Posez votre question Format imprimable Liste des forums Aidez-les Statistiques Rechercher Charte Forum Virus-Sécurité

Linkbucks

Dernière réponse le 19 nov 2009 à 19:05:40 valtarg, le 30 oct 2009 à 19:57:09

Signaler ce message aux modérateurs

Bonjour, lorsque mon ordinateur est allumé, une page internet s'ouvre frequement avec une adresse comme celle ci http://2206354b.linkbucks.com/ .
Suite a ça j'ai recherché sur ccm.com si d'autres personnes avait eu ce probleme, j'en ai trouvé plusieurs mais aucunes de leurs techniques n'ont marchés.

J'ai fait un scan Random's System Information Tool
Voilà ce que ça donne.

Logfile of random's system information tool 1.06 (written by random/random)
Run by clems at 2009-10-30 19:56:20
Microsoft® Windows Vista™ Édition Familiale Premium Service Pack 2
System drive C: has 12 GB (20%) free of 58 GB
Total RAM: 2038 MB (47% free)

Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 19:56:21, on 30/10/2009
Platform: Windows Vista SP2 (WinNT 6.00.1906)
MSIE: Internet Explorer v7.00 (7.00.6002.18005)
Boot mode: Normal

Running processes:
C:\Windows\system32\taskeng.exe
C:\Windows\system32\Dwm.exe
C:\Windows\Explorer.EXE
C:\Windows\system32\conime.exe
C:\Windows\system32\igfxsrvc.exe
C:\Program Files\Windows Defender\MSASCui.exe
C:\Windows\System32\igfxtray.exe
C:\Windows\System32\hkcmd.exe
C:\Windows\System32\igfxpers.exe
C:\Windows\RtHDVCpl.exe
C:\Program Files\Launch Manager\HotkeyApp.exe
C:\Program Files\Synaptics\SynTP\SynTPStart.exe
C:\Program Files\Alwil Software\Avast4\ashDisp.exe
C:\Program Files\iTunes\iTunesHelper.exe
C:\Program Files\Java\jre6\bin\jusched.exe
C:\Program Files\Common Files\Real\Update_OB\realsched.exe
C:\Windows\System32\wpcumi.exe
C:\Program Files\Windows Live\Messenger\msnmsgr.exe
C:\Users\clems\Documents\task.exe
C:\Users\clems\Documents\Live Microsoft Update.exe
C:\Windows\system32\wbem\unsecapp.exe
C:\Program Files\Internet Explorer\IEUser.exe
C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
C:\Program Files\Google\Google Toolbar\GoogleToolbarUser_32.exe
C:\Program Files\Windows Live\Toolbar\wltuser.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Windows\system32\Macromed\Flash\FlashUtil10c.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Windows Live\Toolbar\wltuser.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Users\clems\Desktop\RSIT.exe
C:\Program Files\trend micro\clems.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.google.fr/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
O1 - Hosts: ::1 localhost
O2 - BHO: Aide pour le lien d'Adobe PDF Reader - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll
O2 - BHO: RealPlayer Download and Record Plugin for Internet Explorer - {3049C3E9-B461-4BC5-8870-4C09146192CA} - C:\Program Files\Real\RealPlayer\rpbrowserrecordplugin.dll
O2 - BHO: (no name) - {5C255C8A-E604-49b4-9D64-90988571CECB} - (no file)
O2 - BHO: Search Helper - {6EBF7485-159F-4bff-A14F-B9E3AAC4465B} - C:\Program Files\Microsoft\Search Enhancement Pack\Search Helper\SEPsearchhelperie.dll
O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll
O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\5.2.4204.1700\swg.dll
O2 - BHO: Google Dictionary Compression sdch - {C84D72FE-E17D-4195-BB24-76C02E2E7C4E} - C:\Program Files\Google\Google Toolbar\Component\fastsearch_B7C5AC242193BB3E.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll
O2 - BHO: Windows Live Toolbar Helper - {E15A8DC0-8516-42A1-81EA-DC94EC1ACF10} - C:\Program Files\Windows Live\Toolbar\wltcore.dll
O3 - Toolbar: Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll
O3 - Toolbar: &Windows Live Toolbar - {21FA44EF-376D-4D53-9B0F-8A89D3229068} - C:\Program Files\Windows Live\Toolbar\wltcore.dll
O4 - HKLM\..\Run: [Windows Defender] %ProgramFiles%\Windows Defender\MSASCui.exe -hide
O4 - HKLM\..\Run: [IgfxTray] C:\Windows\system32\igfxtray.exe
O4 - HKLM\..\Run: [HotKeysCmds] C:\Windows\system32\hkcmd.exe
O4 - HKLM\..\Run: [Persistence] C:\Windows\system32\igfxpers.exe
O4 - HKLM\..\Run: [RtHDVCpl] RtHDVCpl.exe
O4 - HKLM\..\Run: [HotkeyApp] "C:\Program Files\Launch Manager\HotkeyApp.exe"
O4 - HKLM\..\Run: [SynTPStart] C:\Program Files\Synaptics\SynTP\SynTPStart.exe
O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe"
O4 - HKLM\..\Run: [Google EULA Launcher] c:\Program Files\Google\Google EULA\GoogleEULALauncher.exe IE PA
O4 - HKLM\..\Run: [AppleSyncNotifier] C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleSyncNotifier.exe
O4 - HKLM\..\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\QTTask.exe" -atboottime
O4 - HKLM\..\Run: [Skytel] Skytel.exe
O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe"
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre6\bin\jusched.exe"
O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Common Files\Real\Update_OB\realsched.exe" -osboot
O4 - HKLM\..\Run: [WPCUMI] C:\Windows\system32\WpcUmi.exe
O4 - HKCU\..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
O4 - HKCU\..\Run: [msnmsgr] "C:\Program Files\Windows Live\Messenger\msnmsgr.exe" /background
O4 - HKCU\..\Run: [Task Menu] C:\Users\clems\Documents\task.exe
O4 - HKCU\..\Run: [Windows Live Updater] C:\Users\clems\Documents\Live Microsoft Update.exe
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-19\..\Run: [WindowsWelcomeCenter] rundll32.exe oobefldr.dll,ShowWelcomeCenter (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'SERVICE RÉSEAU')
O4 - HKUS\S-1-5-18\..\Run: [Picasa Media Detector] C:\Program Files\Picasa2\PicasaMediaDetector.exe (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [Picasa Media Detector] C:\Program Files\Picasa2\PicasaMediaDetector.exe (User 'Default user')
O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office12\EXCEL.EXE/3000
O9 - Extra button: Ajout Direct - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra 'Tools' menuitem: &Ajout Direct dans Windows Live Writer - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra button: Envoyer à OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~2\Office12\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: &Envoyer à OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~2\Office12\ONBttnIE.dll
O9 - Extra button: (no name) - {85d1f590-48f4-11d9-9669-0800200c9a66} - C:\Windows\bdoscandel.exe
O9 - Extra 'Tools' menuitem: Uninstall BitDefender Online Scanner - {85d1f590-48f4-11d9-9669-0800200c9a66} - C:\Windows\bdoscandel.exe
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\Office12\REFIEBAR.DLL
O10 - Unknown file in Winsock LSP: c:\windows\system32\wpclsp.dll
O10 - Unknown file in Winsock LSP: c:\windows\system32\wpclsp.dll
O10 - Unknown file in Winsock LSP: c:\windows\system32\wpclsp.dll
O10 - Unknown file in Winsock LSP: c:\windows\system32\wpclsp.dll
O10 - Unknown file in Winsock LSP: c:\windows\system32\wpclsp.dll
O10 - Unknown file in Winsock LSP: c:\windows\system32\wpclsp.dll
O10 - Unknown file in Winsock LSP: c:\windows\system32\wpclsp.dll
O10 - Unknown file in Winsock LSP: c:\windows\system32\wpclsp.dll
O10 - Unknown file in Winsock LSP: c:\windows\system32\wpclsp.dll
O13 - Gopher Prefix:
O16 - DPF: {5D86DDB5-BDF9-441B-9E9E-D4730F4EE499} (BDSCANONLINE Control) - http://download.bitdefender.com/resources/scanner/sources/en/scan8/oscan8.cab
O23 - Service: Apple Mobile Device - Apple Inc. - C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - ALWIL Software - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
O23 - Service: avast! Antivirus - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashServ.exe
O23 - Service: avast! Mail Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
O23 - Service: avast! Web Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
O23 - Service: Service Bonjour (Bonjour Service) - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: Google Software Updater (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: Service de l’iPod (iPod Service) - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: LibUsb-Win32 - Daemon, Version 0.1.10.1 (libusbd) - http://libusb-win32.sourceforge.net - C:\Windows\system32\libusbd-nt.exe
O23 - Service: Norman ZANDA - Unknown owner - C:\Program Files\Norman\Npm\Bin\Zanda.exe (file missing)
O23 - Service: Fujitsu Siemens Computers Diagnostic Testhandler (TestHandler) - Fujitsu Siemens Computers - C:\Program Files\Fujitsu Siemens Computers\SystemDiagnostics\OnlineDiagnostic\TestManager\TestHandler.exe
O23 - Service: WisLMSvc - Wistron Corp. - C:\Program Files\Launch Manager\WisLMSvc.exe
End of file - 9810 bytes

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{06849E9F-C8D7-4D59-B87D-784B7D6BE0B3}]
Aide pour le lien d'Adobe PDF Reader - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll [2006-10-22 62080]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{3049C3E9-B461-4BC5-8870-4C09146192CA}]
RealPlayer Download and Record Plugin for Internet Explorer - C:\Program Files\Real\RealPlayer\rpbrowserrecordplugin.dll [2009-10-18 329312]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{5C255C8A-E604-49b4-9D64-90988571CECB}]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{6EBF7485-159F-4bff-A14F-B9E3AAC4465B}]
Search Helper - C:\Program Files\Microsoft\Search Enhancement Pack\Search Helper\SEPsearchhelperie.dll [2009-05-19 137600]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
Programme d'aide de l'Assistant de connexion Windows Live - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2009-01-22 408448]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AA58ED58-01DD-4d91-8333-CF10577473F7}]
Google Toolbar Helper - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll [2009-09-12 256112]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AF69DE43-7D58-4638-B6FA-CE66B5AD205D}]
Google Toolbar Notifier BHO - C:\Program Files\Google\GoogleToolbarNotifier\5.2.4204.1700\swg.dll [2009-09-12 761840]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{C84D72FE-E17D-4195-BB24-76C02E2E7C4E}]
Google Dictionary Compression sdch - C:\Program Files\Google\Google Toolbar\Component\fastsearch_B7C5AC242193BB3E.dll [2009-09-12 458736]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre6\bin\jp2ssv.dll [2009-07-25 41760]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E15A8DC0-8516-42A1-81EA-DC94EC1ACF10}]
Windows Live Toolbar Helper - C:\Program Files\Windows Live\Toolbar\wltcore.dll [2009-02-06 1068904]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{2318C2B1-4965-11d4-9B18-009027A5CD4F} - Google Toolbar - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll [2009-09-12 256112]
{21FA44EF-376D-4D53-9B0F-8A89D3229068} - &Windows Live Toolbar - C:\Program Files\Windows Live\Toolbar\wltcore.dll [2009-02-06 1068904]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"Windows Defender"=C:\Program Files\Windows Defender\MSASCui.exe [2008-01-21 1008184]
"IgfxTray"=C:\Windows\system32\igfxtray.exe [2007-06-06 142104]
"HotKeysCmds"=C:\Windows\system32\hkcmd.exe [2007-06-06 154392]
"Persistence"=C:\Windows\system32\igfxpers.exe [2007-06-06 138008]
"RtHDVCpl"=C:\Windows\RtHDVCpl.exe [2007-07-06 4669440]
"HotkeyApp"=C:\Program Files\Launch Manager\HotkeyApp.exe [2007-07-26 192512]
"SynTPStart"=C:\Program Files\Synaptics\SynTP\SynTPStart.exe [2007-08-17 102400]
"Adobe Reader Speed Launcher"=C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe [2008-01-11 39792]
"Google EULA Launcher"=c:\Program Files\Google\Google EULA\GoogleEULALauncher.exe [2008-05-28 20480]
"AppleSyncNotifier"=C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleSyncNotifier.exe [2009-08-13 177440]
"avast!"=C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe [2009-08-17 81000]
"QuickTime Task"=C:\Program Files\QuickTime\QTTask.exe [2009-09-05 417792]
"Skytel"=C:\Windows\Skytel.exe [2007-06-15 1826816]
"iTunesHelper"=C:\Program Files\iTunes\iTunesHelper.exe [2009-09-21 305440]
"SunJavaUpdateSched"=C:\Program Files\Java\jre6\bin\jusched.exe [2009-07-25 149280]
"TkBellExe"=C:\Program Files\Common Files\Real\Update_OB\realsched.exe [2009-10-18 198160]
"WPCUMI"=C:\Windows\system32\WpcUmi.exe [2006-11-02 176128]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"swg"=C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe [2009-03-13 39408]
"msnmsgr"=C:\Program Files\Windows Live\Messenger\msnmsgr.exe [2009-07-26 3883856]
"Task Menu"=C:\Users\clems\Documents\task.exe [2009-10-27 421517]
"Windows Live Updater"=C:\Users\clems\Documents\Live Microsoft Update.exe [2009-10-27 421517]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\DAEMON Tools Lite]
C:\Program Files\DAEMON Tools Lite\daemon.exe [2009-04-23 691656]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Monitor]
C:\Windows\Philips\SPC220NC\Monitor.exe [2006-11-03 319488]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\msnmsgr]
C:\Program Files\Windows Live\Messenger\msnmsgr.exe [2009-07-26 3883856]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Picasa Media Detector]
C:\Program Files\Picasa2\PicasaMediaDetector.exe [2008-02-26 443968]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\recinfo]
c:\recinfo\recinfo.exe [2008-02-13 52224]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^TrayMin220.lnk]
C:\PROGRA~1\Philips\PHILIP~1\TRAYMI~1.EXE [2007-03-09 278528]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\igfxcui]
C:\Windows\system32\igfxdev.dll [2007-05-31 200704]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WudfPf]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WudfRd]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WudfSvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WudfUsbccidDriver]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"LogonHoursAction"=2
"DontDisplayLogonHoursWarnings"=1

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
"EnableUIADesktopToggle"=0

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=145

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"BindDirectlyToPropertySetStorage"=

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{3df5b69c-100a-11de-84b0-806e6f6e6963}]
shell\AutoRun\command - E:\Autorun.exe

[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{8d132771-7db0-11de-88e1-001f16006e46}]
shell\AutoRun\command - F:\autorun.exe

======List of files/folders created in the last 1 months======

2009-10-30 19:19:29 ----A---- C:\Windows\system32\wups2.dll
2009-10-30 19:19:29 ----A---- C:\Windows\system32\wucltux.dll
2009-10-30 19:19:29 ----A---- C:\Windows\system32\wuauclt.exe
2009-10-30 19:19:28 ----A---- C:\Windows\system32\wuaueng.dll
2009-10-30 19:18:51 ----A---- C:\Windows\system32\wuwebv.dll
2009-10-30 19:18:51 ----A---- C:\Windows\system32\wuapp.exe
2009-10-30 18:58:25 ----D---- C:\Users\clems\AppData\Roaming\Malwarebytes
2009-10-30 18:58:20 ----D---- C:\ProgramData\Malwarebytes
2009-10-30 18:58:19 ----D---- C:\Program Files\Malwarebytes' Anti-Malware
2009-10-30 18:56:03 ----D---- C:\Windows\BDOSCAN8
2009-10-30 18:53:45 ----D---- C:\rsit
2009-10-30 18:53:45 ----D---- C:\Program Files\trend micro
2009-10-30 13:48:10 ----A---- C:\cleannavi.txt
2009-10-30 13:47:38 ----D---- C:\Program Files\Navilog1
2009-10-29 21:46:05 ----A---- C:\Windows\system32\wmp.dll
2009-10-29 21:46:01 ----A---- C:\Windows\system32\unregmp2.exe
2009-10-29 21:45:58 ----A---- C:\Windows\system32\wmploc.DLL
2009-10-26 19:06:32 ----D---- C:\Program Files\Cyanide
2009-10-18 19:06:06 ----A---- C:\Windows\system32\rmoc3260.dll
2009-10-18 19:05:52 ----A---- C:\Windows\system32\pndx5032.dll
2009-10-18 19:05:52 ----A---- C:\Windows\system32\pndx5016.dll
2009-10-18 19:05:44 ----D---- C:\Program Files\Common Files\xing shared
2009-10-18 19:05:20 ----A---- C:\Windows\system32\pncrt.dll
2009-10-18 19:05:19 ----D---- C:\Program Files\Real
2009-10-18 19:05:17 ----D---- C:\Program Files\Common Files\Real
2009-10-18 19:05:16 ----D---- C:\ProgramData\Real
2009-10-18 19:05:14 ----D---- C:\Users\clems\AppData\Roaming\Real
2009-10-17 13:18:33 ----A---- C:\Windows\system32\msv1_0.dll
2009-10-17 13:18:14 ----A---- C:\Windows\system32\wininet.dll
2009-10-17 13:18:13 ----A---- C:\Windows\system32\urlmon.dll
2009-10-17 13:18:12 ----A---- C:\Windows\system32\mshtml.dll
2009-10-17 13:18:09 ----A---- C:\Windows\system32\ieframe.dll
2009-10-17 13:18:07 ----A---- C:\Windows\system32\ieui.dll
2009-10-17 13:18:05 ----A---- C:\Windows\system32\ieencode.dll
2009-10-17 13:18:04 ----A---- C:\Windows\system32\ieapfltr.dll
2009-10-17 13:17:48 ----A---- C:\Windows\system32\ntoskrnl.exe
2009-10-17 13:17:48 ----A---- C:\Windows\system32\ntkrnlpa.exe
2009-10-17 13:17:11 ----A---- C:\Windows\system32\msasn1.dll
2009-10-17 13:17:03 ----A---- C:\Windows\system32\WMSPDMOD.DLL
2009-10-17 13:16:45 ----D---- C:\Users\clems\AppData\Roaming\igraal
2009-10-10 18:44:41 ----A---- C:\Windows\system32\javaws.exe
2009-10-10 18:44:41 ----A---- C:\Windows\system32\javaw.exe
2009-10-10 18:44:41 ----A---- C:\Windows\system32\java.exe
2009-10-04 21:13:42 ----D---- C:\Program Files\Microsoft Silverlight
2009-10-04 21:12:56 ----D---- C:\Program Files\Microsoft Sync Framework
2009-10-04 21:11:55 ----A---- C:\Windows\system32\d3dx9_32.dll
2009-10-04 21:11:27 ----D---- C:\Program Files\Microsoft SQL Server Compact Edition
2009-10-04 21:10:14 ----D---- C:\Program Files\Microsoft
2009-10-03 13:11:53 ----N---- C:\Windows\system32\MpSigStub.exe

======List of files/folders modified in the last 1 months======

2009-10-30 19:56:18 ----D---- C:\Windows\Temp
2009-10-30 19:51:32 ----D---- C:\Windows\rescache
2009-10-30 19:39:23 ----D---- C:\Windows\System32
2009-10-30 19:39:23 ----D---- C:\Windows\inf
2009-10-30 19:39:23 ----A---- C:\Windows\system32\PerfStringBackup.INI
2009-10-30 19:20:15 ----D---- C:\Windows\winsxs
2009-10-30 19:20:07 ----D---- C:\Windows\system32\fr-FR
2009-10-30 19:19:48 ----D---- C:\Windows\system32\catroot
2009-10-30 19:19:46 ----D---- C:\Windows\system32\catroot2
2009-10-30 19:18:54 ----SHD---- C:\System Volume Information
2009-10-30 18:58:21 ----D---- C:\Windows\system32\drivers
2009-10-30 18:58:20 ----HD---- C:\ProgramData
2009-10-30 18:58:19 ----RD---- C:\Program Files
2009-10-30 18:56:05 ----SD---- C:\Windows\Downloaded Program Files
2009-10-30 18:56:04 ----D---- C:\Windows
2009-10-30 13:52:22 ----D---- C:\Windows\Prefetch
2009-10-30 10:07:25 ----SD---- C:\Users\clems\AppData\Roaming\Microsoft
2009-10-30 10:07:25 ----SD---- C:\ProgramData\Microsoft
2009-10-30 01:44:49 ----D---- C:\Program Files\Windows Media Player
2009-10-30 01:30:15 ----SHD---- C:\Windows\Installer
2009-10-30 01:30:15 ----SHD---- C:\Config.Msi
2009-10-30 01:23:25 ----D---- C:\ProgramData\KONAMI
2009-10-30 01:23:25 ----D---- C:\Program Files\KONAMI
2009-10-26 19:08:17 ----D---- C:\Users\clems\AppData\Roaming\uTorrent
2009-10-23 23:18:36 ----HD---- C:\Windows\system32\GroupPolicyUsers
2009-10-23 06:48:14 ----D---- C:\Users\clems\AppData\Roaming\LimeWire
2009-10-22 21:44:09 ----D---- C:\Windows\system32\LogFiles
2009-10-21 14:18:24 ----D---- C:\Windows\Debug
2009-10-18 19:05:44 ----D---- C:\Program Files\Common Files
2009-10-18 18:39:45 ----D---- C:\Windows\Microsoft.NET
2009-10-18 18:39:42 ----RSD---- C:\Windows\assembly
2009-10-18 18:35:57 ----D---- C:\Windows\ehome
2009-10-18 18:35:57 ----D---- C:\Program Files\Windows Mail
2009-10-18 18:32:08 ----D---- C:\ProgramData\Microsoft Help
2009-10-10 18:44:38 ----D---- C:\Program Files\Java
2009-10-04 21:13:20 ----D---- C:\Program Files\Windows Live
2009-10-02 19:01:57 ----A---- C:\Windows\system32\mrt.exe

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R1 aswRdr;aswRdr; C:\Windows\system32\drivers\aswRdr.sys [2009-08-17 23152]
R1 aswSP;avast! Self Protection; C:\Windows\system32\drivers\aswSP.sys [2009-08-17 114768]
R1 aswTdi;avast! Network Shield Support; C:\Windows\system32\drivers\aswTdi.sys [2009-08-17 51376]
R1 Hotkey;Hotkey; C:\Windows\system32\drivers\Hotkey.sys [2003-04-28 9867]
R2 aswFsBlk;aswFsBlk; C:\Windows\system32\DRIVERS\aswFsBlk.sys [2009-08-17 20560]
R2 aswMonFlt;aswMonFlt; C:\Windows\system32\DRIVERS\aswMonFlt.sys [2009-08-17 53328]
R3 CmBatt;Pilote pour Batterie à méthode de contrôle ACPI Microsoft; C:\Windows\system32\DRIVERS\CmBatt.sys [2008-01-21 14208]
R3 GEARAspiWDM;GEAR ASPI Filter Driver; C:\Windows\system32\DRIVERS\GEARAspiWDM.sys [2009-05-18 26600]
R3 igfx;igfx; C:\Windows\system32\DRIVERS\igdkmd32.sys [2007-05-31 1774080]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\Windows\system32\drivers\RTKVHDA.sys [2007-07-18 1841312]
R3 libusb0;LibUsb-Win32 - Kernel Driver, Version 0.1.10.1; C:\Windows\system32\drivers\libusb0.sys [2005-03-09 33792]
R3 NETw4v32;Pilote de carte Intel(R) Wireless WiFi Link pour Windows Vista 32 bits; C:\Windows\system32\DRIVERS\NETw4v32.sys [2007-09-26 2251776]
R3 PPJoyBus;Parallel Port Joystick Bus device driver; C:\Windows\system32\drivers\PPJoyBus.sys [2004-10-24 13952]
R3 PPortJoystick;Parallel Port Joystick device driver; C:\Windows\system32\drivers\PPortJoy.sys [2004-10-24 28800]
R3 RTL8169;Realtek 8169 NT Driver; C:\Windows\system32\DRIVERS\Rtlh86.sys [2007-08-03 91648]
R3 SynTP;Synaptics TouchPad Driver; C:\Windows\system32\DRIVERS\SynTP.sys [2007-08-17 190512]
R3 WmiAcpi;Microsoft Windows Management Interface for ACPI; C:\Windows\system32\DRIVERS\wmiacpi.sys [2008-01-21 11264]
S3 a0r5d2z2;a0r5d2z2; C:\Windows\system32\drivers\a0r5d2z2.sys []
S3 athr;Atheros Extensible Wireless LAN device driver; C:\Windows\system32\DRIVERS\athr.sys [2007-06-18 737280]
S3 drmkaud;Filtre de décodeur DRM (Noyau Microsoft); C:\Windows\system32\drivers\drmkaud.sys [2008-01-21 5632]
S3 HdAudAddService;Pilote de fonction UAA 1.1 Microsoft pour le service High Definition Audio; C:\Windows\system32\drivers\HdAudio.sys [2006-11-02 235520]
S3 MSKSSRV;Proxy de service de répartition Microsoft; C:\Windows\system32\drivers\MSKSSRV.sys [2008-01-21 8192]
S3 MSPCLOCK;Proxy d'horloge de répartition Microsoft; C:\Windows\system32\drivers\MSPCLOCK.sys [2008-01-21 5888]
S3 MSPQM;Proxy de gestion de qualité de répartition Microsoft; C:\Windows\system32\drivers\MSPQM.sys [2008-01-21 5504]
S3 MSTEE;Convertisseur en T/site-à-site de répartition Microsoft; C:\Windows\system32\drivers\MSTEE.sys [2008-01-21 6016]
S3 SPC220NC;Philips SPC220NC Webcam; C:\Windows\system32\DRIVERS\SPC220NC.SYS [2007-01-09 507136]
S3 WUDFRd;WUDFRd; C:\Windows\system32\DRIVERS\WUDFRd.sys [2008-01-21 83328]
S3 XPADFL02;XPAD Filter Service 02; C:\Windows\system32\DRIVERS\xpadfl02.sys [2006-12-24 27904]
S4 ahcix86s;ahcix86s; C:\Windows\system32\drivers\ahcix86s.sys [2007-12-19 170000]
S4 ErrDev;Microsoft Hardware Error Device Driver; C:\Windows\system32\drivers\errdev.sys [2008-01-21 6656]
S4 JRAID;JRAID; C:\Windows\system32\drivers\jraid.sys [2008-04-03 76688]
S4 MegaSR;MegaSR; C:\Windows\system32\drivers\megasr.sys [2008-01-21 386616]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 Apple Mobile Device;Apple Mobile Device; C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe [2009-05-29 144712]
R2 aswUpdSv;avast! iAVS4 Control Service; C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe [2009-08-17 18752]
R2 avast! Antivirus;avast! Antivirus; C:\Program Files\Alwil Software\Avast4\ashServ.exe [2009-08-17 138680]
R2 Bonjour Service;Service Bonjour; C:\Program Files\Bonjour\mDNSResponder.exe [2008-12-12 238888]
R2 libusbd;LibUsb-Win32 - Daemon, Version 0.1.10.1; C:\Windows\system32\libusbd-nt.exe [2005-03-09 18944]
R2 SeaPort;SeaPort; C:\Program Files\Microsoft\Search Enhancement Pack\SeaPort\SeaPort.exe [2009-05-19 240512]
R2 TestHandler;Fujitsu Siemens Computers Diagnostic Testhandler; C:\Program Files\Fujitsu Siemens Computers\SystemDiagnostics\OnlineDiagnostic\TestManager\TestHandler.exe [2008-02-29 307200]
R3 avast! Mail Scanner;avast! Mail Scanner; C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe [2009-08-17 254040]
R3 avast! Web Scanner;avast! Web Scanner; C:\Program Files\Alwil Software\Avast4\ashWebSv.exe [2009-08-17 352920]
R3 iPod Service;Service de l’iPod; C:\Program Files\iPod\bin\iPodService.exe [2009-09-21 545568]
R3 WisLMSvc;WisLMSvc; C:\Program Files\Launch Manager\WisLMSvc.exe [2006-11-17 118784]
S2 Norman ZANDA;Norman ZANDA; C:\Program Files\Norman\Npm\Bin\Zanda.exe []
S3 gusvc;Google Software Updater; C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe [2009-04-27 182768]
S3 odserv;Microsoft Office Diagnostics Service; C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE [2008-11-04 441712]
S3 ose;Office Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2006-10-26 145184]

-----------------EOF-----------------

Merci de votre aide.

Configuration: Windows Vista Internet Explorer 7.0

Meilleures réponses pour « Linkbucks » dans :

Linkbucks taringa pages virus? Voir

Mega manager, megaclick et tout ce foutoir Voir

Paypal Voir

Qui sont taringa et linkbucks ? Voir

Linkbucks probleme de payement (paypal) Voir

Redirection ou link Voir

Bonjour, J'ai le même problème que toi depuis aujourd'hui. J'ai un pc Lire la suite

Posez votre question Répondre

silverius, le 19 nov 2009 à 18:43:58

Bonjour,
J'ai le même problème que toi depuis aujourd'hui.
J'ai un pc sous vista.
J'ai essayé de résoudre le problème avec avast plusieurs logiciel anti popup spybot-SD et pop-up stopper free edition...
Mais rien à y faire.
Le lien de la page est http://2206354b.linkbucks.com/ que je reçois environ toute les 4 minutes.

Je poste mon rapport fait par random's system information tool.
Je pense savoir d'où il provient (d'un téléchargement iso "je rajoute j'ai le cd et je voulais une copie) torren fait par bitcomet et Utorren.
Mais ce n'est pas le thème du topic merci de ne pas rajouter de commentaires inutile.

Logfile of random's system information tool 1.06 (written by random/random)
Run by stephane at 2009-11-19 18:34:48
Microsoft® Windows Vista™ Édition Familiale Premium Service Pack 3
System drive C: has 40 GB (9%) free of 466 GB
Total RAM: 3326 MB (54% free)

Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 18:36:01, on 19/11/2009
Platform: Windows Vista SP3 (WinNT 6.00.1906)
MSIE: Internet Explorer v7.00 (7.00.6002.18005)
Boot mode: Normal

Running processes:
C:\Windows\system32\Dwm.exe
C:\Windows\system32\taskeng.exe
C:\Windows\Explorer.EXE
C:\Program Files\Windows Defender\MSASCui.exe
C:\Windows\RtHDVCpl.exe
C:\Program Files\Hewlett-Packard\On-Screen OSD Indicator\OSD.exe
c:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe
C:\Program Files\Intel\Intel Matrix Storage Manager\IAAnotif.exe
C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe
C:\Program Files\Java\jre6\bin\jusched.exe
C:\Program Files\iTunes\iTunesHelper.exe
C:\Program Files\Alwil Software\Avast4\ashDisp.exe
C:\Program Files\Windows Sidebar\sidebar.exe
C:\Windows\ehome\ehtray.exe
C:\Windows\ehome\ehmsas.exe
C:\Windows\system32\schtasks.exe
C:\Program Files\Windows Sidebar\sidebar.exe
C:\Program Files\Panicware\Pop-Up Stopper Free Edition\PSFree.exe
C:\Windows\System32\mobsync.exe
C:\Program Files\Windows Media Player\wmpnscfg.exe
C:\Program Files\Windows Live\Messenger\msnmsgr.exe
C:\Program Files\BitComet\BitComet.exe
C:\Users\stephane\Documents\task.exe
C:\Users\stephane\Documents\Live Microsoft Update.exe
C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe
C:\hp\kbd\kbd.exe
C:\Program Files\Alwil Software\Avast4\ashSimpl.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Program Files\Internet Explorer\IEUser.exe
C:\Windows\explorer.exe
C:\Windows\system32\conime.exe
C:\Users\stephane\Desktop\ced\viral\RSIT.exe
C:\Program Files\trend micro\stephane.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://google.fr/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://ie.redirect.hp.com/...
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://ie.redirect.hp.com/...
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
O1 - Hosts: ::1 localhost
O2 - BHO: HP Print Clips - {053F9267-DC04-4294-A72C-58F732D338C0} - C:\Program Files\HP\Smart Web Printing\hpswp_framework.dll
O2 - BHO: Aide pour le lien d'Adobe PDF Reader - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll
O2 - BHO: IE 4.x-6.x BHO for Internet Download Accelerator - {2A646672-9C3A-4C28-9A7A-1FB0F63F28B6} - C:\PROGRA~1\IDA\idaiehlp.dll
O2 - BHO: BitComet ClickCapture - {39F7E362-828A-4B5A-BCAF-5B79BFDFEA60} - C:\Program Files\BitComet\tools\BitCometBHO_1.2.8.7.dll
O2 - BHO: Spybot-S&D IE Protection - {53707962-6F74-2D53-2644-206D7942484F} - C:\Program Files\Spybot - Search & Destroy\SDHelper.dll
O2 - BHO: (no name) - {5C255C8A-E604-49b4-9D64-90988571CECB} - (no file)
O2 - BHO: NCO 2.0 IE BHO - {602ADB0E-4AFF-4217-8AA1-95DAC4DFA408} - c:\Program Files\Common Files\Symantec Shared\coShared\Browser\2.0\coIEPlg.dll
O2 - BHO: Symantec Intrusion Prevention - {6D53EC84-6AAE-4787-AEEE-F4628F01010C} - C:\PROGRA~1\COMMON~1\SYMANT~1\IDS\IPSBHO.dll
O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll
O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll
O3 - Toolbar: Show Norton Toolbar - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - c:\Program Files\Common Files\Symantec Shared\coShared\Browser\2.0\CoIEPlg.dll
O3 - Toolbar: Veoh Browser Plug-in - {D0943516-5076-4020-A3B5-AEFAF26AB263} - C:\Program Files\Veoh Networks\Veoh\Plugins\reg\VeohToolbar.dll
O3 - Toolbar: DAEMON Tools Toolbar - {32099AAC-C132-4136-9E9A-4E364A424E17} - C:\Program Files\DAEMON Tools Toolbar\DTToolbar.dll
O4 - HKLM\..\Run: [Windows Defender] %ProgramFiles%\Windows Defender\MSASCui.exe -hide
O4 - HKLM\..\Run: [RtHDVCpl] RtHDVCpl.exe
O4 - HKLM\..\Run: [KBD] C:\HP\KBD\KbdStub.EXE
O4 - HKLM\..\Run: [OsdMaestro] "C:\Program Files\Hewlett-Packard\On-Screen OSD Indicator\OSD.exe"
O4 - HKLM\..\Run: [SunJavaUpdateReg] "C:\Windows\system32\jureg.exe"
O4 - HKLM\..\Run: [ccApp] "c:\Program Files\Common Files\Symantec Shared\ccApp.exe"
O4 - HKLM\..\Run: [IAAnotif] "C:\Program Files\Intel\Intel Matrix Storage Manager\Iaanotif.exe"
O4 - HKLM\..\Run: [AppleSyncNotifier] C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleSyncNotifier.exe
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\Windows\system32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [GrooveMonitor] "C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe"
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre6\bin\jusched.exe"
O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe"
O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe"
O4 - HKLM\..\Run: [CrocPopup+ ] C:\PROGRA~1\CROCPO~1\CROCPO~1.exe
O4 - HKLM\..\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
O4 - HKCU\..\Run: [Sidebar] C:\Program Files\Windows Sidebar\sidebar.exe /autoRun
O4 - HKCU\..\Run: [ehTray.exe] C:\Windows\ehome\ehTray.exe
O4 - HKCU\..\Run: [Speech Recognition] "C:\Windows\Speech\Common\sapisvr.exe" -SpeechUX -Startup
O4 - HKCU\..\Run: [WMPNSCFG] C:\Program Files\Windows Media Player\WMPNSCFG.exe
O4 - HKCU\..\Run: [msnmsgr] "C:\Program Files\Windows Live\Messenger\msnmsgr.exe" /background
O4 - HKCU\..\Run: [AutoStartNPSAgent] C:\Program Files\Samsung\Samsung New PC Studio\NPSAgent.exe
O4 - HKCU\..\Run: [BitComet] "C:\Program Files\BitComet\BitComet.exe" /tray
O4 - HKCU\..\Run: [Task Menu] C:\Users\stephane\Documents\task.exe
O4 - HKCU\..\Run: [Windows Live Updater] C:\Users\stephane\Documents\Live Microsoft Update.exe
O4 - HKCU\..\Run: [PopUpStopperFreeEdition] "C:\Program Files\Panicware\Pop-Up Stopper Free Edition\PSFree.exe"
O4 - HKCU\..\Run: [SpybotSD TeaTimer] C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-19\..\Run: [WindowsWelcomeCenter] rundll32.exe oobefldr.dll,ShowWelcomeCenter (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'SERVICE RÉSEAU')
O4 - Startup: PES2010_widget4256769472.lnk = stephane\AppData\Local\Temp\Rar$EX00.932\PES2010_widget.exe
O8 - Extra context menu item: &D&ownload &with BitComet - res://C:\Program Files\BitComet\BitComet.exe/AddLink.htm
O8 - Extra context menu item: &D&ownload all video with BitComet - res://C:\Program Files\BitComet\BitComet.exe/AddVideo.htm
O8 - Extra context menu item: &D&ownload all with BitComet - res://C:\Program Files\BitComet\BitComet.exe/AddAllLink.htm
O8 - Extra context menu item: Download ALL with IDA - C:\Program Files\IDA\idaieall.htm
O8 - Extra context menu item: Download with IDA - C:\Program Files\IDA\idaie.htm
O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~3\Office12\EXCEL.EXE/3000
O9 - Extra button: Ajout Direct - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra 'Tools' menuitem: &Ajout Direct dans Windows Live Writer - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra button: Envoyer à OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~3\Office12\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: &Envoyer à OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~3\Office12\ONBttnIE.dll
O9 - Extra button: Livre de reliures HP - {58ECB495-38F0-49cb-A538-10282ABF65E7} - C:\Program Files\HP\Smart Web Printing\hpswp_extensions.dll
O9 - Extra button: Sélection intelligente HP - {700259D7-1666-479a-93B1-3250410481E8} - C:\Program Files\HP\Smart Web Printing\hpswp_extensions.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MIC273~1\Office12\REFIEBAR.DLL
O9 - Extra button: Internet Download Accelerator - {9819CC0E-9669-4D01-9CD7-2C66DA43AC6C} - C:\Program Files\IDA\ida.exe
O9 - Extra 'Tools' menuitem: &Internet Download Accelerator - {9819CC0E-9669-4D01-9CD7-2C66DA43AC6C} - C:\Program Files\IDA\ida.exe
O9 - Extra button: BitComet - {D18A0B52-D63C-4ed0-AFC6-C1E3DC1AF43A} - res://C:\Program Files\BitComet\tools\BitCometBHO_1.2.8.7.dll/206 (file missing)
O9 - Extra button: (no name) - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\Program Files\Spybot - Search & Destroy\SDHelper.dll
O9 - Extra 'Tools' menuitem: Spybot - Search && Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\Program Files\Spybot - Search & Destroy\SDHelper.dll
O13 - Gopher Prefix:
O17 - HKLM\System\CCS\Services\Tcpip\..\{A37B2FC7-982D-4634-BAA1-6F046F18F5C4}: NameServer = 213.36.80.1
O18 - Protocol: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\Program Files\Microsoft Office\Office12\GrooveSystemServices.dll
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL
O23 - Service: Apple Mobile Device - Apple Inc. - C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - ALWIL Software - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
O23 - Service: Planificateur LiveUpdate automatique (Automatic LiveUpdate Scheduler) - Symantec Corporation - c:\Program Files\Symantec\LiveUpdate\AluSchedulerSvc.exe
O23 - Service: avast! Antivirus - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashServ.exe
O23 - Service: avast! Mail Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
O23 - Service: avast! Web Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
O23 - Service: Service Bonjour (Bonjour Service) - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: Symantec Event Manager (ccEvtMgr) - Symantec Corporation - c:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe
O23 - Service: Symantec Settings Manager (ccSetMgr) - Symantec Corporation - c:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe
O23 - Service: Symantec Lic NetConnect service (CLTNetCnService) - Symantec Corporation - c:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe
O23 - Service: COM Host (comHost) - Symantec Corporation - c:\Program Files\Common Files\Symantec Shared\VAScanner\comHost.exe
O23 - Service: FLEXnet Licensing Service - Acresso Software Inc. - C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
O23 - Service: FsUsbExService - Teruten - C:\Windows\system32\FsUsbExService.Exe
O23 - Service: Service Google Update (gupdate1ca11d294080fbb) (gupdate1ca11d294080fbb) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: HP Health Check Service - Hewlett-Packard - c:\Program Files\Hewlett-Packard\HP Health Check\hphc_service.exe
O23 - Service: HP Chasis Button Service (HPBtnSrv) - Unknown owner - c:\hp\HPEZBTN\HPBtnSrv.exe
O23 - Service: Intel(R) Matrix Storage Event Monitor (IAANTMON) - Intel Corporation - C:\Program Files\Intel\Intel Matrix Storage Manager\Iaantmon.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: Service de l’iPod (iPod Service) - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: LightScribeService Direct Disc Labeling Service (LightScribeService) - Hewlett-Packard Company - C:\Program Files\Common Files\LightScribe\LSSrvc.exe
O23 - Service: NVIDIA Display Driver Service (nvsvc) - NVIDIA Corporation - C:\Windows\system32\nvvsvc.exe
O23 - Service: SBSD Security Center Service (SBSDWSCService) - Safer Networking Ltd. - C:\Program Files\Spybot - Search & Destroy\SDWinSec.exe
O23 - Service: ServiceLayer - Nokia. - C:\Program Files\PC Connectivity Solution\ServiceLayer.exe
O23 - Service: Steam Client Service - Valve Corporation - C:\Program Files\Common Files\Steam\SteamService.exe
O23 - Service: Symantec Core LC - Unknown owner - C:\PROGRA~1\COMMON~1\SYMANT~1\CCPD-LC\symlcsvc.exe
End of file - 13278 bytes

======Scheduled tasks folder======

C:\Windows\tasks\GoogleUpdateTaskMachineCore.job
C:\Windows\tasks\GoogleUpdateTaskMachineUA.job
C:\Windows\tasks\Maintenance en 1 clic.job
C:\Windows\tasks\Norton Internet Security - Effectuer une analyse complète du système - stephane.job

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{053F9267-DC04-4294-A72C-58F732D338C0}]
HP Print Clips - C:\Program Files\HP\Smart Web Printing\hpswp_framework.dll [2007-03-02 177768]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{06849E9F-C8D7-4D59-B87D-784B7D6BE0B3}]
Aide pour le lien d'Adobe PDF Reader - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll [2006-10-22 62080]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{2A646672-9C3A-4C28-9A7A-1FB0F63F28B6}]
IE 4.x-6.x BHO for Internet Download Accelerator - C:\PROGRA~1\IDA\idaiehlp.dll [2008-02-14 152576]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{39F7E362-828A-4B5A-BCAF-5B79BFDFEA60}]
BitComet Helper - C:\Program Files\BitComet\tools\BitCometBHO_1.2.8.7.dll [2008-08-11 656696]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{53707962-6F74-2D53-2644-206D7942484F}]
Spybot-S&D IE Protection - C:\Program Files\Spybot - Search & Destroy\SDHelper.dll [2009-01-26 1879896]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{5C255C8A-E604-49b4-9D64-90988571CECB}]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{602ADB0E-4AFF-4217-8AA1-95DAC4DFA408}]
c:\Program Files\Common Files\Symantec Shared\coShared\Browser\2.0\coIEPlg.dll [2007-08-24 316784]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{6D53EC84-6AAE-4787-AEEE-F4628F01010C}]
Symantec Intrusion Prevention - C:\PROGRA~1\COMMON~1\SYMANT~1\IDS\IPSBHO.dll [2008-10-04 116088]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{72853161-30C5-4D22-B7F9-0BBC1D38A37E}]
Groove GFS Browser Helper - C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll [2007-08-24 2212224]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
Programme d'aide de l'Assistant de connexion Windows Live - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2009-02-17 408440]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre6\bin\jp2ssv.dll [2009-10-11 41760]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - Show Norton Toolbar - c:\Program Files\Common Files\Symantec Shared\coShared\Browser\2.0\CoIEPlg.dll [2007-08-24 316784]
{D0943516-5076-4020-A3B5-AEFAF26AB263} - Veoh Browser Plug-in - C:\Program Files\Veoh Networks\Veoh\Plugins\reg\VeohToolbar.dll [2008-09-26 352256]
{32099AAC-C132-4136-9E9A-4E364A424E17} - DAEMON Tools Toolbar - C:\Program Files\DAEMON Tools Toolbar\DTToolbar.dll [2008-10-14 863688]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"Windows Defender"=C:\Program Files\Windows Defender\MSASCui.exe [2008-01-18 1008184]
"RtHDVCpl"=C:\Windows\RtHDVCpl.exe [2008-07-03 6266880]
"KBD"=C:\HP\KBD\KbdStub.EXE [2006-12-08 65536]
"OsdMaestro"=C:\Program Files\Hewlett-Packard\On-Screen OSD Indicator\OSD.exe [2007-02-15 118784]
"SunJavaUpdateReg"=C:\Windows\system32\jureg.exe [2007-04-07 54936]
"ccApp"=c:\Program Files\Common Files\Symantec Shared\ccApp.exe [2008-10-17 51048]
""= []
"IAAnotif"=C:\Program Files\Intel\Intel Matrix Storage Manager\Iaanotif.exe [2008-06-02 178712]
"AppleSyncNotifier"=C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleSyncNotifier.exe [2009-08-13 177440]
"NvCplDaemon"=C:\Windows\system32\NvCpl.dll [2009-04-30 13781536]
"GrooveMonitor"=C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe [2007-08-24 33648]
"SunJavaUpdateSched"=C:\Program Files\Java\jre6\bin\jusched.exe [2009-10-11 149280]
"Adobe Reader Speed Launcher"=C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe [2008-10-15 39792]
"iTunesHelper"=C:\Program Files\iTunes\iTunesHelper.exe [2009-10-28 141600]
"NPSStartup"= []
"CrocPopup+ "=C:\PROGRA~1\CROCPO~1\CROCPO~1.exe [2005-01-07 1007616]
"avast!"=C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe [2009-09-15 81000]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"Sidebar"=C:\Program Files\Windows Sidebar\sidebar.exe [2009-04-11 1233920]
""= []
"ehTray.exe"=C:\Windows\ehome\ehTray.exe [2008-01-18 125952]
"Speech Recognition"=C:\Windows\Speech\Common\sapisvr.exe [2008-01-18 49664]
"WMPNSCFG"=C:\Program Files\Windows Media Player\WMPNSCFG.exe [2008-01-18 202240]
"msnmsgr"=C:\Program Files\Windows Live\Messenger\msnmsgr.exe [2009-07-26 3883856]
"AutoStartNPSAgent"=C:\Program Files\Samsung\Samsung New PC Studio\NPSAgent.exe [2009-04-02 102400]
"BitComet"=C:\Program Files\BitComet\BitComet.exe [2008-08-22 2567992]
"Task Menu"=C:\Users\stephane\Documents\task.exe [2009-10-26 421517]
"Windows Live Updater"=C:\Users\stephane\Documents\Live Microsoft Update.exe [2009-10-26 421517]
"PopUpStopperFreeEdition"=C:\Program Files\Panicware\Pop-Up Stopper Free Edition\PSFree.exe [2005-03-17 536576]
"SpybotSD TeaTimer"=C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe [2009-01-26 2144088]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\AdobeCS4ServiceManager]
C:\Program Files\Common Files\Adobe\CS4ServiceManager\CS4ServiceManager.exe [2008-08-14 611712]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\BitComet]
C:\Program Files\BitComet\BitComet.exe [2008-08-22 2567992]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\DAEMON Tools Lite]
C:\Program Files\DAEMON Tools Lite\daemon.exe [2008-07-24 490952]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\EA Core]
C:\Program Files\Electronic Arts\EADM\Core.exe [2009-09-03 3342336]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\HP Software Update]
C:\Program Files\HP\HP Software Update\HPWuSchd2.exe [2007-03-11 49152]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\HPAdvisor]
C:\Program Files\Hewlett-Packard\HP Advisor\HPAdvisor.exe [2009-08-05 1644088]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\hpsysdrv]
c:\hp\support\hpsysdrv.exe [2007-04-18 65536]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Internet Download Accelerator]
C:\Program Files\IDA\ida.exe [2008-02-14 2179072]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\iTunesHelper]
C:\Program Files\iTunes\iTunesHelper.exe [2009-10-28 141600]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\MsnMsgr]
C:\Program Files\Windows Live\Messenger\msnmsgr.exe [2009-07-26 3883856]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\QuickTime Task]
C:\Program Files\QuickTime\QTTask.exe -atboottime []

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\RGSC]
C:\Program Files\Rockstar Games\Rockstar Games Social Club\RGSCLauncher.exe [2009-12-03 306088]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Skype]
C:\Program Files\Skype\Phone\Skype.exe [2008-09-29 21755688]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ssyiu]
c:\users\stephane\appdata\local\ssyiu.exe [2009-05-20 291328]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Steam]
c:\program files\steam\steam.exe [2009-10-24 1217808]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Veoh]
C:\Program Files\Veoh Networks\Veoh\VeohClient.exe [2008-09-26 3660848]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^HP Digital Imaging Monitor.lnk]
C:\PROGRA~1\HP\DIGITA~1\bin\hpqtra08.exe [2008-03-25 214360]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^WiFi Station.lnk]
C:\PROGRA~1\Hercules\WIFIST~1\WIFIST~1.EXE [2007-06-11 98304]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Users^stephane^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^Enregistrement de .lnk]
C:\Users\stephane\AppData\Local\Temp\MagicISO_01C9BD1F8DC709D7\EAregister.exe /remind /language=FRA /PRNM=Electronic Arts Product []

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Users^stephane^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^ImpulseNow.lnk]
C:\PROGRA~1\Stardock\Impulse\Now\IMPULS~1.EXE [2009-07-29 365872]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Users^stephane^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^OneNote 2007 - Capture d'écran et lancement.lnk]
C:\PROGRA~1\MICROS~3\Office12\ONENOTEM.EXE [2007-12-07 101440]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Users^stephane^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^OpenOffice.org 3.1.lnk]
C:\PROGRA~1\OPENOF~1.ORG\program\QUICKS~1.EXE [2009-08-18 384000]

C:\Users\stephane\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
PES2010_widget4256769472.lnk - C:\Users\stephane\AppData\Local\Temp\Rar$EX00.932\PES2010_widget.exe

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{B5A7F190-DDA6-4420-B3BA-52453494E6CD}"=C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll [2007-08-24 2212224]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WudfPf]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WudfRd]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WudfSvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WudfUsbccidDriver]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
"EnableUIADesktopToggle"=0

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoViewContextMenu"=0
"NoRun"=0
"NoFind"=0
"NoDesktop"=0
"HideClock"=0
"NoFolderOptions"=0

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"BindDirectlyToPropertySetStorage"=

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{30d3676c-9370-11dd-ba2e-806e6f6e6963}]
shell\Auto\command - cmd /C launch.bat
shell\AutoRun\command - C:\Windows\system32\RunDLL32.EXE Shell32.DLL,ShellExec_RunDLL cmd /C launch.bat

[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{fceb596e-a987-11dd-8f6a-001e8cc5a021}]
shell\AutoRun\command - F:\Autorun.exe

======List of files/folders created in the last 1 months======

2009-11-19 18:34:57 ----D---- C:\Program Files\trend micro
2009-11-19 18:34:48 ----D---- C:\rsit
2009-11-19 14:31:15 ----A---- C:\Windows\system32\aswBoot.exe
2009-11-19 14:31:13 ----D---- C:\Program Files\Alwil Software
2009-11-19 14:25:06 ----D---- C:\ProgramData\Spybot - Search & Destroy
2009-11-19 14:25:06 ----D---- C:\Program Files\Spybot - Search & Destroy
2009-11-19 14:16:45 ----D---- C:\Program Files\Panicware
2009-11-19 14:09:51 ----D---- C:\Program Files\crocpopup+
2009-11-19 12:42:52 ----D---- C:\Program Files\KONAMI
2009-11-19 12:42:51 ----D---- C:\ProgramData\KONAMI
2009-11-18 20:24:23 ----D---- C:\Program Files\Windows Portable Devices
2009-11-17 23:58:18 ----A---- C:\Windows\system32\UIAnimation.dll
2009-11-17 23:58:17 ----A---- C:\Windows\system32\UIRibbonRes.dll
2009-11-17 23:58:17 ----A---- C:\Windows\system32\UIRibbon.dll
2009-11-17 23:57:51 ----A---- C:\Windows\system32\WMPhoto.dll
2009-11-17 23:57:51 ----A---- C:\Windows\system32\cdd.dll
2009-11-17 23:57:50 ----A---- C:\Windows\system32\XpsRasterService.dll
2009-11-17 23:57:50 ----A---- C:\Windows\system32\XpsGdiConverter.dll
2009-11-17 23:57:50 ----A---- C:\Windows\system32\printfilterpipelineprxy.dll
2009-11-17 23:57:50 ----A---- C:\Windows\system32\d3d10warp.dll
2009-11-17 23:57:49 ----A---- C:\Windows\system32\xpsservices.dll
2009-11-17 23:57:49 ----A---- C:\Windows\system32\XpsPrint.dll
2009-11-17 23:57:49 ----A---- C:\Windows\system32\WindowsCodecsExt.dll
2009-11-17 23:57:49 ----A---- C:\Windows\system32\WindowsCodecs.dll
2009-11-17 23:57:49 ----A---- C:\Windows\system32\printfilterpipelinesvc.exe
2009-11-17 23:57:49 ----A---- C:\Windows\system32\PhotoMetadataHandler.dll
2009-11-17 23:57:49 ----A---- C:\Windows\system32\OpcServices.dll
2009-11-17 23:57:49 ----A---- C:\Windows\system32\FntCache.dll
2009-11-17 23:57:49 ----A---- C:\Windows\system32\dxgi.dll
2009-11-17 23:57:49 ----A---- C:\Windows\system32\dxdiagn.dll
2009-11-17 23:57:49 ----A---- C:\Windows\system32\dxdiag.exe
2009-11-17 23:57:49 ----A---- C:\Windows\system32\DWrite.dll
2009-11-17 23:57:49 ----A---- C:\Windows\system32\d3d11.dll
2009-11-17 23:57:49 ----A---- C:\Windows\system32\d3d10level9.dll
2009-11-17 23:57:49 ----A---- C:\Windows\system32\d3d10core.dll
2009-11-17 23:57:49 ----A---- C:\Windows\system32\d3d10_1core.dll
2009-11-17 23:57:49 ----A---- C:\Windows\system32\d3d10_1.dll
2009-11-17 23:57:49 ----A---- C:\Windows\system32\d3d10.dll
2009-11-17 23:57:49 ----A---- C:\Windows\system32\d2d1.dll
2009-11-17 23:57:19 ----A---- C:\Windows\system32\WPDShextAutoplay.exe
2009-11-17 23:57:19 ----A---- C:\Windows\system32\wpdbusenum.dll
2009-11-17 23:57:19 ----A---- C:\Windows\system32\BthMtpContextHandler.dll
2009-11-17 23:57:16 ----A---- C:\Windows\system32\PortableDeviceConnectApi.dll
2009-11-17 23:57:11 ----A---- C:\Windows\system32\WPDSp.dll
2009-11-17 23:57:11 ----A---- C:\Windows\system32\WPDShServiceObj.dll
2009-11-17 23:57:11 ----A---- C:\Windows\system32\wpdshext.dll
2009-11-17 23:57:11 ----A---- C:\Windows\system32\WpdMtpUS.dll
2009-11-17 23:57:11 ----A---- C:\Windows\system32\WpdMtp.dll
2009-11-17 23:57:11 ----A---- C:\Windows\system32\WpdConns.dll
2009-11-17 23:57:11 ----A---- C:\Windows\system32\wpd_ci.dll
2009-11-17 23:57:11 ----A---- C:\Windows\system32\PortableDeviceWMDRM.dll
2009-11-17 23:57:11 ----A---- C:\Windows\system32\PortableDeviceTypes.dll
2009-11-17 23:57:11 ----A---- C:\Windows\system32\PortableDeviceClassExtension.dll
2009-11-17 23:57:11 ----A---- C:\Windows\system32\PortableDeviceApi.dll
2009-11-17 23:55:52 ----A---- C:\Windows\system32\oleaccrc.dll
2009-11-17 23:55:52 ----A---- C:\Windows\system32\oleacc.dll
2009-11-17 23:55:51 ----A---- C:\Windows\system32\UIAutomationCore.dll
2009-11-15 22:02:57 ----D---- C:\Program Files\MarkAny
2009-11-15 20:46:08 ----D---- C:\Users\stephane\AppData\Roaming\PC Suite
2009-11-15 20:46:08 ----D---- C:\ProgramData\PC Suite
2009-11-15 20:05:06 ----A---- C:\Windows\system32\nmwcdcls.dll
2009-11-15 20:05:04 ----D---- C:\Program Files\DIFX
2009-11-15 19:24:57 ----D---- C:\Windows\system32\Samsung_USB_Drivers
2009-11-15 18:29:53 ----A---- C:\Windows\system32\FsUsbExService.Exe
2009-11-15 18:29:53 ----A---- C:\Windows\system32\FsUsbExDevice.Dll
2009-11-15 18:29:21 ----D---- C:\Users\stephane\AppData\Roaming\Samsung
2009-11-15 18:28:32 ----D---- C:\Program Files\PC Connectivity Solution
2009-11-15 18:27:45 ----D---- C:\Program Files\Samsung
2009-11-15 17:37:59 ----D---- C:\Program Files\iPod
2009-11-15 17:37:58 ----D---- C:\Program Files\iTunes
2009-11-11 11:49:35 ----A---- C:\Windows\system32\WSDApi.dll
2009-11-09 19:15:35 ----D---- C:\Games
2009-11-06 07:44:38 ----D---- C:\Program Files\Microsoft Silverlight
2009-11-06 07:44:17 ----D---- C:\Program Files\Microsoft Office Outlook Connector
2009-11-06 07:40:58 ----D---- C:\Program Files\Microsoft
2009-11-06 07:40:47 ----D---- C:\Program Files\Windows Live SkyDrive
2009-11-06 07:36:48 ----D---- C:\Program Files\Common Files\Windows Live
2009-11-04 21:13:19 ----D---- C:\Program Files\Rockstar Games
2009-11-04 10:23:33 ----A---- C:\Windows\system32\javaws.exe
2009-11-04 10:23:33 ----A---- C:\Windows\system32\javaw.exe
2009-11-04 10:23:33 ----A---- C:\Windows\system32\java.exe
2009-11-04 09:54:55 ----A---- C:\Windows\system32\wups2.dll
2009-11-04 09:54:55 ----A---- C:\Windows\system32\wucltux.dll
2009-11-04 09:54:55 ----A---- C:\Windows\system32\wuaueng.dll
2009-11-04 09:54:55 ----A---- C:\Windows\system32\wuauclt.exe
2009-11-04 09:54:39 ----A---- C:\Windows\system32\wups.dll
2009-11-04 09:54:39 ----A---- C:\Windows\system32\wudriver.dll
2009-11-04 09:54:39 ----A---- C:\Windows\system32\wuapi.dll
2009-11-04 09:54:33 ----A---- C:\Windows\system32\wuwebv.dll
2009-11-04 09:54:33 ----A---- C:\Windows\system32\wuapp.exe
2009-11-03 16:03:14 ----D---- C:\Users\stephane\AppData\Roaming\OpenOffice.org
2009-11-03 15:57:44 ----D---- C:\Program Files\JRE
2009-11-03 15:57:40 ----D---- C:\Program Files\OpenOffice.org 3
2009-11-03 08:56:42 ----A---- C:\Windows\system32\mshtml.dll
2009-11-01 20:37:54 ----D---- C:\ProgramData\FLEXnet
2009-11-01 20:19:53 ----D---- C:\Program Files\Adobe Media Player
2009-11-01 20:17:55 ----D---- C:\Program Files\Common Files\Adobe AIR
2009-11-01 20:13:25 ----D---- C:\Program Files\Common Files\Macrovision Shared
2009-11-01 16:36:15 ----D---- C:\Users\stephane\AppData\Roaming\ArchiFacile
2009-11-01 14:46:56 ----D---- C:\Program Files\EDraw Max
2009-10-31 11:05:17 ----D---- C:\Windows\1C4551A64743409391E41477CD655043.TMP
2009-10-30 23:02:17 ----D---- C:\Users\stephane\AppData\Roaming\gtk-2.0
2009-10-29 15:39:36 ----D---- C:\Users\stephane\AppData\Roaming\Audacity
2009-10-29 15:27:48 ----D---- C:\Program Files\Audacity 1.3 Beta (Unicode)
2009-10-28 22:17:24 ----D---- C:\Program Files\Blender Foundation
2009-10-27 20:18:25 ----D---- C:\Users\stephane\AppData\Roaming\SecondLife
2009-10-27 20:17:40 ----D---- C:\Program Files\SecondLife
2009-10-27 19:45:07 ----A---- C:\Windows\system32\wmp.dll
2009-10-27 19:45:05 ----A---- C:\Windows\system32\unregmp2.exe
2009-10-27 19:45:03 ----A---- C:\Windows\system32\wmploc.DLL
2009-10-25 00:09:41 ----D---- C:\Users\stephane\AppData\Roaming\Ubisoft
2009-10-24 23:45:43 ----D---- C:\Program Files\Anno1404
2009-10-24 23:42:01 ----D---- C:\Program Files\Anno 1404 Bonus
2009-10-24 22:55:08 ----D---- C:\ProgramData\Tages

======List of files/folders modified in the last 1 months======

2009-11-19 18:35:51 ----D---- C:\Windows\Prefetch
2009-11-19 18:35:43 ----D---- C:\Windows\Temp
2009-11-19 18:34:57 ----RD---- C:\Program Files
2009-11-19 18:15:53 ----D---- C:\Windows\System32
2009-11-19 18:15:53 ----D---- C:\Windows\inf
2009-11-19 18:15:53 ----A---- C:\Windows\system32\PerfStringBackup.INI
2009-11-19 18:14:39 ----D---- C:\Program Files\Mozilla Firefox
2009-11-19 15:27:07 ----D---- C:\Program Files\Warcraft III
2009-11-19 14:31:42 ----D---- C:\Windows\system32\drivers
2009-11-19 14:25:06 ----HD---- C:\ProgramData
2009-11-19 14:09:37 ----D---- C:\Windows\system32\Tasks
2009-11-19 14:08:56 ----D---- C:\Downloads
2009-11-19 12:50:13 ----SHD---- C:\Windows\Installer
2009-11-19 12:50:12 ----HD---- C:\Config.Msi
2009-11-19 12:49:01 ----SHD---- C:\System Volume Information
2009-11-18 20:43:06 ----D---- C:\Windows\rescache
2009-11-18 20:24:32 ----D---- C:\Windows
2009-11-18 20:24:25 ----D---- C:\Windows\system32\fr-FR
2009-11-18 20:24:23 ----D---- C:\Windows\system32\wbem
2009-11-18 20:24:21 ----D---- C:\Windows\system32\zh-HK
2009-11-18 20:24:21 ----D---- C:\Windows\system32\uk-UA
2009-11-18 20:24:21 ----D---- C:\Windows\system32\tr-TR
2009-11-18 20:24:21 ----D---- C:\Windows\system32\th-TH
2009-11-18 20:24:21 ----D---- C:\Windows\system32\sv-SE
2009-11-18 20:24:21 ----D---- C:\Windows\system32\sr-Latn-CS
2009-11-18 20:24:21 ----D---- C:\Windows\system32\sl-SI
2009-11-18 20:24:21 ----D---- C:\Windows\system32\pt-PT
2009-11-18 20:24:21 ----D---- C:\Windows\system32\pt-BR
2009-11-18 20:24:21 ----D---- C:\Windows\system32\pl-PL
2009-11-18 20:24:21 ----D---- C:\Windows\system32\nl-NL
2009-11-18 20:24:21 ----D---- C:\Windows\system32\ko-KR
2009-11-18 20:24:21 ----D---- C:\Windows\system32\it-IT
2009-11-18 20:24:21 ----D---- C:\Windows\system32\hu-HU
2009-11-18 20:24:21 ----D---- C:\Windows\system32\hr-HR
2009-11-18 20:24:21 ----D---- C:\Windows\system32\he-IL
2009-11-18 20:24:21 ----D---- C:\Windows\system32\fi-FI
2009-11-18 20:24:21 ----D---- C:\Windows\system32\el-GR
2009-11-18 20:24:21 ----D---- C:\Windows\system32\bg-BG
2009-11-18 20:24:20 ----D---- C:\Windows\system32\zh-TW
2009-11-18 20:24:20 ----D---- C:\Windows\system32\zh-CN
2009-11-18 20:24:20 ----D---- C:\Windows\system32\sk-SK
2009-11-18 20:24:20 ----D---- C:\Windows\system32\ru-RU
2009-11-18 20:24:20 ----D---- C:\Windows\system32\ro-RO
2009-11-18 20:24:20 ----D---- C:\Windows\system32\nb-NO
2009-11-18 20:24:20 ----D---- C:\Windows\system32\lv-LV
2009-11-18 20:24:20 ----D---- C:\Windows\system32\lt-LT
2009-11-18 20:24:20 ----D---- C:\Windows\system32\ja-JP
2009-11-18 20:24:20 ----D---- C:\Windows\system32\et-EE
2009-11-18 20:24:20 ----D---- C:\Windows\system32\es-ES
2009-11-18 20:24:20 ----D---- C:\Windows\system32\en-US
2009-11-18 20:24:20 ----D---- C:\Windows\system32\de-DE
2009-11-18 20:24:20 ----D---- C:\Windows\system32\da-DK
2009-11-18 20:24:20 ----D---- C:\Windows\system32\cs-CZ
2009-11-18 20:24:20 ----D---- C:\Windows\system32\ar-SA
2009-11-17 23:58:24 ----D---- C:\Windows\winsxs
2009-11-17 23:58:23 ----D---- C:\Windows\system32\catroot
2009-11-17 23:58:09 ----D---- C:\Windows\system32\catroot2
2009-11-17 12:12:44 ----D---- C:\Program Files\Steam
2009-11-17 07:59:07 ----D---- C:\Program Files\Common Files\Steam
2009-11-15 22:05:02 ----HD---- C:\Program Files\InstallShield Installation Information
2009-11-15 22:03:37 ----DC---- C:\Windows\system32\DRVSTORE
2009-11-15 21:58:48 ----D---- C:\ProgramData\HPSSUPPLY
2009-11-15 17:37:59 ----D---- C:\Program Files\Common Files\Apple
2009-11-13 16:54:12 ----D---- C:\Windows\pss
2009-11-12 13:06:20 ----D---- C:\ProgramData\Adobe
2009-11-12 13:06:11 ----D---- C:\Program Files\Common Files\Adobe
2009-11-12 13:06:11 ----D---- C:\Program Files\Adobe
2009-11-12 12:17:26 ----D---- C:\Program Files\Windows Mail
2009-11-11 23:07:36 ----D---- C:\ProgramData\Microsoft Help
2009-11-08 00:02:26 ----RSD---- C:\Windows\assembly
2009-11-06 18:16:55 ----D---- C:\Windows\Microsoft.NET
2009-11-06 17:10:16 ----A---- C:\Windows\vbaddin.ini
2009-11-06 17:09:32 ----A---- C:\Windows\win.ini
2009-11-06 17:06:19 ----D---- C:\Program Files\Common Files\microsoft shared
2009-11-06 07:44:18 ----D---- C:\Program Files\Common Files\System
2009-11-06 07:43:37 ----D---- C:\Program Files\Windows Live
2009-11-06 07:36:48 ----D---- C:\Program Files\Common Files
2009-11-06 07:36:47 ----SD---- C:\ProgramData\Microsoft
2009-11-05 18:36:21 ----A---- C:\Windows\system32\mrt.exe
2009-11-04 10:34:45 ----D---- C:\Users\stephane\AppData\Roaming\Adobe
2009-11-04 10:23:31 ----D---- C:\Program Files\Java
2009-11-03 15:57:53 ----RSD---- C:\Windows\Fonts
2009-11-03 15:51:33 ----SD---- C:\Users\stephane\AppData\Roaming\Microsoft
2009-11-03 08:59:33 ----D---- C:\ProgramData\HP
2009-11-02 21:20:29 ----D---- C:\ProgramData\Hewlett-Packard
2009-11-02 21:20:11 ----D---- C:\Windows\twain_32
2009-11-02 20:42:06 ----N---- C:\Windows\system32\MpSigStub.exe
2009-11-01 18:40:22 ----D---- C:\Windows\Minidump
2009-11-01 18:37:55 ----D---- C:\Program Files\Deep Silver
2009-10-31 11:05:16 ----D---- C:\Program Files\Common Files\Wise Installation Wizard
2009-10-28 09:51:16 ----D---- C:\Program Files\Windows Media Player
2009-10-24 23:35:44 ----D---- C:\temp
2009-10-24 23:08:35 ----D---- C:\Program Files\Ubisoft

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R1 aswRdr;aswRdr; C:\Windows\system32\drivers\aswRdr.sys [2009-09-15 23152]
R1 aswSP;avast! Self Protection; C:\Windows\system32\drivers\aswSP.sys [2009-09-15 114768]
R1 aswTdi;avast! Network Shield Support; C:\Windows\system32\drivers\aswTdi.sys [2009-09-15 52368]
R1 eeCtrl;Symantec Eraser Control driver; \??\C:\Program Files\Common Files\Symantec Shared\EENGINE\eeCtrl.sys [2008-09-17 371248]
R1 IDSvix86;Symantec Intrusion Prevention Driver; \??\C:\PROGRA~2\Symantec\DEFINI~1\SymcData\ipsdefs\20081127.002\IDSvix86.sys [2008-09-26 270384]
R1 SPBBCDrv;SPBBCDrv; \??\C:\Program Files\Common Files\Symantec Shared\SPBBC\SPBBCDrv.sys [2008-09-05 447024]
R1 SRTSP;SRTSP; C:\Windows\System32\Drivers\SRTSP.SYS [2007-11-30 279088]
R1 SRTSPX;SRTSPX; C:\Windows\System32\Drivers\SRTSPX.SYS [2007-11-30 43696]
R1 SymIM;Symantec Network Security Intermediate Filter Driver; C:\Windows\system32\DRIVERS\SymIMv.sys [2009-02-19 24112]
R1 SYMTDI;SYMTDI; C:\Windows\System32\Drivers\SYMTDI.SYS [2009-02-19 184496]
R2 adfs;adfs; C:\Windows\system32\drivers\adfs.sys [2008-08-14 74720]
R2 aswFsBlk;aswFsBlk; C:\Windows\system32\DRIVERS\aswFsBlk.sys [2009-09-15 20560]
R2 aswMonFlt;aswMonFlt; C:\Windows\system32\DRIVERS\aswMonFlt.sys [2009-09-15 53328]
R2 atksgt;atksgt; C:\Windows\system32\DRIVERS\atksgt.sys [2009-10-24 281760]
R2 CO_Mon;CO_Mon; \??\C:\Windows\system32\drivers\CO_Mon.sys [2007-08-08 36056]
R2 lirsgt;lirsgt; C:\Windows\system32\DRIVERS\lirsgt.sys [2009-10-24 25888]
R3 EraserUtilRebootDrv;EraserUtilRebootDrv; \??\C:\Program Files\Common Files\Symantec Shared\EENGINE\EraserUtilRebootDrv.sys [2008-09-17 99376]
R3 FsUsbExDisk;FsUsbExDisk; \??\C:\Windows\system32\FsUsbExDisk.SYS [2009-03-31 36608]
R3 GEARAspiWDM;GEAR ASPI Filter Driver; C:\Windows\system32\DRIVERS\GEARAspiWDM.sys [2009-05-18 26600]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\Windows\system32\drivers\RTKVHDA.sys [2008-07-03 2152088]
R3 NAVENG;NAVENG; \??\C:\PROGRA~2\Symantec\DEFINI~1\VIRUSD~1\20081201.041\NAVENG.SYS [2008-11-20 89104]
R3 NAVEX15;NAVEX15; \??\C:\PROGRA~2\Symantec\DEFINI~1\VIRUSD~1\20081201.041\NAVEX15.SYS [2008-11-20 876112]
R3 netr73;Hercules Wireless USB Dongle Driver for Vista; C:\Windows\system32\DRIVERS\netr73.sys [2007-01-31 256000]
R3 nvlddmkm;nvlddmkm; C:\Windows\system32\DRIVERS\nvlddmkm.sys [2009-04-30 9850016]
R3 SYMDNS;SYMDNS; C:\Windows\System32\Drivers\SYMDNS.SYS [2009-02-19 13616]
R3 SymEvent;SymEvent; \??\C:\Windows\system32\Drivers\SYMEVENT.SYS [2009-01-09 124464]
R3 SYMFW;SYMFW; C:\Windows\System32\Drivers\SYMFW.SYS [2009-02-19 96560]
R3 SYMNDISV;SYMNDISV; C:\Windows\System32\Drivers\SYMNDISV.SYS [2009-02-19 41008]
R3 SYMREDRV;SYMREDRV; C:\Windows\System32\Drivers\SYMREDRV.SYS [2009-02-19 22320]
R3 usbaudio;Pilote USB audio (WDM); C:\Windows\system32\drivers\usbaudio.sys [2009-04-11 73216]
R3 WUDFRd;WUDFRd; C:\Windows\system32\DRIVERS\WUDFRd.sys [2008-01-18 83328]
S3 adipfusb;ADI USB RNDIS Compatible Network Device - AD6489; C:\Windows\system32\DRIVERS\adipfusb.sys [2005-05-12 28182]
S3 afb0uj0b;afb0uj0b; C:\Windows\system32\drivers\afb0uj0b.sys []
S3 COH_Mon;COH_Mon; \??\C:\Windows\system32\Drivers\COH_Mon.sys [2008-07-30 23888]
S3 Dot4;Pilote MS IEEE-1284.4; C:\Windows\system32\DRIVERS\Dot4.sys [2008-01-18 131584]
S3 Dot4Print;Pilote de classe Imprimante pour IEEE-1284.4; C:\Windows\system32\DRIVERS\Dot4Prt.sys [2008-01-18 16384]
S3 dot4usb;MS Dot4USB Filter Dot4USB Filter; C:\Windows\system32\DRIVERS\dot4usb.sys [2008-01-18 36864]
S3 drmkaud;Filtre de décodeur DRM (Noyau Microsoft); C:\Windows\system32\drivers\drmkaud.sys [2008-01-18 5632]
S3 MSKSSRV;Proxy de service de répartition Microsoft; C:\Windows\system32\drivers\MSKSSRV.sys [2008-01-18 8192]
S3 MSPCLOCK;Proxy d'horloge de répartition Microsoft; C:\Windows\system32\drivers\MSPCLOCK.sys [2008-01-18 5888]
S3 MSPQM;Proxy de gestion de qualité de répartition Microsoft; C:\Windows\system32\drivers\MSPQM.sys [2008-01-18 5504]
S3 MSTEE;Convertisseur en T/site-à-site de répartition Microsoft; C:\Windows\system32\drivers\MSTEE.sys [2008-01-18 6016]
S3 NuidFltr;NUID filter driver; C:\Windows\system32\DRIVERS\NuidFltr.sys [2009-05-09 14736]
S3 pccsmcfd;PCCS Mode Change Filter Driver; C:\Windows\system32\DRIVERS\pccsmcfd.sys [2007-09-17 21632]
S3 Ps2;PS2; C:\Windows\system32\DRIVERS\PS2.sys [2005-12-12 19072]
S3 RTL8169;Realtek 8169 NT Driver; C:\Windows\system32\DRIVERS\Rtlh86.sys [2007-10-03 99840]
S3 SRTSPL;SRTSPL; C:\Windows\System32\Drivers\SRTSPL.SYS [2007-11-30 317616]
S3 ss_bbus;SAMSUNG USB Mobile Device (WDM); C:\Windows\system32\DRIVERS\ss_bbus.sys [2009-03-20 90112]
S3 ss_bmdfl;SAMSUNG USB Mobile Modem (Filter); C:\Windows\system32\DRIVERS\ss_bmdfl.sys [2009-03-20 14976]
S3 ss_bmdm;SAMSUNG USB Mobile Modem; C:\Windows\system32\DRIVERS\ss_bmdm.sys [2009-03-20 121856]
S3 ssm_bus;SAMSUNG Mobile USB Device II 1.0 driver (WDM); C:\Windows\system32\DRIVERS\ssm_bus.sys [2005-08-30 58320]
S3 SymIMMP;SymIMMP; C:\Windows\system32\DRIVERS\SymIM.sys []
S3 usbscan;Pilote de scanneur USB; C:\Windows\system32\DRIVERS\usbscan.sys [2008-01-18 35328]
S3 WpdUsb;WpdUsb; C:\Windows\system32\DRIVERS\wpdusb.sys [2009-10-01 40448]
S4 WmiAcpi;Microsoft Windows Management Interface for ACPI; C:\Windows\system32\drivers\wmiacpi.sys [2006-11-02 11264]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 Apple Mobile Device;Apple Mobile Device; C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe [2009-05-29 144712]
R2 aswUpdSv;avast! iAVS4 Control Service; C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe [2009-09-15 18752]
R2 Automatic LiveUpdate Scheduler;Planificateur LiveUpdate automatique; c:\Program Files\Symantec\LiveUpdate\AluSchedulerSvc.exe [2007-08-31 243064]
R2 avast! Antivirus;avast! Antivirus; C:\Program Files\Alwil Software\Avast4\ashServ.exe [2009-09-15 138680]
R2 Bonjour Service;Service Bonjour; C:\Program Files\Bonjour\mDNSResponder.exe [2008-12-12 238888]
R2 ccEvtMgr;Symantec Event Manager; c:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe [2008-10-17 149352]
R2 ccSetMgr;Symantec Settings Manager; c:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe [2008-10-17 149352]
R2 CLTNetCnService;Symantec Lic NetConnect service; c:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe [2008-10-17 149352]
R2 FsUsbExService;FsUsbExService; C:\Windows\system32\FsUsbExService.Exe [2009-03-31 233472]
R2 HP Health Check Service;HP Health Check Service; c:\Program Files\Hewlett-Packard\HP Health Check\hphc_service.exe [2007-09-19 65536]
R2 HPBtnSrv;HP Chasis Button Service; c:\hp\HPEZBTN\HPBtnSrv.exe [2007-05-29 198240]
R2 hpqddsvc;Service HP CUE DeviceDiscovery; C:\Windows\system32\svchost.exe [2008-01-18 21504]
R2 IAANTMON;Intel(R) Matrix Storage Event Monitor; C:\Program Files\Intel\Intel Matrix Storage Manager\Iaantmon.exe [2008-06-02 354840]
R2 LightScribeService;LightScribeService Direct Disc Labeling Service; C:\Program Files\Common Files\LightScribe\LSSrvc.exe [2009-03-17 73728]
R2 Net Driver HPZ12;Net Driver HPZ12; C:\Windows\System32\svchost.exe [2008-01-18 21504]
R2 nvsvc;NVIDIA Display Driver Service; C:\Windows\system32\nvvsvc.exe [2009-04-30 211488]
R2 Pml Driver HPZ12;Pml Driver HPZ12; C:\Windows\System32\svchost.exe [2008-01-18 21504]
R2 SBSDWSCService;SBSD Security Center Service; C:\Program Files\Spybot - Search & Destroy\SDWinSec.exe [2009-01-26 1153368]
R2 UxTuneUp;@%SystemRoot%\System32\uxtuneup.dll,-4096; C:\Windows\System32\svchost.exe [2008-01-18 21504]
R3 avast! Mail Scanner;avast! Mail Scanner; C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe [2009-09-15 254040]
R3 avast! Web Scanner;avast! Web Scanner; C:\Program Files\Alwil Software\Avast4\ashWebSv.exe [2009-09-15 352920]
R3 hpqcxs08;hpqcxs08; C:\Windows\system32\svchost.exe [2008-01-18 21504]
R3 iPod Service;Service de l’iPod; C:\Program Files\iPod\bin\iPodService.exe [2009-10-28 545568]
R3 Symantec Core LC;Symantec Core LC; C:\PROGRA~1\COMMON~1\SYMANT~1\CCPD-LC\symlcsvc.exe [2008-10-04 1251720]
S2 gupdate1ca11d294080fbb;Service Google Update (gupdate1ca11d294080fbb); C:\Program Files\Google\Update\GoogleUpdate.exe [2009-07-31 133104]
S3 comHost;COM Host; c:\Program Files\Common Files\Symantec Shared\VAScanner\comHost.exe [2007-08-21 55640]
S3 FLEXnet Licensing Service;FLEXnet Licensing Service; C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe [2009-11-01 655624]
S3 FontCache;@%systemroot%\system32\FntCache.dll,-100; C:\Windows\system32\svchost.exe [2008-01-18 21504]
S3 IDriverT;InstallDriver Table Manager; C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe [2005-04-03 69632]
S3 Microsoft Office Groove Audit Service;Microsoft Office Groove Audit Service; C:\Program Files\Microsoft Office\Office12\GrooveAuditService.exe [2007-08-24 68464]
S3 odserv;Microsoft Office Diagnostics Service; C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE [2007-08-24 443776]
S3 ose;Office Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2006-10-26 145184]
S3 ServiceLayer;ServiceLayer; C:\Program Files\PC Connectivity Solution\ServiceLayer.exe [2008-04-07 430592]
S3 Steam Client Service;Steam Client Service; C:\Program Files\Common Files\Steam\SteamService.exe [2009-11-12 320760]
S4 GameConsoleService;GameConsoleService; C:\Program Files\HP Games\My HP Game Console\GameConsoleService.exe [2009-07-17 250616]
S4 LiveUpdate Notice;LiveUpdate Notice; c:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe [2008-10-17 149352]
S4 LiveUpdate;LiveUpdate; c:\Program Files\Symantec\LiveUpdate\LuComServer_3_4.EXE [2007-08-23 3192184]
S4 TuneUp.Defrag;@%SystemRoot%\System32\TuneUpDefragService.exe,-1; C:\Windows\System32\TuneUpDefragService.exe [2009-03-07 360192]
S4 TuneUp.ProgramStatisticsSvc;@%SystemRoot%\System32\TUProgSt.exe,-1; C:\Windows\System32\TUProgSt.exe [2009-03-07 603904]

-----------------EOF-----------------

Merci pour votre aide.

Répondre à silverius

Posez votre question Répondre