LeeLee

Bonsoir, J'ai essayé avec un autre écran, cela ne change rien. J'ai un message comme quoi il n'y a pas de signal puis l'écran se met en veille et la diode devient orange. Je ne sais pas comment essayer avec une autre carte vidéo ? Puis-je prendre celle que j'ai dans mon vieux pc et la mettre dans la tour de celui qui a des soucis ? Comment je repère que c'est la carte vidéo ? (Ah ben ouais... je suis une débutante vraie de vraie !) Je vais essayer de donner plus de détails concernant le matériel. Déjà le pc est de marque HP Pavillon t3000, la carte vidéo Nvidia, la carte mère Seagate. Je ne sais pas comment je peux changer la carte vidéo pour la tester sur le "vieux" pc. Merci de ton aide, Leelee

Bonsoir, Avant tout je signale que je n'y connais pas grand chose en informatique... Alors voilà ce qui arrive à mon pc (Vista)lorsque je l'allume : l'écran reste en veille, le clavier ne s'allume pas, les ventilateurs se mettent en marche. J'ai vérifié les cables et l'écran, cela ne vient pas de là. J'ai ouvert la tour, retiré la pile durant une dizaine de minutes, mais cela n'a rien changé. J'ai un autre vieux pc (XP) d'où je peux vous écrire. Par avance je vous remercie pour l'aide que vous pourrez m'apporter. Leelee

Salut Bruce, Je continue à avoir des pop-up (genre E-Bay ) quand je vais sur certains sites (de jeux en lignes) malgré que j'utilise Mozilla. J'en ai moins qu'avant, mais ça continue quand meme. Bonne nuit, Lee

Bonsoir Bruce, Je te confirme que les deux messages d'erreur je ne les ai que pour HijackThis. Bonne soirée, Lee Voici le rapport de scan de Spybot : --- Search result list --- Avenue A, Inc.: Cookie traceur (Internet Explorer: VISTA) (Cookie, nothing done) DoubleClick: Cookie traceur (Internet Explorer: VISTA) (Cookie, nothing done) --- Spybot - Search & Destroy version: 1.4 (build: 20050523) --- 2005-05-31 blindman.exe (1.0.0.1) 2005-05-31 SpybotSD.exe (1.4.0.3) 2005-05-31 TeaTimer.exe (1.4.0.2) 2007-06-01 unins000.exe (51.41.0.0) 2005-05-31 Update.exe (1.4.0.0) 2007-05-23 advcheck.dll (1.5.3.0) 2005-05-31 aports.dll (2.1.0.0) 2005-05-31 borlndmm.dll (7.0.4.453) 2005-05-31 delphimm.dll (7.0.4.453) 2005-05-31 SDHelper.dll (1.4.0.0) 2007-01-02 Tools.dll (2.0.1.0) 2005-05-31 UnzDll.dll (1.73.1.1) 2005-05-31 ZipDll.dll (1.73.2.0) 2007-06-06 Includes\Cookies.sbi (*) 2007-05-30 Includes\Dialer.sbi (*) 2007-06-06 Includes\DialerC.sbi (*) 2007-05-30 Includes\Hijackers.sbi (*) 2007-06-06 Includes\HijackersC.sbi (*) 2006-10-27 Includes\Keyloggers.sbi (*) 2007-06-06 Includes\KeyloggersC.sbi (*) 2007-05-30 Includes\Malware.sbi (*) 2007-06-06 Includes\MalwareC.sbi (*) 2007-03-21 Includes\PUPS.sbi (*) 2007-06-06 Includes\PUPSC.sbi (*) 2007-06-06 Includes\Revision.sbi (*) 2007-05-30 Includes\Security.sbi (*) 2007-06-06 Includes\SecurityC.sbi (*) 2007-06-06 Includes\Spybots.sbi (*) 2007-06-06 Includes\SpybotsC.sbi (*) 2005-02-17 Includes\Tracks.uti 2007-05-16 Includes\Trojans.sbi (*) 2007-06-06 Includes\TrojansC.sbi (*) --- System information --- Unknown Windows version 6.0 (Build: 6000) / MSXML4SP2: FIX: ASP stops responding when calling Response.Redirect to another server using msxml4 sp2 --- Startup entries list --- Located: HK_LM:Run, a-squared command: "C:\Program Files\a-squared Anti-Malware\a2guard.exe" file: C:\Program Files\a-squared Anti-Malware\a2guard.exe size: 1164896 MD5: 996b405bf4a1c893836e13f4eec851d9 Located: HK_CU:Run, ehTray.exe command: C:\Windows\ehome\ehTray.exe file: C:\Windows\ehome\ehTray.exe size: 125440 MD5: 2e0953919779a44bf9dfb7b07c58535a Located: HK_CU:Run, ISUSPM Startup command: C:\PROGRA~1\COMMON~1\INSTAL~1\UPDATE~1\isuspm.exe -startup file: C:\PROGRA~1\COMMON~1\INSTAL~1\UPDATE~1\isuspm.exe size: 221184 MD5: a379b75a6ffe4dfd3184f35f0141ce91 Located: HK_CU:Run, Sidebar command: C:\Program Files\Windows Sidebar\sidebar.exe /autoRun file: Located: HK_CU:Run, swg command: C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe file: C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe size: 68856 MD5: e616a6a6e91b0a86f2f6217cde835ffe Located: HK_CU:Run, WMPNSCFG command: C:\Program Files\Windows Media Player\WMPNSCFG.exe file: C:\Program Files\Windows Media Player\WMPNSCFG.exe size: 201728 MD5: 20ef9002cff89c4c1077e4415ec7297b Located: Démarrage (tous utilisateurs), Adobe Reader Synchronizer.lnk command: C:\Program Files\Adobe\Reader 8.0\Reader\AdobeCollabSync.exe file: C:\Program Files\Adobe\Reader 8.0\Reader\AdobeCollabSync.exe size: 734872 MD5: 169c293ce9460a05646d17dc6aa2fb2c Located: Démarrage (tous utilisateurs), Lancement rapide d'Adobe Reader.lnk command: C:\Program Files\Adobe\Reader 8.0\Reader\reader_sl.exe file: C:\Program Files\Adobe\Reader 8.0\Reader\reader_sl.exe size: 40048 MD5: 54c88bfbd055621e2306534f445c0c8d Located: Démarrage (tous utilisateurs), Outil de mise à jour Google.lnk command: C:\Program Files\Google\Google Updater\GoogleUpdater.exe file: C:\Program Files\Google\Google Updater\GoogleUpdater.exe size: 125176 MD5: 6dab692a14f269de850aa9f196cf2c4a --- Browser helper object list --- {02478D38-C3F9-4EFB-9B51-7695ECA05670} (Yahoo! Toolbar Helper) BHO name: CLSID name: Yahoo! Toolbar Helper description: Yahoo Companion! classification: Legitimate known filename: Ycomp*_*_*_*.dll info link: http://companion.yahoo.com/ info source: TonyKlein Path: C:\Program Files\Yahoo!\Companion\Installs\cpn\ Long name: yt.dll Short name: Date (created): 29/05/2007 23:10:38 Date (last access): 29/05/2007 23:10:38 Date (last write): 29/11/2006 17:35:00 Filesize: 436288 Attributes: archive MD5: 3374C2A0344BE49368DC342329404B49 CRC32: D21F22AC Version: 2006.11.29.1 {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} (Aide pour le lien d'Adobe PDF Reader) BHO name: CLSID name: Aide pour le lien d'Adobe PDF Reader description: Adobe Acrobat reader classification: Legitimate known filename: AcroIEhelper.ocx<br>AcroIEhelper.dll info link: http://www.adobe.com/products/acrobat/readstep2.html info source: TonyKlein Path: C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\ Long name: AcroIEHelper.dll Short name: ACROIE~1.DLL Date (created): 22/10/2006 23:08:42 Date (last access): 05/06/2007 14:36:30 Date (last write): 22/10/2006 23:08:42 Filesize: 62080 Attributes: archive MD5: C11F6A1F61481E24BE3FDC06EA6F7D2A CRC32: E388508F Version: 8.0.0.456 {64F56FC1-1272-44CD-BA6E-39723696E350} (EoBho Class) BHO name: CLSID name: EoBho Class Path: C:\Program Files\eoRezo\EoAdv\ Long name: EoRezoBHO.dll {7E853D72-626A-48EC-A868-BA8D5E23E045} () BHO name: CLSID name: {9030D464-4C02-4ABF-8ECC-5164760863C6} (Windows Live Sign-in Helper) BHO name: CLSID name: Windows Live Sign-in Helper Path: C:\Program Files\Common Files\Microsoft Shared\Windows Live\ Long name: WindowsLiveLogin.dll Short name: WINDOW~1.DLL Date (created): 31/08/2006 20:33:06 Date (last access): 03/05/2007 19:29:30 Date (last write): 31/08/2006 20:33:06 Filesize: 322368 Attributes: archive MD5: E43F7CFDEE2B00A22C96C168147B20D3 CRC32: 2AEACC43 Version: 4.100.313.1 {AA58ED58-01DD-4d91-8333-CF10577473F7} (Google Toolbar Helper) BHO name: CLSID name: Google Toolbar Helper description: Google toolbar classification: Open for discussion known filename: googletoolbar.dll<br>googletoolbar*.dll<br>(* = number)<br>googletoolbar_en_*.**-big.dll<br>Googletoolbar_en_*.*.**-deleon.dll info link: http://toolbar.google.com/ info source: TonyKlein Path: c:\program files\google\ Long name: GoogleToolbar1.dll Short name: GOOGLE~1.DLL Date (created): 04/06/2007 18:01:24 Date (last access): 04/06/2007 18:01:24 Date (last write): 04/06/2007 18:01:24 Filesize: 2436160 Attributes: readonly archive MD5: 6D44E0C3B43D27484FBB355E470C4188 CRC32: 2DE875CD Version: 4.0.1601.4978 {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} (Google Toolbar Notifier BHO) BHO name: CLSID name: Google Toolbar Notifier BHO Path: C:\Program Files\Google\GoogleToolbarNotifier\2.0.301.5672\ Long name: swg.dll Short name: Date (created): 04/06/2007 17:56:50 Date (last access): 04/06/2007 17:56:50 Date (last write): 04/06/2007 17:56:50 Filesize: 324536 Attributes: archive MD5: 556604B2B55CC09F353C422D2AC6AD4C CRC32: F3CEAA98 Version: 2.0.301.5672 --- ActiveX list --- {0EB0E74A-2A76-4AB3-A7FB-9BD8C29F7F75} (CKAVWebScan Object) DPF name: CLSID name: CKAVWebScan Object Installer: C:\Windows\Downloaded Program Files\kavwebscan.inf Codebase: http://webscanner.kaspersky.fr/kavwebscan_unicode.cab description: classification: Legitimate known filename: info link: info source: Safer Networking Ltd. Path: C:\Windows\system32\Kaspersky Lab\Kaspersky Online Scanner\ Long name: kavwebscan.dll Short name: KAVWEB~1.DLL Date (created): 20/03/2006 13:17:20 Date (last access): 20/03/2006 13:17:20 Date (last write): 20/03/2006 13:17:20 Filesize: 798720 Attributes: archive MD5: F74B09086C2097BC535C5DCCCD3402AC CRC32: 01AA9D3D Version: 5.0.83.0 {166B1BCA-3F9C-11CF-8075-444553540000} (Shockwave ActiveX Control) DPF name: CLSID name: Shockwave ActiveX Control Installer: C:\Windows\Downloaded Program Files\setup.inf Codebase: http://download.macromedia.com/pub/shockwa...director/sw.cab description: Macromedia ShockWave Flash Player 7 classification: Legitimate known filename: SWDIR.DLL info link: info source: Patrick M. Kolla Path: C:\Windows\system32\macromed\Director\ Long name: swdir.dll Short name: Date (created): 09/05/2007 21:19:20 Date (last access): 09/05/2007 21:20:22 Date (last write): 02/05/2007 12:32:04 Filesize: 182512 Attributes: archive MD5: 95F03ABE4B96C50CF4DA8245819138E4 CRC32: 12E5BB80 Version: 10.2.0.22 {8AD9C840-044E-11D1-B3E9-00805F499D93} (Java Runtime Environment 1.5.0) DPF name: Java Runtime Environment 1.5.0 CLSID name: Java Plug-in 1.5.0 Installer: C:\Windows\Downloaded Program Files\jinstall-1_5_0.inf Codebase: http://javadl-esd.sun.com/update/1.5.0/jin...indows-i586.cab description: Sun Java classification: Legitimate known filename: %PROGRAM FILES%\JabaSoft\JRE\*\Bin\npjava131.dll info link: info source: Patrick M. Kolla Path: C:\Program Files\Java\jre1.5.0\bin\ Long name: NPJPI150.dll Short name: Date (created): 03/05/2007 20:56:06 Date (last access): 03/05/2007 20:56:06 Date (last write): 03/05/2007 20:56:06 Filesize: 69740 Attributes: archive MD5: D25BB4762A876A3DBF6F2BAA36A179FA CRC32: 9367234B Version: 1.5.0.0 {CAFEEFAC-0015-0000-0000-ABCDEFFEDCBA} (Java Runtime Environment 1.5.0) DPF name: Java Runtime Environment 1.5.0 CLSID name: Java Plug-in 1.5.0 Installer: Codebase: http://java.sun.com/update/1.5.0/jinstall-...indows-i586.cab description: classification: Legitimate known filename: NPJPI150.dll info link: info source: Safer Networking Ltd. Path: C:\Program Files\Java\jre1.5.0\bin\ Long name: NPJPI150.dll Short name: Date (created): 03/05/2007 20:56:06 Date (last access): 03/05/2007 20:56:06 Date (last write): 03/05/2007 20:56:06 Filesize: 69740 Attributes: archive MD5: D25BB4762A876A3DBF6F2BAA36A179FA CRC32: 9367234B Version: 1.5.0.0 {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) DPF name: CLSID name: Shockwave Flash Object Installer: C:\Windows\Downloaded Program Files\swflash.inf Codebase: http://fpdownload2.macromedia.com/get/shoc...ash/swflash.cab description: Macromedia Shockwave Flash Player classification: Legitimate known filename: info link: info source: Patrick M. Kolla Path: C:\Windows\system32\Macromed\Flash\ Long name: Flash9c.ocx Short name: Date (created): 26/03/2007 18:34:38 Date (last access): 26/03/2007 18:34:38 Date (last write): 26/03/2007 18:34:38 Filesize: 2267368 Attributes: readonly archive MD5: 82FCE4AC7EC2D077A8DD3C14EDEAD219 CRC32: 7167E898 Version: 9.0.45.0 --- Process list --- PID: 388 ( 4) \SystemRoot\System32\smss.exe PID: 456 ( 444) C:\Windows\system32\csrss.exe size: 7680 MD5: 117B7C8A8B026A5DCE5E3180ED05E823 PID: 508 ( 444) C:\Windows\system32\wininit.exe size: 95744 MD5: D4385B03E8CCCEE6F0EE249F827C1F3E PID: 520 ( 500) C:\Windows\system32\csrss.exe size: 7680 MD5: 117B7C8A8B026A5DCE5E3180ED05E823 PID: 556 ( 508) C:\Windows\system32\services.exe size: 279552 MD5: 329CF3C97CE4C19375C8ABCABAE258B0 PID: 568 ( 508) C:\Windows\system32\lsass.exe size: 7680 MD5: 6A0E382E74280E4CC0DF17FE2661D003 PID: 580 ( 508) C:\Windows\system32\lsm.exe size: 210944 MD5: 77F52395637906269B91264FFE576B51 PID: 652 ( 500) C:\Windows\system32\winlogon.exe size: 308224 MD5: 9F75392B9128A91ABAFB044EA350BAAD PID: 772 ( 556) C:\Windows\system32\svchost.exe size: 22016 MD5: 10DA15933D582D2FEDCF705EFE394B09 PID: 832 ( 556) C:\Windows\system32\svchost.exe size: 22016 MD5: 10DA15933D582D2FEDCF705EFE394B09 PID: 864 ( 556) C:\Windows\System32\svchost.exe size: 22016 MD5: 10DA15933D582D2FEDCF705EFE394B09 PID: 960 ( 556) C:\Windows\System32\svchost.exe size: 22016 MD5: 10DA15933D582D2FEDCF705EFE394B09 PID: 1000 ( 556) C:\Windows\System32\svchost.exe size: 22016 MD5: 10DA15933D582D2FEDCF705EFE394B09 PID: 1056 ( 556) C:\Windows\system32\svchost.exe size: 22016 MD5: 10DA15933D582D2FEDCF705EFE394B09 PID: 1168 ( 556) C:\Windows\system32\SLsvc.exe size: 2592256 MD5: 7610645679BB5994210D21A347E0C479 PID: 1236 ( 556) C:\Windows\system32\svchost.exe size: 22016 MD5: 10DA15933D582D2FEDCF705EFE394B09 PID: 1420 ( 556) C:\Windows\system32\svchost.exe size: 22016 MD5: 10DA15933D582D2FEDCF705EFE394B09 PID: 1532 ( 556) C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe size: 16512 MD5: 0BAB87DB7DAC336B52ADA529CF472B74 PID: 1568 ( 556) C:\Program Files\Alwil Software\Avast4\ashServ.exe size: 132736 MD5: 4C2D6F51F2A1943EF24E8C3E55267F04 PID: 1756 (1000) C:\Windows\system32\Dwm.exe size: 83456 MD5: E87B968F3D49117445893EB0503FE34F PID: 1828 (1728) C:\Windows\Explorer.EXE size: 2923520 MD5: FD8C53FB002217F6F888BCF6F5D7084D PID: 1900 ( 556) C:\Windows\System32\spoolsv.exe size: 124928 MD5: DA612EF2556776DF2630B68BF2D48935 PID: 1936 ( 556) C:\Windows\system32\svchost.exe size: 22016 MD5: 10DA15933D582D2FEDCF705EFE394B09 PID: 1948 (1056) C:\Windows\system32\taskeng.exe size: 166400 MD5: 1226E9FAE5B8508801EC974E3C9D9C14 PID: 976 (1828) C:\Program Files\a-squared Anti-Malware\a2guard.exe size: 1164896 MD5: 996B405BF4A1C893836E13F4EEC851D9 PID: 1064 (1828) C:\Program Files\Windows Sidebar\sidebar.exe size: 1196032 MD5: 43632977504B323F8A41BF7A9965C453 PID: 1376 (1828) C:\WINDOWS\ehome\ehtray.exe size: 125440 MD5: 2E0953919779A44BF9DFB7B07C58535A PID: 1712 (1828) C:\Program Files\Windows Media Player\wmpnscfg.exe size: 201728 MD5: 20EF9002CFF89C4C1077E4415EC7297B PID: 624 (1828) C:\Program Files\Google\Google Updater\GoogleUpdater.exe size: 125176 MD5: 6DAB692A14F269DE850AA9F196CF2C4A PID: 1084 ( 772) C:\Windows\ehome\ehmsas.exe size: 37376 MD5: 693E4C15CEE5D6487D7913A2701B5E40 PID: 2332 ( 556) C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe size: 138680 MD5: D213C2B1CE0FAEAB59EC0C55B4493F94 PID: 2368 ( 556) c:\Program Files\Common Files\LightScribe\LSSrvc.exe size: 61440 MD5: 6E5DAC168D1FF9843E84A59D51D31107 PID: 2484 ( 556) C:\Windows\system32\svchost.exe size: 22016 MD5: 10DA15933D582D2FEDCF705EFE394B09 PID: 2512 ( 556) C:\Windows\system32\svchost.exe size: 22016 MD5: 10DA15933D582D2FEDCF705EFE394B09 PID: 2656 ( 556) C:\Windows\System32\svchost.exe size: 22016 MD5: 10DA15933D582D2FEDCF705EFE394B09 PID: 2680 ( 556) C:\Windows\system32\SearchIndexer.exe size: 287744 MD5: 5DE40982E3AE45DC00586A93637B351B PID: 2828 (1000) C:\Windows\system32\WUDFHost.exe size: 143360 MD5: 8D5DE07842A2B50D8B20EA1CD44AC97F PID: 2908 ( 556) C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe size: 243328 MD5: 0005DB55986F3B014FBA24C2356476B7 PID: 2952 ( 556) C:\Program Files\Alwil Software\Avast4\ashWebSv.exe size: 345728 MD5: D1C26F6B1AA7BA597F435CB136E998D4 PID: 3008 ( 556) C:\Program Files\Windows Media Player\wmpnetwk.exe size: 895488 MD5: ACB2E63D50157E3EA7140F29D9E76A48 PID: 3280 (1056) C:\Windows\system32\taskeng.exe size: 166400 MD5: 1226E9FAE5B8508801EC974E3C9D9C14 PID: 1364 (1828) C:\Program Files\Alwil Software\Avast4\ashDisp.exe size: 75392 MD5: 41B88784128C1EB3A24A928CE58B2455 PID: 3436 ( 556) C:\Program Files\MSN Messenger\usnsvc.exe size: 97136 MD5: C5B70A6AA947667CE0E5FC84A05EC8B6 PID: 1840 (1828) C:\Program Files\Windows Defender\MSASCui.exe size: 1006264 MD5: 9AD9E2FB2811123DA13DE84CC154AB77 PID: 1600 (1828) C:\Users\VISTA\Desktop\test.exe.exe size: 218112 MD5: EE86268E59E4B38961E7C40D16BE5BB4 PID: 2920 (1116) C:\Windows\system32\conime.exe size: 68608 MD5: 05CB3DA78A4BBD9B799A5957F9D101CC PID: 2460 (1828) C:\Program Files\MSN Messenger\msnmsgr.exe size: 5674352 MD5: A7EFC7EA7EF6FB022A8A95813EDCBE5D PID: 3816 (1828) C:\Program Files\Spybot - Search & Destroy\SpybotSD.exe size: 4393096 MD5: 09CA174A605B480318731E691DC98539 PID: 0 ( 0) [system Process] PID: 4 ( 0) System PID: 1140 ( 960) audiodg.exe --- Browser start & search pages list --- Spybot - Search & Destroy browser pages report, 07/06/2007 20:10:56 HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main\Local Page C:\Windows\system32\blank.htm HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main\Search Page http://go.microsoft.com/fwlink/?LinkId=54896 HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main\Start Page http://www.télérama.fr/ HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Main\Local Page %SystemRoot%\system32\blank.htm HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Main\Search Page http://go.microsoft.com/fwlink/?LinkId=54896 HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Main\Start Page http://ie.redirect.hp.com/svs/rdr?TYPE=3&a...&pf=desktop HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Main\Default_Page_URL http://ie.redirect.hp.com/svs/rdr?TYPE=3&a...&pf=desktop HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Main\Default_Search_URL http://go.microsoft.com/fwlink/?LinkId=54896 --- Winsock Layered Service Provider list --- Protocol 0: MSAFD Tcpip [TCP/IP] GUID: {E70F1AA0-AB8B-11CF-8CA3-00805F48A192} Filename: %SystemRoot%\system32\mswsock.dll Description: Microsoft Windows NT/2k/XP IP protocol DB filename: %SystemRoot%\system32\mswsock.dll DB protocol: MSAFD Tcpip [*] Protocol 1: MSAFD Tcpip [uDP/IP] GUID: {E70F1AA0-AB8B-11CF-8CA3-00805F48A192} Filename: %SystemRoot%\system32\mswsock.dll Description: Microsoft Windows NT/2k/XP IP protocol DB filename: %SystemRoot%\system32\mswsock.dll DB protocol: MSAFD Tcpip [*] Protocol 2: MSAFD Tcpip [RAW/IP] GUID: {E70F1AA0-AB8B-11CF-8CA3-00805F48A192} Filename: %SystemRoot%\system32\mswsock.dll Description: Microsoft Windows NT/2k/XP IP protocol DB filename: %SystemRoot%\system32\mswsock.dll DB protocol: MSAFD Tcpip [*] Protocol 3: MSAFD Tcpip [TCP/IPv6] GUID: {F9EAB0C0-26D4-11D0-BBBF-00AA006C34E4} Filename: %SystemRoot%\system32\mswsock.dll Description: Microsoft Windows NT/2k/XP IPv6 protocol DB filename: %SystemRoot%\system32\mswsock.dll DB protocol: MSAFD Tcpip [*] Protocol 4: MSAFD Tcpip [uDP/IPv6] GUID: {F9EAB0C0-26D4-11D0-BBBF-00AA006C34E4} Filename: %SystemRoot%\system32\mswsock.dll Description: Microsoft Windows NT/2k/XP IPv6 protocol DB filename: %SystemRoot%\system32\mswsock.dll DB protocol: MSAFD Tcpip [*] Protocol 5: MSAFD Tcpip [RAW/IPv6] GUID: {F9EAB0C0-26D4-11D0-BBBF-00AA006C34E4} Filename: %SystemRoot%\system32\mswsock.dll Description: Microsoft Windows NT/2k/XP IPv6 protocol DB filename: %SystemRoot%\system32\mswsock.dll DB protocol: MSAFD Tcpip [*] Protocol 6: Fournisseur de services RSVP TCPv6 GUID: {9D60A9E0-337A-11D0-BD88-0000C082E69A} Filename: %SystemRoot%\system32\mswsock.dll Description: Microsoft Windows NT/2k/XP RVSP DB filename: %SystemRoot%\system32\rsvpsp.dll DB protocol: RSVP * Service Provider Protocol 7: Fournisseur de services RSVP TCP GUID: {9D60A9E0-337A-11D0-BD88-0000C082E69A} Filename: %SystemRoot%\system32\mswsock.dll Description: Microsoft Windows NT/2k/XP RVSP DB filename: %SystemRoot%\system32\rsvpsp.dll DB protocol: RSVP * Service Provider Protocol 8: Fournisseur de services RSVP UDPv6 GUID: {9D60A9E0-337A-11D0-BD88-0000C082E69A} Filename: %SystemRoot%\system32\mswsock.dll Description: Microsoft Windows NT/2k/XP RVSP DB filename: %SystemRoot%\system32\rsvpsp.dll DB protocol: RSVP * Service Provider Protocol 9: Fournisseur de services RSVP UDP GUID: {9D60A9E0-337A-11D0-BD88-0000C082E69A} Filename: %SystemRoot%\system32\mswsock.dll Description: Microsoft Windows NT/2k/XP RVSP DB filename: %SystemRoot%\system32\rsvpsp.dll DB protocol: RSVP * Service Provider Protocol 10: MSAFD NetBIOS [\Device\NetBT_Tcpip_{3A0F03F9-F336-4751-9B33-9A1F55F92F25}] SEQPACKET 4 GUID: {8D5F1830-C273-11CF-95C8-00805F48A192} Filename: %SystemRoot%\system32\mswsock.dll Description: Microsoft Windows NT/2k/XP NetBios protocol DB filename: %SystemRoot%\system32\mswsock.dll DB protocol: MSAFD NetBIOS * Protocol 11: MSAFD NetBIOS [\Device\NetBT_Tcpip_{3A0F03F9-F336-4751-9B33-9A1F55F92F25}] DATAGRAM 4 GUID: {8D5F1830-C273-11CF-95C8-00805F48A192} Filename: %SystemRoot%\system32\mswsock.dll Description: Microsoft Windows NT/2k/XP NetBios protocol DB filename: %SystemRoot%\system32\mswsock.dll DB protocol: MSAFD NetBIOS * Protocol 12: MSAFD NetBIOS [\Device\NetBT_Tcpip6_{3A0F03F9-F336-4751-9B33-9A1F55F92F25}] SEQPACKET 5 GUID: {8D5F1830-C273-11CF-95C8-00805F48A192} Filename: %SystemRoot%\system32\mswsock.dll Description: Microsoft Windows NT/2k/XP NetBios protocol DB filename: %SystemRoot%\system32\mswsock.dll DB protocol: MSAFD NetBIOS * Protocol 13: MSAFD NetBIOS [\Device\NetBT_Tcpip6_{3A0F03F9-F336-4751-9B33-9A1F55F92F25}] DATAGRAM 5 GUID: {8D5F1830-C273-11CF-95C8-00805F48A192} Filename: %SystemRoot%\system32\mswsock.dll Description: Microsoft Windows NT/2k/XP NetBios protocol DB filename: %SystemRoot%\system32\mswsock.dll DB protocol: MSAFD NetBIOS * Namespace Provider 0: Espace de noms NLAv1 (Network Location Awareness Legacy) GUID: {6642243A-3BA8-4AA6-BAA5-2E0BD71FDD83} Filename: Description: Microsoft Windows NT/2k/XP name space provider DB filename: %SystemRoot%\system32\mswsock.dll DB protocol: NLA-Namespace Namespace Provider 1: TCP/IP GUID: {22059D40-7E9E-11CF-AE5A-00AA00A7112B} Filename: Description: Microsoft Windows NT/2k/XP TCP/IP name space provider DB filename: %SystemRoot%\system32\mswsock.dll DB protocol: TCP/IP Namespace Provider 2: NTDS GUID: {3B2637EE-E580-11CF-A555-00C04FD8D4AC} Filename: %SystemRoot%\System32\winrnr.dll Description: Microsoft Windows NT/2k/XP name space provider DB filename: %SystemRoot%\system32\winrnr.dll DB protocol: NTDS Namespace Provider 3: Fournisseur Shim d'affectation de noms de messagerie GUID: {964ACBA2-B2BC-40EB-8C6A-A6DB40161CAE} Filename: Namespace Provider 4: Fournisseur d'espace de noms du nuage PNRP GUID: {03FE89CE-766D-4976-B9C1-BB9BC42C7B4D} Filename: Namespace Provider 5: Fournisseur d'espace de noms du nom PNRP GUID: {03FE89CD-766D-4976-B9C1-BB9BC42C7B4D} Filename: --- Uninstall list --- a-squared Anti-Malware 2.1 2.1 (a-squared Anti-Malware_is1) install date: 20070601 install location: C:\Program Files\a-squared Anti-Malware\ uninstall cmd: "C:\Program Files\a-squared Anti-Malware\unins000.exe" publisher: Emsi Software GmbH comments: a-squared help link: http://forum.emsisoft.com Ad-Aware SE Personal 1.06 (Ad-Aware SE Personal) uninstall cmd: C:\PROGRA~1\Lavasoft\AD-AWA~1\UNWISE.EXE C:\PROGRA~1\Lavasoft\AD-AWA~1\INSTALL.LOG publisher: Lavasoft help link: http://www.lavasoft.com (AddressBook) Adobe Flash Player Plugin 9.0.45.0 (Adobe Flash Player Plugin) uninstall cmd: C:\Windows\system32\Macromed\Flash\uninstall_plugin.exe publisher: Adobe Systems Incorporated Adobe Shockwave Player 10.2.0.22 (Adobe Shockwave Player) uninstall cmd: C:\WINDOWS\System32\Macromed\SHOCKW~1\UNWISE.EXE C:\WINDOWS\System32\Macromed\SHOCKW~1\Install.log publisher: Adobe Systems, Inc. help link: http://www.adobe.com/fr/support/shockwave avast! Antivirus 4.7 (avast!) version (major): 4 version (minor): 7 install location: C:\PROGRA~1\ALWILS~1\Avast4 install source: C:\PROGRA~1\ALWILS~1\Avast4\setup uninstall cmd: rundll32 C:\PROGRA~1\ALWILS~1\Avast4\Setup\setiface.dll,RunSetup publisher: Alwil Software help link: http://www.avast.com Browser Mouse (Browser Mouse) uninstall cmd: C:\Program Files\Browser Mouse\uninst00.exe CCleaner (remove only) (CCleaner) uninstall cmd: "C:\Program Files\CCleaner\uninst.exe" (Connection Manager) (DirectDrawEx) (DXM_Runtime) eMule (eMule) uninstall cmd: "C:\Program Files\eMule\Uninstall.exe" (Fontcore) Outil de mise à jour Google 2.1.871.19925 (Google Updater) uninstall cmd: "C:\Program Files\Google\Google Updater\GoogleUpdater.exe" -uninstall publisher: Google Inc. help link: http://pack.google.com:80/pack-support?hl=fr&gl=fr HijackThis 1.99.1 1.99.1 (HijackThis) uninstall cmd: C:\Users\VISTA\Desktop\HijackThis.exe /uninstall publisher: Soeperman Enterprises Ltd. (IE40) (IE4Data) (IE5BAKEX) (IEData) Solution de clavier multimédia amélioré (KBD) uninstall cmd: C:\HP\KBD\Install.exe /u publisher: Hewlett-Packard (MobileOptionPack) Mozilla Firefox (2.0.0.4) 2.0.0.4 (fr) (Mozilla Firefox (2.0.0.4)) install location: C:\Program Files\Mozilla Firefox uninstall cmd: C:\Program Files\Mozilla Firefox\uninstall\helper.exe publisher: Mozilla comments: Mozilla Firefox (MPlayer2) NVIDIA Drivers (NVIDIA Drivers) uninstall cmd: C:\Windows\system32\NVUNINST.EXE UninstallGUI HP On-Screen Caps/Num/Scroll Lock Indicator (OsdMaestro) uninstall cmd: C:\Windows\system32\OsdRemove.exe publisher: Hewlett-Packard Outils de diagnostic du matériel 5.00.4262.12 (PC-Doctor 5 for Windows) install location: C:\Program Files\PC-Doctor 5 for Windows\ uninstall cmd: C:\Program Files\PC-Doctor 5 for Windows\uninst.exe publisher: PC-Doctor, Inc. comments: Personal Computer Diagnostics Software contact: Customer Support Department Quick Zip 4.60.018 (Quick Zip_is1) install location: C:\Program Files\QuickZip4\ uninstall cmd: "C:\Program Files\QuickZip4\unins000.exe" publisher: Joseph Leung help link: http://www.quickzip.org (SchedulingAgent) (Shockwave) Adobe Flash Player 9 ActiveX 9 (ShockwaveFlash) uninstall cmd: C:\Windows\system32\Macromed\Flash\FlashUtil9c.exe -uninstallUnlock publisher: Adobe Systems help link: http://www.adobe.com/go/flashplayer_support/ Spybot - Search & Destroy 1.4 1.4 (Spybot - Search & Destroy_is1) install location: C:\Program Files\Spybot - Search & Destroy\ uninstall cmd: "C:\Program Files\Spybot - Search & Destroy\unins000.exe" publisher: Safer Networking Limited VideoLAN VLC media player 0.8.0 0.8.0 (VLC media player) uninstall cmd: C:\Program Files\VideoLAN\VLC\uninstall.exe publisher: VideoLAN Team WebTarot 1.20 (WebTarot_is1) uninstall cmd: "C:\Program Files\Webtarot\unins000.exe" publisher: AtoutWeb help link: http://www.webtarot.fr Yahoo! Toolbar avec bloqueur de fenêtres pop-up (Yahoo! Companion) uninstall cmd: C:\PROGRA~1\Yahoo!\Common\unyt.exe Yahoo! Toolbar (Yahoo! Toolbar) Roxio Creator Tools 3.3.0 ({0394CDC8-FABD-4ed8-B104-03393876DFDF}) version: 50528256 version (major): 3 version (minor): 3 estimated size: 353 install date: 20070314 install source: c:\hp\tmp\src\RCP_TOOLS_33\ uninstall cmd: MsiExec.exe /X{0394CDC8-FABD-4ed8-B104-03393876DFDF} publisher: Roxio help link: http://support.sonic.com/ Roxio Creator Data 3.3.0 ({0D397393-9B50-4c52-84D5-77E344289F87}) version: 50528256 version (major): 3 version (minor): 3 estimated size: 860 install date: 20070314 install source: c:\hp\tmp\src\RCP_DATA_33\ uninstall cmd: MsiExec.exe /X{0D397393-9B50-4c52-84D5-77E344289F87} publisher: Roxio help link: http://support.sonic.com/ Roxio Creator EasyArchive 3.3.0 ({11F93B4B-48F0-4A4E-AE77-DFA96A99664B}) version: 50528256 version (major): 3 version (minor): 3 estimated size: 1706 install date: 20070314 install source: c:\hp\tmp\src\RCP_EASYARCHIVE_33\ uninstall cmd: MsiExec.exe /X{11F93B4B-48F0-4A4E-AE77-DFA96A99664B} publisher: Roxio Google Toolbar for Internet Explorer ({2318C2B1-4965-11d4-9B18-009027A5CD4F}) uninstall cmd: regsvr32 /u /s "c:\program files\google\googletoolbar1.dll" 3.0.20070420 ({2CCBABCB-6427-4A55-B091-49864623C43F}) version: 20070420 version (major): 3 J2SE Runtime Environment 5.0 1.5.0 ({3248F0A8-6813-11D6-A77B-00B0D0150000}) version: 17104896 version (major): 1 version (minor): 5 estimated size: 93861 install date: 20070503 install source: http://javadl.sun.com/webapps/download/Get...dows-i586-jre// uninstall cmd: MsiExec.exe /I{3248F0A8-6813-11D6-A77B-00B0D0150000} publisher: Sun Microsystems, Inc. contact: http://java.com help link: http://java.com readme: C:\Program Files\Java\jre1.5.0\README.txt MSXML 4.0 SP2 (KB927978) 4.20.9841.0 ({37477865-A3F1-4772-AD43-AAFC6BCFF99F}) version: 68429425 version (major): 4 version (minor): 20 estimated size: 1269 install date: 20070429 install source: c:\2aa563f46c5826acccabff\ uninstall cmd: MsiExec.exe /I{37477865-A3F1-4772-AD43-AAFC6BCFF99F} publisher: Microsoft Corporation help link: http://support.microsoft.com/kb/927978 HP Easy Setup - Frontend 5.00.0000 ({40F7AED3-0C7D-4582-99F6-484A515C73F2}) version: 83886080 install date: 20070314 install location: C:\Program Files\Hewlett-Packard\HP Easy Setup - Frontend install source: c:\hp\tmp\src\ uninstall cmd: RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\PROFES~1\RunTime\11\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{40F7AED3-0C7D-4582-99F6-484A515C73F2}\setup.exe" -l0x9 -removeonly publisher: Hewlett-Packard Windows Live Sign-in Assistant 4.100.313.1 ({49672EC2-171B-47B4-8CE7-50D7806360D7}) version: 73662777 version (major): 4 version (minor): 100 estimated size: 1220 install date: 20070503 install source: C:\Users\VISTA\AppData\Local\Temp\IXP000.TMP\ uninstall cmd: MsiExec.exe /I{49672EC2-171B-47B4-8CE7-50D7806360D7} publisher: Microsoft Corporation HP Picasso Media Center Add-In 1.0.0 ({55979C41-7D6A-49CC-B591-64AC1BBE2C8B}) version: 16777216 version (major): 1 estimated size: 12 install date: 20070314 install source: c:\hp\tmp\rc\ uninstall cmd: MsiExec.exe /I{55979C41-7D6A-49CC-B591-64AC1BBE2C8B} publisher: HP contact: HP Windows Live Messenger 8.1.0178.00 ({571700F0-DB9D-4B3A-B03D-35A14BB5939F}) version: 134283442 version (major): 8 version (minor): 1 estimated size: 30268 install date: 20070507 install source: C:\Users\VISTA\AppData\Local\Temp\IXP000.TMP\ uninstall cmd: MsiExec.exe /I{571700F0-DB9D-4B3A-B03D-35A14BB5939F} publisher: Microsoft Corporation Roxio Creator Copy 3.3.0 ({619CDD8A-14B6-43a1-AB6C-0F4EE48CE048}) version: 50528256 version (major): 3 version (minor): 3 estimated size: 656 install date: 20070314 install source: c:\hp\tmp\src\RCP_COPY_33\ uninstall cmd: MsiExec.exe /X{619CDD8A-14B6-43a1-AB6C-0F4EE48CE048} publisher: Roxio help link: http://support.sonic.com/ Roxio Express Labeler 3 2.1.0 ({6675CA7F-E51B-4F6A-99D4-F8F0124C6EAA}) version: 33619968 version (major): 2 version (minor): 1 estimated size: 16732 install date: 20070314 install source: c:\hp\tmp\src\EXPRESSLABELER_31\ uninstall cmd: MsiExec.exe /X{6675CA7F-E51B-4F6A-99D4-F8F0124C6EAA} publisher: Roxio Windows Media Player Firefox Plugin 1.0.0.8 ({69FDFBB6-351D-4B8C-89D8-867DC9D0A2A4}) version: 16777216 version (major): 1 estimated size: 296 install date: 20070604 install source: C:\Users\VISTA\AppData\Local\Temp\IXP000.TMP\ uninstall cmd: MsiExec.exe /I{69FDFBB6-351D-4B8C-89D8-867DC9D0A2A4} publisher: Microsoft Corp Microsoft Works 08.05.0822 ({6B1CB38D-E2E4-4a30-933D-EFDEBA76AD9C}) version: 134546230 version (major): 8 version (minor): 5 estimated size: 276580 install date: 20070314 install source: c:\hp\tmp\src\MSWORKS\ uninstall cmd: MsiExec.exe /I{6B1CB38D-E2E4-4a30-933D-EFDEBA76AD9C} publisher: Microsoft Corporation comments: Microsoft Works 8.0 installation. help link: http://go.microsoft.com/fwlink/?LinkId=6831 help telephone: Python 2.4.3 2.4.3150 ({75E71ADD-042C-4F30-BFAC-A9EC42351313}) version: 33819726 version (major): 2 version (minor): 4 estimated size: 30049 install date: 20070314 install source: C:\hp\tmp\ uninstall cmd: MsiExec.exe /I{75E71ADD-042C-4F30-BFAC-A9EC42351313} publisher: Martin v. Löwis Orange 6.0 ({80CA15EA-C0A5-7CAF-B9E9-B8B2A87EFE11}) version (major): 6 estimated size: 300 install date: 20070503 install location: C:\Program Files\Orange\GLOBAL\Mnu install source: C:\Program Files\Services en ligne\OrangeFR uninstall cmd: C:\Program Files\Orange\GLOBAL\Mnu\uninst.exe /G:{80CA15EA-C0A5-7CAF-B9E9-B8B2A87EFE11} publisher: France Telecom SCR help link: http://assistance.wanadoo.fr/ help telephone: 0892 699 113 (0,34€TTC/min. depuis un poste fixe) Roxio Creator Audio 3.3.0 ({83FFCFC7-88C6-41c6-8752-958A45325C82}) version: 50528256 version (major): 3 version (minor): 3 estimated size: 1134 install date: 20070314 install source: c:\hp\tmp\src\RCP_AUDIO_33\ uninstall cmd: MsiExec.exe /X{83FFCFC7-88C6-41c6-8752-958A45325C82} publisher: Roxio help link: http://support.sonic.com/ 3.0.7.009 ({8ADC27DB-E2C8-446C-A576-166C05C2DD24}) version: 50331655 version (major): 3 estimated size: 192 install date: 20070314 install source: c:\hp\drivers\hpsu\ publisher: Hewlett-Packard HP Update 4.000.005.005 ({8C6027FD-53DC-446D-BB75-CACD7028A134}) version: 67108869 version (major): 4 estimated size: 3646 install date: 20070314 install source: c:\hp\drivers\hpsu\ uninstall cmd: MsiExec.exe /X{8C6027FD-53DC-446D-BB75-CACD7028A134} publisher: Hewlett-Packard contact: http://www.hp.com/support Orange Les offres Internet 6.0 ({90CA15EA-C0A5-7CAF-B9E9-B8B2A87EFE11}) version (major): 6 estimated size: 300 install date: 20070503 install location: C:\Program Files\Orange\GLOBAL\Sung install source: C:\Program Files\Services en ligne\OrangeFR uninstall cmd: C:\Program Files\Orange\GLOBAL\Sung\uninst.exe /G:{90CA15EA-C0A5-7CAF-B9E9-B8B2A87EFE11} publisher: France Telecom SCR help link: http://assistance.wanadoo.fr/ help telephone: 0892 699 113 (0,34€TTC/min. depuis un poste fixe) HP Customer Experience Enhancements 1.00.0000 ({AB5E289E-76BF-4251-9F3F-9B763F681AE0}) version: 16777216 install date: 20070314 install location: C:\Program Files\Hewlett-Packard\HP Customer Experience Enhancements install source: c:\hp\tmp\src\ uninstall cmd: RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\PROFES~1\RunTime\11\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{AB5E289E-76BF-4251-9F3F-9B763F681AE0}\setup.exe" -l0x9 -removeonly publisher: Hewlett-Packard Adobe Reader 8 - Français 8.0.0 ({AC76BA86-7AD7-1036-7B44-A80000000002}) version: 134217728 version (major): 8 estimated size: 134584 install date: 20070605 install location: C:\Program Files\Adobe\Reader 8.0\Reader\ install source: C:\Users\VISTA\AppData\LocalLow\Netopsystems\temp\Adobe Reader 8.0\ uninstall cmd: MsiExec.exe /I{AC76BA86-7AD7-1036-7B44-A80000000002} publisher: Adobe Systems Incorporated comments: contact: Support clientèle help link: http://www.adobe.fr/support/main.html readme: C:\Program Files\Adobe\Reader 8.0\Reader\Readme.htm OcxSetup 1.0.0 ({C3DC29BC-A8CF-4578-9DFC-37F049C44771}) version: 16777216 version (major): 1 estimated size: 473 install date: 20070314 install source: c:\hp\tmp\Ocx\ uninstall cmd: MsiExec.exe /I{C3DC29BC-A8CF-4578-9DFC-37F049C44771} publisher: Hewlett-Packard Company contact: Hewlett-Packard Company Roxio Creator Basic v9 3.3.0 ({C8B0680B-CDAE-4809-9F91-387B6DE00F7C}) version: 50528256 version (major): 3 version (minor): 3 estimated size: 27022 install date: 20070314 install source: c:\hp\tmp\src\RCP_CORE_33\ uninstall cmd: MsiExec.exe /X{C8B0680B-CDAE-4809-9F91-387B6DE00F7C} publisher: Roxio help link: http://support.sonic.com/ Google Toolbar for Internet Explorer 4.0.0.002 ({DBEA1034-5882-4A88-8033-81C4EF0CFA29}) version: 67108864 version (major): 4 estimated size: 1096 install date: 20070604 install source: C:\Program Files\Google\Installers\ uninstall cmd: MsiExec.exe /I{DBEA1034-5882-4A88-8033-81C4EF0CFA29} publisher: Google Inc. LightScribe 1.4.124.1 1.4.124.1 ({E1180142-3B31-4DCC-9D27-7AC2D37662BF}) version: 17039484 version (major): 1 version (minor): 4 estimated size: 4122 install date: 20070314 install location: c:\Program Files\Common Files\LightScribe\ install source: c:\hp\DRIVERS\LightScribe\ publisher: Nom de votre société comments: Vos remarques contact: Service support clientèle help link: http://www.votresociété.com/aide help telephone: +1-555-555-4505 Realtek High Definition Audio Driver 6.0.1.5322 ({F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) version: 34799616 install date: 20070314 install location: C:\Program Files\Realtek\InstallShield\ install source: c:\hp\DRIVERS\realtek_HD_AUDIO\ uninstall cmd: RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\PROFES~1\RunTime\11\50\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}\Setup.exe" -l0x40c -removeonly publisher: Realtek Semiconductor Corp. HP Easy Setup - Core 1.00.0000 ({F94234DB-FD06-42C3-B88D-6FC4DC9F988C}) version: 16777216 install date: 20070314 install location: C:\Program Files\Hewlett-Packard\HP Easy Setup - Core install source: c:\hp\tmp\src\ uninstall cmd: RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\PROFES~1\RunTime\11\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{F94234DB-FD06-42C3-B88D-6FC4DC9F988C}\setup.exe" -l0x9 publisher: Hewlett-Packard --- System Services --- Service (registry key): .NET CLR Data Start: 0 Type: 0 Error Control: 0 Service (registry key): .NET CLR Networking Start: 0 Type: 0 Error Control: 0 Service (registry key): .NET Data Provider for Oracle Start: 0 Type: 0 Error Control: 0 Service (registry key): .NET Data Provider for SqlServer Start: 0 Type: 0 Error Control: 0 Service (registry key): .NETFramework Start: 0 Type: 0 Error Control: 0 Service (registry key): ACPI Display name: Pilote ACPI Microsoft Image path: system32\drivers\acpi.sys Image size: 255592 Image MD5: 192BDBD1540645C4A2AA69F24CCE197F Start: 0 Type: 1 Error Control: 3 Service (registry key): adp94xx Image path: \SystemRoot\system32\drivers\adp94xx.sys Start: 4 Type: 1 Error Control: 1 Service (registry key): adpahci Image path: \SystemRoot\system32\drivers\adpahci.sys Start: 4 Type: 1 Error Control: 1 Service (registry key): adpu160m Image path: \SystemRoot\system32\drivers\adpu160m.sys Start: 4 Type: 1 Error Control: 1 Service (registry key): adpu320 Image path: \SystemRoot\system32\drivers\adpu320.sys Start: 4 Type: 1 Error Control: 1 Service (registry key): adsi Start: 0 Type: 0 Error Control: 0 Service (registry key): AeLookupSvc Display name: @%SystemRoot%\system32\aelupsvc.dll,-1 Description: @%SystemRoot%\system32\aelupsvc.dll,-2 Object name: localSystem Image path: %systemroot%\system32\svchost.exe -k netsvcs Image size: 22016 Image MD5: 10DA15933D582D2FEDCF705EFE394B09 Start: 2 Type: 32 Error Control: 1 Service (registry key): AFD Display name: Ancilliary Function Driver for Winsock Description: Ancilliary Function Driver for Winsock Image path: \SystemRoot\system32\drivers\afd.sys Start: 1 Type: 1 Error Control: 1 Service (registry key): agp440 Display name: Intel AGP Bus Filter Image path: \SystemRoot\system32\drivers\agp440.sys Start: 3 Type: 1 Error Control: 1 Service (registry key): aic78xx Image path: \SystemRoot\system32\drivers\djsvs.sys Start: 4 Type: 1 Error Control: 1 Service (registry key): ALG Display name: @%SystemRoot%\system32\Alg.exe,-112 Description: @%SystemRoot%\system32\Alg.exe,-113 Object name: NT AUTHORITY\LocalService Image path: %SystemRoot%\System32\alg.exe Image size: 58880 Image MD5: E69FB0E3112C40FDC0EF7D21A52DC951 Start: 3 Type: 16 Error Control: 1 Service (registry key): aliide Image path: \SystemRoot\system32\drivers\aliide.sys Start: 4 Type: 1 Error Control: 3 Service (registry key): amdagp Display name: AMD AGP Bus Filter Driver Image path: \SystemRoot\system32\drivers\amdagp.sys Start: 3 Type: 1 Error Control: 1 Service (registry key): amdide Image path: \SystemRoot\system32\drivers\amdide.sys Start: 4 Type: 1 Error Control: 3 Service (registry key): AmdK7 Display name: AMD K7 Processor Driver Image path: \SystemRoot\system32\drivers\amdk7.sys Start: 4 Type: 1 Error Control: 1 Service (registry key): AmdK8 Display name: Pilote de processeur AMD K8 Image path: system32\DRIVERS\amdk8.sys Image size: 40960 Image MD5: 0CA0071DA4315B00FC1328CA86B425DA Start: 3 Type: 1 Error Control: 1 Service (registry key): Appinfo Display name: @%systemroot%\system32\appinfo.dll,-100 Description: @%systemroot%\system32\appinfo.dll,-101 Object name: LocalSystem Image path: %SystemRoot%\system32\svchost.exe -k netsvcs Image size: 22016 Image MD5: 10DA15933D582D2FEDCF705EFE394B09 Start: 3 Type: 32 Error Control: 1 Depends On services: RpcSs,ProfSvc Service (registry key): arc Image path: \SystemRoot\system32\drivers\arc.sys Start: 4 Type: 1 Error Control: 1 Service (registry key): arcsas Image path: \SystemRoot\system32\drivers\arcsas.sys Start: 4 Type: 1 Error Control: 1 Service (registry key): aswMonFlt Display name: aswMonFlt Description: avast! mini-filter driver (aswMonFlt) Image path: system32\DRIVERS\aswMonFlt.sys Image size: 45912 Image MD5: 1DA22E4FEDD748A85CB1F7F0013047C7 Start: 2 Type: 2 Error Control: 1 Depends On services: FltMgr Service (registry key): aswRdr Display name: aswRdr Start: 1 Type: 1 Error Control: 1 Depends On services: tcpip Service (registry key): aswTdi Display name: avast! Network Shield Support Start: 1 Type: 1 Error Control: 1 Depends On services: tcpip Service (registry key): aswUpdSv Display name: avast! iAVS4 Control Service Description: Fournit la mise à jour automatique pour l'antivirus avast!. Object name: LocalSystem Image path: "C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe" Image size: 16512 Image MD5: 0BAB87DB7DAC336B52ADA529CF472B74 Start: 2 Type: 272 Error Control: 1 Service (registry key): AsyncMac Display name: Pilote de média asynchrone RAS Description: Pilote de média asynchrone RAS Image path: system32\DRIVERS\asyncmac.sys Image size: 17408 Image MD5: E86CF7CE67D5DE898F27EF884DC357D8 Start: 3 Type: 1 Error Control: 1 Service (registry key): atapi Display name: Canal IDE Image path: system32\drivers\atapi.sys Image size: 19048 Image MD5: 4F4FCB8B6EA06784FB6D475B7EC7300F Start: 0 Type: 1 Error Control: 3 Service (registry key): AudioEndpointBuilder Display name: @%SystemRoot%\system32\audiosrv.dll,-204 Description: @%SystemRoot%\System32\audiosrv.dll,-205 Object name: LocalSystem Image path: %SystemRoot%\System32\svchost.exe -k LocalSystemNetworkRestricted Image size: 22016 Image MD5: 10DA15933D582D2FEDCF705EFE394B09 Start: 2 Type: 32 Error Control: 1 Depends On services: PlugPlay Service (registry key): Audiosrv Display name: @%SystemRoot%\system32\audiosrv.dll,-200 Description: @%SystemRoot%\System32\audiosrv.dll,-201 Object name: NT AUTHORITY\LocalService Image path: %SystemRoot%\System32\svchost.exe -k LocalServiceNetworkRestricted Image size: 22016 Image MD5: 10DA15933D582D2FEDCF705EFE394B09 Start: 2 Type: 32 Error Control: 1 Depends On services: AudioEndpointBuilder,RpcSs,MMCSS Service (registry key): avast! Antivirus Display name: avast! Antivirus Description: Gère et implémente les services de l'antivirus avast! pour cet ordinateur. Ceci inclut la protection résidente, la zone de quarantaine et le planificateur. Object name: LocalSystem Image path: "C:\Program Files\Alwil Software\Avast4\ashServ.exe" Image size: 132736 Image MD5: 4C2D6F51F2A1943EF24E8C3E55267F04 Start: 2 Type: 272 Error Control: 1 Depends On services: aswMonFlt,RpcSS Service (registry key): avast! Mail Scanner Display name: avast! Mail Scanner Description: Implémente l'analyse du courrier électronique pour l'antivirus avast!. Object name: LocalSystem Image path: "C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe" /service Image size: 243328 Image MD5: 0005DB55986F3B014FBA24C2356476B7 Start: 3 Type: 272 Error Control: 1 Depends On services: "avast! Antivirus" Service (registry key): avast! Web Scanner Display name: avast! Web Scanner Description: Implémente l'analyse du contenu web (HTTP) pour l'antivirus avast!. Object name: LocalSystem Image path: "C:\Program Files\Alwil Software\Avast4\ashWebSv.exe" /service Image size: 345728 Image MD5: D1C26F6B1AA7BA597F435CB136E998D4 Start: 3 Type: 272 Error Control: 1 Depends On services: "avast! Antivirus" Service (registry key): BattC Start: 0 Type: 0 Error Control: 0 Service (registry key): Beep Display name: Beep Start: 1 Type: 1 Error Control: 1 Service (registry key): BFE Display name: @%SystemRoot%\system32\bfe.dll,-1001 Description: @%SystemRoot%\system32\bfe.dll,-1002 Object name: NT AUTHORITY\LocalService Image path: %systemroot%\system32\svchost.exe -k LocalServiceNoNetwork Image size: 22016 Image MD5: 10DA15933D582D2FEDCF705EFE394B09 Start: 2 Type: 32 Error Control: 1 Depends On services: RpcSs Service (registry key): BITS Display name: @%SystemRoot%\system32\qmgr.dll,-1000 Description: @%SystemRoot%\system32\qmgr.dll,-1001 Object name: LocalSystem Image path: %SystemRoot%\System32\svchost.exe -k netsvcs Image size: 22016 Image MD5: 10DA15933D582D2FEDCF705EFE394B09 Start: 2 Type: 32 Error Control: 1 Depends On services: RpcSs,EventSystem Service (registry key): blbdrive Image path: \SystemRoot\system32\drivers\blbdrive.sys Start: 4 Type: 1 Error Control: 1 Service (registry key): bowser Display name: Bowser Description: Implements the datagram receiver for the computer browser browser service. Image path: system32\DRIVERS\bowser.sys Image size: 69632 Image MD5: 913CD06FBE9105CE6077E90FD4418561 Start: 3 Type: 2 Error Control: 1 Service (registry key): BrFiltLo Display name: Brother USB Mass-Storage Lower Filter Driver Image path: \SystemRoot\system32\drivers\brfiltlo.sys Start: 3 Type: 1 Error Control: 1 Service (registry key): BrFiltUp Display name: Brother USB Mass-Storage Upper Filter Driver Image path: \SystemRoot\system32\drivers\brfiltup.sys Start: 3 Type: 1 Error Control: 1 Service (registry key): Browser Display name: @%systemroot%\system32\browser.dll,-100 Description: @%systemroot%\system32\browser.dll,-101 Object name: LocalSystem Image path: %SystemRoot%\System32\svchost.exe -k netsvcs Image size: 22016 Image MD5: 10DA15933D582D2FEDCF705EFE394B09 Start: 2 Type: 32 Error Control: 1 Depends On services: LanmanWorkstation,LanmanServer Service (registry key): Brserid Display name: Brother MFC Serial Port Interface Driver (WDM) Image path: \SystemRoot\system32\drivers\brserid.sys Start: 4 Type: 1 Error Control: 1 Service (registry key): BrSerWdm Display name: Brother WDM Serial driver Image path: \SystemRoot\system32\drivers\brserwdm.sys Start: 4 Type: 1 Error Control: 1 Service (registry key): BrUsbMdm Display name: Brother MFC USB Fax Only Modem Image path: \SystemRoot\system32\drivers\brusbmdm.sys Start: 4 Type: 1 Error Control: 1 Service (registry key): BrUsbSer Display name: Brother MFC USB Serial WDM Driver Image path: \SystemRoot\system32\drivers\brusbser.sys Start: 3 Type: 1 Error Control: 1 Service (registry key): BTHMODEM Display name: Bluetooth Serial Communications Driver Image path: \SystemRoot\system32\drivers\bthmodem.sys Start: 4 Type: 1 Error Control: 1 Service (registry key): cdfs Display name: CD/DVD File System Reader Description: ISO9660/Joliet File System Reader for CD/DVDs. (Core) (All pieces) Image path: system32\DRIVERS\cdfs.sys Image size: 70144 Image MD5: 6C3A437FC873C6F6A4FC620B6888CB86 Start: 4 Type: 2 Error Control: 1 Depends On group: "SCSI CDROM Class" Service (registry key): cdrom Display name: Pilote de CD-ROM Image path: system32\DRIVERS\cdrom.sys Image size: 67072 Image MD5: 8D1866E61AF096AE8B582454F5E4D303 Start: 1 Type: 1 Error Control: 1 Service (registry key): CertPropSvc Display name: @%SystemRoot%\System32\certprop.dll,-11 Description: @%SystemRoot%\System32\certprop.dll,-12 Object name: LocalSystem Image path: %SystemRoot%\system32\svchost.exe -k netsvcs Image size: 22016 Image MD5: 10DA15933D582D2FEDCF705EFE394B09 Start: 3 Type: 32 Error Control: 1 Depends On services: RpcSs Service (registry key): circlass Display name: Consumer IR Devices Image path: \SystemRoot\system32\drivers\circlass.sys Start: 4 Type: 1 Error Control: 1 Service (registry key): CLFS Display name: Common Log (CLFS) Description: Common Log (CLFS) Image path: System32\CLFS.sys Image size: 221800 Image MD5: 51B4B82560E49C415AE5B1337D635C3F Start: 0 Type: 1 Error Control: 3 Service (registry key): clr_optimization_v2.0.50727_32 Display name: Microsoft .NET Framework NGEN v2.0.50727_X86 Description: Microsoft .NET Framework NGEN Object name: LocalSystem Image path: %systemroot%\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe Image size: 59392 Image MD5: D3BF342F47996E18490970FCFB8126A8 Start: 3 Type: 16 Error Control: 0 Service (registry key): CLTNetCnService Display name: Symantec Lic NetConnect service Description: Symantec Lic NetConnect Service Object name: LocalSystem Image path: "c:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe" /h ccCommon Start: 2 Type: 32 Error Control: 0 Service (registry key): cmdide Image path: \SystemRoot\system32\drivers\cmdide.sys Start: 4 Type: 1 Error Control: 3 Service (registry key): Compbatt Display name: Microsoft Composite Battery Driver Image path: \SystemRoot\system32\drivers\compbatt.sys Start: 4 Type: 1 Error Control: 3 Service (registry key): COMSysApp Display name: @comres.dll,-947 Description: @comres.dll,-948 Object name: LocalSystem Image path: %SystemRoot%\system32\dllhost.exe /Processid:{02D4B3F1-FD88-11D1-960D-00805FC79235} Image size: 7168 Image MD5: BE01E566D1F569AAB32D0335613E1EEA Start: 3 Type: 16 Error Control: 1 Depends On services: RpcSs,EventSystem,SENS Service (registry key): crcdisk Display name: Crcdisk Filter Driver Image path: system32\drivers\crcdisk.sys Image size: 22632 Image MD5: 2A213AE086BBEC5E937553C7D9A2B22C Start: 0 Type: 1 Error Control: 1 Service (registry key): Crusoe Display name: Transmeta Crusoe Processor Driver Image path: \SystemRoot\system32\drivers\crusoe.sys Start: 4 Type: 1 Error Control: 1 Service (registry key): crypt32 Start: 0 Type: 0 Error Control: 0 Service (registry key): CryptSvc Display name: @%SystemRoot%\system32\cryptsvc.dll,-1001 Description: @%SystemRoot%\system32\cryptsvc.dll,-1002 Object name: NT Authority\NetworkService Image path: %SystemRoot%\system32\svchost.exe -k NetworkService Image size: 22016 Image MD5: 10DA15933D582D2FEDCF705EFE394B09 Start: 2 Type: 32 Error Control: 1 Depends On services: RpcSs Service (registry key): DCLocator Start: 0 Type: 0 Error Control: 0 Service (registry key): DcomLaunch Display name: @oleres.dll,-5012 Description: @oleres.dll,-5013 Object name: LocalSystem Image path: %SystemRoot%\system32\svchost.exe -k DcomLaunch Image size: 22016 Image MD5: 10DA15933D582D2FEDCF705EFE394B09 Start: 2 Type: 32 Error Control: 1 Service (registry key): DfsC Display name: Dfs Client Driver Description: Dfs Client Driver Image path: System32\Drivers\dfsc.sys Image size: 74752 Image MD5: A7179DE59AE269AB70345527894CCD7C Start: 1 Type: 2 Error Control: 1 Depends On services: Mup Service (registry key): DFSR Display name: @dfsrres.dll,-101 Description: @dfsrres.dll,-102 Object name: LocalSystem Image path: %SystemRoot%\system32\DFSR.exe Image size: 2089984 Image MD5: E0D584AA76C7D845BA9F3A788260528F Start: 3 Type: 16 Error Control: 1 Depends On services: RpcSs,EventSystem Service (registry key): Dhcp Display name: @%SystemRoot%\system32\dhcpcsvc.dll,-100 Description: @%SystemRoot%\system32\dhcpcsvc.dll,-101 Object name: NT Authority\LocalService Image path: %SystemRoot%\system32\svchost.exe -k LocalServiceNetworkRestricted Image size: 22016 Image MD5: 10DA15933D582D2FEDCF705EFE394B09 Start: 2 Type: 32 Error Control: 1 Depends On services: NSI,Tdx,Afd Service (registry key): disk Display name: Pilote de disque Image path: system32\drivers\disk.sys Image size: 52840 Image MD5: 841AF4C4D41D3E3B2F244E976B0F7963 Start: 0 Type: 1 Error Control: 1 Service (registry key): Dnscache Display name: @%SystemRoot%\System32\dnsapi.dll,-101 Description: @%SystemRoot%\System32\dnsapi.dll,-102 Object name: NT AUTHORITY\NetworkService Image path: %SystemRoot%\system32\svchost.exe -k NetworkService Image size: 22016 Image MD5: 10DA15933D582D2FEDCF705EFE394B09 Start: 2 Type: 32 Error Control: 1 Depends On services: Tdx Service (registry key): dot3svc Display name: @%systemroot%\system32\dot3svc.dll,-1102 Description: @%systemroot%\system32\dot3svc.dll,-1103 Object name: localSystem Image path: %SystemRoot%\system32\svchost.exe -k LocalSystemNetworkRestricted Image size: 22016 Image MD5: 10DA15933D582D2FEDCF705EFE394B09 Start: 3 Type: 32 Error Control: 1 Depends On services: RpcSs,Ndisuio,Eaphost Service (registry key): DPS Display name: @%systemroot%\system32\dps.dll,-500 Description: @%systemroot%\system32\dps.dll,-501 Object name: NT AUTHORITY\LocalService Image path: %SystemRoot%\System32\svchost.exe -k LocalServiceNoNetwork Image size: 22016 Image MD5: 10DA15933D582D2FEDCF705EFE394B09 Start: 2 Type: 32 Error Control: 1 Service (registry key): drmkaud Display name: Filtre de décodeur DRM (Noyau Microsoft) Image path: system32\drivers\drmkaud.sys Image size: 5632 Image MD5: EE472CD2C01F6F8E8AA1FA06FFEF61B6 Start: 3 Type: 1 Error Control: 1 Service (registry key): DXGKrnl Display name: LDDM Graphics Subsystem Description: Controls the underlying video driver stacks to provide fully-featured display capabilities. Image path: \SystemRoot\System32\drivers\dxgkrnl.sys Start: 3 Type: 1 Error Control: 0 Service (registry key): E1G60 Display name: Intel® PRO/1000 NDIS 6 Adapter Driver Image path: system32\DRIVERS\E1G60I32.sys Image size: 117760 Image MD5: F88FB26547FD2CE6D0A5AF2985892C48 Start: 3 Type: 1 Error Control: 1 Service (registry key): EapHost Display name: @%systemroot%\system32\eapsvc.dll,-1 Description: @%systemroot%\system32\eapsvc.dll,-2 Object name: localSystem Image path: %SystemRoot%\System32\svchost.exe -k netsvcs Image size: 22016 Image MD5: 10DA15933D582D2FEDCF705EFE394B09 Start: 3 Type: 32 Error Control: 1 Depends On services: RPCSS,KeyIso Service (registry key): Ecache Display name: ReadyBoost Caching Driver Description: ReadyBoost Caching Driver Image path: System32\drivers\ecache.sys Image size: 132200 Image MD5: 0EFC7531B936EE57FDB4E837664C509F Start: 0 Type: 1 Error Control: 3 Service (registry key): eeCtrl Display name: Symantec Eraser Control driver Image path: \??\C:\Program Files\Common Files\Symantec Shared\EENGINE\eeCtrl.sys Image size: 389432 Image MD5: 2D401F82D4E81AAF89DAAA45F04782A2 Start: 1 Type: 1 Error Control: 1 Depends On services: FltMgr Service (registry key): ehRecvr Display name: @%SystemRoot%\ehome\ehrecvr.exe,-101 Description: @%SystemRoot%\ehome\ehrecvr.exe,-102 Object name: NT AUTHORITY\networkService Image path: %systemroot%\ehome\ehRecvr.exe Image size: 291840 Image MD5: B4580122B0A7B263B6EE9ACBA69C8013 Start: 3 Type: 16 Error Control: 0 Depends On services: RPCSS Service (registry key): ehSched Display name: @%SystemRoot%\ehome\ehsched.exe,-101 Description: @%SystemRoot%\ehome\ehsched.exe,-102 Object name: NT AUTHORITY\networkService Image path: %systemroot%\ehome\ehsched.exe Image size: 131072 Image MD5: AD1870C8E5D6DD340C829E6074BF3C3F Start: 3 Type: 16 Error Control: 0 Depends On services: RPCSS Service (registry key): ehstart Display name: @%SystemRoot%\ehome\ehstart.dll,-101 Description: @%SystemRoot%\ehome\ehstart.dll,-102 Object name: NT AUTHORITY\LocalService Image path: %windir%\system32\svchost.exe -k LocalServiceNoNetwork Image size: 22016 Image MD5: 10DA15933D582D2FEDCF705EFE394B09 Start: 2 Type: 32 Error Control: 0 Depends On services: RPCSS Service (registry key): elxstor Image path: \SystemRoot\system32\drivers\elxstor.sys Start: 4 Type: 1 Error Control: 1 Service (registry key): EmdCache Start: 0 Type: 0 Error Control: 0 Service (registry key): EMDMgmt Display name: @%SystemRoot%\system32\emdmgmt.dll,-1000 Description: @%SystemRoot%\system32\emdmgmt.dll,-1001 Object name: LocalSystem Image path: %systemroot%\system32\svchost.exe -k LocalSystemNetworkRestricted Image size: 22016 Image MD5: 10DA15933D582D2FEDCF705EFE394B09 Start: 2 Type: 32 Error Control: 0 Depends On services: rpcss,ecache,slsvc,fileinfo Service (registry key): ESENT Start: 0 Type: 0 Error Control: 0 Service (registry key): Eventlog Display name: @%SystemRoot%\system32\wevtsvc.dll,-200 Description: @%SystemRoot%\system32\wevtsvc.dll,-201 Object name: NT AUTHORITY\LocalService Image path: %SystemRoot%\System32\svchost.exe -k LocalServiceNetworkRestricted Image size: 22016 Image MD5: 10DA15933D582D2FEDCF705EFE394B09 Start: 2 Type: 32 Error Control: 1 Service (registry key): EventSystem Display name: @comres.dll,-2450 Description: @comres.dll,-2451 Object name: NT AUTHORITY\LocalService Image path: %SystemRoot%\system32\svchost.exe -k LocalService Image size: 22016 Image MD5: 10DA15933D582D2FEDCF705EFE394B09 Start: 2 Type: 32 Error Control: 1 Depends On services: rpcss Service (registry key): fastfat Display name: FAT12/16/32 File System Driver Description: Note - dependance on CDROM.SYS only if required to read/write DVD-RAM media (which appears as CD class device). (Core) (All pieces) Start: 3 Type: 2 Error Control: 1 Service (registry key): fdc Display name: Floppy Disk Controller Driver Image path: system32\DRIVERS\fdc.sys Image size: 25088 Image MD5: 63BDADA84951B9C03E641800E176898A Start: 4 Type: 1 Error Control: 1 Service (registry key): fdPHost Display name: @%systemroot%\system32\fdPHost.dll,-100 Description: @%systemroot%\system32\fdPHost.dll,-101 Object name: NT AUTHORITY\LocalService Image path: %SystemRoot%\system32\svchost.exe -k LocalService Image size: 22016 Image MD5: 10DA15933D582D2FEDCF705EFE394B09 Start: 3 Type: 32 Error Control: 1 Depends On services: RpcSs,http Service (registry key): FDResPub Display name: @%systemroot%\system32\fdrespub.dll,-100 Description: @%systemroot%\system32\fdrespub.dll,-101 Object name: NT AUTHORITY\LocalService Image path: %SystemRoot%\system32\svchost.exe -k LocalService Image size: 22016 Image MD5: 10DA15933D582D2FEDCF705EFE394B09 Start: 2 Type: 32 Error Control: 1 Depends On services: RpcSs,http Service (registry key): FileInfo Display name: File Information FS MiniFilter Description: Collects information about files in memory to be consumed by other system services. Image path: system32\drivers\fileinfo.sys Image size: 56424 Image MD5: 65773D6115C037FFD7EF8280AE85EB9D Start: 0 Type: 2 Error Control: 1 Depends On services: fltmgr Service (registry key): Filetrace Display name: FileTrace Description: ETW File Trace Filter Image path: system32\drivers\filetrace.sys Image size: 27648 Image MD5: C226DD0DE060745F3E042F58DCF78402 Start: 3 Type: 2 Error Control: 1 Depends On services: FltMgr Service (registry key): flpydisk Display name: Floppy Disk Driver Image path: system32\DRIVERS\flpydisk.sys Image size: 20480 Image MD5: 6603957EFF5EC62D25075EA8AC27DE68 Start: 4 Type: 1 Error Control: 1 Service (registry key): FltMgr Display name: FltMgr Description: File System Filter Manager Driver Image path: system32\drivers\fltmgr.sys Image size: 183912 Image MD5: A6A8DA7AE4D53394AB22AC3AB6D3F5D3 Start: 0 Type: 2 Error Control: 3 Service (registry key): FontCache3.0.0.0 Display name: @%SystemRoot%\system32\PresentationHost.exe,-3309 Description: @%SystemRoot%\system32\PresentationHost.exe,-3310 Object name: NT Authority\LocalService Image path: %systemroot%\Microsoft.Net\Framework\v3.0\WPF\PresentationFontCache.exe Image size: 36864 Image MD5: 7EF57375636991F794BF40B522A8E7EF Start: 3 Type: 16 Error Control: 1 Service (registry key): Fs_Rec Start: 1 Type: 8 Error Control: 0 Service (registry key): gagp30kx Display name: Microsoft Generic AGPv3.0 Filter for K8 Processor Platforms Image path: \SystemRoot\system32\drivers\gagp30kx.sys Start: 3 Type: 1 Error Control: 1 Service (registry key): gpsvc Display name: @gpapi.dll,-112 Description: @gpapi.dll,-113 Object name: LocalSystem Image path: %systemroot%\system32\svchost.exe -k netsvcs Image size: 22016 Image MD5: 10DA15933D582D2FEDCF705EFE394B09 Start: 2 Type: 32 Error Control: 1 Depends On services: RPCSS,Mup Service (registry key): gusvc Display name: Google Updater Service Object name: LocalSystem Image path: "C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe" Image size: 138680 Image MD5: D213C2B1CE0FAEAB59EC0C55B4493F94 Start: 2 Type: 16 Error Control: 0 Depends On services: RPCSS Service (registry key): HdAudAddService Display name: Pilote de fonction UAA 1.1 Microsoft pour le service High Definition Audio Image path: system32\drivers\HdAudio.sys Image size: 235520 Image MD5: CB04C744BE0A61B1D648FAED182C3B59 Start: 3 Type: 1 Error Control: 1 Service (registry key): HDAudBus Display name: Pilote de bus UAA Microsoft pour High Definition Audio Image path: system32\DRIVERS\HDAudBus.sys Image size: 53760 Image MD5: FFB271303BA3C59D9C97B7AF1175DE95 Start: 3 Type: 1 Error Control: 1 Service (registry key): HidBth Display name: Microsoft Bluetooth HID Miniport Image path: \SystemRoot\system32\drivers\hidbth.sys Start: 4 Type: 1 Error Control: 0 Service (registry key): HidIr Display name: Microsoft Infrared HID Driver Image path: \SystemRoot\system32\drivers\hidir.sys Start: 4 Type: 1 Error Control: 0 Service (registry key): hidserv Display name: @%SystemRoot%\System32\hidserv.dll,-101 Description: @%SystemRoot%\System32\hidserv.dll,-102 Object name: LocalSystem Image path: %SystemRoot%\system32\svchost.exe -k LocalSystemNetworkRestricted Image size: 22016 Image MD5: 10DA15933D582D2FEDCF705EFE394B09 Start: 2 Type: 32 Error Control: 1 Service (registry key): HidUsb Display name: Pilote de classe HID Microsoft Image path: system32\DRIVERS\hidusb.sys Image size: 12288 Image MD5: 3C64042B95E583B366BA4E5D2450235E Start: 3 Type: 1 Error Control: 0 Service (registry key): hkmsvc Display name: @%SystemRoot%\system32\kmsvc.dll,-6 Description: @%SystemRoot%\system32\kmsvc.dll,-7 Object name: localSystem Image path: %SystemRoot%\System32\svchost.exe -k netsvcs Image size: 22016 Image MD5: 10DA15933D582D2FEDCF705EFE394B09 Start: 3 Type: 32 Error Control: 1 Depends On services: RpcSs Service (registry key): HpCISSs Image path: \SystemRoot\system32\drivers\hpcisss.sys Start: 4 Type: 1 Error Control: 1 Service (registry key): HTTP Display name: HTTP Description: This service implements the hypertext transfer protocol (HTTP). If this service is disabled, any services that explicitly depend on it will fail to start. Image path: system32\drivers\HTTP.sys Image size: 385536 Image MD5: F31D27CCF514549A17E79BEBE01B40B6 Start: 3 Type: 1 Error Control: 1 Service (registry key): i2omp Image path: \SystemRoot\system32\drivers\i2omp.sys Start: 4 Type: 1 Error Control: 1 Service (registry key): i8042prt Display name: Pilote pour clavier i8042 et souris sur port PS/2 Image path: system32\DRIVERS\i8042prt.sys Image size: 54784 Image MD5: 1060F1377F395A242E27719440ECE602 Start: 1 Type: 1 Error Control: 1 Service (registry key): iaStorV Display name: Intel RAID Controller Vista Image path: \SystemRoot\system32\drivers\iastorv.sys Start: 4 Type: 1 Error Control: 1 Service (registry key): idsvc Display name: @%systemroot%\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\ServiceModelInstallRC.dll,-8193 Description: @%systemroot%\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\ServiceModelInstallRC.dll,-8192 Object name: LocalSystem Image path: "%systemroot%\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe" Image size: 741376 Image MD5: 6D1D3CAB85BA0C63CB83296A8A1825F9 Start: 3 Type: 32 Error Control: 1 Service (registry key): iirsp Image path: \SystemRoot\system32\drivers\iirsp.sys Start: 4 Type: 1 Error Control: 1 Service (registry key): IKEEXT Display name: @%SystemRoot%\system32\ikeext.dll,-501 Description: @%SystemRoot%\system32\ikeext.dll,-502 Object name: LocalSystem Image path: %systemroot%\system32\svchost.exe -k netsvcs Image size: 22016 Image MD5: 10DA15933D582D2FEDCF705EFE394B09 Start: 2 Type: 32 Error Control: 1 Depends On services: BFE Service (registry key): inetaccs Start: 0 Type: 0 Error Control: 0 Service (registry key): IntcAzAudAddService Display name: Service for Realtek HD Audio (WDM) Image path: system32\drivers\RTKVHDA.sys Image size: 1647976 Image MD5: A47B2875680AD67B35C6150BD0203056 Start: 3 Type: 1 Error Control: 1 Service (registry key): intelide Image path: \SystemRoot\system32\drivers\intelide.sys Start: 4 Type: 1 Error Control: 3 Service (registry key): intelppm Display name: Intel Processor Driver Image path: system32\DRIVERS\intelppm.sys Image size: 39424 Image MD5: CE44CC04262F28216DD4341E9E36A16F Start: 4 Type: 1 Error Control: 1 Service (registry key): IPBusEnum Display name: @%systemroot%\system32\IPBusEnum.dll,-102 Description: @%systemroot%\system32\IPBusEnum.dll,-103 Object name: LocalSystem Image path: %SystemRoot%\system32\svchost.exe -k LocalSystemNetworkRestricted Image size: 22016 Image MD5: 10DA15933D582D2FEDCF705EFE394B09 Start: 3 Type: 32 Error Control: 1 Depends On services: RpcSs,fdPHost Service (registry key): IpFilterDriver Display name: IP Traffic Filter Driver Description: IP Traffic Filter Driver Image path: system32\DRIVERS\ipfltdrv.sys Image size: 47104 Image MD5: 880C6F86CC3F551B8FEA2C11141268C0 Start: 3 Type: 1 Error Control: 1 Depends On services: Tcpip Service (registry key): iphlpsvc Display name: @%SystemRoot%\system32\iphlpsvc.dll,-200 Description: @%SystemRoot%\system32\iphlpsvc.dll,-201 Object name: LocalSystem Image path: %SystemRoot%\System32\svchost.exe -k NetSvcs Image size: 22016 Image MD5: 10DA15933D582D2FEDCF705EFE394B09 Start: 2 Type: 32 Error Control: 1 Depends On services: RpcSS,Tdx,winmgmt,tcpip,nsi Service (registry key): IpInIp Display name: IP in IP Tunnel Driver Description: IP in IP Tunnel Driver Image path: system32\DRIVERS\ipinip.sys Start: 3 Type: 1 Error Control: 1 Depends On services: Tcpip Service (registry key): IPMIDRV Image path: \SystemRoot\system32\drivers\ipmidrv.sys Start: 4 Type: 1 Error Control: 1 Service (registry key): IPNAT Display name: IP Network Address Translator Description: IP Network Address Translator Image path: system32\DRIVERS\ipnat.sys Image size: 99840 Image MD5: 10077C35845101548037DF04FD1A420B Start: 3 Type: 1 Error Control: 1 Depends On services: Tcpip Service (registry key): IRENUM Display name: IR Bus Enumerator Description: IR Bus Enumerator Image path: system32\drivers\irenum.sys Image size: 13312 Image MD5: A82F328F4792304184642D6D397BB1E3 Start: 3 Type: 1 Error Control: 0 Service (registry key): isapnp Display name: PnP ISA/EISA Bus Driver Image path: \SystemRoot\system32\drivers\isapnp.sys Start: 4 Type: 1 Error Control: 3 Service (registry key): iScsiPrt Display name: Pilote iScsiPort Image path: system32\DRIVERS\msiscsi.sys Image size: 168552 Image MD5: 4DCA456D4D5723F8FA9C6760D240B0DF Start: 3 Type: 1 Error Control: 1 Service (registry key): iteatapi Display name: ITEATAPI_Service_Install Image path: \SystemRoot\system32\drivers\iteatapi.sys Start: 4 Type: 1 Error Control: 1 Service (registry key): iteraid Display name: ITERAID_Service_Install Image path: \SystemRoot\system32\drivers\iteraid.sys Start: 4 Type: 1 Error Control: 1 Service (registry key): kbdclass Display name: Pilote de la classe Clavier Image path: system32\DRIVERS\kbdclass.sys Image size: 32872 Image MD5: 1A48765F92BA1A88445FC25C9C9D94FC Start: 1 Type: 1 Error Control: 1 Service (registry key): kbdhid Display name: Pilote HID de clavier Image path: system32\DRIVERS\kbdhid.sys Image size: 15872 Image MD5: D2600CB17B7408B4A83F231DC9A11AC3 Start: 1 Type: 1 Error Control: 0 Service (registry key): KeyIso Display name: @keyiso.dll,-100 Description: @keyiso.dll,-101 Object name: LocalSystem Image path: %SystemRoot%\system32\lsass.exe Image size: 7680 Image MD5: 6A0E382E74280E4CC0DF17FE2661D003 Start: 3 Type: 32 Error Control: 1 Depends On services: RpcSs Service (registry key): kl1 Display name: kl1 Image path: system32\DRIVERS\kl1.sys Start: 1 Type: 1 Error Control: 1 Service (registry key): KSecDD Image path: System32\Drivers\ksecdd.sys Image size: 407144 Image MD5: 11D0BC1F2AFD8ABBB5A3DC47A042DE54 Start: 0 Type: 1 Error Control: 3 Service (registry key): KtmRm Display name: @comres.dll,-2946 Description: @comres.dll,-2947 Object name: NT AUTHORITY\NetworkService Image path: %SystemRoot%\System32\svchost.exe -k NetworkService Image size: 22016 Image MD5: 10DA15933D582D2FEDCF705EFE394B09 Start: 2 Type: 32 Error Control: 1 Depends On services: RPCSS,SamSS Service (registry key): LanmanServer Display name: @%systemroot%\system32\srvsvc.dll,-100 Description: @%systemroot%\system32\srvsvc.dll,-101 Object name: LocalSystem Image path: %SystemRoot%\system32\svchost.exe -k netsvcs Image size: 22016 Image MD5: 10DA15933D582D2FEDCF705EFE394B09 Start: 2 Type: 32 Error Control: 1 Depends On services: SamSS,Srv Service (registry key): LanmanWorkstation Display name: @%systemroot%\system32\wkssvc.dll,-100 Description: @%systemroot%\system32\wkssvc.dll,-101 Object name: NT AUTHORITY\LocalService Image path: %SystemRoot%\System32\svchost.exe -k LocalService Image size: 22016 Image MD5: 10DA15933D582D2FEDCF705EFE394B09 Start: 2 Type: 32 Error Control: 1 Depends On services: Bowser,MRxSmb10,MRxSmb20,NSI Service (registry key): ldap Start: 0 Type: 0 Error Control: 0 Service (registry key): LightScribeService Display name: LightScribeService Direct Disc Labeling Service Description: Used by the LightScribe software components to support 3rd party disc labeling applications using the LightScribe COM Application Programming Interface (LSCAPI). This service needs to run for LightScribe direct disc labeling to work. Object name: LocalSystem Image path: "c:\Program Files\Common Files\LightScribe\LSSrvc.exe" Image size: 61440 Image MD5: 6E5DAC168D1FF9843E84A59D51D31107 Start: 2 Type: 16 Error Control: 0 Service (registry key): lltdio Display name: Link-Layer Topology Discovery Mapper I/O Driver Image path: system32\DRIVERS\lltdio.sys Image size: 47104 Image MD5: FD015B4F95DAA2B712F0E372A116FBAD Start: 2 Type: 1 Error Control: 1 Service (registry key): lltdsvc Display name: @%SystemRoot%\system32\lltdres.dll,-1 Description: @%SystemRoot%\system32\lltdres.dll,-2 Object name: NT AUTHORITY\LocalService Image path: %SystemRoot%\System32\svchost.exe -k LocalService Image size: 22016 Image MD5: 10DA15933D582D2FEDCF705EFE394B09 Start: 3 Type: 32 Error Control: 1 Depends On services: rpcss,lltdio Service (registry key): lmhosts Display name: @%SystemRoot%\system32\lmhsvc.dll,-101 Description: @%SystemRoot%\system32\lmhsvc.dll,-102 Object name: NT AUTHORITY\LocalService Image path: %SystemRoot%\system32\svchost.exe -k LocalServiceNetworkRestricted Image size: 22016 Image MD5: 10DA15933D582D2FEDCF705EFE394B09 Start: 2 Type: 32 Error Control: 1 Depends On services: NetBT,Afd Service (registry key): Lsa Start: 0 Type: 0 Error Control: 0 Service (registry key): LSI_FC Image path: \SystemRoot\system32\drivers\lsi_fc.sys Start: 4 Type: 1 Error Control: 1 Service (registry key): LSI_SAS Image path: \SystemRoot\system32\drivers\lsi_sas.sys Start: 4 Type: 1 Error Control: 1 Service (registry key): LSI_SCSI Image path: \SystemRoot\system32\drivers\lsi_scsi.sys Start: 4 Type: 1 Error Control: 1 Service (registry key): luafv Display name: UAC File Virtualization Description: Virtualizes file write failures to per-user locations. Image path: \SystemRoot\system32\drivers\luafv.sys Start: 2 Type: 2 Error Control: 1 Depends On services: FltMgr Service (registry key): Mcx2Svc Display name: @%SystemRoot%\ehome\ehres.dll,-15501 Description: @%SystemRoot%\ehome\ehres.dll,-15502 Object name: NT Authority\LocalService Image path: %SystemRoot%\system32\svchost.exe -k LocalService Image size: 22016 Image MD5: 10DA15933D582D2FEDCF705EFE394B09 Start: 4 Type: 32 Error Control: 1 Depends On services: SSDPSRV,IPBusEnum,TermService,fdphost Service (registry key): megasas Image path: \SystemRoot\system32\drivers\megasas.sys Start: 4 Type: 1 Error Control: 1 Service (registry key): MMCSS Display name: @%systemroot%\system32\mmcss.dll,-100 Description: @%systemroot%\system32\mmcss.dll,-101 Object name: LocalSystem Image path: %SystemRoot%\system32\svchost.exe -k netsvcs Image size: 22016 Image MD5: 10DA15933D582D2FEDCF705EFE394B09 Start: 2 Type: 32 Error Control: 1 Service (registry key): Modem Image path: system32\drivers\modem.sys Image size: 31744 Image MD5: 21755967298A46FB6ADFEC9DB6012211 Start: 3 Type: 1 Error Control: 0 Service (registry key): monitor Display name: Service Pilote de fonction de classe Moniteur Microsoft Image path: system32\DRIVERS\monitor.sys Image size: 41984 Image MD5: EC839BA91E45CCE6EADAFC418FFF8206 Start: 3 Type: 1 Error Control: 1 Service (registry key): mouclass Display name: Pilote de la classe Souris Image path: system32\DRIVERS\mouclass.sys Image size: 31848 Image MD5: 3C9469DFB3440555DAB070716D768B1E Start: 1 Type: 1 Error Control: 1 Service (registry key): moufiltr Display name: ENERGY SISTEM Mouse Filter Driver Image path: system32\DRIVERS\moufiltr.sys Image size: 12097 Image MD5: B1058290728F8CDF53FF9BE8A4417223 Start: 1 Type: 1 Error Control: 1 Service (registry key): mouhid Display name: Pilote HID de souris Image path: system32\DRIVERS\mouhid.sys Image size: 15872 Image MD5: A3A6DFF7E9E757DB3DF51A833BC28885 Start: 3 Type: 1 Error Control: 0 Service (registry key): MountMgr Display name: Mount Point Manager Image path: System32\drivers\mountmgr.sys Image size: 54888 Image MD5: 01F1E5A3E4877C931CBB31613FEC16A6 Start: 0 Type: 1 Error Control: 3 Service (registry key): mpio Display name: Microsoft Multi-Path Bus Driver Image path: \SystemRoot\system32\drivers\mpio.sys Start: 4 Type: 1 Error Control: 1 Service (registry key): mpsdrv Display name: @%SystemRoot%\system32\FirewallAPI.dll,-23092 Description: @%SystemRoot%\system32\FirewallAPI.dll,-23093 Image path: System32\drivers\mpsdrv.sys Image size: 63488 Image MD5: 8D326E8B321685D4784AFA1C55169D73 Start: 3 Type: 1 Error Control: 1 Service (registry key): MpsSvc Display name: @%SystemRoot%\system32\FirewallAPI.dll,-23090 Description: @%SystemRoot%\system32\FirewallAPI.dll,-23091 Object name: NT Authority\LocalService Image path: %SystemRoot%\system32\svchost.exe -k LocalServiceNoNetwork Image size: 22016 Image MD5: 10DA15933D582D2FEDCF705EFE394B09 Start: 2 Type: 32 Error Control: 1 Depends On services: mpsdrv,bfe Service (registry key): Mraid35x Image path: \SystemRoot\system32\drivers\mraid35x.sys Start: 4 Type: 1 Error Control: 1 Service (registry key): MRxDAV Display name: WebDav Client Redirector Driver Description: WebDav Client Redirector Driver Image path: \SystemRoot\system32\drivers\mrxdav.sys Start: 3 Type: 2 Error Control: 1 Depends On services: rdbss Service (registry key): mrxsmb Display name: SMB MiniRedirector Wrapper and Engine Description: Implements the framework for the SMB filesystem redirector Image path: system32\DRIVERS\mrxsmb.sys Image size: 101888 Image MD5: FCA7563D87F71C6DB0182CA67CC19AA7 Start: 3 Type: 2 Error Control: 1 Depends On services: rdbss Service (registry key): mrxsmb10 Display name: SMB 1.x MiniRedirector Description: Implements the SMB 1.x (CIFS) protocol. This protocol provides connectivity to network resources on pre-Windows Vista servers Image path: system32\DRIVERS\mrxsmb10.sys Image size: 211456 Image MD5: 58A9AB5754FA4CABEDE7401283B5A771 Start: 3 Type: 2 Error Control: 1 Depends On services: mrxsmb Service (registry key): mrxsmb20 Display name: SMB 2.0 MiniRedirector Description: Implements the SMB 2.0 protocol, which provides connectivity to network resources on Windows Vista and later servers Image path: system32\DRIVERS\mrxsmb20.sys Image size: 57856 Image MD5: 79B09504E4A790104683722CD04F76B4 Start: 3 Type: 2 Error Control: 1 Depends On services: mrxsmb Service (registry key): msahci Image path: \SystemRoot\system32\drivers\msahci.sys Start: 4 Type: 1 Error Control: 3 Service (registry key): msdsm Display name: Microsoft Multi-Path Device Specific Module Image path: \SystemRoot\system32\drivers\msdsm.sys Start: 4 Type: 1 Error Control: 1 Service (registry key): MSDTC Display name: @comres.dll,-2797 Description: @comres.dll,-2798 Object name: NT AUTHORITY\NetworkService Image path: %SystemRoot%\System32\msdtc.exe Image size: 106496 Image MD5: BC64A92D821EFEA8BAB8E8CAF1B668BC Start: 3 Type: 16 Error Control: 1 Depends On services: RPCSS,SamSS Service (registry key): MSDTC Bridge 3.0.0.0 Start: 0 Type: 0 Error Control: 0 Service (registry key): Msfs Start: 1 Type: 2 Error Control: 1 Service (registry key): msisadrv Display name: Pilote de classe ISA/EISA Image path: system32\drivers\msisadrv.sys Image size: 13928 Image MD5: 5F454A16A5146CD91A176D70F0CFA3EC Start: 0 Type: 1 Error Control: 3 Service (registry key): MSiSCSI Display name: @%SystemRoot%\system32\iscsidsc.dll,-5000 Description: @%SystemRoot%\system32\iscsidsc.dll,-5001 Object name: LocalSystem Image path: %systemroot%\system32\svchost.exe -k netsvcs Image size: 22016 Image MD5: 10DA15933D582D2FEDCF705EFE394B09 Start: 3 Type: 32 Error Control: 1 Service (registry key): msiserver Display name: @%SystemRoot%\system32\msimsg.dll,-27 Description: @%SystemRoot%\system32\msimsg.dll,-32 Object name: LocalSystem Image path: %systemroot%\system32\msiexec /V Image size: 71680 Image MD5: B038D40785FA669BD8C3E0252909B4C2 Start: 3 Type: 16 Error Control: 1 Depends On services: rpcss Service (registry key): MSKSSRV Display name: Proxy de service de répartition Microsoft Image path: system32\drivers\MSKSSRV.sys Image size: 8192 Image MD5: 892CEDEFA7E0FFE7BE8DA651B651D047 Start: 3 Type: 1 Error Control: 1 Service (registry key): MSPCLOCK Display name: Proxy d'horloge de répartition Microsoft Image path: system32\drivers\MSPCLOCK.sys Image size: 5888 Image MD5: AE2CB1DA69B2676B4CEE2A501AF5871C Start: 3 Type: 1 Error Control: 1 Service (registry key): MSPQM Display name: Proxy de gestion de qualité de répartition Microsoft Image path: system32\drivers\MSPQM.sys Image size: 5504 Image MD5: F910DA84FA90C44A3ADDB7CD874463FD Start: 3 Type: 1 Error Control: 1 Service (registry key): MsRPC Start: 3 Type: 1 Error Control: 1 Service (registry key): MSSCNTRS Start: 0 Type: 0 Error Control: 0 Service (registry key): mssmbios Display name: Pilote BIOS de gestion de systèmes Microsoft Image path: system32\DRIVERS\mssmbios.sys Image size: 28776 Image MD5: 4385C80EDE885E25492D408CAD91BD6F Start: 3 Type: 1 Error Control: 1 Service (registry key): MSTEE Display name: Convertisseur en T/site-à-site de répartition Microsoft Image path: system32\drivers\MSTEE.sys Image size: 6016 Image MD5: C826DD1373F38AFD9CA46EC3C436A14E Start: 3 Type: 1 Error Control: 1 Service (registry key): Mup Display name: Mup Description: Multiple UNC Provider Image path: System32\Drivers\mup.sys Image size: 46696 Image MD5: FA7AA70050CF5E2D15DE00941E5665E5 Start: 0 Type: 2 Error Control: 1 Service (registry key): napagent Display name: @%SystemRoot%\system32\qagentrt.dll,-6 Description: @%SystemRoot%\system32\qagentrt.dll,-7 Object name: NT AUTHORITY\NetworkService Image path: %SystemRoot%\System32\svchost.exe -k NetworkService Image size: 22016 Image MD5: 10DA15933D582D2FEDCF705EFE394B09 Start: 3 Type: 32 Error Control: 1 Depends On services: RpcSs Service (registry key): NativeWifiP Display name: NativeWiFi Filter Image path: system32\DRIVERS\nwifi.sys Image size: 154112 Image MD5: 497DE786240303EE67AB01F5690C24C2 Start: 3 Type: 1 Error Control: 1 Service (registry key): NDIS Display name: NDIS System Driver Description: NDIS System Driver Image path: system32\drivers\ndis.sys Image size: 500840 Image MD5: 227C11E1E7CF6EF8AFB2A238D209760C Start: 0 Type: 1 Error Control: 3 Service (registry key): NdisTapi Display name: Pilote TAPI NDIS d'accès distant Description: Pilote TAPI NDIS d'accès distant Image path: system32\DRIVERS\ndistapi.sys Image size: 20480 Image MD5: 7584F1794B23B83D63CC124A8C56D103 Start: 3 Type: 1 Error Control: 1 Service (registry key): Ndisuio Display name: NDIS Usermode I/O Protocol Image path: system32\DRIVERS\ndisuio.sys Image size: 16896 Image MD5: 5DE5EE546BF40838EBE0E01CB629DF64 Start: 3 Type: 1 Error Control: 1 Service (registry key): NdisWan Display name: Pilote réseau étendu NDIS d'accès distant Description: Pilote réseau étendu NDIS d'accès distant Image path: system32\DRIVERS\ndiswan.sys Image size: 118784 Image MD5: 397402ADCBB8946223A1950101F6CD94 Start: 3 Type: 1 Error Control: 1 Service (registry key): NDProxy Start: 3 Type: 1 Error Control: 1 Service (registry key): NetBIOS Display name: NetBIOS Interface Description: NetBIOS Interface Image path: system32\DRIVERS\netbios.sys Image size: 35840 Image MD5: 356DBB9F98E8DC1028DD3092FCEEB877 Start: 1 Type: 2 Error Control: 1 Service (registry key): netbt Display name: NETBT Description: This service implements NetBios over TCP/IP. Image path: System32\DRIVERS\netbt.sys Image size: 184320 Image MD5: E3A168912E7EEFC3BD3B814720D68B41 Start: 1 Type: 1 Error Control: 1 Depends On services: Tdx,tcpip Service (registry key): Netlogon Display name: @%SystemRoot%\System32\netlogon.dll,-102 Description: @%SystemRoot%\System32\netlogon.dll,-103 Object name: LocalSystem Image path: %systemroot%\system32\lsass.exe Image size: 7680 Image MD5: 6A0E382E74280E4CC0DF17FE2661D003 Start: 3 Type: 32 Error Control: 1 Depends On services: LanmanWorkstation Service (registry key): Netman Display name: @%SystemRoot%\system32\netman.dll,-109 Description: @%SystemRoot%\system32\netman.dll,-110 Object name: LocalSystem Image path: %SystemRoot%\System32\svchost.exe -k LocalSystemNetworkRestricted Image size: 22016 Image MD5: 10DA15933D582D2FEDCF705EFE394B09 Start: 3 Type: 32 Error Control: 1 Depends On services: RpcSs,nsi Service (registry key): netprofm Display name: @%SystemRoot%\system32\netprof.dll,-246 Description: @%SystemRoot%\system32\netprof.dll,-247 Object name: NT AUTHORITY\LocalService Image path: %SystemRoot%\System32\svchost.exe -k LocalService Image size: 22016 Image MD5: 10DA15933D582D2FEDCF705EFE394B09 Start: 2 Type: 32 Error Control: 1 Depends On services: RpcSs,nlasvc Service (registry key): NetTcpPortSharing Display name: @%systemroot%\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\ServiceModelInstallRC.dll,-8201 Description: @%systemroot%\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\ServiceModelInstallRC.dll,-8200 Object name: NT AUTHORITY\LocalService Image path: "%systemroot%\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe" Image size: 122880 Image MD5: B418382DE04FF58567AA07A2B66B2332 Start: 4 Type: 32 Error Control: 1 Service (registry key): nfrd960 Image path: \SystemRoot\system32\drivers\nfrd960.sys Start: 4 Type: 1 Error Control: 1 Service (registry key): NlaSvc Display name: @%SystemRoot%\System32\nlasvc.dll,-1 Description: @%SystemRoot%\System32\nlasvc.dll,-2 Object name: NT AUTHORITY\NetworkService Image path: %SystemRoot%\System32\svchost.exe -k NetworkService Image size: 22016 Image MD5: 10DA15933D582D2FEDCF705EFE394B09 Start: 2 Type: 32 Error Control: 1 Depends On services: NSI,RpcSs,TcpIp Service (registry key): Npfs Start: 1 Type: 2 Error Control: 1 Service (registry key): nsi Display name: @%SystemRoot%\system32\nsisvc.dll,-200 Description: @%SystemRoot%\system32\nsisvc.dll,-201 Object name: NT Authority\LocalService Image path: %systemroot%\system32\svchost.exe -k LocalService Image size: 22016 Image MD5: 10DA15933D582D2FEDCF705EFE394B09 Start: 2 Type: 32 Error Control: 1 Depends On services: nsiproxy Service (registry key): nsiproxy Display name: NSI proxy service Description: NSI proxy service Image path: system32\drivers\nsiproxy.sys Image size: 16384 Image MD5: B488DFEC274DE1FC9D653870EF2587BE Start: 1 Type: 1 Error Control: 1 Service (registry key): NTDS Start: 0 Type: 0 Error Control: 0 Service (registry key): Ntfs Start: 3 Type: 2 Error Control: 1 Service (registry key): ntrigdigi Display name: N-trig HID Tablet Driver Image path: \SystemRoot\system32\drivers\ntrigdigi.sys Start: 4 Type: 1 Error Control: 1 Service (registry key): Null Start: 1 Type: 1 Error Control: 1 Service (registry key): NVENETFD Display name: Pilote du contrôleur de réseau NVIDIA nForce Image path: system32\DRIVERS\nvm60x32.sys Image size: 429056 Image MD5: 1657F3FBD9061526C14FF37E79306F98 Start: 3 Type: 1 Error Control: 1 Service (registry key): nvlddmkm Image path: system32\DRIVERS\nvlddmkm.sys Image size: 4454400 Image MD5: 7939C99278E1E44AFB32D7A4DCC322DE Start: 3 Type: 1 Error Control: 0 Service (registry key): nvraid Image path: \SystemRoot\system32\drivers\nvraid.sys Start: 4 Type: 1 Error Control: 1 Service (registry key): nvstor Image path: \SystemRoot\system32\drivers\nvstor.sys Start: 4 Type: 1 Error Control: 3 Service (registry key): nv_agp Display name: NVIDIA nForce AGP Bus Filter Image path: \SystemRoot\system32\drivers\nv_agp.sys Start: 3 Type: 1 Error Control: 1 Service (registry key): NwlnkFlt Display name: IPX Traffic Filter Driver Description: IPX Traffic Filter Driver Image path: system32\DRIVERS\nwlnkflt.sys Start: 3 Type: 1 Error Control: 1 Depends On services: NwlnkFwd Service (registry key): NwlnkFwd Display name: IPX Traffic Forwarder Driver Description: IPX Traffic Forwarder Driver Image path: system32\DRIVERS\nwlnkfwd.sys Start: 3 Type: 1 Error Control: 1 Service (registry key): ohci1394 Display name: Contrôleur hôte compatible IEE 1394 AGERE OHCI Image path: system32\DRIVERS\ohci1394.sys Image size: 62080 Image MD5: BE32DA025A0BE1878F0EE8D6D9386CD5 Start: 3 Type: 1 Error Control: 1 Service (registry key): p2pimsvc Display name: @%SystemRoot%\system32\p2psvc.dll,-8004 Description: @%SystemRoot%\system32\p2psvc.dll,-8005 Object name: NT AUTHORITY\LocalService Image path: %SystemRoot%\System32\svchost.exe -k LocalServiceNetworkRestricted Image size: 22016 Image MD5: 10DA15933D582D2FEDCF705EFE394B09 Start: 3 Type: 32 Error Control: 1 Service (registry key): p2psvc Display name: @%SystemRoot%\system32\p2psvc.dll,-8006 Description: @%SystemRoot%\system32\p2psvc.dll,-8007 Object name: NT AUTHORITY\LocalService Image path: %SystemRoot%\System32\svchost.exe -k LocalServiceNetworkRestricted Image size: 22016 Image MD5: 10DA15933D582D2FEDCF705EFE394B09 Start: 3 Type: 32 Error Control: 1 Depends On services: p2pimsvc,PNRPSvc Service (registry key): Parport Display name: Parallel port driver Image path: \SystemRoot\system32\drivers\parport.sys Start: 3 Type: 1 Error Control: 1 Service (registry key): partmgr Display name: Partition Manager Description: Disk class filter driver that auctions out partitions to volume managers Image path: System32\drivers\partmgr.sys Image size: 49256 Image MD5: 555A5B2C8022983BC7467BC925B222EE Start: 0 Type: 1 Error Control: 3 Service (registry key): Parvdm Image path: \SystemRoot\system32\drivers\parvdm.sys Start: 2 Type: 1 Error Control: 0 Depends On services: Parport Depends On group: "Parallel arbitrator" Service (registry key): PcaSvc Display name: @%SystemRoot%\system32\pcasvc.dll,-1 Description: @%SystemRoot%\system32\pcasvc.dll,-2 Object name: LocalSystem Image path: %systemroot%\system32\svchost.exe -k LocalSystemNetworkRestricted Image size: 22016 Image MD5: 10DA15933D582D2FEDCF705EFE394B09 Start: 2 Type: 32 Error Control: 1 Depends On services: RpcSs Service (registry key): pci Display name: Pilote de bus PCI Image path: system32\drivers\pci.sys Image size: 140392 Image MD5: 1085D75657807E0E8B32F9E19A1647C3 Start: 0 Type: 1 Error Control: 3 Service (registry key): pciide Image path: system32\drivers\pciide.sys Image size: 13416 Image MD5: 3B1901E401473E03EB8C874271E50C26 Start: 0 Type: 1 Error Control: 3 Service (registry key): pcmcia Image path: \SystemRoot\system32\drivers\pcmcia.sys Start: 4 Type: 1 Error Control: 1 Service (registry key): PEAUTH Display name: PEAUTH Image path: system32\drivers\peauth.sys Image size: 878080 Image MD5: 6349F6ED9C623B44B52EA3C63C831A92 Start: 2 Type: 1 Error Control: 1 Service (registry key): PerfDisk Start: 0 Type: 0 Error Control: 0 Service (registry key): PerfNet Start: 0 Type: 0 Error Control: 0 Service (registry key): PerfOS Start: 0 Type: 0 Error Control: 0 Service (registry key): PerfProc Start: 0 Type: 0 Error Control: 0 Service (registry key): pla Display name: @%systemroot%\system32\pla.dll,-500 Description: @%systemroot%\system32\pla.dll,-501 Object name: NT AUTHORITY\LocalService Image path: %SystemRoot%\System32\svchost.exe -k LocalServiceNoNetwork Image size: 22016 Image MD5: 10DA15933D582D2FEDCF705EFE394B09 Start: 3 Type: 32 Error Control: 1 Depends On services: RPCSS Service (registry key): Planificateur LiveUpdate automatique Display name: Planificateur LiveUpdate automatique Description: Gère la planification des sessions de LiveUpdate automatique Object name: LocalSystem Image path: "C:\Program Files\Symantec\LiveUpdate\ALUSchedulerSvc.exe" Start: 2 Type: 16 Error Control: 1 Depends On services: RPCSS Service (registry key): PlugPlay Display name: @%SystemRoot%\system32\umpnpmgr.dll,-100 Description: @%SystemRoot%\system32\umpnpmgr.dll,-101 Object name: LocalSystem Image path: %SystemRoot%\system32\svchost.exe -k DcomLaunch Image size: 22016 Image MD5: 10DA15933D582D2FEDCF705EFE394B09 Start: 2 Type: 32 Error Control: 1 Service (registry key): PNRPAutoReg Display name: @%SystemRoot%\system32\p2psvc.dll,-8002 Description: @%SystemRoot%\system32\p2psvc.dll,-8003 Object name: NT AUTHORITY\LocalService Image path: %SystemRoot%\System32\svchost.exe -k LocalServiceNetworkRestricted Image size: 22016 Image MD5: 10DA15933D582D2FEDCF705EFE394B09 Start: 3 Type: 32 Error Control: 1 Depends On services: pnrpsvc Service (registry key): PNRPsvc Display name: @%SystemRoot%\system32\p2psvc.dll,-8000 Description: @%SystemRoot%\system32\p2psvc.dll,-8001 Object name: NT AUTHORITY\LocalService Image path: %SystemRoot%\System32\svchost.exe -k LocalServiceNetworkRestricted Image size: 22016 Image MD5: 10DA15933D582D2FEDCF705EFE394B09 Start: 3 Type: 32 Error Control: 1 Depends On services: p2pimsvc Service (registry key): PolicyAgent Display name: @%SystemRoot%\System32\polstore.dll,-5010 Description: @%SystemRoot%\system32\polstore.dll,-5011 Object name: NT Authority\NetworkService Image path: %SystemRoot%\system32\svchost.exe -k NetworkServiceNetworkRestricted Image size: 22016 Image MD5: 10DA15933D582D2FEDCF705EFE394B09 Start: 2 Type: 32 Error Control: 1 Depends On services: Tcpip,bfe Service (registry key): PortProxy Start: 0 Type: 0 Error Control: 0 Service (registry key): PptpMiniport Display name: Miniport réseau étendu WAN (PPTP) Description: Miniport réseau étendu WAN (PPTP) Image path: system32\DRIVERS\raspptp.sys Image size: 61440 Image MD5: 6C359AC71D7B550A0D41F9DB4563CE05 Start: 3 Type: 1 Error Control: 1 Service (registry key): Processor Display name: Processor Driver Image path: \SystemRoot\system32\drivers\processr.sys Start: 4 Type: 1 Error Control: 1 Service (registry key): ProfSvc Display name: @%systemroot%\system32\profsvc.dll,-300 Description: @%systemroot%\system32\profsvc.dll,-301 Object name: LocalSystem Image path: %systemroot%\system32\svchost.exe -k netsvcs Image size: 22016 Image MD5: 10DA15933D582D2FEDCF705EFE394B09 Start: 2 Type: 32 Error Control: 1 Depends On services: RpcSs Service (registry key): ProtectedStorage Display name: @%systemroot%\system32\psbase.dll,-300 Description: @%systemroot%\system32\psbase.dll,-301 Object name: LocalSystem Image path: %SystemRoot%\system32\lsass.exe Image size: 7680 Image MD5: 6A0E382E74280E4CC0DF17FE2661D003 Start: 3 Type: 32 Error Control: 1 Depends On services: RpcSs Service (registry key): Ps2 Display name: PS2 Image path: system32\DRIVERS\PS2.sys Image size: 19072 Image MD5: 390C204CED3785609AB24E9C52054A84 Start: 3 Type: 1 Error Control: 1 Service (registry key): PSched Display name: @%SystemRoot%\System32\drivers\pacer.sys,-101 Description: @%SystemRoot%\System32\drivers\pacer.sys,-101 Image path: system32\DRIVERS\pacer.sys Image size: 70144 Image MD5: B74EDF14453C9987E99E66535047EBEE Start: 1 Type: 1 Error Control: 1 Service (registry key): PxHelp20 Display name: PxHelp20 Image path: System32\Drivers\PxHelp20.sys Image size: 36528 Image MD5: FEFFCFDC528764A04C8ED63D5FA6E711 Start: 0 Type: 1 Error Control: 1 Service (registry key): ql2300 Display name: QLogic Fibre Channel Miniport Driver Image path: \SystemRoot\system32\drivers\ql2300.sys Start: 4 Type: 1 Error Control: 1 Service (registry key): ql40xx Display name: QLogic iSCSI Miniport Driver Image path: \SystemRoot\system32\drivers\ql40xx.sys Start: 4 Type: 1 Error Control: 1 Service (registry key): QWAVE Display name: @%SystemRoot%\system32\qwave.dll,-1 Description: @%SystemRoot%\system32\qwave.dll,-2 Object name: NT AUTHORITY\LocalService Image path: %windir%\system32\svchost.exe -k LocalService Image size: 22016 Image MD5: 10DA15933D582D2FEDCF705EFE394B09 Start: 3 Type: 32 Error Control: 1 Depends On services: rpcss,psched,QWAVEdrv,LLTDIO Service (registry key): QWAVEdrv Display name: @%SystemRoot%\system32\drivers\qwavedrv.sys,-1 Description: @%SystemRoot%\system32\drivers\qwavedrv.sys,-2 Image path: \SystemRoot\system32\drivers\qwavedrv.sys Start: 3 Type: 1 Error Control: 1 Service (registry key): RasAcd Display name: Remote Access Auto Connection Driver Description: Remote Access Auto Connection Driver Image path: System32\DRIVERS\rasacd.sys Image size: 11776 Image MD5: BD7B30F55B3649506DD8B3D38F571D2A Start: 1 Type: 1 Error Control: 1 Service (registry key): RasAuto Display name: @%Systemroot%\system32\rasauto.dll,-200 Description: @%Systemroot%\system32\rasauto.dll,-201 Object name: localSystem Image path: %SystemRoot%\system32\svchost.exe -k netsvcs Image size: 22016 Image MD5: 10DA15933D582D2FEDCF705EFE394B09 Start: 3 Type: 32 Error Control: 1 Depends On services: RasMan,Tapisrv Service (registry key): Rasl2tp Display name: Miniport réseau étendu WAN (L2TP) Description: Miniport réseau étendu WAN (L2TP) Image path: system32\DRIVERS\rasl2tp.sys Image size: 75776 Image MD5: 88587DD843E2059848995B407B67F6CF Start: 3 Type: 1 Error Control: 1 Service (registry key): RasMan Display name: @%Systemroot%\system32\rasmans.dll,-200 Description: @%Systemroot%\system32\rasmans.dll,-201 Object name: localSystem Image path: %SystemRoot%\system32\svchost.exe -k netsvcs Image size: 22016 Image MD5: 10DA15933D582D2FEDCF705EFE394B09 Start: 3 Type: 32 Error Control: 1 Depends On services: Tapisrv Service (registry key): RasPppoe Display name: Pilote PPPOE d'accès à distance Description: Pilote PPPOE d'accès à distance Image path: system32\DRIVERS\raspppoe.sys Image size: 41472 Image MD5: CCF4E9C6CBBAC81437F88CB2AE0B6C96 Start: 3 Type: 1 Error Control: 1 Service (registry key): rdbss Display name: Redirected Buffering Sub Sysytem Description: Provides the framework for network mini-redirectors Image path: system32\DRIVERS\rdbss.sys Image size: 222208 Image MD5: 54129C5D9581BBEC8BD1EBD3BA813F47 Start: 1 Type: 2 Error Control: 1 Depends On services: Mup Service (registry key): RDPCDD Display name: RDPCDD Description: RDPDD Chained DD Image path: System32\DRIVERS\RDPCDD.sys Image size: 6144 Image MD5: 794585276B5D7FCA9F3FC15543F9F0B9 Start: 1 Type: 1 Error Control: 0 Service (registry key): RDPDD Start: 0 Type: 0 Error Control: 0 Service (registry key): rdpdr Display name: Terminal Server Device Redirector Driver Image path: \SystemRoot\system32\drivers\rdpdr.sys Start: 4 Type: 1 Error Control: 1 Service (registry key): RDPENCDD Display name: RDP Encoder Mirror Driver Description: RDP Encoder Mirror Driver Image path: system32\drivers\rdpencdd.sys Image size: 6144 Image MD5: 980B56E2E273E19D3A9D72D5C420F008 Start: 1 Type: 1 Error Control: 0 Service (registry key): RDPNP Display name: @%systemroot%\system32\drprov.dll,-100 Description: @%systemroot%\system32\drprov.dll,-101 Start: 0 Type: 0 Error Control: 0 Service (registry key): RDPWD Display name: RDP Winstation Driver Start: 3 Type: 1 Error Control: 0 Service (registry key): RemoteAccess Display name: @%Systemroot%\system32\mprdim.dll,-200 Description: @%Systemroot%\system32\mprdim.dll,-201 Object name: localSystem Image path: %SystemRoot%\system32\svchost.exe -k netsvcs Image size: 22016 Image MD5: 10DA15933D582D2FEDCF705EFE394B09 Start: 4 Type: 32 Error Control: 1 Depends On services: RpcSS,RasMan,bfe Depends On group: NetBIOSGroup Service (registry key): RemoteRegistry Display name: @regsvc.dll,-1 Description: @regsvc.dll,-2 Object name: NT AUTHORITY\LocalService Image path: %SystemRoot%\system32\svchost.exe -k regsvc Image size: 22016 Image MD5: 10DA15933D582D2FEDCF705EFE394B09 Start: 3 Type: 32 Error Control: 1 Depends On services: RPCSS Service (registry key): RpcLocator Display name: @%systemroot%\system32\Locator.exe,-2 Description: @%systemroot%\system32\Locator.exe,-3 Object name: NT AUTHORITY\NetworkService Image path: %SystemRoot%\system32\locator.exe Image size: 7680 Image MD5: 5123F83CBC4349D065534EEB6BBDC42B Start: 3 Type: 16 Error Control: 1 Service (registry key): RpcSs Display name: @oleres.dll,-5010 Description: @oleres.dll,-5011 Object name: NT AUTHORITY\NetworkService Image path: %SystemRoot%\system32\svchost.exe -k rpcss Image size: 22016 Image MD5: 10DA15933D582D2FEDCF705EFE394B09 Start: 2 Type: 32 Error Control: 1 Depends On services: DcomLaunch Service (registry key): rspndr Display name: Link-Layer Topology Discovery Responder Image path: system32\DRIVERS\rspndr.sys Image size: 60416 Image MD5: 97E939D2128FEC5D5A3E6E79B290A2F4 Start: 2 Type: 1 Error Control: 1 Service (registry key): SamSs Display name: @%SystemRoot%\system32\samsrv.dll,-1 Description: @%SystemRoot%\system32\samsrv.dll,-2 Object name: LocalSystem Image path: %SystemRoot%\system32\lsass.exe Image size: 7680 Image MD5: 6A0E382E74280E4CC0DF17FE2661D003 Start: 2 Type: 32 Error Control: 1 Depends On services: RPCSS Service (registry key): sbp2port Display name: SBP-2 Transport/Protocol Bus Driver Image path: \SystemRoot\system32\drivers\sbp2port.sys Start: 4 Type: 1 Error Control: 1 Service (registry key): SCardSvr Display name: @%SystemRoot%\System32\SCardSvr.dll,-1 Description: @%SystemRoot%\System32\SCardSvr.dll,-5 Object name: NT AUTHORITY\LocalService Image path: %SystemRoot%\system32\svchost.exe -k LocalService Image size: 22016 Image MD5: 10DA15933D582D2FEDCF705EFE394B09 Start: 3 Type: 32 Error Control: 1 Depends On services: PlugPlay Service (registry key): Schedule Display name: @%SystemRoot%\system32\schedsvc.dll,-100 Description: @%SystemRoot%\system32\schedsvc.dll,-101 Object name: LocalSystem Image path: %systemroot%\system32\svchost.exe -k netsvcs Image size: 22016 Image MD5: 10DA15933D582D2FEDCF705EFE394B09 Start: 2 Type: 32 Error Control: 1 Depends On services: RPCSS,EventLog Service (registry key): SCPolicySvc Display name: @%SystemRoot%\System32\certprop.dll,-13 Description: @%SystemRoot%\System32\certprop.dll,-14 Object name: LocalSystem Image path: %SystemRoot%\system32\svchost.exe -k netsvcs Image size: 22016 Image MD5: 10DA15933D582D2FEDCF705EFE394B09 Start: 3 Type: 32 Error Control: 1 Depends On services: RpcSs Service (registry key): SDRSVC Display name: @%SystemRoot%\system32\sdrsvc.dll,-107 Description: @%SystemRoot%\system32\sdrsvc.dll,-102 Object name: localSystem Image path: %SystemRoot%\system32\svchost.exe -k SDRSVC Image size: 22016 Image MD5: 10DA15933D582D2FEDCF705EFE394B09 Start: 3 Type: 16 Error Control: 1 Depends On services: RPCSS Service (registry key): secdrv Display name: Security Driver Start: 2 Type: 1 Error Control: 1 Service (registry key): seclogon Display name: @%SystemRoot%\system32\seclogon.dll,-7001 Description: @%SystemRoot%\system32\seclogon.dll,-7000 Object name: LocalSystem Image path: %windir%\system32\svchost.exe -k netsvcs Image size: 22016 Image MD5: 10DA15933D582D2FEDCF705EFE394B09 Start: 2 Type: 32 Error Control: 1 Service (registry key): SENS Display name: @%SystemRoot%\system32\Sens.dll,-200 Description: @%SystemRoot%\system32\Sens.dll,-201 Object name: LocalSystem Image path: %SystemRoot%\system32\svchost.exe -k netsvcs Image size: 22016 Image MD5: 10DA15933D582D2FEDCF705EFE394B09 Start: 2 Type: 32 Error Control: 1 Depends On services: EventSystem Service (registry key): Serenum Display name: Serenum Filter Driver Image path: \SystemRoot\system32\drivers\serenum.sys Start: 3 Type: 1 Error Control: 1 Service (registry key): Serial Display name: Serial Port Driver Image path: \SystemRoot\system32\drivers\serial.sys Start: 3 Type: 1 Error Control: 0 Service (registry key): sermouse Display name: Serial Mouse Driver Image path: \SystemRoot\system32\drivers\sermouse.sys Start: 4 Type: 1 Error Control: 1 Service (registry key): ServiceModelEndpoint 3.0.0.0 Start: 0 Type: 0 Error Control: 0 Service (registry key): ServiceModelOperation 3.0.0.0 Start: 0 Type: 0 Error Control: 0 Service (registry key): ServiceModelService 3.0.0.0 Start: 0 Type: 0 Error Control: 0 Service (registry key): SessionEnv Display name: @%SystemRoot%\System32\SessEnv.dll,-1026 Description: @%SystemRoot%\System32\SessEnv.dll,-1027 Object name: localSystem Image path: %SystemRoot%\System32\svchost.exe -k netsvcs Image size: 22016 Image MD5: 10DA15933D582D2FEDCF705EFE394B09 Start: 3 Type: 32 Error Control: 1 Depends On services: RPCSS,LanmanWorkstation Service (registry key): sffdisk Display name: SFF Storage Class Driver Image path: \SystemRoot\system32\drivers\sffdisk.sys Start: 4 Type: 1 Error Control: 1 Service (registry key): sffp_mmc Display name: SFF Storage Protocol Driver for MMC Image path: \SystemRoot\system32\drivers\sffp_mmc.sys Start: 3 Type: 1 Error Control: 1 Service (registry key): sffp_sd Display name: SFF Storage Protocol Driver for SDBus Image path: \SystemRoot\system32\drivers\sffp_sd.sys Start: 3 Type: 1 Error Control: 1 Service (registry key): sfloppy Display name: High-Capacity Floppy Disk Drive Image path: \SystemRoot\system32\drivers\sfloppy.sys Start: 4 Type: 1 Error Control: 1 Service (registry key): SharedAccess Display name: @%SystemRoot%\system32\ipnathlp.dll,-106 Description: @%SystemRoot%\system32\ipnathlp.dll,-107 Object name: LocalSystem Image path: %SystemRoot%\System32\svchost.exe -k netsvcs Image size: 22016 Image MD5: 10DA15933D582D2FEDCF705EFE394B09 Start: 4 Type: 32 Error Control: 1 Depends On services: Netman,WinMgmt,RasMan,BFE Service (registry key): ShellHWDetection Display name: @%SystemRoot%\System32\shsvcs.dll,-12288 Description: @%SystemRoot%\System32\shsvcs.dll,-12289 Object name: LocalSystem Image path: %SystemRoot%\System32\svchost.exe -k netsvcs Image size: 22016 Image MD5: 10DA15933D582D2FEDCF705EFE394B09 Start: 2 Type: 32 Error Control: 0 Depends On services: RpcSs Service (registry key): sisagp Display name: SIS AGP Bus Filter Image path: \SystemRoot\system32\drivers\sisagp.sys Start: 3 Type: 1 Error Control: 1 Service (registry key): SiSRaid2 Image path: \SystemRoot\system32\drivers\sisraid2.sys Start: 4 Type: 1 Error Control: 1 Service (registry key): SiSRaid4 Image path: \SystemRoot\system32\drivers\sisraid4.sys Start: 4 Type: 1 Error Control: 1 Service (registry key): slsvc Display name: @%SystemRoot%\system32\SLsvc.exe,-101 Description: @%SystemRoot%\system32\SLsvc.exe,-100 Object name: NT AUTHORITY\NetworkService Image path: %SystemRoot%\system32\SLsvc.exe Image size: 2592256 Image MD5: 7610645679BB5994210D21A347E0C479 Start: 2 Type: 16 Error Control: 1 Depends On services: RpcSs Service (registry key): SLUINotify Display name: @%SystemRoot%\system32\SLUINotify.dll,-103 Description: @%SystemRoot%\system32\SLUINotify.dll,-102 Object name: NT AUTHORITY\LocalService Image path: %SystemRoot%\system32\svchost.exe -k LocalService Image size: 22016 Image MD5: 10DA15933D582D2FEDCF705EFE394B09 Start: 3 Type: 32 Error Control: 1 Depends On services: SLSvc,netprofm,EventSystem Service (registry key): Smb Display name: @%SystemRoot%\system32\tcpipcfg.dll,-50005 Description: @%SystemRoot%\system32\tcpipcfg.dll,-50006 Image path: system32\DRIVERS\smb.sys Image size: 66048 Image MD5: AC0D90738ADB51A6FD12FF00874A2162 Start: 1 Type: 1 Error Control: 1 Depends On services: Tcpip Service (registry key): SMSvcHost 3.0.0.0 Start: 0 Type: 0 Error Control: 0 Service (registry key): SNMPTRAP Display name: @%SystemRoot%\system32\snmptrap.exe,-3 Description: @%SystemRoot%\system32\snmptrap.exe,-4 Object name: NT AUTHORITY\LocalService Image path: %SystemRoot%\System32\snmptrap.exe Image size: 12800 Image MD5: 2A146A055B4401C16EE62D18B8E2A032 Start: 3 Type: 16 Error Control: 1 Service (registry key): spldr Display name: Security Processor Loader Driver Start: 0 Type: 1 Error Control: 3 Service (registry key): Spooler Display name: @%systemroot%\system32\spoolsv.exe,-1 Description: @%systemroot%\system32\spoolsv.exe,-2 Object name: LocalSystem Image path: %SystemRoot%\System32\spoolsv.exe Image size: 124928 Image MD5: DA612EF2556776DF2630B68BF2D48935 Start: 2 Type: 272 Error Control: 1 Depends On services: RPCSS,http Service (registry key): srv Image path: System32\DRIVERS\srv.sys Image size: 290304 Image MD5: 2C677528B24D64D22886ECBE5CD97F20 Start: 3 Type: 2 Error Control: 1 Depends On services: srv2 Service (registry key): srv2 Display name: srv2 Description: Default SDDL for Windows Resource Protected file Image path: System32\DRIVERS\srv2.sys Image size: 129536 Image MD5: 382BAF4DCBD7648CED6C64A8A1E335B2 Start: 3 Type: 2 Error Control: 1 Depends On services: srvnet Service (registry key): srvnet Image path: System32\DRIVERS\srvnet.sys Image size: 85504 Image MD5: F8E47A77E1690D8574962B69CB22BEB3 Start: 3 Type: 2 Error Control: 1 Service (registry key): SSDPSRV Display name: @%systemroot%\system32\ssdpsrv.dll,-100 Description: @%systemroot%\system32\ssdpsrv.dll,-101 Object name: NT AUTHORITY\LocalService Image path: %SystemRoot%\system32\svchost.exe -k LocalService Image size: 22016 Image MD5: 10DA15933D582D2FEDCF705EFE394B09 Start: 3 Type: 32 Error Control: 1 Depends On services: HTTP Service (registry key): stisvc Display name: @%SystemRoot%\system32\wiaservc.dll,-9 Description: @%SystemRoot%\system32\wiaservc.dll,-10 Object name: NT Authority\LocalService Image path: %SystemRoot%\system32\svchost.exe -k imgsvc Image size: 22016 Image MD5: 10DA15933D582D2FEDCF705EFE394B09 Start: 2 Type: 16 Error Control: 1 Depends On services: RpcSs,ShellHWDetection Service (registry key): stllssvr Display name: stllssvr Object name: LocalSystem Image path: "c:\Program Files\Common Files\SureThing Shared\stllssvr.exe" Image size: 78752 Image MD5: D4CE4D370A26AE1BF41BE9F69D24D049 Start: 3 Type: 16 Error Control: 0 Service (registry key): swenum Display name: Pilote de bus logiciel Image path: system32\DRIVERS\swenum.sys Image size: 12776 Image MD5: 1379BDB336F8158C176A465E30759F57 Start: 3 Type: 1 Error Control: 1 Service (registry key): swprv Display name: @%SystemRoot%\System32\swprv.dll,-103 Description: @%SystemRoot%\System32\swprv.dll,-102 Object name: LocalSystem Image path: %SystemRoot%\System32\svchost.exe -k swprv Image size: 22016 Image MD5: 10DA15933D582D2FEDCF705EFE394B09 Start: 3 Type: 16 Error Control: 1 Depends On services: RPCSS Service (registry key): Symc8xx Image path: \SystemRoot\system32\drivers\symc8xx.sys Start: 4 Type: 1 Error Control: 1 Service (registry key): Sym_hi Image path: \SystemRoot\system32\drivers\sym_hi.sys Start: 4 Type: 1 Error Control: 1 Service (registry key): Sym_u3 Image path: \SystemRoot\system32\drivers\sym_u3.sys Start: 4 Type: 1 Error Control: 1 Service (registry key): SysMain Display name: @%SystemRoot%\system32\sysmain.dll,-1000 Description: @%SystemRoot%\system32\sysmain.dll,-1001 Object name: LocalSystem Image path: %systemroot%\system32\svchost.exe -k LocalSystemNetworkRestricted Image size: 22016 Image MD5: 10DA15933D582D2FEDCF705EFE394B09 Start: 2 Type: 32 Error Control: 0 Depends On services: rpcss,fileinfo Service (registry key): TabletInputService Display name: @%SystemRoot%\system32\TabSvc.dll,-100 Description: @%SystemRoot%\system32\TabSvc.dll,-101 Object name: LocalSystem Image path: %SystemRoot%\System32\svchost.exe -k LocalSystemNetworkRestricted Image size: 22016 Image MD5: 10DA15933D582D2FEDCF705EFE394B09 Start: 2 Type: 32 Error Control: 1 Depends On services: PlugPlay,RpcSs Service (registry key): TapiSrv Display name: @%SystemRoot%\system32\tapisrv.dll,-10100 Description: @%SystemRoot%\system32\tapisrv.dll,-10101 Object name: NT AUTHORITY\NetworkService Image path: %SystemRoot%\System32\svchost.exe -k NetworkService Image size: 22016 Image MD5: 10DA15933D582D2FEDCF705EFE394B09 Start: 3 Type: 32 Error Control: 1 Depends On services: PlugPlay,RpcSs Service (registry key): TBS Display name: @%SystemRoot%\system32\tbssvc.dll,-100 Description: @%SystemRoot%\system32\tbssvc.dll,-101 Object name: NT AUTHORITY\LocalService Image path: %SystemRoot%\System32\svchost.exe -k LocalService Image size: 22016 Image MD5: 10DA15933D582D2FEDCF705EFE394B09 Start: 3 Type: 32 Error Control: 1 Service (registry key): Tcpip Display name: @%SystemRoot%\system32\tcpipcfg.dll,-50003 Description: @%SystemRoot%\system32\tcpipcfg.dll,-50003 Image path: System32\drivers\tcpip.sys Image size: 803840 Image MD5: D993AAC691DEEC99A064420FAF3437E0 Start: 1 Type: 1 Error Control: 1 Service (registry key): Tcpip6 Display name: Microsoft IPv6 Protocol Driver Description: Microsoft IPv6 Protocol Driver Image path: system32\DRIVERS\tcpip.sys Image size: 803840 Image MD5: D993AAC691DEEC99A064420FAF3437E0 Start: 3 Type: 1 Error Control: 1 Depends On services: Tcpip Service (registry key): tcpipreg Display name: TCP/IP Registry Compatibility Description: Provides compatibility for legacy applications which interact with TCP/IP through the registry. If this service is stopped, certain applications may have impaired functionality. Image path: System32\drivers\tcpipreg.sys Image size: 27648 Image MD5: 5CE0C4A7B12D0067DAD527D72B68C726 Start: 2 Type: 1 Error Control: 1 Depends On services: tcpip Service (registry key): TDPIPE Display name: TDPIPE Image path: system32\drivers\tdpipe.sys Image size: 17920 Image MD5: 964248AEF49C31FA6A93201A73FFAF50 Start: 3 Type: 1 Error Control: 1 Service (registry key): TDTCP Display name: TDTCP Image path: system32\drivers\tdtcp.sys Image size: 28672 Image MD5: 7D2C1AE1648A60FCE4AA0F7982E419D3 Start: 3 Type: 1 Error Control: 1 Service (registry key): tdx Display name: @%SystemRoot%\system32\tcpipcfg.dll,-50004 Description: @%SystemRoot%\system32\tcpipcfg.dll,-50004 Image path: system32\DRIVERS\tdx.sys Image size: 68096 Image MD5: AB4FDE8AF4A0270A46A001C08CBCE1C2 Start: 1 Type: 1 Error Control: 1 Depends On services: Tcpip Service (registry key): TermDD Display name: Pilote de périphérique terminal Image path: system32\DRIVERS\termdd.sys Image size: 50792 Image MD5: 2C549BD9DD091FBFAA0A2A48E82EC2FB Start: 1 Type: 1 Error Control: 1 Service (registry key): TermService Display name: @%SystemRoot%\System32\termsrv.dll,-268 Description: @%SystemRoot%\System32\termsrv.dll,-267 Object name: NT Authority\NetworkService Image path: %SystemRoot%\System32\svchost.exe -k NetworkService Image size: 22016 Image MD5: 10DA15933D582D2FEDCF705EFE394B09 Start: 2 Type: 32 Error Control: 1 Depends On services: RPCSS,TermDD Service (registry key): Themes Display name: @%SystemRoot%\System32\shsvcs.dll,-8192 Description: @%SystemRoot%\System32\shsvcs.dll,-8193 Object name: LocalSystem Image path: %SystemRoot%\System32\svchost.exe -k netsvcs Image size: 22016 Image MD5: 10DA15933D582D2FEDCF705EFE394B09 Start: 2 Type: 32 Error Control: 1 Service (registry key): THREADORDER Display name: @%systemroot%\system32\mmcss.dll,-102 Description: @%systemroot%\system32\mmcss.dll,-103 Object name: NT AUTHORITY\LocalService Image path: %SystemRoot%\system32\svchost.exe -k LocalService Image size: 22016 Image MD5: 10DA15933D582D2FEDCF705EFE394B09 Start: 3 Type: 32 Error Control: 1 Service (registry key): TrkWks Display name: @%SystemRoot%\system32\trkwks.dll,-1 Description: @%SystemRoot%\system32\trkwks.dll,-2 Object name: LocalSystem Image path: %SystemRoot%\System32\svchost.exe -k LocalSystemNetworkRestricted Image size: 22016 Image MD5: 10DA15933D582D2FEDCF705EFE394B09 Start: 2 Type: 32 Error Control: 1 Depends On services: RpcSs Service (registry key): TrustedInstaller Display name: @%SystemRoot%\servicing\TrustedInstaller.exe,-100 Description: @%SystemRoot%\servicing\TrustedInstaller.exe,-101 Object name: localSystem Image path: %SystemRoot%\servicing\TrustedInstaller.exe Image size: 26112 Image MD5: CD987375605E6F9C3230E99EDA9D9C6D Start: 3 Type: 16 Error Control: 1 Depends On services: PlugPlay Service (registry key): TSDDD Start: 0 Type: 0 Error Control: 0 Service (registry key): tssecsrv Display name: Terminal Services Security Filter Driver Description: Terminal Services Security Filter Driver Image path: System32\DRIVERS\tssecsrv.sys Image size: 23552 Image MD5: 29F0ECA726F0D51F7E048BDB0B372F29 Start: 3 Type: 1 Error Control: 0 Service (registry key): tunmp Display name: Pilote de carte miniport Microsoft Tun Image path: system32\DRIVERS\tunmp.sys Image size: 15360 Image MD5: 80FC4AC81602C88E7D23618E6EFBA2C6 Start: 3 Type: 1 Error Control: 1 Service (registry key): tunnel Display name: Pilote de carte miniport Microsoft IPv6 Tunnel Image path: system32\DRIVERS\tunnel.sys Image size: 23040 Image MD5: 52DAA1FA3B5A40D6A6627B44C60A9B78 Start: 3 Type: 1 Error Control: 1 Service (registry key): uagp35 Display name: Microsoft AGPv3.5 Filter Image path: \SystemRoot\system32\drivers\uagp35.sys Start: 3 Type: 1 Error Control: 1 Service (registry key): udfs Display name: udfs Description: Reads/Writes UDF 1.02,1.5,2.0x,2.5 disc formats, usually found on C/DVD discs. (Core) (All pieces) Image path: system32\DRIVERS\udfs.sys Image size: 225280 Image MD5: 6348DA98707CEDA8A0DFB05820E17732 Start: 4 Type: 2 Error Control: 1 Service (registry key): UGatherer Start: 0 Type: 0 Error Control: 0 Service (registry key): UGTHRSVC Start: 0 Type: 0 Error Control: 0 Service (registry key): UI0Detect Display name: @%SystemRoot%\system32\ui0detect.exe,-101 Description: @%SystemRoot%\system32\ui0detect.exe,-102 Object name: LocalSystem Image path: %SystemRoot%\system32\UI0Detect.exe Image size: 35840 Image MD5: 24A333F4F14DCFB6FF6D5A1B9E5D79DD Start: 3 Type: 272 Error Control: 1 Service (registry key): uliagpkx Display name: Uli AGP Bus Filter Image path: \SystemRoot\system32\drivers\uliagpkx.sys Start: 3 Type: 1 Error Control: 1 Service (registry key): uliahci Image path: \SystemRoot\system32\drivers\uliahci.sys Start: 4 Type: 1 Error Control: 1 Service (registry key): UlSata Image path: \SystemRoot\system32\drivers\ulsata.sys Start: 4 Type: 1 Error Control: 1 Service (registry key): ulsata2 Image path: \SystemRoot\system32\drivers\ulsata2.sys Start: 4 Type: 1 Error Control: 1 Service (registry key): umbus Display name: Pilote d’énumérateur UMBus Image path: system32\DRIVERS\umbus.sys Image size: 34816 Image MD5: 3FB78F1D1DD86D87BECECD9DFFA24DD9 Start: 3 Type: 1 Error Control: 1 Service (registry key): upnphost Display name: @%systemroot%\system32\upnphost.dll,-213 Description: @%systemroot%\system32\upnphost.dll,-214 Object name: NT AUTHORITY\LocalService Image path: %SystemRoot%\system32\svchost.exe -k LocalService Image size: 22016 Image MD5: 10DA15933D582D2FEDCF705EFE394B09 Start: 2 Type: 32 Error Control: 1 Depends On services: SSDPSRV,HTTP Service (registry key): usb Start: 0 Type: 0 Error Control: 0 Service (registry key): usbccgp Display name: Pilote parent générique USB Microsoft Image path: system32\DRIVERS\usbccgp.sys Image size: 73216 Image MD5: 8BD3AE150D97BA4E633C6C5C51B41AE1 Start: 3 Type: 1 Error Control: 1 Service (registry key): usbcir Display name: eHome Infrared Receiver (USBCIR) Image path: \SystemRoot\system32\drivers\usbcir.sys Start: 4 Type: 1 Error Control: 1 Service (registry key): usbehci Display name: Pilote miniport de contrôleur d'hôte amélioré Microsoft USB 2.0 Image path: system32\DRIVERS\usbehci.sys Image size: 38400 Image MD5: 63FE924D8A1113C3BA6750693FBEC7D3 Start: 3 Type: 1 Error Control: 1 Service (registry key): usbhub Display name: Concentrateur USB2 Image path: system32\DRIVERS\usbhub.sys Image size: 191488 Image MD5: 5EDEC5510592C905E91817707DCE62A2 Start: 3 Type: 1 Error Control: 1 Service (registry key): usbohci Display name: Pilote miniport de contrôleur hôte ouvert USB Microsoft Image path: system32\DRIVERS\usbohci.sys Image size: 19456 Image MD5: 38DBC7DD6CC5A72011F187425384388B Start: 3 Type: 1 Error Control: 1 Service (registry key): usbprint Display name: Microsoft USB PRINTER Class Image path: \SystemRoot\system32\drivers\usbprint.sys Start: 4 Type: 1 Error Control: 1 Service (registry key): USBSTOR Display name: Pilote de stockage de masse USB Image path: system32\DRIVERS\USBSTOR.SYS Image size: 55296 Image MD5: 7887CE56934E7F104E98C975F47353C5 Start: 3 Type: 1 Error Control: 1 Service (registry key): usbuhci Display name: Microsoft USB Universal Host Controller Miniport Driver Image path: system32\DRIVERS\usbuhci.sys Image size: 22528 Image MD5: 325DBBACB8A36AF9988CCF40EAC228CC Start: 4 Type: 1 Error Control: 1 Service (registry key): usnjsvc Display name: Messenger Sharing Folders USN Journal Reader service Description: Service installed by Messenger to enable sharing scenarios Object name: LocalSystem Image path: "C:\Program Files\MSN Messenger\usnsvc.exe" Image size: 97136 Image MD5: C5B70A6AA947667CE0E5FC84A05EC8B6 Start: 3 Type: 16 Error Control: 1 Depends On services: rpcss,eventlog Service (registry key): UxSms Display name: @%SystemRoot%\system32\dwm.exe,-2000 Description: @%SystemRoot%\system32\dwm.exe,-2001 Object name: localSystem Image path: %SystemRoot%\System32\svchost.exe -k LocalSystemNetworkRestricted Image size: 22016 Image MD5: 10DA15933D582D2FEDCF705EFE394B09 Start: 2 Type: 32 Error Control: 1 Service (registry key): vds Display name: @%SystemRoot%\system32\vds.exe,-100 Description: @%SystemRoot%\system32\vds.exe,-101 Object name: LocalSystem Image path: %SystemRoot%\System32\vds.exe Image size: 392704 Image MD5: C9D0BAFEE0D0A2681F048CA61BC0DA96 Start: 3 Type: 16 Error Control: 1 Depends On services: RpcSs,PlugPlay Service (registry key): vga Image path: system32\DRIVERS\vgapnp.sys Image size: 26112 Image MD5: 7D92BE0028ECDEDEC74617009084B5EF Start: 3 Type: 1 Error Control: 0 Service (registry key): VgaSave Image path: \SystemRoot\System32\drivers\vga.sys Start: 1 Type: 1 Error Control: 0 Service (registry key): viaagp Display name: VIA AGP Bus Filter Image path: \SystemRoot\system32\drivers\viaagp.sys Start: 3 Type: 1 Error Control: 1 Service (registry key): ViaC7 Display name: VIA C7 Processor Driver Image path: \SystemRoot\system32\drivers\viac7.sys Start: 4 Type: 1 Error Control: 1 Service (registry key): viaide Image path: \SystemRoot\system32\drivers\viaide.sys Start: 4 Type: 1 Error Control: 3 Service (registry key): volmgr Display name: Pilote du Gestionnaire de volume Image path: system32\drivers\volmgr.sys Image size: 50280 Image MD5: 103E84C95832D0ED93507997CC7B54E8 Start: 0 Type: 1 Error Control: 3 Service (registry key): volmgrx Display name: Dynamic Volume Manager Description: Extension of the volume manager driver that manages software RAID volumes (spanned, striped, mirrored, RAID-5) on dynamic disks Image path: System32\drivers\volmgrx.sys Image size: 290408 Image MD5: 294DA8D3F965F6A8DB934A83C7B461FF Start: 0 Type: 1 Error Control: 3 Service (registry key): volsnap Display name: Volumes de stockage Image path: system32\drivers\volsnap.sys Image size: 208488 Image MD5: 11EF6C1CAEF76B685233450A126125D6 Start: 0 Type: 1 Error Control: 3 Service (registry key): vsmraid Image path: \SystemRoot\system32\drivers\vsmraid.sys Start: 4 Type: 1 Error Control: 1 Service (registry key): VSS Display name: @%systemroot%\system32\vssvc.exe,-102 Description: @%systemroot%\system32\vssvc.exe,-101 Object name: LocalSystem Image path: %systemroot%\system32\vssvc.exe Image size: 924160 Image MD5: E0E29D9EF2524ABD11749C7C2FD7F607 Start: 3 Type: 16 Error Control: 1 Depends On services: RPCSS Service (registry key): W32Time Display name: @%SystemRoot%\system32\w32time.dll,-200 Description: @%SystemRoot%\system32\w32time.dll,-201 Object name: NT AUTHORITY\LocalService Image path: %SystemRoot%\system32\svchost.exe -k LocalService Image size: 22016 Image MD5: 10DA15933D582D2FEDCF705EFE394B09 Start: 2 Type: 32 Error Control: 1 Service (registry key): W3SVC Start: 0 Type: 0 Error Control: 0 Service (registry key): WacomPen Display name: Wacom Serial Pen HID Driver Image path: \SystemRoot\system32\drivers\wacompen.sys Start: 4 Type: 1 Error Control: 1 Service (registry key): Wanarp Display name: Remote Access IP ARP Driver Description: Remote Access IP ARP Driver Image path: system32\DRIVERS\wanarp.sys Image size: 61952 Image MD5: 6E1A5BE9A0605F3D932FF35FBA2B22B3 Start: 3 Type: 1 Error Control: 1 Service (registry key): Wanarpv6 Display name: Remote Access IPv6 ARP Driver Description: Remote Access IPv6 ARP Driver Image path: system32\DRIVERS\wanarp.sys Image size: 61952 Image MD5: 6E1A5BE9A0605F3D932FF35FBA2B22B3 Start: 1 Type: 1 Error Control: 1 Service (registry key): wcncsvc Display name: @%SystemRoot%\system32\wcncsvc.dll,-3 Description: @%SystemRoot%\system32\wcncsvc.dll,-4 Object name: NT AUTHORITY\LocalService Image path: %SystemRoot%\System32\svchost.exe -k LocalService Image size: 22016 Image MD5: 10DA15933D582D2FEDCF705EFE394B09 Start: 3 Type: 32 Error Control: 1 Depends On services: rpcss Service (registry key): WcsPlugInService Display name: @%SystemRoot%\system32\WcsPlugInService.dll,-200 Description: @%SystemRoot%\system32\WcsPlugInService.dll,-201 Object name: NT AUTHORITY\LocalService Image path: %SystemRoot%\system32\svchost.exe -k wcssvc Image size: 22016 Image MD5: 10DA15933D582D2FEDCF705EFE394B09 Start: 3 Type: 32 Error Control: 1 Depends On services: RpcSs Service (registry key): Wd Display name: Microsoft Watchdog Timer Driver Image path: \SystemRoot\system32\drivers\wd.sys Start: 4 Type: 1 Error Control: 1 Service (registry key): Wdf01000 Display name: Kernel Mode Driver Frameworks service Image path: system32\drivers\Wdf01000.sys Image size: 492648 Image MD5: 5DFDBD5EF13E4D95BE6FC108E2ED4A67 Start: 0 Type: 1 Error Control: 1 Service (registry key): WdiServiceHost Display name: @%systemroot%\system32\wdi.dll,-502 Description: @%systemroot%\system32\wdi.dll,-503 Object name: NT AUTHORITY\LocalService Image path: %SystemRoot%\System32\svchost.exe -k wdisvc Image size: 22016 Image MD5: 10DA15933D582D2FEDCF705EFE394B09 Start: 3 Type: 32 Error Control: 1 Service (registry key): WdiSystemHost Display name: @%systemroot%\system32\wdi.dll,-500 Description: @%systemroot%\system32\wdi.dll,-501 Object name: LocalSystem Image path: %SystemRoot%\System32\svchost.exe -k LocalSystemNetworkRestricted Image size: 22016 Image MD5: 10DA15933D582D2FEDCF705EFE394B09 Start: 3 Type: 32 Error Control: 1 Service (registry key): WebClient Display name: @%systemroot%\system32\webclnt.dll,-100 Description: @%systemroot%\system32\webclnt.dll,-101 Object name: NT AUTHORITY\LocalService Image path: %SystemRoot%\system32\svchost.exe -k LocalService Image size: 22016 Image MD5: 10DA15933D582D2FEDCF705EFE394B09 Start: 2 Type: 32 Error Control: 1 Depends On services: MRxDAV Service (registry key): Wecsvc Display name: @%SystemRoot%\system32\wecsvc.dll,-200 Description: @%SystemRoot%\system32\wecsvc.dll,-201 Object name: NT AUTHORITY\NetworkService Image path: %SystemRoot%\system32\svchost.exe -k NetworkService Image size: 22016 Image MD5: 10DA15933D582D2FEDCF705EFE394B09 Start: 3 Type: 32 Error Control: 1 Service (registry key): wercplsupport Display name: @%SystemRoot%\System32\wercplsupport.dll,-101 Description: @%SystemRoot%\System32\wercplsupport.dll,-100 Object name: localSystem Image path: %SystemRoot%\System32\svchost.exe -k netsvcs Image size: 22016 Image MD5: 10DA15933D582D2FEDCF705EFE394B09 Start: 3 Type: 32 Error Control: 1 Service (registry key): WerSvc Display name: @%SystemRoot%\System32\wersvc.dll,-100 Description: @%SystemRoot%\System32\wersvc.dll,-101 Object name: localSystem Image path: %SystemRoot%\System32\svchost.exe -k WerSvcGroup Image size: 22016 Image MD5: 10DA15933D582D2FEDCF705EFE394B09 Start: 2 Type: 32 Error Control: 0 Service (registry key): WinDefend Display name: @%ProgramFiles%\Windows Defender\MsMpRes.dll,-103 Description: @%ProgramFiles%\Windows Defender\MsMpRes.dll,-3068 Object name: LocalSystem Image path: %SystemRoot%\System32\svchost.exe -k secsvcs Image size: 22016 Image MD5: 10DA15933D582D2FEDCF705EFE394B09 Start: 2 Type: 32 Error Control: 1 Depends On services: RpcSs Service (registry key): Windows Workflow Foundation 3.0.0.0 Start: 0 Type: 0 Error Control: 0 Service (registry key): WinHttpAutoProxySvc Display name: @%SystemRoot%\system32\winhttp.dll,-100 Description: @%SystemRoot%\system32\winhttp.dll,-101 Object name: NT AUTHORITY\LocalService Image path: %SystemRoot%\system32\svchost.exe -k LocalService Image size: 22016 Image MD5: 10DA15933D582D2FEDCF705EFE394B09 Start: 3 Type: 32 Error Control: 1 Depends On services: Dhcp Service (registry key): Winmgmt Display name: @%Systemroot%\system32\wbem\wmisvc.dll,-205 Description: @%Systemroot%\system32\wbem\wmisvc.dll,-204 Object name: localSystem Image path: %systemroot%\system32\svchost.exe -k netsvcs Image size: 22016 Image MD5: 10DA15933D582D2FEDCF705EFE394B09 Start: 2 Type: 32 Error Control: 0 Depends On services: RPCSS Service (registry key): WinRM Display name: @%Systemroot%\system32\wsmsvc.dll,-101 Description: @%Systemroot%\system32\wsmsvc.dll,-102 Object name: NT AUTHORITY\NetworkService Image path: %SystemRoot%\System32\svchost.exe -k NetworkService Image size: 22016 Image MD5: 10DA15933D582D2FEDCF705EFE394B09 Start: 3 Type: 32 Error Control: 1 Depends On services: RPCSS,HTTP Service (registry key): Winsock Start: 3 Type: 4 Error Control: 1 Service (registry key): WinSock2 Start: 0 Type: 0 Error Control: 0 Service (registry key): Wlansvc Display name: @%SystemRoot%\System32\wlansvc.dll,-257 Description: @%SystemRoot%\System32\wlansvc.dll,-258 Object name: LocalSystem Image path: %SystemRoot%\system32\svchost.exe -k LocalSystemNetworkRestricted Image size: 22016 Image MD5: 10DA15933D582D2FEDCF705EFE394B09 Start: 3 Type: 32 Error Control: 1 Depends On services: nativewifip,RpcSs,Ndisuio,Eaphost Service (registry key): WmiAcpi Display name: Microsoft Windows Management Interface for ACPI Image path: \SystemRoot\system32\drivers\wmiacpi.sys Start: 4 Type: 1 Error Control: 1 Service (registry key): WmiApRpl Start: 0 Type: 0 Error Control: 0 Service (registry key): wmiApSrv Display name: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 Description: @%Systemroot%\system32\wbem\wmiapsrv.exe,-111 Object name: localSystem Image path: %systemroot%\system32\wbem\WmiApSrv.exe Image size: 137216 Image MD5: A279323BEE5FFFAFDA222910BCE92132 Start: 3 Type: 16 Error Control: 1 Service (registry key): WMPNetworkSvc Display name: @%ProgramFiles%\Windows Media Player\wmpnetwk.exe,-101 Description: @%ProgramFiles%\Windows Media Player\wmpnetwk.exe,-102 Object name: NT AUTHORITY\NetworkService Image path: "%ProgramFiles%\Windows Media Player\wmpnetwk.exe" Image size: 895488 Image MD5: ACB2E63D50157E3EA7140F29D9E76A48 Start: 3 Type: 16 Error Control: 1 Depends On services: UPnPHost,http Service (registry key): WPCSvc Display name: @%SystemRoot%\system32\wpcsvc.dll,-100 Description: @%SystemRoot%\system32\wpcsvc.dll,-101 Object name: NT Authority\LocalService Image path: %SystemRoot%\system32\svchost.exe -k LocalServiceNetworkRestricted Image size: 22016 Image MD5: 10DA15933D582D2FEDCF705EFE394B09 Start: 3 Type: 32 Error Control: 1 Depends On services: RpcSs Service (registry key): WPDBusEnum Display name: @%SystemRoot%\system32\wpdbusenum.dll,-100 Description: @%SystemRoot%\system32\wpdbusenum.dll,-101 Object name: LocalSystem Image path: %SystemRoot%\system32\svchost.exe -k LocalSystemNetworkRestricted Image size: 22016 Image MD5: 10DA15933D582D2FEDCF705EFE394B09 Start: 2 Type: 32 Error Control: 1 Depends On services: RpcSs Service (registry key): ws2ifsl Display name: Winsock IFS driver Description: Winsock IFS driver Image path: \SystemRoot\system32\drivers\ws2ifsl.sys Start: 4 Type: 1 Error Control: 1 Service (registry key): wscsvc Display name: @%SystemRoot%\System32\wscsvc.dll,-200 Description: @%SystemRoot%\System32\wscsvc.dll,-201 Object name: NT AUTHORITY\LocalService Image path: %SystemRoot%\System32\svchost.exe -k LocalServiceNetworkRestricted Image size: 22016 Image MD5: 10DA15933D582D2FEDCF705EFE394B09 Start: 2 Type: 32 Error Control: 1 Depends On services: RpcSs,WinMgmt Service (registry key): WSearch Display name: @%systemroot%\system32\SearchIndexer.exe,-103 Description: @%systemroot%\system32\SearchIndexer.exe,-104 Object name: LocalSystem Image path: %systemroot%\system32\SearchIndexer.exe /Embedding Image size: 287744 Image MD5: 5DE40982E3AE45DC00586A93637B351B Start: 2 Type: 16 Error Control: 1 Depends On services: RPCSS Service (registry key): WSearchIdxPi Start: 0 Type: 0 Error Control: 0 Service (registry key): wuauserv Display name: @%systemroot%\system32\wuaueng.dll,-105 Description: @%systemroot%\system32\wuaueng.dll,-106 Object name: LocalSystem Image path: %systemroot%\system32\svchost.exe -k netsvcs Image size: 22016 Image MD5: 10DA15933D582D2FEDCF705EFE394B09 Start: 2 Type: 32 Error Control: 1 Depends On services: rpcss Service (registry key): WUDFRd Image path: system32\DRIVERS\WUDFRd.sys Image size: 82560 Image MD5: A2AAFCC8A204736296D937C7C545B53F Start: 3 Type: 1 Error Control: 1 Service (registry key): wudfsvc Display name: @%SystemRoot%\system32\wudfsvc.dll,-1000 Description: @%SystemRoot%\system32\wudfsvc.dll,-1001 Object name: LocalSystem Image path: %SystemRoot%\system32\svchost.exe -k LocalSystemNetworkRestricted Image size: 22016 Image MD5: 10DA15933D582D2FEDCF705EFE394B09 Start: 2 Type: 32 Error Control: 1 Depends On services: PlugPlay Service (registry key): xmlprov Start: 0 Type: 0 Error Control: 0 Service (registry key): {3A0F03F9-F336-4751-9B33-9A1F55F92F25} Start: 0 Type: 0 Error Control: 0

Cher Bruce, Le scan avec Avast! n'a rien détecté, j'ai fait un scan avec a_squared qui n'a détecté que Heuristic-Dialer que j'ai mis en quarantaine à plusieurs reprises mais qui revient à chaque fois, mais je crois qu'il s'agit d'un fichier légitime de Wanadoo. J'ai fait aussi un scan avec spybot qui trouve toujours Avenue, A Inc. et DoubleClick que j'ai supprimé plusieurs fois et qui reviennent. Aussi un scan avec Ad-Aware qui a trouvé "MRU List (14 au total) et Tracking Cookie (1 au total) que j'ai supprimé. J'ai refait un scan avec HijackThis en mode normal. Avec toujours le message d'erreur que j'ai signalé par deux fois, est-ce que c'est normal que j'ai ce message d'erreur ? Je te le retranscris : For some reason your system denied write access to the Hosts file. If any hijacked domains are in this file, HijackThis mays not be able to fix this. If that happens, you need to edit the file yourself. To do this, click Start, Run and type : notepad " C:\Windows\System32\drivers\etc\hosts" and press Enter, Find the line(s) HijackThis reports and delete them. Save the files as "hosts." (with quotes), and reboot.) " Ensuite autre fenêtre de dial : An unexpected error has occurred at porcedure modMain_CheckOtherItem() Error# - Path/File access error. Please email at merijn@spywareinfo.com, reporting the following : What you were trying to fix when the error occured, if applicable. How you can reproduce the error. A complete Hijackthis scan log, if possible. Windows version : Windows version:Windows NT 6.00.1904 Msie version 7.0.6000.16448 HijackThis version: 1.99.1 This message has been copied to your clipboard. Click ok to continue the rest of the scan HijackThis est-il compatible avec Vista ? A plus tard, et bonne journée, Lee Logfile of HijackThis v1.99.1 Scan saved at 01:20:17, on 07/06/2007 Platform: Unknown Windows (WinNT 6.00.1904) MSIE: Internet Explorer v7.00 (7.00.6000.16386) Running processes: C:\Windows\system32\Dwm.exe C:\Windows\Explorer.EXE C:\Windows\system32\taskeng.exe C:\Program Files\a-squared Anti-Malware\a2guard.exe C:\Program Files\Windows Sidebar\sidebar.exe C:\WINDOWS\ehome\ehtray.exe C:\Program Files\Windows Media Player\wmpnscfg.exe C:\Program Files\Google\Google Updater\GoogleUpdater.exe C:\Windows\ehome\ehmsas.exe C:\Program Files\Alwil Software\Avast4\ashDisp.exe C:\Program Files\MSN Messenger\msnmsgr.exe C:\Program Files\eMule\emule.exe C:\Program Files\Windows Defender\MSASCui.exe C:\WINDOWS\System32\notepad.exe C:\Users\VISTA\Desktop\test.exe.exe R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896 R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.télérama.fr/ R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://ie.redirect.hp.com/svs/rdr?TYPE=3&a...&pf=desktop R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896 R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896 R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://ie.redirect.hp.com/svs/rdr?TYPE=3&a...&pf=desktop R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant = R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch = R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = R3 - URLSearchHook: Yahoo! Toolbar avec bloqueur de fenêtres pop-up - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll O1 - Hosts: ::1 localhost O2 - BHO: Yahoo! Toolbar Helper - {02478D38-C3F9-4EFB-9B51-7695ECA05670} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll O2 - BHO: Aide pour le lien d'Adobe PDF Reader - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll O2 - BHO: (no name) - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll O2 - BHO: EoBho Class - {64F56FC1-1272-44CD-BA6E-39723696E350} - C:\Program Files\eoRezo\EoAdv\EoRezoBHO.dll (file missing) O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file) O2 - BHO: Windows Live Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar1.dll O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\2.0.301.5672\swg.dll O3 - Toolbar: Yahoo! Toolbar avec bloqueur de fenêtres pop-up - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar1.dll O4 - HKLM\..\Run: [a-squared] "C:\Program Files\a-squared Anti-Malware\a2guard.exe" O4 - HKCU\..\Run: [sidebar] C:\Program Files\Windows Sidebar\sidebar.exe /autoRun O4 - HKCU\..\Run: [ehTray.exe] C:\Windows\ehome\ehTray.exe O4 - HKCU\..\Run: [iSUSPM Startup] C:\PROGRA~1\COMMON~1\INSTAL~1\UPDATE~1\isuspm.exe -startup O4 - HKCU\..\Run: [WMPNSCFG] C:\Program Files\Windows Media Player\WMPNSCFG.exe O4 - HKCU\..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe O4 - Global Startup: Adobe Reader Synchronizer.lnk = C:\Program Files\Adobe\Reader 8.0\Reader\AdobeCollabSync.exe O4 - Global Startup: Lancement rapide d'Adobe Reader.lnk = C:\Program Files\Adobe\Reader 8.0\Reader\reader_sl.exe O4 - Global Startup: Outil de mise à jour Google.lnk = C:\Program Files\Google\Google Updater\GoogleUpdater.exe O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0\bin\npjpi150.dll O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0\bin\npjpi150.dll O10 - Unknown file in Winsock LSP: c:\windows\system32\nlaapi.dll O10 - Unknown file in Winsock LSP: c:\windows\system32\napinsp.dll O11 - Options group: [iNTERNATIONAL] International* O13 - Gopher Prefix: O16 - DPF: {0EB0E74A-2A76-4AB3-A7FB-9BD8C29F7F75} (CKAVWebScan Object) - http://webscanner.kaspersky.fr/kavwebscan_unicode.cab O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} (Java Runtime Environment 1.5.0) - http://javadl-esd.sun.com/update/1.5.0/jin...indows-i586.cab O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/shoc...ash/swflash.cab O18 - Protocol: livecall - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\MSNMES~1\MSGRAP~1.DLL O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\MSNMES~1\MSGRAP~1.DLL O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - ALWIL Software - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe O23 - Service: avast! Antivirus - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashServ.exe O23 - Service: avast! Mail Scanner - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe" /service (file missing) O23 - Service: avast! Web Scanner - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe" /service (file missing) O23 - Service: Symantec Lic NetConnect service (CLTNetCnService) - Unknown owner - c:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe" /h ccCommon (file missing) O23 - Service: @%SystemRoot%\ehome\ehstart.dll,-101 (ehstart) - Unknown owner - %windir%\system32\svchost.exe (file missing) O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe O23 - Service: LightScribeService Direct Disc Labeling Service (LightScribeService) - Hewlett-Packard Company - c:\Program Files\Common Files\LightScribe\LSSrvc.exe O23 - Service: Planificateur LiveUpdate automatique - Unknown owner - C:\Program Files\Symantec\LiveUpdate\ALUSchedulerSvc.exe (file missing) O23 - Service: @%SystemRoot%\system32\qwave.dll,-1 (QWAVE) - Unknown owner - %windir%\system32\svchost.exe (file missing) O23 - Service: @%SystemRoot%\system32\seclogon.dll,-7001 (seclogon) - Unknown owner - %windir%\system32\svchost.exe (file missing) O23 - Service: stllssvr - MicroVision Development, Inc. - c:\Program Files\Common Files\SureThing Shared\stllssvr.exe O23 - Service: @%ProgramFiles%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - %ProgramFiles%\Windows Media Player\wmpnetwk.exe (file missing)

Oui je suis sous Avast, je fais un scan et te dis ce qu'il en est... A plusss... Lee

Bruce... Encore moi... Il est indiqué sur Kasper que le compatibilité avec Vista est en cours de développement, c'est peut-être pour ça que je n'arrive pas à faire le scan correctement ? A plussss... Lee

Bruce... Je me prends le chou avec Kasper, je pense avoir bien réglé les paramètres pour Active X mais comme je suis sous IE7 je n'en suis pas sûre, j'ai essayé de différente façon, mais à la fin du scan j'ai une boite de dialogue qui s'ouvre : " Certains composants sont endommagés ou ne sont pas correctement installés. Veuillez recommencez l'installation" Que dois-je faire ? Merci pour ton aide, Lee

Re... Re... Re... Bruce Ok j'ai trouvé le fichier SMINST et je l'ai supprimer. J'ai refait un scan HijackThis en mode sans échec (voir ci-dessous). Pour les contrôles active X j'ai paramétrer IE (mais je me sers essentiellement de Firefox) Je vais à présent scanner avec Kaspersky en utilisant IE et t'envoie le rapport. Bonne soirée, Lee Rapport HijackThis : Logfile of HijackThis v1.99.1 Scan saved at 20:59:18, on 06/06/2007 Platform: Unknown Windows (WinNT 6.00.1904) MSIE: Internet Explorer v7.00 (7.00.6000.16386) Running processes: C:\Windows\Explorer.EXE C:\Users\VISTA\Desktop\test.exe.exe R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896 R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.télérama.fr/ R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://ie.redirect.hp.com/svs/rdr?TYPE=3&a...&pf=desktop R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896 R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896 R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://ie.redirect.hp.com/svs/rdr?TYPE=3&a...&pf=desktop R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant = R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch = R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = R3 - URLSearchHook: Yahoo! Toolbar avec bloqueur de fenêtres pop-up - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll O1 - Hosts: ::1 localhost O2 - BHO: Yahoo! Toolbar Helper - {02478D38-C3F9-4EFB-9B51-7695ECA05670} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll O2 - BHO: Aide pour le lien d'Adobe PDF Reader - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll O2 - BHO: (no name) - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll O2 - BHO: EoBho Class - {64F56FC1-1272-44CD-BA6E-39723696E350} - C:\Program Files\eoRezo\EoAdv\EoRezoBHO.dll (file missing) O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file) O2 - BHO: Windows Live Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar1.dll O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\2.0.301.5672\swg.dll O3 - Toolbar: Yahoo! Toolbar avec bloqueur de fenêtres pop-up - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar1.dll O4 - HKLM\..\Run: [a-squared] "C:\Program Files\a-squared Anti-Malware\a2guard.exe" O4 - HKCU\..\Run: [sidebar] C:\Program Files\Windows Sidebar\sidebar.exe /autoRun O4 - HKCU\..\Run: [ehTray.exe] C:\Windows\ehome\ehTray.exe O4 - HKCU\..\Run: [iSUSPM Startup] C:\PROGRA~1\COMMON~1\INSTAL~1\UPDATE~1\isuspm.exe -startup O4 - HKCU\..\Run: [WMPNSCFG] C:\Program Files\Windows Media Player\WMPNSCFG.exe O4 - HKCU\..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe O4 - Global Startup: Adobe Reader Synchronizer.lnk = C:\Program Files\Adobe\Reader 8.0\Reader\AdobeCollabSync.exe O4 - Global Startup: Lancement rapide d'Adobe Reader.lnk = C:\Program Files\Adobe\Reader 8.0\Reader\reader_sl.exe O4 - Global Startup: Outil de mise à jour Google.lnk = C:\Program Files\Google\Google Updater\GoogleUpdater.exe O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0\bin\npjpi150.dll O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0\bin\npjpi150.dll O10 - Unknown file in Winsock LSP: c:\windows\system32\nlaapi.dll O10 - Unknown file in Winsock LSP: c:\windows\system32\napinsp.dll O11 - Options group: [iNTERNATIONAL] International* O13 - Gopher Prefix: O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} (Java Runtime Environment 1.5.0) - http://javadl-esd.sun.com/update/1.5.0/jin...indows-i586.cab O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/shoc...ash/swflash.cab O18 - Protocol: livecall - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\MSNMES~1\MSGRAP~1.DLL O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\MSNMES~1\MSGRAP~1.DLL O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - ALWIL Software - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe O23 - Service: avast! Antivirus - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashServ.exe O23 - Service: avast! Mail Scanner - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe" /service (file missing) O23 - Service: avast! Web Scanner - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe" /service (file missing) O23 - Service: Symantec Lic NetConnect service (CLTNetCnService) - Unknown owner - c:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe" /h ccCommon (file missing) O23 - Service: @%SystemRoot%\ehome\ehstart.dll,-101 (ehstart) - Unknown owner - %windir%\system32\svchost.exe (file missing) O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe O23 - Service: LightScribeService Direct Disc Labeling Service (LightScribeService) - Hewlett-Packard Company - c:\Program Files\Common Files\LightScribe\LSSrvc.exe O23 - Service: Planificateur LiveUpdate automatique - Unknown owner - C:\Program Files\Symantec\LiveUpdate\ALUSchedulerSvc.exe (file missing) O23 - Service: @%SystemRoot%\system32\qwave.dll,-1 (QWAVE) - Unknown owner - %windir%\system32\svchost.exe (file missing) O23 - Service: @%SystemRoot%\system32\seclogon.dll,-7001 (seclogon) - Unknown owner - %windir%\system32\svchost.exe (file missing) O23 - Service: stllssvr - MicroVision Development, Inc. - c:\Program Files\Common Files\SureThing Shared\stllssvr.exe O23 - Service: @%ProgramFiles%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - %ProgramFiles%\Windows Media Player\wmpnetwk.exe (file missing)

Re re.... Bruce... Je suis nulle... mais sur quel dossier je dois faire clic droit ? A plus tard, et encore merci pour ton assistance. Lee

Bonsoir Bruce, J'ai refait le scan avec HijackThis en mode sans échec, mais je n'ai pas compris comment je supprime : c:\windows\ SMINST<== tout le dossier Bonne soirée, Lee Logfile of HijackThis v1.99.1 Scan saved at 19:35:53, on 06/06/2007 Platform: Unknown Windows (WinNT 6.00.1904) MSIE: Internet Explorer v7.00 (7.00.6000.16386) Running processes: C:\Windows\Explorer.EXE C:\Users\VISTA\Desktop\test.exe.exe R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896 R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.télérama.fr/ R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://ie.redirect.hp.com/svs/rdr?TYPE=3&a...&pf=desktop R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896 R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896 R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://ie.redirect.hp.com/svs/rdr?TYPE=3&a...&pf=desktop R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant = R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch = R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = R3 - URLSearchHook: Yahoo! Toolbar avec bloqueur de fenêtres pop-up - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll O1 - Hosts: ::1 localhost O2 - BHO: Yahoo! Toolbar Helper - {02478D38-C3F9-4EFB-9B51-7695ECA05670} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll O2 - BHO: Aide pour le lien d'Adobe PDF Reader - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll O2 - BHO: (no name) - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll O2 - BHO: EoBho Class - {64F56FC1-1272-44CD-BA6E-39723696E350} - C:\Program Files\eoRezo\EoAdv\EoRezoBHO.dll (file missing) O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file) O2 - BHO: Windows Live Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar1.dll O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\2.0.301.5672\swg.dll O3 - Toolbar: Yahoo! Toolbar avec bloqueur de fenêtres pop-up - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar1.dll O4 - HKLM\..\Run: [a-squared] "C:\Program Files\a-squared Anti-Malware\a2guard.exe" O4 - HKCU\..\Run: [sidebar] C:\Program Files\Windows Sidebar\sidebar.exe /autoRun O4 - HKCU\..\Run: [ehTray.exe] C:\Windows\ehome\ehTray.exe O4 - HKCU\..\Run: [iSUSPM Startup] C:\PROGRA~1\COMMON~1\INSTAL~1\UPDATE~1\isuspm.exe -startup O4 - HKCU\..\Run: [WMPNSCFG] C:\Program Files\Windows Media Player\WMPNSCFG.exe O4 - HKCU\..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe O4 - Global Startup: Adobe Reader Synchronizer.lnk = C:\Program Files\Adobe\Reader 8.0\Reader\AdobeCollabSync.exe O4 - Global Startup: Lancement rapide d'Adobe Reader.lnk = C:\Program Files\Adobe\Reader 8.0\Reader\reader_sl.exe O4 - Global Startup: Outil de mise à jour Google.lnk = C:\Program Files\Google\Google Updater\GoogleUpdater.exe O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0\bin\npjpi150.dll O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0\bin\npjpi150.dll O10 - Unknown file in Winsock LSP: c:\windows\system32\nlaapi.dll O10 - Unknown file in Winsock LSP: c:\windows\system32\napinsp.dll O11 - Options group: [iNTERNATIONAL] International* O13 - Gopher Prefix: O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} (Java Runtime Environment 1.5.0) - http://javadl-esd.sun.com/update/1.5.0/jin...indows-i586.cab O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/shoc...ash/swflash.cab O18 - Protocol: livecall - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\MSNMES~1\MSGRAP~1.DLL O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\MSNMES~1\MSGRAP~1.DLL O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - ALWIL Software - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe O23 - Service: avast! Antivirus - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashServ.exe O23 - Service: avast! Mail Scanner - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe" /service (file missing) O23 - Service: avast! Web Scanner - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe" /service (file missing) O23 - Service: Symantec Lic NetConnect service (CLTNetCnService) - Unknown owner - c:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe" /h ccCommon (file missing) O23 - Service: @%SystemRoot%\ehome\ehstart.dll,-101 (ehstart) - Unknown owner - %windir%\system32\svchost.exe (file missing) O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe O23 - Service: LightScribeService Direct Disc Labeling Service (LightScribeService) - Hewlett-Packard Company - c:\Program Files\Common Files\LightScribe\LSSrvc.exe O23 - Service: Planificateur LiveUpdate automatique - Unknown owner - C:\Program Files\Symantec\LiveUpdate\ALUSchedulerSvc.exe (file missing) O23 - Service: @%SystemRoot%\system32\qwave.dll,-1 (QWAVE) - Unknown owner - %windir%\system32\svchost.exe (file missing) O23 - Service: @%SystemRoot%\system32\seclogon.dll,-7001 (seclogon) - Unknown owner - %windir%\system32\svchost.exe (file missing) O23 - Service: stllssvr - MicroVision Development, Inc. - c:\Program Files\Common Files\SureThing Shared\stllssvr.exe O23 - Service: @%ProgramFiles%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - %ProgramFiles%\Windows Media Player\wmpnetwk.exe (file missing)

Bonsoir Bruce, Quand je fais le scan avec HijackThis, j'ai une fenêtre de dial qui s'ouvre "For some reason your system denied write access to the Hosts file. If any hijacked domains are in the file, HijackThis may NOT be able to fix this. If that happens, you need to edit file yoursel. To do this, Start, Run and type : notepad "C:\Windows\System32\drivers\etc\hosts" and press Enter. Find the line(s) HijackThis reports and delete them. Save the file as "hosts" (with quotes), and reboot. " Ensuite j'ai une autre boite de dial qui s'ouvre, pour résumer, il y a une erreur 75 Path/File access error et "on" me demande de poster à merijn. Quand j'ai supprimé les lignes, j'ai eu à nouveau un message d'erreur, "unexpected error # 75" qq chose comme ça, et signale que la ligne 06 n'a pu être supprimée. Peut-être que HijackThis ne fonctionne pas avec vista ? Je n'ai pas pu non plus supprimer " c:\windows\ SMINST<== tout le dossier " Et une fenêtre de sécurité Vista s'est ouverte me signalant que je rentrais dans le Registre. J'ai peut-être merdé quelque part... Suis un peu perdue. A bientot, merci encore pour ton aide. Lee Logfile of HijackThis v1.99.1 Scan saved at 23:11:51, on 05/06/2007 Platform: Unknown Windows (WinNT 6.00.1904) MSIE: Internet Explorer v7.00 (7.00.6000.16386) Running processes: C:\Windows\system32\Dwm.exe C:\Windows\Explorer.EXE C:\Windows\system32\taskeng.exe C:\Program Files\a-squared Anti-Malware\a2guard.exe C:\Program Files\Windows Sidebar\sidebar.exe C:\WINDOWS\ehome\ehtray.exe C:\Program Files\Windows Media Player\wmpnscfg.exe C:\Windows\ehome\ehmsas.exe C:\Program Files\Google\Google Updater\GoogleUpdater.exe C:\Windows\System32\mobsync.exe C:\Users\VISTA\Desktop\test.exe.exe R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896 R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.télérama.fr/ R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://ie.redirect.hp.com/svs/rdr?TYPE=3&a...&pf=desktop R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896 R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896 R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://ie.redirect.hp.com/svs/rdr?TYPE=3&a...&pf=desktop R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant = R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch = R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = R3 - URLSearchHook: Yahoo! Toolbar avec bloqueur de fenêtres pop-up - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll O1 - Hosts: ::1 localhost O2 - BHO: Yahoo! Toolbar Helper - {02478D38-C3F9-4EFB-9B51-7695ECA05670} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll O2 - BHO: Aide pour le lien d'Adobe PDF Reader - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll O2 - BHO: (no name) - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll O2 - BHO: EoBho Class - {64F56FC1-1272-44CD-BA6E-39723696E350} - C:\Program Files\eoRezo\EoAdv\EoRezoBHO.dll (file missing) O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file) O2 - BHO: Windows Live Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar1.dll O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\2.0.301.5672\swg.dll O3 - Toolbar: Yahoo! Toolbar avec bloqueur de fenêtres pop-up - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar1.dll O4 - HKLM\..\Run: [a-squared] "C:\Program Files\a-squared Anti-Malware\a2guard.exe" O4 - HKLM\..\RunOnce: [Launcher] %WINDIR%\SMINST\launcher.exe O4 - HKCU\..\Run: [sidebar] C:\Program Files\Windows Sidebar\sidebar.exe /autoRun O4 - HKCU\..\Run: [ehTray.exe] C:\Windows\ehome\ehTray.exe O4 - HKCU\..\Run: [iSUSPM Startup] C:\PROGRA~1\COMMON~1\INSTAL~1\UPDATE~1\isuspm.exe -startup O4 - HKCU\..\Run: [WMPNSCFG] C:\Program Files\Windows Media Player\WMPNSCFG.exe O4 - HKCU\..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe O4 - Global Startup: Adobe Reader Synchronizer.lnk = C:\Program Files\Adobe\Reader 8.0\Reader\AdobeCollabSync.exe O4 - Global Startup: Lancement rapide d'Adobe Reader.lnk = C:\Program Files\Adobe\Reader 8.0\Reader\reader_sl.exe O4 - Global Startup: Outil de mise à jour Google.lnk = C:\Program Files\Google\Google Updater\GoogleUpdater.exe O6 - HKCU\Software\Policies\Microsoft\Internet Explorer\Restrictions present O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0\bin\npjpi150.dll O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0\bin\npjpi150.dll O10 - Unknown file in Winsock LSP: c:\windows\system32\nlaapi.dll O10 - Unknown file in Winsock LSP: c:\windows\system32\napinsp.dll O11 - Options group: [iNTERNATIONAL] International* O13 - Gopher Prefix: O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} (Java Runtime Environment 1.5.0) - http://javadl-esd.sun.com/update/1.5.0/jin...indows-i586.cab O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/shoc...ash/swflash.cab O18 - Protocol: livecall - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\MSNMES~1\MSGRAP~1.DLL O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\MSNMES~1\MSGRAP~1.DLL O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - ALWIL Software - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe O23 - Service: avast! Antivirus - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashServ.exe O23 - Service: avast! Mail Scanner - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe" /service (file missing) O23 - Service: avast! Web Scanner - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe" /service (file missing) O23 - Service: Symantec Lic NetConnect service (CLTNetCnService) - Unknown owner - c:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe" /h ccCommon (file missing) O23 - Service: @%SystemRoot%\ehome\ehstart.dll,-101 (ehstart) - Unknown owner - %windir%\system32\svchost.exe (file missing) O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe O23 - Service: LightScribeService Direct Disc Labeling Service (LightScribeService) - Hewlett-Packard Company - c:\Program Files\Common Files\LightScribe\LSSrvc.exe O23 - Service: Planificateur LiveUpdate automatique - Unknown owner - C:\Program Files\Symantec\LiveUpdate\ALUSchedulerSvc.exe (file missing) O23 - Service: @%SystemRoot%\system32\qwave.dll,-1 (QWAVE) - Unknown owner - %windir%\system32\svchost.exe (file missing) O23 - Service: @%SystemRoot%\system32\seclogon.dll,-7001 (seclogon) - Unknown owner - %windir%\system32\svchost.exe (file missing) O23 - Service: stllssvr - MicroVision Development, Inc. - c:\Program Files\Common Files\SureThing Shared\stllssvr.exe O23 - Service: @%ProgramFiles%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - %ProgramFiles%\Windows Media Player\wmpnetwk.exe (file missing)

Bonjour Bruce, Comme demandé, voici les rapports de OTMoveIT et de HijcakThis (les messages d'erreur s'affichent toujours) Merci en encore, bonne journée, et p-ê à plus tard. Lee File/Folder C:\windows\system32\gfgffxfyrq.exe not found. c:\WINDOWS\system32\gfgffxfyrq_nav.dat moved successfully. c:\WINDOWS\system32\gfgffxfyrq.dat moved successfully. c:\WINDOWS\system32\gfgffxfyrq_navps.dat moved successfully. Created on 06/05/2007 13:15:21 Logfile of HijackThis v1.99.1 Scan saved at 13:17:38, on 05/06/2007 Platform: Unknown Windows (WinNT 6.00.1904) MSIE: Internet Explorer v7.00 (7.00.6000.16386) Running processes: C:\Windows\system32\Dwm.exe C:\Windows\Explorer.EXE C:\Windows\system32\taskeng.exe C:\Program Files\a-squared Anti-Malware\a2guard.exe C:\Program Files\Windows Sidebar\sidebar.exe C:\WINDOWS\ehome\ehtray.exe C:\Program Files\Windows Media Player\wmpnscfg.exe C:\Program Files\Google\Google Updater\GoogleUpdater.exe C:\Windows\ehome\ehmsas.exe C:\Windows\System32\mobsync.exe C:\Program Files\Mozilla Firefox\firefox.exe C:\Program Files\MSN Messenger\msnmsgr.exe C:\Program Files\eMule\emule.exe C:\WINDOWS\System32\notepad.exe C:\Program Files\Adobe\Acrobat 7.0\Reader\AcroRd32.exe C:\Windows\system32\NOTEPAD.EXE C:\Users\VISTA\Desktop\test.exe.exe R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896 R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.télérama.fr/ R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://ie.redirect.hp.com/svs/rdr?TYPE=3&a...&pf=desktop R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896 R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896 R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://ie.redirect.hp.com/svs/rdr?TYPE=3&a...&pf=desktop R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant = R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch = R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = R3 - URLSearchHook: Yahoo! Toolbar avec bloqueur de fenêtres pop-up - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll O1 - Hosts: ::1 localhost O2 - BHO: Yahoo! Toolbar Helper - {02478D38-C3F9-4EFB-9B51-7695ECA05670} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll O2 - BHO: (no name) - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll O2 - BHO: EoBho Class - {64F56FC1-1272-44CD-BA6E-39723696E350} - C:\Program Files\eoRezo\EoAdv\EoRezoBHO.dll (file missing) O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file) O2 - BHO: Windows Live Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar1.dll O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\2.0.301.5672\swg.dll O3 - Toolbar: Yahoo! Toolbar avec bloqueur de fenêtres pop-up - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar1.dll O4 - HKLM\..\Run: [a-squared] "C:\Program Files\a-squared Anti-Malware\a2guard.exe" O4 - HKLM\..\RunOnce: [Launcher] %WINDIR%\SMINST\launcher.exe O4 - HKCU\..\Run: [sidebar] C:\Program Files\Windows Sidebar\sidebar.exe /autoRun O4 - HKCU\..\Run: [ehTray.exe] C:\Windows\ehome\ehTray.exe O4 - HKCU\..\Run: [iSUSPM Startup] C:\PROGRA~1\COMMON~1\INSTAL~1\UPDATE~1\isuspm.exe -startup O4 - HKCU\..\Run: [gfgffxfyrq] c:\windows\system32\gfgffxfyrq.exe gfgffxfyrq O4 - HKCU\..\Run: [WMPNSCFG] C:\Program Files\Windows Media Player\WMPNSCFG.exe O4 - HKCU\..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe O4 - Global Startup: Lancement rapide d'Adobe Reader.lnk = C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe O4 - Global Startup: Outil de mise à jour Google.lnk = C:\Program Files\Google\Google Updater\GoogleUpdater.exe O6 - HKCU\Software\Policies\Microsoft\Internet Explorer\Restrictions present O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0\bin\npjpi150.dll O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0\bin\npjpi150.dll O10 - Unknown file in Winsock LSP: c:\windows\system32\nlaapi.dll O10 - Unknown file in Winsock LSP: c:\windows\system32\napinsp.dll O11 - Options group: [iNTERNATIONAL] International* O13 - Gopher Prefix: O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} (Java Runtime Environment 1.5.0) - http://javadl-esd.sun.com/update/1.5.0/jin...indows-i586.cab O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/shoc...ash/swflash.cab O18 - Protocol: livecall - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\MSNMES~1\MSGRAP~1.DLL O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\MSNMES~1\MSGRAP~1.DLL O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - ALWIL Software - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe O23 - Service: avast! Antivirus - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashServ.exe O23 - Service: avast! Mail Scanner - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe" /service (file missing) O23 - Service: avast! Web Scanner - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe" /service (file missing) O23 - Service: Symantec Lic NetConnect service (CLTNetCnService) - Unknown owner - c:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe" /h ccCommon (file missing) O23 - Service: @%SystemRoot%\ehome\ehstart.dll,-101 (ehstart) - Unknown owner - %windir%\system32\svchost.exe (file missing) O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe O23 - Service: LightScribeService Direct Disc Labeling Service (LightScribeService) - Hewlett-Packard Company - c:\Program Files\Common Files\LightScribe\LSSrvc.exe O23 - Service: Planificateur LiveUpdate automatique - Unknown owner - C:\Program Files\Symantec\LiveUpdate\ALUSchedulerSvc.exe (file missing) O23 - Service: @%SystemRoot%\system32\qwave.dll,-1 (QWAVE) - Unknown owner - %windir%\system32\svchost.exe (file missing) O23 - Service: @%SystemRoot%\system32\seclogon.dll,-7001 (seclogon) - Unknown owner - %windir%\system32\svchost.exe (file missing) O23 - Service: stllssvr - MicroVision Development, Inc. - c:\Program Files\Common Files\SureThing Shared\stllssvr.exe O23 - Service: @%ProgramFiles%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - %ProgramFiles%\Windows Media Player\wmpnetwk.exe (file missing)

Mais Bruce ? Où vas-tu comme ça ? Je rigole... A bientot, et bonne soirée ! Lee

Bonsoir Bruce Lee, moi c'est LeeLee, on est fait pour s'entendre... Trêve de plaisanterie... Merci d'avoir répondu rapidement à ma demande. Comme tu me l'as demandé, voici ci-dessous les rapport de VundoFix et de HijackThis (qui m'ouvre toujours une boite de dialogue m'indiquant que qq chose ne va pas.) Vundo apparemment n'a rien trouvé, par conséquent je suppose que c'est normal de ne pas avoir eu l'invite de supprimer les fichiers, ni de redémarrer mon pc. Je signale aussi qu'aujourd'hui je n'ai eu aucune fenêtres pop up. Merci encore pour ton aide... J'attends tes nouvelles instructions. Bonne soirée. LeeLee VundoFix V6.4.2 Checking Java version... Scan started at 21:00:50 04/06/2007 Listing files found while scanning.... No infected files were found. Beginning removal... Logfile of HijackThis v1.99.1 Scan saved at 21:12:16, on 04/06/2007 Platform: Unknown Windows (WinNT 6.00.1904) MSIE: Internet Explorer v7.00 (7.00.6000.16386) Running processes: C:\Windows\system32\Dwm.exe C:\Windows\Explorer.EXE C:\Windows\system32\taskeng.exe C:\Program Files\a-squared Anti-Malware\a2guard.exe C:\Program Files\Windows Sidebar\sidebar.exe C:\WINDOWS\ehome\ehtray.exe C:\Program Files\Windows Media Player\wmpnscfg.exe C:\Windows\ehome\ehmsas.exe C:\Windows\System32\mobsync.exe C:\Program Files\Adobe\Acrobat 7.0\Reader\AcroRd32.exe C:\Program Files\Google\Google Updater\GoogleUpdater.exe C:\WINDOWS\System32\notepad.exe C:\Windows\system32\NOTEPAD.EXE C:\Users\VISTA\Desktop\test.exe.exe R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896 R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.télérama.fr/ R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://ie.redirect.hp.com/svs/rdr?TYPE=3&a...&pf=desktop R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896 R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896 R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://ie.redirect.hp.com/svs/rdr?TYPE=3&a...&pf=desktop R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant = R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch = R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = R3 - URLSearchHook: Yahoo! Toolbar avec bloqueur de fenêtres pop-up - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll O1 - Hosts: ::1 localhost O2 - BHO: Yahoo! Toolbar Helper - {02478D38-C3F9-4EFB-9B51-7695ECA05670} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll O2 - BHO: (no name) - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll O2 - BHO: EoBho Class - {64F56FC1-1272-44CD-BA6E-39723696E350} - C:\Program Files\eoRezo\EoAdv\EoRezoBHO.dll (file missing) O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file) O2 - BHO: Windows Live Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar1.dll O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\2.0.301.5672\swg.dll O3 - Toolbar: Yahoo! Toolbar avec bloqueur de fenêtres pop-up - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar1.dll O4 - HKLM\..\Run: [a-squared] "C:\Program Files\a-squared Anti-Malware\a2guard.exe" O4 - HKLM\..\RunOnce: [Launcher] %WINDIR%\SMINST\launcher.exe O4 - HKCU\..\Run: [sidebar] C:\Program Files\Windows Sidebar\sidebar.exe /autoRun O4 - HKCU\..\Run: [ehTray.exe] C:\Windows\ehome\ehTray.exe O4 - HKCU\..\Run: [iSUSPM Startup] C:\PROGRA~1\COMMON~1\INSTAL~1\UPDATE~1\isuspm.exe -startup O4 - HKCU\..\Run: [gfgffxfyrq] c:\windows\system32\gfgffxfyrq.exe gfgffxfyrq O4 - HKCU\..\Run: [WMPNSCFG] C:\Program Files\Windows Media Player\WMPNSCFG.exe O4 - HKCU\..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe O4 - Global Startup: Lancement rapide d'Adobe Reader.lnk = C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe O4 - Global Startup: Outil de mise à jour Google.lnk = C:\Program Files\Google\Google Updater\GoogleUpdater.exe O6 - HKCU\Software\Policies\Microsoft\Internet Explorer\Restrictions present O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0\bin\npjpi150.dll O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0\bin\npjpi150.dll O10 - Unknown file in Winsock LSP: c:\windows\system32\nlaapi.dll O10 - Unknown file in Winsock LSP: c:\windows\system32\napinsp.dll O11 - Options group: [iNTERNATIONAL] International* O13 - Gopher Prefix: O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} (Java Runtime Environment 1.5.0) - http://javadl-esd.sun.com/update/1.5.0/jin...indows-i586.cab O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/shoc...ash/swflash.cab O18 - Protocol: livecall - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\MSNMES~1\MSGRAP~1.DLL O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\MSNMES~1\MSGRAP~1.DLL O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - ALWIL Software - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe O23 - Service: avast! Antivirus - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashServ.exe O23 - Service: avast! Mail Scanner - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe" /service (file missing) O23 - Service: avast! Web Scanner - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe" /service (file missing) O23 - Service: Symantec Lic NetConnect service (CLTNetCnService) - Unknown owner - c:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe" /h ccCommon (file missing) O23 - Service: @%SystemRoot%\ehome\ehstart.dll,-101 (ehstart) - Unknown owner - %windir%\system32\svchost.exe (file missing) O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe O23 - Service: LightScribeService Direct Disc Labeling Service (LightScribeService) - Hewlett-Packard Company - c:\Program Files\Common Files\LightScribe\LSSrvc.exe O23 - Service: Planificateur LiveUpdate automatique - Unknown owner - C:\Program Files\Symantec\LiveUpdate\ALUSchedulerSvc.exe (file missing) O23 - Service: @%SystemRoot%\system32\qwave.dll,-1 (QWAVE) - Unknown owner - %windir%\system32\svchost.exe (file missing) O23 - Service: @%SystemRoot%\system32\seclogon.dll,-7001 (seclogon) - Unknown owner - %windir%\system32\svchost.exe (file missing) O23 - Service: stllssvr - MicroVision Development, Inc. - c:\Program Files\Common Files\SureThing Shared\stllssvr.exe O23 - Service: @%ProgramFiles%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - %ProgramFiles%\Windows Media Player\wmpnetwk.exe (file missing)

Bonsoir J'ai acheté un pc il y a peu qui fonctionne sous Vista, depuis quelque temps, j'ai des fenêtres de pub qui s'affichent. Même si c'est assez rare cela a le don de m'agacer... J'utilise en priorité Mozilla Firefox. Sur mon ancien pc je n'avais pas ce genre de problèmes. Mon système est protégé par Avast. J'ai installé Spybot-Search & Destroy, a-squared Guard (version démo), Ccleaner, F-Secure BlackLight, et Hijack This (installé sur mon bureau sous le nom de test.exe). En faisant un scan avec Spybot j'ai trouvé Avenue A, Inc. BlueSTreak, DoubleClick, Tradoubler, Winsoftware (cookie traceur). Suite à cela, j'ai cliqué sur "Corriger les problèmes" pensant que ces tracking cookies ne reviendraient pas... Mais à chaque fois, ils réapparaissent. Je sais qu'il ne s'agit pas réellement de virus, mais c'est agaçant... J'ai refait la même opération peu de temps après et j'ai trouvé Spyware-Secure que j'ai mis en quarantaine. Il y a-t-il un rapport entre ce fait, et le fait que j'ai des fenêtres de pub qui s'ouvrent ? En faisant un scan avec Ad-Aware, je retrouve la même chose, avec des mru Sur Mozilla j'ai installé l'extension Adblock et Cookiesafe, mais ça ne change rien. Je ne sais pas interprété le rapport de Hijack This. Quand je lance Hijack j'ai une fenêtre de dial qui s'ouvre "For some reason your system denied write access to the Hosts file. If any hijacked domains are in the file, HijackThis may NOT be able to fix this. If that happens, you need to edit file yoursel. To do this, Start, Run and type : notepad "C:\Windows\System32\drivers\etc\hosts" and press Enter. Find the line(s) HijackThis reports and delete them. Save the file as "hosts" (with quotes), and reboot. " Je ne sais pas ce que ça veut dire exactement, même si je me débrouille en anglais, mais je ne m'y connais pas en informatique... sinon je ne serais pas là... ;o) Ensuite j'ai une autre boite de dial qui s'ouvre, pour résumer, il y a une erreur 75 Path/File access error et "on" me demande de poster à merijn. (J'ai quand mm vérifié que je travaille en tant qu'administrateur, et c'est bien le cas. Finalement, j'ai quand même un rapport, le voici : Logfile of HijackThis v1.99.1 Scan saved at 22:54:26, on 01/06/2007 Platform: Unknown Windows (WinNT 6.00.1904) MSIE: Internet Explorer v7.00 (7.00.6000.16386) Running processes: C:\Windows\system32\Dwm.exe C:\Windows\Explorer.EXE C:\Windows\system32\taskeng.exe C:\Program Files\a-squared Anti-Malware\a2guard.exe C:\Program Files\Windows Sidebar\sidebar.exe C:\WINDOWS\ehome\ehtray.exe C:\Windows\ehome\ehmsas.exe C:\Program Files\Windows Media Player\wmpnscfg.exe C:\Windows\System32\mobsync.exe C:\Program Files\Alwil Software\Avast4\ashDisp.exe C:\Program Files\eMule\emule.exe C:\Program Files\MSN Messenger\msnmsgr.exe C:\WINDOWS\System32\notepad.exe C:\Users\VISTA\Desktop\test.exe.exe R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896 R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.télérama.fr/ R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://ie.redirect.hp.com/svs/rdr?TYPE=3&a...&pf=desktop R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896 R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896 R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://ie.redirect.hp.com/svs/rdr?TYPE=3&a...&pf=desktop R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant = R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch = R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = R3 - URLSearchHook: Yahoo! Toolbar avec bloqueur de fenêtres pop-up - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll O1 - Hosts: ::1 localhost O2 - BHO: Yahoo! Toolbar Helper - {02478D38-C3F9-4EFB-9B51-7695ECA05670} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll O2 - BHO: (no name) - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll O2 - BHO: EoBho Class - {64F56FC1-1272-44CD-BA6E-39723696E350} - C:\Program Files\eoRezo\EoAdv\EoRezoBHO.dll (file missing) O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file) O2 - BHO: Windows Live Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll O3 - Toolbar: Yahoo! Toolbar avec bloqueur de fenêtres pop-up - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll O4 - HKLM\..\Run: [a-squared] "C:\Program Files\a-squared Anti-Malware\a2guard.exe" O4 - HKLM\..\RunOnce: [Launcher] %WINDIR%\SMINST\launcher.exe O4 - HKCU\..\Run: [sidebar] C:\Program Files\Windows Sidebar\sidebar.exe /autoRun O4 - HKCU\..\Run: [ehTray.exe] C:\Windows\ehome\ehTray.exe O4 - HKCU\..\Run: [iSUSPM Startup] C:\PROGRA~1\COMMON~1\INSTAL~1\UPDATE~1\isuspm.exe -startup O4 - HKCU\..\Run: [WMPNSCFG] C:\Program Files\Windows Media Player\WMPNSCFG.exe O4 - Global Startup: Lancement rapide d'Adobe Reader.lnk = C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe O6 - HKCU\Software\Policies\Microsoft\Internet Explorer\Restrictions present O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0\bin\npjpi150.dll O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0\bin\npjpi150.dll O10 - Unknown file in Winsock LSP: c:\windows\system32\nlaapi.dll O10 - Unknown file in Winsock LSP: c:\windows\system32\napinsp.dll O11 - Options group: [iNTERNATIONAL] International* O13 - Gopher Prefix: O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} (Java Runtime Environment 1.5.0) - http://javadl-esd.sun.com/update/1.5.0/jin...indows-i586.cab O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/shoc...ash/swflash.cab O18 - Protocol: livecall - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\MSNMES~1\MSGRAP~1.DLL O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\MSNMES~1\MSGRAP~1.DLL O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - ALWIL Software - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe O23 - Service: avast! Antivirus - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashServ.exe O23 - Service: avast! Mail Scanner - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe" /service (file missing) O23 - Service: avast! Web Scanner - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe" /service (file missing) O23 - Service: Symantec Lic NetConnect service (CLTNetCnService) - Unknown owner - c:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe" /h ccCommon (file missing) O23 - Service: @%SystemRoot%\ehome\ehstart.dll,-101 (ehstart) - Unknown owner - %windir%\system32\svchost.exe (file missing) O23 - Service: LightScribeService Direct Disc Labeling Service (LightScribeService) - Hewlett-Packard Company - c:\Program Files\Common Files\LightScribe\LSSrvc.exe O23 - Service: Planificateur LiveUpdate automatique - Unknown owner - C:\Program Files\Symantec\LiveUpdate\ALUSchedulerSvc.exe (file missing) O23 - Service: @%SystemRoot%\system32\qwave.dll,-1 (QWAVE) - Unknown owner - %windir%\system32\svchost.exe (file missing) O23 - Service: @%SystemRoot%\system32\seclogon.dll,-7001 (seclogon) - Unknown owner - %windir%\system32\svchost.exe (file missing) O23 - Service: stllssvr - MicroVision Development, Inc. - c:\Program Files\Common Files\SureThing Shared\stllssvr.exe O23 - Service: @%ProgramFiles%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - %ProgramFiles%\Windows Media Player\wmpnetwk.exe (file missing) Aussi au cas où, le rapport de F-Secure : 06/01/07 19:58:47 [info]: BlackLight Engine 1.0.61 initialized 06/01/07 19:58:47 [info]: OS: 6.0 build 6000 () 06/01/07 19:58:48 [Note]: 7019 4 06/01/07 19:58:48 [Note]: 7005 0 06/01/07 19:58:54 [Note]: 7006 0 06/01/07 19:58:54 [Note]: 7027 1 06/01/07 19:58:54 [Note]: 7027 0 06/01/07 19:58:55 [Note]: 7026 0 06/01/07 19:58:55 [Note]: 7026 0 06/01/07 19:58:59 [Note]: FSRAW library version 1.7.1021 06/01/07 20:01:24 [Error]: 6023 5 06/01/07 20:02:18 [Note]: 7007 0 A-Squared Anti-Malware a trouvé aussi des TrackingCookie mais aussi Heuristic.Dialer (C:\Program Files\PC-Doctor for Windows\pcdrmodem.p5x ) Et quand j'ai acheté le pc, le vendeur n'a pas entré mon nom... Alors j'apparais sous le nom Vista... (normal, pas normal ? ) Merci d'avance pour l'aide que vous pourrez m'apporter. Lee