lana - 06-10-17 22:45:26,21 Service Pack 2
ComboFix 06.10.16 - Running from: "C:\Documents and Settings\lana\Bureau"
((((((((((((((((((((((((((((((( Files Created from 2006-09-17 to 2006-10-17 ))))))))))))))))))))))))))))))))))
2006-10-15 18:23 14 --a------ C:\WINDOWS\system32\CleanMgr.reg
2006-10-14 20:58 40,960 --a------ C:\WINDOWS\system32\swsc.exe
2006-10-14 20:58 288,417 --a------ C:\WINDOWS\system32\SrchSTS.exe
2006-10-14 20:58 135,168 --a------ C:\WINDOWS\system32\swreg.exe
2006-10-14 18:29 15,360 --a------ C:\WINDOWS\system32\drivers\sshrmd.sys
2006-10-14 18:29 14,848 --a------ C:\WINDOWS\system32\drivers\sskbfd.sys
2006-10-14 18:29 13,824 --a------ C:\WINDOWS\system32\drivers\SSFS0509.sys
2006-10-14 18:29 117,248 --a------ C:\WINDOWS\system32\drivers\ssidrv.sys
2006-10-10 11:56 86,094 --a------ C:\WINDOWS\BPMNT.dll
2006-10-10 11:56 71,749 --a------ C:\WINDOWS\hcextoutput.dll
2006-10-10 11:56 176,709 --a------ C:\WINDOWS\tsc.exe
2006-10-10 11:56 1,101,904 --a------ C:\WINDOWS\vsapi32.dll
2006-10-10 11:49 69,689 --a------ C:\WINDOWS\UNZIP.DLL
2006-10-10 11:49 507,904 --a------ C:\WINDOWS\TMUPDATE.DLL
2006-10-10 11:49 286,720 --a------ C:\WINDOWS\PATCH.EXE
2006-10-08 22:28 42,920 --a------ C:\WINDOWS\system32\vsutil_loc040c.dll
2006-10-06 16:53 46,352 --a------ C:\WINDOWS\setdebug.exe
2006-10-06 16:53 139,536 --a------ C:\WINDOWS\system32\javaee.dll
2006-10-06 16:53 113 --a------ C:\WINDOWS\system32\zonedon.reg
2006-10-06 16:53 113 --a------ C:\WINDOWS\system32\zonedoff.reg
2006-10-05 14:39 5,632 --a------ C:\WINDOWS\system32\ptpusb.dll
2006-10-05 14:39 159,232 --a------ C:\WINDOWS\system32\ptpusd.dll
2006-10-05 14:39 15,104 --a------ C:\WINDOWS\system32\drivers\usbscan.sys
2006-10-02 21:04 806,912 --a------ C:\WINDOWS\system32\divx_xx0c.dll
2006-10-02 21:04 806,912 --a------ C:\WINDOWS\system32\divx_xx07.dll
2006-10-02 21:04 790,528 --a------ C:\WINDOWS\system32\divx_xx11.dll
2006-10-02 21:04 635,486 --a------ C:\WINDOWS\system32\DivX.dll
(((((((((((((((((((((((((((((((((((((((((((((((( Find3M Report )))))))))))))))))))))))))))))))))))))))))))))))))))))
2006-10-17 22:06 -------- d-------- C:\Program Files\Mozilla Firefox
2006-10-17 21:48 -------- d-------- C:\Program Files\eMule
2006-10-17 01:40 -------- d-------- C:\Program Files\GrabIt
2006-10-16 17:33 -------- d-------- C:\Documents and Settings\lana\Application Data\Lavasoft
2006-10-15 20:19 -------- d-------- C:\Program Files\Internet Explorer
2006-10-15 20:16 -------- d-------- C:\Documents and Settings\lana\Application Data\Mozilla
2006-10-15 14:08 -------- d-------- C:\Documents and Settings\lana\Application Data\Azureus
2006-10-14 18:29 -------- d-------- C:\Program Files\Webroot
2006-10-14 18:29 -------- d-------- C:\Documents and Settings\lana\Application Data\Webroot
2006-10-14 00:23 -------- d-------- C:\Program Files\Java
2006-10-14 00:23 -------- d-------- C:\Program Files\Fichiers communs\Java
2006-10-14 00:23 -------- d-------- C:\Program Files\Fichiers communs
2006-10-13 14:02 -------- d---s---- C:\Documents and Settings\lana\Application Data\Microsoft
2006-10-13 12:04 -------- d-------- C:\Program Files\MSN Messenger
2006-10-12 12:50 -------- d-------- C:\Documents and Settings\lana\Application Data\Help
2006-10-12 12:49 -------- d-------- C:\Program Files\Fichiers communs\Microsoft Shared
2006-10-11 17:25 -------- d-------- C:\Program Files\Fichiers communs\System
2006-10-08 22:28 -------- d-------- C:\Program Files\Zone Labs
2006-10-06 16:54 -------- d-------- C:\Program Files\Windows Media Player
2006-10-06 16:50 -------- d-------- C:\Program Files\Outlook Express
2006-10-04 21:13 -------- d-------- C:\Documents and Settings\lana\Application Data\DivX
2006-10-04 13:44 -------- d-------- C:\Program Files\DivX
2006-10-03 17:17 -------- d-------- C:\Documents and Settings\lana\Application Data\Sun
2006-10-02 22:15 -------- d-------- C:\Documents and Settings\lana\Application Data\Apple Computer
2006-09-25 17:45 666240 --a------ C:\WINDOWS\system32\aswBoot.exe
2006-09-25 17:40 87424 --a------ C:\WINDOWS\system32\drivers\aswmon2.sys
2006-09-25 17:40 85952 --a------ C:\WINDOWS\system32\drivers\aswmon.sys
2006-09-25 17:39 36176 --a------ C:\WINDOWS\system32\drivers\aswTdi.sys
2006-09-25 17:39 16352 --a------ C:\WINDOWS\system32\drivers\aswRdr.sys
2006-09-25 17:37 90112 --a------ C:\WINDOWS\system32\AVASTSS.scr
2006-09-25 17:37 24560 --a------ C:\WINDOWS\system32\drivers\aavmker4.sys
2006-09-16 21:58 -------- d-------- C:\Program Files\QuickPar
2006-09-16 19:15 -------- d--h----- C:\Program Files\InstallShield Installation Information
2006-09-16 19:00 -------- d-------- C:\Documents and Settings\lana\Application Data\Google
2006-09-16 16:17 24064 --a------ C:\WINDOWS\autoload.exe
2006-09-13 07:03 1084416 --a------ C:\WINDOWS\system32\msxml3.dll
2006-09-11 15:18 -------- d-------- C:\Program Files\Azureus
2006-09-11 09:23 -------- d-------- C:\Program Files\Messenger
2006-09-10 15:47 -------- d-------- C:\Documents and Settings\lana\Application Data\vlc
2006-09-09 17:49 -------- d-------- C:\Program Files\WinRAR
2006-09-09 16:03 -------- d-------- C:\Program Files\Fichiers communs\Logitech
2006-09-09 15:49 -------- d-------- C:\Documents and Settings\lana\Application Data\HP
2006-09-09 15:33 -------- d-------- C:\Program Files\Fichiers communs\Sonic Shared
2006-09-09 15:32 -------- d-------- C:\Program Files\Fichiers communs\HP
2006-09-09 15:30 -------- d-------- C:\Program Files\HP
2006-09-09 15:30 -------- d-------- C:\Program Files\Hewlett-Packard
2006-09-09 15:28 -------- d-------- C:\Program Files\Fichiers communs\Hewlett-Packard
2006-09-08 22:41 -------- d-------- C:\Documents and Settings\lana\Application Data\Macromedia
2006-09-08 20:56 -------- d-------- C:\Program Files\Alwil Software
2006-09-08 20:29 -------- d-------- C:\Program Files\VideoLAN
2006-09-08 20:27 36734 --a------ C:\WINDOWS\system32\OggDSuninst.exe
2006-09-08 20:27 -------- d-------- C:\Program Files\SLD Codec Pack
2006-09-08 19:07 -------- d-------- C:\Program Files\Movie Maker
2006-09-08 19:06 -------- d-------- C:\Program Files\Windows NT
2006-09-08 19:06 -------- d-------- C:\Program Files\NetMeeting
2006-09-08 18:50 -------- d-------- C:\Program Files\Broadcom
2006-09-08 18:47 -------- d-------- C:\Program Files\Fichiers communs\InstallShield
2006-09-08 18:45 -------- d-------- C:\Program Files\Creative
2006-09-08 18:30 -------- d-------- C:\Program Files\Intel
2006-09-08 18:06 -------- d--h----- C:\Program Files\Uninstall Information
2006-09-08 18:06 -------- d-------- C:\Documents and Settings\lana\Application Data\Identities
2006-09-08 18:02 0 -rahs---- C:\MSDOS.SYS
2006-09-08 18:02 0 -rahs---- C:\IO.SYS
2006-09-08 18:02 0 --a------ C:\CONFIG.SYS
2006-09-08 18:02 0 --a------ C:\AUTOEXEC.BAT
2006-09-08 18:02 -------- d-------- C:\Program Files\xerox
2006-09-08 18:02 -------- d-------- C:\Program Files\microsoft frontpage
2006-09-08 18:01 -------- d-------- C:\Program Files\Services en ligne
2006-09-08 18:00 -------- d-------- C:\Program Files\Fichiers communs\Services
2006-09-08 18:00 -------- d-------- C:\Program Files\Fichiers communs\MSSoap
2006-09-08 17:59 -------- d--h----- C:\Program Files\WindowsUpdate
2006-09-08 17:59 -------- d-------- C:\Program Files\MSN Gaming Zone
2006-08-28 10:04 11776 --a------ C:\WINDOWS\system32\ieudinit.exe
2006-08-25 17:51 617472 --a------ C:\WINDOWS\system32\comctl32.dll
2006-08-23 00:31 809472 --a------ C:\WINDOWS\system32\wininet3.dll
2006-08-21 14:26 16896 --a------ C:\WINDOWS\system32\fltlib.dll
2006-08-21 11:14 23040 --a------ C:\WINDOWS\system32\fltmc.exe
2006-08-21 11:14 128896 --------- C:\WINDOWS\system32\drivers\fltmgr.sys
2006-08-16 13:59 100352 --a------ C:\WINDOWS\system32\6to4svc.dll
2006-08-11 21:42 4496128 --------- C:\WINDOWS\system32\nv4_disp.dll
2006-08-11 01:03 73728 --a------ C:\WINDOWS\system32\dpl100.dll
2006-08-11 01:03 196608 --a------ C:\WINDOWS\system32\dtu100.dll
2006-08-10 19:46 22752 --a------ C:\WINDOWS\system32\spupdsvc.exe
2006-07-27 19:28 3596288 --a------ C:\WINDOWS\system32\qt-dx331.dll
2006-07-27 15:26 679424 --a------ C:\WINDOWS\system32\inetcomm.dll
2006-07-21 10:27 72704 --a------ C:\WINDOWS\system32\hlink.dll
(((((((((((((((((((((((((((((((((((((((((( Reg Loading Points ))))))))))))))))))))))))))))))))))))))))))))))))
*Note* empty entries are not shown
[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\run]
"ctfmon.exe"="C:\\WINDOWS\\system32\\ctfmon.exe"
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\run]
"Persistence"="C:\\WINDOWS\\system32\\igfxpers.exe"
"CTSysVol"="\"C:\\Program Files\\Creative\\SBLive! 24-bit\\Surround Mixer\\CTSysVol.exe\" /r"
"P17Helper"="Rundll32 P17.dll,P17Helper"
"avast!"="C:\\PROGRA~1\\ALWILS~1\\Avast4\\ashDisp.exe"
"IgfxTray"="C:\\WINDOWS\\system32\\igfxtray.exe"
"HotKeysCmds"="C:\\WINDOWS\\system32\\hkcmd.exe"
"Zone Labs Client"="\"C:\\Program Files\\Zone Labs\\ZoneAlarm\\zlclient.exe\""
"SunJavaUpdateSched"="\"C:\\Program Files\\Java\\jre1.5.0_06\\bin\\jusched.exe\""
"SpySweeper"="\"C:\\Program Files\\Webroot\\Spy Sweeper\\SpySweeperUI.exe\" /startintray"
"LVCOMSX"="C:\\WINDOWS\\system32\\LVCOMSX.EXE"
[HKEY_CURRENT_USER\software\microsoft\internet explorer\desktop\components]
"DeskHtmlVersion"=dword:00000110
"DeskHtmlMinorVersion"=dword:00000005
"Settings"=dword:00000001
"GeneralFlags"=dword:00000001
[HKEY_CURRENT_USER\software\microsoft\internet explorer\desktop\components\0]
"Source"="About:Home"
"SubscribedURL"="About:Home"
"FriendlyName"="Ma page d'accueil"
"Flags"=dword:00000002
"Position"=hex:2c,00,00,00,00,01,00,00,00,00,00,00,00,04,00,00,e2,03,00,00,00,\
00,00,00,01,00,00,00,01,00,00,00,01,00,00,00,00,00,00,00,00,00,00,00
"CurrentState"=hex:04,00,00,40
"OriginalStateInfo"=hex:18,00,00,00,ff,ff,00,00,ff,ff,00,00,ff,ff,ff,ff,ff,ff,\
ff,ff,04,00,00,00
"RestoredStateInfo"=hex:18,00,00,00,6a,02,00,00,23,00,00,00,a4,00,00,00,9a,00,\
00,00,01,00,00,00
[HKEY_USERS\.default\software\microsoft\windows\currentversion\run]
"CTFMON.EXE"="C:\\WINDOWS\\System32\\CTFMON.EXE"
[HKEY_USERS\s-1-5-18\software\microsoft\windows\currentversion\run]
"CTFMON.EXE"="C:\\WINDOWS\\System32\\CTFMON.EXE"
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\sharedtaskscheduler]
"{438755C2-A8BA-11D1-B96B-00A0C90312E1}"="Pré-chargeur Browseui"
"{8C7461EF-2B13-11d2-BE35-3078302C2030}"="Démon de cache des catégories de composant"
[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\policies\explorer]
"NoDriveTypeAutoRun"=dword:00000091
[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\policies\explorer\Run]
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"dontdisplaylastusername"=dword:00000000
"legalnoticecaption"=""
"legalnoticetext"=""
"shutdownwithoutlogon"=dword:00000001
"undockwithoutlogon"=dword:00000001
[HKEY_USERS\.default\software\microsoft\windows\currentversion\policies\explorer]
"NoDriveTypeAutoRun"=dword:00000091
[HKEY_USERS\s-1-5-18\software\microsoft\windows\currentversion\policies\explorer]
"NoDriveTypeAutoRun"=dword:00000091
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\shellserviceobjectdelayload]
"PostBootReminder"="{7849596a-48ea-486e-8937-a2a3009f31a9}"
"CDBurn"="{fbeb8a05-beee-4442-804e-409d6c4515e9}"
"WebCheck"="{E6FB5E20-DE35-11CF-9C87-00AA005127ED}"
"SysTray"="{35CEC8A3-2BE6-11D2-8773-92E220524153}"
"WPDShServiceObj"="{AAA288BA-9A4C-45B0-95D7-94D524869DB5}"
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\run-]
"QuickTime Task"="\"C:\\Program Files\\QuickTime\\qttask.exe\" -atboottime"
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Documents and Settings^All Users^Menu Démarrer^Programmes^Démarrage^Démarrage rapide du logiciel HP Image Zone.lnk]
"backup"="C:\\WINDOWS\\pss\\Démarrage rapide du logiciel HP Image Zone.lnkCommon Startup"
"location"="Common Startup"
"command"="C:\\PROGRA~1\\HP\\DIGITA~1\\bin\\hpqthb08.exe -s"
"item"="Démarrage rapide du logiciel HP Image Zone"
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Documents and Settings^All Users^Menu Démarrer^Programmes^Démarrage^HP Digital Imaging Monitor.lnk]
"backup"="C:\\WINDOWS\\pss\\HP Digital Imaging Monitor.lnkCommon Startup"
"location"="Common Startup"
"command"="C:\\PROGRA~1\\HP\\DIGITA~1\\bin\\hpqtra08.exe "
"item"="HP Digital Imaging Monitor"
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\HP Software Update]
"key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run"
"item"="HPWuSchd2"
"hkey"="HKLM"
"command"="\"C:\\Program Files\\HP\\HP Software Update\\HPWuSchd2.exe\""
"inimapping"="0"
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"="msapsspc.dll, schannel.dll, digest.dll, msnsspc.dll"
HKEY_LOCAL_MACHINE\system\currentcontrolset\control\safeboot\minimal\WebrootSpySweeperService
Completion time: 06-10-17 22:46:51.34
C:\ComboFix.txt ... 06-10-17 22:46