Tom's Guide > Forum > Sécurité - Virus > Uc Élévée, démarrage lent, ordinateur lent
Uc Élévée, démarrage lent, ordinateur lent - Sécurité - Virus
TomsGuide.com : 800 000 inscrits répondent à toutes vos questions high-tech et informatique. Pour obtenir de l'aide, inscrivez-vous gratuitement !
Répondre
Mot :    Pseudo :           
 
olivier_123   28-07-2007 à 07:33:40

En effet , tout est expliquer dans le sujet. En détails , mon ordinateur est asser puissant mais depuis quelques jours il se met à me mettre en colère.

Le démarrage prend plus de 10 minutes, lorsque je clique sur des dossiers , ou des videos ou peut-importe le UC devient a 100% ou 50% minimum , et se met a ramé et puis apres gelé.

Il s'agit surement là d'un virus qui vient utiliser mon UC, et un virus pour le démarrage ou je sais pas. Mais j'ai besoin de votre aide.

À J'oubliait, je ne suit plus capable de me connecter sur Msn, et pourtant l'internet marche bien.

Ordinateur: Windows Xp Sp2, Processeur dual core AMD Athlon64x, Ram:2go. Disque dur: 150go. Par Feu: zone Alarm Pro
Antivirus: kaspersky

Mon éperience en informatique est asser élevé donc se n'est pas neccéssaire de m'expliquer en profond détail quoi faire.

Merci de bien vouloir m'aider. @+ a toute l'équipe.

Répondre
Liens sponsorisés
Inscrivez-vous ou connectez-vous pour masquer ceci.
chercheur_   28-07-2007 à 10:32:17
- 0 +

Bonjour


Télécharge HijackThis v1.99.1
http://pchelpbordeaux.free.fr/logiciels.html
Tutorial
http://pchelpbordeaux.free.fr/tuto.html
Démo en image
http://perso.orange.fr/rginformati [...] hijack.htm

Fais un scan et poste l'analyse ici.

------------------------------ Le meilleur antivirus, c'est vous
Vous avez un problème ? Créez votre propre post !
 Répondre à chercheur_
olivier_123   28-07-2007 à 18:03:33
- 0 +

Le rapport comme prévu:

Logfile of HijackThis v1.99.1
Scan saved at 12:01:29, on 2007-07-07
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.6000.16473)

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\ZoneLabs\vsmon.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 6.0\avp.exe
C:\WINDOWS\eHome\ehRecvr.exe
C:\WINDOWS\eHome\ehSched.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\ehome\RMSvc.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\SOUNDMAN.EXE
C:\WINDOWS\system32\wbem\wmiapsrv.exe
C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 6.0\avp.exe
C:\WINDOWS\system32\dllhost.exe
C:\Program Files\Zone Labs\ZoneAlarm\zlclient.exe
C:\Program Files\MSN Messenger\msnmsgr.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\WINDOWS\system32\ZoneLabs\UpdClient.exe
C:\DOCUME~1\OWNER~1.ORD\LOCALS~1\Temp\Rar$EX00.312\HijackThis.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://french.eazel.com/index.php?rvs=hompag
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll
O2 - BHO: (no name) - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.5.0_10\bin\ssv.dll
O2 - BHO: Windows Live Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar3.dll
O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\2.0.301.7164\swg.dll
O2 - BHO: CBrowserHelperObject Object - {CA6319C0-31B7-401E-A518-A07C3DB8F777} - c:\windows\system32\BAE.dll
O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar3.dll
O4 - HKLM\..\Run: [SoundMan] SOUNDMAN.EXE
O4 - HKLM\..\Run: [AVP] "C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 6.0\avp.exe"
O4 - HKLM\..\Run: [ZoneAlarm Client] "C:\Program Files\Zone Labs\ZoneAlarm\zlclient.exe"
O4 - HKCU\..\Run: [msnmsgr] "C:\Program Files\MSN Messenger\msnmsgr.exe" /background
O9 - Extra button: Trace - {04849C74-016E-4a43-8AA5-1F01DE57F4A1} - C:\Program Files\VisualRoute\vrie.dll
O9 - Extra 'Tools' menuitem: VisualRoute Trace - {04849C74-016E-4a43-8AA5-1F01DE57F4A1} - C:\Program Files\VisualRoute\vrie.dll
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_10\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_10\bin\ssv.dll
O9 - Extra button: Web Anti-Virus statistics - {1F460357-8A94-4D71-9CA3-AA4ACF32ED8E} - C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 6.0\scieplugin.dll
O9 - Extra button: PartyPoker.com - {B7FE5D70-9AA2-40F1-9C6B-12A255F085E1} - C:\Program Files\PartyGaming\PartyPoker\RunApp.exe
O9 - Extra 'Tools' menuitem: PartyPoker.com - {B7FE5D70-9AA2-40F1-9C6B-12A255F085E1} - C:\Program Files\PartyGaming\PartyPoker\RunApp.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O11 - Options group: [INTERNATIONAL] International*
O16 - DPF: {0EB0E74A-2A76-4AB3-A7FB-9BD8C29F7F75} (CKAVWebScan Object) - http://webscanner.kaspersky.fr/kavwebscan_unicode.cab
O16 - DPF: {5D86DDB5-BDF9-441B-9E9E-D4730F4EE499} (BDSCANONLINE Control) - http://www.bitdefender.fr/scan8/oscan8.cab
O16 - DPF: {9A9307A0-7DA4-4DAF-B042-5009F29E09E1} (ActiveScan Installer Class) - http://acs.pandasoftware.com/activ [...] asinst.cab
O17 - HKLM\System\CCS\Services\Tcpip\..\{67A3F322-72C4-4A18-A768-136B59904352}: NameServer = 192.168.0.1,192.168.0.2
O18 - Protocol: livecall - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\MSNMES~1\msgrapp.8.1.0178.00.dll
O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\MSNMES~1\msgrapp.8.1.0178.00.dll
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\FICHIE~1\Skype\Skype4COM.dll
O20 - AppInit_DLLs: C:\PROGRA~1\Google\GOOGLE~1\GOEC62~1.DLL
O20 - Winlogon Notify: klogon - C:\WINDOWS\system32\klogon.dll
O20 - Winlogon Notify: WgaLogon - C:\WINDOWS\SYSTEM32\WgaLogon.dll
O21 - SSODL: WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\WINDOWS\system32\WPDShServiceObj.dll
O23 - Service: Adobe LM Service - Adobe Systems - C:\Program Files\Fichiers communs\Adobe Systems Shared\Service\Adobelmsvc.exe
O23 - Service: Kaspersky Anti-Virus 6.0 (AVP) - Unknown owner - C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 6.0\avp.exe" -r (file missing)
O23 - Service: TrueVector Internet Monitor (vsmon) - Zone Labs, LLC - C:\WINDOWS\system32\ZoneLabs\vsmon.exe

Répondre à olivier_123
chercheur_   28-07-2007 à 19:44:20
- 0 +

Rien d'infectieux dans ce rapport.


Télécharge Combofix.exe (par sUBs) sur ton Bureau
http://download.bleepingcomputer.com/sUBs/ComboFix.exe

Double clique combofix.exe et suis les invites.
Lorsque le scan sera complété, un rapport apparaîtra.

Copie/colle ce rapport dans ta prochaine réponse.


As tu fait le ménage des fichiers temporaires, le ménage dans le registre et une défragmentation ?

------------------------------ Le meilleur antivirus, c'est vous
Vous avez un problème ? Créez votre propre post !
 Répondre à chercheur_
olivier_123   28-07-2007 à 20:13:41
- 0 +

Ouais j'ai passer un petit ccleaner, le registre je l'ai pas nettoyer ni faite une défragmentation car je n'ai que 10% despace libre , est-ce sécuritaire ?
Voici donc le rapport: (et merci des réponses rapides, je vais surveiller plus souvent mes message :P )
"Owner" - 2007-07-07 13:48:15 - ComboFix 07-07-23.6 - Service Pack 2 NTFS


((((((((((((((((((((((((((((((((((((((( Other Deletions )))))))))))))))))))))))))))))))))))))))))))))))))


C:\WINDOWS\system32\SysPr.prx


((((((((((((((((((((((((( Files Created from 2007-06-07 to 2007-07-07 )))))))))))))))))))))))))))))))


2007-07-16 22:04 <REP> d-------- C:\DOCUME~1\ALLUSE~1\APPLIC~1\AOL Downloads
2007-07-12 21:30 6,234,112 --a------ C:\WINDOWS\system32\nvdisps.dll
2007-07-12 21:30 5,455,872 --a------ C:\WINDOWS\system32\nvdispsr.dll
2007-07-12 21:30 458,752 --a------ C:\WINDOWS\system32\nvmccssr.dll
2007-07-12 21:30 323,584 --a------ C:\WINDOWS\system32\nvwrspt.dll
2007-07-12 21:30 323,584 --a------ C:\WINDOWS\system32\nvwrsit.dll
2007-07-12 21:30 319,488 --a------ C:\WINDOWS\system32\nvwrsptb.dll
2007-07-12 21:30 319,488 --a------ C:\WINDOWS\system32\nvwrsnl.dll
2007-07-12 21:30 315,392 --a------ C:\WINDOWS\system32\nvwrsru.dll
2007-07-12 21:30 315,392 --a------ C:\WINDOWS\system32\nvwrshu.dll
2007-07-12 21:30 303,104 --a------ C:\WINDOWS\system32\nvwrstr.dll
2007-07-12 21:30 303,104 --a------ C:\WINDOWS\system32\nvwrssl.dll
2007-07-12 21:30 3,600,384 --a------ C:\WINDOWS\system32\nvvitvsr.dll
2007-07-12 21:30 3,518,464 --a------ C:\WINDOWS\system32\nvvitvs.dll
2007-07-12 21:30 3,321,856 --a------ C:\WINDOWS\system32\nvgames.dll
2007-07-12 21:30 3,072,000 --a------ C:\WINDOWS\system32\nvgamesr.dll
2007-07-12 21:30 299,008 --a------ C:\WINDOWS\system32\nvwrssk.dll
2007-07-12 21:30 299,008 --a------ C:\WINDOWS\system32\nvwrsno.dll
2007-07-12 21:30 294,912 --a------ C:\WINDOWS\system32\nvwrssv.dll
2007-07-12 21:30 294,912 --a------ C:\WINDOWS\system32\nvwrspl.dll
2007-07-12 21:30 278,528 --a------ C:\WINDOWS\system32\nvrsit.dll
2007-07-12 21:30 274,432 --a------ C:\WINDOWS\system32\nvrspt.dll
2007-07-12 21:30 274,432 --a------ C:\WINDOWS\system32\nvrsnl.dll
2007-07-12 21:30 270,336 --a------ C:\WINDOWS\system32\nvrsru.dll
2007-07-12 21:30 266,240 --a------ C:\WINDOWS\system32\nvrsptb.dll
2007-07-12 21:30 266,240 --a------ C:\WINDOWS\system32\nvrsja.dll
2007-07-12 21:30 262,144 --a------ C:\WINDOWS\system32\nvrsko.dll
2007-07-12 21:30 258,048 --a------ C:\WINDOWS\system32\nvrstr.dll
2007-07-12 21:30 258,048 --a------ C:\WINDOWS\system32\nvrssl.dll
2007-07-12 21:30 258,048 --a------ C:\WINDOWS\system32\nvrssk.dll
2007-07-12 21:30 258,048 --a------ C:\WINDOWS\system32\nvrshu.dll
2007-07-12 21:30 253,952 --a------ C:\WINDOWS\system32\nvrssv.dll
2007-07-12 21:30 253,952 --a------ C:\WINDOWS\system32\nvrspl.dll
2007-07-12 21:30 253,952 --a------ C:\WINDOWS\system32\nvrsno.dll
2007-07-12 21:30 225,280 --a------ C:\WINDOWS\system32\nvrszhc.dll
2007-07-12 21:30 212,992 --a------ C:\WINDOWS\system32\nvwrsja.dll
2007-07-12 21:30 2,854,912 --a------ C:\WINDOWS\system32\nvmoblsr.dll
2007-07-12 21:30 2,416,640 --a------ C:\WINDOWS\system32\nvwssr.dll
2007-07-12 21:30 2,330,624 --a------ C:\WINDOWS\system32\nvwss.dll
2007-07-12 21:30 196,608 --a------ C:\WINDOWS\system32\nvwrsko.dll
2007-07-12 21:30 188,416 --a------ C:\WINDOWS\system32\nvmccss.dll
2007-07-12 21:30 167,936 --a------ C:\WINDOWS\system32\nvwrszht.dll
2007-07-12 21:30 163,840 --a------ C:\WINDOWS\system32\nvwrszhc.dll
2007-07-12 21:30 126,976 --a------ C:\WINDOWS\system32\nvrszht.dll
2007-07-12 21:30 1,142,784 --a------ C:\WINDOWS\system32\nvmobls.dll
2007-07-12 21:30 1,018,772 --a------ C:\WINDOWS\system32\nvucode.bin
2007-07-12 21:04 62,976 --a------ C:\WINDOWS\system32\DSETUP.dll
2007-07-12 21:04 2,242,560 --a------ C:\WINDOWS\system32\dsetup32.dll
2007-07-12 20:47 <REP> d-------- C:\Program Files\directx
2007-07-12 20:40 187,904 --a------ C:\WINDOWS\system32\dinput8.dll
2007-07-12 20:39 165,376 --a------ C:\WINDOWS\system32\dinput.dll
2007-07-12 20:37 57,856 --a------ C:\WINDOWS\system32\dpwsockx.dll
2007-07-12 20:36 1,179,648 --a------ C:\WINDOWS\system32\d3d8.dll
2007-07-12 20:35 105,984 --a------ C:\WINDOWS\system32\dmstyle.dll
2007-07-12 20:33 103,424 --a------ C:\WINDOWS\system32\dmsynth.dll
2007-07-12 20:32 1,294,336 --a------ C:\WINDOWS\system32\dsound3d.dll
2007-07-12 20:30 24,064 --a------ C:\WINDOWS\system32\dpmodemx.dll
2007-07-12 20:30 229,888 --a------ C:\WINDOWS\system32\dplayx.dll
2007-07-12 20:26 825,344 --a------ C:\WINDOWS\system32\d3dim700.dll
2007-07-12 20:24 27,136 --a------ C:\WINDOWS\system32\ddrawex.dll
2007-07-12 20:20 455,680 --a------ C:\WINDOWS\system\DSOUND.DLL
2007-07-12 20:20 367,616 --a------ C:\WINDOWS\system32\dsound.dll
2007-07-12 20:19 8,192 --a------ C:\WINDOWS\system32\d3d8thk.dll
2007-07-12 20:19 8,192 --a------ C:\WINDOWS\system\d3d8thk.dll
2007-07-12 20:16 333,824 --a------ C:\WINDOWS\system\DDRAW.DLL
2007-07-12 20:08 266,240 --------- C:\WINDOWS\system32\ddraw.dll
2007-07-12 20:06 443,752 --a------ C:\WINDOWS\system32\d3dx10_34.dll
2007-07-12 20:06 443,752 --a------ C:\WINDOWS\system32\d3dx10_33.dll
2007-07-12 20:06 3,497,832 --a------ C:\WINDOWS\system32\d3dx9_34.dll
2007-07-12 20:06 3,495,784 --a------ C:\WINDOWS\system32\d3dx9_33.dll
2007-07-12 20:06 3,426,072 --a------ C:\WINDOWS\system32\d3dx9_32.dll
2007-07-12 20:06 266,088 --a------ C:\WINDOWS\system32\xactengine2_8.dll
2007-07-12 20:06 261,480 --a------ C:\WINDOWS\system32\xactengine2_7.dll
2007-07-12 20:06 255,848 --a------ C:\WINDOWS\system32\xactengine2_6.dll
2007-07-12 20:06 251,672 --a------ C:\WINDOWS\system32\xactengine2_5.dll
2007-07-12 20:06 2,414,360 --a------ C:\WINDOWS\system32\d3dx9_31.dll
2007-07-12 20:06 2,297,552 --a------ C:\WINDOWS\system32\d3dx9_26.dll
2007-07-12 20:06 18,280 --a------ C:\WINDOWS\system32\x3daudio1_2.dll
2007-07-12 20:06 1,124,720 --a------ C:\WINDOWS\system32\D3DCompiler_34.dll
2007-07-12 20:06 1,123,696 --a------ C:\WINDOWS\system32\D3DCompiler_33.dll
2007-07-12 19:59 <REP> d-------- C:\WINDOWS\Prefetch
2007-07-12 19:46 95,424 --------- C:\WINDOWS\system32\drivers\slnthal.sys
2007-07-12 19:46 9,728 --------- C:\WINDOWS\system32\rwnh.dll
2007-07-12 19:46 9,728 --------- C:\WINDOWS\system32\comsdupd.exe
2007-07-12 19:46 870,784 --------- C:\WINDOWS\system32\ati3d1ag.dll
2007-07-12 19:46 86,016 --------- C:\WINDOWS\system32\mdmxsdk.dll
2007-07-12 19:46 78,464 --------- C:\WINDOWS\system32\drivers\usbvideo.sys
2007-07-12 19:46 73,216 --------- C:\WINDOWS\system32\drivers\atintuxx.sys
2007-07-12 19:46 701,440 --------- C:\WINDOWS\system32\drivers\ati2mtag.sys
2007-07-12 19:46 685,056 --------- C:\WINDOWS\system32\drivers\hsfcxts2.sys
2007-07-12 19:46 63,663 --------- C:\WINDOWS\system32\drivers\ati1rvxx.sys
2007-07-12 19:46 63,488 --------- C:\WINDOWS\system32\drivers\atinxsxx.sys
2007-07-12 19:46 6,016 --------- C:\WINDOWS\system32\drivers\smbali.sys
2007-07-12 19:46 59,648 --------- C:\WINDOWS\system32\drivers\rfcomm.sys
2007-07-12 19:46 57,856 --------- C:\WINDOWS\system32\drivers\atinbtxx.sys
2007-07-12 19:46 56,623 --------- C:\WINDOWS\system32\drivers\ati1btxx.sys
2007-07-12 19:46 52,224 --------- C:\WINDOWS\system32\drivers\atinraxx.sys
2007-07-12 19:46 516,768 --------- C:\WINDOWS\system32\ativvaxx.dll
2007-07-12 19:46 46,464 --------- C:\WINDOWS\system32\drivers\gagp30kx.sys
2007-07-12 19:46 452,736 --------- C:\WINDOWS\system32\drivers\mtxparhm.sys


(((((((((((((((((((((((((((((((((((((((( Find3M Report ))))))))))))))))))))))))))))))))))))))))))))))))))))

2007-07-25 03:50:20 -------- d-----w C:\Program Files\Transcode360
2007-07-21 19:42:59 -------- d-----w C:\DOCUME~1\OWNER~1.ORD\APPLIC~1\LimeWire
2007-07-21 15:02:11 -------- d-----w C:\DOCUME~1\OWNER~1.ORD\APPLIC~1\uTorrent
2007-07-21 01:00:36 -------- d-----w C:\DOCUME~1\OWNER~1.ORD\APPLIC~1\Skype
2007-07-20 02:44:49 -------- d-----w C:\Program Files\Teamspeak2_RC2
2007-07-18 23:22:46 83,154 ----a-w C:\WINDOWS\system32\perfc00C.dat
2007-07-18 23:22:46 486,232 ----a-w C:\WINDOWS\system32\perfh00C.dat
2007-07-18 05:16:51 1,142 ----a-w C:\WINDOWS\system32\tmp.reg
2007-07-13 01:06:02 -------- d-----w C:\Program Files\AMD
2007-07-12 23:46:45 -------- d-----w C:\Program Files\Messenger
2007-07-12 23:45:50 -------- d-----w C:\Program Files\Movie Maker
2007-07-12 23:37:59 -------- d-----w C:\Program Files\Windows NT
2007-07-12 22:06:20 1,984 ----a-w C:\WINDOWS\system32\d3d9caps.dat
2007-07-12 20:59:08 -------- d-----w C:\Program Files\Steam
2007-07-12 15:04:35 -------- d--h--w C:\Program Files\InstallShield Installation Information
2007-07-12 00:27:26 -------- d-----w C:\Program Files\Fichiers communs\Blizzard Entertainment
2007-07-08 18:13:49 -------- d-----w C:\Program Files\BSplayer_WhenUSave_Installer
2007-07-08 15:28:42 -------- d-----w C:\DOCUME~1\OWNER~1.ORD\APPLIC~1\Sony
2007-07-08 15:26:12 -------- d-----w C:\Program Files\Sony
2007-07-08 15:25:39 -------- d-----w C:\Program Files\Sony Setup
2007-07-07 05:45:02 -------- d-----w C:\Program Files\Diablo II
2007-07-07 05:44:36 43,520 ----a-w C:\WINDOWS\system32\CmdLineExt03.dll
2007-07-07 04:34:15 4,212 ---h--w C:\WINDOWS\system32\zllictbl.dat
2007-07-07 04:29:01 50,408 --sha-w C:\WINDOWS\system32\drivers\fidbox2.idx
2007-07-07 04:29:00 112,892 --sha-w C:\WINDOWS\system32\drivers\fidbox.idx
2007-07-05 22:41:54 -------- d-----w C:\Program Files\Starcraft
2007-07-05 02:51:57 21,840 ----atw C:\WINDOWS\system32\SIntfNT.dll
2007-07-05 02:51:57 17,212 ----atw C:\WINDOWS\system32\SIntf32.dll
2007-07-05 02:51:57 12,067 ----atw C:\WINDOWS\system32\SIntf16.dll
2007-07-02 18:12:16 -------- d-----w C:\Program Files\Warcraft III
2007-07-02 03:36:02 -------- d-----w C:\DOCUME~1\OWNER~1.ORD\APPLIC~1\Vso
2007-06-28 22:43:00 81,920 ----a-w C:\WINDOWS\system32\nvwddi.dll
2007-06-28 22:43:00 81,920 ----a-w C:\WINDOWS\system32\nvmctray.dll
2007-06-28 22:43:00 8,466,432 ----a-w C:\WINDOWS\system32\nvcpl.dll
2007-06-28 22:43:00 753,664 ----a-w C:\WINDOWS\system32\nvcplui.exe
2007-06-28 22:43:00 6,807,328 ----a-w C:\WINDOWS\system32\drivers\nv4_mini.sys
2007-06-28 22:43:00 6,729,728 ----a-w C:\WINDOWS\system32\nvoglnt.dll
2007-06-28 22:43:00 5,690,624 ----a-w C:\WINDOWS\system32\nv4_disp.dll
2007-06-28 22:43:00 466,944 ----a-w C:\WINDOWS\system32\nvshell.dll
2007-06-28 22:43:00 45,056 ----a-w C:\WINDOWS\system32\nvmccsrs.dll
2007-06-28 22:43:00 442,368 ----a-w C:\WINDOWS\system32\nvappbar.exe
2007-06-28 22:43:00 425,984 ----a-w C:\WINDOWS\system32\keystone.exe
2007-06-28 22:43:00 37,376 ----a-w C:\WINDOWS\system32\nvcodins.dll
2007-06-28 22:43:00 37,376 ----a-w C:\WINDOWS\system32\nvcod.dll
2007-06-28 22:43:00 360,448 ----a-w C:\WINDOWS\system32\nvapi.dll
2007-06-28 22:43:00 335,872 ----a-w C:\WINDOWS\system32\nvwrses.dll
2007-06-28 22:43:00 335,872 ----a-w C:\WINDOWS\system32\nvwrsel.dll
2007-06-28 22:43:00 327,680 ----a-w C:\WINDOWS\system32\nvwrsfr.dll
2007-06-28 22:43:00 327,680 ----a-w C:\WINDOWS\system32\nvwrsesm.dll
2007-06-28 22:43:00 327,680 ----a-w C:\WINDOWS\system32\nvrshe.dll
2007-06-28 22:43:00 327,680 ----a-w C:\WINDOWS\system32\nvrsar.dll
2007-06-28 22:43:00 311,296 ----a-w C:\WINDOWS\system32\nvwrsde.dll
2007-06-28 22:43:00 307,200 ----a-w C:\WINDOWS\system32\nvexpbar.dll
2007-06-28 22:43:00 303,104 ----a-w C:\WINDOWS\system32\nvwrsfi.dll
2007-06-28 22:43:00 294,912 ----a-w C:\WINDOWS\system32\nvwrsda.dll
2007-06-28 22:43:00 286,720 ----a-w C:\WINDOWS\system32\nvwrseng.dll
2007-06-28 22:43:00 286,720 ----a-w C:\WINDOWS\system32\nvwrscs.dll
2007-06-28 22:43:00 286,720 ----a-w C:\WINDOWS\system32\nvnt4cpl.dll
2007-06-28 22:43:00 282,624 ----a-w C:\WINDOWS\system32\nvwrsar.dll
2007-06-28 22:43:00 282,624 ----a-w C:\WINDOWS\system32\nvrsfr.dll
2007-06-28 22:43:00 282,624 ----a-w C:\WINDOWS\system32\nvrses.dll
2007-06-28 22:43:00 282,624 ----a-w C:\WINDOWS\system32\nvrsel.dll
2007-06-28 22:43:00 278,528 ----a-w C:\WINDOWS\system32\nvwrshe.dll
2007-06-28 22:43:00 278,528 ----a-w C:\WINDOWS\system32\nvrsde.dll
2007-06-28 22:43:00 274,432 ----a-w C:\WINDOWS\system32\nvrsesm.dll
2007-06-28 22:43:00 253,952 ----a-w C:\WINDOWS\system32\nvrsda.dll
2007-06-28 22:43:00 249,856 ----a-w C:\WINDOWS\system32\nvrsfi.dll
2007-06-28 22:43:00 249,856 ----a-w C:\WINDOWS\system32\nvrscs.dll
2007-06-28 22:43:00 245,760 ----a-w C:\WINDOWS\system32\nvrseng.dll
2007-06-28 22:43:00 229,376 ----a-w C:\WINDOWS\system32\nvmccs.dll
2007-06-28 22:43:00 155,716 ----a-w C:\WINDOWS\system32\nvsvc32.exe
2007-06-28 22:43:00 147,456 ----a-w C:\WINDOWS\system32\nvcolor.exe
2007-06-28 22:43:00 1,703,936 ----a-w C:\WINDOWS\system32\nvwdmcpl.dll
2007-06-28 22:43:00 1,626,112 ----a-w C:\WINDOWS\system32\nwiz.exe
2007-06-28 22:43:00 1,474,560 ----a-w C:\WINDOWS\system32\nview.dll
2007-06-28 22:43:00 1,339,392 ----a-w C:\WINDOWS\system32\nvdspsch.exe
2007-06-28 22:43:00 1,073,152 ----a-w C:\WINDOWS\system32\nvcpluir.dll
2007-06-28 22:43:00 1,019,904 ----a-w C:\WINDOWS\system32\nvwimg.dll
2007-06-28 21:35:56 -------- d-----w C:\Program Files\DivX
2007-06-26 00:13:29 -------- d-----w C:\DOCUME~1\OWNER~1.ORD\APPLIC~1\GetRightToGo
2007-06-22 14:15:50 -------- d-----w C:\Program Files\mIRC
2007-06-05 20:33:20 -------- d-----w C:\DOCUME~1\OWNER~1.ORD\APPLIC~1\teamspeak2
2007-05-31 06:45:07 524,288 ----a-w C:\WINDOWS\system32\DivXsm.exe
2007-05-31 06:44:55 823,296 ----a-w C:\WINDOWS\system32\divx_xx07.dll
2007-05-31 06:44:54 823,296 ----a-w C:\WINDOWS\system32\divx_xx0c.dll
2007-05-31 06:44:54 802,816 ----a-w C:\WINDOWS\system32\divx_xx11.dll
2007-05-31 06:44:54 740,442 ----a-w C:\WINDOWS\system32\DivX.dll
2007-05-30 20:14:22 -------- d-----w C:\Program Files\Emerge Bot 2.3
2007-05-30 16:03:51 -------- d-----w C:\Program Files\Station 55 Trivia Bot
2007-05-30 16:03:35 286,720 ----a-w C:\WINDOWS\iun506.exe
2007-05-26 03:55:15 -------- d-----w C:\Program Files\Buaron Software
2007-05-25 20:50:46 -------- d-----w C:\DOCUME~1\OWNER~1.ORD\APPLIC~1\Ahead
2007-05-20 18:48:48 -------- d-----w C:\DOCUME~1\OWNER~1.ORD\APPLIC~1\Xfire
2007-05-20 17:54:22 -------- d-s---w C:\Program Files\Xfire
2007-05-16 15:13:53 683,520 ----a-w C:\WINDOWS\system32\inetcomm.dll
2007-05-16 01:18:50 -------- d-----w C:\Program Files\Skype
2007-05-16 01:18:44 -------- d-----w C:\Program Files\Fichiers communs\Skype
2007-05-13 18:58:33 -------- d-----w C:\Program Files\WinBot
2007-04-27 23:19:34 94,080 ----a-w C:\DOCUME~1\OWNER~1.ORD\APPLIC~1\ezplay.sys
2007-04-27 23:19:34 87,608 ----a-w C:\DOCUME~1\OWNER~1.ORD\APPLIC~1\ezpinst.exe


((((((((((((((((((((((((((((((((((((( Reg Loading Points ))))))))))))))))))))))))))))))))))))))))))))))))))


*Note* empty entries & legit default entries are not shown

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"SoundMan"="SOUNDMAN.EXE" [2005-09-26 15:07 C:\WINDOWS\SOUNDMAN.EXE]
"AVP"="C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 6.0\avp.exe" [2007-03-09 19:50]
"ZoneAlarm Client"="C:\Program Files\Zone Labs\ZoneAlarm\zlclient.exe" [2007-06-21 21:54]

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"msnmsgr"="C:\Program Files\MSN Messenger\msnmsgr.exe" [2007-01-19 13:55]

[HKEY_USERS\.default\software\microsoft\windows\currentversion\run]
"Power2GoExpress"=NA

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"InstallVisualStyle"=C:\WINDOWS\Resources\Themes\Royale\Royale.msstyles
"InstallTheme"=C:\WINDOWS\Resources\Themes\Royale.theme

[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\windows]
"appinit_dlls"=C:\PROGRA~1\Google\GOOGLE~1\GOEC62~1.DLL

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Documents and Settings^All Users^Menu Démarrer^Programmes^Démarrage^GetMail.lnk]
path=C:\Documents and Settings\All Users\Menu Démarrer\Programmes\Démarrage\GetMail.lnk
backup=C:\WINDOWS\pss\GetMail.lnkCommon Startup

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Documents and Settings^All Users^Menu Démarrer^Programmes^Démarrage^Lancement rapide d'Adobe Reader.lnk]
path=C:\Documents and Settings\All Users\Menu Démarrer\Programmes\Démarrage\Lancement rapide d'Adobe Reader.lnk
backup=C:\WINDOWS\pss\Lancement rapide d'Adobe Reader.lnkCommon Startup

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Documents and Settings^All Users^Menu Démarrer^Programmes^Démarrage^Metacafe.lnk]
path=C:\Documents and Settings\All Users\Menu Démarrer\Programmes\Démarrage\Metacafe.lnk
backup=C:\WINDOWS\pss\Metacafe.lnkCommon Startup

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Documents and Settings^All Users^Menu Démarrer^Programmes^Démarrage^Moniteur de ressources Extender.lnk]
path=C:\Documents and Settings\All Users\Menu Démarrer\Programmes\Démarrage\Moniteur de ressources Extender.lnk
backup=C:\WINDOWS\pss\Moniteur de ressources Extender.lnkCommon Startup

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Documents and Settings^All Users^Menu Démarrer^Programmes^Démarrage^Outil de mise à jour Google.lnk]
path=C:\Documents and Settings\All Users\Menu Démarrer\Programmes\Démarrage\Outil de mise à jour Google.lnk
backup=C:\WINDOWS\pss\Outil de mise à jour Google.lnkCommon Startup

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Documents and Settings^Owner.Ordi-Som^Menu Démarrer^Programmes^Démarrage^Adobe Gamma.lnk]
path=C:\Documents and Settings\Owner.Ordi-Som\Menu Démarrer\Programmes\Démarrage\Adobe Gamma.lnk
backup=C:\WINDOWS\pss\Adobe Gamma.lnkStartup

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Documents and Settings^Owner.Ordi-Som^Menu Démarrer^Programmes^Démarrage^Metacafe.lnk]
path=C:\Documents and Settings\Owner.Ordi-Som\Menu Démarrer\Programmes\Démarrage\Metacafe.lnk
backup=C:\WINDOWS\pss\Metacafe.lnkStartup

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Documents and Settings^Owner.Ordi-Som^Menu Démarrer^Programmes^Démarrage^RollerCoaster Tycoon 3 Registration.lnk]
path=C:\Documents and Settings\Owner.Ordi-Som\Menu Démarrer\Programmes\Démarrage\RollerCoaster Tycoon 3 Registration.lnk
backup=C:\WINDOWS\pss\RollerCoaster Tycoon 3 Registration.lnkStartup

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Documents and Settings^Owner.Ordi-Som^Menu Démarrer^Programmes^Démarrage^RollerCoaster Tycoon 3_ Wild Registration.lnk]
path=C:\Documents and Settings\Owner.Ordi-Som\Menu Démarrer\Programmes\Démarrage\RollerCoaster Tycoon 3_ Wild Registration.lnk
backup=C:\WINDOWS\pss\RollerCoaster Tycoon 3_ Wild Registration.lnkStartup

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\!AVG Anti-Spyware]
"C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\avgas.exe" /minimized

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe Photo Downloader]
"C:\Program Files\Adobe\Photoshop Album Starter Edition\3.0\Apps\apdproxy.exe"

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\amd_dc_opt]
C:\Program Files\AMD\Dual-Core Optimizer\amd_dc_opt.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\AnyDVD]
C:\Program Files\SlySoft\AnyDVD\AnyDVD.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ast]
C:\Program Files\Transcode360\Transcode360Tray.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\AUNPS2]
C:\Program Files\Transcode360\Transcode360Tray.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}]
"C:\Program Files\Fichiers communs\Ahead\Lib\NMBgMonitor.exe"

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\BitTorrent]
"C:\Program Files\BitTorrent\bittorrent.exe" --force_start_minimized

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ctfmon.exe]
C:\WINDOWS\system32\ctfmon.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\DAEMON Tools]
"C:\Program Files\DAEMON Tools\daemon.exe" -lang 1033

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\EA Core]
"C:\Program Files\Electronic Arts\EA Link\Core.exe" -silent

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ehTray]
C:\WINDOWS\ehome\ehtray.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Free Download Manager]
C:\Program Files\Free Download Manager\fdm.exe -autorun

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Google Desktop Search]
"C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe" /startup

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\iTunesHelper]
"C:\Program Files\iTunes\iTunesHelper.exe"

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\LogitechVideoRepair]
C:\Program Files\Logitech\Video\ISStart.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\LogitechVideoTray]
C:\Program Files\Logitech\Video\LogiTray.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\LVCOMSX]
C:\WINDOWS\system32\LVCOMSX.EXE

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\LWBMOUSE]
C:\Program Files\Browser Mouse\Browser Mouse\1.1\MOUSE32A.EXE

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\McafWelcome]
C:\PROGRA~1\McAfee.com\Agent\mcwelcom.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\MCAgentExe]
c:\PROGRA~1\mcafee.com\agent\mcagent.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\MCUpdateExe]
C:\PROGRA~1\mcafee.com\agent\McUpdate.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\micore]
C:\Program Files\Transcode360\Transcode360Tray.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\MSKAGENTEXE]
C:\PROGRA~1\McAfee\SPAMKI~1\MskAgent.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\MSKDetectorExe]
C:\Program Files\McAfee\SpamKiller\MSKDetct.exe /uninstall

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\msnmsgr]
"C:\Program Files\MSN Messenger\msnmsgr.exe" /background

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NeroFilterCheck]
C:\Program Files\Fichiers communs\Ahead\Lib\NeroCheck.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NvCplDaemon]
RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NvMediaCenter]
RUNDLL32.EXE C:\WINDOWS\system32\NvMcTray.dll,NvTaskbarInit

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\nwiz]
nwiz.exe /install

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\OASClnt]
C:\Program Files\McAfee.com\VSO\oasclnt.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\P2P]
C:\Program Files\Transcode360\Transcode360Tray.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Pando]
"C:\Program Files\Pando Networks\Pando\Pando.exe" /Automation

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\QuickTime Task]
"C:\Program Files\QuickTime\qttask.exe" -atboottime

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\readericon]
C:\Program Files\Digital Media Reader\readericon45G.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Recguard]
%WINDIR%\SMINST\RECGUARD.EXE

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Skype]
"C:\Program Files\Skype\Phone\Skype.exe" /nosplash /minimized

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Steam]
"C:\Program Files\Steam\Steam.exe" -silent

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SunJavaUpdateSched]
"C:\Program Files\Java\jre1.5.0_10\bin\jusched.exe"

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\swg]
C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Transcode360]
C:\Program Files\Transcode360\Transcode360Tray.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\updateMgr]
"C:\Program Files\Adobe\Acrobat 7.0\Reader\AdobeUpdateManager.exe" AcRdB7_0_7

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\VSOCheckTask]
"C:\PROGRA~1\McAfee.com\VSO\mcmnhdlr.exe" /checktask

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\WinDSNX]
C:\Program Files\Transcode360\Transcode360Tray.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\services]
"PrismXL"=2 (0x2)
"MskService"=2 (0x2)
"MpfService"=3 (0x3)
"mcupdmgr.exe"=3 (0x3)
"McTskshd.exe"=2 (0x2)
"McShield"=2 (0x2)
"McDetect.exe"=2 (0x2)
"NVSvc"=2 (0x2)
"NBService"=3 (0x3)
"iPod Service"=3 (0x3)
"usnjsvc"=3 (0x3)
"gusvc"=3 (0x3)

R0 agpCPQ;Filtre de bus AGP Compaq;C:\WINDOWS\system32\DRIVERS\agpCPQ.sys
R0 sfsync02;StarForce Protection Synchronization Driver (version 2.x);C:\WINDOWS\system32\drivers\sfsync02.sys
R0 srescan;srescan;C:\WINDOWS\system32\ZoneLabs\srescan.sys
R1 AmdK8;Pilote de processeur AMD;C:\WINDOWS\system32\DRIVERS\AmdK8.sys
R1 ISODrive;ISO DVD/CD-ROM Device Driver;\??\C:\Program Files\UltraISO\drivers\ISODrive.sys
R2 ehRecvr;Media Center Receiver Service;C:\WINDOWS\eHome\ehRecvr.exe
R2 ehSched;Service de planification Media Center;C:\WINDOWS\eHome\ehSched.exe
R2 McrdSvc;Media Center Extender Service;C:\WINDOWS\ehome\McrdSvc.exe
R2 RMSvc;Media Center Extender Resource Monitor;C:\WINDOWS\ehome\RMSvc.exe
R3 AmdLLD;AMD Low Level Device Driver;C:\WINDOWS\system32\DRIVERS\AmdLLD.sys
R3 AmdTools;AMD Special Tools Driver;C:\WINDOWS\system32\DRIVERS\AmdTools.sys
R3 EMouseFilter;EMouse Filter;C:\WINDOWS\system32\drivers\emousef.sys
R3 HidUsb;Pilote de classe HID Microsoft;C:\WINDOWS\system32\DRIVERS\hidusb.sys
R3 LVUSBSta;Logitech USB Monitor Filter;C:\WINDOWS\system32\drivers\lvusbsta.sys
R3 pcouffin;VSO Software pcouffin;C:\WINDOWS\system32\Drivers\pcouffin.sys
R3 QCMerced;Logitech QuickCam Communicate;C:\WINDOWS\system32\DRIVERS\LVCM.sys
R3 usbaudio;Pilote USB audio (WDM);C:\WINDOWS\system32\drivers\usbaudio.sys
R3 usbccgp;Pilote parent g‚n‚rique USB Microsoft;C:\WINDOWS\system32\DRIVERS\usbccgp.sys
R3 usbehci;Pilote miniport de contr“leur d'h“te am‚lior‚ Microsoft USB 2.0;C:\WINDOWS\system32\DRIVERS\usbehci.sys
R3 usbhub;Pilote de concentrateur standard USB Microsoft;C:\WINDOWS\system32\DRIVERS\usbhub.sys
R3 usbohci;Pilote miniport de contr“leur h“te ouvert USB Microsoft;C:\WINDOWS\system32\DRIVERS\usbohci.sys
R3 USBSTOR;Pilote de stockage de masse USB;C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS
S1 P3;Pilote processeur Intel Pentium III;C:\WINDOWS\system32\DRIVERS\p3.sys
S3 61883;Pilote d'unit‚ 61883;C:\WINDOWS\system32\DRIVERS\61883.sys
S3 Avc;P‚riph‚rique AVC;C:\WINDOWS\system32\DRIVERS\avc.sys
S3 BRIDGE;Pont MAC;C:\WINDOWS\system32\DRIVERS\bridge.sys
S3 BridgeMP;Miniport de pont MAC;C:\WINDOWS\system32\DRIVERS\bridge.sys
S3 ezplay;VSO Software ezplay;C:\WINDOWS\system32\Drivers\ezplay.sys
S3 MHN;MHN;C:\WINDOWS\System32\svchost.exe -k netsvcs
S3 MHNDRV;Pilote MHN;C:\WINDOWS\system32\DRIVERS\mhndrv.sys
S3 MSDV;Microsoft DV Camera and VCR;C:\WINDOWS\system32\DRIVERS\msdv.sys
S3 MSSQL$SONY_MEDIAMGR;MSSQL$SONY_MEDIAMGR;C:\Program Files\Sony\Shared Plug-Ins\Media Manager\MSSQL$SONY_MEDIAMGR\Binn\sqlservr.exe -sSONY_MEDIAMGR
S3 mxnic;Pilote Macronix MX987xx Family Fast Ethernet NT;C:\WINDOWS\system32\DRIVERS\mxnic.sys
S3 QWAVE;QWAVE service;C:\WINDOWS\system32\svchost.exe -k QWAVE
S3 QWAVEDRV;QWAVE driver;C:\WINDOWS\system32\DRIVERS\qwavedrv.sys
S3 SQLAgent$SONY_MEDIAMGR;SQLAgent$SONY_MEDIAMGR;C:\Program Files\Sony\Shared Plug-Ins\Media Manager\MSSQL$SONY_MEDIAMGR\Binn\sqlagent.EXE -i SONY_MEDIAMGR

[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\svchost]
QWAVE QWAVE


[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\O]
AutoRun\command- O:\setup.exe


HKEY_LOCAL_MACHINE\software\microsoft\active setup\installed components\{E8519905-072E-374F-38A4-F9611BD7564A}
C:\Program Files\Bifrost\msnplus.exe s

Contents of the 'Scheduled Tasks' folder
2007-07-25 18:16:01 C:\WINDOWS\tasks\AppleSoftwareUpdate.job
2006-11-15 03:15:00 C:\WINDOWS\tasks\Rappel d'abonnement 1 auprès de l'ISP.job
2006-11-23 04:15:00 C:\WINDOWS\tasks\Rappel d'abonnement 2 auprès de l'ISP.job
2006-11-28 04:45:00 C:\WINDOWS\tasks\Rappel d'abonnement 3 auprès de l'ISP.job

**************************************************************************

catchme 0.3.1061 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2007-07-07 13:57:24
Windows 5.1.2600 Service Pack 2 NTFS

scanning hidden processes ...

scanning hidden registry entries ...

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Prefetcher]
"TracesProcessed"=dword:00000195
"TracesSuccessful"=dword:0000005c

scanning hidden files ...

scan completed successfully
hidden files: 0

**************************************************************************

Completion time: 2007-07-07 14:13:42
C:\ComboFix-quarantined-files.txt ... 2007-07-07 13:58

--- E O F ---

Répondre à olivier_123
chercheur_   28-07-2007 à 21:24:55
- 0 +

Tu peux quand même faire une défragmentation, même s'il n'y a pas assez d'espace.
Cela ne peut faire que du bien.

Rien d'infectieux dans ce rapport.

As tu installé /changé un proramme, une carte graphique, ... récemment ?

------------------------------ Le meilleur antivirus, c'est vous
Vous avez un problème ? Créez votre propre post !
 Répondre à chercheur_
olivier_123   28-07-2007 à 22:07:39
- 0 +

J'ai mit a jour a carte graphique il y a environ 1 semaine, c'est tout.

Je fait faire une défragmentation ce soir vue qu'il a 230go a défragmenté

Répondre à olivier_123
olivier_123   29-07-2007 à 08:29:13
- 0 +

Je vien defectuer la défragmentation , et un nettoyage de registre avec RegCleaner.

Quoi faire maitenant?

Répondre à olivier_123
chercheur_   29-07-2007 à 11:33:09
- 0 +

Est ce qu'il y a eu une amélioration ?

Télécharge SREng (par Smallfrogs) de ce lien:
http://www.kztechs.com/eng/download.html

Extrais tout son contenu sur ton Bureau
Du dossier sreng2 qui se trouve maintenant sur ton Bureau, double clique sur SREng.exe afin de lancer l'outil
Clique sur Smart Scan
Ensuite, clique sur le bouton [Scan]

Lorsque complété, clique sur le bouton [Save Reports]
Sauvegarde le rapport sur ton Bureau
Copie/colle le contenu du fichier SREnglLOG.log dans ta prochaine réponse

------------------------------ Le meilleur antivirus, c'est vous
Vous avez un problème ? Créez votre propre post !
 Répondre à chercheur_
olivier_123   29-07-2007 à 18:21:05
- 0 +

Je ne voit pas vraiment une amélioration, voici le rapport:

Code :
  1. 2007-07-08,12:21:00
  3. System Repair Engineer 2.5.16.900
  4. Smallfrogs (http://www.KZTechs.com)
  6. Windows XP Professional Service Pack 2 (Build 2600) - Administrative User - Completed Functions Allowed
  8. Follow item(s) have been choosed:
  9.     All Boot Items (Including Registry, Startup Folders, Services and so on)
  10.     Browser Add-ons
  11.     Runing Processes (Including process model information)
  12.     File Associations
  13.     Winsock Provider
  14.     Autorun.Inf
  15.     HOSTS File
  16.     Process Privileges Scan
  19. Boot Items
  20. Registry
  21. [HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
  22.     <msnmsgr><"C:\Program Files\MSN Messenger\msnmsgr.exe" /background>  [(Verified)Microsoft Corporation]
  23. [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
  24.     <SoundMan><SOUNDMAN.EXE>  [(Verified)Microsoft Windows Hardware Compatibility Publisher]
  25.     <AVP><"C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 6.0\avp.exe">  [Kaspersky Lab]
  26.     <ZoneAlarm Client><"C:\Program Files\Zone Labs\ZoneAlarm\zlclient.exe">  [(Verified)Check Point Software Technologies Ltd.]
  27. [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows NT\CurrentVersion\Winlogon]
  28.     <shell><Explorer.exe>  [(Verified)Microsoft Windows Publisher]
  29.     <Userinit><C:\WINDOWS\system32\userinit.exe,>  [(Verified)Microsoft Windows Publisher]
  30. [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows NT\CurrentVersion\Windows]
  31.     <AppInit_DLLs><C:\PROGRA~1\Google\GOOGLE~1\GOEC62~1.DLL>  []
  32. [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows NT\CurrentVersion\Winlogon]
  33.     <UIHost><logonui.exe>  [(Verified)Microsoft Windows Publisher]
  34. [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
  35.     <{57B86673-276A-48B2-BAE7-C6DBB3020EB8}><C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\shellexecutehook.dll>  [Anti-Malware Development a.s.]
  36.     <{955F7C01-3417-4F1E-8C31-5A2EF48897CB}><>  [N/A]
  37. [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
  38.     <WPDShServiceObj><C:\WINDOWS\system32\WPDShServiceObj.dll>  [(Verified)Microsoft Windows Component Publisher]
  39. [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\klogon]
  40.     <WinlogonNotify: klogon><C:\WINDOWS\system32\klogon.dll>  [Kaspersky Lab]
  41. [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\WgaLogon]
  42.     <WinlogonNotify: WgaLogon><WgaLogon.dll>  [(Verified)Microsoft Corporation]
  43. [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\<{12d0ed0d-0ee0-4f90-8827-78cefb8f4988}]
  44.     <IE7 Uninstall Stub><C:\WINDOWS\system32\ieudinit.exe>  [(Verified)Microsoft Windows Component Publisher]
  45. [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\>{26923b43-4d38-484f-9b9e-de460746276c}]
  46.     <Internet Explorer><%systemroot%\system32\shmgrate.exe OCInstallUserConfigIE>  [N/A]
  47. [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\>{881dd1c5-3dcf-431b-b061-f3f88e8be88a}]
  48.     <Outlook Express><%systemroot%\system32\shmgrate.exe OCInstallUserConfigOE>  [N/A]
  49. [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\KB910393]
  50.     <KB910393><rundll32.exe advpack.dll,LaunchINFSection C:\WINDOWS\INF\EasyCDBlock.inf,PerUserInstall>  [(Verified)Microsoft Windows Component Publisher]
  51. [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{2C7339CF-2B09-4501-B3F3-F3508C9228ED}]
  52.     <Themes Setup><%SystemRoot%\system32\regsvr32.exe /s /n /i:/UserInstall %SystemRoot%\system32\themeui.dll>  [N/A]
  53. [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{407408d4-94ed-4d86-ab69-a7f649d112ee}]
  54.     <Media Center><%SystemRoot%\System32\rundll32.exe setupapi,InstallHinfSection QuickLaunchShortcut 640 %systemroot%\inf\mcdftreg.inf>  [N/A]
  55. [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{44BBA840-CC51-11CF-AAFA-00AA00B6015C}]
  56.     <Microsoft Outlook Express 6><"%ProgramFiles%\Outlook Express\setup50.exe" /APP:OE /CALLER:WINNT /user /install>  [N/A]
  57. [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{44BBA842-CC51-11CF-AAFA-00AA00B6015B}]
  58.     <NetMeeting 3.01><rundll32.exe advpack.dll,LaunchINFSection C:\WINDOWS\INF\msnetmtg.inf,NetMtg.Install.PerUser.NT>  [(Verified)Microsoft Windows Publisher]
  59. [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{5945c046-1e7d-11d1-bc44-00c04fd912be}]
  60.     <Windows Messenger 4.7><rundll32.exe advpack.dll,LaunchINFSection C:\WINDOWS\INF\msmsgs.inf,BLC.QuietInstall.PerUser>  [(Verified)Microsoft Windows Publisher]
  61. [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{6BF52A52-394A-11d3-B153-00C04F79FAA6}]
  62.     <Microsoft Windows Media Player><rundll32.exe advpack.dll,LaunchINFSection C:\WINDOWS\INF\wmp.inf,PerUserStub>  [(Verified)Microsoft Windows Publisher]
  63. [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{7790769C-0471-11d2-AF11-00C04FA35D02}]
  64.     <Carnet d'adresses 6><"%ProgramFiles%\Outlook Express\setup50.exe" /APP:WAB /CALLER:WINNT /user /install>  [N/A]
  65. [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{89B4C1CD-B018-4511-B0A1-5476DBF70820}]
  66.     <N/A><C:\WINDOWS\system32\Rundll32.exe C:\WINDOWS\system32\mscories.dll,Install>  [Microsoft Corporation]
  67. [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{E8519905-072E-374F-38A4-F9611BD7564A}]
  68.     <N/A><C:\Program Files\Bifrost\msnplus.exe s>  [N/A]
  69. [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
  70.     <!AVG Anti-Spyware><; "C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\avgas.exe" /minimized>  [Anti-Malware Development a.s.]
  71.     <Adobe Photo Downloader><; "C:\Program Files\Adobe\Photoshop Album Starter Edition\3.0\Apps\apdproxy.exe">  [Adobe Systems Incorporated]
  72.     <amd_dc_opt><; C:\Program Files\AMD\Dual-Core Optimizer\amd_dc_opt.exe>  [N/A]
  73. [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
  74.     <AnyDVD><; C:\Program Files\SlySoft\AnyDVD\AnyDVD.exe>  [N/A]
  75.     <ast><; C:\Program Files\Transcode360\Transcode360Tray.exe>  [ ]
  76.     <AUNPS2><; C:\Program Files\Transcode360\Transcode360Tray.exe>  [ ]
  77.     <BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}><; "C:\Program Files\Fichiers communs\Ahead\Lib\NMBgMonitor.exe">  [Nero AG]
  78.     <BitTorrent><; "C:\Program Files\BitTorrent\bittorrent.exe" --force_start_minimized>  [N/A]
  79.     <ctfmon.exe><; C:\WINDOWS\system32\ctfmon.exe>  [(Verified)Microsoft Windows Publisher]
  80.     <DAEMON Tools><; "C:\Program Files\DAEMON Tools\daemon.exe" -lang 1033>  [(Verified)DAEMON Tools Code Signing Services]
  81.     <EA Core><; "C:\Program Files\Electronic Arts\EA Link\Core.exe" -silent>  [Electronic Arts]
  82. [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
  83.     <ehTray><; C:\WINDOWS\ehome\ehtray.exe>  [(Verified)Microsoft Windows Publisher]
  84. [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
  85.     <Free Download Manager><; C:\Program Files\Free Download Manager\fdm.exe -autorun>  [N/A]
  86. [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
  87.     <Google Desktop Search><; "C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe" /startup>  []
  88.     <iTunesHelper><; "C:\Program Files\iTunes\iTunesHelper.exe">  [(Verified)"Apple Computer, Inc."]
  89.     <LogitechVideoRepair><; C:\Program Files\Logitech\Video\ISStart.exe >  [Logitech Inc.]
  90.     <LogitechVideoTray><; C:\Program Files\Logitech\Video\LogiTray.exe>  [Logitech Inc.]
  91.     <LVCOMSX><; C:\WINDOWS\system32\LVCOMSX.EXE>  [Logitech Inc.]
  92.     <LWBMOUSE><; C:\Program Files\Browser Mouse\Browser Mouse\1.1\MOUSE32A.EXE>  []
  93.     <McafWelcome><; C:\PROGRA~1\McAfee.com\Agent\mcwelcom.exe>  [N/A]
  94.     <MCAgentExe><; c:\PROGRA~1\mcafee.com\agent\mcagent.exe>  [N/A]
  95.     <MCUpdateExe><; C:\PROGRA~1\mcafee.com\agent\McUpdate.exe>  [N/A]
  96. [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
  97.     <micore><; C:\Program Files\Transcode360\Transcode360Tray.exe>  [ ]
  98. [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
  99.     <MSKAGENTEXE><; C:\PROGRA~1\McAfee\SPAMKI~1\MskAgent.exe>  [N/A]
  100.     <MSKDetectorExe><; C:\Program Files\McAfee\SpamKiller\MSKDetct.exe /uninstall>  [N/A]
  101. [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
  102.     <msnmsgr><; "C:\Program Files\MSN Messenger\msnmsgr.exe" /background>  [(Verified)Microsoft Corporation]
  103. [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
  104.     <NeroFilterCheck><; C:\Program Files\Fichiers communs\Ahead\Lib\NeroCheck.exe>  [Nero AG]
  105.     <NvCplDaemon><; RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup>  [(Verified)Microsoft Windows Hardware Compatibility Publisher]
  106.     <NvMediaCenter><; RUNDLL32.EXE C:\WINDOWS\system32\NvMcTray.dll,NvTaskbarInit>  [(Verified)Microsoft Windows Hardware Compatibility Publisher]
  107.     <nwiz><; nwiz.exe /install>  []
  108.     <OASClnt><; C:\Program Files\McAfee.com\VSO\oasclnt.exe>  [N/A]
  109. [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
  110.     <P2P><; C:\Program Files\Transcode360\Transcode360Tray.exe>  [ ]
  111. [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
  112.     <Pando><; "C:\Program Files\Pando Networks\Pando\Pando.exe" /Automation>  [(Verified)"Pando Networks, Inc."]
  113.     <QuickTime Task><; "C:\Program Files\QuickTime\qttask.exe" -atboottime>  [Apple Inc.]
  114.     <readericon><; C:\Program Files\Digital Media Reader\readericon45G.exe>  [Alcor Micro, Corp.]
  115.     <Recguard><; %WINDIR%\SMINST\RECGUARD.EXE>  [N/A]
  116. [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
  117.     <Skype><; "C:\Program Files\Skype\Phone\Skype.exe" /nosplash /minimized>  [(Verified)Skype Technologies SA]
  118.     <Steam><; "C:\Program Files\Steam\Steam.exe" -silent>  [(Verified)Valve]
  119. [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
  120.     <SunJavaUpdateSched><; "C:\Program Files\Java\jre1.5.0_10\bin\jusched.exe">  [Sun Microsystems, Inc.]
  121. [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
  122.     <swg><; C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe>  [(Verified)Google Inc]
  123. [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
  124.     <Transcode360><; C:\Program Files\Transcode360\Transcode360Tray.exe>  [ ]
  125. [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
  126.     <updateMgr><; "C:\Program Files\Adobe\Acrobat 7.0\Reader\AdobeUpdateManager.exe" AcRdB7_0_7>  [N/A]
  127. [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
  128.     <VSOCheckTask><; "C:\PROGRA~1\McAfee.com\VSO\mcmnhdlr.exe" /checktask>  [N/A]
  129. [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
  130.     <WinDSNX><; C:\Program Files\Transcode360\Transcode360Tray.exe>  [ ]
  132. ==================================
  133. Startup Folders
  134. N/A
  136. ==================================
  137. Services
  138. [Adobe LM Service / Adobe LM Service][Stopped/Manual Start]
  139.   <"C:\Program Files\Fichiers communs\Adobe Systems Shared\Service\Adobelmsvc.exe"><Adobe Systems>
  140. [AVG Anti-Spyware Guard / AVG Anti-Spyware Guard][Stopped/Disabled]
  141.   <C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe><Anti-Malware Development a.s.>
  142. [Kaspersky Anti-Virus 6.0 / AVP][Stopped/Auto Start]
  143.   <"C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 6.0\avp.exe" -r><Kaspersky Lab>
  144. [Google Updater Service / gusvc][Stopped/Disabled]
  145.   <"C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe"><Google>
  146. [Accès du périphérique d'interface utilisateur / HidServ][Stopped/Disabled]
  147.   <C:\WINDOWS\System32\svchost.exe -k netsvcs-->%SystemRoot%\System32\hidserv.dll><N/A>
  148. [InstallDriver Table Manager / IDriverT][Stopped/Disabled]
  149.   <"C:\Program Files\Fichiers communs\InstallShield\Driver\11\Intel 32\IDriverT.exe"><Macrovision Corporation>
  150. [Service de l'iPod / iPod Service][Stopped/Disabled]
  151.   <"C:\Program Files\iPod\bin\iPodService.exe"><Apple Inc.>
  152. [Media Center Extender Service / McrdSvc][Running/Auto Start]
  153.   <C:\WINDOWS\ehome\McrdSvc.exe><Microsoft Corporation>
  154. [MHN / MHN][Stopped/Manual Start]
  155.   <C:\WINDOWS\System32\svchost.exe -k netsvcs-->%SystemRoot%\System32\mhn.dll><Microsoft Corporation>
  156. [MSSQL$SONY_MEDIAMGR / MSSQL$SONY_MEDIAMGR][Stopped/Manual Start]
  157.   <C:\Program Files\Sony\Shared Plug-Ins\Media Manager\MSSQL$SONY_MEDIAMGR\Binn\sqlservr.exe -sSONY_MEDIAMGR><Microsoft Corporation>
  158. [MSSQLServerADHelper / MSSQLServerADHelper][Stopped/Manual Start]
  159.   <C:\Program Files\Microsoft SQL Server\80\Tools\Binn\sqladhlp.exe><Microsoft Corporation>
  160. [NBService / NBService][Stopped/Disabled]
  161.   <C:\Program Files\Nero\Nero 7\Nero BackItUp\NBService.exe><Nero AG>
  162. [NVIDIA Display Driver Service / NVSvc][Stopped/Disabled]
  163.   <C:\WINDOWS\system32\nvsvc32.exe><NVIDIA Corporation>
  164. [PrismXL / PrismXL][Stopped/Disabled]
  165.   <C:\Program Files\Fichiers communs\New Boundary\PrismXL\PRISMXL.SYS><New Boundary Technologies, Inc.>
  166. [QWAVE service / QWAVE][Stopped/Manual Start]
  167.   <C:\WINDOWS\system32\svchost.exe -k QWAVE-->%systemroot%\system32\qwave.dll><Microsoft Corporation>
  168. [Media Center Extender Resource Monitor / RMSvc][Running/Auto Start]
  169.   <C:\WINDOWS\ehome\RMSvc.exe><Microsoft Corporation>
  170. [SQLAgent$SONY_MEDIAMGR / SQLAgent$SONY_MEDIAMGR][Stopped/Manual Start]
  171.   <C:\Program Files\Sony\Shared Plug-Ins\Media Manager\MSSQL$SONY_MEDIAMGR\Binn\sqlagent.EXE -i SONY_MEDIAMGR><Microsoft Corporation>
  172. [StarWind iSCSI Service / StarWindService][Stopped/Disabled]
  173.   <C:\Program Files\Alcohol Soft\Alcohol 120\StarWind\StarWindService.exe><Rocket Division Software>
  174. [TrueVector Internet Monitor / vsmon][Running/Auto Start]
  175.   <C:\WINDOWS\system32\ZoneLabs\vsmon.exe -service><Zone Labs, LLC>
  177. ==================================
  178. Drivers
  179. [abp480n5 / abp480n5][Running/Boot Start]
  180.   <\SystemRoot\system32\DRIVERS\ABP480N5.SYS><Microsoft Corporation>
  181. [adpu160m / adpu160m][Running/Boot Start]
  182.   <\SystemRoot\system32\DRIVERS\adpu160m.sys><Microsoft Corporation>
  183. [Agere Systems Soft Modem / AgereSoftModem][Running/Manual Start]
  184.   <system32\DRIVERS\AGRSM.sys><Agere Systems>
  185. [Aha154x / Aha154x][Running/Boot Start]
  186.   <\SystemRoot\system32\DRIVERS\aha154x.sys><Microsoft Corporation>
  187. [aic78u2 / aic78u2][Running/Boot Start]
  188.   <\SystemRoot\system32\DRIVERS\aic78u2.sys><Microsoft Corporation>
  189. [aic78xx / aic78xx][Running/Boot Start]
  190.   <\SystemRoot\system32\DRIVERS\aic78xx.sys><Microsoft Corporation>
  191. [Service for Realtek AC97 Audio (WDM) / ALCXWDM][Running/Manual Start]
  192.   <system32\drivers\ALCXWDM.SYS><Realtek Semiconductor Corp.>
  193. [AliIde / AliIde][Running/Boot Start]
  194.   <\SystemRoot\system32\DRIVERS\aliide.sys><Acer Laboratories Inc.>
  195. [Pilote de filtre du bus AMD AGP / amdagp][Running/Boot Start]
  196.   <\SystemRoot\system32\DRIVERS\amdagp.sys><Advanced Micro Devices, Inc.>
  197. [Pilote de processeur AMD / AmdK8][Running/System Start]
  198.   <system32\DRIVERS\AmdK8.sys><Advanced Micro Devices>
  199. [AMD Low Level Device Driver / AmdLLD][Running/Manual Start]
  200.   <system32\DRIVERS\AmdLLD.sys><AMD, Inc.>
  201. [AMD Special Tools Driver / AmdTools][Running/Manual Start]
  202.   <system32\DRIVERS\AmdTools.sys><AMD, Inc.>
  203. [asc / asc][Running/Boot Start]
  204.   <\SystemRoot\system32\DRIVERS\asc.sys><Advanced System Products, Inc.>
  205. [asc3350p / asc3350p][Running/Boot Start]
  206.   <\SystemRoot\system32\DRIVERS\asc3350p.sys><Microsoft Corporation>
  207. [asc3550 / asc3550][Running/Boot Start]
  208.   <\SystemRoot\system32\DRIVERS\asc3550.sys><Advanced System Products, Inc.>
  209. [AVG Anti-Spyware Driver / AVG Anti-Spyware Driver][Running/System Start]
  210.   <\??\C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.sys><N/A>
  211. [AVG Anti-Spyware Clean Driver / AvgAsCln][Running/System Start]
  212.   <System32\DRIVERS\AvgAsCln.sys><GRISOFT, s.r.o.>
  213. [cd20xrnt / cd20xrnt][Running/Boot Start]
  214.   <\SystemRoot\system32\DRIVERS\cd20xrnt.sys><Microsoft Corporation>
  215. [CmdIde / CmdIde][Running/Boot Start]
  216.   <\SystemRoot\system32\DRIVERS\cmdide.sys><CMD Technology, Inc.>
  217. [dac2w2k / dac2w2k][Running/Boot Start]
  218.   <\SystemRoot\system32\DRIVERS\dac2w2k.sys><Mylex Corporation>
  219. [dpti2o / dpti2o][Running/Boot Start]
  220.   <\SystemRoot\system32\DRIVERS\dpti2o.sys><Microsoft Corporation>
  221. [EMouse Filter / EMouseFilter][Running/Manual Start]
  222.   <system32\drivers\emousef.sys><Windows (R) 2000 DDK provider>
  223. [VSO Software ezplay / ezplay][Stopped/Manual Start]
  224.   <System32\Drivers\ezplay.sys><VSO Software>
  225. [GEARAspiWDM / GEARAspiWDM][Running/Manual Start]
  226.   <System32\Drivers\GEARAspiWDM.sys><GEAR Software Inc.>
  227. [ini910u / ini910u][Running/Boot Start]
  228.   <\SystemRoot\system32\DRIVERS\ini910u.sys><Microsoft Corporation>
  229. [ISO DVD/CD-ROM Device Driver / ISODrive][Running/System Start]
  230.   <\??\C:\Program Files\UltraISO\drivers\ISODrive.sys><EZB Systems, Inc.>
  231. [kl1 / kl1][Running/Boot Start]
  232.   <\SystemRoot\system32\drivers\kl1.sys><Kaspersky Lab>
  233. [klif / klif][Running/System Start]
  234.   <\??\C:\WINDOWS\system32\drivers\klif.sys><Kaspersky Lab>
  235. [Logitech USB Monitor Filter / LVUSBSta][Running/Manual Start]
  236.   <system32\drivers\lvusbsta.sys><Logitech Inc.>
  237. [Pilote MHN / MHNDRV][Stopped/Manual Start]
  238.   <system32\DRIVERS\mhndrv.sys><Microsoft Corporation>
  239. [mraid35x / mraid35x][Running/Boot Start]
  240.   <\SystemRoot\system32\DRIVERS\mraid35x.sys><American Megatrends Inc.>
  241. [Pilote Macronix MX987xx Family Fast Ethernet NT / mxnic][Stopped/Manual Start]
  242.   <system32\DRIVERS\mxnic.sys><Macronix International Co., Ltd.>
  243. [nv / nv][Running/Manual Start]
  244.   <system32\DRIVERS\nv4_mini.sys><NVIDIA Corporation>
  245. [NVIDIA nForce Networking Controller Driver / NVENETFD][Running/Manual Start]
  246.   <system32\DRIVERS\NVENETFD.sys><NVIDIA Corporation>
  247. [NVIDIA Network Bus Enumerator / nvnetbus][Running/Manual Start]
  248.   <system32\DRIVERS\nvnetbus.sys><NVIDIA Corporation>
  249. [VSO Software pcouffin / pcouffin][Running/Manual Start]
  250.   <System32\Drivers\pcouffin.sys><VSO Software>
  251. [Pilote de liaison parallèle directe / Ptilink][Running/Manual Start]
  252.   <system32\DRIVERS\ptilink.sys><Parallel Technologies, Inc.>
  253. [PxHelp20 / PxHelp20][Running/Boot Start]
  254.   <\SystemRoot\System32\Drivers\PxHelp20.sys><Sonic Solutions>
  255. [Logitech QuickCam Communicate / QCMerced][Running/Manual Start]
  256.   <system32\DRIVERS\LVCM.sys><>
  257. [ql1080 / ql1080][Running/Boot Start]
  258.   <\SystemRoot\system32\DRIVERS\ql1080.sys><QLogic Corporation>
  259. [Ql10wnt / Ql10wnt][Running/Boot Start]
  260.   <\SystemRoot\system32\DRIVERS\ql10wnt.sys><Microsoft Corporation>
  261. [ql12160 / ql12160][Running/Boot Start]
  262.   <\SystemRoot\system32\DRIVERS\ql12160.sys><QLogic Corporation>
  263. [ql1280 / ql1280][Running/Boot Start]
  264.   <\SystemRoot\system32\DRIVERS\ql1280.sys><QLogic Corporation>
  265. [QWAVE driver / QWAVEDRV][Stopped/Manual Start]
  266.   <system32\DRIVERS\qwavedrv.sys><Microsoft Corporation>
  267. [Pilote NT de carte Realtek PCI Fast Ethernet à base RTL8139(A/B/C) / rtl8139][Running/Manual Start]
  268.   <system32\DRIVERS\RTL8139.SYS><Realtek Semiconductor Corporation>
  269. [Secdrv / Secdrv][Stopped/Manual Start]
  270.   <system32\DRIVERS\secdrv.sys><N/A>
  271. [StarForce Protection Environment Driver (version 1.x) / sfdrv01][Running/Boot Start]
  272.   <\SystemRoot\System32\drivers\sfdrv01.sys><Protection Technology>
  273. [StarForce Protection Helper Driver (version 2.x) / sfhlp02][Running/Boot Start]
  274.   <\SystemRoot\System32\drivers\sfhlp02.sys><Protection Technology>
  275. [StarForce Protection Synchronization Driver (version 2.x) / sfsync02][Running/Boot Start]
  276.   <\SystemRoot\System32\drivers\sfsync02.sys><Protection Technology>
  277. [Filtre de bus AGP SIS / sisagp][Running/Boot Start]
  278.   <\SystemRoot\system32\DRIVERS\sisagp.sys><Silicon Integrated Systems Corporation>
  279. [Sparrow / Sparrow][Running/Boot Start]
  280.   <\SystemRoot\system32\DRIVERS\sparrow.sys><Adaptec, Inc.>
  281. [sptd / sptd][Running/Boot Start]
  282.   <\SystemRoot\System32\Drivers\sptd.sys><N/A>
  283. [srescan / srescan][Running/Boot Start]
  284.   <\SystemRoot\system32\ZoneLabs\srescan.sys><Zone Labs, LLC>
  285. [symc810 / symc810][Running/Boot Start]
  286.   <\SystemRoot\system32\DRIVERS\symc810.sys><Symbios Logic Inc.>
  287. [symc8xx / symc8xx][Running/Boot Start]
  288.   <\SystemRoot\system32\DRIVERS\symc8xx.sys><LSI Logic>
  289. [sym_hi / sym_hi][Running/Boot Start]
  290.   <\SystemRoot\system32\DRIVERS\sym_hi.sys><LSI Logic>
  291. [sym_u3 / sym_u3][Running/Boot Start]
  292.   <\SystemRoot\system32\DRIVERS\sym_u3.sys><LSI Logic>
  293. [TosIde / TosIde][Running/Boot Start]
  294.   <\SystemRoot\system32\DRIVERS\toside.sys><Microsoft Corporation>
  295. [ultra / ultra][Running/Boot Start]
  296.   <\SystemRoot\system32\DRIVERS\ultra.sys><Promise Technology, Inc.>
  297. [ViaIde / ViaIde][Running/Boot Start]
  298.   <\SystemRoot\system32\DRIVERS\viaide.sys><Microsoft Corporation>
  299. [vsdatant / vsdatant][Running/System Start]
  300.   <System32\vsdatant.sys><Zone Labs, LLC>
  301. [Codec Teletext standard / WSTCODEC][Stopped/Manual Start]
  302.   <system32\DRIVERS\WSTCODEC.SYS><Microsoft Corporation>
  304. ==================================
  305. Browser Add-ons
  306. [Adobe PDF Reader Link Helper]
  307.   {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} <C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll, Adobe Systems Incorporated>
  308. []
  309.   {53707962-6F74-2D53-2644-206D7942484F} <C:\PROGRA~1\SPYBOT~1\SDHelper.dll, Safer Networking Limited>
  310. [SSVHelper Class]
  311.   {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} <C:\Program Files\Java\jre1.5.0_10\bin\ssv.dll, Sun Microsystems, Inc.>
  312. [Windows Live Sign-in Helper]
  313.   {9030D464-4C02-4ABF-8ECC-5164760863C6} <C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll, Microsoft Corporation>
  314. [Google Toolbar Helper]
  315.   {AA58ED58-01DD-4d91-8333-CF10577473F7} <c:\program files\google\googletoolbar3.dll, Google Inc.>
  316. [Google Toolbar Notifier BHO]
  317.   {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} <C:\Program Files\Google\GoogleToolbarNotifier\2.0.301.7164\swg.dll, Google Inc.>
  318. [CBrowserHelperObject Object]
  319.   {CA6319C0-31B7-401E-A518-A07C3DB8F777} <c:\windows\system32\BAE.dll, Gateway Inc.>
  320. [vrie]
  321.   {04849C74-016E-4a43-8AA5-1F01DE57F4A1} <C:\Program Files\VisualRoute\vrie.dll, VisualWare>
  322. [Java Plug-in 1.5.0_10]
  323.   {08B0E5C0-4FCB-11CF-AAA5-00401C608501} <C:\Program Files\Java\jre1.5.0_10\bin\ssv.dll, Sun Microsystems, Inc.>
  324. [Web Anti-Virus statistics]
  325.   {1F460357-8A94-4D71-9CA3-AA4ACF32ED8E} <C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 6.0\scieplugin.dll, Kaspersky Lab>
  326. [PartyPoker.com]
  327.   {B7FE5D70-9AA2-40F1-9C6B-12A255F085E1} <C:\Program Files\PartyGaming\PartyPoker\RunApp.exe, >
  328. [Messenger]
  329.   {FB5F1910-F110-11d2-BB9E-00C04F795683} <C:\Program Files\Messenger\msmsgs.exe, Microsoft Corporation>
  330. [&Google]
  331.   {2318C2B1-4965-11d4-9B18-009027A5CD4F} <c:\program files\google\googletoolbar3.dll, Google Inc.>
  332. [CKAVWebScan Object]
  333.   {0EB0E74A-2A76-4AB3-A7FB-9BD8C29F7F75} <C:\WINDOWS\system32\Kaspersky Lab\Kaspersky Online Scanner\kavwebscan.dll, Kaspersky Lab>
  334. [Shockwave ActiveX Control]
  335.   {166B1BCA-3F9C-11CF-8075-444553540000} <C:\WINDOWS\system32\macromed\Director\SwDir.dll, Adobe Systems, Inc.>
  336. [BDSCANONLINE Control]
  337.   {5D86DDB5-BDF9-441B-9E9E-D4730F4EE499} <C:\WINDOWS\DOWNLO~1\oscan8.ocx, SOFTWIN>
  338. [Java Plug-in 1.5.0_10]
  339.   {8AD9C840-044E-11D1-B3E9-00805F499D93} <C:\Program Files\Java\jre1.5.0_10\bin\ssv.dll, Sun Microsystems, Inc.>
  340. [ActiveScan Installer Class]
  341.   {9A9307A0-7DA4-4DAF-B042-5009F29E09E1} <C:\WINDOWS\Downloaded Program Files\asinst.dll, Panda Software>
  342. [Java Plug-in 1.5.0_10]
  343.   {CAFEEFAC-0015-0000-0010-ABCDEFFEDCBA} <C:\Program Files\Java\jre1.5.0_10\bin\ssv.dll, Sun Microsystems, Inc.>
  344. [Java Plug-in 1.5.0_10]
  345.   {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} <C:\Program Files\Java\jre1.5.0_10\bin\npjpi150_10.dll, Sun Microsystems, Inc.>
  346. [Shockwave Flash Object]
  347.   {D27CDB6E-AE6D-11CF-96B8-444553540000} <C:\WINDOWS\system32\Macromed\Flash\Flash9b.ocx, Adobe Systems, Inc.>
  348. [Google Script Object]
  349.   {00EF2092-6AC5-47C0-BD25-CF2D5D657FEB} <c:\program files\google\googletoolbar3.dll, Google Inc.>
  350. [Yahoo! Toolbar Helper]
  351.   {02478D38-C3F9-4EFB-9B51-7695ECA05670} <, N/A>
  352. [QuickTime Object]
  353.   {02BF25D5-8C17-4B23-BC80-D3488ABDDC6B} <C:\Program Files\QuickTime\QTPlugin.ocx, Apple Inc.>
  354. [Adobe PDF Reader Link Helper]
  355.   {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} <C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll, Adobe Systems Incorporated>
  356. [CKAVWebScan Object]
  357.   {0EB0E74A-2A76-4AB3-A7FB-9BD8C29F7F75} <C:\WINDOWS\system32\Kaspersky Lab\Kaspersky Online Scanner\kavwebscan.dll, Kaspersky Lab>
  358. [Windows Genuine Advantage Validation Tool]
  359.   {17492023-C23A-453E-A040-C7C580BBF700} <C:\WINDOWS\system32\legitcheckcontrol.dll, Microsoft Corporation>
  360. [&Google]
  361.   {2318C2B1-4965-11D4-9B18-009027A5CD4F} <c:\program files\google\googletoolbar3.dll, Google Inc.>
  362. [Shockwave ActiveX Control]
  363.   {233C1507-6A77-46A4-9443-F871F945D258} <C:\WINDOWS\system32\Macromed\Director\SwDir.dll, Adobe Systems, Inc.>
  364. [HTML Document]
  365.   {25336920-03F9-11CF-8FD0-00AA00686F13} <C:\WINDOWS\system32\mshtml.dll, Microsoft Corporation>
  366. [DHTML Edit Control Safe for Scripting for IE5]
  367.   {2D360201-FFF5-11D1-8D03-00A0C959BC0A} <C:\Program Files\Fichiers communs\Microsoft Shared\Triedit\dhtmled.ocx, Microsoft Corporation>
  368. [Tabular Data Control]
  369.   {333C7BC4-460F-11D0-BC04-0080C7055A83} <C:\WINDOWS\system32\tdc.ocx, Microsoft Corporation>
  370. [QuickTime Object]
  371.   {4063BE15-3B08-470D-A0D5-B37161CFFD69} <C:\Program Files\QuickTime\QTPlugin.ocx, Apple Inc.>
  372. [XML Document]
  373.   {48123BC4-99D9-11D1-A6B3-00C04FD91555} <C:\WINDOWS\system32\msxml3.dll, Microsoft Corporation>
  374. [Reporte Class]
  375.   {4A2A4430-3967-4461-94C7-BD95C419F3CF} <C:\WINDOWS\system32\ActiveScan\ascontrol.dll, Panda Software>
  376. []
  377.   {4F07F79F-087F-42CF-8B36-7A88D06088E9} <C:\PROGRA~1\MSNMES~1\msgsc.8.1.0178.00.dll, Microsoft Corporation>
  378. []
  379.   {53707962-6F74-2D53-2644-206D7942484F} <C:\PROGRA~1\SPYBOT~1\SDHelper.dll, Safer Networking Limited>
  380. [Shell Name Space]
  381.   {55136805-B2DE-11D1-B9F2-00A0C98BC547} <C:\WINDOWS\system32\ieframe.dll, Microsoft Corporation>
  382. [BDSCANONLINE Control]
  383.   {5D86DDB5-BDF9-441B-9E9E-D4730F4EE499} <C:\WINDOWS\DOWNLO~1\oscan8.ocx, SOFTWIN>
  384. [CKAVReportCtrl Object]
  385.   {6117669B-8C2D-41FA-A6D9-9E484B999CF0} <C:\WINDOWS\system32\Kaspersky Lab\Kaspersky Online Scanner\kavwebscan.dll, Kaspersky Lab>
  386. [WUWebControl Class]
  387.   {6414512B-B978-451D-A0D8-FCFDF33E833C} <C:\WINDOWS\system32\wuweb.dll, Microsoft Corporation>
  388. [Windows Media Player]
  389.   {6BF52A52-394A-11D3-B153-00C04F79FAA6} <C:\WINDOWS\system32\wmp.dll, Microsoft Corporation>
  390. [Seleccion Class]
  391.   {6CEC0297-FAFB-41FB-97EA-77E3081B1DFE} <C:\WINDOWS\system32\ActiveScan\ascontrol.dll, Panda Software>
  392. [ControlConexion Class]
  393.   {6FDCDD41-6C97-4A3B-9E6D-0144B66A1CE4} <C:\WINDOWS\system32\ActiveScan\ascontrol.dll, Panda Software>
  394. [twikibar]
  395.   {7345F548-C9AC-46F7-A350-524964350D25} <, N/A>
  396. [SSVHelper Class]
  397.   {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} <C:\Program Files\Java\jre1.5.0_10\bin\ssv.dll, Sun Microsystems, Inc.>
  398. [Google Updater Class]
  399.   {77980A0F-9360-442F-9942-74FE3DC13BC8} <C:\Program Files\Google\Google Updater\1.4.681.27779\ci.dll, Google>
  400. [Microsoft Web Browser]
  401.   {8856F961-340A-11D0-A96B-00C04FD705A2} <C:\WINDOWS\system32\ieframe.dll, Microsoft Corporation>
  402. [XML DOM Document 4.0]
  403.   {88D969C0-F192-11D4-A65F-0040963251E5} <c:\WINDOWS\system32\msxml4.dll, Microsoft Corporation>
  404. [XML HTTP 4.0]
  405.   {88D969C5-F192-11D4-A65F-0040963251E5} <c:\WINDOWS\system32\msxml4.dll, Microsoft Corporation>
  406. [Java Plug-in 1.5.0_10]
  407.   {8AD9C840-044E-11D1-B3E9-00805F499D93} <C:\Program Files\Java\jre1.5.0_10\bin\ssv.dll, Sun Microsystems, Inc.>
  408. [Windows Live Sign-in Helper]
  409.   {9030D464-4C02-4ABF-8ECC-5164760863C6} <C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll, Microsoft Corporation>
  410. [Panda ActiveScan]
  411.   {96567F65-E04C-4611-AF29-7CDEA6FA6A84} <C:\WINDOWS\system32\ACTIVE~1\as.dll, Panda Software>
  412. [ActiveScan Installer Class]
  413.   {9A9307A0-7DA4-4DAF-B042-5009F29E09E1} <C:\WINDOWS\Downloaded Program Files\asinst.dll, Panda Software>
  414. [RMGetLicense Class]
  415.   {A9FC132B-096D-460B-B7D5-1DB0FAE0C062} <C:\WINDOWS\system32\msnetobj.dll, Microsoft Corporation>
  416. [Google Toolbar Helper]
  417.   {AA58ED58-01DD-4D91-8333-CF10577473F7} <c:\program files\google\googletoolbar3.dll, Google Inc.>
  418. [Google Toolbar Notifier BHO]
  419.   {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} <C:\Program Files\Google\GoogleToolbarNotifier\2.0.301.7164\swg.dll, Google Inc.>
  420. [RDS.DataSpace]
  421.   {BD96C556-65A3-11D0-983A-00C04FC29E36} <C:\Program Files\Fichiers communs\System\msadc\msadco.dll, Microsoft Corporation>
  422. [CBrowserHelperObject Object]
  423.   {CA6319C0-31B7-401E-A518-A07C3DB8F777} <c:\windows\system32\BAE.dll, Gateway Inc.>
  424. [VIDEO__AVI Moniker Class]
  425.   {CD3AFA88-B84F-48F0-9393-7EDC34128127} <C:\WINDOWS\system32\wmp.dll, Microsoft Corporation>
  426. [VIDEO__MPEG Moniker Class]
  427.   {CD3AFA89-B84F-48F0-9393-7EDC34128127} <C:\WINDOWS\system32\wmp.dll, Microsoft Corporation>
  428. [VIDEO__X_MS_WMV Moniker Class]
  429.   {CD3AFA94-B84F-48F0-9393-7EDC34128127} <C:\WINDOWS\system32\wmp.dll, Microsoft Corporation>
  430. [Windows Live Sign-in Control]
  431.   {D2517915-48CE-4286-970F-921E881B8C5C} <C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll, Microsoft Corporation>
  432. [Shockwave Flash Object]
  433.   {D27CDB6E-AE6D-11CF-96B8-444553540000} <C:\WINDOWS\system32\Macromed\Flash\Flash9b.ocx, Adobe Systems, Inc.>
  434. [QuickTimeCheck Class]
  435.   {DE4AF3B0-F4D4-11D3-B41A-0050DA2E6C21} <C:\Program Files\QuickTime\QTSystem\QuickTimeCheck.ocx, Apple Inc.>
  436. []
  437.   {E1771B7F-98BE-407F-BA67-AA16ADA5D0C5} <C:\PROGRA~1\MSNMES~1\msgsc.8.1.0178.00.dll, Microsoft Corporation>
  438. [XML HTTP Request]
  439.   {ED8C108E-4349-11D2-91A4-00C04F7969E8} <C:\WINDOWS\system32\msxml3.dll, Microsoft Corporation>
  440. [Yahoo! Toolbar]
  441.   {EF99BD32-C1FB-11D2-892F-0090271D4F88} <, N/A>
  442. [XML HTTP]
  443.   {F6D90F16-9C73-11D3-B32E-00C04F990BB4} <C:\WINDOWS\system32\msxml3.dll, Microsoft Corporation>
  445. ==================================
  446. Running Processes
  447. [PID: 840 / SYSTEM][\SystemRoot\System32\smss.exe]  [Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)]
  448. [PID: 920 / SYSTEM][\??\C:\WINDOWS\system32\csrss.exe]  [Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)]
  449. [PID: 944 / SYSTEM][\??\C:\WINDOWS\system32\winlogon.exe]  [Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)]
  450.     [C:\WINDOWS\system32\klogon.dll]  [Kaspersky Lab, 6.0.2.621]
  451.     [C:\WINDOWS\system32\WgaLogon.dll]  [Microsoft Corporation, 1.7.0018.5]
  452.     [C:\WINDOWS\system32\msacm32.drv]  [Microsoft Corporation, 5.1.2600.0 (xpclient.010817-1148)]
  453. [PID: 992 / SYSTEM][C:\WINDOWS\system32\services.exe]  [Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)]
  454.     [C:\WINDOWS\AppPatch\AcAdProc.dll]  [Microsoft Corporation, 5.1.2600.3008 (xpsp.061004-0027)]
  455. [PID: 1012 / SYSTEM][C:\WINDOWS\system32\lsass.exe]  [Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)]
  456. [PID: 1160 / SYSTEM][C:\WINDOWS\system32\svchost.exe]  [Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)]
  457. [PID: 1236 / SERVICE RÉSEAU][C:\WINDOWS\system32\svchost.exe]  [Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)]
  458. [PID: 1380 / SYSTEM][C:\WINDOWS\System32\svchost.exe]  [Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)]
  459.     [C:\WINDOWS\system32\Normaliz.dll]  [Microsoft Corporation, 6.0.5441.0 (winmain(wmbla).060628-1735)]
  460.     [C:\WINDOWS\system32\iertutil.dll]  [Microsoft Corporation, 7.00.6000.16473 (vista_gdr.070420-1500)]
  461. [PID: 1480 / SERVICE RÉSEAU][C:\WINDOWS\system32\svchost.exe]  [Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)]
  462. [PID: 1604 / SERVICE LOCAL][C:\WINDOWS\system32\svchost.exe]  [Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)]
  463.     [C:\WINDOWS\system32\Normaliz.dll]  [Microsoft Corporation, 6.0.5441.0 (winmain(wmbla).060628-1735)]
  464.     [C:\WINDOWS\system32\iertutil.dll]  [Microsoft Corporation, 7.00.6000.16473 (vista_gdr.070420-1500)]
  465. [PID: 2028 / SYSTEM][C:\WINDOWS\system32\spoolsv.exe]  [Microsoft Corporation, 5.1.2600.2696 (xpsp_sp2_gdr.050610-1519)]
  466. [PID: 392 / SYSTEM][C:\WINDOWS\eHome\ehRecvr.exe]  [Microsoft Corporation, 5.1.2715.3011 (xpsp(wmbla).061009-1511)]
  467.     [C:\WINDOWS\eHome\ehTrace.dll]  [Microsoft Corporation, 5.1.2710.2732 (xpsp(wmbla).050805-1245)]
  468.     [C:\WINDOWS\system32\sbe.dll]  [, ]
  469.     [C:\WINDOWS\system32\msdmo.dll]  [, ]
  470. [PID: 412 / SYSTEM][C:\WINDOWS\eHome\ehSched.exe]  [Microsoft Corporation, 5.1.2710.2732 (xpsp(wmbla).050805-1245)]
  471.     [C:\WINDOWS\system32\Normaliz.dll]  [Microsoft Corporation, 6.0.5441.0 (winmain(wmbla).060628-1735)]
  472.     [C:\WINDOWS\system32\iertutil.dll]  [Microsoft Corporation, 7.00.6000.16473 (vista_gdr.070420-1500)]
  473. [PID: 552 / SYSTEM][C:\WINDOWS\ehome\RMSvc.exe]  [Microsoft Corporation, 6.1.2715.2716 (xpsp(wmbla).051020-1902)]
  474.     [C:\WINDOWS\system32\odbcbcp.dll]  [Microsoft Corporation, 2000.085.1117.00 (xpsp_sp2_rtm.040803-2158)]
  475.     [C:\WINDOWS\system32\netfxperf.dll]  [Microsoft Corporation, 1.1.4322.573]
  476.     [C:\WINDOWS\system32\mscoree.dll]  [Microsoft Corporation, 2.0.50727.832 (QFE.050727-8300)]
  477.     [C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\perfcounter.dll]  [Microsoft Corporation, 2.0.50727.42 (RTM.050727-4200)]
  478.     [C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorwks.dll]  [Microsoft Corporation, 2.0.50727.832 (QFE.050727-8300)]
  479.     [C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\CorperfmonExt.dll]  [Microsoft Corporation, 2.0.50727.832 (QFE.050727-8300)]
  480.     [C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\aspnet_perf.dll]  [Microsoft Corporation, 2.0.50727.832 (QFE.050727-8300)]
  481.     [C:\WINDOWS\Microsoft.NET\Framework\v1.1.4322\aspnet_isapi.dll]  [Microsoft Corporation, 1.1.4322.2407]
  482.     [C:\WINDOWS\Microsoft.NET\Framework\v1.1.4322\MSVCR71.dll]  [Microsoft Corporation, 7.10.3052.4]
  483.     [C:\PROGRA~1\Sony\Shared Plug-Ins\Media Manager\MSSQL$SONY_MEDIAMGR\Binn\sqlctr80.dll]  [Microsoft Corporation, 2000.080.0534.00]
  484. [PID: 584 / SERVICE LOCAL][C:\WINDOWS\system32\svchost.exe]  [Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)]
  485. [PID: 596 / SYSTEM][C:\WINDOWS\system32\svchost.exe]  [Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)]
  486. [PID: 752 / SERVICE LOCAL][C:\WINDOWS\ehome\McrdSvc.exe]  [Microsoft Corporation, 6.1.2715.2716 (xpsp(wmbla).051020-1902)]
  487.     [c:\WINDOWS\eHome\RMCtl.dll]  [Microsoft Corporation, 6.1.2715.2716 (xpsp(wmbla).051020-1902)]
  488. [PID: 776 / SYSTEM][C:\WINDOWS\system32\wbem\wmiapsrv.exe]  [Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)]
  489. [PID: 1400 / SYSTEM][C:\WINDOWS\system32\dllhost.exe]  [Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)]
  490. [PID: 1860 / SERVICE LOCAL][C:\WINDOWS\System32\alg.exe]  [Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)]
  491. [PID: 1092 / Owner][C:\WINDOWS\SOUNDMAN.EXE]  [Realtek Semiconductor Corp., 5, 1, 0, 43]
  492. [PID: 2876 / Owner][C:\WINDOWS\explorer.exe]  [Microsoft Corporation, 6.00.2900.2180 (xpsp_sp2_rtm.040803-2158)]
  493.     [C:\WINDOWS\system32\Normaliz.dll]  [Microsoft Corporation, 6.0.5441.0 (winmain(wmbla).060628-1735)]
  494.     [C:\WINDOWS\system32\iertutil.dll]  [Microsoft Corporation, 7.00.6000.16473 (vista_gdr.070420-1500)]
  495.     [C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 6.0\scrchpg.dll]  [Kaspersky Lab, 6.0.2.621]
  496.     [C:\WINDOWS\system32\ieframe.dll]  [Microsoft Corporation, 7.00.6000.16473 (vista_gdr.070420-1500)]
  497.     [C:\WINDOWS\system32\WPDShServiceObj.dll]  [Microsoft Corporation, 5.2.5721.5145 (WMP_11.061018-2006)]
  498.     [C:\WINDOWS\system32\PortableDeviceTypes.dll]  [Microsoft Corporation, 5.2.5721.5145 (WMP_11.061018-2006)]
  499.     [C:\WINDOWS\system32\PortableDeviceApi.dll]  [Microsoft Corporation, 5.2.5721.5145 (WMP_11.061018-2006)]
  500.     [C:\WINDOWS\system32\msacm32.drv]  [Microsoft Corporation, 5.1.2600.0 (xpclient.010817-1148)]
  501.     [C:\Program Files\Adobe\Acrobat 7.0\ActiveX\PDFShell.dll]  [Adobe Systems, Inc., 7.0.0.0]
  502.     [C:\Program Files\Nero\Nero 7\Nero BackItUp\NBShell.dll]  [Nero AG, 2, 7, 2, 0]
  503.     [C:\Program Files\Nero\Nero 7\Nero BackItUp\MFC71U.DLL]  [Microsoft Corporation, 7.10.3077.0]
  504.     [C:\Program Files\Nero\Nero 7\Nero BackItUp\MSVCR71.dll]  [Microsoft Corporation, 7.10.3052.4]
  505.     [C:\Program Files\Nero\Nero 7\Nero BackItUp\MSVCP71.dll]  [Microsoft Corporation, 7.10.3077.0]
  506.     [C:\WINDOWS\system32\MFC71FRA.DLL]  [Microsoft Corporation, 7.10.3077.0]
  507.     [C:\Program Files\WinRAR\rarext.dll]  [N/A, ]
  508.     [C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\shellexecutehook.dll]  [Anti-Malware Development a.s., 7, 5, 0, 47]
  509.     [C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll]  [Adobe Systems Incorporated, 7.0.9.2006121800]
  510.     [C:\PROGRA~1\SPYBOT~1\SDHelper.dll]  [Safer Networking Limited, 1, 4, 0, 0]
  511.     [C:\Program Files\Java\jre1.5.0_10\bin\ssv.dll]  [Sun Microsystems, Inc., 5.0.100.3]
  512. [PID: 3636 / SYSTEM][\??\C:\WINDOWS\system32\csrss.exe]  [Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)]
  513. [PID: 1920 / SYSTEM][\??\C:\WINDOWS\system32\winlogon.exe]  [Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)]
  514.     [C:\WINDOWS\system32\klogon.dll]  [Kaspersky Lab, 6.0.2.621]
  515.     [C:\WINDOWS\system32\WgaLogon.dll]  [Microsoft Corporation, 1.7.0018.5]
  516.     [C:\WINDOWS\system32\msacm32.drv]  [Microsoft Corporation, 5.1.2600.0 (xpclient.010817-1148)]
  517. [PID: 4008 / Simon][C:\WINDOWS\Explorer.EXE]  [Microsoft Corporation, 6.00.2900.2180 (xpsp_sp2_rtm.040803-2158)]
  518.     [C:\WINDOWS\system32\Normaliz.dll]  [Microsoft Corporation, 6.0.5441.0 (winmain(wmbla).060628-1735)]
  519.     [C:\WINDOWS\system32\iertutil.dll]  [Microsoft Corporation, 7.00.6000.16473 (vista_gdr.070420-1500)]
  520.     [C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 6.0\scrchpg.dll]  [Kaspersky Lab, 6.0.2.621]
  521.     [C:\Program Files\Fichiers communs\Ahead\Lib\NeroSearchBar.dll]  [Nero AG, 1, 5, 3, 0]
  522.     [C:\Program Files\Fichiers communs\Ahead\Lib\MSVCR71.dll]  [Microsoft Corporation, 7.10.3052.4]
  523.     [C:\Program Files\Fichiers communs\Ahead\Lib\MFC71U.DLL]  [Microsoft Corporation, 7.10.3077.0]
  524.     [C:\Program Files\Fichiers communs\Ahead\Lib\MSVCP71.dll]  [Microsoft Corporation, 7.10.3077.0]
  525.     [C:\Program Files\Fichiers communs\Ahead\Lib\BCGCBPRO800u.dll]  [BCGSoft Ltd, 8, 00, 0, 0]
  526.     [C:\WINDOWS\system32\MFC71FRA.DLL]  [Microsoft Corporation, 7.10.3077.0]
  527.     [C:\WINDOWS\system32\ieframe.dll]  [Microsoft Corporation, 7.00.6000.16473 (vista_gdr.070420-1500)]
  528.     [C:\WINDOWS\system32\WPDShServiceObj.dll]  [Microsoft Corporation, 5.2.5721.5145 (WMP_11.061018-2006)]
  529.     [C:\WINDOWS\system32\PortableDeviceTypes.dll]  [Microsoft Corporation, 5.2.5721.5145 (WMP_11.061018-2006)]
  530.     [C:\WINDOWS\system32\PortableDeviceApi.dll]  [Microsoft Corporation, 5.2.5721.5145 (WMP_11.061018-2006)]
  531.     [C:\WINDOWS\system32\msacm32.drv]  [Microsoft Corporation, 5.1.2600.0 (xpclient.010817-1148)]
  532.     [C:\Program Files\Adobe\Acrobat 7.0\ActiveX\PDFShell.dll]  [Adobe Systems, Inc., 7.0.0.0]
  533.     [C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\shellexecutehook.dll]  [Anti-Malware Development a.s., 7, 5, 0, 47]
  534. [PID: 3328 / Simon][C:\WINDOWS\SOUNDMAN.EXE]  [Realtek Semiconductor Corp., 5, 1, 0, 43]
  535. [PID: 856 / Simon][C:\Program Files\Fichiers communs\Ahead\Lib\NMBgMonitor.exe]  [Nero AG, 1, 5, 3, 0]
  536.     [C:\Program Files\Fichiers communs\Ahead\Lib\MSVCP71.dll]  [Microsoft Corporation, 7.10.3077.0]
  537.     [C:\Program Files\Fichiers communs\Ahead\Lib\MSVCR71.dll]  [Microsoft Corporation, 7.10.3052.4]
  538.     [C:\Program Files\Fichiers communs\Ahead\Lib\AdvrCntr2.dll]  [Nero AG, 5,16,1, 9000]
  539.     [C:\WINDOWS\system32\Normaliz.dll]  [Microsoft Corporation, 6.0.5441.0 (winmain(wmbla).060628-1735)]
  540.     [C:\WINDOWS\system32\iertutil.dll]  [Microsoft Corporation, 7.00.6000.16473 (vista_gdr.070420-1500)]
  541.     [C:\Program Files\Fichiers communs\Ahead\Lib\NMIndexStoreSvrPS.dll]  [Nero AG, 1, 5, 3, 0]
  542.     [C:\Program Files\Fichiers communs\Ahead\Lib\NMDataServices.dll]  [Nero AG, 1, 5, 3, 0]
  543. [PID: 3320 / Simon][C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe]  [Google Inc., 2, 0, 301, 1654]
  544.     [C:\Program Files\Google\GoogleToolbarNotifier\2.0.301.7164\gtn.dll]  [Google Inc., 2, 0, 301, 7164]
  545.     [C:\WINDOWS\system32\Normaliz.dll]  [Microsoft Corporation, 6.0.5441.0 (winmain(wmbla).060628-1735)]
  546.     [C:\WINDOWS\system32\iertutil.dll]  [Microsoft Corporation, 7.00.6000.16473 (vista_gdr.070420-1500)]
  547.     [C:\Program Files\Google\GoogleToolbarNotifier\2.0.301.7164\res_fr.dll]  [Google Inc., 2, 0, 301, 7164]
  548.     [C:\Program Files\Google\GoogleToolbarNotifier\2.0.301.7164\swg.dll]  [Google Inc., 2, 0, 301, 7164]
  549. [PID: 1472 / Simon][C:\Program Files\Messenger\msmsgs.exe]  [Microsoft Corporation, 4.7.3001]
  550.     [C:\WINDOWS\system32\Normaliz.dll]  [Microsoft Corporation, 6.0.5441.0 (winmain(wmbla).060628-1735)]
  551.     [C:\WINDOWS\system32\iertutil.dll]  [Microsoft Corporation, 7.00.6000.16473 (vista_gdr.070420-1500)]
  552.     [C:\PROGRA~1\Google\GOOGLE~1\GOEC62~1.DLL]  [N/A, ]
  553.     [C:\PROGRA~1\Google\GOOGLE~1\GoogleDesktopResources_fr.dll]  [N/A, ]
  554.     [C:\Program Files\Google\Google Desktop Search\GoogleDesktopAPI2.dll]  [N/A, ]
  555. [PID: 3784 / Simon][C:\WINDOWS\system32\ctfmon.exe]  [Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)]
  556. [PID: 3440 / Simon][C:\Program Files\Fichiers communs\Ahead\Lib\NMIndexStoreSvr.exe]  [Nero AG, 1, 5, 3, 0]
  557.     [C:\Program Files\Fichiers communs\Ahead\Lib\NMSQLDB.dll]  [Nero AG, 1, 5, 3, 0]
  558.     [C:\Program Files\Fichiers communs\Ahead\Lib\MSVCP71.dll]  [Microsoft Corporation, 7.10.3077.0]
  559.     [C:\Program Files\Fichiers communs\Ahead\Lib\MSVCR71.dll]  [Microsoft Corporation, 7.10.3052.4]
  560.     [C:\Program Files\Fichiers communs\Ahead\Lib\NMLogCxx.dll]  [Nero AG, 1, 5, 3, 0]
  561.     [C:\Program Files\Fichiers communs\Ahead\Lib\log4cxx.dll]  [Nero AG, 1, 0, 0, 0]
  562.     [C:\Program Files\Fichiers communs\Ahead\Lib\NMCoFoundation.dll]  [Nero AG, 1, 5, 3, 0]
  563.     [C:\Program Files\Fichiers communs\Ahead\Lib\NMPluginBase.dll]  [Nero AG, 1, 5, 3, 0]
  564.     [C:\Program Files\Fichiers communs\Ahead\Lib\NMFullTextExtraction.dll]  [Nero AG, 1, 5, 3, 0]
  565.     [C:\WINDOWS\system32\iertutil.dll]  [Microsoft Corporation, 7.00.6000.16473 (vista_gdr.070420-1500)]
  566.     [C:\Program Files\Fichiers communs\Ahead\Lib\NMSearchPluginSimilarImages.dll]  [Nero AG, 1, 5, 3, 0]
  567.     [C:\Program Files\Fichiers communs\Ahead\Lib\NeroIPP.dll]  [Nero AG, 4,5,13,0]
  568.     [C:\Program Files\Fichiers communs\Ahead\Lib\NMIndexStoreSvrPS.dll]  [Nero AG, 1, 5, 3, 0]
  569.     [C:\Program Files\Fichiers communs\Ahead\Lib\NMDataServices.dll]  [Nero AG, 1, 5, 3, 0]
  570. [PID: 756 / Simon][C:\Program Files\MSN Messenger\MsnMsgr.Exe]  [Microsoft Corporation, 8.1.0178.00]
  571.     [C:\Program Files\MSN Messenger\MSNCore.dll]  [Microsoft Corporation, 8.1.0178.00]
  572.     [C:\WINDOWS\system32\Normaliz.dll]  [Microsoft Corporation, 6.0.5441.0 (winmain(wmbla).060628-1735)]
  573.     [C:\WINDOWS\system32\iertutil.dll]  [Microsoft Corporation, 7.00.6000.16473 (vista_gdr.070420-1500)]
  574.     [C:\Program Files\MSN Messenger\msidcrl40.dll]  [Microsoft Corporation, 4.100.313.1]
  575.     [C:\Program Files\MSN Messenger\ContactsUX.dll]  [Microsoft Corporation, 8.1.0178.00]
  576.     [C:\PROGRA~1\Google\GOOGLE~1\GOEC62~1.DLL]  [N/A, ]
  577.     [C:\PROGRA~1\Google\GOOGLE~1\GoogleDesktopResources_fr.dll]  [N/A, ]
  578.     [C:\Program Files\Google\Google Desktop Search\GoogleDesktopAPI2.dll]  [N/A, ]
  579.     [C:\Program Files\MSN Messenger\msgslang.8.1.0178.00.dll]  [Microsoft Corporation, 8.1.0178.00]
  580.     [C:\Program Files\MSN Messenger\msgsres.dll]  [Microsoft Corporation, 8.1.0178.00]
  581.     [C:\Program Files\MSN Messenger\lcapi.dll]  [Microsoft Corporation, 1.7.256.0 (RTC Version 4.3.5371.0) built by: msn8.0(rtbldlab)]
  582.     [C:\WINDOWS\system32\msdmo.dll]  [, ]
  583.     [C:\Program Files\MSN Messenger\lcres.dll]  [Microsoft Corp., 1.7.109.0 (RTC Version 4.3.5371.0) built by: msn8.0(rtbldlab)]
  584.     [C:\Program Files\MSN Messenger\RTMPLTFM.dll]  [Microsoft Corporation, 3.0.5774.0 built by: media_msn80]
  585.     [C:\WINDOWS\system32\msacm32.drv]  [Microsoft Corporation, 5.1.2600.0 (xpclient.010817-1148)]
  586.     [C:\Program Files\MSN Messenger\MSGSWCAM.dll]  [Microsoft Corporation, 8.1.0178.00]
  587.     [C:\WINDOWS\system32\sirenacm.dll]  [Microsoft Corp., 8.1.0178.00]
  588.     [C:\Program Files\MSN Messenger\lmcdata.dll]  [Microsoft Corporation, 8.1.0178.00]
  589. [PID: 2972 / Owner][C:\Program Files\RegCleaner\RegCleanr.exe]  [, 4.3.0.780]
  590. [PID: 1008 / Owner][C:\Program Files\Mozilla Firefox\firefox.exe]  [Mozilla Corporation, 1.8.1.5: 2007071317]
  591.     [C:\Program Files\Mozilla Firefox\js3250.dll]  [Netscape Communications Corporation, 4.0]
  592.     [C:\Program Files\Mozilla Firefox\nspr4.dll]  [Netscape Communications Corporation, 4.6.7]
  593.     [C:\Program Files\Mozilla Firefox\xpcom_core.dll]  [Mozilla Foundation, 1.8.1.4: 2007051502]
  594.     [C:\Program Files\Mozilla Firefox\plc4.dll]  [Netscape Communications Corporation, 4.6.7]
  595.     [C:\Program Files\Mozilla Firefox\plds4.dll]  [Netscape Communications Corporation, 4.6.7]
  596.     [C:\Program Files\Mozilla Firefox\smime3.dll]  [Mozilla Foundation, 3.11.5 Basic ECC]
  597.     [C:\Program Files\Mozilla Firefox\nss3.dll]  [Mozilla Foundation, 3.11.5 Basic ECC]
  598.     [C:\Program Files\Mozilla Firefox\softokn3.dll]  [Mozilla Foundation, 3.11.4 Basic ECC]
  599.     [C:\Program Files\Mozilla Firefox\ssl3.dll]  [Mozilla Foundation, 3.11.5 Basic ECC]
  600.     [C:\Program Files\Mozilla Firefox\xpcom_compat.dll]  [Mozilla Foundation, 1.8.1.5: 2007071317]
  601.     [C:\PROGRA~1\Google\GOOGLE~1\GOEC62~1.DLL]  [N/A, ]
  602.     [C:\PROGRA~1\Google\GOOGLE~1\GoogleDesktopResources_fr.dll]  [N/A, ]
  603.     [C:\Program Files\Mozilla Firefox\components\myspell.dll]  [Mozilla Foundation, 1.8.1.4: 2007051502]
  604.     [C:\Program Files\Mozilla Firefox\components\jar50.dll]  [Mozilla Foundation, 1.8.1.4: 2007051502]
  605.     [C:\Documents and Settings\Owner.Ordi-Som\Application Data\Mozilla\Firefox\Profiles\qb9cjy44.default\extensions\{3112ca9c-de6d-4884-a869-9855de68056c}\components\metrics.dll]  [N/A, ]
  606.     [C:\Program Files\Mozilla Firefox\xpcom.dll]  [Mozilla Foundation, 1.8.1.4: 2007051502]
  607.     [C:\Documents and Settings\Owner.Ordi-Som\Application Data\Mozilla\Firefox\Profiles\qb9cjy44.default\extensions\{3112ca9c-de6d-4884-a869-9855de68056c}\components\googletoolbar.dll]  [N/A, ]
  608.     [C:\WINDOWS\system32\Normaliz.dll]  [Microsoft Corporation, 6.0.5441.0 (winmain(wmbla).060628-1735)]
  609.     [C:\WINDOWS\system32\iertutil.dll]  [Microsoft Corporation, 7.00.6000.16473 (vista_gdr.070420-1500)]
  610.     [C:\Program Files\Mozilla Firefox\freebl3.dll]  [Mozilla Foundation, 3.11.4 Basic ECC]
  611.     [C:\Program Files\Mozilla Firefox\nssckbi.dll]  [Mozilla Foundation, 1.62]
  612.     [C:\Program Files\Mozilla Firefox\extensions\{B13721C7-F507-4982-B2E5-502A71474FED}\components\PNRComponent.dll]  [Softomate, 1, 0, 0, 8]
  613.     [C:\Program Files\Skype\Toolbars\Shared\SPhoneParser.dll]  [Skype Technologies, 1, 0, 1, 150]
  614.     [C:\Program Files\Mozilla Firefox\components\spellchk.dll]  [Mozilla Foundation, 1.8.1.4: 2007051502]
  615.     [C:\WINDOWS\system32\msacm32.drv]  [Microsoft Corporation, 5.1.2600.0 (xpclient.010817-1148)]
  616.     [C:\Program Files\Mozilla Firefox\plugins\NPSWF32.dll]  [, ]
  617.     [C:\WINDOWS\system32\Macromed\Common\SwSupport.dll]  [Adobe Systems, Inc., 10.1.4r20]
  618.     [C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\shellexecutehook.dll]  [Anti-Malware Development a.s., 7, 5, 0, 47]
  619. [PID: 3480 / Owner][C:\Documents and Settings\Owner.Ordi-Som\Bureau\Sreng2\SREngPS.EXE]  [Smallfrogs Studio, 2.5.16.900]
  620.     [C:\WINDOWS\system32\Normaliz.dll]  [Microsoft Corporation, 6.0.5441.0 (winmain(wmbla).060628-1735)]
  621.     [C:\WINDOWS\system32\iertutil.dll]  [Microsoft Corporation, 7.00.6000.16473 (vista_gdr.070420-1500)]
  622.     [C:\Documents and Settings\Owner.Ordi-Som\Bureau\Sreng2\Upload\3rdUpd.DLL]  [Smallfrogs Studio, 2, 1, 0, 15]
  624. ==================================
  625. File Associations
  626. .TXT  OK. [%SystemRoot%\system32\NOTEPAD.EXE %1]
  627. .EXE  OK. ["%1" %*]
  628. .COM  OK. ["%1" %*]
  629. .PIF  OK. ["%1" %*]
  630. .REG  OK. [regedit.exe "%1"]
  631. .BAT  OK. ["%1" %*]
  632. .SCR  OK. ["%1" /S]
  633. .CHM  OK. ["C:\WINDOWS\hh.exe" %1]
  634. .HLP  OK. [%SystemRoot%\System32\winhlp32.exe %1]
  635. .INI  OK. [%SystemRoot%\System32\NOTEPAD.EXE %1]
  636. .INF  OK. [%SystemRoot%\System32\NOTEPAD.EXE %1]
  637. .VBS  OK. [%SystemRoot%\System32\WScript.exe "%1" %*]
  638. .JS  OK. [%SystemRoot%\System32\WScript.exe "%1" %*]
  639. .LNK  OK. [{00021401-0000-0000-C000-000000000046}]
  641. ==================================
  642. Winsock Provider
  643. N/A
  645. ==================================
  646. Autorun.Inf
  647. [D:\]
  648. [AUTORUN]
  649. SHELLEXECUTE=Info.exe folder.htt 480 480
  651. ==================================
  652. HOSTS File
  653. 127.0.0.1 localhost
  655. ==================================
  656. Process Privileges Scan
  657. Special Privilege Enabled: SeLoadDriverPrivilege [PID = 2972, C:\PROGRAM FILES\REGCLEANER\REGCLEANR.EXE]
  659. ==================================
  660. API HOOK
  661. RVA Error:  LoadLibraryA (Dangerous Level: High,  Hooked by Module: \??\C:\WINDOWS\system32\drivers\klif.sys)
  662. RVA Error:  LoadLibraryExA (Dangerous Level: High,  Hooked by Module: \??\C:\WINDOWS\system32\drivers\klif.sys)
  663. RVA Error:  LoadLibraryExW (Dangerous Level: High,  Hooked by Module: \??\C:\WINDOWS\system32\drivers\klif.sys)
  664. RVA Error:  LoadLibraryW (Dangerous Level: High,  Hooked by Module: \??\C:\WINDOWS\system32\drivers\klif.sys)
  665. RVA Error:  GetProcAddress (Dangerous Level: High,  Hooked by Module: \??\C:\WINDOWS\system32\drivers\klif.sys)
  667. ==================================
  668. Hidden Process
  669. N/A
  671. ==================================

Répondre à olivier_123
chercheur_   29-07-2007 à 21:19:07
- 0 +

Re


Pas grand chose.

Télécharge OTMoveIt (de Old_Timer) sur ton Bureau.
http://download.bleepingcomputer.c [...] MoveIt.exe
Double-clique sur OTMoveIt.exe pour le lancer.
Copie la liste qui se trouve ci-dessous, et colle-la dans le cadre de gauche de OTMoveIt :Paste List of Files/Folders to be moved.

C:\Program Files\BSplayer_WhenUSave_Installer
C:\WINDOWS\system32\DRIVERS\secdrv.sys

Clique sur MoveIt! pour lancer la suppression.
Le résultat apparaitra dans le cadre Results.
Clique sur Exit pour fermer.

Il te sera peut-être demander de redémarrer le PC pour achever la suppression. Si c'est le cas accepte par Yes.

Poste le rapport situé dans C:\_OTMoveIt\MovedFiles.


Télécharge AVG Anti-Spyware
http://www.ewido.net/en/download/
Tu l'installes.
Lance AVG Anti-Spyware et clique sur le bouton Mise à jour. Patiente
Clique sur le bouton Analyse (de la barre d'outils)
Puis sur l'onglets Comment réagir, clique sur Actions recommandées. Sélectionne Quarantaine.
Reviens à l'onglet Analyse. Clique sur Analyse complète du système.
A la fin du scan, choisis l'option " Appliquer toutes les actions " en bas. Ensuite.
Clique sur "Enregistrer le rapport". Ceci génère un rapport en fichier texte qui se trouve dans le dossier Reports du dossier d'AVG Anti-Spyware.

Poste son rapport.

------------------------------ Le meilleur antivirus, c'est vous
Vous avez un problème ? Créez votre propre post !
 Répondre à chercheur_
olivier_123   30-07-2007 à 03:35:57
- 0 +

Rapport OTMoveIt :
C:\Program Files\BSplayer_WhenUSave_Installer moved successfully.
C:\WINDOWS\system32\DRIVERS\secdrv.sys moved successfully.

Created on 07-08-2007 21:35:21

Répondre à olivier_123
olivier_123   30-07-2007 à 23:58:48
- 0 +

Svp aide-moi, mon ordi gèle tout les 10 minutes et sa prend 20 minutes ou plus démarrer ! Seul solution , formatage ?

Répondre à olivier_123
chercheur_   31-07-2007 à 16:08:57
- 0 +

Bonjour

As tu fais le scan d'AVG anti-spyware ?

Si tu as les cd de Windows, fais ceci.
http://www.informatruc.com/reparer.php

------------------------------ Le meilleur antivirus, c'est vous
Vous avez un problème ? Créez votre propre post !
 Répondre à chercheur_
Créer un nouveau sujet Répondre
Tom's Guide > Forum > Sécurité - Virus > Uc Élévée, démarrage lent, ordinateur lent
Aller à :

Il y a 2024 utilisateurs connus et inconnus. Pour voir la liste des connectés connus, cliquez ici.

Plan du forum
Forum Bestofmedia ©
2000-2009 Bestofmedia Group
Page générée en 0,903 secondes
Attention

Vous allez répondre sur un sujet resté inactif pendant plus de 6 mois.
Assurez-vous d'apporter des éléments nouveaux à la discussion avant de poursuivre.

Répondre Annuler
Liens