Sujet Précédent Sujet Suivant

Rapport ZHPDiag, suis-je infecté SVP ?!

Fermé
Stéf en 73 - Modifié par Stéf en 73 le 12/10/2010 à 21:37
 Utilisateur anonyme - 13 oct. 2010 à 01:29
Bonjour, ou plutôt bonsoir !.

J'ai lu dans d'autres posts que l'on pouvait utiliser ZHPDiag pour voir si le pc était infecté par quoi que ce soit, ou s'il y avait d'autres soucis. D'après ce rapport, mon pc a-t-il un problème s'il vous plait ??.

Merci d'avance !.



Rapport de ZHPDiag v1.27.03 par Nicolas Coolman, Update du 12/10/2010
Run by Stephane at 12/10/2010 21:31:25
Web site : http://www.premiumorange.com/zeb-help-process/zhpdiag.html
Contact : nicolascoolman@yahoo.fr

---\\ Web Browser
MSIE: Internet Explorer v8.0.6001.18702
MFIE: Mozilla Firefox (3.6.10)

---\\ System Information
Platform : Microsoft Windows XP (5.1.2600) Service Pack 3
Processor: x86 Family 15 Model 47 Stepping 2, AuthenticAMD
Operating System: 32 Bits
Boot mode: Normal (Normal boot)
Total RAM: 3070 MB (69% free)
System drive C: has 253 GB (85%) free of 298 GB

---\\ Logged in mode
Computer Name: STEPHANE
User Name: Stephane
All Users Names: SUPPORT_388945a0, Stephane, HelpAssistant, ASPNET, Administrateur,
Unselected Option: O1,O45,O61,O62,O65,O82
Logged in as Administrator

---\\ DOS/Devices
C:\ Hard drive, Flash drive, Thumb drive (Free 253 Go of 298 Go)
D:\ CD-ROM drive (Free 0 Go of 2 Go)
E:\ Floppy drive, Flash card reader, USB Key (Not Inserted)
F:\ Floppy drive, Flash card reader, USB Key (Not Inserted)
G:\ Floppy drive, Flash card reader, USB Key (Not Inserted)
H:\ Floppy drive, Flash card reader, USB Key (Not Inserted)


---\\ Security Center & Tools Informations
[HKLM\SOFTWARE\Microsoft\Security Center] AntiVirusOverride: OK
[HKLM\SOFTWARE\Microsoft\Security Center] AntiVirusDisableNotify: OK
[HKLM\SOFTWARE\Microsoft\Security Center] FirewallDisableNotify: OK
[HKLM\SOFTWARE\Microsoft\Security Center] FirewallOverride: OK
[HKLM\SOFTWARE\Microsoft\Security Center] UpdatesDisableNotify: OK


---\\ Processus lancés
[MD5.DAE9B06F344AE0F877D7CE3500C12342] - (.ATI Technologies Inc. - ATI External Event Utility EXE Module.) -- C:\WINDOWS\system32\Ati2evxx.exe [606208]
[MD5.93663F0EEAB2CE2CD8D3A60DD9C98CB2] - (.Lavasoft - Ad-Aware Service Application.) -- C:\Program Files\Lavasoft\Ad-Aware\AAWService.exe [1357464]
[MD5.ACB544D7254F366DFB48F380BC36CD25] - (.AVAST Software - avast! Service.) -- C:\Program Files\Alwil Software\Avast5\AvastSvc.exe [40384]
[MD5.2EAC3E6B4AAA9577D11B875BD02A35BE] - (.Lavasoft - Ad-Aware Tray Application.) -- C:\Program Files\Lavasoft\Ad-Aware\AAWTray.exe [864624]
[MD5.E7DC00A6E17D2D98BCF553B31678007C] - (.SPAMfighter ApS - SPAMfighter Agent.) -- C:\Program Files\SPAMfighter\SFAgent.exe [336520]
[MD5.6C1B31F5C16E03153F0037AC6C451FFD] - (.AVAST Software - avast! Antivirus.) -- C:\PROGRA~1\ALWILS~1\Avast5\avastUI.exe [2838912]
[MD5.80FD4D46B0E9B620CF757A9A5C789329] - (.Realtek Semiconductor Corp. - Realtek Sound Manager.) -- C:\WINDOWS\SOUNDMAN.EXE [577536]
[MD5.E7704CBF568815C1CAA6E513387BD3F2] - (.Advanced Micro Devices Inc. - Catalyst Control Center: Monitoring program.) -- C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\MOM.exe [65536]
[MD5.74EF310FAC89341CE2897B7F2C4A7B0F] - (.ATI Technologies Inc. - Catalyst Control Centre: Host application.) -- C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\ccc.exe [65536]
[MD5.ADC420616C501B45D26C0FD3EF1E54E4] - (.ArcSoft Inc. - ArcSoft Connect Service.) -- C:\Program Files\Fichiers communs\ArcSoft\Connection Service\Bin\ACService.exe [113152]
[MD5.793EF38A5FD086C3C8E48A8A861562ED] - (.Microsoft Corporation - Content Index service.) -- C:\WINDOWS\system32\cisvc.exe [5632]
[MD5.AF690339962C3144504AC0298BE4D29A] - (.NetSupport Ltd - NetSupport Client Application.) -- C:\PROGRA~1\NETSUP~1\client32.exe [31584]
[MD5.126A16F569122AE00AD3D12EF831D651] - (.Sun Microsystems, Inc. - Java(TM) Quick Starter Service.) -- C:\Program Files\Java\jre6\bin\jqs.exe [153376]
[MD5.11F714F85530A2BD134074DC30E99FCA] - (.Microsoft Corporation - Machine Debug Manager.) -- C:\Program Files\Fichiers communs\Microsoft Shared\VS7Debug\mdm.exe [322120]
[MD5.FD306FBCCE7ADB1077B709742E7148E9] - (.Pas de propriétaire - Pas de description.) -- C:\Program Files\CDBurnerXP\NMSAccessU.exe [71096]
[MD5.A1DD33D16F277CE34124EE52AB2C0F14] - (.Pas de propriétaire - Pas de description.) -- C:\WINDOWS\system32\PnkBstrA.exe [75064]
[MD5.45A0772A49914786AD64471205938CE9] - (.Microsoft Corporation - Service SNMP.) -- C:\WINDOWS\System32\snmp.exe [33280]
[MD5.CFF1808B2054502CF09C71508965554B] - (.SPAMfighter ApS - SPAMfighter Update Service.) -- C:\Program Files\SPAMfighter\sfus.exe [189064]
[MD5.72999AA48322DA948CE50C08B414A0EC] - (.Microsoft Corporation - Indexing Service filter daemon.) -- C:\WINDOWS\system32\cidaemon.exe [8192]
[MD5.7E52CC3AE4C554DABDAB096157F367FF] - (.Microsoft Corporation - Outlook Express.) -- C:\Program Files\Outlook Express\msimn.exe [60416]
[MD5.A26898623D61508C2FA3F5672C11FA5D] - (.Mozilla Corporation - Firefox.) -- C:\Program Files\Mozilla Firefox\firefox.exe [910296]
[MD5.D61ACEBA5AC21AB4EA814BBC5BF9E5BE] - (.Mozilla Corporation - Plugin Container for Firefox.) -- C:\Program Files\Mozilla Firefox\plugin-container.exe [14808]
[MD5.8FB89A0439396FE89243B8BB732E40E5] - (.Pas de propriétaire - Pas de description.) -- C:\Documents and Settings\Stephane\Bureau\BF2CC Admin 7Cie\BF2CC.exe [1826816]
[MD5.3D93B259ED367D848924ACAB4E89D5E1] - (.Nicolas Coolman - Diagnostic Tool.) -- C:\Program Files\ZHPDiag\ZHPDiag.exe [581120]


---\\ Page de démarrage de Mozilla Firefox (M0)
M0 - MFSP: prefs.js [Stephane - wb8mbmqk.default] https://start.mozilla.org/fr/


---\\ Programmes d'extension pour Mozilla Firefox (M2)
M2 - MFEP: prefs.js [Stephane - wb8mbmqk.default\personas@christopher.beard] [personas] Personas 1.6.1 (.Chris Beard.)
M2 - MFEP: prefs.js [Stephane - wb8mbmqk.default\piclens@cooliris.com] [] Cooliris 1.12.0.36949 (.Cooliris Inc..)
M2 - MFEP: prefs.js [Stephane - wb8mbmqk.default\viewtab@tamingdfox.blogspot.com] [] ViewTab 1.0.4 (.Aakash N S.)
M2 - MFEP: prefs.js [Stephane - wb8mbmqk.default\{1018e4d6-728f-4b20-ad56-37578a4de76b}] [] Flagfox 4.0.10 (.Dave Garrett.)
M2 - MFEP: prefs.js [Stephane - wb8mbmqk.default\{20a82645-c095-46ed-80e3-08825760534b}] [MicrosoftCG] Microsoft .NET Framework Assistant 1.2.1 (.Microsoft.)
M2 - MFEP: prefs.js [Stephane - wb8mbmqk.default\{9AA46F4F-4DC7-4c06-97AF-5035170634FE}] [] ImTranslator 3.3.5 (.Smart Link Corporation.)
M2 - MFEP: prefs.js [Stephane - wb8mbmqk.default\{a0d7ccb3-214d-498b-b4aa-0e8fda9a7bf7}] [WOT] WOT 20100908 (.WOT Services Oy.)
M2 - MFEP: prefs.js [Stephane - wb8mbmqk.default\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}] [adblockplus] Adblock Plus 1.2.2 (.Wladimir Palant.)
M2 - MFEP: prefs.js [Stephane - wb8mbmqk.default\{ef4e370e-d9f0-4e00-b93e-a4f274cfdd5a}] [] FoxTab 1.3 (.Roi M..)


---\\ Plugins de navigateurs Opera/Firefox(P1/P2)
P1 - OPN:Opera Plugin Navigator . (.Apple Inc. - The QuickTime Plugin allows you to view a wide variety of multimedia c.) -- C:\Program Files\Opera\Program\Plugins\npqtplugin.dll
P1 - OPN:Opera Plugin Navigator . (.Apple Inc. - The QuickTime Plugin allows you to view a wide variety of multimedia c.) -- C:\Program Files\Opera\Program\Plugins\npqtplugin2.dll
P1 - OPN:Opera Plugin Navigator . (.Apple Inc. - The QuickTime Plugin allows you to view a wide variety of multimedia c.) -- C:\Program Files\Opera\Program\Plugins\npqtplugin3.dll
P1 - OPN:Opera Plugin Navigator . (.Apple Inc. - The QuickTime Plugin allows you to view a wide variety of multimedia c.) -- C:\Program Files\Opera\Program\Plugins\npqtplugin4.dll
P1 - OPN:Opera Plugin Navigator . (.Apple Inc. - The QuickTime Plugin allows you to view a wide variety of multimedia c.) -- C:\Program Files\Opera\Program\Plugins\npqtplugin5.dll
P1 - OPN:Opera Plugin Navigator . (.Apple Inc. - The QuickTime Plugin allows you to view a wide variety of multimedia c.) -- C:\Program Files\Opera\Program\Plugins\npqtplugin6.dll
P1 - OPN:Opera Plugin Navigator . (.Apple Inc. - The QuickTime Plugin allows you to view a wide variety of multimedia c.) -- C:\Program Files\Opera\Program\Plugins\npqtplugin7.dll
P2 - FPN:Firefox Plugin Navigator . (.Microsoft Corporation - np-mswmp.) -- C:\Program Files\Mozilla Firefox\Plugins\np-mswmp.dll
P2 - FPN:Firefox Plugin Navigator . (.Sun Microsystems, Inc. - NPRuntime Script Plug-in Library for Java(TM) Deploy.) -- C:\Program Files\Mozilla Firefox\Plugins\npdeployJava1.dll
P2 - FPN:Firefox Plugin Navigator . (.mozilla.org - Default Plug-in.) -- C:\Program Files\Mozilla Firefox\Plugins\npnul32.dll
P2 - FPN:Firefox Plugin Navigator . (.Adobe Systems Inc. - Adobe PDF Plug-In For Firefox and Netscape "9.4.0".) -- C:\Program Files\Mozilla Firefox\Plugins\nppdf32.dll
P2 - FPN:Firefox Plugin Navigator . (.Apple Inc. - The QuickTime Plugin allows you to view a wide variety of multimedia c.) -- C:\Program Files\Mozilla Firefox\Plugins\npqtplugin.dll
P2 - FPN:Firefox Plugin Navigator . (.Apple Inc. - The QuickTime Plugin allows you to view a wide variety of multimedia c.) -- C:\Program Files\Mozilla Firefox\Plugins\npqtplugin2.dll
P2 - FPN:Firefox Plugin Navigator . (.Apple Inc. - The QuickTime Plugin allows you to view a wide variety of multimedia c.) -- C:\Program Files\Mozilla Firefox\Plugins\npqtplugin3.dll
P2 - FPN:Firefox Plugin Navigator . (.Apple Inc. - The QuickTime Plugin allows you to view a wide variety of multimedia c.) -- C:\Program Files\Mozilla Firefox\Plugins\npqtplugin4.dll
P2 - FPN:Firefox Plugin Navigator . (.Apple Inc. - The QuickTime Plugin allows you to view a wide variety of multimedia c.) -- C:\Program Files\Mozilla Firefox\Plugins\npqtplugin5.dll
P2 - FPN:Firefox Plugin Navigator . (.Apple Inc. - The QuickTime Plugin allows you to view a wide variety of multimedia c.) -- C:\Program Files\Mozilla Firefox\Plugins\npqtplugin6.dll
P2 - FPN:Firefox Plugin Navigator . (.Apple Inc. - The QuickTime Plugin allows you to view a wide variety of multimedia c.) -- C:\Program Files\Mozilla Firefox\Plugins\npqtplugin7.dll
P2 - FPN: [HKLM] [@adobe.com/FlashPlayer] - (.Pas de propriétaire - Pas de description.) -- C:\WINDOWS\system32\Macromed\Flash\NPSWF32.dll
P2 - FPN: [HKLM] [@Google.com/GoogleEarthPlugin] - (.Google - GEPlugin.) -- C:\Program Files\Google\Google Earth\plugin\npgeplugin.dll
P2 - FPN: [HKLM] [@google.com/npPicasa3,version=3.0.0] - (.Google, Inc. - Picasa plugin.) -- C:\Program Files\Google\Picasa3\npPicasa3.dll
P2 - FPN: [HKLM] [@java.com/JavaPlugin] - (.Sun Microsystems, Inc. - Next Generation Java Plug-in 1.6.0_21 for Mozilla browsers.) -- C:\Program Files\Java\jre6\bin\new_plugin\npjp2.dll
P2 - FPN: [HKLM] [@ma-config.com/HardwareDetection] - (.Cybelsoft - Plugin NPAPI Ma-Config.com.) -- C:\Program Files\ma-config.com\nphardwaredetection.dll
P2 - FPN: [HKLM] [@Microsoft.com/NpCtrl,version=1.0] - (. Microsoft Corporation - 4.0.50917.0.) -- c:\Program Files\Microsoft Silverlight\4.0.50917.0\npctrl.dll
P2 - FPN: [HKLM] [@microsoft.com/OfficeLive,version=1.3] - (.Microsoft Corp. - Office Live Update v1.3.) -- C:\Program Files\Microsoft\Office Live\npOLW.dll
P2 - FPN: [HKLM] [@microsoft.com/WLPG,version=14.0.8117.0416] - (.Microsoft Corporation - NPWLPG.) -- C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll
P2 - FPN: [HKLM] [@microsoft.com/WPF,version=3.5] - (.Microsoft Corporation - Windows Presentation Foundation (WPF) plug-in for Mozilla browsers.) -- c:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll
P2 - FPN: [HKLM] [@pack.google.com/Google Updater;version=13] - (.Google - Google Updater plugin<br><a href="http://pack.google.com/">http://pack.) -- C:\Program Files\Google\Google Updater\2.4.1536.6592\npCIDetect13.dll
P2 - FPN: [HKLM] [@tools.google.com/Google Update;version=8] - (.Google Inc. - Google Update.) -- C:\Program Files\Google\Update\1.2.183.29\npGoogleOneClick8.dll
P2 - FPN: [HKLM] [@videolan.org/vlc,version=1.1.4] - (.the VideoLAN Team - Version 1.1.4, copyright 1996-2010 The VideoLAN Team<br><a href="http:.) -- C:\Program Files\VideoLAN\VLC\npvlc.dll


---\\ Modification d'une valeur Ini (Changed inifile value, mapped to Registry) (F2)
F2 - REG:system.ini: UserInit=C:\WINDOWS\system32\userinit.exe,
F2 - REG:system.ini: VMApplet=rundll32 shell32,Control_RunDLL "sysdm.cpl"


---\\ Pages de démarrage d'Internet Explorer (R0)
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.la7eme.fr/
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.msn.com/fr-fr/?ocid=iehp


---\\ Pages de recherche d'Internet Explorer (R1)
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = https://www.google.com/?gws_rd=ssl
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = https://www.01net.com/
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://www.google.com/toolbar/ie8/sidebar.html
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = https://www.msn.com/fr-fr/?ocid=iehp
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Extensions Off Page = about:NoAdd-ons
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Security Risk Page = about:SecurityRisk
R1 - HKCU\Software\Microsoft\Internet Explorer\Search,SearchAssistant = http://www.google.com/toolbar/ie8/sidebar.html
R1 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant = https://www.bing.com/?toHttps=1&redig=8F3F334EA60E4B1CB4D040DCFE393A89{SUB_RFC1766}/srchasst/srchasst.htm


---\\ Internet Explorer URLSearchHook (R3)
R3 - URLSearchHook: (no name) - {08C06D61-F1F3-4799-86F8-BE1A89362C85} Clé orpheline
R3 - URLSearchHook: Microsoft Url Search Hook - {CFBFAE00-17A6-11D0-99CB-00C04FD64497} . (.Microsoft Corporation - Internet Explorer.) (8.00.6001.18939 (longhorn_ie8_gdr.100616-1700)) -- C:\WINDOWS\system32\ieframe.dll


---\\ Browser Helper Objects de navigateur (O2)
O2 - BHO: IEPlugin Class - {11222041-111B-46E3-BD29-EFB2449479B1} . (.ArcSoft, Inc. - ArcURLRecord Module.) -- C:\PROGRA~1\ArcSoft\VIDEOD~1\ARCURL~1.DLL
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} . (.Adobe Systems Incorporated - Adobe PDF Helper for Internet Explorer.) -- C:\Program Files\Fichiers communs\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: Spybot-S&D IE Protection - {53707962-6F74-2D53-2644-206D7942484F} . (.Safer Networking Limited - SBSD IE Protection.) -- C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O2 - BHO: (no name) - {5C255C8A-E604-49b4-9D64-90988571CECB} Clé orpheline
O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} . (.Microsoft Corporation - WindowsLiveLogin.dll.) -- C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: ToolbarBHO Class - {9519AF7E-638D-4933-BAD6-D33D23C79FE5} . (.ArcSoft Inc. - EXIFToolBar Module.) -- C:\PROGRA~1\ArcSoft\RAWTHU~1\EXIFToolBar.dll
O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} . (.Google Inc. - GoogleToolbarNotifier.) -- C:\Program Files\Google\GoogleToolbarNotifier\5.3.4501.1418\swg.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} . (.Sun Microsystems, Inc. - Java(TM) Platform SE binary.) -- C:\Program Files\Java\jre6\bin\jp2ssv.dll
O2 - BHO: JQSIEStartDetectorImpl - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} . (.Sun Microsystems, Inc. - Java(TM) Quick Starter binary.) -- C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll


---\\ Internet Explorer Toolbars (O3)
O3 - Toolbar: Easy-WebPrint - {327C2873-E90D-4c37-AA9D-10AC9BABA46C} . (.Pas de propriétaire - Easy-WebPrint.) -- C:\Program Files\Canon\Easy-WebPrint\Toolband.dll
O3 - Toolbar: RAW Thumbnail Viewer - {F301665A-12F8-4331-804A-5BCBD379668C} . (.ArcSoft Inc. - EXIFToolBar Module.) -- C:\PROGRA~1\ArcSoft\RAWTHU~1\EXIFToolBar.dll


---\\ Applications démarrées par registre & par dossier (O4)
O4 - HKLM\..\Run: [Ad-Watch] . (.Lavasoft - Ad-Aware Tray Application.) -- C:\Program Files\Lavasoft\Ad-Aware\AAWTray.exe
O4 - HKLM\..\Run: [SPAMfighter Agent] . (.SPAMfighter ApS - SPAMfighter Agent.) -- C:\Program Files\SPAMfighter\SFAgent.exe
O4 - HKLM\..\Run: [avast5] . (.AVAST Software - avast! Antivirus.) -- C:\PROGRA~1\ALWILS~1\Avast5\avastUI.exe
O4 - HKLM\..\Run: [StartCCC] . (.Advanced Micro Devices, Inc. - Catalyst® Control Center Launcher.) -- C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe
O4 - HKLM\..\Run: [SoundMan] . (.Realtek Semiconductor Corp. - Realtek Sound Manager.) -- C:\Windows\SOUNDMAN.exe
O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] . (.Adobe Systems Incorporated - Adobe Acrobat SpeedLauncher.) -- C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe
O4 - HKLM\..\Run: [Adobe ARM] . (.Adobe Systems Incorporated - Adobe Reader and Acrobat Manager.) -- C:\Program Files\Fichiers communs\Adobe\ARM\1.0\AdobeARM.exe
O4 - HKCU\..\Run: [CTFMON.EXE] . (.Microsoft Corporation - CTF Loader.) -- C:\WINDOWS\system32\ctfmon.exe
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] . (.Microsoft Corporation - CTF Loader.) -- C:\WINDOWS\system32\CTFMON.exe
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] . (.Microsoft Corporation - CTF Loader.) -- C:\WINDOWS\system32\CTFMON.exe
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] . (.Microsoft Corporation - CTF Loader.) -- C:\WINDOWS\system32\CTFMON.exe
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] . (.Microsoft Corporation - CTF Loader.) -- C:\WINDOWS\system32\CTFMON.exe
O4 - HKUS\S-1-5-21-1004336348-630328440-725345543-1004\..\Run: [CTFMON.EXE] . (.Microsoft Corporation - CTF Loader.) -- C:\WINDOWS\system32\ctfmon.exe


---\\ Autres liens utilisateurs (O4)
O4 - Global Startup: C:\Documents And Settings\All Users\Menu Démarrer\Programmes\Adobe Reader 9.lnk . (.Pas de propriétaire.) -- C:\WINDOWS\Installer\{AC76BA86-7AD7-1036-7B44-A94000000001}\SC_Reader.ico
O4 - Global Startup: C:\Documents And Settings\All Users\Menu Démarrer\Programmes\Apple Software Update.lnk . (.Pas de propriétaire.) -- C:\WINDOWS\Installer\{6956856F-B6B3-4BE0-BA0B-8F495BE32033}\AppleSoftwareUpdateIco.exe
O4 - Global Startup: C:\Documents And Settings\All Users\Menu Démarrer\Programmes\Conseiller de mise à niveau vers Windows 7.lnk . (.Microsoft Corporation.) -- C:\Program Files\Microsoft Windows 7 Upgrade Advisor\WindowsUpgradeAdvisor.exe
O4 - Global Startup: C:\Documents And Settings\All Users\Menu Démarrer\Programmes\Installation du Contrôle Parental.lnk . (.InstallShield Software Corporation.) -- C:\Program Files\Securitoo\Controle Parental\Controle_parental.exe
O4 - Global Startup: C:\Documents And Settings\All Users\Menu Démarrer\Programmes\Microsoft Access.lnk . (.Pas de propriétaire.) -- C:\WINDOWS\Installer\{9028040C-6000-11D3-8CFE-0050048383C9}\accicons.exe
O4 - Global Startup: C:\Documents And Settings\All Users\Menu Démarrer\Programmes\Microsoft Excel.lnk . (.Pas de propriétaire.) -- C:\WINDOWS\Installer\{9028040C-6000-11D3-8CFE-0050048383C9}\xlicons.exe
O4 - Global Startup: C:\Documents And Settings\All Users\Menu Démarrer\Programmes\Microsoft FrontPage.lnk . (.Pas de propriétaire.) -- C:\WINDOWS\Installer\{9028040C-6000-11D3-8CFE-0050048383C9}\misc.exe
O4 - Global Startup: C:\Documents And Settings\All Users\Menu Démarrer\Programmes\Microsoft Outlook.lnk . (.Pas de propriétaire.) -- C:\WINDOWS\Installer\{9028040C-6000-11D3-8CFE-0050048383C9}\outicon.exe
O4 - Global Startup: C:\Documents And Settings\All Users\Menu Démarrer\Programmes\Microsoft PowerPoint.lnk . (.Pas de propriétaire.) -- C:\WINDOWS\Installer\{9028040C-6000-11D3-8CFE-0050048383C9}\pptico.exe
O4 - Global Startup: C:\Documents And Settings\All Users\Menu Démarrer\Programmes\Microsoft Word.lnk . (.Pas de propriétaire.) -- C:\WINDOWS\Installer\{9028040C-6000-11D3-8CFE-0050048383C9}\wordicon.exe
O4 - Global Startup: C:\Documents And Settings\All Users\Menu Démarrer\Programmes\Paint.NET.lnk . (.dotPDN LLC.) -- C:\Program Files\Paint.NET\PaintDotNet.exe
O4 - Global Startup: C:\Documents And Settings\All Users\Menu Démarrer\Programmes\Visionneuse Microsoft Office PowerPoint 2007.lnk . (.Pas de propriétaire.) -- C:\WINDOWS\Installer\{95120000-00AF-040C-0000-0000000FF1CE}\ppvwicon.exe
O4 - Global Startup: C:\Documents And Settings\All Users\Menu Démarrer\Programmes\Windows Movie Maker.lnk . (.Microsoft Corporation.) -- C:\Program Files\Movie Maker\moviemk.exe
O4 - Global Startup: C:\Documents And Settings\Stephane\Menu Démarrer\Programmes\Assistance à distance.lnk . (.Microsoft Corporation.) -- C:\WINDOWS\system32\rcimlby.exe
O4 - Global Startup: C:\Documents And Settings\Stephane\Menu Démarrer\Programmes\Internet Explorer.lnk . (.Microsoft Corporation.) -- C:\Program Files\Internet Explorer\iexplore.exe
O4 - Global Startup: C:\Documents And Settings\Stephane\Menu Démarrer\Programmes\Outlook Express.lnk . (.Microsoft Corporation.) -- C:\Program Files\Outlook Express\msimn.exe
O4 - Global Startup: C:\Documents And Settings\Stephane\Menu Démarrer\Programmes\Windows Media Player.lnk . (.Microsoft Corporation.) -- C:\Program Files\Windows Media Player\wmplayer.exe


---\\ Lignes supplémentaires dans le menu contextuel d'Internet Explorer (O8)
O8 - Extra context menu item: Add to Google Photos Screensa&ver . (.Google Inc. - Google Photos Screensaver.) -- C:\WINDOWS\system32\GPhotos.scr
O8 - Extra context menu item: E&xporter vers Microsoft Excel . (.Microsoft Corporation - Microsoft Excel.) -- C:\PROGRA~1\MICROS~2\Office10\EXCEL.exe
O8 - Extra context menu item: Easy-WebPrint Ajouter à la liste d'impressions . (.Pas de propriétaire - Module de ressources Easy-WebPrint - Français.) -- C:\Program Files\Canon\Easy-WebPrint\Resource.dll
O8 - Extra context menu item: Easy-WebPrint Impression rapide . (.Pas de propriétaire - Module de ressources Easy-WebPrint - Français.) -- C:\Program Files\Canon\Easy-WebPrint\Resource.dll
O8 - Extra context menu item: Easy-WebPrint Imprimer . (.Pas de propriétaire - Module de ressources Easy-WebPrint - Français.) -- C:\Program Files\Canon\Easy-WebPrint\Resource.dll
O8 - Extra context menu item: Easy-WebPrint Prévisualiser . (.Pas de propriétaire - Module de ressources Easy-WebPrint - Français.) -- C:\Program Files\Canon\Easy-WebPrint\Resource.dll
O8 - Extra context menu item: Lire des données EXIF . (.Pas de propriétaire - Pas de description.) -- C:\Program Files\ArcSoft\RAW Thumbnail Viewer\ArcEXIFM.htm


---\\ Boutons situés sur la barre d'outils principale d'Internet Explorer (O9)
O9 - Extra 'Tools' menuitem: Spybot - Search & Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} . (.not file.) - (.not file.)
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} . (.not file.) - (.not file.)
O9 - Extra button: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} . (.Microsoft Corporation - Windows Messenger.) -- C:\Program Files\Messenger\msmsgs.exe


---\\ Winsock hijacker (Layered Service Provider) (O10)
O10 - WLSP:\000000000001\Winsock LSP File . (.Microsoft Corporation - Fournisseur de service Sockets 2.0 de Microsoft Windows.) -- C:\WINDOWS\system32\mswsock.dll
O10 - WLSP:\000000000002\Winsock LSP File . (.Microsoft Corporation - LDAP RnR Provider DLL.) -- C:\WINDOWS\system32\winrnr.dll
O10 - WLSP:\000000000003\Winsock LSP File . (.Microsoft Corporation - Fournisseur de service Sockets 2.0 de Microsoft Windows.) -- C:\WINDOWS\system32\mswsock.dll


---\\ Objets ActiveX (Downloaded Program Files)(O16)
O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) - http://update.microsoft.com/...
O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} (MUWebControl Class) - http://update.microsoft.com/...
O16 - DPF: {867E13F2-7F31-44FB-AC97-CD38E0DC46EF} ("Ma-Config.com control) - http://ma-config.com/activex/hardwaredetection_3_1_1_0.cab
O16 - DPF: {8FFBE65D-2C9C-4669-84BD-5829DC0B603C} () - http://fpdownload.macromedia.com/get/flashplayer/current/polarbear/ultrashim.cab
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab


---\\ Modification Domaine/Adresses DNS (O17)
O17 - HKLM\System\CCS\Services\Tcpip\..\{00CD8465-752D-43AD-9322-C441FB392CF3}: NameServer = 192.168.1.1,192.168.1.1
O17 - HKLM\System\CS1\Services\Tcpip\..\{00CD8465-752D-43AD-9322-C441FB392CF3}: NameServer = 192.168.1.1,192.168.1.1
O17 - HKLM\System\CS2\Services\Tcpip\..\{00CD8465-752D-43AD-9322-C441FB392CF3}: NameServer = 192.168.1.1,192.168.1.1
O17 - HKLM\System\CCS\Services\Tcpip\..\{00CD8465-752D-43AD-9322-C441FB392CF3}: DhcpNameServer = 192.168.1.1 192.168.1.1
O17 - HKLM\System\CCS\Services\Tcpip\..\{47B76963-7ADF-4B1B-93EA-26385602D412}: DhcpNameServer = 192.168.1.1
O17 - HKLM\System\CS1\Services\Tcpip\..\{00CD8465-752D-43AD-9322-C441FB392CF3}: DhcpNameServer = 192.168.1.1 192.168.1.1
O17 - HKLM\System\CS1\Services\Tcpip\..\{47B76963-7ADF-4B1B-93EA-26385602D412}: DhcpNameServer = 192.168.1.1
O17 - HKLM\System\CS2\Services\Tcpip\..\{00CD8465-752D-43AD-9322-C441FB392CF3}: DhcpNameServer = 192.168.1.1 192.168.1.1
O17 - HKLM\System\CS2\Services\Tcpip\..\{47B76963-7ADF-4B1B-93EA-26385602D412}: DhcpNameServer = 192.168.1.1
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.1 192.168.1.1


---\\ Valeur de Registre AppInit_DLLs et sous-clés Winlogon Notify (autorun) (O20)
O20 - Winlogon Notify: AtiExtEvent . (.ATI Technologies Inc. - ATI External Event Utility DLL Module.) -- C:\Windows\System32\Ati2evxx.dll
O20 - Winlogon Notify: crypt32chain . (.Microsoft Corporation - Crypto API32.) -- C:\Windows\System32\crypt32.dll
O20 - Winlogon Notify: cryptnet . (.Microsoft Corporation - Crypto Network Related API.) -- C:\Windows\System32\cryptnet.dll
O20 - Winlogon Notify: cscdll . (.Microsoft Corporation - Agent réseau hors connexion.) -- C:\Windows\System32\cscdll.dll
O20 - Winlogon Notify: dimsntfy . (.Microsoft Corporation - DIMS Notification Handler.) -- C:\WINDOWS\System32\dimsntfy.dll
O20 - Winlogon Notify: ScCertProp . (.Microsoft Corporation - DLL commune de réception des notifications.) -- C:\Windows\System32\wlnotify.dll
O20 - Winlogon Notify: Schedule . (.Microsoft Corporation - DLL commune de réception des notifications.) -- C:\Windows\System32\wlnotify.dll
O20 - Winlogon Notify: sclgntfy . (.Microsoft Corporation - DLL secondaire de notification de service d.) -- C:\Windows\System32\sclgntfy.dll
O20 - Winlogon Notify: SensLogn . (.Microsoft Corporation - DLL commune de réception des notifications.) -- C:\Windows\System32\WlNotify.dll
O20 - Winlogon Notify: termsrv . (.Microsoft Corporation - DLL commune de réception des notifications.) -- C:\Windows\System32\wlnotify.dll
O20 - Winlogon Notify: wlballoon . (.Microsoft Corporation - DLL commune de réception des notifications.) -- C:\Windows\System32\wlnotify.dll


---\\ Clé de Registre autorun ShellServiceObjectDelayLoad (SSO/SSODL) (O21)
O21 - SSODL: PostBootReminder - {7849596a-48ea-486e-8937-a2a3009f31a9} . (.Microsoft Corporation - DLL commune du shell Windows.) -- C:\WINDOWS\system32\SHELL32.dll
O21 - SSODL: CDBurn - {fbeb8a05-beee-4442-804e-409d6c4515e9} . (.Microsoft Corporation - DLL commune du shell Windows.) -- C:\WINDOWS\system32\SHELL32.dll
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} . (.Microsoft Corporation - Web Site Monitor.) -- C:\WINDOWS\system32\webcheck.dll
O21 - SSODL: SysTray - {35CEC8A3-2BE6-11D2-8773-92E220524153} . (.Microsoft Corporation - Objet du service d'environnement Systray.) -- C:\WINDOWS\system32\stobject.dll
O21 - SSODL: WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} . (.Microsoft Corporation - Windows Portable Device Shell Service Objec.) -- C:\WINDOWS\system32\WPDShServiceObj.dll


---\\ Clé de Registre autorun SharedTaskScheduler (STS) (O22)
O22 - SharedTaskScheduler: (no name) - {8C7461EF-2B13-11d2-BE35-3078302C2030} . (.Microsoft Corporation - Bibliothèque de l'interface utilisateur du.) -- C:\WINDOWS\system32\browseui.dll


---\\ Liste des services NT non Microsoft et non désactivés (O23)
O23 - Service: ArcSoft Connect Daemon (ACDaemon) . (.ArcSoft Inc. - ArcSoft Connect Service.) - C:\Program Files\Fichiers communs\ArcSoft\Connection Service\Bin\ACService.exe
O23 - Service: (Ati HotKey Poller) . (.ATI Technologies Inc. - ATI External Event Utility EXE Module.) - C:\WINDOWS\system32\Ati2evxx.exe
O23 - Service: ATI Smart (ATI Smart) . (.Pas de propriétaire - ATI Smart.) - C:\WINDOWS\system32\ati2sgag.exe
O23 - Service: avast! Antivirus (avast! Antivirus) . (.AVAST Software - avast! Service.) - C:\Program Files\Alwil Software\Avast5\AvastSvc.exe
O23 - Service: Client32 (Client32) . (.NetSupport Ltd - NetSupport Client Application.) - C:\PROGRA~1\NETSUP~1\client32.exe
O23 - Service: Service Google Update (gupdate1c9a6ed96ad92ec) (gupdate1c9a6ed96ad92ec) . (.Google Inc. - Programme d'installation de Google.) - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Google Software Updater (gusvc) . (.Google - gusvc.) - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: Java Quick Starter (JavaQuickStarterService) . (.Sun Microsystems, Inc. - Java(TM) Quick Starter Service.) - C:\Program Files\Java\jre6\bin\jqs.exe
O23 - Service: Lavasoft Ad-Aware Service (Lavasoft Ad-Aware Service) . (.Lavasoft - Ad-Aware Service Application.) - C:\Program Files\Lavasoft\Ad-Aware\AAWService.exe
O23 - Service: NMSAccessU (NMSAccessU) . (.Pas de propriétaire - Pas de description.) - C:\Program Files\CDBurnerXP\NMSAccessU.exe
O23 - Service: PnkBstrA (PnkBstrA) . (.Pas de propriétaire - Pas de description.) - C:\WINDOWS\system32\PnkBstrA.exe
O23 - Service: SPAMfighter Update Service (SPAMfighter Update Service) . (.SPAMfighter ApS - SPAMfighter Update Service.) - C:\Program Files\SPAMfighter\sfus.exe


---\\ Enumération Active Desktop & MHTML Editor (O24)
O24 - Default MHTML Editor: Last - .(.Microsoft Corporation - Microsoft Word.) - C:\Program Files\Microsoft Office\Office10\WINWORD.exe


---\\ Tâches planifiées en automatique (O39)
O39 - APT:Automatic Planified Task - C:\WINDOWS\Tasks\Ad-Aware Update (Weekly).job
O39 - APT:Automatic Planified Task - C:\WINDOWS\Tasks\AppleSoftwareUpdate.job
O39 - APT:Automatic Planified Task - C:\WINDOWS\Tasks\GlaryInitialize.job
O39 - APT:Automatic Planified Task - C:\WINDOWS\Tasks\Google Software Updater.job
O39 - APT:Automatic Planified Task - C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore1cab613e7eef8f4.job
O39 - APT:Automatic Planified Task - C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job
O39 - APT:Automatic Planified Task - C:\WINDOWS\Tasks\RealUpgradeLogonTaskS-1-5-21-1004336348-630328440-725345543-1004.job
O39 - APT:Automatic Planified Task - C:\WINDOWS\Tasks\RealUpgradeScheduledTaskS-1-5-21-1004336348-630328440-725345543-1004.job
O39 - APT:Automatic Planified Task - C:\WINDOWS\Tasks\User_Feed_Synchronization-{B6116612-660A-493D-AD2A-624A8654465B}.job


---\\ Composants installés (ActiveSetup Installed Components) (O40)
O40 - ASIC: Personnalisation du navigateur - >{60B49E34-C7CC-11D0-8953-00A0C90347FF}MICROS . (.Pas de propriétaire - Pas de description.) -- Rundll32 IEDKCS32.dll
O40 - ASIC: Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608500} . (.Sun Microsystems, Inc. - Java(TM) Platform SE binary.) -- C:\Program Files\Java\jre6\bin\regutils.dll
O40 - ASIC: NetMeeting 3.01 - {44BBA842-CC51-11CF-AAFA-00AA00B6015B} . (.Pas de propriétaire - Pas de description.) -- C:\WINDOWS\INF\msnetmtg.inf
O40 - ASIC: Windows Messenger 4.7 - {5945c046-1e7d-11d1-bc44-00c04fd912be} . (.Pas de propriétaire - Pas de description.) -- C:\WINDOWS\INF\msmsgs.inf
O40 - ASIC: Microsoft Windows Media Player - {6BF52A52-394A-11d3-B153-00C04F79FAA6} . (.Pas de propriétaire - Pas de description.) -- C:\WINDOWS\INF\wmp11.inf
O40 - ASIC: Fax - {8b15971b-5355-4c82-8c07-7e181ea07608} . (.Pas de propriétaire - Pas de description.) -- C:\WINDOWS\INF\fxsocm.inf
O40 - ASIC: Adobe Flash Player - {D27CDB6E-AE6D-11cf-96B8-444553540000} . (.Adobe Systems, Inc. - Adobe Flash Player 10.0 r45.) -- C:\WINDOWS\system32\Macromed\Flash\Flash10e.ocx


---\\ Pilotes lancés au démarrage (O41)
O41 - Driver: Pilote de processeur AMD HwPState (AmdPPM) . (.Advanced Micro Devices - AMD Processor Driver.) - C:\Windows\system32\DRIVERS\AmdPPM.sys


---\\ Logiciels installés (O42)
O42 - Logiciel: Ad-Aware - (.Lavasoft.) [HKLM] -- Ad-Aware
O42 - Logiciel: Ad-Aware - (.Lavasoft.) [HKLM] -- {DED53B0B-B67C-4244-AE6A-D6FD3C28D1EF}
O42 - Logiciel: Adobe Flash Player 10 ActiveX - (.Adobe Systems Incorporated.) [HKLM] -- Adobe Flash Player ActiveX
O42 - Logiciel: Adobe Flash Player 10 Plugin - (.Adobe Systems Incorporated.) [HKLM] -- Adobe Flash Player Plugin
O42 - Logiciel: Adobe Reader 9.4.0 - Français - (.Adobe Systems Incorporated.) [HKLM] -- {AC76BA86-7AD7-1036-7B44-A94000000001}
O42 - Logiciel: Analyseur MSXML 6.0 - (.Microsoft Corporation.) [HKLM] -- {5903C48B-E953-47B8-A651-B9222C483057}
O42 - Logiciel: Apple Application Support - (.Apple Inc..) [HKLM] -- {553255F3-78FD-40F1-A6F8-6882140265FE}
O42 - Logiciel: Apple Software Update - (.Apple Inc..) [HKLM] -- {6956856F-B6B3-4BE0-BA0B-8F495BE32033}
O42 - Logiciel: ArcSoft Panorama Maker 4 - (.ArcSoft.) [HKLM] -- {37530151-56A6-4CE4-9F9F-CE1F5A1356C6}
O42 - Logiciel: ArcSoft Photo Book Screen Saver - (.ArcSoft.) [HKLM] -- {E2EE273D-E111-4FFD-ACD4-78E1D35E01D2}
O42 - Logiciel: ArcSoft PhotoStudio 5.5 - (.ArcSoft.) [HKLM] -- {85309D89-7BE9-4094-BB17-24999C6118FC}
O42 - Logiciel: ArcSoft PhotoStudio Darkroom 2 - (.ArcSoft.) [HKLM] -- {40DA94AF-34B7-4BA7-A37F-26F899C031FF}
O42 - Logiciel: ArcSoft Print Creations - (.ArcSoft.) [HKLM] -- {F03EC055-F34E-4F6B-A684-8A370E11A304}
O42 - Logiciel: ArcSoft Print Creations - Album Page - (.ArcSoft.) [HKLM] -- {E6B4117F-AC59-4B13-9274-EB136E8897EE}
O42 - Logiciel: ArcSoft Print Creations - Brochures & Flyers - (.ArcSoft.) [HKLM] -- {01A1A019-E1D8-482A-BE17-5E118D17C0A0}
O42 - Logiciel: ArcSoft Print Creations - Funhouse - (.ArcSoft.) [HKLM] -- {9591C049-5CAE-4E89-A8D9-191F1899628B}
O42 - Logiciel: ArcSoft Print Creations - Funhouse II - (.ArcSoft.) [HKLM] -- {3CE47E6B-AE27-4E40-AC54-329EED96B933}
O42 - Logiciel: ArcSoft Print Creations - Greeting Card - (.ArcSoft.) [HKLM] -- {F04F9557-81A9-4293-BC49-2C216FA325A7}
O42 - Logiciel: ArcSoft Print Creations - Photo Book - (.ArcSoft.) [HKLM] -- {56589DFE-0C29-4DFE-8E42-887B771ECD23}
O42 - Logiciel: ArcSoft Print Creations - Photo Calendar - (.ArcSoft.) [HKLM] -- {CA9ED5E4-1548-485B-A293-417840060158}
O42 - Logiciel: ArcSoft Print Creations - Photo Prints - (.ArcSoft.) [HKLM] -- {95F875CC-1B85-43E6-B3E0-13EA04F3D995}
O42 - Logiciel: ArcSoft Print Creations - Poster Creator - (.ArcSoft.) [HKLM] -- {5D1C82E7-7EC0-4404-A8AD-36C3B444BC34}
O42 - Logiciel: ArcSoft Print Creations - Scrapbook - (.ArcSoft.) [HKLM] -- {B0D83FCD-9D42-43ED-8315-250326AADA02}
O42 - Logiciel: ArcSoft Print Creations - Slimline Card - (.ArcSoft.) [HKLM] -- {007B37D9-0C45-4202-834B-DD5FAAE99D63}
O42 - Logiciel: ArcSoft RAW Thumbnail Viewer - (.ArcSoft.) [HKLM] -- {82FAC25D-D0E1-4D60-9268-F3DD958BF052}
O42 - Logiciel: ArcSoft Scan-n-Stitch Deluxe - (.ArcSoft.) [HKLM] -- {363188E4-1A27-4DE6-BA48-823D2E205385}
O42 - Logiciel: ArcSoft Software Suite - (.Pas de propriétaire.) [HKLM] -- {497A1721-088F-41EF-8876-B43C9DA5528B}
O42 - Logiciel: ArcSoft Video Downloader - (.ArcSoft.) [HKLM] -- {C8B44566-839A-459C-A73D-49764CE216CC}
O42 - Logiciel: Ashampoo Burning Studio 10.0.3 - (.ashampoo GmbH & Co. KG.) [HKLM] -- Ashampoo Burning Studio 10_is1
O42 - Logiciel: Ashampoo Burning Studio 9.21 - (.ashampoo GmbH & Co. KG.) [HKLM] -- Ashampoo Burning Studio 9_is1
O42 - Logiciel: Assistant de connexion Windows Live - (.Microsoft Corporation.) [HKLM] -- {DCE8CD14-FBF5-4464-B9A4-E18E473546C7}
O42 - Logiciel: Battlefield 2(TM) - (.Pas de propriétaire.) [HKLM] -- {04858915-9F49-4B2A-AED4-DC49A7DE6A7B}
O42 - Logiciel: Battlefield Bad Company 2 - BETA - (.Electronic Arts.) [HKLM] -- {D53A3D44-C983-4D21-ABF6-2AA2AB88FB28}
O42 - Logiciel: CCleaner - (.Piriform.) [HKLM] -- CCleaner
O42 - Logiciel: CDBurnerXP - (.CDBurnerXP.) [HKLM] -- {7E265513-8CDA-4631-B696-F40D983F3B07}_is1
O42 - Logiciel: Canon MP Navigator 2.0 - (.Pas de propriétaire.) [HKLM] -- MP Navigator 2.0
O42 - Logiciel: Canon MP150 - (.Pas de propriétaire.) [HKLM] -- {CA9A3609-3ECC-4574-8824-A8161A71A603}
O42 - Logiciel: Canon Utilities Easy-PhotoPrint - (.Pas de propriétaire.) [HKLM] -- Easy-PhotoPrint
O42 - Logiciel: Catalyst Control Center - Branding - (.ATI.) [HKLM] -- {DDA34038-89BD-4804-B0B8-DC48D5DFB463}
O42 - Logiciel: Conseiller de mise à niveau vers Windows 7 - (.Microsoft Corporation.) [HKLM] -- {9D10CB57-B085-44c3-B435-2D193BA153F0}
O42 - Logiciel: Defraggler - (.Piriform.) [HKLM] -- Defraggler
O42 - Logiciel: Easy-WebPrint - (.Pas de propriétaire.) [HKLM] -- Easy-WebPrint
O42 - Logiciel: FightMouse Advanced - (.Revoltec.) [HKLM] -- {235C3A50-559F-4CAA-BAC3-4CC9ABF51976}
O42 - Logiciel: GIMP 2.6.8 - (.Pas de propriétaire.) [HKLM] -- WinGimp-2.0_is1
O42 - Logiciel: Galerie de photos Windows Live - (.Microsoft Corporation.) [HKLM] -- {1EE04769-91C4-4A06-92B7-FCAFE6BABDD9}
O42 - Logiciel: GameSpy Arcade - (.Pas de propriétaire.) [HKLM] -- GameSpy Arcade
O42 - Logiciel: Glary Utilities 2.28.0.1011 - (.Glarysoft Ltd.) [HKLM] -- Glary Utilities_is1
O42 - Logiciel: Google Update Helper - (.Google Inc..) [HKLM] -- {A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}
O42 - Logiciel: Google Earth - (.Google.) [HKLM] -- {4286E640-B5FB-11DF-AC4B-005056C00008}
O42 - Logiciel: Hotfix for Microsoft .NET Framework 3.5 SP1 (KB953595) - (.Microsoft Corporation.) [HKLM] -- {CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9}.KB953595
O42 - Logiciel: Hotfix for Microsoft .NET Framework 3.5 SP1 (KB958484) - (.Microsoft Corporation.) [HKLM] -- {CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9}.KB958484
O42 - Logiciel: Hotfix for Windows XP (KB954550-v5) - (.Microsoft Corporation.) [HKLM] -- KB954550-v5
O42 - Logiciel: Hotfix for Windows XP (KB976002-v5) - (.Microsoft Corporation.) [HKLM] -- KB976002-v5
O42 - Logiciel: ImageShack Uploader 2.2.0 - (.ImageShack Corp..) [HKLM] -- {8BCD7AE7-F713-4D50-BAB9-7839B9386870}
O42 - Logiciel: Installation Windows Live - (.Microsoft Corporation.) [HKLM] -- WinLiveSuite_Wave3
O42 - Logiciel: Installation Windows Live - (.Microsoft Corporation.) [HKLM] -- {133742BA-6F46-4D3E-85AF-78631D9AD8B8}
O42 - Logiciel: Java(TM) 6 Update 21 - (.Sun Microsystems, Inc..) [HKLM] -- {26A24AE4-039D-4CA4-87B4-2F83216020FF}
O42 - Logiciel: Junk Mail filter update - (.Microsoft Corporation.) [HKLM] -- {8E5233E1-7495-44FB-8DEB-4BE906D59619}
O42 - Logiciel: KaraFun 1.18 - (.Recisio.) [HKLM] -- KaraFun_is1
O42 - Logiciel: LUMIX Simple Viewer - (.Panasonic.) [HKLM] -- {2CDCCE7E-55D5-40CC-AEA0-ABA54713501F}
O42 - Logiciel: Lecteur Windows Media 11 - (.Pas de propriétaire.) [HKLM] -- Windows Media Player
O42 - Logiciel: MSVCRT - (.Microsoft.) [HKLM] -- {22B775E7-6C42-4FC5-8E10-9A5E3257BD94}
O42 - Logiciel: Ma-Config.com - (.Cybelsoft.) [HKLM] -- {96EB95A2-5245-4EA2-B6EA-B8BA2FBF64C4}
O42 - Logiciel: Malwarebytes' Anti-Malware - (.Malwarebytes Corporation.) [HKLM] -- Malwarebytes' Anti-Malware_is1
O42 - Logiciel: Microsoft .NET Framework 1.1 - (.Microsoft.) [HKLM] -- {CB2F7EDD-9D1F-43C1-90FC-4F52EAE172A1}
O42 - Logiciel: Microsoft .NET Framework 1.1 - (.Pas de propriétaire.) [HKLM] -- Microsoft .NET Framework 1.1 (1033)
O42 - Logiciel: Microsoft .NET Framework 1.1 French Language Pack - (.Microsoft.) [HKLM] -- {9A394342-4A68-4EBA-85A6-55B559F4E700}
O42 - Logiciel: Microsoft .NET Framework 1.1 Security Update (KB2416447) - (.Pas de propriétaire.) [HKLM] -- M2416447
O42 - Logiciel: Microsoft .NET Framework 1.1 Security Update (KB979906) - (.Pas de propriétaire.) [HKLM] -- M979906
O42 - Logiciel: Microsoft .NET Framework 2.0 Service Pack 2 - (.Microsoft Corporation.) [HKLM] -- {C09FB3CD-3D0C-3F2D-899A-6A1D67F2073F}
O42 - Logiciel: Microsoft .NET Framework 2.0 Service Pack 2 Language Pack - FRA - (.Microsoft Corporation.) [HKLM] -- {72AD53CC-CCC0-3757-8480-9EE176866A7C}
O42 - Logiciel: Microsoft .NET Framework 3.0 Service Pack 2 - (.Microsoft Corporation.) [HKLM] -- {A3051CD0-2F64-3813-A88D-B8DCCDE8F8C7}
O42 - Logiciel: Microsoft .NET Framework 3.0 Service Pack 2 Language Pack - FRA - (.Microsoft Corporation.) [HKLM] -- {0BD83598-C2EF-3343-847B-7D2E84599128}
O42 - Logiciel: Microsoft .NET Framework 3.5 Language Pack SP1 - fra - (.Microsoft Corporation.) [HKLM] -- {3E31821C-7917-367E-938E-E65FC413EA31}
O42 - Logiciel: Microsoft .NET Framework 3.5 SP1 - (.Microsoft Corporation.) [HKLM] -- Microsoft .NET Framework 3.5 SP1
O42 - Logiciel: Microsoft .NET Framework 3.5 SP1 - (.Microsoft Corporation.) [HKLM] -- {CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9}
O42 - Logiciel: Microsoft Choice Guard - (.Microsoft Corporation.) [HKLM] -- {F0E12BBA-AD66-4022-A453-A1C8A0C4D570}
O42 - Logiciel: Microsoft LifeCam - (.Microsoft.) [HKLM] -- {FAF04AFC-51FB-49C7-B811-668B013F79C4}
O42 - Logiciel: Microsoft Office Live Add-in 1.3 - (.Microsoft Corporation.) [HKLM] -- {57F0ED40-8F11-41AA-B926-4A66D0D1A9CC}
O42 - Logiciel: Microsoft Office PowerPoint Viewer 2007 (French) - (.Microsoft Corporation.) [HKLM] -- {95120000-00AF-040C-0000-0000000FF1CE}
O42 - Logiciel: Microsoft Office XP Professional avec FrontPage - (.Microsoft Corporation.) [HKLM] -- {9028040C-6000-11D3-8CFE-0050048383C9}
O42 - Logiciel: Microsoft SQL Server 2005 Compact Edition [ENU] - (.Microsoft Corporation.) [HKLM] -- {F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}
O42 - Logiciel: Microsoft Silverlight - (.Microsoft Corporation.) [HKLM] -- {89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}
O42 - Logiciel: Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053 - (.Microsoft Corporation.) [HKLM] -- {770657D0-A123-3C07-8E44-1C83EC895118}
O42 - Logiciel: Microsoft Visual C++ 2005 Redistributable - (.Microsoft Corporation.) [HKLM] -- {837b34e3-7c30-493c-8f6a-2b0f04e2912c}
O42 - Logiciel: Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 - (.Microsoft Corporation.) [HKLM] -- {1F1C2DFC-2D24-3E06-BCB8-725134ADF989}
O42 - Logiciel: Module de compatibilité pour Microsoft Office System 2007 - (.Microsoft Corporation.) [HKLM] -- {90120000-0020-040C-0000-0000000FF1CE}
O42 - Logiciel: Module linguistique Microsoft .NET Framework 3.5 SP1- fra - (.Microsoft Corporation.) [HKLM] -- Microsoft .NET Framework 3.5 Language Pack SP1 - fra
O42 - Logiciel: Mozilla Firefox (3.6.10) - (.Mozilla.) [HKLM] -- Mozilla Firefox (3.6.10)
O42 - Logiciel: OmniPage SE 2.0 - (.ScanSoft, Inc..) [HKLM] -- {79D5997E-BF79-48BB-8B41-9BE59C15C2D7}
O42 - Logiciel: PC Wizard 2010.1.94 - (.Laurent KUTIL & Franck DELATTRE.) [HKLM] -- PC Wizard 2010_is1
O42 - Logiciel: PHOTOfunSTUDIO -viewer- - (.Panasonic.) [HKLM] -- {9A9DBEBC-C800-4776-A970-D76D6AA405B1}
O42 - Logiciel: Paint.NET v3.5.5 - (.dotPDN LLC.) [HKLM] -- {F0E2B312-D7FD-4349-A9B6-E90B36DB1BD0}
O42 - Logiciel: Picasa 3 - (.Google, Inc..) [HKLM] -- Picasa 3
O42 - Logiciel: PunkBuster Services - (.Even Balance, Inc..) [HKLM] -- PunkBusterSvc
O42 - Logiciel: QuickTime - (.Apple Inc..) [HKLM] -- {28BE306E-5DA6-4F9C-BDB0-DBA3C8C6FFFD}
O42 - Logiciel: REALTEK GbE & FE Ethernet PCI NIC Driver - (.Realtek.) [HKLM] -- {ACCA20B0-C4D1-4BF5-BF21-0A0EB5EF9730}
O42 - Logiciel: Realtek AC'97 Audio - (.Realtek Semiconductor Corp..) [HKLM] -- {FB08F381-6533-4108-B7DD-039E11FBC27E}
O42 - Logiciel: Revo Uninstaller 1.89 - (.VS Revo Group.) [HKLM] -- Revo Uninstaller
O42 - Logiciel: SILKYPIX Developer Studio 2.1 SE - (.Nom de votre société.) [HKLM] -- InstallShield_{5B25274F-088A-4A24-AE12-4AEE9278025A}
O42 - Logiciel: SPAMfighter - (.SPAMfighter ApS.) [HKLM] -- SPAMfighter
O42 - Logiciel: Security Update for Microsoft .NET Framework 3.5 SP1 (KB2416473) - (.Microsoft Corporation.) [HKLM] -- {CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9}.KB2416473
O42 - Logiciel: Segoe UI - (.Microsoft Corp.) [HKLM] -- {A1F66FC9-11EE-4F2F-98C9-16F8D1E69FB7}
O42 - Logiciel: SiSoftware Sandra Lite 2010.SP2 - (.SiSoftware.) [HKLM] -- {C3113E55-7BCB-4de3-8EBF-60E6CE6B2296}_is1
O42 - Logiciel: Spybot - Search & Destroy - (.Safer Networking Limited.) [HKLM] -- {B4092C6D-E886-4CB2-BA68-FE5A88D31DE6}_is1
O42 - Logiciel: System Requirements Lab - (.Husdawg, LLC.) [HKLM] -- {1E99F5D7-4262-4C7C-9135-F066E7485811}
O42 - Logiciel: System Requirements Lab - (.Pas de propriétaire.) [HKLM] -- SystemRequirementsLab
O42 - Logiciel: TUGZip 3.5 - (.Christian Kindahl.) [HKLM] -- TUGZip_is1
O42 - Logiciel: TeamSpeak 2 RC2 - (.Dominating Bytes Design.) [HKLM] -- Teamspeak 2 RC2_is1
O42 - Logiciel: TeamSpeak 3 Client - (.TeamSpeak Systems GmbH.) [HKCU] -- TeamSpeak 3 Client
O42 - Logiciel: TeamSpeak Overlay BETA 2 (#63) - (.Pas de propriétaire.) [HKLM] -- TeamSpeakOverlay
O42 - Logiciel: Update for Microsoft .NET Framework 3.5 SP1 (KB963707) - (.Microsoft Corporation.) [HKLM] -- {CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9}.KB963707
O42 - Logiciel: VLC media player 1.1.4 - (.VideoLAN.) [HKLM] -- VLC media player
O42 - Logiciel: VirginMega.Fr Premium - (.VirginMega.Fr.) [HKLM] -- {D416E000-D999-470A-BCAC-98E717CC1AFC}
O42 - Logiciel: Visual C++ 2008 x86 Runtime - (v9.0.30729) - (.Microsoft Corporation.) [HKLM] -- {F333A33D-125C-32A2-8DCE-5C5D14231E27}
O42 - Logiciel: Visual C++ 2008 x86 Runtime - v9.0.30729.01 - (.Microsoft Corporation.) [HKLM] -- {F333A33D-125C-32A2-8DCE-5C5D14231E27}.vc_x86runtime_30729_01
O42 - Logiciel: Windows Feature Pack for Storage (32-bit) - IMAPI update for Blu-Ray - (.Microsoft Corporation.) [HKLM] -- KB952011
O42 - Logiciel: Windows Genuine Advantage Validation Tool (KB892130) - (.Microsoft Corporation.) [HKLM] -- KB892130
O42 - Logiciel: Windows Internet Explorer 8 - (.Microsoft Corporation.) [HKLM] -- ie8
O42 - Logiciel: Windows Live Call - (.Microsoft Corporation.) [HKLM] -- {B3B487E7-6171-4376-9074-B28082CEB504}
O42 - Logiciel: Windows Live Communications Platform - (.Microsoft Corporation.) [HKLM] -- {3175E049-F9A9-4A3D-8F19-AC9FB04514D1}
O42 - Logiciel: Windows Live FolderShare - (.Microsoft Corporation.) [HKLM] -- {76810709-A7D3-468D-9167-A1780C1E766C}
O42 - Logiciel: Windows Live Mail - (.Microsoft Corporation.) [HKLM] -- {5DD76286-9BE7-4894-A990-E905E91AC818}
O42 - Logiciel: Windows Live Messenger - (.Microsoft Corporation.) [HKLM] -- {445B183D-F4F1-45C8-B9DB-F11355CA657B}
O42 - Logiciel: Windows Media Format 11 runtime - (.Pas de propriétaire.) [HKLM] -- Windows Media Format Runtime
O42 - Logiciel: Windows Media Player Firefox Plugin - (.Microsoft Corp.) [HKLM] -- {69FDFBB6-351D-4B8C-89D8-867DC9D0A2A4}
O42 - Logiciel: avast! Free Antivirus - (.Alwil Software.) [HKLM] -- avast5
O42 - Logiciel: forteManager - (.LG Soft India.) [HKLM] -- {DA6FAB8D-E87A-4E8E-A3D3-B7B9F479C725}
O42 - Logiciel: vanBasco's Karaoke Player - (.Pas de propriétaire.) [HKLM] -- VMidi

---\\ HKCU & HKLM Software Keys
[HKCU\Software\ALWIL Software]
[HKCU\Software\ATI]
[HKCU\Software\Adobe]
[HKCU\Software\Apple Computer, Inc.]
[HKCU\Software\ArcSoft]
[HKCU\Software\Ashampoo]
[HKCU\Software\CDBurnerXP]
[HKCU\Software\CPUID]
[HKCU\Software\Canon]
[HKCU\Software\Classes]
[HKCU\Software\Clients]
[HKCU\Software\Corel]
[HKCU\Software\GameSpy]
[HKCU\Software\GamingMouse]
[HKCU\Software\GlarySoft]
[HKCU\Software\Google]
[HKCU\Software\IE]
[HKCU\Software\IM Providers]
[HKCU\Software\ImageShack Corp.]
[HKCU\Software\ImageShack]
[HKCU\Software\InstallShield]
[HKCU\Software\Intel]
[HKCU\Software\JavaSoft]
[HKCU\Software\LG Soft India]
[HKCU\Software\Lavalys]
[HKCU\Software\Macromedia]
[HKCU\Software\Malwarebytes' Anti-Malware]
[HKCU\Software\MozillaPlugins]
[HKCU\Software\Mozilla]
[HKCU\Software\Netscape]
[HKCU\Software\ODBC]
[HKCU\Software\Paint.NET]
[HKCU\Software\Panasonic]
[HKCU\Software\Piriform]
[HKCU\Software\Policies]
[HKCU\Software\RECISIO]
[HKCU\Software\RealNetworks]
[HKCU\Software\Redemption??]
[HKCU\Software\SPAMfighter]
[HKCU\Software\Safer Networking Limited]
[HKCU\Software\ScanSoft]
[HKCU\Software\Secunia]
[HKCU\Software\SiSoftware]
[HKCU\Software\System Requirements Lab]
[HKCU\Software\TUGZip]
[HKCU\Software\Trolltech]
[HKCU\Software\TuneUp]
[HKCU\Software\VB and VBA Program Settings]
[HKCU\Software\VSRevoGroup]
[HKCU\Software\VirginMega]
[HKCU\Software\YahooPartnerToolbar]
[HKCU\Software\cybelsoft]
[HKCU\Software\qbnut]
[HKCU\Software\vanBasco]
[HKLM\Software\ALWIL Software]
[HKLM\Software\ATI Technologies]
[HKLM\Software\ATI]
[HKLM\Software\Adobe]
[HKLM\Software\Alcohol Soft]
[HKLM\Software\Apple Computer, Inc.]
[HKLM\Software\Apple Inc.]
[HKLM\Software\ArcSoft]
[HKLM\Software\Ashampoo]
[HKLM\Software\Avance]
[HKLM\Software\C07ft5Y]
[HKLM\Software\Canon]
[HKLM\Software\Classes]
[HKLM\Software\Clients]
[HKLM\Software\DICE]
[HKLM\Software\Data Fellows]
[HKLM\Software\DivXNetworks]
[HKLM\Software\Electronic Arts]
[HKLM\Software\Even Balance]
[HKLM\Software\Gemplus]
[HKLM\Software\Google]
[HKLM\Software\ISL]
[HKLM\Software\InstallShield]
[HKLM\Software\Intel]
[HKLM\Software\JavaSoft]
[HKLM\Software\JreMetrics]
[HKLM\Software\LG]
[HKLM\Software\Lavasoft]
[HKLM\Software\Macromedia]
[HKLM\Software\Malwarebytes' Anti-Malware]
[HKLM\Software\MimarSinan]
[HKLM\Software\MozillaPlugins]
[HKLM\Software\Mozilla]
[HKLM\Software\ODBC]
[HKLM\Software\Paint.NET]
[HKLM\Software\Panasonic]
[HKLM\Software\Piriform]
[HKLM\Software\Policies]
[HKLM\Software\Program Groups]
[HKLM\Software\RECISIO]
[HKLM\Software\RTLSetup]
[HKLM\Software\RealNetworks]
[HKLM\Software\Realtek]
[HKLM\Software\Redemption??]
[HKLM\Software\RegisteredApplications]
[HKLM\Software\Safer Networking Limited]
[HKLM\Software\ScanSoft]
[HKLM\Software\Schlumberger]
[HKLM\Software\Secunia]
[HKLM\Software\SiSoftware]
[HKLM\Software\TUGZip]
[HKLM\Software\TeamSpeak 3 Client]
[HKLM\Software\TuneUp]
[HKLM\Software\VideoLAN]
[HKLM\Software\VirginMega]
[HKLM\Software\Windows 3.1 Migration Status]
[HKLM\Software\cybelsoft]
[HKLM\Software\mozilla.org]


---\\ Contenu des dossiers ProgramFiles/ProgramData (O43)
O43 - CFD:Common File Directory ----D- C:\Program Files\Adobe
O43 - CFD:Common File Directory ----D- C:\Program Files\Alcohol Soft
O43 - CFD:Common File Directory ----D- C:\Program Files\Alwil Software
O43 - CFD:Common File Directory ----D- C:\Program Files\Apple Software Update
O43 - CFD:Common File Directory ----D- C:\Program Files\ArcSoft
O43 - CFD:Common File Directory ----D- C:\Program Files\Ashampoo
O43 - CFD:Common File Directory ----D- C:\Program Files\ATI
O43 - CFD:Common File Directory ----D- C:\Program Files\ATI Technologies
O43 - CFD:Common File Directory ----D- C:\Program Files\Canon
O43 - CFD:Common File Directory ----D- C:\Program Files\CCleaner
O43 - CFD:Common File Directory ----D- C:\Program Files\CDBurnerXP
O43 - CFD:Common File Directory ----D- C:\Program Files\CPUID
O43 - CFD:Common File Directory ----D- C:\Program Files\Defraggler
O43 - CFD:Common File Directory ----D- C:\Program Files\EA GAMES
O43 - CFD:Common File Directory ----D- C:\Program Files\Electronic Arts
O43 - CFD:Common File Directory ----D- C:\Program Files\Fichiers communs
O43 - CFD:Common File Directory ----D- C:\Program Files\GameSpy Arcade
O43 - CFD:Common File Directory ----D- C:\Program Files\GIMP-2.0
O43 - CFD:Common File Directory ----D- C:\Program Files\Glary Utilities
O43 - CFD:Common File Directory ----D- C:\Program Files\Google
O43 - CFD:Common File Directory ----D- C:\Program Files\ImageShack Uploader
O43 - CFD:Common File Directory --H-D- C:\Program Files\InstallShield Installation Information
O43 - CFD:Common File Directory ----D- C:\Program Files\Internet Explorer
O43 - CFD:Common File Directory ----D- C:\Program Files\ISL
O43 - CFD:Common File Directory ----D- C:\Program Files\Java
O43 - CFD:Common File Directory ----D- C:\Program Files\KaraFun
O43 - CFD:Common File Directory ----D- C:\Program Files\Lavasoft
O43 - CFD:Common File Directory ----D- C:\Program Files\LG Soft India
O43 - CFD:Common File Directory ----D- C:\Program Files\ma-config.com
O43 - CFD:Common File Directory ----D- C:\Program Files\Malwarebytes' Anti-Malware
O43 - CFD:Common File Directory ----D- C:\Program Files\Messenger
O43 - CFD:Common File Directory ----D- C:\Program Files\Microsoft
O43 - CFD:Common File Directory ----D- C:\Program Files\microsoft frontpage
O43 - CFD:Common File Directory ----D- C:\Program Files\Microsoft LifeCam
O43 - CFD:Common File Directory ----D- C:\Program Files\Microsoft Office
O43 - CFD:Common File Directory ----D- C:\Program Files\Microsoft Silverlight
O43 - CFD:Common File Directory ----D- C:\Program Files\Microsoft SQL Server Compact Edition
O43 - CFD:Common File Directory ----D- C:\Program Files\Microsoft Visual Studio
O43 - CFD:Common File Directory ----D- C:\Program Files\Microsoft Windows 7 Upgrade Advisor
O43 - CFD:Common File Directory ----D- C:\Program Files\Movie Maker
O43 - CFD:Common File Directory ----D- C:\Program Files\Mozilla Firefox
O43 - CFD:Common File Directory ----D- C:\Program Files\MSBuild
O43 - CFD:Common File Directory ----D- C:\Program Files\MSECache
O43 - CFD:Common File Directory ----D- C:\Program Files\MSN Gaming Zone
O43 - CFD:Common File Directory ----D- C:\Program Files\MSXML 6.0
O43 - CFD:Common File Directory ----D- C:\Program Files\NetMeeting
O43 - CFD:Common File Directory ----D- C:\Program Files\NetSupport Manager
O43 - CFD:Common File Directory ----D- C:\Program Files\Opera
O43 - CFD:Common File Directory ----D- C:\Program Files\Outlook Express
O43 - CFD:Common File Directory ----D- C:\Program Files\P.A.U.L.A SG
O43 - CFD:Common File Directory ----D- C:\Program Files\Paint.NET
O43 - CFD:Common File Directory ----D- C:\Program Files\Panasonic
O43 - CFD:Common File Directory ----D- C:\Program Files\QuickTime
O43 - CFD:Common File Directory ----D- C:\Program Files\Real
O43 - CFD:Common File Directory ----D- C:\Program Files\Realtek
O43 - CFD:Common File Directory ----D- C:\Program Files\Realtek AC97
O43 - CFD:Common File Directory ----D- C:\Program Files\Reference Assemblies
O43 - CFD:Common File Directory ----D- C:\Program Files\Revoltec
O43 - CFD:Common File Directory ----D- C:\Program Files\ScanSoft
O43 - CFD:Common File Directory ----D- C:\Program Files\Securitoo
O43 - CFD:Common File Directory ----D- C:\Program Files\Services en ligne
O43 - CFD:Common File Directory ----D- C:\Program Files\SiSoftware
O43 - CFD:Common File Directory ----D- C:\Program Files\SPAMfighter
O43 - CFD:Common File Directory ----D- C:\Program Files\Spybot - Search & Destroy
O43 - CFD:Common File Directory ----D- C:\Program Files\SystemRequirementsLab
O43 - CFD:Common File Directory ----D- C:\Program Files\TeamSpeak 3
O43 - CFD:Common File Directory ----D- C:\Program Files\TeamSpeak SE3
O43 - CFD:Common File Directory ----D- C:\Program Files\Teamspeak2_RC2
O43 - CFD:Common File Directory ----D- C:\Program Files\TSO
O43 - CFD:Common File Directory ----D- C:\Program Files\TUGZip
O43 - CFD:Common File Directory --H-D- C:\Program Files\Uninstall Information
O43 - CFD:Common File Directory ----D- C:\Program Files\vanBasco's Karaoke Player
O43 - CFD:Common File Directory ----D- C:\Program Files\VideoLAN
O43 - CFD:Common File Directory ----D- C:\Program Files\VirginMega
O43 - CFD:Common File Directory ----D- C:\Program Files\VS Revo Group
O43 - CFD:Common File Directory ----D- C:\Program Files\Windows Live
O43 - CFD:Common File Directory ----D- C:\Program Files\Windows Media Connect 2
O43 - CFD:Common File Directory ----D- C:\Program Files\Windows Media Player
O43 - CFD:Common File Directory ----D- C:\Program Files\Windows NT
O43 - CFD:Common File Directory --H-D- C:\Program Files\WindowsUpdate
O43 - CFD:Common File Directory ----D- C:\Program Files\xerox
O43 - CFD:Common File Directory ----D- C:\Program Files\YesMessenger
O43 - CFD:Common File Directory ----D- C:\Program Files\ZHPDiag
O43 - CFD:Common File Directory ----D- C:\Program Files\Fichiers Communs\Adobe
O43 - CFD:Common File Directory ----D- C:\Program Files\Fichiers Communs\Apple
O43 - CFD:Common File Directory ----D- C:\Program Files\Fichiers Communs\Application
O43 - CFD:Common File Directory ----D- C:\Program Files\Fichiers Communs\ArcSoft
O43 - CFD:Common File Directory ----D- C:\Program Files\Fichiers Communs\Designer
O43 - CFD:Common File Directory ----D- C:\Program Files\Fichiers Communs\InstallShield
O43 - CFD:Common File Directory ----D- C:\Program Files\Fichiers Communs\Java
O43 - CFD:Common File Directory ----D- C:\Program Files\Fichiers Communs\Microsoft Shared
O43 - CFD:Common File Directory ----D- C:\Program Files\Fichiers Communs\MSSoap
O43 - CFD:Common File Directory ----D- C:\Program Files\Fichiers Communs\Real
O43 - CFD:Common File Directory ----D- C:\Program Files\Fichiers Communs\ScanSoft Shared
O43 - CFD:Common File Directory ----D- C:\Program Files\Fichiers Communs\Services
O43 - CFD:Common File Directory ----D- C:\Program Files\Fichiers Communs\SpeechEngines
O43 - CFD:Common File Directory ----D- C:\Program Files\Fichiers Communs\System
O43 - CFD:Common File Directory ----D- C:\Program Files\Fichiers Communs\Windows Live


---\\ Derniers fichiers modifiés ou crées sous Windows et System32 (O44)
O44 - LFC:[MD5.00000000000000000000000000000000] - 12/10/2010 - 18:24:08 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\WINDOWS\WindowsUpdate.log [1227471]
O44 - LFC:[MD5.D41D8CD98F00B204E9800998ECF8427E] - 12/10/2010 - 18:23:22 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\WINDOWS\0.log [0]
O44 - LFC:[MD5.00000000000000000000000000000000] - 12/10/2010 - 18:23:20 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\WINDOWS\wiadebug.log [159]
O44 - LFC:[MD5.00000000000000000000000000000000] - 12/10/2010 - 18:23:19 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\WINDOWS\wiaservc.log [50]
O44 - LFC:[MD5.6A2CB42966136854F4464516FBB4AE72] - 12/10/2010 - 18:22:55 -S-A- . (.Pas de propriétaire - Pas de description.) -- C:\WINDOWS\bootstat.dat [2048]
O44 - LFC:[MD5.50F67B630B378F27D1300BA547056BF6] - 12/10/2010 - 18:22:42 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\aaw7boot.log [265827]
O44 - LFC:[MD5.35F27933D01D10995FC6E237EF436809] - 12/10/2010 - 18:22:41 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\WINDOWS\System32\pcisys.ntk [8]
O44 - LFC:[MD5.00000000000000000000000000000000] - 12/10/2010 - 14:01:48 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\WINDOWS\SchedLgU.Txt [32460]
O44 - LFC:[MD5.73AD9C597E3449778497EB268CC28141] - 11/10/2010 - 20:05:37 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\WINDOWS\System32\PnkBstrB.xtr [215128]
O44 - LFC:[MD5.DB7F8840C92865CA6F3D2DB063A5B999] - 11/10/2010 - 19:36:48 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\WINDOWS\System32\drivers\PnkBstrK.sys [138384]
O44 - LFC:[MD5.73AD9C597E3449778497EB268CC28141] - 11/10/2010 - 19:36:39 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\WINDOWS\System32\PnkBstrB.exe [215128]
O44 - LFC:[MD5.ED69BFFF29F6D8242E094415D67C6632] - 11/10/2010 - 11:52:00 ---A- . (.CPUID - PC Wizard Control Panel Applet.) -- C:\WINDOWS\System32\PCWizard.cpl [27136]
O44 - LFC:[MD5.C9DD76D0EF94637C77FF8CA5E0FB0684] - 10/10/2010 - 20:17:42 ---A- . (.Pas de propriétaire - Pas

36 réponses

  • 1
  • 2
Réponse 1 / 36
Stéf en 73
12 oct. 2010 à 21:40
Oups, le voici !!!.


Rapport de ZHPDiag v1.27.03 par Nicolas Coolman, Update du 12/10/2010
Run by Stephane at 12/10/2010 21:31:25
Web site : http://www.premiumorange.com/zeb-help-process/zhpdiag.html
Contact : nicolascoolman@yahoo.fr

---\\ Web Browser
MSIE: Internet Explorer v8.0.6001.18702
MFIE: Mozilla Firefox (3.6.10)

---\\ System Information
Platform : Microsoft Windows XP (5.1.2600) Service Pack 3
Processor: x86 Family 15 Model 47 Stepping 2, AuthenticAMD
Operating System: 32 Bits
Boot mode: Normal (Normal boot)
Total RAM: 3070 MB (69% free)
System drive C: has 253 GB (85%) free of 298 GB

---\\ Logged in mode
Computer Name: STEPHANE
User Name: Stephane
All Users Names: SUPPORT_388945a0, Stephane, HelpAssistant, ASPNET, Administrateur,
Unselected Option: O1,O45,O61,O62,O65,O82
Logged in as Administrator

---\\ DOS/Devices
C:\ Hard drive, Flash drive, Thumb drive (Free 253 Go of 298 Go)
D:\ CD-ROM drive (Free 0 Go of 2 Go)
E:\ Floppy drive, Flash card reader, USB Key (Not Inserted)
F:\ Floppy drive, Flash card reader, USB Key (Not Inserted)
G:\ Floppy drive, Flash card reader, USB Key (Not Inserted)
H:\ Floppy drive, Flash card reader, USB Key (Not Inserted)


---\\ Security Center & Tools Informations
[HKLM\SOFTWARE\Microsoft\Security Center] AntiVirusOverride: OK
[HKLM\SOFTWARE\Microsoft\Security Center] AntiVirusDisableNotify: OK
[HKLM\SOFTWARE\Microsoft\Security Center] FirewallDisableNotify: OK
[HKLM\SOFTWARE\Microsoft\Security Center] FirewallOverride: OK
[HKLM\SOFTWARE\Microsoft\Security Center] UpdatesDisableNotify: OK


---\\ Processus lancés
[MD5.DAE9B06F344AE0F877D7CE3500C12342] - (.ATI Technologies Inc. - ATI External Event Utility EXE Module.) -- C:\WINDOWS\system32\Ati2evxx.exe [606208]
[MD5.93663F0EEAB2CE2CD8D3A60DD9C98CB2] - (.Lavasoft - Ad-Aware Service Application.) -- C:\Program Files\Lavasoft\Ad-Aware\AAWService.exe [1357464]
[MD5.ACB544D7254F366DFB48F380BC36CD25] - (.AVAST Software - avast! Service.) -- C:\Program Files\Alwil Software\Avast5\AvastSvc.exe [40384]
[MD5.2EAC3E6B4AAA9577D11B875BD02A35BE] - (.Lavasoft - Ad-Aware Tray Application.) -- C:\Program Files\Lavasoft\Ad-Aware\AAWTray.exe [864624]
[MD5.E7DC00A6E17D2D98BCF553B31678007C] - (.SPAMfighter ApS - SPAMfighter Agent.) -- C:\Program Files\SPAMfighter\SFAgent.exe [336520]
[MD5.6C1B31F5C16E03153F0037AC6C451FFD] - (.AVAST Software - avast! Antivirus.) -- C:\PROGRA~1\ALWILS~1\Avast5\avastUI.exe [2838912]
[MD5.80FD4D46B0E9B620CF757A9A5C789329] - (.Realtek Semiconductor Corp. - Realtek Sound Manager.) -- C:\WINDOWS\SOUNDMAN.EXE [577536]
[MD5.E7704CBF568815C1CAA6E513387BD3F2] - (.Advanced Micro Devices Inc. - Catalyst Control Center: Monitoring program.) -- C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\MOM.exe [65536]
[MD5.74EF310FAC89341CE2897B7F2C4A7B0F] - (.ATI Technologies Inc. - Catalyst Control Centre: Host application.) -- C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\ccc.exe [65536]
[MD5.ADC420616C501B45D26C0FD3EF1E54E4] - (.ArcSoft Inc. - ArcSoft Connect Service.) -- C:\Program Files\Fichiers communs\ArcSoft\Connection Service\Bin\ACService.exe [113152]
[MD5.793EF38A5FD086C3C8E48A8A861562ED] - (.Microsoft Corporation - Content Index service.) -- C:\WINDOWS\system32\cisvc.exe [5632]
[MD5.AF690339962C3144504AC0298BE4D29A] - (.NetSupport Ltd - NetSupport Client Application.) -- C:\PROGRA~1\NETSUP~1\client32.exe [31584]
[MD5.126A16F569122AE00AD3D12EF831D651] - (.Sun Microsystems, Inc. - Java(TM) Quick Starter Service.) -- C:\Program Files\Java\jre6\bin\jqs.exe [153376]
[MD5.11F714F85530A2BD134074DC30E99FCA] - (.Microsoft Corporation - Machine Debug Manager.) -- C:\Program Files\Fichiers communs\Microsoft Shared\VS7Debug\mdm.exe [322120]
[MD5.FD306FBCCE7ADB1077B709742E7148E9] - (.Pas de propriétaire - Pas de description.) -- C:\Program Files\CDBurnerXP\NMSAccessU.exe [71096]
[MD5.A1DD33D16F277CE34124EE52AB2C0F14] - (.Pas de propriétaire - Pas de description.) -- C:\WINDOWS\system32\PnkBstrA.exe [75064]
[MD5.45A0772A49914786AD64471205938CE9] - (.Microsoft Corporation - Service SNMP.) -- C:\WINDOWS\System32\snmp.exe [33280]
[MD5.CFF1808B2054502CF09C71508965554B] - (.SPAMfighter ApS - SPAMfighter Update Service.) -- C:\Program Files\SPAMfighter\sfus.exe [189064]
[MD5.72999AA48322DA948CE50C08B414A0EC] - (.Microsoft Corporation - Indexing Service filter daemon.) -- C:\WINDOWS\system32\cidaemon.exe [8192]
[MD5.7E52CC3AE4C554DABDAB096157F367FF] - (.Microsoft Corporation - Outlook Express.) -- C:\Program Files\Outlook Express\msimn.exe [60416]
[MD5.A26898623D61508C2FA3F5672C11FA5D] - (.Mozilla Corporation - Firefox.) -- C:\Program Files\Mozilla Firefox\firefox.exe [910296]
[MD5.D61ACEBA5AC21AB4EA814BBC5BF9E5BE] - (.Mozilla Corporation - Plugin Container for Firefox.) -- C:\Program Files\Mozilla Firefox\plugin-container.exe [14808]
[MD5.8FB89A0439396FE89243B8BB732E40E5] - (.Pas de propriétaire - Pas de description.) -- C:\Documents and Settings\Stephane\Bureau\BF2CC Admin 7Cie\BF2CC.exe [1826816]
[MD5.3D93B259ED367D848924ACAB4E89D5E1] - (.Nicolas Coolman - Diagnostic Tool.) -- C:\Program Files\ZHPDiag\ZHPDiag.exe [581120]


---\\ Page de démarrage de Mozilla Firefox (M0)
M0 - MFSP: prefs.js [Stephane - wb8mbmqk.default] https://start.mozilla.org/fr/


---\\ Programmes d'extension pour Mozilla Firefox (M2)
M2 - MFEP: prefs.js [Stephane - wb8mbmqk.default\personas@christopher.beard] [personas] Personas 1.6.1 (.Chris Beard.)
M2 - MFEP: prefs.js [Stephane - wb8mbmqk.default\piclens@cooliris.com] [] Cooliris 1.12.0.36949 (.Cooliris Inc..)
M2 - MFEP: prefs.js [Stephane - wb8mbmqk.default\viewtab@tamingdfox.blogspot.com] [] ViewTab 1.0.4 (.Aakash N S.)
M2 - MFEP: prefs.js [Stephane - wb8mbmqk.default\{1018e4d6-728f-4b20-ad56-37578a4de76b}] [] Flagfox 4.0.10 (.Dave Garrett.)
M2 - MFEP: prefs.js [Stephane - wb8mbmqk.default\{20a82645-c095-46ed-80e3-08825760534b}] [MicrosoftCG] Microsoft .NET Framework Assistant 1.2.1 (.Microsoft.)
M2 - MFEP: prefs.js [Stephane - wb8mbmqk.default\{9AA46F4F-4DC7-4c06-97AF-5035170634FE}] [] ImTranslator 3.3.5 (.Smart Link Corporation.)
M2 - MFEP: prefs.js [Stephane - wb8mbmqk.default\{a0d7ccb3-214d-498b-b4aa-0e8fda9a7bf7}] [WOT] WOT 20100908 (.WOT Services Oy.)
M2 - MFEP: prefs.js [Stephane - wb8mbmqk.default\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}] [adblockplus] Adblock Plus 1.2.2 (.Wladimir Palant.)
M2 - MFEP: prefs.js [Stephane - wb8mbmqk.default\{ef4e370e-d9f0-4e00-b93e-a4f274cfdd5a}] [] FoxTab 1.3 (.Roi M..)


---\\ Plugins de navigateurs Opera/Firefox(P1/P2)
P1 - OPN:Opera Plugin Navigator . (.Apple Inc. - The QuickTime Plugin allows you to view a wide variety of multimedia c.) -- C:\Program Files\Opera\Program\Plugins\npqtplugin.dll
P1 - OPN:Opera Plugin Navigator . (.Apple Inc. - The QuickTime Plugin allows you to view a wide variety of multimedia c.) -- C:\Program Files\Opera\Program\Plugins\npqtplugin2.dll
P1 - OPN:Opera Plugin Navigator . (.Apple Inc. - The QuickTime Plugin allows you to view a wide variety of multimedia c.) -- C:\Program Files\Opera\Program\Plugins\npqtplugin3.dll
P1 - OPN:Opera Plugin Navigator . (.Apple Inc. - The QuickTime Plugin allows you to view a wide variety of multimedia c.) -- C:\Program Files\Opera\Program\Plugins\npqtplugin4.dll
P1 - OPN:Opera Plugin Navigator . (.Apple Inc. - The QuickTime Plugin allows you to view a wide variety of multimedia c.) -- C:\Program Files\Opera\Program\Plugins\npqtplugin5.dll
P1 - OPN:Opera Plugin Navigator . (.Apple Inc. - The QuickTime Plugin allows you to view a wide variety of multimedia c.) -- C:\Program Files\Opera\Program\Plugins\npqtplugin6.dll
P1 - OPN:Opera Plugin Navigator . (.Apple Inc. - The QuickTime Plugin allows you to view a wide variety of multimedia c.) -- C:\Program Files\Opera\Program\Plugins\npqtplugin7.dll
P2 - FPN:Firefox Plugin Navigator . (.Microsoft Corporation - np-mswmp.) -- C:\Program Files\Mozilla Firefox\Plugins\np-mswmp.dll
P2 - FPN:Firefox Plugin Navigator . (.Sun Microsystems, Inc. - NPRuntime Script Plug-in Library for Java(TM) Deploy.) -- C:\Program Files\Mozilla Firefox\Plugins\npdeployJava1.dll
P2 - FPN:Firefox Plugin Navigator . (.mozilla.org - Default Plug-in.) -- C:\Program Files\Mozilla Firefox\Plugins\npnul32.dll
P2 - FPN:Firefox Plugin Navigator . (.Adobe Systems Inc. - Adobe PDF Plug-In For Firefox and Netscape "9.4.0".) -- C:\Program Files\Mozilla Firefox\Plugins\nppdf32.dll
P2 - FPN:Firefox Plugin Navigator . (.Apple Inc. - The QuickTime Plugin allows you to view a wide variety of multimedia c.) -- C:\Program Files\Mozilla Firefox\Plugins\npqtplugin.dll
P2 - FPN:Firefox Plugin Navigator . (.Apple Inc. - The QuickTime Plugin allows you to view a wide variety of multimedia c.) -- C:\Program Files\Mozilla Firefox\Plugins\npqtplugin2.dll
P2 - FPN:Firefox Plugin Navigator . (.Apple Inc. - The QuickTime Plugin allows you to view a wide variety of multimedia c.) -- C:\Program Files\Mozilla Firefox\Plugins\npqtplugin3.dll
P2 - FPN:Firefox Plugin Navigator . (.Apple Inc. - The QuickTime Plugin allows you to view a wide variety of multimedia c.) -- C:\Program Files\Mozilla Firefox\Plugins\npqtplugin4.dll
P2 - FPN:Firefox Plugin Navigator . (.Apple Inc. - The QuickTime Plugin allows you to view a wide variety of multimedia c.) -- C:\Program Files\Mozilla Firefox\Plugins\npqtplugin5.dll
P2 - FPN:Firefox Plugin Navigator . (.Apple Inc. - The QuickTime Plugin allows you to view a wide variety of multimedia c.) -- C:\Program Files\Mozilla Firefox\Plugins\npqtplugin6.dll
P2 - FPN:Firefox Plugin Navigator . (.Apple Inc. - The QuickTime Plugin allows you to view a wide variety of multimedia c.) -- C:\Program Files\Mozilla Firefox\Plugins\npqtplugin7.dll
P2 - FPN: [HKLM] [@adobe.com/FlashPlayer] - (.Pas de propriétaire - Pas de description.) -- C:\WINDOWS\system32\Macromed\Flash\NPSWF32.dll
P2 - FPN: [HKLM] [@Google.com/GoogleEarthPlugin] - (.Google - GEPlugin.) -- C:\Program Files\Google\Google Earth\plugin\npgeplugin.dll
P2 - FPN: [HKLM] [@google.com/npPicasa3,version=3.0.0] - (.Google, Inc. - Picasa plugin.) -- C:\Program Files\Google\Picasa3\npPicasa3.dll
P2 - FPN: [HKLM] [@java.com/JavaPlugin] - (.Sun Microsystems, Inc. - Next Generation Java Plug-in 1.6.0_21 for Mozilla browsers.) -- C:\Program Files\Java\jre6\bin\new_plugin\npjp2.dll
P2 - FPN: [HKLM] [@ma-config.com/HardwareDetection] - (.Cybelsoft - Plugin NPAPI Ma-Config.com.) -- C:\Program Files\ma-config.com\nphardwaredetection.dll
P2 - FPN: [HKLM] [@Microsoft.com/NpCtrl,version=1.0] - (. Microsoft Corporation - 4.0.50917.0.) -- c:\Program Files\Microsoft Silverlight\4.0.50917.0\npctrl.dll
P2 - FPN: [HKLM] [@microsoft.com/OfficeLive,version=1.3] - (.Microsoft Corp. - Office Live Update v1.3.) -- C:\Program Files\Microsoft\Office Live\npOLW.dll
P2 - FPN: [HKLM] [@microsoft.com/WLPG,version=14.0.8117.0416] - (.Microsoft Corporation - NPWLPG.) -- C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll
P2 - FPN: [HKLM] [@microsoft.com/WPF,version=3.5] - (.Microsoft Corporation - Windows Presentation Foundation (WPF) plug-in for Mozilla browsers.) -- c:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll
P2 - FPN: [HKLM] [@pack.google.com/Google Updater;version=13] - (.Google - Google Updater plugin<br><a href="http://pack.google.com/">http://pack.) -- C:\Program Files\Google\Google Updater\2.4.1536.6592\npCIDetect13.dll
P2 - FPN: [HKLM] [@tools.google.com/Google Update;version=8] - (.Google Inc. - Google Update.) -- C:\Program Files\Google\Update\1.2.183.29\npGoogleOneClick8.dll
P2 - FPN: [HKLM] [@videolan.org/vlc,version=1.1.4] - (.the VideoLAN Team - Version 1.1.4, copyright 1996-2010 The VideoLAN Team<br><a href="http:.) -- C:\Program Files\VideoLAN\VLC\npvlc.dll


---\\ Modification d'une valeur Ini (Changed inifile value, mapped to Registry) (F2)
F2 - REG:system.ini: UserInit=C:\WINDOWS\system32\userinit.exe,
F2 - REG:system.ini: VMApplet=rundll32 shell32,Control_RunDLL "sysdm.cpl"


---\\ Pages de démarrage d'Internet Explorer (R0)
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.la7eme.fr/
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.msn.com/fr-fr/?ocid=iehp


---\\ Pages de recherche d'Internet Explorer (R1)
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = https://www.google.com/?gws_rd=ssl
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = https://www.01net.com/
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://www.google.com/toolbar/ie8/sidebar.html
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = https://www.msn.com/fr-fr/?ocid=iehp
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Extensions Off Page = about:NoAdd-ons
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Security Risk Page = about:SecurityRisk
R1 - HKCU\Software\Microsoft\Internet Explorer\Search,SearchAssistant = http://www.google.com/toolbar/ie8/sidebar.html
R1 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant = https://www.bing.com/?toHttps=1&redig=8F3F334EA60E4B1CB4D040DCFE393A89{SUB_RFC1766}/srchasst/srchasst.htm


---\\ Internet Explorer URLSearchHook (R3)
R3 - URLSearchHook: (no name) - {08C06D61-F1F3-4799-86F8-BE1A89362C85} Clé orpheline
R3 - URLSearchHook: Microsoft Url Search Hook - {CFBFAE00-17A6-11D0-99CB-00C04FD64497} . (.Microsoft Corporation - Internet Explorer.) (8.00.6001.18939 (longhorn_ie8_gdr.100616-1700)) -- C:\WINDOWS\system32\ieframe.dll


---\\ Browser Helper Objects de navigateur (O2)
O2 - BHO: IEPlugin Class - {11222041-111B-46E3-BD29-EFB2449479B1} . (.ArcSoft, Inc. - ArcURLRecord Module.) -- C:\PROGRA~1\ArcSoft\VIDEOD~1\ARCURL~1.DLL
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} . (.Adobe Systems Incorporated - Adobe PDF Helper for Internet Explorer.) -- C:\Program Files\Fichiers communs\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: Spybot-S&D IE Protection - {53707962-6F74-2D53-2644-206D7942484F} . (.Safer Networking Limited - SBSD IE Protection.) -- C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O2 - BHO: (no name) - {5C255C8A-E604-49b4-9D64-90988571CECB} Clé orpheline
O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} . (.Microsoft Corporation - WindowsLiveLogin.dll.) -- C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: ToolbarBHO Class - {9519AF7E-638D-4933-BAD6-D33D23C79FE5} . (.ArcSoft Inc. - EXIFToolBar Module.) -- C:\PROGRA~1\ArcSoft\RAWTHU~1\EXIFToolBar.dll
O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} . (.Google Inc. - GoogleToolbarNotifier.) -- C:\Program Files\Google\GoogleToolbarNotifier\5.3.4501.1418\swg.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} . (.Sun Microsystems, Inc. - Java(TM) Platform SE binary.) -- C:\Program Files\Java\jre6\bin\jp2ssv.dll
O2 - BHO: JQSIEStartDetectorImpl - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} . (.Sun Microsystems, Inc. - Java(TM) Quick Starter binary.) -- C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll


---\\ Internet Explorer Toolbars (O3)
O3 - Toolbar: Easy-WebPrint - {327C2873-E90D-4c37-AA9D-10AC9BABA46C} . (.Pas de propriétaire - Easy-WebPrint.) -- C:\Program Files\Canon\Easy-WebPrint\Toolband.dll
O3 - Toolbar: RAW Thumbnail Viewer - {F301665A-12F8-4331-804A-5BCBD379668C} . (.ArcSoft Inc. - EXIFToolBar Module.) -- C:\PROGRA~1\ArcSoft\RAWTHU~1\EXIFToolBar.dll


---\\ Applications démarrées par registre & par dossier (O4)
O4 - HKLM\..\Run: [Ad-Watch] . (.Lavasoft - Ad-Aware Tray Application.) -- C:\Program Files\Lavasoft\Ad-Aware\AAWTray.exe
O4 - HKLM\..\Run: [SPAMfighter Agent] . (.SPAMfighter ApS - SPAMfighter Agent.) -- C:\Program Files\SPAMfighter\SFAgent.exe
O4 - HKLM\..\Run: [avast5] . (.AVAST Software - avast! Antivirus.) -- C:\PROGRA~1\ALWILS~1\Avast5\avastUI.exe
O4 - HKLM\..\Run: [StartCCC] . (.Advanced Micro Devices, Inc. - Catalyst® Control Center Launcher.) -- C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe
O4 - HKLM\..\Run: [SoundMan] . (.Realtek Semiconductor Corp. - Realtek Sound Manager.) -- C:\Windows\SOUNDMAN.exe
O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] . (.Adobe Systems Incorporated - Adobe Acrobat SpeedLauncher.) -- C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe
O4 - HKLM\..\Run: [Adobe ARM] . (.Adobe Systems Incorporated - Adobe Reader and Acrobat Manager.) -- C:\Program Files\Fichiers communs\Adobe\ARM\1.0\AdobeARM.exe
O4 - HKCU\..\Run: [CTFMON.EXE] . (.Microsoft Corporation - CTF Loader.) -- C:\WINDOWS\system32\ctfmon.exe
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] . (.Microsoft Corporation - CTF Loader.) -- C:\WINDOWS\system32\CTFMON.exe
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] . (.Microsoft Corporation - CTF Loader.) -- C:\WINDOWS\system32\CTFMON.exe
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] . (.Microsoft Corporation - CTF Loader.) -- C:\WINDOWS\system32\CTFMON.exe
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] . (.Microsoft Corporation - CTF Loader.) -- C:\WINDOWS\system32\CTFMON.exe
O4 - HKUS\S-1-5-21-1004336348-630328440-725345543-1004\..\Run: [CTFMON.EXE] . (.Microsoft Corporation - CTF Loader.) -- C:\WINDOWS\system32\ctfmon.exe


---\\ Autres liens utilisateurs (O4)
O4 - Global Startup: C:\Documents And Settings\All Users\Menu Démarrer\Programmes\Adobe Reader 9.lnk . (.Pas de propriétaire.) -- C:\WINDOWS\Installer\{AC76BA86-7AD7-1036-7B44-A94000000001}\SC_Reader.ico
O4 - Global Startup: C:\Documents And Settings\All Users\Menu Démarrer\Programmes\Apple Software Update.lnk . (.Pas de propriétaire.) -- C:\WINDOWS\Installer\{6956856F-B6B3-4BE0-BA0B-8F495BE32033}\AppleSoftwareUpdateIco.exe
O4 - Global Startup: C:\Documents And Settings\All Users\Menu Démarrer\Programmes\Conseiller de mise à niveau vers Windows 7.lnk . (.Microsoft Corporation.) -- C:\Program Files\Microsoft Windows 7 Upgrade Advisor\WindowsUpgradeAdvisor.exe
O4 - Global Startup: C:\Documents And Settings\All Users\Menu Démarrer\Programmes\Installation du Contrôle Parental.lnk . (.InstallShield Software Corporation.) -- C:\Program Files\Securitoo\Controle Parental\Controle_parental.exe
O4 - Global Startup: C:\Documents And Settings\All Users\Menu Démarrer\Programmes\Microsoft Access.lnk . (.Pas de propriétaire.) -- C:\WINDOWS\Installer\{9028040C-6000-11D3-8CFE-0050048383C9}\accicons.exe
O4 - Global Startup: C:\Documents And Settings\All Users\Menu Démarrer\Programmes\Microsoft Excel.lnk . (.Pas de propriétaire.) -- C:\WINDOWS\Installer\{9028040C-6000-11D3-8CFE-0050048383C9}\xlicons.exe
O4 - Global Startup: C:\Documents And Settings\All Users\Menu Démarrer\Programmes\Microsoft FrontPage.lnk . (.Pas de propriétaire.) -- C:\WINDOWS\Installer\{9028040C-6000-11D3-8CFE-0050048383C9}\misc.exe
O4 - Global Startup: C:\Documents And Settings\All Users\Menu Démarrer\Programmes\Microsoft Outlook.lnk . (.Pas de propriétaire.) -- C:\WINDOWS\Installer\{9028040C-6000-11D3-8CFE-0050048383C9}\outicon.exe
O4 - Global Startup: C:\Documents And Settings\All Users\Menu Démarrer\Programmes\Microsoft PowerPoint.lnk . (.Pas de propriétaire.) -- C:\WINDOWS\Installer\{9028040C-6000-11D3-8CFE-0050048383C9}\pptico.exe
O4 - Global Startup: C:\Documents And Settings\All Users\Menu Démarrer\Programmes\Microsoft Word.lnk . (.Pas de propriétaire.) -- C:\WINDOWS\Installer\{9028040C-6000-11D3-8CFE-0050048383C9}\wordicon.exe
O4 - Global Startup: C:\Documents And Settings\All Users\Menu Démarrer\Programmes\Paint.NET.lnk . (.dotPDN LLC.) -- C:\Program Files\Paint.NET\PaintDotNet.exe
O4 - Global Startup: C:\Documents And Settings\All Users\Menu Démarrer\Programmes\Visionneuse Microsoft Office PowerPoint 2007.lnk . (.Pas de propriétaire.) -- C:\WINDOWS\Installer\{95120000-00AF-040C-0000-0000000FF1CE}\ppvwicon.exe
O4 - Global Startup: C:\Documents And Settings\All Users\Menu Démarrer\Programmes\Windows Movie Maker.lnk . (.Microsoft Corporation.) -- C:\Program Files\Movie Maker\moviemk.exe
O4 - Global Startup: C:\Documents And Settings\Stephane\Menu Démarrer\Programmes\Assistance à distance.lnk . (.Microsoft Corporation.) -- C:\WINDOWS\system32\rcimlby.exe
O4 - Global Startup: C:\Documents And Settings\Stephane\Menu Démarrer\Programmes\Internet Explorer.lnk . (.Microsoft Corporation.) -- C:\Program Files\Internet Explorer\iexplore.exe
O4 - Global Startup: C:\Documents And Settings\Stephane\Menu Démarrer\Programmes\Outlook Express.lnk . (.Microsoft Corporation.) -- C:\Program Files\Outlook Express\msimn.exe
O4 - Global Startup: C:\Documents And Settings\Stephane\Menu Démarrer\Programmes\Windows Media Player.lnk . (.Microsoft Corporation.) -- C:\Program Files\Windows Media Player\wmplayer.exe


---\\ Lignes supplémentaires dans le menu contextuel d'Internet Explorer (O8)
O8 - Extra context menu item: Add to Google Photos Screensa&ver . (.Google Inc. - Google Photos Screensaver.) -- C:\WINDOWS\system32\GPhotos.scr
O8 - Extra context menu item: E&xporter vers Microsoft Excel . (.Microsoft Corporation - Microsoft Excel.) -- C:\PROGRA~1\MICROS~2\Office10\EXCEL.exe
O8 - Extra context menu item: Easy-WebPrint Ajouter à la liste d'impressions . (.Pas de propriétaire - Module de ressources Easy-WebPrint - Français.) -- C:\Program Files\Canon\Easy-WebPrint\Resource.dll
O8 - Extra context menu item: Easy-WebPrint Impression rapide . (.Pas de propriétaire - Module de ressources Easy-WebPrint - Français.) -- C:\Program Files\Canon\Easy-WebPrint\Resource.dll
O8 - Extra context menu item: Easy-WebPrint Imprimer . (.Pas de propriétaire - Module de ressources Easy-WebPrint - Français.) -- C:\Program Files\Canon\Easy-WebPrint\Resource.dll
O8 - Extra context menu item: Easy-WebPrint Prévisualiser . (.Pas de propriétaire - Module de ressources Easy-WebPrint - Français.) -- C:\Program Files\Canon\Easy-WebPrint\Resource.dll
O8 - Extra context menu item: Lire des données EXIF . (.Pas de propriétaire - Pas de description.) -- C:\Program Files\ArcSoft\RAW Thumbnail Viewer\ArcEXIFM.htm


---\\ Boutons situés sur la barre d'outils principale d'Internet Explorer (O9)
O9 - Extra 'Tools' menuitem: Spybot - Search & Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} . (.not file.) - (.not file.)
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} . (.not file.) - (.not file.)
O9 - Extra button: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} . (.Microsoft Corporation - Windows Messenger.) -- C:\Program Files\Messenger\msmsgs.exe


---\\ Winsock hijacker (Layered Service Provider) (O10)
O10 - WLSP:\000000000001\Winsock LSP File . (.Microsoft Corporation - Fournisseur de service Sockets 2.0 de Microsoft Windows.) -- C:\WINDOWS\system32\mswsock.dll
O10 - WLSP:\000000000002\Winsock LSP File . (.Microsoft Corporation - LDAP RnR Provider DLL.) -- C:\WINDOWS\system32\winrnr.dll
O10 - WLSP:\000000000003\Winsock LSP File . (.Microsoft Corporation - Fournisseur de service Sockets 2.0 de Microsoft Windows.) -- C:\WINDOWS\system32\mswsock.dll


---\\ Objets ActiveX (Downloaded Program Files)(O16)
O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) - http://update.microsoft.com/...
O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} (MUWebControl Class) - http://update.microsoft.com/...
O16 - DPF: {867E13F2-7F31-44FB-AC97-CD38E0DC46EF} ("Ma-Config.com control) - http://ma-config.com/activex/hardwaredetection_3_1_1_0.cab
O16 - DPF: {8FFBE65D-2C9C-4669-84BD-5829DC0B603C} () - http://fpdownload.macromedia.com/get/flashplayer/current/polarbear/ultrashim.cab
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab


---\\ Modification Domaine/Adresses DNS (O17)
O17 - HKLM\System\CCS\Services\Tcpip\..\{00CD8465-752D-43AD-9322-C441FB392CF3}: NameServer = 192.168.1.1,192.168.1.1
O17 - HKLM\System\CS1\Services\Tcpip\..\{00CD8465-752D-43AD-9322-C441FB392CF3}: NameServer = 192.168.1.1,192.168.1.1
O17 - HKLM\System\CS2\Services\Tcpip\..\{00CD8465-752D-43AD-9322-C441FB392CF3}: NameServer = 192.168.1.1,192.168.1.1
O17 - HKLM\System\CCS\Services\Tcpip\..\{00CD8465-752D-43AD-9322-C441FB392CF3}: DhcpNameServer = 192.168.1.1 192.168.1.1
O17 - HKLM\System\CCS\Services\Tcpip\..\{47B76963-7ADF-4B1B-93EA-26385602D412}: DhcpNameServer = 192.168.1.1
O17 - HKLM\System\CS1\Services\Tcpip\..\{00CD8465-752D-43AD-9322-C441FB392CF3}: DhcpNameServer = 192.168.1.1 192.168.1.1
O17 - HKLM\System\CS1\Services\Tcpip\..\{47B76963-7ADF-4B1B-93EA-26385602D412}: DhcpNameServer = 192.168.1.1
O17 - HKLM\System\CS2\Services\Tcpip\..\{00CD8465-752D-43AD-9322-C441FB392CF3}: DhcpNameServer = 192.168.1.1 192.168.1.1
O17 - HKLM\System\CS2\Services\Tcpip\..\{47B76963-7ADF-4B1B-93EA-26385602D412}: DhcpNameServer = 192.168.1.1
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.1 192.168.1.1


---\\ Valeur de Registre AppInit_DLLs et sous-clés Winlogon Notify (autorun) (O20)
O20 - Winlogon Notify: AtiExtEvent . (.ATI Technologies Inc. - ATI External Event Utility DLL Module.) -- C:\Windows\System32\Ati2evxx.dll
O20 - Winlogon Notify: crypt32chain . (.Microsoft Corporation - Crypto API32.) -- C:\Windows\System32\crypt32.dll
O20 - Winlogon Notify: cryptnet . (.Microsoft Corporation - Crypto Network Related API.) -- C:\Windows\System32\cryptnet.dll
O20 - Winlogon Notify: cscdll . (.Microsoft Corporation - Agent réseau hors connexion.) -- C:\Windows\System32\cscdll.dll
O20 - Winlogon Notify: dimsntfy . (.Microsoft Corporation - DIMS Notification Handler.) -- C:\WINDOWS\System32\dimsntfy.dll
O20 - Winlogon Notify: ScCertProp . (.Microsoft Corporation - DLL commune de réception des notifications.) -- C:\Windows\System32\wlnotify.dll
O20 - Winlogon Notify: Schedule . (.Microsoft Corporation - DLL commune de réception des notifications.) -- C:\Windows\System32\wlnotify.dll
O20 - Winlogon Notify: sclgntfy . (.Microsoft Corporation - DLL secondaire de notification de service d.) -- C:\Windows\System32\sclgntfy.dll
O20 - Winlogon Notify: SensLogn . (.Microsoft Corporation - DLL commune de réception des notifications.) -- C:\Windows\System32\WlNotify.dll
O20 - Winlogon Notify: termsrv . (.Microsoft Corporation - DLL commune de réception des notifications.) -- C:\Windows\System32\wlnotify.dll
O20 - Winlogon Notify: wlballoon . (.Microsoft Corporation - DLL commune de réception des notifications.) -- C:\Windows\System32\wlnotify.dll


---\\ Clé de Registre autorun ShellServiceObjectDelayLoad (SSO/SSODL) (O21)
O21 - SSODL: PostBootReminder - {7849596a-48ea-486e-8937-a2a3009f31a9} . (.Microsoft Corporation - DLL commune du shell Windows.) -- C:\WINDOWS\system32\SHELL32.dll
O21 - SSODL: CDBurn - {fbeb8a05-beee-4442-804e-409d6c4515e9} . (.Microsoft Corporation - DLL commune du shell Windows.) -- C:\WINDOWS\system32\SHELL32.dll
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} . (.Microsoft Corporation - Web Site Monitor.) -- C:\WINDOWS\system32\webcheck.dll
O21 - SSODL: SysTray - {35CEC8A3-2BE6-11D2-8773-92E220524153} . (.Microsoft Corporation - Objet du service d'environnement Systray.) -- C:\WINDOWS\system32\stobject.dll
O21 - SSODL: WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} . (.Microsoft Corporation - Windows Portable Device Shell Service Objec.) -- C:\WINDOWS\system32\WPDShServiceObj.dll


---\\ Clé de Registre autorun SharedTaskScheduler (STS) (O22)
O22 - SharedTaskScheduler: (no name) - {8C7461EF-2B13-11d2-BE35-3078302C2030} . (.Microsoft Corporation - Bibliothèque de l'interface utilisateur du.) -- C:\WINDOWS\system32\browseui.dll


---\\ Liste des services NT non Microsoft et non désactivés (O23)
O23 - Service: ArcSoft Connect Daemon (ACDaemon) . (.ArcSoft Inc. - ArcSoft Connect Service.) - C:\Program Files\Fichiers communs\ArcSoft\Connection Service\Bin\ACService.exe
O23 - Service: (Ati HotKey Poller) . (.ATI Technologies Inc. - ATI External Event Utility EXE Module.) - C:\WINDOWS\system32\Ati2evxx.exe
O23 - Service: ATI Smart (ATI Smart) . (.Pas de propriétaire - ATI Smart.) - C:\WINDOWS\system32\ati2sgag.exe
O23 - Service: avast! Antivirus (avast! Antivirus) . (.AVAST Software - avast! Service.) - C:\Program Files\Alwil Software\Avast5\AvastSvc.exe
O23 - Service: Client32 (Client32) . (.NetSupport Ltd - NetSupport Client Application.) - C:\PROGRA~1\NETSUP~1\client32.exe
O23 - Service: Service Google Update (gupdate1c9a6ed96ad92ec) (gupdate1c9a6ed96ad92ec) . (.Google Inc. - Programme d'installation de Google.) - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Google Software Updater (gusvc) . (.Google - gusvc.) - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: Java Quick Starter (JavaQuickStarterService) . (.Sun Microsystems, Inc. - Java(TM) Quick Starter Service.) - C:\Program Files\Java\jre6\bin\jqs.exe
O23 - Service: Lavasoft Ad-Aware Service (Lavasoft Ad-Aware Service) . (.Lavasoft - Ad-Aware Service Application.) - C:\Program Files\Lavasoft\Ad-Aware\AAWService.exe
O23 - Service: NMSAccessU (NMSAccessU) . (.Pas de propriétaire - Pas de description.) - C:\Program Files\CDBurnerXP\NMSAccessU.exe
O23 - Service: PnkBstrA (PnkBstrA) . (.Pas de propriétaire - Pas de description.) - C:\WINDOWS\system32\PnkBstrA.exe
O23 - Service: SPAMfighter Update Service (SPAMfighter Update Service) . (.SPAMfighter ApS - SPAMfighter Update Service.) - C:\Program Files\SPAMfighter\sfus.exe


---\\ Enumération Active Desktop & MHTML Editor (O24)
O24 - Default MHTML Editor: Last - .(.Microsoft Corporation - Microsoft Word.) - C:\Program Files\Microsoft Office\Office10\WINWORD.exe


---\\ Tâches planifiées en automatique (O39)
O39 - APT:Automatic Planified Task - C:\WINDOWS\Tasks\Ad-Aware Update (Weekly).job
O39 - APT:Automatic Planified Task - C:\WINDOWS\Tasks\AppleSoftwareUpdate.job
O39 - APT:Automatic Planified Task - C:\WINDOWS\Tasks\GlaryInitialize.job
O39 - APT:Automatic Planified Task - C:\WINDOWS\Tasks\Google Software Updater.job
O39 - APT:Automatic Planified Task - C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore1cab613e7eef8f4.job
O39 - APT:Automatic Planified Task - C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job
O39 - APT:Automatic Planified Task - C:\WINDOWS\Tasks\RealUpgradeLogonTaskS-1-5-21-1004336348-630328440-725345543-1004.job
O39 - APT:Automatic Planified Task - C:\WINDOWS\Tasks\RealUpgradeScheduledTaskS-1-5-21-1004336348-630328440-725345543-1004.job
O39 - APT:Automatic Planified Task - C:\WINDOWS\Tasks\User_Feed_Synchronization-{B6116612-660A-493D-AD2A-624A8654465B}.job


---\\ Composants installés (ActiveSetup Installed Components) (O40)
O40 - ASIC: Personnalisation du navigateur - >{60B49E34-C7CC-11D0-8953-00A0C90347FF}MICROS . (.Pas de propriétaire - Pas de description.) -- Rundll32 IEDKCS32.dll
O40 - ASIC: Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608500} . (.Sun Microsystems, Inc. - Java(TM) Platform SE binary.) -- C:\Program Files\Java\jre6\bin\regutils.dll
O40 - ASIC: NetMeeting 3.01 - {44BBA842-CC51-11CF-AAFA-00AA00B6015B} . (.Pas de propriétaire - Pas de description.) -- C:\WINDOWS\INF\msnetmtg.inf
O40 - ASIC: Windows Messenger 4.7 - {5945c046-1e7d-11d1-bc44-00c04fd912be} . (.Pas de propriétaire - Pas de description.) -- C:\WINDOWS\INF\msmsgs.inf
O40 - ASIC: Microsoft Windows Media Player - {6BF52A52-394A-11d3-B153-00C04F79FAA6} . (.Pas de propriétaire - Pas de description.) -- C:\WINDOWS\INF\wmp11.inf
O40 - ASIC: Fax - {8b15971b-5355-4c82-8c07-7e181ea07608} . (.Pas de propriétaire - Pas de description.) -- C:\WINDOWS\INF\fxsocm.inf
O40 - ASIC: Adobe Flash Player - {D27CDB6E-AE6D-11cf-96B8-444553540000} . (.Adobe Systems, Inc. - Adobe Flash Player 10.0 r45.) -- C:\WINDOWS\system32\Macromed\Flash\Flash10e.ocx


---\\ Pilotes lancés au démarrage (O41)
O41 - Driver: Pilote de processeur AMD HwPState (AmdPPM) . (.Advanced Micro Devices - AMD Processor Driver.) - C:\Windows\system32\DRIVERS\AmdPPM.sys


---\\ Logiciels installés (O42)
O42 - Logiciel: Ad-Aware - (.Lavasoft.) [HKLM] -- Ad-Aware
O42 - Logiciel: Ad-Aware - (.Lavasoft.) [HKLM] -- {DED53B0B-B67C-4244-AE6A-D6FD3C28D1EF}
O42 - Logiciel: Adobe Flash Player 10 ActiveX - (.Adobe Systems Incorporated.) [HKLM] -- Adobe Flash Player ActiveX
O42 - Logiciel: Adobe Flash Player 10 Plugin - (.Adobe Systems Incorporated.) [HKLM] -- Adobe Flash Player Plugin
O42 - Logiciel: Adobe Reader 9.4.0 - Français - (.Adobe Systems Incorporated.) [HKLM] -- {AC76BA86-7AD7-1036-7B44-A94000000001}
O42 - Logiciel: Analyseur MSXML 6.0 - (.Microsoft Corporation.) [HKLM] -- {5903C48B-E953-47B8-A651-B9222C483057}
O42 - Logiciel: Apple Application Support - (.Apple Inc..) [HKLM] -- {553255F3-78FD-40F1-A6F8-6882140265FE}
O42 - Logiciel: Apple Software Update - (.Apple Inc..) [HKLM] -- {6956856F-B6B3-4BE0-BA0B-8F495BE32033}
O42 - Logiciel: ArcSoft Panorama Maker 4 - (.ArcSoft.) [HKLM] -- {37530151-56A6-4CE4-9F9F-CE1F5A1356C6}
O42 - Logiciel: ArcSoft Photo Book Screen Saver - (.ArcSoft.) [HKLM] -- {E2EE273D-E111-4FFD-ACD4-78E1D35E01D2}
O42 - Logiciel: ArcSoft PhotoStudio 5.5 - (.ArcSoft.) [HKLM] -- {85309D89-7BE9-4094-BB17-24999C6118FC}
O42 - Logiciel: ArcSoft PhotoStudio Darkroom 2 - (.ArcSoft.) [HKLM] -- {40DA94AF-34B7-4BA7-A37F-26F899C031FF}
O42 - Logiciel: ArcSoft Print Creations - (.ArcSoft.) [HKLM] -- {F03EC055-F34E-4F6B-A684-8A370E11A304}
O42 - Logiciel: ArcSoft Print Creations - Album Page - (.ArcSoft.) [HKLM] -- {E6B4117F-AC59-4B13-9274-EB136E8897EE}
O42 - Logiciel: ArcSoft Print Creations - Brochures & Flyers - (.ArcSoft.) [HKLM] -- {01A1A019-E1D8-482A-BE17-5E118D17C0A0}
O42 - Logiciel: ArcSoft Print Creations - Funhouse - (.ArcSoft.) [HKLM] -- {9591C049-5CAE-4E89-A8D9-191F1899628B}
O42 - Logiciel: ArcSoft Print Creations - Funhouse II - (.ArcSoft.) [HKLM] -- {3CE47E6B-AE27-4E40-AC54-329EED96B933}
O42 - Logiciel: ArcSoft Print Creations - Greeting Card - (.ArcSoft.) [HKLM] -- {F04F9557-81A9-4293-BC49-2C216FA325A7}
O42 - Logiciel: ArcSoft Print Creations - Photo Book - (.ArcSoft.) [HKLM] -- {56589DFE-0C29-4DFE-8E42-887B771ECD23}
O42 - Logiciel: ArcSoft Print Creations - Photo Calendar - (.ArcSoft.) [HKLM] -- {CA9ED5E4-1548-485B-A293-417840060158}
O42 - Logiciel: ArcSoft Print Creations - Photo Prints - (.ArcSoft.) [HKLM] -- {95F875CC-1B85-43E6-B3E0-13EA04F3D995}
O42 - Logiciel: ArcSoft Print Creations - Poster Creator - (.ArcSoft.) [HKLM] -- {5D1C82E7-7EC0-4404-A8AD-36C3B444BC34}
O42 - Logiciel: ArcSoft Print Creations - Scrapbook - (.ArcSoft.) [HKLM] -- {B0D83FCD-9D42-43ED-8315-250326AADA02}
O42 - Logiciel: ArcSoft Print Creations - Slimline Card - (.ArcSoft.) [HKLM] -- {007B37D9-0C45-4202-834B-DD5FAAE99D63}
O42 - Logiciel: ArcSoft RAW Thumbnail Viewer - (.ArcSoft.) [HKLM] -- {82FAC25D-D0E1-4D60-9268-F3DD958BF052}
O42 - Logiciel: ArcSoft Scan-n-Stitch Deluxe - (.ArcSoft.) [HKLM] -- {363188E4-1A27-4DE6-BA48-823D2E205385}
O42 - Logiciel: ArcSoft Software Suite - (.Pas de propriétaire.) [HKLM] -- {497A1721-088F-41EF-8876-B43C9DA5528B}
O42 - Logiciel: ArcSoft Video Downloader - (.ArcSoft.) [HKLM] -- {C8B44566-839A-459C-A73D-49764CE216CC}
O42 - Logiciel: Ashampoo Burning Studio 10.0.3 - (.ashampoo GmbH & Co. KG.) [HKLM] -- Ashampoo Burning Studio 10_is1
O42 - Logiciel: Ashampoo Burning Studio 9.21 - (.ashampoo GmbH & Co. KG.) [HKLM] -- Ashampoo Burning Studio 9_is1
O42 - Logiciel: Assistant de connexion Windows Live - (.Microsoft Corporation.) [HKLM] -- {DCE8CD14-FBF5-4464-B9A4-E18E473546C7}
O42 - Logiciel: Battlefield 2(TM) - (.Pas de propriétaire.) [HKLM] -- {04858915-9F49-4B2A-AED4-DC49A7DE6A7B}
O42 - Logiciel: Battlefield Bad Company 2 - BETA - (.Electronic Arts.) [HKLM] -- {D53A3D44-C983-4D21-ABF6-2AA2AB88FB28}
O42 - Logiciel: CCleaner - (.Piriform.) [HKLM] -- CCleaner
O42 - Logiciel: CDBurnerXP - (.CDBurnerXP.) [HKLM] -- {7E265513-8CDA-4631-B696-F40D983F3B07}_is1
O42 - Logiciel: Canon MP Navigator 2.0 - (.Pas de propriétaire.) [HKLM] -- MP Navigator 2.0
O42 - Logiciel: Canon MP150 - (.Pas de propriétaire.) [HKLM] -- {CA9A3609-3ECC-4574-8824-A8161A71A603}
O42 - Logiciel: Canon Utilities Easy-PhotoPrint - (.Pas de propriétaire.) [HKLM] -- Easy-PhotoPrint
O42 - Logiciel: Catalyst Control Center - Branding - (.ATI.) [HKLM] -- {DDA34038-89BD-4804-B0B8-DC48D5DFB463}
O42 - Logiciel: Conseiller de mise à niveau vers Windows 7 - (.Microsoft Corporation.) [HKLM] -- {9D10CB57-B085-44c3-B435-2D193BA153F0}
O42 - Logiciel: Defraggler - (.Piriform.) [HKLM] -- Defraggler
O42 - Logiciel: Easy-WebPrint - (.Pas de propriétaire.) [HKLM] -- Easy-WebPrint
O42 - Logiciel: FightMouse Advanced - (.Revoltec.) [HKLM] -- {235C3A50-559F-4CAA-BAC3-4CC9ABF51976}
O42 - Logiciel: GIMP 2.6.8 - (.Pas de propriétaire.) [HKLM] -- WinGimp-2.0_is1
O42 - Logiciel: Galerie de photos Windows Live - (.Microsoft Corporation.) [HKLM] -- {1EE04769-91C4-4A06-92B7-FCAFE6BABDD9}
O42 - Logiciel: GameSpy Arcade - (.Pas de propriétaire.) [HKLM] -- GameSpy Arcade
O42 - Logiciel: Glary Utilities 2.28.0.1011 - (.Glarysoft Ltd.) [HKLM] -- Glary Utilities_is1
O42 - Logiciel: Google Update Helper - (.Google Inc..) [HKLM] -- {A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}
O42 - Logiciel: Google Earth - (.Google.) [HKLM] -- {4286E640-B5FB-11DF-AC4B-005056C00008}
O42 - Logiciel: Hotfix for Microsoft .NET Framework 3.5 SP1 (KB953595) - (.Microsoft Corporation.) [HKLM] -- {CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9}.KB953595
O42 - Logiciel: Hotfix for Microsoft .NET Framework 3.5 SP1 (KB958484) - (.Microsoft Corporation.) [HKLM] -- {CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9}.KB958484
O42 - Logiciel: Hotfix for Windows XP (KB954550-v5) - (.Microsoft Corporation.) [HKLM] -- KB954550-v5
O42 - Logiciel: Hotfix for Windows XP (KB976002-v5) - (.Microsoft Corporation.) [HKLM] -- KB976002-v5
O42 - Logiciel: ImageShack Uploader 2.2.0 - (.ImageShack Corp..) [HKLM] -- {8BCD7AE7-F713-4D50-BAB9-7839B9386870}
O42 - Logiciel: Installation Windows Live - (.Microsoft Corporation.) [HKLM] -- WinLiveSuite_Wave3
O42 - Logiciel: Installation Windows Live - (.Microsoft Corporation.) [HKLM] -- {133742BA-6F46-4D3E-85AF-78631D9AD8B8}
O42 - Logiciel: Java(TM) 6 Update 21 - (.Sun Microsystems, Inc..) [HKLM] -- {26A24AE4-039D-4CA4-87B4-2F83216020FF}
O42 - Logiciel: Junk Mail filter update - (.Microsoft Corporation.) [HKLM] -- {8E5233E1-7495-44FB-8DEB-4BE906D59619}
O42 - Logiciel: KaraFun 1.18 - (.Recisio.) [HKLM] -- KaraFun_is1
O42 - Logiciel: LUMIX Simple Viewer - (.Panasonic.) [HKLM] -- {2CDCCE7E-55D5-40CC-AEA0-ABA54713501F}
O42 - Logiciel: Lecteur Windows Media 11 - (.Pas de propriétaire.) [HKLM] -- Windows Media Player
O42 - Logiciel: MSVCRT - (.Microsoft.) [HKLM] -- {22B775E7-6C42-4FC5-8E10-9A5E3257BD94}
O42 - Logiciel: Ma-Config.com - (.Cybelsoft.) [HKLM] -- {96EB95A2-5245-4EA2-B6EA-B8BA2FBF64C4}
O42 - Logiciel: Malwarebytes' Anti-Malware - (.Malwarebytes Corporation.) [HKLM] -- Malwarebytes' Anti-Malware_is1
O42 - Logiciel: Microsoft .NET Framework 1.1 - (.Microsoft.) [HKLM] -- {CB2F7EDD-9D1F-43C1-90FC-4F52EAE172A1}
O42 - Logiciel: Microsoft .NET Framework 1.1 - (.Pas de propriétaire.) [HKLM] -- Microsoft .NET Framework 1.1 (1033)
O42 - Logiciel: Microsoft .NET Framework 1.1 French Language Pack - (.Microsoft.) [HKLM] -- {9A394342-4A68-4EBA-85A6-55B559F4E700}
O42 - Logiciel: Microsoft .NET Framework 1.1 Security Update (KB2416447) - (.Pas de propriétaire.) [HKLM] -- M2416447
O42 - Logiciel: Microsoft .NET Framework 1.1 Security Update (KB979906) - (.Pas de propriétaire.) [HKLM] -- M979906
O42 - Logiciel: Microsoft .NET Framework 2.0 Service Pack 2 - (.Microsoft Corporation.) [HKLM] -- {C09FB3CD-3D0C-3F2D-899A-6A1D67F2073F}
O42 - Logiciel: Microsoft .NET Framework 2.0 Service Pack 2 Language Pack - FRA - (.Microsoft Corporation.) [HKLM] -- {72AD53CC-CCC0-3757-8480-9EE176866A7C}
O42 - Logiciel: Microsoft .NET Framework 3.0 Service Pack 2 - (.Microsoft Corporation.) [HKLM] -- {A3051CD0-2F64-3813-A88D-B8DCCDE8F8C7}
O42 - Logiciel: Microsoft .NET Framework 3.0 Service Pack 2 Language Pack - FRA - (.Microsoft Corporation.) [HKLM] -- {0BD83598-C2EF-3343-847B-7D2E84599128}
O42 - Logiciel: Microsoft .NET Framework 3.5 Language Pack SP1 - fra - (.Microsoft Corporation.) [HKLM] -- {3E31821C-7917-367E-938E-E65FC413EA31}
O42 - Logiciel: Microsoft .NET Framework 3.5 SP1 - (.Microsoft Corporation.) [HKLM] -- Microsoft .NET Framework 3.5 SP1
O42 - Logiciel: Microsoft .NET Framework 3.5 SP1 - (.Microsoft Corporation.) [HKLM] -- {CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9}
O42 - Logiciel: Microsoft Choice Guard - (.Microsoft Corporation.) [HKLM] -- {F0E12BBA-AD66-4022-A453-A1C8A0C4D570}
O42 - Logiciel: Microsoft LifeCam - (.Microsoft.) [HKLM] -- {FAF04AFC-51FB-49C7-B811-668B013F79C4}
O42 - Logiciel: Microsoft Office Live Add-in 1.3 - (.Microsoft Corporation.) [HKLM] -- {57F0ED40-8F11-41AA-B926-4A66D0D1A9CC}
O42 - Logiciel: Microsoft Office PowerPoint Viewer 2007 (French) - (.Microsoft Corporation.) [HKLM] -- {95120000-00AF-040C-0000-0000000FF1CE}
O42 - Logiciel: Microsoft Office XP Professional avec FrontPage - (.Microsoft Corporation.) [HKLM] -- {9028040C-6000-11D3-8CFE-0050048383C9}
O42 - Logiciel: Microsoft SQL Server 2005 Compact Edition [ENU] - (.Microsoft Corporation.) [HKLM] -- {F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}
O42 - Logiciel: Microsoft Silverlight - (.Microsoft Corporation.) [HKLM] -- {89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}
O42 - Logiciel: Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053 - (.Microsoft Corporation.) [HKLM] -- {770657D0-A123-3C07-8E44-1C83EC895118}
O42 - Logiciel: Microsoft Visual C++ 2005 Redistributable - (.Microsoft Corporation.) [HKLM] -- {837b34e3-7c30-493c-8f6a-2b0f04e2912c}
O42 - Logiciel: Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 - (.Microsoft Corporation.) [HKLM] -- {1F1C2DFC-2D24-3E06-BCB8-725134ADF989}
O42 - Logiciel: Module de compatibilité pour Microsoft Office System 2007 - (.Microsoft Corporation.) [HKLM] -- {90120000-0020-040C-0000-0000000FF1CE}
O42 - Logiciel: Module linguistique Microsoft .NET Framework 3.5 SP1- fra - (.Microsoft Corporation.) [HKLM] -- Microsoft .NET Framework 3.5 Language Pack SP1 - fra
O42 - Logiciel: Mozilla Firefox (3.6.10) - (.Mozilla.) [HKLM] -- Mozilla Firefox (3.6.10)
O42 - Logiciel: OmniPage SE 2.0 - (.ScanSoft, Inc..) [HKLM] -- {79D5997E-BF79-48BB-8B41-9BE59C15C2D7}
O42 - Logiciel: PC Wizard 2010.1.94 - (.Laurent KUTIL & Franck DELATTRE.) [HKLM] -- PC Wizard 2010_is1
O42 - Logiciel: PHOTOfunSTUDIO -viewer- - (.Panasonic.) [HKLM] -- {9A9DBEBC-C800-4776-A970-D76D6AA405B1}
O42 - Logiciel: Paint.NET v3.5.5 - (.dotPDN LLC.) [HKLM] -- {F0E2B312-D7FD-4349-A9B6-E90B36DB1BD0}
O42 - Logiciel: Picasa 3 - (.Google, Inc..) [HKLM] -- Picasa 3
O42 - Logiciel: PunkBuster Services - (.Even Balance, Inc..) [HKLM] -- PunkBusterSvc
O42 - Logiciel: QuickTime - (.Apple Inc..) [HKLM] -- {28BE306E-5DA6-4F9C-BDB0-DBA3C8C6FFFD}
O42 - Logiciel: REALTEK GbE & FE Ethernet PCI NIC Driver - (.Realtek.) [HKLM] -- {ACCA20B0-C4D1-4BF5-BF21-0A0EB5EF9730}
O42 - Logiciel: Realtek AC'97 Audio - (.Realtek Semiconductor Corp..) [HKLM] -- {FB08F381-6533-4108-B7DD-039E11FBC27E}
O42 - Logiciel: Revo Uninstaller 1.89 - (.VS Revo Group.) [HKLM] -- Revo Uninstaller
O42 - Logiciel: SILKYPIX Developer Studio 2.1 SE - (.Nom de votre société.) [HKLM] -- InstallShield_{5B25274F-088A-4A24-AE12-4AEE9278025A}
O42 - Logiciel: SPAMfighter - (.SPAMfighter ApS.) [HKLM] -- SPAMfighter
O42 - Logiciel: Security Update for Microsoft .NET Framework 3.5 SP1 (KB2416473) - (.Microsoft Corporation.) [HKLM] -- {CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9}.KB2416473
O42 - Logiciel: Segoe UI - (.Microsoft Corp.) [HKLM] -- {A1F66FC9-11EE-4F2F-98C9-16F8D1E69FB7}
O42 - Logiciel: SiSoftware Sandra Lite 2010.SP2 - (.SiSoftware.) [HKLM] -- {C3113E55-7BCB-4de3-8EBF-60E6CE6B2296}_is1
O42 - Logiciel: Spybot - Search & Destroy - (.Safer Networking Limited.) [HKLM] -- {B4092C6D-E886-4CB2-BA68-FE5A88D31DE6}_is1
O42 - Logiciel: System Requirements Lab - (.Husdawg, LLC.) [HKLM] -- {1E99F5D7-4262-4C7C-9135-F066E7485811}
O42 - Logiciel: System Requirements Lab - (.Pas de propriétaire.) [HKLM] -- SystemRequirementsLab
O42 - Logiciel: TUGZip 3.5 - (.Christian Kindahl.) [HKLM] -- TUGZip_is1
O42 - Logiciel: TeamSpeak 2 RC2 - (.Dominating Bytes Design.) [HKLM] -- Teamspeak 2 RC2_is1
O42 - Logiciel: TeamSpeak 3 Client - (.TeamSpeak Systems GmbH.) [HKCU] -- TeamSpeak 3 Client
O42 - Logiciel: TeamSpeak Overlay BETA 2 (#63) - (.Pas de propriétaire.) [HKLM] -- TeamSpeakOverlay
O42 - Logiciel: Update for Microsoft .NET Framework 3.5 SP1 (KB963707) - (.Microsoft Corporation.) [HKLM] -- {CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9}.KB963707
O42 - Logiciel: VLC media player 1.1.4 - (.VideoLAN.) [HKLM] -- VLC media player
O42 - Logiciel: VirginMega.Fr Premium - (.VirginMega.Fr.) [HKLM] -- {D416E000-D999-470A-BCAC-98E717CC1AFC}
O42 - Logiciel: Visual C++ 2008 x86 Runtime - (v9.0.30729) - (.Microsoft Corporation.) [HKLM] -- {F333A33D-125C-32A2-8DCE-5C5D14231E27}
O42 - Logiciel: Visual C++ 2008 x86 Runtime - v9.0.30729.01 - (.Microsoft Corporation.) [HKLM] -- {F333A33D-125C-32A2-8DCE-5C5D14231E27}.vc_x86runtime_30729_01
O42 - Logiciel: Windows Feature Pack for Storage (32-bit) - IMAPI update for Blu-Ray - (.Microsoft Corporation.) [HKLM] -- KB952011
O42 - Logiciel: Windows Genuine Advantage Validation Tool (KB892130) - (.Microsoft Corporation.) [HKLM] -- KB892130
O42 - Logiciel: Windows Internet Explorer 8 - (.Microsoft Corporation.) [HKLM] -- ie8
O42 - Logiciel: Windows Live Call - (.Microsoft Corporation.) [HKLM] -- {B3B487E7-6171-4376-9074-B28082CEB504}
O42 - Logiciel: Windows Live Communications Platform - (.Microsoft Corporation.) [HKLM] -- {3175E049-F9A9-4A3D-8F19-AC9FB04514D1}
O42 - Logiciel: Windows Live FolderShare - (.Microsoft Corporation.) [HKLM] -- {76810709-A7D3-468D-9167-A1780C1E766C}
O42 - Logiciel: Windows Live Mail - (.Microsoft Corporation.) [HKLM] -- {5DD76286-9BE7-4894-A990-E905E91AC818}
O42 - Logiciel: Windows Live Messenger - (.Microsoft Corporation.) [HKLM] -- {445B183D-F4F1-45C8-B9DB-F11355CA657B}
O42 - Logiciel: Windows Media Format 11 runtime - (.Pas de propriétaire.) [HKLM] -- Windows Media Format Runtime
O42 - Logiciel: Windows Media Player Firefox Plugin - (.Microsoft Corp.) [HKLM] -- {69FDFBB6-351D-4B8C-89D8-867DC9D0A2A4}
O42 - Logiciel: avast! Free Antivirus - (.Alwil Software.) [HKLM] -- avast5
O42 - Logiciel: forteManager - (.LG Soft India.) [HKLM] -- {DA6FAB8D-E87A-4E8E-A3D3-B7B9F479C725}
O42 - Logiciel: vanBasco's Karaoke Player - (.Pas de propriétaire.) [HKLM] -- VMidi

---\\ HKCU & HKLM Software Keys
[HKCU\Software\ALWIL Software]
[HKCU\Software\ATI]
[HKCU\Software\Adobe]
[HKCU\Software\Apple Computer, Inc.]
[HKCU\Software\ArcSoft]
[HKCU\Software\Ashampoo]
[HKCU\Software\CDBurnerXP]
[HKCU\Software\CPUID]
[HKCU\Software\Canon]
[HKCU\Software\Classes]
[HKCU\Software\Clients]
[HKCU\Software\Corel]
[HKCU\Software\GameSpy]
[HKCU\Software\GamingMouse]
[HKCU\Software\GlarySoft]
[HKCU\Software\Google]
[HKCU\Software\IE]
[HKCU\Software\IM Providers]
[HKCU\Software\ImageShack Corp.]
[HKCU\Software\ImageShack]
[HKCU\Software\InstallShield]
[HKCU\Software\Intel]
[HKCU\Software\JavaSoft]
[HKCU\Software\LG Soft India]
[HKCU\Software\Lavalys]
[HKCU\Software\Macromedia]
[HKCU\Software\Malwarebytes' Anti-Malware]
[HKCU\Software\MozillaPlugins]
[HKCU\Software\Mozilla]
[HKCU\Software\Netscape]
[HKCU\Software\ODBC]
[HKCU\Software\Paint.NET]
[HKCU\Software\Panasonic]
[HKCU\Software\Piriform]
[HKCU\Software\Policies]
[HKCU\Software\RECISIO]
[HKCU\Software\RealNetworks]
[HKCU\Software\Redemption??]
[HKCU\Software\SPAMfighter]
[HKCU\Software\Safer Networking Limited]
[HKCU\Software\ScanSoft]
[HKCU\Software\Secunia]
[HKCU\Software\SiSoftware]
[HKCU\Software\System Requirements Lab]
[HKCU\Software\TUGZip]
[HKCU\Software\Trolltech]
[HKCU\Software\TuneUp]
[HKCU\Software\VB and VBA Program Settings]
[HKCU\Software\VSRevoGroup]
[HKCU\Software\VirginMega]
[HKCU\Software\YahooPartnerToolbar]
[HKCU\Software\cybelsoft]
[HKCU\Software\qbnut]
[HKCU\Software\vanBasco]
[HKLM\Software\ALWIL Software]
[HKLM\Software\ATI Technologies]
[HKLM\Software\ATI]
[HKLM\Software\Adobe]
[HKLM\Software\Alcohol Soft]
[HKLM\Software\Apple Computer, Inc.]
[HKLM\Software\Apple Inc.]
[HKLM\Software\ArcSoft]
[HKLM\Software\Ashampoo]
[HKLM\Software\Avance]
[HKLM\Software\C07ft5Y]
[HKLM\Software\Canon]
[HKLM\Software\Classes]
[HKLM\Software\Clients]
[HKLM\Software\DICE]
[HKLM\Software\Data Fellows]
[HKLM\Software\DivXNetworks]
[HKLM\Software\Electronic Arts]
[HKLM\Software\Even Balance]
[HKLM\Software\Gemplus]
[HKLM\Software\Google]
[HKLM\Software\ISL]
[HKLM\Software\InstallShield]
[HKLM\Software\Intel]
[HKLM\Software\JavaSoft]
[HKLM\Software\JreMetrics]
[HKLM\Software\LG]
[HKLM\Software\Lavasoft]
[HKLM\Software\Macromedia]
[HKLM\Software\Malwarebytes' Anti-Malware]
[HKLM\Software\MimarSinan]
[HKLM\Software\MozillaPlugins]
[HKLM\Software\Mozilla]
[HKLM\Software\ODBC]
[HKLM\Software\Paint.NET]
[HKLM\Software\Panasonic]
[HKLM\Software\Piriform]
[HKLM\Software\Policies]
[HKLM\Software\Program Groups]
[HKLM\Software\RECISIO]
[HKLM\Software\RTLSetup]
[HKLM\Software\RealNetworks]
[HKLM\Software\Realtek]
[HKLM\Software\Redemption??]
[HKLM\Software\RegisteredApplications]
[HKLM\Software\Safer Networking Limited]
[HKLM\Software\ScanSoft]
[HKLM\Software\Schlumberger]
[HKLM\Software\Secunia]
[HKLM\Software\SiSoftware]
[HKLM\Software\TUGZip]
[HKLM\Software\TeamSpeak 3 Client]
[HKLM\Software\TuneUp]
[HKLM\Software\VideoLAN]
[HKLM\Software\VirginMega]
[HKLM\Software\Windows 3.1 Migration Status]
[HKLM\Software\cybelsoft]
[HKLM\Software\mozilla.org]


---\\ Contenu des dossiers ProgramFiles/ProgramData (O43)
O43 - CFD:Common File Directory ----D- C:\Program Files\Adobe
O43 - CFD:Common File Directory ----D- C:\Program Files\Alcohol Soft
O43 - CFD:Common File Directory ----D- C:\Program Files\Alwil Software
O43 - CFD:Common File Directory ----D- C:\Program Files\Apple Software Update
O43 - CFD:Common File Directory ----D- C:\Program Files\ArcSoft
O43 - CFD:Common File Directory ----D- C:\Program Files\Ashampoo
O43 - CFD:Common File Directory ----D- C:\Program Files\ATI
O43 - CFD:Common File Directory ----D- C:\Program Files\ATI Technologies
O43 - CFD:Common File Directory ----D- C:\Program Files\Canon
O43 - CFD:Common File Directory ----D- C:\Program Files\CCleaner
O43 - CFD:Common File Directory ----D- C:\Program Files\CDBurnerXP
O43 - CFD:Common File Directory ----D- C:\Program Files\CPUID
O43 - CFD:Common File Directory ----D- C:\Program Files\Defraggler
O43 - CFD:Common File Directory ----D- C:\Program Files\EA GAMES
O43 - CFD:Common File Directory ----D- C:\Program Files\Electronic Arts
O43 - CFD:Common File Directory ----D- C:\Program Files\Fichiers communs
O43 - CFD:Common File Directory ----D- C:\Program Files\GameSpy Arcade
O43 - CFD:Common File Directory ----D- C:\Program Files\GIMP-2.0
O43 - CFD:Common File Directory ----D- C:\Program Files\Glary Utilities
O43 - CFD:Common File Directory ----D- C:\Program Files\Google
O43 - CFD:Common File Directory ----D- C:\Program Files\ImageShack Uploader
O43 - CFD:Common File Directory --H-D- C:\Program Files\InstallShield Installation Information
O43 - CFD:Common File Directory ----D- C:\Program Files\Internet Explorer
O43 - CFD:Common File Directory ----D- C:\Program Files\ISL
O43 - CFD:Common File Directory ----D- C:\Program Files\Java
O43 - CFD:Common File Directory ----D- C:\Program Files\KaraFun
O43 - CFD:Common File Directory ----D- C:\Program Files\Lavasoft
O43 - CFD:Common File Directory ----D- C:\Program Files\LG Soft India
O43 - CFD:Common File Directory ----D- C:\Program Files\ma-config.com
O43 - CFD:Common File Directory ----D- C:\Program Files\Malwarebytes' Anti-Malware
O43 - CFD:Common File Directory ----D- C:\Program Files\Messenger
O43 - CFD:Common File Directory ----D- C:\Program Files\Microsoft
O43 - CFD:Common File Directory ----D- C:\Program Files\microsoft frontpage
O43 - CFD:Common File Directory ----D- C:\Program Files\Microsoft LifeCam
O43 - CFD:Common File Directory ----D- C:\Program Files\Microsoft Office
O43 - CFD:Common File Directory ----D- C:\Program Files\Microsoft Silverlight
O43 - CFD:Common File Directory ----D- C:\Program Files\Microsoft SQL Server Compact Edition
O43 - CFD:Common File Directory ----D- C:\Program Files\Microsoft Visual Studio
O43 - CFD:Common File Directory ----D- C:\Program Files\Microsoft Windows 7 Upgrade Advisor
O43 - CFD:Common File Directory ----D- C:\Program Files\Movie Maker
O43 - CFD:Common File Directory ----D- C:\Program Files\Mozilla Firefox
O43 - CFD:Common File Directory ----D- C:\Program Files\MSBuild
O43 - CFD:Common File Directory ----D- C:\Program Files\MSECache
O43 - CFD:Common File Directory ----D- C:\Program Files\MSN Gaming Zone
O43 - CFD:Common File Directory ----D- C:\Program Files\MSXML 6.0
O43 - CFD:Common File Directory ----D- C:\Program Files\NetMeeting
O43 - CFD:Common File Directory ----D- C:\Program Files\NetSupport Manager
O43 - CFD:Common File Directory ----D- C:\Program Files\Opera
O43 - CFD:Common File Directory ----D- C:\Program Files\Outlook Express
O43 - CFD:Common File Directory ----D- C:\Program Files\P.A.U.L.A SG
O43 - CFD:Common File Directory ----D- C:\Program Files\Paint.NET
O43 - CFD:Common File Directory ----D- C:\Program Files\Panasonic
O43 - CFD:Common File Directory ----D- C:\Program Files\QuickTime
O43 - CFD:Common File Directory ----D- C:\Program Files\Real
O43 - CFD:Common File Directory ----D- C:\Program Files\Realtek
O43 - CFD:Common File Directory ----D- C:\Program Files\Realtek AC97
O43 - CFD:Common File Directory ----D- C:\Program Files\Reference Assemblies
O43 - CFD:Common File Directory ----D- C:\Program Files\Revoltec
O43 - CFD:Common File Directory ----D- C:\Program Files\ScanSoft
O43 - CFD:Common File Directory ----D- C:\Program Files\Securitoo
O43 - CFD:Common File Directory ----D- C:\Program Files\Services en ligne
O43 - CFD:Common File Directory ----D- C:\Program Files\SiSoftware
O43 - CFD:Common File Directory ----D- C:\Program Files\SPAMfighter
O43 - CFD:Common File Directory ----D- C:\Program Files\Spybot - Search & Destroy
O43 - CFD:Common File Directory ----D- C:\Program Files\SystemRequirementsLab
O43 - CFD:Common File Directory ----D- C:\Program Files\TeamSpeak 3
O43 - CFD:Common File Directory ----D- C:\Program Files\TeamSpeak SE3
O43 - CFD:Common File Directory ----D- C:\Program Files\Teamspeak2_RC2
O43 - CFD:Common File Directory ----D- C:\Program Files\TSO
O43 - CFD:Common File Directory ----D- C:\Program Files\TUGZip
O43 - CFD:Common File Directory --H-D- C:\Program Files\Uninstall Information
O43 - CFD:Common File Directory ----D- C:\Program Files\vanBasco's Karaoke Player
O43 - CFD:Common File Directory ----D- C:\Program Files\VideoLAN
O43 - CFD:Common File Directory ----D- C:\Program Files\VirginMega
O43 - CFD:Common File Directory ----D- C:\Program Files\VS Revo Group
O43 - CFD:Common File Directory ----D- C:\Program Files\Windows Live
O43 - CFD:Common File Directory ----D- C:\Program Files\Windows Media Connect 2
O43 - CFD:Common File Directory ----D- C:\Program Files\Windows Media Player
O43 - CFD:Common File Directory ----D- C:\Program Files\Windows NT
O43 - CFD:Common File Directory --H-D- C:\Program Files\WindowsUpdate
O43 - CFD:Common File Directory ----D- C:\Program Files\xerox
O43 - CFD:Common File Directory ----D- C:\Program Files\YesMessenger
O43 - CFD:Common File Directory ----D- C:\Program Files\ZHPDiag
O43 - CFD:Common File Directory ----D- C:\Program Files\Fichiers Communs\Adobe
O43 - CFD:Common File Directory ----D- C:\Program Files\Fichiers Communs\Apple
O43 - CFD:Common File Directory ----D- C:\Program Files\Fichiers Communs\Application
O43 - CFD:Common File Directory ----D- C:\Program Files\Fichiers Communs\ArcSoft
O43 - CFD:Common File Directory ----D- C:\Program Files\Fichiers Communs\Designer
O43 - CFD:Common File Directory ----D- C:\Program Files\Fichiers Communs\InstallShield
O43 - CFD:Common File Directory ----D- C:\Program Files\Fichiers Communs\Java
O43 - CFD:Common File Directory ----D- C:\Program Files\Fichiers Communs\Microsoft Shared
O43 - CFD:Common File Directory ----D- C:\Program Files\Fichiers Communs\MSSoap
O43 - CFD:Common File Directory ----D- C:\Program Files\Fichiers Communs\Real
O43 - CFD:Common File Directory ----D- C:\Program Files\Fichiers Communs\ScanSoft Shared
O43 - CFD:Common File Directory ----D- C:\Program Files\Fichiers Communs\Services
O43 - CFD:Common File Directory ----D- C:\Program Files\Fichiers Communs\SpeechEngines
O43 - CFD:Common File Directory ----D- C:\Program Files\Fichiers Communs\System
O43 - CFD:Common File Directory ----D- C:\Program Files\Fichiers Communs\Windows Live


---\\ Derniers fichiers modifiés ou crées sous Windows et System32 (O44)
O44 - LFC:[MD5.00000000000000000000000000000000] - 12/10/2010 - 18:24:08 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\WINDOWS\WindowsUpdate.log [1227471]
O44 - LFC:[MD5.D41D8CD98F00B204E9800998ECF8427E] - 12/10/2010 - 18:23:22 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\WINDOWS\0.log [0]
O44 - LFC:[MD5.00000000000000000000000000000000] - 12/10/2010 - 18:23:20 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\WINDOWS\wiadebug.log [159]
O44 - LFC:[MD5.00000000000000000000000000000000] - 12/10/2010 - 18:23:19 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\WINDOWS\wiaservc.log [50]
O44 - LFC:[MD5.6A2CB42966136854F4464516FBB4AE72] - 12/10/2010 - 18:22:55 -S-A- . (.Pas de propriétaire - Pas de description.) -- C:\WINDOWS\bootstat.dat [2048]
O44 - LFC:[MD5.50F67B630B378F27D1300BA547056BF6] - 12/10/2010 - 18:22:42 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\aaw7boot.log [265827]
O44 - LFC:[MD5.35F27933D01D10995FC6E237EF436809] - 12/10/2010 - 18:22:41 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\WINDOWS\System32\pcisys.ntk [8]
O44 - LFC:[MD5.00000000000000000000000000000000] - 12/10/2010 - 14:01:48 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\WINDOWS\SchedLgU.Txt [32460]
O44 - LFC:[MD5.73AD9C597E3449778497EB268CC28141] - 11/10/2010 - 20:05:37 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\WINDOWS\System32\PnkBstrB.xtr [215128]
O44 - LFC:[MD5.DB7F8840C92865CA6F3D2DB063A5B999] - 11/10/2010 - 19:36:48 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\WINDOWS\System32\drivers\PnkBstrK.sys [138384]
O44 - LFC:[MD5.73AD9C597E3449778497EB268CC28141] - 11/10/2010 - 19:36:39 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\WINDOWS\System32\PnkBstrB.exe [215128]
O44 - LFC:[MD5.ED69BFFF29F6D8242E094415D67C6632] - 11/10/2010 - 11:52:00 ---A- . (.CPUID - PC Wizard Control Panel Applet.) -- C:\WINDOWS\System32\PCWizard.cpl [27136]
O44 - LFC:[MD5.C9DD76D0EF94637C77FF8CA5E0FB0684] - 10/10/2010 - 20:17:42 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\WINDOWS\system.ini [227]
O44 - LFC:[MD5.B1C4E7AC00CB1935B4292A4F8408FC3D] - 10/10/2010 - 20:17:42 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\WINDOWS\win.ini [603]
O44 - LFC:[MD5.47BE242C536F0F99413A567E3D23F604] - 10/10/2010 - 2
0
Réponse 2 / 36
Utilisateur anonyme
12 oct. 2010 à 21:43
desinstalle spamfighter
desinstalle AD-Aware


DESACTIVE TON ANTIVIRUS ET TON PAREFEU SI PRESENTS !!!!! (car l'outil est detecté a tort comme infection contenant un module qui sert à arrêter des processus , et un autre servant à prendre des droits dans le registre pour effectuer des suppressions)

▶ Télécharge ici :List_Kill'em

et enregistre le sur ton bureau

si tu as XP => double clique
si tu as Vista ou windows 7 => clic droit "executer en tant que...."

sur le raccourci sur ton bureau pour lancer l'installation

Laisse coché :

♦ Executer List_Kill'em

une fois terminée , clic sur "terminer" et le programme se lancera seul

Il commencera par telecharger et installer ses mises à jour , puis te donnera son menu

choisis l'option Search

▶ laisse travailler l'outil

il se peut qu'une boite de dialogue s'ouvre , dans ce cas clique sur "ok" ou "Agree"

à l'apparition de la fenetre blanche , c'est un peu long , c'est normal ,c'est une recherche supplementaire de fichiers cachés , le programme n'est pas bloqué.

▶ Poste le contenu du rapport qui s'ouvre aux 100 % du scan à l'ecran "COMPLETED"

▶▶▶ NE LE POSTE PAS SUR LE FORUM

Pour me le transmettre clique sur ce lien : http://www.cijoint.fr/

▶ Clique sur Parcourir et cherche le fichier C:\List'em.txt

▶ Clique sur Ouvrir.

▶ Clique sur "Cliquez ici pour déposer le fichier".

Un lien de cette forme :

http://www.cijoint.fr/cjlink.php?file=265368/cijSKAP5fU.txt

est ajouté dans la page.

▶ Copie ce lien dans ta réponse.

▶ Fais de même avec more.txt qui se trouve sur ton bureau
0
Réponse 3 / 36
Stéf en 73
12 oct. 2010 à 21:48
Merci pour ton commentaire, je vais m'y hâté !. Mais j'ai d'abord une question subsidiaire : pourquoi veux-tu que je désinstalle SpamFigther et Ad-Aware ?!.
Merci !.
0
Réponse 4 / 36
Utilisateur anonyme
12 oct. 2010 à 21:49
parce qu'ils ne valent rien !
0

Vous n’avez pas trouvé la réponse que vous recherchez ?

Posez votre question
Réponse 5 / 36
Stéf en 73
12 oct. 2010 à 22:06
... si je désactive l'anti-virus et le pare-feu, je ne suis plus protégé pendant un laps de temps ....... Aucun souci ???!!!.
0
Réponse 6 / 36
Utilisateur anonyme
12 oct. 2010 à 22:08
non il te suffira de reactiver à la fin du scan si tu as peur quoique j'ai tourné plusieurs mois sans aucune protection (remarque je restais qu'ici ^^ ) et il m'est rien arrivé
0
Réponse 7 / 36
Stéf en 73
12 oct. 2010 à 22:12
Dis-moi, y a pas moyen à la rigueur de faire ce que tu dis avec l'anti-virus et le pare-feu ??!. Ca gène ??!.
0
Réponse 8 / 36
Utilisateur anonyme
12 oct. 2010 à 22:13
non vas-y avast est tellement nul qu'il ne devrait pas trop couiner ^^
0
Réponse 9 / 36
Stéf en 73
12 oct. 2010 à 22:15
Ok c'est parti !.
Quel est cet outil qui est détecter à tord ??!.
0
Réponse 10 / 36
Utilisateur anonyme
12 oct. 2010 à 22:16
par l antivirus ? ben...List_Kill'em...
0
Réponse 11 / 36
Stéf en 73
12 oct. 2010 à 22:18
Ah ok, j'avais pas compris ainsi, ça roule !...... et ton logiciel scanne !!!........
A suivre !.
0
Réponse 12 / 36
Utilisateur anonyme
12 oct. 2010 à 22:20
ok t'as XP ca risque d'etre un peu long..
0
Réponse 13 / 36
Stéf en 73
Modifié par Stéf en 73 le 12/10/2010 à 22:32
http://www.cijoint.fr/




¤¤¤¤¤¤¤¤¤¤ More informations ¤¤¤¤¤¤¤¤¤¤

¤¤¤¤¤¤¤¤¤¤¤ DLLs ¤¤¤¤¤¤¤¤¤¤

------------------------------------------------------------------------------
explorer.exe pid: 1656
Command line: C:\WINDOWS\Explorer.EXE
Base Size Version Path
0x01000000 0x100000 6.00.2900.5512 C:\WINDOWS\Explorer.EXE
0x7c910000 0xb9000 5.01.2600.5755 C:\WINDOWS\system32\ntdll.dll
0x7c800000 0x106000 5.01.2600.5781 C:\WINDOWS\system32\kernel32.dll
0x77da0000 0xac000 5.01.2600.5755 C:\WINDOWS\system32\ADVAPI32.dll
0x77e50000 0x93000 5.01.2600.6015 C:\WINDOWS\system32\RPCRT4.dll
0x77fc0000 0x11000 5.01.2600.5834 C:\WINDOWS\system32\Secur32.dll
0x75f10000 0xfd000 6.00.2900.5512 C:\WINDOWS\system32\BROWSEUI.dll
0x77ef0000 0x49000 5.01.2600.5698 C:\WINDOWS\system32\GDI32.dll
0x7e390000 0x91000 5.01.2600.5512 C:\WINDOWS\system32\USER32.dll
0x77be0000 0x58000 7.00.2600.5512 C:\WINDOWS\system32\msvcrt.dll
0x774a0000 0x13d000 5.01.2600.5512 C:\WINDOWS\system32\ole32.dll
0x77f40000 0x76000 6.00.2900.5912 C:\WINDOWS\system32\SHLWAPI.dll
0x770e0000 0x8b000 5.01.2600.5512 C:\WINDOWS\system32\OLEAUT32.dll
0x7e210000 0x171000 6.00.2900.5512 C:\WINDOWS\system32\SHDOCVW.dll
0x779e0000 0x97000 5.131.2600.5512 C:\WINDOWS\system32\CRYPT32.dll
0x77a80000 0x12000 5.01.2600.5875 C:\WINDOWS\system32\MSASN1.dll
0x76610000 0x84000 5.131.2600.5512 C:\WINDOWS\system32\CRYPTUI.dll
0x6fee0000 0x55000 5.01.2600.5694 C:\WINDOWS\system32\NETAPI32.dll
0x77bd0000 0x8000 5.01.2600.5512 C:\WINDOWS\system32\VERSION.dll
0x404a0000 0xe6000 8.00.6001.18939 C:\WINDOWS\system32\WININET.dll
0x00400000 0x9000 6.00.5441.0000 C:\WINDOWS\system32\Normaliz.dll
0x45180000 0x133000 8.00.6001.18939 C:\WINDOWS\system32\urlmon.dll
0x40b40000 0x1e8000 8.00.6001.18939 C:\WINDOWS\system32\iertutil.dll
0x76be0000 0x2e000 5.131.2600.5922 C:\WINDOWS\system32\WINTRUST.dll
0x76c40000 0x28000 5.01.2600.5512 C:\WINDOWS\system32\IMAGEHLP.dll
0x76f10000 0x2d000 5.01.2600.5512 C:\WINDOWS\system32\WLDAP32.dll
0x7c9d0000 0x825000 6.00.2900.6018 C:\WINDOWS\system32\SHELL32.dll
0x5b090000 0x38000 6.00.2900.5512 C:\WINDOWS\system32\UxTheme.dll
0x5cea0000 0x26000 5.01.2600.5512 C:\WINDOWS\system32\ShimEng.dll
0x595b0000 0x1ca000 5.01.2600.5512 C:\WINDOWS\AppPatch\AcGenral.DLL
0x76ae0000 0x2f000 5.01.2600.5512 C:\WINDOWS\system32\WINMM.dll
0x77bb0000 0x15000 5.01.2600.5512 C:\WINDOWS\system32\MSACM32.dll
0x76960000 0xb6000 5.01.2600.5512 C:\WINDOWS\system32\USERENV.dll
0x76320000 0x1d000 5.01.2600.5512 C:\WINDOWS\system32\IMM32.DLL
0x77390000 0x103000 6.00.2900.5512 C:\WINDOWS\WinSxS\x86_Microsoft.Windows.Common-Controls_6595b64144ccf1df_6.0.2600.5512_x-ww_35d4ce83\comctl32.dll
0x58b50000 0x9a000 5.82.2900.5512 C:\WINDOWS\system32\comctl32.dll
0x77b50000 0x22000 5.01.2600.5512 C:\WINDOWS\system32\apphelp.dll
0x75140000 0x2e000 5.01.2600.5768 C:\WINDOWS\system32\msctfime.ime
0x76f80000 0x7f000 2001.12.4414.0700 C:\WINDOWS\system32\CLBCATQ.DLL
0x77000000 0xd4000 2001.12.4414.0700 C:\WINDOWS\system32\COMRes.dll
0x765b0000 0x56000 5.01.2600.5512 C:\WINDOWS\System32\cscui.dll
0x76590000 0x1d000 5.01.2600.5512 C:\WINDOWS\System32\CSCDLL.dll
0x5b950000 0x73000 6.00.2900.5512 C:\WINDOWS\system32\themeui.dll
0x76310000 0x5000 5.01.2600.5512 C:\WINDOWS\system32\MSIMG32.dll
0x01180000 0x2da000 5.01.2600.5512 C:\WINDOWS\system32\xpsp2res.dll
0x40d30000 0xa94000 8.00.6001.18939 C:\WINDOWS\system32\ieframe.dll
0x13420000 0x1a000 11.00.5721.5145 C:\PROGRA~1\WINDOW~2\wmpband.dll
0x71a60000 0x12000 5.01.2600.5512 C:\WINDOWS\system32\MPR.dll
0x71b50000 0x13000 5.01.2600.5512 C:\WINDOWS\system32\SAMLIB.dll
0x7d200000 0x2bc000 3.01.4001.5512 C:\WINDOWS\system32\msi.dll
0x77210000 0xb1000 5.01.2600.5512 C:\WINDOWS\system32\SXS.DLL
0x76930000 0x26000 5.01.2600.5512 C:\WINDOWS\system32\ntshrui.dll
0x76ac0000 0x11000 3.05.2284.0002 C:\WINDOWS\system32\ATL.DLL
0x778e0000 0xf8000 5.01.2600.5512 C:\WINDOWS\system32\SETUPAPI.dll
0x76920000 0x8000 5.01.2600.5512 C:\WINDOWS\system32\LINKINFO.dll
0x75d30000 0x91000 6.00.2900.5512 C:\WINDOWS\system32\MLANG.dll
0x76390000 0x1a9000 5.01.2600.5512 C:\WINDOWS\system32\NETSHELL.dll
0x76bb0000 0x2f000 5.01.2600.5512 C:\WINDOWS\system32\credui.dll
0x5b660000 0xa000 5.01.2600.5512 C:\WINDOWS\system32\dot3api.dll
0x76e30000 0xe000 5.01.2600.5512 C:\WINDOWS\system32\rtutils.dll
0x72640000 0x6000 5.01.2600.5512 C:\WINDOWS\system32\dot3dlg.dll
0x73990000 0x28000 5.01.2600.5512 C:\WINDOWS\system32\OneX.DLL
0x76f00000 0x8000 5.01.2600.5512 C:\WINDOWS\system32\WTSAPI32.dll
0x762f0000 0x10000 5.01.2600.5512 C:\WINDOWS\system32\WINSTA.dll
0x6da60000 0x22000 5.01.2600.5512 C:\WINDOWS\system32\eappcfg.dll
0x76010000 0x65000 6.02.3104.0000 C:\WINDOWS\system32\MSVCP60.dll
0x200e0000 0xe000 5.01.2600.5512 C:\WINDOWS\system32\eappprxy.dll
0x76d10000 0x19000 5.01.2600.5512 C:\WINDOWS\system32\iphlpapi.dll
0x719f0000 0x17000 5.01.2600.5512 C:\WINDOWS\system32\WS2_32.dll
0x719e0000 0x8000 5.01.2600.5512 C:\WINDOWS\system32\WS2HELP.dll
0x01ab0000 0x3d000 8.00.6001.18702 C:\WINDOWS\system32\webcheck.dll
0x76540000 0x21000 5.01.2600.5512 C:\WINDOWS\system32\stobject.dll
0x74a60000 0xa000 6.00.2900.5512 C:\WINDOWS\system32\BatMeter.dll
0x74a40000 0x8000 6.00.2900.5512 C:\WINDOWS\system32\POWRPROF.dll
0x164a0000 0x23000 5.02.5721.5145 C:\WINDOWS\system32\WPDShServiceObj.dll
0x4d5e0000 0x59000 5.01.2600.5868 C:\WINDOWS\system32\WINHTTP.dll
0x72380000 0x1a000 6.00.2900.5512 C:\WINDOWS\system32\mydocs.dll
0x109c0000 0x2c000 5.02.5721.5145 C:\WINDOWS\system32\PortableDeviceTypes.dll
0x10930000 0x49000 5.02.5721.5145 C:\WINDOWS\system32\PortableDeviceApi.dll
0x74690000 0x4c000 5.01.2600.5512 C:\WINDOWS\system32\MSCTF.dll
0x72c70000 0x9000 5.01.2600.5512 C:\WINDOWS\system32\wdmaud.drv
0x72c60000 0x8000 5.01.2600.0000 C:\WINDOWS\system32\msacm32.drv
0x77ba0000 0x7000 5.01.2600.5512 C:\WINDOWS\system32\midimap.dll
0x69270000 0x8d000 5.02.2600.5512 C:\WINDOWS\system32\fxsst.dll
0x72f50000 0x26000 5.01.2600.5512 C:\WINDOWS\system32\WINSPOOL.DRV
0x61410000 0x72000 5.02.2600.5512 C:\WINDOWS\system32\FXSAPI.dll
0x77650000 0x21000 5.01.2600.5512 C:\WINDOWS\system32\NTMARTA.DLL
0x75ef0000 0x7000 5.01.2600.5512 C:\WINDOWS\System32\drprov.dll
0x71b70000 0xe000 5.01.2600.5512 C:\WINDOWS\System32\ntlanman.dll
0x71c30000 0x17000 5.01.2600.5512 C:\WINDOWS\System32\NETUI0.dll
0x71bf0000 0x40000 5.01.2600.5512 C:\WINDOWS\System32\NETUI1.dll
0x71be0000 0x7000 5.01.2600.5512 C:\WINDOWS\System32\NETRAP.dll
0x75f00000 0xa000 5.01.2600.5512 C:\WINDOWS\System32\davclnt.dll
0x68000000 0x36000 5.01.2600.5507 C:\WINDOWS\system32\rsaenh.dll
0x10000000 0x5b000 9.04.0000.0195 C:\Program Files\Fichiers communs\Adobe\Acrobat\ActiveX\PDFShell.dll
0x78130000 0x9b000 8.00.50727.4053 C:\WINDOWS\WinSxS\x86_Microsoft.VC80.CRT_1fc8b3b9a1e18e3b_8.0.50727.4053_x-ww_e6967989\MSVCR80.dll
0x01640000 0x4c000 9.01.0000.0163 C:\Program Files\Fichiers communs\Adobe\Acrobat\ActiveX\PDFShell.FRA
0x71600000 0x13000 6.00.2900.5512 C:\WINDOWS\system32\browselc.dll
0x76e90000 0x3c000 5.01.2600.5512 C:\WINDOWS\system32\RASAPI32.dll
0x76e40000 0x12000 5.01.2600.5512 C:\WINDOWS\system32\rasman.dll
0x76e60000 0x2f000 5.01.2600.5512 C:\WINDOWS\system32\TAPI32.dll
0x77c40000 0x25000 5.01.2600.5876 C:\WINDOWS\system32\msv1_0.dll
0x76730000 0xc000 5.01.2600.5512 C:\WINDOWS\system32\cryptdll.dll
0x72220000 0x5000 5.01.2600.5512 C:\WINDOWS\system32\sensapi.dll
0x71990000 0x40000 5.01.2600.5625 C:\WINDOWS\system32\mswsock.dll
0x62e40000 0x59000 5.01.2600.5512 C:\WINDOWS\system32\hnetcfg.dll
0x719d0000 0x8000 5.01.2600.5512 C:\WINDOWS\System32\wshtcpip.dll
0x76f70000 0x6000 5.01.2600.5512 C:\WINDOWS\system32\rasadhlp.dll
0x76ed0000 0x27000 5.01.2600.5625 C:\WINDOWS\system32\DNSAPI.dll
0x748f0000 0x123000 8.100.1052.0000 C:\WINDOWS\system32\msxml3.dll
0x034c0000 0x7e000 1.00.0000.0001 C:\PROGRA~1\ArcSoft\RAWTHU~1\AUIControl.dll
0x76340000 0x4a000 6.00.2900.5512 C:\WINDOWS\system32\comdlg32.dll
0x03540000 0x7000 1.00.0000.0184 C:\PROGRA~1\ArcSoft\RAWTHU~1\MagCore.dll
0x03550000 0xc000 1.00.0000.0184 C:\PROGRA~1\ArcSoft\RAWTHU~1\MagPCMac.dll
0x03560000 0x49000 1.00.0000.0184 C:\PROGRA~1\ArcSoft\RAWTHU~1\MagUIEngine.dll
0x035b0000 0x18000 1.00.0000.0184 C:\PROGRA~1\ArcSoft\RAWTHU~1\MagUIImage.dll
0x035d0000 0x1f000 5.01.0000.0074 C:\PROGRA~1\ArcSoft\RAWTHU~1\magPltfm.dll
0x73a80000 0x15000 5.01.2600.5627 C:\WINDOWS\system32\mscms.dll
0x75ba0000 0x21000 5.01.2600.5512 C:\WINDOWS\system32\MSVFW32.dll
0x035f0000 0x15000 1.00.0000.0184 C:\PROGRA~1\ArcSoft\RAWTHU~1\MagUIInter.dll
0x4eb80000 0x1ab000 5.02.6001.22319 C:\WINDOWS\WinSxS\x86_Microsoft.Windows.GdiPlus_6595b64144ccf1df_1.0.6001.22319_x-ww_f0b4c2df\gdiplus.dll
0x58a10000 0x41000 5.01.2600.5512 C:\WINDOWS\system32\icm32.dll
0x03660000 0x1d6000 1.06.0002.0014 C:\PROGRA~1\SPYBOT~1\SDHelper.dll
0x71a10000 0xa000 5.01.2600.5512 C:\WINDOWS\system32\wsock32.dll
0x698e0000 0x16000 5.01.2600.5512 C:\WINDOWS\system32\faultrep.dll
0x5f140000 0x17000 5.01.2600.5512 C:\WINDOWS\system32\olepro32.dll
0x43ff0000 0x9000 8.00.6001.18939 C:\WINDOWS\system32\jsproxy.dll
0x6c650000 0x4d000 5.01.2600.5512 C:\WINDOWS\system32\DUSER.dll
0x01490000 0x18000 1.04.0005.0000 C:\Program Files\Malwarebytes' Anti-Malware\mbamext.dll
0x03c60000 0xa9000 3.04.0000.0000 C:\PROGRA~1\TUGZip\TzShell.dll
0x03fe0000 0x242000 2.00.0000.0000 C:\PROGRA~1\TUGZip\Plugins\TzArchive10.tgp
0x7e0c0000 0x13000 5.00.2147.0001 C:\WINDOWS\system32\ztvcabinet.dll
0x01a50000 0x33000 3.60.0004.0144 C:\WINDOWS\system32\ztvunrar36.dll
0x026e0000 0x15000 1.00.0002.0001 C:\PROGRA~1\TUGZip\Plugins\TzImage10.tgp
0x03e10000 0x2f000 1.00.0000.0001 C:\Program Files\Lavasoft\Ad-Aware\ShellExt.dll
0x78480000 0x8e000 9.00.30729.4148 C:\WINDOWS\WinSxS\x86_Microsoft.VC90.CRT_1fc8b3b9a1e18e3b_9.0.30729.4148_x-ww_d495ac4e\MSVCP90.dll
0x78520000 0xa3000 9.00.30729.4148 C:\WINDOWS\WinSxS\x86_Microsoft.VC90.CRT_1fc8b3b9a1e18e3b_9.0.30729.4148_x-ww_d495ac4e\MSVCR90.dll
0x78e20000 0x2b000 9.00.30729.4148 C:\WINDOWS\WinSxS\x86_Microsoft.VC90.ATL_1fc8b3b9a1e18e3b_9.0.30729.4148_x-ww_353599c2\ATL90.DLL
0x76ba0000 0xb000 5.01.2600.5512 C:\WINDOWS\system32\PSAPI.DLL
0x03e80000 0xd000 2.26.0000.0956 C:\PROGRA~1\GLARYU~1\CONTEX~1.DLL
0x40000000 0xc6000 7.00.0004.0453 C:\PROGRA~1\GLARYU~1\rtl70.bpl
0x04cc0000 0x157000 7.00.0004.0453 C:\PROGRA~1\GLARYU~1\vcl70.bpl
0x7e1e0000 0x22000 5.01.2600.5512 C:\WINDOWS\system32\oledlg.dll
0x03ea0000 0x9000 1.00.0000.0001 C:\PROGRA~1\ArcSoft\RAWTHU~1\ShellContextMenu.dll
0x04f20000 0x13d000 2.00.0000.0016 C:\PROGRA~1\ArcSoft\RAWTHU~1\RawEngine.dll
0x03ed0000 0x17000 1.00.0000.0001 C:\PROGRA~1\ArcSoft\RAWTHU~1\RawExtend.dll
0x64e40000 0x17000 5.00.0677.0000 C:\Program Files\Alwil Software\Avast5\ashShell.dll
0x11200000 0x14000 C:\PROGRA~1\NETSUP~1\pcihooks.dll
0x017a0000 0x12000 1.00.0000.0001 C:\PROGRA~1\ArcSoft\RAWTHU~1\EXIFToolBar.dll
0x73e60000 0x5c000 5.03.2600.5512 C:\WINDOWS\system32\DSOUND.dll

No matching processes were found.

------------------------------------------------------------------------------
firefox.exe pid: 3776
Command line: "C:\Program Files\Mozilla Firefox\firefox.exe"
Base Size Version Path
0x00400000 0xe0000 1.09.0002.3909 C:\Program Files\Mozilla Firefox\firefox.exe
0x7c910000 0xb9000 5.01.2600.5755 C:\WINDOWS\system32\ntdll.dll
0x7c800000 0x106000 5.01.2600.5781 C:\WINDOWS\system32\kernel32.dll
0x10000000 0xb3b000 1.09.0002.3909 C:\Program Files\Mozilla Firefox\xul.dll
0x00290000 0x75000 3.06.0022.0000 C:\Program Files\Mozilla Firefox\sqlite3.dll
0x78130000 0xb0000 8.00.0000.0000 C:\Program Files\Mozilla Firefox\MOZCRT19.dll
0x77be0000 0x58000 7.00.2600.5512 C:\WINDOWS\system32\msvcrt.dll
0x004e0000 0xfb000 C:\Program Files\Mozilla Firefox\js3250.dll
0x00310000 0x31000 4.08.0006.0000 C:\Program Files\Mozilla Firefox\nspr4.dll
0x77da0000 0xac000 5.01.2600.5755 C:\WINDOWS\system32\ADVAPI32.dll
0x77e50000 0x93000 5.01.2600.6015 C:\WINDOWS\system32\RPCRT4.dll
0x77fc0000 0x11000 5.01.2600.5834 C:\WINDOWS\system32\Secur32.dll
0x71a10000 0xa000 5.01.2600.5512 C:\WINDOWS\system32\WSOCK32.dll
0x719f0000 0x17000 5.01.2600.5512 C:\WINDOWS\system32\WS2_32.dll
0x719e0000 0x8000 5.01.2600.5512 C:\WINDOWS\system32\WS2HELP.dll
0x76ae0000 0x2f000 5.01.2600.5512 C:\WINDOWS\system32\WINMM.dll
0x77ef0000 0x49000 5.01.2600.5698 C:\WINDOWS\system32\GDI32.dll
0x7e390000 0x91000 5.01.2600.5512 C:\WINDOWS\system32\USER32.dll
0x00350000 0x18000 3.12.0007.0000 C:\Program Files\Mozilla Firefox\smime3.dll
0x005e0000 0x9d000 3.12.0007.0000 C:\Program Files\Mozilla Firefox\nss3.dll
0x00370000 0x14000 3.12.0007.0000 C:\Program Files\Mozilla Firefox\nssutil3.dll
0x00390000 0x7000 4.08.0006.0000 C:\Program Files\Mozilla Firefox\plc4.dll
0x003a0000 0x7000 4.08.0006.0000 C:\Program Files\Mozilla Firefox\plds4.dll
0x003b0000 0x21000 3.12.0007.0000 C:\Program Files\Mozilla Firefox\ssl3.dll
0x7c9d0000 0x825000 6.00.2900.6018 C:\WINDOWS\system32\SHELL32.dll
0x77f40000 0x76000 6.00.2900.5912 C:\WINDOWS\system32\SHLWAPI.dll
0x774a0000 0x13d000 5.01.2600.5512 C:\WINDOWS\system32\ole32.dll
0x77bd0000 0x8000 5.01.2600.5512 C:\WINDOWS\system32\VERSION.dll
0x72f50000 0x26000 5.01.2600.5512 C:\WINDOWS\system32\WINSPOOL.DRV
0x76340000 0x4a000 6.00.2900.5512 C:\WINDOWS\system32\COMDLG32.dll
0x77390000 0x103000 6.00.2900.5512 C:\WINDOWS\WinSxS\x86_Microsoft.Windows.Common-Controls_6595b64144ccf1df_6.0.2600.5512_x-ww_35d4ce83\COMCTL32.dll
0x76320000 0x1d000 5.01.2600.5512 C:\WINDOWS\system32\IMM32.dll
0x76310000 0x5000 5.01.2600.5512 C:\WINDOWS\system32\MSIMG32.dll
0x753c0000 0x6b000 1.420.2600.5969 C:\WINDOWS\system32\USP10.dll
0x770e0000 0x8b000 5.01.2600.5512 C:\WINDOWS\system32\OLEAUT32.dll
0x7c420000 0xaf000 8.00.0000.0000 C:\Program Files\Mozilla Firefox\MOZCPP19.dll
0x003e0000 0x7000 1.09.0002.3909 C:\Program Files\Mozilla Firefox\xpcom.dll
0x5b090000 0x38000 6.00.2900.5512 C:\WINDOWS\system32\uxtheme.dll
0x5d3f0000 0xa1000 5.01.2600.5512 C:\WINDOWS\system32\dbghelp.dll
0x74690000 0x4c000 5.01.2600.5512 C:\WINDOWS\system32\MSCTF.dll
0x778e0000 0xf8000 5.01.2600.5512 C:\WINDOWS\system32\SETUPAPI.dll
0x77b50000 0x22000 5.01.2600.5512 C:\WINDOWS\system32\apphelp.dll
0x75140000 0x2e000 5.01.2600.5768 C:\WINDOWS\system32\msctfime.ime
0x76f80000 0x7f000 2001.12.4414.0700 C:\WINDOWS\system32\CLBCATQ.DLL
0x77000000 0xd4000 2001.12.4414.0700 C:\WINDOWS\system32\COMRes.dll
0x01230000 0x8000 1.09.0002.3909 C:\Program Files\Mozilla Firefox\components\browserdirprovider.dll
0x71990000 0x40000 5.01.2600.5625 C:\WINDOWS\system32\mswsock.dll
0x62e40000 0x59000 5.01.2600.5512 C:\WINDOWS\system32\hnetcfg.dll
0x719d0000 0x8000 5.01.2600.5512 C:\WINDOWS\System32\wshtcpip.dll
0x76d10000 0x19000 5.01.2600.5512 C:\WINDOWS\system32\iphlpapi.dll
0x01550000 0x11000 C:\Documents and Settings\Stephane\Application Data\Mozilla\Firefox\Profiles\wb8mbmqk.default\extensions\piclens@cooliris.com\components\coolirisstub.dll
0x01f00000 0x481000 1.12.0000.36949 C:\Documents and Settings\Stephane\Application Data\Mozilla\Firefox\Profiles\wb8mbmqk.default\extensions\piclens@cooliris.com\libs\cooliris192.dll
0x4fcf0000 0x1a6000 5.03.2600.5512 C:\WINDOWS\system32\d3d9.dll
0x6de60000 0x6000 5.03.2600.5512 C:\WINDOWS\system32\d3d8thk.dll
0x4eb80000 0x1ab000 5.02.6001.22319 C:\WINDOWS\WinSxS\x86_Microsoft.Windows.GdiPlus_6595b64144ccf1df_1.0.6001.22319_x-ww_f0b4c2df\gdiplus.dll
0x5f070000 0xcc000 5.01.2600.5512 C:\WINDOWS\system32\OPENGL32.dll
0x6cef0000 0x21000 5.01.2600.5512 C:\WINDOWS\system32\GLU32.dll
0x736b0000 0x4b000 5.03.2600.5512 C:\WINDOWS\system32\DDRAW.dll
0x73b10000 0x6000 5.01.2600.5512 C:\WINDOWS\system32\DCIMAN32.dll
0x74a40000 0x8000 6.00.2900.5512 C:\WINDOWS\system32\POWRPROF.dll
0x76ba0000 0xb000 5.01.2600.5512 C:\WINDOWS\system32\PSAPI.DLL
0x76960000 0xb6000 5.01.2600.5512 C:\WINDOWS\system32\USERENV.dll
0x404a0000 0xe6000 8.00.6001.18939 C:\WINDOWS\system32\WININET.dll
0x01580000 0x9000 6.00.5441.0000 C:\WINDOWS\system32\Normaliz.dll
0x45180000 0x133000 8.00.6001.18939 C:\WINDOWS\system32\urlmon.dll
0x40b40000 0x1e8000 8.00.6001.18939 C:\WINDOWS\system32\iertutil.dll
0x73c30000 0x21000 5.01.2600.5888 C:\WINDOWS\system32\t2embed.dll
0x73d10000 0x3000 5.01.2600.0000 C:\WINDOWS\system32\LZ32.dll
0x015c0000 0x24000 1.09.0002.3909 C:\Program Files\Mozilla Firefox\components\brwsrcmp.dll
0x76ed0000 0x27000 5.01.2600.5625 C:\WINDOWS\system32\DNSAPI.dll
0x76f60000 0x8000 5.01.2600.5512 C:\WINDOWS\System32\winrnr.dll
0x76f10000 0x2d000 5.01.2600.5512 C:\WINDOWS\system32\WLDAP32.dll
0x04200000 0x2da000 5.01.2600.5512 C:\WINDOWS\system32\xpsp2res.dll
0x6fee0000 0x55000 5.01.2600.5694 C:\WINDOWS\system32\netapi32.dll
0x76f70000 0x6000 5.01.2600.5512 C:\WINDOWS\system32\rasadhlp.dll
0x04f80000 0x26000 3.12.0007.0000 C:\Program Files\Mozilla Firefox\softokn3.dll
0x04fb0000 0x18000 3.12.0007.0000 C:\Program Files\Mozilla Firefox\nssdbm3.dll
0x05260000 0x41000 3.12.0007.0000 C:\Program Files\Mozilla Firefox\freebl3.dll
0x052b0000 0x50000 1.79.0000.0000 C:\Program Files\Mozilla Firefox\nssckbi.dll
0x73a80000 0x15000 5.01.2600.5627 C:\WINDOWS\system32\mscms.dll
0x77650000 0x21000 5.01.2600.5512 C:\WINDOWS\system32\NTMARTA.DLL
0x71b50000 0x13000 5.01.2600.5512 C:\WINDOWS\system32\SAMLIB.dll
0x07100000 0x5d2000 10.01.0082.0076 C:\WINDOWS\system32\Macromed\Flash\NPSWF32.dll
0x779e0000 0x97000 5.131.2600.5512 C:\WINDOWS\system32\CRYPT32.dll
0x77a80000 0x12000 5.01.2600.5875 C:\WINDOWS\system32\MSASN1.dll
0x73e60000 0x5c000 5.03.2600.5512 C:\WINDOWS\system32\DSOUND.dll
0x75d30000 0x91000 6.00.2900.5512 C:\WINDOWS\system32\mlang.dll
0x748f0000 0x123000 8.100.1052.0000 C:\WINDOWS\system32\msxml3.dll
0x7e210000 0x171000 6.00.2900.5512 C:\WINDOWS\system32\shdocvw.dll
0x76610000 0x84000 5.131.2600.5512 C:\WINDOWS\system32\CRYPTUI.dll
0x76be0000 0x2e000 5.131.2600.5922 C:\WINDOWS\system32\WINTRUST.dll
0x76c40000 0x28000 5.01.2600.5512 C:\WINDOWS\system32\IMAGEHLP.dll
0x11200000 0x14000 C:\PROGRA~1\NETSUP~1\pcihooks.dll
0x72c70000 0x9000 5.01.2600.5512 C:\WINDOWS\system32\wdmaud.drv
0x72c60000 0x8000 5.01.2600.0000 C:\WINDOWS\system32\msacm32.drv
0x77bb0000 0x15000 5.01.2600.5512 C:\WINDOWS\system32\MSACM32.dll
0x77ba0000 0x7000 5.01.2600.5512 C:\WINDOWS\system32\midimap.dll
0x70de0000 0x13000 5.01.2600.5949 C:\WINDOWS\system32\asycfilt.dll
0x40230000 0x15a000 6.20.1103.0000 C:\WINDOWS\system32\msxml6.dll
0x765b0000 0x56000 5.01.2600.5512 C:\WINDOWS\System32\cscui.dll
0x76590000 0x1d000 5.01.2600.5512 C:\WINDOWS\System32\CSCDLL.dll
0x76e90000 0x3c000 5.01.2600.5512 C:\WINDOWS\system32\RASAPI32.dll
0x76e40000 0x12000 5.01.2600.5512 C:\WINDOWS\system32\rasman.dll
0x76e60000 0x2f000 5.01.2600.5512 C:\WINDOWS\system32\TAPI32.dll
0x76e30000 0xe000 5.01.2600.5512 C:\WINDOWS\system32\rtutils.dll
0x77c40000 0x25000 5.01.2600.5876 C:\WINDOWS\system32\msv1_0.dll
0x76730000 0xc000 5.01.2600.5512 C:\WINDOWS\system32\cryptdll.dll
0x72220000 0x5000 5.01.2600.5512 C:\WINDOWS\system32\sensapi.dll

No matching processes were found.

No matching processes were found.

No matching processes were found.

------------------------------------------------------------------------------
csrss.exe pid: 628
Command line: C:\WINDOWS\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,3072,512 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ProfileControl=Off MaxRequestThreads=16
Base Size Version Path
0x4a680000 0x5000 \??\C:\WINDOWS\system32\csrss.exe
0x7c910000 0xb9000 5.01.2600.5755 C:\WINDOWS\system32\ntdll.dll
0x75ad0000 0xb000 5.01.2600.5915 C:\WINDOWS\system32\CSRSRV.dll
0x75ae0000 0x10000 5.01.2600.5512 C:\WINDOWS\system32\basesrv.dll
0x75af0000 0x4b000 5.01.2600.6001 C:\WINDOWS\system32\winsrv.dll
0x77ef0000 0x49000 5.01.2600.5698 C:\WINDOWS\system32\GDI32.dll
0x7c800000 0x106000 5.01.2600.5781 C:\WINDOWS\system32\KERNEL32.dll
0x7e390000 0x91000 5.01.2600.5512 C:\WINDOWS\system32\USER32.dll
0x77210000 0xb1000 5.01.2600.5512 C:\WINDOWS\system32\sxs.dll
0x77da0000 0xac000 5.01.2600.5755 C:\WINDOWS\system32\ADVAPI32.dll
0x77e50000 0x93000 5.01.2600.6015 C:\WINDOWS\system32\RPCRT4.dll
0x77fc0000 0x11000 5.01.2600.5834 C:\WINDOWS\system32\Secur32.dll
0x77b50000 0x22000 5.01.2600.5512 C:\WINDOWS\system32\Apphelp.dll
0x77bd0000 0x8000 5.01.2600.5512 C:\WINDOWS\system32\VERSION.dll

------------------------------------------------------------------------------
smss.exe pid: 388
Command line: \SystemRoot\System32\smss.exe
Base Size Version Path
0x48580000 0xf000 \SystemRoot\System32\smss.exe
0x7c910000 0xb9000 5.01.2600.5755 C:\WINDOWS\system32\ntdll.dll

------------------------------------------------------------------------------
winlogon.exe pid: 672
Command line: winlogon.exe
Base Size Version Path
0x01000000 0x82000 \??\C:\WINDOWS\system32\winlogon.exe
0x7c910000 0xb9000 5.01.2600.5755 C:\WINDOWS\system32\ntdll.dll
0x7c800000 0x106000 5.01.2600.5781 C:\WINDOWS\system32\kernel32.dll
0x77da0000 0xac000 5.01.2600.5755 C:\WINDOWS\system32\ADVAPI32.dll
0x77e50000 0x93000 5.01.2600.6015 C:\WINDOWS\system32\RPCRT4.dll
0x77fc0000 0x11000 5.01.2600.5834 C:\WINDOWS\system32\Secur32.dll
0x77680000 0x12000 5.01.2600.5512 C:\WINDOWS\system32\AUTHZ.dll
0x77be0000 0x58000 7.00.2600.5512 C:\WINDOWS\system32\msvcrt.dll
0x779e0000 0x97000 5.131.2600.5512 C:\WINDOWS\system32\CRYPT32.dll
0x77a80000 0x12000 5.01.2600.5875 C:\WINDOWS\system32\MSASN1.dll
0x7e390000 0x91000 5.01.2600.5512 C:\WINDOWS\system32\USER32.dll
0x77ef0000 0x49000 5.01.2600.5698 C:\WINDOWS\system32\GDI32.dll
0x758d0000 0x8000 5.01.2600.5512 C:\WINDOWS\system32\NDdeApi.dll
0x758c0000 0xa000 5.01.2600.5512 C:\WINDOWS\system32\PROFMAP.dll
0x6fee0000 0x55000 5.01.2600.5694 C:\WINDOWS\system32\NETAPI32.dll
0x76960000 0xb6000 5.01.2600.5512 C:\WINDOWS\system32\USERENV.dll
0x76ba0000 0xb000 5.01.2600.5512 C:\WINDOWS\system32\PSAPI.DLL
0x76b60000 0xf000 5.01.2600.5512 C:\WINDOWS\system32\REGAPI.dll
0x778e0000 0xf8000 5.01.2600.5512 C:\WINDOWS\system32\SETUPAPI.dll
0x77bd0000 0x8000 5.01.2600.5512 C:\WINDOWS\system32\VERSION.dll
0x762f0000 0x10000 5.01.2600.5512 C:\WINDOWS\system32\WINSTA.dll
0x76be0000 0x2e000 5.131.2600.5922 C:\WINDOWS\system32\WINTRUST.dll
0x76c40000 0x28000 5.01.2600.5512 C:\WINDOWS\system32\IMAGEHLP.dll
0x719f0000 0x17000 5.01.2600.5512 C:\WINDOWS\system32\WS2_32.dll
0x719e0000 0x8000 5.01.2600.5512 C:\WINDOWS\system32\WS2HELP.dll
0x76320000 0x1d000 5.01.2600.5512 C:\WINDOWS\system32\IMM32.DLL
0x75900000 0xfa000 5.01.2600.5512 C:\WINDOWS\system32\MSGINA.dll
0x58b50000 0x9a000 5.82.2900.5512 C:\WINDOWS\system32\COMCTL32.dll
0x74730000 0x3d000 3.525.1132.0000 C:\WINDOWS\system32\ODBC32.dll
0x76340000 0x4a000 6.00.2900.5512 C:\WINDOWS\system32\comdlg32.dll
0x7c9d0000 0x825000 6.00.2900.6018 C:\WINDOWS\system32\SHELL32.dll
0x77f40000 0x76000 6.00.2900.5912 C:\WINDOWS\system32\SHLWAPI.dll
0x77390000 0x103000 6.00.2900.5512 C:\WINDOWS\WinSxS\x86_Microsoft.Windows.Common-Controls_6595b64144ccf1df_6.0.2600.5512_x-ww_35d4ce83\comctl32.dll
0x1f840000 0x18000 3.525.1117.0000 C:\WINDOWS\system32\odbcint.dll
0x776a0000 0x24000 6.00.2900.5512 C:\WINDOWS\system32\SHSVCS.dll
0x76b50000 0x5000 5.01.2600.5512 C:\WINDOWS\system32\sfc.dll
0x76c10000 0x2a000 5.01.2600.5512 C:\WINDOWS\system32\sfc_os.dll
0x774a0000 0x13d000 5.01.2600.5512 C:\WINDOWS\system32\ole32.dll
0x77b50000 0x22000 5.01.2600.5512 C:\WINDOWS\system32\Apphelp.dll
0x75140000 0x2e000 5.01.2600.5768 C:\WINDOWS\system32\msctfime.ime
0x72340000 0x1c000 5.01.2600.5512 C:\WINDOWS\system32\WINSCARD.DLL
0x76f00000 0x8000 5.01.2600.5512 C:\WINDOWS\system32\WTSAPI32.dll
0x77210000 0xb1000 5.01.2600.5512 C:\WINDOWS\system32\sxs.dll
0x5b090000 0x38000 6.00.2900.5512 C:\WINDOWS\system32\uxtheme.dll
0x76ae0000 0x2f000 5.01.2600.5512 C:\WINDOWS\system32\WINMM.dll
0x10000000 0x29000 6.14.0010.4179 C:\WINDOWS\system32\Ati2evxx.dll
0x770e0000 0x8b000 5.01.2600.5512 C:\WINDOWS\system32\OLEAUT32.dll
0x01160000 0x2e000 6.14.0010.1054 C:\WINDOWS\system32\atiadlxx.dll
0x78130000 0x9b000 8.00.50727.4053 C:\WINDOWS\WinSxS\x86_Microsoft.VC80.CRT_1fc8b3b9a1e18e3b_8.0.50727.4053_x-ww_e6967989\MSVCR80.dll
0x68000000 0x36000 5.01.2600.5507 C:\WINDOWS\system32\rsaenh.dll
0x76590000 0x1d000 5.01.2600.5512 C:\WINDOWS\system32\cscdll.dll
0x46fc0000 0x8000 5.01.2600.5512 C:\WINDOWS\System32\dimsntfy.dll
0x758e0000 0x1b000 5.01.2600.5512 C:\WINDOWS\system32\WlNotify.dll
0x71a60000 0x12000 5.01.2600.5512 C:\WINDOWS\system32\MPR.dll
0x72f50000 0x26000 5.01.2600.5512 C:\WINDOWS\system32\WINSPOOL.DRV
0x71b50000 0x13000 5.01.2600.5512 C:\WINDOWS\system32\SAMLIB.dll
0x77c40000 0x25000 5.01.2600.5876 C:\WINDOWS\system32\msv1_0.dll
0x76730000 0xc000 5.01.2600.5512 C:\WINDOWS\system32\cryptdll.dll
0x76d10000 0x19000 5.01.2600.5512 C:\WINDOWS\system32\iphlpapi.dll
0x765b0000 0x56000 5.01.2600.5512 C:\WINDOWS\system32\cscui.dll
0x76cf0000 0x18000 5.01.2600.5512 C:\WINDOWS\system32\MPRAPI.dll
0x77c90000 0x32000 5.01.2600.5512 C:\WINDOWS\system32\ACTIVEDS.dll
0x76dc0000 0x25000 5.01.2600.5512 C:\WINDOWS\system32\adsldpc.dll
0x76f10000 0x2d000 5.01.2600.5512 C:\WINDOWS\system32\WLDAP32.dll
0x76ac0000 0x11000 3.05.2284.0002 C:\WINDOWS\system32\ATL.DLL
0x76e30000 0xe000 5.01.2600.5512 C:\WINDOWS\system32\rtutils.dll
0x01680000 0x2da000 5.01.2600.5512 C:\WINDOWS\system32\xpsp2res.dll
0x77650000 0x21000 5.01.2600.5512 C:\WINDOWS\system32\NTMARTA.DLL
0x72c70000 0x9000 5.01.2600.5512 C:\WINDOWS\system32\wdmaud.drv
0x72c60000 0x8000 5.01.2600.0000 C:\WINDOWS\system32\msacm32.drv
0x77bb0000 0x15000 5.01.2600.5512 C:\WINDOWS\system32\MSACM32.dll
0x77ba0000 0x7000 5.01.2600.5512 C:\WINDOWS\system32\midimap.dll
0x77000000 0xd4000 2001.12.4414.0700 C:\WINDOWS\system32\COMRes.dll
0x76f80000 0x7f000 2001.12.4414.0700 C:\WINDOWS\system32\CLBCATQ.DLL

------------------------------------------------------------------------------
svchost.exe pid: 900
Command line: C:\WINDOWS\system32\svchost -k DcomLaunch
Base Size Version Path
0x01000000 0x6000 5.01.2600.5512 C:\WINDOWS\system32\svchost.exe
0x7c910000 0xb9000 5.01.2600.5755 C:\WINDOWS\system32\ntdll.dll
0x7c800000 0x106000 5.01.2600.5781 C:\WINDOWS\system32\kernel32.dll
0x77da0000 0xac000 5.01.2600.5755 C:\WINDOWS\system32\ADVAPI32.dll
0x77e50000 0x93000 5.01.2600.6015 C:\WINDOWS\system32\RPCRT4.dll
0x77fc0000 0x11000 5.01.2600.5834 C:\WINDOWS\system32\Secur32.dll
0x5cea0000 0x26000 5.01.2600.5512 C:\WINDOWS\system32\ShimEng.dll
0x595b0000 0x1ca000 5.01.2600.5512 C:\WINDOWS\AppPatch\AcGenral.DLL
0x7e390000 0x91000 5.01.2600.5512 C:\WINDOWS\system32\USER32.dll
0x77ef0000 0x49000 5.01.2600.5698 C:\WINDOWS\system32\GDI32.dll
0x76ae0000 0x2f000 5.01.2600.5512 C:\WINDOWS\system32\WINMM.dll
0x774a0000 0x13d000 5.01.2600.5512 C:\WINDOWS\system32\ole32.dll
0x77be0000 0x58000 7.00.2600.5512 C:\WINDOWS\system32\msvcrt.dll
0x770e0000 0x8b000 5.01.2600.5512 C:\WINDOWS\system32\OLEAUT32.dll
0x77bb0000 0x15000 5.01.2600.5512 C:\WINDOWS\system32\MSACM32.dll
0x77bd0000 0x8000 5.01.2600.5512 C:\WINDOWS\system32\VERSION.dll
0x7c9d0000 0x825000 6.00.2900.6018 C:\WINDOWS\system32\SHELL32.dll
0x77f40000 0x76000 6.00.2900.5912 C:\WINDOWS\system32\SHLWAPI.dll
0x76960000 0xb6000 5.01.2600.5512 C:\WINDOWS\system32\USERENV.dll
0x5b090000 0x38000 6.00.2900.5512 C:\WINDOWS\system32\UxTheme.dll
0x76320000 0x1d000 5.01.2600.5512 C:\WINDOWS\system32\IMM32.DLL
0x77390000 0x103000 6.00.2900.5512 C:\WINDOWS\WinSxS\x86_Microsoft.Windows.Common-Controls_6595b64144ccf1df_6.0.2600.5512_x-ww_35d4ce83\comctl32.dll
0x58b50000 0x9a000 5.82.2900.5512 C:\WINDOWS\system32\comctl32.dll
0x77650000 0x21000 5.01.2600.5512 C:\WINDOWS\system32\NTMARTA.DLL
0x71b50000 0x13000 5.01.2600.5512 C:\WINDOWS\system32\SAMLIB.dll
0x76f10000 0x2d000 5.01.2600.5512 C:\WINDOWS\system32\WLDAP32.dll
0x76870000 0x64000 5.01.2600.5755 c:\windows\system32\rpcss.dll
0x719f0000 0x17000 5.01.2600.5512 c:\windows\system32\WS2_32.dll
0x719e0000 0x8000 5.01.2600.5512 c:\windows\system32\WS2HELP.dll
0x00670000 0x2da000 5.01.2600.5512 C:\WINDOWS\system32\xpsp2res.dll
0x76f80000 0x7f000 2001.12.4414.0700 C:\WINDOWS\system32\CLBCATQ.DLL
0x77000000 0xd4000 2001.12.4414.0700 C:\WINDOWS\system32\COMRes.dll
0x766a0000 0x54000 5.01.2600.5512 c:\windows\system32\termsrv.dll
0x74ee0000 0x6000 5.01.2600.5512 c:\windows\system32\ICAAPI.dll
0x778e0000 0xf8000 5.01.2600.5512 c:\windows\system32\SETUPAPI.dll
0x76be0000 0x2e000 5.131.2600.5922 c:\windows\system32\WINTRUST.dll
0x779e0000 0x97000 5.131.2600.5512 c:\windows\system32\CRYPT32.dll
0x77a80000 0x12000 5.01.2600.5875 c:\windows\system32\MSASN1.dll
0x76c40000 0x28000 5.01.2600.5512 C:\WINDOWS\system32\IMAGEHLP.dll
0x77680000 0x12000 5.01.2600.5512 c:\windows\system32\AUTHZ.dll
0x75080000 0x1f000 5.01.2600.5512 c:\windows\system32\mstlsapi.dll
0x77c90000 0x32000 5.01.2600.5512 c:\windows\system32\ACTIVEDS.dll
0x76dc0000 0x25000 5.01.2600.5512 c:\windows\system32\adsldpc.dll
0x6fee0000 0x55000 5.01.2600.5694 c:\windows\system32\NETAPI32.dll
0x76ac0000 0x11000 3.05.2284.0002 c:\windows\system32\ATL.DLL
0x77b50000 0x22000 5.01.2600.5512 C:\WINDOWS\system32\Apphelp.dll
0x76b60000 0xf000 5.01.2600.5512 C:\WINDOWS\system32\REGAPI.dll
0x68000000 0x36000 5.01.2600.5507 C:\WINDOWS\system32\rsaenh.dll
0x76f00000 0x8000 5.01.2600.5512 C:\WINDOWS\system32\WTSAPI32.dll
0x762f0000 0x10000 5.01.2600.5512 C:\WINDOWS\system32\WINSTA.dll
0x77c40000 0x25000 5.01.2600.5876 C:\WINDOWS\system32\msv1_0.dll
0x76730000 0xc000 5.01.2600.5512 C:\WINDOWS\system32\cryptdll.dll
0x76d10000 0x19000 5.01.2600.5512 C:\WINDOWS\system32\iphlpapi.dll
------------------------------------------------------------------------------
svchost.exe pid: 992
Command line: C:\WINDOWS\system32\svchost -k rpcss
Base Size Version Path
0x01000000 0x6000 5.01.2600.5512 C:\WINDOWS\system32\svchost.exe
0x7c910000 0xb9000 5.01.2600.5755 C:\WINDOWS\system32\ntdll.dll
0x7c800000 0x106000 5.01.2600.5781 C:\WINDOWS\system32\kernel32.dll
0x77da0000 0xac000 5.01.2600.5755 C:\WINDOWS\system32\ADVAPI32.dll
0x77e50000 0x93000 5.01.2600.6015 C:\WINDOWS\system32\RPCRT4.dll
0x77fc0000 0x11000 5.01.2600.5834 C:\WINDOWS\system32\Secur32.dll
0x5cea0000 0x26000 5.01.2600.5512 C:\WINDOWS\system32\ShimEng.dll
0x595b0000 0x1ca000 5.01.2600.5512 C:\WINDOWS\AppPatch\AcGenral.DLL
0x7e390000 0x91000 5.01.2600.5512 C:\WINDOWS\system32\USER32.dll
0x77ef0000 0x49000 5.01.2600.5698 C:\WINDOWS\system32\GDI32.dll
0x76ae0000 0x2f000 5.01.2600.5512 C:\WINDOWS\system32\WINMM.dll
0x774a0000 0x13d000 5.01.2600.5512 C:\WINDOWS\system32\ole32.dll
0x77be0000 0x58000 7.00.2600.5512 C:\WINDOWS\system32\msvcrt.dll
0x770e0000 0x8b000 5.01.2600.5512 C:\WINDOWS\system32\OLEAUT32.dll
0x77bb0000 0x15000 5.01.2600.5512 C:\WINDOWS\system32\MSACM32.dll
0x77bd0000 0x8000 5.01.2600.5512 C:\WINDOWS\system32\VERSION.dll
0x7c9d0000 0x825000 6.00.2900.6018 C:\WINDOWS\system32\SHELL32.dll
0x77f40000 0x76000 6.00.2900.5912 C:\WINDOWS\system32\SHLWAPI.dll
0x76960000 0xb6000 5.01.2600.5512 C:\WINDOWS\system32\USERENV.dll
0x5b090000 0x38000 6.00.2900.5512 C:\WINDOWS\system32\UxTheme.dll
0x76320000 0x1d000 5.01.2600.5512 C:\WINDOWS\system32\IMM32.DLL
0x77390000 0x103000 6.00.2900.5512 C:\WINDOWS\WinSxS\x86_Microsoft.Windows.Common-Controls_6595b64144ccf1df_6.0.2600.5512_x-ww_35d4ce83\comctl32.dll
0x58b50000 0x9a000 5.82.2900.5512 C:\WINDOWS\system32\comctl32.dll
0x76870000 0x64000 5.01.2600.5755 c:\windows\system32\rpcss.dll
0x719f0000 0x17000 5.01.2600.5512 c:\windows\system32\WS2_32.dll
0x719e0000 0x8000 5.01.2600.5512 c:\windows\system32\WS2HELP.dll
0x00670000 0x2da000 5.01.2600.5512 C:\WINDOWS\system32\xpsp2res.dll
0x68000000 0x36000 5.01.2600.5507 C:\WINDOWS\system32\rsaenh.dll
0x71990000 0x40000 5.01.2600.5625 C:\WINDOWS\system32\mswsock.dll
0x62e40000 0x59000 5.01.2600.5512 C:\WINDOWS\system32\hnetcfg.dll
0x719d0000 0x8000 5.01.2600.5512 C:\WINDOWS\System32\wshtcpip.dll
0x76ed0000 0x27000 5.01.2600.5625 C:\WINDOWS\system32\DNSAPI.dll
0x76d10000 0x19000 5.01.2600.5512 C:\WINDOWS\system32\iphlpapi.dll
0x76f60000 0x8000 5.01.2600.5512 C:\WINDOWS\System32\winrnr.dll
0x76f10000 0x2d000 5.01.2600.5512 C:\WINDOWS\system32\WLDAP32.dll
0x76f70000 0x6000 5.01.2600.5512 C:\WINDOWS\system32\rasadhlp.dll
0x76f80000 0x7f000 2001.12.4414.0700 C:\WINDOWS\system32\CLBCATQ.DLL
0x77000000 0xd4000 2001.12.4414.0700 C:\WINDOWS\system32\COMRes.dll
------------------------------------------------------------------------------
svchost.exe pid: 1088
Command line: C:\WINDOWS\System32\svchost.exe -k netsvcs
Base Size Version Path
0x01000000 0x6000 5.01.2600.5512 C:\WINDOWS\System32\svchost.exe
0x7c910000 0xb9000 5.01.2600.5755 C:\WINDOWS\system32\ntdll.dll
0x7c800000 0x106000 5.01.2600.5781 C:\WINDOWS\system32\kernel32.dll
0x77da0000 0xac000 5.01.2600.5755 C:\WINDOWS\system32\ADVAPI32.dll
0x77e50000 0x93000 5.01.2600.6015 C:\WINDOWS\system32\RPCRT4.dll
0x77fc0000 0x11000 5.01.2600.5834 C:\WINDOWS\system32\Secur32.dll
0x5cea0000 0x26000 5.01.2600.5512 C:\WINDOWS\System32\ShimEng.dll
0x595b0000 0x1ca000 5.01.2600.5512 C:\WINDOWS\AppPatch\AcGenral.DLL
0x7e390000 0x91000 5.01.2600.5512 C:\WINDOWS\system32\USER32.dll
0x77ef0000 0x49000 5.01.2600.5698 C:\WINDOWS\system32\GDI32.dll
0x76ae0000 0x2f000 5.01.2600.5512 C:\WINDOWS\System32\WINMM.dll
0x774a0000 0x13d000 5.01.2600.5512 C:\WINDOWS\system32\ole32.dll
0x77be0000 0x58000 7.00.2600.5512 C:\WINDOWS\system32\msvcrt.dll
0x770e0000 0x8b000 5.01.2600.5512 C:\WINDOWS\system32\OLEAUT32.dll
0x77bb0000 0x15000 5.01.2600.5512 C:\WINDOWS\System32\MSACM32.dll
0x77bd0000 0x8000 5.01.2600.5512 C:\WINDOWS\system32\VERSION.dll
0x7c9d0000 0x825000 6.00.2900.6018 C:\WINDOWS\system32\SHELL32.dll
0x77f40000 0x76000 6.00.2900.5912 C:\WINDOWS\system32\SHLWAPI.dll
0x76960000 0xb6000 5.01.2600.5512 C:\WINDOWS\system32\USERENV.dll
0x5b090000 0x38000 6.00.2900.5512 C:\WINDOWS\System32\UxTheme.dll
0x76320000 0x1d000 5.01.2600.5512 C:\WINDOWS\system32\IMM32.DLL
0x77390000 0x103000 6.00.2900.5512 C:\WINDOWS\WinSxS\x86_Microsoft.Windows.Common-Controls_6595b64144ccf1df_6.0.2600.5512_x-ww_35d4ce83\comctl32.dll
0x58b50000 0x9a000 5.82.2900.5512 C:\WINDOWS\system32\comctl32.dll
0x77650000 0x21000 5.01.2600.5512 C:\WINDOWS\System32\NTMARTA.DLL
0x71b50000 0x13000 5.01.2600.5512 C:\WINDOWS\System32\SAMLIB.dll
0x76f10000 0x2d000 5.01.2600.5512 C:\WINDOWS\system32\WLDAP32.dll
0x00630000 0x2da000 5.01.2600.5512 C:\WINDOWS\System32\xpsp2res.dll
0x776a0000 0x24000 6.00.2900.5512 c:\windows\system32\shsvcs.dll
0x762f0000 0x10000 5.01.2600.5512 C:\WINDOWS\System32\WINSTA.dll
0x6fee0000 0x55000 5.01.2600.5694 C:\WINDOWS\System32\NETAPI32.dll
0x7d4d0000 0x22000 5.01.2600.5512 c:\windows\system32\dhcpcsvc.dll
0x76ed0000 0x27000 5.01.2600.5625 c:\windows\system32\DNSAPI.dll
0x719f0000 0x17000 5.01.2600.5512 c:\windows\system32\WS2_32.dll
0x719e0000 0x8000 5.01.2600.5512 c:\windows\system32\WS2HELP.dll
0x76d10000 0x19000 5.01.2600.5512 c:\windows\system32\iphlpapi.dll
0x68000000 0x36000 5.01.2600.5507 C:\WINDOWS\System32\rsaenh.dll
0x71990000 0x40000 5.01.2600.5625 C:\WINDOWS\system32\mswsock.dll
0x62e40000 0x59000 5.01.2600.5512 C:\WINDOWS\System32\hnetcfg.dll
0x719d0000 0x8000 5.01.2600.5512 C:\WINDOWS\System32\wshtcpip.dll
0x7db30000 0x8c000 5.01.2600.5512 c:\windows\system32\wzcsvc.dll
0x76e30000 0xe000 5.01.2600.5512 c:\windows\system32\rtutils.dll
0x76ce0000 0x4000 5.01.2600.5512 c:\windows\system32\WMI.dll
0x779e0000 0x97000 5.131.2600.5512 c:\windows\system32\CRYPT32.dll
0x77a80000 0x12000 5.01.2600.5875 c:\windows\system32\MSASN1.dll
0x71780000 0xb000 5.01.2600.5512 c:\windows\system32\EapolQec.dll
0x76ac0000 0x11000 3.05.2284.0002 c:\windows\system32\ATL.DLL
0x5bdf0000 0x16000 5.01.2600.5512 c:\windows\system32\QUtil.dll
0x76010000 0x65000 6.02.3104.0000 c:\windows\system32\MSVCP60.dll
0x5b660000 0xa000 5.01.2600.5512 c:\windows\system32\dot3api.dll
0x76f00000 0x8000 5.01.2600.5512 c:\windows\system32\WTSAPI32.dll
0x6f890000 0x111000 5.01.2600.5512 c:\windows\system32\ESENT.dll
0x76f80000 0x7f000 2001.12.4414.0700 C:\WINDOWS\System32\CLBCATQ.DLL
0x77000000 0xd4000 2001.12.4414.0700 C:\WINDOWS\System32\COMRes.dll
0x778e0000 0xf8000 5.01.2600.5512 C:\WINDOWS\System32\SETUPAPI.DLL
0x7d500000 0x27000 5.01.2600.5886 C:\WINDOWS\System32\rastls.dll
0x76610000 0x84000 5.131.2600.5512 C:\WINDOWS\System32\CRYPTUI.dll
0x404a0000 0xe6000 8.00.6001.18939 C:\WINDOWS\system32\WININET.dll
0x01520000 0x9000 6.00.5441.0000 C:\WINDOWS\system32\Normaliz.dll
0x45180000 0x133000 8.00.6001.18939 C:\WINDOWS\system32\urlmon.dll
0x40b40000 0x1e8000 8.00.6001.18939 C:\WINDOWS\system32\iertutil.dll
0x76be0000 0x2e000 5.131.2600.5922 C:\WINDOWS\System32\WINTRUST.dll
0x76c40000 0x28000 5.01.2600.5512 C:\WINDOWS\system32\IMAGEHLP.dll
0x76cf0000 0x18000 5.01.2600.5512 C:\WINDOWS\System32\MPRAPI.dll
0x77c90000 0x32000 5.01.2600.5512 C:\WINDOWS\System32\ACTIVEDS.dll
0x76dc0000 0x25000 5.01.2600.5512 C:\WINDOWS\System32\adsldpc.dll
0x76e90000 0x3c000 5.01.2600.5512 C:\WINDOWS\System32\RASAPI32.dll
0x76e40000 0x12000 5.01.2600.5512 C:\WINDOWS\System32\rasman.dll
0x76e60000 0x2f000 5.01.2600.5512 C:\WINDOWS\System32\TAPI32.dll
0x76790000 0x28000 5.01.2600.6006 C:\WINDOWS\System32\SCHANNEL.dll
0x72340000 0x1c000 5.01.2600.5512 C:\WINDOWS\System32\WinSCard.dll
0x76ba0000 0xb000 5.01.2600.5512 C:\WINDOWS\System32\PSAPI.DLL
0x76c90000 0x16000 5.01.2600.5886 C:\WINDOWS\System32\raschap.dll
0x77c40000 0x25000 5.01.2600.5876 C:\WINDOWS\system32\msv1_0.dll
0x76730000 0xc000 5.01.2600.5512 C:\WINDOWS\System32\cryptdll.dll
0x76b10000 0x34000 5.01.2600.5512 c:\windows\system32\schedsvc.dll
0x76740000 0x13000 5.01.2600.5512 c:\windows\system32\NTDSAPI.dll
0x74ec0000 0x5000 6.00.2900.5512 C:\WINDOWS\System32\MSIDLE.DLL
0x70da0000 0xd000 5.01.2600.5512 c:\windows\system32\audiosrv.dll
0x772d0000 0x23000 5.01.2600.5826 c:\windows\system32\wkssvc.dll
0x60ac0000 0x6b000 6.07.2600.5512 c:\windows\system32\qmgr.dll
0x71a60000 0x12000 5.01.2600.5512 C:\WINDOWS\system32\MPR.dll
0x76720000 0x9000 6.00.2900.5512 c:\windows\system32\SHFOLDER.dll
0x4d5e0000 0x59000 5.01.2600.5868 c:\windows\system32\WINHTTP.dll
0x77cd0000 0x33000 5.01.2600.5512 C:\WINDOWS\System32\netman.dll
0x76390000 0x1a9000 5.01.2600.5512 C:\WINDOWS\System32\netshell.dll
0x76bb0000 0x2f000 5.01.2600.5512 C:\WINDOWS\System32\credui.dll
0x72640000 0x6000 5.01.2600.5512 C:\WINDOWS\System32\dot3dlg.dll
0x73990000 0x28000 5.01.2600.5512 C:\WINDOWS\System32\OneX.DLL
0x6da60000 0x22000 5.01.2600.5512 C:\WINDOWS\System32\eappcfg.dll
0x200e0000 0xe000 5.01.2600.5512 C:\WINDOWS\System32\eappprxy.dll
0x72f80000 0x10000 5.01.2600.5512 C:\WINDOWS\System32\WZCSAPI.DLL
0x76cc0000 0x12000 5.01.2600.5512 c:\windows\system32\cryptsvc.dll
0x752c0000 0x33000 5.01.2600.5512 c:\windows\system32\certcli.dll
0x74ef0000 0x9000 5.01.2600.5512 c:\windows\system32\ersvc.dll
0x776d0000 0x44000 2001.12.4414.0706 c:\windows\system32\es.dll
0x74eb0000 0xc000 5.01.2600.5512 c:\windows\pchealth\helpctr\binaries\pchsvc.dll
0x68d40000 0x9000 5.01.2600.5512 c:\windows\system32\hidserv.dll
0x68d50000 0x9000 5.01.2600.5512 c:\windows\system32\HID.DLL
0x75000000 0x1a000 5.01.2600.5512 c:\windows\system32\srvsvc.dll
0x73c70000 0x8000 5.01.2600.5512 c:\windows\system32\seclogon.dll
0x72240000 0xd000 5.01.2600.5512 c:\windows\system32\sens.dll
0x75110000 0x2e000 5.01.2600.5512 c:\windows\system32\srsvc.dll
0x74a40000 0x8000 6.00.2900.5512 c:\windows\system32\POWRPROF.dll
0x73330000 0x40000 5.01.2600.5512 c:\windows\system32\tapisrv.dll
0x76d90000 0x16000 5.01.2600.5512 c:\windows\system32\browser.dll
0x50000000 0x5000 5.04.3790.5512 c:\windows\system32\wuauserv.dll
0x4f0b0000 0x28000 5.01.2600.5512 c:\windows\system32\wbem\wmisvc.dll
0x75350000 0x6d000 5.01.2600.5512 C:\WINDOWS\system32\VSSAPI.DLL
0x50040000 0x1d9000 7.04.7600.0226 C:\WINDOWS\system32\wuaueng.dll
0x72f50000 0x26000 5.01.2600.5512 C:\WINDOWS\System32\WINSPOOL.DRV
0x750c0000 0x13000 5.01.2600.5512 C:\WINDOWS\System32\Cabinet.dll
0x60440000 0xb000 5.01.2600.5512 C:\WINDOWS\System32\mspatcha.dll
0x76760000 0x2d000 5.01.2600.5512 c:\windows\system32\w32time.dll
0x74fe0000 0x19000 5.01.2600.5512 c:\windows\system32\trkwks.dll
0x66890000 0x56000 5.01.2600.5512 c:\windows\system32\ipnathlp.dll
0x77680000 0x12000 5.01.2600.5512 c:\windows\system32\AUTHZ.dll
0x4c190000 0x17000 5.01.2600.5512 c:\windows\system32\wscsvc.dll
0x7d200000 0x2bc000 3.01.4001.5512 c:\windows\system32\msi.dll
0x75200000 0x37000 5.01.2600.5512 C:\WINDOWS\system32\wbem\wbemcomn.dll
0x76250000 0x85000 5.01.2600.5512 C:\WINDOWS\system32\WBEM\wbemcore.dll
0x75280000 0x3f000 5.01.2600.5512 C:\WINDOWS\system32\WBEM\esscli.dll
0x75610000 0x76000 5.01.2600.5755 C:\WINDOWS\system32\WBEM\FastProx.dll
0x77210000 0xb1000 5.01.2600.5512 C:\WINDOWS\System32\SXS.DLL
0x74e40000 0xe000 5.01.2600.5512 C:\WINDOWS\system32\wbem\wbemsvc.dll
0x76080000 0x13c000 2001.12.4414.0702 C:\WINDOWS\system32\comsvcs.dll
0x750a0000 0x14000 2001.12.4414.0700 C:\WINDOWS\system32\colbact.DLL
0x75060000 0x13000 2001.12.4414.0706 C:\WINDOWS\system32\MTXCLU.DLL
0x71a10000 0xa000 5.01.2600.5512 C:\WINDOWS\system32\WSOCK32.dll
0x76d50000 0x12000 5.01.2600.5512 C:\WINDOWS\System32\CLUSAPI.DLL
0x75020000 0x12000 5.01.2600.5512 C:\WINDOWS\System32\RESUTILS.DLL
0x74f90000 0x1c000 5.01.2600.5512 C:\WINDOWS\system32\wbem\wmiutils.dll
0x75170000 0x2f000 5.01.2600.5512 C:\WINDOWS\system32\wbem\repdrvfs.dll
0x76b50000 0x5000 5.01.2600.5512 C:\WINDOWS\System32\sfc.dll
0x76c10000 0x2a000 5.01.2600.5512 C:\WINDOWS\System32\sfc_os.dll
0x41d50000 0x72000 5.01.2600.5755 C:\WINDOWS\system32\wbem\wmiprvsd.dll
0x5fb00000 0xc000 5.01.2600.5512 C:\WINDOWS\system32\NCObjAPI.DLL
0x75300000 0x46000 5.01.2600.5512 C:\WINDOWS\system32\wbem\wbemess.dll
0x77b50000 0x22000 5.01.2600.5512 C:\WINDOWS\system32\Apphelp.dll
0x5fad0000 0xe000 5.01.2600.5512 C:\WINDOWS\system32\wbem\ncprov.dll
0x76df0000 0x24000 5.01.2600.5512 C:\WINDOWS\system32\upnp.dll
0x74e70000 0xc000 5.01.2600.5512 C:\WINDOWS\system32\SSDPAPI.dll
0x75570000 0x9d000 5.01.2600.5512 C:\WINDOWS\system32\netcfgx.dll
0x7def0000 0x32000 5.01.2600.5512 c:\windows\system32\rasmans.dll
0x742d0000 0xb000 5.01.2600.5512 c:\windows\system32\WINIPSEC.DLL
0x75880000 0x11000 5.01.2600.5512 C:\WINDOWS\System32\rastapi.dll
0x76f70000 0x6000 5.01.2600.5512 C:\WINDOWS\System32\rasadhlp.dll
0x57f70000 0x36000 5.01.2600.5512 C:\WINDOWS\System32\unimdm.tsp
0x71f70000 0x7000 5.01.2600.5512 C:\WINDOWS\System32\uniplat.dll
0x57ff0000 0xb000 5.01.2600.5512 C:\WINDOWS\System32\kmddsp.tsp
0x57fd0000 0x10000 5.01.2600.5512 C:\WINDOWS\System32\ndptsp.tsp
0x58000000 0x8000 5.01.2600.5512 C:\WINDOWS\System32\ipconf.tsp
0x58020000 0x46000 5.01.2600.5512 C:\WINDOWS\System32\h323.tsp
0x58010000 0xa000 5.01.2600.5512 C:\WINDOWS\System32\hidphone.tsp
0x721b0000 0x37000 5.01.2600.5512 C:\WINDOWS\System32\rasppp.dll
0x72400000 0x6000 5.01.2600.5512 C:\WINDOWS\System32\ntlsapi.dll
0x71c50000 0x4c000 5.01.2600.5834 C:\WINDOWS\system32\kerberos.dll
0x74550000 0x13000 5.01.2600.5512 C:\WINDOWS\System32\RASQEC.DLL
0x754c0000 0xaa000 5.01.2600.5512 C:\WINDOWS\System32\RASDLG.dll
0x50640000 0xa000 7.04.7600.0226 C:\WINDOWS\system32\wups.dll
0x50f00000 0xd000 7.04.7600.0226 C:\WINDOWS\system32\wups2.dll
0x73c80000 0x17000 5.01.2600.5512 C:\WINDOWS\system32\wbem\wbemcons.dll
------------------------------------------------------------------------------
svchost.exe pid: 1140
Command line: C:\WINDOWS\system32\svchost.exe -k NetworkService
Base Size Version Path
0x01000000 0x6000 5.01.2600.5512 C:\WINDOWS\system32\svchost.exe
0x7c910000 0xb9000 5.01.2600.5755 C:\WINDOWS\system32\ntdll.dll
0x7c800000 0x106000 5.01.2600.5781 C:\WINDOWS\system32\kernel32.dll
0x77da0000 0xac000 5.01.2600.5755 C:\WINDOWS\system32\ADVAPI32.dll
0x77e50000 0x93000 5.01.2600.6015 C:\WINDOWS\system32\RPCRT4.dll
0x77fc0000 0x11000 5.01.2600.5834 C:\WINDOWS\system32\Secur32.dll
0x5cea0000 0x26000 5.01.2600.5512 C:\WINDOWS\system32\ShimEng.dll
0x595b0000 0x1ca000 5.01.2600.5512 C:\WINDOWS\AppPatch\AcGenral.DLL
0x7e390000 0x91000 5.01.2600.5512 C:\WINDOWS\system32\USER32.dll
0x77ef0000 0x49000 5.01.2600.5698 C:\WINDOWS\system32\GDI32.dll
0x76ae0000 0x2f000 5.01.2600.5512 C:\WINDOWS\system32\WINMM.dll
0x774a0000 0x13d000 5.01.2600.5512 C:\WINDOWS\system32\ole32.dll
0x77be0000 0x58000 7.00.2600.5512 C:\WINDOWS\system32\msvcrt.dll
0x770e0000 0x8b000 5.01.2600.5512 C:\WINDOWS\system32\OLEAUT32.dll
0x77bb0000 0x15000 5.01.2600.5512 C:\WINDOWS\system32\MSACM32.dll
0x77bd0000 0x8000 5.01.2600.5512 C:\WINDOWS\system32\VERSION.dll
0x7c9d0000 0x825000 6.00.2900.6018 C:\WINDOWS\system32\SHELL32.dll
0x77f40000 0x76000 6.00.2900.5912 C:\WINDOWS\system32\SHLWAPI.dll
0x76960000 0xb6000 5.01.2600.5512 C:\WINDOWS\system32\USERENV.dll
0x5b090000 0x38000 6.00.2900.5512 C:\WINDOWS\system32\UxTheme.dll
0x76320000 0x1d000 5.01.2600.5512 C:\WINDOWS\system32\IMM32.DLL
0x77390000 0x103000 6.00.2900.5512 C:\WINDOWS\WinSxS\x86_Microsoft.Windows.Common-Controls_6595b64144ccf1df_6.0.2600.5512_x-ww_35d4ce83\comctl32.dll
0x58b50000 0x9a000 5.82.2900.5512 C:\WINDOWS\system32\comctl32.dll
0x76710000 0xd000 5.01.2600.5512 c:\windows\system32\dnsrslvr.dll
0x76ed0000 0x27000 5.01.2600.5625 c:\windows\system32\DNSAPI.dll
0x719f0000 0x17000 5.01.2600.5512 c:\windows\system32\WS2_32.dll
0x719e0000 0x8000 5.01.2600.5512 c:\windows\system32\WS2HELP.dll
0x76d10000 0x19000 5.01.2600.5512 c:\windows\system32\iphlpapi.dll
0x68000000 0x36000 5.01.2600.5507 C:\WINDOWS\system32\rsaenh.dll
0x71990000 0x40000 5.01.2600.5625 C:\WINDOWS\system32\mswsock.dll
0x62e40000 0x59000 5.01.2600.5512 C:\WINDOWS\system32\hnetcfg.dll
0x719d0000 0x8000 5.01.2600.5512 C:\WINDOWS\System32\wshtcpip.dll
------------------------------------------------------------------------------
svchost.exe pid: 1256
Command line: C:\WINDOWS\system32\svchost.exe -k LocalService
Base Size Version Path
0x01000000 0x6000 5.01.2600.5512 C:\WINDOWS\system32\svchost.exe
0x7c910000 0xb9000 5.01.2600.5755 C:\WINDOWS\system32\ntdll.dll
0x7c800000 0x106000 5.01.2600.5781 C:\WINDOWS\system32\kernel32.dll
0x77da0000 0xac000 5.01.2600.5755 C:\WINDOWS\system32\ADVAPI32.dll
0x77e50000 0x93000 5.01.2600.6015 C:\WINDOWS\system32\RPCRT4.dll
0x77fc0000 0x11000 5.01.2600.5834 C:\WINDOWS\system32\Secur32.dll
0x5cea0000 0x26000 5.01.2600.5512 C:\WINDOWS\system32\ShimEng.dll
0x595b0000 0x1ca000 5.01.2600.5512 C:\WINDOWS\AppPatch\AcGenral.DLL
0x7e390000 0x91000 5.01.2600.5512 C:\WINDOWS\system32\USER32.dll
0x77ef0000 0x49000 5.01.2600.5698 C:\WINDOWS\system32\GDI32.dll
0x76ae0000 0x2f000 5.01.2600.5512 C:\WINDOWS\system32\WINMM.dll
0x774a0000 0x13d000 5.01.2600.5512 C:\WINDOWS\system32\ole32.dll
0x77be0000 0x58000 7.00.2600.5512 C:\WINDOWS\system32\msvcrt.dll
0x770e0000 0x8b000 5.01.2600.5512 C:\WINDOWS\system32\OLEAUT32.dll
0x77bb0000 0x15000 5.01.2600.5512 C:\WINDOWS\system32\MSACM32.dll
0x77bd0000 0x8000 5.01.2600.5512 C:\WINDOWS\system32\VERSION.dll
0x7c9d0000 0x825000 6.00.2900.6018 C:\WINDOWS\system32\SHELL32.dll
0x77f40000 0x76000 6.00.2900.5912 C:\WINDOWS\system32\SHLWAPI.dll
0x76960000 0xb6000 5.01.2600.5512 C:\WINDOWS\system32\USERENV.dll
0x5b090000 0x38000 6.00.2900.5512 C:\WINDOWS\system32\UxTheme.dll
0x76320000 0x1d000 5.01.2600.5512 C:\WINDOWS\system32\IMM32.DLL
0x77390000 0x103000 6.00.2900.5512 C:\WINDOWS\WinSxS\x86_Microsoft.Windows.Common-Controls_6595b64144ccf1df_6.0.2600.5512_x-ww_35d4ce83\comctl32.dll
0x58b50000 0x9a000 5.82.2900.5512 C:\WINDOWS\system32\comctl32.dll
0x77650000 0x21000 5.01.2600.5512 C:\WINDOWS\system32\NTMARTA.DLL
0x71b50000 0x13000 5.01.2600.5512 C:\WINDOWS\system32\SAMLIB.dll
0x76f10000 0x2d000 5.01.2600.5512 C:\WINDOWS\system32\WLDAP32.dll
0x00630000 0x2da000 5.01.2600.5512 C:\WINDOWS\system32\xpsp2res.dll
0x74bb0000 0x6000 5.01.2600.5512 c:\windows\system32\lmhsvc.dll
0x76d10000 0x19000 5.01.2600.5512 c:\windows\system32\iphlpapi.dll
0x719f0000 0x17000 5.01.2600.5512 c:\windows\system32\WS2_32.dll
0x719e0000 0x8000 5.01.2600.5512 c:\windows\system32\WS2HELP.dll
0x70fb0000 0x8000 5.01.2600.5512 c:\windows\system32\alrsvc.dll
0x6fee0000 0x55000 5.01.2600.5694 c:\windows\system32\NETAPI32.dll
0x76840000 0x14000 5.01.2600.5512 c:\windows\system32\ssdpsrv.dll
0x62e40000 0x59000 5.01.2600.5512 C:\WINDOWS\system32\hnetcfg.dll
0x76f80000 0x7f000 2001.12.4414.0700 C:\WINDOWS\system32\CLBCATQ.DLL
0x77000000 0xd4000 2001.12.4414.0700 C:\WINDOWS\system32\COMRes.dll
0x71990000 0x40000 5.01.2600.5625 C:\WINDOWS\system32\mswsock.dll
0x719d0000 0x8000 5.01.2600.5512 C:\WINDOWS\System32\wshtcpip.dll
0x68f30000 0x32000 5.01.2600.5512 c:\windows\system32\upnphost.dll
0x4d5e0000 0x59000 5.01.2600.5868 c:\windows\system32\WINHTTP.dll
0x74e70000 0xc000 5.01.2600.5512 c:\windows\system32\SSDPAPI.dll
0x748f0000 0x123000 8.100.1052.0000 C:\WINDOWS\system32\msxml3.dll
0x45180000 0x133000 8.00.6001.18939 C:\WINDOWS\system32\urlmon.dll
0x40b40000 0x1e8000 8.00.6001.18939 C:\WINDOWS\system32\iertutil.dll
0x404a0000 0xe6000 8.00.6001.18939 C:\WINDOWS\system32\WININET.dll
0x00f20000 0x9000 6.00.5441.0000 C:\WINDOWS\system32\Normaliz.dll
------------------------------------------------------------------------------
svchost.exe pid: 2572
Command line: C:\WINDOWS\system32\svchost.exe -k imgsvc
Base Size Version Path
0x01000000 0x6000 5.01.2600.5512 C:\WINDOWS\system32\svchost.exe
0x7c910000 0xb9000 5.01.2600.5755 C:\WINDOWS\system32\ntdll.dll
0x7c800000 0x106000 5.01.2600.5781 C:\WINDOWS\system32\kernel32.dll
0x77da0000 0xac000 5.01.2600.5755 C:\WINDOWS\system32\ADVAPI32.dll
0x77e50000 0x93000 5.01.2600.6015 C:\WINDOWS\system32\RPCRT4.dll
0x77fc0000 0x11000 5.01.2600.5834 C:\WINDOWS\system32\Secur32.dll
0x5cea0000 0x26000 5.01.2600.5512 C:\WINDOWS\system32\ShimEng.dll
0x595b0000 0x1ca000 5.01.2600.5512 C:\WINDOWS\AppPatch\AcGenral.DLL
0x7e390000 0x91000 5.01.2600.5512 C:\WINDOWS\system32\USER32.dll
0x77ef0000 0x49000 5.01.2600.5698 C:\WINDOWS\system32\GDI32.dll
0x76ae0000 0x2f000 5.01.2600.5512 C:\WINDOWS\system32\WINMM.dll
0x774a0000 0x13d000 5.01.2600.5512 C:\WINDOWS\system32\ole32.dll
0x77be0000 0x58000 7.00.2600.5512 C:\WINDOWS\system32\msvcrt.dll
0x770e0000 0x8b000 5.01.2600.5512 C:\WINDOWS\system32\OLEAUT32.dll
0x77bb0000 0x15000 5.01.2600.5512 C:\WINDOWS\system32\MSACM32.dll
0x77bd0000 0x8000 5.01.2600.5512 C:\WINDOWS\system32\VERSION.dll
0x7c9d0000 0x825000 6.00.2900.6018 C:\WINDOWS\system32\SHELL32.dll
0x77f40000 0x76000 6.00.2900.5912 C:\WINDOWS\system32\SHLWAPI.dll
0x76960000 0xb6000 5.01.2600.5512 C:\WINDOWS\system32\USERENV.dll
0x5b090000 0x38000 6.00.2900.5512 C:\WINDOWS\system32\UxTheme.dll
0x76320000 0x1d000 5.01.2600.5512 C:\WINDOWS\system32\IMM32.DLL
0x77390000 0x103000 6.00.2900.5512 C:\WINDOWS\WinSxS\x86_Microsoft.Windows.Common-Controls_6595b64144ccf1df_6.0.2600.5512_x-ww_35d4ce83\comctl32.dll
0x58b50000 0x9a000 5.82.2900.5512 C:\WINDOWS\system32\comctl32.dll
0x75a00000 0x55000 5.01.2600.5512 c:\windows\system32\wiaservc.dll
0x74a50000 0x7000 5.01.2600.5512 c:\windows\system32\CFGMGR32.dll
0x778e0000 0xf8000 5.01.2600.5512 c:\windows\system32\setupapi.DLL
0x73a80000 0x15000 5.01.2600.5627 c:\windows\system32\mscms.dll
0x72f50000 0x26000 5.01.2600.5512 c:\windows\system32\WINSPOOL.DRV
0x762f0000 0x10000 5.01.2600.5512 c:\windows\system32\WINSTA.dll
0x6fee0000 0x55000 5.01.2600.5694 c:\windows\system32\NETAPI32.dll
0x00680000 0x2da000 5.01.2600.5512 C:\WINDOWS\system32\xpsp2res.dll
0x76f80000 0x7f000 2001.12.4414.0700 C:\WINDOWS\system32\CLBCATQ.DLL
0x77000000 0xd4000 2001.12.4414.0700 C:\WINDOWS\system32\COMRes.dll
0x76be0000 0x2e000 5.131.2600.5922 C:\WINDOWS\system32\WINTRUST.dll
0x779e0000 0x97000 5.131.2600.5512 C:\WINDOWS\system32\CRYPT32.dll
0x77a80000 0x12000 5.01.2600.5875 C:\WINDOWS\system32\MSASN1.dll
0x76c40000 0x28000 5.01.2600.5512 C:\WINDOWS\system32\IMAGEHLP.dll
0x5a7b0000 0x26000 5.01.2600.0000 C:\WINDOWS\system32\wiavusd.dll
0x4eb80000 0x1ab000 5.02.6001.22319 C:\WINDOWS\WinSxS\x86_Microsoft.Windows.GdiPlus_6595b64144ccf1df_1.0.6001.22319_x-ww_f0b4c2df\gdiplus.dll
0x76720000 0x9000 6.00.2900.5512 C:\WINDOWS\system32\SHFOLDER.dll
0x71ca0000 0x1b000 6.00.2900.5512 C:\WINDOWS\system32\actxprxy.dll
0x73af0000 0x14000 5.01.2600.5512 C:\WINDOWS\system32\sti.dll

No matching processes were found.

¤¤¤¤¤¤¤¤¤¤ Drivers ¤¤¤¤¤¤¤¤¤¤

8d488938e2f7048906f1fbd3af394887 c:\windows\system32\drivers\aavmker4.sys
e5e6dbfc41ea8aad005cb9a57a96b43b c:\windows\system32\drivers\acpi.sys
e4abc1212b70bb03d35e60681c447210 c:\windows\system32\drivers\acpiec.sys
8bed39e3c35d6a489438b8141717a557 c:\windows\system32\drivers\aec.sys
a7b8a3a79d35215d798a300df49ed23f c:\windows\system32\drivers\afc.sys
7e775010ef291da96ad17ca4b17137d7 c:\windows\system32\drivers\afd.sys
08fd04aa961bdc77fb983f328334e3d7 c:\windows\system32\drivers\agp440.sys
03a7e0922acfe1b07d5db2eeb0773063 c:\windows\system32\drivers\agpcpq.sys
dd8520280304b6145a6be31008748c7c c:\windows\system32\drivers\alcxwdm.sys
cb08aed0de2dd889a8a820cd8082d83c c:\windows\system32\drivers\alim1541.sys
95b4fb835e28aa1336ceeb07fd5b9398 c:\windows\system32\drivers\amdagp.sys
c6c0f974ab7e825813f8e6b4e5581750 c:\windows\system32\drivers\amdk6.sys
d3dabc57be6d456dfd4bc026cfa582ff c:\windows\system32\drivers\amdk7.sys
033448d435e65c4bd72e70521fd05c76 c:\windows\system32\drivers\AmdPPM.sys
b5b8a80875c1dededa8b02765642c32f c:\windows\system32\drivers\arp1394.sys
a0d86b8ac93ef95620420c7a24ac5344 c:\windows\system32\drivers\aswFsBlk.sys
570158b3b6fabc239992b42f5d23e5df c:\windows\system32\drivers\aswmon.sys
7d880c76a285a41284d862e2d798ec0d c:\windows\system32\drivers\aswmon2.sys
69823954bbd461a73d69774928c9737e c:\windows\system32\drivers\aswRdr.sys
7ecc2776638b04553f9a85bd684c3abf c:\windows\system32\drivers\aswSP.sys
095ed820a926aa8189180b305e1bcfc9 c:\windows\system32\drivers\aswTdi.sys
b153affac761e7f5fcfa822b9c4e97bc c:\windows\system32\drivers\asyncmac.sys
9f3a2f5aa6875c72bf062c712cfa2674 c:\windows\system32\drivers\atapi.sys
a766731f31342bf11ca600cccd915941 c:\windows\system32\drivers\ati2erec.dll
bde0f5d73c04b3f16672a7e6ea9d2392 c:\windows\system32\drivers\ati2mtag.sys
9916c1225104ba14794209cfa8012159 c:\windows\system32\drivers\atmarpc.sys
39a0a59180f19946374275745b21aeba c:\windows\system32\drivers\atmepvc.sys
ae76348a2605fb197fa8ff1d6f547836 c:\windows\system32\drivers\atmlane.sys
e7ef69b38d17ba01f914ae8f66216a38 c:\windows\system32\drivers\atmuni.sys
d9f724aa26c010a217c97606b160ed68 c:\windows\system32\drivers\audstub.sys
da1f27d85e0d1525f6621372e7b685e9 c:\windows\system32\drivers\beep.sys
f934d1b230f84e1d19dd00ac5a7a83ed c:\windows\system32\drivers\bridge.sys
ef26202fee56f7607c6b794059df347a c:\windows\system32\drivers\bthport.sys
90a673fc8e12a79afbed2576f6a7aaf9 c:\windows\system32\drivers\cbidf2k.sys
0be5aef125be881c4f854c554f2b025c c:\windows\system32\drivers\ccdecode.sys
c1b486a7658353d33a10cc15211a873b c:\windows\system32\drivers\cdaudio.sys
c885b02847f5d2fd45a24e219ed93b32 c:\windows\system32\drivers\cdfs.sys
1f4260cc5b42272d71f79e570a27a4fe c:\windows\system32\drivers\cdrom.sys
c9b25ae9b8abd983c5ad3f8cbfab0f9c c:\windows\system32\drivers\cinemst2.sys
fe47dd8fe6d7768ff94ebec6c74b2719 c:\windows\system32\drivers\classpnp.sys
9624293e55ad405415862b504ca95b73 c:\windows\system32\drivers\cpqdap01.sys
d68ae021109a74e491b83f3f69fb92cd c:\windows\system32\drivers\crusoe.sys
044452051f3e02e7963599fc8f4f3e25 c:\windows\system32\drivers\disk.sys
e65e2353a5d74ea89971cb918eeeb2f6 c:\windows\system32\drivers\diskdump.sys
f5deadd42335fb33edca74ecb2f36cba c:\windows\system32\drivers\dmboot.sys
5a7c47c9b3f9fb92a66410a7509f0c71 c:\windows\system32\drivers\dmio.sys
e9317282a63ca4d188c0df5e09c6ac5f c:\windows\system32\drivers\dmload.sys
8a208dfcf89792a484e76c40e5f50b45 c:\windows\system32\drivers\DMusic.sys
6cb08593487f5701d2d2254e693eafce c:\windows\system32\drivers\drmk.sys
8f5fcff8e8848afac920905fbd9d33c8 c:\windows\system32\drivers\drmkaud.sys
fe97d0343acfdebdd578fc67cc91fa87 c:\windows\system32\drivers\dxapi.sys
ac7280566a7bb85cb3291f04ddc1198e c:\windows\system32\drivers\dxg.sys
a73f5d6705b1d820c19b18782e176efd c:\windows\system32\drivers\dxgthk.sys
38d332a6d56af32635675f132548343e c:\windows\system32\drivers\fastfat.sys
92cdd60b6730b9f50f6a1a0c1f8cdc81 c:\windows\system32\drivers\fdc.sys
31f923eb2170fc172c81abda0045d18c c:\windows\system32\drivers\fips.sys
9d27e7b80bfcdf1cdd9b555862d5e
0
Réponse 14 / 36
Utilisateur anonyme
Modifié par gen-hackman le 12/10/2010 à 22:32
j'ai rien compris à ce que tu as fait essaie de lire commme il le faut stp merci
¤¤¤¤¤¤?G3?-?@¢??@?(TM)©®?¤¤¤¤¤¤
0
Réponse 15 / 36
Stéf en 73
12 oct. 2010 à 22:33
Zut le lien" ci-joint" est visible, c'est pas grave ??.
0
Réponse 16 / 36
Utilisateur anonyme
12 oct. 2010 à 22:36
ben non il n y a rien au bout , et quand bien meme ce n'est qu'une question de longueur de rapport qui ne rentre pas entier donc plus facilement lisible via cijoint
0
Réponse 17 / 36
Stéf en 73
12 oct. 2010 à 22:46
As-tu reçu le premier s'il te plait ( List'em.txt ) ??
0
Réponse 18 / 36
Utilisateur anonyme
12 oct. 2010 à 22:47
non je répète :

Pour me le transmettre clique sur ce lien : http://www.cijoint.fr/

? Clique sur Parcourir et cherche le fichier C:\List'em.txt

? Clique sur Ouvrir.

? Clique sur "Cliquez ici pour déposer le fichier".

Un lien de cette forme :

http://www.cijoint.fr/cjlink.php?file=265368/cijSKAP5fU.txt

est ajouté dans la page.

? Copie ce lien dans ta réponse.

? Fais de même avec more.txt qui se trouve sur ton bureau
0
Réponse 19 / 36
Stéf en 73
12 oct. 2010 à 22:53
http://www.cijoint.fr/cjlink.php?file=cj201010/cijQRoLkjE.txt


... et là ???!!!.
0
Réponse 20 / 36
Utilisateur anonyme
12 oct. 2010 à 22:57
là c'est bon mais spamfighter n'est pas desinstallé
0

Discussions similaires

Impossible d'afficher le rapport de tableau croisé dynamique sur un rapport
Utilisateur anonyme -
TomH. -

13 réponses
écrire un rapport de travail
asi -
REGINALD -

3 réponses
a quoi sert vraiment ce logiciel ZHPDIAG
Utilisateur anonyme -
Utilisateur anonyme -

7 réponses
1fichier.com et bloqueur de pub
anthea1309 -
Patoche12 -

60 réponses
impossible d'afficher le tableau dynamique sur un rapport existant
Pierre -
Adrien71 -

3 réponses