[Résolu] Fenêtres intempestives "adssite", I.E et Mozilla Fi

[Thanos]

salut

 

Collante cette cochonnerie!! Poste moi stp >

 

- un nouveau rapport hijackthis.

- un rapport fait comme ceci >

 

Télécharge et lance DiagHelp comme montré dans ce tutoriel> http://www.malekal.com/DiagHelp/DiagHelp.php

Ne lance que l'option 1 et poste le rapport stp.

Note: A la fin du scan, une page IE va s'ouvrir > expédie le fiichier demandé (C:\upload_moi_....)Si ca fonctionne, tu verras s'afficher un message > Upload réussi. Sinon, ferme la fenêtre Internet Explorer et continue.

 

allez, courage

Modifié le 17 novembre 2007 par charles ingals

[desdemona]

Salut!

 

Bon nouveauté... toujours en surfant sur Mozilla Firefox... une fenêtre d'avertissement de "http://erreurchasseur.com" s'est ouverte me demandant si je voulez installer gratuitement ErreurChasseur pour optimiser mon pc (conseillé).

J'ai cliqué sur "Annul" et j'ai quand même été redirigée vers une page pour ce logiciel. (voir ci-dessous le lien de la page en question)

http://erreurchasseur.com/depannage/index....c064-70158-0453

 

Sinon voici ce que tu m'as demandé:

 

log hijackthis

 

Logfile of Trend Micro HijackThis v2.0.2

Scan saved at 13:45:01, on 18/11/2007

Platform: Windows XP SP2 (WinNT 5.01.2600)

MSIE: Internet Explorer v7.00 (7.00.6000.16544)

Boot mode: Normal

 

Running processes:

C:\WINDOWS\System32\smss.exe

C:\WINDOWS\system32\winlogon.exe

C:\WINDOWS\system32\services.exe

C:\WINDOWS\system32\lsass.exe

C:\WINDOWS\system32\svchost.exe

C:\WINDOWS\System32\svchost.exe

C:\WINDOWS\system32\LEXBCES.EXE

C:\WINDOWS\system32\spoolsv.exe

c:\program files\fichiers communs\logishrd\lvmvfm\LVPrcSrv.exe

C:\WINDOWS\system32\LEXPPS.EXE

C:\Program Files\Avira\AntiVir PersonalEdition Classic\avguard.exe

C:\Program Files\Avira\AntiVir PersonalEdition Classic\sched.exe

C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe

C:\WINDOWS\system32\drivers\CDAC11BA.EXE

C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe

C:\WINDOWS\system32\svchost.exe

C:\WINDOWS\Explorer.EXE

C:\WINDOWS\system32\VTTimer.exe

C:\WINDOWS\SOUNDMAN.EXE

C:\Program Files\Fichiers communs\LogiShrd\LComMgr\LVComSX.exe

C:\Program Files\Avira\AntiVir PersonalEdition Classic\avgnt.exe

C:\WINDOWS\system32\ctfmon.exe

C:\Program Files\MSN Messenger\msnmsgr.exe

C:\Program Files\MSN Messenger\usnsvc.exe

C:\Program Files\Internet Explorer\IEXPLORE.EXE

C:\Documents and Settings\Marie Christine Duny\Bureau\HiJackThis\HijackThis.exe

 

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://home.neuf.fr/

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://recherche.neuf.fr/

R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.live.com/

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page = C:\WINDOWS\pchealth\helpctr\System\panels\blank.htm

R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens

O2 - BHO: Aide pour le lien d'Adobe PDF Reader - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Fichiers communs\Adobe\Acrobat\ActiveX\AcroIEHelper.dll

O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_01\bin\ssv.dll

O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)

O2 - BHO: Windows Live Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll

O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\2.1.615.5858\swg.dll

O4 - HKLM\..\Run: [VTTimer] VTTimer.exe

O4 - HKLM\..\Run: [soundMan] SOUNDMAN.EXE

O4 - HKLM\..\Run: [Recguard] C:\WINDOWS\SMINST\RECGUARD.EXE

O4 - HKLM\..\Run: [LVCOMSX] "C:\Program Files\Fichiers communs\LogiShrd\LComMgr\LVComSX.exe"

O4 - HKLM\..\Run: [avgnt] "C:\Program Files\Avira\AntiVir PersonalEdition Classic\avgnt.exe" /min

O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe

O4 - HKCU\..\Run: [msnmsgr] "C:\Program Files\MSN Messenger\msnmsgr.exe" /background

O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE LOCAL')

O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE RÉSEAU')

O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')

O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')

O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_01\bin\ssv.dll

O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_01\bin\ssv.dll

O9 - Extra button: (no name) - {85d1f590-48f4-11d9-9669-0800200c9a66} - C:\WINDOWS\bdoscandel.exe

O9 - Extra 'Tools' menuitem: Uninstall BitDefender Online Scanner v8 - {85d1f590-48f4-11d9-9669-0800200c9a66} - C:\WINDOWS\bdoscandel.exe

O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe

O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe

O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe

O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe

O15 - Trusted Zone: http://www.bitdefender.fr

O15 - Trusted Zone: http://webscanner.kaspersky.fr

O15 - Trusted Zone: http://forum.zebulon.fr

O16 - DPF: {0EB0E74A-2A76-4AB3-A7FB-9BD8C29F7F75} (CKAVWebScan Object) - http://webscanner.kaspersky.fr/kavwebscan_unicode.cab

O16 - DPF: {4F1E5B1A-2A80-42CA-8532-2D05CB959537} (MSN Photo Upload Tool) - http://desdemona07.spaces.live.com//PhotoUpload/MsnPUpld.cab

O16 - DPF: {512FC5A1-7DE1-43F1-BC0C-371622FCB409} (TotalScan Installer Class) - http://www.nanoscan.com/as/v1/cabs/ascstubie.cab

O16 - DPF: {5D86DDB5-BDF9-441B-9E9E-D4730F4EE499} (BDSCANONLINE Control) - http://download.bitdefender.com/resources/scan8/oscan8.cab

O16 - DPF: {5ED80217-570B-4DA9-BF44-BE107C0EC166} (Windows Live Safety Center Base Module) - http://cdn.scan.onecare.live.com/resource/...lscbase8300.cab

O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} (MUWebControl Class) - http://update.microsoft.com/microsoftupdat...b?1179576006578

O16 - DPF: {7FC1B346-83E6-4774-8D20-1A6B09B0E737} (Windows Live Photo Upload Control) - http://desdemona07.spaces.live.com/PhotoUpload/MsnPUpld.cab

O16 - DPF: {9122D757-5A4F-4768-82C5-B4171D8556A7} (PhotoPickConvert Class) - http://appdirectory.messenger.msn.com/AppD...ap/PhtPkMSN.cab

O16 - DPF: {9D190AE6-C81E-4039-8061-978EBAD10073} (F-Secure Online Scanner 3.0) - http://securite.neuf.fr/Ols/fscax.cab

O16 - DPF: {A1F2F2CE-06AF-483C-9F12-D3BAA72477D6} (BatchDownloader Class) - http://appdirectory.messenger.msn.com/AppD...ap/DigWXMSN.cab

O16 - DPF: {BD8667B7-38D8-4C77-B580-18C3E146372C} (Creative Toolbox Plug-in) - http://bmm.imgag.com/imgag/cp/install/crusher-fr.cab

O16 - DPF: {C3F79A2B-B9B4-4A66-B012-3EE46475B072} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/Messe...nt.cab56907.cab

O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/shoc...ash/swflash.cab

O23 - Service: AntiVir PersonalEdition Classic Scheduler (AntiVirScheduler) - Avira GmbH - C:\Program Files\Avira\AntiVir PersonalEdition Classic\sched.exe

O23 - Service: AntiVir PersonalEdition Classic Guard (AntiVirService) - Avira GmbH - C:\Program Files\Avira\AntiVir PersonalEdition Classic\avguard.exe

O23 - Service: Apple Mobile Device - Apple, Inc. - C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe

O23 - Service: C-DillaCdaC11BA - Macrovision - C:\WINDOWS\system32\drivers\CDAC11BA.EXE

O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe

O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Fichiers communs\InstallShield\Driver\11\Intel 32\IDriverT.exe

O23 - Service: Service de l'iPod (iPod Service) - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe

O23 - Service: LexBce Server (LexBceS) - Lexmark International, Inc. - C:\WINDOWS\system32\LEXBCES.EXE

O23 - Service: Logitech Process Monitor (LVPrcSrv) - Logitech Inc. - c:\program files\fichiers communs\logishrd\lvmvfm\LVPrcSrv.exe

O23 - Service: LVSrvLauncher - Logitech Inc. - C:\Program Files\Fichiers communs\LogiShrd\SrvLnch\SrvLnch.exe

O23 - Service: NBService - Nero AG - C:\Program Files\Nero\Nero 7\Nero BackItUp\NBService.exe

O23 - Service: NMIndexingService - Nero AG - C:\Program Files\Fichiers communs\Ahead\Lib\NMIndexingService.exe

O23 - Service: SolidWorks Licensing Service - SolidWorks - C:\Program Files\Fichiers communs\SolidWorks Shared\Service\SolidWorksLicensing.exe

 

--

End of file - 8240 bytes

 

 

Rapport diaghelp (je n'ai pas réussi le upload..téléchargement trés long pour au final me dire que je n'avais pas sélectionné de fichier..pourtant j'avais mis le bon)

 

DiagHelp version v1.4 - http://www.malekal.com

excute le 18/11/2007 à 13:51:41,21

 

 

Liste des derniers fichies modifies/crees dans windir\system32 et prefetch

C:\WINDOWS\prefetch\CHCP.COM-17EDBDC9.pf -->18/11/2007 13:51:29

C:\WINDOWS\prefetch\CMD.EXE-034B0549.pf -->18/11/2007 13:49:35

C:\WINDOWS\prefetch\VERCLSID.EXE-28F52AD2.pf -->18/11/2007 13:48:38

C:\WINDOWS\prefetch\GOOGLEUPDATER.EXE-1D8A4379.pf -->18/11/2007 13:48:36

C:\WINDOWS\prefetch\QTTASK.EXE-1876A1A1.pf -->18/11/2007 13:45:37

C:\WINDOWS\prefetch\NOTEPAD.EXE-2F2D61E1.pf -->18/11/2007 13:45:21

C:\WINDOWS\prefetch\WMIPRVSE.EXE-0D449B4F.pf -->18/11/2007 13:45:10

C:\WINDOWS\prefetch\HIJACKTHIS.EXE-17B55394.pf -->18/11/2007 13:45:08

C:\WINDOWS\prefetch\MSHTA.EXE-07121ECA.pf -->18/11/2007 13:38:56

C:\WINDOWS\prefetch\RUNDLL32.EXE-4120C56E.pf -->18/11/2007 13:38:52

 

C:\WINDOWS\System32\drivers\avipbb.sys -->14/11/2007 16:16:44

C:\WINDOWS\System32\drivers\avgntdd.sys -->09/08/2007 13:04:11

C:\WINDOWS\System32\drivers\usbsermpt.sys -->08/08/2007 15:54:08

C:\WINDOWS\System32\drivers\pxhelp20.sys -->27/07/2007 00:06:18

C:\WINDOWS\System32\drivers\cdralw2k.sys -->27/07/2007 00:06:18

C:\WINDOWS\System32\drivers\Msft_Kernel_motmodem_01005.Wdf -->23/07/2007 20:57:38

C:\WINDOWS\System32\drivers\MsftWdf_Kernel_01005_Coinstaller_Critical.Wdf -->23/07/2007 20:57:35

 

C:\WINDOWS\System32\wpa.dbl -->18/11/2007 13:34:48

C:\WINDOWS\System32\CONFIG.NT -->14/11/2007 16:01:23

C:\WINDOWS\System32\MRT.exe -->02/11/2007 08:12:57

C:\WINDOWS\System32\xpsp3res.dll -->29/10/2007 16:07:16

C:\WINDOWS\System32\PerfStringBackup.INI -->28/10/2007 11:01:34

C:\WINDOWS\System32\perfh00C.dat -->28/10/2007 11:01:34

C:\WINDOWS\System32\perfh009.dat -->28/10/2007 11:01:34

C:\WINDOWS\System32\perfc00C.dat -->28/10/2007 11:01:34

C:\WINDOWS\System32\perfc009.dat -->28/10/2007 11:01:34

C:\WINDOWS\System32\shell32.dll -->25/10/2007 17:43:25

C:\WINDOWS\System32\QuickTimeVR.qtx -->19/10/2007 20:16:46

C:\WINDOWS\System32\QuickTime.qts -->19/10/2007 20:16:46

C:\WINDOWS\System32\FNTCACHE.DAT -->11/10/2007 23:47:28

C:\WINDOWS\System32\divxdec.ax -->18/09/2007 13:24:32

C:\WINDOWS\System32\divx_xx0c.dll -->17/09/2007 19:23:00

C:\WINDOWS\System32\divx_xx07.dll -->17/09/2007 19:23:00

C:\WINDOWS\System32\divx_xx11.dll -->17/09/2007 19:22:58

C:\WINDOWS\System32\DivX.dll -->17/09/2007 19:22:58

C:\WINDOWS\System32\Star Wars Episode III Screensaver.scr -->13/09/2007 22:59:56

C:\WINDOWS\System32\DivXCodecVersionChecker.exe -->12/09/2007 00:14:30

C:\WINDOWS\System32\lvcoinst.log -->04/09/2007 13:47:27

C:\WINDOWS\System32\TZLog.log -->29/08/2007 10:59:41

C:\WINDOWS\System32\inetcomm.dll -->21/08/2007 07:17:23

C:\WINDOWS\System32\dtu100.dll.manifest -->21/08/2007 01:26:52

C:\WINDOWS\System32\dtu100.dll -->21/08/2007 01:26:52

 

C:\WINDOWS.log -->18/11/2007 13:33:19

C:\WINDOWS\WindowsUpdate.log -->18/11/2007 13:32:33

C:\WINDOWS\wiaservc.log -->18/11/2007 13:32:33

C:\WINDOWS\wiadebug.log -->18/11/2007 13:32:33

C:\WINDOWS\bootstat.dat -->18/11/2007 13:32:19

C:\WINDOWS\SchedLgU.Txt -->18/11/2007 11:32:23

C:\WINDOWS\setupapi.log -->16/11/2007 01:07:49

C:\WINDOWS\wmsetup.log -->14/11/2007 19:34:10

C:\WINDOWS\lexstat.ini -->14/11/2007 16:25:21

C:\WINDOWS\NeroDigital.ini -->13/11/2007 21:02:54

C:\WINDOWS\popcinfo.dat -->12/11/2007 01:29:52

C:\WINDOWS\catchme.exe -->29/10/2007 18:56:19

C:\WINDOWS\eDrawingOfficeAutomator.INI -->08/10/2007 22:06:52

C:\WINDOWS\yacht.xws -->08/10/2007 22:05:47

C:\WINDOWS\trailer.xws -->08/10/2007 21:58:43

 

winlogon.exe

Verified: Signed

svchost.exe

Verified: Signed

ws2_32.dll

Verified: Signed

user32.dll

Verified: Signed

tcpip.sys

Verified: Signed

ndis.sys

Verified: Signed

null.sys

Verified: Signed

 

 

ListDLLs v2.25 - DLL lister for Win9x/NT

Copyright © 1997-2004 Mark Russinovich

Sysinternals - www.sysinternals.com

 

------------------------------------------------------------------------------

explorer.exe pid: 1048

Command line: C:\WINDOWS\Explorer.EXE

 

Base Size Version Path

0x44080000 0xcf000 7.00.6000.16544 C:\WINDOWS\system32\WININET.dll

0x00400000 0x9000 6.00.5441.0000 C:\WINDOWS\system32\Normaliz.dll

0x43e00000 0x45000 7.00.6000.16544 C:\WINDOWS\system32\iertutil.dll

0x58b50000 0x9a000 5.82.2900.2982 C:\WINDOWS\system32\comctl32.dll

0x009b0000 0x17000 10.05.0001.2027 C:\Program Files\Fichiers communs\Logishrd\LVMVFM\LVPrcInj.dll

0x76f80000 0x7f000 2001.12.4414.0308 C:\WINDOWS\system32\CLBCATQ.DLL

0x77000000 0xd4000 2001.12.4414.0258 C:\WINDOWS\system32\COMRes.dll

0x13420000 0x1a000 11.00.5721.5145 C:\PROGRA~1\WINDOW~2\wmpband.dll

0x44360000 0x5cb000 7.00.6000.16544 C:\WINDOWS\system32\ieframe.dll

0x44160000 0x124000 7.00.6000.16544 C:\WINDOWS\system32\urlmon.dll

0x44a40000 0x371000 7.00.6000.16544 C:\WINDOWS\system32\mshtml.dll

0x746c0000 0x29000 3.10.0349.0000 C:\WINDOWS\system32\msls31.dll

0x76ac0000 0x11000 3.05.2284.0000 C:\WINDOWS\system32\ATL.DLL

0x7d200000 0x2be000 3.01.4000.4039 C:\WINDOWS\system32\msi.dll

0x442b0000 0x3c000 7.00.6000.16544 C:\WINDOWS\system32\webcheck.dll

0x164a0000 0x23000 5.02.5721.5145 C:\WINDOWS\system32\WPDShServiceObj.dll

0x109c0000 0x2c000 5.02.5721.5145 C:\WINDOWS\system32\PortableDeviceTypes.dll

0x10930000 0x49000 5.02.5721.5145 C:\WINDOWS\system32\PortableDeviceApi.dll

0x78130000 0x9b000 8.00.50727.0762 C:\WINDOWS\WinSxS\x86_Microsoft.VC80.CRT_1fc8b3b9a1e18e3b_8.0.50727.762_x-ww_6b128700\MSVCR80.dll

0x02f00000 0x1b9000 2.00.0000.0008 C:\Program Files\Fichiers communs\Ahead\Lib\NeroDigitalExt.dll

0x7c140000 0x103000 7.10.3077.0000 C:\Program Files\Fichiers communs\Ahead\Lib\MFC71.DLL

0x7c340000 0x56000 7.10.3052.0004 C:\Program Files\Fichiers communs\Ahead\Lib\MSVCR71.dll

0x7c3a0000 0x7b000 7.10.3077.0000 C:\Program Files\Fichiers communs\Ahead\Lib\MSVCP71.dll

0x5d360000 0xf000 7.10.3077.0000 C:\WINDOWS\system32\MFC71FRA.DLL

0x5c2e0000 0x51000 8.00.0000.9064 C:\Program Files\OpenOffice.org 2.0\program\shlxthdl.dll

0x60b30000 0x18000 8.00.0000.9054 C:\Program Files\OpenOffice.org 2.0\program\uwinapi.dll

0x62410000 0x8e000 4.05.2003.0120 C:\Program Files\OpenOffice.org 2.0\program\stlport_vc7145.dll

0x031c0000 0x5b000 8.01.0000.0000 C:\Program Files\Fichiers communs\Adobe\Acrobat\ActiveX\PDFShell.dll

0x03230000 0x4c000 8.00.0000.0000 C:\Program Files\Fichiers communs\Adobe\Acrobat\ActiveX\PDFShell.FRA

0x10000000 0x19000 2.10.0003.0002 C:\Program Files\Nero\Nero 7\Nero BackItUp\NBShell.dll

0x02c20000 0x102000 7.10.3077.0000 C:\Program Files\Nero\Nero 7\Nero BackItUp\MFC71U.DLL

0x00940000 0x11000 7.00.0000.0010 C:\Program Files\Avira\AntiVir PersonalEdition Classic\shlext.dll

0x034f0000 0x1e2000 2.10.0001.0001 C:\Program Files\Nero\Nero 7\Nero CoverDesigner\CoverEdExtension.dll

0x74da0000 0x6c000 5.30.0023.1228 C:\WINDOWS\system32\RICHED20.dll

0x74730000 0x3d000 3.525.1117.0000 C:\WINDOWS\system32\ODBC32.dll

0x03800000 0x18000 3.525.1117.0000 C:\WINDOWS\system32\odbcint.dll

 

ListDLLs v2.25 - DLL lister for Win9x/NT

Copyright © 1997-2004 Mark Russinovich

Sysinternals - www.sysinternals.com

 

------------------------------------------------------------------------------

winlogon.exe pid: 528

Command line: winlogon.exe

 

Base Size Version Path

0x01000000 0x81000 \??\C:\WINDOWS\system32\winlogon.exe

0x58b50000 0x9a000 5.82.2900.2982 C:\WINDOWS\system32\COMCTL32.dll

0x74730000 0x3d000 3.525.1117.0000 C:\WINDOWS\system32\ODBC32.dll

0x20000000 0x18000 3.525.1117.0000 C:\WINDOWS\system32\odbcint.dll

0x01240000 0x3b000 1.07.0018.0005 C:\WINDOWS\system32\WgaLogon.dll

0x76f80000 0x7f000 2001.12.4414.0308 C:\WINDOWS\system32\CLBCATQ.DLL

0x77000000 0xd4000 2001.12.4414.0258 C:\WINDOWS\system32\COMRes.dll

 

Le volume dans le lecteur C n'a pas de nom.

Le numéro de série du volume est 78D6-5940

 

Répertoire de C:\WINDOWS\temp

 

18/11/2007 13:32 40 960 rtdrvmon.exe

1 fichier(s) 40 960 octets

0 Rép(s) 82 645 975 040 octets libres

 

Le volume dans le lecteur C n'a pas de nom.

Le numéro de série du volume est 78D6-5940

 

Répertoire de C:\WINDOWS\system32

 

05/08/2004 20:00 6 144 csrss.exe

1 fichier(s) 6 144 octets

0 Rép(s) 82 645 975 040 octets libres

 

Contenu de Downloaded Program Files

Le volume dans le lecteur C n'a pas de nom.

Le numéro de série du volume est 78D6-5940

 

Répertoire de C:\WINDOWS\Downloaded Program Files

 

16/11/2007 01:07 <REP> .

16/11/2007 01:07 <REP> ..

21/08/2007 14:37 124 208 ascstubie.dll

21/08/2007 14:25 395 ascstubie.inf

07/12/2004 15:07 32 bdcore.dll

01/03/2005 13:08 118 784 bdupd.dll

25/06/2003 18:00 541 ca.pub

18/09/2007 13:51 <REP> CONFLICT.1

21/09/2004 15:10 163 840 CoreExecutive.dll

13/01/2005 15:59 233 Crusher.inf

17/01/2006 16:11 580 663 daas_s.dll

26/10/2005 02:47 65 desktop.ini

07/04/2005 15:59 191 488 DigWXMSN.dll

07/04/2005 16:00 261 DigWXMSN.inf

21/09/2004 15:10 36 864 DownloadersWI.dll

25/06/2006 12:50 1 793 erma.inf

03/02/2006 10:20 188 416 fsauc.dll

16/06/2006 14:31 181 856 fscax.dll

15/06/2006 09:19 483 fscax.inf

21/09/2004 15:10 90 112 HtmlParser.dll

21/09/2004 15:10 53 248 HTMLSourceFilter.ax

01/03/2005 13:08 53 248 ipsupd.dll

09/11/2006 16:04 896 jinstall-1_5_0_10.inf

08/08/2006 11:45 576 kavwebscan.inf

09/03/2005 14:42 6 742 lang.ini

18/07/2007 14:49 12 592 libcomm.dll

07/12/2004 15:07 32 libfn.dll

18/02/2005 15:22 126 live.ini

21/09/2004 15:11 57 344 MelodySourceParser.ax

22/02/2007 23:41 304 544 MessengerStatsPAClient.dll

21/09/2004 15:11 81 920 MPO.dll

20/06/2006 15:44 379 704 MsnPUpld.dll

19/06/2006 14:40 393 MsnPUpld.inf

26/05/2005 03:19 293 muweb.inf

29/06/2005 17:17 227 opuc.inf

01/06/2006 01:57 1 331 oscan8.inf

01/06/2006 01:54 471 040 oscan8.ocx

31/05/2006 03:15 10 oscan81.ocx_x

21/09/2004 15:12 229 376 Parsers.dll

12/04/2005 13:58 77 824 PhtPkMSN.dll

08/04/2005 10:28 1 367 PhtPkMSN.inf

21/09/2004 15:12 36 864 PlayerServer.dll

21/09/2004 15:11 94 208 PNGSource.ax

20/06/2006 15:44 117 560 PURen-us.dll

31/05/2002 09:20 117 328 purfr-fr.dll

15/10/2004 07:59 110 592 PURfr-xx.dll

21/09/2004 15:12 32 768 RegType_IE.dll

09/03/2005 14:43 6 828 scanoptions.tsi

21/09/2004 15:13 25 600 scg.ax

21/09/2004 15:13 147 456 SMILInetCtrl.dll

21/09/2004 15:14 28 326 SMILViewer_DX6.inf

21/09/2004 15:11 57 344 StreamControl.ax

09/11/2006 14:36 5 019 swflash.inf

21/09/2004 15:13 110 592 VideoCompositor.ax

27/03/2007 13:25 465 816 wlscBase.dll

27/03/2007 13:29 320 wlscBase.inf

53 fichier(s) 4 769 488 octets

 

Répertoire de C:\WINDOWS\Downloaded Program Files\CONFLICT.1

 

18/09/2007 13:51 <REP> .

18/09/2007 13:51 <REP> ..

02/08/2007 10:31 360 320 MsnPUpld.dll

02/08/2007 14:47 569 MSNPUpld.inf

02/08/2007 10:31 67 456 PURen-us.dll

06/08/2007 11:10 68 992 PURfr-fr.dll

4 fichier(s) 497 337 octets

 

Total des fichiers listés :

57 fichier(s) 5 266 825 octets

5 Rép(s) 82 645 975 040 octets libres

 

Recherche de rootkit! (Merci S!Ri)

 

Recherche d'infections connues

 

Export des clefs sensibles..

 

 

Liste des fichiers en exception sur le pare-feu XP SP2

 

"C:\\Program Files\\MSN Messenger\\msnmsgr.exe"="C:\\Program Files\\MSN Messenger\\msnmsgr.exe:*:Enabled:Messenger"

"C:\\WINDOWS\\system32\\LEXPPS.EXE"="C:\\WINDOWS\\system32\\LEXPPS.EXE:*:Enabled:LEXPPS.EXE"

"C:\\Program Files\\Infogrames\\Tactical Ops\\System\\TacticalOps.exe"="C:\\Program Files\\Infogrames\\Tactical Ops\\System\\TacticalOps.exe:*:Enabled:TacticalOps"

 

 

Export de la clef SharedTaskScheduler

 

[sharedTaskScheduler]

"{438755C2-A8BA-11D1-B96B-00A0C90312E1}"="Pré-chargeur Browseui"

"{8C7461EF-2B13-11d2-BE35-3078302C2030}"="Démon de cache des catégories de composant"

 

 

 

exports des policies

REGEDIT4

 

[system]

"dontdisplaylastusername"=dword:00000000

"legalnoticecaption"=""

"legalnoticetext"=""

"shutdownwithoutlogon"=dword:00000001

"undockwithoutlogon"=dword:00000001

 

 

 

Export des clefs sensibles..

Rechercher adresses sensibles dans le fichier HOSTS...

catchme 0.3.1262 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net

Rootkit scan 2007-11-18 13:53:46

Windows 5.1.2600 Service Pack 2 NTFS

 

scanning hidden services & system hive ...

 

scanning hidden registry entries ...

 

scanning hidden files ...

 

scan completed successfully

hidden services: 0

hidden files: 0

 

 

KProcCheck Version 0.2-beta1 Proof-of-Concept by SIG^2 (www.security.org.sg)

 

Process list by traversal of KiWaitListHead

 

4 - System

240 - alg.exe

504 - csrss.exe

528 - winlogon.exe

576 - services.exe

588 - lsass.exe

748 - svchost.exe

800 - svchost.exe

836 - cmd.exe

868 - svchost.exe

960 - svchost.exe

1012 - svchost.exe

1048 - explorer.exe

1252 - LVPrcSrv.exe

1284 - avguard.exe

1540 - sched.exe

1552 - AppleMobileDevi

1568 - CDAC11BA.EXE

1612 - GoogleUpdaterSe

1776 - svchost.exe

2244 - VTTimer.exe

2308 - LVComSX.exe

2328 - avgnt.exe

2340 - ctfmon.exe

2416 - msnmsgr.exe

2900 - usnsvc.exe

 

Total number of processes = 26

NOTE: Under WinXP, this will not show all processes.

 

KProcCheck Version 0.2-beta1 Proof-of-Concept by SIG^2 (www.security.org.sg)

 

Driver/Module list by traversal of PsLoadedModuleList

 

804D7000 - \WINDOWS\system32\ntkrnlpa.exe

806E2000 - \WINDOWS\system32\hal.dll

F79B0000 - \WINDOWS\system32\KDCOM.DLL

F78C0000 - \WINDOWS\system32\BOOTVID.dll

F7380000 - ACPI.sys

F79B2000 - \WINDOWS\system32\DRIVERS\WMILIB.SYS

F736F000 - pci.sys

F74B0000 - isapnp.sys

F7A78000 - pciide.sys

F7730000 - \WINDOWS\system32\DRIVERS\PCIIDEX.SYS

F79B4000 - aliide.sys

F79B6000 - cmdide.sys

F79B8000 - toside.sys

F79BA000 - VIAIDEXP.SYS

F79BC000 - intelide.sys

F74C0000 - MountMgr.sys

F7350000 - ftdisk.sys

F7738000 - PartMgr.sys

F74D0000 - VolSnap.sys

F78C4000 - cpqarray.sys

F7338000 - \WINDOWS\system32\DRIVERS\SCSIPORT.SYS

F7320000 - atapi.sys

F78C8000 - aha154x.sys

F7740000 - sparrow.sys

F78CC000 - symc810.sys

F74E0000 - aic78xx.sys

F78D0000 - dac960nt.sys

F74F0000 - ql10wnt.sys

F78D4000 - amsint.sys

F7748000 - asc.sys

F78D8000 - asc3550.sys

F7750000 - mraid35x.sys

F7758000 - i2omp.sys

F78DC000 - ini910u.sys

F7500000 - ql1240.sys

F7510000 - aic78u2.sys

F7760000 - symc8xx.sys

F7768000 - sym_hi.sys

F7770000 - sym_u3.sys

F7778000 - ABP480N5.SYS

F7780000 - asc3350p.sys

F79BE000 - cd20xrnt.sys

F7520000 - ultra.sys

F7307000 - adpu160m.sys

F7788000 - dpti2o.sys

F7530000 - ql1080.sys

F7540000 - ql1280.sys

F7550000 - ql12160.sys

F7790000 - perc2.sys

F79C0000 - perc2hib.sys

F7798000 - hpn.sys

F78E0000 - cbidf2k.sys

F72DB000 - dac2w2k.sys

F7560000 - VIAMRAID.SYS

F7570000 - disk.sys

F7580000 - \WINDOWS\system32\DRIVERS\CLASSPNP.SYS

F72BB000 - fltMgr.sys

F72A9000 - sr.sys

F7590000 - PxHelp20.sys

F7292000 - KSecDD.sys

F7205000 - Ntfs.sys

F71D8000 - NDIS.sys

F75A0000 - viaagp.sys

F75B0000 - uagp35.sys

F75C0000 - ohci1394.sys

F75D0000 - \WINDOWS\system32\DRIVERS\1394BUS.SYS

F71BD000 - Mup.sys

F75E0000 - alim1541.sys

F75F0000 - amdagp.sys

F7600000 - agpCPQ.sys

F7630000 - \SystemRoot\system32\DRIVERS\nic1394.sys

F719D000 - \SystemRoot\system32\DRIVERS\intelppm.sys

F69AD000 - \SystemRoot\system32\DRIVERS\vtmini.sys

F6999000 - \SystemRoot\system32\DRIVERS\VIDEOPRT.SYS

F6988000 - \SystemRoot\system32\DRIVERS\Rtlnic51.sys

F718D000 - \SystemRoot\system32\DRIVERS\imapi.sys

F717D000 - \SystemRoot\system32\DRIVERS\cdrom.sys

F716D000 - \SystemRoot\system32\DRIVERS\redbook.sys

F6965000 - \SystemRoot\system32\DRIVERS\ks.sys

F7848000 - \SystemRoot\System32\Drivers\GEARAspiWDM.sys

F7850000 - \SystemRoot\system32\DRIVERS\usbuhci.sys

F6942000 - \SystemRoot\system32\DRIVERS\USBPORT.SYS

F7858000 - \SystemRoot\system32\DRIVERS\usbehci.sys

F65A1000 - \SystemRoot\system32\drivers\ALCXWDM.SYS

F657D000 - \SystemRoot\system32\drivers\portcls.sys

F714D000 - \SystemRoot\system32\drivers\drmk.sys

F7860000 - \SystemRoot\system32\DRIVERS\fdc.sys

F656C000 - \SystemRoot\system32\DRIVERS\serial.sys

F798C000 - \SystemRoot\system32\DRIVERS\serenum.sys

F6558000 - \SystemRoot\system32\DRIVERS\parport.sys

F713D000 - \SystemRoot\system32\DRIVERS\i8042prt.sys

F7868000 - \SystemRoot\system32\DRIVERS\mouclass.sys

F7870000 - \SystemRoot\system32\DRIVERS\kbdclass.sys

F7BA3000 - \SystemRoot\system32\DRIVERS\audstub.sys

F6A35000 - \SystemRoot\system32\DRIVERS\rasl2tp.sys

F7994000 - \SystemRoot\system32\DRIVERS\ndistapi.sys

F647C000 - \SystemRoot\system32\DRIVERS\ndiswan.sys

F6A25000 - \SystemRoot\system32\DRIVERS\raspppoe.sys

F6A15000 - \SystemRoot\system32\DRIVERS\raspptp.sys

F7880000 - \SystemRoot\system32\DRIVERS\TDI.SYS

F646B000 - \SystemRoot\system32\DRIVERS\psched.sys

F6A05000 - \SystemRoot\system32\DRIVERS\msgpc.sys

F7888000 - \SystemRoot\system32\DRIVERS\ptilink.sys

F7890000 - \SystemRoot\system32\DRIVERS\raspti.sys

F69F5000 - \SystemRoot\system32\DRIVERS\termdd.sys

F79EA000 - \SystemRoot\system32\DRIVERS\swenum.sys

F6412000 - \SystemRoot\system32\DRIVERS\update.sys

F79AC000 - \SystemRoot\system32\DRIVERS\mssmbios.sys

F69E5000 - \SystemRoot\System32\Drivers\NDProxy.SYS

F7650000 - \SystemRoot\system32\DRIVERS\usbhub.sys

F79F0000 - \SystemRoot\system32\DRIVERS\USBD.SYS

F79FE000 - \SystemRoot\System32\Drivers\i2omgmt.SYS

F7A00000 - \SystemRoot\System32\Drivers\Fs_Rec.SYS

F7AE1000 - \SystemRoot\System32\Drivers\Null.SYS

F7A02000 - \SystemRoot\System32\Drivers\Beep.SYS

F78B8000 - \SystemRoot\System32\drivers\vga.sys

F7A04000 - \SystemRoot\System32\Drivers\mnmdd.SYS

F7A06000 - \SystemRoot\System32\DRIVERS\RDPCDD.sys

F77A8000 - \SystemRoot\System32\Drivers\Msfs.SYS

F77C8000 - \SystemRoot\System32\Drivers\Npfs.SYS

F6DA2000 - \SystemRoot\system32\DRIVERS\rasacd.sys

F5367000 - \SystemRoot\system32\DRIVERS\ipsec.sys

F530F000 - \SystemRoot\system32\DRIVERS\tcpip.sys

F52BF000 - \SystemRoot\system32\DRIVERS\netbt.sys

F529E000 - \SystemRoot\system32\DRIVERS\ipnat.sys

F7690000 - \SystemRoot\system32\DRIVERS\wanarp.sys

F527C000 - \SystemRoot\System32\drivers\afd.sys

F76A0000 - \SystemRoot\system32\DRIVERS\netbios.sys

F77D0000 - \SystemRoot\system32\DRIVERS\ssmdrv.sys

F51B1000 - \SystemRoot\system32\DRIVERS\rdbss.sys

F76B0000 - \SystemRoot\system32\DRIVERS\arp1394.sys

F5142000 - \SystemRoot\system32\DRIVERS\mrxsmb.sys

F76C0000 - \SystemRoot\System32\Drivers\Fips.SYS

F76D0000 - \SystemRoot\system32\DRIVERS\avipbb.sys

F7A08000 - \??\C:\Program Files\Avira\AntiVir PersonalEdition Classic\avgio.sys

F76F0000 - \SystemRoot\System32\Drivers\Cdfs.SYS

F77F0000 - \SystemRoot\system32\DRIVERS\USBSTOR.SYS

F7700000 - \SystemRoot\system32\drivers\LVUSBSta.sys

F4EED000 - \SystemRoot\system32\DRIVERS\LV561AV.SYS

F6402000 - \SystemRoot\system32\DRIVERS\usbscan.sys

F7810000 - \SystemRoot\system32\DRIVERS\usbprint.sys

F4ED5000 - \SystemRoot\System32\Drivers\dump_atapi.sys

F7A24000 - \SystemRoot\System32\Drivers\dump_WMILIB.SYS

BF800000 - \SystemRoot\System32\win32k.sys

F63EA000 - \SystemRoot\System32\drivers\Dxapi.sys

F7818000 - \SystemRoot\System32\watchdog.sys

BF000000 - \SystemRoot\System32\drivers\dxg.sys

F7BB2000 - \SystemRoot\System32\drivers\dxgthk.sys

BF012000 - \SystemRoot\System32\vtdisp.dll

BFFA0000 - \SystemRoot\System32\ATMFD.DLL

F09B5000 - \SystemRoot\system32\DRIVERS\ndisuio.sys

F068A000 - \??\C:\Program Files\Avira\AntiVir PersonalEdition Classic\avgntflt.sys

F060D000 - \SystemRoot\system32\DRIVERS\mrxdav.sys

F05FD000 - \??\C:\WINDOWS\system32\drivers\CdaC15BA.SYS

F0479000 - \??\C:\WINDOWS\system32\drivers\hardlock.sys

F042E000 - \SystemRoot\System32\Drivers\Fastfat.SYS

F03ED000 - \SystemRoot\System32\Drivers\HTTP.sys

F0373000 - \SystemRoot\system32\DRIVERS\srv.sys

F0652000 - \SystemRoot\system32\DRIVERS\mdmxsdk.sys

F034B000 - \SystemRoot\system32\DRIVERS\secdrv.sys

F0249000 - \??\C:\WINDOWS\system32\drivers\tmcomm.sys

F539A000 - \SystemRoot\system32\drivers\LVPr2Mon.sys

EFFDC000 - \SystemRoot\system32\drivers\wdmaud.sys

F0039000 - \SystemRoot\system32\drivers\sysaudio.sys

F7BB4000 - \SystemRoot\System32\DRIVERS\KProcCheck.sys

 

Total number of drivers = 165

 

Liste des programmes installes

 

ABBYY FineReader 5.0 Sprint

Ad-Aware SE Personal

Adobe Flash Player 9 ActiveX

Adobe Photoshop 7.0

Adobe Reader 8.1.1 - Français

Adobe Shockwave Player

Apple Mobile Device Support

Apple Software Update

AutoUpdate

Avanquest update

Avira AntiVir PersonalEdition Classic

BankPerfect 5.0

CamStudio 2.0 Fr

CCleaner (remove only)

COSMOSMotion 2007 SP0

COSMOSWorks 2007 SP0

DivX Codec

DivX Content Uploader

DivX Converter

DivX Player

DivX Web Player

Désinstallation du Lecteur Neuf VOD

DVD Decrypter (Remove Only)

DVD Shrink 3.2

EasyCleaner

EAX Unified

Google Earth

GTA San Andreas

Guitar Pro 4

HijackThis 2.0.2

iTunes

J2SE Runtime Environment 5.0 Update 10

J2SE Runtime Environment 5.0 Update 11

J2SE Runtime Environment 5.0 Update 3

Java SE Runtime Environment 6 Update 1

Kaspersky Online Scanner

Lecteur Windows Media 11

Lexmark X1100 Series

LimeWire PRO 4.12.3

Logitech Audio Echo Cancellation Component

Logitech QuickCam

Logitech Video Enumerator

Messenger Plus! Live

Microsoft .NET Framework 1.1

Microsoft .NET Framework 1.1

Microsoft .NET Framework 1.1 French Language Pack

Microsoft .NET Framework 1.1 Hotfix (KB928366)

Microsoft .NET Framework 2.0

Microsoft .NET Framework 2.0

Microsoft .NET Framework 2.0 Language Pack - FRA

Microsoft .NET Framework 3.0

Microsoft .NET Framework 3.0

Microsoft .NET Framework 3.0 French Language Pack

Microsoft Compression Client Pack 1.0 for Windows XP

Microsoft Danseur Plus! LE

Microsoft Internationalized Domain Names Mitigation APIs

Microsoft Kernel-Mode Driver Framework Feature Pack 1.5

Microsoft National Language Support Downlevel APIs

Microsoft Office PowerPoint Viewer 2003

Microsoft User-Mode Driver Framework Feature Pack 1.0

Mise à jour de sécurité pour Windows Internet Explorer 7 (KB928090)

Mise à jour de sécurité pour Windows Internet Explorer 7 (KB929969)

Mise à jour de sécurité pour Windows Internet Explorer 7 (KB931768)

Mise à jour de sécurité pour Windows Internet Explorer 7 (KB933566)

Mise à jour de sécurité pour Windows Internet Explorer 7 (KB937143)

Mise à jour de sécurité pour Windows Internet Explorer 7 (KB938127)

Mise à jour de sécurité pour Windows Internet Explorer 7 (KB939653)

Mise à jour de sécurité pour Windows XP (KB913433)

Module de prise en charge linguistique de Microsoft .NET Framework 2.0 - FRA

Module de prise en charge linguistique du français de Microsoft .NET Framework 3.0

Motorola Driver Installation

Motorola Phone Tools

Mozilla Firefox (2.0.0.9)

MSXML 4.0 SP2 (KB927978)

MSXML 4.0 SP2 (KB936181)

MSXML 6.0 Parser (KB933579)

Navilog1 3.3.6

Nero 7

Neuf - Kit de connexion

OpenOffice.org 2.0

Outil de mise à jour Google

Package de base Microsoft de service de chiffrement pour cartes à puce

Panda TotalScan

PCI SoftV92 Modem

PhotoCite Collection

Picasa 2

Platform

Power2Go 4.0

PowerDVD

PowerStarter

QuickTime

Realtek AC'97 Audio

SafeCast Shared Components

Security Update for CAPICOM (KB931906)

Security Update for CAPICOM (KB931906)

SolidWorks 2007 SP0

SolidWorks Installation Manager

Stronghold

Tactical Ops

the_silent_force ScreenSaver

VIA Gestionnaire de périphériques de plate-forme

VideoLAN VLC media player 0.8.6a

WebFldrs XP

Windows Communication Foundation

Windows Communication Foundation Language Pack - FRA

Windows Genuine Advantage Notifications (KB905474)

Windows Genuine Advantage Validation Tool (KB892130)

Windows Imaging Component

Windows Internet Explorer 7

Windows Live Messenger

Windows Live OneCare safety scanner

Windows Live Sign-in Assistant

Windows Media Format 11 runtime

Windows Media Format 11 runtime

Windows Media Player 11

Windows Presentation Foundation

Windows Presentation Foundation Language Pack (FRA)

Windows Workflow Foundation

Windows Workflow Foundation FR Language Pack

XML Paper Specification Shared Components Language Pack 1.0

XML Paper Specification Shared Components Pack 1.0

 

 

 

Le volume dans le lecteur C n'a pas de nom.

Le numéro de série du volume est 78D6-5940

 

Répertoire de C:\Program Files

 

16/11/2007 18:18 <REP> .

16/11/2007 18:18 <REP> ..

01/11/2006 20:08 <REP> ABBYY FineReader 5.0 Sprint

02/07/2007 17:09 <REP> Adobe

28/12/2006 18:54 <REP> Alwil Software

12/09/2007 11:42 <REP> Apple Software Update

14/11/2007 16:15 <REP> Avira

17/02/2007 15:20 <REP> BankPerfect

29/10/2007 12:08 <REP> CamStudio

14/11/2007 18:21 <REP> CCleaner

08/08/2007 16:07 <REP> Common Files

30/06/2006 03:07 <REP> CONEXANT

26/07/2007 01:57 <REP> Creative

30/06/2006 03:07 <REP> CyberLink

27/09/2007 16:05 <REP> DivX

05/02/2007 03:07 <REP> DVD Decrypter

14/11/2006 13:15 <REP> DVD Shrink

12/10/2007 18:48 <REP> DWGeditor

11/10/2007 23:43 <REP> Fichiers communs

11/11/2007 18:22 <REP> Firefly Studios

05/09/2007 18:42 <REP> Google

17/05/2007 16:13 <REP> Grisoft

27/08/2007 20:21 <REP> Guitar Pro 4

01/04/2007 21:49 <REP> Image-Line

02/03/2007 20:10 <REP> Infogrames

10/10/2007 10:25 <REP> Internet Explorer

06/11/2007 21:14 <REP> iPod

30/10/2006 11:30 <REP> IqonWare AntiVirus

06/11/2007 21:15 <REP> iTunes

14/04/2007 16:58 <REP> Java

27/01/2007 11:45 <REP> Lavasoft

12/11/2007 13:01 <REP> Lexmark X1100 Series

10/11/2007 15:21 <REP> LimeWire

08/08/2007 15:48 <REP> LiveUpdate

26/03/2007 15:46 <REP> Logitech

25/11/2006 16:02 <REP> Ludiclub

30/10/2006 12:02 <REP> Messenger

10/06/2007 16:54 <REP> Messenger Plus! Live

19/05/2007 13:05 <REP> Microsoft CAPICOM 2.1.0.2

01/11/2006 17:49 <REP> Microsoft Danseur Plus! LE

30/06/2006 03:10 <REP> microsoft frontpage

11/10/2007 23:24 <REP> Microsoft Office

01/11/2006 17:49 <REP> Microsoft Plus! Digital Media Edition

08/08/2007 16:07 <REP> Motorola Phone Tools

30/06/2006 03:08 <REP> Movie Maker

18/11/2007 13:36 <REP> Mozilla Firefox

14/05/2007 04:13 <REP> MSBuild

27/03/2007 18:30 <REP> MSN

30/06/2006 03:08 <REP> MSN Gaming Zone

13/09/2007 00:34 <REP> MSN Messenger

16/08/2007 13:34 <REP> MSXML 4.0

14/05/2007 04:17 <REP> MSXML 6.0

12/10/2007 22:45 <REP> MySpace

16/11/2007 18:22 <REP> Navilog1

11/08/2007 14:42 <REP> Nero

25/06/2007 10:57 <REP> NetMeeting

31/10/2006 16:02 <REP> Neuf

25/06/2007 12:53 <REP> neuf_VOD

30/10/2006 22:34 <REP> OfficeUpdate11

30/06/2006 03:08 <REP> Online Services

04/11/2006 11:35 <REP> OpenOffice.org 2.0

19/06/2007 17:08 <REP> Outlook Express

16/11/2007 01:08 <REP> Panda Security

12/12/2006 16:00 <REP> PhotoCite Collection

25/10/2007 22:48 <REP> Picasa2

06/11/2007 21:12 <REP> QuickTime

30/06/2006 03:09 <REP> Realtek AC97

14/05/2007 04:02 <REP> Reference Assemblies

30/04/2007 17:08 <REP> ReflexiveArcade

12/11/2007 15:42 <REP> Rockstar Games

13/09/2007 23:02 <REP> ScreenThemes

30/06/2006 03:09 <REP> Services en ligne

02/07/2007 13:18 <REP> SlySoft

14/10/2007 12:44 <REP> SolidWorks

11/10/2007 23:49 <REP> SolidWorks Installation Manager

01/05/2007 22:06 <REP> TGTSoft

20/08/2007 12:01 <REP> ToniArts

30/06/2006 03:09 <REP> VIA

17/04/2007 13:27 <REP> VideoLAN

30/09/2007 21:06 <REP> VstPlugins

10/06/2007 16:54 <REP> Windows Live

29/10/2007 11:56 <REP> Windows Live Safety Center

17/11/2006 15:15 <REP> Windows Media Connect 2

16/08/2007 13:34 <REP> Windows Media Player

30/06/2006 03:09 <REP> Windows NT

30/06/2006 03:10 <REP> xerox

05/10/2007 02:06 <REP> Zylom Games

0 fichier(s) 0 octets

87 Rép(s) 82 619 129 856 octets libres

Le volume dans le lecteur C n'a pas de nom.

Le numéro de série du volume est 78D6-5940

 

Répertoire de C:\Program Files\fichiers communs

 

11/10/2007 23:43 <REP> .

11/10/2007 23:43 <REP> ..

02/07/2007 17:09 <REP> Adobe

11/08/2007 14:43 <REP> Ahead

24/07/2007 15:33 <REP> Apple

11/10/2007 23:43 <REP> Designer

12/10/2007 18:44 <REP> eDrawings2007

30/06/2006 03:08 <REP> InstallShield

01/11/2006 14:16 <REP> Java

26/03/2007 16:04 <REP> LogiShrd

14/02/2007 20:04 <REP> Logitech

21/01/2007 16:49 <REP> Macrovision Shared

11/10/2007 23:43 <REP> Microsoft Shared

23/07/2007 20:56 <REP> Motorola Shared

30/06/2006 03:08 <REP> MSSoap

23/03/2007 11:40 <REP> PC Tools

12/11/2007 01:46 <REP> Services

09/10/2007 21:34 <REP> Solidworks Data

12/10/2007 18:44 <REP> SolidWorks Shared

30/06/2006 03:08 <REP> SpeechEngines

19/06/2007 17:08 <REP> System

0 fichier(s) 0 octets

21 Rép(s) 82 619 129 856 octets libres

Le volume dans le lecteur C n'a pas de nom.

Le numéro de série du volume est 78D6-5940

 

Répertoire de C:\Program Files\fichiers communs\Microsoft Shared\Web Folders

 

30/06/2006 03:08 <REP> .

30/06/2006 03:08 <REP> ..

18/05/2001 21:57 561 209 MSONSEXT.DLL

03/06/1999 18:09 122 937 MSOWS409.DLL

07/03/2001 13:00 127 033 MSOWS40c.DLL

3 fichier(s) 811 179 octets

2 Rép(s) 82 619 129 856 octets libres

Le volume dans le lecteur C n'a pas de nom.

Le numéro de série du volume est 78D6-5940

 

Répertoire de C:\Program Files\common files

 

08/08/2007 16:07 <REP> .

08/08/2007 16:07 <REP> ..

08/08/2007 16:07 <REP> Motorola Shared

0 fichier(s) 0 octets

3 Rép(s) 82 619 129 856 octets libres

 

 

 

 

c:\Documents and Settings\Administrateur\Bureau\PC Defender.exe

c:\Documents and Settings\All Users\Application Data\Apple Computer\Installer Cache\iTunes 7.5.0.20\iTunesSetupAdmin.exe

c:\Documents and Settings\Default User\Bureau\PC Defender.exe

c:\Documents and Settings\Invité\Bureau\PC Defender.exe

c:\Documents and Settings\Marie Christine Duny\.limewire\.NetworkShare\LimeWireWin4.14.10.exe

c:\Documents and Settings\Marie Christine Duny\Application Data\Adobe\Acrobat\7.0\Updater\AdbeRdr709_fr_FR.exe

c:\Documents and Settings\Marie Christine Duny\Application Data\Microsoft\Installer\{8315396A-5EA1-419D-BEC4-978284BDF556}\NewShortcut1_8315396A5EA1419DBEC4978284BDF556.exe

c:\Documents and Settings\Marie Christine Duny\Application Data\Microsoft\Installer\{8AC049F7-1383-45C3-9E7D-F93CA667F9E1}\ARPPRODUCTICON.exe

c:\Documents and Settings\Marie Christine Duny\Bureau\ATF-Cleaner.exe

c:\Documents and Settings\Marie Christine Duny\Bureau\ComboFix.exe

c:\Documents and Settings\Marie Christine Duny\Bureau\Navilog1.exe

c:\Documents and Settings\Marie Christine Duny\Bureau\DiagHelp\DiagHelp\catchme.exe

c:\Documents and Settings\Marie Christine Duny\Bureau\DiagHelp\DiagHelp\diff.exe

c:\Documents and Settings\Marie Christine Duny\Bureau\DiagHelp\DiagHelp\dumphive.exe

c:\Documents and Settings\Marie Christine Duny\Bureau\DiagHelp\DiagHelp\FilesInfoCmd.exe

c:\Documents and Settings\Marie Christine Duny\Bureau\DiagHelp\DiagHelp\find2.exe

c:\Documents and Settings\Marie Christine Duny\Bureau\DiagHelp\DiagHelp\Fport.exe

c:\Documents and Settings\Marie Christine Duny\Bureau\DiagHelp\DiagHelp\grep.exe

c:\Documents and Settings\Marie Christine Duny\Bureau\DiagHelp\DiagHelp\gzip.exe

c:\Documents and Settings\Marie Christine Duny\Bureau\DiagHelp\DiagHelp\KProcCheck.exe

c:\Documents and Settings\Marie Christine Duny\Bureau\DiagHelp\DiagHelp\LFiles.exe

c:\Documents and Settings\Marie Christine Duny\Bureau\DiagHelp\DiagHelp\LISTDLLS.exe

c:\Documents and Settings\Marie Christine Duny\Bureau\DiagHelp\DiagHelp\md5sums.exe

c:\Documents and Settings\Marie Christine Duny\Bureau\DiagHelp\DiagHelp\pslist.exe

c:\Documents and Settings\Marie Christine Duny\Bureau\DiagHelp\DiagHelp\sigcheck.exe

c:\Documents and Settings\Marie Christine Duny\Bureau\DiagHelp\DiagHelp\streams.exe

c:\Documents and Settings\Marie Christine Duny\Bureau\DiagHelp\DiagHelp\swreg.exe

c:\Documents and Settings\Marie Christine Duny\Bureau\DiagHelp\DiagHelp\tar.exe

c:\Documents and Settings\Marie Christine Duny\Bureau\HiJackThis\HijackThis.exe

c:\Documents and Settings\Marie Christine Duny\Mes documents\Mes programmes d'installation\EClea2_0.exe

c:\Documents and Settings\Marie Christine Duny\Mes documents\Mes programmes d'installation\MPEG2 DVD plugin for NERO.exe

c:\Documents and Settings\Marie Christine Duny\Mes documents\Mes programmes d'installation\Nero 7 Ultra Edition Enhanced 7.5.9.0 Keygen.exe

c:\Documents and Settings\Marie Christine Duny\Mes documents\Mes programmes d'installation\patch_routeur_trio3c.exe

c:\Documents and Settings\Marie Christine Duny\Mes documents\Mes programmes d'installation\dvd decryter\DVD DECRYPTER 4.1.4.0 - SetupDVDDecrypter.exe

c:\Documents and Settings\Marie Christine Duny\Mes documents\Mes programmes d'installation\General-CleanTool\General-CleanTool.exe

c:\Documents and Settings\Marie Christine Duny\Mes documents\Mes programmes d'installation\Nero 7.0.1.2 Ultra Edition with Keygen - English\Nero-7.0.1.2_eng.exe

c:\Documents and Settings\Marie Christine Duny\Mes documents\Mes programmes d'installation\Nero 7.0.1.2 Ultra Edition with Keygen - English\Nero 7 Keygen from Embrace\keygen.exe

c:\Documents and Settings\Marie Christine Duny\Mes documents\Mes programmes d'installation\OpenOffice.org 2.0 Installation Files\instmsia.exe

c:\Documents and Settings\Marie Christine Duny\Mes documents\Mes programmes d'installation\OpenOffice.org 2.0 Installation Files\instmsiw.exe

c:\Documents and Settings\Marie Christine Duny\Mes documents\Mes programmes d'installation\OpenOffice.org 2.0 Installation Files\setup.exe

c:\Documents and Settings\Marie Christine Duny\Mes documents\Mon travail\vittoz.exe

c:\Documents and Settings\All Users\Application Data\Avira\AntiVir PersonalEdition Classic\BACKUP\FAILSAFE\avewin32.dll

c:\Documents and Settings\All Users\Application Data\Grisoft\AVG Anti-Spyware 7.5\Downloads\help.dll

c:\Documents and Settings\All Users\Application Data\Logishrd\LQCVFX\Filters\MMSEF.dll

c:\Documents and Settings\All Users\Application Data\Microsoft\IdentityCRL\ppcrlconfig.dll

c:\Documents and Settings\All Users\Application Data\Microsoft\IdentityCRL\production\ppcrlconfig.dll

c:\Documents and Settings\All Users\Application Data\Nero\DrWeb\Drweb32.dll

c:\Documents and Settings\All Users\Application Data\Zylom\ZylomGamesPlayer\npzylomgamesplayer.dll

c:\Documents and Settings\All Users\Application Data\Zylom\ZylomGamesPlayer\zylomgamesplayer.dll

c:\Documents and Settings\All Users\Application Data\Zylom\ZylomGamesPlayer\Zylom\chuzzle\fr-FR\Chuzzle.dll

c:\Documents and Settings\All Users\Application Data\Zylom\ZylomGamesPlayer\Zylom\insaniquarium\fr-FR\insaniquarium.dll

c:\Documents and Settings\All Users\Application Data\Zylom\ZylomGamesPlayer\Zylom\MysterySolitaireSIWeb\fr-FR\bass.dll

c:\Documents and Settings\All Users\Application Data\Zylom\ZylomGamesPlayer\Zylom\MysterySolitaireSIWeb\fr-FR\MysterySolitaireSIWeb.dll

c:\Documents and Settings\All Users\Application Data\Zylom\ZylomGamesPlayer\Zylom\MysterySolitaireSIWeb\fr-FR\Resources.dll

c:\Documents and Settings\All Users\Application Data\Zylom\ZylomGamesPlayer\Zylom\MyZylomExtension\MyZylomExtension.dll

c:\Documents and Settings\All Users\Application Data\Zylom\ZylomGamesPlayer\Zylom\PlaytimeExtension\PlaytimeExtension.dll

c:\Documents and Settings\All Users\Application Data\Zylom\ZylomGamesPlayer\Zylom\PopcapExtension\PopcapExtension.dll

c:\Documents and Settings\All Users\Application Data\Zylom\ZylomGamesPlayer\Zylom\ZylomDeluxeInstaller\ZylomDeluxeInstaller.dll

c:\Documents and Settings\LocalService\Application Data\Microsoft\UPnP Device Host\upnphost\udhisapi.dll

c:\Documents and Settings\Marie Christine Duny\Application Data\Identities\{0000278T-TT9K-T8DU-098L-22G2KN550VVG}\xmlparse.dll

c:\Documents and Settings\Marie Christine Duny\Application Data\Identities\{0000278T-TT9K-T8DU-12ET-241L598QQVVA}\xmlparse.dll

c:\Documents and Settings\Marie Christine Duny\Application Data\Identities\{0000278T-TT9K-T8DU-12ET-241L598QQVVQ}\xmlparse.dll

c:\Documents and Settings\Marie Christine Duny\Application Data\Identities\{0000278T-TT9K-T8DU-1KFV-23O5NTEJMVS6}\xmlparse.dll

c:\Documents and Settings\Marie Christine Duny\Application Data\Identities\{0000278T-TT9K-T8DU-1KFV-23O5NTEJMVVF}\xmlparse.dll

c:\Documents and Settings\Marie Christine Duny\Application Data\Identities\{00009BV5-V6E6-N99D-O8SF-9VRP3OLUMVG5}\xmlparse.dll

c:\Documents and Settings\Marie Christine Duny\Application Data\Identities\{00009BV5-V6E6-N99D-O8SF-9VRP3OLUMVGB}\xmlparse.dll

c:\Documents and Settings\Marie Christine Duny\Application Data\Identities\{00009BV5-V6E6-N99D-O8SF-9VRP3OLUMVGP}\xmlparse.dll

c:\Documents and Settings\Marie Christine Duny\Application Data\Identities\{00009BV5-V6E6-N99D-O8SF-9VRP3OLUMVH0}\xmlparse.dll

c:\Documents and Settings\Marie Christine Duny\Application Data\Identities\{00009BV5-V6E6-N99D-O8SF-9VRP3OLUMVIB}\xmlparse.dll

c:\Documents and Settings\Marie Christine Duny\Application Data\Identities\{00009BV5-V6E6-N99D-O8SF-9VRP3OLUMVJ0}\xmlparse.dll

c:\Documents and Settings\Marie Christine Duny\Application Data\Identities\{00009BV5-V6E6-N99D-O8SF-9VRP3OLUMVJ7}\xmlparse.dll

c:\Documents and Settings\Marie Christine Duny\Application Data\Identities\{00009BV5-V6E6-N99D-O8SF-9VRP3OLUMVJS}\xmlparse.dll

c:\Documents and Settings\Marie Christine Duny\Application Data\Identities\{00009BV5-V6E6-N99D-O8SF-9VRP3OLUMVKV}\xmlparse.dll

c:\Documents and Settings\Marie Christine Duny\Application Data\Identities\{00013KEU-UKQE-K6V0-6KK2-254E2EDG6VV2}\xmlparse.dll

c:\Documents and Settings\Marie Christine Duny\Application Data\Identities\{00013KEU-UKQE-K6V0-6KK2-254E2EDG6VVH}\xmlparse.dll

c:\Documents and Settings\Marie Christine Duny\Application Data\Identities\{00013KEU-UKQE-K6V0-6KK2-254E2EDG6VVP}\xmlparse.dll

c:\Documents and Settings\Marie Christine Duny\Application Data\Identities\{00013KEU-UKQE-K6V0-DNSL-22H2BN66GVVO}\xmlparse.dll

c:\Documents and Settings\Marie Christine Duny\Application Data\Identities\{00013KEU-UKQE-K6V0-LCDK-256UOEQ6SVVI}\xmlparse.dll

c:\Documents and Settings\Marie Christine Duny\Application Data\Identities\{00013KEU-UKQE-K6V0-OT7U-252VEQ1T6VVJ}\xmlparse.dll

c:\Documents and Settings\Marie Christine Duny\Application Data\Identities\{0004LVIV-J73B-KKMS-C2FA-NVTL45EG8VVM}\xmlparse.dll

c:\Documents and Settings\Marie Christine Duny\Application Data\Identities\{000HQ7FF-AD7A-3FG1-0C15-24GTSFND4VV1}\xmlparse.dll

c:\Documents and Settings\Marie Christine Duny\Application Data\Identities\{000HQ7FF-AD7A-3FG1-0C15-24GTSFND4VVA}\xmlparse.dll

c:\Documents and Settings\Marie Christine Duny\Application Data\Identities\{000HQ7FF-AD7A-3FG1-79JF-24IHS7M88VVH}\xmlparse.dll

c:\Documents and Settings\Marie Christine Duny\Application Data\Identities\{000HQ7FF-AD7A-3FG1-79JF-24IHS7M88VVQ}\xmlparse.dll

c:\Documents and Settings\Marie Christine Duny\Application Data\Identities\{000HQ7FF-AD7A-3FG1-79JF-254CM94A2VVP}\xmlparse.dll

c:\Documents and Settings\Marie Christine Duny\Application Data\Identities\{000HQ7FF-AD7A-3FG1-7LLS-22TDACKJ0VU0}\xmlparse.dll

c:\Documents and Settings\Marie Christine Duny\Application Data\Identities\{000HQ7FF-AD7A-3FG1-83VE-238SHC0H2VVH}\xmlparse.dll

c:\Documents and Settings\Marie Christine Duny\Application Data\Identities\{000HQ7FF-AD7A-3FG1-97R9-24PV6P1ROVVC}\xmlparse.dll

c:\Documents and Settings\Marie Christine Duny\Application Data\Identities\{000HQ7FF-AD7A-3FG1-FP6A-248DTTL0QVVP}\xmlparse.dll

c:\Documents and Settings\Marie Christine Duny\Application Data\Identities\{000HQ7FF-AD7A-3FG1-RTNH-21IOLNPESVV9}\xmlparse.dll

c:\Documents and Settings\Marie Christine Duny\Application Data\Identities\{000HQ7FF-AD7A-3FG1-T8BJ-22LI948QUVVG}\xmlparse.dll

c:\Documents and Settings\Marie Christine Duny\Application Data\Identities\{000HQ7FF-AD7A-3FG2-5MGN-224B6D89UVV7}\xmlparse.dll

c:\Documents and Settings\Marie Christine Duny\Application Data\Identities\{000HQ7FF-AD7A-3FG2-5MGN-224B6D89UVVE}\xmlparse.dll

c:\Documents and Settings\Marie Christine Duny\Application Data\Identities\{000HQ7FF-AD7A-3FG2-5MGN-224B6D89UVVL}\xmlparse.dll

c:\Documents and Settings\Marie Christine Duny\Application Data\Identities\{000HQ7FF-AD7A-3FG2-BTPP-21HGNJ8AQVVQ}\xmlparse.dll

c:\Documents and Settings\Marie Christine Duny\Application Data\Identities\{000HQ7FF-AD7A-3FG2-FTST-22EV6QAI2VV1}\xmlparse.dll

c:\Documents and Settings\Marie Christine Duny\Application Data\Identities\{000HQ7FF-AD7A-3FG2-LS5J-229F8D9V0VVQ}\xmlparse.dll

c:\Documents and Settings\Marie Christine Duny\Application Data\Identities\{000HQ7FF-AD7A-3FG3-4A90-24BL1LF8IVV6}\xmlparse.dll

c:\Documents and Settings\Marie Christine Duny\Application Data\Identities\{000HQ7FF-AD7A-3FG3-4A90-24BL1LF8IVVD}\xmlparse.dll

c:\Documents and Settings\Marie Christine Duny\Application Data\Identities\{000HQ7FF-AD7A-3FG3-8AT4-258NF6K78VV2}\xmlparse.dll

c:\Documents and Settings\Marie Christine Duny\Application Data\Identities\{000HQ7FF-AD7A-3FG3-8AT4-258NF6K78VVF}\xmlparse.dll

c:\Documents and Settings\Marie Christine Duny\Application Data\Identities\{000HQ7FF-AD7A-3FG3-8AT4-258NF6K78VVP}\xmlparse.dll

c:\Documents and Settings\Marie Christine Duny\Application Data\Identities\{000HQ7FF-AD7A-3FG3-LM58-24TAN8K5GVVI}\xmlparse.dll

c:\Documents and Settings\Marie Christine Duny\Application Data\Identities\{000HQ7FF-AD7A-3FG3-M7KB-24AAHNHOQVVE}\xmlparse.dll

c:\Documents and Settings\Marie Christine Duny\Application Data\Identities\{000HQ7FF-AD7A-3FG3-M7KB-24AAHNHOQVVM}\xmlparse.dll

c:\Documents and Settings\Marie Christine Duny\Application Data\Identities\{000HQ7FF-AD7A-3FG3-NSEA-256L3V7L2VVM}\xmlparse.dll

c:\Documents and Settings\Marie Christine Duny\Application Data\Identities\{000HQ7FF-AD7A-3FG3-RD83-23EFBBCPGVVC}\xmlparse.dll

c:\Documents and Settings\Marie Christine Duny\Application Data\Identities\{000HQ7FF-AD7A-3FG3-RD83-24N1V86BSVVP}\xmlparse.dll

c:\Documents and Settings\Marie Christine Duny\Application Data\Identities\{000HQ7FF-AD7A-3FG3-T5UV-256BMHGDKVV1}\xmlparse.dll

c:\Documents and Settings\Marie Christine Duny\Application Data\Identities\{000HQ7FF-AD7A-3FG3-USK1-22JKKIT3EVV2}\xmlparse.dll

c:\Documents and Settings\Marie Christine Duny\Application Data\Identities\{000HQ7FF-AD7A-3FG4-7162-239Q3NAHCVUJ}\xmlparse.dll

c:\Documents and Settings\Marie Christine Duny\Application Data\Identities\{000HQ7FF-AD7A-3FG4-9VJM-21SJ3RB1CVVM}\xmlparse.dll

c:\Documents and Settings\Marie Christine Duny\Application Data\Identities\{000HQ7FF-AD7A-3FG4-D1JD-22NQ5L514VV4}\xmlparse.dll

c:\Documents and Settings\Marie Christine Duny\Application Data\Identities\{000HQ7FF-AD7A-3FG4-JM9C-24JLMUCREVUJ}\xmlparse.dll

c:\Documents and Settings\Marie Christine Duny\Application Data\Identities\{000HQ7FF-AD7A-3FG4-MO09-24UF17SCEVSJ}\xmlparse.dll

c:\Documents and Settings\Marie Christine Duny\Application Data\Identities\{000HQ7FF-AD7A-3FG4-MO09-24UF17SCEVT8}\xmlparse.dll

c:\Documents and Settings\Marie Christine Duny\Application Data\Identities\{000HQ7FF-AD7A-3FG4-MO09-24UF17SCEVTQ}\xmlparse.dll

c:\Documents and Settings\Marie Christine Duny\Application Data\Identities\{000HQ7FF-AD7A-3FG4-MO09-24UF17SCEVU2}\xmlparse.dll

c:\Documents and Settings\Marie Christine Duny\Application Data\Identities\{000HQ7FF-AD7A-3FG4-MO09-24UF17SCEVV0}\xmlparse.dll

c:\Documents and Settings\Marie Christine Duny\Application Data\Identities\{000HQ7FF-AD7A-3FG4-MO09-24UF17SCEVVA}\xmlparse.dll

c:\Documents and Settings\Marie Christine Duny\Application Data\Identities\{000HQ7FF-AD7A-3FG4-QNSB-2186AUNB4VVQ}\xmlparse.dll

c:\Documents and Settings\Marie Christine Duny\Application Data\Identities\{000HQ7FF-AD7A-3FG4-SA0C-22B8SP58AVUA}\xmlparse.dll

c:\Documents and Settings\Marie Christine Duny\Application Data\Identities\{000HQ7FF-AD7A-3FG4-SA0C-22B8SP58AVUS}\xmlparse.dll

c:\Documents and Settings\Marie Christine Duny\Application Data\Identities\{000HQ7FF-AD7A-3FG4-SA0C-22B8SP58AVV3}\xmlparse.dll

c:\Documents and Settings\Marie Christine Duny\Application Data\Identities\{000HQ7FF-AD7A-3FG5-17FO-23BO70OD4VUL}\xmlparse.dll

c:\Documents and Settings\Marie Christine Duny\Application Data\Identities\{000HQ7FF-AD7A-3FG5-5V1M-24PA6O41IVVM}\xmlparse.dll

c:\Documents and Settings\Marie Christine Duny\Application Data\Identities\{000HQ7FF-AD7A-3FG5-BPAV-24QJBB1JIVUR}\xmlparse.dll

c:\Documents and Settings\Marie Christine Duny\Application Data\Identities\{000HQ7FF-AD7A-3FG5-BPAV-24QJBB1JIVV8}\xmlparse.dll

c:\Documents and Settings\Marie Christine Duny\Application Data\Identities\{000HQ7FF-AD7A-3FG5-CHL5-24516UNKQVUU}\xmlparse.dll

c:\Documents and Settings\Marie Christine Duny\Application Data\Identities\{000HQ7FF-AD7A-3FG5-CHL5-24516UNKQVVE}\xmlparse.dll

c:\Documents and Settings\Marie Christine Duny\Application Data\Identities\{000HQ7FF-AD7A-3FG5-EF3Q-2491NM57EVVG}\xmlparse.dll

c:\Documents and Settings\Marie Christine Duny\Application Data\Identities\{000HQ7FF-AD7A-3FG5-EF3Q-2491NM57EVVN}\xmlparse.dll

c:\Documents and Settings\Marie Christine Duny\Application Data\Identities\{000HQ7FF-AD7A-3FG6-18S6-24RHV5SBEVUU}\xmlparse.dll

c:\Documents and Settings\Marie Christine Duny\Application Data\Identities\{000HQ7FF-AD7A-3FG6-18S6-24RHV5SBEVVJ}\xmlparse.dll

c:\Documents and Settings\Marie Christine Duny\Application Data\Identities\{000HQ7FF-AD7A-3FG6-4GPR-24EQO8A66VVQ}\xmlparse.dll

c:\Documents and Settings\Marie Christine Duny\Application Data\Identities\{000HQ7FF-AD7A-3FG6-5I21-21UMR3484VVO}\xmlparse.dll

c:\Documents and Settings\Marie Christine Duny\Application Data\Identities\{000HQ7FF-AD7A-3FG6-IDVP-227RSBD9QVVD}\xmlparse.dll

c:\Documents and Settings\Marie Christine Duny\Application Data\Identities\{000HQ7FF-AD7A-3FG6-LH31-23G9CBQV6VUQ}\xmlparse.dll

c:\Documents and Settings\Marie Christine Duny\Application Data\Identities\{000HQ7FF-AD7A-3FG6-NHPR-247TGT4QGVVN}\xmlparse.dll

c:\Documents and Settings\Marie Christine Duny\Application Data\Identities\{000HQ7FF-AD7A-3FG6-OIK7-230KFTJUEVVO}\xmlparse.dll

c:\Documents and Settings\Marie Christine Duny\Application Data\Identities\{000HQ7FF-AD7A-3FG6-OKQM-24KG7RVO4VTV}\xmlparse.dll

c:\Documents and Settings\Marie Christine Duny\Application Data\Identities\{000HQ7FF-AD7A-3FG6-OKQM-24KG7RVO4VUM}\xmlparse.dll

c:\Documents and Settings\Marie Christine Duny\Application Data\Identities\{000HQ7FF-AD7A-3FG6-OKQM-24KG7RVO4VV3}\xmlparse.dll

c:\Documents and Settings\Marie Christine Duny\Application Data\Identities\{000HQ7FF-AD7A-3FG6-OKQM-24KG7RVO4VVE}\xmlparse.dll

c:\Documents and Settings\Marie Christine Duny\Application Data\Identities\{000HQ7FF-AD7A-3FG6-S7TH-22P2K55U4VUU}\xmlparse.dll

c:\Documents and Settings\Marie Christine Duny\Application Data\Identities\{000HQ7FF-AD7A-3FG6-S8NN-21QHH63O6VVP}\xmlparse.dll

c:\Documents and Settings\Marie Christine Duny\Application Data\Identities\{000HQ7FF-AD7A-3FG7-7R56-23RS4QKC0VUD}\xmlparse.dll

c:\Documents and Settings\Marie Christine Duny\Application Data\Identities\{000HQ7FF-AD7A-3FG7-7R56-23RS4QKC0VUL}\xmlparse.dll

c:\Documents and Settings\Marie Christine Duny\Application Data\Identities\{000HQ7FF-AD7A-3FG7-7R56-23RS4QKC0VUV}\xmlparse.dll

c:\Documents and Settings\Marie Christine Duny\Application Data\Identities\{000HQ7FF-AD7A-3FG7-7R56-23RS4QKC0VV8}\xmlparse.dll

c:\Documents and Settings\Marie Christine Duny\Application Data\Identities\{000HQ7FF-AD7A-3FG7-9568-243JELPN2VVD}\xmlparse.dll

c:\Documents and Settings\Marie Christine Duny\Application Data\Identities\{000HQ7FF-AD7A-3FG7-9568-243JELPN2VVP}\xmlparse.dll

c:\Documents and Settings\Marie Christine Duny\Application Data\Identities\{000HQ7FF-AD7A-3FG7-DNQC-2205T8IBOVVG}\xmlparse.dll

c:\Documents and Settings\Marie Christine Duny\Application Data\Identities\{002AVPFP-JHLQ-ABE4-NC3L-20GMCIJ2SVVO}\xmlparse.dll

c:\Documents and Settings\Marie Christine Duny\Application Data\Identities\{002AVPFP-JHLQ-ABE5-INQH-20B2D80EAVVO}\xmlparse.dll

c:\Documents and Settings\Marie Christine Duny\Application Data\Identities\{1000278T-TT9K-T8DU-1KFV-23O5NTEJMVRN}\xmlparse.dll

c:\Documents and Settings\Marie Christine Duny\Application Data\Identities\{1000278T-TT9K-T8DU-1KFV-23O5NTEJMVUJ}\xmlparse.dll

c:\Documents and Settings\Marie Christine Duny\Application Data\Microsoft\IdentityCRL\ppcrlconfig.dll

c:\Documents and Settings\Marie Christine Duny\Application Data\Mozilla\Firefox\Profiles\umfad4xm.default\extensions\{3112ca9c-de6d-4884-a869-9855de68056c}\components\googletoolbar.dll

c:\Documents and Settings\Marie Christine Duny\Application Data\Mozilla\Firefox\Profiles\umfad4xm.default\extensions\{3112ca9c-de6d-4884-a869-9855de68056c}\components\metrics.dll

 

****** Fin du rapport DiagHelp

Veuillez svp envoyer le fichier C:\upload_moi_SONIC.tar.gz a l'adresse http://upload.malekal.com

 

Voilà j'espère que cela pourra t'aider!

[Thanos]

salut

 

Fais ce petit scan rapide et poste moi le rapport stp >

 

Télécharge SRENG sur ton bureau.

 

1. Dézippe le fichier sur le bureau et double clique sur le fichier SREng.exe

 

2. Selectionne 'Smart Scan' .

 

3. Clique sur le bouton [scan]

 

4. Lorsque le scan est termliné, clique sur le bouton [save Reports] et sauvegarde le rapport sur ton bureau

 

5. Poste le rapport : il se nomme SRENG.log

 

je repasse toute @ l'heure

[desdemona]

Re..

 

Voilà le rapport!!

 

2007-11-18,16:59:11

System Repair Engineer 2.5.16.900
Smallfrogs (http://www.KZTechs.com)

Windows XP Home Edition Service Pack 2 (Build 2600) - Administrative User - Completed Functions Allowed

Follow item(s) have been choosed:
All Boot Items (Including Registry, Startup Folders, Services and so on)
Browser Add-ons
Runing Processes (Including process model information)
File Associations
Winsock Provider
Autorun.Inf
HOSTS File
Process Privileges Scan


Boot Items
Registry
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
<ctfmon.exe><C:\WINDOWS\system32\ctfmon.exe>  [(Verified)Microsoft Windows Publisher]
<msnmsgr><"C:\Program Files\MSN Messenger\msnmsgr.exe" /background>  [(Verified)Microsoft Corporation]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
<VTTimer><VTTimer.exe>  [(Verified)Microsoft Windows Hardware Compatibility Publisher]
<SoundMan><SOUNDMAN.EXE>  [(Verified)Microsoft Windows Hardware Compatibility Publisher]
<Recguard><C:\WINDOWS\SMINST\RECGUARD.EXE>  []
<LVCOMSX><"C:\Program Files\Fichiers communs\LogiShrd\LComMgr\LVComSX.exe">  [(Verified)Logitech Inc]
<avgnt><"C:\Program Files\Avira\AntiVir PersonalEdition Classic\avgnt.exe" /min>  [Avira GmbH]
<QuickTime Task><"C:\Program Files\QuickTime\qttask.exe" -atboottime>  [Apple Inc.]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows NT\CurrentVersion\Winlogon]
<shell><Explorer.exe>  [(Verified)Microsoft Windows Component Publisher]
<Userinit><C:\WINDOWS\system32\userinit.exe,>  [(Verified)Microsoft Windows Publisher]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows NT\CurrentVersion\Windows]
<AppInit_DLLs><>  [N/A]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows NT\CurrentVersion\Winlogon]
<UIHost><LogonUI.EXE>  [(Verified)Microsoft Windows Publisher]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
<WPDShServiceObj><C:\WINDOWS\system32\WPDShServiceObj.dll>  [(Verified)Microsoft Windows Publisher]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\WgaLogon]
<WinlogonNotify: WgaLogon><WgaLogon.dll>  [(Verified)Microsoft Corporation]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\<{12d0ed0d-0ee0-4f90-8827-78cefb8f4988}]
<IE7 Uninstall Stub><C:\WINDOWS\system32\ieudinit.exe>  [(Verified)Microsoft Windows Component Publisher]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\>{881dd1c5-3dcf-431b-b061-f3f88e8be88a}]
<Outlook Express><%systemroot%\system32\shmgrate.exe OCInstallUserConfigOE>  [N/A]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{2C7339CF-2B09-4501-B3F3-F3508C9228ED}]
<Themes Setup><%SystemRoot%\system32\regsvr32.exe /s /n /i:/UserInstall %SystemRoot%\system32\themeui.dll>  [N/A]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{44BBA840-CC51-11CF-AAFA-00AA00B6015C}]
<Microsoft Outlook Express 6><"%ProgramFiles%\Outlook Express\setup50.exe" /APP:OE /CALLER:WINNT /user /install>  [N/A]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{44BBA842-CC51-11CF-AAFA-00AA00B6015B}]
<NetMeeting 3.01><rundll32.exe advpack.dll,LaunchINFSection C:\WINDOWS\INF\msnetmtg.inf,NetMtg.Install.PerUser.NT>  [(Verified)Microsoft Windows Publisher]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{5945c046-1e7d-11d1-bc44-00c04fd912be}]
<Windows Messenger 4.7><rundll32.exe advpack.dll,LaunchINFSection C:\WINDOWS\INF\msmsgs.inf,BLC.QuietInstall.PerUser>  [(Verified)Microsoft Windows Publisher]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{6BF52A52-394A-11d3-B153-00C04F79FAA6}]
<Microsoft Windows Media Player><rundll32.exe advpack.dll,LaunchINFSection C:\WINDOWS\INF\wmp11.inf,PerUserStub>  [(Verified)Microsoft Windows Component Publisher]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{7790769C-0471-11d2-AF11-00C04FA35D02}]
<Carnet d'adresses 6><"%ProgramFiles%\Outlook Express\setup50.exe" /APP:WAB /CALLER:WINNT /user /install>  [N/A]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{89B4C1CD-B018-4511-B0A1-5476DBF70820}]
<N/A><C:\WINDOWS\system32\Rundll32.exe C:\WINDOWS\system32\mscories.dll,Install>  [Microsoft Corporation]

==================================
Startup Folders
N/A

==================================
Services
[AntiVir PersonalEdition Classic Scheduler / AntiVirScheduler][Running/Auto Start]
 <"C:\Program Files\Avira\AntiVir PersonalEdition Classic\sched.exe"><Avira GmbH>
[AntiVir PersonalEdition Classic Guard / AntiVirService][Running/Auto Start]
 <"C:\Program Files\Avira\AntiVir PersonalEdition Classic\avguard.exe"><Avira GmbH>
[Apple Mobile Device / Apple Mobile Device][Running/Auto Start]
 <"C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe"><Apple, Inc.>
[Gestion d'applications / AppMgmt][Stopped/Manual Start]
 <C:\WINDOWS\system32\svchost.exe -k netsvcs-->%SystemRoot%\System32\appmgmts.dll><N/A>
[Boonty Games / Boonty Games][Stopped/Disabled]
 <"C:\Program Files\Fichiers communs\BOONTY Shared\Service\Boonty.exe"><N/A>
[C-DillaCdaC11BA / C-DillaCdaC11BA][Running/Auto Start]
 <C:\WINDOWS\system32\drivers\CDAC11BA.EXE><Macrovision>
[Windows Presentation Foundation Font Cache 3.0.0.0 / FontCache3.0.0.0][Stopped/Manual Start]
 <c:\WINDOWS\Microsoft.Net\Framework\v3.0\WPF\PresentationFontCache.exe><Microsoft Corporation>
[Google Updater Service / gusvc][Running/Auto Start]
 <"C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe"><Google>
[Accès du périphérique d'interface utilisateur / HidServ][Stopped/Disabled]
 <C:\WINDOWS\System32\svchost.exe -k netsvcs-->%SystemRoot%\System32\hidserv.dll><N/A>
[InstallDriver Table Manager / IDriverT][Stopped/Manual Start]
 <"C:\Program Files\Fichiers communs\InstallShield\Driver\11\Intel 32\IDriverT.exe"><Macrovision Corporation>
[Windows CardSpace / idsvc][Stopped/Manual Start]
 <"C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe"><Microsoft Corporation>
[Service de l'iPod / iPod Service][Stopped/Manual Start]
 <"C:\Program Files\iPod\bin\iPodService.exe"><Apple Inc.>
[LexBce Server / LexBceS][Running/Auto Start]
 <C:\WINDOWS\system32\LEXBCES.EXE><Lexmark International, Inc.>
[Logitech Process Monitor / LVPrcSrv][Running/Auto Start]
 <c:\program files\fichiers communs\logishrd\lvmvfm\LVPrcSrv.exe><Logitech Inc.>
[LVSrvLauncher / LVSrvLauncher][Stopped/Auto Start]
 <C:\Program Files\Fichiers communs\LogiShrd\SrvLnch\SrvLnch.exe><Logitech Inc.>
[NBService / NBService][Stopped/Manual Start]
 <C:\Program Files\Nero\Nero 7\Nero BackItUp\NBService.exe><Nero AG>
[Net.Tcp Port Sharing Service / NetTcpPortSharing][Stopped/Disabled]
 <"C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe"><Microsoft Corporation>
[NMIndexingService / NMIndexingService][Stopped/Manual Start]
 <"C:\Program Files\Fichiers communs\Ahead\Lib\NMIndexingService.exe"><Nero AG>
[SolidWorks Licensing Service / SolidWorks Licensing Service][Stopped/Manual Start]
 <"C:\Program Files\Fichiers communs\SolidWorks Shared\Service\SolidWorksLicensing.exe"><SolidWorks>

==================================
Drivers
[abp480n5 / abp480n5][Running/Boot Start]
 <\SystemRoot\system32\DRIVERS\ABP480N5.SYS><Microsoft Corporation>
[adpu160m / adpu160m][Running/Boot Start]
 <\SystemRoot\system32\DRIVERS\adpu160m.sys><Microsoft Corporation>
[Aha154x / Aha154x][Running/Boot Start]
 <\SystemRoot\system32\DRIVERS\aha154x.sys><Microsoft Corporation>
[aic78u2 / aic78u2][Running/Boot Start]
 <\SystemRoot\system32\DRIVERS\aic78u2.sys><Microsoft Corporation>
[aic78xx / aic78xx][Running/Boot Start]
 <\SystemRoot\system32\DRIVERS\aic78xx.sys><Microsoft Corporation>
[Service for Realtek AC97 Audio (WDM) / ALCXWDM][Running/Manual Start]
 <system32\drivers\ALCXWDM.SYS><Realtek Semiconductor Corp.>
[AliIde / AliIde][Running/Boot Start]
 <\SystemRoot\system32\DRIVERS\aliide.sys><Acer Laboratories Inc.>
[Pilote de filtre du bus AMD AGP / amdagp][Running/Boot Start]
 <\SystemRoot\system32\DRIVERS\amdagp.sys><Advanced Micro Devices, Inc.>
[asc / asc][Running/Boot Start]
 <\SystemRoot\system32\DRIVERS\asc.sys><Advanced System Products, Inc.>
[asc3350p / asc3350p][Running/Boot Start]
 <\SystemRoot\system32\DRIVERS\asc3350p.sys><Microsoft Corporation>
[asc3550 / asc3550][Running/Boot Start]
 <\SystemRoot\system32\DRIVERS\asc3550.sys><Advanced System Products, Inc.>
[avgio / avgio][Running/System Start]
 <\??\C:\Program Files\Avira\AntiVir PersonalEdition Classic\avgio.sys><Avira GmbH>
[avgntflt / avgntflt][Running/Manual Start]
 <\??\C:\Program Files\Avira\AntiVir PersonalEdition Classic\avgntflt.sys><Avira GmbH>
[avipbb / avipbb][Running/System Start]
 <system32\DRIVERS\avipbb.sys><AVIRA GmbH>
[catchme / catchme][Stopped/Manual Start]
 <\??\C:\DOCUME~1\MARIEC~1\LOCALS~1\Temp\catchme.sys><N/A>
[cd20xrnt / cd20xrnt][Running/Boot Start]
 <\SystemRoot\system32\DRIVERS\cd20xrnt.sys><Microsoft Corporation>
[CdaC15BA / CdaC15BA][Running/Auto Start]
 <\??\C:\WINDOWS\system32\drivers\CdaC15BA.SYS><Macrovision Europe Ltd>
[CmdIde / CmdIde][Running/Boot Start]
 <\SystemRoot\system32\DRIVERS\cmdide.sys><CMD Technology, Inc.>
[dac2w2k / dac2w2k][Running/Boot Start]
 <\SystemRoot\system32\DRIVERS\dac2w2k.sys><Mylex Corporation>
[dpti2o / dpti2o][Running/Boot Start]
 <\SystemRoot\system32\DRIVERS\dpti2o.sys><Microsoft Corporation>
[Pilote de la carte EtherLink XL 90XB/C 3Com / EL90XBC][Stopped/Manual Start]
 <system32\DRIVERS\el90xbc5.sys><3Com Corporation>
[GEARAspiWDM / GEARAspiWDM][Running/Manual Start]
 <System32\Drivers\GEARAspiWDM.sys><GEAR Software Inc.>
[GMSIPCI / GMSIPCI][Stopped/Manual Start]
 <\??\D:\INSTALL\GMSIPCI.SYS><N/A>
[Hardlock / Hardlock][Running/Auto Start]
 <\??\C:\WINDOWS\system32\drivers\hardlock.sys><Aladdin Knowledge Systems Ltd.>
[HSFHWBS2 / HSFHWBS2][Stopped/Manual Start]
 <system32\DRIVERS\HSFHWBS2.sys><Conexant Systems, Inc.>
[HSF_DP / HSF_DP][Stopped/Manual Start]
 <system32\DRIVERS\HSF_DP.sys><Conexant Systems, Inc.>
[ini910u / ini910u][Running/Boot Start]
 <\SystemRoot\system32\DRIVERS\ini910u.sys><Microsoft Corporation>
[Logitech AEC Driver / Lvckap][Stopped/Manual Start]
 <system32\DRIVERS\LVcKap.sys><>
[Logitech Machine Vision Engine Loader / LVMVDrv][Stopped/Manual Start]
 <system32\DRIVERS\LVMVDrv.sys><Logitech Inc.>
[Logitech LVPr2Mon Driver / LVPr2Mon][Running/Manual Start]
 <system32\drivers\LVPr2Mon.sys><>
[Logitech USB Monitor Filter / LVUSBSta][Running/Manual Start]
 <system32\drivers\LVUSBSta.sys><Logitech Inc.>
[mdmxsdk / mdmxsdk][Running/Auto Start]
 <system32\DRIVERS\mdmxsdk.sys><Conexant>
[Motorola USB CDC ACM Driver / motmodem][Stopped/Manual Start]
 <system32\DRIVERS\motmodem.sys><Motorola>
[mraid35x / mraid35x][Running/Boot Start]
 <\SystemRoot\system32\DRIVERS\mraid35x.sys><American Megatrends Inc.>
[MSICPL / MSICPL][Stopped/Manual Start]
 <\??\D:\install4\MSICPL.sys><N/A>
[NTACCESS / NTACCESS][Stopped/Manual Start]
 <\??\D:\NTACCESS.sys><N/A>
[nv / nv][Stopped/Manual Start]
 <system32\DRIVERS\nv4_mini.sys><NVIDIA Corporation>
[Logitech QuickCam Express(PID_0928) / PID_0928][Running/Manual Start]
 <system32\DRIVERS\LV561AV.SYS><Logitech Inc.>
[Pilote de liaison parallèle directe / Ptilink][Running/Manual Start]
 <system32\DRIVERS\ptilink.sys><Parallel Technologies, Inc.>
[PxHelp20 / PxHelp20][Running/Boot Start]
 <\SystemRoot\System32\Drivers\PxHelp20.sys><Sonic Solutions>
[ql1080 / ql1080][Running/Boot Start]
 <\SystemRoot\system32\DRIVERS\ql1080.sys><QLogic Corporation>
[Ql10wnt / Ql10wnt][Running/Boot Start]
 <\SystemRoot\system32\DRIVERS\ql10wnt.sys><Microsoft Corporation>
[ql12160 / ql12160][Running/Boot Start]
 <\SystemRoot\system32\DRIVERS\ql12160.sys><QLogic Corporation>
[ql1280 / ql1280][Running/Boot Start]
 <\SystemRoot\system32\DRIVERS\ql1280.sys><QLogic Corporation>
[Realtek RTL8139/810x/8169/8110 all in one NDIS NT Driver / RTL8023][Running/Manual Start]
 <system32\DRIVERS\Rtlnic51.sys><Realtek Semiconductor Corporation>
[Secdrv / Secdrv][Running/Auto Start]
 <system32\DRIVERS\secdrv.sys><Macrovision Corporation, Macrovision Europe Limited, and Macrovision Japan and Asia K.K.>
[Sparrow / Sparrow][Running/Boot Start]
 <\SystemRoot\system32\DRIVERS\sparrow.sys><Adaptec, Inc.>
[ssmdrv / ssmdrv][Running/System Start]
 <system32\DRIVERS\ssmdrv.sys><Avira GmbH>
[symc810 / symc810][Running/Boot Start]
 <\SystemRoot\system32\DRIVERS\symc810.sys><Symbios Logic Inc.>
[symc8xx / symc8xx][Running/Boot Start]
 <\SystemRoot\system32\DRIVERS\symc8xx.sys><LSI Logic>
[sym_hi / sym_hi][Running/Boot Start]
 <\SystemRoot\system32\DRIVERS\sym_hi.sys><LSI Logic>
[sym_u3 / sym_u3][Running/Boot Start]
 <\SystemRoot\system32\DRIVERS\sym_u3.sys><LSI Logic>
[tmcomm / tmcomm][Running/Auto Start]
 <\??\C:\WINDOWS\system32\drivers\tmcomm.sys><Trend Micro Inc.>
[TosIde / TosIde][Running/Boot Start]
 <\SystemRoot\system32\DRIVERS\toside.sys><Microsoft Corporation>
[ultra / ultra][Running/Boot Start]
 <\SystemRoot\system32\DRIVERS\ultra.sys><Promise Technology, Inc.>
[Motorola USB Modem Driver for MPT / usbsermpt][Stopped/Manual Start]
 <system32\DRIVERS\usbsermpt.sys><Microsoft Corporation>
[viagfx / viagfx][Running/Manual Start]
 <system32\DRIVERS\vtmini.sys><Copyright (C) VIA/S3 Graphics Co, Ltd.>
[ViaIde / ViaIde][Running/Boot Start]
 <\SystemRoot\SYSTEM32\DRIVERS\VIAIDEXP.SYS><VIA Technologies, Inc.>
[viamraid / viamraid][Running/Boot Start]
 <\SystemRoot\SYSTEM32\DRIVERS\VIAMRAID.SYS><VIA Technologies inc,.ltd>
[winachsf / winachsf][Stopped/Manual Start]
 <system32\DRIVERS\HSF_CNXT.sys><Conexant Systems, Inc.>
[Codec Teletext standard / WSTCODEC][Stopped/Manual Start]
 <system32\DRIVERS\WSTCODEC.SYS><Microsoft Corporation>

==================================
Browser Add-ons
[Aide pour le lien d'Adobe PDF Reader]
 {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} <C:\Program Files\Fichiers communs\Adobe\Acrobat\ActiveX\AcroIEHelper.dll, Adobe Systems Incorporated>
[SSVHelper Class]
 {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} <C:\Program Files\Java\jre1.6.0_01\bin\ssv.dll, Sun Microsystems, Inc.>
[Windows Live Sign-in Helper]
 {9030D464-4C02-4ABF-8ECC-5164760863C6} <C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll, Microsoft Corporation>
[Google Toolbar Notifier BHO]
 {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} <C:\Program Files\Google\GoogleToolbarNotifier\2.1.615.5858\swg.dll, Google Inc.>
[Java Plug-in 1.6.0_01]
 {08B0E5C0-4FCB-11CF-AAA5-00401C608501} <C:\Program Files\Java\jre1.6.0_01\bin\ssv.dll, Sun Microsystems, Inc.>
[]
 {85d1f590-48f4-11d9-9669-0800200c9a66} <%windir%\bdoscandel.exe, N/A>
[]
 {e2e2dd38-d088-4134-82b7-f2ba38496583} <%windir%\Network Diagnostic\xpnetdiag.exe, N/A>
[Messenger]
 {FB5F1910-F110-11d2-BB9E-00C04F795683} <C:\Program Files\Messenger\msmsgs.exe, Microsoft Corporation>
[CKAVWebScan Object]
 {0EB0E74A-2A76-4AB3-A7FB-9BD8C29F7F75} <C:\WINDOWS\system32\Kaspersky Lab\Kaspersky Online Scanner\kavwebscan.dll, Kaspersky Lab>
[Shockwave ActiveX Control]
 {233C1507-6A77-46A4-9443-F871F945D258} <C:\WINDOWS\system32\Macromed\Director\SwDir.dll, Adobe Systems, Inc.>
[Office Update Installation Engine]
 {3E68E405-C6DE-49FF-83AE-41EE9F4C36CE} <C:\WINDOWS\opuc.dll, Microsoft Corporation>
[MSN Photo Upload Tool]
 {4F1E5B1A-2A80-42CA-8532-2D05CB959537} <C:\WINDOWS\Downloaded Program Files\MsnPUpld.dll, Microsoft® Corporation>
[TotalScan Installer Class]
 {512FC5A1-7DE1-43F1-BC0C-371622FCB409} <C:\WINDOWS\Downloaded Program Files\ascstubie.dll, Panda Security>
[BDSCANONLINE Control]
 {5D86DDB5-BDF9-441B-9E9E-D4730F4EE499} <C:\WINDOWS\DOWNLO~1\oscan8.ocx, SOFTWIN>
[Windows Live Safety Center Base Module]
 {5ED80217-570B-4DA9-BF44-BE107C0EC166} <C:\WINDOWS\Downloaded Program Files\wlscBase.dll, Microsoft Corporation>
[MUWebControl Class]
 {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} <C:\WINDOWS\system32\muweb.dll, Microsoft Corporation>
[Windows Live Photo Upload Control]
 {7FC1B346-83E6-4774-8D20-1A6B09B0E737} <C:\WINDOWS\Downloaded Program Files\CONFLICT.1\MsnPUpld.dll, Microsoft® Corporation>
[Java Plug-in 1.6.0_01]
 {8AD9C840-044E-11D1-B3E9-00805F499D93} <C:\Program Files\Java\jre1.6.0_01\bin\ssv.dll, Sun Microsystems, Inc.>
[PhotoPickConvert Class]
 {9122D757-5A4F-4768-82C5-B4171D8556A7} <C:\WINDOWS\Downloaded Program Files\PhtPkMSN.dll, Microsoft Corporation>
[F-Secure Online Scanner 3.0]
 {9D190AE6-C81E-4039-8061-978EBAD10073} <C:\WINDOWS\Downloaded Program Files\fscax.dll, F-Secure Corporation>
[BatchDownloader Class]
 {A1F2F2CE-06AF-483C-9F12-D3BAA72477D6} <C:\WINDOWS\Downloaded Program Files\DigWXMSN.dll, Microsoft Corporation>
[Creative Toolbox Plug-in]
 {BD8667B7-38D8-4C77-B580-18C3E146372C} <C:\WINDOWS\system32\Crusher.dll, AmericanGreetings.com>
[MessengerStatsClient Class]
 {C3F79A2B-B9B4-4A66-B012-3EE46475B072} <C:\WINDOWS\Downloaded Program Files\MessengerStatsPAClient.dll, Microsoft Corporation>
[Java Plug-in 1.5.0_03]
 {CAFEEFAC-0015-0000-0003-ABCDEFFEDCBA} <C:\Program Files\Java\jre1.6.0_01\bin\ssv.dll, Sun Microsystems, Inc.>
[Java Plug-in 1.5.0_10]
 {CAFEEFAC-0015-0000-0010-ABCDEFFEDCBA} <C:\Program Files\Java\jre1.6.0_01\bin\ssv.dll, Sun Microsystems, Inc.>
[Java Plug-in 1.5.0_11]
 {CAFEEFAC-0015-0000-0011-ABCDEFFEDCBA} <C:\Program Files\Java\jre1.6.0_01\bin\ssv.dll, Sun Microsystems, Inc.>
[Java Plug-in 1.6.0_01]
 {CAFEEFAC-0016-0000-0001-ABCDEFFEDCBA} <C:\Program Files\Java\jre1.6.0_01\bin\ssv.dll, Sun Microsystems, Inc.>
[Java Plug-in 1.6.0_01]
 {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} <C:\Program Files\Java\jre1.6.0_01\bin\npjpi160_01.dll, Sun Microsystems, Inc.>
[Shockwave Flash Object]
 {D27CDB6E-AE6D-11CF-96B8-444553540000} <C:\WINDOWS\system32\Macromed\Flash\Flash9b.ocx, Adobe Systems, Inc.>
[TotalScan Control Class]
 {022B5380-ECB8-4D1B-A8B1-D29524784005} <C:\WINDOWS\Downloaded Program Files\ascstubie.dll, Panda Security>
[QuickTime Object]
 {02BF25D5-8C17-4B23-BC80-D3488ABDDC6B} <C:\Program Files\QuickTime\QTPlugin.ocx, Apple Inc.>
[Aide pour le lien d'Adobe PDF Reader]
 {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} <C:\Program Files\Fichiers communs\Adobe\Acrobat\ActiveX\AcroIEHelper.dll, Adobe Systems Incorporated>
[CKAVWebScan Object]
 {0EB0E74A-2A76-4AB3-A7FB-9BD8C29F7F75} <C:\WINDOWS\system32\Kaspersky Lab\Kaspersky Online Scanner\kavwebscan.dll, Kaspersky Lab>
[TotalScan AV Class]
 {15ED5A73-5341-5241-4A43-3932018AD482} <C:\Program Files\Panda Security\TotalScan\ASCGuiIE.dll, Panda Security>
[Windows Genuine Advantage Validation Tool]
 {17492023-C23A-453E-A040-C7C580BBF700} <C:\WINDOWS\system32\legitcheckcontrol.dll, Microsoft Corporation>
[InformationCardSigninHelper Class]
 {19916E01-B44E-4E31-94A4-4696DF46157B} <C:\WINDOWS\system32\icardie.dll, Microsoft Corporation>
[Windows Media Player]
 {22D6F312-B0F6-11D0-94AB-0080C74C7E95} <C:\WINDOWS\system32\wmpdxm.dll, Microsoft Corporation>
[Shockwave ActiveX Control]
 {233C1507-6A77-46A4-9443-F871F945D258} <C:\WINDOWS\system32\Macromed\Director\SwDir.dll, Adobe Systems, Inc.>
[HTML Document]
 {25336920-03F9-11CF-8FD0-00AA00686F13} <C:\WINDOWS\system32\mshtml.dll, Microsoft Corporation>
[XML DOM Document]
 {2933BF90-7B36-11D2-B20E-00C04F983E60} <C:\WINDOWS\system32\msxml3.dll, Microsoft Corporation>
[XSL Template]
 {2933BF94-7B36-11D2-B20E-00C04F983E60} <C:\WINDOWS\system32\msxml3.dll, Microsoft Corporation>
[HtmlDlgSafeHelper Class]
 {3050F819-98B5-11CF-BB82-00AA00BDCE0B} <C:\WINDOWS\system32\mshtmled.dll, Microsoft Corporation>
[Tabular Data Control]
 {333C7BC4-460F-11D0-BC04-0080C7055A83} <C:\WINDOWS\system32\tdc.ocx, Microsoft Corporation>
[Office Update Installation Engine]
 {3E68E405-C6DE-49FF-83AE-41EE9F4C36CE} <C:\WINDOWS\opuc.dll, Microsoft Corporation>
[QuickTime Object]
 {4063BE15-3B08-470D-A0D5-B37161CFFD69} <C:\Program Files\QuickTime\QTPlugin.ocx, Apple Inc.>
[XML Document]
 {48123BC4-99D9-11D1-A6B3-00C04FD91555} <C:\WINDOWS\system32\msxml3.dll, Microsoft Corporation>
[]
 {4F07F79F-087F-42CF-8B36-7A88D06088E9} <C:\PROGRA~1\MSNMES~1\MSGSC8~1.DLL, Microsoft Corporation>
[MSN Photo Upload Tool]
 {4F1E5B1A-2A80-42CA-8532-2D05CB959537} <C:\WINDOWS\Downloaded Program Files\MsnPUpld.dll, Microsoft® Corporation>
[TotalScan Installer Class]
 {512FC5A1-7DE1-43F1-BC0C-371622FCB409} <C:\WINDOWS\Downloaded Program Files\ascstubie.dll, Panda Security>
[HHCtrl Object]
 {52A2AAAE-085D-4187-97EA-8C30DB990436} <C:\WINDOWS\system32\hhctrl.ocx, Microsoft Corporation>
[Shell Name Space]
 {55136805-B2DE-11D1-B9F2-00A0C98BC547} <C:\WINDOWS\system32\ieframe.dll, Microsoft Corporation>
[BDSCANONLINE Control]
 {5D86DDB5-BDF9-441B-9E9E-D4730F4EE499} <C:\WINDOWS\DOWNLO~1\oscan8.ocx, SOFTWIN>
[Windows Live Safety Center Base Module]
 {5ED80217-570B-4DA9-BF44-BE107C0EC166} <C:\WINDOWS\Downloaded Program Files\wlscBase.dll, Microsoft Corporation>
[CKAVReportCtrl Object]
 {6117669B-8C2D-41FA-A6D9-9E484B999CF0} <C:\WINDOWS\system32\Kaspersky Lab\Kaspersky Online Scanner\kavwebscan.dll, Kaspersky Lab>
[WUWebControl Class]
 {6414512B-B978-451D-A0D8-FCFDF33E833C} <C:\WINDOWS\system32\wuweb.dll, Microsoft Corporation>
[Windows Media Player]
 {6BF52A52-394A-11D3-B153-00C04F79FAA6} <C:\WINDOWS\system32\wmp.dll, Microsoft Corporation>
[MUWebControl Class]
 {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} <C:\WINDOWS\system32\muweb.dll, Microsoft Corporation>
[Active Desktop Mover]
 {72267F6A-A6F9-11D0-BC94-00C04FB67863} <%SystemRoot%\system32\SHELL32.dll, N/A>
[Windows Media Services DRM Storage object]
 {760C4B83-E211-11D2-BF3E-00805FBE84A6} <C:\WINDOWS\system32\msnetobj.dll, Microsoft Corporation>
[SSVHelper Class]
 {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} <C:\Program Files\Java\jre1.6.0_01\bin\ssv.dll, Sun Microsystems, Inc.>
[Windows Live Photo Upload Control]
 {7FC1B346-83E6-4774-8D20-1A6B09B0E737} <C:\WINDOWS\Downloaded Program Files\CONFLICT.1\MsnPUpld.dll, Microsoft® Corporation>
[MMSPlayerX Class]
 {8731163E-77B9-4F91-9122-F112521C28AF} <C:\WINDOWS\Downloaded Program Files\SMILInetCtrl.dll, InterObject Ltd.>
[Microsoft Web Browser]
 {8856F961-340A-11D0-A96B-00C04FD705A2} <C:\WINDOWS\system32\ieframe.dll, Microsoft Corporation>
[XML DOM Document 4.0]
 {88D969C0-F192-11D4-A65F-0040963251E5} <c:\WINDOWS\system32\msxml4.dll, Microsoft Corporation>
[Free Threaded XML DOM Document 4.0]
 {88D969C1-F192-11D4-A65F-0040963251E5} <c:\WINDOWS\system32\msxml4.dll, Microsoft Corporation>
[XML Schema Cache 4.0]
 {88D969C2-F192-11D4-A65F-0040963251E5} <c:\WINDOWS\system32\msxml4.dll, Microsoft Corporation>
[XSL Template 4.0]
 {88D969C3-F192-11D4-A65F-0040963251E5} <c:\WINDOWS\system32\msxml4.dll, Microsoft Corporation>
[XML Data Source Object 4.0]
 {88D969C4-F192-11D4-A65F-0040963251E5} <c:\WINDOWS\system32\msxml4.dll, Microsoft Corporation>
[XML HTTP 4.0]
 {88D969C5-F192-11D4-A65F-0040963251E5} <c:\WINDOWS\system32\msxml4.dll, Microsoft Corporation>
[XML DOM Document 6.0]
 {88D96A05-F192-11D4-A65F-0040963251E5} <c:\WINDOWS\system32\msxml6.dll, Microsoft Corporation>
[Free Threaded XML DOM Document 6.0]
 {88D96A06-F192-11D4-A65F-0040963251E5} <c:\WINDOWS\system32\msxml6.dll, Microsoft Corporation>
[XML Schema Cache 6.0]
 {88D96A07-F192-11D4-A65F-0040963251E5} <c:\WINDOWS\system32\msxml6.dll, Microsoft Corporation>
[XSL Template 6.0]
 {88D96A08-F192-11D4-A65F-0040963251E5} <c:\WINDOWS\system32\msxml6.dll, Microsoft Corporation>
[XML HTTP 6.0]
 {88D96A0A-F192-11D4-A65F-0040963251E5} <c:\WINDOWS\system32\msxml6.dll, Microsoft Corporation>
[Java Plug-in 1.6.0_01]
 {8AD9C840-044E-11D1-B3E9-00805F499D93} <C:\Program Files\Java\jre1.6.0_01\bin\ssv.dll, Sun Microsystems, Inc.>
[Windows Live Safety Center Control Module]
 {8E5C8BEE-1887-414C-8AC9-7C3951F28476} <C:\Program Files\Windows Live Safety Center\wlscCtrl.dll, Microsoft Corporation>
[Windows Live Sign-in Helper]
 {9030D464-4C02-4ABF-8ECC-5164760863C6} <C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll, Microsoft Corporation>
[PhotoPickConvert Class]
 {9122D757-5A4F-4768-82C5-B4171D8556A7} <C:\WINDOWS\Downloaded Program Files\PhtPkMSN.dll, Microsoft Corporation>
[F-Secure Online Scanner 3.0]
 {9D190AE6-C81E-4039-8061-978EBAD10073} <C:\WINDOWS\Downloaded Program Files\fscax.dll, F-Secure Corporation>
[BatchDownloader Class]
 {A1F2F2CE-06AF-483C-9F12-D3BAA72477D6} <C:\WINDOWS\Downloaded Program Files\DigWXMSN.dll, Microsoft Corporation>
[RMGetLicense Class]
 {A9FC132B-096D-460B-B7D5-1DB0FAE0C062} <C:\WINDOWS\system32\msnetobj.dll, Microsoft Corporation>
[Google Toolbar Notifier BHO]
 {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} <C:\Program Files\Google\GoogleToolbarNotifier\2.1.615.5858\swg.dll, Google Inc.>
[SearchAssistantOC]
 {B45FF030-4447-11D2-85DE-00C04FA35C89} <%SystemRoot%\system32\shdocvw.dll, N/A>
[Creative Toolbox Plug-in]
 {BD8667B7-38D8-4C77-B580-18C3E146372C} <C:\WINDOWS\system32\Crusher.dll, AmericanGreetings.com>
[RDS.DataSpace]
 {BD96C556-65A3-11D0-983A-00C04FC29E36} <C:\Program Files\Fichiers communs\System\msadc\msadco.dll, Microsoft Corporation>
[Zylom Games Player]
 {BFF1950D-B1B4-4AE8-B842-B2CCF06D9A1B} <C:\Documents and Settings\All Users\Application Data\Zylom\ZylomGamesPlayer\zylomgamesplayer.dll, Zylom Games>
[MessengerStatsClient Class]
 {C3F79A2B-B9B4-4A66-B012-3EE46475B072} <C:\WINDOWS\Downloaded Program Files\MessengerStatsPAClient.dll, Microsoft Corporation>
[Java Plug-in 1.5.0_03]
 {CAFEEFAC-0015-0000-0003-ABCDEFFEDCBA} <C:\Program Files\Java\jre1.6.0_01\bin\ssv.dll, Sun Microsystems, Inc.>
[Java Plug-in 1.5.0_10]
 {CAFEEFAC-0015-0000-0010-ABCDEFFEDCBA} <C:\Program Files\Java\jre1.6.0_01\bin\ssv.dll, Sun Microsystems, Inc.>
[Java Plug-in 1.5.0_11]
 {CAFEEFAC-0015-0000-0011-ABCDEFFEDCBA} <C:\Program Files\Java\jre1.6.0_01\bin\ssv.dll, Sun Microsystems, Inc.>
[Java Plug-in 1.6.0_01]
 {CAFEEFAC-0016-0000-0001-ABCDEFFEDCBA} <C:\Program Files\Java\jre1.6.0_01\bin\ssv.dll, Sun Microsystems, Inc.>
[Java Plug-in 1.6.0_01]
 {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} <C:\Program Files\Java\jre1.6.0_01\bin\npjpi160_01.dll, Sun Microsystems, Inc.>
[Behavior Object]
 {CB927D12-4FF7-4A9E-A169-56E4B8A75598} <C:\Program Files\QuickTime\QTPlugin.ocx, Apple Inc.>
[AUDIO__MID Moniker Class]
 {CD3AFA74-B84F-48F0-9393-7EDC34128127} <C:\WINDOWS\system32\wmp.dll, Microsoft Corporation>
[AUDIO__MP3 Moniker Class]
 {CD3AFA76-B84F-48F0-9393-7EDC34128127} <C:\WINDOWS\system32\wmp.dll, Microsoft Corporation>
[AUDIO__WAV Moniker Class]
 {CD3AFA7B-B84F-48F0-9393-7EDC34128127} <C:\WINDOWS\system32\wmp.dll, Microsoft Corporation>
[VIDEO__X_MS_ASF Moniker Class]
 {CD3AFA8F-B84F-48F0-9393-7EDC34128127} <C:\WINDOWS\system32\wmp.dll, Microsoft Corporation>
[Windows Live Sign-in Control]
 {D2517915-48CE-4286-970F-921E881B8C5C} <C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll, Microsoft Corporation>
[Shockwave Flash Object]
 {D27CDB6E-AE6D-11CF-96B8-444553540000} <C:\WINDOWS\system32\Macromed\Flash\Flash9b.ocx, Adobe Systems, Inc.>
[Google Updater Class]
 {D6A5A215-FBF3-45E5-ABF8-22FF50916184} <C:\Program Files\Google\Google Updater\2.2.940.34809\ci.dll, Google>
[iTunesDetector Class]
 {D719897A-B07A-4C0C-AEA9-9B663A28DFCB} <C:\Program Files\iTunes\ITDetector.ocx, Apple Computer, Inc.>
[QuickTimeCheck Class]
 {DE4AF3B0-F4D4-11D3-B41A-0050DA2E6C21} <C:\Program Files\QuickTime\QTSystem\QuickTimeCheck.ocx, Apple Inc.>
[]
 {E1771B7F-98BE-407F-BA67-AA16ADA5D0C5} <C:\PROGRA~1\MSNMES~1\MSGSC8~1.DLL, Microsoft Corporation>
[XML HTTP Request]
 {ED8C108E-4349-11D2-91A4-00C04F7969E8} <C:\WINDOWS\system32\msxml3.dll, Microsoft Corporation>
[]
 {F06608C7-1874-4EEA-B3B2-DF99EBB144B8} <C:\PROGRA~1\MSNMES~1\MSGSC8~1.DLL, Microsoft Corporation>
[XML DOM Document 3.0]
 {F5078F32-C551-11D3-89B9-0000F81FE221} <C:\WINDOWS\system32\msxml3.dll, Microsoft Corporation>
[Free Threaded XML DOM Document 3.0]
 {F5078F33-C551-11D3-89B9-0000F81FE221} <C:\WINDOWS\system32\msxml3.dll, Microsoft Corporation>
[XML Schema Cache 3.0]
 {F5078F34-C551-11D3-89B9-0000F81FE221} <C:\WINDOWS\system32\msxml3.dll, Microsoft Corporation>
[XML HTTP 3.0]
 {F5078F35-C551-11D3-89B9-0000F81FE221} <C:\WINDOWS\system32\msxml3.dll, Microsoft Corporation>
[XSL Template 3.0]
 {F5078F36-C551-11D3-89B9-0000F81FE221} <C:\WINDOWS\system32\msxml3.dll, Microsoft Corporation>
[XML Data Source Object 3.0]
 {F5078F39-C551-11D3-89B9-0000F81FE221} <C:\WINDOWS\system32\msxml3.dll, Microsoft Corporation>
[XML DOM Document]
 {F6D90F11-9C73-11D3-B32E-00C04F990BB4} <C:\WINDOWS\system32\msxml3.dll, Microsoft Corporation>
[Free Threaded XML DOM Document]
 {F6D90F12-9C73-11D3-B32E-00C04F990BB4} <C:\WINDOWS\system32\msxml3.dll, Microsoft Corporation>
[XML Data Source Object]
 {F6D90F14-9C73-11D3-B32E-00C04F990BB4} <C:\WINDOWS\system32\msxml3.dll, Microsoft Corporation>
[XML HTTP]
 {F6D90F16-9C73-11D3-B32E-00C04F990BB4} <C:\WINDOWS\system32\msxml3.dll, Microsoft Corporation>

==================================
Running Processes
[PID: 456 / SYSTEM][\SystemRoot\System32\smss.exe]  [Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)]
[PID: 504 / SYSTEM][\??\C:\WINDOWS\system32\csrss.exe]  [Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)]
[PID: 528 / SYSTEM][\??\C:\WINDOWS\system32\winlogon.exe]  [Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)]
[C:\WINDOWS\system32\WgaLogon.dll]  [Microsoft Corporation, 1.7.0018.5]
[C:\WINDOWS\system32\msacm32.drv]  [Microsoft Corporation, 5.1.2600.0 (xpclient.010817-1148)]
[PID: 576 / SYSTEM][C:\WINDOWS\system32\services.exe]  [Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)]
[C:\WINDOWS\AppPatch\AcAdProc.dll]  [Microsoft Corporation, 5.1.2600.3008 (xpsp.061004-0027)]
[PID: 588 / SYSTEM][C:\WINDOWS\system32\lsass.exe]  [Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)]
[PID: 748 / SYSTEM][C:\WINDOWS\system32\svchost.exe]  [Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)]
[PID: 800 / SERVICE RÉSEAU][C:\WINDOWS\system32\svchost.exe]  [Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)]
[PID: 868 / SYSTEM][C:\WINDOWS\System32\svchost.exe]  [Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)]
[C:\WINDOWS\system32\Normaliz.dll]  [Microsoft Corporation, 6.0.5441.0 (winmain(wmbla).060628-1735)]
[C:\WINDOWS\system32\iertutil.dll]  [Microsoft Corporation, 7.00.6000.16544 (vista_gdr.070814-1500)]
[C:\WINDOWS\system32\wups2.dll]  [Microsoft Corporation, 7.0.6000.381 (winmain(wmbla).070730-1740)]
[PID: 960 / SERVICE RÉSEAU][C:\WINDOWS\system32\svchost.exe]  [Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)]
[PID: 1012 / SERVICE LOCAL][C:\WINDOWS\system32\svchost.exe]  [Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)]
[C:\WINDOWS\system32\Normaliz.dll]  [Microsoft Corporation, 6.0.5441.0 (winmain(wmbla).060628-1735)]
[C:\WINDOWS\system32\iertutil.dll]  [Microsoft Corporation, 7.00.6000.16544 (vista_gdr.070814-1500)]
[PID: 1184 / SYSTEM][C:\WINDOWS\system32\LEXBCES.EXE]  [Lexmark International, Inc., 8.29]
[C:\WINDOWS\system32\lexp2p32.dll]  [Lexmark International, Inc., 8.29]
[C:\WINDOWS\system32\lex2kusb.dll]  [Lexmark International, Inc., 8.29]
[PID: 1216 / SYSTEM][C:\WINDOWS\system32\spoolsv.exe]  [Microsoft Corporation, 5.1.2600.2696 (xpsp_sp2_gdr.050610-1519)]
[C:\WINDOWS\system32\LEXLMPM.DLL]  [Lexmark International, Inc., 8.29]
[C:\WINDOWS\system32\LexBce.dll]  [Lexmark International, Inc., 8.29]
[C:\WINDOWS\System32\spool\PRTPROCS\W32X86\LXBKPP5C.dll]  [, 1.0.0.0]
[C:\WINDOWS\System32\spool\PRTPROCS\W32X86\filterpipelineprintproc.dll]  [Microsoft Corporation, 6.0.5824.16384 (winmain(wmbla).060911-0725)]
[C:\WINDOWS\system32\LXBKpwr.dll]  [Lexmark International, Inc., 0, 1, 61, 1]
[PID: 1252 / SYSTEM][c:\program files\fichiers communs\logishrd\lvmvfm\LVPrcSrv.exe]  [Logitech Inc., 10.5.1.2027]
[PID: 1264 / SYSTEM][C:\WINDOWS\system32\LEXPPS.EXE]  [Lexmark International, Inc., 8.29]
[C:\WINDOWS\system32\LEXBCE.DLL]  [Lexmark International, Inc., 8.29]
[PID: 1284 / SYSTEM][C:\Program Files\Avira\AntiVir PersonalEdition Classic\avguard.exe]  [Avira GmbH, 7.00.00.82]
[C:\Program Files\Avira\AntiVir PersonalEdition Classic\avgio.dll]  [Avira GmbH, 7.00.00.01]
[C:\Program Files\Avira\AntiVir PersonalEdition Classic\avevtlog.dll]  [Avira GmbH, 7.00.00.20]
[C:\Program Files\Avira\AntiVir PersonalEdition Classic\guardmsg.dll]  [Avira GmbH, 7.00.11.00]
[C:\Program Files\Avira\AntiVir PersonalEdition Classic\sqlite3.dll]  [, 3, 3, 17, 1]
[C:\Program Files\Avira\AntiVir PersonalEdition Classic\MSVCR71.dll]  [Microsoft Corporation, 7.10.3052.4]
[C:\Program Files\Avira\AntiVir PersonalEdition Classic\AVPREF.DLL]  [Avira GmbH, 7.00.02.02]
[C:\Program Files\Avira\AntiVir PersonalEdition Classic\SMTPLIB.DLL]  [Avira GmbH, 1.02.00.17]
[C:\Program Files\Avira\AntiVir PersonalEdition Classic\AVPACK32.DLL]  [Avira GmbH, 7.03.00.15]
[C:\Program Files\Avira\AntiVir PersonalEdition Classic\unacev2.dll]  [N/A, ]
[C:\Program Files\Avira\AntiVir PersonalEdition Classic\AVEWIN32.DLL]  [Avira GmbH, 7.6.0.34]
[C:\Program Files\Avira\AntiVir PersonalEdition Classic\avipc.dll]  [Avira GmbH, 1.00.00.04]
[PID: 1540 / SYSTEM][C:\Program Files\Avira\AntiVir PersonalEdition Classic\sched.exe]  [Avira GmbH, 7.00.00.62]
[C:\Program Files\Avira\AntiVir PersonalEdition Classic\MSVCR71.dll]  [Microsoft Corporation, 7.10.3052.4]
[C:\Program Files\Avira\AntiVir PersonalEdition Classic\MSVCP71.dll]  [Microsoft Corporation, 7.10.3077.0]
[C:\Program Files\Avira\AntiVir PersonalEdition Classic\schedr.dll]  [Avira GmbH, 7.00.24.00]
[C:\Program Files\Avira\AntiVir PersonalEdition Classic\avevtlog.dll]  [Avira GmbH, 7.00.00.20]
[C:\Program Files\Avira\AntiVir PersonalEdition Classic\sqlite3.dll]  [, 3, 3, 17, 1]
[C:\Program Files\Avira\AntiVir PersonalEdition Classic\avipc.dll]  [Avira GmbH, 1.00.00.04]
[PID: 1552 / SYSTEM][C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe]  [Apple, Inc., 1, 14, 0, 0]
[PID: 1568 / SYSTEM][C:\WINDOWS\system32\drivers\CDAC11BA.EXE]  [Macrovision, 4.20.0]
[PID: 1612 / SYSTEM][C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe]  [Google, 2.2.824.5515.beta]
[PID: 1776 / SYSTEM][C:\WINDOWS\system32\svchost.exe]  [Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)]
[C:\Program Files\Lexmark X1100 Series\lxbkmcro.dll]  [Lexmark International, Inc., 0.1.1.1]
[C:\Program Files\Lexmark X1100 Series\ConvDIB.dll]  [N/A, ]
[C:\Program Files\Lexmark X1100 Series\rtscan.dll]  [Funai, 4, 0, 0, 2]
[PID: 240 / SERVICE LOCAL][C:\WINDOWS\System32\alg.exe]  [Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)]
[PID: 1048 / Marie Christine DunySONIC][C:\WINDOWS\Explorer.EXE]  [Microsoft Corporation, 6.00.2900.3156 (xpsp_sp2_gdr.070613-1234)]
[C:\WINDOWS\system32\Normaliz.dll]  [Microsoft Corporation, 6.0.5441.0 (winmain(wmbla).060628-1735)]
[C:\WINDOWS\system32\iertutil.dll]  [Microsoft Corporation, 7.00.6000.16544 (vista_gdr.070814-1500)]
[C:\Program Files\Fichiers communs\Logishrd\LVMVFM\LVPrcInj.dll]  [Logitech Inc., 10.5.1.2027]
[C:\PROGRA~1\WINDOW~2\wmpband.dll]  [Microsoft Corporation, 11.0.5721.5145 (WMP_11.061018-2006)]
[C:\WINDOWS\system32\ieframe.dll]  [Microsoft Corporation, 7.00.6000.16544 (vista_gdr.070814-1500)]
[C:\WINDOWS\system32\WPDShServiceObj.dll]  [Microsoft Corporation, 5.2.5721.5145 (WMP_11.061018-2006)]
[C:\WINDOWS\system32\PortableDeviceTypes.dll]  [Microsoft Corporation, 5.2.5721.5145 (WMP_11.061018-2006)]
[C:\WINDOWS\system32\PortableDeviceApi.dll]  [Microsoft Corporation, 5.2.5721.5145 (WMP_11.061018-2006)]
[C:\WINDOWS\system32\msacm32.drv]  [Microsoft Corporation, 5.1.2600.0 (xpclient.010817-1148)]
[C:\Program Files\Fichiers communs\Ahead\Lib\NeroDigitalExt.dll]  [Nero AG, 2, 0, 0, 8]
[C:\Program Files\Fichiers communs\Ahead\Lib\MFC71.DLL]  [Microsoft Corporation, 7.10.3077.0]
[C:\Program Files\Fichiers communs\Ahead\Lib\MSVCR71.dll]  [Microsoft Corporation, 7.10.3052.4]
[C:\Program Files\Fichiers communs\Ahead\Lib\MSVCP71.dll]  [Microsoft Corporation, 7.10.3077.0]
[C:\WINDOWS\system32\MFC71FRA.DLL]  [Microsoft Corporation, 7.10.3077.0]
[C:\Program Files\OpenOffice.org 2.0\program\shlxthdl.dll]  [Sun Microsystems, Inc., 8.0.0.9064]
[C:\Program Files\OpenOffice.org 2.0\program\uwinapi.dll]  [Sun Microsystems, Inc., 8.0.0.9054]
[C:\Program Files\OpenOffice.org 2.0\program\stlport_vc7145.dll]  [STLport Consulting, Inc., 4.5.2003.0120]
[C:\Program Files\Fichiers communs\Adobe\Acrobat\ActiveX\PDFShell.dll]  [Adobe Systems, Inc., 8.1.0.0]
[C:\Program Files\Fichiers communs\Adobe\Acrobat\ActiveX\PDFShell.FRA]  [Adobe Systems, Inc., 8.0.0.0]
[C:\Program Files\Nero\Nero 7\Nero BackItUp\NBShell.dll]  [Nero AG, 2, 10, 3, 2]
[C:\Program Files\Nero\Nero 7\Nero BackItUp\MFC71U.DLL]  [Microsoft Corporation, 7.10.3077.0]
[C:\Program Files\Avira\AntiVir PersonalEdition Classic\shlext.dll]  [Avira GmbH, 7.00.00.10]
[C:\Program Files\Nero\Nero 7\Nero CoverDesigner\CoverEdExtension.dll]  [Nero AG, 2, 10, 1, 1]
[PID: 2244 / Marie Christine Dun][C:\WINDOWS\system32\VTTimer.exe]  [S3 Graphics, Inc., 2.00.01-0307]
[C:\Program Files\Fichiers communs\Logishrd\LVMVFM\LVPrcInj.dll]  [Logitech Inc., 10.5.1.2027]
[PID: 2256 / Marie Christine Dun][C:\WINDOWS\SOUNDMAN.EXE]  [Realtek Semiconductor Corp., 5, 1, 0, 48]
[C:\Program Files\Fichiers communs\Logishrd\LVMVFM\LVPrcInj.dll]  [Logitech Inc., 10.5.1.2027]
[PID: 2308 / Marie Christine Dun][C:\Program Files\Fichiers communs\LogiShrd\LComMgr\LVComSX.exe]  [Logitech Inc., 10.5.1.2027]
[C:\Program Files\Fichiers communs\Logishrd\LVMVFM\LVPrcInj.dll]  [Logitech Inc., 10.5.1.2027]
[C:\Program Files\Fichiers communs\LogiShrd\LComMgr\LVMaEnum.dll]  [Logitech Inc., 10.5.1.2027]
[C:\Program Files\Fichiers communs\LogiShrd\LComMgr\MSVCP71.dll]  [Microsoft Corporation, 7.10.3077.0]
[C:\Program Files\Fichiers communs\LogiShrd\LComMgr\MSVCR71.dll]  [Microsoft Corporation, 7.10.3052.4]
[PID: 2328 / Marie Christine Dun][C:\Program Files\Avira\AntiVir PersonalEdition Classic\avgnt.exe]  [Avira GmbH, 7.02.00.16]
[C:\Program Files\Avira\AntiVir PersonalEdition Classic\MFC71U.DLL]  [Microsoft Corporation, 7.10.3077.0]
[C:\Program Files\Avira\AntiVir PersonalEdition Classic\MSVCR71.dll]  [Microsoft Corporation, 7.10.3052.4]
[C:\Program Files\Avira\AntiVir PersonalEdition Classic\cclib.dll]  [Avira GmbH, 7.02.00.03]
[C:\Program Files\Avira\AntiVir PersonalEdition Classic\MSVCP71.dll]  [Microsoft Corporation, 7.10.3077.0]
[C:\WINDOWS\system32\MFC71FRA.DLL]  [Microsoft Corporation, 7.10.3077.0]
[C:\Program Files\Fichiers communs\Logishrd\LVMVFM\LVPrcInj.dll]  [Logitech Inc., 10.5.1.2027]
[c:\program files\avira\antivir personaledition classic\ccgen.dll]  [Avira GmbH, 7.02.00.10]
[c:\program files\avira\antivir personaledition classic\ccgenrc.dll]  [Avira GmbH, 7.02.04.02]
[c:\program files\avira\antivir personaledition classic\ccguard.dll]  [Avira GmbH, 7.00.01.35]
[c:\program files\avira\antivir personaledition classic\ccgrdrc.dll]  [Avira GmbH, 7.00.06.00]
[C:\Program Files\Avira\AntiVir PersonalEdition Classic\avipc.dll]  [Avira GmbH, 1.00.00.04]
[c:\program files\avira\antivir personaledition classic\ccupdate.dll]  [Avira GmbH, 7.02.00.04]
[c:\program files\avira\antivir personaledition classic\ccupdrc.dll]  [Avira GmbH, 7.02.01.00]
[c:\program files\avira\antivir personaledition classic\cclic.dll]  [Avira GmbH, 7.02.00.04]
[c:\program files\avira\antivir personaledition classic\cclicrc.dll]  [Avira GmbH, 7.02.01.00]
[c:\program files\avira\antivir personaledition classic\ccmsg.dll]  [Avira GmbH, 7.00.00.00]
[PID: 2340 / Marie Christine Dun][C:\WINDOWS\system32\ctfmon.exe]  [Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)]
[C:\Program Files\Fichiers communs\Logishrd\LVMVFM\LVPrcInj.dll]  [Logitech Inc., 10.5.1.2027]
[PID: 2900 / SYSTEM][C:\Program Files\MSN Messenger\usnsvc.exe]  [Microsoft Corporation, 8.1.0178.00]
[C:\Program Files\MSN Messenger\usnsvcps.dll]  [Microsoft Corporation, 8.1.0178.00]
[PID: 7904 / Marie Christine Dun][C:\Program Files\MSN Messenger\msnmsgr.exe]  [Microsoft Corporation, 8.1.0178.00]
[C:\Program Files\MSN Messenger\MSIMG32.dll]  [Patchou, 4, 23, 0, 276]
[C:\Program Files\MSN Messenger\MSNCore.dll]  [Microsoft Corporation, 8.1.0178.00]
[C:\WINDOWS\system32\Normaliz.dll]  [Microsoft Corporation, 6.0.5441.0 (winmain(wmbla).060628-1735)]
[C:\WINDOWS\system32\iertutil.dll]  [Microsoft Corporation, 7.00.6000.16544 (vista_gdr.070814-1500)]
[C:\Program Files\MSN Messenger\msidcrl40.dll]  [Microsoft Corporation, 4.100.313.1]
[C:\Program Files\MSN Messenger\ContactsUX.dll]  [Microsoft Corporation, 8.1.0178.00]
[C:\Program Files\Messenger Plus! Live\MsgPlusLive.dll]  [Patchou, 4, 23, 0, 276]
[C:\Program Files\Messenger Plus! Live\Detoured.dll]  [N/A, ]
[C:\Program Files\Fichiers communs\Logishrd\LVMVFM\LVPrcInj.dll]  [Logitech Inc., 10.5.1.2027]
[C:\Program Files\MSN Messenger\msgslang.8.1.0178.00.dll]  [Microsoft Corporation, 8.1.0178.00]
[C:\Program Files\MSN Messenger\msgsres.dll]  [Microsoft Corporation, 8.1.0178.00]
[C:\Program Files\Messenger Plus! Live\MsgPlusLiveRes.dll]  [Patchou, 4, 23, 0, 276]
[C:\Program Files\MSN Messenger\lcapi.dll]  [Microsoft Corporation, 1.7.256.0 (RTC Version 4.3.5371.0) built by: msn8.0(rtbldlab)]
[C:\WINDOWS\system32\msdmo.dll]  [, ]
[C:\Program Files\MSN Messenger\lcres.dll]  [Microsoft Corp., 1.7.109.0 (RTC Version 4.3.5371.0) built by: msn8.0(rtbldlab)]
[C:\Program Files\MSN Messenger\RTMPLTFM.dll]  [Microsoft Corporation, 3.0.5774.0 built by: media_msn80]
[C:\WINDOWS\system32\msacm32.drv]  [Microsoft Corporation, 5.1.2600.0 (xpclient.010817-1148)]
[C:\Program Files\MSN Messenger\MSGSWCAM.dll]  [Microsoft Corporation, 8.1.0178.00]
[C:\WINDOWS\system32\sirenacm.dll]  [Microsoft Corp., 8.1.0178.00]
[C:\Program Files\MSN Messenger\lmcdata.dll]  [Microsoft Corporation, 8.1.0178.00]
[C:\Program Files\MSN Messenger\contact.dll]  [Microsoft Corporation, 8.1.0178.00]
[C:\Program Files\Messenger Plus! Live\MPScripts.dll]  [Patchou, 4, 23, 0, 276]
[C:\Program Files\MSN Messenger\dfsr.dll]  [Microsoft Corporation, 8.1.0178.00]
[C:\Program Files\MSN Messenger\usnsvcps.dll]  [Microsoft Corporation, 8.1.0178.00]
[C:\Program Files\MSN Messenger\custsat.dll]  [Microsoft Corporation, 9.0.3790.2428 (srv03_sp1_qfe.050422-1043)]
[C:\WINDOWS\system32\mfplat.dll]  [Microsoft Corporation, 11.0.5721.5145 (WMP_11.061018-2006)]
[C:\WINDOWS\system32\ieframe.dll]  [Microsoft Corporation, 7.00.6000.16544 (vista_gdr.070814-1500)]
[C:\Program Files\MSN Messenger\abssm.dll]  [Microsoft Corporation, 8.1.0178.00]
[C:\PROGRA~1\MSNMES~1\MSGSC8~1.DLL]  [Microsoft Corporation, 8.1.0178.00]
[PID: 6256 / Marie Christine Dun][C:\Program Files\Internet Explorer\IEXPLORE.EXE]  [Microsoft Corporation, 7.00.6000.16544 (vista_gdr.070814-1500)]
[C:\WINDOWS\system32\iertutil.dll]  [Microsoft Corporation, 7.00.6000.16544 (vista_gdr.070814-1500)]
[C:\Program Files\Fichiers communs\Logishrd\LVMVFM\LVPrcInj.dll]  [Logitech Inc., 10.5.1.2027]
[C:\WINDOWS\system32\IEFRAME.dll]  [Microsoft Corporation, 7.00.6000.16544 (vista_gdr.070814-1500)]
[C:\WINDOWS\system32\IEUI.dll]  [Microsoft Corporation, 7.00.5730.11 (winmain(wmbla).061017-1135)]
[C:\WINDOWS\system32\xmllite.dll]  [Microsoft Corporation, 1.00.1018.0]
[C:\Program Files\Internet Explorer\ieproxy.dll]  [Microsoft Corporation, 7.00.5730.11 (winmain(wmbla).061017-1135)]
[C:\WINDOWS\system32\Normaliz.dll]  [Microsoft Corporation, 6.0.5441.0 (winmain(wmbla).060628-1735)]
[C:\Program Files\Fichiers communs\Adobe\Acrobat\ActiveX\AcroIEHelper.dll]  [Adobe Systems Incorporated, 8.0.0.2006102200]
[C:\Program Files\Java\jre1.6.0_01\bin\ssv.dll]  [Sun Microsystems, Inc., 6.0.10.6]
[C:\Program Files\Java\jre1.6.0_01\bin\MSVCR71.dll]  [Microsoft Corporation, 7.10.3052.4]
[C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll]  [Microsoft Corporation, 4.000.249.1]
[C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\msidcrl40.dll]  [Microsoft Corporation, 4.000.249.1]
[C:\WINDOWS\system32\ieapfltr.dll]  [Microsoft Corporation, 7.0.6000.16461]
[C:\WINDOWS\system32\msacm32.drv]  [Microsoft Corporation, 5.1.2600.0 (xpclient.010817-1148)]
[C:\WINDOWS\system32\Macromed\Flash\Flash9b.ocx]  [Adobe Systems, Inc., 9,0,28,0]
[PID: 7972 / Marie Christine Dun][C:\Documents and Settings\Marie Christine Duny\Bureau\sreng2\SREngPS.EXE]  [Smallfrogs Studio, 2.5.16.900]
[C:\WINDOWS\system32\Normaliz.dll]  [Microsoft Corporation, 6.0.5441.0 (winmain(wmbla).060628-1735)]
[C:\WINDOWS\system32\iertutil.dll]  [Microsoft Corporation, 7.00.6000.16544 (vista_gdr.070814-1500)]
[C:\Program Files\Fichiers communs\Logishrd\LVMVFM\LVPrcInj.dll]  [Logitech Inc., 10.5.1.2027]
[C:\Documents and Settings\Marie Christine Duny\Bureau\sreng2\Upload\3rdUpd.DLL]  [Smallfrogs Studio, 2, 1, 0, 15]

==================================
File Associations
.TXT  OK. [%SystemRoot%\system32\NOTEPAD.EXE %1]
.EXE  OK. ["%1" %*]
.COM  OK. ["%1" %*]
.PIF  OK. ["%1" %*]
.REG  OK. [regedit.exe "%1"]
.BAT  OK. ["%1" %*]
.SCR  OK. ["%1" /S]
.CHM  OK. ["C:\WINDOWS\hh.exe" %1]
.HLP  OK. [%SystemRoot%\System32\winhlp32.exe %1]
.INI  OK. [%SystemRoot%\System32\NOTEPAD.EXE %1]
.INF  OK. [%SystemRoot%\System32\NOTEPAD.EXE %1]
.VBS  OK. [%SystemRoot%\System32\WScript.exe "%1" %*]
.JS   OK. [%SystemRoot%\System32\WScript.exe "%1" %*]
.LNK  OK. [{00021401-0000-0000-C000-000000000046}]

==================================
Winsock Provider
N/A

==================================
Autorun.Inf
N/A

==================================
HOSTS File
127.0.0.1	   localhost

==================================
Process Privileges Scan
Special Privilege Enabled: SeLoadDriverPrivilege [PID = 1284, C:\PROGRAM FILES\AVIRA\ANTIVIR PERSONALEDITION CLASSIC\AVGUARD.EXE]
Special Privilege Enabled: SeLoadDriverPrivilege [PID = 1552, C:\PROGRAM FILES\FICHIERS COMMUNS\APPLE\MOBILE DEVICE SUPPORT\BIN\APPLEMOBILEDEVICESERVICE.EXE]
Special Privilege Enabled: SeLoadDriverPrivilege [PID = 2328, C:\PROGRAM FILES\AVIRA\ANTIVIR PERSONALEDITION CLASSIC\AVGNT.EXE]

==================================
API HOOK
N/A

==================================
Hidden Process
N/A

==================================

[Thanos]

salut

 

Bon, je ne vois rien de mauvais non plus...!

Je vais te demander un dernier scan en ligne: désolé, mais c'est nécéssaire car les rapports ne montrent rien d'anormal !!

 

Fais un scan en ligne Kaspersky

• Clique sur Accept
  
• Une barre jaune va te demander si tu acceptes d'installer le Kavwebscan_Unicode.cab, installe l'Active X.
  
• clique une nouvelle fois sur "Accept"
  
• Les bases de mises à jour vont s'installer, patiente un moment
  
• Clique sur Next.
  
• Clique sur My Computer, le scan se met en route; attends la fin du scan sans fermer la fenêtre sinon il s'arrêtera.
  

A la fin du scan, si des objets infectés sont découverts, clique sur Save report as... Choisis bureau et nomme le rapport "rapport Kaspersky" et dans le champ d'enregistrement, choisis "fichiers texte" enregistre alors le rapport.

 

Copie/colle la totalité du fichier texte ouvert, par clic droit dessus, sélectionner tout/copier.

 

Colle ce rapport dans ta réponse sur le forum.

 

Aide en cas de problème :Cybersécurité

 

NOTE: Le scan est à faire avec Internet Explorer.

 

@+

[Apollo]

Bonsoir desdemona, Charly

 

Si le Maître le permet: mettre Windows Live Messenger à jour: http://theknitter-apollo.xooit.com/p15234.htm

 

Vérifier si Adobe Reader a été "patché" avec les correctifs: http://www.secuser.com/vulnerabilite/2007/...dobe_reader.htm

 

Excusez l'intrusion, chef.

(Je cire bien les bottes hein?)

[desdemona]

Bonjour, bonjour..

 

Plus on est de fous, plus on rit!!! Alors bienvenue Apollo dans mon incompréhensible disque dur.. lol!!

 

Bon je démarre le scan Kapersky.. et .. je vais dormir un peu (je bosse la nuit). Je post cet aprem et (si le maitre le permet bien sur-lol- ) je ferais les mises à jour proposées.

 

Heu.. derniére info.. mon gamin me dit qu'il a décompressé un zip (quelques temps avant le début de ces problémes) et qu'à l'installation du programme (un jeu téléchargé en P2P) il lui semble avoir vu l'installation d'une toolbar pour google (??), puis l'antivirus s'est déclenché et il a mis en quarantaine.

Le hic c'est que c'était avec l'ancien antivirus et comme je l'ai viré je n'ai plus la trace la quarantaine!!

 

Bonne journée à vous 2.. je vais voir Morphée!!

[Pang]

Bonjour.

 

Pardonnez cette petite intrusion dans votre post, mais c'étais juste pour vous informer que je suis egalement "victime" d'une redirection vers le site : erreurchasseur lorsque je viens sur Zebulon.

Que je sois à mon domicile ou ailleur !

 

Voici : http://forum.zebulon.fr/index.php?showtopic=134058&hl=

 

Cordialement.

[desdemona]

Rebonjour à tous

 

Et bien on commence a être nombreux sur ce sujet, hein?

 

Bon, petit problème le rapport de scan est beaucoup trop long,!! Quand je copie colle I.E (ou M.F - au fait toujours fenetre du chasseur qui s'ouvre avec ce programme quand je vais sur ce forum) donc, I.E plante quand je veux coller le rapport.

 

Là j'ai pas ttrop le temps donc je copie les lignes que j'ai trouvé infectées (j'espère ne pas en avoir oublié, vu la longueur).

 

Je referais un essai ce soir en découpant par petit morceaux si nécessaire. A toi de voir..

 

Sinon dois je faire les mises à jour proposées par Apollo??

 

Voilà, à plus tard!!

 

 

 

 

C:\Program Files\Navilog1\reboot.exe Infected: not-a-virus:RiskTool.Win32.Reboot.f skipped

C:\qoobox\Quarantine\C\WINDOWS\system32\gzmrotate.dll.vir Infected: not-a-virus:AdWare.Win32.NewWeb.ar skipped

C:\qoobox.zip/qoobox/Quarantine/C/WINDOWS/system32/gzmrotate.dll.vir Infected: not-a-virus:AdWare.Win32.NewWeb.ar skipped

C:\qoobox.zip ZIP: infected - 1 skipped

C:\System Volume Information\MountPointManagerRemoteDatabase Object is locked skipped

C:\System Volume Information\_restore{96FADBE2-720D-4190-9324-1FCEDBFE9810}\RP47\A0014410.exe/data0005/stream/data0004 Infected: not-a-virus:AdWare.Win32.TrafficSol.n skipped

C:\System Volume Information\_restore{96FADBE2-720D-4190-9324-1FCEDBFE9810}\RP47\A0014410.exe/data0005/stream Infected: not-a-virus:AdWare.Win32.TrafficSol.n skipped

C:\System Volume Information\_restore{96FADBE2-720D-4190-9324-1FCEDBFE9810}\RP47\A0014410.exe/data0005 Infected: not-a-virus:AdWare.Win32.TrafficSol.n skipped

C:\System Volume Information\_restore{96FADBE2-720D-4190-9324-1FCEDBFE9810}\RP47\A0014410.exe/data0006/stream/data0004 Infected: not-a-virus:AdWare.Win32.BHO.ha skipped

C:\System Volume Information\_restore{96FADBE2-720D-4190-9324-1FCEDBFE9810}\RP47\A0014410.exe/data0006/stream/data0005 Infected: not-a-virus:AdWare.Win32.BHO.lq skipped

C:\System Volume Information\_restore{96FADBE2-720D-4190-9324-1FCEDBFE9810}\RP47\A0014410.exe/data0006/stream Infected: not-a-virus:AdWare.Win32.BHO.lq skipped

C:\System Volume Information\_restore{96FADBE2-720D-4190-9324-1FCEDBFE9810}\RP47\A0014410.exe/data0006 Infected: not-a-virus:AdWare.Win32.BHO.lq skipped

C:\System Volume Information\_restore{96FADBE2-720D-4190-9324-1FCEDBFE9810}\RP47\A0014410.exe NSIS: infected - 7 skipped

C:\System Volume Information\_restore{96FADBE2-720D-4190-9324-1FCEDBFE9810}\RP47\A0014411.exe/data0011/stream/data0004 Infected: not-a-virus:AdWare.Win32.TrafficSol.m skipped

C:\System Volume Information\_restore{96FADBE2-720D-4190-9324-1FCEDBFE9810}\RP47\A0014411.exe/data0011/stream Infected: not-a-virus:AdWare.Win32.TrafficSol.m skipped

C:\System Volume Information\_restore{96FADBE2-720D-4190-9324-1FCEDBFE9810}\RP47\A0014411.exe/data0011 Infected: not-a-virus:AdWare.Win32.TrafficSol.m skipped

C:\System Volume Information\_restore{96FADBE2-720D-4190-9324-1FCEDBFE9810}\RP47\A0014411.exe/data0012/stream/data0005 Infected: not-a-virus:AdWare.Win32.BHO.jj skipped

C:\System Volume Information\_restore{96FADBE2-720D-4190-9324-1FCEDBFE9810}\RP47\A0014411.exe/data0012/stream Infected: not-a-virus:AdWare.Win32.BHO.jj skipped

C:\System Volume Information\_restore{96FADBE2-720D-4190-9324-1FCEDBFE9810}\RP47\A0014411.exe/data0012 Infected: not-a-virus:AdWare.Win32.BHO.jj skipped

C:\System Volume Information\_restore{96FADBE2-720D-4190-9324-1FCEDBFE9810}\RP47\A0014411.exe NSIS: infected - 6 skipped

C:\System Volume Information\_restore{96FADBE2-720D-4190-9324-1FCEDBFE9810}\RP48\A0015415.exe/data0005/stream/data0004 Infected: not-a-virus:AdWare.Win32.TrafficSol.n skipped

C:\System Volume Information\_restore{96FADBE2-720D-4190-9324-1FCEDBFE9810}\RP48\A0015415.exe/data0005/stream Infected: not-a-virus:AdWare.Win32.TrafficSol.n skipped

C:\System Volume Information\_restore{96FADBE2-720D-4190-9324-1FCEDBFE9810}\RP48\A0015415.exe/data0005 Infected: not-a-virus:AdWare.Win32.TrafficSol.n skipped

C:\System Volume Information\_restore{96FADBE2-720D-4190-9324-1FCEDBFE9810}\RP48\A0015415.exe/data0006/stream/data0004 Infected: not-a-virus:AdWare.Win32.BHO.ha skipped

C:\System Volume Information\_restore{96FADBE2-720D-4190-9324-1FCEDBFE9810}\RP48\A0015415.exe/data0006/stream/data0005 Infected: not-a-virus:AdWare.Win32.BHO.lq skipped

C:\System Volume Information\_restore{96FADBE2-720D-4190-9324-1FCEDBFE9810}\RP48\A0015415.exe/data0006/stream Infected: not-a-virus:AdWare.Win32.BHO.lq skipped

C:\System Volume Information\_restore{96FADBE2-720D-4190-9324-1FCEDBFE9810}\RP48\A0015415.exe/data0006 Infected: not-a-virus:AdWare.Win32.BHO.lq skipped

C:\System Volume Information\_restore{96FADBE2-720D-4190-9324-1FCEDBFE9810}\RP48\A0015415.exe NSIS: infected - 7 skipped

C:\System Volume Information\_restore{96FADBE2-720D-4190-9324-1FCEDBFE9810}\RP57\A0021193.dll Infected: not-a-virus:AdWare.Win32.NewWeb.ar skipped

C:\System Volume Information\_restore{96FADBE2-720D-4190-9324-1FCEDBFE9810}\RP59\A0021292.exe/file7 Infected: not-a-virus:RiskTool.Win32.Reboot.f skipped

C:\System Volume Information\_restore{96FADBE2-720D-4190-9324-1FCEDBFE9810}\RP59\A0021292.exe Inno: infected - 1 skipped

 

C:\upload_moi_SONIC.tar.gz/upload_moi.tar/qoobox/Quarantine/C/WINDOWS/system32/gzmrotate.dll.vir Infected: not-a-virus:AdWare.Win32.NewWeb.ar skipped

C:\upload_moi_SONIC.tar.gz/upload_moi.tar Infected: not-a-virus:AdWare.Win32.NewWeb.ar skipped

C:\upload_moi_SONIC.tar.gz GZIP: infected - 2 skipped

[Thanos]

salut

Sinon dois je faire les mises à jour proposées par Apollo??

Oui bien sûr

Quand je copie colle I.E (ou M.F - au fait toujours fenetre du chasseur qui s'ouvre avec ce programme quand je vais sur ce forum)

Pang a ouvert un topic à ce sujet > Yann est sur le coup

Est ce que tu vois encore cette pub quand tu viens sur le site desdemona ?

J'aimerai stp que tu désactives un service car il est parfois exploité pour afficher des pubs >

 

-vas dans le menu Démarrer/Executer et tu tapes : services.msc

 

Cherche le service suivant: Affichage des Messages et double-clique dessus >

 

-dans le champs "Status du service" sélectionne "arrêté"

-dans le champs "Type de démarrage" sélectionne"désactivé" puis "Appliquer" puis"ok"

 

Quitte les services.

 

Le rapport que tu as posté ne montre que des fichiers en quarantaine et des points de restauration infectés > ne t'inquiête pas! ces infections sont inactives. On va nettoyer la restauration à la fin d'une manière très simple.

 

Stp, afin de pouvoir poster l'intégralité du rapport Kaspersky, passe par ce site > http://www.cijoint.fr/

Clique sur le bouton Parcourir > sélectionne ton rapport et clique sur Ouvrir (en bas de fenêtre à droite) > clique après ca sur Déposer le Fichier en bas de page > tu vas reçevoir le lien vers le contenu du fichier que tu as expédié >

Veuillez noter le lien suivant http://www.cijoint.fr/.......txt qui vous permettra d'accéder à ce fichier.

C'est ce même lien que vous devrez transmettre à vos correspondants.

donne moi le lien stp

 

@+

Modifié le 20 novembre 2007 par charles ingals