Virus malware doctor
Résolu/Fermé
nataliava
-
19 déc. 2010 à 02:45
moment de grace Messages postés 29042 Date d'inscription samedi 6 décembre 2008 Statut Contributeur sécurité Dernière intervention 18 juillet 2013 - 20 déc. 2010 à 00:19
moment de grace Messages postés 29042 Date d'inscription samedi 6 décembre 2008 Statut Contributeur sécurité Dernière intervention 18 juillet 2013 - 20 déc. 2010 à 00:19
A voir également:
- Virus malware doctor
- Pc doctor - Télécharger - Optimisation
- Malware byte - Télécharger - Antivirus & Antimalwares
- Youtu.be virus - Accueil - Guide virus
- Disk doctor - Télécharger - Récupération de données
- Svchost.exe virus - Guide
25 réponses
moment de grace
Messages postés
29042
Date d'inscription
samedi 6 décembre 2008
Statut
Contributeur sécurité
Dernière intervention
18 juillet 2013
2 274
Modifié par moment de grace le 19/12/2010 à 02:49
Modifié par moment de grace le 19/12/2010 à 02:49
bonjour
* Télécharge sur le bureau RogueKiller (par tigzy)
https://www.luanagames.com/index.fr.html
*( Sous Vista/Seven,clique droit, lancer en tant qu'administrateur )
* Quitte tous tes programmes en cours
* Lance RogueKiller.exe.
* Lorsque demandé, tape 2 et valide
* Un rapport (RKreport.txt) a du se créer à côté de l'exécutable, colle son contenu dans la réponse *
Si le programme a été bloqué, ne pas hésiter a essayer plusieurs fois.
puis
Télécharge ZHPDiag ( de Nicolas coolman ).
https://www.zebulon.fr/telechargements/securite/systeme/zhpdiag.html
(outil de diagnostic)
Double clique sur le fichier d'installation, puis installe le avec les paramètres par défaut ( N'oublie pas de cocher " Créer une icône sur le bureau " )
Lance ZHPDiag en double cliquant sur l'icône présente sur ton bureau (Clique droit -> Executer en tant qu'admin ( vista )
Clique sur la loupe en haut à gauche, puis laisse l'outil scanner.
Une fois le scan terminé, clique sur l'icône en forme de disquette et enregistre le fichier sur ton bureau.
Rend toi sur Cjoint : http://www.cijoint.fr/
Clique sur "Parcourir " dans la partie " Joindre un fichier[...] "
Sélectionne le rapport ZHPdiag.txt qui se trouve sur ton bureau
Clique ensuite sur "Cliquez ici pour déposer le fichier " et copie/colle le lien dans ton prochain message
CONTRIBUTEUR SECURITE
Désinfection = diagnostic + traitement + finalisation
"Restez" jusqu'au bout...merci
* Télécharge sur le bureau RogueKiller (par tigzy)
https://www.luanagames.com/index.fr.html
*( Sous Vista/Seven,clique droit, lancer en tant qu'administrateur )
* Quitte tous tes programmes en cours
* Lance RogueKiller.exe.
* Lorsque demandé, tape 2 et valide
* Un rapport (RKreport.txt) a du se créer à côté de l'exécutable, colle son contenu dans la réponse *
Si le programme a été bloqué, ne pas hésiter a essayer plusieurs fois.
puis
Télécharge ZHPDiag ( de Nicolas coolman ).
https://www.zebulon.fr/telechargements/securite/systeme/zhpdiag.html
(outil de diagnostic)
Double clique sur le fichier d'installation, puis installe le avec les paramètres par défaut ( N'oublie pas de cocher " Créer une icône sur le bureau " )
Lance ZHPDiag en double cliquant sur l'icône présente sur ton bureau (Clique droit -> Executer en tant qu'admin ( vista )
Clique sur la loupe en haut à gauche, puis laisse l'outil scanner.
Une fois le scan terminé, clique sur l'icône en forme de disquette et enregistre le fichier sur ton bureau.
Rend toi sur Cjoint : http://www.cijoint.fr/
Clique sur "Parcourir " dans la partie " Joindre un fichier[...] "
Sélectionne le rapport ZHPdiag.txt qui se trouve sur ton bureau
Clique ensuite sur "Cliquez ici pour déposer le fichier " et copie/colle le lien dans ton prochain message
CONTRIBUTEUR SECURITE
Désinfection = diagnostic + traitement + finalisation
"Restez" jusqu'au bout...merci
Salut et merci pour ton aide,
j'essaie de faire ce que tu me dis, mais je n'arrive pas à avoir un diagnostique du ZHPDiag, celui-ci arrête à 80% et puis l'ordi plante...
Quoi faire, alors??
j'essaie de faire ce que tu me dis, mais je n'arrive pas à avoir un diagnostique du ZHPDiag, celui-ci arrête à 80% et puis l'ordi plante...
Quoi faire, alors??
moment de grace
Messages postés
29042
Date d'inscription
samedi 6 décembre 2008
Statut
Contributeur sécurité
Dernière intervention
18 juillet 2013
2 274
19 déc. 2010 à 04:03
19 déc. 2010 à 04:03
1)
si tu as fait RogueKiller
poste le rapport
_______
2)
relance zhp
clique sur le tournevis en haut à droite
décoche recherche master boot (080)
puis
lance le scan
si tu as fait RogueKiller
poste le rapport
_______
2)
relance zhp
clique sur le tournevis en haut à droite
décoche recherche master boot (080)
puis
lance le scan
voilà:
MBRCheck, version 1.2.3
(c) 2010, AD
Command-line:
Windows Version: Windows XP Home Edition
Windows Information: Service Pack 3 (build 2600)
Logical Drives Mask: 0x0000000c
Kernel Drivers (total 137):
0x804D7000 \WINDOWS\system32\ntoskrnl.exe
0x806EE000 \WINDOWS\system32\hal.dll
0xF7A50000 \WINDOWS\system32\KDCOM.DLL
0xF7960000 \WINDOWS\system32\BOOTVID.dll
0xF7500000 ACPI.sys
0xF7A52000 \WINDOWS\system32\DRIVERS\WMILIB.SYS
0xF74EF000 pci.sys
0xF7550000 isapnp.sys
0xF7964000 compbatt.sys
0xF7968000 \WINDOWS\system32\DRIVERS\BATTC.SYS
0xF7B18000 pciide.sys
0xF77D0000 \WINDOWS\system32\DRIVERS\PCIIDEX.SYS
0xF74D1000 pcmcia.sys
0xF7560000 MountMgr.sys
0xF74B2000 ftdisk.sys
0xF796C000 ACPIEC.sys
0xF7B19000 \WINDOWS\system32\DRIVERS\OPRGHDLR.SYS
0xF77D8000 PartMgr.sys
0xF7570000 VolSnap.sys
0xF749A000 atapi.sys
0xF7580000 disk.sys
0xF7590000 \WINDOWS\system32\DRIVERS\CLASSPNP.SYS
0xF747A000 fltmgr.sys
0xF7468000 sr.sys
0xF7452000 DRVMCDB.SYS
0xF77E0000 PxHelp20.sys
0xF743B000 KSecDD.sys
0xF73AE000 Ntfs.sys
0xF7381000 NDIS.sys
0xF7367000 Mup.sys
0xF7720000 \SystemRoot\system32\DRIVERS\intelppm.sys
0xF71CC000 \SystemRoot\system32\DRIVERS\ati2mtag.sys
0xF71B8000 \SystemRoot\system32\DRIVERS\VIDEOPRT.SYS
0xF78B8000 \SystemRoot\system32\DRIVERS\usbohci.sys
0xF7194000 \SystemRoot\system32\DRIVERS\USBPORT.SYS
0xF78C0000 \SystemRoot\system32\DRIVERS\usbehci.sys
0xF7730000 \SystemRoot\system32\DRIVERS\imapi.sys
0xF78D0000 \SystemRoot\system32\drivers\iviaspi.sys
0xF7A2C000 \SystemRoot\system32\drivers\pfc.sys
0xF7A90000 \SystemRoot\System32\Drivers\DLACDBHM.SYS
0xF7740000 \SystemRoot\system32\DRIVERS\cdrom.sys
0xF7750000 \SystemRoot\system32\DRIVERS\redbook.sys
0xF7171000 \SystemRoot\system32\DRIVERS\ks.sys
0xF78E8000 \SystemRoot\system32\DRIVERS\GEARAspiWDM.sys
0xF7A34000 \SystemRoot\system32\DRIVERS\CmBatt.sys
0xF7760000 \SystemRoot\system32\DRIVERS\i8042prt.sys
0xF7900000 \SystemRoot\system32\DRIVERS\kbdclass.sys
0xF7158000 \SystemRoot\system32\DRIVERS\Apfiltr.sys
0xF7910000 \SystemRoot\system32\DRIVERS\mouclass.sys
0xF70F7000 \SystemRoot\system32\DRIVERS\ar5211.sys
0xF6EC1000 \SystemRoot\system32\drivers\ALCXWDM.SYS
0xF6E9D000 \SystemRoot\system32\drivers\portcls.sys
0xF7780000 \SystemRoot\system32\drivers\drmk.sys
0xF7920000 \SystemRoot\system32\DRIVERS\Tvs.sys
0xF7790000 \SystemRoot\system32\DRIVERS\wowxt_kern_i386.sys
0xF7928000 \SystemRoot\system32\DRIVERS\tsxt_kern_i386.sys
0xF6D98000 \SystemRoot\system32\DRIVERS\AGRSM.sys
0xF7938000 \SystemRoot\System32\Drivers\Modem.SYS
0xF7C09000 \SystemRoot\system32\DRIVERS\audstub.sys
0xF75E0000 \SystemRoot\system32\DRIVERS\rasl2tp.sys
0xF7A4C000 \SystemRoot\system32\DRIVERS\ndistapi.sys
0xF6D81000 \SystemRoot\system32\DRIVERS\ndiswan.sys
0xF75F0000 \SystemRoot\system32\DRIVERS\raspppoe.sys
0xF7600000 \SystemRoot\system32\DRIVERS\raspptp.sys
0xF7958000 \SystemRoot\system32\DRIVERS\TDI.SYS
0xF6D70000 \SystemRoot\system32\DRIVERS\psched.sys
0xF7610000 \SystemRoot\system32\DRIVERS\msgpc.sys
0xF7808000 \SystemRoot\system32\DRIVERS\ptilink.sys
0xF7818000 \SystemRoot\system32\DRIVERS\raspti.sys
0xF7620000 \SystemRoot\system32\DRIVERS\termdd.sys
0xF7AB0000 \SystemRoot\system32\DRIVERS\swenum.sys
0xF6D12000 \SystemRoot\system32\DRIVERS\update.sys
0xF7322000 \SystemRoot\system32\DRIVERS\mssmbios.sys
0xF7640000 \SystemRoot\System32\Drivers\NDProxy.SYS
0xF7670000 \SystemRoot\system32\DRIVERS\usbhub.sys
0xF7ABC000 \SystemRoot\system32\DRIVERS\USBD.SYS
0xF7ACA000 \SystemRoot\System32\Drivers\Fs_Rec.SYS
0xF7C66000 \SystemRoot\System32\Drivers\Null.SYS
0xF7ACC000 \SystemRoot\System32\Drivers\Beep.SYS
0xF7850000 \SystemRoot\System32\Drivers\DLARTL_N.SYS
0xF7858000 \SystemRoot\System32\drivers\vga.sys
0xF7AD0000 \SystemRoot\System32\Drivers\mnmdd.SYS
0xF7AD4000 \SystemRoot\System32\DRIVERS\RDPCDD.sys
0xF2BF1000 \SystemRoot\System32\Drivers\meiudf.sys
0xF2BE0000 \SystemRoot\System32\Drivers\Udfs.SYS
0xF7868000 \SystemRoot\System32\Drivers\Msfs.SYS
0xF7878000 \SystemRoot\System32\Drivers\Npfs.SYS
0xF7A0C000 \SystemRoot\system32\DRIVERS\rasacd.sys
0xF2BCD000 \SystemRoot\system32\DRIVERS\ipsec.sys
0xF2B74000 \SystemRoot\system32\DRIVERS\tcpip.sys
0xF7690000 \SystemRoot\System32\Drivers\aswTdi.SYS
0xF2B24000 \SystemRoot\system32\DRIVERS\netbt.sys
0xF2AFE000 \SystemRoot\system32\DRIVERS\ipnat.sys
0xF76A0000 \SystemRoot\system32\DRIVERS\wanarp.sys
0xF2ADC000 \SystemRoot\System32\drivers\afd.sys
0xF76B0000 \SystemRoot\system32\DRIVERS\netbios.sys
0xF7A28000 \SystemRoot\System32\Drivers\TPwSav.sys
0xF7AD8000 \SystemRoot\System32\Drivers\SSIoMngr.sys
0xF2AB1000 \SystemRoot\system32\DRIVERS\rdbss.sys
0xF2A41000 \SystemRoot\system32\DRIVERS\mrxsmb.sys
0xF76C0000 \SystemRoot\System32\Drivers\Fips.SYS
0xF2A1A000 \SystemRoot\System32\Drivers\aswSP.SYS
0xF7898000 \SystemRoot\System32\Drivers\Aavmker4.SYS
0xF29DA000 \SystemRoot\System32\Drivers\dump_atapi.sys
0xF7AE4000 \SystemRoot\System32\Drivers\dump_WMILIB.SYS
0xBF800000 \SystemRoot\System32\win32k.sys
0xF79F4000 \SystemRoot\System32\drivers\Dxapi.sys
0xF78A8000 \SystemRoot\System32\watchdog.sys
0xBF9C3000 \SystemRoot\System32\drivers\dxg.sys
0xF7B96000 \SystemRoot\System32\drivers\dxgthk.sys
0xBF9D5000 \SystemRoot\System32\ati2dvag.dll
0xBFA12000 \SystemRoot\System32\ati2cqag.dll
0xBFA45000 \SystemRoot\System32\atikvmag.dll
0xBFA79000 \SystemRoot\System32\ati3duag.dll
0xBFCBA000 \SystemRoot\System32\ativvaxx.dll
0xBFFA0000 \SystemRoot\System32\ATMFD.DLL
0xF089A000 \SystemRoot\System32\Drivers\aswFsBlk.SYS
0xF6C7A000 \SystemRoot\System32\Drivers\DRVNDDM.SYS
0xF7C1D000 \SystemRoot\System32\DLA\DLADResN.SYS
0xF0804000 \SystemRoot\System32\DLA\DLAIFS_M.SYS
0xF2B4C000 \SystemRoot\System32\DLA\DLAOPIOM.SYS
0xF7B14000 \SystemRoot\System32\DLA\DLAPoolM.SYS
0xF7810000 \SystemRoot\System32\DLA\DLABOIOM.SYS
0xF07ED000 \SystemRoot\System32\DLA\DLAUDFAM.SYS
0xF07D7000 \SystemRoot\System32\DLA\DLAUDF_M.SYS
0xF082E000 \SystemRoot\system32\DRIVERS\mdc8021x.sys
0xF0826000 \SystemRoot\system32\DRIVERS\ndisuio.sys
0xF07C7000 \SystemRoot\system32\DRIVERS\netdevio.sys
0xF05B8000 \SystemRoot\System32\Drivers\aswMon2.SYS
0xF035B000 \SystemRoot\system32\DRIVERS\mrxdav.sys
0xF01A1000 \SystemRoot\system32\DRIVERS\srv.sys
0xF7820000 \SystemRoot\system32\drivers\LVPr2Mon.sys
0xF7838000 \SystemRoot\System32\Drivers\aswRdr.SYS
0xEFD04000 \SystemRoot\system32\drivers\wdmaud.sys
0xEFDD9000 \SystemRoot\system32\drivers\sysaudio.sys
0xEFAE7000 \SystemRoot\System32\Drivers\HTTP.sys
0x7C910000 \WINDOWS\system32\ntdll.dll
Processes (total 68):
0 System Idle Process
4 System
424 C:\WINDOWS\system32\smss.exe
472 csrss.exe
496 C:\WINDOWS\system32\winlogon.exe
540 C:\WINDOWS\system32\services.exe
552 C:\WINDOWS\system32\lsass.exe
724 C:\WINDOWS\system32\ati2evxx.exe
740 C:\WINDOWS\system32\svchost.exe
804 svchost.exe
860 C:\WINDOWS\system32\svchost.exe
948 C:\WINDOWS\system32\acs.exe
1028 svchost.exe
1060 svchost.exe
1300 C:\Program Files\Alwil Software\Avast5\AvastSvc.exe
1536 C:\WINDOWS\system32\spoolsv.exe
1596 C:\Program Files\Fichiers communs\Logitech\LVMVFM\LVPrcSrv.exe
1652 svchost.exe
1744 C:\Program Files\Fichiers communs\Apple\Mobile Device Support\AppleMobileDeviceService.exe
1788 C:\WINDOWS\system32\rundll32.exe
1948 C:\Program Files\AskBarDis\bar\bin\AskService.exe
1988 C:\Program Files\AskBarDis\bar\bin\ASKUpgrade.exe
2008 C:\Program Files\Bonjour\mDNSResponder.exe
2024 C:\Program Files\TOSHIBA\ConfigFree\CFSvcs.exe
196 C:\WINDOWS\system32\DVDRAMSV.exe
244 C:\Program Files\Java\jre6\bin\jqs.exe
336 C:\Program Files\Microsoft\Search Enhancement Pack\SeaPort\SeaPort.exe
752 C:\WINDOWS\system32\svchost.exe
1116 C:\Program Files\Canon\CAL\CALMAIN.exe
2056 alg.exe
2328 C:\WINDOWS\system32\wbem\wmiapsrv.exe
3008 C:\WINDOWS\system32\ati2evxx.exe
3072 C:\WINDOWS\Wnefui.exe
3132 C:\WINDOWS\explorer.exe
3144 C:\DOCUME~1\Natalia\LOCALS~1\Temp\Wln.exe
3420 C:\WINDOWS\system32\ctfmon.exe
3632 C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe
3652 C:\Program Files\ltmoh\ltmoh.exe
3672 C:\WINDOWS\agrsmmsg.exe
3700 C:\Program Files\TOSHIBA\Tvs\TvsTray.exe
3736 C:\WINDOWS\system32\svchost.exe
3748 C:\Program Files\TOSHIBA\E-KEY\CeEKey.exe
3832 C:\Program Files\Apoint2K\Apoint.exe
3856 C:\Program Files\TOSHIBA\TouchPad\TPTray.exe
3880 C:\Program Files\TOSHIBA\ConfigFree\NDSTray.exe
3916 C:\WINDOWS\system32\ZoomingHook.exe
3952 C:\WINDOWS\system32\DLA\DLACTRLW.EXE
3964 C:\Program Files\TOSHIBA\Touch and Launch\PadExe.exe
4024 C:\WINDOWS\system32\TPSMain.exe
4068 C:\Program Files\TOSHIBA\Utilitaire de zoom TOSHIBA\SmoothView.exe
132 C:\Program Files\Fichiers communs\Logitech\LComMgr\Communications_Helper.exe
204 C:\Program Files\Logitech\QuickCam10\QuickCam10.exe
376 C:\Program Files\LaCie\Genie Backup Assistant\GBMAgent.exe
308 C:\Program Files\Apoint2K\ApntEx.exe
1696 C:\PROGRA~1\ALWILS~1\Avast5\AvastUI.exe
2120 C:\Program Files\iTunes\iTunesHelper.exe
2156 C:\Program Files\TOSHIBA\TOSCDSPD\TOSCDSPD.exe
972 C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe
2216 C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe
2460 C:\WINDOWS\system32\TPSBattM.exe
2492 C:\Documents and Settings\Natalia\Application Data\A51AB2C36C73CD0D5E947E97B4FE65CB\iobin700release.exe
2888 C:\WINDOWS\system32\RAMASST.exe
3064 C:\Program Files\Fichiers communs\Logitech\LComMgr\LVComSX.exe
4048 C:\Program Files\Logitech\QuickCam10\COCIManager.exe
3076 C:\Program Files\iPod\bin\iPodService.exe
2600 C:\Program Files\Mozilla Firefox\firefox.exe
2940 C:\Program Files\Mozilla Firefox\plugin-container.exe
1936 C:\Program Files\ZHPDiag\mbrcheck.exe
\\.\C: --> \\.\PhysicalDrive0 at offset 0x00000000'00007e00 (NTFS)
PhysicalDrive0 Model Number: TOSHIBAMK6026GAX, Rev: PA200U
Size Device Name MBR Status
--------------------------------------------
55 GB \\.\PhysicalDrive0 Windows XP MBR code detected
SHA1: 8637A6CD1F8DC55758E12C0B860CDE1133CA5719
Done!
MBRCheck, version 1.2.3
(c) 2010, AD
Command-line:
Windows Version: Windows XP Home Edition
Windows Information: Service Pack 3 (build 2600)
Logical Drives Mask: 0x0000000c
Kernel Drivers (total 137):
0x804D7000 \WINDOWS\system32\ntoskrnl.exe
0x806EE000 \WINDOWS\system32\hal.dll
0xF7A50000 \WINDOWS\system32\KDCOM.DLL
0xF7960000 \WINDOWS\system32\BOOTVID.dll
0xF7500000 ACPI.sys
0xF7A52000 \WINDOWS\system32\DRIVERS\WMILIB.SYS
0xF74EF000 pci.sys
0xF7550000 isapnp.sys
0xF7964000 compbatt.sys
0xF7968000 \WINDOWS\system32\DRIVERS\BATTC.SYS
0xF7B18000 pciide.sys
0xF77D0000 \WINDOWS\system32\DRIVERS\PCIIDEX.SYS
0xF74D1000 pcmcia.sys
0xF7560000 MountMgr.sys
0xF74B2000 ftdisk.sys
0xF796C000 ACPIEC.sys
0xF7B19000 \WINDOWS\system32\DRIVERS\OPRGHDLR.SYS
0xF77D8000 PartMgr.sys
0xF7570000 VolSnap.sys
0xF749A000 atapi.sys
0xF7580000 disk.sys
0xF7590000 \WINDOWS\system32\DRIVERS\CLASSPNP.SYS
0xF747A000 fltmgr.sys
0xF7468000 sr.sys
0xF7452000 DRVMCDB.SYS
0xF77E0000 PxHelp20.sys
0xF743B000 KSecDD.sys
0xF73AE000 Ntfs.sys
0xF7381000 NDIS.sys
0xF7367000 Mup.sys
0xF7720000 \SystemRoot\system32\DRIVERS\intelppm.sys
0xF71CC000 \SystemRoot\system32\DRIVERS\ati2mtag.sys
0xF71B8000 \SystemRoot\system32\DRIVERS\VIDEOPRT.SYS
0xF78B8000 \SystemRoot\system32\DRIVERS\usbohci.sys
0xF7194000 \SystemRoot\system32\DRIVERS\USBPORT.SYS
0xF78C0000 \SystemRoot\system32\DRIVERS\usbehci.sys
0xF7730000 \SystemRoot\system32\DRIVERS\imapi.sys
0xF78D0000 \SystemRoot\system32\drivers\iviaspi.sys
0xF7A2C000 \SystemRoot\system32\drivers\pfc.sys
0xF7A90000 \SystemRoot\System32\Drivers\DLACDBHM.SYS
0xF7740000 \SystemRoot\system32\DRIVERS\cdrom.sys
0xF7750000 \SystemRoot\system32\DRIVERS\redbook.sys
0xF7171000 \SystemRoot\system32\DRIVERS\ks.sys
0xF78E8000 \SystemRoot\system32\DRIVERS\GEARAspiWDM.sys
0xF7A34000 \SystemRoot\system32\DRIVERS\CmBatt.sys
0xF7760000 \SystemRoot\system32\DRIVERS\i8042prt.sys
0xF7900000 \SystemRoot\system32\DRIVERS\kbdclass.sys
0xF7158000 \SystemRoot\system32\DRIVERS\Apfiltr.sys
0xF7910000 \SystemRoot\system32\DRIVERS\mouclass.sys
0xF70F7000 \SystemRoot\system32\DRIVERS\ar5211.sys
0xF6EC1000 \SystemRoot\system32\drivers\ALCXWDM.SYS
0xF6E9D000 \SystemRoot\system32\drivers\portcls.sys
0xF7780000 \SystemRoot\system32\drivers\drmk.sys
0xF7920000 \SystemRoot\system32\DRIVERS\Tvs.sys
0xF7790000 \SystemRoot\system32\DRIVERS\wowxt_kern_i386.sys
0xF7928000 \SystemRoot\system32\DRIVERS\tsxt_kern_i386.sys
0xF6D98000 \SystemRoot\system32\DRIVERS\AGRSM.sys
0xF7938000 \SystemRoot\System32\Drivers\Modem.SYS
0xF7C09000 \SystemRoot\system32\DRIVERS\audstub.sys
0xF75E0000 \SystemRoot\system32\DRIVERS\rasl2tp.sys
0xF7A4C000 \SystemRoot\system32\DRIVERS\ndistapi.sys
0xF6D81000 \SystemRoot\system32\DRIVERS\ndiswan.sys
0xF75F0000 \SystemRoot\system32\DRIVERS\raspppoe.sys
0xF7600000 \SystemRoot\system32\DRIVERS\raspptp.sys
0xF7958000 \SystemRoot\system32\DRIVERS\TDI.SYS
0xF6D70000 \SystemRoot\system32\DRIVERS\psched.sys
0xF7610000 \SystemRoot\system32\DRIVERS\msgpc.sys
0xF7808000 \SystemRoot\system32\DRIVERS\ptilink.sys
0xF7818000 \SystemRoot\system32\DRIVERS\raspti.sys
0xF7620000 \SystemRoot\system32\DRIVERS\termdd.sys
0xF7AB0000 \SystemRoot\system32\DRIVERS\swenum.sys
0xF6D12000 \SystemRoot\system32\DRIVERS\update.sys
0xF7322000 \SystemRoot\system32\DRIVERS\mssmbios.sys
0xF7640000 \SystemRoot\System32\Drivers\NDProxy.SYS
0xF7670000 \SystemRoot\system32\DRIVERS\usbhub.sys
0xF7ABC000 \SystemRoot\system32\DRIVERS\USBD.SYS
0xF7ACA000 \SystemRoot\System32\Drivers\Fs_Rec.SYS
0xF7C66000 \SystemRoot\System32\Drivers\Null.SYS
0xF7ACC000 \SystemRoot\System32\Drivers\Beep.SYS
0xF7850000 \SystemRoot\System32\Drivers\DLARTL_N.SYS
0xF7858000 \SystemRoot\System32\drivers\vga.sys
0xF7AD0000 \SystemRoot\System32\Drivers\mnmdd.SYS
0xF7AD4000 \SystemRoot\System32\DRIVERS\RDPCDD.sys
0xF2BF1000 \SystemRoot\System32\Drivers\meiudf.sys
0xF2BE0000 \SystemRoot\System32\Drivers\Udfs.SYS
0xF7868000 \SystemRoot\System32\Drivers\Msfs.SYS
0xF7878000 \SystemRoot\System32\Drivers\Npfs.SYS
0xF7A0C000 \SystemRoot\system32\DRIVERS\rasacd.sys
0xF2BCD000 \SystemRoot\system32\DRIVERS\ipsec.sys
0xF2B74000 \SystemRoot\system32\DRIVERS\tcpip.sys
0xF7690000 \SystemRoot\System32\Drivers\aswTdi.SYS
0xF2B24000 \SystemRoot\system32\DRIVERS\netbt.sys
0xF2AFE000 \SystemRoot\system32\DRIVERS\ipnat.sys
0xF76A0000 \SystemRoot\system32\DRIVERS\wanarp.sys
0xF2ADC000 \SystemRoot\System32\drivers\afd.sys
0xF76B0000 \SystemRoot\system32\DRIVERS\netbios.sys
0xF7A28000 \SystemRoot\System32\Drivers\TPwSav.sys
0xF7AD8000 \SystemRoot\System32\Drivers\SSIoMngr.sys
0xF2AB1000 \SystemRoot\system32\DRIVERS\rdbss.sys
0xF2A41000 \SystemRoot\system32\DRIVERS\mrxsmb.sys
0xF76C0000 \SystemRoot\System32\Drivers\Fips.SYS
0xF2A1A000 \SystemRoot\System32\Drivers\aswSP.SYS
0xF7898000 \SystemRoot\System32\Drivers\Aavmker4.SYS
0xF29DA000 \SystemRoot\System32\Drivers\dump_atapi.sys
0xF7AE4000 \SystemRoot\System32\Drivers\dump_WMILIB.SYS
0xBF800000 \SystemRoot\System32\win32k.sys
0xF79F4000 \SystemRoot\System32\drivers\Dxapi.sys
0xF78A8000 \SystemRoot\System32\watchdog.sys
0xBF9C3000 \SystemRoot\System32\drivers\dxg.sys
0xF7B96000 \SystemRoot\System32\drivers\dxgthk.sys
0xBF9D5000 \SystemRoot\System32\ati2dvag.dll
0xBFA12000 \SystemRoot\System32\ati2cqag.dll
0xBFA45000 \SystemRoot\System32\atikvmag.dll
0xBFA79000 \SystemRoot\System32\ati3duag.dll
0xBFCBA000 \SystemRoot\System32\ativvaxx.dll
0xBFFA0000 \SystemRoot\System32\ATMFD.DLL
0xF089A000 \SystemRoot\System32\Drivers\aswFsBlk.SYS
0xF6C7A000 \SystemRoot\System32\Drivers\DRVNDDM.SYS
0xF7C1D000 \SystemRoot\System32\DLA\DLADResN.SYS
0xF0804000 \SystemRoot\System32\DLA\DLAIFS_M.SYS
0xF2B4C000 \SystemRoot\System32\DLA\DLAOPIOM.SYS
0xF7B14000 \SystemRoot\System32\DLA\DLAPoolM.SYS
0xF7810000 \SystemRoot\System32\DLA\DLABOIOM.SYS
0xF07ED000 \SystemRoot\System32\DLA\DLAUDFAM.SYS
0xF07D7000 \SystemRoot\System32\DLA\DLAUDF_M.SYS
0xF082E000 \SystemRoot\system32\DRIVERS\mdc8021x.sys
0xF0826000 \SystemRoot\system32\DRIVERS\ndisuio.sys
0xF07C7000 \SystemRoot\system32\DRIVERS\netdevio.sys
0xF05B8000 \SystemRoot\System32\Drivers\aswMon2.SYS
0xF035B000 \SystemRoot\system32\DRIVERS\mrxdav.sys
0xF01A1000 \SystemRoot\system32\DRIVERS\srv.sys
0xF7820000 \SystemRoot\system32\drivers\LVPr2Mon.sys
0xF7838000 \SystemRoot\System32\Drivers\aswRdr.SYS
0xEFD04000 \SystemRoot\system32\drivers\wdmaud.sys
0xEFDD9000 \SystemRoot\system32\drivers\sysaudio.sys
0xEFAE7000 \SystemRoot\System32\Drivers\HTTP.sys
0x7C910000 \WINDOWS\system32\ntdll.dll
Processes (total 68):
0 System Idle Process
4 System
424 C:\WINDOWS\system32\smss.exe
472 csrss.exe
496 C:\WINDOWS\system32\winlogon.exe
540 C:\WINDOWS\system32\services.exe
552 C:\WINDOWS\system32\lsass.exe
724 C:\WINDOWS\system32\ati2evxx.exe
740 C:\WINDOWS\system32\svchost.exe
804 svchost.exe
860 C:\WINDOWS\system32\svchost.exe
948 C:\WINDOWS\system32\acs.exe
1028 svchost.exe
1060 svchost.exe
1300 C:\Program Files\Alwil Software\Avast5\AvastSvc.exe
1536 C:\WINDOWS\system32\spoolsv.exe
1596 C:\Program Files\Fichiers communs\Logitech\LVMVFM\LVPrcSrv.exe
1652 svchost.exe
1744 C:\Program Files\Fichiers communs\Apple\Mobile Device Support\AppleMobileDeviceService.exe
1788 C:\WINDOWS\system32\rundll32.exe
1948 C:\Program Files\AskBarDis\bar\bin\AskService.exe
1988 C:\Program Files\AskBarDis\bar\bin\ASKUpgrade.exe
2008 C:\Program Files\Bonjour\mDNSResponder.exe
2024 C:\Program Files\TOSHIBA\ConfigFree\CFSvcs.exe
196 C:\WINDOWS\system32\DVDRAMSV.exe
244 C:\Program Files\Java\jre6\bin\jqs.exe
336 C:\Program Files\Microsoft\Search Enhancement Pack\SeaPort\SeaPort.exe
752 C:\WINDOWS\system32\svchost.exe
1116 C:\Program Files\Canon\CAL\CALMAIN.exe
2056 alg.exe
2328 C:\WINDOWS\system32\wbem\wmiapsrv.exe
3008 C:\WINDOWS\system32\ati2evxx.exe
3072 C:\WINDOWS\Wnefui.exe
3132 C:\WINDOWS\explorer.exe
3144 C:\DOCUME~1\Natalia\LOCALS~1\Temp\Wln.exe
3420 C:\WINDOWS\system32\ctfmon.exe
3632 C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe
3652 C:\Program Files\ltmoh\ltmoh.exe
3672 C:\WINDOWS\agrsmmsg.exe
3700 C:\Program Files\TOSHIBA\Tvs\TvsTray.exe
3736 C:\WINDOWS\system32\svchost.exe
3748 C:\Program Files\TOSHIBA\E-KEY\CeEKey.exe
3832 C:\Program Files\Apoint2K\Apoint.exe
3856 C:\Program Files\TOSHIBA\TouchPad\TPTray.exe
3880 C:\Program Files\TOSHIBA\ConfigFree\NDSTray.exe
3916 C:\WINDOWS\system32\ZoomingHook.exe
3952 C:\WINDOWS\system32\DLA\DLACTRLW.EXE
3964 C:\Program Files\TOSHIBA\Touch and Launch\PadExe.exe
4024 C:\WINDOWS\system32\TPSMain.exe
4068 C:\Program Files\TOSHIBA\Utilitaire de zoom TOSHIBA\SmoothView.exe
132 C:\Program Files\Fichiers communs\Logitech\LComMgr\Communications_Helper.exe
204 C:\Program Files\Logitech\QuickCam10\QuickCam10.exe
376 C:\Program Files\LaCie\Genie Backup Assistant\GBMAgent.exe
308 C:\Program Files\Apoint2K\ApntEx.exe
1696 C:\PROGRA~1\ALWILS~1\Avast5\AvastUI.exe
2120 C:\Program Files\iTunes\iTunesHelper.exe
2156 C:\Program Files\TOSHIBA\TOSCDSPD\TOSCDSPD.exe
972 C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe
2216 C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe
2460 C:\WINDOWS\system32\TPSBattM.exe
2492 C:\Documents and Settings\Natalia\Application Data\A51AB2C36C73CD0D5E947E97B4FE65CB\iobin700release.exe
2888 C:\WINDOWS\system32\RAMASST.exe
3064 C:\Program Files\Fichiers communs\Logitech\LComMgr\LVComSX.exe
4048 C:\Program Files\Logitech\QuickCam10\COCIManager.exe
3076 C:\Program Files\iPod\bin\iPodService.exe
2600 C:\Program Files\Mozilla Firefox\firefox.exe
2940 C:\Program Files\Mozilla Firefox\plugin-container.exe
1936 C:\Program Files\ZHPDiag\mbrcheck.exe
\\.\C: --> \\.\PhysicalDrive0 at offset 0x00000000'00007e00 (NTFS)
PhysicalDrive0 Model Number: TOSHIBAMK6026GAX, Rev: PA200U
Size Device Name MBR Status
--------------------------------------------
55 GB \\.\PhysicalDrive0 Windows XP MBR code detected
SHA1: 8637A6CD1F8DC55758E12C0B860CDE1133CA5719
Done!
moment de grace
Messages postés
29042
Date d'inscription
samedi 6 décembre 2008
Statut
Contributeur sécurité
Dernière intervention
18 juillet 2013
2 274
19 déc. 2010 à 04:10
19 déc. 2010 à 04:10
c'est ceux là qui m'interessent RKreport.txt et ZHPdiag.txt
moment de grace
Messages postés
29042
Date d'inscription
samedi 6 décembre 2008
Statut
Contributeur sécurité
Dernière intervention
18 juillet 2013
2 274
19 déc. 2010 à 04:16
19 déc. 2010 à 04:16
ok pour rogue killer
pour zhp as tu fais ca
relance zhp
clique sur le tournevis en haut à droite
décoche recherche master boot (080)
puis
lance le scan
pour zhp as tu fais ca
relance zhp
clique sur le tournevis en haut à droite
décoche recherche master boot (080)
puis
lance le scan
Vous n’avez pas trouvé la réponse que vous recherchez ?
Posez votre question
voilà
Rapport de ZHPDiag v1.27.1421 par Nicolas Coolman, Update du 16/12/2010
Run by Natalia at 2010-12-18 22:20:32
Web site : http://www.premiumorange.com/zeb-help-process/zhpdiag.html
Contact : nicolascoolman@yahoo.fr
---\\ Web Browser
MSIE: Internet Explorer v8.0.6001.18702
MFIE: Mozilla Firefox v3.6.13 (fr) (Defaut)
---\\ System Information
Windows XP Home Edition Service Pack 3 (Build 2600)
Processor: x86 Family 6 Model 13 Stepping 8, GenuineIntel
Operating System: 32 Bits
Boot mode: Normal (Normal boot)
Total RAM: 446 MB (25% free)
System drive C: has 23 GB (40%) free of 56 GB
---\\ Logged in mode
Computer Name: NOM-8ABC2A6DAF0
User Name: Natalia
All Users Names: SUPPORT_388945a0, Natalia, HelpAssistant, ASPNET, Administrateur,
Unselected Option: O1,O45,O61,O62,O65,O80,O82
Logged in as Administrator
---\\ DOS/Devices
C:\ Hard drive, Flash drive, Thumb drive (Free 23 Go of 56 Go)
D:\ CD-ROM drive (Not Inserted)
---\\ Security Center & Tools Informations
[HKLM\SOFTWARE\Microsoft\Security Center] AntiVirusOverride: OK
[HKLM\SOFTWARE\Microsoft\Security Center] AntiVirusDisableNotify: OK
[HKLM\SOFTWARE\Microsoft\Security Center] FirewallDisableNotify: OK
[HKLM\SOFTWARE\Microsoft\Security Center] FirewallOverride: OK
[HKLM\SOFTWARE\Microsoft\Security Center] UpdatesDisableNotify: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\SHOWALL] CheckedValue: Modified
---\\ Recherche particulière de fichiers génériques
[MD5.F2317622D29F9FF0F88AEECD5F60F0DD] - (.Microsoft Corporation - Explorateur Windows.) (.2008-04-13 21:34:03.) -- C:\Windows\Explorer.exe [1037824]
[MD5.DD73D6B9F6B4CB630CF35B438B540174] - (.Microsoft Corporation - Application d'ouverture de session Windows NT.) (.2008-04-13 21:34:28.) -- C:\Windows\System32\Winlogon.exe [512000]
[MD5.9F3A2F5AA6875C72BF062C712CFA2674] - (.Microsoft Corporation - IDE/ATAPI Port Driver.) (.2008-04-13 13:40:30.) -- C:\Windows\System32\drivers\atapi.sys [96512]
[MD5.78A08DD6A8D65E697C18E1DB01C5CDCA] - (.Microsoft Corporation - NT File System Driver.) (.2008-04-13 14:15:53.) -- C:\Windows\System32\drivers\ntfs.sys [574976]
---\\ Processus lancés
[MD5.BFA066BECCB7E16F52B819360253DEE0] - (.ATI Technologies Inc. - ATI External Event Utility EXE Module.) -- C:\WINDOWS\system32\Ati2evxx.exe [376832]
[MD5.539802224D334C25AC439FF0518D36CD] - (.Pas de propriétaire - Pas de description.) -- C:\WINDOWS\system32\ACS.exe [36864]
[MD5.B2386A8E66891F7CFEC9F5A03F0F1210] - (.AVAST Software - avast! Service.) -- C:\Program Files\Alwil Software\Avast5\AvastSvc.exe [40384]
[MD5.44B3B997E25C5D9A81D6C501451A96D7] - (.Logitech Inc. - Logitech LVPrcSrv Module..) -- c:\program files\fichiers communs\logitech\lvmvfm\LVPrcSrv.exe [99888]
[MD5.018857EAD9A077A56AEDFC0E5EF7A24A] - (.Apple Inc. - MobileDeviceService.) -- C:\Program Files\Fichiers communs\Apple\Mobile Device Support\AppleMobileDeviceService.exe [37664]
[MD5.93AD0B78C7357A05F50E594EC7C22300] - (.Pas de propriétaire - Pas de description.) -- C:\WINDOWS\system32\rundll32.exe [33792]
[MD5.7B44F870FC2DA172C5367D9E3F96F553] - (.Pas de propriétaire - Pas de description.) -- C:\Program Files\AskBarDis\bar\bin\AskService.exe [464264]
[MD5.367621CB272A8D9E7D910388916D5737] - (.Pas de propriétaire - Pas de description.) -- C:\Program Files\AskBarDis\bar\bin\ASKUpgrade.exe [234888]
[MD5.F832F1505AD8B83474BD9A5B1B985E01] - (.Apple Inc. - Bonjour Service.) -- C:\Program Files\Bonjour\mDNSResponder.exe [345376]
[MD5.3CB0CC8879956C187E87E18634EE5164] - (.TOSHIBA CORPORATION - Service of ConfigFree..) -- C:\Program Files\TOSHIBA\ConfigFree\CFSvcs.exe [40960]
[MD5.C9FFBD6B8EDC46CD3D13E3C6DB914FB7] - (.Matsushita Electric Industrial Co., Ltd. - DVD-RAM Utility Helper Service.) -- C:\WINDOWS\system32\DVDRAMSV.exe [110592]
[MD5.77AC10DB097DFD0CD3071465B644D0AB] - (.Sun Microsystems, Inc. - Java(TM) Quick Starter Service.) -- C:\Program Files\Java\jre6\bin\jqs.exe [153376]
[MD5.8EF654045E518AC00E52E7A1E2D3AD70] - (.Canon Inc. - Canon Camera Access Library 8.) -- C:\Program Files\Canon\CAL\CALMAIN.exe [96370]
[MD5.EC243D433820F2A1805E1290C2E8573C] - (.Pas de propriétaire - Pas de description.) -- C:\WINDOWS\Wnefui.exe [198144]
[MD5.8A1CA72A90090509D98220E921BD6415] - (.ATI Technologies, Inc. - ATI Desktop Control Panel.) -- C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe [344064]
[MD5.C2EDE68251407CCACABF5E48028626BD] - (.Agere Systems - LtMoh MFC Application.) -- C:\Program Files\ltmoh\Ltmoh.exe [184320]
[MD5.B2ED4020EE2A9446649CE6B0A918C91C] - (.Agere Systems - SoftModem Messaging Applet.) -- C:\WINDOWS\AGRSMMSG.exe [88358]
[MD5.FC1EBDD2C46D0D8B5763BF776ABA2E61] - (.TOSHIBA Corporation - TOSHIBA Virtual Sound Taskbar Module.) -- C:\Program Files\TOSHIBA\Tvs\TvsTray.exe [73728]
[MD5.08835AC90C7A02F55A0D0B1D0397ACAE] - (.COMPAL ELECTRONIC INC. - TOSHIBA HotKey Utility.) -- C:\Program Files\TOSHIBA\E-KEY\CeEKey.exe [671744]
[MD5.8EBBF7E508EC363BD6933809D17A43A7] - (.Alps Electric Co., Ltd. - Alps Pointing-device Driver.) -- C:\Program Files\Apoint2K\Apoint.exe [196608]
[MD5.ECE72DB438B67C5B5504C583B2B04E1B] - (.COMPAL ELECTRONIC INC. - TPTray Application.) -- C:\Program Files\TOSHIBA\TouchPad\TPTray.exe [53248]
[MD5.7109F1B929FD3D3ED73B0A77E5D7B153] - (.TOSHIBA CORPORATION - ConfigFree(TM) Tray.) -- C:\Program Files\TOSHIBA\ConfigFree\NDSTray.exe [962560]
[MD5.FD02F46A78C30F6CFF37C7FE37A16CC5] - (.TOSHIBA - TOSHIBA Zooming Utility Hotkey Hook.) -- C:\WINDOWS\system32\ZoomingHook.exe [24576]
[MD5.3C2D6A88715F7426102B2AC2B1F9CBCB] - (.Sonic Solutions - Drive Letter Access Component.) -- C:\WINDOWS\System32\DLA\DLACTRLW.EXE [122940]
[MD5.212C55204E9D1120C4A00546C202B396] - (.TOSHIBA - PadTouch Main.) -- C:\Program Files\TOSHIBA\Touch and Launch\PadExe.exe [1077322]
[MD5.81905148A21D919000778F8539F7B600] - (.TOSHIBA Corporation - Pas de description.) -- C:\WINDOWS\system32\TPSMain.exe [266240]
[MD5.D111A34A969377A8679C114090608B95] - (.TOSHIBA Corporation - SmoothView.) -- C:\Program Files\TOSHIBA\Utilitaire de zoom TOSHIBA\SmoothView.exe [118784]
[MD5.03E0CDD5CCF362593EA52B0151750D0A] - (.Logitech Inc. - Logitech Communications Manager.) -- C:\Program Files\Fichiers communs\Logitech\LComMgr\Communications_Helper.exe [497200]
[MD5.6C645D7DF2462697BC7A086E328607D5] - (.Pas de propriétaire - Pas de description.) -- C:\Program Files\Logitech\QuickCam10\QuickCam10.exe [614960]
[MD5.4ADA227EC4E1BBAD144EAABF02221853] - (.Genie-soft - Genie Backup Agent.) -- C:\Program Files\LaCie\Genie Backup Assistant\GBMAgent.exe [189056]
[MD5.CCA1B81492B40890E44B2B20A780EE1F] - (.Alps Electric Co., Ltd. - Alps Pointing-device Driver for Windows NT/.) -- C:\Program Files\Apoint2K\Apntex.exe [45056]
[MD5.38AE7A942FC3FAB1C6A27EB65DE8F827] - (.AVAST Software - avast! Antivirus.) -- C:\PROGRA~1\ALWILS~1\Avast5\avastUI.exe [2837864]
[MD5.2DFCB2393528446AEB9FB861A8FC39AB] - (.Apple Inc. - iTunesHelper.) -- C:\Program Files\iTunes\iTunesHelper.exe [421160]
[MD5.FEBC1591E5C0DC87EF9CF3D657B65FC2] - (.TOSHIBA - CD/DVD Drive Acoustic Silencer.) -- C:\Program Files\TOSHIBA\TOSCDSPD\toscdspd.exe [65536]
[MD5.390679F7A217A5E73D756276C40AE887] - (.Safer-Networking Ltd. - System settings protector.) -- C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe [2260480]
[MD5.94782C50F682CCC02C1FF4360976A5C8] - (.Logitech - Logitech Desktop Messenger.) -- C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe [36864]
[MD5.1047FAB7E9BFAC6D4E40C4E52CA9B170] - (.TOSHIBA Corporation - Pas de description.) -- C:\WINDOWS\system32\TPSBattM.exe [40960]
[MD5.5648152AD2CCAB0265EAB9711755F484] - (.Matsushita Electric Industrial Co., Ltd. - CD Burning of Windows XP disabling tool for.) -- C:\WINDOWS\system32\RAMASST.exe [155648]
[MD5.F63465BBCE7059EA281ECAFF7590E1E8] - (.Logitech Inc. - LVCom Server.) -- C:\Program Files\Fichiers communs\Logitech\LComMgr\LVComSX.exe [243248]
[MD5.F9A1CF5B5B2E9E17A2DDEB198337F97C] - (.Logitech Inc. - Logitech Camera Control Interface.) -- C:\Program Files\Logitech\QuickCam10\COCIManager.exe [166448]
[MD5.0CA8C2E721617AA2F923A8151C96FB33] - (.Apple Inc. - iPodService Module (32-bit).) -- C:\Program Files\iPod\bin\iPodService.exe [820008]
[MD5.0E20A3213ED010FC4997D1EF48082ABC] - (.Mozilla Corporation - Firefox.) -- C:\Program Files\Mozilla Firefox\firefox.exe [912344]
[MD5.BA9A09CF1B9503C363617F3748F6D791] - (.Mozilla Corporation - Plugin Container for Firefox.) -- C:\Program Files\Mozilla Firefox\plugin-container.exe [16856]
[MD5.806A8E35707BEA615B209001E544F0F0] - (.Nicolas Coolman - Diagnostic Tool.) -- C:\Program Files\ZHPDiag\ZHPDiag.exe [620544]
---\\ Mozilla Firefox, Plugins,Demarrage,Recherche,Extensions (P2,M0,M1,M2)
P2 - FPN:Firefox Plugin Navigator . (.Sun Microsystems, Inc. - NPRuntime Script Plug-in Library for Java(TM) Deploy.) -- C:\Program Files\Mozilla Firefox\Plugins\npdeploytk.dll
P2 - FPN:Firefox Plugin Navigator . (.mozilla.org - Default Plug-in.) -- C:\Program Files\Mozilla Firefox\Plugins\npnul32.dll
P2 - FPN:Firefox Plugin Navigator . (.Microsoft Corporation - Office Plugin for Netscape Navigator.) -- C:\Program Files\Mozilla Firefox\Plugins\NPOFFICE.DLL
P2 - FPN:Firefox Plugin Navigator . (.Apple Inc. - The QuickTime Plugin allows you to view a wide variety of multimedia c.) -- C:\Program Files\Mozilla Firefox\Plugins\npqtplugin.dll
P2 - FPN:Firefox Plugin Navigator . (.Apple Inc. - The QuickTime Plugin allows you to view a wide variety of multimedia c.) -- C:\Program Files\Mozilla Firefox\Plugins\npqtplugin2.dll
P2 - FPN:Firefox Plugin Navigator . (.Apple Inc. - The QuickTime Plugin allows you to view a wide variety of multimedia c.) -- C:\Program Files\Mozilla Firefox\Plugins\npqtplugin3.dll
P2 - FPN:Firefox Plugin Navigator . (.Apple Inc. - The QuickTime Plugin allows you to view a wide variety of multimedia c.) -- C:\Program Files\Mozilla Firefox\Plugins\npqtplugin4.dll
P2 - FPN:Firefox Plugin Navigator . (.Apple Inc. - The QuickTime Plugin allows you to view a wide variety of multimedia c.) -- C:\Program Files\Mozilla Firefox\Plugins\npqtplugin5.dll
P2 - FPN:Firefox Plugin Navigator . (.Apple Inc. - The QuickTime Plugin allows you to view a wide variety of multimedia c.) -- C:\Program Files\Mozilla Firefox\Plugins\npqtplugin6.dll
P2 - FPN:Firefox Plugin Navigator . (.Apple Inc. - The QuickTime Plugin allows you to view a wide variety of multimedia c.) -- C:\Program Files\Mozilla Firefox\Plugins\npqtplugin7.dll
P2 - FPN: [HKLM] [@adobe.com/FlashPlayer] - (.Pas de propriétaire - Pas de description.) -- C:\WINDOWS\system32\Macromed\Flash\NPSWF32.dll
P2 - FPN: [HKLM] [@Apple.com/iTunes,version=1.0] - (.Pas de propriétaire - Pas de description.) -- C:\Program Files\iTunes\Mozilla Plugins\npitunes.dll
P2 - FPN: [HKLM] [@microsoft.com/WLPG,version=14.0.8081.0709] - (.Microsoft Corporation - NPWLPG.) -- C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll
P2 - FPN: [HKLM] [@microsoft.com/WPF,version=3.5] - (.Microsoft Corporation - Windows Presentation Foundation (WPF) plug-in for Mozilla browsers.) -- c:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll
P2 - FPN: [HKCU] [@adobe.com/Acrobat,version=5.1] - (.Adobe Systems Inc. - Adobe Acrobat Plug-In Version 5.10 for Netscape.) -- C:\Program Files\Adobe\Acrobat 5.0\Reader\Browser\nppdf32.dll
M0 - MFSP: prefs.js [Natalia - 84pz7jj9.default] google.ca
M2 - MFEP: prefs.js [Natalia - 84pz7jj9.default\en-US@dictionaries.addons.mozilla.org] [] United States English Spellchecker v5.0.1 (.Giuliano Masseroni.)
M2 - MFEP: prefs.js [Natalia - 84pz7jj9.default\{ba14329e-9550-4989-b3f2-9732e92d17cc}] [] Vuze Remote Toolbar v2.7.2.0 (.Conduit Ltd..)
---\\ Internet Explorer, Démarrage,Recherche,URSearchHook (R0,R1,R3)
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.google.ca/?gws_rd=ssl
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.msn.com/fr-fr/?ocid=iehp
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = https://www.msn.com/fr-fr/?ocid=iehp
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Extensions Off Page = about:NoAdd-ons
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Security Risk Page = about:SecurityRisk
R1 - HKCU\Software\Microsoft\Internet Explorer\Search,SearchAssistant = https://www.bing.com/?toHttps=1&redig=8F3F334EA60E4B1CB4D040DCFE393A89{SUB_RFC1766}/srchasst/srchasst.htm
R1 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant = https://www.bing.com/?toHttps=1&redig=8F3F334EA60E4B1CB4D040DCFE393A89{SUB_RFC1766}/srchasst/srchasst.htm
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyEnable = 0
R3 - URLSearchHook: Microsoft Url Search Hook - {CFBFAE00-17A6-11D0-99CB-00C04FD64497} . (.Microsoft Corporation - Internet Explorer.) (8.00.6001.18812 (longhorn_ie8_gdr.090717-2100)) -- C:\WINDOWS\system32\ieframe.dll
R3 - URLSearchHook: Vuze Remote Toolbar - {ba14329e-9550-4989-b3f2-9732e92d17cc} . (.Conduit Ltd. - Conduit Toolbar.) (5, 5, 0, 10) -- C:\Program Files\Vuze_Remote\tbVuze.dll
---\\ Modification d'une valeur Ini (Changed inifile value, mapped to Registry) (F2)
F2 - REG:system.ini: UserInit=C:\WINDOWS\system32\userinit.exe,
F2 - REG:system.ini: VMApplet=rundll32 shell32,Control_RunDLL "sysdm.cpl"
---\\ Browser Helper Objects de navigateur (O2)
O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} . (.Pas de propriétaire - AcroIEHelper Module.) -- C:\Program Files\Adobe\Acrobat 5.0\Reader\ActiveX\AcroIEHelper.ocx
O2 - BHO: AskBar BHO - {201f27d4-3704-41d6-89c1-aa35e39143ed} . (.Ask.com - Ask.com Toolbar.) -- C:\Program Files\AskBarDis\bar\bin\askBar.dll
O2 - BHO: Spybot-S&D IE Protection - {53707962-6F74-2D53-2644-206D7942484F} . (.Safer Networking Limited - SBSD IE Protection.) -- C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O2 - BHO: (no name) - {5C255C8A-E604-49b4-9D64-90988571CECB} Clé orpheline
O2 - BHO: DriveLetterAccess - {5CA3D70E-1895-11CF-8E15-001234567890} . (.Sonic Solutions - Drive Letter Access Component.) -- C:\WINDOWS\System32\DLA\DLASHX_W.DLL
O2 - BHO: Search Helper - {6EBF7485-159F-4bff-A14F-B9E3AAC4465B} . (.Microsoft Corporation - Search Helper for Internet Explorer.) -- C:\Program Files\Microsoft\Search Enhancement Pack\Search Helper\SEPsearchhelperie.dll
O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} . (.Microsoft Corporation - WindowsLiveLogin.dll.) -- C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Vuze Remote Toolbar - {ba14329e-9550-4989-b3f2-9732e92d17cc} . (.Conduit Ltd. - Conduit Toolbar.) -- C:\Program Files\Vuze_Remote\tbVuze.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} . (.Sun Microsystems, Inc. - Java(TM) Platform SE binary.) -- C:\Program Files\Java\jre6\bin\jp2ssv.dll
O2 - BHO: Windows Live Toolbar Helper - {E15A8DC0-8516-42A1-81EA-DC94EC1ACF10} . (.Microsoft Corporation - Windows Live Toolbar Core.) -- C:\Program Files\Windows Live\Toolbar\wltcore.dll
O2 - BHO: JQSIEStartDetectorImpl - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} . (.Sun Microsystems, Inc. - Java(TM) Quick Starter binary.) -- C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll
---\\ Internet Explorer Toolbars (O3)
O3 - Toolbar: &Windows Live Toolbar - {21FA44EF-376D-4D53-9B0F-8A89D3229068} . (.Microsoft Corporation - Windows Live Toolbar Core.) -- C:\Program Files\Windows Live\Toolbar\wltcore.dll
O3 - Toolbar: Ask Toolbar - {3041d03e-fd4b-44e0-b742-2d9b88305f98} . (.Ask.com - Ask.com Toolbar.) -- C:\Program Files\AskBarDis\bar\bin\askBar.dll
O3 - Toolbar: Vuze Remote Toolbar - {ba14329e-9550-4989-b3f2-9732e92d17cc} . (.Conduit Ltd. - Conduit Toolbar.) -- C:\Program Files\Vuze_Remote\tbVuze.dll
---\\ Applications démarrées par registre & par dossier (O4)
O4 - HKLM\..\Run: [ATIPTA] . (.ATI Technologies, Inc. - ATI Desktop Control Panel.) -- C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe
O4 - HKLM\..\Run: [LtMoh] . (.Agere Systems - LtMoh MFC Application.) -- C:\Program Files\ltmoh\Ltmoh.exe
O4 - HKLM\..\Run: [AGRSMMSG] . (.Agere Systems - SoftModem Messaging Applet.) -- C:\Windows\AGRSMMSG.exe
O4 - HKLM\..\Run: [Tvs] . (.TOSHIBA Corporation - TOSHIBA Virtual Sound Taskbar Module.) -- C:\Program Files\TOSHIBA\Tvs\TvsTray.exe
O4 - HKLM\..\Run: [CeEKEY] . (.COMPAL ELECTRONIC INC. - TOSHIBA HotKey Utility.) -- C:\Program Files\TOSHIBA\E-KEY\CeEKey.exe
O4 - HKLM\..\Run: [Apoint] . (.Alps Electric Co., Ltd. - Alps Pointing-device Driver.) -- C:\Program Files\Apoint2K\Apoint.exe
O4 - HKLM\..\Run: [TPNF] . (.COMPAL ELECTRONIC INC. - TPTray Application.) -- C:\Program Files\TOSHIBA\TouchPad\TPTray.exe
O4 - HKLM\..\Run: [NDSTray.exe] NDSTray.exe
O4 - HKLM\..\Run: [Zooming] . (.TOSHIBA - TOSHIBA Zooming Utility Hotkey Hook.) -- C:\Windows\System32\ZoomingHook.exe
O4 - HKLM\..\Run: [HWSetup] . (.TOSHIBA CO.,LTD. - HWSetup.) -- C:\Program Files\TOSHIBA\TOSHIBA Applet\HWSetup.exe
O4 - HKLM\..\Run: [DLA] . (.Sonic Solutions - Drive Letter Access Component.) -- C:\WINDOWS\System32\DLA\DLACTRLW.exe
O4 - HKLM\..\Run: [PadTouch] . (.TOSHIBA - PadTouch Main.) -- C:\Program Files\TOSHIBA\Touch and Launch\Padexe.exe
O4 - HKLM\..\Run: [SVPWUTIL] . (.TOSHIBA - SVPWUTIL Application.) -- C:\Program Files\Toshiba\Windows Utilities\SVPWUTIL.exe
O4 - HKLM\..\Run: [TPSMain] . (.TOSHIBA Corporation - Pas de description.) -- C:\Windows\System32\TPSMain.exe
O4 - HKLM\..\Run: [SmoothView] . (.TOSHIBA Corporation - SmoothView.) -- C:\Program Files\TOSHIBA\Utilitaire de zoom TOSHIBA\SmoothView.exe
O4 - HKLM\..\Run: [LogitechCommunicationsManager] . (.Logitech Inc. - Logitech Communications Manager.) -- C:\Program Files\Fichiers communs\Logitech\LComMgr\Communications_Helper.exe
O4 - HKLM\..\Run: [LogitechQuickCamRibbon] . (.Pas de propriétaire - Pas de description.) -- C:\Program Files\Logitech\QuickCam10\QuickCam10.exe
O4 - HKLM\..\Run: [AppleSyncNotifier] . (.Apple Inc. - AppleSyncNotifier.) -- C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleSyncNotifier.exe
O4 - HKLM\..\Run: [GBMLite8AgentLaCie] . (.Genie-soft - Genie Backup Agent.) -- C:\Program Files\LaCie\Genie Backup Assistant\GBMAgent.exe
O4 - HKLM\..\Run: [SunJavaUpdateSched] . (.Sun Microsystems, Inc. - Java(TM) Update Scheduler.) -- C:\Program Files\Fichiers communs\Java\Java Update\jusched.exe
O4 - HKLM\..\Run: [avast5] . (.AVAST Software - avast! Antivirus.) -- C:\PROGRA~1\ALWILS~1\Avast5\avastUI.exe
O4 - HKLM\..\Run: [QuickTime Task] . (.Apple Inc. - QuickTime Task.) -- C:\Program Files\QuickTime\qttask.exe
O4 - HKLM\..\Run: [iTunesHelper] . (.Apple Inc. - iTunesHelper.) -- C:\Program Files\iTunes\iTunesHelper.exe
O4 - HKCU\..\Run: [CTFMON.EXE] . (.Microsoft Corporation - CTF Loader.) -- C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [TOSCDSPD] . (.TOSHIBA - CD/DVD Drive Acoustic Silencer.) -- C:\Program Files\TOSHIBA\TOSCDSPD\toscdspd.exe
O4 - HKCU\..\Run: [SpybotSD TeaTimer] . (.Safer-Networking Ltd. - System settings protector.) -- C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe
O4 - HKCU\..\Run: [LDM] . (.Logitech - Logitech Desktop Messenger.) -- C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe
O4 - HKCU\..\Run: [GBMLite8AgentLaCie] . (.Genie-soft - Genie Backup Agent.) -- C:\Program Files\LaCie\Genie Backup Assistant\GBMAgent.exe
O4 - HKCU\..\Run: [JP595IR86O] . (.Pas de propriétaire - Pas de description.) -- C:\DOCUME~1\Natalia\LOCALS~1\Temp\Wln.exe
O4 - HKCU\..\Run: [iobin700release.exe] . (.It Systems - Covering Software.) -- C:\Documents and Settings\Natalia\Application Data\A51AB2C36C73CD0D5E947E97B4FE65CB\iobin700release.exe
O4 - HKCU\..\Run: [H3O8CABBPI] . (.Pas de propriétaire - Pas de description.) -- C:\WINDOWS\Wnefui.exe
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] . (.Microsoft Corporation - CTF Loader.) -- C:\WINDOWS\system32\CTFMON.exe
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] . (.Microsoft Corporation - CTF Loader.) -- C:\WINDOWS\system32\CTFMON.exe
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] . (.Microsoft Corporation - CTF Loader.) -- C:\WINDOWS\system32\CTFMON.exe
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] . (.Microsoft Corporation - CTF Loader.) -- C:\WINDOWS\system32\CTFMON.exe
O4 - HKUS\S-1-5-21-1260407420-2676463331-1252240880-1006\..\Run: [CTFMON.EXE] . (.Microsoft Corporation - CTF Loader.) -- C:\WINDOWS\system32\ctfmon.exe
O4 - HKUS\S-1-5-21-1260407420-2676463331-1252240880-1006\..\Run: [TOSCDSPD] . (.TOSHIBA - CD/DVD Drive Acoustic Silencer.) -- C:\Program Files\TOSHIBA\TOSCDSPD\toscdspd.exe
O4 - HKUS\S-1-5-21-1260407420-2676463331-1252240880-1006\..\Run: [SpybotSD TeaTimer] . (.Safer-Networking Ltd. - System settings protector.) -- C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe
O4 - HKUS\S-1-5-21-1260407420-2676463331-1252240880-1006\..\Run: [LDM] . (.Logitech - Logitech Desktop Messenger.) -- C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe
O4 - HKUS\S-1-5-21-1260407420-2676463331-1252240880-1006\..\Run: [GBMLite8AgentLaCie] . (.Genie-soft - Genie Backup Agent.) -- C:\Program Files\LaCie\Genie Backup Assistant\GBMAgent.exe
O4 - HKUS\S-1-5-21-1260407420-2676463331-1252240880-1006\..\Run: [JP595IR86O] . (.Pas de propriétaire - Pas de description.) -- C:\DOCUME~1\Natalia\LOCALS~1\Temp\Wln.exe
O4 - HKUS\S-1-5-21-1260407420-2676463331-1252240880-1006\..\Run: [iobin700release.exe] . (.It Systems - Covering Software.) -- C:\Documents and Settings\Natalia\Application Data\A51AB2C36C73CD0D5E947E97B4FE65CB\iobin700release.exe
O4 - HKUS\S-1-5-21-1260407420-2676463331-1252240880-1006\..\Run: [H3O8CABBPI] . (.Pas de propriétaire - Pas de description.) -- C:\WINDOWS\Wnefui.exe
O4 - Global Startup: C:\Documents And Settings\All Users\Menu Démarrer\Programmes\Démarrage\Lancement rapide de Microsoft Office OneNote 2003.lnk . (.Microsoft Corporation.) -- C:\Program Files\Microsoft Office\OFFICE11\ONENOTEM.EXE
O4 - Global Startup: C:\Documents And Settings\All Users\Menu Démarrer\Programmes\Démarrage\Logitech Desktop Messenger.lnk . (.Logitech.) -- C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LDMConf.exe
O4 - Global Startup: C:\Documents And Settings\All Users\Menu Démarrer\Programmes\Démarrage\RAMASST.lnk . (.Matsushita Electric Industrial Co., Ltd..) -- C:\WINDOWS\system32\RAMASST.exe
O4 - Global Startup: C:\Documents And Settings\Natalia\Menu Démarrer\Programmes\Démarrage\Antimalware Doctor.lnk . (.It Systems.) -- C:\Documents and Settings\Natalia\Application Data\A51AB2C36C73CD0D5E947E97B4FE65CB\iobin700release.exe
---\\ Autres liens utilisateurs (O4)
O4 - Global Startup: C:\Documents And Settings\All Users\Menu Démarrer\Programmes\Acrobat Reader 5.1.lnk . (.Adobe Systems Incorporated.) -- C:\Program Files\Adobe\Acrobat 5.0\Reader\AcroRd32.exe
O4 - Global Startup: C:\Documents And Settings\All Users\Menu Démarrer\Programmes\Apple Software Update.lnk . (.Pas de propriétaire.) -- C:\WINDOWS\Installer\{C41300B9-185D-475E-BFEC-39EF732F19B1}\AppleSoftwareUpdateIco.exe
O4 - Global Startup: C:\Documents And Settings\All Users\Menu Démarrer\Programmes\Inscription de Toshiba.lnk . (.Microsoft Corporation.) -- C:\WINDOWS\system32\oobe\msoobe.exe
O4 - Global Startup: C:\Documents And Settings\All Users\Menu Démarrer\Programmes\Lisez Moi.lnk . (.Pas de propriétaire.) -- C:\Lisez Moi.htm
O4 - Global Startup: C:\Documents And Settings\All Users\Menu Démarrer\Programmes\MSN.lnk . (.Microsoft Corporation.) -- C:\Program Files\MSN\MSNCoreFiles\Install\msnsusii.exe
O4 - Global Startup: C:\Documents And Settings\All Users\Menu Démarrer\Programmes\Vuze.lnk . (.Vuze Inc..) -- C:\Program Files\Vuze\Azureus.exe
O4 - Global Startup: C:\Documents And Settings\All Users\Menu Démarrer\Programmes\Windows Messenger.lnk . (.Microsoft Corporation.) -- C:\Program Files\Messenger\msmsgs.exe
O4 - Global Startup: C:\Documents And Settings\All Users\Menu Démarrer\Programmes\Windows Movie Maker.lnk . (.Microsoft Corporation.) -- C:\Program Files\Movie Maker\moviemk.exe
O4 - Global Startup: C:\Documents And Settings\Natalia\Menu Démarrer\Programmes\Assistance à distance.lnk . (.Microsoft Corporation.) -- C:\WINDOWS\system32\rcimlby.exe
O4 - Global Startup: C:\Documents And Settings\Natalia\Menu Démarrer\Programmes\Internet Explorer.lnk . (.Microsoft Corporation.) -- C:\Program Files\Internet Explorer\iexplore.exe
O4 - Global Startup: C:\Documents And Settings\Natalia\Menu Démarrer\Programmes\Outlook Express.lnk . (.Microsoft Corporation.) -- C:\Program Files\Outlook Express\msimn.exe
O4 - Global Startup: C:\Documents And Settings\Natalia\Menu Démarrer\Programmes\Windows Media Player.lnk . (.Microsoft Corporation.) -- C:\Program Files\Windows Media Player\wmplayer.exe
---\\ Lignes supplémentaires dans le menu contextuel d'Internet Explorer (O8)
O8 - Extra context menu item: E&xporter vers Microsoft Excel . (.Microsoft Corporation - Microsoft Office Excel.) -- C:\PROGRA~1\MICROS~2\OFFICE11\EXCEL.exe
---\\ Boutons situés sur la barre d'outils principale d'Internet Explorer (O9)
O9 - Extra button: Recherche - {92780B25-18CC-41C8-B9BE-3C9C571A8263} . (.Pas de propriétaire - Pas de description.) -- C:\PROGRA~1\MICROS~2\OFFICE11\REFBARH.ICO
O9 - Extra 'Tools' menuitem: Spybot - Search & Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} . (.not file.) - (.not file.)
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} . (.not file.) - (.not file.)
O9 - Extra button: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} . (.Microsoft Corporation - Windows Messenger.) -- C:\Program Files\Messenger\msmsgs.exe
---\\ Winsock hijacker (Layered Service Provider) (O10)
O10 - WLSP:\000000000001\Winsock LSP File . (.Microsoft Corporation - Fournisseur de service Sockets 2.0 de Microsoft Windows.) -- C:\WINDOWS\system32\mswsock.dll
O10 - WLSP:\000000000002\Winsock LSP File . (.Microsoft Corporation - LDAP RnR Provider DLL.) -- C:\WINDOWS\system32\winrnr.dll
O10 - WLSP:\000000000003\Winsock LSP File . (.Microsoft Corporation - Fournisseur de service Sockets 2.0 de Microsoft Windows.) -- C:\WINDOWS\system32\mswsock.dll
O10 - WLSP:\000000000004\Winsock LSP File . (.Apple Inc. - Bonjour Namespace Provider.) -- C:\Program Files\Bonjour\mdnsNSP.dll
---\\ Piratage de l'Option 'Rétablir les paramètres Web' (O14)
O14 - IERESET.INF: START_PAGE_URL=START_PAGE_URL=http://www.microsoft.com/isapi/redir.dll?prd=ie&pver=6&ar=msnhome
---\\ Objets ActiveX (Downloaded Program Files)(O16)
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab
---\\ Modification Domaine/Adresses DNS (O17)
O17 - HKLM\System\CCS\Services\Tcpip\..\{229E9A80-3F62-4CFB-9898-411C10E28864}: NameServer = 4.2.2.1,4.2.2.2
O17 - HKLM\System\CS1\Services\Tcpip\..\{229E9A80-3F62-4CFB-9898-411C10E28864}: NameServer = 4.2.2.1,4.2.2.2
O17 - HKLM\System\CS2\Services\Tcpip\..\{229E9A80-3F62-4CFB-9898-411C10E28864}: NameServer = 4.2.2.1,4.2.2.2
O17 - HKLM\System\CCS\Services\Tcpip\..\{229E9A80-3F62-4CFB-9898-411C10E28864}: DhcpNameServer = 192.168.2.1
O17 - HKLM\System\CS1\Services\Tcpip\..\{229E9A80-3F62-4CFB-9898-411C10E28864}: DhcpNameServer = 192.168.2.1
O17 - HKLM\System\CS2\Services\Tcpip\..\{229E9A80-3F62-4CFB-9898-411C10E28864}: DhcpNameServer = 192.168.2.1
O17 - HKLM\System\CCS\Services\Tcpip\..\{229E9A80-3F62-4CFB-9898-411C10E28864}: DhcpDomain = Belkin
O17 - HKLM\System\CS1\Services\Tcpip\..\{229E9A80-3F62-4CFB-9898-411C10E28864}: DhcpDomain = Belkin
O17 - HKLM\System\CS2\Services\Tcpip\..\{229E9A80-3F62-4CFB-9898-411C10E28864}: DhcpDomain = Belkin
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.2.1
---\\ Protocole additionnel et piratage de protocole (O18)
O18 - Handler: bw+0 - {d8d8f302-2a5d-4112-a8b7-3d7cc98559ef} . (.Logitech - Logitech Desktop Messenger.) -- C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Handler: bw+0s - {d8d8f302-2a5d-4112-a8b7-3d7cc98559ef} . (.Logitech - Logitech Desktop Messenger.) -- C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Handler: bw-0 - {d8d8f302-2a5d-4112-a8b7-3d7cc98559ef} . (.Logitech - Logitech Desktop Messenger.) -- C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Handler: bw-0s - {d8d8f302-2a5d-4112-a8b7-3d7cc98559ef} . (.Logitech - Logitech Desktop Messenger.) -- C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Handler: bw00 - {d8d8f302-2a5d-4112-a8b7-3d7cc98559ef} . (.Logitech - Logitech Desktop Messenger.) -- C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Handler: bw00s - {d8d8f302-2a5d-4112-a8b7-3d7cc98559ef} . (.Logitech - Logitech Desktop Messenger.) -- C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Handler: bw10 - {d8d8f302-2a5d-4112-a8b7-3d7cc98559ef} . (.Logitech - Logitech Desktop Messenger.) -- C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Handler: bw10s - {d8d8f302-2a5d-4112-a8b7-3d7cc98559ef} . (.Logitech - Logitech Desktop Messenger.) -- C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Handler: bw20 - {d8d8f302-2a5d-4112-a8b7-3d7cc98559ef} . (.Logitech - Logitech Desktop Messenger.) -- C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Handler: bw20s - {d8d8f302-2a5d-4112-a8b7-3d7cc98559ef} . (.Logitech - Logitech Desktop Messenger.) -- C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Handler: bw30 - {d8d8f302-2a5d-4112-a8b7-3d7cc98559ef} . (.Logitech - Logitech Desktop Messenger.) -- C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Handler: bw30s - {d8d8f302-2a5d-4112-a8b7-3d7cc98559ef} . (.Logitech - Logitech Desktop Messenger.) -- C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Handler: bw40 - {d8d8f302-2a5d-4112-a8b7-3d7cc98559ef} . (.Logitech - Logitech Desktop Messenger.) -- C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Handler: bw40s - {d8d8f302-2a5d-4112-a8b7-3d7cc98559ef} . (.Logitech - Logitech Desktop Messenger.) -- C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Handler: bw50 - {d8d8f302-2a5d-4112-a8b7-3d7cc98559ef} . (.Logitech - Logitech Desktop Messenger.) -- C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Handler: bw50s - {d8d8f302-2a5d-4112-a8b7-3d7cc98559ef} . (.Logitech - Logitech Desktop Messenger.) -- C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Handler: bw60 - {d8d8f302-2a5d-4112-a8b7-3d7cc98559ef} . (.Logitech - Logitech Desktop Messenger.) -- C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Handler: bw60s - {d8d8f302-2a5d-4112-a8b7-3d7cc98559ef} . (.Logitech - Logitech Desktop Messenger.) -- C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Handler: bw70 - {d8d8f302-2a5d-4112-a8b7-3d7cc98559ef} . (.Logitech - Logitech Desktop Messenger.) -- C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Handler: bw70s - {d8d8f302-2a5d-4112-a8b7-3d7cc98559ef} . (.Logitech - Logitech Desktop Messenger.) -- C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Handler: bw80 - {d8d8f302-2a5d-4112-a8b7-3d7cc98559ef} . (.Logitech - Logitech Desktop Messenger.) -- C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Handler: bw80s - {d8d8f302-2a5d-4112-a8b7-3d7cc98559ef} . (.Logitech - Logitech Desktop Messenger.) -- C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Handler: bw90 - {d8d8f302-2a5d-4112-a8b7-3d7cc98559ef} . (.Logitech - Logitech Desktop Messenger.) -- C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Handler: bw90s - {d8d8f302-2a5d-4112-a8b7-3d7cc98559ef} . (.Logitech - Logitech Desktop Messenger.) -- C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Handler: bwa0 - {d8d8f302-2a5d-4112-a8b7-3d7cc98559ef} . (.Logitech - Logitech Desktop Messenger.) -- C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Handler: bwa0s - {d8d8f302-2a5d-4112-a8b7-3d7cc98559ef} . (.Logitech - Logitech Desktop Messenger.) -- C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Handler: bwb0 - {d8d8f302-2a5d-4112-a8b7-3d7cc98559ef} . (.Logitech - Logitech Desktop Messenger.) -- C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Handler: bwb0s - {d8d8f302-2a5d-4112-a8b7-3d7cc98559ef} . (.Logitech - Logitech Desktop Messenger.) -- C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Handler: bwc0 - {d8d8f302-2a5d-4112-a8b7-3d7cc98559ef} . (.Logitech - Logitech Desktop Messenger.) -- C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Handler: bwc0s - {d8d8f302-2a5d-4112-a8b7-3d7cc98559ef} . (.Logitech - Logitech Desktop Messenger.) -- C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Handler: bwd0 - {d8d8f302-2a5d-4112-a8b7-3d7cc98559ef} . (.Logitech - Logitech Desktop Messenger.) -- C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Handler: bwd0s - {d8d8f302-2a5d-4112-a8b7-3d7cc98559ef} . (.Logitech - Logitech Desktop Messenger.) -- C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Handler: bwe0 - {d8d8f302-2a5d-4112-a8b7-3d7cc98559ef} . (.Logitech - Logitech Desktop Messenger.) -- C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Handler: bwe0s - {d8d8f302-2a5d-4112-a8b7-3d7cc98559ef} . (.Logitech - Logitech Desktop Messenger.) -- C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Handler: bwf0 - {d8d8f302-2a5d-4112-a8b7-3d7cc98559ef} . (.Logitech - Logitech Desktop Messenger.) -- C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Handler: bwf0s - {d8d8f302-2a5d-4112-a8b7-3d7cc98559ef} . (.Logitech - Logitech Desktop Messenger.) -- C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Handler: bwfile-8876480 - {9462A756-7B47-47BC-8C80-C34B9B80B32B} . (.Logitech - Logitech Desktop Messenger.) -- C:\Program Files\Logitech\Desktop Messenger\8876480\Program\GAPlugProtocol-8876480.dll
O18 - Handler: bwg0 - {d8d8f302-2a5d-4112-a8b7-3d7cc98559ef} . (.Logitech - Logitech Desktop Messenger.) -- C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Handler: bwg0s - {d8d8f302-2a5d-4112-a8b7-3d7cc98559ef} . (.Logitech - Logitech Desktop Messenger.) -- C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Handler: bwh0 - {d8d8f302-2a5d-4112-a8b7-3d7cc98559ef} . (.Logitech - Logitech Desktop Messenger.) -- C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Handler: bwh0s - {d8d8f302-2a5d-4112-a8b7-3d7cc98559ef} . (.Logitech - Logitech Desktop Messenger.) -- C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Handler: bwi0 - {d8d8f302-2a5d-4112-a8b7-3d7cc98559ef} . (.Logitech - Logitech Desktop Messenger.) -- C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Handler: bwi0s - {d8d8f302-2a5d-4112-a8b7-3d7cc98559ef} . (.Logitech - Logitech Desktop Messenger.) -- C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Handler: bwj0 - {d8d8f302-2a5d-4112-a8b7-3d7cc98559ef} . (.Logitech - Logitech Desktop Messenger.) -- C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Handler: bwj0s - {d8d8f302-2a5d-4112-a8b7-3d7cc98559ef} . (.Logitech - Logitech Desktop Messenger.) -- C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Handler: bwk0 - {d8d8f302-2a5d-4112-a8b7-3d7cc98559ef} . (.Logitech - Logitech Desktop Messenger.) -- C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Handler: bwk0s - {d8d8f302-2a5d-4112-a8b7-3d7cc98559ef} . (.Logitech - Logitech Desktop Messenger.) -- C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Handler: bwl0 - {d8d8f302-2a5d-4112-a8b7-3d7cc98559ef} . (.Logitech - Logitech Desktop Messenger.) -- C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Handler: bwl0s - {d8d8f302-2a5d-4112-a8b7-3d7cc98559ef} . (.Logitech - Logitech Desktop Messenger.) -- C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Handler: bwm0 - {d8d8f302-2a5d-4112-a8b7-3d7cc98559ef} . (.Logitech - Logitech Desktop Messenger.) -- C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Handler: bwm0s - {d8d8f302-2a5d-4112-a8b7-3d7cc98559ef} . (.Logitech - Logitech Desktop Messenger.) -- C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Handler: bwn0 - {d8d8f302-2a5d-4112-a8b7-3d7cc98559ef} . (.Logitech - Logitech Desktop Messenger.) -- C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Handler: bwn0s - {d8d8f302-2a5d-4112-a8b7-3d7cc98559ef} . (.Logitech - Logitech Desktop Messenger.) -- C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Handler: bwo0 - {d8d8f302-2a5d-4112-a8b7-3d7cc98559ef} . (.Logitech - Logitech Desktop Messenger.) -- C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Handler: bwo0s - {d8d8f302-2a5d-4112-a8b7-3d7cc98559ef} . (.Logitech - Logitech Desktop Messenger.) -- C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Handler: bwp0 - {d8d8f302-2a5d-4112-a8b7-3d7cc98559ef} . (.Logitech - Logitech Desktop Messenger.) -- C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Handler: bwp0s - {d8d8f302-2a5d-4112-a8b7-3d7cc98559ef} . (.Logitech - Logitech Desktop Messenger.) -- C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Handler: bwq0 - {d8d8f302-2a5d-4112-a8b7-3d7cc98559ef} . (.Logitech - Logitech Desktop Messenger.) -- C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Handler: bwq0s - {d8d8f302-2a5d-4112-a8b7-3d7cc98559ef} . (.Logitech - Logitech Desktop Messenger.) -- C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Handler: bwr0 - {d8d8f302-2a5d-4112-a8b7-3d7cc98559ef} . (.Logitech - Logitech Desktop Messenger.) -- C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Handler: bwr0s - {d8d8f302-2a5d-4112-a8b7-3d7cc98559ef} . (.Logitech - Logitech Desktop Messenger.) -- C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Handler: bws0 - {d8d8f302-2a5d-4112-a8b7-3d7cc98559ef} . (.Logitech - Logitech Desktop Messenger.) -- C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Handler: bws0s - {d8d8f302-2a5d-4112-a8b7-3d7cc98559ef} . (.Logitech - Logitech Desktop Messenger.) -- C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Handler: bwt0 - {d8d8f302-2a5d-4112-a8b7-3d7cc98559ef} . (.Logitech - Logitech Desktop Messenger.) -- C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Handler: bwt0s - {d8d8f302-2a5d-4112-a8b7-3d7cc98559ef} . (.Logitech - Logitech Desktop Messenger.) -- C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Handler: bwu0 - {d8d8f302-2a5d-4112-a8b7-3d7cc98559ef} . (.Logitech - Logitech Desktop Messenger.) -- C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Handler: bwu0s - {d8d8f302-2a5d-4112-a8b7-3d7cc98559ef} . (.Logitech - Logitech Desktop Messenger.) -- C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Handler: bwv0 - {d8d8f302-2a5d-4112-a8b7-3d7cc98559ef} . (.Logitech - Logitech Desktop Messenger.) -- C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Handler: bwv0s - {d8d8f302-2a5d-4112-a8b7-3d7cc98559ef} . (.Logitech - Logitech Desktop Messenger.) -- C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Handler: bww0 - {d8d8f302-2a5d-4112-a8b7-3d7cc98559ef} . (.Logitech - Logitech Desktop Messenger.) -- C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Handler: bww0s - {d8d8f302-2a5d-4112-a8b7-3d7cc98559ef} . (.Logitech - Logitech Desktop Messenger.) -- C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Handler: bwx0 - {d8d8f302-2a5d-4112-a8b7-3d7cc98559ef} . (.Logitech - Logitech Desktop Messenger.) -- C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Handler: bwx0s - {d8d8f302-2a5d-4112-a8b7-3d7cc98559ef} . (.Logitech - Logitech Desktop Messenger.) -- C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Handler: bwy0 - {d8d8f302-2a5d-4112-a8b7-3d7cc98559ef} . (.Logitech - Logitech Desktop Messenger.) -- C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Handler: bwy0s - {d8d8f302-2a5d-4112-a8b7-3d7cc98559ef} . (.Logitech - Logitech Desktop Messenger.) -- C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Handler: bwz0 - {d8d8f302-2a5d-4112-a8b7-3d7cc98559ef} . (.Logitech - Logitech Desktop Messenger.) -- C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Handler: bwz0s - {d8d8f302-2a5d-4112-a8b7-3d7cc98559ef} . (.Logitech - Logitech Desktop Messenger.) -- C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Handler: offline-8876480 - {D8D8F302-2A5D-4112-A8B7-3D7CC98559EF} . (.Logitech - Logitech Desktop Messenger.) -- C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} . (.Skype Technologies - Skype for COM API.) -- C:\PROGRA~1\FICHIE~1\Skype\SKYPE4~1.DLL
---\\ Valeur de Registre AppInit_DLLs et sous-clés Winlogon Notify (autorun) (O20)
O20 - Winlogon Notify: AtiExtEvent . (.ATI Technologies Inc. - ATI External Event Utility DLL Module.) -- C:\Windows\System32\Ati2evxx.dll
O20 - Winlogon Notify: crypt32chain . (.Microsoft Corporation - Crypto API32.) -- C:\Windows\System32\crypt32.dll
O20 - Winlogon Notify: cryptnet . (.Microsoft Corporation - Crypto Network Related API.) -- C:\Windows\System32\cryptnet.dll
O20 - Winlogon Notify: cscdll . (.Microsoft Corporation - Agent réseau hors connexion.) -- C:\Windows\System32\cscdll.dll
O20 - Winlogon Notify: ScCertProp . (.Microsoft Corporation - DLL commune de réception des notifications.) -- C:\Windows\System32\wlnotify.dll
O20 - Winlogon Notify: Schedule . (.Microsoft Corporation - DLL commune de réception des notifications.) -- C:\Windows\System32\wlnotify.dll
O20 - Winlogon Notify: sclgntfy . (.Microsoft Corporation - DLL secondaire de notification de service d.) -- C:\Windows\System32\sclgntfy.dll
O20 - Winlogon Notify: SensLogn . (.Microsoft Corporation - DLL commune de réception des notifications.) -- C:\Windows\System32\WlNotify.dll
O20 - Winlogon Notify: termsrv . (.Microsoft Corporation - DLL commune de réception des notifications.) -- C:\Windows\System32\wlnotify.dll
O20 - Winlogon Notify: wlballoon . (.Microsoft Corporation - DLL commune de réception des notifications.) -- C:\Windows\System32\wlnotify.dll
---\\ Clé de Registre autorun ShellServiceObjectDelayLoad (SSO/SSODL) (O21)
O21 - SSODL: PostBootReminder - {7849596a-48ea-486e-8937-a2a3009f31a9} . (.Microsoft Corporation - DLL commune du shell Windows.) -- C:\WINDOWS\system32\SHELL32.dll
O21 - SSODL: CDBurn - {fbeb8a05-beee-4442-804e-409d6c4515e9} . (.Microsoft Corporation - DLL commune du shell Windows.) -- C:\WINDOWS\system32\SHELL32.dll
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} . (.Microsoft Corporation - Web Site Monitor.) -- C:\WINDOWS\system32\webcheck.dll
O21 - SSODL: SysTray - {35CEC8A3-2BE6-11D2-8773-92E220524153} . (.Microsoft Corporation - Objet du service d'environnement Systray.) -- C:\WINDOWS\system32\stobject.dll
---\\ Clé de Registre autorun SharedTaskScheduler (STS) (O22)
O22 - SharedTaskScheduler: (no name) - {8C7461EF-2B13-11d2-BE35-3078302C2030} . (.Microsoft Corporation - Bibliothèque de l'interface utilisateur du.) -- C:\WINDOWS\system32\browseui.dll
---\\ Liste des services NT non Microsoft et non désactivés (O23)
O23 - Service: (ACS) . (.Pas de propriétaire - Pas de description.) - C:\WINDOWS\system32\ACS.exe
O23 - Service: (Apple Mobile Device) . (.Apple Inc. - MobileDeviceService.) - C:\Program Files\Fichiers communs\Apple\Mobile Device Support\AppleMobileDeviceService.exe
O23 - Service: (ASKService) . (.Pas de propriétaire - Pas de description.) - C:\Program Files\AskBarDis\bar\bin\AskService.exe
O23 - Service: (ASKUpgrade) . (.Pas de propriétaire - Pas de description.) - C:\Program Files\AskBarDis\bar\bin\ASKUpgrade.exe
O23 - Service: (Ati HotKey Poller) . (.ATI Technologies Inc. - ATI External Event Utility EXE Module.) - C:\WINDOWS\system32\Ati2evxx.exe
O23 - Service: (avast! Antivirus) . (.AVAST Software - avast! Service.) - C:\Program Files\Alwil Software\Avast5\AvastSvc.exe
O23 - Service: (Bonjour Service) . (.Apple Inc. - Bonjour Service.) - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: (CCALib8) . (.Canon Inc. - Canon Camera Access Library 8.) - C:\Program Files\Canon\CAL\CALMAIN.exe
O23 - Service: (CFSvcs) . (.TOSHIBA CORPORATION - Service of ConfigFree..) - C:\Program Files\TOSHIBA\ConfigFree\CFSvcs.exe
O23 - Service: (DVD-RAM_Service) . (.Matsushita Electric Industrial Co., Ltd. - DVD-RAM Utility Helper Service.) - C:\WINDOWS\system32\DVDRAMSV.exe
O23 - Service: (JavaQuickStarterService) . (.Sun Microsystems, Inc. - Java(TM) Quick Starter Service.) - C:\Program Files\Java\jre6\bin\jqs.exe
O23 - Service: (LVPrcSrv) . (.Logitech Inc. - Logitech LVPrcSrv Module..) - c:\program files\fichiers communs\logitech\lvmvfm\LVPrcSrv.exe
O23 - Service: (LVSrvLauncher) . (.Logitech Inc. - Service Launcher.) - C:\Program Files\Fichiers communs\Logitech\SrvLnch\SrvLnch.exe
---\\ Enumération Active Desktop & MHTML Editor (O24)
O24 - Default MHTML Editor: Last - .(.Pas de propriétaire - Pas de description.) - "C:\Program Files\Microsoft Office\OFFICE11\WINWORD.exe (.not file.)
---\\ Tâches planifiées en automatique (O39)
O39 - APT:Automatic Planified Task - C:\WINDOWS\Tasks\Dzwue.job
O39 - APT:Automatic Planified Task - C:\WINDOWS\Tasks\Ihhfw.job
O39 - APT:Automatic Planified Task - C:\WINDOWS\Tasks\TQQJADD.job
O39 - APT:Automatic Planified Task - C:\WINDOWS\Tasks\ZDJOMGA.job
O39 - APT:Automatic Planified Task - C:\WINDOWS\Tasks\{22116563-108C-42c0-A7CE-60161B75E508}.job
O39 - APT:Automatic Planified Task - C:\WINDOWS\Tasks\{62C40AA6-4406-467a-A5A5-DFDF1B559B7A}.job
---\\ Composants installés (ActiveSetup Installed Components) (O40)
O40 - ASIC: Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608500} . (.Sun Microsystems, Inc. - Java(TM) Platform SE binary.) -- C:\Program Files\Java\jre6\bin\regutils.dll
O40 - ASIC: NetMeeting 3.01 - {44BBA842-CC51-11CF-AAFA-00AA00B6015B} . (.Pas de propriétaire - Pas de description.) -- C:\WINDOWS\INF\msnetmtg.inf
O40 - ASIC: Windows Messenger 4.7 - {5945c046-1e7d-11d1-bc44-00c04fd912be} . (.Pas de propriétaire - Pas de description.) -- C:\WINDOWS\INF\msmsgs.inf
O40 - ASIC: Microsoft Windows Media Player - {6BF52A52-394A-11d3-B153-00C04F79FAA6} . (.Pas de propriétaire - Pas de description.) -- C:\WINDOWS\INF\wmp11.inf
O40 - ASIC: Adobe Flash Player - {D27CDB6E-AE6D-11cf-96B8-444553540000} . (.Adobe Systems, Inc. - Adobe Flash Player 10.0 r12.) -- C:\WINDOWS\system32\Macromed\Flash\Flash10a.ocx
---\\ Pilotes lancés au démarrage (O41)
O41 - Driver: (AFD) . (.Microsoft Corporation - Ancillary Function Driver for WinSock.) - C:\WINDOWS\system32\drivers\afd.sys
O41 - Driver: (Cdrom) . (.Microsoft Corporation - SCSI CD-ROM Driver.) - C:\Windows\System32\DRIVERS\cdrom.sys
O41 - Driver: (DLACDBHM) . (.Sonic Solutions - Shared Driver Component.) - C:\Windows\System32\Drivers\DLACDBHM.sys
O41 - Driver: (DLARTL_N) . (.Sonic Solutions - Shared Driver Component.) - C:\Windows\System32\Drivers\DLARTL_N.sys
O41 - Driver: (i8042prt) . (.Microsoft Corporation - Pilote de port i8042.) - C:\Windows\System32\DRIVERS\i8042prt.sys
O41 - Driver: (Imapi) . (.Microsoft Corporation - IMAPI Kernel Driver.) - C:\Windows\System32\DRIVERS\imapi.sys
O41 - Driver: (intelppm) . (.Microsoft Corporation - Pilote de périphérique processeur.) - C:\Windows\System32\DRIVERS\intelppm.sys
O41 - Driver: (IPSec) . (.Microsoft Corporation - IPSec Driver.) - C:\Windows\System32\DRIVERS\ipsec.sys
O41 - Driver: (Kbdclass) . (.Microsoft Corporation - Pilote de la classe Clavier.) - C:\Windows\System32\DRIVERS\kbdclass.sys
O41 - Driver: (meiudf) . (.Matsushita Electric Industrial Co.,Ltd. - DVD-RAM UDF File System Driver.) - C:\Windows\System32\Drivers\meiudf.sys
O41 - Driver: (Mouclass) . (.Microsoft Corporation - Pilote de la classe Souris.) - C:\Windows\System32\DRIVERS\mouclass.sys
O41 - Driver: (MRxSmb) . (.Microsoft Corporation - Windows NT SMB Minirdr.) - C:\Windows\System32\DRIVERS\mrxsmb.sys
O41 - Driver: (NetBIOS) . (.Microsoft Corporation - NetBIOS interface driver.) - C:\Windows\System32\DRIVERS\netbios.sys
O41 - Driver: (NetBT) . (.Microsoft Corporation - MBT Transport driver.) - C:\Windows\System32\DRIVERS\netbt.sys
O41 - Driver: (RasAcd) . (.Microsoft Corporation - RAS Automatic Connection Driver.) - C:\Windows\System32\DRIVERS\rasacd.sys
O41 - Driver: (Rdbss) . (.Microsoft Corporation - Redirected Drive Buffering SubSystem Driver.) - C:\Windows\System32\DRIVERS\rdbss.sys
O41 - Driver: (RDPCDD) . (.Microsoft Corporation - RDP Miniport.) - C:\Windows\System32\DRIVERS\RDPCDD.sys
O41 - Driver: (redbook) . (.Microsoft Corporation - Pilote de filtre audio Livre rouge.) - C:\Windows\System32\DRIVERS\redbook.sys
O41 - Driver: (SrvcSSIOMngr) . (.COMPAL ELECTRONIC INC. - IoManager Application.) - C:\Windows\System32\Drivers\SSIoMngr.sys
O41 - Driver: (Tcpip) . (.Microsoft Corporation - TCP/IP Protocol Driver.) - C:\Windows\System32\DRIVERS\tcpip.sys
O41 - Driver: (TermDD) . (.Microsoft Corporation - Terminal Server Driver.) - C:\Windows\System32\DRIVERS\termdd.sys
O41 - Driver: (TPwSav) . (.TOSHIBA - IO Driver For TOSHIBA Power Saver.) - C:\Windows\System32\Drivers\TPwSav.sys
O41 - Driver: Carte vidéo VGA. (VgaSave) . (.Microsoft Corporation - VGA/Super VGA Video Driver.) - C:\WINDOWS\system32\drivers\vga.sys
---\\ Logiciels installés (O42)
O42 - Logiciel: ALPS Touch Pad Driver - (.Pas de propriétaire.) [HKLM] -- {9F72EF8B-AEC9-4CA5-B483-143980AFD6FD}
O42 - Logiciel: ATI - Utilitaire de désinstallation du logiciel - (.Pas de propriétaire.) [HKLM] -- All ATI Software
O42 - Logiciel: ATI Display Driver - (.Pas de propriétaire.) [HKLM] -- ATI Display Driver
O42 - Logiciel: Adobe Acrobat 5.0 - (.Adobe Systems, Inc..) [HKLM] -- Adobe Acrobat 5.0
O42 - Logiciel: Adobe Flash Player 10 ActiveX - (.Adobe Systems Incorporated.) [HKLM] -- Adobe Flash Player ActiveX
O42 - Logiciel: Adobe Flash Player 10 Plugin - (.Adobe Systems Incorporated.) [HKLM] -- Adobe Flash Player Plugin
O42 - Logiciel: Antimalware Doctor - (.Pas de propriétaire.) [HKCU] -- Antimalware Doctor
O42 - Logiciel: Apple Application Support - (.Apple Inc..) [HKLM] -- {EE6097DD-05F4-4178-9719-D3170BF098E8}
O42 - Logiciel: Apple Mobile Device Support - (.Apple Inc..) [HKLM] -- {308B6AEA-DE50-4666-996D-0FA461719D6B}
O42 - Logiciel: Apple Software Update - (.Apple Inc..) [HKLM] -- {C41300B9-185D-475E-BFEC-39EF732F19B1}
O42 - Logiciel: Assist TOSHIBA - (.Pas de propriétaire.) [HKLM] -- {12B3A009-A080-4619-9A2A-C6DB151D8D67}
O42 - Logiciel: Assistant de connexion Windows Live - (.Microsoft Corporation.) [HKLM] -- {D3116CC7-24DC-4CA3-9CE1-23FED836E9F2}
O42 - Logiciel: Atheros Client Utility - (.Pas de propriétaire.) [HKLM] -- {71D658CF-4E0D-4DA8-AA67-8C0B6F1C01FE}
O42 - Logiciel: Atheros Wireless LAN MiniPCI card Driver - (.Pas de propriétaire.) [HKLM] -- {05832D65-6EDB-4D32-BA78-BCD0E2B91C02}
O42 - Logiciel: Bonjour - (.Apple Inc..) [HKLM] -- {2A981294-F14C-4F0F-9627-D793270922F8}
O42 - Logiciel: CCleaner (remove only) - (.Piriform.) [HKLM] -- CCleaner
O42 - Logiciel: Canon Camera Access Library - (.Canon Inc..) [HKLM] -- CAL
O42 - Logiciel: Canon Camera Support Core Library - (.Canon Inc..) [HKLM] -- CSCLIB
O42 - Logiciel: Canon G.726 WMP-Decoder - (.Canon Inc..) [HKLM] -- Canon G.726 WMP-Decoder
O42 - Logiciel: Canon MovieEdit Task for ZoomBrowser EX - (.Canon Inc..) [HKLM] -- MovieEditTask
O42 - Logiciel: Canon RAW Image Task for ZoomBrowser EX - (.Canon Inc..) [HKLM] -- RAW Image Task
O42 - Logiciel: Canon Utilities CameraWindow - (.Canon Inc..) [HKLM] -- CameraWindowLauncher
O42 - Logiciel: Canon Utilities CameraWindow DC - (.Canon Inc..) [HKLM] -- CameraWindowDC
O42 - Logiciel: Canon Utilities CameraWindow DC_DV 5 for ZoomBrowser EX - (.Canon Inc..) [HKLM] -- CameraWindowDVC5
O42 - Logiciel: Canon Utilities CameraWindow DC_DV 6 for ZoomBrowser EX - (.Canon Inc..) [HKLM] -- CameraWindowDVC6
O42 - Logiciel: Canon Utilities EOS Utility - (.Canon Inc..) [HKLM] -- EOS Utility
O42 - Logiciel: Canon Utilities MyCamera - (.Canon Inc..) [HKLM] -- MyCamera
O42 - Logiciel: Canon Utilities MyCamera DC - (.Canon Inc..) [HKLM] -- MyCameraDC
O42 - Logiciel: Canon Utilities PhotoStitch - (.Canon Inc..) [HKLM] -- PhotoStitch
O42 - Logiciel: Canon Utilities RemoteCapture Task for ZoomBrowser EX - (.Canon Inc..) [HKLM] -- RemoteCaptureTask
O42 - Logiciel: Canon Utilities ZoomBrowser EX - (.Canon Inc..) [HKLM] -- ZoomBrowser EX
O42 - Logiciel: Canon ZoomBrowser EX Memory Card Utility - (.Canon Inc..) [HKLM] -- ZoomBrowser EX Memory Card Utility
O42 - Logiciel: Free Mp3 Wma Converter V 1.81 - (.Pas de propriétaire.) [HKLM] -- Free Mp3 Wma Converter_is1
O42 - Logiciel: Genie Backup Assistant - (.LaCie.) [HKLM] -- {C9A162C1-031F-4EBF-A3E6-C45F7FCCBB9E}_is1
O42 - Logiciel: Gestion d'énergie TOSHIBA - (.Pas de propriétaire.) [HKLM] -- Power Saver
O42 - Logiciel: Hotfix for Microsoft .NET Framework 3.5 SP1 (KB953595) - (.Microsoft Corporation.) [HKLM] -- {CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9}.KB953595
O42 - Logiciel: Hotfix for Microsoft .NET Framework 3.5 SP1 (KB958484) - (.Microsoft Corporation.) [HKLM] -- {CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9}.KB958484
O42 - Logiciel: Hotfix for Windows Media Format 11 SDK (KB929399) - (.Microsoft Corporation.) [HKLM] -- KB929399
O42 - Logiciel: Hotfix for Windows XP (KB954550-v5) - (.Microsoft Corporation.) [HKLM] -- KB954550-v5
O42 - Logiciel: InterVideo WinDVD Creator 2 - (.InterVideo Inc..) [HKLM] -- {2FCE4FC5-6930-40E7-A4F1-F862207424EF}
O42 - Logiciel: InterVideo WinDVD for TOSHIBA - (.InterVideo Inc..) [HKLM] -- {91810AFC-A4F8-4EBA-A5AA-B198BBC81144}
O42 - Logiciel: IrfanView (remove only) - (.Pas de propriétaire.) [HKLM] -- IrfanView
O42 - Logiciel: Java(TM) 6 Update 18 - (.Sun Microsystems, Inc..) [HKLM] -- {26A24AE4-039D-4CA4-87B4-2F83216018FF}
O42 - Logiciel: Lecteur Windows Media 11 - (.Pas de propriétaire.) [HKLM] -- Windows Media Player
O42 - Logiciel: Logitech Audio Echo Cancellation Component - (.Logitech Inc..) [HKLM] -- {BEF726DD-4037-4214-8C6A-E625C02D2870}
O42 - Logiciel: Logitech Desktop Messenger - (.Logitech, Inc..) [HKLM] -- {900B1197-53F5-4F46-A882-2CFFFE2EEDCB}
O42 - Logiciel: Logitech QuickCam - (.Logitech Inc..) [HKLM] -- {EC42ED6A-751D-45C0-A4F9-8CD00E4690FC}
O42 - Logiciel: Logitech Video Enumerator - (.Logitech Inc..) [HKLM] -- {EA516024-D84D-41F1-814F-83175A6188F2}
O42 - Logiciel: MSVCRT - (.Microsoft.) [HKLM] -- {22B775E7-6C42-4FC5-8E10-9A5E3257BD94}
O42 - Logiciel: MSXML 4.0 SP2 (KB954430) - (.Microsoft Corporation.) [HKLM] -- {86493ADD-824D-4B8E-BD72-8C5DCDC52A71}
O42 - Logiciel: Microsoft .NET Framework 1.1 - (.Microsoft.) [HKLM] -- {CB2F7EDD-9D1F-43C1-90FC-4F52EAE172A1}
O42 - Logiciel: Microsoft .NET Framework 1.1 - (.Pas de propriétaire.) [HKLM] -- Microsoft .NET Framework 1.1 (1033)
O42 - Logiciel: Microsoft .NET Framework 1.1 French Language Pack - (.Microsoft.) [HKLM] -- {9A394342-4A68-4EBA-85A6-55B559F4E700}
O42 - Logiciel: Microsoft .NET Framework 1.1 Hotfix (KB928366) - (.Pas de propriétaire.) [HKLM] -- M928366
O42 - Logiciel: Microsoft .NET Framework 2.0 Service Pack 2 - (.Microsoft Corporation.) [HKLM] -- {C09FB3CD-3D0C-3F2D-899A-6A1D67F2073F}
O42 - Logiciel: Microsoft .NET Framework 3.0 Service Pack 2 - (.Microsoft Corporation.) [HKLM] -- {A3051CD0-2F64-3813-A88D-B8DCCDE8F8C7}
O42 - Logiciel: Microsoft .NET Framework 3.5 SP1 - (.Microsoft Corporation.) [HKLM] -- Microsoft .NET Framework 3.5 SP1
O42 - Logiciel: Microsoft .NET Framework 3.5 SP1 - (.Microsoft Corporation.) [HKLM] -- {CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9}
O42 - Logiciel: Microsoft Choice Guard - (.Microsoft Corporation.) [HKLM] -- {F0E12BBA-AD66-4022-A453-A1C8A0C4D570}
O42 - Logiciel: Microsoft Compression Client Pack 1.0 for Windows XP - (.Microsoft Corporation.) [HKLM] -- MSCompPackV1
O42 - Logiciel: Microsoft Internationalized Domain Names Mitigation APIs - (.Microsoft Corporation.) [HKLM] -- IDNMitigationAPIs
O42 - Logiciel: Microsoft National Language Support Downlevel APIs - (.Microsoft Corporation.) [HKLM] -- NLSDownlevelMapping
O42 - Logiciel: Microsoft Office OneNote 2003 - (.Microsoft Corporation.) [HKLM] -- {91A1040C-6000-11D3-8CFE-0150048383C9}
O42 - Logiciel: Microsoft Office Professional Edition 2003 - (.Microsoft Corporation.) [HKLM] -- {9011040C-6000-11D3-8CFE-0150048383C9}
O42 - Logiciel: Microsoft SQL Server 2005 Compact Edition [ENU] - (.Microsoft Corporation.) [HKLM] -- {F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}
O42 - Logiciel: Microsoft Search Enhancement Pack - (.Microsoft Corporation.) [HKLM] -- {4CBA3D4C-8F51-4D60-B27E-F6B641C571E7}
O42 - Logiciel: Microsoft Sync Framework Runtime Native v1.0 (x86) - (.Microsoft Corporation.) [HKLM] -- {8A74E887-8F0F-4017-AF53-CBA42211AAA5}
O42 - Logiciel: Microsoft Sync Framework Services Native v1.0 (x86) - (.Microsoft Corporation.) [HKLM] -- {BD64AF4A-8C80-4152-AD77-FCDDF05208AB}
O42 - Logiciel: Microsoft User-Mode Driver Framework Feature Pack 1.0 - (.Microsoft Corporation.) [HKLM] -- Wudf01000
O42 - Logiciel: Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 - (.Microsoft Corporation.) [HKLM] -- {1F1C2DFC-2D24-3E06-BCB8-725134ADF989}
O42 - Logiciel: MobileMe Control Panel - (.Apple Inc..) [HKLM] -- {1E5E2F9A-17D3-45CA-8FF0-B0C2927D4B03}
O42 - Logiciel: Mozilla Firefox (3.6.13) - (.Mozilla.) [HKLM] -- Mozilla Firefox (3.6.13)
O42 - Logiciel: Octoshape add-in for Adobe Flash Player - (.Pas de propriétaire.) [HKCU] -- Octoshape add-in for Adobe Flash Player
O42 - Logiciel: Outil de diagnostic PC TOSHIBA - (.Pas de propriétaire.) [HKLM] -- Outil de diagnostic PC
O42 - Logiciel: Panneau de contrôle ATI - (.Pas de propriétaire.) [HKLM] -- {0BEDBD4E-2D34-47B5-9973-57E62B29307C}
O42 - Logiciel: Pilote du DVD-RAM - (.Pas de propriétaire.) [HKLM] -- {9D765FA6-F2BC-40AF-8145-50808F9BDF4E}
O42 - Logiciel: Programme de gestion Camera de Logitech® - (.Pas de propriétaire.) [HKLM] -- QcDrv
O42 - Logiciel: QuickTime - (.Apple Inc..) [HKLM] -- {E7004147-2CCA-431C-AA05-2AB166B9785D}
O
Rapport de ZHPDiag v1.27.1421 par Nicolas Coolman, Update du 16/12/2010
Run by Natalia at 2010-12-18 22:20:32
Web site : http://www.premiumorange.com/zeb-help-process/zhpdiag.html
Contact : nicolascoolman@yahoo.fr
---\\ Web Browser
MSIE: Internet Explorer v8.0.6001.18702
MFIE: Mozilla Firefox v3.6.13 (fr) (Defaut)
---\\ System Information
Windows XP Home Edition Service Pack 3 (Build 2600)
Processor: x86 Family 6 Model 13 Stepping 8, GenuineIntel
Operating System: 32 Bits
Boot mode: Normal (Normal boot)
Total RAM: 446 MB (25% free)
System drive C: has 23 GB (40%) free of 56 GB
---\\ Logged in mode
Computer Name: NOM-8ABC2A6DAF0
User Name: Natalia
All Users Names: SUPPORT_388945a0, Natalia, HelpAssistant, ASPNET, Administrateur,
Unselected Option: O1,O45,O61,O62,O65,O80,O82
Logged in as Administrator
---\\ DOS/Devices
C:\ Hard drive, Flash drive, Thumb drive (Free 23 Go of 56 Go)
D:\ CD-ROM drive (Not Inserted)
---\\ Security Center & Tools Informations
[HKLM\SOFTWARE\Microsoft\Security Center] AntiVirusOverride: OK
[HKLM\SOFTWARE\Microsoft\Security Center] AntiVirusDisableNotify: OK
[HKLM\SOFTWARE\Microsoft\Security Center] FirewallDisableNotify: OK
[HKLM\SOFTWARE\Microsoft\Security Center] FirewallOverride: OK
[HKLM\SOFTWARE\Microsoft\Security Center] UpdatesDisableNotify: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\SHOWALL] CheckedValue: Modified
---\\ Recherche particulière de fichiers génériques
[MD5.F2317622D29F9FF0F88AEECD5F60F0DD] - (.Microsoft Corporation - Explorateur Windows.) (.2008-04-13 21:34:03.) -- C:\Windows\Explorer.exe [1037824]
[MD5.DD73D6B9F6B4CB630CF35B438B540174] - (.Microsoft Corporation - Application d'ouverture de session Windows NT.) (.2008-04-13 21:34:28.) -- C:\Windows\System32\Winlogon.exe [512000]
[MD5.9F3A2F5AA6875C72BF062C712CFA2674] - (.Microsoft Corporation - IDE/ATAPI Port Driver.) (.2008-04-13 13:40:30.) -- C:\Windows\System32\drivers\atapi.sys [96512]
[MD5.78A08DD6A8D65E697C18E1DB01C5CDCA] - (.Microsoft Corporation - NT File System Driver.) (.2008-04-13 14:15:53.) -- C:\Windows\System32\drivers\ntfs.sys [574976]
---\\ Processus lancés
[MD5.BFA066BECCB7E16F52B819360253DEE0] - (.ATI Technologies Inc. - ATI External Event Utility EXE Module.) -- C:\WINDOWS\system32\Ati2evxx.exe [376832]
[MD5.539802224D334C25AC439FF0518D36CD] - (.Pas de propriétaire - Pas de description.) -- C:\WINDOWS\system32\ACS.exe [36864]
[MD5.B2386A8E66891F7CFEC9F5A03F0F1210] - (.AVAST Software - avast! Service.) -- C:\Program Files\Alwil Software\Avast5\AvastSvc.exe [40384]
[MD5.44B3B997E25C5D9A81D6C501451A96D7] - (.Logitech Inc. - Logitech LVPrcSrv Module..) -- c:\program files\fichiers communs\logitech\lvmvfm\LVPrcSrv.exe [99888]
[MD5.018857EAD9A077A56AEDFC0E5EF7A24A] - (.Apple Inc. - MobileDeviceService.) -- C:\Program Files\Fichiers communs\Apple\Mobile Device Support\AppleMobileDeviceService.exe [37664]
[MD5.93AD0B78C7357A05F50E594EC7C22300] - (.Pas de propriétaire - Pas de description.) -- C:\WINDOWS\system32\rundll32.exe [33792]
[MD5.7B44F870FC2DA172C5367D9E3F96F553] - (.Pas de propriétaire - Pas de description.) -- C:\Program Files\AskBarDis\bar\bin\AskService.exe [464264]
[MD5.367621CB272A8D9E7D910388916D5737] - (.Pas de propriétaire - Pas de description.) -- C:\Program Files\AskBarDis\bar\bin\ASKUpgrade.exe [234888]
[MD5.F832F1505AD8B83474BD9A5B1B985E01] - (.Apple Inc. - Bonjour Service.) -- C:\Program Files\Bonjour\mDNSResponder.exe [345376]
[MD5.3CB0CC8879956C187E87E18634EE5164] - (.TOSHIBA CORPORATION - Service of ConfigFree..) -- C:\Program Files\TOSHIBA\ConfigFree\CFSvcs.exe [40960]
[MD5.C9FFBD6B8EDC46CD3D13E3C6DB914FB7] - (.Matsushita Electric Industrial Co., Ltd. - DVD-RAM Utility Helper Service.) -- C:\WINDOWS\system32\DVDRAMSV.exe [110592]
[MD5.77AC10DB097DFD0CD3071465B644D0AB] - (.Sun Microsystems, Inc. - Java(TM) Quick Starter Service.) -- C:\Program Files\Java\jre6\bin\jqs.exe [153376]
[MD5.8EF654045E518AC00E52E7A1E2D3AD70] - (.Canon Inc. - Canon Camera Access Library 8.) -- C:\Program Files\Canon\CAL\CALMAIN.exe [96370]
[MD5.EC243D433820F2A1805E1290C2E8573C] - (.Pas de propriétaire - Pas de description.) -- C:\WINDOWS\Wnefui.exe [198144]
[MD5.8A1CA72A90090509D98220E921BD6415] - (.ATI Technologies, Inc. - ATI Desktop Control Panel.) -- C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe [344064]
[MD5.C2EDE68251407CCACABF5E48028626BD] - (.Agere Systems - LtMoh MFC Application.) -- C:\Program Files\ltmoh\Ltmoh.exe [184320]
[MD5.B2ED4020EE2A9446649CE6B0A918C91C] - (.Agere Systems - SoftModem Messaging Applet.) -- C:\WINDOWS\AGRSMMSG.exe [88358]
[MD5.FC1EBDD2C46D0D8B5763BF776ABA2E61] - (.TOSHIBA Corporation - TOSHIBA Virtual Sound Taskbar Module.) -- C:\Program Files\TOSHIBA\Tvs\TvsTray.exe [73728]
[MD5.08835AC90C7A02F55A0D0B1D0397ACAE] - (.COMPAL ELECTRONIC INC. - TOSHIBA HotKey Utility.) -- C:\Program Files\TOSHIBA\E-KEY\CeEKey.exe [671744]
[MD5.8EBBF7E508EC363BD6933809D17A43A7] - (.Alps Electric Co., Ltd. - Alps Pointing-device Driver.) -- C:\Program Files\Apoint2K\Apoint.exe [196608]
[MD5.ECE72DB438B67C5B5504C583B2B04E1B] - (.COMPAL ELECTRONIC INC. - TPTray Application.) -- C:\Program Files\TOSHIBA\TouchPad\TPTray.exe [53248]
[MD5.7109F1B929FD3D3ED73B0A77E5D7B153] - (.TOSHIBA CORPORATION - ConfigFree(TM) Tray.) -- C:\Program Files\TOSHIBA\ConfigFree\NDSTray.exe [962560]
[MD5.FD02F46A78C30F6CFF37C7FE37A16CC5] - (.TOSHIBA - TOSHIBA Zooming Utility Hotkey Hook.) -- C:\WINDOWS\system32\ZoomingHook.exe [24576]
[MD5.3C2D6A88715F7426102B2AC2B1F9CBCB] - (.Sonic Solutions - Drive Letter Access Component.) -- C:\WINDOWS\System32\DLA\DLACTRLW.EXE [122940]
[MD5.212C55204E9D1120C4A00546C202B396] - (.TOSHIBA - PadTouch Main.) -- C:\Program Files\TOSHIBA\Touch and Launch\PadExe.exe [1077322]
[MD5.81905148A21D919000778F8539F7B600] - (.TOSHIBA Corporation - Pas de description.) -- C:\WINDOWS\system32\TPSMain.exe [266240]
[MD5.D111A34A969377A8679C114090608B95] - (.TOSHIBA Corporation - SmoothView.) -- C:\Program Files\TOSHIBA\Utilitaire de zoom TOSHIBA\SmoothView.exe [118784]
[MD5.03E0CDD5CCF362593EA52B0151750D0A] - (.Logitech Inc. - Logitech Communications Manager.) -- C:\Program Files\Fichiers communs\Logitech\LComMgr\Communications_Helper.exe [497200]
[MD5.6C645D7DF2462697BC7A086E328607D5] - (.Pas de propriétaire - Pas de description.) -- C:\Program Files\Logitech\QuickCam10\QuickCam10.exe [614960]
[MD5.4ADA227EC4E1BBAD144EAABF02221853] - (.Genie-soft - Genie Backup Agent.) -- C:\Program Files\LaCie\Genie Backup Assistant\GBMAgent.exe [189056]
[MD5.CCA1B81492B40890E44B2B20A780EE1F] - (.Alps Electric Co., Ltd. - Alps Pointing-device Driver for Windows NT/.) -- C:\Program Files\Apoint2K\Apntex.exe [45056]
[MD5.38AE7A942FC3FAB1C6A27EB65DE8F827] - (.AVAST Software - avast! Antivirus.) -- C:\PROGRA~1\ALWILS~1\Avast5\avastUI.exe [2837864]
[MD5.2DFCB2393528446AEB9FB861A8FC39AB] - (.Apple Inc. - iTunesHelper.) -- C:\Program Files\iTunes\iTunesHelper.exe [421160]
[MD5.FEBC1591E5C0DC87EF9CF3D657B65FC2] - (.TOSHIBA - CD/DVD Drive Acoustic Silencer.) -- C:\Program Files\TOSHIBA\TOSCDSPD\toscdspd.exe [65536]
[MD5.390679F7A217A5E73D756276C40AE887] - (.Safer-Networking Ltd. - System settings protector.) -- C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe [2260480]
[MD5.94782C50F682CCC02C1FF4360976A5C8] - (.Logitech - Logitech Desktop Messenger.) -- C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe [36864]
[MD5.1047FAB7E9BFAC6D4E40C4E52CA9B170] - (.TOSHIBA Corporation - Pas de description.) -- C:\WINDOWS\system32\TPSBattM.exe [40960]
[MD5.5648152AD2CCAB0265EAB9711755F484] - (.Matsushita Electric Industrial Co., Ltd. - CD Burning of Windows XP disabling tool for.) -- C:\WINDOWS\system32\RAMASST.exe [155648]
[MD5.F63465BBCE7059EA281ECAFF7590E1E8] - (.Logitech Inc. - LVCom Server.) -- C:\Program Files\Fichiers communs\Logitech\LComMgr\LVComSX.exe [243248]
[MD5.F9A1CF5B5B2E9E17A2DDEB198337F97C] - (.Logitech Inc. - Logitech Camera Control Interface.) -- C:\Program Files\Logitech\QuickCam10\COCIManager.exe [166448]
[MD5.0CA8C2E721617AA2F923A8151C96FB33] - (.Apple Inc. - iPodService Module (32-bit).) -- C:\Program Files\iPod\bin\iPodService.exe [820008]
[MD5.0E20A3213ED010FC4997D1EF48082ABC] - (.Mozilla Corporation - Firefox.) -- C:\Program Files\Mozilla Firefox\firefox.exe [912344]
[MD5.BA9A09CF1B9503C363617F3748F6D791] - (.Mozilla Corporation - Plugin Container for Firefox.) -- C:\Program Files\Mozilla Firefox\plugin-container.exe [16856]
[MD5.806A8E35707BEA615B209001E544F0F0] - (.Nicolas Coolman - Diagnostic Tool.) -- C:\Program Files\ZHPDiag\ZHPDiag.exe [620544]
---\\ Mozilla Firefox, Plugins,Demarrage,Recherche,Extensions (P2,M0,M1,M2)
P2 - FPN:Firefox Plugin Navigator . (.Sun Microsystems, Inc. - NPRuntime Script Plug-in Library for Java(TM) Deploy.) -- C:\Program Files\Mozilla Firefox\Plugins\npdeploytk.dll
P2 - FPN:Firefox Plugin Navigator . (.mozilla.org - Default Plug-in.) -- C:\Program Files\Mozilla Firefox\Plugins\npnul32.dll
P2 - FPN:Firefox Plugin Navigator . (.Microsoft Corporation - Office Plugin for Netscape Navigator.) -- C:\Program Files\Mozilla Firefox\Plugins\NPOFFICE.DLL
P2 - FPN:Firefox Plugin Navigator . (.Apple Inc. - The QuickTime Plugin allows you to view a wide variety of multimedia c.) -- C:\Program Files\Mozilla Firefox\Plugins\npqtplugin.dll
P2 - FPN:Firefox Plugin Navigator . (.Apple Inc. - The QuickTime Plugin allows you to view a wide variety of multimedia c.) -- C:\Program Files\Mozilla Firefox\Plugins\npqtplugin2.dll
P2 - FPN:Firefox Plugin Navigator . (.Apple Inc. - The QuickTime Plugin allows you to view a wide variety of multimedia c.) -- C:\Program Files\Mozilla Firefox\Plugins\npqtplugin3.dll
P2 - FPN:Firefox Plugin Navigator . (.Apple Inc. - The QuickTime Plugin allows you to view a wide variety of multimedia c.) -- C:\Program Files\Mozilla Firefox\Plugins\npqtplugin4.dll
P2 - FPN:Firefox Plugin Navigator . (.Apple Inc. - The QuickTime Plugin allows you to view a wide variety of multimedia c.) -- C:\Program Files\Mozilla Firefox\Plugins\npqtplugin5.dll
P2 - FPN:Firefox Plugin Navigator . (.Apple Inc. - The QuickTime Plugin allows you to view a wide variety of multimedia c.) -- C:\Program Files\Mozilla Firefox\Plugins\npqtplugin6.dll
P2 - FPN:Firefox Plugin Navigator . (.Apple Inc. - The QuickTime Plugin allows you to view a wide variety of multimedia c.) -- C:\Program Files\Mozilla Firefox\Plugins\npqtplugin7.dll
P2 - FPN: [HKLM] [@adobe.com/FlashPlayer] - (.Pas de propriétaire - Pas de description.) -- C:\WINDOWS\system32\Macromed\Flash\NPSWF32.dll
P2 - FPN: [HKLM] [@Apple.com/iTunes,version=1.0] - (.Pas de propriétaire - Pas de description.) -- C:\Program Files\iTunes\Mozilla Plugins\npitunes.dll
P2 - FPN: [HKLM] [@microsoft.com/WLPG,version=14.0.8081.0709] - (.Microsoft Corporation - NPWLPG.) -- C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll
P2 - FPN: [HKLM] [@microsoft.com/WPF,version=3.5] - (.Microsoft Corporation - Windows Presentation Foundation (WPF) plug-in for Mozilla browsers.) -- c:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll
P2 - FPN: [HKCU] [@adobe.com/Acrobat,version=5.1] - (.Adobe Systems Inc. - Adobe Acrobat Plug-In Version 5.10 for Netscape.) -- C:\Program Files\Adobe\Acrobat 5.0\Reader\Browser\nppdf32.dll
M0 - MFSP: prefs.js [Natalia - 84pz7jj9.default] google.ca
M2 - MFEP: prefs.js [Natalia - 84pz7jj9.default\en-US@dictionaries.addons.mozilla.org] [] United States English Spellchecker v5.0.1 (.Giuliano Masseroni.)
M2 - MFEP: prefs.js [Natalia - 84pz7jj9.default\{ba14329e-9550-4989-b3f2-9732e92d17cc}] [] Vuze Remote Toolbar v2.7.2.0 (.Conduit Ltd..)
---\\ Internet Explorer, Démarrage,Recherche,URSearchHook (R0,R1,R3)
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.google.ca/?gws_rd=ssl
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.msn.com/fr-fr/?ocid=iehp
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = https://www.msn.com/fr-fr/?ocid=iehp
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Extensions Off Page = about:NoAdd-ons
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Security Risk Page = about:SecurityRisk
R1 - HKCU\Software\Microsoft\Internet Explorer\Search,SearchAssistant = https://www.bing.com/?toHttps=1&redig=8F3F334EA60E4B1CB4D040DCFE393A89{SUB_RFC1766}/srchasst/srchasst.htm
R1 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant = https://www.bing.com/?toHttps=1&redig=8F3F334EA60E4B1CB4D040DCFE393A89{SUB_RFC1766}/srchasst/srchasst.htm
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyEnable = 0
R3 - URLSearchHook: Microsoft Url Search Hook - {CFBFAE00-17A6-11D0-99CB-00C04FD64497} . (.Microsoft Corporation - Internet Explorer.) (8.00.6001.18812 (longhorn_ie8_gdr.090717-2100)) -- C:\WINDOWS\system32\ieframe.dll
R3 - URLSearchHook: Vuze Remote Toolbar - {ba14329e-9550-4989-b3f2-9732e92d17cc} . (.Conduit Ltd. - Conduit Toolbar.) (5, 5, 0, 10) -- C:\Program Files\Vuze_Remote\tbVuze.dll
---\\ Modification d'une valeur Ini (Changed inifile value, mapped to Registry) (F2)
F2 - REG:system.ini: UserInit=C:\WINDOWS\system32\userinit.exe,
F2 - REG:system.ini: VMApplet=rundll32 shell32,Control_RunDLL "sysdm.cpl"
---\\ Browser Helper Objects de navigateur (O2)
O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} . (.Pas de propriétaire - AcroIEHelper Module.) -- C:\Program Files\Adobe\Acrobat 5.0\Reader\ActiveX\AcroIEHelper.ocx
O2 - BHO: AskBar BHO - {201f27d4-3704-41d6-89c1-aa35e39143ed} . (.Ask.com - Ask.com Toolbar.) -- C:\Program Files\AskBarDis\bar\bin\askBar.dll
O2 - BHO: Spybot-S&D IE Protection - {53707962-6F74-2D53-2644-206D7942484F} . (.Safer Networking Limited - SBSD IE Protection.) -- C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O2 - BHO: (no name) - {5C255C8A-E604-49b4-9D64-90988571CECB} Clé orpheline
O2 - BHO: DriveLetterAccess - {5CA3D70E-1895-11CF-8E15-001234567890} . (.Sonic Solutions - Drive Letter Access Component.) -- C:\WINDOWS\System32\DLA\DLASHX_W.DLL
O2 - BHO: Search Helper - {6EBF7485-159F-4bff-A14F-B9E3AAC4465B} . (.Microsoft Corporation - Search Helper for Internet Explorer.) -- C:\Program Files\Microsoft\Search Enhancement Pack\Search Helper\SEPsearchhelperie.dll
O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} . (.Microsoft Corporation - WindowsLiveLogin.dll.) -- C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Vuze Remote Toolbar - {ba14329e-9550-4989-b3f2-9732e92d17cc} . (.Conduit Ltd. - Conduit Toolbar.) -- C:\Program Files\Vuze_Remote\tbVuze.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} . (.Sun Microsystems, Inc. - Java(TM) Platform SE binary.) -- C:\Program Files\Java\jre6\bin\jp2ssv.dll
O2 - BHO: Windows Live Toolbar Helper - {E15A8DC0-8516-42A1-81EA-DC94EC1ACF10} . (.Microsoft Corporation - Windows Live Toolbar Core.) -- C:\Program Files\Windows Live\Toolbar\wltcore.dll
O2 - BHO: JQSIEStartDetectorImpl - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} . (.Sun Microsystems, Inc. - Java(TM) Quick Starter binary.) -- C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll
---\\ Internet Explorer Toolbars (O3)
O3 - Toolbar: &Windows Live Toolbar - {21FA44EF-376D-4D53-9B0F-8A89D3229068} . (.Microsoft Corporation - Windows Live Toolbar Core.) -- C:\Program Files\Windows Live\Toolbar\wltcore.dll
O3 - Toolbar: Ask Toolbar - {3041d03e-fd4b-44e0-b742-2d9b88305f98} . (.Ask.com - Ask.com Toolbar.) -- C:\Program Files\AskBarDis\bar\bin\askBar.dll
O3 - Toolbar: Vuze Remote Toolbar - {ba14329e-9550-4989-b3f2-9732e92d17cc} . (.Conduit Ltd. - Conduit Toolbar.) -- C:\Program Files\Vuze_Remote\tbVuze.dll
---\\ Applications démarrées par registre & par dossier (O4)
O4 - HKLM\..\Run: [ATIPTA] . (.ATI Technologies, Inc. - ATI Desktop Control Panel.) -- C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe
O4 - HKLM\..\Run: [LtMoh] . (.Agere Systems - LtMoh MFC Application.) -- C:\Program Files\ltmoh\Ltmoh.exe
O4 - HKLM\..\Run: [AGRSMMSG] . (.Agere Systems - SoftModem Messaging Applet.) -- C:\Windows\AGRSMMSG.exe
O4 - HKLM\..\Run: [Tvs] . (.TOSHIBA Corporation - TOSHIBA Virtual Sound Taskbar Module.) -- C:\Program Files\TOSHIBA\Tvs\TvsTray.exe
O4 - HKLM\..\Run: [CeEKEY] . (.COMPAL ELECTRONIC INC. - TOSHIBA HotKey Utility.) -- C:\Program Files\TOSHIBA\E-KEY\CeEKey.exe
O4 - HKLM\..\Run: [Apoint] . (.Alps Electric Co., Ltd. - Alps Pointing-device Driver.) -- C:\Program Files\Apoint2K\Apoint.exe
O4 - HKLM\..\Run: [TPNF] . (.COMPAL ELECTRONIC INC. - TPTray Application.) -- C:\Program Files\TOSHIBA\TouchPad\TPTray.exe
O4 - HKLM\..\Run: [NDSTray.exe] NDSTray.exe
O4 - HKLM\..\Run: [Zooming] . (.TOSHIBA - TOSHIBA Zooming Utility Hotkey Hook.) -- C:\Windows\System32\ZoomingHook.exe
O4 - HKLM\..\Run: [HWSetup] . (.TOSHIBA CO.,LTD. - HWSetup.) -- C:\Program Files\TOSHIBA\TOSHIBA Applet\HWSetup.exe
O4 - HKLM\..\Run: [DLA] . (.Sonic Solutions - Drive Letter Access Component.) -- C:\WINDOWS\System32\DLA\DLACTRLW.exe
O4 - HKLM\..\Run: [PadTouch] . (.TOSHIBA - PadTouch Main.) -- C:\Program Files\TOSHIBA\Touch and Launch\Padexe.exe
O4 - HKLM\..\Run: [SVPWUTIL] . (.TOSHIBA - SVPWUTIL Application.) -- C:\Program Files\Toshiba\Windows Utilities\SVPWUTIL.exe
O4 - HKLM\..\Run: [TPSMain] . (.TOSHIBA Corporation - Pas de description.) -- C:\Windows\System32\TPSMain.exe
O4 - HKLM\..\Run: [SmoothView] . (.TOSHIBA Corporation - SmoothView.) -- C:\Program Files\TOSHIBA\Utilitaire de zoom TOSHIBA\SmoothView.exe
O4 - HKLM\..\Run: [LogitechCommunicationsManager] . (.Logitech Inc. - Logitech Communications Manager.) -- C:\Program Files\Fichiers communs\Logitech\LComMgr\Communications_Helper.exe
O4 - HKLM\..\Run: [LogitechQuickCamRibbon] . (.Pas de propriétaire - Pas de description.) -- C:\Program Files\Logitech\QuickCam10\QuickCam10.exe
O4 - HKLM\..\Run: [AppleSyncNotifier] . (.Apple Inc. - AppleSyncNotifier.) -- C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleSyncNotifier.exe
O4 - HKLM\..\Run: [GBMLite8AgentLaCie] . (.Genie-soft - Genie Backup Agent.) -- C:\Program Files\LaCie\Genie Backup Assistant\GBMAgent.exe
O4 - HKLM\..\Run: [SunJavaUpdateSched] . (.Sun Microsystems, Inc. - Java(TM) Update Scheduler.) -- C:\Program Files\Fichiers communs\Java\Java Update\jusched.exe
O4 - HKLM\..\Run: [avast5] . (.AVAST Software - avast! Antivirus.) -- C:\PROGRA~1\ALWILS~1\Avast5\avastUI.exe
O4 - HKLM\..\Run: [QuickTime Task] . (.Apple Inc. - QuickTime Task.) -- C:\Program Files\QuickTime\qttask.exe
O4 - HKLM\..\Run: [iTunesHelper] . (.Apple Inc. - iTunesHelper.) -- C:\Program Files\iTunes\iTunesHelper.exe
O4 - HKCU\..\Run: [CTFMON.EXE] . (.Microsoft Corporation - CTF Loader.) -- C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [TOSCDSPD] . (.TOSHIBA - CD/DVD Drive Acoustic Silencer.) -- C:\Program Files\TOSHIBA\TOSCDSPD\toscdspd.exe
O4 - HKCU\..\Run: [SpybotSD TeaTimer] . (.Safer-Networking Ltd. - System settings protector.) -- C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe
O4 - HKCU\..\Run: [LDM] . (.Logitech - Logitech Desktop Messenger.) -- C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe
O4 - HKCU\..\Run: [GBMLite8AgentLaCie] . (.Genie-soft - Genie Backup Agent.) -- C:\Program Files\LaCie\Genie Backup Assistant\GBMAgent.exe
O4 - HKCU\..\Run: [JP595IR86O] . (.Pas de propriétaire - Pas de description.) -- C:\DOCUME~1\Natalia\LOCALS~1\Temp\Wln.exe
O4 - HKCU\..\Run: [iobin700release.exe] . (.It Systems - Covering Software.) -- C:\Documents and Settings\Natalia\Application Data\A51AB2C36C73CD0D5E947E97B4FE65CB\iobin700release.exe
O4 - HKCU\..\Run: [H3O8CABBPI] . (.Pas de propriétaire - Pas de description.) -- C:\WINDOWS\Wnefui.exe
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] . (.Microsoft Corporation - CTF Loader.) -- C:\WINDOWS\system32\CTFMON.exe
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] . (.Microsoft Corporation - CTF Loader.) -- C:\WINDOWS\system32\CTFMON.exe
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] . (.Microsoft Corporation - CTF Loader.) -- C:\WINDOWS\system32\CTFMON.exe
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] . (.Microsoft Corporation - CTF Loader.) -- C:\WINDOWS\system32\CTFMON.exe
O4 - HKUS\S-1-5-21-1260407420-2676463331-1252240880-1006\..\Run: [CTFMON.EXE] . (.Microsoft Corporation - CTF Loader.) -- C:\WINDOWS\system32\ctfmon.exe
O4 - HKUS\S-1-5-21-1260407420-2676463331-1252240880-1006\..\Run: [TOSCDSPD] . (.TOSHIBA - CD/DVD Drive Acoustic Silencer.) -- C:\Program Files\TOSHIBA\TOSCDSPD\toscdspd.exe
O4 - HKUS\S-1-5-21-1260407420-2676463331-1252240880-1006\..\Run: [SpybotSD TeaTimer] . (.Safer-Networking Ltd. - System settings protector.) -- C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe
O4 - HKUS\S-1-5-21-1260407420-2676463331-1252240880-1006\..\Run: [LDM] . (.Logitech - Logitech Desktop Messenger.) -- C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe
O4 - HKUS\S-1-5-21-1260407420-2676463331-1252240880-1006\..\Run: [GBMLite8AgentLaCie] . (.Genie-soft - Genie Backup Agent.) -- C:\Program Files\LaCie\Genie Backup Assistant\GBMAgent.exe
O4 - HKUS\S-1-5-21-1260407420-2676463331-1252240880-1006\..\Run: [JP595IR86O] . (.Pas de propriétaire - Pas de description.) -- C:\DOCUME~1\Natalia\LOCALS~1\Temp\Wln.exe
O4 - HKUS\S-1-5-21-1260407420-2676463331-1252240880-1006\..\Run: [iobin700release.exe] . (.It Systems - Covering Software.) -- C:\Documents and Settings\Natalia\Application Data\A51AB2C36C73CD0D5E947E97B4FE65CB\iobin700release.exe
O4 - HKUS\S-1-5-21-1260407420-2676463331-1252240880-1006\..\Run: [H3O8CABBPI] . (.Pas de propriétaire - Pas de description.) -- C:\WINDOWS\Wnefui.exe
O4 - Global Startup: C:\Documents And Settings\All Users\Menu Démarrer\Programmes\Démarrage\Lancement rapide de Microsoft Office OneNote 2003.lnk . (.Microsoft Corporation.) -- C:\Program Files\Microsoft Office\OFFICE11\ONENOTEM.EXE
O4 - Global Startup: C:\Documents And Settings\All Users\Menu Démarrer\Programmes\Démarrage\Logitech Desktop Messenger.lnk . (.Logitech.) -- C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LDMConf.exe
O4 - Global Startup: C:\Documents And Settings\All Users\Menu Démarrer\Programmes\Démarrage\RAMASST.lnk . (.Matsushita Electric Industrial Co., Ltd..) -- C:\WINDOWS\system32\RAMASST.exe
O4 - Global Startup: C:\Documents And Settings\Natalia\Menu Démarrer\Programmes\Démarrage\Antimalware Doctor.lnk . (.It Systems.) -- C:\Documents and Settings\Natalia\Application Data\A51AB2C36C73CD0D5E947E97B4FE65CB\iobin700release.exe
---\\ Autres liens utilisateurs (O4)
O4 - Global Startup: C:\Documents And Settings\All Users\Menu Démarrer\Programmes\Acrobat Reader 5.1.lnk . (.Adobe Systems Incorporated.) -- C:\Program Files\Adobe\Acrobat 5.0\Reader\AcroRd32.exe
O4 - Global Startup: C:\Documents And Settings\All Users\Menu Démarrer\Programmes\Apple Software Update.lnk . (.Pas de propriétaire.) -- C:\WINDOWS\Installer\{C41300B9-185D-475E-BFEC-39EF732F19B1}\AppleSoftwareUpdateIco.exe
O4 - Global Startup: C:\Documents And Settings\All Users\Menu Démarrer\Programmes\Inscription de Toshiba.lnk . (.Microsoft Corporation.) -- C:\WINDOWS\system32\oobe\msoobe.exe
O4 - Global Startup: C:\Documents And Settings\All Users\Menu Démarrer\Programmes\Lisez Moi.lnk . (.Pas de propriétaire.) -- C:\Lisez Moi.htm
O4 - Global Startup: C:\Documents And Settings\All Users\Menu Démarrer\Programmes\MSN.lnk . (.Microsoft Corporation.) -- C:\Program Files\MSN\MSNCoreFiles\Install\msnsusii.exe
O4 - Global Startup: C:\Documents And Settings\All Users\Menu Démarrer\Programmes\Vuze.lnk . (.Vuze Inc..) -- C:\Program Files\Vuze\Azureus.exe
O4 - Global Startup: C:\Documents And Settings\All Users\Menu Démarrer\Programmes\Windows Messenger.lnk . (.Microsoft Corporation.) -- C:\Program Files\Messenger\msmsgs.exe
O4 - Global Startup: C:\Documents And Settings\All Users\Menu Démarrer\Programmes\Windows Movie Maker.lnk . (.Microsoft Corporation.) -- C:\Program Files\Movie Maker\moviemk.exe
O4 - Global Startup: C:\Documents And Settings\Natalia\Menu Démarrer\Programmes\Assistance à distance.lnk . (.Microsoft Corporation.) -- C:\WINDOWS\system32\rcimlby.exe
O4 - Global Startup: C:\Documents And Settings\Natalia\Menu Démarrer\Programmes\Internet Explorer.lnk . (.Microsoft Corporation.) -- C:\Program Files\Internet Explorer\iexplore.exe
O4 - Global Startup: C:\Documents And Settings\Natalia\Menu Démarrer\Programmes\Outlook Express.lnk . (.Microsoft Corporation.) -- C:\Program Files\Outlook Express\msimn.exe
O4 - Global Startup: C:\Documents And Settings\Natalia\Menu Démarrer\Programmes\Windows Media Player.lnk . (.Microsoft Corporation.) -- C:\Program Files\Windows Media Player\wmplayer.exe
---\\ Lignes supplémentaires dans le menu contextuel d'Internet Explorer (O8)
O8 - Extra context menu item: E&xporter vers Microsoft Excel . (.Microsoft Corporation - Microsoft Office Excel.) -- C:\PROGRA~1\MICROS~2\OFFICE11\EXCEL.exe
---\\ Boutons situés sur la barre d'outils principale d'Internet Explorer (O9)
O9 - Extra button: Recherche - {92780B25-18CC-41C8-B9BE-3C9C571A8263} . (.Pas de propriétaire - Pas de description.) -- C:\PROGRA~1\MICROS~2\OFFICE11\REFBARH.ICO
O9 - Extra 'Tools' menuitem: Spybot - Search & Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} . (.not file.) - (.not file.)
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} . (.not file.) - (.not file.)
O9 - Extra button: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} . (.Microsoft Corporation - Windows Messenger.) -- C:\Program Files\Messenger\msmsgs.exe
---\\ Winsock hijacker (Layered Service Provider) (O10)
O10 - WLSP:\000000000001\Winsock LSP File . (.Microsoft Corporation - Fournisseur de service Sockets 2.0 de Microsoft Windows.) -- C:\WINDOWS\system32\mswsock.dll
O10 - WLSP:\000000000002\Winsock LSP File . (.Microsoft Corporation - LDAP RnR Provider DLL.) -- C:\WINDOWS\system32\winrnr.dll
O10 - WLSP:\000000000003\Winsock LSP File . (.Microsoft Corporation - Fournisseur de service Sockets 2.0 de Microsoft Windows.) -- C:\WINDOWS\system32\mswsock.dll
O10 - WLSP:\000000000004\Winsock LSP File . (.Apple Inc. - Bonjour Namespace Provider.) -- C:\Program Files\Bonjour\mdnsNSP.dll
---\\ Piratage de l'Option 'Rétablir les paramètres Web' (O14)
O14 - IERESET.INF: START_PAGE_URL=START_PAGE_URL=http://www.microsoft.com/isapi/redir.dll?prd=ie&pver=6&ar=msnhome
---\\ Objets ActiveX (Downloaded Program Files)(O16)
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab
---\\ Modification Domaine/Adresses DNS (O17)
O17 - HKLM\System\CCS\Services\Tcpip\..\{229E9A80-3F62-4CFB-9898-411C10E28864}: NameServer = 4.2.2.1,4.2.2.2
O17 - HKLM\System\CS1\Services\Tcpip\..\{229E9A80-3F62-4CFB-9898-411C10E28864}: NameServer = 4.2.2.1,4.2.2.2
O17 - HKLM\System\CS2\Services\Tcpip\..\{229E9A80-3F62-4CFB-9898-411C10E28864}: NameServer = 4.2.2.1,4.2.2.2
O17 - HKLM\System\CCS\Services\Tcpip\..\{229E9A80-3F62-4CFB-9898-411C10E28864}: DhcpNameServer = 192.168.2.1
O17 - HKLM\System\CS1\Services\Tcpip\..\{229E9A80-3F62-4CFB-9898-411C10E28864}: DhcpNameServer = 192.168.2.1
O17 - HKLM\System\CS2\Services\Tcpip\..\{229E9A80-3F62-4CFB-9898-411C10E28864}: DhcpNameServer = 192.168.2.1
O17 - HKLM\System\CCS\Services\Tcpip\..\{229E9A80-3F62-4CFB-9898-411C10E28864}: DhcpDomain = Belkin
O17 - HKLM\System\CS1\Services\Tcpip\..\{229E9A80-3F62-4CFB-9898-411C10E28864}: DhcpDomain = Belkin
O17 - HKLM\System\CS2\Services\Tcpip\..\{229E9A80-3F62-4CFB-9898-411C10E28864}: DhcpDomain = Belkin
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.2.1
---\\ Protocole additionnel et piratage de protocole (O18)
O18 - Handler: bw+0 - {d8d8f302-2a5d-4112-a8b7-3d7cc98559ef} . (.Logitech - Logitech Desktop Messenger.) -- C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Handler: bw+0s - {d8d8f302-2a5d-4112-a8b7-3d7cc98559ef} . (.Logitech - Logitech Desktop Messenger.) -- C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Handler: bw-0 - {d8d8f302-2a5d-4112-a8b7-3d7cc98559ef} . (.Logitech - Logitech Desktop Messenger.) -- C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Handler: bw-0s - {d8d8f302-2a5d-4112-a8b7-3d7cc98559ef} . (.Logitech - Logitech Desktop Messenger.) -- C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Handler: bw00 - {d8d8f302-2a5d-4112-a8b7-3d7cc98559ef} . (.Logitech - Logitech Desktop Messenger.) -- C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Handler: bw00s - {d8d8f302-2a5d-4112-a8b7-3d7cc98559ef} . (.Logitech - Logitech Desktop Messenger.) -- C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Handler: bw10 - {d8d8f302-2a5d-4112-a8b7-3d7cc98559ef} . (.Logitech - Logitech Desktop Messenger.) -- C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Handler: bw10s - {d8d8f302-2a5d-4112-a8b7-3d7cc98559ef} . (.Logitech - Logitech Desktop Messenger.) -- C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Handler: bw20 - {d8d8f302-2a5d-4112-a8b7-3d7cc98559ef} . (.Logitech - Logitech Desktop Messenger.) -- C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Handler: bw20s - {d8d8f302-2a5d-4112-a8b7-3d7cc98559ef} . (.Logitech - Logitech Desktop Messenger.) -- C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Handler: bw30 - {d8d8f302-2a5d-4112-a8b7-3d7cc98559ef} . (.Logitech - Logitech Desktop Messenger.) -- C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Handler: bw30s - {d8d8f302-2a5d-4112-a8b7-3d7cc98559ef} . (.Logitech - Logitech Desktop Messenger.) -- C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Handler: bw40 - {d8d8f302-2a5d-4112-a8b7-3d7cc98559ef} . (.Logitech - Logitech Desktop Messenger.) -- C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Handler: bw40s - {d8d8f302-2a5d-4112-a8b7-3d7cc98559ef} . (.Logitech - Logitech Desktop Messenger.) -- C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Handler: bw50 - {d8d8f302-2a5d-4112-a8b7-3d7cc98559ef} . (.Logitech - Logitech Desktop Messenger.) -- C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Handler: bw50s - {d8d8f302-2a5d-4112-a8b7-3d7cc98559ef} . (.Logitech - Logitech Desktop Messenger.) -- C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Handler: bw60 - {d8d8f302-2a5d-4112-a8b7-3d7cc98559ef} . (.Logitech - Logitech Desktop Messenger.) -- C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Handler: bw60s - {d8d8f302-2a5d-4112-a8b7-3d7cc98559ef} . (.Logitech - Logitech Desktop Messenger.) -- C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Handler: bw70 - {d8d8f302-2a5d-4112-a8b7-3d7cc98559ef} . (.Logitech - Logitech Desktop Messenger.) -- C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Handler: bw70s - {d8d8f302-2a5d-4112-a8b7-3d7cc98559ef} . (.Logitech - Logitech Desktop Messenger.) -- C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Handler: bw80 - {d8d8f302-2a5d-4112-a8b7-3d7cc98559ef} . (.Logitech - Logitech Desktop Messenger.) -- C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Handler: bw80s - {d8d8f302-2a5d-4112-a8b7-3d7cc98559ef} . (.Logitech - Logitech Desktop Messenger.) -- C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Handler: bw90 - {d8d8f302-2a5d-4112-a8b7-3d7cc98559ef} . (.Logitech - Logitech Desktop Messenger.) -- C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Handler: bw90s - {d8d8f302-2a5d-4112-a8b7-3d7cc98559ef} . (.Logitech - Logitech Desktop Messenger.) -- C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Handler: bwa0 - {d8d8f302-2a5d-4112-a8b7-3d7cc98559ef} . (.Logitech - Logitech Desktop Messenger.) -- C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Handler: bwa0s - {d8d8f302-2a5d-4112-a8b7-3d7cc98559ef} . (.Logitech - Logitech Desktop Messenger.) -- C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Handler: bwb0 - {d8d8f302-2a5d-4112-a8b7-3d7cc98559ef} . (.Logitech - Logitech Desktop Messenger.) -- C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Handler: bwb0s - {d8d8f302-2a5d-4112-a8b7-3d7cc98559ef} . (.Logitech - Logitech Desktop Messenger.) -- C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Handler: bwc0 - {d8d8f302-2a5d-4112-a8b7-3d7cc98559ef} . (.Logitech - Logitech Desktop Messenger.) -- C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Handler: bwc0s - {d8d8f302-2a5d-4112-a8b7-3d7cc98559ef} . (.Logitech - Logitech Desktop Messenger.) -- C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Handler: bwd0 - {d8d8f302-2a5d-4112-a8b7-3d7cc98559ef} . (.Logitech - Logitech Desktop Messenger.) -- C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Handler: bwd0s - {d8d8f302-2a5d-4112-a8b7-3d7cc98559ef} . (.Logitech - Logitech Desktop Messenger.) -- C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Handler: bwe0 - {d8d8f302-2a5d-4112-a8b7-3d7cc98559ef} . (.Logitech - Logitech Desktop Messenger.) -- C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Handler: bwe0s - {d8d8f302-2a5d-4112-a8b7-3d7cc98559ef} . (.Logitech - Logitech Desktop Messenger.) -- C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Handler: bwf0 - {d8d8f302-2a5d-4112-a8b7-3d7cc98559ef} . (.Logitech - Logitech Desktop Messenger.) -- C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Handler: bwf0s - {d8d8f302-2a5d-4112-a8b7-3d7cc98559ef} . (.Logitech - Logitech Desktop Messenger.) -- C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Handler: bwfile-8876480 - {9462A756-7B47-47BC-8C80-C34B9B80B32B} . (.Logitech - Logitech Desktop Messenger.) -- C:\Program Files\Logitech\Desktop Messenger\8876480\Program\GAPlugProtocol-8876480.dll
O18 - Handler: bwg0 - {d8d8f302-2a5d-4112-a8b7-3d7cc98559ef} . (.Logitech - Logitech Desktop Messenger.) -- C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Handler: bwg0s - {d8d8f302-2a5d-4112-a8b7-3d7cc98559ef} . (.Logitech - Logitech Desktop Messenger.) -- C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Handler: bwh0 - {d8d8f302-2a5d-4112-a8b7-3d7cc98559ef} . (.Logitech - Logitech Desktop Messenger.) -- C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Handler: bwh0s - {d8d8f302-2a5d-4112-a8b7-3d7cc98559ef} . (.Logitech - Logitech Desktop Messenger.) -- C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Handler: bwi0 - {d8d8f302-2a5d-4112-a8b7-3d7cc98559ef} . (.Logitech - Logitech Desktop Messenger.) -- C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Handler: bwi0s - {d8d8f302-2a5d-4112-a8b7-3d7cc98559ef} . (.Logitech - Logitech Desktop Messenger.) -- C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Handler: bwj0 - {d8d8f302-2a5d-4112-a8b7-3d7cc98559ef} . (.Logitech - Logitech Desktop Messenger.) -- C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Handler: bwj0s - {d8d8f302-2a5d-4112-a8b7-3d7cc98559ef} . (.Logitech - Logitech Desktop Messenger.) -- C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Handler: bwk0 - {d8d8f302-2a5d-4112-a8b7-3d7cc98559ef} . (.Logitech - Logitech Desktop Messenger.) -- C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Handler: bwk0s - {d8d8f302-2a5d-4112-a8b7-3d7cc98559ef} . (.Logitech - Logitech Desktop Messenger.) -- C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Handler: bwl0 - {d8d8f302-2a5d-4112-a8b7-3d7cc98559ef} . (.Logitech - Logitech Desktop Messenger.) -- C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Handler: bwl0s - {d8d8f302-2a5d-4112-a8b7-3d7cc98559ef} . (.Logitech - Logitech Desktop Messenger.) -- C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Handler: bwm0 - {d8d8f302-2a5d-4112-a8b7-3d7cc98559ef} . (.Logitech - Logitech Desktop Messenger.) -- C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Handler: bwm0s - {d8d8f302-2a5d-4112-a8b7-3d7cc98559ef} . (.Logitech - Logitech Desktop Messenger.) -- C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Handler: bwn0 - {d8d8f302-2a5d-4112-a8b7-3d7cc98559ef} . (.Logitech - Logitech Desktop Messenger.) -- C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Handler: bwn0s - {d8d8f302-2a5d-4112-a8b7-3d7cc98559ef} . (.Logitech - Logitech Desktop Messenger.) -- C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Handler: bwo0 - {d8d8f302-2a5d-4112-a8b7-3d7cc98559ef} . (.Logitech - Logitech Desktop Messenger.) -- C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Handler: bwo0s - {d8d8f302-2a5d-4112-a8b7-3d7cc98559ef} . (.Logitech - Logitech Desktop Messenger.) -- C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Handler: bwp0 - {d8d8f302-2a5d-4112-a8b7-3d7cc98559ef} . (.Logitech - Logitech Desktop Messenger.) -- C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Handler: bwp0s - {d8d8f302-2a5d-4112-a8b7-3d7cc98559ef} . (.Logitech - Logitech Desktop Messenger.) -- C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Handler: bwq0 - {d8d8f302-2a5d-4112-a8b7-3d7cc98559ef} . (.Logitech - Logitech Desktop Messenger.) -- C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Handler: bwq0s - {d8d8f302-2a5d-4112-a8b7-3d7cc98559ef} . (.Logitech - Logitech Desktop Messenger.) -- C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Handler: bwr0 - {d8d8f302-2a5d-4112-a8b7-3d7cc98559ef} . (.Logitech - Logitech Desktop Messenger.) -- C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Handler: bwr0s - {d8d8f302-2a5d-4112-a8b7-3d7cc98559ef} . (.Logitech - Logitech Desktop Messenger.) -- C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Handler: bws0 - {d8d8f302-2a5d-4112-a8b7-3d7cc98559ef} . (.Logitech - Logitech Desktop Messenger.) -- C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Handler: bws0s - {d8d8f302-2a5d-4112-a8b7-3d7cc98559ef} . (.Logitech - Logitech Desktop Messenger.) -- C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Handler: bwt0 - {d8d8f302-2a5d-4112-a8b7-3d7cc98559ef} . (.Logitech - Logitech Desktop Messenger.) -- C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Handler: bwt0s - {d8d8f302-2a5d-4112-a8b7-3d7cc98559ef} . (.Logitech - Logitech Desktop Messenger.) -- C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Handler: bwu0 - {d8d8f302-2a5d-4112-a8b7-3d7cc98559ef} . (.Logitech - Logitech Desktop Messenger.) -- C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Handler: bwu0s - {d8d8f302-2a5d-4112-a8b7-3d7cc98559ef} . (.Logitech - Logitech Desktop Messenger.) -- C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Handler: bwv0 - {d8d8f302-2a5d-4112-a8b7-3d7cc98559ef} . (.Logitech - Logitech Desktop Messenger.) -- C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Handler: bwv0s - {d8d8f302-2a5d-4112-a8b7-3d7cc98559ef} . (.Logitech - Logitech Desktop Messenger.) -- C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Handler: bww0 - {d8d8f302-2a5d-4112-a8b7-3d7cc98559ef} . (.Logitech - Logitech Desktop Messenger.) -- C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Handler: bww0s - {d8d8f302-2a5d-4112-a8b7-3d7cc98559ef} . (.Logitech - Logitech Desktop Messenger.) -- C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Handler: bwx0 - {d8d8f302-2a5d-4112-a8b7-3d7cc98559ef} . (.Logitech - Logitech Desktop Messenger.) -- C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Handler: bwx0s - {d8d8f302-2a5d-4112-a8b7-3d7cc98559ef} . (.Logitech - Logitech Desktop Messenger.) -- C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Handler: bwy0 - {d8d8f302-2a5d-4112-a8b7-3d7cc98559ef} . (.Logitech - Logitech Desktop Messenger.) -- C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Handler: bwy0s - {d8d8f302-2a5d-4112-a8b7-3d7cc98559ef} . (.Logitech - Logitech Desktop Messenger.) -- C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Handler: bwz0 - {d8d8f302-2a5d-4112-a8b7-3d7cc98559ef} . (.Logitech - Logitech Desktop Messenger.) -- C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Handler: bwz0s - {d8d8f302-2a5d-4112-a8b7-3d7cc98559ef} . (.Logitech - Logitech Desktop Messenger.) -- C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Handler: offline-8876480 - {D8D8F302-2A5D-4112-A8B7-3D7CC98559EF} . (.Logitech - Logitech Desktop Messenger.) -- C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} . (.Skype Technologies - Skype for COM API.) -- C:\PROGRA~1\FICHIE~1\Skype\SKYPE4~1.DLL
---\\ Valeur de Registre AppInit_DLLs et sous-clés Winlogon Notify (autorun) (O20)
O20 - Winlogon Notify: AtiExtEvent . (.ATI Technologies Inc. - ATI External Event Utility DLL Module.) -- C:\Windows\System32\Ati2evxx.dll
O20 - Winlogon Notify: crypt32chain . (.Microsoft Corporation - Crypto API32.) -- C:\Windows\System32\crypt32.dll
O20 - Winlogon Notify: cryptnet . (.Microsoft Corporation - Crypto Network Related API.) -- C:\Windows\System32\cryptnet.dll
O20 - Winlogon Notify: cscdll . (.Microsoft Corporation - Agent réseau hors connexion.) -- C:\Windows\System32\cscdll.dll
O20 - Winlogon Notify: ScCertProp . (.Microsoft Corporation - DLL commune de réception des notifications.) -- C:\Windows\System32\wlnotify.dll
O20 - Winlogon Notify: Schedule . (.Microsoft Corporation - DLL commune de réception des notifications.) -- C:\Windows\System32\wlnotify.dll
O20 - Winlogon Notify: sclgntfy . (.Microsoft Corporation - DLL secondaire de notification de service d.) -- C:\Windows\System32\sclgntfy.dll
O20 - Winlogon Notify: SensLogn . (.Microsoft Corporation - DLL commune de réception des notifications.) -- C:\Windows\System32\WlNotify.dll
O20 - Winlogon Notify: termsrv . (.Microsoft Corporation - DLL commune de réception des notifications.) -- C:\Windows\System32\wlnotify.dll
O20 - Winlogon Notify: wlballoon . (.Microsoft Corporation - DLL commune de réception des notifications.) -- C:\Windows\System32\wlnotify.dll
---\\ Clé de Registre autorun ShellServiceObjectDelayLoad (SSO/SSODL) (O21)
O21 - SSODL: PostBootReminder - {7849596a-48ea-486e-8937-a2a3009f31a9} . (.Microsoft Corporation - DLL commune du shell Windows.) -- C:\WINDOWS\system32\SHELL32.dll
O21 - SSODL: CDBurn - {fbeb8a05-beee-4442-804e-409d6c4515e9} . (.Microsoft Corporation - DLL commune du shell Windows.) -- C:\WINDOWS\system32\SHELL32.dll
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} . (.Microsoft Corporation - Web Site Monitor.) -- C:\WINDOWS\system32\webcheck.dll
O21 - SSODL: SysTray - {35CEC8A3-2BE6-11D2-8773-92E220524153} . (.Microsoft Corporation - Objet du service d'environnement Systray.) -- C:\WINDOWS\system32\stobject.dll
---\\ Clé de Registre autorun SharedTaskScheduler (STS) (O22)
O22 - SharedTaskScheduler: (no name) - {8C7461EF-2B13-11d2-BE35-3078302C2030} . (.Microsoft Corporation - Bibliothèque de l'interface utilisateur du.) -- C:\WINDOWS\system32\browseui.dll
---\\ Liste des services NT non Microsoft et non désactivés (O23)
O23 - Service: (ACS) . (.Pas de propriétaire - Pas de description.) - C:\WINDOWS\system32\ACS.exe
O23 - Service: (Apple Mobile Device) . (.Apple Inc. - MobileDeviceService.) - C:\Program Files\Fichiers communs\Apple\Mobile Device Support\AppleMobileDeviceService.exe
O23 - Service: (ASKService) . (.Pas de propriétaire - Pas de description.) - C:\Program Files\AskBarDis\bar\bin\AskService.exe
O23 - Service: (ASKUpgrade) . (.Pas de propriétaire - Pas de description.) - C:\Program Files\AskBarDis\bar\bin\ASKUpgrade.exe
O23 - Service: (Ati HotKey Poller) . (.ATI Technologies Inc. - ATI External Event Utility EXE Module.) - C:\WINDOWS\system32\Ati2evxx.exe
O23 - Service: (avast! Antivirus) . (.AVAST Software - avast! Service.) - C:\Program Files\Alwil Software\Avast5\AvastSvc.exe
O23 - Service: (Bonjour Service) . (.Apple Inc. - Bonjour Service.) - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: (CCALib8) . (.Canon Inc. - Canon Camera Access Library 8.) - C:\Program Files\Canon\CAL\CALMAIN.exe
O23 - Service: (CFSvcs) . (.TOSHIBA CORPORATION - Service of ConfigFree..) - C:\Program Files\TOSHIBA\ConfigFree\CFSvcs.exe
O23 - Service: (DVD-RAM_Service) . (.Matsushita Electric Industrial Co., Ltd. - DVD-RAM Utility Helper Service.) - C:\WINDOWS\system32\DVDRAMSV.exe
O23 - Service: (JavaQuickStarterService) . (.Sun Microsystems, Inc. - Java(TM) Quick Starter Service.) - C:\Program Files\Java\jre6\bin\jqs.exe
O23 - Service: (LVPrcSrv) . (.Logitech Inc. - Logitech LVPrcSrv Module..) - c:\program files\fichiers communs\logitech\lvmvfm\LVPrcSrv.exe
O23 - Service: (LVSrvLauncher) . (.Logitech Inc. - Service Launcher.) - C:\Program Files\Fichiers communs\Logitech\SrvLnch\SrvLnch.exe
---\\ Enumération Active Desktop & MHTML Editor (O24)
O24 - Default MHTML Editor: Last - .(.Pas de propriétaire - Pas de description.) - "C:\Program Files\Microsoft Office\OFFICE11\WINWORD.exe (.not file.)
---\\ Tâches planifiées en automatique (O39)
O39 - APT:Automatic Planified Task - C:\WINDOWS\Tasks\Dzwue.job
O39 - APT:Automatic Planified Task - C:\WINDOWS\Tasks\Ihhfw.job
O39 - APT:Automatic Planified Task - C:\WINDOWS\Tasks\TQQJADD.job
O39 - APT:Automatic Planified Task - C:\WINDOWS\Tasks\ZDJOMGA.job
O39 - APT:Automatic Planified Task - C:\WINDOWS\Tasks\{22116563-108C-42c0-A7CE-60161B75E508}.job
O39 - APT:Automatic Planified Task - C:\WINDOWS\Tasks\{62C40AA6-4406-467a-A5A5-DFDF1B559B7A}.job
---\\ Composants installés (ActiveSetup Installed Components) (O40)
O40 - ASIC: Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608500} . (.Sun Microsystems, Inc. - Java(TM) Platform SE binary.) -- C:\Program Files\Java\jre6\bin\regutils.dll
O40 - ASIC: NetMeeting 3.01 - {44BBA842-CC51-11CF-AAFA-00AA00B6015B} . (.Pas de propriétaire - Pas de description.) -- C:\WINDOWS\INF\msnetmtg.inf
O40 - ASIC: Windows Messenger 4.7 - {5945c046-1e7d-11d1-bc44-00c04fd912be} . (.Pas de propriétaire - Pas de description.) -- C:\WINDOWS\INF\msmsgs.inf
O40 - ASIC: Microsoft Windows Media Player - {6BF52A52-394A-11d3-B153-00C04F79FAA6} . (.Pas de propriétaire - Pas de description.) -- C:\WINDOWS\INF\wmp11.inf
O40 - ASIC: Adobe Flash Player - {D27CDB6E-AE6D-11cf-96B8-444553540000} . (.Adobe Systems, Inc. - Adobe Flash Player 10.0 r12.) -- C:\WINDOWS\system32\Macromed\Flash\Flash10a.ocx
---\\ Pilotes lancés au démarrage (O41)
O41 - Driver: (AFD) . (.Microsoft Corporation - Ancillary Function Driver for WinSock.) - C:\WINDOWS\system32\drivers\afd.sys
O41 - Driver: (Cdrom) . (.Microsoft Corporation - SCSI CD-ROM Driver.) - C:\Windows\System32\DRIVERS\cdrom.sys
O41 - Driver: (DLACDBHM) . (.Sonic Solutions - Shared Driver Component.) - C:\Windows\System32\Drivers\DLACDBHM.sys
O41 - Driver: (DLARTL_N) . (.Sonic Solutions - Shared Driver Component.) - C:\Windows\System32\Drivers\DLARTL_N.sys
O41 - Driver: (i8042prt) . (.Microsoft Corporation - Pilote de port i8042.) - C:\Windows\System32\DRIVERS\i8042prt.sys
O41 - Driver: (Imapi) . (.Microsoft Corporation - IMAPI Kernel Driver.) - C:\Windows\System32\DRIVERS\imapi.sys
O41 - Driver: (intelppm) . (.Microsoft Corporation - Pilote de périphérique processeur.) - C:\Windows\System32\DRIVERS\intelppm.sys
O41 - Driver: (IPSec) . (.Microsoft Corporation - IPSec Driver.) - C:\Windows\System32\DRIVERS\ipsec.sys
O41 - Driver: (Kbdclass) . (.Microsoft Corporation - Pilote de la classe Clavier.) - C:\Windows\System32\DRIVERS\kbdclass.sys
O41 - Driver: (meiudf) . (.Matsushita Electric Industrial Co.,Ltd. - DVD-RAM UDF File System Driver.) - C:\Windows\System32\Drivers\meiudf.sys
O41 - Driver: (Mouclass) . (.Microsoft Corporation - Pilote de la classe Souris.) - C:\Windows\System32\DRIVERS\mouclass.sys
O41 - Driver: (MRxSmb) . (.Microsoft Corporation - Windows NT SMB Minirdr.) - C:\Windows\System32\DRIVERS\mrxsmb.sys
O41 - Driver: (NetBIOS) . (.Microsoft Corporation - NetBIOS interface driver.) - C:\Windows\System32\DRIVERS\netbios.sys
O41 - Driver: (NetBT) . (.Microsoft Corporation - MBT Transport driver.) - C:\Windows\System32\DRIVERS\netbt.sys
O41 - Driver: (RasAcd) . (.Microsoft Corporation - RAS Automatic Connection Driver.) - C:\Windows\System32\DRIVERS\rasacd.sys
O41 - Driver: (Rdbss) . (.Microsoft Corporation - Redirected Drive Buffering SubSystem Driver.) - C:\Windows\System32\DRIVERS\rdbss.sys
O41 - Driver: (RDPCDD) . (.Microsoft Corporation - RDP Miniport.) - C:\Windows\System32\DRIVERS\RDPCDD.sys
O41 - Driver: (redbook) . (.Microsoft Corporation - Pilote de filtre audio Livre rouge.) - C:\Windows\System32\DRIVERS\redbook.sys
O41 - Driver: (SrvcSSIOMngr) . (.COMPAL ELECTRONIC INC. - IoManager Application.) - C:\Windows\System32\Drivers\SSIoMngr.sys
O41 - Driver: (Tcpip) . (.Microsoft Corporation - TCP/IP Protocol Driver.) - C:\Windows\System32\DRIVERS\tcpip.sys
O41 - Driver: (TermDD) . (.Microsoft Corporation - Terminal Server Driver.) - C:\Windows\System32\DRIVERS\termdd.sys
O41 - Driver: (TPwSav) . (.TOSHIBA - IO Driver For TOSHIBA Power Saver.) - C:\Windows\System32\Drivers\TPwSav.sys
O41 - Driver: Carte vidéo VGA. (VgaSave) . (.Microsoft Corporation - VGA/Super VGA Video Driver.) - C:\WINDOWS\system32\drivers\vga.sys
---\\ Logiciels installés (O42)
O42 - Logiciel: ALPS Touch Pad Driver - (.Pas de propriétaire.) [HKLM] -- {9F72EF8B-AEC9-4CA5-B483-143980AFD6FD}
O42 - Logiciel: ATI - Utilitaire de désinstallation du logiciel - (.Pas de propriétaire.) [HKLM] -- All ATI Software
O42 - Logiciel: ATI Display Driver - (.Pas de propriétaire.) [HKLM] -- ATI Display Driver
O42 - Logiciel: Adobe Acrobat 5.0 - (.Adobe Systems, Inc..) [HKLM] -- Adobe Acrobat 5.0
O42 - Logiciel: Adobe Flash Player 10 ActiveX - (.Adobe Systems Incorporated.) [HKLM] -- Adobe Flash Player ActiveX
O42 - Logiciel: Adobe Flash Player 10 Plugin - (.Adobe Systems Incorporated.) [HKLM] -- Adobe Flash Player Plugin
O42 - Logiciel: Antimalware Doctor - (.Pas de propriétaire.) [HKCU] -- Antimalware Doctor
O42 - Logiciel: Apple Application Support - (.Apple Inc..) [HKLM] -- {EE6097DD-05F4-4178-9719-D3170BF098E8}
O42 - Logiciel: Apple Mobile Device Support - (.Apple Inc..) [HKLM] -- {308B6AEA-DE50-4666-996D-0FA461719D6B}
O42 - Logiciel: Apple Software Update - (.Apple Inc..) [HKLM] -- {C41300B9-185D-475E-BFEC-39EF732F19B1}
O42 - Logiciel: Assist TOSHIBA - (.Pas de propriétaire.) [HKLM] -- {12B3A009-A080-4619-9A2A-C6DB151D8D67}
O42 - Logiciel: Assistant de connexion Windows Live - (.Microsoft Corporation.) [HKLM] -- {D3116CC7-24DC-4CA3-9CE1-23FED836E9F2}
O42 - Logiciel: Atheros Client Utility - (.Pas de propriétaire.) [HKLM] -- {71D658CF-4E0D-4DA8-AA67-8C0B6F1C01FE}
O42 - Logiciel: Atheros Wireless LAN MiniPCI card Driver - (.Pas de propriétaire.) [HKLM] -- {05832D65-6EDB-4D32-BA78-BCD0E2B91C02}
O42 - Logiciel: Bonjour - (.Apple Inc..) [HKLM] -- {2A981294-F14C-4F0F-9627-D793270922F8}
O42 - Logiciel: CCleaner (remove only) - (.Piriform.) [HKLM] -- CCleaner
O42 - Logiciel: Canon Camera Access Library - (.Canon Inc..) [HKLM] -- CAL
O42 - Logiciel: Canon Camera Support Core Library - (.Canon Inc..) [HKLM] -- CSCLIB
O42 - Logiciel: Canon G.726 WMP-Decoder - (.Canon Inc..) [HKLM] -- Canon G.726 WMP-Decoder
O42 - Logiciel: Canon MovieEdit Task for ZoomBrowser EX - (.Canon Inc..) [HKLM] -- MovieEditTask
O42 - Logiciel: Canon RAW Image Task for ZoomBrowser EX - (.Canon Inc..) [HKLM] -- RAW Image Task
O42 - Logiciel: Canon Utilities CameraWindow - (.Canon Inc..) [HKLM] -- CameraWindowLauncher
O42 - Logiciel: Canon Utilities CameraWindow DC - (.Canon Inc..) [HKLM] -- CameraWindowDC
O42 - Logiciel: Canon Utilities CameraWindow DC_DV 5 for ZoomBrowser EX - (.Canon Inc..) [HKLM] -- CameraWindowDVC5
O42 - Logiciel: Canon Utilities CameraWindow DC_DV 6 for ZoomBrowser EX - (.Canon Inc..) [HKLM] -- CameraWindowDVC6
O42 - Logiciel: Canon Utilities EOS Utility - (.Canon Inc..) [HKLM] -- EOS Utility
O42 - Logiciel: Canon Utilities MyCamera - (.Canon Inc..) [HKLM] -- MyCamera
O42 - Logiciel: Canon Utilities MyCamera DC - (.Canon Inc..) [HKLM] -- MyCameraDC
O42 - Logiciel: Canon Utilities PhotoStitch - (.Canon Inc..) [HKLM] -- PhotoStitch
O42 - Logiciel: Canon Utilities RemoteCapture Task for ZoomBrowser EX - (.Canon Inc..) [HKLM] -- RemoteCaptureTask
O42 - Logiciel: Canon Utilities ZoomBrowser EX - (.Canon Inc..) [HKLM] -- ZoomBrowser EX
O42 - Logiciel: Canon ZoomBrowser EX Memory Card Utility - (.Canon Inc..) [HKLM] -- ZoomBrowser EX Memory Card Utility
O42 - Logiciel: Free Mp3 Wma Converter V 1.81 - (.Pas de propriétaire.) [HKLM] -- Free Mp3 Wma Converter_is1
O42 - Logiciel: Genie Backup Assistant - (.LaCie.) [HKLM] -- {C9A162C1-031F-4EBF-A3E6-C45F7FCCBB9E}_is1
O42 - Logiciel: Gestion d'énergie TOSHIBA - (.Pas de propriétaire.) [HKLM] -- Power Saver
O42 - Logiciel: Hotfix for Microsoft .NET Framework 3.5 SP1 (KB953595) - (.Microsoft Corporation.) [HKLM] -- {CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9}.KB953595
O42 - Logiciel: Hotfix for Microsoft .NET Framework 3.5 SP1 (KB958484) - (.Microsoft Corporation.) [HKLM] -- {CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9}.KB958484
O42 - Logiciel: Hotfix for Windows Media Format 11 SDK (KB929399) - (.Microsoft Corporation.) [HKLM] -- KB929399
O42 - Logiciel: Hotfix for Windows XP (KB954550-v5) - (.Microsoft Corporation.) [HKLM] -- KB954550-v5
O42 - Logiciel: InterVideo WinDVD Creator 2 - (.InterVideo Inc..) [HKLM] -- {2FCE4FC5-6930-40E7-A4F1-F862207424EF}
O42 - Logiciel: InterVideo WinDVD for TOSHIBA - (.InterVideo Inc..) [HKLM] -- {91810AFC-A4F8-4EBA-A5AA-B198BBC81144}
O42 - Logiciel: IrfanView (remove only) - (.Pas de propriétaire.) [HKLM] -- IrfanView
O42 - Logiciel: Java(TM) 6 Update 18 - (.Sun Microsystems, Inc..) [HKLM] -- {26A24AE4-039D-4CA4-87B4-2F83216018FF}
O42 - Logiciel: Lecteur Windows Media 11 - (.Pas de propriétaire.) [HKLM] -- Windows Media Player
O42 - Logiciel: Logitech Audio Echo Cancellation Component - (.Logitech Inc..) [HKLM] -- {BEF726DD-4037-4214-8C6A-E625C02D2870}
O42 - Logiciel: Logitech Desktop Messenger - (.Logitech, Inc..) [HKLM] -- {900B1197-53F5-4F46-A882-2CFFFE2EEDCB}
O42 - Logiciel: Logitech QuickCam - (.Logitech Inc..) [HKLM] -- {EC42ED6A-751D-45C0-A4F9-8CD00E4690FC}
O42 - Logiciel: Logitech Video Enumerator - (.Logitech Inc..) [HKLM] -- {EA516024-D84D-41F1-814F-83175A6188F2}
O42 - Logiciel: MSVCRT - (.Microsoft.) [HKLM] -- {22B775E7-6C42-4FC5-8E10-9A5E3257BD94}
O42 - Logiciel: MSXML 4.0 SP2 (KB954430) - (.Microsoft Corporation.) [HKLM] -- {86493ADD-824D-4B8E-BD72-8C5DCDC52A71}
O42 - Logiciel: Microsoft .NET Framework 1.1 - (.Microsoft.) [HKLM] -- {CB2F7EDD-9D1F-43C1-90FC-4F52EAE172A1}
O42 - Logiciel: Microsoft .NET Framework 1.1 - (.Pas de propriétaire.) [HKLM] -- Microsoft .NET Framework 1.1 (1033)
O42 - Logiciel: Microsoft .NET Framework 1.1 French Language Pack - (.Microsoft.) [HKLM] -- {9A394342-4A68-4EBA-85A6-55B559F4E700}
O42 - Logiciel: Microsoft .NET Framework 1.1 Hotfix (KB928366) - (.Pas de propriétaire.) [HKLM] -- M928366
O42 - Logiciel: Microsoft .NET Framework 2.0 Service Pack 2 - (.Microsoft Corporation.) [HKLM] -- {C09FB3CD-3D0C-3F2D-899A-6A1D67F2073F}
O42 - Logiciel: Microsoft .NET Framework 3.0 Service Pack 2 - (.Microsoft Corporation.) [HKLM] -- {A3051CD0-2F64-3813-A88D-B8DCCDE8F8C7}
O42 - Logiciel: Microsoft .NET Framework 3.5 SP1 - (.Microsoft Corporation.) [HKLM] -- Microsoft .NET Framework 3.5 SP1
O42 - Logiciel: Microsoft .NET Framework 3.5 SP1 - (.Microsoft Corporation.) [HKLM] -- {CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9}
O42 - Logiciel: Microsoft Choice Guard - (.Microsoft Corporation.) [HKLM] -- {F0E12BBA-AD66-4022-A453-A1C8A0C4D570}
O42 - Logiciel: Microsoft Compression Client Pack 1.0 for Windows XP - (.Microsoft Corporation.) [HKLM] -- MSCompPackV1
O42 - Logiciel: Microsoft Internationalized Domain Names Mitigation APIs - (.Microsoft Corporation.) [HKLM] -- IDNMitigationAPIs
O42 - Logiciel: Microsoft National Language Support Downlevel APIs - (.Microsoft Corporation.) [HKLM] -- NLSDownlevelMapping
O42 - Logiciel: Microsoft Office OneNote 2003 - (.Microsoft Corporation.) [HKLM] -- {91A1040C-6000-11D3-8CFE-0150048383C9}
O42 - Logiciel: Microsoft Office Professional Edition 2003 - (.Microsoft Corporation.) [HKLM] -- {9011040C-6000-11D3-8CFE-0150048383C9}
O42 - Logiciel: Microsoft SQL Server 2005 Compact Edition [ENU] - (.Microsoft Corporation.) [HKLM] -- {F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}
O42 - Logiciel: Microsoft Search Enhancement Pack - (.Microsoft Corporation.) [HKLM] -- {4CBA3D4C-8F51-4D60-B27E-F6B641C571E7}
O42 - Logiciel: Microsoft Sync Framework Runtime Native v1.0 (x86) - (.Microsoft Corporation.) [HKLM] -- {8A74E887-8F0F-4017-AF53-CBA42211AAA5}
O42 - Logiciel: Microsoft Sync Framework Services Native v1.0 (x86) - (.Microsoft Corporation.) [HKLM] -- {BD64AF4A-8C80-4152-AD77-FCDDF05208AB}
O42 - Logiciel: Microsoft User-Mode Driver Framework Feature Pack 1.0 - (.Microsoft Corporation.) [HKLM] -- Wudf01000
O42 - Logiciel: Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 - (.Microsoft Corporation.) [HKLM] -- {1F1C2DFC-2D24-3E06-BCB8-725134ADF989}
O42 - Logiciel: MobileMe Control Panel - (.Apple Inc..) [HKLM] -- {1E5E2F9A-17D3-45CA-8FF0-B0C2927D4B03}
O42 - Logiciel: Mozilla Firefox (3.6.13) - (.Mozilla.) [HKLM] -- Mozilla Firefox (3.6.13)
O42 - Logiciel: Octoshape add-in for Adobe Flash Player - (.Pas de propriétaire.) [HKCU] -- Octoshape add-in for Adobe Flash Player
O42 - Logiciel: Outil de diagnostic PC TOSHIBA - (.Pas de propriétaire.) [HKLM] -- Outil de diagnostic PC
O42 - Logiciel: Panneau de contrôle ATI - (.Pas de propriétaire.) [HKLM] -- {0BEDBD4E-2D34-47B5-9973-57E62B29307C}
O42 - Logiciel: Pilote du DVD-RAM - (.Pas de propriétaire.) [HKLM] -- {9D765FA6-F2BC-40AF-8145-50808F9BDF4E}
O42 - Logiciel: Programme de gestion Camera de Logitech® - (.Pas de propriétaire.) [HKLM] -- QcDrv
O42 - Logiciel: QuickTime - (.Apple Inc..) [HKLM] -- {E7004147-2CCA-431C-AA05-2AB166B9785D}
O
moment de grace
Messages postés
29042
Date d'inscription
samedi 6 décembre 2008
Statut
Contributeur sécurité
Dernière intervention
18 juillet 2013
2 274
19 déc. 2010 à 04:25
19 déc. 2010 à 04:25
Rend toi sur Cjoint : http://www.cijoint.fr/
Clique sur "Parcourir " dans la partie " Joindre un fichier[...] "
Sélectionne le rapport ZHPdiag.txt qui se trouve sur ton bureau
Clique ensuite sur "Cliquez ici pour déposer le fichier " et copie/colle le lien dans ton prochain message
Clique sur "Parcourir " dans la partie " Joindre un fichier[...] "
Sélectionne le rapport ZHPdiag.txt qui se trouve sur ton bureau
Clique ensuite sur "Cliquez ici pour déposer le fichier " et copie/colle le lien dans ton prochain message
moment de grace
Messages postés
29042
Date d'inscription
samedi 6 décembre 2008
Statut
Contributeur sécurité
Dernière intervention
18 juillet 2013
2 274
Modifié par moment de grace le 19/12/2010 à 04:33
Modifié par moment de grace le 19/12/2010 à 04:33
ok
on va t'enlever tout ca
1)
Rends toi sur ce site :
https://www.virustotal.com/gui/
Clique sur parcourir et cherche ce fichier :
C:\WINDOWS\Wnefui.exe
Clique sur Send File.
Un rapport va s'élaborer ligne à ligne.
Attends la fin. Il doit comprendre la taille du fichier envoyé.
Copie le lien de la page de Virus Total dans ta réponse.
Si tu ne trouves pas le fichier alors
Affiche tous les fichiers et dossiers :
Pour cela :
Clique sur démarrer/panneau de configuration/option des dossiers/affichage
Cocher afficher les dossiers cachés
Décoche la case "Masquer les fichiers protégés du système d'exploitation (recommandé)"
Décocher masquer les extensions dont le type est connu
Puis fais «appliquer» pour valider les changements.
Et OK
___________
2)
Téléchargez MalwareByte's Anti-Malware (que tu pourras garder ensuite)
https://www.commentcamarche.net/telecharger/securite/14361-malwarebytes-anti-malware/
. Enregistres le sur le bureau
. Double cliques sur le fichier téléchargé pour lancer le processus d'installation.
. Dans l'onglet "mise à jour", cliques sur le bouton Recherche de mise à jour
. Si le pare-feu demande l'autorisation de se connecter pour malwarebytes, accepte
. Une fois la mise à jour terminé
. Rend-toi dans l'onglet, Recherche
. Sélectionnes Exécuter un examen complet (examen assez long)
. Cliques sur Rechercher
. Le scan démarre.
. A la fin de l'analyse, un message s'affiche : L'examen s'est terminé normalement. Cliquez sur 'Afficher les résultats' pour afficher tous les objets trouvés.
. Cliques sur Ok pour poursuivre.
. Si des malwares ont été détectés, clique sur Afficher les résultats
. Sélectionnes tout (ou laisses cochés) et cliques sur Supprimer la sélection Malwarebytes va détruire les fichiers et clés de registre et en mettre une copie dans la quarantaine.
. Malwarebytes va ouvrir le bloc-notes et y copier le rapport d'analyse.
. Rends toi dans l'onglet rapport/log
. Tu cliques dessus pour l'afficher, une fois affiché
. Tu cliques sur edition en haut du boc notes, et puis sur sélectionner tous
. Tu recliques sur edition et puis sur copier et tu reviens sur le forum et dans ta réponse
. tu cliques droit dans le cadre de la reponse et coller
Si tu as besoin d'aide regarde ces tutoriels :
Aide: https://www.malekal.com/tutoriel-malwarebyte-anti-malware/
http://www.infos-du-net.com/forum/278396-11-tuto-malwarebytes-anti-malware-mbam
_________________
3)
* Télécharge de AD-Remover sur ton Bureau. (Merci à C_XX)
http://www.teamxscript.org/adremoverTelechargement.html
/!\ Déconnecte-toi d'internet et ferme toutes applications en cours /!\
Désactive provisoirement et seulement le temps de l'utilisation de ADremover, la protection en temps réel de ton Antivirus et de tes Antispywares, qui peuvent gêner fortement la procédure de recherche et de nettoyage de l'outil.
- Double-clique sur l'icône Ad-remover située sur ton Bureau.
- Sur la page, clique sur le bouton « NETTOYER »
- Confirme lancement du scan
- Laisse travailler l'outil.
- Poste le rapport qui apparaît à la fin.
(Le rapport est sauvegardé aussi sous C:\Ad-report(Scan/clean).Txt)
(CTRL+A pour tout sélectionner, CTRL+C pour copier et CTRL+V pour coller)
______________
4)
Fais un nouveau rapport ZHPdiag stp
Rend toi sur Cjoint : http://www.cijoint.fr/
Clique sur "Parcourir " dans la partie " Joindre un fichier[...] "
Sélectionne le rapport ZHPdiag.txt qui se trouve sur ton bureau
Clique ensuite sur "Cliquez ici pour déposer le fichier " et copie/colle le lien dans ton prochain message
CONTRIBUTEUR SECURITE
Désinfection = diagnostic + traitement + finalisation
"Restez" jusqu'au bout...merci
on va t'enlever tout ca
1)
Rends toi sur ce site :
https://www.virustotal.com/gui/
Clique sur parcourir et cherche ce fichier :
C:\WINDOWS\Wnefui.exe
Clique sur Send File.
Un rapport va s'élaborer ligne à ligne.
Attends la fin. Il doit comprendre la taille du fichier envoyé.
Copie le lien de la page de Virus Total dans ta réponse.
Si tu ne trouves pas le fichier alors
Affiche tous les fichiers et dossiers :
Pour cela :
Clique sur démarrer/panneau de configuration/option des dossiers/affichage
Cocher afficher les dossiers cachés
Décoche la case "Masquer les fichiers protégés du système d'exploitation (recommandé)"
Décocher masquer les extensions dont le type est connu
Puis fais «appliquer» pour valider les changements.
Et OK
___________
2)
Téléchargez MalwareByte's Anti-Malware (que tu pourras garder ensuite)
https://www.commentcamarche.net/telecharger/securite/14361-malwarebytes-anti-malware/
. Enregistres le sur le bureau
. Double cliques sur le fichier téléchargé pour lancer le processus d'installation.
. Dans l'onglet "mise à jour", cliques sur le bouton Recherche de mise à jour
. Si le pare-feu demande l'autorisation de se connecter pour malwarebytes, accepte
. Une fois la mise à jour terminé
. Rend-toi dans l'onglet, Recherche
. Sélectionnes Exécuter un examen complet (examen assez long)
. Cliques sur Rechercher
. Le scan démarre.
. A la fin de l'analyse, un message s'affiche : L'examen s'est terminé normalement. Cliquez sur 'Afficher les résultats' pour afficher tous les objets trouvés.
. Cliques sur Ok pour poursuivre.
. Si des malwares ont été détectés, clique sur Afficher les résultats
. Sélectionnes tout (ou laisses cochés) et cliques sur Supprimer la sélection Malwarebytes va détruire les fichiers et clés de registre et en mettre une copie dans la quarantaine.
. Malwarebytes va ouvrir le bloc-notes et y copier le rapport d'analyse.
. Rends toi dans l'onglet rapport/log
. Tu cliques dessus pour l'afficher, une fois affiché
. Tu cliques sur edition en haut du boc notes, et puis sur sélectionner tous
. Tu recliques sur edition et puis sur copier et tu reviens sur le forum et dans ta réponse
. tu cliques droit dans le cadre de la reponse et coller
Si tu as besoin d'aide regarde ces tutoriels :
Aide: https://www.malekal.com/tutoriel-malwarebyte-anti-malware/
http://www.infos-du-net.com/forum/278396-11-tuto-malwarebytes-anti-malware-mbam
_________________
3)
* Télécharge de AD-Remover sur ton Bureau. (Merci à C_XX)
http://www.teamxscript.org/adremoverTelechargement.html
/!\ Déconnecte-toi d'internet et ferme toutes applications en cours /!\
Désactive provisoirement et seulement le temps de l'utilisation de ADremover, la protection en temps réel de ton Antivirus et de tes Antispywares, qui peuvent gêner fortement la procédure de recherche et de nettoyage de l'outil.
- Double-clique sur l'icône Ad-remover située sur ton Bureau.
- Sur la page, clique sur le bouton « NETTOYER »
- Confirme lancement du scan
- Laisse travailler l'outil.
- Poste le rapport qui apparaît à la fin.
(Le rapport est sauvegardé aussi sous C:\Ad-report(Scan/clean).Txt)
(CTRL+A pour tout sélectionner, CTRL+C pour copier et CTRL+V pour coller)
______________
4)
Fais un nouveau rapport ZHPdiag stp
Rend toi sur Cjoint : http://www.cijoint.fr/
Clique sur "Parcourir " dans la partie " Joindre un fichier[...] "
Sélectionne le rapport ZHPdiag.txt qui se trouve sur ton bureau
Clique ensuite sur "Cliquez ici pour déposer le fichier " et copie/colle le lien dans ton prochain message
CONTRIBUTEUR SECURITE
Désinfection = diagnostic + traitement + finalisation
"Restez" jusqu'au bout...merci
Ni Firefox ni InternetExplorer peuvent ouvrir virustotal.com
Je cherche sur google, la page et là mais elle ne s'ouvre pas...
Je cherche sur google, la page et là mais elle ne s'ouvre pas...
Malwarebytes' Anti-Malware 1.50
www.malwarebytes.org
Version de la base de données: 5354
Windows 5.1.2600 Service Pack 3
Internet Explorer 8.0.6001.18702
2010-12-19 01:43:41
mbam-log-2010-12-19 (01-43-41).txt
Type d'examen: Examen complet (C:\|)
Elément(s) analysé(s): 212608
Temps écoulé: 1 heure(s), 4 minute(s), 18 seconde(s)
Processus mémoire infecté(s): 1
Module(s) mémoire infecté(s): 0
Clé(s) du Registre infectée(s): 6
Valeur(s) du Registre infectée(s): 3
Elément(s) de données du Registre infecté(s): 1
Dossier(s) infecté(s): 0
Fichier(s) infecté(s): 15
Processus mémoire infecté(s):
c:\WINDOWS\Wnefui.exe (Trojan.FraudPack) -> 3072 -> Unloaded process successfully.
Module(s) mémoire infecté(s):
(Aucun élément nuisible détecté)
Clé(s) du Registre infectée(s):
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\Antimalware Doctor (Trojan.FakeAlert) -> Quarantined and deleted successfully.
HKEY_CURRENT_USER\SOFTWARE\JP595IR86O (Trojan.FakeAlert) -> Quarantined and deleted successfully.
HKEY_CURRENT_USER\SOFTWARE\XML (Trojan.FakeAlert) -> Quarantined and deleted successfully.
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Handle (Malware.Trace) -> Quarantined and deleted successfully.
HKEY_CURRENT_USER\Software\Antimalware Doctor Inc (Rogue.AntimalwareDoctor) -> Quarantined and deleted successfully.
HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\ (Hijack.Zones) -> Quarantined and deleted successfully.
Valeur(s) du Registre infectée(s):
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\H3O8CABBPI (Trojan.FraudPack) -> Value: H3O8CABBPI -> Quarantined and deleted successfully.
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\JP595IR86O (Trojan.FraudPack) -> Value: JP595IR86O -> Quarantined and deleted successfully.
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\iobin700release.exe (Trojan.FakeAlert) -> Value: iobin700release.exe -> Quarantined and deleted successfully.
Elément(s) de données du Registre infecté(s):
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\SHOWALL\CheckedValue (PUM.Hijack.System.Hidden) -> Bad: (0) Good: (1) -> Quarantined and deleted successfully.
Dossier(s) infecté(s):
(Aucun élément nuisible détecté)
Fichier(s) infecté(s):
c:\WINDOWS\Wnefui.exe (Trojan.FraudPack) -> Quarantined and deleted successfully.
c:\Documents and Settings\Natalia\Local Settings\Temp\Wln.exe (Trojan.FraudPack) -> Delete on reboot.
c:\documents and settings\Natalia\application data\a51ab2c36c73cd0d5e947e97b4fe65cb\iobin700release.exe (Trojan.FakeAlert) -> Quarantined and deleted successfully.
c:\documents and settings\Natalia\local settings\Temp\Woy.exe (Trojan.FraudPack) -> Quarantined and deleted successfully.
c:\WINDOWS\Wnefua.exe (Trojan.FraudPack) -> Quarantined and deleted successfully.
c:\WINDOWS\Wnefub.exe (Trojan.FraudPack) -> Quarantined and deleted successfully.
c:\WINDOWS\Wnefuc.exe (Trojan.FraudPack) -> Quarantined and deleted successfully.
c:\WINDOWS\Wnefud.exe (Trojan.FraudPack) -> Quarantined and deleted successfully.
c:\WINDOWS\Wnefue.exe (Trojan.FraudPack) -> Quarantined and deleted successfully.
c:\WINDOWS\Wnefuf.exe (Trojan.FraudPack) -> Quarantined and deleted successfully.
c:\WINDOWS\Wnefug.exe (Trojan.FraudPack) -> Quarantined and deleted successfully.
c:\WINDOWS\Wnefuh.exe (Trojan.FraudPack) -> Quarantined and deleted successfully.
c:\documents and settings\Natalia\menu démarrer\programmes\démarrage\antimalware doctor.lnk (Rogue.AntiMalwareDoctor) -> Quarantined and deleted successfully.
c:\WINDOWS\Tasks\{22116563-108c-42c0-a7ce-60161b75e508}.job (Trojan.Downloader) -> Quarantined and deleted successfully.
c:\WINDOWS\Tasks\{62c40aa6-4406-467a-a5a5-dfdf1b559b7a}.job (Trojan.FakeAlert) -> Quarantined and deleted successfully.
www.malwarebytes.org
Version de la base de données: 5354
Windows 5.1.2600 Service Pack 3
Internet Explorer 8.0.6001.18702
2010-12-19 01:43:41
mbam-log-2010-12-19 (01-43-41).txt
Type d'examen: Examen complet (C:\|)
Elément(s) analysé(s): 212608
Temps écoulé: 1 heure(s), 4 minute(s), 18 seconde(s)
Processus mémoire infecté(s): 1
Module(s) mémoire infecté(s): 0
Clé(s) du Registre infectée(s): 6
Valeur(s) du Registre infectée(s): 3
Elément(s) de données du Registre infecté(s): 1
Dossier(s) infecté(s): 0
Fichier(s) infecté(s): 15
Processus mémoire infecté(s):
c:\WINDOWS\Wnefui.exe (Trojan.FraudPack) -> 3072 -> Unloaded process successfully.
Module(s) mémoire infecté(s):
(Aucun élément nuisible détecté)
Clé(s) du Registre infectée(s):
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\Antimalware Doctor (Trojan.FakeAlert) -> Quarantined and deleted successfully.
HKEY_CURRENT_USER\SOFTWARE\JP595IR86O (Trojan.FakeAlert) -> Quarantined and deleted successfully.
HKEY_CURRENT_USER\SOFTWARE\XML (Trojan.FakeAlert) -> Quarantined and deleted successfully.
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Handle (Malware.Trace) -> Quarantined and deleted successfully.
HKEY_CURRENT_USER\Software\Antimalware Doctor Inc (Rogue.AntimalwareDoctor) -> Quarantined and deleted successfully.
HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\ (Hijack.Zones) -> Quarantined and deleted successfully.
Valeur(s) du Registre infectée(s):
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\H3O8CABBPI (Trojan.FraudPack) -> Value: H3O8CABBPI -> Quarantined and deleted successfully.
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\JP595IR86O (Trojan.FraudPack) -> Value: JP595IR86O -> Quarantined and deleted successfully.
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\iobin700release.exe (Trojan.FakeAlert) -> Value: iobin700release.exe -> Quarantined and deleted successfully.
Elément(s) de données du Registre infecté(s):
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\SHOWALL\CheckedValue (PUM.Hijack.System.Hidden) -> Bad: (0) Good: (1) -> Quarantined and deleted successfully.
Dossier(s) infecté(s):
(Aucun élément nuisible détecté)
Fichier(s) infecté(s):
c:\WINDOWS\Wnefui.exe (Trojan.FraudPack) -> Quarantined and deleted successfully.
c:\Documents and Settings\Natalia\Local Settings\Temp\Wln.exe (Trojan.FraudPack) -> Delete on reboot.
c:\documents and settings\Natalia\application data\a51ab2c36c73cd0d5e947e97b4fe65cb\iobin700release.exe (Trojan.FakeAlert) -> Quarantined and deleted successfully.
c:\documents and settings\Natalia\local settings\Temp\Woy.exe (Trojan.FraudPack) -> Quarantined and deleted successfully.
c:\WINDOWS\Wnefua.exe (Trojan.FraudPack) -> Quarantined and deleted successfully.
c:\WINDOWS\Wnefub.exe (Trojan.FraudPack) -> Quarantined and deleted successfully.
c:\WINDOWS\Wnefuc.exe (Trojan.FraudPack) -> Quarantined and deleted successfully.
c:\WINDOWS\Wnefud.exe (Trojan.FraudPack) -> Quarantined and deleted successfully.
c:\WINDOWS\Wnefue.exe (Trojan.FraudPack) -> Quarantined and deleted successfully.
c:\WINDOWS\Wnefuf.exe (Trojan.FraudPack) -> Quarantined and deleted successfully.
c:\WINDOWS\Wnefug.exe (Trojan.FraudPack) -> Quarantined and deleted successfully.
c:\WINDOWS\Wnefuh.exe (Trojan.FraudPack) -> Quarantined and deleted successfully.
c:\documents and settings\Natalia\menu démarrer\programmes\démarrage\antimalware doctor.lnk (Rogue.AntiMalwareDoctor) -> Quarantined and deleted successfully.
c:\WINDOWS\Tasks\{22116563-108c-42c0-a7ce-60161b75e508}.job (Trojan.Downloader) -> Quarantined and deleted successfully.
c:\WINDOWS\Tasks\{62c40aa6-4406-467a-a5a5-dfdf1b559b7a}.job (Trojan.FakeAlert) -> Quarantined and deleted successfully.
======= RAPPORT D'AD-REMOVER 2.0.0.2,C | UNIQUEMENT XP/VISTA/7 =======
Mis à jour par TeamXscript le 08/12/10 à 10:40
Contact: AdRemover[DOT]contact[AT]gmail[DOT]com
Site web: http://www.teamxscript.org
C:\Program Files\Ad-Remover\main.exe (SCAN [1]) -> Lancé à 01:56:36 le 19/12/2010, Mode normal
Microsoft Windows XP Édition familiale Service Pack 3 (X86)
Natalia@NOM-8ABC2A6DAF0 ( )
============== RECHERCHE ==============
Service: "ASKService" Présent
Service: "ASKUpgrade" Présent
Dossier trouvé: C:\Documents and Settings\Natalia\Application Data\Mozilla\FireFox\Profiles\84pz7jj9.default\conduit
Dossier trouvé: C:\Program Files\AskBarDis
Dossier trouvé: C:\Documents and Settings\Natalia\Local Settings\Application Data\ConduitEngine
Dossier trouvé: C:\Program Files\ConduitEngine
-- Fichier ouvert: C:\Documents and Settings\Natalia\Application Data\Mozilla\FireFox\Profiles\84pz7jj9.default\Prefs.js --
Ligne trouvée: user_pref("CT2504091.SearchEngine", "Search||hxxp://search.conduit.com/Results.aspx?q=UCM_SEARCH_TER...
Ligne trouvée: user_pref("CT2504091.SearchFromAddressBarUrl", "hxxp://search.conduit.com/ResultsExt.aspx?ctid=CT250...
Ligne trouvée: user_pref("extensions.snipit.askTbInstalled", true);
-- Fichier Fermé --
Clé trouvée: HKLM\Software\Classes\CLSID\{0702a2b6-13aa-4090-9e01-bcdc85dd933f}
Clé trouvée: HKLM\Software\Classes\CLSID\{08993A7C-E764-4172-9627-BFB5EA6897B2}
Clé trouvée: HKLM\Software\Classes\CLSID\{0E4B92D0-3FFB-4132-9910-AC5BD8798D33}
Clé trouvée: HKLM\Software\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{0E4B92D0-3FFB-4132-9910-AC5BD8798D33}
Clé trouvée: HKLM\Software\Classes\CLSID\{128A6C66-AC6A-4617-8268-AB7F47B7215E}
Clé trouvée: HKLM\Software\Classes\CLSID\{201f27d4-3704-41d6-89c1-aa35e39143ed}
Clé trouvée: HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{201f27d4-3704-41d6-89c1-aa35e39143ed}
Clé trouvée: HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{201f27d4-3704-41d6-89c1-aa35e39143ed}
Clé trouvée: HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{201f27d4-3704-41d6-89c1-aa35e39143ed}
Clé trouvée: HKLM\Software\Classes\CLSID\{3041d03e-fd4b-44e0-b742-2d9b88305f98}
Clé trouvée: HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{3041d03e-fd4b-44e0-b742-2d9b88305f98}
Clé trouvée: HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{3041d03e-fd4b-44e0-b742-2d9b88305f98}
Clé trouvée: HKLM\Software\Classes\CLSID\{30F9B915-B755-4826-820B-08FBA6BD249D}
Clé trouvée: HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{30F9B915-B755-4826-820B-08FBA6BD249D}
Clé trouvée: HKLM\Software\Classes\CLSID\{571715D7-3395-4DF0-B43C-784836209E60}
Clé trouvée: HKLM\Software\Classes\CLSID\{622fd888-4e91-4d68-84d4-7262fd0811bf}
Clé trouvée: HKLM\Software\Classes\CLSID\{b0de3308-5d5a-470d-81b9-634fc078393b}
Clé trouvée: HKLM\Software\Classes\Interface\{4634804A-F0B0-4A74-A550-FC0EEF8A4362}
Clé trouvée: HKLM\Software\Classes\Interface\{4C07EA4F-5F52-4222-B170-4CD9ED33BAEA}
Clé trouvée: HKLM\Software\Classes\Interface\{C44FEFF4-EF0C-4CF7-83D0-92B4266A32B9}
Clé trouvée: HKLM\Software\Classes\Interface\{F131923C-381D-4E4C-A472-4A17118FD742}
Clé trouvée: HKLM\Software\Classes\TypeLib\{4B1C1E16-6B34-430E-B074-5928ECA4C150}
Clé trouvée: HKLM\Software\Classes\TypeLib\{D2E5FA06-DCC7-46F9-BEFF-BFD06F69B9B2}
Clé trouvée: HKLM\Software\Classes\AskIBar.PopSwatterBarButton
Clé trouvée: HKLM\Software\Classes\AskIBar.PopSwatterBarButton.1
Clé trouvée: HKLM\Software\Classes\AskIBar.PopSwatterSettingsControl
Clé trouvée: HKLM\Software\Classes\AskIBar.PopSwatterSettingsControl.1
Clé trouvée: HKLM\Software\Classes\AskToolBar.SettingsPlugin
Clé trouvée: HKLM\Software\Classes\AskToolBar.SettingsPlugin.1
Clé trouvée: HKLM\Software\Classes\Toolbar.CT2504091
Clé trouvée: HKLM\Software\AskBarDis
Clé trouvée: HKLM\Software\Conduit
Clé trouvée: HKLM\Software\conduitEngine
Clé trouvée: HKLM\Software\AppDataLow\AskBarDis
Clé trouvée: HKCU\Software\AskBarDis
Clé trouvée: HKCU\Software\Conduit
Clé trouvée: HKCU\Software\conduitEngine
Clé trouvée: HKCU\Software\AppDataLow\AskBarDis
Clé trouvée: HKLM\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{2E96DA32-5730-4F6F-B1F3-99DB644E169E}
Clé trouvée: HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\Ask Toolbar_is1
Valeur trouvée: HKLM\Software\Microsoft\Internet Explorer\Toolbar|{3041D03E-FD4B-44E0-B742-2D9B88305F98}
Valeur trouvée: HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser|{3041D03E-FD4B-44E0-B742-2D9B88305F98}
============== SCAN ADDITIONNEL ==============
** Mozilla Firefox Version [3.6.13 (fr)] **
-- C:\Documents and Settings\Natalia\Application Data\Mozilla\FireFox\Profiles\84pz7jj9.default\Prefs.js --
browser.download.lastDir, C:\\Documents and Settings\\Natalia\\Bureau
browser.startup.homepage, google.ca
browser.startup.homepage_override.mstone, rv:1.9.2.13
privacy.popups.showBrowserMessage, false
========================================
** Internet Explorer Version [8.0.6001.18702] **
[HKCU\Software\Microsoft\Internet Explorer\Main]
Do404Search: 0x01000000
Enable Browser Extensions: yes
Local Page: C:\WINDOWS\system32\blank.htm
Search bar: hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
Search Page: hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
Show_ToolBar: yes
Start Page: hxxp://google.ca/
Use Custom Search URL: 1
Use Search Asst: no
[HKLM\Software\Microsoft\Internet Explorer\Main]
Default_Page_URL: hxxp://go.microsoft.com/fwlink/?LinkId=69157
Default_Search_URL: hxxp://go.microsoft.com/fwlink/?LinkId=54896
Delete_Temp_Files_On_Exit: yes
Local Page: C:\WINDOWS\system32\blank.htm
Search Page: hxxp://go.microsoft.com/fwlink/?LinkId=54896
Start Page: hxxp://go.microsoft.com/fwlink/?LinkId=69157
[HKLM\Software\Microsoft\Internet Explorer\ABOUTURLS]
Tabs: res://ieframe.dll/tabswelcome.htm
Blank: res://mshtml.dll/blank.htm
========================================
C:\Program Files\Ad-Remover\Quarantine: 0 Fichier(s)
C:\Program Files\Ad-Remover\Backup: 1 Fichier(s)
C:\Ad-Report-SCAN[1].txt - 19/12/2010 (4643 Octet(s))
Fin à: 01:57:56, 19/12/2010
============== E.O.F ==============
Mis à jour par TeamXscript le 08/12/10 à 10:40
Contact: AdRemover[DOT]contact[AT]gmail[DOT]com
Site web: http://www.teamxscript.org
C:\Program Files\Ad-Remover\main.exe (SCAN [1]) -> Lancé à 01:56:36 le 19/12/2010, Mode normal
Microsoft Windows XP Édition familiale Service Pack 3 (X86)
Natalia@NOM-8ABC2A6DAF0 ( )
============== RECHERCHE ==============
Service: "ASKService" Présent
Service: "ASKUpgrade" Présent
Dossier trouvé: C:\Documents and Settings\Natalia\Application Data\Mozilla\FireFox\Profiles\84pz7jj9.default\conduit
Dossier trouvé: C:\Program Files\AskBarDis
Dossier trouvé: C:\Documents and Settings\Natalia\Local Settings\Application Data\ConduitEngine
Dossier trouvé: C:\Program Files\ConduitEngine
-- Fichier ouvert: C:\Documents and Settings\Natalia\Application Data\Mozilla\FireFox\Profiles\84pz7jj9.default\Prefs.js --
Ligne trouvée: user_pref("CT2504091.SearchEngine", "Search||hxxp://search.conduit.com/Results.aspx?q=UCM_SEARCH_TER...
Ligne trouvée: user_pref("CT2504091.SearchFromAddressBarUrl", "hxxp://search.conduit.com/ResultsExt.aspx?ctid=CT250...
Ligne trouvée: user_pref("extensions.snipit.askTbInstalled", true);
-- Fichier Fermé --
Clé trouvée: HKLM\Software\Classes\CLSID\{0702a2b6-13aa-4090-9e01-bcdc85dd933f}
Clé trouvée: HKLM\Software\Classes\CLSID\{08993A7C-E764-4172-9627-BFB5EA6897B2}
Clé trouvée: HKLM\Software\Classes\CLSID\{0E4B92D0-3FFB-4132-9910-AC5BD8798D33}
Clé trouvée: HKLM\Software\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{0E4B92D0-3FFB-4132-9910-AC5BD8798D33}
Clé trouvée: HKLM\Software\Classes\CLSID\{128A6C66-AC6A-4617-8268-AB7F47B7215E}
Clé trouvée: HKLM\Software\Classes\CLSID\{201f27d4-3704-41d6-89c1-aa35e39143ed}
Clé trouvée: HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{201f27d4-3704-41d6-89c1-aa35e39143ed}
Clé trouvée: HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{201f27d4-3704-41d6-89c1-aa35e39143ed}
Clé trouvée: HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{201f27d4-3704-41d6-89c1-aa35e39143ed}
Clé trouvée: HKLM\Software\Classes\CLSID\{3041d03e-fd4b-44e0-b742-2d9b88305f98}
Clé trouvée: HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{3041d03e-fd4b-44e0-b742-2d9b88305f98}
Clé trouvée: HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{3041d03e-fd4b-44e0-b742-2d9b88305f98}
Clé trouvée: HKLM\Software\Classes\CLSID\{30F9B915-B755-4826-820B-08FBA6BD249D}
Clé trouvée: HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{30F9B915-B755-4826-820B-08FBA6BD249D}
Clé trouvée: HKLM\Software\Classes\CLSID\{571715D7-3395-4DF0-B43C-784836209E60}
Clé trouvée: HKLM\Software\Classes\CLSID\{622fd888-4e91-4d68-84d4-7262fd0811bf}
Clé trouvée: HKLM\Software\Classes\CLSID\{b0de3308-5d5a-470d-81b9-634fc078393b}
Clé trouvée: HKLM\Software\Classes\Interface\{4634804A-F0B0-4A74-A550-FC0EEF8A4362}
Clé trouvée: HKLM\Software\Classes\Interface\{4C07EA4F-5F52-4222-B170-4CD9ED33BAEA}
Clé trouvée: HKLM\Software\Classes\Interface\{C44FEFF4-EF0C-4CF7-83D0-92B4266A32B9}
Clé trouvée: HKLM\Software\Classes\Interface\{F131923C-381D-4E4C-A472-4A17118FD742}
Clé trouvée: HKLM\Software\Classes\TypeLib\{4B1C1E16-6B34-430E-B074-5928ECA4C150}
Clé trouvée: HKLM\Software\Classes\TypeLib\{D2E5FA06-DCC7-46F9-BEFF-BFD06F69B9B2}
Clé trouvée: HKLM\Software\Classes\AskIBar.PopSwatterBarButton
Clé trouvée: HKLM\Software\Classes\AskIBar.PopSwatterBarButton.1
Clé trouvée: HKLM\Software\Classes\AskIBar.PopSwatterSettingsControl
Clé trouvée: HKLM\Software\Classes\AskIBar.PopSwatterSettingsControl.1
Clé trouvée: HKLM\Software\Classes\AskToolBar.SettingsPlugin
Clé trouvée: HKLM\Software\Classes\AskToolBar.SettingsPlugin.1
Clé trouvée: HKLM\Software\Classes\Toolbar.CT2504091
Clé trouvée: HKLM\Software\AskBarDis
Clé trouvée: HKLM\Software\Conduit
Clé trouvée: HKLM\Software\conduitEngine
Clé trouvée: HKLM\Software\AppDataLow\AskBarDis
Clé trouvée: HKCU\Software\AskBarDis
Clé trouvée: HKCU\Software\Conduit
Clé trouvée: HKCU\Software\conduitEngine
Clé trouvée: HKCU\Software\AppDataLow\AskBarDis
Clé trouvée: HKLM\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{2E96DA32-5730-4F6F-B1F3-99DB644E169E}
Clé trouvée: HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\Ask Toolbar_is1
Valeur trouvée: HKLM\Software\Microsoft\Internet Explorer\Toolbar|{3041D03E-FD4B-44E0-B742-2D9B88305F98}
Valeur trouvée: HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser|{3041D03E-FD4B-44E0-B742-2D9B88305F98}
============== SCAN ADDITIONNEL ==============
** Mozilla Firefox Version [3.6.13 (fr)] **
-- C:\Documents and Settings\Natalia\Application Data\Mozilla\FireFox\Profiles\84pz7jj9.default\Prefs.js --
browser.download.lastDir, C:\\Documents and Settings\\Natalia\\Bureau
browser.startup.homepage, google.ca
browser.startup.homepage_override.mstone, rv:1.9.2.13
privacy.popups.showBrowserMessage, false
========================================
** Internet Explorer Version [8.0.6001.18702] **
[HKCU\Software\Microsoft\Internet Explorer\Main]
Do404Search: 0x01000000
Enable Browser Extensions: yes
Local Page: C:\WINDOWS\system32\blank.htm
Search bar: hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
Search Page: hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
Show_ToolBar: yes
Start Page: hxxp://google.ca/
Use Custom Search URL: 1
Use Search Asst: no
[HKLM\Software\Microsoft\Internet Explorer\Main]
Default_Page_URL: hxxp://go.microsoft.com/fwlink/?LinkId=69157
Default_Search_URL: hxxp://go.microsoft.com/fwlink/?LinkId=54896
Delete_Temp_Files_On_Exit: yes
Local Page: C:\WINDOWS\system32\blank.htm
Search Page: hxxp://go.microsoft.com/fwlink/?LinkId=54896
Start Page: hxxp://go.microsoft.com/fwlink/?LinkId=69157
[HKLM\Software\Microsoft\Internet Explorer\ABOUTURLS]
Tabs: res://ieframe.dll/tabswelcome.htm
Blank: res://mshtml.dll/blank.htm
========================================
C:\Program Files\Ad-Remover\Quarantine: 0 Fichier(s)
C:\Program Files\Ad-Remover\Backup: 1 Fichier(s)
C:\Ad-Report-SCAN[1].txt - 19/12/2010 (4643 Octet(s))
Fin à: 01:57:56, 19/12/2010
============== E.O.F ==============
moment de grace
Messages postés
29042
Date d'inscription
samedi 6 décembre 2008
Statut
Contributeur sécurité
Dernière intervention
18 juillet 2013
2 274
19 déc. 2010 à 11:23
19 déc. 2010 à 11:23
tu n'as pas fait la bonne option de Ad Remover
relance le
option NETTOYAGE
poste le rapport
puis ensuite refais moi un nouveau rapport ZHP stp
relance le
option NETTOYAGE
poste le rapport
puis ensuite refais moi un nouveau rapport ZHP stp
Oups... et voilà les 2 rapports... avec un peu de retard
merci pour ta patience!!!
======= RAPPORT D'AD-REMOVER 2.0.0.2,C | UNIQUEMENT XP/VISTA/7 =======
Mis à jour par TeamXscript le 08/12/10 à 10:40
Contact: AdRemover[DOT]contact[AT]gmail[DOT]com
Site web: http://www.teamxscript.org
C:\Program Files\Ad-Remover\main.exe (SCAN [2]) -> Lancé à 10:54:12 le 19/12/2010, Mode normal
Microsoft Windows XP Édition familiale Service Pack 3 (X86)
Natalia@NOM-8ABC2A6DAF0 ( )
============== RECHERCHE ==============
Service: "ASKService" Présent
Service: "ASKUpgrade" Présent
Dossier trouvé: C:\Documents and Settings\Natalia\Application Data\Mozilla\FireFox\Profiles\84pz7jj9.default\conduit
Dossier trouvé: C:\Program Files\AskBarDis
Dossier trouvé: C:\Documents and Settings\Natalia\Local Settings\Application Data\ConduitEngine
Dossier trouvé: C:\Program Files\ConduitEngine
-- Fichier ouvert: C:\Documents and Settings\Natalia\Application Data\Mozilla\FireFox\Profiles\84pz7jj9.default\Prefs.js --
Ligne trouvée: user_pref("CT2504091.SearchEngine", "Search||hxxp://search.conduit.com/Results.aspx?q=UCM_SEARCH_TER...
Ligne trouvée: user_pref("CT2504091.SearchFromAddressBarUrl", "hxxp://search.conduit.com/ResultsExt.aspx?ctid=CT250...
Ligne trouvée: user_pref("extensions.snipit.askTbInstalled", true);
-- Fichier Fermé --
Clé trouvée: HKLM\Software\Classes\CLSID\{0702a2b6-13aa-4090-9e01-bcdc85dd933f}
Clé trouvée: HKLM\Software\Classes\CLSID\{08993A7C-E764-4172-9627-BFB5EA6897B2}
Clé trouvée: HKLM\Software\Classes\CLSID\{0E4B92D0-3FFB-4132-9910-AC5BD8798D33}
Clé trouvée: HKLM\Software\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{0E4B92D0-3FFB-4132-9910-AC5BD8798D33}
Clé trouvée: HKLM\Software\Classes\CLSID\{128A6C66-AC6A-4617-8268-AB7F47B7215E}
Clé trouvée: HKLM\Software\Classes\CLSID\{201f27d4-3704-41d6-89c1-aa35e39143ed}
Clé trouvée: HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{201f27d4-3704-41d6-89c1-aa35e39143ed}
Clé trouvée: HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{201f27d4-3704-41d6-89c1-aa35e39143ed}
Clé trouvée: HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{201f27d4-3704-41d6-89c1-aa35e39143ed}
Clé trouvée: HKLM\Software\Classes\CLSID\{3041d03e-fd4b-44e0-b742-2d9b88305f98}
Clé trouvée: HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{3041d03e-fd4b-44e0-b742-2d9b88305f98}
Clé trouvée: HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{3041d03e-fd4b-44e0-b742-2d9b88305f98}
Clé trouvée: HKLM\Software\Classes\CLSID\{30F9B915-B755-4826-820B-08FBA6BD249D}
Clé trouvée: HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{30F9B915-B755-4826-820B-08FBA6BD249D}
Clé trouvée: HKLM\Software\Classes\CLSID\{571715D7-3395-4DF0-B43C-784836209E60}
Clé trouvée: HKLM\Software\Classes\CLSID\{622fd888-4e91-4d68-84d4-7262fd0811bf}
Clé trouvée: HKLM\Software\Classes\CLSID\{b0de3308-5d5a-470d-81b9-634fc078393b}
Clé trouvée: HKLM\Software\Classes\Interface\{4634804A-F0B0-4A74-A550-FC0EEF8A4362}
Clé trouvée: HKLM\Software\Classes\Interface\{4C07EA4F-5F52-4222-B170-4CD9ED33BAEA}
Clé trouvée: HKLM\Software\Classes\Interface\{C44FEFF4-EF0C-4CF7-83D0-92B4266A32B9}
Clé trouvée: HKLM\Software\Classes\Interface\{F131923C-381D-4E4C-A472-4A17118FD742}
Clé trouvée: HKLM\Software\Classes\TypeLib\{4B1C1E16-6B34-430E-B074-5928ECA4C150}
Clé trouvée: HKLM\Software\Classes\TypeLib\{D2E5FA06-DCC7-46F9-BEFF-BFD06F69B9B2}
Clé trouvée: HKLM\Software\Classes\AskIBar.PopSwatterBarButton
Clé trouvée: HKLM\Software\Classes\AskIBar.PopSwatterBarButton.1
Clé trouvée: HKLM\Software\Classes\AskIBar.PopSwatterSettingsControl
Clé trouvée: HKLM\Software\Classes\AskIBar.PopSwatterSettingsControl.1
Clé trouvée: HKLM\Software\Classes\AskToolBar.SettingsPlugin
Clé trouvée: HKLM\Software\Classes\AskToolBar.SettingsPlugin.1
Clé trouvée: HKLM\Software\Classes\Toolbar.CT2504091
Clé trouvée: HKLM\Software\AskBarDis
Clé trouvée: HKLM\Software\Conduit
Clé trouvée: HKLM\Software\conduitEngine
Clé trouvée: HKLM\Software\AppDataLow\AskBarDis
Clé trouvée: HKCU\Software\AskBarDis
Clé trouvée: HKCU\Software\Conduit
Clé trouvée: HKCU\Software\conduitEngine
Clé trouvée: HKCU\Software\AppDataLow\AskBarDis
Clé trouvée: HKLM\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{2E96DA32-5730-4F6F-B1F3-99DB644E169E}
Clé trouvée: HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\Ask Toolbar_is1
Valeur trouvée: HKLM\Software\Microsoft\Internet Explorer\Toolbar|{3041D03E-FD4B-44E0-B742-2D9B88305F98}
Valeur trouvée: HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser|{3041D03E-FD4B-44E0-B742-2D9B88305F98}
============== SCAN ADDITIONNEL ==============
** Mozilla Firefox Version [3.6.13 (fr)] **
-- C:\Documents and Settings\Natalia\Application Data\Mozilla\FireFox\Profiles\84pz7jj9.default\Prefs.js --
browser.download.lastDir, C:\\Documents and Settings\\Natalia\\Bureau
browser.startup.homepage, google.ca
browser.startup.homepage_override.mstone, rv:1.9.2.13
privacy.popups.showBrowserMessage, false
========================================
** Internet Explorer Version [8.0.6001.18702] **
[HKCU\Software\Microsoft\Internet Explorer\Main]
Do404Search: 0x01000000
Enable Browser Extensions: yes
Local Page: C:\WINDOWS\system32\blank.htm
Search bar: hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
Search Page: hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
Show_ToolBar: yes
Start Page: hxxp://google.ca/
Use Custom Search URL: 1
Use Search Asst: no
[HKLM\Software\Microsoft\Internet Explorer\Main]
Default_Page_URL: hxxp://go.microsoft.com/fwlink/?LinkId=69157
Default_Search_URL: hxxp://go.microsoft.com/fwlink/?LinkId=54896
Delete_Temp_Files_On_Exit: yes
Local Page: C:\WINDOWS\system32\blank.htm
Search Page: hxxp://go.microsoft.com/fwlink/?LinkId=54896
Start Page: hxxp://go.microsoft.com/fwlink/?LinkId=69157
[HKLM\Software\Microsoft\Internet Explorer\ABOUTURLS]
Tabs: res://ieframe.dll/tabswelcome.htm
Blank: res://mshtml.dll/blank.htm
========================================
C:\Program Files\Ad-Remover\Quarantine: 0 Fichier(s)
C:\Program Files\Ad-Remover\Backup: 2 Fichier(s)
C:\Ad-Report-SCAN[1].txt - 19/12/2010 (6341 Octet(s))
C:\Ad-Report-SCAN[2].txt - 19/12/2010 (4643 Octet(s))
Fin à: 10:56:58, 19/12/2010
============== E.O.F ==============
Rapport de ZHPDiag v1.27.1421 par Nicolas Coolman, Update du 16/12/2010
Run by Natalia at 2010-12-19 11:05:06
Web site : http://www.premiumorange.com/zeb-help-process/zhpdiag.html
Contact : nicolascoolman@yahoo.fr
---\\ Web Browser
MSIE: Internet Explorer v8.0.6001.18702
MFIE: Mozilla Firefox v3.6.13 (fr) (Defaut)
---\\ System Information
Windows XP Home Edition Service Pack 3 (Build 2600)
Processor: x86 Family 6 Model 13 Stepping 8, GenuineIntel
Operating System: 32 Bits
Boot mode: Normal (Normal boot)
Total RAM: 446 MB (23% free)
System drive C: has 22 GB (39%) free of 56 GB
---\\ Logged in mode
Computer Name: NOM-8ABC2A6DAF0
User Name: Natalia
All Users Names: SUPPORT_388945a0, Natalia, HelpAssistant, ASPNET, Administrateur,
Unselected Option: O1,O45,O61,O62,O65,O80,O82
Logged in as Administrator
---\\ DOS/Devices
C:\ Hard drive, Flash drive, Thumb drive (Free 22 Go of 56 Go)
D:\ CD-ROM drive (Not Inserted)
---\\ Security Center & Tools Informations
[HKLM\SOFTWARE\Microsoft\Security Center] AntiVirusOverride: OK
[HKLM\SOFTWARE\Microsoft\Security Center] AntiVirusDisableNotify: OK
[HKLM\SOFTWARE\Microsoft\Security Center] FirewallDisableNotify: OK
[HKLM\SOFTWARE\Microsoft\Security Center] FirewallOverride: OK
[HKLM\SOFTWARE\Microsoft\Security Center] UpdatesDisableNotify: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\SHOWALL] CheckedValue: OK
---\\ Recherche particulière de fichiers génériques
[MD5.F2317622D29F9FF0F88AEECD5F60F0DD] - (.Microsoft Corporation - Explorateur Windows.) (.2008-04-13 21:34:03.) -- C:\Windows\Explorer.exe [1037824]
[MD5.DD73D6B9F6B4CB630CF35B438B540174] - (.Microsoft Corporation - Application d'ouverture de session Windows NT.) (.2008-04-13 21:34:28.) -- C:\Windows\System32\Winlogon.exe [512000]
[MD5.9F3A2F5AA6875C72BF062C712CFA2674] - (.Microsoft Corporation - IDE/ATAPI Port Driver.) (.2008-04-13 13:40:30.) -- C:\Windows\System32\drivers\atapi.sys [96512]
[MD5.78A08DD6A8D65E697C18E1DB01C5CDCA] - (.Microsoft Corporation - NT File System Driver.) (.2008-04-13 14:15:53.) -- C:\Windows\System32\drivers\ntfs.sys [574976]
---\\ Processus lancés
[MD5.BFA066BECCB7E16F52B819360253DEE0] - (.ATI Technologies Inc. - ATI External Event Utility EXE Module.) -- C:\WINDOWS\system32\Ati2evxx.exe [376832]
[MD5.539802224D334C25AC439FF0518D36CD] - (.Pas de propriétaire - Pas de description.) -- C:\WINDOWS\system32\ACS.exe [36864]
[MD5.B2386A8E66891F7CFEC9F5A03F0F1210] - (.AVAST Software - avast! Service.) -- C:\Program Files\Alwil Software\Avast5\AvastSvc.exe [40384]
[MD5.93AD0B78C7357A05F50E594EC7C22300] - (.Pas de propriétaire - Pas de description.) -- C:\WINDOWS\system32\rundll32.exe [33792]
[MD5.44B3B997E25C5D9A81D6C501451A96D7] - (.Logitech Inc. - Logitech LVPrcSrv Module..) -- c:\program files\fichiers communs\logitech\lvmvfm\LVPrcSrv.exe [99888]
[MD5.018857EAD9A077A56AEDFC0E5EF7A24A] - (.Apple Inc. - MobileDeviceService.) -- C:\Program Files\Fichiers communs\Apple\Mobile Device Support\AppleMobileDeviceService.exe [37664]
[MD5.F832F1505AD8B83474BD9A5B1B985E01] - (.Apple Inc. - Bonjour Service.) -- C:\Program Files\Bonjour\mDNSResponder.exe [345376]
[MD5.3CB0CC8879956C187E87E18634EE5164] - (.TOSHIBA CORPORATION - Service of ConfigFree..) -- C:\Program Files\TOSHIBA\ConfigFree\CFSvcs.exe [40960]
[MD5.C9FFBD6B8EDC46CD3D13E3C6DB914FB7] - (.Matsushita Electric Industrial Co., Ltd. - DVD-RAM Utility Helper Service.) -- C:\WINDOWS\system32\DVDRAMSV.exe [110592]
[MD5.77AC10DB097DFD0CD3071465B644D0AB] - (.Sun Microsystems, Inc. - Java(TM) Quick Starter Service.) -- C:\Program Files\Java\jre6\bin\jqs.exe [153376]
[MD5.8EF654045E518AC00E52E7A1E2D3AD70] - (.Canon Inc. - Canon Camera Access Library 8.) -- C:\Program Files\Canon\CAL\CALMAIN.exe [96370]
[MD5.8A1CA72A90090509D98220E921BD6415] - (.ATI Technologies, Inc. - ATI Desktop Control Panel.) -- C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe [344064]
[MD5.C2EDE68251407CCACABF5E48028626BD] - (.Agere Systems - LtMoh MFC Application.) -- C:\Program Files\ltmoh\Ltmoh.exe [184320]
[MD5.B2ED4020EE2A9446649CE6B0A918C91C] - (.Agere Systems - SoftModem Messaging Applet.) -- C:\WINDOWS\AGRSMMSG.exe [88358]
[MD5.FC1EBDD2C46D0D8B5763BF776ABA2E61] - (.TOSHIBA Corporation - TOSHIBA Virtual Sound Taskbar Module.) -- C:\Program Files\TOSHIBA\Tvs\TvsTray.exe [73728]
[MD5.08835AC90C7A02F55A0D0B1D0397ACAE] - (.COMPAL ELECTRONIC INC. - TOSHIBA HotKey Utility.) -- C:\Program Files\TOSHIBA\E-KEY\CeEKey.exe [671744]
[MD5.8EBBF7E508EC363BD6933809D17A43A7] - (.Alps Electric Co., Ltd. - Alps Pointing-device Driver.) -- C:\Program Files\Apoint2K\Apoint.exe [196608]
[MD5.ECE72DB438B67C5B5504C583B2B04E1B] - (.COMPAL ELECTRONIC INC. - TPTray Application.) -- C:\Program Files\TOSHIBA\TouchPad\TPTray.exe [53248]
[MD5.7109F1B929FD3D3ED73B0A77E5D7B153] - (.TOSHIBA CORPORATION - ConfigFree(TM) Tray.) -- C:\Program Files\TOSHIBA\ConfigFree\NDSTray.exe [962560]
[MD5.FD02F46A78C30F6CFF37C7FE37A16CC5] - (.TOSHIBA - TOSHIBA Zooming Utility Hotkey Hook.) -- C:\WINDOWS\system32\ZoomingHook.exe [24576]
[MD5.3C2D6A88715F7426102B2AC2B1F9CBCB] - (.Sonic Solutions - Drive Letter Access Component.) -- C:\WINDOWS\System32\DLA\DLACTRLW.EXE [122940]
[MD5.212C55204E9D1120C4A00546C202B396] - (.TOSHIBA - PadTouch Main.) -- C:\Program Files\TOSHIBA\Touch and Launch\PadExe.exe [1077322]
[MD5.81905148A21D919000778F8539F7B600] - (.TOSHIBA Corporation - Pas de description.) -- C:\WINDOWS\system32\TPSMain.exe [266240]
[MD5.D111A34A969377A8679C114090608B95] - (.TOSHIBA Corporation - SmoothView.) -- C:\Program Files\TOSHIBA\Utilitaire de zoom TOSHIBA\SmoothView.exe [118784]
[MD5.03E0CDD5CCF362593EA52B0151750D0A] - (.Logitech Inc. - Logitech Communications Manager.) -- C:\Program Files\Fichiers communs\Logitech\LComMgr\Communications_Helper.exe [497200]
[MD5.6C645D7DF2462697BC7A086E328607D5] - (.Pas de propriétaire - Pas de description.) -- C:\Program Files\Logitech\QuickCam10\QuickCam10.exe [614960]
[MD5.4ADA227EC4E1BBAD144EAABF02221853] - (.Genie-soft - Genie Backup Agent.) -- C:\Program Files\LaCie\Genie Backup Assistant\GBMAgent.exe [189056]
[MD5.E0D6538B62C79FCBF0B27F95FAF3208B] - (.Sun Microsystems, Inc. - Java(TM) Update Scheduler.) -- C:\Program Files\Fichiers communs\Java\Java Update\jusched.exe [246504]
[MD5.38AE7A942FC3FAB1C6A27EB65DE8F827] - (.AVAST Software - avast! Antivirus.) -- C:\PROGRA~1\ALWILS~1\Avast5\avastUI.exe [2837864]
[MD5.1047FAB7E9BFAC6D4E40C4E52CA9B170] - (.TOSHIBA Corporation - Pas de description.) -- C:\WINDOWS\system32\TPSBattM.exe [40960]
[MD5.CCA1B81492B40890E44B2B20A780EE1F] - (.Alps Electric Co., Ltd. - Alps Pointing-device Driver for Windows NT/.) -- C:\Program Files\Apoint2K\Apntex.exe [45056]
[MD5.2DFCB2393528446AEB9FB861A8FC39AB] - (.Apple Inc. - iTunesHelper.) -- C:\Program Files\iTunes\iTunesHelper.exe [421160]
[MD5.FEBC1591E5C0DC87EF9CF3D657B65FC2] - (.TOSHIBA - CD/DVD Drive Acoustic Silencer.) -- C:\Program Files\TOSHIBA\TOSCDSPD\toscdspd.exe [65536]
[MD5.390679F7A217A5E73D756276C40AE887] - (.Safer-Networking Ltd. - System settings protector.) -- C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe [2260480]
[MD5.94782C50F682CCC02C1FF4360976A5C8] - (.Logitech - Logitech Desktop Messenger.) -- C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe [36864]
[MD5.5648152AD2CCAB0265EAB9711755F484] - (.Matsushita Electric Industrial Co., Ltd. - CD Burning of Windows XP disabling tool for.) -- C:\WINDOWS\system32\RAMASST.exe [155648]
[MD5.F63465BBCE7059EA281ECAFF7590E1E8] - (.Logitech Inc. - LVCom Server.) -- C:\Program Files\Fichiers communs\Logitech\LComMgr\LVComSX.exe [243248]
[MD5.0CA8C2E721617AA2F923A8151C96FB33] - (.Apple Inc. - iPodService Module (32-bit).) -- C:\Program Files\iPod\bin\iPodService.exe [820008]
[MD5.F9A1CF5B5B2E9E17A2DDEB198337F97C] - (.Logitech Inc. - Logitech Camera Control Interface.) -- C:\Program Files\Logitech\QuickCam10\COCIManager.exe [166448]
[MD5.2DCC5C800F51D487178814CA9EADA181] - (.Microsoft Corporation - Bloc-notes.) -- C:\WINDOWS\system32\NOTEPAD.EXE [70656]
[MD5.806A8E35707BEA615B209001E544F0F0] - (.Nicolas Coolman - Diagnostic Tool.) -- C:\Program Files\ZHPDiag\ZHPDiag.exe [620544]
---\\ Mozilla Firefox, Plugins,Demarrage,Recherche,Extensions (P2,M0,M1,M2)
P2 - FPN:Firefox Plugin Navigator . (.Sun Microsystems, Inc. - NPRuntime Script Plug-in Library for Java(TM) Deploy.) -- C:\Program Files\Mozilla Firefox\Plugins\npdeploytk.dll
P2 - FPN:Firefox Plugin Navigator . (.mozilla.org - Default Plug-in.) -- C:\Program Files\Mozilla Firefox\Plugins\npnul32.dll
P2 - FPN:Firefox Plugin Navigator . (.Microsoft Corporation - Office Plugin for Netscape Navigator.) -- C:\Program Files\Mozilla Firefox\Plugins\NPOFFICE.DLL
P2 - FPN:Firefox Plugin Navigator . (.Apple Inc. - The QuickTime Plugin allows you to view a wide variety of multimedia c.) -- C:\Program Files\Mozilla Firefox\Plugins\npqtplugin.dll
P2 - FPN:Firefox Plugin Navigator . (.Apple Inc. - The QuickTime Plugin allows you to view a wide variety of multimedia c.) -- C:\Program Files\Mozilla Firefox\Plugins\npqtplugin2.dll
P2 - FPN:Firefox Plugin Navigator . (.Apple Inc. - The QuickTime Plugin allows you to view a wide variety of multimedia c.) -- C:\Program Files\Mozilla Firefox\Plugins\npqtplugin3.dll
P2 - FPN:Firefox Plugin Navigator . (.Apple Inc. - The QuickTime Plugin allows you to view a wide variety of multimedia c.) -- C:\Program Files\Mozilla Firefox\Plugins\npqtplugin4.dll
P2 - FPN:Firefox Plugin Navigator . (.Apple Inc. - The QuickTime Plugin allows you to view a wide variety of multimedia c.) -- C:\Program Files\Mozilla Firefox\Plugins\npqtplugin5.dll
P2 - FPN:Firefox Plugin Navigator . (.Apple Inc. - The QuickTime Plugin allows you to view a wide variety of multimedia c.) -- C:\Program Files\Mozilla Firefox\Plugins\npqtplugin6.dll
P2 - FPN:Firefox Plugin Navigator . (.Apple Inc. - The QuickTime Plugin allows you to view a wide variety of multimedia c.) -- C:\Program Files\Mozilla Firefox\Plugins\npqtplugin7.dll
P2 - FPN: [HKLM] [@adobe.com/FlashPlayer] - (.Pas de propriétaire - Pas de description.) -- C:\WINDOWS\system32\Macromed\Flash\NPSWF32.dll
P2 - FPN: [HKLM] [@Apple.com/iTunes,version=1.0] - (.Pas de propriétaire - Pas de description.) -- C:\Program Files\iTunes\Mozilla Plugins\npitunes.dll
P2 - FPN: [HKLM] [@microsoft.com/WLPG,version=14.0.8081.0709] - (.Microsoft Corporation - NPWLPG.) -- C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll
P2 - FPN: [HKLM] [@microsoft.com/WPF,version=3.5] - (.Microsoft Corporation - Windows Presentation Foundation (WPF) plug-in for Mozilla browsers.) -- c:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll
P2 - FPN: [HKCU] [@adobe.com/Acrobat,version=5.1] - (.Adobe Systems Inc. - Adobe Acrobat Plug-In Version 5.10 for Netscape.) -- C:\Program Files\Adobe\Acrobat 5.0\Reader\Browser\nppdf32.dll
M0 - MFSP: prefs.js [Natalia - 84pz7jj9.default] google.ca
M2 - MFEP: prefs.js [Natalia - 84pz7jj9.default\en-US@dictionaries.addons.mozilla.org] [] United States English Spellchecker v5.0.1 (.Giuliano Masseroni.)
M2 - MFEP: prefs.js [Natalia - 84pz7jj9.default\{ba14329e-9550-4989-b3f2-9732e92d17cc}] [] Vuze Remote Toolbar v2.7.2.0 (.Conduit Ltd..)
---\\ Internet Explorer, Démarrage,Recherche,URSearchHook (R0,R1,R3)
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.msn.com/fr-fr
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.msn.com/fr-fr
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.microsoft.com/isapi/redir.dll?prd=ie&pver=6&ar=msnhome
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Extensions Off Page = about:NoAdd-ons
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Security Risk Page = about:SecurityRisk
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyEnable = 0
R3 - URLSearchHook: Microsoft Url Search Hook - {CFBFAE00-17A6-11D0-99CB-00C04FD64497} . (.Microsoft Corporation - Internet Explorer.) (8.00.6001.18812 (longhorn_ie8_gdr.090717-2100)) -- C:\WINDOWS\system32\ieframe.dll
R3 - URLSearchHook: Vuze Remote Toolbar - {ba14329e-9550-4989-b3f2-9732e92d17cc} . (.Conduit Ltd. - Conduit Toolbar.) (6.2.2.4) -- C:\Program Files\Vuze_Remote\tbVuz0.dll
---\\ Modification d'une valeur Ini (Changed inifile value, mapped to Registry) (F2)
F2 - REG:system.ini: UserInit=C:\WINDOWS\system32\userinit.exe,
F2 - REG:system.ini: VMApplet=rundll32 shell32,Control_RunDLL "sysdm.cpl"
---\\ Browser Helper Objects de navigateur (O2)
O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} . (.Pas de propriétaire - AcroIEHelper Module.) -- C:\Program Files\Adobe\Acrobat 5.0\Reader\ActiveX\AcroIEHelper.ocx
O2 - BHO: (no name) - {201f27d4-3704-41d6-89c1-aa35e39143ed} Clé orpheline
O2 - BHO: (no name) - {30F9B915-B755-4826-820B-08FBA6BD249D} Clé orpheline
O2 - BHO: Spybot-S&D IE Protection - {53707962-6F74-2D53-2644-206D7942484F} . (.Safer Networking Limited - SBSD IE Protection.) -- C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O2 - BHO: (no name) - {5C255C8A-E604-49b4-9D64-90988571CECB} Clé orpheline
O2 - BHO: DriveLetterAccess - {5CA3D70E-1895-11CF-8E15-001234567890} . (.Sonic Solutions - Drive Letter Access Component.) -- C:\WINDOWS\System32\DLA\DLASHX_W.DLL
O2 - BHO: Search Helper - {6EBF7485-159F-4bff-A14F-B9E3AAC4465B} . (.Microsoft Corporation - Search Helper for Internet Explorer.) -- C:\Program Files\Microsoft\Search Enhancement Pack\Search Helper\SEPsearchhelperie.dll
O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} . (.Microsoft Corporation - WindowsLiveLogin.dll.) -- C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Vuze Remote Toolbar - {ba14329e-9550-4989-b3f2-9732e92d17cc} . (.Conduit Ltd. - Conduit Toolbar.) -- C:\Program Files\Vuze_Remote\tbVuz0.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} . (.Sun Microsystems, Inc. - Java(TM) Platform SE binary.) -- C:\Program Files\Java\jre6\bin\jp2ssv.dll
O2 - BHO: Windows Live Toolbar Helper - {E15A8DC0-8516-42A1-81EA-DC94EC1ACF10} . (.Microsoft Corporation - Windows Live Toolbar Core.) -- C:\Program Files\Windows Live\Toolbar\wltcore.dll
O2 - BHO: JQSIEStartDetectorImpl - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} . (.Sun Microsystems, Inc. - Java(TM) Quick Starter binary.) -- C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll
---\\ Internet Explorer Toolbars (O3)
O3 - Toolbar: &Windows Live Toolbar - {21FA44EF-376D-4D53-9B0F-8A89D3229068} . (.Microsoft Corporation - Windows Live Toolbar Core.) -- C:\Program Files\Windows Live\Toolbar\wltcore.dll
O3 - Toolbar: Vuze Remote Toolbar - {ba14329e-9550-4989-b3f2-9732e92d17cc} . (.Conduit Ltd. - Conduit Toolbar.) -- C:\Program Files\Vuze_Remote\tbVuz0.dll
---\\ Applications démarrées par registre & par dossier (O4)
O4 - HKLM\..\Run: [ATIPTA] . (.ATI Technologies, Inc. - ATI Desktop Control Panel.) -- C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe
O4 - HKLM\..\Run: [LtMoh] . (.Agere Systems - LtMoh MFC Application.) -- C:\Program Files\ltmoh\Ltmoh.exe
O4 - HKLM\..\Run: [AGRSMMSG] . (.Agere Systems - SoftModem Messaging Applet.) -- C:\Windows\AGRSMMSG.exe
O4 - HKLM\..\Run: [Tvs] . (.TOSHIBA Corporation - TOSHIBA Virtual Sound Taskbar Module.) -- C:\Program Files\TOSHIBA\Tvs\TvsTray.exe
O4 - HKLM\..\Run: [CeEKEY] . (.COMPAL ELECTRONIC INC. - TOSHIBA HotKey Utility.) -- C:\Program Files\TOSHIBA\E-KEY\CeEKey.exe
O4 - HKLM\..\Run: [Apoint] . (.Alps Electric Co., Ltd. - Alps Pointing-device Driver.) -- C:\Program Files\Apoint2K\Apoint.exe
O4 - HKLM\..\Run: [TPNF] . (.COMPAL ELECTRONIC INC. - TPTray Application.) -- C:\Program Files\TOSHIBA\TouchPad\TPTray.exe
O4 - HKLM\..\Run: [NDSTray.exe] NDSTray.exe
O4 - HKLM\..\Run: [Zooming] . (.TOSHIBA - TOSHIBA Zooming Utility Hotkey Hook.) -- C:\Windows\System32\ZoomingHook.exe
O4 - HKLM\..\Run: [HWSetup] . (.TOSHIBA CO.,LTD. - HWSetup.) -- C:\Program Files\TOSHIBA\TOSHIBA Applet\HWSetup.exe
O4 - HKLM\..\Run: [DLA] . (.Sonic Solutions - Drive Letter Access Component.) -- C:\WINDOWS\System32\DLA\DLACTRLW.exe
O4 - HKLM\..\Run: [PadTouch] . (.TOSHIBA - PadTouch Main.) -- C:\Program Files\TOSHIBA\Touch and Launch\Padexe.exe
O4 - HKLM\..\Run: [SVPWUTIL] . (.TOSHIBA - SVPWUTIL Application.) -- C:\Program Files\Toshiba\Windows Utilities\SVPWUTIL.exe
O4 - HKLM\..\Run: [TPSMain] . (.TOSHIBA Corporation - Pas de description.) -- C:\Windows\System32\TPSMain.exe
O4 - HKLM\..\Run: [SmoothView] . (.TOSHIBA Corporation - SmoothView.) -- C:\Program Files\TOSHIBA\Utilitaire de zoom TOSHIBA\SmoothView.exe
O4 - HKLM\..\Run: [LogitechCommunicationsManager] . (.Logitech Inc. - Logitech Communications Manager.) -- C:\Program Files\Fichiers communs\Logitech\LComMgr\Communications_Helper.exe
O4 - HKLM\..\Run: [LogitechQuickCamRibbon] . (.Pas de propriétaire - Pas de description.) -- C:\Program Files\Logitech\QuickCam10\QuickCam10.exe
O4 - HKLM\..\Run: [AppleSyncNotifier] . (.Apple Inc. - AppleSyncNotifier.) -- C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleSyncNotifier.exe
O4 - HKLM\..\Run: [GBMLite8AgentLaCie] . (.Genie-soft - Genie Backup Agent.) -- C:\Program Files\LaCie\Genie Backup Assistant\GBMAgent.exe
O4 - HKLM\..\Run: [SunJavaUpdateSched] . (.Sun Microsystems, Inc. - Java(TM) Update Scheduler.) -- C:\Program Files\Fichiers communs\Java\Java Update\jusched.exe
O4 - HKLM\..\Run: [avast5] . (.AVAST Software - avast! Antivirus.) -- C:\PROGRA~1\ALWILS~1\Avast5\avastUI.exe
O4 - HKLM\..\Run: [QuickTime Task] . (.Apple Inc. - QuickTime Task.) -- C:\Program Files\QuickTime\qttask.exe
O4 - HKLM\..\Run: [iTunesHelper] . (.Apple Inc. - iTunesHelper.) -- C:\Program Files\iTunes\iTunesHelper.exe
O4 - HKCU\..\Run: [CTFMON.EXE] . (.Microsoft Corporation - CTF Loader.) -- C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [TOSCDSPD] . (.TOSHIBA - CD/DVD Drive Acoustic Silencer.) -- C:\Program Files\TOSHIBA\TOSCDSPD\toscdspd.exe
O4 - HKCU\..\Run: [SpybotSD TeaTimer] . (.Safer-Networking Ltd. - System settings protector.) -- C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe
O4 - HKCU\..\Run: [LDM] . (.Logitech - Logitech Desktop Messenger.) -- C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe
O4 - HKCU\..\Run: [GBMLite8AgentLaCie] . (.Genie-soft - Genie Backup Agent.) -- C:\Program Files\LaCie\Genie Backup Assistant\GBMAgent.exe
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] . (.Microsoft Corporation - CTF Loader.) -- C:\WINDOWS\system32\CTFMON.exe
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] . (.Microsoft Corporation - CTF Loader.) -- C:\WINDOWS\system32\CTFMON.exe
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] . (.Microsoft Corporation - CTF Loader.) -- C:\WINDOWS\system32\CTFMON.exe
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] . (.Microsoft Corporation - CTF Loader.) -- C:\WINDOWS\system32\CTFMON.exe
O4 - HKUS\S-1-5-21-1260407420-2676463331-1252240880-1006\..\Run: [CTFMON.EXE] . (.Microsoft Corporation - CTF Loader.) -- C:\WINDOWS\system32\ctfmon.exe
O4 - HKUS\S-1-5-21-1260407420-2676463331-1252240880-1006\..\Run: [TOSCDSPD] . (.TOSHIBA - CD/DVD Drive Acoustic Silencer.) -- C:\Program Files\TOSHIBA\TOSCDSPD\toscdspd.exe
O4 - HKUS\S-1-5-21-1260407420-2676463331-1252240880-1006\..\Run: [SpybotSD TeaTimer] . (.Safer-Networking Ltd. - System settings protector.) -- C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe
O4 - HKUS\S-1-5-21-1260407420-2676463331-1252240880-1006\..\Run: [LDM] . (.Logitech - Logitech Desktop Messenger.) -- C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe
O4 - HKUS\S-1-5-21-1260407420-2676463331-1252240880-1006\..\Run: [GBMLite8AgentLaCie] . (.Genie-soft - Genie Backup Agent.) -- C:\Program Files\LaCie\Genie Backup Assistant\GBMAgent.exe
O4 - Global Startup: C:\Documents And Settings\All Users\Menu Démarrer\Programmes\Démarrage\Lancement rapide de Microsoft Office OneNote 2003.lnk . (.Microsoft Corporation.) -- C:\Program Files\Microsoft Office\OFFICE11\ONENOTEM.EXE
O4 - Global Startup: C:\Documents And Settings\All Users\Menu Démarrer\Programmes\Démarrage\Logitech Desktop Messenger.lnk . (.Logitech.) -- C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LDMConf.exe
O4 - Global Startup: C:\Documents And Settings\All Users\Menu Démarrer\Programmes\Démarrage\RAMASST.lnk . (.Matsushita Electric Industrial Co., Ltd..) -- C:\WINDOWS\system32\RAMASST.exe
---\\ Autres liens utilisateurs (O4)
O4 - Global Startup: C:\Documents And Settings\All Users\Menu Démarrer\Programmes\Acrobat Reader 5.1.lnk . (.Adobe Systems Incorporated.) -- C:\Program Files\Adobe\Acrobat 5.0\Reader\AcroRd32.exe
O4 - Global Startup: C:\Documents And Settings\All Users\Menu Démarrer\Programmes\Apple Software Update.lnk . (.Pas de propriétaire.) -- C:\WINDOWS\Installer\{C41300B9-185D-475E-BFEC-39EF732F19B1}\AppleSoftwareUpdateIco.exe
O4 - Global Startup: C:\Documents And Settings\All Users\Menu Démarrer\Programmes\Inscription de Toshiba.lnk . (.Microsoft Corporation.) -- C:\WINDOWS\system32\oobe\msoobe.exe
O4 - Global Startup: C:\Documents And Settings\All Users\Menu Démarrer\Programmes\Lisez Moi.lnk . (.Pas de propriétaire.) -- C:\Lisez Moi.htm
O4 - Global Startup: C:\Documents And Settings\All Users\Menu Démarrer\Programmes\MSN.lnk . (.Microsoft Corporation.) -- C:\Program Files\MSN\MSNCoreFiles\Install\msnsusii.exe
O4 - Global Startup: C:\Documents And Settings\All Users\Menu Démarrer\Programmes\Vuze.lnk . (.Vuze Inc..) -- C:\Program Files\Vuze\Azureus.exe
O4 - Global Startup: C:\Documents And Settings\All Users\Menu Démarrer\Programmes\Windows Messenger.lnk . (.Microsoft Corporation.) -- C:\Program Files\Messenger\msmsgs.exe
O4 - Global Startup: C:\Documents And Settings\All Users\Menu Démarrer\Programmes\Windows Movie Maker.lnk . (.Microsoft Corporation.) -- C:\Program Files\Movie Maker\moviemk.exe
O4 - Global Startup: C:\Documents And Settings\Natalia\Menu Démarrer\Programmes\Assistance à distance.lnk . (.Microsoft Corporation.) -- C:\WINDOWS\system32\rcimlby.exe
O4 - Global Startup: C:\Documents And Settings\Natalia\Menu Démarrer\Programmes\Internet Explorer.lnk . (.Microsoft Corporation.) -- C:\Program Files\Internet Explorer\iexplore.exe
O4 - Global Startup: C:\Documents And Settings\Natalia\Menu Démarrer\Programmes\Outlook Express.lnk . (.Microsoft Corporation.) -- C:\Program Files\Outlook Express\msimn.exe
O4 - Global Startup: C:\Documents And Settings\Natalia\Menu Démarrer\Programmes\Windows Media Player.lnk . (.Microsoft Corporation.) -- C:\Program Files\Windows Media Player\wmplayer.exe
---\\ Lignes supplémentaires dans le menu contextuel d'Internet Explorer (O8)
O8 - Extra context menu item: E&xporter vers Microsoft Excel . (.Microsoft Corporation - Microsoft Office Excel.) -- C:\PROGRA~1\MICROS~2\OFFICE11\EXCEL.exe
---\\ Boutons situés sur la barre d'outils principale d'Internet Explorer (O9)
O9 - Extra button: Recherche - {92780B25-18CC-41C8-B9BE-3C9C571A8263} . (.Pas de propriétaire - Pas de description.) -- C:\PROGRA~1\MICROS~2\OFFICE11\REFBARH.ICO
O9 - Extra 'Tools' menuitem: Spybot - Search & Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} . (.not file.) - (.not file.)
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} . (.not file.) - (.not file.)
O9 - Extra button: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} . (.Microsoft Corporation - Windows Messenger.) -- C:\Program Files\Messenger\msmsgs.exe
---\\ Winsock hijacker (Layered Service Provider) (O10)
O10 - WLSP:\000000000001\Winsock LSP File . (.Microsoft Corporation - Fournisseur de service Sockets 2.0 de Microsoft Windows.) -- C:\WINDOWS\system32\mswsock.dll
O10 - WLSP:\000000000002\Winsock LSP File . (.Microsoft Corporation - LDAP RnR Provider DLL.) -- C:\WINDOWS\system32\winrnr.dll
O10 - WLSP:\000000000003\Winsock LSP File . (.Microsoft Corporation - Fournisseur de service Sockets 2.0 de Microsoft Windows.) -- C:\WINDOWS\system32\mswsock.dll
O10 - WLSP:\000000000004\Winsock LSP File . (.Apple Inc. - Bonjour Namespace Provider.) -- C:\Program Files\Bonjour\mdnsNSP.dll
---\\ Piratage de l'Option 'Rétablir les paramètres Web' (O14)
O14 - IERESET.INF: START_PAGE_URL=START_PAGE_URL=http://www.microsoft.com/isapi/redir.dll?prd=ie&pver=6&ar=msnhome
---\\ Objets ActiveX (Downloaded Program Files)(O16)
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab
---\\ Modification Domaine/Adresses DNS (O17)
O17 - HKLM\System\CCS\Services\Tcpip\..\{229E9A80-3F62-4CFB-9898-411C10E28864}: NameServer = 4.2.2.1,4.2.2.2
O17 - HKLM\System\CS1\Services\Tcpip\..\{229E9A80-3F62-4CFB-9898-411C10E28864}: NameServer = 4.2.2.1,4.2.2.2
O17 - HKLM\System\CS2\Services\Tcpip\..\{229E9A80-3F62-4CFB-9898-411C10E28864}: NameServer = 4.2.2.1,4.2.2.2
O17 - HKLM\System\CCS\Services\Tcpip\..\{229E9A80-3F62-4CFB-9898-411C10E28864}: DhcpNameServer = 192.168.2.1
O17 - HKLM\System\CS1\Services\Tcpip\..\{229E9A80-3F62-4CFB-9898-411C10E28864}: DhcpNameServer = 192.168.2.1
O17 - HKLM\System\CCS\Services\Tcpip\..\{229E9A80-3F62-4CFB-9898-411C10E28864}: DhcpDomain = Belkin
O17 - HKLM\System\CS1\Services\Tcpip\..\{229E9A80-3F62-4CFB-9898-411C10E28864}: DhcpDomain = Belkin
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.2.1
---\\ Protocole additionnel et piratage de protocole (O18)
O18 - Handler: bw+0 - {d8d8f302-2a5d-4112-a8b7-3d7cc98559ef} . (.Logitech - Logitech Desktop Messenger.) -- C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Handler: bw+0s - {d8d8f302-2a5d-4112-a8b7-3d7cc98559ef} . (.Logitech - Logitech Desktop Messenger.) -- C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Handler: bw-0 - {d8d8f302-2a5d-4112-a8b7-3d7cc98559ef} . (.Logitech - Logitech Desktop Messenger.) -- C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Handler: bw-0s - {d8d8f302-2a5d-4112-a8b7-3d7cc98559ef} . (.Logitech - Logitech Desktop Messenger.) -- C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Handler: bw00 - {d8d8f302-2a5d-4112-a8b7-3d7cc98559ef} . (.Logitech - Logitech Desktop Messenger.) -- C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Handler: bw00s - {d8d8f302-2a5d-4112-a8b7-3d7cc98559ef} . (.Logitech - Logitech Desktop Messenger.) -- C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Handler: bw10 - {d8d8f302-2a5d-4112-a8b7-3d7cc98559ef} . (.Logitech - Logitech Desktop Messenger.) -- C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Handler: bw10s - {d8d8f302-2a5d-4112-a8b7-3d7cc98559ef} . (.Logitech - Logitech Desktop Messenger.) -- C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Handler: bw20 - {d8d8f302-2a5d-4112-a8b7-3d7cc98559ef} . (.Logitech - Logitech Desktop Messenger.) -- C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Handler: bw20s - {d8d8f302-2a5d-4112-a8b7-3d7cc98559ef} . (.Logitech - Logitech Desktop Messenger.) -- C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Handler: bw30 - {d8d8f302-2a5d-4112-a8b7-3d7cc98559ef} . (.Logitech - Logitech Desktop Messenger.) -- C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Handler: bw30s - {d8d8f302-2a5d-4112-a8b7-3d7cc98559ef} . (.Logitech - Logitech Desktop Messenger.) -- C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Handler: bw40 - {d8d8f302-2a5d-4112-a8b7-3d7cc98559ef} . (.Logitech - Logitech Desktop Messenger.) -- C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Handler: bw40s - {d8d8f302-2a5d-4112-a8b7-3d7cc98559ef} . (.Logitech - Logitech Desktop Messenger.) -- C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Handler: bw50 - {d8d8f302-2a5d-4112-a8b7-3d7cc98559ef} . (.Logitech - Logitech Desktop Messenger.) -- C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Handler: bw50s - {d8d8f302-2a5d-4112-a8b7-3d7cc98559ef} . (.Logitech - Logitech Desktop Messenger.) -- C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Handler: bw60 - {d8d8f302-2a5d-4112-a8b7-3d7cc98559ef} . (.Logitech - Logitech Desktop Messenger.) -- C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Handler: bw60s - {d8d8f302-2a5d-4112-a8b7-3d7cc98559ef} . (.Logitech - Logitech Desktop Messenger.) -- C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Handler: bw70 - {d8d8f302-2a5d-4112-a8b7-3d7cc98559ef} . (.Logitech - Logitech Desktop Messenger.) -- C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Handler: bw70s - {d8d8f302-2a5d-4112-a8b7-3d7cc98559ef} . (.Logitech - Logitech Desktop Messenger.) -- C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Handler: bw80 - {d8d8f302-2a5d-4112-a8b7-3d7cc98559ef} . (.Logitech - Logitech Desktop Messenger.) -- C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Handler: bw80s - {d8d8f302-2a5d-4112-a8b7-3d7cc98559ef} . (.Logitech - Logitech Desktop Messenger.) -- C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Handler: bw90 - {d8d8f302-2a5d-4112-a8b7-3d7cc98559ef} . (.Logitech - Logitech Desktop Messenger.) -- C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Handler: bw90s - {d8d8f302-2a5d-4112-a8b7-3d7cc98559ef} . (.Logitech - Logitech Desktop Messenger.) -- C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Handler: bwa0 - {d8d8f302-2a5d-4112-a8b7-3d7cc98559ef} . (.Logitech - Logitech Desktop Messenger.) -- C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Handler: bwa0s - {d8d8f302-2a5d-4112-a8b7-3d7cc98559ef} . (.Logitech - Logitech Desktop Messenger.) -- C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Handler: bwb0 - {d8d8f302-2a5d-4112-a8b7-3d7cc98559ef} . (.Logitech - Logitech Desktop Messenger.) -- C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Handler: bwb0s - {d8d8f302-2a5d-4112-a8b7-3d7cc98559ef} . (.Logitech - Logitech Desktop Messenger.) -- C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Handler: bwc0 - {d8d8f302-2a5d-4112-a8b7-3d7cc98559ef} . (.Logitech - Logitech Desktop Messenger.) -- C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Handler: bwc0s - {d8d8f302-2a5d-4112-a8b7-3d7cc98559ef} . (.Logitech - Logitech Desktop Messenger.) -- C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Handler: bwd0 - {d8d8f302-2a5d-4112-a8b7-3d7cc98559ef} . (.Logitech - Logitech Desktop Messenger.) -- C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Handler: bwd0s - {d8d8f302-2a5d-4112-a8b7-3d7cc98559ef} . (.Logitech - Logitech Desktop Messenger.) -- C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Handler: bwe0 - {d8d8f302-2a5d-4112-a8b7-3d7cc98559ef} . (.Logitech - Logitech Desktop Messenger.) -- C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Handler: bwe0s - {d8d8f302-2a5d-4112-a8b7-3d7cc98559ef} . (.Logitech - Logitech Desktop Messenger.) -- C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Handler: bwf0 - {d8d8f302-2a5d-4112-a8b7-3d7cc98559ef} . (.Logitech - Logitech Desktop Messenger.) -- C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Handler: bwf0s - {d8d8f302-2a5d-4112-a8b7-3d7cc98559ef} . (.Logitech - Logitech Desktop Messenger.) -- C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Handler: bwfile-8876480 - {9462A756-7B47-47BC-8C80-C34B9B80B32B} . (.Logitech - Logitech Desktop Messenger.) -- C:\Program Files\Logitech\Desktop Messenger\8876480\Program\GAPlugProtocol-8876480.dll
O18 - Handler: bwg0 - {d8d8f302-2a5d-4112-a8b7-3d7cc98559ef} . (.Logitech - Logitech Desktop Messenger.) -- C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Handler: bwg0s - {d8d8f302-2a5d-4112-a8b7-3d7cc98559ef} . (.Logitech - Logitech Desktop Messenger.) -- C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Handler: bwh0 - {d8d8f302-2a5d-4112-a8b7-3d7cc98559ef} . (.Logitech - Logitech Desktop Messenger.) -- C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Handler: bwh0s - {d8d8f302-2a5d-4112-a8b7-3d7cc98559ef} . (.Logitech - Logitech Desktop Messenger.) -- C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Handler: bwi0 - {d8d8f302-2a5d-4112-a8b7-3d7cc98559ef} . (.Logitech - Logitech Desktop Messenger.) -- C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Handler: bwi0s - {d8d8f302-2a5d-4112-a8b7-3d7cc98559ef} . (.Logitech - Logitech Desktop Messenger.) -- C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Handler: bwj0 - {d8d8f302-2a5d-4112-a8b7-3d7cc98559ef} . (.Logitech - Logitech Desktop Messenger.) -- C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Handler: bwj0s - {d8d8f302-2a5d-4112-a8b7-3d7cc98559ef} . (.Logitech - Logitech Desktop Messenger.) -- C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Handler: bwk0 - {d8d8f302-2a5d-4112-a8b7-3d7cc98559ef} . (.Logitech - Logitech Desktop Messenger.) -- C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Handler: bwk0s - {d8d8f302-2a5d-4112-a8b7-3d7cc98559ef} . (.Logitech - Logitech Desktop Messenger.) -- C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Handler: bwl0 - {d8d8f302-2a5d-4112-a8b7-3d7cc98559ef} . (.Logitech - Logitech Desktop Messenger.) -- C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Handler: bwl0s - {d8d8f302-2a5d-4112-a8b7-3d7cc98559ef} . (.Logitech - Logitech Desktop Messenger.) -- C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Handler: bwm0 - {d8d8f302-2a5d-4112-a8b7-3d7cc98559ef} . (.Logitech - Logitech Desktop Messenger.) -- C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Handler: bwm0s - {d8d8f302-2a5d-4112-a8b7-3d7cc98559ef} . (.Logitech - Logitech Desktop Messenger.) -- C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Handler: bwn0 - {d8d8f302-2a5d-4112-a8b7-3d7cc98559ef} . (.Logitech - Logitech Desktop Messenger.) -- C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Handler: bwn0s - {d8d8f302-2a5d-4112-a8b7-3d7cc98559ef} . (.Logitech - Logitech Desktop Messenger.) -- C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Handler: bwo0 - {d8d8f302-2a5d-4112-a8b7-3d7cc98559ef} . (.Logitech - Logitech Desktop Messenger.) -- C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Handler: bwo0s - {d8d8f302-2a5d-4112-a8b7-3d7cc98559ef} . (.Logitech - Logitech Desktop Messenger.) -- C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Handler: bwp0 - {d8d8f302-2a5d-4112-a8b7-3d7cc98559ef} . (.Logitech - Logitech Desktop Messenger.) -- C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Handler: bwp0s - {d8d8f302-2a5d-4112-a8b7-3d7cc98559ef} . (.Logitech - Logitech Desktop Messenger.) -- C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Handler: bwq0 - {d8d8f302-2a5d-4112-a8b7-3d7cc98559ef} . (.Logitech - Logitech Desktop Messenger.) -- C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Handler: bwq0s - {d8d8f302-2a5d-4112-a8b7-3d7cc98559ef} . (.Logitech - Logitech Desktop Messenger.) -- C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Handler: bwr0 - {d8d8f302-2a5d-4112-a8b7-3d7cc98559ef} . (.Logitech - Logitech Desktop Messenger.) -- C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Handler: bwr0s - {d8d8f302-2a5d-4112-a8b7-3d7cc98559ef} . (.Logitech - Logitech Desktop Messenger.) -- C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Handler: bws0 - {d8d8f302-2a5d-4112-a8b7-3d7cc98559ef} . (.Logitech - Logitech Desktop Messenger.) -- C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Handler: bws0s - {d8d8f302-2a5d-4112-a8b7-3d7cc98559ef} . (.Logitech - Logitech Desktop Messenger.) -- C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Handler: bwt0 - {d8d8f302-2a5d-4112-a8b7-3d7cc98559ef} . (.Logitech - Logitech Desktop Messenger.) -- C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Handler: bwt0s - {d8d8f302-2a5d-4112-a8b7-3d7cc98559ef} . (.Logitech - Logitech Desktop Messenger.) -- C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Handler: bwu0 - {d8d8f302-2a5d-4112-a8b7-3d7cc98559ef} . (.Logitech - Logitech Desktop Messenger.) -- C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Handler: bwu0s - {d8d8f302-2a5d-4112-a8b7-3d7cc98559ef} . (.Logitech - Logitech Desktop Messenger.) -- C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Handler: bwv0 - {d8d8f302-2a5d-4112-a8b7-3d7cc98559ef} . (.Logitech - Logitech Desktop Messenger.) -- C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Handler: bwv0s - {d8d8f302-2a5d-4112-a8b7-3d7cc98559ef} . (.Logitech - Logitech Desktop Messenger.) -- C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Handler: bww0 - {d8d8f302-2a5d-4112-a8b7-3d7cc98559ef} . (.Logitech - Logitech Desktop Messenger.) -- C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Handler: bww0s - {d8d8f302-2a5d-4112-a8b7-3d7cc98559ef} . (.Logitech - Logitech Desktop Messenger.) -- C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Handler: bwx0 - {d8d8f302-2a5d-4112-a8b7-3d7cc98559ef} . (.Logitech - Logitech Desktop Messenger.) -- C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Handler: bwx0s - {d8d8f302-2a5d-4112-a8b7-3d7cc98559ef} . (.Logitech - Logitech Desktop Messenger.) -- C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Handler: bwy0 - {d8d8f302-2a5d-4112-a8b7-3d7cc98559ef} . (.Logitech - Logitech Desktop Messenger.) -- C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Handler: bwy0s - {d8d8f302-2a5d-4112-a8b7-3d7cc98559ef} . (.Logitech - Logitech Desktop Messenger.) -- C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Handler: bwz0 - {d8d8f302-2a5d-4112-a8b7-3d7cc98559ef} . (.Logitech - Logitech Desktop Messenger.) -- C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Handler: bwz0s - {d8d8f302-2a5d-4112-a8b7-3d7cc98559ef} . (.Logitech - Logitech Desktop Messenger.) -- C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Handler: offline-8876480 - {D8D8F302-2A5D-4112-A8B7-3D7CC98559EF} . (.Logitech - Logitech Desktop Messenger.) -- C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} . (.Skype Technologies - Skype for COM API.) -- C:\PROGRA~1\FICHIE~1\Skype\SKYPE4~1.DLL
---\\ Valeur de Registre AppInit_DLLs et sous-clés Winlogon Notify (autorun) (O20)
O20 - Winlogon Notify: AtiExtEvent . (.ATI Technologies Inc. - ATI External Event Utility DLL Module.) -- C:\Windows\System32\Ati2evxx.dll
O20 - Winlogon Notify: crypt32chain . (.Microsoft Corporation - Crypto API32.) -- C:\Windows\System32\crypt32.dll
O20 - Winlogon Notify: cryptnet . (.Microsoft Corporation - Crypto Network Related API.) -- C:\Windows\System32\cryptnet.dll
O20 - Winlogon Notify: cscdll . (.Microsoft Corporation - Agent réseau hors connexion.) -- C:\Windows\System32\cscdll.dll
O20 - Winlogon Notify: ScCertProp . (.Microsoft Corporation - DLL commune de réception des notifications.) -- C:\Windows\System32\wlnotify.dll
O20 - Winlogon Notify: Schedule . (.Microsoft Corporation - DLL commune de réception des notifications.) -- C:\Windows\System32\wlnotify.dll
O20 - Winlogon Notify: sclgntfy . (.Microsoft Corporation - DLL secondaire de notification de service d.) -- C:\Windows\System32\sclgntfy.dll
O20 - Winlogon Notify: SensLogn . (.Microsoft Corporation - DLL commune de réception des notifications.) -- C:\Windows\System32\WlNotify.dll
O20 - Winlogon Notify: termsrv . (.Microsoft Corporation - DLL commune de réception des notifications.) -- C:\Windows\System32\wlnotify.dll
O20 - Winlogon Notify: wlballoon . (.Microsoft Corporation - DLL commune de réception des notifications.) -- C:\Windows\System32\wlnotify.dll
---\\ Clé de Registre autorun ShellServiceObjectDelayLoad (SSO/SSODL) (O21)
O21 - SSODL: PostBootReminder - {7849596a-48ea-486e-8937-a2a3009f31a9} . (.Microsoft Corporation - DLL commune du shell Windows.) -- C:\WINDOWS\system32\SHELL32.dll
O21 - SSODL: CDBurn - {fbeb8a05-beee-4442-804e-409d6c4515e9} . (.Microsoft Corporation - DLL commune du shell Windows.) -- C:\WINDOWS\system32\SHELL32.dll
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} . (.Microsoft Corporation - Web Site Monitor.) -- C:\WINDOWS\system32\webcheck.dll
O21 - SSODL: SysTray - {35CEC8A3-2BE6-11D2-8773-92E220524153} . (.Microsoft Corporation - Objet du service d'environnement Systray.) -- C:\WINDOWS\system32\stobject.dll
---\\ Clé de Registre autorun SharedTaskScheduler (STS) (O22)
O22 - SharedTaskScheduler: (no name) - {8C7461EF-2B13-11d2-BE35-3078302C2030} . (.Microsoft Corporation - Bibliothèque de l'interface utilisateur du.) -- C:\WINDOWS\system32\browseui.dll
---\\ Liste des services NT non Microsoft et non désactivés (O23)
O23 - Service: (ACS) . (.Pas de propriétaire - Pas de description.) - C:\WINDOWS\system32\ACS.exe
O23 - Service: (Apple Mobile Device) . (.Apple Inc. - MobileDeviceService.) - C:\Program Files\Fichiers communs\Apple\Mobile Device Support\AppleMobileDeviceService.exe
O23 - Service: (Ati HotKey Poller) . (.ATI Technologies Inc. - ATI External Event Utility EXE Module.) - C:\WINDOWS\system32\Ati2evxx.exe
O23 - Service: (avast! Antivirus) . (.AVAST Software - avast! Service.) - C:\Program Files\Alwil Software\Avast5\AvastSvc.exe
O23 - Service: (Bonjour Service) . (.Apple Inc. - Bonjour Service.) - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: (CCALib8) . (.Canon Inc. - Canon Camera Access Library 8.) - C:\Program Files\Canon\CAL\CALMAIN.exe
O23 - Service: (CFSvcs) . (.TOSHIBA CORPORATION - Service of ConfigFree..) - C:\Program Files\TOSHIBA\ConfigFree\CFSvcs.exe
O23 - Service: (DVD-RAM_Service) . (.Matsushita Electric Industrial Co., Ltd. - DVD-RAM Utility Helper Service.) - C:\WINDOWS\system32\DVDRAMSV.exe
O23 - Service: (JavaQuickStarterService) . (.Sun Microsystems, Inc. - Java(TM) Quick Starter Service.) - C:\Program Files\Java\jre6\bin\jqs.exe
O23 - Service: (LVPrcSrv) . (.Logitech Inc. - Logitech LVPrcSrv Module..) - c:\program files\fichiers communs\logitech\lvmvfm\LVPrcSrv.exe
O23 - Service: (LVSrvLauncher) . (.Logitech Inc. - Service Launcher.) - C:\Program Files\Fichiers communs\Logitech\SrvLnch\SrvLnch.exe
---\\ Enumération Active Desktop & MHTML Editor (O24)
O24 - Default MHTML Editor: Last - .(.Pas de propriétaire - Pas de description.) - "C:\Program Files\Microsoft Office\OFFICE11\WINWORD.exe (.not file.)
---\\ Tâches planifiées en automatique (O39)
O39 - APT:Automatic Planified Task - C:\WINDOWS\Tasks\Dzwue.job
O39 - APT:Automatic Planified Task - C:\WINDOWS\Tasks\Ihhfw.job
O39 - APT:Automatic Planified Task - C:\WINDOWS\Tasks\TQQJADD.job
O39 - APT:Automatic Planified Task - C:\WINDOWS\Tasks\ZDJOMGA.job
---\\ Composants installés (ActiveSetup Installed Components) (O40)
O40 - ASIC: Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608500} . (.Sun Microsystems, Inc. - Java(TM) Platform SE binary.) -- C:\Program Files\Java\jre6\bin\regutils.dll
O40 - ASIC: NetMeeting 3.01 - {44BBA842-CC51-11CF-AAFA-00AA00B6015B} . (.Pas de propriétaire - Pas de description.) -- C:\WINDOWS\INF\msnetmtg.inf
O40 - ASIC: Windows Messenger 4.7 - {5945c046-1e7d-11d1-bc44-00c04fd912be} . (.Pas de propriétaire - Pas de description.) -- C:\WINDOWS\INF\msmsgs.inf
O40 - ASIC: Microsoft Windows Media Player - {6BF52A52-394A-11d3-B153-00C04F79FAA6} . (.Pas de propriétaire - Pas de description.) -- C:\WINDOWS\INF\wmp11.inf
O40 - ASIC: Adobe Flash Player - {D27CDB6E-AE6D-11cf-96B8-444553540000} . (.Adobe Systems, Inc. - Adobe Flash Player 10.0 r12.) -- C:\WINDOWS\system32\Macromed\Flash\Flash10a.ocx
---\\ Pilotes lancés au démarrage (O41)
O41 - Driver: (AFD) . (.Microsoft Corporation - Ancillary Function Driver for WinSock.) - C:\WINDOWS\system32\drivers\afd.sys
O41 - Driver: (Cdrom) . (.Microsoft Corporation - SCSI CD-ROM Driver.) - C:\Windows\System32\DRIVERS\cdrom.sys
O41 - Driver: (DLACDBHM) . (.Sonic Solutions - Shared Driver Component.) - C:\Windows\System32\Drivers\DLACDBHM.sys
O41 - Driver: (DLARTL_N) . (.Sonic Solutions - Shared Driver Component.) - C:\Windows\System32\Drivers\DLARTL_N.sys
O41 - Driver: (i8042prt) . (.Microsoft Corporation - Pilote de port i8042.) - C:\Windows\System32\DRIVERS\i8042prt.sys
O41 - Driver: (Imapi) . (.Microsoft Corporation - IMAPI Kernel Driver.) - C:\Windows\System32\DRIVERS\imapi.sys
O41 - Driver: (intelppm) . (.Microsoft Corporation - Pilote de périphérique processeur.) - C:\Windows\System32\DRIVERS\intelppm.sys
O41 - Driver: (IPSec) . (.Microsoft Corporation - IPSec Driver.) - C:\Windows\System32\DRIVERS\ipsec.sys
O41 - Driver: (Kbdclass) . (.Microsoft Corporation - Pilote de la classe Clavier.) - C:\Windows\System32\DRIVERS\kbdclass.sys
O41 - Driver: (meiudf) . (.Matsushita Electric Industrial Co.,Ltd. - DVD-RAM UDF File System Driver.) - C:\Windows\System32\Drivers\meiudf.sys
O41 - Driver: (Mouclass) . (.Microsoft Corporation - Pilote de la classe Souris.) - C:\Windows\System32\DRIVERS\mouclass.sys
O41 - Driver: (MRxSmb) . (.Microsoft Corporation - Windows NT SMB Minirdr.) - C:\Windows\System32\DRIVERS\mrxsmb.sys
O41 - Driver: (NetBIOS) . (.Microsoft Corporation - NetBIOS interface driver.) - C:\Windows\System32\DRIVERS\netbios.sys
O41 - Driver: (NetBT) . (.Microsoft Corporation - MBT Transport driver.) - C:\Windows\System32\DRIVERS\netbt.sys
O41 - Driver: (RasAcd) . (.Microsoft Corporation - RAS Automatic Connection Driver.) - C:\Windows\System32\DRIVERS\rasacd.sys
O41 - Driver: (Rdbss) . (.Microsoft Corporation - Redirected Drive Buffering SubSystem Driver.) - C:\Windows\System32\DRIVERS\rdbss.sys
O41 - Driver: (RDPCDD) . (.Microsoft Corporation - RDP Miniport.) - C:\Windows\System32\DRIVERS\RDPCDD.sys
O41 - Driver: (redbook) . (.Microsoft Corporation - Pilote de filtre audio Livre rouge.) - C:\Windows\System32\DRIVERS\redbook.sys
O41 - Driver: (SrvcSSIOMngr) . (.COMPAL ELECTRONIC INC. - IoManager Application.) - C:\Windows\System32\Drivers\SSIoMngr.sys
O41 - Driver: (Tcpip) . (.Microsoft Corporation - TCP/IP Protocol Driver.) - C:\Windows\System32\DRIVERS\tcpip.sys
O41 - Driver: (TermDD) . (.Microsoft Corporation - Terminal Server Driver.) - C:\Windows\System32\DRIVERS\termdd.sys
O41 - Driver: (TPwSav) . (.TOSHIBA - IO Driver For TOSHIBA Power Saver.) - C:\Windows\System32\Drivers\TPwSav.sys
O41 - Driver: Carte vidéo VGA. (VgaSave) . (.Microsoft Corporation - VGA/Super VGA Video Driver.) - C:\WINDOWS\system32\drivers\vga.sys
---\\ Logiciels installés (O42)
O42 - Logiciel: ALPS Touch Pad Driver - (.Pas de propriétaire.) [HKLM] -- {9F72EF8B-AEC9-4CA5-B483-143980AFD6FD}
O42 - Logiciel: ATI - Utilitaire de désinstallation du logiciel - (.Pas de propriétaire.) [HKLM] -- All ATI Software
O42 - Logiciel: ATI Display Driver - (.Pas de propriétaire.) [HKLM] -- ATI Display Driver
O42 - Logiciel: Adobe Acrobat 5.0 - (.Adobe Systems, Inc..) [HKLM] -- Adobe Acrobat 5.0
O42 - Logiciel: Adobe Flash Player 10 ActiveX - (.Adobe Systems Incorporated.) [HKLM] -- Adobe Flash Player ActiveX
O42 - Logiciel: Adobe Flash Player 10 Plugin - (.Adobe Systems Incorporated.) [HKLM] -- Adobe Flash Player Plugin
O42 - Logiciel: Apple Application Support - (.Apple Inc..) [HKLM] -- {EE6097DD-05F4-4178-9719-D3170BF098E8}
O42 - Logiciel: Apple Mobile Device Support - (.Apple Inc..) [HKLM] -- {308B6AEA-DE50-4666-996D-0FA461719D6B}
O42 - Logiciel: Apple Software Update - (.Apple Inc..) [HKLM] -- {C41300B9-185D-475E-BFEC-39EF732F19B1}
O42 - Logiciel: Assist TOSHIBA - (.Pas de propriétaire.) [HKLM] -- {12B3A009-A080-4619-9A2A-C6DB151D8D67}
O42 - Logiciel: Assistant de connexion Windows Live - (.Microsoft Corporation.) [HKLM] -- {D3116CC7-24DC-4CA3-9CE1-23FED836E9F2}
O42 - Logiciel: Atheros Client Utility - (.Pas de propriétaire.) [HKLM] -- {71D658CF-4E0D-4DA8-AA67-8C0B6F1C01FE}
O42 - Logiciel: Atheros Wireless LAN MiniPCI card Driver - (.Pas de propriétaire.) [HKLM] -- {05832D65-6EDB-4D32-BA78-BCD0E2B91C02}
O42 - Logiciel: Bonjour - (.Apple Inc..) [HKLM] -- {2A981294-F14C-4F0F-9627-D793270922F8}
O42 - Logiciel: CCleaner (remove only) - (.Piriform.) [HKLM] -- CCleaner
O42 - Logiciel: Canon Camera Access Library - (.Canon Inc..) [HKLM] -- CAL
O42 - Logiciel: Canon Camera Support Core Library - (.Canon Inc..) [HKLM] -- CSCLIB
O42 - Logiciel: Canon G.726 WMP-Decoder - (.Canon Inc..) [HKLM] -- Canon G.726 WMP-Decoder
O42 - Logiciel: Canon MovieEdit Task for ZoomBrowser EX - (.Canon Inc..) [HKLM] -- MovieEditTask
O42 - Logiciel: Canon RAW Image Task for ZoomBrowser EX - (.Canon Inc..) [HKLM] -- RAW Image Task
O42 - Logiciel: Canon Utilities CameraWindow - (.Canon Inc..) [HKLM] -- CameraWindowLauncher
O42 - Logiciel: Canon Utilities CameraWindow DC - (.Canon Inc..) [HKLM] -- CameraWindowDC
O42 - Logiciel: Canon Utilities CameraWindow DC_DV 5 for ZoomBrowser EX - (.Canon Inc..) [HKLM] -- CameraWindowDVC5
O42 - Logiciel: Canon Utilities CameraWindow DC_DV 6 for ZoomBrowser EX - (.Canon Inc..) [HKLM] -- CameraWindowDVC6
O42 - Logiciel: Canon Utilities EOS Utility - (.Canon Inc..) [HKLM] -- EOS Utility
O42 - Logiciel: Canon Utilities MyCamera - (.Canon Inc..) [HKLM] -- MyCamera
O42 - Logiciel: Canon Utilities MyCamera DC - (.Canon Inc..) [HKLM] -- MyCameraDC
O42 - Logiciel: Canon Utilities PhotoStitch - (.Canon Inc..) [HKLM] -- PhotoStitch
O42 - Logiciel: Canon Utilities RemoteCapture Task for ZoomBrowser EX - (.Canon Inc..) [HKLM] -- RemoteCaptureTask
O42 - Logiciel: Canon Utilities ZoomBrowser EX - (.Canon Inc..) [HKLM] -- ZoomBrowser EX
O42 - Logiciel: Canon ZoomBrowser EX Memory Card Utility - (.Canon Inc..) [HKLM] -- ZoomBrowser EX Memory Card Utility
O42 - Logiciel: Free Mp3 Wma Converter V 1.81 - (.Pas de propriétaire.) [HKLM] -- Free Mp3 Wma Converter_is1
O42 - Logiciel: Genie Backup Assistant - (.LaCie.) [HKLM] -- {C9A162C1-031F-4EBF-A3E6-C45F7FCCBB9E}_is1
O42 - Logiciel: Gestion d'énergie TOSHIBA - (.Pas de propriétaire.) [HKLM] -- Power Saver
O42 - Logiciel: Hotfix for Microsoft .NET Framework 3.5 SP1 (KB953595) - (.Microsoft Corporation.) [HKLM] -- {CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9}.KB953595
O42 - Logiciel: Hotfix for Microsoft .NET Framework 3.5 SP1 (KB958484) - (.Microsoft Corporation.) [HKLM] -- {CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9}.KB958484
O42 - Logiciel: Hotfix for Windows Media Format 11 SDK (KB929399) - (.Microsoft Corporation.) [HKLM] -- KB929399
O42 - Logiciel: Hotfix for Windows XP (KB954550-v5) - (.Microsoft Corporation.) [HKLM] -- KB954550-v5
O42 - Logiciel: InterVideo WinDVD Creator 2 - (.InterVideo Inc..) [HKLM] -- {2FCE4FC5-6930-40E7-A4F1-F862207424EF}
O42 - Logiciel: InterVideo WinDVD for TOSHIBA - (.InterVideo Inc..) [HKLM] -- {91810AFC-A4F8-4EBA-A5AA-B198BBC81144}
O42 - Logiciel: IrfanView (remov
merci pour ta patience!!!
======= RAPPORT D'AD-REMOVER 2.0.0.2,C | UNIQUEMENT XP/VISTA/7 =======
Mis à jour par TeamXscript le 08/12/10 à 10:40
Contact: AdRemover[DOT]contact[AT]gmail[DOT]com
Site web: http://www.teamxscript.org
C:\Program Files\Ad-Remover\main.exe (SCAN [2]) -> Lancé à 10:54:12 le 19/12/2010, Mode normal
Microsoft Windows XP Édition familiale Service Pack 3 (X86)
Natalia@NOM-8ABC2A6DAF0 ( )
============== RECHERCHE ==============
Service: "ASKService" Présent
Service: "ASKUpgrade" Présent
Dossier trouvé: C:\Documents and Settings\Natalia\Application Data\Mozilla\FireFox\Profiles\84pz7jj9.default\conduit
Dossier trouvé: C:\Program Files\AskBarDis
Dossier trouvé: C:\Documents and Settings\Natalia\Local Settings\Application Data\ConduitEngine
Dossier trouvé: C:\Program Files\ConduitEngine
-- Fichier ouvert: C:\Documents and Settings\Natalia\Application Data\Mozilla\FireFox\Profiles\84pz7jj9.default\Prefs.js --
Ligne trouvée: user_pref("CT2504091.SearchEngine", "Search||hxxp://search.conduit.com/Results.aspx?q=UCM_SEARCH_TER...
Ligne trouvée: user_pref("CT2504091.SearchFromAddressBarUrl", "hxxp://search.conduit.com/ResultsExt.aspx?ctid=CT250...
Ligne trouvée: user_pref("extensions.snipit.askTbInstalled", true);
-- Fichier Fermé --
Clé trouvée: HKLM\Software\Classes\CLSID\{0702a2b6-13aa-4090-9e01-bcdc85dd933f}
Clé trouvée: HKLM\Software\Classes\CLSID\{08993A7C-E764-4172-9627-BFB5EA6897B2}
Clé trouvée: HKLM\Software\Classes\CLSID\{0E4B92D0-3FFB-4132-9910-AC5BD8798D33}
Clé trouvée: HKLM\Software\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{0E4B92D0-3FFB-4132-9910-AC5BD8798D33}
Clé trouvée: HKLM\Software\Classes\CLSID\{128A6C66-AC6A-4617-8268-AB7F47B7215E}
Clé trouvée: HKLM\Software\Classes\CLSID\{201f27d4-3704-41d6-89c1-aa35e39143ed}
Clé trouvée: HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{201f27d4-3704-41d6-89c1-aa35e39143ed}
Clé trouvée: HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{201f27d4-3704-41d6-89c1-aa35e39143ed}
Clé trouvée: HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{201f27d4-3704-41d6-89c1-aa35e39143ed}
Clé trouvée: HKLM\Software\Classes\CLSID\{3041d03e-fd4b-44e0-b742-2d9b88305f98}
Clé trouvée: HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{3041d03e-fd4b-44e0-b742-2d9b88305f98}
Clé trouvée: HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{3041d03e-fd4b-44e0-b742-2d9b88305f98}
Clé trouvée: HKLM\Software\Classes\CLSID\{30F9B915-B755-4826-820B-08FBA6BD249D}
Clé trouvée: HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{30F9B915-B755-4826-820B-08FBA6BD249D}
Clé trouvée: HKLM\Software\Classes\CLSID\{571715D7-3395-4DF0-B43C-784836209E60}
Clé trouvée: HKLM\Software\Classes\CLSID\{622fd888-4e91-4d68-84d4-7262fd0811bf}
Clé trouvée: HKLM\Software\Classes\CLSID\{b0de3308-5d5a-470d-81b9-634fc078393b}
Clé trouvée: HKLM\Software\Classes\Interface\{4634804A-F0B0-4A74-A550-FC0EEF8A4362}
Clé trouvée: HKLM\Software\Classes\Interface\{4C07EA4F-5F52-4222-B170-4CD9ED33BAEA}
Clé trouvée: HKLM\Software\Classes\Interface\{C44FEFF4-EF0C-4CF7-83D0-92B4266A32B9}
Clé trouvée: HKLM\Software\Classes\Interface\{F131923C-381D-4E4C-A472-4A17118FD742}
Clé trouvée: HKLM\Software\Classes\TypeLib\{4B1C1E16-6B34-430E-B074-5928ECA4C150}
Clé trouvée: HKLM\Software\Classes\TypeLib\{D2E5FA06-DCC7-46F9-BEFF-BFD06F69B9B2}
Clé trouvée: HKLM\Software\Classes\AskIBar.PopSwatterBarButton
Clé trouvée: HKLM\Software\Classes\AskIBar.PopSwatterBarButton.1
Clé trouvée: HKLM\Software\Classes\AskIBar.PopSwatterSettingsControl
Clé trouvée: HKLM\Software\Classes\AskIBar.PopSwatterSettingsControl.1
Clé trouvée: HKLM\Software\Classes\AskToolBar.SettingsPlugin
Clé trouvée: HKLM\Software\Classes\AskToolBar.SettingsPlugin.1
Clé trouvée: HKLM\Software\Classes\Toolbar.CT2504091
Clé trouvée: HKLM\Software\AskBarDis
Clé trouvée: HKLM\Software\Conduit
Clé trouvée: HKLM\Software\conduitEngine
Clé trouvée: HKLM\Software\AppDataLow\AskBarDis
Clé trouvée: HKCU\Software\AskBarDis
Clé trouvée: HKCU\Software\Conduit
Clé trouvée: HKCU\Software\conduitEngine
Clé trouvée: HKCU\Software\AppDataLow\AskBarDis
Clé trouvée: HKLM\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{2E96DA32-5730-4F6F-B1F3-99DB644E169E}
Clé trouvée: HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\Ask Toolbar_is1
Valeur trouvée: HKLM\Software\Microsoft\Internet Explorer\Toolbar|{3041D03E-FD4B-44E0-B742-2D9B88305F98}
Valeur trouvée: HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser|{3041D03E-FD4B-44E0-B742-2D9B88305F98}
============== SCAN ADDITIONNEL ==============
** Mozilla Firefox Version [3.6.13 (fr)] **
-- C:\Documents and Settings\Natalia\Application Data\Mozilla\FireFox\Profiles\84pz7jj9.default\Prefs.js --
browser.download.lastDir, C:\\Documents and Settings\\Natalia\\Bureau
browser.startup.homepage, google.ca
browser.startup.homepage_override.mstone, rv:1.9.2.13
privacy.popups.showBrowserMessage, false
========================================
** Internet Explorer Version [8.0.6001.18702] **
[HKCU\Software\Microsoft\Internet Explorer\Main]
Do404Search: 0x01000000
Enable Browser Extensions: yes
Local Page: C:\WINDOWS\system32\blank.htm
Search bar: hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
Search Page: hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
Show_ToolBar: yes
Start Page: hxxp://google.ca/
Use Custom Search URL: 1
Use Search Asst: no
[HKLM\Software\Microsoft\Internet Explorer\Main]
Default_Page_URL: hxxp://go.microsoft.com/fwlink/?LinkId=69157
Default_Search_URL: hxxp://go.microsoft.com/fwlink/?LinkId=54896
Delete_Temp_Files_On_Exit: yes
Local Page: C:\WINDOWS\system32\blank.htm
Search Page: hxxp://go.microsoft.com/fwlink/?LinkId=54896
Start Page: hxxp://go.microsoft.com/fwlink/?LinkId=69157
[HKLM\Software\Microsoft\Internet Explorer\ABOUTURLS]
Tabs: res://ieframe.dll/tabswelcome.htm
Blank: res://mshtml.dll/blank.htm
========================================
C:\Program Files\Ad-Remover\Quarantine: 0 Fichier(s)
C:\Program Files\Ad-Remover\Backup: 2 Fichier(s)
C:\Ad-Report-SCAN[1].txt - 19/12/2010 (6341 Octet(s))
C:\Ad-Report-SCAN[2].txt - 19/12/2010 (4643 Octet(s))
Fin à: 10:56:58, 19/12/2010
============== E.O.F ==============
Rapport de ZHPDiag v1.27.1421 par Nicolas Coolman, Update du 16/12/2010
Run by Natalia at 2010-12-19 11:05:06
Web site : http://www.premiumorange.com/zeb-help-process/zhpdiag.html
Contact : nicolascoolman@yahoo.fr
---\\ Web Browser
MSIE: Internet Explorer v8.0.6001.18702
MFIE: Mozilla Firefox v3.6.13 (fr) (Defaut)
---\\ System Information
Windows XP Home Edition Service Pack 3 (Build 2600)
Processor: x86 Family 6 Model 13 Stepping 8, GenuineIntel
Operating System: 32 Bits
Boot mode: Normal (Normal boot)
Total RAM: 446 MB (23% free)
System drive C: has 22 GB (39%) free of 56 GB
---\\ Logged in mode
Computer Name: NOM-8ABC2A6DAF0
User Name: Natalia
All Users Names: SUPPORT_388945a0, Natalia, HelpAssistant, ASPNET, Administrateur,
Unselected Option: O1,O45,O61,O62,O65,O80,O82
Logged in as Administrator
---\\ DOS/Devices
C:\ Hard drive, Flash drive, Thumb drive (Free 22 Go of 56 Go)
D:\ CD-ROM drive (Not Inserted)
---\\ Security Center & Tools Informations
[HKLM\SOFTWARE\Microsoft\Security Center] AntiVirusOverride: OK
[HKLM\SOFTWARE\Microsoft\Security Center] AntiVirusDisableNotify: OK
[HKLM\SOFTWARE\Microsoft\Security Center] FirewallDisableNotify: OK
[HKLM\SOFTWARE\Microsoft\Security Center] FirewallOverride: OK
[HKLM\SOFTWARE\Microsoft\Security Center] UpdatesDisableNotify: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\SHOWALL] CheckedValue: OK
---\\ Recherche particulière de fichiers génériques
[MD5.F2317622D29F9FF0F88AEECD5F60F0DD] - (.Microsoft Corporation - Explorateur Windows.) (.2008-04-13 21:34:03.) -- C:\Windows\Explorer.exe [1037824]
[MD5.DD73D6B9F6B4CB630CF35B438B540174] - (.Microsoft Corporation - Application d'ouverture de session Windows NT.) (.2008-04-13 21:34:28.) -- C:\Windows\System32\Winlogon.exe [512000]
[MD5.9F3A2F5AA6875C72BF062C712CFA2674] - (.Microsoft Corporation - IDE/ATAPI Port Driver.) (.2008-04-13 13:40:30.) -- C:\Windows\System32\drivers\atapi.sys [96512]
[MD5.78A08DD6A8D65E697C18E1DB01C5CDCA] - (.Microsoft Corporation - NT File System Driver.) (.2008-04-13 14:15:53.) -- C:\Windows\System32\drivers\ntfs.sys [574976]
---\\ Processus lancés
[MD5.BFA066BECCB7E16F52B819360253DEE0] - (.ATI Technologies Inc. - ATI External Event Utility EXE Module.) -- C:\WINDOWS\system32\Ati2evxx.exe [376832]
[MD5.539802224D334C25AC439FF0518D36CD] - (.Pas de propriétaire - Pas de description.) -- C:\WINDOWS\system32\ACS.exe [36864]
[MD5.B2386A8E66891F7CFEC9F5A03F0F1210] - (.AVAST Software - avast! Service.) -- C:\Program Files\Alwil Software\Avast5\AvastSvc.exe [40384]
[MD5.93AD0B78C7357A05F50E594EC7C22300] - (.Pas de propriétaire - Pas de description.) -- C:\WINDOWS\system32\rundll32.exe [33792]
[MD5.44B3B997E25C5D9A81D6C501451A96D7] - (.Logitech Inc. - Logitech LVPrcSrv Module..) -- c:\program files\fichiers communs\logitech\lvmvfm\LVPrcSrv.exe [99888]
[MD5.018857EAD9A077A56AEDFC0E5EF7A24A] - (.Apple Inc. - MobileDeviceService.) -- C:\Program Files\Fichiers communs\Apple\Mobile Device Support\AppleMobileDeviceService.exe [37664]
[MD5.F832F1505AD8B83474BD9A5B1B985E01] - (.Apple Inc. - Bonjour Service.) -- C:\Program Files\Bonjour\mDNSResponder.exe [345376]
[MD5.3CB0CC8879956C187E87E18634EE5164] - (.TOSHIBA CORPORATION - Service of ConfigFree..) -- C:\Program Files\TOSHIBA\ConfigFree\CFSvcs.exe [40960]
[MD5.C9FFBD6B8EDC46CD3D13E3C6DB914FB7] - (.Matsushita Electric Industrial Co., Ltd. - DVD-RAM Utility Helper Service.) -- C:\WINDOWS\system32\DVDRAMSV.exe [110592]
[MD5.77AC10DB097DFD0CD3071465B644D0AB] - (.Sun Microsystems, Inc. - Java(TM) Quick Starter Service.) -- C:\Program Files\Java\jre6\bin\jqs.exe [153376]
[MD5.8EF654045E518AC00E52E7A1E2D3AD70] - (.Canon Inc. - Canon Camera Access Library 8.) -- C:\Program Files\Canon\CAL\CALMAIN.exe [96370]
[MD5.8A1CA72A90090509D98220E921BD6415] - (.ATI Technologies, Inc. - ATI Desktop Control Panel.) -- C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe [344064]
[MD5.C2EDE68251407CCACABF5E48028626BD] - (.Agere Systems - LtMoh MFC Application.) -- C:\Program Files\ltmoh\Ltmoh.exe [184320]
[MD5.B2ED4020EE2A9446649CE6B0A918C91C] - (.Agere Systems - SoftModem Messaging Applet.) -- C:\WINDOWS\AGRSMMSG.exe [88358]
[MD5.FC1EBDD2C46D0D8B5763BF776ABA2E61] - (.TOSHIBA Corporation - TOSHIBA Virtual Sound Taskbar Module.) -- C:\Program Files\TOSHIBA\Tvs\TvsTray.exe [73728]
[MD5.08835AC90C7A02F55A0D0B1D0397ACAE] - (.COMPAL ELECTRONIC INC. - TOSHIBA HotKey Utility.) -- C:\Program Files\TOSHIBA\E-KEY\CeEKey.exe [671744]
[MD5.8EBBF7E508EC363BD6933809D17A43A7] - (.Alps Electric Co., Ltd. - Alps Pointing-device Driver.) -- C:\Program Files\Apoint2K\Apoint.exe [196608]
[MD5.ECE72DB438B67C5B5504C583B2B04E1B] - (.COMPAL ELECTRONIC INC. - TPTray Application.) -- C:\Program Files\TOSHIBA\TouchPad\TPTray.exe [53248]
[MD5.7109F1B929FD3D3ED73B0A77E5D7B153] - (.TOSHIBA CORPORATION - ConfigFree(TM) Tray.) -- C:\Program Files\TOSHIBA\ConfigFree\NDSTray.exe [962560]
[MD5.FD02F46A78C30F6CFF37C7FE37A16CC5] - (.TOSHIBA - TOSHIBA Zooming Utility Hotkey Hook.) -- C:\WINDOWS\system32\ZoomingHook.exe [24576]
[MD5.3C2D6A88715F7426102B2AC2B1F9CBCB] - (.Sonic Solutions - Drive Letter Access Component.) -- C:\WINDOWS\System32\DLA\DLACTRLW.EXE [122940]
[MD5.212C55204E9D1120C4A00546C202B396] - (.TOSHIBA - PadTouch Main.) -- C:\Program Files\TOSHIBA\Touch and Launch\PadExe.exe [1077322]
[MD5.81905148A21D919000778F8539F7B600] - (.TOSHIBA Corporation - Pas de description.) -- C:\WINDOWS\system32\TPSMain.exe [266240]
[MD5.D111A34A969377A8679C114090608B95] - (.TOSHIBA Corporation - SmoothView.) -- C:\Program Files\TOSHIBA\Utilitaire de zoom TOSHIBA\SmoothView.exe [118784]
[MD5.03E0CDD5CCF362593EA52B0151750D0A] - (.Logitech Inc. - Logitech Communications Manager.) -- C:\Program Files\Fichiers communs\Logitech\LComMgr\Communications_Helper.exe [497200]
[MD5.6C645D7DF2462697BC7A086E328607D5] - (.Pas de propriétaire - Pas de description.) -- C:\Program Files\Logitech\QuickCam10\QuickCam10.exe [614960]
[MD5.4ADA227EC4E1BBAD144EAABF02221853] - (.Genie-soft - Genie Backup Agent.) -- C:\Program Files\LaCie\Genie Backup Assistant\GBMAgent.exe [189056]
[MD5.E0D6538B62C79FCBF0B27F95FAF3208B] - (.Sun Microsystems, Inc. - Java(TM) Update Scheduler.) -- C:\Program Files\Fichiers communs\Java\Java Update\jusched.exe [246504]
[MD5.38AE7A942FC3FAB1C6A27EB65DE8F827] - (.AVAST Software - avast! Antivirus.) -- C:\PROGRA~1\ALWILS~1\Avast5\avastUI.exe [2837864]
[MD5.1047FAB7E9BFAC6D4E40C4E52CA9B170] - (.TOSHIBA Corporation - Pas de description.) -- C:\WINDOWS\system32\TPSBattM.exe [40960]
[MD5.CCA1B81492B40890E44B2B20A780EE1F] - (.Alps Electric Co., Ltd. - Alps Pointing-device Driver for Windows NT/.) -- C:\Program Files\Apoint2K\Apntex.exe [45056]
[MD5.2DFCB2393528446AEB9FB861A8FC39AB] - (.Apple Inc. - iTunesHelper.) -- C:\Program Files\iTunes\iTunesHelper.exe [421160]
[MD5.FEBC1591E5C0DC87EF9CF3D657B65FC2] - (.TOSHIBA - CD/DVD Drive Acoustic Silencer.) -- C:\Program Files\TOSHIBA\TOSCDSPD\toscdspd.exe [65536]
[MD5.390679F7A217A5E73D756276C40AE887] - (.Safer-Networking Ltd. - System settings protector.) -- C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe [2260480]
[MD5.94782C50F682CCC02C1FF4360976A5C8] - (.Logitech - Logitech Desktop Messenger.) -- C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe [36864]
[MD5.5648152AD2CCAB0265EAB9711755F484] - (.Matsushita Electric Industrial Co., Ltd. - CD Burning of Windows XP disabling tool for.) -- C:\WINDOWS\system32\RAMASST.exe [155648]
[MD5.F63465BBCE7059EA281ECAFF7590E1E8] - (.Logitech Inc. - LVCom Server.) -- C:\Program Files\Fichiers communs\Logitech\LComMgr\LVComSX.exe [243248]
[MD5.0CA8C2E721617AA2F923A8151C96FB33] - (.Apple Inc. - iPodService Module (32-bit).) -- C:\Program Files\iPod\bin\iPodService.exe [820008]
[MD5.F9A1CF5B5B2E9E17A2DDEB198337F97C] - (.Logitech Inc. - Logitech Camera Control Interface.) -- C:\Program Files\Logitech\QuickCam10\COCIManager.exe [166448]
[MD5.2DCC5C800F51D487178814CA9EADA181] - (.Microsoft Corporation - Bloc-notes.) -- C:\WINDOWS\system32\NOTEPAD.EXE [70656]
[MD5.806A8E35707BEA615B209001E544F0F0] - (.Nicolas Coolman - Diagnostic Tool.) -- C:\Program Files\ZHPDiag\ZHPDiag.exe [620544]
---\\ Mozilla Firefox, Plugins,Demarrage,Recherche,Extensions (P2,M0,M1,M2)
P2 - FPN:Firefox Plugin Navigator . (.Sun Microsystems, Inc. - NPRuntime Script Plug-in Library for Java(TM) Deploy.) -- C:\Program Files\Mozilla Firefox\Plugins\npdeploytk.dll
P2 - FPN:Firefox Plugin Navigator . (.mozilla.org - Default Plug-in.) -- C:\Program Files\Mozilla Firefox\Plugins\npnul32.dll
P2 - FPN:Firefox Plugin Navigator . (.Microsoft Corporation - Office Plugin for Netscape Navigator.) -- C:\Program Files\Mozilla Firefox\Plugins\NPOFFICE.DLL
P2 - FPN:Firefox Plugin Navigator . (.Apple Inc. - The QuickTime Plugin allows you to view a wide variety of multimedia c.) -- C:\Program Files\Mozilla Firefox\Plugins\npqtplugin.dll
P2 - FPN:Firefox Plugin Navigator . (.Apple Inc. - The QuickTime Plugin allows you to view a wide variety of multimedia c.) -- C:\Program Files\Mozilla Firefox\Plugins\npqtplugin2.dll
P2 - FPN:Firefox Plugin Navigator . (.Apple Inc. - The QuickTime Plugin allows you to view a wide variety of multimedia c.) -- C:\Program Files\Mozilla Firefox\Plugins\npqtplugin3.dll
P2 - FPN:Firefox Plugin Navigator . (.Apple Inc. - The QuickTime Plugin allows you to view a wide variety of multimedia c.) -- C:\Program Files\Mozilla Firefox\Plugins\npqtplugin4.dll
P2 - FPN:Firefox Plugin Navigator . (.Apple Inc. - The QuickTime Plugin allows you to view a wide variety of multimedia c.) -- C:\Program Files\Mozilla Firefox\Plugins\npqtplugin5.dll
P2 - FPN:Firefox Plugin Navigator . (.Apple Inc. - The QuickTime Plugin allows you to view a wide variety of multimedia c.) -- C:\Program Files\Mozilla Firefox\Plugins\npqtplugin6.dll
P2 - FPN:Firefox Plugin Navigator . (.Apple Inc. - The QuickTime Plugin allows you to view a wide variety of multimedia c.) -- C:\Program Files\Mozilla Firefox\Plugins\npqtplugin7.dll
P2 - FPN: [HKLM] [@adobe.com/FlashPlayer] - (.Pas de propriétaire - Pas de description.) -- C:\WINDOWS\system32\Macromed\Flash\NPSWF32.dll
P2 - FPN: [HKLM] [@Apple.com/iTunes,version=1.0] - (.Pas de propriétaire - Pas de description.) -- C:\Program Files\iTunes\Mozilla Plugins\npitunes.dll
P2 - FPN: [HKLM] [@microsoft.com/WLPG,version=14.0.8081.0709] - (.Microsoft Corporation - NPWLPG.) -- C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll
P2 - FPN: [HKLM] [@microsoft.com/WPF,version=3.5] - (.Microsoft Corporation - Windows Presentation Foundation (WPF) plug-in for Mozilla browsers.) -- c:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll
P2 - FPN: [HKCU] [@adobe.com/Acrobat,version=5.1] - (.Adobe Systems Inc. - Adobe Acrobat Plug-In Version 5.10 for Netscape.) -- C:\Program Files\Adobe\Acrobat 5.0\Reader\Browser\nppdf32.dll
M0 - MFSP: prefs.js [Natalia - 84pz7jj9.default] google.ca
M2 - MFEP: prefs.js [Natalia - 84pz7jj9.default\en-US@dictionaries.addons.mozilla.org] [] United States English Spellchecker v5.0.1 (.Giuliano Masseroni.)
M2 - MFEP: prefs.js [Natalia - 84pz7jj9.default\{ba14329e-9550-4989-b3f2-9732e92d17cc}] [] Vuze Remote Toolbar v2.7.2.0 (.Conduit Ltd..)
---\\ Internet Explorer, Démarrage,Recherche,URSearchHook (R0,R1,R3)
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.msn.com/fr-fr
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.msn.com/fr-fr
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.microsoft.com/isapi/redir.dll?prd=ie&pver=6&ar=msnhome
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Extensions Off Page = about:NoAdd-ons
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Security Risk Page = about:SecurityRisk
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyEnable = 0
R3 - URLSearchHook: Microsoft Url Search Hook - {CFBFAE00-17A6-11D0-99CB-00C04FD64497} . (.Microsoft Corporation - Internet Explorer.) (8.00.6001.18812 (longhorn_ie8_gdr.090717-2100)) -- C:\WINDOWS\system32\ieframe.dll
R3 - URLSearchHook: Vuze Remote Toolbar - {ba14329e-9550-4989-b3f2-9732e92d17cc} . (.Conduit Ltd. - Conduit Toolbar.) (6.2.2.4) -- C:\Program Files\Vuze_Remote\tbVuz0.dll
---\\ Modification d'une valeur Ini (Changed inifile value, mapped to Registry) (F2)
F2 - REG:system.ini: UserInit=C:\WINDOWS\system32\userinit.exe,
F2 - REG:system.ini: VMApplet=rundll32 shell32,Control_RunDLL "sysdm.cpl"
---\\ Browser Helper Objects de navigateur (O2)
O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} . (.Pas de propriétaire - AcroIEHelper Module.) -- C:\Program Files\Adobe\Acrobat 5.0\Reader\ActiveX\AcroIEHelper.ocx
O2 - BHO: (no name) - {201f27d4-3704-41d6-89c1-aa35e39143ed} Clé orpheline
O2 - BHO: (no name) - {30F9B915-B755-4826-820B-08FBA6BD249D} Clé orpheline
O2 - BHO: Spybot-S&D IE Protection - {53707962-6F74-2D53-2644-206D7942484F} . (.Safer Networking Limited - SBSD IE Protection.) -- C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O2 - BHO: (no name) - {5C255C8A-E604-49b4-9D64-90988571CECB} Clé orpheline
O2 - BHO: DriveLetterAccess - {5CA3D70E-1895-11CF-8E15-001234567890} . (.Sonic Solutions - Drive Letter Access Component.) -- C:\WINDOWS\System32\DLA\DLASHX_W.DLL
O2 - BHO: Search Helper - {6EBF7485-159F-4bff-A14F-B9E3AAC4465B} . (.Microsoft Corporation - Search Helper for Internet Explorer.) -- C:\Program Files\Microsoft\Search Enhancement Pack\Search Helper\SEPsearchhelperie.dll
O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} . (.Microsoft Corporation - WindowsLiveLogin.dll.) -- C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Vuze Remote Toolbar - {ba14329e-9550-4989-b3f2-9732e92d17cc} . (.Conduit Ltd. - Conduit Toolbar.) -- C:\Program Files\Vuze_Remote\tbVuz0.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} . (.Sun Microsystems, Inc. - Java(TM) Platform SE binary.) -- C:\Program Files\Java\jre6\bin\jp2ssv.dll
O2 - BHO: Windows Live Toolbar Helper - {E15A8DC0-8516-42A1-81EA-DC94EC1ACF10} . (.Microsoft Corporation - Windows Live Toolbar Core.) -- C:\Program Files\Windows Live\Toolbar\wltcore.dll
O2 - BHO: JQSIEStartDetectorImpl - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} . (.Sun Microsystems, Inc. - Java(TM) Quick Starter binary.) -- C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll
---\\ Internet Explorer Toolbars (O3)
O3 - Toolbar: &Windows Live Toolbar - {21FA44EF-376D-4D53-9B0F-8A89D3229068} . (.Microsoft Corporation - Windows Live Toolbar Core.) -- C:\Program Files\Windows Live\Toolbar\wltcore.dll
O3 - Toolbar: Vuze Remote Toolbar - {ba14329e-9550-4989-b3f2-9732e92d17cc} . (.Conduit Ltd. - Conduit Toolbar.) -- C:\Program Files\Vuze_Remote\tbVuz0.dll
---\\ Applications démarrées par registre & par dossier (O4)
O4 - HKLM\..\Run: [ATIPTA] . (.ATI Technologies, Inc. - ATI Desktop Control Panel.) -- C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe
O4 - HKLM\..\Run: [LtMoh] . (.Agere Systems - LtMoh MFC Application.) -- C:\Program Files\ltmoh\Ltmoh.exe
O4 - HKLM\..\Run: [AGRSMMSG] . (.Agere Systems - SoftModem Messaging Applet.) -- C:\Windows\AGRSMMSG.exe
O4 - HKLM\..\Run: [Tvs] . (.TOSHIBA Corporation - TOSHIBA Virtual Sound Taskbar Module.) -- C:\Program Files\TOSHIBA\Tvs\TvsTray.exe
O4 - HKLM\..\Run: [CeEKEY] . (.COMPAL ELECTRONIC INC. - TOSHIBA HotKey Utility.) -- C:\Program Files\TOSHIBA\E-KEY\CeEKey.exe
O4 - HKLM\..\Run: [Apoint] . (.Alps Electric Co., Ltd. - Alps Pointing-device Driver.) -- C:\Program Files\Apoint2K\Apoint.exe
O4 - HKLM\..\Run: [TPNF] . (.COMPAL ELECTRONIC INC. - TPTray Application.) -- C:\Program Files\TOSHIBA\TouchPad\TPTray.exe
O4 - HKLM\..\Run: [NDSTray.exe] NDSTray.exe
O4 - HKLM\..\Run: [Zooming] . (.TOSHIBA - TOSHIBA Zooming Utility Hotkey Hook.) -- C:\Windows\System32\ZoomingHook.exe
O4 - HKLM\..\Run: [HWSetup] . (.TOSHIBA CO.,LTD. - HWSetup.) -- C:\Program Files\TOSHIBA\TOSHIBA Applet\HWSetup.exe
O4 - HKLM\..\Run: [DLA] . (.Sonic Solutions - Drive Letter Access Component.) -- C:\WINDOWS\System32\DLA\DLACTRLW.exe
O4 - HKLM\..\Run: [PadTouch] . (.TOSHIBA - PadTouch Main.) -- C:\Program Files\TOSHIBA\Touch and Launch\Padexe.exe
O4 - HKLM\..\Run: [SVPWUTIL] . (.TOSHIBA - SVPWUTIL Application.) -- C:\Program Files\Toshiba\Windows Utilities\SVPWUTIL.exe
O4 - HKLM\..\Run: [TPSMain] . (.TOSHIBA Corporation - Pas de description.) -- C:\Windows\System32\TPSMain.exe
O4 - HKLM\..\Run: [SmoothView] . (.TOSHIBA Corporation - SmoothView.) -- C:\Program Files\TOSHIBA\Utilitaire de zoom TOSHIBA\SmoothView.exe
O4 - HKLM\..\Run: [LogitechCommunicationsManager] . (.Logitech Inc. - Logitech Communications Manager.) -- C:\Program Files\Fichiers communs\Logitech\LComMgr\Communications_Helper.exe
O4 - HKLM\..\Run: [LogitechQuickCamRibbon] . (.Pas de propriétaire - Pas de description.) -- C:\Program Files\Logitech\QuickCam10\QuickCam10.exe
O4 - HKLM\..\Run: [AppleSyncNotifier] . (.Apple Inc. - AppleSyncNotifier.) -- C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleSyncNotifier.exe
O4 - HKLM\..\Run: [GBMLite8AgentLaCie] . (.Genie-soft - Genie Backup Agent.) -- C:\Program Files\LaCie\Genie Backup Assistant\GBMAgent.exe
O4 - HKLM\..\Run: [SunJavaUpdateSched] . (.Sun Microsystems, Inc. - Java(TM) Update Scheduler.) -- C:\Program Files\Fichiers communs\Java\Java Update\jusched.exe
O4 - HKLM\..\Run: [avast5] . (.AVAST Software - avast! Antivirus.) -- C:\PROGRA~1\ALWILS~1\Avast5\avastUI.exe
O4 - HKLM\..\Run: [QuickTime Task] . (.Apple Inc. - QuickTime Task.) -- C:\Program Files\QuickTime\qttask.exe
O4 - HKLM\..\Run: [iTunesHelper] . (.Apple Inc. - iTunesHelper.) -- C:\Program Files\iTunes\iTunesHelper.exe
O4 - HKCU\..\Run: [CTFMON.EXE] . (.Microsoft Corporation - CTF Loader.) -- C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [TOSCDSPD] . (.TOSHIBA - CD/DVD Drive Acoustic Silencer.) -- C:\Program Files\TOSHIBA\TOSCDSPD\toscdspd.exe
O4 - HKCU\..\Run: [SpybotSD TeaTimer] . (.Safer-Networking Ltd. - System settings protector.) -- C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe
O4 - HKCU\..\Run: [LDM] . (.Logitech - Logitech Desktop Messenger.) -- C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe
O4 - HKCU\..\Run: [GBMLite8AgentLaCie] . (.Genie-soft - Genie Backup Agent.) -- C:\Program Files\LaCie\Genie Backup Assistant\GBMAgent.exe
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] . (.Microsoft Corporation - CTF Loader.) -- C:\WINDOWS\system32\CTFMON.exe
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] . (.Microsoft Corporation - CTF Loader.) -- C:\WINDOWS\system32\CTFMON.exe
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] . (.Microsoft Corporation - CTF Loader.) -- C:\WINDOWS\system32\CTFMON.exe
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] . (.Microsoft Corporation - CTF Loader.) -- C:\WINDOWS\system32\CTFMON.exe
O4 - HKUS\S-1-5-21-1260407420-2676463331-1252240880-1006\..\Run: [CTFMON.EXE] . (.Microsoft Corporation - CTF Loader.) -- C:\WINDOWS\system32\ctfmon.exe
O4 - HKUS\S-1-5-21-1260407420-2676463331-1252240880-1006\..\Run: [TOSCDSPD] . (.TOSHIBA - CD/DVD Drive Acoustic Silencer.) -- C:\Program Files\TOSHIBA\TOSCDSPD\toscdspd.exe
O4 - HKUS\S-1-5-21-1260407420-2676463331-1252240880-1006\..\Run: [SpybotSD TeaTimer] . (.Safer-Networking Ltd. - System settings protector.) -- C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe
O4 - HKUS\S-1-5-21-1260407420-2676463331-1252240880-1006\..\Run: [LDM] . (.Logitech - Logitech Desktop Messenger.) -- C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe
O4 - HKUS\S-1-5-21-1260407420-2676463331-1252240880-1006\..\Run: [GBMLite8AgentLaCie] . (.Genie-soft - Genie Backup Agent.) -- C:\Program Files\LaCie\Genie Backup Assistant\GBMAgent.exe
O4 - Global Startup: C:\Documents And Settings\All Users\Menu Démarrer\Programmes\Démarrage\Lancement rapide de Microsoft Office OneNote 2003.lnk . (.Microsoft Corporation.) -- C:\Program Files\Microsoft Office\OFFICE11\ONENOTEM.EXE
O4 - Global Startup: C:\Documents And Settings\All Users\Menu Démarrer\Programmes\Démarrage\Logitech Desktop Messenger.lnk . (.Logitech.) -- C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LDMConf.exe
O4 - Global Startup: C:\Documents And Settings\All Users\Menu Démarrer\Programmes\Démarrage\RAMASST.lnk . (.Matsushita Electric Industrial Co., Ltd..) -- C:\WINDOWS\system32\RAMASST.exe
---\\ Autres liens utilisateurs (O4)
O4 - Global Startup: C:\Documents And Settings\All Users\Menu Démarrer\Programmes\Acrobat Reader 5.1.lnk . (.Adobe Systems Incorporated.) -- C:\Program Files\Adobe\Acrobat 5.0\Reader\AcroRd32.exe
O4 - Global Startup: C:\Documents And Settings\All Users\Menu Démarrer\Programmes\Apple Software Update.lnk . (.Pas de propriétaire.) -- C:\WINDOWS\Installer\{C41300B9-185D-475E-BFEC-39EF732F19B1}\AppleSoftwareUpdateIco.exe
O4 - Global Startup: C:\Documents And Settings\All Users\Menu Démarrer\Programmes\Inscription de Toshiba.lnk . (.Microsoft Corporation.) -- C:\WINDOWS\system32\oobe\msoobe.exe
O4 - Global Startup: C:\Documents And Settings\All Users\Menu Démarrer\Programmes\Lisez Moi.lnk . (.Pas de propriétaire.) -- C:\Lisez Moi.htm
O4 - Global Startup: C:\Documents And Settings\All Users\Menu Démarrer\Programmes\MSN.lnk . (.Microsoft Corporation.) -- C:\Program Files\MSN\MSNCoreFiles\Install\msnsusii.exe
O4 - Global Startup: C:\Documents And Settings\All Users\Menu Démarrer\Programmes\Vuze.lnk . (.Vuze Inc..) -- C:\Program Files\Vuze\Azureus.exe
O4 - Global Startup: C:\Documents And Settings\All Users\Menu Démarrer\Programmes\Windows Messenger.lnk . (.Microsoft Corporation.) -- C:\Program Files\Messenger\msmsgs.exe
O4 - Global Startup: C:\Documents And Settings\All Users\Menu Démarrer\Programmes\Windows Movie Maker.lnk . (.Microsoft Corporation.) -- C:\Program Files\Movie Maker\moviemk.exe
O4 - Global Startup: C:\Documents And Settings\Natalia\Menu Démarrer\Programmes\Assistance à distance.lnk . (.Microsoft Corporation.) -- C:\WINDOWS\system32\rcimlby.exe
O4 - Global Startup: C:\Documents And Settings\Natalia\Menu Démarrer\Programmes\Internet Explorer.lnk . (.Microsoft Corporation.) -- C:\Program Files\Internet Explorer\iexplore.exe
O4 - Global Startup: C:\Documents And Settings\Natalia\Menu Démarrer\Programmes\Outlook Express.lnk . (.Microsoft Corporation.) -- C:\Program Files\Outlook Express\msimn.exe
O4 - Global Startup: C:\Documents And Settings\Natalia\Menu Démarrer\Programmes\Windows Media Player.lnk . (.Microsoft Corporation.) -- C:\Program Files\Windows Media Player\wmplayer.exe
---\\ Lignes supplémentaires dans le menu contextuel d'Internet Explorer (O8)
O8 - Extra context menu item: E&xporter vers Microsoft Excel . (.Microsoft Corporation - Microsoft Office Excel.) -- C:\PROGRA~1\MICROS~2\OFFICE11\EXCEL.exe
---\\ Boutons situés sur la barre d'outils principale d'Internet Explorer (O9)
O9 - Extra button: Recherche - {92780B25-18CC-41C8-B9BE-3C9C571A8263} . (.Pas de propriétaire - Pas de description.) -- C:\PROGRA~1\MICROS~2\OFFICE11\REFBARH.ICO
O9 - Extra 'Tools' menuitem: Spybot - Search & Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} . (.not file.) - (.not file.)
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} . (.not file.) - (.not file.)
O9 - Extra button: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} . (.Microsoft Corporation - Windows Messenger.) -- C:\Program Files\Messenger\msmsgs.exe
---\\ Winsock hijacker (Layered Service Provider) (O10)
O10 - WLSP:\000000000001\Winsock LSP File . (.Microsoft Corporation - Fournisseur de service Sockets 2.0 de Microsoft Windows.) -- C:\WINDOWS\system32\mswsock.dll
O10 - WLSP:\000000000002\Winsock LSP File . (.Microsoft Corporation - LDAP RnR Provider DLL.) -- C:\WINDOWS\system32\winrnr.dll
O10 - WLSP:\000000000003\Winsock LSP File . (.Microsoft Corporation - Fournisseur de service Sockets 2.0 de Microsoft Windows.) -- C:\WINDOWS\system32\mswsock.dll
O10 - WLSP:\000000000004\Winsock LSP File . (.Apple Inc. - Bonjour Namespace Provider.) -- C:\Program Files\Bonjour\mdnsNSP.dll
---\\ Piratage de l'Option 'Rétablir les paramètres Web' (O14)
O14 - IERESET.INF: START_PAGE_URL=START_PAGE_URL=http://www.microsoft.com/isapi/redir.dll?prd=ie&pver=6&ar=msnhome
---\\ Objets ActiveX (Downloaded Program Files)(O16)
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab
---\\ Modification Domaine/Adresses DNS (O17)
O17 - HKLM\System\CCS\Services\Tcpip\..\{229E9A80-3F62-4CFB-9898-411C10E28864}: NameServer = 4.2.2.1,4.2.2.2
O17 - HKLM\System\CS1\Services\Tcpip\..\{229E9A80-3F62-4CFB-9898-411C10E28864}: NameServer = 4.2.2.1,4.2.2.2
O17 - HKLM\System\CS2\Services\Tcpip\..\{229E9A80-3F62-4CFB-9898-411C10E28864}: NameServer = 4.2.2.1,4.2.2.2
O17 - HKLM\System\CCS\Services\Tcpip\..\{229E9A80-3F62-4CFB-9898-411C10E28864}: DhcpNameServer = 192.168.2.1
O17 - HKLM\System\CS1\Services\Tcpip\..\{229E9A80-3F62-4CFB-9898-411C10E28864}: DhcpNameServer = 192.168.2.1
O17 - HKLM\System\CCS\Services\Tcpip\..\{229E9A80-3F62-4CFB-9898-411C10E28864}: DhcpDomain = Belkin
O17 - HKLM\System\CS1\Services\Tcpip\..\{229E9A80-3F62-4CFB-9898-411C10E28864}: DhcpDomain = Belkin
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.2.1
---\\ Protocole additionnel et piratage de protocole (O18)
O18 - Handler: bw+0 - {d8d8f302-2a5d-4112-a8b7-3d7cc98559ef} . (.Logitech - Logitech Desktop Messenger.) -- C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Handler: bw+0s - {d8d8f302-2a5d-4112-a8b7-3d7cc98559ef} . (.Logitech - Logitech Desktop Messenger.) -- C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Handler: bw-0 - {d8d8f302-2a5d-4112-a8b7-3d7cc98559ef} . (.Logitech - Logitech Desktop Messenger.) -- C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Handler: bw-0s - {d8d8f302-2a5d-4112-a8b7-3d7cc98559ef} . (.Logitech - Logitech Desktop Messenger.) -- C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Handler: bw00 - {d8d8f302-2a5d-4112-a8b7-3d7cc98559ef} . (.Logitech - Logitech Desktop Messenger.) -- C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Handler: bw00s - {d8d8f302-2a5d-4112-a8b7-3d7cc98559ef} . (.Logitech - Logitech Desktop Messenger.) -- C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Handler: bw10 - {d8d8f302-2a5d-4112-a8b7-3d7cc98559ef} . (.Logitech - Logitech Desktop Messenger.) -- C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Handler: bw10s - {d8d8f302-2a5d-4112-a8b7-3d7cc98559ef} . (.Logitech - Logitech Desktop Messenger.) -- C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Handler: bw20 - {d8d8f302-2a5d-4112-a8b7-3d7cc98559ef} . (.Logitech - Logitech Desktop Messenger.) -- C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Handler: bw20s - {d8d8f302-2a5d-4112-a8b7-3d7cc98559ef} . (.Logitech - Logitech Desktop Messenger.) -- C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Handler: bw30 - {d8d8f302-2a5d-4112-a8b7-3d7cc98559ef} . (.Logitech - Logitech Desktop Messenger.) -- C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Handler: bw30s - {d8d8f302-2a5d-4112-a8b7-3d7cc98559ef} . (.Logitech - Logitech Desktop Messenger.) -- C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Handler: bw40 - {d8d8f302-2a5d-4112-a8b7-3d7cc98559ef} . (.Logitech - Logitech Desktop Messenger.) -- C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Handler: bw40s - {d8d8f302-2a5d-4112-a8b7-3d7cc98559ef} . (.Logitech - Logitech Desktop Messenger.) -- C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Handler: bw50 - {d8d8f302-2a5d-4112-a8b7-3d7cc98559ef} . (.Logitech - Logitech Desktop Messenger.) -- C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Handler: bw50s - {d8d8f302-2a5d-4112-a8b7-3d7cc98559ef} . (.Logitech - Logitech Desktop Messenger.) -- C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Handler: bw60 - {d8d8f302-2a5d-4112-a8b7-3d7cc98559ef} . (.Logitech - Logitech Desktop Messenger.) -- C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Handler: bw60s - {d8d8f302-2a5d-4112-a8b7-3d7cc98559ef} . (.Logitech - Logitech Desktop Messenger.) -- C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Handler: bw70 - {d8d8f302-2a5d-4112-a8b7-3d7cc98559ef} . (.Logitech - Logitech Desktop Messenger.) -- C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Handler: bw70s - {d8d8f302-2a5d-4112-a8b7-3d7cc98559ef} . (.Logitech - Logitech Desktop Messenger.) -- C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Handler: bw80 - {d8d8f302-2a5d-4112-a8b7-3d7cc98559ef} . (.Logitech - Logitech Desktop Messenger.) -- C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Handler: bw80s - {d8d8f302-2a5d-4112-a8b7-3d7cc98559ef} . (.Logitech - Logitech Desktop Messenger.) -- C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Handler: bw90 - {d8d8f302-2a5d-4112-a8b7-3d7cc98559ef} . (.Logitech - Logitech Desktop Messenger.) -- C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Handler: bw90s - {d8d8f302-2a5d-4112-a8b7-3d7cc98559ef} . (.Logitech - Logitech Desktop Messenger.) -- C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Handler: bwa0 - {d8d8f302-2a5d-4112-a8b7-3d7cc98559ef} . (.Logitech - Logitech Desktop Messenger.) -- C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Handler: bwa0s - {d8d8f302-2a5d-4112-a8b7-3d7cc98559ef} . (.Logitech - Logitech Desktop Messenger.) -- C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Handler: bwb0 - {d8d8f302-2a5d-4112-a8b7-3d7cc98559ef} . (.Logitech - Logitech Desktop Messenger.) -- C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Handler: bwb0s - {d8d8f302-2a5d-4112-a8b7-3d7cc98559ef} . (.Logitech - Logitech Desktop Messenger.) -- C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Handler: bwc0 - {d8d8f302-2a5d-4112-a8b7-3d7cc98559ef} . (.Logitech - Logitech Desktop Messenger.) -- C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Handler: bwc0s - {d8d8f302-2a5d-4112-a8b7-3d7cc98559ef} . (.Logitech - Logitech Desktop Messenger.) -- C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Handler: bwd0 - {d8d8f302-2a5d-4112-a8b7-3d7cc98559ef} . (.Logitech - Logitech Desktop Messenger.) -- C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Handler: bwd0s - {d8d8f302-2a5d-4112-a8b7-3d7cc98559ef} . (.Logitech - Logitech Desktop Messenger.) -- C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Handler: bwe0 - {d8d8f302-2a5d-4112-a8b7-3d7cc98559ef} . (.Logitech - Logitech Desktop Messenger.) -- C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Handler: bwe0s - {d8d8f302-2a5d-4112-a8b7-3d7cc98559ef} . (.Logitech - Logitech Desktop Messenger.) -- C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Handler: bwf0 - {d8d8f302-2a5d-4112-a8b7-3d7cc98559ef} . (.Logitech - Logitech Desktop Messenger.) -- C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Handler: bwf0s - {d8d8f302-2a5d-4112-a8b7-3d7cc98559ef} . (.Logitech - Logitech Desktop Messenger.) -- C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Handler: bwfile-8876480 - {9462A756-7B47-47BC-8C80-C34B9B80B32B} . (.Logitech - Logitech Desktop Messenger.) -- C:\Program Files\Logitech\Desktop Messenger\8876480\Program\GAPlugProtocol-8876480.dll
O18 - Handler: bwg0 - {d8d8f302-2a5d-4112-a8b7-3d7cc98559ef} . (.Logitech - Logitech Desktop Messenger.) -- C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Handler: bwg0s - {d8d8f302-2a5d-4112-a8b7-3d7cc98559ef} . (.Logitech - Logitech Desktop Messenger.) -- C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Handler: bwh0 - {d8d8f302-2a5d-4112-a8b7-3d7cc98559ef} . (.Logitech - Logitech Desktop Messenger.) -- C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Handler: bwh0s - {d8d8f302-2a5d-4112-a8b7-3d7cc98559ef} . (.Logitech - Logitech Desktop Messenger.) -- C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Handler: bwi0 - {d8d8f302-2a5d-4112-a8b7-3d7cc98559ef} . (.Logitech - Logitech Desktop Messenger.) -- C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Handler: bwi0s - {d8d8f302-2a5d-4112-a8b7-3d7cc98559ef} . (.Logitech - Logitech Desktop Messenger.) -- C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Handler: bwj0 - {d8d8f302-2a5d-4112-a8b7-3d7cc98559ef} . (.Logitech - Logitech Desktop Messenger.) -- C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Handler: bwj0s - {d8d8f302-2a5d-4112-a8b7-3d7cc98559ef} . (.Logitech - Logitech Desktop Messenger.) -- C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Handler: bwk0 - {d8d8f302-2a5d-4112-a8b7-3d7cc98559ef} . (.Logitech - Logitech Desktop Messenger.) -- C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Handler: bwk0s - {d8d8f302-2a5d-4112-a8b7-3d7cc98559ef} . (.Logitech - Logitech Desktop Messenger.) -- C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Handler: bwl0 - {d8d8f302-2a5d-4112-a8b7-3d7cc98559ef} . (.Logitech - Logitech Desktop Messenger.) -- C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Handler: bwl0s - {d8d8f302-2a5d-4112-a8b7-3d7cc98559ef} . (.Logitech - Logitech Desktop Messenger.) -- C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Handler: bwm0 - {d8d8f302-2a5d-4112-a8b7-3d7cc98559ef} . (.Logitech - Logitech Desktop Messenger.) -- C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Handler: bwm0s - {d8d8f302-2a5d-4112-a8b7-3d7cc98559ef} . (.Logitech - Logitech Desktop Messenger.) -- C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Handler: bwn0 - {d8d8f302-2a5d-4112-a8b7-3d7cc98559ef} . (.Logitech - Logitech Desktop Messenger.) -- C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Handler: bwn0s - {d8d8f302-2a5d-4112-a8b7-3d7cc98559ef} . (.Logitech - Logitech Desktop Messenger.) -- C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Handler: bwo0 - {d8d8f302-2a5d-4112-a8b7-3d7cc98559ef} . (.Logitech - Logitech Desktop Messenger.) -- C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Handler: bwo0s - {d8d8f302-2a5d-4112-a8b7-3d7cc98559ef} . (.Logitech - Logitech Desktop Messenger.) -- C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Handler: bwp0 - {d8d8f302-2a5d-4112-a8b7-3d7cc98559ef} . (.Logitech - Logitech Desktop Messenger.) -- C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Handler: bwp0s - {d8d8f302-2a5d-4112-a8b7-3d7cc98559ef} . (.Logitech - Logitech Desktop Messenger.) -- C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Handler: bwq0 - {d8d8f302-2a5d-4112-a8b7-3d7cc98559ef} . (.Logitech - Logitech Desktop Messenger.) -- C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Handler: bwq0s - {d8d8f302-2a5d-4112-a8b7-3d7cc98559ef} . (.Logitech - Logitech Desktop Messenger.) -- C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Handler: bwr0 - {d8d8f302-2a5d-4112-a8b7-3d7cc98559ef} . (.Logitech - Logitech Desktop Messenger.) -- C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Handler: bwr0s - {d8d8f302-2a5d-4112-a8b7-3d7cc98559ef} . (.Logitech - Logitech Desktop Messenger.) -- C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Handler: bws0 - {d8d8f302-2a5d-4112-a8b7-3d7cc98559ef} . (.Logitech - Logitech Desktop Messenger.) -- C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Handler: bws0s - {d8d8f302-2a5d-4112-a8b7-3d7cc98559ef} . (.Logitech - Logitech Desktop Messenger.) -- C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Handler: bwt0 - {d8d8f302-2a5d-4112-a8b7-3d7cc98559ef} . (.Logitech - Logitech Desktop Messenger.) -- C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Handler: bwt0s - {d8d8f302-2a5d-4112-a8b7-3d7cc98559ef} . (.Logitech - Logitech Desktop Messenger.) -- C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Handler: bwu0 - {d8d8f302-2a5d-4112-a8b7-3d7cc98559ef} . (.Logitech - Logitech Desktop Messenger.) -- C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Handler: bwu0s - {d8d8f302-2a5d-4112-a8b7-3d7cc98559ef} . (.Logitech - Logitech Desktop Messenger.) -- C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Handler: bwv0 - {d8d8f302-2a5d-4112-a8b7-3d7cc98559ef} . (.Logitech - Logitech Desktop Messenger.) -- C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Handler: bwv0s - {d8d8f302-2a5d-4112-a8b7-3d7cc98559ef} . (.Logitech - Logitech Desktop Messenger.) -- C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Handler: bww0 - {d8d8f302-2a5d-4112-a8b7-3d7cc98559ef} . (.Logitech - Logitech Desktop Messenger.) -- C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Handler: bww0s - {d8d8f302-2a5d-4112-a8b7-3d7cc98559ef} . (.Logitech - Logitech Desktop Messenger.) -- C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Handler: bwx0 - {d8d8f302-2a5d-4112-a8b7-3d7cc98559ef} . (.Logitech - Logitech Desktop Messenger.) -- C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Handler: bwx0s - {d8d8f302-2a5d-4112-a8b7-3d7cc98559ef} . (.Logitech - Logitech Desktop Messenger.) -- C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Handler: bwy0 - {d8d8f302-2a5d-4112-a8b7-3d7cc98559ef} . (.Logitech - Logitech Desktop Messenger.) -- C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Handler: bwy0s - {d8d8f302-2a5d-4112-a8b7-3d7cc98559ef} . (.Logitech - Logitech Desktop Messenger.) -- C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Handler: bwz0 - {d8d8f302-2a5d-4112-a8b7-3d7cc98559ef} . (.Logitech - Logitech Desktop Messenger.) -- C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Handler: bwz0s - {d8d8f302-2a5d-4112-a8b7-3d7cc98559ef} . (.Logitech - Logitech Desktop Messenger.) -- C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Handler: offline-8876480 - {D8D8F302-2A5D-4112-A8B7-3D7CC98559EF} . (.Logitech - Logitech Desktop Messenger.) -- C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} . (.Skype Technologies - Skype for COM API.) -- C:\PROGRA~1\FICHIE~1\Skype\SKYPE4~1.DLL
---\\ Valeur de Registre AppInit_DLLs et sous-clés Winlogon Notify (autorun) (O20)
O20 - Winlogon Notify: AtiExtEvent . (.ATI Technologies Inc. - ATI External Event Utility DLL Module.) -- C:\Windows\System32\Ati2evxx.dll
O20 - Winlogon Notify: crypt32chain . (.Microsoft Corporation - Crypto API32.) -- C:\Windows\System32\crypt32.dll
O20 - Winlogon Notify: cryptnet . (.Microsoft Corporation - Crypto Network Related API.) -- C:\Windows\System32\cryptnet.dll
O20 - Winlogon Notify: cscdll . (.Microsoft Corporation - Agent réseau hors connexion.) -- C:\Windows\System32\cscdll.dll
O20 - Winlogon Notify: ScCertProp . (.Microsoft Corporation - DLL commune de réception des notifications.) -- C:\Windows\System32\wlnotify.dll
O20 - Winlogon Notify: Schedule . (.Microsoft Corporation - DLL commune de réception des notifications.) -- C:\Windows\System32\wlnotify.dll
O20 - Winlogon Notify: sclgntfy . (.Microsoft Corporation - DLL secondaire de notification de service d.) -- C:\Windows\System32\sclgntfy.dll
O20 - Winlogon Notify: SensLogn . (.Microsoft Corporation - DLL commune de réception des notifications.) -- C:\Windows\System32\WlNotify.dll
O20 - Winlogon Notify: termsrv . (.Microsoft Corporation - DLL commune de réception des notifications.) -- C:\Windows\System32\wlnotify.dll
O20 - Winlogon Notify: wlballoon . (.Microsoft Corporation - DLL commune de réception des notifications.) -- C:\Windows\System32\wlnotify.dll
---\\ Clé de Registre autorun ShellServiceObjectDelayLoad (SSO/SSODL) (O21)
O21 - SSODL: PostBootReminder - {7849596a-48ea-486e-8937-a2a3009f31a9} . (.Microsoft Corporation - DLL commune du shell Windows.) -- C:\WINDOWS\system32\SHELL32.dll
O21 - SSODL: CDBurn - {fbeb8a05-beee-4442-804e-409d6c4515e9} . (.Microsoft Corporation - DLL commune du shell Windows.) -- C:\WINDOWS\system32\SHELL32.dll
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} . (.Microsoft Corporation - Web Site Monitor.) -- C:\WINDOWS\system32\webcheck.dll
O21 - SSODL: SysTray - {35CEC8A3-2BE6-11D2-8773-92E220524153} . (.Microsoft Corporation - Objet du service d'environnement Systray.) -- C:\WINDOWS\system32\stobject.dll
---\\ Clé de Registre autorun SharedTaskScheduler (STS) (O22)
O22 - SharedTaskScheduler: (no name) - {8C7461EF-2B13-11d2-BE35-3078302C2030} . (.Microsoft Corporation - Bibliothèque de l'interface utilisateur du.) -- C:\WINDOWS\system32\browseui.dll
---\\ Liste des services NT non Microsoft et non désactivés (O23)
O23 - Service: (ACS) . (.Pas de propriétaire - Pas de description.) - C:\WINDOWS\system32\ACS.exe
O23 - Service: (Apple Mobile Device) . (.Apple Inc. - MobileDeviceService.) - C:\Program Files\Fichiers communs\Apple\Mobile Device Support\AppleMobileDeviceService.exe
O23 - Service: (Ati HotKey Poller) . (.ATI Technologies Inc. - ATI External Event Utility EXE Module.) - C:\WINDOWS\system32\Ati2evxx.exe
O23 - Service: (avast! Antivirus) . (.AVAST Software - avast! Service.) - C:\Program Files\Alwil Software\Avast5\AvastSvc.exe
O23 - Service: (Bonjour Service) . (.Apple Inc. - Bonjour Service.) - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: (CCALib8) . (.Canon Inc. - Canon Camera Access Library 8.) - C:\Program Files\Canon\CAL\CALMAIN.exe
O23 - Service: (CFSvcs) . (.TOSHIBA CORPORATION - Service of ConfigFree..) - C:\Program Files\TOSHIBA\ConfigFree\CFSvcs.exe
O23 - Service: (DVD-RAM_Service) . (.Matsushita Electric Industrial Co., Ltd. - DVD-RAM Utility Helper Service.) - C:\WINDOWS\system32\DVDRAMSV.exe
O23 - Service: (JavaQuickStarterService) . (.Sun Microsystems, Inc. - Java(TM) Quick Starter Service.) - C:\Program Files\Java\jre6\bin\jqs.exe
O23 - Service: (LVPrcSrv) . (.Logitech Inc. - Logitech LVPrcSrv Module..) - c:\program files\fichiers communs\logitech\lvmvfm\LVPrcSrv.exe
O23 - Service: (LVSrvLauncher) . (.Logitech Inc. - Service Launcher.) - C:\Program Files\Fichiers communs\Logitech\SrvLnch\SrvLnch.exe
---\\ Enumération Active Desktop & MHTML Editor (O24)
O24 - Default MHTML Editor: Last - .(.Pas de propriétaire - Pas de description.) - "C:\Program Files\Microsoft Office\OFFICE11\WINWORD.exe (.not file.)
---\\ Tâches planifiées en automatique (O39)
O39 - APT:Automatic Planified Task - C:\WINDOWS\Tasks\Dzwue.job
O39 - APT:Automatic Planified Task - C:\WINDOWS\Tasks\Ihhfw.job
O39 - APT:Automatic Planified Task - C:\WINDOWS\Tasks\TQQJADD.job
O39 - APT:Automatic Planified Task - C:\WINDOWS\Tasks\ZDJOMGA.job
---\\ Composants installés (ActiveSetup Installed Components) (O40)
O40 - ASIC: Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608500} . (.Sun Microsystems, Inc. - Java(TM) Platform SE binary.) -- C:\Program Files\Java\jre6\bin\regutils.dll
O40 - ASIC: NetMeeting 3.01 - {44BBA842-CC51-11CF-AAFA-00AA00B6015B} . (.Pas de propriétaire - Pas de description.) -- C:\WINDOWS\INF\msnetmtg.inf
O40 - ASIC: Windows Messenger 4.7 - {5945c046-1e7d-11d1-bc44-00c04fd912be} . (.Pas de propriétaire - Pas de description.) -- C:\WINDOWS\INF\msmsgs.inf
O40 - ASIC: Microsoft Windows Media Player - {6BF52A52-394A-11d3-B153-00C04F79FAA6} . (.Pas de propriétaire - Pas de description.) -- C:\WINDOWS\INF\wmp11.inf
O40 - ASIC: Adobe Flash Player - {D27CDB6E-AE6D-11cf-96B8-444553540000} . (.Adobe Systems, Inc. - Adobe Flash Player 10.0 r12.) -- C:\WINDOWS\system32\Macromed\Flash\Flash10a.ocx
---\\ Pilotes lancés au démarrage (O41)
O41 - Driver: (AFD) . (.Microsoft Corporation - Ancillary Function Driver for WinSock.) - C:\WINDOWS\system32\drivers\afd.sys
O41 - Driver: (Cdrom) . (.Microsoft Corporation - SCSI CD-ROM Driver.) - C:\Windows\System32\DRIVERS\cdrom.sys
O41 - Driver: (DLACDBHM) . (.Sonic Solutions - Shared Driver Component.) - C:\Windows\System32\Drivers\DLACDBHM.sys
O41 - Driver: (DLARTL_N) . (.Sonic Solutions - Shared Driver Component.) - C:\Windows\System32\Drivers\DLARTL_N.sys
O41 - Driver: (i8042prt) . (.Microsoft Corporation - Pilote de port i8042.) - C:\Windows\System32\DRIVERS\i8042prt.sys
O41 - Driver: (Imapi) . (.Microsoft Corporation - IMAPI Kernel Driver.) - C:\Windows\System32\DRIVERS\imapi.sys
O41 - Driver: (intelppm) . (.Microsoft Corporation - Pilote de périphérique processeur.) - C:\Windows\System32\DRIVERS\intelppm.sys
O41 - Driver: (IPSec) . (.Microsoft Corporation - IPSec Driver.) - C:\Windows\System32\DRIVERS\ipsec.sys
O41 - Driver: (Kbdclass) . (.Microsoft Corporation - Pilote de la classe Clavier.) - C:\Windows\System32\DRIVERS\kbdclass.sys
O41 - Driver: (meiudf) . (.Matsushita Electric Industrial Co.,Ltd. - DVD-RAM UDF File System Driver.) - C:\Windows\System32\Drivers\meiudf.sys
O41 - Driver: (Mouclass) . (.Microsoft Corporation - Pilote de la classe Souris.) - C:\Windows\System32\DRIVERS\mouclass.sys
O41 - Driver: (MRxSmb) . (.Microsoft Corporation - Windows NT SMB Minirdr.) - C:\Windows\System32\DRIVERS\mrxsmb.sys
O41 - Driver: (NetBIOS) . (.Microsoft Corporation - NetBIOS interface driver.) - C:\Windows\System32\DRIVERS\netbios.sys
O41 - Driver: (NetBT) . (.Microsoft Corporation - MBT Transport driver.) - C:\Windows\System32\DRIVERS\netbt.sys
O41 - Driver: (RasAcd) . (.Microsoft Corporation - RAS Automatic Connection Driver.) - C:\Windows\System32\DRIVERS\rasacd.sys
O41 - Driver: (Rdbss) . (.Microsoft Corporation - Redirected Drive Buffering SubSystem Driver.) - C:\Windows\System32\DRIVERS\rdbss.sys
O41 - Driver: (RDPCDD) . (.Microsoft Corporation - RDP Miniport.) - C:\Windows\System32\DRIVERS\RDPCDD.sys
O41 - Driver: (redbook) . (.Microsoft Corporation - Pilote de filtre audio Livre rouge.) - C:\Windows\System32\DRIVERS\redbook.sys
O41 - Driver: (SrvcSSIOMngr) . (.COMPAL ELECTRONIC INC. - IoManager Application.) - C:\Windows\System32\Drivers\SSIoMngr.sys
O41 - Driver: (Tcpip) . (.Microsoft Corporation - TCP/IP Protocol Driver.) - C:\Windows\System32\DRIVERS\tcpip.sys
O41 - Driver: (TermDD) . (.Microsoft Corporation - Terminal Server Driver.) - C:\Windows\System32\DRIVERS\termdd.sys
O41 - Driver: (TPwSav) . (.TOSHIBA - IO Driver For TOSHIBA Power Saver.) - C:\Windows\System32\Drivers\TPwSav.sys
O41 - Driver: Carte vidéo VGA. (VgaSave) . (.Microsoft Corporation - VGA/Super VGA Video Driver.) - C:\WINDOWS\system32\drivers\vga.sys
---\\ Logiciels installés (O42)
O42 - Logiciel: ALPS Touch Pad Driver - (.Pas de propriétaire.) [HKLM] -- {9F72EF8B-AEC9-4CA5-B483-143980AFD6FD}
O42 - Logiciel: ATI - Utilitaire de désinstallation du logiciel - (.Pas de propriétaire.) [HKLM] -- All ATI Software
O42 - Logiciel: ATI Display Driver - (.Pas de propriétaire.) [HKLM] -- ATI Display Driver
O42 - Logiciel: Adobe Acrobat 5.0 - (.Adobe Systems, Inc..) [HKLM] -- Adobe Acrobat 5.0
O42 - Logiciel: Adobe Flash Player 10 ActiveX - (.Adobe Systems Incorporated.) [HKLM] -- Adobe Flash Player ActiveX
O42 - Logiciel: Adobe Flash Player 10 Plugin - (.Adobe Systems Incorporated.) [HKLM] -- Adobe Flash Player Plugin
O42 - Logiciel: Apple Application Support - (.Apple Inc..) [HKLM] -- {EE6097DD-05F4-4178-9719-D3170BF098E8}
O42 - Logiciel: Apple Mobile Device Support - (.Apple Inc..) [HKLM] -- {308B6AEA-DE50-4666-996D-0FA461719D6B}
O42 - Logiciel: Apple Software Update - (.Apple Inc..) [HKLM] -- {C41300B9-185D-475E-BFEC-39EF732F19B1}
O42 - Logiciel: Assist TOSHIBA - (.Pas de propriétaire.) [HKLM] -- {12B3A009-A080-4619-9A2A-C6DB151D8D67}
O42 - Logiciel: Assistant de connexion Windows Live - (.Microsoft Corporation.) [HKLM] -- {D3116CC7-24DC-4CA3-9CE1-23FED836E9F2}
O42 - Logiciel: Atheros Client Utility - (.Pas de propriétaire.) [HKLM] -- {71D658CF-4E0D-4DA8-AA67-8C0B6F1C01FE}
O42 - Logiciel: Atheros Wireless LAN MiniPCI card Driver - (.Pas de propriétaire.) [HKLM] -- {05832D65-6EDB-4D32-BA78-BCD0E2B91C02}
O42 - Logiciel: Bonjour - (.Apple Inc..) [HKLM] -- {2A981294-F14C-4F0F-9627-D793270922F8}
O42 - Logiciel: CCleaner (remove only) - (.Piriform.) [HKLM] -- CCleaner
O42 - Logiciel: Canon Camera Access Library - (.Canon Inc..) [HKLM] -- CAL
O42 - Logiciel: Canon Camera Support Core Library - (.Canon Inc..) [HKLM] -- CSCLIB
O42 - Logiciel: Canon G.726 WMP-Decoder - (.Canon Inc..) [HKLM] -- Canon G.726 WMP-Decoder
O42 - Logiciel: Canon MovieEdit Task for ZoomBrowser EX - (.Canon Inc..) [HKLM] -- MovieEditTask
O42 - Logiciel: Canon RAW Image Task for ZoomBrowser EX - (.Canon Inc..) [HKLM] -- RAW Image Task
O42 - Logiciel: Canon Utilities CameraWindow - (.Canon Inc..) [HKLM] -- CameraWindowLauncher
O42 - Logiciel: Canon Utilities CameraWindow DC - (.Canon Inc..) [HKLM] -- CameraWindowDC
O42 - Logiciel: Canon Utilities CameraWindow DC_DV 5 for ZoomBrowser EX - (.Canon Inc..) [HKLM] -- CameraWindowDVC5
O42 - Logiciel: Canon Utilities CameraWindow DC_DV 6 for ZoomBrowser EX - (.Canon Inc..) [HKLM] -- CameraWindowDVC6
O42 - Logiciel: Canon Utilities EOS Utility - (.Canon Inc..) [HKLM] -- EOS Utility
O42 - Logiciel: Canon Utilities MyCamera - (.Canon Inc..) [HKLM] -- MyCamera
O42 - Logiciel: Canon Utilities MyCamera DC - (.Canon Inc..) [HKLM] -- MyCameraDC
O42 - Logiciel: Canon Utilities PhotoStitch - (.Canon Inc..) [HKLM] -- PhotoStitch
O42 - Logiciel: Canon Utilities RemoteCapture Task for ZoomBrowser EX - (.Canon Inc..) [HKLM] -- RemoteCaptureTask
O42 - Logiciel: Canon Utilities ZoomBrowser EX - (.Canon Inc..) [HKLM] -- ZoomBrowser EX
O42 - Logiciel: Canon ZoomBrowser EX Memory Card Utility - (.Canon Inc..) [HKLM] -- ZoomBrowser EX Memory Card Utility
O42 - Logiciel: Free Mp3 Wma Converter V 1.81 - (.Pas de propriétaire.) [HKLM] -- Free Mp3 Wma Converter_is1
O42 - Logiciel: Genie Backup Assistant - (.LaCie.) [HKLM] -- {C9A162C1-031F-4EBF-A3E6-C45F7FCCBB9E}_is1
O42 - Logiciel: Gestion d'énergie TOSHIBA - (.Pas de propriétaire.) [HKLM] -- Power Saver
O42 - Logiciel: Hotfix for Microsoft .NET Framework 3.5 SP1 (KB953595) - (.Microsoft Corporation.) [HKLM] -- {CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9}.KB953595
O42 - Logiciel: Hotfix for Microsoft .NET Framework 3.5 SP1 (KB958484) - (.Microsoft Corporation.) [HKLM] -- {CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9}.KB958484
O42 - Logiciel: Hotfix for Windows Media Format 11 SDK (KB929399) - (.Microsoft Corporation.) [HKLM] -- KB929399
O42 - Logiciel: Hotfix for Windows XP (KB954550-v5) - (.Microsoft Corporation.) [HKLM] -- KB954550-v5
O42 - Logiciel: InterVideo WinDVD Creator 2 - (.InterVideo Inc..) [HKLM] -- {2FCE4FC5-6930-40E7-A4F1-F862207424EF}
O42 - Logiciel: InterVideo WinDVD for TOSHIBA - (.InterVideo Inc..) [HKLM] -- {91810AFC-A4F8-4EBA-A5AA-B198BBC81144}
O42 - Logiciel: IrfanView (remov
moment de grace
Messages postés
29042
Date d'inscription
samedi 6 décembre 2008
Statut
Contributeur sécurité
Dernière intervention
18 juillet 2013
2 274
19 déc. 2010 à 17:14
19 déc. 2010 à 17:14
hello
alors lis bien ce qui est écrit là https://forums.commentcamarche.net/forum/affich-20192025-virus-malware-doctor#17
Ad Remover => option NETTOYAGE
et ZHP => passer par ci joint
alors lis bien ce qui est écrit là https://forums.commentcamarche.net/forum/affich-20192025-virus-malware-doctor#17
Ad Remover => option NETTOYAGE
et ZHP => passer par ci joint
ok, j'ai lancé l'option nettoyer et voilà le rapport:
======= RAPPORT D'AD-REMOVER 2.0.0.2,C | UNIQUEMENT XP/VISTA/7 =======
Mis à jour par TeamXscript le 08/12/10 à 10:40
Contact: AdRemover[DOT]contact[AT]gmail[DOT]com
Site web: http://www.teamxscript.org
C:\Program Files\Ad-Remover\main.exe (CLEAN [2]) -> Lancé à 11:22:42 le 19/12/2010, Mode normal
Microsoft Windows XP Édition familiale Service Pack 3 (X86)
Natalia@NOM-8ABC2A6DAF0 ( )
============== ACTION(S) ==============
(!) -- Fichiers temporaires supprimés.
============== SCAN ADDITIONNEL ==============
** Mozilla Firefox Version [3.6.13 (fr)] **
-- C:\Documents and Settings\Natalia\Application Data\Mozilla\FireFox\Profiles\84pz7jj9.default\Prefs.js --
browser.download.lastDir, C:\\Documents and Settings\\Natalia\\Bureau
browser.startup.homepage, google.ca
browser.startup.homepage_override.mstone, rv:1.9.2.13
privacy.popups.showBrowserMessage, false
========================================
** Internet Explorer Version [8.0.6001.18702] **
[HKCU\Software\Microsoft\Internet Explorer\Main]
Default_Page_URL: hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&pver=6&ar=msnhome
Default_Search_URL: hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
Do404Search: 0x01000000
Enable Browser Extensions: yes
Local Page: C:\WINDOWS\system32\blank.htm
Search bar: hxxp://go.microsoft.com/fwlink/?linkid=54896
Show_ToolBar: yes
Start Page: hxxp://fr.msn.com/
Use Custom Search URL: 1
Use Search Asst: no
[HKLM\Software\Microsoft\Internet Explorer\Main]
Default_Page_URL: hxxp://go.microsoft.com/fwlink/?LinkId=54896
Default_Search_URL: hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
Delete_Temp_Files_On_Exit: yes
Local Page: C:\WINDOWS\system32\blank.htm
Search bar: hxxp://search.msn.com/spbasic.htm
Search Page: hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
Start Page: hxxp://fr.msn.com/
[HKLM\Software\Microsoft\Internet Explorer\ABOUTURLS]
Tabs: res://ieframe.dll/tabswelcome.htm
Blank: res://mshtml.dll/blank.htm
========================================
C:\Program Files\Ad-Remover\Quarantine: 30 Fichier(s)
C:\Program Files\Ad-Remover\Backup: 17 Fichier(s)
C:\Ad-Report-CLEAN[2].txt - 19/12/2010 (494 Octet(s))
Fin à: 11:24:08, 19/12/2010
============== E.O.F ==============
Rapport de ZHPDiag v1.27.1421 par Nicolas Coolman, Update du 16/12/2010
Run by Natalia at 2010-12-19 11:29:39
Web site : http://www.premiumorange.com/zeb-help-process/zhpdiag.html
Contact : nicolascoolman@yahoo.fr
---\\ Web Browser
MSIE: Internet Explorer v8.0.6001.18702
MFIE: Mozilla Firefox v3.6.13 (fr) (Defaut)
---\\ System Information
Windows XP Home Edition Service Pack 3 (Build 2600)
Processor: x86 Family 6 Model 13 Stepping 8, GenuineIntel
Operating System: 32 Bits
Boot mode: Normal (Normal boot)
Total RAM: 446 MB (6% free)
System drive C: has 22 GB (39%) free of 56 GB
---\\ Logged in mode
Computer Name: NOM-8ABC2A6DAF0
User Name: Natalia
All Users Names: SUPPORT_388945a0, Natalia, HelpAssistant, ASPNET, Administrateur,
Unselected Option: O1,O45,O61,O62,O65,O80,O82
Logged in as Administrator
---\\ DOS/Devices
C:\ Hard drive, Flash drive, Thumb drive (Free 22 Go of 56 Go)
D:\ CD-ROM drive (Not Inserted)
---\\ Security Center & Tools Informations
[HKLM\SOFTWARE\Microsoft\Security Center] AntiVirusOverride: OK
[HKLM\SOFTWARE\Microsoft\Security Center] AntiVirusDisableNotify: OK
[HKLM\SOFTWARE\Microsoft\Security Center] FirewallDisableNotify: OK
[HKLM\SOFTWARE\Microsoft\Security Center] FirewallOverride: OK
[HKLM\SOFTWARE\Microsoft\Security Center] UpdatesDisableNotify: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\SHOWALL] CheckedValue: OK
---\\ Recherche particulière de fichiers génériques
[MD5.F2317622D29F9FF0F88AEECD5F60F0DD] - (.Microsoft Corporation - Explorateur Windows.) (.2008-04-13 21:34:03.) -- C:\Windows\Explorer.exe [1037824]
[MD5.DD73D6B9F6B4CB630CF35B438B540174] - (.Microsoft Corporation - Application d'ouverture de session Windows NT.) (.2008-04-13 21:34:28.) -- C:\Windows\System32\Winlogon.exe [512000]
[MD5.9F3A2F5AA6875C72BF062C712CFA2674] - (.Microsoft Corporation - IDE/ATAPI Port Driver.) (.2008-04-13 13:40:30.) -- C:\Windows\System32\drivers\atapi.sys [96512]
[MD5.78A08DD6A8D65E697C18E1DB01C5CDCA] - (.Microsoft Corporation - NT File System Driver.) (.2008-04-13 14:15:53.) -- C:\Windows\System32\drivers\ntfs.sys [574976]
---\\ Processus lancés
[MD5.BFA066BECCB7E16F52B819360253DEE0] - (.ATI Technologies Inc. - ATI External Event Utility EXE Module.) -- C:\WINDOWS\system32\Ati2evxx.exe [376832]
[MD5.539802224D334C25AC439FF0518D36CD] - (.Pas de propriétaire - Pas de description.) -- C:\WINDOWS\system32\ACS.exe [36864]
[MD5.B2386A8E66891F7CFEC9F5A03F0F1210] - (.AVAST Software - avast! Service.) -- C:\Program Files\Alwil Software\Avast5\AvastSvc.exe [40384]
[MD5.8A1CA72A90090509D98220E921BD6415] - (.ATI Technologies, Inc. - ATI Desktop Control Panel.) -- C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe [344064]
[MD5.C2EDE68251407CCACABF5E48028626BD] - (.Agere Systems - LtMoh MFC Application.) -- C:\Program Files\ltmoh\Ltmoh.exe [184320]
[MD5.B2ED4020EE2A9446649CE6B0A918C91C] - (.Agere Systems - SoftModem Messaging Applet.) -- C:\WINDOWS\AGRSMMSG.exe [88358]
[MD5.FC1EBDD2C46D0D8B5763BF776ABA2E61] - (.TOSHIBA Corporation - TOSHIBA Virtual Sound Taskbar Module.) -- C:\Program Files\TOSHIBA\Tvs\TvsTray.exe [73728]
[MD5.08835AC90C7A02F55A0D0B1D0397ACAE] - (.COMPAL ELECTRONIC INC. - TOSHIBA HotKey Utility.) -- C:\Program Files\TOSHIBA\E-KEY\CeEKey.exe [671744]
[MD5.8EBBF7E508EC363BD6933809D17A43A7] - (.Alps Electric Co., Ltd. - Alps Pointing-device Driver.) -- C:\Program Files\Apoint2K\Apoint.exe [196608]
[MD5.ECE72DB438B67C5B5504C583B2B04E1B] - (.COMPAL ELECTRONIC INC. - TPTray Application.) -- C:\Program Files\TOSHIBA\TouchPad\TPTray.exe [53248]
[MD5.7109F1B929FD3D3ED73B0A77E5D7B153] - (.TOSHIBA CORPORATION - ConfigFree(TM) Tray.) -- C:\Program Files\TOSHIBA\ConfigFree\NDSTray.exe [962560]
[MD5.FD02F46A78C30F6CFF37C7FE37A16CC5] - (.TOSHIBA - TOSHIBA Zooming Utility Hotkey Hook.) -- C:\WINDOWS\system32\ZoomingHook.exe [24576]
[MD5.3C2D6A88715F7426102B2AC2B1F9CBCB] - (.Sonic Solutions - Drive Letter Access Component.) -- C:\WINDOWS\System32\DLA\DLACTRLW.EXE [122940]
[MD5.212C55204E9D1120C4A00546C202B396] - (.TOSHIBA - PadTouch Main.) -- C:\Program Files\TOSHIBA\Touch and Launch\PadExe.exe [1077322]
[MD5.81905148A21D919000778F8539F7B600] - (.TOSHIBA Corporation - Pas de description.) -- C:\WINDOWS\system32\TPSMain.exe [266240]
[MD5.D111A34A969377A8679C114090608B95] - (.TOSHIBA Corporation - SmoothView.) -- C:\Program Files\TOSHIBA\Utilitaire de zoom TOSHIBA\SmoothView.exe [118784]
[MD5.03E0CDD5CCF362593EA52B0151750D0A] - (.Logitech Inc. - Logitech Communications Manager.) -- C:\Program Files\Fichiers communs\Logitech\LComMgr\Communications_Helper.exe [497200]
[MD5.6C645D7DF2462697BC7A086E328607D5] - (.Pas de propriétaire - Pas de description.) -- C:\Program Files\Logitech\QuickCam10\QuickCam10.exe [614960]
[MD5.4ADA227EC4E1BBAD144EAABF02221853] - (.Genie-soft - Genie Backup Agent.) -- C:\Program Files\LaCie\Genie Backup Assistant\GBMAgent.exe [189056]
[MD5.E0D6538B62C79FCBF0B27F95FAF3208B] - (.Sun Microsystems, Inc. - Java(TM) Update Scheduler.) -- C:\Program Files\Fichiers communs\Java\Java Update\jusched.exe [246504]
[MD5.38AE7A942FC3FAB1C6A27EB65DE8F827] - (.AVAST Software - avast! Antivirus.) -- C:\PROGRA~1\ALWILS~1\Avast5\avastUI.exe [2837864]
[MD5.2DFCB2393528446AEB9FB861A8FC39AB] - (.Apple Inc. - iTunesHelper.) -- C:\Program Files\iTunes\iTunesHelper.exe [421160]
[MD5.FEBC1591E5C0DC87EF9CF3D657B65FC2] - (.TOSHIBA - CD/DVD Drive Acoustic Silencer.) -- C:\Program Files\TOSHIBA\TOSCDSPD\toscdspd.exe [65536]
[MD5.390679F7A217A5E73D756276C40AE887] - (.Safer-Networking Ltd. - System settings protector.) -- C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe [2260480]
[MD5.CCA1B81492B40890E44B2B20A780EE1F] - (.Alps Electric Co., Ltd. - Alps Pointing-device Driver for Windows NT/.) -- C:\Program Files\Apoint2K\Apntex.exe [45056]
[MD5.94782C50F682CCC02C1FF4360976A5C8] - (.Logitech - Logitech Desktop Messenger.) -- C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe [36864]
[MD5.1047FAB7E9BFAC6D4E40C4E52CA9B170] - (.TOSHIBA Corporation - Pas de description.) -- C:\WINDOWS\system32\TPSBattM.exe [40960]
[MD5.5648152AD2CCAB0265EAB9711755F484] - (.Matsushita Electric Industrial Co., Ltd. - CD Burning of Windows XP disabling tool for.) -- C:\WINDOWS\system32\RAMASST.exe [155648]
[MD5.F63465BBCE7059EA281ECAFF7590E1E8] - (.Logitech Inc. - LVCom Server.) -- C:\Program Files\Fichiers communs\Logitech\LComMgr\LVComSX.exe [243248]
[MD5.93AD0B78C7357A05F50E594EC7C22300] - (.Pas de propriétaire - Pas de description.) -- C:\WINDOWS\system32\rundll32.exe [33792]
[MD5.44B3B997E25C5D9A81D6C501451A96D7] - (.Logitech Inc. - Logitech LVPrcSrv Module..) -- c:\program files\fichiers communs\logitech\lvmvfm\LVPrcSrv.exe [99888]
[MD5.018857EAD9A077A56AEDFC0E5EF7A24A] - (.Apple Inc. - MobileDeviceService.) -- C:\Program Files\Fichiers communs\Apple\Mobile Device Support\AppleMobileDeviceService.exe [37664]
[MD5.F832F1505AD8B83474BD9A5B1B985E01] - (.Apple Inc. - Bonjour Service.) -- C:\Program Files\Bonjour\mDNSResponder.exe [345376]
[MD5.3CB0CC8879956C187E87E18634EE5164] - (.TOSHIBA CORPORATION - Service of ConfigFree..) -- C:\Program Files\TOSHIBA\ConfigFree\CFSvcs.exe [40960]
[MD5.C9FFBD6B8EDC46CD3D13E3C6DB914FB7] - (.Matsushita Electric Industrial Co., Ltd. - DVD-RAM Utility Helper Service.) -- C:\WINDOWS\system32\DVDRAMSV.exe [110592]
[MD5.77AC10DB097DFD0CD3071465B644D0AB] - (.Sun Microsystems, Inc. - Java(TM) Quick Starter Service.) -- C:\Program Files\Java\jre6\bin\jqs.exe [153376]
[MD5.8EF654045E518AC00E52E7A1E2D3AD70] - (.Canon Inc. - Canon Camera Access Library 8.) -- C:\Program Files\Canon\CAL\CALMAIN.exe [96370]
[MD5.0CA8C2E721617AA2F923A8151C96FB33] - (.Apple Inc. - iPodService Module (32-bit).) -- C:\Program Files\iPod\bin\iPodService.exe [820008]
[MD5.2DCC5C800F51D487178814CA9EADA181] - (.Microsoft Corporation - Bloc-notes.) -- C:\WINDOWS\system32\NOTEPAD.EXE [70656]
[MD5.F9A1CF5B5B2E9E17A2DDEB198337F97C] - (.Logitech Inc. - Logitech Camera Control Interface.) -- C:\Program Files\Logitech\QuickCam10\COCIManager.exe [166448]
[MD5.0E20A3213ED010FC4997D1EF48082ABC] - (.Mozilla Corporation - Firefox.) -- C:\Program Files\Mozilla Firefox\firefox.exe [912344]
[MD5.BA9A09CF1B9503C363617F3748F6D791] - (.Mozilla Corporation - Plugin Container for Firefox.) -- C:\Program Files\Mozilla Firefox\plugin-container.exe [16856]
[MD5.806A8E35707BEA615B209001E544F0F0] - (.Nicolas Coolman - Diagnostic Tool.) -- C:\Program Files\ZHPDiag\ZHPDiag.exe [620544]
---\\ Mozilla Firefox, Plugins,Demarrage,Recherche,Extensions (P2,M0,M1,M2)
P2 - FPN:Firefox Plugin Navigator . (.Sun Microsystems, Inc. - NPRuntime Script Plug-in Library for Java(TM) Deploy.) -- C:\Program Files\Mozilla Firefox\Plugins\npdeploytk.dll
P2 - FPN:Firefox Plugin Navigator . (.mozilla.org - Default Plug-in.) -- C:\Program Files\Mozilla Firefox\Plugins\npnul32.dll
P2 - FPN:Firefox Plugin Navigator . (.Microsoft Corporation - Office Plugin for Netscape Navigator.) -- C:\Program Files\Mozilla Firefox\Plugins\NPOFFICE.DLL
P2 - FPN:Firefox Plugin Navigator . (.Apple Inc. - The QuickTime Plugin allows you to view a wide variety of multimedia c.) -- C:\Program Files\Mozilla Firefox\Plugins\npqtplugin.dll
P2 - FPN:Firefox Plugin Navigator . (.Apple Inc. - The QuickTime Plugin allows you to view a wide variety of multimedia c.) -- C:\Program Files\Mozilla Firefox\Plugins\npqtplugin2.dll
P2 - FPN:Firefox Plugin Navigator . (.Apple Inc. - The QuickTime Plugin allows you to view a wide variety of multimedia c.) -- C:\Program Files\Mozilla Firefox\Plugins\npqtplugin3.dll
P2 - FPN:Firefox Plugin Navigator . (.Apple Inc. - The QuickTime Plugin allows you to view a wide variety of multimedia c.) -- C:\Program Files\Mozilla Firefox\Plugins\npqtplugin4.dll
P2 - FPN:Firefox Plugin Navigator . (.Apple Inc. - The QuickTime Plugin allows you to view a wide variety of multimedia c.) -- C:\Program Files\Mozilla Firefox\Plugins\npqtplugin5.dll
P2 - FPN:Firefox Plugin Navigator . (.Apple Inc. - The QuickTime Plugin allows you to view a wide variety of multimedia c.) -- C:\Program Files\Mozilla Firefox\Plugins\npqtplugin6.dll
P2 - FPN:Firefox Plugin Navigator . (.Apple Inc. - The QuickTime Plugin allows you to view a wide variety of multimedia c.) -- C:\Program Files\Mozilla Firefox\Plugins\npqtplugin7.dll
P2 - FPN: [HKLM] [@adobe.com/FlashPlayer] - (.Pas de propriétaire - Pas de description.) -- C:\WINDOWS\system32\Macromed\Flash\NPSWF32.dll
P2 - FPN: [HKLM] [@Apple.com/iTunes,version=1.0] - (.Pas de propriétaire - Pas de description.) -- C:\Program Files\iTunes\Mozilla Plugins\npitunes.dll
P2 - FPN: [HKLM] [@microsoft.com/WLPG,version=14.0.8081.0709] - (.Microsoft Corporation - NPWLPG.) -- C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll
P2 - FPN: [HKLM] [@microsoft.com/WPF,version=3.5] - (.Microsoft Corporation - Windows Presentation Foundation (WPF) plug-in for Mozilla browsers.) -- c:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll
P2 - FPN: [HKCU] [@adobe.com/Acrobat,version=5.1] - (.Adobe Systems Inc. - Adobe Acrobat Plug-In Version 5.10 for Netscape.) -- C:\Program Files\Adobe\Acrobat 5.0\Reader\Browser\nppdf32.dll
M0 - MFSP: prefs.js [Natalia - 84pz7jj9.default] google.ca
M2 - MFEP: prefs.js [Natalia - 84pz7jj9.default\en-US@dictionaries.addons.mozilla.org] [] United States English Spellchecker v5.0.1 (.Giuliano Masseroni.)
M2 - MFEP: prefs.js [Natalia - 84pz7jj9.default\{ba14329e-9550-4989-b3f2-9732e92d17cc}] [] Vuze Remote Toolbar v2.7.2.0 (.Conduit Ltd..)
---\\ Internet Explorer, Démarrage,Recherche,URSearchHook (R0,R1,R3)
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.msn.com/fr-fr
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.msn.com/fr-fr
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.microsoft.com/isapi/redir.dll?prd=ie&pver=6&ar=msnhome
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Extensions Off Page = about:NoAdd-ons
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Security Risk Page = about:SecurityRisk
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyEnable = 0
R3 - URLSearchHook: Microsoft Url Search Hook - {CFBFAE00-17A6-11D0-99CB-00C04FD64497} . (.Microsoft Corporation - Internet Explorer.) (8.00.6001.18812 (longhorn_ie8_gdr.090717-2100)) -- C:\WINDOWS\system32\ieframe.dll
R3 - URLSearchHook: Vuze Remote Toolbar - {ba14329e-9550-4989-b3f2-9732e92d17cc} . (.Conduit Ltd. - Conduit Toolbar.) (6.2.2.4) -- C:\Program Files\Vuze_Remote\tbVuz0.dll
---\\ Modification d'une valeur Ini (Changed inifile value, mapped to Registry) (F2)
F2 - REG:system.ini: UserInit=C:\WINDOWS\system32\userinit.exe,
F2 - REG:system.ini: VMApplet=rundll32 shell32,Control_RunDLL "sysdm.cpl"
---\\ Browser Helper Objects de navigateur (O2)
O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} . (.Pas de propriétaire - AcroIEHelper Module.) -- C:\Program Files\Adobe\Acrobat 5.0\Reader\ActiveX\AcroIEHelper.ocx
O2 - BHO: (no name) - {201f27d4-3704-41d6-89c1-aa35e39143ed} Clé orpheline
O2 - BHO: (no name) - {30F9B915-B755-4826-820B-08FBA6BD249D} Clé orpheline
O2 - BHO: Spybot-S&D IE Protection - {53707962-6F74-2D53-2644-206D7942484F} . (.Safer Networking Limited - SBSD IE Protection.) -- C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O2 - BHO: (no name) - {5C255C8A-E604-49b4-9D64-90988571CECB} Clé orpheline
O2 - BHO: DriveLetterAccess - {5CA3D70E-1895-11CF-8E15-001234567890} . (.Sonic Solutions - Drive Letter Access Component.) -- C:\WINDOWS\System32\DLA\DLASHX_W.DLL
O2 - BHO: Search Helper - {6EBF7485-159F-4bff-A14F-B9E3AAC4465B} . (.Microsoft Corporation - Search Helper for Internet Explorer.) -- C:\Program Files\Microsoft\Search Enhancement Pack\Search Helper\SEPsearchhelperie.dll
O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} . (.Microsoft Corporation - WindowsLiveLogin.dll.) -- C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Vuze Remote Toolbar - {ba14329e-9550-4989-b3f2-9732e92d17cc} . (.Conduit Ltd. - Conduit Toolbar.) -- C:\Program Files\Vuze_Remote\tbVuz0.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} . (.Sun Microsystems, Inc. - Java(TM) Platform SE binary.) -- C:\Program Files\Java\jre6\bin\jp2ssv.dll
O2 - BHO: Windows Live Toolbar Helper - {E15A8DC0-8516-42A1-81EA-DC94EC1ACF10} . (.Microsoft Corporation - Windows Live Toolbar Core.) -- C:\Program Files\Windows Live\Toolbar\wltcore.dll
O2 - BHO: JQSIEStartDetectorImpl - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} . (.Sun Microsystems, Inc. - Java(TM) Quick Starter binary.) -- C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll
---\\ Internet Explorer Toolbars (O3)
O3 - Toolbar: &Windows Live Toolbar - {21FA44EF-376D-4D53-9B0F-8A89D3229068} . (.Microsoft Corporation - Windows Live Toolbar Core.) -- C:\Program Files\Windows Live\Toolbar\wltcore.dll
O3 - Toolbar: Vuze Remote Toolbar - {ba14329e-9550-4989-b3f2-9732e92d17cc} . (.Conduit Ltd. - Conduit Toolbar.) -- C:\Program Files\Vuze_Remote\tbVuz0.dll
---\\ Applications démarrées par registre & par dossier (O4)
O4 - HKLM\..\Run: [ATIPTA] . (.ATI Technologies, Inc. - ATI Desktop Control Panel.) -- C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe
O4 - HKLM\..\Run: [LtMoh] . (.Agere Systems - LtMoh MFC Application.) -- C:\Program Files\ltmoh\Ltmoh.exe
O4 - HKLM\..\Run: [AGRSMMSG] . (.Agere Systems - SoftModem Messaging Applet.) -- C:\Windows\AGRSMMSG.exe
O4 - HKLM\..\Run: [Tvs] . (.TOSHIBA Corporation - TOSHIBA Virtual Sound Taskbar Module.) -- C:\Program Files\TOSHIBA\Tvs\TvsTray.exe
O4 - HKLM\..\Run: [CeEKEY] . (.COMPAL ELECTRONIC INC. - TOSHIBA HotKey Utility.) -- C:\Program Files\TOSHIBA\E-KEY\CeEKey.exe
O4 - HKLM\..\Run: [Apoint] . (.Alps Electric Co., Ltd. - Alps Pointing-device Driver.) -- C:\Program Files\Apoint2K\Apoint.exe
O4 - HKLM\..\Run: [TPNF] . (.COMPAL ELECTRONIC INC. - TPTray Application.) -- C:\Program Files\TOSHIBA\TouchPad\TPTray.exe
O4 - HKLM\..\Run: [NDSTray.exe] NDSTray.exe
O4 - HKLM\..\Run: [Zooming] . (.TOSHIBA - TOSHIBA Zooming Utility Hotkey Hook.) -- C:\Windows\System32\ZoomingHook.exe
O4 - HKLM\..\Run: [HWSetup] . (.TOSHIBA CO.,LTD. - HWSetup.) -- C:\Program Files\TOSHIBA\TOSHIBA Applet\HWSetup.exe
O4 - HKLM\..\Run: [DLA] . (.Sonic Solutions - Drive Letter Access Component.) -- C:\WINDOWS\System32\DLA\DLACTRLW.exe
O4 - HKLM\..\Run: [PadTouch] . (.TOSHIBA - PadTouch Main.) -- C:\Program Files\TOSHIBA\Touch and Launch\Padexe.exe
O4 - HKLM\..\Run: [SVPWUTIL] . (.TOSHIBA - SVPWUTIL Application.) -- C:\Program Files\Toshiba\Windows Utilities\SVPWUTIL.exe
O4 - HKLM\..\Run: [TPSMain] . (.TOSHIBA Corporation - Pas de description.) -- C:\Windows\System32\TPSMain.exe
O4 - HKLM\..\Run: [SmoothView] . (.TOSHIBA Corporation - SmoothView.) -- C:\Program Files\TOSHIBA\Utilitaire de zoom TOSHIBA\SmoothView.exe
O4 - HKLM\..\Run: [LogitechCommunicationsManager] . (.Logitech Inc. - Logitech Communications Manager.) -- C:\Program Files\Fichiers communs\Logitech\LComMgr\Communications_Helper.exe
O4 - HKLM\..\Run: [LogitechQuickCamRibbon] . (.Pas de propriétaire - Pas de description.) -- C:\Program Files\Logitech\QuickCam10\QuickCam10.exe
O4 - HKLM\..\Run: [AppleSyncNotifier] . (.Apple Inc. - AppleSyncNotifier.) -- C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleSyncNotifier.exe
O4 - HKLM\..\Run: [GBMLite8AgentLaCie] . (.Genie-soft - Genie Backup Agent.) -- C:\Program Files\LaCie\Genie Backup Assistant\GBMAgent.exe
O4 - HKLM\..\Run: [SunJavaUpdateSched] . (.Sun Microsystems, Inc. - Java(TM) Update Scheduler.) -- C:\Program Files\Fichiers communs\Java\Java Update\jusched.exe
O4 - HKLM\..\Run: [avast5] . (.AVAST Software - avast! Antivirus.) -- C:\PROGRA~1\ALWILS~1\Avast5\avastUI.exe
O4 - HKLM\..\Run: [QuickTime Task] . (.Apple Inc. - QuickTime Task.) -- C:\Program Files\QuickTime\qttask.exe
O4 - HKLM\..\Run: [iTunesHelper] . (.Apple Inc. - iTunesHelper.) -- C:\Program Files\iTunes\iTunesHelper.exe
O4 - HKCU\..\Run: [CTFMON.EXE] . (.Microsoft Corporation - CTF Loader.) -- C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [TOSCDSPD] . (.TOSHIBA - CD/DVD Drive Acoustic Silencer.) -- C:\Program Files\TOSHIBA\TOSCDSPD\toscdspd.exe
O4 - HKCU\..\Run: [SpybotSD TeaTimer] . (.Safer-Networking Ltd. - System settings protector.) -- C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe
O4 - HKCU\..\Run: [LDM] . (.Logitech - Logitech Desktop Messenger.) -- C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe
O4 - HKCU\..\Run: [GBMLite8AgentLaCie] . (.Genie-soft - Genie Backup Agent.) -- C:\Program Files\LaCie\Genie Backup Assistant\GBMAgent.exe
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] . (.Microsoft Corporation - CTF Loader.) -- C:\WINDOWS\system32\CTFMON.exe
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] . (.Microsoft Corporation - CTF Loader.) -- C:\WINDOWS\system32\CTFMON.exe
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] . (.Microsoft Corporation - CTF Loader.) -- C:\WINDOWS\system32\CTFMON.exe
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] . (.Microsoft Corporation - CTF Loader.) -- C:\WINDOWS\system32\CTFMON.exe
O4 - HKUS\S-1-5-21-1260407420-2676463331-1252240880-1006\..\Run: [CTFMON.EXE] . (.Microsoft Corporation - CTF Loader.) -- C:\WINDOWS\system32\ctfmon.exe
O4 - HKUS\S-1-5-21-1260407420-2676463331-1252240880-1006\..\Run: [TOSCDSPD] . (.TOSHIBA - CD/DVD Drive Acoustic Silencer.) -- C:\Program Files\TOSHIBA\TOSCDSPD\toscdspd.exe
O4 - HKUS\S-1-5-21-1260407420-2676463331-1252240880-1006\..\Run: [SpybotSD TeaTimer] . (.Safer-Networking Ltd. - System settings protector.) -- C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe
O4 - HKUS\S-1-5-21-1260407420-2676463331-1252240880-1006\..\Run: [LDM] . (.Logitech - Logitech Desktop Messenger.) -- C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe
O4 - HKUS\S-1-5-21-1260407420-2676463331-1252240880-1006\..\Run: [GBMLite8AgentLaCie] . (.Genie-soft - Genie Backup Agent.) -- C:\Program Files\LaCie\Genie Backup Assistant\GBMAgent.exe
O4 - Global Startup: C:\Documents And Settings\All Users\Menu Démarrer\Programmes\Démarrage\Lancement rapide de Microsoft Office OneNote 2003.lnk . (.Microsoft Corporation.) -- C:\Program Files\Microsoft Office\OFFICE11\ONENOTEM.EXE
O4 - Global Startup: C:\Documents And Settings\All Users\Menu Démarrer\Programmes\Démarrage\Logitech Desktop Messenger.lnk . (.Logitech.) -- C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LDMConf.exe
O4 - Global Startup: C:\Documents And Settings\All Users\Menu Démarrer\Programmes\Démarrage\RAMASST.lnk . (.Matsushita Electric Industrial Co., Ltd..) -- C:\WINDOWS\system32\RAMASST.exe
---\\ Autres liens utilisateurs (O4)
O4 - Global Startup: C:\Documents And Settings\All Users\Menu Démarrer\Programmes\Acrobat Reader 5.1.lnk . (.Adobe Systems Incorporated.) -- C:\Program Files\Adobe\Acrobat 5.0\Reader\AcroRd32.exe
O4 - Global Startup: C:\Documents And Settings\All Users\Menu Démarrer\Programmes\Apple Software Update.lnk . (.Pas de propriétaire.) -- C:\WINDOWS\Installer\{C41300B9-185D-475E-BFEC-39EF732F19B1}\AppleSoftwareUpdateIco.exe
O4 - Global Startup: C:\Documents And Settings\All Users\Menu Démarrer\Programmes\Inscription de Toshiba.lnk . (.Microsoft Corporation.) -- C:\WINDOWS\system32\oobe\msoobe.exe
O4 - Global Startup: C:\Documents And Settings\All Users\Menu Démarrer\Programmes\Lisez Moi.lnk . (.Pas de propriétaire.) -- C:\Lisez Moi.htm
O4 - Global Startup: C:\Documents And Settings\All Users\Menu Démarrer\Programmes\MSN.lnk . (.Microsoft Corporation.) -- C:\Program Files\MSN\MSNCoreFiles\Install\msnsusii.exe
O4 - Global Startup: C:\Documents And Settings\All Users\Menu Démarrer\Programmes\Vuze.lnk . (.Vuze Inc..) -- C:\Program Files\Vuze\Azureus.exe
O4 - Global Startup: C:\Documents And Settings\All Users\Menu Démarrer\Programmes\Windows Messenger.lnk . (.Microsoft Corporation.) -- C:\Program Files\Messenger\msmsgs.exe
O4 - Global Startup: C:\Documents And Settings\All Users\Menu Démarrer\Programmes\Windows Movie Maker.lnk . (.Microsoft Corporation.) -- C:\Program Files\Movie Maker\moviemk.exe
O4 - Global Startup: C:\Documents And Settings\Natalia\Menu Démarrer\Programmes\Assistance à distance.lnk . (.Microsoft Corporation.) -- C:\WINDOWS\system32\rcimlby.exe
O4 - Global Startup: C:\Documents And Settings\Natalia\Menu Démarrer\Programmes\Internet Explorer.lnk . (.Microsoft Corporation.) -- C:\Program Files\Internet Explorer\iexplore.exe
O4 - Global Startup: C:\Documents And Settings\Natalia\Menu Démarrer\Programmes\Outlook Express.lnk . (.Microsoft Corporation.) -- C:\Program Files\Outlook Express\msimn.exe
O4 - Global Startup: C:\Documents And Settings\Natalia\Menu Démarrer\Programmes\Windows Media Player.lnk . (.Microsoft Corporation.) -- C:\Program Files\Windows Media Player\wmplayer.exe
---\\ Lignes supplémentaires dans le menu contextuel d'Internet Explorer (O8)
O8 - Extra context menu item: E&xporter vers Microsoft Excel . (.Microsoft Corporation - Microsoft Office Excel.) -- C:\PROGRA~1\MICROS~2\OFFICE11\EXCEL.exe
---\\ Boutons situés sur la barre d'outils principale d'Internet Explorer (O9)
O9 - Extra button: Recherche - {92780B25-18CC-41C8-B9BE-3C9C571A8263} . (.Pas de propriétaire - Pas de description.) -- C:\PROGRA~1\MICROS~2\OFFICE11\REFBARH.ICO
O9 - Extra 'Tools' menuitem: Spybot - Search & Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} . (.not file.) - (.not file.)
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} . (.not file.) - (.not file.)
O9 - Extra button: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} . (.Microsoft Corporation - Windows Messenger.) -- C:\Program Files\Messenger\msmsgs.exe
---\\ Winsock hijacker (Layered Service Provider) (O10)
O10 - WLSP:\000000000001\Winsock LSP File . (.Microsoft Corporation - Fournisseur de service Sockets 2.0 de Microsoft Windows.) -- C:\WINDOWS\system32\mswsock.dll
O10 - WLSP:\000000000002\Winsock LSP File . (.Microsoft Corporation - LDAP RnR Provider DLL.) -- C:\WINDOWS\system32\winrnr.dll
O10 - WLSP:\000000000003\Winsock LSP File . (.Microsoft Corporation - Fournisseur de service Sockets 2.0 de Microsoft Windows.) -- C:\WINDOWS\system32\mswsock.dll
O10 - WLSP:\000000000004\Winsock LSP File . (.Apple Inc. - Bonjour Namespace Provider.) -- C:\Program Files\Bonjour\mdnsNSP.dll
---\\ Piratage de l'Option 'Rétablir les paramètres Web' (O14)
O14 - IERESET.INF: START_PAGE_URL=START_PAGE_URL=http://www.microsoft.com/isapi/redir.dll?prd=ie&pver=6&ar=msnhome
---\\ Objets ActiveX (Downloaded Program Files)(O16)
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab
---\\ Modification Domaine/Adresses DNS (O17)
O17 - HKLM\System\CCS\Services\Tcpip\..\{229E9A80-3F62-4CFB-9898-411C10E28864}: NameServer = 4.2.2.1,4.2.2.2
O17 - HKLM\System\CS1\Services\Tcpip\..\{229E9A80-3F62-4CFB-9898-411C10E28864}: NameServer = 4.2.2.1,4.2.2.2
O17 - HKLM\System\CS2\Services\Tcpip\..\{229E9A80-3F62-4CFB-9898-411C10E28864}: NameServer = 4.2.2.1,4.2.2.2
O17 - HKLM\System\CCS\Services\Tcpip\..\{229E9A80-3F62-4CFB-9898-411C10E28864}: DhcpNameServer = 192.168.2.1
O17 - HKLM\System\CS1\Services\Tcpip\..\{229E9A80-3F62-4CFB-9898-411C10E28864}: DhcpNameServer = 192.168.2.1
O17 - HKLM\System\CCS\Services\Tcpip\..\{229E9A80-3F62-4CFB-9898-411C10E28864}: DhcpDomain = Belkin
O17 - HKLM\System\CS1\Services\Tcpip\..\{229E9A80-3F62-4CFB-9898-411C10E28864}: DhcpDomain = Belkin
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.2.1
---\\ Protocole additionnel et piratage de protocole (O18)
O18 - Handler: bw+0 - {d8d8f302-2a5d-4112-a8b7-3d7cc98559ef} . (.Logitech - Logitech Desktop Messenger.) -- C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Handler: bw+0s - {d8d8f302-2a5d-4112-a8b7-3d7cc98559ef} . (.Logitech - Logitech Desktop Messenger.) -- C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Handler: bw-0 - {d8d8f302-2a5d-4112-a8b7-3d7cc98559ef} . (.Logitech - Logitech Desktop Messenger.) -- C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Handler: bw-0s - {d8d8f302-2a5d-4112-a8b7-3d7cc98559ef} . (.Logitech - Logitech Desktop Messenger.) -- C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Handler: bw00 - {d8d8f302-2a5d-4112-a8b7-3d7cc98559ef} . (.Logitech - Logitech Desktop Messenger.) -- C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Handler: bw00s - {d8d8f302-2a5d-4112-a8b7-3d7cc98559ef} . (.Logitech - Logitech Desktop Messenger.) -- C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Handler: bw10 - {d8d8f302-2a5d-4112-a8b7-3d7cc98559ef} . (.Logitech - Logitech Desktop Messenger.) -- C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Handler: bw10s - {d8d8f302-2a5d-4112-a8b7-3d7cc98559ef} . (.Logitech - Logitech Desktop Messenger.) -- C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Handler: bw20 - {d8d8f302-2a5d-4112-a8b7-3d7cc98559ef} . (.Logitech - Logitech Desktop Messenger.) -- C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Handler: bw20s - {d8d8f302-2a5d-4112-a8b7-3d7cc98559ef} . (.Logitech - Logitech Desktop Messenger.) -- C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Handler: bw30 - {d8d8f302-2a5d-4112-a8b7-3d7cc98559ef} . (.Logitech - Logitech Desktop Messenger.) -- C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Handler: bw30s - {d8d8f302-2a5d-4112-a8b7-3d7cc98559ef} . (.Logitech - Logitech Desktop Messenger.) -- C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Handler: bw40 - {d8d8f302-2a5d-4112-a8b7-3d7cc98559ef} . (.Logitech - Logitech Desktop Messenger.) -- C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Handler: bw40s - {d8d8f302-2a5d-4112-a8b7-3d7cc98559ef} . (.Logitech - Logitech Desktop Messenger.) -- C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Handler: bw50 - {d8d8f302-2a5d-4112-a8b7-3d7cc98559ef} . (.Logitech - Logitech Desktop Messenger.) -- C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Handler: bw50s - {d8d8f302-2a5d-4112-a8b7-3d7cc98559ef} . (.Logitech - Logitech Desktop Messenger.) -- C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Handler: bw60 - {d8d8f302-2a5d-4112-a8b7-3d7cc98559ef} . (.Logitech - Logitech Desktop Messenger.) -- C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Handler: bw60s - {d8d8f302-2a5d-4112-a8b7-3d7cc98559ef} . (.Logitech - Logitech Desktop Messenger.) -- C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Handler: bw70 - {d8d8f302-2a5d-4112-a8b7-3d7cc98559ef} . (.Logitech - Logitech Desktop Messenger.) -- C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Handler: bw70s - {d8d8f302-2a5d-4112-a8b7-3d7cc98559ef} . (.Logitech - Logitech Desktop Messenger.) -- C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Handler: bw80 - {d8d8f302-2a5d-4112-a8b7-3d7cc98559ef} . (.Logitech - Logitech Desktop Messenger.) -- C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Handler: bw80s - {d8d8f302-2a5d-4112-a8b7-3d7cc98559ef} . (.Logitech - Logitech Desktop Messenger.) -- C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Handler: bw90 - {d8d8f302-2a5d-4112-a8b7-3d7cc98559ef} . (.Logitech - Logitech Desktop Messenger.) -- C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Handler: bw90s - {d8d8f302-2a5d-4112-a8b7-3d7cc98559ef} . (.Logitech - Logitech Desktop Messenger.) -- C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Handler: bwa0 - {d8d8f302-2a5d-4112-a8b7-3d7cc98559ef} . (.Logitech - Logitech Desktop Messenger.) -- C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Handler: bwa0s - {d8d8f302-2a5d-4112-a8b7-3d7cc98559ef} . (.Logitech - Logitech Desktop Messenger.) -- C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Handler: bwb0 - {d8d8f302-2a5d-4112-a8b7-3d7cc98559ef} . (.Logitech - Logitech Desktop Messenger.) -- C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Handler: bwb0s - {d8d8f302-2a5d-4112-a8b7-3d7cc98559ef} . (.Logitech - Logitech Desktop Messenger.) -- C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Handler: bwc0 - {d8d8f302-2a5d-4112-a8b7-3d7cc98559ef} . (.Logitech - Logitech Desktop Messenger.) -- C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Handler: bwc0s - {d8d8f302-2a5d-4112-a8b7-3d7cc98559ef} . (.Logitech - Logitech Desktop Messenger.) -- C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Handler: bwd0 - {d8d8f302-2a5d-4112-a8b7-3d7cc98559ef} . (.Logitech - Logitech Desktop Messenger.) -- C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Handler: bwd0s - {d8d8f302-2a5d-4112-a8b7-3d7cc98559ef} . (.Logitech - Logitech Desktop Messenger.) -- C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Handler: bwe0 - {d8d8f302-2a5d-4112-a8b7-3d7cc98559ef} . (.Logitech - Logitech Desktop Messenger.) -- C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Handler: bwe0s - {d8d8f302-2a5d-4112-a8b7-3d7cc98559ef} . (.Logitech - Logitech Desktop Messenger.) -- C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Handler: bwf0 - {d8d8f302-2a5d-4112-a8b7-3d7cc98559ef} . (.Logitech - Logitech Desktop Messenger.) -- C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Handler: bwf0s - {d8d8f302-2a5d-4112-a8b7-3d7cc98559ef} . (.Logitech - Logitech Desktop Messenger.) -- C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Handler: bwfile-8876480 - {9462A756-7B47-47BC-8C80-C34B9B80B32B} . (.Logitech - Logitech Desktop Messenger.) -- C:\Program Files\Logitech\Desktop Messenger\8876480\Program\GAPlugProtocol-8876480.dll
O18 - Handler: bwg0 - {d8d8f302-2a5d-4112-a8b7-3d7cc98559ef} . (.Logitech - Logitech Desktop Messenger.) -- C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Handler: bwg0s - {d8d8f302-2a5d-4112-a8b7-3d7cc98559ef} . (.Logitech - Logitech Desktop Messenger.) -- C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Handler: bwh0 - {d8d8f302-2a5d-4112-a8b7-3d7cc98559ef} . (.Logitech - Logitech Desktop Messenger.) -- C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Handler: bwh0s - {d8d8f302-2a5d-4112-a8b7-3d7cc98559ef} . (.Logitech - Logitech Desktop Messenger.) -- C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Handler: bwi0 - {d8d8f302-2a5d-4112-a8b7-3d7cc98559ef} . (.Logitech - Logitech Desktop Messenger.) -- C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Handler: bwi0s - {d8d8f302-2a5d-4112-a8b7-3d7cc98559ef} . (.Logitech - Logitech Desktop Messenger.) -- C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Handler: bwj0 - {d8d8f302-2a5d-4112-a8b7-3d7cc98559ef} . (.Logitech - Logitech Desktop Messenger.) -- C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Handler: bwj0s - {d8d8f302-2a5d-4112-a8b7-3d7cc98559ef} . (.Logitech - Logitech Desktop Messenger.) -- C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Handler: bwk0 - {d8d8f302-2a5d-4112-a8b7-3d7cc98559ef} . (.Logitech - Logitech Desktop Messenger.) -- C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Handler: bwk0s - {d8d8f302-2a5d-4112-a8b7-3d7cc98559ef} . (.Logitech - Logitech Desktop Messenger.) -- C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Handler: bwl0 - {d8d8f302-2a5d-4112-a8b7-3d7cc98559ef} . (.Logitech - Logitech Desktop Messenger.) -- C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Handler: bwl0s - {d8d8f302-2a5d-4112-a8b7-3d7cc98559ef} . (.Logitech - Logitech Desktop Messenger.) -- C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Handler: bwm0 - {d8d8f302-2a5d-4112-a8b7-3d7cc98559ef} . (.Logitech - Logitech Desktop Messenger.) -- C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Handler: bwm0s - {d8d8f302-2a5d-4112-a8b7-3d7cc98559ef} . (.Logitech - Logitech Desktop Messenger.) -- C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Handler: bwn0 - {d8d8f302-2a5d-4112-a8b7-3d7cc98559ef} . (.Logitech - Logitech Desktop Messenger.) -- C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Handler: bwn0s - {d8d8f302-2a5d-4112-a8b7-3d7cc98559ef} . (.Logitech - Logitech Desktop Messenger.) -- C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Handler: bwo0 - {d8d8f302-2a5d-4112-a8b7-3d7cc98559ef} . (.Logitech - Logitech Desktop Messenger.) -- C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Handler: bwo0s - {d8d8f302-2a5d-4112-a8b7-3d7cc98559ef} . (.Logitech - Logitech Desktop Messenger.) -- C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Handler: bwp0 - {d8d8f302-2a5d-4112-a8b7-3d7cc98559ef} . (.Logitech - Logitech Desktop Messenger.) -- C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Handler: bwp0s - {d8d8f302-2a5d-4112-a8b7-3d7cc98559ef} . (.Logitech - Logitech Desktop Messenger.) -- C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Handler: bwq0 - {d8d8f302-2a5d-4112-a8b7-3d7cc98559ef} . (.Logitech - Logitech Desktop Messenger.) -- C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Handler: bwq0s - {d8d8f302-2a5d-4112-a8b7-3d7cc98559ef} . (.Logitech - Logitech Desktop Messenger.) -- C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Handler: bwr0 - {d8d8f302-2a5d-4112-a8b7-3d7cc98559ef} . (.Logitech - Logitech Desktop Messenger.) -- C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Handler: bwr0s - {d8d8f302-2a5d-4112-a8b7-3d7cc98559ef} . (.Logitech - Logitech Desktop Messenger.) -- C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Handler: bws0 - {d8d8f302-2a5d-4112-a8b7-3d7cc98559ef} . (.Logitech - Logitech Desktop Messenger.) -- C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Handler: bws0s - {d8d8f302-2a5d-4112-a8b7-3d7cc98559ef} . (.Logitech - Logitech Desktop Messenger.) -- C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Handler: bwt0 - {d8d8f302-2a5d-4112-a8b7-3d7cc98559ef} . (.Logitech - Logitech Desktop Messenger.) -- C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Handler: bwt0s - {d8d8f302-2a5d-4112-a8b7-3d7cc98559ef} . (.Logitech - Logitech Desktop Messenger.) -- C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Handler: bwu0 - {d8d8f302-2a5d-4112-a8b7-3d7cc98559ef} . (.Logitech - Logitech Desktop Messenger.) -- C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Handler: bwu0s - {d8d8f302-2a5d-4112-a8b7-3d7cc98559ef} . (.Logitech - Logitech Desktop Messenger.) -- C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Handler: bwv0 - {d8d8f302-2a5d-4112-a8b7-3d7cc98559ef} . (.Logitech - Logitech Desktop Messenger.) -- C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Handler: bwv0s - {d8d8f302-2a5d-4112-a8b7-3d7cc98559ef} . (.Logitech - Logitech Desktop Messenger.) -- C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Handler: bww0 - {d8d8f302-2a5d-4112-a8b7-3d7cc98559ef} . (.Logitech - Logitech Desktop Messenger.) -- C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Handler: bww0s - {d8d8f302-2a5d-4112-a8b7-3d7cc98559ef} . (.Logitech - Logitech Desktop Messenger.) -- C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Handler: bwx0 - {d8d8f302-2a5d-4112-a8b7-3d7cc98559ef} . (.Logitech - Logitech Desktop Messenger.) -- C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Handler: bwx0s - {d8d8f302-2a5d-4112-a8b7-3d7cc98559ef} . (.Logitech - Logitech Desktop Messenger.) -- C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Handler: bwy0 - {d8d8f302-2a5d-4112-a8b7-3d7cc98559ef} . (.Logitech - Logitech Desktop Messenger.) -- C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Handler: bwy0s - {d8d8f302-2a5d-4112-a8b7-3d7cc98559ef} . (.Logitech - Logitech Desktop Messenger.) -- C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Handler: bwz0 - {d8d8f302-2a5d-4112-a8b7-3d7cc98559ef} . (.Logitech - Logitech Desktop Messenger.) -- C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Handler: bwz0s - {d8d8f302-2a5d-4112-a8b7-3d7cc98559ef} . (.Logitech - Logitech Desktop Messenger.) -- C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Handler: offline-8876480 - {D8D8F302-2A5D-4112-A8B7-3D7CC98559EF} . (.Logitech - Logitech Desktop Messenger.) -- C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} . (.Skype Technologies - Skype for COM API.) -- C:\PROGRA~1\FICHIE~1\Skype\SKYPE4~1.DLL
---\\ Valeur de Registre AppInit_DLLs et sous-clés Winlogon Notify (autorun) (O20)
O20 - Winlogon Notify: AtiExtEvent . (.ATI Technologies Inc. - ATI External Event Utility DLL Module.) -- C:\Windows\System32\Ati2evxx.dll
O20 - Winlogon Notify: crypt32chain . (.Microsoft Corporation - Crypto API32.) -- C:\Windows\System32\crypt32.dll
O20 - Winlogon Notify: cryptnet . (.Microsoft Corporation - Crypto Network Related API.) -- C:\Windows\System32\cryptnet.dll
O20 - Winlogon Notify: cscdll . (.Microsoft Corporation - Agent réseau hors connexion.) -- C:\Windows\System32\cscdll.dll
O20 - Winlogon Notify: ScCertProp . (.Microsoft Corporation - DLL commune de réception des notifications.) -- C:\Windows\System32\wlnotify.dll
O20 - Winlogon Notify: Schedule . (.Microsoft Corporation - DLL commune de réception des notifications.) -- C:\Windows\System32\wlnotify.dll
O20 - Winlogon Notify: sclgntfy . (.Microsoft Corporation - DLL secondaire de notification de service d.) -- C:\Windows\System32\sclgntfy.dll
O20 - Winlogon Notify: SensLogn . (.Microsoft Corporation - DLL commune de réception des notifications.) -- C:\Windows\System32\WlNotify.dll
O20 - Winlogon Notify: termsrv . (.Microsoft Corporation - DLL commune de réception des notifications.) -- C:\Windows\System32\wlnotify.dll
O20 - Winlogon Notify: wlballoon . (.Microsoft Corporation - DLL commune de réception des notifications.) -- C:\Windows\System32\wlnotify.dll
---\\ Clé de Registre autorun ShellServiceObjectDelayLoad (SSO/SSODL) (O21)
O21 - SSODL: PostBootReminder - {7849596a-48ea-486e-8937-a2a3009f31a9} . (.Microsoft Corporation - DLL commune du shell Windows.) -- C:\WINDOWS\system32\SHELL32.dll
O21 - SSODL: CDBurn - {fbeb8a05-beee-4442-804e-409d6c4515e9} . (.Microsoft Corporation - DLL commune du shell Windows.) -- C:\WINDOWS\system32\SHELL32.dll
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} . (.Microsoft Corporation - Web Site Monitor.) -- C:\WINDOWS\system32\webcheck.dll
O21 - SSODL: SysTray - {35CEC8A3-2BE6-11D2-8773-92E220524153} . (.Microsoft Corporation - Objet du service d'environnement Systray.) -- C:\WINDOWS\system32\stobject.dll
---\\ Clé de Registre autorun SharedTaskScheduler (STS) (O22)
O22 - SharedTaskScheduler: (no name) - {8C7461EF-2B13-11d2-BE35-3078302C2030} . (.Microsoft Corporation - Bibliothèque de l'interface utilisateur du.) -- C:\WINDOWS\system32\browseui.dll
---\\ Liste des services NT non Microsoft et non désactivés (O23)
O23 - Service: (ACS) . (.Pas de propriétaire - Pas de description.) - C:\WINDOWS\system32\ACS.exe
O23 - Service: (Apple Mobile Device) . (.Apple Inc. - MobileDeviceService.) - C:\Program Files\Fichiers communs\Apple\Mobile Device Support\AppleMobileDeviceService.exe
O23 - Service: (Ati HotKey Poller) . (.ATI Technologies Inc. - ATI External Event Utility EXE Module.) - C:\WINDOWS\system32\Ati2evxx.exe
O23 - Service: (avast! Antivirus) . (.AVAST Software - avast! Service.) - C:\Program Files\Alwil Software\Avast5\AvastSvc.exe
O23 - Service: (Bonjour Service) . (.Apple Inc. - Bonjour Service.) - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: (CCALib8) . (.Canon Inc. - Canon Camera Access Library 8.) - C:\Program Files\Canon\CAL\CALMAIN.exe
O23 - Service: (CFSvcs) . (.TOSHIBA CORPORATION - Service of ConfigFree..) - C:\Program Files\TOSHIBA\ConfigFree\CFSvcs.exe
O23 - Service: (DVD-RAM_Service) . (.Matsushita Electric Industrial Co., Ltd. - DVD-RAM Utility Helper Service.) - C:\WINDOWS\system32\DVDRAMSV.exe
O23 - Service: (JavaQuickStarterService) . (.Sun Microsystems, Inc. - Java(TM) Quick Starter Service.) - C:\Program Files\Java\jre6\bin\jqs.exe
O23 - Service: (LVPrcSrv) . (.Logitech Inc. - Logitech LVPrcSrv Module..) - c:\program files\fichiers communs\logitech\lvmvfm\LVPrcSrv.exe
O23 - Service: (LVSrvLauncher) . (.Logitech Inc. - Service Launcher.) - C:\Program Files\Fichiers communs\Logitech\SrvLnch\SrvLnch.exe
---\\ Enumération Active Desktop & MHTML Editor (O24)
O24 - Default MHTML Editor: Last - .(.Pas de propriétaire - Pas de description.) - "C:\Program Files\Microsoft Office\OFFICE11\WINWORD.exe (.not file.)
---\\ Tâches planifiées en automatique (O39)
O39 - APT:Automatic Planified Task - C:\WINDOWS\Tasks\Dzwue.job
O39 - APT:Automatic Planified Task - C:\WINDOWS\Tasks\Ihhfw.job
O39 - APT:Automatic Planified Task - C:\WINDOWS\Tasks\TQQJADD.job
O39 - APT:Automatic Planified Task - C:\WINDOWS\Tasks\ZDJOMGA.job
---\\ Composants installés (ActiveSetup Installed Components) (O40)
O40 - ASIC: Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608500} . (.Sun Microsystems, Inc. - Java(TM) Platform SE binary.) -- C:\Program Files\Java\jre6\bin\regutils.dll
O40 - ASIC: NetMeeting 3.01 - {44BBA842-CC51-11CF-AAFA-00AA00B6015B} . (.Pas de propriétaire - Pas de description.) -- C:\WINDOWS\INF\msnetmtg.inf
O40 - ASIC: Windows Messenger 4.7 - {5945c046-1e7d-11d1-bc44-00c04fd912be} . (.Pas de propriétaire - Pas de description.) -- C:\WINDOWS\INF\msmsgs.inf
O40 - ASIC: Microsoft Windows Media Player - {6BF52A52-394A-11d3-B153-00C04F79FAA6} . (.Pas de propriétaire - Pas de description.) -- C:\WINDOWS\INF\wmp11.inf
O40 - ASIC: Adobe Flash Player - {D27CDB6E-AE6D-11cf-96B8-444553540000} . (.Adobe Systems, Inc. - Adobe Flash Player 10.0 r12.) -- C:\WINDOWS\system32\Macromed\Flash\Flash10a.ocx
---\\ Pilotes lancés au démarrage (O41)
O41 - Driver: (AFD) . (.Microsoft Corporation - Ancillary Function Driver for WinSock.) - C:\WINDOWS\system32\drivers\afd.sys
O41 - Driver: (Cdrom) . (.Microsoft Corporation - SCSI CD-ROM Driver.) - C:\Windows\System32\DRIVERS\cdrom.sys
O41 - Driver: (DLACDBHM) . (.Sonic Solutions - Shared Driver Component.) - C:\Windows\System32\Drivers\DLACDBHM.sys
O41 - Driver: (DLARTL_N) . (.Sonic Solutions - Shared Driver Component.) - C:\Windows\System32\Drivers\DLARTL_N.sys
O41 - Driver: (i8042prt) . (.Microsoft Corporation - Pilote de port i8042.) - C:\Windows\System32\DRIVERS\i8042prt.sys
O41 - Driver: (Imapi) . (.Microsoft Corporation - IMAPI Kernel Driver.) - C:\Windows\System32\DRIVERS\imapi.sys
O41 - Driver: (intelppm) . (.Microsoft Corporation - Pilote de périphérique processeur.) - C:\Windows\System32\DRIVERS\intelppm.sys
O41 - Driver: (IPSec) . (.Microsoft Corporation - IPSec Driver.) - C:\Windows\System32\DRIVERS\ipsec.sys
O41 - Driver: (Kbdclass) . (.Microsoft Corporation - Pilote de la classe Clavier.) - C:\Windows\System32\DRIVERS\kbdclass.sys
O41 - Driver: (meiudf) . (.Matsushita Electric Industrial Co.,Ltd. - DVD-RAM UDF File System Driver.) - C:\Windows\System32\Drivers\meiudf.sys
O41 - Driver: (Mouclass) . (.Microsoft Corporation - Pilote de la classe Souris.) - C:\Windows\System32\DRIVERS\mouclass.sys
O41 - Driver: (MRxSmb) . (.Microsoft Corporation - Windows NT SMB Minirdr.) - C:\Windows\System32\DRIVERS\mrxsmb.sys
O41 - Driver: (NetBIOS) . (.Microsoft Corporation - NetBIOS interface driver.) - C:\Windows\System32\DRIVERS\netbios.sys
O41 - Driver: (NetBT) . (.Microsoft Corporation - MBT Transport driver.) - C:\Windows\System32\DRIVERS\netbt.sys
O41 - Driver: (RasAcd) . (.Microsoft Corporation - RAS Automatic Connection Driver.) - C:\Windows\System32\DRIVERS\rasacd.sys
O41 - Driver: (Rdbss) . (.Microsoft Corporation - Redirected Drive Buffering SubSystem Driver.) - C:\Windows\System32\DRIVERS\rdbss.sys
O41 - Driver: (RDPCDD) . (.Microsoft Corporation - RDP Miniport.) - C:\Windows\System32\DRIVERS\RDPCDD.sys
O41 - Driver: (redbook) . (.Microsoft Corporation - Pilote de filtre audio Livre rouge.) - C:\Windows\System32\DRIVERS\redbook.sys
O41 - Driver: (SrvcSSIOMngr) . (.COMPAL ELECTRONIC INC. - IoManager Application.) - C:\Windows\System32\Drivers\SSIoMngr.sys
O41 - Driver: (Tcpip) . (.Microsoft Corporation - TCP/IP Protocol Driver.) - C:\Windows\System32\DRIVERS\tcpip.sys
O41 - Driver: (TermDD) . (.Microsoft Corporation - Terminal Server Driver.) - C:\Windows\System32\DRIVERS\termdd.sys
O41 - Driver: (TPwSav) . (.TOSHIBA - IO Driver For TOSHIBA Power Saver.) - C:\Windows\System32\Drivers\TPwSav.sys
O41 - Driver: Carte vidéo VGA. (VgaSave) . (.Microsoft Corporation - VGA/Super VGA Video Driver.) - C:\WINDOWS\system32\drivers\vga.sys
---\\ Logiciels installés (O42)
O42 - Logiciel: ALPS Touch Pad Driver - (.Pas de propriétaire.) [HKLM] -- {9F72EF8B-AEC9-4CA5-B483-143980AFD6FD}
O42 - Logiciel: ATI - Utilitaire de désinstallation du logiciel - (.Pas de propriétaire.) [HKLM] -- All ATI Software
O42 - Logiciel: ATI Display Driver - (.Pas de propriétaire.) [HKLM] -- ATI Display Driver
O42 - Logiciel: Adobe Acrobat 5.0 - (.Adobe Systems, Inc..) [HKLM] -- Adobe Acrobat 5.0
O42 - Logiciel: Adobe Flash Player 10 ActiveX - (.Adobe Systems Incorporated.) [HKLM] -- Adobe Flash Player ActiveX
O42 - Logiciel: Adobe Flash Player 10 Plugin - (.Adobe Systems Incorporated.) [HKLM] -- Adobe Flash Player Plugin
O42 - Logiciel: Apple Application Support - (.Apple Inc..) [HKLM] -- {EE6097DD-05F4-4178-9719-D3170BF098E8}
O42 - Logiciel: Apple Mobile Device Support - (.Apple Inc..) [HKLM] -- {308B6AEA-DE50-4666-996D-0FA461719D6B}
O42 - Logiciel: Apple Software Update - (.Apple Inc..) [HKLM] -- {C41300B9-185D-475E-BFEC-39EF732F19B1}
O42 - Logiciel: Assist TOSHIBA - (.Pas de propriétaire.) [HKLM] -- {12B3A009-A080-4619-9A2A-C6DB151D8D67}
O42 - Logiciel: Assistant de connexion Windows Live - (.Microsoft Corporation.) [HKLM] -- {D3116CC7-24DC-4CA3-9CE1-23FED836E9F2}
O42 - Logiciel: Atheros Client Utility - (.Pas de propriétaire.) [HKLM] -- {71D658CF-4E0D-4DA8-AA67-8C0B6F1C01FE}
O42 - Logiciel: Atheros Wireless LAN MiniPCI card Driver - (.Pas de propriétaire.) [HKLM] -- {05832D65-6EDB-4D32-BA78-BCD0E2B91C02}
O42 - Logiciel: Bonjour - (.Apple Inc..) [HKLM] -- {2A981294-F14C-4F0F-9627-D793270922F8}
O42 - Logiciel: CCleaner (remove only) - (.Piriform.) [HKLM] -- CCleaner
O42 - Logiciel: Canon Camera Access Library - (.Canon Inc..) [HKLM] -- CAL
O42 - Logiciel: Canon Camera Support Core Library - (.Canon Inc..) [HKLM] -- CSCLIB
O42 - Logiciel: Canon G.726 WMP-Decoder - (.Canon Inc..) [HKLM] -- Canon G.726 WMP-Decoder
O42 - Logiciel: Canon MovieEdit Task for ZoomBrowser EX - (.Canon Inc..) [HKLM] -- MovieEditTask
O42 - Logiciel: Canon RAW Image Task for ZoomBrowser EX - (.Canon Inc..) [HKLM] -- RAW Image Task
O42 - Logiciel: Canon Utilities CameraWindow - (.Canon Inc..) [HKLM] -- CameraWindowLauncher
O42 - Logiciel: Canon Utilities CameraWindow DC - (.Canon Inc..) [HKLM] -- CameraWindowDC
O42 - Logiciel: Canon Utilities CameraWindow DC_DV 5 for ZoomBrowser EX - (.Canon Inc..) [HKLM] -- CameraWindowDVC5
O42 - Logiciel: Canon Utilities CameraWindow DC_DV 6 for ZoomBrowser EX - (.Canon Inc..) [HKLM] -- CameraWindowDVC6
O42 - Logiciel: Canon Utilities EOS Utility - (.Canon Inc..) [HKLM] -- EOS Utility
O42 - Logiciel: Canon Utilities MyCamera - (.Canon Inc..) [HKLM] -- MyCamera
O42 - Logiciel: Canon Utilities MyCamera DC - (.Canon Inc..) [HKLM] -- MyCameraDC
O42 - Logiciel: Canon Utilities PhotoStitch - (.Canon Inc..) [HKLM] -- PhotoStitch
O42 - Logiciel: Canon Utilities RemoteCapture Task for ZoomBrowser EX - (.Canon Inc..) [HKLM] -- RemoteCaptureTask
O42 - Logiciel: Canon Utilities ZoomBrowser EX - (.Canon Inc..) [HKLM] -- ZoomBrowser EX
O42 - Logiciel: Canon ZoomBrowser EX Memory Card Utility - (.Canon Inc..) [HKLM] -- ZoomBrowser EX Memory Card Utility
O42 - Logiciel: Free Mp3 Wma Converter V 1.81 - (.Pas de propriétaire.) [HKLM] -- Free Mp3 Wma Converter_is1
O42 - Logiciel: Genie Backup Assistant - (.LaCie.) [HKLM] -- {C9A162C1-031F-4EBF-A3E6-C45F7FCCBB9E}_is1
O42 - Logiciel: Gestion d'énergie TOSHIBA - (.Pas de propriétaire.) [HKLM] -- Power Saver
O42 - Logiciel: Hotfix for Microsoft .NET Framework 3.5 SP1 (KB953595) - (.Microsoft Corporation.) [HKLM] -- {CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9}.KB953595
O42 - Logiciel: Hotfix for Microsoft .NET Framework 3.5 SP1 (KB958484) - (.Microsoft Corporation.) [HKLM] -- {CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9}.KB958484
O42 - Logiciel: Hotfix for Windows Media Format 11 SDK (KB929399) - (.Microsoft Corporation.) [HKLM] -- KB929399
O42 - Logiciel: Hotfix for Windows XP (KB954550-v5) - (.Microsoft Corporation.) [HKLM] -- KB954550-v5
O42 - Logiciel: InterVideo WinDVD Creator 2 - (.InterVideo Inc..) [HKLM] -- {2FCE4FC5-6930-40E7-A4F1-F862207424EF}
O42 - Logiciel: InterVideo WinDVD for TOSHIBA - (.InterVideo Inc..) [HKLM] -- {91810AFC-A4F8-4EBA-A5AA-B198BBC81144}
O42 - Logiciel: IrfanView (remove only) - (.Pas de propriétaire.) [HKLM] -- IrfanView
O42 - Logiciel: Java(TM) 6 Update 18 - (.Sun Microsystems, Inc..) [HKLM] -- {26A24AE4-039D-4CA4-87B4-2F83216018FF}
O42 - Logiciel: Lecteur Windows Media 11 - (.Pas de propriétaire.) [HKLM] -- Windows Media Player
O42 - Logiciel: Logitech Audio Echo Cancellation Component - (.Logitech Inc..) [HKLM] -- {BEF726DD-4037-4214-8C6A-E625C02D2870}
O42 - Logiciel: Logitech Desktop Messenger - (.Logitech, Inc..) [HKLM] -- {900B1197-53F5-4F46-A882-2CFFFE2EEDCB}
O42 - Logiciel: Logitech QuickCam - (.Logitech Inc..) [HKLM] -- {EC42ED6A-751D-45C0-A4F9-8CD00E4690FC}
O42 - Logiciel: Logitech Video Enumerator - (.Logitech Inc..) [HKLM] -- {EA516024-D84D-41F1-814F-83175A6188F2}
O42 - Logiciel: MSVCRT - (.Microsoft.) [HKLM] -- {22B775E7-6C42-4FC5-8E10-9A5E3257BD94}
O42 - Logiciel: MSXML 4.0 SP2 (KB954430) - (.Microsoft Corporation.) [HKLM] -- {86493ADD-824D-4B8E-BD72-8C5DCDC52A71}
O42 - Logiciel: Malwarebytes' Anti-Malware - (.Malwarebytes Corporation.) [HKLM] -- Malwarebytes' Anti-Malware_is1
O42 - Logiciel: Microsoft .NET Framework 1.1 - (.Microsoft.) [HKLM] -- {CB2F7EDD-9D1F-43C1-90FC-4F52EAE172A1}
O42 - Logiciel: Microsoft .NET Framework 1.1 - (.Pas de propriétaire.) [HKLM] -- Microsoft .NET Framework 1.1 (1033)
O42 - Logiciel: Microsoft .NET Framework 1.1 French Language Pack - (.Microsoft.) [HKLM] -- {9A394342-4A68-4EBA-85A6-55B559F4E700}
O42 - Logiciel: Microsoft .NET Framework 1.1 Hotfix (KB928366) - (.Pas de propriétaire.) [HKLM] -- M928366
O42 - Logiciel: Microsoft .NET Framework 2.0 Service Pack 2 - (.Microsoft Corporation.) [HKLM] -- {C09FB3CD-3D0C-3F2D-899A-6A1D67F2073F}
O42 - Logiciel: Microsoft .NET Framework 3.0 Service Pack 2 - (.Microsoft Corporation.) [HKLM] -- {A3051CD0-2F64-3813-A88D-B8DCCDE8F8C7}
O42 - Logiciel: Microsoft .NET Framework 3.5 SP1 - (.Microsoft Corporation.) [HKLM] -- Microsoft .NET Framework 3.5 SP1
O42 - Logiciel: Microsoft .NET Framework 3.5 SP1 - (.Microsoft Corporation.) [HKLM] -- {CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9}
O42 - Logiciel: Microsoft Choice Guard - (.Microsoft Corporation.) [HKLM] -- {F0E12BBA-AD66-4022-A453-A1C8A0C4D570}
O42 - Logiciel: Microsoft Compression Client Pack 1.0 for Windows XP - (.Microsoft Corporation.) [HKLM] -- MSCompPackV1
O42 - Logiciel: Microsoft Internationalized Domain Names Mitigation APIs - (.Microsoft Corporation.) [HKLM] -- IDNMitigationAPIs
O42 - Logiciel: Microsoft National Language Support Downlevel APIs - (.Microsoft Corporation.) [HKLM] -- NLSDownlevelMapping
O42 - Logiciel: Microsoft Office OneNote 2003 - (.Microsoft Corporation.) [HKLM] -- {91A1040C-6000-11D3-8CFE-0150048383C9}
O42 - Logiciel: Microsoft Office Professional Edition 2003 - (.Microsoft Corporation.) [HKLM] -- {9011040C-6000-11D3-8CFE-0150048383C9}
O42 - Logiciel: Microsoft SQL Server 2005 Compact Edition [ENU] - (.Microsoft Corporation.) [HKLM] -- {F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}
O42 - Logiciel: Microsoft Search Enhancement Pack - (.Microsoft Corporation.) [HKLM] -- {4CBA3D4C-8F51-4D60-B27E-F6B641C571E7}
O42 - Logiciel: Microsoft Sync Framework Runtime Native v1.0 (x86) - (.Microsoft Corporation.) [HKLM] -- {8A74E887-8F0F-4017-AF53-CBA42211AAA5}
O42 - Logiciel: Microsoft Sync Framework Services Native v1.0 (x86) - (.Microsoft Corporation.) [HKLM] -- {BD64AF4A-8C80-4152-AD77-FCDDF05208AB}
O42 - Logiciel: Microsoft User-Mode Driver Framework Feature Pack 1.0 - (.Microsoft Corporation.) [HKLM] -- Wudf01000
O42 - Logiciel: Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 - (.Microsoft Corporation.) [HKLM] -- {1F1C2DFC-2D24-3E06-BCB8-725134ADF989}
O42 - Logiciel: MobileMe Control Panel - (.Apple Inc..) [HKLM] -- {1E5E2F9A-17D3-45CA-8FF0-B0C2927D4B03}
O42 - Logiciel: Mozilla Firefox (3.6.13) - (.Mozilla.) [HKLM] -- Mozilla Firefox (3.6.13)
O42 - Logiciel: Octoshape add-in for Adobe Flash Player - (.Pas de propriétaire.) [HKCU] -- Octoshape add-in for Adobe Flash Player
O42 - Logiciel: Outil de diagnostic
======= RAPPORT D'AD-REMOVER 2.0.0.2,C | UNIQUEMENT XP/VISTA/7 =======
Mis à jour par TeamXscript le 08/12/10 à 10:40
Contact: AdRemover[DOT]contact[AT]gmail[DOT]com
Site web: http://www.teamxscript.org
C:\Program Files\Ad-Remover\main.exe (CLEAN [2]) -> Lancé à 11:22:42 le 19/12/2010, Mode normal
Microsoft Windows XP Édition familiale Service Pack 3 (X86)
Natalia@NOM-8ABC2A6DAF0 ( )
============== ACTION(S) ==============
(!) -- Fichiers temporaires supprimés.
============== SCAN ADDITIONNEL ==============
** Mozilla Firefox Version [3.6.13 (fr)] **
-- C:\Documents and Settings\Natalia\Application Data\Mozilla\FireFox\Profiles\84pz7jj9.default\Prefs.js --
browser.download.lastDir, C:\\Documents and Settings\\Natalia\\Bureau
browser.startup.homepage, google.ca
browser.startup.homepage_override.mstone, rv:1.9.2.13
privacy.popups.showBrowserMessage, false
========================================
** Internet Explorer Version [8.0.6001.18702] **
[HKCU\Software\Microsoft\Internet Explorer\Main]
Default_Page_URL: hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&pver=6&ar=msnhome
Default_Search_URL: hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
Do404Search: 0x01000000
Enable Browser Extensions: yes
Local Page: C:\WINDOWS\system32\blank.htm
Search bar: hxxp://go.microsoft.com/fwlink/?linkid=54896
Show_ToolBar: yes
Start Page: hxxp://fr.msn.com/
Use Custom Search URL: 1
Use Search Asst: no
[HKLM\Software\Microsoft\Internet Explorer\Main]
Default_Page_URL: hxxp://go.microsoft.com/fwlink/?LinkId=54896
Default_Search_URL: hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
Delete_Temp_Files_On_Exit: yes
Local Page: C:\WINDOWS\system32\blank.htm
Search bar: hxxp://search.msn.com/spbasic.htm
Search Page: hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
Start Page: hxxp://fr.msn.com/
[HKLM\Software\Microsoft\Internet Explorer\ABOUTURLS]
Tabs: res://ieframe.dll/tabswelcome.htm
Blank: res://mshtml.dll/blank.htm
========================================
C:\Program Files\Ad-Remover\Quarantine: 30 Fichier(s)
C:\Program Files\Ad-Remover\Backup: 17 Fichier(s)
C:\Ad-Report-CLEAN[2].txt - 19/12/2010 (494 Octet(s))
Fin à: 11:24:08, 19/12/2010
============== E.O.F ==============
Rapport de ZHPDiag v1.27.1421 par Nicolas Coolman, Update du 16/12/2010
Run by Natalia at 2010-12-19 11:29:39
Web site : http://www.premiumorange.com/zeb-help-process/zhpdiag.html
Contact : nicolascoolman@yahoo.fr
---\\ Web Browser
MSIE: Internet Explorer v8.0.6001.18702
MFIE: Mozilla Firefox v3.6.13 (fr) (Defaut)
---\\ System Information
Windows XP Home Edition Service Pack 3 (Build 2600)
Processor: x86 Family 6 Model 13 Stepping 8, GenuineIntel
Operating System: 32 Bits
Boot mode: Normal (Normal boot)
Total RAM: 446 MB (6% free)
System drive C: has 22 GB (39%) free of 56 GB
---\\ Logged in mode
Computer Name: NOM-8ABC2A6DAF0
User Name: Natalia
All Users Names: SUPPORT_388945a0, Natalia, HelpAssistant, ASPNET, Administrateur,
Unselected Option: O1,O45,O61,O62,O65,O80,O82
Logged in as Administrator
---\\ DOS/Devices
C:\ Hard drive, Flash drive, Thumb drive (Free 22 Go of 56 Go)
D:\ CD-ROM drive (Not Inserted)
---\\ Security Center & Tools Informations
[HKLM\SOFTWARE\Microsoft\Security Center] AntiVirusOverride: OK
[HKLM\SOFTWARE\Microsoft\Security Center] AntiVirusDisableNotify: OK
[HKLM\SOFTWARE\Microsoft\Security Center] FirewallDisableNotify: OK
[HKLM\SOFTWARE\Microsoft\Security Center] FirewallOverride: OK
[HKLM\SOFTWARE\Microsoft\Security Center] UpdatesDisableNotify: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\SHOWALL] CheckedValue: OK
---\\ Recherche particulière de fichiers génériques
[MD5.F2317622D29F9FF0F88AEECD5F60F0DD] - (.Microsoft Corporation - Explorateur Windows.) (.2008-04-13 21:34:03.) -- C:\Windows\Explorer.exe [1037824]
[MD5.DD73D6B9F6B4CB630CF35B438B540174] - (.Microsoft Corporation - Application d'ouverture de session Windows NT.) (.2008-04-13 21:34:28.) -- C:\Windows\System32\Winlogon.exe [512000]
[MD5.9F3A2F5AA6875C72BF062C712CFA2674] - (.Microsoft Corporation - IDE/ATAPI Port Driver.) (.2008-04-13 13:40:30.) -- C:\Windows\System32\drivers\atapi.sys [96512]
[MD5.78A08DD6A8D65E697C18E1DB01C5CDCA] - (.Microsoft Corporation - NT File System Driver.) (.2008-04-13 14:15:53.) -- C:\Windows\System32\drivers\ntfs.sys [574976]
---\\ Processus lancés
[MD5.BFA066BECCB7E16F52B819360253DEE0] - (.ATI Technologies Inc. - ATI External Event Utility EXE Module.) -- C:\WINDOWS\system32\Ati2evxx.exe [376832]
[MD5.539802224D334C25AC439FF0518D36CD] - (.Pas de propriétaire - Pas de description.) -- C:\WINDOWS\system32\ACS.exe [36864]
[MD5.B2386A8E66891F7CFEC9F5A03F0F1210] - (.AVAST Software - avast! Service.) -- C:\Program Files\Alwil Software\Avast5\AvastSvc.exe [40384]
[MD5.8A1CA72A90090509D98220E921BD6415] - (.ATI Technologies, Inc. - ATI Desktop Control Panel.) -- C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe [344064]
[MD5.C2EDE68251407CCACABF5E48028626BD] - (.Agere Systems - LtMoh MFC Application.) -- C:\Program Files\ltmoh\Ltmoh.exe [184320]
[MD5.B2ED4020EE2A9446649CE6B0A918C91C] - (.Agere Systems - SoftModem Messaging Applet.) -- C:\WINDOWS\AGRSMMSG.exe [88358]
[MD5.FC1EBDD2C46D0D8B5763BF776ABA2E61] - (.TOSHIBA Corporation - TOSHIBA Virtual Sound Taskbar Module.) -- C:\Program Files\TOSHIBA\Tvs\TvsTray.exe [73728]
[MD5.08835AC90C7A02F55A0D0B1D0397ACAE] - (.COMPAL ELECTRONIC INC. - TOSHIBA HotKey Utility.) -- C:\Program Files\TOSHIBA\E-KEY\CeEKey.exe [671744]
[MD5.8EBBF7E508EC363BD6933809D17A43A7] - (.Alps Electric Co., Ltd. - Alps Pointing-device Driver.) -- C:\Program Files\Apoint2K\Apoint.exe [196608]
[MD5.ECE72DB438B67C5B5504C583B2B04E1B] - (.COMPAL ELECTRONIC INC. - TPTray Application.) -- C:\Program Files\TOSHIBA\TouchPad\TPTray.exe [53248]
[MD5.7109F1B929FD3D3ED73B0A77E5D7B153] - (.TOSHIBA CORPORATION - ConfigFree(TM) Tray.) -- C:\Program Files\TOSHIBA\ConfigFree\NDSTray.exe [962560]
[MD5.FD02F46A78C30F6CFF37C7FE37A16CC5] - (.TOSHIBA - TOSHIBA Zooming Utility Hotkey Hook.) -- C:\WINDOWS\system32\ZoomingHook.exe [24576]
[MD5.3C2D6A88715F7426102B2AC2B1F9CBCB] - (.Sonic Solutions - Drive Letter Access Component.) -- C:\WINDOWS\System32\DLA\DLACTRLW.EXE [122940]
[MD5.212C55204E9D1120C4A00546C202B396] - (.TOSHIBA - PadTouch Main.) -- C:\Program Files\TOSHIBA\Touch and Launch\PadExe.exe [1077322]
[MD5.81905148A21D919000778F8539F7B600] - (.TOSHIBA Corporation - Pas de description.) -- C:\WINDOWS\system32\TPSMain.exe [266240]
[MD5.D111A34A969377A8679C114090608B95] - (.TOSHIBA Corporation - SmoothView.) -- C:\Program Files\TOSHIBA\Utilitaire de zoom TOSHIBA\SmoothView.exe [118784]
[MD5.03E0CDD5CCF362593EA52B0151750D0A] - (.Logitech Inc. - Logitech Communications Manager.) -- C:\Program Files\Fichiers communs\Logitech\LComMgr\Communications_Helper.exe [497200]
[MD5.6C645D7DF2462697BC7A086E328607D5] - (.Pas de propriétaire - Pas de description.) -- C:\Program Files\Logitech\QuickCam10\QuickCam10.exe [614960]
[MD5.4ADA227EC4E1BBAD144EAABF02221853] - (.Genie-soft - Genie Backup Agent.) -- C:\Program Files\LaCie\Genie Backup Assistant\GBMAgent.exe [189056]
[MD5.E0D6538B62C79FCBF0B27F95FAF3208B] - (.Sun Microsystems, Inc. - Java(TM) Update Scheduler.) -- C:\Program Files\Fichiers communs\Java\Java Update\jusched.exe [246504]
[MD5.38AE7A942FC3FAB1C6A27EB65DE8F827] - (.AVAST Software - avast! Antivirus.) -- C:\PROGRA~1\ALWILS~1\Avast5\avastUI.exe [2837864]
[MD5.2DFCB2393528446AEB9FB861A8FC39AB] - (.Apple Inc. - iTunesHelper.) -- C:\Program Files\iTunes\iTunesHelper.exe [421160]
[MD5.FEBC1591E5C0DC87EF9CF3D657B65FC2] - (.TOSHIBA - CD/DVD Drive Acoustic Silencer.) -- C:\Program Files\TOSHIBA\TOSCDSPD\toscdspd.exe [65536]
[MD5.390679F7A217A5E73D756276C40AE887] - (.Safer-Networking Ltd. - System settings protector.) -- C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe [2260480]
[MD5.CCA1B81492B40890E44B2B20A780EE1F] - (.Alps Electric Co., Ltd. - Alps Pointing-device Driver for Windows NT/.) -- C:\Program Files\Apoint2K\Apntex.exe [45056]
[MD5.94782C50F682CCC02C1FF4360976A5C8] - (.Logitech - Logitech Desktop Messenger.) -- C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe [36864]
[MD5.1047FAB7E9BFAC6D4E40C4E52CA9B170] - (.TOSHIBA Corporation - Pas de description.) -- C:\WINDOWS\system32\TPSBattM.exe [40960]
[MD5.5648152AD2CCAB0265EAB9711755F484] - (.Matsushita Electric Industrial Co., Ltd. - CD Burning of Windows XP disabling tool for.) -- C:\WINDOWS\system32\RAMASST.exe [155648]
[MD5.F63465BBCE7059EA281ECAFF7590E1E8] - (.Logitech Inc. - LVCom Server.) -- C:\Program Files\Fichiers communs\Logitech\LComMgr\LVComSX.exe [243248]
[MD5.93AD0B78C7357A05F50E594EC7C22300] - (.Pas de propriétaire - Pas de description.) -- C:\WINDOWS\system32\rundll32.exe [33792]
[MD5.44B3B997E25C5D9A81D6C501451A96D7] - (.Logitech Inc. - Logitech LVPrcSrv Module..) -- c:\program files\fichiers communs\logitech\lvmvfm\LVPrcSrv.exe [99888]
[MD5.018857EAD9A077A56AEDFC0E5EF7A24A] - (.Apple Inc. - MobileDeviceService.) -- C:\Program Files\Fichiers communs\Apple\Mobile Device Support\AppleMobileDeviceService.exe [37664]
[MD5.F832F1505AD8B83474BD9A5B1B985E01] - (.Apple Inc. - Bonjour Service.) -- C:\Program Files\Bonjour\mDNSResponder.exe [345376]
[MD5.3CB0CC8879956C187E87E18634EE5164] - (.TOSHIBA CORPORATION - Service of ConfigFree..) -- C:\Program Files\TOSHIBA\ConfigFree\CFSvcs.exe [40960]
[MD5.C9FFBD6B8EDC46CD3D13E3C6DB914FB7] - (.Matsushita Electric Industrial Co., Ltd. - DVD-RAM Utility Helper Service.) -- C:\WINDOWS\system32\DVDRAMSV.exe [110592]
[MD5.77AC10DB097DFD0CD3071465B644D0AB] - (.Sun Microsystems, Inc. - Java(TM) Quick Starter Service.) -- C:\Program Files\Java\jre6\bin\jqs.exe [153376]
[MD5.8EF654045E518AC00E52E7A1E2D3AD70] - (.Canon Inc. - Canon Camera Access Library 8.) -- C:\Program Files\Canon\CAL\CALMAIN.exe [96370]
[MD5.0CA8C2E721617AA2F923A8151C96FB33] - (.Apple Inc. - iPodService Module (32-bit).) -- C:\Program Files\iPod\bin\iPodService.exe [820008]
[MD5.2DCC5C800F51D487178814CA9EADA181] - (.Microsoft Corporation - Bloc-notes.) -- C:\WINDOWS\system32\NOTEPAD.EXE [70656]
[MD5.F9A1CF5B5B2E9E17A2DDEB198337F97C] - (.Logitech Inc. - Logitech Camera Control Interface.) -- C:\Program Files\Logitech\QuickCam10\COCIManager.exe [166448]
[MD5.0E20A3213ED010FC4997D1EF48082ABC] - (.Mozilla Corporation - Firefox.) -- C:\Program Files\Mozilla Firefox\firefox.exe [912344]
[MD5.BA9A09CF1B9503C363617F3748F6D791] - (.Mozilla Corporation - Plugin Container for Firefox.) -- C:\Program Files\Mozilla Firefox\plugin-container.exe [16856]
[MD5.806A8E35707BEA615B209001E544F0F0] - (.Nicolas Coolman - Diagnostic Tool.) -- C:\Program Files\ZHPDiag\ZHPDiag.exe [620544]
---\\ Mozilla Firefox, Plugins,Demarrage,Recherche,Extensions (P2,M0,M1,M2)
P2 - FPN:Firefox Plugin Navigator . (.Sun Microsystems, Inc. - NPRuntime Script Plug-in Library for Java(TM) Deploy.) -- C:\Program Files\Mozilla Firefox\Plugins\npdeploytk.dll
P2 - FPN:Firefox Plugin Navigator . (.mozilla.org - Default Plug-in.) -- C:\Program Files\Mozilla Firefox\Plugins\npnul32.dll
P2 - FPN:Firefox Plugin Navigator . (.Microsoft Corporation - Office Plugin for Netscape Navigator.) -- C:\Program Files\Mozilla Firefox\Plugins\NPOFFICE.DLL
P2 - FPN:Firefox Plugin Navigator . (.Apple Inc. - The QuickTime Plugin allows you to view a wide variety of multimedia c.) -- C:\Program Files\Mozilla Firefox\Plugins\npqtplugin.dll
P2 - FPN:Firefox Plugin Navigator . (.Apple Inc. - The QuickTime Plugin allows you to view a wide variety of multimedia c.) -- C:\Program Files\Mozilla Firefox\Plugins\npqtplugin2.dll
P2 - FPN:Firefox Plugin Navigator . (.Apple Inc. - The QuickTime Plugin allows you to view a wide variety of multimedia c.) -- C:\Program Files\Mozilla Firefox\Plugins\npqtplugin3.dll
P2 - FPN:Firefox Plugin Navigator . (.Apple Inc. - The QuickTime Plugin allows you to view a wide variety of multimedia c.) -- C:\Program Files\Mozilla Firefox\Plugins\npqtplugin4.dll
P2 - FPN:Firefox Plugin Navigator . (.Apple Inc. - The QuickTime Plugin allows you to view a wide variety of multimedia c.) -- C:\Program Files\Mozilla Firefox\Plugins\npqtplugin5.dll
P2 - FPN:Firefox Plugin Navigator . (.Apple Inc. - The QuickTime Plugin allows you to view a wide variety of multimedia c.) -- C:\Program Files\Mozilla Firefox\Plugins\npqtplugin6.dll
P2 - FPN:Firefox Plugin Navigator . (.Apple Inc. - The QuickTime Plugin allows you to view a wide variety of multimedia c.) -- C:\Program Files\Mozilla Firefox\Plugins\npqtplugin7.dll
P2 - FPN: [HKLM] [@adobe.com/FlashPlayer] - (.Pas de propriétaire - Pas de description.) -- C:\WINDOWS\system32\Macromed\Flash\NPSWF32.dll
P2 - FPN: [HKLM] [@Apple.com/iTunes,version=1.0] - (.Pas de propriétaire - Pas de description.) -- C:\Program Files\iTunes\Mozilla Plugins\npitunes.dll
P2 - FPN: [HKLM] [@microsoft.com/WLPG,version=14.0.8081.0709] - (.Microsoft Corporation - NPWLPG.) -- C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll
P2 - FPN: [HKLM] [@microsoft.com/WPF,version=3.5] - (.Microsoft Corporation - Windows Presentation Foundation (WPF) plug-in for Mozilla browsers.) -- c:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll
P2 - FPN: [HKCU] [@adobe.com/Acrobat,version=5.1] - (.Adobe Systems Inc. - Adobe Acrobat Plug-In Version 5.10 for Netscape.) -- C:\Program Files\Adobe\Acrobat 5.0\Reader\Browser\nppdf32.dll
M0 - MFSP: prefs.js [Natalia - 84pz7jj9.default] google.ca
M2 - MFEP: prefs.js [Natalia - 84pz7jj9.default\en-US@dictionaries.addons.mozilla.org] [] United States English Spellchecker v5.0.1 (.Giuliano Masseroni.)
M2 - MFEP: prefs.js [Natalia - 84pz7jj9.default\{ba14329e-9550-4989-b3f2-9732e92d17cc}] [] Vuze Remote Toolbar v2.7.2.0 (.Conduit Ltd..)
---\\ Internet Explorer, Démarrage,Recherche,URSearchHook (R0,R1,R3)
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.msn.com/fr-fr
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.msn.com/fr-fr
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.microsoft.com/isapi/redir.dll?prd=ie&pver=6&ar=msnhome
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Extensions Off Page = about:NoAdd-ons
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Security Risk Page = about:SecurityRisk
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyEnable = 0
R3 - URLSearchHook: Microsoft Url Search Hook - {CFBFAE00-17A6-11D0-99CB-00C04FD64497} . (.Microsoft Corporation - Internet Explorer.) (8.00.6001.18812 (longhorn_ie8_gdr.090717-2100)) -- C:\WINDOWS\system32\ieframe.dll
R3 - URLSearchHook: Vuze Remote Toolbar - {ba14329e-9550-4989-b3f2-9732e92d17cc} . (.Conduit Ltd. - Conduit Toolbar.) (6.2.2.4) -- C:\Program Files\Vuze_Remote\tbVuz0.dll
---\\ Modification d'une valeur Ini (Changed inifile value, mapped to Registry) (F2)
F2 - REG:system.ini: UserInit=C:\WINDOWS\system32\userinit.exe,
F2 - REG:system.ini: VMApplet=rundll32 shell32,Control_RunDLL "sysdm.cpl"
---\\ Browser Helper Objects de navigateur (O2)
O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} . (.Pas de propriétaire - AcroIEHelper Module.) -- C:\Program Files\Adobe\Acrobat 5.0\Reader\ActiveX\AcroIEHelper.ocx
O2 - BHO: (no name) - {201f27d4-3704-41d6-89c1-aa35e39143ed} Clé orpheline
O2 - BHO: (no name) - {30F9B915-B755-4826-820B-08FBA6BD249D} Clé orpheline
O2 - BHO: Spybot-S&D IE Protection - {53707962-6F74-2D53-2644-206D7942484F} . (.Safer Networking Limited - SBSD IE Protection.) -- C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O2 - BHO: (no name) - {5C255C8A-E604-49b4-9D64-90988571CECB} Clé orpheline
O2 - BHO: DriveLetterAccess - {5CA3D70E-1895-11CF-8E15-001234567890} . (.Sonic Solutions - Drive Letter Access Component.) -- C:\WINDOWS\System32\DLA\DLASHX_W.DLL
O2 - BHO: Search Helper - {6EBF7485-159F-4bff-A14F-B9E3AAC4465B} . (.Microsoft Corporation - Search Helper for Internet Explorer.) -- C:\Program Files\Microsoft\Search Enhancement Pack\Search Helper\SEPsearchhelperie.dll
O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} . (.Microsoft Corporation - WindowsLiveLogin.dll.) -- C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Vuze Remote Toolbar - {ba14329e-9550-4989-b3f2-9732e92d17cc} . (.Conduit Ltd. - Conduit Toolbar.) -- C:\Program Files\Vuze_Remote\tbVuz0.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} . (.Sun Microsystems, Inc. - Java(TM) Platform SE binary.) -- C:\Program Files\Java\jre6\bin\jp2ssv.dll
O2 - BHO: Windows Live Toolbar Helper - {E15A8DC0-8516-42A1-81EA-DC94EC1ACF10} . (.Microsoft Corporation - Windows Live Toolbar Core.) -- C:\Program Files\Windows Live\Toolbar\wltcore.dll
O2 - BHO: JQSIEStartDetectorImpl - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} . (.Sun Microsystems, Inc. - Java(TM) Quick Starter binary.) -- C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll
---\\ Internet Explorer Toolbars (O3)
O3 - Toolbar: &Windows Live Toolbar - {21FA44EF-376D-4D53-9B0F-8A89D3229068} . (.Microsoft Corporation - Windows Live Toolbar Core.) -- C:\Program Files\Windows Live\Toolbar\wltcore.dll
O3 - Toolbar: Vuze Remote Toolbar - {ba14329e-9550-4989-b3f2-9732e92d17cc} . (.Conduit Ltd. - Conduit Toolbar.) -- C:\Program Files\Vuze_Remote\tbVuz0.dll
---\\ Applications démarrées par registre & par dossier (O4)
O4 - HKLM\..\Run: [ATIPTA] . (.ATI Technologies, Inc. - ATI Desktop Control Panel.) -- C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe
O4 - HKLM\..\Run: [LtMoh] . (.Agere Systems - LtMoh MFC Application.) -- C:\Program Files\ltmoh\Ltmoh.exe
O4 - HKLM\..\Run: [AGRSMMSG] . (.Agere Systems - SoftModem Messaging Applet.) -- C:\Windows\AGRSMMSG.exe
O4 - HKLM\..\Run: [Tvs] . (.TOSHIBA Corporation - TOSHIBA Virtual Sound Taskbar Module.) -- C:\Program Files\TOSHIBA\Tvs\TvsTray.exe
O4 - HKLM\..\Run: [CeEKEY] . (.COMPAL ELECTRONIC INC. - TOSHIBA HotKey Utility.) -- C:\Program Files\TOSHIBA\E-KEY\CeEKey.exe
O4 - HKLM\..\Run: [Apoint] . (.Alps Electric Co., Ltd. - Alps Pointing-device Driver.) -- C:\Program Files\Apoint2K\Apoint.exe
O4 - HKLM\..\Run: [TPNF] . (.COMPAL ELECTRONIC INC. - TPTray Application.) -- C:\Program Files\TOSHIBA\TouchPad\TPTray.exe
O4 - HKLM\..\Run: [NDSTray.exe] NDSTray.exe
O4 - HKLM\..\Run: [Zooming] . (.TOSHIBA - TOSHIBA Zooming Utility Hotkey Hook.) -- C:\Windows\System32\ZoomingHook.exe
O4 - HKLM\..\Run: [HWSetup] . (.TOSHIBA CO.,LTD. - HWSetup.) -- C:\Program Files\TOSHIBA\TOSHIBA Applet\HWSetup.exe
O4 - HKLM\..\Run: [DLA] . (.Sonic Solutions - Drive Letter Access Component.) -- C:\WINDOWS\System32\DLA\DLACTRLW.exe
O4 - HKLM\..\Run: [PadTouch] . (.TOSHIBA - PadTouch Main.) -- C:\Program Files\TOSHIBA\Touch and Launch\Padexe.exe
O4 - HKLM\..\Run: [SVPWUTIL] . (.TOSHIBA - SVPWUTIL Application.) -- C:\Program Files\Toshiba\Windows Utilities\SVPWUTIL.exe
O4 - HKLM\..\Run: [TPSMain] . (.TOSHIBA Corporation - Pas de description.) -- C:\Windows\System32\TPSMain.exe
O4 - HKLM\..\Run: [SmoothView] . (.TOSHIBA Corporation - SmoothView.) -- C:\Program Files\TOSHIBA\Utilitaire de zoom TOSHIBA\SmoothView.exe
O4 - HKLM\..\Run: [LogitechCommunicationsManager] . (.Logitech Inc. - Logitech Communications Manager.) -- C:\Program Files\Fichiers communs\Logitech\LComMgr\Communications_Helper.exe
O4 - HKLM\..\Run: [LogitechQuickCamRibbon] . (.Pas de propriétaire - Pas de description.) -- C:\Program Files\Logitech\QuickCam10\QuickCam10.exe
O4 - HKLM\..\Run: [AppleSyncNotifier] . (.Apple Inc. - AppleSyncNotifier.) -- C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleSyncNotifier.exe
O4 - HKLM\..\Run: [GBMLite8AgentLaCie] . (.Genie-soft - Genie Backup Agent.) -- C:\Program Files\LaCie\Genie Backup Assistant\GBMAgent.exe
O4 - HKLM\..\Run: [SunJavaUpdateSched] . (.Sun Microsystems, Inc. - Java(TM) Update Scheduler.) -- C:\Program Files\Fichiers communs\Java\Java Update\jusched.exe
O4 - HKLM\..\Run: [avast5] . (.AVAST Software - avast! Antivirus.) -- C:\PROGRA~1\ALWILS~1\Avast5\avastUI.exe
O4 - HKLM\..\Run: [QuickTime Task] . (.Apple Inc. - QuickTime Task.) -- C:\Program Files\QuickTime\qttask.exe
O4 - HKLM\..\Run: [iTunesHelper] . (.Apple Inc. - iTunesHelper.) -- C:\Program Files\iTunes\iTunesHelper.exe
O4 - HKCU\..\Run: [CTFMON.EXE] . (.Microsoft Corporation - CTF Loader.) -- C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [TOSCDSPD] . (.TOSHIBA - CD/DVD Drive Acoustic Silencer.) -- C:\Program Files\TOSHIBA\TOSCDSPD\toscdspd.exe
O4 - HKCU\..\Run: [SpybotSD TeaTimer] . (.Safer-Networking Ltd. - System settings protector.) -- C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe
O4 - HKCU\..\Run: [LDM] . (.Logitech - Logitech Desktop Messenger.) -- C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe
O4 - HKCU\..\Run: [GBMLite8AgentLaCie] . (.Genie-soft - Genie Backup Agent.) -- C:\Program Files\LaCie\Genie Backup Assistant\GBMAgent.exe
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] . (.Microsoft Corporation - CTF Loader.) -- C:\WINDOWS\system32\CTFMON.exe
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] . (.Microsoft Corporation - CTF Loader.) -- C:\WINDOWS\system32\CTFMON.exe
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] . (.Microsoft Corporation - CTF Loader.) -- C:\WINDOWS\system32\CTFMON.exe
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] . (.Microsoft Corporation - CTF Loader.) -- C:\WINDOWS\system32\CTFMON.exe
O4 - HKUS\S-1-5-21-1260407420-2676463331-1252240880-1006\..\Run: [CTFMON.EXE] . (.Microsoft Corporation - CTF Loader.) -- C:\WINDOWS\system32\ctfmon.exe
O4 - HKUS\S-1-5-21-1260407420-2676463331-1252240880-1006\..\Run: [TOSCDSPD] . (.TOSHIBA - CD/DVD Drive Acoustic Silencer.) -- C:\Program Files\TOSHIBA\TOSCDSPD\toscdspd.exe
O4 - HKUS\S-1-5-21-1260407420-2676463331-1252240880-1006\..\Run: [SpybotSD TeaTimer] . (.Safer-Networking Ltd. - System settings protector.) -- C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe
O4 - HKUS\S-1-5-21-1260407420-2676463331-1252240880-1006\..\Run: [LDM] . (.Logitech - Logitech Desktop Messenger.) -- C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe
O4 - HKUS\S-1-5-21-1260407420-2676463331-1252240880-1006\..\Run: [GBMLite8AgentLaCie] . (.Genie-soft - Genie Backup Agent.) -- C:\Program Files\LaCie\Genie Backup Assistant\GBMAgent.exe
O4 - Global Startup: C:\Documents And Settings\All Users\Menu Démarrer\Programmes\Démarrage\Lancement rapide de Microsoft Office OneNote 2003.lnk . (.Microsoft Corporation.) -- C:\Program Files\Microsoft Office\OFFICE11\ONENOTEM.EXE
O4 - Global Startup: C:\Documents And Settings\All Users\Menu Démarrer\Programmes\Démarrage\Logitech Desktop Messenger.lnk . (.Logitech.) -- C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LDMConf.exe
O4 - Global Startup: C:\Documents And Settings\All Users\Menu Démarrer\Programmes\Démarrage\RAMASST.lnk . (.Matsushita Electric Industrial Co., Ltd..) -- C:\WINDOWS\system32\RAMASST.exe
---\\ Autres liens utilisateurs (O4)
O4 - Global Startup: C:\Documents And Settings\All Users\Menu Démarrer\Programmes\Acrobat Reader 5.1.lnk . (.Adobe Systems Incorporated.) -- C:\Program Files\Adobe\Acrobat 5.0\Reader\AcroRd32.exe
O4 - Global Startup: C:\Documents And Settings\All Users\Menu Démarrer\Programmes\Apple Software Update.lnk . (.Pas de propriétaire.) -- C:\WINDOWS\Installer\{C41300B9-185D-475E-BFEC-39EF732F19B1}\AppleSoftwareUpdateIco.exe
O4 - Global Startup: C:\Documents And Settings\All Users\Menu Démarrer\Programmes\Inscription de Toshiba.lnk . (.Microsoft Corporation.) -- C:\WINDOWS\system32\oobe\msoobe.exe
O4 - Global Startup: C:\Documents And Settings\All Users\Menu Démarrer\Programmes\Lisez Moi.lnk . (.Pas de propriétaire.) -- C:\Lisez Moi.htm
O4 - Global Startup: C:\Documents And Settings\All Users\Menu Démarrer\Programmes\MSN.lnk . (.Microsoft Corporation.) -- C:\Program Files\MSN\MSNCoreFiles\Install\msnsusii.exe
O4 - Global Startup: C:\Documents And Settings\All Users\Menu Démarrer\Programmes\Vuze.lnk . (.Vuze Inc..) -- C:\Program Files\Vuze\Azureus.exe
O4 - Global Startup: C:\Documents And Settings\All Users\Menu Démarrer\Programmes\Windows Messenger.lnk . (.Microsoft Corporation.) -- C:\Program Files\Messenger\msmsgs.exe
O4 - Global Startup: C:\Documents And Settings\All Users\Menu Démarrer\Programmes\Windows Movie Maker.lnk . (.Microsoft Corporation.) -- C:\Program Files\Movie Maker\moviemk.exe
O4 - Global Startup: C:\Documents And Settings\Natalia\Menu Démarrer\Programmes\Assistance à distance.lnk . (.Microsoft Corporation.) -- C:\WINDOWS\system32\rcimlby.exe
O4 - Global Startup: C:\Documents And Settings\Natalia\Menu Démarrer\Programmes\Internet Explorer.lnk . (.Microsoft Corporation.) -- C:\Program Files\Internet Explorer\iexplore.exe
O4 - Global Startup: C:\Documents And Settings\Natalia\Menu Démarrer\Programmes\Outlook Express.lnk . (.Microsoft Corporation.) -- C:\Program Files\Outlook Express\msimn.exe
O4 - Global Startup: C:\Documents And Settings\Natalia\Menu Démarrer\Programmes\Windows Media Player.lnk . (.Microsoft Corporation.) -- C:\Program Files\Windows Media Player\wmplayer.exe
---\\ Lignes supplémentaires dans le menu contextuel d'Internet Explorer (O8)
O8 - Extra context menu item: E&xporter vers Microsoft Excel . (.Microsoft Corporation - Microsoft Office Excel.) -- C:\PROGRA~1\MICROS~2\OFFICE11\EXCEL.exe
---\\ Boutons situés sur la barre d'outils principale d'Internet Explorer (O9)
O9 - Extra button: Recherche - {92780B25-18CC-41C8-B9BE-3C9C571A8263} . (.Pas de propriétaire - Pas de description.) -- C:\PROGRA~1\MICROS~2\OFFICE11\REFBARH.ICO
O9 - Extra 'Tools' menuitem: Spybot - Search & Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} . (.not file.) - (.not file.)
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} . (.not file.) - (.not file.)
O9 - Extra button: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} . (.Microsoft Corporation - Windows Messenger.) -- C:\Program Files\Messenger\msmsgs.exe
---\\ Winsock hijacker (Layered Service Provider) (O10)
O10 - WLSP:\000000000001\Winsock LSP File . (.Microsoft Corporation - Fournisseur de service Sockets 2.0 de Microsoft Windows.) -- C:\WINDOWS\system32\mswsock.dll
O10 - WLSP:\000000000002\Winsock LSP File . (.Microsoft Corporation - LDAP RnR Provider DLL.) -- C:\WINDOWS\system32\winrnr.dll
O10 - WLSP:\000000000003\Winsock LSP File . (.Microsoft Corporation - Fournisseur de service Sockets 2.0 de Microsoft Windows.) -- C:\WINDOWS\system32\mswsock.dll
O10 - WLSP:\000000000004\Winsock LSP File . (.Apple Inc. - Bonjour Namespace Provider.) -- C:\Program Files\Bonjour\mdnsNSP.dll
---\\ Piratage de l'Option 'Rétablir les paramètres Web' (O14)
O14 - IERESET.INF: START_PAGE_URL=START_PAGE_URL=http://www.microsoft.com/isapi/redir.dll?prd=ie&pver=6&ar=msnhome
---\\ Objets ActiveX (Downloaded Program Files)(O16)
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab
---\\ Modification Domaine/Adresses DNS (O17)
O17 - HKLM\System\CCS\Services\Tcpip\..\{229E9A80-3F62-4CFB-9898-411C10E28864}: NameServer = 4.2.2.1,4.2.2.2
O17 - HKLM\System\CS1\Services\Tcpip\..\{229E9A80-3F62-4CFB-9898-411C10E28864}: NameServer = 4.2.2.1,4.2.2.2
O17 - HKLM\System\CS2\Services\Tcpip\..\{229E9A80-3F62-4CFB-9898-411C10E28864}: NameServer = 4.2.2.1,4.2.2.2
O17 - HKLM\System\CCS\Services\Tcpip\..\{229E9A80-3F62-4CFB-9898-411C10E28864}: DhcpNameServer = 192.168.2.1
O17 - HKLM\System\CS1\Services\Tcpip\..\{229E9A80-3F62-4CFB-9898-411C10E28864}: DhcpNameServer = 192.168.2.1
O17 - HKLM\System\CCS\Services\Tcpip\..\{229E9A80-3F62-4CFB-9898-411C10E28864}: DhcpDomain = Belkin
O17 - HKLM\System\CS1\Services\Tcpip\..\{229E9A80-3F62-4CFB-9898-411C10E28864}: DhcpDomain = Belkin
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.2.1
---\\ Protocole additionnel et piratage de protocole (O18)
O18 - Handler: bw+0 - {d8d8f302-2a5d-4112-a8b7-3d7cc98559ef} . (.Logitech - Logitech Desktop Messenger.) -- C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Handler: bw+0s - {d8d8f302-2a5d-4112-a8b7-3d7cc98559ef} . (.Logitech - Logitech Desktop Messenger.) -- C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Handler: bw-0 - {d8d8f302-2a5d-4112-a8b7-3d7cc98559ef} . (.Logitech - Logitech Desktop Messenger.) -- C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Handler: bw-0s - {d8d8f302-2a5d-4112-a8b7-3d7cc98559ef} . (.Logitech - Logitech Desktop Messenger.) -- C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Handler: bw00 - {d8d8f302-2a5d-4112-a8b7-3d7cc98559ef} . (.Logitech - Logitech Desktop Messenger.) -- C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Handler: bw00s - {d8d8f302-2a5d-4112-a8b7-3d7cc98559ef} . (.Logitech - Logitech Desktop Messenger.) -- C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Handler: bw10 - {d8d8f302-2a5d-4112-a8b7-3d7cc98559ef} . (.Logitech - Logitech Desktop Messenger.) -- C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Handler: bw10s - {d8d8f302-2a5d-4112-a8b7-3d7cc98559ef} . (.Logitech - Logitech Desktop Messenger.) -- C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Handler: bw20 - {d8d8f302-2a5d-4112-a8b7-3d7cc98559ef} . (.Logitech - Logitech Desktop Messenger.) -- C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Handler: bw20s - {d8d8f302-2a5d-4112-a8b7-3d7cc98559ef} . (.Logitech - Logitech Desktop Messenger.) -- C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Handler: bw30 - {d8d8f302-2a5d-4112-a8b7-3d7cc98559ef} . (.Logitech - Logitech Desktop Messenger.) -- C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Handler: bw30s - {d8d8f302-2a5d-4112-a8b7-3d7cc98559ef} . (.Logitech - Logitech Desktop Messenger.) -- C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Handler: bw40 - {d8d8f302-2a5d-4112-a8b7-3d7cc98559ef} . (.Logitech - Logitech Desktop Messenger.) -- C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Handler: bw40s - {d8d8f302-2a5d-4112-a8b7-3d7cc98559ef} . (.Logitech - Logitech Desktop Messenger.) -- C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Handler: bw50 - {d8d8f302-2a5d-4112-a8b7-3d7cc98559ef} . (.Logitech - Logitech Desktop Messenger.) -- C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Handler: bw50s - {d8d8f302-2a5d-4112-a8b7-3d7cc98559ef} . (.Logitech - Logitech Desktop Messenger.) -- C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Handler: bw60 - {d8d8f302-2a5d-4112-a8b7-3d7cc98559ef} . (.Logitech - Logitech Desktop Messenger.) -- C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Handler: bw60s - {d8d8f302-2a5d-4112-a8b7-3d7cc98559ef} . (.Logitech - Logitech Desktop Messenger.) -- C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Handler: bw70 - {d8d8f302-2a5d-4112-a8b7-3d7cc98559ef} . (.Logitech - Logitech Desktop Messenger.) -- C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Handler: bw70s - {d8d8f302-2a5d-4112-a8b7-3d7cc98559ef} . (.Logitech - Logitech Desktop Messenger.) -- C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Handler: bw80 - {d8d8f302-2a5d-4112-a8b7-3d7cc98559ef} . (.Logitech - Logitech Desktop Messenger.) -- C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Handler: bw80s - {d8d8f302-2a5d-4112-a8b7-3d7cc98559ef} . (.Logitech - Logitech Desktop Messenger.) -- C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Handler: bw90 - {d8d8f302-2a5d-4112-a8b7-3d7cc98559ef} . (.Logitech - Logitech Desktop Messenger.) -- C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Handler: bw90s - {d8d8f302-2a5d-4112-a8b7-3d7cc98559ef} . (.Logitech - Logitech Desktop Messenger.) -- C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Handler: bwa0 - {d8d8f302-2a5d-4112-a8b7-3d7cc98559ef} . (.Logitech - Logitech Desktop Messenger.) -- C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Handler: bwa0s - {d8d8f302-2a5d-4112-a8b7-3d7cc98559ef} . (.Logitech - Logitech Desktop Messenger.) -- C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Handler: bwb0 - {d8d8f302-2a5d-4112-a8b7-3d7cc98559ef} . (.Logitech - Logitech Desktop Messenger.) -- C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Handler: bwb0s - {d8d8f302-2a5d-4112-a8b7-3d7cc98559ef} . (.Logitech - Logitech Desktop Messenger.) -- C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Handler: bwc0 - {d8d8f302-2a5d-4112-a8b7-3d7cc98559ef} . (.Logitech - Logitech Desktop Messenger.) -- C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Handler: bwc0s - {d8d8f302-2a5d-4112-a8b7-3d7cc98559ef} . (.Logitech - Logitech Desktop Messenger.) -- C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Handler: bwd0 - {d8d8f302-2a5d-4112-a8b7-3d7cc98559ef} . (.Logitech - Logitech Desktop Messenger.) -- C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Handler: bwd0s - {d8d8f302-2a5d-4112-a8b7-3d7cc98559ef} . (.Logitech - Logitech Desktop Messenger.) -- C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Handler: bwe0 - {d8d8f302-2a5d-4112-a8b7-3d7cc98559ef} . (.Logitech - Logitech Desktop Messenger.) -- C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Handler: bwe0s - {d8d8f302-2a5d-4112-a8b7-3d7cc98559ef} . (.Logitech - Logitech Desktop Messenger.) -- C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Handler: bwf0 - {d8d8f302-2a5d-4112-a8b7-3d7cc98559ef} . (.Logitech - Logitech Desktop Messenger.) -- C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Handler: bwf0s - {d8d8f302-2a5d-4112-a8b7-3d7cc98559ef} . (.Logitech - Logitech Desktop Messenger.) -- C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Handler: bwfile-8876480 - {9462A756-7B47-47BC-8C80-C34B9B80B32B} . (.Logitech - Logitech Desktop Messenger.) -- C:\Program Files\Logitech\Desktop Messenger\8876480\Program\GAPlugProtocol-8876480.dll
O18 - Handler: bwg0 - {d8d8f302-2a5d-4112-a8b7-3d7cc98559ef} . (.Logitech - Logitech Desktop Messenger.) -- C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Handler: bwg0s - {d8d8f302-2a5d-4112-a8b7-3d7cc98559ef} . (.Logitech - Logitech Desktop Messenger.) -- C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Handler: bwh0 - {d8d8f302-2a5d-4112-a8b7-3d7cc98559ef} . (.Logitech - Logitech Desktop Messenger.) -- C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Handler: bwh0s - {d8d8f302-2a5d-4112-a8b7-3d7cc98559ef} . (.Logitech - Logitech Desktop Messenger.) -- C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Handler: bwi0 - {d8d8f302-2a5d-4112-a8b7-3d7cc98559ef} . (.Logitech - Logitech Desktop Messenger.) -- C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Handler: bwi0s - {d8d8f302-2a5d-4112-a8b7-3d7cc98559ef} . (.Logitech - Logitech Desktop Messenger.) -- C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Handler: bwj0 - {d8d8f302-2a5d-4112-a8b7-3d7cc98559ef} . (.Logitech - Logitech Desktop Messenger.) -- C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Handler: bwj0s - {d8d8f302-2a5d-4112-a8b7-3d7cc98559ef} . (.Logitech - Logitech Desktop Messenger.) -- C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Handler: bwk0 - {d8d8f302-2a5d-4112-a8b7-3d7cc98559ef} . (.Logitech - Logitech Desktop Messenger.) -- C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Handler: bwk0s - {d8d8f302-2a5d-4112-a8b7-3d7cc98559ef} . (.Logitech - Logitech Desktop Messenger.) -- C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Handler: bwl0 - {d8d8f302-2a5d-4112-a8b7-3d7cc98559ef} . (.Logitech - Logitech Desktop Messenger.) -- C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Handler: bwl0s - {d8d8f302-2a5d-4112-a8b7-3d7cc98559ef} . (.Logitech - Logitech Desktop Messenger.) -- C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Handler: bwm0 - {d8d8f302-2a5d-4112-a8b7-3d7cc98559ef} . (.Logitech - Logitech Desktop Messenger.) -- C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Handler: bwm0s - {d8d8f302-2a5d-4112-a8b7-3d7cc98559ef} . (.Logitech - Logitech Desktop Messenger.) -- C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Handler: bwn0 - {d8d8f302-2a5d-4112-a8b7-3d7cc98559ef} . (.Logitech - Logitech Desktop Messenger.) -- C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Handler: bwn0s - {d8d8f302-2a5d-4112-a8b7-3d7cc98559ef} . (.Logitech - Logitech Desktop Messenger.) -- C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Handler: bwo0 - {d8d8f302-2a5d-4112-a8b7-3d7cc98559ef} . (.Logitech - Logitech Desktop Messenger.) -- C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Handler: bwo0s - {d8d8f302-2a5d-4112-a8b7-3d7cc98559ef} . (.Logitech - Logitech Desktop Messenger.) -- C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Handler: bwp0 - {d8d8f302-2a5d-4112-a8b7-3d7cc98559ef} . (.Logitech - Logitech Desktop Messenger.) -- C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Handler: bwp0s - {d8d8f302-2a5d-4112-a8b7-3d7cc98559ef} . (.Logitech - Logitech Desktop Messenger.) -- C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Handler: bwq0 - {d8d8f302-2a5d-4112-a8b7-3d7cc98559ef} . (.Logitech - Logitech Desktop Messenger.) -- C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Handler: bwq0s - {d8d8f302-2a5d-4112-a8b7-3d7cc98559ef} . (.Logitech - Logitech Desktop Messenger.) -- C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Handler: bwr0 - {d8d8f302-2a5d-4112-a8b7-3d7cc98559ef} . (.Logitech - Logitech Desktop Messenger.) -- C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Handler: bwr0s - {d8d8f302-2a5d-4112-a8b7-3d7cc98559ef} . (.Logitech - Logitech Desktop Messenger.) -- C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Handler: bws0 - {d8d8f302-2a5d-4112-a8b7-3d7cc98559ef} . (.Logitech - Logitech Desktop Messenger.) -- C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Handler: bws0s - {d8d8f302-2a5d-4112-a8b7-3d7cc98559ef} . (.Logitech - Logitech Desktop Messenger.) -- C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Handler: bwt0 - {d8d8f302-2a5d-4112-a8b7-3d7cc98559ef} . (.Logitech - Logitech Desktop Messenger.) -- C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Handler: bwt0s - {d8d8f302-2a5d-4112-a8b7-3d7cc98559ef} . (.Logitech - Logitech Desktop Messenger.) -- C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Handler: bwu0 - {d8d8f302-2a5d-4112-a8b7-3d7cc98559ef} . (.Logitech - Logitech Desktop Messenger.) -- C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Handler: bwu0s - {d8d8f302-2a5d-4112-a8b7-3d7cc98559ef} . (.Logitech - Logitech Desktop Messenger.) -- C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Handler: bwv0 - {d8d8f302-2a5d-4112-a8b7-3d7cc98559ef} . (.Logitech - Logitech Desktop Messenger.) -- C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Handler: bwv0s - {d8d8f302-2a5d-4112-a8b7-3d7cc98559ef} . (.Logitech - Logitech Desktop Messenger.) -- C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Handler: bww0 - {d8d8f302-2a5d-4112-a8b7-3d7cc98559ef} . (.Logitech - Logitech Desktop Messenger.) -- C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Handler: bww0s - {d8d8f302-2a5d-4112-a8b7-3d7cc98559ef} . (.Logitech - Logitech Desktop Messenger.) -- C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Handler: bwx0 - {d8d8f302-2a5d-4112-a8b7-3d7cc98559ef} . (.Logitech - Logitech Desktop Messenger.) -- C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Handler: bwx0s - {d8d8f302-2a5d-4112-a8b7-3d7cc98559ef} . (.Logitech - Logitech Desktop Messenger.) -- C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Handler: bwy0 - {d8d8f302-2a5d-4112-a8b7-3d7cc98559ef} . (.Logitech - Logitech Desktop Messenger.) -- C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Handler: bwy0s - {d8d8f302-2a5d-4112-a8b7-3d7cc98559ef} . (.Logitech - Logitech Desktop Messenger.) -- C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Handler: bwz0 - {d8d8f302-2a5d-4112-a8b7-3d7cc98559ef} . (.Logitech - Logitech Desktop Messenger.) -- C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Handler: bwz0s - {d8d8f302-2a5d-4112-a8b7-3d7cc98559ef} . (.Logitech - Logitech Desktop Messenger.) -- C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Handler: offline-8876480 - {D8D8F302-2A5D-4112-A8B7-3D7CC98559EF} . (.Logitech - Logitech Desktop Messenger.) -- C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} . (.Skype Technologies - Skype for COM API.) -- C:\PROGRA~1\FICHIE~1\Skype\SKYPE4~1.DLL
---\\ Valeur de Registre AppInit_DLLs et sous-clés Winlogon Notify (autorun) (O20)
O20 - Winlogon Notify: AtiExtEvent . (.ATI Technologies Inc. - ATI External Event Utility DLL Module.) -- C:\Windows\System32\Ati2evxx.dll
O20 - Winlogon Notify: crypt32chain . (.Microsoft Corporation - Crypto API32.) -- C:\Windows\System32\crypt32.dll
O20 - Winlogon Notify: cryptnet . (.Microsoft Corporation - Crypto Network Related API.) -- C:\Windows\System32\cryptnet.dll
O20 - Winlogon Notify: cscdll . (.Microsoft Corporation - Agent réseau hors connexion.) -- C:\Windows\System32\cscdll.dll
O20 - Winlogon Notify: ScCertProp . (.Microsoft Corporation - DLL commune de réception des notifications.) -- C:\Windows\System32\wlnotify.dll
O20 - Winlogon Notify: Schedule . (.Microsoft Corporation - DLL commune de réception des notifications.) -- C:\Windows\System32\wlnotify.dll
O20 - Winlogon Notify: sclgntfy . (.Microsoft Corporation - DLL secondaire de notification de service d.) -- C:\Windows\System32\sclgntfy.dll
O20 - Winlogon Notify: SensLogn . (.Microsoft Corporation - DLL commune de réception des notifications.) -- C:\Windows\System32\WlNotify.dll
O20 - Winlogon Notify: termsrv . (.Microsoft Corporation - DLL commune de réception des notifications.) -- C:\Windows\System32\wlnotify.dll
O20 - Winlogon Notify: wlballoon . (.Microsoft Corporation - DLL commune de réception des notifications.) -- C:\Windows\System32\wlnotify.dll
---\\ Clé de Registre autorun ShellServiceObjectDelayLoad (SSO/SSODL) (O21)
O21 - SSODL: PostBootReminder - {7849596a-48ea-486e-8937-a2a3009f31a9} . (.Microsoft Corporation - DLL commune du shell Windows.) -- C:\WINDOWS\system32\SHELL32.dll
O21 - SSODL: CDBurn - {fbeb8a05-beee-4442-804e-409d6c4515e9} . (.Microsoft Corporation - DLL commune du shell Windows.) -- C:\WINDOWS\system32\SHELL32.dll
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} . (.Microsoft Corporation - Web Site Monitor.) -- C:\WINDOWS\system32\webcheck.dll
O21 - SSODL: SysTray - {35CEC8A3-2BE6-11D2-8773-92E220524153} . (.Microsoft Corporation - Objet du service d'environnement Systray.) -- C:\WINDOWS\system32\stobject.dll
---\\ Clé de Registre autorun SharedTaskScheduler (STS) (O22)
O22 - SharedTaskScheduler: (no name) - {8C7461EF-2B13-11d2-BE35-3078302C2030} . (.Microsoft Corporation - Bibliothèque de l'interface utilisateur du.) -- C:\WINDOWS\system32\browseui.dll
---\\ Liste des services NT non Microsoft et non désactivés (O23)
O23 - Service: (ACS) . (.Pas de propriétaire - Pas de description.) - C:\WINDOWS\system32\ACS.exe
O23 - Service: (Apple Mobile Device) . (.Apple Inc. - MobileDeviceService.) - C:\Program Files\Fichiers communs\Apple\Mobile Device Support\AppleMobileDeviceService.exe
O23 - Service: (Ati HotKey Poller) . (.ATI Technologies Inc. - ATI External Event Utility EXE Module.) - C:\WINDOWS\system32\Ati2evxx.exe
O23 - Service: (avast! Antivirus) . (.AVAST Software - avast! Service.) - C:\Program Files\Alwil Software\Avast5\AvastSvc.exe
O23 - Service: (Bonjour Service) . (.Apple Inc. - Bonjour Service.) - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: (CCALib8) . (.Canon Inc. - Canon Camera Access Library 8.) - C:\Program Files\Canon\CAL\CALMAIN.exe
O23 - Service: (CFSvcs) . (.TOSHIBA CORPORATION - Service of ConfigFree..) - C:\Program Files\TOSHIBA\ConfigFree\CFSvcs.exe
O23 - Service: (DVD-RAM_Service) . (.Matsushita Electric Industrial Co., Ltd. - DVD-RAM Utility Helper Service.) - C:\WINDOWS\system32\DVDRAMSV.exe
O23 - Service: (JavaQuickStarterService) . (.Sun Microsystems, Inc. - Java(TM) Quick Starter Service.) - C:\Program Files\Java\jre6\bin\jqs.exe
O23 - Service: (LVPrcSrv) . (.Logitech Inc. - Logitech LVPrcSrv Module..) - c:\program files\fichiers communs\logitech\lvmvfm\LVPrcSrv.exe
O23 - Service: (LVSrvLauncher) . (.Logitech Inc. - Service Launcher.) - C:\Program Files\Fichiers communs\Logitech\SrvLnch\SrvLnch.exe
---\\ Enumération Active Desktop & MHTML Editor (O24)
O24 - Default MHTML Editor: Last - .(.Pas de propriétaire - Pas de description.) - "C:\Program Files\Microsoft Office\OFFICE11\WINWORD.exe (.not file.)
---\\ Tâches planifiées en automatique (O39)
O39 - APT:Automatic Planified Task - C:\WINDOWS\Tasks\Dzwue.job
O39 - APT:Automatic Planified Task - C:\WINDOWS\Tasks\Ihhfw.job
O39 - APT:Automatic Planified Task - C:\WINDOWS\Tasks\TQQJADD.job
O39 - APT:Automatic Planified Task - C:\WINDOWS\Tasks\ZDJOMGA.job
---\\ Composants installés (ActiveSetup Installed Components) (O40)
O40 - ASIC: Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608500} . (.Sun Microsystems, Inc. - Java(TM) Platform SE binary.) -- C:\Program Files\Java\jre6\bin\regutils.dll
O40 - ASIC: NetMeeting 3.01 - {44BBA842-CC51-11CF-AAFA-00AA00B6015B} . (.Pas de propriétaire - Pas de description.) -- C:\WINDOWS\INF\msnetmtg.inf
O40 - ASIC: Windows Messenger 4.7 - {5945c046-1e7d-11d1-bc44-00c04fd912be} . (.Pas de propriétaire - Pas de description.) -- C:\WINDOWS\INF\msmsgs.inf
O40 - ASIC: Microsoft Windows Media Player - {6BF52A52-394A-11d3-B153-00C04F79FAA6} . (.Pas de propriétaire - Pas de description.) -- C:\WINDOWS\INF\wmp11.inf
O40 - ASIC: Adobe Flash Player - {D27CDB6E-AE6D-11cf-96B8-444553540000} . (.Adobe Systems, Inc. - Adobe Flash Player 10.0 r12.) -- C:\WINDOWS\system32\Macromed\Flash\Flash10a.ocx
---\\ Pilotes lancés au démarrage (O41)
O41 - Driver: (AFD) . (.Microsoft Corporation - Ancillary Function Driver for WinSock.) - C:\WINDOWS\system32\drivers\afd.sys
O41 - Driver: (Cdrom) . (.Microsoft Corporation - SCSI CD-ROM Driver.) - C:\Windows\System32\DRIVERS\cdrom.sys
O41 - Driver: (DLACDBHM) . (.Sonic Solutions - Shared Driver Component.) - C:\Windows\System32\Drivers\DLACDBHM.sys
O41 - Driver: (DLARTL_N) . (.Sonic Solutions - Shared Driver Component.) - C:\Windows\System32\Drivers\DLARTL_N.sys
O41 - Driver: (i8042prt) . (.Microsoft Corporation - Pilote de port i8042.) - C:\Windows\System32\DRIVERS\i8042prt.sys
O41 - Driver: (Imapi) . (.Microsoft Corporation - IMAPI Kernel Driver.) - C:\Windows\System32\DRIVERS\imapi.sys
O41 - Driver: (intelppm) . (.Microsoft Corporation - Pilote de périphérique processeur.) - C:\Windows\System32\DRIVERS\intelppm.sys
O41 - Driver: (IPSec) . (.Microsoft Corporation - IPSec Driver.) - C:\Windows\System32\DRIVERS\ipsec.sys
O41 - Driver: (Kbdclass) . (.Microsoft Corporation - Pilote de la classe Clavier.) - C:\Windows\System32\DRIVERS\kbdclass.sys
O41 - Driver: (meiudf) . (.Matsushita Electric Industrial Co.,Ltd. - DVD-RAM UDF File System Driver.) - C:\Windows\System32\Drivers\meiudf.sys
O41 - Driver: (Mouclass) . (.Microsoft Corporation - Pilote de la classe Souris.) - C:\Windows\System32\DRIVERS\mouclass.sys
O41 - Driver: (MRxSmb) . (.Microsoft Corporation - Windows NT SMB Minirdr.) - C:\Windows\System32\DRIVERS\mrxsmb.sys
O41 - Driver: (NetBIOS) . (.Microsoft Corporation - NetBIOS interface driver.) - C:\Windows\System32\DRIVERS\netbios.sys
O41 - Driver: (NetBT) . (.Microsoft Corporation - MBT Transport driver.) - C:\Windows\System32\DRIVERS\netbt.sys
O41 - Driver: (RasAcd) . (.Microsoft Corporation - RAS Automatic Connection Driver.) - C:\Windows\System32\DRIVERS\rasacd.sys
O41 - Driver: (Rdbss) . (.Microsoft Corporation - Redirected Drive Buffering SubSystem Driver.) - C:\Windows\System32\DRIVERS\rdbss.sys
O41 - Driver: (RDPCDD) . (.Microsoft Corporation - RDP Miniport.) - C:\Windows\System32\DRIVERS\RDPCDD.sys
O41 - Driver: (redbook) . (.Microsoft Corporation - Pilote de filtre audio Livre rouge.) - C:\Windows\System32\DRIVERS\redbook.sys
O41 - Driver: (SrvcSSIOMngr) . (.COMPAL ELECTRONIC INC. - IoManager Application.) - C:\Windows\System32\Drivers\SSIoMngr.sys
O41 - Driver: (Tcpip) . (.Microsoft Corporation - TCP/IP Protocol Driver.) - C:\Windows\System32\DRIVERS\tcpip.sys
O41 - Driver: (TermDD) . (.Microsoft Corporation - Terminal Server Driver.) - C:\Windows\System32\DRIVERS\termdd.sys
O41 - Driver: (TPwSav) . (.TOSHIBA - IO Driver For TOSHIBA Power Saver.) - C:\Windows\System32\Drivers\TPwSav.sys
O41 - Driver: Carte vidéo VGA. (VgaSave) . (.Microsoft Corporation - VGA/Super VGA Video Driver.) - C:\WINDOWS\system32\drivers\vga.sys
---\\ Logiciels installés (O42)
O42 - Logiciel: ALPS Touch Pad Driver - (.Pas de propriétaire.) [HKLM] -- {9F72EF8B-AEC9-4CA5-B483-143980AFD6FD}
O42 - Logiciel: ATI - Utilitaire de désinstallation du logiciel - (.Pas de propriétaire.) [HKLM] -- All ATI Software
O42 - Logiciel: ATI Display Driver - (.Pas de propriétaire.) [HKLM] -- ATI Display Driver
O42 - Logiciel: Adobe Acrobat 5.0 - (.Adobe Systems, Inc..) [HKLM] -- Adobe Acrobat 5.0
O42 - Logiciel: Adobe Flash Player 10 ActiveX - (.Adobe Systems Incorporated.) [HKLM] -- Adobe Flash Player ActiveX
O42 - Logiciel: Adobe Flash Player 10 Plugin - (.Adobe Systems Incorporated.) [HKLM] -- Adobe Flash Player Plugin
O42 - Logiciel: Apple Application Support - (.Apple Inc..) [HKLM] -- {EE6097DD-05F4-4178-9719-D3170BF098E8}
O42 - Logiciel: Apple Mobile Device Support - (.Apple Inc..) [HKLM] -- {308B6AEA-DE50-4666-996D-0FA461719D6B}
O42 - Logiciel: Apple Software Update - (.Apple Inc..) [HKLM] -- {C41300B9-185D-475E-BFEC-39EF732F19B1}
O42 - Logiciel: Assist TOSHIBA - (.Pas de propriétaire.) [HKLM] -- {12B3A009-A080-4619-9A2A-C6DB151D8D67}
O42 - Logiciel: Assistant de connexion Windows Live - (.Microsoft Corporation.) [HKLM] -- {D3116CC7-24DC-4CA3-9CE1-23FED836E9F2}
O42 - Logiciel: Atheros Client Utility - (.Pas de propriétaire.) [HKLM] -- {71D658CF-4E0D-4DA8-AA67-8C0B6F1C01FE}
O42 - Logiciel: Atheros Wireless LAN MiniPCI card Driver - (.Pas de propriétaire.) [HKLM] -- {05832D65-6EDB-4D32-BA78-BCD0E2B91C02}
O42 - Logiciel: Bonjour - (.Apple Inc..) [HKLM] -- {2A981294-F14C-4F0F-9627-D793270922F8}
O42 - Logiciel: CCleaner (remove only) - (.Piriform.) [HKLM] -- CCleaner
O42 - Logiciel: Canon Camera Access Library - (.Canon Inc..) [HKLM] -- CAL
O42 - Logiciel: Canon Camera Support Core Library - (.Canon Inc..) [HKLM] -- CSCLIB
O42 - Logiciel: Canon G.726 WMP-Decoder - (.Canon Inc..) [HKLM] -- Canon G.726 WMP-Decoder
O42 - Logiciel: Canon MovieEdit Task for ZoomBrowser EX - (.Canon Inc..) [HKLM] -- MovieEditTask
O42 - Logiciel: Canon RAW Image Task for ZoomBrowser EX - (.Canon Inc..) [HKLM] -- RAW Image Task
O42 - Logiciel: Canon Utilities CameraWindow - (.Canon Inc..) [HKLM] -- CameraWindowLauncher
O42 - Logiciel: Canon Utilities CameraWindow DC - (.Canon Inc..) [HKLM] -- CameraWindowDC
O42 - Logiciel: Canon Utilities CameraWindow DC_DV 5 for ZoomBrowser EX - (.Canon Inc..) [HKLM] -- CameraWindowDVC5
O42 - Logiciel: Canon Utilities CameraWindow DC_DV 6 for ZoomBrowser EX - (.Canon Inc..) [HKLM] -- CameraWindowDVC6
O42 - Logiciel: Canon Utilities EOS Utility - (.Canon Inc..) [HKLM] -- EOS Utility
O42 - Logiciel: Canon Utilities MyCamera - (.Canon Inc..) [HKLM] -- MyCamera
O42 - Logiciel: Canon Utilities MyCamera DC - (.Canon Inc..) [HKLM] -- MyCameraDC
O42 - Logiciel: Canon Utilities PhotoStitch - (.Canon Inc..) [HKLM] -- PhotoStitch
O42 - Logiciel: Canon Utilities RemoteCapture Task for ZoomBrowser EX - (.Canon Inc..) [HKLM] -- RemoteCaptureTask
O42 - Logiciel: Canon Utilities ZoomBrowser EX - (.Canon Inc..) [HKLM] -- ZoomBrowser EX
O42 - Logiciel: Canon ZoomBrowser EX Memory Card Utility - (.Canon Inc..) [HKLM] -- ZoomBrowser EX Memory Card Utility
O42 - Logiciel: Free Mp3 Wma Converter V 1.81 - (.Pas de propriétaire.) [HKLM] -- Free Mp3 Wma Converter_is1
O42 - Logiciel: Genie Backup Assistant - (.LaCie.) [HKLM] -- {C9A162C1-031F-4EBF-A3E6-C45F7FCCBB9E}_is1
O42 - Logiciel: Gestion d'énergie TOSHIBA - (.Pas de propriétaire.) [HKLM] -- Power Saver
O42 - Logiciel: Hotfix for Microsoft .NET Framework 3.5 SP1 (KB953595) - (.Microsoft Corporation.) [HKLM] -- {CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9}.KB953595
O42 - Logiciel: Hotfix for Microsoft .NET Framework 3.5 SP1 (KB958484) - (.Microsoft Corporation.) [HKLM] -- {CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9}.KB958484
O42 - Logiciel: Hotfix for Windows Media Format 11 SDK (KB929399) - (.Microsoft Corporation.) [HKLM] -- KB929399
O42 - Logiciel: Hotfix for Windows XP (KB954550-v5) - (.Microsoft Corporation.) [HKLM] -- KB954550-v5
O42 - Logiciel: InterVideo WinDVD Creator 2 - (.InterVideo Inc..) [HKLM] -- {2FCE4FC5-6930-40E7-A4F1-F862207424EF}
O42 - Logiciel: InterVideo WinDVD for TOSHIBA - (.InterVideo Inc..) [HKLM] -- {91810AFC-A4F8-4EBA-A5AA-B198BBC81144}
O42 - Logiciel: IrfanView (remove only) - (.Pas de propriétaire.) [HKLM] -- IrfanView
O42 - Logiciel: Java(TM) 6 Update 18 - (.Sun Microsystems, Inc..) [HKLM] -- {26A24AE4-039D-4CA4-87B4-2F83216018FF}
O42 - Logiciel: Lecteur Windows Media 11 - (.Pas de propriétaire.) [HKLM] -- Windows Media Player
O42 - Logiciel: Logitech Audio Echo Cancellation Component - (.Logitech Inc..) [HKLM] -- {BEF726DD-4037-4214-8C6A-E625C02D2870}
O42 - Logiciel: Logitech Desktop Messenger - (.Logitech, Inc..) [HKLM] -- {900B1197-53F5-4F46-A882-2CFFFE2EEDCB}
O42 - Logiciel: Logitech QuickCam - (.Logitech Inc..) [HKLM] -- {EC42ED6A-751D-45C0-A4F9-8CD00E4690FC}
O42 - Logiciel: Logitech Video Enumerator - (.Logitech Inc..) [HKLM] -- {EA516024-D84D-41F1-814F-83175A6188F2}
O42 - Logiciel: MSVCRT - (.Microsoft.) [HKLM] -- {22B775E7-6C42-4FC5-8E10-9A5E3257BD94}
O42 - Logiciel: MSXML 4.0 SP2 (KB954430) - (.Microsoft Corporation.) [HKLM] -- {86493ADD-824D-4B8E-BD72-8C5DCDC52A71}
O42 - Logiciel: Malwarebytes' Anti-Malware - (.Malwarebytes Corporation.) [HKLM] -- Malwarebytes' Anti-Malware_is1
O42 - Logiciel: Microsoft .NET Framework 1.1 - (.Microsoft.) [HKLM] -- {CB2F7EDD-9D1F-43C1-90FC-4F52EAE172A1}
O42 - Logiciel: Microsoft .NET Framework 1.1 - (.Pas de propriétaire.) [HKLM] -- Microsoft .NET Framework 1.1 (1033)
O42 - Logiciel: Microsoft .NET Framework 1.1 French Language Pack - (.Microsoft.) [HKLM] -- {9A394342-4A68-4EBA-85A6-55B559F4E700}
O42 - Logiciel: Microsoft .NET Framework 1.1 Hotfix (KB928366) - (.Pas de propriétaire.) [HKLM] -- M928366
O42 - Logiciel: Microsoft .NET Framework 2.0 Service Pack 2 - (.Microsoft Corporation.) [HKLM] -- {C09FB3CD-3D0C-3F2D-899A-6A1D67F2073F}
O42 - Logiciel: Microsoft .NET Framework 3.0 Service Pack 2 - (.Microsoft Corporation.) [HKLM] -- {A3051CD0-2F64-3813-A88D-B8DCCDE8F8C7}
O42 - Logiciel: Microsoft .NET Framework 3.5 SP1 - (.Microsoft Corporation.) [HKLM] -- Microsoft .NET Framework 3.5 SP1
O42 - Logiciel: Microsoft .NET Framework 3.5 SP1 - (.Microsoft Corporation.) [HKLM] -- {CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9}
O42 - Logiciel: Microsoft Choice Guard - (.Microsoft Corporation.) [HKLM] -- {F0E12BBA-AD66-4022-A453-A1C8A0C4D570}
O42 - Logiciel: Microsoft Compression Client Pack 1.0 for Windows XP - (.Microsoft Corporation.) [HKLM] -- MSCompPackV1
O42 - Logiciel: Microsoft Internationalized Domain Names Mitigation APIs - (.Microsoft Corporation.) [HKLM] -- IDNMitigationAPIs
O42 - Logiciel: Microsoft National Language Support Downlevel APIs - (.Microsoft Corporation.) [HKLM] -- NLSDownlevelMapping
O42 - Logiciel: Microsoft Office OneNote 2003 - (.Microsoft Corporation.) [HKLM] -- {91A1040C-6000-11D3-8CFE-0150048383C9}
O42 - Logiciel: Microsoft Office Professional Edition 2003 - (.Microsoft Corporation.) [HKLM] -- {9011040C-6000-11D3-8CFE-0150048383C9}
O42 - Logiciel: Microsoft SQL Server 2005 Compact Edition [ENU] - (.Microsoft Corporation.) [HKLM] -- {F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}
O42 - Logiciel: Microsoft Search Enhancement Pack - (.Microsoft Corporation.) [HKLM] -- {4CBA3D4C-8F51-4D60-B27E-F6B641C571E7}
O42 - Logiciel: Microsoft Sync Framework Runtime Native v1.0 (x86) - (.Microsoft Corporation.) [HKLM] -- {8A74E887-8F0F-4017-AF53-CBA42211AAA5}
O42 - Logiciel: Microsoft Sync Framework Services Native v1.0 (x86) - (.Microsoft Corporation.) [HKLM] -- {BD64AF4A-8C80-4152-AD77-FCDDF05208AB}
O42 - Logiciel: Microsoft User-Mode Driver Framework Feature Pack 1.0 - (.Microsoft Corporation.) [HKLM] -- Wudf01000
O42 - Logiciel: Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 - (.Microsoft Corporation.) [HKLM] -- {1F1C2DFC-2D24-3E06-BCB8-725134ADF989}
O42 - Logiciel: MobileMe Control Panel - (.Apple Inc..) [HKLM] -- {1E5E2F9A-17D3-45CA-8FF0-B0C2927D4B03}
O42 - Logiciel: Mozilla Firefox (3.6.13) - (.Mozilla.) [HKLM] -- Mozilla Firefox (3.6.13)
O42 - Logiciel: Octoshape add-in for Adobe Flash Player - (.Pas de propriétaire.) [HKCU] -- Octoshape add-in for Adobe Flash Player
O42 - Logiciel: Outil de diagnostic
moment de grace
Messages postés
29042
Date d'inscription
samedi 6 décembre 2008
Statut
Contributeur sécurité
Dernière intervention
18 juillet 2013
2 274
19 déc. 2010 à 21:08
19 déc. 2010 à 21:08
oui
mais il est trop long pour passer
d'où
Rend toi sur Cjoint : http://www.cijoint.fr/
Clique sur "Parcourir " dans la partie " Joindre un fichier[...] "
Sélectionne le rapport ZHPdiag.txt qui se trouve sur ton bureau
Clique ensuite sur "Cliquez ici pour déposer le fichier " et copie/colle le lien dans ton prochain message
mais il est trop long pour passer
d'où
Rend toi sur Cjoint : http://www.cijoint.fr/
Clique sur "Parcourir " dans la partie " Joindre un fichier[...] "
Sélectionne le rapport ZHPdiag.txt qui se trouve sur ton bureau
Clique ensuite sur "Cliquez ici pour déposer le fichier " et copie/colle le lien dans ton prochain message
moment de grace
Messages postés
29042
Date d'inscription
samedi 6 décembre 2008
Statut
Contributeur sécurité
Dernière intervention
18 juillet 2013
2 274
19 déc. 2010 à 21:56
19 déc. 2010 à 21:56
ok
comment va le pc ?
comment va le pc ?
Ça a l'air d'aller bien, je n'ai plus de fenêtres qui s'ouvrent au démarrage ni d'icônes du antimalware doctor.
Ça veut dire que je n'ai plus de virus??
Qu'est-ce que je fais avec les programmes téléchargés? Ça vaut la peine de les garder? Tous ou lesquels?
Ça veut dire que je n'ai plus de virus??
Qu'est-ce que je fais avec les programmes téléchargés? Ça vaut la peine de les garder? Tous ou lesquels?
moment de grace
Messages postés
29042
Date d'inscription
samedi 6 décembre 2008
Statut
Contributeur sécurité
Dernière intervention
18 juillet 2013
2 274
19 déc. 2010 à 22:24
19 déc. 2010 à 22:24
non plus de virus visibles
pour finir
1)
Copie tout le texte présent en gras ci-dessous ( tu le selectionnes avec ta souris / Clique droit dessus et choisis "copier" ou fait Ctrl+C )
[HKCU\Software\H3O8CABBPI]
M2 - MFEP: prefs.js [Natalia - 84pz7jj9.default\{ba14329e-9550-4989-b3f2-9732e92d17cc}] [] Vuze Remote Toolbar v2.7.2.0 (.Conduit Ltd..)
R3 - URLSearchHook: Vuze Remote Toolbar - {ba14329e-9550-4989-b3f2-9732e92d17cc} . (.Conduit Ltd. - Conduit Toolbar.) (6.2.2.4) -- C:\Program Files\Vuze_Remote\tbVuz0.dll
O2 - BHO: (no name) - {201f27d4-3704-41d6-89c1-aa35e39143ed} Clé orpheline O2 - BHO: (no name) - {30F9B915-B755-4826-820B-08FBA6BD249D} Clé orpheline
O2 - BHO: Vuze Remote Toolbar - {ba14329e-9550-4989-b3f2-9732e92d17cc} . (.Conduit Ltd. - Conduit Toolbar.) -- C:\Program Files\Vuze_Remote\tbVuz0.dll
O3 - Toolbar: Vuze Remote Toolbar - {ba14329e-9550-4989-b3f2-9732e92d17cc} . (.Conduit Ltd. - Conduit Toolbar.) -- C:\Program Files\Vuze_Remote\tbVuz0.dll
Puis Lance ZHPFix depuis le raccourci du bureau .
* Une fois l'outil ZHPFix ouvert , clique sur le bouton [ H ] ( "coller les lignes Helper" ) .
* Dans l'encadré principal tu verras donc les lignes que tu as copié précédemment apparaitrent .
Vérifie que toutes les lignes que je t'ai demandé de copier (et seulement elles) sont dans la fenêtre.
Clique sur " Ok " , puis " Tous " et enfin " Nettoyer ".
Copie/Colle le rapport à l'écran dans ton prochain message
le rapport se trouve dans le dossier de zhpdiag dans program files sous le nom de ZHPFixReport
..........................
2)
Mettre à jour la Console Java ? :
https://www.java.com/fr/download/uninstalltool.jsp
et installer la nouvelle version si besoin est (dans ce cas désinstalle avant l'ancienne version).
voici pour desinstaller :
JavaRa
http://raproducts.org/click/click.php?id=1
Décompresse le fichier sur le Bureau (Clic droit > Extraire tout).
* Double-clique (clic droit "en tant qu'administrateur" pour Vista) sur le répertoire JavaRa.
* Puis double-clique sur le fichier JavaRa.exe (le exe peut ne pas s'afficher).
* Choisis Français puis clique sur Select.
* Clique sur Recherche de mises à jour.
* Sélectionne Mettre à jour via jucheck.exe puis clique sur Rechercher.
* Autorise le processus à se connecter s'il le demande, clique sur Installer et suis les instructions d'installation qui prennent quelques minutes.
* L'installation est terminée, reviens à l'écran de JavaRa et clique sur Effacer les anciennes versions.
* Clique sur Oui pour confirmer. Laisse travailler et clique ensuite sur OK, puis une deuxième fois sur OK.
* Un rapport va s'ouvrir. Poste-le dans ta prochaine réponse.
* Ferme l'application.
Note : le rapport se trouve aussi dans C:\ sous le nom JavaRa.log.
.............
3)
Mets à jour Adobe Reader (désinstalle avant la version antérieure)
https://acrobat.adobe.com/fr/fr/acrobat/pdf-reader.html
puis
* Lancez Adobe Reader
* Cliquez sur Edition --> Préférences --> JavaScript
* Décochez "Activer Acrobat JavaScript"
* Validez
....................
4)
IMPORTANT
Purger les points de restauration système:
Télécharge OneClick2RestorePoint
http://www.multifa7.be/Laddy/OneClick2RP.exe
Mirroirs si non accessible :
http://batchdhelus.open-web.fr/Laddy/OneClick2RP.exe
https://app.box.com/s/cqcsz5m0oz
* Double clic sur OneClick2RP pour l'exécuter (Clic-droit choisir Executer en tant qu'administrateur sous Vista/Seven)
* Clic sur le bouton "Purger", l'outil de nettoyage de windows va s'ouvrir
* Choisis ton disque dur principal en général (C:\) ... Patiente pendant le scan...
* </gras>Rends toi dans l'onglet "Autres options"</gras>
* Dans la zone restauration système, clic sur le bouton nettoyer puis sur le bouton Supprimer.
* Les points de restauration système seront purgés sauf le dernier créé.
Ensuite avec le même outil
Créer un nouveau point de restauration reconnaissable
.................
5)
pour supprimer les outils de désinfection :
télécharge Delfix de Xplode
http://sd-1.archive-host.com/membres/up/17959594961240255/DelFix.exe
choisis SUPPRESSION
poste son rapport
.............................................
Recommandations pour l'avenir
Tu es la meilleure protection pour ton pc que tout autre antivirus, si tu admets un minimum de rigueur dans son utilisation...Les virus sont vigilants et pénètrent ta machine par toutes les portes que tu laisseras ouvertes...
- logiciels non à jour (windows, internet explorer, java, adobe reader etc)
- installation de toolbar
- fréquentation de sites piégés
- P2P
- Application de cracks
- Supports usb
Pour t'aider dans cette tâche, voici quelques pistes
Pour naviguer sur internet plus en sécurité et à l'abri des publicités, je te conseille vivement d'installer et d'utiliser le navigateur firefox
http://www.mozilla-europe.org/fr/firefox/
Une fois que c'est fait, lances le et installe l'extension de sécurité adblock plus
pour bloquer les publicités
http://www.clubic.com/telecharger-fiche45912-adblock-plus.html
............................
WOT - Extension pour ton navigateur internet :
Voici une extension à télécharger qui te permettra, en faisant tes recherches sur google, de savoir si le site proposé lors de tes recherches est un site de confiance ou un site à éviter car il pourrait infecter ton PC :
Pour Firefox : https://addons.mozilla.org/fr/firefox/addon/wot-safe-browsing-tool/
Pour internet explorer : https://chrome.google.com/webstore/detail/wot-web-of-trust-website/bhmmomiinigofkjcapegjjndpbikblnp
........................
Pour éviter une infection toolbar, il faut tout lire attentivement lorsque tu installes un programme gratuit, et décocher tous les programmes additionnels qui sont proposés, en particulier les barres d'outils !
..........................
Vaccines tes disques amovibles à l'aide de USBFix (de Chiquitine29 et C_XX)
http://www.teamxscript.org/too/UsbFix.exe
Au menu principal, choisis l'option 3 (Vaccination).
............................
garder Malwarebytes et faire un examen de temps en temps ton PC, avec mise à jour avant chaque scan
.......................
Télécharge et installe CCleaner (N'installe pas la Yahoo Toolbar) :
https://www.commentcamarche.net/telecharger/utilitaires/5647-ccleaner/
* Lance-le.(clic droit "en tant qu'administrateur" pour Vista) Va dans Options puis Avancé et décoche la case Effacer uniquement les fichiers etc....
* Va dans Nettoyeur, choisis Analyse. Une fois terminé, lance le nettoyage.
* Ensuite, choisis Registre, puis Chercher des erreurs. Une fois terminé, répare toutes les erreurs tant de fois qu il en trouve a l analyse
..........................
utilitaire pour défragmenter , utilises pour ce faire Defraggler https://www.clubic.com/telecharger-fiche44314-defraggler.html
........................
A lire pour mieux comprendre l'environnement qui t'entoure
http://assiste.com.free.fr/p/abc/a/zombies_et_botnets.html
https://www.malekal.com/fichiers/projetantimalwares/ProjetAntiMalware-courte.pdf
http://www.libellules.ch/...
pour finir
1)
Copie tout le texte présent en gras ci-dessous ( tu le selectionnes avec ta souris / Clique droit dessus et choisis "copier" ou fait Ctrl+C )
[HKCU\Software\H3O8CABBPI]
M2 - MFEP: prefs.js [Natalia - 84pz7jj9.default\{ba14329e-9550-4989-b3f2-9732e92d17cc}] [] Vuze Remote Toolbar v2.7.2.0 (.Conduit Ltd..)
R3 - URLSearchHook: Vuze Remote Toolbar - {ba14329e-9550-4989-b3f2-9732e92d17cc} . (.Conduit Ltd. - Conduit Toolbar.) (6.2.2.4) -- C:\Program Files\Vuze_Remote\tbVuz0.dll
O2 - BHO: (no name) - {201f27d4-3704-41d6-89c1-aa35e39143ed} Clé orpheline O2 - BHO: (no name) - {30F9B915-B755-4826-820B-08FBA6BD249D} Clé orpheline
O2 - BHO: Vuze Remote Toolbar - {ba14329e-9550-4989-b3f2-9732e92d17cc} . (.Conduit Ltd. - Conduit Toolbar.) -- C:\Program Files\Vuze_Remote\tbVuz0.dll
O3 - Toolbar: Vuze Remote Toolbar - {ba14329e-9550-4989-b3f2-9732e92d17cc} . (.Conduit Ltd. - Conduit Toolbar.) -- C:\Program Files\Vuze_Remote\tbVuz0.dll
Puis Lance ZHPFix depuis le raccourci du bureau .
* Une fois l'outil ZHPFix ouvert , clique sur le bouton [ H ] ( "coller les lignes Helper" ) .
* Dans l'encadré principal tu verras donc les lignes que tu as copié précédemment apparaitrent .
Vérifie que toutes les lignes que je t'ai demandé de copier (et seulement elles) sont dans la fenêtre.
Clique sur " Ok " , puis " Tous " et enfin " Nettoyer ".
Copie/Colle le rapport à l'écran dans ton prochain message
le rapport se trouve dans le dossier de zhpdiag dans program files sous le nom de ZHPFixReport
..........................
2)
Mettre à jour la Console Java ? :
https://www.java.com/fr/download/uninstalltool.jsp
et installer la nouvelle version si besoin est (dans ce cas désinstalle avant l'ancienne version).
voici pour desinstaller :
JavaRa
http://raproducts.org/click/click.php?id=1
Décompresse le fichier sur le Bureau (Clic droit > Extraire tout).
* Double-clique (clic droit "en tant qu'administrateur" pour Vista) sur le répertoire JavaRa.
* Puis double-clique sur le fichier JavaRa.exe (le exe peut ne pas s'afficher).
* Choisis Français puis clique sur Select.
* Clique sur Recherche de mises à jour.
* Sélectionne Mettre à jour via jucheck.exe puis clique sur Rechercher.
* Autorise le processus à se connecter s'il le demande, clique sur Installer et suis les instructions d'installation qui prennent quelques minutes.
* L'installation est terminée, reviens à l'écran de JavaRa et clique sur Effacer les anciennes versions.
* Clique sur Oui pour confirmer. Laisse travailler et clique ensuite sur OK, puis une deuxième fois sur OK.
* Un rapport va s'ouvrir. Poste-le dans ta prochaine réponse.
* Ferme l'application.
Note : le rapport se trouve aussi dans C:\ sous le nom JavaRa.log.
.............
3)
Mets à jour Adobe Reader (désinstalle avant la version antérieure)
https://acrobat.adobe.com/fr/fr/acrobat/pdf-reader.html
puis
* Lancez Adobe Reader
* Cliquez sur Edition --> Préférences --> JavaScript
* Décochez "Activer Acrobat JavaScript"
* Validez
....................
4)
IMPORTANT
Purger les points de restauration système:
Télécharge OneClick2RestorePoint
http://www.multifa7.be/Laddy/OneClick2RP.exe
Mirroirs si non accessible :
http://batchdhelus.open-web.fr/Laddy/OneClick2RP.exe
https://app.box.com/s/cqcsz5m0oz
* Double clic sur OneClick2RP pour l'exécuter (Clic-droit choisir Executer en tant qu'administrateur sous Vista/Seven)
* Clic sur le bouton "Purger", l'outil de nettoyage de windows va s'ouvrir
* Choisis ton disque dur principal en général (C:\) ... Patiente pendant le scan...
* </gras>Rends toi dans l'onglet "Autres options"</gras>
* Dans la zone restauration système, clic sur le bouton nettoyer puis sur le bouton Supprimer.
* Les points de restauration système seront purgés sauf le dernier créé.
Ensuite avec le même outil
Créer un nouveau point de restauration reconnaissable
.................
5)
pour supprimer les outils de désinfection :
télécharge Delfix de Xplode
http://sd-1.archive-host.com/membres/up/17959594961240255/DelFix.exe
choisis SUPPRESSION
poste son rapport
.............................................
Recommandations pour l'avenir
Tu es la meilleure protection pour ton pc que tout autre antivirus, si tu admets un minimum de rigueur dans son utilisation...Les virus sont vigilants et pénètrent ta machine par toutes les portes que tu laisseras ouvertes...
- logiciels non à jour (windows, internet explorer, java, adobe reader etc)
- installation de toolbar
- fréquentation de sites piégés
- P2P
- Application de cracks
- Supports usb
Pour t'aider dans cette tâche, voici quelques pistes
Pour naviguer sur internet plus en sécurité et à l'abri des publicités, je te conseille vivement d'installer et d'utiliser le navigateur firefox
http://www.mozilla-europe.org/fr/firefox/
Une fois que c'est fait, lances le et installe l'extension de sécurité adblock plus
pour bloquer les publicités
http://www.clubic.com/telecharger-fiche45912-adblock-plus.html
............................
WOT - Extension pour ton navigateur internet :
Voici une extension à télécharger qui te permettra, en faisant tes recherches sur google, de savoir si le site proposé lors de tes recherches est un site de confiance ou un site à éviter car il pourrait infecter ton PC :
Pour Firefox : https://addons.mozilla.org/fr/firefox/addon/wot-safe-browsing-tool/
Pour internet explorer : https://chrome.google.com/webstore/detail/wot-web-of-trust-website/bhmmomiinigofkjcapegjjndpbikblnp
........................
Pour éviter une infection toolbar, il faut tout lire attentivement lorsque tu installes un programme gratuit, et décocher tous les programmes additionnels qui sont proposés, en particulier les barres d'outils !
..........................
Vaccines tes disques amovibles à l'aide de USBFix (de Chiquitine29 et C_XX)
http://www.teamxscript.org/too/UsbFix.exe
Au menu principal, choisis l'option 3 (Vaccination).
............................
garder Malwarebytes et faire un examen de temps en temps ton PC, avec mise à jour avant chaque scan
.......................
Télécharge et installe CCleaner (N'installe pas la Yahoo Toolbar) :
https://www.commentcamarche.net/telecharger/utilitaires/5647-ccleaner/
* Lance-le.(clic droit "en tant qu'administrateur" pour Vista) Va dans Options puis Avancé et décoche la case Effacer uniquement les fichiers etc....
* Va dans Nettoyeur, choisis Analyse. Une fois terminé, lance le nettoyage.
* Ensuite, choisis Registre, puis Chercher des erreurs. Une fois terminé, répare toutes les erreurs tant de fois qu il en trouve a l analyse
..........................
utilitaire pour défragmenter , utilises pour ce faire Defraggler https://www.clubic.com/telecharger-fiche44314-defraggler.html
........................
A lire pour mieux comprendre l'environnement qui t'entoure
http://assiste.com.free.fr/p/abc/a/zombies_et_botnets.html
https://www.malekal.com/fichiers/projetantimalwares/ProjetAntiMalware-courte.pdf
http://www.libellules.ch/...