Aller au contenu
  • Pas encore inscrit ?

    Pourquoi ne pas vous inscrire ? C'est simple, rapide et gratuit.
    Pour en savoir plus, lisez Les avantages de l'inscription... et la Charte de Zébulon.
    De plus, les messages que vous postez en tant qu'invité restent invisibles tant qu'un modérateur ne les a pas validés. Inscrivez-vous, ce sera un gain de temps pour tout le monde, vous, les helpeurs et les modérateurs ! :wink:

Messages recommandés




serait il possible de me dire si mon pc est infecté.


j ai FireFox ou Internet Explorer qui s arrête au bout de quelques minutes et divers analyses (Antivirus N360, malwarebytes, a-squared + scan en ligne bitdefender et autres) me disent que je n ai rien d infectieux. En fait je peux surfer entre 2 et 5 minutes puis plus rien. D avance merci. :P


Logfile of Trend Micro HijackThis v2.0.2

Scan saved at 21:09:47, on 03/01/2009

Platform: Windows XP SP3 (WinNT 5.01.2600)

MSIE: Internet Explorer v7.00 (7.00.6000.16762)

Boot mode: Normal


Running processes:











C:\Program Files\Fichiers communs\Symantec Shared\ccSvcHst.exe



C:\Program Files\a-squared Anti-Dialer\a2service.exe

C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe

C:\Program Files\Symantec\LiveUpdate\AluSchedulerSvc.exe

C:\Program Files\BillP Studios\WinPatrol\WinPatrol.exe

C:\Program Files\TomTom HOME\TomTomHOME.exe



C:\Program Files\Logitech\MediaLife\MediaLifeService.exe


C:\Program Files\iTunes\iTunesHelper.exe


C:\Program Files\Sagem Photo Easy\AzAgent.exe

C:\Program Files\Fichiers communs\Symantec Shared\ccSvcHst.exe

C:\Program Files\Bonjour\mDNSResponder.exe

C:\Program Files\Home Cinema\PowerCinema\Kernel\TV\CLCapSvc.exe

C:\Program Files\internet explorer\iexplore.exe

C:\Program Files\a-squared Anti-Dialer\a2adguard.exe

C:\Program Files\CyberLink\Shared Files\CLML_NTService\CLMLServer.exe

C:\Program Files\Siber Systems\AI RoboForm\RoboTaskBarIcon.exe

C:\Program Files\CyberLink\Shared Files\CLML_NTService\CLMLService.exe

C:\Program Files\Diskeeper Corporation\Diskeeper\DkService.exe



C:\Program Files\Copernic Desktop Search 2\DesktopSearchService.exe

C:\Program Files\Logitech\SetPoint\SetPoint.exe

C:\Program Files\Mio Technology\MioSync\mioSync.exe


C:\Program Files\WIFI_LINK\WL_Utility\ZDWlan.exe


C:\Program Files\Fichiers communs\Microsoft Shared\VS7DEBUG\MDM.EXE

C:\Program Files\CDBurnerXP\NMSAccessU.exe




C:\Program Files\Webroot\Spy Sweeper\SpySweeper.exe

C:\Program Files\Fichiers communs\Logitech\KHAL\KHALMNPR.EXE

C:\Program Files\WIFI_LINK\WL_Utility\srvany.exe

C:\Program Files\WIFI_LINK\WL_Utility\ZyDummyZD11B-BG.exe

C:\Program Files\Home Cinema\PowerCinema\Kernel\TV\CLSched.exe


C:\Program Files\iPod\bin\iPodService.exe


C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WLLoginProxy.exe




C:\Documents and Settings\Pascal\Mes documents\Mes fichiers reçus\HiJackThis.exe



R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page =

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL =

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL =

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page =

R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page =

R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens

O2 - BHO: Aide pour le lien d'Adobe PDF Reader - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Fichiers communs\Adobe\Acrobat\ActiveX\AcroIEHelper.dll

O2 - BHO: Popup Killer - {4A3A071E-F913-4eee-AE15-AEFFA16FB6BC} - C:\PROGRA~1\Webroot\POP-UP~1\VAPopupKiller.dll

O2 - BHO: NCO 2.0 IE BHO - {602ADB0E-4AFF-4217-8AA1-95DAC4DFA408} - C:\Program Files\Fichiers communs\Symantec Shared\coShared\Browser\2.6\coIEPlg.dll

O2 - BHO: Symantec Intrusion Prevention - {6D53EC84-6AAE-4787-AEEE-F4628F01010C} - C:\PROGRA~1\FICHIE~1\SYMANT~1\IDS\IPSBHO.dll

O2 - BHO: (no name) - {724d43a9-0d85-11d4-9908-00400523e39a} - C:\Program Files\Siber Systems\AI RoboForm\roboform.dll

O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)

O2 - BHO: Windows Live Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll

O2 - BHO: Windows Live Toolbar Helper - {BDBD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\Windows Live Toolbar\msntb.dll

O3 - Toolbar: &RoboForm - {724d43a0-0d85-11d4-9908-00400523e39a} - C:\Program Files\Siber Systems\AI RoboForm\roboform.dll

O3 - Toolbar: Windows Live Toolbar - {BDAD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\Windows Live Toolbar\msntb.dll

O3 - Toolbar: Copernic Desktop Search 2 - {968631B6-4729-440D-9BF4-251F5593EC9A} - C:\Program Files\Copernic Desktop Search 2\DesktopSearchBand201013011.dll

O3 - Toolbar: Show Norton Toolbar - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - C:\Program Files\Fichiers communs\Symantec Shared\coShared\Browser\2.6\CoIEPlg.dll

O4 - HKLM\..\Run: [ZoneAlarm Client] "C:\Program Files\Zone Labs\ZoneAlarm\zlclient.exe"

O4 - HKLM\..\Run: [WinPatrol] "C:\Program Files\BillP Studios\WinPatrol\WinPatrol.exe"

O4 - HKLM\..\Run: [ulead AutoDetector v2] "C:\Program Files\Fichiers communs\Ulead Systems\AutoDetector\monitor.exe"

O4 - HKLM\..\Run: [TomTomHOME.exe] "C:\Program Files\TomTom HOME\TomTomHOME.exe" -s

O4 - HKLM\..\Run: [skyTel] SkyTel.EXE


O4 - HKLM\..\Run: [RoxioEngineUtility] "C:\Program Files\Fichiers communs\Roxio Shared\System\EngUtil.exe"

O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime

O4 - HKLM\..\Run: [nwiz] "nwiz.exe" /install

O4 - HKLM\..\Run: [NvMediaCenter] "RUNDLL32.EXE" C:\WINDOWS\system32\NvMcTray.dll,NvTaskbarInit

O4 - HKLM\..\Run: [NvCplDaemon] "RUNDLL32.EXE" C:\WINDOWS\system32\NvCpl.dll,NvStartup

O4 - HKLM\..\Run: [NeroFilterCheck] C:\WINDOWS\system32\NeroCheck.exe

O4 - HKLM\..\Run: [MediaLifeService] "C:\Program Files\Logitech\MediaLife\MediaLifeService.exe"


O4 - HKLM\..\Run: [LogitechVideoRepair] "C:\Program Files\Logitech\Video\ISStart.exe"

O4 - HKLM\..\Run: [Logitech Hardware Abstraction Layer] KHALMNPR.EXE

O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe"

O4 - HKLM\..\Run: [Dit] Dit.exe

O4 - HKLM\..\Run: [AzAgent] "C:\Program Files\Sagem Photo Easy\AzAgent.exe"

O4 - HKLM\..\Run: [AppleSyncNotifier] "C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleSyncNotifier.exe"

O4 - HKLM\..\Run: [ANIWZCS2Service] "C:\Program Files\ANI\ANIWZCS2 Service\WZCSLDR2.exe"

O4 - HKLM\..\Run: [ccApp] "C:\Program Files\Fichiers communs\Symantec Shared\ccApp.exe"

O4 - HKLM\..\Run: [osCheck] "C:\Program Files\Norton 360\osCheck.exe"

O4 - HKLM\..\Run: [a-squared] "C:\Program Files\a-squared Anti-Dialer\a2adguard.exe"

O4 - HKLM\..\Run: [a-squared Anti-Dialer] "C:\Program Files\a-squared Anti-Dialer\a2adguard.exe" /d=60

O4 - HKCU\..\Run: [RoboForm] "C:\Program Files\Siber Systems\AI RoboForm\RoboTaskBarIcon.exe"

O4 - HKCU\..\Run: [gStart] C:\Garmin\gStart.exe

O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe

O4 - HKCU\..\Run: [Copernic Desktop Search 2] "C:\Program Files\Copernic Desktop Search 2\DesktopSearchService.exe" /tray

O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')

O4 - HKUS\S-1-5-18\..\Run: [RoboForm] "C:\Program Files\Siber Systems\AI RoboForm\RoboTaskBarIcon.exe" (User 'SYSTEM')

O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')

O4 - Global Startup: Logitech SetPoint.lnk = C:\Program Files\Logitech\SetPoint\SetPoint.exe

O4 - Global Startup: MioSync.lnk = C:\Program Files\Mio Technology\MioSync\mioSync.exe

O4 - Global Startup: RAMASST.lnk = C:\WINDOWS\system32\RAMASST.exe

O4 - Global Startup: WL Utility.lnk = C:\Program Files\WIFI_LINK\WL_Utility\ZDWlan.exe

O8 - Extra context menu item: &Windows Live Search - res://C:\Program Files\Windows Live Toolbar\msntb.dll/search.htm

O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_05\bin\npjpi150_05.dll

O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_05\bin\npjpi150_05.dll

O9 - Extra button: (no name) - {85d1f590-48f4-11d9-9669-0800200c9a66} - C:\WINDOWS\bdoscandel.exe

O9 - Extra 'Tools' menuitem: Uninstall BitDefender Online Scanner v8 - {85d1f590-48f4-11d9-9669-0800200c9a66} - C:\WINDOWS\bdoscandel.exe

O9 - Extra button: Recherche - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\OFFICE11\REFIEBAR.DLL

O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe

O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe

O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe

O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe

O10 - Unknown file in Winsock LSP: c:\windows\system32\nwprovau.dll

O12 - Plugin for .UVR: C:\Program Files\Internet Explorer\Plugins\NPUPano.dll


O16 - DPF: {0EB0E74A-2A76-4AB3-A7FB-9BD8C29F7F75} (CKAVWebScan Object) -

O16 - DPF: {17492023-C23A-453E-A040-C7C580BBF700} (Windows Genuine Advantage Validation Tool) -

O16 - DPF: {2BC66F54-93A8-11D3-BEB6-00105AA9B6AE} (Symantec AntiVirus scanner) -

O16 - DPF: {2D8ED06D-3C30-438B-96AE-4D110FDC1FB8} (ActiveScan 2.0 Installer Class) -

O16 - DPF: {56762DEC-6B0D-4AB4-A8AD-989993B5D08B} (OnlineScanner Control) -

O16 - DPF: {5D86DDB5-BDF9-441B-9E9E-D4730F4EE499} (BDSCANONLINE Control) -

O16 - DPF: {5ED80217-570B-4DA9-BF44-BE107C0EC166} (Windows Live Safety Center Base Module) -

O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) -

O16 - DPF: {644E432F-49D3-41A1-8DD5-E099162EEEC5} (Symantec RuFSI Utility Class) -

O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} (MUWebControl Class) -

O16 - DPF: {74D05D43-3236-11D4-BDCD-00C04F9A3B61} (HouseCall Control) -

O16 - DPF: {7B297BFD-85E4-4092-B2AF-16A91B2EA103} (WScanCtl Class) -

O16 - DPF: {9A9307A0-7DA4-4DAF-B042-5009F29E09E1} (ActiveScan Installer Class) -

O16 - DPF: {B38870E4-7ECB-40DA-8C6A-595F0A5519FF} (MsnMessengerSetupDownloadControl Class) -

O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) -

O18 - Protocol: bwfile-8876480 - {9462A756-7B47-47BC-8C80-C34B9B80B32B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\GAPlugProtocol-8876480.dll

O23 - Service: a-squared Anti-Dialer Service (a2AntiDialer) - Emsi Software GmbH - C:\Program Files\a-squared Anti-Dialer\a2service.exe

O23 - Service: ANIWZCSd Service (ANIWZCSdService) - Alpha Networks Inc. - C:\Program Files\ANI\ANIWZCS2 Service\ANIWZCSdS.exe

O23 - Service: Apple Mobile Device - Apple Inc. - C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe

O23 - Service: Planificateur LiveUpdate automatique (Automatic LiveUpdate Scheduler) - Symantec Corporation - C:\Program Files\Symantec\LiveUpdate\AluSchedulerSvc.exe

O23 - Service: Service Bonjour (Bonjour Service) - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe

O23 - Service: Symantec Event Manager (ccEvtMgr) - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\ccSvcHst.exe

O23 - Service: Symantec Settings Manager (ccSetMgr) - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\ccSvcHst.exe

O23 - Service: CyberLink Background Capture Service (CBCS) (CLCapSvc) - Unknown owner - C:\Program Files\Home Cinema\PowerCinema\Kernel\TV\CLCapSvc.exe

O23 - Service: CyberLink Task Scheduler (CTS) (CLSched) - Unknown owner - C:\Program Files\Home Cinema\PowerCinema\Kernel\TV\CLSched.exe

O23 - Service: Symantec Lic NetConnect service (CLTNetCnService) - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\ccSvcHst.exe

O23 - Service: COM Host (comHost) - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\VAScanner\comHost.exe

O23 - Service: CyberLink Media Library Service - Cyberlink - C:\Program Files\CyberLink\Shared Files\CLML_NTService\CLMLServer.exe

O23 - Service: Diskeeper - Diskeeper Corporation - C:\Program Files\Diskeeper Corporation\Diskeeper\DkService.exe

O23 - Service: DVD-RAM_Service - Matsushita Electric Industrial Co., Ltd. - C:\WINDOWS\system32\DVDRAMSV.exe

O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe

O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Fichiers communs\InstallShield\Driver\11\Intel 32\IDriverT.exe

O23 - Service: Service de l’iPod (iPod Service) - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe

O23 - Service: LiveUpdate - Symantec Corporation - C:\Program Files\Symantec\LiveUpdate\LuComServer_3_4.EXE

O23 - Service: LiveUpdate Notice - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\ccSvcHst.exe

O23 - Service: NMSAccessU - Unknown owner - C:\Program Files\CDBurnerXP\NMSAccessU.exe

O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe

O23 - Service: SiSoftware Database Agent Service (SandraDataSrv) - SiSoftware - C:\Program Files\SiSoftware\SiSoftware Sandra Lite XIb\Win32\RpcDataSrv.exe

O23 - Service: SiSoftware Sandra Agent Service (SandraTheSrv) - SiSoftware - C:\Program Files\SiSoftware\SiSoftware Sandra Lite XIb\RpcSandraSrv.exe

O23 - Service: Symantec Core LC - Unknown owner - C:\PROGRA~1\FICHIE~1\SYMANT~1\CCPD-LC\symlcsvc.exe

O23 - Service: TuneUp WinStyler Theme Service (TUWinStylerThemeSvc) - TuneUp Software GmbH - C:\Program Files\TuneUp Utilities 2006\WinStylerThemeSvc.exe

O23 - Service: Moteur Webroot Spy Sweeper (WebrootSpySweeperService) - Webroot Software, Inc. - C:\Program Files\Webroot\Spy Sweeper\SpySweeper.exe

O23 - Service: X10 Device Network Service (x10nets) - X10 - C:\PROGRA~1\COMMON~1\X10\Common\x10nets.exe

O23 - Service: ZyDAS1211BBG - Unknown owner - C:\Program Files\WIFI_LINK\WL_Utility\srvany.exe



End of file - 15802 bytes


merci pour l aide que vous pourrez m apporter






Le rapport ne montre rien d'anormal. Nous allons regarder plus en profondeur.



1) Télécharge OTViewIt de OldTimer sur ton bureau.


- Ferme toutes les fenêtres et applications.

- Double clique sur OTViewIt.exe pour le lancer.

- Dans la liste déroulante "File Age" choisis : 30 days (ou selon votre choix)

- Clique sur le bouton "Run Scan".

- Patiente quelques minutes.

- le bloc note va s'ouvrir, poste les deux rapports obtenus dans ta prochaine réponse.


Si le bloc note ne s'ouvre pas, tu les trouveras sur ton bureau : OTViewIt.txt et Extras.txt


Bonsoir Curson,


d abord merci pour l aide que tu tentes de m apporter.


j ai lancé un scan Kasperdy Virus Removal Tool qui va bientôt finir. Mais pour l instant RAS.


dès que le scan est fini je lance l utilitaire et poste la log.


@ tout'




compte rendu OTViewIt :



OTViewIt logfile created on: 04/01/2009 19:59:23 - Run

OTViewIt by OldTimer - Version Folder = I:\

Windows XP Home Edition Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation

Internet Explorer (Version = 7.0.5730.11)

Locale: 0000040C | Country: France | Language: FRA | Date Format: dd/MM/yyyy


2,00 Gb Total Physical Memory | 2,00 Gb Available Physical Memory | 100,00% Memory free

4,00 Gb Paging File | 3,62 Gb Available in Paging File | 90,58% Paging File free

Paging file location(s): c:\pagefile.sys 1536 3072;


%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files

Drive C: | 113,28 Gb Total Space | 4,89 Gb Free Space | 4,31% Space Free | Partition Type: NTFS

Drive D: | 109,97 Gb Total Space | 38,75 Gb Free Space | 35,23% Space Free | Partition Type: NTFS

Drive E: | 9,62 Gb Total Space | 7,23 Gb Free Space | 75,12% Space Free | Partition Type: FAT32

Drive F: | 232,83 Gb Total Space | 180,13 Gb Free Space | 77,37% Space Free | Partition Type: FAT32

G: Drive not present or media not loaded

H: Drive not present or media not loaded

Drive I: | 30,99 Mb Total Space | 29,51 Mb Free Space | 95,24% Space Free | Partition Type: FAT


Computer Name: LESQUALE59

Current User Name: Pascal

Logged in as Administrator.


Current Boot Mode: Normal

Scan Mode: Current user

Whitelist: On

File Age = 30 Days


========== Processes ==========


[2008/10/17 15:52:10 | 00,149,352 | ---- | M] (Symantec Corporation) -- C:\Program Files\Fichiers communs\Symantec Shared\CCSVCHST.EXE

[2008/12/31 19:00:55 | 00,419,448 | ---- | M] (Emsi Software GmbH) -- C:\Program Files\a-squared Anti-Dialer\a2service.exe

[2008/11/07 14:28:16 | 00,132,424 | ---- | M] (Apple Inc.) -- C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe

[2008/02/21 15:02:54 | 00,238,968 | ---- | M] (Symantec Corporation) -- C:\Program Files\Symantec\LiveUpdate\AluSchedulerSvc.exe

[2007/10/26 17:06:47 | 00,292,152 | ---- | M] (BillP Studios) -- C:\Program Files\BillP Studios\WinPatrol\WinPatrol.exe

[2007/03/14 16:52:50 | 03,770,024 | ---- | M] (TomTom) -- C:\Program Files\TomTom HOME\TomTomHOME.exe

[2006/10/30 12:49:54 | 16,269,312 | R--- | M] (Realtek Semiconductor Corp.) -- C:\WINDOWS\RTHDCPL.exe

[2008/04/14 03:34:20 | 00,033,792 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\rundll32.exe

[2005/05/12 20:23:56 | 00,110,739 | ---- | M] (Logitech Corp.) -- C:\Program Files\Logitech\MediaLife\MediaLifeService.exe

[2005/07/19 17:32:18 | 00,221,184 | ---- | M] (Logitech Inc.) -- C:\WINDOWS\system32\LVCOMSX.EXE

[2008/11/20 13:20:54 | 00,290,088 | ---- | M] (Apple Inc.) -- C:\Program Files\iTunes\iTunesHelper.exe

[2004/07/20 18:18:54 | 00,090,112 | ---- | M] (ICSI Technology Ltd.) -- C:\WINDOWS\Dit.exe

[2008/12/12 11:17:38 | 00,238,888 | ---- | M] (Apple Inc.) -- C:\Program Files\Bonjour\mDNSResponder.exe

[2004/04/30 13:51:18 | 00,307,200 | ---- | M] (SAGEM SA) -- C:\Program Files\Sagem Photo Easy\AzAgent.exe

[2005/06/20 13:30:08 | 00,221,281 | ---- | M] () -- C:\Program Files\Home Cinema\PowerCinema\Kernel\TV\CLCapSvc.exe

[2005/06/20 13:30:56 | 00,061,440 | ---- | M] (Cyberlink) -- C:\Program Files\CyberLink\Shared Files\CLML_NTService\CLMLServer.exe

[2005/06/20 13:30:56 | 00,737,381 | ---- | M] (Cyberlink) -- C:\Program Files\CyberLink\Shared Files\CLML_NTService\CLMLService.exe

[2005/11/23 07:58:04 | 00,765,952 | ---- | M] (Diskeeper Corporation) -- C:\Program Files\Diskeeper Corporation\Diskeeper\DkService.exe

[2008/10/17 15:52:10 | 00,149,352 | ---- | M] (Symantec Corporation) -- C:\Program Files\Fichiers communs\Symantec Shared\CCSVCHST.EXE

[2005/12/17 20:05:10 | 00,681,472 | ---- | M] (Marek Jasinski - -- D:\Outils Divers\freeCommander2005\freeCommander.exe

[2008/06/03 12:37:40 | 01,497,744 | ---- | M] (a-squared) -- C:\Program Files\a-squared Anti-Dialer\a2adguard.exe

[2008/03/01 10:09:22 | 00,160,592 | ---- | M] (Siber Systems) -- C:\Program Files\Siber Systems\AI RoboForm\robotaskbaricon.exe

[2007/03/04 23:08:42 | 01,891,416 | ---- | M] (GARMIN Corp.) -- C:\Garmin\gStart.exe

[2002/11/08 08:27:18 | 00,049,152 | ---- | M] (Matsushita Electric Industrial Co., Ltd.) -- C:\WINDOWS\system32\DVDRAMSV.exe

[2003/06/19 23:25:00 | 00,322,120 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Fichiers communs\Microsoft Shared\VS7DEBUG\MDM.EXE

[2007/08/01 19:26:26 | 01,514,016 | ---- | M] (Copernic Technologies Inc.) -- C:\Program Files\Copernic Desktop Search 2\DesktopSearchService.exe

[2005/05/25 01:40:00 | 00,450,560 | ---- | M] (Logitech Inc.) -- C:\Program Files\Logitech\SetPoint\SetPoint.exe

[2006/06/01 12:12:38 | 00,638,976 | ---- | M] (Mio Technology) -- C:\Program Files\Mio Technology\MioSync\mioSync.exe

[2007/10/12 08:34:56 | 00,071,096 | ---- | M] () -- C:\Program Files\CDBurnerXP\NMSAccessU.exe

[2002/11/21 09:40:50 | 00,151,552 | ---- | M] (Matsushita Electric Industrial Co., Ltd.) -- C:\WINDOWS\system32\RAMASST.exe

[2006/06/23 09:37:36 | 00,503,808 | ---- | M] () -- C:\Program Files\WIFI_LINK\WL_Utility\ZDWlan.exe

[2007/08/17 09:13:00 | 00,155,715 | ---- | M] (NVIDIA Corporation) -- C:\WINDOWS\system32\nvsvc32.exe

[2005/01/28 12:44:28 | 00,038,912 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\wdfmgr.exe

[2007/03/01 18:55:50 | 03,379,264 | ---- | M] (Webroot Software, Inc.) -- C:\Program Files\Webroot\Spy Sweeper\SpySweeper.exe

[2005/05/25 01:40:00 | 00,028,160 | ---- | M] (Logitech Inc.) -- C:\Program Files\Fichiers communs\Logitech\KHAL\KHALMNPR.EXE

[2003/04/18 18:06:26 | 00,008,192 | ---- | M] () -- C:\Program Files\WIFI_LINK\WL_Utility\srvany.exe

[2006/04/03 14:22:20 | 00,032,768 | ---- | M] () -- C:\Program Files\WIFI_LINK\WL_Utility\ZyDummyZD11B-BG.exe

[2005/06/20 13:30:10 | 00,110,687 | ---- | M] () -- C:\Program Files\Home Cinema\PowerCinema\Kernel\TV\CLSched.exe

[2001/11/12 12:31:48 | 00,020,480 | ---- | M] (X10) -- C:\Program Files\Common Files\X10\Common\X10nets.exe

[2008/11/20 13:20:44 | 00,536,872 | ---- | M] (Apple Inc.) -- C:\Program Files\iPod\bin\iPodService.exe

[2007/08/22 01:21:30 | 00,055,640 | ---- | M] (Symantec Corporation) -- C:\Program Files\Fichiers communs\Symantec Shared\VAScanner\comHost.exe

[2008/10/15 08:06:26 | 00,633,632 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Internet Explorer\iexplore.exe

[2006/08/31 19:33:02 | 00,115,024 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WLLoginProxy.exe

[2008/11/12 13:32:32 | 00,217,088 | ---- | M] (Kaspersky Lab) -- C:\Documents and Settings\Pascal\Bureau\Virus Removal Tool\is-FJ99I\is-FJ99I.exe

[2008/12/30 17:26:58 | 01,245,064 | ---- | M] () -- C:\Program Files\Fichiers communs\Symantec Shared\CCPD-LC\symlcsvc.exe

[2008/02/26 15:50:44 | 00,404,320 | ---- | M] (Symantec Corporation) -- C:\Program Files\Norton 360\ScanStub.exe

[2007/10/19 11:20:38 | 00,099,856 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Windows Live Toolbar\MSNTBUP.EXE

[2008/10/16 14:09:44 | 00,051,224 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\wuauclt.exe

[2009/01/04 19:27:28 | 00,422,912 | ---- | M] (OldTimer Tools) -- I:\OTViewIt.exe


========== (O23) Win32 Services ==========


[2008/12/31 19:00:55 | 00,419,448 | ---- | M] (Emsi Software GmbH) -- C:\Program Files\a-squared Anti-Dialer\a2service.exe -- (a2AntiDialer [Auto | Running])

[2008/12/30 22:27:41 | 00,419,448 | ---- | M] (Emsi Software GmbH) -- C:\Program Files\a-squared Free\a2service.exe -- (a2free [Disabled | Stopped])

[2005/10/19 18:19:10 | 00,049,152 | ---- | M] (Alpha Networks Inc.) -- C:\Program Files\ANI\ANIWZCS2 Service\ANIWZCSdS.exe -- (ANIWZCSdService [Auto | Stopped])

[2008/11/07 14:28:16 | 00,132,424 | ---- | M] (Apple Inc.) -- C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe -- (Apple Mobile Device [Auto | Running])

[2007/10/24 01:47:22 | 00,033,800 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe -- (aspnet_state [On_Demand | Stopped])

[2008/02/21 15:02:54 | 00,238,968 | ---- | M] (Symantec Corporation) -- C:\Program Files\Symantec\LiveUpdate\AluSchedulerSvc.exe -- (Automatic LiveUpdate Scheduler [Auto | Running])

[2008/12/12 11:17:38 | 00,238,888 | ---- | M] (Apple Inc.) -- C:\Program Files\Bonjour\mDNSResponder.exe -- (Bonjour Service [Auto | Running])

[2003/04/01 10:21:48 | 00,046,080 | ---- | M] (C-Dilla Ltd) -- C:\WINDOWS\system32\drivers\CDANTSRV.EXE -- (C-DillaSrv [Disabled | Stopped])

[2008/10/17 15:52:10 | 00,149,352 | ---- | M] (Symantec Corporation) -- C:\Program Files\Fichiers communs\Symantec Shared\CCSVCHST.EXE -- (ccEvtMgr [Auto | Running])

[2008/10/17 15:52:10 | 00,149,352 | ---- | M] (Symantec Corporation) -- C:\Program Files\Fichiers communs\Symantec Shared\CCSVCHST.EXE -- (ccSetMgr [Auto | Running])

[2005/06/20 13:30:08 | 00,221,281 | ---- | M] () -- C:\Program Files\Home Cinema\PowerCinema\Kernel\TV\CLCapSvc.exe -- (CLCapSvc [Auto | Running])

[2007/10/24 01:47:40 | 00,070,144 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe -- (clr_optimization_v2.0.50727_32 [On_Demand | Stopped])

[2005/06/20 13:30:10 | 00,110,687 | ---- | M] () -- C:\Program Files\Home Cinema\PowerCinema\Kernel\TV\CLSched.exe -- (CLSched [Auto | Running])

[2008/10/17 15:52:10 | 00,149,352 | ---- | M] (Symantec Corporation) -- C:\Program Files\Fichiers communs\Symantec Shared\CCSVCHST.EXE -- (CLTNetCnService [Auto | Running])

[2007/08/22 01:21:30 | 00,055,640 | ---- | M] (Symantec Corporation) -- C:\Program Files\Fichiers communs\Symantec Shared\VAScanner\comHost.exe -- (comHost [On_Demand | Running])

[2005/06/20 13:30:56 | 00,061,440 | ---- | M] (Cyberlink) -- C:\Program Files\CyberLink\Shared Files\CLML_NTService\CLMLServer.exe -- (CyberLink Media Library Service [Auto | Running])

[2005/11/23 07:58:04 | 00,765,952 | ---- | M] (Diskeeper Corporation) -- C:\Program Files\Diskeeper Corporation\Diskeeper\DkService.exe -- (Diskeeper [Auto | Running])

[2002/11/08 08:27:18 | 00,049,152 | ---- | M] (Matsushita Electric Industrial Co., Ltd.) -- C:\WINDOWS\system32\DVDRAMSV.exe -- (DVD-RAM_Service [Auto | Running])

[2007/12/29 09:04:06 | 00,654,848 | ---- | M] (Macrovision Europe Ltd.) -- C:\Program Files\Fichiers communs\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe -- (FLEXnet Licensing Service [Disabled | Stopped])

[2007/10/09 12:58:12 | 00,036,864 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe -- (FontCache3.0.0.0 [On_Demand | Stopped])

[2008/01/10 18:10:10 | 00,138,168 | ---- | M] (Google) -- C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe -- (gusvc [On_Demand | Stopped])

[2005/04/04 00:41:10 | 00,069,632 | ---- | M] (Macrovision Corporation) -- C:\Program Files\Fichiers communs\InstallShield\Driver\11\Intel 32\IDriverT.exe -- (IDriverT [On_Demand | Stopped])

[2007/10/11 09:55:10 | 00,864,256 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe -- (idsvc [unknown | Stopped])

[2008/11/20 13:20:44 | 00,536,872 | ---- | M] (Apple Inc.) -- C:\Program Files\iPod\bin\iPodService.exe -- (iPod Service [On_Demand | Running])

[2008/09/05 11:52:32 | 03,220,856 | ---- | M] (Symantec Corporation) -- C:\Program Files\Symantec\LiveUpdate\LuComServer_3_4.EXE -- (LiveUpdate [On_Demand | Stopped])

[2008/10/17 15:52:10 | 00,149,352 | ---- | M] (Symantec Corporation) -- C:\Program Files\Fichiers communs\Symantec Shared\CCSVCHST.EXE -- (LiveUpdate Notice [Auto | Running])

[2003/06/19 23:25:00 | 00,322,120 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Fichiers communs\Microsoft Shared\VS7DEBUG\MDM.EXE -- (MDM [Auto | Running])

[2007/10/11 09:55:14 | 00,122,880 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe -- (NetTcpPortSharing [Disabled | Stopped])

[2007/10/12 08:34:56 | 00,071,096 | ---- | M] () -- C:\Program Files\CDBurnerXP\NMSAccessU.exe -- (NMSAccessU [Auto | Running])

[2007/08/17 09:13:00 | 00,155,715 | ---- | M] (NVIDIA Corporation) -- C:\WINDOWS\system32\nvsvc32.exe -- (NVSvc [Auto | Running])

[2003/07/28 20:28:22 | 00,089,136 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Fichiers communs\Microsoft Shared\Source Engine\OSE.EXE -- (ose [On_Demand | Stopped])

[2006/11/24 21:56:54 | 00,123,064 | ---- | M] (SiSoftware) -- C:\Program Files\SiSoftware\SiSoftware Sandra Lite XIb\Win32\RpcDataSrv.exe -- (SandraDataSrv [On_Demand | Stopped])

[2006/11/24 21:56:28 | 01,138,880 | ---- | M] (SiSoftware) -- C:\Program Files\SiSoftware\SiSoftware Sandra Lite XIb\RpcSandraSrv.exe -- (SandraTheSrv [On_Demand | Stopped])

[2008/12/30 17:26:58 | 01,245,064 | ---- | M] () -- C:\Program Files\Fichiers communs\Symantec Shared\CCPD-LC\symlcsvc.exe -- (Symantec Core LC [On_Demand | Running])

[2005/08/10 22:17:28 | 00,118,272 | ---- | M] (TuneUp Software GmbH) -- C:\Program Files\TuneUp Utilities 2006\WinStylerThemeSvc.exe -- (TUWinStylerThemeSvc [On_Demand | Stopped])

[2005/01/28 12:44:28 | 00,038,912 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\wdfmgr.exe -- (UMWdf [Auto | Running])

[2007/01/19 11:54:14 | 00,097,136 | ---- | M] (Microsoft Corporation) -- C:\Program Files\MSN Messenger\usnsvc.exe -- (usnjsvc [On_Demand | Stopped])

[2008/12/28 17:47:31 | 00,075,304 | ---- | M] (Zone Labs, LLC) -- C:\WINDOWS\system32\ZoneLabs\vsmon.exe -- (vsmon [Disabled | Stopped])

[2007/03/01 18:55:50 | 03,379,264 | ---- | M] (Webroot Software, Inc.) -- C:\Program Files\Webroot\Spy Sweeper\SpySweeper.exe -- (WebrootSpySweeperService [Auto | Running])

[2004/08/10 23:46:56 | 00,483,328 | ---- | M] (Microsoft Corporation) -- c:\Program Files\Windows Media Connect\mswmccds.exe -- (WmcCds [unknown | Stopped])

[2004/08/10 20:50:42 | 00,028,160 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Windows Media Connect\mswmcls.exe -- (WmcCdsLs [On_Demand | Stopped])

[2001/11/12 12:31:48 | 00,020,480 | ---- | M] (X10) -- C:\Program Files\Common Files\X10\Common\X10nets.exe -- (x10nets [On_Demand | Running])

[2003/04/18 18:06:26 | 00,008,192 | ---- | M] () -- C:\Program Files\WIFI_LINK\WL_Utility\srvany.exe -- (ZyDAS1211BBG [Auto | Running])


========== Driver Services ==========


[2005/05/27 11:51:00 | 00,799,744 | R--- | M] (Philips Semiconductors GmbH) -- C:\WINDOWS\system32\drivers\3xHybrid.sys -- (3xHybrid [On_Demand | Running])

[2006/09/29 04:14:51 | 00,347,648 | R--- | M] (D-Link Corporation) -- C:\WINDOWS\system32\drivers\A5AGU.sys -- (A5AGU [On_Demand | Stopped])

[2005/03/09 15:53:00 | 00,043,008 | ---- | M] (Advanced Micro Devices) -- C:\WINDOWS\system32\drivers\AmdK8.sys -- (AmdK8 [system | Running])

[2005/12/11 11:55:38 | 00,028,195 | ---- | M] (Alpha Networks Inc.) -- C:\WINDOWS\system32\ANIO.sys -- (ANIO [Auto | Running])

[1999/09/10 12:06:00 | 00,025,244 | ---- | M] (Adaptec) -- C:\WINDOWS\System32\drivers\Aspi32.sys -- (Aspi32 [Auto | Running])

[2005/06/08 18:44:20 | 00,020,608 | ---- | M] (Printing Communications Assoc., Inc. (PCAUSA)) -- C:\WINDOWS\system32\drivers\BRGSp50.sys -- (BRGSp50 [On_Demand | Stopped])

[2003/04/01 10:23:22 | 00,058,288 | ---- | M] (Macrovision) -- C:\WINDOWS\system32\drivers\CDANT.SYS -- (C-Dilla [On_Demand | Stopped])

[2004/10/08 12:59:12 | 00,326,656 | ---- | M] (Logitech Inc.) -- C:\WINDOWS\system32\drivers\Camdrl.sys -- (CamDrL [On_Demand | Stopped])

[2009/01/03 21:04:56 | 00,017,408 | ---- | M] (ICSI Technology Ltd.) -- C:\WINDOWS\system32\drivers\USBCRFT.SYS -- (CardReaderFilter [On_Demand | Stopped])

[2003/12/09 18:24:58 | 00,067,024 | ---- | M] (Roxio) -- C:\WINDOWS\System32\drivers\cdr4_xp.sys -- (Cdr4_xp [system | Running])

[2003/12/09 18:24:58 | 00,024,698 | ---- | M] (Roxio) -- C:\WINDOWS\System32\drivers\cdralw2k.sys -- (Cdralw2k [system | Running])

[2003/12/09 18:24:58 | 00,259,968 | ---- | M] (Roxio) -- C:\WINDOWS\System32\drivers\Cdudf_xp.sys -- (cdudf_xp [system | Running])

[2004/12/17 01:29:29 | 00,804,800 | ---- | M] (C-Media Inc) -- C:\WINDOWS\system32\drivers\cmuda.sys -- (cmuda [On_Demand | Stopped])

[2008/07/30 17:42:12 | 00,023,888 | ---- | M] (Symantec Corporation) -- C:\WINDOWS\system32\drivers\COH_Mon.sys -- (COH_Mon [On_Demand | Stopped])

[2007/08/08 17:39:56 | 00,036,056 | ---- | M] (Symantec Corporation) -- C:\WINDOWS\system32\drivers\CO_Mon.sys -- (CO_Mon [Auto | Running])

[2005/10/01 09:36:28 | 00,006,144 | ---- | M] () -- C:\Program Files\HardwareDetection\driverhardwarev2.sys -- (driverhardwarev2 [On_Demand | Stopped])

[2006/05/13 17:13:05 | 00,223,128 | ---- | M] () -- C:\WINDOWS\system32\drivers\dtscsi.sys -- (dtscsi [On_Demand | Running])

[2003/12/09 18:24:58 | 00,146,560 | ---- | M] (Roxio) -- C:\WINDOWS\System32\drivers\DVDVRRdr_xp.sys -- (DVDVRRdr_xp [system | Running])

[2003/12/09 18:24:58 | 00,021,993 | ---- | M] (Roxio) -- C:\WINDOWS\System32\drivers\Dvd_2k.sys -- (dvd_2K [On_Demand | Running])

[2008/12/17 10:00:00 | 00,371,248 | ---- | M] (Symantec Corporation) -- C:\Program Files\Fichiers communs\Symantec Shared\EENGINE\eeCtrl.sys -- (eeCtrl [system | Running])

[2001/08/17 21:11:05 | 00,066,591 | ---- | M] (3Com Corporation) -- C:\WINDOWS\system32\drivers\el90xbc5.sys -- (EL90XBC [On_Demand | Stopped])

[2008/12/17 10:00:00 | 00,099,376 | ---- | M] (Symantec Corporation) -- C:\Program Files\Fichiers communs\Symantec Shared\EENGINE\EraserUtilRebootDrv.sys -- (EraserUtilRebootDrv [On_Demand | Running])

[2008/04/17 13:12:54 | 00,015,464 | ---- | M] (GEAR Software Inc.) -- C:\WINDOWS\system32\drivers\GEARAspiWDM.sys -- (GEARAspiWDM [On_Demand | Running])

[1996/04/03 20:33:26 | 00,005,248 | ---- | M] () -- C:\WINDOWS\system32\giveio.sys -- (giveio [boot | Running])

[2008/04/13 17:36:05 | 00,144,384 | ---- | M] (Windows ® Server 2003 DDK provider) -- C:\WINDOWS\system32\drivers\hdaudbus.sys -- (HDAudBus [On_Demand | Running])

[2006/11/03 02:32:30 | 04,394,496 | R--- | M] (Realtek Semiconductor Corp.) -- C:\WINDOWS\system32\drivers\RtkHDAud.Sys -- (IntcAzAudAddService [On_Demand | Running])

[2001/08/17 21:51:32 | 00,018,688 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\drivers\irsir.sys -- (irsir [On_Demand | Running])

[2005/11/16 00:42:48 | 00,045,056 | ---- | M] (InterVideo) -- C:\WINDOWS\system32\drivers\iviVD.sys -- (iviVD [boot | Running])

[2008/04/14 03:05:15 | 00,014,720 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\drivers\kbdhid.sys -- (kbdhid [system | Stopped])

[2005/05/20 14:00:36 | 00,013,056 | ---- | M] (Logitech, Inc.) -- C:\WINDOWS\system32\drivers\L8042Kbd.sys -- (L8042Kbd [On_Demand | Running])

[2005/05/20 14:00:48 | 00,054,528 | ---- | M] (Logitech, Inc.) -- C:\WINDOWS\system32\drivers\L8042mou.Sys -- (L8042mou [On_Demand | Running])

[2005/10/18 07:28:08 | 00,014,848 | ---- | M] (LaCie Group S.A.) -- C:\WINDOWS\system32\drivers\LaCieFWFilter.sys -- (LaCieFWFilter [On_Demand | Stopped])

[2005/10/19 08:34:02 | 00,015,872 | ---- | M] (LaCie Group) -- C:\WINDOWS\system32\drivers\LaCieUSBFilter.sys -- (LaCieUSBFilter [On_Demand | Stopped])

[2005/05/20 14:01:32 | 00,025,600 | ---- | M] (Logitech, Inc.) -- C:\WINDOWS\system32\drivers\LHidKE.Sys -- (LHidKe [On_Demand | Stopped])

[2005/05/20 14:01:26 | 00,068,352 | ---- | M] (Logitech, Inc.) -- C:\WINDOWS\system32\drivers\LMouKE.Sys -- (LMouKE [On_Demand | Running])

[2005/05/27 09:31:28 | 00,022,016 | ---- | M] (Logitech Inc.) -- C:\WINDOWS\system32\drivers\LVUSBSta.sys -- (LVUSBSta [On_Demand | Stopped])

[2003/01/31 11:45:56 | 00,090,416 | ---- | M] (Matsushita Electric Industrial Co.,Ltd.) -- C:\WINDOWS\system32\drivers\meiudf.sys -- (meiudf [system | Running])

[2001/08/17 20:58:04 | 00,008,320 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\drivers\memcard.sys -- (memcard [On_Demand | Stopped])

[2003/12/09 18:24:58 | 00,022,777 | ---- | M] (Roxio) -- C:\WINDOWS\System32\drivers\Mmc_2k.sys -- (mmc_2K [On_Demand | Stopped])

[2008/04/13 19:46:22 | 00,015,232 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\drivers\mpe.sys -- (MPE [On_Demand | Stopped])

[2008/12/17 10:00:00 | 00,089,104 | ---- | M] (Symantec Corporation) -- C:\Program Files\Fichiers communs\Symantec Shared\VirusDefs\20090103.021\NAVENG.SYS -- (NAVENG [On_Demand | Running])

[2008/12/17 10:00:00 | 00,876,112 | ---- | M] (Symantec Corporation) -- C:\Program Files\Fichiers communs\Symantec Shared\VirusDefs\20090103.021\NAVEX15.SYS -- (NAVEX15 [On_Demand | Running])

[2003/04/03 00:54:16 | 00,020,648 | R--- | M] (Thomson Inc.) -- C:\WINDOWS\system32\drivers\netrcacm.sys -- (netrcacm [On_Demand | Stopped])

[2007/08/17 09:13:00 | 06,845,152 | ---- | M] (NVIDIA Corporation) -- C:\WINDOWS\system32\drivers\nv4_mini.sys -- (nv [On_Demand | Running])

[2007/03/06 05:27:28 | 00,058,752 | R--- | M] (NVIDIA Corporation) -- C:\WINDOWS\system32\drivers\NVENETFD.sys -- (NVENETFD [On_Demand | Running])

[2007/03/06 05:27:32 | 00,019,968 | R--- | M] (NVIDIA Corporation) -- C:\WINDOWS\system32\drivers\nvnetbus.sys -- (nvnetbus [On_Demand | Running])

[2007/02/16 01:50:32 | 00,012,032 | R--- | M] (NVIDIA Corporation) -- C:\WINDOWS\system32\drivers\nvsmu.sys -- (nvsmu [On_Demand | Running])

[2007/12/02 10:40:56 | 00,016,694 | ---- | M] (PalmSource, Inc.) -- C:\WINDOWS\system32\drivers\PalmUSBD.sys -- (PalmUSBD [On_Demand | Stopped])

[2006/08/12 15:02:57 | 00,047,360 | ---- | M] (VSO Software) -- C:\WINDOWS\system32\drivers\pcouffin.sys -- (Pcouffin [On_Demand | Running])

[2004/01/16 09:31:56 | 00,380,736 | R--- | M] () -- C:\WINDOWS\system32\drivers\PRISMA00.sys -- (PRISM_A00 [On_Demand | Stopped])

[2004/08/05 12:59:59 | 00,017,792 | ---- | M] (Parallel Technologies, Inc.) -- C:\WINDOWS\system32\drivers\ptilink.sys -- (Ptilink [On_Demand | Running])

[2003/12/09 18:24:58 | 00,118,409 | ---- | M] (Roxio) -- C:\WINDOWS\System32\drivers\pwd_2K.sys -- (pwd_2k [system | Running])

[2006/01/06 17:52:42 | 00,020,640 | ---- | M] (Sonic Solutions) -- C:\WINDOWS\system32\drivers\PxHelp20.sys -- (PxHelp20 [boot | Running])

[2008/04/13 19:40:48 | 00,043,904 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\drivers\sbp2port.sys -- (sbp2port [boot | Running])

[2006/05/01 12:16:22 | 00,061,600 | R--- | M] (MCCI) -- C:\WINDOWS\system32\drivers\SE2Ebus.sys -- (SE2Ebus [On_Demand | Stopped])

[2006/05/01 12:17:12 | 00,009,360 | R--- | M] (MCCI) -- C:\WINDOWS\system32\drivers\SE2Emdfl.sys -- (SE2Emdfl [On_Demand | Stopped])

[2006/05/01 12:17:16 | 00,097,184 | R--- | M] (MCCI) -- C:\WINDOWS\system32\drivers\SE2Emdm.sys -- (SE2Emdm [On_Demand | Stopped])

[2006/05/01 12:18:04 | 00,088,688 | R--- | M] (MCCI) -- C:\WINDOWS\system32\drivers\SE2Emgmt.sys -- (SE2Emgmt [On_Demand | Stopped])

[2006/05/01 12:15:50 | 00,018,704 | R--- | M] (MCCI) -- C:\WINDOWS\system32\drivers\se2End5.sys -- (se2End5 [On_Demand | Stopped])

[2006/05/01 12:18:54 | 00,086,560 | R--- | M] (MCCI) -- C:\WINDOWS\system32\drivers\SE2Eobex.sys -- (SE2Eobex [On_Demand | Stopped])

[2006/05/01 12:15:44 | 00,090,800 | R--- | M] (MCCI) -- C:\WINDOWS\system32\drivers\se2Eunic.sys -- (se2Eunic [On_Demand | Stopped])

[2007/11/13 11:25:54 | 00,020,480 | ---- | M] (Macrovision Corporation, Macrovision Europe Limited, and Macrovision Japan and Asia K.K.) -- C:\WINDOWS\system32\drivers\secdrv.sys -- (Secdrv [Auto | Running])

[2008/09/05 14:31:42 | 00,447,024 | ---- | M] (Symantec Corporation) -- C:\Program Files\Fichiers communs\Symantec Shared\SPBBC\SPBBCDrv.sys -- (SPBBCDrv [system | Running])

[2006/09/24 14:28:47 | 00,005,248 | ---- | M] (Windows ® 2000 DDK provider) -- C:\WINDOWS\system32\speedfan.sys -- (speedfan [boot | Running])

[2006/05/13 16:50:37 | 00,642,560 | ---- | M] () -- C:\WINDOWS\system32\drivers\sptd.sys -- (sptd [boot | Running])

[2008/02/01 02:51:16 | 00,279,088 | ---- | M] (Symantec Corporation) -- C:\WINDOWS\system32\drivers\srtsp.sys -- (SRTSP [On_Demand | Running])

[2008/02/01 02:51:16 | 00,317,616 | ---- | M] (Symantec Corporation) -- C:\WINDOWS\system32\drivers\srtspl.sys -- (SRTSPL [On_Demand | Stopped])

[2008/02/01 02:51:16 | 00,043,696 | ---- | M] (Symantec Corporation) -- C:\WINDOWS\system32\drivers\srtspx.sys -- (SRTSPX [system | Running])

[2007/03/01 18:54:16 | 00,020,544 | ---- | M] (Webroot Software Inc ( -- C:\WINDOWS\system32\drivers\SSFS0509.sys -- (SSFS0509 [boot | Running])

[2007/03/01 18:54:16 | 00,022,080 | ---- | M] (Webroot Software Inc ( -- C:\WINDOWS\system32\drivers\sshrmd.sys -- (SSHRMD [boot | Running])

[2007/03/01 18:54:18 | 00,144,960 | ---- | M] (Webroot Software Inc ( -- C:\WINDOWS\system32\drivers\ssidrv.sys -- (SSIDRV [boot | Running])

[2007/03/01 18:54:22 | 00,021,056 | ---- | M] (Webroot Software Inc ( -- C:\WINDOWS\system32\drivers\sskbfd.sys -- (SSKBFD [On_Demand | Running])

[2008/06/13 14:13:38 | 00,013,616 | ---- | M] (Symantec Corporation) -- C:\WINDOWS\system32\drivers\symdns.sys -- (SYMDNS [On_Demand | Running])

[2008/12/30 19:22:14 | 00,123,952 | ---- | M] (Symantec Corporation) -- C:\WINDOWS\system32\drivers\SYMEVENT.SYS -- (SymEvent [On_Demand | Running])

[2008/06/13 14:13:38 | 00,096,432 | ---- | M] (Symantec Corporation) -- C:\WINDOWS\system32\drivers\symfw.sys -- (SYMFW [On_Demand | Running])

[2008/06/13 14:13:38 | 00,038,576 | ---- | M] (Symantec Corporation) -- C:\WINDOWS\system32\drivers\symids.sys -- (SYMIDS [On_Demand | Running])

[2008/12/05 00:11:44 | 00,250,224 | ---- | M] (Symantec Corporation) -- C:\Program Files\Fichiers communs\Symantec Shared\SymcData\ipsdefs\20081220.001\SymIDSco.sys -- (SYMIDSCO [On_Demand | Running])

[2008/06/13 14:14:02 | 00,031,280 | ---- | M] (Symantec Corporation) -- C:\WINDOWS\system32\drivers\SymIM.sys -- (SymIM [On_Demand | Stopped])

[2008/06/13 14:14:02 | 00,031,280 | ---- | M] (Symantec Corporation) -- C:\WINDOWS\system32\drivers\SymIM.sys -- (SymIMMP [On_Demand | Running])

[2008/06/13 14:13:38 | 00,037,424 | ---- | M] (Symantec Corporation) -- C:\WINDOWS\system32\drivers\symndis.sys -- (SYMNDIS [On_Demand | Running])

[2008/06/13 14:13:38 | 00,022,320 | ---- | M] (Symantec Corporation) -- C:\WINDOWS\system32\drivers\symredrv.sys -- (SYMREDRV [On_Demand | Running])

[2008/06/13 14:13:40 | 00,184,240 | ---- | M] (Symantec Corporation) -- C:\WINDOWS\system32\drivers\symtdi.sys -- (SYMTDI [system | Running])

[2003/06/24 14:23:10 | 00,139,136 | ---- | M] (M-Systems) -- C:\WINDOWS\system32\drivers\tffs.sys -- (tffs [boot | Running])

[2008/04/13 19:40:50 | 00,149,376 | ---- | M] (M-Systems) -- C:\WINDOWS\system32\drivers\tffsport.sys -- (tffsport [boot | Running])

[2003/12/09 18:24:58 | 00,213,120 | ---- | M] (Roxio) -- C:\WINDOWS\System32\drivers\UdfReadr_xp.sys -- (UdfReadr_xp [system | Running])

[2008/11/07 14:23:30 | 00,032,000 | ---- | M] (Apple, Inc.) -- C:\WINDOWS\system32\drivers\usbaapl.sys -- (USBAAPL [On_Demand | Stopped])

[2008/04/13 19:45:12 | 00,060,032 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\drivers\usbaudio.sys -- (usbaudio [On_Demand | Stopped])

[2007/12/13 19:27:14 | 00,394,952 | ---- | M] (Zone Labs, LLC) -- C:\WINDOWS\system32\vsdatant.sys -- (vsdatant [system | Running])

[2003/01/10 15:13:03 | 00,033,588 | ---- | M] (America Online, Inc.) -- C:\WINDOWS\system32\drivers\wanatw4.sys -- (wanatw [On_Demand | Stopped])

[2006/04/27 02:53:46 | 00,037,768 | R--- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\drivers\wceusbsh.sys -- (wceusbsh [On_Demand | Stopped])

[2008/04/13 19:36:38 | 00,008,832 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\drivers\wmiacpi.sys -- (WmiAcpi [system | Running])

[2004/08/05 12:59:59 | 00,012,032 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\drivers\ws2ifsl.sys -- (WS2IFSL [system | Running])

[2006/02/17 20:26:30 | 00,058,288 | R--- | M] (MCCI) -- C:\WINDOWS\system32\drivers\z530bus.sys -- (z530bus [On_Demand | Stopped])

[2006/02/17 20:26:34 | 00,008,336 | R--- | M] (MCCI) -- C:\WINDOWS\system32\drivers\z530mdfl.sys -- (z530mdfl [On_Demand | Stopped])

[2006/02/17 20:26:36 | 00,094,064 | R--- | M] (MCCI) -- C:\WINDOWS\system32\drivers\z530mdm.sys -- (z530mdm [On_Demand | Stopped])

[2006/02/17 20:26:40 | 00,085,408 | R--- | M] (MCCI) -- C:\WINDOWS\system32\drivers\z530mgmt.sys -- (z530mgmt [On_Demand | Stopped])

[2006/02/17 20:26:42 | 00,083,344 | R--- | M] (MCCI) -- C:\WINDOWS\system32\drivers\z530obex.sys -- (z530obex [On_Demand | Stopped])

[2005/10/28 11:38:18 | 00,402,432 | ---- | M] (ZyDAS Technology Corporation) -- C:\WINDOWS\system32\drivers\ZD1211BU.sys -- (ZD1211BU(MAYFLASH) [On_Demand | Stopped])

[2004/10/25 13:40:58 | 00,017,664 | ---- | M] (Printing Communications Assoc., Inc. (PCAUSA)) -- C:\WINDOWS\system32\drivers\ZDPSp50.sys -- (ZDPSp50 [On_Demand | Running])

[2008/07/08 13:54:02 | 00,148,496 | ---- | M] (Kaspersky Lab) -- C:\WINDOWS\system32\drivers\01445989.sys -- (is-FJ99Idrv [system | Running])


========== (R ) Internet Explorer ==========


[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Main]




"Extensions Off Page"=about:NoAdd-ons

"Local Page"=%SystemRoot%\system32\blank.htm

"Search Page"=

"Security Risk Page"=about:SecurityRisk

"Start Page"=


[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Search]




[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\Main]

"Local Page"=C:\WINDOWS\system32\blank.htm


"Search Page"=



"Start Page"=


[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\SearchURL]



[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\URLSearchHooks]

"{CFBFAE00-17A6-11D0-99CB-00C04FD64497}" (HKLM) -- C:\WINDOWS\system32\ieframe.dll (Microsoft Corporation)


[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Internet Settings]

"ProxyEnable" = 0

"ProxyOverride" =;localhost;*.local


========== (O1) Hosts File ==========


HOSTS File = (736 bytes) - C:\WINDOWS\System32\drivers\etc\Hosts

First 25 entries... localhost


========== (O2) BHO's ==========


[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\]

{06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} (HKLM) -- C:\Program Files\Fichiers communs\Adobe\Acrobat\ActiveX\AcroIEHelper.dll (Adobe Systems Incorporated)

{4A3A071E-F913-4eee-AE15-AEFFA16FB6BC} (HKLM) -- C:\Program Files\Webroot\Pop-Up Washer\VAPopUpKiller.dll (Webroot Software, Inc.)

{602ADB0E-4AFF-4217-8AA1-95DAC4DFA408} (HKLM) -- C:\Program Files\Fichiers communs\Symantec Shared\coShared\Browser\2.6\CoIEPlg.dll (Symantec Corporation)

{6D53EC84-6AAE-4787-AEEE-F4628F01010C} (HKLM) -- C:\Program Files\Fichiers communs\Symantec Shared\IDS\IPSBHO.dll (Symantec Corporation)

{724d43a9-0d85-11d4-9908-00400523e39a} (HKLM) -- C:\Program Files\Siber Systems\AI RoboForm\roboform.dll (Siber Systems)

{7E853D72-626A-48EC-A868-BA8D5E23E045} (HKLM) -- Reg Error: Key does not exist or could not be opened. File not found

{9030D464-4C02-4ABF-8ECC-5164760863C6} (HKLM) -- C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corporation)

{BDBD1DAD-C946-4A17-ADC1-64B5B4FF55D0} (HKLM) -- C:\Program Files\Windows Live Toolbar\msntb.dll (Microsoft Corporation)


========== (O3) Toolbars ==========


[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\ToolBar]

"{724d43a0-0d85-11d4-9908-00400523e39a}" (HKLM) -- C:\Program Files\Siber Systems\AI RoboForm\roboform.dll (Siber Systems)


[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\ToolBar]

"{7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA}" (HKLM) -- C:\Program Files\Fichiers communs\Symantec Shared\coShared\Browser\2.6\CoIEPlg.dll (Symantec Corporation)


[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\ToolBar]

"{968631B6-4729-440D-9BF4-251F5593EC9A}" (HKLM) -- C:\Program Files\Copernic Desktop Search 2\DesktopSearchBand201013011.dll (Copernic Technologies Inc.)


[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\ToolBar]

"{BDAD1DAD-C946-4A17-ADC1-64B5B4FF55D0}" (HKLM) -- C:\Program Files\Windows Live Toolbar\msntb.dll (Microsoft Corporation)


[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Toolbar\ShellBrowser]

"{724D43A0-0D85-11D4-9908-00400523E39A}" (HKLM) -- C:\Program Files\Siber Systems\AI RoboForm\roboform.dll (Siber Systems)

"{2318C2B1-4965-11D4-9B18-009027A5CD4F}" (HKLM) -- C:\Program Files\Google\Google Toolbar\GoogleToolbar.dll ()

"{4982D40A-C53B-4615-B15B-B5B5E98D167C}" (HKLM) -- Reg Error: Key does not exist or could not be opened. File not found

"{724D43A0-0D85-11D4-9908-00400523E39A}" (HKLM) -- C:\Program Files\Siber Systems\AI RoboForm\roboform.dll (Siber Systems)

"{7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA}" (HKLM) -- C:\Program Files\Fichiers communs\Symantec Shared\coShared\Browser\2.6\CoIEPlg.dll (Symantec Corporation)

"{968631B6-4729-440D-9BF4-251F5593EC9A}" (HKLM) -- C:\Program Files\Copernic Desktop Search 2\DesktopSearchBand201013011.dll (Copernic Technologies Inc.)

"{BDAD1DAD-C946-4A17-ADC1-64B5B4FF55D0}" (HKLM) -- C:\Program Files\Windows Live Toolbar\msntb.dll (Microsoft Corporation)


========== (O4) Run Keys ==========



"ANIWZCS2Service"="C:\Program Files\ANI\ANIWZCS2 Service\WZCSLDR2.exe" (Alpha Networks Inc.)

"AppleSyncNotifier"="C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleSyncNotifier.exe" (Apple Inc.)

"a-squared"="C:\Program Files\a-squared Anti-Dialer\a2adguard.exe" (a-squared)

"a-squared Anti-Dialer"="C:\Program Files\a-squared Anti-Dialer\a2adguard.exe" /d=60 (a-squared)

"AzAgent"="C:\Program Files\Sagem Photo Easy\AzAgent.exe" (SAGEM SA)

"ccApp"="C:\Program Files\Fichiers communs\Symantec Shared\ccApp.exe" (Symantec Corporation)

"Dit"=Dit.exe (ICSI Technology Ltd.)

"iTunesHelper"="C:\Program Files\iTunes\iTunesHelper.exe" (Apple Inc.)

"Logitech Hardware Abstraction Layer"=KHALMNPR.EXE (Logitech Inc.)

"LogitechVideoRepair"="C:\Program Files\Logitech\Video\ISStart.exe" (Logitech Inc.)

"LVCOMSX"=C:\WINDOWS\system32\LVCOMSX.EXE (Logitech Inc.)

"MediaLifeService"="C:\Program Files\Logitech\MediaLife\MediaLifeService.exe" (Logitech Corp.)

"NeroFilterCheck"=C:\WINDOWS\system32\NeroCheck.exe (Ahead Software Gmbh)

"NvCplDaemon"="RUNDLL32.EXE" C:\WINDOWS\system32\NvCpl.dll,NvStartup (NVIDIA Corporation)

"NvMediaCenter"="RUNDLL32.EXE" C:\WINDOWS\system32\NvMcTray.dll,NvTaskbarInit (NVIDIA Corporation)

"nwiz"="nwiz.exe" /install ()

"osCheck"="C:\Program Files\Norton 360\osCheck.exe" (Symantec Corporation)

"QuickTime Task"="C:\Program Files\QuickTime\qttask.exe" -atboottime (Apple Inc.)

"RoxioEngineUtility"="C:\Program Files\Fichiers communs\Roxio Shared\System\EngUtil.exe" (Roxio)

"RTHDCPL"=RTHDCPL.EXE (Realtek Semiconductor Corp.)

"SkyTel"=SkyTel.EXE (Realtek Semiconductor Corp.)

"TomTomHOME.exe"="C:\Program Files\TomTom HOME\TomTomHOME.exe" -s (TomTom)

"Ulead AutoDetector v2"="C:\Program Files\Fichiers communs\Ulead Systems\AutoDetector\monitor.exe" (Ulead Systems, Inc.)

"WinPatrol"="C:\Program Files\BillP Studios\WinPatrol\WinPatrol.exe" (BillP Studios)

"ZoneAlarm Client"="C:\Program Files\Zone Labs\ZoneAlarm\zlclient.exe" (Zone Labs, LLC)



"Copernic Desktop Search 2"="C:\Program Files\Copernic Desktop Search 2\DesktopSearchService.exe" /tray (Copernic Technologies Inc.)

"gStart"=C:\Garmin\gStart.exe (GARMIN Corp.)

"RoboForm"="C:\Program Files\Siber Systems\AI RoboForm\RoboTaskBarIcon.exe" (Siber Systems)


========== (O4) Startup Folders ==========


[2005/05/25 01:40:00 | 00,450,560 | ---- | M] (Logitech Inc.) -- C:\Documents and Settings\All Users\Menu Démarrer\Programmes\Démarrage\Logitech SetPoint.lnk = C:\Program Files\Logitech\SetPoint\SetPoint.exe

[2006/06/01 12:12:38 | 00,638,976 | ---- | M] (Mio Technology) -- C:\Documents and Settings\All Users\Menu Démarrer\Programmes\Démarrage\MioSync.lnk = C:\Program Files\Mio Technology\MioSync\mioSync.exe

[2002/11/21 09:40:50 | 00,151,552 | ---- | M] (Matsushita Electric Industrial Co., Ltd.) -- C:\Documents and Settings\All Users\Menu Démarrer\Programmes\Démarrage\RAMASST.lnk = C:\WINDOWS\system32\RAMASST.exe

[2006/06/23 09:37:36 | 00,503,808 | ---- | M] () -- C:\Documents and Settings\All Users\Menu Démarrer\Programmes\Démarrage\WL Utility.lnk = C:\Program Files\WIFI_LINK\WL_Utility\ZDWlan.exe

[2008/11/12 13:33:26 | 00,065,536 | ---- | M] () -- C:\Documents and Settings\Pascal\Menu Démarrer\Programmes\Démarrage\is-FJ99I.lnk = C:\Documents and Settings\Pascal\Bureau\Virus Removal Tool\is-FJ99I\startup.exe


========== (O6 & O7) Current Version Policies ==========




















========== (O8) IE Context Menu Extensions ==========


[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\MenuExt\]

&Windows Live Search: C:\Program Files\Windows Live Toolbar\msntb.dll [2007/10/19 11:20:48 | 00,546,320 | ---- | M] (Microsoft Corporation)


========== (O9) IE Extensions ==========


[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Extensions\]

{08B0E5C0-4FCB-11CF-AAA5-00401C608501}: Menu: Console Java (Sun) -- %ProgramFiles%\Java\jre1.5.0_05\bin\NPJPI150_05.dll [2005/08/26 17:33:54 | 00,069,746 | ---- | M] (Sun Microsystems, Inc.)

{85d1f590-48f4-11d9-9669-0800200c9a66}: Menu: Uninstall BitDefender Online Scanner v8 -- %SystemRoot%\bdoscandel.exe [2006/05/25 01:22:06 | 00,053,248 | ---- | M] ()

{92780B25-18CC-41C8-B9BE-3C9C571A8263}: Button: Recherche -- %ProgramFiles%\Microsoft Office\OFFICE11\REFIEBAR.DLL [2007/04/19 13:10:18 | 00,063,840 | ---- | M] (Microsoft Corporation)

{e2e2dd38-d088-4134-82b7-f2ba38496583}: Menu: @xpsp3res.dll,-20001 -- %SystemRoot%\network diagnostic\xpnetdiag.exe [2008/04/13 19:53:32 | 00,558,080 | ---- | M] (Microsoft Corporation)

{FB5F1910-F110-11d2-BB9E-00C04F795683}: Button: Messenger -- %ProgramFiles%\Messenger\msmsgs.exe [2008/04/14 03:34:13 | 01,695,232 | -HS- | M] (Microsoft Corporation)

{FB5F1910-F110-11d2-BB9E-00C04F795683}: Menu: Windows Messenger -- %ProgramFiles%\Messenger\msmsgs.exe [2008/04/14 03:34:13 | 01,695,232 | -HS- | M] (Microsoft Corporation)


[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\Extensions\]

CmdMapping\\{08B0E5C0-4FCB-11CF-AAA5-00401C608501} [HKLM] -> %SystemRoot%\system32\msjava.dll [Web Browser Applet Control] -> [2003/02/28 18:26:26 | 00,947,472 | ---- | M] (Microsoft Corporation)

CmdMapping\\{320AF880-6646-11D3-ABEE-C5DBF3571F46} [HKLM] -> [Reg Error: Key does not exist or could not be opened.] -> File not found

CmdMapping\\{320AF880-6646-11D3-ABEE-C5DBF3571F49} [HKLM] -> [Reg Error: Key does not exist or could not be opened.] -> File not found

CmdMapping\\{724d43aa-0d85-11d4-9908-00400523e39a} [HKLM] -> [Reg Error: Key does not exist or could not be opened.] -> File not found

CmdMapping\\{92780B25-18CC-41C8-B9BE-3C9C571A8263} [HKLM] -> %ProgramFiles%\Microsoft Office\OFFICE11\REFIEBAR.DLL [Recherche] -> [2007/04/19 13:10:18 | 00,063,840 | ---- | M] (Microsoft Corporation)

CmdMapping\\{e2e2dd38-d088-4134-82b7-f2ba38496583} [HKLM] -> %SystemRoot%\network diagnostic\xpnetdiag.exe [@xpsp3res.dll,-20001] -> [2008/04/13 19:53:32 | 00,558,080 | ---- | M] (Microsoft Corporation)

CmdMapping\\{FB5F1910-F110-11d2-BB9E-00C04F795683} [HKLM] -> %ProgramFiles%\Messenger\msmsgs.exe [Messenger] -> [2008/04/14 03:34:13 | 01,695,232 | -HS- | M] (Microsoft Corporation)


========== (O12) Internet Explorer Plugins ==========


[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Plugins\]

PluginsPage: "" =

PluginsPageFriendlyName: "" = Microsoft ActiveX Gallery

Extension\.UVR: Ulead COOL 360 Viewer -- C:\Program Files\Internet Explorer\PLUGINS\NPUPano.dll [2003/01/13 10:55:42 | 00,086,016 | ---- | M] (Ulead Systems, Inc.)


========== (O13) Default Prefixes ==========





========== (O15) Trusted Sites ==========


[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\]

1 domain(s) and sub-domain(s) not assigned to a zone.


[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\]

98 domain(s) and sub-domain(s) not assigned to a zone.


========== (O16) DPF ==========


[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Code Store Database\Distribution Units\]

{0EB0E74A-2A76-4AB3-A7FB-9BD8C29F7F75}: -- CKAVWebScan Object

{166B1BCA-3F9C-11CF-8075-444553540000}: -- Shockwave ActiveX Control

{17492023-C23A-453E-A040-C7C580BBF700}: -- Windows Genuine Advantage Validation Tool

{2BC66F54-93A8-11D3-BEB6-00105AA9B6AE}: -- Symantec AntiVirus scanner

{2D8ED06D-3C30-438B-96AE-4D110FDC1FB8}: -- ActiveScan 2.0 Installer Class

{3E68E405-C6DE-49FF-83AE-41EE9F4C36CE}: -- Office Update Installation Engine

{56762DEC-6B0D-4AB4-A8AD-989993B5D08B}: -- OnlineScanner Control

{5D86DDB5-BDF9-441B-9E9E-D4730F4EE499}: -- BDSCANONLINE Control

{5ED80217-570B-4DA9-BF44-BE107C0EC166}: -- Windows Live Safety Center Base Module

{6414512B-B978-451D-A0D8-FCFDF33E833C}: -- WUWebControl Class

{644E432F-49D3-41A1-8DD5-E099162EEEC5}: -- Symantec RuFSI Utility Class

{6E32070A-766D-4EE6-879C-DC1FA91D2FC3}: -- MUWebControl Class

{74D05D43-3236-11D4-BDCD-00C04F9A3B61}: -- HouseCall Control

{7B297BFD-85E4-4092-B2AF-16A91B2EA103}: -- WScanCtl Class

{8AD9C840-044E-11D1-B3E9-00805F499D93}: -- Java Plug-in 1.5.0_05

{9A9307A0-7DA4-4DAF-B042-5009F29E09E1}: -- ActiveScan Installer Class

{B38870E4-7ECB-40DA-8C6A-595F0A5519FF}: -- MsnMessengerSetupDownloadControl Class

{CAFEEFAC-0015-0000-0005-ABCDEFFEDCBA}: -- Java Plug-in 1.5.0_05

{D27CDB6E-AE6D-11CF-96B8-444553540000}: -- Shockwave Flash Object

Microsoft XML Parser for Java: file:///C:/WINDOWS/Java/classes/ -- Reg Error: Key does not exist or could not be opened.


========== (O17) DNS Name Servers ==========


{222FF039-FB0F-4C1E-908C-80F91DE66C8A} (Servers: | Description: Sony Ericsson Device 046 USB Ethernet Emulation (NDIS 5))

{2C5AE706-C2BB-4CA8-9D97-A70E62DE5C82} (Servers: | Description: NVIDIA nForce Networking Controller)

{36F3DF3B-BA9C-4D9E-8DBF-387C8780225F} (Servers: | Description: )

{41F25775-78CE-4ADD-8950-F3ADB644DDC2} (Servers: | Description: RCA USB Cable Modem)

{42E579D8-EE32-458E-BCDE-024E2EC58B85} (Servers: | Description: RCA USB Cable Modem)

{648EC11E-4C15-4AF8-B87F-E9E695FBBA61} (Servers: | Description: WIFI LINK)

{7F85F6FF-3BE7-44AF-89CA-10EE118D246F} (Servers: | Description: CREATIX 802.11g Wireless Adapter)

{8B6DD9B8-56CA-43F4-BED3-C40B08283532} (Servers: | Description: WIFI LINK)

{F76D32AA-D5DA-402F-8D85-035055D570AE} (Servers: | Description: CREATIX 802.11g Wireless Adapter)

{FB65BDDB-EFCC-4178-8154-74A1F5FAEF61} (Servers: | Description: )

{FE5B4FFF-75FC-46ED-B09B-616D26ADA200} (Servers: | Description: D-Link AirPlus Xtreme G DWL-G132 Wireless USB Adapter(rev.A))


========== (O19) User Style Sheets ==========


[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Styles]


========== (O20) Winlogon Notify Settings ==========


[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\]

WRNotifier: "DllName" = WRLogonNTF.dll -- C:\WINDOWS\system32\WRLogonNtf.dll (Webroot Software, Inc.)


========== (O21) SSODL Settings ==========



"CDBurn"={fbeb8a05-beee-4442-804e-409d6c4515e9} (HKLM) -- CLSID or file not found.


========== Safeboot Options ==========




========== CDRom AutoRun Settings ==========



"AutoRun" = 1


========== Autorun Files on Drives ==========



[2005/10/19 08:09:39 | 00,000,000 | ---- | M] () -- C:\AUTOEXEC.BAT -- [ NTFS ]


AUTORUN.INF [[autorun] | OPEN=setupSNK.exe | ICON=\SMRTNTKY\fcw.ico | ACTION=Assistant Réseau sans fil | ]

[2008/12/30 18:28:27 | 00,000,086 | ---- | M] () -- D:\AUTORUN.INF -- [ NTFS ]


AUTORUN.INF [[autorun] | OPEN=setupSNK.exe | ICON=\SMRTNTKY\fcw.ico | ACTION=Assistant Réseau sans fil | ]

[2008/12/30 18:29:06 | 00,000,086 | ---- | M] () -- E:\AUTORUN.INF -- [ FAT32 ]


autoexec.bat [@echo off | cls | echo. start flashing BIOS MS7123 Medion | pause | AWFL859G.exe W7123MLN.13B /Py /Sn /Cd /Cp /Cc /E /R /F | ]

[2005/11/17 11:50:18 | 00,000,120 | ---- | M] () -- E:\autoexec.bat -- [ FAT32 ]


AUTORUN.INF [[autorun] | OPEN=setupSNK.exe | ICON=\SMRTNTKY\fcw.ico | ACTION=Assistant Réseau sans fil | ]

[2008/12/30 18:29:18 | 00,000,086 | ---- | M] () -- F:\AUTORUN.INF -- [ FAT32 ]


========== Files/Folders - Created Within 30 Days ==========


[3 C:\WINDOWS\System32\*.tmp files]

[6 C:\WINDOWS\*.tmp files]

[3 C:\Documents and Settings\All Users\Application Data\*.tmp files]

[2009/01/04 14:35:40 | 00,001,858 | ---- | C] () -- C:\Documents and Settings\Pascal\Menu Démarrer\Programmes\Démarrage\is-FJ99I.lnk

[2009/01/04 14:35:04 | 00,000,000 | ---D | C] -- C:\WINDOWS\LastGood

[2009/01/04 14:35:01 | 00,148,496 | ---- | C] (Kaspersky Lab) -- C:\WINDOWS\System32\drivers\01445989.sys

[2009/01/04 14:35:00 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Pascal\Bureau\Virus Removal Tool

[2009/01/03 11:20:25 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Pascal\Application Data\Malwarebytes

[2009/01/03 11:20:23 | 00,015,504 | ---- | C] (Malwarebytes Corporation) -- C:\WINDOWS\System32\drivers\mbam.sys

[2009/01/03 11:20:21 | 00,038,496 | ---- | C] (Malwarebytes Corporation) -- C:\WINDOWS\System32\drivers\mbamswissarmy.sys

[2009/01/03 11:20:20 | 00,000,000 | ---D | C] -- C:\Program Files\Malwarebytes' Anti-Malware

[2009/01/03 11:20:20 | 00,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Malwarebytes

[2009/01/03 07:59:58 | 02,625,252 | ---- | C] () -- C:\Documents and Settings\Pascal\Bureau\rapport_kasperdy.html

[2009/01/02 18:14:30 | 00,016,952 | ---- | C] (Panda Security, S.L.) -- C:\WINDOWS\System32\drivers\RkPavproc1.sys

[2009/01/02 12:52:16 | 32,204,92288 | -HS- | C] () -- C:\hiberfil.sys

[2008/12/31 19:03:41 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Pascal\Mes documents\a-squared Anti-Dialer

[2008/12/31 19:00:14 | 00,000,000 | ---D | C] -- C:\Program Files\a-squared Anti-Dialer

[2008/12/31 04:14:05 | 00,000,000 | -HSD | C] -- C:\RECYCLER

[2008/12/30 22:16:36 | 00,049,064 | ---- | C] () -- C:\Documents and Settings\Pascal\Mes documents\rapport_analyse_pc_kasperdy_bis.html

[2008/12/30 22:13:09 | 00,000,000 | ---D | C] -- C:\ERDNT

[2008/12/30 21:46:31 | 00,101,888 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\adpu160m.sys

[2008/12/30 21:46:31 | 00,046,112 | ---- | C] (Adaptec, Inc ) -- C:\WINDOWS\System32\dllcache\adptsf50.sys

[2008/12/30 21:46:28 | 00,747,392 | ---- | C] (Aureal, Inc.) -- C:\WINDOWS\System32\dllcache\adm8830.sys

[2008/12/30 21:46:28 | 00,010,880 | ---- | C] (Aureal, Inc.) -- C:\WINDOWS\System32\dllcache\admjoy.sys

[2008/12/30 21:46:27 | 00,584,448 | ---- | C] (Aureal, Inc.) -- C:\WINDOWS\System32\dllcache\adm8810.sys

[2008/12/30 21:46:27 | 00,553,984 | ---- | C] (Aureal, Inc.) -- C:\WINDOWS\System32\dllcache\adm8820.sys

[2008/12/30 21:46:26 | 00,020,160 | ---- | C] (ADMtek Incorporated) -- C:\WINDOWS\System32\dllcache\adm8511.sys

[2008/12/30 21:46:26 | 00,007,424 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\adicvls.sys

[2008/12/30 21:46:21 | 00,061,952 | ---- | C] (Scanneur à plat couleur) -- C:\WINDOWS\System32\dllcache\acerscad.dll

[2008/12/30 21:46:18 | 00,297,728 | ---- | C] (Silicon Integrated Systems Corp.) -- C:\WINDOWS\System32\dllcache\ac97sis.sys

[2008/12/30 21:46:17 | 00,023,552 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\abp480n5.sys

[2008/12/30 21:46:16 | 00,462,848 | ---- | C] (Aureal Inc.) -- C:\WINDOWS\System32\dllcache\a3dapi.dll

[2008/12/30 21:46:14 | 00,048,128 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\61883.sys

[2008/12/30 21:46:14 | 00,038,400 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\8514a.dll

[2008/12/30 21:46:13 | 00,148,352 | ---- | C] (3dfx Interactive, Inc.) -- C:\WINDOWS\System32\dllcache\3dfxvsm.sys

[2008/12/30 21:46:13 | 00,012,288 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\4mmdat.sys

[2008/12/30 21:46:12 | 00,689,216 | ---- | C] (3dfx Interactive, Inc.) -- C:\WINDOWS\System32\dllcache\3dfxvs.dll

[2008/12/30 21:46:11 | 00,762,780 | ---- | C] (3Com, Inc.) -- C:\WINDOWS\System32\dllcache\3cwmcru.sys

[2008/12/30 21:46:11 | 00,011,264 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\1394vdbg.sys

[2008/12/30 21:44:55 | 00,066,048 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\s3legacy.dll

[2008/12/30 21:01:01 | 00,024,030 | ---- | C] () -- C:\Documents and Settings\Pascal\Mes documents\rapport_analyse_pc_kasperdy.html

[2008/12/30 19:12:19 | 00,000,000 | ---D | C] -- C:\Program Files\EsetOnlineScanner

[2008/12/30 19:10:08 | 00,000,000 | ---D | C] -- C:\WINDOWS\AU_Temp

[2008/12/30 18:12:10 | 00,003,903 | R--- | C] () -- C:\WINDOWS\System32\nvnrm.nvu

[2008/12/30 17:40:28 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Pascal\Local Settings\Application Data\Symantec

[2008/12/30 17:29:10 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Pascal\Application Data\Symantec

[2008/12/30 17:28:46 | 00,001,646 | ---- | C] () -- C:\Documents and Settings\All Users\Bureau\Norton 360.lnk

[2008/12/30 17:27:14 | 00,000,000 | ---D | C] -- C:\Program Files\Windows Sidebar

[2008/12/30 17:27:05 | 00,000,000 | ---D | C] -- C:\Program Files\Norton 360

[2008/12/30 17:25:53 | 00,123,952 | ---- | C] (Symantec Corporation) -- C:\WINDOWS\System32\drivers\SYMEVENT.SYS

[2008/12/30 17:25:53 | 00,060,800 | ---- | C] (Symantec Corporation) -- C:\WINDOWS\System32\S32EVNT1.DLL

[2008/12/30 17:25:53 | 00,010,671 | ---- | C] () -- C:\WINDOWS\System32\drivers\SYMEVENT.CAT

[2008/12/30 17:25:53 | 00,000,805 | ---- | C] () -- C:\WINDOWS\System32\drivers\SYMEVENT.INF

[2008/12/30 17:25:48 | 00,000,000 | ---D | C] -- C:\Program Files\Symantec

[2008/12/30 17:25:48 | 00,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Symantec

[2008/12/30 17:23:58 | 00,000,000 | ---D | C] -- C:\Program Files\Fichiers communs\Symantec Shared

[2008/12/30 17:17:28 | 00,000,000 | ---D | C] -- C:\Aaaaaaa

[2008/12/28 18:41:52 | 00,000,032 | -HS- | C] () -- C:\WINDOWS\System32\drivers\fidbox2.idx

[2008/12/28 18:41:52 | 00,000,032 | -HS- | C] () -- C:\WINDOWS\System32\drivers\fidbox2.dat

[2008/12/28 18:36:55 | 00,001,725 | ---- | C] () -- C:\Documents and Settings\All Users\Menu Démarrer\Programmes\Démarrage\MioSync.lnk

[2008/12/28 18:36:55 | 00,001,691 | ---- | C] () -- C:\Documents and Settings\All Users\Menu Démarrer\Programmes\Démarrage\Logitech SetPoint.lnk

[2008/12/28 18:36:55 | 00,001,626 | ---- | C] () -- C:\Documents and Settings\All Users\Menu Démarrer\Programmes\Démarrage\WL Utility.lnk

[2008/12/28 18:36:55 | 00,001,501 | ---- | C] () -- C:\Documents and Settings\All Users\Menu Démarrer\Programmes\Démarrage\RAMASST.lnk

[2008/12/28 18:32:49 | 00,000,000 | ---D | C] -- C:\WINDOWS\temp

[2008/12/28 18:31:46 | 00,053,248 | ---- | C] (Sysinternals) -- C:\WINDOWS\PSEXESVC.EXE

[2008/12/28 17:55:53 | 00,212,480 | ---- | C] (SteelWerX) -- C:\WINDOWS\SWXCACLS.exe

[2008/12/28 17:55:53 | 00,161,792 | ---- | C] (SteelWerX) -- C:\WINDOWS\SWREG.exe

[2008/12/28 17:55:53 | 00,136,704 | ---- | C] (SteelWerX) -- C:\WINDOWS\SWSC.exe

[2008/12/28 17:55:53 | 00,098,816 | ---- | C] () -- C:\WINDOWS\sed.exe

[2008/12/28 17:55:53 | 00,089,504 | ---- | C] (Smallfrogs Studio) -- C:\WINDOWS\fdsv.exe

[2008/12/28 17:55:53 | 00,080,412 | ---- | C] () -- C:\WINDOWS\grep.exe

[2008/12/28 17:55:53 | 00,068,096 | ---- | C] () -- C:\WINDOWS\zip.exe

[2008/12/28 17:55:53 | 00,049,152 | ---- | C] () -- C:\WINDOWS\VFIND.exe

[2008/12/28 17:55:53 | 00,028,672 | ---- | C] (NirSoft) -- C:\WINDOWS\NIRCMD.exe

[2008/12/28 12:16:05 | 00,000,000 | ---D | C] -- C:\Program Files\Ashampoo

[2008/12/28 12:13:24 | 04,287,456 | ---- | C] (ashampoo GmbH & Co. KG ) -- C:\Documents and Settings\Pascal\Bureau\ashampoo_firewall120_sm.exe

[2008/12/28 12:00:02 | 00,000,000 | ---D | C] -- C:\WINDOWS\ERDNT

[2008/12/28 11:58:53 | 00,000,000 | ---D | C] -- C:\Config.Msi

[2008/12/27 15:21:00 | 78,093,280 | ---- | C] () -- C:\Documents and Settings\Pascal\Bureau\N360S200FR.exe

[2008/12/27 15:15:50 | 00,000,000 | ---D | C] -- C:\Qoobox

[2008/12/27 15:15:24 | 02,888,367 | R--- | C] () -- C:\Documents and Settings\Pascal\Bureau\Aaaaaaa.exe

[2008/12/27 15:04:34 | 00,000,000 | ---D | C] -- C:\Program Files\Windows Live Safety Center

[2008/12/26 21:52:47 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Pascal\Mes documents\a-squared Free

[2008/12/26 20:35:49 | 00,000,000 | ---D | C] -- C:\Program Files\Panda Security

[2008/12/26 20:35:22 | 00,000,000 | ---D | C] -- C:\WINDOWS\BDOSCAN8

[2008/12/26 20:20:35 | 00,000,000 | -H-D | C] -- C:\Documents and Settings\Pascal\Application Data\drivers

[2008/12/26 18:44:02 | 00,000,000 | ---D | C] -- C:\Program Files\Active Data Recovery Software

[2008/12/25 17:24:05 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Pascal\Local Settings\Application Data\TouchStoneSoftware

[2008/12/25 17:24:03 | 00,000,820 | ---- | C] () -- C:\Documents and Settings\Pascal\Bureau\UndeletePlus.lnk

[2008/12/25 17:24:00 | 00,000,000 | ---D | C] -- C:\Program Files\TouchStoneSoftware

[2008/12/25 10:48:35 | 00,001,561 | ---- | C] () -- C:\Documents and Settings\All Users\Bureau\PC Inspector File Recovery.lnk

[2008/12/25 10:48:35 | 00,000,000 | ---D | C] -- C:\Program Files\PC Inspector File Recovery

[2008/12/23 17:46:33 | 00,000,642 | ---- | C] () -- C:\Documents and Settings\Pascal\Bureau\Drive Rescue.lnk

[2008/12/23 17:46:32 | 00,000,000 | ---D | C] -- C:\Program Files\Drive Rescue

[2008/12/23 17:42:00 | 00,000,749 | ---- | C] () -- C:\Documents and Settings\All Users\Bureau\GetDataBack for FAT.lnk

[2008/12/23 17:41:59 | 00,000,000 | ---D | C] -- C:\Program Files\Runtime Software

[2008/12/23 17:35:32 | 00,000,000 | ---D | C] -- C:\Program Files\GetData

[2008/12/20 20:11:48 | 00,001,854 | ---- | C] () -- C:\Documents and Settings\All Users\Bureau\Safari.lnk

[2008/12/20 20:11:33 | 00,000,000 | ---D | C] -- C:\Program Files\Safari

[2008/12/20 15:57:20 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Pascal\Application Data\Apple Computer

[2008/12/20 15:57:12 | 00,001,804 | ---- | C] () -- C:\Documents and Settings\All Users\Bureau\iTunes.lnk

[2008/12/20 15:55:43 | 00,000,000 | ---D | C] -- C:\Program Files\iPod

[2008/12/20 15:55:37 | 00,000,000 | ---D | C] -- C:\Program Files\iTunes

[2008/12/20 15:55:37 | 00,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\{3276BE95_AF08_429F_A64F_CA64CB79BCF6}

[2008/12/20 15:54:09 | 00,001,608 | ---- | C] () -- C:\Documents and Settings\All Users\Bureau\QuickTime Player.lnk

[2008/12/20 15:53:43 | 00,000,000 | ---D | C] -- C:\Program Files\QuickTime

[2008/12/20 15:53:39 | 00,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Apple Computer

[2008/12/20 15:53:10 | 00,000,284 | ---- | C] () -- C:\WINDOWS\tasks\AppleSoftwareUpdate.job

[2008/12/20 15:53:09 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Pascal\Local Settings\Application Data\Apple

[2008/12/20 15:53:06 | 00,000,000 | ---D | C] -- C:\Program Files\Apple Software Update

[2008/12/20 15:51:47 | 00,000,000 | ---D | C] -- C:\Program Files\Fichiers communs\Apple

[2008/12/20 15:51:46 | 00,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Apple

[2008/12/20 15:51:18 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Pascal\Local Settings\Application Data\Apple Computer

[2008/12/20 15:36:26 | 00,146,650 | ---- | C] () -- C:\WINDOWS\System32\BuzzingBee.wav

[2008/12/20 15:36:25 | 00,940,794 | ---- | C] () -- C:\WINDOWS\System32\LoopyMusic.wav

[2008/12/20 15:36:01 | 00,000,000 | ---D | C] -- C:\WINDOWS\System32\Lang

[2008/12/20 15:32:04 | 00,000,528 | R--- | C] () -- C:\WINDOWS\System32\nvsmu.nvu

[2008/12/20 15:31:21 | 00,000,000 | ---D | C] -- C:\WINDOWS\System32\RTCOM

[2008/12/20 15:30:29 | 02,808,832 | R--- | C] (RealTek Semicoductor Corp.) -- C:\WINDOWS\alcwzrd.exe

[2008/12/20 15:30:28 | 00,000,000 | ---D | C] -- C:\Program Files\Realtek

[2008/12/20 15:18:54 | 00,000,000 | ---D | C] -- C:\Program Files\AMD

[2008/12/19 17:36:10 | 00,001,746 | ---- | C] () -- C:\Documents and Settings\All Users\Bureau\D-Link AirPlus Utility.lnk

[2008/12/19 17:36:09 | 00,000,000 | ---D | C] -- C:\Program Files\D-Link

[2008/12/18 19:19:09 | 01,327,189 | ---- | C] (Funk Software, Inc.) -- C:\WINDOWS\System32\odSupp_M.dll

[2008/12/18 19:19:09 | 00,663,552 | ---- | C] (Alpha Networks Inc.) -- C:\WINDOWS\System32\ANIWZCS2.dll

[2008/12/18 19:19:09 | 00,184,320 | ---- | C] (Alpha Networks Inc.) -- C:\WINDOWS\System32\WlanApp.dll

[2008/12/18 19:19:09 | 00,184,320 | ---- | C] (Alpha Networks Inc.) -- C:\WINDOWS\System32\aIPH.dll

[2008/12/18 19:19:09 | 00,057,407 | ---- | C] (Alpha Networks Inc.) -- C:\WINDOWS\System32\ANICtl.dll

[2008/12/18 19:19:09 | 00,049,152 | ---- | C] (Alpha Networks Inc.) -- C:\WINDOWS\System32\AQCKGen.dll

[2008/12/18 19:19:09 | 00,049,152 | ---- | C] () -- C:\WINDOWS\System32\JJAKEn.dll

[2008/12/18 19:18:56 | 00,048,128 | ---- | C] (Alpha Networks Inc.) -- C:\WINDOWS\System32\ANIO64.sys

[2008/12/18 19:18:56 | 00,036,864 | ---- | C] (Alpha Networks Inc.) -- C:\WINDOWS\System32\ANIOApi.dll

[2008/12/18 19:18:56 | 00,028,195 | ---- | C] (Alpha Networks Inc.) -- C:\WINDOWS\System32\ANIO.sys

[2008/12/18 19:18:56 | 00,016,997 | ---- | C] () -- C:\WINDOWS\System32\ANIO.VXD

[2008/12/18 19:18:56 | 00,011,904 | ---- | C] (ANI ) -- C:\WINDOWS\System32\anio4.sys

[2008/12/18 19:18:56 | 00,000,000 | ---D | C] -- C:\Program Files\ANI

[2008/12/18 19:05:05 | 00,001,523 | ---- | C] () -- C:\Documents and Settings\All Users\Bureau\AvRack.lnk

[2008/12/18 19:05:05 | 00,000,000 | ---D | C] -- C:\Program Files\Realtek Sound Manager

[2008/12/18 19:05:03 | 00,000,164 | ---- | C] () -- C:\WINDOWS\avrack.ini

[2008/12/18 19:05:03 | 00,000,000 | ---D | C] -- C:\Program Files\AvRack

[2008/12/18 19:04:59 | 00,049,152 | R--- | C] () -- C:\WINDOWS\System32\ChCfg.exe

[2008/12/18 19:04:56 | 00,141,016 | ---- | C] () -- C:\WINDOWS\System32\alsndmgr.wav

[2008/12/18 18:45:05 | 00,000,000 | ---D | C] -- C:\WINDOWS\Prefetch

[2008/12/18 18:25:59 | 00,000,000 | ---D | C] -- C:\WINDOWS\l2schemas

[2008/12/18 18:25:58 | 00,000,000 | ---D | C] -- C:\WINDOWS\System32\fr

[2008/12/18 18:25:57 | 00,000,000 | ---D | C] -- C:\WINDOWS\System32\bits

[2008/12/18 18:22:55 | 00,000,000 | ---D | C] -- C:\WINDOWS\ServicePackFiles

[2008/12/18 18:15:52 | 00,000,000 | -H-D | C] -- C:\WINDOWS\$NtServicePackUninstall$

[2008/12/18 18:15:49 | 00,000,000 | ---D | C] -- C:\WINDOWS\EHome

[2008/12/18 17:55:09 | 00,067,866 | ---- | C] () -- C:\WINDOWS\System32\drivers\netwlan5.img

[2008/12/18 17:55:01 | 00,129,045 | ---- | C] () -- C:\WINDOWS\System32\drivers\cxthsfs2.cty

[2008/12/18 17:54:38 | 00,064,352 | ---- | C] () -- C:\WINDOWS\System32\drivers\ativmc20.cod

[2008/12/18 17:40:39 | 00,000,000 | ---D | C] -- C:\WINDOWS\SxsCaPendDel

[2008/12/17 18:16:08 | 00,000,000 | ---D | C] -- C:\Program Files\Alwil Software

[2008/12/17 17:34:21 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Pascal\Bureau\sauv_roboform

[2008/12/17 14:27:08 | 00,455,296 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mrxsmb.sys


========== Files - Modified Within 30 Days ==========


[1 C:\WINDOWS\System32\drivers\*.tmp files]

[3 C:\WINDOWS\System32\*.tmp files]

[6 C:\WINDOWS\*.tmp files]

[3 C:\Documents and Settings\All Users\Application Data\*.tmp files]

[2009/01/04 20:01:02 | 08,208,416 | -HS- | M] () -- C:\WINDOWS\System32\drivers\fidbox.dat

[2009/01/04 19:59:00 | 00,000,256 | ---- | M] () -- C:\WINDOWS\tasks\Vérifier les mises à jour de Windows Live Toolbar.job

[2009/01/04 14:35:40 | 00,001,858 | ---- | M] () -- C:\Documents and Settings\Pascal\Menu Démarrer\Programmes\Démarrage\is-FJ99I.lnk

[2009/01/04 14:26:48 | 00,001,374 | ---- | M] () -- C:\WINDOWS\System32\wpa.dbl

[2009/01/04 14:25:23 | 00,000,006 | -H-- | M] () -- C:\WINDOWS\tasks\SA.DAT

[2009/01/04 14:25:11 | 00,002,048 | --S- | M] () -- C:\WINDOWS\bootstat.dat

[2009/01/04 14:25:02 | 32,204,92288 | -HS- | M] () -- C:\hiberfil.sys

[2009/01/03 21:04:56 | 00,017,408 | ---- | M] (ICSI Technology Ltd.) -- C:\WINDOWS\System32\drivers\USBCRFT.SYS

[2009/01/03 07:59:58 | 02,625,252 | ---- | M] () -- C:\Documents and Settings\Pascal\Bureau\rapport_kasperdy.html

[2009/01/03 00:00:46 | 00,002,116 | ---- | M] () -- C:\WINDOWS\tasks\wrSpySweeper20060131222850.job

[2009/01/02 17:57:29 | 00,000,406 | ---- | M] () -- C:\WINDOWS\tasks\1-Klick-Wartung.job

[2009/01/02 12:58:42 | 00,000,736 | ---- | M] () -- C:\WINDOWS\System32\drivers\etc\hosts

[2009/01/02 12:55:44 | 00,490,166 | ---- | M] () -- C:\WINDOWS\System32\perfh00C.dat

[2009/01/02 12:55:44 | 00,423,454 | ---- | M] () -- C:\WINDOWS\System32\perfh009.dat

[2009/01/02 12:55:44 | 00,076,386 | ---- | M] () -- C:\WINDOWS\System32\perfc00C.dat

[2009/01/02 12:55:44 | 00,064,904 | ---- | M] () -- C:\WINDOWS\System32\perfc009.dat

[2009/01/02 12:55:42 | 01,067,908 | ---- | M] () -- C:\WINDOWS\System32\PerfStringBackup.INI

[2008/12/30 22:16:36 | 00,049,064 | ---- | M] () -- C:\Documents and Settings\Pascal\Mes documents\rapport_analyse_pc_kasperdy_bis.html

[2008/12/30 21:01:02 | 00,024,030 | ---- | M] () -- C:\Documents and Settings\Pascal\Mes documents\rapport_analyse_pc_kasperdy.html

[2008/12/30 19:22:14 | 00,123,952 | ---- | M] (Symantec Corporation) -- C:\WINDOWS\System32\drivers\SYMEVENT.SYS

[2008/12/30 19:22:14 | 00,060,800 | ---- | M] (Symantec Corporation) -- C:\WINDOWS\System32\S32EVNT1.DLL

[2008/12/30 19:22:14 | 00,010,671 | ---- | M] () -- C:\WINDOWS\System32\drivers\SYMEVENT.CAT

[2008/12/30 19:22:14 | 00,000,805 | ---- | M] () -- C:\WINDOWS\System32\drivers\SYMEVENT.INF

[2008/12/30 19:10:18 | 00,000,823 | ---- | M] () -- C:\WINDOWS\tsc.ini

[2008/12/30 18:05:35 | 00,004,445 | ---- | M] () -- C:\WINDOWS\Ascd_tmp.ini

[2008/12/30 17:28:46 | 00,001,646 | ---- | M] () -- C:\Documents and Settings\All Users\Bureau\Norton 360.lnk

[2008/12/30 17:22:17 | 00,053,248 | ---- | M] (Sysinternals) -- C:\WINDOWS\PSEXESVC.EXE

[2008/12/30 17:21:07 | 00,000,227 | ---- | M] () -- C:\WINDOWS\system.ini

[2008/12/28 18:41:54 | 00,000,032 | -HS- | M] () -- C:\WINDOWS\System32\drivers\fidbox2.idx

[2008/12/28 18:41:54 | 00,000,032 | -HS- | M] () -- C:\WINDOWS\System32\drivers\fidbox2.dat

[2008/12/28 18:36:48 | 00,000,922 | ---- | M] () -- C:\WINDOWS\win.ini

[2008/12/28 18:36:48 | 00,000,227 | RHS- | M] () -- C:\boot.ini

[2008/12/28 18:06:07 | 00,000,027 | ---- | M] () -- C:\WINDOWS\System32\drivers\etc\hosts.bak

[2008/12/28 12:25:20 | 00,003,072 | ---- | M] () -- C:\WINDOWS\System32\CONFIG.NT

[2008/12/28 12:13:29 | 04,287,456 | ---- | M] (ashampoo GmbH & Co. KG ) -- C:\Documents and Settings\Pascal\Bureau\ashampoo_firewall120_sm.exe

[2008/12/28 12:00:08 | 00,015,360 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\register.exe

[2008/12/27 15:21:22 | 78,093,280 | ---- | M] () -- C:\Documents and Settings\Pascal\Bureau\N360S200FR.exe

[2008/12/27 15:15:32 | 02,888,367 | R--- | M] () -- C:\Documents and Settings\Pascal\Bureau\Aaaaaaa.exe

[2008/12/26 20:42:01 | 00,000,170 | ---- | M] () -- C:\WINDOWS\GetServer.ini

[2008/12/26 20:19:53 | 00,000,202 | ---- | M] () -- C:\WINDOWS\NeroDigital.ini

[2008/12/26 20:18:34 | 00,000,050 | ---- | M] () -- C:\Documents and Settings\Pascal\Application Data\AVSDVDPlayer.m3u

[2008/12/26 20:17:51 | 00,209,408 | ---- | M] () -- C:\Documents and Settings\Pascal\Local Settings\Application Data\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini

[2008/12/25 17:24:03 | 00,000,820 | ---- | M] () -- C:\Documents and Settings\Pascal\Bureau\UndeletePlus.lnk

[2008/12/25 11:24:27 | 00,000,642 | ---- | M] () -- C:\Documents and Settings\Pascal\Bureau\Drive Rescue.lnk

[2008/12/25 10:48:35 | 00,001,561 | ---- | M] () -- C:\Documents and Settings\All Users\Bureau\PC Inspector File Recovery.lnk

[2008/12/23 17:42:00 | 00,000,749 | ---- | M] () -- C:\Documents and Settings\All Users\Bureau\GetDataBack for FAT.lnk

[2008/12/22 12:42:02 | 00,000,284 | ---- | M] () -- C:\WINDOWS\tasks\AppleSoftwareUpdate.job

[2008/12/21 16:36:30 | 00,066,896 | -HS- | M] () -- C:\WINDOWS\System32\drivers\fidbox.idx

[2008/12/21 14:09:53 | 00,001,393 | ---- | M] () -- C:\WINDOWS\imsins.BAK

[2008/12/20 20:11:48 | 00,001,854 | ---- | M] () -- C:\Documents and Settings\All Users\Bureau\Safari.lnk

[2008/12/20 17:22:56 | 00,004,212 | -H-- | M] () -- C:\WINDOWS\System32\zllictbl.dat

[2008/12/20 17:17:23 | 00,021,908 | ---- | M] () -- C:\WINDOWS\System32\vsconfig.xml

[2008/12/20 16:04:59 | 00,049,256 | ---- | M] () -- C:\Documents and Settings\Pascal\Local Settings\Application Data\GDIPFONTCACHEV1.DAT

[2008/12/20 15:57:12 | 00,001,804 | ---- | M] () -- C:\Documents and Settings\All Users\Bureau\iTunes.lnk

[2008/12/20 15:54:09 | 00,001,608 | ---- | M] () -- C:\Documents and Settings\All Users\Bureau\QuickTime Player.lnk

[2008/12/20 15:36:26 | 00,940,794 | ---- | M] () -- C:\WINDOWS\System32\LoopyMusic.wav

[2008/12/20 15:36:26 | 00,146,650 | ---- | M] () -- C:\WINDOWS\System32\BuzzingBee.wav

[2008/12/20 15:21:56 | 00,001,523 | ---- | M] () -- C:\Documents and Settings\All Users\Bureau\AvRack.lnk

[2008/12/20 10:40:28 | 00,000,207 | ---- | M] () -- C:\WINDOWS\MyDrivers.ini

[2008/12/19 17:36:10 | 00,001,746 | ---- | M] () -- C:\Documents and Settings\All Users\Bureau\D-Link AirPlus Utility.lnk

[2008/12/19 17:29:25 | 00,000,436 | ---- | M] () -- C:\WINDOWS\System32\drivers\etc\hosts.ics

[2008/12/18 18:50:17 | 01,497,328 | ---- | M] () -- C:\WINDOWS\System32\FNTCACHE.DAT

[2008/12/18 18:45:45 | 00,316,640 | ---- | M] () -- C:\WINDOWS\WMSysPr9.prx

[2008/12/18 18:43:26 | 00,096,384 | ---- | M] () -- C:\WINDOWS\System32\drivers\sptd2925.sys

[2008/12/18 18:19:39 | 00,252,240 | RHS- | M] () -- C:\ntldr

[2008/12/18 18:13:23 | 00,003,284 | ---- | M] () -- C:\WINDOWS\System32\ANIWZCS{3959BE67-ECAC-4FE7-9E9D-DB9A9AF4A9AD}

[2008/12/18 18:07:02 | 00,000,007 | ---- | M] () -- C:\WINDOWS\System32\ANIWZCSUSERNAME{3959BE67-ECAC-4FE7-9E9D-DB9A9AF4A9AD}

[2008/12/17 19:02:25 | 03,211,378 | -H-- | M] () -- C:\Documents and Settings\Pascal\Local Settings\Application Data\IconCache.db

[2008/12/17 18:18:54 | 00,081,984 | ---- | M] () -- C:\WINDOWS\System32\bdod.bin

[2008/12/17 18:18:50 | 00,000,121 | ---- | M] () -- C:\WINDOWS\bdagent.INI

[2008/12/13 07:37:56 | 03,593,216 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\mshtml.dll

[2008/12/13 07:37:56 | 03,593,216 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mshtml.dll

[2008/12/09 15:24:38 | 17,593,280 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\MRT.exe

< End of report >


merci d avance


le voilou ......... excuses j y avais pas prété attention :P


OTViewIt Extras logfile created on: 04/01/2009 19:59:23 - Run

OTViewIt by OldTimer - Version Folder = I:\

Windows XP Home Edition Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation

Internet Explorer (Version = 7.0.5730.11)

Locale: 0000040C | Country: France | Language: FRA | Date Format: dd/MM/yyyy


2,00 Gb Total Physical Memory | 2,00 Gb Available Physical Memory | 100,00% Memory free

4,00 Gb Paging File | 3,62 Gb Available in Paging File | 90,58% Paging File free

Paging file location(s): c:\pagefile.sys 1536 3072;


%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files

Drive C: | 113,28 Gb Total Space | 4,89 Gb Free Space | 4,31% Space Free | Partition Type: NTFS

Drive D: | 109,97 Gb Total Space | 38,75 Gb Free Space | 35,23% Space Free | Partition Type: NTFS

Drive E: | 9,62 Gb Total Space | 7,23 Gb Free Space | 75,12% Space Free | Partition Type: FAT32

Drive F: | 232,83 Gb Total Space | 180,13 Gb Free Space | 77,37% Space Free | Partition Type: FAT32

G: Drive not present or media not loaded

H: Drive not present or media not loaded

Drive I: | 30,99 Mb Total Space | 29,51 Mb Free Space | 95,24% Space Free | Partition Type: FAT


Computer Name: LESQUALE59

Current User Name: Pascal

Logged in as Administrator.


Current Boot Mode: Normal

Scan Mode: Current user

Whitelist: On

File Age = 30 Days



========== File Associations ==========




========== Security Center Settings ==========


[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]







[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]


[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\AhnlabAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\ComputerAssociatesAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\KasperskyAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\McAfeeAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\McAfeeFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\PandaAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\PandaFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SophosAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecAntiVirus]


[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecFirewall]


[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TinyFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TrendAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TrendFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\ZoneLabsFirewall]










========== Authorized Applications List ==========



[2008/04/14 03:34:21 | 00,142,848 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\sessmgr.exe:*:enabled:Assistance à distance

[2008/04/14 03:34:13 | 01,695,232 | -HS- | M] (Microsoft Corporation) -- C:\Program Files\Messenger\msmsgs.exe:*:enabled:Windows Messenger

File not found -- C:\Program Files\AOL 9.0\AOL.exe:*:enabled:AOL 9.0

File not found -- C:\Program Files\AOL 9.0\WAOL.exe:*:enabled:AOL 9.0

File not found -- C:\Program Files\Fichiers communs\AOL\ACS\AOLACSD.exe:*:enabled:AOL 9.0 (Connectivity Service)

File not found -- C:\Program Files\Fichiers communs\AOL\ACS\AOLDIAL.exe:*:enabled:AOL 9.0 (Connectivity Service Dialer)

[2008/04/14 03:34:04 | 00,142,848 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\fxsclnt.exe:*:enabled:Microsoft Fax

File not found -- C:\Program Files\CA\eTrust Antivirus\InocIT.exe:*:enabled:eTrust Antivirus - Local Scanner

File not found -- C:\Program Files\CA\eTrust Antivirus\Realmon.exe:*:enabled:eTrust Antivirus - Realtime monitor

File not found -- C:\Program Files\CA\eTrust Antivirus\InoRpc.exe:*:enabled:eTrust Antivirus - RPC Server

[2008/04/14 03:33:58 | 01,044,480 | ---- | M] (Microsoft Corporation) -- C:\Program Files\NetMeeting\Conf.exe:*:enabled:NetMeeting

[2005/05/09 12:56:56 | 02,674,688 | ---- | M] (Ahead Software AG) -- C:\Program Files\Ahead\Nero MediaHome\NeroMediaHome.exe:*:enabled:Nero MediaHome

[2008/04/14 03:34:21 | 00,142,848 | ---- | M] (Microsoft Corporation) -- %windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019

[2008/04/13 19:53:32 | 00,558,080 | ---- | M] (Microsoft Corporation) -- %windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000

File not found -- C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe:*:Enabled:Logitech Desktop Messenger

[2007/01/19 11:55:02 | 05,674,352 | ---- | M] (Microsoft Corporation) -- C:\Program Files\MSN Messenger\msnmsgr.exe:*:Enabled:Windows Live Messenger 8.1

[2007/01/04 15:10:02 | 00,297,752 | ---- | M] (Microsoft Corporation) -- C:\Program Files\MSN Messenger\livecall.exe:*:Enabled:Windows Live Messenger 8.1 (Phone)



[2008/04/14 03:34:21 | 00,142,848 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\sessmgr.exe:*:enabled:Assistance à distance

[2008/04/14 03:34:04 | 00,142,848 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\fxsclnt.exe:*:enabled:Microsoft Fax

[2008/04/14 03:33:58 | 01,044,480 | ---- | M] (Microsoft Corporation) -- C:\Program Files\NetMeeting\Conf.exe:*:enabled:NetMeeting

[2005/05/09 12:56:56 | 02,674,688 | ---- | M] (Ahead Software AG) -- C:\Program Files\Ahead\Nero MediaHome\NeroMediaHome.exe:*:enabled:Nero MediaHome

[2008/04/14 03:34:21 | 00,142,848 | ---- | M] (Microsoft Corporation) -- %windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019

[2005/12/08 13:55:10 | 03,096,576 | ---- | M] () -- C:\Program Files\Yahoo!\Messenger\YPager.exe:*:Enabled:Yahoo! Messenger

[2008/04/14 03:34:13 | 01,695,232 | -HS- | M] (Microsoft Corporation) -- C:\Program Files\Messenger\msmsgs.exe:*:Enabled:Windows Messenger

[2007/07/19 09:54:24 | 00,143,408 | ---- | M] (IncrediMail, Ltd.) -- C:\Program Files\IncrediMail\bin\IMApp.exe:*:Enabled:IncrediMail

[2007/07/19 09:54:32 | 00,208,946 | ---- | M] (IncrediMail, Ltd.) -- C:\Program Files\IncrediMail\bin\IncMail.exe:*:Enabled:IncrediMail

[2007/07/19 09:51:50 | 00,090,161 | ---- | M] (IncrediMail, Ltd.) -- C:\Program Files\IncrediMail\bin\ImpCnt.exe:*:Enabled:IncrediMail

[2005/06/20 13:29:00 | 00,045,056 | ---- | M] (CyberLink Corp.) -- C:\Program Files\Home Cinema\PowerCinema\PowerCinema.exe:*:Enabled:PowerCinema

[2008/04/13 19:53:32 | 00,558,080 | ---- | M] (Microsoft Corporation) -- %windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000

[2006/11/24 21:56:28 | 01,138,880 | ---- | M] (SiSoftware) -- C:\Program Files\SiSoftware\SiSoftware Sandra Lite XIb\RpcSandraSrv.exe:*:Enabled:SiSoftware Sandra Agent Service

[2006/11/24 21:56:54 | 00,123,064 | ---- | M] (SiSoftware) -- C:\Program Files\SiSoftware\SiSoftware Sandra Lite XIb\Win32\RpcDataSrv.exe:*:Enabled:SiSoftware Database Agent Service

[2007/05/29 17:08:08 | 00,493,160 | ---- | M] (IncrediMail Ltd.) -- C:\Documents and Settings\Pascal\Mes documents\Mes fichiers reçus\incredimail_install.exe:*:Enabled:IncrediMail Installer

[2007/05/30 13:03:40 | 00,493,160 | ---- | M] (IncrediMail Ltd.) -- C:\Program Files\Mozilla Firefox\incredimail_install.exe:*:Enabled:IncrediMail Installer

[2007/01/19 11:55:02 | 05,674,352 | ---- | M] (Microsoft Corporation) -- C:\Program Files\MSN Messenger\msnmsgr.exe:*:Enabled:Windows Live Messenger 8.1

[2007/01/04 15:10:02 | 00,297,752 | ---- | M] (Microsoft Corporation) -- C:\Program Files\MSN Messenger\livecall.exe:*:Enabled:Windows Live Messenger 8.1 (Phone)

[2008/11/20 13:20:48 | 14,294,824 | ---- | M] (Apple Inc.) -- C:\Program Files\iTunes\iTunes.exe:*:Enabled:iTunes

[2008/12/12 11:17:38 | 00,238,888 | ---- | M] (Apple Inc.) -- C:\Program Files\Bonjour\mDNSResponder.exe:*:Enabled:Bonjour


========== (O10) Winsock2 Catalogs ==========



NameSpace_Catalog5\Catalog_Entries\000000000004 [NWLink IPX/SPX/NetBIOS Compatible Transport Protocol] -- C:\WINDOWS\system32\nwprovau.dll (Microsoft Corporation)


========== (O18) Protocol Handlers ==========



[2007/03/19 19:26:13 | 00,028,711 | ---- | M] (Logitech Inc.) C:\Program Files\Logitech\Desktop Messenger\8876480\Program\GAPlugProtocol-8876480.dll (bwfile-8876480:{9462A756-7B47-47BC-8C80-C34B9B80B32B} (HKLM) [backWeb GA Pluggable Protocol])

ipp: [HKLM - No CLSID value]

[2005/09/20 11:33:58 | 00,843,984 | ---- | M] (Microsoft Corporation) C:\Program Files\Fichiers communs\System\Ole DB\MSDAIPP.DLL ipp\0x00000001:{E1D2BF42-A96B-11d1-9C6B-0000F875AC61} (HKLM) [HKLM - MSDAMON.BINDER]

[2007/01/19 11:53:24 | 00,063,344 | ---- | M] (Microsoft Corporation) C:\Program Files\MSN Messenger\msgrapp.8.1.0178.00.dll (livecall:{828030A1-22C1-4009-854F-8E305202313F} (HKLM) [Reg Error: Value does not exist or could not be read.])

msdaipp: [HKLM - No CLSID value]

[2005/09/20 11:33:58 | 00,843,984 | ---- | M] (Microsoft Corporation) C:\Program Files\Fichiers communs\System\Ole DB\MSDAIPP.DLL msdaipp\0x00000001:{E1D2BF42-A96B-11d1-9C6B-0000F875AC61} (HKLM) [HKLM - MSDAMON.BINDER]

[2005/09/20 11:33:58 | 00,843,984 | ---- | M] (Microsoft Corporation) C:\Program Files\Fichiers communs\System\Ole DB\MSDAIPP.DLL msdaipp\oledb:{E1D2BF40-A96B-11d1-9C6B-0000F875AC61} (HKLM) [HKLM - MSDAIPP.BINDER]

[2000/04/19 18:47:36 | 00,520,117 | ---- | M] (Microsoft Corporation) C:\Program Files\Fichiers communs\Microsoft Shared\Information Retrieval\MSITSS.DLL (ms-itss:{0A9007C0-4076-11D3-8789-0000F8105754} (HKLM) [Microsoft Infotech Storage Protocol for IE 4.0])

[2007/01/19 11:53:24 | 00,063,344 | ---- | M] (Microsoft Corporation) C:\Program Files\MSN Messenger\msgrapp.8.1.0178.00.dll (msnim:{828030A1-22C1-4009-854F-8E305202313F} (HKLM) [Reg Error: Value does not exist or could not be read.])

[2007/05/10 12:45:34 | 08,069,464 | ---- | M] (Microsoft Corporation) C:\Program Files\Fichiers communs\Microsoft Shared\Web Components\11\OWC11.DLL (mso-offdap11:{32505114-5902-49B2-880A-1F7738E5A384} (HKLM) [Data Page Plugable Protocal mso-offdap11 Handler])


========== (O18) Protocol Filters ==========


[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\PROTOCOLS\Filter\] - Protocol Filters

[2007/04/19 12:57:40 | 00,046,432 | ---- | M] (Microsoft Corporation) C:\Program Files\Fichiers communs\Microsoft Shared\OFFICE11\MSOXMLMF.DLL text/xml:{807553E5-5146-11D5-A672-00B0D022E945} (HKLM) [Reg Error: Value does not exist or could not be read.]


========== HKEY_LOCAL_MACHINE Uninstall List ==========



"{025C3792-E9C6-432A-92C1-661F99D021CA}"=Ulead Photo Explorer 8.5

"{04AF207D-9A77-465A-8B76-991F6AB66245}"=Adobe Help Viewer CS3


"{08B32819-6EEF-4057-AEDA-5AB681A36A23}"=Adobe Bridge Start Meeting

"{0A8C97AD-DEED-4894-B446-3ABA95A77D0D}"=Windows Live Toolbar

"{0BDD3FAD-61CD-4BF3-B9C4-4CEFD43F53F8}"=Norton 360 HTMLHelp

"{0CA6047C-D28B-4295-834A-07C52BA20C2D}"=Extension de Windows Live Toolbar (Windows Live Toolbar)

"{0CC70FEF-5068-4CD5-B4DE-86FFD98EC929}"=Menus intelligents (Windows Live Toolbar)


"{0DD140D3-9563-481E-AA75-BA457CBDAEF2}"=PC Inspector File Recovery

"{184CE391-7E0E-4C63-9935-D7A10EDFD3C6}"=Adobe WinSoft Linguistics Plugin

"{18513947-C958-4EB6-B203-6F80E3EA5F22}"=Réseau Guyane BdAlti

"{1A0FF86F-2BF6-48B7-B7CE-1937F1727B2D}"=CartoExploreur 3

"{1BCEA516-B4C5-4B2D-BFA0-AB7910BAD862}"=Adobe ExtendScript Toolkit 2

"{1E04F83B-2AB9-4301-9EF7-E86307F79C72}"=Google Earth


"{20C45B32-5AB6-46A4-94EF-58950CAF05E5}"=EPSON Attach To Email

"{21829177-4DED-4209-AD08-490B3AC9C01A}"=Norton 360

"{2318C2B1-4965-11d4-9B18-009027A5CD4F}"=Google Toolbar for Internet Explorer



"{29E5EA97-5F74-4A57-B8B2-D4F169117183}"=Adobe Stock Photos CS3

"{2A88F1BF-7041-4E42-84B1-6B4ACB83AC64}"=EPSON Scan Assistant

"{2BA00471-0328-3743-93BD-FA813353A783}"=Microsoft .NET Framework 3.0 Service Pack 1

"{2D617065-1C52-4240-B5BC-C0AE12157777}"=Norton 360

"{2E8EAC71-BFE4-417A-88F0-5A1BDFBCF5D3}"=Logitech SetPoint

"{2EEEC858-21F8-419B-8FE2-820621BFFCD7}"=GetDataBack for FAT

"{2FC099BD-AC9B-33EB-809C-D332E1B27C40}"=Microsoft .NET Framework 3.5


"{3248F0A8-6813-11D6-A77B-00B0D0150050}"=J2SE Runtime Environment 5.0 Update 5

"{3250D35A-F0C7-44E4-A12C-2D810F468090}"=Réseau France BdNyme

"{350C940c-3D7C-4EE8-BAA9-00BCB3D54227}"=WebFldrs XP


"{36D6F663-DF15-45BD-B0C6-4B909308E3B6}"=Informations sur votre PC


"{3CEA4CA8-CDD4-451C-B673-E8F17BE01B15}"=Ulead COOL 360 1.0

"{43DCF766-6838-4F9A-8C91-D92DA586DFA7}"=Visionneuse Journal Windows Microsoft

"{45690715-80A6-4445-B61D-ADEC5888E8CD}"=Symantec Technical Support Controls

"{46DDF76F-ACD4-42BC-B48F-B89C4EE2E1A9}"=Easy CD & DVD Creator 6

"{49672EC2-171B-47B4-8CE7-50D7806360D7}"=Windows Live Sign-in Assistant


"{4AC307D2-AC99-4D12-B816-FCB97E05F490}"=Réseau Réunion Bayo


"{4C590030-7469-453E-8589-D15DA9D03F52}"=ANIWZCS2 Service

"{4E7D086E-AAA8-478B-A355-0CD63803E9CE}"=Map of Europe

"{54793AA1-5001-42F4-ABB6-C364617C6078}"=Adobe Linguistics CS3

"{55A6283C-638A-4EE0-B491-51118554BDA2}"=Norton Confidential Core

"{561F6A76-DCB0-11DB-8314-0800200C9A66}"=Garmin Training Center 3.2.3

"{581CE7EA-A30D-0000-1211-088635773309}"=WIFI LINK IEEE 802.11 b+g Wireless LAN - USB


"{63569CE9-FA00-469C-AF5C-E5D4D93ACF91}"=Windows Genuine Advantage v1.3.0254.0

"{64C1FA9A-FA94-4B6E-B3E4-8573738E4AD1}"=Adobe Setup

"{650D1904-ED7F-4F37-9325-33C2815D260C}"=MioMap v3 Updater

"{67EDD823-135A-4D59-87BD-950616D6E857}"=EPSON Copy Utility 3


"{6956856F-B6B3-4BE0-BA0B-8F495BE32033}"=Apple Software Update

"{6ABE0BEE-D572-4FE8-B434-9E72A289431B}"=Adobe Fonts All

"{6D047C3D-E0F6-4FA7-B858-952FEF7DBA21}"=Réseau Réunion BdAlti

"{6D4AC5A4-4CF9-4F90-8111-B9B53CE257BF}"=Adobe Color Common Settings

"{6D7F8D4B-D1A4-402A-973E-31E90940E585}"=OneCare Advisor (Windows Live Toolbar)

"{6E15BEDF-7EB5-4010-998E-B430DB4EFE45}"=Barre d'outils Outlook de Windows Live (Windows Live Toolbar)

"{6EC8F541-50BF-41D0-B41F-F5951F2E06B0}"=Réseau Antilles Bayo

"{6FF5DD7A-FE28-4439-B8CF-1E9AF4EA0A61}"=Adobe Asset Services CS3

"{7299052b-02a4-4627-81f2-1818da5d550d}"=Microsoft Visual C++ 2005 Redistributable

"{73B5D990-04EA-4751-B10F-5534770B91F2}"=Adobe Color EU Recommended Settings

"{76E41F43-59D2-4F30-BA42-9A762EE1E8DE}"=LiveUpdate BVRP Software

"{76EFFC7C-17A6-479D-9E47-8E658C1695AE}"=Utilitaire de sauvegarde Windows

"{77772678-817F-4401-9301-ED1D01A8DA56}"=SPBBC 32bit

"{786C4AD1-DCBA-49A6-B0EF-B317A344BD66}"=Windows Live Favorites pour Windows Live Toolbar

"{79B92240-9C65-4DD7-B1AD-59910D2C1353}"=AirPlus XtremeG

"{7B5CE976-C7A9-4E38-A7F3-6C8EF025DD8E}"=ANIO Service


"{7CCFADC3-60C4-4DD2-A843-171FAFB9467A}"=Digital Video Duplicator


"{7F14F68C-17FA-4F88-B3FD-7F449C1EBF32}"=EPSON Web-To-Page

"{802771A9-A856-4A41-ACF7-1450E523C923}"=Adobe XMP Panels CS3

"{868D7896-99D4-4513-BC62-2B3AD3E24926}"=TuneUp Utilities 2006


"{8AA872A2-3034-4DD1-8117-B8C56CA7026E}"=Polar WebLink 2.4.0

"{8ADFC4160D694100B5B8A22DE9DCABD9}"=DivX Player

"{8D2BA474-F406-4710-9AE4-D4F22D21F0DD}"=Adobe Device Central CS3

"{8E6808E2-613D-4FCD-81A2-6C8FA8E03312}"=Adobe Type Support

"{900B1197-53F5-4F46-A882-2CFFFE2EEDCB}"=Logitech Desktop Messenger

"{90120000-0020-040C-0000-0000000FF1CE}"=Compatibility Pack for the 2007 Office system

"{90176341-0A8B-4CCC-A78D-F862228A6B95}"=Adobe Anchor Service CS3

"{90AF040C-6000-11D3-8CFE-0150048383C9}"=Microsoft Office PowerPoint Viewer 2003

"{9113040C-6000-11D3-8CFE-0150048383C9}"=Microsoft Office Basic Edition 2003

"{924EB80F-C2BB-4B9F-8412-88BBA937393F}"=MobileMe Control Panel

"{926DEB4E-2B0A-4C5C-AE4A-BF6C06949702}"=Adobe Setup

"{99846345-C2FB-4EC0-8AF2-29950FB65056}"=Réseau Réunion BdNyme

"{9A394342-4A68-4EBA-85A6-55B559F4E700}"=Microsoft .NET Framework 1.1 French Language Pack

"{9C9824D9-9000-4373-A6A5-D0E5D4831394}"=Adobe Bridge CS3

"{9D765FA6-F2BC-40AF-8145-50808F9BDF4E}"=Pilote du DVD-RAM

"{A2B242BD-FF8D-4840-9DAA-9170EABEC59C}"=Adobe CMaps

"{A2D81E70-2A98-4A08-A628-94388B063C5E}"=Adobe Color - Photoshop Specific

"{A425C250-A0E1-4D78-B1C1-A5CBC7385E7C}"=Bloqueur de fenêtres pop-up (Windows Live Toolbar)

"{AC5B0C19-D851-42F4-BDA0-410ECF7F70A5}"=PDF Settings

"{AC76BA86-7AD7-1036-7B44-A81000000003}"=Adobe Reader 8.1.1 - Français

"{ACF60000-22B9-4CE9-98D6-2CCF359BAC07}"=ABBYY FineReader 6.0 Sprint

"{B13FE5B5-A0DF-4700-9AB4-8C94C38BCFF3}"=Réseau France BdAlti


"{B3BF6689-A81D-40D8-9A86-4AC4ACD9FC1C}"=Adobe Camera Raw 4.0

"{B4092C6D-E886-4CB2-BA68-FE5A88D31DE6}_is1"=Spybot - Search & Destroy

"{B4B5AD48-8D34-41D3-BD8A-8A10BD9BDED3}_is1"=Spy Sweeper

"{B4C69248-E01C-4C6D-9C0B-A02505625F96}"=Réseau France Bayo

"{B508B3F1-A24A-32C0-B310-85786919EF28}"=Microsoft .NET Framework 2.0 Service Pack 1


"{B7EF4BD8-CA13-11D5-AE3D-005004B8E30C}"=Digital Photo Navigator 1.5

"{B90450DF-E781-46FD-B1F1-0C86DA40E443}"=PIF DESIGNER

"{B9B35331-B7E4-4E5C-BF4C-7BC87856124D}"=Adobe Default Language CS3

"{BA0CA1B4-5491-11D7-97BC-00055D0CA761}"=Roxio DVDMax Player

"{BB406CEB-6207-4512-9BB2-89950DC9D6B6}_is1"=ConvertXtoDVD 2.0.16

"{BC69DDB8-4840-4D9B-BB31-0D4DB2BA1312}"=EPSON Easy Photo Print

"{BF794769-8875-4E01-B7BE-E00104604F4A}"=Adobe Photoshop CS3

"{C0B37117-6DEB-4346-9279-54DC468647D3}"=Réseau Guyane BdNyme

"{C151CE54-E7EA-4804-854B-F515368B0798}"=Athlon 64 Processor Driver

"{C3113E55-7BCB-4de3-8EBF-60E6CE6B2096}_is1"=SiSoftware Sandra Lite XIb (Win64/32/CE)

"{C43048A9-742C-4DAD-90D2-E3B53C9DB825}"=Logiciel QuickCam de Logitech

"{C619B312-19F3-460A-9F7B-443248379F18}"=Opera 9.25

"{C6E91710-5BF5-43C5-AB81-C3E488133346}"=Sony Ericsson Drivers

"{C7340571-7773-4A8C-9EBC-4E4243B38C76}"=Microsoft XML Parser


"{C9A87D86-FDFD-418B-BF96-EF09320973B3}"=PC Inspector smart recovery

"{CAA389AD-9872-459C-92B3-B009390B9E12}"=Réseau Guyane Bayo

"{CB2F7EDD-9D1F-43C1-90FC-4F52EAE172A1}"=Microsoft .NET Framework 1.1

"{CE325D55-FCAF-4273-BB79-069BB8747270}"=TomTom HOME

"{D0DFF92A-492E-4C40-B862-A74A173C25C5}"=Adobe Version Cue CS3 Client

"{D21635EA-7A89-4881-86A9-0C1DCBCD1317}"=Sony Ericsson PC Suite 1.20.237

"{D2559B88-CC9D-4B48-81BB-F492BAA9C48C}"=Adobe PDF Library Files

"{D504303A-717D-414C-BA9F-FE01093E2EF8}"=Adobe Setup

"{D6E6FA4A-5445-4850-8365-CF216C1CBB7A}"=Symantec Real Time Storage Protection Component

"{DD7DB3C5-6FA3-4FA3-8A71-C2F2940EB029}"=Adobe Color JA Extra Settings

"{DE4847A9-E86B-4BBB-B991-58C5ACA4FA04}"=Diskeeper Professional Edition

"{E142615E-5ED8-4511-9BF0-0284BFA25766}"=ArcSoft PhotoImpression

"{E2210114-4158-4D41-ACCC-24176191E760}"=Sagem Photo Easy

"{E69AE897-9E0B-485C-8552-7841F48D42D8}"=Adobe Update Manager CS3

"{E80F62FF-5D3C-4A19-8409-9721F2928206}"=LiveUpdate (Symantec Corporation)

"{E86BC406-944E-41F6-ADE6-2C136734C96B}"=EPSON File Manager

"{EA1CB7AC-E221-4822-A789-0ADB051DC498}"=Generic USB CardReader 2.0

"{EC4455AB-F155-4CC1-A4C5-88F3777F9886}"=Apple Mobile Device Support

"{EEC8305D-D841-41AC-B0D7-77F2B01677C8}"=Réseau Antilles BdAlti


"{EFFCB0F1-CFEC-48D4-B793-EBFCAE852976}"=Détecteur de flux Windows Live Toolbar (Windows Live Toolbar)

"{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}"=Realtek High Definition Audio Driver


"{F6326B60-1B1D-4ABF-BFCD-7B7404F44411}"=Windows Live Messenger

"{F6869CD2-3DB4-476D-A4C7-B3AE7C3ACF7B}"=Windows Media Connect


"{F996DEB7-4AD7-4F15-84AA-114B8BE45911}"=Polar UpLink Tool

"{FB08F381-6533-4108-B7DD-039E11FBC27E}"=Realtek AC'97 Audio

"{FC63BB62-6264-48F4-8F07-3B0930DB030A}"=Réseau Antilles BdNyme

"{FCE65C4E-B0E8-4FBD-AD16-EDCBE6CD591F}"=Extension HighMAT pour l'Assistant Graver un CD de Microsoft Windows XP

"{FE58B892-3825-4610-A6A2-E6EFCA83BD97}"=Ulead PhotoImpact 10

"{FF29A7E2-FF40-4D07-B7E4-2093DE59E10A}"=Adobe Color NA Extra Settings

"7-Zip"=7-Zip 4.32

"AC3Filter"=AC3Filter (remove only)

"Active@ UNDELETE 7"=Active@ UNDELETE 7

"ActiveScan 2.0"=Panda ActiveScan 2.0

"Adobe_32e9033392a51340b32fdc6ad893ab7"=Adobe Photoshop CS3

"Adobe_5bc0f8414ec36c555a3e7e5ec2e225e"=Adobe ExtendScript Toolkit 2

"Adobe_6c8e2cb4fd241c55406016127a6ab2e"=Adobe Color Common Settings

"Ahead DVD Ripper_is1"=Ahead DVD Ripper 3.1.2

"AI RoboForm"=AI RoboForm (All Users)

"AoA DVD Ripper_is1"=AoA DVD Ripper

"a-squared Anti-Dialer_is1"=a-squared Anti-Dialer 3.0

"a-squared Free_is1"=a-squared Free 2.0

"AviSynth"=AviSynth 2.5

"AVS Audio Tools 4.4_is1"=AVS Audio Tools version 4.4

"AVS DVD Copy_is1"=AVS DVD Copy version 1.4

"AVS DVD Player_is1"=AVS DVD Player version 2.4

"AVS DVDMenu Editor_is1"=AVS DVDMenu Editor

"AVS TV Box_is1"=AVS TV Box 1.5.1

"AVS Video Tools 5.2_is1"=AVS Video Tools 5.2

"AVS Video Tools 5_is1"=AVS Video Tools 5.6

"AVSDiscCreator_is1"=AVS Disc Creator version 2.1

"AVSMedia Video Editor_is1"=AVS Video Editor 3.5

"CartoExploreur 3_{1A0FF86F-2BF6-48B7-B7CE-1937F1727B2D}"=CartoExploreur 3 3.02

"CCleaner"=CCleaner (remove only)

"C-Media Audio"=C-Media 3D Audio

"C-Media Audio Driver"=C-Media WDM Audio Driver

"Compel install Adaptec WinASPI-4.6.0(1021)_is1"=Compel Adaptec WinASPI

"CopernicDesktopSearch2"=Copernic Desktop Search 2

"CoreAAC Audio Decoder"=CoreAAC Audio Decoder (remove only)

"dBpowerAMP Music Converter"=dBpowerAMP Music Converter

"dBpowerAMP WMA V9.1 Codec"=dBpowerAMP WMA V9.1 Codec

"Diondine 5.0"=Diondine 5.0

"DiskCleaner"=Disk Cleaner (remove only)

"Drive Rescue_is1"=Drive Rescue 1.9

"DVD Shrink_is1"=DVD Shrink 3.2

"DVD to VCD AVI DivX Converter v3.2 (build 062)"=DVD to VCD AVI DivX Converter v3.2 (build 062)

"Easy CD-DA Extractor 10"=Easy CD-DA Extractor 10

"encodeur Real Video Producer"=encodeur Real Video Producer

"EPSON Printer and Utilities"=EPSON Logiciel imprimante

"EPSON Scanner"=EPSON Scan

"ESDX5000_CX4900 Guide d’utilisation"=ESDX5000_CX4900 Guide d’utilisation

"EsetOnlineScanner"=ESET Online Scanner

"EVEREST Home Edition_is1"=EVEREST Home Edition v2.20

"FairUse Wizard 2"=FairUse Wizard 2

"Filmotech_is1"=Filmotech v2.31

"Foxmail_is1"=Foxmail 5.0 Fr.

"Free Mp3 Wma Converter_is1"=Free Mp3 Wma Converter V 1.2.9

"freeCommander_is1"=freeCommander 2005.09a

"GENEUIDE"=USB Storage Driver

"gPhotoShow Screen Saver"=gPhotoShow Screen Saver

"GXTranscoder OGG Vorbis Support"=GXTranscoder OGG Vorbis Support

"GXTranscoder v2"=GXTranscoder v2

"HaaliMkx"=Haali Media Splitter

"HijackThis"=HijackThis 2.0.2

"Hijackthis Version Française_is1"=Hijackthis Version Française

"IDNMitigationAPIs"=Microsoft Internationalized Domain Names Mitigation APIs

"IncrediMail"=IncrediMail Xe

"Indispensables RV9/RV10 pour Ri4m"=Indispensables RV9/RV10 pour Ri4m

"InstallShield_{20C45B32-5AB6-46A4-94EF-58950CAF05E5}"=EPSON Attach To Email

"IZArc 3.5 beta 3_is1"=IZArc 3.5 beta 3

"Jiggy Girls"=Jiggy Girls

"Kaspersky Online Scanner"=Kaspersky Online Scanner

"KC Softwares VideoInspector_is1"=KC Softwares VideoInspector

"LaCie Device Updater"=LaCie Device Updater

"LameACM"=Lame ACM MP3 Codec

"LMS"=C-Dilla Licence Management System

"Logitech Print Service"=Logitech Print Service

"Macromedia Shockwave Player"=Macromedia Shockwave Player

"Malwarebytes' Anti-Malware_is1"=Malwarebytes' Anti-Malware

"MasterCook 5 : LGLC"=MasterCook 5 : LGLC

"Matroska Pack"=Matroska Pack (remove only)

"Matroska Playback Pack"=Matroska Playback Pack

"Microsoft .NET Framework 1.1 (1033)"=Microsoft .NET Framework 1.1

"Microsoft .NET Framework 3.5"=Microsoft .NET Framework 3.5

"Mio Technology Speedcam Synchronisation"=Mio Technology Speedcam Synchronisation

"Mio Technology SpeedCam Tool"=Mio Technology SpeedCam Tool

"MKVtoolnix"=MKVtoolnix 2.1.0

"mmswitch"=Morgan Stream Switcher

"Movie Collection 2005_is1"=Movie Collection

"Mozilla Firefox ("=Mozilla Firefox (


"My Drivers 3.11"=My Drivers 3.11

"NeroMultiInstaller!UninstallKey"=Nero Suite

"NLSDownlevelMapping"=Microsoft National Language Support Downlevel APIs

"NVIDIA Drivers"=NVIDIA Drivers

"OgcDrv_{894782F5-E443-4452-B04A-45657D3A759A}"=OgcDrv 2.06

"OggDS"=Direct Show Ogg Vorbis Filter (remove only)

"Pack PSP - Ri4m - v1.0a"=Pack PSP - Ri4m - v1.0a

"Panda ActiveScan"=Panda ActiveScan

"PokerAcademyPro2"=Poker Academy Pro 2

"Pop-Up Washer"=Pop-Up Washer

"PSP Video 9"=PSP Video 9 1.74

"PsuedoLiveUpdate"=LiveUpdate (Symantec Corporation)

"QcDrv"=Programme de gestion Camera de Logitech®

"RealPlayer 6.0"=RealPlayer

"Recover My Files_is1"=Recover My Files

"Recuva"=Recuva (remove only)

"Réseau Antilles Bayo_{6EC8F541-50BF-41D0-B41F-F5951F2E06B0}"=Réseau Antilles Bayo 0002-Q0

"Réseau Antilles BdAlti_{EEC8305D-D841-41AC-B0D7-77F2B01677C8}"=Réseau Antilles BdAlti 2003-Q1

"Réseau Antilles BdNyme_{FC63BB62-6264-48F4-8F07-3B0930DB030A}"=Réseau Antilles BdNyme 2003-Q1

"Réseau France Bayo_{B4C69248-E01C-4C6D-9C0B-A02505625F96}"=Réseau France Bayo 0003-Q0

"Réseau France BdAlti_{B13FE5B5-A0DF-4700-9AB4-8C94C38BCFF3}"=Réseau France BdAlti 2003-Q1

"Réseau France BdNyme_{3250D35A-F0C7-44E4-A12C-2D810F468090}"=Réseau France BdNyme 2003-Q1

"Réseau Guyane Bayo_{CAA389AD-9872-459C-92B3-B009390B9E12}"=Réseau Guyane Bayo 0002-Q0

"Réseau Guyane BdAlti_{18513947-C958-4EB6-B203-6F80E3EA5F22}"=Réseau Guyane BdAlti 2003-Q1

"Réseau Guyane BdNyme_{C0B37117-6DEB-4346-9279-54DC468647D3}"=Réseau Guyane BdNyme 2003-Q1

"Réseau Réunion Bayo_{4AC307D2-AC99-4D12-B816-FCB97E05F490}"=Réseau Réunion Bayo 0002-Q0

"Réseau Réunion BdAlti_{6D047C3D-E0F6-4FA7-B858-952FEF7DBA21}"=Réseau Réunion BdAlti 2003-Q1

"Réseau Réunion BdNyme_{99846345-C2FB-4EC0-8AF2-29950FB65056}"=Réseau Réunion BdNyme 2003-Q1

"Ri4m v5.0.1d"=Ri4m v5.0.1d

"RIAM Video Enhancer"=RIAM Video Enhancer

"Ripp-It Codec Pack"=Ripp-It Codec Pack v 4.2.6

"ShockwaveFlash"=Adobe Flash Player 9 ActiveX

"Songbird"=Songbird 0.2.5 (Win32)

"SpeedFan"=SpeedFan (remove only)

"ST6UNST #1"=VSprint

"StreetPlugin"=Learn2 Player (Uninstall Only)

"SUPER ©"=SUPER © Version 2007.bld.23 (July 4, 2007)

"Super jeu de dames 3D"=Super jeu de dames 3D

"SymSetup.{2D617065-1C52-4240-B5BC-C0AE12157777}"=Norton 360 (Symantec Corporation)

"The X-Files"=The X-Files

"Totalcmd"=Total Commander (Remove or Repair)

"Undelete NOW! Trial_is1"=Undelete NOW! Trial

"UndeletePlus_is1"=Undelete Plus 2.98

"Unlocker"=Unlocker 1.8.3

"Video Cleaner Lite"=River Past Video Cleaner Lite

"VLC media player"=VideoLAN VLC media player 0.8.4a

"VobSub"=VobSub v2.23 (Remove Only)

"wdgps_is1"=WDGPS (desinstallation)

"Webshots Desktop"=Webshots Desktop

"WIC"=Windows Imaging Component

"WinAVI Video Converter_is1"=WinAVI Video Converter 7.6

"Window Washer"=Window Washer

"Windows Live OneCare safety scanner"=Windows Live OneCare safety scanner

"Windows Live Toolbar"=Windows Live Toolbar

"Windows Media Connect"=Windows Media Connect

"Windows Media Format Runtime"=Windows Media Format Runtime

"Windows Media Player"=Lecteur Windows Media 10

"Windows XP Service"=Windows XP Service Pack 3

"WinPatrol"=WinPatrol 2007

"WinRAR archiver"=Archiveur WinRAR

"WJChess 1.0"=WJChess 1.0

"X10Hardware"=X10 Hardware

"X-NetStat Professional"=X-NetStat Professional 5.49

"XnView_is1"=XnView 1.92

"XpsEPSC"=XML Paper Specification Shared Components Pack 1.0

"XviD MPEG4 Video Codec"=XviD MPEG4 Video Codec (remove only)

"XviD_is1"=XviD MPEG-4 Video Codec

"Yahoo! Companion"=Yahoo! Toolbar avec bloqueur de fenêtres pop-up

"Zeb Help Process_is1"=ZebHelpProcess 2.23.1


========== HKEY_CURRENT_USER Uninstall List ==========






========== Last 10 Event Log Errors ==========


[ Application Events ]

Error - 03/07/2008 14:56:58 | Computer Name = LESQUALE59 | Source = MsiInstaller | ID = 11406

Description = Produit : Microsoft Office Basic Edition 2003 -- Erreur 1406. Le programme

d'installation ne peut pas écrire la valeur Installed dans la clé de registre \Software\Microsoft\Windows\CurrentVersion\Run\OptionalComponents\MSFS.

Vérifiez que vous disposez des autorisations nécessaires pour accéder au registre,

ou contactez le service clientèle du fabricant de votre ordinateur pour obtenir

de l'assistance.


Error - 03/07/2008 14:57:00 | Computer Name = LESQUALE59 | Source = MsiInstaller | ID = 1024

Description = Produit : Microsoft Office Basic Edition 2003 - La mise à jour 'Security

Update for Office 2003 (KB947355): MSO' n'a pas pu être installée. Code d'erreur

1603. Windows Installer peut créer des journaux pour faciliter la résolution des

éventuelles erreurs d'installation des packages logiciels. Utilisez le lien suivant

pour afficher des instructions concernant l'activation des journaux :


Error - 27/07/2008 10:05:04 | Computer Name = LESQUALE59 | Source = Application Hang | ID = 1002

Description = Application bloquée mplayerc.exe, version, module bloqué hungapp,

version, adresse de blocage 0x00000000.


Error - 14/09/2008 05:08:33 | Computer Name = LESQUALE59 | Source = MsiInstaller | ID = 11406

Description = Produit : Microsoft Office Basic Edition 2003 -- Erreur 1406. Le programme

d'installation ne peut pas écrire la valeur Installed dans la clé de registre \Software\Microsoft\Windows\CurrentVersion\Run\OptionalComponents\MSFS.

Vérifiez que vous disposez des autorisations nécessaires pour accéder au registre,

ou contactez le service clientèle du fabricant de votre ordinateur pour obtenir

de l'assistance.


Error - 14/09/2008 05:09:11 | Computer Name = LESQUALE59 | Source = MsiInstaller | ID = 1024

Description = Produit : Microsoft Office Basic Edition 2003 - La mise à jour 'Security

Update for Excel 2003 (KB951548): EXCEL' n'a pas pu être installée. Code d'erreur

1603. Windows Installer peut créer des journaux pour faciliter la résolution des

éventuelles erreurs d'installation des packages logiciels. Utilisez le lien suivant

pour afficher des instructions concernant l'activation des journaux :


Error - 14/09/2008 05:16:55 | Computer Name = LESQUALE59 | Source = MsiInstaller | ID = 11406

Description = Produit : Microsoft Office Basic Edition 2003 -- Erreur 1406. Le programme

d'installation ne peut pas écrire la valeur Installed dans la clé de registre \Software\Microsoft\Windows\CurrentVersion\Run\OptionalComponents\MSFS.

Vérifiez que vous disposez des autorisations nécessaires pour accéder au registre,

ou contactez le service clientèle du fabricant de votre ordinateur pour obtenir

de l'assistance.


Error - 14/09/2008 05:16:58 | Computer Name = LESQUALE59 | Source = MsiInstaller | ID = 1024

Description = Produit : Microsoft Office Basic Edition 2003 - La mise à jour 'Security

Update for Office 2003 (KB953404): MSO' n'a pas pu être installée. Code d'erreur

1603. Windows Installer peut créer des journaux pour faciliter la résolution des

éventuelles erreurs d'installation des packages logiciels. Utilisez le lien suivant

pour afficher des instructions concernant l'activation des journaux :


Error - 14/09/2008 05:47:29 | Computer Name = LESQUALE59 | Source = Application Error | ID = 1000

Description = Application défaillante explorer.exe, version 6.0.2900.3156, module

défaillant unknown, version, adresse de défaillance 0x012923ec.


Error - 15/09/2008 12:29:28 | Computer Name = LESQUALE59 | Source = MsiInstaller | ID = 11406

Description = Produit : Microsoft Office Basic Edition 2003 -- Erreur 1406. Le programme

d'installation ne peut pas écrire la valeur Installed dans la clé de registre \Software\Microsoft\Windows\CurrentVersion\Run\OptionalComponents\MSFS.

Vérifiez que vous disposez des autorisations nécessaires pour accéder au registre,

ou contactez le service clientèle du fabricant de votre ordinateur pour obtenir

de l'assistance.


Error - 15/09/2008 12:29:43 | Computer Name = LESQUALE59 | Source = MsiInstaller | ID = 1024

Description = Produit : Microsoft Office Basic Edition 2003 - La mise à jour 'Security

Update for Excel 2003 (KB951548): EXCEL' n'a pas pu être installée. Code d'erreur

1603. Windows Installer peut créer des journaux pour faciliter la résolution des

éventuelles erreurs d'installation des packages logiciels. Utilisez le lien suivant

pour afficher des instructions concernant l'activation des journaux :


[ System Events ]

Error - 03/01/2009 11:44:46 | Computer Name = LESQUALE59 | Source = netrcacm | ID = 5002

Description = RCA USB Cable Modem #2 : a déterminé que la carte réseau ne fonctionne

pas correctement.


Error - 03/01/2009 11:46:16 | Computer Name = LESQUALE59 | Source = Service Control Manager | ID = 7001

Description = Le service Configuration automatique sans fil dépend du service NDIS

mode utilisateur E/S Protocole qui n'a pas pu démarrer en raison de l'erreur :



Error - 03/01/2009 11:46:16 | Computer Name = LESQUALE59 | Source = Service Control Manager | ID = 7026

Description = Le pilote de démarrage système ou d'amorçage suivant n'a pas pu se

charger : bdpredir


Error - 03/01/2009 16:01:45 | Computer Name = LESQUALE59 | Source = netrcacm | ID = 5002

Description = RCA USB Cable Modem #2 : a déterminé que la carte réseau ne fonctionne

pas correctement.


Error - 03/01/2009 16:04:31 | Computer Name = LESQUALE59 | Source = netrcacm | ID = 5002

Description = RCA USB Cable Modem #2 : a déterminé que la carte réseau ne fonctionne

pas correctement.


Error - 03/01/2009 16:06:02 | Computer Name = LESQUALE59 | Source = Service Control Manager | ID = 7001

Description = Le service Configuration automatique sans fil dépend du service NDIS

mode utilisateur E/S Protocole qui n'a pas pu démarrer en raison de l'erreur :



Error - 03/01/2009 16:06:02 | Computer Name = LESQUALE59 | Source = Service Control Manager | ID = 7026

Description = Le pilote de démarrage système ou d'amorçage suivant n'a pas pu se

charger : bdpredir


Error - 04/01/2009 09:25:20 | Computer Name = LESQUALE59 | Source = netrcacm | ID = 5002

Description = RCA USB Cable Modem #2 : a déterminé que la carte réseau ne fonctionne

pas correctement.


Error - 04/01/2009 09:26:46 | Computer Name = LESQUALE59 | Source = Service Control Manager | ID = 7001

Description = Le service Configuration automatique sans fil dépend du service NDIS

mode utilisateur E/S Protocole qui n'a pas pu démarrer en raison de l'erreur :



Error - 04/01/2009 09:26:46 | Computer Name = LESQUALE59 | Source = Service Control Manager | ID = 7026

Description = Le pilote de démarrage système ou d'amorçage suivant n'a pas pu se

charger : bdpredir



< End of report >





Les rapports ne révèlent aucun élément infectieux. Je ne pense pas que ton problème soit d'origine virale.



Si quelqu'un a une idée, qu'il n'hésite surtout pas.

Rejoindre la conversation

Vous pouvez publier maintenant et vous inscrire plus tard. Si vous avez un compte, connectez-vous maintenant pour publier avec votre compte.
Remarque : votre message nécessitera l’approbation d’un modérateur avant de pouvoir être visible.

Répondre à ce sujet…

×   Collé en tant que texte enrichi.   Coller en tant que texte brut à la place

  Seulement 75 émoticônes maximum sont autorisées.

×   Votre lien a été automatiquement intégré.   Afficher plutôt comme un lien

×   Votre contenu précédent a été rétabli.   Vider l’éditeur

×   Vous ne pouvez pas directement coller des images. Envoyez-les depuis votre ordinateur ou insérez-les depuis une URL.

  • En ligne récemment   0 membre est en ligne

    • Aucun utilisateur enregistré regarde cette page.
  • Créer...