> Tous les forums > Forum Sécurité
 Est ce que ce rapport vous semble correct ?
Ajouter un message à la discussion
Page : [1] 
Page 1 sur 1
kolkoz
  Posté le 14/12/2012 @ 02:00 
Aller en bas de la page 
Nouvel astucien

Bonjour,

J'ai formater mon pc y'a pas très longtemps à cause d'un virus qui bloquait ma session de windows.. Mon pc ne semble plus être infecter.. pour en avoir le coeur net j'ai fais un rapport(22h) mais je n'y comprends pas grand chose :)

Y'a t'il quelqu'un qui pourrai m'éclairer ?? :o

(==> Il est 2h00 et je viens de subir un gros freeze qui m'a obliger a reboot)


Logfile of random's system information tool 1.09 (written by random/random)
Run by Sk////// at 2012-12-13 22:10:14
Microsoft Windows 7 Professionnel Service Pack 1
System drive C: has 21 GB (36%) free of 57 GB
Total RAM: 8148 MB (71% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 22:10:20, on 13/12/2012
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Unable to get Internet Explorer version!
Boot mode: Normal

Running processes:
C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe
C:\Users\SkyTribe\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe
C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe
C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
C:\Users\SkyTribe\Desktop\RSIT.exe
C:\Program Files (x86)\trend micro\SkyTribe.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page =
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
F2 - REG:system.ini: UserInit=userinit.exe,
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O4 - HKLM\..\Run: [IAStorIcon] C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIconLaunch.exe "C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe" 60
O4 - HKLM\..\Run: [USB3MON] "C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe"
O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
O4 - HKCU\..\Run: [Skype] "C:\Program Files (x86)\Skype\Phone\Skype.exe" /minimized /regrun
O4 - HKCU\..\Run: [Spotify] "C:\Users\SkyTribe\AppData\Roaming\Spotify\Spotify.exe" /uri spotify:autostart
O4 - HKCU\..\Run: [Spotify Web Helper] "C:\Users\SkyTribe\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe"
O4 - HKCU\..\Run: [EPSON SX420W Series] C:\Windows\system32\spool\DRIVERS\x64\3\E_IATIGCE.EXE /FU "C:\Windows\TEMP\E_SE436.tmp" /EF "HKCU"
O4 - HKCU\..\Run: [DAEMON Tools Lite] "C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe" -autorun
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'SERVICE RÉSEAU')
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'SERVICE RÉSEAU')
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~2\COMMON~1\Skype\SKYPE4~1.DLL
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: @%SystemRoot%\system32\aelupsvc.dll,-1 (AeLookupSvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: @%systemroot%\system32\appidsvc.dll,-100 (AppIDSvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%systemroot%\system32\appinfo.dll,-100 (Appinfo) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @appmgmts.dll,-3250 (AppMgmt) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\audiosrv.dll,-204 (AudioEndpointBuilder) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\audiosrv.dll,-200 (AudioSrv) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\AxInstSV.dll,-103 (AxInstSV) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\bdesvc.dll,-100 (BDESVC) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\bfe.dll,-1001 (BFE) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\qmgr.dll,-1000 (BITS) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%systemroot%\system32\browser.dll,-100 (Browser) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\System32\bthserv.dll,-101 (bthserv) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\System32\certprop.dll,-11 (CertPropSvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\cryptsvc.dll,-1001 (CryptSvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%systemroot%\system32\cscsvc.dll,-200 (CscService) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @oleres.dll,-5012 (DcomLaunch) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\defragsvc.dll,-101 (defragsvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\dhcpcore.dll,-100 (Dhcp) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\System32\dnsapi.dll,-101 (Dnscache) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%systemroot%\system32\dot3svc.dll,-1102 (dot3svc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%systemroot%\system32\dps.dll,-500 (DPS) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%systemroot%\system32\eapsvc.dll,-1 (EapHost) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\ehome\ehrecvr.exe,-101 (ehRecvr) - Unknown owner - C:\Windows\ehome\ehRecvr.exe
O23 - Service: @%SystemRoot%\ehome\ehsched.exe,-101 (ehSched) - Unknown owner - C:\Windows\ehome\ehsched.exe
O23 - Service: @%SystemRoot%\system32\wevtsvc.dll,-200 (eventlog) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @comres.dll,-2450 (EventSystem) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
O23 - Service: @%systemroot%\system32\fdPHost.dll,-100 (fdPHost) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%systemroot%\system32\fdrespub.dll,-100 (FDResPub) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%systemroot%\system32\FntCache.dll,-100 (FontCache) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @gpapi.dll,-112 (gpsvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\System32\hidserv.dll,-101 (hidserv) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\kmsvc.dll,-6 (hkmsvc) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\System32\ListSvc.dll,-100 (HomeGroupListener) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\System32\provsvc.dll,-100 (HomeGroupProvider) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: Technologie de stockage Intel(R) Rapid (IAStorDataMgrSvc) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
O23 - Service: @%SystemRoot%\system32\ikeext.dll,-501 (IKEEXT) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: Intel(R) Capability Licensing Service Interface - Intel(R) Corporation - C:\Program Files\Intel\iCLS Client\HeciServer.exe
O23 - Service: @%systemroot%\system32\IPBusEnum.dll,-102 (IPBusEnum) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\iphlpsvc.dll,-500 (iphlpsvc) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: Intel(R) Dynamic Application Loader Host Interface Service (jhi_service) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @comres.dll,-2946 (KtmRm) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%systemroot%\system32\srvsvc.dll,-100 (LanmanServer) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%systemroot%\system32\wkssvc.dll,-100 (LanmanWorkstation) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\lltdres.dll,-1 (lltdsvc) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\lmhsvc.dll,-101 (lmhosts) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: Intel(R) Management and Security Application Local Management Service (LMS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
O23 - Service: Ma-Config Service (maconfservice) - Unknown owner - C:\Program Files\ma-config.com\x64\maconfservice.exe
O23 - Service: MBAMScheduler - Malwarebytes Corporation - C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe
O23 - Service: MBAMService - Malwarebytes Corporation - C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe
O23 - Service: @%systemroot%\system32\mmcss.dll,-100 (MMCSS) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: @%SystemRoot%\system32\FirewallAPI.dll,-23090 (MpsSvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\iscsidsc.dll,-5000 (MSiSCSI) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\msimsg.dll,-27 (msiserver) - Unknown owner - C:\Windows\system32\msiexec.exe
O23 - Service: @%SystemRoot%\system32\qagentrt.dll,-6 (napagent) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\netman.dll,-109 (Netman) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\netprofm.dll,-202 (netprofm) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\System32\nlasvc.dll,-1 (NlaSvc) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\nsisvc.dll,-200 (nsi) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: NVIDIA Display Driver Service (nvsvc) - Unknown owner - C:\Windows\system32\nvvsvc.exe (file missing)
O23 - Service: NVIDIA Update Service Daemon (nvUpdatusService) - NVIDIA Corporation - C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
O23 - Service: @%SystemRoot%\system32\pnrpsvc.dll,-8004 (p2pimsvc) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\p2psvc.dll,-8006 (p2psvc) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\pcasvc.dll,-1 (PcaSvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\peerdistsvc.dll,-9000 (PeerDistSvc) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%systemroot%\sysWow64\perfhost.exe,-2 (PerfHost) - Unknown owner - C:\Windows\SysWow64\perfhost.exe
O23 - Service: @%systemroot%\system32\pla.dll,-500 (pla) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\umpnpmgr.dll,-100 (PlugPlay) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\pnrpauto.dll,-8002 (PNRPAutoReg) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\pnrpsvc.dll,-8000 (PNRPsvc) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\System32\polstore.dll,-5010 (PolicyAgent) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\umpo.dll,-100 (Power) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%systemroot%\system32\profsvc.dll,-300 (ProfSvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\qwave.dll,-1 (QWAVE) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @regsvc.dll,-1 (RemoteRegistry) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%windir%\system32\RpcEpMap.dll,-1001 (RpcEptMapper) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: @oleres.dll,-5010 (RpcSs) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: SafeBox - Bitdefender - C:\Program Files\Bitdefender\Bitdefender SafeBox\safeboxservice.exe
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\System32\SCardSvr.dll,-1 (SCardSvr) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\schedsvc.dll,-100 (Schedule) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\System32\certprop.dll,-13 (SCPolicySvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\sdrsvc.dll,-107 (SDRSVC) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\seclogon.dll,-7001 (seclogon) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\Sens.dll,-200 (SENS) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\System32\sensrsvc.dll,-1000 (SensrSvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\System32\SessEnv.dll,-1026 (SessionEnv) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\System32\shsvcs.dll,-12288 (ShellHWDetection) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files (x86)\Skype\Updater\Updater.exe
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppuinotify.dll,-103 (sppuinotify) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%systemroot%\system32\ssdpsrv.dll,-100 (SSDPSRV) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\sstpsvc.dll,-200 (SstpSvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: NVIDIA Stereoscopic 3D Driver Service (Stereo Service) - NVIDIA Corporation - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
O23 - Service: @%SystemRoot%\system32\wiaservc.dll,-9 (stisvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\System32\StorSvc.dll,-100 (StorSvc) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\System32\swprv.dll,-103 (swprv) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\sysmain.dll,-1000 (SysMain) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\TabSvc.dll,-100 (TabletInputService) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\tapisrv.dll,-10100 (TapiSrv) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\tbssvc.dll,-100 (TBS) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\System32\termsrv.dll,-268 (TermService) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\System32\themeservice.dll,-8192 (Themes) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%systemroot%\system32\mmcss.dll,-102 (THREADORDER) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\trkwks.dll,-1 (TrkWks) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\servicing\TrustedInstaller.exe,-100 (TrustedInstaller) - Unknown owner - C:\Windows\servicing\TrustedInstaller.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: Intel(R) Management and Security Application User Notification Service (UNS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
O23 - Service: Bitdefender Desktop Update Service (UPDATESRV) - Bitdefender - C:\Program Files\Bitdefender\Bitdefender 2013\updatesrv.exe
O23 - Service: @%systemroot%\system32\upnphost.dll,-213 (upnphost) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\dwm.exe,-2000 (UxSms) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: Bitdefender Virus Shield (VSSERV) - Bitdefender - C:\Program Files\Bitdefender\Bitdefender 2013\vsserv.exe
O23 - Service: @%SystemRoot%\system32\w32time.dll,-200 (W32Time) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\Windows\system32\Wat\WatAdminSvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: @%systemroot%\system32\wbiosrvc.dll,-100 (WbioSrvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\wcncsvc.dll,-3 (wcncsvc) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\WcsPlugInService.dll,-200 (WcsPlugInService) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%systemroot%\system32\wdi.dll,-502 (WdiServiceHost) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%systemroot%\system32\wdi.dll,-500 (WdiSystemHost) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%systemroot%\system32\webclnt.dll,-100 (WebClient) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\wecsvc.dll,-200 (Wecsvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\System32\wercplsupport.dll,-101 (wercplsupport) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\System32\wersvc.dll,-100 (WerSvc) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%ProgramFiles%\Windows Defender\MsMpRes.dll,-103 (WinDefend) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\winhttp.dll,-100 (WinHttpAutoProxySvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%Systemroot%\system32\wbem\wmisvc.dll,-205 (Winmgmt) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%Systemroot%\system32\wsmsvc.dll,-101 (WinRM) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\System32\wlansvc.dll,-257 (Wlansvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)
O23 - Service: @%SystemRoot%\system32\wpcsvc.dll,-100 (WPCSvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\wpdbusenum.dll,-100 (WPDBusEnum) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\System32\wscsvc.dll,-200 (wscsvc) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%systemroot%\system32\SearchIndexer.exe,-103 (WSearch) - Unknown owner - C:\Windows\system32\SearchIndexer.exe
O23 - Service: @%systemroot%\system32\wuaueng.dll,-105 (wuauserv) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\wudfsvc.dll,-1000 (wudfsvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\System32\wwansvc.dll,-257 (WwanSvc) - Unknown owner - C:\Windows\system32\svchost.exe
End of file - 21467 bytes

=========Mozilla firefox=========

ProfilePath - C:\Users\SkyTribe\AppData\Roaming\Mozilla\Firefox\Profiles\kxzgwoen.default

prefs.js - "browser.startup.homepage" - "www.google.fr"

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 11.5.502.110 Plugin
"Path"=C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_5_502_110.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@intel-webapi.intel.com/Intel WebAPI ipt;version=2.1.42]
"Description"=Intel IPT WebApi plugin
"Path"=C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@intel-webapi.intel.com/Intel WebAPI updater]
"Description"=This plugin updates Intel WebAPI component
"Path"=C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@ma-config.com/HardwareDetection]
"Description"=Détection matériel Ma-Config.com
"Path"=C:\Program Files\ma-config.com\nphardwaredetection.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/GENUINE]
"Description"=
"Path"=disabled

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@nvidia.com/3DVision]
"Description"=NVIDIA stereo images plugin for Mozilla browsers
"Path"=C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@nvidia.com/3DVisionStreaming]
"Description"=NVIDIA 3D Vision Streaming plugin for Mozilla browsers
"Path"=C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@videolan.org/vlc,version=2.0.4]
"Description"=VLC Multimedia Plugin
"Path"=C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\Adobe Reader]
"Description"=Handles PDFs in-place in Firefox
"Path"=C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll

C:\Program Files (x86)\Mozilla Firefox\extensions\
{972ce4c6-7e08-4474-a285-3208198ce6fd}

C:\Program Files (x86)\Mozilla Firefox\components\
binary.manifest
browsercomps.dll

C:\Program Files (x86)\Mozilla Firefox\searchplugins\
amazon-france.xml
bing.xml
cnrtl-tlfi-fr.xml
eBay-france.xml
google.xml
wikipedia-fr.xml
yahoo-france.xml

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}]
Adobe PDF Link Helper - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2012-09-23 60568]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"IAStorIcon"=C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIconLaunch.exe [2012-09-12 56128]
"USB3MON"=C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe [2012-10-16 291648]
"Adobe ARM"=C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2012-09-23 926896]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"Skype"=C:\Program Files (x86)\Skype\Phone\Skype.exe [2012-11-09 17877168]
"Spotify"=C:\Users\SkyTribe\AppData\Roaming\Spotify\Spotify.exe [2012-12-03 7880664]
"Spotify Web Helper"=C:\Users\SkyTribe\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe [2012-12-03 1199576]
"EPSON SX420W Series"=C:\Windows\system32\spool\DRIVERS\x64\3\E_IATIGCE.EXE [2009-09-14 224768]
"DAEMON Tools Lite"=C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe [2012-11-06 3673728]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED}

[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=5
"ConsentPromptBehaviorUser"=3
"EnableUIADesktopToggle"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoActiveDesktop"=1
"NoActiveDesktopChanges"=1
"ForceActiveDesktopOn"=0
"NoDriveTypeAutoRun"=255
"NoDriveAutoRun"=67108863
"HonorAutorunSetting"=1

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.msadpcm"=msadp32.acm
"midimapper"=midimap.dll
"wavemapper"=msacm32.drv
"vidc.uyvy"=msyuv.dll
"vidc.yuy2"=msyuv.dll
"vidc.yvyu"=msyuv.dll
"vidc.iyuv"=iyuv_32.dll
"vidc.i420"=iyuv_32.dll
"vidc.yvu9"=tsbyuv.dll
"msacm.l3acm"=C:\Windows\SysWOW64\l3codeca.acm
"vidc.cvid"=iccvid.dll
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"wave5"=wdmaud.drv
"midi5"=wdmaud.drv
"mixer5"=wdmaud.drv
"aux1"=wdmaud.drv
"wave6"=wdmaud.drv
"midi6"=wdmaud.drv
"mixer6"=wdmaud.drv
"aux2"=wdmaud.drv
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"wave2"=wdmaud.drv
"midi2"=wdmaud.drv
"mixer2"=wdmaud.drv
"wave3"=wdmaud.drv
"midi3"=wdmaud.drv
"mixer3"=wdmaud.drv
"wave4"=wdmaud.drv
"midi4"=wdmaud.drv
"mixer4"=wdmaud.drv

======File associations======

.js - edit - C:\Windows\System32\Notepad.exe %1

======List of files/folders created in the last 1 month======

2012-12-13 22:10:14 ----D---- C:\rsit
2012-12-13 22:10:14 ----D---- C:\Program Files (x86)\trend micro
2012-12-13 09:22:17 ----D---- C:\Users\SkyTribe\AppData\Roaming\Theta
2012-12-13 08:57:10 ----D---- C:\Users\SkyTribe\AppData\Roaming\DAEMON Tools Lite
2012-12-13 08:57:09 ----D---- C:\Program Files (x86)\DAEMON Tools Lite
2012-12-13 08:56:39 ----D---- C:\ProgramData\DAEMON Tools Lite
2012-12-12 03:00:24 ----A---- C:\Windows\SysWOW64\vbscript.dll
2012-12-12 03:00:24 ----A---- C:\Windows\SysWOW64\urlmon.dll
2012-12-12 03:00:24 ----A---- C:\Windows\SysWOW64\url.dll
2012-12-12 03:00:24 ----A---- C:\Windows\SysWOW64\mshtmled.dll
2012-12-12 03:00:24 ----A---- C:\Windows\SysWOW64\ieUnatt.exe
2012-12-12 03:00:24 ----A---- C:\Windows\SysWOW64\ieui.dll
2012-12-12 03:00:23 ----A---- C:\Windows\SysWOW64\wininet.dll
2012-12-12 03:00:23 ----A---- C:\Windows\SysWOW64\msfeeds.dll
2012-12-12 03:00:23 ----A---- C:\Windows\SysWOW64\jscript9.dll
2012-12-12 03:00:23 ----A---- C:\Windows\SysWOW64\jscript.dll
2012-12-12 03:00:22 ----A---- C:\Windows\SysWOW64\jsproxy.dll
2012-12-12 03:00:22 ----A---- C:\Windows\SysWOW64\iertutil.dll
2012-12-12 03:00:21 ----A---- C:\Windows\SysWOW64\mshtml.dll
2012-12-12 03:00:20 ----A---- C:\Windows\SysWOW64\ieframe.dll
2012-12-11 23:37:19 ----A---- C:\Windows\SysWOW64\tzres.dll
2012-12-11 23:19:04 ----AH---- C:\Windows\SysWOW64\api-ms-win-security-base-l1-1-0.dll
2012-12-11 23:19:04 ----AH---- C:\Windows\SysWOW64\api-ms-win-core-xstate-l1-1-0.dll
2012-12-11 23:19:04 ----AH---- C:\Windows\SysWOW64\api-ms-win-core-util-l1-1-0.dll
2012-12-11 23:19:04 ----AH---- C:\Windows\SysWOW64\api-ms-win-core-threadpool-l1-1-0.dll
2012-12-11 23:19:04 ----AH---- C:\Windows\SysWOW64\api-ms-win-core-sysinfo-l1-1-0.dll
2012-12-11 23:19:04 ----AH---- C:\Windows\SysWOW64\api-ms-win-core-synch-l1-1-0.dll
2012-12-11 23:19:04 ----AH---- C:\Windows\SysWOW64\api-ms-win-core-string-l1-1-0.dll
2012-12-11 23:19:04 ----AH---- C:\Windows\SysWOW64\api-ms-win-core-rtlsupport-l1-1-0.dll
2012-12-11 23:19:04 ----AH---- C:\Windows\SysWOW64\api-ms-win-core-profile-l1-1-0.dll
2012-12-11 23:19:04 ----AH---- C:\Windows\SysWOW64\api-ms-win-core-processthreads-l1-1-0.dll
2012-12-11 23:19:04 ----AH---- C:\Windows\SysWOW64\api-ms-win-core-processenvironment-l1-1-0.dll
2012-12-11 23:19:04 ----AH---- C:\Windows\SysWOW64\api-ms-win-core-namedpipe-l1-1-0.dll
2012-12-11 23:19:04 ----AH---- C:\Windows\SysWOW64\api-ms-win-core-misc-l1-1-0.dll
2012-12-11 23:19:04 ----AH---- C:\Windows\SysWOW64\api-ms-win-core-memory-l1-1-0.dll
2012-12-11 23:19:04 ----AH---- C:\Windows\SysWOW64\api-ms-win-core-localregistry-l1-1-0.dll
2012-12-11 23:19:04 ----AH---- C:\Windows\SysWOW64\api-ms-win-core-localization-l1-1-0.dll
2012-12-11 23:19:04 ----AH---- C:\Windows\SysWOW64\api-ms-win-core-libraryloader-l1-1-0.dll
2012-12-11 23:19:04 ----AH---- C:\Windows\SysWOW64\api-ms-win-core-io-l1-1-0.dll
2012-12-11 23:19:04 ----AH---- C:\Windows\SysWOW64\api-ms-win-core-interlocked-l1-1-0.dll
2012-12-11 23:19:04 ----AH---- C:\Windows\SysWOW64\api-ms-win-core-heap-l1-1-0.dll
2012-12-11 23:19:04 ----AH---- C:\Windows\SysWOW64\api-ms-win-core-handle-l1-1-0.dll
2012-12-11 23:19:04 ----AH---- C:\Windows\SysWOW64\api-ms-win-core-file-l1-1-0.dll
2012-12-11 23:19:04 ----AH---- C:\Windows\SysWOW64\api-ms-win-core-fibers-l1-1-0.dll
2012-12-11 23:19:04 ----AH---- C:\Windows\SysWOW64\api-ms-win-core-errorhandling-l1-1-0.dll
2012-12-11 23:19:04 ----AH---- C:\Windows\SysWOW64\api-ms-win-core-delayload-l1-1-0.dll
2012-12-11 23:19:04 ----AH---- C:\Windows\SysWOW64\api-ms-win-core-debug-l1-1-0.dll
2012-12-11 23:19:04 ----AH---- C:\Windows\SysWOW64\api-ms-win-core-datetime-l1-1-0.dll
2012-12-11 23:19:04 ----AH---- C:\Windows\SysWOW64\api-ms-win-core-console-l1-1-0.dll
2012-12-11 23:19:04 ----A---- C:\Windows\SysWOW64\wow32.dll
2012-12-11 23:19:04 ----A---- C:\Windows\SysWOW64\user.exe
2012-12-11 23:19:04 ----A---- C:\Windows\SysWOW64\setup16.exe
2012-12-11 23:19:04 ----A---- C:\Windows\SysWOW64\ntvdm64.dll
2012-12-11 23:19:04 ----A---- C:\Windows\SysWOW64\KernelBase.dll
2012-12-11 23:19:04 ----A---- C:\Windows\SysWOW64\kernel32.dll
2012-12-11 23:19:04 ----A---- C:\Windows\SysWOW64\instnm.exe
2012-12-11 22:49:27 ----A---- C:\Windows\SysWOW64\atmlib.dll
2012-12-11 22:49:27 ----A---- C:\Windows\SysWOW64\atmfd.dll
2012-12-11 22:14:26 ----A---- C:\Windows\SysWOW64\dpnet.dll
2012-12-11 15:50:32 ----D---- C:\Program Files (x86)\Common Files\Adobe
2012-12-11 15:50:32 ----D---- C:\Program Files (x86)\Adobe
2012-12-11 15:41:42 ----D---- C:\Users\SkyTribe\AppData\Roaming\CasaPortale.de
2012-12-11 15:41:42 ----D---- C:\Program Files (x86)\PosteRazor
2012-12-11 15:38:27 ----D---- C:\Program Files (x86)\Common Files\EPSON
2012-12-11 15:38:26 ----D---- C:\Program Files (x86)\EpsonNet
2012-12-11 15:38:09 ----D---- C:\ProgramData\EPSON
2012-12-11 15:37:51 ----D---- C:\Program Files (x86)\epson
2012-12-09 00:55:20 ----D---- C:\Program Files (x86)\AGEIA Technologies
2012-12-09 00:51:36 ----A---- C:\Windows\SysWOW64\nvwgf2um.dll
2012-12-09 00:51:36 ----A---- C:\Windows\SysWOW64\nvumdshim.dll
2012-12-09 00:51:36 ----A---- C:\Windows\SysWOW64\nvopencl.dll
2012-12-09 00:51:36 ----A---- C:\Windows\SysWOW64\nvoglv32.dll
2012-12-09 00:51:36 ----A---- C:\Windows\SysWOW64\nvinit.dll
2012-12-09 00:51:36 ----A---- C:\Windows\SysWOW64\nvd3dum.dll
2012-12-09 00:51:36 ----A---- C:\Windows\SysWOW64\nvcuvid.dll
2012-12-09 00:51:36 ----A---- C:\Windows\SysWOW64\nvcuvenc.dll
2012-12-09 00:51:36 ----A---- C:\Windows\SysWOW64\nvcuda.dll
2012-12-09 00:51:36 ----A---- C:\Windows\SysWOW64\nvcompiler.dll
2012-12-09 00:51:36 ----A---- C:\Windows\SysWOW64\nvapi.dll
2012-12-06 20:58:35 ----D---- C:\Users\SkyTribe\AppData\Roaming\Audacity
2012-12-05 19:00:51 ----A---- C:\Windows\SysWOW64\FlashPlayerApp.exe
2012-12-05 17:32:35 ----D---- C:\Users\SkyTribe\AppData\Roaming\Malwarebytes
2012-12-05 17:32:32 ----D---- C:\ProgramData\Malwarebytes
2012-12-05 17:32:31 ----D---- C:\Program Files (x86)\Malwarebytes' Anti-Malware
2012-12-05 17:20:57 ----A---- C:\Windows\SysWOW64\d2d1.dll
2012-12-04 00:19:55 ----D---- C:\ProgramData\Blizzard Entertainment
2012-12-04 00:19:22 ----D---- C:\ProgramData\Battle.net
2012-12-03 17:55:44 ----D---- C:\Users\SkyTribe\AppData\Roaming\Spotify
2012-12-03 17:28:54 ----D---- C:\Users\SkyTribe\AppData\Roaming\Skype
2012-12-03 17:28:52 ----RD---- C:\Program Files (x86)\Skype
2012-12-03 17:28:52 ----D---- C:\Program Files (x86)\Common Files\Skype
2012-12-03 17:28:27 ----D---- C:\ProgramData\Skype
2012-12-03 17:28:27 ----A---- C:\Windows\SysWOW64\fsutil.exe
2012-12-03 17:28:27 ----A---- C:\Windows\SysWOW64\esent.dll
2012-12-03 17:27:40 ----D---- C:\Users\SkyTribe\AppData\Roaming\vlc
2012-12-03 17:27:31 ----D---- C:\Program Files (x86)\VideoLAN
2012-12-03 17:25:55 ----D---- C:\Program Files (x86)\Microsoft.NET
2012-12-03 16:31:50 ----A---- C:\Windows\SysWOW64\SetIEInstalledDate.exe
2012-12-03 16:31:50 ----A---- C:\Windows\SysWOW64\msrating.dll
2012-12-03 16:31:50 ----A---- C:\Windows\SysWOW64\msls31.dll
2012-12-03 16:31:50 ----A---- C:\Windows\SysWOW64\mshtmler.dll
2012-12-03 16:31:50 ----A---- C:\Windows\SysWOW64\msfeedssync.exe
2012-12-03 16:31:50 ----A---- C:\Windows\SysWOW64\msfeedsbs.dll
2012-12-03 16:31:50 ----A---- C:\Windows\SysWOW64\iepeers.dll
2012-12-03 16:31:50 ----A---- C:\Windows\SysWOW64\ieakeng.dll
2012-12-03 16:31:50 ----A---- C:\Windows\SysWOW64\IEAdvpack.dll
2012-12-03 16:31:49 ----A---- C:\Windows\SysWOW64\wextract.exe
2012-12-03 16:31:49 ----A---- C:\Windows\SysWOW64\webcheck.dll
2012-12-03 16:31:49 ----A---- C:\Windows\SysWOW64\pngfilt.dll
2012-12-03 16:31:49 ----A---- C:\Windows\SysWOW64\occache.dll
2012-12-03 16:31:49 ----A---- C:\Windows\SysWOW64\mshta.exe
2012-12-03 16:31:49 ----A---- C:\Windows\SysWOW64\licmgr10.dll
2012-12-03 16:31:49 ----A---- C:\Windows\SysWOW64\inseng.dll
2012-12-03 16:31:49 ----A---- C:\Windows\SysWOW64\imgutil.dll
2012-12-03 16:31:49 ----A---- C:\Windows\SysWOW64\iexpress.exe
2012-12-03 16:31:49 ----A---- C:\Windows\SysWOW64\iesysprep.dll
2012-12-03 16:31:49 ----A---- C:\Windows\SysWOW64\iesetup.dll
2012-12-03 16:31:49 ----A---- C:\Windows\SysWOW64\iernonce.dll
2012-12-03 16:31:49 ----A---- C:\Windows\SysWOW64\iedkcs32.dll
2012-12-03 16:31:49 ----A---- C:\Windows\SysWOW64\ieapfltr.dll
2012-12-03 16:31:49 ----A---- C:\Windows\SysWOW64\ieapfltr.dat
2012-12-03 16:31:49 ----A---- C:\Windows\SysWOW64\ieakui.dll
2012-12-03 16:31:49 ----A---- C:\Windows\SysWOW64\ieaksie.dll
2012-12-03 16:31:49 ----A---- C:\Windows\SysWOW64\ie4uinit.exe
2012-12-03 16:31:49 ----A---- C:\Windows\SysWOW64\icardie.dll
2012-12-03 16:31:49 ----A---- C:\Windows\SysWOW64\dxtrans.dll
2012-12-03 16:31:49 ----A---- C:\Windows\SysWOW64\dxtmsft.dll
2012-12-03 16:31:49 ----A---- C:\Windows\SysWOW64\admparse.dll
2012-12-03 16:28:24 ----A---- C:\Windows\SysWOW64\wmi.dll
2012-12-03 16:28:24 ----A---- C:\Windows\SysWOW64\imagehlp.dll
2012-12-03 16:27:29 ----A---- C:\Windows\SysWOW64\shell32.dll
2012-12-03 16:27:24 ----A---- C:\Windows\SysWOW64\sbe.dll
2012-12-03 16:27:24 ----A---- C:\Windows\SysWOW64\CPFilters.dll
2012-12-03 16:27:23 ----A---- C:\Windows\SysWOW64\poqexec.exe
2012-12-03 16:27:15 ----A---- C:\Windows\SysWOW64\nlaapi.dll
2012-12-03 16:27:15 ----A---- C:\Windows\SysWOW64\netevent.dll
2012-12-03 16:27:15 ----A---- C:\Windows\SysWOW64\netcorehc.dll
2012-12-03 16:27:15 ----A---- C:\Windows\SysWOW64\ncsi.dll
2012-12-03 16:27:13 ----A---- C:\Windows\SysWOW64\tquery.dll
2012-12-03 16:27:13 ----A---- C:\Windows\SysWOW64\SearchProtocolHost.exe
2012-12-03 16:27:13 ----A---- C:\Windows\SysWOW64\SearchIndexer.exe
2012-12-03 16:27:13 ----A---- C:\Windows\SysWOW64\ntshrui.dll
2012-12-03 16:27:13 ----A---- C:\Windows\SysWOW64\mssrch.dll
2012-12-03 16:27:13 ----A---- C:\Windows\SysWOW64\mssph.dll
2012-12-03 16:27:12 ----A---- C:\Windows\SysWOW64\SearchFilterHost.exe
2012-12-03 16:27:12 ----A---- C:\Windows\SysWOW64\mssvp.dll
2012-12-03 16:27:12 ----A---- C:\Windows\SysWOW64\mssphtb.dll
2012-12-03 16:27:12 ----A---- C:\Windows\SysWOW64\msscntrs.dll
2012-12-03 16:27:10 ----A---- C:\Windows\SysWOW64\XpsGdiConverter.dll
2012-12-03 16:27:10 ----A---- C:\Windows\SysWOW64\ntoskrnl.exe
2012-12-03 16:27:10 ----A---- C:\Windows\SysWOW64\ntkrnlpa.exe
2012-12-03 16:27:09 ----A---- C:\Windows\SysWOW64\XpsPrint.dll
2012-12-03 16:27:06 ----A---- C:\Windows\SysWOW64\DWrite.dll
2012-12-03 16:27:05 ----A---- C:\Windows\SysWOW64\webio.dll
2012-12-03 16:27:04 ----A---- C:\Windows\SysWOW64\xmllite.dll
2012-12-03 16:27:04 ----A---- C:\Windows\SysWOW64\msxml6.dll
2012-12-03 16:27:04 ----A---- C:\Windows\SysWOW64\mfc42u.dll
2012-12-03 16:27:04 ----A---- C:\Windows\SysWOW64\mfc42.dll
2012-12-03 16:27:03 ----A---- C:\Windows\SysWOW64\secur32.dll
2012-12-03 16:27:03 ----A---- C:\Windows\SysWOW64\schannel.dll
2012-12-03 16:27:03 ----A---- C:\Windows\SysWOW64\odbctrac.dll
2012-12-03 16:27:03 ----A---- C:\Windows\SysWOW64\odbcjt32.dll
2012-12-03 16:27:03 ----A---- C:\Windows\SysWOW64\odbccu32.dll
2012-12-03 16:27:03 ----A---- C:\Windows\SysWOW64\odbccr32.dll
2012-12-03 16:27:03 ----A---- C:\Windows\SysWOW64\odbccp32.dll
2012-12-03 16:27:03 ----A---- C:\Windows\SysWOW64\ncrypt.dll
2012-12-03 16:27:03 ----A---- C:\Windows\SysWOW64\msxml3r.dll
2012-12-03 16:27:03 ----A---- C:\Windows\SysWOW64\msxml3.dll
2012-12-03 16:27:02 ----A---- C:\Windows\SysWOW64\sspicli.dll
2012-12-03 16:27:02 ----A---- C:\Windows\SysWOW64\dhcpcsvc6.dll
2012-12-03 16:27:02 ----A---- C:\Windows\SysWOW64\dhcpcore6.dll
2012-12-03 16:27:01 ----A---- C:\Windows\SysWOW64\quartz.dll
2012-12-03 16:27:01 ----A---- C:\Windows\SysWOW64\qdvd.dll
2012-12-03 16:26:58 ----A---- C:\Windows\SysWOW64\fontsub.dll
2012-12-03 16:26:58 ----A---- C:\Windows\SysWOW64\explorer.exe
2012-12-03 16:26:58 ----A---- C:\Windows\explorer.exe
2012-12-03 16:26:57 ----A---- C:\Windows\SysWOW64\d3d10level9.dll
2012-12-03 16:26:52 ----A---- C:\Windows\SysWOW64\wintrust.dll
2012-12-03 16:26:52 ----A---- C:\Windows\SysWOW64\dnscacheugc.exe
2012-12-03 16:26:52 ----A---- C:\Windows\SysWOW64\dnsapi.dll
2012-12-03 16:26:31 ----A---- C:\Windows\SysWOW64\d3d10_1.dll
2012-12-03 16:26:30 ----A---- C:\Windows\SysWOW64\psisdecd.dll
2012-12-03 16:24:01 ----A---- C:\Windows\SysWOW64\msi.dll
2012-12-03 16:24:01 ----A---- C:\Windows\SysWOW64\kerberos.dll
2012-12-03 16:24:00 ----A---- C:\Windows\SysWOW64\synceng.dll
2012-12-03 16:23:52 ----A---- C:\Windows\SysWOW64\netapi32.dll
2012-12-03 16:23:52 ----A---- C:\Windows\SysWOW64\drvinst.exe
2012-12-03 16:23:52 ----A---- C:\Windows\SysWOW64\devrtl.dll
2012-12-03 16:23:52 ----A---- C:\Windows\SysWOW64\devobj.dll
2012-12-03 16:23:52 ----A---- C:\Windows\SysWOW64\cfgmgr32.dll
2012-12-03 16:23:52 ----A---- C:\Windows\SysWOW64\browcli.dll
2012-12-03 16:23:51 ----A---- C:\Windows\SysWOW64\srclient.dll
2012-12-03 16:23:51 ----A---- C:\Windows\SysWOW64\prevhost.exe
2012-12-03 16:23:44 ----A---- C:\Windows\SysWOW64\msvcrt.dll
2012-12-03 16:23:44 ----A---- C:\Windows\SysWOW64\inetcomm.dll
2012-12-03 16:23:42 ----A---- C:\Windows\SysWOW64\oleaut32.dll
2012-12-03 16:23:42 ----A---- C:\Windows\SysWOW64\oleacc.dll
2012-12-03 16:23:41 ----A---- C:\Windows\SysWOW64\EncDec.dll
2012-12-03 16:23:40 ----A---- C:\Windows\SysWOW64\cdosys.dll
2012-12-03 16:23:39 ----A---- C:\Windows\SysWOW64\win32spl.dll
2012-12-03 16:23:39 ----A---- C:\Windows\SysWOW64\ntdll.dll
2012-12-03 16:23:39 ----A---- C:\Windows\splwow64.exe
2012-12-03 16:23:37 ----A---- C:\Windows\SysWOW64\cryptsvc.dll
2012-12-03 16:23:37 ----A---- C:\Windows\SysWOW64\cryptnet.dll
2012-12-03 16:23:37 ----A---- C:\Windows\SysWOW64\crypt32.dll
2012-12-03 16:21:59 ----A---- C:\Windows\SysWOW64\packager.dll
2012-12-03 16:01:17 ----A---- C:\Windows\SysWOW64\rdpcore.dll
2012-12-03 16:01:15 ----D---- C:\Users\SkyTribe\AppData\Roaming\Bitdefender
2012-12-03 16:01:14 ----D---- C:\ProgramData\Bitdefender
2012-12-03 16:00:09 ----A---- C:\Windows\SysWOW64\PerfStringBackup.INI
2012-12-03 15:57:17 ----D---- C:\Windows\SysWOW64\Wat
2012-12-03 15:56:24 ----A---- C:\bdlog.txt
2012-12-03 15:50:56 ----D---- C:\Users\SkyTribe\AppData\Roaming\WinRAR
2012-12-03 15:26:56 ----D---- C:\Program Files (x86)\ASM104xUSB3
2012-12-03 15:24:57 ----D---- C:\Users\SkyTribe\AppData\Roaming\NVIDIA
2012-12-03 15:24:57 ----D---- C:\Users\SkyTribe\AppData\Roaming\Leadertech
2012-12-03 15:24:40 ----D---- C:\ProgramData\LogiShrd
2012-12-03 15:24:10 ----D---- C:\Users\SkyTribe\AppData\Roaming\Logitech
2012-12-03 15:24:10 ----D---- C:\Users\SkyTribe\AppData\Roaming\Logishrd
2012-12-03 15:18:44 ----D---- C:\ProgramData\ma-config.com
2012-12-03 15:17:54 ----D---- C:\Users\SkyTribe\AppData\Roaming\Macromedia
2012-12-03 15:17:54 ----D---- C:\Users\SkyTribe\AppData\Roaming\Adobe
2012-12-03 15:17:13 ----D---- C:\Windows\SysWOW64\Macromed
2012-12-03 15:16:35 ----D---- C:\ProgramData\Adobe
2012-12-03 15:14:52 ----D---- C:\Users\SkyTribe\AppData\Roaming\Mozilla
2012-12-03 15:14:50 ----D---- C:\ProgramData\Mozilla
2012-12-03 15:14:50 ----D---- C:\Program Files (x86)\Mozilla Maintenance Service
2012-12-03 15:14:49 ----D---- C:\Program Files (x86)\Mozilla Firefox
2012-12-03 15:06:49 ----D---- C:\ProgramData\BDLogging
2012-12-03 15:06:43 ----A---- C:\Windows\capicom.dll
2012-12-03 15:04:25 ----D---- C:\Users\SkyTribe\AppData\Roaming\QuickScan
2012-12-03 15:04:24 ----A---- C:\Windows\TrufosDllLog.txt
2012-12-03 15:04:20 ----N---- C:\Windows\TrufosLog.txt
2012-12-03 14:39:36 ----D---- C:\ProgramData\NVIDIA
2012-12-03 14:39:35 ----D---- C:\Program Files (x86)\NVIDIA Corporation
2012-12-03 14:39:32 ----D---- C:\ProgramData\NVIDIA Corporation
2012-12-03 14:39:25 ----A---- C:\Windows\SysWOW64\OpenCL.dll
2012-12-03 14:38:58 ----D---- C:\NVIDIA
2012-12-03 14:38:21 ----D---- C:\Program Files (x86)\Common Files\Intel Corporation
2012-12-03 14:36:32 ----D---- C:\Users\SkyTribe\AppData\Roaming\Intel Corporation
2012-12-03 14:33:05 ----A---- C:\Windows\SysWOW64\log.txt
2012-12-03 14:33:04 ----D---- C:\ProgramData\Intel
2012-12-03 14:32:24 ----SHD---- C:\Windows\Installer
2012-12-03 14:32:15 ----D---- C:\Program Files (x86)\Common Files\postureAgent
2012-12-03 14:32:04 ----D---- C:\Users\SkyTribe\AppData\Roaming\InstallShield
2012-12-03 14:31:02 ----D---- C:\Windows\SysWOW64\RTCOM
2012-12-03 14:30:53 ----A---- C:\Windows\SysWOW64\SFCOM.dll
2012-12-03 14:30:41 ----HD---- C:\Program Files (x86)\Temp
2012-12-03 14:30:41 ----HD---- C:\Program Files (x86)\InstallShield Installation Information
2012-12-03 14:30:41 ----D---- C:\Program Files (x86)\Realtek
2012-12-03 14:30:40 ----R---- C:\Windows\RtlExUpd.dll
2012-12-03 14:30:38 ----D---- C:\Program Files (x86)\Common Files\InstallShield
2012-12-03 14:27:12 ----D---- C:\Program Files (x86)\Intel
2012-12-03 14:27:12 ----A---- C:\Windows\SysWOW64\CSVer.dll
2012-12-03 14:27:04 ----D---- C:\Intel
2012-12-03 14:22:49 ----D---- C:\Windows\AsusInstAll
2012-12-03 14:22:23 ----A---- C:\Windows\Ascd_log.ini
2012-12-03 14:21:14 ----A---- C:\Windows\Language_trs.ini
2012-12-03 14:21:09 ----A---- C:\Windows\Ascd_tmp.ini
2012-12-03 14:18:39 ----D---- C:\Users\SkyTribe\AppData\Roaming\Identities
2012-12-03 14:18:36 ----SD---- C:\Users\SkyTribe\AppData\Roaming\Microsoft
2012-12-03 14:18:36 ----D---- C:\Users\SkyTribe\AppData\Roaming\Media Center Programs
2012-12-03 14:18:33 ----SHD---- C:\Recovery
2012-12-03 14:18:33 ----SHD---- C:\ProgramData\Modèles
2012-12-03 14:18:33 ----SHD---- C:\ProgramData\Menu Démarrer
2012-12-03 14:18:33 ----SHD---- C:\ProgramData\Favoris
2012-12-03 14:18:33 ----SHD---- C:\ProgramData\Bureau
2012-12-03 14:18:32 ----D---- C:\Windows\SoftwareDistribution
2012-12-03 13:12:41 ----D---- C:\Windows\Prefetch
2012-12-03 13:12:34 ----ASH---- C:\pagefile.sys
2012-12-03 13:12:33 ----SHD---- C:\System Volume Information
2012-12-03 13:12:33 ----ASH---- C:\hiberfil.sys
2012-12-03 13:12:03 ----D---- C:\Windows\Panther
2012-12-03 13:11:51 ----RASH---- C:\BOOTSECT.BAK
2012-12-03 13:11:50 ----SHD---- C:\Boot
2012-11-30 22:43:52 ----A---- C:\Windows\SysWOW64\nvStreaming.exe

======List of files/folders modified in the last 1 month======

2012-12-13 22:10:19 ----D---- C:\Windows\Temp
2012-12-13 22:10:14 ----RD---- C:\Program Files (x86)
2012-12-13 16:34:57 ----D---- C:\Windows\System32
2012-12-13 09:00:36 ----D---- C:\Windows\inf
2012-12-13 08:56:39 ----HD---- C:\ProgramData
2012-12-13 08:35:08 ----D---- C:\Windows
2012-12-12 03:43:29 ----D---- C:\Windows\rescache
2012-12-12 03:17:45 ----D---- C:\Windows\winsxs
2012-12-12 03:17:01 ----D---- C:\Windows\SysWOW64\migration
2012-12-12 03:17:01 ----D---- C:\Windows\SysWOW64\fr-FR
2012-12-12 03:17:01 ----D---- C:\Windows\SysWOW64
2012-12-12 03:17:01 ----D---- C:\Windows\AppPatch
2012-12-12 03:17:01 ----D---- C:\Program Files (x86)\Internet Explorer
2012-12-12 03:01:08 ----D---- C:\Windows\debug
2012-12-11 15:50:32 ----D---- C:\Program Files (x86)\Common Files
2012-12-11 15:38:29 ----RD---- C:\Program Files
2012-12-11 15:37:51 ----D---- C:\Windows\twain_32
2012-12-06 03:24:25 ----D---- C:\Windows\Logs
2012-12-05 05:58:55 ----RSD---- C:\Windows\assembly
2012-12-05 05:58:55 ----D---- C:\Windows\Microsoft.NET
2012-12-04 16:21:18 ----SD---- C:\ProgramData\Microsoft
2012-12-03 17:25:55 ----D---- C:\Windows\SysWOW64\en-US
2012-12-03 17:03:20 ----D---- C:\Program Files (x86)\Common Files\System
2012-12-03 17:03:19 ----RSD---- C:\Windows\Fonts
2012-12-03 17:03:19 ----D---- C:\Windows\ehome
2012-12-03 17:03:17 ----D---- C:\Windows\SysWOW64\wbem
2012-12-03 17:03:17 ----D---- C:\Windows\PolicyDefinitions
2012-12-03 15:17:14 ----D---- C:\Windows\Tasks
2012-12-03 15:04:58 ----D---- C:\Program Files (x86)\Common Files\microsoft shared
2012-12-03 14:39:36 ----RD---- C:\Users
2012-12-03 14:39:33 ----D---- C:\Windows\Help
2012-12-03 14:21:09 ----D---- C:\Windows\SysWOW64\drivers
2012-12-03 14:18:38 ----SHD---- C:\$Recycle.Bin
2012-12-03 13:12:41 ----D---- C:\Windows\CSC

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 avc3;avc3; C:\Windows\system32\DRIVERS\avc3.sys []
R0 gzflt;gzflt; C:\Windows\system32\DRIVERS\gzflt.sys []
R0 iaStor;Intel AHCI Controller; C:\Windows\system32\DRIVERS\iaStor.sys []
R0 iaStorA;iaStorA; C:\Windows\system32\DRIVERS\iaStorA.sys []
R0 iaStorF;iaStorF; C:\Windows\system32\DRIVERS\iaStorF.sys []
R0 iusb3hcs;Pilote de commutateur de contrôleur d'hôte Intel(R) USB 3.0; C:\Windows\system32\DRIVERS\iusb3hcs.sys []
R0 rdyboost;ReadyBoost; C:\Windows\System32\drivers\rdyboost.sys []
R0 trufos;trufos; C:\Windows\system32\DRIVERS\trufos.sys []
R1 BdfNdisf;BitDefender Firewall NDIS 6 Filter Driver; \??\c:\program files\common files\bitdefender\bitdefender firewall\bdfndisf6.sys [2012-07-06 93160]
R1 bdfwfpf;bdfwfpf; \??\C:\Program Files\Common Files\Bitdefender\Bitdefender Firewall\bdfwfpf.sys [2011-11-14 103504]
R1 BDVEDISK;BDVEDISK; C:\Windows\system32\DRIVERS\bdvedisk.sys []
R1 CSC;@%systemroot%\system32\cscsvc.dll,-202; C:\Windows\system32\drivers\csc.sys []
R1 dtsoftbus01;DAEMON Tools Virtual Bus Driver; C:\Windows\system32\DRIVERS\dtsoftbus01.sys []
R3 asmthub3;ASMedia USB3 Hub Service; C:\Windows\system32\DRIVERS\asmthub3.sys []
R3 asmtxhci;ASMEDIA XHCI Service; C:\Windows\system32\DRIVERS\asmtxhci.sys []
R3 avckf;avckf; C:\Windows\system32\DRIVERS\avckf.sys []
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\Windows\system32\drivers\RTKVHD64.sys []
R3 iusb3hub;Pilote de concentrateur Intel(R) USB 3.0; C:\Windows\system32\DRIVERS\iusb3hub.sys []
R3 iusb3xhc;Pilote du contrôleur d'hôte extensible Intel(R) USB 3.0; C:\Windows\system32\DRIVERS\iusb3xhc.sys []
R3 LADF_CaptureOnly;LADF Capture Filter Driver; C:\Windows\system32\DRIVERS\ladfGSCamd64.sys []
R3 LADF_RenderOnly;LADF Render Filter Driver; C:\Windows\system32\DRIVERS\ladfGSRamd64.sys []
R3 LGBusEnum;Logitech GamePanel Virtual Bus Enumerator Driver; C:\Windows\system32\drivers\LGBusEnum.sys []
R3 LGSHidFilt;Logitech Gaming KMDF HID Filter Driver; C:\Windows\system32\DRIVERS\LGSHidFilt.Sys []
R3 LGVirHid;Logitech Gamepanel Virtual HID Device Driver; C:\Windows\system32\drivers\LGVirHid.sys []
R3 MBAMProtector;MBAMProtector; \??\C:\Windows\system32\drivers\mbam.sys []
R3 MEIx64;Intel(R) Management Engine Interface ; C:\Windows\system32\DRIVERS\HECIx64.sys []
R3 NVHDA;Service for NVIDIA High Definition Audio Driver; C:\Windows\system32\drivers\nvhda64v.sys []
R3 RTL8167;Realtek 8167 NT Driver; C:\Windows\system32\DRIVERS\Rt64win7.sys []
S3 BDSandBox;BDSandBox; \??\C:\Windows\system32\drivers\bdsandbox.sys []
S3 dmvsc;dmvsc; C:\Windows\system32\drivers\dmvsc.sys []
S3 driverhardwarev2x64;driverhardwarev2x64; \??\C:\Program Files\ma-config.com\Drivers\driverhardwarev2x64.sys [2011-07-21 16640]
S3 pciide;pciide; C:\Windows\system32\drivers\pciide.sys []
S3 RDPDR;Terminal Server Device Redirector Driver; C:\Windows\System32\drivers\rdpdr.sys []
S3 RT2500;RT2500 Wireless Driver; C:\Windows\system32\DRIVERS\RT2500.sys []
S3 s3cap;s3cap; C:\Windows\system32\drivers\vms3cap.sys []
S3 storvsc;storvsc; C:\Windows\system32\drivers\storvsc.sys []
S3 TsUsbFlt;TsUsbFlt; C:\Windows\system32\drivers\tsusbflt.sys []
S3 TsUsbGD;Remote Desktop Generic USB Device; C:\Windows\system32\drivers\TsUsbGD.sys []
S3 usbscan;Pilote de scanneur USB; C:\Windows\system32\DRIVERS\usbscan.sys []
S3 vmbus;vmbus; C:\Windows\system32\drivers\vmbus.sys []
S3 VMBusHID;VMBusHID; C:\Windows\system32\drivers\VMBusHID.sys []

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 AdobeARMservice;Adobe Acrobat Update Service; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [2012-09-23 65192]
R2 CscService;@%systemroot%\system32\cscsvc.dll,-200; C:\Windows\System32\svchost.exe [2009-07-14 20992]
R2 IAStorDataMgrSvc;Technologie de stockage Intel(R) Rapid; C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe [2012-09-01 14904]
R2 Intel(R) Capability Licensing Service Interface;Intel(R) Capability Licensing Service Interface; C:\Program Files\Intel\iCLS Client\HeciServer.exe [2012-04-20 635104]
R2 jhi_service;Intel(R) Dynamic Application Loader Host Interface Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [2012-07-18 165760]
R2 LMS;Intel(R) Management and Security Application Local Management Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe [2012-07-18 276864]
R2 MBAMScheduler;MBAMScheduler; C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe [2012-09-29 399432]
R2 MBAMService;MBAMService; C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe [2012-09-29 676936]
R2 nvsvc;NVIDIA Display Driver Service; C:\Windows\system32\nvvsvc.exe []
R2 SafeBox;SafeBox; C:\Program Files\Bitdefender\Bitdefender SafeBox\safeboxservice.exe [2012-06-25 95184]
R2 Stereo Service;NVIDIA Stereoscopic 3D Driver Service; C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe [2012-11-30 382824]
R2 UNS;Intel(R) Management and Security Application User Notification Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe [2012-07-18 364416]
R2 UPDATESRV;Bitdefender Desktop Update Service; C:\Program Files\Bitdefender\Bitdefender 2013\updatesrv.exe [2012-10-05 68416]
R2 VSSERV;Bitdefender Virus Shield; C:\Program Files\Bitdefender\Bitdefender 2013\vsserv.exe [2012-10-12 1637112]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-03-18 130384]
S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2010-03-18 138576]
S2 nvUpdatusService;NVIDIA Update Service Daemon; C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe [2012-12-03 1259880]
S2 SkypeUpdate;Skype Updater; C:\Program Files (x86)\Skype\Updater\Updater.exe [2012-11-09 160944]
S3 AppMgmt;@appmgmts.dll,-3250; C:\Windows\system32\svchost.exe [2009-07-14 20992]
S3 maconfservice;Ma-Config Service; C:\Program Files\ma-config.com\x64\maconfservice.exe [2012-10-28 427976]
S3 MozillaMaintenance;Mozilla Maintenance Service; C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe [2012-11-29 115168]
S3 PeerDistSvc;@%SystemRoot%\system32\peerdistsvc.dll,-9000; C:\Windows\System32\svchost.exe [2009-07-14 20992]
S3 StorSvc;@%SystemRoot%\System32\StorSvc.dll,-100; C:\Windows\System32\svchost.exe [2009-07-14 20992]
S3 WatAdminSvc;@%SystemRoot%\system32\Wat\WatUX.exe,-601; C:\Windows\system32\Wat\WatAdminSvc.exe []
S4 BdDesktopParental;Bitdefender Desktop Parental Control; C:\Program Files\Bitdefender\Bitdefender 2013\bdparentalservice.exe [2012-10-18 65344]
S4 UmRdpService;Redirecteur de port du mode utilisateur des services Bureau à distance; C:\Windows\System32\svchost.exe [2009-07-14 20992]

-----------------EOF-----------------

Bien a vous !
Merci!

Publicité
mipierre
 Posté le 14/12/2012 à 09:34 
Aller en bas de la page Revenir au message précédent Revenir en haut de la page
  Maître astucien

Bonjour !

Fais ce qui est demandé ici :

https://forum.pcastuces.com/aide_au_diagnostic_un_pc_infecte_pcastuces-f25s17490.htm

Hijackthis n'est plus employé sur le forum !

Reviens nous avec les trois rapports demandés.

A te lire.

kolkoz
 Posté le 14/12/2012 à 12:18 
Aller en bas de la page Revenir au message précédent Revenir en haut de la page
Nouvel astucien

Bonjour!

Merci pour le coup de main . Voici les 3 rapports demandés:

1/Fichier joint : ZHPDiag.txt

2/Malwarbyte : MBRCheck, version 1.2.3
(c) 2010, AD

Command-line:
Windows Version: Windows 7 Professional
Windows Information: Service Pack 1 (build 7601), 64-bit
Base Board Manufacturer: ASUSTeK COMPUTER INC.
BIOS Manufacturer: American Megatrends Inc.
System Manufacturer: System manufacturer
System Product Name: System Product Name
Logical Drives Mask: 0x0000003c

Kernel Drivers (total 200):
0x03053000 \SystemRoot\system32\ntoskrnl.exe
0x0300A000 \SystemRoot\system32\hal.dll
0x00BB4000 \SystemRoot\system32\kdcom.dll
0x00C19000 \SystemRoot\system32\mcupdate_GenuineIntel.dll
0x00C68000 \SystemRoot\system32\PSHED.dll
0x00C7C000 \SystemRoot\system32\CLFS.SYS
0x00CDA000 \SystemRoot\system32\CI.dll
0x00E5A000 \SystemRoot\system32\drivers\Wdf01000.sys
0x00F1C000 \SystemRoot\system32\drivers\WDFLDR.SYS
0x00F2C000 \SystemRoot\system32\drivers\ACPI.sys
0x00F83000 \SystemRoot\system32\drivers\WMILIB.SYS
0x00F8C000 \SystemRoot\system32\drivers\msisadrv.sys
0x00F96000 \SystemRoot\system32\drivers\pci.sys
0x00FC9000 \SystemRoot\system32\drivers\vdrvroot.sys
0x00FD6000 \SystemRoot\system32\DRIVERS\iusb3hcs.sys
0x00FE0000 \SystemRoot\System32\drivers\partmgr.sys
0x00E00000 \SystemRoot\system32\drivers\volmgr.sys
0x00D9A000 \SystemRoot\System32\drivers\volmgrx.sys
0x00E15000 \SystemRoot\System32\drivers\mountmgr.sys
0x0100A000 \SystemRoot\system32\DRIVERS\iaStor.sys
0x013AE000 \SystemRoot\system32\drivers\atapi.sys
0x013B7000 \SystemRoot\system32\drivers\ataport.SYS
0x013E1000 \SystemRoot\system32\drivers\msahci.sys
0x013EC000 \SystemRoot\system32\drivers\PCIIDEX.SYS
0x0147A000 \SystemRoot\system32\DRIVERS\iaStorA.sys
0x01745000 \SystemRoot\system32\DRIVERS\storport.sys
0x017A8000 \SystemRoot\system32\drivers\amdxata.sys
0x017B3000 \SystemRoot\system32\drivers\fltmgr.sys
0x01400000 \SystemRoot\system32\drivers\fileinfo.sys
0x018C9000 \SystemRoot\system32\DRIVERS\avc3.sys
0x0197A000 \SystemRoot\system32\DRIVERS\gzflt.sys
0x01800000 \SystemRoot\system32\DRIVERS\trufos.sys
0x01A3A000 \SystemRoot\System32\Drivers\Ntfs.sys
0x01860000 \SystemRoot\System32\Drivers\msrpc.sys
0x01BDD000 \SystemRoot\System32\Drivers\ksecdd.sys
0x01C93000 \SystemRoot\System32\Drivers\cng.sys
0x01D05000 \SystemRoot\System32\drivers\pcw.sys
0x01D16000 \SystemRoot\System32\Drivers\Fs_Rec.sys
0x01E3C000 \SystemRoot\system32\drivers\ndis.sys
0x01F2E000 \SystemRoot\system32\drivers\NETIO.SYS
0x01F8E000 \SystemRoot\System32\Drivers\ksecpkg.sys
0x020C4000 \SystemRoot\System32\drivers\tcpip.sys
0x022C5000 \SystemRoot\System32\drivers\fwpkclnt.sys
0x0230F000 \SystemRoot\system32\drivers\vmstorfl.sys
0x0231F000 \SystemRoot\system32\drivers\volsnap.sys
0x0236B000 \SystemRoot\System32\Drivers\spldr.sys
0x02373000 \SystemRoot\SysWOW64\speedfan.sys
0x0237D000 \SystemRoot\System32\drivers\rdyboost.sys
0x023B7000 \SystemRoot\System32\Drivers\mup.sys
0x023C9000 \SystemRoot\system32\DRIVERS\iaStorF.sys
0x023D4000 \SystemRoot\System32\drivers\hwpolicy.sys
0x02000000 \SystemRoot\System32\DRIVERS\fvevol.sys
0x0203A000 \SystemRoot\system32\drivers\disk.sys
0x02050000 \SystemRoot\system32\drivers\CLASSPNP.SYS
0x04A00000 \SystemRoot\system32\DRIVERS\dtsoftbus01.sys
0x04A49000 \SystemRoot\system32\DRIVERS\cdrom.sys
0x04A73000 \SystemRoot\System32\Drivers\Null.SYS
0x04A7C000 \SystemRoot\System32\Drivers\Beep.SYS
0x04A83000 \SystemRoot\System32\drivers\vga.sys
0x04A91000 \SystemRoot\System32\drivers\VIDEOPRT.SYS
0x04AB6000 \SystemRoot\System32\drivers\watchdog.sys
0x04AC6000 \SystemRoot\System32\DRIVERS\RDPCDD.sys
0x04ACF000 \SystemRoot\system32\drivers\rdpencdd.sys
0x04AD8000 \SystemRoot\system32\drivers\rdprefmp.sys
0x04AE1000 \SystemRoot\System32\Drivers\Msfs.SYS
0x04AEC000 \SystemRoot\System32\Drivers\Npfs.SYS
0x02098000 \??\c:\program files\common files\bitdefender\bitdefender firewall\bdfndisf6.sys
0x01FB8000 \??\C:\Program Files\Common Files\Bitdefender\Bitdefender Firewall\bdfwfpf.sys
0x04DDB000 \SystemRoot\system32\DRIVERS\tdx.sys
0x023DD000 \SystemRoot\system32\DRIVERS\TDI.SYS
0x01D20000 \SystemRoot\system32\drivers\afd.sys
0x01DA9000 \SystemRoot\System32\DRIVERS\netbt.sys
0x023EA000 \SystemRoot\system32\DRIVERS\wfplwf.sys
0x01FE0000 \SystemRoot\system32\DRIVERS\netbios.sys
0x01E00000 \SystemRoot\system32\DRIVERS\serial.sys
0x01E1D000 \SystemRoot\system32\DRIVERS\termdd.sys
0x01C00000 \SystemRoot\system32\DRIVERS\rdbss.sys
0x023F3000 \SystemRoot\system32\drivers\nsiproxy.sys
0x01E31000 \SystemRoot\system32\DRIVERS\mssmbios.sys
0x01FEF000 \SystemRoot\System32\drivers\discache.sys
0x076F8000 \SystemRoot\system32\drivers\csc.sys
0x0777B000 \SystemRoot\System32\Drivers\dfsc.sys
0x07799000 \SystemRoot\system32\DRIVERS\blbdrive.sys
0x077AA000 \SystemRoot\system32\DRIVERS\bdvedisk.sys
0x077C0000 \SystemRoot\system32\DRIVERS\tunnel.sys
0x07C1A000 \SystemRoot\system32\DRIVERS\nvlddmkm.sys
0x07600000 \SystemRoot\System32\drivers\dxgkrnl.sys
0x0873B000 \SystemRoot\System32\drivers\dxgmms1.sys
0x08781000 \SystemRoot\system32\DRIVERS\HDAudBus.sys
0x078D7000 \SystemRoot\system32\DRIVERS\iusb3xhc.sys
0x0799C000 \SystemRoot\system32\DRIVERS\USBD.SYS
0x0799E000 \SystemRoot\system32\DRIVERS\HECIx64.sys
0x079B1000 \SystemRoot\system32\drivers\usbehci.sys
0x07800000 \SystemRoot\system32\drivers\USBPORT.SYS
0x08AAB000 \SystemRoot\system32\DRIVERS\Rt64win7.sys
0x08B5E000 \SystemRoot\system32\DRIVERS\asmtxhci.sys
0x08BC6000 \SystemRoot\system32\DRIVERS\serenum.sys
0x08BD2000 \SystemRoot\system32\DRIVERS\wmiacpi.sys
0x08BDB000 \SystemRoot\system32\DRIVERS\intelppm.sys
0x08A00000 \SystemRoot\system32\DRIVERS\CompositeBus.sys
0x08A10000 \SystemRoot\system32\DRIVERS\AgileVpn.sys
0x08A26000 \SystemRoot\system32\DRIVERS\rasl2tp.sys
0x08A4A000 \SystemRoot\system32\DRIVERS\ndistapi.sys
0x08A56000 \SystemRoot\system32\DRIVERS\ndiswan.sys
0x08A85000 \SystemRoot\system32\DRIVERS\raspppoe.sys
0x07856000 \SystemRoot\system32\DRIVERS\raspptp.sys
0x07877000 \SystemRoot\system32\DRIVERS\rassstp.sys
0x08AA0000 \SystemRoot\system32\DRIVERS\rdpbus.sys
0x08BF1000 \SystemRoot\system32\DRIVERS\kbdclass.sys
0x07891000 \SystemRoot\system32\DRIVERS\mouclass.sys
0x078A0000 \SystemRoot\system32\DRIVERS\swenum.sys
0x087A5000 \SystemRoot\system32\DRIVERS\ks.sys
0x078A2000 \SystemRoot\system32\drivers\LGBusEnum.sys
0x078A6000 \SystemRoot\system32\DRIVERS\umbus.sys
0x01414000 \SystemRoot\system32\DRIVERS\usbhub.sys
0x078B8000 \SystemRoot\System32\Drivers\NDProxy.SYS
0x079C2000 \SystemRoot\system32\drivers\nvhda64v.sys
0x01C51000 \SystemRoot\system32\drivers\portcls.sys
0x01A00000 \SystemRoot\system32\drivers\drmk.sys
0x079F4000 \SystemRoot\system32\drivers\ksthunk.sys
0x09813000 \SystemRoot\system32\DRIVERS\iusb3hub.sys
0x09A6A000 \SystemRoot\system32\drivers\RTKVHD64.sys
0x09EE9000 \SystemRoot\System32\Drivers\crashdmp.sys
0x09EF7000 \SystemRoot\System32\Drivers\dump_diskdump.sys
0x04AFD000 \SystemRoot\System32\Drivers\dump_iaStorA.sys
0x09F01000 \SystemRoot\System32\Drivers\dump_dumpfve.sys
0x00090000 \SystemRoot\System32\win32k.sys
0x09F14000 \SystemRoot\System32\drivers\Dxapi.sys
0x09F20000 \SystemRoot\system32\DRIVERS\asmthub3.sys
0x09F45000 \SystemRoot\system32\DRIVERS\monitor.sys
0x00520000 \SystemRoot\System32\TSDDD.dll
0x00760000 \SystemRoot\System32\cdd.dll
0x09F53000 \SystemRoot\system32\DRIVERS\usbccgp.sys
0x09F70000 \SystemRoot\system32\drivers\usbaudio.sys
0x09F8B000 \SystemRoot\system32\DRIVERS\ladfGSRamd64.sys
0x09A00000 \SystemRoot\system32\DRIVERS\ladfGSCamd64.sys
0x09FDD000 \SystemRoot\system32\DRIVERS\hidusb.sys
0x09870000 \SystemRoot\system32\DRIVERS\HIDCLASS.SYS
0x09FEB000 \SystemRoot\system32\DRIVERS\HIDPARSE.SYS
0x09889000 \SystemRoot\system32\DRIVERS\LGSHidFilt.Sys
0x0989E000 \SystemRoot\system32\DRIVERS\mouhid.sys
0x098AB000 \SystemRoot\system32\DRIVERS\kbdhid.sys
0x098B9000 \SystemRoot\system32\drivers\luafv.sys
0x09FF4000 \??\C:\Windows\system32\drivers\mbam.sys
0x098DC000 \SystemRoot\system32\DRIVERS\avckf.sys
0x0996E000 \SystemRoot\system32\DRIVERS\nwifi.sys
0x099C1000 \SystemRoot\system32\DRIVERS\ndisuio.sys
0x09634000 \SystemRoot\system32\drivers\HTTP.sys
0x096FD000 \SystemRoot\system32\DRIVERS\bowser.sys
0x0971B000 \SystemRoot\System32\drivers\mpsdrv.sys
0x09733000 \SystemRoot\system32\DRIVERS\mrxsmb.sys
0x09760000 \SystemRoot\system32\DRIVERS\mrxsmb10.sys
0x097AE000 \SystemRoot\system32\DRIVERS\mrxsmb20.sys
0x0BC16000 \SystemRoot\system32\drivers\peauth.sys
0x0BCBC000 \SystemRoot\System32\Drivers\secdrv.SYS
0x0BCC7000 \SystemRoot\System32\DRIVERS\srvnet.sys
0x0BCF8000 \SystemRoot\System32\drivers\tcpipreg.sys
0x0BD0A000 \SystemRoot\System32\DRIVERS\srv2.sys
0x0C094000 \SystemRoot\System32\DRIVERS\srv.sys
0x0C12C000 \SystemRoot\system32\drivers\LGVirHid.sys
0x77110000 \Windows\System32\ntdll.dll
0x478D0000 \Windows\System32\smss.exe
0xFF430000 \Windows\System32\apisetschema.dll
0xFF260000 \Windows\System32\autochk.exe
0xFF3B0000 \Windows\System32\gdi32.dll
0xFF380000 \Windows\System32\imm32.dll
0xFF170000 \Windows\System32\ole32.dll
0xFF0F0000 \Windows\System32\difxapi.dll
0xFF020000 \Windows\System32\usp10.dll
0xFF000000 \Windows\System32\imagehlp.dll
0x76FB0000 \Windows\System32\wininet.dll
0xFEFE0000 \Windows\System32\sechost.dll
0xFEED0000 \Windows\System32\msctf.dll
0xFEE50000 \Windows\System32\shlwapi.dll
0xFEDB0000 \Windows\System32\msvcrt.dll
0x76E60000 \Windows\System32\urlmon.dll
0xFEC80000 \Windows\System32\rpcrt4.dll
0xFEC30000 \Windows\System32\ws2_32.dll
0x772E0000 \Windows\System32\psapi.dll
0xFDEA0000 \Windows\System32\shell32.dll
0xFDE00000 \Windows\System32\comdlg32.dll
0xFDDF0000 \Windows\System32\nsi.dll
0x76D60000 \Windows\System32\user32.dll
0x76C40000 \Windows\System32\kernel32.dll
0xFDD50000 \Windows\System32\clbcatq.dll
0xFDB70000 \Windows\System32\setupapi.dll
0xFDB60000 \Windows\System32\lpk.dll
0xFDA80000 \Windows\System32\advapi32.dll
0xFD9A0000 \Windows\System32\oleaut32.dll
0x76A30000 \Windows\System32\iertutil.dll
0x772D0000 \Windows\System32\normaliz.dll
0xFD940000 \Windows\System32\Wldap32.dll
0xFD920000 \Windows\System32\devobj.dll
0xFD8E0000 \Windows\System32\wintrust.dll
0xFD870000 \Windows\System32\KernelBase.dll
0xFD700000 \Windows\System32\crypt32.dll
0xFD6C0000 \Windows\System32\cfgmgr32.dll
0xFD620000 \Windows\System32\comctl32.dll
0xFD610000 \Windows\System32\msasn1.dll
0x75960000 \Windows\SysWOW64\normaliz.dll

Processes (total 65):
0 System Idle Process
4 System
324 C:\Windows\System32\smss.exe
568 csrss.exe
644 C:\Windows\System32\wininit.exe
656 csrss.exe
700 C:\Windows\System32\services.exe
732 C:\Windows\System32\winlogon.exe
744 C:\Windows\System32\lsass.exe
752 C:\Windows\System32\lsm.exe
860 C:\Windows\System32\svchost.exe
920 C:\Program Files\Bitdefender\Bitdefender 2013\vsserv.exe
1032 C:\Windows\System32\nvvsvc.exe
1080 C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
1136 C:\Windows\System32\svchost.exe
1236 C:\Windows\System32\svchost.exe
1276 C:\Windows\System32\svchost.exe
1308 C:\Windows\System32\svchost.exe
1392 C:\Windows\System32\audiodg.exe
1456 C:\Windows\System32\svchost.exe
1584 C:\Windows\System32\svchost.exe
1756 C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
1768 C:\Windows\System32\nvvsvc.exe
1880 C:\Windows\System32\spoolsv.exe
1912 C:\Windows\System32\svchost.exe
2004 C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
1220 C:\Program Files\Intel\iCLS Client\HeciServer.exe
1568 C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\Jhi_service.exe
1320 C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe
1324 C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe
2156 C:\Windows\System32\svchost.exe
2192 C:\Program Files\Bitdefender\Bitdefender 2013\updatesrv.exe
2248 C:\Program Files\Bitdefender\Bitdefender Safebox\safeboxservice.exe
2700 C:\Windows\System32\svchost.exe
1736 C:\Windows\System32\taskhost.exe
3052 C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe
1844 C:\Windows\System32\dwm.exe
1616 C:\Windows\explorer.exe
3212 C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe
3460 C:\Program Files\Logitech Gaming Software\LCore.exe
3468 C:\Program Files\Bitdefender\Bitdefender 2013\bdagent.exe
3700 C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
3968 C:\Users\SkyTribe\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe
4056 C:\Windows\System32\spool\drivers\x64\3\E_IATIGCE.EXE
1360 C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe
4520 C:\Windows\System32\SearchIndexer.exe
4880 C:\Windows\System32\SearchProtocolHost.exe
2624 C:\Windows\System32\svchost.exe
4416 C:\Program Files (x86)\Mozilla Firefox\firefox.exe
4972 C:\Program Files (x86)\Mozilla Firefox\plugin-container.exe
4256 C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_11_5_502_110.exe
3436 C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_11_5_502_110.exe
3596 C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
3372 C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
4800 C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
2456 C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
2116 C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
4000 C:\Windows\System32\SearchFilterHost.exe
4996 C:\Windows\System32\wbem\WMIADAP.exe
4672 WmiPrvSE.exe
3876 WmiPrvSE.exe
3988 dllhost.exe
4868 dllhost.exe
4752 C:\Program Files (x86)\ZHPDiag\mbrcheck.exe
3452 C:\Windows\System32\conhost.exe

\\.\C: --> \\.\PhysicalDrive0 at offset 0x00000000`00100000 (NTFS)
\\.\D: --> \\.\PhysicalDrive1 at offset 0x00000000`06500000 (NTFS)

PhysicalDrive0 Model Number: INTELSSDSC2CT060A3
PhysicalDrive1 Model Number: WDCWD5000AZRX-00A8LB0, Rev: 01.01A01

Size Device Name MBR Status
--------------------------------------------
55 GB \\.\PhysicalDrive0 Windows 7 MBR code detected
SHA1: 4379A3D43019B46FA357F7DD6A53B45A3CA8FB79
465 GB \\.\PhysicalDrive1 Windows 7 MBR code detected
SHA1: 4379A3D43019B46FA357F7DD6A53B45A3CA8FB79


Done!

3/ adwcleaner : # AdwCleaner v2.100 - Rapport créé le 14/12/2012 à 12:00:57
# Mis à jour le 09/12/2012 par Xplode
# Système d'exploitation : Windows 7 Professional Service Pack 1 (64 bits)
# Nom d'utilisateur : SkyTribe - SKYTRIBE3224101
# Mode de démarrage : Normal
# Exécuté depuis : C:\Users\SkyTribe\Desktop\AdwCleaner.exe
# Option [Suppression]


***** [Services] *****


***** [Fichiers / Dossiers] *****


***** [Registre] *****


***** [Navigateurs] *****

-\\ Internet Explorer v9.0.8112.16421

[OK] Le registre ne contient aucune entrée illégitime.

-\\ Mozilla Firefox v17.0.1 (fr)

Nom du profil : default
Fichier : C:\Users\SkyTribe\AppData\Roaming\Mozilla\Firefox\Profiles\kxzgwoen.default\prefs.js

[OK] Le fichier ne contient aucune entrée illégitime.

*************************

AdwCleaner[R1].txt - [939 octets] - [14/12/2012 12:00:50]
AdwCleaner[S1].txt - [873 octets] - [14/12/2012 12:00:57]

########## EOF - C:\AdwCleaner[S1].txt - [932 octets] ##########

Bien a vous

Merci !



Modifié par kolkoz le 14/12/2012 12:22
kolkoz
 Posté le 14/12/2012 à 17:56 
Aller en bas de la page Revenir au message précédent Revenir en haut de la page
Nouvel astucien

Ah oui et par moment mon antivirus(bitdefer total security 2013 acheté) se desactive tout seul, et je suis obligé de redémarrer pour qu'il se réactive ..

Bizard bizard !

Anonyme
 Posté le 14/12/2012 à 18:17 
Aller en bas de la page Revenir au message précédent Revenir en haut de la page
Nouvel astucien

Bonsoir

la quarantaine de Malwarebytes est pleine à craquer et vous postez pas le rapport.

O61 - LFC:Last File Created 13/12/2012 - 08:34:10 ---A- C:\Users\SkyTribe\AppData\Roaming\Malwarebytes\Malwarebytes' Anti-Malware\Logs\mbam-log-2012-12-12 (23-37-35).txt [8268]
O61 - LFC:Last File Created 13/12/2012 - 08:34:10 ---A- C:\Users\SkyTribe\AppData\Roaming\Malwarebytes\Malwarebytes' Anti-Malware\Quarantine\0732930061.data [829]
O61 - LFC:Last File Created 13/12/2012 - 08:34:10 ---A- C:\Users\SkyTribe\AppData\Roaming\Malwarebytes\Malwarebytes' Anti-Malware\Quarantine\0732930061.quar [415336]
O61 - LFC:Last File Created 13/12/2012 - 08:34:10 ---A- C:\Users\SkyTribe\AppData\Roaming\Malwarebytes\Malwarebytes' Anti-Malware\Quarantine\1319402769.data [834]
O61 - LFC:Last File Created 13/12/2012 - 08:34:10 ---A- C:\Users\SkyTribe\AppData\Roaming\Malwarebytes\Malwarebytes' Anti-Malware\Quarantine\1319402769.quar [274248]
O61 - LFC:Last File Created 13/12/2012 - 08:34:10 ---A- C:\Users\SkyTribe\AppData\Roaming\Malwarebytes\Malwarebytes' Anti-Malware\Quarantine\1505811752.data [819]
O61 - LFC:Last File Created 13/12/2012 - 08:34:10 ---A- C:\Users\SkyTribe\AppData\Roaming\Malwarebytes\Malwarebytes' Anti-Malware\Quarantine\1505811752.quar [769096]
O61 - LFC:Last File Created 13/12/2012 - 08:34:10 ---A- C:\Users\SkyTribe\AppData\Roaming\Malwarebytes\Malwarebytes' Anti-Malware\Quarantine\1696823308.data [824]
O61 - LFC:Last File Created 13/12/2012 - 08:34:10 ---A- C:\Users\SkyTribe\AppData\Roaming\Malwarebytes\Malwarebytes' Anti-Malware\Quarantine\1696823308.quar [2020192]
O61 - LFC:Last File Created 13/12/2012 - 08:34:10 ---A- C:\Users\SkyTribe\AppData\Roaming\Malwarebytes\Malwarebytes' Anti-Malware\Quarantine\2171037428.data [812]
O61 - LFC:Last File Created 13/12/2012 - 08:34:10 ---A- C:\Users\SkyTribe\AppData\Roaming\Malwarebytes\Malwarebytes' Anti-Malware\Quarantine\2171037428.quar [261640]
O61 - LFC:Last File Created 13/12/2012 - 08:34:10 ---A- C:\Users\SkyTribe\AppData\Roaming\Malwarebytes\Malwarebytes' Anti-Malware\Quarantine\3287003228.data [809]
O61 - LFC:Last File Created 13/12/2012 - 08:34:10 ---A- C:\Users\SkyTribe\AppData\Roaming\Malwarebytes\Malwarebytes' Anti-Malware\Quarantine\3287003228.quar [4188384]
O61 - LFC:Last File Created 13/12/2012 - 08:34:10 ---A- C:\Users\SkyTribe\AppData\Roaming\Malwarebytes\Malwarebytes' Anti-Malware\Quarantine\5117501780.data [835]
O61 - LFC:Last File Created 13/12/2012 - 08:34:10 ---A- C:\Users\SkyTribe\AppData\Roaming\Malwarebytes\Malwarebytes' Anti-Malware\Quarantine\5117501780.quar [4368488]
O61 - LFC:Last File Created 13/12/2012 - 08:34:10 ---A- C:\Users\SkyTribe\AppData\Roaming\Malwarebytes\Malwarebytes' Anti-Malware\Quarantine\5717432149.data [829]
O61 - LFC:Last File Created 13/12/2012 - 08:34:10 ---A- C:\Users\SkyTribe\AppData\Roaming\Malwarebytes\Malwarebytes' Anti-Malware\Quarantine\5717432149.quar [316464]
O61 - LFC:Last File Created 13/12/2012 - 08:34:10 ---A- C:\Users\SkyTribe\AppData\Roaming\Malwarebytes\Malwarebytes' Anti-Malware\Quarantine\6053528881.data [805]
O61 - LFC:Last File Created 13/12/2012 - 08:34:10 ---A- C:\Users\SkyTribe\AppData\Roaming\Malwarebytes\Malwarebytes' Anti-Malware\Quarantine\6053528881.quar [14694720]
O61 - LFC:Last File Created 13/12/2012 - 08:34:10 ---A- C:\Users\SkyTribe\AppData\Roaming\Malwarebytes\Malwarebytes' Anti-Malware\Quarantine\6815775673.data [721]
O61 - LFC:Last File Created 13/12/2012 - 08:34:10 ---A- C:\Users\SkyTribe\AppData\Roaming\Malwarebytes\Malwarebytes' Anti-Malware\Quarantine\6815775673.quar [695296]
O61 - LFC:Last File Created 13/12/2012 - 08:34:10 ---A- C:\Users\SkyTribe\AppData\Roaming\Malwarebytes\Malwarebytes' Anti-Malware\Quarantine\7358724583.data [809]
O61 - LFC:Last File Created 13/12/2012 - 08:34:10 ---A- C:\Users\SkyTribe\AppData\Roaming\Malwarebytes\Malwarebytes' Anti-Malware\Quarantine\7358724583.quar [925904]
O61 - LFC:Last File Created 13/12/2012 - 08:34:10 ---A- C:\Users\SkyTribe\AppData\Roaming\Malwarebytes\Malwarebytes' Anti-Malware\Quarantine\7363835127.data [834]
O61 - LFC:Last File Created 13/12/2012 - 08:34:10 ---A- C:\Users\SkyTribe\AppData\Roaming\Malwarebytes\Malwarebytes' Anti-Malware\Quarantine\7363835127.quar [894784]
O61 - LFC:Last File Created 13/12/2012 - 08:34:10 ---A- C:\Users\SkyTribe\AppData\Roaming\Malwarebytes\Malwarebytes' Anti-Malware\Quarantine\7428708480.data [835]
O61 - LFC:Last File Created 13/12/2012 - 08:34:10 ---A- C:\Users\SkyTribe\AppData\Roaming\Malwarebytes\Malwarebytes' Anti-Malware\Quarantine\7428708480.quar [2246728]
O61 - LFC:Last File Created 13/12/2012 - 08:34:10 ---A- C:\Users\SkyTribe\AppData\Roaming\Malwarebytes\Malwarebytes' Anti-Malware\Quarantine\8276628931.data [828]
O61 - LFC:Last File Created 13/12/2012 - 08:34:10 ---A- C:\Users\SkyTribe\AppData\Roaming\Malwarebytes\Malwarebytes' Anti-Malware\Quarantine\8276628931.quar [316488]
O61 - LFC:Last File Created 13/12/2012 - 08:34:10 ---A- C:\Users\SkyTribe\AppData\Roaming\Malwarebytes\Malwarebytes' Anti-Malware\Quarantine\8638853609.data [825]
O61 - LFC:Last File Created 13/12/2012 - 08:34:10 ---A- C:\Users\SkyTribe\AppData\Roaming\Malwarebytes\Malwarebytes' Anti-Malware\Quarantine\8638853609.quar [301648]
O61 - LFC:Last File Created 13/12/2012 - 08:34:10 ---A- C:\Users\SkyTribe\AppData\Roaming\Malwarebytes\Malwarebytes' Anti-Malware\Quarantine\8698999792.data [812]
O61 - LFC:Last File Created 13/12/2012 - 08:34:10 ---A- C:\Users\SkyTribe\AppData\Roaming\Malwarebytes\Malwarebytes' Anti-Malware\Quarantine\8698999792.quar [261968]
O61 - LFC:Last File Created 13/12/2012 - 08:34:10 ---A- C:\Users\SkyTribe\AppData\Roaming\Malwarebytes\Malwarebytes' Anti-Malware\Quarantine\9507133941.data [809]
O61 - LFC:Last File Created 13/12/2012 - 08:34:10 ---A- C:\Users\SkyTribe\AppData\Roaming\Malwarebytes\Malwarebytes' Anti-Malware\Quarantine\9507133941.quar [1450544]

votre rapport ZHPDiag montre la trace d'une infection par USB et la présence de cracks, ce qui est -chez moi- rédhibitoire pour une aide.

O51 - MPSK:{b5fe164d-3d42-11e2-81bd-806e6f6e6963}\AutoRun\command. (...) -- E:\Bin\ASSETUP.exe (.not file.) => Infection USB (Trojan.USB)

D:\Games\-Archive\Final.Fantasy.VII.CRACKED-P2P.part1.rar
D:\Games\-Archive\Final.Fantasy.VII.CRACKED-P2P.part2.rar
D:\Games\-Archive\Final.Fantasy.VII.CRACKED-P2P.part3.rar

Je laisse la place à un collégue plus indulgent que moi si vous supprimez vos cracks.

@+



Modifié par Anonyme le 14/12/2012 18:24
Page : [1] 
Page 1 sur 1

Vous devez être connecté pour participer à la discussion.
Cliquez ici pour vous identifier.

Vous n'avez pas de compte ? Créez-en un gratuitement !
Recevoir PC Astuces par e-mail


La Lettre quotidienne +226 000 inscrits
Avec l'actu, des logiciels, des applis, des astuces, des bons plans, ...

Les bonnes affaires
Une fois par semaine, un récap des meilleurs offres.

Les fonds d'écran
De jolies photos pour personnaliser votre bureau. Une fois par semaine.

Les nouveaux Bons Plans
Des notifications pour ne pas rater les bons plans publiés sur le site.

Les bons plans du moment PC Astuces

Tous les Bons Plans
69,99 €Ecouteurs intra-auriculaires sans fil Bluetooth Jabra Elite 65t à 69,99 €
Valable jusqu'au 22 Juin

Darty fait une promotion sur les écouteurs intra-auriculaires sans fil Bluetooth Jabra Elite 65t qui passent à 69,99 € livrés gratuitement. On les trouve ailleurs à partir de 110 €. Côté son, l'égaliseur personnalisable vous permet d'ajuster le rendu sonore tandis que la technologie avancée à quatre microphones supprime les bruits de fond lors des appels pour des conversations limpides. Au quotidien, ces écouteurs Jabra restent parfaitement en place et proposent même une fonction de commande vocale simplifiée. 

Enfin, vous apprécierez les 5 heures d'autonomie avec une seule charge, qui se transforment en 15 heures avec l'étui de recharge compact.  Les Jabra Elite 65t sont certifiés IP55 et offrent une garantie de 2 ans contre l’humidité et la poussière. Où que vous soyez et quelle que soit votre activité, vous profitez d’une liberté absolue pour les appels et la musique.


> Voir l'offre
8 €Carte Cdiscount à Volonté 1 an (CDAV) à 8 €
Valable jusqu'au 21 Juin

Cdiscount propose actuellement sa carte Cdiscount à Volonté à 8 € seulement au lieu de 29 €. Avec cette carte, vous bénéficiez pendant 1 an de la livraison gratuite en point relais dès 10 € d'achats et à domicile dès 25 € d'achats. Vous avez également accès à plus de 200 titres de presse en ligne en illimité. Vous bénéficiez également de temps en temps des offres et des codes promotionnels exclusifs. Notez que vous pouvez partager gratuitement vos privilèges avec 2 de vos proches.


> Voir l'offre
199,99 €Ecran ultra large LG 29 pouces 29WL500-B à 199,99 €
Valable jusqu'au 20 Juin

Boulanger propose actuellement l'écran 29 pouces LG 29WL500-B à 199,99 € livré gratuitement alors qu'on le trouve à partir de 229 € ailleurs. Cet écran ultra large est au format 21/9, possède une dalle IPS et offre une résolution de 2560 x 1080 pixels. Avec lui, vous pourrez bénéficier d'une plus grande immersion dans les jeux et les films. Cet écran est compatible FreeSync.


> Voir l'offre

Sujets relatifs
POUVEZ VOUS REGARDER MON RAPPORT
pouvez vous regarder mon rapport RSIT svp
Rapport de sécurité correct ?
SOS : rapport HJT s'il vous plait - Merci
rapport HJT s'il vous plaît !
1 p'tit rapport à analyser s'il vous plait. Merci
S'il vous plait...petit rapport HiJack à analyser.
Mon pc semble infecté ou trojé, pourriez-vous help
pouvez vous traduire svp un rapport log bitdefend
hijackthis rapport à regarder s'il vous plait
Plus de sujets relatifs à Est ce que ce rapport vous semble correct ?
 > Tous les forums > Forum Sécurité