Microsoft Windows XP Professional (5.1.2600) Service Pack 3 C:\ [Fixed] - NTFS - (Total:76308 Mo/Free:192 Mo) D:\ [CD-Rom] (Total:0 Mo/Free:0 Mo) Z:\ [Network] (Total:0 Mo/Free:0 Mo) 2009-06-03|12:03 ----------------------\\ Processes.. --Locked-- [System Process] ---------- System ---------- \SystemRoot\System32\smss.exe ---------- \??\C:\WINDOWS\system32\csrss.exe ---------- \??\C:\WINDOWS\system32\winlogon.exe ---------- C:\WINDOWS\system32\services.exe ---------- C:\WINDOWS\system32\lsass.exe ---------- C:\WINDOWS\system32\svchost.exe ---------- C:\WINDOWS\system32\svchost.exe ---------- C:\WINDOWS\System32\svchost.exe ---------- c:\Program Files\WIDCOMM\Bluetooth Software\bin\btwdins.exe ---------- C:\WINDOWS\system32\svchost.exe ---------- C:\Program Files\Symantec AntiVirus\Smc.exe ---------- C:\Program Files\ActivIdentity\ActivClient\acevents.exe ---------- C:\WINDOWS\system32\svchost.exe ---------- C:\WINDOWS\system32\svchost.exe ---------- C:\Program Files\Symantec AntiVirus\SNAC.EXE ---------- C:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe ---------- C:\WINDOWS\system32\spoolsv.exe ---------- C:\WINDOWS\System32\SCardSvr.exe ---------- C:\WINDOWS\system32\svchost.exe ---------- C:\Program Files\ActivIdentity\ActivClient\acautoup.exe ---------- C:\Program Files\ActivIdentity\ActivClient\accoca.exe ---------- C:\PROGRA~1\HPAVAD~1\avChgSvc.exe ---------- C:\Program Files\Creative\Shared Files\CTDevSrv.exe ---------- C:\Program Files\Cisco Systems\VPN Client\cvpnd.exe ---------- C:\Program Files\Symantec\NetBackup DLO\DLO\DLOChangeLogSvcu.exe ---------- C:\Program Files\Google\Update\GoogleUpdate.exe ---------- C:\Program Files\Common Files\InterVideo\RegMgr\iviRegMgr.exe ---------- C:\Program Files\Common Files\Microsoft Shared\VS7DEBUG\MDM.EXE ---------- C:\WINDOWS\system32\mnmsrvc.exe ---------- C:\WINDOWS\system32\rundll32.exe ---------- C:\Program Files\Remote tools\msraLinkMonitor.exe ---------- C:\WINDOWS\System32\svchost.exe ---------- C:\WINDOWS\System32\svchost.exe ---------- C:\Program Files\Hewlett-Packard\PC COE 3\OV CMS\radexecd.exe ---------- C:\Program Files\Hewlett-Packard\PC COE 3\OV CMS\radsched.exe ---------- C:\Program Files\Hewlett-Packard\PC COE 3\OV CMS\Radstgms.exe ---------- C:\Program Files\Symantec AntiVirus\Rtvscan.exe ---------- C:\Program Files\UPHClean\uphclean.exe ---------- C:\Program Files\sdb\programs\pgm\serv.exe ---------- C:\Program Files\Hewlett-Packard\Shared\hpqWmiEx.exe ---------- C:\WINDOWS\System32\svchost.exe ---------- C:\WINDOWS\System32\svchost.exe ---------- C:\WINDOWS\System32\alg.exe ---------- C:\Program Files\Citrix\ICA Client\ssonsvr.exe ---------- C:\WINDOWS\Explorer.EXE ---------- C:\Program Files\Symantec AntiVirus\SmcGui.exe ---------- C:\WINDOWS\system32\ctfmon.exe ---------- C:\Program Files\Microsoft Office Communicator\communicator.exe ---------- C:\Program Files\internet explorer\iexplore.exe ---------- C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\hpmup081.bin ---------- C:\WINDOWS\system32\cmd.exe ---------- C:\Rooter$\RK.exe ----------------------\\ Search.. ----------------------\\ ROOTKIT !! 1 - "C:\Rooter$\Rooter_1.txt" - 2009-06-03|12:05 ----------------------\\ Scan completed at 12:05