grore

Membres

Afficher le profil Afficher son activité

Compteur de contenus
6
Inscription
le 13 août 2010
Dernière visite
le 14 août 2010

Type de contenu

Toute l’activité

Profils

Forums

Blogs

Tout ce qui a été posté par grore

analyse Hijackthis et Malmarebyte

grore a posté un sujet dans Analyses et éradication malwares

Bonjour, Tout d'abord, veuillez excusez ce troisième sujet commencé... mais comme j'ai tenté de le signaler, mes deux précédents sujet "faux antivirus bloquant toute applications" et complément au topic" écrit hier soir, ne sont plus du tout accessible (pages totalement blanches chez moi sur tous les navigateur et sur d'autres ordinateurs également). C'est pourquoi je commence ce troisième sujet aujourd'hui pour tenter de conclure. Après une nuit de stress, essayé toutes les solutions suite à mes message et aux réponses de pear (merci), j'ai finalement trauvé une astuce sur le lien myspyware.com/2010/01/30/how-to-remove-antivirus-soft-unistall-instructions/ (je conseille à tous ce lien très détaillé pour l'éradication de Antivirus Soft) ça a marché, j'ai enfin retrouvé le fonctionnement normal de mon PC MAIS IE ne fonctionne plus et semble toujours infecté (il affiche le même message signalant une in fection au lieu de se rendre sur la page demandée), alors que j'ai effacé toutes les lignes du reg signalée par le site et repérée dans Hijackthis, j'ai aussi fait passer Malwarebyte, je poste les rapports ici : Dernier Rapport Hijackthis: Logfile of Trend Micro HijackThis v2.0.4 Scan saved at 12:15:30, on 14/08/2010 Platform: Windows XP SP3 (WinNT 5.01.2600) MSIE: Internet Explorer v8.00 (8.00.6001.18702) Boot mode: Normal Running processes: C:\WINDOWS\System32\smss.exe C:\WINDOWS\system32\winlogon.exe C:\WINDOWS\system32\services.exe C:\WINDOWS\system32\lsass.exe C:\WINDOWS\system32\Ati2evxx.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\System32\svchost.exe C:\Program Files\WIDCOMM\Bluetooth Software\bin\btwdins.exe C:\WINDOWS\system32\Ati2evxx.exe C:\WINDOWS\system32\spoolsv.exe C:\WINDOWS\system32\agrsmsvc.exe C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe C:\PROGRA~1\AVG\AVG8\avgwdsvc.exe C:\Program Files\Bonjour\mDNSResponder.exe C:\WINDOWS\system32\svchost.exe C:\Program Files\Java\jre6\bin\jqs.exe C:\WINDOWS\Explorer.EXE C:\PROGRA~1\AVG\AVG8\avgrsx.exe C:\Program Files\Fichiers communs\LightScribe\LSSrvc.exe C:\PROGRA~1\AVG\AVG8\avgnsx.exe C:\WINDOWS\System32\svchost.exe C:\Program Files\CDBurnerXP\NMSAccessU.exe C:\WINDOWS\System32\svchost.exe C:\Program Files\samsung\Samsung Network Manager\SNMWLANService.exe C:\WINDOWS\system32\svchost.exe C:\Program Files\Viewpoint\Common\ViewpointService.exe C:\PROGRA~1\AVG\AVG8\avgemc.exe C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\MOM.EXE C:\Program Files\Samsung\Samsung EDS\EDSAgent.exe C:\Program Files\AVG\AVG8\avgcsrvx.exe C:\Program Files\Synaptics\SynTP\SynTPEnh.exe C:\Program Files\Samsung\AVStation Premium 3.75\AVSAgent.exe C:\Program Files\Samsung\Samsung Battery Manager\BatteryManager.exe C:\Program Files\Samsung\Samsung Recovery Solution II\WCScheduler.exe C:\PROGRA~1\AVG\AVG8\avgtray.exe C:\Program Files\Java\jre6\bin\jusched.exe C:\Program Files\SAMSUNG\MagicKBD\MagicKBD.exe C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe C:\Program Files\SAMSUNG\MagicKBD\PerformanceManager.exe C:\Program Files\iTunes\iTunesHelper.exe C:\Program Files\Samsung\Easy Display Manager\dmhkcore.exe C:\Program Files\Le Robert\Le Grand Robert & Collins\GRCHA.exe C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe C:\Program Files\YouSendIt\Express\YouSendIt.exe C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\ccc.exe C:\Program Files\iPod\bin\iPodService.exe C:\WINDOWS\System32\svchost.exe C:\WINDOWS\system32\NOTEPAD.EXE C:\WINDOWS\system32\NOTEPAD.EXE C:\Program Files\Mozilla Firefox\firefox.exe C:\WINDOWS\system32\notepad.exe C:\Program Files\Outlook Express\msimn.exe F:\hijackthis.exe R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = MSN : Hotmail, Messenger, Actualité, Sport et Vidéo R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = Bing R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = Bing R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = MSN : Hotmail, Messenger, Actualité, Sport et Vidéo R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyServer = http=127.0.0.1:6522 R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens R3 - URLSearchHook: AVG Security Toolbar BHO - {A3BC75A2-1F87-4686-AA43-5347D756017C} - C:\Program Files\AVG\AVG8\Toolbar\IEToolbar.dll R3 - URLSearchHook: (no name) - *{CFBFAE00-17A6-11D0-99CB-00C04FD64497} - (no file) O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll O2 - BHO: Skype add-on (mastermind) - {22BF413B-C6D2-4d91-82A9-A0F997BA588C} - C:\Program Files\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll O2 - BHO: RealPlayer Download and Record Plugin for Internet Explorer - {3049C3E9-B461-4BC5-8870-4C09146192CA} - c:\program files\real\realplayer\rpbrowserrecordplugin.dll O2 - BHO: WormRadar.com IESiteBlocker.NavFilter - {3CA2F312-6F6E-4B53-A66E-4E65E497C8C0} - C:\Program Files\AVG\AVG8\avgssie.dll O2 - BHO: AVG Security Toolbar BHO - {A3BC75A2-1F87-4686-AA43-5347D756017C} - C:\Program Files\AVG\AVG8\Toolbar\IEToolbar.dll O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\5.5.5126.1836\swg.dll O2 - BHO: Interest recogniser for Crazyloader (powered by Spointer) - {C5F65718-341D-4e7d-9842-FCB9CC89527E} - C:\Program Files\CrazyLoader\spointer\extensions\crazyloader_air_ie.dll (file missing) O2 - BHO: Java Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll O2 - BHO: JQSIEStartDetectorImpl - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll O3 - Toolbar: AVG Security Toolbar - {CCC7A320-B3CA-4199-B1A6-9F516DD69829} - C:\Program Files\AVG\AVG8\Toolbar\IEToolbar.dll O3 - Toolbar: Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll O4 - HKLM\..\Run: [startCCC] C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe O4 - HKLM\..\Run: [EDS] C:\Program Files\Samsung\Samsung EDS\EDSAgent.exe O4 - HKLM\..\Run: [synTPEnh] C:\Program Files\Synaptics\SynTP\SynTPEnh.exe O4 - HKLM\..\Run: [AVStation Premium 3.75] "C:\Program Files\Samsung\AVStation Premium 3.75\AVSAgent.exe" /start O4 - HKLM\..\Run: [MagicKeyboard] C:\Program Files\SAMSUNG\MagicKBD\PreMKBD.exe O4 - HKLM\..\Run: [DMHotKey] C:\Program Files\Samsung\Easy Display Manager\DMLoader.exe O4 - HKLM\..\Run: [batteryManager] C:\Program Files\Samsung\Samsung Battery Manager\BatteryManager.exe O4 - HKLM\..\Run: [samsungWInClon] C:\Program Files\Samsung\Samsung Recovery Solution II\WCScheduler O4 - HKLM\..\Run: [sUPBackGround] C:\Program Files\Samsung\Samsung Update Plus\SUPBackGround.exe O4 - HKLM\..\Run: [AVG8_TRAY] C:\PROGRA~1\AVG\AVG8\avgtray.exe O4 - HKLM\..\Run: [sunJavaUpdateSched] "C:\Program Files\Java\jre6\bin\jusched.exe" O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe" -osboot O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe" O4 - HKLM\..\Run: [HUAWEI E620 Data Card] C:\Program Files\Kanguru\Kanguru.exe O4 - HKCU\..\Run: [GRC V2 Hyperappel] C:\Program Files\Le Robert\Le Grand Robert & Collins\GRCHA.exe O4 - HKCU\..\Run: [iMC] C:\Program Files\FriendFinder\FriendFinder Messenger 4\imc.exe O4 - HKCU\..\Run: [swg] "C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe" O4 - HKCU\..\Run: [Google Update] "C:\Documents and Settings\PhM\Local Settings\Application Data\Google\Update\GoogleUpdate.exe" /c O4 - HKCU\..\Run: [YouSendIt.exe] C:\Program Files\YouSendIt\Express\YouSendIt.exe -ui none O4 - Global Startup: WiziWYG XP Startup.lnk = C:\Program Files\Praxisoft\WiziWYG XP\WiziWYGXP.exe O8 - Extra context menu item: Add to Evernote - res://C:\Program Files\Evernote\Evernote3\enbar.dll/2000 O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office12\EXCEL.EXE/3000 O8 - Extra context menu item: Envoyer au périphérique &Bluetooth... - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie_ctx.htm O8 - Extra context menu item: Google Sidewiki... - res://C:\Program Files\Google\Google Toolbar\Component\GoogleToolbarDynamic_mui_en_89D8574934B26AC4.dll/cmsidewiki.html O9 - Extra button: Skype - {77BF5300-1474-4EC7-9980-D32B190E9B07} - C:\Program Files\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll O9 - Extra button: @btrez.dll,-4015 - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm O9 - Extra 'Tools' menuitem: @btrez.dll,-12650 - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm O9 - Extra button: Add to Evernote - {E0B8C461-F8FB-49b4-8373-FE32E9252800} - C:\Program Files\Evernote\Evernote3\enbar.dll O9 - Extra 'Tools' menuitem: Add to Evernote - {E0B8C461-F8FB-49b4-8373-FE32E9252800} - C:\Program Files\Evernote\Evernote3\enbar.dll O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe O16 - DPF: {0CCA191D-13A6-4E29-B746-314DEE697D83} (Facebook Photo Uploader 5 Control) - Page introuvable | Facebook O16 - DPF: {11260943-421B-11D0-8EAC-0000C07D88CF} (iPIX ActiveX Control) - http://www.ipix.com/download/ipixx.cab O16 - DPF: {4F1E5B1A-2A80-42CA-8532-2D05CB959537} (MSN Photo Upload Tool) - http://gfx2.hotmail.com/mail/w3/resources/MSNPUpld.cab O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} (MUWebControl Class) - http://update.microsoft.com/microsoftupdate/v6/V5Controls/en/x86/client/muweb_site.cab?1224173805345 O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab O18 - Protocol: linkscanner - {F274614C-63F8-47D5-A4D1-FBDDE494F8D1} - C:\Program Files\AVG\AVG8\avgpp.dll O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\FICHIE~1\Skype\SKYPE4~1.DLL O20 - Winlogon Notify: avgrsstarter - avgrsstx.dll (file missing) O22 - SharedTaskScheduler: Pré-chargeur Browseui - {438755C2-A8BA-11D1-B96B-00A0C90312E1} - C:\WINDOWS\system32\browseui.dll O22 - SharedTaskScheduler: Démon de cache des catégories de composant - {8C7461EF-2B13-11d2-BE35-3078302C2030} - C:\WINDOWS\system32\browseui.dll O23 - Service: Agere Modem Call Progress Audio (AgereModemAudio) - Agere Systems - C:\WINDOWS\system32\agrsmsvc.exe O23 - Service: Apple Mobile Device - Apple Inc. - C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\WINDOWS\system32\Ati2evxx.exe O23 - Service: AVG Free8 E-mail Scanner (avg8emc) - AVG Technologies CZ, s.r.o. - C:\PROGRA~1\AVG\AVG8\avgemc.exe O23 - Service: AVG Free8 WatchDog (avg8wd) - AVG Technologies CZ, s.r.o. - C:\PROGRA~1\AVG\AVG8\avgwdsvc.exe O23 - Service: Service Bonjour (Bonjour Service) - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe O23 - Service: Bluetooth Service (btwdins) - Broadcom Corporation. - C:\Program Files\WIDCOMM\Bluetooth Software\bin\btwdins.exe O23 - Service: Service d'administration du Gestionnaire de disque logique (dmadmin) - Unknown owner - C:\WINDOWS\System32\dmadmin.exe O23 - Service: Journal des événements (Eventlog) - Unknown owner - C:\WINDOWS\system32\services.exe O23 - Service: Service Google Update (gupdate) (gupdate) - Unknown owner - C:\Program Files\Google\Update\GoogleUpdate.exe O23 - Service: Google Software Updater (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe O23 - Service: Service COM de gravage de CD IMAPI (ImapiService) - Unknown owner - C:\WINDOWS\system32\imapi.exe O23 - Service: Service de l’iPod (iPod Service) - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe O23 - Service: Java Quick Starter (JavaQuickStarterService) - Sun Microsystems, Inc. - C:\Program Files\Java\jre6\bin\jqs.exe O23 - Service: LightScribeService Direct Disc Labeling Service (LightScribeService) - Hewlett-Packard Company - C:\Program Files\Fichiers communs\LightScribe\LSSrvc.exe O23 - Service: Partage de Bureau à distance NetMeeting (mnmsrvc) - Unknown owner - C:\WINDOWS\system32\mnmsrvc.exe O23 - Service: NMSAccessU - Unknown owner - C:\Program Files\CDBurnerXP\NMSAccessU.exe O23 - Service: Plug-and-Play (PlugPlay) - Unknown owner - C:\WINDOWS\system32\services.exe O23 - Service: Gestionnaire de session d'aide sur le Bureau à distance (RDSessMgr) - Unknown owner - C:\WINDOWS\system32\sessmgr.exe O23 - Service: Carte à puce (SCardSvr) - Unknown owner - C:\WINDOWS\System32\SCardSvr.exe O23 - Service: SNM WLAN Service - Unknown owner - C:\Program Files\samsung\Samsung Network Manager\SNMWLANService.exe O23 - Service: Journaux et alertes de performance (SysmonLog) - Unknown owner - C:\WINDOWS\system32\smlogsvc.exe O23 - Service: Viewpoint Service - Viewpoint Corporation - C:\Program Files\Viewpoint\Common\ViewpointService.exe O23 - Service: Cliché instantané de volume (VSS) - Unknown owner - C:\WINDOWS\System32\vssvc.exe O23 - Service: Carte de performance WMI (WmiApSrv) - Unknown owner - C:\WINDOWS\system32\wbem\wmiapsrv.exe -- End of file - 13080 bytes RAPPORT MALWARE BYTE Malwarebytes' Anti-Malware 1.46 www.malwarebytes.org Version de la base de données: 4426 Windows 5.1.2600 Service Pack 3 Internet Explorer 8.0.6001.18702 14/08/2010 10:23:58 mbam-log-2010-08-14 (10-23-58).txt Type d'examen: Examen complet (C:\|D:\|F:\|) Elément(s) analysé(s): 277641 Temps écoulé: 1 heure(s), 52 minute(s), 11 seconde(s) Processus mémoire infecté(s): 0 Module(s) mémoire infecté(s): 0 Clé(s) du Registre infectée(s): 3 Valeur(s) du Registre infectée(s): 1 Elément(s) de données du Registre infecté(s): 0 Dossier(s) infecté(s): 1 Fichier(s) infecté(s): 16 Processus mémoire infecté(s): (Aucun élément nuisible détecté) Module(s) mémoire infecté(s): (Aucun élément nuisible détecté) Clé(s) du Registre infectée(s): HKEY_CLASSES_ROOT\AppID\{84c3c236-f588-4c93-84f4-147b2abbe67b} (Adware.Adrotator) -> Quarantined and deleted successfully. HKEY_CLASSES_ROOT\AppID\{7b6a2552-e65b-4a9e-add4-c45577ffd8fd} (Adware.EZLife) -> Quarantined and deleted successfully. HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\$NtUninstallMTF1011$ (Adware.Adrotator) -> Quarantined and deleted successfully. Valeur(s) du Registre infectée(s): HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\sta (Trojan.Agent.Gen) -> Quarantined and deleted successfully. Elément(s) de données du Registre infecté(s): (Aucun élément nuisible détecté) Dossier(s) infecté(s): C:\WINDOWS\$NtUninstallMTF1011$ (Adware.Adrotator) -> Quarantined and deleted successfully. Fichier(s) infecté(s): C:\Documents and Settings\PhM\Application Data\guluvockw\saoqdblshdw.exe (Rogue.SecuritySuite) -> Quarantined and deleted successfully. C:\Documents and Settings\PhM\Local Settings\Temp\3C.tmp (Rootkit.Dropper) -> Quarantined and deleted successfully. C:\Documents and Settings\PhM\Local Settings\Temp\3D.tmp (Rootkit.Dropper) -> Quarantined and deleted successfully. C:\Documents and Settings\PhM\Local Settings\Temp\40.tmp (Rootkit.Dropper) -> Quarantined and deleted successfully. C:\Documents and Settings\PhM\Local Settings\Temp\ukdoi.exe (Adware.BHO) -> Quarantined and deleted successfully. C:\Documents and Settings\PhM\Local Settings\Temp\qgldko.exe (Rogue.SecuritySuite) -> Quarantined and deleted successfully. C:\Documents and Settings\PhM\Local Settings\Temporary Internet Files\Content.IE5\7XV6ZELU\bsvqbwql[2].htm (Rogue.SecuritySuite) -> Quarantined and deleted successfully. C:\Documents and Settings\PhM\Local Settings\Temporary Internet Files\Content.IE5\CZEALLDN\sjnvpnidk[1].htm (Malware.Packer.Gen) -> Quarantined and deleted successfully. C:\Documents and Settings\PhM\Local Settings\Temporary Internet Files\Content.IE5\DVL73S9F\sjnvpnidk[1].htm (Malware.Packer.Gen) -> Quarantined and deleted successfully. C:\Documents and Settings\PhM\Local Settings\Temporary Internet Files\Content.IE5\FRRGIRRN\aaidkfmhfa[1].htm (Adware.BHO) -> Quarantined and deleted successfully. C:\Documents and Settings\PhM\Local Settings\Temporary Internet Files\Content.IE5\ZICH6DVA\bsvqbwql[2].htm (Rogue.SecuritySuite) -> Quarantined and deleted successfully. C:\Documents and Settings\PhM\Local Settings\Temporary Internet Files\Content.IE5\ZICH6DVA\aaidkfmhfa[1].htm (Adware.BHO) -> Quarantined and deleted successfully. C:\RECYCLER\S-1-5-21-3224970799-2208403349-14268682-1007\Dc1.exe (Rogue.SecuritySuite) -> Quarantined and deleted successfully. C:\WINDOWS\system32\nhckp.exe (Trojan.Adware) -> Quarantined and deleted successfully. C:\WINDOWS\$NtUninstallMTF1011$\apUninstall.exe (Adware.Adrotator) -> Quarantined and deleted successfully. C:\WINDOWS\$NtUninstallMTF1011$\zrpt.xml (Adware.Adrotator) -> Quarantined and deleted successfully.
- le 14 août 2010
- 1 réponse
! complément au topic 178685 suite à bug

grore a répondu à un(e) sujet de grore dans Analyses et éradication malwares

Bonsoir, je tente ici de poster à nouveau les rapports SREng suite au scan de mon ordi infecté (voir mon topic 178685 "faux antivirus bloquant toutes mes applications"). J'espère ne pas provoquer à nouveau un effacement du topic... 2010-08-13,23:05:58 System Repair Engineer 2.8.2.1321 Smallfrogs (http://www.KZTechs.com) Windows XP Professional Service Pack 3 (Build 2600) - Administrative User - Completed Functions Allowed Follow item(s) have been selected: All Boot Items (Including Registry, Startup Folders, Services and so on) Browser Add-ons Running Processes (Including process model information) File Associations Winsock Provider Autorun.Inf HOSTS File Process Privileges Scan Scheduled Tasks Windows Security Update Check API HOOK Hidden Process Boot Items Registry [HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run] <GRC V2 Hyperappel><C:\Program Files\Le Robert\Le Grand Robert & Collins\GRCHA.exe> [(Verified)Bureau van Dijk Electronic Publishing] <IMC><C:\Program Files\FriendFinder\FriendFinder Messenger 4\imc.exe> [File is missing] <swg><"C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe"> [(Verified)Google Inc] <Google Update><"C:\Documents and Settings\PhM\Local Settings\Application Data\Google\Update\GoogleUpdate.exe" /c> [(Verified)Google Inc] <YouSendIt.exe><C:\Program Files\YouSendIt\Express\YouSendIt.exe -ui none> [] <ccpevjvo><C:\Documents and Settings\PhM\Application Data\guluvockw\saoqdblshdw.exe> [] [HKEY_CURRENT_USER\Software\Microsoft\Windows NT\CurrentVersion\Windows] <load><> [N/A] [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run] <StartCCC><C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe> [] <EDS><C:\Program Files\Samsung\Samsung EDS\EDSAgent.exe> [] <SynTPEnh><C:\Program Files\Synaptics\SynTP\SynTPEnh.exe> [(Verified)Microsoft Windows Hardware Compatibility Publisher] <AVStation Premium 3.75><"C:\Program Files\Samsung\AVStation Premium 3.75\AVSAgent.exe" /start> [] <MagicKeyboard><C:\Program Files\SAMSUNG\MagicKBD\PreMKBD.exe> [] <DMHotKey><C:\Program Files\Samsung\Easy Display Manager\DMLoader.exe> [sAMSUNG Electronics] <BatteryManager><C:\Program Files\Samsung\Samsung Battery Manager\BatteryManager.exe> [] <SamsungWInClon><C:\Program Files\Samsung\Samsung Recovery Solution II\WCScheduler> [File is missing] <SUPBackGround><C:\Program Files\Samsung\Samsung Update Plus\SUPBackGround.exe> [(Verified)Samsung Electronics CO., LTD.] <AVG8_TRAY><C:\PROGRA~1\AVG\AVG8\avgtray.exe> [(Verified)AVG Technologies] <SunJavaUpdateSched><"C:\Program Files\Java\jre6\bin\jusched.exe"> [(Verified)Sun Microsystems, Inc.] <Malwarebytes Anti-Malware (reboot)><"C:\Program Files\Malwarebytes' Anti-Malware\mbam.exe" /runcleanupscript> [(Verified)Malwarebytes Corporation] <TkBellExe><"C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe" -osboot> [(Verified)RealNetworks, Inc.] <QuickTime Task><"C:\Program Files\QuickTime\qttask.exe" -atboottime> [Apple Inc.] <iTunesHelper><"C:\Program Files\iTunes\iTunesHelper.exe"> [(Verified)Apple Inc.] <HUAWEI E620 Data Card><C:\Program Files\Kanguru\Kanguru.exe> [File is missing] <sta><rundll32 "ahckp.dll",,Run> [N/A] <MChk><C:\WINDOWS\system32\nhckp.exe> [] <ccpevjvo><C:\Documents and Settings\PhM\Application Data\guluvockw\saoqdblshdw.exe> [] [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows NT\CurrentVersion\Winlogon] <shell><Explorer.exe> [(Verified)Microsoft Windows Component Publisher] <Userinit><C:\WINDOWS\system32\userinit.exe,> [(Verified)Microsoft Windows Component Publisher] [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows NT\CurrentVersion\Windows] <AppInit_DLLs><> [N/A] [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows NT\CurrentVersion\Winlogon] <UIHost><logonui.exe> [(Verified)Microsoft Windows Component Publisher] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks] <{AEB6717E-7E19-11d0-97EE-00C04FD91972}><shell32.dll> [(Verified)Microsoft Windows Component Publisher] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad] <PostBootReminder><%SystemRoot%\system32\SHELL32.dll> [(Verified)Microsoft Windows Component Publisher] <CDBurn><%SystemRoot%\system32\SHELL32.dll> [(Verified)Microsoft Windows Component Publisher] <WebCheck><C:\WINDOWS\system32\webcheck.dll> [(Verified)Microsoft Windows] <SysTray><C:\WINDOWS\system32\stobject.dll> [(Verified)Microsoft Windows Component Publisher] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\avgrsstarter] <WinlogonNotify: avgrsstarter><avgrsstx.dll> [(Verified)AVG Technologies] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\crypt32chain] <WinlogonNotify: crypt32chain><crypt32.dll> [(Verified)Microsoft Windows Component Publisher] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\cryptnet] <WinlogonNotify: cryptnet><cryptnet.dll> [(Verified)Microsoft Windows Component Publisher] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\cscdll] <WinlogonNotify: cscdll><cscdll.dll> [(Verified)Microsoft Windows Component Publisher] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\dimsntfy] <WinlogonNotify: dimsntfy><%SystemRoot%\System32\dimsntfy.dll> [(Verified)Microsoft Windows Component Publisher] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\ScCertProp] <WinlogonNotify: ScCertProp><wlnotify.dll> [(Verified)Microsoft Windows Component Publisher] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\Schedule] <WinlogonNotify: Schedule><wlnotify.dll> [(Verified)Microsoft Windows Component Publisher] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\sclgntfy] <WinlogonNotify: sclgntfy><sclgntfy.dll> [(Verified)Microsoft Windows Component Publisher] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\SensLogn] <WinlogonNotify: SensLogn><WlNotify.dll> [(Verified)Microsoft Windows Component Publisher] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\termsrv] <WinlogonNotify: termsrv><wlnotify.dll> [(Verified)Microsoft Windows Component Publisher] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\wlballoon] <WinlogonNotify: wlballoon><wlnotify.dll> [(Verified)Microsoft Windows Component Publisher] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\SharedTaskScheduler] <{438755C2-A8BA-11D1-B96B-00A0C90312E1}><%SystemRoot%\system32\browseui.dll> [(Verified)Microsoft Windows Component Publisher] <{8C7461EF-2B13-11d2-BE35-3078302C2030}><%SystemRoot%\system32\browseui.dll> [(Verified)Microsoft Windows Component Publisher] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\<{12d0ed0d-0ee0-4f90-8827-78cefb8f4988}] <Mise à jour de la version d’Internet Explorer><C:\WINDOWS\system32\ieudinit.exe> [(Verified)Microsoft Windows] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\>{22d6f312-b0f6-11d0-94ab-0080c74c7e95}] <Microsoft Windows Media Player><C:\WINDOWS\inf\unregmp2.exe /ShowWMP> [(Verified)Microsoft Windows Component Publisher] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\>{26923b43-4d38-484f-9b9e-de460746276c}] <Internet Explorer><C:\WINDOWS\system32\ie4uinit.exe -UserIconConfig> [(Verified)Microsoft Windows Component Publisher] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\>{60B49E34-C7CC-11D0-8953-00A0C90347FF}] <Browser Customizations><"C:\WINDOWS\system32\rundll32.exe" "C:\WINDOWS\system32\iedkcs32.dll",BrandIEActiveSetup SIGNUP> [(Verified)Microsoft Windows Component Publisher] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\>{881dd1c5-3dcf-431b-b061-f3f88e8be88a}] <Outlook Express><%systemroot%\system32\shmgrate.exe OCInstallUserConfigOE> [File is missing] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{2C7339CF-2B09-4501-B3F3-F3508C9228ED}] <Themes Setup><%SystemRoot%\system32\regsvr32.exe /s /n /i:/UserInstall %SystemRoot%\system32\themeui.dll> [File is missing] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{44BBA840-CC51-11CF-AAFA-00AA00B6015C}] <Microsoft Outlook Express 6><"%ProgramFiles%\Outlook Express\setup50.exe" /APP:OE /CALLER:WINNT /user /install> [File is missing] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{44BBA842-CC51-11CF-AAFA-00AA00B6015B}] <NetMeeting 3.01><rundll32.exe advpack.dll,LaunchINFSection C:\WINDOWS\INF\msnetmtg.inf,NetMtg.Install.PerUser.NT> [(Verified)Microsoft Windows Component Publisher] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{5945c046-1e7d-11d1-bc44-00c04fd912be}] <Windows Messenger 4.7><rundll32.exe advpack.dll,LaunchINFSection C:\WINDOWS\INF\msmsgs.inf,BLC.QuietInstall.PerUser> [(Verified)Microsoft Windows Component Publisher] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{6BF52A52-394A-11d3-B153-00C04F79FAA6}] <Microsoft Windows Media Player><rundll32.exe advpack.dll,LaunchINFSection C:\WINDOWS\INF\wmp10.inf,PerUserStub> [(Verified)Microsoft Windows Component Publisher] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{7790769C-0471-11d2-AF11-00C04FA35D02}] <Carnet d'adresses 6><"%ProgramFiles%\Outlook Express\setup50.exe" /APP:WAB /CALLER:WINNT /user /install> [File is missing] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{89820200-ECBD-11cf-8B85-00AA005B4340}] <Mise à jour du Bureau Windows><regsvr32.exe /s /n /i:U shell32.dll> [(Verified)Microsoft Windows Component Publisher] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{89820200-ECBD-11cf-8B85-00AA005B4383}] <Internet Explorer><C:\WINDOWS\system32\ie4uinit.exe -BaseSettings> [(Verified)Microsoft Windows Component Publisher] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{89B4C1CD-B018-4511-B0A1-5476DBF70820}] <N/A><C:\WINDOWS\system32\Rundll32.exe C:\WINDOWS\system32\mscories.dll,Install> [(Verified)Microsoft Corporation] ================================== Startup Folders [WiziWYG XP Startup] <C:\Documents and Settings\All Users\Menu Démarrer\Programmes\Démarrage\WiziWYG XP Startup.lnk --> C:\PROGRA~1\PRAXIS~1\WIZIWY~1\WIZIWY~1.EXE [Praxisoft LLC]><N> ================================== Services [Agere Modem Call Progress Audio / AgereModemAudio][Running/Auto Start] <C:\WINDOWS\system32\agrsmsvc.exe><Agere Systems> [Apple Mobile Device / Apple Mobile Device][Running/Auto Start] <"C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe"><Apple Inc.> [Ati HotKey Poller / Ati HotKey Poller][Running/Auto Start] <C:\WINDOWS\system32\Ati2evxx.exe><ATI Technologies Inc.> [AVG Free8 E-mail Scanner / avg8emc][Running/Auto Start] <C:\PROGRA~1\AVG\AVG8\avgemc.exe><AVG Technologies CZ, s.r.o.> [AVG Free8 WatchDog / avg8wd][Running/Auto Start] <C:\PROGRA~1\AVG\AVG8\avgwdsvc.exe><AVG Technologies CZ, s.r.o.> [service Bonjour / Bonjour Service][Running/Auto Start] <"C:\Program Files\Bonjour\mDNSResponder.exe"><Apple Inc.> [bluetooth Service / btwdins][Running/Auto Start] <C:\Program Files\WIDCOMM\Bluetooth Software\bin\btwdins.exe><Broadcom Corporation.> [service Google Update (gupdate) / gupdate][stopped/Auto Start] <"C:\Program Files\Google\Update\GoogleUpdate.exe" /svc><Google Inc.> [Google Software Updater / gusvc][stopped/Auto Start] <"C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe"><Google> [Accès du périphérique d'interface utilisateur / HidServ][stopped/Disabled] <C:\WINDOWS\System32\svchost.exe -k netsvcs-->%SystemRoot%\System32\hidserv.dll><N/A> [hpqcxs08 / hpqcxs08][Running/Manual Start] <C:\WINDOWS\system32\svchost.exe -k hpdevmgmt-->C:\Program Files\HP\Digital Imaging\bin\hpqcxs08.dll><Hewlett-Packard Co.> [service HP CUE DeviceDiscovery / hpqddsvc][Running/Auto Start] <C:\WINDOWS\system32\svchost.exe -k hpdevmgmt-->C:\Program Files\HP\Digital Imaging\bin\hpqddsvc.dll><Hewlett-Packard Co.> [service de l’iPod / iPod Service][Running/Manual Start] <"C:\Program Files\iPod\bin\iPodService.exe"><Apple Inc.> [Java Quick Starter / JavaQuickStarterService][Running/Auto Start] <"C:\Program Files\Java\jre6\bin\jqs.exe" -service -config "C:\Program Files\Java\jre6\lib\deploy\jqs\jqs.conf"><Sun Microsystems, Inc.> [LightScribeService Direct Disc Labeling Service / LightScribeService][Running/Auto Start] <"C:\Program Files\Fichiers communs\LightScribe\LSSrvc.exe"><Hewlett-Packard Company> [Net Driver HPZ12 / Net Driver HPZ12][Running/Auto Start] <C:\WINDOWS\System32\svchost.exe -k HPZ12-->C:\WINDOWS\system32\HPZinw12.dll><Hewlett-Packard> [NMSAccessU / NMSAccessU][Running/Auto Start] <C:\Program Files\CDBurnerXP\NMSAccessU.exe><N/A> [Pml Driver HPZ12 / Pml Driver HPZ12][Running/Auto Start] <C:\WINDOWS\System32\svchost.exe -k HPZ12-->C:\WINDOWS\system32\HPZipm12.dll><Hewlett-Packard> [sNM WLAN Service / SNM WLAN Service][Running/Auto Start] <"C:\Program Files\samsung\Samsung Network Manager\SNMWLANService.exe"><N/A> [Viewpoint Service / Viewpoint Service][Running/Auto Start] <"C:\Program Files\Viewpoint\Common\ViewpointService.exe"><Viewpoint Corporation> [infrastructure de gestion Windows / winmgmt][Running/Auto Start] <C:\WINDOWS\system32\svchost.exe -k netsvcs-->%SystemRoot%\system32\wbem\WMIsvc.dll><Microsoft Corporation> [Carte de performance WMI / WmiApSrv][stopped/Manual Start] <C:\WINDOWS\system32\wbem\wmiapsrv.exe><Microsoft Corporation> ================================== Drivers [ADDMEM / ADDMEM][stopped/Manual Start] <\??\C:\DOCUME~1\PhM\LOCALS~1\Temp\__Samsung_Update\ADDMEM.SYS><N/A> [Agere Systems Soft Modem / AgereSoftModem][Running/Manual Start] <system32\DRIVERS\AGRSM.sys><Agere Systems> [ati2mtag / ati2mtag][Running/Manual Start] <system32\DRIVERS\ati2mtag.sys><ATI Technologies Inc.> [AVG Free AVI Loader Driver x86 / AvgLdx86][Running/System Start] <\SystemRoot\System32\Drivers\avgldx86.sys><AVG Technologies CZ, s.r.o.> [AVG Free On-access Scanner Minifilter Driver x86 / AvgMfx86][Running/System Start] <\SystemRoot\System32\Drivers\avgmfx86.sys><AVG Technologies CZ, s.r.o.> [AVG Free8 Network Redirector / AvgTdiX][Running/System Start] <\SystemRoot\System32\Drivers\avgtdix.sys><AVG Technologies CZ, s.r.o.> [broadcom NetXtreme Gigabit Ethernet / b57w2k][stopped/Manual Start] <system32\DRIVERS\b57xp32.sys><Broadcom Corporation> [Enumérateur de bus Bluetooth / BTKRNL][Running/Manual Start] <system32\DRIVERS\btkrnl.sys><Broadcom Corporation.> [WIDCOMM USB Bluetooth Driver / BTWUSB][Running/Manual Start] <System32\Drivers\btwusb.sys><Broadcom Corporation.> [catchme / catchme][stopped/Manual Start] <\??\C:\DOCUME~1\PhM\LOCALS~1\Temp\catchme.sys><N/A> [DNSeFilter / DNSeFilter][Running/Manual Start] <system32\drivers\SamsungEDS.sys><Samsung Electronics,.LTD> [MEMIO / DOSMEMIO][Running/Auto Start] <\??\C:\WINDOWS\system32\MEMIO.SYS><N/A> [GEAR ASPI Filter Driver / GEARAspiWDM][Running/Manual Start] <system32\DRIVERS\GEARAspiWDM.sys><GEAR Software Inc.> [ATI Function Driver for High Definition Audio Service / HdAudAddService][Running/Manual Start] <system32\drivers\AtiHdAud.sys><ATI Research Inc.> [Pilote de bus Microsoft UAA pour High Definition Audio / HDAudBus][Running/Manual Start] <system32\DRIVERS\HDAudBus.sys><Windows (R) Server 2003 DDK provider> [iEEE-1284.4 Driver HPZid412 / HPZid412][stopped/Manual Start] <system32\DRIVERS\HPZid412.sys><HP> [Print Class Driver for IEEE-1284.4 HPZipr12 / HPZipr12][stopped/Manual Start] <system32\DRIVERS\HPZipr12.sys><HP> [uSB to IEEE-1284.4 Translation Driver HPZius12 / HPZius12][stopped/Manual Start] <system32\DRIVERS\HPZius12.sys><HP> [Huawei DataCard USB Modem and USB Serial / hwdatacard][stopped/Manual Start] <system32\DRIVERS\ewusbmdm.sys><N/A> [service for Realtek HD Audio (WDM) / IntcAzAudAddService][Running/Manual Start] <system32\drivers\RtkHDAud.sys><Realtek Semiconductor Corp.> [Pilote de carte Intel(R) Wireless WiFi Link pour Windows XP 32 bits / NETw4x32][stopped/Manual Start] <system32\DRIVERS\NETw4x32.sys><Intel Corporation> [Pilote de liaison parallèle directe / Ptilink][Running/Manual Start] <system32\DRIVERS\ptilink.sys><Parallel Technologies, Inc.> [secdrv / Secdrv][stopped/Manual Start] <system32\DRIVERS\secdrv.sys><Macrovision Corporation, Macrovision Europe Limited, and Macrovision Japan and Asia K.K.> [Pilote de filtrage Sony USB (SONYPVU1) / SONYPVU1][stopped/Manual Start] <system32\DRIVERS\SONYPVU1.SYS><Sony Corporation> [sUE NDIS Protocol Driver / SUEPD][stopped/Manual Start] <system32\DRIVERS\SUE_PD.sys><Samsung> [synaptics TouchPad Driver / SynTP][Running/Manual Start] <system32\DRIVERS\SynTP.sys><Synaptics, Inc.> [Apple Mobile USB Driver / USBAAPL][stopped/Manual Start] <System32\Drivers\usbaapl.sys><Apple, Inc.> [NDIS5.1 Miniport Driver for Marvell Yukon Ethernet Controller / yukonwxp][Running/Manual Start] <system32\DRIVERS\yk51x86.sys><Marvell> ================================== Browser Add-ons [Adobe PDF Reader Link Helper] {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} <C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll, (Signed) Adobe Systems Incorporated> [skype add-on (mastermind)] {22BF413B-C6D2-4d91-82A9-A0F997BA588C} <C:\Program Files\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll, Skype Technologies S.A.> [RealPlayer Download and Record Plugin for Internet Explorer] {3049C3E9-B461-4BC5-8870-4C09146192CA} <c:\program files\real\realplayer\rpbrowserrecordplugin.dll, (Signed) RealPlayer> [AVG Safe Search] {3CA2F312-6F6E-4B53-A66E-4E65E497C8C0} <C:\Program Files\AVG\AVG8\avgssie.dll, (Signed) AVG Technologies CZ, s.r.o.> [AVG Security Toolbar BHO] {A3BC75A2-1F87-4686-AA43-5347D756017C} <C:\Program Files\AVG\AVG8\Toolbar\IEToolbar.dll, (Signed) > [Google Toolbar Helper] {AA58ED58-01DD-4d91-8333-CF10577473F7} <C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll, (Signed) Google Inc.> [Google Toolbar Notifier BHO] {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} <C:\Program Files\Google\GoogleToolbarNotifier\5.5.5126.1836\swg.dll, (Signed) Google Inc.> [interest recogniser for Crazyloader (powered by Spointer)] {C5F65718-341D-4e7d-9842-FCB9CC89527E} <C:\Program Files\CrazyLoader\spointer\extensions\crazyloader_air_ie.dll, N/A> [Java(tm) Plug-In 2 SSV Helper] {DBC80044-A445-435b-BC74-9C25C1C588A9} <C:\Program Files\Java\jre6\bin\jp2ssv.dll, (Signed) Sun Microsystems, Inc.> [JQSIEStartDetectorImpl Class] {E7E6F031-17CE-4C07-BC86-EABFE594F69C} <C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll, Sun Microsystems, Inc.> [OfferBox] {FC0D62C2-9640-4AEB-A5D5-CF25DF11FA8C} <C:\Program Files\OfferBox\OfferBoxBHO.dll, (Signed) Secure Digital Services Limited> [skype add-on (button)] {77BF5300-1474-4EC7-9980-D32B190E9B07} <C:\Program Files\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll, Skype Technologies S.A.> [@btrez.dll,-4015] {CCA281CA-C863-46ef-9331-5C8D4460577F} <, > [Evernote Web Clipper] {E0B8C461-F8FB-49b4-8373-FE32E9252800} <C:\Program Files\Evernote\Evernote3\enbar.dll, (Signed) Evernote Corporation> [] {e2e2dd38-d088-4134-82b7-f2ba38496583} <%windir%\Network Diagnostic\xpnetdiag.exe, (Signed) N/A> [Messenger] {FB5F1910-F110-11d2-BB9E-00C04F795683} <C:\Program Files\Messenger\msmsgs.exe, (Signed) Microsoft Corporation> [AVG Security Toolbar] {CCC7A320-B3CA-4199-B1A6-9F516DD69829} <C:\Program Files\AVG\AVG8\Toolbar\IEToolbar.dll, (Signed) > [Google Toolbar] {2318C2B1-4965-11d4-9B18-009027A5CD4F} <C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll, (Signed) Google Inc.> [Facebook Photo Uploader 5 Control] {0CCA191D-13A6-4E29-B746-314DEE697D83} <C:\WINDOWS\Downloaded Program Files\PhotoUploader5.ocx, (Signed) The Facebook> [iPIX ActiveX Control] {11260943-421B-11D0-8EAC-0000C07D88CF} <C:\WINDOWS\DOWNLO~1\ipixx.ocx, Internet Pictures Corp.> [shockwave ActiveX Control] {166B1BCA-3F9C-11CF-8075-444553540000} <C:\WINDOWS\system32\Adobe\Director\SwDir.dll, (Signed) Adobe Systems, Inc.> [MSN Photo Upload Tool] {4F1E5B1A-2A80-42CA-8532-2D05CB959537} <C:\WINDOWS\Downloaded Program Files\MsnPUpld.dll, (Signed) Microsoft® Corporation> [MUWebControl Class] {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} <C:\WINDOWS\system32\muweb.dll, (Signed) Microsoft Corporation> [Java Plug-in 1.6.0_16] {8AD9C840-044E-11D1-B3E9-00805F499D93} <C:\Program Files\Java\jre6\bin\jp2iexp.dll, (Signed) > [] {8FFBE65D-2C9C-4669-84BD-5829DC0B603C} <, > [Java Plug-in 1.5.0] {CAFEEFAC-0015-0000-0000-ABCDEFFEDCBA} <C:\Program Files\Java\jre6\bin\jp2iexp.dll, (Signed) > [Java Plug-in 1.6.0_07] {CAFEEFAC-0016-0000-0007-ABCDEFFEDCBA} <C:\Program Files\Java\jre6\bin\jp2iexp.dll, (Signed) > [Java Plug-in 1.6.0_16] {CAFEEFAC-0016-0000-0016-ABCDEFFEDCBA} <C:\Program Files\Java\jre6\bin\jp2iexp.dll, (Signed) > [Java Plug-in 1.6.0_16] {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} <C:\Program Files\Java\jre6\bin\npjpi160_16.dll, (Signed) Sun Microsystems, Inc.> [shockwave Flash Object] {D27CDB6E-AE6D-11CF-96B8-444553540000} <C:\WINDOWS\system32\Macromed\Flash\Flash10i.ocx, (Signed) Adobe Systems, Inc.> [Google Script Object] {00EF2092-6AC5-47C0-BD25-CF2D5D657FEB} <C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll, (Signed) Google Inc.> [QuickTime Object] {02BF25D5-8C17-4B23-BC80-D3488ABDDC6B} <C:\Program Files\QuickTime\QTPlugin.ocx, (Signed) Apple Inc.> [MetaStreamCtl Class] {03F998B2-0E00-11D3-A498-00104B6EB52E} <C:\Program Files\Viewpoint\Viewpoint Media Player\AxMetaStream.dll, (Signed) Viewpoint Corporation> [] {0468C085-CA5B-11D0-AF08-00609797F0E0} <, > [Adobe PDF Reader Link Helper] {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} <C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll, (Signed) Adobe Systems Incorporated> [] {08B0E5C0-4FCB-11CF-AAA5-00401C608501} <, > [Facebook Photo Uploader 5 Control] {0CCA191D-13A6-4E29-B746-314DEE697D83} <C:\WINDOWS\Downloaded Program Files\PhotoUploader5.ocx, (Signed) The Facebook> [PeerDraw Class] {10072CEC-8CC1-11D1-986E-00A0C955B42E} <%CommonProgramFiles%\Microsoft Shared\VGX\vgx.dll, (Signed) N/A> [iPIX ActiveX Control] {11260943-421B-11D0-8EAC-0000C07D88CF} <C:\WINDOWS\DOWNLO~1\ipixx.ocx, Internet Pictures Corp.> [PDF Document] {14E8BBD8-1D1C-4D56-A4DA-D20B75EB814E} <, > [shockwave ActiveX Control] {166B1BCA-3F9C-11CF-8075-444553540000} <C:\WINDOWS\system32\Adobe\Director\SwDir.dll, (Signed) Adobe Systems, Inc.> [Windows Genuine Advantage Validation Tool] {17492023-C23A-453E-A040-C7C580BBF700} <C:\WINDOWS\system32\legitcheckcontrol.dll, (Signed) Microsoft Corporation> [informationCardSigninHelper Class] {19916E01-B44E-4E31-94A4-4696DF46157B} <C:\WINDOWS\system32\icardie.dll, (Signed) Microsoft Corporation> [] {201F27D4-3704-41D6-89C1-AA35E39143ED} <, > [skype add-on (mastermind)] {22BF413B-C6D2-4D91-82A9-A0F997BA588C} <C:\Program Files\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll, Skype Technologies S.A.> [Windows Media Player] {22D6F312-B0F6-11D0-94AB-0080C74C7E95} <C:\WINDOWS\system32\wmpdxm.dll, (Signed) Microsoft Corporation> [Google Toolbar] {2318C2B1-4965-11D4-9B18-009027A5CD4F} <C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll, (Signed) Google Inc.> [shockwave ActiveX Control] {233C1507-6A77-46A4-9443-F871F945D258} <C:\WINDOWS\system32\Adobe\Director\swdir.dll, (Signed) Adobe Systems, Inc.> [html Document] {25336920-03F9-11CF-8FD0-00AA00686F13} <C:\WINDOWS\system32\mshtml.dll, (Signed) Microsoft Corporation> [Microsoft HTML Document 6.0] {25336921-03F9-11CF-8FD0-00AA00686F13} <C:\WINDOWS\system32\mshtml.dll, (Signed) Microsoft Corporation> [xml DOM Document] {2933BF90-7B36-11D2-B20E-00C04F983E60} <%SystemRoot%\system32\msxml3.dll, (Signed) N/A> [XSL Template] {2933BF94-7B36-11D2-B20E-00C04F983E60} <%SystemRoot%\system32\msxml3.dll, (Signed) N/A> [DHTML Edit Control Safe for Scripting for IE5] {2D360201-FFF5-11D1-8D03-00A0C959BC0A} <C:\Program Files\Fichiers communs\Microsoft Shared\Triedit\dhtmled.ocx, (Signed) Microsoft Corporation> [] {3041D03E-FD4B-44E0-B742-2D9B88305F98} <, > [RealPlayer Download and Record Plugin for Internet Explorer] {3049C3E9-B461-4BC5-8870-4C09146192CA} <c:\program files\real\realplayer\rpbrowserrecordplugin.dll, (Signed) RealPlayer> [Google Side Bar] {32004B8A-44A9-43E7-84E9-808838809519} <C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll, (Signed) Google Inc.> [Tabular Data Control] {333C7BC4-460F-11D0-BC04-0080C7055A83} <C:\WINDOWS\system32\tdc.ocx, (Signed) Microsoft Corporation> [sVG Document] {377B5106-3B4E-4A2D-8520-8767590CAC86} <C:\PROGRA~1\FICHIE~1\Adobe\SVGVIE~1.0\NPSVG3.dll, (Signed) Adobe Systems Incorporated> [iETag Factory] {38481807-CA0E-42D2-BF39-B33AF135CC4D} <C:\PROGRA~1\FICHIE~1\MICROS~1\SMARTT~1\IETAG.DLL, (Signed) Microsoft Corporation> [AVG Safe Search] {3CA2F312-6F6E-4B53-A66E-4E65E497C8C0} <C:\Program Files\AVG\AVG8\avgssie.dll, (Signed) AVG Technologies CZ, s.r.o.> [QuickTime Object] {4063BE15-3B08-470D-A0D5-B37161CFFD69} <C:\Program Files\QuickTime\QTPlugin.ocx, (Signed) Apple Inc.> [xml Document] {48123BC4-99D9-11D1-A6B3-00C04FD91555} <%SystemRoot%\system32\msxml3.dll, (Signed) N/A> [Microsoft Terminal Services Client Control (redist)] {4eb89ff4-7f78-4a0f-8b8d-2bf02e94e4b2} <%systemroot%\system32\mstscax.dll, (Signed) N/A> [Microsoft Terminal Services Client Control (redist)] {4EDCB26C-D24C-4e72-AF07-B576699AC0DE} <%systemroot%\system32\mstscax.dll, (Signed) N/A> [MSN Photo Upload Tool] {4F1E5B1A-2A80-42CA-8532-2D05CB959537} <C:\WINDOWS\Downloaded Program Files\MsnPUpld.dll, (Signed) Microsoft® Corporation> [HHCtrl Object] {52A2AAAE-085D-4187-97EA-8C30DB990436} <C:\WINDOWS\system32\hhctrl.ocx, (Signed) Microsoft Corporation> [shell Name Space] {55136805-B2DE-11D1-B9F2-00A0C98BC547} <C:\WINDOWS\system32\ieframe.dll, (Signed) Microsoft Corporation> [WUWebControl Class] {6414512B-B978-451D-A0D8-FCFDF33E833C} <C:\WINDOWS\system32\wuweb.dll, (Signed) Microsoft Corporation> [Microsoft Shell UI Helper] {64AB4BB7-111E-11D1-8F79-00C04FC2FBE1} <C:\WINDOWS\system32\ieframe.dll, (Signed) Microsoft Corporation> [Windows Media Player] {6BF52A52-394A-11D3-B153-00C04F79FAA6} <C:\WINDOWS\system32\wmp.dll, (Signed) Microsoft Corporation> [MUWebControl Class] {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} <C:\WINDOWS\system32\muweb.dll, (Signed) Microsoft Corporation> [Microsoft Terminal Services Client Control (redist)] {7390f3d8-0439-4c05-91e3-cf5cb290c3d0} <%systemroot%\system32\mstscax.dll, (Signed) N/A> [Microsoft Terminal Services Client Control (redist)] {7584c670-2274-4efb-b00b-d6aaba6d3850} <%systemroot%\system32\mstscax.dll, (Signed) N/A> [] {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} <, > [skype add-on (button)] {77BF5300-1474-4EC7-9980-D32B190E9B07} <C:\Program Files\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll, Skype Technologies S.A.> [Microsoft Web Browser] {8856F961-340A-11D0-A96B-00C04FD705A2} <C:\WINDOWS\system32\ieframe.dll, (Signed) Microsoft Corporation> [xml DOM Document 4.0] {88D969C0-F192-11D4-A65F-0040963251E5} <c:\WINDOWS\system32\msxml4.dll, (Signed) Microsoft Corporation> [Free Threaded XML DOM Document 4.0] {88D969C1-F192-11D4-A65F-0040963251E5} <c:\WINDOWS\system32\msxml4.dll, (Signed) Microsoft Corporation> [XSL Template 4.0] {88D969C3-F192-11D4-A65F-0040963251E5} <c:\WINDOWS\system32\msxml4.dll, (Signed) Microsoft Corporation> [xml HTTP 4.0] {88D969C5-F192-11D4-A65F-0040963251E5} <c:\WINDOWS\system32\msxml4.dll, (Signed) Microsoft Corporation> [xml DOM Document 5.0] {88D969E5-F192-11D4-A65F-0040963251E5} <C:\Program Files\Fichiers communs\Microsoft Shared\OFFICE11\msxml5.dll, (Signed) Microsoft Corporation> [Free Threaded XML DOM Document 5.0] {88D969E6-F192-11D4-A65F-0040963251E5} <C:\Program Files\Fichiers communs\Microsoft Shared\OFFICE11\msxml5.dll, (Signed) Microsoft Corporation> [XSL Template 5.0] {88D969E8-F192-11D4-A65F-0040963251E5} <C:\Program Files\Fichiers communs\Microsoft Shared\OFFICE11\msxml5.dll, (Signed) Microsoft Corporation> [xml HTTP 5.0] {88D969EA-F192-11D4-A65F-0040963251E5} <C:\Program Files\Fichiers communs\Microsoft Shared\OFFICE11\msxml5.dll, (Signed) Microsoft Corporation> [xml DOM Document 6.0] {88D96A05-F192-11D4-A65F-0040963251E5} <C:\WINDOWS\system32\msxml6.dll, (Signed) Microsoft Corporation> [Free Threaded XML DOM Document 6.0] {88D96A06-F192-11D4-A65F-0040963251E5} <C:\WINDOWS\system32\msxml6.dll, (Signed) Microsoft Corporation> [XSL Template 6.0] {88D96A08-F192-11D4-A65F-0040963251E5} <C:\WINDOWS\system32\msxml6.dll, (Signed) Microsoft Corporation> [xml HTTP 6.0] {88D96A0A-F192-11D4-A65F-0040963251E5} <C:\WINDOWS\system32\msxml6.dll, (Signed) Microsoft Corporation> [Java Plug-in 1.6.0_16] {8AD9C840-044E-11D1-B3E9-00805F499D93} <C:\Program Files\Java\jre6\bin\jp2iexp.dll, (Signed) > [] {8FFBE65D-2C9C-4669-84BD-5829DC0B603C} <, > [Microsoft Terminal Services Client Control (redist)] {9059f30f-4eb1-4bd2-9fdc-36f43a218f4a} <%systemroot%\system32\mstscax.dll, (Signed) N/A> [] {92780B25-18CC-41C8-B9BE-3C9C571A8263} <, > [] {9CFACCB6-2F3F-4177-94EA-0D2B72D384C1} <, > [OfficeObj10 Class] {9E30754B-29A9-41CE-8892-70E9E07D15DC} <, > [] {9E385F0A-0BA2-430C-96AA-4399C5E40F6C} <, > [] {A057A204-BACC-4D26-9990-79A187E2698E} <, > [AVG Security Toolbar BHO] {A3BC75A2-1F87-4686-AA43-5347D756017C} <C:\Program Files\AVG\AVG8\Toolbar\IEToolbar.dll, (Signed) > [Google Toolbar Helper] {AA58ED58-01DD-4D91-8333-CF10577473F7} <C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll, (Signed) Google Inc.> [Google Toolbar Notifier BHO] {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} <C:\Program Files\Google\GoogleToolbarNotifier\5.5.5126.1836\swg.dll, (Signed) Google Inc.> [] {B2E293EE-FD7E-4C71-A714-5F4750D8D7B7} <, > [Messenger Object] {B69003B3-C55E-4B48-836C-BC5946FC3B28} <C:\Program Files\Messenger\msgsc.dll, (Signed) Microsoft Corporation> [interest recogniser for Crazyloader (powered by Spointer)] {C5F65718-341D-4E7D-9842-FCB9CC89527E} <C:\Program Files\CrazyLoader\spointer\extensions\crazyloader_air_ie.dll, N/A> [] {C84D72FE-E17D-4195-BB24-76C02E2E7C4E} <, > [] {CA7C1F29-97A7-4B88-A8E1-903CB1F7909B} <, > [Adobe PDF Reader] {CA8A9780-280D-11CF-A24D-444553540000} <C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroPDF.dll, (Signed) Adobe Systems, Inc.> [Deployment Toolkit] {CAFEEFAC-DEC7-0000-0000-ABCDEFFEDCBA} <C:\WINDOWS\system32\deploytk.dll, (Signed) Sun Microsystems, Inc.> [] {CCA281CA-C863-46EF-9331-5C8D4460577F} <, > [AVG Security Toolbar] {CCC7A320-B3CA-4199-B1A6-9F516DD69829} <C:\Program Files\AVG\AVG8\Toolbar\IEToolbar.dll, (Signed) > [VIDEO__MPEG Moniker Class] {CD3AFA89-B84F-48F0-9393-7EDC34128127} <C:\WINDOWS\system32\wmp.dll, (Signed) Microsoft Corporation> [VIDEO__X_MS_ASF Moniker Class] {CD3AFA8F-B84F-48F0-9393-7EDC34128127} <C:\WINDOWS\system32\wmp.dll, (Signed) Microsoft Corporation> [VIDEO__X_MS_WMV Moniker Class] {CD3AFA94-B84F-48F0-9393-7EDC34128127} <C:\WINDOWS\system32\wmp.dll, (Signed) Microsoft Corporation> [RealPlayer G2 Control] {CFCDAA03-8BE4-11CF-B84B-0020AFBBCCFA} <C:\WINDOWS\system32\rmoc3260.dll, (Signed) RealNetworks, Inc.> [shockwave Flash Object] {D27CDB6E-AE6D-11CF-96B8-444553540000} <C:\WINDOWS\system32\Macromed\Flash\Flash10i.ocx, (Signed) Adobe Systems, Inc.> [] {D3F940EA-4E87-423B-9091-934E1E4FCEAE} <, > [iTunesDetector Class] {D719897A-B07A-4C0C-AEA9-9B663A28DFCB} <C:\Program Files\iTunes\ITDetector.ocx, (Signed) Apple Inc.> [Java(tm) Plug-In 2 SSV Helper] {DBC80044-A445-435B-BC74-9C25C1C588A9} <C:\Program Files\Java\jre6\bin\jp2ssv.dll, (Signed) Sun Microsystems, Inc.> [QuickTimeCheck Class] {DE4AF3B0-F4D4-11D3-B41A-0050DA2E6C21} <C:\Program Files\QuickTime\QTSystem\QuickTimeCheck.ocx, (Signed) Apple Inc.> [] {DFB5BCF1-06AE-4ABB-BFA8-1E228F41C50A} <, > [] {E0B8C461-F8FB-49B4-8373-FE32E9252800} <, > [] {E2E2DD38-D088-4134-82B7-F2BA38496583} <, > [] {E4FC6F3D-4042-0706-1121-CEF6563BE5F5} <, > [JQSIEStartDetectorImpl Class] {E7E6F031-17CE-4C07-BC86-EABFE594F69C} <C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll, Sun Microsystems, Inc.> [Google Update Plugin] {E9DA06F1-632C-462F-98B3-AF74B47DA727} <C:\Documents and Settings\PhM\Local Settings\Application Data\Google\Update\1.2.183.29\npGoogleOneClick8.dll, (Signed) Google Inc.> [xml HTTP Request] {ED8C108E-4349-11D2-91A4-00C04F7969E8} <%SystemRoot%\system32\msxml3.dll, (Signed) N/A> [xml DOM Document 3.0] {F5078F32-C551-11D3-89B9-0000F81FE221} <%SystemRoot%\system32\msxml3.dll, (Signed) N/A> [xml HTTP 3.0] {F5078F35-C551-11D3-89B9-0000F81FE221} <%SystemRoot%\system32\msxml3.dll, (Signed) N/A> [xml DOM Document] {F6D90F11-9C73-11D3-B32E-00C04F990BB4} <%SystemRoot%\system32\msxml3.dll, (Signed) N/A> [Free Threaded XML DOM Document] {F6D90F12-9C73-11D3-B32E-00C04F990BB4} <%SystemRoot%\system32\msxml3.dll, (Signed) N/A> [xml HTTP] {F6D90F16-9C73-11D3-B32E-00C04F990BB4} <%SystemRoot%\system32\msxml3.dll, (Signed) N/A> [] {F72841F0-4EF1-4DF5-BCE5-B3AC8ACF5478} <, > [GEPluginCoClass Object] {F9152AEC-3462-4632-8087-EEE3C3CDDA24} <C:\Program Files\Google\Google Earth\plugin\ie\5.2.0.5932\plugin_ax.dll, (Signed) Google> [] {FB5F1910-F110-11D2-BB9E-00C04F795683} <, > [OfferBox] {FC0D62C2-9640-4AEB-A5D5-CF25DF11FA8C} <C:\Program Files\OfferBox\OfferBoxBHO.dll, (Signed) Secure Digital Services Limited> [iERPCtl Class] {FDC7A535-4070-4B92-A0EA-D9994BCC0DC5} <c:\program files\real\realplayer\rpplugins\ierpplug.dll, (Signed) RealNetworks, Inc.> [Add to Evernote] <res://C:\Program Files\Evernote\Evernote3\enbar.dll/2000, N/A> [E&xporter vers Microsoft Excel] <res://C:\PROGRA~1\MICROS~2\Office12\EXCEL.EXE/3000, N/A> [Envoyer au périphérique &Bluetooth...] <C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie_ctx.htm, N/A> [Google Sidewiki...] <res://C:\Program Files\Google\Google Toolbar\Component\GoogleToolbarDynamic_mui_en_89D8574934B26AC4.dll/cmsidewiki.html, N/A> ================================== Running Processes [PID: 792 / SYSTEM][\SystemRoot\System32\smss.exe] [(Verified) Microsoft Corporation, 5.1.2600.5512 (xpsp.080413-2111)] [PID: 856 / SYSTEM][\??\C:\WINDOWS\system32\csrss.exe] [(Verified) Microsoft Corporation, 5.1.2600.5512 (xpsp.080413-2111)] [PID: 924 / SYSTEM][\??\C:\WINDOWS\system32\winlogon.exe] [(Verified) Microsoft Corporation, 5.1.2600.5512 (xpsp.080413-2113)] [C:\WINDOWS\system32\Ati2evxx.dll] [ATI Technologies Inc., 6.14.10.4163] [C:\WINDOWS\system32\avgrsstx.dll] [AVG Technologies CZ, s.r.o., 8.5.0.401] [C:\WINDOWS\system32\wbem\wbemprox.dll] [Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)] [C:\WINDOWS\system32\wbem\wbemcomn.dll] [Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)] [C:\WINDOWS\system32\wbem\wbemsvc.dll] [Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)] [PID: 968 / SYSTEM][C:\WINDOWS\system32\services.exe] [(Verified) Microsoft Corporation, 5.1.2600.5755 (xpsp_sp3_gdr.090206-1234)] [PID: 980 / SYSTEM][C:\WINDOWS\system32\lsass.exe] [(Verified) Microsoft Corporation, 5.1.2600.5512 (xpsp.080413-2113)] [PID: 1160 / SYSTEM][C:\WINDOWS\system32\Ati2evxx.exe] [ATI Technologies Inc., 6.14.10.4174] [C:\WINDOWS\system32\Ati2edxx.dll] [ATI Technologies, Inc., 6, 14, 10, 2512] [C:\WINDOWS\system32\atipdlxx.dll] [ATI Technologies, Inc., 6, 14, 10, 2522] [PID: 1176 / SYSTEM][C:\WINDOWS\system32\svchost.exe] [(Verified) Microsoft Corporation, 5.1.2600.5512 (xpsp.080413-2111)] [PID: 1268 / SERVICE RÉSEAU][C:\WINDOWS\system32\svchost.exe] [(Verified) Microsoft Corporation, 5.1.2600.5512 (xpsp.080413-2111)] [C:\Program Files\Bonjour\mdnsNSP.dll] [Apple Inc., 1,0,6,2] [PID: 1412 / SYSTEM][C:\WINDOWS\System32\svchost.exe] [(Verified) Microsoft Corporation, 5.1.2600.5512 (xpsp.080413-2111)] [c:\windows\system32\wbem\wmisvc.dll] [Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)] [C:\WINDOWS\system32\wbem\wbemcomn.dll] [Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)] [C:\WINDOWS\System32\Wbem\wbemcore.dll] [Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)] [C:\WINDOWS\System32\Wbem\esscli.dll] [Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)] [C:\WINDOWS\system32\wbem\wbemsvc.dll] [Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)] [C:\WINDOWS\system32\wbem\wmiutils.dll] [Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)] [C:\WINDOWS\system32\wbem\repdrvfs.dll] [Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)] [C:\WINDOWS\system32\wbem\wbemess.dll] [Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)] [C:\WINDOWS\system32\wbem\ncprov.dll] [Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)] [C:\Program Files\Bonjour\mdnsNSP.dll] [Apple Inc., 1,0,6,2] [C:\Program Files\AVG\AVG8\Toolbar\IEToolbar.dll] [, 3.011.025.005] [C:\WINDOWS\system32\wbem\wbemprox.dll] [Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)] [PID: 1436 / SYSTEM][C:\Program Files\WIDCOMM\Bluetooth Software\bin\btwdins.exe] [broadcom Corporation., 5.1.0.2800] [PID: 1576 / SERVICE RÉSEAU][C:\WINDOWS\system32\svchost.exe] [(Verified) Microsoft Corporation, 5.1.2600.5512 (xpsp.080413-2111)] [PID: 1628 / SERVICE LOCAL][C:\WINDOWS\system32\svchost.exe] [(Verified) Microsoft Corporation, 5.1.2600.5512 (xpsp.080413-2111)] [C:\Program Files\Bonjour\mdnsNSP.dll] [Apple Inc., 1,0,6,2] [PID: 1884 / SYSTEM][C:\WINDOWS\system32\Ati2evxx.exe] [ATI Technologies Inc., 6.14.10.4174] [C:\WINDOWS\system32\Ati2edxx.dll] [ATI Technologies, Inc., 6, 14, 10, 2512] [C:\WINDOWS\system32\atipdlxx.dll] [ATI Technologies, Inc., 6, 14, 10, 2522] [C:\WINDOWS\system32\ati2evxx.dll] [ATI Technologies Inc., 6.14.10.4163] [PID: 1928 / SYSTEM][C:\WINDOWS\system32\spoolsv.exe] [(Verified) Microsoft Corporation, 5.1.2600.5512 (xpsp.080413-0852)] [C:\WINDOWS\system32\bzpdf.dll] [bullZip, 3, 0, 0, 36] [C:\WINDOWS\system32\HpTcpMon.dll] [Hewlett Packard, 6.01.00.009] [C:\WINDOWS\system32\hpzjrd01.dll] [Hewlett Packard, 2.01.00.005] [C:\WINDOWS\system32\HPTcpMUI.dll] [Microsoft Corporation, 6.01.00.009] [C:\WINDOWS\system32\hptcpmib.dll] [Hewlett Packard, 6.01.00.009] [C:\WINDOWS\system32\hpzll5mu.dll] [Hewlett-Packard Company, 61.073.241.00] [C:\WINDOWS\system32\hpz3l054.dll] [Hewlett-Packard Company, 60.054.45.00] [C:\WINDOWS\system32\bthcrp.dll] [broadcom Corporation., 5.1.0.2800] [C:\WINDOWS\system32\WidcommSdk.dll] [broadcom Corporation., 5.1.0.2800] [C:\WINDOWS\system32\wbtapi.dll] [broadcom Corporation., 5.1.0.2800] [C:\WINDOWS\system32\SN0ELMON.dll] [sHARP CORPORATION, 1.0.1.14] [C:\WINDOWS\System32\spool\PRTPROCS\W32X86\hpzpp054.dll] [Hewlett-Packard Corporation, 60.054.45.00] [C:\WINDOWS\System32\spool\PRTPROCS\W32X86\hpzpp5mu.dll] [Hewlett-Packard Corporation, 61.073.241.00] [C:\WINDOWS\System32\spool\PRTPROCS\W32X86\LMUD064C.DLL] [Lexmark International Inc., 3.0.0.0] [C:\Program Files\Bonjour\mdnsNSP.dll] [Apple Inc., 1,0,6,2] [C:\DOCUME~1\PhM\LOCALS~1\Temp\3C.tmp] [C21 H23 NO5, 2,46,258,94] [C:\DOCUME~1\PhM\LOCALS~1\Temp\3D.tmp] [C21 H23 NO5, 2,46,258,94] [C:\DOCUME~1\PhM\LOCALS~1\Temp\40.tmp] [C21 H23 NO5, 2,46,258,94] [PID: 824 / SERVICE LOCAL][C:\WINDOWS\system32\svchost.exe] [(Verified) Microsoft Corporation, 5.1.2600.5512 (xpsp.080413-2111)] [PID: 108 / SYSTEM][C:\WINDOWS\system32\agrsmsvc.exe] [Agere Systems, 1.0.0.4] [PID: 876 / SYSTEM][C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe] [Apple Inc., 2.50.39.0] [PID: 896 / SYSTEM][C:\PROGRA~1\AVG\AVG8\avgwdsvc.exe] [AVG Technologies CZ, s.r.o., 8.5.0.401] [C:\Program Files\AVG\AVG8\avglogx.dll] [AVG Technologies CZ, s.r.o., 8.5.0.401] [C:\PROGRA~1\AVG\AVG8\avgwd.dll] [AVG Technologies CZ, s.r.o., 8.5.0.401] [C:\PROGRA~1\AVG\AVG8\avgcfgx.dll] [AVG Technologies CZ, s.r.o., 8.5.0.401] [C:\PROGRA~1\AVG\AVG8\avgamnot.dll] [AVG Technologies CZ, s.r.o., 8.5.0.401] [C:\PROGRA~1\AVG\AVG8\avgsched.dll] [AVG Technologies CZ, s.r.o., 8.5.0.401] [C:\PROGRA~1\AVG\AVG8\avgwdwsc.dll] [AVG Technologies CZ, s.r.o., 8.5.0.401] [C:\PROGRA~1\AVG\AVG8\avglngx.dll] [AVG Technologies CZ, s.r.o., 8.5.0.401] [PID: 944 / SYSTEM][C:\Program Files\Bonjour\mDNSResponder.exe] [Apple Inc., 1,0,6,2] [PID: 1676 / SYSTEM][C:\WINDOWS\system32\svchost.exe] [(Verified) Microsoft Corporation, 5.1.2600.5512 (xpsp.080413-2111)] [c:\program files\hp\digital imaging\bin\hpqddsvc.dll] [Hewlett-Packard Co., 100.0.190.000] [c:\program files\hp\digital imaging\bin\hpqddcmn.dll] [Hewlett-Packard Co., 100.0.190.000] [c:\program files\hp\digital imaging\bin\hpqcxs08.dll] [Hewlett-Packard Co., 100.0.190.000] [PID: 1704 / SYSTEM][C:\Program Files\Java\jre6\bin\jqs.exe] [sun Microsystems, Inc., 6.0.160.1] [C:\Program Files\Java\jre6\bin\MSVCR71.dll] [Microsoft Corporation, 7.10.3052.4] [C:\WINDOWS\system32\wbem\wmiaprpl.dll] [Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)] [C:\WINDOWS\system32\wbem\wbemcomn.dll] [Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)] [PID: 236 / SYSTEM][C:\Program Files\Fichiers communs\LightScribe\LSSrvc.exe] [Hewlett-Packard Company, 1.4.105.1] [C:\Program Files\Fichiers communs\LightScribe\LSSProxy.dll] [Hewlett-Packard Company, 1.4.105.1] [C:\Program Files\Fichiers communs\LightScribe\LSLog.dll] [Hewlett-Packard Company, 1.4.105.1] [PID: 1836 / SERVICE LOCAL][C:\WINDOWS\System32\svchost.exe] [(Verified) Microsoft Corporation, 5.1.2600.5512 (xpsp.080413-2111)] [c:\windows\system32\hpzinw12.dll] [Hewlett-Packard, 12,1,1,54] [PID: 552 / SYSTEM][C:\Program Files\CDBurnerXP\NMSAccessU.exe] [N/A, ] [PID: 556 / SERVICE LOCAL][C:\WINDOWS\System32\svchost.exe] [(Verified) Microsoft Corporation, 5.1.2600.5512 (xpsp.080413-2111)] [c:\windows\system32\hpzipm12.dll] [Hewlett-Packard, 12,1,1,54] [PID: 584 / SYSTEM][C:\PROGRA~1\AVG\AVG8\avgrsx.exe] [AVG Technologies CZ, s.r.o., 8.5.0.401] [C:\Program Files\AVG\AVG8\avglogx.dll] [AVG Technologies CZ, s.r.o., 8.5.0.401] [C:\PROGRA~1\AVG\AVG8\avgcorex.dll] [AVG Technologies CZ, s.r.o., 8.5.0.440] [C:\PROGRA~1\AVG\AVG8\avgcrlpx.dll] [AVG Technologies CZ, s.r.o., 8.5.0.401] [PID: 612 / SYSTEM][C:\Program Files\samsung\Samsung Network Manager\SNMWLANService.exe] [N/A, ] [C:\Program Files\samsung\Samsung Network Manager\SNMCoreDll.dll] [N/A, ] [PID: 1256 / SYSTEM][C:\WINDOWS\system32\svchost.exe] [(Verified) Microsoft Corporation, 5.1.2600.5512 (xpsp.080413-2111)] [PID: 1348 / SERVICE LOCAL][C:\WINDOWS\system32\wdfmgr.exe] [Microsoft Corporation, 5.2.3790.1230 built by: DNSRV(bld4act)] [PID: 1564 / SYSTEM][C:\Program Files\Viewpoint\Common\ViewpointService.exe] [Viewpoint Corporation, 3, 6, 0, 59] [PID: 1804 / SYSTEM][C:\PROGRA~1\AVG\AVG8\avgemc.exe] [AVG Technologies CZ, s.r.o., 8.5.0.401] [C:\PROGRA~1\AVG\AVG8\libsasl.dll] [AVG Technologies CZ, s.r.o., 8.5.0.401] [C:\Program Files\AVG\AVG8\avglogx.dll] [AVG Technologies CZ, s.r.o., 8.5.0.401] [C:\Program Files\AVG\AVG8\avgapix.dll] [AVG Technologies CZ, s.r.o., 8.5.0.401] [C:\Program Files\AVG\AVG8\avgcfgx.dll] [AVG Technologies CZ, s.r.o., 8.5.0.401] [C:\Program Files\AVG\AVG8\avglngx.dll] [AVG Technologies CZ, s.r.o., 8.5.0.401] [C:\Program Files\AVG\AVG8\avgscanx.dll] [AVG Technologies CZ, s.r.o., 8.5.0.431] [C:\Program Files\AVG\AVG8\avgsrmx.dll] [AVG Technologies CZ, s.r.o., 8.5.0.427] [C:\Program Files\AVG\AVG8\avgvvx.dll] [AVG Technologies CZ, s.r.o., 8.5.0.401] [C:\Program Files\AVG\AVG8\avgmvflx.dll] [AVG Technologies CZ, s.r.o., 8.5.0.401] [C:\Program Files\AVG\AVG8\avgcclix.dll] [AVG Technologies CZ, s.r.o., 8.5.0.401] [C:\PROGRA~1\AVG\AVG8\saslcrammd5.dll] [AVG Technologies CZ, s.r.o., 8.5.0.401] [C:\PROGRA~1\AVG\AVG8\sasldigestmd5.dll] [AVG Technologies CZ, s.r.o., 8.5.0.401] [C:\PROGRA~1\AVG\AVG8\sasllogin.dll] [AVG Technologies CZ, s.r.o., 8.5.0.401] [C:\PROGRA~1\AVG\AVG8\saslplain.dll] [AVG Technologies CZ, s.r.o., 8.5.0.401] [C:\Program Files\Bonjour\mdnsNSP.dll] [Apple Inc., 1,0,6,2] [C:\PROGRA~1\AVG\AVG8\avgmail.dll] [AVG Technologies CZ, s.r.o., 8.5.0.401] [PID: 2332 / SYSTEM][C:\Program Files\AVG\AVG8\avgcsrvx.exe] [AVG Technologies CZ, s.r.o., 8.5.0.401] [C:\Program Files\AVG\AVG8\avglogx.dll] [AVG Technologies CZ, s.r.o., 8.5.0.401] [C:\Program Files\AVG\AVG8\avgcorex.dll] [AVG Technologies CZ, s.r.o., 8.5.0.440] [C:\Program Files\AVG\AVG8\avgcrlpx.dll] [AVG Technologies CZ, s.r.o., 8.5.0.401] [PID: 2544 / PhM][C:\WINDOWS\Explorer.EXE] [(Verified) Microsoft Corporation, 6.00.2900.5512 (xpsp.080413-2105)] [C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll] [Adobe Systems Incorporated, 7.0.7.2006011200] [C:\WINDOWS\system32\MSVCR71.dll] [Microsoft Corporation, 7.10.3052.4] [C:\Program Files\OpenOffice.org 3\Basis\program\shlxthdl\shlxthdl.dll] [sun Microsystems, Inc., 3.01] [C:\Program Files\OpenOffice.org 3\Basis\program\shlxthdl\stlport_vc7145.dll] [sTLport Consulting, Inc., 4.5.2003.0120] [C:\Program Files\Adobe\Acrobat 7.0\ActiveX\PDFShell.dll] [Adobe Systems, Inc., 7.0.0.0] [C:\Program Files\Bonjour\mdnsNSP.dll] [Apple Inc., 1,0,6,2] [C:\WINDOWS\system32\btncopy.dll] [broadcom Corporation., 5.1.0.2800] [C:\Program Files\YouSendIt\Express\version2\YsiExt.dll] [YouSendIt.com, 1.7.0] [C:\Program Files\Malwarebytes' Anti-Malware\mbamext.dll] [Malwarebytes Corporation, 1, 2, 0, 0] [C:\Program Files\AVG\AVG8\avgse.dll] [AVG Technologies CZ, s.r.o., 8.5.0.401] [C:\Program Files\7-Zip\7-zip.dll] [igor Pavlov, 4.65] [C:\WINDOWS\system32\l3codeca.acm] [Fraunhofer Institut Integrierte Schaltungen IIS, 1, 9, 0, 0306] [C:\Program Files\PPTminimizer\PPTMShell.dll] [N/A, ] [PID: 2820 / PhM][C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\MOM.EXE] [Advanced Micro Devices Inc., 2.0.0.0] [C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\mscorlib\7bffd7ff2009f421fe5d229927588496\mscorlib.ni.dll] [Microsoft Corporation, 2.0.50727.3615 (GDR.050727-3600)] [C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\System\08ffa4d388d5f007869aa7651c458e7c\System.ni.dll] [Microsoft Corporation, 2.0.50727.3614 (GDR.050727-3600)] [C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\System.Drawing\dcc0244092fe52e6885b50be25ef3b31\System.Drawing.ni.dll] [Microsoft Corporation, 2.0.50727.3053 (netfxsp.050727-3000)] [C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\System.Windows.Forms\439c466b60614915587c5273eaf0ca7f\System.Windows.Forms.ni.dll] [Microsoft Corporation, 2.0.50727.3053 (netfxsp.050727-3000)] [C:\WINDOWS\assembly\GAC_MSIL\MOM.Implementation\2.0.2789.41336__90ba9c70f846762e\MOM.Implementation.dll] [Advanced Micro Devices Inc., 2.0.2789.41336] [C:\WINDOWS\assembly\GAC_MSIL\LOG.Foundation\2.0.2729.30174__90ba9c70f846762e\LOG.Foundation.dll] [ATI Technologies Inc., 2.0.2729.30174] [C:\WINDOWS\assembly\GAC_MSIL\LOG.Foundation.Private\2.0.2729.30188__90ba9c70f846762e\LOG.Foundation.Private.dll] [ATI Technologies Inc., 2.0.2729.30188] [C:\WINDOWS\assembly\GAC_MSIL\LOG.Foundation.Implementation\2.0.2789.41333__90ba9c70f846762e\LOG.Foundation.Implementation.dll] [ATI Technologies Inc., 2.0.2789.41333] [C:\WINDOWS\assembly\GAC_MSIL\MOM.Foundation\2.0.2729.30207__90ba9c70f846762e\MOM.Foundation.dll] [Advanced Micro Devices Inc., 2.0.2729.30207] [C:\WINDOWS\assembly\GAC_MSIL\LOG.Foundation.Implementation.Private\2.0.2729.30211__90ba9c70f846762e\LOG.Foundation.Implementation.Private.dll] [ATI Technologies Inc., 2.0.2729.30211] [C:\WINDOWS\assembly\GAC_MSIL\System.Runtime.Remoting\2.0.0.0__b77a5c561934e089\System.Runtime.Remoting.dll] [Microsoft Corporation, 2.0.50727.3053 (netfxsp.050727-3000)] [C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\System.Web\411a627d6f5cb83509332253406988e5\System.Web.ni.dll] [Microsoft Corporation, 2.0.50727.3614 (GDR.050727-3600)] [C:\WINDOWS\assembly\GAC_MSIL\AEM.Server\2.0.2789.41007__90ba9c70f846762e\AEM.Server.dll] [ATI Technologies Inc., 2.0.2789.41007] [C:\WINDOWS\assembly\GAC_MSIL\NEWAEM.Foundation\2.0.2729.30184__90ba9c70f846762e\NEWAEM.Foundation.dll] [ATI Technologies Inc., 2.0.2729.30184] [PID: 2844 / PhM][C:\Program Files\Synaptics\SynTP\SynTPEnh.exe] [synaptics, Inc., 8.2.5.1 07Dec05] [C:\WINDOWS\system32\SynCOM.dll] [synaptics, Inc., 8.2.5.1 07Dec05] [C:\WINDOWS\system32\SynTPAPI.dll] [synaptics, Inc., 8.2.5.1 07Dec05] [PID: 2876 / PhM][C:\Program Files\Samsung\Samsung Battery Manager\BatteryManager.exe] [, 2, 1, 3, 7] [C:\Program Files\Samsung\Samsung Battery Manager\SABI2.dll] [sAMSUNG Electronics, 2, 0, 0, 0] [PID: 3028 / PhM][C:\Program Files\iTunes\iTunesHelper.exe] [Apple Inc., 9.0.2.25] [C:\Program Files\iTunes\iTunesHelper.dll] [Apple Inc., 9.0.2.25] [C:\Program Files\Fichiers communs\Apple\Apple Application Support\CoreFoundation.dll] [Apple Inc., 1, 544, 16, 0] [C:\Program Files\Fichiers communs\Apple\Apple Application Support\pthreadVC2.dll] [Open Source Software community project, 2, 7, 0, 11200] [C:\Program Files\Fichiers communs\Apple\Apple Application Support\objc.dll] [N/A, ] [C:\Program Files\Fichiers communs\Apple\Apple Application Support\icuin40.dll] [iBM Corporation and others, 4, 0, 0, 32] [C:\Program Files\Fichiers communs\Apple\Apple Application Support\icuuc40.dll] [iBM Corporation and others, 4, 0, 0, 32] [C:\Program Files\Fichiers communs\Apple\Apple Application Support\icudt40.dll] [iBM Corporation and others, 4, 0, 0, 32] [C:\Program Files\Fichiers communs\Apple\Apple Application Support\ASL.dll] [N/A, ] [C:\Program Files\iTunes\iTunesHelper.Resources\fr.lproj\iTunesHelperLocalized.DLL] [Apple Inc., 9.0.2.7] [C:\Program Files\iTunes\iTunesHelper.Resources\iTunesHelper.DLL] [Apple Inc., 9.0.2.25] [C:\Program Files\QuickTime\QTSystem\QuickTime.qts] [Apple Inc., 7.6.4 (1327.73)] [C:\Program Files\QuickTime\QTSystem\QTCF.dll] [N/A, ] [C:\Program Files\Fichiers communs\Apple\Apple Application Support\CFNetwork.dll] [Apple, Inc., 1, 450, 5, 0] [C:\Program Files\Fichiers communs\Apple\Apple Application Support\SQLite3.dll] [Apple Inc., 3.6.12 (74.2)] [C:\Program Files\Fichiers communs\Apple\Apple Application Support\zlib1.dll] [, 1.2.3] [C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\iTunesMobileDevice.dll] [Apple Inc., 238.9.0.1] [PID: 3036 / PhM][C:\Program Files\Le Robert\Le Grand Robert & Collins\GRCHA.exe] [Dictionnaire Le Robert, 1.0.0.0] [C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\mscorlib\7bffd7ff2009f421fe5d229927588496\mscorlib.ni.dll] [Microsoft Corporation, 2.0.50727.3615 (GDR.050727-3600)] [C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\System\08ffa4d388d5f007869aa7651c458e7c\System.ni.dll] [Microsoft Corporation, 2.0.50727.3614 (GDR.050727-3600)] [C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\System.Drawing\dcc0244092fe52e6885b50be25ef3b31\System.Drawing.ni.dll] [Microsoft Corporation, 2.0.50727.3053 (netfxsp.050727-3000)] [C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\System.Windows.Forms\439c466b60614915587c5273eaf0ca7f\System.Windows.Forms.ni.dll] [Microsoft Corporation, 2.0.50727.3053 (netfxsp.050727-3000)] [C:\WINDOWS\assembly\GAC_MSIL\System.Runtime.Remoting\2.0.0.0__b77a5c561934e089\System.Runtime.Remoting.dll] [Microsoft Corporation, 2.0.50727.3053 (netfxsp.050727-3000)] [C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\System.Configuration\ab688d0f9f333ba117832726bfb589c1\System.Configuration.ni.dll] [Microsoft Corporation, 2.0.50727.3053 (netfxsp.050727-3000)] [C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\System.Xml\a6dbe24cbfe3ab6b318ed3095cc572d8\System.Xml.ni.dll] [Microsoft Corporation, 2.0.50727.3082 (QFE.050727-3000)] [C:\Program Files\Bonjour\mdnsNSP.dll] [Apple Inc., 1,0,6,2] [PID: 3044 / PhM][C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe] [Google Inc., 4, 1, 509, 1944] [C:\Program Files\Google\GoogleToolbarNotifier\5.5.5126.1836\gtn.dll] [Google Inc., 5, 5, 5126, 1836] [C:\Program Files\Google\GoogleToolbarNotifier\5.5.5126.1836\swg.dll] [Google Inc., 5, 5, 5126, 1836] [C:\Program Files\Bonjour\mdnsNSP.dll] [Apple Inc., 1,0,6,2] [PID: 3120 / PhM][C:\Program Files\YouSendIt\Express\YouSendIt.exe] [N/A, ] [C:\Program Files\YouSendIt\Express\version2\YsiWindows.dll] [YouSendIt.com, 2.6.0] [C:\Program Files\Bonjour\mdnsNSP.dll] [Apple Inc., 1,0,6,2] [PID: 3140 / PhM][C:\Program Files\Samsung\Easy Display Manager\dmhkcore.exe] [sAMSUNG Electronics, 2, 1, 5, 3] [C:\Program Files\Samsung\Easy Display Manager\HookDllPS2.dll] [N/A, ] [C:\Program Files\Samsung\Easy Display Manager\SABI_xp.dll] [samsung Electronics, 1, 2, 0, 0] [C:\WINDOWS\system32\wbem\wbemprox.dll] [Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)] [C:\WINDOWS\system32\wbem\wbemcomn.dll] [Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)] [C:\WINDOWS\system32\wbem\wbemsvc.dll] [Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)] [C:\WINDOWS\system32\atipdlxx.dll] [ATI Technologies, Inc., 6, 14, 10, 2522] [C:\Program Files\Samsung\Easy Display Manager\WinMove.dll] [, 0, 0, 0, 1] [PID: 3468 / PhM][C:\Program Files\SAMSUNG\MagicKBD\MagicKBD.exe] [sAMSUNG Electronics Co., Ltd., 7, 0, 1, 2] [C:\Program Files\SAMSUNG\MagicKBD\EasyBoxDll.dll] [, 1, 4, 0, 0] [C:\Program Files\SAMSUNG\MagicKBD\SITSndMx.DLL] [sAMSUNG Electronics Co., Ltd., 1, 0, 0, 3] [C:\Program Files\SAMSUNG\MagicKBD\SITKbdHk.DLL] [sAMSUNG Electronics Co., Ltd., 1, 0, 0, 21] [C:\Program Files\SAMSUNG\MagicKBD\KbdHID9x.DLL] [sAMSUNG Electronics Co., Ltd., 1, 0, 0, 13] [PID: 3480 / PhM][C:\Program Files\SAMSUNG\MagicKBD\PerformanceManager.exe] [samsung Electronics Co. Ltd., 1.0.1.8] [C:\Program Files\SAMSUNG\MagicKBD\SABI2.dll] [sAMSUNG Electronics, 2, 0, 0, 0] [PID: 4060 / PhM][C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\ccc.exe] [ATI Technologies Inc., 2.0.0.0] [C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\mscorlib\7bffd7ff2009f421fe5d229927588496\mscorlib.ni.dll] [Microsoft Corporation, 2.0.50727.3615 (GDR.050727-3600)] [C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\System\08ffa4d388d5f007869aa7651c458e7c\System.ni.dll] [Microsoft Corporation, 2.0.50727.3614 (GDR.050727-3600)] [C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\System.Drawing\dcc0244092fe52e6885b50be25ef3b31\System.Drawing.ni.dll] [Microsoft Corporation, 2.0.50727.3053 (netfxsp.050727-3000)] [C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\System.Windows.Forms\439c466b60614915587c5273eaf0ca7f\System.Windows.Forms.ni.dll] [Microsoft Corporation, 2.0.50727.3053 (netfxsp.050727-3000)] [C:\WINDOWS\assembly\GAC_MSIL\CCC.Implementation\2.0.2789.41335__90ba9c70f846762e\CCC.Implementation.dll] [ATI Technologies Inc., 2.0.2789.41335] [C:\WINDOWS\assembly\GAC_MSIL\LOG.Foundation\2.0.2729.30174__90ba9c70f846762e\LOG.Foundation.dll] [ATI Technologies Inc., 2.0.2729.30174] [C:\WINDOWS\assembly\GAC_MSIL\MOM.Foundation\2.0.2729.30207__90ba9c70f846762e\MOM.Foundation.dll] [Advanced Micro Devices Inc., 2.0.2729.30207] [C:\WINDOWS\assembly\GAC_MSIL\CLI.Foundation\2.0.2729.30178__90ba9c70f846762e\CLI.Foundation.dll] [ATI Technologies Inc., 2.0.2729.30178] [C:\WINDOWS\assembly\GAC_MSIL\LOG.Foundation.Implementation.Private\2.0.2729.30211__90ba9c70f846762e\LOG.Foundation.Implementation.Private.dll] [ATI Technologies Inc., 2.0.2729.30211] [C:\WINDOWS\assembly\GAC_MSIL\LOG.Foundation.Implementation\2.0.2789.41333__90ba9c70f846762e\LOG.Foundation.Implementation.dll] [ATI Technologies Inc., 2.0.2789.41333] [C:\WINDOWS\assembly\GAC_MSIL\System.Runtime.Remoting\2.0.0.0__b77a5c561934e089\System.Runtime.Remoting.dll] [Microsoft Corporation, 2.0.50727.3053 (netfxsp.050727-3000)] [C:\WINDOWS\assembly\GAC_MSIL\LOG.Foundation.Private\2.0.2729.30188__90ba9c70f846762e\LOG.Foundation.Private.dll] [ATI Technologies Inc., 2.0.2729.30188] [C:\WINDOWS\assembly\GAC_MSIL\MOM.Implementation\2.0.2789.41336__90ba9c70f846762e\MOM.Implementation.dll] [Advanced Micro Devices Inc., 2.0.2789.41336] [C:\WINDOWS\assembly\GAC_MSIL\CLI.Foundation.XManifest\2.0.2729.30313__90ba9c70f846762e\CLI.Foundation.XManifest.dll] [ATI Technologies Inc., 2.0.2729.30313] [C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\System.Xml\a6dbe24cbfe3ab6b318ed3095cc572d8\System.Xml.ni.dll] [Microsoft Corporation, 2.0.50727.3082 (QFE.050727-3000)] [C:\WINDOWS\assembly\GAC_MSIL\CLI.Component.Runtime\2.0.2789.41010__90ba9c70f846762e\CLI.Component.Runtime.dll] [Advanced Micro Devices, Inc., 2.0.2789.41010] [C:\WINDOWS\assembly\GAC_MSIL\CLI.Component.Runtime.Shared.Private\2.0.2729.30209__90ba9c70f846762e\CLI.Component.Runtime.Shared.Private.dll] [ATI Technologies Inc., 2.0.2729.30209] [C:\WINDOWS\assembly\GAC_MSIL\CLI.Foundation.Private\2.0.2729.30193__90ba9c70f846762e\CLI.Foundation.Private.dll] [ATI Technologies Inc., 2.0.2729.30193] [C:\WINDOWS\assembly\GAC_MSIL\CLI.Component.Runtime.Shared\2.0.2729.30203__90ba9c70f846762e\CLI.Component.Runtime.Shared.dll] [ATI Technologies Inc., 2.0.2729.30203] [C:\WINDOWS\assembly\GAC_MSIL\ATICCCom\2.0.0.0__90ba9c70f846762e\ATICCCom.dll] [ATI Technologies Inc., 2.0.0.0] [C:\WINDOWS\assembly\GAC_MSIL\AEM.Server\2.0.2789.41007__90ba9c70f846762e\AEM.Server.dll] [ATI Technologies Inc., 2.0.2789.41007] [C:\WINDOWS\assembly\GAC_MSIL\NEWAEM.Foundation\2.0.2729.30184__90ba9c70f846762e\NEWAEM.Foundation.dll] [ATI Technologies Inc., 2.0.2729.30184] [C:\WINDOWS\assembly\GAC_MSIL\CLI.Component.Runtime.Extension.EEU\2.0.2789.41007__90ba9c70f846762e\CLI.Component.Runtime.Extension.EEU.dll] [ATI Technologies Inc., 2.0.2789.41007] [C:\WINDOWS\assembly\GAC_MSIL\AEM.Foundation\2.0.2729.30176__90ba9c70f846762e\AEM.Foundation.dll] [ATI Technologies Inc., 2.0.2729.30176] [C:\WINDOWS\assembly\GAC_MSIL\AEM.Plugin.EEU.Shared\2.0.2729.30212__90ba9c70f846762e\AEM.Plugin.EEU.Shared.dll] [ATI Technologies Inc., 2.0.2729.30212] [C:\WINDOWS\assembly\GAC_MSIL\AEM.Server.Shared\2.0.2729.30201__90ba9c70f846762e\AEM.Server.Shared.dll] [ATI Technologies Inc., 2.0.2729.30201] [C:\WINDOWS\assembly\GAC_MSIL\AEM.Plugin.Source.Kit.Server\2.0.2789.41391__90ba9c70f846762e\AEM.Plugin.Source.Kit.Server.dll] [ATI Technologies Inc., 2.0.2789.41391] [C:\WINDOWS\assembly\GAC_MSIL\AEM.Plugin.DPPE.Shared\2.0.2729.30222__90ba9c70f846762e\AEM.Plugin.DPPE.Shared.dll] [ATI Technologies Inc., 2.0.2729.30222] [C:\WINDOWS\assembly\GAC_MSIL\AEM.Plugin.Hotkeys.Shared\2.0.2729.30202__90ba9c70f846762e\AEM.Plugin.Hotkeys.Shared.dll] [ATI Technologies Inc., 2.0.2729.30202] [C:\WINDOWS\assembly\GAC_MSIL\DEM.Graphics.I0601\2.0.2573.17685__90ba9c70f846762e\DEM.Graphics.I0601.dll] [ATI Technologies Inc., 2.0.2573.17685] [C:\WINDOWS\assembly\GAC_MSIL\DEM.Foundation\2.0.2573.17684__90ba9c70f846762e\DEM.Foundation.dll] [ATI Technologies Inc., 2.0.2573.17684] [C:\WINDOWS\assembly\GAC_MSIL\DEM.Graphics\2.0.2729.30256__90ba9c70f846762e\DEM.Graphics.dll] [ATI Technologies Inc., 2.0.2729.30256] [C:\WINDOWS\system32\ATIDEMGX.dll] [Advanced Micro Devices, Inc., 2.0.2789.41605] [C:\WINDOWS\assembly\GAC_MSIL\System.Management\2.0.0.0__b03f5f7f11d50a3a\System.Management.dll] [Microsoft Corporation, 2.0.50727.3053 (netfxsp.050727-3000)] [C:\WINDOWS\system32\wbem\wmiutils.dll] [Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)] [C:\WINDOWS\system32\wbem\wbemprox.dll] [Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)] [C:\WINDOWS\system32\wbem\wbemcomn.dll] [Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)] [C:\WINDOWS\system32\wbem\wbemsvc.dll] [Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)] [C:\WINDOWS\assembly\GAC_MSIL\CLI.Caste.Graphics.Runtime\2.0.2789.41019__90ba9c70f846762e\CLI.Caste.Graphics.Runtime.dll] [Advanced Mirco Devices, Inc., 2.0.2789.41019] [C:\WINDOWS\assembly\GAC_MSIL\CLI.Caste.Graphics.Shared\2.0.2729.30199__90ba9c70f846762e\CLI.Caste.Graphics.Shared.dll] [Advanced Mirco Devices, Inc., 2.0.2729.30199] [C:\WINDOWS\assembly\GAC_MSIL\ACE.Graphics.DisplaysManager.Shared\2.0.2573.17685__90ba9c70f846762e\ACE.Graphics.DisplaysManager.Shared.dll] [ATI Technologies Inc., 2.0.2573.17685] [C:\WINDOWS\assembly\GAC_MSIL\DEM.OS.I0602\2.0.2729.30259__90ba9c70f846762e\DEM.OS.I0602.dll] [ATI Technologies Inc., 2.0.2729.30259] [C:\WINDOWS\assembly\GAC_MSIL\AEM.Actions.CCAA.Shared\2.0.2729.30197__90ba9c70f846762e\AEM.Actions.CCAA.Shared.dll] [ATI Technologies Inc., 2.0.2729.30197] [C:\WINDOWS\assembly\GAC_MSIL\DEM.OS\2.0.2729.30242__90ba9c70f846762e\DEM.OS.dll] [ATI Technologies Inc., 2.0.2729.30242] [C:\WINDOWS\assembly\GAC_MSIL\ATIDEMOS\2.0.2789.41011__90ba9c70f846762e\ATIDEMOS.dll] [ATI Technologies Inc., 2.0.2789.41011] [C:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.HotkeysHandling.Graphics.Runtime\2.0.2789.41040__90ba9c70f846762e\CLI.Aspect.HotkeysHandling.Graphics.Runtime.dll] [ATI Technologies Inc., 2.0.2789.41040] [C:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.HotkeysHandling.Graphics.Shared\2.0.2729.30216__90ba9c70f846762e\CLI.Aspect.HotkeysHandling.Graphics.Shared.dll] [ATI Technologies Inc., 2.0.2729.30216] [C:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.DeviceCV.Graphics.Runtime\2.0.2789.41263__90ba9c70f846762e\CLI.Aspect.DeviceCV.Graphics.Runtime.dll] [ATI Technologies Inc., 2.0.2789.41263] [C:\WINDOWS\assembly\GAC_MSIL\CLI.Caste.Graphics.Runtime.Shared.Private\2.0.2729.30243__90ba9c70f846762e\CLI.Caste.Graphics.Runtime.Shared.Private.dll] [ATI Technologies Inc., 2.0.2729.30243] [C:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.DeviceCV.Graphics.Shared\2.0.2729.30230__90ba9c70f846762e\CLI.Aspect.DeviceCV.Graphics.Shared.dll] [ATI Technologies Inc., 2.0.2729.30230] [C:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.CustomFormats.Graphics.Shared\2.0.2729.30212__90ba9c70f846762e\CLI.Aspect.CustomFormats.Graphics.Shared.dll] [ATI Technologies Inc., 2.0.2729.30212] [C:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.DeviceProperty.Graphics.Runtime\2.0.2789.41188__90ba9c70f846762e\CLI.Aspect.DeviceProperty.Graphics.Runtime.dll] [Advanced Micro Devices, Inc., 2.0.2789.41188] [C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\DEM.Graphics.I0703.dll] [Advanced Micro Devices, Inc., 2.0.2651.18802] [C:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.DeviceProperty.Graphics.Shared\2.0.2729.30213__90ba9c70f846762e\CLI.Aspect.DeviceProperty.Graphics.Shared.dll] [ATI Technologies Inc., 2.0.2729.30213] [C:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.DeviceTV.Graphics.Runtime\2.0.2789.41311__90ba9c70f846762e\CLI.Aspect.DeviceTV.Graphics.Runtime.dll] [ATI Technologies Inc., 2.0.2789.41311] [C:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.DeviceTV.Graphics.Shared\2.0.2729.30231__90ba9c70f846762e\CLI.Aspect.DeviceTV.Graphics.Shared.dll] [ATI Technologies Inc., 2.0.2729.30231] [C:\WINDOWS\assembly\GAC_MSIL\AEM.Plugin.GD.Shared\2.0.2729.30224__90ba9c70f846762e\AEM.Plugin.GD.Shared.dll] [ATI Technologies Inc., 2.0.2729.30224] [C:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.InfoCentre.Graphics.Runtime\2.0.2789.41079__90ba9c70f846762e\CLI.Aspect.InfoCentre.Graphics.Runtime.dll] [ATI Technologies Inc., 2.0.2789.41079] [C:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.InfoCentre.Graphics.Shared\2.0.2729.30219__90ba9c70f846762e\CLI.Aspect.InfoCentre.Graphics.Shared.dll] [ATI Technologies Inc., 2.0.2729.30219] [C:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.DisplaysColour2.Graphics.Runtime\2.0.2789.41101__90ba9c70f846762e\CLI.Aspect.DisplaysColour2.Graphics.Runtime.dll] [ATI Technologies Inc., 2.0.2789.41101] [C:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.DisplaysColour2.Graphics.Shared\2.0.2729.30219__90ba9c70f846762e\CLI.Aspect.DisplaysColour2.Graphics.Shared.dll] [ATI Technologies Inc., 2.0.2729.30219] [C:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.DisplaysOptions.Graphics.Runtime\2.0.2789.41224__90ba9c70f846762e\CLI.Aspect.DisplaysOptions.Graphics.Runtime.dll] [ATI Technologies Inc., 2.0.2789.41224] [C:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.DisplaysOptions.Graphics.Shared\2.0.2729.30228__90ba9c70f846762e\CLI.Aspect.DisplaysOptions.Graphics.Shared.dll] [ATI Technologies Inc., 2.0.2729.30228] [C:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.DeviceCRT.Graphics.Runtime\2.0.2789.41197__90ba9c70f846762e\CLI.Aspect.DeviceCRT.Graphics.Runtime.dll] [ATI Technologies Inc., 2.0.2789.41197] [C:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.DeviceCRT.Graphics.Shared\2.0.2729.30226__90ba9c70f846762e\CLI.Aspect.DeviceCRT.Graphics.Shared.dll] [ATI Technologies Inc., 2.0.2729.30226] [C:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.DeviceLCD.Graphics.Runtime\2.0.2789.41248__90ba9c70f846762e\CLI.Aspect.DeviceLCD.Graphics.Runtime.dll] [Advanced Micro Devices, Inc., 2.0.2789.41248] [C:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.DeviceLCD.Graphics.Shared\2.0.2729.30259__90ba9c70f846762e\CLI.Aspect.DeviceLCD.Graphics.Shared.dll] [ATI Technologies Inc., 2.0.2729.30259] [C:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.DeviceDFP.Graphics.Runtime\2.0.2789.41189__90ba9c70f846762e\CLI.Aspect.DeviceDFP.Graphics.Runtime.dll] [Advanced Micro Devices, Inc., 2.0.2789.41189] [C:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.DeviceDFP.Graphics.Shared\2.0.2729.30225__90ba9c70f846762e\CLI.Aspect.DeviceDFP.Graphics.Shared.dll] [ATI Technologies Inc., 2.0.2729.30225] [C:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.Radeon3D.Graphics.Runtime\2.0.2789.41272__90ba9c70f846762e\CLI.Aspect.Radeon3D.Graphics.Runtime.dll] [ATI Technologies Inc., 2.0.2789.41272] [C:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.Radeon3D.Graphics.Shared\2.0.2729.30231__90ba9c70f846762e\CLI.Aspect.Radeon3D.Graphics.Shared.dll] [ATI Technologies Inc., 2.0.2729.30231] [C:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.MMVideo.Graphics.Runtime\2.0.2789.41198__90ba9c70f846762e\CLI.Aspect.MMVideo.Graphics.Runtime.dll] [ATI Technologies Inc., 2.0.2789.41198] [C:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.MMVideo.Graphics.Shared\2.0.2729.30227__90ba9c70f846762e\CLI.Aspect.MMVideo.Graphics.Shared.dll] [ATI Technologies Inc., 2.0.2729.30227] [C:\WINDOWS\assembly\GAC_MSIL\APM.Server\2.0.2789.41009__90ba9c70f846762e\APM.Server.dll] [Advanced Micro Devices, Inc., 2.0.2789.41009] [C:\WINDOWS\assembly\GAC_MSIL\APM.Foundation\2.0.2729.30208__90ba9c70f846762e\APM.Foundation.dll] [ATI Technologies Inc., 2.0.2729.30208] [C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\System.Configuration\ab688d0f9f333ba117832726bfb589c1\System.Configuration.ni.dll] [Microsoft Corporation, 2.0.50727.3053 (netfxsp.050727-3000)] [C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\System.Web\411a627d6f5cb83509332253406988e5\System.Web.ni.dll] [Microsoft Corporation, 2.0.50727.3614 (GDR.050727-3600)] [C:\WINDOWS\assembly\GAC_MSIL\CLI.Component.Systemtray\2.0.2789.41326__90ba9c70f846762e\CLI.Component.Systemtray.dll] [ATI Technologies Inc., 2.0.2789.41326] [C:\WINDOWS\assembly\GAC_MSIL\CLI.Component.Client.Shared.Private\2.0.2729.30205__90ba9c70f846762e\CLI.Component.Client.Shared.Private.dll] [Advanced Micro Devices, Inc., 2.0.2729.30205] [C:\Program Files\ATI Technologies\ATI.ACE\Branding\Branding.dll] [, 2.0.2477.16262] [C:\WINDOWS\assembly\GAC_MSIL\CLI.Component.Wizard\2.0.2789.41050__90ba9c70f846762e\CLI.Component.Wizard.dll] [Advanced Micro Devices, Inc., 2.0.2789.41050] [C:\WINDOWS\assembly\GAC_MSIL\CLI.Component.Client.Shared\2.0.2729.30185__90ba9c70f846762e\CLI.Component.Client.Shared.dll] [ATI Technologies Inc., 2.0.2729.30185] [C:\WINDOWS\assembly\GAC_MSIL\CLI.Component.Wizard.Shared\2.0.2729.30211__90ba9c70f846762e\CLI.Component.Wizard.Shared.dll] [ATI Technologies Inc., 2.0.2729.30211] [C:\WINDOWS\assembly\GAC_MSIL\CLI.Component.Systemtray.resources\2.0.2789.41326_fr_90ba9c70f846762e\CLI.Component.Systemtray.resources.dll] [ATI Technologies Inc., 2.0.2789.41326] [C:\WINDOWS\assembly\GAC_MSIL\CLI.Component.Wizard.Shared.Private\2.0.2729.30258__90ba9c70f846762e\CLI.Component.Wizard.Shared.Private.dll] [ATI Technologies Inc., 2.0.2729.30258] [C:\WINDOWS\assembly\GAC_MSIL\CLI.Caste.Graphics.Wizard\2.0.2789.41056__90ba9c70f846762e\CLI.Caste.Graphics.Wizard.dll] [ATI Technologies Inc., 2.0.2789.41056] [C:\WINDOWS\assembly\GAC_MSIL\CLI.Caste.Graphics.Wizard.Shared\2.0.2729.30216__90ba9c70f846762e\CLI.Caste.Graphics.Wizard.Shared.dll] [ATI Technologies Inc., 2.0.2729.30216] [C:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.TransCode.Graphics.Wizard\2.0.2789.41354__90ba9c70f846762e\CLI.Aspect.TransCode.Graphics.Wizard.dll] [ATI Technologies Inc., 2.0.2789.41354] [C:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.Radeon3D.Graphics.Wizard\2.0.2789.41280__90ba9c70f846762e\CLI.Aspect.Radeon3D.Graphics.Wizard.dll] [ATI Technologies Inc., 2.0.2789.41280] [C:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.DisplaysManager.Graphics.Wizard\2.0.2789.41064__90ba9c70f846762e\CLI.Aspect.DisplaysManager.Graphics.Wizard.dll] [ATI Technologies Inc., 2.0.2789.41064] [C:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.TransCode.Graphics.Shared\2.0.2729.30264__90ba9c70f846762e\CLI.Aspect.TransCode.Graphics.Shared.dll] [ATI Technologies Inc., 2.0.2729.30264] [C:\WINDOWS\assembly\GAC_MSIL\atixclib\1.0.0.0__90ba9c70f846762e\atixclib.dll] [ , 1.0.0.0] [C:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.MMVideo.Graphics.Wizard\2.0.2789.41295__90ba9c70f846762e\CLI.Aspect.MMVideo.Graphics.Wizard.dll] [ATI Technologies Inc., 2.0.2789.41295] [C:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.DeviceLCD.Graphics.Wizard\2.0.2789.41103__90ba9c70f846762e\CLI.Aspect.DeviceLCD.Graphics.Wizard.dll] [ATI Technologies Inc., 2.0.2789.41103] [C:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.InfoCentre.Graphics.Wizard\2.0.2789.41080__90ba9c70f846762e\CLI.Aspect.InfoCentre.Graphics.Wizard.dll] [ATI Technologies Inc., 2.0.2789.41080] [C:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.DeviceTV.Graphics.Wizard\2.0.2789.41320__90ba9c70f846762e\CLI.Aspect.DeviceTV.Graphics.Wizard.dll] [ATI Technologies Inc., 2.0.2789.41320] [C:\WINDOWS\assembly\GAC_MSIL\CLI.Component.Dashboard\2.0.2789.41027__90ba9c70f846762e\CLI.Component.Dashboard.dll] [Advanced Micro Devices, Inc., 2.0.2789.41027] [C:\WINDOWS\assembly\GAC_MSIL\CLI.Component.Dashboard.Shared\2.0.2729.30199__90ba9c70f846762e\CLI.Component.Dashboard.Shared.dll] [ATI Technologies Inc., 2.0.2729.30199] [C:\WINDOWS\assembly\GAC_MSIL\CLI.Component.Dashboard.Shared.Private\2.0.2729.30214__90ba9c70f846762e\CLI.Component.Dashboard.Shared.Private.dll] [ATI Technologies Inc., 2.0.2729.30214] [C:\WINDOWS\assembly\GAC_MSIL\CLI.Caste.Graphics.Dashboard\2.0.2789.41033__90ba9c70f846762e\CLI.Caste.Graphics.Dashboard.dll] [ATI Technologies Inc., 2.0.2789.41033] [C:\WINDOWS\assembly\GAC_MSIL\CLI.Caste.Graphics.Dashboard.Shared\2.0.2729.30241__90ba9c70f846762e\CLI.Caste.Graphics.Dashboard.Shared.dll] [ATI Technologies Inc., 2.0.2729.30241] [C:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.Welcome.Graphics.Dashboard\2.0.2789.41361__90ba9c70f846762e\CLI.Aspect.Welcome.Graphics.Dashboard.dll] [Advanced Mirco Devices, Inc., 2.0.2789.41361] [C:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.DisplaysManager.Graphics.Dashboard\2.0.2789.41042__90ba9c70f846762e\CLI.Aspect.DisplaysManager.Graphics.Dashboard.dll] [ATI Technologies Inc., 2.0.2789.41042] [C:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.InfoCentre.Graphics.Dashboard\2.0.2789.41087__90ba9c70f846762e\CLI.Aspect.InfoCentre.Graphics.Dashboard.dll] [ATI Technologies Inc., 2.0.2789.41087] [C:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.DisplaysOptions.Graphics.Dashboard\2.0.2789.41225__90ba9c70f846762e\CLI.Aspect.DisplaysOptions.Graphics.Dashboard.dll] [ATI Technologies Inc., 2.0.2789.41225] [C:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.DeviceCRT.Graphics.Dashboard\2.0.2789.41191__90ba9c70f846762e\CLI.Aspect.DeviceCRT.Graphics.Dashboard.dll] [ATI Technologies Inc., 2.0.2789.41191] [C:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.DeviceLCD.Graphics.Dashboard\2.0.2789.41250__90ba9c70f846762e\CLI.Aspect.DeviceLCD.Graphics.Dashboard.dll] [Advanced Micro Devices, Inc., 2.0.2789.41250] [C:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.DeviceTV.Graphics.Dashboard\2.0.2789.41313__90ba9c70f846762e\CLI.Aspect.DeviceTV.Graphics.Dashboard.dll] [ATI Technologies Inc., 2.0.2789.41313] [C:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.DeviceDFP.Graphics.Dashboard\2.0.2789.41181__90ba9c70f846762e\CLI.Aspect.DeviceDFP.Graphics.Dashboard.dll] [Advanced Micro Devices, Inc., 2.0.2789.41181] [C:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.Radeon3D.Graphics.Dashboard\2.0.2789.41273__90ba9c70f846762e\CLI.Aspect.Radeon3D.Graphics.Dashboard.dll] [ATI Technologies Inc., 2.0.2789.41273] [C:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.DisplaysColour2.Graphics.Dashboard\2.0.2789.41094__90ba9c70f846762e\CLI.Aspect.DisplaysColour2.Graphics.Dashboard.dll] [ATI Technologies Inc., 2.0.2789.41094] [C:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.MMVideo.Graphics.Dashboard\2.0.2789.41200__90ba9c70f846762e\CLI.Aspect.MMVideo.Graphics.Dashboard.dll] [ATI Technologies Inc., 2.0.2789.41200] [PID: 4004 / SYSTEM][C:\Program Files\iPod\bin\iPodService.exe] [Apple Inc., 9.0.2.25] [C:\Program Files\iPod\bin\iPodService.Resources\fr.lproj\iPodServiceLocalized.DLL] [Apple Inc., 9.0.2.7] [C:\Program Files\iPod\bin\iPodService.Resources\iPodService.DLL] [Apple Inc., 9.0.2.25] [PID: 1504 / SERVICE LOCAL][C:\WINDOWS\System32\alg.exe] [(Verified) Microsoft Corporation, 5.1.2600.5512 (xpsp.080413-0852)] [PID: 2624 / PhM][C:\Program Files\Java\jre6\bin\jucheck.exe] [sun Microsystems, Inc., 6.0.160.1] [C:\Program Files\Bonjour\mdnsNSP.dll] [Apple Inc., 1,0,6,2] [PID: 4280 / PhM][C:\Documents and Settings\PhM\Local Settings\Application Data\guluvockw\saoqdblshdw.exe] [N/A, ] [C:\WINDOWS\system32\wbem\wbemprox.dll] [Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)] [C:\WINDOWS\system32\wbem\wbemcomn.dll] [Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)] [C:\WINDOWS\system32\wbem\wbemsvc.dll] [Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)] [C:\Program Files\Bonjour\mdnsNSP.dll] [Apple Inc., 1,0,6,2] [PID: 2200 / SERVICE RÉSEAU][C:\WINDOWS\system32\wbem\wmiprvse.exe] [(Verified) Microsoft Corporation, 5.1.2600.5755 (xpsp_sp3_gdr.090206-1234)] [C:\WINDOWS\system32\wbem\wbemcomn.dll] [Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)] [C:\WINDOWS\system32\wbem\wbemsvc.dll] [Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)] [C:\WINDOWS\system32\wbem\wmiutils.dll] [Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)] [C:\WINDOWS\system32\wbem\cimwin32.dll] [Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)] [C:\WINDOWS\system32\wbem\framedyn.dll] [Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)] [PID: 2528 / SYSTEM][C:\PROGRA~1\AVG\AVG8\avgnsx.exe] [AVG Technologies CZ, s.r.o., 8.5.0.401] [C:\Program Files\AVG\AVG8\avglogx.dll] [AVG Technologies CZ, s.r.o., 8.5.0.401] [C:\PROGRA~1\AVG\AVG8\avgcfgx.dll] [AVG Technologies CZ, s.r.o., 8.5.0.401] [C:\PROGRA~1\AVG\AVG8\avgxpl.dll] [AVG Technologies CZ, s.r.o., 8.5.0.401] [C:\Program Files\AVG\AVG8\avglvex.dll] [AVG Technologies CZ, s.r.o., 8.5.0.401] [C:\WINDOWS\WinSxS\x86_Microsoft.VC80.MFC_1fc8b3b9a1e18e3b_8.0.50727.762_x-ww_3bf8fa05\MFC80.DLL] [Microsoft Corporation, 8.00.50727.762] [C:\WINDOWS\WinSxS\x86_Microsoft.VC80.MFCLOC_1fc8b3b9a1e18e3b_8.0.50727.762_x-ww_91481303\MFC80FRA.DLL] [Microsoft Corporation, 8.00.50727.762] [PID: 4564 / PhM][C:\Documents and Settings\PhM\Bureau\sreng2\SRE21d19217.EXE] [smallfrogs Studio, 2.8.2.1321] [C:\Documents and Settings\PhM\Bureau\sreng2\Upload\3rdUpd.DLL] [smallfrogs Studio, 2, 1, 0, 15] ================================== File Associations .TXT OK. [%SystemRoot%\system32\NOTEPAD.EXE %1] .EXE OK. ["%1" %*] .COM OK. ["%1" %*] .PIF OK. ["%1" %*] .REG OK. [regedit.exe "%1"] .BAT OK. ["%1" %*] .SCR OK. ["%1" /S] .CHM OK. ["C:\WINDOWS\hh.exe" %1] .HLP OK. [%SystemRoot%\System32\winhlp32.exe %1] .INI OK. [%SystemRoot%\System32\NOTEPAD.EXE %1] .INF OK. [%SystemRoot%\System32\NOTEPAD.EXE %1] .VBS OK. [%SystemRoot%\System32\WScript.exe "%1" %*] .JS OK. [%SystemRoot%\System32\WScript.exe "%1" %*] .LNK OK. [{00021401-0000-0000-C000-000000000046}] ================================== Winsock Provider N/A ================================== Autorun.Inf N/A ================================== HOSTS File 127.0.0.1 localhost ================================== Process Privileges Scan Special Privileges Enabled: SeLoadDriverPrivilege [PID = 1436, C:\PROGRAM FILES\WIDCOMM\BLUETOOTH SOFTWARE\BIN\BTWDINS.EXE] Special Privileges Enabled: SeDebugPrivilege [PID = 2820, C:\PROGRAM FILES\ATI TECHNOLOGIES\ATI.ACE\CORE-STATIC\MOM.EXE] Special Privileges Enabled: SeLoadDriverPrivilege [PID = 2820, C:\PROGRAM FILES\ATI TECHNOLOGIES\ATI.ACE\CORE-STATIC\MOM.EXE] Special Privileges Enabled: SeLoadDriverPrivilege [PID = 2876, C:\PROGRAM FILES\SAMSUNG\SAMSUNG BATTERY MANAGER\BATTERYMANAGER.EXE] Special Privileges Enabled: SeLoadDriverPrivilege [PID = 3120, C:\PROGRAM FILES\YOUSENDIT\EXPRESS\YOUSENDIT.EXE] Special Privileges Enabled: SeLoadDriverPrivilege [PID = 3140, C:\PROGRAM FILES\SAMSUNG\EASY DISPLAY MANAGER\DMHKCORE.EXE] Special Privileges Enabled: SeLoadDriverPrivilege [PID = 3468, C:\PROGRAM FILES\SAMSUNG\MAGICKBD\MAGICKBD.EXE] Special Privileges Enabled: SeLoadDriverPrivilege [PID = 3480, C:\PROGRAM FILES\SAMSUNG\MAGICKBD\PERFORMANCEMANAGER.EXE] Special Privileges Enabled: SeDebugPrivilege [PID = 4060, C:\PROGRAM FILES\ATI TECHNOLOGIES\ATI.ACE\CORE-STATIC\CCC.EXE] Special Privileges Enabled: SeLoadDriverPrivilege [PID = 4060, C:\PROGRAM FILES\ATI TECHNOLOGIES\ATI.ACE\CORE-STATIC\CCC.EXE] Special Privileges Enabled: SeLoadDriverPrivilege [PID = 4280, C:\DOCUMENTS AND SETTINGS\PHM\LOCAL SETTINGS\APPLICATION DATA\GULUVOCKW\SAOQDBLSHDW.EXE] ================================== Scheduled Tasks [Enabled] GoogleUpdateTaskUserS-1-5-21-3224970799-2208403349-14268682-1007UA.job C:\Documents and Settings\PhM\Local Settings\Application Data\Google\Update\GoogleUpdate.exe [Enabled] GoogleUpdateTaskUserS-1-5-21-3224970799-2208403349-14268682-1007Core.job C:\Documents and Settings\PhM\Local Settings\Application Data\Google\Update\GoogleUpdate.exe [Enabled] GoogleUpdateTaskMachineUA.job C:\Program Files\Google\Update\GoogleUpdate.exe [Enabled] GoogleUpdateTaskMachineCore.job C:\Program Files\Google\Update\GoogleUpdate.exe [Enabled] Google Software Updater.job C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe ================================== Windows Security Update Check N/A ================================== API HOOK N/A ================================== Hidden Process N/A ==================================
- le 13 août 2010
- 2 réponses
! complément au topic 178685 suite à bug

grore a posté un sujet dans Analyses et éradication malwares

Bonsoir, ce message s'adresse à Pear: Je viens d'envoyer les rapports de SREng que j'avais réussi à lancer. Mais je ne vois plus apparaître le topic !!! lorsuqe je clique sur le lien dans les titres de forums, une page blanche s'affiche. Je ne sais pas si vous avez reçu les rapports, et je ne peux plus lire vos messages précédents. j'espère ne pas transporter avec le rapports d'autre virus... Donnez moi des nouvelles via ce nouveau post, merci
- le 13 août 2010
- 2 réponses
faux antivirus bloquant toutes les applications

grore a répondu à un(e) sujet de grore dans Analyses et éradication malwares

Bonsoir, et merci d'être encore là... une bonne et une mauvaise nouvelle: réussi à lancer SREng, rapport ci joint. Mais ensuite rien à faire pour TDS KIller, Rkill et mbam (même message d'application infectée)... et toujours les apparitions de warning d'infections, et toutes les applications bloquées... est-ce que vous croyez que je m'en sors sans formater? je vais devoir sauvegarder mes dossiers avant de le faire... de quel temps je dispose? voici les rapportds SREng: 2010-08-13,23:05:58 System Repair Engineer 2.8.2.1321 Smallfrogs (http://www.KZTechs.com) Windows XP Professional Service Pack 3 (Build 2600) - Administrative User - Completed Functions Allowed Follow item(s) have been selected: All Boot Items (Including Registry, Startup Folders, Services and so on) Browser Add-ons Running Processes (Including process model information) File Associations Winsock Provider Autorun.Inf HOSTS File Process Privileges Scan Scheduled Tasks Windows Security Update Check API HOOK Hidden Process Boot Items Registry [HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run] <GRC V2 Hyperappel><C:\Program Files\Le Robert\Le Grand Robert & Collins\GRCHA.exe> [(Verified)Bureau van Dijk Electronic Publishing] <IMC><C:\Program Files\FriendFinder\FriendFinder Messenger 4\imc.exe> [File is missing] <swg><"C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe"> [(Verified)Google Inc] <Google Update><"C:\Documents and Settings\PhM\Local Settings\Application Data\Google\Update\GoogleUpdate.exe" /c> [(Verified)Google Inc] <YouSendIt.exe><C:\Program Files\YouSendIt\Express\YouSendIt.exe -ui none> [] <ccpevjvo><C:\Documents and Settings\PhM\Application Data\guluvockw\saoqdblshdw.exe> [] [HKEY_CURRENT_USER\Software\Microsoft\Windows NT\CurrentVersion\Windows] <load><> [N/A] [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run] <StartCCC><C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe> [] <EDS><C:\Program Files\Samsung\Samsung EDS\EDSAgent.exe> [] <SynTPEnh><C:\Program Files\Synaptics\SynTP\SynTPEnh.exe> [(Verified)Microsoft Windows Hardware Compatibility Publisher] <AVStation Premium 3.75><"C:\Program Files\Samsung\AVStation Premium 3.75\AVSAgent.exe" /start> [] <MagicKeyboard><C:\Program Files\SAMSUNG\MagicKBD\PreMKBD.exe> [] <DMHotKey><C:\Program Files\Samsung\Easy Display Manager\DMLoader.exe> [sAMSUNG Electronics] <BatteryManager><C:\Program Files\Samsung\Samsung Battery Manager\BatteryManager.exe> [] <SamsungWInClon><C:\Program Files\Samsung\Samsung Recovery Solution II\WCScheduler> [File is missing] <SUPBackGround><C:\Program Files\Samsung\Samsung Update Plus\SUPBackGround.exe> [(Verified)Samsung Electronics CO., LTD.] <AVG8_TRAY><C:\PROGRA~1\AVG\AVG8\avgtray.exe> [(Verified)AVG Technologies] <SunJavaUpdateSched><"C:\Program Files\Java\jre6\bin\jusched.exe"> [(Verified)Sun Microsystems, Inc.] <Malwarebytes Anti-Malware (reboot)><"C:\Program Files\Malwarebytes' Anti-Malware\mbam.exe" /runcleanupscript> [(Verified)Malwarebytes Corporation] <TkBellExe><"C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe" -osboot> [(Verified)RealNetworks, Inc.] <QuickTime Task><"C:\Program Files\QuickTime\qttask.exe" -atboottime> [Apple Inc.] <iTunesHelper><"C:\Program Files\iTunes\iTunesHelper.exe"> [(Verified)Apple Inc.] <HUAWEI E620 Data Card><C:\Program Files\Kanguru\Kanguru.exe> [File is missing] <sta><rundll32 "ahckp.dll",,Run> [N/A] <MChk><C:\WINDOWS\system32\nhckp.exe> [] <ccpevjvo><C:\Documents and Settings\PhM\Application Data\guluvockw\saoqdblshdw.exe> [] [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows NT\CurrentVersion\Winlogon] <shell><Explorer.exe> [(Verified)Microsoft Windows Component Publisher] <Userinit><C:\WINDOWS\system32\userinit.exe,> [(Verified)Microsoft Windows Component Publisher] [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows NT\CurrentVersion\Windows] <AppInit_DLLs><> [N/A] [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows NT\CurrentVersion\Winlogon] <UIHost><logonui.exe> [(Verified)Microsoft Windows Component Publisher] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks] <{AEB6717E-7E19-11d0-97EE-00C04FD91972}><shell32.dll> [(Verified)Microsoft Windows Component Publisher] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad] <PostBootReminder><%SystemRoot%\system32\SHELL32.dll> [(Verified)Microsoft Windows Component Publisher] <CDBurn><%SystemRoot%\system32\SHELL32.dll> [(Verified)Microsoft Windows Component Publisher] <WebCheck><C:\WINDOWS\system32\webcheck.dll> [(Verified)Microsoft Windows] <SysTray><C:\WINDOWS\system32\stobject.dll> [(Verified)Microsoft Windows Component Publisher] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\avgrsstarter] <WinlogonNotify: avgrsstarter><avgrsstx.dll> [(Verified)AVG Technologies] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\crypt32chain] <WinlogonNotify: crypt32chain><crypt32.dll> [(Verified)Microsoft Windows Component Publisher] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\cryptnet] <WinlogonNotify: cryptnet><cryptnet.dll> [(Verified)Microsoft Windows Component Publisher] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\cscdll] <WinlogonNotify: cscdll><cscdll.dll> [(Verified)Microsoft Windows Component Publisher] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\dimsntfy] <WinlogonNotify: dimsntfy><%SystemRoot%\System32\dimsntfy.dll> [(Verified)Microsoft Windows Component Publisher] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\ScCertProp] <WinlogonNotify: ScCertProp><wlnotify.dll> [(Verified)Microsoft Windows Component Publisher] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\Schedule] <WinlogonNotify: Schedule><wlnotify.dll> [(Verified)Microsoft Windows Component Publisher] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\sclgntfy] <WinlogonNotify: sclgntfy><sclgntfy.dll> [(Verified)Microsoft Windows Component Publisher] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\SensLogn] <WinlogonNotify: SensLogn><WlNotify.dll> [(Verified)Microsoft Windows Component Publisher] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\termsrv] <WinlogonNotify: termsrv><wlnotify.dll> [(Verified)Microsoft Windows Component Publisher] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\wlballoon] <WinlogonNotify: wlballoon><wlnotify.dll> [(Verified)Microsoft Windows Component Publisher] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\SharedTaskScheduler] <{438755C2-A8BA-11D1-B96B-00A0C90312E1}><%SystemRoot%\system32\browseui.dll> [(Verified)Microsoft Windows Component Publisher] <{8C7461EF-2B13-11d2-BE35-3078302C2030}><%SystemRoot%\system32\browseui.dll> [(Verified)Microsoft Windows Component Publisher] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\<{12d0ed0d-0ee0-4f90-8827-78cefb8f4988}] <Mise à jour de la version d’Internet Explorer><C:\WINDOWS\system32\ieudinit.exe> [(Verified)Microsoft Windows] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\>{22d6f312-b0f6-11d0-94ab-0080c74c7e95}] <Microsoft Windows Media Player><C:\WINDOWS\inf\unregmp2.exe /ShowWMP> [(Verified)Microsoft Windows Component Publisher] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\>{26923b43-4d38-484f-9b9e-de460746276c}] <Internet Explorer><C:\WINDOWS\system32\ie4uinit.exe -UserIconConfig> [(Verified)Microsoft Windows Component Publisher] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\>{60B49E34-C7CC-11D0-8953-00A0C90347FF}] <Browser Customizations><"C:\WINDOWS\system32\rundll32.exe" "C:\WINDOWS\system32\iedkcs32.dll",BrandIEActiveSetup SIGNUP> [(Verified)Microsoft Windows Component Publisher] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\>{881dd1c5-3dcf-431b-b061-f3f88e8be88a}] <Outlook Express><%systemroot%\system32\shmgrate.exe OCInstallUserConfigOE> [File is missing] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{2C7339CF-2B09-4501-B3F3-F3508C9228ED}] <Themes Setup><%SystemRoot%\system32\regsvr32.exe /s /n /i:/UserInstall %SystemRoot%\system32\themeui.dll> [File is missing] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{44BBA840-CC51-11CF-AAFA-00AA00B6015C}] <Microsoft Outlook Express 6><"%ProgramFiles%\Outlook Express\setup50.exe" /APP:OE /CALLER:WINNT /user /install> [File is missing] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{44BBA842-CC51-11CF-AAFA-00AA00B6015B}] <NetMeeting 3.01><rundll32.exe advpack.dll,LaunchINFSection C:\WINDOWS\INF\msnetmtg.inf,NetMtg.Install.PerUser.NT> [(Verified)Microsoft Windows Component Publisher] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{5945c046-1e7d-11d1-bc44-00c04fd912be}] <Windows Messenger 4.7><rundll32.exe advpack.dll,LaunchINFSection C:\WINDOWS\INF\msmsgs.inf,BLC.QuietInstall.PerUser> [(Verified)Microsoft Windows Component Publisher] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{6BF52A52-394A-11d3-B153-00C04F79FAA6}] <Microsoft Windows Media Player><rundll32.exe advpack.dll,LaunchINFSection C:\WINDOWS\INF\wmp10.inf,PerUserStub> [(Verified)Microsoft Windows Component Publisher] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{7790769C-0471-11d2-AF11-00C04FA35D02}] <Carnet d'adresses 6><"%ProgramFiles%\Outlook Express\setup50.exe" /APP:WAB /CALLER:WINNT /user /install> [File is missing] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{89820200-ECBD-11cf-8B85-00AA005B4340}] <Mise à jour du Bureau Windows><regsvr32.exe /s /n /i:U shell32.dll> [(Verified)Microsoft Windows Component Publisher] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{89820200-ECBD-11cf-8B85-00AA005B4383}] <Internet Explorer><C:\WINDOWS\system32\ie4uinit.exe -BaseSettings> [(Verified)Microsoft Windows Component Publisher] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{89B4C1CD-B018-4511-B0A1-5476DBF70820}] <N/A><C:\WINDOWS\system32\Rundll32.exe C:\WINDOWS\system32\mscories.dll,Install> [(Verified)Microsoft Corporation] ================================== Startup Folders [WiziWYG XP Startup] <C:\Documents and Settings\All Users\Menu Démarrer\Programmes\Démarrage\WiziWYG XP Startup.lnk --> C:\PROGRA~1\PRAXIS~1\WIZIWY~1\WIZIWY~1.EXE [Praxisoft LLC]><N> ================================== Services [Agere Modem Call Progress Audio / AgereModemAudio][Running/Auto Start] <C:\WINDOWS\system32\agrsmsvc.exe><Agere Systems> [Apple Mobile Device / Apple Mobile Device][Running/Auto Start] <"C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe"><Apple Inc.> [Ati HotKey Poller / Ati HotKey Poller][Running/Auto Start] <C:\WINDOWS\system32\Ati2evxx.exe><ATI Technologies Inc.> [AVG Free8 E-mail Scanner / avg8emc][Running/Auto Start] <C:\PROGRA~1\AVG\AVG8\avgemc.exe><AVG Technologies CZ, s.r.o.> [AVG Free8 WatchDog / avg8wd][Running/Auto Start] <C:\PROGRA~1\AVG\AVG8\avgwdsvc.exe><AVG Technologies CZ, s.r.o.> [service Bonjour / Bonjour Service][Running/Auto Start] <"C:\Program Files\Bonjour\mDNSResponder.exe"><Apple Inc.> [bluetooth Service / btwdins][Running/Auto Start] <C:\Program Files\WIDCOMM\Bluetooth Software\bin\btwdins.exe><Broadcom Corporation.> [service Google Update (gupdate) / gupdate][stopped/Auto Start] <"C:\Program Files\Google\Update\GoogleUpdate.exe" /svc><Google Inc.> [Google Software Updater / gusvc][stopped/Auto Start] <"C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe"><Google> [Accès du périphérique d'interface utilisateur / HidServ][stopped/Disabled] <C:\WINDOWS\System32\svchost.exe -k netsvcs-->%SystemRoot%\System32\hidserv.dll><N/A> [hpqcxs08 / hpqcxs08][Running/Manual Start] <C:\WINDOWS\system32\svchost.exe -k hpdevmgmt-->C:\Program Files\HP\Digital Imaging\bin\hpqcxs08.dll><Hewlett-Packard Co.> [service HP CUE DeviceDiscovery / hpqddsvc][Running/Auto Start] <C:\WINDOWS\system32\svchost.exe -k hpdevmgmt-->C:\Program Files\HP\Digital Imaging\bin\hpqddsvc.dll><Hewlett-Packard Co.> [service de l’iPod / iPod Service][Running/Manual Start] <"C:\Program Files\iPod\bin\iPodService.exe"><Apple Inc.> [Java Quick Starter / JavaQuickStarterService][Running/Auto Start] <"C:\Program Files\Java\jre6\bin\jqs.exe" -service -config "C:\Program Files\Java\jre6\lib\deploy\jqs\jqs.conf"><Sun Microsystems, Inc.> [LightScribeService Direct Disc Labeling Service / LightScribeService][Running/Auto Start] <"C:\Program Files\Fichiers communs\LightScribe\LSSrvc.exe"><Hewlett-Packard Company> [Net Driver HPZ12 / Net Driver HPZ12][Running/Auto Start] <C:\WINDOWS\System32\svchost.exe -k HPZ12-->C:\WINDOWS\system32\HPZinw12.dll><Hewlett-Packard> [NMSAccessU / NMSAccessU][Running/Auto Start] <C:\Program Files\CDBurnerXP\NMSAccessU.exe><N/A> [Pml Driver HPZ12 / Pml Driver HPZ12][Running/Auto Start] <C:\WINDOWS\System32\svchost.exe -k HPZ12-->C:\WINDOWS\system32\HPZipm12.dll><Hewlett-Packard> [sNM WLAN Service / SNM WLAN Service][Running/Auto Start] <"C:\Program Files\samsung\Samsung Network Manager\SNMWLANService.exe"><N/A> [Viewpoint Service / Viewpoint Service][Running/Auto Start] <"C:\Program Files\Viewpoint\Common\ViewpointService.exe"><Viewpoint Corporation> [infrastructure de gestion Windows / winmgmt][Running/Auto Start] <C:\WINDOWS\system32\svchost.exe -k netsvcs-->%SystemRoot%\system32\wbem\WMIsvc.dll><Microsoft Corporation> [Carte de performance WMI / WmiApSrv][stopped/Manual Start] <C:\WINDOWS\system32\wbem\wmiapsrv.exe><Microsoft Corporation> ================================== Drivers [ADDMEM / ADDMEM][stopped/Manual Start] <\??\C:\DOCUME~1\PhM\LOCALS~1\Temp\__Samsung_Update\ADDMEM.SYS><N/A> [Agere Systems Soft Modem / AgereSoftModem][Running/Manual Start] <system32\DRIVERS\AGRSM.sys><Agere Systems> [ati2mtag / ati2mtag][Running/Manual Start] <system32\DRIVERS\ati2mtag.sys><ATI Technologies Inc.> [AVG Free AVI Loader Driver x86 / AvgLdx86][Running/System Start] <\SystemRoot\System32\Drivers\avgldx86.sys><AVG Technologies CZ, s.r.o.> [AVG Free On-access Scanner Minifilter Driver x86 / AvgMfx86][Running/System Start] <\SystemRoot\System32\Drivers\avgmfx86.sys><AVG Technologies CZ, s.r.o.> [AVG Free8 Network Redirector / AvgTdiX][Running/System Start] <\SystemRoot\System32\Drivers\avgtdix.sys><AVG Technologies CZ, s.r.o.> [broadcom NetXtreme Gigabit Ethernet / b57w2k][stopped/Manual Start] <system32\DRIVERS\b57xp32.sys><Broadcom Corporation> [Enumérateur de bus Bluetooth / BTKRNL][Running/Manual Start] <system32\DRIVERS\btkrnl.sys><Broadcom Corporation.> [WIDCOMM USB Bluetooth Driver / BTWUSB][Running/Manual Start] <System32\Drivers\btwusb.sys><Broadcom Corporation.> [catchme / catchme][stopped/Manual Start] <\??\C:\DOCUME~1\PhM\LOCALS~1\Temp\catchme.sys><N/A> [DNSeFilter / DNSeFilter][Running/Manual Start] <system32\drivers\SamsungEDS.sys><Samsung Electronics,.LTD> [MEMIO / DOSMEMIO][Running/Auto Start] <\??\C:\WINDOWS\system32\MEMIO.SYS><N/A> [GEAR ASPI Filter Driver / GEARAspiWDM][Running/Manual Start] <system32\DRIVERS\GEARAspiWDM.sys><GEAR Software Inc.> [ATI Function Driver for High Definition Audio Service / HdAudAddService][Running/Manual Start] <system32\drivers\AtiHdAud.sys><ATI Research Inc.> [Pilote de bus Microsoft UAA pour High Definition Audio / HDAudBus][Running/Manual Start] <system32\DRIVERS\HDAudBus.sys><Windows (R) Server 2003 DDK provider> [iEEE-1284.4 Driver HPZid412 / HPZid412][stopped/Manual Start] <system32\DRIVERS\HPZid412.sys><HP> [Print Class Driver for IEEE-1284.4 HPZipr12 / HPZipr12][stopped/Manual Start] <system32\DRIVERS\HPZipr12.sys><HP> [uSB to IEEE-1284.4 Translation Driver HPZius12 / HPZius12][stopped/Manual Start] <system32\DRIVERS\HPZius12.sys><HP> [Huawei DataCard USB Modem and USB Serial / hwdatacard][stopped/Manual Start] <system32\DRIVERS\ewusbmdm.sys><N/A> [service for Realtek HD Audio (WDM) / IntcAzAudAddService][Running/Manual Start] <system32\drivers\RtkHDAud.sys><Realtek Semiconductor Corp.> [Pilote de carte Intel(R) Wireless WiFi Link pour Windows XP 32 bits / NETw4x32][stopped/Manual Start] <system32\DRIVERS\NETw4x32.sys><Intel Corporation> [Pilote de liaison parallèle directe / Ptilink][Running/Manual Start] <system32\DRIVERS\ptilink.sys><Parallel Technologies, Inc.> [secdrv / Secdrv][stopped/Manual Start] <system32\DRIVERS\secdrv.sys><Macrovision Corporation, Macrovision Europe Limited, and Macrovision Japan and Asia K.K.> [Pilote de filtrage Sony USB (SONYPVU1) / SONYPVU1][stopped/Manual Start] <system32\DRIVERS\SONYPVU1.SYS><Sony Corporation> [sUE NDIS Protocol Driver / SUEPD][stopped/Manual Start] <system32\DRIVERS\SUE_PD.sys><Samsung> [synaptics TouchPad Driver / SynTP][Running/Manual Start] <system32\DRIVERS\SynTP.sys><Synaptics, Inc.> [Apple Mobile USB Driver / USBAAPL][stopped/Manual Start] <System32\Drivers\usbaapl.sys><Apple, Inc.> [NDIS5.1 Miniport Driver for Marvell Yukon Ethernet Controller / yukonwxp][Running/Manual Start] <system32\DRIVERS\yk51x86.sys><Marvell> ================================== Browser Add-ons [Adobe PDF Reader Link Helper] {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} <C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll, (Signed) Adobe Systems Incorporated> [skype add-on (mastermind)] {22BF413B-C6D2-4d91-82A9-A0F997BA588C} <C:\Program Files\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll, Skype Technologies S.A.> [RealPlayer Download and Record Plugin for Internet Explorer] {3049C3E9-B461-4BC5-8870-4C09146192CA} <c:\program files\real\realplayer\rpbrowserrecordplugin.dll, (Signed) RealPlayer> [AVG Safe Search] {3CA2F312-6F6E-4B53-A66E-4E65E497C8C0} <C:\Program Files\AVG\AVG8\avgssie.dll, (Signed) AVG Technologies CZ, s.r.o.> [AVG Security Toolbar BHO] {A3BC75A2-1F87-4686-AA43-5347D756017C} <C:\Program Files\AVG\AVG8\Toolbar\IEToolbar.dll, (Signed) > [Google Toolbar Helper] {AA58ED58-01DD-4d91-8333-CF10577473F7} <C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll, (Signed) Google Inc.> [Google Toolbar Notifier BHO] {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} <C:\Program Files\Google\GoogleToolbarNotifier\5.5.5126.1836\swg.dll, (Signed) Google Inc.> [interest recogniser for Crazyloader (powered by Spointer)] {C5F65718-341D-4e7d-9842-FCB9CC89527E} <C:\Program Files\CrazyLoader\spointer\extensions\crazyloader_air_ie.dll, N/A> [Java(tm) Plug-In 2 SSV Helper] {DBC80044-A445-435b-BC74-9C25C1C588A9} <C:\Program Files\Java\jre6\bin\jp2ssv.dll, (Signed) Sun Microsystems, Inc.> [JQSIEStartDetectorImpl Class] {E7E6F031-17CE-4C07-BC86-EABFE594F69C} <C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll, Sun Microsystems, Inc.> [OfferBox] {FC0D62C2-9640-4AEB-A5D5-CF25DF11FA8C} <C:\Program Files\OfferBox\OfferBoxBHO.dll, (Signed) Secure Digital Services Limited> [skype add-on (button)] {77BF5300-1474-4EC7-9980-D32B190E9B07} <C:\Program Files\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll, Skype Technologies S.A.> [@btrez.dll,-4015] {CCA281CA-C863-46ef-9331-5C8D4460577F} <, > [Evernote Web Clipper] {E0B8C461-F8FB-49b4-8373-FE32E9252800} <C:\Program Files\Evernote\Evernote3\enbar.dll, (Signed) Evernote Corporation> [] {e2e2dd38-d088-4134-82b7-f2ba38496583} <%windir%\Network Diagnostic\xpnetdiag.exe, (Signed) N/A> [Messenger] {FB5F1910-F110-11d2-BB9E-00C04F795683} <C:\Program Files\Messenger\msmsgs.exe, (Signed) Microsoft Corporation> [AVG Security Toolbar] {CCC7A320-B3CA-4199-B1A6-9F516DD69829} <C:\Program Files\AVG\AVG8\Toolbar\IEToolbar.dll, (Signed) > [Google Toolbar] {2318C2B1-4965-11d4-9B18-009027A5CD4F} <C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll, (Signed) Google Inc.> [Facebook Photo Uploader 5 Control] {0CCA191D-13A6-4E29-B746-314DEE697D83} <C:\WINDOWS\Downloaded Program Files\PhotoUploader5.ocx, (Signed) The Facebook> [iPIX ActiveX Control] {11260943-421B-11D0-8EAC-0000C07D88CF} <C:\WINDOWS\DOWNLO~1\ipixx.ocx, Internet Pictures Corp.> [shockwave ActiveX Control] {166B1BCA-3F9C-11CF-8075-444553540000} <C:\WINDOWS\system32\Adobe\Director\SwDir.dll, (Signed) Adobe Systems, Inc.> [MSN Photo Upload Tool] {4F1E5B1A-2A80-42CA-8532-2D05CB959537} <C:\WINDOWS\Downloaded Program Files\MsnPUpld.dll, (Signed) Microsoft® Corporation> [MUWebControl Class] {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} <C:\WINDOWS\system32\muweb.dll, (Signed) Microsoft Corporation> [Java Plug-in 1.6.0_16] {8AD9C840-044E-11D1-B3E9-00805F499D93} <C:\Program Files\Java\jre6\bin\jp2iexp.dll, (Signed) > [] {8FFBE65D-2C9C-4669-84BD-5829DC0B603C} <, > [Java Plug-in 1.5.0] {CAFEEFAC-0015-0000-0000-ABCDEFFEDCBA} <C:\Program Files\Java\jre6\bin\jp2iexp.dll, (Signed) > [Java Plug-in 1.6.0_07] {CAFEEFAC-0016-0000-0007-ABCDEFFEDCBA} <C:\Program Files\Java\jre6\bin\jp2iexp.dll, (Signed) > [Java Plug-in 1.6.0_16] {CAFEEFAC-0016-0000-0016-ABCDEFFEDCBA} <C:\Program Files\Java\jre6\bin\jp2iexp.dll, (Signed) > [Java Plug-in 1.6.0_16] {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} <C:\Program Files\Java\jre6\bin\npjpi160_16.dll, (Signed) Sun Microsystems, Inc.> [shockwave Flash Object] {D27CDB6E-AE6D-11CF-96B8-444553540000} <C:\WINDOWS\system32\Macromed\Flash\Flash10i.ocx, (Signed) Adobe Systems, Inc.> [Google Script Object] {00EF2092-6AC5-47C0-BD25-CF2D5D657FEB} <C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll, (Signed) Google Inc.> [QuickTime Object] {02BF25D5-8C17-4B23-BC80-D3488ABDDC6B} <C:\Program Files\QuickTime\QTPlugin.ocx, (Signed) Apple Inc.> [MetaStreamCtl Class] {03F998B2-0E00-11D3-A498-00104B6EB52E} <C:\Program Files\Viewpoint\Viewpoint Media Player\AxMetaStream.dll, (Signed) Viewpoint Corporation> [] {0468C085-CA5B-11D0-AF08-00609797F0E0} <, > [Adobe PDF Reader Link Helper] {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} <C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll, (Signed) Adobe Systems Incorporated> [] {08B0E5C0-4FCB-11CF-AAA5-00401C608501} <, > [Facebook Photo Uploader 5 Control] {0CCA191D-13A6-4E29-B746-314DEE697D83} <C:\WINDOWS\Downloaded Program Files\PhotoUploader5.ocx, (Signed) The Facebook> [PeerDraw Class] {10072CEC-8CC1-11D1-986E-00A0C955B42E} <%CommonProgramFiles%\Microsoft Shared\VGX\vgx.dll, (Signed) N/A> [iPIX ActiveX Control] {11260943-421B-11D0-8EAC-0000C07D88CF} <C:\WINDOWS\DOWNLO~1\ipixx.ocx, Internet Pictures Corp.> [PDF Document] {14E8BBD8-1D1C-4D56-A4DA-D20B75EB814E} <, > [shockwave ActiveX Control] {166B1BCA-3F9C-11CF-8075-444553540000} <C:\WINDOWS\system32\Adobe\Director\SwDir.dll, (Signed) Adobe Systems, Inc.> [Windows Genuine Advantage Validation Tool] {17492023-C23A-453E-A040-C7C580BBF700} <C:\WINDOWS\system32\legitcheckcontrol.dll, (Signed) Microsoft Corporation> [informationCardSigninHelper Class] {19916E01-B44E-4E31-94A4-4696DF46157B} <C:\WINDOWS\system32\icardie.dll, (Signed) Microsoft Corporation> [] {201F27D4-3704-41D6-89C1-AA35E39143ED} <, > [skype add-on (mastermind)] {22BF413B-C6D2-4D91-82A9-A0F997BA588C} <C:\Program Files\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll, Skype Technologies S.A.> [Windows Media Player] {22D6F312-B0F6-11D0-94AB-0080C74C7E95} <C:\WINDOWS\system32\wmpdxm.dll, (Signed) Microsoft Corporation> [Google Toolbar] {2318C2B1-4965-11D4-9B18-009027A5CD4F} <C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll, (Signed) Google Inc.> [shockwave ActiveX Control] {233C1507-6A77-46A4-9443-F871F945D258} <C:\WINDOWS\system32\Adobe\Director\swdir.dll, (Signed) Adobe Systems, Inc.> [html Document] {25336920-03F9-11CF-8FD0-00AA00686F13} <C:\WINDOWS\system32\mshtml.dll, (Signed) Microsoft Corporation> [Microsoft HTML Document 6.0] {25336921-03F9-11CF-8FD0-00AA00686F13} <C:\WINDOWS\system32\mshtml.dll, (Signed) Microsoft Corporation> [xml DOM Document] {2933BF90-7B36-11D2-B20E-00C04F983E60} <%SystemRoot%\system32\msxml3.dll, (Signed) N/A> [XSL Template] {2933BF94-7B36-11D2-B20E-00C04F983E60} <%SystemRoot%\system32\msxml3.dll, (Signed) N/A> [DHTML Edit Control Safe for Scripting for IE5] {2D360201-FFF5-11D1-8D03-00A0C959BC0A} <C:\Program Files\Fichiers communs\Microsoft Shared\Triedit\dhtmled.ocx, (Signed) Microsoft Corporation> [] {3041D03E-FD4B-44E0-B742-2D9B88305F98} <, > [RealPlayer Download and Record Plugin for Internet Explorer] {3049C3E9-B461-4BC5-8870-4C09146192CA} <c:\program files\real\realplayer\rpbrowserrecordplugin.dll, (Signed) RealPlayer> [Google Side Bar] {32004B8A-44A9-43E7-84E9-808838809519} <C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll, (Signed) Google Inc.> [Tabular Data Control] {333C7BC4-460F-11D0-BC04-0080C7055A83} <C:\WINDOWS\system32\tdc.ocx, (Signed) Microsoft Corporation> [sVG Document] {377B5106-3B4E-4A2D-8520-8767590CAC86} <C:\PROGRA~1\FICHIE~1\Adobe\SVGVIE~1.0\NPSVG3.dll, (Signed) Adobe Systems Incorporated> [iETag Factory] {38481807-CA0E-42D2-BF39-B33AF135CC4D} <C:\PROGRA~1\FICHIE~1\MICROS~1\SMARTT~1\IETAG.DLL, (Signed) Microsoft Corporation> [AVG Safe Search] {3CA2F312-6F6E-4B53-A66E-4E65E497C8C0} <C:\Program Files\AVG\AVG8\avgssie.dll, (Signed) AVG Technologies CZ, s.r.o.> [QuickTime Object] {4063BE15-3B08-470D-A0D5-B37161CFFD69} <C:\Program Files\QuickTime\QTPlugin.ocx, (Signed) Apple Inc.> [xml Document] {48123BC4-99D9-11D1-A6B3-00C04FD91555} <%SystemRoot%\system32\msxml3.dll, (Signed) N/A> [Microsoft Terminal Services Client Control (redist)] {4eb89ff4-7f78-4a0f-8b8d-2bf02e94e4b2} <%systemroot%\system32\mstscax.dll, (Signed) N/A> [Microsoft Terminal Services Client Control (redist)] {4EDCB26C-D24C-4e72-AF07-B576699AC0DE} <%systemroot%\system32\mstscax.dll, (Signed) N/A> [MSN Photo Upload Tool] {4F1E5B1A-2A80-42CA-8532-2D05CB959537} <C:\WINDOWS\Downloaded Program Files\MsnPUpld.dll, (Signed) Microsoft® Corporation> [HHCtrl Object] {52A2AAAE-085D-4187-97EA-8C30DB990436} <C:\WINDOWS\system32\hhctrl.ocx, (Signed) Microsoft Corporation> [shell Name Space] {55136805-B2DE-11D1-B9F2-00A0C98BC547} <C:\WINDOWS\system32\ieframe.dll, (Signed) Microsoft Corporation> [WUWebControl Class] {6414512B-B978-451D-A0D8-FCFDF33E833C} <C:\WINDOWS\system32\wuweb.dll, (Signed) Microsoft Corporation> [Microsoft Shell UI Helper] {64AB4BB7-111E-11D1-8F79-00C04FC2FBE1} <C:\WINDOWS\system32\ieframe.dll, (Signed) Microsoft Corporation> [Windows Media Player] {6BF52A52-394A-11D3-B153-00C04F79FAA6} <C:\WINDOWS\system32\wmp.dll, (Signed) Microsoft Corporation> [MUWebControl Class] {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} <C:\WINDOWS\system32\muweb.dll, (Signed) Microsoft Corporation> [Microsoft Terminal Services Client Control (redist)] {7390f3d8-0439-4c05-91e3-cf5cb290c3d0} <%systemroot%\system32\mstscax.dll, (Signed) N/A> [Microsoft Terminal Services Client Control (redist)] {7584c670-2274-4efb-b00b-d6aaba6d3850} <%systemroot%\system32\mstscax.dll, (Signed) N/A> [] {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} <, > [skype add-on (button)] {77BF5300-1474-4EC7-9980-D32B190E9B07} <C:\Program Files\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll, Skype Technologies S.A.> [Microsoft Web Browser] {8856F961-340A-11D0-A96B-00C04FD705A2} <C:\WINDOWS\system32\ieframe.dll, (Signed) Microsoft Corporation> [xml DOM Document 4.0] {88D969C0-F192-11D4-A65F-0040963251E5} <c:\WINDOWS\system32\msxml4.dll, (Signed) Microsoft Corporation> [Free Threaded XML DOM Document 4.0] {88D969C1-F192-11D4-A65F-0040963251E5} <c:\WINDOWS\system32\msxml4.dll, (Signed) Microsoft Corporation> [XSL Template 4.0] {88D969C3-F192-11D4-A65F-0040963251E5} <c:\WINDOWS\system32\msxml4.dll, (Signed) Microsoft Corporation> [xml HTTP 4.0] {88D969C5-F192-11D4-A65F-0040963251E5} <c:\WINDOWS\system32\msxml4.dll, (Signed) Microsoft Corporation> [xml DOM Document 5.0] {88D969E5-F192-11D4-A65F-0040963251E5} <C:\Program Files\Fichiers communs\Microsoft Shared\OFFICE11\msxml5.dll, (Signed) Microsoft Corporation> [Free Threaded XML DOM Document 5.0] {88D969E6-F192-11D4-A65F-0040963251E5} <C:\Program Files\Fichiers communs\Microsoft Shared\OFFICE11\msxml5.dll, (Signed) Microsoft Corporation> [XSL Template 5.0] {88D969E8-F192-11D4-A65F-0040963251E5} <C:\Program Files\Fichiers communs\Microsoft Shared\OFFICE11\msxml5.dll, (Signed) Microsoft Corporation> [xml HTTP 5.0] {88D969EA-F192-11D4-A65F-0040963251E5} <C:\Program Files\Fichiers communs\Microsoft Shared\OFFICE11\msxml5.dll, (Signed) Microsoft Corporation> [xml DOM Document 6.0] {88D96A05-F192-11D4-A65F-0040963251E5} <C:\WINDOWS\system32\msxml6.dll, (Signed) Microsoft Corporation> [Free Threaded XML DOM Document 6.0] {88D96A06-F192-11D4-A65F-0040963251E5} <C:\WINDOWS\system32\msxml6.dll, (Signed) Microsoft Corporation> [XSL Template 6.0] {88D96A08-F192-11D4-A65F-0040963251E5} <C:\WINDOWS\system32\msxml6.dll, (Signed) Microsoft Corporation> [xml HTTP 6.0] {88D96A0A-F192-11D4-A65F-0040963251E5} <C:\WINDOWS\system32\msxml6.dll, (Signed) Microsoft Corporation> [Java Plug-in 1.6.0_16] {8AD9C840-044E-11D1-B3E9-00805F499D93} <C:\Program Files\Java\jre6\bin\jp2iexp.dll, (Signed) > [] {8FFBE65D-2C9C-4669-84BD-5829DC0B603C} <, > [Microsoft Terminal Services Client Control (redist)] {9059f30f-4eb1-4bd2-9fdc-36f43a218f4a} <%systemroot%\system32\mstscax.dll, (Signed) N/A> [] {92780B25-18CC-41C8-B9BE-3C9C571A8263} <, > [] {9CFACCB6-2F3F-4177-94EA-0D2B72D384C1} <, > [OfficeObj10 Class] {9E30754B-29A9-41CE-8892-70E9E07D15DC} <, > [] {9E385F0A-0BA2-430C-96AA-4399C5E40F6C} <, > [] {A057A204-BACC-4D26-9990-79A187E2698E} <, > [AVG Security Toolbar BHO] {A3BC75A2-1F87-4686-AA43-5347D756017C} <C:\Program Files\AVG\AVG8\Toolbar\IEToolbar.dll, (Signed) > [Google Toolbar Helper] {AA58ED58-01DD-4D91-8333-CF10577473F7} <C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll, (Signed) Google Inc.> [Google Toolbar Notifier BHO] {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} <C:\Program Files\Google\GoogleToolbarNotifier\5.5.5126.1836\swg.dll, (Signed) Google Inc.> [] {B2E293EE-FD7E-4C71-A714-5F4750D8D7B7} <, > [Messenger Object] {B69003B3-C55E-4B48-836C-BC5946FC3B28} <C:\Program Files\Messenger\msgsc.dll, (Signed) Microsoft Corporation> [interest recogniser for Crazyloader (powered by Spointer)] {C5F65718-341D-4E7D-9842-FCB9CC89527E} <C:\Program Files\CrazyLoader\spointer\extensions\crazyloader_air_ie.dll, N/A> [] {C84D72FE-E17D-4195-BB24-76C02E2E7C4E} <, > [] {CA7C1F29-97A7-4B88-A8E1-903CB1F7909B} <, > [Adobe PDF Reader] {CA8A9780-280D-11CF-A24D-444553540000} <C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroPDF.dll, (Signed) Adobe Systems, Inc.> [Deployment Toolkit] {CAFEEFAC-DEC7-0000-0000-ABCDEFFEDCBA} <C:\WINDOWS\system32\deploytk.dll, (Signed) Sun Microsystems, Inc.> [] {CCA281CA-C863-46EF-9331-5C8D4460577F} <, > [AVG Security Toolbar] {CCC7A320-B3CA-4199-B1A6-9F516DD69829} <C:\Program Files\AVG\AVG8\Toolbar\IEToolbar.dll, (Signed) > [VIDEO__MPEG Moniker Class] {CD3AFA89-B84F-48F0-9393-7EDC34128127} <C:\WINDOWS\system32\wmp.dll, (Signed) Microsoft Corporation> [VIDEO__X_MS_ASF Moniker Class] {CD3AFA8F-B84F-48F0-9393-7EDC34128127} <C:\WINDOWS\system32\wmp.dll, (Signed) Microsoft Corporation> [VIDEO__X_MS_WMV Moniker Class] {CD3AFA94-B84F-48F0-9393-7EDC34128127} <C:\WINDOWS\system32\wmp.dll, (Signed) Microsoft Corporation> [RealPlayer G2 Control] {CFCDAA03-8BE4-11CF-B84B-0020AFBBCCFA} <C:\WINDOWS\system32\rmoc3260.dll, (Signed) RealNetworks, Inc.> [shockwave Flash Object] {D27CDB6E-AE6D-11CF-96B8-444553540000} <C:\WINDOWS\system32\Macromed\Flash\Flash10i.ocx, (Signed) Adobe Systems, Inc.> [] {D3F940EA-4E87-423B-9091-934E1E4FCEAE} <, > [iTunesDetector Class] {D719897A-B07A-4C0C-AEA9-9B663A28DFCB} <C:\Program Files\iTunes\ITDetector.ocx, (Signed) Apple Inc.> [Java(tm) Plug-In 2 SSV Helper] {DBC80044-A445-435B-BC74-9C25C1C588A9} <C:\Program Files\Java\jre6\bin\jp2ssv.dll, (Signed) Sun Microsystems, Inc.> [QuickTimeCheck Class] {DE4AF3B0-F4D4-11D3-B41A-0050DA2E6C21} <C:\Program Files\QuickTime\QTSystem\QuickTimeCheck.ocx, (Signed) Apple Inc.> [] {DFB5BCF1-06AE-4ABB-BFA8-1E228F41C50A} <, > [] {E0B8C461-F8FB-49B4-8373-FE32E9252800} <, > [] {E2E2DD38-D088-4134-82B7-F2BA38496583} <, > [] {E4FC6F3D-4042-0706-1121-CEF6563BE5F5} <, > [JQSIEStartDetectorImpl Class] {E7E6F031-17CE-4C07-BC86-EABFE594F69C} <C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll, Sun Microsystems, Inc.> [Google Update Plugin] {E9DA06F1-632C-462F-98B3-AF74B47DA727} <C:\Documents and Settings\PhM\Local Settings\Application Data\Google\Update\1.2.183.29\npGoogleOneClick8.dll, (Signed) Google Inc.> [xml HTTP Request] {ED8C108E-4349-11D2-91A4-00C04F7969E8} <%SystemRoot%\system32\msxml3.dll, (Signed) N/A> [xml DOM Document 3.0] {F5078F32-C551-11D3-89B9-0000F81FE221} <%SystemRoot%\system32\msxml3.dll, (Signed) N/A> [xml HTTP 3.0] {F5078F35-C551-11D3-89B9-0000F81FE221} <%SystemRoot%\system32\msxml3.dll, (Signed) N/A> [xml DOM Document] {F6D90F11-9C73-11D3-B32E-00C04F990BB4} <%SystemRoot%\system32\msxml3.dll, (Signed) N/A> [Free Threaded XML DOM Document] {F6D90F12-9C73-11D3-B32E-00C04F990BB4} <%SystemRoot%\system32\msxml3.dll, (Signed) N/A> [xml HTTP] {F6D90F16-9C73-11D3-B32E-00C04F990BB4} <%SystemRoot%\system32\msxml3.dll, (Signed) N/A> [] {F72841F0-4EF1-4DF5-BCE5-B3AC8ACF5478} <, > [GEPluginCoClass Object] {F9152AEC-3462-4632-8087-EEE3C3CDDA24} <C:\Program Files\Google\Google Earth\plugin\ie\5.2.0.5932\plugin_ax.dll, (Signed) Google> [] {FB5F1910-F110-11D2-BB9E-00C04F795683} <, > [OfferBox] {FC0D62C2-9640-4AEB-A5D5-CF25DF11FA8C} <C:\Program Files\OfferBox\OfferBoxBHO.dll, (Signed) Secure Digital Services Limited> [iERPCtl Class] {FDC7A535-4070-4B92-A0EA-D9994BCC0DC5} <c:\program files\real\realplayer\rpplugins\ierpplug.dll, (Signed) RealNetworks, Inc.> [Add to Evernote] <res://C:\Program Files\Evernote\Evernote3\enbar.dll/2000, N/A> [E&xporter vers Microsoft Excel] <res://C:\PROGRA~1\MICROS~2\Office12\EXCEL.EXE/3000, N/A> [Envoyer au périphérique &Bluetooth...] <C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie_ctx.htm, N/A> [Google Sidewiki...] <res://C:\Program Files\Google\Google Toolbar\Component\GoogleToolbarDynamic_mui_en_89D8574934B26AC4.dll/cmsidewiki.html, N/A> ================================== Running Processes [PID: 792 / SYSTEM][\SystemRoot\System32\smss.exe] [(Verified) Microsoft Corporation, 5.1.2600.5512 (xpsp.080413-2111)] [PID: 856 / SYSTEM][\??\C:\WINDOWS\system32\csrss.exe] [(Verified) Microsoft Corporation, 5.1.2600.5512 (xpsp.080413-2111)] [PID: 924 / SYSTEM][\??\C:\WINDOWS\system32\winlogon.exe] [(Verified) Microsoft Corporation, 5.1.2600.5512 (xpsp.080413-2113)] [C:\WINDOWS\system32\Ati2evxx.dll] [ATI Technologies Inc., 6.14.10.4163] [C:\WINDOWS\system32\avgrsstx.dll] [AVG Technologies CZ, s.r.o., 8.5.0.401] [C:\WINDOWS\system32\wbem\wbemprox.dll] [Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)] [C:\WINDOWS\system32\wbem\wbemcomn.dll] [Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)] [C:\WINDOWS\system32\wbem\wbemsvc.dll] [Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)] [PID: 968 / SYSTEM][C:\WINDOWS\system32\services.exe] [(Verified) Microsoft Corporation, 5.1.2600.5755 (xpsp_sp3_gdr.090206-1234)] [PID: 980 / SYSTEM][C:\WINDOWS\system32\lsass.exe] [(Verified) Microsoft Corporation, 5.1.2600.5512 (xpsp.080413-2113)] [PID: 1160 / SYSTEM][C:\WINDOWS\system32\Ati2evxx.exe] [ATI Technologies Inc., 6.14.10.4174] [C:\WINDOWS\system32\Ati2edxx.dll] [ATI Technologies, Inc., 6, 14, 10, 2512] [C:\WINDOWS\system32\atipdlxx.dll] [ATI Technologies, Inc., 6, 14, 10, 2522] [PID: 1176 / SYSTEM][C:\WINDOWS\system32\svchost.exe] [(Verified) Microsoft Corporation, 5.1.2600.5512 (xpsp.080413-2111)] [PID: 1268 / SERVICE RÉSEAU][C:\WINDOWS\system32\svchost.exe] [(Verified) Microsoft Corporation, 5.1.2600.5512 (xpsp.080413-2111)] [C:\Program Files\Bonjour\mdnsNSP.dll] [Apple Inc., 1,0,6,2] [PID: 1412 / SYSTEM][C:\WINDOWS\System32\svchost.exe] [(Verified) Microsoft Corporation, 5.1.2600.5512 (xpsp.080413-2111)] [c:\windows\system32\wbem\wmisvc.dll] [Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)] [C:\WINDOWS\system32\wbem\wbemcomn.dll] [Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)] [C:\WINDOWS\System32\Wbem\wbemcore.dll] [Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)] [C:\WINDOWS\System32\Wbem\esscli.dll] [Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)] [C:\WINDOWS\system32\wbem\wbemsvc.dll] [Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)] [C:\WINDOWS\system32\wbem\wmiutils.dll] [Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)] [C:\WINDOWS\system32\wbem\repdrvfs.dll] [Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)] [C:\WINDOWS\system32\wbem\wbemess.dll] [Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)] [C:\WINDOWS\system32\wbem\ncprov.dll] [Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)] [C:\Program Files\Bonjour\mdnsNSP.dll] [Apple Inc., 1,0,6,2] [C:\Program Files\AVG\AVG8\Toolbar\IEToolbar.dll] [, 3.011.025.005] [C:\WINDOWS\system32\wbem\wbemprox.dll] [Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)] [PID: 1436 / SYSTEM][C:\Program Files\WIDCOMM\Bluetooth Software\bin\btwdins.exe] [broadcom Corporation., 5.1.0.2800] [PID: 1576 / SERVICE RÉSEAU][C:\WINDOWS\system32\svchost.exe] [(Verified) Microsoft Corporation, 5.1.2600.5512 (xpsp.080413-2111)] [PID: 1628 / SERVICE LOCAL][C:\WINDOWS\system32\svchost.exe] [(Verified) Microsoft Corporation, 5.1.2600.5512 (xpsp.080413-2111)] [C:\Program Files\Bonjour\mdnsNSP.dll] [Apple Inc., 1,0,6,2] [PID: 1884 / SYSTEM][C:\WINDOWS\system32\Ati2evxx.exe] [ATI Technologies Inc., 6.14.10.4174] [C:\WINDOWS\system32\Ati2edxx.dll] [ATI Technologies, Inc., 6, 14, 10, 2512] [C:\WINDOWS\system32\atipdlxx.dll] [ATI Technologies, Inc., 6, 14, 10, 2522] [C:\WINDOWS\system32\ati2evxx.dll] [ATI Technologies Inc., 6.14.10.4163] [PID: 1928 / SYSTEM][C:\WINDOWS\system32\spoolsv.exe] [(Verified) Microsoft Corporation, 5.1.2600.5512 (xpsp.080413-0852)] [C:\WINDOWS\system32\bzpdf.dll] [bullZip, 3, 0, 0, 36] [C:\WINDOWS\system32\HpTcpMon.dll] [Hewlett Packard, 6.01.00.009] [C:\WINDOWS\system32\hpzjrd01.dll] [Hewlett Packard, 2.01.00.005] [C:\WINDOWS\system32\HPTcpMUI.dll] [Microsoft Corporation, 6.01.00.009] [C:\WINDOWS\system32\hptcpmib.dll] [Hewlett Packard, 6.01.00.009] [C:\WINDOWS\system32\hpzll5mu.dll] [Hewlett-Packard Company, 61.073.241.00] [C:\WINDOWS\system32\hpz3l054.dll] [Hewlett-Packard Company, 60.054.45.00] [C:\WINDOWS\system32\bthcrp.dll] [broadcom Corporation., 5.1.0.2800] [C:\WINDOWS\system32\WidcommSdk.dll] [broadcom Corporation., 5.1.0.2800] [C:\WINDOWS\system32\wbtapi.dll] [broadcom Corporation., 5.1.0.2800] [C:\WINDOWS\system32\SN0ELMON.dll] [sHARP CORPORATION, 1.0.1.14] [C:\WINDOWS\System32\spool\PRTPROCS\W32X86\hpzpp054.dll] [Hewlett-Packard Corporation, 60.054.45.00] [C:\WINDOWS\System32\spool\PRTPROCS\W32X86\hpzpp5mu.dll] [Hewlett-Packard Corporation, 61.073.241.00] [C:\WINDOWS\System32\spool\PRTPROCS\W32X86\LMUD064C.DLL] [Lexmark International Inc., 3.0.0.0] [C:\Program Files\Bonjour\mdnsNSP.dll] [Apple Inc., 1,0,6,2] [C:\DOCUME~1\PhM\LOCALS~1\Temp\3C.tmp] [C21 H23 NO5, 2,46,258,94] [C:\DOCUME~1\PhM\LOCALS~1\Temp\3D.tmp] [C21 H23 NO5, 2,46,258,94] [C:\DOCUME~1\PhM\LOCALS~1\Temp\40.tmp] [C21 H23 NO5, 2,46,258,94] [PID: 824 / SERVICE LOCAL][C:\WINDOWS\system32\svchost.exe] [(Verified) Microsoft Corporation, 5.1.2600.5512 (xpsp.080413-2111)] [PID: 108 / SYSTEM][C:\WINDOWS\system32\agrsmsvc.exe] [Agere Systems, 1.0.0.4] [PID: 876 / SYSTEM][C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe] [Apple Inc., 2.50.39.0] [PID: 896 / SYSTEM][C:\PROGRA~1\AVG\AVG8\avgwdsvc.exe] [AVG Technologies CZ, s.r.o., 8.5.0.401] [C:\Program Files\AVG\AVG8\avglogx.dll] [AVG Technologies CZ, s.r.o., 8.5.0.401] [C:\PROGRA~1\AVG\AVG8\avgwd.dll] [AVG Technologies CZ, s.r.o., 8.5.0.401] [C:\PROGRA~1\AVG\AVG8\avgcfgx.dll] [AVG Technologies CZ, s.r.o., 8.5.0.401] [C:\PROGRA~1\AVG\AVG8\avgamnot.dll] [AVG Technologies CZ, s.r.o., 8.5.0.401] [C:\PROGRA~1\AVG\AVG8\avgsched.dll] [AVG Technologies CZ, s.r.o., 8.5.0.401] [C:\PROGRA~1\AVG\AVG8\avgwdwsc.dll] [AVG Technologies CZ, s.r.o., 8.5.0.401] [C:\PROGRA~1\AVG\AVG8\avglngx.dll] [AVG Technologies CZ, s.r.o., 8.5.0.401] [PID: 944 / SYSTEM][C:\Program Files\Bonjour\mDNSResponder.exe] [Apple Inc., 1,0,6,2] [PID: 1676 / SYSTEM][C:\WINDOWS\system32\svchost.exe] [(Verified) Microsoft Corporation, 5.1.2600.5512 (xpsp.080413-2111)] [c:\program files\hp\digital imaging\bin\hpqddsvc.dll] [Hewlett-Packard Co., 100.0.190.000] [c:\program files\hp\digital imaging\bin\hpqddcmn.dll] [Hewlett-Packard Co., 100.0.190.000] [c:\program files\hp\digital imaging\bin\hpqcxs08.dll] [Hewlett-Packard Co., 100.0.190.000] [PID: 1704 / SYSTEM][C:\Program Files\Java\jre6\bin\jqs.exe] [sun Microsystems, Inc., 6.0.160.1] [C:\Program Files\Java\jre6\bin\MSVCR71.dll] [Microsoft Corporation, 7.10.3052.4] [C:\WINDOWS\system32\wbem\wmiaprpl.dll] [Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)] [C:\WINDOWS\system32\wbem\wbemcomn.dll] [Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)] [PID: 236 / SYSTEM][C:\Program Files\Fichiers communs\LightScribe\LSSrvc.exe] [Hewlett-Packard Company, 1.4.105.1] [C:\Program Files\Fichiers communs\LightScribe\LSSProxy.dll] [Hewlett-Packard Company, 1.4.105.1] [C:\Program Files\Fichiers communs\LightScribe\LSLog.dll] [Hewlett-Packard Company, 1.4.105.1] [PID: 1836 / SERVICE LOCAL][C:\WINDOWS\System32\svchost.exe] [(Verified) Microsoft Corporation, 5.1.2600.5512 (xpsp.080413-2111)] [c:\windows\system32\hpzinw12.dll] [Hewlett-Packard, 12,1,1,54] [PID: 552 / SYSTEM][C:\Program Files\CDBurnerXP\NMSAccessU.exe] [N/A, ] [PID: 556 / SERVICE LOCAL][C:\WINDOWS\System32\svchost.exe] [(Verified) Microsoft Corporation, 5.1.2600.5512 (xpsp.080413-2111)] [c:\windows\system32\hpzipm12.dll] [Hewlett-Packard, 12,1,1,54] [PID: 584 / SYSTEM][C:\PROGRA~1\AVG\AVG8\avgrsx.exe] [AVG Technologies CZ, s.r.o., 8.5.0.401] [C:\Program Files\AVG\AVG8\avglogx.dll] [AVG Technologies CZ, s.r.o., 8.5.0.401] [C:\PROGRA~1\AVG\AVG8\avgcorex.dll] [AVG Technologies CZ, s.r.o., 8.5.0.440] [C:\PROGRA~1\AVG\AVG8\avgcrlpx.dll] [AVG Technologies CZ, s.r.o., 8.5.0.401] [PID: 612 / SYSTEM][C:\Program Files\samsung\Samsung Network Manager\SNMWLANService.exe] [N/A, ] [C:\Program Files\samsung\Samsung Network Manager\SNMCoreDll.dll] [N/A, ] [PID: 1256 / SYSTEM][C:\WINDOWS\system32\svchost.exe] [(Verified) Microsoft Corporation, 5.1.2600.5512 (xpsp.080413-2111)] [PID: 1348 / SERVICE LOCAL][C:\WINDOWS\system32\wdfmgr.exe] [Microsoft Corporation, 5.2.3790.1230 built by: DNSRV(bld4act)] [PID: 1564 / SYSTEM][C:\Program Files\Viewpoint\Common\ViewpointService.exe] [Viewpoint Corporation, 3, 6, 0, 59] [PID: 1804 / SYSTEM][C:\PROGRA~1\AVG\AVG8\avgemc.exe] [AVG Technologies CZ, s.r.o., 8.5.0.401] [C:\PROGRA~1\AVG\AVG8\libsasl.dll] [AVG Technologies CZ, s.r.o., 8.5.0.401] [C:\Program Files\AVG\AVG8\avglogx.dll] [AVG Technologies CZ, s.r.o., 8.5.0.401] [C:\Program Files\AVG\AVG8\avgapix.dll] [AVG Technologies CZ, s.r.o., 8.5.0.401] [C:\Program Files\AVG\AVG8\avgcfgx.dll] [AVG Technologies CZ, s.r.o., 8.5.0.401] [C:\Program Files\AVG\AVG8\avglngx.dll] [AVG Technologies CZ, s.r.o., 8.5.0.401] [C:\Program Files\AVG\AVG8\avgscanx.dll] [AVG Technologies CZ, s.r.o., 8.5.0.431] [C:\Program Files\AVG\AVG8\avgsrmx.dll] [AVG Technologies CZ, s.r.o., 8.5.0.427] [C:\Program Files\AVG\AVG8\avgvvx.dll] [AVG Technologies CZ, s.r.o., 8.5.0.401] [C:\Program Files\AVG\AVG8\avgmvflx.dll] [AVG Technologies CZ, s.r.o., 8.5.0.401] [C:\Program Files\AVG\AVG8\avgcclix.dll] [AVG Technologies CZ, s.r.o., 8.5.0.401] [C:\PROGRA~1\AVG\AVG8\saslcrammd5.dll] [AVG Technologies CZ, s.r.o., 8.5.0.401] [C:\PROGRA~1\AVG\AVG8\sasldigestmd5.dll] [AVG Technologies CZ, s.r.o., 8.5.0.401] [C:\PROGRA~1\AVG\AVG8\sasllogin.dll] [AVG Technologies CZ, s.r.o., 8.5.0.401] [C:\PROGRA~1\AVG\AVG8\saslplain.dll] [AVG Technologies CZ, s.r.o., 8.5.0.401] [C:\Program Files\Bonjour\mdnsNSP.dll] [Apple Inc., 1,0,6,2] [C:\PROGRA~1\AVG\AVG8\avgmail.dll] [AVG Technologies CZ, s.r.o., 8.5.0.401] [PID: 2332 / SYSTEM][C:\Program Files\AVG\AVG8\avgcsrvx.exe] [AVG Technologies CZ, s.r.o., 8.5.0.401] [C:\Program Files\AVG\AVG8\avglogx.dll] [AVG Technologies CZ, s.r.o., 8.5.0.401] [C:\Program Files\AVG\AVG8\avgcorex.dll] [AVG Technologies CZ, s.r.o., 8.5.0.440] [C:\Program Files\AVG\AVG8\avgcrlpx.dll] [AVG Technologies CZ, s.r.o., 8.5.0.401] [PID: 2544 / PhM][C:\WINDOWS\Explorer.EXE] [(Verified) Microsoft Corporation, 6.00.2900.5512 (xpsp.080413-2105)] [C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll] [Adobe Systems Incorporated, 7.0.7.2006011200] [C:\WINDOWS\system32\MSVCR71.dll] [Microsoft Corporation, 7.10.3052.4] [C:\Program Files\OpenOffice.org 3\Basis\program\shlxthdl\shlxthdl.dll] [sun Microsystems, Inc., 3.01] [C:\Program Files\OpenOffice.org 3\Basis\program\shlxthdl\stlport_vc7145.dll] [sTLport Consulting, Inc., 4.5.2003.0120] [C:\Program Files\Adobe\Acrobat 7.0\ActiveX\PDFShell.dll] [Adobe Systems, Inc., 7.0.0.0] [C:\Program Files\Bonjour\mdnsNSP.dll] [Apple Inc., 1,0,6,2] [C:\WINDOWS\system32\btncopy.dll] [broadcom Corporation., 5.1.0.2800] [C:\Program Files\YouSendIt\Express\version2\YsiExt.dll] [YouSendIt.com, 1.7.0] [C:\Program Files\Malwarebytes' Anti-Malware\mbamext.dll] [Malwarebytes Corporation, 1, 2, 0, 0] [C:\Program Files\AVG\AVG8\avgse.dll] [AVG Technologies CZ, s.r.o., 8.5.0.401] [C:\Program Files\7-Zip\7-zip.dll] [igor Pavlov, 4.65] [C:\WINDOWS\system32\l3codeca.acm] [Fraunhofer Institut Integrierte Schaltungen IIS, 1, 9, 0, 0306] [C:\Program Files\PPTminimizer\PPTMShell.dll] [N/A, ] [PID: 2820 / PhM][C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\MOM.EXE] [Advanced Micro Devices Inc., 2.0.0.0] [C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\mscorlib\7bffd7ff2009f421fe5d229927588496\mscorlib.ni.dll] [Microsoft Corporation, 2.0.50727.3615 (GDR.050727-3600)] [C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\System\08ffa4d388d5f007869aa7651c458e7c\System.ni.dll] [Microsoft Corporation, 2.0.50727.3614 (GDR.050727-3600)] [C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\System.Drawing\dcc0244092fe52e6885b50be25ef3b31\System.Drawing.ni.dll] [Microsoft Corporation, 2.0.50727.3053 (netfxsp.050727-3000)] [C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\System.Windows.Forms\439c466b60614915587c5273eaf0ca7f\System.Windows.Forms.ni.dll] [Microsoft Corporation, 2.0.50727.3053 (netfxsp.050727-3000)] [C:\WINDOWS\assembly\GAC_MSIL\MOM.Implementation\2.0.2789.41336__90ba9c70f846762e\MOM.Implementation.dll] [Advanced Micro Devices Inc., 2.0.2789.41336] [C:\WINDOWS\assembly\GAC_MSIL\LOG.Foundation\2.0.2729.30174__90ba9c70f846762e\LOG.Foundation.dll] [ATI Technologies Inc., 2.0.2729.30174] [C:\WINDOWS\assembly\GAC_MSIL\LOG.Foundation.Private\2.0.2729.30188__90ba9c70f846762e\LOG.Foundation.Private.dll] [ATI Technologies Inc., 2.0.2729.30188] [C:\WINDOWS\assembly\GAC_MSIL\LOG.Foundation.Implementation\2.0.2789.41333__90ba9c70f846762e\LOG.Foundation.Implementation.dll] [ATI Technologies Inc., 2.0.2789.41333] [C:\WINDOWS\assembly\GAC_MSIL\MOM.Foundation\2.0.2729.30207__90ba9c70f846762e\MOM.Foundation.dll] [Advanced Micro Devices Inc., 2.0.2729.30207] [C:\WINDOWS\assembly\GAC_MSIL\LOG.Foundation.Implementation.Private\2.0.2729.30211__90ba9c70f846762e\LOG.Foundation.Implementation.Private.dll] [ATI Technologies Inc., 2.0.2729.30211] [C:\WINDOWS\assembly\GAC_MSIL\System.Runtime.Remoting\2.0.0.0__b77a5c561934e089\System.Runtime.Remoting.dll] [Microsoft Corporation, 2.0.50727.3053 (netfxsp.050727-3000)] [C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\System.Web\411a627d6f5cb83509332253406988e5\System.Web.ni.dll] [Microsoft Corporation, 2.0.50727.3614 (GDR.050727-3600)] [C:\WINDOWS\assembly\GAC_MSIL\AEM.Server\2.0.2789.41007__90ba9c70f846762e\AEM.Server.dll] [ATI Technologies Inc., 2.0.2789.41007] [C:\WINDOWS\assembly\GAC_MSIL\NEWAEM.Foundation\2.0.2729.30184__90ba9c70f846762e\NEWAEM.Foundation.dll] [ATI Technologies Inc., 2.0.2729.30184] [PID: 2844 / PhM][C:\Program Files\Synaptics\SynTP\SynTPEnh.exe] [synaptics, Inc., 8.2.5.1 07Dec05] [C:\WINDOWS\system32\SynCOM.dll] [synaptics, Inc., 8.2.5.1 07Dec05] [C:\WINDOWS\system32\SynTPAPI.dll] [synaptics, Inc., 8.2.5.1 07Dec05] [PID: 2876 / PhM][C:\Program Files\Samsung\Samsung Battery Manager\BatteryManager.exe] [, 2, 1, 3, 7] [C:\Program Files\Samsung\Samsung Battery Manager\SABI2.dll] [sAMSUNG Electronics, 2, 0, 0, 0] [PID: 3028 / PhM][C:\Program Files\iTunes\iTunesHelper.exe] [Apple Inc., 9.0.2.25] [C:\Program Files\iTunes\iTunesHelper.dll] [Apple Inc., 9.0.2.25] [C:\Program Files\Fichiers communs\Apple\Apple Application Support\CoreFoundation.dll] [Apple Inc., 1, 544, 16, 0] [C:\Program Files\Fichiers communs\Apple\Apple Application Support\pthreadVC2.dll] [Open Source Software community project, 2, 7, 0, 11200] [C:\Program Files\Fichiers communs\Apple\Apple Application Support\objc.dll] [N/A, ] [C:\Program Files\Fichiers communs\Apple\Apple Application Support\icuin40.dll] [iBM Corporation and others, 4, 0, 0, 32] [C:\Program Files\Fichiers communs\Apple\Apple Application Support\icuuc40.dll] [iBM Corporation and others, 4, 0, 0, 32] [C:\Program Files\Fichiers communs\Apple\Apple Application Support\icudt40.dll] [iBM Corporation and others, 4, 0, 0, 32] [C:\Program Files\Fichiers communs\Apple\Apple Application Support\ASL.dll] [N/A, ] [C:\Program Files\iTunes\iTunesHelper.Resources\fr.lproj\iTunesHelperLocalized.DLL] [Apple Inc., 9.0.2.7] [C:\Program Files\iTunes\iTunesHelper.Resources\iTunesHelper.DLL] [Apple Inc., 9.0.2.25] [C:\Program Files\QuickTime\QTSystem\QuickTime.qts] [Apple Inc., 7.6.4 (1327.73)] [C:\Program Files\QuickTime\QTSystem\QTCF.dll] [N/A, ] [C:\Program Files\Fichiers communs\Apple\Apple Application Support\CFNetwork.dll] [Apple, Inc., 1, 450, 5, 0] [C:\Program Files\Fichiers communs\Apple\Apple Application Support\SQLite3.dll] [Apple Inc., 3.6.12 (74.2)] [C:\Program Files\Fichiers communs\Apple\Apple Application Support\zlib1.dll] [, 1.2.3] [C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\iTunesMobileDevice.dll] [Apple Inc., 238.9.0.1] [PID: 3036 / PhM][C:\Program Files\Le Robert\Le Grand Robert & Collins\GRCHA.exe] [Dictionnaire Le Robert, 1.0.0.0] [C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\mscorlib\7bffd7ff2009f421fe5d229927588496\mscorlib.ni.dll] [Microsoft Corporation, 2.0.50727.3615 (GDR.050727-3600)] [C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\System\08ffa4d388d5f007869aa7651c458e7c\System.ni.dll] [Microsoft Corporation, 2.0.50727.3614 (GDR.050727-3600)] [C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\System.Drawing\dcc0244092fe52e6885b50be25ef3b31\System.Drawing.ni.dll] [Microsoft Corporation, 2.0.50727.3053 (netfxsp.050727-3000)] [C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\System.Windows.Forms\439c466b60614915587c5273eaf0ca7f\System.Windows.Forms.ni.dll] [Microsoft Corporation, 2.0.50727.3053 (netfxsp.050727-3000)] [C:\WINDOWS\assembly\GAC_MSIL\System.Runtime.Remoting\2.0.0.0__b77a5c561934e089\System.Runtime.Remoting.dll] [Microsoft Corporation, 2.0.50727.3053 (netfxsp.050727-3000)] [C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\System.Configuration\ab688d0f9f333ba117832726bfb589c1\System.Configuration.ni.dll] [Microsoft Corporation, 2.0.50727.3053 (netfxsp.050727-3000)] [C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\System.Xml\a6dbe24cbfe3ab6b318ed3095cc572d8\System.Xml.ni.dll] [Microsoft Corporation, 2.0.50727.3082 (QFE.050727-3000)] [C:\Program Files\Bonjour\mdnsNSP.dll] [Apple Inc., 1,0,6,2] [PID: 3044 / PhM][C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe] [Google Inc., 4, 1, 509, 1944] [C:\Program Files\Google\GoogleToolbarNotifier\5.5.5126.1836\gtn.dll] [Google Inc., 5, 5, 5126, 1836] [C:\Program Files\Google\GoogleToolbarNotifier\5.5.5126.1836\swg.dll] [Google Inc., 5, 5, 5126, 1836] [C:\Program Files\Bonjour\mdnsNSP.dll] [Apple Inc., 1,0,6,2] [PID: 3120 / PhM][C:\Program Files\YouSendIt\Express\YouSendIt.exe] [N/A, ] [C:\Program Files\YouSendIt\Express\version2\YsiWindows.dll] [YouSendIt.com, 2.6.0] [C:\Program Files\Bonjour\mdnsNSP.dll] [Apple Inc., 1,0,6,2] [PID: 3140 / PhM][C:\Program Files\Samsung\Easy Display Manager\dmhkcore.exe] [sAMSUNG Electronics, 2, 1, 5, 3] [C:\Program Files\Samsung\Easy Display Manager\HookDllPS2.dll] [N/A, ] [C:\Program Files\Samsung\Easy Display Manager\SABI_xp.dll] [samsung Electronics, 1, 2, 0, 0] [C:\WINDOWS\system32\wbem\wbemprox.dll] [Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)] [C:\WINDOWS\system32\wbem\wbemcomn.dll] [Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)] [C:\WINDOWS\system32\wbem\wbemsvc.dll] [Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)] [C:\WINDOWS\system32\atipdlxx.dll] [ATI Technologies, Inc., 6, 14, 10, 2522] [C:\Program Files\Samsung\Easy Display Manager\WinMove.dll] [, 0, 0, 0, 1] [PID: 3468 / PhM][C:\Program Files\SAMSUNG\MagicKBD\MagicKBD.exe] [sAMSUNG Electronics Co., Ltd., 7, 0, 1, 2] [C:\Program Files\SAMSUNG\MagicKBD\EasyBoxDll.dll] [, 1, 4, 0, 0] [C:\Program Files\SAMSUNG\MagicKBD\SITSndMx.DLL] [sAMSUNG Electronics Co., Ltd., 1, 0, 0, 3] [C:\Program Files\SAMSUNG\MagicKBD\SITKbdHk.DLL] [sAMSUNG Electronics Co., Ltd., 1, 0, 0, 21] [C:\Program Files\SAMSUNG\MagicKBD\KbdHID9x.DLL] [sAMSUNG Electronics Co., Ltd., 1, 0, 0, 13] [PID: 3480 / PhM][C:\Program Files\SAMSUNG\MagicKBD\PerformanceManager.exe] [samsung Electronics Co. Ltd., 1.0.1.8] [C:\Program Files\SAMSUNG\MagicKBD\SABI2.dll] [sAMSUNG Electronics, 2, 0, 0, 0] [PID: 4060 / PhM][C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\ccc.exe] [ATI Technologies Inc., 2.0.0.0] [C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\mscorlib\7bffd7ff2009f421fe5d229927588496\mscorlib.ni.dll] [Microsoft Corporation, 2.0.50727.3615 (GDR.050727-3600)] [C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\System\08ffa4d388d5f007869aa7651c458e7c\System.ni.dll] [Microsoft Corporation, 2.0.50727.3614 (GDR.050727-3600)] [C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\System.Drawing\dcc0244092fe52e6885b50be25ef3b31\System.Drawing.ni.dll] [Microsoft Corporation, 2.0.50727.3053 (netfxsp.050727-3000)] [C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\System.Windows.Forms\439c466b60614915587c5273eaf0ca7f\System.Windows.Forms.ni.dll] [Microsoft Corporation, 2.0.50727.3053 (netfxsp.050727-3000)] [C:\WINDOWS\assembly\GAC_MSIL\CCC.Implementation\2.0.2789.41335__90ba9c70f846762e\CCC.Implementation.dll] [ATI Technologies Inc., 2.0.2789.41335] [C:\WINDOWS\assembly\GAC_MSIL\LOG.Foundation\2.0.2729.30174__90ba9c70f846762e\LOG.Foundation.dll] [ATI Technologies Inc., 2.0.2729.30174] [C:\WINDOWS\assembly\GAC_MSIL\MOM.Foundation\2.0.2729.30207__90ba9c70f846762e\MOM.Foundation.dll] [Advanced Micro Devices Inc., 2.0.2729.30207] [C:\WINDOWS\assembly\GAC_MSIL\CLI.Foundation\2.0.2729.30178__90ba9c70f846762e\CLI.Foundation.dll] [ATI Technologies Inc., 2.0.2729.30178] [C:\WINDOWS\assembly\GAC_MSIL\LOG.Foundation.Implementation.Private\2.0.2729.30211__90ba9c70f846762e\LOG.Foundation.Implementation.Private.dll] [ATI Technologies Inc., 2.0.2729.30211] [C:\WINDOWS\assembly\GAC_MSIL\LOG.Foundation.Implementation\2.0.2789.41333__90ba9c70f846762e\LOG.Foundation.Implementation.dll] [ATI Technologies Inc., 2.0.2789.41333] [C:\WINDOWS\assembly\GAC_MSIL\System.Runtime.Remoting\2.0.0.0__b77a5c561934e089\System.Runtime.Remoting.dll] [Microsoft Corporation, 2.0.50727.3053 (netfxsp.050727-3000)] [C:\WINDOWS\assembly\GAC_MSIL\LOG.Foundation.Private\2.0.2729.30188__90ba9c70f846762e\LOG.Foundation.Private.dll] [ATI Technologies Inc., 2.0.2729.30188] [C:\WINDOWS\assembly\GAC_MSIL\MOM.Implementation\2.0.2789.41336__90ba9c70f846762e\MOM.Implementation.dll] [Advanced Micro Devices Inc., 2.0.2789.41336] [C:\WINDOWS\assembly\GAC_MSIL\CLI.Foundation.XManifest\2.0.2729.30313__90ba9c70f846762e\CLI.Foundation.XManifest.dll] [ATI Technologies Inc., 2.0.2729.30313] [C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\System.Xml\a6dbe24cbfe3ab6b318ed3095cc572d8\System.Xml.ni.dll] [Microsoft Corporation, 2.0.50727.3082 (QFE.050727-3000)] [C:\WINDOWS\assembly\GAC_MSIL\CLI.Component.Runtime\2.0.2789.41010__90ba9c70f846762e\CLI.Component.Runtime.dll] [Advanced Micro Devices, Inc., 2.0.2789.41010] [C:\WINDOWS\assembly\GAC_MSIL\CLI.Component.Runtime.Shared.Private\2.0.2729.30209__90ba9c70f846762e\CLI.Component.Runtime.Shared.Private.dll] [ATI Technologies Inc., 2.0.2729.30209] [C:\WINDOWS\assembly\GAC_MSIL\CLI.Foundation.Private\2.0.2729.30193__90ba9c70f846762e\CLI.Foundation.Private.dll] [ATI Technologies Inc., 2.0.2729.30193] [C:\WINDOWS\assembly\GAC_MSIL\CLI.Component.Runtime.Shared\2.0.2729.30203__90ba9c70f846762e\CLI.Component.Runtime.Shared.dll] [ATI Technologies Inc., 2.0.2729.30203] [C:\WINDOWS\assembly\GAC_MSIL\ATICCCom\2.0.0.0__90ba9c70f846762e\ATICCCom.dll] [ATI Technologies Inc., 2.0.0.0] [C:\WINDOWS\assembly\GAC_MSIL\AEM.Server\2.0.2789.41007__90ba9c70f846762e\AEM.Server.dll] [ATI Technologies Inc., 2.0.2789.41007] [C:\WINDOWS\assembly\GAC_MSIL\NEWAEM.Foundation\2.0.2729.30184__90ba9c70f846762e\NEWAEM.Foundation.dll] [ATI Technologies Inc., 2.0.2729.30184] [C:\WINDOWS\assembly\GAC_MSIL\CLI.Component.Runtime.Extension.EEU\2.0.2789.41007__90ba9c70f846762e\CLI.Component.Runtime.Extension.EEU.dll] [ATI Technologies Inc., 2.0.2789.41007] [C:\WINDOWS\assembly\GAC_MSIL\AEM.Foundation\2.0.2729.30176__90ba9c70f846762e\AEM.Foundation.dll] [ATI Technologies Inc., 2.0.2729.30176] [C:\WINDOWS\assembly\GAC_MSIL\AEM.Plugin.EEU.Shared\2.0.2729.30212__90ba9c70f846762e\AEM.Plugin.EEU.Shared.dll] [ATI Technologies Inc., 2.0.2729.30212] [C:\WINDOWS\assembly\GAC_MSIL\AEM.Server.Shared\2.0.2729.30201__90ba9c70f846762e\AEM.Server.Shared.dll] [ATI Technologies Inc., 2.0.2729.30201] [C:\WINDOWS\assembly\GAC_MSIL\AEM.Plugin.Source.Kit.Server\2.0.2789.41391__90ba9c70f846762e\AEM.Plugin.Source.Kit.Server.dll] [ATI Technologies Inc., 2.0.2789.41391] [C:\WINDOWS\assembly\GAC_MSIL\AEM.Plugin.DPPE.Shared\2.0.2729.30222__90ba9c70f846762e\AEM.Plugin.DPPE.Shared.dll] [ATI Technologies Inc., 2.0.2729.30222] [C:\WINDOWS\assembly\GAC_MSIL\AEM.Plugin.Hotkeys.Shared\2.0.2729.30202__90ba9c70f846762e\AEM.Plugin.Hotkeys.Shared.dll] [ATI Technologies Inc., 2.0.2729.30202] [C:\WINDOWS\assembly\GAC_MSIL\DEM.Graphics.I0601\2.0.2573.17685__90ba9c70f846762e\DEM.Graphics.I0601.dll] [ATI Technologies Inc., 2.0.2573.17685] [C:\WINDOWS\assembly\GAC_MSIL\DEM.Foundation\2.0.2573.17684__90ba9c70f846762e\DEM.Foundation.dll] [ATI Technologies Inc., 2.0.2573.17684] [C:\WINDOWS\assembly\GAC_MSIL\DEM.Graphics\2.0.2729.30256__90ba9c70f846762e\DEM.Graphics.dll] [ATI Technologies Inc., 2.0.2729.30256] [C:\WINDOWS\system32\ATIDEMGX.dll] [Advanced Micro Devices, Inc., 2.0.2789.41605] [C:\WINDOWS\assembly\GAC_MSIL\System.Management\2.0.0.0__b03f5f7f11d50a3a\System.Management.dll] [Microsoft Corporation, 2.0.50727.3053 (netfxsp.050727-3000)] [C:\WINDOWS\system32\wbem\wmiutils.dll] [Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)] [C:\WINDOWS\system32\wbem\wbemprox.dll] [Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)] [C:\WINDOWS\system32\wbem\wbemcomn.dll] [Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)] [C:\WINDOWS\system32\wbem\wbemsvc.dll] [Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)] [C:\WINDOWS\assembly\GAC_MSIL\CLI.Caste.Graphics.Runtime\2.0.2789.41019__90ba9c70f846762e\CLI.Caste.Graphics.Runtime.dll] [Advanced Mirco Devices, Inc., 2.0.2789.41019] [C:\WINDOWS\assembly\GAC_MSIL\CLI.Caste.Graphics.Shared\2.0.2729.30199__90ba9c70f846762e\CLI.Caste.Graphics.Shared.dll] [Advanced Mirco Devices, Inc., 2.0.2729.30199] [C:\WINDOWS\assembly\GAC_MSIL\ACE.Graphics.DisplaysManager.Shared\2.0.2573.17685__90ba9c70f846762e\ACE.Graphics.DisplaysManager.Shared.dll] [ATI Technologies Inc., 2.0.2573.17685] [C:\WINDOWS\assembly\GAC_MSIL\DEM.OS.I0602\2.0.2729.30259__90ba9c70f846762e\DEM.OS.I0602.dll] [ATI Technologies Inc., 2.0.2729.30259] [C:\WINDOWS\assembly\GAC_MSIL\AEM.Actions.CCAA.Shared\2.0.2729.30197__90ba9c70f846762e\AEM.Actions.CCAA.Shared.dll] [ATI Technologies Inc., 2.0.2729.30197] [C:\WINDOWS\assembly\GAC_MSIL\DEM.OS\2.0.2729.30242__90ba9c70f846762e\DEM.OS.dll] [ATI Technologies Inc., 2.0.2729.30242] [C:\WINDOWS\assembly\GAC_MSIL\ATIDEMOS\2.0.2789.41011__90ba9c70f846762e\ATIDEMOS.dll] [ATI Technologies Inc., 2.0.2789.41011] [C:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.HotkeysHandling.Graphics.Runtime\2.0.2789.41040__90ba9c70f846762e\CLI.Aspect.HotkeysHandling.Graphics.Runtime.dll] [ATI Technologies Inc., 2.0.2789.41040] [C:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.HotkeysHandling.Graphics.Shared\2.0.2729.30216__90ba9c70f846762e\CLI.Aspect.HotkeysHandling.Graphics.Shared.dll] [ATI Technologies Inc., 2.0.2729.30216] [C:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.DeviceCV.Graphics.Runtime\2.0.2789.41263__90ba9c70f846762e\CLI.Aspect.DeviceCV.Graphics.Runtime.dll] [ATI Technologies Inc., 2.0.2789.41263] [C:\WINDOWS\assembly\GAC_MSIL\CLI.Caste.Graphics.Runtime.Shared.Private\2.0.2729.30243__90ba9c70f846762e\CLI.Caste.Graphics.Runtime.Shared.Private.dll] [ATI Technologies Inc., 2.0.2729.30243] [C:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.DeviceCV.Graphics.Shared\2.0.2729.30230__90ba9c70f846762e\CLI.Aspect.DeviceCV.Graphics.Shared.dll] [ATI Technologies Inc., 2.0.2729.30230] [C:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.CustomFormats.Graphics.Shared\2.0.2729.30212__90ba9c70f846762e\CLI.Aspect.CustomFormats.Graphics.Shared.dll] [ATI Technologies Inc., 2.0.2729.30212] [C:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.DeviceProperty.Graphics.Runtime\2.0.2789.41188__90ba9c70f846762e\CLI.Aspect.DeviceProperty.Graphics.Runtime.dll] [Advanced Micro Devices, Inc., 2.0.2789.41188] [C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\DEM.Graphics.I0703.dll] [Advanced Micro Devices, Inc., 2.0.2651.18802] [C:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.DeviceProperty.Graphics.Shared\2.0.2729.30213__90ba9c70f846762e\CLI.Aspect.DeviceProperty.Graphics.Shared.dll] [ATI Technologies Inc., 2.0.2729.30213] [C:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.DeviceTV.Graphics.Runtime\2.0.2789.41311__90ba9c70f846762e\CLI.Aspect.DeviceTV.Graphics.Runtime.dll] [ATI Technologies Inc., 2.0.2789.41311] [C:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.DeviceTV.Graphics.Shared\2.0.2729.30231__90ba9c70f846762e\CLI.Aspect.DeviceTV.Graphics.Shared.dll] [ATI Technologies Inc., 2.0.2729.30231] [C:\WINDOWS\assembly\GAC_MSIL\AEM.Plugin.GD.Shared\2.0.2729.30224__90ba9c70f846762e\AEM.Plugin.GD.Shared.dll] [ATI Technologies Inc., 2.0.2729.30224] [C:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.InfoCentre.Graphics.Runtime\2.0.2789.41079__90ba9c70f846762e\CLI.Aspect.InfoCentre.Graphics.Runtime.dll] [ATI Technologies Inc., 2.0.2789.41079] [C:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.InfoCentre.Graphics.Shared\2.0.2729.30219__90ba9c70f846762e\CLI.Aspect.InfoCentre.Graphics.Shared.dll] [ATI Technologies Inc., 2.0.2729.30219] [C:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.DisplaysColour2.Graphics.Runtime\2.0.2789.41101__90ba9c70f846762e\CLI.Aspect.DisplaysColour2.Graphics.Runtime.dll] [ATI Technologies Inc., 2.0.2789.41101] [C:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.DisplaysColour2.Graphics.Shared\2.0.2729.30219__90ba9c70f846762e\CLI.Aspect.DisplaysColour2.Graphics.Shared.dll] [ATI Technologies Inc., 2.0.2729.30219] [C:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.DisplaysOptions.Graphics.Runtime\2.0.2789.41224__90ba9c70f846762e\CLI.Aspect.DisplaysOptions.Graphics.Runtime.dll] [ATI Technologies Inc., 2.0.2789.41224] [C:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.DisplaysOptions.Graphics.Shared\2.0.2729.30228__90ba9c70f846762e\CLI.Aspect.DisplaysOptions.Graphics.Shared.dll] [ATI Technologies Inc., 2.0.2729.30228] [C:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.DeviceCRT.Graphics.Runtime\2.0.2789.41197__90ba9c70f846762e\CLI.Aspect.DeviceCRT.Graphics.Runtime.dll] [ATI Technologies Inc., 2.0.2789.41197] [C:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.DeviceCRT.Graphics.Shared\2.0.2729.30226__90ba9c70f846762e\CLI.Aspect.DeviceCRT.Graphics.Shared.dll] [ATI Technologies Inc., 2.0.2729.30226] [C:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.DeviceLCD.Graphics.Runtime\2.0.2789.41248__90ba9c70f846762e\CLI.Aspect.DeviceLCD.Graphics.Runtime.dll] [Advanced Micro Devices, Inc., 2.0.2789.41248] [C:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.DeviceLCD.Graphics.Shared\2.0.2729.30259__90ba9c70f846762e\CLI.Aspect.DeviceLCD.Graphics.Shared.dll] [ATI Technologies Inc., 2.0.2729.30259] [C:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.DeviceDFP.Graphics.Runtime\2.0.2789.41189__90ba9c70f846762e\CLI.Aspect.DeviceDFP.Graphics.Runtime.dll] [Advanced Micro Devices, Inc., 2.0.2789.41189] [C:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.DeviceDFP.Graphics.Shared\2.0.2729.30225__90ba9c70f846762e\CLI.Aspect.DeviceDFP.Graphics.Shared.dll] [ATI Technologies Inc., 2.0.2729.30225] [C:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.Radeon3D.Graphics.Runtime\2.0.2789.41272__90ba9c70f846762e\CLI.Aspect.Radeon3D.Graphics.Runtime.dll] [ATI Technologies Inc., 2.0.2789.41272] [C:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.Radeon3D.Graphics.Shared\2.0.2729.30231__90ba9c70f846762e\CLI.Aspect.Radeon3D.Graphics.Shared.dll] [ATI Technologies Inc., 2.0.2729.30231] [C:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.MMVideo.Graphics.Runtime\2.0.2789.41198__90ba9c70f846762e\CLI.Aspect.MMVideo.Graphics.Runtime.dll] [ATI Technologies Inc., 2.0.2789.41198] [C:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.MMVideo.Graphics.Shared\2.0.2729.30227__90ba9c70f846762e\CLI.Aspect.MMVideo.Graphics.Shared.dll] [ATI Technologies Inc., 2.0.2729.30227] [C:\WINDOWS\assembly\GAC_MSIL\APM.Server\2.0.2789.41009__90ba9c70f846762e\APM.Server.dll] [Advanced Micro Devices, Inc., 2.0.2789.41009] [C:\WINDOWS\assembly\GAC_MSIL\APM.Foundation\2.0.2729.30208__90ba9c70f846762e\APM.Foundation.dll] [ATI Technologies Inc., 2.0.2729.30208] [C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\System.Configuration\ab688d0f9f333ba117832726bfb589c1\System.Configuration.ni.dll] [Microsoft Corporation, 2.0.50727.3053 (netfxsp.050727-3000)] [C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\System.Web\411a627d6f5cb83509332253406988e5\System.Web.ni.dll] [Microsoft Corporation, 2.0.50727.3614 (GDR.050727-3600)] [C:\WINDOWS\assembly\GAC_MSIL\CLI.Component.Systemtray\2.0.2789.41326__90ba9c70f846762e\CLI.Component.Systemtray.dll] [ATI Technologies Inc., 2.0.2789.41326] [C:\WINDOWS\assembly\GAC_MSIL\CLI.Component.Client.Shared.Private\2.0.2729.30205__90ba9c70f846762e\CLI.Component.Client.Shared.Private.dll] [Advanced Micro Devices, Inc., 2.0.2729.30205] [C:\Program Files\ATI Technologies\ATI.ACE\Branding\Branding.dll] [, 2.0.2477.16262] [C:\WINDOWS\assembly\GAC_MSIL\CLI.Component.Wizard\2.0.2789.41050__90ba9c70f846762e\CLI.Component.Wizard.dll] [Advanced Micro Devices, Inc., 2.0.2789.41050] [C:\WINDOWS\assembly\GAC_MSIL\CLI.Component.Client.Shared\2.0.2729.30185__90ba9c70f846762e\CLI.Component.Client.Shared.dll] [ATI Technologies Inc., 2.0.2729.30185] [C:\WINDOWS\assembly\GAC_MSIL\CLI.Component.Wizard.Shared\2.0.2729.30211__90ba9c70f846762e\CLI.Component.Wizard.Shared.dll] [ATI Technologies Inc., 2.0.2729.30211] [C:\WINDOWS\assembly\GAC_MSIL\CLI.Component.Systemtray.resources\2.0.2789.41326_fr_90ba9c70f846762e\CLI.Component.Systemtray.resources.dll] [ATI Technologies Inc., 2.0.2789.41326] [C:\WINDOWS\assembly\GAC_MSIL\CLI.Component.Wizard.Shared.Private\2.0.2729.30258__90ba9c70f846762e\CLI.Component.Wizard.Shared.Private.dll] [ATI Technologies Inc., 2.0.2729.30258] [C:\WINDOWS\assembly\GAC_MSIL\CLI.Caste.Graphics.Wizard\2.0.2789.41056__90ba9c70f846762e\CLI.Caste.Graphics.Wizard.dll] [ATI Technologies Inc., 2.0.2789.41056] [C:\WINDOWS\assembly\GAC_MSIL\CLI.Caste.Graphics.Wizard.Shared\2.0.2729.30216__90ba9c70f846762e\CLI.Caste.Graphics.Wizard.Shared.dll] [ATI Technologies Inc., 2.0.2729.30216] [C:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.TransCode.Graphics.Wizard\2.0.2789.41354__90ba9c70f846762e\CLI.Aspect.TransCode.Graphics.Wizard.dll] [ATI Technologies Inc., 2.0.2789.41354] [C:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.Radeon3D.Graphics.Wizard\2.0.2789.41280__90ba9c70f846762e\CLI.Aspect.Radeon3D.Graphics.Wizard.dll] [ATI Technologies Inc., 2.0.2789.41280] [C:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.DisplaysManager.Graphics.Wizard\2.0.2789.41064__90ba9c70f846762e\CLI.Aspect.DisplaysManager.Graphics.Wizard.dll] [ATI Technologies Inc., 2.0.2789.41064] [C:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.TransCode.Graphics.Shared\2.0.2729.30264__90ba9c70f846762e\CLI.Aspect.TransCode.Graphics.Shared.dll] [ATI Technologies Inc., 2.0.2729.30264] [C:\WINDOWS\assembly\GAC_MSIL\atixclib\1.0.0.0__90ba9c70f846762e\atixclib.dll] [ , 1.0.0.0] [C:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.MMVideo.Graphics.Wizard\2.0.2789.41295__90ba9c70f846762e\CLI.Aspect.MMVideo.Graphics.Wizard.dll] [ATI Technologies Inc., 2.0.2789.41295] [C:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.DeviceLCD.Graphics.Wizard\2.0.2789.41103__90ba9c70f846762e\CLI.Aspect.DeviceLCD.Graphics.Wizard.dll] [ATI Technologies Inc., 2.0.2789.41103] [C:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.InfoCentre.Graphics.Wizard\2.0.2789.41080__90ba9c70f846762e\CLI.Aspect.InfoCentre.Graphics.Wizard.dll] [ATI Technologies Inc., 2.0.2789.41080] [C:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.DeviceTV.Graphics.Wizard\2.0.2789.41320__90ba9c70f846762e\CLI.Aspect.DeviceTV.Graphics.Wizard.dll] [ATI Technologies Inc., 2.0.2789.41320] [C:\WINDOWS\assembly\GAC_MSIL\CLI.Component.Dashboard\2.0.2789.41027__90ba9c70f846762e\CLI.Component.Dashboard.dll] [Advanced Micro Devices, Inc., 2.0.2789.41027] [C:\WINDOWS\assembly\GAC_MSIL\CLI.Component.Dashboard.Shared\2.0.2729.30199__90ba9c70f846762e\CLI.Component.Dashboard.Shared.dll] [ATI Technologies Inc., 2.0.2729.30199] [C:\WINDOWS\assembly\GAC_MSIL\CLI.Component.Dashboard.Shared.Private\2.0.2729.30214__90ba9c70f846762e\CLI.Component.Dashboard.Shared.Private.dll] [ATI Technologies Inc., 2.0.2729.30214] [C:\WINDOWS\assembly\GAC_MSIL\CLI.Caste.Graphics.Dashboard\2.0.2789.41033__90ba9c70f846762e\CLI.Caste.Graphics.Dashboard.dll] [ATI Technologies Inc., 2.0.2789.41033] [C:\WINDOWS\assembly\GAC_MSIL\CLI.Caste.Graphics.Dashboard.Shared\2.0.2729.30241__90ba9c70f846762e\CLI.Caste.Graphics.Dashboard.Shared.dll] [ATI Technologies Inc., 2.0.2729.30241] [C:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.Welcome.Graphics.Dashboard\2.0.2789.41361__90ba9c70f846762e\CLI.Aspect.Welcome.Graphics.Dashboard.dll] [Advanced Mirco Devices, Inc., 2.0.2789.41361] [C:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.DisplaysManager.Graphics.Dashboard\2.0.2789.41042__90ba9c70f846762e\CLI.Aspect.DisplaysManager.Graphics.Dashboard.dll] [ATI Technologies Inc., 2.0.2789.41042] [C:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.InfoCentre.Graphics.Dashboard\2.0.2789.41087__90ba9c70f846762e\CLI.Aspect.InfoCentre.Graphics.Dashboard.dll] [ATI Technologies Inc., 2.0.2789.41087] [C:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.DisplaysOptions.Graphics.Dashboard\2.0.2789.41225__90ba9c70f846762e\CLI.Aspect.DisplaysOptions.Graphics.Dashboard.dll] [ATI Technologies Inc., 2.0.2789.41225] [C:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.DeviceCRT.Graphics.Dashboard\2.0.2789.41191__90ba9c70f846762e\CLI.Aspect.DeviceCRT.Graphics.Dashboard.dll] [ATI Technologies Inc., 2.0.2789.41191] [C:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.DeviceLCD.Graphics.Dashboard\2.0.2789.41250__90ba9c70f846762e\CLI.Aspect.DeviceLCD.Graphics.Dashboard.dll] [Advanced Micro Devices, Inc., 2.0.2789.41250] [C:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.DeviceTV.Graphics.Dashboard\2.0.2789.41313__90ba9c70f846762e\CLI.Aspect.DeviceTV.Graphics.Dashboard.dll] [ATI Technologies Inc., 2.0.2789.41313] [C:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.DeviceDFP.Graphics.Dashboard\2.0.2789.41181__90ba9c70f846762e\CLI.Aspect.DeviceDFP.Graphics.Dashboard.dll] [Advanced Micro Devices, Inc., 2.0.2789.41181] [C:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.Radeon3D.Graphics.Dashboard\2.0.2789.41273__90ba9c70f846762e\CLI.Aspect.Radeon3D.Graphics.Dashboard.dll] [ATI Technologies Inc., 2.0.2789.41273] [C:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.DisplaysColour2.Graphics.Dashboard\2.0.2789.41094__90ba9c70f846762e\CLI.Aspect.DisplaysColour2.Graphics.Dashboard.dll] [ATI Technologies Inc., 2.0.2789.41094] [C:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.MMVideo.Graphics.Dashboard\2.0.2789.41200__90ba9c70f846762e\CLI.Aspect.MMVideo.Graphics.Dashboard.dll] [ATI Technologies Inc., 2.0.2789.41200] [PID: 4004 / SYSTEM][C:\Program Files\iPod\bin\iPodService.exe] [Apple Inc., 9.0.2.25] [C:\Program Files\iPod\bin\iPodService.Resources\fr.lproj\iPodServiceLocalized.DLL] [Apple Inc., 9.0.2.7] [C:\Program Files\iPod\bin\iPodService.Resources\iPodService.DLL] [Apple Inc., 9.0.2.25] [PID: 1504 / SERVICE LOCAL][C:\WINDOWS\System32\alg.exe] [(Verified) Microsoft Corporation, 5.1.2600.5512 (xpsp.080413-0852)] [PID: 2624 / PhM][C:\Program Files\Java\jre6\bin\jucheck.exe] [sun Microsystems, Inc., 6.0.160.1] [C:\Program Files\Bonjour\mdnsNSP.dll] [Apple Inc., 1,0,6,2] [PID: 4280 / PhM][C:\Documents and Settings\PhM\Local Settings\Application Data\guluvockw\saoqdblshdw.exe] [N/A, ] [C:\WINDOWS\system32\wbem\wbemprox.dll] [Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)] [C:\WINDOWS\system32\wbem\wbemcomn.dll] [Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)] [C:\WINDOWS\system32\wbem\wbemsvc.dll] [Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)] [C:\Program Files\Bonjour\mdnsNSP.dll] [Apple Inc., 1,0,6,2] [PID: 2200 / SERVICE RÉSEAU][C:\WINDOWS\system32\wbem\wmiprvse.exe] [(Verified) Microsoft Corporation, 5.1.2600.5755 (xpsp_sp3_gdr.090206-1234)] [C:\WINDOWS\system32\wbem\wbemcomn.dll] [Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)] [C:\WINDOWS\system32\wbem\wbemsvc.dll] [Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)] [C:\WINDOWS\system32\wbem\wmiutils.dll] [Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)] [C:\WINDOWS\system32\wbem\cimwin32.dll] [Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)] [C:\WINDOWS\system32\wbem\framedyn.dll] [Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)] [PID: 2528 / SYSTEM][C:\PROGRA~1\AVG\AVG8\avgnsx.exe] [AVG Technologies CZ, s.r.o., 8.5.0.401] [C:\Program Files\AVG\AVG8\avglogx.dll] [AVG Technologies CZ, s.r.o., 8.5.0.401] [C:\PROGRA~1\AVG\AVG8\avgcfgx.dll] [AVG Technologies CZ, s.r.o., 8.5.0.401] [C:\PROGRA~1\AVG\AVG8\avgxpl.dll] [AVG Technologies CZ, s.r.o., 8.5.0.401] [C:\Program Files\AVG\AVG8\avglvex.dll] [AVG Technologies CZ, s.r.o., 8.5.0.401] [C:\WINDOWS\WinSxS\x86_Microsoft.VC80.MFC_1fc8b3b9a1e18e3b_8.0.50727.762_x-ww_3bf8fa05\MFC80.DLL] [Microsoft Corporation, 8.00.50727.762] [C:\WINDOWS\WinSxS\x86_Microsoft.VC80.MFCLOC_1fc8b3b9a1e18e3b_8.0.50727.762_x-ww_91481303\MFC80FRA.DLL] [Microsoft Corporation, 8.00.50727.762] [PID: 4564 / PhM][C:\Documents and Settings\PhM\Bureau\sreng2\SRE21d19217.EXE] [smallfrogs Studio, 2.8.2.1321] [C:\Documents and Settings\PhM\Bureau\sreng2\Upload\3rdUpd.DLL] [smallfrogs Studio, 2, 1, 0, 15] ================================== File Associations .TXT OK. [%SystemRoot%\system32\NOTEPAD.EXE %1] .EXE OK. ["%1" %*] .COM OK. ["%1" %*] .PIF OK. ["%1" %*] .REG OK. [regedit.exe "%1"] .BAT OK. ["%1" %*] .SCR OK. ["%1" /S] .CHM OK. ["C:\WINDOWS\hh.exe" %1] .HLP OK. [%SystemRoot%\System32\winhlp32.exe %1] .INI OK. [%SystemRoot%\System32\NOTEPAD.EXE %1] .INF OK. [%SystemRoot%\System32\NOTEPAD.EXE %1] .VBS OK. [%SystemRoot%\System32\WScript.exe "%1" %*] .JS OK. [%SystemRoot%\System32\WScript.exe "%1" %*] .LNK OK. [{00021401-0000-0000-C000-000000000046}] ================================== Winsock Provider N/A ================================== Autorun.Inf N/A ================================== HOSTS File 127.0.0.1 localhost ================================== Process Privileges Scan Special Privileges Enabled: SeLoadDriverPrivilege [PID = 1436, C:\PROGRAM FILES\WIDCOMM\BLUETOOTH SOFTWARE\BIN\BTWDINS.EXE] Special Privileges Enabled: SeDebugPrivilege [PID = 2820, C:\PROGRAM FILES\ATI TECHNOLOGIES\ATI.ACE\CORE-STATIC\MOM.EXE] Special Privileges Enabled: SeLoadDriverPrivilege [PID = 2820, C:\PROGRAM FILES\ATI TECHNOLOGIES\ATI.ACE\CORE-STATIC\MOM.EXE] Special Privileges Enabled: SeLoadDriverPrivilege [PID = 2876, C:\PROGRAM FILES\SAMSUNG\SAMSUNG BATTERY MANAGER\BATTERYMANAGER.EXE] Special Privileges Enabled: SeLoadDriverPrivilege [PID = 3120, C:\PROGRAM FILES\YOUSENDIT\EXPRESS\YOUSENDIT.EXE] Special Privileges Enabled: SeLoadDriverPrivilege [PID = 3140, C:\PROGRAM FILES\SAMSUNG\EASY DISPLAY MANAGER\DMHKCORE.EXE] Special Privileges Enabled: SeLoadDriverPrivilege [PID = 3468, C:\PROGRAM FILES\SAMSUNG\MAGICKBD\MAGICKBD.EXE] Special Privileges Enabled: SeLoadDriverPrivilege [PID = 3480, C:\PROGRAM FILES\SAMSUNG\MAGICKBD\PERFORMANCEMANAGER.EXE] Special Privileges Enabled: SeDebugPrivilege [PID = 4060, C:\PROGRAM FILES\ATI TECHNOLOGIES\ATI.ACE\CORE-STATIC\CCC.EXE] Special Privileges Enabled: SeLoadDriverPrivilege [PID = 4060, C:\PROGRAM FILES\ATI TECHNOLOGIES\ATI.ACE\CORE-STATIC\CCC.EXE] Special Privileges Enabled: SeLoadDriverPrivilege [PID = 4280, C:\DOCUMENTS AND SETTINGS\PHM\LOCAL SETTINGS\APPLICATION DATA\GULUVOCKW\SAOQDBLSHDW.EXE] ================================== Scheduled Tasks [Enabled] GoogleUpdateTaskUserS-1-5-21-3224970799-2208403349-14268682-1007UA.job C:\Documents and Settings\PhM\Local Settings\Application Data\Google\Update\GoogleUpdate.exe [Enabled] GoogleUpdateTaskUserS-1-5-21-3224970799-2208403349-14268682-1007Core.job C:\Documents and Settings\PhM\Local Settings\Application Data\Google\Update\GoogleUpdate.exe [Enabled] GoogleUpdateTaskMachineUA.job C:\Program Files\Google\Update\GoogleUpdate.exe [Enabled] GoogleUpdateTaskMachineCore.job C:\Program Files\Google\Update\GoogleUpdate.exe [Enabled] Google Software Updater.job C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe ================================== Windows Security Update Check N/A ================================== API HOOK N/A ================================== Hidden Process N/A ================================== .
- le 13 août 2010
- 5 réponses
faux antivirus bloquant toutes les applications

grore a répondu à un(e) sujet de grore dans Analyses et éradication malwares

Bonjour, j'ai downloadé tous ces logiciels sur un ordi sain et transféré sur mon ordi par une clé usb propre...et tenté de lancer TDSKiller, mais même résultats: rien et un message d'erreur "l'application tdskiller.exe is infected" Même chose avec mbam et rkill. help....
- le 13 août 2010
- 5 réponses
faux antivirus bloquant toutes les applications

grore a posté un sujet dans Analyses et éradication malwares

Bonjour, J'arrive avec un gros problème : d'une minute à l'autre une attaque de virus assez violente sur mon PC sous windows XP pack 3 (je crois).AVG n'a pas réagi. Un faux antivirus s'ouvre en permanence et détecte des infections partout, je ne peux plus ouvrir aucune application, ni hijackthis ni malware byte. Pas d'accès internet, tous mes navigateurs sont bloqués, je poste ici depuis un autre ordi.Je suis allé voir sur des forums et tenté Combofix, copié directement sur mon bureau depuis une clé usb,et trenommé autrement, et aussi Rkill depuis trois lien différent (.com, .exe, .src). Rien ne marche, toujours le même message : application infectée. Je suis assez paniqué, auriez vous une solution à me proposer? sachant que je ne peux rien telecharger directement, et n'ai pas d'accès internet direct. Je n'ose pas redémarrer ni en mode sans échec ni autre, l'ordi tourne en core (je peux copier et déplacer des fichiers, et je me garde cette possibilité pour sauver mes données au cas où). Je suppose que tout redémarrage "aidera" ce virus à s'installer un peu mieux... Merci de votre aide !!
- le 13 août 2010
- 5 réponses

Connexion

grore

Compteur de contenus

Inscription

Dernière visite

Type de contenu

Profils

Forums

Blogs

Tout ce qui a été posté par grore

analyse Hijackthis et Malmarebyte

! complément au topic 178685 suite à bug

! complément au topic 178685 suite à bug

faux antivirus bloquant toutes les applications

faux antivirus bloquant toutes les applications

faux antivirus bloquant toutes les applications

Zebulon

Outils en ligne

Naviguer