isabel94

Appppppppppppppppppppoooooooooooooollllllllllllllllllllllllllooooooooooooooooooo C'est mieux comme ça non????????, Bon, allez j'arrete de te taquiner, pour Bit defender comme ça c'est réglé, il veut pas de mon Vista et bien je ne veux pas de lui, na!!!!!!!!!! Alors go pour Antivir, je ne désinstalle pas Bit defender puisque je ne l'ai pas....par contre est ce que je dois désinstaller Avast avant? Il risque de se mettre en conflit????????? Te presse pas pour la réponse, je vais me coucher je verrais ça demain à tete reposée. Bonne nuit Isabelle

Appollo, Je ne connais ni l'un ni l'autre , je te fais confianc ;)e , qu'est ce que tu prendrais dans mon cas??? Isabelle

Bonsoir Appollo, Et bien!!!! Que de travail pour cette soirée, donc je te résume ce que j'ai réussi à faire: J'ai déjà viré toutes traces de Norton qui était pré installé dans le PC quand je l'ai acheté, que j'avais désinstallé, mais il en restait surement (puisque tu as détecté des traces). J'ai désinstallé l'ancienne version Java 6.9(quelque chose comme ça), pour installer la nouvelle. Pour Adobe Reader meme traitement, par contre je n'ai pas trouvé les cases à décocher, j'ai également téléchargé le patch de sécurité. Bit Defender (ha celui là, il m'enerve), j'ai tenté de le télécharger mais c'est la version d'évaluation, alors je télécharge ou pas?????? En plus il faut laisser son adresse mail pour qu'ils envoient le lien.... J'attends ta réponse pour Bit Defender et après un coup de ménage au CCleaner. Bonne nuit et bon week end Encore merci pour ton aide précieuse Isabelle

Appollo; Après avoir surfé avec Firefox, je m'apperçois qu'il déconnecte toujours sur certains sites. Je pense que je vais devoir le désinstaller et réinstaller, qu'en pense tu? @ plus tard. Isabelle

Bonjour Appollo, Me revoilà après une bonne nuit de sommeil... Tout d'abord rassure toi, j'ai viré Shaeraza depuis hier, de toutes façons je n'arrivais pas à le configurer(pare feu !!!). J'ai fais un scan Panda, resultat: RAS ,rien détécté pas meme un début de microbes, c'est d'ailleurs certainement pour ça qu'il ne m'a meme pas proposé de rapport après l'analyse. Je n'ai jamais installé Messanger Plus, pourquoi cette question? Pour Hijackthis j'ai viré ce que tu m'as demandé et refais un scan que je te joins avec le rapport Spybot. Pour Bit Defender il ne veut toujours rien savoir, il ne fait pas de mise à jour et refuse de scanner. Le Pc à l'air de mieux se comporter, hier j'avais encore quelques déconnexions sur Firefox, mais aujourd'hui je sais pas , je vais unpeu surfer et te tiens informé. Voici les rapports: Logfile of Trend Micro HijackThis v2.0.2 Scan saved at 14:32:56, on 27/10/2007 Platform: Windows Vista (WinNT 6.00.1904) MSIE: Internet Explorer v7.00 (7.00.6000.16546) Boot mode: Normal Running processes: C:\Windows\system32\Dwm.exe C:\Windows\Explorer.EXE C:\Program Files\Alwil Software\Avast4\ashDisp.exe C:\Windows\System32\igfxtray.exe C:\Windows\System32\hkcmd.exe C:\Program Files\Windows Sidebar\sidebar.exe C:\Program Files\TOSHIBA\TOSCDSPD\TOSCDSPD.exe C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe C:\Windows\system32\igfxsrvc.exe C:\Windows\system32\taskeng.exe C:\Program Files\Synaptics\SynTP\SynTPEnh.exe C:\Program Files\Synaptics\SynTP\SynToshiba.exe C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe C:\Windows\system32\conime.exe C:\Program Files\Internet Explorer\ieuser.exe C:\Program Files\Trend Micro\HijackThis\HijackThis.exe R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896 R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=566.../www.google.fr/ R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157 R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896 R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157 R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant = R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch = R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = R3 - URLSearchHook: (no name) - {AEEC3B59-CA98-4EBA-A140-57B94E283583} - C:\PROGRA~1\ORANGE~1\TOOLBA~2.DLL R3 - URLSearchHook: Yahoo! Toolbar avec bloqueur de fenêtres pop-up - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll O1 - Hosts: ::1 localhost O2 - BHO: Yahoo! Toolbar Helper - {02478D38-C3F9-4EFB-9B51-7695ECA05670} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll O2 - BHO: Spybot-S&D IE Protection - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_02\bin\ssv.dll O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar2.dll O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\2.1.615.5858\swg.dll O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar2.dll O3 - Toolbar: Barre d'outils Orange - {D3028143-6145-4318-99D3-3EDCE54A95A9} - C:\Program Files\Orange Toolbar FR\ToolbarContainer222.dll O3 - Toolbar: Yahoo! Toolbar avec bloqueur de fenêtres pop-up - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll O4 - HKLM\..\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe O4 - HKLM\..\Run: [synTPStart] C:\Program Files\Synaptics\SynTP\SynTPStart.exe O4 - HKLM\..\Run: [igfxTray] C:\Windows\system32\igfxtray.exe O4 - HKLM\..\Run: [HotKeysCmds] C:\Windows\system32\hkcmd.exe O4 - HKCU\..\Run: [sidebar] C:\Program Files\Windows Sidebar\sidebar.exe /autoRun O4 - HKCU\..\Run: [WindowsWelcomeCenter] rundll32.exe oobefldr.dll,ShowWelcomeCenter O4 - HKCU\..\Run: [TOSCDSPD] C:\Program Files\TOSHIBA\TOSCDSPD\TOSCDSPD.exe O4 - HKCU\..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe O4 - HKCU\..\Run: [ehTray.exe] C:\Windows\ehome\ehTray.exe O4 - HKCU\..\Run: [spybotSD TeaTimer] C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe O4 - HKUS\S-1-5-19\..\Run: [sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'SERVICE LOCAL') O4 - HKUS\S-1-5-19\..\Run: [WindowsWelcomeCenter] rundll32.exe oobefldr.dll,ShowWelcomeCenter (User 'SERVICE LOCAL') O4 - HKUS\S-1-5-20\..\Run: [sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'SERVICE RÉSEAU') O8 - Extra context menu item: traduire la page - C:\Users\isabelle\AppData\Local\Temp\cceB98.html O8 - Extra context menu item: traduire le texte sélectionné - C:\Users\isabelle\AppData\Local\Temp\cceB99.html O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_02\bin\ssv.dll O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_02\bin\ssv.dll O9 - Extra button: (no name) - {85d1f590-48f4-11d9-9669-0800200c9a66} - C:\Windows\bdoscandel.exe O9 - Extra 'Tools' menuitem: Uninstall BitDefender Online Scanner v8 - {85d1f590-48f4-11d9-9669-0800200c9a66} - C:\Windows\bdoscandel.exe O9 - Extra button: (no name) - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll O9 - Extra 'Tools' menuitem: Spybot - Search & Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll O13 - Gopher Prefix: O16 - DPF: {30528230-99f7-4bb4-88d8-fa1d4f56a2ab} (YInstStarter Class) - C:\Program Files\Yahoo!\Common\yinsthelper.dll O16 - DPF: {512FC5A1-7DE1-43F1-BC0C-371622FCB409} (TotalScan Installer Class) - http://www.nanoscan.com/as/v1/cabs/ascstubie.cab O16 - DPF: {5D86DDB5-BDF9-441B-9E9E-D4730F4EE499} (BDSCANONLINE Control) - http://www.bitdefender.fr/scan_fr/scan8/oscan8.cab O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - ALWIL Software - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe O23 - Service: avast! Antivirus - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashServ.exe O23 - Service: avast! Mail Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe O23 - Service: avast! Web Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe O23 - Service: AVG Anti-Spyware Guard - GRISOFT s.r.o. - C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe O23 - Service: ConfigFree Service (CFSvcs) - TOSHIBA CORPORATION - C:\Program Files\TOSHIBA\ConfigFree\CFSvcs.exe O23 - Service: Symantec Lic NetConnect service (CLTNetCnService) - Unknown owner - C:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe (file missing) O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe O23 - Service: LiveUpdate - Symantec Corporation - C:\PROGRA~1\Symantec\LIVEUP~1\LUCOMS~1.EXE O23 - Service: LiveUpdate Notice Service Ex (LiveUpdate Notice Ex) - Unknown owner - C:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe (file missing) O23 - Service: LiveUpdate Notice Service - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\PIF\{B8E1DD85-8582-4c61-B58F-2F227FCA9A08}\PIFSvc.exe O23 - Service: Nero BackItUp Scheduler 3 - Nero AG - C:\Program Files\Nero\Nero8\Nero BackItUp\NBService.exe O23 - Service: NMIndexingService - Nero AG - C:\Program Files\Common Files\Nero\Lib\NMIndexingService.exe O23 - Service: Planificateur LiveUpdate automatique - Symantec Corporation - C:\Program Files\Symantec\LiveUpdate\ALUSchedulerSvc.exe O23 - Service: SBSD Security Center Service (SBSDWSCService) - Safer Networking Ltd. - C:\Program Files\Spybot - Search & Destroy\SDWinSec.exe O23 - Service: TOSHIBA Optical Disc Drive Service (TODDSrv) - TOSHIBA Corporation - C:\Windows\system32\TODDSrv.exe O23 - Service: TOSHIBA Power Saver (TosCoSrv) - TOSHIBA Corporation - C:\Program Files\TOSHIBA\Power Saver\TosCoSrv.exe O23 - Service: TOSHIBA Bluetooth Service - TOSHIBA CORPORATION - c:\Program Files\Toshiba\Bluetooth Toshiba Stack\TosBtSrv.exe O23 - Service: Ulead Burning Helper (UleadBurningHelper) - Ulead Systems, Inc. - C:\Program Files\Common Files\Ulead Systems\DVD\ULCDRSvr.exe -- End of file - 8112 bytes --- Search result list --- CiD.IEPop: [sBI $9596E091] Réglages utilisateur (Valeur du registre, fixed) HKEY_USERS\S-1-5-21-43106965-3681312334-3663044026-1000\Software\Microsoft\Internet Explorer\New Windows\Allow\netbios-wait.com CiD.IEPop: [sBI $73413041] Réglages utilisateur (Valeur du registre, fixed) HKEY_USERS\S-1-5-21-43106965-3681312334-3663044026-1000\Software\Microsoft\Internet Explorer\New Windows\Allow\www.netbios-wait.com War3z: [sBI $4D2E84B1] Réglages (Valeur du registre, fixed) HKEY_USERS\S-1-5-21-43106965-3681312334-3663044026-1000\Software\Microsoft\Internet Explorer\New Windows\Allow\startnow.com War3z: [sBI $0B968232] Réglages (Valeur du registre, fixed) HKEY_USERS\S-1-5-21-43106965-3681312334-3663044026-1000\Software\Microsoft\Internet Explorer\New Windows\Allow\www.startnow.com DoubleClick: [sBI $4CDCC3D5] Cookie traceur (Firefox: default) (Cookie, fixed) MediaPlex: [sBI $4CDCC3D5] Cookie traceur (Firefox: default) (Cookie, fixed) AdRevolver: [sBI $4CDCC3D5] Cookie traceur (Firefox: default) (Cookie, fixed) --- Spybot - Search & Destroy version: 1.5 (build: 20070830) --- 2007-08-31 blindman.exe (1.0.0.6) 2007-08-31 SDMain.exe (1.0.0.4) 2007-08-31 SDUpdate.exe (1.0.6.4) 2007-08-31 SDWinSec.exe (1.0.0. 2007-08-31 SpybotSD.exe (1.5.1.15) 2007-08-31 TeaTimer.exe (1.5.0.9) 2007-10-27 unins000.exe (51.46.0.0) 2007-08-31 Update.exe (1.4.0.5) 2007-08-31 advcheck.dll (1.5.3.0) 2007-04-02 aports.dll (2.1.0.0) 2007-04-02 DelZip179.dll (1.79.5.3) 2007-08-31 SDHelper.dll (1.5.0. 2007-08-31 Tools.dll (2.1.2.0) 2007-10-24 Includes\Cookies.sbi (*) 2007-07-25 Includes\Dialer.sbi (*) 2007-10-24 Includes\DialerC.sbi (*) 2007-08-29 Includes\Hijackers.sbi (*) 2007-10-24 Includes\HijackersC.sbi (*) 2007-10-04 Includes\Keyloggers.sbi (*) 2007-10-24 Includes\KeyloggersC.sbi (*) 2004-11-29 Includes\LSP.sbi (*) 2007-10-24 Includes\Malware.sbi (*) 2007-10-24 Includes\MalwareC.sbi (*) 2007-10-24 Includes\PUPS.sbi (*) 2007-10-24 Includes\PUPSC.sbi (*) 2007-10-24 Includes\Revision.sbi (*) 2007-05-30 Includes\Security.sbi (*) 2007-10-24 Includes\SecurityC.sbi (*) 2007-10-24 Includes\Spybots.sbi (*) 2007-10-24 Includes\SpybotsC.sbi (*) 2007-08-21 Includes\Tracks.uti 2007-10-24 Includes\Trojans.sbi (*) 2007-10-24 Includes\TrojansC.sbi (*) 2008-12-24 Plugins\TCPIPAddress.dll --- System information --- Windows Vista (Build: 6000) (6.0.6000) / MSXML4SP2: FIX: ASP stops responding when calling Response.Redirect to another server using msxml4 sp2 / MSXML4SP2: Security update for MSXML4 SP2 (KB936181) / MSXML4SP2: Security update for MSXML4 SP2 (KB941833) --- Startup entries list --- Located: HK_LM:Run, avast! command: C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe file: C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe size: 79224 MD5: 8CF58586AE4577ED71FFE8883A6D4B3B Located: HK_LM:Run, HotKeysCmds command: C:\Windows\system32\hkcmd.exe file: C:\Windows\system32\hkcmd.exe size: 154136 MD5: 56C5C96EF9CB6628C739E3BF78221B79 Located: HK_LM:Run, IgfxTray command: C:\Windows\system32\igfxtray.exe file: C:\Windows\system32\igfxtray.exe size: 141848 MD5: 3E824CD12FA7884068CEB8C5DAB53144 Located: HK_LM:Run, SynTPStart command: C:\Program Files\Synaptics\SynTP\SynTPStart.exe file: C:\Program Files\Synaptics\SynTP\SynTPStart.exe size: 204800 MD5: 85948695C8A021EC8ACCBFFED8906D97 Located: HK_CU:Run, Sidebar where: S-1-5-19... command: %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem file: C:\Program Files\Windows Sidebar\Sidebar.exe size: 1196032 MD5: 43632977504B323F8A41BF7A9965C453 Located: HK_CU:Run, WindowsWelcomeCenter where: S-1-5-19... command: rundll32.exe oobefldr.dll,ShowWelcomeCenter file: size: 0 MD5: D41D8CD98F00B204E9800998ECF8427E Warning: if the file is actually larger than 0 bytes, the checksum could not be properly calculated! Located: HK_CU:Run, Sidebar where: S-1-5-20... command: %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem file: C:\Program Files\Windows Sidebar\Sidebar.exe size: 1196032 MD5: 43632977504B323F8A41BF7A9965C453 Located: HK_CU:Run, WindowsWelcomeCenter where: S-1-5-20... command: rundll32.exe oobefldr.dll,ShowWelcomeCenter file: size: 0 MD5: D41D8CD98F00B204E9800998ECF8427E Warning: if the file is actually larger than 0 bytes, the checksum could not be properly calculated! Located: HK_CU:Run, ehTray.exe where: S-1-5-21-43106965-3681312334-3663044026-1000... command: C:\Windows\ehome\ehTray.exe file: C:\Windows\ehome\ehTray.exe size: 125440 MD5: 2E0953919779A44BF9DFB7B07C58535A Located: HK_CU:Run, Sidebar where: S-1-5-21-43106965-3681312334-3663044026-1000... command: C:\Program Files\Windows Sidebar\sidebar.exe /autoRun file: C:\Program Files\Windows Sidebar\sidebar.exe size: 1196032 MD5: 43632977504B323F8A41BF7A9965C453 Located: HK_CU:Run, SpybotSD TeaTimer where: S-1-5-21-43106965-3681312334-3663044026-1000... command: C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe file: C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe size: 1460560 MD5: B7D4586BFC0DD6C3BE7DCCC252A3E97E Located: HK_CU:Run, swg where: S-1-5-21-43106965-3681312334-3663044026-1000... command: C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe file: C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe size: 68856 MD5: E616A6A6E91B0A86F2F6217CDE835FFE Located: HK_CU:Run, TOSCDSPD where: S-1-5-21-43106965-3681312334-3663044026-1000... command: C:\Program Files\TOSHIBA\TOSCDSPD\TOSCDSPD.exe file: C:\Program Files\TOSHIBA\TOSCDSPD\TOSCDSPD.exe size: 413696 MD5: 002835A0AFFF66D5A7B7FB266A6AA368 Located: HK_CU:Run, WindowsWelcomeCenter where: S-1-5-21-43106965-3681312334-3663044026-1000... command: rundll32.exe oobefldr.dll,ShowWelcomeCenter file: size: 0 MD5: D41D8CD98F00B204E9800998ECF8427E Warning: if the file is actually larger than 0 bytes, the checksum could not be properly calculated! Located: WinLogon, igfxcui command: igfxdev.dll file: igfxdev.dll size: 0 MD5: D41D8CD98F00B204E9800998ECF8427E Warning: if the file is actually larger than 0 bytes, the checksum could not be properly calculated! --- Browser helper object list --- {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} (SSVHelper Class) location: HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\ BHO name: CLSID name: SSVHelper Class Path: C:\Program Files\Java\jre1.6.0_02\bin\ Long name: ssv.dll Short name: Date (created): 18/07/2007 18:37:54 Date (last access): 12/07/2007 02:22:38 Date (last write): 12/07/2007 04:00:36 Filesize: 501136 Attributes: archive MD5: D6137540BDF0F9F9B9055C60ADD8007A CRC32: 29E910AF Version: 6.0.20.6 {AA58ED58-01DD-4d91-8333-CF10577473F7} (Google Toolbar Helper) location: HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\ BHO name: CLSID name: Google Toolbar Helper description: Google toolbar classification: Open for discussion known filename: googletoolbar.dll<br>googletoolbar*.dll<br>(* = number)<br>googletoolbar_en_*.**-big.dll<br>Googletoolbar_en_*.*.**-deleon.dll info link: http://toolbar.google.com/ info source: TonyKlein Path: c:\program files\google\ Long name: GoogleToolbar2.dll Short name: GOOGLE~2.DLL Date (created): 18/07/2007 18:45:44 Date (last access): 18/07/2007 18:45:44 Date (last write): 18/07/2007 18:45:44 Filesize: 2436160 Attributes: readonly archive MD5: 6D44E0C3B43D27484FBB355E470C4188 CRC32: 2DE875CD Version: 4.0.1601.4978 {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} (Google Toolbar Notifier BHO) location: HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\ BHO name: CLSID name: Google Toolbar Notifier BHO Path: C:\Program Files\Google\GoogleToolbarNotifier\2.1.615.5858\ Long name: swg.dll Short name: Date (created): 18/10/2007 20:07:48 Date (last access): 18/10/2007 20:07:48 Date (last write): 18/10/2007 20:07:48 Filesize: 654832 Attributes: archive MD5: B85A0FA95E24D9EA3B4181DAD716A27B CRC32: D4D52E25 Version: 2.1.615.5858 --- ActiveX list --- {30528230-99f7-4bb4-88d8-fa1d4f56a2ab} (YInstStarter Class) DPF name: CLSID name: YInstStarter Class Installer: C:\Program Files\Yahoo!\Common\yinst.inf Codebase: C:\Program Files\Yahoo!\Common\yinsthelper.dll Path: C:\PROGRA~1\Yahoo!\Common\ Long name: yinsthelper.dll Short name: YINSTH~1.DLL Date (created): 25/10/2007 22:54:14 Date (last access): 25/10/2007 22:54:14 Date (last write): 30/07/2006 13:25:34 Filesize: 188968 Attributes: archive MD5: 18B54B53CEE0E7204495BAB864EBBF03 CRC32: 6D72BB93 Version: 2006.4.14.2 {512FC5A1-7DE1-43F1-BC0C-371622FCB409} (TotalScan Installer Class) DPF name: CLSID name: TotalScan Installer Class Installer: C:\Windows\Downloaded Program Files\ascstubie.inf Codebase: http://www.nanoscan.com/as/v1/cabs/ascstubie.cab Path: C:\Windows\Downloaded Program Files\ Long name: ascstubie.dll Short name: ASCSTU~1.DLL Date (created): 21/08/2007 14:37:26 Date (last access): 21/08/2007 14:37:26 Date (last write): 21/08/2007 14:37:26 Filesize: 124208 Attributes: archive MD5: 0AD87599756B34C0214AFCE961E78DD5 CRC32: EA254381 Version: 1.0.0.7 {5D86DDB5-BDF9-441B-9E9E-D4730F4EE499} (BDSCANONLINE Control) DPF name: CLSID name: BDSCANONLINE Control Installer: C:\Windows\Downloaded Program Files\oscan8.inf Codebase: http://www.bitdefender.fr/scan_fr/scan8/oscan8.cab Path: C:\Windows\DOWNLO~1\ Long name: oscan8.ocx Short name: Date (created): 01/06/2006 02:54:16 Date (last access): 01/06/2006 02:54:16 Date (last write): 01/06/2006 02:54:16 Filesize: 471040 Attributes: archive MD5: 9026F860148F0569BD92AEEFC4BDDFD7 CRC32: D1520CCE Version: 1.0.0.1 --- Process list --- PID: 1864 ( 0) C:\Windows\system32\Dwm.exe size: 83456 MD5: E87B968F3D49117445893EB0503FE34F PID: 1732 ( 0) C:\Windows\Explorer.EXE size: 2923520 MD5: 6D06CD98D954FE87FB2DB8108793B399 PID: 676 ( 0) C:\Program Files\Alwil Software\Avast4\ashDisp.exe size: 79224 MD5: 8CF58586AE4577ED71FFE8883A6D4B3B PID: 1272 ( 0) C:\Windows\System32\igfxtray.exe size: 141848 MD5: 3E824CD12FA7884068CEB8C5DAB53144 PID: 1516 ( 0) C:\Windows\System32\hkcmd.exe size: 154136 MD5: 56C5C96EF9CB6628C739E3BF78221B79 PID: 2072 ( 0) C:\Program Files\Windows Sidebar\sidebar.exe size: 1196032 MD5: 43632977504B323F8A41BF7A9965C453 PID: 2148 ( 0) C:\Program Files\TOSHIBA\TOSCDSPD\TOSCDSPD.exe size: 413696 MD5: 002835A0AFFF66D5A7B7FB266A6AA368 PID: 2228 ( 0) C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe size: 68856 MD5: E616A6A6E91B0A86F2F6217CDE835FFE PID: 2236 ( 0) C:\Windows\system32\igfxsrvc.exe size: 252440 MD5: 5CC3C67D38AD464B35FD798E8F511709 PID: 3636 ( 0) C:\Windows\system32\taskeng.exe size: 166400 MD5: 1226E9FAE5B8508801EC974E3C9D9C14 PID: 3820 ( 0) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe size: 898344 MD5: 4D59B0B63AB11345E36D07D3A4CDFC22 PID: 3848 ( 0) C:\Program Files\Synaptics\SynTP\SynToshiba.exe size: 200704 MD5: 3E64D6BFEC27E07A5A0D6DCA0229E700 PID: 3532 ( 0) C:\Program Files\Internet Explorer\ieuser.exe size: 294912 MD5: 16DFA5BE81D67DF6F20314D1959BE847 PID: 500 ( 0) C:\Program Files\Internet Explorer\iexplore.exe size: 625152 MD5: EDEE147E416398BB3DD5B0DD4F6F1D32 PID: 3696 ( 0) C:\Program Files\Spybot - Search & Destroy\SpybotSD.exe size: 4943184 MD5: C92780F50B8BB7A89E919585916494A9 PID: 2464 ( 0) C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe size: 1460560 MD5: B7D4586BFC0DD6C3BE7DCCC252A3E97E PID: 3780 ( 0) C:\Windows\system32\conime.exe size: 68608 MD5: 05CB3DA78A4BBD9B799A5957F9D101CC --- Browser start & search pages list --- Spybot - Search & Destroy browser pages report, 27/10/2007 13:37:13 HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main\Local Page C:\Windows\system32\blank.htm HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main\Search Page http://go.microsoft.com/fwlink/?LinkId=54896 HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main\Start Page http://go.microsoft.com/fwlink/?LinkId=566.../www.google.fr/ HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Main\Local Page %SystemRoot%\system32\blank.htm HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Main\Search Page http://www.microsoft.com/isapi/redir.dll?p...amp;ar=iesearch HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Main\Start Page http://go.microsoft.com/fwlink/?LinkId=69157 HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Main\Default_Page_URL http://go.microsoft.com/fwlink/?LinkId=69157 HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Main\Default_Search_URL http://go.microsoft.com/fwlink/?LinkId=54896 --- Winsock Layered Service Provider list --- Namespace Provider 3: Fournisseur Shim d'affectation de noms de messagerie GUID: {964ACBA2-B2BC-40EB-8C6A-A6DB40161CAE} Filename: Namespace Provider 4: Fournisseur d'espace de noms du nuage PNRP GUID: {03FE89CE-766D-4976-B9C1-BB9BC42C7B4D} Filename: Namespace Provider 5: Fournisseur d'espace de noms du nom PNRP GUID: {03FE89CD-766D-4976-B9C1-BB9BC42C7B4D} Filename: --- Uninstall list --- 7-Zip 4.56 beta (7-Zip) uninstall cmd: "C:\Program Files\7-Zip\Uninstall.exe" (AddressBook) Adobe Flash Player Plugin 9.0.47.0 (Adobe Flash Player Plugin) uninstall cmd: C:\Windows\system32\Macromed\Flash\uninstall_plugin.exe publisher: Adobe Systems Incorporated Adssite Browser Optimizer 3.5.0.0 (adssite) uninstall cmd: C:\Windows\system32\adssite-remove.exe Adssite Games Collection (AdssiteGames) uninstall cmd: C:\Program Files\Adssite Games Collection\uninstall.exe avast! Antivirus 4.7 (avast!) version (major): 4 version (minor): 7 install location: C:\PROGRA~1\ALWILS~1\Avast4 install source: C:\PROGRA~1\ALWILS~1\Avast4\setup uninstall cmd: rundll32 C:\PROGRA~1\ALWILS~1\Avast4\Setup\setiface.dll,RunSetup publisher: Alwil Software help link: http://www.avast.com AVG Anti-Spyware 7.5 (AVGAntiSpyware75) install location: C:\Program Files\Grisoft\AVG Anti-Spyware 7.5 uninstall cmd: C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\Uninstall.exe publisher: Grisoft Ltd. help link: http://www.grisoft.com CCleaner (remove only) (CCleaner) uninstall cmd: "C:\Program Files\CCleaner\uninst.exe" (Connection Manager) (DirectDrawEx) (DXM_Runtime) (Fontcore) Intel® Graphics Media Accelerator Driver (HDMI) uninstall cmd: C:\Windows\system32\igxpun.exe -uninstall HijackThis 2.0.2 2.0.2 (HijackThis) uninstall cmd: "C:\Program Files\Trend Micro\HijackThis\HijackThis.exe" /uninstall publisher: TrendMicro (IE40) (IE4Data) (IE5BAKEX) (IEData) (InstallShield Uninstall Information) Texas Instruments PCIxx21/x515/xx12 drivers. 1.22.0000 (InstallShield_{0409969E-BEFB-44D3-90B9-63BE50FBAE5E}) version: 18219008 version (major): 1 version (minor): 22 estimated size: 1000 install date: 20070308 install location: C:\Windows\tiinst\ install source: C:\Toshiba\components\Flashmedia Driver\ uninstall cmd: C:\Program Files\InstallShield Installation Information\{0409969E-BEFB-44D3-90B9-63BE50FBAE5E}\setup.exe -runfromtemp -l0x040c publisher: Nom de votre société comments: TI PCIxx21/PCIx515/xx12 Software components contact: Customer Support Department help link: Please contact your vendor directly help telephone: ... (InstallShield_{12688FD7-CB92-4A5B-BEE4-5C8E0574434F}) WinDVD for TOSHIBA 8.0-B6.108 (InstallShield_{20471B27-D702-4FE8-8DEC-0702CC8C0A85}) version: 134217728 version (major): 8 estimated size: 125946 install date: 20070716 install location: C:\Program Files\InterVideo\DVD8\ install source: C:\Toshiba\Drivers\DVDPlayer\ uninstall cmd: C:\Program Files\InstallShield Installation Information\{20471B27-D702-4FE8-8DEC-0702CC8C0A85}\setup.exe -runfromtemp -l0x040c publisher: InterVideo Inc. contact: http://www.intervideo.com/jsp/Support.jsp/ help link: support@intervideo.com TOSHIBA Mot de passe responsable 1.49.0.2C (InstallShield_{51B4E156-14A5-4904-9AE4-B1AA2A0E46BE}) version: 19988480 version (major): 1 version (minor): 49 estimated size: 4956 install date: 20070308 install source: C:\Users\ADMINI~1\AppData\Local\Temp\_is7243\ uninstall cmd: C:\PROGRA~1\COMMON~1\INSTAL~1\Driver\7\INTEL3~1\IDriver.exe /M{51B4E156-14A5-4904-9AE4-B1AA2A0E46BE} /l1036 publisher: TOSHIBA comments: 0 TOSHIBA Hardware Setup 1.49.0.3C (InstallShield_{5279374D-87FE-4879-9385-F17278EBB9D3}) version: 19988480 version (major): 1 version (minor): 49 estimated size: 3040 install date: 20070308 install source: C:\Users\ADMINI~1\AppData\Local\Temp\_is676A\ uninstall cmd: C:\PROGRA~1\COMMON~1\INSTAL~1\Driver\7\INTEL3~1\IDriver.exe /M{5279374D-87FE-4879-9385-F17278EBB9D3} /l1036 publisher: TOSHIBA TOSHIBA Extended Tiles for Windows Mobility Center 1.01.00 (InstallShield_{617C36FD-0CBE-4600-84B2-441CEB12FADF}) version: 16842752 version (major): 1 version (minor): 1 estimated size: 1282 install date: 20070308 install location: C:\Program Files\TOSHIBA\MobilityCenter\ install source: C:\Toshiba\components\Tiles for Mobility Center\ uninstall cmd: C:\Program Files\InstallShield Installation Information\{617C36FD-0CBE-4600-84B2-441CEB12FADF}\setup.exe -runfromtemp -l0x040c publisher: Toshiba TOSHIBA Flash Cards Support Utility 1.49.0.2C (InstallShield_{620BBA5E-F848-4D56-8BDA-584E44584C5E}) version: 19988480 version (major): 1 version (minor): 49 estimated size: 20 install date: 20070308 install source: C:\Users\ADMINI~1\AppData\Local\Temp\_isD04A\ uninstall cmd: C:\PROGRA~1\COMMON~1\INSTAL~1\Driver\7\INTEL3~1\IDriver.exe /M{620BBA5E-F848-4D56-8BDA-584E44584C5E} publisher: TOSHIBA TOSHIBA Value Added Package 1.0.11 (InstallShield_{FEDD27A0-B306-45EF-BF58-B527406B42C8}) version: 16777227 version (major): 1 estimated size: 71770 install date: 20070308 install location: C:\Program Files\My Company Name\My Product Name\ install source: C:\Toshiba\components\Value Added Package\ uninstall cmd: C:\Program Files\InstallShield Installation Information\{FEDD27A0-B306-45EF-BF58-B527406B42C8}\setup.exe -runfromtemp -l0x040c publisher: TOSHIBA Corporation K-Lite Codec Pack 3.3.0 Full 3.30 (KLiteCodecPack_is1) install date: 20070729 install location: C:\Program Files\K-Lite Codec Pack\ uninstall cmd: "C:\Program Files\K-Lite Codec Pack\unins000.exe" LimeWire 4.12.15 4.12.15 (LimeWire) uninstall cmd: "C:\Program Files\LimeWire\uninstall.exe" publisher: Lime Wire, LLC help link: http://www.limewire.com/support LiveUpdate 3.2 (Symantec Corporation) 3.2.0.41 (LiveUpdate) install location: "C:\Program Files\Symantec\LiveUpdate" uninstall cmd: "C:\Program Files\Symantec\LiveUpdate\LSETUP.EXE" /U publisher: Symantec Corporation Maxi Mah Jong 3D (Maxi Mah Jong 3D) uninstall cmd: C:\PROGRA~1\MICROA~1\MAXIMA~1\Data\System\Unwise32.exe C:\PROGRA~1\MICROA~1\MAXIMA~1\Data\System\Install.log (MobileOptionPack) Mozilla Firefox (2.0.0. 2.0.0.8 (fr) (Mozilla Firefox (2.0.0.) install location: C:\Program Files\Mozilla Firefox uninstall cmd: C:\Program Files\Mozilla Firefox\uninstall\helper.exe publisher: Mozilla comments: Mozilla Firefox (MPlayer2) myphotobook 3.1 3.1 (myphotobook) uninstall cmd: C:\Program Files\myphotobook\uninst.exe publisher: myphotobook (Nero - Burning Rom!UninstallKey) uninstall cmd: C:\Program Files\Nero\Nero8\\nero\uninstall\UNNERO.exe /UNINSTALL (NeroBackItUp!UninstallKey) uninstall cmd: C:\Windows\UNNeroBackItUp.exe /UNINSTALL (NeroMediaHome!UninstallKey) uninstall cmd: C:\Windows\UNNeroMediaHome.exe /UNINSTALL (NeroRecode!UninstallKey) uninstall cmd: C:\Windows\UNRecode.exe /UNINSTALL (NeroShowTime!UninstallKey) uninstall cmd: C:\Windows\UNNeroShowTime.exe /UNINSTALL (NeroVision!UninstallKey) uninstall cmd: C:\Windows\UNNeroVision.exe /UNINSTALL Barre d'outils Orange 1.0 (OrangeToolbarFR) uninstall cmd: C:\Program Files\Orange Toolbar FR\uninst.exe publisher: France Telecom SA Picasa 2 2.0 (Picasa2) uninstall cmd: "C:\Program Files\Picasa2\Uninstall.exe" publisher: Google, Inc. help link: http://www.picasa.com/ RegistryFix v6.2 (RegistryFix_is1) install date: 20070829 install location: C:\Program Files\RegistryFix\ uninstall cmd: "C:\Program Files\RegistryFix\unins000.exe" publisher: RegistryFix help link: http://www.RegistryFix.com (SchedulingAgent) (ShockwaveFlash) Synaptics Pointing Device Driver 10.0.9.0 (SynTPDeinstKey) uninstall cmd: rundll32.exe "C:\Program Files\Synaptics\SynTP\SynISDLL.dll",standAloneUninstall publisher: Synaptics TOSHIBA Software Modem 2.1.77 (SM2177ALD03) (TOSHIBA Software Modem) uninstall cmd: Tosmreg -U publisher: Agere Systems Panda TotalScan 01.01.01.0002 (TotalScan) estimated size: 4000 install location: C:\Program Files\Panda Security\TotalScan uninstall cmd: C:\Program Files\Panda Security\TotalScan\ascuninst.exe publisher: Panda Security help link: http://www.nanoscan.com/as/v1/ayuda.aspx VideoLAN VLC media player 0.8.6c 0.8.6c (VLC media player) uninstall cmd: C:\Program Files\VideoLAN\VLC\uninstall.exe publisher: VideoLAN Team Codeur Windows Media Série 9 (Windows Media Encoder 9) uninstall cmd: msiexec.exe /I {E38C00D0-A68B-4318-A8A6-F7D4B5B1DF0E} Yahoo! Anti-Spy (Yahoo! Anti-Spy) uninstall cmd: C:\PROGRA~1\Yahoo!\Common\unypsr.exe Yahoo! Toolbar avec bloqueur de fenêtres pop-up (Yahoo! Companion) uninstall cmd: C:\PROGRA~1\Yahoo!\Common\unyt.exe Yahoo! Toolbar (Yahoo! Toolbar) Yahoo! Install Manager (YInstHelper) uninstall cmd: C:\Windows\system32\regsvr32 /u C:\PROGRA~1\Yahoo!\Common\YINSTH~1.DLL ({0020FEE2-7CDB-4250-B04B-81D68D3CA18B}) TIPCI 1.22.0000 ({0409969E-BEFB-44D3-90B9-63BE50FBAE5E}) version: 18219008 version (major): 1 version (minor): 22 estimated size: 1000 install date: 20070308 install location: C:\Windows\tiinst\ install source: C:\Toshiba\components\Flashmedia Driver\ publisher: Nom de votre société comments: TI PCIxx21/PCIx515/xx12 Software components contact: Customer Support Department help link: Please contact your vendor directly help telephone: ... Utility Common Driver 0.0.50.7C ({12688FD7-CB92-4A5B-BEE4-5C8E0574434F}) version: 50 estimated size: 148 install date: 20070308 install source: C:\Users\ADMINI~1\AppData\Local\Temp\_isA87F\ publisher: TOSHIBA TOSHIBA Assist 2.00.03 ({12B3A009-A080-4619-9A2A-C6DB151D8D67}) version: 33554435 install location: C:\Program Files\TOSHIBA\TOSHIBA Assist uninstall cmd: RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\PROFES~1\RunTime91\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{12B3A009-A080-4619-9A2A-C6DB151D8D67}\setup.exe" -l0x40c ({18D10072035C4515918F7E37EAFAACFC}) WinDVD for TOSHIBA 8.0-B6.108 ({20471B27-D702-4FE8-8DEC-0702CC8C0A85}) version: 134217728 version (major): 8 estimated size: 125946 install date: 20070716 install location: C:\Program Files\InterVideo\DVD8\ install source: C:\Toshiba\Drivers\DVDPlayer\ publisher: InterVideo Inc. contact: http://www.intervideo.com/jsp/Support.jsp/ help link: support@intervideo.com Toshiba Online Product Information 1.00.0008 ({2290A680-4083-410A-ADCC-7092C67FC052}) version: 16777224 install date: 20070309 install location: C:\Program Files\TOSHIBA\Toshiba Online Product Information install source: C:\Toshiba\components\Toshiba Online Product Information\ uninstall cmd: C:\Program Files\InstallShield Installation Information\{2290A680-4083-410A-ADCC-7092C67FC052}\setup.exe -runfromtemp -l0x040c -removeonly publisher: TOSHIBA Google Toolbar for Internet Explorer ({2318C2B1-4965-11d4-9B18-009027A5CD4F}) uninstall cmd: regsvr32 /u /s "c:\program files\google\googletoolbar2.dll" Atheros Driver Installation Program 7.1 ({28006915-2739-4EBE-B5E8-49B25D32EB33}) version: 117506048 install date: 20070716 install location: C:\Program Files\Atheros install source: C:\Toshiba\Drivers\WLAN\Atheros\ uninstall cmd: RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\PROFES~1\RunTime\11\50\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{28006915-2739-4EBE-B5E8-49B25D32EB33}\Setup.exe" -l0x40c -removeonly publisher: Atheros Java SE Runtime Environment 6 1.6.0.0 ({3248F0A8-6813-11D6-A77B-00B0D0160000}) version: 17170432 version (major): 1 version (minor): 6 estimated size: 117374 install date: 20070308 install source: C:\Users\Administrator\AppData\LocalLow\Sun\Java\jre1.6.0\ uninstall cmd: MsiExec.exe /I{3248F0A8-6813-11D6-A77B-00B0D0160000} publisher: Sun Microsystems, Inc. contact: http://java.com help link: http://java.com readme: C:\Program Files\Java\jre1.6.0\README.txt Java 6 Update 2 1.6.0.20 ({3248F0A8-6813-11D6-A77B-00B0D0160020}) version: 17170432 version (major): 1 version (minor): 6 estimated size: 136370 install date: 20070718 install source: http://javadl.sun.com/webapps/download/Get...6/windows-i586/ uninstall cmd: MsiExec.exe /I{3248F0A8-6813-11D6-A77B-00B0D0160020} publisher: Sun Microsystems, Inc. contact: http://java.com help link: http://java.com readme: C:\Program Files\Java\jre1.6.0_02\README.txt MSXML 4.0 SP2 (KB927978) 4.20.9841.0 ({37477865-A3F1-4772-AD43-AAFC6BCFF99F}) version: 68429425 version (major): 4 version (minor): 20 estimated size: 1269 install date: 20070718 install source: e:\a188cee01a3a0c63e771\ uninstall cmd: MsiExec.exe /I{37477865-A3F1-4772-AD43-AAFC6BCFF99F} publisher: Microsoft Corporation help link: http://support.microsoft.com/kb/927978 Camera Assistant Software for Toshiba 1.7.115.0213 ({37C866E4-AA67-4725-9E95-A39968DD7960}) version: 17236083 install date: 20070716 install location: C:\Program Files\Camera Assistant Software for Toshiba install source: C:\toshiba\drivers\WEBCam\ToshibaCAS.exe uninstall cmd: RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\PROFES~1\RunTime\11\50\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{37C866E4-AA67-4725-9E95-A39968DD7960}\setup.exe" -l0x40c publisher: Chicony Electronics Co.,Ltd. VCRedistSetup 1.0.0 ({3921A67A-5AB1-4E48-9444-C71814CF3027}) version: 16777216 version (major): 1 estimated size: 4501 install date: 20071016 install source: C:\Users\isabelle\AppData\Local\Temp\NERO13895\Data\Redist\ uninstall cmd: MsiExec.exe /I{3921A67A-5AB1-4E48-9444-C71814CF3027} publisher: Nero AG contact: Nero AG ({3CF0858D-1AC5-4308-9DE7-AD15288A8BDC}) Google Earth 4.1.7087.5048 ({407B9B5C-DAC5-4F44-A756-B57CAB4E6A8B}) version: 67181487 version (major): 4 version (minor): 1 estimated size: 34617 install date: 20070802 install location: C:\Program Files\Google\Google Earth\ install source: C:\Users\isabelle\AppData\Local\Temp\{10503E09-A46A-4223-B3DE-878F2AE445E0}\ uninstall cmd: MsiExec.exe /I{407B9B5C-DAC5-4F44-A756-B57CAB4E6A8B} publisher: Google TOSHIBA Supervisor Password 1.49.0.2C ({51B4E156-14A5-4904-9AE4-B1AA2A0E46BE}) version: 19988480 version (major): 1 version (minor): 49 estimated size: 4956 install date: 20070308 install source: C:\Users\ADMINI~1\AppData\Local\Temp\_is7243\ publisher: TOSHIBA comments: 0 TOSHIBA Hardware Setup 1.49.0.3C ({5279374D-87FE-4879-9385-F17278EBB9D3}) version: 19988480 version (major): 1 version (minor): 49 estimated size: 3040 install date: 20070308 install source: C:\Users\ADMINI~1\AppData\Local\Temp\_is676A\ publisher: TOSHIBA neroxml 1.0.0 ({56C049BE-79E9-4502-BEA7-9754A3E60F9B}) version: 16777216 version (major): 1 estimated size: 1268 install date: 20070730 install source: C:\Users\isabelle\AppData\Local\Temp\NER466E.tmp\Redist\ uninstall cmd: MsiExec.exe /I{56C049BE-79E9-4502-BEA7-9754A3E60F9B} publisher: Nero AG contact: Nero AG Desktop SMS 1.2.0 ({5980B928-1C95-4B3E-957B-B02D8147FF9E}) version: 16908288 version (major): 1 version (minor): 2 estimated size: 15494 install date: 20070308 install source: C:\toshiba\DesktopSMS\ uninstall cmd: MsiExec.exe /I{5980B928-1C95-4B3E-957B-B02D8147FF9E} publisher: IDM contact: Interactive Digital Media TOSHIBA Disc Creator 2.0.0.7 ({5DA0E02F-970B-424B-BF41-513A5018E4C0}) version: 33554432 version (major): 2 estimated size: 9738 install date: 20070308 install location: C:\Program Files\TOSHIBA\TOSHIBA Disc Creator\ install source: C:\Users\ADMINI~1\AppData\Local\Temp\_is6C1A\ uninstall cmd: MsiExec.exe /X{5DA0E02F-970B-424B-BF41-513A5018E4C0} publisher: TOSHIBA Corporation TOSHIBA Extended Tiles for Windows Mobility Center 1.01.00 ({617C36FD-0CBE-4600-84B2-441CEB12FADF}) version: 16842752 version (major): 1 version (minor): 1 estimated size: 1282 install date: 20070308 install location: C:\Program Files\TOSHIBA\MobilityCenter\ install source: C:\Toshiba\components\Tiles for Mobility Center\ publisher: Toshiba TOSHIBA Flash Cards Support Utility 1.49.0.2C ({620BBA5E-F848-4D56-8BDA-584E44584C5E}) version: 19988480 version (major): 1 version (minor): 49 estimated size: 20 install date: 20070308 install source: C:\Users\ADMINI~1\AppData\Local\Temp\_isD04A\ publisher: TOSHIBA 2.1 ({622E6F16-0904-49B6-BBE1-4CC836314CCF}) version: 33619968 version (major): 2 install location: c:\program files\ulead systems\dvd moviefactory for toshiba\Ulead DVD Tweak and Fit 2.1 uninstall cmd: RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\PROFES~1\RunTime701\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{622E6F16-0904-49B6-BBE1-4CC836314CCF}\setup.exe" -l0x40c publisher: Ulead Systems, Inc. ({62369F2F77534556AEF4C58152E3BDE5}) Visual C++ 8.0 CRT.Policy (x86) WinSXS MSM Beta2 8.0.50727.42 ({63E949F6-03BC-5C40-FF1F-C8B3B9A1E18E}) version: 134268455 version (major): 8 estimated size: 72 install date: 20071018 install source: C:\Users\isabelle\AppData\Local\Temp\is-UP3KJ.tmp\ uninstall cmd: MsiExec.exe /I{63E949F6-03BC-5C40-FF1F-C8B3B9A1E18E} publisher: Microsoft Corporation Visual C++ 8.0 ATL.Policy (x86) WinSXS MSM Beta2 8.0.50727.42 ({66332652-9C28-58B1-FF1F-C8B3B9A1E18E}) version: 134268455 version (major): 8 estimated size: 72 install date: 20071018 install source: C:\Users\isabelle\AppData\Local\Temp\is-UP3KJ.tmp\ uninstall cmd: MsiExec.exe /I{66332652-9C28-58B1-FF1F-C8B3B9A1E18E} publisher: Microsoft Corporation Visual C++ 8.0 MFC.Policy (x86) WinSXS MSM Beta2 8.0.50727.42 ({68B7C6D9-1DF2-54C1-FF1F-C8B3B9A1E18E}) version: 134268455 version (major): 8 estimated size: 72 install date: 20071018 install source: C:\Users\isabelle\AppData\Local\Temp\is-UP3KJ.tmp\ uninstall cmd: MsiExec.exe /I{68B7C6D9-1DF2-54C1-FF1F-C8B3B9A1E18E} publisher: Microsoft Corporation 2.2 ({697AFC77-F318-4CD4-BF16-F50F4C1072DA}) version: 33685504 version (major): 2 install location: c:\program files\ulead systems\dvd moviefactory for toshiba\Ulead DVD DiscRecorder 2.2 uninstall cmd: RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\PROFES~1\RunTime701\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{697AFC77-F318-4CD4-BF16-F50F4C1072DA}\setup.exe" -l0x40c publisher: Ulead Systems, Inc. Windows Media Player Firefox Plugin 1.0.0.8 ({69FDFBB6-351D-4B8C-89D8-867DC9D0A2A4}) version: 16777216 version (major): 1 estimated size: 600 install date: 20070902 install source: C:\Users\isabelle\AppData\Local\Temp\IXP000.TMP\ uninstall cmd: MsiExec.exe /I{69FDFBB6-351D-4B8C-89D8-867DC9D0A2A4} publisher: Microsoft Corp ({7B63B2922B174135AFC0E1377DD81EC2}) Realtek 8169 PCI, 8168 and 8101E PCIe Ethernet Network Card Driver for Windows Vista 1.00.0000 ({8833FFB6-5B0C-4764-81AA-06DFEED9A476}) version: 16777216 install date: 20070308 install location: C:\Program Files\Realtek\Realtek 8169 PCI, 8168 and 8101E PCIe Ethernet Network Card Driver for Windows Vista install source: C:\Toshiba\components\Network Driver\ uninstall cmd: C:\Program Files\InstallShield Installation Information\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}\setup.exe -runfromtemp -l0x040c -removeonly publisher: Realtek Sudoku ({891B35C9-FEA9-4CF7-BC42-34A39D64ED0C}) uninstall cmd: RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{891B35C9-FEA9-4CF7-BC42-34A39D64ED0C}\SETUP.EXE" -l0x40c ({8ADFC4160D694100B5B8A22DE9DCABD9}) Visual C++ 8.0 ATL (x86) WinSXS MSM Beta2 8.0.50727.42 ({97F81AF1-0E47-DC99-FF1F-C8B3B9A1E18E}) version: 134268455 version (major): 8 estimated size: 140 install date: 20071018 install source: C:\Users\isabelle\AppData\Local\Temp\is-UP3KJ.tmp\ uninstall cmd: MsiExec.exe /I{97F81AF1-0E47-DC99-FF1F-C8B3B9A1E18E} publisher: Microsoft Corporation Visual C++ 8.0 CRT (x86) WinSXS MSM Beta2 8.0.50727.42 ({98CB24AD-52FB-DB5F-FF1F-C8B3B9A1E18E}) version: 134268455 version (major): 8 estimated size: 604 install date: 20071018 install source: C:\Users\isabelle\AppData\Local\Temp\is-UP3KJ.tmp\ uninstall cmd: MsiExec.exe /I{98CB24AD-52FB-DB5F-FF1F-C8B3B9A1E18E} publisher: Microsoft Corporation Visual C++ 8.0 MFC (x86) WinSXS MSM Beta2 8.0.50727.42 ({9BAE13A2-E7AF-D6C3-FF1F-C8B3B9A1E18E}) version: 134268455 version (major): 8 estimated size: 1556 install date: 20071018 install source: C:\Users\isabelle\AppData\Local\Temp\is-UP3KJ.tmp\ uninstall cmd: MsiExec.exe /I{9BAE13A2-E7AF-D6C3-FF1F-C8B3B9A1E18E} publisher: Microsoft Corporation Réducteur de bruit lect. CD/DVD 2.00.02 ({9FE35071-CAB2-4E79-93E7-BFC6A2DC5C5D}) version: 33554434 install location: C:\Program Files\TOSHIBA\TOSCDSPD uninstall cmd: RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\PROFES~1\RunTime91\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{9FE35071-CAB2-4E79-93E7-BFC6A2DC5C5D}\setup.exe" -l0x40c publisher: TOSHIBA Microsoft Visual C++ 2005 Redistributable 8.0.50727.42 ({A49F249F-0C91-497F-86DF-B2585E8E76B7}) version: 134268455 version (major): 8 estimated size: 558 install date: 20070716 install source: C:\Windows\TEMP\IXP000.TMP\ uninstall cmd: MsiExec.exe /X{A49F249F-0C91-497F-86DF-B2585E8E76B7} publisher: Microsoft Corporation ({A644254B-92F6-4970-8635-AB0775371E72}) install location: C:\Program Files\InterVideo\AVControl uninstall cmd: "C:\Program Files\InstallShield Installation Information\{A644254B-92F6-4970-8635-AB0775371E72}\setup.exe" --u:{A644254B-92F6-4970-8635-AB0775371E72} publisher: InterVideo Inc. contact: support@intervideo.com help link: http://www.intervideo.com/jsp/Support.jsp Adobe Reader 7.0.9 - Français 7.0.9 ({AC76BA86-7AD7-1036-7B44-A70900000002}) version: 117440521 version (major): 7 estimated size: 78572 install date: 20070308 install source: C:\Program Files\Adobe\Acrobat 7.0\Setup Files\RdrBig709\FRA\ uninstall cmd: MsiExec.exe /I{AC76BA86-7AD7-1036-7B44-A70900000002} publisher: Adobe Systems Incorporated comments: contact: help link: http://www.adobe.fr/support/main.html help telephone: readme: C:\Program Files\Adobe\Acrobat 7.0\Reader\Readme.htm ({B13A7C41581B411290FBC0395694E2A9}) Spybot - Search & Destroy 1.5.1.15 ({B4092C6D-E886-4CB2-BA68-FE5A88D31DE6}_is1) install date: 20071027 install location: C:\Program Files\Spybot - Search & Destroy\ uninstall cmd: "C:\Program Files\Spybot - Search & Destroy\unins000.exe" publisher: Safer Networking Limited help link: http://www.safer-networking.org/index.php?page=support Nero 8 Demo 8.10.81 ({B4649EFB-54CB-42AB-8536-8FED519E1036}) version: 134873169 version (major): 8 version (minor): 10 estimated size: 1784874 install date: 20071017 install location: C:\Program Files\Nero\Nero8\ install source: C:\Users\isabelle\AppData\Local\Temp\NERO13895\Data\ uninstall cmd: MsiExec.exe /X{B4649EFB-54CB-42AB-8536-8FED519E1036} publisher: Nero AG comments: Nero AG contact: http://www.nero.com help link: http://support.nero.com help telephone: xxxxxxxxxxxxxx Microsoft XML Parser 8.20.8730.4 ({B5FDA445-CAC4-4BA6-A8FB-A7212BD439DE}) version: 135537178 version (major): 8 version (minor): 20 estimated size: 792 install date: 20070308 install source: C:\Users\ADMINI~1\AppData\Local\Temp\IXP000.TMP\ publisher: Microsoft Corporation TOSHIBA ConfigFree 7.00.24 ({BDD83DC9-BEE9-4654-A5DA-CC46C250088D}) version: 117440536 install date: 20070308 install location: C:\Program Files\TOSHIBA\ConfigFree install source: C:\Toshiba\components\Config Free\ uninstall cmd: C:\Program Files\InstallShield Installation Information\{BDD83DC9-BEE9-4654-A5DA-CC46C250088D}\setup.exe -runfromtemp -l0x040cuninstall -removeonly publisher: TOSHIBA MSXML 4.0 SP2 (KB936181) 4.20.9848.0 ({C04E32E0-0416-434D-AFB9-6969D703A9EF}) version: 68429432 version (major): 4 version (minor): 20 estimated size: 1296 install date: 20070829 install source: e:\fb36cadfe7cabf7930ad0be1\ uninstall cmd: MsiExec.exe /I{C04E32E0-0416-434D-AFB9-6969D703A9EF} publisher: Microsoft Corporation help link: http://support.microsoft.com/kb/936181 MSXML 4.0 SP2 (KB941833) 4.20.9849.0 ({C523D256-313D-4866-B36A-F3DE528246EF}) version: 68429433 version (major): 4 version (minor): 20 estimated size: 1296 install date: 20071011 install source: e:\c426394f6980395921ffce850f\ uninstall cmd: MsiExec.exe /I{C523D256-313D-4866-B36A-F3DE528246EF} publisher: Microsoft Corporation help link: http://support.microsoft.com/kb/941833 Bluetooth Stack for Windows by Toshiba v5.10.04(T) ({CEBB6BFB-D708-4F99-A633-BC2600E01EF6}) version: 83886080 version (major): 5 version (minor): 10 estimated size: 55324 install date: 20070308 install location: c:\Program Files\Toshiba\Bluetooth Toshiba Stack\ install source: c:\Toshiba\components\bluetooth stack\ uninstall cmd: MsiExec.exe /X{CEBB6BFB-D708-4F99-A633-BC2600E01EF6} LiveUpdate Notice (Symantec Corporation) 1.2.0 ({DBA4DB9D-EE51-4944-A419-98AB1F1249C8}) version: 16908288 version (major): 1 version (minor): 2 estimated size: 4607 install date: 20070721 install source: C:\PROGRA~2\Symantec\LIVEUP~1\DOWNLO~1\Updt270\ uninstall cmd: MsiExec.exe /X{DBA4DB9D-EE51-4944-A419-98AB1F1249C8} publisher: Symantec Corporation Google Toolbar for Internet Explorer 4.0.0.002 ({DBEA1034-5882-4A88-8033-81C4EF0CFA29}) version: 67108864 version (major): 4 estimated size: 2132 install date: 20070718 install source: http://javadl-esd.sun.com/update/1.6.0/sp-1.6.0_02/sp1/ uninstall cmd: MsiExec.exe /I{DBEA1034-5882-4A88-8033-81C4EF0CFA29} publisher: Google Inc. Codeur Windows Media Série 9 9.00.2980 ({E38C00D0-A68B-4318-A8A6-F7D4B5B1DF0E}) version: 150997924 version (major): 9 estimated size: 14043 install date: 20070308 install source: C:\Windows\Installer\ uninstall cmd: MsiExec.exe /I{E38C00D0-A68B-4318-A8A6-F7D4B5B1DF0E} publisher: Microsoft Corporation help link: http://go.microsoft.com/fwlink/?LinkId=9647 TOSHIBA SD Memory Utilities 1.7 ({EBFF48F5-3CFA-436F-8FD5-94FB01D3A0A7}) version: 17235968 version (major): 1 version (minor): 7 estimated size: 1411 install date: 20070308 install location: C:\Program Files\TOSHIBA\TOSHIBA SD Memory Utilities\ install source: C:\Users\ADMINI~1\AppData\Local\Temp\_is5A30\ uninstall cmd: MsiExec.exe /X{EBFF48F5-3CFA-436F-8FD5-94FB01D3A0A7} publisher: TOSHIBA Realtek High Definition Audio Driver 6.0.1.5361 ({F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) version: 35323904 install date: 20070308 install location: C:\Program Files\Realtek\InstallShield\ install source: C:\Toshiba\components\Sound Driver\ uninstall cmd: RtlUpd.exe -r -m publisher: Realtek Semiconductor Corp. DVD MovieFactory for TOSHIBA 5.3 ({F214EAA4-A069-4BAF-9DA4-4DB8BEEDE485}) version: 84082688 version (major): 5 install location: C:\Program Files\Ulead Systems\DVD MovieFactory for TOSHIBA\Ulead DVD MovieFactory 5 uninstall cmd: RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\PROFES~1\RunTime701\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{F214EAA4-A069-4BAF-9DA4-4DB8BEEDE485}\setup.exe" -l0x40c publisher: Ulead Systems, Inc. TOSHIBA Value Added Package 1.0.11 ({FEDD27A0-B306-45EF-BF58-B527406B42C8}) version: 16777227 version (major): 1 estimated size: 71770 install date: 20070308 install location: C:\Program Files\My Company Name\My Product Name\ install source: C:\Toshiba\components\Value Added Package\ publisher: TOSHIBA Corporation --- System Services --- Service (registry key): .NET CLR Data Registry path: \SYSTEM\CurrentControlSet\Services\ Control Set: CurrentControlSet Start: 0 Type: 0 Error Control: 0 Service (registry key): .NET CLR Networking Registry path: \SYSTEM\CurrentControlSet\Services\ Control Set: CurrentControlSet Start: 0 Type: 0 Error Control: 0 Service (registry key): .NET Data Provider for Oracle Registry path: \SYSTEM\CurrentControlSet\Services\ Control Set: CurrentControlSet Start: 0 Type: 0 Error Control: 0 Service (registry key): .NET Data Provider for SqlServer Registry path: \SYSTEM\CurrentControlSet\Services\ Control Set: CurrentControlSet Start: 0 Type: 0 Error Control: 0 Service (registry key): .NETFramework Registry path: \SYSTEM\CurrentControlSet\Services\ Control Set: CurrentControlSet Start: 0 Type: 0 Error Control: 0 Service (registry key): ACPI Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: Pilote ACPI Microsoft Image path: system32\drivers\acpi.sys Image size: 0 Image MD5: D41D8CD98F00B204E9800998ECF8427E Control Set: CurrentControlSet Start: 0 Type: 1 Error Control: 3 Service (registry key): adp94xx Registry path: \SYSTEM\CurrentControlSet\Services\ Image path: \SystemRoot\system32\drivers\adp94xx.sys Image size: 0 Image MD5: D41D8CD98F00B204E9800998ECF8427E Control Set: CurrentControlSet Start: 4 Type: 1 Error Control: 1 Service (registry key): adpahci Registry path: \SYSTEM\CurrentControlSet\Services\ Image path: \SystemRoot\system32\drivers\adpahci.sys Image size: 0 Image MD5: D41D8CD98F00B204E9800998ECF8427E Control Set: CurrentControlSet Start: 4 Type: 1 Error Control: 1 Service (registry key): adpu160m Registry path: \SYSTEM\CurrentControlSet\Services\ Image path: \SystemRoot\system32\drivers\adpu160m.sys Image size: 0 Image MD5: D41D8CD98F00B204E9800998ECF8427E Control Set: CurrentControlSet Start: 4 Type: 1 Error Control: 1 Service (registry key): adpu320 Registry path: \SYSTEM\CurrentControlSet\Services\ Image path: \SystemRoot\system32\drivers\adpu320.sys Image size: 0 Image MD5: D41D8CD98F00B204E9800998ECF8427E Control Set: CurrentControlSet Start: 4 Type: 1 Error Control: 1 Service (registry key): adsi Registry path: \SYSTEM\CurrentControlSet\Services\ Control Set: CurrentControlSet Start: 0 Type: 0 Error Control: 0 Service (registry key): AeLookupSvc Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: @%SystemRoot%\system32\aelupsvc.dll,-1 Description: @%SystemRoot%\system32\aelupsvc.dll,-2 Object name: localSystem Image path: %systemroot%\system32\svchost.exe -k netsvcs Image size: 22016 Image MD5: 10DA15933D582D2FEDCF705EFE394B09 Control Set: CurrentControlSet Start: 2 Type: 32 Error Control: 1 Service (registry key): AFD Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: Ancilliary Function Driver for Winsock Description: Ancilliary Function Driver for Winsock Image path: \SystemRoot\system32\drivers\afd.sys Image size: 0 Image MD5: D41D8CD98F00B204E9800998ECF8427E Control Set: CurrentControlSet Start: 1 Type: 1 Error Control: 1 Service (registry key): AgereSoftModem Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: TOSHIBA V92 Software Modem Image path: system32\DRIVERS\AGRSM.sys Image size: 0 Image MD5: D41D8CD98F00B204E9800998ECF8427E Control Set: CurrentControlSet Start: 3 Type: 1 Error Control: 1 Service (registry key): agp440 Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: Intel AGP Bus Filter Image path: \SystemRoot\system32\drivers\agp440.sys Image size: 0 Image MD5: D41D8CD98F00B204E9800998ECF8427E Control Set: CurrentControlSet Start: 3 Type: 1 Error Control: 1 Service (registry key): aic78xx Registry path: \SYSTEM\CurrentControlSet\Services\ Image path: \SystemRoot\system32\drivers\djsvs.sys Image size: 0 Image MD5: D41D8CD98F00B204E9800998ECF8427E Control Set: CurrentControlSet Start: 4 Type: 1 Error Control: 1 Service (registry key): ALG Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: @%SystemRoot%\system32\Alg.exe,-112 Description: @%SystemRoot%\system32\Alg.exe,-113 Object name: NT AUTHORITY\LocalService Image path: %SystemRoot%\System32\alg.exe Image size: 58880 Image MD5: E69FB0E3112C40FDC0EF7D21A52DC951 Control Set: CurrentControlSet Start: 3 Type: 16 Error Control: 1 Service (registry key): aliide Registry path: \SYSTEM\CurrentControlSet\Services\ Image path: \SystemRoot\system32\drivers\aliide.sys Image size: 0 Image MD5: D41D8CD98F00B204E9800998ECF8427E Control Set: CurrentControlSet Start: 4 Type: 1 Error Control: 3 Service (registry key): amdagp Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: AMD AGP Bus Filter Driver Image path: \SystemRoot\system32\drivers\amdagp.sys Image size: 0 Image MD5: D41D8CD98F00B204E9800998ECF8427E Control Set: CurrentControlSet Start: 3 Type: 1 Error Control: 1 Service (registry key): amdide Registry path: \SYSTEM\CurrentControlSet\Services\ Image path: \SystemRoot\system32\drivers\amdide.sys Image size: 0 Image MD5: D41D8CD98F00B204E9800998ECF8427E Control Set: CurrentControlSet Start: 4 Type: 1 Error Control: 3 Service (registry key): AmdK7 Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: AMD K7 Processor Driver Image path: \SystemRoot\system32\drivers\amdk7.sys Image size: 0 Image MD5: D41D8CD98F00B204E9800998ECF8427E Control Set: CurrentControlSet Start: 4 Type: 1 Error Control: 1 Service (registry key): AmdK8 Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: AMD K8 Processor Driver Image path: \SystemRoot\system32\drivers\amdk8.sys Image size: 0 Image MD5: D41D8CD98F00B204E9800998ECF8427E Control Set: CurrentControlSet Start: 4 Type: 1 Error Control: 1 Service (registry key): Appinfo Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: @%systemroot%\system32\appinfo.dll,-100 Description: @%systemroot%\system32\appinfo.dll,-101 Object name: LocalSystem Image path: %SystemRoot%\system32\svchost.exe -k netsvcs Image size: 22016 Image MD5: 10DA15933D582D2FEDCF705EFE394B09 Control Set: CurrentControlSet Start: 3 Type: 32 Error Control: 1 Depends On services: RpcSs,ProfSvc Service (registry key): arc Registry path: \SYSTEM\CurrentControlSet\Services\ Image path: \SystemRoot\system32\drivers\arc.sys Image size: 0 Image MD5: D41D8CD98F00B204E9800998ECF8427E Control Set: CurrentControlSet Start: 4 Type: 1 Error Control: 1 Service (registry key): arcsas Registry path: \SYSTEM\CurrentControlSet\Services\ Image path: \SystemRoot\system32\drivers\arcsas.sys Image size: 0 Image MD5: D41D8CD98F00B204E9800998ECF8427E Control Set: CurrentControlSet Start: 4 Type: 1 Error Control: 1 Service (registry key): aswMonFlt Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: aswMonFlt Description: avast! mini-filter driver (aswMonFlt) Image path: system32\DRIVERS\aswMonFlt.sys Image size: 0 Image MD5: D41D8CD98F00B204E9800998ECF8427E Control Set: CurrentControlSet Start: 2 Type: 2 Error Control: 1 Depends On services: FltMgr Service (registry key): aswRdr Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: aswRdr Control Set: CurrentControlSet Start: 1 Type: 1 Error Control: 1 Depends On services: tcpip Service (registry key): aswTdi Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: avast! Network Shield Support Control Set: CurrentControlSet Start: 1 Type: 1 Error Control: 1 Depends On services: tcpip Service (registry key): aswUpdSv Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: avast! iAVS4 Control Service Description: Fournit la mise à jour automatique pour l'antivirus avast!. Object name: LocalSystem Image path: "C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe" Image size: 16248 Image MD5: 765E0E2BDB83C58FFC411DA401D8BA66 Control Set: CurrentControlSet Start: 2 Type: 272 Error Control: 1 Service (registry key): AsyncMac Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: Pilote de média asynchrone RAS Description: Pilote de média asynchrone RAS Image path: system32\DRIVERS\asyncmac.sys Image size: 0 Image MD5: D41D8CD98F00B204E9800998ECF8427E Control Set: CurrentControlSet Start: 3 Type: 1 Error Control: 1 Service (registry key): atapi Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: Canal IDE Image path: system32\drivers\atapi.sys Image size: 0 Image MD5: D41D8CD98F00B204E9800998ECF8427E Control Set: CurrentControlSet Start: 0 Type: 1 Error Control: 3 Service (registry key): athr Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: Atheros Extensible Wireless LAN device driver Image path: system32\DRIVERS\athr.sys Image size: 0 Image MD5: D41D8CD98F00B204E9800998ECF8427E Control Set: CurrentControlSet Start: 3 Type: 1 Error Control: 1 Service (registry key): athrusb Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: Atheros Wireless LAN USB device driver Image path: system32\DRIVERS\athrusb.sys Image size: 0 Image MD5: D41D8CD98F00B204E9800998ECF8427E Control Set: CurrentControlSet Start: 3 Type: 1 Error Control: 1 Service (registry key): AudioEndpointBuilder Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: @%SystemRoot%\system32\audiosrv.dll,-204 Description: @%SystemRoot%\System32\audiosrv.dll,-205 Object name: LocalSystem Image path: %SystemRoot%\System32\svchost.exe -k LocalSystemNetworkRestricted Image size: 22016 Image MD5: 10DA15933D582D2FEDCF705EFE394B09 Control Set: CurrentControlSet Start: 2 Type: 32 Error Control: 1 Depends On services: PlugPlay Service (registry key): Audiosrv Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: @%SystemRoot%\system32\audiosrv.dll,-200 Description: @%SystemRoot%\System32\audiosrv.dll,-201 Object name: NT AUTHORITY\LocalService Image path: %SystemRoot%\System32\svchost.exe -k LocalServiceNetworkRestricted Image size: 22016 Image MD5: 10DA15933D582D2FEDCF705EFE394B09 Control Set: CurrentControlSet Start: 2 Type: 32 Error Control: 1 Depends On services: AudioEndpointBuilder,RpcSs,MMCSS Service (registry key): avast! Antivirus Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: avast! Antivirus Description: Gère et implémente les services de l'antivirus avast! pour cet ordinateur. Ceci inclut la protection résidente, la zone de quarantaine et le planificateur. Object name: LocalSystem Image path: "C:\Program Files\Alwil Software\Avast4\ashServ.exe" Image size: 132472 Image MD5: 47DF7F40F77FCE0A134021C6BF0FF52A Control Set: CurrentControlSet Start: 2 Type: 272 Error Control: 1 Depends On services: aswMonFlt,RpcSS Service (registry key): avast! Mail Scanner Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: avast! Mail Scanner Description: Implémente l'analyse du courrier électronique pour l'antivirus avast!. Object name: LocalSystem Image path: "C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe" /service Image size: 243064 Image MD5: 3F4A782FECFA42AB86CEA759EB929106 Control Set: CurrentControlSet Start: 3 Type: 272 Error Control: 1 Depends On services: "avast! Antivirus" Service (registry key): avast! Web Scanner Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: avast! Web Scanner Description: Implémente l'analyse du contenu web (HTTP) pour l'antivirus avast!. Object name: LocalSystem Image path: "C:\Program Files\Alwil Software\Avast4\ashWebSv.exe" /service Image size: 345464 Image MD5: CDED5892E327CDCBB64E598AE6C4E3E3 Control Set: CurrentControlSet Start: 3 Type: 272 Error Control: 1 Depends On services: "avast! Antivirus" Service (registry key): AVG Anti-Spyware Driver Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: AVG Anti-Spyware Driver Image path: \??\C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.sys Image size: 0 Image MD5: D41D8CD98F00B204E9800998ECF8427E Control Set: CurrentControlSet Start: 1 Type: 1 Error Control: 1 Service (registry key): AVG Anti-Spyware Guard Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: AVG Anti-Spyware Guard Object name: LocalSystem Image path: C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe Image size: 312880 Image MD5: 5DCD235C061022BCDA9AA48670B64211 Control Set: CurrentControlSet Start: 2 Type: 16 Error Control: 1 Service (registry key): AvgAsCln Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: AVG Anti-Spyware Clean Driver Image path: System32\DRIVERS\AvgAsCln.sys Image size: 0 Image MD5: D41D8CD98F00B204E9800998ECF8427E Control Set: CurrentControlSet Start: 1 Type: 1 Error Control: 1 Service (registry key): BattC Registry path: \SYSTEM\CurrentControlSet\Services\ Control Set: CurrentControlSet Start: 0 Type: 0 Error Control: 0 Service (registry key): Beep Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: Beep Control Set: CurrentControlSet Start: 1 Type: 1 Error Control: 1 Service (registry key): BFE Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: @%SystemRoot%\system32\bfe.dll,-1001 Description: @%SystemRoot%\system32\bfe.dll,-1002 Object name: NT AUTHORITY\LocalService Image path: %systemroot%\system32\svchost.exe -k LocalServiceNoNetwork Image size: 22016 Image MD5: 10DA15933D582D2FEDCF705EFE394B09 Control Set: CurrentControlSet Start: 2 Type: 32 Error Control: 1 Depends On services: RpcSs Service (registry key): BITS Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: @%SystemRoot%\system32\qmgr.dll,-1000 Description: @%SystemRoot%\system32\qmgr.dll,-1001 Object name: LocalSystem Image path: %SystemRoot%\System32\svchost.exe -k netsvcs Image size: 22016 Image MD5: 10DA15933D582D2FEDCF705EFE394B09 Control Set: CurrentControlSet Start: 2 Type: 32 Error Control: 1 Depends On services: RpcSs,EventSystem Service (registry key): bowser Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: Bowser Description: Implements the datagram receiver for the computer browser browser service. Image path: system32\DRIVERS\bowser.sys Image size: 0 Image MD5: D41D8CD98F00B204E9800998ECF8427E Control Set: CurrentControlSet Start: 3 Type: 2 Error Control: 1 Service (registry key): BrFiltLo Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: Brother USB Mass-Storage Lower Filter Driver Image path: \SystemRoot\system32\drivers\brfiltlo.sys Image size: 0 Image MD5: D41D8CD98F00B204E9800998ECF8427E Control Set: CurrentControlSet Start: 3 Type: 1 Error Control: 1 Service (registry key): BrFiltUp Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: Brother USB Mass-Storage Upper Filter Driver Image path: \SystemRoot\system32\drivers\brfiltup.sys Image size: 0 Image MD5: D41D8CD98F00B204E9800998ECF8427E Control Set: CurrentControlSet Start: 3 Type: 1 Error Control: 1 Service (registry key): Browser Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: @%systemroot%\system32\browser.dll,-100 Description: @%systemroot%\system32\browser.dll,-101 Object name: LocalSystem Image path: %SystemRoot%\System32\svchost.exe -k netsvcs Image size: 22016 Image MD5: 10DA15933D582D2FEDCF705EFE394B09 Control Set: CurrentControlSet Start: 2 Type: 32 Error Control: 1 Depends On services: LanmanWorkstation,LanmanServer Service (registry key): Brserid Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: Brother MFC Serial Port Interface Driver (WDM) Image path: \SystemRoot\system32\drivers\brserid.sys Image size: 0 Image MD5: D41D8CD98F00B204E9800998ECF8427E Control Set: CurrentControlSet Start: 4 Type: 1 Error Control: 1 Service (registry key): BrSerWdm Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: Brother WDM Serial driver Image path: \SystemRoot\system32\drivers\brserwdm.sys Image size: 0 Image MD5: D41D8CD98F00B204E9800998ECF8427E Control Set: CurrentControlSet Start: 4 Type: 1 Error Control: 1 Service (registry key): BrUsbMdm Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: Brother MFC USB Fax Only Modem Image path: \SystemRoot\system32\drivers\brusbmdm.sys Image size: 0 Image MD5: D41D8CD98F00B204E9800998ECF8427E Control Set: CurrentControlSet Start: 4 Type: 1 Error Control: 1 Service (registry key): BrUsbSer Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: Brother MFC USB Serial WDM Driver Image path: \SystemRoot\system32\drivers\brusbser.sys Image size: 0 Image MD5: D41D8CD98F00B204E9800998ECF8427E Control Set: CurrentControlSet Start: 3 Type: 1 Error Control: 1 Service (registry key): BTHMODEM Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: Bluetooth Serial Communications Driver Image path: \SystemRoot\system32\drivers\bthmodem.sys Image size: 0 Image MD5: D41D8CD98F00B204E9800998ECF8427E Control Set: CurrentControlSet Start: 4 Type: 1 Error Control: 1 Service (registry key): cdfs Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: CD/DVD File System Reader Description: ISO9660/Joliet File System Reader for CD/DVDs. (Core) (All pieces) Image path: system32\DRIVERS\cdfs.sys Image size: 0 Image MD5: D41D8CD98F00B204E9800998ECF8427E Control Set: CurrentControlSet Start: 4 Type: 2 Error Control: 1 Depends On group: "SCSI CDROM Class" Service (registry key): cdrom Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: Pilote de CD-ROM Image path: system32\DRIVERS\cdrom.sys Image size: 0 Image MD5: D41D8CD98F00B204E9800998ECF8427E Control Set: CurrentControlSet Start: 1 Type: 1 Error Control: 1 Service (registry key): CertPropSvc Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: @%SystemRoot%\System32\certprop.dll,-11 Description: @%SystemRoot%\System32\certprop.dll,-12 Object name: LocalSystem Image path: %SystemRoot%\system32\svchost.exe -k netsvcs Image size: 22016 Image MD5: 10DA15933D582D2FEDCF705EFE394B09 Control Set: CurrentControlSet Start: 3 Type: 32 Error Control: 1 Depends On services: RpcSs Service (registry key): CFSvcs Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: ConfigFree Service Object name: LocalSystem Image path: C:\Program Files\TOSHIBA\ConfigFree\CFSvcs.exe Image size: 40960 Image MD5: C82162949BBA6CC5D006C7BD008F3CF1 Control Set: CurrentControlSet Start: 2 Type: 16 Error Control: 0 Service (registry key): circlass Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: Consumer IR Devices Image path: \SystemRoot\system32\drivers\circlass.sys Image size: 0 Image MD5: D41D8CD98F00B204E9800998ECF8427E Control Set: CurrentControlSet Start: 4 Type: 1 Error Control: 1 Service (registry key): CLFS Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: Common Log (CLFS) Description: Common Log (CLFS) Image path: System32\CLFS.sys Image size: 0 Image MD5: D41D8CD98F00B204E9800998ECF8427E Control Set: CurrentControlSet Start: 0 Type: 1 Error Control: 3 Service (registry key): clr_optimization_v2.0.50727_32 Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: Microsoft .NET Framework NGEN v2.0.50727_X86 Description: Microsoft .NET Framework NGEN Object name: LocalSystem Image path: %systemroot%\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe Image size: 59392 Image MD5: D3BF342F47996E18490970FCFB8126A8 Control Set: CurrentControlSet Start: 3 Type: 16 Error Control: 0 Service (registry key): CLTNetCnService Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: Symantec Lic NetConnect service Description: Symantec Lic NetConnect Service Object name: LocalSystem Image path: "C:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe" /h ccCommon Image size: 0 Image MD5: D41D8CD98F00B204E9800998ECF8427E Control Set: CurrentControlSet Start: 2 Type: 32 Error Control: 0 Service (registry key): CmBatt Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: Pilote pour Batterie à méthode de contrôle ACPI Microsoft Image path: system32\DRIVERS\CmBatt.sys Image size: 0 Image MD5: D41D8CD98F00B204E9800998ECF8427E Control Set: CurrentControlSet Start: 3 Type: 1 Error Control: 1 Service (registry key): cmdide Registry path: \SYSTEM\CurrentControlSet\Services\ Image path: \SystemRoot\system32\drivers\cmdide.sys Image size: 0 Image MD5: D41D8CD98F00B204E9800998ECF8427E Control Set: CurrentControlSet Start: 4 Type: 1 Error Control: 3 Service (registry key): Compbatt Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: Pilote de batterie composite Microsoft Image path: system32\DRIVERS\compbatt.sys Image size: 0 Image MD5: D41D8CD98F00B204E9800998ECF8427E Control Set: CurrentControlSet Start: 0 Type: 1 Error Control: 3 Service (registry key): COMSysApp Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: @comres.dll,-947 Description: @comres.dll,-948 Object name: LocalSystem Image path: %SystemRoot%\system32\dllhost.exe /Processid:{02D4B3F1-FD88-11D1-960D-00805FC79235} Image size: 7168 Image MD5: BE01E566D1F569AAB32D0335613E1EEA Control Set: CurrentControlSet Start: 3 Type: 16 Error Control: 1 Depends On services: RpcSs,EventSystem,SENS Service (registry key): crcdisk Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: Crcdisk Filter Driver Image path: system32\drivers\crcdisk.sys Image size: 0 Image MD5: D41D8CD98F00B204E9800998ECF8427E Control Set: CurrentControlSet Start: 0 Type: 1 Error Control: 1 Service (registry key): Crusoe Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: Transmeta Crusoe Processor Driver Image path: \SystemRoot\system32\drivers\crusoe.sys Image size: 0 Image MD5: D41D8CD98F00B204E9800998ECF8427E Control Set: CurrentControlSet Start: 4 Type: 1 Error Control: 1 Service (registry key): crypt32 Registry path: \SYSTEM\CurrentControlSet\Services\ Control Set: CurrentControlSet Start: 0 Type: 0 Error Control: 0 Service (registry key): CryptSvc Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: @%SystemRoot%\system32\cryptsvc.dll,-1001 Description: @%SystemRoot%\system32\cryptsvc.dll,-1002 Object name: NT Authority\NetworkService Image path: %SystemRoot%\system32\svchost.exe -k NetworkService Image size: 22016 Image MD5: 10DA15933D582D2FEDCF705EFE394B09 Control Set: CurrentControlSet Start: 2 Type: 32 Error Control: 1 Depends On services: RpcSs Service (registry key): DCLocator Registry path: \SYSTEM\CurrentControlSet\Services\ Control Set: CurrentControlSet Start: 0 Type: 0 Error Control: 0 Service (registry key): DcomLaunch Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: @oleres.dll,-5012 Description: @oleres.dll,-5013 Object name: LocalSystem Image path: %SystemRoot%\system32\svchost.exe -k DcomLaunch Image size: 22016 Image MD5: 10DA15933D582D2FEDCF705EFE394B09 Control Set: CurrentControlSet Start: 2 Type: 32 Error Control: 1 Service (registry key): DfsC Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: Dfs Client Driver Description: Dfs Client Driver Image path: System32\Drivers\dfsc.sys Image size: 0 Image MD5: D41D8CD98F00B204E9800998ECF8427E Control Set: CurrentControlSet Start: 1 Type: 2 Error Control: 1 Depends On services: Mup Service (registry key): DFSR Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: @dfsrres.dll,-101 Description: @dfsrres.dll,-102 Object name: LocalSystem Image path: %SystemRoot%\system32\DFSR.exe Image size: 2089984 Image MD5: E0D584AA76C7D845BA9F3A788260528F Control Set: CurrentControlSet Start: 3 Type: 16 Error Control: 1 Depends On services: RpcSs,EventSystem Service (registry key): Dhcp Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: @%SystemRoot%\system32\dhcpcsvc.dll,-100 Description: @%SystemRoot%\system32\dhcpcsvc.dll,-101 Object name: NT Authority\LocalService Image path: %SystemRoot%\system32\svchost.exe -k LocalServiceNetworkRestricted Image size: 22016 Image MD5: 10DA15933D582D2FEDCF705EFE394B09 Control Set: CurrentControlSet Start: 2 Type: 32 Error Control: 1 Depends On services: NSI,Tdx,Afd Service (registry key): disk Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: Pilote de disque Image path: system32\drivers\disk.sys Image size: 0 Image MD5: D41D8CD98F00B204E9800998ECF8427E Control Set: CurrentControlSet Start: 0 Type: 1 Error Control: 1 Service (registry key): Dnscache Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: @%SystemRoot%\System32\dnsapi.dll,-101 Description: @%SystemRoot%\System32\dnsapi.dll,-102 Object name: NT AUTHORITY\NetworkService Image path: %SystemRoot%\system32\svchost.exe -k NetworkService Image size: 22016 Image MD5: 10DA15933D582D2FEDCF705EFE394B09 Control Set: CurrentControlSet Start: 2 Type: 32 Error Control: 1 Depends On services: Tdx Service (registry key): dot3svc Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: @%systemroot%\system32\dot3svc.dll,-1102 Description: @%systemroot%\system32\dot3svc.dll,-1103 Object name: localSystem Image path: %SystemRoot%\system32\svchost.exe -k LocalSystemNetworkRestricted Image size: 22016 Image MD5: 10DA15933D582D2FEDCF705EFE394B09 Control Set: CurrentControlSet Start: 3 Type: 32 Error Control: 1 Depends On services: RpcSs,Ndisuio,Eaphost Service (registry key): DPS Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: @%systemroot%\system32\dps.dll,-500 Description: @%systemroot%\system32\dps.dll,-501 Object name: NT AUTHORITY\LocalService Image path: %SystemRoot%\System32\svchost.exe -k LocalServiceNoNetwork Image size: 22016 Image MD5: 10DA15933D582D2FEDCF705EFE394B09 Control Set: CurrentControlSet Start: 2 Type: 32 Error Control: 1 Service (registry key): drmkaud Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: Filtre de décodeur DRM (Noyau Microsoft) Image path: system32\drivers\drmkaud.sys Image size: 0 Image MD5: D41D8CD98F00B204E9800998ECF8427E Control Set: CurrentControlSet Start: 3 Type: 1 Error Control: 1 Service (registry key): DXGKrnl Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: LDDM Graphics Subsystem Description: Controls the underlying video driver stacks to provide fully-featured display capabilities. Image path: \SystemRoot\System32\drivers\dxgkrnl.sys Image size: 0 Image MD5: D41D8CD98F00B204E9800998ECF8427E Control Set: CurrentControlSet Start: 3 Type: 1 Error Control: 0 Service (registry key): E1G60 Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: Intel® PRO/1000 NDIS 6 Adapter Driver Image path: system32\DRIVERS\E1G60I32.sys Image size: 0 Image MD5: D41D8CD98F00B204E9800998ECF8427E Control Set: CurrentControlSet Start: 3 Type: 1 Error Control: 1 Service (registry key): EapHost Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: @%systemroot%\system32\eapsvc.dll,-1 Description: @%systemroot%\system32\eapsvc.dll,-2 Object name: localSystem Image path: %SystemRoot%\System32\svchost.exe -k netsvcs Image size: 22016 Image MD5: 10DA15933D582D2FEDCF705EFE394B09 Control Set: CurrentControlSet Start: 3 Type: 32 Error Control: 1 Depends On services: RPCSS,KeyIso Service (registry key): Ecache Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: ReadyBoost Caching Driver Description: ReadyBoost Caching Driver Image path: System32\drivers\ecache.sys Image size: 0 Image MD5: D41D8CD98F00B204E9800998ECF8427E Control Set: CurrentControlSet Start: 0 Type: 1 Error Control: 3 Service (registry key): ehRecvr Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: @%SystemRoot%\ehome\ehrecvr.exe,-101 Description: @%SystemRoot%\ehome\ehrecvr.exe,-102 Object name: NT AUTHORITY\networkService Image path: %systemroot%\ehome\ehRecvr.exe Image size: 291840 Image MD5: B4580122B0A7B263B6EE9ACBA69C8013 Control Set: CurrentControlSet Start: 3 Type: 16 Error Control: 0 Depends On services: RPCSS Service (registry key): ehSched Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: @%SystemRoot%\ehome\ehsched.exe,-101 Description: @%SystemRoot%\ehome\ehsched.exe,-102 Object name: NT AUTHORITY\networkService Image path: %systemroot%\ehome\ehsched.exe Image size: 131072 Image MD5: AD1870C8E5D6DD340C829E6074BF3C3F Control Set: CurrentControlSet Start: 3 Type: 16 Error Control: 0 Depends On services: RPCSS Service (registry key): ehstart Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: @%SystemRoot%\ehome\ehstart.dll,-101 Description: @%SystemRoot%\ehome\ehstart.dll,-102 Object name: NT AUTHORITY\LocalService Image path: %windir%\system32\svchost.exe -k LocalServiceNoNetwork Image size: 0 Image MD5: D41D8CD98F00B204E9800998ECF8427E Control Set: CurrentControlSet Start: 2 Type: 32 Error Control: 0 Depends On services: RPCSS Service (registry key): elxstor Registry path: \SYSTEM\CurrentControlSet\Services\ Image path: \SystemRoot\system32\drivers\elxstor.sys Image size: 0 Image MD5: D41D8CD98F00B204E9800998ECF8427E Control Set: CurrentControlSet Start: 4 Type: 1 Error Control: 1 Service (registry key): EmdCache Registry path: \SYSTEM\CurrentControlSet\Services\ Control Set: CurrentControlSet Start: 0 Type: 0 Error Control: 0 Service (registry key): EMDMgmt Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: @%SystemRoot%\system32\emdmgmt.dll,-1000 Description: @%SystemRoot%\system32\emdmgmt.dll,-1001 Object name: LocalSystem Image path: %systemroot%\system32\svchost.exe -k LocalSystemNetworkRestricted Image size: 22016 Image MD5: 10DA15933D582D2FEDCF705EFE394B09 Control Set: CurrentControlSet Start: 2 Type: 32 Error Control: 0 Depends On services: rpcss,ecache,slsvc,fileinfo Service (registry key): ESENT Registry path: \SYSTEM\CurrentControlSet\Services\ Control Set: CurrentControlSet Start: 0 Type: 0 Error Control: 0 Service (registry key): Eventlog Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: @%SystemRoot%\system32\wevtsvc.dll,-200 Description: @%SystemRoot%\system32\wevtsvc.dll,-201 Object name: NT AUTHORITY\LocalService Image path: %SystemRoot%\System32\svchost.exe -k LocalServiceNetworkRestricted Image size: 22016 Image MD5: 10DA15933D582D2FEDCF705EFE394B09 Control Set: CurrentControlSet Start: 2 Type: 32 Error Control: 1 Service (registry key): EventSystem Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: @comres.dll,-2450 Description: @comres.dll,-2451 Object name: NT AUTHORITY\LocalService Image path: %SystemRoot%\system32\svchost.exe -k LocalService Image size: 22016 Image MD5: 10DA15933D582D2FEDCF705EFE394B09 Control Set: CurrentControlSet Start: 2 Type: 32 Error Control: 1 Depends On services: rpcss Service (registry key): fastfat Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: FAT12/16/32 File System Driver Description: Note - dependance on CDROM.SYS only if required to read/write DVD-RAM media (which appears as CD class device). (Core) (All pieces) Control Set: CurrentControlSet Start: 3 Type: 2 Error Control: 1 Service (registry key): fdc Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: Floppy Disk Controller Driver Image path: system32\DRIVERS\fdc.sys Image size: 0 Image MD5: D41D8CD98F00B204E9800998ECF8427E Control Set: CurrentControlSet Start: 4 Type: 1 Error Control: 1 Service (registry key): fdPHost Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: @%systemroot%\system32\fdPHost.dll,-100 Description: @%systemroot%\system32\fdPHost.dll,-101 Object name: NT AUTHORITY\LocalService Image path: %SystemRoot%\system32\svchost.exe -k LocalService Image size: 22016 Image MD5: 10DA15933D582D2FEDCF705EFE394B09 Control Set: CurrentControlSet Start: 3 Type: 32 Error Control: 1 Depends On services: RpcSs,http Service (registry key): FDResPub Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: @%systemroot%\system32\fdrespub.dll,-100 Description: @%systemroot%\system32\fdrespub.dll,-101 Object name: NT AUTHORITY\LocalService Image path: %SystemRoot%\system32\svchost.exe -k LocalService Image size: 22016 Image MD5: 10DA15933D582D2FEDCF705EFE394B09 Control Set: CurrentControlSet Start: 3 Type: 32 Error Control: 1 Depends On services: RpcSs,http Service (registry key): FileInfo Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: File Information FS MiniFilter Description: Collects information about files in memory to be consumed by other system services. Image path: system32\drivers\fileinfo.sys Image size: 0 Image MD5: D41D8CD98F00B204E9800998ECF8427E Control Set: CurrentControlSet Start: 0 Type: 2 Error Control: 1 Depends On services: fltmgr Service (registry key): Filetrace Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: FileTrace Description: ETW File Trace Filter Image path: system32\drivers\filetrace.sys Image size: 0 Image MD5: D41D8CD98F00B204E9800998ECF8427E Control Set: CurrentControlSet Start: 3 Type: 2 Error Control: 1 Depends On services: FltMgr Service (registry key): flpydisk Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: Floppy Disk Driver Image path: system32\DRIVERS\flpydisk.sys Image size: 0 Image MD5: D41D8CD98F00B204E9800998ECF8427E Control Set: CurrentControlSet Start: 4 Type: 1 Error Control: 1 Service (registry key): FltMgr Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: FltMgr Description: File System Filter Manager Driver Image path: system32\drivers\fltmgr.sys Image size: 0 Image MD5: D41D8CD98F00B204E9800998ECF8427E Control Set: CurrentControlSet Start: 0 Type: 2 Error Control: 3 Service (registry key): FontCache3.0.0.0 Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: @%SystemRoot%\system32\PresentationHost.exe,-3309 Description: @%SystemRoot%\system32\PresentationHost.exe,-3310 Object name: NT Authority\LocalService Image path: %systemroot%\Microsoft.Net\Framework\v3.0\WPF\PresentationFontCache.exe Image size: 36864 Image MD5: 7EF57375636991F794BF40B522A8E7EF Control Set: CurrentControlSet Start: 2 Type: 16 Error Control: 1 Service (registry key): Fs_Rec Registry path: \SYSTEM\CurrentControlSet\Services\ Control Set: CurrentControlSet Start: 1 Type: 8 Error Control: 0 Service (registry key): gagp30kx Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: Microsoft Generic AGPv3.0 Filter for K8 Processor Platforms Image path: \SystemRoot\system32\drivers\gagp30kx.sys Image size: 0 Image MD5: D41D8CD98F00B204E9800998ECF8427E Control Set: CurrentControlSet Start: 3 Type: 1 Error Control: 1 Service (registry key): gpsvc Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: @gpapi.dll,-112 Description: @gpapi.dll,-113 Object name: LocalSystem Image path: %systemroot%\system32\svchost.exe -k netsvcs Image size: 22016 Image MD5: 10DA15933D582D2FEDCF705EFE394B09 Control Set: CurrentControlSet Start: 2 Type: 32 Error Control: 1 Depends On services: RPCSS,Mup Service (registry key): gusvc Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: Google Updater Service Object name: LocalSystem Image path: "C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe" Image size: 138680 Image MD5: D213C2B1CE0FAEAB59EC0C55B4493F94 Control Set: CurrentControlSet Start: 3 Type: 16 Error Control: 0 Depends On services: RPCSS Service (registry key): HdAudAddService Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: Pilote de fonction UAA 1.1 Microsoft pour le service High Definition Audio Image path: system32\drivers\HdAudio.sys Image size: 0 Image MD5: D41D8CD98F00B204E9800998ECF8427E Control Set: CurrentControlSet Start: 3 Type: 1 Error Control: 1 Service (registry key): HDAudBus Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: Pilote de bus UAA Microsoft pour High Definition Audio Image path: system32\DRIVERS\HDAudBus.sys Image size: 0 Image MD5: D41D8CD98F00B204E9800998ECF8427E Control Set: CurrentControlSet Start: 3 Type: 1 Error Control: 1 Service (registry key): HidBth Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: Microsoft Bluetooth HID Miniport Image path: \SystemRoot\system32\drivers\hidbth.sys Image size: 0 Image MD5: D41D8CD98F00B204E9800998ECF8427E Control Set: CurrentControlSet Start: 4 Type: 1 Error Control: 0 Service (registry key): HidIr Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: Microsoft Infrared HID Driver Image path: \SystemRoot\system32\drivers\hidir.sys Image size: 0 Image MD5: D41D8CD98F00B204E9800998ECF8427E Control Set: CurrentControlSet Start: 4 Type: 1 Error Control: 0 Service (registry key): hidserv Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: @%SystemRoot%\System32\hidserv.dll,-101 Description: @%SystemRoot%\System32\hidserv.dll,-102 Object name: LocalSystem Image path: %SystemRoot%\system32\svchost.exe -k LocalSystemNetworkRestricted Image size: 22016 Image MD5: 10DA15933D582D2FEDCF705EFE394B09 Control Set: CurrentControlSet Start: 3 Type: 32 Error Control: 1 Service (registry key): HidUsb Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: Pilote de classe HID Microsoft Image path: system32\DRIVERS\hidusb.sys Image size: 0 Image MD5: D41D8CD98F00B204E9800998ECF8427E Control Set: CurrentControlSet Start: 3 Type: 1 Error Control: 0 Service (registry key): hkmsvc Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: @%SystemRoot%\system32\kmsvc.dll,-6 Description: @%SystemRoot%\system32\kmsvc.dll,-7 Object name: localSystem Image path: %SystemRoot%\System32\svchost.exe -k netsvcs Image size: 22016 Image MD5: 10DA15933D582D2FEDCF705EFE394B09 Control Set: CurrentControlSet Start: 3 Type: 32 Error Control: 1 Depends On services: RpcSs Service (registry key): HpCISSs Registry path: \SYSTEM\CurrentControlSet\Services\ Image path: \SystemRoot\system32\drivers\hpcisss.sys Image size: 0 Image MD5: D41D8CD98F00B204E9800998ECF8427E Control Set: CurrentControlSet Start: 4 Type: 1 Error Control: 1 Service (registry key): HTTP Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: HTTP Description: This service implements the hypertext transfer protocol (HTTP). If this service is disabled, any services that explicitly depend on it will fail to start. Image path: system32\drivers\HTTP.sys Image size: 0 Image MD5: D41D8CD98F00B204E9800998ECF8427E Control Set: CurrentControlSet Start: 3 Type: 1 Error Control: 1 Service (registry key): i2omp Registry path: \SYSTEM\CurrentControlSet\Services\ Image path: \SystemRoot\system32\drivers\i2omp.sys Image size: 0 Image MD5: D41D8CD98F00B204E9800998ECF8427E Control Set: CurrentControlSet Start: 4 Type: 1 Error Control: 1 Service (registry key): i8042prt Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: Pilote pour clavier i8042 et souris sur port PS/2 Image path: system32\DRIVERS\i8042prt.sys Image size: 0 Image MD5: D41D8CD98F00B204E9800998ECF8427E Control Set: CurrentControlSet Start: 1 Type: 1 Error Control: 1 Service (registry key): ialm Registry path: \SYSTEM\CurrentControlSet\Services\ Image path: system32\DRIVERS\igdkmd32.sys Image size: 0 Image MD5: D41D8CD98F00B204E9800998ECF8427E Control Set: CurrentControlSet Start: 3 Type: 1 Error Control: 0 Service (registry key): iaStorV Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: Intel RAID Controller Vista Image path: \SystemRoot\system32\drivers\iastorv.sys Image size: 0 Image MD5: D41D8CD98F00B204E9800998ECF8427E Control Set: CurrentControlSet Start: 4 Type: 1 Error Control: 1 Service (registry key): idsvc Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: @%systemroot%\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\ServiceModelInstallRC.dll,-8193 Description: @%systemroot%\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\ServiceModelInstallRC.dll,-8192 Object name: LocalSystem Image path: "%systemroot%\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe" Image size: 741376 Image MD5: 6D1D3CAB85BA0C63CB83296A8A1825F9 Control Set: CurrentControlSet Start: 3 Type: 32 Error Control: 1 Service (registry key): igfx Registry path: \SYSTEM\CurrentControlSet\Services\ Image path: system32\DRIVERS\igdkmd32.sys Image size: 0 Image MD5: D41D8CD98F00B204E9800998ECF8427E Control Set: CurrentControlSet Start: 3 Type: 1 Error Control: 0 Service (registry key): iirsp Registry path: \SYSTEM\CurrentControlSet\Services\ Image path: \SystemRoot\system32\drivers\iirsp.sys Image size: 0 Image MD5: D41D8CD98F00B204E9800998ECF8427E Control Set: CurrentControlSet Start: 4 Type: 1 Error Control: 1 Service (registry key): IKEEXT Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: @%SystemRoot%\system32\ikeext.dll,-501 Description: @%SystemRoot%\system32\ikeext.dll,-502 Object name: LocalSystem Image path: %systemroot%\system32\svchost.exe -k netsvcs Image size: 22016 Image MD5: 10DA15933D582D2FEDCF705EFE394B09 Control Set: CurrentControlSet Start: 2 Type: 32 Error Control: 1 Depends On services: BFE Service (registry key): inetaccs Registry path: \SYSTEM\CurrentControlSet\Services\ Control Set: CurrentControlSet Start: 0 Type: 0 Error Control: 0 Service (registry key): IntcAzAudAddService Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: Service for Realtek HD Audio (WDM) Image path: system32\drivers\RTKVHDA.sys Image size: 0 Image MD5: D41D8CD98F00B204E9800998ECF8427E Control Set: CurrentControlSet Start: 3 Type: 1 Error Control: 1 Service (registry key): intelide Registry path: \SYSTEM\CurrentControlSet\Services\ Image path: system32\drivers\intelide.sys Image size: 0 Image MD5: D41D8CD98F00B204E9800998ECF8427E Control Set: CurrentControlSet Start: 0 Type: 1 Error Control: 3 Service (registry key): intelppm Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: Pilote de processeur Intel Image path: system32\DRIVERS\intelppm.sys Image size: 0 Image MD5: D41D8CD98F00B204E9800998ECF8427E Control Set: CurrentControlSet Start: 3 Type: 1 Error Control: 1 Service (registry key): IPBusEnum Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: @%systemroot%\system32\IPBusEnum.dll,-102 Description: @%systemroot%\system32\IPBusEnum.dll,-103 Object name: LocalSystem Image path: %SystemRoot%\system32\svchost.exe -k LocalSystemNetworkRestricted Image size: 22016 Image MD5: 10DA15933D582D2FEDCF705EFE394B09 Control Set: CurrentControlSet Start: 3 Type: 32 Error Control: 1 Depends On services: RpcSs,fdPHost Service (registry key): IpFilterDriver Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: IP Traffic Filter Driver Description: IP Traffic Filter Driver Image path: system32\DRIVERS\ipfltdrv.sys Image size: 0 Image MD5: D41D8CD98F00B204E9800998ECF8427E Control Set: CurrentControlSet Start: 3 Type: 1 Error Control: 1 Depends On services: Tcpip Service (registry key): iphlpsvc Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: @%SystemRoot%\system32\iphlpsvc.dll,-200 Description: @%SystemRoot%\system32\iphlpsvc.dll,-201 Object name: LocalSystem Image path: %SystemRoot%\System32\svchost.exe -k NetSvcs Image size: 22016 Image MD5: 10DA15933D582D2FEDCF705EFE394B09 Control Set: CurrentControlSet Start: 2 Type: 32 Error Control: 1 Depends On services: RpcSS,Tdx,winmgmt,tcpip,nsi Service (registry key): IPMIDRV Registry path: \SYSTEM\CurrentControlSet\Services\ Image path: \SystemRoot\system32\drivers\ipmidrv.sys Image size: 0 Image MD5: D41D8CD98F00B204E9800998ECF8427E Control Set: CurrentControlSet Start: 4 Type: 1 Error Control: 1 Service (registry key): IPNAT Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: IP Network Address Translator Description: IP Network Address Translator Image path: system32\DRIVERS\ipnat.sys Image size: 0 Image MD5: D41D8CD98F00B204E9800998ECF8427E Control Set: CurrentControlSet Start: 3 Type: 1 Error Control: 1 Depends On services: Tcpip Service (registry key): IRENUM Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: IR Bus Enumerator Description: IR Bus Enumerator Image path: system32\drivers\irenum.sys Image size: 0 Image MD5: D41D8CD98F00B204E9800998ECF8427E Control Set: CurrentControlSet Start: 3 Type: 1 Error Control: 0 Service (registry key): isapnp Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: PnP ISA/EISA Bus Driver Image path: \SystemRoot\system32\drivers\isapnp.sys Image size: 0 Image MD5: D41D8CD98F00B204E9800998ECF8427E Control Set: CurrentControlSet Start: 4 Type: 1 Error Control: 3 Service (registry key): iScsiPrt Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: Pilote iScsiPort Image path: system32\DRIVERS\msiscsi.sys Image size: 0 Image MD5: D41D8CD98F00B204E9800998ECF8427E Control Set: CurrentControlSet Start: 3 Type: 1 Error Control: 1 Service (registry key): iteatapi Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: ITEATAPI_Service_Install Image path: \SystemRoot\system32\drivers\iteatapi.sys Image size: 0 Image MD5: D41D8CD98F00B204E9800998ECF8427E Control Set: CurrentControlSet Start: 4 Type: 1 Error Control: 1 Service (registry key): iteraid Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: ITERAID_Service_Install Image path: \SystemRoot\system32\drivers\iteraid.sys Image size: 0 Image MD5: D41D8CD98F00B204E9800998ECF8427E Control Set: CurrentControlSet Start: 4 Type: 1 Error Control: 1 Service (registry key): kbdclass Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: Pilote de la classe Clavier Image path: system32\DRIVERS\kbdclass.sys Image size: 0 Image MD5: D41D8CD98F00B204E9800998ECF8427E Control Set: CurrentControlSet Start: 1 Type: 1 Error Control: 1 Service (registry key): kbdhid Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: Keyboard HID Driver Image path: \SystemRoot\system32\drivers\kbdhid.sys Image size: 0 Image MD5: D41D8CD98F00B204E9800998ECF8427E Control Set: CurrentControlSet Start: 4 Type: 1 Error Control: 0 Service (registry key): KeyIso Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: @keyiso.dll,-100 Description: @keyiso.dll,-101 Object name: LocalSystem Image path: %SystemRoot%\system32\lsass.exe Image size: 7680 Image MD5: 6A0E382E74280E4CC0DF17FE2661D003 Control Set: CurrentControlSet Start: 3 Type: 32 Error Control: 1 Depends On services: RpcSs Service (registry key): KR10I Registry path: \SYSTEM\CurrentControlSet\Services\ Image path: \SystemRoot\system32\drivers\kr10i.sys Image size: 0 Image MD5: D41D8CD98F00B204E9800998ECF8427E Control Set: CurrentControlSet Start: 4 Type: 1 Error Control: 3 Service (registry key): KR10N Registry path: \SYSTEM\CurrentControlSet\Services\ Image path: \SystemRoot\system32\drivers\kr10n.sys Image size: 0 Image MD5: D41D8CD98F00B204E9800998ECF8427E Control Set: CurrentControlSet Start: 4 Type: 1 Error Control: 3 Service (registry key): KSecDD Registry path: \SYSTEM\CurrentControlSet\Services\ Image path: System32\Drivers\ksecdd.sys Image size: 0 Image MD5: D41D8CD98F00B204E9800998ECF8427E Control Set: CurrentControlSet Start: 0 Type: 1 Error Control: 3 Service (registry key): KtmRm Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: @comres.dll,-2946 Description: @comres.dll,-2947 Object name: NT AUTHORITY\NetworkService Image path: %SystemRoot%\System32\svchost.exe -k NetworkService Image size: 22016 Image MD5: 10DA15933D582D2FEDCF705EFE394B09 Control Set: CurrentControlSet Start: 2 Type: 32 Error Control: 1 Depends On services: RPCSS,SamSS Service (registry key): LanmanServer Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: @%systemroot%\system32\srvsvc.dll,-100 Description: @%systemroot%\system32\srvsvc.dll,-101 Object name: LocalSystem Image path: %SystemRoot%\system32\svchost.exe -k netsvcs Image size: 22016 Image MD5: 10DA15933D582D2FEDCF705EFE394B09 Control Set: CurrentControlSet Start: 2 Type: 32 Error Control: 1 Depends On services: SamSS,Srv Service (registry key): LanmanWorkstation Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: @%systemroot%\system32\wkssvc.dll,-100 Description: @%systemroot%\system32\wkssvc.dll,-101 Object name: NT AUTHORITY\LocalService Image path: %SystemRoot%\System32\svchost.exe -k LocalService Image size: 22016 Image MD5: 10DA15933D582D2FEDCF705EFE394B09 Control Set: CurrentControlSet Start: 2 Type: 32 Error Control: 1 Depends On services: Bowser,MRxSmb10,MRxSmb20,NSI Service (registry key): ldap Registry path: \SYSTEM\CurrentControlSet\Services\ Control Set: CurrentControlSet Start: 0 Type: 0 Error Control: 0 Service (registry key): LiveUpdate Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: LiveUpdate Description: Moteur de LiveUpdate Object name: LocalSystem Image path: "C:\PROGRA~1\Symantec\LIVEUP~1\LUCOMS~1.EXE" Image size: 2918008 Image MD5: F3CB12A5791761EBCA4C7BA5FC89F5C2 Control Set: CurrentControlSet Start: 3 Type: 16 Error Control: 1 Depends On services: RPCSS Service (registry key): LiveUpdate Notice Ex Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: LiveUpdate Notice Service Ex Description: Manages Norton product notices. Object name: LocalSystem Image path: "C:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe" /h ccCommon Image size: 0 Image MD5: D41D8CD98F00B204E9800998ECF8427E Control Set: CurrentControlSet Start: 2 Type: 32 Error Control: 0 Service (registry key): LiveUpdate Notice Service Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: LiveUpdate Notice Service Description: Manages Norton product notices Object name: LocalSystem Image path: "C:\Program Files\Common Files\Symantec Shared\PIF\{B8E1DD85-8582-4c61-B58F-2F227FCA9A08}\PIFSvc.exe" /m "C:\Program Files\Common Files\Symantec Shared\PIF\{B8E1DD85-8582-4c61-B58F-2F227FCA9A08}\PifEng.dll" Image size: 517768 Image MD5: C837D17DE0B349539AA527EE750EBE2A Control Set: CurrentControlSet Start: 2 Type: 16 Error Control: 0 Service (registry key): lltdio Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: Link-Layer Topology Discovery Mapper I/O Driver Image path: system32\DRIVERS\lltdio.sys Image size: 0 Image MD5: D41D8CD98F00B204E9800998ECF8427E Control Set: CurrentControlSet Start: 2 Type: 1 Error Control: 1 Service (registry key): lltdsvc Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: @%SystemRoot%\system32\lltdres.dll,-1 Description: @%SystemRoot%\system32\lltdres.dll,-2 Object name: NT AUTHORITY\LocalService Image path: %SystemRoot%\System32\svchost.exe -k LocalService Image size: 22016 Image MD5: 10DA15933D582D2FEDCF705EFE394B09 Control Set: CurrentControlSet Start: 3 Type: 32 Error Control: 1 Depends On services: rpcss,lltdio Service (registry key): lmhosts Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: @%SystemRoot%\system32\lmhsvc.dll,-101 Description: @%SystemRoot%\system32\lmhsvc.dll,-102 Object name: NT AUTHORITY\LocalService Image path: %SystemRoot%\system32\svchost.exe -k LocalServiceNetworkRestricted Image size: 22016 Image MD5: 10DA15933D582D2FEDCF705EFE394B09 Control Set: CurrentControlSet Start: 2 Type: 32 Error Control: 1 Depends On services: NetBT,Afd Service (registry key): LPCFilter Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: LPC Lower Filter Driver Image path: system32\DRIVERS\LPCFilter.sys Image size: 0 Image MD5: D41D8CD98F00B204E9800998ECF8427E Control Set: CurrentControlSet Start: 0 Type: 1 Error Control: 0 Service (registry key): Lsa Registry path: \SYSTEM\CurrentControlSet\Services\ Control Set: CurrentControlSet Start: 0 Type: 0 Error Control: 0 Service (registry key): LSI_FC Registry path: \SYSTEM\CurrentControlSet\Services\ Image path: \SystemRoot\system32\drivers\lsi_fc.sys Image size: 0 Image MD5: D41D8CD98F00B204E9800998ECF8427E Control Set: CurrentControlSet Start: 4 Type: 1 Error Control: 1 Service (registry key): LSI_SAS Registry path: \SYSTEM\CurrentControlSet\Services\ Image path: \SystemRoot\system32\drivers\lsi_sas.sys Image size: 0 Image MD5: D41D8CD98F00B204E9800998ECF8427E Control Set: CurrentControlSet Start: 4 Type: 1 Error Control: 1 Service (registry key): LSI_SCSI Registry path: \SYSTEM\CurrentControlSet\Services\ Image path: \SystemRoot\system32\drivers\lsi_scsi.sys Image size: 0 Image MD5: D41D8CD98F00B204E9800998ECF8427E Control Set: CurrentControlSet Start: 4 Type: 1 Error Control: 1 Service (registry key): luafv Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: UAC File Virtualization Description: Virtualizes file write failures to per-user locations. Image path: \SystemRoot\system32\drivers\luafv.sys Image size: 0 Image MD5: D41D8CD98F00B204E9800998ECF8427E Control Set: CurrentControlSet Start: 2 Type: 2 Error Control: 1 Depends On services: FltMgr Service (registry key): Mcx2Svc Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: @%SystemRoot%\ehome\ehres.dll,-15501 Description: @%SystemRoot%\ehome\ehres.dll,-15502 Object name: NT Authority\LocalService Image path: %SystemRoot%\system32\svchost.exe -k LocalService Image size: 22016 Image MD5: 10DA15933D582D2FEDCF705EFE394B09 Control Set: CurrentControlSet Start: 4 Type: 32 Error Control: 1 Depends On services: SSDPSRV,IPBusEnum,TermService,fdphost Service (registry key): megasas Registry path: \SYSTEM\CurrentControlSet\Services\ Image path: \SystemRoot\system32\drivers\megasas.sys Image size: 0 Image MD5: D41D8CD98F00B204E9800998ECF8427E Control Set: CurrentControlSet Start: 4 Type: 1 Error Control: 1 Service (registry key): MMCSS Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: @%systemroot%\system32\mmcss.dll,-100 Description: @%systemroot%\system32\mmcss.dll,-101 Object name: LocalSystem Image path: %SystemRoot%\system32\svchost.exe -k netsvcs Image size: 22016 Image MD5: 10DA15933D582D2FEDCF705EFE394B09 Control Set: CurrentControlSet Start: 2 Type: 32 Error Control: 1 Service (registry key): Modem Registry path: \SYSTEM\CurrentControlSet\Services\ Image path: system32\drivers\modem.sys Image size: 0 Image MD5: D41D8CD98F00B204E9800998ECF8427E Control Set: CurrentControlSet Start: 3 Type: 1 Error Control: 0 Service (registry key): monitor Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: Service Pilote de fonction de classe Moniteur Microsoft Image path: system32\DRIVERS\monitor.sys Image size: 0 Image MD5: D41D8CD98F00B204E9800998ECF8427E Control Set: CurrentControlSet Start: 3 Type: 1 Error Control: 1 Service (registry key): mouclass Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: Pilote de la classe Souris Image path: system32\DRIVERS\mouclass.sys Image size: 0 Image MD5: D41D8CD98F00B204E9800998ECF8427E Control Set: CurrentControlSet Start: 1 Type: 1 Error Control: 1 Service (registry key): mouhid Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: Pilote HID de souris Image path: system32\DRIVERS\mouhid.sys Image size: 0 Image MD5: D41D8CD98F00B204E9800998ECF8427E Control Set: CurrentControlSet Start: 3 Type: 1 Error Control: 0 Service (registry key): MountMgr Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: Mount Point Manager Image path: System32\drivers\mountmgr.sys Image size: 0 Image MD5: D41D8CD98F00B204E9800998ECF8427E Control Set: CurrentControlSet Start: 0 Type: 1 Error Control: 3 Service (registry key): mpio Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: Microsoft Multi-Path Bus Driver Image path: \SystemRoot\system32\drivers\mpio.sys Image size: 0 Image MD5: D41D8CD98F00B204E9800998ECF8427E Control Set: CurrentControlSet Start: 4 Type: 1 Error Control: 1 Service (registry key): mpsdrv Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: @%SystemRoot%\system32\FirewallAPI.dll,-23092 Description: @%SystemRoot%\system32\FirewallAPI.dll,-23093 Image path: System32\drivers\mpsdrv.sys Image size: 0 Image MD5: D41D8CD98F00B204E9800998ECF8427E Control Set: CurrentControlSet Start: 3 Type: 1 Error Control: 1 Service (registry key): MpsSvc Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: @%SystemRoot%\system32\FirewallAPI.dll,-23090 Description: @%SystemRoot%\system32\FirewallAPI.dll,-23091 Object name: NT Authority\LocalService Image path: %SystemRoot%\system32\svchost.exe -k LocalServiceNoNetwork Image size: 22016 Image MD5: 10DA15933D582D2FEDCF705EFE394B09 Control Set: CurrentControlSet Start: 2 Type: 32 Error Control: 1 Depends On services: mpsdrv,bfe Service (registry key): Mraid35x Registry path: \SYSTEM\CurrentControlSet\Services\ Image path: \SystemRoot\system32\drivers\mraid35x.sys Image size: 0 Image MD5: D41D8CD98F00B204E9800998ECF8427E Control Set: CurrentControlSet Start: 4 Type: 1 Error Control: 1 Service (registry key): MRxDAV Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: WebDav Client Redirector Driver Description: WebDav Client Redirector Driver Image path: \SystemRoot\system32\drivers\mrxdav.sys Image size: 0 Image MD5: D41D8CD98F00B204E9800998ECF8427E Control Set: CurrentControlSet Start: 3 Type: 2 Error Control: 1 Depends On services: rdbss Service (registry key): mrxsmb Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: SMB MiniRedirector Wrapper and Engine Description: Implements the framework for the SMB filesystem redirector Image path: system32\DRIVERS\mrxsmb.sys Image size: 0 Image MD5: D41D8CD98F00B204E9800998ECF8427E Control Set: CurrentControlSet Start: 3 Type: 2 Error Control: 1 Depends On services: rdbss Service (registry key): mrxsmb10 Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: SMB 1.x MiniRedirector Description: Implements the SMB 1.x (CIFS) protocol. This protocol provides connectivity to network resources on pre-Windows Vista servers Image path: system32\DRIVERS\mrxsmb10.sys Image size: 0 Image MD5: D41D8CD98F00B204E9800998ECF8427E Control Set: CurrentControlSet Start: 3 Type: 2 Error Control: 1 Depends On services: mrxsmb Service (registry key): mrxsmb20 Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: SMB 2.0 MiniRedirector Description: Implements the SMB 2.0 protocol, which provides connectivity to network resources on Windows Vista and later servers Image path: system32\DRIVERS\mrxsmb20.sys Image size: 0 Image MD5: D41D8CD98F00B204E9800998ECF8427E Control Set: CurrentControlSet Start: 3 Type: 2 Error Control: 1 Depends On services: mrxsmb Service (registry key): msahci Registry path: \SYSTEM\CurrentControlSet\Services\ Image path: \SystemRoot\system32\drivers\msahci.sys Image size: 0 Image MD5: D41D8CD98F00B204E9800998ECF8427E Control Set: CurrentControlSet Start: 4 Type: 1 Error Control: 3 Service (registry key): msdsm Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: Microsoft Multi-Path Device Specific Module Image path: \SystemRoot\system32\drivers\msdsm.sys Image size: 0 Image MD5: D41D8CD98F00B204E9800998ECF8427E Control Set: CurrentControlSet Start: 4 Type: 1 Error Control: 1 Service (registry key): MSDTC Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: @comres.dll,-2797 Description: @comres.dll,-2798 Object name: NT AUTHORITY\NetworkService Image path: %SystemRoot%\System32\msdtc.exe Image size: 106496 Image MD5: BC64A92D821EFEA8BAB8E8CAF1B668BC Control Set: CurrentControlSet Start: 3 Type: 16 Error Control: 1 Depends On services: RPCSS,SamSS Service (registry key): MSDTC Bridge 3.0.0.0 Registry path: \SYSTEM\CurrentControlSet\Services\ Control Set: CurrentControlSet Start: 0 Type: 0 Error Control: 0 Service (registry key): Msfs Registry path: \SYSTEM\CurrentControlSet\Services\ Control Set: CurrentControlSet Start: 1 Type: 2 Error Control: 1 Service (registry key): msisadrv Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: Pilote de classe ISA/EISA Image path: system32\drivers\msisadrv.sys Image size: 0 Image MD5: D41D8CD98F00B204E9800998ECF8427E Control Set: CurrentControlSet Start: 0 Type: 1 Error Control: 3 Service (registry key): MSiSCSI Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: @%SystemRoot%\system32\iscsidsc.dll,-5000 Description: @%SystemRoot%\system32\iscsidsc.dll,-5001 Object name: LocalSystem Image path: %systemroot%\system32\svchost.exe -k netsvcs Image size: 22016 Image MD5: 10DA15933D582D2FEDCF705EFE394B09 Control Set: CurrentControlSet Start: 3 Type: 32 Error Control: 1 Service (registry key): msiserver Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: @%SystemRoot%\system32\msimsg.dll,-27 Description: @%SystemRoot%\system32\msimsg.dll,-32 Object name: LocalSystem Image path: %systemroot%\system32\msiexec /V Image size: 0 Image MD5: D41D8CD98F00B204E9800998ECF8427E Control Set: CurrentControlSet Start: 3 Type: 16 Error Control: 1 Depends On services: rpcss Service (registry key): MSKSSRV Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: Proxy de service de répartition Microsoft Image path: system32\drivers\MSKSSRV.sys Image size: 0 Image MD5: D41D8CD98F00B204E9800998ECF8427E Control Set: CurrentControlSet Start: 3 Type: 1 Error Control: 1 Service (registry key): MSPCLOCK Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: Proxy d'horloge de répartition Microsoft Image path: system32\drivers\MSPCLOCK.sys Image size: 0 Image MD5: D41D8CD98F00B204E9800998ECF8427E Control Set: CurrentControlSet Start: 3 Type: 1 Error Control: 1 Service (registry key): MSPQM Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: Proxy de gestion de qualité de répartition Microsoft Image path: system32\drivers\MSPQM.sys Image size: 0 Image MD5: D41D8CD98F00B204E9800998ECF8427E Control Set: CurrentControlSet Start: 3 Type: 1 Error Control: 1 Service (registry key): MsRPC Registry path: \SYSTEM\CurrentControlSet\Services\ Control Set: CurrentControlSet Start: 3 Type: 1 Error Control: 1 Service (registry key): MSSCNTRS Registry path: \SYSTEM\CurrentControlSet\Services\ Control Set: CurrentControlSet Start: 0 Type: 0 Error Control: 0 Service (registry key): mssmbios Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: Pilote BIOS de gestion de systèmes Microsoft Image path: system32\DRIVERS\mssmbios.sys Image size: 0 Image MD5: D41D8CD98F00B204E9800998ECF8427E Control Set: CurrentControlSet Start: 3 Type: 1 Error Control: 1 Service (registry key): MSTEE Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: Convertisseur en T/site-à-site de répartition Microsoft Image path: system32\drivers\MSTEE.sys Image size: 0 Image MD5: D41D8CD98F00B204E9800998ECF8427E Control Set: CurrentControlSet Start: 3 Type: 1 Error Control: 1 Service (registry key): Mup Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: Mup Description: Multiple UNC Provider Image path: System32\Drivers\mup.sys Image size: 0 Image MD5: D41D8CD98F00B204E9800998ECF8427E Control Set: CurrentControlSet Start: 0 Type: 2 Error Control: 1 Service (registry key): napagent Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: @%SystemRoot%\system32\qagentrt.dll,-6 Description: @%SystemRoot%\system32\qagentrt.dll,-7 Object name: NT AUTHORITY\NetworkService Image path: %SystemRoot%\System32\svchost.exe -k NetworkService Image size: 22016 Image MD5: 10DA15933D582D2FEDCF705EFE394B09 Control Set: CurrentControlSet Start: 3 Type: 32 Error Control: 1 Depends On services: RpcSs Service (registry key): NativeWifiP Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: NativeWiFi Filter Image path: system32\DRIVERS\nwifi.sys Image size: 0 Image MD5: D41D8CD98F00B204E9800998ECF8427E Control Set: CurrentControlSet Start: 3 Type: 1 Error Control: 1 Service (registry key): NDIS Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: NDIS System Driver Description: NDIS System Driver Image path: system32\drivers\ndis.sys Image size: 0 Image MD5: D41D8CD98F00B204E9800998ECF8427E Control Set: CurrentControlSet Start: 0 Type: 1 Error Control: 3 Service (registry key): NdisTapi Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: Pilote TAPI NDIS d'accès distant Description: Pilote TAPI NDIS d'accès distant Image path: system32\DRIVERS\ndistapi.sys Image size: 0 Image MD5: D41D8CD98F00B204E9800998ECF8427E Control Set: CurrentControlSet Start: 3 Type: 1 Error Control: 1 Service (registry key): Ndisuio Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: NDIS Usermode I/O Protocol Image path: system32\DRIVERS\ndisuio.sys Image size: 0 Image MD5: D41D8CD98F00B204E9800998ECF8427E Control Set: CurrentControlSet Start: 3 Type: 1 Error Control: 1 Service (registry key): NdisWan Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: Pilote réseau étendu NDIS d'accès distant Description: Pilote réseau étendu NDIS d'accès distant Image path: system32\DRIVERS\ndiswan.sys Image size: 0 Image MD5: D41D8CD98F00B204E9800998ECF8427E Control Set: CurrentControlSet Start: 3 Type: 1 Error Control: 1 Service (registry key): NDProxy Registry path: \SYSTEM\CurrentControlSet\Services\ Control Set: CurrentControlSet Start: 3 Type: 1 Error Control: 1 Service (registry key): Nero BackItUp Scheduler 3 Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: Nero BackItUp Scheduler 3 Description: Nero BackItUp Scheduler 3 is responsible to control all jobs created using Nero BackItUp 3. These jobs can create backups of selected files/folders/partitions or complete hard disk to hard disk, network drive, disc or FTP. Object name: LocalSystem Image path: C:\Program Files\Nero\Nero8\Nero BackItUp\NBService.exe Image size: 853288 Image MD5: 6D4028D458EAAA1782099750790DC8C9 Control Set: CurrentControlSet Start: 2 Type: 16 Error Control: 1 Depends On services: RPCSS Service (registry key): NetBIOS Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: NetBIOS Interface Description: NetBIOS Interface Image path: system32\DRIVERS\netbios.sys Image size: 0 Image MD5: D41D8CD98F00B204E9800998ECF8427E Control Set: CurrentControlSet Start: 1 Type: 2 Error Control: 1 Service (registry key): netbt Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: NETBT Description: This service implements NetBios over TCP/IP. Image path: System32\DRIVERS\netbt.sys Image size: 0 Image MD5: D41D8CD98F00B204E9800998ECF8427E Control Set: CurrentControlSet Start: 1 Type: 1 Error Control: 1 Depends On services: Tdx,tcpip Service (registry key): Netlogon Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: @%SystemRoot%\System32\netlogon.dll,-102 Description: @%SystemRoot%\System32\netlogon.dll,-103 Object name: LocalSystem Image path: %systemroot%\system32\lsass.exe Image size: 7680 Image MD5: 6A0E382E74280E4CC0DF17FE2661D003 Control Set: CurrentControlSet Start: 3 Type: 32 Error Control: 1 Depends On services: LanmanWorkstation Service (registry key): Netman Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: @%SystemRoot%\system32\netman.dll,-109 Description: @%SystemRoot%\system32\netman.dll,-110 Object name: LocalSystem Image path: %SystemRoot%\System32\svchost.exe -k LocalSystemNetworkRestricted Image size: 22016 Image MD5: 10DA15933D582D2FEDCF705EFE394B09 Control Set: CurrentControlSet Start: 3 Type: 32 Error Control: 1 Depends On services: RpcSs,nsi Service (registry key): netprofm Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: @%SystemRoot%\system32\netprof.dll,-246 Description: @%SystemRoot%\system32\netprof.dll,-247 Object name: NT AUTHORITY\LocalService Image path: %SystemRoot%\System32\svchost.exe -k LocalService Image size: 22016 Image MD5: 10DA15933D582D2FEDCF705EFE394B09 Control Set: CurrentControlSet Start: 2 Type: 32 Error Control: 1 Depends On services: RpcSs,nlasvc Service (registry key): NetTcpPortSharing Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: @%systemroot%\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\ServiceModelInstallRC.dll,-8201 Description: @%systemroot%\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\ServiceModelInstallRC.dll,-8200 Object name: NT AUTHORITY\LocalService Image path: "%systemroot%\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe" Image size: 122880 Image MD5: B418382DE04FF58567AA07A2B66B2332 Control Set: CurrentControlSet Start: 4 Type: 32 Error Control: 1 Service (registry key): NETw3v32 Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: Pilote de carte Intel® PRO/Wireless 3945ABG pour Windows Vista 32 bits Image path: system32\DRIVERS\NETw3v32.sys Image size: 0 Image MD5: D41D8CD98F00B204E9800998ECF8427E Control Set: CurrentControlSet Start: 3 Type: 1 Error Control: 1 Service (registry key): nfrd960 Registry path: \SYSTEM\CurrentControlSet\Services\ Image path: \SystemRoot\system32\drivers\nfrd960.sys Image size: 0 Image MD5: D41D8CD98F00B204E9800998ECF8427E Control Set: CurrentControlSet Start: 4 Type: 1 Error Control: 1 Service (registry key): NlaSvc Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: @%SystemRoot%\System32\nlasvc.dll,-1 Description: @%SystemRoot%\System32\nlasvc.dll,-2 Object name: NT AUTHORITY\NetworkService Image path: %SystemRoot%\System32\svchost.exe -k NetworkService Image size: 22016 Image MD5: 10DA15933D582D2FEDCF705EFE394B09 Control Set: CurrentControlSet Start: 2 Type: 32 Error Control: 1 Depends On services: NSI,RpcSs,TcpIp Service (registry key): NMIndexingService Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: NMIndexingService Object name: LocalSystem Image path: "C:\Program Files\Common Files\Nero\Lib\NMIndexingService.exe" Image size: 382248 Image MD5: 1BEF5464C06F4AF0C704378824C52ADB Control Set: CurrentControlSet Start: 3 Type: 16 Error Control: 1 Depends On services: RPCSS Service (registry key): Npfs Registry path: \SYSTEM\CurrentControlSet\Services\ Control Set: CurrentControlSet Start: 1 Type: 2 Error Control: 1 Service (registry key): nsi Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: @%SystemRoot%\system32\nsisvc.dll,-200 Description: @%SystemRoot%\system32\nsisvc.dll,-201 Object name: NT Authority\LocalService Image path: %systemroot%\system32\svchost.exe -k LocalService Image size: 22016 Image MD5: 10DA15933D582D2FEDCF705EFE394B09 Control Set: CurrentControlSet Start: 2 Type: 32 Error Control: 1 Depends On services: nsiproxy Service (registry key): nsiproxy Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: NSI proxy service Description: NSI proxy service Image path: system32\drivers\nsiproxy.sys Image size: 0 Image MD5: D41D8CD98F00B204E9800998ECF8427E Control Set: CurrentControlSet Start: 1 Type: 1 Error Control: 1 Service (registry key): NTDS Registry path: \SYSTEM\CurrentControlSet\Services\ Control Set: CurrentControlSet Start: 0 Type: 0 Error Control: 0 Service (registry key): Ntfs Registry path: \SYSTEM\CurrentControlSet\Services\ Control Set: CurrentControlSet Start: 3 Type: 2 Error Control: 1 Service (registry key): ntrigdigi Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: N-trig HID Tablet Driver Image path: \SystemRoot\system32\drivers\ntrigdigi.sys Image size: 0 Image MD5: D41D8CD98F00B204E9800998ECF8427E Control Set: CurrentControlSet Start: 4 Type: 1 Error Control: 1 Service (registry key): Null Registry path: \SYSTEM\CurrentControlSet\Services\ Control Set: CurrentControlSet Start: 1 Type: 1 Error Control: 1 Service (registry key): nvlddmkm Registry path: \SYSTEM\CurrentControlSet\Services\ Image path: system32\DRIVERS\nvlddmkm.sys Image size: 0 Image MD5: D41D8CD98F00B204E9800998ECF8427E Control Set: CurrentControlSet Start: 3 Type: 1 Error Control: 0 Service (registry key): nvraid Registry path: \SYSTEM\CurrentControlSet\Services\ Image path: \SystemRoot\system32\drivers\nvraid.sys Image size: 0 Image MD5: D41D8CD98F00B204E9800998ECF8427E Control Set: CurrentControlSet Start: 4 Type: 1 Error Control: 1 Service (registry key): nvstor Registry path: \SYSTEM\CurrentControlSet\Services\ Image path: \SystemRoot\system32\drivers\nvstor.sys Image size: 0 Image MD5: D41D8CD98F00B204E9800998ECF8427E Control Set: CurrentControlSet Start: 4 Type: 1 Error Control: 3 Service (registry key): nv_agp Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: NVIDIA nForce AGP Bus Filter Image path: \SystemRoot\system32\drivers\nv_agp.sys Image size: 0 Image MD5: D41D8CD98F00B204E9800998ECF8427E Control Set: CurrentControlSet Start: 3 Type: 1 Error Control: 1 Service (registry key): ohci1394 Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: Contrôleur hôte Texas Instruments IEEE 1394 compatible OHCI (Open Host Controller Interface) Image path: system32\DRIVERS\ohci1394.sys Image size: 0 Image MD5: D41D8CD98F00B204E9800998ECF8427E Control Set: CurrentControlSet Start: 3 Type: 1 Error Control: 1 Service (registry key): p2pimsvc Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: @%SystemRoot%\system32\p2psvc.dll,-8004 Description: @%SystemRoot%\system32\p2psvc.dll,-8005 Object name: NT AUTHORITY\LocalService Image path: %SystemRoot%\System32\svchost.exe -k LocalServiceNetworkRestricted Image size: 22016 Image MD5: 10DA15933D582D2FEDCF705EFE394B09 Control Set: CurrentControlSet Start: 3 Type: 32 Error Control: 1 Service (registry key): p2psvc Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: @%SystemRoot%\system32\p2psvc.dll,-8006 Description: @%SystemRoot%\system32\p2psvc.dll,-8007 Object name: NT AUTHORITY\LocalService Image path: %SystemRoot%\System32\svchost.exe -k LocalServiceNetworkRestricted Image size: 22016 Image MD5: 10DA15933D582D2FEDCF705EFE394B09 Control Set: CurrentControlSet Start: 3 Type: 32 Error Control: 1 Depends On services: p2pimsvc,PNRPSvc Service (registry key): Parport Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: Parallel port driver Image path: \SystemRoot\system32\drivers\parport.sys Image size: 0 Image MD5: D41D8CD98F00B204E9800998ECF8427E Control Set: CurrentControlSet Start: 4 Type: 1 Error Control: 1 Service (registry key): partmgr Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: Partition Manager Description: Disk class filter driver that auctions out partitions to volume managers Image path: System32\drivers\partmgr.sys Image size: 0 Image MD5: D41D8CD98F00B204E9800998ECF8427E Control Set: CurrentControlSet Start: 0 Type: 1 Error Control: 3 Service (registry key): Parvdm Registry path: \SYSTEM\CurrentControlSet\Services\ Image path: \SystemRoot\system32\drivers\parvdm.sys Image size: 0 Image MD5: D41D8CD98F00B204E9800998ECF8427E Control Set: CurrentControlSet Start: 2 Type: 1 Error Control: 0 Depends On services: Parport Depends On group: "Parallel arbitrator" Service (registry key): PcaSvc Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: @%SystemRoot%\system32\pcasvc.dll,-1 Description: @%SystemRoot%\system32\pcasvc.dll,-2 Object name: LocalSystem Image path: %systemroot%\system32\svchost.exe -k LocalSystemNetworkRestricted Image size: 22016 Image MD5: 10DA15933D582D2FEDCF705EFE394B09 Control Set: CurrentControlSet Start: 2 Type: 32 Error Control: 1 Depends On services: RpcSs Service (registry key): pci Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: Pilote de bus PCI Image path: system32\drivers\pci.sys Image size: 0 Image MD5: D41D8CD98F00B204E9800998ECF8427E Control Set: CurrentControlSet Start: 0 Type: 1 Error Control: 3 Service (registry key): pciide Registry path: \SYSTEM\CurrentControlSet\Services\ Image path: \SystemRoot\system32\drivers\pciide.sys Image size: 0 Image MD5: D41D8CD98F00B204E9800998ECF8427E Control Set: CurrentControlSet Start: 4 Type: 1 Error Control: 3 Service (registry key): pcmcia Registry path: \SYSTEM\CurrentControlSet\Services\ Image path: system32\DRIVERS\pcmcia.sys Image size: 0 Image MD5: D41D8CD98F00B204E9800998ECF8427E Control Set: CurrentControlSet Start: 0 Type: 1 Error Control: 1 Service (registry key): PEAUTH Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: PEAUTH Image path: system32\drivers\peauth.sys Image size: 0 Image MD5: D41D8CD98F00B204E9800998ECF8427E Control Set: CurrentControlSet Start: 2 Type: 1 Error Control: 1 Service (registry key): PerfDisk Registry path: \SYSTEM\CurrentControlSet\Services\ Control Set: CurrentControlSet Start: 0 Type: 0 Error Control: 0 Service (registry key): PerfNet Registry path: \SYSTEM\CurrentControlSet\Services\ Control Set: CurrentControlSet Start: 0 Type: 0 Error Control: 0 Service (registry key): PerfOS Registry path: \SYSTEM\CurrentControlSet\Services\ Control Set: CurrentControlSet Start: 0 Type: 0 Error Control: 0 Service (registry key): PerfProc Registry path: \SYSTEM\CurrentControlSet\Services\ Control Set: CurrentControlSet Start: 0 Type: 0 Error Control: 0 Service (registry key): pla Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: @%systemroot%\system32\pla.dll,-500 Description: @%systemroot%\system32\pla.dll,-501 Object name: NT AUTHORITY\LocalService Image path: %SystemRoot%\System32\svchost.exe -k LocalServiceNoNetwork Image size: 22016 Image MD5: 10DA15933D582D2FEDCF705EFE394B09 Control Set: CurrentControlSet Start: 3 Type: 32 Error Control: 1 Depends On services: RPCSS Service (registry key): Planificateur LiveUpdate automatique Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: Planificateur LiveUpdate automatique Description: Gère la planification des sessions de LiveUpdate automatique Object name: LocalSystem Image path: "C:\Program Files\Symantec\LiveUpdate\ALUSchedulerSvc.exe" Image size: 554616 Image MD5: C0E25BB0E6A159D332048AFAA2ED24CE Control Set: CurrentControlSet Start: 2 Type: 16 Error Control: 1 Depends On services: RPCSS Service (registry key): PlugPlay Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: @%SystemRoot%\system32\umpnpmgr.dll,-100 Description: @%SystemRoot%\system32\umpnpmgr.dll,-101 Object name: LocalSystem Image path: %SystemRoot%\system32\svchost.exe -k DcomLaunch Image size: 22016 Image MD5: 10DA15933D582D2FEDCF705EFE394B09 Control Set: CurrentControlSet Start: 2 Type: 32 Error Control: 1 Service (registry key): PNRPAutoReg Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: @%SystemRoot%\system32\p2psvc.dll,-8002 Description: @%SystemRoot%\system32\p2psvc.dll,-8003 Object name: NT AUTHORITY\LocalService Image path: %SystemRoot%\System32\svchost.exe -k LocalServiceNetworkRestricted Image size: 22016 Image MD5: 10DA15933D582D2FEDCF705EFE394B09 Control Set: CurrentControlSet Start: 3 Type: 32 Error Control: 1 Depends On services: pnrpsvc Service (registry key): PNRPsvc Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: @%SystemRoot%\system32\p2psvc.dll,-8000 Description: @%SystemRoot%\system32\p2psvc.dll,-8001 Object name: NT AUTHORITY\LocalService Image path: %SystemRoot%\System32\svchost.exe -k LocalServiceNetworkRestricted Image size: 22016 Image MD5: 10DA15933D582D2FEDCF705EFE394B09 Control Set: CurrentControlSet Start: 3 Type: 32 Error Control: 1 Depends On services: p2pimsvc Service (registry key): PolicyAgent Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: @%SystemRoot%\System32\polstore.dll,-5010 Description: @%SystemRoot%\system32\polstore.dll,-5011 Object name: NT Authority\NetworkService Image path: %SystemRoot%\system32\svchost.exe -k NetworkServiceNetworkRestricted Image size: 22016 Image MD5: 10DA15933D582D2FEDCF705EFE394B09 Control Set: CurrentControlSet Start: 2 Type: 32 Error Control: 1 Depends On services: Tcpip,bfe Service (registry key): PortProxy Registry path: \SYSTEM\CurrentControlSet\Services\ Control Set: CurrentControlSet Start: 0 Type: 0 Error Control: 0 Service (registry key): PptpMiniport Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: Miniport réseau étendu WAN (PPTP) Description: Miniport réseau étendu WAN (PPTP) Image path: system32\DRIVERS\raspptp.sys Image size: 0 Image MD5: D41D8CD98F00B204E9800998ECF8427E Control Set: CurrentControlSet Start: 3 Type: 1 Error Control: 1 Service (registry key): Processor Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: Processor Driver Image path: \SystemRoot\system32\drivers\processr.sys Image size: 0 Image MD5: D41D8CD98F00B204E9800998ECF8427E Control Set: CurrentControlSet Start: 4 Type: 1 Error Control: 1 Service (registry key): ProfSvc Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: @%systemroot%\system32\profsvc.dll,-300 Description: @%systemroot%\system32\profsvc.dll,-301 Object name: LocalSystem Image path: %systemroot%\system32\svchost.exe -k netsvcs Image size: 22016 Image MD5: 10DA15933D582D2FEDCF705EFE394B09 Control Set: CurrentControlSet Start: 2 Type: 32 Error Control: 1 Depends On services: RpcSs Service (registry key): ProtectedStorage Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: @%systemroot%\system32\psbase.dll,-300 Description: @%systemroot%\system32\psbase.dll,-301 Object name: LocalSystem Image path: %SystemRoot%\system32\lsass.exe Image size: 7680 Image MD5: 6A0E382E74280E4CC0DF17FE2661D003 Control Set: CurrentControlSet Start: 3 Type: 32 Error Control: 1 Depends On services: RpcSs Service (registry key): PSched Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: @%SystemRoot%\System32\drivers\pacer.sys,-101 Description: @%SystemRoot%\System32\drivers\pacer.sys,-101 Image path: system32\DRIVERS\pacer.sys Image size: 0 Image MD5: D41D8CD98F00B204E9800998ECF8427E Control Set: CurrentControlSet Start: 1 Type: 1 Error Control: 1 Service (registry key): PxHelp20 Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: PxHelp20 Image path: System32\Drivers\PxHelp20.sys Image size: 0 Image MD5: D41D8CD98F00B204E9800998ECF8427E Control Set: CurrentControlSet Start: 0 Type: 1 Error Control: 1 Service (registry key): ql2300 Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: QLogic Fibre Channel Miniport Driver Image path: \SystemRoot\system32\drivers\ql2300.sys Image size: 0 Image MD5: D41D8CD98F00B204E9800998ECF8427E Control Set: CurrentControlSet Start: 4 Type: 1 Error Control: 1 Service (registry key): ql40xx Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: QLogic iSCSI Miniport Driver Image path: \SystemRoot\system32\drivers\ql40xx.sys Image size: 0 Image MD5: D41D8CD98F00B204E9800998ECF8427E Control Set: CurrentControlSet Start: 4 Type: 1 Error Control: 1 Service (registry key): QWAVE Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: @%SystemRoot%\system32\qwave.dll,-1 Description: @%SystemRoot%\system32\qwave.dll,-2 Object name: NT AUTHORITY\LocalService Image path: %windir%\system32\svchost.exe -k LocalService Image size: 0 Image MD5: D41D8CD98F00B204E9800998ECF8427E Control Set: CurrentControlSet Start: 3 Type: 32 Error Control: 1 Depends On services: rpcss,psched,QWAVEdrv,LLTDIO Service (registry key): QWAVEdrv Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: @%SystemRoot%\system32\drivers\qwavedrv.sys,-1 Description: @%SystemRoot%\system32\drivers\qwavedrv.sys,-2 Image path: \SystemRoot\system32\drivers\qwavedrv.sys Image size: 0 Image MD5: D41D8CD98F00B204E9800998ECF8427E Control Set: CurrentControlSet Start: 3 Type: 1 Error Control: 1 Service (registry key): RasAcd Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: Remote Access Auto Connection Driver Description: Remote Access Auto Connection Driver Image path: System32\DRIVERS\rasacd.sys Image size: 0 Image MD5: D41D8CD98F00B204E9800998ECF8427E Control Set: CurrentControlSet Start: 1 Type: 1 Error Control: 1 Service (registry key): RasAuto Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: @%Systemroot%\system32\rasauto.dll,-200 Description: @%Systemroot%\system32\rasauto.dll,-201 Object name: localSystem Image path: %SystemRoot%\system32\svchost.exe -k netsvcs Image size: 22016 Image MD5: 10DA15933D582D2FEDCF705EFE394B09 Control Set: CurrentControlSet Start: 3 Type: 32 Error Control: 1 Depends On services: RasMan,Tapisrv Service (registry key): Rasl2tp Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: Miniport réseau étendu WAN (L2TP) Description: Miniport réseau étendu WAN (L2TP) Image path: system32\DRIVERS\rasl2tp.sys Image size: 0 Image MD5: D41D8CD98F00B204E9800998ECF8427E Control Set: CurrentControlSet Start: 3 Type: 1 Error Control: 1 Service (registry key): RasMan Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: @%Systemroot%\system32\rasmans.dll,-200 Description: @%Systemroot%\system32\rasmans.dll,-201 Object name: localSystem Image path: %SystemRoot%\system32\svchost.exe -k netsvcs Image size: 22016 Image MD5: 10DA15933D582D2FEDCF705EFE394B09 Control Set: CurrentControlSet Start: 3 Type: 32 Error Control: 1 Depends On services: Tapisrv Service (registry key): RasPppoe Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: Pilote PPPOE d'accès à distance Description: Pilote PPPOE d'accès à distance Image path: system32\DRIVERS\raspppoe.sys Image size: 0 Image MD5: D41D8CD98F00B204E9800998ECF8427E Control Set: CurrentControlSet Start: 3 Type: 1 Error Control: 1 Service (registry key): rdbss Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: Redirected Buffering Sub Sysytem Description: Provides the framework for network mini-redirectors Image path: system32\DRIVERS\rdbss.sys Image size: 0 Image MD5: D41D8CD98F00B204E9800998ECF8427E Control Set: CurrentControlSet Start: 1 Type: 2 Error Control: 1 Depends On services: Mup Service (registry key): RDPCDD Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: RDPCDD Description: RDPDD Chained DD Image path: System32\DRIVERS\RDPCDD.sys Image size: 0 Image MD5: D41D8CD98F00B204E9800998ECF8427E Control Set: CurrentControlSet Start: 1 Type: 1 Error Control: 0 Service (registry key): RDPDD Registry path: \SYSTEM\CurrentControlSet\Services\ Control Set: CurrentControlSet Start: 0 Type: 0 Error Control: 0 Service (registry key): rdpdr Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: Terminal Server Device Redirector Driver Image path: \SystemRoot\system32\drivers\rdpdr.sys Image size: 0 Image MD5: D41D8CD98F00B204E9800998ECF8427E Control Set: CurrentControlSet Start: 4 Type: 1 Error Control: 1 Service (registry key): RDPENCDD Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: RDP Encoder Mirror Driver Description: RDP Encoder Mirror Driver Image path: system32\drivers\rdpencdd.sys Image size: 0 Image MD5: D41D8CD98F00B204E9800998ECF8427E Control Set: CurrentControlSet Start: 1 Type: 1 Error Control: 0 Service (registry key): RDPNP Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: @%systemroot%\system32\drprov.dll,-100 Description: @%systemroot%\system32\drprov.dll,-101 Control Set: CurrentControlSet Start: 0 Type: 0 Error Control: 0 Service (registry key): RDPWD Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: RDP Winstation Driver Control Set: CurrentControlSet Start: 3 Type: 1 Error Control: 0 Service (registry key): RemoteAccess Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: @%Systemroot%\system32\mprdim.dll,-200 Description: @%Systemroot%\system32\mprdim.dll,-201 Object name: localSystem Image path: %SystemRoot%\system32\svchost.exe -k netsvcs Image size: 22016 Image MD5: 10DA15933D582D2FEDCF705EFE394B09 Control Set: CurrentControlSet Start: 4 Type: 32 Error Control: 1 Depends On services: RpcSS,RasMan,bfe Depends On group: NetBIOSGroup Service (registry key): RemoteRegistry Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: @regsvc.dll,-1 Description: @regsvc.dll,-2 Object name: NT AUTHORITY\LocalService Image path: %SystemRoot%\system32\svchost.exe -k regsvc Image size: 22016 Image MD5: 10DA15933D582D2FEDCF705EFE394B09 Control Set: CurrentControlSet Start: 3 Type: 32 Error Control: 1 Depends On services: RPCSS Service (registry key): RpcLocator Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: @%systemroot%\system32\Locator.exe,-2 Description: @%systemroot%\system32\Locator.exe,-3 Object name: NT AUTHORITY\NetworkService Image path: %SystemRoot%\system32\locator.exe Image size: 7680 Image MD5: 5123F83CBC4349D065534EEB6BBDC42B Control Set: CurrentControlSet Start: 3 Type: 16 Error Control: 1 Service (registry key): RpcSs Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: @oleres.dll,-5010 Description: @oleres.dll,-5011 Object name: NT AUTHORITY\NetworkService Image path: %SystemRoot%\system32\svchost.exe -k rpcss Image size: 22016 Image MD5: 10DA15933D582D2FEDCF705EFE394B09 Control Set: CurrentControlSet Start: 2 Type: 32 Error Control: 1 Depends On services: DcomLaunch Service (registry key): rspndr Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: Link-Layer Topology Discovery Responder Image path: system32\DRIVERS\rspndr.sys Image size: 0 Image MD5: D41D8CD98F00B204E9800998ECF8427E Control Set: CurrentControlSet Start: 2 Type: 1 Error Control: 1 Service (registry key): RTL8169 Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: Realtek 8169 NT Driver Image path: system32\DRIVERS\Rtlh86.sys Image size: 0 Image MD5: D41D8CD98F00B204E9800998ECF8427E Control Set: CurrentControlSet Start: 3 Type: 1 Error Control: 1 Service (registry key): SamSs Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: @%SystemRoot%\system32\samsrv.dll,-1 Description: @%SystemRoot%\system32\samsrv.dll,-2 Object name: LocalSystem Image path: %SystemRoot%\system32\lsass.exe Image size: 7680 Image MD5: 6A0E382E74280E4CC0DF17FE2661D003 Control Set: CurrentControlSet Start: 2 Type: 32 Error Control: 1 Depends On services: RPCSS Service (registry key): sbp2port Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: SBP-2 Transport/Protocol Bus Driver Image path: \SystemRoot\system32\drivers\sbp2port.sys Image size: 0 Image MD5: D41D8CD98F00B204E9800998ECF8427E Control Set: CurrentControlSet Start: 4 Type: 1 Error Control: 1 Service (registry key): SBSDWSCService Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: SBSD Security Center Service Object name: LocalSystem Image path: C:\Program Files\Spybot - Search & Destroy\SDWinSec.exe Image size: 600912 Image MD5: E057E4B90B5E69E9BC0F779BE27E5A54 Control Set: CurrentControlSet Start: 2 Type: 16 Error Control: 1 Depends On services: wscsvc Service (registry key): SCardSvr Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: @%SystemRoot%\System32\SCardSvr.dll,-1 Description: @%SystemRoot%\System32\SCardSvr.dll,-5 Object name: NT AUTHORITY\LocalService Image path: %SystemRoot%\system32\svchost.exe -k LocalService Image size: 22016 Image MD5: 10DA15933D582D2FEDCF705EFE394B09 Control Set: CurrentControlSet Start: 3 Type: 32 Error Control: 1 Depends On services: PlugPlay Service (registry key): Schedule Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: @%SystemRoot%\system32\schedsvc.dll,-100 Description: @%SystemRoot%\system32\schedsvc.dll,-101 Object name: LocalSystem Image path: %systemroot%\system32\svchost.exe -k netsvcs Image size: 22016 Image MD5: 10DA15933D582D2FEDCF705EFE394B09 Control Set: CurrentControlSet Start: 2 Type: 32 Error Control: 1 Depends On services: RPCSS,EventLog Service (registry key): SCPolicySvc Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: @%SystemRoot%\System32\certprop.dll,-13 Description: @%SystemRoot%\System32\certprop.dll,-14 Object name: LocalSystem Image path: %SystemRoot%\system32\svchost.exe -k netsvcs Image size: 22016 Image MD5: 10DA15933D582D2FEDCF705EFE394B09 Control Set: CurrentControlSet Start: 3 Type: 32 Error Control: 1 Depends On services: RpcSs Service (registry key): sdbus Registry path: \SYSTEM\CurrentControlSet\Services\ Image path: system32\DRIVERS\sdbus.sys Image size: 0 Image MD5: D41D8CD98F00B204E9800998ECF8427E Control Set: CurrentControlSet Start: 3 Type: 1 Error Control: 1 Service (registry key): SDRSVC Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: @%SystemRoot%\system32\sdrsvc.dll,-107 Description: @%SystemRoot%\system32\sdrsvc.dll,-102 Object name: localSystem Image path: %SystemRoot%\system32\svchost.exe -k SDRSVC Image size: 22016 Image MD5: 10DA15933D582D2FEDCF705EFE394B09 Control Set: CurrentControlSet Start: 3 Type: 16 Error Control: 1 Depends On services: RPCSS Service (registry key): secdrv Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: Security Driver Control Set: CurrentControlSet Start: 2 Type: 1 Error Control: 1 Service (registry key): seclogon Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: @%SystemRoot%\system32\seclogon.dll,-7001 Description: @%SystemRoot%\system32\seclogon.dll,-7000 Object name: LocalSystem Image path: %windir%\system32\svchost.exe -k netsvcs Image size: 0 Image MD5: D41D8CD98F00B204E9800998ECF8427E Control Set: CurrentControlSet Start: 2 Type: 32 Error Control: 1 Service (registry key): SENS Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: @%SystemRoot%\system32\Sens.dll,-200 Description: @%SystemRoot%\system32\Sens.dll,-201 Object name: LocalSystem Image path: %SystemRoot%\system32\svchost.exe -k netsvcs Image size: 22016 Image MD5: 10DA15933D582D2FEDCF705EFE394B09 Control Set: CurrentControlSet Start: 2 Type: 32 Error Control: 1 Depends On services: EventSystem Service (registry key): Serenum Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: Serenum Filter Driver Image path: \SystemRoot\system32\drivers\serenum.sys Image size: 0 Image MD5: D41D8CD98F00B204E9800998ECF8427E Control Set: CurrentControlSet Start: 3 Type: 1 Error Control: 1 Service (registry key): Serial Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: Serial Port Driver Image path: \SystemRoot\system32\drivers\serial.sys Image size: 0 Image MD5: D41D8CD98F00B204E9800998ECF8427E Control Set: CurrentControlSet Start: 4 Type: 1 Error Control: 0 Service (registry key): sermouse Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: Serial Mouse Driver Image path: \SystemRoot\system32\drivers\sermouse.sys Image size: 0 Image MD5: D41D8CD98F00B204E9800998ECF8427E Control Set: CurrentControlSet Start: 4 Type: 1 Error Control: 1 Service (registry key): ServiceModelEndpoint 3.0.0.0 Registry path: \SYSTEM\CurrentControlSet\Services\ Control Set: CurrentControlSet Start: 0 Type: 0 Error Control: 0 Service (registry key): ServiceModelOperation 3.0.0.0 Registry path: \SYSTEM\CurrentControlSet\Services\ Control Set: CurrentControlSet Start: 0 Type: 0 Error Control: 0 Service (registry key): ServiceModelService 3.0.0.0 Registry path: \SYSTEM\CurrentControlSet\Services\ Control Set: CurrentControlSet Start: 0 Type: 0 Error Control: 0 Service (registry key): SessionEnv Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: @%SystemRoot%\System32\SessEnv.dll,-1026 Description: @%SystemRoot%\System32\SessEnv.dll,-1027 Object name: localSystem Image path: %SystemRoot%\System32\svchost.exe -k netsvcs Image size: 22016 Image MD5: 10DA15933D582D2FEDCF705EFE394B09 Control Set: CurrentControlSet Start: 3 Type: 32 Error Control: 1 Depends On services: RPCSS,LanmanWorkstation Service (registry key): sffdisk Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: Pilote de classe de stockage SFF Image path: system32\DRIVERS\sffdisk.sys Image size: 0 Image MD5: D41D8CD98F00B204E9800998ECF8427E Control Set: CurrentControlSet Start: 3 Type: 1 Error Control: 1 Service (registry key): sffp_mmc Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: SFF Storage Protocol Driver for MMC Image path: \SystemRoot\system32\drivers\sffp_mmc.sys Image size: 0 Image MD5: D41D8CD98F00B204E9800998ECF8427E Control Set: CurrentControlSet Start: 3 Type: 1 Error Control: 1 Service (registry key): sffp_sd Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: Pilote de protocole de stockage SFF pour SDBus Image path: system32\DRIVERS\sffp_sd.sys Image size: 0 Image MD5: D41D8CD98F00B204E9800998ECF8427E Control Set: CurrentControlSet Start: 3 Type: 1 Error Control: 1 Service (registry key): sfloppy Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: High-Capacity Floppy Disk Drive Image path: \SystemRoot\system32\drivers\sfloppy.sys Image size: 0 Image MD5: D41D8CD98F00B204E9800998ECF8427E Control Set: CurrentControlSet Start: 4 Type: 1 Error Control: 1 Service (registry key): SharedAccess Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: @%SystemRoot%\system32\ipnathlp.dll,-106 Description: @%SystemRoot%\system32\ipnathlp.dll,-107 Object name: LocalSystem Image path: %SystemRoot%\System32\svchost.exe -k netsvcs Image size: 22016 Image MD5: 10DA15933D582D2FEDCF705EFE394B09 Control Set: CurrentControlSet Start: 4 Type: 32 Error Control: 1 Depends On services: Netman,WinMgmt,RasMan,BFE Service (registry key): ShellHWDetection Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: @%SystemRoot%\System32\shsvcs.dll,-12288 Description: @%SystemRoot%\System32\shsvcs.dll,-12289 Object name: LocalSystem Image path: %SystemRoot%\System32\svchost.exe -k netsvcs Image size: 22016 Image MD5: 10DA15933D582D2FEDCF705EFE394B09 Control Set: CurrentControlSet Start: 2 Type: 32 Error Control: 0 Depends On services: RpcSs Service (registry key): sisagp Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: SIS AGP Bus Filter Image path: \SystemRoot\system32\drivers\sisagp.sys Image size: 0 Image MD5: D41D8CD98F00B204E9800998ECF8427E Control Set: CurrentControlSet Start: 3 Type: 1 Error Control: 1 Service (registry key): SiSRaid2 Registry path: \SYSTEM\CurrentControlSet\Services\ Image path: \SystemRoot\system32\drivers\sisraid2.sys Image size: 0 Image MD5: D41D8CD98F00B204E9800998ECF8427E Control Set: CurrentControlSet Start: 4 Type: 1 Error Control: 1 Service (registry key): SiSRaid4 Registry path: \SYSTEM\CurrentControlSet\Services\ Image path: \SystemRoot\system32\drivers\sisraid4.sys Image size: 0 Image MD5: D41D8CD98F00B204E9800998ECF8427E Control Set: CurrentControlSet Start: 4 Type: 1 Error Control: 1 Service (registry key): slsvc Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: @%SystemRoot%\system32\SLsvc.exe,-101 Description: @%SystemRoot%\system32\SLsvc.exe,-100 Object name: NT AUTHORITY\NetworkService Image path: %SystemRoot%\system32\SLsvc.exe Image size: 2605568 Image MD5: A1DCD30534835CB67733AD00175125A6 Control Set: CurrentControlSet Start: 2 Type: 16 Error Control: 1 Depends On services: RpcSs Service (registry key): SLUINotify Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: @%SystemRoot%\system32\SLUINotify.dll,-103 Description: @%SystemRoot%\system32\SLUINotify.dll,-102 Object name: NT AUTHORITY\LocalService Image path: %SystemRoot%\system32\svchost.exe -k LocalService Image size: 22016 Image MD5: 10DA15933D582D2FEDCF705EFE394B09 Control Set: CurrentControlSet Start: 3 Type: 32 Error Control: 1 Depends On services: SLSvc,netprofm,EventSystem Service (registry key): Smb Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: @%SystemRoot%\system32\tcpipcfg.dll,-50005 Description: @%SystemRoot%\system32\tcpipcfg.dll,-50006 Image path: system32\DRIVERS\smb.sys Image size: 0 Image MD5: D41D8CD98F00B204E9800998ECF8427E Control Set: CurrentControlSet Start: 1 Type: 1 Error Control: 1 Depends On services: Tcpip Service (registry key): SMSvcHost 3.0.0.0 Registry path: \SYSTEM\CurrentControlSet\Services\ Control Set: CurrentControlSet Start: 0 Type: 0 Error Control: 0 Service (registry key): SNMPTRAP Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: @%SystemRoot%\system32\snmptrap.exe,-3 Description: @%SystemRoot%\system32\snmptrap.exe,-4 Object name: NT AUTHORITY\LocalService Image path: %SystemRoot%\System32\snmptrap.exe Image size: 12800 Image MD5: 2A146A055B4401C16EE62D18B8E2A032 Control Set: CurrentControlSet Start: 3 Type: 16 Error Control: 1 Service (registry key): spldr Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: Security Processor Loader Driver Control Set: CurrentControlSet Start: 0 Type: 1 Error Control: 3 Service (registry key): Spooler Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: @%systemroot%\system32\spoolsv.exe,-1 Description: @%systemroot%\system32\spoolsv.exe,-2 Object name: LocalSystem Image path: %SystemRoot%\System32\spoolsv.exe Image size: 124928 Image MD5: DA612EF2556776DF2630B68BF2D48935 Control Set: CurrentControlSet Start: 2 Type: 272 Error Control: 1 Depends On services: RPCSS,http Service (registry key): srv Registry path: \SYSTEM\CurrentControlSet\Services\ Image path: System32\DRIVERS\srv.sys Image size: 0 Image MD5: D41D8CD98F00B204E9800998ECF8427E Control Set: CurrentControlSet Start: 3 Type: 2 Error Control: 1 Depends On services: srv2 Service (registry key): srv2 Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: srv2 Description: Default SDDL for Windows Resource Protected file Image path: System32\DRIVERS\srv2.sys Image size: 0 Image MD5: D41D8CD98F00B204E9800998ECF8427E Control Set: CurrentControlSet Start: 3 Type: 2 Error Control: 1 Depends On services: srvnet Service (registry key): srvnet Registry path: \SYSTEM\CurrentControlSet\Services\ Image path: System32\DRIVERS\srvnet.sys Image size: 0 Image MD5: D41D8CD98F00B204E9800998ECF8427E Control Set: CurrentControlSet Start: 3 Type: 2 Error Control: 1 Service (registry key): SSDPSRV Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: @%systemroot%\system32\ssdpsrv.dll,-100 Description: @%systemroot%\system32\ssdpsrv.dll,-101 Object name: NT AUTHORITY\LocalService Image path: %SystemRoot%\system32\svchost.exe -k LocalService Image size: 22016 Image MD5: 10DA15933D582D2FEDCF705EFE394B09 Control Set: CurrentControlSet Start: 3 Type: 32 Error Control: 1 Depends On services: HTTP Service (registry key): stisvc Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: @%SystemRoot%\system32\wiaservc.dll,-9 Description: @%SystemRoot%\system32\wiaservc.dll,-10 Object name: NT Authority\LocalService Image path: %SystemRoot%\system32\svchost.exe -k imgsvc Image size: 22016 Image MD5: 10DA15933D582D2FEDCF705EFE394B09 Control Set: CurrentControlSet Start: 2 Type: 16 Error Control: 1 Depends On services: RpcSs,ShellHWDetection Service (registry key): swenum Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: Pilote de bus logiciel Image path: system32\DRIVERS\swenum.sys Image size: 0 Image MD5: D41D8CD98F00B204E9800998ECF8427E Control Set: CurrentControlSet Start: 3 Type: 1 Error Control: 1 Service (registry key): swprv Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: @%SystemRoot%\System32\swprv.dll,-103 Description: @%SystemRoot%\System32\swprv.dll,-102 Object name: LocalSystem Image path: %SystemRoot%\System32\svchost.exe -k swprv Image size: 22016 Image MD5: 10DA15933D582D2FEDCF705EFE394B09 Control Set: CurrentControlSet Start: 3 Type: 16 Error Control: 1 Depends On services: RPCSS Service (registry key): Symc8xx Registry path: \SYSTEM\CurrentControlSet\Services\ Image path: \SystemRoot\system32\drivers\symc8xx.sys Image size: 0 Image MD5: D41D8CD98F00B204E9800998ECF8427E Control Set: CurrentControlSet Start: 4 Type: 1 Error Control: 1 Service (registry key): Sym_hi Registry path: \SYSTEM\CurrentControlSet\Services\ Image path: \SystemRoot\system32\drivers\sym_hi.sys Image size: 0 Image MD5: D41D8CD98F00B204E9800998ECF8427E Control Set: CurrentControlSet Start: 4 Type: 1 Error Control: 1 Service (registry key): Sym_u3 Registry path: \SYSTEM\CurrentControlSet\Services\ Image path: \SystemRoot\system32\drivers\sym_u3.sys Image size: 0 Image MD5: D41D8CD98F00B204E9800998ECF8427E Control Set: CurrentControlSet Start: 4 Type: 1 Error Control: 1 Service (registry key): SynTP Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: Synaptics TouchPad Driver Image path: system32\DRIVERS\SynTP.sys Image size: 0 Image MD5: D41D8CD98F00B204E9800998ECF8427E Control Set: CurrentControlSet Start: 3 Type: 1 Error Control: 1 Service (registry key): SysMain Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: @%SystemRoot%\system32\sysmain.dll,-1000 Description: @%SystemRoot%\system32\sysmain.dll,-1001 Object name: LocalSystem Image path: %systemroot%\system32\svchost.exe -k LocalSystemNetworkRestricted Image size: 22016 Image MD5: 10DA15933D582D2FEDCF705EFE394B09 Control Set: CurrentControlSet Start: 2 Type: 32 Error Control: 0 Depends On services: rpcss,fileinfo Service (registry key): TabletInputService Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: @%SystemRoot%\system32\TabSvc.dll,-100 Description: @%SystemRoot%\system32\TabSvc.dll,-101 Object name: LocalSystem Image path: %SystemRoot%\System32\svchost.exe -k LocalSystemNetworkRestricted Image size: 22016 Image MD5: 10DA15933D582D2FEDCF705EFE394B09 Control Set: CurrentControlSet Start: 2 Type: 32 Error Control: 1 Depends On services: PlugPlay,RpcSs Service (registry key): TapiSrv Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: @%SystemRoot%\system32\tapisrv.dll,-10100 Description: @%SystemRoot%\system32\tapisrv.dll,-10101 Object name: NT AUTHORITY\NetworkService Image path: %SystemRoot%\System32\svchost.exe -k NetworkService Image size: 22016 Image MD5: 10DA15933D582D2FEDCF705EFE394B09 Control Set: CurrentControlSet Start: 3 Type: 32 Error Control: 1 Depends On services: PlugPlay,RpcSs Service (registry key): TBS Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: @%SystemRoot%\system32\tbssvc.dll,-100 Description: @%SystemRoot%\system32\tbssvc.dll,-101 Object name: NT AUTHORITY\LocalService Image path: %SystemRoot%\System32\svchost.exe -k LocalService Image size: 22016 Image MD5: 10DA15933D582D2FEDCF705EFE394B09 Control Set: CurrentControlSet Start: 3 Type: 32 Error Control: 1 Service (registry key): Tcpip Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: @%SystemRoot%\system32\tcpipcfg.dll,-50003 Description: @%SystemRoot%\system32\tcpipcfg.dll,-50003 Image path: System32\drivers\tcpip.sys Image size: 0 Image MD5: D41D8CD98F00B204E9800998ECF8427E Control Set: CurrentControlSet Start: 1 Type: 1 Error Control: 1 Service (registry key): Tcpip6 Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: Microsoft IPv6 Protocol Driver Description: Microsoft IPv6 Protocol Driver Image path: system32\DRIVERS\tcpip.sys Image size: 0 Image MD5: D41D8CD98F00B204E9800998ECF8427E Control Set: CurrentControlSet Start: 3 Type: 1 Error Control: 1 Depends On services: Tcpip Service (registry key): tcpipreg Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: TCP/IP Registry Compatibility Description: Provides compatibility for legacy applications which interact with TCP/IP through the registry. If this service is stopped, certain applications may have impaired functionality. Image path: System32\drivers\tcpipreg.sys Image size: 0 Image MD5: D41D8CD98F00B204E9800998ECF8427E Control Set: CurrentControlSet Start: 2 Type: 1 Error Control: 1 Depends On services: tcpip Service (registry key): tdcmdpst Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: TOSHIBA Writing Engine Filter Driver Image path: system32\DRIVERS\tdcmdpst.sys Image size: 0 Image MD5: D41D8CD98F00B204E9800998ECF8427E Control Set: CurrentControlSet Start: 3 Type: 1 Error Control: 0 Service (registry key): TDPIPE Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: TDPIPE Image path: system32\drivers\tdpipe.sys Image size: 0 Image MD5: D41D8CD98F00B204E9800998ECF8427E Control Set: CurrentControlSet Start: 3 Type: 1 Error Control: 1 Service (registry key): TDTCP Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: TDTCP Image path: system32\drivers\tdtcp.sys Image size: 0 Image MD5: D41D8CD98F00B204E9800998ECF8427E Control Set: CurrentControlSet Start: 3 Type: 1 Error Control: 1 Service (registry key): tdx Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: @%SystemRoot%\system32\tcpipcfg.dll,-50004 Description: @%SystemRoot%\system32\tcpipcfg.dll,-50004 Image path: system32\DRIVERS\tdx.sys Image size: 0 Image MD5: D41D8CD98F00B204E9800998ECF8427E Control Set: CurrentControlSet Start: 1 Type: 1 Error Control: 1 Depends On services: Tcpip Service (registry key): TermDD Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: Pilote de périphérique terminal Image path: system32\DRIVERS\termdd.sys Image size: 0 Image MD5: D41D8CD98F00B204E9800998ECF8427E Control Set: CurrentControlSet Start: 1 Type: 1 Error Control: 1 Service (registry key): TermService Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: @%SystemRoot%\System32\termsrv.dll,-268 Description: @%SystemRoot%\System32\termsrv.dll,-267 Object name: NT Authority\NetworkService Image path: %SystemRoot%\System32\svchost.exe -k NetworkService Image size: 22016 Image MD5: 10DA15933D582D2FEDCF705EFE394B09 Control Set: CurrentControlSet Start: 2 Type: 32 Error Control: 1 Depends On services: RPCSS,TermDD Service (registry key): Themes Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: @%SystemRoot%\System32\shsvcs.dll,-8192 Description: @%SystemRoot%\System32\shsvcs.dll,-8193 Object name: LocalSystem Image path: %SystemRoot%\System32\svchost.exe -k netsvcs Image size: 22016 Image MD5: 10DA15933D582D2FEDCF705EFE394B09 Control Set: CurrentControlSet Start: 2 Type: 32 Error Control: 1 Service (registry key): THREADORDER Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: @%systemroot%\system32\mmcss.dll,-102 Description: @%systemroot%\system32\mmcss.dll,-103 Object name: NT AUTHORITY\LocalService Image path: %SystemRoot%\system32\svchost.exe -k LocalService Image size: 22016 Image MD5: 10DA15933D582D2FEDCF705EFE394B09 Control Set: CurrentControlSet Start: 3 Type: 32 Error Control: 1 Service (registry key): tifm21 Registry path: \SYSTEM\CurrentControlSet\Services\ Image path: system32\drivers\tifm21.sys Image size: 0 Image MD5: D41D8CD98F00B204E9800998ECF8427E Control Set: CurrentControlSet Start: 3 Type: 1 Error Control: 1 Service (registry key): TODDSrv Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: TOSHIBA Optical Disc Drive Service Object name: LocalSystem Image path: C:\Windows\system32\TODDSrv.exe Image size: 114688 Image MD5: D540858E65BFA6FDED41AD2495ECE344 Control Set: CurrentControlSet Start: 2 Type: 16 Error Control: 1 Service (registry key): TosCoSrv Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: TOSHIBA Power Saver Description: @%ProgramFiles%\Toshiba\Power Saver\TPwrFunc.dll,-202 Object name: LocalSystem Image path: "C:\Program Files\TOSHIBA\Power Saver\TosCoSrv.exe" Image size: 428152 Image MD5: AF41337C08D1C240AF14BA4CAB02BF02 Control Set: CurrentControlSet Start: 2 Type: 16 Error Control: 1 Depends On services: RPCSS Service (registry key): TOSHIBA Bluetooth Service Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: TOSHIBA Bluetooth Service Object name: LocalSystem Image path: c:\Program Files\Toshiba\Bluetooth Toshiba Stack\TosBtSrv.exe Image size: 118784 Image MD5: 5480ABFC2C6B19972D2871F576EBCAA3 Control Set: CurrentControlSet Start: 2 Type: 16 Error Control: 1 Depends On services: RPCSS Service (registry key): Tosrfcom Registry path: \SYSTEM\CurrentControlSet\Services\ Control Set: CurrentControlSet Start: 3 Type: 1 Error Control: 1 Service (registry key): tosrfec Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: Bluetooth ACPI Image path: system32\DRIVERS\tosrfec.sys Image size: 0 Image MD5: D41D8CD98F00B204E9800998ECF8427E Control Set: CurrentControlSet Start: 3 Type: 1 Error Control: 1 Service (registry key): Tosrfusb Registry path: \SYSTEM\CurrentControlSet\Services\ Control Set: CurrentControlSet Start: 0 Type: 0 Error Control: 0 Service (registry key): TrkWks Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: @%SystemRoot%\system32\trkwks.dll,-1 Description: @%SystemRoot%\system32\trkwks.dll,-2 Object name: LocalSystem Image path: %SystemRoot%\System32\svchost.exe -k LocalSystemNetworkRestricted Image size: 22016 Image MD5: 10DA15933D582D2FEDCF705EFE394B09 Control Set: CurrentControlSet Start: 2 Type: 32 Error Control: 1 Depends On services: RpcSs Service (registry key): TrustedInstaller Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: @%SystemRoot%\servicing\TrustedInstaller.exe,-100 Description: @%SystemRoot%\servicing\TrustedInstaller.exe,-101 Object name: localSystem Image path: %SystemRoot%\servicing\TrustedInstaller.exe Image size: 26112 Image MD5: CD987375605E6F9C3230E99EDA9D9C6D Control Set: CurrentControlSet Start: 3 Type: 16 Error Control: 1 Depends On services: PlugPlay Service (registry key): TSDDD Registry path: \SYSTEM\CurrentControlSet\Services\ Control Set: CurrentControlSet Start: 0 Type: 0 Error Control: 0 Service (registry key): tssecsrv Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: Terminal Services Security Filter Driver Description: Terminal Services Security Filter Driver Image path: System32\DRIVERS\tssecsrv.sys Image size: 0 Image MD5: D41D8CD98F00B204E9800998ECF8427E Control Set: CurrentControlSet Start: 3 Type: 1 Error Control: 0 Service (registry key): tunmp Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: Pilote de carte miniport Microsoft Tun Image path: system32\DRIVERS\tunmp.sys Image size: 0 Image MD5: D41D8CD98F00B204E9800998ECF8427E Control Set: CurrentControlSet Start: 3 Type: 1 Error Control: 1 Service (registry key): tunnel Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: Pilote de carte miniport Microsoft IPv6 Tunnel Image path: system32\DRIVERS\tunnel.sys Image size: 0 Image MD5: D41D8CD98F00B204E9800998ECF8427E Control Set: CurrentControlSet Start: 3 Type: 1 Error Control: 1 Service (registry key): TVALZ Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: TOSHIBA ACPI-Based Value Added Logical and General Purpose Device Driver Image path: system32\DRIVERS\TVALZ_O.SYS Image size: 0 Image MD5: D41D8CD98F00B204E9800998ECF8427E Control Set: CurrentControlSet Start: 0 Type: 1 Error Control: 1 Service (registry key): uagp35 Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: Microsoft AGPv3.5 Filter Image path: \SystemRoot\system32\drivers\uagp35.sys Image size: 0 Image MD5: D41D8CD98F00B204E9800998ECF8427E Control Set: CurrentControlSet Start: 3 Type: 1 Error Control: 1 Service (registry key): udfs Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: udfs Description: Reads/Writes UDF 1.02,1.5,2.0x,2.5 disc formats, usually found on C/DVD discs. (Core) (All pieces) Image path: system32\DRIVERS\udfs.sys Image size: 0 Image MD5: D41D8CD98F00B204E9800998ECF8427E Control Set: CurrentControlSet Start: 4 Type: 2 Error Control: 1 Service (registry key): UGatherer Registry path: \SYSTEM\CurrentControlSet\Services\ Control Set: CurrentControlSet Start: 0 Type: 0 Error Control: 0 Service (registry key): UGTHRSVC Registry path: \SYSTEM\CurrentControlSet\Services\ Control Set: CurrentControlSet Start: 0 Type: 0 Error Control: 0 Service (registry key): UI0Detect Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: @%SystemRoot%\system32\ui0detect.exe,-101 Description: @%SystemRoot%\system32\ui0detect.exe,-102 Object name: LocalSystem Image path: %SystemRoot%\system32\UI0Detect.exe Image size: 35840 Image MD5: 24A333F4F14DCFB6FF6D5A1B9E5D79DD Control Set: CurrentControlSet Start: 3 Type: 272 Error Control: 1 Service (registry key): UleadBurningHelper Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: Ulead Burning Helper Object name: LocalSystem Image path: C:\Program Files\Common Files\Ulead Systems\DVD\ULCDRSvr.exe Image size: 49152 Image MD5: 332D341D92B933600D41953B08360DFB Control Set: CurrentControlSet Start: 2 Type: 16 Error Control: 1 Service (registry key): uliagpkx Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: Uli AGP Bus Filter Image path: \SystemRoot\system32\drivers\uliagpkx.sys Image size: 0 Image MD5: D41D8CD98F00B204E9800998ECF8427E Control Set: CurrentControlSet Start: 3 Type: 1 Error Control: 1 Service (registry key): uliahci Registry path: \SYSTEM\CurrentControlSet\Services\ Image path: \SystemRoot\system32\drivers\uliahci.sys Image size: 0 Image MD5: D41D8CD98F00B204E9800998ECF8427E Control Set: CurrentControlSet Start: 4 Type: 1 Error Control: 1 Service (registry key): UlSata Registry path: \SYSTEM\CurrentControlSet\Services\ Image path: \SystemRoot\system32\drivers\ulsata.sys Image size: 0 Image MD5: D41D8CD98F00B204E9800998ECF8427E Control Set: CurrentControlSet Start: 4 Type: 1 Error Control: 1 Service (registry key): ulsata2 Registry path: \SYSTEM\CurrentControlSet\Services\ Image path: \SystemRoot\system32\drivers\ulsata2.sys Image size: 0 Image MD5: D41D8CD98F00B204E9800998ECF8427E Control Set: CurrentControlSet Start: 4 Type: 1 Error Control: 1 Service (registry key): umbus Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: Pilote d’énumérateur UMBus Image path: system32\DRIVERS\umbus.sys Image size: 0 Image MD5: D41D8CD98F00B204E9800998ECF8427E Control Set: CurrentControlSet Start: 3 Type: 1 Error Control: 1 Service (registry key): upnphost Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: @%systemroot%\system32\upnphost.dll,-213 Description: @%systemroot%\system32\upnphost.dll,-214 Object name: NT AUTHORITY\LocalService Image path: %SystemRoot%\system32\svchost.exe -k LocalService Image size: 22016 Image MD5: 10DA15933D582D2FEDCF705EFE394B09 Control Set: CurrentControlSet Start: 2 Type: 32 Error Control: 1 Depends On services: SSDPSRV,HTTP Service (registry key): usb Registry path: \SYSTEM\CurrentControlSet\Services\ Control Set: CurrentControlSet Start: 0 Type: 0 Error Control: 0 Service (registry key): usbccgp Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: Pilote parent générique USB Microsoft Image path: system32\DRIVERS\usbccgp.sys Image size: 0 Image MD5: D41D8CD98F00B204E9800998ECF8427E Control Set: CurrentControlSet Start: 3 Type: 1 Error Control: 1 Service (registry key): usbcir Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: eHome Infrared Receiver (USBCIR) Image path: \SystemRoot\system32\drivers\usbcir.sys Image size: 0 Image MD5: D41D8CD98F00B204E9800998ECF8427E Control Set: CurrentControlSet Start: 4 Type: 1 Error Control: 1 Service (registry key): usbehci Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: Pilote miniport de contrôleur d'hôte amélioré Microsoft USB 2.0 Image path: system32\DRIVERS\usbehci.sys Image size: 0 Image MD5: D41D8CD98F00B204E9800998ECF8427E Control Set: CurrentControlSet Start: 3 Type: 1 Error Control: 1 Service (registry key): usbhub Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: Concentrateur USB2 Image path: system32\DRIVERS\usbhub.sys Image size: 0 Image MD5: D41D8CD98F00B204E9800998ECF8427E Control Set: CurrentControlSet Start: 3 Type: 1 Error Control: 1 Service (registry key): usbohci Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: Microsoft USB Open Host Controller Miniport Driver Image path: \SystemRoot\system32\drivers\usbohci.sys Image size: 0 Image MD5: D41D8CD98F00B204E9800998ECF8427E Control Set: CurrentControlSet Start: 4 Type: 1 Error Control: 1 Service (registry key): usbprint Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: Classe d'imprimantes USB Microsoft Image path: system32\DRIVERS\usbprint.sys Image size: 0 Image MD5: D41D8CD98F00B204E9800998ECF8427E Control Set: CurrentControlSet Start: 3 Type: 1 Error Control: 1 Service (registry key): usbscan Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: Pilote de scanneur USB Image path: system32\DRIVERS\usbscan.sys Image size: 0 Image MD5: D41D8CD98F00B204E9800998ECF8427E Control Set: CurrentControlSet Start: 3 Type: 1 Error Control: 1 Service (registry key): USBSTOR Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: Pilote de stockage de masse USB Image path: system32\DRIVERS\USBSTOR.SYS Image size: 0 Image MD5: D41D8CD98F00B204E9800998ECF8427E Control Set: CurrentControlSet Start: 3 Type: 1 Error Control: 1 Service (registry key): usbuhci Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: Pilote miniport de contrôleur hôte universel USB Microsoft Image path: system32\DRIVERS\usbuhci.sys Image size: 0 Image MD5: D41D8CD98F00B204E9800998ECF8427E Control Set: CurrentControlSet Start: 3 Type: 1 Error Control: 1 Service (registry key): usbvideo Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: Périphérique vidéo USB (WDM) Image path: System32\Drivers\usbvideo.sys Image size: 0 Image MD5: D41D8CD98F00B204E9800998ECF8427E Control Set: CurrentControlSet Start: 3 Type: 1 Error Control: 1 Service (registry key): UVCFTR Registry path: \SYSTEM\CurrentControlSet\Services\ Image path: system32\DRIVERS\UVCFTR_S.SYS Image size: 0 Image MD5: D41D8CD98F00B204E9800998ECF8427E Control Set: CurrentControlSet Start: 3 Type: 1 Error Control: 0 Service (registry key): UxSms Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: @%SystemRoot%\system32\dwm.exe,-2000 Description: @%SystemRoot%\system32\dwm.exe,-2001 Object name: localSystem Image path: %SystemRoot%\System32\svchost.exe -k LocalSystemNetworkRestricted Image size: 22016 Image MD5: 10DA15933D582D2FEDCF705EFE394B09 Control Set: CurrentControlSet Start: 2 Type: 32 Error Control: 1 Service (registry key): vds Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: @%SystemRoot%\system32\vds.exe,-100 Description: @%SystemRoot%\system32\vds.exe,-101 Object name: LocalSystem Image path: %SystemRoot%\System32\vds.exe Image size: 392704 Image MD5: C9D0BAFEE0D0A2681F048CA61BC0DA96 Control Set: CurrentControlSet Start: 3 Type: 16 Error Control: 1 Depends On services: RpcSs,PlugPlay Service (registry key): vga Registry path: \SYSTEM\CurrentControlSet\Services\ Image path: system32\DRIVERS\vgapnp.sys Image size: 0 Image MD5: D41D8CD98F00B204E9800998ECF8427E Control Set: CurrentControlSet Start: 3 Type: 1 Error Control: 0 Service (registry key): VgaSave Registry path: \SYSTEM\CurrentControlSet\Services\ Image path: \SystemRoot\System32\drivers\vga.sys Image size: 0 Image MD5: D41D8CD98F00B204E9800998ECF8427E Control Set: CurrentControlSet Start: 1 Type: 1 Error Control: 0 Service (registry key): viaagp Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: VIA AGP Bus Filter Image path: \SystemRoot\system32\drivers\viaagp.sys Image size: 0 Image MD5: D41D8CD98F00B204E9800998ECF8427E Control Set: CurrentControlSet Start: 3 Type: 1 Error Control: 1 Service (registry key): ViaC7 Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: VIA C7 Processor Driver Image path: \SystemRoot\system32\drivers\viac7.sys Image size: 0 Image MD5: D41D8CD98F00B204E9800998ECF8427E Control Set: CurrentControlSet Start: 4 Type: 1 Error Control: 1 Service (registry key): viaide Registry path: \SYSTEM\CurrentControlSet\Services\ Image path: \SystemRoot\system32\drivers\viaide.sys Image size: 0 Image MD5: D41D8CD98F00B204E9800998ECF8427E Control Set: CurrentControlSet Start: 4 Type: 1 Error Control: 3 Service (registry key): volmgr Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: Pilote du Gestionnaire de volume Image path: system32\drivers\volmgr.sys Image size: 0 Image MD5: D41D8CD98F00B204E9800998ECF8427E Control Set: CurrentControlSet Start: 0 Type: 1 Error Control: 3 Service (registry key): volmgrx Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: Dynamic Volume Manager Description: Extension of the volume manager driver that manages software RAID volumes (spanned, striped, mirrored, RAID-5) on dynamic disks Image path: System32\drivers\volmgrx.sys Image size: 0 Image MD5: D41D8CD98F00B204E9800998ECF8427E Control Set: CurrentControlSet Start: 0 Type: 1 Error Control: 3 Service (registry key): volsnap Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: Volumes de stockage Image path: system32\drivers\volsnap.sys Image size: 0 Image MD5: D41D8CD98F00B204E9800998ECF8427E Control Set: CurrentControlSet Start: 0 Type: 1 Error Control: 3 Service (registry key): vsmraid Registry path: \SYSTEM\CurrentControlSet\Services\ Image path: \SystemRoot\system32\drivers\vsmraid.sys Image size: 0 Image MD5: D41D8CD98F00B204E9800998ECF8427E Control Set: CurrentControlSet Start: 4 Type: 1 Error Control: 1 Service (registry key): VSS Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: @%systemroot%\system32\vssvc.exe,-102 Description: @%systemroot%\system32\vssvc.exe,-101 Object name: LocalSystem Image path: %systemroot%\system32\vssvc.exe Image size: 924160 Image MD5: E0E29D9EF2524ABD11749C7C2FD7F607 Control Set: CurrentControlSet Start: 3 Type: 16 Error Control: 1 Depends On services: RPCSS Service (registry key): W32Time Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: @%SystemRoot%\system32\w32time.dll,-200 Description: @%SystemRoot%\system32\w32time.dll,-201 Object name: NT AUTHORITY\LocalService Image path: %SystemRoot%\system32\svchost.exe -k LocalService Image size: 22016 Image MD5: 10DA15933D582D2FEDCF705EFE394B09 Control Set: CurrentControlSet Start: 2 Type: 32 Error Control: 1 Service (registry key): W3SVC Registry path: \SYSTEM\CurrentControlSet\Services\ Control Set: CurrentControlSet Start: 0 Type: 0 Error Control: 0 Service (registry key): WacomPen Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: Wacom Serial Pen HID Driver Image path: \SystemRoot\system32\drivers\wacompen.sys Image size: 0 Image MD5: D41D8CD98F00B204E9800998ECF8427E Control Set: CurrentControlSet Start: 4 Type: 1 Error Control: 1 Service (registry key): Wanarp Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: Remote Access IP ARP Driver Description: Remote Access IP ARP Driver Image path: system32\DRIVERS\wanarp.sys Image size: 0 Image MD5: D41D8CD98F00B204E9800998ECF8427E Control Set: CurrentControlSet Start: 3 Type: 1 Error Control: 1 Service (registry key): Wanarpv6 Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: Remote Access IPv6 ARP Driver Description: Remote Access IPv6 ARP Driver Image path: system32\DRIVERS\wanarp.sys Image size: 0 Image MD5: D41D8CD98F00B204E9800998ECF8427E Control Set: CurrentControlSet Start: 1 Type: 1 Error Control: 1 Service (registry key): wcncsvc Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: @%SystemRoot%\system32\wcncsvc.dll,-3 Description: @%SystemRoot%\system32\wcncsvc.dll,-4 Object name: NT AUTHORITY\LocalService Image path: %SystemRoot%\System32\svchost.exe -k LocalService Image size: 22016 Image MD5: 10DA15933D582D2FEDCF705EFE394B09 Control Set: CurrentControlSet Start: 3 Type: 32 Error Control: 1 Depends On services: rpcss Service (registry key): WcsPlugInService Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: @%SystemRoot%\system32\WcsPlugInService.dll,-200 Description: @%SystemRoot%\system32\WcsPlugInService.dll,-201 Object name: NT AUTHORITY\LocalService Image path: %SystemRoot%\system32\svchost.exe -k wcssvc Image size: 22016 Image MD5: 10DA15933D582D2FEDCF705EFE394B09 Control Set: CurrentControlSet Start: 3 Type: 32 Error Control: 1 Depends On services: RpcSs Service (registry key): Wd Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: Microsoft Watchdog Timer Driver Image path: \SystemRoot\system32\drivers\wd.sys Image size: 0 Image MD5: D41D8CD98F00B204E9800998ECF8427E Control Set: CurrentControlSet Start: 4 Type: 1 Error Control: 1 Service (registry key): Wdf01000 Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: Kernel Mode Driver Frameworks service Image path: system32\drivers\Wdf01000.sys Image size: 0 Image MD5: D41D8CD98F00B204E9800998ECF8427E Control Set: CurrentControlSet Start: 0 Type: 1 Error Control: 1 Service (registry key): WdiServiceHost Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: @%systemroot%\system32\wdi.dll,-502 Description: @%systemroot%\system32\wdi.dll,-503 Object name: NT AUTHORITY\LocalService Image path: %SystemRoot%\System32\svchost.exe -k wdisvc Image size: 22016 Image MD5: 10DA15933D582D2FEDCF705EFE394B09 Control Set: CurrentControlSet Start: 3 Type: 32 Error Control: 1 Service (registry key): WdiSystemHost Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: @%systemroot%\system32\wdi.dll,-500 Description: @%systemroot%\system32\wdi.dll,-501 Object name: LocalSystem Image path: %SystemRoot%\System32\svchost.exe -k LocalSystemNetworkRestricted Image size: 22016 Image MD5: 10DA15933D582D2FEDCF705EFE394B09 Control Set: CurrentControlSet Start: 3 Type: 32 Error Control: 1 Service (registry key): WebClient Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: @%systemroot%\system32\webclnt.dll,-100 Description: @%systemroot%\system32\webclnt.dll,-101 Object name: NT AUTHORITY\LocalService Image path: %SystemRoot%\system32\svchost.exe -k LocalService Image size: 22016 Image MD5: 10DA15933D582D2FEDCF705EFE394B09 Control Set: CurrentControlSet Start: 2 Type: 32 Error Control: 1 Depends On services: MRxDAV Service (registry key): Wecsvc Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: @%SystemRoot%\system32\wecsvc.dll,-200 Description: @%SystemRoot%\system32\wecsvc.dll,-201 Object name: NT AUTHORITY\NetworkService Image path: %SystemRoot%\system32\svchost.exe -k NetworkService Image size: 22016 Image MD5: 10DA15933D582D2FEDCF705EFE394B09 Control Set: CurrentControlSet Start: 3 Type: 32 Error Control: 1 Service (registry key): wercplsupport Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: @%SystemRoot%\System32\wercplsupport.dll,-101 Description: @%SystemRoot%\System32\wercplsupport.dll,-100 Object name: localSystem Image path: %SystemRoot%\System32\svchost.exe -k netsvcs Image size: 22016 Image MD5: 10DA15933D582D2FEDCF705EFE394B09 Control Set: CurrentControlSet Start: 3 Type: 32 Error Control: 1 Service (registry key): WerSvc Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: @%SystemRoot%\System32\wersvc.dll,-100 Description: @%SystemRoot%\System32\wersvc.dll,-101 Object name: localSystem Image path: %SystemRoot%\System32\svchost.exe -k WerSvcGroup Image size: 22016 Image MD5: 10DA15933D582D2FEDCF705EFE394B09 Control Set: CurrentControlSet Start: 2 Type: 32 Error Control: 0 Service (registry key): WinDefend Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: @%ProgramFiles%\Windows Defender\MsMpRes.dll,-103 Description: @%ProgramFiles%\Windows Defender\MsMpRes.dll,-3068 Object name: LocalSystem Image path: %SystemRoot%\System32\svchost.exe -k secsvcs Image size: 22016 Image MD5: 10DA15933D582D2FEDCF705EFE394B09 Control Set: CurrentControlSet Start: 2 Type: 32 Error Control: 1 Depends On services: RpcSs Service (registry key): Windows Workflow Foundation 3.0.0.0 Registry path: \SYSTEM\CurrentControlSet\Services\ Control Set: CurrentControlSet Start: 0 Type: 0 Error Control: 0 Service (registry key): WinHttpAutoProxySvc Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: @%SystemRoot%\system32\winhttp.dll,-100 Description: @%SystemRoot%\system32\winhttp.dll,-101 Object name: NT AUTHORITY\LocalService Image path: %SystemRoot%\system32\svchost.exe -k LocalService Image size: 22016 Image MD5: 10DA15933D582D2FEDCF705EFE394B09 Control Set: CurrentControlSet Start: 3 Type: 32 Error Control: 1 Depends On services: Dhcp Service (registry key): Winmgmt Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: @%Systemroot%\system32\wbem\wmisvc.dll,-205 Description: @%Systemroot%\system32\wbem\wmisvc.dll,-204 Object name: localSystem Image path: %systemroot%\system32\svchost.exe -k netsvcs Image size: 22016 Image MD5: 10DA15933D582D2FEDCF705EFE394B09 Control Set: CurrentControlSet Start: 2 Type: 32 Error Control: 0 Depends On services: RPCSS Service (registry key): WinRM Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: @%Systemroot%\system32\wsmsvc.dll,-101 Description: @%Systemroot%\system32\wsmsvc.dll,-102 Object name: NT AUTHORITY\NetworkService Image path: %SystemRoot%\System32\svchost.exe -k NetworkService Image size: 22016 Image MD5: 10DA15933D582D2FEDCF705EFE394B09 Control Set: CurrentControlSet Start: 3 Type: 32 Error Control: 1 Depends On services: RPCSS,HTTP Service (registry key): Winsock Registry path: \SYSTEM\CurrentControlSet\Services\ Control Set: CurrentControlSet Start: 3 Type: 4 Error Control: 1 Service (registry key): WinSock2 Registry path: \SYSTEM\CurrentControlSet\Services\ Control Set: CurrentControlSet Start: 0 Type: 0 Error Control: 0 Service (registry key): Wlansvc Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: @%SystemRoot%\System32\wlansvc.dll,-257 Description: @%SystemRoot%\System32\wlansvc.dll,-258 Object name: LocalSystem Image path: %SystemRoot%\system32\svchost.exe -k LocalSystemNetworkRestricted Image size: 22016 Image MD5: 10DA15933D582D2FEDCF705EFE394B09 Control Set: CurrentControlSet Start: 2 Type: 32 Error Control: 1 Depends On services: nativewifip,RpcSs,Ndisuio,Eaphost Service (registry key): WmiAcpi Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: Microsoft Windows Management Interface for ACPI Image path: \SystemRoot\system32\drivers\wmiacpi.sys Image size: 0 Image MD5: D41D8CD98F00B204E9800998ECF8427E Control Set: CurrentControlSet Start: 4 Type: 1 Error Control: 1 Service (registry key): WmiApRpl Registry path: \SYSTEM\CurrentControlSet\Services\ Control Set: CurrentControlSet Start: 0 Type: 0 Error Control: 0 Service (registry key): wmiApSrv Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 Description: @%Systemroot%\system32\wbem\wmiapsrv.exe,-111 Object name: localSystem Image path: %systemroot%\system32\wbem\WmiApSrv.exe Image size: 137216 Image MD5: A279323BEE5FFFAFDA222910BCE92132 Control Set: CurrentControlSet Start: 3 Type: 16 Error Control: 1 Service (registry key): WMPNetworkSvc Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: @%ProgramFiles%\Windows Media Player\wmpnetwk.exe,-101 Description: @%ProgramFiles%\Windows Media Player\wmpnetwk.exe,-102 Object name: NT AUTHORITY\NetworkService Image path: "%ProgramFiles%\Windows Media Player\wmpnetwk.exe" Image size: 895488 Image MD5: ACB2E63D50157E3EA7140F29D9E76A48 Control Set: CurrentControlSet Start: 3 Type: 16 Error Control: 1 Depends On services: UPnPHost,http Service (registry key): WPCSvc Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: @%SystemRoot%\system32\wpcsvc.dll,-100 Description: @%SystemRoot%\system32\wpcsvc.dll,-101 Object name: NT Authority\LocalService Image path: %SystemRoot%\system32\svchost.exe -k LocalServiceNetworkRestricted Image size: 22016 Image MD5: 10DA15933D582D2FEDCF705EFE394B09 Control Set: CurrentControlSet Start: 3 Type: 32 Error Control: 1 Depends On services: RpcSs Service (registry key): WPDBusEnum Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: @%SystemRoot%\system32\wpdbusenum.dll,-100 Description: @%SystemRoot%\system32\wpdbusenum.dll,-101 Object name: LocalSystem Image path: %SystemRoot%\system32\svchost.exe -k LocalSystemNetworkRestricted Image size: 22016 Image MD5: 10DA15933D582D2FEDCF705EFE394B09 Control Set: CurrentControlSet Start: 2 Type: 32 Error Control: 1 Depends On services: RpcSs Service (registry key): ws2ifsl Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: Winsock IFS driver Description: Winsock IFS driver Image path: \SystemRoot\system32\drivers\ws2ifsl.sys Image size: 0 Image MD5: D41D8CD98F00B204E9800998ECF8427E Control Set: CurrentControlSet Start: 4 Type: 1 Error Control: 1 Service (registry key): wscsvc Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: @%SystemRoot%\System32\wscsvc.dll,-200 Description: @%SystemRoot%\System32\wscsvc.dll,-201 Object name: NT AUTHORITY\LocalService Image path: %SystemRoot%\System32\svchost.exe -k LocalServiceNetworkRestricted Image size: 22016 Image MD5: 10DA15933D582D2FEDCF705EFE394B09 Control Set: CurrentControlSet Start: 2 Type: 32 Error Control: 1 Depends On services: RpcSs,WinMgmt Service (registry key): WSearch Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: @%systemroot%\system32\SearchIndexer.exe,-103 Description: @%systemroot%\system32\SearchIndexer.exe,-104 Object name: LocalSystem Image path: %systemroot%\system32\SearchIndexer.exe /Embedding Image size: 287744 Image MD5: 5DE40982E3AE45DC00586A93637B351B Control Set: CurrentControlSet Start: 2 Type: 16 Error Control: 1 Depends On services: RPCSS Service (registry key): WSearchIdxPi Registry path: \SYSTEM\CurrentControlSet\Services\ Control Set: CurrentControlSet Start: 0 Type: 0 Error Control: 0 Service (registry key): wuauserv Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: @%systemroot%\system32\wuaueng.dll,-105 Description: @%systemroot%\system32\wuaueng.dll,-106 Object name: LocalSystem Image path: %systemroot%\system32\svchost.exe -k netsvcs Image size: 22016 Image MD5: 10DA15933D582D2FEDCF705EFE394B09 Control Set: CurrentControlSet Start: 2 Type: 32 Error Control: 1 Depends On services: rpcss Service (registry key): WUDFRd Registry path: \SYSTEM\CurrentControlSet\Services\ Image path: system32\DRIVERS\WUDFRd.sys Image size: 0 Image MD5: D41D8CD98F00B204E9800998ECF8427E Control Set: CurrentControlSet Start: 3 Type: 1 Error Control: 1 Service (registry key): wudfsvc Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: @%SystemRoot%\system32\wudfsvc.dll,-1000 Description: @%SystemRoot%\system32\wudfsvc.dll,-1001 Object name: LocalSystem Image path: %SystemRoot%\system32\svchost.exe -k LocalSystemNetworkRestricted Image size: 22016 Image MD5: 10DA15933D582D2FEDCF705EFE394B09 Control Set: CurrentControlSet Start: 2 Type: 32 Error Control: 1 Depends On services: PlugPlay Service (registry key): xmlprov Registry path: \SYSTEM\CurrentControlSet\Services\ Control Set: CurrentControlSet Start: 0 Type: 0 Error Control: 0 Service (registry key): {244564D8-5E43-4E4F-98F5-C9C898E0A078} Registry path: \SYSTEM\CurrentControlSet\Services\ Control Set: CurrentControlSet Start: 0 Type: 0 Error Control: 0 Service (registry key): {36F0FE18-92E4-4E12-96EF-9A0441936F14} Registry path: \SYSTEM\CurrentControlSet\Services\ Control Set: CurrentControlSet Start: 0 Type: 0 Error Control: 0 Service (registry key): {D9E62F4E-EDA8-4544-A999-0519735F5841} Registry path: \SYSTEM\CurrentControlSet\Services\ Control Set: CurrentControlSet Start: 0 Type: 0 Error Control: 0 Voila j'espère arriver à la fin du grand nettoyage , en tout cas ce sera grace à toi et au remarquable boulot que tu as abattu . Isabelle

Bonsoir Appollo, Il est plus de 23 heures et je me connecte seulement. Je vais peut être pas faire tout ça ce soir, après une soirée bien, et même un peu "trop arrosée" , alors je te dis: Bon week end @très vite et encore mille merci Isabelle

Bonjour Apollo, Pour Firefox j'ai la version 2.0.0.8. Tu ne m'as pas dit ce que tu pensais des derniers rapports que je t'ai posté.... je vais mieux Docteur???? En tous les cas :P :P pour le travail que tu fais. @ bientot Isabelle

Apollo, J'ai surfé un peu, et Firefox se déconnecte encore sur certains sites. Devrais je le désinstaller et le réinstaller après la désinfection complète? Isabelle

Appollo, Me revoila munie de mes deux rapports, pour AVG ça m'a l'air pas mal, pour Hijackthis je te laisse juge, c'est trop de charabia pour moi: --------------------------------------------------------- AVG Anti-Spyware - Rapport d'analyse --------------------------------------------------------- + Créé à: 23:44:12 25/10/2007 + Résultat de l'analyse: Rien à signaler. Fin du rapport Logfile of Trend Micro HijackThis v2.0.2 Scan saved at 23:48:22, on 25/10/2007 Platform: Windows Vista (WinNT 6.00.1904) MSIE: Internet Explorer v7.00 (7.00.6000.16546) Boot mode: Normal Running processes: C:\Windows\system32\taskeng.exe C:\Windows\system32\Dwm.exe C:\Windows\Explorer.EXE C:\Program Files\Alwil Software\Avast4\ashDisp.exe C:\Windows\System32\igfxtray.exe C:\Windows\System32\hkcmd.exe C:\Windows\System32\igfxpers.exe C:\Program Files\Windows Sidebar\sidebar.exe C:\Program Files\TOSHIBA\TOSCDSPD\TOSCDSPD.exe C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe C:\Windows\system32\igfxsrvc.exe C:\Program Files\Synaptics\SynTP\SynTPEnh.exe C:\Program Files\Synaptics\SynTP\SynToshiba.exe C:\Program Files\Trend Micro\HijackThis\HijackThis.exe R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896 R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=566.../www.google.fr/ R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157 R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896 R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157 R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant = R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch = R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = R3 - URLSearchHook: (no name) - {AEEC3B59-CA98-4EBA-A140-57B94E283583} - C:\PROGRA~1\ORANGE~1\TOOLBA~2.DLL R3 - URLSearchHook: Yahoo! Toolbar avec bloqueur de fenêtres pop-up - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll O1 - Hosts: ::1 localhost O2 - BHO: Yahoo! Toolbar Helper - {02478D38-C3F9-4EFB-9B51-7695ECA05670} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll O2 - BHO: (no name) - {64F56FC1-1272-44CD-BA6E-39723696E350} - (no file) O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_02\bin\ssv.dll O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar2.dll O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\2.1.615.5858\swg.dll O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar2.dll O3 - Toolbar: Barre d'outils Orange - {D3028143-6145-4318-99D3-3EDCE54A95A9} - C:\Program Files\Orange Toolbar FR\ToolbarContainer222.dll O3 - Toolbar: Yahoo! Toolbar avec bloqueur de fenêtres pop-up - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll O4 - HKLM\..\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe O4 - HKLM\..\Run: [synTPStart] C:\Program Files\Synaptics\SynTP\SynTPStart.exe O4 - HKLM\..\Run: [igfxTray] C:\Windows\system32\igfxtray.exe O4 - HKLM\..\Run: [HotKeysCmds] C:\Windows\system32\hkcmd.exe O4 - HKLM\..\Run: [Persistence] C:\Windows\system32\igfxpers.exe O4 - HKCU\..\Run: [sidebar] C:\Program Files\Windows Sidebar\sidebar.exe /autoRun O4 - HKCU\..\Run: [WindowsWelcomeCenter] rundll32.exe oobefldr.dll,ShowWelcomeCenter O4 - HKCU\..\Run: [TOSCDSPD] C:\Program Files\TOSHIBA\TOSCDSPD\TOSCDSPD.exe O4 - HKCU\..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe O4 - HKCU\..\Run: [ehTray.exe] C:\Windows\ehome\ehTray.exe O4 - HKCU\..\Run: [shareaza] "C:\Program Files\Shareaza\Shareaza.exe" -tray O4 - HKUS\S-1-5-19\..\Run: [sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'SERVICE LOCAL') O4 - HKUS\S-1-5-19\..\Run: [WindowsWelcomeCenter] rundll32.exe oobefldr.dll,ShowWelcomeCenter (User 'SERVICE LOCAL') O4 - HKUS\S-1-5-20\..\Run: [sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'SERVICE RÉSEAU') O8 - Extra context menu item: traduire la page - C:\Users\isabelle\AppData\Local\Temp\cceB98.html O8 - Extra context menu item: traduire le texte sélectionné - C:\Users\isabelle\AppData\Local\Temp\cceB99.html O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_02\bin\ssv.dll O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_02\bin\ssv.dll O9 - Extra button: (no name) - {85d1f590-48f4-11d9-9669-0800200c9a66} - C:\Windows\bdoscandel.exe O9 - Extra 'Tools' menuitem: Uninstall BitDefender Online Scanner v8 - {85d1f590-48f4-11d9-9669-0800200c9a66} - C:\Windows\bdoscandel.exe O9 - Extra button: eBay - {C08CAF1D-C0A3-40D5-9970-06D067EAC017} - http://www.webtip.ch/cgi-bin/toshiba/tracker_url.pl?FR (file missing) O13 - Gopher Prefix: O16 - DPF: {30528230-99f7-4bb4-88d8-fa1d4f56a2ab} (YInstStarter Class) - C:\Program Files\Yahoo!\Common\yinsthelper.dll O16 - DPF: {512FC5A1-7DE1-43F1-BC0C-371622FCB409} (TotalScan Installer Class) - http://www.nanoscan.com/as/v1/cabs/ascstubie.cab O16 - DPF: {5D86DDB5-BDF9-441B-9E9E-D4730F4EE499} (BDSCANONLINE Control) - http://www.bitdefender.fr/scan_fr/scan8/oscan8.cab O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - ALWIL Software - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe O23 - Service: avast! Antivirus - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashServ.exe O23 - Service: avast! Mail Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe O23 - Service: avast! Web Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe O23 - Service: AVG Anti-Spyware Guard - GRISOFT s.r.o. - C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe O23 - Service: ConfigFree Service (CFSvcs) - TOSHIBA CORPORATION - C:\Program Files\TOSHIBA\ConfigFree\CFSvcs.exe O23 - Service: Symantec Lic NetConnect service (CLTNetCnService) - Unknown owner - C:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe (file missing) O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe O23 - Service: LiveUpdate - Symantec Corporation - C:\PROGRA~1\Symantec\LIVEUP~1\LUCOMS~1.EXE O23 - Service: LiveUpdate Notice Service Ex (LiveUpdate Notice Ex) - Unknown owner - C:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe (file missing) O23 - Service: LiveUpdate Notice Service - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\PIF\{B8E1DD85-8582-4c61-B58F-2F227FCA9A08}\PIFSvc.exe O23 - Service: Nero BackItUp Scheduler 3 - Nero AG - C:\Program Files\Nero\Nero8\Nero BackItUp\NBService.exe O23 - Service: NMIndexingService - Nero AG - C:\Program Files\Common Files\Nero\Lib\NMIndexingService.exe O23 - Service: Planificateur LiveUpdate automatique - Symantec Corporation - C:\Program Files\Symantec\LiveUpdate\ALUSchedulerSvc.exe O23 - Service: TOSHIBA Optical Disc Drive Service (TODDSrv) - TOSHIBA Corporation - C:\Windows\system32\TODDSrv.exe O23 - Service: TOSHIBA Power Saver (TosCoSrv) - TOSHIBA Corporation - C:\Program Files\TOSHIBA\Power Saver\TosCoSrv.exe O23 - Service: TOSHIBA Bluetooth Service - TOSHIBA CORPORATION - c:\Program Files\Toshiba\Bluetooth Toshiba Stack\TosBtSrv.exe O23 - Service: Ulead Burning Helper (UleadBurningHelper) - Ulead Systems, Inc. - C:\Program Files\Common Files\Ulead Systems\DVD\ULCDRSvr.exe -- End of file - 7759 bytes Alors Docteur suis je en bonne voix de guérison????????????????? Isabelle

Appollo, J'ai oublié de te dire que lors du téléchargement de panda Avast! a braillé 2 fois (détecté 2 virus), est ce j'aurais pas rentré 2 virus supplémentaires? D'autre part au risque de paraitre ridicule, après le scan Panda, il demande si veut "desinfecter", et dans le doute je n'ai pas cliqué, qu'est ce que je fais? Isabelle

Appollo, Voici le rapport Hijackthis: Logfile of Trend Micro HijackThis v2.0.2 Scan saved at 22:07:02, on 25/10/2007 Platform: Windows Vista (WinNT 6.00.1904) MSIE: Internet Explorer v7.00 (7.00.6000.16546) Boot mode: Normal Running processes: C:\Windows\system32\Dwm.exe C:\Windows\Explorer.EXE C:\Program Files\Alwil Software\Avast4\ashDisp.exe C:\Windows\System32\igfxtray.exe C:\Windows\System32\hkcmd.exe C:\Windows\System32\igfxpers.exe C:\Program Files\Windows Sidebar\sidebar.exe C:\Windows\system32\igfxsrvc.exe C:\Program Files\TOSHIBA\TOSCDSPD\TOSCDSPD.exe C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe C:\Program Files\Internet Explorer\ieuser.exe C:\Program Files\Internet Explorer\iexplore.exe C:\Program Files\Internet Explorer\iexplore.exe C:\Windows\system32\taskeng.exe C:\Program Files\Synaptics\SynTP\SynTPEnh.exe C:\Program Files\Synaptics\SynTP\SynToshiba.exe C:\Windows\system32\Macromed\Flash\FlashUtil9d.exe C:\Program Files\Windows Defender\MSASCui.exe C:\Windows\system32\DllHost.exe C:\Windows\system32\SearchFilterHost.exe C:\Program Files\Trend Micro\HijackThis\HijackThis.exe R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896 R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=566.../www.google.fr/ R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157 R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896 R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157 R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant = R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch = R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = R3 - URLSearchHook: (no name) - {AEEC3B59-CA98-4EBA-A140-57B94E283583} - C:\PROGRA~1\ORANGE~1\TOOLBA~2.DLL O1 - Hosts: ::1 localhost O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll O2 - BHO: EoRezoBHO - {64F56FC1-1272-44CD-BA6E-39723696E350} - C:\Program Files\eoRezo\EoAdv\EoRezoBHO.dll (file missing) O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_02\bin\ssv.dll O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar2.dll O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\2.1.615.5858\swg.dll O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar2.dll O3 - Toolbar: Barre d'outils Orange - {D3028143-6145-4318-99D3-3EDCE54A95A9} - C:\Program Files\Orange Toolbar FR\ToolbarContainer222.dll O4 - HKLM\..\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe O4 - HKLM\..\Run: [synTPStart] C:\Program Files\Synaptics\SynTP\SynTPStart.exe O4 - HKLM\..\Run: [igfxTray] C:\Windows\system32\igfxtray.exe O4 - HKLM\..\Run: [HotKeysCmds] C:\Windows\system32\hkcmd.exe O4 - HKLM\..\Run: [Persistence] C:\Windows\system32\igfxpers.exe O4 - HKCU\..\Run: [sidebar] C:\Program Files\Windows Sidebar\sidebar.exe /autoRun O4 - HKCU\..\Run: [WindowsWelcomeCenter] rundll32.exe oobefldr.dll,ShowWelcomeCenter O4 - HKCU\..\Run: [TOSCDSPD] C:\Program Files\TOSHIBA\TOSCDSPD\TOSCDSPD.exe O4 - HKCU\..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe O4 - HKCU\..\Run: [bgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}] "C:\Program Files\Common Files\Ahead\Lib\NMBgMonitor.exe" O4 - HKCU\..\Run: [ehTray.exe] C:\Windows\ehome\ehTray.exe O4 - HKCU\..\Run: [shareaza] "C:\Program Files\Shareaza\Shareaza.exe" -tray O4 - HKUS\S-1-5-19\..\Run: [sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'SERVICE LOCAL') O4 - HKUS\S-1-5-19\..\Run: [WindowsWelcomeCenter] rundll32.exe oobefldr.dll,ShowWelcomeCenter (User 'SERVICE LOCAL') O4 - HKUS\S-1-5-20\..\Run: [sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'SERVICE RÉSEAU') O8 - Extra context menu item: traduire la page - C:\Users\isabelle\AppData\Local\Temp\cceB98.html O8 - Extra context menu item: traduire le texte sélectionné - C:\Users\isabelle\AppData\Local\Temp\cceB99.html O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_02\bin\ssv.dll O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_02\bin\ssv.dll O9 - Extra button: (no name) - {85d1f590-48f4-11d9-9669-0800200c9a66} - C:\Windows\bdoscandel.exe O9 - Extra 'Tools' menuitem: Uninstall BitDefender Online Scanner v8 - {85d1f590-48f4-11d9-9669-0800200c9a66} - C:\Windows\bdoscandel.exe O9 - Extra button: eBay - {C08CAF1D-C0A3-40D5-9970-06D067EAC017} - http://www.webtip.ch/cgi-bin/toshiba/tracker_url.pl?FR (file missing) O13 - Gopher Prefix: O16 - DPF: {512FC5A1-7DE1-43F1-BC0C-371622FCB409} (TotalScan Installer Class) - http://www.nanoscan.com/as/v1/cabs/ascstubie.cab O16 - DPF: {5D86DDB5-BDF9-441B-9E9E-D4730F4EE499} (BDSCANONLINE Control) - http://www.bitdefender.fr/scan_fr/scan8/oscan8.cab O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - ALWIL Software - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe O23 - Service: avast! Antivirus - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashServ.exe O23 - Service: avast! Mail Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe O23 - Service: avast! Web Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe O23 - Service: AVG Anti-Spyware Guard - GRISOFT s.r.o. - C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe O23 - Service: ConfigFree Service (CFSvcs) - TOSHIBA CORPORATION - C:\Program Files\TOSHIBA\ConfigFree\CFSvcs.exe O23 - Service: Symantec Lic NetConnect service (CLTNetCnService) - Unknown owner - C:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe (file missing) O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe O23 - Service: LiveUpdate - Symantec Corporation - C:\PROGRA~1\Symantec\LIVEUP~1\LUCOMS~1.EXE O23 - Service: LiveUpdate Notice Service Ex (LiveUpdate Notice Ex) - Unknown owner - C:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe (file missing) O23 - Service: LiveUpdate Notice Service - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\PIF\{B8E1DD85-8582-4c61-B58F-2F227FCA9A08}\PIFSvc.exe O23 - Service: Nero BackItUp Scheduler 3 - Nero AG - C:\Program Files\Nero\Nero8\Nero BackItUp\NBService.exe O23 - Service: NMIndexingService - Nero AG - C:\Program Files\Common Files\Nero\Lib\NMIndexingService.exe O23 - Service: Planificateur LiveUpdate automatique - Symantec Corporation - C:\Program Files\Symantec\LiveUpdate\ALUSchedulerSvc.exe O23 - Service: TOSHIBA Optical Disc Drive Service (TODDSrv) - TOSHIBA Corporation - C:\Windows\system32\TODDSrv.exe O23 - Service: TOSHIBA Power Saver (TosCoSrv) - TOSHIBA Corporation - C:\Program Files\TOSHIBA\Power Saver\TosCoSrv.exe O23 - Service: TOSHIBA Bluetooth Service - TOSHIBA CORPORATION - c:\Program Files\Toshiba\Bluetooth Toshiba Stack\TosBtSrv.exe O23 - Service: Ulead Burning Helper (UleadBurningHelper) - Ulead Systems, Inc. - C:\Program Files\Common Files\Ulead Systems\DVD\ULCDRSvr.exe -- End of file - 7678 bytes pour le résultat de Panda, j'ai du désactivé Avast! pour les mises à jours.... ANALYSIS: 2007-10-25 22:03:15 PROTECTIONS: 1 MALWARE: 32 SUSPECTS: 0 ;*********************************************************************************************************************************************************************************** PROTECTIONS Description Version Active Updated ;=================================================================================================================================================================================== avast! antivirus 4.7.1043 [VPS 071025-1] 4.7.1043 No Yes ;=================================================================================================================================================================================== MALWARE Id Description Type Active Severity Disinfectable Disinfected Location ;=================================================================================================================================================================================== 00139061 Cookie/Doubleclick TrackingCookie No 0 Yes No C:\Users\isabelle\AppData\Roaming\Mozilla\Firefox\Profiles\ek5t99cc.default\cookies.txt[.doubleclick.net/] 00139064 Cookie/Atlas DMT TrackingCookie No 0 Yes No C:\Users\isabelle\AppData\Roaming\Mozilla\Firefox\Profiles\ek5t99cc.default\cookies.txt[.atdmt.com/] 00145393 Cookie/Tradedoubler TrackingCookie No 0 Yes No C:\Users\isabelle\AppData\Roaming\Mozilla\Firefox\Profiles\ek5t99cc.default\cookies.txt[.tradedoubler.com/] 00145393 Cookie/Tradedoubler TrackingCookie No 0 Yes No C:\Users\isabelle\AppData\Roaming\Mozilla\Firefox\Profiles\ek5t99cc.default\cookies.txt[.tradedoubler.com/] 00145460 Cookie/2o7 TrackingCookie No 0 Yes No C:\Users\isabelle\AppData\Roaming\Mozilla\Firefox\Profiles\ek5t99cc.default\cookies.txt[.2o7.net/] 00145738 Cookie/Mediaplex TrackingCookie No 0 Yes No C:\Users\isabelle\AppData\Roaming\Mozilla\Firefox\Profiles\ek5t99cc.default\cookies.txt[.mediaplex.com/] 00160284 Cookie/Findwhat TrackingCookie No 0 Yes No C:\Users\isabelle\AppData\Roaming\Mozilla\Firefox\Profiles\ek5t99cc.default\cookies.txt[.findwhat.com/] 00167704 Cookie/Xiti TrackingCookie No 0 Yes No C:\Users\isabelle\AppData\Roaming\Mozilla\Firefox\Profiles\ek5t99cc.default\cookies.txt[.xiti.com/] 00167709 Cookie/fe.lea.lycos TrackingCookie No 0 Yes No C:\Users\isabelle\AppData\Roaming\Mozilla\Firefox\Profiles\ek5t99cc.default\cookies.txt[.fe.lea.lycos.fr/] 00167709 Cookie/fe.lea.lycos TrackingCookie No 0 Yes No C:\Users\isabelle\AppData\Roaming\Mozilla\Firefox\Profiles\ek5t99cc.default\cookies.txt[fe.lea.lycos.fr/] 00167749 Cookie/Toplist TrackingCookie No 0 Yes No C:\Users\isabelle\AppData\Roaming\Mozilla\Firefox\Profiles\ek5t99cc.default\cookies.txt[.toplist.cz/] 00168056 Cookie/YieldManager TrackingCookie No 0 Yes No C:\Users\isabelle\AppData\Roaming\Mozilla\Firefox\Profiles\ek5t99cc.default\cookies.txt[ad.yieldmanager.com/] 00168056 Cookie/YieldManager TrackingCookie No 0 Yes No C:\Users\isabelle\AppData\Roaming\Mozilla\Firefox\Profiles\ek5t99cc.default\cookies.txt[ad.yieldmanager.com/] 00168056 Cookie/YieldManager TrackingCookie No 0 Yes No C:\Users\isabelle\AppData\Roaming\Mozilla\Firefox\Profiles\ek5t99cc.default\cookies.txt[ad.yieldmanager.com/] 00168056 Cookie/YieldManager TrackingCookie No 0 Yes No C:\Users\isabelle\AppData\Roaming\Microsoft\Windows\Cookies\isabelle@ad.yieldmanager[2].txt 00168061 Cookie/Apmebf TrackingCookie No 0 Yes No C:\Users\isabelle\AppData\Roaming\Mozilla\Firefox\Profiles\ek5t99cc.default\cookies.txt[.apmebf.com/] 00168061 Cookie/Apmebf TrackingCookie No 0 Yes No C:\Users\isabelle\AppData\Roaming\Mozilla\Firefox\Profiles\ek5t99cc.default\cookies.txt[.apmebf.com/] 00168090 Cookie/Serving-sys TrackingCookie No 0 Yes No C:\Users\isabelle\AppData\Roaming\Mozilla\Firefox\Profiles\ek5t99cc.default\cookies.txt[.serving-sys.com/] 00168090 Cookie/Serving-sys TrackingCookie No 0 Yes No C:\Users\isabelle\AppData\Roaming\Mozilla\Firefox\Profiles\ek5t99cc.default\cookies.txt[.serving-sys.com/] 00168090 Cookie/Serving-sys TrackingCookie No 0 Yes No C:\Users\isabelle\AppData\Roaming\Mozilla\Firefox\Profiles\ek5t99cc.default\cookies.txt[.serving-sys.com/] 00168090 Cookie/Serving-sys TrackingCookie No 0 Yes No C:\Users\isabelle\AppData\Roaming\Mozilla\Firefox\Profiles\ek5t99cc.default\cookies.txt[.serving-sys.com/] 00168090 Cookie/Serving-sys TrackingCookie No 0 Yes No C:\Users\isabelle\AppData\Roaming\Mozilla\Firefox\Profiles\ek5t99cc.default\cookies.txt[.serving-sys.com/] 00168093 Cookie/Serving-sys TrackingCookie No 0 Yes No C:\Users\isabelle\AppData\Roaming\Mozilla\Firefox\Profiles\ek5t99cc.default\cookies.txt[.bs.serving-sys.com/] 00168106 Cookie/Weborama TrackingCookie No 0 Yes No C:\Users\isabelle\AppData\Roaming\Mozilla\Firefox\Profiles\ek5t99cc.default\cookies.txt[.weborama.fr/] 00168106 Cookie/Weborama TrackingCookie No 0 Yes No C:\Users\isabelle\AppData\Roaming\Mozilla\Firefox\Profiles\ek5t99cc.default\cookies.txt[.weborama.fr/] 00168106 Cookie/Weborama TrackingCookie No 0 Yes No C:\Users\isabelle\AppData\Roaming\Mozilla\Firefox\Profiles\ek5t99cc.default\cookies.txt[.weborama.fr/] 00168109 Cookie/Adtech TrackingCookie No 0 Yes No C:\Users\isabelle\AppData\Roaming\Mozilla\Firefox\Profiles\ek5t99cc.default\cookies.txt[.adtech.de/] 00168116 Cookie/Comclick TrackingCookie No 0 Yes No C:\Users\isabelle\AppData\Roaming\Mozilla\Firefox\Profiles\ek5t99cc.default\cookies.txt[fl01.ct2.comclick.com/] 00168116 Cookie/Comclick TrackingCookie No 0 Yes No C:\Users\isabelle\AppData\Roaming\Mozilla\Firefox\Profiles\ek5t99cc.default\cookies.txt[fl01.ct2.comclick.com/] 00168116 Cookie/Comclick TrackingCookie No 0 Yes No C:\Users\isabelle\AppData\Roaming\Mozilla\Firefox\Profiles\ek5t99cc.default\cookies.txt[fl01.ct2.comclick.com/] 00169190 Cookie/Advertising TrackingCookie No 0 Yes No C:\Users\isabelle\AppData\Roaming\Mozilla\Firefox\Profiles\ek5t99cc.default\cookies.txt[.advertising.com/] 00169190 Cookie/Advertising TrackingCookie No 0 Yes No C:\Users\isabelle\AppData\Roaming\Mozilla\Firefox\Profiles\ek5t99cc.default\cookies.txt[.advertising.com/] 00169190 Cookie/Advertising TrackingCookie No 0 Yes No C:\Users\isabelle\AppData\Roaming\Mozilla\Firefox\Profiles\ek5t99cc.default\cookies.txt[.advertising.com/] 00169190 Cookie/Advertising TrackingCookie No 0 Yes No C:\Users\isabelle\AppData\Roaming\Mozilla\Firefox\Profiles\ek5t99cc.default\cookies.txt[.advertising.com/] 00169287 Cookie/Adrevolver TrackingCookie No 0 Yes No C:\Users\isabelle\AppData\Roaming\Microsoft\Windows\Cookies\isabelle@media.adrevolver[3].txt 00170554 Cookie/Overture TrackingCookie No 0 Yes No C:\Users\isabelle\AppData\Roaming\Mozilla\Firefox\Profiles\ek5t99cc.default\cookies.txt[.overture.com/] 00170554 Cookie/Overture TrackingCookie No 0 Yes No C:\Users\isabelle\AppData\Roaming\Mozilla\Firefox\Profiles\ek5t99cc.default\cookies.txt[.overture.com/] 00170554 Cookie/Overture TrackingCookie No 0 Yes No C:\Users\isabelle\AppData\Roaming\Mozilla\Firefox\Profiles\ek5t99cc.default\cookies.txt[.overture.com/] 00172449 Cookie/MetriWeb TrackingCookie No 0 Yes No C:\Users\isabelle\AppData\Roaming\Mozilla\Firefox\Profiles\ek5t99cc.default\cookies.txt[.metriweb.be/] 00173520 Cookie/Bluestreak TrackingCookie No 0 Yes No C:\Users\isabelle\AppData\Roaming\Microsoft\Windows\Cookies\isabelle@bluestreak[2].txt 00173520 Cookie/Bluestreak TrackingCookie No 0 Yes No C:\Users\isabelle\AppData\Roaming\Mozilla\Firefox\Profiles\ek5t99cc.default\cookies.txt[.bluestreak.com/] 00176499 Cookie/Maxifiles TrackingCookie No 0 Yes No C:\Users\isabelle\AppData\Roaming\Mozilla\Firefox\Profiles\ek5t99cc.default\cookies.txt[www.maxifiles.com/] 00176499 Cookie/Maxifiles TrackingCookie No 0 Yes No C:\Users\isabelle\AppData\Roaming\Mozilla\Firefox\Profiles\ek5t99cc.default\cookies.txt[www.maxifiles.com/] 00184846 Cookie/Adrevolver TrackingCookie No 0 Yes No C:\Users\isabelle\AppData\Roaming\Mozilla\Firefox\Profiles\ek5t99cc.default\cookies.txt[.adrevolver.com/] 00184846 Cookie/Adrevolver TrackingCookie No 0 Yes No C:\Users\isabelle\AppData\Roaming\Microsoft\Windows\Cookies\isabelle@adrevolver[1].txt 00184846 Cookie/Adrevolver TrackingCookie No 0 Yes No C:\Users\isabelle\AppData\Roaming\Mozilla\Firefox\Profiles\ek5t99cc.default\cookies.txt[.adrevolver.com/] 00199984 Cookie/Searchportal TrackingCookie No 0 Yes No C:\Users\isabelle\AppData\Roaming\Mozilla\Firefox\Profiles\ek5t99cc.default\cookies.txt[searchportal.information.com/] 00207936 Cookie/Adviva TrackingCookie No 0 Yes No C:\Users\isabelle\AppData\Roaming\Mozilla\Firefox\Profiles\ek5t99cc.default\cookies.txt[.adviva.net/] 00273339 Cookie/Smartadserver TrackingCookie No 0 Yes No C:\Users\isabelle\AppData\Roaming\Mozilla\Firefox\Profiles\ek5t99cc.default\cookies.txt[.smartadserver.com/] 00273339 Cookie/Smartadserver TrackingCookie No 0 Yes No C:\Users\isabelle\AppData\Roaming\Mozilla\Firefox\Profiles\ek5t99cc.default\cookies.txt[.smartadserver.com/] 00273339 Cookie/Smartadserver TrackingCookie No 0 Yes No C:\Users\isabelle\AppData\Roaming\Mozilla\Firefox\Profiles\ek5t99cc.default\cookies.txt[.smartadserver.com/] 00273339 Cookie/Smartadserver TrackingCookie No 0 Yes No C:\Users\isabelle\AppData\Roaming\Mozilla\Firefox\Profiles\ek5t99cc.default\cookies.txt[.smartadserver.com/] 01266988 Adware/WebHancer Adware No 0 No No C:\Users\isabelle\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\HTK9ML5R\whCC-TRAFE7[1].exe[whAgent.exe] 01353539 Adware/WebHancer Adware No 0 No No C:\Users\isabelle\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\HTK9ML5R\whCC-TRAFE7[1].exe[webhdll.dll] 01353540 Adware/WebHancer Adware No 0 No No C:\Users\isabelle\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\HTK9ML5R\whCC-TRAFE7[1].exe[whiehlpr.dll] 01353541 Adware/WebHancer Adware No 0 No No C:\Users\isabelle\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\HTK9ML5R\whCC-TRAFE7[1].exe[whInstaller.exe] 01468095 Adware/WebHancer Adware No 0 Yes No C:\Users\isabelle\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\HTK9ML5R\whCC-TRAFE7[1].exe 01606636 Cookie/Adserver TrackingCookie No 0 Yes No C:\Users\isabelle\AppData\Roaming\Microsoft\Windows\Cookies\isabelle@adserver.easyad[1].txt ;=================================================================================================================================================================================== SUSPECTS Location ;=================================================================================================================================================================================== ;=================================================================================================================================================================================== Bon courage dans tout ce méli mélo @ bientot Isabelle

Appollo, J'ai vraiment pas de change, pour des raisons que j'ignore totalement, j'ai bien suivi la procédure, mais BitDefender ne peut pas faire de mises à jours, il me demande si je veux quand meme effectuer un scan je mets oui, et lui me répond que le scan à échoué sans d'autres explication. Help !!!!!!!!! je craque Isabelle

Re bonsoir Apollo, A ta question:" " la session sous laquelle tu te trouves sur Vista est bien une session d'utilisateur courant et non d'administrateur? C'est important de le savoir". je pense pouvoir te répondre que c'est une cession administrateur, car déjà pour lancer Hijackthis je ne peux le faire qu'en cession Administrateur, voilà..si non il veut rien savoir. je fais un scan Bit Defender, et je reviens.... @ plus tard Et encore merci Isabelle

ouf !!!!!!!!!!!!!!!!!!!!! J'ai bien cru que j'allais abondonner, heureusement Appollon est très patient.... Voici le rapport Hijackhis: Logfile of Trend Micro HijackThis v2.0.2 Scan saved at 19:09:54, on 25/10/2007 Platform: Windows Vista (WinNT 6.00.1904) MSIE: Internet Explorer v7.00 (7.00.6000.16546) Boot mode: Normal Running processes: C:\Windows\system32\Dwm.exe C:\Windows\Explorer.EXE C:\Program Files\Alwil Software\Avast4\ashDisp.exe C:\Windows\System32\igfxtray.exe C:\Windows\System32\hkcmd.exe C:\Windows\System32\igfxpers.exe C:\Program Files\Windows Sidebar\sidebar.exe C:\Program Files\TOSHIBA\TOSCDSPD\TOSCDSPD.exe C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe C:\Windows\system32\igfxsrvc.exe C:\Windows\system32\taskeng.exe C:\Program Files\Synaptics\SynTP\SynTPEnh.exe C:\Program Files\Synaptics\SynTP\SynToshiba.exe C:\Windows\system32\SearchFilterHost.exe C:\Program Files\Trend Micro\HijackThis\HijackThis.exe R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896 R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=566.../www.google.fr/ R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157 R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896 R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157 R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant = R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch = R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = R3 - URLSearchHook: (no name) - {AEEC3B59-CA98-4EBA-A140-57B94E283583} - C:\PROGRA~1\ORANGE~1\TOOLBA~2.DLL O1 - Hosts: ::1 localhost O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll O2 - BHO: EoRezoBHO - {64F56FC1-1272-44CD-BA6E-39723696E350} - C:\Program Files\eoRezo\EoAdv\EoRezoBHO.dll (file missing) O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_02\bin\ssv.dll O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar2.dll O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\2.1.615.5858\swg.dll O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar2.dll O3 - Toolbar: Barre d'outils Orange - {D3028143-6145-4318-99D3-3EDCE54A95A9} - C:\Program Files\Orange Toolbar FR\ToolbarContainer222.dll O4 - HKLM\..\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe O4 - HKLM\..\Run: [synTPStart] C:\Program Files\Synaptics\SynTP\SynTPStart.exe O4 - HKLM\..\Run: [igfxTray] C:\Windows\system32\igfxtray.exe O4 - HKLM\..\Run: [HotKeysCmds] C:\Windows\system32\hkcmd.exe O4 - HKLM\..\Run: [Persistence] C:\Windows\system32\igfxpers.exe O4 - HKCU\..\Run: [sidebar] C:\Program Files\Windows Sidebar\sidebar.exe /autoRun O4 - HKCU\..\Run: [WindowsWelcomeCenter] rundll32.exe oobefldr.dll,ShowWelcomeCenter O4 - HKCU\..\Run: [TOSCDSPD] C:\Program Files\TOSHIBA\TOSCDSPD\TOSCDSPD.exe O4 - HKCU\..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe O4 - HKCU\..\Run: [bgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}] "C:\Program Files\Common Files\Ahead\Lib\NMBgMonitor.exe" O4 - HKCU\..\Run: [ehTray.exe] C:\Windows\ehome\ehTray.exe O4 - HKCU\..\Run: [shareaza] "C:\Program Files\Shareaza\Shareaza.exe" -tray O4 - HKUS\S-1-5-19\..\Run: [sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'SERVICE LOCAL') O4 - HKUS\S-1-5-19\..\Run: [WindowsWelcomeCenter] rundll32.exe oobefldr.dll,ShowWelcomeCenter (User 'SERVICE LOCAL') O4 - HKUS\S-1-5-20\..\Run: [sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'SERVICE RÉSEAU') O8 - Extra context menu item: traduire la page - C:\Users\isabelle\AppData\Local\Temp\cceB98.html O8 - Extra context menu item: traduire le texte sélectionné - C:\Users\isabelle\AppData\Local\Temp\cceB99.html O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_02\bin\ssv.dll O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_02\bin\ssv.dll O9 - Extra button: eBay - {C08CAF1D-C0A3-40D5-9970-06D067EAC017} - http://www.webtip.ch/cgi-bin/toshiba/tracker_url.pl?FR (file missing) O13 - Gopher Prefix: O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - ALWIL Software - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe O23 - Service: avast! Antivirus - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashServ.exe O23 - Service: avast! Mail Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe O23 - Service: avast! Web Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe O23 - Service: AVG Anti-Spyware Guard - GRISOFT s.r.o. - C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe O23 - Service: ConfigFree Service (CFSvcs) - TOSHIBA CORPORATION - C:\Program Files\TOSHIBA\ConfigFree\CFSvcs.exe O23 - Service: Symantec Lic NetConnect service (CLTNetCnService) - Unknown owner - C:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe (file missing) O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe O23 - Service: LiveUpdate - Symantec Corporation - C:\PROGRA~1\Symantec\LIVEUP~1\LUCOMS~1.EXE O23 - Service: LiveUpdate Notice Service Ex (LiveUpdate Notice Ex) - Unknown owner - C:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe (file missing) O23 - Service: LiveUpdate Notice Service - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\PIF\{B8E1DD85-8582-4c61-B58F-2F227FCA9A08}\PIFSvc.exe O23 - Service: Nero BackItUp Scheduler 3 - Nero AG - C:\Program Files\Nero\Nero8\Nero BackItUp\NBService.exe O23 - Service: NMIndexingService - Nero AG - C:\Program Files\Common Files\Nero\Lib\NMIndexingService.exe O23 - Service: Planificateur LiveUpdate automatique - Symantec Corporation - C:\Program Files\Symantec\LiveUpdate\ALUSchedulerSvc.exe O23 - Service: TOSHIBA Optical Disc Drive Service (TODDSrv) - TOSHIBA Corporation - C:\Windows\system32\TODDSrv.exe O23 - Service: TOSHIBA Power Saver (TosCoSrv) - TOSHIBA Corporation - C:\Program Files\TOSHIBA\Power Saver\TosCoSrv.exe O23 - Service: TOSHIBA Bluetooth Service - TOSHIBA CORPORATION - c:\Program Files\Toshiba\Bluetooth Toshiba Stack\TosBtSrv.exe O23 - Service: Ulead Burning Helper (UleadBurningHelper) - Ulead Systems, Inc. - C:\Program Files\Common Files\Ulead Systems\DVD\ULCDRSvr.exe -- End of file - 6906 bytes

Désolée mais il n'y a rien d'écrit, je ne sais meme pas si je l'ai bien décompressé, quand je te dis que je suis nulle... isabelle

Appolo J'ai bien peur de ne pas y arriver, je te le répète je suis vraiment débutante, j'ai essayer d'installer BFU et une page aparait: THE BRUTE FORCE UNINSTALLER avec en dessous "scriplife to execute", déjà nulle en informatique mais quand c'est expliqué en anglais....tu vois ce que je veux te dire. Isabelle

Wawwww !!!!!!!!!!!!!!!! ça va trop vite j'ai encore rien fait, meme pas désinstaller Avast!.... .C'est sympa de venir à mon secours mais qu'elle procédure suivre Appolo 01 ou Nob 430? Pitié ne m'embrouillez pas . Isabelle

merci d'avoir répondu si vite. Je suis ok pour changer d'antirus, mais peux tu me dire si la version est en français? Isabelle

Bonjour, Je viens de découvrir ce forum, et j'espère y trouver des solutions efficaces pour me débarrasser définitivement de tous ces microbes. J'ai déjà été infecté une fois, et une personne m'a gentiment dépannée en me faisant installer: -hijackthis -ot movelt -aswclnr -AVG anti spywer Je pensais que ça suffirait, mais non, je chope encore des virus. Je suis sous vista et j'ai avast. J'ai fais un scan Avast et Hijackthis que je vous joins. Je dois préciser que je suis débutante, donc si vous pouviez m'aider dans la mesure de mes petites connaissances ce serait vraiment sympa... Je vous remercie Isabelle Rapport avast! * Ce fichier est généré automatiquement * * Tâche utilisée 'Interface utilisateur simplifiée' * Débuté le jeudi 25 octobre 2007 13:02:19 * VPS : 000784-0, 25/10/2007 * C:\Program Files\Nero\Nero8\Nero BackItUp\BackItUp_ImageTool\root.img\root.img [E] archive GZIP corrompue. (42129) C:\Program Files\RegistryFix\RegistryFixBackup\8,29,2007_10,9,6.zip\Config.ini [E] L'archive est protégée par mot de passe. (42056) C:\Program Files\RegistryFix\RegistryFixBackup\8,29,2007_10,9,6.zip\rkBackUp276.reg [E] L'archive est protégée par mot de passe. (42056) C:\Program Files\RegistryFix\RegistryFixBackup\8,29,2007_10,9,6.zip\rkBackUp277.reg [E] L'archive est protégée par mot de passe. (42056) C:\Program Files\RegistryFix\RegistryFixBackup\8,29,2007_10,9,6.zip\rkBackUp278.reg [E] L'archive est protégée par mot de passe. (42056) C:\Program Files\RegistryFix\RegistryFixBackup\8,29,2007_10,9,6.zip\rkBackUp279.reg [E] L'archive est protégée par mot de passe. (42056) C:\Program Files\RegistryFix\RegistryFixBackup\8,29,2007_10,9,6.zip\rkBackUp280.reg [E] L'archive est protégée par mot de passe. (42056) C:\Program Files\RegistryFix\RegistryFixBackup\8,29,2007_10,9,6.zip\rkBackUp67.reg [E] L'archive est protégée par mot de passe. (42056) C:\Users\isabelle\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\HTK9ML5R\whCC-TRAFE7[1].exe\whiehlpr.dll [L] Win32:Dialer-567 [Trj] (0) Durant le transfert du fichier vers la zone de quarantaine, l'erreur suivante s'est produite : L'opération n'est pas supportée pour ce type d'archive. C:\Users\isabelle\AppData\Local\Temp\NERO13895\Data\E4060BF5.cab\rootFEAA0A71.img\root.img [E] archive GZIP corrompue. (42129) Fichiers infectés : 1 Total des fichiers : 209936 Total des dossiers : 11013 Taille totale : 37,9 GB * * Tâche arrêtée : jeudi 25 octobre 2007 14:14:43 * Programme en exécution était 1 heure(s), 12 minute(s), 24 seconde(s) * Logfile of Trend Micro HijackThis v2.0.2 Scan saved at 14:50:58, on 25/10/2007 Platform: Windows Vista (WinNT 6.00.1904) MSIE: Internet Explorer v7.00 (7.00.6000.16546) Boot mode: Normal Running processes: C:\Windows\system32\taskeng.exe C:\Windows\system32\Dwm.exe C:\Windows\Explorer.EXE C:\Program Files\Alwil Software\Avast4\ashDisp.exe C:\Windows\System32\igfxtray.exe C:\Windows\System32\hkcmd.exe C:\Windows\System32\igfxpers.exe C:\Program Files\Windows Sidebar\sidebar.exe C:\Program Files\TOSHIBA\TOSCDSPD\TOSCDSPD.exe C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe C:\Program Files\Synaptics\SynTP\SynTPEnh.exe C:\Program Files\Synaptics\SynTP\SynToshiba.exe C:\Windows\system32\igfxsrvc.exe C:\Program Files\Alwil Software\Avast4\ashSimpl.exe C:\Windows\system32\taskeng.exe C:\Program Files\Trend Micro\HijackThis\HijackThis.exe R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896 R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.google.fr/ R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157 R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896 R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157 R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant = R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch = R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = R3 - URLSearchHook: (no name) - {AEEC3B59-CA98-4EBA-A140-57B94E283583} - C:\PROGRA~1\ORANGE~1\TOOLBA~2.DLL O1 - Hosts: ::1 localhost O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll O2 - BHO: ads_optimizer - {26E45419-7205-4fac-BBFE-174BC7337A79} - C:\Windows\system32\nsh1AC1.dll O2 - BHO: EoRezoBHO - {64F56FC1-1272-44CD-BA6E-39723696E350} - C:\Program Files\eoRezo\EoAdv\EoRezoBHO.dll (file missing) O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_02\bin\ssv.dll O2 - BHO: rightonadz browser optimizer - {971C3384-F75E-4562-95B3-CBE7417529BC} - C:\Windows\system32\gzmrotate.dll O2 - BHO: Ask Search Assistant BHO - {9CB65201-89C4-402c-BA80-02D8C59F9B1D} - C:\Program Files\AskTBar\SrchAstt\1.bin\A5SRCHAS.DLL O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar2.dll O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\2.1.615.5858\swg.dll O2 - BHO: Ask Toolbar BHO - {FE063DB1-4EC0-403e-8DD8-394C54984B2C} - C:\Program Files\AskTBar\bar\1.bin\ASKTBAR.DLL O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar2.dll O3 - Toolbar: Ask Toolbar - {FE063DB9-4EC0-403e-8DD8-394C54984B2C} - C:\Program Files\AskTBar\bar\1.bin\ASKTBAR.DLL O3 - Toolbar: Barre d'outils Orange - {D3028143-6145-4318-99D3-3EDCE54A95A9} - C:\Program Files\Orange Toolbar FR\ToolbarContainer222.dll O3 - Toolbar: Adssite Toolbar - {41C29B07-6F91-4966-91BE-2E2841643C83} - C:\Program Files\Adssite Advanced Toolbar\toolbar.dll O4 - HKLM\..\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe O4 - HKLM\..\Run: [synTPStart] C:\Program Files\Synaptics\SynTP\SynTPStart.exe O4 - HKLM\..\Run: [igfxTray] C:\Windows\system32\igfxtray.exe O4 - HKLM\..\Run: [HotKeysCmds] C:\Windows\system32\hkcmd.exe O4 - HKLM\..\Run: [Persistence] C:\Windows\system32\igfxpers.exe O4 - HKLM\..\Run: [hid_start] C:\Windows\System32\Rundll32.exe "C:\Windows\system32\gzmrotate.dll" DllVerify O4 - HKCU\..\Run: [sidebar] C:\Program Files\Windows Sidebar\sidebar.exe /autoRun O4 - HKCU\..\Run: [WindowsWelcomeCenter] rundll32.exe oobefldr.dll,ShowWelcomeCenter O4 - HKCU\..\Run: [TOSCDSPD] C:\Program Files\TOSHIBA\TOSCDSPD\TOSCDSPD.exe O4 - HKCU\..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe O4 - HKCU\..\Run: [bgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}] "C:\Program Files\Common Files\Ahead\Lib\NMBgMonitor.exe" O4 - HKCU\..\Run: [ehTray.exe] C:\Windows\ehome\ehTray.exe O4 - HKCU\..\Run: [shareaza] "C:\Program Files\Shareaza\Shareaza.exe" -tray O4 - HKUS\S-1-5-19\..\Run: [sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'SERVICE LOCAL') O4 - HKUS\S-1-5-19\..\Run: [WindowsWelcomeCenter] rundll32.exe oobefldr.dll,ShowWelcomeCenter (User 'SERVICE LOCAL') O4 - HKUS\S-1-5-20\..\Run: [sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'SERVICE RÉSEAU') O8 - Extra context menu item: traduire la page - C:\Users\isabelle\AppData\Local\Temp\cceB98.html O8 - Extra context menu item: traduire le texte sélectionné - C:\Users\isabelle\AppData\Local\Temp\cceB99.html O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_02\bin\ssv.dll O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_02\bin\ssv.dll O9 - Extra button: eBay - {C08CAF1D-C0A3-40D5-9970-06D067EAC017} - http://www.webtip.ch/cgi-bin/toshiba/tracker_url.pl?FR (file missing) O13 - Gopher Prefix: O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - ALWIL Software - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe O23 - Service: avast! Antivirus - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashServ.exe O23 - Service: avast! Mail Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe O23 - Service: avast! Web Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe O23 - Service: AVG Anti-Spyware Guard - GRISOFT s.r.o. - C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe O23 - Service: ConfigFree Service (CFSvcs) - TOSHIBA CORPORATION - C:\Program Files\TOSHIBA\ConfigFree\CFSvcs.exe O23 - Service: Symantec Lic NetConnect service (CLTNetCnService) - Unknown owner - C:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe (file missing) O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe O23 - Service: LiveUpdate - Symantec Corporation - C:\PROGRA~1\Symantec\LIVEUP~1\LUCOMS~1.EXE O23 - Service: LiveUpdate Notice Service Ex (LiveUpdate Notice Ex) - Unknown owner - C:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe (file missing) O23 - Service: LiveUpdate Notice Service - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\PIF\{B8E1DD85-8582-4c61-B58F-2F227FCA9A08}\PIFSvc.exe O23 - Service: Nero BackItUp Scheduler 3 - Nero AG - C:\Program Files\Nero\Nero8\Nero BackItUp\NBService.exe O23 - Service: NMIndexingService - Nero AG - C:\Program Files\Common Files\Nero\Lib\NMIndexingService.exe O23 - Service: Planificateur LiveUpdate automatique - Symantec Corporation - C:\Program Files\Symantec\LiveUpdate\ALUSchedulerSvc.exe O23 - Service: TOSHIBA Optical Disc Drive Service (TODDSrv) - TOSHIBA Corporation - C:\Windows\system32\TODDSrv.exe O23 - Service: TOSHIBA Power Saver (TosCoSrv) - TOSHIBA Corporation - C:\Program Files\TOSHIBA\Power Saver\TosCoSrv.exe O23 - Service: TOSHIBA Bluetooth Service - TOSHIBA CORPORATION - c:\Program Files\Toshiba\Bluetooth Toshiba Stack\TosBtSrv.exe O23 - Service: Ulead Burning Helper (UleadBurningHelper) - Ulead Systems, Inc. - C:\Program Files\Common Files\Ulead Systems\DVD\ULCDRSvr.exe -- End of file - 7717 bytes

Merci Angélique, En fait c'est ce que j'ai fais et j'ai téléchargé lime wire , mais comment faire pour avoir un aperçu, j'ai cliqué sur le fichier, mais le lecteur media windows ne peut pas les ouvrir. Merci d'éclairer ma lanternes isabelle

Bonjour, Avec l'aide d'un autre forum ( je ne connaissais pas celui ci) j'ai pu désinfecter mon PC mais mon problème n'est pas résolu pour autant, enfin j'ai deux souci, le premier: Lorsque je veux visionner des fichiers qui se téléchargent je vais dans Incoming, puis sur "incomplet" et la hop, le message apparait"windows a cesser de fonctionner" . Mon deuxième souci j'ai des déconnexions régulières avec Firefox, je l'ai désinstallé 2 fois et réinstallé, mais toujours pareil . Si vous pouviez m'aider ce serait super Merci Isabelle