Trojan2.hvl dans jestertb.dll.

[philren]

Bonjour à tous

 

Je suis sous Windows XP; mes antivirus et antimalware ne détectent rien de spécial. En revanche, ZHP me signale une infection dans C:\WINDOWS\jestertb.dll.

 

Et Virus Total détecte Trojan2.hvl dans ce jestertb.dll. Est-il dangereux ? Si oui, puis-je supprimer cette dll ou la désinfecter et comment ?

 

Je joins un rapport hijackthis.

 

Merci d'avance à tous et bon dimanche.

 

Logfile of Trend Micro HijackThis v2.0.2

Scan saved at 11:47:59, on 13/06/2010

Platform: Windows XP SP3 (WinNT 5.01.2600)

MSIE: Internet Explorer v8.00 (8.00.6001.18702)

Boot mode: Normal

 

Running processes:

C:\WINDOWS\System32\smss.exe

C:\WINDOWS\system32\winlogon.exe

C:\WINDOWS\system32\services.exe

C:\WINDOWS\system32\lsass.exe

C:\WINDOWS\system32\svchost.exe

C:\WINDOWS\System32\svchost.exe

C:\WINDOWS\system32\spoolsv.exe

C:\Program Files\Avira\AntiVir Desktop\sched.exe

C:\WINDOWS\Explorer.EXE

C:\WINDOWS\SOUNDMAN.EXE

C:\program files\powerstrip\pstrip.exe

C:\WINDOWS\system32\LVCOMSX.EXE

C:\Program Files\Canon\MyPrinter\BJMyPrt.exe

C:\Program Files\ScanSoft\OmniPageSE4\OpwareSE4.exe

C:\Program Files\Logitech\Video\LogiTray.exe

C:\Program Files\Acronis\TrueImageHome\TrueImageMonitor.exe

C:\Program Files\Fichiers communs\Acronis\Schedule2\schedhlp.exe

C:\Program Files\ClocX\ClocX.exe

C:\Program Files\BroadJump\Client Foundation\CFD.exe

C:\Program Files\Avira\AntiVir Desktop\avgnt.exe

C:\Program Files\Fichiers communs\Java\Java Update\jusched.exe

C:\Program Files\Logitech\Video\FxSvr2.exe

C:\Program Files\Sandboxie\SbieCtrl.exe

C:\Program Files\FinePixViewer\QuickDCF2.exe

C:\Program Files\FastStone Capture\FSCapture.exe

C:\Program Files\Fichiers communs\Acronis\Schedule2\schedul2.exe

C:\Program Files\Avira\AntiVir Desktop\avguard.exe

C:\WINDOWS\system32\bgsvcgen.exe

C:\Program Files\Java\jre6\bin\jqs.exe

C:\Program Files\CDBurnerXP\NMSAccessU.exe

C:\Program Files\Sandboxie\SbieSvc.exe

C:\WINDOWS\system32\svchost.exe

C:\Program Files\Avira\AntiVir Desktop\avmailc.exe

C:\Program Files\Avira\AntiVir Desktop\AVWEBGRD.EXE

C:\Program Files\Internet Explorer\iexplore.exe

C:\Program Files\Internet Explorer\iexplore.exe

C:\Program Files\Mozilla Thunderbird\thunderbird.exe

C:\Program Files\Internet Explorer\iexplore.exe

C:\Program Files\Internet Explorer\iexplore.exe

C:\Program Files\Internet Explorer\iexplore.exe

C:\Program Files\ZebHelpProcess\ZHP2.exe

C:\Program Files\Hijackthis\HijackThis.exe

 

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://france.meteofrance.com/france/meteo...sville%2F212310

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896

R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.duxet.com/

R1 - HKCU\Software\Microsoft\Internet Connection Wizard,ShellNext = http://windowsupdate.microsoft.com/

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Window Title = Internet Explorer avec Club-Internet

R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens

O2 - BHO: (no name) - {1392b8d2-5c05-419f-a8f6-b9f15a596612} - (no file)

O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Fichiers communs\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll

O2 - BHO: RealPlayer Download and Record Plugin for Internet Explorer - {3049C3E9-B461-4BC5-8870-4C09146192CA} - C:\Program Files\Real\RealPlayer\rpbrowserrecordplugin.dll

O2 - BHO: Canon Easy-WebPrint EX BHO - {3785D0AD-BFFF-47F6-BF5B-A587C162FED9} - C:\Program Files\Canon\Easy-WebPrint EX\ewpexbho.dll

O2 - BHO: (no name) - {5C255C8A-E604-49b4-9D64-90988571CECB} - (no file)

O2 - BHO: Désactivation du cookie publicitaire - {8E425EB4-ADBD-4816-B1E8-49BB9DECF034} - C:\Program Files\Google\Advertising Cookie Opt-out\opt_out.dll

O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll

O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\5.1.1309.3572\swg.dll

O2 - BHO: Java Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll

O2 - BHO: JQSIEStartDetectorImpl - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll

O3 - Toolbar: Canon Easy-WebPrint EX - {759D9886-0C6F-4498-BAB6-4A5F47C6C72F} - C:\Program Files\Canon\Easy-WebPrint EX\ewpexhlp.dll

O4 - HKLM\..\Run: [siSPower] Rundll32.exe SiSPower.dll,ModeAgent

O4 - HKLM\..\Run: [soundMan] SOUNDMAN.EXE

O4 - HKLM\..\Run: [PowerStrip] c:\program files\powerstrip\pstrip.exe

O4 - HKLM\..\Run: [LVCOMSX] C:\WINDOWS\system32\LVCOMSX.EXE

O4 - HKLM\..\Run: [REGSHAVE] C:\Program Files\REGSHAVE\REGSHAVE.EXE /AUTORUN

O4 - HKLM\..\Run: [CanonMyPrinter] C:\Program Files\Canon\MyPrinter\BJMyPrt.exe /logon

O4 - HKLM\..\Run: [sSBkgdUpdate] "C:\Program Files\Fichiers communs\Scansoft Shared\SSBkgdUpdate\SSBkgdupdate.exe" -Embedding -boot

O4 - HKLM\..\Run: [OpwareSE4] "C:\Program Files\ScanSoft\OmniPageSE4\OpwareSE4.exe"

O4 - HKLM\..\Run: [LogitechVideoRepair] C:\Program Files\Logitech\Video\ISStart.exe

O4 - HKLM\..\Run: [LogitechVideoTray] C:\Program Files\Logitech\Video\LogiTray.exe

O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime

O4 - HKLM\..\Run: [TrueImageMonitor.exe] C:\Program Files\Acronis\TrueImageHome\TrueImageMonitor.exe

O4 - HKLM\..\Run: [Acronis Scheduler2 Service] "C:\Program Files\Fichiers communs\Acronis\Schedule2\schedhlp.exe"

O4 - HKLM\..\Run: [ClocX] C:\Program Files\ClocX\ClocX.exe

O4 - HKLM\..\Run: [bJCFD] C:\Program Files\BroadJump\Client Foundation\CFD.exe

O4 - HKLM\..\Run: [avgnt] "C:\Program Files\Avira\AntiVir Desktop\avgnt.exe" /min

O4 - HKLM\..\Run: [TkBellExe] "realsched.exe" -osboot

O4 - HKLM\..\Run: [sunJavaUpdateSched] "C:\Program Files\Fichiers communs\Java\Java Update\jusched.exe"

O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe"

O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files\Fichiers communs\Adobe\ARM\1.0\AdobeARM.exe"

O4 - HKCU\..\Run: [msnmsgr] "C:\Program Files\Windows Live\Messenger\msnmsgr.exe" /background

O4 - HKCU\..\Run: [sandboxieControl] "C:\Program Files\Sandboxie\SbieCtrl.exe"

O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE LOCAL')

O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE RÉSEAU')

O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')

O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')

O4 - Startup: FastStone Capture.lnk = C:\Program Files\FastStone Capture\FSCapture.exe

O4 - Global Startup: Exif Launcher 2.lnk = ?

O4 - Global Startup: Thunderbird.lnk = C:\Program Files\Mozilla Thunderbird\thunderbird.exe

O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~2\OFFICE11\EXCEL.EXE/3000

O9 - Extra button: (no name) - {85d1f590-48f4-11d9-9669-0800200c9a66} - C:\WINDOWS\bdoscandel.exe

O9 - Extra 'Tools' menuitem: Uninstall BitDefender Online Scanner v8 - {85d1f590-48f4-11d9-9669-0800200c9a66} - C:\WINDOWS\bdoscandel.exe

O9 - Extra button: Recherche - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\OFFICE11\REFIEBAR.DLL

O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe

O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe

O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe

O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe

O16 - DPF: {2D8ED06D-3C30-438B-96AE-4D110FDC1FB8} (ActiveScan 2.0 Installer Class) - http://acs.pandasoftware.com/activescan/cabs/as2stubie.cab

O16 - DPF: {5D86DDB5-BDF9-441B-9E9E-D4730F4EE499} (BDSCANONLINE Control) - http://www.zebulon.fr/scan8/oscan8.cab

O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) - http://www.update.microsoft.com/windowsupd...b?1203332575293

O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/shoc...ash/swflash.cab

O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553550000} - http://fpdownload2.macromedia.com/get/shoc...ash/swflash.cab

O16 - DPF: {E77F23EB-E7AB-4502-8F37-247DBAF1A147} (Windows Live Hotmail Photo Upload Tool) - http://gfx2.hotmail.com/mail/w4/pr01/photo...ol/MSNPUpld.cab

O16 - DPF: {EF791A6B-FC12-4C68-99EF-FB9E207A39E6} (McFreeScan Class) - http://download.mcafee.com/molbin/iss-loc/...433/mcfscan.cab

O18 - Protocol: skyline - {3A4F9195-65A8-11D5-85C1-0001023952C1} - (no file)

O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\FICHIE~1\Skype\SKYPE4~1.DLL

O23 - Service: Acronis Scheduler2 Service (AcrSch2Svc) - Acronis - C:\Program Files\Fichiers communs\Acronis\Schedule2\schedul2.exe

O23 - Service: Avira AntiVir MailGuard (AntiVirMailService) - Avira GmbH - C:\Program Files\Avira\AntiVir Desktop\avmailc.exe

O23 - Service: Avira AntiVir Planificateur (AntiVirSchedulerService) - Avira GmbH - C:\Program Files\Avira\AntiVir Desktop\sched.exe

O23 - Service: Avira AntiVir Guard (AntiVirService) - Avira GmbH - C:\Program Files\Avira\AntiVir Desktop\avguard.exe

O23 - Service: Avira AntiVir WebGuard (AntiVirWebService) - Avira GmbH - C:\Program Files\Avira\AntiVir Desktop\AVWEBGRD.EXE

O23 - Service: B's Recorder GOLD Library General Service (bgsvcgen) - B.H.A Corporation - C:\WINDOWS\system32\bgsvcgen.exe

O23 - Service: Google Update Service (gupdate1c9b5e293164e5e) (gupdate1c9b5e293164e5e) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe

O23 - Service: Google Software Updater (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe

O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Fichiers communs\InstallShield\Driver\1050\Intel 32\IDriverT.exe

O23 - Service: Java Quick Starter (JavaQuickStarterService) - Sun Microsystems, Inc. - C:\Program Files\Java\jre6\bin\jqs.exe

O23 - Service: NMSAccess - Unknown owner - C:\Program Files\CDBurnerXP\NMSAccessU.exe

O23 - Service: Cyberlink RichVideo Service(CRVS) (RichVideo) - Unknown owner - C:\Program Files\Cyberlink\Shared files\RichVideo.exe (file missing)

O23 - Service: SiSoftware Deployment Agent Service (SandraAgentSrv) - SiSoftware - C:\Program Files\Sandra Lite 2010\RpcAgentSrv.exe

O23 - Service: Sandboxie Service (SbieSvc) - tzuk - C:\Program Files\Sandboxie\SbieSvc.exe

 

--

End of file - 11033 bytes

[pear]

Bonjour,

Je joins un rapport hijackthis.

Et pourquoi pas le rapport Zhp, bien plus complet ?

Modifié le 13 juin 2010 par pear

[philren]

Bien sûr, et voilà; merci :

 

Rapport de ZHPDiag v1.25.1333 par Nicolas Coolman

Run by C at 13/06/2010 13:17:39

Web site : http://www.premiumorange.com/zeb-help-process/zhpdiag.html

 

---\\ Web Browser

MSIE: Internet Explorer v8.0.6001.18702

MFIE: Mozilla Firefox (3.6.3)

 

---\\ System Information

Platform : Microsoft Windows XP (5.1.2600) Service Pack 3

Processor: x86 Family 15 Model 107 Stepping 2, AuthenticAMD

Operating System: 32 Bits

Boot mode: Normal (Normal boot)

Total RAM: 1983 MB (61% free)

System drive C: has 36 GB (62%) free of 59 GB

 

---\\ DOS/Devices

C:\ Hard drive, Flash drive, Thumb drive (Free 36 Go of 59 Go)

D:\ CD-ROM drive (Not Inserted)

E:\ CD-ROM drive (Not Inserted)

F:\ Hard drive, Flash drive, Thumb drive (Free 152 Go of 239 Go)

G:\ Floppy drive, Flash card reader, USB Key (Not Inserted)

M:\ Hard drive, Flash drive, Thumb drive (Free 432 Go of 932 Go)

Z:\ CD-ROM drive (Not Inserted)

 

 

---\\ Security Center & Tools Informations

[HKLM\SOFTWARE\Microsoft\Security Center] AntiSpywareOverride: OK

[HKLM\SOFTWARE\Microsoft\Security Center] AntiVirusOverride: OK

[HKLM\SOFTWARE\Microsoft\Security Center] AntiVirusDisableNotify: OK

[HKLM\SOFTWARE\Microsoft\Security Center] FirewallDisableNotify: OK

[HKLM\SOFTWARE\Microsoft\Security Center] FirewallOverride: OK

[HKLM\SOFTWARE\Microsoft\Security Center] UpdatesDisableNotify: OK

[HKLM\SOFTWARE\Microsoft\Security Center] UacDisableNotify: OK

[HKLM\SOFTWARE\Microsoft\Security Center\Svc] AntiSpywareOverride: OK

[HKLM\SOFTWARE\Microsoft\Security Center\Svc] AntiVirusOverride: OK

[HKLM\SOFTWARE\Microsoft\Security Center\Svc] AntiVirusDisableNotify: OK

[HKLM\SOFTWARE\Microsoft\Security Center\Svc] FirewallDisableNotify: OK

[HKLM\SOFTWARE\Microsoft\Security Center\Svc] FirewallOverride: OK

[HKLM\SOFTWARE\Microsoft\Security Center\Svc] UpdatesDisableNotify: OK

[HKLM\SOFTWARE\Microsoft\Security Center\Svc] UacDisableNotify: OK

[HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\system] DisableTaskMgr: OK

[HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\system] DisableRegistryTools: OK

 

 

---\\

[MD5.AE06763A2F9581B4F2127F650DEAB300] - (.EnTech Taiwan - PowerStrip for Windows.) -- c:\program files\powerstrip\pstrip.exe

[MD5.5BA8A7DA5D0573F7923E02B260AAD2F1] - (.Logitech Inc. - LVCom Server.) -- C:\WINDOWS\system32\LVCOMSX.exe

[MD5.552E9CA7B91120FB7D49CD5C10018DC3] - (.FUJI PHOTO FILM CO., LTD. - Shaving Registry.) -- C:\Program Files\REGSHAVE\REGSHAVE.exe

[MD5.2F0F0E6AA6F5874E13E792996077138B] - (.CANON INC. - Canon My Printer.) -- C:\Program Files\Canon\MyPrinter\BJMyPrt.exe

[MD5.846965AE55A2662B1576C0F392DD1D6E] - (.Nuance Communications, Inc. - SSBkgdUpdate.) -- C:\Program Files\Fichiers communs\Scansoft Shared\SSBkgdUpdate\SSBkgdupdate.exe

[MD5.F8D427DAE2984A4968E2D1CB53634784] - (.Nuance Communications, Inc. - OCR Aware.) -- C:\Program Files\ScanSoft\OmniPageSE4\OpwareSE4.exe

[MD5.93C8B9C6FD3D243D4B2C8C03C44B18E9] - (.Logitech Inc. - Logitech QuickCam Startup Application.) -- C:\Program Files\Logitech\Video\ISStart.exe

[MD5.F433926BBEC782B603BA3BE0D4E92B7B] - (.Logitech Inc. - ImageStudio Tray Application.) -- C:\Program Files\Logitech\Video\LogiTray.exe

[MD5.6CD5C3276C83F72677D647F27EE14ABD] - (.Apple Inc. - QuickTime Task.) -- C:\Program Files\QuickTime\qttask.exe

[MD5.A57536B3C770C5DE175D466FACB6DBAA] - (.Acronis - Acronis True Image Monitor.) -- C:\Program Files\Acronis\TrueImageHome\TrueImageMonitor.exe

[MD5.8E9ADB9FD3BFE2896D0A575E85004B0F] - (.Acronis - Acronis Scheduler Helper.) -- C:\Program Files\Fichiers communs\Acronis\Schedule2\schedhlp.exe

[MD5.0D916CEB96006EE9FFE670DB3FFEAA73] - (.BonSoft - ClocX.) -- C:\Program Files\ClocX\ClocX.exe

[MD5.021E25CFAE7607A411D06F2B504D2256] - (. - .) -- C:\Program Files\BroadJump\Client Foundation\CFD.exe

[MD5.29680A793F690EEF4AAA68479D2A6DF8] - (.Avira GmbH - Antivirus System Tray Tool.) -- C:\Program Files\Avira\AntiVir Desktop\avgnt.exe

[MD5.52DB6CDAC5BC7A1FC884E97C41C91213] - (.Sun Microsystems, Inc. - Java Update Scheduler.) -- C:\Program Files\Fichiers communs\Java\Java Update\jusched.exe

[MD5.F91F52F4EA5D88DAB6245682A16F3A72] - (.Adobe Systems Incorporated - Adobe Acrobat SpeedLauncher.) -- C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe

[MD5.DB1DB28467111A24664933AB8908CBCE] - (.Adobe Systems Incorporated - Adobe Reader and Acrobat Manager.) -- C:\Program Files\Fichiers communs\Adobe\ARM\1.0\AdobeARM.exe

[MD5.18B4B12358EFCF68D76812058A26181F] - (.Microsoft Corporation - Windows Live Messenger.) -- C:\Program Files\Windows Live\Messenger\msnmsgr.exe

[MD5.AAC4A787011D425AD8316765200E5BF3] - (.tzuk - Sandboxie Control.) -- C:\Program Files\Sandboxie\SbieCtrl.exe

[MD5.59DC5BB82E4C8E0B3EADCFDBC44BA6E4] - (.Microsoft Corporation - CTF Loader.) -- C:\WINDOWS\system32\CTFMON.exe

[MD5.76DA89B6B38AE8399F6141DB60A0998B] - (.Acronis - Acronis Scheduler 2.) -- C:\Program Files\Fichiers communs\Acronis\Schedule2\schedul2.exe

[MD5.03CB8AEDDAE50558ABC53C297E758BB8] - (.Avira GmbH - Antivirus MailScanner Service.) -- C:\Program Files\Avira\AntiVir Desktop\avmailc.exe

[MD5.9015BC03F62940527EC92D45EE89E46F] - (.Avira GmbH - Antivirus Scheduler.) -- C:\Program Files\Avira\AntiVir Desktop\sched.exe

[MD5.B8720A787C1223492E6F319465E996CE] - (.Avira GmbH - Antivirus On-Access Service.) -- C:\Program Files\Avira\AntiVir Desktop\avguard.exe

[MD5.E8A3FA8AB699F5A4E4F75F60502D17AC] - (.Avira GmbH - AntiVir WebGuard Service.) -- C:\Program Files\Avira\AntiVir Desktop\AVWEBGRD.exe

[MD5.E4BDF223CD75478BF44567B4D5C2634D] - (.Microsoft Corporation - Generic Host Process for Win32 Services.) -- C:\WINDOWS\System32\svchost.exe

[MD5.ACC9C8C560C567FAD6F79C977AB2EA09] - (.B.H.A Corporation - B's Recorder GOLD Service Library.) -- C:\WINDOWS\system32\bgsvcgen.exe

[MD5.C3FB1D70CB88722267949694BA51759E] - (.Microsoft Corporation - Applications Services et Contrôleur.) -- C:\WINDOWS\system32\services.exe

[MD5.626A24ED1228580B9518C01930936DF9] - (.Google Inc. - Programme d'installation de Google.) -- C:\Program Files\Google\Update\GoogleUpdate.exe

[MD5.5467F1FF0AF264566740F67E8B810735] - (.Google - gusvc.) -- C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe

[MD5.1834C96FB1F9280BCF6DDFA6DE8338BF] - (.Sun Microsystems, Inc. - Java Quick Starter Service.) -- C:\Program Files\Java\jre6\bin\jqs.exe

[MD5.7AEA4DF1CA68FD45DD4BBE1F0243CE7F] - (. - .) -- C:\Program Files\CDBurnerXP\NMSAccessU.exe

[MD5.91E6024D6D4DCDECDB36C43ECF9BBECB] - (.Microsoft Corporation - LSA Shell (Export Version).) -- C:\WINDOWS\system32\lsass.exe

[MD5.B5354D391912E3ABC13E3B9E31D79367] - (.tzuk - Sandboxie Service.) -- C:\Program Files\Sandboxie\SbieSvc.exe

[MD5.460E4CE148BD07218DA0B6A3D31885A9] - (.Microsoft Corporation - Spooler SubSystem App.) -- C:\WINDOWS\system32\spoolsv.exe

 

 

---\\

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://france.meteofrance.com/france/meteo...sville%2F212310

R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.duxet.com/

 

 

---\\

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://www.microsoft.com/isapi/redir.dll?p...amp;ar=iesearch

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896

R1 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant = http://ie.search.msn.com/{SUB_RFC1766}/srchasst/srchasst.htm

R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = 127.0.0.1;localhost

 

 

---\\

R3 - URLSearchHook: Microsoft Url Search Hook - {CFBFAE00-17A6-11D0-99CB-00C04FD64497} . (.Microsoft Corporation - Internet Explorer.) (8.00.6001.18928 (longhorn_ie8_gdr.100503-1700)) -- C:\WINDOWS\system32\ieframe.dll

 

 

---\\

O2 - BHO: (no name) - {1392b8d2-5c05-419f-a8f6-b9f15a596612} . (. - .) -- (.not file.)

O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} . (.Adobe Systems Incorporated - Adobe PDF Helper for Internet Explorer.) -- C:\Program Files\Fichiers communs\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll

O2 - BHO: RealPlayer Download and Record Plugin for Internet Explorer - {3049C3E9-B461-4BC5-8870-4C09146192CA} . (.RealPlayer - RealPlayer Download and Record Plugin.) -- C:\Program Files\Real\RealPlayer\rpbrowserrecordplugin.dll

O2 - BHO: Canon Easy-WebPrint EX BHO - {3785D0AD-BFFF-47F6-BF5B-A587C162FED9} . (.CANON INC. - Easy-WebPrint EX.) -- C:\Program Files\Canon\Easy-WebPrint EX\ewpexbho.dll

O2 - BHO: (no name) - {5C255C8A-E604-49b4-9D64-90988571CECB} . (. - .) -- (.not file.)

O2 - BHO: Désactivation du cookie publicitaire - {8E425EB4-ADBD-4816-B1E8-49BB9DECF034} . (.Google Inc - .) -- C:\Program Files\Google\Advertising Cookie Opt-out\opt_out.dll

O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} . (.Microsoft Corporation - WindowsLiveLogin.dll.) -- C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll

O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} . (.Google Inc. - GoogleToolbarNotifier.) -- C:\Program Files\Google\GoogleToolbarNotifier\5.1.1309.3572\swg.dll

O2 - BHO: Java Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} . (.Sun Microsystems, Inc. - Java Platform SE binary.) -- C:\Program Files\Java\jre6\bin\jp2ssv.dll

O2 - BHO: JQSIEStartDetectorImpl - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} . (.Sun Microsystems, Inc. - Java Quick Starter binary.) -- C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll

 

 

---\\

O3 - Toolbar: Canon Easy-WebPrint EX - {759D9886-0C6F-4498-BAB6-4A5F47C6C72F} . (.CANON INC. - Easy-WebPrint EX.) -- C:\Program Files\Canon\Easy-WebPrint EX\ewpexhlp.dll

 

 

---\\

O4 - HKLM\..\Run: [PowerStrip] . (.EnTech Taiwan - PowerStrip for Windows.) -- c:\program files\powerstrip\pstrip.exe

O4 - HKLM\..\Run: [LVCOMSX] . (.Logitech Inc. - LVCom Server.) -- C:\WINDOWS\system32\LVCOMSX.exe

O4 - HKLM\..\Run: [REGSHAVE] . (.FUJI PHOTO FILM CO., LTD. - Shaving Registry.) -- C:\Program Files\REGSHAVE\REGSHAVE.exe

O4 - HKLM\..\Run: [CanonMyPrinter] . (.CANON INC. - Canon My Printer.) -- C:\Program Files\Canon\MyPrinter\BJMyPrt.exe

O4 - HKLM\..\Run: [sSBkgdUpdate] . (.Nuance Communications, Inc. - SSBkgdUpdate.) -- C:\Program Files\Fichiers communs\Scansoft Shared\SSBkgdUpdate\SSBkgdupdate.exe

O4 - HKLM\..\Run: [OpwareSE4] . (.Nuance Communications, Inc. - OCR Aware.) -- C:\Program Files\ScanSoft\OmniPageSE4\OpwareSE4.exe

O4 - HKLM\..\Run: [LogitechVideoRepair] . (.Logitech Inc. - Logitech QuickCam Startup Application.) -- C:\Program Files\Logitech\Video\ISStart.exe

O4 - HKLM\..\Run: [LogitechVideoTray] . (.Logitech Inc. - ImageStudio Tray Application.) -- C:\Program Files\Logitech\Video\LogiTray.exe

O4 - HKLM\..\Run: [QuickTime Task] . (.Apple Inc. - QuickTime Task.) -- C:\Program Files\QuickTime\qttask.exe

O4 - HKLM\..\Run: [TrueImageMonitor.exe] . (.Acronis - Acronis True Image Monitor.) -- C:\Program Files\Acronis\TrueImageHome\TrueImageMonitor.exe

O4 - HKLM\..\Run: [Acronis Scheduler2 Service] . (.Acronis - Acronis Scheduler Helper.) -- C:\Program Files\Fichiers communs\Acronis\Schedule2\schedhlp.exe

O4 - HKLM\..\Run: [ClocX] . (.BonSoft - ClocX.) -- C:\Program Files\ClocX\ClocX.exe

O4 - HKLM\..\Run: [bJCFD] C:\Program Files\BroadJump\Client Foundation\CFD.exe

O4 - HKLM\..\Run: [avgnt] . (.Avira GmbH - Antivirus System Tray Tool.) -- C:\Program Files\Avira\AntiVir Desktop\avgnt.exe

O4 - HKLM\..\Run: [sunJavaUpdateSched] . (.Sun Microsystems, Inc. - Java Update Scheduler.) -- C:\Program Files\Fichiers communs\Java\Java Update\jusched.exe

O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] . (.Adobe Systems Incorporated - Adobe Acrobat SpeedLauncher.) -- C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe

O4 - HKLM\..\Run: [Adobe ARM] . (.Adobe Systems Incorporated - Adobe Reader and Acrobat Manager.) -- C:\Program Files\Fichiers communs\Adobe\ARM\1.0\AdobeARM.exe

O4 - HKCU\..\Run: [msnmsgr] . (.Microsoft Corporation - Windows Live Messenger.) -- C:\Program Files\Windows Live\Messenger\msnmsgr.exe

O4 - HKCU\..\Run: [sandboxieControl] . (.tzuk - Sandboxie Control.) -- C:\Program Files\Sandboxie\SbieCtrl.exe

O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] . (.Microsoft Corporation - CTF Loader.) -- C:\WINDOWS\system32\CTFMON.exe

O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] . (.Microsoft Corporation - CTF Loader.) -- C:\WINDOWS\system32\CTFMON.exe

O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] . (.Microsoft Corporation - CTF Loader.) -- C:\WINDOWS\system32\CTFMON.exe

O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] . (.Microsoft Corporation - CTF Loader.) -- C:\WINDOWS\system32\CTFMON.exe

O4 - Global Startup: Exif Launcher 2.lnk . (.FUJI PHOTO FILM CO., LTD. - Exif Launcher 2.) -- C:\Program Files\FinePixViewer\QuickDCF2.exe

O4 - Global Startup: Thunderbird.lnk . (.Mozilla Messaging - Thunderbird.) -- C:\Program Files\Mozilla Thunderbird\thunderbird.exe

O4 - Global Startup: FastStone Capture.lnk . (. - .) -- C:\Program Files\FastStone Capture\FSCapture.exe

 

 

---\\

O8 - Extra context menu item: E&xporter vers Microsoft Excel . (.Microsoft Corporation - Microsoft Office Excel.) -- C:\PROGRA~1\MICROS~2\OFFICE11\EXCEL.exe

 

 

---\\

O9 - Extra 'Tools' menuitem: Uninstall BitDefender Online Scanner v8 - {85d1f590-48f4-11d9-9669-0800200c9a66} . (.not file.) - (.not file.)

O9 - Extra button: Recherche - {92780B25-18CC-41C8-B9BE-3C9C571A8263} . (. - .) -- C:\PROGRA~1\MICROS~2\OFFICE11\REFBARH.ICO

O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} . (.not file.) - (.not file.)

O9 - Extra button: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} . (.Microsoft Corporation - Windows Messenger.) -- C:\Program Files\Messenger\msmsgs.exe

 

 

---\\

O10 - WLSP:\000000000001\Winsock LSP File . (.Microsoft Corporation - Fournisseur de service Sockets 2.0 de Microsoft Windows.) -- C:\WINDOWS\system32\mswsock.dll

O10 - WLSP:\000000000002\Winsock LSP File . (.Microsoft Corporation - LDAP RnR Provider DLL.) -- C:\WINDOWS\system32\winrnr.dll

O10 - WLSP:\000000000003\Winsock LSP File . (.Microsoft Corporation - Fournisseur de service Sockets 2.0 de Microsoft Windows.) -- C:\WINDOWS\system32\mswsock.dll

 

 

---\\

O16 - DPF: Microsoft XML Parser for Java (Microsoft XML Parser for Java) - (.not file.) - C:\WINDOWS\Java\classes\xmldso.cab

O16 - DPF: {166B1BCA-3F9C-11CF-8075-444553540000} (Shockwave ActiveX Control) - http://download.macromedia.com/pub/shockwa...director/sw.cab

O16 - DPF: {2D8ED06D-3C30-438B-96AE-4D110FDC1FB8} (ActiveScan 2.0 Installer Class) - http://acs.pandasoftware.com/activescan/cabs/as2stubie.cab

O16 - DPF: {31435657-9980-0010-8000-00AA00389B71} () - http://download.microsoft.com/download/e/2...78f/wvc1dmo.cab

O16 - DPF: {5D86DDB5-BDF9-441B-9E9E-D4730F4EE499} (BDSCANONLINE Control) - http://www.zebulon.fr/scan8/oscan8.cab

O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) - http://www.update.microsoft.com/windowsupd...b?1203332575293

O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/shoc...ash/swflash.cab

O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553550000} () - http://fpdownload2.macromedia.com/get/shoc...ash/swflash.cab

O16 - DPF: {E77F23EB-E7AB-4502-8F37-247DBAF1A147} (Windows Live Hotmail Photo Upload Tool) - http://gfx2.hotmail.com/mail/w4/pr01/photo...ol/MSNPUpld.cab

O16 - DPF: {EF791A6B-FC12-4C68-99EF-FB9E207A39E6} (McFreeScan Class) - http://download.mcafee.com/molbin/iss-loc/...433/mcfscan.cab

 

 

---\\

O18 - Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} . (.Skype Technologies - Skype for COM API.) -- C:\PROGRA~1\FICHIE~1\Skype\SKYPE4~1.DLL

 

 

---\\

O20 - Winlogon Notify: dimsntfy . (.Microsoft Corporation - DIMS Notification Handler.) -- C:\WINDOWS\System32\dimsntfy.dll

 

 

---\\

O21 - SSODL: PostBootReminder - {7849596a-48ea-486e-8937-a2a3009f31a9} . (.Microsoft Corporation - DLL commune du shell Windows.) -- C:\WINDOWS\system32\SHELL32.dll

O21 - SSODL: CDBurn - {fbeb8a05-beee-4442-804e-409d6c4515e9} . (.Microsoft Corporation - DLL commune du shell Windows.) -- C:\WINDOWS\system32\SHELL32.dll

O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} . (.Microsoft Corporation - Web Site Monitor.) -- C:\WINDOWS\system32\webcheck.dll

O21 - SSODL: SysTray - {35CEC8A3-2BE6-11D2-8773-92E220524153} . (.Microsoft Corporation - Objet du service d'environnement Systray.) -- C:\WINDOWS\system32\stobject.dll

O21 - SSODL: WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} . (.Microsoft Corporation - Windows Portable Device Shell Service Objec.) -- C:\WINDOWS\system32\WPDShServiceObj.dll

 

 

---\\

O22 - SharedTaskScheduler: (no name) - {8C7461EF-2B13-11d2-BE35-3078302C2030} . (.Microsoft Corporation - Bibliothèque de l'interface utilisateur du.) -- C:\WINDOWS\system32\browseui.dll

 

 

---\\

O23 - Service: Acronis Scheduler2 Service (AcrSch2Svc) . (.Acronis - Acronis Scheduler 2.) - C:\Program Files\Fichiers communs\Acronis\Schedule2\schedul2.exe

O23 - Service: Avira AntiVir MailGuard (AntiVirMailService) . (.Avira GmbH - Antivirus MailScanner Service.) - C:\Program Files\Avira\AntiVir Desktop\avmailc.exe

O23 - Service: Avira AntiVir Planificateur (AntiVirSchedulerService) . (.Avira GmbH - Antivirus Scheduler.) - C:\Program Files\Avira\AntiVir Desktop\sched.exe

O23 - Service: Avira AntiVir Guard (AntiVirService) . (.Avira GmbH - Antivirus On-Access Service.) - C:\Program Files\Avira\AntiVir Desktop\avguard.exe

O23 - Service: Avira AntiVir WebGuard (AntiVirWebService) . (.Avira GmbH - AntiVir WebGuard Service.) - C:\Program Files\Avira\AntiVir Desktop\AVWEBGRD.exe

O23 - Service: B's Recorder GOLD Library General Service (bgsvcgen) . (.B.H.A Corporation - B's Recorder GOLD Service Library.) - C:\WINDOWS\system32\bgsvcgen.exe

O23 - Service: Google Update Service (gupdate1c9b5e293164e5e) (gupdate1c9b5e293164e5e) . (.Google Inc. - Programme d'installation de Google.) - C:\Program Files\Google\Update\GoogleUpdate.exe

O23 - Service: Google Software Updater (gusvc) . (.Google - gusvc.) - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe

O23 - Service: Java Quick Starter (JavaQuickStarterService) . (.Sun Microsystems, Inc. - Java Quick Starter Service.) - C:\Program Files\Java\jre6\bin\jqs.exe

O23 - Service: NMSAccess (NMSAccess) . (. - .) - C:\Program Files\CDBurnerXP\NMSAccessU.exe

O23 - Service: Cyberlink RichVideo Service(CRVS) (RichVideo) . (. - .) - C:\Program Files\Cyberlink\Shared files\RichVideo.exe

O23 - Service: Sandboxie Service (SbieSvc) . (.tzuk - Sandboxie Service.) - C:\Program Files\Sandboxie\SbieSvc.exe

 

 

---\\

O39 - APT:Automatic Planified Task - C:\WINDOWS\Tasks\Google Software Updater.job

O39 - APT:Automatic Planified Task - C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job

O39 - APT:Automatic Planified Task - C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job

O39 - APT:Automatic Planified Task - C:\WINDOWS\Tasks\Spybot.job

O39 - APT:Automatic Planified Task - C:\WINDOWS\Tasks\SyncToy.job

O39 - APT:Automatic Planified Task - C:\WINDOWS\Tasks\User_Feed_Synchronization-{217D4CFE-C86F-4BE8-AB8B-E5B65D7395EA}.job

 

 

---\\

O40 - ASIC: Personnalisation du navigateur - >{CB58DED6-4AF3-4080-9DF1-DEE72075169F} . (. - .) -- RunDLL32 IEDKCS32.DLL,BrandIE4 SIGNUP

O40 - ASIC: NetMeeting 3.01 - {44BBA842-CC51-11CF-AAFA-00AA00B6015B} . (. - .) -- C:\WINDOWS\INF\msnetmtg.inf

O40 - ASIC: Windows Messenger 4.7 - {5945c046-1e7d-11d1-bc44-00c04fd912be} . (. - .) -- C:\WINDOWS\INF\msmsgs.inf

O40 - ASIC: Microsoft Windows Media Player - {6BF52A52-394A-11d3-B153-00C04F79FAA6} . (. - .) -- C:\WINDOWS\INF\wmp11.inf

O40 - ASIC: Adobe Flash Player - {D27CDB6E-AE6D-11cf-96B8-444553540000} . (.Adobe Systems, Inc. - Adobe Flash Player 10.1 r53.) -- C:\WINDOWS\system32\Macromed\Flash\Flash10h.ocx

 

 

---\\

O41 - Driver: avgio (avgio) . (.Avira GmbH - Avira AntiVir Support for Minifilter.) - C:\Program Files\Avira\AntiVir Desktop\avgio.sys

O41 - Driver: avipbb (avipbb) . (.Avira GmbH - Avira Driver for RootKit Detection.) - C:\WINDOWS\system32\DRIVERS\avipbb.sys

O41 - Driver: oreans32 (oreans32) . (. - .) - C:\WINDOWS\system32\drivers\oreans32.sys

O41 - Driver: (SiSkp) . (.Silicon Integrated Systems Corporation - SiS VGA Driver Manager.) - C:\WINDOWS\system32\DRIVERS\srvkp.sys

O41 - Driver: ssmdrv (ssmdrv) . (.Avira GmbH - AVIRA SnapShot Driver.) - C:\WINDOWS\system32\DRIVERS\ssmdrv.sys

 

 

---\\

O42 - Logiciel: AVIcodec (remove only) - (..)

O42 - Logiciel: AVS DVDMenu Editor 1.2.1.19 - (.Online Media Technologies Ltd..)

O42 - Logiciel: AVS Video Tools 5.6 - (.Online Media Technologies Ltd..)

O42 - Logiciel: Acronis True Image Home - (.Acronis.)

O42 - Logiciel: Adobe Acrobat 4.0 - (.Adobe Systems, Inc..)

O42 - Logiciel: Adobe Flash Player 10 ActiveX - (.Adobe Systems Incorporated.)

O42 - Logiciel: Adobe Flash Player 10 Plugin - (.Adobe Systems Incorporated.)

O42 - Logiciel: Adobe Reader 9.3.2 - Français - (.Adobe Systems Incorporated.)

O42 - Logiciel: Adobe Shockwave Player 11.5 - (.Adobe Systems, Inc..)

O42 - Logiciel: Apple Software Update - (.Apple Inc..)

O42 - Logiciel: ArcSoft Software Suite - (..)

O42 - Logiciel: Assistant de connexion Windows Live - (.Microsoft Corporation.)

O42 - Logiciel: Audacity 1.2.6 - (..)

O42 - Logiciel: Avira AntiVir Premium - (.Avira GmbH.)

O42 - Logiciel: BroadJump Client Foundation - (..)

O42 - Logiciel: CCleaner - (.Piriform.)

O42 - Logiciel: CD-LabelPrint - (..)

O42 - Logiciel: CDBurnerXP - (.CDBurnerXP.)

O42 - Logiciel: Canon Easy-WebPrint EX - (..)

O42 - Logiciel: Canon MP Navigator EX 1.0 - (..)

O42 - Logiciel: Canon MP610 series - (..)

O42 - Logiciel: Canon My Printer - (..)

O42 - Logiciel: Canon Utilities Easy-PhotoPrint EX - (..)

O42 - Logiciel: Canon Utilities Solution Menu - (..)

O42 - Logiciel: Clic d'Api N°16 - (..)

O42 - Logiciel: ClocX (1.5b2) - (..)

O42 - Logiciel: Curvimetre 2.42 - (.Xander Software.)

O42 - Logiciel: DASoft Ultra Defragmenter - (..)

O42 - Logiciel: DScaler 5 Mpeg Decoders - (..)

O42 - Logiciel: DVD Decrypter 3.5.4.0 Fr - (..)

O42 - Logiciel: DVD Shrink 3.2 - (.DVD Shrink.)

O42 - Logiciel: DeepBurner v1.9.0.228 - (..)

O42 - Logiciel: DivX Codec - (.DivX, Inc..)

O42 - Logiciel: DivX Converter - (.DivX, Inc..)

O42 - Logiciel: DivX Player - (..)

O42 - Logiciel: DivX Web Player - (.DivX,Inc..)

O42 - Logiciel: Documents To Go - (.DataViz Inc..)

O42 - Logiciel: Enregistrement utilisateur de Canon MP610 series - (..)

O42 - Logiciel: FUJIFILM USB Driver - (..)

O42 - Logiciel: FastStone Capture 5.3 (French) - (.FastStone Soft.)

O42 - Logiciel: FinePixViewer Resource - (..)

O42 - Logiciel: FinePixViewer Ver.5.2 - (..)

O42 - Logiciel: Foxit PDF Editor - (..)

O42 - Logiciel: Foxit Reader - (.Foxit Software Company.)

O42 - Logiciel: Free CD Ripper 3.1 - (.Focussoft.net.)

O42 - Logiciel: Free Video Converter V 2.7 - (.Koyote Soft.)

O42 - Logiciel: GEAR 32bit Driver Installer - (.GEAR Software, Inc..)

O42 - Logiciel: GIMP 2.6.6 - (..)

O42 - Logiciel: GPL Ghostscript 8.62 - (..)

O42 - Logiciel: GPL Ghostscript Fonts - (..)

O42 - Logiciel: GPS TrackMaker - (.Geo Studio Technology Ltd.)

O42 - Logiciel: Garmin Communicator Plugin - (.Garmin Ltd or its subsidiaries.)

O42 - Logiciel: Garmin MapSource - (.Garmin Ltd or its subsidiaries.)

O42 - Logiciel: Garmin Trip and Waypoint Manager v4 - (.Garmin Ltd or its subsidiaries.)

O42 - Logiciel: Garmin USB Drivers - (.Garmin Ltd or its subsidiaries.)

O42 - Logiciel: Google Désactivation du cookie publicitaire - (.Google Inc.)

O42 - Logiciel: Google Update Helper - (.Google Inc..)

O42 - Logiciel: Google Earth - (.Google.)

O42 - Logiciel: HD Tune 2.55 - (.EFD Software.)

O42 - Logiciel: HD Writer AE 2.0 - (.Panasonic Corporation.)

O42 - Logiciel: Hot Racing - (..)

O42 - Logiciel: Hotfix for Microsoft .NET Framework 3.5 SP1 (KB953595) - (.Microsoft Corporation.)

O42 - Logiciel: Hotfix for Microsoft .NET Framework 3.5 SP1 (KB958484) - (.Microsoft Corporation.)

O42 - Logiciel: Hotfix for Windows Media Format 11 SDK (KB929399) - (.Microsoft Corporation.)

O42 - Logiciel: Hotfix for Windows Media Format SDK (KB902344) - (.Microsoft Corporation.)

O42 - Logiciel: Hotfix for Windows XP (KB954550-v5) - (.Microsoft Corporation.)

O42 - Logiciel: Hotfix for Windows XP (KB976002-v5) - (.Microsoft Corporation.)

O42 - Logiciel: ImageMixer VCD2 LE for FinePix - (..)

O42 - Logiciel: Installation Windows Live - (.Microsoft Corporation.)

O42 - Logiciel: InterVideo WinDVD 4 - (.InterVideo Inc..)

O42 - Logiciel: Iomega Product Registration - (.Iomega Corporation.)

O42 - Logiciel: Java 6 Update 20 - (.Sun Microsystems, Inc..)

O42 - Logiciel: Java 6 Update 3 - (.Sun Microsystems, Inc..)

O42 - Logiciel: Java 6 Update 5 - (.Sun Microsystems, Inc..)

O42 - Logiciel: Java 6 Update 7 - (.Sun Microsystems, Inc..)

O42 - Logiciel: Junk Mail filter update - (.Microsoft Corporation.)

O42 - Logiciel: K-Lite Mega Codec Pack 4.5.3 - (..)

O42 - Logiciel: Khi3 - (.Your Company Name.)

O42 - Logiciel: LE COMPAGNON CLUB - (..)

O42 - Logiciel: Lanceur Club Internet v6 - (..)

O42 - Logiciel: Lecteur Windows Media 11 - (..)

O42 - Logiciel: Logiciel QuickCam de Logitech - (.Logitech, Inc..)

O42 - Logiciel: Logitech Desktop Messenger - (..)

O42 - Logiciel: MAGIX PC Check & Tuning 2010 Version à télécharger 5.0.24.689 (F) - (.MAGIX AG.)

O42 - Logiciel: MAGIX Screenshare - (.MAGIX AG.)

O42 - Logiciel: MSN - (..)

O42 - Logiciel: MSVCRT - (.Microsoft.)

O42 - Logiciel: MSXML 4.0 SP2 (KB936181) - (.Microsoft Corporation.)

O42 - Logiciel: MSXML 4.0 SP2 (KB954430) - (.Microsoft Corporation.)

O42 - Logiciel: MSXML 4.0 SP2 (KB973688) - (.Microsoft Corporation.)

O42 - Logiciel: MSXML 6.0 Parser (KB933579) - (.Microsoft Corporation.)

O42 - Logiciel: Malwarebytes' Anti-Malware - (.Malwarebytes Corporation.)

O42 - Logiciel: Microsoft .NET Framework 2.0 Service Pack 2 - (.Microsoft Corporation.)

O42 - Logiciel: Microsoft .NET Framework 2.0 Service Pack 2 Language Pack - FRA - (.Microsoft Corporation.)

O42 - Logiciel: Microsoft .NET Framework 3.0 French Language Pack - (.Microsoft Corporation.)

O42 - Logiciel: Microsoft .NET Framework 3.0 Service Pack 2 - (.Microsoft Corporation.)

O42 - Logiciel: Microsoft .NET Framework 3.0 Service Pack 2 Language Pack - FRA - (.Microsoft Corporation.)

O42 - Logiciel: Microsoft .NET Framework 3.5 Language Pack SP1 - fra - (.Microsoft Corporation.)

O42 - Logiciel: Microsoft .NET Framework 3.5 SP1 - (.Microsoft Corporation.)

O42 - Logiciel: Microsoft Calculatrice Plus - (.Microsoft.)

O42 - Logiciel: Microsoft Choice Guard - (.Microsoft Corporation.)

O42 - Logiciel: Microsoft Compression Client Pack 1.0 for Windows XP - (.Microsoft Corporation.)

O42 - Logiciel: Microsoft Internationalized Domain Names Mitigation APIs - (.Microsoft Corporation.)

O42 - Logiciel: Microsoft National Language Support Downlevel APIs - (.Microsoft Corporation.)

O42 - Logiciel: Microsoft Office Basic Edition 2003 - (.Microsoft Corporation.)

O42 - Logiciel: Microsoft Office PowerPoint Viewer 2003 - (.Microsoft Corporation.)

O42 - Logiciel: Microsoft SQL Server Compact 3.5 SP1 English - (.Microsoft Corporation.)

O42 - Logiciel: Microsoft Small Basic - (.Microsoft Corporation.)

O42 - Logiciel: Microsoft User-Mode Driver Framework Feature Pack 1.0 - (.Microsoft Corporation.)

O42 - Logiciel: Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053 - (.Microsoft Corporation.)

O42 - Logiciel: Microsoft Visual C++ 2005 Redistributable - (.Microsoft Corporation.)

O42 - Logiciel: Microsoft Visual C++ 2008 ATL Update kb973924 - x86 9.0.30729.4148 - (.Microsoft Corporation.)

O42 - Logiciel: Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 - (.Microsoft Corporation.)

O42 - Logiciel: Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 - (.Microsoft Corporation.)

O42 - Logiciel: Module de prise en charge linguistique du français de Microsoft .NET Framework 3.0 - (.Microsoft Corporation.)

O42 - Logiciel: Module linguistique Microsoft .NET Framework 3.5 SP1- fra - (.Microsoft Corporation.)

O42 - Logiciel: Mozilla Firefox (3.6.3) - (.Mozilla.)

O42 - Logiciel: Mozilla Thunderbird (3.0.4) - (.Mozilla.)

O42 - Logiciel: Musicmatch® Jukebox - (..)

O42 - Logiciel: Nero 6 Ultra Edition - (..)

O42 - Logiciel: Nouvelles Frontières - Catalogue Sejours - (.Nouvelles Frontières.)

O42 - Logiciel: OpenOffice.org 3.2 - (.OpenOffice.org.)

O42 - Logiciel: Outil de téléchargement Windows Live - (.Microsoft Corporation.)

O42 - Logiciel: Outils Club Internet - (..)

O42 - Logiciel: PIF DESIGNER2.1 - (..)

O42 - Logiciel: PhotoFiltre - (..)

O42 - Logiciel: Playlist tool - (.IOMEGA .)

O42 - Logiciel: PowerStrip 3 (remove only) - (..)

O42 - Logiciel: Programme de gestion Camera de Logitech® - (..)

O42 - Logiciel: QuickTime - (.Apple Inc..)

O42 - Logiciel: Quicksys RegDefrag 2.7 - (..)

O42 - Logiciel: RAW FILE CONVERTER LE - (..)

O42 - Logiciel: RealPlayer - (.RealNetworks.)

O42 - Logiciel: Realtek AC'97 Audio - (.Realtek Semiconductor Corp..)

O42 - Logiciel: Recuva - (.Piriform.)

O42 - Logiciel: Rename-It! - (.Beroux.)

O42 - Logiciel: SUPER © Version 2010.bld.38 (May 2, 2010) - (.eRightSoft.)

O42 - Logiciel: Sandboxie 3.442 - (..)

O42 - Logiciel: ScanSoft OmniPage SE 4 - (.Nuance Communications, Inc..)

O42 - Logiciel: ScanToWeb - (..)

O42 - Logiciel: Security Update for CAPICOM (KB931906) - (.Microsoft Corporation.)

O42 - Logiciel: Segoe UI - (.Microsoft Corp.)

O42 - Logiciel: ShellExView - (.NirSoft.)

O42 - Logiciel: SiS VGA Utilities - (..)

O42 - Logiciel: SiSAGP driver - (..)

O42 - Logiciel: SiSoftware Sandra Lite 2010 - (.SiSoftware.)

O42 - Logiciel: Skype™ 4.2 - (.Skype Technologies S.A..)

O42 - Logiciel: Speccy - (.Piriform.)

O42 - Logiciel: SpeedFan (remove only) - (..)

O42 - Logiciel: Spybot - Search & Destroy - (.Safer Networking Limited.)

O42 - Logiciel: Suppress plus 1.8 - (.Perrysoft.)

O42 - Logiciel: SyncToy - (.Microsoft.)

O42 - Logiciel: Tweak UI - (..)

O42 - Logiciel: URL2JPEG 1.0 - (..)

O42 - Logiciel: Uninstall 1.0.0.1 - (..)

O42 - Logiciel: Unlocker 1.8.7 - (.Cedrick Collomb.)

O42 - Logiciel: Update for Microsoft .NET Framework 3.5 SP1 (KB963707) - (.Microsoft Corporation.)

O42 - Logiciel: VC 9.0 Runtime - (.Check Point Software Technologies Ltd.)

O42 - Logiciel: VDownloader 0.77 - (.Enrique Puertas.)

O42 - Logiciel: VLC media player 1.0.5 - (.VideoLAN Team.)

O42 - Logiciel: VSO Image Resizer 1.3.4d - (.VSO-Software.)

O42 - Logiciel: Visual C++ 2008 x86 Runtime - (v9.0.30729) - (.Microsoft Corporation.)

O42 - Logiciel: Visual C++ 2008 x86 Runtime - v9.0.30729.01 - (.Microsoft Corporation.)

O42 - Logiciel: What's Running 2.1 - (.WhatsRunning.net.)

O42 - Logiciel: WinBirds 4.0 - (..)

O42 - Logiciel: WinDirStat 1.1.2 - (..)

O42 - Logiciel: WinHTTrack Website Copier 3.43-9C - (.HTTrack.)

O42 - Logiciel: Windows Driver Package - Garmin (grmnusb) GARMIN Devices (03/08/2007 2.2.1.0) - (.Garmin.)

O42 - Logiciel: Windows Genuine Advantage Validation Tool (KB892130) - (.Microsoft Corporation.)

O42 - Logiciel: Windows Imaging Component - (.Microsoft Corporation.)

O42 - Logiciel: Windows Internet Explorer 7 - (.Microsoft Corporation.)

O42 - Logiciel: Windows Internet Explorer 8 - (.Microsoft Corporation.)

O42 - Logiciel: Windows Live Call - (.Microsoft Corporation.)

O42 - Logiciel: Windows Live Communications Platform - (.Microsoft Corporation.)

O42 - Logiciel: Windows Live Mail - (.Microsoft Corporation.)

O42 - Logiciel: Windows Live Messenger - (.Microsoft Corporation.)

O42 - Logiciel: Windows Media Format 11 runtime - (..)

O42 - Logiciel: Windows Media Format 11 runtime - (.Microsoft Corporation.)

O42 - Logiciel: Windows Media Player 11 - (.Microsoft Corporation.)

O42 - Logiciel: Windows Presentation Foundation - (.Microsoft Corporation.)

O42 - Logiciel: Windows Presentation Foundation Language Pack (FRA) - (.Microsoft Corporation.)

O42 - Logiciel: Windows XP Service Pack 3 - (.Microsoft Corporation.)

O42 - Logiciel: XML Paper Specification Shared Components Language Pack 1.0 - (.Microsoft Corporation.)

O42 - Logiciel: XML Paper Specification Shared Components Pack 1.0 - (.Microsoft Corporation.)

O42 - Logiciel: XnView 1.95.4 - (.Gougelet Pierre-e.)

O42 - Logiciel: ZebHelpProcess 2.34 - (.Nicolas Coolman.)

O42 - Logiciel: doPDF 5.3 printer - (.Softland.)

O42 - Logiciel: ffdshow v1.1.3439 [2010-05-14] - (..)

O42 - Logiciel: jZip - (.Discordia Limited..)

O42 - Logiciel: palmOne - (.Palm, Inc..)

O42 - Logiciel: pdfsam - (..)

 

 

---\\

O43 - CFD:Common File Directory ----D- C:\Program Files\Acronis

O43 - CFD:Common File Directory ----D- C:\Program Files\Adobe

O43 - CFD:Common File Directory ----D- C:\Program Files\Ahead

O43 - CFD:Common File Directory ----D- C:\Program Files\Apple Software Update

O43 - CFD:Common File Directory ----D- C:\Program Files\ArcSoft

O43 - CFD:Common File Directory ----D- C:\Program Files\Audacity

O43 - CFD:Common File Directory ----D- C:\Program Files\AVIcodec

O43 - CFD:Common File Directory ----D- C:\Program Files\Avira

O43 - CFD:Common File Directory ----D- C:\Program Files\AviSynth 2.5

O43 - CFD:Common File Directory ----D- C:\Program Files\AVSMedia

O43 - CFD:Common File Directory ----D- C:\Program Files\Borland

O43 - CFD:Common File Directory ----D- C:\Program Files\BroadJump

O43 - CFD:Common File Directory ----D- C:\Program Files\Canon

O43 - CFD:Common File Directory --H-D- C:\Program Files\CanonBJ

O43 - CFD:Common File Directory ----D- C:\Program Files\CCleaner

O43 - CFD:Common File Directory ----D- C:\Program Files\CDBurnerXP

O43 - CFD:Common File Directory ----D- C:\Program Files\ClicApi16

O43 - CFD:Common File Directory ----D- C:\Program Files\ClocX

O43 - CFD:Common File Directory ----D- C:\Program Files\Club-Internet

O43 - CFD:Common File Directory ----D- C:\Program Files\Common Files

O43 - CFD:Common File Directory ----D- C:\Program Files\Curvimetre

O43 - CFD:Common File Directory ----D- C:\Program Files\DAEMON Tools Lite

O43 - CFD:Common File Directory ----D- C:\Program Files\DeepBurner

O43 - CFD:Common File Directory ----D- C:\Program Files\DIFX

O43 - CFD:Common File Directory ----D- C:\Program Files\DivX

O43 - CFD:Common File Directory ----D- C:\Program Files\Documents To Go

O43 - CFD:Common File Directory ----D- C:\Program Files\doPDF 5

O43 - CFD:Common File Directory ----D- C:\Program Files\DScaler5

O43 - CFD:Common File Directory ----D- C:\Program Files\DVD DecrypterF

O43 - CFD:Common File Directory ----D- C:\Program Files\DVD Shrink

O43 - CFD:Common File Directory ----D- C:\Program Files\FastStone Capture

O43 - CFD:Common File Directory ----D- C:\Program Files\ffdshow

O43 - CFD:Common File Directory ----D- C:\Program Files\Fichiers communs

O43 - CFD:Common File Directory ----D- C:\Program Files\FinePixViewer

O43 - CFD:Common File Directory ----D- C:\Program Files\Foxit Software

O43 - CFD:Common File Directory ----D- C:\Program Files\Free Video Converter

O43 - CFD:Common File Directory ----D- C:\Program Files\FreeCDRipper

O43 - CFD:Common File Directory ----D- C:\Program Files\Garmin

O43 - CFD:Common File Directory ----D- C:\Program Files\Garmin GPS Plugin

O43 - CFD:Common File Directory ----D- C:\Program Files\GIMP-2.0

O43 - CFD:Common File Directory ----D- C:\Program Files\Google

O43 - CFD:Common File Directory ----D- C:\Program Files\Gpstrack

O43 - CFD:Common File Directory ----D- C:\Program Files\GPSTrackMaker

O43 - CFD:Common File Directory ----D- C:\Program Files\gs

O43 - CFD:Common File Directory ----D- C:\Program Files\HD Tune

O43 - CFD:Common File Directory ----D- C:\Program Files\Hijackthis

O43 - CFD:Common File Directory --H-D- C:\Program Files\InstallShield Installation Information

O43 - CFD:Common File Directory ----D- C:\Program Files\Internet Explorer

O43 - CFD:Common File Directory ----D- C:\Program Files\InterVideo

O43 - CFD:Common File Directory ----D- C:\Program Files\Iomega

O43 - CFD:Common File Directory ----D- C:\Program Files\Java

O43 - CFD:Common File Directory ----D- C:\Program Files\Jeux

O43 - CFD:Common File Directory ----D- C:\Program Files\JRE

O43 - CFD:Common File Directory ----D- C:\Program Files\jZip

O43 - CFD:Common File Directory ----D- C:\Program Files\K-Lite Codec Pack

O43 - CFD:Common File Directory ----D- C:\Program Files\khi3

O43 - CFD:Common File Directory ----D- C:\Program Files\Logitech

O43 - CFD:Common File Directory ----D- C:\Program Files\ma-config.com

O43 - CFD:Common File Directory ----D- C:\Program Files\MAGIX

O43 - CFD:Common File Directory ----D- C:\Program Files\Malwarebytes' Anti-Malware

O43 - CFD:Common File Directory ----D- C:\Program Files\Messenger

O43 - CFD:Common File Directory ----D- C:\Program Files\Microsoft

O43 - CFD:Common File Directory ----D- C:\Program Files\Microsoft Calculatrice Plus

O43 - CFD:Common File Directory ----D- C:\Program Files\Microsoft CAPICOM 2.1.0.2

O43 - CFD:Common File Directory ----D- C:\Program Files\microsoft frontpage

O43 - CFD:Common File Directory ----D- C:\Program Files\Microsoft Office

O43 - CFD:Common File Directory ----D- C:\Program Files\Microsoft SQL Server Compact Edition

O43 - CFD:Common File Directory ----D- C:\Program Files\Microsoft Synchronization Services

O43 - CFD:Common File Directory ----D- C:\Program Files\Motive

O43 - CFD:Common File Directory ----D- C:\Program Files\Movie Maker

O43 - CFD:Common File Directory ----D- C:\Program Files\Mozilla Firefox

O43 - CFD:Common File Directory ----D- C:\Program Files\Mozilla Thunderbird

O43 - CFD:Common File Directory ----D- C:\Program Files\MSBuild

O43 - CFD:Common File Directory ----D- C:\Program Files\MSN

O43 - CFD:Common File Directory ----D- C:\Program Files\MSN Gaming Zone

O43 - CFD:Common File Directory ----D- C:\Program Files\MSXML 6.0

O43 - CFD:Common File Directory ----D- C:\Program Files\Musicmatch

O43 - CFD:Common File Directory ----D- C:\Program Files\NetMeeting

O43 - CFD:Common File Directory ----D- C:\Program Files\NF_Sejours

O43 - CFD:Common File Directory ----D- C:\Program Files\OpenOffice.org 3

O43 - CFD:Common File Directory ----D- C:\Program Files\Outlook Express

O43 - CFD:Common File Directory ----D- C:\Program Files\palmOne

O43 - CFD:Common File Directory ----D- C:\Program Files\Panasonic

O43 - CFD:Common File Directory ----D- C:\Program Files\pdfsam

O43 - CFD:Common File Directory ----D- C:\Program Files\PhotoFiltre

O43 - CFD:Common File Directory ----D- C:\Program Files\PowerStrip

O43 - CFD:Common File Directory ----D- C:\Program Files\ProcessTamer

O43 - CFD:Common File Directory ----D- C:\Program Files\QuickTime

O43 - CFD:Common File Directory ----D- C:\Program Files\RAM2free

O43 - CFD:Common File Directory ----D- C:\Program Files\Real

O43 - CFD:Common File Directory ----D- C:\Program Files\Realtek AC97

O43 - CFD:Common File Directory ----D- C:\Program Files\Recuva

O43 - CFD:Common File Directory ----D- C:\Program Files\Reference Assemblies

O43 - CFD:Common File Directory ----D- C:\Program Files\RegDefrag

O43 - CFD:Common File Directory ----D- C:\Program Files\REGSHAVE

O43 - CFD:Common File Directory ----D- C:\Program Files\Rename-It!

O43 - CFD:Common File Directory ----D- C:\Program Files\Sandboxie

O43 - CFD:Common File Directory -S--D- C:\Program Files\Sandra Lite 2010

O43 - CFD:Common File Directory ----D- C:\Program Files\ScanSoft

O43 - CFD:Common File Directory ----D- C:\Program Files\ShellExView

O43 - CFD:Common File Directory ----D- C:\Program Files\SiS VGA Utilities V3.73

O43 - CFD:Common File Directory ----D- C:\Program Files\sisagp

O43 - CFD:Common File Directory ----D- C:\Program Files\SITTELLE

O43 - CFD:Common File Directory ----D- C:\Program Files\SIW

O43 - CFD:Common File Directory R---D- C:\Program Files\Skype

O43 - CFD:Common File Directory ----D- C:\Program Files\Speccy

O43 - CFD:Common File Directory ----D- C:\Program Files\SpeedFan

O43 - CFD:Common File Directory ----D- C:\Program Files\Spybot

O43 - CFD:Common File Directory ----D- C:\Program Files\SUPER

O43 - CFD:Common File Directory ----D- C:\Program Files\Suppress Plus

O43 - CFD:Common File Directory ----D- C:\Program Files\TrueImage

O43 - CFD:Common File Directory ----D- C:\Program Files\UltraDefrag

O43 - CFD:Common File Directory ----D- C:\Program Files\Unlocker

O43 - CFD:Common File Directory ----D- C:\Program Files\URL2JPEG

O43 - CFD:Common File Directory ----D- C:\Program Files\VDOWNLOADER

O43 - CFD:Common File Directory ----D- C:\Program Files\VideoLAN

O43 - CFD:Common File Directory ----D- C:\Program Files\VSO

O43 - CFD:Common File Directory ----D- C:\Program Files\WhatsRunning

O43 - CFD:Common File Directory ----D- C:\Program Files\WinDirStat

O43 - CFD:Common File Directory ----D- C:\Program Files\Windows Live

O43 - CFD:Common File Directory ----D- C:\Program Files\Windows Live SkyDrive

O43 - CFD:Common File Directory ----D- C:\Program Files\Windows Media Connect 2

O43 - CFD:Common File Directory ----D- C:\Program Files\Windows Media Player

O43 - CFD:Common File Directory ----D- C:\Program Files\Windows NT

O43 - CFD:Common File Directory --H-D- C:\Program Files\WindowsUpdate

O43 - CFD:Common File Directory ----D- C:\Program Files\WinHTTrack

O43 - CFD:Common File Directory ----D- C:\Program Files\xerox

O43 - CFD:Common File Directory ----D- C:\Program Files\XnView

O43 - CFD:Common File Directory ----D- C:\Program Files\ZebHelpProcess

O43 - CFD:Common File Directory ----D- C:\Program Files\Fichiers Communs\Acronis

O43 - CFD:Common File Directory ----D- C:\Program Files\Fichiers Communs\Adobe

O43 - CFD:Common File Directory ----D- C:\Program Files\Fichiers Communs\Ahead

O43 - CFD:Common File Directory ----D- C:\Program Files\Fichiers Communs\Apple

O43 - CFD:Common File Directory ----D- C:\Program Files\Fichiers Communs\AVSMedia

O43 - CFD:Common File Directory ----D- C:\Program Files\Fichiers Communs\CANON

O43 - CFD:Common File Directory ----D- C:\Program Files\Fichiers Communs\DataViz

O43 - CFD:Common File Directory ----D- C:\Program Files\Fichiers Communs\DESIGNER

O43 - CFD:Common File Directory ----D- C:\Program Files\Fichiers Communs\DVDVideoSoft

O43 - CFD:Common File Directory ----D- C:\Program Files\Fichiers Communs\G DATA

O43 - CFD:Common File Directory ----D- C:\Program Files\Fichiers Communs\InstallShield

O43 - CFD:Common File Directory ----D- C:\Program Files\Fichiers Communs\Java

O43 - CFD:Common File Directory ----D- C:\Program Files\Fichiers Communs\Logitech

O43 - CFD:Common File Directory ----D- C:\Program Files\Fichiers Communs\MAGIX Services

O43 - CFD:Common File Directory ----D- C:\Program Files\Fichiers Communs\Microsoft Shared

O43 - CFD:Common File Directory ----D- C:\Program Files\Fichiers Communs\Motive

O43 - CFD:Common File Directory ----D- C:\Program Files\Fichiers Communs\MSSoap

O43 - CFD:Common File Directory ----D- C:\Program Files\Fichiers Communs\ODBC

O43 - CFD:Common File Directory ----D- C:\Program Files\Fichiers Communs\Panasonic

O43 - CFD:Common File Directory ----D- C:\Program Files\Fichiers Communs\Real

O43 - CFD:Common File Directory ----D- C:\Program Files\Fichiers Communs\ScanSoft Shared

O43 - CFD:Common File Directory ----D- C:\Program Files\Fichiers Communs\Services

O43 - CFD:Common File Directory ----D- C:\Program Files\Fichiers Communs\Skype

O43 - CFD:Common File Directory ----D- C:\Program Files\Fichiers Communs\Softwin

O43 - CFD:Common File Directory ----D- C:\Program Files\Fichiers Communs\SpeechEngines

O43 - CFD:Common File Directory ----D- C:\Program Files\Fichiers Communs\System

O43 - CFD:Common File Directory ----D- C:\Program Files\Fichiers Communs\Windows Live

O43 - CFD:Common File Directory -SH-D- C:\Program Files\Fichiers Communs\WindowsLiveInstaller

O43 - CFD:Common File Directory ----D- C:\Program Files\Fichiers Communs\xing shared

O43 - CFD:Common File Directory ----D- C:\Program Files\Common Files\Motive

 

 

---\\

O44 - LFC:[MD5.00000000000000000000000000000000] - 13/06/2010 - 10:26:50 ---A- . (. - .) -- C:\PDOXUSRS.NET

O44 - LFC:[MD5.C02562A732F0223082D4CCFC7D4F23DF] - 13/06/2010 - 10:25:24 ---A- . (.S!Ri.URZ - Agent.OMZ.Fix.) -- C:\WINDOWS\System32\Agent.OMZ.Fix.exe

O44 - LFC:[MD5.9769AB38CB77C9914C25B8141A2A3FBE] - 13/06/2010 - 10:25:24 ---A- . (.S!Ri.URZ - IEDFix.C.) -- C:\WINDOWS\System32\IEDFix.C.exe

O44 - LFC:[MD5.CEBEF7E3612A75D15C73E8CA71D012AE] - 13/06/2010 - 10:25:24 ---A- . (.S!Ri.URZ - o4Patch.) -- C:\WINDOWS\System32\o4Patch.exe

O44 - LFC:[MD5.811F5C625680CF858891407DB7A8FC67] - 13/06/2010 - 10:25:23 ---A- . (. - .) -- C:\WINDOWS\System32\WS2Fix.exe

O44 - LFC:[MD5.21868B2D22C726D94D98F15825D4134B] - 13/06/2010 - 10:25:23 ---A- . (. - .) -- C:\WINDOWS\System32\dumphive.exe

O44 - LFC:[MD5.C16B1595E3C2FFC875EF28BF66EC557F] - 13/06/2010 - 10:25:23 ---A- . (. - .) -- C:\WINDOWS\System32\swsc.exe

O44 - LFC:[MD5.FC041F7D1341EEE456F1FA1A256CD24F] - 13/06/2010 - 10:25:23 ---A- . (.S!Ri - Search SharedTaskScheduler.) -- C:\WINDOWS\System32\SrchSTS.exe

O44 - LFC:[MD5.D726E152E257A1AB819F88312EC69620] - 13/06/2010 - 10:25:23 ---A- . (.S!Ri - VC CLSID Cleaner.) -- C:\WINDOWS\System32\VCCLSID.exe

O44 - LFC:[MD5.61FD593673225697D091DE2DDD2E9E47] - 13/06/2010 - 10:25:23 ---A- . (.S!Ri.URZ - 404Fix.) -- C:\WINDOWS\System32\404Fix.exe

O44 - LFC:[MD5.799A9EA3FFB220780AE3D3C11B08D067] - 13/06/2010 - 10:25:23 ---A- . (.S!Ri.URZ - IEDFix.) -- C:\WINDOWS\System32\IEDFix.exe

O44 - LFC:[MD5.81BC780E5FD520838C6A417840127635] - 13/06/2010 - 10:25:23 ---A- . (.S!Ri.URZ - VACFix.) -- C:\WINDOWS\System32\VACFix.exe

O44 - LFC:[MD5.E417D888FDDE9A2290C369C82A7AEC3E] - 13/06/2010 - 10:25:23 ---A- . (.SteelWerX - Freeware implementation of REG.EXE.) -- C:\WINDOWS\System32\swreg.exe

O44 - LFC:[MD5.EF5DC4CF7C39CFB4653859878C14D86C] - 13/06/2010 - 10:25:23 ---A- . (.SteelWerX - Freeware implementation of XCACLS.) -- C:\WINDOWS\System32\swxcacls.exe

O44 - LFC:[MD5.7397F6EE4A9601A123B645C0CD428017] - 13/06/2010 - 10:25:23 ---A- . (.http://www.beyondlogic.org - Command Line Process Utility.) -- C:\WINDOWS\System32\Process.exe

O44 - LFC:[MD5.6A2CB42966136854F4464516FBB4AE72] - 13/06/2010 - 06:52:41 -S-A- . (. - .) -- C:\WINDOWS\bootstat.dat

O44 - LFC:[MD5.EEDDF71EC7E887E0FDED0B6DE55FC75B] - 11/06/2010 - 11:51:27 ---A- . (. - .) -- C:\WINDOWS\System32\FNTCACHE.DAT

O44 - LFC:[MD5.57FB9C098B87180C8BFB4A71B9DE8E8E] - 11/06/2010 - 10:48:56 ---A- . (. - .) -- C:\WINDOWS\win.ini

O44 - LFC:[MD5.4D12DCF6C5172AA119D8D333A6EB259B] - 11/06/2010 - 10:43:20 ---A- . (. - .) -- C:\WINDOWS\System32\PerfStringBackup.INI

O44 - LFC:[MD5.12647ED01DE915D225D062D1160F2FF0] - 11/06/2010 - 10:43:20 ---A- . (. - .) -- C:\WINDOWS\System32\perfc009.dat

O44 - LFC:[MD5.41C1D26A8E0659FAEDFE08669E28E62B] - 11/06/2010 - 10:43:20 ---A- . (. - .) -- C:\WINDOWS\System32\perfc00C.dat

O44 - LFC:[MD5.11E2D853AEC87163577E10A47D2FF5A6] - 11/06/2010 - 10:43:20 ---A- . (. - .) -- C:\WINDOWS\System32\perfh009.dat

O44 - LFC:[MD5.65E79BBC9574992F464B3C560C41A667] - 11/06/2010 - 10:43:20 ---A- . (. - .) -- C:\WINDOWS\System32\perfh00C.dat

O44 - LFC:[MD5.377621B1E35C3A2F44371CF93A3D30FE] - 07/06/2010 - 14:35:08 ---A- . (. - .) -- C:\WINDOWS\Sandboxie.ini

O44 - LFC:[MD5.5866F5AC5FA90002CC1275789B715A60] - 30/05/2010 - 09:38:10 ---A- . (. - .) -- C:\WINDOWS\NeroDigital.ini

O44 - LFC:[MD5.65DABB831DA51500DFA31B40252803E2] - 29/05/2010 - 15:35:31 ---A- . (. - .) -- C:\WINDOWS\jestertb.dll

O44 - LFC:[MD5.E83204527D01DACBE4C93B1DBA47E019] - 27/05/2010 - 19:04:48 ---A- . (. - .) -- C:\WINDOWS\System32\DonationCoder_processtamer_InstallInfo.dat

O44 - LFC:[MD5.14445543AA929ABE5DDD8B6173D2B1E2] - 26/05/2010 - 06:45:15 ---A- . (. - .) -- C:\WINDOWS\System32\TZLog.log

O44 - LFC:[MD5.B5BD3CA7ED4E2DA43775764C48591B07] - 25/05/2010 - 06:25:46 ---A- . (. - .) -- C:\WINDOWS\System32\wpa.dbl

O44 - LFC:[MD5.9F2ACA5A06889F6E067A1418133341C1] - 17/05/2010 - 18:13:22 ---A- . (. - .) -- C:\00001.MTS

 

 

---\\

O46 - SEH:ShellExecuteHooks - URL Exec Hook - {AEB6717E-7E19-11d0-97EE-00C04FD91972} - shell32.dll

 

 

---\\

O47 - AAKE:Key Export SP - "%windir%\system32\sessmgr.exe" [Enabled] .(.Microsoft Corporation - Gestionnaire de session de l'aide sur le Bureau à distance de Microsoft®.) -- C:\WINDOWS\system32\sessmgr.exe

O47 - AAKE:Key Export SP - "%windir%\Network Diagnostic\xpnetdiag.exe" [Enabled] .(.Microsoft Corporation - Network Diagnostic for Windows XP.) -- C:\WINDOWS\Network Diagnostic\xpnetdiag.exe

O47 - AAKE:Key Export SP - "C:\Program Files\Mozilla Thunderbird\thunderbird.exe" [Enabled] .(.Mozilla Messaging - Thunderbird.) -- C:\Program Files\Mozilla Thunderbird\thunderbird.exe

O47 - AAKE:Key Export SP - "C:\Program Files\Mozilla Firefox\firefox.exe" [Enabled] .(.Mozilla Corporation - Firefox.) -- C:\Program Files\Mozilla Firefox\firefox.exe

O47 - AAKE:Key Export SP - "C:\Program Files\Real\RealPlayer\realplay.exe" [Enabled] .(.RealNetworks, Inc. - RealPlayer.) -- C:\Program Files\Real\RealPlayer\realplay.exe

O47 - AAKE:Key Export SP - "F:\Programmes\Prevx CSI\PREVXCSIFREE.EXE" [Enabled] .(. - .) (.not file.) -- F:\Programmes\Prevx CSI\PREVXCSIFREE.exe

O47 - AAKE:Key Export SP - "..." [Enabled] .(.Logicool - Logicool Desktop Messenger.) (.not file.) -- C:\Program Files\Logitech\Desktop Messenger\8876480\Program\backWeb-8876480.exe

O47 - AAKE:Key Export SP - "C:\WINDOWS\system32\dpvsetup.exe" [Enabled] .(.Microsoft Corporation - Microsoft DirectPlay Voice Test.) (.not file.) -- C:\WINDOWS\system32\dpvsetup.exe

O47 - AAKE:Key Export SP - "C:\Program Files\MSN Messenger\msncall.exe" [Enabled] .(. - .) (.not file.) -- C:\Program Files\MSN Messenger\msncall.exe

O47 - AAKE:Key Export SP - "C:\Program Files\MSN Messenger\livecall.exe" [Enabled] .(. - .) (.not file.) -- C:\Program Files\MSN Messenger\livecall.exe

O47 - AAKE:Key Export SP - "C:\Program Files\ma-config.com\maconfservice.exe" [Enabled] .(. - .) (.not file.) -- C:\Program Files\ma-config.com\maconfservice.exe

O47 - AAKE:Key Export SP - "C:\WINDOWS\system32\ZoneLabs\avsys\ScanningProcess.exe" [Disabled] .(. - .) (.not file.) -- C:\WINDOWS\system32\ZoneLabs\avsys\ScanningProcess.exe

O47 - AAKE:Key Export SP - "C:\WINDOWS\system32\rundll32.exe" [Enabled] .(. - .) (.not file.) -- C:\WINDOWS\system32\rundll32.exe:*:Enabled:Exécuter une DLL en tant qu'application

O47 - AAKE:Key Export SP - "C:\Program Files\Gpstrack\gpstrack.exe" [Enabled] .(. - .) (.not file.) -- C:\Program Files\Gpstrack\gpstrack.exe

O47 - AAKE:Key Export SP - "C:\Program Files\Windows Live\Messenger\msnmsgr.exe" [Enabled] .(.Microsoft Corporation - Windows Live Messenger.) (.not file.) -- C:\Program Files\Windows Live\Messenger\msnmsgr.exe

O47 - AAKE:Key Export SP - "C:\Program Files\Sandra Lite 2010\RpcAgentSrv.exe" [Enabled] .(.SiSoftware - SiSoftware Deployment Agent Service (NT)(Unicode).) (.not file.) -- C:\Program Files\Sandra Lite 2010\RpcAgentSrv.exe

O47 - AAKE:Key Export SP - "C:\Program Files\Sandra Lite 2010\WNt500x86\sandra.0C.mui" [Enabled] .(. - .) (.not file.) -- C:\Program Files\Sandra Lite 2010\WNt500x86\sandra.0C.mui:*:Enabled:SiSoftware Sandra Agent Service

O47 - AAKE:Key Export SP - "C:\Program Files\Lavasoft\Ad-Aware 2007\Ad-Aware2007.exe" [Disabled] .(. - .) (.not file.) -- C:\Program Files\Lavasoft\Ad-Aware 2007\Ad-Aware2007.exe

O47 - AAKE:Key Export SP - "C:\Program Files\Spyware Terminator\SpywareTerminatorUpdate.exe" [Disabled] .(. - .) (.not file.) -- C:\Program Files\Spyware Terminator\SpywareTerminatorUpdate.exe

O47 - AAKE:Key Export SP - "C:\Program Files\ooVoo\ooVoo.exe" [Disabled] .(. - .) (.not file.) -- C:\Program Files\ooVoo\ooVoo.exe

O47 - AAKE:Key Export SP - "C:\Program Files\VideoLAN\VLC\vlc.exe" [Disabled] .(. - .) (.not file.) -- C:\Program Files\VideoLAN\VLC\vlc.exe

O47 - AAKE:Key Export SP - "C:\Program Files\Skype\Phone\Skype.exe" [Enabled] .(.Skype Technologies S.A. - Skype.) (.not file.) -- C:\Program Files\Skype\Phone\Skype.exe

O47 - AAKE:Key Export SP - "C:\Program Files\Skype\Plugin Manager\skypePM.exe" [Enabled] .(.Skype Technologies - Skype Extras Manager.) (.not file.) -- C:\Program Files\Skype\Plugin Manager\skypePM.exe

O47 - AAKE:Key Export SP - "C:\Program Files\Sandra Lite 2010\WNt500x86\RpcSandraSrv.exe" [Enabled] .(.SiSoftware - SiSoftware Sandra Agent Service (NT)(Unicode).) (.not file.) -- C:\Program Files\Sandra Lite 2010\WNt500x86\RpcSandraSrv.exe

O47 - AAKE:Key Export DP - "%windir%\system32\sessmgr.exe" [Enabled] .(.Microsoft Corporation - Gestionnaire de session de l'aide sur le Bureau à distance de Microsoft®.) -- C:\WINDOWS\system32\sessmgr.exe

O47 - AAKE:Key Export DP - "%windir%\Network Diagnostic\xpnetdiag.exe" [Enabled] .(.Microsoft Corporation - Network Diagnostic for Windows XP.) -- C:\WINDOWS\Network Diagnostic\xpnetdiag.exe

O47 - AAKE:Key Export DP - "C:\Program Files\MSN Messenger\msncall.exe" [Enabled] .(. - .) (.not file.) -- C:\Program Files\MSN Messenger\msncall.exe

O47 - AAKE:Key Export DP - "C:\Program Files\MSN Messenger\livecall.exe" [Enabled] .(. - .) (.not file.) -- C:\Program Files\MSN Messenger\livecall.exe

O47 - AAKE:Key Export DP - "C:\Program Files\Windows Live\Messenger\msnmsgr.exe" [Enabled] .(.Microsoft Corporation - Windows Live Messenger.) (.not file.) -- C:\Program Files\Windows Live\Messenger\msnmsgr.exe

 

 

---\\

O50 - IFEO:Image File Execution Options - Your Image File Name Here without a path - ntsd -d

 

 

---\\

O52 - TDSD: \Drivers32\"msacm.trspch"="tssoft32.acm" . (.DSP GROUP, INC. - Codec audio TrueSpeech DSP Group pour MSACM V3.50.) -- C:\WINDOWS\System32\tssoft32.acm

O52 - TDSD: \Drivers32\"vidc.cvid"="iccvid.dll" . (.Radius Inc. - Cinepak® Codec.) -- C:\WINDOWS\System32\iccvid.dll

O52 - TDSD: \Drivers32\"vidc.iv31"="ir32_32.dll" . (. - .) -- C:\WINDOWS\System32\ir32_32.dll

O52 - TDSD: \Drivers32\"vidc.iv32"="ir32_32.dll" . (. - .) -- C:\WINDOWS\System32\ir32_32.dll

O52 - TDSD: \Drivers32\"vidc.iv41"="ir41_32.ax" . (.Intel Corporation - Intel Indeo® Video 4.5.) -- C:\WINDOWS\System32\ir41_32.ax

O52 - TDSD: \Drivers32\"msacm.sl_anet"="sl_anet.acm" . (.Sipro Lab Telecom Inc. - Audio codec for MS ACM.) -- C:\WINDOWS\System32\sl_anet.acm

O52 - TDSD: \Drivers32\"msacm.iac2"="C:\WINDOWS\system32\iac25_32.ax" . (.Intel Corporation - Indeo® audio software.) -- C:\WINDOWS\system32\iac25_32.ax

O52 - TDSD: \Drivers32\"vidc.iv50"="ir50_32.dll" . (.Intel Corporation - Intel Indeo® video 5.10.) -- C:\WINDOWS\System32\ir50_32.dll

O52 - TDSD: \Drivers32\"msacm.l3acm"="C:\WINDOWS\system32\l3codeca.acm" . (.Fraunhofer Institut Integrierte Schaltungen - MPEG Layer-3 Audio Codec for MSACM.) -- C:\WINDOWS\system32\l3codeca.acm

O52 - TDSD: \Drivers32\"msacm.voxacm160"="vct3216.acm" . (.Voxware, Inc. - Voxware Audio Compression Manager Driver.) -- C:\WINDOWS\System32\vct3216.acm

O52 - TDSD: \Drivers32\"msacm.scg726"="scg726.acm" . (.SHARP Corporation - SHARP G.726 ACM Audio Decoder.) -- C:\WINDOWS\System32\scg726.acm

O52 - TDSD: \Drivers32\"msacm.alf2cd"="alf2cd.acm" . (.NCT Company - NCT ALF2CD Audio CODEC.) -- C:\WINDOWS\System32\alf2cd.acm

O52 - TDSD: \Drivers32\"vidc.dvsd"="mcdvd_32.dll" . (.MainConcept - MainConcept DV Codec.) -- C:\WINDOWS\System32\mcdvd_32.dll

O52 - TDSD: \Drivers32\"VIDC.I420"="i420vfw.dll" . (.www.helixcommunity.org - Helix I420 YUV Codec.) -- C:\WINDOWS\System32\i420vfw.dll

O52 - TDSD: \Drivers32\"VIDC.DIVX"="DivX.dll" . (.DivX, Inc. - DivX.) -- C:\WINDOWS\System32\DivX.dll

O52 - TDSD: \Drivers32\"VIDC.YV12"="yv12vfw.dll" . (.www.helixcommunity.org - Helix YV12 YUV Codec.) -- C:\WINDOWS\System32\yv12vfw.dll

O52 - TDSD: \Drivers32\"msacm.ac3acm"="AC3ACM.acm" . (.fccHandler - AC-3 ACM Codec.) -- C:\WINDOWS\System32\AC3ACM.acm

O52 - TDSD: \Drivers32\"msacm.lameacm"="lameACM.acm" . (.http://www.mp3dev.org/ - Lame MP3 codec engine.) -- C:\WINDOWS\System32\lameACM.acm

O52 - TDSD: \Drivers32\"VIDC.FFDS"="ff_vfw.dll" . (. - .) -- C:\WINDOWS\System32\ff_vfw.dll

O52 - TDSD: \Drivers32\"VIDC.JDCT"="jl_jdct.drv" . (. - .) -- (.not file.)

O52 - TDSD: \Drivers32\"vidc.xvid"="xvidvfw.dll" . (. - .) -- C:\WINDOWS\System32\xvidvfw.dll

O52 - TDSD: \drivers.desc\"sl_anet.acm"="Sipro Lab Telecom Audio Codec" . (.Sipro Lab Telecom Inc. - Audio codec for MS ACM.) -- C:\WINDOWS\System32\sl_anet.acm

O52 - TDSD: \drivers.desc\"C:\WINDOWS\system32\iac25_32.ax"="Indeo® audio software" . (.Intel Corporation - Indeo® audio software.) -- C:\WINDOWS\system32\iac25_32.ax

O52 - TDSD: \drivers.desc\"ir50_32.dll"="Indeo® video 5.10" . (. - .) -- (.not file.)

O52 - TDSD: \drivers.desc\"C:\WINDOWS\system32\l3codeca.acm"="Fraunhofer IIS MPEG Layer-3 Codec" . (.Fraunhofer Institut Integrierte Schaltungen - MPEG Layer-3 Audio Codec for MSACM.) -- C:\WINDOWS\system32\l3codeca.acm

O52 - TDSD: \drivers.desc\"ir32_32.dll"="Indeo® video R3.2 by Intel" . (. - .) -- (.not file.)

O52 - TDSD: \drivers.desc\"ir41_32.ax"="Indeo® video interactive R4.3 by Intel" . (. - .) -- (.not file.)

O52 - TDSD: \drivers.desc\"iyvu9_32.dll"="Indeo® video Raw YVU9 by Intel" . (. - .) -- C:\WINDOWS\System32\iyvu9_32.dll

O52 - TDSD: \drivers.desc\"vct3216.acm"="Voxware Compression Toolkit" . (.Voxware, Inc. - Voxware Audio Compression Manager Driver.) -- C:\WINDOWS\System32\vct3216.acm

O52 - TDSD: \drivers.desc\"scg726.acm"="Sharp G.726 Audio Decoder" . (. - .) -- (.not file.)

O52 - TDSD: \drivers.desc\"alf2cd.acm"="alf2cd.acm" . (.NCT Company - NCT ALF2CD Audio CODEC.) -- C:\WINDOWS\System32\alf2cd.acm

O52 - TDSD: \drivers.desc\"mcdvd_32.dll"="mcdvd_32.dll" . (.MainConcept - MainConcept DV Codec.) -- C:\WINDOWS\System32\mcdvd_32.dll

O52 - TDSD: \drivers.desc\"mpg4c32.dll"="MS MPEG-4 v1,2,3 driver 4.1.0.3927" . (. - .) -- (.not file.)

O52 - TDSD: \drivers.desc\"msg711.acm"="Microsoft CCITT G.711 Audio CODEC" . (. - .) -- (.not file.)

O52 - TDSD: \drivers.desc\"msgsm32.acm"="Microsoft GSM 6.10 Audio CODEC" . (. - .) -- (.not file.)

O52 - TDSD: \drivers.desc\"tssoft32.acm"="DSP Group TrueSpeech Audio CODEC" . (.DSP GROUP, INC. - Codec audio TrueSpeech DSP Group pour MSACM V3.50.) -- C:\WINDOWS\System32\tssoft32.acm

O52 - TDSD: \drivers.desc\"iccvid.dll"="Cinepak Codec by Radius Inc." . (. - .) -- (.not file.)

O52 - TDSD: \drivers.desc\"lvcodec2.dll"="lvcodec2.dll" . (.Logitech Inc. - Video Codec.) -- C:\WINDOWS\System32\lvcodec2.dll

O52 - TDSD: \drivers.desc\"yv12vfw.dll"="yv12vfw.dll" . (.www.helixcommunity.org - Helix YV12 YUV Codec.) -- C:\WINDOWS\System32\yv12vfw.dll

O52 - TDSD: \drivers.desc\"divx.dll"="DivX 5.0.5 Codec" . (. - .) -- (.not file.)

O52 - TDSD: \drivers.desc\"lameACM.acm"="Lame ACM MP3 CODEC v3.98" . (. - .) -- (.not file.)

O52 - TDSD: \drivers.desc\"ac3acm.acm"="AC-3 ACM Decompressor" . (.fccHandler - AC-3 ACM Codec.) -- C:\WINDOWS\System32\ac3acm.acm

O52 - TDSD: \drivers.desc\"ff_vfw.dll"="ffdshow video encoder" . (. - .) -- C:\WINDOWS\System32\ff_vfw.dll

O52 - TDSD: \drivers.desc\"jl_jdct.drv"="JEILIN JDCT Decompressor" . (. - .) -- (.not file.)

O52 - TDSD: \drivers.desc\"xvidvfw.dll"="XviD MPEG-4 Video Codec" . (. - .) -- C:\WINDOWS\System32\xvidvfw.dll

O52 - TDSD: \drivers.desc\"i420vfw.dll"="i420vfw.dll" . (.www.helixcommunity.org - Helix I420 YUV Codec.) -- C:\WINDOWS\System32\i420vfw.dll

 

 

---\\

O53 - SMSR:HKLM\...\startupreg\BrowserChoice [Key] . (.Microsoft Corporation - Choix de navigateur .) -- C:\WINDOWS\system32\browserchoice.exe

 

 

---\\

O54 - MCSP:[HKLM\...\CurrentControlSet\Control] - "SecurityProviders"=msapsspc.dll, schannel.dll, digest.dll, msnsspc.dll

O54 - MCSP:[HKLM\...\ControlSet001\Control] - "SecurityProviders"=msapsspc.dll, schannel.dll, digest.dll, msnsspc.dll

 

 

---\\

O55 - MWPS:[HKLM\...\Policies\System] - "dontdisplaylastusername"=0

O55 - MWPS:[HKLM\...\Policies\System] - "legalnoticecaption"=

O55 - MWPS:[HKLM\...\Policies\System] - "legalnoticetext"=

O55 - MWPS:[HKLM\...\Policies\System] - "shutdownwithoutlogon"=1

O55 - MWPS:[HKLM\...\Policies\System] - "undockwithoutlogon"=1

 

 

---\\

O56 - MWPE:[HKCU\...\Policies\Explorer] - "NoDriveTypeAutoRun"=157

O56 - MWPE:[HKCU\...\Policies\Explorer] - "NoDriveAutorun"=0

O56 - MWPE:[HKLM\...\Policies\Explorer] - "HonorAutoRunSetting"=1

O56 - MWPE:[HKLM\...\Policies\Explorer] - "NoCDBurning"=0

 

 

---\\

O58 - SDL:[MD5.73CB40BCA45710AE373E9D27D9970B98] - 21/07/2006 - 16:10:44 R--A- . (.Realtek Semiconductor Corp. - Realtek AC'97 Audio Driver (WDM).) -- C:\WINDOWS\system32\drivers\alcxwdm.sys

O58 - SDL:[MD5.5B44C214F9CD9F590BE9125347610380] - 13/02/2009 - 11:17:49 ---A- . (.Avira GmbH - Avira AntiVir File Filter Driver.) -- C:\WINDOWS\system32\drivers\avgntdd.sys

O58 - SDL:[MD5.14FE36D8F2C6A2435275338D061A0B66] - 29/01/2010 - 12:01:35 ---A- . (.Avira GmbH - Avira Minifilter Driver.) -- C:\WINDOWS\system32\drivers\avgntflt.sys

O58 - SDL:[MD5.2DAA8CC2670720DEDDCC74A20EDE2EE9] - 13/02/2009 - 11:28:39 ---A- . (.Avira GmbH - Avira AntiVir File Filter Driver Manager.) -- C:\WINDOWS\system32\drivers\avgntmgr.sys

O58 - SDL:[MD5.AD9BD66A862116E79CB45BB6BE46055F] - 30/03/2009 - 09:32:47 ---A- . (.Avira GmbH - Avira Driver for RootKit Detection.) -- C:\WINDOWS\system32\drivers\avipbb.sys

O58 - SDL:[MD5.223DEA13C9D064BABC882B4727F6F905] - 20/06/2007 - 03:00:00 ---A- . (.Sonic Solutions - CDR4 CD and DVD Place Holder Driver (see PxHelp).) -- C:\WINDOWS\system32\drivers\cdr4_xp.sys

O58 - SDL:[MD5.9E26599599D178E71AFB5599E146031A] - 20/06/2007 - 03:00:00 ---A- . (.Sonic Solutions - CDRAL Place Holder Driver (see PxHelp).) -- C:\WINDOWS\system32\drivers\cdralw2k.sys

O58 - SDL:[MD5.E0042BD5BEF17A6A3EF1DF576BDE24D1] - 20/02/2006 - 18:17:40 ---A- . (.B.H.A Corporation - CD-ROM Filter Driver for Windows2000/xp.) -- C:\WINDOWS\system32\drivers\cdrbsdrv.sys

O58 - SDL:[MD5.C9B25AE9B8ABD983C5AD3F8CBFAB0F9C] - 02/03/2006 - 13:00:00 ---A- . (.RAVISENT Technologies Inc. - Pilote principal CineMaster C 1.2 WDM.) -- C:\WINDOWS\system32\drivers\cinemst2.sys

O58 - SDL:[MD5.9624293E55AD405415862B504CA95B73] - 02/03/2006 - 13:00:00 ---A- . (.Compaq Computer Corporation - Compaq PA-1 Player Driver.) -- C:\WINDOWS\system32\drivers\cpqdap01.sys

O58 - SDL:[MD5.F6010162368D9BEF934F1647F2430446] - 04/04/2008 - 17:34:26 ---A- . (.MAGIX - .) -- C:\WINDOWS\system32\drivers\disksec.sys

O58 - SDL:[MD5.8C18F85EDD5D47F34068F3EFD5689FA9] - 14/07/2006 - 15:03:02 ---A- . (.GEAR Software Inc. - CDRom Class Filter Driver.) -- C:\WINDOWS\system32\drivers\GEARAspiWDM.sys

O58 - SDL:[MD5.52D390504A7087A0F591CDF64CDC6ECB] - 20/02/2006 - 19:25:16 ---A- . (.GARMIN Corp. - grmn0200 driver.) -- C:\WINDOWS\system32\drivers\grmn0200.sys

O58 - SDL:[MD5.95BBFDAEF6F9C25FAE80713766456F7C] - 11/04/2006 - 20:51:08 ---A- . (.GARMIN Corp. - grmn0400.) -- C:\WINDOWS\system32\drivers\grmn0400.sys

O58 - SDL:[MD5.167115B180488785D578B616AC968EA7] - 11/07/2006 - 20:50:24 ---A- . (.GARMIN Corp. - grmn1200.) -- C:\WINDOWS\system32\drivers\grmn1200.sys

O58 - SDL:[MD5.FD396CA96D4F129BB463ED7DCEF453CA] - 08/03/2007 - 15:18:00 ---A- . (.GARMIN Corp. - Generic WDM Support Driver.) -- C:\WINDOWS\system32\drivers\grmngen.sys

O58 - SDL:[MD5.D956358054E99E6FFAC69CD87E893A89] - 08/03/2007 - 15:18:00 ---A- . (.GARMIN Corp. - grmnusb.sys.) -- C:\WINDOWS\system32\drivers\grmnusb.sys

O58 - SDL:[MD5.16BC447DE474A9E125DB39806714F1E1] - 31/01/2005 - 11:19:20 R--A- . (.Logitech Inc. - Audio filter for Express Plus.) -- C:\WINDOWS\system32\drivers\lv302af.sys

O58 - SDL:[MD5.7A31B09C7F037A1217B658465F19BBCE] - 31/01/2005 - 11:26:06 R--A- . (.Logitech Inc. - Logitech QuickCam Driver.) -- C:\WINDOWS\system32\drivers\LV302AV.SYS

O58 - SDL:[MD5.15ECC52C7C28EEACBCB935677DC34523] - 31/01/2005 - 11:04:55 R--A- . (.Logitech Inc. - SmoothVision filter.) -- C:\WINDOWS\system32\drivers\LVSVF2.sys

O58 - SDL:[MD5.A730FC8671A60666D6E877C544DD7CD4] - 31/01/2005 - 11:12:46 R--A- . (.Logitech Inc. - USB Statistic Driver.) -- C:\WINDOWS\system32\drivers\LVUSBSta.sys

O58 - SDL:[MD5.67B48A903430C6D4FB58CBACA1866601] - 29/04/2010 - 14:39:26 ---A- . (.Malwarebytes Corporation - Malwarebytes' Anti-Malware.) -- C:\WINDOWS\system32\drivers\mbam.sys

O58 - SDL:[MD5.C7DD7D9739785BD3A6B8499EEC1DEE7E] - 29/04/2010 - 14:39:38 ---A- . (.Malwarebytes Corporation - Malwarebytes' Anti-Malware.) -- C:\WINDOWS\system32\drivers\mbamswissarmy.sys

O58 - SDL:[MD5.8F3F03295ECE0FCE2E0C9F21FB08641D] - 18/02/2008 - 15:29:38 ---A- . (.G DATA Software AG - Filesystem MiniInterceptor (Mini Filter).) -- C:\WINDOWS\system32\drivers\MiniIcpt.sys

O58 - SDL:[MD5.BE984D604D91C217355CDD3737AAD25D] - 02/03/2006 - 13:00:00 ---A- . (.S3/Diamond Multimedia Systems - NikeDrv Usb Driver.) -- C:\WINDOWS\system32\drivers\nikedrv.sys

O58 - SDL:[MD5.21DC5B289DCE2D32A32BAAB7BCF29A6A] - 21/12/2009 - 16:09:15 ---A- . (. - .) -- C:\WINDOWS\system32\drivers\oreans32.sys

O58 - SDL:[MD5.240C0D4049A833B16B63B636ACF01672] - 19/02/2008 - 13:05:37 ---A- . (.PalmSource, Inc. - USB Driver for Palm OS Handheld Devices.) -- C:\WINDOWS\system32\drivers\PalmUSBD.sys

O58 - SDL:[MD5.BCF8D075FAD718FEA8EF6E281331A56E] - 15/07/2007 - 02:37:04 ---A- . (.EnTech Taiwan - PowerStrip support NT kernel-mode driver.) -- C:\WINDOWS\system32\drivers\pstrip.sys

O58 - SDL:[MD5.80D317BD1C3DBC5D4FE7B1678C60CADD] - 02/03/2006 - 13:00:00 ---A- . (.Parallel Technologies, Inc. - Parallel Technologies DirectParallel IO Library.) -- C:\WINDOWS\system32\drivers\ptilink.sys

O58 - SDL:[MD5.49452BFCEC22F36A7A9B9C2181BC3042] - 26/07/2007 - 03:00:00 ---A- . (.Sonic Solutions - Px Engine Device Driver for Windows 2000/XP.) -- C:\WINDOWS\system32\drivers\pxhelp20.sys

O58 - SDL:[MD5.A56FE08EC7473E8580A390BB1081CDD7] - 02/03/2006 - 13:00:00 ---A- . (.S3/Diamond Multimedia Systems - Rio8Drv.sys Usb Driver.) -- C:\WINDOWS\system32\drivers\rio8drv.sys

O58 - SDL:[MD5.0A854DF84C77A0BE205BFEAB2AE4F0EC] - 02/03/2006 - 13:00:00 ---A- . (.S3/Diamond Multimedia Systems - RioDrv Usb Driver.) -- C:\WINDOWS\system32\drivers\riodrv.sys

O58 - SDL:[MD5.72AECF54AAC22B20956D08610972B5A1] - 02/11/2009 - 15:15:35 ---A- . (.Sunbelt Software - Anti-Rootkit Engine.) -- C:\WINDOWS\system32\drivers\SBREDrv.sys

O58 - SDL:[MD5.90A3935D05B494A5A39D37E71F09A677] - 13/11/2007 - 11:25:54 ---A- . (.Macrovision Corporation, Macrovision Europe - Macrovision SECURITY Driver.) -- C:\WINDOWS\system32\drivers\secdrv.sys

O58 - SDL:[MD5.A9773EE91CF88503947A86E19A507E00] - 16/04/2005 - 10:44:12 R--A- . (.Silicon Integrated Systems Corp. - NDIS 5.1 Miniport Driver for SiS191/SiS190 Ethernet Device.) -- C:\WINDOWS\system32\drivers\SiSGbeXP.sys

O58 - SDL:[MD5.F1BF6158AC79912BBDF71A0382FEFA65] - 06/03/2006 - 13:26:14 R--A- . (.Silicon Integrated Systems Corporation - SiS Compatible Super VGA Driver.) -- C:\WINDOWS\system32\drivers\sisgrp.sys

O58 - SDL:[MD5.5CE1CF27620B144E212D407CDB14D339] - 19/12/2008 - 22:16:10 ---A- . (.Acronis - Acronis Snapshot API.) -- C:\WINDOWS\system32\drivers\snman380.sys

O58 - SDL:[MD5.00000000000000000000000000000000] - 31/01/2010 - 02:50:44 ---A- . (. - .) -- C:\WINDOWS\system32\drivers\sptd.sys

O58 - SDL:[MD5.224EF1530777D62B65E8C2D5E9CFA511] - 05/03/2006 - 20:25:30 R--A- . (.Silicon Integrated Systems Corporation - SiS VGA Driver Manager.) -- C:\WINDOWS\system32\drivers\srvkp.sys

O58 - SDL:[MD5.3AD0362CF68DE3AC500E981700242CCA] - 11/05/2009 - 09:11:52 ---A- . (.Avira GmbH - AVIRA SnapShot Driver.) -- C:\WINDOWS\system32\drivers\ssmdrv.sys

O58 - SDL:[MD5.F92254B0BCFCD10CAAC7BCCC7CB7F467] - 12/11/2009 - 13:48:56 ---A- . (. - .) -- C:\WINDOWS\system32\drivers\StarOpen.sys

O58 - SDL:[MD5.BE7B1A73272648622B39BE3C610E3CA0] - 19/12/2008 - 22:16:17 ---A- . (.Acronis - Acronis Try&Decide Volume Filter Driver.) -- C:\WINDOWS\system32\drivers\tdrpm147.sys

O58 - SDL:[MD5.6DCB8DDB481CD3C40FA68593723B4D89] - 19/12/2008 - 22:16:14 ---A- . (.Acronis - Acronis True Image File System Filter.) -- C:\WINDOWS\system32\drivers\tifsfilt.sys

O58 - SDL:[MD5.394FC70B88B7958FA85798BBC76D140A] - 19/12/2008 - 22:16:14 ---A- . (.Acronis - Acronis True Image Backup Archive Explorer.) -- C:\WINDOWS\system32\drivers\timntr.sys

O58 - SDL:[MD5.DF8444A8FA8FD38D8848BDD40A8403B3] - 08/04/2009 - 09:23:57 ---A- . (.Trend Micro Inc. - TrendMicro Common Module.) -- C:\WINDOWS\system32\drivers\tmcomm.sys

O58 - SDL:[MD5.D74A8EC75305F1D3CFDE7C7FC1BD62A9] - 02/03/2006 - 13:00:00 ---A- . (.Toshiba Corporation - WDM Toshiba Tecra Video Capture Driver.) -- C:\WINDOWS\system32\drivers\tsbvcap.sys

O58 - SDL:[MD5.ECCEED76CF9D75A8FCA131A76DFAF9E3] - 08/10/2007 - 10:54:36 ---A- . (.DASoft Development Team - UltraDefrag Driver.) -- C:\WINDOWS\system32\drivers\ultradfg.sys

O58 - SDL:[MD5.55E01061C74A8CEFFF58DC36114A8D3F] - 02/03/2006 - 13:00:00 ---A- . (.RAVISENT Technologies Inc. - CineMaster C WDM DVD Minidriver.) -- C:\WINDOWS\system32\drivers\vdmindvd.sys

O58 - SDL:[MD5.6D3ADA4CE95CECA7BCE527A08C4C474E] - 02/03/2006 - 13:00:00 ---A- . (. - .) -- C:\WINDOWS\system32\ansi.sys

O58 - SDL:[MD5.0FE9F16075C9ACB941C957B7C649176E] - 02/03/2006 - 13:00:00 ---A- . (. - .) -- C:\WINDOWS\system32\country.sys

O58 - SDL:[MD5.77EBF3E9386DAA51551AF429052D88D0] - 03/04/1996 - 20:33:26 ---A- . (. - .) -- C:\WINDOWS\system32\giveio.sys

O58 - SDL:[MD5.C6D29F29DE7427B1B0775E53E577B623] - 02/03/2006 - 13:00:00 ---A- . (. - .) -- C:\WINDOWS\system32\himem.sys

O58 - SDL:[MD5.582BCDD47CF4B68B5CB528F18E3CB808] - 02/03/2006 - 13:00:00 ---A- . (. - .) -- C:\WINDOWS\system32\key01.sys

O58 - SDL:[MD5.FBBCFEC1379C5C02D88A361993EDF1B8] - 02/03/2006 - 13:00:00 ---A- . (. - .) -- C:\WINDOWS\system32\keyboard.sys

O58 - SDL:[MD5.7D30A74B5FB9FE3B245A6CE5FBCD71D5] - 02/03/2006 - 13:00:00 ---A- . (. - .) -- C:\WINDOWS\system32\ntdos.sys

O58 - SDL:[MD5.CF9ED169FF86D935E47999E82359E898] - 02/03/2006 - 13:00:00 ---A- . (. - .) -- C:\WINDOWS\system32\ntdos404.sys

O58 - SDL:[MD5.03B945AC0481CD8BB161C3569D8ED1C3] - 02/03/2006 - 13:00:00 ---A- . (. - .) -- C:\WINDOWS\system32\ntdos411.sys

O58 - SDL:[MD5.BBC957DC18C17CC027EB80B7C77F2AEA] - 02/03/2006 - 13:00:00 ---A- . (. - .) -- C:\WINDOWS\system32\ntdos412.sys

O58 - SDL:[MD5.3CFFAEFFF23B0D208214A6D3061A5B1B] - 02/03/2006 - 13:00:00 ---A- . (. - .) -- C:\WINDOWS\system32\ntdos804.sys

O58 - SDL:[MD5.CAAA108FD7BF71989946B39704323455] - 02/03/2006 - 13:00:00 ---A- . (. - .) -- C:\WINDOWS\system32\ntio.sys

O58 - SDL:[MD5.6F73F50162DEF60C84B725C18CD9140F] - 02/03/2006 - 13:00:00 ---A- . (. - .) -- C:\WINDOWS\system32\ntio404.sys

O58 - SDL:[MD5.0FDD5E69C1FF3B58043D44F2CC743D45] - 02/03/2006 - 13:00:00 ---A- . (. - .) -- C:\WINDOWS\system32\ntio411.sys

O58 - SDL:[MD5.8842837C4D8311BF8E72BEE8CCC42217] - 02/03/2006 - 13:00:00 ---A- . (. - .) -- C:\WINDOWS\system32\ntio412.sys

O58 - SDL:[MD5.6B56CEB3C6F9D5CD7293DBD9FE23B311] - 02/03/2006 - 13:00:00 ---A- . (. - .) -- C:\WINDOWS\system32\ntio804.sys

O58 - SDL:[MD5.D74375BE63DCA31E6145248E4278893E] - 22/10/2003 - 09:54:14 ---A- . (.Printing Communications Assoc., Inc. (PCAUS - PCAUSA NDIS 4.0 Protocol Driver.) -- C:\WINDOWS\system32\Pcandis4.sys

O58 - SDL:[MD5.FC6BAFC20114160A6291C1C45545F137] - 22/10/2003 - 09:54:18 ---A- . (.Printing Communications Assoc., Inc. (PCAUS - PCAUSA NDIS 5.0 Protocol Driver.) -- C:\WINDOWS\system32\Pcandis5.sys

O58 - SDL:[MD5.5D6401DB90EC81B71F8E2C5C8F0FEF23] - 24/09/2006 - 14:28:46 ---A- . (.Windows ® 2000 DDK provider - SpeedFan Device Driver.) -- C:\WINDOWS\system32\speedfan.sys

 

 

---\\

O63 - Logiciel: HijackThis 2.0.2 - (.TrendMicro.)

O63 - Logiciel: ZHPDiag 1.25 - (.Nicolas Coolman.)

 

 

---\\

O66 - EventLog: ID=490 (ESENT) - (. - .) -- C:\WINDOWS\system32\CatRoot2\{127D0A1D-4EF2-11D1-8608-00C04FC295EE}\catdb

 

 

---\\

O67 - Shell Spawning: <.bat> <batfile>[HKLM\..\open\Command] "%1" %* (.not file.)

O67 - Shell Spawning: <.cpl> <cplfile>[HKLM\..\cplopen\Command] (. - .) -- rundll32.exe shell32.dll,Control_RunDLL "%1",%*

O67 - Shell Spawning: <.cmd> <cmdfile>[HKLM\..\open\Command] "%1" %* (.not file.)

O67 - Shell Spawning: <.com> <comfile>[HKLM\..\open\Command] "%1" %* (.not file.)

O67 - Shell Spawning: <.exe> <exefile>[HKLM\..\open\Command] "%1" %* (.not file.)

O67 - Shell Spawning: <.html> <htmlfile>[HKLM\..\open\Command] (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files\Internet Explorer\IEXPLORE.exe

O67 - Shell Spawning: <.js> <JSFile>[HKLM\..\open\Command] (.Microsoft Corporation - Microsoft ® Windows Based Script Host.) -- C:\WINDOWS\System32\WScript.exe

O67 - Shell Spawning: <.reg> <regfile>[HKLM\..\open\Command] (.Microsoft Corporation - Éditeur du Registre.) -- C:\WINDOWS\regedit.exe

O67 - Shell Spawning: <.html> <htmlfile>[HKCU\..\open\Command] (.Not Key.)

O67 - Shell Spawning: <.bat> <batfile>[HKCR\..\open\Command] "%1" %* (.not file.)

O67 - Shell Spawning: <.cpl> <cplfile>[HKCR\..\cplopen\Command] (. - .) -- rundll32.exe shell32.dll,Control_RunDLL "%1",%*

O67 - Shell Spawning: <.cmd> <cmdfile>[HKCR\..\open\Command] "%1" %* (.not file.)

O67 - Shell Spawning: <.com> <comfile>[HKCR\..\open\Command] "%1" %* (.not file.)

O67 - Shell Spawning: <.exe> <exefile>[HKCR\..\open\Command] "%1" %* (.not file.)

O67 - Shell Spawning: <.html> <htmlfile>[HKCR\..\open\Command] (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files\Internet Explorer\IEXPLORE.exe

O67 - Shell Spawning: <.js> <JSFile>[HKCR\..\open\Command] (.Microsoft Corporation - Microsoft ® Windows Based Script Host.) -- C:\WINDOWS\System32\WScript.exe

O67 - Shell Spawning: <.reg> <regfile>[HKCR\..\open\Command] (.Microsoft Corporation - Éditeur du Registre.) -- C:\WINDOWS\regedit.exe

 

 

---\\

O68 - StartMenuInternet: <FIREFOX.EXE> <Mozilla Firefox>[HKLM\..\Shell\open\Command] (.Mozilla Corporation - Firefox.) -- C:\Program Files\Mozilla Firefox\firefox.exe

O68 - StartMenuInternet: <IEXPLORE.EXE> <Internet Explorer>[HKLM\..\Shell\open\Command] (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files\Internet Explorer\iexplore.exe

 

 

 

End of the scan (842 lines in 00mn 27s)

[philren]

A signaler que Spybot prend maintenant en compte cette infection et met le fichier jestertb.dll en quarantaine. Donc le problème est résolu par l'élimination, mais reste mystérieux.