فيروس غريب +تقرير

  • بادئ الموضوع بادئ الموضوع ALA39000
  • تاريخ البدء تاريخ البدء
  • المشاهدات 1,198
A

ALA39000

زيزوومى مميز
إنضم
28 يناير 2008
المشاركات
590
مستوى التفاعل
10
النقاط
530
الإقامة
الجزائر
الموقع الالكتروني
www.salemi-ala.tk
غير متصل
فيروس غريب +تقرير

Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 01:00:47, on 09/09/2008
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
C:\Program Files\Alwil Software\Avast4\ashServ.exe
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\system32\inetsrv\inetinfo.exe
C:\Program Files\Fichiers communs\Microsoft Shared\VS7Debug\mdm.exe
C:\Program Files\Network LookOut\Net Monitor for Employees Professional\bin\NLSAgentSvc.exe
C:\WINDOWS\system32\slserv.exe
C:\WINDOWS\System32\snmp.exe
C:\WINDOWS\system32\mqsvc.exe
C:\WINDOWS\system32\mqtgsvc.exe
C:\Program Files\Applications\wcs.exe
C:\Program Files\Applications\iebtm.exe
C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
C:\Program Files\CardDetector\ICON225\CardDetector.exe
C:\WINDOWS\SOUNDMAN.EXE
C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe
C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\SuperCopier\SuperCopier.exe
C:\Program Files\Applications\wcm.exe
C:\Documents and Settings\SUPERTOP.SUPERTOP-CAB90E\Local Settings\Application Data\Google\Update\GoogleUpdate.exe
C:\Program Files\Winstep\nextstart.exe
C:\Program Files\MSN Messenger\MsnMsgr.Exe
C:\Program Files\Applications\iebtmm.exe
C:\Program Files\Orbitdownloader\orbitdm.exe
C:\Program Files\Microsoft Office\Office10\msoffice.exe
C:\Program Files\Orbitdownloader\orbitnet.exe
C:\Program Files\Network LookOut\Net Monitor for Employees Professional\bin\NLSAgent.exe
C:\Program Files\Winstep\workshelf.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\explorer.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Documents and Settings\SUPERTOP.SUPERTOP-CAB90E\Bureau\Zyzoom_HijackThis.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL =
يجب عليك تسجيل الدخول او تسجيل لمشاهدة الرابط المخفي

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL =
يجب عليك تسجيل الدخول او تسجيل لمشاهدة الرابط المخفي

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page =
يجب عليك تسجيل الدخول او تسجيل لمشاهدة الرابط المخفي

R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
O2 - BHO: btorbit.com - {000123B4-9B42-4900-B3F7-F4B073EFC214} - C:\Program Files\Orbitdownloader\orbitcth.dll
O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll
O2 - BHO: (no name) - {0BD44AB1-76A7-4E05-92F4-4B065FE72BD6} - C:\Program Files\Applications\iebt.dll
O2 - BHO: RealPlayer Download and Record Plugin for Internet Explorer - {3049C3E9-B461-4BC5-8870-4C09146192CA} - C:\Program Files\Real\RealPlayer\rpbrowserrecordplugin.dll
O2 - BHO: Windows Live Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O4 - HKLM\..\Run: [MsmqIntCert] regsvr32 /s mqrt.dll
O4 - HKLM\..\Run: [CardDetectorICON225] C:\Program Files\CardDetector\ICON225\CardDetector.exe
O4 - HKLM\..\Run: [SoundMan] SOUNDMAN.EXE
O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe" -osboot
O4 - HKLM\..\Run: [IMJPMIG8.1] "C:\WINDOWS\IME\imjp8_1\IMJPMIG.EXE" /Spoil /RemAdvDef /Migration32
O4 - HKLM\..\Run: [IMEKRMIG6.1] C:\WINDOWS\ime\imkr6_1\IMEKRMIG.EXE
O4 - HKLM\..\Run: [MSPY2002] C:\WINDOWS\system32\IME\PINTLGNT\ImScInst.exe /SYNC
O4 - HKLM\..\Run: [PHIME2002ASync] C:\WINDOWS\system32\IME\TINTLGNT\TINTSETP.EXE /SYNC
O4 - HKLM\..\Run: [PHIME2002A] C:\WINDOWS\system32\IME\TINTLGNT\TINTSETP.EXE /IMEName
O4 - HKLM\..\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [SuperCopier.exe] C:\Program Files\SuperCopier\SuperCopier.exe
O4 - HKCU\..\Run: [Google Update] "C:\Documents and Settings\SUPERTOP.SUPERTOP-CAB90E\Local Settings\Application Data\Google\Update\GoogleUpdate.exe" /c
O4 - HKCU\..\Run: [NextSTART] C:\Program Files\Winstep\nextstart.exe autostart
O4 - HKCU\..\Run: [MsnMsgr] "C:\Program Files\MSN Messenger\MsnMsgr.Exe" /background
O4 - HKLM\..\Policies\Explorer\Run: [smile] C:\Program Files\Applications\wcs.exe
O4 - HKLM\..\Policies\Explorer\Run: [start] C:\Program Files\Applications\iebtm.exe
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE RÉSEAU')
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
O4 - Global Startup: Microsoft Office.lnk = C:\Program Files\Microsoft Office\Office10\OSA.EXE
O4 - Global Startup: Lancement rapide d'Adobe Reader.lnk = C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe
O4 - Global Startup: Orbit.lnk = C:\Program Files\Orbitdownloader\orbitdm.exe
O8 - Extra context menu item: &Download by Orbit - res://C:\Program Files\Orbitdownloader\orbitmxt.dll/201
O8 - Extra context menu item: &Grab video by Orbit - res://C:\Program Files\Orbitdownloader\orbitmxt.dll/204
O8 - Extra context menu item: Do&wnload selected by Orbit - res://C:\Program Files\Orbitdownloader\orbitmxt.dll/203
O8 - Extra context menu item: Down&load all by Orbit - res://C:\Program Files\Orbitdownloader\orbitmxt.dll/202
O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office10\EXCEL.EXE/3000
O9 - Extra button: (no name) - {9034A523-D068-4BE8-A284-9DF278BE776E} -
يجب عليك تسجيل الدخول او تسجيل لمشاهدة الرابط المخفي
(file missing)
O9 - Extra 'Tools' menuitem: IE Anti-Spyware - {9034A523-D068-4BE8-A284-9DF278BE776E} -
يجب عليك تسجيل الدخول او تسجيل لمشاهدة الرابط المخفي
(file missing)
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) -
يجب عليك تسجيل الدخول او تسجيل لمشاهدة الرابط المخفي

O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} (MUWebControl Class) -
يجب عليك تسجيل الدخول او تسجيل لمشاهدة الرابط المخفي

O16 - DPF: {867E13F2-7F31-44FB-AC97-CD38E0DC46EF} (HardwareDetection Control) -
يجب عليك تسجيل الدخول او تسجيل لمشاهدة الرابط المخفي

O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\FICHIE~1\Skype\SKYPE4~1.DLL
O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - ALWIL Software - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
O23 - Service: avast! Antivirus - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashServ.exe
O23 - Service: avast! Mail Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
O23 - Service: avast! Web Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
O23 - Service: Ma-Config Service (maconfservice) - CybelSoft - C:\Program Files\ma-config.com\maconfservice.exe
O23 - Service: Net Monitor for Employees Agent (NMEmployeesAgent) - Unknown owner - C:\Program Files\Network LookOut\Net Monitor for Employees Professional\bin\NLSAgentSvc.exe
O23 - Service: SmartLinkService (SLService) - Smart Link - C:\WINDOWS\SYSTEM32\slserv.exe

--
End of file - 7957 bytes
 

توقيع : ALA39000
ترتيب حسب التاريخ ترتيب حسب الأصوات

عطل جميع برامج الحماية ,,
وحمل هذه الاداة واحفظها على سطح المكتب
يجب عليك تسجيل الدخول او تسجيل لمشاهدة الرابط المخفي

عند تشغيلها بتظهر لك رسالة ,, اضغط على >> Yes
بعدها بتظهر لك رساله ثانيه ,, اضغط على >> Yes
انتظر حتى الاداة تنتهي من فحص جهازك ,,, وبشكل تلقائي يعاد تشغيل جهازك ,,
وبعد اعادة التشغيل ,, سوف تبدأ الاداة بالفحص مرره ثانيه
انتظر حتى يظهر لك تقرير ,, انسخه والصقه بردك القادم




حمل اداة الكاسبر من الرابط التالي

يجب عليك تسجيل الدخول او تسجيل لمشاهدة الرابط المخفي


بعد التحميل ،، دبل كلك وسيتم استخراج ملف الاداة الى مجلد بسطح المكتب لحظات وتبدأ الاداة بالعمل

تابع الشرح لفحص الجهاز وتنظيفه وارفاق التقرير

zyzoom-3d6517b067.png


zyzoom-7717063ed7.png


zyzoom-cda271da05.png


zyzoom-26888dbf15.png


zyzoom-3f4576c288.png


ثم قم بضغط التقرير ورفعه هنا>>>>
يجب عليك تسجيل الدخول او تسجيل لمشاهدة الرابط المخفي


يجب عليك تسجيل الدخول او تسجيل لمشاهدة الرابط المخفي


بعدين اعمل تقرير هاي جاك
 
التعديل الأخير بواسطة المشرف:
توقيع : Demo-dashDemo-dash is verified member.
تأييد 0
ComboFix 08-09-01.05 - SUPERTOP 2008-09-09 0:16:42.2 - FAT32x86
Microsoft Windows XP Professionnel 5.1.2600.2.1252.1.1036.18.192 [GMT 2:00]
Endroit: \\Ala\gggg\ComboFix.exe

AVERTISSEMENT - LA CONSOLE DE RÉCUPÉRATION N'EST PAS INSTALLÉE SUR CETTE MACHINE !!
.

(((((((((((((((((((((((((((((((((((( Autres suppressions ))))))))))))))))))))))))))))))))))))))))))))))))
.

C:\Program Files\Applications\iebr.dll
C:\Program Files\Applications\iebu.exe
C:\Program Files\Applications\myd.ico
C:\Program Files\Applications\mym.ico
C:\Program Files\Applications\myp.ico
C:\Program Files\Applications\myv.ico
C:\Program Files\Applications\ot.ico
C:\Program Files\Applications\ts.ico

.
((((((((((((((((((((((((((((( Fichiers créés 2008-08-08 to 2008-09-08 ))))))))))))))))))))))))))))))))))))
.

2008-09-08 23:08 . 2008-09-08 23:08 <REP> d-------- C:\Documents and Settings\SUPERTOP.SUPERTOP-CAB90E\Contacts
2008-09-08 23:05 . 2008-09-08 23:05 <REP> d-------- C:\Program Files\MSN Messenger
2008-09-08 21:45 . 2008-09-08 21:45 <REP> d-------- C:\Program Files\Applications
2008-09-08 18:13 . 2008-09-08 21:57 2,359,350 --a------ C:\WINDOWS\SUPERTOP.bmp
2008-09-08 18:12 . 2008-09-08 18:12 <REP> d-------- C:\Program Files\Winstep
2008-09-08 18:12 . 2008-02-05 14:36 798,208 --a------ C:\WINDOWS\system32\NextControls.ocx
2008-09-08 18:00 . 2004-08-05 12:00 359,040 --a------ C:\WINDOWS\system32\drivers\tcpip.sys.original.orbit
2008-09-08 18:00 . 2004-08-05 12:00 359,040 --a------ C:\WINDOWS\system32\dllcache\tcpip.sys.original.orbit
2008-09-08 17:29 . 2008-09-08 17:29 <REP> d--h----- C:\Documents and Settings\All Users.WINDOWS\Application Data\~0
2008-09-08 17:17 . 2008-02-21 23:18 494,557 --a------ C:\WINDOWS\system32\dxgi.dll
2008-09-08 17:17 . 2008-02-22 00:10 25,037 --a------ C:\WINDOWS\system32\Nucleus.dll
2008-09-08 17:16 . 2007-10-12 15:14 3,734,536 --a------ C:\WINDOWS\system32\d3dx9_36.dll
2008-09-08 17:16 . 2007-07-19 18:14 3,727,720 --a------ C:\WINDOWS\system32\d3dx9_35.dll
2008-09-08 17:16 . 2007-05-16 16:45 3,497,832 --a------ C:\WINDOWS\system32\d3dx9_34.dll
2008-09-08 17:16 . 2007-03-12 16:42 3,495,784 --a------ C:\WINDOWS\system32\d3dx9_33.dll
2008-09-08 17:16 . 2008-02-21 23:18 566,624 --a------ C:\WINDOWS\system32\d3d10.dll
2008-09-08 17:16 . 2008-02-21 23:18 519,912 --a------ C:\WINDOWS\system32\d3dx10.dll
2008-09-08 17:16 . 2007-10-02 09:56 444,776 --a------ C:\WINDOWS\system32\d3dx10_36.dll
2008-09-08 17:16 . 2007-07-19 18:14 444,776 --a------ C:\WINDOWS\system32\d3dx10_35.dll
2008-09-08 17:16 . 2007-05-16 16:45 443,752 --a------ C:\WINDOWS\system32\d3dx10_34.dll
2008-09-08 17:16 . 2007-03-15 16:57 443,752 --a------ C:\WINDOWS\system32\d3dx10_33.dll
2008-09-08 05:34 . 2006-03-20 15:37 5,689,344 --a------ C:\Program Files\mplayerc.exe
2008-09-08 04:50 . 2008-09-08 04:50 <REP> d-------- C:\Program Files\Alwil Software
2008-09-08 04:20 . 2003-07-22 11:14 68,224 --a------ C:\WINDOWS\system32\drivers\EMCR7SK.sys
2008-09-08 04:20 . 2003-05-05 18:33 25,214 --a------ C:\WINDOWS\ESM_on.ico
2008-09-08 04:20 . 2003-05-05 18:33 25,214 --a------ C:\WINDOWS\ESM_off.ico
2008-09-08 04:20 . 2003-05-05 18:33 25,214 --a------ C:\WINDOWS\ESD_on.ico
2008-09-08 04:20 . 2003-05-05 18:33 25,214 --a------ C:\WINDOWS\ESD_off.ico
2008-09-08 04:20 . 2003-05-05 18:33 25,214 --a------ C:\WINDOWS\EMS_on.ico
2008-09-08 04:20 . 2003-05-05 18:33 25,214 --a------ C:\WINDOWS\EMS_off.ico
2008-09-08 04:20 . 2003-07-04 16:14 21,630 --a------ C:\WINDOWS\ECB_off.ico
2008-09-08 04:20 . 2003-04-02 14:02 7,040 --a------ C:\WINDOWS\system32\drivers\ENECBPTH.sys
2008-09-07 04:46 . 2008-09-07 04:46 <REP> d--hs---- C:\FOUND.010
2008-09-06 19:01 . 2008-09-06 19:01 15,781 --a------ C:\WINDOWS\system32\drivers\mdc8021x.sys
2008-09-06 18:58 . 2008-09-07 21:24 50 --a------ C:\WINDOWS\cdplayer.ini
2008-09-06 17:18 . 2008-09-06 17:23 121 --a------ C:\WINDOWS\Winchat.ini
2008-09-06 17:08 . 2008-09-06 17:08 <REP> d-------- C:\Program Files\Network LookOut
2008-09-06 16:52 . 2004-08-05 14:00 13,463,552 --a------ C:\WINDOWS\system32\dllcache\hwxjpn.dll
2008-09-06 16:51 . 2004-08-05 14:00 185,344 --a------ C:\WINDOWS\system32\Thawbrkr.dll
2008-09-06 16:33 . 2008-09-06 16:33 <REP> d--hs---- C:\Program Files\Fichiers communs\WindowsLiveInstaller
2008-09-06 16:32 . 2008-09-06 16:32 <REP> d-------- C:\Documents and Settings\All Users.WINDOWS\Application Data\WLInstaller
2008-09-06 15:34 . 2008-09-06 15:34 <REP> d-------- C:\Documents and Settings\All Users.WINDOWS\Application Data\Skype
2008-09-06 15:34 . 2008-09-06 15:34 56 --ah----- C:\WINDOWS\system32\ezsidmv.dat
2008-09-06 06:18 . 2005-02-25 05:35 22,752 --a------ C:\WINDOWS\system32\spupdsvc.exe
2008-09-06 06:18 . 2008-09-06 16:15 1,355 --a------ C:\WINDOWS\imsins.BAK
2008-09-06 06:12 . 2008-09-06 06:12 <REP> d-------- C:\Program Files\Fichiers communs\xing shared
2008-09-06 06:11 . 2008-09-06 06:11 <REP> d-------- C:\Program Files\Real
2008-09-06 06:11 . 2008-09-06 06:11 <REP> d-------- C:\Program Files\Fichiers communs\Real
2008-09-06 05:34 . 2006-08-01 15:02 49,152 --a------ C:\WINDOWS\system32\ChCfg.exe
2008-09-06 05:33 . 2008-09-06 05:33 <REP> d-------- C:\Program Files\Realtek AC97
2008-09-06 05:33 . 2006-11-17 05:40 18,804,736 --a------ C:\WINDOWS\system32\alsndmgr.cpl
2008-09-06 05:33 . 2006-12-08 15:20 10,528,768 --a------ C:\WINDOWS\system32\RTLCPL.exe
2008-09-06 05:33 . 2008-08-06 15:45 4,122,112 -ra------ C:\WINDOWS\system32\drivers\alcxwdm.sys
2008-09-06 05:33 . 2007-04-16 15:28 577,536 --a------ C:\WINDOWS\soundman.exe
2008-09-06 05:33 . 2006-07-31 11:19 315,392 --a------ C:\WINDOWS\alcupd.exe
2008-09-06 05:33 . 2006-07-31 11:27 217,088 --a------ C:\WINDOWS\Alcrmv.exe
2008-09-06 05:33 . 2006-10-18 02:53 147,456 --a------ C:\WINDOWS\system32\RtlCPAPI.dll
2008-09-06 05:33 . 2002-02-05 13:54 141,016 --a------ C:\WINDOWS\system32\alsndmgr.wav
2008-09-06 05:32 . 2008-09-06 05:32 <REP> d-------- C:\Program Files\Fichiers communs\InstallShield
2008-09-06 05:32 . 2008-09-06 05:32 <REP> d-------- C:\Documents and Settings\SUPERT~1~SUP\LOCALS~1
2008-09-06 05:32 . 2008-09-06 05:32 <REP> d-------- C:\Documents and Settings\SUPERT~1~SUP
2008-09-06 05:12 . 2008-09-06 05:12 <REP> d-------- C:\Documents and Settings\All Users.WINDOWS\Application Data\Avira
2008-09-05 23:14 . 2008-09-05 23:14 <REP> d--hs---- C:\FOUND.009
2008-09-05 18:11 . 2008-09-05 18:11 552 --a------ C:\WINDOWS\system32\d3d8caps.dat
2008-09-05 17:56 . 2008-09-05 17:56 <REP> d--hs---- C:\FOUND.008
2008-09-05 15:14 . 2008-05-22 19:32 <REP> d--h----- C:\Documents and Settings\Administrateur\Voisinage réseau
2008-09-05 15:14 . 2008-05-22 19:32 <REP> d--h----- C:\Documents and Settings\Administrateur\Voisinage d'impression
2008-09-05 15:14 . 2008-05-22 19:32 <REP> d--h----- C:\Documents and Settings\Administrateur\Modèles
2008-09-05 15:14 . 2008-05-22 19:32 <REP> d-------- C:\Documents and Settings\Administrateur\Mes documents
2008-09-05 15:14 . 2008-05-22 19:32 <REP> dr------- C:\Documents and Settings\Administrateur\Menu Démarrer
2008-09-05 15:14 . 2008-05-22 19:32 <REP> d-------- C:\Documents and Settings\Administrateur\Favoris
2008-09-05 15:14 . 2008-05-22 19:32 <REP> d-------- C:\Documents and Settings\Administrateur\Bureau
2008-09-05 15:14 . 2008-09-05 15:14 <REP> d-------- C:\Documents and Settings\Administrateur
2008-09-05 13:32 . 2004-08-05 14:00 111,104 --a------ C:\WINDOWS\system32\dllcache\mtstocom.exe
2008-09-05 13:32 . 2004-08-05 14:00 92,416 --a------ C:\WINDOWS\system32\dllcache\mga.sys
2008-09-05 13:32 . 2004-08-05 14:00 92,032 --a------ C:\WINDOWS\system32\dllcache\mga.dll
2008-09-05 13:32 . 2004-08-05 14:00 36,864 --a------ C:\WINDOWS\system32\dllcache\iprip.dll
2008-09-05 13:32 . 2004-08-05 14:00 18,432 --a------ C:\WINDOWS\system32\dllcache\jupiw.dll
2008-09-05 13:32 . 2004-08-05 14:00 7,680 --a------ C:\WINDOWS\system32\dllcache\migregdb.exe
2008-09-05 13:29 . 2008-09-05 13:29 749 -rah----- C:\WINDOWS\WindowsShell.Manifest
2008-09-05 13:29 . 2008-09-05 13:29 749 -rah----- C:\WINDOWS\system32\wuaucpl.cpl.manifest
2008-09-05 13:29 . 2008-09-05 13:29 749 -rah----- C:\WINDOWS\system32\sapi.cpl.manifest
2008-09-05 13:29 . 2008-09-05 13:29 749 -rah----- C:\WINDOWS\system32\nwc.cpl.manifest
2008-09-05 13:29 . 2008-09-05 13:29 749 -rah----- C:\WINDOWS\system32\ncpa.cpl.manifest
2008-09-05 13:29 . 2008-09-05 13:29 488 -rah----- C:\WINDOWS\system32\logonui.exe.manifest
2008-09-05 13:13 . 2001-08-17 20:13 27,165 --a------ C:\WINDOWS\system32\drivers\fetnd5.sys
2008-09-05 05:35 . 2008-09-05 05:35 <REP> d-------- C:\Program Files\SuperCopier
2008-09-05 05:30 . 2008-09-05 05:30 <REP> d-------- C:\Program Files\Orbitdownloader
2008-09-05 05:30 . 2008-09-05 05:30 <REP> d-------- C:\downloads
2008-09-05 05:29 . 2008-09-05 05:29 <REP> d-------- C:\Program Files\The KMPlayer
2008-09-05 04:06 . 2008-09-05 04:06 <REP> d--hs---- C:\FOUND.007
2008-09-05 02:36 . 2008-09-05 02:36 0 --a------ C:\WINDOWS\nsreg.dat
2008-09-05 02:35 . 2004-08-05 14:00 66,082 --a------ C:\WINDOWS\system32\dllcache\c_10004.nls
2008-09-05 02:35 . 2004-08-05 14:00 66,082 --a------ C:\WINDOWS\system32\c_10004.nls
2008-09-05 02:31 . 2007-07-30 19:19 43,352 --a------ C:\WINDOWS\system32\wups2.dll
2008-09-05 02:21 . 2008-09-05 02:21 <REP> d-------- C:\Program Files\ma-config.com
2008-09-05 02:21 . 2008-09-05 02:21 <REP> d-------- C:\Documents and Settings\All Users.WINDOWS\Application Data\ma-config.com
2008-09-05 02:15 . 2008-09-05 02:15 <REP> d---s---- C:\Documents and Settings\SUPERTOP.SUPERTOP-CAB90E\UserData
2008-09-05 01:40 . 2008-09-06 04:19 12,540 --a------ C:\WINDOWS\system32\wpa.bak
2008-09-05 01:23 . 2008-09-05 01:23 <REP> d-------- C:\Documents and Settings\NetworkService.AUTORITE NT\Bureau
2008-09-05 00:29 . 2008-09-05 00:29 <REP> d--hs---- C:\FOUND.006

.
(((((((((((((((((((((((((((((((((( Compte-rendu de Find3M ))))))))))))))))))))))))))))))))))))))))))))))))
.
2008-09-08 16:00 359,040 ----a-w C:\WINDOWS\system32\drivers\tcpip.sys
2008-09-08 16:00 359,040 ----a-w C:\WINDOWS\system32\dllcache\tcpip.sys
2008-09-06 04:11 499,712 ----a-w C:\WINDOWS\system32\msvcp71.dll
.

((((((((((((((((((((((((((((((((( Point de chargement Reg )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Note* les éléments vides & les éléments initiaux légitimes ne sont pas listés
REGEDIT4

[HKEY_LOCAL_MACHINE\~\Browser Helper s\{0BD44AB1-76A7-4E05-92F4-4B065FE72BD6}]
2008-09-09 00:13 8192 --a------ C:\Program Files\Applications\iebt.dll

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"="C:\WINDOWS\system32\ctfmon.exe" [2004-08-05 15360]
"SuperCopier.exe"="C:\Program Files\SuperCopier\SuperCopier.exe" [2003-04-25 683520]
"Google Update"="C:\Documents and Settings\SUPERTOP.SUPERTOP-CAB90E\Local Settings\Application Data\Google\Update\GoogleUpdate.exe" [2008-09-08 133104]
"NextSTART"="C:\Program Files\Winstep\nextstart.exe" [2008-05-30 5043765]
"MsnMsgr"="C:\Program Files\MSN Messenger\MsnMsgr.Exe" [2007-01-19 5674352]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"CardDetectorICON225"="C:\Program Files\CardDetector\ICON225\CardDetector.exe" [2007-11-14 278528]
"TkBellExe"="C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe" [2008-09-06 185896]
"IMJPMIG8.1"="C:\WINDOWS\IME\imjp8_1\IMJPMIG.EXE" [2004-08-05 208952]
"IMEKRMIG6.1"="C:\WINDOWS\ime\imkr6_1\IMEKRMIG.EXE" [2004-08-05 44032]
"MSPY2002"="C:\WINDOWS\system32\IME\PINTLGNT\ImScInst.exe" [2004-08-05 59392]
"PHIME2002ASync"="C:\WINDOWS\system32\IME\TINTLGNT\TINTSETP.EXE" [2004-08-05 455168]
"PHIME2002A"="C:\WINDOWS\system32\IME\TINTLGNT\TINTSETP.EXE" [2004-08-05 455168]
"avast!"="C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe" [2008-07-19 78008]
"MsmqIntCert"="mqrt.dll" [2004-08-05 C:\WINDOWS\system32\mqrt.dll]
"SoundMan"="SOUNDMAN.EXE" [2007-04-16 C:\WINDOWS\soundman.exe]

[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"="C:\WINDOWS\system32\CTFMON.EXE" [2004-08-05 15360]

[HKEY_LOCAL_MACHINE\software\microsoft\windows\Currentversion\policies\explorer\Run]
"smile"="C:\Program Files\Applications\wcs.exe" [2008-09-08 15872]
"start"="C:\Program Files\Applications\iebtm.exe" [2008-09-08 28672]

C:\Documents and Settings\All Users.WINDOWS\Menu D‚marrer\Programmes\D‚marrage\
Microsoft Office.lnk - C:\Program Files\Microsoft Office\Office10\OSA.EXE [2001-02-13 83360]
Lancement rapide d'Adobe Reader.lnk - C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe [2004-12-14 29696]
Orbit.lnk - C:\Program Files\Orbitdownloader\orbitdm.exe [2008-09-05 1707208]

[HKEY_LOCAL_MACHINE\software\microsoft\security center]
"AntiVirusDisableNotify"=dword:00000001
"UpdatesDisableNotify"=dword:00000001

[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List]
"%windir%\\system32\\sessmgr.exe"=
"C:\\WINDOWS\\System32\\mqsvc.exe"=
"C:\\Program Files\\Orbitdownloader\\orbitdm.exe"=
"C:\\Program Files\\Orbitdownloader\\orbitnet.exe"=
"C:\\Program Files\\Skype\\Phone\\Skype.exe"=
"C:\\Program Files\\MSN Messenger\\msnmsgr.exe"=
"C:\\Program Files\\MSN Messenger\\livecall.exe"=

[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\GloballyOpenPorts\List]
"4495:TCP"= 4495:TCP:Net Monitor for Employees Configuration

R1 aswSP;avast! Self Protection;C:\WINDOWS\system32\drivers\aswSP.sys [2008-07-19 78416]
R2 aswFsBlk;aswFsBlk;C:\WINDOWS\system32\DRIVERS\aswFsBlk.sys [2008-07-19 20560]
R2 NMEmployeesAgent;Net Monitor for Employees Agent;C:\Program Files\Network LookOut\Net Monitor for Employees Professional\bin\NLSAgentSvc.exe [2007-12-12 1136640]
R2 V7;V7;C:\WINDOWS\system32\drivers\V7.sys [2000-03-10 7196]
R3 EMCR;EMCR;C:\WINDOWS\system32\DRIVERS\EMCR7SK.sys [2003-07-22 68224]
S3 GT72NDISIPXP;GT 72 IP NDIS;C:\WINDOWS\system32\DRIVERS\Gt51Ip.sys [2007-11-14 95744]
S3 GT72UBUS;GT 72 U BUS;C:\WINDOWS\system32\DRIVERS\gt72ubus.sys [2007-11-14 51968]
S3 GTPTSER;GT PT SER;C:\WINDOWS\system32\DRIVERS\gtptser.sys [2007-11-14 8064]
S3 maconfservice;Ma-Config Service;C:\Program Files\ma-config.com\maconfservice.exe [2008-09-02 191656]
S3 USBSTOR;Pilote de stockage de masse USB;C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS [2004-08-05 26496]

[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{01227c20-7c63-11dd-a241-0040d04e28a8}]
\Shell\AutoRun\command - F:\start.exe

[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{3b969520-28e2-11dd-b660-0040d04e28a8}]
\Shell\AutoRun\command - E:\AutoRunCardDetector.exe

*Newly Created Service* - PROCEXP90
.
Contenu du dossier 'Scheduled Tasks/Tâches planifiées'
.
- - - - ORPHANS REMOVED - - - -

Toolbar-{94A5C93F-BD18-4C46-B777-C94C145C3CAB} - C:\Program Files\Applications\iebr.dll


.
------- Supplementary Scan -------
.
FireFox -: Profile - C:\Documents and Settings\SUPERTOP.SUPERTOP-CAB90E\Application Data\Mozilla\Firefox\Profiles\r4xjt58y.default\
FireFox -: prefs.js - STARTUP.HOMEPAGE - hxxp://www.google.fr/
FF -: plugin - C:\Documents and Settings\SUPERTOP.SUPERTOP-CAB90E\Local Settings\Application Data\Google\Update\1.2.131.11\npGoogleOneClick5.dll
FF -: plugin - C:\Program Files\Adobe\Acrobat 7.0\Reader\browser\nppdf32.dll
FF -: plugin - C:\Program Files\ma-config.com\nphardwaredetection.dll
.

**************************************************************************

catchme 0.3.1361 W2K/XP/Vista - rootkit/stealth malware detector by Gmer,
يجب عليك تسجيل الدخول او تسجيل لمشاهدة الرابط المخفي

Rootkit scan 2008-09-09 00:17:49
Windows 5.1.2600 Service Pack 2 FAT NTAPI

Balayage processus cachés ...

Balayage caché autostart entries ...

Balayage des fichiers cachés ...

Scan terminé avec succès
Les fichiers cachés: 0

**************************************************************************
.
Temps d'accomplissement: 2008-09-09 0:18:22
ComboFix-quarantined-files.txt 2008-09-08 22:18:20

Pre-Run: 13,500,219,392 octets libres
Post-Run: 13,522,878,464 octets libres

216 --- E O F --- 2008-09-06 04:18:54
 
توقيع : ALA39000
تأييد 0
تمام حذفت الإصابات
باقي تقرير الكاسبر والهاي جاك
 
توقيع : Demo-dashDemo-dash is verified member.
تأييد 0
Scan
----
Scanned: 1529
Detected: 2
Untreated: 0
Start time: 09/09/2008 05:49:14
Duration: 00:02:24
Finish time: 09/09/2008 05:51:38

Detected
--------
Status
------ ------
will be deleted when the computer is restarted: Trojan program Trojan-Downloader.Win32.Zlob.yeq File: c:\program files\applications\wcs.exe//PE_Patch.UPX//UPX
will be deleted when the computer is restarted: Trojan program Trojan-Downloader.Win32.Zlob.yes File: c:\program files\applications\iebt.dll//PE_Patch.UPX//UPX

Events
------
Time Name Status Reason
---- ---- ------ ------
09/09/2008 04:14:07 File: c:\windows\system32\mmdrv.dll ok scanned
09/09/2008 04:14:08 File: c:\windows\system\timer.drv ok scanned
09/09/2008 04:14:08 File: c:\windows\system32\mshta.exe ok scanned
09/09/2008 04:14:09 File: c:\windows\system32\notepad.exe ok scanned
09/09/2008 04:14:10 File: c:\windows\regedit.exe ok scanned
09/09/2008 04:14:18 File: c:\program files\microsoft office\office10\msaccess.exe ok scanned
09/09/2008 04:14:19 File: c:\windows\system32\accwiz.exe ok scanned
09/09/2008 04:14:19 File: c:\program files\windows media player\wmplayer.exe ok scanned
09/09/2008 04:14:19 File: c:\program files\alwil software\avast4\ashsimpl.exe ok scanned
09/09/2008 04:14:20 File: c:\windows\system32\rundll32.exe ok scanned
09/09/2008 04:14:20 File: c:\windows\system32\cryptext.dll ok scanned
09/09/2008 04:14:21 File: C:\WINDOWS\system32\rundll32.exe ok scanned
09/09/2008 04:14:21 File: C:\WINDOWS\system32\cryptext.dll ok scanned
09/09/2008 04:14:21 File: c:\program files\outlook express\wab.exe ok scanned
09/09/2008 04:14:24 File: c:\windows\explorer.exe ok scanned
09/09/2008 04:14:25 File: c:\windows\system32\cdfview.dll ok scanned
09/09/2008 04:14:25 File: c:\windows\hh.exe ok scanned
09/09/2008 04:14:25 File: c:\windows\system32\clipbrd.exe ok scanned
09/09/2008 04:14:29 File: c:\progra~1\micros~2\office10\frontpg.exe ok scanned
09/09/2008 04:14:30 File: c:\program files\divx\divx player\divx player.exe packed file PE_Patch.PECompact
09/09/2008 04:14:31 File: c:\program files\divx\divx player\divx player.exe//PE_Patch.PECompact packed file PecBundle
09/09/2008 04:14:31 File: c:\program files\divx\divx player\divx player.exe//PE_Patch.PECompact//PecBundle packed file PECompact
09/09/2008 04:14:32 File: c:\program files\divx\divx player\divx player.exe//PE_Patch.PECompact//PecBundle//PECompact ok scanned
09/09/2008 04:14:32 File: c:\program files\divx\divx player\divx player.exe//PE_Patch.PECompact//PecBundle ok scanned
09/09/2008 04:14:32 File: c:\program files\divx\divx player\divx player.exe//PE_Patch.PECompact ok scanned
09/09/2008 04:14:32 File: c:\program files\divx\divx player\divx player.exe ok scanned
09/09/2008 04:14:38 File: c:\progra~1\micros~2\office10\excel.exe ok scanned
09/09/2008 04:14:40 File: c:\windows\system32\netshell.dll ok scanned
09/09/2008 04:14:40 File: c:\windows\system32\shimgvw.dll ok scanned
09/09/2008 04:14:41 File: c:\program files\microsoft office\office10\excel.exe ok scanned
09/09/2008 04:14:41 File: c:\windows\system32\fontview.exe ok scanned
09/09/2008 04:14:41 File: c:\program files\microsoft office\office10\frontpg.exe ok scanned
09/09/2008 04:14:44 File: c:\program files\fichiers communs\microsoft shared\photoed\photoed.exe ok scanned
09/09/2008 04:14:44 File: c:\windows\system32\msconf.dll ok scanned
09/09/2008 04:14:44 File: c:\windows\winhlp32.exe ok scanned
09/09/2008 04:14:44 File: c:\windows\system32\winhlp32.exe ok scanned
09/09/2008 04:14:44 File: c:\progra~1\micros~2\office10\outlook.exe ok scanned
09/09/2008 04:14:45 File: c:\program files\windows nt\hypertrm.exe ok scanned
09/09/2008 04:14:45 File: c:\program files\internet explorer\iexplore.exe ok scanned
09/09/2008 04:14:45 File: c:\program files\mediamatics\dvdexpress\dvd\cdvdplay.exe ok scanned
09/09/2008 04:14:45 File: C:\WINDOWS\system32\msconf.dll ok scanned
09/09/2008 04:14:45 File: c:\windows\system32\wmpdxm.dll ok scanned
09/09/2008 04:14:45 File: c:\windows\system32\wscript.exe ok scanned
09/09/2008 04:14:46 File: c:\program files\microsoft office\office10\mstore.exe ok scanned
09/09/2008 04:14:46 File: c:\windows\system32\ntbackup.exe ok scanned
09/09/2008 04:14:47 File: c:\windows\system32\mmc.exe ok scanned
09/09/2008 04:14:47 File: c:\program files\microsoft office\office10\outlook.exe ok scanned
09/09/2008 04:14:48 File: c:\windows\system32\shell32.dll ok scanned
09/09/2008 04:14:48 File: c:\windows\system32\desk.cpl ok scanned
09/09/2008 04:14:48 File: c:\program files\sonic\recordnow!\launch.exe ok scanned
09/09/2008 04:14:48 File: c:\program files\microsoft office\office10\finder.exe ok scanned
09/09/2008 04:14:49 File: c:\windows\system32\rasphone.exe ok scanned
09/09/2008 04:14:49 File: c:\windows\system32\perfmon.exe ok scanned
09/09/2008 04:14:50 File: c:\program files\microsoft office\office10\powerpnt.exe ok scanned
09/09/2008 04:14:50 File: c:\windows\system32\msrating.dll ok scanned
09/09/2008 04:14:50 File: C:\WINDOWS\system32\msrating.dll ok scanned
09/09/2008 04:14:50 File: C:\WINDOWS\regedit.exe ok scanned
09/09/2008 04:14:51 File: c:\program files\windows nt\accessoires\wordpad.exe ok scanned
09/09/2008 04:14:51 File: c:\windows\notepad.exe ok scanned
09/09/2008 04:14:51 File: c:\program files\fichiers communs\microsoft shared\snapshot viewer\snapview.exe ok scanned
09/09/2008 04:14:51 File: c:\windows\system32\wpnpinst.exe ok scanned
09/09/2008 04:14:52 File: c:\program files\microsoft office\office10\winword.exe ok scanned
09/09/2008 04:14:52 File: c:\windows\system32\drwtsn32.exe ok scanned
09/09/2008 04:14:53 File: C:\WINDOWS\explorer.exe ok scanned
09/09/2008 04:14:53 File: c:\windows\system32\userinit.exe ok scanned
09/09/2008 04:14:53 File: c:\windows\system32\crypt32.dll ok scanned
09/09/2008 04:14:53 File: c:\windows\system32\cryptnet.dll ok scanned
09/09/2008 04:14:53 File: c:\windows\system32\cscdll.dll ok scanned
09/09/2008 04:14:53 File: c:\windows\system32\wlnotify.dll ok scanned
09/09/2008 04:14:53 File: C:\WINDOWS\system32\wlnotify.dll ok scanned
09/09/2008 04:14:53 File: c:\windows\system32\sclgntfy.dll ok scanned
09/09/2008 04:14:54 File: c:\windows\system32\regsvr32.exe ok scanned
09/09/2008 04:14:54 File: c:\windows\system32\mqrt.dll ok scanned
09/09/2008 04:14:54 File: c:\program files\carddetector\icon225\carddetector.exe ok scanned
09/09/2008 04:14:54 File: c:\windows\soundman.exe ok scanned
09/09/2008 04:14:55 File: c:\program files\fichiers communs\real\update_ob\realsched.exe ok scanned
09/09/2008 04:14:55 File: c:\windows\ime\imjp8_1\imjpmig.exe ok scanned
09/09/2008 04:14:55 File: c:\windows\ime\imkr6_1\imekrmig.exe ok scanned
09/09/2008 04:14:55 File: c:\windows\system32\ime\pintlgnt\imscinst.exe ok scanned
09/09/2008 04:14:56 File: c:\windows\system32\ime\tintlgnt\tintsetp.exe ok scanned
09/09/2008 04:14:56 File: c:\progra~1\alwils~1\avast4\ashdisp.exe ok scanned
09/09/2008 04:14:56 File: c:\windows\system32\ctfmon.exe ok scanned
09/09/2008 04:14:56 File: c:\program files\supercopier\supercopier.exe ok scanned
09/09/2008 04:14:56 File: c:\documents and settings\supertop.supertop-cab90e\local settings\application data\google\update\googleupdate.exe ok scanned
09/09/2008 04:14:57 File: c:\program files\winstep\nextstart.exe ok scanned
09/09/2008 04:14:58 File: c:\program files\msn messenger\msnmsgr.exe ok scanned
09/09/2008 04:14:58 File: c:\windows\system32\alrsvc.dll ok scanned
09/09/2008 04:14:58 File: c:\windows\system32\appmgmts.dll ok scanned
09/09/2008 04:14:58 File: c:\windows\system32\audiosrv.dll ok scanned
09/09/2008 04:14:59 File: c:\windows\system32\qmgr.dll ok scanned
09/09/2008 04:14:59 File: c:\windows\system32\browser.dll ok scanned
09/09/2008 04:14:59 File: c:\windows\system32\cryptsvc.dll ok scanned
09/09/2008 04:14:59 File: c:\windows\system32\rpcss.dll ok scanned
09/09/2008 04:14:59 File: c:\windows\system32\dhcpcsvc.dll ok scanned
09/09/2008 04:14:59 File: c:\windows\system32\dmserver.dll ok scanned
09/09/2008 04:14:59 File: c:\windows\system32\dnsrslvr.dll ok scanned
09/09/2008 04:14:59 File: c:\windows\system32\ersvc.dll ok scanned
09/09/2008 04:14:59 File: c:\windows\system32\es.dll ok scanned
09/09/2008 04:14:59 File: c:\windows\system32\shsvcs.dll ok scanned
09/09/2008 04:14:59 File: c:\windows\pchealth\helpctr\binaries\pchsvc.dll ok scanned
09/09/2008 04:14:59 File: c:\windows\system32\hidserv.dll ok scanned
09/09/2008 04:14:59 File: c:\windows\system32\w3ssl.dll ok scanned
09/09/2008 04:15:00 File: c:\windows\system32\srvsvc.dll ok scanned
09/09/2008 04:15:00 File: c:\windows\system32\wkssvc.dll ok scanned
09/09/2008 04:15:00 File: c:\windows\system32\lmhsvc.dll ok scanned
09/09/2008 04:15:00 File: c:\windows\system32\msgsvc.dll ok scanned
09/09/2008 04:15:00 File: c:\windows\system32\netman.dll ok scanned
09/09/2008 04:15:00 File: c:\windows\system32\mswsock.dll ok scanned
09/09/2008 04:15:00 File: c:\windows\system32\ntmssvc.dll ok scanned
09/09/2008 04:15:00 File: c:\windows\system32\rasauto.dll ok scanned
09/09/2008 04:15:00 File: c:\windows\system32\rasmans.dll ok scanned
09/09/2008 04:15:00 File: c:\windows\system32\mprdim.dll ok scanned
09/09/2008 04:15:00 File: c:\windows\system32\regsvc.dll ok scanned
09/09/2008 04:15:00 File: c:\windows\system32\schedsvc.dll ok scanned
09/09/2008 04:15:00 File: c:\windows\system32\seclogon.dll ok scanned
09/09/2008 04:15:00 File: c:\windows\system32\sens.dll ok scanned
09/09/2008 04:15:00 File: c:\windows\system32\ipnathlp.dll ok scanned
09/09/2008 04:15:01 File: c:\windows\system32\srsvc.dll ok scanned
09/09/2008 04:15:01 File: c:\windows\system32\ssdpsrv.dll ok scanned
09/09/2008 04:15:01 File: c:\windows\system32\wiaservc.dll ok scanned
09/09/2008 04:15:01 File: c:\windows\system32\tapisrv.dll ok scanned
09/09/2008 04:15:01 File: c:\windows\system32\termsrv.dll ok scanned
09/09/2008 04:15:01 File: c:\windows\system32\trkwks.dll ok scanned
09/09/2008 04:15:01 File: c:\windows\system32\upnphost.dll ok scanned
09/09/2008 04:15:01 File: c:\windows\system32\w32time.dll ok scanned
09/09/2008 04:15:01 File: c:\windows\system32\webclnt.dll ok scanned
09/09/2008 04:15:01 File: c:\windows\system32\wbem\wmisvc.dll ok scanned
09/09/2008 04:15:01 File: c:\windows\system32\mspmsnsv.dll ok scanned
09/09/2008 04:15:01 File: c:\windows\system32\advapi32.dll ok scanned
09/09/2008 04:15:01 File: c:\windows\system32\wscsvc.dll ok scanned
09/09/2008 04:15:01 File: c:\windows\system32\wuauserv.dll ok scanned
09/09/2008 04:15:02 File: c:\windows\system32\wzcsvc.dll ok scanned
09/09/2008 04:15:02 File: c:\windows\system32\xmlprov.dll ok scanned
09/09/2008 04:15:02 File: c:\windows\system32\drivers\acpi.sys ok scanned
09/09/2008 04:15:02 File: c:\windows\system32\drivers\acpiec.sys ok scanned
09/09/2008 04:15:02 File: c:\windows\system32\drivers\aec.sys ok scanned
09/09/2008 04:15:02 File: c:\windows\system32\drivers\afd.sys ok scanned
09/09/2008 04:15:02 File: c:\windows\system32\drivers\alcxwdm.sys ok scanned
09/09/2008 04:15:02 File: c:\windows\system32\svchost.exe ok scanned
09/09/2008 04:15:02 File: c:\windows\system32\alg.exe ok scanned
09/09/2008 04:15:02 File: c:\windows\system32\drivers\amdk7.sys ok scanned
09/09/2008 04:15:03 File: c:\windows\system32\drivers\arp1394.sys ok scanned
09/09/2008 04:15:03 File: c:\windows\system32\drivers\aswfsblk.sys packed file PE_Patch
09/09/2008 04:15:03 File: c:\windows\system32\drivers\aswfsblk.sys//PE_Patch ok scanned
09/09/2008 04:15:03 File: c:\windows\system32\drivers\aswfsblk.sys ok scanned
09/09/2008 04:15:03 File: c:\program files\alwil software\avast4\aswupdsv.exe ok scanned
09/09/2008 04:15:03 File: c:\windows\system32\drivers\asyncmac.sys ok scanned
09/09/2008 04:15:03 File: c:\windows\system32\drivers\atapi.sys ok scanned
09/09/2008 04:15:03 File: c:\windows\system32\drivers\atmarpc.sys ok scanned
09/09/2008 04:15:03 File: c:\windows\system32\drivers\audstub.sys ok scanned
09/09/2008 04:15:03 File: c:\program files\alwil software\avast4\ashserv.exe ok scanned
09/09/2008 04:15:04 File: c:\program files\alwil software\avast4\ashmaisv.exe ok scanned
09/09/2008 04:15:04 File: c:\program files\alwil software\avast4\ashwebsv.exe ok scanned
09/09/2008 04:15:04 File: c:\windows\system32\drivers\cdrom.sys ok scanned
09/09/2008 04:15:04 File: c:\windows\system32\cisvc.exe ok scanned
09/09/2008 04:15:04 File: c:\windows\system32\clipsrv.exe ok scanned
09/09/2008 04:15:04 File: c:\windows\system32\drivers\cmbatt.sys ok scanned
09/09/2008 04:15:04 File: c:\windows\system32\drivers\compbatt.sys ok scanned
09/09/2008 04:15:05 File: c:\windows\system32\dllhost.exe ok scanned
09/09/2008 04:15:05 File: c:\windows\system32\drivers\disk.sys ok scanned
09/09/2008 04:15:05 File: c:\windows\system32\dmadmin.exe ok scanned
09/09/2008 04:15:05 File: c:\windows\system32\drivers\dmboot.sys packed file PE_Patch
09/09/2008 04:15:05 File: c:\windows\system32\drivers\dmboot.sys//PE_Patch ok scanned
09/09/2008 04:15:05 File: c:\windows\system32\drivers\dmboot.sys ok scanned
09/09/2008 04:15:05 File: c:\windows\system32\drivers\dmio.sys ok scanned
09/09/2008 04:15:05 File: c:\windows\system32\drivers\dmusic.sys ok scanned
09/09/2008 04:15:05 File: c:\program files\ma-config.com\drivers\driverhardwarev2.sys ok scanned
09/09/2008 04:15:05 File: c:\windows\system32\drivers\drmkaud.sys ok scanned
09/09/2008 04:15:05 File: c:\windows\system32\drivers\emcr7sk.sys ok scanned
09/09/2008 04:15:06 File: c:\windows\system32\services.exe ok scanned
09/09/2008 04:15:06 File: c:\windows\system32\fxssvc.exe ok scanned
09/09/2008 04:15:06 File: c:\windows\system32\drivers\fetnd5.sys ok scanned
09/09/2008 04:15:06 File: c:\windows\system32\drivers\fltmgr.sys packed file PE_Patch
09/09/2008 04:15:06 File: c:\windows\system32\drivers\fltmgr.sys//PE_Patch ok scanned
09/09/2008 04:15:06 File: c:\windows\system32\drivers\fltmgr.sys ok scanned
09/09/2008 04:15:06 File: c:\windows\system32\drivers\ftdisk.sys ok scanned
09/09/2008 04:15:06 File: c:\windows\system32\drivers\msgpc.sys ok scanned
09/09/2008 04:15:06 File: c:\windows\system32\drivers\gt51ip.sys ok scanned
09/09/2008 04:15:06 File: c:\windows\system32\drivers\gt72ubus.sys ok scanned
09/09/2008 04:15:06 File: c:\windows\system32\drivers\gtptser.sys ok scanned
09/09/2008 04:15:06 File: c:\windows\system32\drivers\hidusb.sys ok scanned
09/09/2008 04:15:06 File: c:\windows\system32\drivers\http.sys ok scanned
09/09/2008 04:15:07 File: c:\windows\system32\drivers\i8042prt.sys ok scanned
09/09/2008 04:15:07 File: c:\windows\system32\inetsrv\inetinfo.exe ok scanned
09/09/2008 04:15:07 File: c:\windows\system32\drivers\imapi.sys ok scanned
09/09/2008 04:15:07 File: c:\windows\system32\imapi.exe ok scanned
09/09/2008 04:15:07 File: c:\windows\system32\drivers\ip6fw.sys ok scanned
09/09/2008 04:15:07 File: c:\windows\system32\drivers\ipfltdrv.sys ok scanned
09/09/2008 04:15:07 File: c:\windows\system32\drivers\ipinip.sys ok scanned
09/09/2008 04:15:07 File: c:\windows\system32\drivers\ipnat.sys ok scanned
09/09/2008 04:15:07 File: c:\windows\system32\drivers\ipsec.sys ok scanned
09/09/2008 04:15:07 File: c:\windows\system32\drivers\irenum.sys ok scanned
09/09/2008 04:15:07 File: c:\windows\system32\drivers\47316258.sys ok scanned
09/09/2008 04:15:08 File: c:\windows\system32\drivers\isapnp.sys ok scanned
09/09/2008 04:15:08 File: c:\windows\system32\drivers\kbdclass.sys ok scanned
09/09/2008 04:15:08 File: c:\windows\system32\drivers\kmixer.sys ok scanned
09/09/2008 04:15:08 File: c:\windows\system32\tcpsvcs.exe ok scanned
09/09/2008 04:15:08 File: c:\program files\ma-config.com\maconfservice.exe ok scanned
09/09/2008 04:15:08 File: c:\windows\system32\drivers\mdc8021x.sys ok scanned
09/09/2008 04:15:08 File: c:\program files\fichiers communs\microsoft shared\vs7debug\mdm.exe ok scanned
09/09/2008 04:15:09 File: c:\windows\system32\mnmsrvc.exe ok scanned
09/09/2008 04:15:09 File: c:\windows\system32\drivers\modemcsa.sys ok scanned
09/09/2008 04:15:09 File: c:\windows\system32\drivers\mouclass.sys ok scanned
09/09/2008 04:15:09 File: c:\windows\system32\drivers\mqac.sys ok scanned
09/09/2008 04:15:09 File: c:\windows\system32\drivers\mrxdav.sys packed file PE_Patch
09/09/2008 04:15:09 File: c:\windows\system32\drivers\mrxdav.sys//PE_Patch ok scanned
09/09/2008 04:15:09 File: c:\windows\system32\drivers\mrxdav.sys ok scanned
09/09/2008 04:15:09 File: c:\windows\system32\drivers\mrxsmb.sys packed file PE_Patch
09/09/2008 04:15:09 File: c:\windows\system32\drivers\mrxsmb.sys//PE_Patch ok scanned
09/09/2008 04:15:09 File: c:\windows\system32\drivers\mrxsmb.sys ok scanned
09/09/2008 04:15:09 File: c:\windows\system32\msdtc.exe ok scanned
09/09/2008 04:15:09 File: c:\windows\system32\msiexec.exe ok scanned
09/09/2008 04:15:09 File: c:\windows\system32\drivers\mskssrv.sys ok scanned
09/09/2008 04:15:10 File: c:\windows\system32\mqsvc.exe ok scanned
09/09/2008 04:15:10 File: c:\windows\system32\mqtgsvc.exe ok scanned
09/09/2008 04:15:10 File: c:\windows\system32\drivers\mspclock.sys ok scanned
09/09/2008 04:15:10 File: c:\windows\system32\drivers\mspqm.sys ok scanned
09/09/2008 04:15:10 File: c:\windows\system32\drivers\mssmbios.sys ok scanned
09/09/2008 04:15:10 File: c:\windows\system32\drivers\mtlmnt5.sys ok scanned
09/09/2008 04:15:10 File: c:\windows\system32\drivers\mtlstrm.sys ok scanned
09/09/2008 04:15:10 File: c:\windows\system32\drivers\ndistapi.sys ok scanned
09/09/2008 04:15:10 File: c:\windows\system32\drivers\ndisuio.sys ok scanned
09/09/2008 04:15:10 File: c:\windows\system32\drivers\ndiswan.sys ok scanned
09/09/2008 04:15:10 File: c:\windows\system32\drivers\netbios.sys ok scanned
09/09/2008 04:15:10 File: c:\windows\system32\drivers\netbt.sys ok scanned
09/09/2008 04:15:11 File: c:\windows\system32\netdde.exe ok scanned
09/09/2008 04:15:11 File: c:\windows\system32\lsass.exe ok scanned
09/09/2008 04:15:11 File: c:\windows\system32\drivers\nic1394.sys ok scanned
09/09/2008 04:15:11 File: c:\program files\network lookout\net monitor for employees professional\bin\nlsagentsvc.exe ok scanned
09/09/2008 04:15:11 File: c:\windows\system32\drivers\ntmtlfax.sys ok scanned
09/09/2008 04:15:11 File: c:\windows\system32\drivers\nwlnkflt.sys ok scanned
09/09/2008 04:15:11 File: c:\windows\system32\drivers\nwlnkfwd.sys ok scanned
09/09/2008 04:15:11 File: c:\windows\system32\drivers\ohci1394.sys ok scanned
09/09/2008 04:15:12 File: c:\windows\system32\pcampr5.sys ok scanned
09/09/2008 04:15:12 File: c:\windows\system32\pcandis5.sys ok scanned
09/09/2008 04:15:12 File: c:\windows\system32\drivers\pci.sys ok scanned
09/09/2008 04:15:12 File: c:\windows\system32\drivers\pcmcia.sys ok scanned
09/09/2008 04:15:12 File: c:\windows\system32\drivers\raspptp.sys ok scanned
09/09/2008 04:15:12 File: c:\windows\system32\drivers\psched.sys ok scanned
09/09/2008 04:15:12 File: c:\windows\system32\drivers\ptilink.sys ok scanned
09/09/2008 04:15:12 File: c:\windows\system32\drivers\pxhelp20.sys ok scanned
09/09/2008 04:15:12 File: c:\windows\system32\drivers\rasacd.sys ok scanned
09/09/2008 04:15:12 File: c:\windows\system32\drivers\rasl2tp.sys ok scanned
09/09/2008 04:15:12 File: c:\windows\system32\drivers\raspppoe.sys ok scanned
09/09/2008 04:15:12 File: c:\windows\system32\drivers\raspti.sys ok scanned
09/09/2008 04:15:12 File: c:\windows\system32\drivers\rdbss.sys ok scanned
09/09/2008 04:15:12 File: c:\windows\system32\drivers\rdpcdd.sys ok scanned
09/09/2008 04:15:12 File: c:\windows\system32\drivers\rdpdr.sys ok scanned
09/09/2008 04:15:12 File: c:\windows\system32\sessmgr.exe ok scanned
09/09/2008 04:15:13 File: c:\windows\system32\drivers\recagent.sys ok scanned
09/09/2008 04:15:13 File: c:\windows\system32\drivers\redbook.sys ok scanned
09/09/2008 04:15:13 File: c:\windows\system32\drivers\rmcast.sys ok scanned
09/09/2008 04:15:13 File: c:\windows\system32\locator.exe ok scanned
09/09/2008 04:15:13 File: c:\windows\system32\rsvp.exe ok scanned
09/09/2008 04:15:13 File: c:\windows\system32\drivers\s3gnbm.sys ok scanned
09/09/2008 04:15:13 File: c:\windows\system32\scardsvr.exe ok scanned
09/09/2008 04:15:13 File: c:\windows\system32\drivers\secdrv.sys ok scanned
09/09/2008 04:15:13 File: c:\windows\system32\drivers\slntamr.sys ok scanned
09/09/2008 04:15:14 File: c:\windows\system32\drivers\slnthal.sys ok scanned
09/09/2008 04:15:14 File: c:\windows\system32\slserv.exe ok scanned
09/09/2008 04:15:14 File: c:\windows\system32\drivers\slwdmsup.sys ok scanned
09/09/2008 04:15:14 File: c:\windows\system32\snmp.exe ok scanned
09/09/2008 04:15:14 File: c:\windows\system32\snmptrap.exe ok scanned
09/09/2008 04:15:14 File: c:\windows\system32\drivers\splitter.sys ok scanned
09/09/2008 04:15:14 File: c:\windows\system32\spoolsv.exe ok scanned
09/09/2008 04:15:14 File: c:\windows\system32\drivers\sr.sys packed file PE_Patch
09/09/2008 04:15:14 File: c:\windows\system32\drivers\sr.sys//PE_Patch ok scanned
09/09/2008 04:15:14 File: c:\windows\system32\drivers\sr.sys ok scanned
09/09/2008 04:15:14 File: c:\windows\system32\drivers\srv.sys ok scanned
09/09/2008 04:15:15 File: c:\windows\system32\drivers\swenum.sys ok scanned
09/09/2008 04:15:15 File: c:\windows\system32\drivers\swmidi.sys ok scanned
09/09/2008 04:15:15 File: c:\windows\system32\drivers\sysaudio.sys ok scanned
09/09/2008 04:15:15 File: c:\windows\system32\smlogsvc.exe ok scanned
09/09/2008 04:15:15 File: c:\windows\system32\drivers\tcpip.sys ok scanned
09/09/2008 04:15:15 File: c:\windows\system32\drivers\termdd.sys ok scanned
09/09/2008 04:15:15 File: c:\windows\system32\tlntsvr.exe ok scanned
09/09/2008 04:15:15 File: c:\windows\system32\wdfmgr.exe ok scanned
09/09/2008 04:15:16 File: c:\windows\system32\drivers\update.sys ok scanned
09/09/2008 04:15:16 File: c:\windows\system32\ups.exe ok scanned
09/09/2008 04:15:16 File: c:\windows\system32\drivers\usbaudio.sys ok scanned
09/09/2008 04:15:16 File: c:\windows\system32\drivers\usbccgp.sys ok scanned
09/09/2008 04:15:16 File: c:\windows\system32\drivers\usbehci.sys ok scanned
09/09/2008 04:15:16 File: c:\windows\system32\drivers\usbhub.sys ok scanned
09/09/2008 04:15:16 File: c:\windows\system32\drivers\usbstor.sys ok scanned
09/09/2008 04:15:16 File: c:\windows\system32\drivers\usbuhci.sys ok scanned
09/09/2008 04:15:16 File: c:\windows\system32\drivers\usb8023.sys ok scanned
09/09/2008 04:15:16 File: c:\program files\msn messenger\usnsvc.exe ok scanned
09/09/2008 04:15:16 File: c:\windows\system32\drivers\vga.sys ok scanned
09/09/2008 04:15:16 File: c:\windows\system32\drivers\viaagp.sys ok scanned
09/09/2008 04:15:16 File: c:\windows\system32\drivers\viaide.sys ok scanned
09/09/2008 04:15:17 File: c:\windows\system32\vssvc.exe ok scanned
09/09/2008 04:15:17 File: c:\windows\system32\drivers\wanarp.sys ok scanned
09/09/2008 04:15:17 File: c:\windows\system32\drivers\wdmaud.sys ok scanned
09/09/2008 04:15:17 File: c:\windows\system32\wbem\wmiapsrv.exe ok scanned
09/09/2008 04:15:17 File: c:\windows\system32\drivers\ws2ifsl.sys ok scanned
09/09/2008 04:15:17 File: C:\WINDOWS\system32\drivers\acpi.sys ok scanned
09/09/2008 04:15:17 File: C:\WINDOWS\system32\drivers\acpiec.sys ok scanned
09/09/2008 04:15:17 File: C:\WINDOWS\system32\drivers\aec.sys ok scanned
09/09/2008 04:15:17 File: C:\WINDOWS\system32\drivers\alcxwdm.sys ok scanned
09/09/2008 04:15:17 File: C:\WINDOWS\system32\drivers\amdk7.sys ok scanned
09/09/2008 04:15:17 File: C:\WINDOWS\system32\drivers\arp1394.sys ok scanned
09/09/2008 04:15:18 File: C:\WINDOWS\system32\drivers\aswfsblk.sys packed file PE_Patch
09/09/2008 04:15:18 File: C:\WINDOWS\system32\drivers\aswfsblk.sys//PE_Patch ok scanned
09/09/2008 04:15:18 File: C:\WINDOWS\system32\drivers\aswfsblk.sys ok scanned
09/09/2008 04:15:18 File: C:\WINDOWS\system32\drivers\asyncmac.sys ok scanned
09/09/2008 04:15:18 File: C:\WINDOWS\system32\drivers\atapi.sys ok scanned
09/09/2008 04:15:18 File: C:\WINDOWS\system32\drivers\atmarpc.sys ok scanned
09/09/2008 04:15:18 File: C:\WINDOWS\system32\drivers\audstub.sys ok scanned
09/09/2008 04:15:18 File: C:\WINDOWS\system32\drivers\cdrom.sys ok scanned
09/09/2008 04:15:18 File: C:\WINDOWS\system32\drivers\cmbatt.sys ok scanned
09/09/2008 04:15:18 File: C:\WINDOWS\system32\drivers\compbatt.sys ok scanned
09/09/2008 04:15:18 File: C:\WINDOWS\system32\drivers\disk.sys ok scanned
09/09/2008 04:15:18 File: C:\WINDOWS\system32\drivers\dmboot.sys packed file PE_Patch
09/09/2008 04:15:18 File: C:\WINDOWS\system32\drivers\dmboot.sys//PE_Patch ok scanned
09/09/2008 04:15:18 File: C:\WINDOWS\system32\drivers\dmboot.sys ok scanned
09/09/2008 04:15:18 File: C:\WINDOWS\system32\drivers\dmio.sys ok scanned
09/09/2008 04:15:18 File: C:\WINDOWS\system32\drivers\dmusic.sys ok scanned
09/09/2008 04:15:18 File: C:\WINDOWS\system32\drivers\drmkaud.sys ok scanned
09/09/2008 04:15:18 File: C:\WINDOWS\system32\drivers\emcr7sk.sys ok scanned
09/09/2008 04:15:18 File: C:\WINDOWS\system32\drivers\fetnd5.sys ok scanned
09/09/2008 04:15:18 File: C:\WINDOWS\system32\drivers\fltmgr.sys packed file PE_Patch
09/09/2008 04:15:18 File: C:\WINDOWS\system32\drivers\fltmgr.sys//PE_Patch ok scanned
09/09/2008 04:15:18 File: C:\WINDOWS\system32\drivers\fltmgr.sys ok scanned
09/09/2008 04:15:18 File: C:\WINDOWS\system32\drivers\ftdisk.sys ok scanned
09/09/2008 04:15:18 File: C:\WINDOWS\system32\drivers\msgpc.sys ok scanned
09/09/2008 04:15:19 File: C:\WINDOWS\system32\drivers\gt51ip.sys ok scanned
09/09/2008 04:15:19 File: C:\WINDOWS\system32\drivers\gt72ubus.sys ok scanned
09/09/2008 04:15:19 File: C:\WINDOWS\system32\drivers\gtptser.sys ok scanned
09/09/2008 04:15:19 File: C:\WINDOWS\system32\drivers\hidusb.sys ok scanned
09/09/2008 04:15:19 File: C:\WINDOWS\system32\drivers\http.sys ok scanned
09/09/2008 04:15:19 File: C:\WINDOWS\system32\drivers\i8042prt.sys ok scanned
09/09/2008 04:15:19 File: C:\WINDOWS\system32\drivers\imapi.sys ok scanned
09/09/2008 04:15:19 File: C:\WINDOWS\system32\drivers\ip6fw.sys ok scanned
09/09/2008 04:15:19 File: C:\WINDOWS\system32\drivers\ipfltdrv.sys ok scanned
09/09/2008 04:15:19 File: C:\WINDOWS\system32\drivers\ipinip.sys ok scanned
09/09/2008 04:15:19 File: C:\WINDOWS\system32\drivers\ipnat.sys ok scanned
09/09/2008 04:15:19 File: C:\WINDOWS\system32\drivers\ipsec.sys ok scanned
09/09/2008 04:15:19 File: C:\WINDOWS\system32\drivers\irenum.sys ok scanned
09/09/2008 04:15:19 File: C:\WINDOWS\system32\drivers\isapnp.sys ok scanned
09/09/2008 04:15:19 File: C:\WINDOWS\system32\drivers\kbdclass.sys ok scanned
09/09/2008 04:15:19 File: C:\WINDOWS\system32\drivers\kmixer.sys ok scanned
09/09/2008 04:15:19 File: C:\WINDOWS\system32\drivers\mdc8021x.sys ok scanned
09/09/2008 04:15:20 File: C:\WINDOWS\system32\drivers\modemcsa.sys ok scanned
09/09/2008 04:15:20 File: C:\WINDOWS\system32\drivers\mouclass.sys ok scanned
09/09/2008 04:15:20 File: C:\WINDOWS\system32\drivers\mrxdav.sys packed file PE_Patch
09/09/2008 04:15:20 File: C:\WINDOWS\system32\drivers\mrxdav.sys//PE_Patch ok scanned
09/09/2008 04:15:20 File: C:\WINDOWS\system32\drivers\mrxdav.sys ok scanned
09/09/2008 04:15:20 File: C:\WINDOWS\system32\drivers\mrxsmb.sys packed file PE_Patch
09/09/2008 04:15:20 File: C:\WINDOWS\system32\drivers\mrxsmb.sys//PE_Patch ok scanned
09/09/2008 04:15:20 File: C:\WINDOWS\system32\drivers\mrxsmb.sys ok scanned
09/09/2008 04:15:20 File: C:\WINDOWS\system32\drivers\mskssrv.sys ok scanned
09/09/2008 04:15:20 File: C:\WINDOWS\system32\drivers\mspclock.sys ok scanned
09/09/2008 04:15:20 File: C:\WINDOWS\system32\drivers\mspqm.sys ok scanned
09/09/2008 04:15:20 File: C:\WINDOWS\system32\drivers\mssmbios.sys ok scanned
09/09/2008 04:15:20 File: C:\WINDOWS\system32\drivers\mtlmnt5.sys ok scanned
09/09/2008 04:15:20 File: C:\WINDOWS\system32\drivers\mtlstrm.sys ok scanned
09/09/2008 04:15:20 File: C:\WINDOWS\system32\drivers\ndistapi.sys ok scanned
09/09/2008 04:15:20 File: C:\WINDOWS\system32\drivers\ndisuio.sys ok scanned
09/09/2008 04:15:20 File: C:\WINDOWS\system32\drivers\ndiswan.sys ok scanned
09/09/2008 04:15:20 File: C:\WINDOWS\system32\drivers\netbios.sys ok scanned
09/09/2008 04:15:20 File: C:\WINDOWS\system32\drivers\netbt.sys ok scanned
09/09/2008 04:15:20 File: C:\WINDOWS\system32\drivers\nic1394.sys ok scanned
09/09/2008 04:15:20 File: C:\WINDOWS\system32\drivers\ntmtlfax.sys ok scanned
09/09/2008 04:15:20 File: C:\WINDOWS\system32\drivers\nwlnkflt.sys ok scanned
09/09/2008 04:15:20 File: C:\WINDOWS\system32\drivers\nwlnkfwd.sys ok scanned
09/09/2008 04:15:20 File: C:\WINDOWS\system32\drivers\ohci1394.sys ok scanned
09/09/2008 04:15:21 File: C:\WINDOWS\system32\drivers\pci.sys ok scanned
09/09/2008 04:15:21 File: C:\WINDOWS\system32\drivers\pcmcia.sys ok scanned
09/09/2008 04:15:21 File: C:\WINDOWS\system32\drivers\raspptp.sys ok scanned
09/09/2008 04:15:21 File: C:\WINDOWS\system32\drivers\psched.sys ok scanned
09/09/2008 04:15:21 File: C:\WINDOWS\system32\drivers\ptilink.sys ok scanned
09/09/2008 04:15:21 File: C:\WINDOWS\system32\drivers\pxhelp20.sys ok scanned
09/09/2008 04:15:21 File: C:\WINDOWS\system32\drivers\rasacd.sys ok scanned
09/09/2008 04:15:21 File: C:\WINDOWS\system32\drivers\rasl2tp.sys ok scanned
09/09/2008 04:15:21 File: C:\WINDOWS\system32\drivers\raspppoe.sys ok scanned
09/09/2008 04:15:21 File: C:\WINDOWS\system32\drivers\raspti.sys ok scanned
09/09/2008 04:15:21 File: C:\WINDOWS\system32\drivers\rdbss.sys ok scanned
09/09/2008 04:15:21 File: C:\WINDOWS\system32\drivers\rdpcdd.sys ok scanned
09/09/2008 04:15:21 File: C:\WINDOWS\system32\drivers\rdpdr.sys ok scanned
09/09/2008 04:15:21 File: C:\WINDOWS\system32\drivers\recagent.sys ok scanned
09/09/2008 04:15:21 File: C:\WINDOWS\system32\drivers\redbook.sys ok scanned
09/09/2008 04:15:21 File: C:\WINDOWS\system32\rpcss.dll ok scanned
09/09/2008 04:15:21 File: C:\WINDOWS\system32\drivers\s3gnbm.sys ok scanned
09/09/2008 04:15:21 File: C:\WINDOWS\system32\drivers\secdrv.sys ok scanned
09/09/2008 04:15:21 File: C:\WINDOWS\system32\drivers\slntamr.sys ok scanned
09/09/2008 04:15:21 File: C:\WINDOWS\system32\drivers\slnthal.sys ok scanned
09/09/2008 04:15:22 File: C:\WINDOWS\system32\slserv.exe ok scanned
09/09/2008 04:15:22 File: C:\WINDOWS\system32\drivers\slwdmsup.sys ok scanned
09/09/2008 04:15:22 File: C:\WINDOWS\system32\drivers\splitter.sys ok scanned
09/09/2008 04:15:22 File: C:\WINDOWS\system32\drivers\sr.sys packed file PE_Patch
09/09/2008 04:15:22 File: C:\WINDOWS\system32\drivers\sr.sys//PE_Patch ok scanned
09/09/2008 04:15:22 File: C:\WINDOWS\system32\drivers\sr.sys ok scanned
09/09/2008 04:15:22 File: C:\WINDOWS\system32\drivers\srv.sys ok scanned
09/09/2008 04:15:22 File: C:\WINDOWS\system32\drivers\swenum.sys ok scanned
09/09/2008 04:15:22 File: C:\WINDOWS\system32\drivers\swmidi.sys ok scanned
09/09/2008 04:15:22 File: C:\WINDOWS\system32\drivers\sysaudio.sys ok scanned
09/09/2008 04:15:22 File: C:\WINDOWS\system32\drivers\tcpip.sys ok scanned
09/09/2008 04:15:22 File: C:\WINDOWS\system32\drivers\termdd.sys ok scanned
09/09/2008 04:15:22 File: C:\WINDOWS\system32\drivers\update.sys ok scanned
09/09/2008 04:15:22 File: C:\WINDOWS\system32\drivers\usbaudio.sys ok scanned
09/09/2008 04:15:22 File: C:\WINDOWS\system32\drivers\usbccgp.sys ok scanned
09/09/2008 04:15:22 File: C:\WINDOWS\system32\drivers\usbehci.sys ok scanned
09/09/2008 04:15:22 File: C:\WINDOWS\system32\drivers\usbhub.sys ok scanned
09/09/2008 04:15:22 File: C:\WINDOWS\system32\drivers\usbstor.sys ok scanned
09/09/2008 04:15:22 File: C:\WINDOWS\system32\drivers\usbuhci.sys ok scanned
09/09/2008 04:15:23 File: C:\WINDOWS\system32\drivers\usb8023.sys ok scanned
09/09/2008 04:15:23 File: C:\WINDOWS\system32\drivers\viaagp.sys ok scanned
09/09/2008 04:15:23 File: C:\WINDOWS\system32\drivers\viaide.sys ok scanned
09/09/2008 04:15:23 File: C:\WINDOWS\system32\drivers\wanarp.sys ok scanned
09/09/2008 04:15:23 File: C:\WINDOWS\system32\drivers\wdmaud.sys ok scanned
09/09/2008 04:15:23 File: c:\windows\system32\autochk.exe ok scanned
09/09/2008 04:15:23 File: C:\WINDOWS\system32\autochk.exe ok scanned
09/09/2008 04:15:23 File: c:\windows\inf\unregmp2.exe ok scanned
09/09/2008 04:15:23 File: c:\windows\system32\shmgrate.exe ok scanned
09/09/2008 04:15:23 File: c:\windows\system32\iedkcs32.dll ok scanned
09/09/2008 04:15:24 File: c:\windows\system32\themeui.dll ok scanned
09/09/2008 04:15:24 File: c:\program files\outlook express\setup50.exe//# ok scanned
09/09/2008 04:15:24 File: c:\program files\outlook express\setup50.exe ok scanned
09/09/2008 04:15:24 File: c:\windows\system32\user.exe ok scanned
09/09/2008 04:15:24 File: c:\windows\system32\advpack.dll ok scanned
09/09/2008 04:15:24 File: c:\windows\inf\msnetmtg.inf ok scanned
09/09/2008 04:15:24 File: C:\WINDOWS\system32\advpack.dll ok scanned
09/09/2008 04:15:24 File: c:\windows\inf\msmsgs.inf ok scanned
09/09/2008 04:15:24 File: c:\windows\inf\wmp10.inf ok scanned
09/09/2008 04:15:25 File: C:\WINDOWS\system32\user.exe ok scanned
09/09/2008 04:15:25 File: C:\WINDOWS\system32\shell32.dll ok scanned
09/09/2008 04:15:25 File: c:\windows\system32\ie4uinit.exe ok scanned
09/09/2008 04:15:25 File: c:\windows\inf\fxsocm.inf ok scanned
09/09/2008 04:15:25 File: c:\windows\system32\comm.drv ok scanned
09/09/2008 04:15:25 File: c:\windows\system\vga.drv ok scanned
09/09/2008 04:15:25 File: c:\windows\system\mmsystem.dll ok scanned
09/09/2008 04:15:25 File: c:\windows\system\keyboard.drv ok scanned
09/09/2008 04:15:25 File: c:\windows\system\mouse.drv ok scanned
09/09/2008 04:15:25 File: c:\windows\system\wfwnet.drv ok scanned
09/09/2008 04:15:25 File: c:\windows\system32\progman.exe ok scanned
09/09/2008 04:15:25 File: c:\windows\system\sound.drv ok scanned
09/09/2008 04:15:26 File: c:\windows\system\system.drv ok scanned
09/09/2008 04:15:26 File: C:\WINDOWS\system32\timer.drv ok scanned
09/09/2008 04:15:26 File: c:\windows\system32\midimap.dll ok scanned
09/09/2008 04:15:26 File: c:\windows\system32\imaadp32.acm ok scanned
09/09/2008 04:15:26 File: c:\windows\system32\msadp32.acm ok scanned
09/09/2008 04:15:26 File: c:\windows\system32\msg711.acm ok scanned
09/09/2008 04:15:26 File: c:\windows\system32\msgsm32.acm ok scanned
09/09/2008 04:15:26 File: c:\windows\system32\tssoft32.acm ok scanned
09/09/2008 04:15:26 File: c:\windows\system32\iccvid.dll ok scanned
09/09/2008 04:15:26 File: c:\windows\system32\msh263.drv ok scanned
09/09/2008 04:15:26 File: c:\windows\system32\ir32_32.dll ok scanned
09/09/2008 04:15:26 File: C:\WINDOWS\system32\ir32_32.dll ok scanned
09/09/2008 04:15:26 File: c:\windows\system32\ir41_32.ax ok scanned
09/09/2008 04:15:26 File: c:\windows\system32\iyuv_32.dll ok scanned
09/09/2008 04:15:26 File: c:\windows\system32\msrle32.dll ok scanned
09/09/2008 04:15:26 File: c:\windows\system32\msvidc32.dll ok scanned
09/09/2008 04:15:26 File: c:\windows\system32\msyuv.dll ok scanned
09/09/2008 04:15:26 File: C:\WINDOWS\system32\msyuv.dll ok scanned
09/09/2008 04:15:27 File: c:\windows\system32\tsbyuv.dll ok scanned
09/09/2008 04:15:27 File: c:\windows\system32\msacm32.drv ok scanned
09/09/2008 04:15:27 File: c:\windows\system32\msg723.acm ok scanned
09/09/2008 04:15:27 File: C:\WINDOWS\system32\msh263.drv ok scanned
09/09/2008 04:15:27 File: c:\windows\system32\msh261.drv ok scanned
09/09/2008 04:15:27 File: c:\windows\system32\msaud32.acm ok scanned
09/09/2008 04:15:27 File: c:\windows\system32\sl_anet.acm ok scanned
09/09/2008 04:15:27 File: c:\windows\system32\iac25_32.ax ok scanned
09/09/2008 04:15:27 File: c:\windows\system32\ir50_32.dll ok scanned
09/09/2008 04:15:27 File: c:\windows\system32\l3codeca.acm ok scanned
09/09/2008 04:15:27 File: c:\windows\system32\wdmaud.drv ok scanned
09/09/2008 04:15:28 File: C:\WINDOWS\system32\wdmaud.drv ok scanned
09/09/2008 04:15:28 File: c:\windows\system32\mpg4c32.dll ok scanned
09/09/2008 04:15:28 File: C:\WINDOWS\system32\mpg4c32.dll ok scanned
09/09/2008 04:15:28 File: c:\windows\system32\divx.dll packed file PE_Patch.PECompact
09/09/2008 04:15:28 File: c:\windows\system32\divx.dll//PE_Patch.PECompact packed file PecBundle
09/09/2008 04:15:28 File: c:\windows\system32\divx.dll//PE_Patch.PECompact//PecBundle packed file PECompact
09/09/2008 04:15:28 File: c:\windows\system32\divx.dll//PE_Patch.PECompact//PecBundle//PECompact ok scanned
09/09/2008 04:15:28 File: c:\windows\system32\divx.dll//PE_Patch.PECompact//PecBundle ok scanned
09/09/2008 04:15:28 File: c:\windows\system32\divx.dll//PE_Patch.PECompact ok scanned
09/09/2008 04:15:28 File: c:\windows\system32\divx.dll ok scanned
09/09/2008 04:15:28 File: c:\windows\system32\serwvdrv.dll ok scanned
09/09/2008 04:15:29 File: c:\windows\system32\sirenacm.dll ok scanned
09/09/2008 04:15:29 File: c:\windows\system32\webcheck.dll ok scanned
09/09/2008 04:15:29 File: c:\windows\system32\st.dll ok scanned
09/09/2008 04:15:29 File: c:\windows\system32\logon.scr ok scanned
09/09/2008 04:15:29 File: C:\WINDOWS\system32\logon.scr ok scanned
09/09/2008 04:15:29 File: c:\windows\system32\browseui.dll ok scanned
09/09/2008 04:15:29 File: c:\program files\applications\wcs.exe packed file PE_Patch.UPX
09/09/2008 04:15:29 File: c:\program files\applications\wcs.exe//PE_Patch.UPX packed file UPX
09/09/2008 04:15:29 File: c:\program files\applications\wcs.exe//PE_Patch.UPX//UPX detected Trojan program 'Trojan-Downloader.Win32.Zlob.yeq'
09/09/2008 04:15:30 File: c:\program files\applications\wcs.exe skipped processing stopped
09/09/2008 04:32:03 File: c:\windows\system32\mmdrv.dll ok scanned
09/09/2008 04:32:04 File: c:\windows\system\timer.drv ok scanned
09/09/2008 04:32:04 File: c:\windows\system32\mshta.exe ok scanned
09/09/2008 04:32:05 File: c:\windows\system32\notepad.exe ok scanned
09/09/2008 04:32:05 File: c:\windows\regedit.exe ok scanned
09/09/2008 04:32:12 File: c:\program files\microsoft office\office10\msaccess.exe ok scanned
09/09/2008 04:32:12 File: c:\windows\system32\accwiz.exe ok scanned
09/09/2008 04:32:12 File: c:\program files\windows media player\wmplayer.exe ok scanned
09/09/2008 04:32:13 File: c:\program files\alwil software\avast4\ashsimpl.exe ok scanned
09/09/2008 04:32:13 File: c:\windows\system32\rundll32.exe ok scanned
09/09/2008 04:32:13 File: c:\windows\system32\cryptext.dll ok scanned
09/09/2008 04:32:13 File: C:\WINDOWS\system32\rundll32.exe ok scanned
09/09/2008 04:32:13 File: C:\WINDOWS\system32\cryptext.dll ok scanned
09/09/2008 04:32:15 File: c:\program files\outlook express\wab.exe ok scanned
09/09/2008 04:32:16 File: c:\windows\explorer.exe ok scanned
09/09/2008 04:32:16 File: c:\windows\system32\cdfview.dll ok scanned
09/09/2008 04:32:18 File: c:\windows\hh.exe ok scanned
09/09/2008 04:32:18 File: c:\windows\system32\clipbrd.exe ok scanned
09/09/2008 04:32:19 File: c:\progra~1\micros~2\office10\frontpg.exe ok scanned
09/09/2008 04:32:20 File: c:\program files\divx\divx player\divx player.exe packed file PE_Patch.PECompact
09/09/2008 04:32:20 File: c:\program files\divx\divx player\divx player.exe//PE_Patch.PECompact packed file PecBundle
09/09/2008 04:32:20 File: c:\program files\divx\divx player\divx player.exe//PE_Patch.PECompact//PecBundle packed file PECompact
09/09/2008 04:32:21 File: c:\program files\divx\divx player\divx player.exe//PE_Patch.PECompact//PecBundle//PECompact ok scanned
09/09/2008 04:32:21 File: c:\program files\divx\divx player\divx player.exe//PE_Patch.PECompact//PecBundle ok scanned
09/09/2008 04:32:21 File: c:\program files\divx\divx player\divx player.exe//PE_Patch.PECompact ok scanned
09/09/2008 04:32:21 File: c:\program files\divx\divx player\divx player.exe ok scanned
09/09/2008 04:32:21 File: c:\progra~1\micros~2\office10\excel.exe ok scanned
09/09/2008 04:32:22 File: c:\windows\system32\netshell.dll ok scanned
09/09/2008 04:32:22 File: c:\windows\system32\shimgvw.dll ok scanned
09/09/2008 04:32:22 File: c:\program files\microsoft office\office10\excel.exe ok scanned
09/09/2008 04:32:23 File: c:\windows\system32\fontview.exe ok scanned
09/09/2008 04:32:24 File: c:\program files\microsoft office\office10\frontpg.exe ok scanned
09/09/2008 04:32:24 File: c:\program files\fichiers communs\microsoft shared\photoed\photoed.exe ok scanned
09/09/2008 04:32:24 File: c:\windows\system32\msconf.dll ok scanned
09/09/2008 04:32:24 File: c:\windows\winhlp32.exe ok scanned
09/09/2008 04:32:25 File: c:\windows\system32\winhlp32.exe ok scanned
09/09/2008 04:32:26 File: c:\progra~1\micros~2\office10\outlook.exe ok scanned
09/09/2008 04:32:26 File: c:\program files\windows nt\hypertrm.exe ok scanned
09/09/2008 04:32:26 File: c:\program files\internet explorer\iexplore.exe ok scanned
09/09/2008 04:32:29 File: c:\program files\mediamatics\dvdexpress\dvd\cdvdplay.exe ok scanned
09/09/2008 04:32:29 File: C:\WINDOWS\system32\msconf.dll ok scanned
09/09/2008 04:32:29 File: c:\windows\system32\wmpdxm.dll ok scanned
09/09/2008 04:32:29 File: c:\windows\system32\wscript.exe ok scanned
09/09/2008 04:32:29 File: c:\program files\microsoft office\office10\mstore.exe ok scanned
09/09/2008 04:32:33 File: c:\windows\system32\ntbackup.exe ok scanned
09/09/2008 04:32:35 File: c:\windows\system32\mmc.exe ok scanned
09/09/2008 04:32:35 File: c:\program files\microsoft office\office10\outlook.exe ok scanned
09/09/2008 04:32:35 File: c:\windows\system32\shell32.dll ok scanned
09/09/2008 04:32:36 File: c:\windows\system32\desk.cpl ok scanned
09/09/2008 04:32:40 File: c:\program files\sonic\recordnow!\launch.exe ok scanned
09/09/2008 04:32:40 File: c:\program files\microsoft office\office10\finder.exe ok scanned
09/09/2008 04:32:40 File: c:\windows\system32\rasphone.exe ok scanned
09/09/2008 04:32:40 File: c:\windows\system32\perfmon.exe ok scanned
09/09/2008 04:32:46 File: c:\program files\microsoft office\office10\powerpnt.exe ok scanned
09/09/2008 04:32:46 File: c:\windows\system32\msrating.dll ok scanned
09/09/2008 04:32:46 File: C:\WINDOWS\system32\msrating.dll ok scanned
09/09/2008 04:32:46 File: C:\WINDOWS\regedit.exe ok scanned
09/09/2008 04:32:47 File: c:\program files\windows nt\accessoires\wordpad.exe ok scanned
09/09/2008 04:32:47 File: c:\windows\notepad.exe ok scanned
09/09/2008 04:32:47 File: c:\program files\fichiers communs\microsoft shared\snapshot viewer\snapview.exe ok scanned
09/09/2008 04:32:47 File: c:\windows\system32\wpnpinst.exe ok scanned
09/09/2008 04:32:49 File: c:\program files\microsoft office\office10\winword.exe ok scanned
09/09/2008 04:32:52 File: c:\windows\system32\drwtsn32.exe ok scanned
09/09/2008 04:32:54 File: C:\WINDOWS\explorer.exe ok scanned
09/09/2008 04:32:54 File: c:\windows\system32\userinit.exe ok scanned
09/09/2008 04:32:54 File: c:\windows\system32\crypt32.dll ok scanned
09/09/2008 04:32:54 File: c:\windows\system32\cryptnet.dll ok scanned
09/09/2008 04:32:54 File: c:\windows\system32\cscdll.dll ok scanned
09/09/2008 04:32:54 File: c:\windows\system32\wlnotify.dll ok scanned
09/09/2008 04:32:54 File: C:\WINDOWS\system32\wlnotify.dll ok scanned
09/09/2008 04:32:54 File: c:\windows\system32\sclgntfy.dll ok scanned
09/09/2008 04:32:54 File: c:\windows\system32\regsvr32.exe ok scanned
09/09/2008 04:32:54 File: c:\windows\system32\mqrt.dll ok scanned
09/09/2008 04:32:54 File: c:\program files\carddetector\icon225\carddetector.exe ok scanned
09/09/2008 04:32:55 File: c:\windows\soundman.exe ok scanned
09/09/2008 04:32:55 File: c:\program files\fichiers communs\real\update_ob\realsched.exe ok scanned
09/09/2008 04:32:55 File: c:\windows\ime\imjp8_1\imjpmig.exe ok scanned
09/09/2008 04:32:55 File: c:\windows\ime\imkr6_1\imekrmig.exe ok scanned
09/09/2008 04:32:55 File: c:\windows\system32\ime\pintlgnt\imscinst.exe ok scanned
09/09/2008 04:32:56 File: c:\windows\system32\ime\tintlgnt\tintsetp.exe ok scanned
09/09/2008 04:32:56 File: c:\progra~1\alwils~1\avast4\ashdisp.exe ok scanned
09/09/2008 04:32:56 File: c:\windows\system32\ctfmon.exe ok scanned
09/09/2008 04:32:56 File: c:\program files\supercopier\supercopier.exe ok scanned
09/09/2008 04:32:56 File: c:\documents and settings\supertop.supertop-cab90e\local settings\application data\google\update\googleupdate.exe ok scanned
09/09/2008 04:32:57 File: c:\program files\winstep\nextstart.exe ok scanned
09/09/2008 04:32:58 File: c:\program files\msn messenger\msnmsgr.exe ok scanned
09/09/2008 04:32:58 File: c:\windows\system32\alrsvc.dll ok scanned
09/09/2008 04:32:59 File: c:\windows\system32\appmgmts.dll ok scanned
09/09/2008 04:33:00 File: c:\windows\system32\audiosrv.dll ok scanned
09/09/2008 04:33:02 File: c:\windows\system32\qmgr.dll ok scanned
09/09/2008 04:33:04 File: c:\windows\system32\browser.dll ok scanned
09/09/2008 04:33:04 File: c:\windows\system32\cryptsvc.dll ok scanned
09/09/2008 04:33:05 File: c:\windows\system32\rpcss.dll ok scanned
09/09/2008 04:33:05 File: c:\windows\system32\dhcpcsvc.dll ok scanned
09/09/2008 04:33:05 File: c:\windows\system32\dmserver.dll ok scanned
09/09/2008 04:33:05 File: c:\windows\system32\dnsrslvr.dll ok scanned
09/09/2008 04:33:06 File: c:\windows\system32\ersvc.dll ok scanned
09/09/2008 04:33:06 File: c:\windows\system32\es.dll ok scanned
09/09/2008 04:33:06 File: c:\windows\system32\shsvcs.dll ok scanned
09/09/2008 04:33:07 File: c:\windows\pchealth\helpctr\binaries\pchsvc.dll ok scanned
09/09/2008 04:33:07 File: c:\windows\system32\hidserv.dll ok scanned
09/09/2008 04:33:07 File: c:\windows\system32\w3ssl.dll ok scanned
09/09/2008 04:33:07 File: c:\windows\system32\srvsvc.dll ok scanned
09/09/2008 04:33:07 File: c:\windows\system32\wkssvc.dll ok scanned
09/09/2008 04:33:07 File: c:\windows\system32\lmhsvc.dll ok scanned
09/09/2008 04:33:08 File: c:\windows\system32\msgsvc.dll ok scanned
09/09/2008 04:33:08 File: c:\windows\system32\netman.dll ok scanned
09/09/2008 04:33:08 File: c:\windows\system32\mswsock.dll ok scanned
09/09/2008 04:33:08 File: c:\windows\system32\ntmssvc.dll ok scanned
09/09/2008 04:33:08 File: c:\windows\system32\rasauto.dll ok scanned
09/09/2008 04:33:09 File: c:\windows\system32\rasmans.dll ok scanned
09/09/2008 04:33:09 File: c:\windows\system32\mprdim.dll ok scanned
09/09/2008 04:33:09 File: c:\windows\system32\regsvc.dll ok scanned
09/09/2008 04:33:10 File: c:\windows\system32\schedsvc.dll ok scanned
09/09/2008 04:33:10 File: c:\windows\system32\seclogon.dll ok scanned
09/09/2008 04:33:11 File: c:\windows\system32\sens.dll ok scanned
09/09/2008 04:33:11 File: c:\windows\system32\ipnathlp.dll ok scanned
09/09/2008 04:33:11 File: c:\windows\system32\srsvc.dll ok scanned
09/09/2008 04:33:11 File: c:\windows\system32\ssdpsrv.dll ok scanned
09/09/2008 04:33:12 File: c:\windows\system32\wiaservc.dll ok scanned
09/09/2008 04:33:12 File: c:\windows\system32\tapisrv.dll ok scanned
09/09/2008 04:33:12 File: c:\windows\system32\termsrv.dll ok scanned
09/09/2008 04:33:12 File: c:\windows\system32\trkwks.dll ok scanned
09/09/2008 04:33:12 File: c:\windows\system32\upnphost.dll ok scanned
09/09/2008 04:33:12 File: c:\windows\system32\w32time.dll ok scanned
09/09/2008 04:33:13 File: c:\windows\system32\webclnt.dll ok scanned
09/09/2008 04:33:13 File: c:\windows\system32\wbem\wmisvc.dll ok scanned
09/09/2008 04:33:13 File: c:\windows\system32\mspmsnsv.dll ok scanned
09/09/2008 04:33:14 File: c:\windows\system32\advapi32.dll ok scanned
09/09/2008 04:33:14 File: c:\windows\system32\wscsvc.dll ok scanned
09/09/2008 04:33:14 File: c:\windows\system32\wuauserv.dll ok scanned
09/09/2008 04:33:15 File: c:\windows\system32\wzcsvc.dll ok scanned
09/09/2008 04:33:17 File: c:\windows\system32\xmlprov.dll ok scanned
09/09/2008 04:33:21 File: c:\windows\system32\drivers\acpi.sys ok scanned
09/09/2008 04:33:21 File: c:\windows\system32\drivers\acpiec.sys ok scanned
09/09/2008 04:33:21 File: c:\windows\system32\drivers\aec.sys ok scanned
09/09/2008 04:33:21 File: c:\windows\system32\drivers\afd.sys ok scanned
09/09/2008 04:33:21 File: c:\windows\system32\drivers\alcxwdm.sys ok scanned
09/09/2008 04:33:21 File: c:\windows\system32\svchost.exe ok scanned
09/09/2008 04:33:22 File: c:\windows\system32\alg.exe ok scanned
09/09/2008 04:33:22 File: c:\windows\system32\drivers\amdk7.sys ok scanned
09/09/2008 04:33:22 File: c:\windows\system32\drivers\arp1394.sys ok scanned
09/09/2008 04:33:22 File: c:\windows\system32\drivers\aswfsblk.sys packed file PE_Patch
09/09/2008 04:33:22 File: c:\windows\system32\drivers\aswfsblk.sys//PE_Patch ok scanned
09/09/2008 04:33:22 File: c:\windows\system32\drivers\aswfsblk.sys ok scanned
09/09/2008 04:33:23 File: c:\program files\alwil software\avast4\aswupdsv.exe ok scanned
09/09/2008 04:33:23 File: c:\windows\system32\drivers\asyncmac.sys ok scanned
09/09/2008 04:33:24 File: c:\windows\system32\drivers\atapi.sys ok scanned
09/09/2008 04:33:24 File: c:\windows\system32\drivers\atmarpc.sys ok scanned
09/09/2008 04:33:24 File: c:\windows\system32\drivers\audstub.sys ok scanned
09/09/2008 04:33:24 File: c:\program files\alwil software\avast4\ashserv.exe ok scanned
09/09/2008 04:33:24 File: c:\program files\alwil software\avast4\ashmaisv.exe ok scanned
09/09/2008 04:33:25 File: c:\program files\alwil software\avast4\ashwebsv.exe ok scanned
09/09/2008 04:33:25 File: c:\windows\system32\drivers\cdrom.sys ok scanned
09/09/2008 04:33:26 File: c:\windows\system32\cisvc.exe ok scanned
09/09/2008 04:33:28 File: c:\windows\system32\clipsrv.exe ok scanned
09/09/2008 04:33:28 File: c:\windows\system32\drivers\cmbatt.sys ok scanned
09/09/2008 04:33:28 File: c:\windows\system32\drivers\compbatt.sys ok scanned
09/09/2008 04:33:28 File: c:\windows\system32\dllhost.exe ok scanned
09/09/2008 04:33:29 File: c:\windows\system32\drivers\disk.sys ok scanned
09/09/2008 04:33:29 File: c:\windows\system32\dmadmin.exe ok scanned
09/09/2008 04:33:29 File: c:\windows\system32\drivers\dmboot.sys packed file PE_Patch
09/09/2008 04:33:29 File: c:\windows\system32\drivers\dmboot.sys//PE_Patch ok scanned
09/09/2008 04:33:29 File: c:\windows\system32\drivers\dmboot.sys ok scanned
09/09/2008 04:33:29 File: c:\windows\system32\drivers\dmio.sys ok scanned
09/09/2008 04:33:30 File: c:\windows\system32\drivers\dmusic.sys ok scanned
09/09/2008 04:33:30 File: c:\program files\ma-config.com\drivers\driverhardwarev2.sys ok scanned
09/09/2008 04:33:31 File: c:\windows\system32\drivers\drmkaud.sys ok scanned
09/09/2008 04:33:31 File: c:\windows\system32\drivers\emcr7sk.sys ok scanned
09/09/2008 04:33:32 File: c:\windows\system32\services.exe ok scanned
09/09/2008 04:33:33 File: c:\windows\system32\fxssvc.exe ok scanned
09/09/2008 04:33:33 File: c:\windows\system32\drivers\fetnd5.sys ok scanned
09/09/2008 04:33:33 File: c:\windows\system32\drivers\fltmgr.sys packed file PE_Patch
09/09/2008 04:33:33 File: c:\windows\system32\drivers\fltmgr.sys//PE_Patch ok scanned
09/09/2008 04:33:33 File: c:\windows\system32\drivers\fltmgr.sys ok scanned
09/09/2008 04:33:33 File: c:\windows\system32\drivers\ftdisk.sys ok scanned
09/09/2008 04:33:33 File: c:\windows\system32\drivers\msgpc.sys ok scanned
09/09/2008 04:33:33 File: c:\windows\system32\drivers\gt51ip.sys ok scanned
09/09/2008 04:33:33 File: c:\windows\system32\drivers\gt72ubus.sys ok scanned
09/09/2008 04:33:33 File: c:\windows\system32\drivers\gtptser.sys ok scanned
09/09/2008 04:33:33 File: c:\windows\system32\drivers\hidusb.sys ok scanned
09/09/2008 04:33:33 File: c:\windows\system32\drivers\http.sys ok scanned
09/09/2008 04:33:34 File: c:\windows\system32\drivers\i8042prt.sys ok scanned
09/09/2008 04:33:34 File: c:\windows\system32\inetsrv\inetinfo.exe ok scanned
09/09/2008 04:33:34 File: c:\windows\system32\drivers\imapi.sys ok scanned
09/09/2008 04:33:34 File: c:\windows\system32\imapi.exe ok scanned
09/09/2008 04:33:34 File: c:\windows\system32\drivers\ip6fw.sys ok scanned
09/09/2008 04:33:35 File: c:\windows\system32\drivers\ipfltdrv.sys ok scanned
09/09/2008 04:33:35 File: c:\windows\system32\drivers\ipinip.sys ok scanned
09/09/2008 04:33:35 File: c:\windows\system32\drivers\ipnat.sys ok scanned
09/09/2008 04:33:35 File: c:\windows\system32\drivers\ipsec.sys ok scanned
09/09/2008 04:33:35 File: c:\windows\system32\drivers\irenum.sys ok scanned
09/09/2008 04:33:35 File: c:\windows\system32\drivers\28090357.sys ok scanned
09/09/2008 04:33:35 File: c:\windows\system32\drivers\47316258.sys ok scanned
09/09/2008 04:33:35 File: c:\windows\system32\drivers\isapnp.sys ok scanned
09/09/2008 04:33:35 File: c:\windows\system32\drivers\kbdclass.sys ok scanned
09/09/2008 04:33:35 File: c:\windows\system32\drivers\kmixer.sys ok scanned
09/09/2008 04:33:35 File: c:\windows\system32\tcpsvcs.exe ok scanned
09/09/2008 04:33:35 File: c:\program files\ma-config.com\maconfservice.exe ok scanned
09/09/2008 04:33:35 File: c:\windows\system32\drivers\mdc8021x.sys ok scanned
09/09/2008 04:33:36 File: c:\program files\fichiers communs\microsoft shared\vs7debug\mdm.exe ok scanned
09/09/2008 04:33:36 File: c:\windows\system32\mnmsrvc.exe ok scanned
09/09/2008 04:33:36 File: c:\windows\system32\drivers\modemcsa.sys ok scanned
09/09/2008 04:33:36 File: c:\windows\system32\drivers\mouclass.sys ok scanned
09/09/2008 04:33:36 File: c:\windows\system32\drivers\mqac.sys ok scanned
09/09/2008 04:33:36 File: c:\windows\system32\drivers\mrxdav.sys packed file PE_Patch
09/09/2008 04:33:36 File: c:\windows\system32\drivers\mrxdav.sys//PE_Patch ok scanned
09/09/2008 04:33:36 File: c:\windows\system32\drivers\mrxdav.sys ok scanned
09/09/2008 04:33:37 File: c:\windows\system32\drivers\mrxsmb.sys packed file PE_Patch
09/09/2008 04:33:37 File: c:\windows\system32\drivers\mrxsmb.sys//PE_Patch ok scanned
09/09/2008 04:33:37 File: c:\windows\system32\drivers\mrxsmb.sys ok scanned
09/09/2008 04:33:37 File: c:\windows\system32\msdtc.exe ok scanned
09/09/2008 04:33:37 File: c:\windows\system32\msiexec.exe ok scanned
09/09/2008 04:33:37 File: c:\windows\system32\drivers\mskssrv.sys ok scanned
09/09/2008 04:33:37 File: c:\windows\system32\mqsvc.exe ok scanned
09/09/2008 04:33:37 File: c:\windows\system32\mqtgsvc.exe ok scanned
09/09/2008 04:33:38 File: c:\windows\system32\drivers\mspclock.sys ok scanned
09/09/2008 04:33:38 File: c:\windows\system32\drivers\mspqm.sys ok scanned
09/09/2008 04:33:38 File: c:\windows\system32\drivers\mssmbios.sys ok scanned
09/09/2008 04:33:38 File: c:\windows\system32\drivers\mtlmnt5.sys ok scanned
09/09/2008 04:33:38 File: c:\windows\system32\drivers\mtlstrm.sys ok scanned
09/09/2008 04:33:38 File: c:\windows\system32\drivers\ndistapi.sys ok scanned
09/09/2008 04:33:38 File: c:\windows\system32\drivers\ndisuio.sys ok scanned
09/09/2008 04:33:38 File: c:\windows\system32\drivers\ndiswan.sys ok scanned
09/09/2008 04:33:38 File: c:\windows\system32\drivers\netbios.sys ok scanned
09/09/2008 04:33:38 File: c:\windows\system32\drivers\netbt.sys ok scanned
09/09/2008 04:33:38 File: c:\windows\system32\netdde.exe ok scanned
09/09/2008 04:33:38 File: c:\windows\system32\lsass.exe ok scanned
09/09/2008 04:33:38 File: c:\windows\system32\drivers\nic1394.sys ok scanned
09/09/2008 04:33:39 File: c:\program files\network lookout\net monitor for employees professional\bin\nlsagentsvc.exe ok scanned
09/09/2008 04:33:39 File: c:\windows\system32\drivers\ntmtlfax.sys ok scanned
09/09/2008 04:33:39 File: c:\windows\system32\drivers\nwlnkflt.sys ok scanned
09/09/2008 04:33:39 File: c:\windows\system32\drivers\nwlnkfwd.sys ok scanned
09/09/2008 04:33:39 File: c:\windows\system32\drivers\ohci1394.sys ok scanned
09/09/2008 04:33:39 File: c:\windows\system32\pcampr5.sys ok scanned
09/09/2008 04:33:39 File: c:\windows\system32\pcandis5.sys ok scanned
09/09/2008 04:33:39 File: c:\windows\system32\drivers\pci.sys ok scanned
09/09/2008 04:33:39 File: c:\windows\system32\drivers\pcmcia.sys ok scanned
09/09/2008 04:33:39 File: c:\windows\system32\drivers\raspptp.sys ok scanned
09/09/2008 04:33:39 File: c:\windows\system32\drivers\psched.sys ok scanned
09/09/2008 04:33:39 File: c:\windows\system32\drivers\ptilink.sys ok scanned
09/09/2008 04:33:39 File: c:\windows\system32\drivers\pxhelp20.sys ok scanned
09/09/2008 04:33:39 File: c:\windows\system32\drivers\rasacd.sys ok scanned
09/09/2008 04:33:39 File: c:\windows\system32\drivers\rasl2tp.sys ok scanned
09/09/2008 04:33:40 File: c:\windows\system32\drivers\raspppoe.sys ok scanned
09/09/2008 04:33:40 File: c:\windows\system32\drivers\raspti.sys ok scanned
09/09/2008 04:33:40 File: c:\windows\system32\drivers\rdbss.sys ok scanned
09/09/2008 04:33:40 File: c:\windows\system32\drivers\rdpcdd.sys ok scanned
09/09/2008 04:33:40 File: c:\windows\system32\drivers\rdpdr.sys ok scanned
09/09/2008 04:33:40 File: c:\windows\system32\sessmgr.exe ok scanned
09/09/2008 04:33:40 File: c:\windows\system32\drivers\recagent.sys ok scanned
09/09/2008 04:33:40 File: c:\windows\system32\drivers\redbook.sys ok scanned
09/09/2008 04:33:40 File: c:\windows\system32\drivers\rmcast.sys ok scanned
09/09/2008 04:33:40 File: c:\windows\system32\locator.exe ok scanned
09/09/2008 04:33:40 File: c:\windows\system32\rsvp.exe ok scanned
09/09/2008 04:33:41 File: c:\windows\system32\drivers\s3gnbm.sys ok scanned
09/09/2008 04:33:41 File: c:\windows\system32\scardsvr.exe ok scanned
09/09/2008 04:33:41 File: c:\windows\system32\drivers\secdrv.sys ok scanned
09/09/2008 04:33:41 File: c:\windows\system32\drivers\slntamr.sys ok scanned
09/09/2008 04:33:41 File: c:\windows\system32\drivers\slnthal.sys ok scanned
09/09/2008 04:33:41 File: c:\windows\system32\slserv.exe ok scanned
09/09/2008 04:33:41 File: c:\windows\system32\drivers\slwdmsup.sys ok scanned
09/09/2008 04:33:41 File: c:\windows\system32\snmp.exe ok scanned
09/09/2008 04:33:41 File: c:\windows\system32\snmptrap.exe ok scanned
09/09/2008 04:33:41 File: c:\windows\system32\drivers\splitter.sys ok scanned
09/09/2008 04:33:41 File: c:\windows\system32\spoolsv.exe ok scanned
09/09/2008 04:33:41 File: c:\windows\system32\drivers\sr.sys packed file PE_Patch
09/09/2008 04:33:41 File: c:\windows\system32\drivers\sr.sys//PE_Patch ok scanned
09/09/2008 04:33:41 File: c:\windows\system32\drivers\sr.sys ok scanned
09/09/2008 04:33:42 File: c:\windows\system32\drivers\srv.sys ok scanned
09/09/2008 04:33:42 File: c:\windows\system32\drivers\swenum.sys ok scanned
09/09/2008 04:33:42 File: c:\windows\system32\drivers\swmidi.sys ok scanned
09/09/2008 04:33:42 File: c:\windows\system32\drivers\sysaudio.sys ok scanned
09/09/2008 04:33:42 File: c:\windows\system32\smlogsvc.exe ok scanned
09/09/2008 04:33:42 File: c:\windows\system32\drivers\tcpip.sys ok scanned
09/09/2008 04:33:42 File: c:\windows\system32\drivers\termdd.sys ok scanned
09/09/2008 04:33:42 File: c:\windows\system32\tlntsvr.exe ok scanned
09/09/2008 04:33:42 File: c:\windows\system32\wdfmgr.exe ok scanned
09/09/2008 04:33:42 File: c:\windows\system32\drivers\update.sys ok scanned
09/09/2008 04:33:43 File: c:\windows\system32\ups.exe ok scanned
09/09/2008 04:33:43 File: c:\windows\system32\drivers\usbaudio.sys ok scanned
09/09/2008 04:33:43 File: c:\windows\system32\drivers\usbccgp.sys ok scanned
09/09/2008 04:33:43 File: c:\windows\system32\drivers\usbehci.sys ok scanned
09/09/2008 04:33:43 File: c:\windows\system32\drivers\usbhub.sys ok scanned
09/09/2008 04:33:43 File: c:\windows\system32\drivers\usbstor.sys ok scanned
09/09/2008 04:33:43 File: c:\windows\system32\drivers\usbuhci.sys ok scanned
09/09/2008 04:33:43 File: c:\windows\system32\drivers\usb8023.sys ok scanned
09/09/2008 04:33:43 File: c:\program files\msn messenger\usnsvc.exe ok scanned
09/09/2008 04:33:43 File: c:\windows\system32\drivers\vga.sys ok scanned
09/09/2008 04:33:43 File: c:\windows\system32\drivers\viaagp.sys ok scanned
09/09/2008 04:33:43 File: c:\windows\system32\drivers\viaide.sys ok scanned
09/09/2008 04:33:44 File: c:\windows\system32\vssvc.exe ok scanned
09/09/2008 04:33:44 File: c:\windows\system32\drivers\wanarp.sys ok scanned
09/09/2008 04:33:44 File: c:\windows\system32\drivers\wdmaud.sys ok scanned
09/09/2008 04:33:45 File: c:\windows\system32\wbem\wmiapsrv.exe ok scanned
09/09/2008 04:33:45 File: c:\windows\system32\drivers\ws2ifsl.sys ok scanned
09/09/2008 04:33:45 File: C:\WINDOWS\system32\drivers\acpi.sys ok scanned
09/09/2008 04:33:45 File: C:\WINDOWS\system32\drivers\acpiec.sys ok scanned
09/09/2008 04:33:45 File: C:\WINDOWS\system32\drivers\aec.sys ok scanned
09/09/2008 04:33:45 File: C:\WINDOWS\system32\drivers\alcxwdm.sys ok scanned
09/09/2008 04:33:45 File: C:\WINDOWS\system32\drivers\amdk7.sys ok scanned
09/09/2008 04:33:45 File: C:\WINDOWS\system32\drivers\arp1394.sys ok scanned
09/09/2008 04:33:45 File: C:\WINDOWS\system32\drivers\aswfsblk.sys packed file PE_Patch
09/09/2008 04:33:45 File: C:\WINDOWS\system32\drivers\aswfsblk.sys//PE_Patch ok scanned
09/09/2008 04:33:45 File: C:\WINDOWS\system32\drivers\aswfsblk.sys ok scanned
09/09/2008 04:33:45 File: C:\WINDOWS\system32\drivers\asyncmac.sys ok scanned
09/09/2008 04:33:45 File: C:\WINDOWS\system32\drivers\atapi.sys ok scanned
09/09/2008 04:33:45 File: C:\WINDOWS\system32\drivers\atmarpc.sys ok scanned
09/09/2008 04:33:45 File: C:\WINDOWS\system32\drivers\audstub.sys ok scanned
09/09/2008 04:33:45 File: C:\WINDOWS\system32\drivers\cdrom.sys ok scanned
09/09/2008 04:33:45 File: C:\WINDOWS\system32\drivers\cmbatt.sys ok scanned
09/09/2008 04:33:45 File: C:\WINDOWS\system32\drivers\compbatt.sys ok scanned
09/09/2008 04:33:45 File: C:\WINDOWS\system32\drivers\disk.sys ok scanned
09/09/2008 04:33:45 File: C:\WINDOWS\system32\drivers\dmboot.sys packed file PE_Patch
09/09/2008 04:33:45 File: C:\WINDOWS\system32\drivers\dmboot.sys//PE_Patch ok scanned
09/09/2008 04:33:45 File: C:\WINDOWS\system32\drivers\dmboot.sys ok scanned
09/09/2008 04:33:45 File: C:\WINDOWS\system32\drivers\dmio.sys ok scanned
09/09/2008 04:33:45 File: C:\WINDOWS\system32\drivers\dmusic.sys ok scanned
09/09/2008 04:33:45 File: C:\WINDOWS\system32\drivers\drmkaud.sys ok scanned
09/09/2008 04:33:45 File: C:\WINDOWS\system32\drivers\emcr7sk.sys ok scanned
09/09/2008 04:33:45 File: C:\WINDOWS\system32\drivers\fetnd5.sys ok scanned
09/09/2008 04:33:45 File: C:\WINDOWS\system32\drivers\fltmgr.sys packed file PE_Patch
09/09/2008 04:33:45 File: C:\WINDOWS\system32\drivers\fltmgr.sys//PE_Patch ok scanned
09/09/2008 04:33:45 File: C:\WINDOWS\system32\drivers\fltmgr.sys ok scanned
09/09/2008 04:33:46 File: C:\WINDOWS\system32\drivers\ftdisk.sys ok scanned
09/09/2008 04:33:46 File: C:\WINDOWS\system32\drivers\msgpc.sys ok scanned
09/09/2008 04:33:46 File: C:\WINDOWS\system32\drivers\gt51ip.sys ok scanned
09/09/2008 04:33:46 File: C:\WINDOWS\system32\drivers\gt72ubus.sys ok scanned
09/09/2008 04:33:46 File: C:\WINDOWS\system32\drivers\gtptser.sys ok scanned
09/09/2008 04:33:46 File: C:\WINDOWS\system32\drivers\hidusb.sys ok scanned
09/09/2008 04:33:46 File: C:\WINDOWS\system32\drivers\http.sys ok scanned
09/09/2008 04:33:46 File: C:\WINDOWS\system32\drivers\i8042prt.sys ok scanned
09/09/2008 04:33:46 File: C:\WINDOWS\system32\drivers\imapi.sys ok scanned
09/09/2008 04:33:46 File: C:\WINDOWS\system32\drivers\ip6fw.sys ok scanned
09/09/2008 04:33:46 File: C:\WINDOWS\system32\drivers\ipfltdrv.sys ok scanned
09/09/2008 04:33:46 File: C:\WINDOWS\system32\drivers\ipinip.sys ok scanned
09/09/2008 04:33:46 File: C:\WINDOWS\system32\drivers\ipnat.sys ok scanned
09/09/2008 04:33:46 File: C:\WINDOWS\system32\drivers\ipsec.sys ok scanned
09/09/2008 04:33:46 File: C:\WINDOWS\system32\drivers\irenum.sys ok scanned
09/09/2008 04:33:46 File: C:\WINDOWS\system32\drivers\28090357.sys ok scanned
09/09/2008 04:33:46 File: C:\WINDOWS\system32\drivers\47316258.sys ok scanned
09/09/2008 04:33:46 File: C:\WINDOWS\system32\drivers\isapnp.sys ok scanned
09/09/2008 04:33:46 File: C:\WINDOWS\system32\drivers\kbdclass.sys ok scanned
09/09/2008 04:33:46 File: C:\WINDOWS\system32\drivers\kmixer.sys ok scanned
09/09/2008 04:33:46 File: C:\WINDOWS\system32\drivers\mdc8021x.sys ok scanned
09/09/2008 04:33:46 File: C:\WINDOWS\system32\drivers\modemcsa.sys ok scanned
09/09/2008 04:33:46 File: C:\WINDOWS\system32\drivers\mouclass.sys ok scanned
09/09/2008 04:33:46 File: C:\WINDOWS\system32\drivers\mrxdav.sys packed file PE_Patch
09/09/2008 04:33:46 File: C:\WINDOWS\system32\drivers\mrxdav.sys//PE_Patch ok scanned
09/09/2008 04:33:46 File: C:\WINDOWS\system32\drivers\mrxdav.sys ok scanned
09/09/2008 04:33:46 File: C:\WINDOWS\system32\drivers\mrxsmb.sys packed file PE_Patch
09/09/2008 04:33:46 File: C:\WINDOWS\system32\drivers\mrxsmb.sys//PE_Patch ok scanned
09/09/2008 04:33:46 File: C:\WINDOWS\system32\drivers\mrxsmb.sys ok scanned
09/09/2008 04:33:46 File: C:\WINDOWS\system32\drivers\mskssrv.sys ok scanned
09/09/2008 04:33:46 File: C:\WINDOWS\system32\drivers\mspclock.sys ok scanned
09/09/2008 04:33:46 File: C:\WINDOWS\system32\drivers\mspqm.sys ok scanned
09/09/2008 04:33:46 File: C:\WINDOWS\system32\drivers\mssmbios.sys ok scanned
09/09/2008 04:33:46 File: C:\WINDOWS\system32\drivers\mtlmnt5.sys ok scanned
09/09/2008 04:33:46 File: C:\WINDOWS\system32\drivers\mtlstrm.sys ok scanned
09/09/2008 04:33:47 File: C:\WINDOWS\system32\drivers\ndistapi.sys ok scanned
09/09/2008 04:33:47 File: C:\WINDOWS\system32\drivers\ndisuio.sys ok scanned
09/09/2008 04:33:47 File: C:\WINDOWS\system32\drivers\ndiswan.sys ok scanned
09/09/2008 04:33:47 File: C:\WINDOWS\system32\drivers\netbios.sys ok scanned
09/09/2008 04:33:47 File: C:\WINDOWS\system32\drivers\netbt.sys ok scanned
09/09/2008 04:33:47 File: C:\WINDOWS\system32\drivers\nic1394.sys ok scanned
09/09/2008 04:33:47 File: C:\WINDOWS\system32\drivers\ntmtlfax.sys ok scanned
09/09/2008 04:33:47 File: C:\WINDOWS\system32\drivers\nwlnkflt.sys ok scanned
09/09/2008 04:33:47 File: C:\WINDOWS\system32\drivers\nwlnkfwd.sys ok scanned
09/09/2008 04:33:47 File: C:\WINDOWS\system32\drivers\ohci1394.sys ok scanned
09/09/2008 04:33:47 File: C:\WINDOWS\system32\drivers\pci.sys ok scanned
09/09/2008 04:33:47 File: C:\WINDOWS\system32\drivers\pcmcia.sys ok scanned
09/09/2008 04:33:47 File: C:\WINDOWS\system32\drivers\raspptp.sys ok scanned
09/09/2008 04:33:47 File: C:\WINDOWS\system32\drivers\psched.sys ok scanned
09/09/2008 04:33:47 File: C:\WINDOWS\system32\drivers\ptilink.sys ok scanned
09/09/2008 04:33:47 File: C:\WINDOWS\system32\drivers\pxhelp20.sys ok scanned
09/09/2008 04:33:47 File: C:\WINDOWS\system32\drivers\rasacd.sys ok scanned
09/09/2008 04:33:47 File: C:\WINDOWS\system32\drivers\rasl2tp.sys ok scanned
09/09/2008 04:33:47 File: C:\WINDOWS\system32\drivers\raspppoe.sys ok scanned
09/09/2008 04:33:47 File: C:\WINDOWS\system32\drivers\raspti.sys ok scanned
09/09/2008 04:33:47 File: C:\WINDOWS\system32\drivers\rdbss.sys ok scanned
09/09/2008 04:33:47 File: C:\WINDOWS\system32\drivers\rdpcdd.sys ok scanned
09/09/2008 04:33:47 File: C:\WINDOWS\system32\drivers\rdpdr.sys ok scanned
09/09/2008 04:33:48 File: C:\WINDOWS\system32\drivers\recagent.sys ok scanned
09/09/2008 04:33:48 File: C:\WINDOWS\system32\drivers\redbook.sys ok scanned
09/09/2008 04:33:48 File: C:\WINDOWS\system32\rpcss.dll ok scanned
09/09/2008 04:33:48 File: C:\WINDOWS\system32\drivers\s3gnbm.sys ok scanned
09/09/2008 04:33:48 File: C:\WINDOWS\system32\drivers\secdrv.sys ok scanned
09/09/2008 04:33:48 File: C:\WINDOWS\system32\drivers\slntamr.sys ok scanned
09/09/2008 04:33:49 File: C:\WINDOWS\system32\drivers\slnthal.sys ok scanned
09/09/2008 04:33:50 File: C:\WINDOWS\system32\slserv.exe ok scanned
09/09/2008 04:33:51 File: C:\WINDOWS\system32\drivers\slwdmsup.sys ok scanned
09/09/2008 04:33:51 File: C:\WINDOWS\system32\drivers\splitter.sys ok scanned
09/09/2008 04:33:51 File: C:\WINDOWS\system32\drivers\sr.sys packed file PE_Patch
09/09/2008 04:33:51 File: C:\WINDOWS\system32\drivers\sr.sys//PE_Patch ok scanned
09/09/2008 04:33:51 File: C:\WINDOWS\system32\drivers\sr.sys ok scanned
09/09/2008 04:33:51 File: C:\WINDOWS\system32\drivers\srv.sys ok scanned
09/09/2008 04:33:51 File: C:\WINDOWS\system32\drivers\swenum.sys ok scanned
09/09/2008 04:33:51 File: C:\WINDOWS\system32\drivers\swmidi.sys ok scanned
09/09/2008 04:33:51 File: C:\WINDOWS\system32\drivers\sysaudio.sys ok scanned
09/09/2008 04:33:51 File: C:\WINDOWS\system32\drivers\tcpip.sys ok scanned
09/09/2008 04:33:51 File: C:\WINDOWS\system32\drivers\termdd.sys ok scanned
09/09/2008 04:33:51 File: C:\WINDOWS\system32\drivers\update.sys ok scanned
09/09/2008 04:33:51 File: C:\WINDOWS\system32\drivers\usbaudio.sys ok scanned
09/09/2008 04:33:51 File: C:\WINDOWS\system32\drivers\usbccgp.sys ok scanned
09/09/2008 04:33:51 File: C:\WINDOWS\system32\drivers\usbehci.sys ok scanned
09/09/2008 04:33:51 File: C:\WINDOWS\system32\drivers\usbhub.sys ok scanned
09/09/2008 04:33:51 File: C:\WINDOWS\system32\drivers\usbstor.sys ok scanned
09/09/2008 04:33:51 File: C:\WINDOWS\system32\drivers\usbuhci.sys ok scanned
09/09/2008 04:33:51 File: C:\WINDOWS\system32\drivers\usb8023.sys ok scanned
09/09/2008 04:33:51 File: C:\WINDOWS\system32\drivers\viaagp.sys ok scanned
09/09/2008 04:33:51 File: C:\WINDOWS\system32\drivers\viaide.sys ok scanned
09/09/2008 04:33:52 File: C:\WINDOWS\system32\drivers\wanarp.sys ok scanned
09/09/2008 04:33:52 File: C:\WINDOWS\system32\drivers\wdmaud.sys ok scanned
09/09/2008 04:33:52 File: c:\windows\system32\autochk.exe ok scanned
09/09/2008 04:33:52 File: C:\WINDOWS\system32\autochk.exe ok scanned
09/09/2008 04:33:52 File: c:\windows\inf\unregmp2.exe ok scanned
09/09/2008 04:33:52 File: c:\windows\system32\shmgrate.exe ok scanned
09/09/2008 04:33:53 File: c:\windows\system32\iedkcs32.dll ok scanned
09/09/2008 04:33:53 File: c:\windows\system32\themeui.dll ok scanned
09/09/2008 04:33:53 File: c:\program files\outlook express\setup50.exe//# ok scanned
09/09/2008 04:33:53 File: c:\program files\outlook express\setup50.exe ok scanned
09/09/2008 04:33:53 File: c:\windows\system32\user.exe ok scanned
09/09/2008 04:33:54 File: c:\windows\system32\advpack.dll ok scanned
09/09/2008 04:33:54 File: c:\windows\inf\msnetmtg.inf ok scanned
09/09/2008 04:33:54 File: C:\WINDOWS\system32\advpack.dll ok scanned
09/09/2008 04:33:54 File: c:\windows\inf\msmsgs.inf ok scanned
09/09/2008 04:33:54 File: c:\windows\inf\wmp10.inf ok scanned
09/09/2008 04:33:54 File: C:\WINDOWS\system32\user.exe ok scanned
09/09/2008 04:33:54 File: C:\WINDOWS\system32\shell32.dll ok scanned
09/09/2008 04:33:54 File: c:\windows\system32\ie4uinit.exe ok scanned
09/09/2008 04:33:55 File: c:\windows\inf\fxsocm.inf ok scanned
09/09/2008 04:33:55 File: c:\windows\system32\comm.drv ok scanned
09/09/2008 04:33:55 File: c:\windows\system\vga.drv ok scanned
09/09/2008 04:33:55 File: c:\windows\system\mmsystem.dll ok scanned
09/09/2008 04:33:55 File: c:\windows\system\keyboard.drv ok scanned
09/09/2008 04:33:55 File: c:\windows\system\mouse.drv ok scanned
09/09/2008 04:33:55 File: c:\windows\system\wfwnet.drv ok scanned
09/09/2008 04:33:55 File: c:\windows\system32\progman.exe ok scanned
09/09/2008 04:33:55 File: c:\windows\system\sound.drv ok scanned
09/09/2008 04:33:55 File: c:\windows\system\system.drv ok scanned
09/09/2008 04:33:55 File: C:\WINDOWS\system32\timer.drv ok scanned
09/09/2008 04:33:55 File: c:\windows\system32\midimap.dll ok scanned
09/09/2008 04:33:55 File: c:\windows\system32\imaadp32.acm ok scanned
09/09/2008 04:33:56 File: c:\windows\system32\msadp32.acm ok scanned
09/09/2008 04:33:56 File: c:\windows\system32\msg711.acm ok scanned
09/09/2008 04:33:56 File: c:\windows\system32\msgsm32.acm ok scanned
09/09/2008 04:33:56 File: c:\windows\system32\tssoft32.acm ok scanned
09/09/2008 04:33:56 File: c:\windows\system32\iccvid.dll ok scanned
09/09/2008 04:33:56 File: c:\windows\system32\msh263.drv ok scanned
09/09/2008 04:33:56 File: c:\windows\system32\ir32_32.dll ok scanned
09/09/2008 04:33:56 File: C:\WINDOWS\system32\ir32_32.dll ok scanned
09/09/2008 04:33:56 File: c:\windows\system32\ir41_32.ax ok scanned
09/09/2008 04:33:56 File: c:\windows\system32\iyuv_32.dll ok scanned
09/09/2008 04:33:56 File: c:\windows\system32\msrle32.dll ok scanned
09/09/2008 04:33:56 File: c:\windows\system32\msvidc32.dll ok scanned
09/09/2008 04:33:56 File: c:\windows\system32\msyuv.dll ok scanned
09/09/2008 04:33:57 File: C:\WINDOWS\system32\msyuv.dll ok scanned
09/09/2008 04:33:57 File: c:\windows\system32\tsbyuv.dll ok scanned
09/09/2008 04:33:57 File: c:\windows\system32\msacm32.drv ok scanned
09/09/2008 04:33:57 File: c:\windows\system32\msg723.acm ok scanned
09/09/2008 04:33:57 File: C:\WINDOWS\system32\msh263.drv ok scanned
09/09/2008 04:33:57 File: c:\windows\system32\msh261.drv ok scanned
09/09/2008 04:33:57 File: c:\windows\system32\msaud32.acm ok scanned
09/09/2008 04:33:57 File: c:\windows\system32\sl_anet.acm ok scanned
09/09/2008 04:33:58 File: c:\windows\system32\iac25_32.ax ok scanned
09/09/2008 04:33:58 File: c:\windows\system32\ir50_32.dll ok scanned
09/09/2008 04:33:59 File: c:\windows\system32\l3codeca.acm ok scanned
09/09/2008 04:34:00 File: c:\windows\system32\wdmaud.drv ok scanned
09/09/2008 04:34:00 File: C:\WINDOWS\system32\wdmaud.drv ok scanned
09/09/2008 04:34:02 File: c:\windows\system32\mpg4c32.dll ok scanned
09/09/2008 04:34:03 File: C:\WINDOWS\system32\mpg4c32.dll ok scanned
09/09/2008 04:34:03 File: c:\windows\system32\divx.dll packed file PE_Patch.PECompact
09/09/2008 04:34:03 File: c:\windows\system32\divx.dll//PE_Patch.PECompact packed file PecBundle
09/09/2008 04:34:03 File: c:\windows\system32\divx.dll//PE_Patch.PECompact//PecBundle packed file PECompact
09/09/2008 04:34:04 File: c:\windows\system32\divx.dll//PE_Patch.PECompact//PecBundle//PECompact ok scanned
09/09/2008 04:34:04 File: c:\windows\system32\divx.dll//PE_Patch.PECompact//PecBundle ok scanned
09/09/2008 04:34:04 File: c:\windows\system32\divx.dll//PE_Patch.PECompact ok scanned
09/09/2008 04:34:04 File: c:\windows\system32\divx.dll ok scanned
09/09/2008 04:34:04 File: c:\windows\system32\serwvdrv.dll ok scanned
09/09/2008 04:34:04 File: c:\windows\system32\sirenacm.dll ok scanned
09/09/2008 04:34:04 File: c:\windows\system32\webcheck.dll ok scanned
09/09/2008 04:34:04 File: c:\windows\system32\st.dll ok scanned
09/09/2008 04:34:04 File: c:\windows\system32\logon.scr ok scanned
09/09/2008 04:34:04 File: C:\WINDOWS\system32\logon.scr ok scanned
09/09/2008 04:34:04 File: c:\windows\system32\browseui.dll ok scanned
09/09/2008 04:34:04 File: c:\program files\applications\iebtm.exe ok scanned
09/09/2008 04:34:04 File: c:\windows\system32\mmsys.cpl ok scanned
09/09/2008 04:34:05 File: c:\windows\system32\icmui.dll ok scanned
09/09/2008 04:34:05 File: c:\windows\system32\rshx32.dll ok scanned
09/09/2008 04:34:05 File: c:\windows\system32\docprop.dll ok scanned
09/09/2008 04:34:05 File: c:\windows\system32\ntshrui.dll ok scanned
09/09/2008 04:34:05 File: c:\windows\system32\deskadp.dll ok scanned
09/09/2008 04:34:05 File: c:\windows\system32\deskmon.dll ok scanned
09/09/2008 04:34:05 File: c:\windows\system32\dssec.dll ok scanned
09/09/2008 04:34:05 File: c:\windows\system32\slayerxp.dll ok scanned
09/09/2008 04:34:05 File: c:\windows\system32\shscrap.dll ok scanned
09/09/2008 04:34:05 File: c:\windows\system32\diskcopy.dll ok scanned
09/09/2008 04:34:05 File: c:\windows\system32\ntlanui2.dll ok scanned
09/09/2008 04:34:05 File: c:\windows\system32\printui.dll ok scanned
09/09/2008 04:34:05 File: c:\windows\system32\dskquoui.dll ok scanned
09/09/2008 04:34:05 File: c:\windows\system32\syncui.dll ok scanned
09/09/2008 04:34:05 File: c:\windows\system32\hticons.dll ok scanned
09/09/2008 04:34:06 File: c:\windows\system32\fontext.dll ok scanned
09/09/2008 04:34:06 File: C:\WINDOWS\system32\rshx32.dll ok scanned
09/09/2008 04:34:06 File: C:\WINDOWS\system32\ntshrui.dll ok scanned
09/09/2008 04:34:06 File: c:\windows\system32\deskperf.dll ok scanned
09/09/2008 04:34:06 File: c:\windows\system32\wiashext.dll ok scanned
09/09/2008 04:34:07 File: C:\WINDOWS\system32\wiashext.dll ok scanned
09/09/2008 04:34:07 File: c:\windows\system32\remotepg.dll ok scanned
09/09/2008 04:34:07 File: c:\windows\system32\wshext.dll ok scanned
09/09/2008 04:34:07 File: c:\program files\fichiers communs\system\ole db\oledb32.dll ok scanned
09/09/2008 04:34:07 File: c:\windows\system32\mstask.dll ok scanned
09/09/2008 04:34:07 File: c:\windows\system32\shdocvw.dll ok scanned
09/09/2008 04:34:07 File: c:\windows\system32\wuaucpl.cpl ok scanned
09/09/2008 04:34:07 File: c:\windows\system32\twext.dll ok scanned
09/09/2008 04:34:07 File: c:\windows\system32\shmedia.dll ok scanned
09/09/2008 04:34:08 File: c:\windows\system32\sendmail.dll ok scanned
09/09/2008 04:34:08 File: c:\windows\system32\occache.dll ok scanned
09/09/2008 04:34:08 File: c:\windows\system32\appwiz.cpl ok scanned
09/09/2008 04:34:08 File: c:\windows\system32\netplwiz.dll ok scanned
09/09/2008 04:34:09 File: c:\windows\system32\zipfldr.dll ok scanned
09/09/2008 04:34:09 File: c:\windows\system32\extmgr.dll ok scanned
09/09/2008 04:34:09 File: c:\windows\system32\msieftp.dll ok scanned
09/09/2008 04:34:09 File: c:\windows\system32\docprop2.dll ok scanned
09/09/2008 04:34:09 File: c:\windows\system32\dsquery.dll ok scanned
09/09/2008 04:34:09 File: c:\windows\system32\dsuiext.dll ok scanned
09/09/2008 04:34:09 File: c:\windows\system32\mydocs.dll ok scanned
09/09/2008 04:34:09 File: c:\windows\system32\cscui.dll ok scanned
09/09/2008 04:34:09 File: c:\windows\msagent\agentpsh.dll ok scanned
09/09/2008 04:34:10 File: c:\windows\system32\dfsshlex.dll ok scanned
09/09/2008 04:34:10 File: c:\windows\system32\photowiz.dll ok scanned
09/09/2008 04:34:10 File: c:\windows\system32\mmcshext.dll ok scanned
09/09/2008 04:34:10 File: c:\windows\system32\cabview.dll ok scanned
09/09/2008 04:34:10 File: c:\program files\outlook express\wabfind.dll ok scanned
09/09/2008 04:34:10 File: c:\windows\system32\wmpshell.dll ok scanned
09/09/2008 04:34:10 File: c:\windows\system32\inetsrv\w3ext.dll ok scanned
09/09/2008 04:34:10 File: c:\program files\sonic\recordnow!\shlext.dll ok scanned
09/09/2008 04:34:10 File: c:\progra~1\fichie~1\micros~1\webfol~1\msonsext.dll ok scanned
09/09/2008 04:34:10 File: c:\program files\microsoft office\office10\olkfstub.dll ok scanned
09/09/2008 04:34:10 File: c:\program files\microsoft office\office10\msohev.dll ok scanned
09/09/2008 04:34:10 File: c:\windows\system32\audiodev.dll ok scanned
09/09/2008 04:34:10 File: c:\program files\winrar\rarext.dll ok scanned
09/09/2008 04:34:10 File: c:\program files\real\realplayer\rpshell.dll ok scanned
09/09/2008 04:34:11 File: c:\program files\alwil software\avast4\ashshell.dll ok scanned
09/09/2008 04:34:11 File: c:\program files\msn messenger\fsshext.8.1.0178.00.dll ok scanned
09/09/2008 04:34:11 File: c:\program files\orbitdownloader\orbitmxt.dll ok scanned
09/09/2008 04:34:11 File: c:\program files\orbitdownloader\orbitcth.dll ok scanned
09/09/2008 04:34:11 File: c:\program files\adobe\acrobat 7.0\activex\acroiehelper.dll ok scanned
09/09/2008 04:34:11 File: c:\program files\applications\iebt.dll packed file PE_Patch.UPX
09/09/2008 04:34:11 File: c:\program files\applications\iebt.dll//PE_Patch.UPX packed file UPX
09/09/2008 04:34:11 File: c:\program files\applications\iebt.dll//PE_Patch.UPX//UPX detected Trojan program 'Trojan-Downloader.Win32.Zlob.yes'
09/09/2008 04:34:11 File: c:\program files\applications\iebt.dll skipped processing stopped

Statistics
----------
Scanned Detected Untreated Deleted Moved to Quarantine Archives Packed files Password protected Corrupted
------ ------- -------- --------- ------- ------------------- -------- ------------ ------------------ ---------

Settings
--------
Parameter Value
--------- -----
Security Level Recommended
Action Disinfect, delete if disinfection fails
Run mode Manually
File types Scan all files
Scan only new and changed files No
Scan archives All
Scan embedded OLE s All
Skip if is larger than No
Skip if scan takes longer than No
Parse email formats No
Scan password-protected archives No
Enable iChecker technology No
Enable iSwift technology No
Show detected threats on "Detected" tab Yes
Rootkits search Yes
Deep rootkits search No
Use heuristic analyzer Yes

Quarantine
----------
Status Size Added
------ ------ ---- -----

Backup
------
Status Size
------ ------ ----
Infected: Trojan program Trojan-Downloader.Win32.Zlob.yeq c:\program files\applications\wcs.exe 15,5 KB
Infected: Trojan program Trojan-Downloader.Win32.Zlob.yes c:\program files\applications\iebt.dll 8 KB
Infected: Trojan program Trojan-Downloader.Win32.Zlob.yet C:\Program Files\Applications\iebtmm.exe 5,5 KB
 
توقيع : ALA39000
تأييد 0
هذا الهايجاك

Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 05:54:17, on 09/09/2008
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)
Boot mode: Normal
Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
C:\Program Files\Alwil Software\Avast4\ashServ.exe
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\system32\inetsrv\inetinfo.exe
C:\Program Files\Fichiers communs\Microsoft Shared\VS7Debug\mdm.exe
C:\Program Files\Network LookOut\Net Monitor for Employees Professional\bin\NLSAgentSvc.exe
C:\WINDOWS\system32\slserv.exe
C:\WINDOWS\System32\snmp.exe
C:\WINDOWS\system32\mqsvc.exe
C:\WINDOWS\system32\mqtgsvc.exe
C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
C:\Program Files\Network LookOut\Net Monitor for Employees Professional\bin\NLSAgent.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\Applications\iebtm.exe
C:\Program Files\CardDetector\ICON225\CardDetector.exe
C:\WINDOWS\SOUNDMAN.EXE
C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe
C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
C:\Program Files\Applications\iebtmm.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\SuperCopier\SuperCopier.exe
C:\Documents and Settings\SUPERTOP.SUPERTOP-CAB90E\Local Settings\Application Data\Google\Update\GoogleUpdate.exe
C:\Program Files\Winstep\nextstart.exe
C:\Program Files\MSN Messenger\MsnMsgr.Exe
C:\Program Files\Orbitdownloader\orbitdm.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Microsoft Office\Office10\msoffice.exe
C:\Program Files\Orbitdownloader\orbitnet.exe
C:\Program Files\Winstep\workshelf.exe
C:\Program Files\Internet Explorer\IEXPLORE.EXE
C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WLLoginProxy.exe
C:\Documents and Settings\SUPERTOP.SUPERTOP-CAB90E\Bureau\Kaspersky Lab Tool\is-BCQCP\is-BCQCP.exe
C:\WINDOWS\system32\NOTEPAD.EXE
C:\Documents and Settings\SUPERTOP.SUPERTOP-CAB90E\Bureau\Zyzoom_HijackThis.exe
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL =
يجب عليك تسجيل الدخول او تسجيل لمشاهدة الرابط المخفي

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL =
يجب عليك تسجيل الدخول او تسجيل لمشاهدة الرابط المخفي

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page =
يجب عليك تسجيل الدخول او تسجيل لمشاهدة الرابط المخفي

R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
O2 - BHO: btorbit.com - {000123B4-9B42-4900-B3F7-F4B073EFC214} - C:\Program Files\Orbitdownloader\orbitcth.dll
O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll
O2 - BHO: (no name) - {0BD44AB1-76A7-4E05-92F4-4B065FE72BD6} - C:\Program Files\Applications\iebt.dll
O2 - BHO: RealPlayer Download and Record Plugin for Internet Explorer - {3049C3E9-B461-4BC5-8870-4C09146192CA} - C:\Program Files\Real\RealPlayer\rpbrowserrecordplugin.dll
O2 - BHO: Windows Live Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O4 - HKLM\..\Run: [MsmqIntCert] regsvr32 /s mqrt.dll
O4 - HKLM\..\Run: [CardDetectorICON225] C:\Program Files\CardDetector\ICON225\CardDetector.exe
O4 - HKLM\..\Run: [SoundMan] SOUNDMAN.EXE
O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe" -osboot
O4 - HKLM\..\Run: [IMJPMIG8.1] "C:\WINDOWS\IME\imjp8_1\IMJPMIG.EXE" /Spoil /RemAdvDef /Migration32
O4 - HKLM\..\Run: [IMEKRMIG6.1] C:\WINDOWS\ime\imkr6_1\IMEKRMIG.EXE
O4 - HKLM\..\Run: [MSPY2002] C:\WINDOWS\system32\IME\PINTLGNT\ImScInst.exe /SYNC
O4 - HKLM\..\Run: [PHIME2002ASync] C:\WINDOWS\system32\IME\TINTLGNT\TINTSETP.EXE /SYNC
O4 - HKLM\..\Run: [PHIME2002A] C:\WINDOWS\system32\IME\TINTLGNT\TINTSETP.EXE /IMEName
O4 - HKLM\..\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [SuperCopier.exe] C:\Program Files\SuperCopier\SuperCopier.exe
O4 - HKCU\..\Run: [Google Update] "C:\Documents and Settings\SUPERTOP.SUPERTOP-CAB90E\Local Settings\Application Data\Google\Update\GoogleUpdate.exe" /c
O4 - HKCU\..\Run: [NextSTART] C:\Program Files\Winstep\nextstart.exe autostart
O4 - HKCU\..\Run: [MsnMsgr] "C:\Program Files\MSN Messenger\MsnMsgr.Exe" /background
O4 - HKLM\..\Policies\Explorer\Run: [start] C:\Program Files\Applications\iebtm.exe
O4 - HKLM\..\Policies\Explorer\Run: [smile] C:\Program Files\Applications\wcs.exe
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE R&Eacute;SEAU')
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
O4 - Global Startup: Microsoft Office.lnk = C:\Program Files\Microsoft Office\Office10\OSA.EXE
O4 - Global Startup: Lancement rapide d'Adobe Reader.lnk = C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe
O4 - Global Startup: Orbit.lnk = C:\Program Files\Orbitdownloader\orbitdm.exe
O8 - Extra context menu item: &Download by Orbit - res://C:\Program Files\Orbitdownloader\orbitmxt.dll/201
O8 - Extra context menu item: &Grab video by Orbit - res://C:\Program Files\Orbitdownloader\orbitmxt.dll/204
O8 - Extra context menu item: Do&wnload selected by Orbit - res://C:\Program Files\Orbitdownloader\orbitmxt.dll/203
O8 - Extra context menu item: Down&load all by Orbit - res://C:\Program Files\Orbitdownloader\orbitmxt.dll/202
O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office10\EXCEL.EXE/3000
O9 - Extra button: (no name) - {9034A523-D068-4BE8-A284-9DF278BE776E} -
يجب عليك تسجيل الدخول او تسجيل لمشاهدة الرابط المخفي
(file missing)
O9 - Extra 'Tools' menuitem: IE Anti-Spyware - {9034A523-D068-4BE8-A284-9DF278BE776E} -
يجب عليك تسجيل الدخول او تسجيل لمشاهدة الرابط المخفي
(file missing)
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) -
يجب عليك تسجيل الدخول او تسجيل لمشاهدة الرابط المخفي

O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} (MUWebControl Class) -
يجب عليك تسجيل الدخول او تسجيل لمشاهدة الرابط المخفي

O16 - DPF: {867E13F2-7F31-44FB-AC97-CD38E0DC46EF} (HardwareDetection Control) -
يجب عليك تسجيل الدخول او تسجيل لمشاهدة الرابط المخفي

O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\FICHIE~1\Skype\SKYPE4~1.DLL
O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - ALWIL Software - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
O23 - Service: avast! Antivirus - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashServ.exe
O23 - Service: avast! Mail Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
O23 - Service: avast! Web Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
O23 - Service: Ma-Config Service (maconfservice) - CybelSoft - C:\Program Files\ma-config.com\maconfservice.exe
O23 - Service: Net Monitor for Employees Agent (NMEmployeesAgent) - Unknown owner - C:\Program Files\Network LookOut\Net Monitor for Employees Professional\bin\NLSAgentSvc.exe
O23 - Service: SmartLinkService (SLService) - Smart Link - C:\WINDOWS\SYSTEM32\slserv.exe
--
End of file - 8064 bytes
 
توقيع : ALA39000
تأييد 0
تم التحرير

جاري تحليل تقريرك الجديد وهو الاهم
 
توقيع : Demo-dashDemo-dash is verified member.
تأييد 0
احذف

C:\Documents and Settings\SUPERTOP.SUPERTOP-CAB90E\Local Settings\Application Data\Google\Update\GoogleUpdate.exe


C:\Program Files\Winstep\nextstart.exe


C:\Program Files\Winstep\workshelf.exe


O4 - HKCU\..\Run: [Google Update] "C:\Documents and Settings\SUPERTOP.SUPERTOP-CAB90E\Local Settings\Application Data\Google\Update\GoogleUpdate.exe" /c


O4 - HKCU\..\Run: [NextSTART] C:\Program Files\Winstep\nextstart.exe autostart


O4 - HKLM\..\Policies\Explorer\Run: [start] C:\Program Files\Applications\iebtm.exe


O4 - HKLM\..\Policies\Explorer\Run: [smile] C:\Program Files\Applications\wcs.exe


O9 - Extra button: (no name) - {9034A523-D068-4BE8-A284-9DF278BE776E} -
يجب عليك تسجيل الدخول او تسجيل لمشاهدة الرابط المخفي
(file missing)


O9 - Extra 'Tools' menuitem: IE Anti-Spyware - {9034A523-D068-4BE8-A284-9DF278BE776E} -
يجب عليك تسجيل الدخول او تسجيل لمشاهدة الرابط المخفي
(file missing)



طريقة الحذف

mg%20%283%29.png


mg%20%284%29.png


ثم نزل هذه الاداة واتبع الشرح التالي

يجب عليك تسجيل الدخول او تسجيل لمشاهدة الرابط المخفي


التوافق : ويندوز اكسبيفقط

شرح الاستخدام ,,,,,,
عند تشغيل ملف الاداة تظهر لك هذه الشاشه ,, انتظر ( وتابع مع الصور )

000.png


001.png


وعند ظهور هذه الشاشه ,, اضغط على Close ليتم اعادة تشغيل جهازك (( لتكملة عملية التنظيف ))

002.png



رابط تحميل آخر تحديث للاداة
يجب عليك تسجيل الدخول او تسجيل لمشاهدة الرابط المخفي



شرح الاستخدام ,,,,,,
قم بتشغيل الملف SmitfraudFix.exe ,, وتابع الشرح كماا بهذه الصور

000.png





001.png





002.png





003.png





004.png





005.png

quot-bot-left.gif

quot-bot-right.gif


 
توقيع : Demo-dashDemo-dash is verified member.
تأييد 0
وهكذا نكون حذفنا جميع التروجونات بحمد الله

والان مجرد نصيحه اخي

انت مركب الأفاست وهو برنامج قوي جدا ومعترف به

انصحك بحذفه ثم تثبيت الكاسبر 2009 وتعمل فحص كامل لجهازك بالكاسبر ثم تحذف الكاسبر وترجع للأفاست

من هنا

يجب عليك تسجيل الدخول او تسجيل لمشاهدة الرابط المخفي


روابط اخرى

يجب عليك تسجيل الدخول او تسجيل لمشاهدة الرابط المخفي


يجب عليك تسجيل الدخول او تسجيل لمشاهدة الرابط المخفي


او اذا اردت النسخ العربيه من هنا

يجب عليك تسجيل الدخول او تسجيل لمشاهدة الرابط المخفي


وهنا المفاتيح

يجب عليك تسجيل الدخول او تسجيل لمشاهدة الرابط المخفي


واخيرا ركب الإعدادات التاليه للبرنامج



يجب عليك تسجيل الدخول او تسجيل لمشاهدة الرابط المخفي


باسورد فك الضغط

يجب عليك تسجيل الدخول او تسجيل لمشاهدة الرابط المخفي




شرح التركيب

000.png



001.png



002.png



003.png


ثم اعمل فحص كامل للجهاز

وانت حر في استخدام هذي الخطوه ,^^^^

جهازك الان نظيف لكن انا انصحك بها فقط ,,,, موفق بحول الله
 
توقيع : Demo-dashDemo-dash is verified member.
تأييد 0
مشكور اخي كلامك درر
و اقتراحاتك اوامر
انت تامر وانا انفذ و اردلك الخبر
 
توقيع : ALA39000
تأييد 0
ممكن اعمل فحص بالكاسبر عن طريق الشبكة من جهاز اخر بدون ما اثبت الكاسبر في جهازي
واذا ممكن الطريقة لو سمحت
 
توقيع : ALA39000
تأييد 0
توقيع : Demo-dashDemo-dash is verified member.
تأييد 0
الله عليك
 
توقيع : ALA39000
تأييد 0
ربي يجازيك كل خير
 
توقيع : ALA39000
تأييد 0
تسلم عزيزي
بالتوفيق
 
توقيع : Demo-dashDemo-dash is verified member.
تأييد 0
ضهرت هالمشكل الحل لو سمحت

zyzoom-dc2074556d.JPG
 
توقيع : ALA39000
تأييد 0
في كل برنامج افتحه
يطلع هالمسج
 
توقيع : ALA39000
تأييد 0
وينكم
 
توقيع : ALA39000
تأييد 0
ابدأ >>> تشغيل >>> واكتب

CHKDSK ثم انتر

شوي وبيقولك Y او N

اضغط Y ثم انتر

ثم نزل هذه الاداة واتبع الشرح التالي

يجب عليك تسجيل الدخول او تسجيل لمشاهدة الرابط المخفي


التوافق : ويندوز اكسبيفقط

شرح الاستخدام ,,,,,,
عند تشغيل ملف الاداة تظهر لك هذه الشاشه ,, انتظر ( وتابع مع الصور )

000.png


001.png


وعند ظهور هذه الشاشه ,, اضغط على Close ليتم اعادة تشغيل جهازك (( لتكملة عملية التنظيف ))

002.png

بعد التنظيف راح يعيد التشغيل تلقائيا


,,,,,,,,,,,,,,,
لما تعيد تشغيل الجهاز قبل مايشتغل الوندوز بتطلع لك شاشه زرقا بتفحص , وانت خلها لاتكنسلها

بعد ماتنتهي يشتغل الجهاز وان شاء الله تكون راحت


ماراحت احذف برنامج الSkype وثبته من جديد
 
توقيع : Demo-dashDemo-dash is verified member.
تأييد 0
يجب تسجيل الدخول أو التسجيل كي تتمكن من الرد هنا.
عودة
أعلى