Se connecter / S'enregistrer
Votre question

Pare feu se désactive tout seul, virus?

Tags :
  • Sécurité
Dernière réponse : dans Sécurité et virus
25 Janvier 2011 11:24:45

Bonjour,

J'ai apparament choppé un (ou plus?) virus. j'ai lancé un scan avec mon antivirus, qui m'a trouvé 3 trojans, qu'il a apparemment supprimé...
Malgré cela, j'ai toujours le pare-feu qui se désactive tout seul. Je suis obligé d'aller le réactiver dans les services. Une fois ceci fait, je peut le relancer, mais 30 secondes après, il de désactive... Je retourne l'activer, 30 seconde après, idem, il s'arrête.. et ainsi de suite!

Du coup, je pense qu'il reste peut-être encore un virus...

J'ai telechargé Hijackthis, mais je ne sais pas pas vraiment comment interpréter le résultat. Comme conseillé dans d'autres post, j'ai telechargé Malwarebytes, qui est en cours de scan. Je vais donc sauvegarder le log un fois ceci effectué.

Du coup, si quelqu'un pourrais m'aider à décoder un peu ces résultats, ca serais super sympa!

Merci!!

Autres pages sur : pare feu desactive seul virus

25 Janvier 2011 14:52:35

J'ai donc effectué un scan avec malwarebytes, dont voici le log:

A noter que je n'ai pas supprimé tout ce qui concerne SBP, qui est un programme que j'utilise, qui n'est absolument pas un virus.
Mais même après ca, j'ai toujours le centre de sécurité qui se désactive automatiquement...


Pour la suite, si ca peut aider certain, le virus était un exe que j'ai lancé hier soir, donc le 24.
Je pense notamment à cette partie du log: Le fichier cryptspx.dll?

======List of files/folders created in the last 1 months======

2011-01-25 12:55:44 ----D---- C:\Program Files\trend micro
2011-01-25 12:55:43 ----D---- C:\rsit
2011-01-25 12:07:14 ----D---- C:\Users\nicoletv.EISI\AppData\Roaming\Malwarebytes
2011-01-25 12:07:04 ----A---- C:\Windows\system32\drivers\mbamswissarmy.sys
2011-01-25 12:07:03 ----D---- C:\ProgramData\Malwarebytes
2011-01-25 12:07:00 ----D---- C:\Program Files\Malwarebytes' Anti-Malware
2011-01-25 12:07:00 ----A---- C:\Windows\system32\drivers\mbam.sys
2011-01-25 10:36:57 ----D---- C:\Users\nicoletv.EISI\AppData\Roaming\Systweak
2011-01-25 10:36:57 ----D---- C:\ProgramData\Systweak
2011-01-25 10:36:48 ----D---- C:\Program Files\Systweak
2011-01-25 10:36:38 ----A---- C:\Windows\system32\sasnative32.exe
2011-01-24 22:50:18 ----RASH---- C:\Windows\system32\cryptspx.dll


Sinon, voici les logs:

Malwarebytes' Anti-Malware 1.50.1.1100
www.malwarebytes.org

Version de la base de données: 5594

Windows 6.1.7600
Internet Explorer 8.0.7600.16385

25/01/2011 14:34:38
mbam-log-2011-01-25 (14-34-38).txt

Type d'examen: Examen complet (C:\|)
Elément(s) analysé(s): 631047
Temps écoulé: 2 heure(s), 22 minute(s), 33 seconde(s)

Processus mémoire infecté(s): 0
Module(s) mémoire infecté(s): 0
Clé(s) du Registre infectée(s): 2
Valeur(s) du Registre infectée(s): 0
Elément(s) de données du Registre infecté(s): 0
Dossier(s) infecté(s): 3
Fichier(s) infecté(s): 47

Processus mémoire infecté(s):
(Aucun élément nuisible détecté)

Module(s) mémoire infecté(s):
(Aucun élément nuisible détecté)

Clé(s) du Registre infectée(s):
HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\ (Hijack.Zones) -> Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\SBP (Spyware.SpyBoss) -> Not selected for removal.

Valeur(s) du Registre infectée(s):
(Aucun élément nuisible détecté)

Elément(s) de données du Registre infecté(s):
(Aucun élément nuisible détecté)

Dossier(s) infecté(s):
c:\program files\SBP (Spyware.SpyBoss) -> Not selected for removal.
c:\program files\SBP\help (Spyware.SpyBoss) -> Not selected for removal.
c:\program files\SBP\imageformats (Spyware.SpyBoss) -> Not selected for removal.

Fichier(s) infecté(s):
c:\$Recycle.Bin\s-1-5-21-3817756591-2321082289-621010048-20362\$RD19FCW.exe (Trojan.FraudPack.Gen) -> Quarantined and deleted successfully.
c:\system volume information\_restore{340c3340-2ebb-4324-859a-c37e85627171}\RP656\A0192496.exe (Spyware.Passwords.XGen) -> Quarantined and deleted successfully.
c:\system volume information\_restore{340c3340-2ebb-4324-859a-c37e85627171}\RP656\A0192514.exe (Trojan.Agent.Gen) -> Quarantined and deleted successfully.
c:\system volume information\_restore{340c3340-2ebb-4324-859a-c37e85627171}\RP657\A0193562.exe (Spyware.Passwords.XGen) -> Quarantined and deleted successfully.
c:\Windows\Tasks\{22116563-108c-42c0-a7ce-60161b75e508}.job (Trojan.Downloader) -> Quarantined and deleted successfully.
c:\Windows\Tasks\{62c40aa6-4406-467a-a5a5-dfdf1b559b7a}.job (Trojan.FakeAlert) -> Quarantined and deleted successfully.
c:\Windows\Tasks\{bbaeaeaf-1275-40e2-bd6c-bc8f88bd114a}.job (Trojan.Downloader) -> Quarantined and deleted successfully.
c:\program files\SBP\mingwm10.dll (Spyware.SpyBoss) -> Not selected for removal.
c:\program files\SBP\QtCore4.dll (Spyware.SpyBoss) -> Not selected for removal.
c:\program files\SBP\QtGui4.dll (Spyware.SpyBoss) -> Not selected for removal.
c:\program files\SBP\qtnetwork4.dll (Spyware.SpyBoss) -> Not selected for removal.
c:\program files\SBP\QtSvg4.dll (Spyware.SpyBoss) -> Not selected for removal.
c:\program files\SBP\QtXml4.dll (Spyware.SpyBoss) -> Not selected for removal.
c:\program files\SBP\SBP.exe (Spyware.SpyBoss) -> Not selected for removal.
c:\program files\SBP\uninstall.exe (Spyware.SpyBoss) -> Not selected for removal.
c:\program files\SBP\help\about.html (Spyware.SpyBoss) -> Not selected for removal.
c:\program files\SBP\help\activeproject.html (Spyware.SpyBoss) -> Not selected for removal.
c:\program files\SBP\help\addfile.html (Spyware.SpyBoss) -> Not selected for removal.
c:\program files\SBP\help\cascadesubwindow.html (Spyware.SpyBoss) -> Not selected for removal.
c:\program files\SBP\help\cbzoom.html (Spyware.SpyBoss) -> Not selected for removal.
c:\program files\SBP\help\closeproject.html (Spyware.SpyBoss) -> Not selected for removal.
c:\program files\SBP\help\delfile.html (Spyware.SpyBoss) -> Not selected for removal.
c:\program files\SBP\help\delproject.html (Spyware.SpyBoss) -> Not selected for removal.
c:\program files\SBP\help\editcopy.html (Spyware.SpyBoss) -> Not selected for removal.
c:\program files\SBP\help\editcut.html (Spyware.SpyBoss) -> Not selected for removal.
c:\program files\SBP\help\editdel.html (Spyware.SpyBoss) -> Not selected for removal.
c:\program files\SBP\help\editpaste.html (Spyware.SpyBoss) -> Not selected for removal.
c:\program files\SBP\help\editredo.html (Spyware.SpyBoss) -> Not selected for removal.
c:\program files\SBP\help\editundo.html (Spyware.SpyBoss) -> Not selected for removal.
c:\program files\SBP\help\editzoomin.html (Spyware.SpyBoss) -> Not selected for removal.
c:\program files\SBP\help\editzoomout.html (Spyware.SpyBoss) -> Not selected for removal.
c:\program files\SBP\help\exit.html (Spyware.SpyBoss) -> Not selected for removal.
c:\program files\SBP\help\fileclose.html (Spyware.SpyBoss) -> Not selected for removal.
c:\program files\SBP\help\filenew.html (Spyware.SpyBoss) -> Not selected for removal.
c:\program files\SBP\help\fileopen.html (Spyware.SpyBoss) -> Not selected for removal.
c:\program files\SBP\help\fileprint.html (Spyware.SpyBoss) -> Not selected for removal.
c:\program files\SBP\help\filesave.html (Spyware.SpyBoss) -> Not selected for removal.
c:\program files\SBP\help\filesaveas.html (Spyware.SpyBoss) -> Not selected for removal.
c:\program files\SBP\help\help.html (Spyware.SpyBoss) -> Not selected for removal.
c:\program files\SBP\help\nextsubwindow.html (Spyware.SpyBoss) -> Not selected for removal.
c:\program files\SBP\help\previoussubwindow.html (Spyware.SpyBoss) -> Not selected for removal.
c:\program files\SBP\help\projectnew.html (Spyware.SpyBoss) -> Not selected for removal.
c:\program files\SBP\help\projectopen.html (Spyware.SpyBoss) -> Not selected for removal.
c:\program files\SBP\help\removefile.html (Spyware.SpyBoss) -> Not selected for removal.
c:\program files\SBP\help\structoitems.html (Spyware.SpyBoss) -> Not selected for removal.
c:\program files\SBP\help\tilesubwindow.html (Spyware.SpyBoss) -> Not selected for removal.
c:\program files\SBP\imageformats\qjpeg4.dll (Spyware.SpyBoss) -> Not selected for removal.


Du coup, voici les différents logs géneré par RSIT, si ca pourrais aider certain?
Log.txt:

Logfile of random's system information tool 1.08 (written by random/random)
Run by nicoletv at 2011-01-25 14:50:43
Microsoft Windows 7 Édition Intégrale
System drive C: has 88 GB (58%) free of 152 GB
Total RAM: 3070 MB (57% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 14:50:48, on 25/01/2011
Platform: Windows 7 (WinNT 6.00.3504)
MSIE: Internet Explorer v8.00 (8.00.7600.16700)
Boot mode: Normal

Running processes:
C:\Windows\system32\taskhost.exe
C:\Windows\system32\Dwm.exe
C:\Windows\Explorer.EXE
C:\Program Files\Symantec\Symantec Endpoint Protection\SmcGui.exe
C:\Windows\System32\rundll32.exe
C:\Windows\System32\rundll32.exe
C:\Program Files\Common Files\Symantec Shared\ccApp.exe
C:\Program Files\SigmaTel\C-Major Audio\WDM\sttray.exe
C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
C:\Program Files\Common Files\Siemens\S7UBTOOX\S7ubTstx.exe
C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
C:\Program Files\Common Files\Java\Java Update\jusched.exe
C:\Program Files\Windows Live\Messenger\msnmsgr.exe
C:\Program Files\Common Files\Siemens\Sqlany\dbsrv9.exe
C:\Program Files\Microsoft Firewall Client 2004\FwcMgmt.exe
C:\Program Files\Dell\QuickSet\quickset.exe
C:\Program Files\Systweak\Advanced System Protector\ASP.exe
C:\Program Files\Windows Live\Contacts\wlcomm.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Program Files\Mozilla Firefox\plugin-container.exe
C:\Windows\system32\NOTEPAD.EXE
C:\Users\nicoletv.EISI\Downloads\RSIT.exe
C:\Program Files\trend micro\nicoletv.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Window Title = Windows Internet Explorer provided by Haute Ecole Arc
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyServer = LO-EIN-TESLA:8080
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
O2 - BHO: (no name) - {5C255C8A-E604-49b4-9D64-90988571CECB} - (no file)
O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\Windows\system32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\Windows\system32\NvMcTray.dll,NvTaskbarInit
O4 - HKLM\..\Run: [NVHotkey] rundll32.exe C:\Windows\system32\nvHotkey.dll,Start
O4 - HKLM\..\Run: [ccApp] "C:\Program Files\Common Files\Symantec Shared\ccApp.exe"
O4 - HKLM\..\Run: [SigmatelSysTrayApp] %ProgramFiles%\SigmaTel\C-Major Audio\WDM\sttray.exe
O4 - HKLM\..\Run: [SynTPEnh] C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
O4 - HKLM\..\Run: [TrayServer] C:\Program Files\MAGIX\Video_deluxe_16_Plus_Version à télécharger\TrayServer.exe
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\QTTask.exe" -atboottime
O4 - HKLM\..\Run: [S7UB Start] "C:\Program Files\Common Files\Siemens\S7ubtoox\s7ubtstx.exe" -StartDB
O4 - HKLM\..\Run: [UVS10 Preload] C:\Program Files\Ulead Systems\Ulead VideoStudio SE DVD\uvPL.exe
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Common Files\Java\Java Update\jusched.exe"
O4 - HKLM\..\Run: [Malwarebytes' Anti-Malware (reboot)] "C:\Program Files\Malwarebytes' Anti-Malware\mbam.exe" /runcleanupscript
O4 - HKCU\..\Run: [msnmsgr] "C:\Program Files\Windows Live\Messenger\msnmsgr.exe" /background
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'SERVICE RÉSEAU')
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'SERVICE RÉSEAU')
O4 - Global Startup: Microsoft Firewall Client Management.lnk = C:\Program Files\Microsoft Firewall Client 2004\FwcMgmt.exe
O4 - Global Startup: QuickSet.lnk = C:\Program Files\Dell\QuickSet\quickset.exe
O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~4\Office12\EXCEL.EXE/3000
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~4\Office12\REFIEBAR.DLL
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: Domain = ing.intra.eiaj.ch
O17 - HKLM\Software\..\Telephony: DomainName = ing.intra.eiaj.ch
O17 - HKLM\System\CS1\Services\Tcpip\Parameters: Domain = ing.intra.eiaj.ch
O17 - HKLM\System\CS2\Services\Tcpip\Parameters: Domain = ing.intra.eiaj.ch
O23 - Service: @%SystemRoot%\system32\aelupsvc.dll,-1 (AeLookupSvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe
O23 - Service: Automation License Manager Service (almservice) - SIEMENS AG - C:\Program Files\Common Files\Siemens\sws\almsrv\almsrvx.exe
O23 - Service: @%systemroot%\system32\appidsvc.dll,-100 (AppIDSvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%systemroot%\system32\appinfo.dll,-100 (Appinfo) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @appmgmts.dll,-3250 (AppMgmt) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\audiosrv.dll,-204 (AudioEndpointBuilder) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\audiosrv.dll,-200 (Audiosrv) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\AxInstSV.dll,-103 (AxInstSV) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\bdesvc.dll,-100 (BDESVC) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\bfe.dll,-1001 (BFE) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\qmgr.dll,-1000 (BITS) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%systemroot%\system32\browser.dll,-100 (Browser) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: Bluetooth Feature Support (BthFilterHelper) - CSR, plc - C:\Program Files\CSR\Vista Profile Pack\BthFilterHelper.exe
O23 - Service: @%SystemRoot%\System32\bthserv.dll,-101 (bthserv) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: Symantec Event Manager (ccEvtMgr) - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe
O23 - Service: Symantec Settings Manager (ccSetMgr) - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe
O23 - Service: @%SystemRoot%\System32\certprop.dll,-11 (CertPropSvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\cryptsvc.dll,-1001 (CryptSvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%systemroot%\system32\cscsvc.dll,-200 (CscService) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: Cisco Systems, Inc. VPN Service (CVPND) - Cisco Systems, Inc. - C:\Program Files\HEARC\Cisco VPN Client\cvpnd.exe
O23 - Service: @oleres.dll,-5012 (DcomLaunch) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\defragsvc.dll,-101 (defragsvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\dhcpcore.dll,-100 (Dhcp) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\System32\dnsapi.dll,-101 (Dnscache) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%systemroot%\system32\dot3svc.dll,-1102 (dot3svc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%systemroot%\system32\dps.dll,-500 (DPS) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%systemroot%\system32\eapsvc.dll,-1 (EapHost) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\ehome\ehrecvr.exe,-101 (ehRecvr) - Unknown owner - C:\Windows\ehome\ehRecvr.exe
O23 - Service: @%SystemRoot%\ehome\ehsched.exe,-101 (ehSched) - Unknown owner - C:\Windows\ehome\ehsched.exe
O23 - Service: @%SystemRoot%\system32\wevtsvc.dll,-200 (eventlog) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @comres.dll,-2450 (EventSystem) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: Intel(R) PROSet/Wireless Event Log (EvtEng) - Intel(R) Corporation - C:\Program Files\Intel\WiFi\bin\EvtEng.exe
O23 - Service: FABS - Helping agent for MAGIX media database (Fabs) - MAGIX AG - C:\Program Files\Common Files\MAGIX Services\Database\bin\FABS.exe
O23 - Service: @%systemroot%\system32\fdPHost.dll,-100 (fdPHost) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%systemroot%\system32\fdrespub.dll,-100 (FDResPub) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: Firebird Server - MAGIX Instance (FirebirdServerMAGIXInstance) - MAGIX® - C:\Program Files\Common Files\MAGIX Services\Database\bin\fbserver.exe
O23 - Service: @%systemroot%\system32\FntCache.dll,-100 (FontCache) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @gpapi.dll,-112 (gpsvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: Service Google Update (gupdate) (gupdate) - Unknown owner - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: @%SystemRoot%\System32\hidserv.dll,-101 (hidserv) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\kmsvc.dll,-6 (hkmsvc) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\System32\ListSvc.dll,-100 (HomeGroupListener) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\System32\provsvc.dll,-100 (HomeGroupProvider) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\1050\Intel 32\IDriverT.exe
O23 - Service: @%SystemRoot%\system32\ikeext.dll,-501 (IKEEXT) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%systemroot%\system32\IPBusEnum.dll,-102 (IPBusEnum) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\iphlpsvc.dll,-500 (iphlpsvc) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\System32\irmon.dll,-2000 (Irmon) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @comres.dll,-2946 (KtmRm) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%systemroot%\system32\srvsvc.dll,-100 (LanmanServer) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%systemroot%\system32\wkssvc.dll,-100 (LanmanWorkstation) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: LiveUpdate - Symantec Corporation - C:\PROGRA~1\Symantec\LIVEUP~1\LUCOMS~1.EXE
O23 - Service: Lookout Citadel Server (LkCitadelServer) - National Instruments, Inc. - C:\Windows\system32\lkcitdl.exe
O23 - Service: National Instruments PSP Server Locator (lkClassAds) - National Instruments Corporation - C:\Windows\system32\lkads.exe
O23 - Service: National Instruments Time Synchronization (lkTimeSync) - National Instruments Corporation - C:\Windows\system32\lktsrv.exe
O23 - Service: @%SystemRoot%\system32\lltdres.dll,-1 (lltdsvc) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\lmhsvc.dll,-101 (lmhosts) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: Ma-Config Service (maconfservice) - Unknown owner - C:\Program Files\ma-config.com\maconfservice.exe
O23 - Service: @%systemroot%\system32\mmcss.dll,-100 (MMCSS) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\FirewallAPI.dll,-23090 (MpsSvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe
O23 - Service: @%SystemRoot%\system32\iscsidsc.dll,-5000 (MSiSCSI) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\msimsg.dll,-27 (msiserver) - Unknown owner - C:\Windows\system32\msiexec.exe
O23 - Service: NI Configuration Manager (mxssvr) - National Instruments Corporation - C:\Program Files\National Instruments\MAX\nimxs.exe
O23 - Service: @%SystemRoot%\system32\qagentrt.dll,-6 (napagent) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\netman.dll,-109 (Netman) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\netprofm.dll,-202 (netprofm) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: Gestion de l'alimentation de l'adaptateur réseau interne Dell (nicconfigsvc) - Dell Inc. - C:\Program Files\Dell\QuickSet\NicConfigSvc.exe
O23 - Service: National Instruments Domain Service (NIDomainService) - National Instruments Corporation - C:\Program Files\National Instruments\Shared\Security\nidmsrv.exe
O23 - Service: NI Service Locator (niSvcLoc) - National Instruments Corporation - C:\Windows\system32\nisvcloc.exe
O23 - Service: National Instruments Variable Engine (NITaggerService) - National Instruments Corporation - C:\Program Files\National Instruments\Shared\Tagger\tagsrv.exe
O23 - Service: @%SystemRoot%\System32\nlasvc.dll,-1 (NlaSvc) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\nsisvc.dll,-200 (nsi) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: NVIDIA Display Driver Service (nvsvc) - NVIDIA Corporation - C:\Windows\system32\nvvsvc.exe
O23 - Service: Sony Ericsson OMSI download service (OMSI download service) - Unknown owner - C:\Program Files\Sony Ericsson\Sony Ericsson PC Suite\SupServ.exe
O23 - Service: OpcEnum - OPC Foundation - C:\Windows\system32\OpcEnum.exe
O23 - Service: @%SystemRoot%\system32\pnrpsvc.dll,-8004 (p2pimsvc) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\p2psvc.dll,-8006 (p2psvc) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\pcasvc.dll,-1 (PcaSvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\peerdistsvc.dll,-9000 (PeerDistSvc) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: Phidget Webservice 21 (PhidgetWebservice21) - Phidgets Inc. - C:\Program Files\Phidgets\PhidgetWindowsService21.exe
O23 - Service: @%systemroot%\system32\pla.dll,-500 (pla) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\umpnpmgr.dll,-100 (PlugPlay) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\pnrpauto.dll,-8002 (PNRPAutoReg) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\pnrpsvc.dll,-8000 (PNRPsvc) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\System32\polstore.dll,-5010 (PolicyAgent) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\umpo.dll,-100 (Power) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%systemroot%\system32\profsvc.dll,-300 (ProfSvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\qwave.dll,-1 (QWAVE) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%Systemroot%\system32\rasauto.dll,-200 (RasAuto) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%Systemroot%\system32\rasmans.dll,-200 (RasMan) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: Intel(R) PROSet/Wireless Registry Service (RegSrvc) - Intel(R) Corporation - C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe
O23 - Service: @regsvc.dll,-1 (RemoteRegistry) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%windir%\system32\RpcEpMap.dll,-1001 (RpcEptMapper) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe
O23 - Service: @oleres.dll,-5010 (RpcSs) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: S7 HSP Service (s7hspsvx) - SIEMENS AG - C:\Program Files\Siemens\Step7\s7bin\s7hspsvx.exe
O23 - Service: SIMATIC IEPG Help Service (s7oiehsx) - SIEMENS AG - C:\Program Files\Common Files\Siemens\S7IEPG\s7oiehsx.exe
O23 - Service: S7TraceServiceX - SIEMENS AG - C:\Program Files\Common Files\Siemens\Automation\TraceEngine\bin\S7TraceServiceX.exe
O23 - Service: @%SystemRoot%\System32\SCardSvr.dll,-1 (SCardSvr) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\schedsvc.dll,-100 (Schedule) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\System32\certprop.dll,-13 (SCPolicySvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\sdrsvc.dll,-107 (SDRSVC) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\seclogon.dll,-7001 (seclogon) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\Sens.dll,-200 (SENS) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\System32\sensrsvc.dll,-1000 (SensrSvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\System32\SessEnv.dll,-1026 (SessionEnv) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\System32\shsvcs.dll,-12288 (ShellHWDetection) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: Symantec Management Client (SmcService) - Symantec Corporation - C:\Program Files\Symantec\Symantec Endpoint Protection\Smc.exe
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe
O23 - Service: @%SystemRoot%\system32\sppuinotify.dll,-103 (sppuinotify) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%systemroot%\system32\ssdpsrv.dll,-100 (SSDPSRV) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\sstpsvc.dll,-200 (SstpSvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: SigmaTel Audio Service (STacSV) - IDT, Inc. - C:\Windows\system32\STacSV.exe
O23 - Service: @%SystemRoot%\system32\wiaservc.dll,-9 (StiSvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\System32\swprv.dll,-103 (swprv) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: Symantec Endpoint Protection (Symantec AntiVirus) - Symantec Corporation - C:\Program Files\Symantec\Symantec Endpoint Protection\Rtvscan.exe
O23 - Service: @%SystemRoot%\system32\sysmain.dll,-1000 (SysMain) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\TabSvc.dll,-100 (TabletInputService) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\tapisrv.dll,-10100 (TapiSrv) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\tbssvc.dll,-100 (TBS) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\System32\termsrv.dll,-268 (TermService) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\System32\themeservice.dll,-8192 (Themes) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%systemroot%\system32\mmcss.dll,-102 (THREADORDER) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\trkwks.dll,-1 (TrkWks) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\servicing\TrustedInstaller.exe,-100 (TrustedInstaller) - Unknown owner - C:\Windows\servicing\TrustedInstaller.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe
O23 - Service: Ulead Burning Helper (UleadBurningHelper) - Ulead Systems, Inc. - C:\Program Files\Common Files\Ulead Systems\DVD\ULCDRSvr.exe
O23 - Service: @%SystemRoot%\system32\umrdp.dll,-1000 (UmRdpService) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%systemroot%\system32\upnphost.dll,-213 (upnphost) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\dwm.exe,-2000 (UxSms) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe
O23 - Service: @%SystemRoot%\system32\w32time.dll,-200 (W32Time) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe
O23 - Service: @%systemroot%\system32\wbiosrvc.dll,-100 (WbioSrvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\wcncsvc.dll,-3 (wcncsvc) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\WcsPlugInService.dll,-200 (WcsPlugInService) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%systemroot%\system32\wdi.dll,-502 (WdiServiceHost) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%systemroot%\system32\wdi.dll,-500 (WdiSystemHost) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%systemroot%\system32\webclnt.dll,-100 (WebClient) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\wecsvc.dll,-200 (Wecsvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\System32\wercplsupport.dll,-101 (wercplsupport) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\System32\wersvc.dll,-100 (WerSvc) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\winhttp.dll,-100 (WinHttpAutoProxySvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%Systemroot%\system32\wbem\wmisvc.dll,-205 (Winmgmt) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%Systemroot%\system32\wsmsvc.dll,-101 (WinRM) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\System32\wlansvc.dll,-257 (Wlansvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files\Windows Media Player\wmpnetwk.exe
O23 - Service: @%SystemRoot%\system32\wpcsvc.dll,-100 (WPCSvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\wpdbusenum.dll,-100 (WPDBusEnum) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%systemroot%\system32\SearchIndexer.exe,-103 (WSearch) - Unknown owner - C:\Windows\system32\SearchIndexer.exe
O23 - Service: @%systemroot%\system32\wuaueng.dll,-105 (wuauserv) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\wudfsvc.dll,-1000 (wudfsvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\System32\wwansvc.dll,-257 (WwanSvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: XAudioService - Conexant Systems, Inc. - C:\Windows\system32\DRIVERS\xaudio.exe

--
End of file - 24404 bytes

======Scheduled tasks folder======

C:\Windows\tasks\GoogleUpdateTaskMachineCore.job
C:\Windows\tasks\GoogleUpdateTaskMachineUA.job
C:\Windows\tasks\zwzsir.job

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{5C255C8A-E604-49b4-9D64-90988571CECB}]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
Programme d'aide de l'Assistant de connexion Windows Live - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2009-01-22 408448]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre6\bin\jp2ssv.dll [2010-12-20 41760]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"NvCplDaemon"=C:\Windows\system32\NvCpl.dll [2008-05-07 13535776]
"NvMediaCenter"=C:\Windows\system32\NvMcTray.dll [2008-05-07 92704]
"NVHotkey"=C:\Windows\system32\nvHotkey.dll [2008-05-07 92704]
""= []
"ccApp"=C:\Program Files\Common Files\Symantec Shared\ccApp.exe [2009-12-22 115560]
"SigmatelSysTrayApp"=C:\Program Files\SigmaTel\C-Major Audio\WDM\sttray.exe [2007-09-13 405504]
"SynTPEnh"=C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2007-10-26 1029416]
"TrayServer"=C:\Program Files\MAGIX\Video_deluxe_16_Plus_Version à télécharger\TrayServer.exe [2008-09-01 90112]
"QuickTime Task"=C:\Program Files\QuickTime\QTTask.exe [2010-09-08 421888]
"S7UB Start"=C:\Program Files\Common Files\Siemens\S7ubtoox\s7ubtstx.exe [2010-06-03 102453]
"UVS10 Preload"=C:\Program Files\Ulead Systems\Ulead VideoStudio SE DVD\uvPL.exe [2006-08-09 36864]
"SunJavaUpdateSched"=C:\Program Files\Common Files\Java\Java Update\jusched.exe [2010-05-14 248552]
"Malwarebytes' Anti-Malware (reboot)"=C:\Program Files\Malwarebytes' Anti-Malware\mbam.exe [2010-12-20 963976]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"msnmsgr"=C:\Program Files\Windows Live\Messenger\msnmsgr.exe [2010-04-16 3872080]
"Polar Sync"= []

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\CE8SIIFGSU]
C:\Users\NICOLE~1.EIS\AppData\Local\Temp\Xtl.exe []

C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup
Microsoft Firewall Client Management.lnk - C:\Program Files\Microsoft Firewall Client 2004\FwcMgmt.exe
QuickSet.lnk - C:\Program Files\Dell\QuickSet\quickset.exe

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED}

[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\ccEvtMgr]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\ccSetMgr]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Symantec Antivirus]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Symantec Antvirus]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\ccEvtMgr]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\ccSetMgr]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\SmcService]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Symantec Antivirus]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Symantec Antvirus]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=5
"ConsentPromptBehaviorUser"=3
"EnableUIADesktopToggle"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
"disablecad"=0
"DefaultLogonDomain"=EISI
"EnableLinkedConnections"=1

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=145
"NoThumbnailCache"=1
"NoDriveAutorun"=0
"NoActiveDesktopChanges"=0

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

======File associations======

.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*

======List of files/folders created in the last 1 months======

2011-01-25 12:55:44 ----D---- C:\Program Files\trend micro
2011-01-25 12:55:43 ----D---- C:\rsit
2011-01-25 12:07:14 ----D---- C:\Users\nicoletv.EISI\AppData\Roaming\Malwarebytes
2011-01-25 12:07:04 ----A---- C:\Windows\system32\drivers\mbamswissarmy.sys
2011-01-25 12:07:03 ----D---- C:\ProgramData\Malwarebytes
2011-01-25 12:07:00 ----D---- C:\Program Files\Malwarebytes' Anti-Malware
2011-01-25 12:07:00 ----A---- C:\Windows\system32\drivers\mbam.sys
2011-01-25 10:36:57 ----D---- C:\Users\nicoletv.EISI\AppData\Roaming\Systweak
2011-01-25 10:36:57 ----D---- C:\ProgramData\Systweak
2011-01-25 10:36:48 ----D---- C:\Program Files\Systweak
2011-01-25 10:36:38 ----A---- C:\Windows\system32\sasnative32.exe
2011-01-24 22:50:18 ----RASH---- C:\Windows\system32\cryptspx.dll
2011-01-24 19:57:57 ----D---- C:\Program Files\Dragonshorn Studios
2011-01-22 16:28:28 ----A---- C:\Program Files\PICCpcw.ini
2011-01-22 16:28:04 ----D---- C:\Program Files\PICC
2011-01-17 20:15:44 ----A---- C:\Windows\system32\svufile.exe
2011-01-17 20:15:41 ----D---- C:\Program Files\SystemView
2011-01-17 20:01:54 ----A---- C:\Windows\system32\drivers\sptd.sys
2011-01-17 20:01:31 ----D---- C:\Program Files\DAEMON Tools Lite
2011-01-17 20:01:13 ----D---- C:\Users\nicoletv.EISI\AppData\Roaming\DAEMON Tools Lite
2011-01-17 20:01:10 ----D---- C:\ProgramData\DAEMON Tools Lite
2011-01-17 14:39:07 ----D---- C:\Windows\system32\Shared Memory
2011-01-09 19:56:17 ----D---- C:\Program Files\Common Files\Sony Shared
2011-01-09 19:55:51 ----D---- C:\ProgramData\Sony Corporation
2011-01-09 19:55:51 ----D---- C:\Program Files\Sony
2011-01-09 19:55:27 ----D---- C:\Users\nicoletv.EISI\AppData\Roaming\Sony
2011-01-09 19:55:27 ----D---- C:\Program Files\Sony Media Go Install
2011-01-06 15:06:49 ----D---- C:\Windows\Setup533
2011-01-06 15:06:49 ----A---- C:\Windows\system32\SP5X_32.DLL
2011-01-06 15:06:49 ----A---- C:\Windows\system32\drivers\Ca533av.sys
2011-01-06 15:06:49 ----A---- C:\Windows\system32\drivers\Bulk533.sys
2011-01-06 15:06:49 ----A---- C:\Windows\ShowBmp.exe
2011-01-06 15:06:49 ----A---- C:\Windows\Remove.ini
2011-01-06 15:06:49 ----A---- C:\Windows\amcap533.exe
2011-01-06 15:05:59 ----D---- C:\Program Files\SPCA1528
2011-01-06 15:05:59 ----A---- C:\Windows\system32\drivers\Ca1528av.sys
2011-01-06 15:05:59 ----A---- C:\Windows\system32\drivers\Bulk1528.sys
2011-01-05 16:43:48 ----D---- C:\Program Files\gMapMaker
2011-01-01 19:02:37 ----D---- C:\OutputFolder
2010-12-28 21:22:41 ----D---- C:\Users\nicoletv.EISI\AppData\Roaming\Digiarty
2010-12-28 21:22:34 ----D---- C:\Program Files\Digiarty

======List of files/folders modified in the last 1 months======

2011-01-25 14:47:31 ----D---- C:\Windows\Prefetch
2011-01-25 14:43:32 ----D---- C:\Windows\System32
2011-01-25 14:43:32 ----A---- C:\Windows\system32\PerfStringBackup.INI
2011-01-25 14:43:31 ----D---- C:\Windows\inf
2011-01-25 14:39:28 ----D---- C:\Windows\Temp
2011-01-25 14:36:37 ----D---- C:\Windows\Web
2011-01-25 14:36:37 ----D---- C:\Windows\system32\drivers
2011-01-25 14:36:11 ----D---- C:\Windows\system32\config
2011-01-25 14:34:38 ----D---- C:\Windows\system32\Tasks
2011-01-25 14:34:37 ----D---- C:\Windows\Tasks
2011-01-25 12:55:44 ----RD---- C:\Program Files
2011-01-25 12:07:03 ----HD---- C:\ProgramData
2011-01-25 10:10:01 ----D---- C:\Windows
2011-01-24 20:36:46 ----SHD---- C:\System Volume Information
2011-01-22 17:44:57 ----D---- C:\Users\nicoletv.EISI\AppData\Roaming\Microchip
2011-01-20 13:18:43 ----D---- C:\Users\nicoletv.EISI\AppData\Roaming\codeblocks
2011-01-20 08:08:09 ----D---- C:\Electronique
2011-01-19 10:27:20 ----D---- C:\Windows\system32\wdi
2011-01-10 21:33:43 ----D---- C:\MCC18
2011-01-10 15:37:04 ----D---- C:\ProgramData\Avanquest Bluetooth SDK
2011-01-09 19:56:22 ----SHD---- C:\Windows\Installer
2011-01-09 19:56:21 ----HD---- C:\Config.Msi
2011-01-09 19:56:17 ----D---- C:\Program Files\Common Files
2011-01-09 19:56:00 ----RSD---- C:\Windows\assembly
2011-01-06 15:06:49 ----HD---- C:\Program Files\InstallShield Installation Information
2011-01-06 15:06:12 ----D---- C:\Windows\system
2011-01-06 15:06:09 ----D---- C:\Windows\system32\DriverStore
2011-01-06 15:06:09 ----D---- C:\Windows\system32\catroot
2011-01-05 18:33:54 ----SD---- C:\Users\nicoletv.EISI\AppData\Roaming\Microsoft
2010-12-28 16:32:01 ----D---- C:\Users\nicoletv.EISI\AppData\Roaming\vlc
2010-12-28 16:30:42 ----D---- C:\Windows\system32\drivers\UMDF

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 NIPALK;NIPALK; C:\Windows\System32\drivers\nipalk.sys [2009-10-30 597592]
R0 nipbcfk;National Instruments Class Upper Filter Driver; C:\Windows\System32\drivers\nipbcfk.sys [2009-07-07 15448]
R0 rdyboost;ReadyBoost; C:\Windows\System32\drivers\rdyboost.sys [2009-07-14 173648]
R0 sptd;sptd; C:\Windows\System32\Drivers\sptd.sys [2011-01-17 691696]
R1 CSC;@%systemroot%\system32\cscsvc.dll,-202; C:\Windows\system32\drivers\csc.sys [2009-07-14 387584]
R1 dpmconv;SIMATIC NET DP Driver; C:\Windows\system32\DRIVERS\dpmconv32.sys [2010-04-28 288256]
R1 DPMTRCDD;SIMATIC NET Softnet Trace Driver; C:\Windows\system32\DRIVERS\DPMTRCDD32.sys [2010-03-22 72248]
R1 eeCtrl;Symantec Eraser Control driver; \??\C:\Program Files\Common Files\Symantec Shared\EENGINE\eeCtrl.sys [2010-12-01 371248]
R1 SPBBCDrv;SPBBCDrv; \??\C:\Program Files\Common Files\Symantec Shared\SPBBC\SPBBCDrv.sys [2009-12-22 421424]
R1 SRTSP;SRTSP; C:\Windows\System32\Drivers\SRTSP.SYS [2009-12-22 281648]
R1 SRTSPX;SRTSPX; C:\Windows\System32\Drivers\SRTSPX.SYS [2009-12-22 43696]
R1 SYMTDI;SYMTDI; C:\Windows\System32\Drivers\SYMTDI.SYS [2009-12-22 188080]
R1 vsnl2ada;SIMATIC NET FDL Driver; C:\Windows\system32\DRIVERS\vsnl2ada32.sys [2010-03-22 98944]
R2 cvintdrv;cvintdrv; C:\Windows\system32\drivers\cvintdrv.sys [2009-08-03 4096]
R2 CVPNDRVA;Cisco Systems Inc. IPSec Driver; \??\C:\Windows\system32\Drivers\CVPNDRVA.sys [2010-03-23 308859]
R2 GIVEIO;GIVEIO BDM Access Driver; C:\Windows\system32\drivers\GIVEIO.sys [2009-10-16 10032]
R2 irda;Protocole IrDA; C:\Windows\system32\DRIVERS\irda.sys [2009-07-14 96768]
R2 mdmxsdk;mdmxsdk; C:\Windows\system32\DRIVERS\mdmxsdk.sys [2006-06-19 12672]
R2 PEDRV;P&E Microcomputer System PCI Driver.; C:\Windows\system32\drivers\PEDRV.sys [2009-10-16 28080]
R2 rimmptsk;rimmptsk; C:\Windows\system32\DRIVERS\rimmptsk.sys [2007-02-24 39936]
R2 rimsptsk;rimsptsk; C:\Windows\system32\DRIVERS\rimsptsk.sys [2007-01-23 42496]
R2 rismxdp;Ricoh xD-Picture Card Driver; C:\Windows\system32\DRIVERS\rixdptsk.sys [2007-03-21 37376]
R2 S7opcsrtx;PROFINET IO RT-Protocol (LLDP); C:\Windows\system32\DRIVERS\s7opcsrtx.sys [2010-06-07 31744]
R2 S7otranx32;SIMATIC Transport; C:\Windows\System32\Drivers\S7otranx32.sys [2010-03-18 521216]
R2 s7snsrtx;PROFINET IO RT-Protocol V1.0; C:\Windows\system32\DRIVERS\s7snsrtx.sys [2009-02-24 73088]
R2 SNTIE;SIMATIC Industrial Ethernet (ISO); C:\Windows\system32\DRIVERS\sntie.sys [2010-01-24 336128]
R2 VICHW11;P&E BDM Cable Driver II; C:\Windows\system32\drivers\VICHW11.sys [2009-10-16 9984]
R3 b57nd60x;Broadcom NetXtreme Gigabit Ethernet - NDIS 6.0; C:\Windows\system32\DRIVERS\b57nd60x.sys [2009-07-13 229888]
R3 BCASPROT;Advanced System Protector; \??\C:\Program Files\Systweak\Advanced System Protector\sasprot32.sys [2008-08-05 6656]
R3 BthEnum;Pilote de bloc de demande Bluetooth; C:\Windows\system32\DRIVERS\BthEnum.sys [2009-07-14 34816]
R3 BTHFILT;Filtre de commande Bluetooth; C:\Windows\system32\DRIVERS\BthFilt.sys [2006-11-06 13824]
R3 BthPan;Périphérique Bluetooth (réseau personnel); C:\Windows\system32\DRIVERS\bthpan.sys [2009-07-14 93696]
R3 BTHUSB;Pilote USB radio Bluetooth; C:\Windows\System32\Drivers\BTHUSB.sys [2009-07-14 58880]
R3 DNE;Deterministic Network Enhancer Miniport; C:\Windows\system32\DRIVERS\dne2000.sys [2008-11-16 131984]
R3 EraserUtilRebootDrv;EraserUtilRebootDrv; \??\C:\Program Files\Common Files\Symantec Shared\EENGINE\EraserUtilRebootDrv.sys [2010-12-01 102448]
R3 HSF_DPV;HSF_DPV; C:\Windows\system32\DRIVERS\HSX_DPV.sys [2006-11-02 986624]
R3 HSXHWAZL;HSXHWAZL; C:\Windows\system32\DRIVERS\HSXHWAZL.sys [2006-11-02 206848]
R3 NAVENG;NAVENG; \??\C:\PROGRA~2\Symantec\DEFINI~1\VIRUSD~1\20110124.035\NAVENG.SYS [2011-01-10 86008]
R3 NAVEX15;NAVEX15; \??\C:\PROGRA~2\Symantec\DEFINI~1\VIRUSD~1\20110124.035\NAVEX15.SYS [2011-01-10 1360760]
R3 netw5v32;Intel(R) Wireless WiFi Link 5000 Series Adapter Driver for Windows Vista 32 Bit; C:\Windows\system32\DRIVERS\netw5v32.sys [2009-05-28 4233728]
R3 RFCOMM;Périphérique Bluetooth (TDI protocole RFCOMM); C:\Windows\system32\DRIVERS\rfcomm.sys [2009-07-14 129536]
R3 S7odpx2x32;SIMATIC Knotentaufe; C:\Windows\System32\Drivers\S7odpx2x32.sys [2010-03-18 87552]
R3 sdbus;sdbus; C:\Windows\system32\DRIVERS\sdbus.sys [2009-10-10 84992]
R3 STHDA;SigmaTel High Definition Audio CODEC; C:\Windows\system32\drivers\stwrt.sys [2007-09-13 330240]
R3 SymEvent;SymEvent; \??\C:\Windows\system32\Drivers\SYMEVENT.SYS [2010-12-01 124976]
R3 SYMREDRV;SYMREDRV; C:\Windows\System32\Drivers\SYMREDRV.SYS [2009-12-22 26416]
R3 SynTP;Synaptics TouchPad Driver; C:\Windows\system32\DRIVERS\SynTP.sys [2007-10-26 193456]
R3 TcUsb;TC USB Kernel Driver; C:\Windows\System32\Drivers\tcusb.sys [2007-04-03 46992]
S2 Ca1528av;SPCA1528 Video Camera Service; C:\Windows\System32\Drivers\Ca1528av.sys [2008-07-28 513408]
S2 Parvdm;Parvdm; C:\Windows\system32\DRIVERS\parvdm.sys [2009-07-14 8704]
S3 aic78xx;aic78xx; C:\Windows\system32\DRIVERS\djsvs.sys [2009-07-14 70720]
S3 amdagp;AMD AGP Bus Filter Driver; C:\Windows\system32\DRIVERS\amdagp.sys [2009-07-14 53312]
S3 BthAvrcp;Profil AVRCP Bluetooth; C:\Windows\system32\DRIVERS\BthAvrcp.sys [2009-08-13 22528]
S3 BTHPORT;Pilote de port Bluetooth; C:\Windows\System32\Drivers\BTHport.sys [2009-07-14 392704]
S3 Bulk1528;SPCA1528 Still Camera Service; C:\Windows\System32\Drivers\Bulk1528.sys [2008-06-27 11648]
S3 CSRBC;CSRBC.Sys CSR test driver; C:\Windows\System32\Drivers\csrbcxp.sys [2007-01-16 31744]
S3 CVirtA;Cisco Systems VPN Adapter; C:\Windows\system32\DRIVERS\CVirtA.sys [2007-01-18 5275]
S3 driverhardwarev2;driverhardwarev2; \??\C:\Program Files\ma-config.com\Drivers\driverhardwarev2.sys [2010-08-30 14336]
S3 NETwLv32; Pilote de carte de la série Intel(R) Wireless WiFi Link 5000 pour Windows Vista 32 bits ; C:\Windows\system32\DRIVERS\NETwLv32.sys [2010-10-07 6639616]
S3 nipalfwedl;nipalfwedl; C:\Windows\System32\drivers\nipalfwedl.sys [2009-10-30 11904]
S3 nipalusbedl;nipalusbedl; C:\Windows\System32\drivers\nipalusbedl.sys [2009-10-30 11896]
S3 pciide;pciide; C:\Windows\system32\DRIVERS\pciide.sys [2009-07-14 12368]
S3 RDPDR;Terminal Server Device Redirector Driver; C:\Windows\System32\drivers\rdpdr.sys [2009-07-14 133120]
S3 s0016bus;Sony Ericsson Device 0016 driver (WDM); C:\Windows\system32\DRIVERS\s0016bus.sys [2008-05-16 89256]
S3 s0016mdfl;Sony Ericsson Device 0016 USB WMC Modem Filter; C:\Windows\system32\DRIVERS\s0016mdfl.sys [2008-05-16 15016]
S3 s0016mdm;Sony Ericsson Device 0016 USB WMC Modem Driver; C:\Windows\system32\DRIVERS\s0016mdm.sys [2008-05-16 120744]
S3 s0016mgmt;Sony Ericsson Device 0016 USB WMC Device Management Drivers (WDM); C:\Windows\system32\DRIVERS\s0016mgmt.sys [2008-05-16 114216]
S3 s0016nd5;Sony Ericsson Device 0016 USB Ethernet Emulation SEMC0016 (NDIS); C:\Windows\system32\DRIVERS\s0016nd5.sys [2008-05-16 25512]
S3 s0016obex;Sony Ericsson Device 0016 USB WMC OBEX Interface; C:\Windows\system32\DRIVERS\s0016obex.sys [2008-05-16 110632]
S3 s0016unic;Sony Ericsson Device 0016 USB Ethernet Emulation SEMC0016 (WDM); C:\Windows\system32\DRIVERS\s0016unic.sys [2008-05-16 115752]
S3 s1029bus;Sony Ericsson Device 1029 driver (WDM); C:\Windows\system32\DRIVERS\s1029bus.sys [2009-05-25 90280]
S3 s1029mdfl;Sony Ericsson Device 1029 USB WMC Modem Filter; C:\Windows\system32\DRIVERS\s1029mdfl.sys [2009-05-25 15016]
S3 s1029mdm;Sony Ericsson Device 1029 USB WMC Modem Driver; C:\Windows\system32\DRIVERS\s1029mdm.sys [2009-05-25 122280]
S3 s1029mgmt;Sony Ericsson Device 1029 USB WMC Device Management Drivers (WDM); C:\Windows\system32\DRIVERS\s1029mgmt.sys [2009-05-25 115880]
S3 s1029nd5;Sony Ericsson Device 1029 USB Ethernet Emulation (NDIS); C:\Windows\system32\DRIVERS\s1029nd5.sys [2009-05-25 26024]
S3 s1029obex;Sony Ericsson Device 1029 USB WMC OBEX Interface; C:\Windows\system32\DRIVERS\s1029obex.sys [2009-05-25 111912]
S3 s1029unic;Sony Ericsson Device 1029 USB Ethernet Emulation (WDM); C:\Windows\system32\DRIVERS\s1029unic.sys [2009-05-25 116904]
S3 s3cap;s3cap; C:\Windows\system32\DRIVERS\vms3cap.sys [2009-07-14 5632]
S3 Ser2pl;Prolific Serial port driver; C:\Windows\system32\DRIVERS\ser2pl.sys [2007-07-31 76800]
S3 sisagp;SIS AGP Bus Filter; C:\Windows\system32\DRIVERS\sisagp.sys [2009-07-14 52304]
S3 SMIGrabber3C;SMI Grabber Device Tuner Filter 3C; C:\Windows\System32\Drivers\SmiUsbGrabber3C.sys [2009-05-14 799488]
S3 SRTSPL;SRTSPL; C:\Windows\System32\Drivers\SRTSPL.SYS [2009-12-22 320560]
S3 SrvHsfHDA;SrvHsfHDA; C:\Windows\system32\DRIVERS\VSTAZL3.SYS [2009-07-13 207360]
S3 SrvHsfV92;SrvHsfV92; C:\Windows\system32\DRIVERS\VSTDPV3.SYS [2009-07-13 980992]
S3 SrvHsfWinac;SrvHsfWinac; C:\Windows\system32\DRIVERS\VSTCNXT3.SYS [2009-07-13 661504]
S3 STIrUsb;SigmaTel USB-IrDA Dongle; C:\Windows\system32\DRIVERS\irstusb.sys [2008-01-19 30208]
S3 storvsc;storvsc; C:\Windows\system32\DRIVERS\storvsc.sys [2009-07-14 28224]
S3 usbscan;Pilote de scanneur USB; C:\Windows\system32\DRIVERS\usbscan.sys [2009-07-14 35840]
S3 viaagp;VIA AGP Bus Filter; C:\Windows\system32\DRIVERS\viaagp.sys [2009-07-14 53328]
S3 ViaC7;VIA C7 Processor Driver; C:\Windows\system32\DRIVERS\viac7.sys [2009-07-14 52736]
S3 vmbus;@%SystemRoot%\system32\vmbusres.dll,-1000; C:\Windows\system32\DRIVERS\vmbus.sys [2009-07-14 175824]
S3 VMBusHID;VMBusHID; C:\Windows\system32\DRIVERS\VMBusHID.sys [2009-07-14 17920]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 almservice;Automation License Manager Service; C:\Program Files\Common Files\Siemens\sws\almsrv\almsrvx.exe [2010-05-06 1102848]
R2 BthFilterHelper;Bluetooth Feature Support; C:\Program Files\CSR\Vista Profile Pack\BthFilterHelper.exe [2006-11-07 127488]
R2 ccEvtMgr;Symantec Event Manager; C:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe [2009-12-22 108392]
R2 ccSetMgr;Symantec Settings Manager; C:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe [2009-12-22 108392]
R2 CscService;@%systemroot%\system32\cscsvc.dll,-200; C:\Windows\System32\svchost.exe [2009-07-14 20992]
R2 CVPND;Cisco Systems, Inc. VPN Service; C:\Program Files\HEARC\Cisco VPN Client\cvpnd.exe [2010-03-23 1528616]
R2 EvtEng;Intel(R) PROSet/Wireless Event Log; C:\Program Files\Intel\WiFi\bin\EvtEng.exe [2009-05-21 874768]
R2 Fabs;FABS - Helping agent for MAGIX media database; C:\Program Files\Common Files\MAGIX Services\Database\bin\FABS.exe [2009-08-27 1253376]
R2 FwcAgent;Firewall Client Agent; C:\Program Files\Microsoft Firewall Client 2004\FwcAgent.exe [2006-12-09 128832]
R2 Irmon;@%SystemRoot%\System32\irmon.dll,-2000; C:\Windows\system32\svchost.exe [2009-07-14 20992]
R2 LkCitadelServer;Lookout Citadel Server; C:\Windows\system32\lkcitdl.exe [2009-09-29 695136]
R2 lkClassAds;National Instruments PSP Server Locator; C:\Windows\system32\lkads.exe [2009-11-23 43056]
R2 lkTimeSync;National Instruments Time Synchronization; C:\Windows\system32\lktsrv.exe [2009-11-23 53808]
R2 MDM;Machine Debug Manager; C:\Program Files\Common Files\Microsoft Shared\VS7DEBUG\mdm.exe [2006-10-26 335872]
R2 mxssvr;NI Configuration Manager; C:\Program Files\National Instruments\MAX\nimxs.exe [2009-10-20 12696]
R2 nicconfigsvc;Gestion de l'alimentation de l'adaptateur réseau interne Dell; C:\Program Files\Dell\QuickSet\NicConfigSvc.exe [2008-02-22 390424]
R2 NIDomainService;National Instruments Domain Service; C:\Program Files\National Instruments\Shared\Security\nidmsrv.exe [2009-11-23 358448]
R2 niSvcLoc;NI Service Locator; C:\Windows\system32\nisvcloc.exe [2009-10-20 13896]
R2 NITaggerService;National Instruments Variable Engine; C:\Program Files\National Instruments\Shared\Tagger\tagsrv.exe [2009-11-23 745576]
R2 nvsvc;NVIDIA Display Driver Service; C:\Windows\system32\nvvsvc.exe [2008-05-07 196608]
R2 OMSI download service;Sony Ericsson OMSI download service; C:\Program Files\Sony Ericsson\Sony Ericsson PC Suite\SupServ.exe [2009-04-30 90112]
R2 RegSrvc;Intel(R) PROSet/Wireless Registry Service; C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe [2009-05-21 473360]
R2 s7hspsvx;S7 HSP Service; C:\Program Files\Siemens\Step7\s7bin\s7hspsvx.exe [2010-06-02 61493]
R2 s7oiehsx;SIMATIC IEPG Help Service; C:\Program Files\Common Files\Siemens\S7IEPG\s7oiehsx.exe [2010-06-07 1576072]
R2 S7TraceServiceX;S7TraceServiceX; C:\Program Files\Common Files\Siemens\Automation\TraceEngine\bin\S7TraceServiceX.exe [2010-06-07 240776]
R2 SmcService;Symantec Management Client; C:\Program Files\Symantec\Symantec Endpoint Protection\Smc.exe [2009-12-22 1864888]
R2 STacSV;SigmaTel Audio Service; C:\Windows\system32\STacSV.exe [2007-09-13 102400]
R2 Symantec AntiVirus;Symantec Endpoint Protection; C:\Program Files\Symantec\Symantec Endpoint Protection\Rtvscan.exe [2009-12-22 2477304]
R2 UleadBurningHelper;Ulead Burning Helper; C:\Program Files\Common Files\Ulead Systems\DVD\ULCDRSvr.exe [2006-09-28 49152]
S2 gupdate;Service Google Update (gupdate); C:\Program Files\Google\Update\GoogleUpdate.exe [2010-12-01 136176]
S3 AppMgmt;@appmgmts.dll,-3250; C:\Windows\system32\svchost.exe [2009-07-14 20992]
S3 FirebirdServerMAGIXInstance;Firebird Server - MAGIX Instance; C:\Program Files\Common Files\MAGIX Services\Database\bin\fbserver.exe [2008-08-07 3276800]
S3 IDriverT;InstallDriver Table Manager; C:\Program Files\Common Files\InstallShield\Driver\1050\Intel 32\IDriverT.exe [2004-10-22 73728]
S3 LiveUpdate;LiveUpdate; C:\PROGRA~1\Symantec\LIVEUP~1\LUCOMS~1.EXE [2009-07-13 3093880]
S3 maconfservice;Ma-Config Service; C:\Program Files\ma-config.com\maconfservice.exe [2010-09-12 251248]
S3 odserv;Microsoft Office Diagnostics Service; C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE [2008-11-04 441712]
S3 OpcEnum;OpcEnum; C:\Windows\system32\OpcEnum.exe [2009-06-03 98304]
S3 ose;Office Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2006-10-26 145184]
S3 PeerDistSvc;@%SystemRoot%\system32\peerdistsvc.dll,-9000; C:\Windows\System32\svchost.exe [2009-07-14 20992]
S3 PhidgetWebservice21;Phidget Webservice 21; C:\Program Files\Phidgets\PhidgetWindowsService21.exe [2010-11-03 24576]
S3 UmRdpService;@%SystemRoot%\system32\umrdp.dll,-1000; C:\Windows\System32\svchost.exe [2009-07-14 20992]
S4 NILM License Manager;NILM License Manager; C:\Program Files\National Instruments\Shared\License Manager\Bin\lmgrd.exe [2009-09-18 1007616]
S4 SNAC;Symantec Network Access Control; C:\Program Files\Symantec\Symantec Endpoint Protection\SNAC.EXE [2009-12-22 341320]

-----------------EOF-----------------




Et Info.txt:

info.txt logfile of random's system information tool 1.08 2011-01-25 14:50:50

======Uninstall list======

-->msiexec /i {199B7F78-69B7-47C5-8D4B-A3ED1391FB6B} MSIPATCHREMOVE={0A3D1B9E-2E40-43CA-AD0C-4A10E244EFB7} /qb
-->msiexec /package {90120000-0015-040C-0000-0000000FF1CE} /uninstall {3FC4C935-9B68-483E-9B50-BBBF98955486}
-->msiexec /package {90120000-0019-040C-0000-0000000FF1CE} /uninstall {3FC4C935-9B68-483E-9B50-BBBF98955486}
-->msiexec /package {90120000-001F-0401-0000-0000000FF1CE} /uninstall {48A78A1B-3884-4356-998D-84FD6AAD0D85}
-->msiexec /package {90120000-001F-0401-0000-0000000FF1CE} /uninstall {48A78A1B-3884-4356-998D-84FD6AAD0D85}
-->msiexec /package {90120000-001F-0407-0000-0000000FF1CE} /uninstall {48A78A1B-3884-4356-998D-84FD6AAD0D85}
-->msiexec /package {90120000-001F-0407-0000-0000000FF1CE} /uninstall {48A78A1B-3884-4356-998D-84FD6AAD0D85}
-->msiexec /package {90120000-001F-0409-0000-0000000FF1CE} /uninstall {48A78A1B-3884-4356-998D-84FD6AAD0D85}
-->msiexec /package {90120000-001F-0409-0000-0000000FF1CE} /uninstall {48A78A1B-3884-4356-998D-84FD6AAD0D85}
-->msiexec /package {90120000-001F-040C-0000-0000000FF1CE} /uninstall {48A78A1B-3884-4356-998D-84FD6AAD0D85}
-->msiexec /package {90120000-001F-040C-0000-0000000FF1CE} /uninstall {48A78A1B-3884-4356-998D-84FD6AAD0D85}
-->msiexec /package {90120000-001F-0413-0000-0000000FF1CE} /uninstall {48A78A1B-3884-4356-998D-84FD6AAD0D85}
-->msiexec /package {90120000-001F-0413-0000-0000000FF1CE} /uninstall {48A78A1B-3884-4356-998D-84FD6AAD0D85}
-->msiexec /package {90120000-001F-0C0A-0000-0000000FF1CE} /uninstall {48A78A1B-3884-4356-998D-84FD6AAD0D85}
-->msiexec /package {90120000-001F-0C0A-0000-0000000FF1CE} /uninstall {48A78A1B-3884-4356-998D-84FD6AAD0D85}
-->msiexec /package {90120000-0044-040C-0000-0000000FF1CE} /uninstall {3FC4C935-9B68-483E-9B50-BBBF98955486}
-->msiexec /package {90120000-0054-040C-0000-0000000FF1CE} /uninstall {48A78A1B-3884-4356-998D-84FD6AAD0D85}
-->msiexec /package {90120000-006E-040C-0000-0000000FF1CE} /uninstall {48A78A1B-3884-4356-998D-84FD6AAD0D85}
-->msiexec /package {90120000-006E-040C-0000-0000000FF1CE} /uninstall {48A78A1B-3884-4356-998D-84FD6AAD0D85}
-->msiexec /package {90120000-00A1-040C-0000-0000000FF1CE} /uninstall {3FC4C935-9B68-483E-9B50-BBBF98955486}
-->msiexec /package {90120000-00BA-040C-0000-0000000FF1CE} /uninstall {3FC4C935-9B68-483E-9B50-BBBF98955486}
7-Zip 9.20-->MsiExec.exe /I{23170F69-40C1-2701-0920-000001000000}
Adobe Flash Player 10 ActiveX-->MsiExec.exe /X{95468B00-C081-4B27-AC96-0A2A31359E60}
Adobe Flash Player 10 Plugin-->C:\Windows\system32\Macromed\Flash\FlashUtil10l_Plugin.exe -maintain plugin
Advanced System Protector-->"C:\Program Files\Systweak\Advanced System Protector\unins000.exe"
Altium Designer - Board Level Libraries-->MsiExec.exe /I{825DCEAE-BCCE-4699-84FD-F8C23008240B}
Altium Designer Summer 09-->MsiExec.exe /I{9BF3C220-0401-4945-A46F-63AFE6F4C114}
Apple Application Support-->MsiExec.exe /I{DAEAFD68-BB4A-4507-A241-C8804D2EA66D}
Apple Software Update-->MsiExec.exe /I{6956856F-B6B3-4BE0-BA0B-8F495BE32033}
Assistant de connexion Windows Live-->MsiExec.exe /I{DCE8CD14-FBF5-4464-B9A4-E18E473546C7}
CCS C Compiler Plug-In for MPLAB 6-->C:\PROGRA~1\PICC\UNWISE.EXE C:\PROGRA~1\PICC\INSTALL.LOG
CodeWarrior Development Studio for S12(X) V5.1-->MsiExec.exe /I{88AD76C5-D208-4A11-A1B3-ACCCA67A6F26}
Complément Microsoft Enregistrer en tant que PDF pour programmes Microsoft Office 2007-->MsiExec.exe /X{90120000-00B0-040C-0000-0000000FF1CE}
Conexant HDA D330 MDC V.92 Modem-->C:\Program Files\CONEXANT\CNXT_MODEM_HDAUDIO_VEN_14F1&DEV_2C06&SUBSYS_14F1000F\HXFSETUP.EXE -U -Idel000fz.inf
Conseiller de mise à niveau vers Windows 7-->MsiExec.exe /I{9D10CB57-B085-44c3-B435-2D193BA153F0}
Dell Resource CD-->MsiExec.exe /X{42929F0F-CE14-47AF-9FC7-FF297A603021}
Dell Touchpad-->rundll32.exe "C:\Program Files\Synaptics\SynTP\SynISDLL.dll",standAloneUninstall
Digital Camera-->RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\engine\6\INTEL3~1\ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{C1205500-2179-11D7-B0B9-0000E24D4B29}\setup.exe"
Firebird SQL Server - MAGIX Edition-->MsiExec.exe /X{34EB6245-C8D0-4D8A-B8D8-EEBFF7A91485}
Foxit Reader-->C:\Program Files\Foxit Software\Foxit Reader\Uninstall.exe
GoldWave v5.23-->"C:\Program Files\GoldWave\unstall.exe" "GoldWave v5.23" "C:\Program Files\GoldWave\unstall.log"
Google Update Helper-->MsiExec.exe /I{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}
Google Earth-->MsiExec.exe /X{6DB7AD00-F781-11DF-9EEF-001279CD8240}
HDL Works HDL Design Entry 7.3 Revision 5-->RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\engine\6\INTEL3~1\ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{86484217-03DE-4D87-B8F0-FEB2446F1112}\setup.exe" remove
HE-ARC Cisco Systems VPN Client 5.0.07.0290-->MsiExec.exe /X{B0BF7057-6869-4E4B-920C-EA2A58DA07F0}
HI-TECH C Compiler for the PIC10/12/16 MCUs V9.80PL0-->"C:\Program Files\HI-TECH Software\PICC\9.80\resources\setup.exe" --remove
Installation Windows Live-->C:\Program Files\Windows Live\Installer\wlarp.exe
Installation Windows Live-->MsiExec.exe /I{133742BA-6F46-4D3E-85AF-78631D9AD8B8}
Intel PROSet Wireless-->Intel PROSet Wireless
Java(TM) 6 Update 23-->MsiExec.exe /X{26A24AE4-039D-4CA4-87B4-2F83216023FF}
K-Lite Mega Codec Pack 6.6.0-->"C:\Program Files\K-Lite Codec Pack\unins000.exe"
LiveUpdate 3.3 (Symantec Corporation)-->"C:\Program Files\Symantec\LiveUpdate\LSETUP.EXE" /U
Logger Pro 3.8.2-->C:\Program Files\InstallShield Installation Information\{FD634AB3-F5D7-4C2B-909E-2EF426444F65}\setup.exe -runfromtemp -l0x0409
Logiciel Intel(R) PROSet/Wireless WiFi-->MsiExec.exe /I{72EEB695-388B-4835-8EA6-0C04545B06B9}
Logiciels National Instruments-->"C:\Program Files\National Instruments\Shared\NIUninstaller\uninst.exe"
Ma-Config.com-->MsiExec.exe /X{96EB95A2-5245-4EA2-B6EA-B8BA2FBF64C4}
MacX HD Video Converter Pro For Windows 3.10.2-->"C:\Program Files\Digiarty\MacX_HD_Video_Converter_Pro_For_Windows\unins000.exe"
MAGIX 3D Maker (embeded)-->C:\Program Files\MAGIX\Common\3D_Maker_embeded\unwise.exe
MAGIX Screenshare-->C:\Program Files\MAGIX\PCVisit\unwise.exe
MAGIX Speed burnR-->C:\Program Files\MAGIX\Speed2_burnR_mxcdr\unwise.exe
MAGIX Video deluxe 16 Plus Version à télécharger 9.0.0.55 (F)-->C:\Program Files\MAGIX\Video_deluxe_16_Plus_Version à télécharger\unwise.exe
Malwarebytes' Anti-Malware-->"C:\Program Files\Malwarebytes' Anti-Malware\unins000.exe"
MATLAB R2010b-->C:\Program Files\MATLAB\R2010b\uninstall\bin\win32\uninstall.exe C:\Program Files\MATLAB\R2010b
Media Go-->MsiExec.exe /X{C6AC04F5-5916-4A02-BC36-AF5BC0A3CBD4}
Messenger Plus! Live-->"C:\Program Files\Messenger Plus! Live\Uninstall.exe"
Microsoft Choice Guard-->MsiExec.exe /X{F0E12BBA-AD66-4022-A453-A1C8A0C4D570}
Microsoft Firewall Client-->MsiExec.exe /I{199B7F78-69B7-47C5-8D4B-A3ED1391FB6B}
Microsoft Office 2007 Service Pack 2 (SP2)-->msiexec /package {90120000-0015-040C-0000-0000000FF1CE} /uninstall {AE187E0D-EBA5-4EE1-A397-BF1A577CB24C}
Microsoft Office 2007 Service Pack 2 (SP2)-->msiexec /package {90120000-0016-040C-0000-0000000FF1CE} /uninstall {AE187E0D-EBA5-4EE1-A397-BF1A577CB24C}
Microsoft Office 2007 Service Pack 2 (SP2)-->msiexec /package {90120000-0018-040C-0000-0000000FF1CE} /uninstall {AE187E0D-EBA5-4EE1-A397-BF1A577CB24C}
Microsoft Office 2007 Service Pack 2 (SP2)-->msiexec /package {90120000-0019-040C-0000-0000000FF1CE} /uninstall {AE187E0D-EBA5-4EE1-A397-BF1A577CB24C}
Microsoft Office 2007 Service Pack 2 (SP2)-->msiexec /package {90120000-001A-040C-0000-0000000FF1CE} /uninstall {AE187E0D-EBA5-4EE1-A397-BF1A577CB24C}
Microsoft Office 2007 Service Pack 2 (SP2)-->msiexec /package {90120000-001B-040C-0000-0000000FF1CE} /uninstall {AE187E0D-EBA5-4EE1-A397-BF1A577CB24C}
Microsoft Office 2007 Service Pack 2 (SP2)-->msiexec /package {90120000-0030-0000-0000-0000000FF1CE} /uninstall {0B36C6D6-F5D8-4EAF-BF94-4376A230AD5B}
Microsoft Office 2007 Service Pack 2 (SP2)-->msiexec /package {90120000-0044-040C-0000-0000000FF1CE} /uninstall {AE187E0D-EBA5-4EE1-A397-BF1A577CB24C}
Microsoft Office 2007 Service Pack 2 (SP2)-->msiexec /package {90120000-006E-040C-0000-0000000FF1CE} /uninstall {B165D3C2-40AE-4D39-86F7-E5C87C4264C0}
Microsoft Office 2007 Service Pack 2 (SP2)-->msiexec /package {90120000-006E-040C-0000-0000000FF1CE} /uninstall {B165D3C2-40AE-4D39-86F7-E5C87C4264C0}
Microsoft Office 2007 Service Pack 2 (SP2)-->msiexec /package {90120000-00A1-040C-0000-0000000FF1CE} /uninstall {AE187E0D-EBA5-4EE1-A397-BF1A577CB24C}
Microsoft Office 2007 Service Pack 2 (SP2)-->msiexec /package {90120000-00BA-040C-0000-0000000FF1CE} /uninstall {AE187E0D-EBA5-4EE1-A397-BF1A577CB24C}
Microsoft Office Access MUI (French) 2007-->MsiExec.exe /X{90120000-0015-040C-0000-0000000FF1CE}
Microsoft Office Enterprise 2007-->"C:\Program Files\Common Files\Microsoft Shared\OFFICE12\Office Setup Controller\setup.exe" /uninstall ENTERPRISE /dll OSETUP.DLL
Microsoft Office Enterprise 2007-->MsiExec.exe /X{90120000-0030-0000-0000-0000000FF1CE}
Microsoft Office Excel MUI (French) 2007-->MsiExec.exe /X{90120000-0016-040C-0000-0000000FF1CE}
Microsoft Office Groove MUI (French) 2007-->MsiExec.exe /X{90120000-00BA-040C-0000-0000000FF1CE}
Microsoft Office InfoPath MUI (French) 2007-->MsiExec.exe /X{90120000-0
25 Janvier 2011 15:34:18

Je continue le monologue ;)  Je suis bien conscient qu'on a pas tous congé aujourd'hui :D 

Par la suite, j'ai donc lancé ComboFix. Depuis ca, mon centre de maintenance ne se désactive plus :)  Semblerais donc que le problème sois résolu.. Je poste cependant le log, si certains ont le temps d'y jeter un coup d'oeil, et de me dire si tout semble ok, ou s'il reste encore quelque chose à faire?

Selon le gestionnaire des taches, avec l'ordi au repos, l'uc n'est utilisé qu'entre 0 et 2%, ce qui me fait penser qu'il ne dois plus rester grand chose qui tourne sans que je le sache!

Bref, voici le log:

ComboFix 11-01-24.02 - nicoletv 25/01/2011 15:03:14.1.2 - x86
Microsoft Windows 7 Édition Intégrale 6.1.7600.0.1252.33.1036.18.3070.2086 [GMT 1:00]
Lancé depuis: c:\users\nicoletv.EISI\Downloads\ComboFix.exe
AV: Symantec Endpoint Protection *Enabled/Updated* {88C95A36-8C3B-2F2C-1B8B-30FCCFDC4855}
SP: Symantec Endpoint Protection *Enabled/Updated* {33A8BBD2-AA01-20A2-213B-0B8EB45B02E8}
SP: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
* Un nouveau point de restauration a été créé
.

(((((((((((((((((((((((((((((((((((( Autres suppressions ))))))))))))))))))))))))))))))))))))))))))))))))
.

C:\Install.exe
C:\Microsoft
c:\program files\SBP
c:\program files\SBP\help\about.html
c:\program files\SBP\help\activeProject.html
c:\program files\SBP\help\addFile.html
c:\program files\SBP\help\cascadeSubWindow.html
c:\program files\SBP\help\CBZoom.html
c:\program files\SBP\help\closeProject.html
c:\program files\SBP\help\delFile.html
c:\program files\SBP\help\delProject.html
c:\program files\SBP\help\editCopy.html
c:\program files\SBP\help\editCut.html
c:\program files\SBP\help\editDel.html
c:\program files\SBP\help\editPaste.html
c:\program files\SBP\help\editRedo.html
c:\program files\SBP\help\editUndo.html
c:\program files\SBP\help\editZoomIn.html
c:\program files\SBP\help\editZoomOut.html
c:\program files\SBP\help\exit.html
c:\program files\SBP\help\fileClose.html
c:\program files\SBP\help\fileNew.html
c:\program files\SBP\help\fileOpen.html
c:\program files\SBP\help\filePrint.html
c:\program files\SBP\help\fileSave.html
c:\program files\SBP\help\fileSaveAs.html
c:\program files\SBP\help\help.html
c:\program files\SBP\help\nextSubWindow.html
c:\program files\SBP\help\previousSubWindow.html
c:\program files\SBP\help\projectNew.html
c:\program files\SBP\help\projectOpen.html
c:\program files\SBP\help\removeFile.html
c:\program files\SBP\help\structoItems.html
c:\program files\SBP\help\tileSubWindow.html
c:\program files\SBP\imageformats\qjpeg4.dll
c:\program files\SBP\mingwm10.dll
c:\program files\SBP\QtCore4.dll
c:\program files\SBP\QtGui4.dll
c:\program files\SBP\QtNetwork4.dll
c:\program files\SBP\QtSvg4.dll
c:\program files\SBP\QtXml4.dll
c:\program files\SBP\SBP.exe
c:\program files\SBP\uninstall.exe
c:\programdata\hpeB4EB.dll
c:\windows\system32\zlibwapi.dll
c:\windows\WINPROD.DLL

.
((((((((((((((((((((((((((((( Fichiers créés du 2010-12-25 au 2011-01-25 ))))))))))))))))))))))))))))))))))))
.

2011-01-25 14:20 . 2011-01-25 14:20 -------- d-----w- c:\users\nicoletv\AppData\Local\temp
2011-01-25 14:20 . 2011-01-25 14:20 -------- d-----w- c:\users\nicoletv.EISI\AppData\Local\temp
2011-01-25 14:20 . 2011-01-25 14:20 -------- d-----w- c:\users\Default\AppData\Local\temp
2011-01-25 11:55 . 2011-01-25 13:50 -------- d-----w- c:\program files\trend micro
2011-01-25 11:55 . 2011-01-25 13:50 -------- d-----w- C:\rsit
2011-01-25 11:07 . 2011-01-25 11:07 -------- d-----w- c:\users\nicoletv.EISI\AppData\Roaming\Malwarebytes
2011-01-25 11:07 . 2010-12-20 17:09 38224 ----a-w- c:\windows\system32\drivers\mbamswissarmy.sys
2011-01-25 11:07 . 2011-01-25 11:07 -------- d-----w- c:\programdata\Malwarebytes
2011-01-25 11:07 . 2011-01-25 11:07 -------- d-----w- c:\program files\Malwarebytes' Anti-Malware
2011-01-25 11:07 . 2010-12-20 17:08 20952 ----a-w- c:\windows\system32\drivers\mbam.sys
2011-01-25 09:36 . 2011-01-25 09:36 -------- d-----w- c:\users\nicoletv.EISI\AppData\Roaming\Systweak
2011-01-25 09:36 . 2011-01-25 09:36 -------- d-----w- c:\programdata\Systweak
2011-01-25 09:36 . 2011-01-25 09:36 -------- d-----w- c:\program files\Systweak
2011-01-25 09:36 . 2008-11-10 18:49 17136 ----a-w- c:\windows\system32\sasnative32.exe
2011-01-24 21:50 . 2011-01-24 21:50 79360 --sha-r- c:\windows\system32\cryptspx.dll
2011-01-24 18:58 . 2011-01-24 18:58 -------- d-----w- c:\users\nicoletv.EISI\AppData\Local\Dragonshorn_Studios
2011-01-24 18:57 . 2011-01-24 18:57 -------- d-----w- c:\program files\Dragonshorn Studios
2011-01-22 15:28 . 2011-01-22 15:28 -------- d-----w- c:\program files\PICC
2011-01-17 19:15 . 1999-01-25 13:18 67376 ----a-w- c:\windows\system32\Sysinfo.ocx
2011-01-17 19:15 . 1999-05-06 23:00 244232 ----a-w- c:\windows\system32\Msflxgrd.ocx
2011-01-17 19:15 . 1998-06-23 23:00 164144 ----a-w- c:\windows\system32\Comct232.ocx
2011-01-17 19:15 . 2000-10-06 16:10 45056 ----a-w- c:\windows\system32\svufile.exe
2011-01-17 19:15 . 2011-01-17 19:15 -------- d-----w- c:\program files\SystemView
2011-01-17 19:01 . 2011-01-17 19:01 691696 ----a-w- c:\windows\system32\drivers\sptd.sys
2011-01-17 19:01 . 2011-01-17 19:02 -------- d-----w- c:\program files\DAEMON Tools Lite
2011-01-17 19:01 . 2011-01-17 20:39 -------- d-----w- c:\users\nicoletv.EISI\AppData\Roaming\DAEMON Tools Lite
2011-01-17 19:01 . 2011-01-17 19:01 -------- d-----w- c:\programdata\DAEMON Tools Lite
2011-01-17 13:39 . 2011-01-19 14:57 -------- d-----w- c:\windows\system32\Shared Memory
2011-01-14 08:30 . 2011-01-14 08:30 639296 ----a-w- c:\programdata\Microsoft\eHome\Packages\MCESpotlight\MCESpotlight-2\SpotlightResources.dll
2011-01-10 13:27 . 2011-01-10 13:27 -------- d-----w- c:\users\nicoletv.EISI\TOSHIBA
2011-01-09 18:57 . 2011-01-09 18:57 -------- d-----w- c:\users\nicoletv.EISI\AppData\Local\Sony
2011-01-09 18:57 . 2011-01-09 18:57 -------- d-----w- c:\users\nicoletv.EISI\Podcasts
2011-01-09 18:56 . 2011-01-09 18:56 -------- d-----w- c:\program files\Common Files\Sony Shared
2011-01-09 18:55 . 2011-01-09 18:56 -------- d-----w- c:\program files\Sony
2011-01-09 18:55 . 2011-01-09 18:55 -------- d-----w- c:\programdata\Sony Corporation
2011-01-09 18:55 . 2011-01-09 18:57 -------- d-----w- c:\users\nicoletv.EISI\AppData\Roaming\Sony
2011-01-09 18:55 . 2011-01-09 18:55 -------- d-----w- c:\program files\Sony Media Go Install
2011-01-09 10:43 . 2011-01-21 08:49 2724120 ----a-w- c:\programdata\Microsoft\eHome\Packages\MCEClientUX\UpdateableMarkup-2\markup.dll
2011-01-09 10:43 . 2011-01-21 08:49 42776 ----a-w- c:\programdata\Microsoft\eHome\Packages\MCEClientUX\dSM-2\StartResources.dll
2011-01-06 14:06 . 2011-01-06 14:06 -------- d-----w- c:\windows\Setup533
2011-01-06 14:06 . 2002-10-21 10:37 515803 ----a-w- c:\windows\system32\drivers\Ca533av.sys
2011-01-06 14:06 . 2002-07-30 18:40 16384 ----a-w- c:\windows\system32\Dext533.ax
2011-01-06 14:06 . 2002-07-25 10:19 10986 ----a-w- c:\windows\system32\drivers\Bulk533.sys
2011-01-06 14:06 . 2002-05-02 16:26 65536 ----a-w- c:\windows\amcap533.exe
2011-01-06 14:06 . 2002-01-19 14:33 131072 ----a-w- c:\windows\system32\SP5X_32.DLL
2011-01-06 14:06 . 2000-04-12 11:25 118784 ----a-w- c:\windows\ShowBmp.exe
2011-01-06 14:05 . 2011-01-06 14:05 -------- d-----w- c:\program files\SPCA1528
2011-01-06 14:05 . 2008-07-28 09:52 513408 ----a-w- c:\windows\system32\drivers\Ca1528av.sys
2011-01-06 14:05 . 2008-06-27 15:41 11648 ----a-w- c:\windows\system32\drivers\Bulk1528.sys
2011-01-06 14:05 . 2002-07-30 18:40 16384 ----a-w- c:\windows\system32\Dext1528.ax
2011-01-06 14:05 . 2002-01-19 14:33 131072 ----a-w- c:\windows\system\SP5X_32.DLL
2011-01-05 17:33 . 2011-01-05 17:33 -------- d-----w- c:\users\nicoletv.EISI\AppData\Local\gMapMaker
2011-01-05 15:43 . 2011-01-05 15:43 -------- d-----w- c:\program files\gMapMaker
2011-01-04 12:49 . 2011-01-14 08:30 2724120 ----a-w- c:\programdata\Microsoft\eHome\Packages\MCEClientUX\UpdateableMarkup\markup.dll
2011-01-04 12:49 . 2011-01-14 08:30 42776 ----a-w- c:\programdata\Microsoft\eHome\Packages\MCEClientUX\dSM\StartResources.dll
2011-01-04 12:48 . 2011-01-21 08:49 639296 ----a-w- c:\programdata\Microsoft\eHome\Packages\MCESpotlight\MCESpotlight\SpotlightResources.dll
2011-01-01 18:02 . 2011-01-24 21:40 -------- d-----w- C:\OutputFolder
2010-12-28 20:22 . 2010-12-28 20:22 -------- d-----w- c:\users\nicoletv.EISI\AppData\Roaming\Digiarty
2010-12-28 20:22 . 2010-12-28 20:22 -------- d-----w- c:\program files\Digiarty

.
(((((((((((((((((((((((((((((((((( Compte-rendu de Find3M ))))))))))))))))))))))))))))))))))))))))))))))))
.
2010-12-20 13:01 . 2010-12-20 13:01 40960 ----a-r- c:\users\nicoletv.EISI\AppData\Roaming\Microsoft\Installer\{88AD76C5-D208-4A11-A1B3-ACCCA67A6F26}\Updater.exe_FEF40581F5694A49B7DA66738F7AC16B.exe
2010-12-20 13:01 . 2010-12-20 13:01 40960 ----a-r- c:\users\nicoletv.EISI\AppData\Roaming\Microsoft\Installer\{88AD76C5-D208-4A11-A1B3-ACCCA67A6F26}\NewShortcut1_D434C24F80B2461C8F554E74F9F19D87.exe
2010-12-20 10:27 . 2010-12-20 10:27 472808 ----a-w- c:\windows\system32\deployJava1.dll
2010-12-01 10:11 . 2010-12-01 10:11 124976 ----a-w- c:\windows\system32\drivers\SYMEVENT.SYS
2010-11-30 18:09 . 2010-11-30 18:09 45056 ----a-r- c:\users\nicoletv\AppData\Roaming\Microsoft\Installer\{42929F0F-CE14-47AF-9FC7-FF297A603021}\NewShortcut1_42929F0FCE1447AF9FC7FF297A603021_1.exe
2010-11-24 08:00 . 2010-12-03 09:55 108032 ----a-w- c:\windows\system32\ff_vfw.dll
2010-11-16 11:01 . 2010-11-30 18:03 6273872 ----a-w- c:\programdata\Microsoft\Windows Defender\Definition Updates\{71E03801-13FB-4DE2-A0F3-D600F683EB8D}\mpengine.dll
2010-11-04 05:52 . 2010-12-20 10:20 978944 ----a-w- c:\windows\system32\wininet.dll
2010-11-04 05:48 . 2010-12-20 10:20 44544 ----a-w- c:\windows\system32\licmgr10.dll
2010-11-04 04:41 . 2010-12-20 10:20 386048 ----a-w- c:\windows\system32\html.iec
2010-11-04 04:08 . 2010-12-20 10:20 1638912 ----a-w- c:\windows\system32\mshtml.tlb
2010-11-03 19:08 . 2010-12-03 09:55 237568 ----a-w- c:\windows\system32\yv12vfw.dll
2010-11-03 13:31 . 2010-11-03 13:31 1036288 ----a-w- c:\windows\system32\phidget21.dll
2010-11-02 04:41 . 2010-12-20 10:20 351232 ----a-w- c:\windows\system32\wmicmiplugin.dll
2010-11-02 04:40 . 2010-12-20 10:20 496128 ----a-w- c:\windows\system32\taskschd.dll
2010-11-02 04:40 . 2010-12-20 10:20 305152 ----a-w- c:\windows\system32\taskcomp.dll
2010-11-02 04:39 . 2010-12-20 10:20 749056 ----a-w- c:\windows\system32\schedsvc.dll
2010-11-02 04:34 . 2010-12-20 10:20 192000 ----a-w- c:\windows\system32\taskeng.exe
2010-11-02 04:34 . 2010-12-20 10:20 179712 ----a-w- c:\windows\system32\schtasks.exe
2007-02-08 09:48 . 2007-02-08 09:48 133920 ----a-w- c:\program files\internet explorer\plugins\LV82ActiveXControl.dll
2007-07-24 17:03 . 2007-07-24 17:03 118784 ----a-w- c:\program files\internet explorer\plugins\LV85ActiveXControl.dll
2008-12-10 13:50 . 2008-12-10 13:50 118784 ----a-w- c:\program files\internet explorer\plugins\LV86ActiveXControl.dll
2010-01-08 21:09 . 2010-01-08 21:09 158720 ----a-w- c:\program files\internet explorer\plugins\LV90ActiveXControl.dll
.

((((((((((((((((((((((((((((((((( Points de chargement Reg ))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Note* les éléments vides & les éléments initiaux légitimes ne sont pas listés
REGEDIT4

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"msnmsgr"="c:\program files\Windows Live\Messenger\msnmsgr.exe" [2010-04-16 3872080]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"NvCplDaemon"="c:\windows\system32\NvCpl.dll" [2008-05-07 13535776]
"NvMediaCenter"="c:\windows\system32\NvMcTray.dll" [2008-05-07 92704]
"NVHotkey"="c:\windows\system32\nvHotkey.dll" [2008-05-07 92704]
"ccApp"="c:\program files\Common Files\Symantec Shared\ccApp.exe" [2009-12-22 115560]
"SynTPEnh"="c:\program files\Synaptics\SynTP\SynTPEnh.exe" [2007-10-26 1029416]
"TrayServer"="c:\program files\MAGIX\Video_deluxe_16_Plus_Version à télécharger\TrayServer.exe" [2008-09-01 90112]
"QuickTime Task"="c:\program files\QuickTime\QTTask.exe" [2010-09-08 421888]
"S7UB Start"="c:\program files\Common Files\Siemens\S7ubtoox\s7ubtstx.exe" [2010-06-03 102453]
"UVS10 Preload"="c:\program files\Ulead Systems\Ulead VideoStudio SE DVD\uvPL.exe" [2006-08-09 36864]
"SunJavaUpdateSched"="c:\program files\Common Files\Java\Java Update\jusched.exe" [2010-05-14 248552]
"Malwarebytes' Anti-Malware (reboot)"="c:\program files\Malwarebytes' Anti-Malware\mbam.exe" [2010-12-20 963976]

c:\programdata\Microsoft\Windows\Start Menu\Programs\Startup\
Microsoft Firewall Client Management.lnk - c:\program files\Microsoft Firewall Client 2004\FwcMgmt.exe [2006-12-9 117568]
QuickSet.lnk - c:\program files\Dell\QuickSet\quickset.exe [2008-2-22 1193240]

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"ConsentPromptBehaviorAdmin"= 5 (0x5)
"ConsentPromptBehaviorUser"= 3 (0x3)
"EnableUIADesktopToggle"= 0 (0x0)
"DefaultLogonDomain"= EISI
"EnableLinkedConnections"= 1 (0x1)

[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\policies\explorer]
"NoThumbnailCache"= 1 (0x1)

[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\drivers32]
"mixer"=wdmaud.drv

[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\session manager]
BootExecute REG_MULTI_SZ autocheck autochk *\0sasnative32

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\ccEvtMgr]
@="Service"

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\ccSetMgr]
@="Service"

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Symantec Antivirus]
@="Service"

[HKEY_LOCAL_MACHINE\software\microsoft\security center\Monitoring\SymantecAntiVirus]
"DisableMonitoring"=dword:00000001

R2 Ca1528av;SPCA1528 Video Camera Service;c:\windows\system32\Drivers\Ca1528av.sys [2008-07-28 513408]
R2 gupdate;Service Google Update (gupdate);c:\program files\Google\Update\GoogleUpdate.exe [2010-12-01 136176]
R2 OMSI download service;Sony Ericsson OMSI download service;c:\program files\Sony Ericsson\Sony Ericsson PC Suite\SupServ.exe [2009-04-30 90112]
R3 BthAvrcp;Profil AVRCP Bluetooth;c:\windows\system32\DRIVERS\BthAvrcp.sys [2009-08-13 22528]
R3 Bulk1528;SPCA1528 Still Camera Service;c:\windows\system32\Drivers\Bulk1528.sys [2008-06-27 11648]
R3 FirebirdServerMAGIXInstance;Firebird Server - MAGIX Instance;c:\program files\Common Files\MAGIX Services\Database\bin\fbserver.exe [2008-08-07 3276800]
R3 maconfservice;Ma-Config Service;c:\program files\ma-config.com\maconfservice.exe [2010-09-12 251248]
R3 NETwLv32; Pilote de carte de la série Intel(R) Wireless WiFi Link 5000 pour Windows Vista 32 bits ;c:\windows\system32\DRIVERS\NETwLv32.sys [2010-10-07 6639616]
R3 nipalfwedl;nipalfwedl;c:\windows\system32\drivers\nipalfwedl.sys [2009-10-30 11904]
R3 nipalusbedl;nipalusbedl;c:\windows\system32\drivers\nipalusbedl.sys [2009-10-30 11896]
R3 PhidgetWebservice21;Phidget Webservice 21;c:\program files\Phidgets\PhidgetWindowsService21.exe [2010-11-03 24576]
R3 s0016bus;Sony Ericsson Device 0016 driver (WDM);c:\windows\system32\DRIVERS\s0016bus.sys [2008-05-16 89256]
R3 s0016mdfl;Sony Ericsson Device 0016 USB WMC Modem Filter;c:\windows\system32\DRIVERS\s0016mdfl.sys [2008-05-16 15016]
R3 s0016mdm;Sony Ericsson Device 0016 USB WMC Modem Driver;c:\windows\system32\DRIVERS\s0016mdm.sys [2008-05-16 120744]
R3 s0016mgmt;Sony Ericsson Device 0016 USB WMC Device Management Drivers (WDM);c:\windows\system32\DRIVERS\s0016mgmt.sys [2008-05-16 114216]
R3 s0016nd5;Sony Ericsson Device 0016 USB Ethernet Emulation SEMC0016 (NDIS);c:\windows\system32\DRIVERS\s0016nd5.sys [2008-05-16 25512]
R3 s0016obex;Sony Ericsson Device 0016 USB WMC OBEX Interface;c:\windows\system32\DRIVERS\s0016obex.sys [2008-05-16 110632]
R3 s0016unic;Sony Ericsson Device 0016 USB Ethernet Emulation SEMC0016 (WDM);c:\windows\system32\DRIVERS\s0016unic.sys [2008-05-16 115752]
R3 s1029bus;Sony Ericsson Device 1029 driver (WDM);c:\windows\system32\DRIVERS\s1029bus.sys [2009-05-25 90280]
R3 s1029mdfl;Sony Ericsson Device 1029 USB WMC Modem Filter;c:\windows\system32\DRIVERS\s1029mdfl.sys [2009-05-25 15016]
R3 s1029mdm;Sony Ericsson Device 1029 USB WMC Modem Driver;c:\windows\system32\DRIVERS\s1029mdm.sys [2009-05-25 122280]
R3 s1029mgmt;Sony Ericsson Device 1029 USB WMC Device Management Drivers (WDM);c:\windows\system32\DRIVERS\s1029mgmt.sys [2009-05-25 115880]
R3 s1029nd5;Sony Ericsson Device 1029 USB Ethernet Emulation (NDIS);c:\windows\system32\DRIVERS\s1029nd5.sys [2009-05-25 26024]
R3 s1029obex;Sony Ericsson Device 1029 USB WMC OBEX Interface;c:\windows\system32\DRIVERS\s1029obex.sys [2009-05-25 111912]
R3 s1029unic;Sony Ericsson Device 1029 USB Ethernet Emulation (WDM);c:\windows\system32\DRIVERS\s1029unic.sys [2009-05-25 116904]
R3 SMIGrabber3C;SMI Grabber Device Tuner Filter 3C;c:\windows\system32\Drivers\SmiUsbGrabber3C.sys [2009-05-14 799488]
R3 SrvHsfHDA;SrvHsfHDA;c:\windows\system32\DRIVERS\VSTAZL3.SYS [2009-07-13 207360]
R3 SrvHsfV92;SrvHsfV92;c:\windows\system32\DRIVERS\VSTDPV3.SYS [2009-07-13 980992]
R3 SrvHsfWinac;SrvHsfWinac;c:\windows\system32\DRIVERS\VSTCNXT3.SYS [2009-07-13 661504]
R3 WatAdminSvc;Service Windows Activation Technologies;c:\windows\system32\Wat\WatAdminSvc.exe [2010-12-01 1343400]
S0 nipbcfk;National Instruments Class Upper Filter Driver;c:\windows\System32\drivers\nipbcfk.sys [2009-07-07 15448]
S0 sptd;sptd;c:\windows\System32\Drivers\sptd.sys [2011-01-17 691696]
S1 dpmconv;SIMATIC NET DP Driver;c:\windows\system32\DRIVERS\dpmconv32.sys [2010-04-28 288256]
S1 DPMTRCDD;SIMATIC NET Softnet Trace Driver;c:\windows\system32\DRIVERS\DPMTRCDD32.sys [2010-03-22 72248]
S1 vsnl2ada;SIMATIC NET FDL Driver;c:\windows\system32\DRIVERS\vsnl2ada32.sys [2010-03-22 98944]
S2 almservice;Automation License Manager Service;c:\program files\Common Files\Siemens\sws\almsrv\almsrvx.exe [2010-05-06 1102848]
S2 BthFilterHelper;Bluetooth Feature Support;c:\program files\CSR\Vista Profile Pack\BthFilterHelper.exe [2006-11-07 127488]
S2 Fabs;FABS - Helping agent for MAGIX media database;c:\program files\Common Files\MAGIX Services\Database\bin\FABS.exe [2009-08-27 1253376]
S2 FwcAgent;Firewall Client Agent;c:\program files\Microsoft Firewall Client 2004\FwcAgent.exe [2006-12-09 128832]
S2 PEDRV;P&E Microcomputer System PCI Driver.; [x]
S2 s7hspsvx;S7 HSP Service;c:\program files\Siemens\Step7\s7bin\s7hspsvx.exe [2010-06-02 61493]
S2 s7oiehsx;SIMATIC IEPG Help Service;c:\program files\Common Files\Siemens\S7IEPG\s7oiehsx.exe [2010-06-07 1576072]
S2 S7opcsrtx;PROFINET IO RT-Protocol (LLDP);c:\windows\system32\DRIVERS\s7opcsrtx.sys [2010-06-07 31744]
S2 S7otranx32;SIMATIC Transport;c:\windows\system32\Drivers\S7otranx32.sys [2010-03-18 521216]
S2 s7snsrtx;PROFINET IO RT-Protocol V1.0;c:\windows\system32\DRIVERS\s7snsrtx.sys [2009-02-24 73088]
S2 S7TraceServiceX;S7TraceServiceX;c:\program files\Common Files\Siemens\Automation\TraceEngine\bin\S7TraceServiceX.exe [2010-06-07 240776]
S2 VICHW11;P&E BDM Cable Driver II; [x]
S3 BCASPROT;Advanced System Protector;c:\program files\Systweak\Advanced System Protector\sasprot32.sys [2008-08-05 6656]
S3 BTHFILT;Filtre de commande Bluetooth;c:\windows\system32\DRIVERS\BthFilt.sys [2006-11-06 13824]
S3 EraserUtilRebootDrv;EraserUtilRebootDrv;c:\program files\Common Files\Symantec Shared\EENGINE\EraserUtilRebootDrv.sys [2010-12-01 102448]
S3 netw5v32;Intel(R) Wireless WiFi Link 5000 Series Adapter Driver for Windows Vista 32 Bit;c:\windows\system32\DRIVERS\netw5v32.sys [2009-05-28 4233728]
S3 S7odpx2x32;SIMATIC Knotentaufe;c:\windows\system32\Drivers\S7odpx2x32.sys [2010-03-18 87552]

.
Contenu du dossier 'Tâches planifiées'

2011-01-25 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job
- c:\program files\Google\Update\GoogleUpdate.exe [2010-12-01 17:24]

2011-01-25 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job
- c:\program files\Google\Update\GoogleUpdate.exe [2010-12-01 17:24]
.
.
------- Examen supplémentaire -------
.
uInternet Settings,ProxyServer = LO-EIN-TESLA:8080
uInternet Settings,ProxyOverride = <local>
IE: E&xporter vers Microsoft Excel - c:\progra~1\MICROS~4\Office12\EXCEL.EXE/3000
LSP: c:\program files\Microsoft Firewall Client 2004\FwcWsp.dll
FF - ProfilePath - c:\users\nicoletv.EISI\AppData\Roaming\Mozilla\Firefox\Profiles\wyxnlqul.default\
FF - prefs.js: browser.startup.homepage - hxxp://www.bluewin.ch/
FF - prefs.js: network.proxy.ftp - proxy.he-arc.ch
FF - prefs.js: network.proxy.ftp_port - 8080
FF - prefs.js: network.proxy.gopher - proxy.he-arc.ch
FF - prefs.js: network.proxy.gopher_port - 8080
FF - prefs.js: network.proxy.http - proxy.he-arc.ch
FF - prefs.js: network.proxy.http_port - 8080
FF - prefs.js: network.proxy.socks - proxy.he-arc.ch
FF - prefs.js: network.proxy.socks_port - 8080
FF - prefs.js: network.proxy.ssl - proxy.he-arc.ch
FF - prefs.js: network.proxy.ssl_port - 8080
FF - prefs.js: network.proxy.type - 0
FF - Ext: Default: {972ce4c6-7e08-4474-a285-3208198ce6fd} - c:\program files\Mozilla Firefox\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd}
FF - Ext: Java Console: {CAFEEFAC-0016-0000-0023-ABCDEFFEDCBA} - c:\program files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0023-ABCDEFFEDCBA}
FF - Ext: Personas: personas@christopher.beard - %profile%\extensions\personas@christopher.beard
FF - Ext: Adblock Plus: {d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d} - %profile%\extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}
.
- - - - ORPHELINS SUPPRIMES - - - -

WebBrowser-{18C2D815-3A16-4493-9004-77949214A70E} - (no file)
HKCU-Run-Polar Sync - (no file)
HKLM-Run-SigmatelSysTrayApp - %ProgramFiles%\SigmaTel\C-Major Audio\WDM\sttray.exe
SafeBoot-Symantec Antvirus
MSConfigStartUp-CE8SIIFGSU - c:\users\NICOLE~1.EIS\AppData\Local\Temp\Xtl.exe
AddRemove-SBP - c:\program files\SBP\uninstall.exe


.
--------------------- CLES DE REGISTRE BLOQUEES ---------------------

[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0000\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000

[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0001\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000

[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0002\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000

[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0003\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000

[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0004\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000

[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0005\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000

[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0006\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000

[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0007\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000

[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0008\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000

[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\PCW\Security]
@Denied: (Full) (Everyone)
.
Heure de fin: 2011-01-25 15:22:22
ComboFix-quarantined-files.txt 2011-01-25 14:22

Avant-CF: 91 356 934 144 octets libres
Après-CF: 93 928 939 520 octets libres

- - End Of File - - 7819A53EB4394CDCF0D58B3F05BE3DAF


Moi qui voulais garder le programme SBP installé, ben zut! C'est un programme qui a été développé dans mon école, je me demande quand même pourquoi il est détecté comme malware...




Merci à celui qui aura pris un peu de temps pour lire jusqu'ici! Et d'éventuellement me dire s'il reste quelque chose a faire ;) 
Tom's guide dans le monde
  • Allemagne
  • Italie
  • Irlande
  • Royaume Uni
  • Etats Unis
Suivre Tom's Guide
Inscrivez-vous à la Newsletter
  • ajouter à twitter
  • ajouter à facebook
  • ajouter un flux RSS