5z789.bin
2009-06-08 04:27 16,819 a------- c:\windows\21543worm1z9.dll
2009-06-02 11:53 14,053 a------- c:\windows\system32\50zbspyware985.exe
2009-06-01 15:27 4,789 a------- c:\windows\703ct5ief96z9.dll
2009-05-27 14:58 1,536,782 a------- c:\users\romain\Bf2_Ussni_m82a1_Fixed.zip
2009-05-19 20:00 16,680 a------- c:\windows\system32\61bebackd5oz10689.bin
2009-05-19 02:37 15,438 a------- c:\windows\4z9fdo5nloader2781.exe
2009-05-18 17:46 2,726 a------- c:\windows\system32\aezspa5se3942.bin
2009-05-17 22:14 14,000 a------- c:\windows\system32\4953threat970z4.bin
2009-05-16 14:04 520,192 a------- c:\windows\system32\MathmosScreensaver.scr
2009-05-16 03:05 12,822 a------- c:\windows\system32\6c51add9aze512.bin
2009-05-12 11:51 3,874 a------- c:\windows\7b98spars5199z.exe
2009-05-10 18:23 48,281 a------- c:\windows\system32\uxavspelfypycv.exe
2009-05-09 21:54 3,592 a------- c:\windows\system32\33995parse907z.bin
2009-05-09 16:41 5,095 a------- c:\windows\z335addwa9e1196.exe
2009-05-09 04:36 3,439 a------- c:\windows\system32\6e19spywarz5395.dll
2009-05-09 01:23 105,984 a------- c:\windows\system32\c_dll.dll
2009-05-08 12:37 7,175 a------- c:\windows\15249spy57z.dll
2009-05-08 04:09 9,623 a------- c:\windows\2z495not9a5virus29c.dll
2009-05-07 12:20 2,935 a------- c:\windows\system32\7edazownloader5279.exe
2009-05-07 07:58 7,576 a------- c:\windows\system32\19925wzrm30d.bin
2009-05-06 03:46 8,735 a------- c:\windows\8f95teal2z55.exe
2009-05-05 07:27 15,509 a------- c:\windows\z05a5ac9door1745.dll
2009-05-04 14:45 7,334 a------- c:\windows\79149aczt5olaf.exe
2009-05-02 02:30 2,630 a------- c:\windows\3d6fth5efz95.exe
2009-04-28 21:37 15,879 a------- c:\windows\265es9ezl608.exe
2009-02-19 22:56 143,360 a------- c:\windows\inf\infstrng.dat
2009-02-19 22:56 51,200 a------- c:\windows\inf\infpub.dat
2009-02-19 22:33 86,016 a------- c:\windows\inf\infstor.dat
2008-11-08 22:21 56 a---h--- c:\programdata\ezsidmv.dat
2008-11-08 22:21 56 a---h--- c:\progra~2\ezsidmv.dat
2008-11-07 21:52 665,600 a------- c:\windows\inf\drvindex.dat
2008-01-21 10:37 340,236 a------- c:\windows\inf\perflib\040c\perfi.dat
2008-01-21 10:37 340,236 a------- c:\windows\inf\perflib\040c\perfh.dat
2008-01-21 10:37 37,390 a------- c:\windows\inf\perflib\040c\perfd.dat
2008-01-21 10:37 37,390 a------- c:\windows\inf\perflib\040c\perfc.dat
2008-01-21 04:43 174 a--sh--- c:\program files\desktop.ini
2006-11-02 11:20 287,440 a------- c:\windows\inf\perflib\0000\perfi.dat
2006-11-02 11:20 287,440 a------- c:\windows\inf\perflib\0000\perfh.dat
2006-11-02 11:20 30,674 a------- c:\windows\inf\perflib\0000\perfd.dat
2006-11-02 11:20 30,674 a------- c:\windows\inf\perflib\0000\perfc.dat
2009-02-14 15:25 1,546 a--sh--- c:\windows\system32\GroupPolicy000.dat
============= FINISH: 15:16:17,73 ===============
Utilisateur anonyme
27 juil. 2009 à 15:28
27 juil. 2009 à 15:28
/!\ ATTENTION SUIVRE SCRUPULEUSEMENT A LA LETTRE CES INDICATIONS/!\
♦ Surtout , penses à l'enregistrement à renommer Combofix en "ton prenom.exe"
_________________________________________________________________
>Ce logiciel n'est à utiliser que prescrit par un helper qualifié et formé à l'outil.<
>>>>>>>Ne pas utiliser en dehors de ce cas de figure : dangereux!<<<<<<<<
=====================================================</gras>
♦ On va utiliser ComboFix.exe. Rends toi sur cette page web pour obtenir les liens de téléchargement, ainsi que des instructions pour exécuter l'outil:
https://www.bleepingcomputer.com/combofix/fr/comment-utiliser-combofix
Avant d'utiliser ComboFix :
______________________________________________________________________
>> referme les fenêtres de tous les programmes en cours.
>> Désactive provisoirement et seulement le temps de l'utilisation de ComboFix,
>>la protection en temps réel de ton Antivirus et de tes Antispywares,
>>qui peuvent gêner fortement la procédure de recherche et de nettoyage de l'outil.
°°°°°°°°°°°°°°°°°°°°°°°°°°°°°°°°°°°°°°°°°°°°°°°°°°°°°°°°°°°°°°°°°°°°°°°°°°°°°
♦ !!!!!NE TOUCHE A RIEN PENDANT LE TRAVAIL DE COMBOFIX (SOURIS/CLAVIER.....)!!!!!
♦ n'oublie pas de reactiver la garde de ton Antivirus et de tes Antispywares, avant de te reconnecter à internet.
>> Reviens sur le forum, et
♦ copie et colle la totalité du contenu de C:\Combofix.txt dans ton prochain message.
