jude18

Membres

Afficher le profil Afficher son activité

Compteur de contenus
176
Inscription
le 7 mars 2004
Dernière visite
le 29 avril 2015

Type de contenu

Toute l’activité

Profils

Forums

Blogs

Tout ce qui a été posté par jude18

PC lent

jude18 a répondu à un(e) sujet de jude18 dans Analyses et éradication malwares

Oui ce que j'avais fait et après j'avais enlevé Chrome quand vous me l'avez demandé . Ayant remis chrome le pc recommençait à bugger , alors jai installé Mozilla
- le 25 mars 2015
- 21 réponses
PC lent

jude18 a répondu à un(e) sujet de jude18 dans Analyses et éradication malwares

Oui c'était Chrome et Avira . J'ai re désinstallé Chrome mais le démarrage reste sur 10 minutes alors qu'avant de remettre il était revenu à 50 secondes environ .
- le 25 mars 2015
- 21 réponses
PC lent

jude18 a répondu à un(e) sujet de jude18 dans Analyses et éradication malwares

Bonjour , Avant de faire tout ce que vous m'avez dit dernièrement le pc mettait 50 secondes environ avant de démarrer , j'étais super content de retrouver un démarrage normal . J'ai réinstallé Chrome et effectué les manip et il remet 10 minutes à démarrer . Là je sais plus trop quoi faire
- le 24 mars 2015
- 21 réponses
PC lent

jude18 a répondu à un(e) sujet de jude18 dans Analyses et éradication malwares

Bonjour Voilà j'ai tout effectué : rapport ZHPFIX : http://www.cjoint.com/15ma/ECwxmvifrJf.htm et ZHPCLEANER : http://www.cjoint.com/15ma/ECwxlJR1K8D.htm
- le 22 mars 2015
- 21 réponses
PC lent

jude18 a répondu à un(e) sujet de jude18 dans Analyses et éradication malwares

Merci Pear je ferais ça demain . Bonne journée
- le 21 mars 2015
- 21 réponses
PC lent

jude18 a répondu à un(e) sujet de jude18 dans Analyses et éradication malwares

Merci , J'ai supprimé Chrome et me suis rendu compte que ma liste de désinstallation via Ccleaner j'ai deux programmes que je peux pas enlever : Le premier s'appelle LPT System Updater et le deuxième est Yahoo Community Smartbar , tout deux me disent que l'installer MSI est absent . Voici le rapport ZHPDiag : http://www.cjoint.com/15ma/ECvpWewfpIA.htm
- le 21 mars 2015
- 21 réponses
PC lent

jude18 a répondu à un(e) sujet de jude18 dans Analyses et éradication malwares

J'ai rebooter mon ordinateur et après ouverture de session il s'est figé et ça fait 15 mins quil réagit pas ...
- le 21 mars 2015
- 21 réponses
PC lent

jude18 a répondu à un(e) sujet de jude18 dans Analyses et éradication malwares

Merci Chrome a bugger 45 minutes avec écran noir Voici les rapport zhpfix : http://www.cjoint.com/15ma/ECvowQfwJCo.htm et zhpcleaner : http://www.cjoint.com/15ma/ECvoxvuvPjG.htm
- le 21 mars 2015
- 21 réponses
PC lent

jude18 a répondu à un(e) sujet de jude18 dans Analyses et éradication malwares

Bonjour , Hier j'ai réinstallé antivir et pas de changement . Ce matin j'ai réinstallé Chrome et là dès que je tente d'ouvrir l'application l'ordinateur se fige et je peux plus rien faire . Ça ne se produit pas avec IE. J'ai fait un scan ZHPDiag et surprise je suis encore infecté ! : http://www.cjoint.com/?ECvksy0uMAl
- le 21 mars 2015
- 21 réponses
PC lent

jude18 a répondu à un(e) sujet de jude18 dans Analyses et éradication malwares

Et comment en utilisant f9 pour réinstaller il me dit accès au disque bloqué .
- le 20 mars 2015
- 21 réponses
PC lent

jude18 a répondu à un(e) sujet de jude18 dans Analyses et éradication malwares

Ça n'a rien changé , et je me suis dit que j'allais actualiser le pc et sauvegarder et impossible ; erreur d'écriture e/s pour la sauvegarde et disque verrouillé pour l'actualisation...
- le 20 mars 2015
- 21 réponses
PC lent

jude18 a répondu à un(e) sujet de jude18 dans Analyses et éradication malwares

Merci de votre réponse . J'ai fait tout ça et là c'est pire . chrome se bloque et internet explorer aussi .
- le 19 mars 2015
- 21 réponses
PC lent

jude18 a posté un sujet dans Analyses et éradication malwares

Bonjour , Mon pc rame depuis 1 semaine et met 10 minutes a démarrer après le logo asus et avant l'ouverture de session , il avait été infecté alors j'ai utilisé malwarebytes et zhpcleaner mais il rame toujours et se fige . Voici un rapport ZHPDiag : http://cjoint.com/?ECtmcu8Rs4Z Merci de votre aide
- le 19 mars 2015
- 21 réponses
PC infecté

jude18 a répondu à un(e) sujet de jude18 dans Analyses et éradication malwares

Bonjour Pear , merci pour votre réponse . J'ai fait le scan et voici le Log : ESETSmartInstaller@High as downloader log: all ok # version=7 # OnlineScannerApp.exe=1.0.0.1 # OnlineScanner.ocx=1.0.0.6528 # api_version=3.0.2 # EOSSerial=13fd6cb22855854294a6d40245ad57f6 # end=finished # remove_checked=false # archives_checked=true # unwanted_checked=true # unsafe_checked=false # antistealth_checked=true # utc_time=2011-07-21 05:50:05 # local_time=2011-07-21 07:50:05 (+0100, Paris, Madrid (heure d'été)) # country="France" # lang=1033 # osver=5.1.2600 NT Service Pack 3 # compatibility_mode=512 16777215 100 0 0 0 0 0 # compatibility_mode=1792 16777175 100 0 28644384 28644384 0 0 # compatibility_mode=8192 67108863 100 0 338 338 0 0 # scanned=175360 # found=8 # cleaned=0 # scan_time=34059 C:\Documents and Settings\Julien\Mes documents\CyberLink.PowerCinema.v6.0.2221.Multilingual.Incl.Keymaker-CORE.7z probably a variant of Win32/Agent.EYYMVHV trojan (unable to clean) 00000000000000000000000000000000 I C:\Documents and Settings\Julien\Mes documents\Vuze Downloads\Nero Ultra Edition v9.4.13.2d fr\Nero-9.4.13.2d_trial.exe Win32/Toolbar.AskSBar application (unable to clean) 00000000000000000000000000000000 I C:\Program Files\ZHPFix\Quarantine\OpenCandy.DIR\OpenCandy_3D16ED7B533F4010BFD693C91B172732\registrybooster(.exe a variant of Win32/RegistryBooster application (unable to clean) 00000000000000000000000000000000 I E:\RECUP\Dossier inconnu\[006841].zip probably a variant of Win32/TrojanDownloader.Zlob.JPQNREP trojan (unable to clean) 00000000000000000000000000000000 I J:\steph\nero\Nero.7.Premium.v7.10.1.0.FR.Incl-Keygen.rar multiple threats (unable to clean) 00000000000000000000000000000000 I J:\steph\nero\Nero.7.Premium.v7.10.1.0.FR.Incl-Keygen\nero_nero_7.10.1.0_francais_10297.7z Win32/Toolbar.AskSBar application (unable to clean) 00000000000000000000000000000000 I J:\steph\nero\Nero.7.Premium.v7.10.1.0.FR.Incl-Keygen\nero_nero_7.10.1.0_francais_10297.exe Win32/Toolbar.AskSBar application (unable to clean) 00000000000000000000000000000000 I J:\steph\nero\Nero.7.Premium.v7.10.1.0.FR.Incl-Keygen\nero_nero_7.10.1.0_francais_10297\Toolbar.exe Win32/Toolbar.AskSBar application (unable to clean) 00000000000000000000000000000000 I
- le 21 juillet 2011
- 6 réponses
PC infecté

jude18 a répondu à un(e) sujet de jude18 dans Analyses et éradication malwares

Bonjour et merci de prendre du temps pour moi , voici le rapport : ComboFix 11-07-20.02 - Julien 20/07/2011 11:30:04.1.2 - x86 Microsoft Windows XP Professionnel 5.1.2600.3.1252.33.1036.18.2046.1077 [GMT 2:00] Lancé depuis: c:\documents and settings\Julien\Bureau\ComboFix.exe AV: AntiVir Desktop *Disabled/Updated* {AD166499-45F9-482A-A743-FDD3350758C7} . . (((((((((((((((((((((((((((((((((((( Autres suppressions )))))))))))))))))))))))))))))))))))))))))))))))) . . c:\documents and settings\Administrateur\Application Data\Microsoft\Internet Explorer\Desktop.htt c:\documents and settings\JUJU\Application Data\Microsoft\Internet Explorer\Desktop.htt c:\documents and settings\Julien\Application Data\Adobe\plugs c:\documents and settings\Julien\Application Data\Adobe\shed c:\documents and settings\Julien\Application Data\Microsoft\Internet Explorer\Desktop.htt c:\documents and settings\Julien\iThmbConv.exe c:\documents and settings\LogMeInRemoteUser\Application Data\Microsoft\Internet Explorer\Desktop.htt c:\windows\system32\config\systemprofile\Application Data\Microsoft\Internet Explorer\Desktop.htt . . ((((((((((((((((((((((((((((((((((((((( Pilotes/Services ))))))))))))))))))))))))))))))))))))))))))))))))) . . -------\Legacy_SSHNAS . . ((((((((((((((((((((((((((((( Fichiers créés du 2011-06-20 au 2011-07-20 )))))))))))))))))))))))))))))))))))) . . 2011-07-20 07:42 . 2011-07-20 07:42 -------- d-----w- c:\documents and settings\JUJU\Local Settings\Application Data\Mozilla 2011-07-20 07:41 . 2011-07-20 07:41 -------- d-----w- c:\documents and settings\JUJU\Local Settings\Application Data\LogMeIn 2011-07-19 19:49 . 2011-07-19 19:49 -------- d-sh--w- c:\documents and settings\NetworkService\IECompatCache 2011-07-19 19:45 . 2011-07-19 19:45 -------- d-----w- c:\documents and settings\NetworkService\Local Settings\Application Data\Temp 2011-07-19 19:45 . 2011-07-19 19:45 -------- d-----w- c:\documents and settings\NetworkService\Local Settings\Application Data\Adobe 2011-07-19 13:41 . 2011-07-19 13:41 -------- d-sh--w- c:\documents and settings\NetworkService\PrivacIE 2011-07-19 13:41 . 2011-07-19 13:41 -------- d-----w- c:\documents and settings\NetworkService\Application Data\Minibar 2011-07-19 10:59 . 2011-07-19 13:40 -------- d-----r- c:\documents and settings\NetworkService\Favoris 2011-07-19 09:32 . 2011-07-19 09:32 -------- d-----w- c:\documents and settings\Administrateur\Local Settings\Application Data\Powercinema 2011-07-19 09:32 . 2011-07-19 09:46 -------- d-----w- c:\documents and settings\Administrateur\Local Settings\Application Data\TVEnhance 2011-07-19 09:32 . 2011-07-19 09:32 -------- d-----w- c:\documents and settings\Administrateur\Local Settings\Application Data\PlayMovie 2011-07-19 09:31 . 2011-07-19 09:32 -------- d-----w- c:\documents and settings\Administrateur\Application Data\CyberLink 2011-07-19 09:31 . 2011-07-19 09:32 -------- d-----w- c:\documents and settings\Administrateur\Application Data\PowerCinema 2011-07-19 09:24 . 2011-07-19 09:24 -------- d-sh--w- c:\documents and settings\Administrateur\IETldCache 2011-06-29 23:47 . 2011-06-16 04:38 142296 ----a-w- c:\program files\Mozilla Firefox\components\browsercomps.dll 2011-06-29 23:47 . 2011-06-16 04:38 89048 ----a-w- c:\program files\Mozilla Firefox\libEGL.dll 2011-06-29 23:47 . 2011-06-16 04:38 781272 ----a-w- c:\program files\Mozilla Firefox\mozsqlite3.dll 2011-06-29 23:47 . 2011-06-16 04:38 465880 ----a-w- c:\program files\Mozilla Firefox\libGLESv2.dll 2011-06-29 23:47 . 2011-06-16 04:38 1850328 ----a-w- c:\program files\Mozilla Firefox\mozjs.dll 2011-06-29 23:47 . 2011-06-16 04:38 15832 ----a-w- c:\program files\Mozilla Firefox\mozalloc.dll 2011-06-29 23:47 . 2010-01-01 08:00 2106216 ----a-w- c:\program files\Mozilla Firefox\D3DCompiler_43.dll 2011-06-29 23:47 . 2010-01-01 08:00 1998168 ----a-w- c:\program files\Mozilla Firefox\d3dx9_43.dll 2011-06-29 21:59 . 2011-06-29 21:59 -------- d-----w- c:\program files\Surf Canyon 2011-06-29 21:44 . 2011-06-29 21:44 -------- d-----w- c:\documents and settings\Julien\Application Data\KC Softwares 2011-06-29 21:42 . 2011-06-29 21:42 -------- d-----w- c:\program files\KC Softwares 2011-06-29 08:44 . 2011-06-29 08:44 -------- d-----w- c:\documents and settings\Julien\Application Data\GlarySoft 2011-06-29 08:34 . 2011-06-29 08:36 -------- d-----w- c:\program files\Glary Utilities 2011-06-25 09:36 . 2011-07-20 07:05 -------- d-----w- c:\program files\ZHPDiag 2011-06-22 11:28 . 2011-06-22 11:28 -------- d-----w- c:\documents and settings\All Users\Application Data\Messenger Plus! 2011-06-22 08:35 . 2011-06-22 08:35 -------- d-----w- c:\program files\CONEXANT 2011-06-21 11:48 . 2011-06-21 11:48 -------- d-----w- c:\program files\Speccy 2011-06-20 17:58 . 2011-06-20 17:58 -------- d-----w- c:\program files\iPod . . . (((((((((((((((((((((((((((((((((( Compte-rendu de Find3M )))))))))))))))))))))))))))))))))))))))))))))))) . 2011-07-18 18:26 . 2010-08-26 10:42 83360 ----a-w- c:\windows\system32\LMIRfsClientNP.dll 2011-07-18 18:26 . 2010-08-26 10:42 53632 ----a-w- c:\windows\system32\Spool\prtprocs\w32x86\LMIproc.dll 2011-07-18 18:26 . 2010-08-26 10:42 29568 ----a-w- c:\windows\system32\LMIport.dll 2011-07-18 18:26 . 2010-08-26 10:42 87424 ----a-w- c:\windows\system32\LMIinit.dll 2011-07-06 17:52 . 2010-08-23 08:36 41272 ----a-w- c:\windows\system32\drivers\mbamswissarmy.sys 2011-07-06 17:52 . 2010-08-23 08:36 22712 ----a-w- c:\windows\system32\drivers\mbam.sys 2011-06-18 09:33 . 2010-08-26 10:42 83360 ----a-w- c:\windows\system32\LMIRfsClientNP.dll.000.bak 2011-06-18 09:33 . 2010-08-26 10:42 87424 ----a-w- c:\windows\system32\LMIinit.dll.000.bak 2011-06-06 11:35 . 2006-07-27 01:46 1859072 ----a-w- c:\windows\system32\win32k.sys 2011-05-19 13:00 . 2011-05-19 13:00 404640 ----a-w- c:\windows\system32\FlashPlayerCPLApp.cpl 2011-05-10 06:06 . 2010-08-22 14:22 4517664 ----a-w- c:\windows\system32\usbaaplrc.dll 2011-05-10 06:06 . 2010-08-22 14:22 42496 ----a-w- c:\windows\system32\drivers\usbaapl.sys 2011-05-04 15:10 . 2011-05-04 15:10 82432 ----a-w- c:\documents and settings\Julien\Application Data\Microsoft\MSXML2\msxml4r.dll 2011-05-04 15:10 . 2011-05-04 15:10 44544 ----a-w- c:\documents and settings\Julien\Application Data\Microsoft\MSXML2\msxml4a.dll 2011-05-04 15:10 . 2011-05-04 15:10 1275392 ----a-w- c:\documents and settings\Julien\Application Data\Microsoft\MSXML2\msxml4.dll 2011-05-02 15:31 . 2006-07-27 09:02 692736 ----a-w- c:\windows\system32\inetcomm.dll 2011-04-29 17:25 . 2006-07-27 01:46 151552 ----a-w- c:\windows\system32\schannel.dll 2011-04-29 16:19 . 2006-07-27 01:46 456320 ----a-w- c:\windows\system32\drivers\mrxsmb.sys 2011-04-26 11:07 . 2006-07-27 01:47 293888 ----a-w- c:\windows\system32\winsrv.dll 2011-04-26 11:07 . 2006-07-27 01:46 33280 ----a-w- c:\windows\system32\csrsrv.dll 2011-04-25 16:06 . 2006-07-27 01:46 916480 ----a-w- c:\windows\system32\wininet.dll 2011-04-25 16:06 . 2006-07-27 01:46 43520 ----a-w- c:\windows\system32\licmgr10.dll 2011-04-25 16:06 . 2006-07-27 01:46 1469440 ------w- c:\windows\system32\inetcpl.cpl 2011-04-25 12:01 . 2006-07-27 01:46 385024 ----a-w- c:\windows\system32\html.iec 2011-04-21 13:37 . 2006-07-27 01:46 105472 ----a-w- c:\windows\system32\drivers\mup.sys 2011-06-16 04:38 . 2011-06-29 23:47 142296 ----a-w- c:\program files\mozilla firefox\components\browsercomps.dll . . ((((((((((((((((((((((((((((((((( Points de chargement Reg )))))))))))))))))))))))))))))))))))))))))))))))) . . *Note* les éléments vides & les éléments initiaux légitimes ne sont pas listés REGEDIT4 . [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "msnmsgr"="c:\program files\Windows Live\Messenger\msnmsgr.exe" [2010-12-07 3872080] "ctfmon.exe"="c:\windows\system32\ctfmon.exe" [2008-04-14 15360] . [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "Apoint"="c:\program files\Apoint\Apoint.exe" [2004-11-17 118784] "ehTray"="c:\windows\ehome\ehtray.exe" [2005-08-05 64512] "Mouse Suite 98 Daemon"="ICO.EXE" [2002-03-14 45056] "ISBMgr.exe"="c:\program files\Sony\ISB Utility\ISBMgr.exe" [2004-02-20 32768] "Switcher.exe"="c:\program files\Sony\Wireless Switch Setting Utility\Switcher.exe" [2006-02-14 176128] "NvCplDaemon"="c:\windows\system32\NvCpl.dll" [2009-10-01 13901824] "NvMediaCenter"="c:\windows\system32\NvMcTray.dll" [2009-10-01 86016] "SonyPowerCfg"="c:\program files\Sony\VAIO Power Management\SPMgr.exe" [2006-06-27 217088] "iTunesHelper"="c:\program files\iTunes\iTunesHelper.exe" [2011-06-07 421160] "PlusService"="c:\program files\Yuna Software\Messenger Plus!\PlusService.exe" [2011-05-26 800768] "LogMeIn GUI"="c:\program files\LogMeIn\x86\LogMeInSystray.exe" [2010-01-27 63048] "QuickTime Task"="c:\program files\QuickTime\qttask.exe" [2010-11-29 421888] . [HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run] "CTFMON.EXE"="c:\windows\system32\CTFMON.EXE" [2008-04-14 15360] . [HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\winlogon\notify\LMIinit] 2011-07-18 18:26 87424 ----a-w- c:\windows\system32\LMIinit.dll . [HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\winlogon\notify\VESWinlogon] 2006-03-09 12:51 73728 ----a-w- c:\windows\system32\VESWinlogon.dll . [HKLM\~\startupfolder\C:^Documents and Settings^All Users^Menu Démarrer^Programmes^Démarrage^AutoStart IR.lnk] path=c:\documents and settings\All Users\Menu Démarrer\Programmes\Démarrage\AutoStart IR.lnk backup=c:\windows\pss\AutoStart IR.lnkCommon Startup . [HKLM\~\startupfolder\C:^Documents and Settings^All Users^Menu Démarrer^Programmes^Démarrage^WinTV Recording Status..lnk] path=c:\documents and settings\All Users\Menu Démarrer\Programmes\Démarrage\WinTV Recording Status..lnk backup=c:\windows\pss\WinTV Recording Status..lnkCommon Startup . [HKLM\~\startupfolder\C:^Documents and Settings^Julien^Menu Démarrer^Programmes^Démarrage^Vuze.lnk] path=c:\documents and settings\Julien\Menu Démarrer\Programmes\Démarrage\Vuze.lnk backup=c:\windows\pss\Vuze.lnkStartup HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Phone Disk HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Raptr . [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe ARM] 2011-06-06 10:55 937920 ----a-w- c:\program files\Fichiers communs\Adobe\ARM\1.0\AdobeARM.exe . [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe Reader Speed Launcher] 2011-06-06 10:55 35736 ----a-w- c:\program files\Adobe\Reader 10.0\Reader\reader_sl.exe . [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\AppleSyncNotifier] 2011-04-20 10:48 58656 ----a-w- c:\program files\Fichiers communs\Apple\Mobile Device Support\AppleSyncNotifier.exe . [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\avgnt] 2010-08-17 12:38 281768 ----a-w- c:\program files\Avira\AntiVir Desktop\avgnt.exe . [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Badoo Desktop] 2011-06-07 16:55 1017344 ----a-w- c:\documents and settings\All Users\Application Data\Badoo\Badoo Desktop\1.5.3.949\Badoo.Desktop.exe . [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}] 2007-06-27 17:03 152872 ----a-w- c:\program files\Fichiers communs\Ahead\Lib\NMBgMonitor.exe . [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\CLMLServer] 2008-10-21 13:02 196608 ------w- c:\program files\CyberLink\PowerCinema\Kernel\CLML\CLMLSvc.exe . [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\FlashPlayerUpdate] 2011-05-19 13:00 240288 ----a-w- c:\windows\system32\Macromed\Flash\FlashUtil10q_ActiveX.exe . [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Google Update] 2010-08-22 11:15 136176 ----atw- c:\documents and settings\Julien\Local Settings\Application Data\Google\Update\GoogleUpdate.exe . [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\iTunesHelper] 2011-06-07 15:51 421160 ----a-w- c:\program files\iTunes\iTunesHelper.exe . [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\PCMAgent] 2008-10-21 13:02 143360 ------w- c:\program files\CyberLink\PowerCinema\PCMAgent.exe . [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\PlayMovie] 2008-09-24 09:34 172032 ------w- c:\program files\CyberLink\PlayMovie\PMVService.exe . [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\QuickTime Task] 2010-11-29 15:38 421888 ----a-w- c:\program files\QuickTime\QTTask.exe . [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\RECOVMSG] 2005-09-15 10:49 61440 ----a-w- c:\program files\Sony\VAIO Recovery Utility\VARU.exe . [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SunJavaUpdateSched] 2010-05-14 09:44 248552 ----a-w- c:\program files\Fichiers communs\Java\Java Update\jusched.exe . [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\TVEService] 2008-11-28 00:05 180224 ------w- c:\program files\CyberLink\TV Enhance\TVEService.exe . [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\VAIOCameraUtility] 2005-12-27 11:58 69632 ----a-w- c:\program files\Sony\VAIO Camera Utility\VCUServe.exe . [HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile] "EnableFirewall"= 0 (0x0) . [HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List] "%windir%\\system32\\sessmgr.exe"= "%windir%\\Network Diagnostic\\xpnetdiag.exe"= "c:\\Program Files\\Windows Live\\Messenger\\wlcsdk.exe"= "c:\\Program Files\\Windows Live\\Messenger\\msnmsgr.exe"= "c:\\Program Files\\WinTV\\WinTV7\\WinTV7.exe"= "c:\\Program Files\\CyberLink\\TV Enhance\\TVEnhance.exe"= "c:\\Program Files\\CyberLink\\TV Enhance\\TVEService.exe"= "c:\\Program Files\\eMule\\emule.exe"= "c:\\Program Files\\Java\\jre6\\bin\\javaw.exe"= "c:\\Program Files\\Java\\jre6\\bin\\javaws.exe"= "c:\\Program Files\\Java\\jre6\\launch4j-tmp\\crazyloader.exe"= "c:\\Program Files\\Vuze\\Azureus.exe"= "c:\\Program Files\\Bonjour\\mDNSResponder.exe"= "c:\\Program Files\\iTunes\\iTunes.exe"= "c:\\WINDOWS\\pchealth\\helpctr\\binaries\\helpctr.exe"= . [HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\GloballyOpenPorts\List] "5985:TCP"= 5985:TCP:*:Disabled:Gestion à distance de Windows . R0 sptd;sptd;c:\windows\system32\drivers\sptd.sys [02/09/2010 11:06 691696] R2 {49DE1C67-83F8-4102-99E0-C16DCC7EEC796};{49DE1C67-83F8-4102-99E0-C16DCC7EEC796};c:\program files\CyberLink\PlayMovie\000.fcl [22/08/2010 16:50 61424] R2 AntiVirSchedulerService;Avira AntiVir Planificateur;c:\program files\Avira\AntiVir Desktop\sched.exe [23/08/2010 09:36 136360] R2 Dokan;Dokan;c:\windows\system32\drivers\dokan.sys [05/07/2010 14:39 84608] R2 DokanMounter;DokanMounter;c:\program files\Dokan\DokanLibrary\mounter.exe [05/07/2010 14:39 22016] R2 HauppaugeTVServer;HauppaugeTVServer;c:\progra~1\WinTV\TVServer\HAUPPA~1.EXE [22/08/2010 16:27 602624] R2 LMIGuardianSvc;LMIGuardianSvc;c:\program files\LogMeIn\x86\LMIGuardianSvc.exe [15/07/2011 15:17 374152] R2 LMIInfo;LogMeIn Kernel Information Provider;c:\program files\LogMeIn\x86\rainfo.sys [27/01/2010 12:22 12856] R2 TVECapSvc;TVEnhance Background Capture Service (TBCS);c:\program files\CyberLink\TV Enhance\Kernel\TV\TVECapSvc.exe [22/08/2010 16:51 372831] R2 TVESched;TVEnhance Task Scheduler (TTS));c:\program files\CyberLink\TV Enhance\Kernel\TV\TVESched.exe [22/08/2010 16:51 184413] R3 hcw66xxx;WinTV HVR-900H;c:\windows\system32\drivers\hcw66xxx.sys [22/08/2010 15:59 673664] R3 radpms;Driver for RADPMS Device;c:\windows\system32\drivers\radpms.sys [18/05/2010 16:54 13408] R3 SonyImgF;Sony Image Conversion Filter Driver;c:\windows\system32\drivers\SonyImgF.sys [27/07/2006 03:47 30080] R3 ti21sony;ti21sony;c:\windows\system32\drivers\ti21sony.sys [27/07/2006 03:47 226304] S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;c:\windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [18/03/2010 13:16 130384] S3 cpudrv;cpudrv;c:\program files\SystemRequirementsLab\cpudrv.sys [18/12/2009 10:58 11336] S3 maconfservice;Ma-Config Service;c:\program files\ma-config.com\maconfservice.exe [12/09/2010 15:30 251248] S3 MBAMSwissArmy;MBAMSwissArmy;c:\windows\system32\drivers\mbamswissarmy.sys [23/08/2010 10:36 41272] S3 WinRM;Windows Remote Management (WS-Management);c:\windows\system32\svchost.exe -k WINRM [27/07/2006 03:46 14336] S3 WPFFontCache_v0400;Windows Presentation Foundation Font Cache 4.0.0.0;c:\windows\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe [18/03/2010 13:16 753504] . [HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\svchost] WINRM REG_MULTI_SZ WINRM . Contenu du dossier 'Tâches planifiées' . 2011-07-18 c:\windows\Tasks\AppleSoftwareUpdate.job - c:\program files\Apple Software Update\SoftwareUpdate.exe [2009-10-22 09:50] . 2011-07-20 c:\windows\Tasks\GlaryInitialize.job - c:\program files\Glary Utilities\initialize.exe [2011-06-29 06:25] . 2011-07-20 c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-1002157844-932473975-2733897562-1006Core.job - c:\documents and settings\Julien\Local Settings\Application Data\Google\Update\GoogleUpdate.exe [2010-08-22 11:15] . 2011-07-20 c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-1002157844-932473975-2733897562-1006UA.job - c:\documents and settings\Julien\Local Settings\Application Data\Google\Update\GoogleUpdate.exe [2010-08-22 11:15] . . ------- Examen supplémentaire ------- . uStart Page = hxxp://www.club-vaio.com/fr/ uInternet Settings,ProxyOverride = *.local IE: E&xporter vers Microsoft Excel - c:\progra~1\MICROS~4\OFFICE11\EXCEL.EXE/3000 IE: Free YouTube to MP3 Converter - c:\documents and settings\Julien\Application Data\DVDVideoSoftIEHelpers\freeyoutubetomp3converter.htm TCP: DhcpNameServer = 192.168.1.254 FF - ProfilePath - c:\documents and settings\Julien\Application Data\Mozilla\Firefox\Profiles\6j42v6nf.default\ FF - prefs.js: keyword.URL - hxxp://fr.search.yahoo.com/search?fr=greentree_ff1&ei=utf-8&type=302398&p= . - - - - ORPHELINS SUPPRIMES - - - - . MSConfigStartUp-VAIO Update 2 - c:\program files\Sony\VAIO Update 2\VAIOUpdt.exe . . . ************************************************************************** . catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, GMER - Rootkit Detector and Remover Rootkit scan 2011-07-20 11:49 Windows 5.1.2600 Service Pack 3 NTFS . Recherche de processus cachés ... . Recherche d'éléments en démarrage automatique cachés ... . Recherche de fichiers cachés ... . Scan terminé avec succès Fichiers cachés: 0 . ************************************************************************** . Stealth MBR rootkit/Mebroot/Sinowal/TDL4 detector 0.4.2 by Gmer, GMER - Rootkit Detector and Remover Windows 5.1.2600 Disk: FUJITSU_MHV2160BT rev.00000014 -> Harddisk0\DR0 -> \Device\Ide\IdeDeviceP1T0L0-e . device: opened successfully user: MBR read successfully error: Read Un périphérique attaché au système ne fonctionne pas correctement. kernel: MBR read successfully detected disk devices: detected hooks: \Driver\atapi DriverStartIo -> 0x89D4F31B user & kernel MBR OK . ************************************************************************** . [HKEY_LOCAL_MACHINE\System\ControlSet001\Services\{49DE1C67-83F8-4102-99E0-C16DCC7EEC796}] "ImagePath"="\??\c:\program files\CyberLink\PlayMovie\000.fcl" . --------------------- CLES DE REGISTRE BLOQUEES --------------------- . [HKEY_USERS\.Default\Software\Microsoft\Internet Explorer\User Preferences] @Denied: (2) (LocalSystem) "88D7D0879DAB32E14DE5B3A805A34F98AFF34F5977"=hex:01,00,00,00,d0,8c,9d,df,01,15, d1,11,8c,7a,00,c0,4f,c2,97,eb,01,00,00,00,65,ad,95,00,2d,b1,f3,48,87,ea,03,\ "2D53CFFC5C1A3DD2E97B7979AC2A92BD59BC839E81"=hex:01,00,00,00,d0,8c,9d,df,01,15, d1,11,8c,7a,00,c0,4f,c2,97,eb,01,00,00,00,65,ad,95,00,2d,b1,f3,48,87,ea,03,\ . [HKEY_LOCAL_MACHINE\software\Classes\.*I61*GIF*FTICO*I61*GIJFF*ICO*I6JP2*JFF*ICJPC*JP2*JFJPG*JPC*JPJPS*JPG*JPMAT*JPS*JPMIF*MAT*JPMNG*MIF*MAMTV*MNG*MIMVG*MTV*MNP7] @Class="REG_SZ" . [HKEY_LOCAL_MACHINE\software\Classes\.*P7] @Class="REG_SZ" . [HKEY_LOCAL_MACHINE\software\Classes\.*FAX*EXF*EMFPX*FAX*EXFTS*FPX*FAGIF*FTS*FPI61*GIF*FTICO*I61*GIJFF*ICO*I6JP2*JFF*ICJPC*JP2*JFJPG*JPC*JPJPS*JPG*JPMAT*JPS*JPMIF*MAT*JPMNG*MIF*MAMTV*MNG*MIMVG*MTV*MNP7] @Class="REG_SZ" . [HKEY_LOCAL_MACHINE\software\Classes\.*MAT*JPS*JPMIF*MAT*JPMNG*MIF*MAMTV*MNG*MIMVG*MTV*MNP7] @Class="REG_SZ" . [HKEY_LOCAL_MACHINE\software\Classes\.*RAD*PWP*PSRAS*RAD*PWRGB*RAS*RASCT*RGB*RASFW*SCT*RGSGI*SFW*SCSUN*SGI*SFTGA*SUN*SGTIF*TGA*SUTIM*TIF*TGVDA*TIM*TIVID*VDA*TIVIF*VID*VDWBMP] @Class="REG_SZ" . [HKEY_LOCAL_MACHINE\software\Classes\.*RAS*RAD*PWRGB*RAS*RASCT*RGB*RASFW*SCT*RGSGI*SFW*SCSUN*SGI*SFTGA*SUN*SGTIF*TGA*SUTIM*TIF*TGVDA*TIM*TIVID*VDA*TIVIF*VID*VDWBMP] @Class="REG_SZ" . [HKEY_LOCAL_MACHINE\software\Classes\.*PBM*P7] @Class="REG_SZ" . [HKEY_LOCAL_MACHINE\software\Classes\.*WBMP] @Class="REG_SZ" . [HKEY_LOCAL_MACHINE\software\Classes\.*XBM*WPG*WMXCF*XBM*WPXPM*XCF*XBXWD*XPM*XCYUV*XWD*XP] @Class="REG_SZ" . [HKEY_LOCAL_MACHINE\software\Classes\.*DCM*CUT*CUDCX*DCM*CUDIB*DCX*DCEMF*DIB*DCEXF*EMF*DIFAX*EXF*EMFPX*FAX*EXFTS*FPX*FAGIF*FTS*FPI61*GIF*FTICO*I61*GIJFF*ICO*I6JP2*JFF*ICJPC*JP2*JFJPG*JPC*JPJPS*JPG*JPMAT*JPS*JPMIF*MAT*JPMNG*MIF*MAMTV*MNG*MIMVG*MTV*MNP7] @Class="REG_SZ" . [HKEY_LOCAL_MACHINE\software\Classes\.*DCX*DCM*CUDIB*DCX*DCEMF*DIB*DCEXF*EMF*DIFAX*EXF*EMFPX*FAX*EXFTS*FPX*FAGIF*FTS*FPI61*GIF*FTICO*I61*GIJFF*ICO*I6JP2*JFF*ICJPC*JP2*JFJPG*JPC*JPJPS*JPG*JPMAT*JPS*JPMIF*MAT*JPMNG*MIF*MAMTV*MNG*MIMVG*MTV*MNP7] @Class="REG_SZ" . [HKEY_LOCAL_MACHINE\software\Classes\.*ICO*I61*GIJFF*ICO*I6JP2*JFF*ICJPC*JP2*JFJPG*JPC*JPJPS*JPG*JPMAT*JPS*JPMIF*MAT*JPMNG*MIF*MAMTV*MNG*MIMVG*MTV*MNP7] @Class="REG_SZ" . [HKEY_LOCAL_MACHINE\software\Classes\.*PCD*PBM*P7PCT*PCD*PBPCX*PCT*PCPDB*PCX*PCPDD*PDB*PCPGM*PDD*PDPIX*PGM*PDPM] @Class="REG_SZ" . [HKEY_LOCAL_MACHINE\software\Classes\.*PCT*PCD*PBPCX*PCT*PCPDB*PCX*PCPDD*PDB*PCPGM*PDD*PDPIX*PGM*PDPM] @Class="REG_SZ" . [HKEY_LOCAL_MACHINE\software\Classes\.*PCX*PCT*PCPDB*PCX*PCPDD*PDB*PCPGM*PDD*PDPIX*PGM*PDPM] @Class="REG_SZ" . [HKEY_LOCAL_MACHINE\software\Classes\.*SCT*RGB*RASFW*SCT*RGSGI*SFW*SCSUN*SGI*SFTGA*SUN*SGTIF*TGA*SUTIM*TIF*TGVDA*TIM*TIVID*VDA*TIVIF*VID*VDWBMP] @Class="REG_SZ" . [HKEY_LOCAL_MACHINE\software\Classes\.*XCF*XBM*WPXPM*XCF*XBXWD*XPM*XCYUV*XWD*XP] @Class="REG_SZ" . [HKEY_LOCAL_MACHINE\software\Classes\.*PDB*PCX*PCPDD*PDB*PCPGM*PDD*PDPIX*PGM*PDPM] @Class="REG_SZ" . [HKEY_LOCAL_MACHINE\software\Classes\.*PDD*PDB*PCPGM*PDD*PDPIX*PGM*PDPM] @Class="REG_SZ" . [HKEY_LOCAL_MACHINE\software\Classes\.*VDA*TIM*TIVID*VDA*TIVIF*VID*VDWBMP] @Class="REG_SZ" . [HKEY_LOCAL_MACHINE\software\Classes\.*JFF*ICO*I6JP2*JFF*ICJPC*JP2*JFJPG*JPC*JPJPS*JPG*JPMAT*JPS*JPMIF*MAT*JPMNG*MIF*MAMTV*MNG*MIMVG*MTV*MNP7] @Class="REG_SZ" . [HKEY_LOCAL_MACHINE\software\Classes\.*SFW*SCT*RGSGI*SFW*SCSUN*SGI*SFTGA*SUN*SGTIF*TGA*SUTIM*TIF*TGVDA*TIM*TIVID*VDA*TIVIF*VID*VDWBMP] @Class="REG_SZ" . [HKEY_LOCAL_MACHINE\software\Classes\.*PGM*PDD*PDPIX*PGM*PDPM] @Class="REG_SZ" . [HKEY_LOCAL_MACHINE\software\Classes\.*RGB*RAS*RASCT*RGB*RASFW*SCT*RGSGI*SFW*SCSUN*SGI*SFTGA*SUN*SGTIF*TGA*SUTIM*TIF*TGVDA*TIM*TIVID*VDA*TIVIF*VID*VDWBMP] @Class="REG_SZ" . [HKEY_LOCAL_MACHINE\software\Classes\.*SGI*SFW*SCSUN*SGI*SFTGA*SUN*SGTIF*TGA*SUTIM*TIF*TGVDA*TIM*TIVID*VDA*TIVIF*VID*VDWBMP] @Class="REG_SZ" . [HKEY_LOCAL_MACHINE\software\Classes\.*TGA*SUN*SGTIF*TGA*SUTIM*TIF*TGVDA*TIM*TIVID*VDA*TIVIF*VID*VDWBMP] @Class="REG_SZ" . [HKEY_LOCAL_MACHINE\software\Classes\.*DIB*DCX*DCEMF*DIB*DCEXF*EMF*DIFAX*EXF*EMFPX*FAX*EXFTS*FPX*FAGIF*FTS*FPI61*GIF*FTICO*I61*GIJFF*ICO*I6JP2*JFF*ICJPC*JP2*JFJPG*JPC*JPJPS*JPG*JPMAT*JPS*JPMIF*MAT*JPMNG*MIF*MAMTV*MNG*MIMVG*MTV*MNP7] @Class="REG_SZ" . [HKEY_LOCAL_MACHINE\software\Classes\.*GIF*FTS*FPI61*GIF*FTICO*I61*GIJFF*ICO*I6JP2*JFF*ICJPC*JP2*JFJPG*JPC*JPJPS*JPG*JPMAT*JPS*JPMIF*MAT*JPMNG*MIF*MAMTV*MNG*MIMVG*MTV*MNP7] @Class="REG_SZ" . [HKEY_LOCAL_MACHINE\software\Classes\.*MIF*MAT*JPMNG*MIF*MAMTV*MNG*MIMVG*MTV*MNP7] @Class="REG_SZ" . [HKEY_LOCAL_MACHINE\software\Classes\.*PIX*PGM*PDPM] @Class="REG_SZ" . [HKEY_LOCAL_MACHINE\software\Classes\.*TIF*TGA*SUTIM*TIF*TGVDA*TIM*TIVID*VDA*TIVIF*VID*VDWBMP] @Class="REG_SZ" . [HKEY_LOCAL_MACHINE\software\Classes\.*TIM*TIF*TGVDA*TIM*TIVID*VDA*TIVIF*VID*VDWBMP] @Class="REG_SZ" . [HKEY_LOCAL_MACHINE\software\Classes\.*VID*VDA*TIVIF*VID*VDWBMP] @Class="REG_SZ" . [HKEY_LOCAL_MACHINE\software\Classes\.*VIF*VID*VDWBMP] @Class="REG_SZ" . [HKEY_LOCAL_MACHINE\software\Classes\.*BMP*AVS*ARCUR*BMP*AVCUT*CUR*BMDCM*CUT*CUDCX*DCM*CUDIB*DCX*DCEMF*DIB*DCEXF*EMF*DIFAX*EXF*EMFPX*FAX*EXFTS*FPX*FAGIF*FTS*FPI61*GIF*FTICO*I61*GIJFF*ICO*I6JP2*JFF*ICJPC*JP2*JFJPG*JPC*JPJPS*JPG*JPMAT*JPS*JPMIF*MAT*JPMNG*MIF*MAMTV*MNG*MIMVG*MTV*MNP7] @Class="REG_SZ" . [HKEY_LOCAL_MACHINE\software\Classes\.*EMF*DIB*DCEXF*EMF*DIFAX*EXF*EMFPX*FAX*EXFTS*FPX*FAGIF*FTS*FPI61*GIF*FTICO*I61*GIJFF*ICO*I6JP2*JFF*ICJPC*JP2*JFJPG*JPC*JPJPS*JPG*JPMAT*JPS*JPMIF*MAT*JPMNG*MIF*MAMTV*MNG*MIMVG*MTV*MNP7] @Class="REG_SZ" . [HKEY_LOCAL_MACHINE\software\Classes\.*PM] @Class="REG_SZ" . [HKEY_LOCAL_MACHINE\software\Classes\.*WMF*WBMP] @Class="REG_SZ" . [HKEY_LOCAL_MACHINE\software\Classes\.*MNG*MIF*MAMTV*MNG*MIMVG*MTV*MNP7] @Class="REG_SZ" . [HKEY_LOCAL_MACHINE\software\Classes\.*PNG*PM] @Class="REG_SZ" . [HKEY_LOCAL_MACHINE\software\Classes\.*PNM*PNG*PMPPM*PNM*PNPSD*PPM*PNPWP*PSD*PPRAD*PWP*PSRAS*RAD*PWRGB*RAS*RASCT*RGB*RASFW*SCT*RGSGI*SFW*SCSUN*SGI*SFTGA*SUN*SGTIF*TGA*SUTIM*TIF*TGVDA*TIM*TIVID*VDA*TIVIF*VID*VDWBMP] @Class="REG_SZ" . [HKEY_LOCAL_MACHINE\software\Classes\.*FPX*FAX*EXFTS*FPX*FAGIF*FTS*FPI61*GIF*FTICO*I61*GIJFF*ICO*I6JP2*JFF*ICJPC*JP2*JFJPG*JPC*JPJPS*JPG*JPMAT*JPS*JPMIF*MAT*JPMNG*MIF*MAMTV*MNG*MIMVG*MTV*MNP7] @Class="REG_SZ" . [HKEY_LOCAL_MACHINE\software\Classes\.*JP2*JFF*ICJPC*JP2*JFJPG*JPC*JPJPS*JPG*JPMAT*JPS*JPMIF*MAT*JPMNG*MIF*MAMTV*MNG*MIMVG*MTV*MNP7] @Class="REG_SZ" . [HKEY_LOCAL_MACHINE\software\Classes\.*JPC*JP2*JFJPG*JPC*JPJPS*JPG*JPMAT*JPS*JPMIF*MAT*JPMNG*MIF*MAMTV*MNG*MIMVG*MTV*MNP7] @Class="REG_SZ" . [HKEY_LOCAL_MACHINE\software\Classes\.*JPG*JPC*JPJPS*JPG*JPMAT*JPS*JPMIF*MAT*JPMNG*MIF*MAMTV*MNG*MIMVG*MTV*MNP7] @Class="REG_SZ" . [HKEY_LOCAL_MACHINE\software\Classes\.*JPS*JPG*JPMAT*JPS*JPMIF*MAT*JPMNG*MIF*MAMTV*MNG*MIMVG*MTV*MNP7] @Class="REG_SZ" . [HKEY_LOCAL_MACHINE\software\Classes\.*PPM*PNM*PNPSD*PPM*PNPWP*PSD*PPRAD*PWP*PSRAS*RAD*PWRGB*RAS*RASCT*RGB*RASFW*SCT*RGSGI*SFW*SCSUN*SGI*SFTGA*SUN*SGTIF*TGA*SUTIM*TIF*TGVDA*TIM*TIVID*VDA*TIVIF*VID*VDWBMP] @Class="REG_SZ" . [HKEY_LOCAL_MACHINE\software\Classes\.*WPG*WMF*WBXBM*WPG*WMXCF*XBM*WPXPM*XCF*XBXWD*XPM*XCYUV*XWD*XP] @Class="REG_SZ" . [HKEY_LOCAL_MACHINE\software\Classes\.*XPM*XCF*XBXWD*XPM*XCYUV*XWD*XP] @Class="REG_SZ" . [HKEY_LOCAL_MACHINE\software\Classes\.*ARF*2BP*Y*ART*ARF*2BAVS*ART*ARBMP*AVS*ARCUR*BMP*AVCUT*CUR*BMDCM*CUT*CUDCX*DCM*CUDIB*DCX*DCEMF*DIB*DCEXF*EMF*DIFAX*EXF*EMFPX*FAX*EXFTS*FPX*FAGIF*FTS*FPI61*GIF*FTICO*I61*GIJFF*ICO*I6JP2*JFF*ICJPC*JP2*JFJPG*JPC*JPJPS*JPG*JPMAT*JPS*JPMIF*MAT*JPMNG*MIF*MAMTV*MNG*MIMVG*MTV*MNP7] @Class="REG_SZ" . [HKEY_LOCAL_MACHINE\software\Classes\.*ART*ARF*2BAVS*ART*ARBMP*AVS*ARCUR*BMP*AVCUT*CUR*BMDCM*CUT*CUDCX*DCM*CUDIB*DCX*DCEMF*DIB*DCEXF*EMF*DIFAX*EXF*EMFPX*FAX*EXFTS*FPX*FAGIF*FTS*FPI61*GIF*FTICO*I61*GIJFF*ICO*I6JP2*JFF*ICJPC*JP2*JFJPG*JPC*JPJPS*JPG*JPMAT*JPS*JPMIF*MAT*JPMNG*MIF*MAMTV*MNG*MIMVG*MTV*MNP7] @Class="REG_SZ" . [HKEY_LOCAL_MACHINE\software\Classes\.*PSD*PPM*PNPWP*PSD*PPRAD*PWP*PSRAS*RAD*PWRGB*RAS*RASCT*RGB*RASFW*SCT*RGSGI*SFW*SCSUN*SGI*SFTGA*SUN*SGTIF*TGA*SUTIM*TIF*TGVDA*TIM*TIVID*VDA*TIVIF*VID*VDWBMP] @Class="REG_SZ" . [HKEY_LOCAL_MACHINE\software\Classes\.*FTS*FPX*FAGIF*FTS*FPI61*GIF*FTICO*I61*GIJFF*ICO*I6JP2*JFF*ICJPC*JP2*JFJPG*JPC*JPJPS*JPG*JPMAT*JPS*JPMIF*MAT*JPMNG*MIF*MAMTV*MNG*MIMVG*MTV*MNP7] @Class="REG_SZ" . [HKEY_LOCAL_MACHINE\software\Classes\.*MTV*MNG*MIMVG*MTV*MNP7] @Class="REG_SZ" . [HKEY_LOCAL_MACHINE\software\Classes\.*CUR*BMP*AVCUT*CUR*BMDCM*CUT*CUDCX*DCM*CUDIB*DCX*DCEMF*DIB*DCEXF*EMF*DIFAX*EXF*EMFPX*FAX*EXFTS*FPX*FAGIF*FTS*FPI61*GIF*FTICO*I61*GIJFF*ICO*I6JP2*JFF*ICJPC*JP2*JFJPG*JPC*JPJPS*JPG*JPMAT*JPS*JPMIF*MAT*JPMNG*MIF*MAMTV*MNG*MIMVG*MTV*MNP7] @Class="REG_SZ" . [HKEY_LOCAL_MACHINE\software\Classes\.*CUT*CUR*BMDCM*CUT*CUDCX*DCM*CUDIB*DCX*DCEMF*DIB*DCEXF*EMF*DIFAX*EXF*EMFPX*FAX*EXFTS*FPX*FAGIF*FTS*FPI61*GIF*FTICO*I61*GIJFF*ICO*I6JP2*JFF*ICJPC*JP2*JFJPG*JPC*JPJPS*JPG*JPMAT*JPS*JPMIF*MAT*JPMNG*MIF*MAMTV*MNG*MIMVG*MTV*MNP7] @Class="REG_SZ" . [HKEY_LOCAL_MACHINE\software\Classes\.*SUN*SGI*SFTGA*SUN*SGTIF*TGA*SUTIM*TIF*TGVDA*TIM*TIVID*VDA*TIVIF*VID*VDWBMP] @Class="REG_SZ" . [HKEY_LOCAL_MACHINE\software\Classes\.*YUV*XWD*XP] @Class="REG_SZ" . [HKEY_LOCAL_MACHINE\software\Classes\.*AVS*ART*ARBMP*AVS*ARCUR*BMP*AVCUT*CUR*BMDCM*CUT*CUDCX*DCM*CUDIB*DCX*DCEMF*DIB*DCEXF*EMF*DIFAX*EXF*EMFPX*FAX*EXFTS*FPX*FAGIF*FTS*FPI61*GIF*FTICO*I61*GIJFF*ICO*I6JP2*JFF*ICJPC*JP2*JFJPG*JPC*JPJPS*JPG*JPMAT*JPS*JPMIF*MAT*JPMNG*MIF*MAMTV*MNG*MIMVG*MTV*MNP7] @Class="REG_SZ" . [HKEY_LOCAL_MACHINE\software\Classes\.*MVG*MTV*MNP7] @Class="REG_SZ" . [HKEY_LOCAL_MACHINE\software\Classes\.*PWP*PSD*PPRAD*PWP*PSRAS*RAD*PWRGB*RAS*RASCT*RGB*RASFW*SCT*RGSGI*SFW*SCSUN*SGI*SFTGA*SUN*SGTIF*TGA*SUTIM*TIF*TGVDA*TIM*TIVID*VDA*TIVIF*VID*VDWBMP] @Class="REG_SZ" . [HKEY_LOCAL_MACHINE\software\Classes\.*XWD*XPM*XCYUV*XWD*XP] @Class="REG_SZ" . [HKEY_LOCAL_MACHINE\software\Classes\.*EXF*EMF*DIFAX*EXF*EMFPX*FAX*EXFTS*FPX*FAGIF*FTS*FPI61*GIF*FTICO*I61*GIJFF*ICO*I6JP2*JFF*ICJPC*JP2*JFJPG*JPC*JPJPS*JPG*JPMAT*JPS*JPMIF*MAT*JPMNG*MIF*MAMTV*MNG*MIMVG*MTV*MNP7] @Class="REG_SZ" . [HKEY_LOCAL_MACHINE\software\Microsoft\Windows\CurrentVersion\Installer\UserData\LocalSystem\Components\€–€|ÿÿÿÿÀ•€|ù•9~*] "C040110900063D11C8EF10054038389C"="C?\\WINDOWS\\system32\\FM20ENU.DLL" . --------------------- DLLs chargées dans les processus actifs --------------------- . - - - - - - - > 'winlogon.exe'(800) c:\windows\system32\LMIinit.dll c:\windows\system32\VESWinlogon.dll c:\windows\system32\LMIRfsClientNP.dll . - - - - - - - > 'explorer.exe'(3648) c:\windows\system32\eappprxy.dll c:\windows\system32\webcheck.dll c:\windows\system32\WPDShServiceObj.dll c:\program files\WinSCP\DragExt.dll c:\windows\system32\PortableDeviceTypes.dll c:\windows\system32\PortableDeviceApi.dll c:\windows\system32\LMIRfsClientNP.dll . ------------------------ Autres processus actifs ------------------------ . c:\windows\system32\nvsvc32.exe c:\program files\Avira\AntiVir Desktop\avguard.exe c:\program files\Fichiers communs\Apple\Mobile Device Support\AppleMobileDeviceService.exe c:\program files\Bonjour\mDNSResponder.exe c:\program files\Avira\AntiVir Desktop\avshadow.exe c:\windows\eHome\ehRecvr.exe c:\windows\eHome\ehSched.exe c:\program files\Java\jre6\bin\jqs.exe c:\program files\LogMeIn\x86\RaMaint.exe c:\program files\LogMeIn\x86\LogMeIn.exe c:\progra~1\WinTV\TVServer\CAPTUR~4.EXE c:\program files\Fichiers communs\Microsoft Shared\VS7DEBUG\MDM.EXE c:\program files\CyberLink\Shared files\RichVideo.exe c:\program files\Sony\VAIO Event Service\VESMgr.exe c:\windows\ehome\mcrdsvc.exe c:\windows\system32\dllhost.exe c:\windows\system32\wscntfy.exe c:\windows\system32\ICO.EXE c:\windows\system32\RUNDLL32.EXE c:\program files\Apoint\Apntex.exe c:\program files\iPod\bin\iPodService.exe c:\windows\eHome\ehmsas.exe . ************************************************************************** . Heure de fin: 2011-07-20 11:58:51 - La machine a redémarré ComboFix-quarantined-files.txt 2011-07-20 09:58 . Avant-CF: 15 604 977 664 octets libres Après-CF: 15 939 067 904 octets libres . WindowsXP-KB310994-SP2-Pro-BootDisk-FRA.exe [boot loader] timeout=2 default=multi(0)disk(0)rdisk(0)partition(2)\WINDOWS [operating systems] c:\cmdcons\BOOTSECT.DAT="Microsoft Windows Recovery Console" /cmdcons UnsupportedDebug="do not select this" /debug multi(0)disk(0)rdisk(0)partition(2)\WINDOWS="Windows XP Media Center Edition" /noexecute=optin /fastdetect . - - End Of File - - 2E878E9C24B708206C1449517196CB73
- le 20 juillet 2011
- 6 réponses
PC infecté

jude18 a posté un sujet dans Analyses et éradication malwares

Bonjour en essayant de telecharger un logiciele pour mon iphone , j'ai installé une cochonnerie , et depuis beaucoup de sites internet ne fonctionnent plus et l'ordinateur rame , après un essai de désinfection avec ZHP Diag , ZHP Help Process et ZHP fix , il y a toujours des traces que je peux pas enlever . j'ai également utiulisé Malwarebytes anti malware , qui m'a supprimé certaine cochonnerie mais j'ai toujours des problèmes. Je vous laisse mon scan ZHP diag en esperant une aide de votre part , merci... Rapport de ZHPDiag v1.27.2347 par Nicolas Coolman, Update du 24/06/2011 Run by Julien at 20/07/2011 09:00:51 Web site : ZHPDiag Outil de diagnostic ---\\ Web Browser MSIE: Internet Explorer v8.0.6001.18702 MFIE: Mozilla Firefox 5.0 v GCIE: Google Chrome v12.0.742.122 (Defaut) ---\\ System Information Windows XP Professional Service Pack 3 (Build 2600) Processor: x86 Family 6 Model 15 Stepping 6, GenuineIntel Operating System: 32 Bits Boot mode: Normal (Normal boot) Total RAM: 2046 MB (57% free) System Restore: Désactivé (Disabled) System drive C: has 13 GB (26%) free of 50 GB ---\\ Logged in mode Computer Name: NOM-F002A4FFBF1 User Name: Julien All Users Names: SUPPORT_cbf0f968, SUPPORT_388945a0, LogMeInRemoteUser, Julien, JUJU, HelpAssistant, ASPNET, Administrateur, Unselected Option: O45,O61,O62,O65,O66,O82 Logged in as Administrator ---\\ Environnement Variables %AppData%=C:\Documents and Settings\Julien\Application Data %LocalAppData%=C:\Documents and Settings\Julien\Local Settings\Application Data %StartMenu%=C:\Documents and Settings\Julien\Menu Démarrer ---\\ DOS/Devices C:\ Hard drive, Flash drive, Thumb drive (Free 13 Go of 50 Go) D:\ Floppy drive, Flash card reader, USB Key (Not Inserted) E:\ Hard drive, Flash drive, Thumb drive (Free 5 Go of 67 Go) F:\ CD-ROM drive (Not Inserted) G:\ Hard drive, Flash drive, Thumb drive (Free 8 Go of 24 Go) I:\ CD-ROM drive (Not Inserted) ---\\ Security Center & Tools Informations [HKLM\SOFTWARE\Microsoft\Security Center] AntiVirusOverride: OK [HKLM\SOFTWARE\Microsoft\Security Center] AntiVirusDisableNotify: OK [HKLM\SOFTWARE\Microsoft\Security Center] FirewallDisableNotify: OK [HKLM\SOFTWARE\Microsoft\Security Center] FirewallOverride: OK [HKLM\SOFTWARE\Microsoft\Security Center] UpdatesDisableNotify: OK [HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\NOHIDDEN] CheckedValue: OK [HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\SHOWALL] CheckedValue: OK [HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Associations] Application: OK [HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Associations] Intl: OK [HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Associations] XMLLookup: OK ---\\ Recherche particulière de fichiers génériques [MD5.F2317622D29F9FF0F88AEECD5F60F0DD] - (.Microsoft Corporation - Explorateur Windows.) (.14/04/2008 03:34:03.) -- C:\WINDOWS\Explorer.exe [1037824] [MD5.42F5E14E33D79C236680468B1E4999F4] - (.Microsoft Corporation - Internet Extensions for Win32.) (.25/04/2011 17:06:11.) -- C:\WINDOWS\system32\wininet.dll [916480] [MD5.DD73D6B9F6B4CB630CF35B438B540174] - (.Microsoft Corporation - Application d'ouverture de session Windows NT.) (.14/04/2008 03:34:28.) -- C:\WINDOWS\system32\Winlogon.exe [512000] [MD5.9F3A2F5AA6875C72BF062C712CFA2674] - (.Microsoft Corporation - IDE/ATAPI Port Driver.) (.13/04/2008 19:40:30.) -- C:\WINDOWS\system32\drivers\atapi.sys [96512] [MD5.78A08DD6A8D65E697C18E1DB01C5CDCA] - (.Microsoft Corporation - NT File System Driver.) (.13/04/2008 20:15:53.) -- C:\WINDOWS\system32\drivers\ntfs.sys [574976] ---\\ Etat des fichiers cachés (Caché/Total) ~ Mes images (My Pictures) : 3/25 ~ Mes musiques (My Musics) : 6/117 ~ Mes Favoris (My Favorites) : 2/16 ~ Mes Documents (My Documents) : 33/784 ~ Mon Bureau (My Desktop) : 9/196 ~ Menu demarrer (Programs) : 5/33 ~ Dossier utilisateur (AppData) : 18/6105 ---\\ Processus lancés [MD5.6055E612CA4D1D773A6DC42EA1F014E8] - (.NVIDIA Corporation - NVIDIA Driver Helper Service, Version 191.5.) -- C:\WINDOWS\system32\nvsvc32.exe [172100] [MD5.A5BCBAF0477C4869B67E0195AEA4A9CD] - (.Avira GmbH - Antivirus Scheduler.) -- C:\Program Files\Avira\AntiVir Desktop\sched.exe [136360] [MD5.62F7FD637CE42ADDA3748E1B6E8780D2] - (.Avira GmbH - Antivirus On-Access Service.) -- C:\Program Files\Avira\AntiVir Desktop\avguard.exe [269480] [MD5.20F6F19FE9E753F2780DC2FA083AD597] - (.Apple Inc. - MobileDeviceService.) -- C:\Program Files\Fichiers communs\Apple\Mobile Device Support\AppleMobileDeviceService.exe [37664] [MD5.F2060A34C8A75BC24A9222EB4F8C07BD] - (.Apple Inc. - Bonjour Service.) -- C:\Program Files\Bonjour\mDNSResponder.exe [349472] [MD5.CDE000884FD7BAF0C1FDFE029B0891DE] - (.Avira GmbH - AntiVir shadow copy service.) -- C:\Program Files\Avira\AntiVir Desktop\avshadow.exe [76968] [MD5.95B725BEB4A465C5851D629CBE1FE132] - (...) -- C:\Program Files\Dokan\DokanLibrary\mounter.exe [22016] [MD5.5D1347AA5AE6E2F77D7F4F8372D95AC9] - (.Microsoft Corporation - Media Center Receiver Service.) -- C:\WINDOWS\eHome\ehRecvr.exe [237568] [MD5.980EEEA91776357518892C5544768E2B] - (.Microsoft Corporation - Service de planification Media Center.) -- C:\WINDOWS\eHome\ehSched.exe [103424] [MD5.1DBBF9BE473F6CA2F2F4182FCCF563DC] - (.Hauppauge Computer Works - Hauppauge TV Server.) -- C:\PROGRA~1\WinTV\TVServer\HAUPPA~1.EXE [602624] [MD5.126A16F569122AE00AD3D12EF831D651] - (.Sun Microsystems, Inc. - Java Quick Starter Service.) -- c:\Program Files\Java\jre6\bin\jqs.exe [153376] [MD5.C6A4FA0BEED6E4198DDD8B8EE136CF80] - (.LogMeIn, Inc. - LMIGuardianSvc.) -- C:\Program Files\LogMeIn\x86\LMIGuardianSvc.exe [374152] [MD5.6295A19E8A6486FF8A13A1B2F4E461E0] - (.LogMeIn, Inc. - LogMeIn Maintenance Service.) -- C:\Program Files\LogMeIn\x86\RaMaint.exe [136584] [MD5.432618FA75B61059D2C57D6A7E55147A] - (.LogMeIn, Inc. - LogMeIn.) -- C:\Program Files\LogMeIn\x86\LogMeIn.exe [390528] [MD5.11F714F85530A2BD134074DC30E99FCA] - (.Microsoft Corporation - Machine Debug Manager.) -- C:\Program Files\Fichiers communs\Microsoft Shared\VS7DEBUG\MDM.EXE [322120] [MD5.18B5B644BD83C4F0DF886664AACB241C] - (.Pas de propriétaire - RichVideo Module.) -- C:\Program Files\CyberLink\Shared files\RichVideo.exe [241734] [MD5.7CF36C93F3D14D31AB50AF20C4CCA608] - (.Pas de propriétaire - CLCapSvc Module.) -- C:\Program Files\CyberLink\TV Enhance\Kernel\TV\TVECapSvc.exe [372831] [MD5.1D5425783D92F34C63075FA0C4E2C3D5] - (.Sony Corporation - VAIO Event Service (Service Module).) -- C:\Program Files\Sony\VAIO Event Service\VESMgr.exe [176128] [MD5.62BB79160F86CD962F312C68C6239BFD] - (.Microsoft Corporation - Windows Update.) -- C:\WINDOWS\system32\wuauclt.exe [53472] [MD5.BFC8931821EEAB762A84A8F7DD9EA8CD] - (.Pas de propriétaire - CLSched Module.) -- C:\Program Files\CyberLink\TV Enhance\Kernel\TV\TVESched.exe [184413] [MD5.26187C6CE31B7730521936DE2B6F293D] - (.Alps Electric Co., Ltd. - Alps Pointing-device Driver.) -- C:\Program Files\Apoint\Apoint.exe [118784] [MD5.9C69E6A25F5500501B14AF43311F8D8B] - (.Microsoft Corporation - Media Center Tray Applet.) -- C:\WINDOWS\ehome\ehtray.exe [64512] [MD5.AD2FEAE5DA83BC4B80299FF68F9E6C45] - (.Primax Electronics Ltd. - Mouse Suite 98 Daemon.) -- C:\WINDOWS\system32\ICO.EXE [45056] [MD5.93EEFBC237ADFC406F52EE56D97F784B] - (.Sony Corporation - Pas de description.) -- C:\Program Files\Sony\ISB Utility\ISBMgr.exe [32768] [MD5.53DD7F282907634C269F54810ED0740C] - (.Sony Corporation - Wireless Switch Setting Utility.) -- C:\Program Files\Sony\Wireless Switch Setting Utility\Switcher.exe [176128] [MD5.93AD0B78C7357A05F50E594EC7C22300] - (...) -- C:\WINDOWS\system32\RUNDLL32.EXE [33792] [MD5.1C3A0ABC807DE79F667EE5C0B9C01D0B] - (.Sony Corporation - SPM Module.) -- C:\Program Files\Sony\VAIO Power Management\SPMgr.exe [217088] [MD5.9D5E8B45BD348DF0882C69EED0E83111] - (.Avira GmbH - Antivirus System Tray Tool.) -- C:\Program Files\Avira\AntiVir Desktop\avgnt.exe [281768] [MD5.53D96678FB89F056D5285101481297D9] - (.Apple Inc. - iTunesHelper.) -- C:\Program Files\iTunes\iTunesHelper.exe [421160] [MD5.95D2D473B44D5245F87FCDD6646A89F7] - (.Yuna Software - Messenger Plus! 5.) -- C:\Program Files\Yuna Software\Messenger Plus!\PlusService.exe [800768] [MD5.234051C0D242A6F4A79AE5212C1323D4] - (.LogMeIn, Inc. - LogMeIn Desktop Application.) -- C:\Program Files\LogMeIn\x86\LogMeInSystray.exe [63048] [MD5.0AA31DE4E40861EAF259D194A58D4317] - (.Alps Electric Co., Ltd. - Alps Pointing-device Driver for Windows NT/.) -- C:\Program Files\Apoint\Apntex.exe [45056] [MD5.DAEFB050AC8FEE4F1097FCF7CB97220E] - (.Microsoft Corporation - Media Center Media Status Aggregator Servic.) -- C:\WINDOWS\eHome\ehmsas.exe [46592] [MD5.B84A28B3984185EDA8867541AF14CDDB] - (.Apple Inc. - iPodService Module (32-bit).) -- C:\Program Files\iPod\bin\iPodService.exe [820520] [MD5.9205217294F9F1A182D371D666B66B58] - (.Nicolas Coolman - Diagnostic Tool.) -- C:\Program Files\ZebHelpProcess\ZHPDiag.exe [661504] [MD5.63E7F094ABC247748F4CF6CAC16711E7] - (.Glarysoft Ltd - Glary Utilities.) -- C:\Program Files\Glary Utilities\Integrator.exe [500024] [MD5.73708319A8673E43670A1A334B2D96AC] - (.Google Inc. - Google Chrome.) -- C:\Documents and Settings\Julien\Local Settings\Application Data\Google\Chrome\Application\chrome.exe [1012792] ---\\ Mozilla Firefox, Plugins,Demarrage,Recherche,Extensions (P2,M0,M1,M2,M3) C:\Documents and Settings\Julien\Application Data\Mozilla\Firefox\Profiles\6j42v6nf.default\prefs.js M3 - MFPP: Plugins - [Julien] -- C:\Program Files\Mozilla FireFox\searchplugins\amazon-france.xml M3 - MFPP: Plugins - [Julien] -- C:\Program Files\Mozilla FireFox\searchplugins\bing.xml M3 - MFPP: Plugins - [Julien] -- C:\Program Files\Mozilla FireFox\searchplugins\cnrtl-tlfi-fr.xml M3 - MFPP: Plugins - [Julien] -- C:\Program Files\Mozilla FireFox\searchplugins\eBay-france.xml M3 - MFPP: Plugins - [Julien] -- C:\Program Files\Mozilla FireFox\searchplugins\google.xml M3 - MFPP: Plugins - [Julien] -- C:\Program Files\Mozilla FireFox\searchplugins\wikipedia-fr.xml M3 - MFPP: Plugins - [Julien] -- C:\Program Files\Mozilla FireFox\searchplugins\yahoo-france.xml M3 - MFPP: Plugins - [Julien] -- C:\Program Files\Mozilla FireFox\searchplugins\yahoo.xml P2 - FPN:Firefox Plugin Navigator . (.Microsoft Corporation - Office Plugin for Netscape Navigator.) -- C:\Program Files\Mozilla Firefox\Plugins\NPOFFICE.DLL P2 - FPN:Firefox Plugin Navigator . (.Adobe Systems Inc. - Adobe PDF Plug-In For Firefox and Netscape 10.1.0.) -- C:\Program Files\Mozilla Firefox\Plugins\nppdf32.dll P2 - FPN:Firefox Plugin Navigator . (.Apple Inc. - The QuickTime Plugin allows you to view a wide variety of multimedia c.) -- C:\Program Files\Mozilla Firefox\Plugins\npqtplugin.dll P2 - FPN:Firefox Plugin Navigator . (.Apple Inc. - The QuickTime Plugin allows you to view a wide variety of multimedia c.) -- C:\Program Files\Mozilla Firefox\Plugins\npqtplugin2.dll P2 - FPN:Firefox Plugin Navigator . (.Apple Inc. - The QuickTime Plugin allows you to view a wide variety of multimedia c.) -- C:\Program Files\Mozilla Firefox\Plugins\npqtplugin3.dll P2 - FPN:Firefox Plugin Navigator . (.Apple Inc. - The QuickTime Plugin allows you to view a wide variety of multimedia c.) -- C:\Program Files\Mozilla Firefox\Plugins\npqtplugin4.dll P2 - FPN:Firefox Plugin Navigator . (.Apple Inc. - The QuickTime Plugin allows you to view a wide variety of multimedia c.) -- C:\Program Files\Mozilla Firefox\Plugins\npqtplugin5.dll P2 - FPN:Firefox Plugin Navigator . (.Apple Inc. - The QuickTime Plugin allows you to view a wide variety of multimedia c.) -- C:\Program Files\Mozilla Firefox\Plugins\npqtplugin6.dll P2 - FPN:Firefox Plugin Navigator . (.Apple Inc. - The QuickTime Plugin allows you to view a wide variety of multimedia c.) -- C:\Program Files\Mozilla Firefox\Plugins\npqtplugin7.dll P2 - FPN: [HKLM] [@Apple.com/iTunes,version=1.0] - (...) -- C:\Program Files\iTunes\Mozilla Plugins\npitunes.dll P2 - FPN: [HKLM] [@java.com/JavaPlugin] - (.Sun Microsystems, Inc. - Next Generation Java Plug-in 1.6.0_21 for Mozilla browsers.) -- c:\Program Files\Java\jre6\bin\new_plugin\npjp2.dll P2 - FPN: [HKLM] [@ma-config.com/HardwareDetection] - (.Cybelsoft - Plugin NPAPI Ma-Config.com.) -- C:\Program Files\ma-config.com\nphardwaredetection.dll P2 - FPN: [HKLM] [@Microsoft.com/NpCtrl,version=1.0] - (. Microsoft Corporation - 4.0.60531.0.) -- C:\Program Files\Microsoft Silverlight\4.0.60531.0\npctrl.dll P2 - FPN: [HKLM] [@microsoft.com/WPF,version=3.5] - (.Microsoft Corporation - Windows Presentation Foundation (WPF) plug-in for Mozilla browsers.) -- C:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll P2 - FPN: [HKLM] [Adobe Reader] - (.Adobe Systems Inc. - Adobe PDF Plug-In For Firefox and Netscape 10.1.0.) -- C:\Program Files\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll P2 - FPN: [HKCU] [@tools.google.com/Google Update;version=3] - (.Google Inc. - Google Update.) -- C:\Documents and Settings\Julien\Local Settings\Application Data\Google\Update\1.3.21.57\npGoogleUpdate3.dll P2 - FPN: [HKCU] [@tools.google.com/Google Update;version=9] - (.Google Inc. - Google Update.) -- C:\Documents and Settings\Julien\Local Settings\Application Data\Google\Update\1.3.21.57\npGoogleUpdate3.dll M2 - MFEP: prefs.js [Julien - 6j42v6nf.default\engine@conduit.com] [] Conduit Engine v3.2.5.2 (.Conduit Ltd..) M2 - MFEP: prefs.js [Julien - 6j42v6nf.default\{20a82645-c095-46ed-80e3-08825760534b}] [MicrosoftCG] Microsoft .NET Framework Assistant v1.2.1 (.Microsoft.) M2 - MFEP: prefs.js [Julien - 6j42v6nf.default\{3d4d238c-9c48-47cd-a95c-53259acf9e56}] [] Messenger Plus FR Community Toolbar v3.5.0.12 (.Conduit Ltd..) M2 - MFEP: prefs.js [Julien - 6j42v6nf.default\{97A78363-B868-4B48-AC91-A783A31215AF}] [] FaceSmooch v1.0.2 (..) M2 - MFEP: prefs.js [Julien - 6j42v6nf.default\{ACAA314B-EEBA-48e4-AD47-84E31C44796C}] [] DVDVideoSoft Menu v1.0.2 (.Copyright © 2010 DVDVideoSoft.) ---\\ Google Chrome, Démarrage,Recherche,Extensions (G0,G1,G2) C:\Documents and Settings\Julien\Local Settings\Application Data\Google\Chrome\User Data\Default\Preferences G1 - GCS: Preference [user Data\Default] None G0 - GCSP: Preference [user Data\Default][HomePage] Google G0 - GCSP: Preference [user Data\Default] http://search.conduit.com ---\\ Internet Explorer, Démarrage,Recherche,URLSearchHook, Phishing (R0,R1,R3,R4) R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.club-vaio.com R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = Search Microsoft.com R0 - HKUS\S-1-5-21-1002157844-932473975-2733897562-1006\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.club-vaio.com R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = Google R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = Search Microsoft.com R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = Search Microsoft.com R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = Search Microsoft.com R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Extensions Off Page = about:noadd-ons R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Security Risk Page = about:securityrisk R1 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant = Google R1 - HKUS\S-1-5-21-1002157844-932473975-2733897562-1006\Software\Microsoft\Internet Explorer\Main,Search Page = Google R3 - URLSearchHook: Microsoft Url Search Hook - {CFBFAE00-17A6-11D0-99CB-00C04FD64497} . (.Microsoft Corporation - Internet Explorer.) (8.00.6001.19072 (longhorn_ie8_gdr.110420-1700)) -- C:\WINDOWS\system32\ieframe.dll R3 - URLSearchHook: FroggyBoss Class - {539F76FD-084E-4858-86D5-62F02F54AE86} . (.TODO: <???????? ????????> - TODO: <???????? ?????>.) (1.0.0.1) -- C:\Program Files\Minibar\Froggy.dll ---\\ Internet Explorer, Proxy Management (R5) R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyServer = no key R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyEnable = 0 R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,MigrateProxy = 1 R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,EnableHttp1_1 = 1 R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,AutoConfigProxy = wininet.dll ---\\ ---\\ Modification d'une valeur Ini (Changed inifile value, mapped to Registry) (F2) F2 - REG:system.ini: UserInit=C:\WINDOWS\system32\userinit.exe, F2 - REG:system.ini: VMApplet=rundll32 shell32,Control_RunDLL "sysdm.cpl" ---\\ Browser Helper Objects de navigateur (O2) O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} . (.Adobe Systems Incorporated - Adobe PDF Helper for Internet Explorer.) -- C:\Program Files\Fichiers communs\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll O2 - BHO: (no name) - {259F616C-A300-44F5-B04A-ED001A26C85C} Clé orpheline O2 - BHO: IE BHO Utility - {5AB7104A-B71F-49AD-9154-F7F8806AE848} . (.Surf Canyon Incorporated - Fast Search for Internet Explorer.) -- C:\Program Files\Surf Canyon\surfcanyon.dll O2 - BHO: (no name) - {5C255C8A-E604-49b4-9D64-90988571CECB} Clé orpheline O2 - BHO: MrFroggy - {856E12B5-22D7-4E22-9ACA-EA9A008DD65B} . (.TODO: <???????? ????????> - TODO: <???????? ?????>.) -- C:\Program Files\Minibar\Froggy.dll O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} . (.Microsoft Corporation - WindowsLiveLogin.dll.) -- C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll O2 - BHO: Minibar BHO - {AA74D58F-ACD0-450D-A85E-6C04B171C044} . (.KangoExtensions - Kango.) -- C:\Program Files\Minibar\Kango.dll O2 - BHO: Java Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} . (.Sun Microsystems, Inc. - Java Platform SE binary.) -- c:\Program Files\Java\jre6\bin\jp2ssv.dll O2 - BHO: JQSIEStartDetectorImpl - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} . (.Sun Microsystems, Inc. - Java Quick Starter binary.) -- c:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll ---\\ ---\\ Applications démarrées par registre & par dossier (O4) O4 - HKLM\..\Run: [Apoint] . (.Alps Electric Co., Ltd. - Alps Pointing-device Driver.) -- C:\Program Files\Apoint\Apoint.exe O4 - HKLM\..\Run: [ehTray] . (.Microsoft Corporation - Media Center Tray Applet.) -- C:\WINDOWS\ehome\ehtray.exe O4 - HKLM\..\Run: [Mouse Suite 98 Daemon] . (.Primax Electronics Ltd. - Mouse Suite 98 Daemon.) -- C:\Windows\System32\ICO.exe O4 - HKLM\..\Run: [iSBMgr.exe] . (.Sony Corporation - Pas de description.) -- C:\Program Files\Sony\ISB Utility\ISBMgr.exe O4 - HKLM\..\Run: [switcher.exe] . (.Sony Corporation - Wireless Switch Setting Utility.) -- C:\Program Files\Sony\Wireless Switch Setting Utility\Switcher.exe O4 - HKLM\..\Run: [NvCplDaemon] . (.NVIDIA Corporation - NVIDIA Display Properties Extension.) -- C:\WINDOWS\system32\NvCpl.dll O4 - HKLM\..\Run: [NvMediaCenter] . (.NVIDIA Corporation - NVIDIA Media Center Library.) -- C:\WINDOWS\system32\NvMcTray.dll O4 - HKLM\..\Run: [sonyPowerCfg] . (.Sony Corporation - SPM Module.) -- C:\Program Files\Sony\VAIO Power Management\SPMgr.exe O4 - HKLM\..\Run: [avgnt] . (.Avira GmbH - Antivirus System Tray Tool.) -- C:\Program Files\Avira\AntiVir Desktop\avgnt.exe O4 - HKLM\..\Run: [iTunesHelper] . (.Apple Inc. - iTunesHelper.) -- C:\Program Files\iTunes\iTunesHelper.exe O4 - HKLM\..\Run: [PlusService] . (.Yuna Software - Messenger Plus! 5.) -- C:\Program Files\Yuna Software\Messenger Plus!\PlusService.exe O4 - HKLM\..\Run: [LogMeIn GUI] . (.LogMeIn, Inc. - LogMeIn Desktop Application.) -- C:\Program Files\LogMeIn\x86\LogMeInSystray.exe O4 - HKLM\..\Run: [QuickTime Task] . (.Apple Inc. - QuickTime Task.) -- C:\Program Files\QuickTime\qttask.exe O4 - HKCU\..\Run: [msnmsgr] . (.Microsoft Corporation - Windows Live Messenger.) -- C:\Program Files\Windows Live\Messenger\msnmsgr.exe O4 - HKCU\..\Run: [ctfmon.exe] . (.Microsoft Corporation - CTF Loader.) -- C:\WINDOWS\system32\ctfmon.exe O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] . (.Microsoft Corporation - CTF Loader.) -- C:\WINDOWS\system32\CTFMON.exe O4 - HKUS\S-1-5-18\..\Run: [8DDYX0ZBPZ] . (.Sun Microsystems, Inc. - MicroX0 setup c.) -- C:\WINDOWS\TEMP\Mph.exe O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] . (.Microsoft Corporation - CTF Loader.) -- C:\WINDOWS\system32\CTFMON.exe O4 - HKUS\S-1-5-18\..\Run: [8DDYX0ZBPZ] . (.Sun Microsystems, Inc. - MicroX0 setup c.) -- C:\WINDOWS\TEMP\Mph.exe O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] . (.Microsoft Corporation - CTF Loader.) -- C:\WINDOWS\system32\CTFMON.exe O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] . (.Microsoft Corporation - CTF Loader.) -- C:\WINDOWS\system32\CTFMON.exe O4 - HKUS\S-1-5-21-1002157844-932473975-2733897562-1006\..\Run: [msnmsgr] . (.Microsoft Corporation - Windows Live Messenger.) -- C:\Program Files\Windows Live\Messenger\msnmsgr.exe O4 - HKUS\S-1-5-21-1002157844-932473975-2733897562-1006\..\Run: [ctfmon.exe] . (.Microsoft Corporation - CTF Loader.) -- C:\WINDOWS\system32\ctfmon.exe ---\\ ---\\ Autres liens utilisateurs (O4) O4 - Global Startup: C:\Documents And Settings\All Users\Menu Démarrer\Programmes\Adobe Reader X.lnk . (...) -- C:\WINDOWS\Installer\{AC76BA86-7AD7-1036-7B44-AA1000000001}\SC_Reader.ico O4 - Global Startup: C:\Documents And Settings\All Users\Menu Démarrer\Programmes\Mozilla Firefox.lnk . (.Mozilla Corporation.) -- C:\Program Files\Mozilla Firefox\firefox.exe O4 - Global Startup: C:\Documents And Settings\Julien\Menu Démarrer\Programmes\Assistance à distance.lnk . (.Microsoft Corporation.) -- C:\WINDOWS\system32\rcimlby.exe O4 - Global Startup: C:\Documents And Settings\Julien\Menu Démarrer\Programmes\Badoo Desktop.lnk . (.Badoo.) -- C:\Documents and Settings\All Users\Application Data\Badoo\Badoo Desktop\1.5.3.949\Badoo.Desktop.exe O4 - Global Startup: C:\Documents And Settings\Julien\Menu Démarrer\Programmes\Outlook Express.lnk . (.Microsoft Corporation.) -- C:\Program Files\Outlook Express\msimn.exe O4 - Global Startup: C:\Documents And Settings\Julien\Menu Démarrer\Programmes\Windows Media Player.lnk . (.Microsoft Corporation.) -- C:\Program Files\Windows Media Player\wmplayer.exe ---\\ Lignes supplémentaires dans le menu contextuel d'Internet Explorer (O8) O8 - Extra context menu item: E&xporter vers Microsoft Excel . (.Microsoft Corporation - Microsoft Office Excel.) -- C:\PROGRA~1\MICROS~4\OFFICE11\EXCEL.exe O8 - Extra context menu item: Free YouTube to MP3 Converter . (...) -- C:\Documents and Settings\Julien\Application Data\DVDVideoSoftIEHelpers\freeyoutubetomp3converter.htm ---\\ Boutons situés sur la barre d'outils principale d'Internet Explorer (O9) O9 - Extra button: Recherche - {92780B25-18CC-41C8-B9BE-3C9C571A8263} . (...) -- C:\PROGRA~1\MICROS~4\OFFICE11\REFBARH.ICO O9 - Extra button: Recherche - {AAA38851-3CFF-475F-B5E0-720D3645E4A5} . (...) -- C:\Program Files\Minibar\icons\icon16.ico O9 - Extra button: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} . (...) -- C:\Program Files\Minibar\icons\icon16.ico O9 - Extra button: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} . (.Microsoft Corporation - Windows Messenger.) -- C:\Program Files\Messenger\msmsgs.exe ---\\ Winsock hijacker (Layered Service Provider) (O10) O10 - WLSP:\000000000001\Winsock LSP File . (.Microsoft Corporation - Fournisseur de service Sockets 2.0 de Microsoft Windows.) -- C:\WINDOWS\system32\mswsock.dll O10 - WLSP:\000000000002\Winsock LSP File . (.Microsoft Corporation - LDAP RnR Provider DLL.) -- C:\WINDOWS\system32\winrnr.dll O10 - WLSP:\000000000003\Winsock LSP File . (.Microsoft Corporation - Fournisseur de service Sockets 2.0 de Microsoft Windows.) -- C:\WINDOWS\system32\mswsock.dll O10 - WLSP:\000000000004\Winsock LSP File . (.Apple Inc. - Bonjour Namespace Provider.) -- C:\Program Files\Bonjour\mdnsNSP.dll ---\\ Piratage de l'Option 'Rétablir les paramètres Web' (O14) O14 - IERESET.INF: START_PAGE_URL=START_PAGE_URL=http://www.club-vaio.com/fr/ ---\\ Objets ActiveX (Downloaded Program Files)(O16) O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) - http://update.microsoft.com/windowsupdate/v6/V5Controls/en/x86/client/wuweb_site.cab?1282472937812 O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} (MUWebControl Class) - http://www.update.microsoft.com/microsoftupdate/v6/V5Controls/en/x86/client/muweb_site.cab?1282481926843 O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab ---\\ Modification Domaine/Adresses DNS (O17) O17 - HKLM\System\CCS\Services\Tcpip\..\{9C87B6EB-C703-440E-983E-1BF08B38F004}: DhcpNameServer = 192.168.1.254 O17 - HKLM\System\CS1\Services\Tcpip\..\{9C87B6EB-C703-440E-983E-1BF08B38F004}: DhcpNameServer = 192.168.1.254 O17 - HKLM\System\CS3\Services\Tcpip\..\{9C87B6EB-C703-440E-983E-1BF08B38F004}: DhcpNameServer = 192.168.1.254 O17 - HKLM\System\CCS\Services\Tcpip\..\{9C87B6EB-C703-440E-983E-1BF08B38F004}: DhcpDomain = lan O17 - HKLM\System\CS1\Services\Tcpip\..\{9C87B6EB-C703-440E-983E-1BF08B38F004}: DhcpDomain = lan O17 - HKLM\System\CS3\Services\Tcpip\..\{9C87B6EB-C703-440E-983E-1BF08B38F004}: DhcpDomain = lan O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.254 ---\\ Valeur de Registre AppInit_DLLs et sous-clés Winlogon Notify (autorun) (O20) O20 - Winlogon Notify: crypt32chain . (.Microsoft Corporation - Crypto API32.) -- C:\Windows\System32\crypt32.dll O20 - Winlogon Notify: cryptnet . (.Microsoft Corporation - Crypto Network Related API.) -- C:\Windows\System32\cryptnet.dll O20 - Winlogon Notify: cscdll . (.Microsoft Corporation - Agent réseau hors connexion.) -- C:\Windows\System32\cscdll.dll O20 - Winlogon Notify: dimsntfy . (.Microsoft Corporation - DIMS Notification Handler.) -- C:\WINDOWS\System32\dimsntfy.dll O20 - Winlogon Notify: LMIinit . (.LogMeIn, Inc. - LogMeIn Remote Control Helper.) -- C:\Windows\System32\LMIinit.dll O20 - Winlogon Notify: ScCertProp . (.Microsoft Corporation - DLL commune de réception des notifications.) -- C:\Windows\System32\wlnotify.dll O20 - Winlogon Notify: Schedule . (.Microsoft Corporation - DLL commune de réception des notifications.) -- C:\Windows\System32\wlnotify.dll O20 - Winlogon Notify: sclgntfy . (.Microsoft Corporation - DLL secondaire de notification de service d.) -- C:\Windows\System32\sclgntfy.dll O20 - Winlogon Notify: SensLogn . (.Microsoft Corporation - DLL commune de réception des notifications.) -- C:\Windows\System32\WlNotify.dll O20 - Winlogon Notify: termsrv . (.Microsoft Corporation - DLL commune de réception des notifications.) -- C:\Windows\System32\wlnotify.dll O20 - Winlogon Notify: VESWinlogon . (.Sony Corporation - VAIO Event Service (Winlogon Notification M.) -- C:\Windows\System32\VESWinlogon.dll O20 - Winlogon Notify: wlballoon . (.Microsoft Corporation - DLL commune de réception des notifications.) -- C:\Windows\System32\wlnotify.dll ---\\ Clé de Registre autorun ShellServiceObjectDelayLoad (SSO/SSODL) (O21) O21 - SSODL: PostBootReminder - {7849596a-48ea-486e-8937-a2a3009f31a9} . (.Microsoft Corporation - DLL commune du shell Windows.) -- C:\WINDOWS\system32\SHELL32.dll O21 - SSODL: CDBurn - {fbeb8a05-beee-4442-804e-409d6c4515e9} . (.Microsoft Corporation - DLL commune du shell Windows.) -- C:\WINDOWS\system32\SHELL32.dll O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} . (.Microsoft Corporation - Web Site Monitor.) -- C:\WINDOWS\system32\webcheck.dll O21 - SSODL: SysTray - {35CEC8A3-2BE6-11D2-8773-92E220524153} . (.Microsoft Corporation - Objet du service d'environnement Systray.) -- C:\WINDOWS\system32\stobject.dll O21 - SSODL: WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} . (.Microsoft Corporation - Windows Portable Device Shell Service Objec.) -- C:\WINDOWS\system32\WPDShServiceObj.dll ---\\ Clé de Registre autorun SharedTaskScheduler (STS) (O22) O22 - SharedTaskScheduler: (no name) - {438755C2-A8BA-11D1-B96B-00A0C90312E1} . (.Microsoft Corporation - Bibliothèque de l'interface utilisateur du.) -- C:\WINDOWS\system32\browseui.dll O22 - SharedTaskScheduler: (no name) - {8C7461EF-2B13-11d2-BE35-3078302C2030} . (.Microsoft Corporation - Bibliothèque de l'interface utilisateur du.) -- C:\WINDOWS\system32\browseui.dll ---\\ Liste des services NT non Microsoft et non désactivés (O23) O23 - Service: Avira AntiVir Planificateur (AntiVirSchedulerService) . (.Avira GmbH - Antivirus Scheduler.) - C:\Program Files\Avira\AntiVir Desktop\sched.exe O23 - Service: Avira AntiVir Guard (AntiVirService) . (.Avira GmbH - Antivirus On-Access Service.) - C:\Program Files\Avira\AntiVir Desktop\avguard.exe O23 - Service: Apple Mobile Device (Apple Mobile Device) . (.Apple Inc. - MobileDeviceService.) - C:\Program Files\Fichiers communs\Apple\Mobile Device Support\AppleMobileDeviceService.exe O23 - Service: Service Bonjour (Bonjour Service) . (.Apple Inc. - Bonjour Service.) - C:\Program Files\Bonjour\mDNSResponder.exe O23 - Service: DokanMounter (DokanMounter) . (...) - C:\Program Files\Dokan\DokanLibrary\mounter.exe O23 - Service: HauppaugeTVServer (HauppaugeTVServer) . (.Hauppauge Computer Works - Hauppauge TV Server.) - C:\PROGRA~1\WinTV\TVServer\HAUPPA~1.exe O23 - Service: Java Quick Starter (JavaQuickStarterService) . (.Sun Microsystems, Inc. - Java Quick Starter Service.) - c:\Program Files\Java\jre6\bin\jqs.exe O23 - Service: LMIGuardianSvc (LMIGuardianSvc) . (.LogMeIn, Inc. - LMIGuardianSvc.) - C:\Program Files\LogMeIn\x86\LMIGuardianSvc.exe O23 - Service: LogMeIn Maintenance Service (LMIMaint) . (.LogMeIn, Inc. - LogMeIn Maintenance Service.) - C:\Program Files\LogMeIn\x86\RaMaint.exe O23 - Service: LogMeIn (LogMeIn) . (.LogMeIn, Inc. - LogMeIn.) - C:\Program Files\LogMeIn\x86\LogMeIn.exe O23 - Service: NVIDIA Display Driver Service (NVSvc) . (.NVIDIA Corporation - NVIDIA Driver Helper Service, Version 191.5.) - C:\WINDOWS\system32\nvsvc32.exe O23 - Service: Cyberlink RichVideo Service(CRVS) (RichVideo) . (.Pas de propriétaire - RichVideo Module.) - C:\Program Files\CyberLink\Shared files\RichVideo.exe O23 - Service: TVEnhance Background Capture Service (TBCS) (TVECapSvc) . (.Pas de propriétaire - CLCapSvc Module.) - C:\Program Files\CyberLink\TV Enhance\Kernel\TV\TVECapSvc.exe O23 - Service: TVEnhance Task Scheduler (TTS)) (TVESched) . (.Pas de propriétaire - CLSched Module.) - C:\Program Files\CyberLink\TV Enhance\Kernel\TV\TVESched.exe O23 - Service: VAIO Event Service (VAIO Event Service) . (.Sony Corporation - VAIO Event Service (Service Module).) - C:\Program Files\Sony\VAIO Event Service\VESMgr.exe O23 - Service: {49DE1C67-83F8-4102-99E0-C16DCC7EEC796} ({49DE1C67-83F8-4102-99E0-C16DCC7EEC796}) . (.Cyberlink Corp. - FCL Driver.) - C:\Program Files\CyberLink\PlayMovie\000.fcl ---\\ Enumération Active Desktop & MHTML Editor (O24) O24 - Default MHTML Editor: Last - .(.Microsoft Corporation - Microsoft Office Word.) - C:\Program Files\Microsoft Office\OFFICE11\WINWORD.exe ---\\ Tâches planifiées en automatique (O39) O39 - APT:Automatic Planified Task - C:\WINDOWS\Tasks\AppleSoftwareUpdate.job O39 - APT:Automatic Planified Task - C:\WINDOWS\Tasks\GlaryInitialize.job O39 - APT:Automatic Planified Task - C:\WINDOWS\Tasks\GoogleUpdateTaskUserS-1-5-21-1002157844-932473975-2733897562-1006Core.job O39 - APT:Automatic Planified Task - C:\WINDOWS\Tasks\GoogleUpdateTaskUserS-1-5-21-1002157844-932473975-2733897562-1006UA.job [MD5.187E0D2AB859AD03393DDD731076BE81] [APT] [AppleSoftwareUpdate] (.Apple Inc..) -- C:\Program Files\Apple Software Update\SoftwareUpdate.exe [MD5.A20E95E94743C7DAA5483FEFB05B02A8] [APT] [GlaryInitialize] (.Glarysoft Ltd.) -- C:\Program Files\Glary Utilities\initialize.exe [MD5.F02A533F517EB38333CB12A9E8963773] [APT] [GoogleUpdateTaskUserS-1-5-21-1002157844-932473975-2733897562-1006Core] (.Google Inc..) -- C:\Documents and Settings\Julien\Local Settings\Application Data\Google\Update\GoogleUpdate.exe [MD5.F02A533F517EB38333CB12A9E8963773] [APT] [GoogleUpdateTaskUserS-1-5-21-1002157844-932473975-2733897562-1006UA] (.Google Inc..) -- C:\Documents and Settings\Julien\Local Settings\Application Data\Google\Update\GoogleUpdate.exe ---\\ Pilotes lancés au démarrage (O41) O41 - Driver: (AFD) . (.Microsoft Corporation - Ancillary Function Driver for WinSock.) - C:\WINDOWS\system32\drivers\afd.sys O41 - Driver: (avgio) . (.Avira GmbH - Avira AntiVir Support for Minifilter.) - C:\Program Files\Avira\AntiVir Desktop\avgio.sys O41 - Driver: (avipbb) . (.Avira GmbH - Avira Driver for Security Enhancement.) - C:\WINDOWS\System32\DRIVERS\avipbb.sys O41 - Driver: (Cdrom) . (.Microsoft Corporation - SCSI CD-ROM Driver.) - C:\WINDOWS\System32\DRIVERS\cdrom.sys O41 - Driver: (DMICall) . (.Sony Corporation - Windows 2000 DMI Call Kernel Driver.) - C:\WINDOWS\System32\DRIVERS\DMICall.sys O41 - Driver: (i8042prt) . (.Microsoft Corporation - Pilote de port i8042.) - C:\WINDOWS\System32\DRIVERS\i8042prt.sys O41 - Driver: (Imapi) . (.Microsoft Corporation - IMAPI Kernel Driver.) - C:\WINDOWS\System32\DRIVERS\imapi.sys O41 - Driver: (intelppm) . (.Microsoft Corporation - Pilote de périphérique processeur.) - C:\WINDOWS\System32\DRIVERS\intelppm.sys O41 - Driver: (IPSec) . (.Microsoft Corporation - IPSec Driver.) - C:\WINDOWS\System32\DRIVERS\ipsec.sys O41 - Driver: (Kbdclass) . (.Microsoft Corporation - Pilote de la classe Clavier.) - C:\WINDOWS\System32\DRIVERS\kbdclass.sys O41 - Driver: (Mouclass) . (.Microsoft Corporation - Pilote de la classe Souris.) - C:\WINDOWS\System32\DRIVERS\mouclass.sys O41 - Driver: (MRxSmb) . (.Microsoft Corporation - Windows NT SMB Minirdr.) - C:\WINDOWS\System32\DRIVERS\mrxsmb.sys O41 - Driver: (NetBIOS) . (.Microsoft Corporation - NetBIOS interface driver.) - C:\WINDOWS\System32\DRIVERS\netbios.sys O41 - Driver: (NetBT) . (.Microsoft Corporation - MBT Transport driver.) - C:\WINDOWS\System32\DRIVERS\netbt.sys O41 - Driver: (RasAcd) . (.Microsoft Corporation - RAS Automatic Connection Driver.) - C:\WINDOWS\System32\DRIVERS\rasacd.sys O41 - Driver: (Rdbss) . (.Microsoft Corporation - Redirected Drive Buffering SubSystem Driver.) - C:\WINDOWS\System32\DRIVERS\rdbss.sys O41 - Driver: (RDPCDD) . (.Microsoft Corporation - RDP Miniport.) - C:\WINDOWS\System32\DRIVERS\RDPCDD.sys O41 - Driver: (redbook) . (.Microsoft Corporation - Pilote de filtre audio Livre rouge.) - C:\WINDOWS\System32\DRIVERS\redbook.sys O41 - Driver: (ssmdrv) . (.Avira GmbH - AVIRA SnapShot Driver.) - C:\WINDOWS\System32\DRIVERS\ssmdrv.sys O41 - Driver: (Tcpip) . (.Microsoft Corporation - TCP/IP Protocol Driver.) - C:\WINDOWS\System32\DRIVERS\tcpip.sys O41 - Driver: (TermDD) . (.Microsoft Corporation - Terminal Server Driver.) - C:\WINDOWS\System32\DRIVERS\termdd.sys O41 - Driver: (Tosrfcom) . (.TOSHIBA Corporation - Bluetooth RFCOMM Driver.) - C:\WINDOWS\System32\Drivers\tosrfcom.sys O41 - Driver: Carte vidéo VGA. (VgaSave) . (.Microsoft Corporation - VGA/Super VGA Video Driver.) - C:\WINDOWS\system32\drivers\vga.sys ---\\ Logiciels installés (O42) O42 - Logiciel: AVS Video Converter 6 - (.Online Media Technologies Ltd..) [HKLM] -- AVS4YOU Video Converter 6_is1 O42 - Logiciel: AVS4YOU Software Navigator 1.3 - (.Online Media Technologies Ltd..) [HKLM] -- AVS4YOU Software Navigator_is1 O42 - Logiciel: Adobe Common File Installer - (.Adobe System Incorporated.) [HKLM] -- {8EDBA74D-0686-4C99-BFDD-F894678E5102} O42 - Logiciel: Adobe Reader X (10.1.0) - Français - (.Adobe Systems Incorporated.) [HKLM] -- {AC76BA86-7AD7-1036-7B44-AA1000000001} O42 - Logiciel: Apple Application Support - (.Apple Inc..) [HKLM] -- {B3575D00-27EF-49C2-B9E0-14B3D954E992} O42 - Logiciel: Apple Mobile Device Support - (.Apple Inc..) [HKLM] -- {C23CD6DA-1958-43A5-ADD0-59396572E02E} O42 - Logiciel: Apple Software Update - (.Apple Inc..) [HKLM] -- {C41300B9-185D-475E-BFEC-39EF732F19B1} O42 - Logiciel: Assistant de connexion Windows Live - (.Microsoft Corporation.) [HKLM] -- {DCE8CD14-FBF5-4464-B9A4-E18E473546C7} O42 - Logiciel: Badoo Desktop - (.Badoo.) [HKLM] -- {F160E118-2FA1-4294-8632-B3E87547D075} O42 - Logiciel: Bonjour - (.Apple Inc..) [HKLM] -- {C2E4B5BD-32DB-4817-A060-341AB17C3F90} O42 - Logiciel: CCleaner - (.Piriform.) [HKLM] -- CCleaner O42 - Logiciel: Client Windows Rights Management avec Service Pack 2 - (.Microsoft.) [HKLM] -- {A5325565-D104-4A87-9301-B45AD0AFC697} O42 - Logiciel: Dokan Library 0.5.3 - (.Pas de propriétaire.) [HKLM] -- DokanLibrary O42 - Logiciel: FaceSmooch Smileys - (.Pas de propriétaire.) [HKLM] -- FaceSmooch Smileys O42 - Logiciel: Fast Search by Surf Canyon - (.Surf Canyon.) [HKLM] -- Surf Canyon O42 - Logiciel: Free YouTube to MP3 Converter version 3.9.37.426 - (.DVDVideoSoft Limited..) [HKLM] -- Free YouTube to MP3 Converter_is1 O42 - Logiciel: Glary Utilities Pro 2.34.0.1190 - (.Glarysoft Ltd.) [HKLM] -- Glary Utilities_is1 O42 - Logiciel: Google Chrome - (.Google Inc..) [HKCU] -- Google Chrome O42 - Logiciel: HDAUDIO SoftV92 Data Fax Modem with SmartCP - (.Pas de propriétaire.) [HKLM] -- CNXT_MODEM_HDAUDIO_VEN_14F1&DEV_2BFA&SUBSYS_20030003 O42 - Logiciel: Hauppauge MCE XP/Vista Software Encoder (2.0.28104) - (.Hauppauge Computer Works, Inc..) [HKLM] -- Hauppauge MCE2005 Software Encoder O42 - Logiciel: Hauppauge WinTV 7 - (.Hauppauge Computer Works.) [HKLM] -- Hauppauge WinTV 7 O42 - Logiciel: Hauppauge WinTV Infrared Remote - (.Hauppauge Computer Works, Inc..) [HKLM] -- Hauppauge WinTV Infrared Remote O42 - Logiciel: Hotfix for Microsoft .NET Framework 3.5 SP1 (KB953595) - (.Microsoft Corporation.) [HKLM] -- {CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9}.KB953595 O42 - Logiciel: Hotfix for Microsoft .NET Framework 3.5 SP1 (KB958484) - (.Microsoft Corporation.) [HKLM] -- {CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9}.KB958484 O42 - Logiciel: Hotfix for Windows XP (KB954550-v5) - (.Microsoft Corporation.) [HKLM] -- KB954550-v5 O42 - Logiciel: Hotfix for Windows XP (KB976002-v5) - (.Microsoft Corporation.) [HKLM] -- KB976002-v5 O42 - Logiciel: IZArc 4.1.2 - (.Ivan Zahariev.) [HKLM] -- {97C82B44-D408-4F14-9252-47FC1636D23E}_is1 O42 - Logiciel: Installation Windows Live - (.Microsoft Corporation.) [HKLM] -- WinLiveSuite_Wave3 O42 - Logiciel: Installation Windows Live - (.Microsoft Corporation.) [HKLM] -- {133742BA-6F46-4D3E-85AF-78631D9AD8B8} O42 - Logiciel: Intel® PRO Network Connections Drivers - (.Pas de propriétaire.) [HKLM] -- PROSet O42 - Logiciel: J2SE Runtime Environment 5.0 Update 6 - (.Sun Microsystems, Inc..) [HKLM] -- {3248F0A8-6813-11D6-A77B-00B0D0150060} O42 - Logiciel: Java 6 Update 21 - (.Oracle.) [HKLM] -- {26A24AE4-039D-4CA4-87B4-2F83216021FF} O42 - Logiciel: KC Softwares SUMo - (.KC Softwares.) [HKLM] -- KC Softwares SUMo_is1 O42 - Logiciel: LAN Setting Utility - (.Pas de propriétaire.) [HKLM] -- {5958CAC6-373E-402F-84FE-0A699AA920B9} O42 - Logiciel: Lecteur Windows Media 11 - (.Pas de propriétaire.) [HKLM] -- Windows Media Player O42 - Logiciel: LogMeIn - (.LogMeIn, Inc..) [HKLM] -- {4475560E-9418-4908-A158-472D873AE139} O42 - Logiciel: MSVCRT - (.Microsoft.) [HKLM] -- {22B775E7-6C42-4FC5-8E10-9A5E3257BD94} O42 - Logiciel: MSXML 4.0 SP2 (KB954430) - (.Microsoft Corporation.) [HKLM] -- {86493ADD-824D-4B8E-BD72-8C5DCDC52A71} O42 - Logiciel: MSXML 4.0 SP2 (KB973688) - (.Microsoft Corporation.) [HKLM] -- {F662A8E6-F4DC-41A2-901E-8C11F044BDEC} O42 - Logiciel: Ma-Config.com - (.Cybelsoft.) [HKLM] -- {96EB95A2-5245-4EA2-B6EA-B8BA2FBF64C4} O42 - Logiciel: Malwarebytes' Anti-Malware version 1.51.1.1800 - (.Malwarebytes Corporation.) [HKLM] -- Malwarebytes' Anti-Malware_is1 O42 - Logiciel: Messenger Plus! 5 - (.Yuna Software.) [HKLM] -- Messenger Plus! O42 - Logiciel: Microsoft .NET Framework 1.1 - (.Microsoft.) [HKLM] -- {CB2F7EDD-9D1F-43C1-90FC-4F52EAE172A1} O42 - Logiciel: Microsoft .NET Framework 1.1 - (.Pas de propriétaire.) [HKLM] -- Microsoft .NET Framework 1.1 (1033) O42 - Logiciel: Microsoft .NET Framework 1.1 French Language Pack - (.Microsoft.) [HKLM] -- {9A394342-4A68-4EBA-85A6-55B559F4E700} O42 - Logiciel: Microsoft .NET Framework 1.1 Security Update (KB2416447) - (.Pas de propriétaire.) [HKLM] -- M2416447 O42 - Logiciel: Microsoft .NET Framework 1.1 Security Update (KB979906) - (.Pas de propriétaire.) [HKLM] -- M979906 O42 - Logiciel: Microsoft .NET Framework 2.0 Service Pack 2 - (.Microsoft Corporation.) [HKLM] -- {C09FB3CD-3D0C-3F2D-899A-6A1D67F2073F} O42 - Logiciel: Microsoft .NET Framework 2.0 Service Pack 2 Language Pack - FRA - (.Microsoft Corporation.) [HKLM] -- {72AD53CC-CCC0-3757-8480-9EE176866A7C} O42 - Logiciel: Microsoft .NET Framework 3.0 Service Pack 2 - (.Microsoft Corporation.) [HKLM] -- {A3051CD0-2F64-3813-A88D-B8DCCDE8F8C7} O42 - Logiciel: Microsoft .NET Framework 3.0 Service Pack 2 Language Pack - FRA - (.Microsoft Corporation.) [HKLM] -- {0BD83598-C2EF-3343-847B-7D2E84599128} O42 - Logiciel: Microsoft .NET Framework 3.5 Language Pack SP1 - fra - (.Microsoft Corporation.) [HKLM] -- {3E31821C-7917-367E-938E-E65FC413EA31} O42 - Logiciel: Microsoft .NET Framework 3.5 SP1 - (.Microsoft Corporation.) [HKLM] -- Microsoft .NET Framework 3.5 SP1 O42 - Logiciel: Microsoft .NET Framework 3.5 SP1 - (.Microsoft Corporation.) [HKLM] -- {CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9} O42 - Logiciel: Microsoft .NET Framework 4 Client Profile - (.Microsoft Corporation.) [HKLM] -- Microsoft .NET Framework 4 Client Profile O42 - Logiciel: Microsoft .NET Framework 4 Client Profile - (.Microsoft Corporation.) [HKLM] -- {3C3901C5-3455-3E0A-A214-0B093A5070A6} O42 - Logiciel: Microsoft .NET Framework 4 Client Profile FRA Language Pack - (.Microsoft Corporation.) [HKLM] -- {0F5B4A82-9DAF-3D13-8CB8-AEB25E4A614E} O42 - Logiciel: Microsoft Choice Guard - (.Microsoft Corporation.) [HKLM] -- {F0E12BBA-AD66-4022-A453-A1C8A0C4D570} O42 - Logiciel: Microsoft Compression Client Pack 1.0 for Windows XP - (.Microsoft Corporation.) [HKLM] -- MSCompPackV1 O42 - Logiciel: Microsoft Office File Validation Add-In - (.Microsoft Corporation.) [HKLM] -- {90140000-2005-0000-0000-0000000FF1CE} O42 - Logiciel: Microsoft Office Professional Edition 2003 - (.Microsoft Corporation.) [HKLM] -- {9011040C-6000-11D3-8CFE-0150048383C9} O42 - Logiciel: Microsoft Silverlight - (.Microsoft Corporation.) [HKLM] -- {89F4137D-6C26-4A84-BDB8-2E5A4BB71E00} O42 - Logiciel: Microsoft User-Mode Driver Framework Feature Pack 1.0 - (.Microsoft Corporation.) [HKLM] -- Wudf01000 O42 - Logiciel: Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053 - (.Microsoft Corporation.) [HKLM] -- {770657D0-A123-3C07-8E44-1C83EC895118} O42 - Logiciel: Microsoft Visual C++ 2005 Redistributable - (.Microsoft Corporation.) [HKLM] -- {710f4c1c-cc18-4c49-8cbf-51240c89a1a2} O42 - Logiciel: Microsoft Visual C++ 2005 Redistributable - (.Microsoft Corporation.) [HKLM] -- {7299052b-02a4-4627-81f2-1818da5d550d} O42 - Logiciel: Microsoft Visual C++ 2008 ATL Update kb973924 - x86 9.0.30729.4148 - (.Microsoft Corporation.) [HKLM] -- {002D9D5E-29BA-3E6D-9BC4-3D7D6DBC735C} O42 - Logiciel: Microsoft Visual C++ 2008 Redistributable - KB2467174 - x86 9.0.30729.5570 - (.Microsoft Corporation.) [HKLM] -- {86CE85E6-DBAC-3FFD-B977-E4B79F83C909} O42 - Logiciel: Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 - (.Microsoft Corporation.) [HKLM] -- {9A25302D-30C0-39D9-BD6F-21E6EC160475} O42 - Logiciel: Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 - (.Microsoft Corporation.) [HKLM] -- {1F1C2DFC-2D24-3E06-BCB8-725134ADF989} O42 - Logiciel: Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 - (.Microsoft Corporation.) [HKLM] -- {9BE518E6-ECC6-35A9-88E4-87755C07200F} O42 - Logiciel: Microsoft Visual C++ 2010 x86 Redistributable - 10.0.30319 - (.Microsoft Corporation.) [HKLM] -- {196BB40D-1578-3D01-B289-BEFC77A11A1E} O42 - Logiciel: Module de compatibilité pour Microsoft Office System 2007 - (.Microsoft Corporation.) [HKLM] -- {90120000-0020-040C-0000-0000000FF1CE} O42 - Logiciel: Module linguistique Microsoft .NET Framework 3.5 SP1- fra - (.Microsoft Corporation.) [HKLM] -- Microsoft .NET Framework 3.5 Language Pack SP1 - fra O42 - Logiciel: Module linguistique Microsoft .NET Framework 4 Client Profile FRA - (.Microsoft Corporation.) [HKLM] -- Microsoft .NET Framework 4 Client Profile FRA Language Pack O42 - Logiciel: Mozilla Firefox 5.0 (x86 fr) - (.Mozilla.) [HKLM] -- Mozilla Firefox 5.0 (x86 fr) O42 - Logiciel: NVIDIA Drivers - (.NVIDIA Corporation.) [HKLM] -- NVIDIA Drivers O42 - Logiciel: Nero 7 Ultra Edition - (.Nero AG.) [HKLM] -- {CF097717-F174-4144-954A-FBC4BF301036} O42 - Logiciel: Outil de téléchargement Windows Live - (.Microsoft Corporation.) [HKLM] -- {205C6BDD-7B73-42DE-8505-9A093F35A238} O42 - Logiciel: PDFCreator - (.Frank Heindörfer, Philip Chinery.) [HKLM] -- {0001B4FD-9EA3-4D90-A79E-FD14BA3AB01D} O42 - Logiciel: Package de base Microsoft de service de chiffrement pour cartes à puce - (.Microsoft Corporation.) [HKLM] -- KB909520 O42 - Logiciel: QuickTime - (.Apple Inc..) [HKLM] -- {57752979-A1C9-4C02-856B-FBB27AC4E02C} O42 - Logiciel: Recuva - (.Piriform.) [HKLM] -- Recuva O42 - Logiciel: SP2 de compatibilité descendante du client Windows Rights Management - (.Microsoft.) [HKLM] -- {EC905264-BCFE-423B-9C42-C3A106266790} O42 - Logiciel: Security Update for CAPICOM (KB931906) - (.Microsoft Corporation.) [HKLM] -- KB931906 O42 - Logiciel: Security Update for CAPICOM (KB931906) - (.Microsoft Corporation.) [HKLM] -- {0EFDF2F9-836D-4EB7-A32D-038BD3F1FB2A} O42 - Logiciel: Security Update for Microsoft .NET Framework 3.5 SP1 (KB2416473) - (.Microsoft Corporation.) [HKLM] -- {CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9}.KB2416473 O42 - Logiciel: Security Update for Microsoft .NET Framework 4 Client Profile (KB2446708) - (.Microsoft Corporation.) [HKLM] -- {3C3901C5-3455-3E0A-A214-0B093A5070A6}.KB2446708 O42 - Logiciel: Security Update for Microsoft .NET Framework 4 Client Profile (KB2478663) - (.Microsoft Corporation.) [HKLM] -- {3C3901C5-3455-3E0A-A214-0B093A5070A6}.KB2478663 O42 - Logiciel: Security Update for Microsoft .NET Framework 4 Client Profile (KB2518870) - (.Microsoft Corporation.) [HKLM] -- {3C3901C5-3455-3E0A-A214-0B093A5070A6}.KB2518870 O42 - Logiciel: Security Update for Module linguistique Microsoft .NET Framework 4 Client Profile FRA (KB2478663) - (.Microsoft Corporation.) [HKLM] -- {0F5B4A82-9DAF-3D13-8CB8-AEB25E4A614E}.KB2478663 O42 - Logiciel: Security Update for Module linguistique Microsoft .NET Framework 4 Client Profile FRA (KB2518870) - (.Microsoft Corporation.) [HKLM] -- {0F5B4A82-9DAF-3D13-8CB8-AEB25E4A614E}.KB2518870 O42 - Logiciel: Segoe UI - (.Microsoft Corp.) [HKLM] -- {A1F66FC9-11EE-4F2F-98C9-16F8D1E69FB7} O42 - Logiciel: Setting Utility Series - (.Pas de propriétaire.) [HKLM] -- {59452470-A902-477F-9338-9B88101681BD} O42 - Logiciel: SigmaTel Audio - (.SigmaTel.) [HKLM] -- {A462213D-EED4-42C2-9A60-7BDD4D4B0B17} O42 - Logiciel: Sony MP4 Shared Library - (.Sony Corporation.) [HKLM] -- {01FDC9FC-4D4F-4DB0-ACD1-D3E8E1D52902} O42 - Logiciel: Sony USB Mouse - (.Pas de propriétaire.) [HKLM] -- MouseSuite98 O42 - Logiciel: Sony Utilities DLL - (.Pas de propriétaire.) [HKLM] -- {EF3D45BB-2260-4008-88EA-492E7744A9DF} O42 - Logiciel: Sony Video Shared Library - (.Sony Corporation.) [HKLM] -- {BE56FEF0-1A0F-4719-B3AD-34B5087AFA6D} O42 - Logiciel: Speccy - (.Piriform.) [HKLM] -- Speccy O42 - Logiciel: System Requirements Lab for Intel - (.Husdawg, LLC.) [HKLM] -- {F7FC9307-374E-4017-8E9D-DE1154780480} O42 - Logiciel: Update for Microsoft .NET Framework 3.5 SP1 (KB963707) - (.Microsoft Corporation.) [HKLM] -- {CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9}.KB963707 O42 - Logiciel: VAIO Camera Utility - (.Pas de propriétaire.) [HKLM] -- {1417F599-1DBD-4499-9375-B2813E9F890C} O42 - Logiciel: VAIO Control Center - (.Pas de propriétaire.) [HKLM] -- {FC37C108-821D-4EDE-8F40-D5B497586805} O42 - Logiciel: VAIO Event Service - (.Sony Corporation.) [HKLM] -- {F0D85ADD-DD61-4B43-87A0-6DA52A211A8B} O42 - Logiciel: VAIO Hardware Diagnostics - (.Pas de propriétaire.) [HKLM] -- {A947C2B3-7445-42C4-9063-EE704CACCB22} O42 - Logiciel: VAIO Power Management - (.Pas de propriétaire.) [HKLM] -- {9E319E96-ED8E-4B01-9775-C521A1869A25} O42 - Logiciel: VLC media player 1.1.3 - (.VideoLAN.) [HKLM] -- VLC media player O42 - Logiciel: Vuze - (.Vuze Inc..) [HKLM] -- 8461-7759-5462-8226 O42 - Logiciel: WinSCP 4.2.9 - (.Martin Prikryl.) [HKLM] -- winscp3_is1 O42 - Logiciel: Windows Genuine Advantage Validation Tool (KB892130) - (.Microsoft Corporation.) [HKLM] -- KB892130 O42 - Logiciel: Windows Genuine Advantage Validation Tool (KB892130) - (.Microsoft Corporation.) [HKLM] -- WGA O42 - Logiciel: Windows Internet Explorer 8 - (.Microsoft Corporation.) [HKLM] -- ie8 O42 - Logiciel: Windows Live Call - (.Microsoft Corporation.) [HKLM] -- {B3B487E7-6171-4376-9074-B28082CEB504} O42 - Logiciel: Windows Live Communications Platform - (.Microsoft Corporation.) [HKLM] -- {3175E049-F9A9-4A3D-8F19-AC9FB04514D1} O42 - Logiciel: Windows Live Messenger - (.Microsoft Corporation.) [HKLM] -- {445B183D-F4F1-45C8-B9DB-F11355CA657B} O42 - Logiciel: Windows Management Framework Core - (.Microsoft Corporation.) [HKLM] -- KB968930 O42 - Logiciel: Windows Media Format 11 runtime - (.Microsoft Corporation.) [HKLM] -- WMFDist11 O42 - Logiciel: Windows Media Format 11 runtime - (.Pas de propriétaire.) [HKLM] -- Windows Media Format Runtime O42 - Logiciel: Windows Media Player 11 - (.Microsoft Corporation.) [HKLM] -- wmp11 O42 - Logiciel: Windows Media Player Firefox Plugin - (.Microsoft Corp.) [HKLM] -- {69FDFBB6-351D-4B8C-89D8-867DC9D0A2A4} O42 - Logiciel: Windows XP Service Pack 3 - (.Microsoft Corporation.) [HKLM] -- Windows XP Service O42 - Logiciel: Wireless LAN Starter - (.Pas de propriétaire.) [HKLM] -- {61D6E4FB-1A62-4EB1-BE56-929B00C155CF} O42 - Logiciel: Wireless Switch Setting Utility - (.Pas de propriétaire.) [HKLM] -- {2A0F3EF9-68EE-49E9-A05B-ED5B82DF63E5} O42 - Logiciel: XML Paper Specification Shared Components Language Pack 1.0 - (.Microsoft Corporation.) [HKLM] -- XPSEPSCLP O42 - Logiciel: ZebHelpProcess 2.49 - (.Nicolas Coolman.) [HKLM] -- Zeb Help Process_is1 O42 - Logiciel: eMule - (.Pas de propriétaire.) [HKLM] -- eMule O42 - Logiciel: iPhone Folders - (.Redart.) [HKLM] -- {53DA6CFE-7CDE-4F72-9E23-39AAC686DE17} O42 - Logiciel: iTunes - (.Apple Inc..) [HKLM] -- {7E6066E6-8B5B-4100-B0FA-1D9E9B663CBA} O42 - Logiciel: neroxml - (.Nero AG.) [HKLM] -- {56C049BE-79E9-4502-BEA7-9754A3E60F9B} ---\\ HKCU & HKLM Software Keys [HKCU\Software\ASProtect] [HKCU\Software\AVS4YOU] [HKCU\Software\Adobe] [HKCU\Software\Ahead] [HKCU\Software\Alps] [HKCU\Software\AlterGeo] [HKCU\Software\Apple Computer, Inc.] [HKCU\Software\Apple Inc.] [HKCU\Software\Avira] [HKCU\Software\Azureus] [HKCU\Software\BAE] [HKCU\Software\Badoo] [HKCU\Software\Bobyte] [HKCU\Software\Classes] [HKCU\Software\Clients] [HKCU\Software\CyberLink] [HKCU\Software\DT Soft] [HKCU\Software\DVDVideoSoft] [HKCU\Software\GlarySoft] [HKCU\Software\Google] [HKCU\Software\HS] [HKCU\Software\IM Providers] [HKCU\Software\IZSoftware] [HKCU\Software\Intel] [HKCU\Software\InterVideo] [HKCU\Software\JavaSoft] [HKCU\Software\KC Softwares] [HKCU\Software\Lake] [HKCU\Software\Local AppWizard-Generated Applications] [HKCU\Software\LogMeIn] [HKCU\Software\Macromedia] [HKCU\Software\Macroplant] [HKCU\Software\MainConcept (HCW)] [HKCU\Software\MainConcept] [HKCU\Software\Malwarebytes' Anti-Malware] [HKCU\Software\Martin Prikryl] [HKCU\Software\Minibar] [HKCU\Software\MozillaPlugins] [HKCU\Software\NVIDIA Corporation] [HKCU\Software\Netscape] [HKCU\Software\ODBC] [HKCU\Software\PDFCreator] [HKCU\Software\Pegasys Inc.] [HKCU\Software\Piriform] [HKCU\Software\Policies] [HKCU\Software\Raptr] [HKCU\Software\Softonic] [HKCU\Software\SolidDocuments] [HKCU\Software\Sony Corporation] [HKCU\Software\SuperSoftwarePackage] [HKCU\Software\Surf Canyon] [HKCU\Software\Sysinternals] [HKCU\Software\System Requirements Lab] [HKCU\Software\Techlogg.com ToneShop] [HKCU\Software\Trolltech] [HKCU\Software\VFPlugin] [HKCU\Software\Valve] [HKCU\Software\Virtual Plastic Surgery Software - VPSS] [HKCU\Software\Winamp] [HKCU\Software\YahooPartnerToolbar] [HKCU\Software\Yuna Software] [HKCU\Software\cybelsoft] [HKCU\Software\eMule] [HKCU\Software\ej-technologies] [HKCU\Software\geissplugin] [HKCU\Software\i-FunBox.com] [HKLM\Software\A-Patch] [HKLM\Software\ACE Compression Software] [HKLM\Software\ASIO] [HKLM\Software\AVS4YOU] [HKLM\Software\Adobe] [HKLM\Software\Ahead] [HKLM\Software\Alps] [HKLM\Software\Apple Computer, Inc.] [HKLM\Software\Apple Inc.] [HKLM\Software\Avidemux 2.5] [HKLM\Software\Avira] [HKLM\Software\Azureus] [HKLM\Software\Borland] [HKLM\Software\C07ft5Y] [HKLM\Software\CXT] [HKLM\Software\Classes] [HKLM\Software\Clients] [HKLM\Software\Conduit] [HKLM\Software\CyberLink] [HKLM\Software\DT Soft] [HKLM\Software\DVDVideoSoft] [HKLM\Software\GEAR Software] [HKLM\Software\Gemplus] [HKLM\Software\GlarySoft] [HKLM\Software\Google] [HKLM\Software\Hauppauge] [HKLM\Software\IZSoftware] [HKLM\Software\InstallShield] [HKLM\Software\Intel] [HKLM\Software\JavaSoft] [HKLM\Software\JreMetrics] [HKLM\Software\Lake] [HKLM\Software\Licenses] [HKLM\Software\LogMeIn, Inc.] [HKLM\Software\LogMeIn] [HKLM\Software\MDC] [HKLM\Software\Macromedia] [HKLM\Software\MainConceptMCE] [HKLM\Software\Malwarebytes' Anti-Malware] [HKLM\Software\Martin Prikryl] [HKLM\Software\Minibar] [HKLM\Software\MozillaPlugins] [HKLM\Software\Mozilla] [HKLM\Software\NVIDIA Corporation] [HKLM\Software\Nero] [HKLM\Software\ODBC] [HKLM\Software\PDFCreator] [HKLM\Software\Piriform] [HKLM\Software\Policies] [HKLM\Software\Primax] [HKLM\Software\Program Groups] [HKLM\Software\RegisteredApplications] [HKLM\Software\Reminder] [HKLM\Software\Schlumberger] [HKLM\Software\SigmaTel] [HKLM\Software\Sonic] [HKLM\Software\Sony Corporation] [HKLM\Software\Symantec] [HKLM\Software\TOSHIBA] [HKLM\Software\TrendMicro] [HKLM\Software\Uniblue] [HKLM\Software\VideoLAN] [HKLM\Software\Windows 3.1 Migration Status] [HKLM\Software\X-AVCSD] [HKLM\Software\Yuna Software] [HKLM\Software\ZSMC] [HKLM\Software\cybelsoft] [HKLM\Software\ej-technologies] [HKLM\Software\magnet] [HKLM\Software\mozilla.org] ---\\ Contenu des dossiers Programs/ProgramFiles/ProgramData/AppData (O43) O43 - CFD: 27/06/2011 - 12:44:36 - [204493166] ----D- C:\Program Files\Adobe O43 - CFD: 27/07/2006 - 12:56:38 - [2860289] ----D- C:\Program Files\Apoint O43 - CFD: 22/08/2010 - 16:22:48 - [2306366] ----D- C:\Program Files\Apple Software Update O43 - CFD: 13/11/2010 - 14:18:30 - [41484986] ----D- C:\Program Files\Avidemux 2.5 O43 - CFD: 23/08/2010 - 09:36:44 - [129179904] ----D- C:\Program Files\Avira O43 - CFD: 12/07/2011 - 23:19:20 - [32273209] ----D- C:\Program Files\AVS4YOU O43 - CFD: 28/04/2011 - 09:39:16 - [620971] ----D- C:\Program Files\Bonjour O43 - CFD: 02/04/2011 - 03:26:26 - [1182222] ----D- C:\Program Files\Call of Duty Black ops O43 - CFD: 29/08/2010 - 05:03:38 - [8458029] ----D- C:\Program Files\CamStudio O43 - CFD: 29/06/2011 - 11:22:30 - [4034628] ----D- C:\Program Files\CCleaner O43 - CFD: 27/07/2006 - 11:00:44 - [0] ----D- C:\Program Files\ComPlus Applications O43 - CFD: 22/06/2011 - 10:36:00 - [577536] ----D- C:\Program Files\CONEXANT O43 - CFD: 22/08/2010 - 16:52:42 - [226492299] ----D- C:\Program Files\CyberLink O43 - CFD: 25/10/2010 - 10:38:56 - [10308220] ----D- C:\Program Files\DAEMON Tools Lite O43 - CFD: 19/06/2011 - 16:47:36 - [4299160] ----D- C:\Program Files\Defraggler O43 - CFD: 27/10/2010 - 23:28:16 - [213948] ----D- C:\Program Files\Dokan O43 - CFD: 20/06/2011 - 19:57:34 - [4352247] ----D- C:\Program Files\DVDVideoSoft O43 - CFD: 30/08/2010 - 11:20:00 - [535037376] ----D- C:\Program Files\eMule O43 - CFD: 19/07/2011 - 10:32:52 - [83477] ----D- C:\Program Files\FaceSmooch Smileys O43 - CFD: 21/06/2011 - 13:05:12 - [861512440] ----D- C:\Program Files\Fichiers communs O43 - CFD: 30/09/2010 - 13:57:46 - [1729585] ----D- C:\Program Files\GDS O43 - CFD: 29/06/2011 - 10:37:00 - [19542968] ----D- C:\Program Files\Glary Utilities O43 - CFD: 27/07/2006 - 17:32:28 - [1186816] ----D- C:\Program Files\Google O43 - CFD: 27/07/2006 - 17:32:26 - [94250] ----D- C:\Program Files\Google BAE O43 - CFD: 29/04/2011 - 04:38:00 - [128020] ----D- C:\Program Files\HostsMan O43 - CFD: 28/11/2010 - 15:15:02 - [57425691] --H-D- C:\Program Files\InstallShield Installation Information O43 - CFD: 22/08/2010 - 15:32:48 - [12522156] ----D- C:\Program Files\Intel O43 - CFD: 16/06/2011 - 10:36:40 - [5997160] ----D- C:\Program Files\Internet Explorer O43 - CFD: 21/09/2010 - 12:07:56 - [7888319] ----D- C:\Program Files\iPhone Folders O43 - CFD: 20/06/2011 - 19:58:08 - [1856627] ----D- C:\Program Files\iPod O43 - CFD: 20/06/2011 - 19:58:58 - [128336394] ----D- C:\Program Files\iTunes O43 - CFD: 22/08/2010 - 16:48:04 - [14315935] ----D- C:\Program Files\IZArc O43 - CFD: 22/08/2010 - 15:16:34 - [154073075] ----D- C:\Program Files\Java O43 - CFD: 29/06/2011 - 23:42:44 - [2888632] ----D- C:\Program Files\KC Softwares O43 - CFD: 19/06/2011 - 12:38:40 - [0] ----D- C:\Program Files\Konvertor O43 - CFD: 19/07/2011 - 09:38:50 - [43290065] ----D- C:\Program Files\LogMeIn O43 - CFD: 20/09/2010 - 09:47:20 - [5253635] ----D- C:\Program Files\ma-config.com O43 - CFD: 19/07/2011 - 10:32:34 - [6983953] ----D- C:\Program Files\Malwarebytes' Anti-Malware O43 - CFD: 06/07/2011 - 10:22:50 - [334] ----D- C:\Program Files\MediaMonkey O43 - CFD: 22/08/2010 - 13:34:02 - [2152579] ----D- C:\Program Files\Messenger O43 - CFD: 22/08/2010 - 15:01:48 - [226432] ----D- C:\Program Files\Microsoft O43 - CFD: 22/08/2010 - 15:44:42 - [800662] ----D- C:\Program Files\Microsoft CAPICOM 2.1.0.2 O43 - CFD: 27/07/2006 - 11:05:18 - [0] ----D- C:\Program Files\microsoft frontpage O43 - CFD: 13/07/2011 - 21:58:26 - [412430804] ----D- C:\Program Files\Microsoft Office O43 - CFD: 18/06/2011 - 11:30:18 - [38411899] ----D- C:\Program Files\Microsoft Silverlight O43 - CFD: 15/10/2010 - 21:35:12 - [14904] ----D- C:\Program Files\Microsoft Visual Studio O43 - CFD: 28/11/2010 - 16:52:48 - [4368271] ----D- C:\Program Files\Microsoft Works O43 - CFD: 28/11/2010 - 15:56:00 - [331107] ----D- C:\Program Files\Microsoft.NET O43 - CFD: 29/06/2011 - 23:59:30 - [767400] ----D- C:\Program Files\Minibar O43 - CFD: 22/08/2010 - 13:51:28 - [10949041] ----D- C:\Program Files\Movie Maker O43 - CFD: 30/06/2011 - 01:47:54 - [35610526] ----D- C:\Program Files\Mozilla Firefox O43 - CFD: 24/11/2010 - 15:02:42 - [25757] ----D- C:\Program Files\MSBuild O43 - CFD: 30/12/2010 - 01:17:22 - [39944647] ----D- C:\Program Files\MSECache O43 - CFD: 27/07/2006 - 10:59:24 - [19278399] ----D- C:\Program Files\MSN O43 - CFD: 27/07/2006 - 10:59:36 - [8745735] ----D- C:\Program Files\MSN Gaming Zone O43 - CFD: 22/08/2010 - 13:44:44 - [0] ----D- C:\Program Files\MSXML 4.0 O43 - CFD: 02/09/2010 - 11:01:24 - [406548830] ----D- C:\Program Files\Nero O43 - CFD: 22/08/2010 - 13:04:10 - [3285523] ----D- C:\Program Files\NetMeeting O43 - CFD: 29/04/2011 - 04:46:58 - [0] ----D- C:\Program Files\NirSoft O43 - CFD: 22/08/2010 - 16:08:50 - [0] ----D- C:\Program Files\NVIDIA Corporation O43 - CFD: 27/07/2006 - 11:00:24 - [1804] ----D- C:\Program Files\Online Services O43 - CFD: 15/12/2010 - 01:48:32 - [4379321] ----D- C:\Program Files\Outlook Express O43 - CFD: 22/11/2010 - 12:02:58 - [25470285] ----D- C:\Program Files\PDFCreator O43 - CFD: 24/11/2010 - 10:01:34 - [38604] ----D- C:\Program Files\Phone Disk O43 - CFD: 06/04/2011 - 10:44:24 - [76414128] ----D- C:\Program Files\QuickTime O43 - CFD: 21/08/2010 - 23:44:08 - [13926] ----D- C:\Program Files\Raccourcis de programmes O43 - CFD: 23/08/2010 - 10:45:02 - [564224] ----D- C:\Program Files\Raptr O43 - CFD: 22/08/2010 - 11:23:06 - [3071873] ----D- C:\Program Files\Recuva O43 - CFD: 22/08/2010 - 14:25:32 - [37949185] ----D- C:\Program Files\Reference Assemblies O43 - CFD: 27/07/2006 - 11:02:38 - [1025] ----D- C:\Program Files\Services en ligne O43 - CFD: 27/07/2006 - 14:18:56 - [11878209] ----D- C:\Program Files\SigmaTel O43 - CFD: 28/11/2010 - 16:46:48 - [248224208] ----D- C:\Program Files\Sony O43 - CFD: 21/06/2011 - 13:48:26 - [4557848] ----D- C:\Program Files\Speccy O43 - CFD: 29/06/2011 - 23:59:18 - [320506] ----D- C:\Program Files\Surf Canyon O43 - CFD: 22/08/2010 - 15:18:04 - [718080] ----D- C:\Program Files\SystemRequirementsLab O43 - CFD: 23/05/2011 - 12:17:08 - [11463311] ----D- C:\Program Files\Techlogg.com ToneShop O43 - CFD: 27/07/2006 - 11:11:30 - [0] --H-D- C:\Program Files\Uninstall Information O43 - CFD: 25/08/2010 - 10:05:58 - [78656283] ----D- C:\Program Files\VideoLAN O43 - CFD: 11/02/2011 - 09:50:00 - [23227888] ----D- C:\Program Files\Vuze O43 - CFD: 22/08/2010 - 15:01:42 - [62608005] ----D- C:\Program Files\Windows Live O43 - CFD: 22/08/2010 - 15:01:30 - [245112] ----D- C:\Program Files\Windows Live SkyDrive O43 - CFD: 22/08/2010 - 14:22:28 - [3581070] ----D- C:\Program Files\Windows Media Connect 2 O43 - CFD: 22/08/2010 - 14:22:26 - [9600055] ----D- C:\Program Files\Windows Media Player O43 - CFD: 22/08/2010 - 13:04:04 - [3942655] ----D- C:\Program Files\Windows NT O43 - CFD: 27/07/2006 - 11:00:06 - [41055406] ----D- C:\Program Files\Windows Plus O43 - CFD: 27/07/2006 - 11:02:44 - [0] --H-D- C:\Program Files\WindowsUpdate O43 - CFD: 29/09/2010 - 14:27:36 - [9068466] ----D- C:\Program Files\WinSCP O43 - CFD: 22/08/2010 - 16:29:12 - [20008861] ----D- C:\Program Files\WinTV O43 - CFD: 27/07/2006 - 11:05:18 - [0] ----D- C:\Program Files\xerox O43 - CFD: 30/03/2011 - 11:35:56 - [19285708] ----D- C:\Program Files\Yuna Software O43 - CFD: 20/07/2011 - 09:02:04 - [105173080] ----D- C:\Program Files\ZebHelpProcess O43 - CFD: 19/07/2011 - 12:03:20 - [6598356] ----D- C:\Program Files\ZHPDiag O43 - CFD: 19/07/2011 - 11:08:46 - [8638568] ----D- C:\Program Files\ZHPFix O43 - CFD: 27/06/2011 - 12:45:16 - [141922438] ----D- C:\Program Files\Fichiers Communs\Adobe O43 - CFD: 02/09/2010 - 11:03:04 - [119140374] ----D- C:\Program Files\Fichiers Communs\Ahead O43 - CFD: 20/06/2011 - 19:58:02 - [104469335] ----D- C:\Program Files\Fichiers Communs\Apple O43 - CFD: 12/07/2011 - 23:19:16 - [54234666] ----D- C:\Program Files\Fichiers Communs\AVSMedia O43 - CFD: 19/06/2011 - 19:22:30 - [7675823] ----D- C:\Program Files\Fichiers Communs\Borland Shared O43 - CFD: 28/11/2010 - 15:57:04 - [86016] ----D- C:\Program Files\Fichiers Communs\DESIGNER O43 - CFD: 29/06/2011 - 12:39:06 - [18179698] ----D- C:\Program Files\Fichiers Communs\DVDVideoSoft O43 - CFD: 27/07/2006 - 17:31:36 - [7507502] ----D- C:\Program Files\Fichiers Communs\InstallShield O43 - CFD: 27/07/2006 - 17:19:56 - [31783938] ----D- C:\Program Files\Fichiers Communs\Java O43 - CFD: 28/11/2010 - 20:45:26 - [312995962] ----D- C:\Program Files\Fichiers Communs\Microsoft Shared O43 - CFD: 27/07/2006 - 11:02:18 - [284160] ----D- C:\Program Files\Fichiers Communs\MSSoap O43 - CFD: 27/07/2006 - 12:54:40 - [0] ----D- C:\Program Files\Fichiers Communs\ODBC O43 - CFD: 27/07/2006 - 11:02:18 - [8106] ----D- C:\Program Files\Fichiers Communs\Services O43 - CFD: 27/07/2006 - 17:21:38 - [3799520] ----D- C:\Program Files\Fichiers Communs\Sony Shared O43 - CFD: 27/07/2006 - 12:54:38 - [3787229] ----D- C:\Program Files\Fichiers Communs\SpeechEngines O43 - CFD: 22/08/2010 - 13:12:40 - [436312] ----D- C:\Program Files\Fichiers Communs\Symantec Shared O43 - CFD: 28/11/2010 - 15:56:26 - [21070161] ----D- C:\Program Files\Fichiers Communs\System O43 - CFD: 22/08/2010 - 13:47:14 - [34131200] ----D- C:\Program Files\Fichiers Communs\Windows Live O43 - CFD: 19/07/2011 - 10:55:38 - [686863] ----D- C:\Documents and Settings\Julien\Application Data\Adobe O43 - CFD: 12/09/2010 - 16:26:34 - [0] ----D- C:\Documents and Settings\Julien\Application Data\AdobeUM O43 - CFD: 02/04/2011 - 02:46:22 - [218595] ----D- C:\Documents and Settings\Julien\Application Data\Ahead O43 - CFD: 22/11/2010 - 17:36:54 - [4895098019] ----D- C:\Documents and Settings\Julien\Application Data\Apple Computer O43 - CFD: 13/11/2010 - 14:18:54 - [30506] ----D- C:\Documents and Settings\Julien\Application Data\avidemux O43 - CFD: 17/12/2010 - 05:11:12 - [0] ----D- C:\Documents and Settings\Julien\Application Data\Avira O43 - CFD: 28/09/2010 - 10:23:06 - [162883] ----D- C:\Documents and Settings\Julien\Application Data\AVS4YOU O43 - CFD: 19/07/2011 - 11:48:06 - [6377348] ----D- C:\Documents and Settings\Julien\Application Data\Azureus O43 - CFD: 22/08/2010 - 16:56:36 - [0] ----D- C:\Documents and Settings\Julien\Application Data\CyberLink O43 - CFD: 22/06/2011 - 21:51:10 - [0] ----D- C:\Documents and Settings\Julien\Application Data\DAEMON Tools Lite O43 - CFD: 19/05/2011 - 15:03:30 - [267] ----D- C:\Documents and Settings\Julien\Application Data\DVDVideoSoftIEHelpers O43 - CFD: 29/06/2011 - 10:44:40 - [0] ----D- C:\Documents and Settings\Julien\Application Data\GlarySoft O43 - CFD: 27/07/2006 - 17:32:28 - [0] ----D- C:\Documents and Settings\Julien\Application Data\Google O43 - CFD: 27/07/2006 - 11:05:02 - [0] ----D- C:\Documents and Settings\Julien\Application Data\Identities O43 - CFD: 22/08/2010 - 15:21:58 - [0] ----D- C:\Documents and Settings\Julien\Application Data\InstallShield O43 - CFD: 29/06/2011 - 23:44:24 - [53236] ----D- C:\Documents and Settings\Julien\Application Data\KC Softwares O43 - CFD: 22/08/2010 - 13:04:36 - [2840690] ----D- C:\Documents and Settings\Julien\Application Data\Macromedia O43 - CFD: 23/08/2010 - 10:36:40 - [1697927] ----D- C:\Documents and Settings\Julien\Application Data\Malwarebytes O43 - CFD: 15/06/2011 - 18:22:20 - [11477688] -S--D- C:\Documents and Settings\Julien\Application Data\Microsoft O43 - CFD: 12/07/2011 - 00:40:24 - [1464] ----D- C:\Documents and Settings\Julien\Application Data\Minibar O43 - CFD: 14/03/2011 - 23:41:08 - [17370648] ----D- C:\Documents and Settings\Julien\Application Data\Mozilla O43 - CFD: 22/08/2010 - 16:54:44 - [122980407] ----D- C:\Documents and Settings\Julien\Application Data\PowerCinema O43 - CFD: 23/08/2010 - 10:45:04 - [17682] ----D- C:\Documents and Settings\Julien\Application Data\Raptr O43 - CFD: 28/11/2010 - 14:15:44 - [21316] ----D- C:\Documents and Settings\Julien\Application Data\SolidDocuments O43 - CFD: 27/07/2006 - 17:21:34 - [0] ----D- C:\Documents and Settings\Julien\Application Data\Sony Corporation O43 - CFD: 22/08/2010 - 15:15:32 - [8510811] ----D- C:\Documents and Settings\Julien\Application Data\Sun O43 - CFD: 22/08/2010 - 15:17:58 - [381952] ----D- C:\Documents and Settings\Julien\Application Data\SystemRequirementsLab O43 - CFD: 22/08/2010 - 16:48:12 - [1126] ----D- C:\Documents and Settings\Julien\Application Data\Uniblue O43 - CFD: 12/07/2011 - 23:30:12 - [1196705] ----D- C:\Documents and Settings\Julien\Application Data\vlc O43 - CFD: 10/11/2010 - 02:00:08 - [12536] ----D- C:\Documents and Settings\Julien\Application Data\WindSolutions O43 - CFD: 21/11/2010 - 14:48:30 - [0] ----D- C:\Documents and Settings\Julien\Local Settings\Application Data\Activision O43 - CFD: 05/09/2010 - 11:42:20 - [15346337] ----D- C:\Documents and Settings\Julien\Local Settings\Application Data\Adobe O43 - CFD: 02/09/2010 - 11:12:54 - [3976707] ----D- C:\Documents and Settings\Julien\Local Settings\Application Data\Ahead O43 - CFD: 10/06/2011 - 15:02:34 - [0] --H-D- C:\Documents and Settings\Julien\Local Settings\Application Data\AlterGeo O43 - CFD: 22/08/2010 - 16:22:48 - [26921472] ----D- C:\Documents and Settings\Julien\Local Settings\Application Data\Apple O43 - CFD: 23/08/2010 - 17:30:24 - [33146627] ----D- C:\Documents and Settings\Julien\Local Settings\Application Data\Apple Computer O43 - CFD: 02/09/2010 - 11:04:52 - [10755] ----D- C:\Documents and Settings\Julien\Local Settings\Application Data\ApplicationHistory O43 - CFD: 22/06/2011 - 13:05:56 - [0] ----D- C:\Documents and Settings\Julien\Local Settings\Application Data\Conduit O43 - CFD: 22/08/2010 - 13:17:54 - [395898606] ----D- C:\Documents and Settings\Julien\Local Settings\Application Data\Google O43 - CFD: 22/08/2010 - 12:34:08 - [798814884] ----D- C:\Documents and Settings\Julien\Local Settings\Application Data\Identities O43 - CFD: 26/08/2010 - 12:43:06 - [0] ----D- C:\Documents and Settings\Julien\Local Settings\Application Data\LogMeIn O43 - CFD: 02/09/2010 - 01:15:30 - [816] ----D- C:\Documents and Settings\Julien\Local Settings\Application Data\Macroplant O43 - CFD: 27/10/2010 - 23:29:08 - [820] ----D- C:\Documents and Settings\Julien\Local Settings\Application Data\Macroplant,_LLC O43 - CFD: 06/07/2011 - 10:22:46 - [1839104] ----D- C:\Documents and Settings\Julien\Local Settings\Application Data\MediaMonkey O43 - CFD: 01/12/2010 - 13:22:38 - [157091528] ----D- C:\Documents and Settings\Julien\Local Settings\Application Data\Microsoft O43 - CFD: 15/10/2010 - 21:29:18 - [0] ----D- C:\Documents and Settings\Julien\Local Settings\Application Data\Microsoft Help O43 - CFD: 29/06/2011 - 23:59:38 - [906746] ----D- C:\Documents and Settings\Julien\Local Settings\Application Data\Minibar O43 - CFD: 14/09/2010 - 02:41:42 - [47509771] ----D- C:\Documents and Settings\Julien\Local Settings\Application Data\Mozilla O43 - CFD: 23/08/2010 - 09:25:48 - [6816] ----D- C:\Documents and Settings\Julien\Local Settings\Application Data\PlayMovie O43 - CFD: 22/08/2010 - 16:58:08 - [0] ----D- C:\Documents and Settings\Julien\Local Settings\Application Data\Powercinema O43 - CFD: 14/11/2010 - 16:12:00 - [29] ----D- C:\Documents and Settings\Julien\Local Settings\Application Data\RcIncidents O43 - CFD: 27/04/2011 - 19:35:04 - [0] ----D- C:\Documents and Settings\Julien\Local Settings\Application Data\Temp O43 - CFD: 22/11/2010 - 19:04:06 - [21965] ----D- C:\Documents and Settings\Julien\Local Settings\Application Data\TVEnhance O43 - CFD: 27/07/2006 - 17:19:52 - [12181504] ----D- C:\Documents and Settings\Julien\Local Settings\Application Data\{3248F0A6-6813-11D6-A77B-00B0D0150060} ---\\ Derniers fichiers modifiés ou crées sous Windows et System32 (O44) O44 - LFC:[MD5.D0EE1200FEFFFFFF57494E444F577E31] - 20/07/2011 - 08:01:55 ---A- . (...) -- C:\WINDOWS\WindowsUpdate.log [1595037] O44 - LFC:[MD5.D0EE1200FEFFFFFF4D4F44454D4C7E31] - 20/07/2011 - 08:01:22 ---A- . (...) -- C:\WINDOWS\ModemLog_HDAUDIO SoftV92 Data Fax Modem with SmartCP.txt [4126] O44 - LFC:[MD5.B101A2111B7291D5EAA2EBC11476925D] - 20/07/2011 - 07:58:52 ---A- . (...) -- C:\WINDOWS\System32\NvApps.xml [254461] O44 - LFC:[MD5.D41D8CD98F00B204E9800998ECF8427E] - 20/07/2011 - 07:57:59 ---A- . (...) -- C:\WINDOWS\0.log [0] O44 - LFC:[MD5.D0EE1200FEFFFFFF000000000CF21200] - 20/07/2011 - 07:57:23 ---A- . (...) -- C:\WINDOWS\wiadebug.log [159] O44 - LFC:[MD5.D0EE1200FEFFFFFF000000000CF21200] - 20/07/2011 - 07:57:23 ---A- . (...) -- C:\WINDOWS\wiaservc.log [50] O44 - LFC:[MD5.6A2CB42966136854F4464516FBB4AE72] - 20/07/2011 - 07:56:58 -S-A- . (...) -- C:\WINDOWS\bootstat.dat [2048] O44 - LFC:[MD5.D0EE1200FEFFFFFF000000000CF21200] - 20/07/2011 - 02:58:51 ---A- . (...) -- C:\WINDOWS\SchedLgU.Txt [32584] O44 - LFC:[MD5.DD260210FC2F3B7FDDCF6BE7EED6F812] - 19/07/2011 - 23:48:42 ---A- . (...) -- C:\WINDOWS\System32\d3d9caps.dat [664] O44 - LFC:[MD5.326F0768CF4BF7A71895CF5CD3E1D1BC] - 19/07/2011 - 20:59:39 --HA- . (...) -- C:\ntuser.dat.LOG [1024] O44 - LFC:[MD5.116935C6C81C6AE10D5A21E32DCA913A] - 19/07/2011 - 20:52:33 ---A- . (...) -- C:\WINDOWS\System32\hs_err_pid1188.log [13154] O44 - LFC:[MD5.70C703FE1946766FD22BFC66E9C2E9F1] - 19/07/2011 - 11:19:26 ---A- . (...) -- C:\WINDOWS\ntbtlog.txt [192136] O44 - LFC:[MD5.3F4DFDCFB26921E28C138C752A7B970A] - 19/07/2011 - 11:06:46 ---A- . (...) -- C:\PDOXUSRS.NET [13030] O44 - LFC:[MD5.58F6F3523E50A2158A060CB175CA22E7] - 19/07/2011 - 11:03:20 ---A- . (...) -- C:\PhysicalDisk0_MBR.bin [512] O44 - LFC:[MD5.383842C021FC8C9F972F2841BC0743EC] - 18/07/2011 - 19:26:55 ---A- . (.LogMeIn, Inc. - LogMeIn Rfs Client Network Provider.) -- C:\WINDOWS\System32\LMIRfsClientNP.dll [83360] O44 - LFC:[MD5.4A97045AFCA4A7373C951ED2D7AECF16] - 18/07/2011 - 19:26:50 ---A- . (.LogMeIn, Inc. - LogMeIn Remote Control Helper.) -- C:\WINDOWS\System32\LMIinit.dll [87424] O44 - LFC:[MD5.5D3AA86F4D9AB5D4A50E6DAABB05C0BB] - 18/07/2011 - 19:26:50 ---A- . (.LogMeIn, Inc. - RemotelyAnywhere Printer Port Monitor.) -- C:\WINDOWS\System32\LMIport.dll [29568] O44 - LFC:[MD5.F8C7E4BD35083E3B08551E2CB98178A8] - 17/07/2011 - 19:25:40 ---A- . (...) -- C:\WINDOWS\System32\wpa.dbl [1158] O44 - LFC:[MD5.012AACFA41D33BB7E6414D9FBF7248EE] - 16/07/2011 - 18:22:09 ---A- . (...) -- C:\WINDOWS\setupapi.log [40101] O44 - LFC:[MD5.7091EFAB1F1CB1FC739287801C979086] - 16/07/2011 - 17:55:32 ---A- . (...) -- C:\WINDOWS\setupact.log [150] O44 - LFC:[MD5.038C9B0B65E69DBB5EC0383FEDD90967] - 13/07/2011 - 21:10:21 ---A- . (...) -- C:\WINDOWS\System32\FNTCACHE.DAT [306808] O44 - LFC:[MD5.E598AA3C37531B49B4593628236EB5FB] - 13/07/2011 - 21:02:07 ---A- . (...) -- C:\WINDOWS\MedCtrOC.log [860] O44 - LFC:[MD5.3787DEF3495B2D15391303E039B7C168] - 13/07/2011 - 21:02:07 ---A- . (...) -- C:\WINDOWS\ehOCGen.log [676] O44 - LFC:[MD5.D1F5BDD22E9C89E4FED43605543D8B05] - 13/07/2011 - 21:02:06 ---A- . (...) -- C:\WINDOWS\FaxSetup.log [12366] O44 - LFC:[MD5.11BCB0C475C8499DC5251372C9E45B4F] - 13/07/2011 - 21:02:06 ---A- . (...) -- C:\WINDOWS\KB2507938.log [18430] O44 - LFC:[MD5.3176648AA983F680545B920E5B597F15] - 13/07/2011 - 21:02:06 ---A- . (...) -- C:\WINDOWS\comsetup.log [4077] O44 - LFC:[MD5.3323D5F7D583C37F3D0770486BA034A5] - 13/07/2011 - 21:02:06 ---A- . (...) -- C:\WINDOWS\iis6.log [13269] O44 - LFC:[MD5.37C02E83EC902B7D4F0715CA91E68B0D] - 13/07/2011 - 21:02:06 ---A- . (...) -- C:\WINDOWS\imsins.log [1374] O44 - LFC:[MD5.99971954B9696B61EB71D6D33E4A5371] - 13/07/2011 - 21:02:06 ---A- . (...) -- C:\WINDOWS\msgsocm.log [618] O44 - LFC:[MD5.BCE1F93E67A66F30DECA934DB39AF240] - 13/07/2011 - 21:02:06 ---A- . (...) -- C:\WINDOWS\netfxocm.log [2166] O44 - LFC:[MD5.37AF3F22A4AD7725830056C84A8FC93D] - 13/07/2011 - 21:02:06 ---A- . (...) -- C:\WINDOWS\ntdtcsetup.log [2466] O44 - LFC:[MD5.2B449ADE943ADF0EB4887B541BCE5BF5] - 13/07/2011 - 21:02:06 ---A- . (...) -- C:\WINDOWS\ocgen.log [5912] O44 - LFC:[MD5.BB1DB6C3DCE2CB996D7D1A86E495C391] - 13/07/2011 - 21:02:06 ---A- . (...) -- C:\WINDOWS\ocmsn.log [684] O44 - LFC:[MD5.AF391F7C7EF475334ECAA1BCA27CE37B] - 13/07/2011 - 21:02:06 ---A- . (...) -- C:\WINDOWS\plusoc.log [1378] O44 - LFC:[MD5.5EC1C83EB6F859A36F1E7693CCA4B5F2] - 13/07/2011 - 21:02:06 ---A- . (...) -- C:\WINDOWS\tabletoc.log [622] O44 - LFC:[MD5.7CA9CFEEDEF8924160E6D559A1EF6E58] - 13/07/2011 - 21:02:06 ---A- . (...) -- C:\WINDOWS\tsoc.log [5642] O44 - LFC:[MD5.9E9D93690DD578A874D14CE36F41A837] - 13/07/2011 - 21:02:04 ---A- . (...) -- C:\WINDOWS\msmqinst.log [3756] O44 - LFC:[MD5.06241E60040A753A51B27A832958F1EB] - 13/07/2011 - 21:02:01 ---A- . (...) -- C:\WINDOWS\updspapi.log [594] O44 - LFC:[MD5.E88B9E6B9660FE413532C9DE43ADBD40] - 13/07/2011 - 20:57:12 ---A- . (...) -- C:\WINDOWS\KB2555917.log [17852] O44 - LFC:[MD5.1792F84431F7CBD0EB17936C519291C0] - 13/07/2011 - 20:57:12 ---A- . (...) -- C:\WINDOWS\imsins.BAK [1374] O44 - LFC:[MD5.D41D8CD98F00B204E9800998ECF8427E] - 13/07/2011 - 20:57:04 ---A- . (...) -- C:\WINDOWS\setuperr.log [0] O44 - LFC:[MD5.DCC78B14C94A442C60981A7095B4A730] - 13/07/2011 - 09:15:38 ---A- . (...) -- C:\WINDOWS\NeroDigital.ini [69] O44 - LFC:[MD5.EDD5584E0025D6EAB2E1838D5485D26A] - 12/07/2011 - 22:18:18 ---A- . (...) -- C:\WINDOWS\wmsetup.log [2027] O44 - LFC:[MD5.ECA00EED9AB95489007B0EF84C7149DE] - 06/07/2011 - 18:52:42 ---A- . (.Malwarebytes Corporation - Malwarebytes' Anti-Malware.) -- C:\WINDOWS\System32\drivers\mbam.sys [22712] O44 - LFC:[MD5.B18225739ED9CAA83BA2DF966E9F43E8] - 06/07/2011 - 18:52:42 ---A- . (.Malwarebytes Corporation - Malwarebytes' Anti-Malware.) -- C:\WINDOWS\System32\drivers\mbamswissarmy.sys [41272] O44 - LFC:[MD5.14C9E39DFF257E5957FF56023A0656F2] - 29/06/2011 - 10:38:25 ---A- . (...) -- C:\ntuser.dat [262144] ---\\ Opérations et fonctions au démarrage de Windows Explorer (O46) O46 - SEH:ShellExecuteHooks - URL Exec Hook - {AEB6717E-7E19-11d0-97EE-00C04FD91972} - shell32.dll ---\\ Export de clé d'application autorisée (O47) O47 - AAKE:Key Export SP - "%windir%\system32\sessmgr.exe" [Enabled] .(.Microsoft Corporation - Gestionnaire de session de l'aide sur le Bureau à distance de Microsoft®.) -- C:\WINDOWS\system32\sessmgr.exe O47 - AAKE:Key Export SP - "C:\Program Files\Adobe\Photoshop Elements 4.0\AdobePhotoshopElementsMediaServer.exe" [Disabled] .(...) -- C:\Program Files\Adobe\Photoshop Elements 4.0\AdobePhotoshopElementsMediaServer.exe (.not file.) O47 - AAKE:Key Export SP - "%windir%\Network Diagnostic\xpnetdiag.exe" [Enabled] .(.Microsoft Corporation - Network Diagnostic for Windows XP.) -- C:\WINDOWS\Network Diagnostic\xpnetdiag.exe O47 - AAKE:Key Export SP - "C:\Program Files\Windows Live\Messenger\wlcsdk.exe" [Enabled] .(.Microsoft Corporation - Windows Live Call.) -- C:\Program Files\Windows Live\Messenger\wlcsdk.exe O47 - AAKE:Key Export SP - "C:\Program Files\Windows Live\Messenger\msnmsgr.exe" [Enabled] .(.Microsoft Corporation - Windows Live Messenger.) -- C:\Program Files\Windows Live\Messenger\msnmsgr.exe O47 - AAKE:Key Export SP - "C:\Program Files\Raptr\raptr.exe" [Enabled] .(...) -- C:\Program Files\Raptr\raptr.exe (.not file.) O47 - AAKE:Key Export SP - "C:\Program Files\Raptr\raptr_im.exe" [Enabled] .(...) -- C:\Program Files\Raptr\raptr_im.exe (.not file.) O47 - AAKE:Key Export SP - "C:\Program Files\WinTV\WinTV7\WinTV7.exe" [Enabled] .(.Hauppauge Computer Works, Inc. - WinTV7.) -- C:\Program Files\WinTV\WinTV7\WinTV7.exe O47 - AAKE:Key Export SP - "C:\Program Files\CyberLink\TV Enhance\TVEnhance.exe" [Enabled] .(.CyberLink Corp. - CyberLink TV Enhance Main Program.) -- C:\Program Files\CyberLink\TV Enhance\TVEnhance.exe O47 - AAKE:Key Export SP - "C:\Program Files\CyberLink\TV Enhance\TVEService.exe" [Enabled] .(.CyberLink Corp. - CyberLink PowerCinema Resident Program.) -- C:\Program Files\CyberLink\TV Enhance\TVEService.exe O47 - AAKE:Key Export SP - "C:\Program Files\eMule\emule.exe" [Enabled] .(.http://www.emule-project.net - eMule.) -- C:\Program Files\eMule\emule.exe O47 - AAKE:Key Export SP - "C:\Program Files\Java\jre6\bin\javaw.exe" [Enabled] .(.Sun Microsystems, Inc. - Java Platform SE binary.) -- C:\Program Files\Java\jre6\bin\javaw.exe O47 - AAKE:Key Export SP - "C:\Program Files\Java\jre6\bin\javaws.exe" [Enabled] .(.Sun Microsystems, Inc. - Java Web Start Launcher.) -- C:\Program Files\Java\jre6\bin\javaws.exe O47 - AAKE:Key Export SP - "C:\Documents and Settings\Julien\Local Settings\Temp\jdic_0_9_5\IeEmbed.exe" [Enabled] .(...) -- C:\Documents and Settings\Julien\Local Settings\Temp\jdic_0_9_5\IeEmbed.exe (.not file.) O47 - AAKE:Key Export SP - "C:\Program Files\Java\jre6\launch4j-tmp\crazyloader.exe" [Enabled] .(.Sun Microsystems, Inc. - Java Platform SE binary.) -- C:\Program Files\Java\jre6\launch4j-tmp\crazyloader.exe O47 - AAKE:Key Export SP - "C:\Program Files\ma-config.com\maconfservice.exe" [Enabled] .(.CybelSoft - Service de détection matériel.) -- C:\Program Files\ma-config.com\maconfservice.exe O47 - AAKE:Key Export SP - "C:\Program Files\Vuze\Azureus.exe" [Enabled] .(.Vuze Inc. - Pas de description.) -- C:\Program Files\Vuze\Azureus.exe O47 - AAKE:Key Export SP - "C:\Program Files\Bonjour\mDNSResponder.exe" [Enabled] .(.Apple Inc. - Bonjour Service.) -- C:\Program Files\Bonjour\mDNSResponder.exe O47 - AAKE:Key Export SP - "C:\Program Files\iTunes\iTunes.exe" [Enabled] .(.Apple Inc. - iTunes.) -- C:\Program Files\iTunes\iTunes.exe O47 - AAKE:Key Export SP - "C:\WINDOWS\pchealth\helpctr\binaries\helpctr.exe" [Enabled] .(.Microsoft Corporation - Microsoft Help and Support Center.) -- C:\WINDOWS\pchealth\helpctr\binaries\helpctr.exe O47 - AAKE:Key Export DP - "%windir%\system32\sessmgr.exe" [Enabled] .(.Microsoft Corporation - Gestionnaire de session de l'aide sur le Bureau à distance de Microsoft®.) -- C:\WINDOWS\system32\sessmgr.exe O47 - AAKE:Key Export DP - "%windir%\Network Diagnostic\xpnetdiag.exe" [Enabled] .(.Microsoft Corporation - Network Diagnostic for Windows XP.) -- C:\WINDOWS\Network Diagnostic\xpnetdiag.exe O47 - AAKE:Key Export DP - "C:\Program Files\Windows Live\Messenger\wlcsdk.exe" [Enabled] .(.Microsoft Corporation - Windows Live Call.) -- C:\Program Files\Windows Live\Messenger\wlcsdk.exe O47 - AAKE:Key Export DP - "C:\Program Files\Windows Live\Messenger\msnmsgr.exe" [Enabled] .(.Microsoft Corporation - Windows Live Messenger.) -- C:\Program Files\Windows Live\Messenger\msnmsgr.exe O47 - AAKE:Key Export DP - "C:\Program Files\CyberLink\TV Enhance\TVEnhance.exe" [Enabled] .(.CyberLink Corp. - CyberLink TV Enhance Main Program.) -- C:\Program Files\CyberLink\TV Enhance\TVEnhance.exe O47 - AAKE:Key Export DP - "C:\Program Files\CyberLink\TV Enhance\TVEService.exe" [Enabled] .(.CyberLink Corp. - CyberLink PowerCinema Resident Program.) -- C:\Program Files\CyberLink\TV Enhance\TVEService.exe ---\\ Contrôle du Safe Boot (CSB) (O49) O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\dmboot.sys . (.Microsoft Corp., Veritas Software - Pilote de démarrage du gestionnaire de disque NT.) -- C:\WINDOWS\System32\Drivers\dmboot.sys O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\dmio.sys . (.Microsoft Corp., Veritas Software - Pilote E/S du Gestionnaire de disques NT.) -- C:\WINDOWS\System32\Drivers\dmio.sys O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\dmload.sys . (.Microsoft Corp., Veritas Software. - NT Disk Manager Startup Driver.) -- C:\WINDOWS\System32\Drivers\dmload.sys O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\sermouse.sys . (...) -- C:\WINDOWS\System32\Drivers\sermouse.sys (.not file.) O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\sr.sys . (.Microsoft Corporation - Pilote de filtre de système de fichiers pour la restauration du système.) -- C:\WINDOWS\System32\Drivers\sr.sys O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\vga.sys . (.Microsoft Corporation - VGA/Super VGA Video Driver.) -- C:\WINDOWS\System32\Drivers\vga.sys O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\vgasave.sys . (...) -- C:\WINDOWS\System32\Drivers\vgasave.sys (.not file.) O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\dmboot.sys . (.Microsoft Corp., Veritas Software - Pilote de démarrage du gestionnaire de disque NT.) -- C:\WINDOWS\System32\Drivers\dmboot.sys O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\dmio.sys . (.Microsoft Corp., Veritas Software - Pilote E/S du Gestionnaire de disques NT.) -- C:\WINDOWS\System32\Drivers\dmio.sys O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\dmload.sys . (.Microsoft Corp., Veritas Software. - NT Disk Manager Startup Driver.) -- C:\WINDOWS\System32\Drivers\dmload.sys O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\ip6fw.sys . (.Microsoft Corporation - IPv6 Windows Firewall Driver.) -- C:\WINDOWS\System32\Drivers\ip6fw.sys O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\ipnat.sys . (.Microsoft Corporation - IP Network Address Translator.) -- C:\WINDOWS\System32\Drivers\ipnat.sys O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\rdpcdd.sys . (.Microsoft Corporation - RDP Miniport.) -- C:\WINDOWS\System32\Drivers\rdpcdd.sys O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\rdpdd.sys . (...) -- C:\WINDOWS\System32\Drivers\rdpdd.sys (.not file.) O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\rdpwd.sys . (.Microsoft Corporation - RDP Terminal Stack Driver (US/Canada Only, Not for Export).) -- C:\WINDOWS\System32\Drivers\rdpwd.sys O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\sermouse.sys . (...) -- C:\WINDOWS\System32\Drivers\sermouse.sys (.not file.) O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\sr.sys . (.Microsoft Corporation - Pilote de filtre de système de fichiers pour la restauration du système.) -- C:\WINDOWS\System32\Drivers\sr.sys O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\tdpipe.sys . (.Microsoft Corporation - Named Pipe Transport Driver.) -- C:\WINDOWS\System32\Drivers\tdpipe.sys O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\tdtcp.sys . (.Microsoft Corporation - TCP Transport Driver.) -- C:\WINDOWS\System32\Drivers\tdtcp.sys O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\vga.sys . (.Microsoft Corporation - VGA/Super VGA Video Driver.) -- C:\WINDOWS\System32\Drivers\vga.sys O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\vgasave.sys . (...) -- C:\WINDOWS\System32\Drivers\vgasave.sys (.not file.) ---\\ Image File Execution Options (IFEO) (O50) O50 - IFEO:Image File Execution Options - Your Image File Name Here without a path - ntsd -d ---\\ Trojan Driver Search Data (HKLM) (O52) O52 - TDSD: \Drivers32\"msacm.trspch"="tssoft32.acm" . (.DSP GROUP, INC. - Codec audio TrueSpeech DSP Group pour MSACM V3.50.) -- C:\WINDOWS\System32\tssoft32.acm O52 - TDSD: \Drivers32\"vidc.cvid"="iccvid.dll" . (.Radius Inc. - Cinepak® Codec.) -- C:\WINDOWS\System32\iccvid.dll O52 - TDSD: \Drivers32\"vidc.iv31"="ir32_32.dll" . (...) -- C:\WINDOWS\System32\ir32_32.dll O52 - TDSD: \Drivers32\"vidc.iv32"="ir32_32.dll" . (...) -- C:\WINDOWS\System32\ir32_32.dll O52 - TDSD: \Drivers32\"vidc.iv41"="ir41_32.ax" . (.Intel Corporation - Intel Indeo® Video 4.5.) -- C:\WINDOWS\System32\ir41_32.ax O52 - TDSD: \Drivers32\"msacm.sl_anet"="sl_anet.acm" . (.Sipro Lab Telecom Inc. - Audio codec for MS ACM.) -- C:\WINDOWS\System32\sl_anet.acm O52 - TDSD: \Drivers32\"msacm.iac2"="C:\WINDOWS\system32\iac25_32.ax" . (.Intel Corporation - Indeo® audio software.) -- C:\WINDOWS\system32\iac25_32.ax O52 - TDSD: \Drivers32\"vidc.iv50"="ir50_32.dll" . (.Intel Corporation - Intel Indeo® video 5.10.) -- C:\WINDOWS\System32\ir50_32.dll O52 - TDSD: \Drivers32\"msacm.l3acm"="C:\WINDOWS\system32\l3codeca.acm" . (.Fraunhofer Institut Integrierte Schaltungen - MPEG Layer-3 Audio Codec for MSACM.) -- C:\WINDOWS\system32\l3codeca.acm O52 - TDSD: \Drivers32\"VIDC.dvsd"="C:\PROGRA~1\FICHIE~1\SONYSH~1\VideoLib\sonydv.dll" . (...) -- (.not file.) O52 - TDSD: \Drivers32\"msacm.l3codecp"="" . (...) -- (.not file.) O52 - TDSD: \drivers.desc\"sl_anet.acm"="Sipro Lab Telecom Audio Codec" . (.Sipro Lab Telecom Inc. - Audio codec for MS ACM.) -- C:\WINDOWS\System32\sl_anet.acm O52 - TDSD: \drivers.desc\"C:\WINDOWS\system32\iac25_32.ax"="Indeo® audio software" . (.Intel Corporation - Indeo® audio software.) -- C:\WINDOWS\system32\iac25_32.ax O52 - TDSD: \drivers.desc\"ir50_32.dll"="Indeo® video 5.10" . (...) -- (.not file.) O52 - TDSD: \drivers.desc\"C:\WINDOWS\system32\l3codeca.acm"="Fraunhofer IIS MPEG Layer-3 Codec" . (.Fraunhofer Institut Integrierte Schaltungen - MPEG Layer-3 Audio Codec for MSACM.) -- C:\WINDOWS\system32\l3codeca.acm O52 - TDSD: \drivers.desc\"l3codecp.acm"="" . (.Fraunhofer Institut Integrierte Schaltungen - MPEG Audio Layer-3 Codec for MSACM.) -- C:\WINDOWS\System32\l3codecp.acm ---\\ ShareTools MSconfig StartupReg (O53) O53 - SMSR:HKLM\...\startupreg\Adobe ARM [Key] . (.Adobe Systems Incorporated - Adobe Reader and Acrobat Manager.) -- C:\Program Files\Fichiers communs\Adobe\ARM\1.0\AdobeARM.exe O53 - SMSR:HKLM\...\startupreg\Adobe Reader Speed Launcher [Key] . (.Adobe Systems Incorporated - Adobe Acrobat SpeedLauncher.) -- C:\Program Files\Adobe\Reader 10.0\Reader\Reader_sl.exe O53 - SMSR:HKLM\...\startupreg\AppleSyncNotifier [Key] . (.Apple Inc. - AppleSyncNotifier.) -- C:\Program Files\Fichiers communs\Apple\Mobile Device Support\AppleSyncNotifier.exe O53 - SMSR:HKLM\...\startupreg\Badoo Desktop [Key] . (.Badoo - Badoo Desktop.) -- C:\Documents and Settings\All Users\Application Data\Badoo\Badoo desktop\1.5.3.949\Badoo.desktop.exe O53 - SMSR:HKLM\...\startupreg\BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA} [Key] . (.Nero AG - Nero Home.) -- C:\Program Files\Fichiers communs\Ahead\Lib\NMBgMonitor.exe O53 - SMSR:HKLM\...\startupreg\CLMLServer [Key] . (.CyberLink - CyberLink MediaLibray Service.) -- C:\Program Files\CyberLink\PowerCinema\Kernel\CLML\CLMLSvc.exe O53 - SMSR:HKLM\...\startupreg\FlashPlayerUpdate [Key] . (.Adobe Systems, Inc. - Adobe® Flash® Player Installer/Uninstaller.) -- C:\WINDOWS\system32\Macromed\Flash\FlashUtil10q_ActiveX.exe O53 - SMSR:HKLM\...\startupreg\Google Update [Key] . (.Google Inc. - Programme d'installation de Google.) -- C:\Documents and Settings\Julien\Local Settings\Application Data\Google\Update\GoogleUpdate.exe O53 - SMSR:HKLM\...\startupreg\iTunesHelper [Key] . (.Apple Inc. - iTunesHelper.) -- C:\Program Files\iTunes\iTunesHelper.exe O53 - SMSR:HKLM\...\startupreg\PCMAgent [Key] . (.CyberLink Corp. - CyberLink PowerCinema Resident Program.) -- C:\Program Files\CyberLink\PowerCinema\PCMAgent.exe O53 - SMSR:HKLM\...\startupreg\PlayMovie [Key] . (.CyberLink Corp. - CyberLink PlayMovie Resident Program.) -- C:\Program Files\CyberLink\PlayMovie\PMVService.exe O53 - SMSR:HKLM\...\startupreg\QuickTime Task [Key] . (.Apple Inc. - QuickTime Task.) -- C:\Program Files\QuickTime\QTTask.exe O53 - SMSR:HKLM\...\startupreg\RECOVMSG [Key] . (.Sony Corporation - VAIO Recovery Utility.) -- C:\Program Files\Sony\VAIO Recovery Utility\VARU.exe O53 - SMSR:HKLM\...\startupreg\SunJavaUpdateSched [Key] . (.Sun Microsystems, Inc. - Java Update Scheduler.) -- C:\Program Files\Fichiers communs\Java\Java Update\jusched.exe O53 - SMSR:HKLM\...\startupreg\TVEService [Key] . (.CyberLink Corp. - CyberLink PowerCinema Resident Program.) -- C:\Program Files\CyberLink\TV Enhance\TVEService.exe O53 - SMSR:HKLM\...\startupreg\VAIO Update 2 [Key] . (...) -- C:\Program Files\Sony\VAIO Update 2\VAIOUpdt.exe (.not file.) O53 - SMSR:HKLM\...\startupreg\VAIOCameraUtility [Key] . (.Sony Corporation - VAIO Camera Utility Server.) -- C:\Program Files\Sony\VAIO Camera Utility\VCUServe.exe ---\\ Microsoft Control Security Providers (O54) O54 - MCSP:[HKLM\...\CurrentControlSet\Control] - (SecurityProviders) - (.Microsoft Corporation - Client DPA pour plate-forme 32 bit.) -- C:\WINDOWS\system32\msapsspc.dll O54 - MCSP:[HKLM\...\CurrentControlSet\Control] - (SecurityProviders) - (.Microsoft Corporation - TLS / SSL Security Provider.) -- C:\WINDOWS\system32\schannel.dll O54 - MCSP:[HKLM\...\CurrentControlSet\Control] - (SecurityProviders) - (.Microsoft Corporation - Package d'authentification Digest SSPI.) -- C:\WINDOWS\system32\digest.dll O54 - MCSP:[HKLM\...\ControlSet001\Control] - (SecurityProviders) - (.Microsoft Corporation - Client DPA pour plate-forme 32 bit.) -- C:\WINDOWS\system32\msapsspc.dll O54 - MCSP:[HKLM\...\ControlSet001\Control] - (SecurityProviders) - (.Microsoft Corporation - TLS / SSL Security Provider.) -- C:\WINDOWS\system32\schannel.dll O54 - MCSP:[HKLM\...\ControlSet001\Control] - (SecurityProviders) - (.Microsoft Corporation - Package d'authentification Digest SSPI.) -- C:\WINDOWS\system32\digest.dll ---\\ Microsoft Windows Policies System (O55) O55 - MWPS:[HKLM\...\Policies\System] - "dontdisplaylastusername"=0 O55 - MWPS:[HKLM\...\Policies\System] - "legalnoticecaption"= O55 - MWPS:[HKLM\...\Policies\System] - "legalnoticetext"= O55 - MWPS:[HKLM\...\Policies\System] - "shutdownwithoutlogon"=1 O55 - MWPS:[HKLM\...\Policies\System] - "undockwithoutlogon"=1 O55 - MWPS:[HKLM\...\Policies\System] - "InstallVisualStyle"=C:\WINDOWS\Resources\Themes\Royale\Royale.msstyles O55 - MWPS:[HKLM\...\Policies\System] - "InstallTheme"=C:\WINDOWS\Resources\Themes\Royale.theme ---\\ Microsoft Windows Policies Explorer (O56) O56 - MWPE:[HKCU\...\policies\Explorer] - "NoDriveTypeAutoRun"=145 O56 - MWPE:[HKLM\...\policies\Explorer] - "HonorAutoRunSetting"=1 ---\\ Liste des Drivers Système (O58) O58 - SDL:[MD5.B21FCBC58CB13BAC70F74B5AC5DA7409] - 22/11/2004 - 05:31:10 ---A- . (.Alps Electric Co., Ltd. - Alps Touch Pad Driver.) -- C:\WINDOWS\system32\drivers\Apfiltr.sys [108767] O58 - SDL:[MD5.5B44C214F9CD9F590BE9125347610380] - 13/02/2009 - 11:17:49 ---A- . (.Avira GmbH - Avira AntiVir File Filter Driver.) -- C:\WINDOWS\system32\drivers\avgntdd.sys [45416] O58 - SDL:[MD5.47B879406246FFDCED59E18D331A0E7D] - 17/12/2010 - 04:12:57 ---A- . (.Avira GmbH - Avira Minifilter Driver.) -- C:\WINDOWS\system32\drivers\avgntflt.sys [61960] O58 - SDL:[MD5.87451AA7CC6B6A590EBCEA05E755075A] - 17/06/2010 - 15:28:03 ---A- . (.Avira GmbH - Avira AntiVir File Filter Driver Manager.) -- C:\WINDOWS\system32\drivers\avgntmgr.sys [22360] O58 - SDL:[MD5.5FEDEF54757B34FB611B9EC8FB399364] - 01/04/2011 - 09:07:27 ---A- . (.Avira GmbH - Avira Driver for Security Enhancement.) -- C:\WINDOWS\system32\drivers\avipbb.sys [137656] O58 - SDL:[MD5.BF79E659C506674C0497CC9C61F1A165] - 28/04/2006 - 11:00:00 ---A- . (.Sonic Solutions - CDR4 CD and DVD Place Holder Driver (see PxHelp).) -- C:\WINDOWS\system32\drivers\cdr4_xp.sys [2432] O58 - SDL:[MD5.2C41CD49D82D5FD85C72D57B6CA25471] - 28/04/2006 - 11:00:00 ---A- . (.Sonic Solutions - CDRAL Place Holder Driver (see PxHelp).) -- C:\WINDOWS\system32\drivers\cdralw2k.sys [2560] O58 - SDL:[MD5.C9B25AE9B8ABD983C5AD3F8CBFAB0F9C] - 10/08/2004 - 13:00:00 ---A- . (.RAVISENT Technologies Inc. - Pilote principal CineMaster C 1.2 WDM.) -- C:\WINDOWS\system32\drivers\cinemst2.sys [262528] O58 - SDL:[MD5.9624293E55AD405415862B504CA95B73] - 10/08/2004 - 13:00:00 ---A- . (.Compaq Computer Corporation - Compaq PA-1 Player Driver.) -- C:\WINDOWS\system32\drivers\cpqdap01.sys [11776] O58 - SDL:[MD5.526192BF7696F72E29777BF4A180513A] - 05/12/2000 - 15:18:02 ---A- . (.Sony Corporation - Windows 2000 DMI Call Kernel Driver.) -- C:\WINDOWS\system32\drivers\DMICall.sys [3952] O58 - SDL:[MD5.BF94ACF77E2C7458D91D0BEF8718EECE] - 05/07/2010 - 13:39:30 ---A- . (.Windows ® Win 7 DDK provider - Dokan Filesystem Driver.) -- C:\WINDOWS\system32\drivers\dokan.sys [84608] O58 - SDL:[MD5.D57A8FC800B501AC05B10D00F66D127A] - 13/06/2005 - 05:58:04 ---A- . (.Intel Corporation - Intel® PRO/100 Adapter NDIS 5.1 driver.) -- C:\WINDOWS\system32\drivers\e100b325.sys [162816] O58 - SDL:[MD5.389CF2CDED384BE477C3B3F15747D495] - 06/07/2005 - 05:33:26 ---A- . (.Intel Corporation - Intel® PRO/1000 Adapter NDIS 5.1 deserialized driver.) -- C:\WINDOWS\system32\drivers\e1e5132.sys [176128] O58 - SDL:[MD5.8182FF89C65E4D38B2DE4BB0FB18564E] - 18/05/2009 - 12:17:00 ---A- . (.GEAR Software Inc. - CD DVD Filter.) -- C:\WINDOWS\system32\drivers\GEARAspiWDM.sys [26600] O58 - SDL:[MD5.F454484E633CEF3045C38BDA5479A5F7] - 03/06/2009 - 15:38:00 ---A- . (.Hauppauge Computer Works, Inc. - Hauppauge WinTV HVR-900H-Stick.) -- C:\WINDOWS\system32\drivers\hcw66xxx.sys [673664] O58 - SDL:[MD5.573C7D0A32852B48F3058CFD8026F511] - 13/04/2008 - 17:36:05 ---A- . (.Windows ® Server 2003 DDK provider - High Definition Audio Bus Driver v1.0a.) -- C:\WINDOWS\system32\drivers\hdaudbus.sys [144384] O58 - SDL:[MD5.9131EDE087AF04A7D80F7EBADC164254] - 12/08/2004 - 16:45:52 ---A- . (.Windows ® Server 2003 DDK provider - High Definition Audio Function Driver v1.0.) -- C:\WINDOWS\system32\drivers\Hdaudio.sys [113664] O58 - SDL:[MD5.ACC46DDA7FECE95A253AE88CEA172E12] - 18/10/2005 - 08:52:34 ---A- . (.Conexant Systems, Inc. - HSF_HWAZL WDM driver.) -- C:\WINDOWS\system32\drivers\HSFHWAZL.sys [202112] O58 - SDL:[MD5.C1D5CBD8AA0D674DA1BA1BB189696396] - 18/10/2005 - 08:52:30 ---A- . (.Conexant Systems, Inc. - HSF_CNXT driver.) -- C:\WINDOWS\system32\drivers\HSF_CNXT.sys [721280] O58 - SDL:[MD5.C9F4E7DA78A02623ABF78A4A34CE79B1] - 18/10/2005 - 08:53:24 ---A- . (.Conexant Systems, Inc. - HSF_DP driver.) -- C:\WINDOWS\system32\drivers\HSF_DPV.sys [998656] O58 - SDL:[MD5.552B6B3B889020B8A2D5525068A494B4] - 03/07/2007 - 18:10:10 ---A- . (.Ahead Software AG - NERO IMAGEDRIVE SCSI miniport.) -- C:\WINDOWS\system32\drivers\imagedrv.sys [11304] O58 - SDL:[MD5.1BE72919F1B489FB8C06AE7CEF45C659] - 03/07/2007 - 18:10:12 ---A- . (.Ahead Software AG - Nero Image Server.) -- C:\WINDOWS\system32\drivers\imagesrv.sys [132904] O58 - SDL:[MD5.4477689E2D8AE6B78BA34C9AF4CC1ED1] - 27/01/2010 - 11:21:36 ---A- . (.LogMeIn, Inc. - LogMeIn Mirror Miniport Driver.) -- C:\WINDOWS\system32\drivers\lmimirr.sys [10144] O58 - SDL:[MD5.3FAA563DDF853320F90259D455A01D79] - 27/01/2010 - 11:22:02 ---A- . (.LogMeIn, Inc. - LogMeIn Rfs Drivemap Driver.) -- C:\WINDOWS\system32\drivers\LMIRfsDriver.sys [47640] O58 - SDL:[MD5.ECA00EED9AB95489007B0EF84C7149DE] - 06/07/2011 - 18:52:42 ---A- . (.Malwarebytes Corporation - Malwarebytes' Anti-Malware.) -- C:\WINDOWS\system32\drivers\mbam.sys [22712] O58 - SDL:[MD5.B18225739ED9CAA83BA2DF966E9F43E8] - 06/07/2011 - 18:52:42 ---A- . (.Malwarebytes Corporation - Malwarebytes' Anti-Malware.) -- C:\WINDOWS\system32\drivers\mbamswissarmy.sys [41272] O58 - SDL:[MD5.E246A32C445056996074A397DA56E815] - 05/10/2005 - 08:57:08 ---A- . (.Conexant - Diagnostic Interface DRIVER.) -- C:\WINDOWS\system32\drivers\mdmxsdk.sys [12544] O58 - SDL:[MD5.3BDC90D9B12B685944F2B0896AF5413C] - 31/05/2010 - 10:58:36 ---A- . (.Intel Corporation - Intel® Wireless WiFi Link Driver.) -- C:\WINDOWS\system32\drivers\NETw5x32.sys [6608512] O58 - SDL:[MD5.BE984D604D91C217355CDD3737AAD25D] - 10/08/2004 - 13:00:00 ---A- . (.S3/Diamond Multimedia Systems - NikeDrv Usb Driver.) -- C:\WINDOWS\system32\drivers\nikedrv.sys [12032] O58 - SDL:[MD5.788F35282F1DDE15C80D74871B247C47] - 22/08/2010 - 14:58:09 ---A- . (.NVIDIA Corporation - NVIDIA Compatible Windows 2000 Miniport Driver, Version 191.56.) -- C:\WINDOWS\system32\drivers\nv4_mini.sys [7658464] O58 - SDL:[MD5.59B3101F20056104C011E0C68AEBB840] - 28/06/2002 - 17:21:40 ---A- . (.Primax Electronics Ltd. - Mouse Suite Driver (For Windows 2000 and Whistler Only).) -- C:\WINDOWS\system32\drivers\PELMOUSE.SYS [17251] O58 - SDL:[MD5.F1CE775AF376FAF3FFEFB4FF8CBDFBF3] - 24/07/2001 - 09:34:34 ---A- . (.Primax Electronics Ltd. - USB Mouse Low Filter Driver(Win2000 only).) -- C:\WINDOWS\system32\drivers\PELUSBlf.SYS [7520] O58 - SDL:[MD5.80D317BD1C3DBC5D4FE7B1678C60CADD] - 10/08/2004 - 13:00:00 ---A- . (.Parallel Technologies, Inc. - Parallel Technologies DirectParallel IO Library.) -- C:\WINDOWS\system32\drivers\ptilink.sys [17792] O58 - SDL:[MD5.183EF96BCC2EC3D5294CB2C2C0ECBCD1] - 26/10/2005 - 21:12:48 ---A- . (.Sonic Solutions - Px Engine Device Driver for Windows 2000/XP.) -- C:\WINDOWS\system32\drivers\pxhelp20.sys [20640] O58 - SDL:[MD5.B953369C5EF43615F1BFA9CEA69FC9AA] - 18/05/2010 - 15:54:50 ---A- . (.LogMeIn, Inc. - RemotelyAnywhereDpmsSecure Device Driver.) -- C:\WINDOWS\system32\drivers\radpms.sys [13408] O58 - SDL:[MD5.A56FE08EC7473E8580A390BB1081CDD7] - 10/08/2004 - 13:00:00 ---A- . (.S3/Diamond Multimedia Systems - Rio8Drv.sys Usb Driver.) -- C:\WINDOWS\system32\drivers\rio8drv.sys [12032] O58 - SDL:[MD5.0A854DF84C77A0BE205BFEAB2AE4F0EC] - 10/08/2004 - 13:00:00 ---A- . (.S3/Diamond Multimedia Systems - RioDrv Usb Driver.) -- C:\WINDOWS\system32\drivers\riodrv.sys [12032] O58 - SDL:[MD5.90A3935D05B494A5A39D37E71F09A677] - 13/04/2008 - 17:39:15 ---A- . (.Macrovision Corporation, Macrovision Europe - Macrovision SECURITY Driver.) -- C:\WINDOWS\system32\drivers\secdrv.sys [20480] O58 - SDL:[MD5.716A724A447C559F122EA140D636FA48] - 21/09/2005 - 01:04:56 ---A- . (.Silicon Image, Inc. - Serial ATA miniport driver.) -- C:\WINDOWS\system32\drivers\SI3132.sys [67456] O58 - SDL:[MD5.62FD549ACF2943F89612A8777295FA57] - 20/09/2005 - 07:18:20 ---A- . (.Silicon Image, Inc. - Filter driver for Silicon Image SATALink controllers..) -- C:\WINDOWS\system32\drivers\SiRemFil.sys [5248] O58 - SDL:[MD5.72CF151FB410E544904DBC7D7F29B796] - 01/11/2004 - 04:21:32 ---A- . (.Silicon Image, Inc. - Windows Accelerator Driver.) -- C:\WINDOWS\system32\drivers\SiWinAcc.sys [10368] O58 - SDL:[MD5.C483FC0ADD8B074286600B9620EF2C16] - 06/03/2006 - 10:39:00 ---A- . (.Sony Corporation - Sony Image Filter Driver.) -- C:\WINDOWS\system32\drivers\SonyImgF.sys [30080] O58 - SDL:[MD5.BE6038E0A7D2E2FE69107E41A0265831] - 09/11/2000 - 11:15:08 ---A- . (.Sony Corporation - Sony Notebook Control driver.) -- C:\WINDOWS\system32\drivers\SonyNC.sys [48896] O58 - SDL:[MD5.D0EE1200FEFFFFFF00000000A0F11200] - 02/09/2010 - 00:00:00 ---A- . (...) -- C:\WINDOWS\system32\drivers\sptd.sys [691696] O58 - SDL:[MD5.A36EE93698802CD899F98BFD553D8185] - 17/06/2010 - 15:28:02 ---A- . (.Avira GmbH - AVIRA SnapShot Driver.) -- C:\WINDOWS\system32\drivers\ssmdrv.sys [28520] O58 - SDL:[MD5.784B73BD9D1C0FBA6CA96E8976F4B0E6] - 26/05/2006 - 23:59:12 ---A- . (.SigmaTel, Inc. - NDRC.) -- C:\WINDOWS\system32\drivers\sthda.sys [1177032] O58 - SDL:[MD5.26587CE8E6C6F16B8B4E7E2C16FA00BF] - 21/02/2006 - 10:32:32 ---A- . (.Texas Instruments - ti21sony.sys.) -- C:\WINDOWS\system32\drivers\ti21sony.sys [226304] O58 - SDL:[MD5.78E9819E076B909541BD4A37F8F0668B] - 07/04/2003 - 20:52:00 ---A- . (.TOSHIBA Corporation - TOSHIBA SD Bluetooth Card #2 Driver.) -- C:\WINDOWS\system32\drivers\tosbtsd2.sys [21120] O58 - SDL:[MD5.142B91503C45C1A05A355414E13A51D1] - 30/08/2004 - 15:27:30 ---A- . (.TOSHIBA Corporation - SD Bluetooth Transport Driver.) -- C:\WINDOWS\system32\drivers\tosdbt.sys [48640] O58 - SDL:[MD5.E362D54FD394999C4178936396664E57] - 11/07/2005 - 17:58:56 ---A- . (.TOSHIBA Corporation. - Toshiba Bluetooth HID mini port driver.) -- C:\WINDOWS\system32\drivers\toshidpt.sys [3712] O58 - SDL:[MD5.D626E0AF9232D8799D3A449530F3C220] - 24/11/2005 - 12:37:36 ---A- . (.TOSHIBA Corporation - TOSHIBA Bluetooth Port Emulation Driver.) -- C:\WINDOWS\system32\drivers\tosporte.sys [47104] O58 - SDL:[MD5.0EC5206059D97A8DC785BE73FB457EC7] - 02/02/2006 - 22:16:08 ---A- . (.TOSHIBA CORPORATION - Bluetooth RF Bus Driver.) -- C:\WINDOWS\system32\drivers\tosrfbd.sys [108928] O58 - SDL:[MD5.33498B8F0B2CA549C2B7FFC1B3C0F1BC] - 14/12/2005 - 16:07:24 ---A- . (.TOSHIBA Corporation - Bluetooth RFBNEP Driver.) -- C:\WINDOWS\system32\drivers\tosrfbnp.sys [37632] O58 - SDL:[MD5.5BA1CA3B3CDDB1DDC67DF473F05D1EC2] - 01/08/2005 - 15:45:08 ---A- . (.TOSHIBA Corporation - Bluetooth RFCOMM Driver.) -- C:\WINDOWS\system32\drivers\tosrfcom.sys [64896] O58 - SDL:[MD5.CC069342EE0EAE55B32A0AE99CF6185C] - 09/09/2005 - 13:47:10 ---A- . (.TOSHIBA Corporation - TOSHIBA Bluetooth EC Driver.) -- C:\WINDOWS\system32\drivers\tosrfec.sys [9344] O58 - SDL:[MD5.5DBF390AAB62DD0D4D43A9278614E001] - 08/02/2006 - 16:33:34 ---A- . (.TOSHIBA Corporation. - Bluetooth HID Driver from TOSHIBA.) -- C:\WINDOWS\system32\drivers\tosrfhid.sys [62848] O58 - SDL:[MD5.AE5B75C86574A1BD0A093A9159F829F9] - 07/02/2002 - 15:24:20 ---A- . (.TOSHIBA Corporation. - Bluetooth LAN Emulation Driver.) -- C:\WINDOWS\system32\drivers\tosrflan.sys [25420] O58 - SDL:[MD5.C52FD27B9ADF3A1F22CB90E6BCF9B0CB] - 06/01/2005 - 12:42:42 ---A- . (.TOSHIBA Corporation. - Bluetooth BNEP Driver.) -- C:\WINDOWS\system32\drivers\tosrfnds.sys [18612] O58 - SDL:[MD5.87031831486F7ED4EAFEF27125BB56C8] - 01/08/2002 - 20:53:22 ---A- . (.TOSHIBA Corporation - Bluetooth TOSHIBA PC-Card Driver.) -- C:\WINDOWS\system32\drivers\tosrfpcc.sys [160672] O58 - SDL:[MD5.0D86D15CAFF2B3203C785D604EC7C942] - 11/11/2005 - 14:09:52 ---A- . (.TOSHIBA Corporation - Bluetooth Audio Driver (WDM).) -- C:\WINDOWS\system32\drivers\tosrfsnd.sys [52864] O58 - SDL:[MD5.C582B7716F0BE7E65505365F4F941587] - 31/01/2006 - 17:35:28 ---A- . (.TOSHIBA CORPORATION - Bluetooth USB Miniport Driver.) -- C:\WINDOWS\system32\drivers\tosrfusb.sys [39808] O58 - SDL:[MD5.306E19413EADB0CA8842D5381A0354FC] - 01/07/2003 - 11:52:30 ---A- . (.TOSHIBA Corporation - Toshiba SD-IO Transport Driver.) -- C:\WINDOWS\system32\drivers\tostrans.sys [16320] O58 - SDL:[MD5.D74A8EC75305F1D3CFDE7C7FC1BD62A9] - 10/08/2004 - 13:00:00 ---A- . (.Toshiba Corporation - WDM Toshiba Tecra Video Capture Driver.) -- C:\WINDOWS\system32\drivers\tsbvcap.sys [21376] O58 - SDL:[MD5.83CAFCB53201BBAC04D822F32438E244] - 10/05/2011 - 07:06:08 ---A- . (.Apple, Inc. - Apple Mobile Device USB Driver.) -- C:\WINDOWS\system32\drivers\usbaapl.sys [42496] O58 - SDL:[MD5.C7F4158EA3915F4194AEE233FF8D4728] - 29/12/2005 - 10:42:00 ---A- . (.Vimicro Corporation - VM321 Video Driver.) -- C:\WINDOWS\system32\drivers\usbvm321.sys [234496] O58 - SDL:[MD5.55E01061C74A8CEFFF58DC36114A8D3F] - 10/08/2004 - 13:00:00 ---A- . (.RAVISENT Technologies Inc. - CineMaster C WDM DVD Minidriver.) -- C:\WINDOWS\system32\drivers\vdmindvd.sys [58112] O58 - SDL:[MD5.6D3ADA4CE95CECA7BCE527A08C4C474E] - 10/08/2004 - 13:00:00 ---A- . (...) -- C:\WINDOWS\system32\ansi.sys [9037] O58 - SDL:[MD5.0FE9F16075C9ACB941C957B7C649176E] - 10/08/2004 - 13:00:00 ---A- . (...) -- C:\WINDOWS\system32\country.sys [27097] O58 - SDL:[MD5.C6D29F29DE7427B1B0775E53E577B623] - 10/08/2004 - 13:00:00 ---A- . (...) -- C:\WINDOWS\system32\himem.sys [4912] O58 - SDL:[MD5.582BCDD47CF4B68B5CB528F18E3CB808] - 10/08/2004 - 13:00:00 ---A- . (...) -- C:\WINDOWS\system32\key01.sys [42809] O58 - SDL:[MD5.FBBCFEC1379C5C02D88A361993EDF1B8] - 10/08/2004 - 13:00:00 ---A- . (...) -- C:\WINDOWS\system32\keyboard.sys [42537] O58 - SDL:[MD5.7D30A74B5FB9FE3B245A6CE5FBCD71D5] - 10/08/2004 - 13:00:00 ---A- . (...) -- C:\WINDOWS\system32\ntdos.sys [27916] O58 - SDL:[MD5.CF9ED169FF86D935E47999E82359E898] - 10/08/2004 - 13:00:00 ---A- . (...) -- C:\WINDOWS\system32\ntdos404.sys [29146] O58 - SDL:[MD5.03B945AC0481CD8BB161C3569D8ED1C3] - 10/08/2004 - 13:00:00 ---A- . (...) -- C:\WINDOWS\system32\ntdos411.sys [29370] O58 - SDL:[MD5.BBC957DC18C17CC027EB80B7C77F2AEA] - 10/08/2004 - 13:00:00 ---A- . (...) -- C:\WINDOWS\system32\ntdos412.sys [29274] O58 - SDL:[MD5.3CFFAEFFF23B0D208214A6D3061A5B1B] - 10/08/2004 - 13:00:00 ---A- . (...) -- C:\WINDOWS\system32\ntdos804.sys [29146] O58 - SDL:[MD5.CAAA108FD7BF71989946B39704323455] - 10/08/2004 - 13:00:00 ---A- . (...) -- C:\WINDOWS\system32\ntio.sys [34000] O58 - SDL:[MD5.6F73F50162DEF60C84B725C18CD9140F] - 10/08/2004 - 13:00:00 ---A- . (...) -- C:\WINDOWS\system32\ntio404.sys [34560] O58 - SDL:[MD5.0FDD5E69C1FF3B58043D44F2CC743D45] - 10/08/2004 - 13:00:00 ---A- . (...) -- C:\WINDOWS\system32\ntio411.sys [35648] O58 - SDL:[MD5.8842837C4D8311BF8E72BEE8CCC42217] - 10/08/2004 - 13:00:00 ---A- . (...) -- C:\WINDOWS\system32\ntio412.sys [35424] O58 - SDL:[MD5.6B56CEB3C6F9D5CD7293DBD9FE23B311] - 10/08/2004 - 13:00:00 ---A- . (...) -- C:\WINDOWS\system32\ntio804.sys [34560] ---\\ Liste des outils de nettoyage (O63) O63 - Logiciel: ZHPDiag 1.27 - (.Nicolas Coolman.) [HKLM] -- ZHPDiag_is1 ---\\ Liste des services Legacy (O64) O64 - Services: CurCS - 27/04/2011 - C:\Program Files\Avira\AntiVir Desktop\sched.exe - Avira AntiVir Planificateur(AntiVirSchedulerService) .(.Avira GmbH - Antivirus Scheduler.) - LEGACY_ANTIVIRSCHEDULERSERVICE O64 - Services: CurCS - 01/04/2011 - C:\Program Files\Avira\AntiVir Desktop\avguard.exe - Avira AntiVir Guard(AntiVirService) .(.Avira GmbH - Antivirus On-Access Service.) - LEGACY_ANTIVIRSERVICE O64 - Services: CurCS - 17/06/2010 - C:\Program Files\Avira\AntiVir Desktop\avgio.sys - avgio(avgio) .(.Avira GmbH - Avira AntiVir Support for Minifilter.) - LEGACY_AVGIO O64 - Services: CurCS - 17/12/2010 - C:\WINDOWS\System32\DRIVERS\avgntflt.sys - avgntflt(avgntflt) .(.Avira GmbH - Avira Minifilter Driver.) - LEGACY_AVGNTFLT O64 - Services: CurCS - 01/04/2011 - C:\WINDOWS\System32\DRIVERS\avipbb.sys - avipbb(avipbb) .(.Avira GmbH - Avira Driver for Security Enhancement.) - LEGACY_AVIPBB O64 - Services: CurCS - ??/??/???? - C:\DOCUME~1\Julien\LOCALS~1\Temp\catchme.sys (.not file.) - catchme (catchme) .(...) - LEGACY_CATCHME O64 - Services: CurCS - 18/12/2009 - C:\Program Files\systemRequirementsLab\cpudrv.sys - cpudrv (cpudrv) .(...) - LEGACY_CPUDRV O64 - Services: CurCS - 14/04/2008 - C:\WINDOWS\System32\dmadmin.exe - Service d'administration du Gestionnaire de disque logique(dmadmin) .(.Microsoft Corp., Veritas Software - Processus du service Gestionnaire de disque.) - LEGACY_DMADMIN O64 - Services: CurCS - 14/04/2008 - C:\WINDOWS\System32\drivers\dmboot.sys - dmboot(dmboot) .(.Microsoft Corp., Veritas Software - Pilote de démarrage du gestionnaire de disq.) - LEGACY_DMBOOT O64 - Services: CurCS - 05/12/2000 - C:\WINDOWS\System32\DRIVERS\DMICall.sys - Sony DMI Call service(DMICall) .(.Sony Corporation - Windows 2000 DMI Call Kernel Driver.) - LEGACY_DMICALL O64 - Services: CurCS - 10/08/2004 - C:\WINDOWS\System32\drivers\dmload.sys - dmload(dmload) .(.Microsoft Corp., Veritas Software. - NT Disk Manager Startup Driver.) - LEGACY_DMLOAD O64 - Services: CurCS - 05/07/2010 - C:\WINDOWS\system32\drivers\dokan.sys - Dokan(Dokan) .(.Windows ® Win 7 DDK provider - Dokan Filesystem Driver.) - LEGACY_DOKAN O64 - Services: CurCS - 05/07/2010 - C:\Program Files\Dokan\DokanLibrary\mounter.exe - DokanMounter (DokanMounter) .(...) - LEGACY_DOKANMOUNTER O64 - Services: CurCS - 30/08/2010 - C:\Program Files\ma-config.com\Drivers\driverhardwarev2.sys - driverhardwarev2(driverhardwarev2) .(.CybelSoft - Driver NT Ma-Config.com.) - LEGACY_DRIVERHARDWAREV2 O64 - Services: CurCS - 29/03/2010 - C:\PROGRA~1\WinTV\TVServer\HAUPPA~1.exe - HauppaugeTVServer(HauppaugeTVServer) .(.Hauppauge Computer Works - Hauppauge TV Server.) - LEGACY_HAUPPAUGETVSERVER O64 - Services: CurCS - 22/08/2010 - c:\Program Files\Java\jre6\bin\jqs.exe - Java Quick Starter(JavaQuickStarterService) .(.Sun Microsystems, Inc. - Java Quick Starter Service.) - LEGACY_JAVAQUICKSTARTERSERVICE O64 - Services: CurCS - 18/07/2011 - C:\Program Files\LogMeIn\x86\LMIGuardianSvc.exe - LMIGuardianSvc(LMIGuardianSvc) .(.LogMeIn, Inc. - LMIGuardianSvc.) - LEGACY_LMIGUARDIANSVC O64 - Services: CurCS - 27/01/2010 - C:\Program Files\LogMeIn\x86\RaInfo.sys - LogMeIn Kernel Information Provider(LMIInfo) .(.LogMeIn, Inc. - RemotelyAnywhere Kernel Information Provide.) - LEGACY_LMIINFO O64 - Services: CurCS - 18/07/2011 - C:\Program Files\LogMeIn\x86\RaMaint.exe - LogMeIn Maintenance Service(LMIMaint) .(.LogMeIn, Inc. - LogMeIn Maintenance Service.) - LEGACY_LMIMAINT O64 - Services: CurCS - 27/01/2010 - C:\WINDOWS\system32\drivers\LMIRfsDriver.sys - LogMeIn Remote File System Driver(LMIRfsDriver) .(.LogMeIn, Inc. - LogMeIn Rfs Drivemap Driver.) - LEGACY_LMIRFSDRIVER O64 - Services: CurCS - 16/12/2010 - C:\Program Files\LogMeIn\x86\LogMeIn.exe - LogMeIn(LogMeIn) .(.LogMeIn, Inc. - LogMeIn.) - LEGACY_LOGMEIN O64 - Services: CurCS - 12/09/2010 - C:\Program Files\ma-config.com\maconfservice.exe - Ma-Config Service(maconfservice) .(.CybelSoft - Service de détection matériel.) - LEGACY_MACONFSERVICE O64 - Services: CurCS - 06/07/2011 - C:\WINDOWS\system32\drivers\mbamswissarmy.sys - No object(No service) .(.Malwarebytes Corporation - Malwarebytes' Anti-Malware.) - LEGACY_MBAMSWISSARMY O64 - Services: CurCS - 27/06/2007 - C:\Program Files\Fichiers communs\Ahead\Lib\NMIndexingService.exe - NMIndexingService(NMIndexingService) .(.Nero AG - Nero Home.) - LEGACY_NMINDEXINGSERVICE O64 - Services: CurCS - 01/10/2009 - C:\WINDOWS\system32\nvsvc32.exe - NVIDIA Display Driver Service(NVSvc) .(.NVIDIA Corporation - NVIDIA Driver Helper Service, Version 191.5.) - LEGACY_NVSVC O64 - Services: CurCS - 28/11/2008 - C:\Program Files\CyberLink\Shared files\RichVideo.exe - Cyberlink RichVideo Service(CRVS)(RichVideo) .(.Pas de propriétaire - RichVideo Module.) - LEGACY_RICHVIDEO O64 - Services: CurCS - ??/??/???? - C:\WINDOWS\System32\DRIVERS\s24trans.sys (.not file.) - Transport RLAN (s24trans) .(...) - LEGACY_S24TRANS O64 - Services: CurCS - 21/09/2005 - C:\WINDOWS\System32\DRIVERS\SI3132.sys - SiI-3132 SATALink Controller(SI3132) .(.Silicon Image, Inc. - Serial ATA miniport driver.) - LEGACY_SI3132 O64 - Services: CurCS - 01/11/2004 - C:\WINDOWS\System32\DRIVERS\SiWinAcc.sys - SATALink driver accelerator(SiFilter) .(.Silicon Image, Inc. - Windows Accelerator Driver.) - LEGACY_SIFILTER O64 - Services: CurCS - 19/07/2011 - C:\WINDOWS\System32\Drivers\sptd.sys - sptd (sptd) .(...) - LEGACY_SPTD O64 - Services: CurCS - 17/06/2010 - C:\WINDOWS\System32\DRIVERS\ssmdrv.sys - ssmdrv(ssmdrv) .(.Avira GmbH - AVIRA SnapShot Driver.) - LEGACY_SSMDRV O64 - Services: CurCS - 28/11/2008 - C:\Program Files\CyberLink\TV Enhance\Kernel\TV\TVECapSvc.exe - TVEnhance Background Capture Service (TBCS)(TVECapSvc) .(.Pas de propriétaire - CLCapSvc Module.) - LEGACY_TVECAPSVC O64 - Services: CurCS - 28/11/2008 - C:\Program Files\CyberLink\TV Enhance\Kernel\TV\TVESched.exe - TVEnhance Task Scheduler (TTS))(TVESched) .(.Pas de propriétaire - CLSched Module.) - LEGACY_TVESCHED O64 - Services: CurCS - 16/05/2008 - C:\Program Files\CyberLink\PlayMovie\000.fcl - {49DE1C67-83F8-4102-99E0-C16DCC7EEC796}({49DE1C67-83F8-4102-99E0-C16DCC7EEC796}) .(.Cyberlink Corp. - FCL Driver.) - LEGACY_{49DE1C67-83F8-4102-99E0-C16DCC7EEC796} ---\\ File Associations Shell Spawning (O67) O67 - Shell Spawning: <.bat> <batfile>[HKLM\..\open\Command] (. - .) -- "%1" %* O67 - Shell Spawning: <.cpl> <cplfile>[HKLM\..\cplopen\Command] (.Microsoft Corporation - DLL commune du shell Windows.) -- C:\Windows\System32\shell32.dll O67 - Shell Spawning: <.cmd> <cmdfile>[HKLM\..\open\Command] (.Microsoft Corporation - DLL commune du shell Windows.) -- "%1" %* O67 - Shell Spawning: <.com> <comfile>[HKLM\..\open\Command] (.Microsoft Corporation - DLL commune du shell Windows.) -- "%1" %* O67 - Shell Spawning: <.exe> <exefile>[HKLM\..\open\Command] (...) -- "%1" %* O67 - Shell Spawning: <.html> <htmlfile>[HKLM\..\open\Command] (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files\Internet Explorer\IEXPLORE.exe O67 - Shell Spawning: <.js> <JSFile>[HKLM\..\open\Command] (.Microsoft Corporation - Microsoft ® Windows Based Script Host.) -- C:\WINDOWS\System32\WScript.exe O67 - Shell Spawning: <.reg> <regfile>[HKLM\..\open\Command] (.Microsoft Corporation - Éditeur du Registre.) -- C:\WINDOWS\regedit.exe O67 - Shell Spawning: <.html> <ChromeHTML>[HKCU\..\open\Command] (.Not Key.) O67 - Shell Spawning: <.bat> <batfile>[HKCR\..\open\Command] (...) -- "%1" %* O67 - Shell Spawning: <.cpl> <cplfile>[HKCR\..\cplopen\Command] (.Microsoft Corporation - DLL commune du shell Windows.) -- C:\Windows\System32\shell32.dll O67 - Shell Spawning: <.cmd> <cmdfile>[HKCR\..\open\Command] (.Microsoft Corporation - DLL commune du shell Windows.) -- "%1" %* O67 - Shell Spawning: <.com> <comfile>[HKCR\..\open\Command] (.Microsoft Corporation - DLL commune du shell Windows.) -- "%1" %* O67 - Shell Spawning: <.exe> <exefile>[HKCR\..\open\Command] (...) -- "%1" %* O67 - Shell Spawning: <.html> <ChromeHTML>[HKCR\..\open\Command] (.Google Inc. - Google Chrome.) -- C:\Documents and Settings\Julien\Local Settings\Application Data\Google\Chrome\Application\chrome.exe O67 - Shell Spawning: <.js> <JSFile>[HKCR\..\open\Command] (.Microsoft Corporation - Microsoft ® Windows Based Script Host.) -- C:\WINDOWS\System32\WScript.exe O67 - Shell Spawning: <.reg> <regfile>[HKCR\..\open\Command] (.Microsoft Corporation - Éditeur du Registre.) -- C:\WINDOWS\regedit.exe ---\\ Start Menu Internet (O68) O68 - StartMenuInternet: <chrome.exe> <>[HKLM\..\Shell\open\Command] (.Google Inc. - Google Chrome.) -- C:\Documents and Settings\Julien\Local Settings\Application Data\Google\Chrome\Application\chrome.exe O68 - StartMenuInternet: <FIREFOX.EXE> <Mozilla Firefox>[HKLM\..\Shell\open\Command] (.Mozilla Corporation - Firefox.) -- C:\Program Files\Mozilla Firefox\firefox.exe O68 - StartMenuInternet: <Google Chrome> <Google Chrome>[HKLM\..\Shell\open\Command] (.Google Inc. - Google Chrome.) -- C:\Documents and Settings\Julien\Local Settings\Application Data\Google\Chrome\Application\chrome.exe O68 - StartMenuInternet: <IEXPLORE.EXE> <Internet Explorer>[HKLM\..\Shell\open\Command] (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files\Internet Explorer\iexplore.exe ---\\ Search Browser Infection (O69) O69 - SBI: SearchScopes [HKCU] {0633EE93-D776-472f-A0FF-E1416B8B2E3A} - (Bing) - Bing O69 - SBI: SearchScopes [HKCU] {10B4E706-0FB5-43BE-88B2-C3CC5CCFECC8} - (Surf Canyon) - Surf Canyon Search O69 - SBI: SearchScopes [HKCU] {92406CCC-8429-456A-B9DD-86BD03BD0DD6} [DefaultScope] - (Google) - Google O69 - SBI: SearchScopes [HKCU] {FE12CA2B-51D7-4CCA-B8DB-D1AAFC8BBBDC} - (Yahoo! Search) - Yahoo! Search - Recherche Web O69 - SBI: SearchScopes [HKUS\.DEFAULT] {0633EE93-D776-472f-A0FF-E1416B8B2E3A} [DefaultScope] - (Bing) - Bing O69 - SBI: SearchScopes [HKUS\S-1-5-18] {0633EE93-D776-472f-A0FF-E1416B8B2E3A} [DefaultScope] - (Bing) - Bing ---\\ Internet Feature Controls (O81) O81 - IFC: Internet Feature Controls [HKUS\.DEFAULT] [FEATURE_BROWSER_EMULATION] -- svchost.exe O81 - IFC: Internet Feature Controls [HKUS\S-1-5-18] [FEATURE_BROWSER_EMULATION] -- svchost.exe ---\\ Scan Additionnel (O88) Database Version : 8538 - (24/06/2011) Clés trouvées (Keys found) : 4 Valeurs trouvées (Values found) : 0 Dossiers trouvés (Folders found) : 6 Fichiers trouvés (Files found) : 0 [HKLM\Software\Classes\Conduit.Engine] =>Toolbar.Conduit [HKLM\Software\Classes\Toolbar.ct2504091] =>Adware.Agent [HKLM\Software\Classes\Toolbar.CT2905330] =>Toolbar.Agent [HKLM\Software\Conduit] =>Toolbar.Conduit C:\Documents and Settings\Julien\Application Data\Adobe\plugs =>Trojan.FakeAlert C:\Documents and Settings\Julien\Application Data\Adobe\shed =>Trojan.FakeAlert C:\Documents and Settings\Julien\Local Settings\Application Data\Conduit =>Toolbar.Conduit C:\Documents and Settings\Julien\Application Data\Mozilla\Firefox\Profiles\6j42v6nf.default\Conduit =>Toolbar.Conduit C:\Documents and Settings\Julien\Application Data\Mozilla\Firefox\Profiles\6j42v6nf.default\ConduitEngine =>Toolbar.Conduit C:\Documents and Settings\Julien\Application Data\Mozilla\Firefox\Profiles\6j42v6nf.default\Extensions\engine@conduit.com =>Toolbar.Conduit ---\\ Etat général des services non Microsoft (EGS) (SR=Running, SS=Stopped) SR - | Auto 27/04/2011 136360 | (AntiVirSchedulerService) . (.Avira GmbH.) - C:\Program Files\Avira\AntiVir Desktop\sched.exe SR - | Auto 01/04/2011 269480 | (AntiVirService) . (.Avira GmbH.) - C:\Program Files\Avira\AntiVir Desktop\avguard.exe SR - | Auto 18/02/2011 37664 | (Apple Mobile Device) . (.Apple Inc..) - C:\Program Files\Fichiers communs\Apple\Mobile Device Support\AppleMobileDeviceService.exe SR - | Auto 06/04/2011 349472 | (Bonjour Service) . (.Apple Inc..) - C:\Program Files\Bonjour\mDNSResponder.exe SS - | Demand 14/04/2008 225280 | (dmadmin) . (.Microsoft Corp., Veritas Software.) - C:\WINDOWS\System32\dmadmin.exe SR - | Auto 05/07/2010 22016 | (DokanMounter) . (...) - C:\Program Files\Dokan\DokanLibrary\mounter.exe SR - | Auto 29/03/2010 602624 | (HauppaugeTVServer) . (.Hauppauge Computer Works.) - C:\PROGRA~1\WinTV\TVServer\HAUPPA~1.exe SR - | Demand 07/06/2011 820520 | (iPod Service) . (.Apple Inc..) - C:\Program Files\iPod\bin\iPodService.exe SR - | Auto 22/08/2010 153376 | (JavaQuickStarterService) . (.Sun Microsystems, Inc..) - c:\Program Files\Java\jre6\bin\jqs.exe SR - | Auto 18/07/2011 374152 | (LMIGuardianSvc) . (.LogMeIn, Inc..) - C:\Program Files\LogMeIn\x86\LMIGuardianSvc.exe SR - | Auto 18/07/2011 136584 | (LMIMaint) . (.LogMeIn, Inc..) - C:\Program Files\LogMeIn\x86\RaMaint.exe SR - | Auto 16/12/2010 390528 | (LogMeIn) . (.LogMeIn, Inc..) - C:\Program Files\LogMeIn\x86\LogMeIn.exe SS - | Demand 12/09/2010 251248 | (maconfservice) . (.CybelSoft.) - C:\Program Files\ma-config.com\maconfservice.exe SS - | Demand 29/06/2007 800040 | (NBService) . (.Nero AG.) - C:\Program Files\Nero\Nero 7\Nero BackItUp\NBService.exe SS - | Demand 27/06/2007 279848 | (NMIndexingService) . (.Nero AG.) - C:\Program Files\Fichiers communs\Ahead\Lib\NMIndexingService.exe SR - | Auto 01/10/2009 172100 | (NVSvc) . (.NVIDIA Corporation.) - C:\WINDOWS\system32\nvsvc32.exe SR - | Auto 28/11/2008 241734 | (RichVideo) . (...) - C:\Program Files\CyberLink\Shared files\RichVideo.exe SR - | Auto 28/11/2008 372831 | (TVECapSvc) . (...) - C:\Program Files\CyberLink\TV Enhance\Kernel\TV\TVECapSvc.exe SR - | Auto 28/11/2008 184413 | (TVESched) . (...) - C:\Program Files\CyberLink\TV Enhance\Kernel\TV\TVESched.exe SR - | Auto 13/04/2006 176128 | (VAIO Event Service) . (.Sony Corporation.) - C:\Program Files\Sony\VAIO Event Service\VESMgr.exe SR - | Auto 16/05/2008 61424 | ({49DE1C67-83F8-4102-99E0-C16DCC7EEC796}) . (.Cyberlink Corp..) - C:\Program Files\CyberLink\PlayMovie\000.fcl ---\\ Recherche Master Boot Record Infection (MBR)(O80) Stealth MBR rootkit/Mebroot/Sinowal/TDL4 detector 0.4.2 by Gmer, GMER - Rootkit Detector and Remover Run by Julien at 20/07/2011 09:04:40 device: opened successfully user: MBR read successfully Disk trace: called modules: ntkrnlpa.exe CLASSPNP.SYS disk.sys ACPI.sys hal.dll >>UNKNOWN [0x89CD14D0]<< 1 ntkrnlpa!IofCallDriver[0x804EF1A6] -> \Device\Harddisk0\DR0[0x89DA0AB8] 3 CLASSPNP[0xBA108FD7] -> ntkrnlpa!IofCallDriver[0x804EF1A6] -> \Device\00000089[0x89D3A030] 5 ACPI[0xB9E73620] -> ntkrnlpa!IofCallDriver[0x804EF1A6] -> [0x89E48398] \Driver\atapi[0x89D22758] -> IRP_MJ_CREATE -> 0x89CD14D0 error: Read Un périphérique attaché au système ne fonctionne pas correctement. kernel: MBR read successfully detected disk devices: detected hooks: \Driver\atapi DriverStartIo -> 0x89CD131B user & kernel MBR OK Warning: possible TDL3 rootkit infection ! ---\\ Recherche Master Boot Record Infection (MBRCheck)(O80) Written by ad13, http://ad13.geekstog Run by Julien at 20/07/2011 09:04:42 ********* Dump file Name ********* C:\PhysicalDisk0_MBR.bin ---\\ Liste des émulateurs de CD/DVD (Hook du MBR) O58 - SDL:[MD5.D0EE1200FEFFFFFF00000000A0F11200] - 02/09/2010 - 00:00:00 ---A- . (...) -- C:\WINDOWS\system32\drivers\sptd.sys [691696] End of the scan (1261 lines in 03mn 51s)(0)
- le 20 juillet 2011
- 6 réponses
Trop de processus au démarrage

jude18 a répondu à un(e) sujet de jude18 dans Optimisation, Trucs & Astuces

Bonjour Tibonhomme , quand je dis longue c'est en tout point , démarrage, navigation , ouverture de fichier Que voici : Logfile of random's system information tool 1.07 (written by random/random) Run by Julien at 2010-06-13 06:59:38 Microsoft Windows XP Professionnel Service Pack 3 System drive C: has 25 GB (48%) free of 51 GB Total RAM: 2046 MB (53% free) Logfile of Trend Micro HijackThis v2.0.4 Scan saved at 07:00:07, on 13/06/2010 Platform: Windows XP SP3 (WinNT 5.01.2600) MSIE: Internet Explorer v8.00 (8.00.6001.18702) Boot mode: Normal Running processes: C:\WINDOWS\System32\smss.exe C:\WINDOWS\system32\winlogon.exe C:\WINDOWS\system32\services.exe C:\WINDOWS\system32\lsass.exe C:\WINDOWS\system32\nvsvc32.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\System32\svchost.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\system32\spoolsv.exe C:\Program Files\Avira\AntiVir Desktop\sched.exe C:\WINDOWS\Explorer.EXE C:\PROGRA~1\Agnitum\OUTPOS~1\acs.exe C:\Program Files\Avira\AntiVir Desktop\avguard.exe C:\WINDOWS\system32\dllhost.exe C:\WINDOWS\eHome\ehSched.exe C:\PROGRA~1\WinTV\TVServer\HAUPPA~1.EXE C:\Program Files\Google\Update\GoogleUpdate.exe C:\Program Files\Microsoft SQL Server\MSSQL$VAIO_VEDB\Binn\sqlservr.exe C:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe C:\Program Files\Sony\VAIO Event Service\VESMgr.exe C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WLIDSVC.EXE C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WLIDSvcM.exe C:\Program Files\Apoint\Apoint.exe C:\WINDOWS\ehome\ehtray.exe C:\WINDOWS\system32\ICO.EXE C:\Program Files\Sony\VAIO Power Management\SPMgr.exe C:\Program Files\Sony\ISB Utility\ISBMgr.exe C:\WINDOWS\system32\RUNDLL32.EXE C:\Program Files\Apoint\Apntex.exe C:\Program Files\Avira\AntiVir Desktop\avgnt.exe C:\Program Files\Microsoft IntelliPoint\ipoint.exe C:\WINDOWS\system32\wscript.exe C:\PROGRA~1\Agnitum\OUTPOS~1\op_mon.exe C:\WINDOWS\system32\ctfmon.exe C:\Program Files\Windows Live\Messenger\msnmsgr.exe C:\WINDOWS\system32\svchost.exe C:\Program Files\CyberLink\PowerCinema\Kernel\TV\CLCapSvc.exe C:\Program Files\Outlook Express\msimn.exe C:\Program Files\Windows Live\Contacts\wlcomm.exe C:\Documents and Settings\Julien\Local Settings\Application Data\Google\Chrome\Application\chrome.exe C:\Documents and Settings\Julien\Local Settings\Application Data\Google\Chrome\Application\chrome.exe C:\Documents and Settings\Julien\Local Settings\Application Data\Google\Chrome\Application\chrome.exe C:\Documents and Settings\Julien\Local Settings\Application Data\Google\Chrome\Application\chrome.exe C:\Documents and Settings\Julien\Local Settings\Application Data\Google\Chrome\Application\chrome.exe C:\Documents and Settings\Julien\Local Settings\Application Data\Google\Chrome\Application\chrome.exe C:\Documents and Settings\Julien\Local Settings\Application Data\Google\Chrome\Application\chrome.exe C:\Documents and Settings\Julien\Local Settings\Application Data\Google\Chrome\Application\chrome.exe C:\Documents and Settings\Julien\Local Settings\Application Data\Google\Chrome\Application\chrome.exe C:\Program Files\CCleaner\CCleaner.exe C:\Documents and Settings\Julien\Bureau\RSIT.exe C:\Program Files\trend micro\Julien.exe R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.bouyguestelecom.fr R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157 R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896 R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896 R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157 R1 - HKCU\Software\Microsoft\Internet Connection Wizard,ShellNext = http://www.club-vaio.com/fr/ R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Fichiers communs\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live ID - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll O2 - BHO: Java Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll O4 - HKLM\..\Run: [Apoint] C:\Program Files\Apoint\Apoint.exe O4 - HKLM\..\Run: [ehTray] C:\WINDOWS\ehome\ehtray.exe O4 - HKLM\..\Run: [Mouse Suite 98 Daemon] ICO.EXE O4 - HKLM\..\Run: [sonyPowerCfg] "C:\Program Files\Sony\VAIO Power Management\SPMgr.exe" O4 - HKLM\..\Run: [iSBMgr.exe] C:\Program Files\Sony\ISB Utility\ISBMgr.exe O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\WINDOWS\system32\NvMcTray.dll,NvTaskbarInit O4 - HKLM\..\Run: [avgnt] "C:\Program Files\Avira\AntiVir Desktop\avgnt.exe" /min O4 - HKLM\..\Run: [intelliPoint] "c:\Program Files\Microsoft IntelliPoint\ipoint.exe" O4 - HKLM\..\Run: [uSB-Set] wscript "C:\Program Files\USB-set\TSR.vbe" O4 - HKLM\..\Run: [OutpostMonitor] C:\PROGRA~1\Agnitum\OUTPOS~1\op_mon.exe /tray /noservice O4 - HKLM\..\Run: [OutpostFeedBack] "C:\Program Files\Agnitum\Outpost Firewall\feedback.exe" /dump:os_startup O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe O4 - HKCU\..\Run: [msnmsgr] "C:\Program Files\Windows Live\Messenger\msnmsgr.exe" /background O8 - Extra context menu item: Ajouter un site de support RSS à VAIO Information FLOW - C:\Program Files\Sony\VAIO Information FLOW\aiesc.html O9 - Extra button: Recherche - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~4\OFFICE11\REFIEBAR.DLL O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe O14 - IERESET.INF: START_PAGE_URL=http://www.club-vaio.com/fr/ O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} (MUWebControl Class) - http://www.update.microsoft.com/microsoftu...b?1264006663828 O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/shoc...ash/swflash.cab O22 - SharedTaskScheduler: Pré-chargeur Browseui - {438755C2-A8BA-11D1-B96B-00A0C90312E1} - C:\WINDOWS\system32\browseui.dll O22 - SharedTaskScheduler: Démon de cache des catégories de composant - {8C7461EF-2B13-11d2-BE35-3078302C2030} - C:\WINDOWS\system32\browseui.dll O23 - Service: Agnitum Client Security Service (acssrv) - Agnitum Ltd. - C:\PROGRA~1\Agnitum\OUTPOS~1\acs.exe O23 - Service: Avira AntiVir Planificateur (AntiVirSchedulerService) - Avira GmbH - C:\Program Files\Avira\AntiVir Desktop\sched.exe O23 - Service: Avira AntiVir Guard (AntiVirService) - Avira GmbH - C:\Program Files\Avira\AntiVir Desktop\avguard.exe O23 - Service: CyberLink Background Capture Service (CBCS) (CLCapSvc) - Unknown owner - C:\Program Files\CyberLink\PowerCinema\Kernel\TV\CLCapSvc.exe O23 - Service: CyberLink Task Scheduler (CTS) (CLSched) - Unknown owner - C:\Program Files\CyberLink\PowerCinema\Kernel\TV\CLSched.exe O23 - Service: Service d'administration du Gestionnaire de disque logique (dmadmin) - Unknown owner - C:\WINDOWS\System32\dmadmin.exe O23 - Service: Service de planification Media Center (ehSched) - Unknown owner - C:\WINDOWS\eHome\ehSched.exe O23 - Service: Journal des événements (Eventlog) - Unknown owner - C:\WINDOWS\system32\services.exe O23 - Service: Service Google Update (gupdate) (gupdate) - Unknown owner - C:\Program Files\Google\Update\GoogleUpdate.exe O23 - Service: HauppaugeTVServer - Hauppauge Computer Works - C:\PROGRA~1\WinTV\TVServer\HAUPPA~1.EXE O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Fichiers communs\InstallShield\Driver\1150\Intel 32\IDriverT.exe O23 - Service: Ma-Config Service (maconfservice) - Unknown owner - C:\Program Files\ma-config.com\maconfservice.exe O23 - Service: MSCSPTISRV - Sony Corporation - C:\Program Files\Fichiers communs\Sony Shared\AVLib\MSCSPTISRV.exe O23 - Service: MSSQL$VAIO_VEDB - Unknown owner - C:\Program Files\Microsoft SQL Server\MSSQL$VAIO_VEDB\Binn\sqlservr.exe O23 - Service: NBService - Nero AG - C:\Program Files\Nero\Nero 7\Nero BackItUp\NBService.exe O23 - Service: NMIndexingService - Nero AG - C:\Program Files\Fichiers communs\Ahead\Lib\NMIndexingService.exe O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe O23 - Service: PACSPTISVR - Sony Corporation - C:\Program Files\Fichiers communs\Sony Shared\AVLib\PACSPTISVR.exe O23 - Service: Plug-and-Play (PlugPlay) - Unknown owner - C:\WINDOWS\system32\services.exe O23 - Service: Cyberlink RichVideo Service(CRVS) (RichVideo) - Unknown owner - C:\Program Files\CyberLink\Shared files\RichVideo.exe O23 - Service: Sony SPTI Service (SPTISRV) - Sony Corporation - C:\Program Files\Fichiers communs\Sony Shared\AVLib\SPTISRV.exe O23 - Service: Telnet (TlntSvr) - Unknown owner - C:\WINDOWS\system32\tlntsvr.exe O23 - Service: VAIO Entertainment TV Device Arbitration Service - Sony Corporation - C:\Program Files\Fichiers communs\Sony Shared\VAIO Entertainment Platform\VzCs\VzHardwareResourceManager\VzHardwareResourceManager.exe O23 - Service: VAIO Event Service - Sony Corporation - C:\Program Files\Sony\VAIO Event Service\VESMgr.exe O23 - Service: VAIO Cooporated Initialisation (VCI) - Sony Corporation - C:\Program Files\Sony\VAIO Cooperated Initialisation\VCI_SVC.exe O23 - Service: VAIO Entertainment UPnP Client Adapter (Vcsw) - Sony Corporation - C:\Program Files\Fichiers communs\Sony Shared\VAIO Entertainment Platform\VCSW\VCSW.exe O23 - Service: Cliché instantané de volume (VSS) - Unknown owner - C:\WINDOWS\System32\vssvc.exe O23 - Service: VUAgent - Sony Corporation - C:\Program Files\Sony\VAIO Update 5\VUAgent.exe O23 - Service: VAIO Entertainment Database Service (VzCdbSvc) - Sony Corporation - C:\Program Files\Fichiers communs\Sony Shared\VAIO Entertainment Platform\VzCdb\VzCdbSvc.exe O23 - Service: VAIO Entertainment File Import Service (VzFw) - Sony Corporation - C:\Program Files\Fichiers communs\Sony Shared\VAIO Entertainment Platform\VzCdb\VzFw.exe O23 - Service: Service Partage réseau du Lecteur Windows Media (WMPNetworkSvc) - Unknown owner - C:\Program Files\Windows Media Player\WMPNetwk.exe -- End of file - 10668 bytes ======Scheduled tasks folder====== C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job ======Registry dump====== [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}] Adobe PDF Link Helper - C:\Program Files\Fichiers communs\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2010-04-04 75200] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}] Programme d'aide de l'Assistant de connexion Windows Live ID - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2009-03-30 403824] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}] Java Plug-In 2 SSV Helper - C:\Program Files\Java\jre6\bin\jp2ssv.dll [2010-05-27 41760] [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run] "Apoint"=C:\Program Files\Apoint\Apoint.exe [2004-11-17 118784] "ehTray"=C:\WINDOWS\ehome\ehtray.exe [2005-08-05 64512] "Mouse Suite 98 Daemon"=C:\WINDOWS\system32\ICO.EXE [2002-03-14 45056] "SonyPowerCfg"=C:\Program Files\Sony\VAIO Power Management\SPMgr.exe [2006-06-27 217088] "ISBMgr.exe"=C:\Program Files\Sony\ISB Utility\ISBMgr.exe [2004-02-20 32768] "NvCplDaemon"=C:\WINDOWS\system32\NvCpl.dll [2009-10-01 13901824] "NvMediaCenter"=C:\WINDOWS\system32\NvMcTray.dll [2009-10-01 86016] "avgnt"=C:\Program Files\Avira\AntiVir Desktop\avgnt.exe [2009-03-02 209153] "IntelliPoint"=c:\Program Files\Microsoft IntelliPoint\ipoint.exe [2009-05-28 1468296] "USB-Set"=wscript C:\Program Files\USB-set\TSR.vbe [] "OutpostMonitor"=C:\PROGRA~1\Agnitum\OUTPOS~1\op_mon.exe [2009-04-28 2374464] "OutpostFeedBack"=C:\Program Files\Agnitum\Outpost Firewall\feedback.exe [2009-04-28 428032] [HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run] "ctfmon.exe"=C:\WINDOWS\system32\ctfmon.exe [2008-04-14 15360] "msnmsgr"=C:\Program Files\Windows Live\Messenger\msnmsgr.exe [2009-07-26 3883856] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\BboxUpdate] C:\Program Files\BboxUpdate\BTLiveUpdate.exe [2008-08-06 103936] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}] C:\Program Files\Fichiers communs\Ahead\Lib\NMBgMonitor.exe [2007-06-27 152872] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Switcher.exe] C:\Program Files\Sony\Wireless Switch Setting Utility\Switcher.exe [2006-02-14 176128] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\VAIO Update 5] C:\Program Files\Sony\VAIO Update 5\VAIOUpdt.exe [2009-12-08 1324400] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\VAIOCameraUtility] C:\Program Files\Sony\VAIO Camera Utility\VCUServe.exe [2005-12-27 69632] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Documents and Settings^All Users^Menu Démarrer^Programmes^Démarrage^Bluetooth Manager.lnk] C:\PROGRA~1\Toshiba\BLUETO~1\TosBtMng.exe [2006-02-02 1753088] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Documents and Settings^All Users^Menu Démarrer^Programmes^Démarrage^Windows Search.lnk] [] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\VESWinlogon] C:\WINDOWS\system32\VESWinlogon.dll [2006-03-09 73728] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad] WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\WINDOWS\system32\WPDShServiceObj.dll [2006-10-18 133632] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\PEVSystemStart] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\procexp90.Sys] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\PEVSystemStart] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\procexp90.Sys] [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System] "dontdisplaylastusername"=0 "legalnoticecaption"= "legalnoticetext"= "shutdownwithoutlogon"=1 "undockwithoutlogon"=1 "InstallVisualStyle"=C:\WINDOWS\Resources\Themes\Royale\Royale.msstyles "InstallTheme"=C:\WINDOWS\Resources\Themes\Royale.theme [HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer] "NoDriveTypeAutoRun"=195 "NoDriveAutoRun"=0 "NoDrives"=0 [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer] "HonorAutoRunSetting"= "NoDriveAutoRun"= "NoDriveTypeAutoRun"= "NoDrives"= [HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list] "%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019" "%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000" "C:\Program Files\Windows Live\Messenger\wlcsdk.exe"="C:\Program Files\Windows Live\Messenger\wlcsdk.exe:*:Enabled:Windows Live Call" "C:\Program Files\Windows Live\Messenger\msnmsgr.exe"="C:\Program Files\Windows Live\Messenger\msnmsgr.exe:*:Enabled:Windows Live Messenger" "C:\Program Files\Messenger\msmsgs.exe"="C:\Program Files\Messenger\msmsgs.exe:*:Enabled:Windows Messenger" "C:\Program Files\WinTV\WinTV7\WinTV7.exe"="C:\Program Files\WinTV\WinTV7\WinTV7.exe:*:Enabled:WinTV7" "C:\Program Files\Bbox\eSKernel.exe"="C:\Program Files\Bbox\eSKernel.exe:*:Enabled:Bbox assistant d'installation" "C:\Program Files\BboxUpdate\BTLiveUpdate.exe"="C:\Program Files\BboxUpdate\BTLiveUpdate.exe:*:Enabled:Bbox - Bouygues Telecom - Utilitaire de mise à jour" "C:\Program Files\ma-config.com\maconfservice.exe"="C:\Program Files\ma-config.com\maconfservice.exe:LocalSubNet:Enabled:maconfservice" [HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list] "%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019" "%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000" "C:\Program Files\Windows Live\Messenger\wlcsdk.exe"="C:\Program Files\Windows Live\Messenger\wlcsdk.exe:*:Enabled:Windows Live Call" "C:\Program Files\Windows Live\Messenger\msnmsgr.exe"="C:\Program Files\Windows Live\Messenger\msnmsgr.exe:*:Enabled:Windows Live Messenger" "C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe"="C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe:*:Enabled:hpqtra08.exe" "C:\Program Files\HP\Digital Imaging\bin\hpqste08.exe"="C:\Program Files\HP\Digital Imaging\bin\hpqste08.exe:*:Enabled:hpqste08.exe" "C:\Program Files\HP\Digital Imaging\bin\hposid01.exe"="C:\Program Files\HP\Digital Imaging\bin\hposid01.exe:*:Enabled:hposid01.exe" "C:\Program Files\HP\Digital Imaging\bin\hpqkygrp.exe"="C:\Program Files\HP\Digital Imaging\bin\hpqkygrp.exe:*:Enabled:hpqkygrp.exe" "C:\Program Files\HP\Digital Imaging\bin\hpfcCopy.exe"="C:\Program Files\HP\Digital Imaging\bin\hpfcCopy.exe:*:Enabled:hpfccopy.exe" "C:\Program Files\HP\Digital Imaging\bin\hpoews01.exe"="C:\Program Files\HP\Digital Imaging\bin\hpoews01.exe:*:Enabled:hpoews01.exe" "C:\Program Files\HP\Digital Imaging\bin\hpiscnapp.exe"="C:\Program Files\HP\Digital Imaging\bin\hpiscnapp.exe:*:Enabled:hpiscnapp.exe" "C:\Program Files\HP\Digital Imaging\bin\hpqgplgtupl.exe"="C:\Program Files\HP\Digital Imaging\bin\hpqgplgtupl.exe:*:Enabled:hpqgplgtupl.exe" "C:\Program Files\HP\Digital Imaging\bin\hpqgpc01.exe"="C:\Program Files\HP\Digital Imaging\bin\hpqgpc01.exe:*:Enabled:hpqgpc01.exe" "C:\Program Files\HP\Digital Imaging\bin\hpqusgm.exe"="C:\Program Files\HP\Digital Imaging\bin\hpqusgm.exe:*:Enabled:hpqusgm.exe" "C:\Program Files\HP\Digital Imaging\bin\hpqusgh.exe"="C:\Program Files\HP\Digital Imaging\bin\hpqusgh.exe:*:Enabled:hpqusgh.exe" "C:\Program Files\HP\HP Software Update\HPWUCli.exe"="C:\Program Files\HP\HP Software Update\HPWUCli.exe:*:Enabled:hpwucli.exe" "C:\Program Files\HP\Digital Imaging\smart web printing\SmartWebPrintExe.exe"="C:\Program Files\HP\Digital Imaging\smart web printing\SmartWebPrintExe.exe:*:Enabled:smartwebprintexe.exe" ======List of files/folders created in the last 1 months====== 2010-06-13 06:59:38 ----D---- C:\rsit 2010-06-10 20:43:36 ----HDC---- C:\WINDOWS\$NtUninstallKB980218$ 2010-06-10 20:40:12 ----HDC---- C:\WINDOWS\$NtUninstallKB979904$ 2010-06-10 20:38:59 ----HDC---- C:\WINDOWS\$NtUninstallKB980195$ 2010-06-10 20:35:27 ----HDC---- C:\WINDOWS\$NtUninstallKB979559$ 2010-06-10 20:30:30 ----HDC---- C:\WINDOWS\$NtUninstallKB978695_WM9$ 2010-06-10 20:30:20 ----HDC---- C:\WINDOWS\$NtUninstallKB979482$ 2010-06-10 20:30:07 ----A---- C:\WINDOWS\imsins.BAK 2010-06-10 20:29:56 ----HDC---- C:\WINDOWS\$NtUninstallKB975562$ 2010-06-10 09:44:52 ----A---- C:\WINDOWS\WirelessFTP.INI 2010-06-10 09:14:19 ----D---- C:\Program Files\MIKSOFT 2010-06-10 00:04:00 ----D---- C:\Documents and Settings\Julien\Application Data\AccurateRip 2010-06-10 00:03:57 ----A---- C:\WINDOWS\system32\SpoonUninstall.exe 2010-06-10 00:03:50 ----D---- C:\Program Files\Illustrate 2010-06-08 08:17:28 ----A---- C:\WINDOWS\system32\StripMyRights.exe 2010-06-04 21:19:57 ----D---- C:\WINDOWS\ERDNT 2010-06-04 21:18:26 ----D---- C:\Program Files\Agnitum 2010-06-04 21:18:03 ----D---- C:\Documents and Settings\All Users\Application Data\Agnitum 2010-06-04 21:12:38 ----RSHD---- C:\autorun.inf 2010-06-04 21:11:00 ----D---- C:\Program Files\USB-set 2010-06-04 21:11:00 ----D---- C:\Documents and Settings\All Users\Application Data\usb-set 2010-05-31 01:29:01 ----SHD---- C:\RECYCLER 2010-05-31 01:15:38 ----A---- C:\WINDOWS\zip.exe 2010-05-31 01:15:38 ----A---- C:\WINDOWS\SWXCACLS.exe 2010-05-31 01:15:38 ----A---- C:\WINDOWS\SWSC.exe 2010-05-31 01:15:38 ----A---- C:\WINDOWS\SWREG.exe 2010-05-31 01:15:38 ----A---- C:\WINDOWS\sed.exe 2010-05-31 01:15:38 ----A---- C:\WINDOWS\PEV.exe 2010-05-31 01:15:38 ----A---- C:\WINDOWS\NIRCMD.exe 2010-05-31 01:15:38 ----A---- C:\WINDOWS\MBR.exe 2010-05-31 01:15:38 ----A---- C:\WINDOWS\grep.exe 2010-05-30 22:11:04 ----D---- C:\Program Files\Google 2010-05-30 21:59:34 ----A---- C:\TCleaner.txt 2010-05-30 12:47:58 ----A---- C:\Boot.bak 2010-05-30 12:47:53 ----RASHD---- C:\cmdcons 2010-05-30 07:06:41 ----D---- C:\Program Files\MeuhMeuhTV Alpha 2010-05-30 06:53:53 ----D---- C:\Program Files\K!TV 2010-05-28 14:49:59 ----D---- C:\Documents and Settings\Julien\Application Data\Mozilla 2010-05-28 12:47:48 ----D---- C:\Documents and Settings\Julien\Application Data\DivX 2010-05-28 12:47:35 ----N---- C:\WINDOWS\system32\pxafs.dll 2010-05-28 12:47:13 ----D---- C:\Program Files\Fichiers communs\DivX Shared 2010-05-27 14:00:07 ----D---- C:\Program Files\Secunia 2010-05-27 13:58:52 ----D---- C:\Documents and Settings\All Users\Application Data\McAfee 2010-05-27 13:52:09 ----A---- C:\WINDOWS\system32\javaws.exe 2010-05-27 13:52:09 ----A---- C:\WINDOWS\system32\javaw.exe 2010-05-27 13:52:09 ----A---- C:\WINDOWS\system32\java.exe 2010-05-27 13:52:09 ----A---- C:\WINDOWS\system32\deployJava1.dll 2010-05-27 13:51:55 ----D---- C:\Program Files\Java 2010-05-26 10:14:37 ----A---- C:\WINDOWS\exctrlst.INI 2010-05-26 09:11:34 ----D---- C:\Documents and Settings\Julien\Application Data\Yahoo! 2010-05-26 09:11:26 ----D---- C:\Program Files\Defraggler 2010-05-25 12:15:13 ----D---- C:\Program Files\Trend Micro 2010-05-25 08:32:42 ----D---- C:\Documents and Settings\Julien\Application Data\Pouchin TV Mod 2010-05-20 08:57:45 ----A---- C:\WINDOWS\system32\srvany.exe 2010-05-20 08:05:11 ----D---- C:\Program Files\Fichiers communs\DESIGNER 2010-05-20 07:47:54 ----D---- C:\Documents and Settings\All Users\Application Data\Microsoft Help ======List of files/folders modified in the last 1 months====== 2010-06-13 06:53:56 ----D---- C:\WINDOWS\system32 2010-06-13 06:53:31 ----HD---- C:\Program Files\InstallShield Installation Information 2010-06-12 22:43:00 ----D---- C:\WINDOWS\Temp 2010-06-12 10:55:11 ----D---- C:\WINDOWS\system32\CatRoot2 2010-06-12 10:54:50 ----D---- C:\WINDOWS 2010-06-12 10:54:46 ----D---- C:\WINDOWS\Registration 2010-06-11 00:23:11 ----RSD---- C:\WINDOWS\assembly 2010-06-11 00:19:42 ----D---- C:\WINDOWS\Microsoft.NET 2010-06-10 20:43:40 ----HD---- C:\WINDOWS\inf 2010-06-10 20:43:39 ----RSHDC---- C:\WINDOWS\system32\dllcache 2010-06-10 20:43:31 ----SHD---- C:\WINDOWS\Installer 2010-06-10 20:43:31 ----D---- C:\Config.Msi 2010-06-10 20:38:57 ----HD---- C:\WINDOWS\$hf_mig$ 2010-06-10 20:37:15 ----A---- C:\WINDOWS\vbaddin.ini 2010-06-10 20:35:10 ----D---- C:\Program Files\Internet Explorer 2010-06-10 20:34:57 ----D---- C:\WINDOWS\ie8updates 2010-06-10 20:30:49 ----D---- C:\WINDOWS\Debug 2010-06-10 20:27:53 ----A---- C:\WINDOWS\system32\PerfStringBackup.INI 2010-06-10 20:27:22 ----D---- C:\WINDOWS\WinSxS 2010-06-10 09:57:23 ----A---- C:\WINDOWS\NeroDigital.ini 2010-06-10 09:14:19 ----RD---- C:\Program Files 2010-06-09 12:30:39 ----D---- C:\Program Files\eMule 2010-06-08 08:52:16 ----D---- C:\WINDOWS\Minidump 2010-06-08 08:51:08 ----D---- C:\WINDOWS\pss 2010-06-08 08:26:38 ----SHD---- C:\System Volume Information 2010-06-08 08:26:38 ----D---- C:\WINDOWS\system32\Restore 2010-06-05 11:57:03 ----D---- C:\WINDOWS\system32\config 2010-06-04 21:20:12 ----D---- C:\WINDOWS\system32\drivers 2010-06-04 21:03:53 ----D---- C:\Program Files\Microsoft Silverlight 2010-06-03 22:14:24 ----SD---- C:\Documents and Settings\All Users\Application Data\Microsoft 2010-06-02 18:23:45 ----RSD---- C:\WINDOWS\Fonts 2010-06-02 18:23:43 ----D---- C:\WINDOWS\Help 2010-05-31 01:21:54 ----N---- C:\WINDOWS\system.ini 2010-05-31 01:19:58 ----D---- C:\WINDOWS\AppPatch 2010-05-31 01:19:53 ----D---- C:\Program Files\Fichiers communs 2010-05-30 22:12:05 ----D---- C:\Documents and Settings\Julien\Application Data\Google 2010-05-30 22:11:07 ----SD---- C:\WINDOWS\Tasks 2010-05-30 21:59:13 ----D---- C:\Program Files\ZebHelpProcess 2010-05-30 21:54:59 ----A---- C:\WINDOWS\win.ini 2010-05-30 12:47:58 ----RASH---- C:\boot.ini 2010-05-30 06:09:37 ----D---- C:\Program Files\Fichiers communs\Microsoft Shared 2010-05-29 17:29:51 ----D---- C:\Program Files\Vuze 2010-05-28 21:37:34 ----A---- C:\WINDOWS\system32\MRT.exe 2010-05-28 14:49:56 ----D---- C:\Program Files\Mozilla Firefox 2010-05-27 13:56:34 ----SD---- C:\WINDOWS\Downloaded Program Files 2010-05-27 13:52:35 ----D---- C:\Program Files\Fichiers communs\Java 2010-05-27 13:49:54 ----D---- C:\Program Files\CCleaner 2010-05-27 11:52:34 ----A---- C:\WINDOWS\ModemLog_HDAUDIO SoftV92 Data Fax Modem with SmartCP.txt 2010-05-26 14:20:16 ----D---- C:\Program Files\Duplicate Cleaner 2010-05-26 13:49:17 ----D---- C:\WINDOWS\system32\CatRoot 2010-05-26 13:16:34 ----D---- C:\Program Files\Malwarebytes' Anti-Malware 2010-05-26 13:05:31 ----D---- C:\Program Files\Microsoft Office 2010-05-26 13:04:23 ----D---- C:\WINDOWS\SHELLNEW 2010-05-26 13:04:21 ----D---- C:\Program Files\MSBuild 2010-05-26 09:28:31 ----D---- C:\Documents and Settings\Julien\Application Data\GlarySoft 2010-05-26 01:06:25 ----D---- C:\WINDOWS\Prefetch 2010-05-25 12:15:14 ----SD---- C:\Documents and Settings\Julien\Application Data\Microsoft 2010-05-25 10:19:30 ----D---- C:\WINDOWS\system32\ReinstallBackups 2010-05-25 08:42:52 ----D---- C:\Hauppauge 2010-05-20 11:38:14 ----A---- C:\WINDOWS\ODBC.INI 2010-05-20 11:35:32 ----D---- C:\WINDOWS\system 2010-05-20 07:45:50 ----D---- C:\Documents and Settings\Julien\Application Data\Azureus 2010-05-14 09:25:13 ----D---- C:\Program Files\ma-config.com 2010-05-14 09:25:12 ----D---- C:\Documents and Settings\All Users\Application Data\ma-config.com ======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)====== R1 avgio;avgio; \??\C:\Program Files\Avira\AntiVir Desktop\avgio.sys [] R1 avipbb;avipbb; C:\WINDOWS\system32\DRIVERS\avipbb.sys [2009-03-30 96104] R1 DMICall;Sony DMI Call service; C:\WINDOWS\system32\DRIVERS\DMICall.sys [2000-12-05 3952] R1 intelppm;Pilote de processeur Intel; C:\WINDOWS\system32\DRIVERS\intelppm.sys [2008-04-14 40576] R1 SandBox;SandBox; \??\C:\WINDOWS\system32\drivers\SandBox.sys [] R1 ssmdrv;ssmdrv; C:\WINDOWS\system32\DRIVERS\ssmdrv.sys [2009-05-11 28520] R1 Tosrfcom;Bluetooth RFCOMM from TOSHIBA; C:\WINDOWS\System32\Drivers\tosrfcom.sys [2005-08-01 64896] R2 avgntflt;avgntflt; C:\WINDOWS\system32\DRIVERS\avgntflt.sys [2009-11-25 56816] R2 cpuz133;cpuz133; \??\C:\WINDOWS\system32\drivers\cpuz133_x32.sys [] R2 mdmxsdk;mdmxsdk; C:\WINDOWS\system32\DRIVERS\mdmxsdk.sys [2005-10-05 12544] R3 afw;Agnitum firewall driver; C:\WINDOWS\system32\DRIVERS\afw.sys [2009-02-18 31128] R3 afwcore;afwcore; C:\WINDOWS\system32\drivers\afwcore.sys [2009-02-10 257432] R3 ApfiltrService;Alps Pointing-device Filter Driver; C:\WINDOWS\system32\DRIVERS\Apfiltr.sys [2004-11-22 108767] R3 CmBatt;Pilote pour Batterie à méthode de contrôle ACPI Microsoft; C:\WINDOWS\system32\DRIVERS\CmBatt.sys [2008-04-13 13952] R3 E100B;Intel® PRO Network Connection Driver; C:\WINDOWS\system32\DRIVERS\e100b325.sys [2007-11-16 165496] R3 hcw66xxx;WinTV HVR-900H; C:\WINDOWS\System32\Drivers\hcw66xxx.sys [2009-06-03 673664] R3 HDAudBus;Pilote de bus Microsoft UAA pour High Definition Audio; C:\WINDOWS\system32\DRIVERS\HDAudBus.sys [2008-04-13 144384] R3 HidUsb;Pilote de classe HID Microsoft; C:\WINDOWS\system32\DRIVERS\hidusb.sys [2008-04-13 10368] R3 HSF_DPV;HSF_DPV; C:\WINDOWS\system32\DRIVERS\HSF_DPV.sys [2005-10-18 998656] R3 HSFHWAZL;HSFHWAZL; C:\WINDOWS\system32\DRIVERS\HSFHWAZL.sys [2005-10-18 202112] R3 mouhid;Pilote HID de souris; C:\WINDOWS\system32\DRIVERS\mouhid.sys [2001-08-23 12288] R3 NETw5x32;Pilote de carte Intel® Wireless WiFi Link pour Windows XP 32 bits ; C:\WINDOWS\system32\DRIVERS\NETw5x32.sys [2010-01-13 6598656] R3 nv;nv; C:\WINDOWS\system32\DRIVERS\nv4_mini.sys [2010-01-21 7658464] R3 SNC;Sony Notebook Control Device; C:\WINDOWS\System32\Drivers\SonyNC.sys [2000-11-09 48896] R3 SonyImgF;Sony Image Conversion Filter Driver; C:\WINDOWS\system32\DRIVERS\SonyImgF.sys [2006-03-06 30080] R3 STHDA;SigmaTel High Definition Audio CODEC; C:\WINDOWS\system32\drivers\sthda.sys [2006-05-26 1177032] R3 ti21sony;ti21sony; C:\WINDOWS\system32\drivers\ti21sony.sys [2007-01-24 808448] R3 tosporte;Bluetooth Port Driver from Toshiba; C:\WINDOWS\system32\DRIVERS\tosporte.sys [2005-11-24 47104] R3 Tosrfbd;Bluetooth RFBUS from TOSHIBA; C:\WINDOWS\System32\Drivers\tosrfbd.sys [2006-02-03 108928] R3 Tosrfbnp;Bluetooth RFBNEP from TOSHIBA; C:\WINDOWS\System32\Drivers\tosrfbnp.sys [2005-12-14 37632] R3 Tosrfhid;Bluetooth RFHID from TOSHIBA; C:\WINDOWS\system32\DRIVERS\Tosrfhid.sys [2006-02-08 62848] R3 tosrfnds;Bluetooth Personal Area Network from TOSHIBA; C:\WINDOWS\system32\DRIVERS\tosrfnds.sys [2005-01-06 18612] R3 Tosrfusb;Bluetooth USB Controller; C:\WINDOWS\System32\Drivers\tosrfusb.sys [2006-01-31 39808] R3 usbehci;Pilote miniport de contrôleur d'hôte amélioré Microsoft USB 2.0; C:\WINDOWS\system32\DRIVERS\usbehci.sys [2008-04-13 30208] R3 usbhub;Pilote de concentrateur standard USB Microsoft; C:\WINDOWS\system32\DRIVERS\usbhub.sys [2008-04-13 59520] R3 usbuhci;Pilote miniport de contrôleur hôte universel USB Microsoft; C:\WINDOWS\system32\DRIVERS\usbuhci.sys [2008-04-13 20608] R3 usbvm321;Sony Visual Communication Camera VGP-VCC1; C:\WINDOWS\System32\Drivers\usbvm321.sys [2005-12-29 234496] R3 winachsf;winachsf; C:\WINDOWS\system32\DRIVERS\HSF_CNXT.sys [2005-10-18 721280] S3 Arp1394;Protocole client ARP 1394; C:\WINDOWS\system32\DRIVERS\arp1394.sys [2008-04-13 60800] S3 AVHybrid;AVHybrid service; C:\WINDOWS\system32\DRIVERS\AVHybrid.sys [2005-06-09 1021440] S3 catchme;catchme; \??\C:\DOCUME~1\Julien\LOCALS~1\Temp\catchme.sys [] S3 CCDECODE;Décodeur sous-titre fermé; C:\WINDOWS\system32\DRIVERS\CCDECODE.sys [2008-04-13 17024] S3 driverhardwarev2;driverhardwarev2; \??\C:\Program Files\ma-config.com\Drivers\driverhardwarev2.sys [] S3 e1express;Intel® PRO/1000 PCI Express Network Connection Driver; C:\WINDOWS\system32\DRIVERS\e1e5132.sys [] S3 HPZid412;IEEE-1284.4 Driver HPZid412; C:\WINDOWS\system32\DRIVERS\HPZid412.sys [2008-10-28 49920] S3 HPZipr12;Print Class Driver for IEEE-1284.4 HPZipr12; C:\WINDOWS\system32\DRIVERS\HPZipr12.sys [2008-10-28 16496] S3 HPZius12;USB to IEEE-1284.4 Translation Driver HPZius12; C:\WINDOWS\system32\DRIVERS\HPZius12.sys [2008-10-28 21568] S3 MHNDRV;Pilote MHN; C:\WINDOWS\system32\DRIVERS\mhndrv.sys [2004-08-10 11008] S3 MPE;Filtre BDA MPE; C:\WINDOWS\system32\DRIVERS\MPE.sys [2008-04-13 15232] S3 MSTEE;Convertisseur en T/site-à-site de répartition Microsoft; C:\WINDOWS\system32\drivers\MSTEE.sys [2008-04-13 5504] S3 NABTSFEC;Codec NABTS/FEC VBI; C:\WINDOWS\system32\DRIVERS\NABTSFEC.sys [2008-04-13 85248] S3 NdisIP;Connection TV/vidéo Microsoft; C:\WINDOWS\system32\DRIVERS\NdisIP.sys [2008-04-13 10880] S3 NIC1394;Pilote réseau 1394; C:\WINDOWS\system32\DRIVERS\nic1394.sys [2008-04-13 61824] S3 Point32;Microsoft IntelliPoint Filter Driver; C:\WINDOWS\system32\DRIVERS\point32.sys [2009-05-28 27792] S3 PSI;PSI; C:\WINDOWS\system32\DRIVERS\psi_mf.sys [2009-06-17 12648] S3 ROOTMODEM;Microsoft Legacy Modem Driver; C:\WINDOWS\System32\Drivers\RootMdm.sys [2004-08-10 5888] S3 SLIP;Détrameur décalage BDA; C:\WINDOWS\system32\DRIVERS\SLIP.sys [2008-04-13 11136] S3 streamip;BDA IPSink; C:\WINDOWS\system32\DRIVERS\StreamIP.sys [2008-04-13 15232] S3 toshidpt;TOSHIBA Bluetooth HID port driver; C:\WINDOWS\system32\drivers\Toshidpt.sys [2005-07-11 3712] S3 TosRfSnd;Bluetooth Audio Device (WDM) from TOSHIBA; C:\WINDOWS\system32\drivers\TosRfSnd.sys [2005-11-11 52864] S3 usbccgp;Pilote parent générique USB Microsoft; C:\WINDOWS\system32\DRIVERS\usbccgp.sys [2008-04-13 32128] S3 usbprint;Classe d'imprimantes USB Microsoft; C:\WINDOWS\system32\DRIVERS\usbprint.sys [2008-04-13 25856] S3 usbscan;Pilote de scanneur USB; C:\WINDOWS\system32\DRIVERS\usbscan.sys [2008-04-13 15104] S3 USBSTOR;Pilote de stockage de masse USB; C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS [2008-04-13 26368] S3 w39n51;Intel® PRO/Wireless 3945ABG Adapter Driver; C:\WINDOWS\system32\DRIVERS\w39n51.sys [2005-12-05 1428096] S3 WSTCODEC;Codec Teletext standard; C:\WINDOWS\system32\DRIVERS\WSTCODEC.SYS [2008-04-13 19200] S3 WudfRd;Windows Driver Foundation - User-mode Driver Framework Reflector; C:\WINDOWS\system32\DRIVERS\wudfrd.sys [2006-09-15 82688] S4 s24trans;Transport RLAN; C:\WINDOWS\system32\DRIVERS\s24trans.sys [] S4 sptd;sptd; C:\WINDOWS\System32\Drivers\sptd.sys [2010-05-07 691696] ======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)====== R2 acssrv;Agnitum Client Security Service; C:\PROGRA~1\Agnitum\OUTPOS~1\acs.exe [2009-04-28 1195008] R2 AntiVirSchedulerService;Avira AntiVir Planificateur; C:\Program Files\Avira\AntiVir Desktop\sched.exe [2009-05-13 108289] R2 AntiVirService;Avira AntiVir Guard; C:\Program Files\Avira\AntiVir Desktop\avguard.exe [2009-07-21 185089] R2 ehSched;Service de planification Media Center; C:\WINDOWS\eHome\ehSched.exe [2005-08-05 103424] R2 HauppaugeTVServer;HauppaugeTVServer; C:\PROGRA~1\WinTV\TVServer\HAUPPA~1.EXE [2009-11-15 601088] R2 McrdSvc;Media Center Extender Service; C:\WINDOWS\ehome\mcrdsvc.exe [2005-08-05 99328] R2 MSSQL$SQLEXPRESS;SQL Server (SQLEXPRESS); C:\Program Files\Microsoft SQL Server\MSSQL.1\MSSQL\Binn\sqlservr.exe [2009-05-27 29262680] R2 MSSQL$VAIO_VEDB;MSSQL$VAIO_VEDB; C:\Program Files\Microsoft SQL Server\MSSQL$VAIO_VEDB\Binn\sqlservr.exe [2002-12-17 7520337] R2 NVSvc;NVIDIA Display Driver Service; C:\WINDOWS\system32\nvsvc32.exe [2009-10-01 172100] R2 SQLBrowser;SQL Server Browser; C:\Program Files\Microsoft SQL Server\90\Shared\sqlbrowser.exe [2008-11-25 239968] R2 SQLWriter;SQL Server VSS Writer; C:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe [2008-11-24 87904] R2 VAIO Event Service;VAIO Event Service; C:\Program Files\Sony\VAIO Event Service\VESMgr.exe [2006-04-13 176128] R2 wlidsvc;Windows Live ID Sign-in Assistant; C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WLIDSVC.EXE [2009-03-30 1533808] R2 WudfSvc;Windows Driver Foundation - User-mode Driver Framework; C:\WINDOWS\system32\svchost.exe [2008-04-14 14336] R3 CLCapSvc;CyberLink Background Capture Service (CBCS); C:\Program Files\CyberLink\PowerCinema\Kernel\TV\CLCapSvc.exe [2007-10-16 278611] S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-03-18 130384] S2 gupdate;Service Google Update (gupdate); C:\Program Files\Google\Update\GoogleUpdate.exe [2010-03-28 136176] S2 Net Driver HPZ12;Net Driver HPZ12; C:\WINDOWS\System32\svchost.exe [2008-04-14 14336] S2 Pml Driver HPZ12;Pml Driver HPZ12; C:\WINDOWS\System32\svchost.exe [2008-04-14 14336] S2 VCI;VAIO Cooporated Initialisation; C:\Program Files\Sony\VAIO Cooperated Initialisation\VCI_SVC.exe [2005-01-04 398336] S3 aspnet_state;Service d'état ASP.NET; C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\aspnet_state.exe [2010-03-18 35160] S3 clr_optimization_v2.0.50727_32;.NET Runtime Optimization Service v2.0.50727_X86; c:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe [2008-07-25 69632] S3 CLSched;CyberLink Task Scheduler (CTS); C:\Program Files\CyberLink\PowerCinema\Kernel\TV\CLSched.exe [2007-10-16 122970] S3 FontCache3.0.0.0;Windows Presentation Foundation Font Cache 3.0.0.0; c:\WINDOWS\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe [2008-07-29 46104] S3 IDriverT;InstallDriver Table Manager; C:\Program Files\Fichiers communs\InstallShield\Driver\1150\Intel 32\IDriverT.exe [2005-11-14 69632] S3 idsvc;Windows CardSpace; c:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe [2008-07-29 881664] S3 maconfservice;Ma-Config Service; C:\Program Files\ma-config.com\maconfservice.exe [2010-05-11 271728] S3 MHN;MHN; C:\WINDOWS\System32\svchost.exe [2008-04-14 14336] S3 MSCSPTISRV;MSCSPTISRV; C:\Program Files\Fichiers communs\Sony Shared\AVLib\MSCSPTISRV.exe [2006-04-27 53337] S3 MSSQLServerADHelper;SQL Server Active Directory Helper; C:\Program Files\Microsoft SQL Server\90\Shared\sqladhlp90.exe [2008-11-25 45408] S3 NBService;NBService; C:\Program Files\Nero\Nero 7\Nero BackItUp\NBService.exe [2007-06-29 800040] S3 NMIndexingService;NMIndexingService; C:\Program Files\Fichiers communs\Ahead\Lib\NMIndexingService.exe [2007-06-27 279848] S3 ose;Office Source Engine; C:\Program Files\Fichiers communs\Microsoft Shared\Source Engine\OSE.EXE [2010-01-09 149352] S3 PACSPTISVR;PACSPTISVR; C:\Program Files\Fichiers communs\Sony Shared\AVLib\PACSPTISVR.exe [2006-04-27 49241] S3 RichVideo;Cyberlink RichVideo Service(CRVS); C:\Program Files\CyberLink\Shared files\RichVideo.exe [2007-08-11 262247] S3 SPTISRV;Sony SPTI Service; C:\Program Files\Fichiers communs\Sony Shared\AVLib\SPTISRV.exe [2006-04-27 69718] S3 SQLAgent$VAIO_VEDB;SQLAgent$VAIO_VEDB; C:\Program Files\Microsoft SQL Server\MSSQL$VAIO_VEDB\Binn\sqlagent.EXE [2002-12-17 311872] S3 VAIO Entertainment TV Device Arbitration Service;VAIO Entertainment TV Device Arbitration Service; C:\Program Files\Fichiers communs\Sony Shared\VAIO Entertainment Platform\VzCs\VzHardwareResourceManager\VzHardwareResourceManager.exe [2005-11-25 73728] S3 Vcsw;VAIO Entertainment UPnP Client Adapter; C:\Program Files\Fichiers communs\Sony Shared\VAIO Entertainment Platform\VCSW\VCSW.exe [2006-04-04 274432] S3 VUAgent;VUAgent; C:\Program Files\Sony\VAIO Update 5\VUAgent.exe [2009-12-08 673136] S3 VzCdbSvc;VAIO Entertainment Database Service; C:\Program Files\Fichiers communs\Sony Shared\VAIO Entertainment Platform\VzCdb\VzCdbSvc.exe [2005-11-28 167936] S3 VzFw;VAIO Entertainment File Import Service; C:\Program Files\Fichiers communs\Sony Shared\VAIO Entertainment Platform\VzCdb\VzFw.exe [2005-11-28 135168] S3 WMPNetworkSvc;Service Partage réseau du Lecteur Windows Media; C:\Program Files\Windows Media Player\WMPNetwk.exe [2006-11-03 918016] S3 WPFFontCache_v0400;Windows Presentation Foundation Font Cache 4.0.0.0; C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe [2010-03-18 753504] S4 KMService;KMService; C:\WINDOWS\system32\srvany.exe [2003-04-18 8192] S4 NetTcpPortSharing;Net.Tcp Port Sharing Service; C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe [2008-07-29 132096] -----------------EOF-----------------
- le 13 juin 2010
- 58 réponses
Trop de processus au démarrage

jude18 a répondu à un(e) sujet de jude18 dans Optimisation, Trucs & Astuces

Bonjour Tibonhomme La machine se porte mieux , mais toujours longue par moment .... peut être la vétusté...
- le 8 juin 2010
- 58 réponses
A part Ebay, où revendre un pc fixe ?

jude18 a répondu à un(e) sujet de Tienou dans Hardware

Bonjour , si je peux me permettre et si tu connais pas , il y a Le bon coin
- le 2 juin 2010
- 2 réponses
Trop de processus au démarrage

jude18 a répondu à un(e) sujet de jude18 dans Optimisation, Trucs & Astuces

info.txt logfile of random's system information tool 1.06 2010-06-01 02:41:43 ======Uninstall list====== -->C:\Program Files\Nero\Nero 7\\nero\uninstall\UNNERO.exe /UNINSTALL -->C:\WINDOWS\system32\\MSIEXEC.EXE /x {075473F5-846A-448B-BCB3-104AA1760205} -->C:\WINDOWS\system32\\MSIEXEC.EXE /x {AB708C9B-97C8-4AC9-899B-DBF226AC9382} -->C:\WINDOWS\system32\\MSIEXEC.EXE /x {B12665F4-4E93-4AB4-B7FC-37053B524629} -->C:\WINDOWS\UNNeroBackItUp.exe /UNINSTALL -->C:\WINDOWS\UNNeroMediaHome.exe /UNINSTALL -->C:\WINDOWS\UNNeroShowTime.exe /UNINSTALL -->C:\WINDOWS\UNNeroVision.exe /UNINSTALL -->C:\WINDOWS\UNRecode.exe /UNINSTALL -->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\PROFES~1\RunTime\11\50\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{FD836E74-7923-4174-A055-F97CD0F3BB46}\setup.exe" -l0x40c -removeonly -->rundll32.exe setupapi.dll,InstallHinfSection DefaultUninstall 132 C:\WINDOWS\INF\PCHealth.inf 32 Bit HP CIO Components Installer-->MsiExec.exe /I{92127AF5-FDD8-4ADF-BC40-C356C9EE0B7D} Adobe Common File Installer-->MsiExec.exe /I{8EDBA74D-0686-4C99-BFDD-F894678E5102} Adobe Flash Player 10 Plugin-->C:\WINDOWS\system32\Macromed\Flash\uninstall_plugin.exe Adobe Reader 9.3.2 - Français-->MsiExec.exe /I{AC76BA86-7AD7-1036-7B44-A93000000001} Assistant de connexion Windows Live ID-->MsiExec.exe /X{10A44844-4465-456E-8C97-80BDD4F68845} Avira AntiVir Personal - Free Antivirus-->C:\Program Files\Avira\AntiVir Desktop\setup.exe /REMOVE Bbox - Bouygues Telecom - Utilitaire de mise à jour-->C:\Program Files\BboxUpdate\uninstall.exe Bluetooth Stack for Windows by Toshiba-->MsiExec.exe /X{CEBB6BFB-D708-4F99-A633-BC2600E01EF6} Cartoonist 1.3-->"C:\Program Files\Cartoonist\unins000.exe" CCleaner-->"C:\Program Files\CCleaner\uninst.exe" Configuration DivX-->C:\Documents and Settings\All Users\Application Data\DivX\Setup\DivXSetup.exe /uninstall /bundleGroupId divx.com Correctif pour Windows XP (KB981793)-->"C:\WINDOWS\$NtUninstallKB981793$\spuninst\spuninst.exe" CPUID CPU-Z 1.54-->"C:\Program Files\CPUID\CPU-Z\unins000.exe" Defraggler-->"C:\Program Files\Defraggler\uninst.exe" Désinstaller Bouygues Telecom - CD d'installation Bbox-->C:\Program Files\Bbox\eSKernel.exe /Uninstall.xml DSD Playback Plug-in 1.0-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{C89EB8CD-675F-44F4-9729-4C9A8FAC2D4F}\setup.exe" -l0x40c Duplicate Cleaner 1.4.5-->"C:\Program Files\Duplicate Cleaner\unins000.exe" GDR 4053 for SQL Server Database Services 2005 ENU (KB970892)-->C:\WINDOWS\SQL9_KB970892_ENU\Hotfix.exe /Uninstall GDR 4053 for SQL Server Tools and Workstation Components 2005 ENU (KB970892)-->C:\WINDOWS\SQLTools9_KB970892_ENU\Hotfix.exe /Uninstall Google Earth Plug-in-->MsiExec.exe /X{961034C0-58DF-11DF-97FD-005056806466} Google Update Helper-->MsiExec.exe /I{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2} Hauppauge MCE XP/Vista Software Encoder (2.0.27022)-->C:\PROGRA~1\WinTV\UNSftMCE.EXE C:\PROGRA~1\WinTV\softMCE.LOG Hauppauge WinTV 7-->C:\PROGRA~1\INSTAL~1\UNWISE32.EXE C:\PROGRA~1\WinTV\WinTV7\WinTV7.LOG Hauppauge WinTV Infrared Remote-->C:\PROGRA~1\WinTV\UNir32.EXE C:\PROGRA~1\WinTV\ir32.LOG HDAUDIO SoftV92 Data Fax Modem with SmartCP-->C:\Program Files\CONEXANT\CNXT_MODEM_HDAUDIO_VEN_14F1&DEV_2BFA&SUBSYS_20030003\HXFSETUP.EXE -U -ISnyHDANk.inf HiJackThis-->MsiExec.exe /X{45A66726-69BC-466B-A7A4-12FCBA4883D7} Hotfix for Microsoft .NET Framework 3.5 SP1 (KB953595)-->C:\WINDOWS\system32\msiexec.exe /package {CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9} /uninstall /qb+ REBOOTPROMPT="" Hotfix for Microsoft .NET Framework 3.5 SP1 (KB958484)-->C:\WINDOWS\system32\msiexec.exe /package {CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9} /uninstall {A7EEA2F2-BFCD-4A54-A575-7B81A786E658} /qb+ REBOOTPROMPT="" Installation Windows Live-->C:\Program Files\Windows Live\Installer\wlarp.exe Installation Windows Live-->MsiExec.exe /I{46ABBC54-1872-4AA3-95E2-F2C063A63F31} Intel® Network Connections Drivers-->Prounstl.exe IZArc 4.1-->"C:\Program Files\IZArc\unins000.exe" Java 6 Update 20-->MsiExec.exe /X{26A24AE4-039D-4CA4-87B4-2F83216020FF} LAN Setting Utility-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{5958CAC6-373E-402F-84FE-0A699AA920B9}\setup.exe" -l0x40c Lecteur Windows Media 11-->"C:\Program Files\Windows Media Player\Setup_wm.exe" /Uninstall Ma-Config.com-->MsiExec.exe /X{14E3D14B-7852-477D-ACE2-895AF4322804} Malwarebytes' Anti-Malware-->"C:\Program Files\Malwarebytes' Anti-Malware\unins000.exe" Memory Stick Formatter-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{27337663-2619-11D4-99DC-0000F49094C7}\Setup.exe" -l0x40c /UNINSTALL Messenger Plus! Live-->"C:\Program Files\Messenger Plus! Live\Uninstall.exe" Microsoft .NET Framework 1.1 French Language Pack-->MsiExec.exe /X{9A394342-4A68-4EBA-85A6-55B559F4E700} Microsoft .NET Framework 1.1 Security Update (KB953297)-->"C:\WINDOWS\Microsoft.NET\Framework\v1.1.4322\Updates\hotfix.exe" "C:\WINDOWS\Microsoft.NET\Framework\v1.1.4322\Updates\M953297\M953297Uninstall.msp" Microsoft .NET Framework 1.1-->msiexec.exe /X {CB2F7EDD-9D1F-43C1-90FC-4F52EAE172A1} Microsoft .NET Framework 1.1-->MsiExec.exe /X{CB2F7EDD-9D1F-43C1-90FC-4F52EAE172A1} Microsoft .NET Framework 2.0 Service Pack 2 Language Pack - FRA-->MsiExec.exe /I{72AD53CC-CCC0-3757-8480-9EE176866A7C} Microsoft .NET Framework 2.0 Service Pack 2-->MsiExec.exe /I{C09FB3CD-3D0C-3F2D-899A-6A1D67F2073F} Microsoft .NET Framework 3.0 Service Pack 2 Language Pack - FRA-->MsiExec.exe /I{0BD83598-C2EF-3343-847B-7D2E84599128} Microsoft .NET Framework 3.0 Service Pack 2-->MsiExec.exe /I{A3051CD0-2F64-3813-A88D-B8DCCDE8F8C7} Microsoft .NET Framework 3.5 Language Pack SP1 - fra-->MsiExec.exe /I{3E31821C-7917-367E-938E-E65FC413EA31} Microsoft .NET Framework 3.5 SP1-->C:\WINDOWS\Microsoft.NET\Framework\v3.5\Microsoft .NET Framework 3.5 SP1\setup.exe Microsoft .NET Framework 3.5 SP1-->MsiExec.exe /I{CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9} Microsoft .NET Framework 4 Client Profile FRA Language Pack-->MsiExec.exe /X{0F5B4A82-9DAF-3D13-8CB8-AEB25E4A614E} Microsoft .NET Framework 4 Client Profile-->C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\SetupCache\Client\Setup.exe /repair /x86 /parameterfolder Client Microsoft .NET Framework 4 Client Profile-->MsiExec.exe /X{3C3901C5-3455-3E0A-A214-0B093A5070A6} Microsoft .NET Framework 4 Extended FRA Language Pack-->MsiExec.exe /X{043F86B7-EE12-3399-B2CA-D0B603D87963} Microsoft .NET Framework 4 Extended-->C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\SetupCache\Extended\Setup.exe /repair /x86 /parameterfolder Extended Microsoft .NET Framework 4 Extended-->MsiExec.exe /X{0A0CADCF-78DA-33C4-A350-CD51849B9702} Microsoft Choice Guard-->MsiExec.exe /X{F0E12BBA-AD66-4022-A453-A1C8A0C4D570} Microsoft Compression Client Pack 1.0 for Windows XP-->"C:\WINDOWS\$NtUninstallMSCompPackV1$\spuninst\spuninst.exe" Microsoft Office 2003 Web Components-->MsiExec.exe /I{90A4040C-6000-11D3-8CFE-0150048383C9} Microsoft Office FrontPage 2003-->MsiExec.exe /I{9017040C-6000-11D3-8CFE-0150048383C9} Microsoft Office Live Add-in 1.4-->MsiExec.exe /I{AE3CF174-872C-46C6-B9F6-C0593F3BC7B8} Microsoft Office OneNote 2003-->MsiExec.exe /I{90A1040C-6000-11D3-8CFE-0150048383C9} Microsoft Office Professional Edition 2003-->MsiExec.exe /I{9011040C-6000-11D3-8CFE-0150048383C9} Microsoft Office Visio Professional 2003-->MsiExec.exe /I{9051040C-6000-11D3-8CFE-0150048383C9} Microsoft Silverlight-->MsiExec.exe /X{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00} Microsoft SQL Server 2005 Express Edition (SQLEXPRESS)-->MsiExec.exe /I{2AFFFDD7-ED85-4A90-8C52-5DA9EBDC9B8F} Microsoft SQL Server 2005 Tools Express Edition-->MsiExec.exe /I{2750B389-A2D2-4953-99CA-27C1F2A8E6FD} Microsoft SQL Server 2005-->"c:\Program Files\Microsoft SQL Server\90\Setup Bootstrap\ARPWrapper.exe" /Remove Microsoft SQL Server Desktop Engine (VAIO_VEDB)-->MsiExec.exe /X{E09B48B5-E141-427A-AB0C-D3605127224A} Microsoft SQL Server Native Client-->MsiExec.exe /I{BD68F46D-8A82-4664-8E68-F87C55BDEFD4} Microsoft SQL Server Setup Support Files (English)-->MsiExec.exe /X{53F5C3EE-05ED-4830-994B-50B2F0D50FCE} Microsoft SQL Server VSS Writer-->MsiExec.exe /I{56B4002F-671C-49F4-984C-C760FE3806B5} Microsoft Tool Web Package : EXCTRLST.EXE-->MsiExec.exe /X{B0650E3D-FDCA-4908-B74B-0CC1731BDB93} Microsoft User-Mode Driver Framework Feature Pack 1.5-->"C:\WINDOWS\$NtUninstallWudf01005$\spuninst\spuninst.exe" Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053-->MsiExec.exe /X{770657D0-A123-3C07-8E44-1C83EC895118} Microsoft Visual C++ 2005 Redistributable-->MsiExec.exe /X{7299052b-02a4-4627-81f2-1818da5d550d} Microsoft Visual C++ 2008 ATL Update kb973924 - x86 9.0.30729.4148-->MsiExec.exe /X{002D9D5E-29BA-3E6D-9BC4-3D7D6DBC735C} Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17-->MsiExec.exe /X{9A25302D-30C0-39D9-BD6F-21E6EC160475} Mise à jour de sécurité pour Windows Internet Explorer 8 (KB971961)-->"C:\WINDOWS\ie8updates\KB971961-IE8\spuninst\spuninst.exe" Mise à jour de sécurité pour Windows Internet Explorer 8 (KB976325)-->"C:\WINDOWS\ie8updates\KB976325-IE8\spuninst\spuninst.exe" Mise à jour de sécurité pour Windows Internet Explorer 8 (KB978207)-->"C:\WINDOWS\ie8updates\KB978207-IE8\spuninst\spuninst.exe" Mise à jour de sécurité pour Windows Internet Explorer 8 (KB981332)-->"C:\WINDOWS\ie8updates\KB981332-IE8\spuninst\spuninst.exe" Mise à jour pour Windows Internet Explorer 8 (KB975364)-->"C:\WINDOWS\ie8updates\KB975364-IE8\spuninst\spuninst.exe" Mise à jour pour Windows Internet Explorer 8 (KB976662)-->"C:\WINDOWS\ie8updates\KB976662-IE8\spuninst\spuninst.exe" Mise à jour pour Windows Internet Explorer 8 (KB978506)-->"C:\WINDOWS\ie8updates\KB978506-IE8\spuninst\spuninst.exe" Mise à jour pour Windows Internet Explorer 8 (KB980182)-->"C:\WINDOWS\ie8updates\KB980182-IE8\spuninst\spuninst.exe" Mise à jour pour Windows Internet Explorer 8 (KB980302)-->"C:\WINDOWS\ie8updates\KB980302-IE8\spuninst\spuninst.exe" Module linguistique Microsoft .NET Framework 3.5 SP1- fra-->c:\WINDOWS\Microsoft.NET\Framework\v3.5\Microsoft .NET Framework 3.5 Language Pack SP1 - fra\setup.exe Module linguistique Microsoft .NET Framework 4 Client Profile FRA-->C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\SetupCache\ClientLP\Setup.exe /repair /x86 /lcid 1036 /parameterfolder ClientLP Module linguistique Microsoft .NET Framework 4 Extended FRA-->C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\SetupCache\ExtendedLP\Setup.exe /repair /x86 /lcid 1036 /parameterfolder ExtendedLP Mozilla Firefox (3.6.3)-->C:\Program Files\Mozilla Firefox\uninstall\helper.exe mProSafe-->MsiExec.exe /I{23FB368F-1399-4EAC-817C-4B83ECBE3D83} MSVCRT-->MsiExec.exe /I{22B775E7-6C42-4FC5-8E10-9A5E3257BD94} MSXML 4.0 SP2 (KB954430)-->MsiExec.exe /I{86493ADD-824D-4B8E-BD72-8C5DCDC52A71} MSXML 4.0 SP2 (KB973688)-->MsiExec.exe /I{F662A8E6-F4DC-41A2-901E-8C11F044BDEC} MSXML 6.0 Parser-->MsiExec.exe /I{A43BF6A5-D5F0-4AAA-BF41-65995063EC44} mWlsSafe-->MsiExec.exe /I{FCA651F3-5BDA-4DDA-9E4A-5D87D6914CC4} Nero 7 Ultra Edition-->MsiExec.exe /X{CF097717-F174-4144-954A-FBC4BF301036} neroxml-->MsiExec.exe /I{56C049BE-79E9-4502-BEA7-9754A3E60F9B} NVIDIA Drivers-->C:\WINDOWS\system32\nvuninst.exe UninstallGUI NVIDIA nView Desktop Manager-->C:\Program Files\NVIDIA Corporation\nView\nViewSetup.exe -uninstall OpenMG AAC Add-on Module 1.0.00-->C:\PROGRA~1\FICHIE~1\INSTAL~1\Driver\1150\INTEL3~1\IDriver.exe /M{23BE930B-6AC4-4D0D-B5C3-03062A2BF2A3} UNINSTALL OpenMG Limited Patch 4.5-06-05-12-01-->C:\Program Files\Fichiers communs\Sony Shared\OpenMG\HotFixes\HotFix4.5-06-05-12-01\HotFixSetup\setup.exe /u OpenMG Secure Module 4.5.01-->C:\PROGRA~1\FICHIE~1\INSTAL~1\Driver\1150\INTEL3~1\IDriver.exe /M{3633BA28-67CE-4AC8-A677-3406CA84C3D8} UNINSTALL Outil de téléchargement Windows Live-->MsiExec.exe /I{205C6BDD-7B73-42DE-8505-9A093F35A238} Package de base Microsoft de service de chiffrement pour cartes à puce-->"C:\WINDOWS\$NtUninstallbasecsp$\spuninst\spuninst.exe" PowerCinema-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{2637C347-9DAD-11D6-9EA2-00055D0CA761}\Setup.exe" -uninstall Roxio DigitalMedia Audio-->MsiExec.exe /I{AB708C9B-97C8-4AC9-899B-DBF226AC9382} Roxio DigitalMedia Copy-->MsiExec.exe /I{B12665F4-4E93-4AB4-B7FC-37053B524629} Roxio DigitalMedia Data-->MsiExec.exe /I{075473F5-846A-448B-BCB3-104AA1760205} Secunia PSI-->"C:\Program Files\Secunia\PSI\uninstall.exe" Security Update for CAPICOM (KB931906)-->MsiExec.exe /I{0EFDF2F9-836D-4EB7-A32D-038BD3F1FB2A} Security Update for CAPICOM (KB931906)-->MsiExec.exe /X{0EFDF2F9-836D-4EB7-A32D-038BD3F1FB2A} Segoe UI-->MsiExec.exe /I{A1F66FC9-11EE-4F2F-98C9-16F8D1E69FB7} Setting Utility Series-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\PROFES~1\RunTime\11\50\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{59452470-A902-477F-9338-9B88101681BD}\setup.exe" -l0x40c UNINSTALL -removeonly SigmaTel Audio-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\PROFES~1\RunTime\10\01\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{A462213D-EED4-42C2-9A60-7BDD4D4B0B17}\setup.exe" -l0x40c -remove -removeonly SonicStage Mastering Studio Audio Filter Custom Preset-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{013E1BA8-C815-4E27-BCB9-D6B1B2E24094}\setup.exe" -l0x40c SonicStage Mastering Studio Audio Filter-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{AB467B85-4F52-48C2-AEED-0673D00417B0}\setup.exe" -l0x40c SonicStage Mastering Studio Plugins-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{EE7EB179-5AA2-4B28-AC92-5CBAAF82BA7F}\setup.exe" -l0x40c Sony MP4 Shared Library-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\PROFES~1\RunTime\10\01\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{01FDC9FC-4D4F-4DB0-ACD1-D3E8E1D52902}\setup.exe" -l0x40c -removeonly Sony USB Mouse-->Pmuninst.exe MouseSuite98 Sony Utilities DLL-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{EF3D45BB-2260-4008-88EA-492E7744A9DF}\setup.exe" -l0x9 Sony Video Shared Library-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\PROFES~1\RunTime\10\01\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{BE56FEF0-1A0F-4719-B3AD-34B5087AFA6D}\setup.exe" -l0x40c -removeonly Update for Microsoft .NET Framework 3.5 SP1 (KB963707)-->C:\WINDOWS\system32\msiexec.exe /package {CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9} /uninstall {B2AE9C82-DC7B-3641-BFC8-87275C4F3607} /qb+ REBOOTPROMPT="" VAIO Camera Utility-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{1417F599-1DBD-4499-9375-B2813E9F890C}\setup.exe" -l0x40c VAIO Control Center-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{FC37C108-821D-4EDE-8F40-D5B497586805}\setup.exe" -l0x40c VAIO Edit Components 6.0-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\PROFES~1\RunTime\10\01\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{B7C03E84-AF46-42F4-809D-D4127D9086D0}\setup.exe" -l0x40c -removeonly VAIO Entertainment Platform-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\PROFES~1\RunTime\11\00\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{6B1F20F2-6321-4669-A58C-33DF8E7517FF}\setup.exe" -l0x40c -removeonly VAIO Event Service-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{F0D85ADD-DD61-4B43-87A0-6DA52A211A8B}\setup.exe" -l0x40c VAIO Hardware Diagnostics-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{A947C2B3-7445-42C4-9063-EE704CACCB22}\setup.exe" -l0x40c VAIO Information FLOW-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\PROFES~1\RunTime\11\50\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{24960AC2-C413-4A86-B1C1-E4CCADCA44D3}\setup.exe" -l0x40c -removeonly VAIO Power Management-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\PROFES~1\RunTime\11\50\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{9E319E96-ED8E-4B01-9775-C521A1869A25}\setup.exe" -l0x40c UNINSTALL -removeonly VAIO Update 5-->"C:\Program Files\InstallShield Installation Information\{5BEE8F1F-BD32-4553-8107-500439E43BD7}\setup.exe" -runfromtemp -l0x040c -removeonly VC80CRTRedist - 8.0.50727.4053-->MsiExec.exe /I{5EE7D259-D137-4438-9A5F-42F432EC0421} Windows Internet Explorer 8-->"C:\WINDOWS\ie8\spuninst\spuninst.exe" Windows Live Call-->MsiExec.exe /I{82C7B308-0BDD-49D8-8EA5-9CD3A3F9DF41} Windows Live Communications Platform-->MsiExec.exe /I{ED00D08A-3C5F-488D-93A0-A04F21F23956} Windows Live Messenger-->MsiExec.exe /X{770F1BEC-2871-4E70-B837-FB8525FFA3B1} Windows Media Format 11 runtime-->"C:\Program Files\Windows Media Player\wmsetsdk.exe" /UninstallAll Windows Media Format 11 runtime-->"C:\WINDOWS\$NtUninstallWMFDist11$\spuninst\spuninst.exe" Windows Media Player 11-->"C:\WINDOWS\$NtUninstallwmp11$\spuninst\spuninst.exe" Windows Media Player Firefox Plugin-->MsiExec.exe /I{69FDFBB6-351D-4B8C-89D8-867DC9D0A2A4} Windows XP Service Pack 3-->"C:\WINDOWS\$NtServicePackUninstall$\spuninst\spuninst.exe" Wireless LAN Starter-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{61D6E4FB-1A62-4EB1-BE56-929B00C155CF}\setup.exe" -l0x40c Wireless Switch Setting Utility-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{2A0F3EF9-68EE-49E9-A05B-ED5B82DF63E5}\Setup.exe" -l0x40c XML Paper Specification Shared Components Language Pack 1.0-->"C:\WINDOWS\$NtUninstallXPSEPSCLP$\spuninst\spuninst.exe" ZebHelpProcess 2.35-->"C:\Program Files\ZebHelpProcess\unins000.exe" ======Security center information====== AV: AntiVir Desktop (disabled) ======System event log====== Computer Name: NOM-F002A4FFBF1 Event Code: 4202 Message: Le système a détecté que la carte réseau \DEVICE\TCPIP_{F1FDB477-7C20-42FD-9A11-C02B2731870D} était déconnectée du réseau, et la configuration réseau de la carte a été abandonnée. Si la carte réseau n'était pas déconnectée, ceci peut indiquer un disfonctionnement. Contactez le fabricant pour des pilotes mis à jour. Record Number: 5 Source Name: Tcpip Time Written: 20100530083540.000000+120 Event Type: Informations User: Computer Name: NOM-F002A4FFBF1 Event Code: 7036 Message: Le service est entré dans l'état : \DEVICE\{71B344EC-505E-4BCF-B68C-BBDEBDDE04DD}. Record Number: 4 Source Name: NETw5x32 Time Written: 20100530083540.000000+120 Event Type: Informations User: Computer Name: NOM-F002A4FFBF1 Event Code: 1001 Message: L'ordinateur a redémarré après une vérification d'erreur. La vérification d'erreur était : 0x10000050 (0xe6735fa9, 0x00000000, 0xbf9cc37f, 0x00000001). Un vidage a été enregistré dans : C:\WINDOWS\Minidump\Mini053010-01.dmp. Record Number: 3 Source Name: Save Dump Time Written: 20100530083538.000000+120 Event Type: Informations User: Computer Name: NOM-F002A4FFBF1 Event Code: 6005 Message: Le service d'Enregistrement d'événement a démarré. Record Number: 2 Source Name: EventLog Time Written: 20100530083538.000000+120 Event Type: Informations User: Computer Name: NOM-F002A4FFBF1 Event Code: 6009 Message: Microsoft ® Windows ® 5.01. 2600 Service Pack 3 Multiprocessor Free. Record Number: 1 Source Name: EventLog Time Written: 20100530083538.000000+120 Event Type: Informations User: =====Application event log===== Computer Name: NOM-F002A4FFBF1 Event Code: 17103 Message: All rights reserved. Record Number: 4487 Source Name: MSSQL$SQLEXPRESS Time Written: 20100430013955.000000+120 Event Type: Informations User: Computer Name: NOM-F002A4FFBF1 Event Code: 17101 Message: © 2005 Microsoft Corporation. Record Number: 4486 Source Name: MSSQL$SQLEXPRESS Time Written: 20100430013955.000000+120 Event Type: Informations User: Computer Name: NOM-F002A4FFBF1 Event Code: 17069 Message: Microsoft SQL Server 2005 - 9.00.4053.00 (Intel X86) May 26 2009 14:24:20 Copyright © 1988-2005 Microsoft Corporation Express Edition on Windows NT 5.1 (Build 2600: Service Pack 3) Record Number: 4485 Source Name: MSSQL$SQLEXPRESS Time Written: 20100430013955.000000+120 Event Type: Informations User: Computer Name: NOM-F002A4FFBF1 Event Code: 0 Message: Record Number: 4484 Source Name: CLCapSvc Time Written: 20100430013950.000000+120 Event Type: Informations User: Computer Name: NOM-F002A4FFBF1 Event Code: 1005 Message: Windows Installer a initié un redémarrage système afin de terminer ou de continuer la configuration de 'Adobe Reader 9.3.2 - Français'. Record Number: 4483 Source Name: MsiInstaller Time Written: 20100427070840.000000+120 Event Type: Informations User: NOM-F002A4FFBF1\Julien ======Environment variables====== "ComSpec"=%SystemRoot%\system32\cmd.exe "Path"=%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\system32\wbem;%CommonProgramFiles%\Microsoft Shared\Windows Live;C:\Program Files\Fichiers communs\Adobe\AGL;C:\Program Files\Microsoft SQL Server\80\Tools\Binn;C:\Program Files\Microsoft SQL Server\90\Tools\binn "windir"=%SystemRoot% "FP_NO_HOST_CHECK"=NO "OS"=Windows_NT "PROCESSOR_ARCHITECTURE"=x86 "PROCESSOR_LEVEL"=6 "PROCESSOR_IDENTIFIER"=x86 Family 6 Model 15 Stepping 6, GenuineIntel "PROCESSOR_REVISION"=0f06 "NUMBER_OF_PROCESSORS"=2 "PATHEXT"=.COM;.EXE;.BAT;.CMD;.VBS;.VBE;.JS;.JSE;.WSF;.WSH "TEMP"=%SystemRoot%\TEMP "TMP"=%SystemRoot%\TEMP "SonicCentral"=C:\Program Files\Fichiers communs\Sonic Shared\Sonic Central\ -----------------EOF-----------------
- le 1 juin 2010
- 58 réponses
Trop de processus au démarrage

jude18 a répondu à un(e) sujet de jude18 dans Optimisation, Trucs & Astuces

Bonsoir Tibonhomme , rien ne me déplait .... Logfile of random's system information tool 1.07 (written by random/random) Run by Julien at 2010-06-01 02:41:21 Microsoft Windows XP Professionnel Service Pack 3 System drive C: has 26 GB (51%) free of 51 GB Total RAM: 2046 MB (37% free) Logfile of Trend Micro HijackThis v2.0.4 Scan saved at 02:41:39, on 01/06/2010 Platform: Windows XP SP3 (WinNT 5.01.2600) MSIE: Internet Explorer v8.00 (8.00.6001.18702) Boot mode: Normal Running processes: C:\WINDOWS\System32\smss.exe C:\WINDOWS\system32\winlogon.exe C:\WINDOWS\system32\services.exe C:\WINDOWS\system32\lsass.exe C:\WINDOWS\system32\nvsvc32.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\System32\svchost.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\system32\spoolsv.exe C:\Program Files\Avira\AntiVir Desktop\sched.exe C:\Program Files\Avira\AntiVir Desktop\avguard.exe C:\WINDOWS\system32\dllhost.exe C:\WINDOWS\eHome\ehSched.exe C:\PROGRA~1\WinTV\TVServer\HAUPPA~1.EXE C:\Program Files\Microsoft SQL Server\MSSQL$VAIO_VEDB\Binn\sqlservr.exe C:\Program Files\Sony\VAIO Event Service\VESMgr.exe C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WLIDSVC.EXE C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WLIDSvcM.exe C:\Program Files\Apoint\Apoint.exe C:\WINDOWS\ehome\ehtray.exe C:\WINDOWS\system32\ICO.EXE C:\Program Files\Sony\VAIO Power Management\SPMgr.exe C:\Program Files\Sony\ISB Utility\ISBMgr.exe C:\WINDOWS\system32\RUNDLL32.EXE C:\Program Files\Apoint\Apntex.exe C:\Program Files\Avira\AntiVir Desktop\avgnt.exe C:\Program Files\CyberLink\PowerCinema\PCMService.exe C:\Program Files\Sony\VAIO Camera Utility\VCUServe.exe C:\Program Files\Sony\VAIO Update 5\VAIOUpdt.exe C:\Program Files\Sony\Wireless Switch Setting Utility\Switcher.exe C:\Program Files\Microsoft IntelliPoint\ipoint.exe C:\Program Files\BboxUpdate\BTLiveUpdate.exe C:\Program Files\Fichiers communs\Java\Java Update\jusched.exe C:\Documents and Settings\Julien\Local Settings\Application Data\Google\Update\GoogleUpdate.exe C:\Program Files\Fichiers communs\Ahead\Lib\NMBgMonitor.exe C:\WINDOWS\system32\ctfmon.exe C:\Program Files\WinTV\Ir.exe C:\Program Files\Toshiba\Bluetooth Toshiba Stack\TosBtMng.exe C:\Program Files\CyberLink\PowerCinema\Kernel\TV\CLCapSvc.exe C:\Program Files\WinTV\WinTV7\WinTVTray.exe C:\Program Files\Secunia\PSI\psi.exe C:\Program Files\Fichiers communs\Ahead\Lib\NMIndexingService.exe C:\Program Files\Fichiers communs\Ahead\Lib\NMIndexStoreSvr.exe C:\Program Files\Toshiba\Bluetooth Toshiba Stack\TosA2dp.exe C:\Program Files\Toshiba\Bluetooth Toshiba Stack\TosBtHid.exe C:\WINDOWS\system32\svchost.exe C:\Program Files\Outlook Express\msimn.exe C:\Program Files\Google\Update\GoogleUpdate.exe C:\WINDOWS\explorer.exe C:\Program Files\Toshiba\Bluetooth Toshiba Stack\tosOBEX.exe C:\Program Files\Toshiba\Bluetooth Toshiba Stack\tosBtProc.exe C:\Program Files\Windows Live\Messenger\msnmsgr.exe C:\Program Files\Internet Explorer\iexplore.exe C:\Program Files\Internet Explorer\iexplore.exe C:\Program Files\Java\jre6\bin\java.exe C:\Program Files\Sony\VAIO Update 5\VUAgent.exe C:\Documents and Settings\Julien\Local Settings\Application Data\Google\Chrome\Application\chrome.exe C:\Documents and Settings\Julien\Local Settings\Application Data\Google\Chrome\Application\chrome.exe C:\Documents and Settings\Julien\Local Settings\Application Data\Google\Chrome\Application\chrome.exe C:\Program Files\Windows Live\Messenger\msnmsgr.exe C:\Program Files\Windows Live\Contacts\wlcomm.exe C:\Documents and Settings\Julien\Local Settings\Application Data\Google\Chrome\Application\chrome.exe C:\Program Files\CyberLink\PowerCinema\PowerCinema.exe C:\Documents and Settings\Julien\Local Settings\Application Data\Google\Chrome\Application\chrome.exe C:\Documents and Settings\Julien\Local Settings\Application Data\Google\Chrome\Application\chrome.exe C:\Documents and Settings\Julien\Bureau\RSIT.exe C:\Program Files\trend micro\Julien.exe C:\Program Files\Internet Explorer\IEXPLORE.EXE C:\Program Files\Internet Explorer\IEXPLORE.EXE R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.bouyguestelecom.fr R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157 R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896 R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896 R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157 R1 - HKCU\Software\Microsoft\Internet Connection Wizard,ShellNext = http://www.club-vaio.com/fr/ R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens O2 - BHO: (no name) - {02478D38-C3F9-4efb-9B51-7695ECA05670} - (no file) O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Fichiers communs\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live ID - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll O2 - BHO: Java Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll O4 - HKLM\..\Run: [Apoint] C:\Program Files\Apoint\Apoint.exe O4 - HKLM\..\Run: [ehTray] C:\WINDOWS\ehome\ehtray.exe O4 - HKLM\..\Run: [Mouse Suite 98 Daemon] ICO.EXE O4 - HKLM\..\Run: [sonyPowerCfg] "C:\Program Files\Sony\VAIO Power Management\SPMgr.exe" O4 - HKLM\..\Run: [iSBMgr.exe] C:\Program Files\Sony\ISB Utility\ISBMgr.exe O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\WINDOWS\system32\NvMcTray.dll,NvTaskbarInit O4 - HKLM\..\Run: [avgnt] "C:\Program Files\Avira\AntiVir Desktop\avgnt.exe" /min O4 - HKLM\..\Run: [PCMService] "C:\Program Files\CyberLink\PowerCinema\PCMService.exe" O4 - HKLM\..\Run: [VAIOCameraUtility] "C:\Program Files\Sony\VAIO Camera Utility\VCUServe.exe" O4 - HKLM\..\Run: [VAIO Update 5] "C:\Program Files\Sony\VAIO Update 5\VAIOUpdt.exe" /Stationary O4 - HKLM\..\Run: [switcher.exe] C:\Program Files\Sony\Wireless Switch Setting Utility\Switcher.exe O4 - HKLM\..\Run: [NeroFilterCheck] C:\Program Files\Fichiers communs\Ahead\Lib\NeroCheck.exe O4 - HKLM\..\Run: [intelliPoint] "c:\Program Files\Microsoft IntelliPoint\ipoint.exe" O4 - HKLM\..\Run: [bboxUpdate] C:\Program Files\BboxUpdate\BTLiveUpdate.exe O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe" O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files\Fichiers communs\Adobe\ARM\1.0\AdobeARM.exe" O4 - HKLM\..\Run: [sunJavaUpdateSched] "C:\Program Files\Fichiers communs\Java\Java Update\jusched.exe" O4 - HKCU\..\Run: [msnmsgr] "C:\Program Files\Windows Live\Messenger\msnmsgr.exe" /background O4 - HKCU\..\Run: [Google Update] "C:\Documents and Settings\Julien\Local Settings\Application Data\Google\Update\GoogleUpdate.exe" /c O4 - HKCU\..\Run: [DAEMON Tools Lite] "C:\Program Files\DAEMON Tools Lite\DTLite.exe" -autorun O4 - HKCU\..\Run: [bgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}] "C:\Program Files\Fichiers communs\Ahead\Lib\NMBgMonitor.exe" O4 - S-1-5-18 Startup: Secunia PSI.lnk = C:\Program Files\Secunia\PSI\psi.exe (User 'SYSTEM') O4 - .DEFAULT Startup: Secunia PSI.lnk = C:\Program Files\Secunia\PSI\psi.exe (User 'Default user') O4 - Startup: Secunia PSI.lnk = C:\Program Files\Secunia\PSI\psi.exe O4 - Global Startup: AutoStart IR.lnk = C:\Program Files\WinTV\Ir.exe O4 - Global Startup: Bluetooth Manager.lnk = ? O4 - Global Startup: Lancement rapide de Microsoft Office OneNote 2003.lnk = C:\Program Files\Microsoft Office\OFFICE11\ONENOTEM.EXE O4 - Global Startup: WinTV Recording Status..lnk = C:\Program Files\WinTV\WinTV7\WinTVTray.exe O8 - Extra context menu item: &Envoyer à OneNote - res://C:\PROGRA~1\MICROS~4\Office14\ONBttnIE.dll/105 O8 - Extra context menu item: Ajouter un site de support RSS à VAIO Information FLOW - C:\Program Files\Sony\VAIO Information FLOW\aiesc.html O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~4\Office14\EXCEL.EXE/3000 O9 - Extra button: Recherche - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~4\OFFICE11\REFIEBAR.DLL O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe O14 - IERESET.INF: START_PAGE_URL=http://www.club-vaio.com/fr/ O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} (MUWebControl Class) - http://www.update.microsoft.com/microsoftu...b?1264006663828 O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/shoc...ash/swflash.cab O22 - SharedTaskScheduler: Pré-chargeur Browseui - {438755C2-A8BA-11D1-B96B-00A0C90312E1} - C:\WINDOWS\system32\browseui.dll O22 - SharedTaskScheduler: Démon de cache des catégories de composant - {8C7461EF-2B13-11d2-BE35-3078302C2030} - C:\WINDOWS\system32\browseui.dll O23 - Service: Avira AntiVir Planificateur (AntiVirSchedulerService) - Avira GmbH - C:\Program Files\Avira\AntiVir Desktop\sched.exe O23 - Service: Avira AntiVir Guard (AntiVirService) - Avira GmbH - C:\Program Files\Avira\AntiVir Desktop\avguard.exe O23 - Service: CyberLink Background Capture Service (CBCS) (CLCapSvc) - Unknown owner - C:\Program Files\CyberLink\PowerCinema\Kernel\TV\CLCapSvc.exe O23 - Service: CyberLink Task Scheduler (CTS) (CLSched) - Unknown owner - C:\Program Files\CyberLink\PowerCinema\Kernel\TV\CLSched.exe O23 - Service: Service d'administration du Gestionnaire de disque logique (dmadmin) - Unknown owner - C:\WINDOWS\System32\dmadmin.exe O23 - Service: Service de planification Media Center (ehSched) - Unknown owner - C:\WINDOWS\eHome\ehSched.exe O23 - Service: Journal des événements (Eventlog) - Unknown owner - C:\WINDOWS\system32\services.exe O23 - Service: Service Google Update (gupdate) (gupdate) - Unknown owner - C:\Program Files\Google\Update\GoogleUpdate.exe O23 - Service: HauppaugeTVServer - Hauppauge Computer Works - C:\PROGRA~1\WinTV\TVServer\HAUPPA~1.EXE O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Fichiers communs\InstallShield\Driver\1150\Intel 32\IDriverT.exe O23 - Service: KMService - Unknown owner - C:\WINDOWS\system32\srvany.exe O23 - Service: Ma-Config Service (maconfservice) - Unknown owner - C:\Program Files\ma-config.com\maconfservice.exe O23 - Service: MSCSPTISRV - Sony Corporation - C:\Program Files\Fichiers communs\Sony Shared\AVLib\MSCSPTISRV.exe O23 - Service: MSSQL$VAIO_VEDB - Unknown owner - C:\Program Files\Microsoft SQL Server\MSSQL$VAIO_VEDB\Binn\sqlservr.exe O23 - Service: NBService - Nero AG - C:\Program Files\Nero\Nero 7\Nero BackItUp\NBService.exe O23 - Service: NMIndexingService - Nero AG - C:\Program Files\Fichiers communs\Ahead\Lib\NMIndexingService.exe O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe O23 - Service: PACSPTISVR - Sony Corporation - C:\Program Files\Fichiers communs\Sony Shared\AVLib\PACSPTISVR.exe O23 - Service: Plug-and-Play (PlugPlay) - Unknown owner - C:\WINDOWS\system32\services.exe O23 - Service: Cyberlink RichVideo Service(CRVS) (RichVideo) - Unknown owner - C:\Program Files\CyberLink\Shared files\RichVideo.exe O23 - Service: Sony SPTI Service (SPTISRV) - Sony Corporation - C:\Program Files\Fichiers communs\Sony Shared\AVLib\SPTISRV.exe O23 - Service: Telnet (TlntSvr) - Unknown owner - C:\WINDOWS\system32\tlntsvr.exe O23 - Service: VAIO Entertainment TV Device Arbitration Service - Sony Corporation - C:\Program Files\Fichiers communs\Sony Shared\VAIO Entertainment Platform\VzCs\VzHardwareResourceManager\VzHardwareResourceManager.exe O23 - Service: VAIO Event Service - Sony Corporation - C:\Program Files\Sony\VAIO Event Service\VESMgr.exe O23 - Service: VAIO Cooporated Initialisation (VCI) - Sony Corporation - C:\Program Files\Sony\VAIO Cooperated Initialisation\VCI_SVC.exe O23 - Service: VAIO Entertainment UPnP Client Adapter (Vcsw) - Sony Corporation - C:\Program Files\Fichiers communs\Sony Shared\VAIO Entertainment Platform\VCSW\VCSW.exe O23 - Service: Cliché instantané de volume (VSS) - Unknown owner - C:\WINDOWS\System32\vssvc.exe O23 - Service: VUAgent - Sony Corporation - C:\Program Files\Sony\VAIO Update 5\VUAgent.exe O23 - Service: VAIO Entertainment Database Service (VzCdbSvc) - Sony Corporation - C:\Program Files\Fichiers communs\Sony Shared\VAIO Entertainment Platform\VzCdb\VzCdbSvc.exe O23 - Service: VAIO Entertainment File Import Service (VzFw) - Sony Corporation - C:\Program Files\Fichiers communs\Sony Shared\VAIO Entertainment Platform\VzCdb\VzFw.exe O23 - Service: Service Partage réseau du Lecteur Windows Media (WMPNetworkSvc) - Unknown owner - C:\Program Files\Windows Media Player\WMPNetwk.exe -- End of file - 13354 bytes ======Scheduled tasks folder====== C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job ======Registry dump====== [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{02478D38-C3F9-4efb-9B51-7695ECA05670}] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}] Adobe PDF Link Helper - C:\Program Files\Fichiers communs\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2010-04-04 75200] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}] Programme d'aide de l'Assistant de connexion Windows Live ID - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2009-03-30 403824] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}] Java Plug-In 2 SSV Helper - C:\Program Files\Java\jre6\bin\jp2ssv.dll [2010-05-27 41760] [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run] "Apoint"=C:\Program Files\Apoint\Apoint.exe [2004-11-17 118784] "ehTray"=C:\WINDOWS\ehome\ehtray.exe [2005-08-05 64512] "Mouse Suite 98 Daemon"=C:\WINDOWS\system32\ICO.EXE [2002-03-14 45056] "SonyPowerCfg"=C:\Program Files\Sony\VAIO Power Management\SPMgr.exe [2006-06-27 217088] "ISBMgr.exe"=C:\Program Files\Sony\ISB Utility\ISBMgr.exe [2004-02-20 32768] "NvCplDaemon"=C:\WINDOWS\system32\NvCpl.dll [2009-10-01 13901824] "NvMediaCenter"=C:\WINDOWS\system32\NvMcTray.dll [2009-10-01 86016] "avgnt"=C:\Program Files\Avira\AntiVir Desktop\avgnt.exe [2009-03-02 209153] "PCMService"=C:\Program Files\CyberLink\PowerCinema\PCMService.exe [2007-10-16 159744] "VAIOCameraUtility"=C:\Program Files\Sony\VAIO Camera Utility\VCUServe.exe [2005-12-27 69632] "VAIO Update 5"=C:\Program Files\Sony\VAIO Update 5\VAIOUpdt.exe [2009-12-08 1324400] "Switcher.exe"=C:\Program Files\Sony\Wireless Switch Setting Utility\Switcher.exe [2006-02-14 176128] "NeroFilterCheck"=C:\Program Files\Fichiers communs\Ahead\Lib\NeroCheck.exe [2007-03-01 153136] "IntelliPoint"=c:\Program Files\Microsoft IntelliPoint\ipoint.exe [2009-05-28 1468296] "BboxUpdate"=C:\Program Files\BboxUpdate\BTLiveUpdate.exe [2008-08-06 103936] "Adobe Reader Speed Launcher"=C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe [2010-04-04 36272] "Adobe ARM"=C:\Program Files\Fichiers communs\Adobe\ARM\1.0\AdobeARM.exe [2010-03-24 952768] "SunJavaUpdateSched"=C:\Program Files\Fichiers communs\Java\Java Update\jusched.exe [2010-02-18 248040] [HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run] "msnmsgr"=C:\Program Files\Windows Live\Messenger\msnmsgr.exe [2009-07-26 3883856] "Google Update"=C:\Documents and Settings\Julien\Local Settings\Application Data\Google\Update\GoogleUpdate.exe [2010-03-28 136176] "DAEMON Tools Lite"=C:\Program Files\DAEMON Tools Lite\DTLite.exe [2010-04-01 357696] "BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}"=C:\Program Files\Fichiers communs\Ahead\Lib\NMBgMonitor.exe [2007-06-27 152872] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Documents and Settings^All Users^Menu Démarrer^Programmes^Démarrage^Windows Search.lnk] [] C:\Documents and Settings\All Users\Menu Démarrer\Programmes\Démarrage AutoStart IR.lnk - C:\Program Files\WinTV\Ir.exe Bluetooth Manager.lnk - C:\Program Files\Toshiba\Bluetooth Toshiba Stack\TosBtMng.exe Lancement rapide de Microsoft Office OneNote 2003.lnk - C:\Program Files\Microsoft Office\OFFICE11\ONENOTEM.EXE WinTV Recording Status..lnk - C:\Program Files\WinTV\WinTV7\WinTVTray.exe C:\Documents and Settings\Julien\Menu Démarrer\Programmes\Démarrage Secunia PSI.lnk - C:\Program Files\Secunia\PSI\psi.exe [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\VESWinlogon] C:\WINDOWS\system32\VESWinlogon.dll [2006-03-09 73728] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad] WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\WINDOWS\system32\WPDShServiceObj.dll [2006-10-18 133632] [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System] "dontdisplaylastusername"=0 "legalnoticecaption"= "legalnoticetext"= "shutdownwithoutlogon"=1 "undockwithoutlogon"=1 "InstallVisualStyle"=C:\WINDOWS\Resources\Themes\Royale\Royale.msstyles "InstallTheme"=C:\WINDOWS\Resources\Themes\Royale.theme [HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer] "NoDriveTypeAutoRun"=323 "NoDriveAutoRun"=67108863 "NoDrives"=0 [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer] "HonorAutoRunSetting"= "NoDriveAutoRun"= "NoDriveTypeAutoRun"= "NoDrives"= [HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list] "%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019" "%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000" "C:\Program Files\Windows Live\Messenger\wlcsdk.exe"="C:\Program Files\Windows Live\Messenger\wlcsdk.exe:*:Enabled:Windows Live Call" "C:\Program Files\Windows Live\Messenger\msnmsgr.exe"="C:\Program Files\Windows Live\Messenger\msnmsgr.exe:*:Enabled:Windows Live Messenger" "C:\Program Files\Messenger\msmsgs.exe"="C:\Program Files\Messenger\msmsgs.exe:*:Enabled:Windows Messenger" "C:\Program Files\WinTV\WinTV7\WinTV7.exe"="C:\Program Files\WinTV\WinTV7\WinTV7.exe:*:Enabled:WinTV7" "C:\Program Files\Bbox\eSKernel.exe"="C:\Program Files\Bbox\eSKernel.exe:*:Enabled:Bbox assistant d'installation" "C:\Program Files\BboxUpdate\BTLiveUpdate.exe"="C:\Program Files\BboxUpdate\BTLiveUpdate.exe:*:Enabled:Bbox - Bouygues Telecom - Utilitaire de mise à jour" "C:\Program Files\ma-config.com\maconfservice.exe"="C:\Program Files\ma-config.com\maconfservice.exe:LocalSubNet:Enabled:maconfservice" [HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list] "%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019" "%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000" "C:\Program Files\Windows Live\Messenger\wlcsdk.exe"="C:\Program Files\Windows Live\Messenger\wlcsdk.exe:*:Enabled:Windows Live Call" "C:\Program Files\Windows Live\Messenger\msnmsgr.exe"="C:\Program Files\Windows Live\Messenger\msnmsgr.exe:*:Enabled:Windows Live Messenger" "C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe"="C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe:*:Enabled:hpqtra08.exe" "C:\Program Files\HP\Digital Imaging\bin\hpqste08.exe"="C:\Program Files\HP\Digital Imaging\bin\hpqste08.exe:*:Enabled:hpqste08.exe" "C:\Program Files\HP\Digital Imaging\bin\hposid01.exe"="C:\Program Files\HP\Digital Imaging\bin\hposid01.exe:*:Enabled:hposid01.exe" "C:\Program Files\HP\Digital Imaging\bin\hpqkygrp.exe"="C:\Program Files\HP\Digital Imaging\bin\hpqkygrp.exe:*:Enabled:hpqkygrp.exe" "C:\Program Files\HP\Digital Imaging\bin\hpfcCopy.exe"="C:\Program Files\HP\Digital Imaging\bin\hpfcCopy.exe:*:Enabled:hpfccopy.exe" "C:\Program Files\HP\Digital Imaging\bin\hpoews01.exe"="C:\Program Files\HP\Digital Imaging\bin\hpoews01.exe:*:Enabled:hpoews01.exe" "C:\Program Files\HP\Digital Imaging\bin\hpiscnapp.exe"="C:\Program Files\HP\Digital Imaging\bin\hpiscnapp.exe:*:Enabled:hpiscnapp.exe" "C:\Program Files\HP\Digital Imaging\bin\hpqgplgtupl.exe"="C:\Program Files\HP\Digital Imaging\bin\hpqgplgtupl.exe:*:Enabled:hpqgplgtupl.exe" "C:\Program Files\HP\Digital Imaging\bin\hpqgpc01.exe"="C:\Program Files\HP\Digital Imaging\bin\hpqgpc01.exe:*:Enabled:hpqgpc01.exe" "C:\Program Files\HP\Digital Imaging\bin\hpqusgm.exe"="C:\Program Files\HP\Digital Imaging\bin\hpqusgm.exe:*:Enabled:hpqusgm.exe" "C:\Program Files\HP\Digital Imaging\bin\hpqusgh.exe"="C:\Program Files\HP\Digital Imaging\bin\hpqusgh.exe:*:Enabled:hpqusgh.exe" "C:\Program Files\HP\HP Software Update\HPWUCli.exe"="C:\Program Files\HP\HP Software Update\HPWUCli.exe:*:Enabled:hpwucli.exe" "C:\Program Files\HP\Digital Imaging\smart web printing\SmartWebPrintExe.exe"="C:\Program Files\HP\Digital Imaging\smart web printing\SmartWebPrintExe.exe:*:Enabled:smartwebprintexe.exe" ======List of files/folders created in the last 1 months====== 2010-06-01 02:41:21 ----D---- C:\rsit 2010-05-31 01:29:01 ----SHD---- C:\RECYCLER 2010-05-31 01:24:15 ----A---- C:\ComboFix.txt 2010-05-31 01:15:38 ----A---- C:\WINDOWS\zip.exe 2010-05-31 01:15:38 ----A---- C:\WINDOWS\SWXCACLS.exe 2010-05-31 01:15:38 ----A---- C:\WINDOWS\SWSC.exe 2010-05-31 01:15:38 ----A---- C:\WINDOWS\SWREG.exe 2010-05-31 01:15:38 ----A---- C:\WINDOWS\sed.exe 2010-05-31 01:15:38 ----A---- C:\WINDOWS\PEV.exe 2010-05-31 01:15:38 ----A---- C:\WINDOWS\NIRCMD.exe 2010-05-31 01:15:38 ----A---- C:\WINDOWS\MBR.exe 2010-05-31 01:15:38 ----A---- C:\WINDOWS\grep.exe 2010-05-31 01:15:06 ----D---- C:\Qoobox 2010-05-30 22:11:04 ----D---- C:\Program Files\Google 2010-05-30 21:59:34 ----A---- C:\TCleaner.txt 2010-05-30 12:47:58 ----A---- C:\Boot.bak 2010-05-30 12:47:53 ----RASHD---- C:\cmdcons 2010-05-30 07:06:48 ----D---- C:\Documents and Settings\Julien\Application Data\MeuhMeuhTV 2010-05-30 07:06:41 ----D---- C:\Program Files\MeuhMeuhTV Alpha 2010-05-30 06:53:53 ----D---- C:\Program Files\K!TV 2010-05-30 06:15:10 ----D---- C:\WINDOWS\ERDNT 2010-05-28 14:49:59 ----D---- C:\Documents and Settings\Julien\Application Data\Mozilla 2010-05-28 12:47:48 ----D---- C:\Documents and Settings\Julien\Application Data\DivX 2010-05-28 12:47:35 ----N---- C:\WINDOWS\system32\pxafs.dll 2010-05-28 12:47:13 ----D---- C:\Program Files\Fichiers communs\DivX Shared 2010-05-27 14:00:07 ----D---- C:\Program Files\Secunia 2010-05-27 13:58:52 ----D---- C:\Documents and Settings\All Users\Application Data\McAfee 2010-05-27 13:58:40 ----D---- C:\Documents and Settings\All Users\Application Data\NOS 2010-05-27 13:52:09 ----A---- C:\WINDOWS\system32\javaws.exe 2010-05-27 13:52:09 ----A---- C:\WINDOWS\system32\javaw.exe 2010-05-27 13:52:09 ----A---- C:\WINDOWS\system32\java.exe 2010-05-27 13:52:09 ----A---- C:\WINDOWS\system32\deployJava1.dll 2010-05-27 13:51:55 ----D---- C:\Program Files\Java 2010-05-26 10:14:37 ----A---- C:\WINDOWS\exctrlst.INI 2010-05-26 09:11:34 ----D---- C:\Documents and Settings\Julien\Application Data\Yahoo! 2010-05-26 09:11:26 ----D---- C:\Program Files\Defraggler 2010-05-26 01:03:52 ----HDC---- C:\WINDOWS\$NtUninstallKB981793$ 2010-05-25 12:15:13 ----D---- C:\Program Files\Trend Micro 2010-05-25 08:32:42 ----D---- C:\Documents and Settings\Julien\Application Data\Pouchin TV Mod 2010-05-20 08:57:45 ----A---- C:\WINDOWS\system32\srvany.exe 2010-05-20 08:05:11 ----D---- C:\Program Files\Fichiers communs\DESIGNER 2010-05-20 07:47:54 ----D---- C:\Documents and Settings\All Users\Application Data\Microsoft Help 2010-05-14 09:10:33 ----A---- C:\WINDOWS\imsins.BAK 2010-05-07 11:34:15 ----D---- C:\Program Files\DAEMON Tools Lite 2010-05-07 11:33:53 ----D---- C:\Documents and Settings\Julien\Application Data\DAEMON Tools Lite 2010-05-07 11:33:51 ----D---- C:\Documents and Settings\All Users\Application Data\DAEMON Tools Lite 2010-05-07 10:28:28 ----A---- C:\WINDOWS\NeroDigital.ini 2010-05-07 10:06:35 ----D---- C:\Documents and Settings\Julien\Application Data\Ahead 2010-05-07 10:06:00 ----D---- C:\Documents and Settings\All Users\Application Data\Ahead 2010-05-07 10:02:42 ----D---- C:\Program Files\Nero 2010-05-07 10:02:42 ----D---- C:\Documents and Settings\All Users\Application Data\Nero 2010-05-07 10:02:41 ----D---- C:\Program Files\Fichiers communs\Ahead 2010-05-05 08:58:11 ----D---- C:\WINDOWS\Minidump ======List of files/folders modified in the last 1 months====== 2010-05-31 17:15:56 ----D---- C:\WINDOWS\Temp 2010-05-31 01:30:45 ----RD---- C:\Program Files 2010-05-31 01:21:54 ----N---- C:\WINDOWS\system.ini 2010-05-31 01:21:54 ----D---- C:\WINDOWS 2010-05-31 01:19:58 ----D---- C:\WINDOWS\system32\drivers 2010-05-31 01:19:58 ----D---- C:\WINDOWS\system32 2010-05-31 01:19:58 ----D---- C:\WINDOWS\AppPatch 2010-05-31 01:19:53 ----D---- C:\Program Files\Fichiers communs 2010-05-31 01:16:47 ----D---- C:\WINDOWS\system32\CatRoot2 2010-05-31 01:15:37 ----SHD---- C:\System Volume Information 2010-05-31 01:15:37 ----D---- C:\WINDOWS\system32\Restore 2010-05-30 22:12:05 ----D---- C:\Documents and Settings\Julien\Application Data\Google 2010-05-30 22:12:00 ----SHD---- C:\WINDOWS\Installer 2010-05-30 22:11:59 ----D---- C:\Config.Msi 2010-05-30 22:11:07 ----SD---- C:\WINDOWS\Tasks 2010-05-30 21:59:13 ----D---- C:\Program Files\ZebHelpProcess 2010-05-30 21:54:59 ----A---- C:\WINDOWS\win.ini 2010-05-30 21:49:02 ----D---- C:\WINDOWS\Registration 2010-05-30 12:47:58 ----RASH---- C:\boot.ini 2010-05-30 06:17:38 ----D---- C:\WINDOWS\system32\config 2010-05-30 06:09:37 ----D---- C:\Program Files\Fichiers communs\Microsoft Shared 2010-05-29 17:30:57 ----D---- C:\Program Files\eMule 2010-05-29 17:29:51 ----D---- C:\Program Files\Vuze 2010-05-28 14:49:56 ----D---- C:\Program Files\Mozilla Firefox 2010-05-27 15:19:48 ----HD---- C:\WINDOWS\inf 2010-05-27 13:56:34 ----SD---- C:\WINDOWS\Downloaded Program Files 2010-05-27 13:52:35 ----D---- C:\Program Files\Fichiers communs\Java 2010-05-27 13:49:54 ----D---- C:\Program Files\CCleaner 2010-05-27 11:52:34 ----A---- C:\WINDOWS\ModemLog_HDAUDIO SoftV92 Data Fax Modem with SmartCP.txt 2010-05-27 10:43:56 ----D---- C:\WINDOWS\pss 2010-05-26 14:57:55 ----RSD---- C:\WINDOWS\assembly 2010-05-26 14:57:55 ----D---- C:\WINDOWS\Microsoft.NET 2010-05-26 14:20:16 ----D---- C:\Program Files\Duplicate Cleaner 2010-05-26 13:49:17 ----D---- C:\WINDOWS\system32\CatRoot 2010-05-26 13:16:34 ----D---- C:\Program Files\Malwarebytes' Anti-Malware 2010-05-26 13:05:31 ----D---- C:\Program Files\Microsoft Office 2010-05-26 13:04:23 ----D---- C:\WINDOWS\SHELLNEW 2010-05-26 13:04:21 ----D---- C:\Program Files\MSBuild 2010-05-26 09:28:31 ----D---- C:\Documents and Settings\Julien\Application Data\GlarySoft 2010-05-26 01:06:25 ----D---- C:\WINDOWS\Prefetch 2010-05-26 00:57:30 ----A---- C:\WINDOWS\SchedLgU.Txt 2010-05-25 12:15:14 ----SD---- C:\Documents and Settings\Julien\Application Data\Microsoft 2010-05-25 10:19:33 ----RSHDC---- C:\WINDOWS\system32\dllcache 2010-05-25 10:19:30 ----D---- C:\WINDOWS\system32\ReinstallBackups 2010-05-25 08:42:52 ----D---- C:\Hauppauge 2010-05-21 23:47:12 ----A---- C:\WINDOWS\vbaddin.ini 2010-05-20 11:38:14 ----A---- C:\WINDOWS\ODBC.INI 2010-05-20 11:36:56 ----SD---- C:\Documents and Settings\All Users\Application Data\Microsoft 2010-05-20 11:35:32 ----D---- C:\WINDOWS\system 2010-05-20 08:11:38 ----RSD---- C:\WINDOWS\Fonts 2010-05-20 08:05:28 ----D---- C:\WINDOWS\WinSxS 2010-05-20 07:45:50 ----D---- C:\Documents and Settings\Julien\Application Data\Azureus 2010-05-14 09:25:13 ----D---- C:\Program Files\ma-config.com 2010-05-14 09:25:12 ----D---- C:\Documents and Settings\All Users\Application Data\ma-config.com 2010-05-14 09:10:30 ----D---- C:\Program Files\Internet Explorer 2010-05-14 09:10:26 ----D---- C:\WINDOWS\ie8updates 2010-05-14 09:09:42 ----HD---- C:\WINDOWS\$hf_mig$ 2010-05-14 09:08:18 ----A---- C:\WINDOWS\system32\PerfStringBackup.INI 2010-05-13 12:23:16 ----D---- C:\Documents and Settings\Julien\Application Data\Macromedia 2010-05-13 12:13:48 ----D---- C:\WINDOWS\Debug 2010-05-12 20:17:04 ----D---- C:\Program Files\Outlook Express 2010-05-07 10:05:23 ----D---- C:\WINDOWS\ehome 2010-05-07 08:04:25 ----D---- C:\Program Files\Intel ======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)====== R1 avgio;avgio; \??\C:\Program Files\Avira\AntiVir Desktop\avgio.sys [] R1 avipbb;avipbb; C:\WINDOWS\system32\DRIVERS\avipbb.sys [2009-03-30 96104] R1 DMICall;Sony DMI Call service; C:\WINDOWS\system32\DRIVERS\DMICall.sys [2000-12-05 3952] R1 intelppm;Pilote de processeur Intel; C:\WINDOWS\system32\DRIVERS\intelppm.sys [2008-04-14 40576] R1 ssmdrv;ssmdrv; C:\WINDOWS\system32\DRIVERS\ssmdrv.sys [2009-05-11 28520] R1 Tosrfcom;Bluetooth RFCOMM from TOSHIBA; C:\WINDOWS\System32\Drivers\tosrfcom.sys [2005-08-01 64896] R2 avgntflt;avgntflt; C:\WINDOWS\system32\DRIVERS\avgntflt.sys [2009-11-25 56816] R2 cpuz133;cpuz133; \??\C:\WINDOWS\system32\drivers\cpuz133_x32.sys [] R2 mdmxsdk;mdmxsdk; C:\WINDOWS\system32\DRIVERS\mdmxsdk.sys [2005-10-05 12544] R3 ApfiltrService;Alps Pointing-device Filter Driver; C:\WINDOWS\system32\DRIVERS\Apfiltr.sys [2004-11-22 108767] R3 catchme;catchme; \??\C:\DOCUME~1\Julien\LOCALS~1\Temp\catchme.sys [] R3 CmBatt;Pilote pour Batterie à méthode de contrôle ACPI Microsoft; C:\WINDOWS\system32\DRIVERS\CmBatt.sys [2008-04-13 13952] R3 E100B;Intel® PRO Network Connection Driver; C:\WINDOWS\system32\DRIVERS\e100b325.sys [2007-11-16 165496] R3 hcw66xxx;WinTV HVR-900H; C:\WINDOWS\System32\Drivers\hcw66xxx.sys [2009-06-03 673664] R3 HDAudBus;Pilote de bus Microsoft UAA pour High Definition Audio; C:\WINDOWS\system32\DRIVERS\HDAudBus.sys [2008-04-13 144384] R3 HidUsb;Pilote de classe HID Microsoft; C:\WINDOWS\system32\DRIVERS\hidusb.sys [2008-04-13 10368] R3 HSF_DPV;HSF_DPV; C:\WINDOWS\system32\DRIVERS\HSF_DPV.sys [2005-10-18 998656] R3 HSFHWAZL;HSFHWAZL; C:\WINDOWS\system32\DRIVERS\HSFHWAZL.sys [2005-10-18 202112] R3 mouhid;Pilote HID de souris; C:\WINDOWS\system32\DRIVERS\mouhid.sys [2001-08-23 12288] R3 NETw5x32;Pilote de carte Intel® Wireless WiFi Link pour Windows XP 32 bits ; C:\WINDOWS\system32\DRIVERS\NETw5x32.sys [2010-01-13 6598656] R3 nv;nv; C:\WINDOWS\system32\DRIVERS\nv4_mini.sys [2010-01-21 7658464] R3 PSI;PSI; C:\WINDOWS\system32\DRIVERS\psi_mf.sys [2009-06-17 12648] R3 SNC;Sony Notebook Control Device; C:\WINDOWS\System32\Drivers\SonyNC.sys [2000-11-09 48896] R3 SonyImgF;Sony Image Conversion Filter Driver; C:\WINDOWS\system32\DRIVERS\SonyImgF.sys [2006-03-06 30080] R3 STHDA;SigmaTel High Definition Audio CODEC; C:\WINDOWS\system32\drivers\sthda.sys [2006-05-26 1177032] R3 ti21sony;ti21sony; C:\WINDOWS\system32\drivers\ti21sony.sys [2007-01-24 808448] R3 tosporte;Bluetooth Port Driver from Toshiba; C:\WINDOWS\system32\DRIVERS\tosporte.sys [2005-11-24 47104] R3 Tosrfbd;Bluetooth RFBUS from TOSHIBA; C:\WINDOWS\System32\Drivers\tosrfbd.sys [2006-02-03 108928] R3 Tosrfbnp;Bluetooth RFBNEP from TOSHIBA; C:\WINDOWS\System32\Drivers\tosrfbnp.sys [2005-12-14 37632] R3 Tosrfhid;Bluetooth RFHID from TOSHIBA; C:\WINDOWS\system32\DRIVERS\Tosrfhid.sys [2006-02-08 62848] R3 tosrfnds;Bluetooth Personal Area Network from TOSHIBA; C:\WINDOWS\system32\DRIVERS\tosrfnds.sys [2005-01-06 18612] R3 Tosrfusb;Bluetooth USB Controller; C:\WINDOWS\System32\Drivers\tosrfusb.sys [2006-01-31 39808] R3 usbehci;Pilote miniport de contrôleur d'hôte amélioré Microsoft USB 2.0; C:\WINDOWS\system32\DRIVERS\usbehci.sys [2008-04-13 30208] R3 usbhub;Pilote de concentrateur standard USB Microsoft; C:\WINDOWS\system32\DRIVERS\usbhub.sys [2008-04-13 59520] R3 USBSTOR;Pilote de stockage de masse USB; C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS [2008-04-13 26368] R3 usbuhci;Pilote miniport de contrôleur hôte universel USB Microsoft; C:\WINDOWS\system32\DRIVERS\usbuhci.sys [2008-04-13 20608] R3 usbvm321;Sony Visual Communication Camera VGP-VCC1; C:\WINDOWS\System32\Drivers\usbvm321.sys [2005-12-29 234496] R3 winachsf;winachsf; C:\WINDOWS\system32\DRIVERS\HSF_CNXT.sys [2005-10-18 721280] S3 Arp1394;Protocole client ARP 1394; C:\WINDOWS\system32\DRIVERS\arp1394.sys [2008-04-13 60800] S3 AVHybrid;AVHybrid service; C:\WINDOWS\system32\DRIVERS\AVHybrid.sys [2005-06-09 1021440] S3 CCDECODE;Décodeur sous-titre fermé; C:\WINDOWS\system32\DRIVERS\CCDECODE.sys [2008-04-13 17024] S3 driverhardwarev2;driverhardwarev2; \??\C:\Program Files\ma-config.com\Drivers\driverhardwarev2.sys [] S3 e1express;Intel® PRO/1000 PCI Express Network Connection Driver; C:\WINDOWS\system32\DRIVERS\e1e5132.sys [] S3 HPZid412;IEEE-1284.4 Driver HPZid412; C:\WINDOWS\system32\DRIVERS\HPZid412.sys [2008-10-28 49920] S3 HPZipr12;Print Class Driver for IEEE-1284.4 HPZipr12; C:\WINDOWS\system32\DRIVERS\HPZipr12.sys [2008-10-28 16496] S3 HPZius12;USB to IEEE-1284.4 Translation Driver HPZius12; C:\WINDOWS\system32\DRIVERS\HPZius12.sys [2008-10-28 21568] S3 mbr;mbr; \??\C:\DOCUME~1\Julien\LOCALS~1\Temp\mbr.sys [] S3 MHNDRV;Pilote MHN; C:\WINDOWS\system32\DRIVERS\mhndrv.sys [2004-08-10 11008] S3 MPE;Filtre BDA MPE; C:\WINDOWS\system32\DRIVERS\MPE.sys [2008-04-13 15232] S3 MSTEE;Convertisseur en T/site-à-site de répartition Microsoft; C:\WINDOWS\system32\drivers\MSTEE.sys [2008-04-13 5504] S3 NABTSFEC;Codec NABTS/FEC VBI; C:\WINDOWS\system32\DRIVERS\NABTSFEC.sys [2008-04-13 85248] S3 NdisIP;Connection TV/vidéo Microsoft; C:\WINDOWS\system32\DRIVERS\NdisIP.sys [2008-04-13 10880] S3 NIC1394;Pilote réseau 1394; C:\WINDOWS\system32\DRIVERS\nic1394.sys [2008-04-13 61824] S3 Point32;Microsoft IntelliPoint Filter Driver; C:\WINDOWS\system32\DRIVERS\point32.sys [2009-05-28 27792] S3 ROOTMODEM;Microsoft Legacy Modem Driver; C:\WINDOWS\System32\Drivers\RootMdm.sys [2004-08-10 5888] S3 SLIP;Détrameur décalage BDA; C:\WINDOWS\system32\DRIVERS\SLIP.sys [2008-04-13 11136] S3 streamip;BDA IPSink; C:\WINDOWS\system32\DRIVERS\StreamIP.sys [2008-04-13 15232] S3 toshidpt;TOSHIBA Bluetooth HID port driver; C:\WINDOWS\system32\drivers\Toshidpt.sys [2005-07-11 3712] S3 TosRfSnd;Bluetooth Audio Device (WDM) from TOSHIBA; C:\WINDOWS\system32\drivers\TosRfSnd.sys [2005-11-11 52864] S3 usbccgp;Pilote parent générique USB Microsoft; C:\WINDOWS\system32\DRIVERS\usbccgp.sys [2008-04-13 32128] S3 usbprint;Classe d'imprimantes USB Microsoft; C:\WINDOWS\system32\DRIVERS\usbprint.sys [2008-04-13 25856] S3 usbscan;Pilote de scanneur USB; C:\WINDOWS\system32\DRIVERS\usbscan.sys [2008-04-13 15104] S3 w39n51;Intel® PRO/Wireless 3945ABG Adapter Driver; C:\WINDOWS\system32\DRIVERS\w39n51.sys [2005-12-05 1428096] S3 WSTCODEC;Codec Teletext standard; C:\WINDOWS\system32\DRIVERS\WSTCODEC.SYS [2008-04-13 19200] S3 WudfRd;Windows Driver Foundation - User-mode Driver Framework Reflector; C:\WINDOWS\system32\DRIVERS\wudfrd.sys [2006-09-15 82688] S4 s24trans;Transport RLAN; C:\WINDOWS\system32\DRIVERS\s24trans.sys [] S4 sptd;sptd; C:\WINDOWS\System32\Drivers\sptd.sys [2010-05-07 691696] ======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)====== R2 AntiVirSchedulerService;Avira AntiVir Planificateur; C:\Program Files\Avira\AntiVir Desktop\sched.exe [2009-05-13 108289] R2 AntiVirService;Avira AntiVir Guard; C:\Program Files\Avira\AntiVir Desktop\avguard.exe [2009-07-21 185089] R2 ehSched;Service de planification Media Center; C:\WINDOWS\eHome\ehSched.exe [2005-08-05 103424] R2 HauppaugeTVServer;HauppaugeTVServer; C:\PROGRA~1\WinTV\TVServer\HAUPPA~1.EXE [2009-11-15 601088] R2 McrdSvc;Media Center Extender Service; C:\WINDOWS\ehome\mcrdsvc.exe [2005-08-05 99328] R2 MSSQL$SQLEXPRESS;SQL Server (SQLEXPRESS); C:\Program Files\Microsoft SQL Server\MSSQL.1\MSSQL\Binn\sqlservr.exe [2009-05-27 29262680] R2 MSSQL$VAIO_VEDB;MSSQL$VAIO_VEDB; C:\Program Files\Microsoft SQL Server\MSSQL$VAIO_VEDB\Binn\sqlservr.exe [2002-12-17 7520337] R2 NVSvc;NVIDIA Display Driver Service; C:\WINDOWS\system32\nvsvc32.exe [2009-10-01 172100] R2 SQLBrowser;SQL Server Browser; C:\Program Files\Microsoft SQL Server\90\Shared\sqlbrowser.exe [2008-11-25 239968] R2 VAIO Event Service;VAIO Event Service; C:\Program Files\Sony\VAIO Event Service\VESMgr.exe [2006-04-13 176128] R2 wlidsvc;Windows Live ID Sign-in Assistant; C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WLIDSVC.EXE [2009-03-30 1533808] R2 WudfSvc;Windows Driver Foundation - User-mode Driver Framework; C:\WINDOWS\system32\svchost.exe [2008-04-14 14336] R3 CLCapSvc;CyberLink Background Capture Service (CBCS); C:\Program Files\CyberLink\PowerCinema\Kernel\TV\CLCapSvc.exe [2007-10-16 278611] R3 NMIndexingService;NMIndexingService; C:\Program Files\Fichiers communs\Ahead\Lib\NMIndexingService.exe [2007-06-27 279848] R3 VUAgent;VUAgent; C:\Program Files\Sony\VAIO Update 5\VUAgent.exe [2009-12-08 673136] S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-03-18 130384] S2 gupdate;Service Google Update (gupdate); C:\Program Files\Google\Update\GoogleUpdate.exe [2010-03-28 136176] S2 KMService;KMService; C:\WINDOWS\system32\srvany.exe [2003-04-18 8192] S2 Net Driver HPZ12;Net Driver HPZ12; C:\WINDOWS\System32\svchost.exe [2008-04-14 14336] S2 Pml Driver HPZ12;Pml Driver HPZ12; C:\WINDOWS\System32\svchost.exe [2008-04-14 14336] S2 SQLWriter;SQL Server VSS Writer; C:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe [2008-11-24 87904] S2 VCI;VAIO Cooporated Initialisation; C:\Program Files\Sony\VAIO Cooperated Initialisation\VCI_SVC.exe [2005-01-04 398336] S3 aspnet_state;Service d'état ASP.NET; C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\aspnet_state.exe [2010-03-18 35160] S3 clr_optimization_v2.0.50727_32;.NET Runtime Optimization Service v2.0.50727_X86; c:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe [2008-07-25 69632] S3 CLSched;CyberLink Task Scheduler (CTS); C:\Program Files\CyberLink\PowerCinema\Kernel\TV\CLSched.exe [2007-10-16 122970] S3 FontCache3.0.0.0;Windows Presentation Foundation Font Cache 3.0.0.0; c:\WINDOWS\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe [2008-07-29 46104] S3 IDriverT;InstallDriver Table Manager; C:\Program Files\Fichiers communs\InstallShield\Driver\1150\Intel 32\IDriverT.exe [2005-11-14 69632] S3 idsvc;Windows CardSpace; c:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe [2008-07-29 881664] S3 maconfservice;Ma-Config Service; C:\Program Files\ma-config.com\maconfservice.exe [2010-05-11 271728] S3 MHN;MHN; C:\WINDOWS\System32\svchost.exe [2008-04-14 14336] S3 MSCSPTISRV;MSCSPTISRV; C:\Program Files\Fichiers communs\Sony Shared\AVLib\MSCSPTISRV.exe [2006-04-27 53337] S3 MSSQLServerADHelper;SQL Server Active Directory Helper; C:\Program Files\Microsoft SQL Server\90\Shared\sqladhlp90.exe [2008-11-25 45408] S3 NBService;NBService; C:\Program Files\Nero\Nero 7\Nero BackItUp\NBService.exe [2007-06-29 800040] S3 ose;Office Source Engine; C:\Program Files\Fichiers communs\Microsoft Shared\Source Engine\OSE.EXE [2010-01-09 149352] S3 PACSPTISVR;PACSPTISVR; C:\Program Files\Fichiers communs\Sony Shared\AVLib\PACSPTISVR.exe [2006-04-27 49241] S3 RichVideo;Cyberlink RichVideo Service(CRVS); C:\Program Files\CyberLink\Shared files\RichVideo.exe [2007-08-11 262247] S3 SPTISRV;Sony SPTI Service; C:\Program Files\Fichiers communs\Sony Shared\AVLib\SPTISRV.exe [2006-04-27 69718] S3 SQLAgent$VAIO_VEDB;SQLAgent$VAIO_VEDB; C:\Program Files\Microsoft SQL Server\MSSQL$VAIO_VEDB\Binn\sqlagent.EXE [2002-12-17 311872] S3 VAIO Entertainment TV Device Arbitration Service;VAIO Entertainment TV Device Arbitration Service; C:\Program Files\Fichiers communs\Sony Shared\VAIO Entertainment Platform\VzCs\VzHardwareResourceManager\VzHardwareResourceManager.exe [2005-11-25 73728] S3 Vcsw;VAIO Entertainment UPnP Client Adapter; C:\Program Files\Fichiers communs\Sony Shared\VAIO Entertainment Platform\VCSW\VCSW.exe [2006-04-04 274432] S3 VzCdbSvc;VAIO Entertainment Database Service; C:\Program Files\Fichiers communs\Sony Shared\VAIO Entertainment Platform\VzCdb\VzCdbSvc.exe [2005-11-28 167936] S3 VzFw;VAIO Entertainment File Import Service; C:\Program Files\Fichiers communs\Sony Shared\VAIO Entertainment Platform\VzCdb\VzFw.exe [2005-11-28 135168] S3 WMPNetworkSvc;Service Partage réseau du Lecteur Windows Media; C:\Program Files\Windows Media Player\WMPNetwk.exe [2006-11-03 918016] S3 WPFFontCache_v0400;Windows Presentation Foundation Font Cache 4.0.0.0; C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe [2010-03-18 753504] S4 NetTcpPortSharing;Service de partage de ports Net.Tcp; C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe [2008-07-29 132096] -----------------EOF-----------------
- le 1 juin 2010
- 58 réponses
Trop de processus au démarrage

jude18 a répondu à un(e) sujet de jude18 dans Optimisation, Trucs & Astuces

Je comprends que ce n'est pas approprié et que celà peut avoir de très grave conséqence(s), faut pas m'en vouloir , hein .... je souhaitais juste faire une vérification , car je ne suis pas à la hauteur des compétences de l'équipe sécurité pour éradiquer les virus , sinon je n'aurai pas fait appelle à Zebulon
- le 31 mai 2010
- 58 réponses
Trop de processus au démarrage

jude18 a répondu à un(e) sujet de jude18 dans Optimisation, Trucs & Astuces

Bonjour Tibonhomme, Je n'ai en aucun cas fais çà pour manquer de respect à qui que ce soit , j'ai simplement suivi le lien que tu m'a donné et ce uniquement pour vérifié si ce W32 parité était bien éradiqué. Je n'ai pas été aidé par qqun de physique mais uniquement par ton post avec le lien où tout est bien expliqué , je n'ai rien à montrer à personne , simplement à remercier les personnes qui m'ont aidé sur le forum sécurité ainsi que toi qui a réussi à débusquer ce KMService et par la suite orienté, Je ne comprends pas ta réaction ,pour moi, il n'y avait absolument rien de méchant , ni de provoquant . @+ Merci.
- le 31 mai 2010
- 58 réponses
Trop de processus au démarrage

jude18 a répondu à un(e) sujet de jude18 dans Optimisation, Trucs & Astuces

ComboFix 10-05-30.02 - Julien 31/05/2010 1:17.2.2 - x86 Microsoft Windows XP Professionnel 5.1.2600.3.1252.33.1036.18.2046.933 [GMT 2:00] Lancé depuis: c:\documents and settings\Julien\Bureau\COlaF.exe AV: AntiVir Desktop *On-access scanning disabled* (Updated) {AD166499-45F9-482A-A743-FDD3350758C7} . ((((((((((((((((((((((((((((( Fichiers créés du 2010-04-28 au 2010-05-30 )))))))))))))))))))))))))))))))))))) . 2010-05-29 00:19 . 2010-05-29 00:19 -------- d-----w- c:\documents and settings\LocalService\Application Data\McAfee 2010-05-28 10:48 . 2010-05-28 10:45 754984 ----a-w- c:\documents and settings\All Users\Application Data\DivX\Setup\Resource.dll 2010-05-28 10:48 . 2010-04-27 13:51 1180952 ----a-w- c:\documents and settings\All Users\Application Data\DivX\Setup\DivXSetup.exe 2010-05-28 10:48 . 2010-05-28 10:48 56766 ----a-w- c:\documents and settings\All Users\Application Data\DivX\DivXPlusShortcuts\Uninstaller.exe 2010-05-28 10:48 . 2010-05-28 10:48 56978 ----a-w- c:\documents and settings\All Users\Application Data\DivX\WebPlayer\Uninstaller.exe 2010-05-28 10:48 . 2010-05-28 10:48 57679 ----a-w- c:\documents and settings\All Users\Application Data\DivX\Player\Uninstaller.exe 2010-05-28 10:48 . 2010-05-28 10:48 53600 ----a-w- c:\documents and settings\All Users\Application Data\DivX\Update\Uninstaller.exe 2010-05-28 10:45 . 2010-05-28 10:48 -------- d-----w- c:\documents and settings\All Users\Application Data\DivX 2010-05-27 12:42 . 2010-05-27 12:42 1924976 ----a-w- c:\documents and settings\All Users\Application Data\NOS\Adobe_Downloads\install_flash_player.exe 2010-05-27 12:00 . 2010-05-27 12:00 -------- d-----w- c:\program files\Secunia 2010-05-27 11:58 . 2010-05-27 11:58 -------- d-----w- c:\documents and settings\All Users\Application Data\McAfee 2010-05-27 11:58 . 2010-05-27 14:19 -------- d-----w- c:\documents and settings\All Users\Application Data\NOS 2010-05-27 11:52 . 2010-05-27 11:52 503808 ----a-w- c:\documents and settings\Julien\Application Data\Sun\Java\Deployment\SystemCache\6.0\46\f84c6ae-7b4fe91b-n\msvcp71.dll 2010-05-27 11:52 . 2010-05-27 11:52 499712 ----a-w- c:\documents and settings\Julien\Application Data\Sun\Java\Deployment\SystemCache\6.0\46\f84c6ae-7b4fe91b-n\jmc.dll 2010-05-27 11:52 . 2010-05-27 11:52 348160 ----a-w- c:\documents and settings\Julien\Application Data\Sun\Java\Deployment\SystemCache\6.0\46\f84c6ae-7b4fe91b-n\msvcr71.dll 2010-05-27 11:52 . 2010-05-27 11:52 61440 ----a-w- c:\documents and settings\Julien\Application Data\Sun\Java\Deployment\SystemCache\6.0\50\5535ab32-1f73c633-n\decora-sse.dll 2010-05-27 11:52 . 2010-05-27 11:52 12800 ----a-w- c:\documents and settings\Julien\Application Data\Sun\Java\Deployment\SystemCache\6.0\50\5535ab32-1f73c633-n\decora-d3d.dll 2010-05-27 11:52 . 2010-05-27 11:51 411368 ----a-w- c:\windows\system32\deployJava1.dll 2010-05-27 11:51 . 2010-05-27 11:51 -------- d-----w- c:\program files\Java 2010-05-27 11:51 . 2010-05-27 11:51 79488 ----a-w- c:\documents and settings\Julien\Application Data\Sun\Java\jre1.6.0_20\gtapi.dll 2010-05-27 11:51 . 2010-05-27 11:51 152576 ----a-w- c:\documents and settings\Julien\Application Data\Sun\Java\jre1.6.0_20\lzma.dll 2010-05-26 07:11 . 2010-05-26 07:11 -------- d-----w- c:\documents and settings\Julien\Application Data\Yahoo! 2010-05-26 07:11 . 2010-05-27 12:46 -------- d-----w- c:\program files\Defraggler 2010-05-25 10:15 . 2010-05-25 10:15 388096 ----a-r- c:\documents and settings\Julien\Application Data\Microsoft\Installer\{45A66726-69BC-466B-A7A4-12FCBA4883D7}\HiJackThis.exe 2010-05-25 10:15 . 2010-05-30 19:59 -------- d-----w- c:\program files\Trend Micro 2010-05-25 06:32 . 2010-05-25 06:37 -------- d-----w- c:\documents and settings\Julien\Application Data\Pouchin TV Mod 2010-05-20 06:57 . 2003-04-18 17:06 8192 ----a-w- c:\windows\system32\srvany.exe 2010-05-20 05:48 . 2010-05-20 05:48 -------- d-----w- c:\documents and settings\Julien\Local Settings\Application Data\Microsoft Help 2010-05-20 05:47 . 2010-05-26 11:06 -------- d-----w- c:\documents and settings\All Users\Application Data\Microsoft Help 2010-05-07 09:34 . 2010-05-07 09:34 691696 ----a-w- c:\windows\system32\drivers\sptd.sys 2010-05-07 09:34 . 2010-05-07 09:34 -------- d-----w- c:\program files\DAEMON Tools Lite 2010-05-07 09:33 . 2010-05-07 11:33 -------- d-----w- c:\documents and settings\Julien\Application Data\DAEMON Tools Lite 2010-05-07 09:33 . 2010-05-07 09:33 -------- d-----w- c:\documents and settings\All Users\Application Data\DAEMON Tools Lite 2010-05-07 08:08 . 2010-05-07 09:17 -------- d-----w- c:\documents and settings\Julien\Local Settings\Application Data\Ahead 2010-05-07 08:06 . 2010-05-07 09:18 -------- d-----w- c:\documents and settings\Julien\Application Data\Ahead 2010-05-07 08:06 . 2010-05-07 08:06 -------- d-----w- c:\documents and settings\All Users\Application Data\Ahead 2010-05-07 08:02 . 2010-05-07 08:02 -------- d-----w- c:\program files\Nero 2010-05-07 08:02 . 2010-05-07 08:02 -------- d-----w- c:\documents and settings\All Users\Application Data\Nero 2010-05-07 08:02 . 2010-05-07 08:05 -------- d-----w- c:\program files\Fichiers communs\Ahead . (((((((((((((((((((((((((((((((((( Compte-rendu de Find3M )))))))))))))))))))))))))))))))))))))))))))))))) . 2010-05-30 20:11 . 2010-05-30 20:11 -------- d-----w- c:\program files\Google 2010-05-30 19:59 . 2010-03-01 10:03 -------- d-----w- c:\program files\ZebHelpProcess 2010-05-30 06:43 . 2010-05-30 04:53 -------- d-----w- c:\program files\K!TV 2010-05-30 06:34 . 2010-05-30 05:06 -------- d-----w- c:\documents and settings\Julien\Application Data\MeuhMeuhTV 2010-05-30 05:06 . 2010-05-30 05:06 -------- d-----w- c:\program files\MeuhMeuhTV Alpha 2010-05-30 04:56 . 2010-05-28 10:47 -------- d-----w- c:\documents and settings\Julien\Application Data\DivX 2010-05-29 15:30 . 2010-02-10 03:17 -------- d-----w- c:\program files\eMule 2010-05-29 15:29 . 2010-02-06 00:39 -------- d-----w- c:\program files\Vuze 2010-05-27 11:52 . 2006-07-27 15:19 -------- d-----w- c:\program files\Fichiers communs\Java 2010-05-27 11:49 . 2010-01-20 16:58 -------- d-----w- c:\program files\CCleaner 2010-05-26 12:20 . 2010-01-25 09:46 -------- d-----w- c:\program files\Duplicate Cleaner 2010-05-26 11:18 . 2010-01-20 00:38 83768 ----a-w- c:\documents and settings\Julien\Local Settings\Application Data\GDIPFONTCACHEV1.DAT 2010-05-26 11:16 . 2010-01-25 15:27 -------- d-----w- c:\program files\Malwarebytes' Anti-Malware 2010-05-26 11:04 . 2010-01-20 22:08 -------- d-----w- c:\program files\MSBuild 2010-05-26 07:28 . 2010-04-22 08:52 -------- d-----w- c:\documents and settings\Julien\Application Data\GlarySoft 2010-05-20 05:45 . 2010-02-06 00:41 -------- d-----w- c:\documents and settings\Julien\Application Data\Azureus 2010-05-14 07:25 . 2010-01-20 21:48 -------- d-----w- c:\program files\ma-config.com 2010-05-14 07:25 . 2010-01-20 21:48 -------- d-----w- c:\documents and settings\All Users\Application Data\ma-config.com 2010-05-14 07:08 . 2006-07-27 01:47 643854 ----a-w- c:\windows\system32\perfh00C.dat 2010-05-14 07:08 . 2006-07-27 01:47 132450 ----a-w- c:\windows\system32\perfc00C.dat 2010-05-07 06:04 . 2006-07-27 11:47 -------- d-----w- c:\program files\Intel 2010-04-29 13:39 . 2010-01-25 15:27 38224 ----a-w- c:\windows\system32\drivers\mbamswissarmy.sys 2010-04-29 13:39 . 2010-01-25 15:27 20952 ----a-w- c:\windows\system32\drivers\mbam.sys 2010-04-23 12:08 . 2010-04-23 12:08 -------- d-----w- c:\program files\CPUID 2010-04-22 09:27 . 2006-07-27 12:18 -------- d--h--w- c:\program files\InstallShield Installation Information 2010-04-22 09:27 . 2010-04-22 09:27 -------- d-----w- c:\documents and settings\Julien\Application Data\InstallShield 2010-04-22 09:14 . 2010-01-21 01:19 -------- d-----w- c:\program files\Messenger Plus! Live 2010-04-22 08:43 . 2010-01-19 22:57 -------- d-----w- c:\program files\Microsoft.NET 2010-04-06 02:41 . 2010-04-06 02:41 -------- d-----w- c:\documents and settings\LocalService\Application Data\sony 2010-04-06 02:41 . 2010-04-06 02:41 -------- d-----w- c:\program files\Fichiers communs\SWF Studio 2010-03-31 01:58 . 2010-05-28 10:47 133616 ------w- c:\windows\system32\pxafs.dll 2010-03-31 01:58 . 2006-07-27 15:23 125424 ------w- c:\windows\system32\pxinsi64.exe 2010-03-31 01:58 . 2006-07-27 15:23 123888 ------w- c:\windows\system32\pxcpyi64.exe 2010-03-31 01:58 . 2005-11-03 02:00 44944 ------w- c:\windows\system32\drivers\pxhelp20.sys 2010-03-20 18:11 . 2010-03-20 18:11 35712 ----a-w- c:\windows\system32\FM20FRA.DLL 2010-03-18 14:47 . 2010-03-18 14:47 17760 ----a-w- c:\windows\system32\aspnet_counters.dll 2010-03-18 11:16 . 2010-03-18 11:16 771424 ----a-w- c:\windows\system32\msvcr100_clr0400.dll 2010-03-18 11:16 . 2010-03-18 11:16 70472 ----a-w- c:\windows\system32\dxva2.dll 2010-03-18 11:16 . 2010-03-18 11:16 486216 ----a-w- c:\windows\system32\evr.dll 2010-03-18 08:09 . 2010-03-18 08:09 99176 ----a-w- c:\windows\system32\PresentationHostProxy.dll 2010-03-18 08:09 . 2010-03-18 08:09 49488 ----a-w- c:\windows\system32\netfxperf.dll 2010-03-18 08:09 . 2010-03-18 08:09 297808 ----a-w- c:\windows\system32\mscoree.dll 2010-03-18 08:09 . 2010-03-18 08:09 295264 ----a-w- c:\windows\system32\PresentationHost.exe 2010-03-10 15:25 . 2010-04-23 12:08 20968 ----a-w- c:\windows\system32\drivers\cpuz133_x32.sys 2010-03-10 06:16 . 2006-07-27 01:46 420352 ----a-w- c:\windows\system32\vbscript.dll 2010-03-08 17:59 . 2010-03-08 17:59 94208 ----a-w- c:\windows\system32\dpl100.dll . ((((((((((((((((((((((((((((((((( Points de chargement Reg )))))))))))))))))))))))))))))))))))))))))))))))) . . *Note* les éléments vides & les éléments initiaux légitimes ne sont pas listés REGEDIT4 [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "msnmsgr"="c:\program files\Windows Live\Messenger\msnmsgr.exe" [2009-07-26 3883856] "Google Update"="c:\documents and settings\Julien\Local Settings\Application Data\Google\Update\GoogleUpdate.exe" [2010-03-28 136176] "DAEMON Tools Lite"="c:\program files\DAEMON Tools Lite\DTLite.exe" [2010-04-01 357696] "BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}"="c:\program files\Fichiers communs\Ahead\Lib\NMBgMonitor.exe" [2007-06-27 152872] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "Apoint"="c:\program files\Apoint\Apoint.exe" [2004-11-17 118784] "ehTray"="c:\windows\ehome\ehtray.exe" [2005-08-05 64512] "Mouse Suite 98 Daemon"="ICO.EXE" [2002-03-14 45056] "SonyPowerCfg"="c:\program files\Sony\VAIO Power Management\SPMgr.exe" [2006-06-27 217088] "ISBMgr.exe"="c:\program files\Sony\ISB Utility\ISBMgr.exe" [2004-02-20 32768] "NvCplDaemon"="c:\windows\system32\NvCpl.dll" [2009-10-01 13901824] "NvMediaCenter"="c:\windows\system32\NvMcTray.dll" [2009-10-01 86016] "avgnt"="c:\program files\Avira\AntiVir Desktop\avgnt.exe" [2009-03-02 209153] "PCMService"="c:\program files\CyberLink\PowerCinema\PCMService.exe" [2007-10-16 159744] "VAIOCameraUtility"="c:\program files\Sony\VAIO Camera Utility\VCUServe.exe" [2005-12-27 69632] "VAIO Update 5"="c:\program files\Sony\VAIO Update 5\VAIOUpdt.exe" [2009-12-08 1324400] "Switcher.exe"="c:\program files\Sony\Wireless Switch Setting Utility\Switcher.exe" [2006-02-14 176128] "NeroFilterCheck"="c:\program files\Fichiers communs\Ahead\Lib\NeroCheck.exe" [2007-03-01 153136] "IntelliPoint"="c:\program files\Microsoft IntelliPoint\ipoint.exe" [2009-05-28 1468296] "BboxUpdate"="c:\program files\BboxUpdate\BTLiveUpdate.exe" [2008-08-06 103936] "Adobe Reader Speed Launcher"="c:\program files\Adobe\Reader 9.0\Reader\Reader_sl.exe" [2010-04-04 36272] "Adobe ARM"="c:\program files\Fichiers communs\Adobe\ARM\1.0\AdobeARM.exe" [2010-03-24 952768] "SunJavaUpdateSched"="c:\program files\Fichiers communs\Java\Java Update\jusched.exe" [2010-02-18 248040] c:\documents and settings\Julien\Menu D‚marrer\Programmes\D‚marrage\ Secunia PSI.lnk - c:\program files\Secunia\PSI\psi.exe [2009-8-21 900816] c:\documents and settings\Julien\Menu D‚marrer\Programmes\D‚marrage\ Secunia PSI.lnk - c:\program files\Secunia\PSI\psi.exe [2009-8-21 900816] c:\documents and settings\Julien\Menu D‚marrer\Programmes\D‚marrage\ Secunia PSI.lnk - c:\program files\Secunia\PSI\psi.exe [2009-8-21 900816] c:\documents and settings\All Users\Menu D‚marrer\Programmes\D‚marrage\ AutoStart IR.lnk - c:\program files\WinTV\Ir.exe [2010-3-1 117344] Bluetooth Manager.lnk - c:\program files\Toshiba\Bluetooth Toshiba Stack\TosBtMng.exe [2006-2-2 1753088] Lancement rapide de Microsoft Office OneNote 2003.lnk - c:\program files\Microsoft Office\OFFICE11\ONENOTEM.EXE [2007-4-19 64864] WinTV Recording Status..lnk - c:\program files\WinTV\WinTV7\WinTVTray.exe [2010-3-2 83456] c:\documents and settings\Julien\Menu D‚marrer\Programmes\D‚marrage\ Secunia PSI.lnk - c:\program files\Secunia\PSI\psi.exe [2009-8-21 900816] [HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\winlogon\notify\VESWinlogon] 2006-03-09 12:51 73728 ----a-w- c:\windows\system32\VESWinlogon.dll [HKLM\~\startupfolder\C:^Documents and Settings^All Users^Menu Démarrer^Programmes^Démarrage^Windows Search.lnk] path=c:\documents and settings\All Users\Menu Démarrer\Programmes\Démarrage\Windows Search.lnk backup=c:\windows\pss\Windows Search.lnkCommon Startup [HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List] "%windir%\\system32\\sessmgr.exe"= "%windir%\\Network Diagnostic\\xpnetdiag.exe"= "c:\\Program Files\\Windows Live\\Messenger\\wlcsdk.exe"= "c:\\Program Files\\Windows Live\\Messenger\\msnmsgr.exe"= "c:\\Program Files\\Messenger\\msmsgs.exe"= "c:\\Program Files\\WinTV\\WinTV7\\WinTV7.exe"= "c:\\Program Files\\Bbox\\eSKernel.exe"= "c:\\Program Files\\BboxUpdate\\BTLiveUpdate.exe"= R2 AntiVirSchedulerService;Avira AntiVir Planificateur;c:\program files\Avira\AntiVir Desktop\sched.exe [22/01/2010 02:11 108289] R2 cpuz133;cpuz133;c:\windows\system32\drivers\cpuz133_x32.sys [23/04/2010 14:08 20968] R2 HauppaugeTVServer;HauppaugeTVServer;c:\progra~1\WinTV\TVServer\HAUPPA~1.EXE [02/03/2010 07:47 601088] R2 MSSQL$VAIO_VEDB;MSSQL$VAIO_VEDB;c:\program files\Microsoft SQL Server\MSSQL$VAIO_VEDB\Binn\sqlservr.exe -sVAIO_VEDB --> c:\program files\Microsoft SQL Server\MSSQL$VAIO_VEDB\Binn\sqlservr.exe -sVAIO_VEDB [?] R3 hcw66xxx;WinTV HVR-900H;c:\windows\system32\drivers\hcw66xxx.sys [01/03/2010 16:56 673664] R3 PSI;PSI;c:\windows\system32\drivers\psi_mf.sys [17/06/2009 14:20 12648] R3 SonyImgF;Sony Image Conversion Filter Driver;c:\windows\system32\drivers\SonyImgF.sys [27/07/2006 03:47 30080] R3 ti21sony;ti21sony;c:\windows\system32\drivers\ti21sony.sys [27/07/2006 03:47 808448] S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;c:\windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [18/03/2010 13:16 130384] S2 gupdate;Service Google Update (gupdate);c:\program files\Google\Update\GoogleUpdate.exe [30/05/2010 22:11 136176] S2 KMService;KMService;c:\windows\system32\srvany.exe [20/05/2010 08:57 8192] S3 AVHybrid;AVHybrid service;c:\windows\system32\drivers\AVHybrid.sys [09/06/2005 21:16 1021440] S3 maconfservice;Ma-Config Service;c:\program files\ma-config.com\maconfservice.exe [11/05/2010 11:34 271728] S3 SQLAgent$VAIO_VEDB;SQLAgent$VAIO_VEDB;c:\program files\Microsoft SQL Server\MSSQL$VAIO_VEDB\Binn\sqlagent.EXE -i VAIO_VEDB --> c:\program files\Microsoft SQL Server\MSSQL$VAIO_VEDB\Binn\sqlagent.EXE -i VAIO_VEDB [?] S3 VUAgent;VUAgent;c:\program files\Sony\VAIO Update 5\VUAgent.exe [20/01/2010 23:09 673136] S3 WPFFontCache_v0400;Windows Presentation Foundation Font Cache 4.0.0.0;c:\windows\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe [18/03/2010 13:16 753504] S4 sptd;sptd;c:\windows\system32\drivers\sptd.sys [07/05/2010 11:34 691696] --- Autres Services/Pilotes en mémoire --- *NewlyCreated* - GUPDATE [HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\svchost] HPZ12 REG_MULTI_SZ Pml Driver HPZ12 Net Driver HPZ12 . Contenu du dossier 'Tâches planifiées' 2010-05-30 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job - c:\program files\Google\Update\GoogleUpdate.exe [2010-05-30 10:18] . . ------- Examen supplémentaire ------- . uStart Page = hxxp://www.bouyguestelecom.fr uInternet Connection Wizard,ShellNext = hxxp://www.club-vaio.com/fr/ IE: &Envoyer à OneNote - c:\progra~1\MICROS~4\Office14\ONBttnIE.dll/105 IE: Ajouter un site de support RSS à VAIO Information FLOW - c:\program files\Sony\VAIO Information FLOW\aiesc.html IE: E&xporter vers Microsoft Excel - c:\progra~1\MICROS~4\Office14\EXCEL.EXE/3000 FF - ProfilePath - c:\documents and settings\Julien\Application Data\Mozilla\Firefox\Profiles\0wmhm26g.default\ FF - plugin: c:\documents and settings\Julien\Local Settings\Application Data\Google\Update\1.2.183.23\npGoogleOneClick8.dll FF - plugin: c:\program files\Java\jre6\bin\new_plugin\npdeployJava1.dll FF - plugin: c:\program files\ma-config.com\nphardwaredetection.dll FF - plugin: c:\program files\Microsoft\Office Live\npOLW.dll FF - plugin: c:\program files\Mozilla Firefox\plugins\np-mswmp.dll FF - HiddenExtension: Microsoft .NET Framework Assistant: {20a82645-c095-46ed-80e3-08825760534b} - c:\windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension\ ---- PARAMETRES FIREFOX ---- c:\program files\Mozilla Firefox\greprefs\all.js - pref("ui.use_native_colors", true); c:\program files\Mozilla Firefox\greprefs\all.js - pref("network.auth.force-generic-ntlm", false); c:\program files\Mozilla Firefox\greprefs\all.js - pref("svg.smil.enabled", false); c:\program files\Mozilla Firefox\greprefs\security-prefs.js - pref("security.ssl.allow_unrestricted_renego_everywhere__temporarily_available_pr ef", true); c:\program files\Mozilla Firefox\greprefs\security-prefs.js - pref("security.ssl.renego_unrestricted_hosts", ""); c:\program files\Mozilla Firefox\greprefs\security-prefs.js - pref("security.ssl.treat_unsafe_negotiation_as_broken", false); c:\program files\Mozilla Firefox\greprefs\security-prefs.js - pref("security.ssl.require_safe_negotiation", false); c:\program files\Mozilla Firefox\defaults\pref\firefox.js - pref("extensions.{972ce4c6-7e08-4474-a285-3208198ce6fd}.name", "chrome://browser/locale/browser.properties"); c:\program files\Mozilla Firefox\defaults\pref\firefox.js - pref("extensions.{972ce4c6-7e08-4474-a285-3208198ce6fd}.description", "chrome://browser/locale/browser.properties"); c:\program files\Mozilla Firefox\defaults\pref\firefox.js - pref("plugins.update.notifyUser", false); . - - - - ORPHELINS SUPPRIMES - - - - AddRemove-ZHPDiag_is1 - c:\program files\ZHPDiag\unins000.exe ************************************************************************** catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net Rootkit scan 2010-05-31 01:21 Windows 5.1.2600 Service Pack 3 NTFS Recherche de processus cachés ... Recherche d'éléments en démarrage automatique cachés ... Recherche de fichiers cachés ... Scan terminé avec succès Fichiers cachés: 0 ************************************************************************** . --------------------- CLES DE REGISTRE BLOQUEES --------------------- [HKEY_USERS\.Default\Software\Microsoft\Internet Explorer\User Preferences] @Denied: (2) (LocalSystem) "88D7D0879DAB32E14DE5B3A805A34F98AFF34F5977"=hex:01,00,00,00,d0,8c,9d,df,01,15, d1,11,8c,7a,00,c0,4f,c2,97,eb,01,00,00,00,11,40,93,25,30,7e,d3,4d,ab,64,2d,\ "2D53CFFC5C1A3DD2E97B7979AC2A92BD59BC839E81"=hex:01,00,00,00,d0,8c,9d,df,01,15, d1,11,8c,7a,00,c0,4f,c2,97,eb,01,00,00,00,11,40,93,25,30,7e,d3,4d,ab,64,2d,\ [HKEY_LOCAL_MACHINE\software\Microsoft\Windows\CurrentVersion\Installer\UserData\LocalSystem\Components\h–€|ÿÿÿÿ¤•€|ù•9~*] "C040211900063D11C8EF10054038389C"="C?\\WINDOWS\\system32\\FM20ENU.DLL" [HKEY_LOCAL_MACHINE\software\Microsoft\Windows\CurrentVersion\Installer\UserData\LocalSystem\Components\€–€|ÿÿÿÿÀ•€|ù•9~*] "C040710900063D11C8EF10054038389C"="C?\\WINDOWS\\system32\\FM20ENU.DLL" "C040110900063D11C8EF10054038389C"="C?\\WINDOWS\\system32\\FM20ENU.DLL" . --------------------- DLLs chargées dans les processus actifs --------------------- - - - - - - - > 'winlogon.exe'(1120) c:\windows\system32\VESWinlogon.dll - - - - - - - > 'explorer.exe'(1600) c:\windows\system32\eappprxy.dll c:\windows\system32\webcheck.dll c:\windows\system32\WPDShServiceObj.dll c:\windows\system32\PortableDeviceTypes.dll c:\windows\system32\PortableDeviceApi.dll c:\program files\Fichiers communs\Adobe\Acrobat\ActiveX\PDFShell.FRA c:\program files\Fichiers communs\Ahead\Lib\MediaLibraryNSE.dll c:\program files\Fichiers communs\Ahead\Lib\MFC71U.DLL c:\program files\Fichiers communs\Adobe\Acrobat\ActiveX\PDFShell.dll . Heure de fin: 2010-05-31 01:24:14 ComboFix-quarantined-files.txt 2010-05-30 23:24 Avant-CF: 27 563 835 392 octets libres Après-CF: 27 694 837 760 octets libres - - End Of File - - ADF5C803FB72055F2F56B3A5A5F8FBCC voilà un rapport ComboFix pour confirmer
- le 30 mai 2010
- 58 réponses
Trop de processus au démarrage

jude18 a répondu à un(e) sujet de jude18 dans Optimisation, Trucs & Astuces

C'était bien avant qu'il me réponde . c'était la variante B . Je viens de finir 3 scan : MalwareByte( sans antivirus en route) , un scan avec Kaspersky , et un autre sur panda et resultat negatif
- le 30 mai 2010
- 58 réponses

Connexion

jude18

Compteur de contenus

Inscription

Dernière visite

Type de contenu

Profils

Forums

Blogs

Tout ce qui a été posté par jude18

PC lent

PC lent

PC lent

PC lent

PC lent

PC lent

PC lent

PC lent

PC lent

PC lent

PC lent

PC lent

PC lent

PC infecté

PC infecté

PC infecté

Trop de processus au démarrage

Trop de processus au démarrage

A part Ebay, où revendre un pc fixe ?

Trop de processus au démarrage

Trop de processus au démarrage

Trop de processus au démarrage

Trop de processus au démarrage

Trop de processus au démarrage

Trop de processus au démarrage

Zebulon

Outils en ligne

Naviguer