internet connected but after a few minutes browsers wont connect to server

View previous topic View next topic Go down

internet connected but after a few minutes browsers wont connect to server

Post by SamandLucie on Mon Dec 14, 2009 4:41 pm

so my internet is connected but after a few minutes no longer is able to browse but my bittorrent is working in the background.

When I restart I am often able to browse for a few minutes.

I tried some winsock fixer i found on this site and no dice.

heses my trend micro hijacklogfile

Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 11:21:38, on 2009-12-14
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.6000.16945)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Intel\Wireless\Bin\EvtEng.exe
C:\Program Files\Intel\Wireless\Bin\S24EvMon.exe
C:\WINDOWS\system32\brsvc01a.exe
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\system32\brss01a.exe
C:\PROGRA~1\AVG\AVG8\avgwdsvc.exe
C:\Program Files\TOSHIBA\ConfigFree\CFSvcs.exe
C:\WINDOWS\system32\DVDRAMSV.exe
C:\Program Files\Java\jre6\bin\jqs.exe
C:\Program Files\Microsoft LifeCam\MSCamSvc.exe
C:\Program Files\Intel\Wireless\Bin\RegSrvc.exe
C:\Program Files\Microsoft\Search Enhancement Pack\SeaPort\SeaPort.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\TODDSrv.exe
C:\PROGRA~1\AVG\AVG8\avgemc.exe
C:\PROGRA~1\AVG\AVG8\avgrsx.exe
C:\PROGRA~1\AVG\AVG8\avgnsx.exe
C:\Program Files\AVG\AVG8\avgcsrvx.exe
C:\WINDOWS\system32\hkcmd.exe
C:\WINDOWS\system32\igfxpers.exe
C:\WINDOWS\RTHDCPL.EXE
C:\Program Files\Apoint2K\Apoint.exe
C:\Program Files\TOSHIBA\TouchPad\TPTray.exe
C:\Program Files\TOSHIBA\E-KEY\CeEKey.exe
C:\WINDOWS\explorer.exe
C:\Program Files\TOSHIBA\ConfigFree\NDSTray.exe
C:\Program Files\Apoint2K\Apntex.exe
C:\Program Files\TOSHIBA\Touch and Launch\PadExe.exe
C:\WINDOWS\system32\ZoomingHook.exe
C:\Program Files\TOSHIBA\Tvs\TvsTray.exe
C:\Program Files\TOSHIBA\Utilitaire de zoom TOSHIBA\SmoothView.exe
C:\Program Files\TOSHIBA\TOSHIBA Direct Disc Writer\ddwmon.exe
C:\Program Files\ltmoh\Ltmoh.exe
C:\WINDOWS\AGRSMMSG.exe
C:\Program Files\Intel\Wireless\bin\ZCfgSvc.exe
C:\Program Files\Intel\Wireless\Bin\ifrmewrk.exe
C:\Program Files\Nokia\Nokia PC Suite 6\LaunchApplication.exe
C:\Program Files\QuickTime\qttask.exe
C:\Program Files\iTunes\iTunesHelper.exe
C:\Program Files\Java\jre6\bin\jusched.exe
C:\WINDOWS\system32\TPSBattM.exe
C:\PROGRA~1\AVG\AVG8\avgtray.exe
C:\WINDOWS\vVX6000.exe
C:\Program Files\iPod\bin\iPodService.exe
C:\WINDOWS\system32\wbem\wmiapsrv.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\TOSHIBA\TOSCDSPD\toscdspd.exe
C:\PROGRA~1\Intel\Wireless\Bin\Dot1XCfg.exe
C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe
C:\Program Files\Uniblue\RegistryBooster\RegistryBooster.exe
C:\Program Files\Windows Live\Messenger\MsnMsgr.Exe
C:\Program Files\PC Connectivity Solution\ServiceLayer.exe
C:\Program Files\Veoh Networks\VeohWebPlayer\veohwebplayer.exe
C:\Program Files\DAEMON Tools Pro\DTProAgent.exe
C:\WINDOWS\system32\RAMASST.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\WINDOWS\system32\notepad.exe
C:\Documents and Settings\Lucie\Bureau\winlogon.scr

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = [You must be registered and logged in to see this link.]
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = [You must be registered and logged in to see this link.]
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = [You must be registered and logged in to see this link.]
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = [You must be registered and logged in to see this link.]
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,SearchAssistant = [You must be registered and logged in to see this link.]
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,CustomizeSearch = [You must be registered and logged in to see this link.]
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = [You must be registered and logged in to see this link.]
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = [You must be registered and logged in to see this link.]
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant = [You must be registered and logged in to see this link.]
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch = [You must be registered and logged in to see this link.]
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyServer = :
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
R3 - URLSearchHook: (no name) - {1CB20BF0-BBAE-40A7-93F4-6435FF3D0411} - (no file)
F2 - REG:system.ini: UserInit=C:\WINDOWS\system32\userinit.exe,C:\Program Files\LeechLLC:mstorr.exe,
O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll
O2 - BHO: (no name) - {1CB20BF0-BBAE-40A7-93F4-6435FF3D0411} - (no file)
O2 - BHO: WormRadar.com IESiteBlocker.NavFilter - {3CA2F312-6F6E-4B53-A66E-4E65E497C8C0} - C:\Program Files\AVG\AVG8\avgssie.dll
O2 - BHO: (no name) - {5C255C8A-E604-49b4-9D64-90988571CECB} - (no file)
O2 - BHO: Search Helper - {6EBF7485-159F-4bff-A14F-B9E3AAC4465B} - C:\Program Files\Microsoft\Search Enhancement Pack\Search Helper\SEPsearchhelperie.dll
O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll
O2 - BHO: Windows Live Toolbar Helper - {E15A8DC0-8516-42A1-81EA-DC94EC1ACF10} - C:\Program Files\Windows Live\Toolbar\wltcore.dll
O2 - BHO: JQSIEStartDetectorImpl - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll
O3 - Toolbar: Barre d'outils &Crawler - {4B3803EA-5230-4DC3-A7FC-33638F3D3542} - (no file)
O3 - Toolbar: &Windows Live Toolbar - {21FA44EF-376D-4D53-9B0F-8A89D3229068} - C:\Program Files\Windows Live\Toolbar\wltcore.dll
O4 - HKLM\..\Run: [igfxtray] C:\WINDOWS\system32\igfxtray.exe
O4 - HKLM\..\Run: [igfxhkcmd] C:\WINDOWS\system32\hkcmd.exe
O4 - HKLM\..\Run: [igfxpers] C:\WINDOWS\system32\igfxpers.exe
O4 - HKLM\..\Run: [RTHDCPL] RTHDCPL.EXE
O4 - HKLM\..\Run: [Alcmtr] ALCMTR.EXE
O4 - HKLM\..\Run: [Apoint] C:\Program Files\Apoint2K\Apoint.exe
O4 - HKLM\..\Run: [TPNF] C:\Program Files\TOSHIBA\TouchPad\TPTray.exe
O4 - HKLM\..\Run: [CeEKEY] C:\Program Files\TOSHIBA\E-KEY\CeEKey.exe
O4 - HKLM\..\Run: [NDSTray.exe] NDSTray.exe
O4 - HKLM\..\Run: [PadTouch] C:\Program Files\TOSHIBA\Touch and Launch\PadExe.exe
O4 - HKLM\..\Run: [Zooming] ZoomingHook.exe
O4 - HKLM\..\Run: [HWSetup] C:\Program Files\TOSHIBA\TOSHIBA Applet\HWSetup.exe hwSetUP
O4 - HKLM\..\Run: [Tvs] C:\Program Files\TOSHIBA\Tvs\TvsTray.exe
O4 - HKLM\..\Run: [SVPWUTIL] C:\Program Files\Toshiba\Windows Utilities\SVPWUTIL.exe SVPwUTIL
O4 - HKLM\..\Run: [SmoothView] C:\Program Files\TOSHIBA\Utilitaire de zoom TOSHIBA\SmoothView.exe
O4 - HKLM\..\Run: [TPSMain] TPSMain.exe
O4 - HKLM\..\Run: [DDWMon] C:\Program Files\TOSHIBA\TOSHIBA Direct Disc Writer\\ddwmon.exe
O4 - HKLM\..\Run: [LtMoh] C:\Program Files\ltmoh\Ltmoh.exe
O4 - HKLM\..\Run: [AGRSMMSG] AGRSMMSG.exe
O4 - HKLM\..\Run: [IntelZeroConfig] C:\Program Files\Intel\Wireless\bin\ZCfgSvc.exe
O4 - HKLM\..\Run: [IntelWireless] "C:\Program Files\Intel\Wireless\Bin\ifrmewrk.exe" /tf Intel PROSet/Wireless
O4 - HKLM\..\Run: [CFSServ.exe] CFSServ.exe -NoClient
O4 - HKLM\..\Run: [PCSuiteTrayApplication] C:\Program Files\Nokia\Nokia PC Suite 6\LaunchApplication.exe -startup
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [iTunesHelper] C:\Program Files\iTunes\iTunesHelper.exe
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre6\bin\jusched.exe"
O4 - HKLM\..\Run: [AVG8_TRAY] C:\PROGRA~1\AVG\AVG8\avgtray.exe
O4 - HKLM\..\Run: [VX6000] C:\WINDOWS\vVX6000.exe
O4 - HKLM\..\Run: [LifeCam] "C:\Program Files\Microsoft LifeCam\LifeExp.exe"
O4 - HKLM\..\Run: [nvcpl] C:\Program Files\LeechLLC:mstorr.exe
O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [TOSCDSPD] C:\Program Files\TOSHIBA\TOSCDSPD\toscdspd.exe
O4 - HKCU\..\Run: [SUPERAntiSpyware] C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe
O4 - HKCU\..\Run: [Startup Manager] "C:\Program Files\Advanced System Optimizer\startUp manager.exe"
O4 - HKCU\..\Run: [Uniblue RegistryBooster 2009] C:\Program Files\Uniblue\RegistryBooster\RegistryBooster.exe /S
O4 - HKCU\..\Run: [msnmsgr] "C:\Program Files\Windows Live\Messenger\MsnMsgr.Exe" /background
O4 - HKCU\..\Run: [VeohPlugin] "C:\Program Files\Veoh Networks\VeohWebPlayer\veohwebplayer.exe"
O4 - HKCU\..\Run: [AnyDVD] C:\Program Files\SlySoft\AnyDVD\AnyDVDtray.exe
O4 - HKCU\..\Run: [DAEMON Tools Pro Agent] "C:\Program Files\DAEMON Tools Pro\DTProAgent.exe" -autorun
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE RÉSEAU')
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
O4 - Global Startup: Microsoft Office.lnk = C:\Program Files\Microsoft Office\Office10\OSA.EXE
O4 - Global Startup: RAMASST.lnk = C:\WINDOWS\system32\RAMASST.exe
O8 - Extra context menu item: Crawler Search - tbr:iemenu
O8 - Extra context menu item: E&xporter vers Microsoft Excel - [You must be registered and logged in to see this link.]
O9 - Extra button: Ajout Direct - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra 'Tools' menuitem: &Ajout Direct dans Windows Live Writer - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra button: Recherche - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\OFFICE11\REFIEBAR.DLL
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O10 - Unknown file in Winsock LSP: c:\windows\system32\nwprovau.dll
O18 - Protocol: CDS300 - {AD43AA67-6860-4531-AC8A-0E68F9CF023E} - D:\Player\__CDS2.dll (file missing)
O18 - Protocol: linkscanner - {F274614C-63F8-47D5-A4D1-FBDDE494F8D1} - C:\Program Files\AVG\AVG8\avgpp.dll
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\FICHIE~1\Skype\SKYPE4~1.DLL
O18 - Protocol: tbr - {4D25FB7A-8902-4291-960E-9ADA051CFBBF} - (no file)
O20 - Winlogon Notify: !SASWinLogon - C:\Program Files\SUPERAntiSpyware\SASWINLO.DLL
O20 - Winlogon Notify: avgrsstarter - C:\WINDOWS\SYSTEM32\avgrsstx.dll
O23 - Service: AVG8 E-mail Scanner (avg8emc) - AVG Technologies CZ, s.r.o. - C:\PROGRA~1\AVG\AVG8\avgemc.exe
O23 - Service: AVG8 WatchDog (avg8wd) - AVG Technologies CZ, s.r.o. - C:\PROGRA~1\AVG\AVG8\avgwdsvc.exe
O23 - Service: BrSplService (Brother XP spl Service) - brother Industries Ltd - C:\WINDOWS\system32\brsvc01a.exe
O23 - Service: ConfigFree Service (CFSvcs) - TOSHIBA CORPORATION - C:\Program Files\TOSHIBA\ConfigFree\CFSvcs.exe
O23 - Service: DVD-RAM_Service - Matsushita Electric Industrial Co., Ltd. - C:\WINDOWS\system32\DVDRAMSV.exe
O23 - Service: Intel(R) PROSet/Wireless Event Log (EvtEng) - Intel Corporation - C:\Program Files\Intel\Wireless\Bin\EvtEng.exe
O23 - Service: FLEXnet Licensing Service - Macrovision Europe Ltd. - C:\Program Files\Fichiers communs\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Fichiers communs\InstallShield\Driver\1150\Intel 32\IDriverT.exe
O23 - Service: Service de l'iPod (iPod Service) - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: Java Quick Starter (JavaQuickStarterService) - Sun Microsystems, Inc. - C:\Program Files\Java\jre6\bin\jqs.exe
O23 - Service: MSCSPTISRV - Sony Corporation - C:\Program Files\Fichiers communs\Sony Shared\AVLib\MSCSPTISRV.exe
O23 - Service: PACSPTISVR - Sony Corporation - C:\Program Files\Fichiers communs\Sony Shared\AVLib\PACSPTISVR.exe
O23 - Service: Intel(R) PROSet/Wireless Registry Service (RegSrvc) - Intel Corporation - C:\Program Files\Intel\Wireless\Bin\RegSrvc.exe
O23 - Service: Intel(R) PROSet/Wireless Service (S24EventMonitor) - Intel Corporation - C:\Program Files\Intel\Wireless\Bin\S24EvMon.exe
O23 - Service: ServiceLayer - Nokia. - C:\Program Files\PC Connectivity Solution\ServiceLayer.exe
O23 - Service: Sony SPTI Service (SPTISRV) - Sony Corporation - C:\Program Files\Fichiers communs\Sony Shared\AVLib\SPTISRV.exe
O23 - Service: SonicStage SCSI Service (SSScsiSV) - Sony Corporation - C:\Program Files\Fichiers communs\Sony Shared\AVLib\SSScsiSV.exe
O23 - Service: TOSHIBA Optical Disc Drive Service (TODDSrv) - TOSHIBA Corporation - C:\WINDOWS\system32\TODDSrv.exe

--
End of file - 13292 bytes

SamandLucie
Novice
Novice

Posts Posts : 21
Joined Joined : 2009-12-14
OS OS : windows xp
Points Points : 25793
# Likes # Likes : 0

View user profile

Back to top Go down

Re: internet connected but after a few minutes browsers wont connect to server

Post by Belahzur on Mon Dec 14, 2009 7:31 pm

Hello.

  • Open HijackThis
  • Choose "Do a system scan only"
  • Check the boxes in front of these lines:


    R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = [You must be registered and logged in to see this link.]
    R1 - HKLM\Software\Microsoft\Internet Explorer\Main,SearchAssistant = [You must be registered and logged in to see this link.]
    R1 - HKLM\Software\Microsoft\Internet Explorer\Main,CustomizeSearch = [You must be registered and logged in to see this link.]
    R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant = [You must be registered and logged in to see this link.]
    R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch = [You must be registered and logged in to see this link.]
    R3 - URLSearchHook: (no name) - {1CB20BF0-BBAE-40A7-93F4-6435FF3D0411} - (no file)
    F2 - REG:system.ini: UserInit=C:\WINDOWS\system32\userinit.exe,C:\Program Files\LeechLLC:mstorr.exe,
    O2 - BHO: (no name) - {1CB20BF0-BBAE-40A7-93F4-6435FF3D0411} - (no file)
    O2 - BHO: (no name) - {5C255C8A-E604-49b4-9D64-90988571CECB} - (no file)
    O4 - HKLM\..\Run: [nvcpl] C:\Program Files\LeechLLC:mstorr.exe
    O8 - Extra context menu item: Crawler Search - tbr:iemenu



  • Press "Fix Checked"
  • Close Hijack This.

Please download and run this tool.

Download Malwarebytes' Anti-Malware from [You must be registered and logged in to see this link.]

Double Click mbam-setup.exe to install the application.

  • Make sure a checkmark is placed next to Update Malwarebytes' Anti-Malware and Launch Malwarebytes' Anti-Malware, then click Finish.
  • If an update is found, it will download and install the latest version.
  • Once the program has loaded, select "Perform Quick Scan", then click Scan.
  • The scan may take some time to finish,so please be patient.
  • When the scan is complete, click OK, then Show Results to view the results.
  • Make sure that everything is checked, and click Remove Selected.
  • When disinfection is completed, a log will open in Notepad and you may be prompted to Restart. (See Note)
  • The log is automatically saved by MBAM and can be viewed by clicking the Logs tab in MBAM.
Note:
If MBAM encounters a file that is difficult to remove, you will be presented with 1 of 2 prompts.
Click OK to either and let MBAM proceed with the disinfection process.
If asked to restart the computer, please do so immediately.


Post the contents of the MBAM Log.


[You must be registered and logged in to see this link.] - [You must be registered and logged in to see this link.] - Please PM me if I fail to respond within 24hrs.


Belahzur
Administrator
Administrator

Posts Posts : 34916
Joined Joined : 2008-08-03
Gender Gender : Male
OS OS : XP SP3 Media Centre
Points Points : 245069
# Likes # Likes : 1

View user profile

Back to top Go down

Re: internet connected but after a few minutes browsers wont connect to server

Post by SamandLucie on Mon Dec 14, 2009 9:57 pm

ok done here is the results

Malwarebytes' Anti-Malware 1.42
Database version: 3358
Windows 5.1.2600 Service Pack 3
Internet Explorer 7.0.5730.13

2009-12-14 14:51:44
mbam-log-2009-12-14 (14-51-44).txt

Scan type: Full Scan (C:\|)
Objects scanned: 216976
Time elapsed: 1 hour(s), 30 minute(s), 55 second(s)

Memory Processes Infected: 0
Memory Modules Infected: 0
Registry Keys Infected: 2
Registry Values Infected: 0
Registry Data Items Infected: 1
Folders Infected: 1
Files Infected: 2

Memory Processes Infected:
(No malicious items detected)

Memory Modules Infected:
(No malicious items detected)

Registry Keys Infected:
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{p7y0u4w6-281q-ni2i-ux0d-15qq6lm01ow3} (Generic.Bot.H) -> Delete on reboot.
HKEY_CLASSES_ROOT\BitDownload (Trojan.Swizzor) -> Quarantined and deleted successfully.

Registry Values Infected:
(No malicious items detected)

Registry Data Items Infected:
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Search\Local Page (Hijack.SearchPage) -> Bad: (http://www.iesearch.com/) Good: (http://www.Google.com/) -> Quarantined and deleted successfully.

Folders Infected:
C:\Documents and Settings\Lucie\Menu Démarrer\Programmes\BitDownload (Trojan.Swizzor) -> Quarantined and deleted successfully.

Files Infected:
C:\Documents and Settings\Lucie\Menu Démarrer\Programmes\BitDownload\BitDownload Downloads.lnk (Trojan.Swizzor) -> Quarantined and deleted successfully.
C:\Documents and Settings\Lucie\Bureau\winlogon.scr (Heuristics.Reserved.Word.Exploit) -> Quarantined and deleted successfully.

SamandLucie
Novice
Novice

Posts Posts : 21
Joined Joined : 2009-12-14
OS OS : windows xp
Points Points : 25793
# Likes # Likes : 0

View user profile

Back to top Go down

Re: internet connected but after a few minutes browsers wont connect to server

Post by SamandLucie on Mon Dec 14, 2009 9:58 pm

I already rebooted here the new malwarebytes log

Malwarebytes' Anti-Malware 1.42
Database version: 3358
Windows 5.1.2600 Service Pack 3
Internet Explorer 7.0.5730.13

2009-12-14 15:39:24
mbam-log-2009-12-14 (15-39-24).txt

Scan type: Quick Scan
Objects scanned: 504
Time elapsed: 8 second(s)

Memory Processes Infected: 0
Memory Modules Infected: 0
Registry Keys Infected: 0
Registry Values Infected: 0
Registry Data Items Infected: 0
Folders Infected: 0
Files Infected: 0

Memory Processes Infected:
(No malicious items detected)

Memory Modules Infected:
(No malicious items detected)

Registry Keys Infected:
(No malicious items detected)

Registry Values Infected:
(No malicious items detected)

Registry Data Items Infected:
(No malicious items detected)

Folders Infected:
(No malicious items detected)

Files Infected:
(No malicious items detected)

SamandLucie
Novice
Novice

Posts Posts : 21
Joined Joined : 2009-12-14
OS OS : windows xp
Points Points : 25793
# Likes # Likes : 0

View user profile

Back to top Go down

Re: internet connected but after a few minutes browsers wont connect to server

Post by SamandLucie on Mon Dec 14, 2009 10:00 pm

heres the new hijackthis log file

Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 16:59:19, on 2009-12-14
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.6000.16945)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Intel\Wireless\Bin\EvtEng.exe
C:\Program Files\Intel\Wireless\Bin\S24EvMon.exe
C:\WINDOWS\system32\brsvc01a.exe
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\system32\brss01a.exe
C:\PROGRA~1\AVG\AVG8\avgwdsvc.exe
C:\Program Files\TOSHIBA\ConfigFree\CFSvcs.exe
C:\WINDOWS\system32\DVDRAMSV.exe
C:\Program Files\Java\jre6\bin\jqs.exe
C:\Program Files\Microsoft LifeCam\MSCamSvc.exe
C:\Program Files\Intel\Wireless\Bin\RegSrvc.exe
C:\Program Files\Microsoft\Search Enhancement Pack\SeaPort\SeaPort.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\TODDSrv.exe
C:\PROGRA~1\AVG\AVG8\avgemc.exe
C:\PROGRA~1\AVG\AVG8\avgrsx.exe
C:\PROGRA~1\AVG\AVG8\avgnsx.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\AVG\AVG8\avgcsrvx.exe
C:\WINDOWS\system32\hkcmd.exe
C:\WINDOWS\system32\igfxpers.exe
C:\WINDOWS\RTHDCPL.EXE
C:\Program Files\Apoint2K\Apoint.exe
C:\Program Files\TOSHIBA\TouchPad\TPTray.exe
C:\Program Files\TOSHIBA\E-KEY\CeEKey.exe
C:\Program Files\TOSHIBA\ConfigFree\NDSTray.exe
C:\Program Files\TOSHIBA\Touch and Launch\PadExe.exe
C:\WINDOWS\system32\ZoomingHook.exe
C:\Program Files\TOSHIBA\Tvs\TvsTray.exe
C:\Program Files\Apoint2K\Apntex.exe
C:\Program Files\TOSHIBA\Utilitaire de zoom TOSHIBA\SmoothView.exe
C:\Program Files\TOSHIBA\TOSHIBA Direct Disc Writer\ddwmon.exe
C:\Program Files\ltmoh\Ltmoh.exe
C:\WINDOWS\AGRSMMSG.exe
C:\Program Files\Intel\Wireless\bin\ZCfgSvc.exe
C:\Program Files\Intel\Wireless\Bin\ifrmewrk.exe
C:\Program Files\Nokia\Nokia PC Suite 6\LaunchApplication.exe
C:\Program Files\QuickTime\qttask.exe
C:\Program Files\iTunes\iTunesHelper.exe
C:\WINDOWS\system32\TPSBattM.exe
C:\Program Files\Java\jre6\bin\jusched.exe
C:\WINDOWS\vVX6000.exe
C:\Program Files\iPod\bin\iPodService.exe
C:\PROGRA~1\Intel\Wireless\Bin\Dot1XCfg.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\TOSHIBA\TOSCDSPD\toscdspd.exe
C:\WINDOWS\system32\wbem\wmiapsrv.exe
C:\Program Files\PC Connectivity Solution\ServiceLayer.exe
C:\Program Files\Veoh Networks\VeohWebPlayer\veohwebplayer.exe
C:\Program Files\DAEMON Tools Pro\DTProAgent.exe
C:\WINDOWS\system32\RAMASST.exe
C:\WINDOWS\explorer.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Program Files\Java\jre6\bin\java.exe
C:\Program Files\Malwarebytes' Anti-Malware\mbam.exe
C:\WINDOWS\system32\NOTEPAD.EXE
C:\WINDOWS\system32\NOTEPAD.EXE
C:\Documents and Settings\Lucie\Bureau\winlogon.scr

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = [You must be registered and logged in to see this link.]
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = [You must be registered and logged in to see this link.]
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = [You must be registered and logged in to see this link.]
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = [You must be registered and logged in to see this link.]
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = [You must be registered and logged in to see this link.]
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyServer = :
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
F2 - REG:system.ini: UserInit=C:\WINDOWS\system32\userinit.exe,C:\Program Files\LeechLLC:mstorr.exe,
O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll
O2 - BHO: WormRadar.com IESiteBlocker.NavFilter - {3CA2F312-6F6E-4B53-A66E-4E65E497C8C0} - C:\Program Files\AVG\AVG8\avgssie.dll
O2 - BHO: Search Helper - {6EBF7485-159F-4bff-A14F-B9E3AAC4465B} - C:\Program Files\Microsoft\Search Enhancement Pack\Search Helper\SEPsearchhelperie.dll
O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll
O2 - BHO: Windows Live Toolbar Helper - {E15A8DC0-8516-42A1-81EA-DC94EC1ACF10} - C:\Program Files\Windows Live\Toolbar\wltcore.dll
O2 - BHO: JQSIEStartDetectorImpl - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll
O3 - Toolbar: Barre d'outils &Crawler - {4B3803EA-5230-4DC3-A7FC-33638F3D3542} - (no file)
O3 - Toolbar: &Windows Live Toolbar - {21FA44EF-376D-4D53-9B0F-8A89D3229068} - C:\Program Files\Windows Live\Toolbar\wltcore.dll
O4 - HKLM\..\Run: [igfxtray] C:\WINDOWS\system32\igfxtray.exe
O4 - HKLM\..\Run: [igfxhkcmd] C:\WINDOWS\system32\hkcmd.exe
O4 - HKLM\..\Run: [igfxpers] C:\WINDOWS\system32\igfxpers.exe
O4 - HKLM\..\Run: [RTHDCPL] RTHDCPL.EXE
O4 - HKLM\..\Run: [Alcmtr] ALCMTR.EXE
O4 - HKLM\..\Run: [Apoint] C:\Program Files\Apoint2K\Apoint.exe
O4 - HKLM\..\Run: [TPNF] C:\Program Files\TOSHIBA\TouchPad\TPTray.exe
O4 - HKLM\..\Run: [CeEKEY] C:\Program Files\TOSHIBA\E-KEY\CeEKey.exe
O4 - HKLM\..\Run: [NDSTray.exe] NDSTray.exe
O4 - HKLM\..\Run: [PadTouch] C:\Program Files\TOSHIBA\Touch and Launch\PadExe.exe
O4 - HKLM\..\Run: [Zooming] ZoomingHook.exe
O4 - HKLM\..\Run: [HWSetup] C:\Program Files\TOSHIBA\TOSHIBA Applet\HWSetup.exe hwSetUP
O4 - HKLM\..\Run: [Tvs] C:\Program Files\TOSHIBA\Tvs\TvsTray.exe
O4 - HKLM\..\Run: [SVPWUTIL] C:\Program Files\Toshiba\Windows Utilities\SVPWUTIL.exe SVPwUTIL
O4 - HKLM\..\Run: [SmoothView] C:\Program Files\TOSHIBA\Utilitaire de zoom TOSHIBA\SmoothView.exe
O4 - HKLM\..\Run: [TPSMain] TPSMain.exe
O4 - HKLM\..\Run: [DDWMon] C:\Program Files\TOSHIBA\TOSHIBA Direct Disc Writer\\ddwmon.exe
O4 - HKLM\..\Run: [LtMoh] C:\Program Files\ltmoh\Ltmoh.exe
O4 - HKLM\..\Run: [AGRSMMSG] AGRSMMSG.exe
O4 - HKLM\..\Run: [IntelZeroConfig] C:\Program Files\Intel\Wireless\bin\ZCfgSvc.exe
O4 - HKLM\..\Run: [IntelWireless] "C:\Program Files\Intel\Wireless\Bin\ifrmewrk.exe" /tf Intel PROSet/Wireless
O4 - HKLM\..\Run: [CFSServ.exe] CFSServ.exe -NoClient
O4 - HKLM\..\Run: [PCSuiteTrayApplication] C:\Program Files\Nokia\Nokia PC Suite 6\LaunchApplication.exe -startup
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [iTunesHelper] C:\Program Files\iTunes\iTunesHelper.exe
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre6\bin\jusched.exe"
O4 - HKLM\..\Run: [AVG8_TRAY] C:\PROGRA~1\AVG\AVG8\avgtray.exe
O4 - HKLM\..\Run: [VX6000] C:\WINDOWS\vVX6000.exe
O4 - HKLM\..\Run: [LifeCam] "C:\Program Files\Microsoft LifeCam\LifeExp.exe"
O4 - HKLM\..\Run: [nvcpl] C:\Program Files\LeechLLC:mstorr.exe
O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [TOSCDSPD] C:\Program Files\TOSHIBA\TOSCDSPD\toscdspd.exe
O4 - HKCU\..\Run: [SUPERAntiSpyware] C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe
O4 - HKCU\..\Run: [Startup Manager] "C:\Program Files\Advanced System Optimizer\startUp manager.exe"
O4 - HKCU\..\Run: [Uniblue RegistryBooster 2009] C:\Program Files\Uniblue\RegistryBooster\RegistryBooster.exe /S
O4 - HKCU\..\Run: [msnmsgr] "C:\Program Files\Windows Live\Messenger\MsnMsgr.Exe" /background
O4 - HKCU\..\Run: [VeohPlugin] "C:\Program Files\Veoh Networks\VeohWebPlayer\veohwebplayer.exe"
O4 - HKCU\..\Run: [AnyDVD] C:\Program Files\SlySoft\AnyDVD\AnyDVDtray.exe
O4 - HKCU\..\Run: [DAEMON Tools Pro Agent] "C:\Program Files\DAEMON Tools Pro\DTProAgent.exe" -autorun
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE RÉSEAU')
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
O4 - Global Startup: Microsoft Office.lnk = C:\Program Files\Microsoft Office\Office10\OSA.EXE
O4 - Global Startup: RAMASST.lnk = C:\WINDOWS\system32\RAMASST.exe
O8 - Extra context menu item: E&xporter vers Microsoft Excel - [You must be registered and logged in to see this link.]
O9 - Extra button: Ajout Direct - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra 'Tools' menuitem: &Ajout Direct dans Windows Live Writer - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra button: Recherche - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\OFFICE11\REFIEBAR.DLL
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O10 - Unknown file in Winsock LSP: c:\windows\system32\nwprovau.dll
O18 - Protocol: CDS300 - {AD43AA67-6860-4531-AC8A-0E68F9CF023E} - D:\Player\__CDS2.dll (file missing)
O18 - Protocol: linkscanner - {F274614C-63F8-47D5-A4D1-FBDDE494F8D1} - C:\Program Files\AVG\AVG8\avgpp.dll
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\FICHIE~1\Skype\SKYPE4~1.DLL
O18 - Protocol: tbr - {4D25FB7A-8902-4291-960E-9ADA051CFBBF} - (no file)
O20 - Winlogon Notify: !SASWinLogon - C:\Program Files\SUPERAntiSpyware\SASWINLO.DLL
O20 - Winlogon Notify: avgrsstarter - C:\WINDOWS\SYSTEM32\avgrsstx.dll
O23 - Service: AVG8 E-mail Scanner (avg8emc) - AVG Technologies CZ, s.r.o. - C:\PROGRA~1\AVG\AVG8\avgemc.exe
O23 - Service: AVG8 WatchDog (avg8wd) - AVG Technologies CZ, s.r.o. - C:\PROGRA~1\AVG\AVG8\avgwdsvc.exe
O23 - Service: BrSplService (Brother XP spl Service) - brother Industries Ltd - C:\WINDOWS\system32\brsvc01a.exe
O23 - Service: ConfigFree Service (CFSvcs) - TOSHIBA CORPORATION - C:\Program Files\TOSHIBA\ConfigFree\CFSvcs.exe
O23 - Service: DVD-RAM_Service - Matsushita Electric Industrial Co., Ltd. - C:\WINDOWS\system32\DVDRAMSV.exe
O23 - Service: Intel(R) PROSet/Wireless Event Log (EvtEng) - Intel Corporation - C:\Program Files\Intel\Wireless\Bin\EvtEng.exe
O23 - Service: FLEXnet Licensing Service - Macrovision Europe Ltd. - C:\Program Files\Fichiers communs\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Fichiers communs\InstallShield\Driver\1150\Intel 32\IDriverT.exe
O23 - Service: Service de l'iPod (iPod Service) - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: Java Quick Starter (JavaQuickStarterService) - Sun Microsystems, Inc. - C:\Program Files\Java\jre6\bin\jqs.exe
O23 - Service: MSCSPTISRV - Sony Corporation - C:\Program Files\Fichiers communs\Sony Shared\AVLib\MSCSPTISRV.exe
O23 - Service: PACSPTISVR - Sony Corporation - C:\Program Files\Fichiers communs\Sony Shared\AVLib\PACSPTISVR.exe
O23 - Service: Intel(R) PROSet/Wireless Registry Service (RegSrvc) - Intel Corporation - C:\Program Files\Intel\Wireless\Bin\RegSrvc.exe
O23 - Service: Intel(R) PROSet/Wireless Service (S24EventMonitor) - Intel Corporation - C:\Program Files\Intel\Wireless\Bin\S24EvMon.exe
O23 - Service: ServiceLayer - Nokia. - C:\Program Files\PC Connectivity Solution\ServiceLayer.exe
O23 - Service: Sony SPTI Service (SPTISRV) - Sony Corporation - C:\Program Files\Fichiers communs\Sony Shared\AVLib\SPTISRV.exe
O23 - Service: SonicStage SCSI Service (SSScsiSV) - Sony Corporation - C:\Program Files\Fichiers communs\Sony Shared\AVLib\SSScsiSV.exe
O23 - Service: TOSHIBA Optical Disc Drive Service (TODDSrv) - TOSHIBA Corporation - C:\WINDOWS\system32\TODDSrv.exe

--
End of file - 12279 bytes

SamandLucie
Novice
Novice

Posts Posts : 21
Joined Joined : 2009-12-14
OS OS : windows xp
Points Points : 25793
# Likes # Likes : 0

View user profile

Back to top Go down

Re: internet connected but after a few minutes browsers wont connect to server

Post by Belahzur on Tue Dec 15, 2009 12:53 am

Hello.

  • Please download DDS by sUBs to your Desktop (Important!!) from one of these locations:
    [You must be registered and logged in to see this link.]
    [You must be registered and logged in to see this link.]
  • Double click DDS.scr to run.
  • When complete, two logs will open. Save both of the report to your Desktop.
  • Copy and paste BOTH LOGS back here, use more than one post if needed.


[You must be registered and logged in to see this link.] - [You must be registered and logged in to see this link.] - Please PM me if I fail to respond within 24hrs.


Belahzur
Administrator
Administrator

Posts Posts : 34916
Joined Joined : 2008-08-03
Gender Gender : Male
OS OS : XP SP3 Media Centre
Points Points : 245069
# Likes # Likes : 1

View user profile

Back to top Go down

Re: internet connected but after a few minutes browsers wont connect to server

Post by SamandLucie on Tue Dec 15, 2009 12:06 pm

UNLESS SPECIFICALLY INSTRUCTED, DO NOT POST THIS LOG.
IF REQUESTED, ZIP IT UP & ATTACH IT

DDS (Ver_09-12-01.01)

Microsoft Windows XP Professionnel
Boot Device: \Device\HarddiskVolume1
Install Date: 2006-08-05 14:10:57
System Uptime: 2009-12-15 06:56:05 (1 hours ago)

Motherboard: TOSHIBA | | HTW20
Processor: Genuine Intel(R) CPU T2050 @ 1.60GHz | U2E1 | 1596/mhz

==== Disk Partitions =========================

C: is FIXED (NTFS) - 93 GiB total, 11,675 GiB free.
D: is CDROM ()
E: is CDROM ()
F: is CDROM ()
G: is CDROM ()

==== Disabled Device Manager Items =============

==== System Restore Points ===================

RP583: 2009-11-20 08:13:40 - Point de vérification système
RP584: 2009-11-22 05:47:50 - Point de vérification système
RP585: 2009-11-23 06:03:20 - Point de vérification système
RP586: 2009-11-25 20:39:48 - SPTD setup V1.60
RP587: 2009-11-26 03:00:23 - Software Distribution Service 3.0
RP588: 2009-11-26 08:24:38 - Avg8 Update
RP589: 2009-11-28 10:03:17 - Point de vérification système
RP590: 2009-11-29 12:04:09 - Point de vérification système
RP591: 2009-12-09 03:00:18 - Software Distribution Service 3.0
RP592: 2009-12-09 09:27:34 - Avg8 Update
RP593: 2009-12-10 03:00:19 - Software Distribution Service 3.0
RP594: 2009-12-12 09:20:12 - Point de vérification système
RP595: 2009-12-12 09:44:27 - Avg8 Update
RP596: 2009-12-12 09:46:42 - Avg8 Update
RP597: 2009-12-12 21:52:57 - Installed Windows Media Format Runtime
RP598: 2009-12-13 10:13:19 - Software Distribution Service 3.0
RP599: 2009-12-13 15:25:30 - Uniblue RegistryBooster 2009
RP600: 2009-12-13 16:47:51 - Systweak System Cleaner Sun, Dec 13, 09 16:47

==== Installed Programs ======================

AAC Decoder
Adobe Flash Player 10 Plugin
Adobe Flash Player ActiveX
Adobe Photoshop
Adobe Reader 7.0.5 - Français
Advanced System Optimizer
Advanced WindowsCare 2.51 Personal
ALPS Touch Pad Driver
AnyDVD
Apple Software Update
Assist TOSHIBA
Assistant de connexion Windows Live
AusLogics Disk Defrag
AutoUpdate
AVG Free 8.5
AVS Update Manager 1.0
AVS Video Converter 6
AVS4YOU Software Navigator 1.3
BitTorrent
BrainWave Generator
Brother HL-1435
Choice Guard
CloneDVD 4.3.0.3
Correctif pour Windows Internet Explorer 7 (KB947864)
Correctif pour Windows XP (KB952287)
Correctif pour Windows XP (KB961118)
Correctif pour Windows XP (KB970653-v3)
Correctif pour Windows XP (KB976098-v2)
Crawler Toolbar with Web Security Guard
DAEMON Tools
Debut
DFX for Windows Media Player
DivX Codec
DivX Converter
DivX Player
DivX Plus DirectShow Filters
DivX Version Checker
DivX Web Player
DNA
DVD-CLONER V1.98
DVD-CLONER V5.10 Build 967
DVD Decrypter (Remove Only)
DVD Shrink 3.2
East Cree Syllabics Lessons version 1.0
Encyclopédie de la cuisine
Fallout
FLV Converter 2.5
FLV Player
Formatage de carte mémoire SD TOSHIBA
Free Picture Resize Starter 4.5
G-Force
Galerie de photos Windows Live
Gestion d'énergie TOSHIBA
Google Earth
H.264 Decoder
Hero Editor V0.96
Hide Your IP Address
High Definition Audio Driver Package - KB888111
HijackThis 2.0.2
Hotfix for Microsoft .NET Framework 3.5 SP1 (KB953595)
Hotfix for Microsoft .NET Framework 3.5 SP1 (KB958484)
Hotfix for Windows XP (KB954550-v5)
Installation Windows Live
Intel(R) Graphics Media Accelerator Driver
InterActual Player
InterVideo WinDVD Creator 2
InterVideo WinDVD for TOSHIBA
iPod To Computer Transfer 2.5
iTunes
J2SE Runtime Environment 5.0 Update 6
Java(TM) 6 Update 13
Java(TM) 6 Update 3
JpegSizer 6.4.1
Junk Mail filter update
Keyman Keyboard - BJCree (east)
Keyman Keyboard - BJCreeUni (east)
Keyman Keyboard - Creeboard
Keyman Keyboard - CreebrdUni
Keyman Keyboard - Hâts (east)
Lecteur Windows Media 10
LimeWire 4.14.8
Logiciel Intel(R) PROSet/Wireless
Malwarebytes' Anti-Malware
mCore
mDrWiFi
mHelp
Microsoft .NET Framework 1.1
Microsoft .NET Framework 1.1 French Language Pack
Microsoft .NET Framework 1.1 Security Update (KB953297)
Microsoft .NET Framework 2.0 Service Pack 2
Microsoft .NET Framework 3.0 Service Pack 2
Microsoft .NET Framework 3.5 SP1
Microsoft Application Error Reporting
Microsoft Internationalized Domain Names Mitigation APIs
Microsoft LifeCam
Microsoft National Language Support Downlevel APIs
Microsoft Office Live Add-in 1.3
Microsoft Office OneNote 2003
Microsoft Office XP Professional
Microsoft Search Enhancement Pack
Microsoft Silverlight
Microsoft SQL Server 2005 Compact Edition [ENU]
Microsoft Sync Framework Runtime Native v1.0 (x86)
Microsoft Sync Framework Services Native v1.0 (x86)
Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053
Microsoft Visual C++ 2005 Redistributable
Mise à jour de sécurité pour Lecteur Windows Media (KB911564)
Mise à jour de sécurité pour Lecteur Windows Media (KB952069)
Mise à jour de sécurité pour Lecteur Windows Media (KB954155)
Mise à jour de sécurité pour Lecteur Windows Media (KB968816)
Mise à jour de sécurité pour Lecteur Windows Media (KB973540)
Mise à jour de sécurité pour Lecteur Windows Media 10 (KB911565)
Mise à jour de sécurité pour Lecteur Windows Media 10 (KB917734)
Mise à jour de sécurité pour Lecteur Windows Media 10 (KB936782)
Mise à jour de sécurité pour Lecteur Windows Media 6.4 (KB925398)
Mise à jour de sécurité pour Step by Step Interactive Training (KB898458)
Mise à jour de sécurité pour Step by Step Interactive Training (KB923723)
Mise à jour de sécurité pour Windows Internet Explorer 7 (KB938127)
Mise à jour de sécurité pour Windows Internet Explorer 7 (KB942615)
Mise à jour de sécurité pour Windows Internet Explorer 7 (KB944533)
Mise à jour de sécurité pour Windows Internet Explorer 7 (KB950759)
Mise à jour de sécurité pour Windows Internet Explorer 7 (KB953838)
Mise à jour de sécurité pour Windows Internet Explorer 7 (KB956390)
Mise à jour de sécurité pour Windows Internet Explorer 7 (KB958215)
Mise à jour de sécurité pour Windows Internet Explorer 7 (KB960714)
Mise à jour de sécurité pour Windows Internet Explorer 7 (KB961260)
Mise à jour de sécurité pour Windows Internet Explorer 7 (KB963027)
Mise à jour de sécurité pour Windows Internet Explorer 7 (KB969897)
Mise à jour de sécurité pour Windows Internet Explorer 7 (KB972260)
Mise à jour de sécurité pour Windows Internet Explorer 7 (KB974455)
Mise à jour de sécurité pour Windows Internet Explorer 7 (KB976325)
Mise à jour de sécurité pour Windows XP (KB923561)
Mise à jour de sécurité pour Windows XP (KB923689)
Mise à jour de sécurité pour Windows XP (KB938464-v2)
Mise à jour de sécurité pour Windows XP (KB938464)
Mise à jour de sécurité pour Windows XP (KB941569)
Mise à jour de sécurité pour Windows XP (KB946648)
Mise à jour de sécurité pour Windows XP (KB950760)
Mise à jour de sécurité pour Windows XP (KB950762)
Mise à jour de sécurité pour Windows XP (KB950974)
Mise à jour de sécurité pour Windows XP (KB951066)
Mise à jour de sécurité pour Windows XP (KB951376-v2)
Mise à jour de sécurité pour Windows XP (KB951376)
Mise à jour de sécurité pour Windows XP (KB951698)
Mise à jour de sécurité pour Windows XP (KB951748)
Mise à jour de sécurité pour Windows XP (KB952004)
Mise à jour de sécurité pour Windows XP (KB952954)
Mise à jour de sécurité pour Windows XP (KB953839)
Mise à jour de sécurité pour Windows XP (KB954211)
Mise à jour de sécurité pour Windows XP (KB954459)
Mise à jour de sécurité pour Windows XP (KB954600)
Mise à jour de sécurité pour Windows XP (KB955069)
Mise à jour de sécurité pour Windows XP (KB956391)
Mise à jour de sécurité pour Windows XP (KB956572)
Mise à jour de sécurité pour Windows XP (KB956744)
Mise à jour de sécurité pour Windows XP (KB956802)
Mise à jour de sécurité pour Windows XP (KB956803)
Mise à jour de sécurité pour Windows XP (KB956841)
Mise à jour de sécurité pour Windows XP (KB956844)
Mise à jour de sécurité pour Windows XP (KB957095)
Mise à jour de sécurité pour Windows XP (KB957097)
Mise à jour de sécurité pour Windows XP (KB958644)
Mise à jour de sécurité pour Windows XP (KB958687)
Mise à jour de sécurité pour Windows XP (KB958690)
Mise à jour de sécurité pour Windows XP (KB958869)
Mise à jour de sécurité pour Windows XP (KB959426)
Mise à jour de sécurité pour Windows XP (KB960225)
Mise à jour de sécurité pour Windows XP (KB960715)
Mise à jour de sécurité pour Windows XP (KB960803)
Mise à jour de sécurité pour Windows XP (KB960859)
Mise à jour de sécurité pour Windows XP (KB961371)
Mise à jour de sécurité pour Windows XP (KB961373)
Mise à jour de sécurité pour Windows XP (KB961501)
Mise à jour de sécurité pour Windows XP (KB968537)
Mise à jour de sécurité pour Windows XP (KB969059)
Mise à jour de sécurité pour Windows XP (KB969898)
Mise à jour de sécurité pour Windows XP (KB969947)
Mise à jour de sécurité pour Windows XP (KB970238)
Mise à jour de sécurité pour Windows XP (KB970430)
Mise à jour de sécurité pour Windows XP (KB971486)
Mise à jour de sécurité pour Windows XP (KB971557)
Mise à jour de sécurité pour Windows XP (KB971633)
Mise à jour de sécurité pour Windows XP (KB971657)
Mise à jour de sécurité pour Windows XP (KB971961)
Mise à jour de sécurité pour Windows XP (KB973346)
Mise à jour de sécurité pour Windows XP (KB973354)
Mise à jour de sécurité pour Windows XP (KB973507)
Mise à jour de sécurité pour Windows XP (KB973525)
Mise à jour de sécurité pour Windows XP (KB973869)
Mise à jour de sécurité pour Windows XP (KB973904)
Mise à jour de sécurité pour Windows XP (KB974112)
Mise à jour de sécurité pour Windows XP (KB974318)
Mise à jour de sécurité pour Windows XP (KB974392)
Mise à jour de sécurité pour Windows XP (KB974571)
Mise à jour de sécurité pour Windows XP (KB975025)
Mise à jour de sécurité pour Windows XP (KB975467)
Mise à jour pour Windows Internet Explorer 7 (KB976749)
Mise à jour pour Windows XP (KB951072-v2)
Mise à jour pour Windows XP (KB951978)
Mise à jour pour Windows XP (KB955839)
Mise à jour pour Windows XP (KB961503)
Mise à jour pour Windows XP (KB967715)
Mise à jour pour Windows XP (KB968389)
Mise à jour pour Windows XP (KB971737)
Mise à jour pour Windows XP (KB973687)
Mise à jour pour Windows XP (KB973815)
mIWA
MKV Splitter
mLogView
mMHouse
Mozilla Firefox (3.0.15)
Mp3 Tag Tools v1.2
mPfMgr
mPfWiz
mProSafe
MSN
MSVCRT
MSXML 4.0 SP2 (KB927978)
MSXML 4.0 SP2 (KB936181)
MSXML 4.0 SP2 (KB954430)
MSXML 4.0 SP2 (KB973688)
mWlsSafe
mXML
myTunes Redux 1.0
mZConfig
neroxml
Nokia Connectivity Cable Driver
Nokia PC Suite
Octoshape add-in for Adobe Flash Player
OpenMG AAC Add-on Module 1.0.00
OpenMG Limited Patch 4.5-06-05-12-01
OpenMG Secure Module 4.5.01
Outil de diagnostic PC TOSHIBA
Outil de téléchargement Windows Live
PC Connectivity Solution
Picasa 2
Pilote du DVD-RAM
Prism Video Converter
QuickTime
QuickTime for Windows (32-bit)
REALTEK GbE & FE Ethernet PCI-E NIC Driver
Realtek High Definition Audio Driver
Replay Music
Réducteur de bruit lect. CD/DVD
SD Secure Module
Segoe UI
Skype™ 3.8
Son virtuel TOSHIBA
SonicStage 4.0
Sony DVD Architect Studio 3.0b
Sony Vegas Movie Studio 6.0b
SUPERAntiSpyware Free Edition
Tavultesoft Keyman
The Rosetta Stone
TOSHIBA Accessibility
TOSHIBA ConfigFree
TOSHIBA Direct Disc Writer
TOSHIBA Disc Creator
TOSHIBA Fn-esse
TOSHIBA Hardware Setup
TOSHIBA Hotkey Utility
TOSHIBA Mot de passe responsable
TOSHIBA Power Saver Driver
TOSHIBA Software Modem
TOSHIBA Supervisor Password
Toshiba Tbiosdrv Driver
TOSHIBA Zooming Hook
Touch and Launch
TouchPad On/Off Utility
Uniblue RegistryBooster 2009
Update for Microsoft .NET Framework 3.5 SP1 (KB963707)
Utilitaire de zoom TOSHIBA
Utilitaire Hotkey TOSHIBA
Utilitaire TouchPad ON/OFF
Utility Common Driver
VC80CRTRedist - 8.0.50727.4053
Veoh Web Player
VLC media player 1.0.3
WebFldrs XP
Windows Driver Package - Nokia (WUDFRd) WPD (11/03/2006 6.82.26.2)
Windows Driver Package - Nokia Modem (11/03/2006 6.82.0.1)
Windows Genuine Advantage Notifications (KB905474)
Windows Internet Explorer 7
Windows Live Call
Windows Live Communications Platform
Windows Live Contrôle parental
Windows Live Mail
Windows Live Messenger
Windows Live Sync
Windows Live Toolbar
Windows Live Writer
Windows Media Format 11 runtime
Windows XP Service Pack 3
WinRAR archiver

==== Event Viewer Messages From Past Week ========

2009-12-15 07:03:38, error: Service Control Manager [7016] - Le service BrSplService a signalé un état actuel 0 non valide.
2009-12-15 06:57:22, error: Service Control Manager [7009] - Délai (30000 millisecondes) d'attente pour une connexion du service --.
2009-12-15 06:57:22, error: Service Control Manager [7000] - Le service -- n'a pas pu démarrer en raison de l'erreur : Le service n'a pas répondu assez vite à la demande de lancement ou de contrôle.
2009-12-15 06:57:03, error: Service Control Manager [7002] - Le service BrPar dépend du groupe Parallel arbitrator et aucun membre de ce groupe n'a démarré.
2009-12-14 18:30:30, error: Service Control Manager [7009] - Délai (30000 millisecondes) d'attente pour une connexion du service --.
2009-12-14 18:30:30, error: Service Control Manager [7000] - Le service -- n'a pas pu démarrer en raison de l'erreur : Le service n'a pas répondu assez vite à la demande de lancement ou de contrôle.
2009-12-14 18:30:17, error: Service Control Manager [7002] - Le service BrPar dépend du groupe Parallel arbitrator et aucun membre de ce groupe n'a démarré.
2009-12-14 18:28:49, error: Cdrom [15] - Le périphérique \Device\CdRom1 n'est pas encore prêt à être accédé.
2009-12-14 18:25:31, error: Srv [2019] - Le Serveur n'a pas réussi à allouer de la mémoire paginée du pool système car celui-ci est vide.
2009-12-14 18:13:31, error: Srv [2019] - Le Serveur n'a pas réussi à allouer de la mémoire paginée du pool système car celui-ci est vide.
2009-12-14 18:01:31, error: Srv [2019] - Le Serveur n'a pas réussi à allouer de la mémoire paginée du pool système car celui-ci est vide.
2009-12-14 17:49:31, error: Srv [2019] - Le Serveur n'a pas réussi à allouer de la mémoire paginée du pool système car celui-ci est vide.
2009-12-14 17:37:31, error: Srv [2019] - Le Serveur n'a pas réussi à allouer de la mémoire paginée du pool système car celui-ci est vide.
2009-12-14 17:25:31, error: Srv [2019] - Le Serveur n'a pas réussi à allouer de la mémoire paginée du pool système car celui-ci est vide.
2009-12-14 15:48:45, error: Dhcp [1002] - Le bail de l'adresse IP 192.168.254.1 pour la carte réseau dont l'adresse réseau est 0013026DD0A8 a été refusé par le serveur DHCP 192.168.254.254 (celui-ci a envoyé un message DHCPNACK).
2009-12-14 15:44:56, error: Service Control Manager [7009] - Délai (30000 millisecondes) d'attente pour une connexion du service --.
2009-12-14 15:44:56, error: Service Control Manager [7000] - Le service -- n'a pas pu démarrer en raison de l'erreur : Le service n'a pas répondu assez vite à la demande de lancement ou de contrôle.
2009-12-14 15:44:38, error: Service Control Manager [7002] - Le service BrPar dépend du groupe Parallel arbitrator et aucun membre de ce groupe n'a démarré.
2009-12-14 15:22:07, error: Service Control Manager [7009] - Délai (30000 millisecondes) d'attente pour une connexion du service --.
2009-12-14 15:22:07, error: Service Control Manager [7000] - Le service -- n'a pas pu démarrer en raison de l'erreur : Le service n'a pas répondu assez vite à la demande de lancement ou de contrôle.
2009-12-14 15:21:51, error: Service Control Manager [7024] - Le service Routage et accès distant s'est arrêté avec l'erreur service particulière 2147483720 (0x80000048).
2009-12-14 15:21:48, error: Service Control Manager [7009] - Délai (30000 millisecondes) d'attente pour une connexion du service --.
2009-12-14 15:21:48, error: Service Control Manager [7000] - Le service -- n'a pas pu démarrer en raison de l'erreur : Le service n'a pas répondu assez vite à la demande de lancement ou de contrôle.
2009-12-14 15:21:21, error: Service Control Manager [7002] - Le service BrPar dépend du groupe Parallel arbitrator et aucun membre de ce groupe n'a démarré.
2009-12-14 15:18:47, error: NetBT [4307] - L'initialisation a échoué car le transport a refusé d'ouvrir les adresses initiales.
2009-12-14 15:17:54, error: NetBT [4308] - L'initialisation a échoué car le transport a refusé d'ouvrir les connexions initiales.
2009-12-14 14:55:15, error: Service Control Manager [7009] - Délai (30000 millisecondes) d'attente pour une connexion du service --.
2009-12-14 14:55:15, error: Service Control Manager [7000] - Le service -- n'a pas pu démarrer en raison de l'erreur : Le service n'a pas répondu assez vite à la demande de lancement ou de contrôle.
2009-12-14 14:55:06, error: Service Control Manager [7009] - Délai (30000 millisecondes) d'attente pour une connexion du service --.
2009-12-14 14:55:06, error: Service Control Manager [7000] - Le service -- n'a pas pu démarrer en raison de l'erreur : Le service n'a pas répondu assez vite à la demande de lancement ou de contrôle.
2009-12-14 14:54:41, error: Service Control Manager [7002] - Le service BrPar dépend du groupe Parallel arbitrator et aucun membre de ce groupe n'a démarré.
2009-12-14 14:52:23, error: NetBT [4308] - L'initialisation a échoué car le transport a refusé d'ouvrir les connexions initiales.
2009-12-14 14:39:41, error: NetBT [4307] - L'initialisation a échoué car le transport a refusé d'ouvrir les adresses initiales.
2009-12-14 14:37:26, error: NetBT [4308] - L'initialisation a échoué car le transport a refusé d'ouvrir les connexions initiales.
2009-12-14 14:35:59, error: NetBT [4308] - L'initialisation a échoué car le transport a refusé d'ouvrir les connexions initiales.
2009-12-14 12:57:09, error: Service Control Manager [7009] - Délai (30000 millisecondes) d'attente pour une connexion du service --.
2009-12-14 12:57:09, error: Service Control Manager [7000] - Le service -- n'a pas pu démarrer en raison de l'erreur : Le service n'a pas répondu assez vite à la demande de lancement ou de contrôle.
2009-12-14 12:56:57, error: Service Control Manager [7009] - Délai (30000 millisecondes) d'attente pour une connexion du service --.
2009-12-14 12:56:57, error: Service Control Manager [7000] - Le service -- n'a pas pu démarrer en raison de l'erreur : Le service n'a pas répondu assez vite à la demande de lancement ou de contrôle.
2009-12-14 12:56:34, error: Service Control Manager [7002] - Le service BrPar dépend du groupe Parallel arbitrator et aucun membre de ce groupe n'a démarré.
2009-12-14 12:48:29, error: Service Control Manager [7009] - Délai (30000 millisecondes) d'attente pour une connexion du service --.
2009-12-14 12:48:29, error: Service Control Manager [7000] - Le service -- n'a pas pu démarrer en raison de l'erreur : Le service n'a pas répondu assez vite à la demande de lancement ou de contrôle.
2009-12-14 12:48:03, error: Service Control Manager [7002] - Le service BrPar dépend du groupe Parallel arbitrator et aucun membre de ce groupe n'a démarré.
2009-12-14 12:46:27, error: Cdrom [15] - Le périphérique \Device\CdRom1 n'est pas encore prêt à être accédé.
2009-12-14 11:23:01, error: Dhcp [1001] - Le réseau n'a attribué aucune adresse à votre ordinateur (par le serveur DHCP) pour la carte réseau avec l'adresse réseau 0013026DD0A8. Il s'est produit l'erreur suivante : L'opération a été annulée par l'utilisateur. . Votre ordinateur va continuer à essayer d'obtenir sa propre adresse auprès du serveur d'adresse réseau (DHCP).
2009-12-14 11:03:59, error: Service Control Manager [7009] - Délai (30000 millisecondes) d'attente pour une connexion du service --.
2009-12-14 11:03:59, error: Service Control Manager [7000] - Le service -- n'a pas pu démarrer en raison de l'erreur : Le service n'a pas répondu assez vite à la demande de lancement ou de contrôle.
2009-12-14 11:03:51, error: Service Control Manager [7002] - Le service BrPar dépend du groupe Parallel arbitrator et aucun membre de ce groupe n'a démarré.
2009-12-14 10:21:11, error: Service Control Manager [7009] - Délai (30000 millisecondes) d'attente pour une connexion du service --.
2009-12-14 10:21:11, error: Service Control Manager [7000] - Le service -- n'a pas pu démarrer en raison de l'erreur : Le service n'a pas répondu assez vite à la demande de lancement ou de contrôle.
2009-12-14 10:20:57, error: Service Control Manager [7002] - Le service BrPar dépend du groupe Parallel arbitrator et aucun membre de ce groupe n'a démarré.
2009-12-14 10:05:07, error: Service Control Manager [7009] - Délai (30000 millisecondes) d'attente pour une connexion du service --.
2009-12-14 10:05:07, error: Service Control Manager [7000] - Le service -- n'a pas pu démarrer en raison de l'erreur : Le service n'a pas répondu assez vite à la demande de lancement ou de contrôle.
2009-12-14 10:04:44, error: Service Control Manager [7002] - Le service BrPar dépend du groupe Parallel arbitrator et aucun membre de ce groupe n'a démarré.
2009-12-14 10:03:06, error: NetBT [4308] - L'initialisation a échoué car le transport a refusé d'ouvrir les connexions initiales.
2009-12-14 10:02:41, error: NetBT [4308] - L'initialisation a échoué car le transport a refusé d'ouvrir les connexions initiales.
2009-12-14 10:02:34, error: NetBT [4307] - L'initialisation a échoué car le transport a refusé d'ouvrir les adresses initiales.
2009-12-14 10:01:12, error: NetBT [4308] - L'initialisation a échoué car le transport a refusé d'ouvrir les connexions initiales.
2009-12-14 09:56:39, error: NetBT [4308] - L'initialisation a échoué car le transport a refusé d'ouvrir les connexions initiales.
2009-12-14 09:56:08, error: NetBT [4308] - L'initialisation a échoué car le transport a refusé d'ouvrir les connexions initiales.
2009-12-14 09:53:32, error: NetBT [4307] - L'initialisation a échoué car le transport a refusé d'ouvrir les adresses initiales.
2009-12-14 09:52:39, error: NetBT [4308] - L'initialisation a échoué car le transport a refusé d'ouvrir les connexions initiales.
2009-12-14 09:51:13, error: NetBT [4307] - L'initialisation a échoué car le transport a refusé d'ouvrir les adresses initiales.
2009-12-14 09:50:40, error: NetBT [4308] - L'initialisation a échoué car le transport a refusé d'ouvrir les connexions initiales.
2009-12-14 09:49:41, error: NetBT [4307] - L'initialisation a échoué car le transport a refusé d'ouvrir les adresses initiales.
2009-12-14 09:32:02, error: Service Control Manager [7009] - Délai (30000 millisecondes) d'attente pour une connexion du service --.
2009-12-14 09:32:02, error: Service Control Manager [7000] - Le service -- n'a pas pu démarrer en raison de l'erreur : Le service n'a pas répondu assez vite à la demande de lancement ou de contrôle.
2009-12-14 09:31:44, error: Service Control Manager [7002] - Le service BrPar dépend du groupe Parallel arbitrator et aucun membre de ce groupe n'a démarré.
2009-12-14 09:30:01, error: NetBT [4308] - L'initialisation a échoué car le transport a refusé d'ouvrir les connexions initiales.
2009-12-14 07:48:10, error: Service Control Manager [7009] - Délai (30000 millisecondes) d'attente pour une connexion du service --.
2009-12-14 07:48:10, error: Service Control Manager [7000] - Le service -- n'a pas pu démarrer en raison de l'erreur : Le service n'a pas répondu assez vite à la demande de lancement ou de contrôle.
2009-12-14 07:47:59, error: Service Control Manager [7002] - Le service BrPar dépend du groupe Parallel arbitrator et aucun membre de ce groupe n'a démarré.
2009-12-13 21:31:02, error: Service Control Manager [7000] - Le service SASDIFSV n'a pas pu démarrer en raison de l'erreur : Impossible de créer un fichier déjà existant.
2009-12-13 21:26:16, error: Service Control Manager [7009] - Délai (30000 millisecondes) d'attente pour une connexion du service --.
2009-12-13 21:26:16, error: Service Control Manager [7000] - Le service -- n'a pas pu démarrer en raison de l'erreur : Le service n'a pas répondu assez vite à la demande de lancement ou de contrôle.
2009-12-13 21:25:51, error: Service Control Manager [7002] - Le service BrPar dépend du groupe Parallel arbitrator et aucun membre de ce groupe n'a démarré.
2009-12-13 17:06:45, error: Service Control Manager [7009] - Délai (30000 millisecondes) d'attente pour une connexion du service --.
2009-12-13 17:06:45, error: Service Control Manager [7000] - Le service -- n'a pas pu démarrer en raison de l'erreur : Le service n'a pas répondu assez vite à la demande de lancement ou de contrôle.
2009-12-13 17:06:36, error: Service Control Manager [7002] - Le service BrPar dépend du groupe Parallel arbitrator et aucun membre de ce groupe n'a démarré.
2009-12-13 16:28:44, error: NetBT [4308] - L'initialisation a échoué car le transport a refusé d'ouvrir les connexions initiales.
2009-12-13 14:43:34, error: NetBT [4308] - L'initialisation a échoué car le transport a refusé d'ouvrir les connexions initiales.
2009-12-13 14:30:13, error: NetBT [4308] - L'initialisation a échoué car le transport a refusé d'ouvrir les connexions initiales.
2009-12-13 14:26:09, error: NetBT [4308] - L'initialisation a échoué car le transport a refusé d'ouvrir les connexions initiales.
2009-12-12 22:00:16, error: Service Control Manager [7009] - Délai (30000 millisecondes) d'attente pour une connexion du service --.
2009-12-12 22:00:16, error: Service Control Manager [7000] - Le service -- n'a pas pu démarrer en raison de l'erreur : Le service n'a pas répondu assez vite à la demande de lancement ou de contrôle.
2009-12-12 21:55:10, error: Service Control Manager [7009] - Délai (30000 millisecondes) d'attente pour une connexion du service --.
2009-12-12 21:55:10, error: Service Control Manager [7000] - Le service -- n'a pas pu démarrer en raison de l'erreur : Le service n'a pas répondu assez vite à la demande de lancement ou de contrôle.
2009-12-10 08:42:34, error: RemoteAccess [20106] - Impossible d'ajouter l'interface {53612DE9-053D-48BD-9E4E-9280780AB42D} avec le Gestionnaire de routage pour le protocole IP. L'erreur suivante s'est produite : Impossible d'accomplir cette fonction.
2009-12-10 08:42:19, error: Service Control Manager [7002] - Le service BrPar dépend du groupe Parallel arbitrator et aucun membre de ce groupe n'a démarré.
2009-12-09 14:44:02, error: SideBySide [61] - Erreur de syntaxe dans le fichier manifeste ou de stratégies "C:\Program Files\Apple Software Update\Plugins\MSIInstallPlugin.dll.Manifest" à la ligne 2. L'attribut requis version est absent de l'élément assemblyIdentity.
2009-12-09 14:44:02, error: SideBySide [59] - Generate Activation Context a échoué pour C:\Program Files\Apple Software Update\Plugins\MSIInstallPlugin.dll.Manifest. Message d'erreur de référence : Opération réussie. .
2009-12-09 14:44:02, error: SideBySide [58] - Erreur de syntaxe dans le fichier manifeste ou le fichier de stratégie "C:\Program Files\Apple Software Update\Plugins\MSIInstallPlugin.dll.Manifest" à la ligne 2.
2009-12-09 14:44:01, error: SideBySide [61] - Erreur de syntaxe dans le fichier manifeste ou de stratégies "C:\Program Files\Apple Software Update\Plugins\EXEInstallPlugin.dll.Manifest" à la ligne 2. L'attribut requis version est absent de l'élément assemblyIdentity.
2009-12-09 14:44:01, error: SideBySide [59] - Generate Activation Context a échoué pour C:\Program Files\Apple Software Update\Plugins\EXEInstallPlugin.dll.Manifest. Message d'erreur de référence : Opération réussie. .
2009-12-09 14:44:01, error: SideBySide [58] - Erreur de syntaxe dans le fichier manifeste ou le fichier de stratégie "C:\Program Files\Apple Software Update\Plugins\EXEInstallPlugin.dll.Manifest" à la ligne 2.
2009-12-09 03:01:05, error: Windows Update Agent [20] - Échec de l'installation : l'installation de la mise à jour suivante a échoué avec l'erreur 0x8009310b : Mise à jour pour Windows XP (KB970430).
2009-12-09 03:01:05, error: Windows Update Agent [20] - Échec de l'installation : l'installation de la mise à jour suivante a échoué avec l'erreur 0x8009310b : Mise à jour de sécurité pour Windows XP (KB974318).
2009-12-09 03:00:25, error: Windows Update Agent [20] - Échec de l'installation : l'installation de la mise à jour suivante a échoué avec l'erreur 0x8009310b : Mise à jour pour Windows XP (KB971737).
2009-12-09 03:00:25, error: Windows Update Agent [20] - Échec de l'installation : l'installation de la mise à jour suivante a échoué avec l'erreur 0x8009310b : Mise à jour de sécurité pour Windows XP (KB974392).
2009-12-09 03:00:25, error: Windows Update Agent [20] - Échec de l'installation : l'installation de la mise à jour suivante a échoué avec l'erreur 0x8009310b : Mise à jour de sécurité pour Windows XP (KB973904).
2009-12-09 03:00:25, error: Windows Update Agent [20] - Échec de l'installation : l'installation de la mise à jour suivante a échoué avec l'erreur 0x8009310b : Mise à jour de sécurité cumulative pour Internet Explorer 7 pour Windows XP (KB976325).

==== End Of File ===========================

SamandLucie
Novice
Novice

Posts Posts : 21
Joined Joined : 2009-12-14
OS OS : windows xp
Points Points : 25793
# Likes # Likes : 0

View user profile

Back to top Go down

Re: internet connected but after a few minutes browsers wont connect to server

Post by SamandLucie on Tue Dec 15, 2009 12:07 pm

DDS (Ver_09-12-01.01) - NTFSx86
Run by Lucie at 7:03:37,00 on 2009-12-15
Internet Explorer: 7.0.5730.13 BrowserJavaVersion: 1.6.0_13
Microsoft Windows XP Professionnel 5.1.2600.3.1252.2.1036.18.2550.1749 [GMT -5:00]

AV: AVG Anti-Virus Free *On-access scanning enabled* (Updated) {17DDD097-36FF-435F-9E1B-52D74245D6BF}

============== Running Processes ===============

C:\WINDOWS\system32\svchost -k DcomLaunch
svchost.exe
C:\WINDOWS\System32\svchost.exe -k netsvcs
C:\Program Files\Intel\Wireless\Bin\EvtEng.exe
C:\Program Files\Intel\Wireless\Bin\S24EvMon.exe
svchost.exe
svchost.exe
C:\WINDOWS\system32\brsvc01a.exe
C:\WINDOWS\system32\brss01a.exe
C:\WINDOWS\system32\spoolsv.exe
svchost.exe
C:\PROGRA~1\AVG\AVG8\avgwdsvc.exe
C:\Program Files\TOSHIBA\ConfigFree\CFSvcs.exe
C:\WINDOWS\system32\DVDRAMSV.exe
C:\Program Files\Java\jre6\bin\jqs.exe
C:\Program Files\Microsoft LifeCam\MSCamSvc.exe
C:\Program Files\Intel\Wireless\Bin\RegSrvc.exe
C:\Program Files\Microsoft\Search Enhancement Pack\SeaPort\SeaPort.exe
C:\WINDOWS\system32\svchost.exe -k imgsvc
C:\WINDOWS\system32\TODDSrv.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\wuauclt.exe
C:\PROGRA~1\AVG\AVG8\avgemc.exe
C:\PROGRA~1\AVG\AVG8\avgnsx.exe
C:\WINDOWS\system32\igfxpers.exe
C:\WINDOWS\RTHDCPL.EXE
C:\Program Files\AVG\AVG8\avgcsrvx.exe
C:\Program Files\Apoint2K\Apoint.exe
C:\Program Files\TOSHIBA\TouchPad\TPTray.exe
C:\Program Files\TOSHIBA\E-KEY\CeEKey.exe
C:\Program Files\TOSHIBA\ConfigFree\NDSTray.exe
C:\Program Files\Apoint2K\Apntex.exe
C:\Program Files\TOSHIBA\Touch and Launch\PadExe.exe
C:\WINDOWS\system32\ZoomingHook.exe
C:\Program Files\TOSHIBA\Tvs\TvsTray.exe
C:\Program Files\TOSHIBA\Utilitaire de zoom TOSHIBA\SmoothView.exe
C:\Program Files\TOSHIBA\TOSHIBA Direct Disc Writer\ddwmon.exe
C:\Program Files\ltmoh\Ltmoh.exe
C:\WINDOWS\AGRSMMSG.exe
C:\Program Files\Intel\Wireless\bin\ZCfgSvc.exe
C:\Program Files\Intel\Wireless\Bin\ifrmewrk.exe
C:\Program Files\Nokia\Nokia PC Suite 6\LaunchApplication.exe
C:\Program Files\QuickTime\qttask.exe
C:\WINDOWS\system32\TPSBattM.exe
C:\Program Files\iTunes\iTunesHelper.exe
C:\Program Files\Java\jre6\bin\jusched.exe
C:\PROGRA~1\AVG\AVG8\avgtray.exe
C:\WINDOWS\explorer.exe
C:\Program Files\iPod\bin\iPodService.exe
C:\WINDOWS\vVX6000.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\TOSHIBA\TOSCDSPD\toscdspd.exe
C:\WINDOWS\system32\wbem\wmiapsrv.exe
C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe
C:\Program Files\Uniblue\RegistryBooster\RegistryBooster.exe
C:\Program Files\PC Connectivity Solution\ServiceLayer.exe
C:\PROGRA~1\Intel\Wireless\Bin\Dot1XCfg.exe
C:\Program Files\Windows Live\Messenger\MsnMsgr.Exe
C:\Program Files\Veoh Networks\VeohWebPlayer\veohwebplayer.exe
C:\Program Files\DAEMON Tools Pro\DTProAgent.exe
C:\WINDOWS\system32\RAMASST.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Program Files\Java\jre6\bin\java.exe
C:\Documents and Settings\Lucie\Bureau\dds.scr

============== Pseudo HJT Report ===============

uStart Page = [You must be registered and logged in to see this link.]
uSearch Page = [You must be registered and logged in to see this link.]
uSearchMigratedDefaultURL = [You must be registered and logged in to see this link.]
uSearchAssistant = [You must be registered and logged in to see this link.]
mWinlogon: Userinit=c:\windows\system32\userinit.exe,c:\program files\LeechLLC:mstorr.exe,
BHO: AcroIEHlprObj Class: {06849e9f-c8d7-4d59-b87d-784b7d6be0b3} - c:\program files\adobe\acrobat 7.0\activex\AcroIEHelper.dll
BHO: AVG Safe Search: {3ca2f312-6f6e-4b53-a66e-4e65e497c8c0} - c:\program files\avg\avg8\avgssie.dll
BHO: Search Helper: {6ebf7485-159f-4bff-a14f-b9e3aac4465b} - c:\program files\microsoft\search enhancement pack\search helper\SEPsearchhelperie.dll
BHO: Programme d'aide de l'Assistant de connexion Windows Live: {9030d464-4c02-4abf-8ecc-5164760863c6} - c:\program files\fichiers communs\microsoft shared\windows live\WindowsLiveLogin.dll
BHO: Java(tm) Plug-In 2 SSV Helper: {dbc80044-a445-435b-bc74-9c25c1c588a9} - c:\program files\java\jre6\bin\jp2ssv.dll
BHO: Windows Live Toolbar Helper: {e15a8dc0-8516-42a1-81ea-dc94ec1acf10} - c:\program files\windows live\toolbar\wltcore.dll
BHO: JQSIEStartDetectorImpl Class: {e7e6f031-17ce-4c07-bc86-eabfe594f69c} - c:\program files\java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll
TB: Barre d'outils &Crawler: {4b3803ea-5230-4dc3-a7fc-33638f3d3542} -
TB: &Windows Live Toolbar: {21fa44ef-376d-4d53-9b0f-8a89d3229068} - c:\program files\windows live\toolbar\wltcore.dll
uRun: [CTFMON.EXE] c:\windows\system32\ctfmon.exe
uRun: [TOSCDSPD] c:\program files\toshiba\toscdspd\toscdspd.exe
uRun: [SUPERAntiSpyware] c:\program files\superantispyware\SUPERAntiSpyware.exe
uRun: [Startup Manager] "c:\program files\advanced system optimizer\startUp manager.exe"
uRun: [Uniblue RegistryBooster 2009] c:\program files\uniblue\registrybooster\RegistryBooster.exe /S
uRun: [msnmsgr] "c:\program files\windows live\messenger\MsnMsgr.Exe" /background
uRun: [VeohPlugin] "c:\program files\veoh networks\veohwebplayer\veohwebplayer.exe"
uRun: [AnyDVD] c:\program files\slysoft\anydvd\AnyDVDtray.exe
uRun: [DAEMON Tools Pro Agent] "c:\program files\daemon tools pro\DTProAgent.exe" -autorun
mRun: [igfxtray] c:\windows\system32\igfxtray.exe
mRun: [igfxhkcmd] c:\windows\system32\hkcmd.exe
mRun: [igfxpers] c:\windows\system32\igfxpers.exe
mRun: [RTHDCPL] RTHDCPL.EXE
mRun: [Alcmtr] ALCMTR.EXE
mRun: [Apoint] c:\program files\apoint2k\Apoint.exe
mRun: [TPNF] c:\program files\toshiba\touchpad\TPTray.exe
mRun: [CeEKEY] c:\program files\toshiba\e-key\CeEKey.exe
mRun: [NDSTray.exe] NDSTray.exe
mRun: [PadTouch] c:\program files\toshiba\touch and launch\PadExe.exe
mRun: [Zooming] ZoomingHook.exe
mRun: [HWSetup] c:\program files\toshiba\toshiba applet\HWSetup.exe hwSetUP
mRun: [Tvs] c:\program files\toshiba\tvs\TvsTray.exe
mRun: [SVPWUTIL] c:\program files\toshiba\windows utilities\SVPWUTIL.exe SVPwUTIL
mRun: [SmoothView] c:\program files\toshiba\utilitaire de zoom toshiba\SmoothView.exe
mRun: [TPSMain] TPSMain.exe
mRun: [DDWMon] c:\program files\toshiba\toshiba direct disc writer\\ddwmon.exe
mRun: [LtMoh] c:\program files\ltmoh\Ltmoh.exe
mRun: [AGRSMMSG] AGRSMMSG.exe
mRun: [IntelZeroConfig] c:\program files\intel\wireless\bin\ZCfgSvc.exe
mRun: [IntelWireless] "c:\program files\intel\wireless\bin\ifrmewrk.exe" /tf Intel PROSet/Wireless
mRun: [CFSServ.exe] CFSServ.exe -NoClient
mRun: [PCSuiteTrayApplication] c:\program files\nokia\nokia pc suite 6\LaunchApplication.exe -startup
mRun: [QuickTime Task] "c:\program files\quicktime\qttask.exe" -atboottime
mRun: [iTunesHelper] c:\program files\itunes\iTunesHelper.exe
mRun: [SunJavaUpdateSched] "c:\program files\java\jre6\bin\jusched.exe"
mRun: [AVG8_TRAY] c:\progra~1\avg\avg8\avgtray.exe
mRun: [VX6000] c:\windows\vVX6000.exe
mRun: [LifeCam] "c:\program files\microsoft lifecam\LifeExp.exe"
mRun: [nvcpl] c:\program files\LeechLLC:mstorr.exe
dRun: [CTFMON.EXE] c:\windows\system32\CTFMON.EXE
dRun: [PcSync] c:\program files\nokia\nokia pc suite 6\PcSync2.exe /NoDialog
StartupFolder: c:\docume~1\alluse~1\menudm~1\progra~1\dmarra~1\micros~1.lnk - c:\program files\microsoft office\office10\OSA.EXE
StartupFolder: c:\docume~1\alluse~1\menudm~1\progra~1\dmarra~1\ramasst.lnk - c:\windows\system32\RAMASST.exe
mPolicies-system: EnableLUA = 0 (0x0)
IE: E&xporter vers Microsoft Excel - c:\progra~1\micros~2\office10\EXCEL.EXE/3000
IE: {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe
IE: {FB5F1910-F110-11d2-BB9E-00C04F795683} - c:\program files\messenger\msmsgs.exe
IE: {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - {5F7B1267-94A9-47F5-98DB-E99415F33AEC} - c:\program files\windows live\writer\WriterBrowserExtension.dll
IE: {92780B25-18CC-41C8-B9BE-3C9C571A8263} - {FF059E31-CC5A-4E2E-BF3B-96E929D65503} - c:\progra~1\micros~2\office11\REFIEBAR.DLL
DPF: Microsoft XML Parser for Java
DPF: {8FFBE65D-2C9C-4669-84BD-5829DC0B603C} - [You must be registered and logged in to see this link.]
Handler: CDS300 - {AD43AA67-6860-4531-AC8A-0E68F9CF023E} -
Handler: linkscanner - {F274614C-63F8-47D5-A4D1-FBDDE494F8D1} - c:\program files\avg\avg8\avgpp.dll
Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - c:\progra~1\fichie~1\skype\SKYPE4~1.DLL
Notify: !SASWinLogon - c:\program files\superantispyware\SASWINLO.DLL
Notify: avgrsstarter - avgrsstx.dll
Notify: igfxcui - igfxdev.dll
SSODL: WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - c:\windows\system32\WPDShServiceObj.dll
SEH: SABShellExecuteHook Class: {5ae067d3-9afb-48e0-853a-ebb7f4a000da} - c:\program files\superantispyware\SASSEH.DLL
mASetup: {P7Y0U4W6-281Q-NI2I-UX0D-15QQ6LM01OW3} - c:\program files\LeechLLC:mstorr.exe -ac

================= FIREFOX ===================

FF - ProfilePath - c:\docume~1\lucie\applic~1\mozilla\firefox\profiles\lf70q7yn.default\
FF - prefs.js: browser.search.defaulturl - [You must be registered and logged in to see this link.]
FF - prefs.js: browser.search.selectedEngine - Google
FF - prefs.js: browser.startup.homepage - [You must be registered and logged in to see this link.]
FF - prefs.js: keyword.URL - [You must be registered and logged in to see this link.]
FF - component: c:\program files\avg\avg8\firefox\components\avgssff.dll
FF - plugin: c:\program files\microsoft\office live\npOLW.dll
FF - plugin: c:\program files\mozilla firefox\plugins\npbittorrent.dll
FF - plugin: c:\program files\veoh networks\veohwebplayer\npWebPlayerVideoPluginATL.dll
FF - plugin: c:\program files\windows live\photo gallery\NPWLPG.dll
FF - hȋdden: Microsoft .NET Framework Assistant: {20a82645-c095-46ed-80e3-08825760534b} - c:\windows\microsoft.net\framework\v3.5\windows presentation foundation\dotnetassistantextension\
FF - hȋdden: Java Console: No Registry Reference - c:\program files\mozilla firefox\extensions\{CAFEEFAC-0016-0000-0003-ABCDEFFEDCBA}
FF - hȋdden: Java Console: No Registry Reference - c:\program files\mozilla firefox\extensions\{CAFEEFAC-0016-0000-0013-ABCDEFFEDCBA}

---- FIREFOX POLICIES ----
FF - user.js: network.proxy.type - 0
FF - user.js: network.proxy.http -
user_pref(network.proxy.http_port,);
FF - user.js: network.proxy.no_proxies_on -
FF - user.js: yahoo.homepage.dontask - true
============= SERVICES / DRIVERS ===============

R0 d347bus;d347bus;c:\windows\system32\drivers\d347bus.sys [2008-2-13 155136]
R0 d347prt;d347prt;c:\windows\system32\drivers\d347prt.sys [2008-2-13 5248]
R1 AvgLdx86;AVG AVI Loader Driver x86;c:\windows\system32\drivers\avgldx86.sys [2008-6-16 335240]
R1 AvgMfx86;AVG On-access Scanner Minifilter Driver x86;c:\windows\system32\drivers\avgmfx86.sys [2007-2-11 27784]
R1 AvgTdiX;AVG8 Network Redirector;c:\windows\system32\drivers\avgtdix.sys [2008-6-16 108552]
R1 SASDIFSV;SASDIFSV;c:\program files\superantispyware\SASDIFSV.SYS [2008-8-20 9968]
R1 SASKUTIL;SASKUTIL;c:\program files\superantispyware\SASKUTIL.SYS [2008-8-20 74480]
R2 avg8emc;AVG8 E-mail Scanner;c:\progra~1\avg\avg8\avgemc.exe [2009-8-18 908056]
R2 avg8wd;AVG8 WatchDog;c:\progra~1\avg\avg8\avgwdsvc.exe [2008-7-4 297752]
R2 fssfltr;FssFltr;c:\windows\system32\drivers\fssfltr_tdi.sys [2009-5-31 55152]
R2 tdudf;TOSHIBA UDF File System Driver;c:\windows\system32\drivers\tdudf.sys [2006-4-18 98816]
R3 SASENUM;SASENUM;c:\program files\superantispyware\SASENUM.SYS [2008-8-20 7408]
S3 c912062a-9f10-4bf6-b6c8-a35ab4fb7246;c912062a-9f10-4bf6-b6c8-a35ab4fb7246;\??\d:\player\cds300.dll --> d:\player\cds300.dll [?]
S3 fsssvc;Windows Live Contrôle parental;c:\program files\windows live\family safety\fsssvc.exe [2009-2-6 533360]
S3 VX6000;Microsoft LifeCam VX-6000;c:\windows\system32\drivers\VX6000Xp.sys [2009-1-11 2375424]

=============== Created Last 30 ================

2009-12-14 18:17:13 0 d-----w- c:\docume~1\lucie\applic~1\Malwarebytes
2009-12-14 18:17:04 38224 ----a-w- c:\windows\system32\drivers\mbamswissarmy.sys
2009-12-14 18:17:01 0 d-----w- c:\docume~1\alluse~1\applic~1\Malwarebytes
2009-12-14 18:17:00 19160 ----a-w- c:\windows\system32\drivers\mbam.sys
2009-12-14 18:17:00 0 d-----w- c:\program files\Malwarebytes' Anti-Malware
2009-12-13 03:03:01 0 d-----w- c:\docume~1\lucie\applic~1\AVS4YOU
2009-12-13 03:03:00 0 d-----w- c:\docume~1\alluse~1\applic~1\AVS4YOU
2009-12-13 02:56:27 0 d-----w- c:\program files\fichiers communs\AVSMedia
2009-12-13 02:54:57 0 d-sh--w- c:\program files\LeechLLC
2009-12-13 02:52:24 974848 ----a-w- c:\windows\system32\mfc70.dll
2009-12-13 02:52:23 487424 ----a-w- c:\windows\system32\msvcp70.dll
2009-12-13 02:52:22 24576 ----a-w- c:\windows\system32\msxml3a.dll
2009-12-13 02:52:22 1700352 ----a-w- c:\windows\system32\GdiPlus.dll
2009-12-13 02:52:22 0 d-----w- c:\program files\AVS4YOU
2009-12-13 01:41:25 0 d-----w- C:\VideoOutput
2009-12-13 01:41:18 0 d-----w- c:\program files\FLV Converter
2009-12-01 08:54:14 0 d-----w- c:\program files\DVD Decrypter
2009-11-26 06:12:17 249856 ------w- c:\windows\Setup1.exe
2009-11-26 06:12:14 73216 ----a-w- c:\windows\ST6UNST.EXE
2009-11-26 01:45:49 0 d-----w- c:\docume~1\alluse~1\applic~1\DAEMON Tools Pro
2009-11-26 01:45:47 0 d-----w- c:\program files\DAEMON Tools Pro
2009-11-26 01:39:36 0 d-----w- c:\docume~1\lucie\applic~1\DAEMON Tools Pro
2009-11-22 05:15:29 0 d-----w- c:\program files\VideoLAN

==================== Find3M ====================

2009-12-14 03:00:00 11114 ----a-w- c:\docume~1\alluse~1\applic~1\MainApp.dll
2009-12-01 11:47:16 85276 ----a-w- c:\windows\system32\perfc00C.dat
2009-12-01 11:47:16 511224 ----a-w- c:\windows\system32\perfh00C.dat
2009-11-26 03:56:51 21840 -c--atw- c:\windows\system32\SIntfNT.dll
2009-11-26 03:56:51 17212 -c--atw- c:\windows\system32\SIntf32.dll
2009-11-26 03:56:51 12067 -c--atw- c:\windows\system32\SIntf16.dll
2009-11-26 01:39:50 722416 ----a-w- c:\windows\system32\drivers\sptd.sys
2009-11-15 16:20:09 26904 -c--a-w- c:\docume~1\lucie\applic~1\GDIPFONTCACHEV1.DAT
2009-10-29 07:44:19 832512 ----a-w- c:\windows\system32\wininet.dll
2009-10-29 07:44:15 78336 ----a-w- c:\windows\system32\ieencode.dll
2009-10-29 07:44:14 17408 ----a-w- c:\windows\system32\corpol.dll
2009-10-23 18:46:44 87608 ----a-w- c:\docume~1\lucie\applic~1\inst.exe
2009-10-23 18:46:43 47360 ----a-w- c:\windows\system32\drivers\pcouffin.sys
2009-10-23 18:46:43 47360 ----a-w- c:\docume~1\lucie\applic~1\pcouffin.sys
2009-10-21 05:39:43 75776 ----a-w- c:\windows\system32\strmfilt.dll
2009-10-21 05:39:43 25088 ----a-w- c:\windows\system32\httpapi.dll
2009-10-20 16:20:16 265728 ----a-w- c:\windows\system32\drivers\http.sys
2009-10-17 14:28:27 104512 ----a-w- c:\windows\system32\drivers\AnyDVD.sys
2009-10-13 10:33:37 271360 ----a-w- c:\windows\system32\oakley.dll
2009-10-12 13:39:22 79872 ----a-w- c:\windows\system32\raschap.dll
2009-10-12 13:39:22 150528 ----a-w- c:\windows\system32\rastls.dll
2009-09-28 18:20:43 89256 ----a-w- c:\windows\system32\ElbyCDIO.dll
2009-09-25 16:41:26 856064 ----a-w- c:\windows\system32\divx_xx0c.dll
2009-09-25 16:41:26 856064 ----a-w- c:\windows\system32\divx_xx07.dll
2009-09-25 16:41:26 847872 ----a-w- c:\windows\system32\divx_xx0a.dll
2009-09-25 16:41:26 843776 ----a-w- c:\windows\system32\divx_xx16.dll
2009-09-25 16:41:26 839680 ----a-w- c:\windows\system32\divx_xx11.dll
2009-09-25 16:41:26 696320 ----a-w- c:\windows\system32\DivX.dll
2008-09-15 14:37:02 32768 -csha-w- c:\windows\system32\config\systemprofile\local settings\historique\history.ie5\mshist012008091520080916\index.dat

============= FINISH: 7:04:43,04 ===============

SamandLucie
Novice
Novice

Posts Posts : 21
Joined Joined : 2009-12-14
OS OS : windows xp
Points Points : 25793
# Likes # Likes : 0

View user profile

Back to top Go down

Re: internet connected but after a few minutes browsers wont connect to server

Post by SamandLucie on Tue Dec 15, 2009 6:36 pm

so I also ran the kospersky online scanner and it came out clean it identified no threats, viruses, or warnings.

SamandLucie
Novice
Novice

Posts Posts : 21
Joined Joined : 2009-12-14
OS OS : windows xp
Points Points : 25793
# Likes # Likes : 0

View user profile

Back to top Go down

Re: internet connected but after a few minutes browsers wont connect to server

Post by SamandLucie on Tue Dec 15, 2009 6:38 pm

it seems that if i run winsock fixer and reboot and switch between my connection and the neighbors I am able to get online for a few minutes. But I ussually have to wait a while between being able to do this and it working, and it doesnt work everytime.

oh yeah and once it stops working the browsers doesnt even try to load it switches to the loading bar for a few miliseconds then back to "Done," and it just stays on the same page.

SamandLucie
Novice
Novice

Posts Posts : 21
Joined Joined : 2009-12-14
OS OS : windows xp
Points Points : 25793
# Likes # Likes : 0

View user profile

Back to top Go down

Re: internet connected but after a few minutes browsers wont connect to server

Post by Belahzur on Tue Dec 15, 2009 8:14 pm

Hmm, I think there is something hiding, some kind of ADS here, one thing is bugging me and Google isn't helping me any.

Download [You must be registered and logged in to see this link.] by OldTimer to your Desktop.

  • Close all windows and double click OTL.exe
  • Click Run Scan and let the program run uninterrupted
  • It will produce two logs for you, one will pop up - OTL.txt, the other will be saved on your Desktop - Extras.txt. Post both logs in this thread.
  • You may need to use two posts to get it all.


[You must be registered and logged in to see this link.] - [You must be registered and logged in to see this link.] - Please PM me if I fail to respond within 24hrs.


Belahzur
Administrator
Administrator

Posts Posts : 34916
Joined Joined : 2008-08-03
Gender Gender : Male
OS OS : XP SP3 Media Centre
Points Points : 245069
# Likes # Likes : 1

View user profile

Back to top Go down

Re: internet connected but after a few minutes browsers wont connect to server

Post by SamandLucie on Tue Dec 15, 2009 8:39 pm

ok also I found a certain piece of malware keeps reloading itself when I delete it I can go back online for a few minutes but sometime it fools malwarebytes and is not really deleted it is this

Registry Keys Infected:
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{p7y0u4w6-281q-ni2i-ux0d-15qq6lm01ow3} (Generic.Bot.H) -> Quarantined and deleted successfully.

SamandLucie
Novice
Novice

Posts Posts : 21
Joined Joined : 2009-12-14
OS OS : windows xp
Points Points : 25793
# Likes # Likes : 0

View user profile

Back to top Go down

Re: internet connected but after a few minutes browsers wont connect to server

Post by SamandLucie on Tue Dec 15, 2009 8:46 pm

OTL logfile created on: 2009-12-15 15:41:38 - Run 1
OTL by OldTimer - Version 3.1.17.0 Folder = C:\Documents and Settings\Lucie\Bureau
Windows XP Professional Edition Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation
Internet Explorer (Version = 7.0.5730.13)
Locale: 00000C0C | Country: Canada | Language: FRC | Date Format: yyyy-MM-dd

2,00 Gb Total Physical Memory | 1,77 Gb Available Physical Memory | 88,72% Memory free
3,08 Gb Paging File | 2,44 Gb Available in Paging File | 79,15% Paging File free
Paging file location(s): C:\pagefile.sys 756 1512 [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files
Drive C: | 93,16 Gb Total Space | 8,99 Gb Free Space | 9,65% Space Free | Partition Type: NTFS
D: Drive not present or media not loaded
E: Drive not present or media not loaded
F: Drive not present or media not loaded
G: Drive not present or media not loaded
H: Drive not present or media not loaded
I: Drive not present or media not loaded

Computer Name: LUCY
Current User Name: Lucie
Logged in as Administrator.

Current Boot Mode: Normal
Scan Mode: Current user
Company Name Whitelist: Off
Skip Microsoft Files: Off
File Age = 30 Days
Output = Standard

========== Processes (SafeList) ==========

PRC - [2009-12-15 15:40:47 | 00,538,112 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\Lucie\Bureau\OTL.exe
PRC - [2009-12-13 21:30:57 | 02,001,648 | ---- | M] (SUPERAntiSpyware.com) -- C:\Program Files\SUPERAntiSpyware\SUPERANTISPYWARE.EXE
PRC - [2009-12-12 09:45:46 | 02,043,160 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG8\avgtray.exe
PRC - [2009-10-05 19:14:22 | 02,075,384 | ---- | M] (Veoh Networks) -- C:\Program Files\Veoh Networks\VeohWebPlayer\veohwebplayer.exe
PRC - [2009-08-18 18:25:39 | 00,486,680 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG8\avgrsx.exe
PRC - [2009-08-18 18:25:28 | 00,693,016 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG8\avgcsrvx.exe
PRC - [2009-08-18 18:25:06 | 00,595,736 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG8\avgnsx.exe
PRC - [2009-08-18 18:24:37 | 00,908,056 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG8\avgemc.exe
PRC - [2009-08-18 18:22:49 | 00,297,752 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG8\avgwdsvc.exe
PRC - [2009-08-05 05:17:40 | 00,224,712 | ---- | M] (DT Soft Ltd) -- C:\Program Files\DAEMON Tools Pro\DTProAgent.exe
PRC - [2009-06-10 14:21:35 | 00,148,888 | ---- | M] (Sun Microsystems, Inc.) -- C:\Program Files\Java\jre6\bin\jusched.exe
PRC - [2009-06-10 14:21:34 | 00,152,984 | ---- | M] (Sun Microsystems, Inc.) -- C:\Program Files\Java\jre6\bin\jqs.exe
PRC - [2009-05-19 12:36:18 | 00,240,512 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Microsoft\Search Enhancement Pack\SeaPort\SeaPort.exe
PRC - [2008-12-16 08:54:52 | 02,019,624 | ---- | M] (Uniblue Software) -- C:\Program Files\Uniblue\RegistryBooster\RegistryBooster.exe
PRC - [2008-06-24 16:05:56 | 00,537,896 | ---- | M] (Nero AG) -- C:\Program Files\Fichiers communs\Nero\Lib\NMIndexingService.exe
PRC - [2008-06-08 09:31:04 | 00,877,864 | ---- | M] (Nero AG) -- C:\Program Files\Nero\Nero8\Nero BackItUp\NBService.exe
PRC - [2008-04-13 21:34:03 | 01,037,824 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\explorer.exe
PRC - [2007-06-01 16:51:26 | 00,257,088 | ---- | M] (Apple Inc.) -- C:\Program Files\iTunes\iTunesHelper.exe
PRC - [2007-06-01 16:51:22 | 00,501,312 | ---- | M] (Apple Inc.) -- C:\Program Files\iPod\bin\iPodService.exe
PRC - [2007-04-27 09:41:54 | 00,282,624 | ---- | M] (Apple Inc.) -- C:\Program Files\QuickTime\qttask.exe
PRC - [2006-12-19 10:30:26 | 00,081,920 | ---- | M] (Prolific Technology Inc.) -- C:\WINDOWS\system32\IoctlSvc.exe
PRC - [2006-11-08 14:27:54 | 00,222,208 | ---- | M] (Nokia) -- C:\Program Files\Nokia\Nokia PC Suite 6\LaunchApplication.exe
PRC - [2006-11-06 15:21:10 | 00,210,432 | ---- | M] (Nokia.) -- C:\Program Files\PC Connectivity Solution\ServiceLayer.exe
PRC - [2006-05-25 18:30:16 | 00,114,688 | ---- | M] (TOSHIBA Corporation) -- C:\WINDOWS\system32\TODDSrv.exe
PRC - [2006-04-28 11:38:12 | 00,262,144 | ---- | M] (TOSHIBA Corporation) -- C:\Program Files\TOSHIBA\TOSHIBA Direct Disc Writer\DDWMon.exe
PRC - [2006-04-25 22:09:23 | 00,994,080 | ---- | M] (Microsoft Corporation
) -- C:\WINDOWS\vVX6000.exe
PRC - [2006-04-17 22:32:58 | 00,187,168 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Microsoft LifeCam\MSCamSvc.exe
PRC - [2006-04-17 02:34:42 | 16,143,872 | ---- | M] (Realtek Semiconductor Corp.) -- C:\WINDOWS\RTHDCPL.exe
PRC - [2006-04-12 16:31:20 | 00,638,976 | ---- | M] (COMPAL ELECTRONIC INC.) -- C:\Program Files\TOSHIBA\E-KEY\CeEKey.exe
PRC - [2006-04-04 14:57:18 | 00,053,248 | ---- | M] (COMPAL ELECTRONIC INC.) -- C:\Program Files\TOSHIBA\TouchPad\TPTray.exe
PRC - [2006-03-03 06:44:19 | 00,184,320 | ---- | M] (Agere Systems) -- C:\Program Files\ltmoh\ltmoh.exe
PRC - [2006-03-03 06:44:01 | 00,088,204 | ---- | M] (Agere Systems) -- C:\WINDOWS\agrsmmsg.exe
PRC - [2006-02-06 19:40:02 | 00,118,784 | ---- | M] (Intel Corporation) -- C:\WINDOWS\system32\igfxpers.exe
PRC - [2006-02-06 19:36:06 | 00,077,824 | ---- | M] (Intel Corporation) -- C:\WINDOWS\system32\hkcmd.exe
PRC - [2006-02-02 13:11:38 | 00,073,728 | ---- | M] (TOSHIBA Corporation) -- C:\Program Files\TOSHIBA\Tvs\TvsTray.exe
PRC - [2005-12-22 13:19:34 | 01,077,329 | ---- | M] (TOSHIBA) -- C:\Program Files\TOSHIBA\Touch and Launch\PadExe.exe
PRC - [2005-12-05 12:37:40 | 00,667,718 | ---- | M] (Intel Corporation) -- C:\Program Files\Intel\Wireless\Bin\ZCfgSvc.exe
PRC - [2005-11-28 11:41:50 | 00,602,182 | ---- | M] (Intel Corporation) -- C:\Program Files\Intel\Wireless\Bin\iFrmewrk.exe
PRC - [2005-11-28 11:37:52 | 00,397,381 | ---- | M] (Intel Corporation) -- C:\Program Files\Intel\Wireless\Bin\Dot1XCfg.exe
PRC - [2005-11-28 11:31:32 | 00,540,745 | ---- | M] (Intel Corporation ) -- C:\Program Files\Intel\Wireless\Bin\S24EvMon.exe
PRC - [2005-11-28 11:29:00 | 00,114,753 | ---- | M] (Intel Corporation) -- C:\Program Files\Intel\Wireless\Bin\EvtEng.exe
PRC - [2005-11-28 11:28:14 | 00,217,164 | ---- | M] (Intel Corporation) -- C:\Program Files\Intel\Wireless\Bin\RegSrvc.exe
PRC - [2005-11-02 03:41:04 | 00,978,944 | ---- | M] (TOSHIBA CORPORATION) -- C:\Program Files\TOSHIBA\ConfigFree\NDSTray.exe
PRC - [2005-08-12 11:14:16 | 00,040,960 | ---- | M] (TOSHIBA Corporation) -- C:\WINDOWS\system32\TPSBattM.exe
PRC - [2005-06-06 09:58:44 | 00,024,576 | ---- | M] (TOSHIBA) -- C:\WINDOWS\system32\ZoomingHook.exe
PRC - [2005-05-17 09:24:50 | 00,118,784 | ---- | M] (TOSHIBA Corporation) -- C:\Program Files\TOSHIBA\Utilitaire de zoom TOSHIBA\SmoothView.exe
PRC - [2005-04-11 16:08:00 | 00,065,536 | ---- | M] (TOSHIBA) -- C:\Program Files\TOSHIBA\TOSCDSPD\TOSCDSPD.exe
PRC - [2005-01-17 03:38:38 | 00,040,960 | ---- | M] (TOSHIBA CORPORATION) -- C:\Program Files\TOSHIBA\ConfigFree\CFSvcs.exe
PRC - [2004-08-27 11:37:00 | 00,155,648 | ---- | M] (Matsushita Electric Industrial Co., Ltd.) -- C:\WINDOWS\system32\RAMASST.exe
PRC - [2004-08-27 11:33:00 | 00,110,592 | ---- | M] (Matsushita Electric Industrial Co., Ltd.) -- C:\WINDOWS\system32\DVDRAMSV.exe
PRC - [2004-03-23 09:40:42 | 00,196,608 | ---- | M] (Alps Electric Co., Ltd.) -- C:\Program Files\Apoint2K\Apoint.exe
PRC - [2003-02-25 22:08:42 | 00,045,056 | ---- | M] (Alps Electric Co., Ltd.) -- C:\Program Files\Apoint2K\ApntEx.exe
PRC - [2002-04-11 19:00:00 | 00,057,344 | ---- | M] (brother Industries Ltd) -- C:\WINDOWS\system32\BRSVC01A.EXE
PRC - [2001-12-12 19:01:00 | 00,045,056 | ---- | M] (brother Industries Ltd) -- C:\WINDOWS\system32\BRSS01A.EXE


========== Modules (SafeList) ==========

MOD - [2009-12-15 15:40:47 | 00,538,112 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\Lucie\Bureau\OTL.exe


========== Win32 Services (SafeList) ==========

SRV - [2009-08-18 18:24:37 | 00,908,056 | ---- | M] (AVG Technologies CZ, s.r.o.) [Auto | Running] -- C:\Program Files\AVG\AVG8\avgemc.exe -- (avg8emc)
SRV - [2009-08-18 18:22:49 | 00,297,752 | ---- | M] (AVG Technologies CZ, s.r.o.) [Auto | Running] -- C:\Program Files\AVG\AVG8\avgwdsvc.exe -- (avg8wd)
SRV - [2009-06-10 14:21:34 | 00,152,984 | ---- | M] (Sun Microsystems, Inc.) [Auto | Running] -- C:\Program Files\Java\jre6\bin\jqs.exe -- (JavaQuickStarterService)
SRV - [2009-05-19 12:36:18 | 00,240,512 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Program Files\Microsoft\Search Enhancement Pack\SeaPort\SeaPort.exe -- (SeaPort)
SRV - [2009-02-06 19:08:58 | 00,533,360 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Program Files\Windows Live\Family Safety\fsssvc.exe -- (fsssvc)
SRV - [2008-12-03 17:45:27 | 00,654,848 | ---- | M] (Macrovision Europe Ltd.) [On_Demand | Stopped] -- C:\Program Files\Fichiers communs\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe -- (FLEXnet Licensing Service)
SRV - [2008-06-24 16:05:56 | 00,537,896 | ---- | M] (Nero AG) [On_Demand | Running] -- C:\Program Files\Fichiers communs\Nero\Lib\NMIndexingService.exe -- (NMIndexingService)
SRV - [2008-06-08 09:31:04 | 00,877,864 | ---- | M] (Nero AG) [Auto | Running] -- C:\Program Files\Nero\Nero8\Nero BackItUp\NBService.exe -- (Nero BackItUp Scheduler 3)
SRV - [2007-06-01 16:51:22 | 00,501,312 | ---- | M] (Apple Inc.) [On_Demand | Running] -- C:\Program Files\iPod\bin\iPodService.exe -- (iPod Service)
SRV - [2006-12-19 10:30:26 | 00,081,920 | ---- | M] (Prolific Technology Inc.) [Auto | Running] -- C:\WINDOWS\system32\IoctlSvc.exe -- (PLFlash DeviceIoControl Service)
SRV - [2006-11-06 15:21:10 | 00,210,432 | ---- | M] (Nokia.) [On_Demand | Running] -- C:\Program Files\PC Connectivity Solution\ServiceLayer.exe -- (ServiceLayer)
SRV - [2006-05-25 18:30:16 | 00,114,688 | ---- | M] (TOSHIBA Corporation) [Auto | Running] -- C:\WINDOWS\system32\TODDSrv.exe -- (TODDSrv)
SRV - [2006-05-08 04:24:54 | 00,069,632 | ---- | M] (Sony Corporation) [On_Demand | Stopped] -- C:\Program Files\Fichiers communs\Sony Shared\AVLib\SSScsiSV.exe -- (SSScsiSV)
SRV - [2006-04-27 17:35:16 | 00,053,337 | ---- | M] (Sony Corporation) [On_Demand | Stopped] -- C:\Program Files\Fichiers communs\Sony Shared\AVLib\MSCSPTISRV.exe -- (MSCSPTISRV)
SRV - [2006-04-27 17:27:06 | 00,049,241 | ---- | M] (Sony Corporation) [On_Demand | Stopped] -- C:\Program Files\Fichiers communs\Sony Shared\AVLib\PACSPTISVR.exe -- (PACSPTISVR)
SRV - [2006-04-27 17:16:28 | 00,069,718 | ---- | M] (Sony Corporation) [On_Demand | Stopped] -- C:\Program Files\Fichiers communs\Sony Shared\AVLib\SPTISRV.exe -- (SPTISRV)
SRV - [2006-04-17 22:32:58 | 00,187,168 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Program Files\Microsoft LifeCam\MSCamSvc.exe -- (MSCamSvc)
SRV - [2005-11-28 11:31:32 | 00,540,745 | ---- | M] (Intel Corporation ) [Auto | Running] -- C:\Program Files\Intel\Wireless\Bin\S24EvMon.exe -- (S24EventMonitor) Intel(R)
SRV - [2005-11-28 11:29:00 | 00,114,753 | ---- | M] (Intel Corporation) [Auto | Running] -- C:\Program Files\Intel\Wireless\Bin\EvtEng.exe -- (EvtEng) Intel(R)
SRV - [2005-11-28 11:28:14 | 00,217,164 | ---- | M] (Intel Corporation) [Auto | Running] -- C:\Program Files\Intel\Wireless\Bin\RegSrvc.exe -- (RegSrvc) Intel(R)
SRV - [2005-11-14 01:06:04 | 00,069,632 | ---- | M] (Macrovision Corporation) [On_Demand | Stopped] -- C:\Program Files\Fichiers communs\InstallShield\Driver\1150\Intel 32\IDriverT.exe -- (IDriverT)
SRV - [2005-01-17 03:38:38 | 00,040,960 | ---- | M] (TOSHIBA CORPORATION) [Auto | Running] -- C:\Program Files\TOSHIBA\ConfigFree\CFSvcs.exe -- (CFSvcs)
SRV - [2004-08-27 11:33:00 | 00,110,592 | ---- | M] (Matsushita Electric Industrial Co., Ltd.) [Auto | Running] -- C:\WINDOWS\system32\DVDRAMSV.exe -- (DVD-RAM_Service)
SRV - [2003-07-28 20:28:22 | 00,089,136 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Program Files\Fichiers communs\Microsoft Shared\Source Engine\OSE.EXE -- (ose)
SRV - [2002-04-11 19:00:00 | 00,057,344 | ---- | M] (brother Industries Ltd) [Auto | Running] -- C:\WINDOWS\system32\BRSVC01A.EXE -- (Brother XP spl Service)


========== Driver Services (SafeList) ==========

DRV - [2009-11-25 20:39:50 | 00,722,416 | ---- | M] () [Kernel | Boot | Running] -- C:\WINDOWS\System32\Drivers\sptd.sys -- (sptd)
DRV - [2009-10-23 13:46:43 | 00,047,360 | ---- | M] (VSO Software) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\pcouffin.sys -- (pcouffin)
DRV - [2009-10-17 09:28:27 | 00,104,512 | ---- | M] (SlySoft, Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\AnyDVD.sys -- (AnyDVD)
DRV - [2009-09-26 12:57:34 | 00,025,768 | ---- | M] (Elaborate Bytes AG) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\ElbyCDIO.sys -- (ElbyCDIO)
DRV - [2009-09-21 15:49:51 | 00,074,480 | ---- | M] (SUPERAdBlocker.com and SUPERAntiSpyware.com) [Kernel | System | Running] -- C:\Program Files\SUPERAntiSpyware\SASKUTIL.SYS -- (SASKUTIL)
DRV - [2009-08-18 18:25:33 | 00,027,784 | ---- | M] (AVG Technologies CZ, s.r.o.) [File_System | System | Running] -- C:\WINDOWS\System32\Drivers\avgmfx86.sys -- (AvgMfx86)
DRV - [2009-08-18 18:25:31 | 00,335,240 | ---- | M] (AVG Technologies CZ, s.r.o.) [Kernel | System | Running] -- C:\WINDOWS\System32\Drivers\avgldx86.sys -- (AvgLdx86)
DRV - [2009-06-15 21:56:22 | 00,009,968 | ---- | M] (SUPERAdBlocker.com and SUPERAntiSpyware.com) [Kernel | System | Running] -- C:\Program Files\SUPERAntiSpyware\SASDIFSV.SYS -- (SASDIFSV)
DRV - [2009-05-09 09:42:43 | 00,108,552 | ---- | M] (AVG Technologies CZ, s.r.o.) [Kernel | System | Running] -- C:\WINDOWS\System32\Drivers\avgtdix.sys -- (AvgTdiX)
DRV - [2009-02-06 19:08:42 | 00,055,152 | ---- | M] (Microsoft Corporation) [Kernel | Auto | Running] -- C:\WINDOWS\system32\drivers\fssfltr_tdi.sys -- (fssfltr)
DRV - [2008-08-20 00:34:22 | 00,007,408 | R--- | M] ( SUPERAdBlocker.com and SUPERAntiSpyware.com) [Kernel | On_Demand | Running] -- C:\Program Files\SUPERAntiSpyware\SASENUM.SYS -- (SASENUM)
DRV - [2008-04-13 13:46:20 | 00,048,128 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\61883.sys -- (61883)
DRV - [2008-04-13 13:46:20 | 00,038,912 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\avc.sys -- (Avc)
DRV - [2008-04-13 13:46:09 | 00,051,200 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\msdv.sys -- (MSDV)
DRV - [2008-04-13 13:45:12 | 00,060,032 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\USBAUDIO.sys -- (usbaudio) USB Audio Driver (WDM)
DRV - [2008-04-13 11:36:05 | 00,144,384 | ---- | M] (Windows (R) Server 2003 DDK provider) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\hdaudbus.sys -- (HDAudBus)
DRV - [2007-11-13 05:25:54 | 00,020,480 | ---- | M] (Macrovision Corporation, Macrovision Europe Limited, and Macrovision Japan and Asia K.K.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\secdrv.sys -- (Secdrv)
DRV - [2007-09-24 21:40:17 | 00,025,244 | ---- | M] (Adaptec) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\aspi32.sys -- (ASPI32)
DRV - [2007-07-25 21:53:30 | 00,043,528 | ---- | M] (Sonic Solutions) [Kernel | Boot | Running] -- C:\WINDOWS\System32\Drivers\PxHelp20.sys -- (PxHelp20)
DRV - [2006-09-19 14:44:04 | 00,015,664 | ---- | M] (GEAR Software Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\GEARAspiWDM.sys -- (GEARAspiWDM)
DRV - [2006-08-05 13:10:32 | 00,021,275 | ---- | M] (Meetinghouse Data Communications) [Kernel | Auto | Running] -- C:\WINDOWS\system32\drivers\AegisP.sys -- (AegisP) AEGIS Protocol (IEEE 802.1x)
DRV - [2006-04-25 09:01:48 | 00,043,776 | ---- | M] (TOSHIBA Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\Tvs.sys -- (Tvs)
DRV - [2006-04-24 04:00:46 | 00,083,584 | ---- | M] (Realtek Semiconductor Corporation ) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\Rtenicxp.sys -- (RTLE8023xp)
DRV - [2006-04-18 15:12:00 | 00,098,816 | ---- | M] (TOSHIBA Corporation) [File_System | Auto | Running] -- C:\WINDOWS\system32\drivers\tdudf.sys -- (tdudf)
DRV - [2006-04-17 03:31:26 | 04,262,912 | ---- | M] (Realtek Semiconductor Corp.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\RtkHDAud.Sys -- (IntcAzAudAddService) Service for Realtek HD Audio (WDM)
DRV - [2006-04-13 01:19:32 | 02,375,424 | ---- | M] (Microsoft Corporation
) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\VX6000Xp.sys -- (VX6000)
DRV - [2006-03-22 20:59:36 | 00,037,888 | ---- | M] (ENE Technology Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\ESD7SK.sys -- (ESDCR)
DRV - [2006-03-22 20:59:32 | 00,074,752 | ---- | M] (ENE Technology Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\ESM7SK.sys -- (ESMCR)
DRV - [2006-03-22 20:59:28 | 00,061,056 | ---- | M] (ENE Technology Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\EMS7SK.sys -- (EMSCR)
DRV - [2006-03-03 06:43:55 | 01,124,097 | ---- | M] (Agere Systems) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\AGRSM.sys -- (AgereSoftModem)
DRV - [2006-03-02 19:49:50 | 00,015,360 | ---- | M] (TOSHIBA Corporation.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\tdcmdpst.sys -- (tdcmdpst)
DRV - [2006-02-06 20:04:34 | 01,399,615 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\ialmnt5.sys -- (ialm)
DRV - [2006-01-05 16:31:20 | 00,011,264 | ---- | M] (TOSHIBA ) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\TPwSav.sys -- (TPwSav)
DRV - [2005-12-04 12:55:30 | 01,428,096 | ---- | M] (Intel® Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\w39n51.sys -- (w39n51) Intel(R)
DRV - [2005-11-28 12:09:26 | 00,013,568 | ---- | M] (Intel Corporation) [Kernel | Auto | Running] -- C:\WINDOWS\system32\drivers\s24trans.sys -- (s24trans)
DRV - [2005-06-01 14:33:00 | 00,102,384 | ---- | M] (Matsushita Electric Industrial Co.,Ltd.) [File_System | System | Running] -- C:\WINDOWS\system32\drivers\meiudf.sys -- (meiudf)
DRV - [2004-11-15 03:22:08 | 00,101,874 | ---- | M] (Alps Electric Co., Ltd.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\Apfiltr.sys -- (ApfiltrService)
DRV - [2004-08-22 17:31:48 | 00,005,248 | ---- | M] ( ) [Kernel | Boot | Running] -- C:\WINDOWS\System32\Drivers\d347prt.sys -- (d347prt)
DRV - [2004-08-22 17:31:10 | 00,155,136 | ---- | M] ( ) [Kernel | Boot | Running] -- C:\WINDOWS\system32\DRIVERS\d347bus.sys -- (d347bus)
DRV - [2004-08-05 07:00:00 | 00,017,792 | ---- | M] (Parallel Technologies, Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\ptilink.sys -- (Ptilink)
DRV - [2003-09-19 01:47:00 | 00,010,368 | ---- | M] (Padus, Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\pfc.sys -- (Pfc)
DRV - [2003-09-10 23:36:54 | 00,021,060 | ---- | M] (InterVideo, Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\iviaspi.sys -- (Iviaspi)
DRV - [2003-01-29 01:35:00 | 00,012,032 | ---- | M] (TOSHIBA Corporation.) [Kernel | Auto | Running] -- C:\WINDOWS\system32\drivers\Netdevio.sys -- (Netdevio)
DRV - [2002-01-24 14:43:40 | 00,006,528 | ---- | M] () [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\Tbiosdrv.sys -- (TBiosDrv)
DRV - [2000-07-24 02:01:00 | 00,019,537 | ---- | M] (Brother Industries Ltd.) [Kernel | Auto | Stopped] -- C:\WINDOWS\System32\drivers\BrPar.sys -- (BrPar)


========== Standard Registry (SafeList) ==========


========== Internet Explorer ==========

IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = %SystemRoot%\system32\blank.htm
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Search,Local Page = [You must be registered and logged in to see this link.]

IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = [You must be registered and logged in to see this link.]
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,SearchMigratedDefaultName = Google
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,SearchMigratedDefaultURL = [You must be registered and logged in to see this link.]
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = [You must be registered and logged in to see this link.]
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Search,SearchAssistant = [You must be registered and logged in to see this link.]
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyServer" = :

========== FireFox ==========

FF - prefs.js..browser.search.defaultenginename: "Yahoo"
FF - prefs.js..browser.search.defaulturl: "http://search.yahoo.com/search?ei=UTF-8&fr=ytff-sunm&p="
FF - prefs.js..browser.search.order.1: "Crawler Search"
FF - prefs.js..browser.search.param.yahoo-fr: "moz2-ytff-sunm"
FF - prefs.js..browser.search.param.yahoo-fr-cjkt: "moz2-ytff-sunm"
FF - prefs.js..browser.search.selectedEngine: "Google"
FF - prefs.js..browser.search.useDBForOrder: true
FF - prefs.js..browser.startup.homepage: "http://www.yahoo.com/"
FF - prefs.js..extensions.enabledItems: {d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}:1.1.1
FF - prefs.js..extensions.enabledItems: {3f963a5b-e555-4543-90e2-c3908898db71}:8.5.0.424
FF - prefs.js..extensions.enabledItems: {0545b830-f0aa-4d7e-8820-50a4629a56fe}:4.1
FF - prefs.js..extensions.enabledItems: {CE6E6E3B-84DD-4cac-9F63-8D2AE4F30A4B}:2.7.6.0623
FF - prefs.js..extensions.enabledItems: {b9db16a4-6edc-47ec-a1f4-b86292ed211d}:4.6.5
FF - prefs.js..extensions.enabledItems: {c50ca3c4-5656-43c2-a061-13e717f73fc8}:3.0.8
FF - prefs.js..extensions.enabledItems: {0538E3E3-7E9B-4d49-8831-A227C80A7AD3}:0.9.10.1
FF - prefs.js..extensions.enabledItems: {d37dc5d0-431d-44e5-8c91-49419370caa1}:2.5.35
FF - prefs.js..extensions.enabledItems: [You must be registered and logged in to see this link.]:1.0
FF - prefs.js..extensions.enabledItems: {05BF52F6-A4F9-48B9-84ED-F8D83762E619}:0.5.6
FF - prefs.js..extensions.enabledItems: {37E4D8EA-8BDA-4831-8EA1-89053939A250}:3.0.0.1
FF - prefs.js..extensions.enabledItems: {d5ea4520-61a1-11da-8cd6-0800200c9a66}:2009.07.19
FF - prefs.js..extensions.enabledItems: [You must be registered and logged in to see this link.]:1.2.200902
FF - prefs.js..extensions.enabledItems: {283f22a5-7fd7-4714-a764-693b69dc76e9}:1.1.1
FF - prefs.js..extensions.enabledItems: {3713a489-0634-4472-8456-dc7abd7eba00}:1.2.2
FF - prefs.js..extensions.enabledItems: {5c8bfb7c-9a54-11dc-8314-0800200c9a66}:3.0.2
FF - prefs.js..keyword.URL: "http://search.yahoo.com/search?ei=UTF-8&fr=ytff-sunm&p="
FF - prefs.js..network.proxy.backup.ftp: ""
FF - prefs.js..network.proxy.backup.ftp_port: 0
FF - prefs.js..network.proxy.backup.gopher: ""
FF - prefs.js..network.proxy.backup.gopher_port: 0
FF - prefs.js..network.proxy.backup.socks: ""
FF - prefs.js..network.proxy.backup.socks_port: 0
FF - prefs.js..network.proxy.backup.ssl: ""
FF - prefs.js..network.proxy.backup.ssl_port: 0
FF - prefs.js..network.proxy.ftp: "localhost"
FF - prefs.js..network.proxy.ftp_port: 8800
FF - prefs.js..network.proxy.gopher: "localhost"
FF - prefs.js..network.proxy.gopher_port: 8800
FF - prefs.js..network.proxy.http_port: 8800
FF - prefs.js..network.proxy.no_proxies_on: ""
FF - prefs.js..network.proxy.share_proxy_settings: true
FF - prefs.js..network.proxy.socks: "localhost"
FF - prefs.js..network.proxy.socks_port: 8800
FF - prefs.js..network.proxy.ssl: "localhost"
FF - prefs.js..network.proxy.ssl_port: 8800

FF - user.js..network.proxy.type: 0
FF - user.js..network.proxy.http: ""
FF - user.js..network.proxy.http_port:
FF - user.js..network.proxy.no_proxies_on: ""

FF - HKLM\software\mozilla\Firefox\Extensions\\{3112ca9c-de6d-4884-a869-9855de68056c}: C:\Documents and Settings\All Users\Application Data\Mozilla\Firefox Extensions\{3112ca9c-de6d-4884-a869-9855de68056c} [2007-08-19 19:24:26 | 00,000,000 | ---D | M]
FF - HKLM\software\mozilla\Firefox\Extensions\\{3f963a5b-e555-4543-90e2-c3908898db71}: C:\Program Files\AVG\AVG8\Firefox [2009-11-03 18:51:42 | 00,000,000 | ---D | M]
FF - HKLM\software\mozilla\Mozilla Firefox 3.0.15\extensions\\Components: C:\Program Files\Mozilla Firefox\components [2009-11-15 00:52:35 | 00,000,000 | ---D | M]
FF - HKLM\software\mozilla\Mozilla Firefox 3.0.15\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins [2009-11-15 17:57:23 | 00,000,000 | ---D | M]

[2008-08-09 14:48:53 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Lucie\Application Data\Mozilla\Extensions
[2009-12-15 13:32:43 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Lucie\Application Data\Mozilla\Firefox\Profiles\lf70q7yn.default\extensions
[2009-06-14 22:08:02 | 00,000,000 | ---D | M] (Forecastfox) -- C:\Documents and Settings\Lucie\Application Data\Mozilla\Firefox\Profiles\lf70q7yn.default\extensions\{0538E3E3-7E9B-4d49-8831-A227C80A7AD3}
[2009-12-06 19:40:24 | 00,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\Lucie\Application Data\Mozilla\Firefox\Profiles\lf70q7yn.default\extensions\{0545b830-f0aa-4d7e-8820-50a4629a56fe}
[2008-10-24 00:54:32 | 00,000,000 | ---D | M] (New Tab Button on Tab Right) -- C:\Documents and Settings\Lucie\Application Data\Mozilla\Firefox\Profiles\lf70q7yn.default\extensions\{05BF52F6-A4F9-48B9-84ED-F8D83762E619}
[2008-10-24 08:53:26 | 00,000,000 | ---D | M] (Who Is This Person?) -- C:\Documents and Settings\Lucie\Application Data\Mozilla\Firefox\Profiles\lf70q7yn.default\extensions\{283f22a5-7fd7-4714-a764-693b69dc76e9}
[2009-03-08 21:01:45 | 00,000,000 | ---D | M] (Abaca classic) -- C:\Documents and Settings\Lucie\Application Data\Mozilla\Firefox\Profiles\lf70q7yn.default\extensions\{3713a489-0634-4472-8456-dc7abd7eba00}
[2009-11-29 20:56:13 | 00,000,000 | ---D | M] (PDF Download) -- C:\Documents and Settings\Lucie\Application Data\Mozilla\Firefox\Profiles\lf70q7yn.default\extensions\{37E4D8EA-8BDA-4831-8EA1-89053939A250}
[2008-10-24 00:40:59 | 00,000,000 | ---D | M] (Aero Fox) -- C:\Documents and Settings\Lucie\Application Data\Mozilla\Firefox\Profiles\lf70q7yn.default\extensions\{5c8bfb7c-9a54-11dc-8314-0800200c9a66}
[2009-11-29 20:56:11 | 00,000,000 | ---D | M] (Fire.fm) -- C:\Documents and Settings\Lucie\Application Data\Mozilla\Firefox\Profiles\lf70q7yn.default\extensions\{6F0976E6-26F3-4AFE-BBEC-9E99E27E4DF3}
[2009-11-29 20:56:08 | 00,000,000 | ---D | M] (DownloadHelper) -- C:\Documents and Settings\Lucie\Application Data\Mozilla\Firefox\Profiles\lf70q7yn.default\extensions\{b9db16a4-6edc-47ec-a1f4-b86292ed211d}
[2009-11-29 20:56:09 | 00,000,000 | ---D | M] (Fast Video Download (with SearchMenu)) -- C:\Documents and Settings\Lucie\Application Data\Mozilla\Firefox\Profiles\lf70q7yn.default\extensions\{c50ca3c4-5656-43c2-a061-13e717f73fc8}
[2009-09-14 12:43:32 | 00,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\Lucie\Application Data\Mozilla\Firefox\Profiles\lf70q7yn.default\extensions\{CE6E6E3B-84DD-4cac-9F63-8D2AE4F30A4B}
[2009-09-14 12:43:32 | 00,000,000 | ---D | M] (Adblock Plus) -- C:\Documents and Settings\Lucie\Application Data\Mozilla\Firefox\Profiles\lf70q7yn.default\extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}
[2009-11-29 20:56:25 | 00,000,000 | ---D | M] (FoxClocks) -- C:\Documents and Settings\Lucie\Application Data\Mozilla\Firefox\Profiles\lf70q7yn.default\extensions\{d37dc5d0-431d-44e5-8c91-49419370caa1}
[2009-09-14 12:43:27 | 00,000,000 | ---D | M] (QuickProxy) -- C:\Documents and Settings\Lucie\Application Data\Mozilla\Firefox\Profiles\lf70q7yn.default\extensions\{d5ea4520-61a1-11da-8cd6-0800200c9a66}
[2009-09-14 12:43:29 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Lucie\Application Data\Mozilla\Firefox\Profiles\lf70q7yn.default\extensions\suncult@sf.net
[2008-01-05 18:21:42 | 00,001,208 | ---- | M] () -- C:\Documents and Settings\Lucie\Application Data\Mozilla\Firefox\Profiles\lf70q7yn.default\searchplugins\FireSearch.xml
[2009-06-01 20:06:39 | 00,001,632 | ---- | M] () -- C:\Documents and Settings\Lucie\Application Data\Mozilla\Firefox\Profiles\lf70q7yn.default\searchplugins\live-search.xml
[2009-12-10 18:22:38 | 00,001,597 | ---- | M] () -- C:\Documents and Settings\Lucie\Application Data\Mozilla\Firefox\Profiles\lf70q7yn.default\searchplugins\the-pirate-bay.xml
[2009-12-10 13:26:08 | 00,001,713 | ---- | M] () -- C:\Documents and Settings\Lucie\Application Data\Mozilla\Firefox\Profiles\lf70q7yn.default\searchplugins\youtube-video-search.xml
[2009-12-15 07:10:09 | 00,000,000 | ---D | M] -- C:\Program Files\Mozilla Firefox\extensions
[2007-08-19 19:24:44 | 00,000,000 | ---D | M] -- C:\Program Files\Mozilla Firefox\extensions\divx@partners.mozilla.com
[2008-09-03 19:11:24 | 00,054,600 | ---- | M] (BitTorrent, Inc.) -- C:\Program Files\Mozilla Firefox\plugins\npbittorrent.dll
[2007-07-26 14:05:16 | 00,001,329 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\crawlersrch.xml

O1 HOSTS File: (736 bytes) - C:\WINDOWS\system32\drivers\etc\hosts
O1 - Hosts: 127.0.0.1 localhost
O2 - BHO: (AcroIEHlprObj Class) - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll (Adobe Systems Incorporated)
O2 - BHO: (AVG Safe Search) - {3CA2F312-6F6E-4B53-A66E-4E65E497C8C0} - C:\Program Files\AVG\AVG8\avgssie.dll (AVG Technologies CZ, s.r.o.)
O2 - BHO: (Search Helper) - {6EBF7485-159F-4bff-A14F-B9E3AAC4465B} - C:\Program Files\Microsoft\Search Enhancement Pack\Search Helper\SEPsearchhelperie.dll (Microsoft Corporation)
O2 - BHO: (Programme d'aide de l'Assistant de connexion Windows Live) - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corporation)
O2 - BHO: (Java(tm) Plug-In 2 SSV Helper) - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll (Sun Microsystems, Inc.)
O2 - BHO: (Windows Live Toolbar Helper) - {E15A8DC0-8516-42A1-81EA-DC94EC1ACF10} - C:\Program Files\Windows Live\Toolbar\wltcore.dll (Microsoft Corporation)
O2 - BHO: (JQSIEStartDetectorImpl Class) - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll (Sun Microsystems, Inc.)
O3 - HKLM\..\Toolbar: (&Windows Live Toolbar) - {21FA44EF-376D-4D53-9B0F-8A89D3229068} - C:\Program Files\Windows Live\Toolbar\wltcore.dll (Microsoft Corporation)
O3 - HKLM\..\Toolbar: (no name) - {4B3803EA-5230-4DC3-A7FC-33638F3D3542} - No CLSID value found.
O3 - HKCU\..\Toolbar\WebBrowser: (&Windows Live Toolbar) - {21FA44EF-376D-4D53-9B0F-8A89D3229068} - C:\Program Files\Windows Live\Toolbar\wltcore.dll (Microsoft Corporation)
O4 - HKLM..\Run: [AGRSMMSG] C:\WINDOWS\agrsmmsg.exe (Agere Systems)
O4 - HKLM..\Run: [Alcmtr] C:\WINDOWS\Alcmtr.exe (Realtek Semiconductor Corp.)
O4 - HKLM..\Run: [Apoint] C:\Program Files\Apoint2K\Apoint.exe (Alps Electric Co., Ltd.)
O4 - HKLM..\Run: [AVG8_TRAY] C:\Program Files\AVG\AVG8\avgtray.exe (AVG Technologies CZ, s.r.o.)
O4 - HKLM..\Run: [CeEKEY] C:\Program Files\TOSHIBA\E-KEY\CeEKey.exe (COMPAL ELECTRONIC INC.)
O4 - HKLM..\Run: [CFSServ.exe] File not found
O4 - HKLM..\Run: [DDWMon] C:\Program Files\TOSHIBA\TOSHIBA Direct Disc Writer\\ddwmon.exe ()
O4 - HKLM..\Run: [HWSetup] C:\Program Files\TOSHIBA\TOSHIBA Applet\HWSetup.exe (TOSHIBA CO.,LTD.)
O4 - HKLM..\Run: [igfxhkcmd] C:\WINDOWS\system32\hkcmd.exe (Intel Corporation)
O4 - HKLM..\Run: [igfxpers] C:\WINDOWS\system32\igfxpers.exe (Intel Corporation)
O4 - HKLM..\Run: [igfxtray] C:\WINDOWS\system32\igfxtray.exe (Intel Corporation)
O4 - HKLM..\Run: [IntelWireless] C:\Program Files\Intel\Wireless\Bin\ifrmewrk.exe (Intel Corporation)
O4 - HKLM..\Run: [IntelZeroConfig] C:\Program Files\Intel\Wireless\Bin\ZCfgSvc.exe (Intel Corporation)
O4 - HKLM..\Run: [iTunesHelper] C:\Program Files\iTunes\iTunesHelper.exe (Apple Inc.)
O4 - HKLM..\Run: [LifeCam] C:\Program Files\Microsoft LifeCam\LifeExp.exe (Microsoft Corporation)
O4 - HKLM..\Run: [LtMoh] C:\Program Files\ltmoh\ltmoh.exe (Agere Systems)
O4 - HKLM..\Run: [NBKeyScan] C:\Program Files\Nero\Nero8\Nero BackItUp\NBKeyScan.exe (Nero AG)
O4 - HKLM..\Run: [NDSTray.exe] File not found
O4 - HKLM..\Run: [NeroFilterCheck] C:\Program Files\Fichiers communs\Nero\Lib\NeroCheck.exe (Nero AG)
O4 - HKLM..\Run: [nvcpl] C:\Program Files\LeechLLC:mstorr.exe File not found
O4 - HKLM..\Run: [PadTouch] C:\Program Files\TOSHIBA\Touch and Launch\PadExe.exe (TOSHIBA)
O4 - HKLM..\Run: [PCSuiteTrayApplication] C:\Program Files\Nokia\Nokia PC Suite 6\LaunchApplication.exe (Nokia)
O4 - HKLM..\Run: [QuickTime Task] C:\Program Files\QuickTime\qttask.exe (Apple Inc.)
O4 - HKLM..\Run: [RTHDCPL] C:\WINDOWS\RTHDCPL.exe (Realtek Semiconductor Corp.)
O4 - HKLM..\Run: [SmoothView] C:\Program Files\TOSHIBA\Utilitaire de zoom TOSHIBA\SmoothView.exe (TOSHIBA Corporation)
O4 - HKLM..\Run: [SunJavaUpdateSched] C:\Program Files\Java\jre6\bin\jusched.exe (Sun Microsystems, Inc.)
O4 - HKLM..\Run: [SVPWUTIL] C:\Program Files\Toshiba\Windows Utilities\SVPWUTIL.exe (TOSHIBA)
O4 - HKLM..\Run: [TPNF] C:\Program Files\TOSHIBA\TouchPad\TPTray.exe (COMPAL ELECTRONIC INC.)
O4 - HKLM..\Run: [TPSMain] C:\WINDOWS\System32\TPSMain.exe (TOSHIBA Corporation)
O4 - HKLM..\Run: [Tvs] C:\Program Files\TOSHIBA\Tvs\TvsTray.exe (TOSHIBA Corporation)
O4 - HKLM..\Run: [VX6000] C:\WINDOWS\vVX6000.exe (Microsoft Corporation
)
O4 - HKLM..\Run: [Zooming] C:\WINDOWS\System32\ZoomingHook.exe (TOSHIBA)
O4 - HKCU..\Run: [AnyDVD] C:\Program Files\SlySoft\AnyDVD\AnyDVDtray.exe (SlySoft, Inc.)
O4 - HKCU..\Run: [DAEMON Tools Pro Agent] C:\Program Files\DAEMON Tools Pro\DTProAgent.exe (DT Soft Ltd)
O4 - HKCU..\Run: [Startup Manager] C:\Program Files\Advanced System Optimizer\startUp manager.exe (Systweak Inc)
O4 - HKCU..\Run: [SUPERAntiSpyware] C:\Program Files\SUPERAntiSpyware\SUPERANTISPYWARE.EXE (SUPERAntiSpyware.com)
O4 - HKCU..\Run: [TOSCDSPD] C:\Program Files\TOSHIBA\TOSCDSPD\TOSCDSPD.exe (TOSHIBA)
O4 - HKCU..\Run: [Uniblue RegistryBooster 2009] C:\Program Files\Uniblue\RegistryBooster\RegistryBooster.exe (Uniblue Software)
O4 - HKCU..\Run: [VeohPlugin] C:\Program Files\Veoh Networks\VeohWebPlayer\veohwebplayer.exe (Veoh Networks)
O4 - Startup: C:\Documents and Settings\All Users\Menu Démarrer\Programmes\Démarrage\Microsoft Office.lnk = C:\Program Files\Microsoft Office\Office10\OSA.EXE (Microsoft Corporation)
O4 - Startup: C:\Documents and Settings\All Users\Menu Démarrer\Programmes\Démarrage\RAMASST.lnk = C:\WINDOWS\system32\RAMASST.exe (Matsushita Electric Industrial Co., Ltd.)
O6 - HKLM\Software\Policies\Microsoft\Internet Explorer\Infodelivery present
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: LinkResolveIgnoreLinkInfo = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoResolveSearch = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoCDBurning = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: HonorAutoRunSetting = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableLUA = 0
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 255
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: LinkResolveIgnoreLinkInfo = 0
O8 - Extra context menu item: E&xporter vers Microsoft Excel - C:\Program Files\Microsoft Office\Office10\EXCEL.EXE (Microsoft Corporation)
O9 - Extra Button: Ajout Direct - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll (Microsoft Corporation)
O9 - Extra 'Tools' menuitem : &Ajout Direct dans Windows Live Writer - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll (Microsoft Corporation)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000004 [] - C:\WINDOWS\system32\nwprovau.dll (Microsoft Corporation)
O15 - HKLM\..Trusted Domains: 1 domain(s) and sub-domain(s) not assigned to a zone.
O15 - HKCU\..Trusted Domains: 8 domain(s) and sub-domain(s) not assigned to a zone.
O16 - DPF: {8FFBE65D-2C9C-4669-84BD-5829DC0B603C} [You must be registered and logged in to see this link.] (Reg Error: Key error.)
O16 - DPF: Microsoft XML Parser for Java Reg Error: Value error. (Reg Error: Key error.)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.254.254 192.168.254.254
O18 - Protocol\Handler\http\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Fichiers communs\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\http\oledb {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Fichiers communs\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\https\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Fichiers communs\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\https\oledb {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Fichiers communs\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\ipp\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Fichiers communs\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\linkscanner {F274614C-63F8-47D5-A4D1-FBDDE494F8D1} - C:\Program Files\AVG\AVG8\avgpp.dll (AVG Technologies CZ, s.r.o.)
O18 - Protocol\Handler\livecall {828030A1-22C1-4009-854F-8E305202313F} - C:\Program Files\Windows Live\Messenger\msgrapp.14.0.8064.0206.dll (Microsoft Corporation)
O18 - Protocol\Handler\msdaipp\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Fichiers communs\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\msdaipp\oledb {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Fichiers communs\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\msnim {828030A1-22C1-4009-854F-8E305202313F} - C:\Program Files\Windows Live\Messenger\msgrapp.14.0.8064.0206.dll (Microsoft Corporation)
O18 - Protocol\Handler\mso-offdap {3D9F03FA-7A94-11D3-BE81-0050048385D1} - C:\Program Files\Fichiers communs\Microsoft Shared\Web Components\10\OWC10.DLL (Microsoft Corporation)
O18 - Protocol\Handler\skype4com {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files\Fichiers communs\Skype\Skype4COM.dll (Skype Technologies)
O18 - Protocol\Handler\tbr {4D25FB7A-8902-4291-960E-9ADA051CFBBF} - Reg Error: Key error. File not found
O18 - Protocol\Handler\wlmailhtml {03C514A3-1EFB-4856-9F99-10D7BE1653C0} - C:\Program Files\Windows Live\Mail\mailcomm.dll (Microsoft Corporation)
O18 - Protocol\Filter\text/xml {807553E5-5146-11D5-A672-00B0D022E945} - C:\Program Files\Fichiers communs\Microsoft Shared\OFFICE11\MSOXMLMF.DLL (Microsoft Corporation)
O20 - HKLM Winlogon: Shell - (Explorer.exe) - C:\WINDOWS\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: UserInit - (C:\Program Files\LeechLLC:mstorr.exe) - C:\Program Files\LeechLLC:mstorr.exe File not found
O20 - Winlogon\Notify\!SASWinLogon: DllName - C:\Program Files\SUPERAntiSpyware\SASWINLO.DLL - C:\Program Files\SUPERAntiSpyware\SASWINLO.DLL (SUPERAntiSpyware.com)
O20 - Winlogon\Notify\avgrsstarter: DllName - avgrsstx.dll - C:\WINDOWS\System32\avgrsstx.dll (AVG Technologies CZ, s.r.o.)
O20 - Winlogon\Notify\igfxcui: DllName - igfxdev.dll - C:\WINDOWS\System32\igfxdev.dll (Intel Corporation)
O24 - Desktop Components:0 (Ma page d'accueil) - About:Home
O28 - HKLM ShellExecuteHooks: {5AE067D3-9AFB-48E0-853A-EBB7F4A000DA} - C:\Program Files\SUPERAntiSpyware\SASSEH.DLL (SuperAdBlocker.com)
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2006-05-11 17:03:33 | 00,000,000 | ---- | M] () - C:\AUTOEXEC.BAT -- [ NTFS ]
O33 - MountPoints2\{00ab57ea-97c0-11de-9c30-0016d4226ebf}\Shell - "" = AutoRun
O33 - MountPoints2\{ffaad946-8a1d-11dc-a262-0016d4226ebf}\Shell - "" = AutoRun
O34 - HKLM BootExecute: (autocheck autochk *) - File not found
O35 - comfile [open] -- "%1" %*
O35 - exefile [open] -- "%1" %*

========== Files/Folders - Created Within 30 Days ==========

[2009-12-15 15:40:46 | 00,538,112 | ---- | C] (OldTimer Tools) -- C:\Documents and Settings\Lucie\Bureau\OTL.exe
[2009-12-15 10:26:31 | 00,000,000 | ---D | C] -- C:\Program Files\Nero
[2009-12-14 16:53:16 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Lucie\Bureau\backups
[2009-12-14 16:47:29 | 00,401,720 | ---- | C] (Trend Micro Inc.) -- C:\Documents and Settings\Lucie\Bureau\winlogon.scr
[2009-12-14 13:17:13 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Lucie\Application Data\Malwarebytes
[2009-12-14 13:17:04 | 00,038,224 | ---- | C] (Malwarebytes Corporation) -- C:\WINDOWS\System32\drivers\mbamswissarmy.sys
[2009-12-14 13:17:01 | 00,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Malwarebytes
[2009-12-14 13:17:00 | 00,019,160 | ---- | C] (Malwarebytes Corporation) -- C:\WINDOWS\System32\drivers\mbam.sys
[2009-12-14 13:17:00 | 00,000,000 | ---D | C] -- C:\Program Files\Malwarebytes' Anti-Malware
[2009-12-14 13:13:32 | 04,844,296 | ---- | C] (Malwarebytes Corporation ) -- C:\Documents and Settings\Lucie\Bureau\mbam-setup.exe
[2009-12-14 10:18:02 | 01,445,888 | ---- | C] (Option^Explicit Software Solutions) -- C:\Documents and Settings\Lucie\Bureau\WinsockxpFix.exe
[2009-12-12 22:03:01 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Lucie\Application Data\AVS4YOU
[2009-12-12 22:03:00 | 00,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\AVS4YOU
[2009-12-12 21:56:27 | 00,000,000 | ---D | C] -- C:\Program Files\Fichiers communs\AVSMedia
[2009-12-12 21:56:23 | 00,000,000 | ---D | C] -- C:\WINDOWS\System32\drivers\umdf
[2009-12-12 21:54:57 | 00,000,000 | -HSD | C] -- C:\Program Files\LeechLLC
[2009-12-12 21:52:24 | 00,974,848 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\mfc70.dll
[2009-12-12 21:52:23 | 00,487,424 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\msvcp70.dll
[2009-12-12 21:52:22 | 01,700,352 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\GdiPlus.dll
[2009-12-12 21:52:22 | 00,024,576 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\msxml3a.dll
[2009-12-12 21:52:22 | 00,000,000 | ---D | C] -- C:\Program Files\AVS4YOU
[2009-12-12 20:41:25 | 00,000,000 | ---D | C] -- C:\VideoOutput
[2009-12-12 20:41:18 | 00,000,000 | ---D | C] -- C:\Program Files\FLV Converter
[2009-12-12 20:14:00 | 04,363,118 | ---- | C] (FLV Converter ) -- C:\Documents and Settings\Lucie\Bureau\flvconverter_setup.exe
[2009-12-01 03:54:14 | 00,000,000 | ---D | C] -- C:\Program Files\DVD Decrypter
[2009-11-29 23:17:37 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Lucie\Mes documents\Accompagnante à la naissance
[2009-11-26 01:12:17 | 00,249,856 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\Setup1.exe
[2009-11-26 01:12:14 | 00,073,216 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\ST6UNST.EXE
[2009-11-25 22:35:02 | 00,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Documents\DAEMON Tools Images
[2009-11-25 20:45:49 | 00,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\DAEMON Tools Pro
[2009-11-25 20:45:47 | 00,000,000 | ---D | C] -- C:\Program Files\DAEMON Tools Pro
[2009-11-25 20:39:36 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Lucie\Application Data\DAEMON Tools Pro
[2009-11-22 00:22:22 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Lucie\Application Data\vlc
[2009-11-22 00:15:29 | 00,000,000 | ---D | C] -- C:\Program Files\VideoLAN
[2009-10-23 13:46:42 | 00,047,360 | ---- | C] (VSO Software) -- C:\Documents and Settings\Lucie\Application Data\pcouffin.sys
[2009-08-07 02:01:31 | 00,000,000 | ---D | M] -- C:\Documents and Settings\NetworkService\Local Settings\Application Data\Microsoft
[2008-11-30 15:59:39 | 00,000,000 | --SD | M] -- C:\Documents and Settings\NetworkService\Application Data\Microsoft
[2008-11-30 15:59:39 | 00,000,000 | --SD | M] -- C:\Documents and Settings\LocalService\Application Data\Microsoft
[2008-09-15 09:37:26 | 00,000,000 | ---D | M] -- C:\Documents and Settings\LocalService\Local Settings\Application Data\Microsoft
[2008-02-13 03:53:56 | 00,005,248 | ---- | C] ( ) -- C:\WINDOWS\System32\drivers\d347prt.sys
[2008-02-13 03:53:55 | 00,155,136 | ---- | C] ( ) -- C:\WINDOWS\System32\drivers\d347bus.sys
[4 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ]

========== Files - Modified Within 30 Days ==========

[2009-12-15 15:40:47 | 00,538,112 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\Lucie\Bureau\OTL.exe
[2009-12-15 15:37:07 | 07,340,032 | ---- | M] () -- C:\Documents and Settings\Lucie\NTUSER.DAT
[2009-12-15 15:08:22 | 00,000,606 | ---- | M] () -- C:\WINDOWS\Uninstall Manager.INI
[2009-12-15 14:48:53 | 00,000,969 | ---- | M] () -- C:\Documents and Settings\Lucie\Bureau\malware bytes log file 1
[2009-12-15 13:30:48 | 00,000,040 | -HS- | M] () -- C:\Documents and Settings\All Users\Application Data\.zreglib
[2009-12-15 13:29:15 | 00,001,158 | ---- | M] () -- C:\WINDOWS\System32\wpa.dbl
[2009-12-15 13:28:32 | 00,000,006 | -H-- | M] () -- C:\WINDOWS\tasks\SA.DAT
[2009-12-15 13:28:30 | 00,002,048 | --S- | M] () -- C:\WINDOWS\bootstat.dat
[2009-12-15 13:28:29 | 26,739,87584 | -HS- | M] () -- C:\hiberfil.sys
[2009-12-15 13:26:57 | 00,000,284 | -HS- | M] () -- C:\Documents and Settings\Lucie\ntuser.ini
[2009-12-15 13:26:48 | 10,256,618 | -H-- | M] () -- C:\Documents and Settings\Lucie\Local Settings\Application Data\IconCache.db
[2009-12-15 13:25:58 | 00,000,736 | ---- | M] () -- C:\WINDOWS\System32\drivers\etc\hosts
[2009-12-15 12:40:00 | 00,000,069 | ---- | M] () -- C:\WINDOWS\NeroDigital.ini
[2009-12-15 12:33:43 | 00,000,127 | ---- | M] () -- C:\Documents and Settings\Lucie\Application Data\default.pls
[2009-12-15 10:33:46 | 00,002,363 | ---- | M] () -- C:\Documents and Settings\All Users\Bureau\Nero StartSmart.lnk
[2009-12-15 10:33:46 | 00,002,265 | ---- | M] () -- C:\Documents and Settings\All Users\Bureau\Nero Home.lnk
[2009-12-15 10:31:27 | 00,001,024 | ---- | M] () -- C:\Documents and Settings\Lucie\.rnd
[2009-12-15 07:03:12 | 00,524,288 | ---- | M] () -- C:\Documents and Settings\Lucie\Bureau\dds.scr
[2009-12-14 16:47:31 | 00,401,720 | ---- | M] (Trend Micro Inc.) -- C:\Documents and Settings\Lucie\Bureau\winlogon.scr
[2009-12-14 13:17:07 | 00,000,707 | ---- | M] () -- C:\Documents and Settings\All Users\Bureau\Malwarebytes' Anti-Malware.lnk
[2009-12-14 13:15:20 | 04,844,296 | ---- | M] (Malwarebytes Corporation ) -- C:\Documents and Settings\Lucie\Bureau\mbam-setup.exe
[2009-12-14 10:18:25 | 01,445,888 | ---- | M] (Option^Explicit Software Solutions) -- C:\Documents and Settings\Lucie\Bureau\WinsockxpFix.exe
[2009-12-14 10:08:08 | 46,607,184 | ---- | M] () -- C:\WINDOWS\System32\drivers\Avg\incavi.avm
[2009-12-14 10:08:08 | 00,123,841 | ---- | M] () -- C:\WINDOWS\System32\drivers\Avg\microavi.avg
[2009-12-13 22:00:00 | 00,011,114 | ---- | M] () -- C:\Documents and Settings\All Users\Application Data\MainApp.dll
[2009-12-12 21:57:31 | 00,000,908 | ---- | M] () -- C:\Documents and Settings\Lucie\Bureau\AVS Video Converter 6.lnk
[2009-12-12 21:56:37 | 00,316,640 | ---- | M] () -- C:\WINDOWS\WMSysPr9.prx
[2009-12-12 20:41:20 | 00,000,686 | ---- | M] () -- C:\Documents and Settings\All Users\Bureau\FLV Converter.lnk
[2009-12-12 20:19:00 | 04,363,118 | ---- | M] (FLV Converter ) -- C:\Documents and Settings\Lucie\Bureau\flvconverter_setup.exe
[2009-12-10 10:05:51 | 00,026,904 | ---- | M] () -- C:\Documents and Settings\Lucie\Local Settings\Application Data\GDIPFONTCACHEV1.DAT
[2009-12-10 03:02:34 | 00,001,393 | ---- | M] () -- C:\WINDOWS\imsins.BAK
[2009-12-09 14:44:01 | 00,000,284 | ---- | M] () -- C:\WINDOWS\tasks\AppleSoftwareUpdate.job
[2009-12-03 16:14:06 | 00,038,224 | ---- | M] (Malwarebytes Corporation) -- C:\WINDOWS\System32\drivers\mbamswissarmy.sys
[2009-12-03 16:13:56 | 00,019,160 | ---- | M] (Malwarebytes Corporation) -- C:\WINDOWS\System32\drivers\mbam.sys
[2009-12-01 07:24:40 | 00,000,399 | ---- | M] () -- C:\WINDOWS\brqikmon.ini
[2009-12-01 07:09:00 | 00,000,113 | ---- | M] () -- C:\WINDOWS\Brownie.ini
[2009-12-01 06:47:16 | 01,121,548 | ---- | M] () -- C:\WINDOWS\System32\PerfStringBackup.INI
[2009-12-01 06:47:16 | 00,511,224 | ---- | M] () -- C:\WINDOWS\System32\perfh00C.dat
[2009-12-01 06:47:16 | 00,441,772 | ---- | M] () -- C:\WINDOWS\System32\perfh009.dat
[2009-12-01 06:47:16 | 00,085,276 | ---- | M] () -- C:\WINDOWS\System32\perfc00C.dat
[2009-12-01 06:47:16 | 00,071,708 | ---- | M] () -- C:\WINDOWS\System32\perfc009.dat
[2009-12-01 03:54:14 | 00,001,646 | ---- | M] () -- C:\Documents and Settings\Lucie\Bureau\DVD Decrypter.lnk
[2009-11-26 01:12:18 | 00,249,856 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\Setup1.exe
[2009-11-26 01:12:15 | 00,073,216 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\ST6UNST.EXE
[2009-11-25 22:56:51 | 00,021,840 | ---- | M] () -- C:\WINDOWS\System32\SIntfNT.dll
[2009-11-25 22:56:51 | 00,017,212 | ---- | M] () -- C:\WINDOWS\System32\SIntf32.dll
[2009-11-25 22:56:51 | 00,012,067 | ---- | M] () -- C:\WINDOWS\System32\SIntf16.dll
[2009-11-25 22:31:07 | 00,001,606 | ---- | M] () -- C:\Documents and Settings\All Users\Bureau\DAEMON Tools Pro.lnk
[2009-11-25 20:39:50 | 00,722,416 | ---- | M] () -- C:\WINDOWS\System32\drivers\sptd.sys
[2009-11-15 17:57:19 | 00,000,806 | ---- | M] () -- C:\Documents and Settings\All Users\Bureau\DivX Player.lnk
[2009-11-15 17:56:48 | 00,000,842 | ---- | M] () -- C:\Documents and Settings\All Users\Bureau\DivX Converter.lnk
[2009-11-15 17:56:08 | 00,001,506 | ---- | M] () -- C:\Documents and Settings\Lucie\Bureau\DivX Movies.lnk
[4 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ]

========== Files Created - No Company Name ==========

[2009-12-15 14:48:53 | 00,000,969 | ---- | C] () -- C:\Documents and Settings\Lucie\Bureau\malware bytes log file 1
[2009-12-15 10:33:46 | 00,002,363 | ---- | C] () -- C:\Documents and Settings\All Users\Bureau\Nero StartSmart.lnk
[2009-12-15 10:33:45 | 00,002,265 | ---- | C] () -- C:\Documents and Settings\All Users\Bureau\Nero Home.lnk
[2009-12-15 07:03:11 | 00,524,288 | ---- | C] () -- C:\Documents and Settings\Lucie\Bureau\dds.scr
[2009-12-14 13:17:07 | 00,000,707 | ---- | C] () -- C:\Documents and Settings\All Users\Bureau\Malwarebytes' Anti-Malware.lnk
[2009-12-12 21:57:31 | 00,000,908 | ---- | C] () -- C:\Documents and Settings\Lucie\Bureau\AVS Video Converter 6.lnk
[2009-12-12 20:41:20 | 00,000,686 | ---- | C] () -- C:\Documents and Settings\All Users\Bureau\FLV Converter.lnk
[2009-12-01 03:54:14 | 00,001,646 | ---- | C] () -- C:\Documents and Settings\Lucie\Bureau\DVD Decrypter.lnk
[2009-11-25 22:31:07 | 00,001,606 | ---- | C] () -- C:\Documents and Settings\All Users\Bureau\DAEMON Tools Pro.lnk
[2009-11-19 22:39:54 | 00,048,270 | ---- | C] () -- C:\Documents and Settings\All Users\Application Data\IFO_MORO_NO_BRAZIL.LOG
[2009-11-15 17:57:19 | 00,000,806 | ---- | C] () -- C:\Documents and Settings\All Users\Bureau\DivX Player.lnk
[2009-11-15 17:56:48 | 00,000,842 | ---- | C] () -- C:\Documents and Settings\All Users\Bureau\DivX Converter.lnk
[2009-11-05 23:40:35 | 00,082,221 | ---- | C] () -- C:\Documents and Settings\All Users\Application Data\IFO_YOGA_FOR_BEGINNERS.LOG
[2009-11-03 20:42:06 | 00,028,644 | ---- | C] () -- C:\Documents and Settings\All Users\Application Data\IFO_AFRICAN_GRACE.LOG
[2009-10-27 22:54:00 | 00,050,636 | ---- | C] () -- C:\Documents and Settings\All Users\Application Data\IFO_BLOOD_DIAMOND.LOG
[2009-10-27 20:17:38 | 00,000,040 | -HS- | C] () -- C:\Documents and Settings\All Users\Application Data\.zreglib
[2009-10-27 18:39:20 | 00,038,618 | ---- | C] () -- C:\Documents and Settings\All Users\Application Data\IFO_1000039821.LOG
[2009-10-27 18:23:34 | 00,073,403 | ---- | C] () -- C:\Documents and Settings\All Users\Application Data\IFO_FLOW.LOG
[2009-10-23 13:55:11 | 00,033,219 | ---- | C] () -- C:\Documents and Settings\All Users\Application Data\wnaspi32.log.log
[2009-10-23 13:55:06 | 00,140,964 | ---- | C] () -- C:\Documents and Settings\All Users\Application Data\DVDBurner.log.log
[2009-10-23 13:53:48 | 00,116,178 | ---- | C] () -- C:\Documents and Settings\All Users\Application Data\DVDConverter.log.log
[2009-10-23 13:53:48 | 00,049,717 | ---- | C] () -- C:\Documents and Settings\All Users\Application Data\MainApp.log.log
[2009-10-23 13:53:48 | 00,017,965 | ---- | C] () -- C:\Documents and Settings\All Users\Application Data\DVDDeviceCtrl.log.log
[2009-10-23 13:53:48 | 00,011,114 | ---- | C] () -- C:\Documents and Settings\All Users\Application Data\MainApp.dll
[2009-10-23 13:53:48 | 00,004,096 | ---- | C] () -- C:\Documents and Settings\All Users\Application Data\Configure.log.log
[2009-10-23 13:53:48 | 00,004,059 | ---- | C] () -- C:\Documents and Settings\All Users\Application Data\isoConverter.log.log
[2009-10-23 13:48:48 | 00,000,014 | ---- | C] () -- C:\WINDOWS\System32\systeminfo3.dll
[2009-10-23 13:48:11 | 00,000,034 | ---- | C] () -- C:\Documents and Settings\Lucie\Application Data\pcouffin.log
[2009-10-23 13:46:43 | 00,087,608 | ---- | C] () -- C:\Documents and Settings\Lucie\Application Data\inst.exe
[2009-10-23 13:46:43 | 00,007,887 | ---- | C] () -- C:\Documents and Settings\Lucie\Application Data\pcouffin.cat
[2009-10-23 13:46:42 | 00,001,144 | ---- | C] () -- C:\Documents and Settings\Lucie\Application Data\pcouffin.inf
[2009-03-30 17:28:41 | 00,097,982 | ---- | C] () -- C:\Documents and Settings\Lucie\Application Data\ReplayMusicLog.log
[2009-01-11 19:21:24 | 00,015,497 | ---- | C] () -- C:\WINDOWS\VX6KStd.ini
[2008-10-26 01:02:28 | 00,000,606 | ---- | C] () -- C:\WINDOWS\Uninstall Manager.INI
[2008-10-23 23:00:26 | 00,000,000 | ---- | C] () -- C:\WINDOWS\TPTray.INI
[2008-10-23 23:00:21 | 00,000,000 | ---- | C] () -- C:\WINDOWS\CeEKey.INI
[2008-09-16 12:36:16 | 00,000,000 | ---- | C] () -- C:\WINDOWS\Irremote.ini
[2008-09-08 01:28:02 | 00,000,127 | ---- | C] () -- C:\Documents and Settings\Lucie\Application Data\default.pls
[2008-09-08 01:27:33 | 00,000,069 | ---- | C] () -- C:\WINDOWS\NeroDigital.ini
[2008-07-30 09:42:58 | 00,000,000 | ---- | C] () -- C:\WINDOWS\ToDisc.INI
[2008-02-27 17:48:52 | 00,000,399 | ---- | C] () -- C:\WINDOWS\brqikmon.ini
[2008-02-13 03:39:48 | 00,722,416 | ---- | C] () -- C:\WINDOWS\System32\drivers\sptd.sys
[2008-01-24 20:03:57 | 00,000,032 | ---- | C] () -- C:\Documents and Settings\All Users\Application Data\ezsid.dat
[2008-01-20 19:17:25 | 00,000,035 | ---- | C] () -- C:\WINDOWS\A5W.INI
[2007-10-21 16:56:25 | 00,021,840 | ---- | C] () -- C:\WINDOWS\System32\SIntfNT.dll
[2007-10-21 16:56:25 | 00,017,212 | ---- | C] () -- C:\WINDOWS\System32\SIntf32.dll
[2007-10-21 16:56:25 | 00,012,067 | ---- | C] () -- C:\WINDOWS\System32\SIntf16.dll
[2007-08-27 15:27:36 | 00,001,755 | ---- | C] () -- C:\Documents and Settings\All Users\Application Data\QTSBandwidthCache
[2007-07-14 13:56:52 | 00,000,462 | ---- | C] () -- C:\WINDOWS\QTW.INI
[2007-05-15 12:57:32 | 00,000,008 | ---- | C] () -- C:\Documents and Settings\Lucie\Application Data\usb.dat.bin
[2007-03-24 02:45:29 | 00,064,512 | ---- | C] () -- C:\Documents and Settings\Lucie\Local Settings\Application Data\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2007-01-29 21:00:36 | 00,000,000 | ---- | C] () -- C:\WINDOWS\iPlayer.INI
[2007-01-13 19:38:00 | 00,077,824 | ---- | C] () -- C:\WINDOWS\System32\BROSNMP.DLL
[2007-01-13 19:38:00 | 00,026,624 | ---- | C] () -- C:\WINDOWS\System32\BRGSRC32.DLL
[2007-01-13 19:38:00 | 00,004,608 | ---- | C] () -- C:\WINDOWS\System32\BRGSRC16.DLL
[2007-01-13 19:38:00 | 00,000,141 | ---- | C] () -- C:\WINDOWS\BRVIDEO.INI
[2007-01-13 19:38:00 | 00,000,113 | ---- | C] () -- C:\WINDOWS\Brownie.ini
[2007-01-13 19:38:00 | 00,000,040 | ---- | C] () -- C:\WINDOWS\opt_1435.ini
[2007-01-13 19:38:00 | 00,000,039 | ---- | C] () -- C:\WINDOWS\BRDIAG.INI
[2007-01-13 19:38:00 | 00,000,000 | ---- | C] () -- C:\WINDOWS\BROH1435.INI
[2007-01-13 19:38:00 | 00,000,000 | ---- | C] () -- C:\WINDOWS\brmx2001.ini
[2007-01-13 19:37:56 | 00,013,109 | ---- | C] () -- C:\WINDOWS\HL-1435.INI
[2007-01-13 19:37:43 | 00,000,462 | ---- | C] () -- C:\WINDOWS\BRWMARK.INI
[2007-01-13 19:37:43 | 00,000,026 | ---- | C] () -- C:\WINDOWS\BRPP2KA.INI
[2007-01-13 19:37:42 | 00,000,030 | ---- | C] () -- C:\WINDOWS\System32\brss01a.ini
[2006-08-06 14:12:30 | 00,520,192 | ---- | C] () -- C:\WINDOWS\System32\CddbPlaylist2Sony.dll
[2006-08-05 13:11:49 | 00,000,137 | ---- | C] () -- C:\Documents and Settings\Lucie\Local Settings\Application Data\fusioncache.dat
[2006-08-05 13:03:27 | 00,128,113 | ---- | C] () -- C:\WINDOWS\System32\csellang.ini
[2006-08-05 13:03:27 | 00,045,056 | ---- | C] () -- C:\WINDOWS\System32\csellang.dll
[2006-08-05 13:03:27 | 00,010,165 | ---- | C] () -- C:\WINDOWS\System32\tosmreg.ini
[2006-08-05 13:03:27 | 00,007,671 | ---- | C] () -- C:\WINDOWS\System32\cseltbl.ini
[2006-06-02 00:34:01 | 00,000,061 | ---- | C] () -- C:\WINDOWS\smscfg.ini
[2006-05-11 18:43:18 | 00,000,385 | ---- | C] () -- C:\WINDOWS\ODBC.INI
[2006-05-11 18:33:03 | 00,006,528 | ---- | C] () -- C:\WINDOWS\System32\drivers\Tbiosdrv.sys
[2006-05-11 18:21:11 | 00,000,000 | ---- | C] () -- C:\WINDOWS\NDSTray.INI
[2006-05-11 18:21:08 | 00,036,736 | ---- | C] () -- C:\WINDOWS\System32\drivers\CSIIDecoder_kern_i386.sys
[2006-05-11 18:21:08 | 00,029,184 | ---- | C] () -- C:\WINDOWS\System32\drivers\TSXT_kern_i386.sys
[2006-05-11 18:17:01 | 00,204,800 | ---- | C] () -- C:\WINDOWS\System32\IVIresizeW7.dll
[2006-05-11 18:17:01 | 00,200,704 | ---- | C] () -- C:\WINDOWS\System32\IVIresizeA6.dll
[2006-05-11 18:17:01 | 00,192,512 | ---- | C] () -- C:\WINDOWS\System32\IVIresizeP6.dll
[2006-05-11 18:17:01 | 00,192,512 | ---- | C] () -- C:\WINDOWS\System32\IVIresizeM6.dll
[2006-05-11 18:17:01 | 00,188,416 | ---- | C] () -- C:\WINDOWS\System32\IVIresizePX.dll
[2006-05-11 18:17:01 | 00,020,480 | ---- | C] () -- C:\WINDOWS\System32\IVIresize.dll
[2006-05-11 18:11:51 | 00,356,352 | ---- | C] () -- C:\WINDOWS\EMCRI.dll
[2006-05-11 18:10:32 | 00,032,768 | ---- | C] () -- C:\WINDOWS\System32\EBLib.DLL
[2006-05-11 17:53:54 | 00,135,168 | ---- | C] () -- C:\WINDOWS\System32\RtlCPAPI.dll
[2006-05-11 17:07:19 | 00,000,821 | ---- | C] () -- C:\WINDOWS\orun32.ini
[2006-05-11 11:45:45 | 00,000,624 | ---- | C] () -- C:\WINDOWS\System32\oeminfo.ini
[2006-05-11 11:45:32 | 00,028,672 | ---- | C] () -- C:\WINDOWS\System32\NSREG.DLL
[2006-05-11 11:45:32 | 00,002,048 | ---- | C] () -- C:\WINDOWS\System32\syscvchk.dll
[2006-01-05 18:49:34 | 00,036,864 | ---- | C] () -- C:\WINDOWS\System32\HWS_Ctrl.dll
[2006-01-05 17:36:22 | 00,024,576 | ---- | C] () -- C:\WINDOWS\System32\EKECioCtl.dll
[2005-12-09 14:36:30 | 00,028,672 | ---- | C] () -- C:\WINDOWS\System32\TPeculiarity.dll
[2005-12-07 12:31:00 | 00,202,752 | R--- | C] () -- C:\WINDOWS\System32\CddbCdda.dll
[2005-11-23 13:55:42 | 00,024,576 | ---- | C] () -- C:\WINDOWS\System32\SPCtl.dll
[2004-08-22 18:04:56 | 00,069,120 | ---- | C] () -- C:\WINDOWS\daemon.dll

========== Alternate Data Streams ==========

@Alternate Data Stream - 638976 bytes -> C:\Program Files\LeechLLC:mstorr.exe
< End of report >

SamandLucie
Novice
Novice

Posts Posts : 21
Joined Joined : 2009-12-14
OS OS : windows xp
Points Points : 25793
# Likes # Likes : 0

View user profile

Back to top Go down

Re: internet connected but after a few minutes browsers wont connect to server

Post by SamandLucie on Tue Dec 15, 2009 8:46 pm

OTL Extras logfile created on: 2009-12-15 15:41:38 - Run 1
OTL by OldTimer - Version 3.1.17.0 Folder = C:\Documents and Settings\Lucie\Bureau
Windows XP Professional Edition Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation
Internet Explorer (Version = 7.0.5730.13)
Locale: 00000C0C | Country: Canada | Language: FRC | Date Format: yyyy-MM-dd

2,00 Gb Total Physical Memory | 1,77 Gb Available Physical Memory | 88,72% Memory free
3,08 Gb Paging File | 2,44 Gb Available in Paging File | 79,15% Paging File free
Paging file location(s): C:\pagefile.sys 756 1512 [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files
Drive C: | 93,16 Gb Total Space | 8,99 Gb Free Space | 9,65% Space Free | Partition Type: NTFS
D: Drive not present or media not loaded
E: Drive not present or media not loaded
F: Drive not present or media not loaded
G: Drive not present or media not loaded
H: Drive not present or media not loaded
I: Drive not present or media not loaded

Computer Name: LUCY
Current User Name: Lucie
Logged in as Administrator.

Current Boot Mode: Normal
Scan Mode: Current user
Company Name Whitelist: Off
Skip Microsoft Files: Off
File Age = 30 Days
Output = Standard

========== Extra Registry (SafeList) ==========


========== File Associations ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\]
.html [@ = FirefoxHTML] -- C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation)

========== Shell Spawning ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
exefile [open] -- "%1" %*
htmlfile [edit] -- "C:\Program Files\Microsoft Office\Office10\msohtmed.exe" %1 (Microsoft Corporation)
htmlfile [open] -- "C:\Program Files\Internet Explorer\IEXPLORE.EXE" -nohome (Microsoft Corporation)
htmlfile [opennew] -- "C:\Program Files\Internet Explorer\IEXPLORE.EXE" %1 (Microsoft Corporation)
http [open] -- "C:\Program Files\Mozilla Firefox\firefox.exe" -requestPending -osint -url "%1" (Mozilla Corporation)
https [open] -- "C:\Program Files\Mozilla Firefox\firefox.exe" -requestPending -osint -url "%1" (Mozilla Corporation)
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l (Microsoft Corporation)
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1
Directory [AddToPlaylistVLC] -- "C:\Program Files\VideoLAN\VLC\vlc.exe" --started-from-file --playlist-enqueue "%1" ()
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Directory [PlayWithVLC] -- "C:\Program Files\VideoLAN\VLC\vlc.exe" --started-from-file --no-playlist-enqueue "%1" ()
Folder [open] -- %SystemRoot%\Explorer.exe /idlist,%I,%L (Microsoft Corporation)
Folder [explore] -- %SystemRoot%\Explorer.exe /e,/idlist,%I,%L (Microsoft Corporation)
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Applications\iexplore.exe [open] -- "C:\Program Files\Internet Explorer\IEXPLORE.EXE" %1 (Microsoft Corporation)
CLSID\{871C5380-42A0-1069-A2EA-08002B30309D} [OpenHomePage] -- "C:\Program Files\Internet Explorer\iexplore.exe" (Microsoft Corporation)

========== Security Center Settings ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
"FirstRunDisabled" = 1
"AntiVirusDisableNotify" = 0
"FirewallDisableNotify" = 0
"UpdatesDisableNotify" = 0
"AntiVirusOverride" = 0
"FirewallOverride" = 0

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\AhnlabAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\ComputerAssociatesAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\KasperskyAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\McAfeeAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\McAfeeFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\PandaAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\PandaFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SophosAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TinyFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TrendAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TrendFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\ZoneLabsFirewall]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\GloballyOpenPorts\List]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
"EnableFirewall" = 1
"DoNotAllowExceptions" = 0

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts\List]
"1900:UDP" = 1900:UDP:LocalSubNet:Disabled:@xpsp2res.dll,-22007
"2869:TCP" = 2869:TCP:LocalSubNet:Disabled:@xpsp2res.dll,-22008

========== Authorized Applications List ==========

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\AuthorizedApplications\List]
"C:\Program Files\Windows Live\Messenger\wlcsdk.exe" = C:\Program Files\Windows Live\Messenger\wlcsdk.exe:*:Enabled:Windows Live Call -- (Microsoft Corporation)
"C:\Program Files\Windows Live\Sync\WindowsLiveSync.exe" = C:\Program Files\Windows Live\Sync\WindowsLiveSync.exe:*:Enabled:Windows Live Sync -- (Microsoft Corporation)

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List]
"C:\Program Files\Grisoft\AVG Free\avginet.exe" = C:\Program Files\Grisoft\AVG Free\avginet.exe:*:Enabled:avginet.exe -- File not found
"C:\Program Files\Grisoft\AVG Free\avgamsvr.exe" = C:\Program Files\Grisoft\AVG Free\avgamsvr.exe:*:Enabled:avgamsvr.exe -- File not found
"C:\Program Files\Grisoft\AVG Free\avgcc.exe" = C:\Program Files\Grisoft\AVG Free\avgcc.exe:*:Enabled:avgcc.exe -- File not found
"C:\Program Files\iTunes\iTunes.exe" = C:\Program Files\iTunes\iTunes.exe:*:Enabled:iTunes -- (Apple Inc.)
"C:\Program Files\TOSHIBA\ConfigFree\CFXFER.exe" = C:\Program Files\TOSHIBA\ConfigFree\CFXFER.exe:*:Enabled:ConfigFree SUMMIT Engine -- (TOSHIBA CORPORATION)
"C:\Program Files\LimeWire\LimeWire.exe" = C:\Program Files\LimeWire\LimeWire.exe:*:Enabled:LimeWire -- (Lime Wire, LLC)
"C:\WINDOWS\system32\dpvsetup.exe" = C:\WINDOWS\system32\dpvsetup.exe:*:Enabled:Microsoft DirectPlay Voice Test -- (Microsoft Corporation)
"C:\Program Files\DNA\btdna.exe" = C:\Program Files\DNA\btdna.exe:*:Enabled:DNA -- File not found
"C:\Program Files\BitTorrent\bittorrent.exe" = C:\Program Files\BitTorrent\bittorrent.exe:*:Enabled:BitTorrent -- (BitTorrent, Inc.)
"C:\Program Files\BitDownload\BitDownload.exe" = C:\Program Files\BitDownload\BitDownload.exe:*:Enabled:Warez3 -- File not found
"C:\Program Files\AVG\AVG8\avgupd.exe" = C:\Program Files\AVG\AVG8\avgupd.exe:*:Enabled:avgupd.exe -- (AVG Technologies CZ, s.r.o.)
"C:\Program Files\AVG\AVG8\avgemc.exe" = C:\Program Files\AVG\AVG8\avgemc.exe:*:Enabled:avgemc.exe -- (AVG Technologies CZ, s.r.o.)
"C:\Documents and Settings\Lucie\Local Settings\Temp\Rar$EX00.297\freezer.exe" = C:\Documents and Settings\Lucie\Local Settings\Temp\Rar$EX00.297\freezer.exe:*:Enabled:freezer -- File not found
"C:\Documents and Settings\Lucie\Bureau\freezer.exe" = C:\Documents and Settings\Lucie\Bureau\freezer.exe:*:Enabled:freezer -- File not found
"C:\Program Files\Windows Media Player\wmplayer.exe" = C:\Program Files\Windows Media Player\wmplayer.exe:*:Enabled:Lecteur Windows Media -- (Microsoft Corporation)
"C:\Documents and Settings\Lucie\Application Data\Macromedia\Flash Player\[You must be registered and logged in to see this link.] = C:\Documents and Settings\Lucie\Application Data\Macromedia\Flash Player\[You must be registered and logged in to see this link.] add-in for Adobe Flash Player -- (Octoshape ApS)
"C:\Program Files\Microsoft LifeCam\LifeCam.exe" = C:\Program Files\Microsoft LifeCam\LifeCam.exe:*:Enabled:LifeCam.exe -- (Microsoft Corporation)
"C:\Program Files\Microsoft LifeCam\LifeExp.exe" = C:\Program Files\Microsoft LifeCam\LifeExp.exe:*:Enabled:LifeExp.exe -- (Microsoft Corporation)
"C:\Program Files\Mozilla Firefox\firefox.exe" = C:\Program Files\Mozilla Firefox\firefox.exe:*:Enabled:Firefox -- (Mozilla Corporation)
"C:\Program Files\Windows Live\Messenger\wlcsdk.exe" = C:\Program Files\Windows Live\Messenger\wlcsdk.exe:*:Enabled:Windows Live Call -- (Microsoft Corporation)
"C:\Program Files\Windows Live\Sync\WindowsLiveSync.exe" = C:\Program Files\Windows Live\Sync\WindowsLiveSync.exe:*:Enabled:Windows Live Sync -- (Microsoft Corporation)
"C:\Program Files\Skype\Phone\Skype.exe" = C:\Program Files\Skype\Phone\Skype.exe:*:Enabled:Skype -- (Skype Technologies S.A.)
"C:\Program Files\Veoh Networks\VeohWebPlayer\veohwebplayer.exe" = C:\Program Files\Veoh Networks\VeohWebPlayer\veohwebplayer.exe:*:Enabled:Veoh Web Player -- (Veoh Networks)
"C:\Program Files\Java\jre6\bin\java.exe" = C:\Program Files\Java\jre6\bin\java.exe:*:Enabled:Java(TM) Platform SE binary -- (Sun Microsystems, Inc.)


========== HKEY_LOCAL_MACHINE Uninstall List ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{059C042E-796A-4ACC-A81A-ECC2010BB78C}" = Windows Live Messenger
"{08094E03-AFE4-4853-9D31-6D0743DF5328}" = QuickTime
"{0E2B0B41-7E08-4F9F-B21F-41C4133F43B7}" = mLogView
"{0FF1922C-B6C4-40BB-AF30-BEF75A482444}" = Nokia Connectivity Cable Driver
"{12688FD7-CB92-4A5B-BEE4-5C8E0574434F}" = Utility Common Driver
"{12B3A009-A080-4619-9A2A-C6DB151D8D67}" = Assist TOSHIBA
"{13F3917B56CD4C25848BDC69916971BB}" = DivX Converter
"{18D10072035C4515918F7E37EAFAACFC}" = AutoUpdate
"{205C6BDD-7B73-42DE-8505-9A093F35A238}" = Outil de téléchargement Windows Live
"{2231CE39-B963-4B9D-823A-F412ECA637B1}" = Windows Live Writer
"{22B775E7-6C42-4FC5-8E10-9A5E3257BD94}" = MSVCRT
"{23BE930B-6AC4-4D0D-B5C3-03062A2BF2A3}" = OpenMG AAC Add-on Module 1.0.00
"{23FB368F-1399-4EAC-817C-4B83ECBE3D83}" = mProSafe
"{26A24AE4-039D-4CA4-87B4-2F83216013FF}" = Java(TM) 6 Update 13
"{2FCE4FC5-6930-40E7-A4F1-F862207424EF}" = InterVideo WinDVD Creator 2
"{3248F0A8-6813-11D6-A77B-00B0D0150060}" = J2SE Runtime Environment 5.0 Update 6
"{3248F0A8-6813-11D6-A77B-00B0D0160030}" = Java(TM) 6 Update 3
"{350C940c-3D7C-4EE8-BAA9-00BCB3D54227}" = WebFldrs XP
"{3633BA28-67CE-4AC8-A677-3406CA84C3D8}" = OpenMG Secure Module 4.5.01
"{3A57482F-BEBC-47E4-ADA1-6302403C7E50}" = TOSHIBA Accessibility
"{3B4E636E-9D65-4D67-BA61-189800823F52}" = Windows Live Communications Platform
"{3DED3A72-61A8-4B87-98A5-EF0BC8038AA0}" = DAEMON Tools
"{3E9D596A-61D4-4239-BD19-2DB984D2A16F}" = mIWA
"{3FC7CBBC4C1E11DCA1A752EA55D89593}" = DivX Version Checker
"{400830CA-F056-4BBE-80A3-9DF9CA4FB889}" = TOSHIBA Direct Disc Writer
"{44E54A81-9D91-4AA1-9417-80AFF134F5FF}" = Galerie de photos Windows Live
"{48CF9A66-5F03-4025-ABD0-B3A3FA095A59}" = Formatage de carte mémoire SD TOSHIBA
"{4CBA3D4C-8F51-4D60-B27E-F6B641C571E7}" = Microsoft Search Enhancement Pack
"{4DE3E3D9-AE81-45DE-9195-3015F7B1DBF3}" = Junk Mail filter update
"{51B4E156-14A5-4904-9AE4-B1AA2A0E46BE}" = TOSHIBA Supervisor Password
"{5279374D-87FE-4879-9385-F17278EBB9D3}" = TOSHIBA Hardware Setup
"{529DDE6B-4F31-438B-B218-F36266ABD8C0}" = TOSHIBA Disc Creator
"{553E56C3-7AA1-45FE-A2FC-2C43DC27F765}" = iTunes
"{56C049BE-79E9-4502-BEA7-9754A3E60F9B}" = neroxml
"{57F0ED40-8F11-41AA-B926-4A66D0D1A9CC}" = Microsoft Office Live Add-in 1.3
"{59FDFDFB-52FE-45B1-8A2A-A00079B07FF0}" = TOSHIBA Power Saver Driver
"{5C82DAE5-6EB0-4374-9254-BE3319BA4E82}" = Skype™ 3.8
"{5D96E2B1-D9AC-46E0-9073-425C5F63E338}" = Touch and Launch
"{5EE7D259-D137-4438-9A5F-42F432EC0421}" = VC80CRTRedist - 8.0.50727.4053
"{634F6989-4BB5-4EF2-AF6F-C15700F81494}}_is1" = Advanced System Optimizer
"{63DC2DA0-2A6C-4C38-9249-B75395458657}" = Windows Live Mail
"{64212898-097F-4F3F-AECA-6D34A7EF82DF}" = Utilitaire de zoom TOSHIBA
"{6DC5DC36-5E0D-463F-84A9-9CAC82DE5D8F}" = Microsoft LifeCam
"{6EFA70F2-D6C3-4ECA-BEA9-C1A31277C63A}_is1" = FLV Converter 2.5
"{7299052b-02a4-4627-81f2-1818da5d550d}" = Microsoft Visual C++ 2005 Redistributable
"{7370DF47-B4F9-4279-BFC3-3F09919F720D}" = Installation Windows Live
"{770657D0-A123-3C07-8E44-1C83EC895118}" = Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053
"{7900D3A6-A9E8-4954-ACCB-AB15867978BF}" = TOSHIBA Hotkey Utility
"{7B63B2922B174135AFC0E1377DD81EC2}" = DivX Codec
"{80977342-27E8-4FF7-8B6A-D8D89461DA7F}" = TouchPad On/Off Utility
"{82C7B308-0BDD-49D8-8EA5-9CD3A3F9DF41}" = Windows Live Call
"{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}" = Microsoft Silverlight
"{8A708DD8-A5E6-11D4-A706-000629E95E20}" = Intel(R) Graphics Media Accelerator Driver
"{8A74E887-8F0F-4017-AF53-CBA42211AAA5}" = Microsoft Sync Framework Runtime Native v1.0 (x86)
"{8ADFC4160D694100B5B8A22DE9DCABD9}" = DivX Player
"{8B12BA86-ADAC-4BA6-B441-FFC591087252}" = Son virtuel TOSHIBA
"{8B928BA1-EDEC-4227-A2DA-DD83026C36F5}" = mPfMgr
"{8C6BB412-D3A8-4AAE-A01B-35B681789D68}" = mHelp
"{8FFC5648-FAF8-43A3-BC8F-42BA1E275C4E}" = Choice Guard
"{9011040C-6000-11D3-8CFE-0050048383C9}" = Microsoft Office XP Professional
"{90B0D222-8C21-4B35-9262-53B042F18AF9}" = mPfWiz
"{91810AFC-A4F8-4EBA-A5AA-B198BBC81144}" = InterVideo WinDVD for TOSHIBA
"{91A1040C-6000-11D3-8CFE-0150048383C9}" = Microsoft Office OneNote 2003
"{94658027-9F16-4509-BBD7-A59FE57C3023}" = mZConfig
"{95120000-00B9-0409-0000-0000000FF1CE}" = Microsoft Application Error Reporting
"{97C0EA4A-1A0B-4C53-ACEB-49984DA79C90}" = Google Earth
"{9A394342-4A68-4EBA-85A6-55B559F4E700}" = Microsoft .NET Framework 1.1 French Language Pack
"{9C5EB781-0D37-44B8-9A58-77B3E4BF5F5E}" = Windows Live Sync
"{9CC89556-3578-48DD-8408-04E66EBEF401}" = mXML
"{9D765FA6-F2BC-40AF-8145-50808F9BDF4E}" = Pilote du DVD-RAM
"{9F72EF8B-AEC9-4CA5-B483-143980AFD6FD}" = ALPS Touch Pad Driver
"{9FE35071-CAB2-4E79-93E7-BFC6A2DC5C5D}" = Réducteur de bruit lect. CD/DVD
"{A0EB195B-5876-48E6-879D-33D4B2102610}" = SonicStage 4.0
"{A1F66FC9-11EE-4F2F-98C9-16F8D1E69FB7}" = Segoe UI
"{A260B422-70E1-41E2-957D-F76FA21266D5}" = Apple Software Update
"{A3051CD0-2F64-3813-A88D-B8DCCDE8F8C7}" = Microsoft .NET Framework 3.0 Service Pack 2
"{A96E97134CA649888820BCDE5E300BBD}" = H.264 Decoder
"{AAC389499AEF40428987B3D30CFC76C9}" = MKV Splitter
"{AB2347E4-153B-4194-AA3B-97C0A662B369}" = PC Connectivity Solution
"{AC76BA86-7AD7-1036-7B44-A70500000002}" = Adobe Reader 7.0.5 - Français
"{AEF9DC35ADDF4825B049ACBFD1C6EB37}" = AAC Decoder
"{B13A7C41581B411290FBC0395694E2A9}" = DivX Converter
"{B7050CBDB2504B34BC2A9CA0A692CC29}" = DivX Web Player
"{B7DE81A4-71D5-4F22-9D72-84AC8A266F43}" = Sony Vegas Movie Studio 6.0b
"{BD64AF4A-8C80-4152-AD77-FCDDF05208AB}" = Microsoft Sync Framework Services Native v1.0 (x86)
"{BDD83DC9-BEE9-4654-A5DA-CC46C250088D}" = TOSHIBA ConfigFree
"{C09FB3CD-3D0C-3F2D-899A-6A1D67F2073F}" = Microsoft .NET Framework 2.0 Service Pack 2
"{C45F4811-31D5-4786-801D-F79CD06EDD85}" = SD Secure Module
"{C9BED750-1211-4480-B1A5-718A3BE15525}" = REALTEK GbE & FE Ethernet PCI-E NIC Driver
"{CB2F7EDD-9D1F-43C1-90FC-4F52EAE172A1}" = Microsoft .NET Framework 1.1
"{CDDCBBF1-2703-46BC-938B-BCC81A1EEAAA}" = SUPERAntiSpyware Free Edition
"{CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9}" = Microsoft .NET Framework 3.5 SP1
"{D3116CC7-24DC-4CA3-9CE1-23FED836E9F2}" = Assistant de connexion Windows Live
"{D6A2DDE3-9D7C-412C-932A-756580D29919}" = Windows Live Contrôle parental
"{D6C9AF27-9414-46C8-B9D8-D878BA041033}" = Nero 8
"{D89AC4DF-7A00-4D0B-BA99-D582C7974A09}" = Nokia PC Suite
"{DF6A13C0-77DF-41FE-BD05-6D5201EB0CE7}_is1" = AusLogics Disk Defrag
"{E63E34A7-E552-412B-9E40-FD6FC5227ABA}" = Uniblue RegistryBooster 2009
"{E81667C6-2856-46D6-ABEA-6A2F42166779}" = mCore
"{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}" = Microsoft SQL Server 2005 Compact Edition [ENU]
"{F0B8271B-1FC0-48AA-A4E7-8991AEDAEC1A}" = Sony DVD Architect Studio 3.0b
"{F0BFC7EF-9CF8-44EE-91B0-158884CD87C5}" = mMHouse
"{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}" = Realtek High Definition Audio Driver
"{F6090A17-0967-4A8A-B3C3-422A1B514D49}" = mDrWiFi
"{F7D27C70-90F5-49B9-B188-0A133C0CE353}" = Windows Live Toolbar
"{FCA651F3-5BDA-4DDA-9E4A-5D87D6914CC4}" = mWlsSafe
"{FCE19796-1ADF-42DF-81D8-3563867FC2C2}" = TOSHIBA Zooming Hook
"0852D05415AB9A4F1EF451E342267F76C776ED2F" = Windows Driver Package - Nokia Modem (11/03/2006 6.82.0.1)
"4CFD94C379217A02D5EA067615FF789CD731BCDB" = Windows Driver Package - Nokia (WUDFRd) WPD (11/03/2006 6.82.26.2)
"Adobe Flash Player ActiveX" = Adobe Flash Player ActiveX
"Adobe Flash Player Plugin" = Adobe Flash Player 10 Plugin
"Adobe Photoshop_is1" = Adobe Photoshop
"Advanced WindowsCare V2 Personal_is1" = Advanced WindowsCare 2.51 Personal
"AnyDVD" = AnyDVD
"AVG8Uninstall" = AVG Free 8.5
"AVS4YOU Video Converter 6_is1" = AVS Video Converter 6
"BrainWave Generator" = BrainWave Generator
"Brother HL-1435" = Brother HL-1435
"Debut" = Debut
"DFX for Windows Media Player" = DFX for Windows Media Player
"DivX Plus DirectShow Filters" = DivX Plus DirectShow Filters
"DVD Decrypter" = DVD Decrypter (Remove Only)
"DVD Shrink_is1" = DVD Shrink 3.2
"DVD-CLONER V_is1" = DVD-CLONER V5.10 Build 967
"DVD-CLONER V1.98_is1" = DVD-CLONER V1.98
"East Cree Syllabics Lessons_is1" = East Cree Syllabics Lessons version 1.0
"Encyclopédie de la cuisine" = Encyclopédie de la cuisine
"Fallout" = Fallout
"FLVplayer" = FLV Player
"Fn-esse" = TOSHIBA Fn-esse
"G-Force" = G-Force
"HijackThis" = HijackThis 2.0.2
"IDNMitigationAPIs" = Microsoft Internationalized Domain Names Mitigation APIs
"ie7" = Windows Internet Explorer 7
"InstallShield_{23BE930B-6AC4-4D0D-B5C3-03062A2BF2A3}" = OpenMG AAC Add-on Module 1.0.00
"InstallShield_{3633BA28-67CE-4AC8-A677-3406CA84C3D8}" = OpenMG Secure Module 4.5.01
"InstallShield_{3A57482F-BEBC-47E4-ADA1-6302403C7E50}" = TOSHIBA Accessibility
"InstallShield_{51B4E156-14A5-4904-9AE4-B1AA2A0E46BE}" = TOSHIBA Mot de passe responsable
"InstallShield_{5279374D-87FE-4879-9385-F17278EBB9D3}" = TOSHIBA Hardware Setup
"InstallShield_{7900D3A6-A9E8-4954-ACCB-AB15867978BF}" = Utilitaire Hotkey TOSHIBA
"InstallShield_{80977342-27E8-4FF7-8B6A-D8D89461DA7F}" = Utilitaire TouchPad ON/OFF
"InterActual Player" = InterActual Player
"iPod To Computer Transfer_is1" = iPod To Computer Transfer 2.5
"JpegSizer_is1" = JpegSizer 6.4.1
"Keyman Keyboard bjcree3" = Keyman Keyboard - BJCree (east)
"Keyman Keyboard bjcrUni" = Keyman Keyboard - BJCreeUni (east)
"Keyman Keyboard CrbrdUni" = Keyman Keyboard - CreebrdUni
"Keyman Keyboard creebrd3" = Keyman Keyboard - Creeboard
"Keyman Keyboard ecree3" = Keyman Keyboard - Hâts (east)
"LimeWire" = LimeWire 4.14.8
"MainApp.exe_is1" = CloneDVD 4.3.0.3
"Malwarebytes' Anti-Malware_is1" = Malwarebytes' Anti-Malware
"Microsoft .NET Framework 1.1 (1033)" = Microsoft .NET Framework 1.1
"Microsoft .NET Framework 3.5 SP1" = Microsoft .NET Framework 3.5 SP1
"Mozilla Firefox (3.0.15)" = Mozilla Firefox (3.0.15)
"MSNINST" = MSN
"mtt12" = Mp3 Tag Tools v1.2
"myTunes Redux_is1" = myTunes Redux 1.0
"NLSDownlevelMapping" = Microsoft National Language Support Downlevel APIs
"OpenMG HotFix4.5-06-05-10-01" = OpenMG Limited Patch 4.5-06-05-12-01
"Outil de diagnostic PC" = Outil de diagnostic PC TOSHIBA
"Picasa2" = Picasa 2
"Picture Resize_is1" = Free Picture Resize Starter 4.5
"Power Saver" = Gestion d'énergie TOSHIBA
"Prism" = Prism Video Converter
"ProInst" = Logiciel Intel(R) PROSet/Wireless
"QuickTime32" = QuickTime for Windows (32-bit)
"Replay Music3.45" = Replay Music
"ST6UNST #1" = Hero Editor V0.96
"Tavultesoft Keyman" = Tavultesoft Keyman
"The Rosetta Stone" = The Rosetta Stone
"TOSHIBA Software Modem" = TOSHIBA Software Modem
"Toshiba Tbiosdrv Driver" = Toshiba Tbiosdrv Driver
"Uniblue RegistryBooster 2009" = Uniblue RegistryBooster 2009
"Veoh Web Player Beta" = Veoh Web Player
"VLC media player" = VLC media player 1.0.3
"Windows Media Format Runtime" = Windows Media Format 11 runtime
"Windows Media Player" = Lecteur Windows Media 10
"Windows XP Service" = Windows XP Service Pack 3
"WinLiveSuite_Wave3" = Installation Windows Live
"WinRAR archiver" = WinRAR archiver
"WMFDist11" = Windows Media Format 11 runtime

========== HKEY_CURRENT_USER Uninstall List ==========

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"BitTorrent" = BitTorrent
"BitTorrent DNA" = DNA
"Octoshape add-in for Adobe Flash Player" = Octoshape add-in for Adobe Flash Player

========== Last 10 Event Log Errors ==========

[ Application Events ]
Error - 2009-11-16 10:39:49 | Computer Name = LUCY | Source = ESENT | ID = 482
Description = wuauclt (1120) Une tentative d'écriture dans le fichier "C:\WINDOWS\SoftwareDistribution\DataStore\Logs\edb.chk"
à l'adresse reƖative 0 (0x0000000000000000) de 4096 (0x00001000) octets a échoué
en indiquant l'erreur système 112 (0x00000070) : "Espace insuffisant sur le disque.
". L'opération d'écriture échouera en indiquant l'erreur -1808 (0xfffff8f0). Si
le problème persiste, ceci signifie que le fichier est sans doute endommagé et
qu'il faut le restaurer à partir d'une version de sauvegarde antérieure.

Error - 2009-11-16 10:39:49 | Computer Name = LUCY | Source = ESENT | ID = 439
Description = wuauclt (1120) Impossible d'écrire un en-tête de sauvegarde pour le
fichier C:\WINDOWS\SoftwareDistribution\DataStore\Logs\edb.chk. Erreur -1808.

Error - 2009-11-16 10:39:49 | Computer Name = LUCY | Source = ESENT | ID = 454
Description = wuauclt (1120) La récupération/restauration de la base de données
a échoué en raison d'une erreur inattendue -510.

Error - 2009-12-01 02:06:43 | Computer Name = LUCY | Source = Application Error | ID = 1000
Description = Application défaillante dvd-cloner.exe, version 1.0.0.1, module défaillant
dspenty.dll, version 8.0.0.0, adresse de défaillance 0x00062b5e.

Error - 2009-12-06 23:57:14 | Computer Name = LUCY | Source = Application Error | ID = 1000
Description = Application défaillante psxfin.exe, version 0.0.0.0, module défaillant
psxfin.exe, version 0.0.0.0, adresse de défaillance 0x00116860.

Error - 2009-12-07 00:01:32 | Computer Name = LUCY | Source = Application Error | ID = 1000
Description = Application défaillante psxfin.exe, version 0.0.0.0, module défaillant
psxfin.exe, version 0.0.0.0, adresse de défaillance 0x00116860.

Error - 2009-12-09 05:31:02 | Computer Name = LUCY | Source = Application Error | ID = 1000
Description = Application défaillante omgjbox.exe, version 4.0.0.5080, module défaillant
dmpinternet.dll, version 3.16.0.5080, adresse de défaillance 0x0000a035.

Error - 2009-12-14 14:21:08 | Computer Name = LUCY | Source = Application Error | ID = 1000
Description = Application défaillante firefox.exe, version 1.9.0.3576, module défaillant
xul.dll, version 1.9.0.3576, adresse de défaillance 0x0008e257.

Error - 2009-12-14 17:38:32 | Computer Name = LUCY | Source = Application Error | ID = 1000
Description = Application défaillante firefox.exe, version 1.9.0.3576, module défaillant
xul.dll, version 1.9.0.3576, adresse de défaillance 0x0008e56b.

Error - 2009-12-14 17:54:06 | Computer Name = LUCY | Source = Application Error | ID = 1000
Description = Application défaillante firefox.exe, version 1.9.0.3576, module défaillant
xul.dll, version 1.9.0.3576, adresse de défaillance 0x0008e257.

[ System Events ]
Error - 2009-12-09 15:44:01 | Computer Name = LUCY | Source = SideBySide | ID = 16842810
Description = Erreur de syntaxe dans le fichier manifeste ou le fichier de stratégie
"C:\Program Files\Apple Software Update\Plugins\EXEInstallPlugin.dll.Manifest"
à la ligne 2.

Error - 2009-12-09 15:44:01 | Computer Name = LUCY | Source = SideBySide | ID = 16842811
Description = Generate Activation Context a échoué pour C:\Program Files\Apple Software
Update\Plugins\EXEInstallPlugin.dll.Manifest. Message d'erreur de référence : Opération
réussie. .

Error - 2009-12-09 15:44:02 | Computer Name = LUCY | Source = SideBySide | ID = 16842813
Description = Erreur de syntaxe dans le fichier manifeste ou de stratégies "C:\Program
Files\Apple Software Update\Plugins\MSIInstallPlugin.dll.Manifest" à la ligne 2.
L'attribut
requis version est absent de l'élément assemblyIdentity.

Error - 2009-12-09 15:44:02 | Computer Name = LUCY | Source = SideBySide | ID = 16842810
Description = Erreur de syntaxe dans le fichier manifeste ou le fichier de stratégie
"C:\Program Files\Apple Software Update\Plugins\MSIInstallPlugin.dll.Manifest"
à la ligne 2.

Error - 2009-12-09 15:44:02 | Computer Name = LUCY | Source = SideBySide | ID = 16842811
Description = Generate Activation Context a échoué pour C:\Program Files\Apple Software
Update\Plugins\MSIInstallPlugin.dll.Manifest. Message d'erreur de référence : Opération
réussie. .

Error - 2009-12-09 23:25:21 | Computer Name = LUCY | Source = RemoteAccess | ID = 20106
Description = Impossible d'ajouter l'interface {53612DE9-053D-48BD-9E4E-9280780AB42D}
avec le Gestionnaire de routage pour le protocole IP. L'erreur suivante s'est produite
: Impossible d'accomplir cette fonction.

Error - 2009-12-10 02:25:53 | Computer Name = LUCY | Source = RemoteAccess | ID = 20106
Description = Impossible d'ajouter l'interface {53612DE9-053D-48BD-9E4E-9280780AB42D}
avec le Gestionnaire de routage pour le protocole IP. L'erreur suivante s'est produite
: Impossible d'accomplir cette fonction.

Error - 2009-12-10 02:25:53 | Computer Name = LUCY | Source = RemoteAccess | ID = 20106
Description = Impossible d'ajouter l'interface {53612DE9-053D-48BD-9E4E-9280780AB42D}
avec le Gestionnaire de routage pour le protocole IP. L'erreur suivante s'est produite
: Impossible d'accomplir cette fonction.

Error - 2009-12-10 09:42:19 | Computer Name = LUCY | Source = Service Control Manager | ID = 7002
Description = Le service BrPar dépend du groupe Parallel arbitrator et aucun membre
de ce groupe n'a démarré.

Error - 2009-12-10 09:42:34 | Computer Name = LUCY | Source = RemoteAccess | ID = 20106
Description = Impossible d'ajouter l'interface {53612DE9-053D-48BD-9E4E-9280780AB42D}
avec le Gestionnaire de routage pour le protocole IP. L'erreur suivante s'est produite
: Impossible d'accomplir cette fonction.


< End of report >

SamandLucie
Novice
Novice

Posts Posts : 21
Joined Joined : 2009-12-14
OS OS : windows xp
Points Points : 25793
# Likes # Likes : 0

View user profile

Back to top Go down

Re: internet connected but after a few minutes browsers wont connect to server

Post by SamandLucie on Tue Dec 15, 2009 8:49 pm

but since the browser is working again maybe the malware is still deleted before is reinstalls itself.... idk what im talking about really. haha any way the malware that keeps reinstalling itself is this

Registry Keys Infected:
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{p7y0u4w6-281q-ni2i-ux0d-15qq6lm01ow3} (Generic.Bot.H) -> Quarantined and deleted successfully.

SamandLucie
Novice
Novice

Posts Posts : 21
Joined Joined : 2009-12-14
OS OS : windows xp
Points Points : 25793
# Likes # Likes : 0

View user profile

Back to top Go down

Re: internet connected but after a few minutes browsers wont connect to server

Post by Belahzur on Tue Dec 15, 2009 11:44 pm

Hello.

Well, there's that ADS I was looking for.

I see that you are running Limewire.
P2P(Peer to peer) applications are designed to help you easily share and distribute files between you and a group of people. But they can also be used to distribute malware, and thus are not considered safe.
The removal of these programs is optional, but highly recommended.

Go to Start > Control Panel > Add/Remove Programs and remove the following programs.

    Java(TM) 6 Update 13
    J2SE Runtime Environment 5.0 Update 6
    Java(TM) 6 Update 3
    LimeWire 4.14.8

Please run OTL.exe.

  • Copy the commands with file paths below to the clipboard by highlighting ALL of them and pressing CTRL + C (or, after highlighting, right-click and choose CopyCrying

    :OTL
    O3 - HKLM\..\Toolbar: (no name) - {4B3803EA-5230-4DC3-A7FC-33638F3D3542} - No CLSID value found.
    O4 - HKLM..\Run: [nvcpl] C:\Program Files\LeechLLC:mstorr.exe File not found
    @Alternate Data Stream - 638976 bytes -> C:\Program Files\LeechLLC:mstorr.exe

    :files
    C:\Program Files\LeechLLC
    C:\Program Files\Limewire


  • Return to OTL, right click in the "Custom Scans/Fixes" window (under the light green bar) and choose Paste.

  • Click the red Run Fix button.
  • A fix log in Notepad will appear. Copy the contents of the fix log to the clipboard by highlighting ALL of them and pressing CTRL + C (or, after highlighting, right-click and choose copy), and paste it in your next reply.
  • Close OTL.exe
If a file or folder cannot be moved immediately you may be asked to reboot the machine to finish the move process. If you are asked to reboot the machine choose Yes.


[You must be registered and logged in to see this link.] - [You must be registered and logged in to see this link.] - Please PM me if I fail to respond within 24hrs.


Belahzur
Administrator
Administrator

Posts Posts : 34916
Joined Joined : 2008-08-03
Gender Gender : Male
OS OS : XP SP3 Media Centre
Points Points : 245069
# Likes # Likes : 1

View user profile

Back to top Go down

Re: internet connected but after a few minutes browsers wont connect to server

Post by SamandLucie on Wed Dec 16, 2009 2:36 am

========== OTL ==========
Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Toolbar\\{4B3803EA-5230-4DC3-A7FC-33638F3D3542} deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{4B3803EA-5230-4DC3-A7FC-33638F3D3542}\ deleted successfully.
Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run\\nvcpl deleted successfully.
Unable to delete ADS C:\Program Files\LeechLLC:mstorr.exe .
========== FILES ==========
Folder move failed. C:\Program Files\LeechLLC scheduled to be moved on reboot.
File\Folder C:\Program Files\Limewire not found.

OTL by OldTimer - Version 3.1.17.0 log created on 12152009_213604

SamandLucie
Novice
Novice

Posts Posts : 21
Joined Joined : 2009-12-14
OS OS : windows xp
Points Points : 25793
# Likes # Likes : 0

View user profile

Back to top Go down

Re: internet connected but after a few minutes browsers wont connect to server

Post by SamandLucie on Wed Dec 16, 2009 3:46 am

so its not working I seem to be able to access the net when I mess with the file itself using regedit but it always corrects itself its named stubpath. and it has an -ac at the end like this

C:\Program Files\LeechLLC:mstorr.exe-ac

it just keeps reloading itself.

SamandLucie
Novice
Novice

Posts Posts : 21
Joined Joined : 2009-12-14
OS OS : windows xp
Points Points : 25793
# Likes # Likes : 0

View user profile

Back to top Go down

Re: internet connected but after a few minutes browsers wont connect to server

Post by rintintin on Wed Dec 16, 2009 3:49 am

FYI, I am following this discussion with keen interest as I have just been plagued with the same ADS issue: c:program files/leechLLC. I've managed to run OTL.exe with the same commands and appear to have deleted mstorr.exe. Prior to this I ran Malwarebites. I'm Keeping my fingers crossed that I've tamed the beast for now...

rintintin
Beginner
Beginner

Posts Posts : 1
Joined Joined : 2009-12-16
OS OS : Windows 7
Points Points : 25485
# Likes # Likes : 0

View user profile

Back to top Go down

Re: internet connected but after a few minutes browsers wont connect to server

Post by SamandLucie on Wed Dec 16, 2009 4:49 am

it seems to get harder and harder to connect to the net. what ever I try only seems to work a few times then the damn thing gets smart or something

SamandLucie
Novice
Novice

Posts Posts : 21
Joined Joined : 2009-12-14
OS OS : windows xp
Points Points : 25793
# Likes # Likes : 0

View user profile

Back to top Go down

Re: internet connected but after a few minutes browsers wont connect to server

Post by Belahzur on Wed Dec 16, 2009 1:55 pm

Okay then, guess we have to get the bigger guns out.

1. Please download The Avenger by Swandog46 to your Desktop
Link: [You must be registered and logged in to see this link.]

  • Click on Avenger.zip to open the file
  • Extract avenger.exe to your desktop
2. Copy all the text contained in the code box below to your Clipboard by highlighting it and pressing (Ctrl+CCrying


Folders to delete:
C:\Program Files\LeechLLC

Note: the above code was created specifically for this user. If you are not this user, do NOT follow these directions as they could damage the workings of your system.


3. Now, start The Avenger program by clicking on its icon on your desktop.

  • Under "Input script here:", paste in the script from the quote box above.
  • Leave the ticked box "Scan for rootkit" ticked.
  • Then tick "Disable any rootkits found"
  • Now click on the Execute to begin execution of the script.
  • Answer "Yes" twice when prompted.

    The Avenger will automatically do the following:

  • It will Restart your computer.
  • On reboot, it will briefly open a black command window on your desktop, this is normal.
  • After the restart, it creates a log file that should open with the results of Avenger’s actions. This log file will be located at C:\avenger.txt
  • The Avenger will also have backed up all the files, etc., that you asked it to delete, and will have zipped them and moved the zip archives to C:\avenger\backup.zip.
4. Please copy/paste the content of c:\avenger.txt into your reply.


[You must be registered and logged in to see this link.] - [You must be registered and logged in to see this link.] - Please PM me if I fail to respond within 24hrs.


Belahzur
Administrator
Administrator

Posts Posts : 34916
Joined Joined : 2008-08-03
Gender Gender : Male
OS OS : XP SP3 Media Centre
Points Points : 245069
# Likes # Likes : 1

View user profile

Back to top Go down

Re: internet connected but after a few minutes browsers wont connect to server

Post by SamandLucie on Wed Dec 16, 2009 2:23 pm

Logfile of The Avenger Version 2.0, (c) by Swandog46
[You must be registered and logged in to see this link.]

Platform: Windows XP

*******************

Script file opened successfully.
Script file read successfully.

Backups directory opened successfully at C:\Avenger

*******************

Beginning to process script file:

Rootkit scan active.
No rootkits found!

Folder "C:\Program Files\LeechLLC" deleted successfully.

Completed script processing.

*******************

Finished! Terminate.

SamandLucie
Novice
Novice

Posts Posts : 21
Joined Joined : 2009-12-14
OS OS : windows xp
Points Points : 25793
# Likes # Likes : 0

View user profile

Back to top Go down

Re: internet connected but after a few minutes browsers wont connect to server

Post by Belahzur on Wed Dec 16, 2009 2:26 pm

Haha, didn't survive that! (Gunsmoke)

Post a new Hijack This log now.


[You must be registered and logged in to see this link.] - [You must be registered and logged in to see this link.] - Please PM me if I fail to respond within 24hrs.


Belahzur
Administrator
Administrator

Posts Posts : 34916
Joined Joined : 2008-08-03
Gender Gender : Male
OS OS : XP SP3 Media Centre
Points Points : 245069
# Likes # Likes : 1

View user profile

Back to top Go down

Re: internet connected but after a few minutes browsers wont connect to server

Post by SamandLucie on Wed Dec 16, 2009 2:29 pm

Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 09:29:26, on 2009-12-16
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.6000.16945)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Intel\Wireless\Bin\EvtEng.exe
C:\Program Files\Intel\Wireless\Bin\S24EvMon.exe
C:\WINDOWS\system32\brsvc01a.exe
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\system32\brss01a.exe
C:\PROGRA~1\AVG\AVG8\avgwdsvc.exe
C:\Program Files\TOSHIBA\ConfigFree\CFSvcs.exe
C:\WINDOWS\system32\DVDRAMSV.exe
C:\Program Files\Microsoft LifeCam\MSCamSvc.exe
C:\Program Files\Nero\Nero8\Nero BackItUp\NBService.exe
C:\WINDOWS\system32\IoctlSvc.exe
C:\Program Files\Intel\Wireless\Bin\RegSrvc.exe
C:\Program Files\Microsoft\Search Enhancement Pack\SeaPort\SeaPort.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\TODDSrv.exe
C:\WINDOWS\Explorer.EXE
C:\PROGRA~1\AVG\AVG8\avgemc.exe
C:\PROGRA~1\AVG\AVG8\avgrsx.exe
C:\Program Files\AVG\AVG8\avgcsrvx.exe
C:\WINDOWS\system32\hkcmd.exe
C:\WINDOWS\system32\igfxpers.exe
C:\WINDOWS\RTHDCPL.EXE
C:\Program Files\Apoint2K\Apoint.exe
C:\Program Files\TOSHIBA\TouchPad\TPTray.exe
C:\Program Files\TOSHIBA\E-KEY\CeEKey.exe
C:\Program Files\TOSHIBA\ConfigFree\NDSTray.exe
C:\Program Files\Apoint2K\Apntex.exe
C:\Program Files\TOSHIBA\Touch and Launch\PadExe.exe
C:\WINDOWS\system32\ZoomingHook.exe
C:\Program Files\TOSHIBA\Tvs\TvsTray.exe
C:\Program Files\TOSHIBA\Utilitaire de zoom TOSHIBA\SmoothView.exe
C:\Program Files\TOSHIBA\TOSHIBA Direct Disc Writer\ddwmon.exe
C:\Program Files\ltmoh\Ltmoh.exe
C:\WINDOWS\AGRSMMSG.exe
C:\Program Files\Intel\Wireless\bin\ZCfgSvc.exe
C:\Program Files\Intel\Wireless\Bin\ifrmewrk.exe
C:\WINDOWS\system32\TPSBattM.exe
C:\Program Files\TOSHIBA\ConfigFree\CFSServ.exe
C:\Program Files\Nokia\Nokia PC Suite 6\LaunchApplication.exe
C:\Program Files\QuickTime\qttask.exe
C:\Program Files\iTunes\iTunesHelper.exe
C:\PROGRA~1\AVG\AVG8\avgtray.exe
C:\WINDOWS\vVX6000.exe
C:\PROGRA~1\Intel\Wireless\Bin\Dot1XCfg.exe
C:\Program Files\iPod\bin\iPodService.exe
C:\Program Files\TOSHIBA\ConfigFree\CFXFER.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\TOSHIBA\TOSCDSPD\toscdspd.exe
C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe
C:\Program Files\PC Connectivity Solution\ServiceLayer.exe
C:\Program Files\Uniblue\RegistryBooster\RegistryBooster.exe
C:\Program Files\Windows Live\Messenger\MsnMsgr.Exe
C:\Program Files\Veoh Networks\VeohWebPlayer\veohwebplayer.exe
C:\Program Files\DAEMON Tools Pro\DTProAgent.exe
C:\WINDOWS\system32\RAMASST.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\PROGRA~1\AVG\AVG8\avgnsx.exe
C:\Documents and Settings\Lucie\Bureau\winlogon.scr

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = [You must be registered and logged in to see this link.]
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = [You must be registered and logged in to see this link.]
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = [You must be registered and logged in to see this link.]
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = [You must be registered and logged in to see this link.]
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = [You must be registered and logged in to see this link.]
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyServer = :
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
F2 - REG:system.ini: UserInit=C:\WINDOWS\system32\userinit.exe,C:\Program Files\LeechLLC:mstorr.exe,
O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll
O2 - BHO: WormRadar.com IESiteBlocker.NavFilter - {3CA2F312-6F6E-4B53-A66E-4E65E497C8C0} - C:\Program Files\AVG\AVG8\avgssie.dll
O2 - BHO: Search Helper - {6EBF7485-159F-4bff-A14F-B9E3AAC4465B} - C:\Program Files\Microsoft\Search Enhancement Pack\Search Helper\SEPsearchhelperie.dll
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_03\bin\ssv.dll
O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Windows Live Toolbar Helper - {E15A8DC0-8516-42A1-81EA-DC94EC1ACF10} - C:\Program Files\Windows Live\Toolbar\wltcore.dll
O3 - Toolbar: &Windows Live Toolbar - {21FA44EF-376D-4D53-9B0F-8A89D3229068} - C:\Program Files\Windows Live\Toolbar\wltcore.dll
O4 - HKLM\..\Run: [igfxtray] C:\WINDOWS\system32\igfxtray.exe
O4 - HKLM\..\Run: [igfxhkcmd] C:\WINDOWS\system32\hkcmd.exe
O4 - HKLM\..\Run: [igfxpers] C:\WINDOWS\system32\igfxpers.exe
O4 - HKLM\..\Run: [RTHDCPL] RTHDCPL.EXE
O4 - HKLM\..\Run: [Alcmtr] ALCMTR.EXE
O4 - HKLM\..\Run: [Apoint] C:\Program Files\Apoint2K\Apoint.exe
O4 - HKLM\..\Run: [TPNF] C:\Program Files\TOSHIBA\TouchPad\TPTray.exe
O4 - HKLM\..\Run: [CeEKEY] C:\Program Files\TOSHIBA\E-KEY\CeEKey.exe
O4 - HKLM\..\Run: [NDSTray.exe] NDSTray.exe
O4 - HKLM\..\Run: [PadTouch] C:\Program Files\TOSHIBA\Touch and Launch\PadExe.exe
O4 - HKLM\..\Run: [Zooming] ZoomingHook.exe
O4 - HKLM\..\Run: [HWSetup] C:\Program Files\TOSHIBA\TOSHIBA Applet\HWSetup.exe hwSetUP
O4 - HKLM\..\Run: [Tvs] C:\Program Files\TOSHIBA\Tvs\TvsTray.exe
O4 - HKLM\..\Run: [SVPWUTIL] C:\Program Files\Toshiba\Windows Utilities\SVPWUTIL.exe SVPwUTIL
O4 - HKLM\..\Run: [SmoothView] C:\Program Files\TOSHIBA\Utilitaire de zoom TOSHIBA\SmoothView.exe
O4 - HKLM\..\Run: [TPSMain] TPSMain.exe
O4 - HKLM\..\Run: [DDWMon] C:\Program Files\TOSHIBA\TOSHIBA Direct Disc Writer\\ddwmon.exe
O4 - HKLM\..\Run: [LtMoh] C:\Program Files\ltmoh\Ltmoh.exe
O4 - HKLM\..\Run: [AGRSMMSG] AGRSMMSG.exe
O4 - HKLM\..\Run: [IntelZeroConfig] C:\Program Files\Intel\Wireless\bin\ZCfgSvc.exe
O4 - HKLM\..\Run: [IntelWireless] "C:\Program Files\Intel\Wireless\Bin\ifrmewrk.exe" /tf Intel PROSet/Wireless
O4 - HKLM\..\Run: [CFSServ.exe] CFSServ.exe -NoClient
O4 - HKLM\..\Run: [PCSuiteTrayApplication] C:\Program Files\Nokia\Nokia PC Suite 6\LaunchApplication.exe -startup
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [iTunesHelper] C:\Program Files\iTunes\iTunesHelper.exe
O4 - HKLM\..\Run: [AVG8_TRAY] C:\PROGRA~1\AVG\AVG8\avgtray.exe
O4 - HKLM\..\Run: [VX6000] C:\WINDOWS\vVX6000.exe
O4 - HKLM\..\Run: [LifeCam] "C:\Program Files\Microsoft LifeCam\LifeExp.exe"
O4 - HKLM\..\Run: [NeroFilterCheck] C:\Program Files\Fichiers communs\Nero\Lib\NeroCheck.exe
O4 - HKLM\..\Run: [NBKeyScan] "C:\Program Files\Nero\Nero8\Nero BackItUp\NBKeyScan.exe"
O4 - HKLM\..\Run: [nvcpl] C:\Program Files\LeechLLC:mstorr.exe
O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [TOSCDSPD] C:\Program Files\TOSHIBA\TOSCDSPD\toscdspd.exe
O4 - HKCU\..\Run: [SUPERAntiSpyware] C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe
O4 - HKCU\..\Run: [Startup Manager] "C:\Program Files\Advanced System Optimizer\startUp manager.exe"
O4 - HKCU\..\Run: [Uniblue RegistryBooster 2009] C:\Program Files\Uniblue\RegistryBooster\RegistryBooster.exe /S
O4 - HKCU\..\Run: [msnmsgr] "C:\Program Files\Windows Live\Messenger\MsnMsgr.Exe" /background
O4 - HKCU\..\Run: [VeohPlugin] "C:\Program Files\Veoh Networks\VeohWebPlayer\veohwebplayer.exe"
O4 - HKCU\..\Run: [AnyDVD] C:\Program Files\SlySoft\AnyDVD\AnyDVDtray.exe
O4 - HKCU\..\Run: [DAEMON Tools Pro Agent] "C:\Program Files\DAEMON Tools Pro\DTProAgent.exe" -autorun
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE RÉSEAU')
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
O4 - Global Startup: Microsoft Office.lnk = C:\Program Files\Microsoft Office\Office10\OSA.EXE
O4 - Global Startup: RAMASST.lnk = C:\WINDOWS\system32\RAMASST.exe
O8 - Extra context menu item: E&xporter vers Microsoft Excel - [You must be registered and logged in to see this link.]
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_03\bin\npjpi160_03.dll
O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_03\bin\npjpi160_03.dll
O9 - Extra button: Ajout Direct - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra 'Tools' menuitem: &Ajout Direct dans Windows Live Writer - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra button: Recherche - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\OFFICE11\REFIEBAR.DLL
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O10 - Unknown file in Winsock LSP: c:\windows\system32\nwprovau.dll
O18 - Protocol: CDS300 - {AD43AA67-6860-4531-AC8A-0E68F9CF023E} - D:\Player\__CDS2.dll (file missing)
O18 - Protocol: linkscanner - {F274614C-63F8-47D5-A4D1-FBDDE494F8D1} - C:\Program Files\AVG\AVG8\avgpp.dll
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\FICHIE~1\Skype\SKYPE4~1.DLL
O18 - Protocol: tbr - {4D25FB7A-8902-4291-960E-9ADA051CFBBF} - (no file)
O20 - Winlogon Notify: !SASWinLogon - C:\Program Files\SUPERAntiSpyware\SASWINLO.DLL
O20 - Winlogon Notify: avgrsstarter - C:\WINDOWS\SYSTEM32\avgrsstx.dll
O23 - Service: AVG8 E-mail Scanner (avg8emc) - AVG Technologies CZ, s.r.o. - C:\PROGRA~1\AVG\AVG8\avgemc.exe
O23 - Service: AVG8 WatchDog (avg8wd) - AVG Technologies CZ, s.r.o. - C:\PROGRA~1\AVG\AVG8\avgwdsvc.exe
O23 - Service: BrSplService (Brother XP spl Service) - brother Industries Ltd - C:\WINDOWS\system32\brsvc01a.exe
O23 - Service: ConfigFree Service (CFSvcs) - TOSHIBA CORPORATION - C:\Program Files\TOSHIBA\ConfigFree\CFSvcs.exe
O23 - Service: DVD-RAM_Service - Matsushita Electric Industrial Co., Ltd. - C:\WINDOWS\system32\DVDRAMSV.exe
O23 - Service: Intel(R) PROSet/Wireless Event Log (EvtEng) - Intel Corporation - C:\Program Files\Intel\Wireless\Bin\EvtEng.exe
O23 - Service: FLEXnet Licensing Service - Macrovision Europe Ltd. - C:\Program Files\Fichiers communs\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Fichiers communs\InstallShield\Driver\1150\Intel 32\IDriverT.exe
O23 - Service: Service de l'iPod (iPod Service) - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: MSCSPTISRV - Sony Corporation - C:\Program Files\Fichiers communs\Sony Shared\AVLib\MSCSPTISRV.exe
O23 - Service: Nero BackItUp Scheduler 3 - Nero AG - C:\Program Files\Nero\Nero8\Nero BackItUp\NBService.exe
O23 - Service: NMIndexingService - Nero AG - C:\Program Files\Fichiers communs\Nero\Lib\NMIndexingService.exe
O23 - Service: PACSPTISVR - Sony Corporation - C:\Program Files\Fichiers communs\Sony Shared\AVLib\PACSPTISVR.exe
O23 - Service: PLFlash DeviceIoControl Service - Prolific Technology Inc. - C:\WINDOWS\system32\IoctlSvc.exe
O23 - Service: Intel(R) PROSet/Wireless Registry Service (RegSrvc) - Intel Corporation - C:\Program Files\Intel\Wireless\Bin\RegSrvc.exe
O23 - Service: Intel(R) PROSet/Wireless Service (S24EventMonitor) - Intel Corporation - C:\Program Files\Intel\Wireless\Bin\S24EvMon.exe
O23 - Service: ServiceLayer - Nokia. - C:\Program Files\PC Connectivity Solution\ServiceLayer.exe
O23 - Service: Sony SPTI Service (SPTISRV) - Sony Corporation - C:\Program Files\Fichiers communs\Sony Shared\AVLib\SPTISRV.exe
O23 - Service: SonicStage SCSI Service (SSScsiSV) - Sony Corporation - C:\Program Files\Fichiers communs\Sony Shared\AVLib\SSScsiSV.exe
O23 - Service: TOSHIBA Optical Disc Drive Service (TODDSrv) - TOSHIBA Corporation - C:\WINDOWS\system32\TODDSrv.exe

--
End of file - 12699 bytes

SamandLucie
Novice
Novice

Posts Posts : 21
Joined Joined : 2009-12-14
OS OS : windows xp
Points Points : 25793
# Likes # Likes : 0

View user profile

Back to top Go down

Re: internet connected but after a few minutes browsers wont connect to server

Post by SamandLucie on Wed Dec 16, 2009 2:30 pm

Thank you so much your an angel! Thank You! Hooray!

SamandLucie
Novice
Novice

Posts Posts : 21
Joined Joined : 2009-12-14
OS OS : windows xp
Points Points : 25793
# Likes # Likes : 0

View user profile

Back to top Go down

Re: internet connected but after a few minutes browsers wont connect to server

Post by Belahzur on Wed Dec 16, 2009 2:34 pm

Hello.

  • Open HijackThis
  • Choose "Do a system scan only"
  • Check the boxes in front of these lines:


    F2 - REG:system.ini: UserInit=C:\WINDOWS\system32\userinit.exe,C:\Program Files\LeechLLC:mstorr.exe,
    O4 - HKLM\..\Run: [nvcpl] C:\Program Files\LeechLLC:mstorr.exe
    O18 - Protocol: tbr - {4D25FB7A-8902-4291-960E-9ADA051CFBBF} - (no file)


  • Press "Fix Checked"

Next, re-scan.

Let me know if the first two lines came back.


[You must be registered and logged in to see this link.] - [You must be registered and logged in to see this link.] - Please PM me if I fail to respond within 24hrs.


Belahzur
Administrator
Administrator

Posts Posts : 34916
Joined Joined : 2008-08-03
Gender Gender : Male
OS OS : XP SP3 Media Centre
Points Points : 245069
# Likes # Likes : 1

View user profile

Back to top Go down

Re: internet connected but after a few minutes browsers wont connect to server

Post by SamandLucie on Wed Dec 16, 2009 2:40 pm

no they did not come back

SamandLucie
Novice
Novice

Posts Posts : 21
Joined Joined : 2009-12-14
OS OS : windows xp
Points Points : 25793
# Likes # Likes : 0

View user profile

Back to top Go down

Re: internet connected but after a few minutes browsers wont connect to server

Post by Belahzur on Wed Dec 16, 2009 2:42 pm

Good, one last thing to do now is remove that ADS.

  • Open HijackThis.
  • When Hijack This opens, click "Open the Misc Tools section"
  • Then select "Open ADS Spy"
  • Click on "Scan" and let it scan.
  • Click Save Log, copy and paste the results in your next post.


[You must be registered and logged in to see this link.] - [You must be registered and logged in to see this link.] - Please PM me if I fail to respond within 24hrs.


Belahzur
Administrator
Administrator

Posts Posts : 34916
Joined Joined : 2008-08-03
Gender Gender : Male
OS OS : XP SP3 Media Centre
Points Points : 245069
# Likes # Likes : 1

View user profile

Back to top Go down

Re: internet connected but after a few minutes browsers wont connect to server

Post by SamandLucie on Wed Dec 16, 2009 2:44 pm

it scanned and finnished empty

SamandLucie
Novice
Novice

Posts Posts : 21
Joined Joined : 2009-12-14
OS OS : windows xp
Points Points : 25793
# Likes # Likes : 0

View user profile

Back to top Go down

Re: internet connected but after a few minutes browsers wont connect to server

Post by Belahzur on Wed Dec 16, 2009 2:59 pm

Ah, okay, the ADS may have been removed along with the file.

How is the machine now?


[You must be registered and logged in to see this link.] - [You must be registered and logged in to see this link.] - Please PM me if I fail to respond within 24hrs.


Belahzur
Administrator
Administrator

Posts Posts : 34916
Joined Joined : 2008-08-03
Gender Gender : Male
OS OS : XP SP3 Media Centre
Points Points : 245069
# Likes # Likes : 1

View user profile

Back to top Go down

Re: internet connected but after a few minutes browsers wont connect to server

Post by SamandLucie on Wed Dec 16, 2009 3:08 pm

oh i deleted it with regedit from the registry as soon as avenger deleted the file

its probably better than it was before LecchLLC thanks to your!

SamandLucie
Novice
Novice

Posts Posts : 21
Joined Joined : 2009-12-14
OS OS : windows xp
Points Points : 25793
# Likes # Likes : 0

View user profile

Back to top Go down

Re: internet connected but after a few minutes browsers wont connect to server

Post by Belahzur on Wed Dec 16, 2009 4:30 pm

Hello.

I see that you are running Limewire.
P2P(Peer to peer) applications are designed to help you easily share and distribute files between you and a group of people. But they can also be used to distribute malware, and thus are not considered safe.
The removal of these programs is optional, but highly recommended.

Go to Start > Control Panel > Add/Remove Programs and remove the following programs.

    BitTorrent
    J2SE Runtime Environment 5.0 Update 6
    Java(TM) 6 Update 13
    Java(TM) 6 Update 3
    LimeWire 4.14.8

Updating Java:

  • Download the latest version of [You must be registered and logged in to see this link.].
  • Select the first option where it says "This special release provides a few key fixes.".
  • Click the "Download" button to the right.
  • In the Window that opens, select your platform and language, check the "agree" box, and click Continue.
  • Click on the link to download Windows Offline Installation and save to your desktop.
  • Close any programs you may have running - especially your web browser.
  • Then from your desktop double-click on jre-6u17-windows-i586.exe that you downloaded to install the newest version.

This should be fine now.


[You must be registered and logged in to see this link.] - [You must be registered and logged in to see this link.] - Please PM me if I fail to respond within 24hrs.


Belahzur
Administrator
Administrator

Posts Posts : 34916
Joined Joined : 2008-08-03
Gender Gender : Male
OS OS : XP SP3 Media Centre
Points Points : 245069
# Likes # Likes : 1

View user profile

Back to top Go down

View previous topic View next topic Back to top

- Similar topics

 
Permissions in this forum:
You cannot reply to topics in this forum