Aide pour désinfection de mon portable

Est ce que mon rapport t'es parvenu ? Pardonnes moi si je parais insistant mais n'étant pas habitué de ce site je suis un peu en aveugle

Voici lle rapport :


-----------\\ ToolBar S&D 1.0.7 XP/Vista

[ Windows XP (NT 5.1) Build 2600, Service Pack 2 ]
[ USER : MARCEL ] [ "C:\Toolbar SD" ] [ Selection : 1 ]
[ 26/07/2008 | 20:17:28,37 ] [ PC : PORTABLE ]
[ MAJ : 25-07-2008 | 17:35 ]

-----------\\ Recherche de Fichiers / Dossiers ...

C:\Program Files\KaZaA
C:\Program Files\KaZaA\BGP2P
C:\Program Files\KaZaA\Db
C:\Program Files\KaZaA\My Shared Folder
C:\WINDOWS\Fonts\acrsec.fon

-----------\\ [..\Internet Explorer\Main]

[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
"Local Page"="C:\\WINDOWS\\system32\\blank.htm"
"Search Page"="http://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch"
"Start Page"="https://www.google.fr/?gws_rd=ssl"

[HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Main]
"Default_Page_URL"="https://www.msn.com/fr-fr/?ocid=iehp"
"Default_Search_URL"="https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF"
"Search Page"="https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF"
"Start Page"="https://www.msn.com/fr-fr/?ocid=iehp"
"Search Bar"="http://search.presario.net/..."


-----------\\ Fin du rapport a 20:19:24,46

Cependant, un certain nombre d'actions ont déjà été réalisées par chiquitine29. Dois-je te compléter le rapport par d'autres éléments ?
Merci

voilà le rapport demandé :


-----------\\ ToolBar S&D 1.0.7 XP/Vista

[ Windows XP (NT 5.1) Build 2600, Service Pack 2 ]
[ USER : MARCEL ] [ "C:\Toolbar SD" ] [ Selection : 2 ]
[ 27/07/2008 | 15:47:17,22 ] [ PC : PORTABLE ]
[ MAJ : 25-07-2008 | 17:35 ]

-----------\\ SUPPRESSION

Supprime! - C:\Program Files\KaZaA\BGP2P
Supprime! - C:\Program Files\KaZaA\Db
Supprime! - C:\Program Files\KaZaA\My Shared Folder
Supprime! - C:\WINDOWS\Fonts\acrsec.fon
Supprime! - C:\Program Files\KaZaA

-----------\\ Recherche de Fichiers / Dossiers ...


-----------\\ [..\Internet Explorer\Main]

[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
"Local Page"="C:\\WINDOWS\\system32\\blank.htm"
"Search Page"="https://www.google.com/?gws_rd=ssl"
"Start Page"="https://www.google.fr/?gws_rd=ssl"
"Search Bar"="http://www.google.com/toolbar/ie8/sidebar.html"

[HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Main]
"Default_Page_URL"="https://www.msn.com/fr-fr/?ocid=iehp"
"Default_Search_URL"="https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF"
"Search Page"="https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF"
"Start Page"="https://www.msn.com/fr-fr/?ocid=iehp"
"Search Bar"="http://search.presario.net/..."


-----------\\ Fin du rapport a 15:50:07,03

antivirus : Kaspersky Anti-Virus 2009 : antivirus fichiers - anti virus courriers et chat - antivirus internet - anti phishing - défense proactive . Pas vu de module anti hacker

antispyware : AVG Anti-Spyware - Suis obligé de le désactiver car me fait planter au démarrage. Il a été installé par chiquitine et a identifié pas mal de problème mais quand j'ai voulu redémarrer le micro ça c'est compliqué. A vrai dire j'ai installé open office après le démarrage et c'est là que le problème a commencé.

et SPAMfighter qui ne fait que le filtrage des spams sur la messagerie. Je ne sais d'où il vient.

Pour le reste je lance malwarebytes... a tout à l'heure

voila le dernier rapport :

Malwarebytes' Anti-Malware 1.23
Version de la base de données: 999
Windows 5.1.2600 Service Pack 2

21:29:56 27/07/2008
mbam-log-7-27-2008 (21-29-56).txt

Type de recherche: Examen complet (C:\|)
Eléments examinés: 118162
Temps écoulé: 1 hour(s), 6 minute(s), 51 second(s)

Processus mémoire infecté(s): 0
Module(s) mémoire infecté(s): 0
Clé(s) du Registre infectée(s): 0
Valeur(s) du Registre infectée(s): 0
Elément(s) de données du Registre infecté(s): 1
Dossier(s) infecté(s): 1
Fichier(s) infecté(s): 3

Processus mémoire infecté(s):
(Aucun élément nuisible détecté)

Module(s) mémoire infecté(s):
(Aucun élément nuisible détecté)

Clé(s) du Registre infectée(s):
(Aucun élément nuisible détecté)

Valeur(s) du Registre infectée(s):
(Aucun élément nuisible détecté)

Elément(s) de données du Registre infecté(s):
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\StartMenuLogOff (Hijack.StartMenu) -> Bad: (1) Good: (0) -> Quarantined and deleted successfully.

Dossier(s) infecté(s):
C:\Program Files\WinFixer 2005 (Rogue.WinFixer) -> Quarantined and deleted successfully.

Fichier(s) infecté(s):
C:\Deckard\System Scanner\20080725222945\backup\DOCUME~1\MARCEL\LOCALS~1\Temp\byeA2.tmp\Disk1\setup.exe (Rogue.Installer) -> Quarantined and deleted successfully.
C:\Program Files\InstallShield Installation Information\{47FF921C-E834-47A6-8CE4-F0A99CDE347F}\setup.exe (Rogue.Installer) -> Quarantined and deleted successfully.
C:\Program Files\setup.exe (Rogue.Installer) -> Quarantined and deleted successfully.

le rapport kaspersky :

Monday, July 28, 2008 2:34:29 AM
Système d'exploitation : Microsoft Windows XP Home Edition, Service Pack 2 (Build 2600)
Kaspersky On-line Scanner version : 5.0.83.0
Dernière mise à jour de la base antivirus Kaspersky : 27/07/2008
Enregistrements dans la base antivirus Kaspersky : 903305


Paramètres d'analyse
Analyser avec la base antivirus suivante standard
Analyser les archives vrai
Analyser les bases de messagerie vrai

Cible de l'analyse Poste de travail
A:\
C:\
D:\

Statistiques de l'analyse
Total d'objets analysés 88472
Nombre de virus trouvés 0
Nombre d'objets infectés 0 / 0
Nombre d'objets suspects 0
Durée de l'analyse 03:00:20

Nom de l'objet infecté Nom du virus Dernière action
C:\Documents and Settings\All Users\Application Data\Kaspersky Lab\AVP8\Report\00\00000001_events.dat L'objet est verrouillé ignoré

C:\Documents and Settings\All Users\Application Data\Kaspersky Lab\AVP8\Report\00\00000001_objbt.dat L'objet est verrouillé ignoré

C:\Documents and Settings\All Users\Application Data\Kaspersky Lab\AVP8\Report\00\00000001_objdt.dat L'objet est verrouillé ignoré

C:\Documents and Settings\All Users\Application Data\Kaspersky Lab\AVP8\Report\00\00000001_objid.dat L'objet est verrouillé ignoré

C:\Documents and Settings\All Users\Application Data\Kaspersky Lab\AVP8\Report\00\segments.dat L'objet est verrouillé ignoré

C:\Documents and Settings\All Users\Application Data\Kaspersky Lab\AVP8\Report\01\00000001_events.dat L'objet est verrouillé ignoré

C:\Documents and Settings\All Users\Application Data\Kaspersky Lab\AVP8\Report\01\00000001_objbt.dat L'objet est verrouillé ignoré

C:\Documents and Settings\All Users\Application Data\Kaspersky Lab\AVP8\Report\01\00000001_objdt.dat L'objet est verrouillé ignoré

C:\Documents and Settings\All Users\Application Data\Kaspersky Lab\AVP8\Report\01\00000001_objid.dat L'objet est verrouillé ignoré

C:\Documents and Settings\All Users\Application Data\Kaspersky Lab\AVP8\Report\01\00000002_events.dat L'objet est verrouillé ignoré

C:\Documents and Settings\All Users\Application Data\Kaspersky Lab\AVP8\Report\01\00000002_objbt.dat L'objet est verrouillé ignoré

C:\Documents and Settings\All Users\Application Data\Kaspersky Lab\AVP8\Report\01\00000002_objdt.dat L'objet est verrouillé ignoré

C:\Documents and Settings\All Users\Application Data\Kaspersky Lab\AVP8\Report\01\00000002_objid.dat L'objet est verrouillé ignoré

C:\Documents and Settings\All Users\Application Data\Kaspersky Lab\AVP8\Report\01\00000003_events.dat L'objet est verrouillé ignoré

C:\Documents and Settings\All Users\Application Data\Kaspersky Lab\AVP8\Report\01\00000003_objbt.dat L'objet est verrouillé ignoré

C:\Documents and Settings\All Users\Application Data\Kaspersky Lab\AVP8\Report\01\00000003_objdt.dat L'objet est verrouillé ignoré

C:\Documents and Settings\All Users\Application Data\Kaspersky Lab\AVP8\Report\01\00000003_objid.dat L'objet est verrouillé ignoré

C:\Documents and Settings\All Users\Application Data\Kaspersky Lab\AVP8\Report\01\00000004_events.dat L'objet est verrouillé ignoré

C:\Documents and Settings\All Users\Application Data\Kaspersky Lab\AVP8\Report\01\00000004_objbt.dat L'objet est verrouillé ignoré

C:\Documents and Settings\All Users\Application Data\Kaspersky Lab\AVP8\Report\01\00000004_objdt.dat L'objet est verrouillé ignoré

C:\Documents and Settings\All Users\Application Data\Kaspersky Lab\AVP8\Report\01\00000004_objid.dat L'objet est verrouillé ignoré

C:\Documents and Settings\All Users\Application Data\Kaspersky Lab\AVP8\Report\01\00000005_events.dat L'objet est verrouillé ignoré

C:\Documents and Settings\All Users\Application Data\Kaspersky Lab\AVP8\Report\01\00000005_objbt.dat L'objet est verrouillé ignoré

C:\Documents and Settings\All Users\Application Data\Kaspersky Lab\AVP8\Report\01\00000005_objdt.dat L'objet est verrouillé ignoré

C:\Documents and Settings\All Users\Application Data\Kaspersky Lab\AVP8\Report\01\00000005_objid.dat L'objet est verrouillé ignoré

C:\Documents and Settings\All Users\Application Data\Kaspersky Lab\AVP8\Report\01\00000006_events.dat L'objet est verrouillé ignoré

C:\Documents and Settings\All Users\Application Data\Kaspersky Lab\AVP8\Report\01\00000006_objbt.dat L'objet est verrouillé ignoré

C:\Documents and Settings\All Users\Application Data\Kaspersky Lab\AVP8\Report\01\00000006_objdt.dat L'objet est verrouillé ignoré

C:\Documents and Settings\All Users\Application Data\Kaspersky Lab\AVP8\Report\01\00000006_objid.dat L'objet est verrouillé ignoré

C:\Documents and Settings\All Users\Application Data\Kaspersky Lab\AVP8\Report\01\00000007_events.dat L'objet est verrouillé ignoré

C:\Documents and Settings\All Users\Application Data\Kaspersky Lab\AVP8\Report\01\00000007_objbt.dat L'objet est verrouillé ignoré

C:\Documents and Settings\All Users\Application Data\Kaspersky Lab\AVP8\Report\01\00000007_objdt.dat L'objet est verrouillé ignoré

C:\Documents and Settings\All Users\Application Data\Kaspersky Lab\AVP8\Report\01\00000007_objid.dat L'objet est verrouillé ignoré

C:\Documents and Settings\All Users\Application Data\Kaspersky Lab\AVP8\Report\01\segments.dat L'objet est verrouillé ignoré

C:\Documents and Settings\All Users\Application Data\Kaspersky Lab\AVP8\Report\02\00000001_events.dat L'objet est verrouillé ignoré

C:\Documents and Settings\All Users\Application Data\Kaspersky Lab\AVP8\Report\02\00000001_objbt.dat L'objet est verrouillé ignoré

C:\Documents and Settings\All Users\Application Data\Kaspersky Lab\AVP8\Report\02\00000001_objdt.dat L'objet est verrouillé ignoré

C:\Documents and Settings\All Users\Application Data\Kaspersky Lab\AVP8\Report\02\00000001_objid.dat L'objet est verrouillé ignoré

C:\Documents and Settings\All Users\Application Data\Kaspersky Lab\AVP8\Report\02\00000002_events.dat L'objet est verrouillé ignoré

C:\Documents and Settings\All Users\Application Data\Kaspersky Lab\AVP8\Report\02\00000002_objbt.dat L'objet est verrouillé ignoré

C:\Documents and Settings\All Users\Application Data\Kaspersky Lab\AVP8\Report\02\00000002_objdt.dat L'objet est verrouillé ignoré

C:\Documents and Settings\All Users\Application Data\Kaspersky Lab\AVP8\Report\02\00000002_objid.dat L'objet est verrouillé ignoré

C:\Documents and Settings\All Users\Application Data\Kaspersky Lab\AVP8\Report\02\00000003_events.dat L'objet est verrouillé ignoré

C:\Documents and Settings\All Users\Application Data\Kaspersky Lab\AVP8\Report\02\00000003_objbt.dat L'objet est verrouillé ignoré

C:\Documents and Settings\All Users\Application Data\Kaspersky Lab\AVP8\Report\02\00000003_objdt.dat L'objet est verrouillé ignoré

C:\Documents and Settings\All Users\Application Data\Kaspersky Lab\AVP8\Report\02\00000003_objid.dat L'objet est verrouillé ignoré

C:\Documents and Settings\All Users\Application Data\Kaspersky Lab\AVP8\Report\02\00000004_events.dat L'objet est verrouillé ignoré

C:\Documents and Settings\All Users\Application Data\Kaspersky Lab\AVP8\Report\02\00000004_objbt.dat L'objet est verrouillé ignoré

C:\Documents and Settings\All Users\Application Data\Kaspersky Lab\AVP8\Report\02\00000004_objdt.dat L'objet est verrouillé ignoré

C:\Documents and Settings\All Users\Application Data\Kaspersky Lab\AVP8\Report\02\00000004_objid.dat L'objet est verrouillé ignoré

C:\Documents and Settings\All Users\Application Data\Kaspersky Lab\AVP8\Report\02\00000005_events.dat L'objet est verrouillé ignoré

C:\Documents and Settings\All Users\Application Data\Kaspersky Lab\AVP8\Report\02\00000005_objbt.dat L'objet est verrouillé ignoré

C:\Documents and Settings\All Users\Application Data\Kaspersky Lab\AVP8\Report\02\00000005_objdt.dat L'objet est verrouillé ignoré

C:\Documents and Settings\All Users\Application Data\Kaspersky Lab\AVP8\Report\02\00000005_objid.dat L'objet est verrouillé ignoré

C:\Documents and Settings\All Users\Application Data\Kaspersky Lab\AVP8\Report\02\00000006_events.dat L'objet est verrouillé ignoré

C:\Documents and Settings\All Users\Application Data\Kaspersky Lab\AVP8\Report\02\00000006_objbt.dat L'objet est verrouillé ignoré

C:\Documents and Settings\All Users\Application Data\Kaspersky Lab\AVP8\Report\02\00000006_objdt.dat L'objet est verrouillé ignoré

C:\Documents and Settings\All Users\Application Data\Kaspersky Lab\AVP8\Report\02\00000006_objid.dat L'objet est verrouillé ignoré

C:\Documents and Settings\All Users\Application Data\Kaspersky Lab\AVP8\Report\02\segments.dat L'objet est verrouillé ignoré

C:\Documents and Settings\All Users\Application Data\Kaspersky Lab\AVP8\Report\03\00000001_events.dat L'objet est verrouillé ignoré

C:\Documents and Settings\All Users\Application Data\Kaspersky Lab\AVP8\Report\03\00000001_objbt.dat L'objet est verrouillé ignoré

C:\Documents and Settings\All Users\Application Data\Kaspersky Lab\AVP8\Report\03\00000001_objdt.dat L'objet est verrouillé ignoré

C:\Documents and Settings\All Users\Application Data\Kaspersky Lab\AVP8\Report\03\00000001_objid.dat L'objet est verrouillé ignoré

C:\Documents and Settings\All Users\Application Data\Kaspersky Lab\AVP8\Report\03\00000002_events.dat L'objet est verrouillé ignoré

C:\Documents and Settings\All Users\Application Data\Kaspersky Lab\AVP8\Report\03\00000002_objbt.dat L'objet est verrouillé ignoré

C:\Documents and Settings\All Users\Application Data\Kaspersky Lab\AVP8\Report\03\00000002_objdt.dat L'objet est verrouillé ignoré

C:\Documents and Settings\All Users\Application Data\Kaspersky Lab\AVP8\Report\03\00000002_objid.dat L'objet est verrouillé ignoré

C:\Documents and Settings\All Users\Application Data\Kaspersky Lab\AVP8\Report\03\00000003_events.dat L'objet est verrouillé ignoré

C:\Documents and Settings\All Users\Application Data\Kaspersky Lab\AVP8\Report\03\00000003_objbt.dat L'objet est verrouillé ignoré

C:\Documents and Settings\All Users\Application Data\Kaspersky Lab\AVP8\Report\03\00000003_objdt.dat L'objet est verrouillé ignoré

C:\Documents and Settings\All Users\Application Data\Kaspersky Lab\AVP8\Report\03\00000003_objid.dat L'objet est verrouillé ignoré

C:\Documents and Settings\All Users\Application Data\Kaspersky Lab\AVP8\Report\03\00000004_events.dat L'objet est verrouillé ignoré

C:\Documents and Settings\All Users\Application Data\Kaspersky Lab\AVP8\Report\03\00000004_objbt.dat L'objet est verrouillé ignoré

C:\Documents and Settings\All Users\Application Data\Kaspersky Lab\AVP8\Report\03\00000004_objdt.dat L'objet est verrouillé ignoré

C:\Documents and Settings\All Users\Application Data\Kaspersky Lab\AVP8\Report\03\00000004_objid.dat L'objet est verrouillé ignoré

C:\Documents and Settings\All Users\Application Data\Kaspersky Lab\AVP8\Report\03\00000005_events.dat L'objet est verrouillé ignoré

C:\Documents and Settings\All Users\Application Data\Kaspersky Lab\AVP8\Report\03\00000005_objbt.dat L'objet est verrouillé ignoré

C:\Documents and Settings\All Users\Application Data\Kaspersky Lab\AVP8\Report\03\00000005_objdt.dat L'objet est verrouillé ignoré

C:\Documents and Settings\All Users\Application Data\Kaspersky Lab\AVP8\Report\03\00000005_objid.dat L'objet est verrouillé ignoré

C:\Documents and Settings\All Users\Application Data\Kaspersky Lab\AVP8\Report\03\00000006_events.dat L'objet est verrouillé ignoré

C:\Documents and Settings\All Users\Application Data\Kaspersky Lab\AVP8\Report\03\00000006_objbt.dat L'objet est verrouillé ignoré

C:\Documents and Settings\All Users\Application Data\Kaspersky Lab\AVP8\Report\03\00000006_objdt.dat L'objet est verrouillé ignoré

C:\Documents and Settings\All Users\Application Data\Kaspersky Lab\AVP8\Report\03\00000006_objid.dat L'objet est verrouillé ignoré

C:\Documents and Settings\All Users\Application Data\Kaspersky Lab\AVP8\Report\03\00000007_events.dat L'objet est verrouillé ignoré

C:\Documents and Settings\All Users\Application Data\Kaspersky Lab\AVP8\Report\03\00000007_objbt.dat L'objet est verrouillé ignoré

C:\Documents and Settings\All Users\Application Data\Kaspersky Lab\AVP8\Report\03\00000007_objdt.dat L'objet est verrouillé ignoré

C:\Documents and Settings\All Users\Application Data\Kaspersky Lab\AVP8\Report\03\00000007_objid.dat L'objet est verrouillé ignoré

C:\Documents and Settings\All Users\Application Data\Kaspersky Lab\AVP8\Report\03\segments.dat L'objet est verrouillé ignoré

C:\Documents and Settings\All Users\Application Data\Kaspersky Lab\AVP8\Report\04\00000001_events.dat L'objet est verrouillé ignoré

C:\Documents and Settings\All Users\Application Data\Kaspersky Lab\AVP8\Report\04\00000001_objbt.dat L'objet est verrouillé ignoré

C:\Documents and Settings\All Users\Application Data\Kaspersky Lab\AVP8\Report\04\00000001_objdt.dat L'objet est verrouillé ignoré

C:\Documents and Settings\All Users\Application Data\Kaspersky Lab\AVP8\Report\04\00000001_objid.dat L'objet est verrouillé ignoré

C:\Documents and Settings\All Users\Application Data\Kaspersky Lab\AVP8\Report\04\00000002_events.dat L'objet est verrouillé ignoré

C:\Documents and Settings\All Users\Application Data\Kaspersky Lab\AVP8\Report\04\00000002_objbt.dat L'objet est verrouillé ignoré

C:\Documents and Settings\All Users\Application Data\Kaspersky Lab\AVP8\Report\04\00000002_objdt.dat L'objet est verrouillé ignoré

C:\Documents and Settings\All Users\Application Data\Kaspersky Lab\AVP8\Report\04\00000002_objid.dat L'objet est verrouillé ignoré

C:\Documents and Settings\All Users\Application Data\Kaspersky Lab\AVP8\Report\04\00000003_events.dat L'objet est verrouillé ignoré

C:\Documents and Settings\All Users\Application Data\Kaspersky Lab\AVP8\Report\04\00000003_objbt.dat L'objet est verrouillé ignoré

C:\Documents and Settings\All Users\Application Data\Kaspersky Lab\AVP8\Report\04\00000003_objdt.dat L'objet est verrouillé ignoré

C:\Documents and Settings\All Users\Application Data\Kaspersky Lab\AVP8\Report\04\00000003_objid.dat L'objet est verrouillé ignoré

C:\Documents and Settings\All Users\Application Data\Kaspersky Lab\AVP8\Report\04\00000004_events.dat L'objet est verrouillé ignoré

C:\Documents and Settings\All Users\Application Data\Kaspersky Lab\AVP8\Report\04\00000004_objbt.dat L'objet est verrouillé ignoré

C:\Documents and Settings\All Users\Application Data\Kaspersky Lab\AVP8\Report\04\00000004_objdt.dat L'objet est verrouillé ignoré

C:\Documents and Settings\All Users\Application Data\Kaspersky Lab\AVP8\Report\04\00000004_objid.dat L'objet est verrouillé ignoré

C:\Documents and Settings\All Users\Application Data\Kaspersky Lab\AVP8\Report\04\00000005_events.dat L'objet est verrouillé ignoré

C:\Documents and Settings\All Users\Application Data\Kaspersky Lab\AVP8\Report\04\00000005_objbt.dat L'objet est verrouillé ignoré

C:\Documents and Settings\All Users\Application Data\Kaspersky Lab\AVP8\Report\04\00000005_objdt.dat L'objet est verrouillé ignoré

C:\Documents and Settings\All Users\Application Data\Kaspersky Lab\AVP8\Report\04\00000005_objid.dat L'objet est verrouillé ignoré

C:\Documents and Settings\All Users\Application Data\Kaspersky Lab\AVP8\Report\04\00000006_events.dat L'objet est verrouillé ignoré

C:\Documents and Settings\All Users\Application Data\Kaspersky Lab\AVP8\Report\04\00000006_objbt.dat L'objet est verrouillé ignoré

C:\Documents and Settings\All Users\Application Data\Kaspersky Lab\AVP8\Report\04\00000006_objdt.dat L'objet est verrouillé ignoré

C:\Documents and Settings\All Users\Application Data\Kaspersky Lab\AVP8\Report\04\00000006_objid.dat L'objet est verrouillé ignoré

C:\Documents and Settings\All Users\Application Data\Kaspersky Lab\AVP8\Report\04\segments.dat L'objet est verrouillé ignoré

C:\Documents and Settings\All Users\Application Data\Kaspersky Lab\AVP8\Report\05\00000001_events.dat L'objet est verrouillé ignoré

C:\Documents and Settings\All Users\Application Data\Kaspersky Lab\AVP8\Report\05\00000001_objbt.dat L'objet est verrouillé ignoré

C:\Documents and Settings\All Users\Application Data\Kaspersky Lab\AVP8\Report\05\00000001_objdt.dat L'objet est verrouillé ignoré

C:\Documents and Settings\All Users\Application Data\Kaspersky Lab\AVP8\Report\05\00000001_objid.dat L'objet est verrouillé ignoré

C:\Documents and Settings\All Users\Application Data\Kaspersky Lab\AVP8\Report\05\00000002_events.dat L'objet est verrouillé ignoré

C:\Documents and Settings\All Users\Application Data\Kaspersky Lab\AVP8\Report\05\00000002_objbt.dat L'objet est verrouillé ignoré

C:\Documents and Settings\All Users\Application Data\Kaspersky Lab\AVP8\Report\05\00000002_objdt.dat L'objet est verrouillé ignoré

C:\Documents and Settings\All Users\Application Data\Kaspersky Lab\AVP8\Report\05\00000002_objid.dat L'objet est verrouillé ignoré

C:\Documents and Settings\All Users\Application Data\Kaspersky Lab\AVP8\Report\05\00000003_events.dat L'objet est verrouillé ignoré

C:\Documents and Settings\All Users\Application Data\Kaspersky Lab\AVP8\Report\05\00000003_objbt.dat L'objet est verrouillé ignoré

C:\Documents and Settings\All Users\Application Data\Kaspersky Lab\AVP8\Report\05\00000003_objdt.dat L'objet est verrouillé ignoré

C:\Documents and Settings\All Users\Application Data\Kaspersky Lab\AVP8\Report\05\00000003_objid.dat L'objet est verrouillé ignoré

C:\Documents and Settings\All Users\Application Data\Kaspersky Lab\AVP8\Report\05\segments.dat L'objet est verrouillé ignoré

C:\Documents and Settings\All Users\Application Data\Kaspersky Lab\AVP8\Report\06\00000001_events.dat L'objet est verrouillé ignoré

C:\Documents and Settings\All Users\Application Data\Kaspersky Lab\AVP8\Report\06\00000001_objbt.dat L'objet est verrouillé ignoré

C:\Documents and Settings\All Users\Application Data\Kaspersky Lab\AVP8\Report\06\00000001_objdt.dat L'objet est verrouillé ignoré

C:\Documents and Settings\All Users\Application Data\Kaspersky Lab\AVP8\Report\06\00000001_objid.dat L'objet est verrouillé ignoré

C:\Documents and Settings\All Users\Application Data\Kaspersky Lab\AVP8\Report\06\segments.dat L'objet est verrouillé ignoré

C:\Documents and Settings\All Users\Application Data\Kaspersky Lab\AVP8\Report\07\00000001_events.dat L'objet est verrouillé ignoré

C:\Documents and Settings\All Users\Application Data\Kaspersky Lab\AVP8\Report\07\00000001_objbt.dat L'objet est verrouillé ignoré

C:\Documents and Settings\All Users\Application Data\Kaspersky Lab\AVP8\Report\07\00000001_objdt.dat L'objet est verrouillé ignoré

C:\Documents and Settings\All Users\Application Data\Kaspersky Lab\AVP8\Report\07\00000001_objid.dat L'objet est verrouillé ignoré

C:\Documents and Settings\All Users\Application Data\Kaspersky Lab\AVP8\Report\07\segments.dat L'objet est verrouillé ignoré

C:\Documents and Settings\All Users\Application Data\Kaspersky Lab\AVP8\Report\08\00000001_events.dat L'objet est verrouillé ignoré

C:\Documents and Settings\All Users\Application Data\Kaspersky Lab\AVP8\Report\08\00000001_objbt.dat L'objet est verrouillé ignoré

C:\Documents and Settings\All Users\Application Data\Kaspersky Lab\AVP8\Report\08\00000001_objdt.dat L'objet est verrouillé ignoré

C:\Documents and Settings\All Users\Application Data\Kaspersky Lab\AVP8\Report\08\00000001_objid.dat L'objet est verrouillé ignoré

C:\Documents and Settings\All Users\Application Data\Kaspersky Lab\AVP8\Report\08\segments.dat L'objet est verrouillé ignoré

C:\Documents and Settings\All Users\Application Data\Kaspersky Lab\AVP8\Report\09\00000001_events.dat L'objet est verrouillé ignoré

C:\Documents and Settings\All Users\Application Data\Kaspersky Lab\AVP8\Report\09\00000001_objbt.dat L'objet est verrouillé ignoré

C:\Documents and Settings\All Users\Application Data\Kaspersky Lab\AVP8\Report\09\00000001_objdt.dat L'objet est verrouillé ignoré

C:\Documents and Settings\All Users\Application Data\Kaspersky Lab\AVP8\Report\09\00000001_objid.dat L'objet est verrouillé ignoré

C:\Documents and Settings\All Users\Application Data\Kaspersky Lab\AVP8\Report\09\00000002_events.dat L'objet est verrouillé ignoré

C:\Documents and Settings\All Users\Application Data\Kaspersky Lab\AVP8\Report\09\00000002_objbt.dat L'objet est verrouillé ignoré

C:\Documents and Settings\All Users\Application Data\Kaspersky Lab\AVP8\Report\09\00000002_objdt.dat L'objet est verrouillé ignoré

C:\Documents and Settings\All Users\Application Data\Kaspersky Lab\AVP8\Report\09\00000002_objid.dat L'objet est verrouillé ignoré

C:\Documents and Settings\All Users\Application Data\Kaspersky Lab\AVP8\Report\09\00000003_events.dat L'objet est verrouillé ignoré

C:\Documents and Settings\All Users\Application Data\Kaspersky Lab\AVP8\Report\09\00000003_objbt.dat L'objet est verrouillé ignoré

C:\Documents and Settings\All Users\Application Data\Kaspersky Lab\AVP8\Report\09\00000003_objdt.dat L'objet est verrouillé ignoré

C:\Documents and Settings\All Users\Application Data\Kaspersky Lab\AVP8\Report\09\00000003_objid.dat L'objet est verrouillé ignoré

C:\Documents and Settings\All Users\Application Data\Kaspersky Lab\AVP8\Report\09\00000004_events.dat L'objet est verrouillé ignoré

C:\Documents and Settings\All Users\Application Data\Kaspersky Lab\AVP8\Report\09\00000004_objbt.dat L'objet est verrouillé ignoré

C:\Documents and Settings\All Users\Application Data\Kaspersky Lab\AVP8\Report\09\00000004_objdt.dat L'objet est verrouillé ignoré

C:\Documents and Settings\All Users\Application Data\Kaspersky Lab\AVP8\Report\09\00000004_objid.dat L'objet est verrouillé ignoré

C:\Documents and Settings\All Users\Application Data\Kaspersky Lab\AVP8\Report\09\00000005_events.dat L'objet est verrouillé ignoré

C:\Documents and Settings\All Users\Application Data\Kaspersky Lab\AVP8\Report\09\00000005_objbt.dat L'objet est verrouillé ignoré

C:\Documents and Settings\All Users\Application Data\Kaspersky Lab\AVP8\Report\09\00000005_objdt.dat L'objet est verrouillé ignoré

C:\Documents and Settings\All Users\Application Data\Kaspersky Lab\AVP8\Report\09\00000005_objid.dat L'objet est verrouillé ignoré

C:\Documents and Settings\All Users\Application Data\Kaspersky Lab\AVP8\Report\09\00000006_events.dat L'objet est verrouillé ignoré

C:\Documents and Settings\All Users\Application Data\Kaspersky Lab\AVP8\Report\09\00000006_objbt.dat L'objet est verrouillé ignoré

C:\Documents and Settings\All Users\Application Data\Kaspersky Lab\AVP8\Report\09\00000006_objdt.dat L'objet est verrouillé ignoré

C:\Documents and Settings\All Users\Application Data\Kaspersky Lab\AVP8\Report\09\00000006_objid.dat L'objet est verrouillé ignoré

C:\Documents and Settings\All Users\Application Data\Kaspersky Lab\AVP8\Report\09\segments.dat L'objet est verrouillé ignoré

C:\Documents and Settings\All Users\Application Data\Kaspersky Lab\AVP8\Report\detected.idx L'objet est verrouillé ignoré

C:\Documents and Settings\All Users\Application Data\Kaspersky Lab\AVP8\Report\detected.rpt L'objet est verrouillé ignoré

C:\Documents and Settings\All Users\Application Data\Kaspersky Lab\AVP8\Report\g_objbt.dat L'objet est verrouillé ignoré

C:\Documents and Settings\All Users\Application Data\Kaspersky Lab\AVP8\Report\g_objdt.dat L'objet est verrouillé ignoré

C:\Documents and Settings\All Users\Application Data\Kaspersky Lab\AVP8\Report\g_objid.dat L'objet est verrouillé ignoré

C:\Documents and Settings\All Users\Application Data\Kaspersky Lab\AVP8\Report\report.rpt L'objet est verrouillé ignoré

C:\Documents and Settings\All Users\Application Data\Microsoft\Network\Downloader\qmgr0.dat L'objet est verrouillé ignoré

C:\Documents and Settings\All Users\Application Data\Microsoft\Network\Downloader\qmgr1.dat L'objet est verrouillé ignoré

C:\Documents and Settings\LocalService\Cookies\index.dat L'objet est verrouillé ignoré

C:\Documents and Settings\LocalService\Local Settings\Application Data\Microsoft\Windows\UsrClass.dat L'objet est verrouillé ignoré

C:\Documents and Settings\LocalService\Local Settings\Application Data\Microsoft\Windows\UsrClass.dat.LOG L'objet est verrouillé ignoré

C:\Documents and Settings\LocalService\Local Settings\Historique\History.IE5\index.dat L'objet est verrouillé ignoré

C:\Documents and Settings\LocalService\Local Settings\Temporary Internet Files\Content.IE5\index.dat L'objet est verrouillé ignoré

C:\Documents and Settings\LocalService\NTUSER.DAT L'objet est verrouillé ignoré

C:\Documents and Settings\LocalService\ntuser.dat.LOG L'objet est verrouillé ignoré

C:\Documents and Settings\MARCEL\Application Data\$_hpcst$.hpc L'objet est verrouillé ignoré

C:\Documents and Settings\MARCEL\Application Data\Sony Ericsson\Teleca\Telecalib\Logging\Application logs\appLauncher_all_log.txt L'objet est verrouillé ignoré

C:\Documents and Settings\MARCEL\Application Data\Sony Ericsson\Teleca\Telecalib\Logging\Application logs\DM_log.txt L'objet est verrouillé ignoré

C:\Documents and Settings\MARCEL\Application Data\Sony Ericsson\Teleca\Telecalib\Logging\Application logs\HookStarter_log.txt L'objet est verrouillé ignoré

C:\Documents and Settings\MARCEL\Application Data\Sony Ericsson\Teleca\Telecalib\Logging\Application logs\SpecificUSB_log.txt L'objet est verrouillé ignoré

C:\Documents and Settings\MARCEL\Application Data\Sony Ericsson\Teleca\Telecalib\Logging\Application logs\TlibCmnDlgs_log.txt L'objet est verrouillé ignoré

C:\Documents and Settings\MARCEL\Application Data\SPAMfighter\Logs\Agent.log.txt L'objet est verrouillé ignoré

C:\Documents and Settings\MARCEL\Cookies\index.dat L'objet est verrouillé ignoré

C:\Documents and Settings\MARCEL\Local Settings\Application Data\Microsoft\Feeds Cache\index.dat L'objet est verrouillé ignoré

C:\Documents and Settings\MARCEL\Local Settings\Application Data\Microsoft\Windows\UsrClass.dat L'objet est verrouillé ignoré

C:\Documents and Settings\MARCEL\Local Settings\Application Data\Microsoft\Windows\UsrClass.dat.LOG L'objet est verrouillé ignoré

C:\Documents and Settings\MARCEL\Local Settings\Historique\History.IE5\index.dat L'objet est verrouillé ignoré

C:\Documents and Settings\MARCEL\Local Settings\Historique\History.IE5\MSHist012008072720080728\index.dat L'objet est verrouillé ignoré

C:\Documents and Settings\MARCEL\Local Settings\Temp\WCESLog.log L'objet est verrouillé ignoré

C:\Documents and Settings\MARCEL\Local Settings\Temporary Internet Files\AntiPhishing\B3BB5BBA-E7D5-40AB-A041-A5B1C0B26C8F.dat L'objet est verrouillé ignoré

C:\Documents and Settings\MARCEL\Local Settings\Temporary Internet Files\Content.IE5\index.dat L'objet est verrouillé ignoré

C:\Documents and Settings\MARCEL\NTUSER.DAT L'objet est verrouillé ignoré

C:\Documents and Settings\MARCEL\ntuser.dat.LOG L'objet est verrouillé ignoré

C:\Documents and Settings\NetworkService\Cookies\index.dat L'objet est verrouillé ignoré

C:\Documents and Settings\NetworkService\Local Settings\Application Data\Microsoft\Windows\UsrClass.dat L'objet est verrouillé ignoré

C:\Documents and Settings\NetworkService\Local Settings\Application Data\Microsoft\Windows\UsrClass.dat.LOG L'objet est verrouillé ignoré

C:\Documents and Settings\NetworkService\Local Settings\Historique\History.IE5\index.dat L'objet est verrouillé ignoré

C:\Documents and Settings\NetworkService\Local Settings\Temporary Internet Files\Content.IE5\index.dat L'objet est verrouillé ignoré

C:\Documents and Settings\NetworkService\NTUSER.DAT L'objet est verrouillé ignoré

C:\Documents and Settings\NetworkService\ntuser.dat.LOG L'objet est verrouillé ignoré

C:\Program Files\HP\hpcoretech\hpcmerr.log L'objet est verrouillé ignoré

C:\System Volume Information\MountPointManagerRemoteDatabase L'objet est verrouillé ignoré

C:\System Volume Information\_restore{58E8BEBA-26A4-45ED-9D92-ED376219F13B}\RP1043\change.log L'objet est verrouillé ignoré

C:\WINDOWS\Debug\PASSWD.LOG L'objet est verrouillé ignoré

C:\WINDOWS\SchedLgU.Txt L'objet est verrouillé ignoré

C:\WINDOWS\SoftwareDistribution\ReportingEvents.log L'objet est verrouillé ignoré

C:\WINDOWS\Sti_Trace.log L'objet est verrouillé ignoré

C:\WINDOWS\system32\CatRoot2\edb.log L'objet est verrouillé ignoré

C:\WINDOWS\system32\CatRoot2\tmp.edb L'objet est verrouillé ignoré

C:\WINDOWS\system32\config\AppEvent.Evt L'objet est verrouillé ignoré

C:\WINDOWS\system32\config\default L'objet est verrouillé ignoré

C:\WINDOWS\system32\config\default.LOG L'objet est verrouillé ignoré

C:\WINDOWS\system32\config\Internet.evt L'objet est verrouillé ignoré

C:\WINDOWS\system32\config\SAM L'objet est verrouillé ignoré

C:\WINDOWS\system32\config\SAM.LOG L'objet est verrouillé ignoré

C:\WINDOWS\system32\config\SecEvent.Evt L'objet est verrouillé ignoré

C:\WINDOWS\system32\config\SECURITY L'objet est verrouillé ignoré

C:\WINDOWS\system32\config\SECURITY.LOG L'objet est verrouillé ignoré

C:\WINDOWS\system32\config\software L'objet est verrouillé ignoré

C:\WINDOWS\system32\config\software.LOG L'objet est verrouillé ignoré

C:\WINDOWS\system32\config\SysEvent.Evt L'objet est verrouillé ignoré

C:\WINDOWS\system32\config\system L'objet est verrouillé ignoré

C:\WINDOWS\system32\config\system.LOG L'objet est verrouillé ignoré

C:\WINDOWS\system32\drivers\fidbox.dat L'objet est verrouillé ignoré

C:\WINDOWS\system32\drivers\fidbox.idx L'objet est verrouillé ignoré

C:\WINDOWS\system32\drivers\fidbox2.dat L'objet est verrouillé ignoré

C:\WINDOWS\system32\drivers\fidbox2.idx L'objet est verrouillé ignoré

C:\WINDOWS\system32\h323log.txt L'objet est verrouillé ignoré

C:\WINDOWS\system32\wbem\Repository\FS\INDEX.BTR L'objet est verrouillé ignoré

C:\WINDOWS\system32\wbem\Repository\FS\INDEX.MAP L'objet est verrouillé ignoré

C:\WINDOWS\system32\wbem\Repository\FS\MAPPING.VER L'objet est verrouillé ignoré

C:\WINDOWS\system32\wbem\Repository\FS\MAPPING1.MAP L'objet est verrouillé ignoré

C:\WINDOWS\system32\wbem\Repository\FS\MAPPING2.MAP L'objet est verrouillé ignoré

C:\WINDOWS\system32\wbem\Repository\FS\OBJECTS.DATA L'objet est verrouillé ignoré

C:\WINDOWS\system32\wbem\Repository\FS\OBJECTS.MAP L'objet est verrouillé ignoré

C:\WINDOWS\wiadebug.log L'objet est verrouillé ignoré

C:\WINDOWS\wiaservc.log L'objet est verrouillé ignoré

C:\WINDOWS\WindowsUpdate.log L'objet est verrouillé ignoré

Analyse terminée.

Voici le rapport Hijackthis. Désolé mai c'est de plus en plus long, surtout au démarrage et j'ai vraiment le entiment que AVG spyware le ralenti...

Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 22:17:21, on 28/07/2008
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.6000.16674)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\csrss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\Tall Emu\Online Armor\oasrv.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe
C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2009\avp.exe
C:\WINDOWS\system32\HPConfig.exe
C:\Program Files\HPQ\Notebook Utilities\HPWirelessMgr.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\SPAMfighter\sfus.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Windows Media Player\WMPNetwk.exe
C:\Program Files\Canon\CAL\CALMAIN.exe
C:\WINDOWS\System32\alg.exe
C:\WINDOWS\system32\carpserv.exe
C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe
C:\WINDOWS\system32\wuauclt.exe
C:\PROGRA~1\HPQ\ONE-TO~1\OneTouch.EXE
C:\Program Files\Synaptics\SynTP\SynTPLpr.exe
C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
C:\Program Files\WinFax Plus\CapFax.EXE
C:\Program Files\HP\hpcoretech\hpcmpmgr.exe
C:\Program Files\Hewlett-Packard\HP Software Update\HPWuSchd.exe
C:\WINDOWS\system32\spool\drivers\w32x86\3\hpztsb09.exe
C:\Program Files\ScanSoft\OmniPageSE\opware32.exe
C:\Program Files\Logitech\ImageStudio\LogiTray.exe
C:\Program Files\HP\hpcoretech\comp\hptskmgr.exe
C:\Program Files\Fichiers communs\Logitech\QCDriver\LVCOMS.EXE
C:\Program Files\QuickTime\qttask.exe
C:\Program Files\SPAMfighter\SFAgent.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Sony Ericsson\Mobile2\Application Launcher\Application Launcher.exe
C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2009\avp.exe
C:\WINDOWS\system32\msiexec.exe
C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\avgas.exe
C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WLLoginProxy.exe
C:\Program Files\Java\jre1.6.0_07\bin\jusched.exe
C:\Program Files\Tall Emu\Online Armor\oaui.exe
C:\PROGRA~1\MI3AA1~1\wcescomm.exe
C:\PROGRA~1\MI3AA1~1\rapimgr.exe
C:\DOCUME~1\MARCEL\LOCALS~1\Temp\SF1217275994-UPDATE\spamfighter_upgrade.exe
C:\Program Files\Trend Micro\HijackThis\HijackThis.exe
C:\Program Files\Windows Media Player\WMPNSCFG.exe
C:\Program Files\SAGEM Wi-Fi USB 802.11g\WLANUTL.exe
C:\Program Files\Fichiers communs\Teleca Shared\CapabilityManager.exe
C:\Program Files\OpenOffice.org 2.4\program\soffice.exe
C:\Program Files\OpenOffice.org 2.4\program\soffice.BIN
C:\Program Files\Fichiers communs\Teleca Shared\Generic.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.google.fr/?gws_rd=ssl
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = https://www.msn.com/fr-fr/?ocid=iehp
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Bar = http://search.presario.net/...
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.msn.com/fr-fr/?ocid=iehp
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R1 - HKCU\Software\Microsoft\Internet Explorer\SearchURL,(Default) = https://www.bing.com/?FORM=TOOLBR&cc=fr&toHttps=1&redig=4527FFF1C12746FC9EDB535C75E80ECC
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
O2 - BHO: (no name) - {53707962-6F74-2D53-2644-206D7942484F} - C:\Program Files\Spybot - Search & Destroy\SDHelper.dll
O2 - BHO: IEVkbdBHO - {59273AB4-E7D3-40F9-A1A8-6FA9CCA1862C} - C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2009\ievkbd.dll
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_07\bin\ssv.dll
O2 - BHO: Windows Live Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar2.dll
O4 - HKLM\..\Run: [CARPService] carpserv.exe
O4 - HKLM\..\Run: [ATIPTA] C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe
O4 - HKLM\..\Run: [PreloadApp] c:\hp\drivers\printers\photosmart\hphprld.exe c:\hp\drivers\printers\photosmart\setup.exe -d
O4 - HKLM\..\Run: [srmclean] C:\Cpqs\Scom\srmclean.exe
O4 - HKLM\..\Run: [Display Settings] C:\Program Files\HPQ\Notebook Utilities\hptasks.exe /s
O4 - HKLM\..\Run: [QT4HPOT] C:\PROGRA~1\HPQ\ONE-TO~1\OneTouch.EXE
O4 - HKLM\..\Run: [SynTPLpr] C:\Program Files\Synaptics\SynTP\SynTPLpr.exe
O4 - HKLM\..\Run: [SynTPEnh] C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
O4 - HKLM\..\Run: [Cpqset] C:\Program Files\HPQ\Default Settings\cpqset.exe
O4 - HKLM\..\Run: [CapFax] C:\Program Files\WinFax Plus\CapFax.EXE
O4 - HKLM\..\Run: [NeroFilterCheck] C:\WINDOWS\system32\NeroCheck.exe
O4 - HKLM\..\Run: [HP Component Manager] "C:\Program Files\HP\hpcoretech\hpcmpmgr.exe"
O4 - HKLM\..\Run: [HP Software Update] "C:\Program Files\Hewlett-Packard\HP Software Update\HPWuSchd.exe"
O4 - HKLM\..\Run: [HPDJ Taskbar Utility] C:\WINDOWS\system32\spool\drivers\w32x86\3\hpztsb09.exe
O4 - HKLM\..\Run: [Omnipage] C:\Program Files\ScanSoft\OmniPageSE\opware32.exe
O4 - HKLM\..\Run: [LogitechImageStudioTray] C:\Program Files\Logitech\ImageStudio\LogiTray.exe
O4 - HKLM\..\Run: [LogitechGalleryRepair] C:\Program Files\Logitech\ImageStudio\ISStart.exe
O4 - HKLM\..\Run: [LVCOMS] C:\Program Files\Fichiers communs\Logitech\QCDriver\LVCOMS.EXE
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [SPAMfighter Agent] "C:\Program Files\SPAMfighter\SFAgent.exe" update delay 60
O4 - HKLM\..\Run: [Sony Ericsson PC Suite] "C:\Program Files\Sony Ericsson\Mobile2\Application Launcher\Application Launcher.exe" /startoptions
O4 - HKLM\..\Run: [AVP] "C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2009\avp.exe"
O4 - HKLM\..\Run: [!AVG Anti-Spyware] "C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\avgas.exe" /minimized
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre1.6.0_07\bin\jusched.exe"
O4 - HKLM\..\Run: [OnlineArmor GUI] "C:\Program Files\Tall Emu\Online Armor\oaui.exe"
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [H/PC Connection Agent] "C:\PROGRA~1\MI3AA1~1\wcescomm.exe"
O4 - HKCU\..\Run: [WMPNSCFG] C:\Program Files\Windows Media Player\WMPNSCFG.exe
O4 - HKCU\..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\1.2.911.3380\GoogleToolbarNotifier.exe
O4 - Startup: OpenOffice.org 2.4.lnk = C:\Program Files\OpenOffice.org 2.4\program\quickstart.exe
O4 - Global Startup: Microsoft Office.lnk = C:\Program Files\Microsoft Office\Office10\OSA.EXE
O4 - Global Startup: Sagem - Utilitaire réseau pour Clé USB Wi-Fi 802.11g.lnk = ?
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_07\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_07\bin\ssv.dll
O9 - Extra button: Statistiques de la protection du trafic Internet - {1F460357-8A94-4D71-9CA3-AA4ACF32ED8E} - C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2009\SCIEPlgn.dll
O9 - Extra button: Create Mobile Favorite - {2EAF5BB1-070F-11D3-9307-00C04FAE2D4F} - C:\PROGRA~1\MI3AA1~1\INetRepl.dll
O9 - Extra button: (no name) - {2EAF5BB2-070F-11D3-9307-00C04FAE2D4F} - C:\PROGRA~1\MI3AA1~1\INetRepl.dll
O9 - Extra 'Tools' menuitem: Créer un favori mobile... - {2EAF5BB2-070F-11D3-9307-00C04FAE2D4F} - C:\PROGRA~1\MI3AA1~1\INetRepl.dll
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O16 - DPF: {0EB0E74A-2A76-4AB3-A7FB-9BD8C29F7F75} (CKAVWebScan Object) - https://www.kaspersky.fr/?domain=webscanner.kaspersky.fr
O23 - Service: AVG Anti-Spyware Guard - GRISOFT s.r.o. - C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe
O23 - Service: Kaspersky Anti-Virus (avp) - Kaspersky Lab - C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2009\avp.exe
O23 - Service: Canon Camera Access Library 8 (CCALib8) - Canon Inc. - C:\Program Files\Canon\CAL\CALMAIN.exe
O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: HP Configuration Interface Service (HPConfig) - Hewlett-Packard - C:\WINDOWS\system32\HPConfig.exe
O23 - Service: HPWirelessMgr - Hewlett-Packard Co. - C:\Program Files\HPQ\Notebook Utilities\HPWirelessMgr.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Fichiers communs\InstallShield\Driver\1150\Intel 32\IDriverT.exe
O23 - Service: SPAMfighter Update Service - SPAMfighter ApS - C:\Program Files\SPAMfighter\sfus.exe
O23 - Service: Online Armor (SvcOnlineArmor) - Tall Emu - C:\Program Files\Tall Emu\Online Armor\oasrv.exe

Je vais "peter" un cable avec online armor, j'ai sans arret, notamment sur le scan diaghelp des alertes à autoriser ! Le parefeu windows est bien plus discret...

Voici le rapport diaghelp.

DiagHelp version v1.4 - http://www.malekal.com
excute le 28/07/2008 à 22:30:50,70


Liste des derniers fichies modifies/crees dans windir\system32 et prefetch
C:\WINDOWS\prefetch\CHCP.COM-18156052.pf -->28/07/2008 22:30:37
C:\WINDOWS\prefetch\CMD.EXE-087B4001.pf -->28/07/2008 22:30:35
C:\WINDOWS\prefetch\VERCLSID.EXE-3667BD89.pf -->28/07/2008 22:28:32
C:\WINDOWS\prefetch\WINRAR.EXE-39C6DAD9.pf -->28/07/2008 22:26:14
C:\WINDOWS\prefetch\TASKMGR.EXE-20256C55.pf -->28/07/2008 22:23:08
C:\WINDOWS\prefetch\IEXPLORE.EXE-27122324.pf -->28/07/2008 22:19:39
C:\WINDOWS\prefetch\EPMWORKER.EXE-1631B541.pf -->28/07/2008 22:18:25
C:\WINDOWS\prefetch\NOTEPAD.EXE-336351A9.pf -->28/07/2008 22:17:56
C:\WINDOWS\prefetch\SENDTODEVICE.EXE-16EABFF5.pf -->28/07/2008 22:17:52
C:\WINDOWS\prefetch\STCLIENT_WRAPPER.EXE-0FBCE9FC.pf -->28/07/2008 22:17:47

C:\WINDOWS\System32\drivers\fidbox2.idx -->28/07/2008 22:06:28
C:\WINDOWS\System32\drivers\fidbox2.dat -->28/07/2008 22:06:28
C:\WINDOWS\System32\drivers\fidbox.idx -->28/07/2008 22:06:28
C:\WINDOWS\System32\drivers\fidbox.dat -->28/07/2008 22:06:27
C:\WINDOWS\System32\drivers\klin.dat -->25/07/2008 18:21:50
C:\WINDOWS\System32\drivers\klick.dat -->25/07/2008 18:21:50
C:\WINDOWS\System32\drivers\mbamswissarmy.sys -->23/07/2008 20:09:44

C:\WINDOWS\System32\zllictbl.dat -->28/07/2008 21:10:50
C:\WINDOWS\System32\jupdate-1.6.0_07-b06.log -->27/07/2008 11:05:25
C:\WINDOWS\System32\FNTCACHE.DAT -->27/07/2008 10:25:32
C:\WINDOWS\System32\jupdate-1.6.0_04-b12.log -->26/07/2008 23:26:47
C:\WINDOWS\System32\wpa.dbl -->25/07/2008 10:58:17
C:\WINDOWS\System32\MRT.exe -->25/06/2008 18:15:46
C:\WINDOWS\System32\mswsock.dll -->20/06/2008 19:41:06
C:\WINDOWS\System32\dnsapi.dll -->20/06/2008 19:41:06
C:\WINDOWS\System32\javaws.exe -->10/06/2008 02:32:34
C:\WINDOWS\System32\javacpl.cpl -->10/06/2008 02:32:34
C:\WINDOWS\System32\javaw.exe -->10/06/2008 01:21:04
C:\WINDOWS\System32\java.exe -->10/06/2008 01:21:01
C:\WINDOWS\System32\quartz.dll -->07/05/2008 07:15:36
C:\WINDOWS\System32\klogon.dll -->25/04/2008 18:22:24
C:\WINDOWS\System32\mshtml.dll -->23/04/2008 22:16:42
C:\WINDOWS\System32\wininet.dll -->23/04/2008 06:16:40
C:\WINDOWS\System32\webcheck.dll -->23/04/2008 06:16:40
C:\WINDOWS\System32\urlmon.dll -->23/04/2008 06:16:40
C:\WINDOWS\System32\url.dll -->23/04/2008 06:16:40
C:\WINDOWS\System32\pngfilt.dll -->23/04/2008 06:16:40
C:\WINDOWS\System32\occache.dll -->23/04/2008 06:16:40
C:\WINDOWS\System32\mstime.dll -->23/04/2008 06:16:40
C:\WINDOWS\System32\msrating.dll -->23/04/2008 06:16:40
C:\WINDOWS\System32\mshtmled.dll -->23/04/2008 06:16:40
C:\WINDOWS\System32\msfeedsbs.dll -->23/04/2008 06:16:40

C:\WINDOWS\WindowsUpdate.log -->28/07/2008 22:12:13
C:\WINDOWS\wiadebug.log -->28/07/2008 22:08:23
C:\WINDOWS\wiaservc.log -->28/07/2008 22:08:21
C:\WINDOWS\0.log -->28/07/2008 22:07:51
C:\WINDOWS\bootstat.dat -->28/07/2008 22:07:48
C:\WINDOWS\SchedLgU.Txt -->28/07/2008 22:06:16
C:\WINDOWS\setupapi.log -->27/07/2008 22:29:24
C:\WINDOWS\system.ini -->25/07/2008 23:48:01
C:\WINDOWS\tsoc.log -->16/07/2008 18:26:13
C:\WINDOWS\ocmsn.log -->16/07/2008 18:26:13
C:\WINDOWS\ntdtcsetup.log -->16/07/2008 18:26:13
C:\WINDOWS\KB951748.log -->16/07/2008 18:26:13
C:\WINDOWS\imsins.log -->16/07/2008 18:26:13
C:\WINDOWS\iis6.log -->16/07/2008 18:26:13
C:\WINDOWS\comsetup.log -->16/07/2008 18:26:13

winlogon.exe
Verified: Signed
svchost.exe
Verified: Signed
ws2_32.dll
Verified: Signed
user32.dll
Verified: Signed
tcpip.sys
Verified: Signed
ndis.sys
Verified: Signed
null.sys
Verified: Signed


ListDLLs v2.25 - DLL lister for Win9x/NT
Copyright (C) 1997-2004 Mark Russinovich
Sysinternals - www.sysinternals.com

------------------------------------------------------------------------------
explorer.exe pid: 548
Command line: C:\WINDOWS\Explorer.EXE

Base Size Version Path
0x44080000 0xd0000 7.00.6000.16674 C:\WINDOWS\system32\WININET.dll
0x00400000 0x9000 6.00.5441.0000 C:\WINDOWS\system32\Normaliz.dll
0x43e00000 0x45000 7.00.6000.16674 C:\WINDOWS\system32\iertutil.dll
0x58b50000 0x9a000 5.82.2900.2982 C:\WINDOWS\system32\comctl32.dll
0x76f80000 0x7f000 2001.12.4414.0308 C:\WINDOWS\system32\CLBCATQ.DLL
0x77000000 0xd4000 2001.12.4414.0258 C:\WINDOWS\system32\COMRes.dll
0x01400000 0xa3000 2.01.0000.0131 C:\Program Files\Tall Emu\Online Armor\OAWatch.dll
0x76ac0000 0x11000 3.05.2284.0000 C:\WINDOWS\system32\ATL.DLL
0x7d200000 0x2be000 3.01.4000.4039 C:\WINDOWS\system32\msi.dll
0x44360000 0x5cd000 7.00.6000.16674 C:\WINDOWS\system32\ieframe.dll
0x44160000 0x127000 7.00.6000.16674 C:\WINDOWS\system32\urlmon.dll
0x442b0000 0x3c000 7.00.6000.16674 C:\WINDOWS\system32\webcheck.dll
0x164a0000 0x23000 5.02.5721.5145 C:\WINDOWS\system32\WPDShServiceObj.dll
0x109c0000 0x2c000 5.02.5721.5145 C:\WINDOWS\system32\PortableDeviceTypes.dll
0x10930000 0x49000 5.02.5721.5145 C:\WINDOWS\system32\PortableDeviceApi.dll
0x00d60000 0x12000 1.01.0000.0000 C:\Program Files\Malwarebytes' Anti-Malware\mbamext.dll
0x015b0000 0x2e000 C:\Program Files\WinRAR\rarext.dll
0x015e0000 0xd000 C:\Program Files\Morpheus\MorphShellExt.dll
0x7c3a0000 0x7b000 7.10.3077.0000 C:\WINDOWS\system32\MSVCP71.dll
0x7c340000 0x56000 7.10.3052.0004 C:\WINDOWS\system32\MSVCR71.dll
0x358f0000 0xc000 8.00.0000.0357 C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2009\ShellEx.dll
0x78130000 0x9b000 8.00.50727.1433 C:\WINDOWS\WinSxS\x86_Microsoft.VC80.CRT_1fc8b3b9a1e18e3b_8.0.50727.1433_x-ww_5cf844d2\MSVCR80.dll
0x7c420000 0x87000 8.00.50727.1433 C:\WINDOWS\WinSxS\x86_Microsoft.VC80.CRT_1fc8b3b9a1e18e3b_8.0.50727.1433_x-ww_5cf844d2\MSVCP80.dll
0x02de0000 0x2a000 7.05.0001.0036 C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\context.dll
0x63000000 0x13000 7.12.0007.0000 C:\WINDOWS\system32\SynTPFcs.dll
0x01650000 0x2b000 11.00.0000.0001 C:\Program Files\ScanSoft\OmniPageSE\ophook32.dll
0x01200000 0x72000 4.00.0000.0087 C:\Program Files\SPAMfighter\Clients\Outlook Express\SFOE0001.dll
0x61310000 0x54000 2.00.0500.0000 C:\Program Files\OpenOffice.org 2.4\program\shlxthdl.dll
0x60e20000 0x8e000 4.05.2003.0120 C:\Program Files\OpenOffice.org 2.4\program\stlport_vc7145.dll
0x10000000 0x13000 7.05.0001.0036 C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\shellexecutehook.dll
0x03420000 0xa9000 2.01.0000.0131 C:\PROGRA~1\TALLEM~1\ONLINE~1\oaevent.dll
0x32520000 0x12000 10.00.2609.0000 C:\Program Files\Microsoft Office\Office10\msohev.dll
0x035f0000 0xbb000 1.03.0000.0012 C:\Program Files\Spybot - Search & Destroy\SDHelper.dll
0x74730000 0x3d000 3.525.1117.0000 C:\WINDOWS\system32\ODBC32.dll
0x03910000 0x18000 3.525.1117.0000 C:\WINDOWS\system32\odbcint.dll

ListDLLs v2.25 - DLL lister for Win9x/NT
Copyright (C) 1997-2004 Mark Russinovich
Sysinternals - www.sysinternals.com

------------------------------------------------------------------------------
winlogon.exe pid: 1296
Command line: winlogon.exe

Base Size Version Path
0x01000000 0x81000 \??\C:\WINDOWS\system32\winlogon.exe
0x58b50000 0x9a000 5.82.2900.2982 C:\WINDOWS\system32\COMCTL32.dll
0x74730000 0x3d000 3.525.1117.0000 C:\WINDOWS\system32\ODBC32.dll
0x20000000 0x18000 3.525.1117.0000 C:\WINDOWS\system32\odbcint.dll
0x354d0000 0x33000 8.00.0000.0357 C:\WINDOWS\system32\klogon.dll
0x013e0000 0x3b000 1.07.0018.0005 C:\WINDOWS\system32\WgaLogon.dll
0x76f80000 0x7f000 2001.12.4414.0308 C:\WINDOWS\system32\CLBCATQ.DLL
0x77000000 0xd4000 2001.12.4414.0258 C:\WINDOWS\system32\COMRes.dll


Le volume dans le lecteur C n'a pas de nom.
Le numéro de série du volume est 21E7-02D4

Répertoire de C:\WINDOWS\system32

20/08/2004 01:09 6 144 csrss.exe
1 fichier(s) 6 144 octets
0 Rép(s) 40 941 953 024 octets libres

Contenu de Downloaded Program Files
Le volume dans le lecteur C n'a pas de nom.
Le numéro de série du volume est 21E7-02D4

Répertoire de C:\WINDOWS\Downloaded Program Files

27/07/2008 22:29 <REP> .
27/07/2008 22:29 <REP> ..
16/09/2002 16:42 65 desktop.ini
14/10/1997 13:52 697 DirectAnimation Java Classes.osd
08/08/2006 11:45 576 kavwebscan.inf
20/01/2000 16:25 1 162 Microsoft XML Parser for Java.osd
08/12/2003 13:58 3 759 swflash.inf
5 fichier(s) 6 259 octets

Total des fichiers listés :
5 fichier(s) 6 259 octets
2 Rép(s) 40 941 948 928 octets libres

Recherche de rootkit! (Merci S!Ri)

Recherche d'infections connues

Export des clefs sensibles..


Liste des fichiers en exception sur le pare-feu XP SP2

"%windir%\\system32\\sessmgr.exe"="%windir%\\system32\\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"C:\\Program Files\\Messenger\\msmsgs.exe"="C:\\Program Files\\Messenger\\msmsgs.exe:*:Enabled:Windows Messenger"
"%windir%\\Network Diagnostic\\xpnetdiag.exe"="%windir%\\Network Diagnostic\\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
"C:\\Program Files\\Microsoft ActiveSync\\rapimgr.exe"="C:\\Program Files\\Microsoft ActiveSync\\rapimgr.exe:169.254.2.0/255.255.255.0:Enabled:ActiveSync RAPI Manager"
"C:\\Program Files\\Microsoft ActiveSync\\wcescomm.exe"="C:\\Program Files\\Microsoft ActiveSync\\wcescomm.exe:169.254.2.0/255.255.255.0:Enabled:ActiveSync Connection Manager"
"C:\\Program Files\\Microsoft ActiveSync\\WCESMgr.exe"="C:\\Program Files\\Microsoft ActiveSync\\WCESMgr.exe:169.254.2.0/255.255.255.0:Enabled:ActiveSync Application"
"C:\\Program Files\\Morpheus\\Morpheus.exe"="C:\\Program Files\\Morpheus\\Morpheus.exe:*:Enabled:Morpheus"
"C:\\Program Files\\MSN Messenger\\msnmsgr.exe"="C:\\Program Files\\MSN Messenger\\msnmsgr.exe:*:Enabled:Windows Live Messenger 8.1"
"C:\\Program Files\\MSN Messenger\\livecall.exe"="C:\\Program Files\\MSN Messenger\\livecall.exe:*:Enabled:Windows Live Messenger 8.1 (Phone)"
"C:\\Program Files\\MSN\\MSNCoreFiles\\msn6.exe"="C:\\Program Files\\MSN\\MSNCoreFiles\\msn6.exe:*:Enabled:msn"
"C:\\Program Files\\POST-NET\\Post-Net.exe"="C:\\Program Files\\POST-NET\\Post-Net.exe:*:Enabled:http://jeux.cartes.free.fr"

"%windir%\\system32\\sessmgr.exe"="%windir%\\system32\\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"%windir%\\Network Diagnostic\\xpnetdiag.exe"="%windir%\\Network Diagnostic\\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
"C:\\Program Files\\Microsoft ActiveSync\\rapimgr.exe"="C:\\Program Files\\Microsoft ActiveSync\\rapimgr.exe:169.254.2.0/255.255.255.0:Enabled:ActiveSync RAPI Manager"
"C:\\Program Files\\Microsoft ActiveSync\\wcescomm.exe"="C:\\Program Files\\Microsoft ActiveSync\\wcescomm.exe:169.254.2.0/255.255.255.0:Enabled:ActiveSync Connection Manager"
"C:\\Program Files\\Microsoft ActiveSync\\WCESMgr.exe"="C:\\Program Files\\Microsoft ActiveSync\\WCESMgr.exe:169.254.2.0/255.255.255.0:Enabled:ActiveSync Application"
"C:\\Program Files\\MSN Messenger\\msnmsgr.exe"="C:\\Program Files\\MSN Messenger\\msnmsgr.exe:*:Enabled:Windows Live Messenger 8.1"
"C:\\Program Files\\MSN Messenger\\livecall.exe"="C:\\Program Files\\MSN Messenger\\livecall.exe:*:Enabled:Windows Live Messenger 8.1 (Phone)"

Export de la clef SharedTaskScheduler

[SharedTaskScheduler]
"{438755C2-A8BA-11D1-B96B-00A0C90312E1}"="Pré-chargeur Browseui"
"{8C7461EF-2B13-11d2-BE35-3078302C2030}"="Démon de cache des catégories de composant"



exports des policies
REGEDIT4

[system]
"dontdisplaylastusername"=dword:00000000
"legalnoticecaption"=""
"legalnoticetext"=""
"shutdownwithoutlogon"=dword:00000001
"undockwithoutlogon"=dword:00000001
"DisableRegistryTools"=dword:00000000
"HideLegacyLogonScripts"=dword:00000000
"HideLogoffScripts"=dword:00000000
"RunLogonScriptSync"=dword:00000001
"RunStartupScriptSync"=dword:00000000
"HideStartupScripts"=dword:00000000



Export des clefs sensibles..
Rechercher adresses sensibles dans le fichier HOSTS...
catchme 0.3.1351 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2008-07-28 22:35:19
Windows 5.1.2600 Service Pack 2 NTFS

scanning hidden services & system hive ...

scanning hidden registry entries ...

scanning hidden files ...

scan completed successfully
hidden services: 0
hidden files: 0


KProcCheck Version 0.2-beta1 Proof-of-Concept by SIG^2 (www.security.org.sg)

Process list by traversal of KiWaitListHead

4 - System
144 - svchost.exe
508 - capFax.exe
548 - explorer.exe
648 - hpztsb09.exe
664 - SFAgent.exe
752 - oasrv.exe
832 - CALMAIN.exe
888 - opware32.exe
904 - svchost.exe
1120 - taskmgr.exe
1228 - avp.exe
1272 - csrss.exe
1296 - winlogon.exe
1340 - services.exe
1352 - lsass.exe
1404 - sfus.exe
1512 - svchost.exe
1608 - svchost.exe
1768 - wmpnetwk.exe
1772 - wcescomm.exe
1804 - svchost.exe
1828 - LogiTray.exe
1892 - ctfmon.exe
2056 - iexplore.exe
2156 - wmpnscfg.exe
2200 - Application Lau
2292 - Generic.exe
2336 - epmworker.exe
2376 - soffice.bin
2412 - avp.exe
2744 - alg.exe
2872 - WLANUTL.exe
2912 - oaui.exe
2996 - hptskmgr.exe
3436 - ONETOUCH.EXE
3644 - SynTPLpr.exe
3784 - hpcmpmgr.exe
3820 - LVComS.exe
3848 - rapimgr.exe
3872 - hpwuSchd.exe
3920 - qttask.exe
3960 - SynTPEnh.exe
4012 - atiptaxx.exe

Total number of processes = 44
NOTE: Under WinXP, this will not show all processes.

KProcCheck Version 0.2-beta1 Proof-of-Concept by SIG^2 (www.security.org.sg)

Driver/Module list by traversal of PsLoadedModuleList

804D7000 - \WINDOWS\system32\ntoskrnl.exe
806EC000 - \WINDOWS\system32\hal.dll
F7A4D000 - \WINDOWS\system32\KDCOM.DLL
F795D000 - \WINDOWS\system32\BOOTVID.dll
F74FD000 - ACPI.sys
F7A4F000 - \WINDOWS\System32\DRIVERS\WMILIB.SYS
F74EC000 - pci.sys
F754D000 - isapnp.sys
F7961000 - compbatt.sys
F7965000 - \WINDOWS\System32\DRIVERS\BATTC.SYS
F7A51000 - aliide.sys
F77CD000 - \WINDOWS\System32\DRIVERS\PCIIDEX.SYS
F74CE000 - pcmcia.sys
F755D000 - MountMgr.sys
F74AF000 - ftdisk.sys
F77D5000 - PartMgr.sys
F7969000 - ACPIEC.sys
F7B15000 - \WINDOWS\System32\DRIVERS\OPRGHDLR.SYS
F756D000 - VolSnap.sys
F7497000 - atapi.sys
F757D000 - disk.sys
F758D000 - \WINDOWS\System32\DRIVERS\CLASSPNP.SYS
F7477000 - fltmgr.sys
F7465000 - sr.sys
F759D000 - klbg.sys
F744E000 - KSecDD.sys
F73C1000 - Ntfs.sys
F7394000 - NDIS.sys
F75AD000 - ohci1394.sys
F75BD000 - \WINDOWS\System32\DRIVERS\1394BUS.SYS
F7379000 - Mup.sys
F735C000 - kl1.sys
F77DD000 - \WINDOWS\system32\drivers\TDI.SYS
F75CD000 - agp440.sys
F77E5000 - atisgkaf.sys
F75FD000 - \SystemRoot\System32\DRIVERS\nic1394.sys
F6A69000 - \SystemRoot\System32\DRIVERS\intelppm.sys
F695E000 - \SystemRoot\System32\DRIVERS\ati2mtag.sys
F694A000 - \SystemRoot\System32\DRIVERS\VIDEOPRT.SYS
F784D000 - \SystemRoot\System32\DRIVERS\usbohci.sys
F6927000 - \SystemRoot\System32\DRIVERS\USBPORT.SYS
F68E4000 - \SystemRoot\system32\drivers\calihal.sys
F689C000 - \SystemRoot\system32\drivers\caliaud.sys
F6878000 - \SystemRoot\system32\drivers\portcls.sys
F772D000 - \SystemRoot\system32\drivers\drmk.sys
F6855000 - \SystemRoot\system32\drivers\ks.sys
F773D000 - \SystemRoot\System32\DRIVERS\i8042prt.sys
F7A25000 - \SystemRoot\System32\Drivers\DKbFltr.SYS
F7855000 - \SystemRoot\System32\DRIVERS\kbdclass.sys
F6827000 - \SystemRoot\System32\DRIVERS\SynTP.sys
F7AA5000 - \SystemRoot\System32\DRIVERS\USBD.SYS
F785D000 - \SystemRoot\System32\DRIVERS\mouclass.sys
F7865000 - \SystemRoot\System32\DRIVERS\fdc.sys
F6813000 - \SystemRoot\System32\DRIVERS\parport.sys
F786D000 - \SystemRoot\System32\DRIVERS\aliirda.sys
F7A29000 - \SystemRoot\System32\DRIVERS\irenum.sys
F6802000 - \SystemRoot\System32\DRIVERS\serial.sys
F7A31000 - \SystemRoot\System32\DRIVERS\serenum.sys
F7AA7000 - \SystemRoot\System32\DRIVERS\hpci.sys
F67CF000 - \SystemRoot\System32\DRIVERS\HSFHWALI.sys
F66D1000 - \SystemRoot\system32\DRIVERS\HSF_DPV.sys
F6625000 - \SystemRoot\System32\DRIVERS\HSF_CNXT.sys
F7875000 - \SystemRoot\System32\Drivers\Modem.SYS
F774D000 - \SystemRoot\System32\DRIVERS\Express.sys
F775D000 - \SystemRoot\System32\DRIVERS\cdrom.sys
F787D000 - \SystemRoot\System32\DRIVERS\DP83815.SYS
F7A35000 - \SystemRoot\System32\DRIVERS\CmBatt.sys
F7885000 - \SystemRoot\system32\DRIVERS\klim5.sys
F7B34000 - \SystemRoot\System32\DRIVERS\audstub.sys
F788D000 - \SystemRoot\System32\DRIVERS\rasirda.sys
F776D000 - \SystemRoot\System32\DRIVERS\rasl2tp.sys
F7A39000 - \SystemRoot\System32\DRIVERS\ndistapi.sys
F660E000 - \SystemRoot\System32\DRIVERS\ndiswan.sys
F777D000 - \SystemRoot\System32\DRIVERS\raspppoe.sys
F778D000 - \SystemRoot\System32\DRIVERS\raspptp.sys
F65FD000 - \SystemRoot\System32\DRIVERS\psched.sys
F779D000 - \SystemRoot\System32\DRIVERS\msgpc.sys
F7895000 - \SystemRoot\System32\DRIVERS\ptilink.sys
F789D000 - \SystemRoot\System32\DRIVERS\raspti.sys
F77AD000 - \SystemRoot\System32\DRIVERS\termdd.sys
F7AAB000 - \SystemRoot\System32\DRIVERS\swenum.sys
F65A4000 - \SystemRoot\System32\DRIVERS\update.sys
F7A49000 - \SystemRoot\System32\DRIVERS\mssmbios.sys
F77BD000 - \SystemRoot\System32\Drivers\NDProxy.SYS
F761D000 - \SystemRoot\System32\DRIVERS\usbhub.sys
F78A5000 - \SystemRoot\System32\DRIVERS\flpydisk.sys
F7307000 - \SystemRoot\system32\drivers\MODEMCSA.sys
EFE72000 - \SystemRoot\system32\DRIVERS\klif.sys
F7ABF000 - \SystemRoot\System32\Drivers\Fs_Rec.SYS
F7BDA000 - \SystemRoot\System32\Drivers\Null.SYS
F7AC1000 - \SystemRoot\System32\Drivers\Beep.SYS
EFE5C000 - \SystemRoot\System32\DRIVERS\AvgAsCln.sys
F78BD000 - \SystemRoot\System32\drivers\vga.sys
F7AC3000 - \SystemRoot\System32\Drivers\mnmdd.SYS
F7AC5000 - \SystemRoot\System32\DRIVERS\RDPCDD.sys
F78C5000 - \SystemRoot\System32\Drivers\Msfs.SYS
F78CD000 - \SystemRoot\System32\Drivers\Npfs.SYS
F6A49000 - \SystemRoot\System32\DRIVERS\rasacd.sys
F765D000 - \??\C:\WINDOWS\system32\drivers\OAnet.sys
EFD69000 - \SystemRoot\System32\DRIVERS\ipsec.sys
EFD11000 - \SystemRoot\System32\DRIVERS\tcpip.sys
F766D000 - \??\C:\WINDOWS\system32\drivers\OAmon.sys
EFCF0000 - \SystemRoot\System32\DRIVERS\ipnat.sys
F767D000 - \SystemRoot\System32\DRIVERS\wanarp.sys
EFCC8000 - \SystemRoot\System32\DRIVERS\netbt.sys
EFCA6000 - \SystemRoot\System32\drivers\afd.sys
F768D000 - \SystemRoot\System32\DRIVERS\netbios.sys
EFBDB000 - \SystemRoot\System32\DRIVERS\rdbss.sys
EFB90000 - \??\C:\WINDOWS\system32\drivers\OADriver.sys
F76CD000 - \SystemRoot\System32\DRIVERS\arp1394.sys
EFB21000 - \SystemRoot\System32\DRIVERS\mrxsmb.sys
F76ED000 - \SystemRoot\System32\Drivers\Fips.SYS
EFE3F000 - \??\C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.sys
F6AF9000 - \SystemRoot\System32\Drivers\Cdfs.SYS
EFB09000 - \SystemRoot\System32\Drivers\dump_atapi.sys
F7ACD000 - \SystemRoot\System32\Drivers\dump_WMILIB.SYS
BF800000 - \SystemRoot\System32\win32k.sys
F7A09000 - \SystemRoot\System32\drivers\Dxapi.sys
F78DD000 - \SystemRoot\System32\watchdog.sys
BF9C3000 - \SystemRoot\System32\drivers\dxg.sys
F7C0B000 - \SystemRoot\System32\drivers\dxgthk.sys
BF9D5000 - \SystemRoot\System32\ati2dvag.dll
BFA0B000 - \SystemRoot\System32\ati2cqag.dll
BFA43000 - \SystemRoot\System32\ati3d1ag.dll
BFFA0000 - \SystemRoot\System32\ATMFD.DLL
EF963000 - \SystemRoot\System32\DRIVERS\irda.sys
EFA09000 - \SystemRoot\System32\DRIVERS\ndisuio.sys
EF760000 - \SystemRoot\System32\Drivers\Fastfat.SYS
EF60B000 - \SystemRoot\system32\drivers\wdmaud.sys
EFC56000 - \SystemRoot\system32\drivers\sysaudio.sys
F7BEC000 - \??\C:\WINDOWS\TEMP\mc21.tmp
EF3A9000 - \SystemRoot\System32\DRIVERS\mrxdav.sys
F7AFF000 - \SystemRoot\System32\Drivers\ParVdm.SYS
EF278000 - \SystemRoot\System32\Drivers\HTTP.sys
EF3E1000 - \SystemRoot\System32\DRIVERS\mdmxsdk.sys
EF1FE000 - \SystemRoot\System32\DRIVERS\srv.sys
F782D000 - \SystemRoot\System32\DRIVERS\strmdisp.sys
EE7BB000 - \??\C:\WINDOWS\system32\PCANDIS5.SYS
EE575000 - \SystemRoot\system32\drivers\kmixer.sys
F7B8D000 - \SystemRoot\System32\DRIVERS\KProcCheck.sys

Total number of drivers = 140

Liste des programmes installes

HijackThis 2.0.2
Online Armor 2.1
SPAMfighter
SPAMfighter



Le volume dans le lecteur C n'a pas de nom.
Le numéro de série du volume est 21E7-02D4

Répertoire de C:\Program Files

28/07/2008 22:26 <REP> .
28/07/2008 22:26 <REP> ..
26/11/2006 11:58 <REP> ACDSee32
05/01/2008 17:20 <REP> Actives Softwares
18/02/2008 22:23 <REP> Adobe
02/03/2005 18:03 <REP> Ahead
10/12/2002 05:24 <REP> ATI Technologies
18/02/2008 20:01 <REP> BitTorrent Fastest Tool
30/11/2007 13:14 <REP> CalMaker
20/01/2006 15:58 <REP> Canon
14/06/2007 17:31 <REP> CartaGoGo
10/12/2002 05:32 <REP> COMPAQ
10/12/2002 05:24 <REP> CompaqNET.fr
10/12/2002 14:08 <REP> ComPlus Applications
02/03/2005 11:25 <REP> CONEXANT
28/07/2008 22:37 <REP> DiagHelp
15/05/2008 07:37 <REP> Disc2Phone
13/05/2007 17:40 <REP> eMule
26/07/2008 23:24 <REP> Fichiers communs
19/08/2007 12:13 <REP> fxc
27/07/2008 20:14 <REP> Google
26/07/2008 18:12 <REP> Grisoft
04/03/2005 10:21 <REP> Hewlett-Packard
02/03/2005 12:40 <REP> HighMAT CD Writing Wizard
14/12/2007 15:22 <REP> Horloge
02/03/2005 11:35 <REP> HP
10/12/2002 05:30 <REP> HPQ
10/12/2002 05:24 <REP> Infoflash France
11/03/2002 10:45 1 708 856 instmsia.exe
11/03/2002 11:06 1 822 520 instmsiw.exe
16/07/2008 15:16 <REP> Internet Explorer
18/12/2006 18:50 <REP> InterVideo
27/07/2008 11:05 <REP> java
17/07/2008 13:44 <REP> Kaspersky Lab
01/12/2005 17:58 <REP> LED
26/07/2008 23:13 <REP> licenses
02/11/2007 15:24 <REP> listac
04/03/2005 10:40 <REP> Logitech
27/07/2008 20:06 <REP> Malwarebytes' Anti-Malware
02/03/2005 18:24 <REP> Messenger
07/02/2007 15:09 <REP> Microsoft ActiveSync
10/12/2002 14:08 <REP> microsoft frontpage
14/12/2007 15:24 <REP> Microsoft Money
10/12/2002 05:22 <REP> Microsoft Office
10/12/2002 05:31 <REP> Microsoft Works
03/03/2005 18:29 <REP> Minitel
20/01/2006 15:46 <REP> Miraplacid
06/12/2007 13:56 <REP> Morpheus
06/12/2007 13:57 <REP> MorpheusBar
02/03/2005 15:24 <REP> Movie Maker
13/07/2007 11:44 <REP> MSBuild
13/10/2006 08:10 <REP> MSN
26/07/2005 15:32 7 401 160 msn 7.0.exe
10/12/2002 14:08 <REP> MSN Gaming Zone
31/05/2007 14:54 <REP> MSN Messenger
23/11/2006 20:22 <REP> MSXML 4.0
13/07/2007 11:50 <REP> MSXML 6.0
02/03/2005 15:20 <REP> NetMeeting
26/07/2008 23:28 <REP> OpenOffice.org 2.4
29/05/2008 22:49 43 005 openoffice.org-activex.cab
29/05/2008 22:49 1 878 252 openoffice.org-base.cab
29/05/2008 22:49 4 845 907 openoffice.org-calc.cab
29/05/2008 22:50 15 104 538 openoffice.org-core01.cab
29/05/2008 22:50 3 861 722 openoffice.org-core02.cab
29/05/2008 22:51 9 117 929 openoffice.org-core03.cab
29/05/2008 22:52 16 503 595 openoffice.org-core04.cab
29/05/2008 22:53 18 634 513 openoffice.org-core05.cab
29/05/2008 22:57 28 864 638 openoffice.org-core06.cab
29/05/2008 22:57 4 164 599 openoffice.org-core07.cab
29/05/2008 22:57 306 690 openoffice.org-core08.cab
29/05/2008 22:57 2 031 954 openoffice.org-core09.cab
29/05/2008 22:57 1 025 727 openoffice.org-draw.cab
29/05/2008 22:58 2 769 openoffice.org-emailmerge.cab
29/05/2008 22:58 86 870 openoffice.org-graphicfilter.cab
29/05/2008 22:58 1 372 593 openoffice.org-impress.cab
29/05/2008 22:58 118 910 openoffice.org-javafilter.cab
29/05/2008 22:59 1 183 268 openoffice.org-math.cab
29/05/2008 22:59 52 116 openoffice.org-onlineupdate.cab
29/05/2008 22:59 2 504 975 openoffice.org-pyuno.cab
29/05/2008 22:59 207 388 openoffice.org-testtool.cab
29/05/2008 22:59 2 650 886 openoffice.org-writer.cab
29/05/2008 22:59 37 375 openoffice.org-xsltfilter.cab
29/05/2008 22:49 4 377 600 openofficeorg24.msi
15/06/2007 18:22 <REP> Outlook Express
25/10/2007 16:21 <REP> POST-NET
06/04/2005 19:14 <REP> PowerPoint Viewer
20/01/2006 16:00 <REP> QuickTime
26/07/2008 23:13 <REP> readmes
13/07/2007 10:36 <REP> Reference Assemblies
14/06/2007 12:40 <REP> SAGEM Wi-Fi USB 802.11g
04/03/2005 10:33 <REP> ScanSoft
14/06/2007 11:19 <REP> Securitoo
10/12/2002 14:08 <REP> Services en ligne
29/05/2008 22:49 217 setup.ini
14/05/2008 16:17 <REP> Sony Ericsson
28/07/2008 22:13 <REP> SPAMfighter
02/03/2005 17:59 <REP> Spybot - Search & Destroy
10/12/2002 05:30 <REP> Synaptics
28/07/2008 21:37 <REP> Tall Emu
27/07/2008 18:09 <REP> Trend Micro
07/02/2007 16:06 <REP> ViaMichelin
19/08/2007 12:42 <REP> Virtual Creatures
13/07/2007 09:57 <REP> Wanadoo
02/03/2005 12:40 <REP> Windows Journal Viewer
13/07/2007 09:52 <REP> Windows Live Toolbar
04/03/2005 10:41 <REP> Windows Media Components
16/02/2007 15:00 <REP> Windows Media Connect
16/02/2007 15:08 <REP> Windows Media Connect 2
16/02/2007 15:08 <REP> Windows Media Player
02/03/2005 15:20 <REP> Windows NT
22/03/2006 17:56 <REP> WinFax Plus
10/12/2007 13:07 <REP> WinRAR
10/12/2002 14:08 <REP> xerox
10/12/2002 05:24 <REP> Your Application Name
28 fichier(s) 129 910 572 octets
86 Rép(s) 40 941 641 728 octets libres
Le volume dans le lecteur C n'a pas de nom.
Le numéro de série du volume est 21E7-02D4

Répertoire de C:\Program Files\fichiers communs

26/07/2008 23:24 <REP> .
26/07/2008 23:24 <REP> ..
02/03/2005 11:23 <REP> Adobe
02/03/2005 18:03 <REP> Ahead
02/01/2008 12:36 <REP> Ankiro
02/01/2008 12:36 <REP> Application
10/12/2002 05:22 <REP> Designer
15/02/2006 17:37 <REP> InstallShield
26/07/2008 23:24 <REP> Java
04/03/2005 11:01 <REP> Logitech
31/05/2007 14:55 <REP> Microsoft Shared
10/12/2002 14:08 <REP> MSSoap
10/12/2002 14:08 <REP> ODBC
04/03/2005 10:34 <REP> ScanSoft Shared
10/12/2002 14:08 <REP> Services
16/05/2008 11:31 <REP> Sony Ericsson Shared
10/12/2002 14:08 <REP> SpeechEngines
15/06/2007 18:22 <REP> System
16/05/2008 11:32 <REP> Teleca Shared
0 fichier(s) 0 octets
19 Rép(s) 40 941 641 728 octets libres
Le volume dans le lecteur C n'a pas de nom.
Le numéro de série du volume est 21E7-02D4

Répertoire de C:\Program Files\fichiers communs\Microsoft Shared\Web Folders

10/12/2002 05:23 <REP> .
10/12/2002 05:23 <REP> ..
10/12/2002 05:22 <REP> 1033
10/12/2002 05:23 <REP> 1036
15/02/2001 06:45 1 318 912 MSONSEXT.DLL
13/02/2001 09:23 58 784 MSOSV.DLL
03/06/1999 09:09 122 937 MSOWS409.DLL
07/03/2001 04:00 127 033 MSOWS40c.DLL
06/08/2000 10:04 401 462 MSVCP60.DLL
22/01/2001 04:25 69 632 PKMAXCTL.DLL
22/01/2001 04:25 872 448 PKMCDO.DLL
22/01/2001 04:25 159 744 PKMCORE.DLL
07/02/2001 10:59 106 496 PKMFORMS.DLL
12/02/2001 05:03 684 032 PKMRES.DLL
22/01/2001 04:25 28 672 PKMSSTLB.DLL
22/01/2001 04:25 40 960 PKMTEMPL.DLL
22/01/2001 04:25 24 576 PKMTRACE.DLL
22/01/2001 04:25 86 016 PKMWS.DLL
22/01/2001 04:25 237 568 PROMDEMO.DLL
22/01/2001 04:25 184 320 SECMGR.DLL
22/01/2001 04:25 323 584 VAIDDMGR.DLL
22/01/2001 04:25 32 768 VAIMEM.DLL
18 fichier(s) 4 879 944 octets
4 Rép(s) 40 941 637 632 octets libres




c:\Documents and Settings\All Users\Application Data\Kaspersky Lab Setup Files\Kaspersky Anti-Virus 7.0.0.124\French\setup.exe
c:\Documents and Settings\MARCEL\Application Data\Macromedia\Flash Player\www.macromedia.com\bin\fpupdateax\fpupdateax.exe
c:\Documents and Settings\MARCEL\Bureau\avgas-setup-7.5.1.43.exe
c:\Documents and Settings\MARCEL\Bureau\HJTInstall.exe
c:\Documents and Settings\MARCEL\Bureau\mbam-setup.exe
c:\Documents and Settings\MARCEL\Bureau\OnlineArmor_Setup_Trial.exe
c:\Documents and Settings\MARCEL\Bureau\OOo_2.4.1_Win32Intel_install_wJRE_fr.exe
c:\Documents and Settings\MARCEL\Bureau\SetupDl.exe
c:\Documents and Settings\MARCEL\Bureau\ToolBarSD.exe
c:\Documents and Settings\MARCEL\Bureau\ToolsCleaner2.exe
c:\Documents and Settings\MARCEL\Local Settings\Temp\SF1217273202-UPDATE\spamfighter_upgrade.exe
c:\Documents and Settings\MARCEL\Local Settings\Temp\SF1217273249\post.exe
c:\Documents and Settings\MARCEL\Local Settings\Temp\SF1217273249\Setup.exe
c:\Documents and Settings\MARCEL\Local Settings\Temp\SF1217275994-UPDATE\spamfighter_upgrade.exe
c:\Documents and Settings\MARCEL\Local Settings\Temporary Internet Files\Content.IE5\0THMPY0Z\zlsSetup_70_483_000_fr[1].exe
c:\Documents and Settings\MARCEL\Local Settings\Temporary Internet Files\Content.IE5\GOA5YZIV\zaSetup_fr[1].exe
c:\Documents and Settings\MARCEL\Mes documents\GPS Via Michelin\vmnavigation_pnd_6.5.3\VMNavigation_PND_6.5.3.exe
c:\Documents and Settings\MARCEL\Mes documents\sauvegarde\MARCEL\Bureau\FxGaobot.exe
c:\Documents and Settings\MARCEL\Mes documents\sauvegarde\MARCEL\Bureau\vcleaner.exe
c:\Documents and Settings\MARCEL\Mes documents\sauvegarde\MARCEL\Bureau\Virus\FixBadtr.exe
c:\Documents and Settings\MARCEL\Mes documents\sauvegarde\MARCEL\Bureau\Virus\FixBugb.exe
c:\Documents and Settings\MARCEL\Mes documents\sauvegarde\MARCEL\Bureau\Virus\fix-cih.exe
c:\Documents and Settings\MARCEL\Mes documents\sauvegarde\MARCEL\Bureau\Virus\fixkak.exe
c:\Documents and Settings\MARCEL\Mes documents\sauvegarde\MARCEL\Bureau\Virus\fixkakb.exe
c:\Documents and Settings\MARCEL\Mes documents\sauvegarde\MARCEL\Bureau\Virus\FixLirva.exe
c:\Documents and Settings\MARCEL\Mes documents\sauvegarde\MARCEL\Bureau\Virus\FxBgbear.exe
c:\Documents and Settings\MARCEL\Mes documents\sauvegarde\MARCEL\Bureau\Virus\FxMydoom.exe
c:\Documents and Settings\MARCEL\Mes documents\sauvegarde\MARCEL\Bureau\Virus\FxNetsky.exe
c:\Documents and Settings\MARCEL\Mes documents\sauvegarde\MARCEL\Bureau\Virus\Rnav2003.exe
c:\Documents and Settings\MARCEL\Mes documents\sauvegarde\MARCEL\Bureau\Virus\blaster\FixBlast.exe
c:\Documents and Settings\MARCEL\Mes documents\sauvegarde\MARCEL\Bureau\Virus\blaster\nt4_fra_Q823980i.exe
c:\Documents and Settings\MARCEL\Mes documents\sauvegarde\MARCEL\Bureau\Virus\blaster\PatchBLASTER_XP.exe
c:\Documents and Settings\MARCEL\Mes documents\sauvegarde\MARCEL\Bureau\Virus\blaster\Windows2000-KB823980-x86-FRA.exe
c:\Documents and Settings\MARCEL\Mes documents\sauvegarde\MARCEL\Bureau\Virus\sasser\FxSasser.exe
c:\Documents and Settings\MARCEL\Mes documents\sauvegarde\MARCEL\Bureau\Virus\sasser\stm2sf.exe
c:\Documents and Settings\MARCEL\Mes documents\sauvegarde\MARCEL\Bureau\Virus\sasser\Windows2000-KB835732-x86-FRA.EXE
c:\Documents and Settings\MARCEL\Mes documents\sauvegarde\MARCEL\Bureau\Virus\sasser\WindowsXP-KB835732-x86-FRA.EXE
c:\Documents and Settings\MARCEL\Mes documents\sauvegarde\MARCEL\Local Settings\Temp\msnsearch.exe
c:\Documents and Settings\MARCEL\Mes documents\sauvegarde\MARCEL\Local Settings\Temp\RPR32W.EXE
c:\Documents and Settings\MARCEL\Mes documents\sauvegarde\MARCEL\Local Settings\Temp\setup_wm.exe
c:\Documents and Settings\MARCEL\Mes documents\sauvegarde\MARCEL\Local Settings\Temp\Temporary Internet Files\Content.IE5\U3QVORER\angella[1].exe
c:\Documents and Settings\MARCEL\Mes documents\sauvegarde\MARCEL\Local Settings\Temp\_ISTMP1.DIR\_ISTMP0.DIR\ShFolder.Exe
c:\Documents and Settings\MARCEL\Mes documents\sauvegarde\MARCEL\Mes documents\SetupDl.exe
c:\Documents and Settings\MARCEL\Mes documents\SETUP\SETUP.EXE
c:\Documents and Settings\All Users\Application Data\Grisoft\AVG Anti-Spyware 7.5\Downloads\help.dll
c:\Documents and Settings\All Users\Application Data\Kaspersky Lab\AVP8\Data\Updater\Temporary Files\temporaryFolder\AutoPatches\kav8exec\8.0.0.357\CKAHUM.dll
c:\Documents and Settings\All Users\Application Data\Kaspersky Lab\AVP8\Data\Updater\Temporary Files\temporaryFolder\AutoPatches\kav8exec\8.0.0.357\ievkbd.dll
c:\Documents and Settings\All Users\Application Data\Kaspersky Lab\AVP8\Data\Updater\Temporary Files\temporaryFolder\AutoPatches\kav8exec\8.0.0.357\mzvkbd.dll
c:\Documents and Settings\All Users\Application Data\Kaspersky Lab\AVP8\Data\Updater\Temporary Files\temporaryFolder\AutoPatches\kav8exec\8.0.0.357\Updater.dll
c:\Documents and Settings\All Users\Application Data\Kaspersky Lab\AVP8\Data\Updater\Temporary Files\temporaryFolder\AutoPatches\kav8exec\8.0.0.357\vkbd.dll
c:\Documents and Settings\All Users\Application Data\Microsoft\IdentityCRL\production\ppcrlconfig.dll
c:\Documents and Settings\LocalService\Application Data\Microsoft\UPnP Device Host\upnphost\udhisapi.dll

****** Fin du rapport DiagHelp

Voila le dernier rapport demandé:
[CODE]

2008-07-28,22:51:56

System Repair Engineer 2.6.12.1018
Smallfrogs (http://www.KZTechs.com)

Windows XP Home Edition Service Pack 2 (Build 2600) - Administrative User - Completed Functions Allowed

Follow item(s) have been selected:
All Boot Items (Including Registry, Startup Folders, Services and so on)
Browser Add-ons
Running Processes (Including process model information)
File Associations
Winsock Provider
Autorun.Inf
HOSTS File
Process Privileges Scan


Boot Items
Registry
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
<ctfmon.exe><C:\WINDOWS\system32\ctfmon.exe> [(Verified)Microsoft Windows Publisher]
<H/PC Connection Agent><"C:\PROGRA~1\MI3AA1~1\wcescomm.exe"> [(Verified)Microsoft Corporation]
<WMPNSCFG><C:\Program Files\Windows Media Player\WMPNSCFG.exe> [(Verified)Microsoft Windows Component Publisher]
<swg><C:\Program Files\Google\GoogleToolbarNotifier\1.2.911.3380\GoogleToolbarNotifier.exe> [File is missing]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
<CARPService><carpserv.exe> [(Verified)Microsoft Windows Hardware Compatibility Publisher]
<ATIPTA><C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe> [ATI Technologies, Inc.]
<PreloadApp><c:\hp\drivers\printers\photosmart\hphprld.exe c:\hp\drivers\printers\photosmart\setup.exe -d> [Hewlett-Packard]
<srmclean><C:\Cpqs\Scom\srmclean.exe> []
<Display Settings><C:\Program Files\HPQ\Notebook Utilities\hptasks.exe /s> [Hewlett-Packard]
<QT4HPOT><C:\PROGRA~1\HPQ\ONE-TO~1\OneTouch.EXE> [Dritek System Inc.]
<SynTPLpr><C:\Program Files\Synaptics\SynTP\SynTPLpr.exe> [(Verified)Microsoft Windows Hardware Compatibility Publisher]
<SynTPEnh><C:\Program Files\Synaptics\SynTP\SynTPEnh.exe> [(Verified)Microsoft Windows Hardware Compatibility Publisher]
<Cpqset><C:\Program Files\HPQ\Default Settings\cpqset.exe> []
<CapFax><C:\Program Files\WinFax Plus\CapFax.EXE> [BVRP Software]
<NeroFilterCheck><C:\WINDOWS\system32\NeroCheck.exe> [Ahead Software Gmbh]
<HP Component Manager><"C:\Program Files\HP\hpcoretech\hpcmpmgr.exe"> [Hewlett-Packard Company]
<HP Software Update><"C:\Program Files\Hewlett-Packard\HP Software Update\HPWuSchd.exe"> [Hewlett-Packard]
<HPDJ Taskbar Utility><C:\WINDOWS\system32\spool\drivers\w32x86\3\hpztsb09.exe> [(Verified)Microsoft Windows Hardware Compatibility Publisher]
<Omnipage><C:\Program Files\ScanSoft\OmniPageSE\opware32.exe> [ScanSoft, Inc]
<LogitechImageStudioTray><C:\Program Files\Logitech\ImageStudio\LogiTray.exe> [Logitech Inc.]
<LogitechGalleryRepair><C:\Program Files\Logitech\ImageStudio\ISStart.exe> [Logitech Inc.]
<LVCOMS><C:\Program Files\Fichiers communs\Logitech\QCDriver\LVCOMS.EXE> [(Verified)Microsoft Windows Hardware Compatibility Publisher]
<QuickTime Task><"C:\Program Files\QuickTime\qttask.exe" -atboottime> [Apple Computer, Inc.]
<SPAMfighter Agent><"C:\Program Files\SPAMfighter\SFAgent.exe" update delay 60> [File is missing]
<Sony Ericsson PC Suite><"C:\Program Files\Sony Ericsson\Mobile2\Application Launcher\Application Launcher.exe" /startoptions> []
<AVP><"C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2009\avp.exe"> [(Verified)Kaspersky Lab]
<!AVG Anti-Spyware><"C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\avgas.exe" /minimized> [(Verified)GRISOFT LTD]
<SunJavaUpdateSched><"C:\Program Files\Java\jre1.6.0_07\bin\jusched.exe"> [(Verified)"Sun Microsystems, Inc."]
<OnlineArmor GUI><"C:\Program Files\Tall Emu\Online Armor\oaui.exe"> [Tall Emu ]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows NT\CurrentVersion\Winlogon]
<shell><Explorer.exe> [(Verified)Microsoft Windows Component Publisher]
<Userinit><C:\WINDOWS\system32\userinit.exe,> [(Verified)Microsoft Windows Publisher]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows NT\CurrentVersion\Windows]
<AppInit_DLLs><> [N/A]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows NT\CurrentVersion\Winlogon]
<UIHost><logonui.exe> [(Verified)Microsoft Windows Publisher]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
<{57B86673-276A-48B2-BAE7-C6DBB3020EB8}><C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\shellexecutehook.dll> [(Verified)GRISOFT LTD]
<{4F07DA45-8170-4859-9B5F-037EF2970034}><C:\PROGRA~1\TALLEM~1\ONLINE~1\oaevent.dll> [(Verified)Tall Emu]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
<WPDShServiceObj><C:\WINDOWS\system32\WPDShServiceObj.dll> [(Verified)Microsoft Windows Component Publisher]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\klogon]
<WinlogonNotify: klogon><C:\WINDOWS\system32\klogon.dll> [(Verified)Kaspersky Lab]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\WgaLogon]
<WinlogonNotify: WgaLogon><WgaLogon.dll> [(Verified)Microsoft Corporation]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\<{12d0ed0d-0ee0-4f90-8827-78cefb8f4988}]
<IE7 Uninstall Stub><C:\WINDOWS\system32\ieudinit.exe> [(Verified)Microsoft Windows Component Publisher]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\>{881dd1c5-3dcf-431b-b061-f3f88e8be88a}]
<Outlook Express><%systemroot%\system32\shmgrate.exe OCInstallUserConfigOE> [File is missing]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{2C7339CF-2B09-4501-B3F3-F3508C9228ED}]
<Themes Setup><%SystemRoot%\system32\regsvr32.exe /s /n /i:/UserInstall %SystemRoot%\system32\themeui.dll> [File is missing]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{44BBA840-CC51-11CF-AAFA-00AA00B6015C}]
<Microsoft Outlook Express 6><"%ProgramFiles%\Outlook Express\setup50.exe" /APP:OE /CALLER:WINNT /user /install> [File is missing]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{44BBA842-CC51-11CF-AAFA-00AA00B6015B}]
<NetMeeting 3.01><rundll32.exe advpack.dll,LaunchINFSection C:\WINDOWS\INF\msnetmtg.inf,NetMtg.Install.PerUser.NT> [(Verified)Microsoft Windows Publisher]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{5945c046-1e7d-11d1-bc44-00c04fd912be}]
<Windows Messenger 4.7><rundll32.exe advpack.dll,LaunchINFSection C:\WINDOWS\INF\msmsgs.inf,BLC.QuietInstall.PerUser> [(Verified)Microsoft Windows Publisher]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{6BF52A52-394A-11d3-B153-00C04F79FAA6}]
<Microsoft Windows Media Player><rundll32.exe advpack.dll,LaunchINFSection C:\WINDOWS\INF\wmp11.inf,PerUserStub> [(Verified)Microsoft Windows Component Publisher]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{7790769C-0471-11d2-AF11-00C04FA35D02}]
<Carnet d'adresses 6><"%ProgramFiles%\Outlook Express\setup50.exe" /APP:WAB /CALLER:WINNT /user /install> [File is missing]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{89B4C1CD-B018-4511-B0A1-5476DBF70820}]
<N/A><c:\WINDOWS\system32\Rundll32.exe c:\WINDOWS\system32\mscories.dll,Install> [(Verified)Microsoft Corporation]

==================================
Startup Folders
[Microsoft Office]
<C:\Documents and Settings\All Users\Menu Démarrer\Programmes\Démarrage\Microsoft Office.lnk --> C:\PROGRA~1\MICROS~2\Office10\OSA.EXE [Microsoft Corporation]><N>
[Sagem - Utilitaire réseau pour Clé USB Wi-Fi 802.11g]
<C:\Documents and Settings\All Users\Menu Démarrer\Programmes\Démarrage\Sagem - Utilitaire réseau pour Clé USB Wi-Fi 802.11g.lnk --> C:\PROGRA~1\SAGEMW~1.11G\WLANUTL.exe [ ]><N>
[OpenOffice.org 2.4]
<C:\Documents and Settings\MARCEL\Menu Démarrer\Programmes\Démarrage\OpenOffice.org 2.4.lnk --> C:\PROGRA~1\OPENOF~1.4\program\QUICKS~1.EXE [N/A]><N>

==================================
Services
[Gestion d'applications / AppMgmt][Stopped/Manual Start]
<C:\WINDOWS\system32\svchost.exe -k netsvcs-->%SystemRoot%\System32\appmgmts.dll><N/A>
[AVG Anti-Spyware Guard / AVG Anti-Spyware Guard][Running/Auto Start]
<C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe><GRISOFT s.r.o.>
[Kaspersky Anti-Virus / avp][Running/Auto Start]
<C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2009\avp.exe -r><Kaspersky Lab>
[Canon Camera Access Library 8 / CCALib8][Running/Auto Start]
<C:\Program Files\Canon\CAL\CALMAIN.exe><Canon Inc.>
[Windows Presentation Foundation Font Cache 3.0.0.0 / FontCache3.0.0.0][Stopped/Manual Start]
<C:\WINDOWS\Microsoft.Net\Framework\v3.0\WPF\PresentationFontCache.exe><Microsoft Corporation>
[Google Updater Service / gusvc][Stopped/Manual Start]
<"C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe"><Google>
[Accès du périphérique d'interface utilisateur / HidServ][Stopped/Disabled]
<C:\WINDOWS\System32\svchost.exe -k netsvcs-->%SystemRoot%\System32\hidserv.dll><N/A>
[HP Configuration Interface Service / HPConfig][Running/Auto Start]
<C:\WINDOWS\system32\HPConfig.exe><Hewlett-Packard>
[HPWirelessMgr / HPWirelessMgr][Running/Auto Start]
<C:\Program Files\HPQ\Notebook Utilities\HPWirelessMgr.exe><Hewlett-Packard Co.>
[InstallDriver Table Manager / IDriverT][Stopped/Manual Start]
<"C:\Program Files\Fichiers communs\InstallShield\Driver\1150\Intel 32\IDriverT.exe"><Macrovision Corporation>
[Windows CardSpace / idsvc][Stopped/Manual Start]
<"C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe"><Microsoft Corporation>
[Net.Tcp Port Sharing Service / NetTcpPortSharing][Stopped/Disabled]
<"C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe"><Microsoft Corporation>
[SPAMfighter Update Service / SPAMfighter Update Service][Running/Auto Start]
<"C:\Program Files\SPAMfighter\sfus.exe"><SPAMfighter ApS>
[Online Armor / SvcOnlineArmor][Running/Auto Start]
<"C:\Program Files\Tall Emu\Online Armor\oasrv.exe"><Tall Emu>

==================================
Drivers
[AliIde / AliIde][Running/Boot Start]
<\SystemRoot\System32\DRIVERS\aliide.sys><Acer Laboratories Inc.>
[ALi Infrared Device Driver / ALiIRDA][Running/Manual Start]
<System32\DRIVERS\aliirda.sys><Acer Laboratories Inc.>
[Pilote audio ESS Allegro (WDM) / allegro][Stopped/Manual Start]
<system32\drivers\es198x.sys><ESS Technology, Inc.>
[ati2mtag / ati2mtag][Running/Manual Start]
<System32\DRIVERS\ati2mtag.sys><ATI Technologies Inc.>
[atimpab / atimpab][Stopped/Manual Start]
<System32\DRIVERS\atimpab.sys><ATI Technologies Inc.>
[AVG Anti-Spyware Driver / AVG Anti-Spyware Driver][Running/System Start]
<\??\C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.sys><N/A>
[AVG Anti-Spyware Clean Driver / AvgAsCln][Running/System Start]
<System32\DRIVERS\AvgAsCln.sys><GRISOFT, s.r.o.>
[ATI Cabo AGP Filter / caboagp][Running/Boot Start]
<\SystemRoot\System32\DRIVERS\atisgkaf.sys><ATI Technologies Inc.>
[Conexant AMC 3D Environmental Audio / CALIAUD][Running/Manual Start]
<system32\drivers\caliaud.sys><Conexant Systems Inc.>
[CALIHALA / CALIHALA][Running/Manual Start]
<system32\drivers\calihal.sys><Conexant Systems Inc.>
[Service de la carte Xircom Ethernet 10/100 / CE3][Stopped/Manual Start]
<System32\DRIVERS\ce3n5.sys><Xircom, Inc.>
[Dritek HotKey Keyboard Filter Driver / DKbFltr][Running/Manual Start]
<System32\Drivers\DKbFltr.SYS><Dritek System Inc.>
[National Semiconductor Corp. DP83815/816 NDIS 5.0 Miniport Driver / DP83815][Running/Manual Start]
<System32\DRIVERS\DP83815.SYS><National Semiconductor Corp.>
[HP Configuration Interface / HPCI][Running/Manual Start]
<System32\DRIVERS\hpci.sys><Hewlett-Packard>
[HSFHWALI / HSFHWALI][Running/Manual Start]
<System32\DRIVERS\HSFHWALI.sys><Conexant Systems, Inc.>
[HSF_DP / HSF_DP][Stopped/Manual Start]
<System32\DRIVERS\HSF_DP.sys><Conexant Systems, Inc.>
[HSF_DPV / HSF_DPV][Running/Manual Start]
<system32\DRIVERS\HSF_DPV.sys><Conexant Systems, Inc.>
[kl1 / kl1][Running/Boot Start]
<\SystemRoot\system32\drivers\kl1.sys><Kaspersky Lab>
[Kaspersky Lab Boot Guard Driver / klbg][Running/Boot Start]
<\SystemRoot\system32\drivers\klbg.sys><Kaspersky Lab>
[Kaspersky Lab Driver / klif][Running/System Start]
<system32\DRIVERS\klif.sys><Kaspersky Lab>
[Kaspersky Anti-Virus NDIS Filter / klim5][Running/Manual Start]
<system32\DRIVERS\klim5.sys><Kaspersky Lab>
[IEEE 802.11 Wireless NIC Win2000 Driver / LEX_NIC_SERVICE][Running/Manual Start]
<System32\DRIVERS\Express.sys><LAN-Express>
[mdmxsdk / mdmxsdk][Running/Auto Start]
<System32\DRIVERS\mdmxsdk.sys><Conexant>
[OADriver / OADevice][Running/System Start]
<\??\C:\WINDOWS\system32\drivers\OADriver.sys><N/A>
[OAmon / OAmon][Running/System Start]
<\??\C:\WINDOWS\system32\drivers\OAmon.sys><N/A>
[OAnet / OAnet][Running/System Start]
<\??\C:\WINDOWS\system32\drivers\OAnet.sys><N/A>
[Pilote de liaison parallèle directe / Ptilink][Running/Manual Start]
<System32\DRIVERS\ptilink.sys><Parallel Technologies, Inc.>
[Logitech QuickCam Express / QCMerced][Stopped/Manual Start]
<system32\DRIVERS\LVCM.sys><Logitech Inc.>
[Sony Ericsson Device 088 driver (WDM) / se58bus][Stopped/Manual Start]
<system32\DRIVERS\se58bus.sys><MCCI>
[Sony Ericsson Device 088 USB WMC Modem Filter / se58mdfl][Stopped/Manual Start]
<system32\DRIVERS\se58mdfl.sys><MCCI>
[Sony Ericsson Device 088 USB WMC Modem Driver / se58mdm][Stopped/Manual Start]
<system32\DRIVERS\se58mdm.sys><MCCI>
[Sony Ericsson Device 088 USB WMC Device Management Drivers (WDM) / se58mgmt][Stopped/Manual Start]
<system32\DRIVERS\se58mgmt.sys><MCCI>
[Sony Ericsson Device 088 USB Ethernet Emulation SEMC58 (NDIS) / se58nd5][Stopped/Manual Start]
<system32\DRIVERS\se58nd5.sys><MCCI>
[Sony Ericsson Device 088 USB WMC OBEX Interface / se58obex][Stopped/Manual Start]
<system32\DRIVERS\se58obex.sys><MCCI>
[Sony Ericsson Device 088 USB Ethernet Emulation SEMC58 (WDM) / se58unic][Stopped/Manual Start]
<system32\DRIVERS\se58unic.sys><MCCI>
[Secdrv / Secdrv][Stopped/Manual Start]
<System32\DRIVERS\secdrv.sys><Macrovision Corporation, Macrovision Europe Limited, and Macrovision Japan and Asia K.K.>
[StreamDispatcher / StreamDispatcher][Running/Auto Start]
<System32\DRIVERS\strmdisp.sys><Conexant Systems, Inc.>
[Synaptics TouchPad Driver / SynTP][Running/Manual Start]
<System32\DRIVERS\SynTP.sys><Synaptics, Inc.>
[winachsf / winachsf][Running/Manual Start]
<System32\DRIVERS\HSF_CNXT.sys><Conexant Systems, Inc.>
[Sagem 802.11g Wireless LAN USB Adapter Driver / WlanUIG][Stopped/Manual Start]
<system32\DRIVERS\WlanUIG.sys><Conexant Systems, Inc.>
[PCANDIS5 Protocol Driver / PCANDIS5][Running/Manual Start]
<\??\C:\WINDOWS\system32\PCANDIS5.SYS><Printing Communications Assoc., Inc. (PCAUSA)>

==================================
Browser Add-ons
[]
{53707962-6F74-2D53-2644-206D7942484F} <C:\Program Files\Spybot - Search & Destroy\SDHelper.dll, Safer Networking Limited>
[IEVkbdBHO Class]
{59273AB4-E7D3-40F9-A1A8-6FA9CCA1862C} <C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2009\ievkbd.dll, (Signed) Kaspersky Lab>
[SSVHelper Class]
{761497BB-D6F0-462C-B6EB-D4DAF1D92D43} <C:\Program Files\Java\jre1.6.0_07\bin\ssv.dll, (Signed) Sun Microsystems, Inc.>
[Windows Live Sign-in Helper]
{9030D464-4C02-4ABF-8ECC-5164760863C6} <C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll, (Signed) Microsoft Corporation>
[Google Toolbar Helper]
{AA58ED58-01DD-4d91-8333-CF10577473F7} <c:\program files\google\googletoolbar2.dll, (Signed) Google Inc.>
[Java Plug-in 1.6.0_07]
{08B0E5C0-4FCB-11CF-AAA5-00401C608501} <C:\Program Files\Java\jre1.6.0_07\bin\ssv.dll, (Signed) Sun Microsystems, Inc.>
[Statistiques de la protection du trafic Internet]
{1F460357-8A94-4D71-9CA3-AA4ACF32ED8E} <C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2009\SCIEPlgn.dll, (Signed) Kaspersky Lab>
[Create Mobile Favorite]
{2EAF5BB1-070F-11D3-9307-00C04FAE2D4F} <C:\PROGRA~1\MI3AA1~1\INetRepl.dll, (Signed) Microsoft Corporation>
[Create Mobile Favorite]
{2EAF5BB2-070F-11D3-9307-00C04FAE2D4F} <C:\PROGRA~1\MI3AA1~1\INetRepl.dll, (Signed) Microsoft Corporation>
[]
{e2e2dd38-d088-4134-82b7-f2ba38496583} <%windir%\Network Diagnostic\xpnetdiag.exe, (Signed) N/A>
[Messenger]
{FB5F1910-F110-11d2-BB9E-00C04F795683} <C:\Program Files\Messenger\msmsgs.exe, (Signed) Microsoft Corporation>
[CKAVWebScan Object]
{0EB0E74A-2A76-4AB3-A7FB-9BD8C29F7F75} <C:\WINDOWS\system32\Kaspersky Lab\Kaspersky Online Scanner\kavwebscan.dll, Kaspersky Lab>
[Java Plug-in 1.6.0_07]
{8AD9C840-044E-11D1-B3E9-00805F499D93} <C:\Program Files\Java\jre1.6.0_07\bin\ssv.dll, (Signed) Sun Microsystems, Inc.>
[Java Plug-in 1.6.0_04]
{CAFEEFAC-0016-0000-0004-ABCDEFFEDCBA} <C:\Program Files\Java\jre1.6.0_07\bin\ssv.dll, (Signed) Sun Microsystems, Inc.>
[Java Plug-in 1.6.0_07]
{CAFEEFAC-0016-0000-0007-ABCDEFFEDCBA} <C:\Program Files\Java\jre1.6.0_07\bin\ssv.dll, (Signed) Sun Microsystems, Inc.>
[Java Plug-in 1.6.0_07]
{CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} <C:\Program Files\Java\jre1.6.0_07\bin\npjpi160_07.dll, (Signed) Sun Microsystems, Inc.>
[Shockwave Flash Object]
{D27CDB6E-AE6D-11CF-96B8-444553540000} <C:\WINDOWS\system32\Macromed\Flash\Flash9e.ocx, (Signed) Adobe Systems, Inc.>
[]
{00000000-0000-0000-0000-000000000000} <, >
[QuickTime Object]
{02BF25D5-8C17-4B23-BC80-D3488ABDDC6B} <C:\Program Files\QuickTime\QTPlugin.ocx, Apple Computer, Inc.>
[]
{06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} <, >
[]
{06FE5D05-8F11-11D2-804F-00105A133818} <, >
[Web Browser Applet Control]
{08B0E5C0-4FCB-11CF-AAA5-00401C608501} <C:\WINDOWS\System32\msjava.dll, Microsoft Corporation>
[]
{09C21411-B9A2-4DE6-8416-4E3B58577BE0} <, >
[CKAVWebScan Object]
{0EB0E74A-2A76-4AB3-A7FB-9BD8C29F7F75} <C:\WINDOWS\system32\Kaspersky Lab\Kaspersky Online Scanner\kavwebscan.dll, Kaspersky Lab>
[PeerDraw Class]
{10072CEC-8CC1-11D1-986E-00A0C955B42E} <%CommonProgramFiles%\Microsoft Shared\VGX\vgx.dll, (Signed) N/A>
[CEnroll Class]
{127698E4-E730-4E5C-A2B1-21490A70C8A1} <C:\WINDOWS\System32\xenroll.dll, (Signed) Microsoft Corporation>
[]
{1462651F-F4BA-4C76-A001-C4284D0FE16E} <, >
[]
{166B1BCA-3F9C-11CF-8075-444553540000} <, >
[]
{17492023-C23A-453E-A040-C7C580BBF700} <, >
[InformationCardSigninHelper Class]
{19916E01-B44E-4E31-94A4-4696DF46157B} <C:\WINDOWS\system32\icardie.dll, (Signed) Microsoft Corporation>
[]
{1F460357-8A94-4D71-9CA3-AA4ACF32ED8E} <, >
[Windows Media Player]
{22D6F312-B0F6-11D0-94AB-0080C74C7E95} <C:\WINDOWS\system32\wmpdxm.dll, (Signed) Microsoft Corporation>
[&Google]
{2318C2B1-4965-11D4-9B18-009027A5CD4F} <c:\program files\google\googletoolbar2.dll, (Signed) Google Inc.>
[HTML Document]
{25336920-03F9-11CF-8FD0-00AA00686F13} <C:\WINDOWS\system32\mshtml.dll, (Signed) Microsoft Corporation>
[XML DOM Document]
{2933BF90-7B36-11D2-B20E-00C04F983E60} <%SystemRoot%\System32\msxml3.dll, (Signed) N/A>
[DHTML Edit Control Safe for Scripting for IE5]
{2D360201-FFF5-11D1-8D03-00A0C959BC0A} <C:\Program Files\Fichiers communs\Microsoft Shared\Triedit\dhtmled.ocx, (Signed) Microsoft Corporation>
[]
{2D37B9E8-C14C-482C-B1CF-939C5440E179} <, >
[]
{2EAF5BB1-070F-11D3-9307-00C04FAE2D4F} <, >
[]
{2EAF5BB2-070F-11D3-9307-00C04FAE2D4F} <, >
[HtmlDlgHelper Class]
{3050F4E1-98B5-11CF-BB82-00AA00BDCE0B} <C:\WINDOWS\system32\mshtmled.dll, (Signed) Microsoft Corporation>
[HtmlDlgSafeHelper Class]
{3050F819-98B5-11CF-BB82-00AA00BDCE0B} <C:\WINDOWS\system32\mshtmled.dll, (Signed) Microsoft Corporation>
[Tabular Data Control]
{333C7BC4-460F-11D0-BC04-0080C7055A83} <C:\WINDOWS\system32\tdc.ocx, (Signed) Microsoft Corporation>
[IETag Factory]
{38481807-CA0E-42D2-BF39-B33AF135CC4D} <c:\PROGRA~1\FICHIE~1\MICROS~1\SMARTT~1\IETAG.DLL, (Signed) Microsoft Corporation>
[]
{3F3714A1-89A4-46BE-8AF3-D0C9D1FB03F9} <, >
[]
{3F3714A9-89A4-46BE-8AF3-D0C9D1FB03F9} <, >
[XML Document]
{48123BC4-99D9-11D1-A6B3-00C04FD91555} <%SystemRoot%\System32\msxml3.dll, (Signed) N/A>
[]
{4F1E5B1A-2A80-42CA-8532-2D05CB959537} <, >
[HHCtrl Object]
{52A2AAAE-085D-4187-97EA-8C30DB990436} <C:\WINDOWS\system32\hhctrl.ocx, (Signed) Microsoft Corporation>
[]
{53707962-6F74-2D53-2644-206D7942484F} <C:\Program Files\Spybot - Search & Destroy\SDHelper.dll, Safer Networking Limited>
[Shell Name Space]
{55136805-B2DE-11D1-B9F2-00A0C98BC547} <C:\WINDOWS\system32\ieframe.dll, (Signed) Microsoft Corporation>
[IEVkbdBHO Class]
{59273AB4-E7D3-40F9-A1A8-6FA9CCA1862C} <C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2009\ievkbd.dll, (Signed) Kaspersky Lab>
[CKAVReportCtrl Object]
{6117669B-8C2D-41FA-A6D9-9E484B999CF0} <C:\WINDOWS\system32\Kaspersky Lab\Kaspersky Online Scanner\kavwebscan.dll, Kaspersky Lab>
[]
{6414512B-B978-451D-A0D8-FCFDF33E833C} <, >
[Microsoft Shell UI Helper]
{64AB4BB7-111E-11D1-8F79-00C04FC2FBE1} <C:\WINDOWS\system32\ieframe.dll, (Signed) Microsoft Corporation>
[Windows Media Player]
{6BF52A52-394A-11D3-B153-00C04F79FAA6} <C:\WINDOWS\system32\wmp.dll, (Signed) Microsoft Corporation>
[MUWebControl Class]
{6E32070A-766D-4EE6-879C-DC1FA91D2FC3} <C:\WINDOWS\system32\muweb.dll, (Signed) Microsoft Corporation>
[Active Desktop Mover]
{72267F6A-A6F9-11D0-BC94-00C04FB67863} <%SystemRoot%\system32\SHELL32.dll, (Signed) N/A>
[SSVHelper Class]
{761497BB-D6F0-462C-B6EB-D4DAF1D92D43} <C:\Program Files\Java\jre1.6.0_07\bin\ssv.dll, (Signed) Sun Microsystems, Inc.>
[]
{7E853D72-626A-48EC-A868-BA8D5E23E045} <, >
[Microsoft Web Browser]
{8856F961-340A-11D0-A96B-00C04FD705A2} <C:\WINDOWS\system32\ieframe.dll, (Signed) Microsoft Corporation>
[XML DOM Document 4.0]
{88D969C0-F192-11D4-A65F-0040963251E5} <%SystemRoot%\system32\MSXML4.dll, N/A>
[XML DOM Document 6.0]
{88D96A05-F192-11D4-A65F-0040963251E5} <c:\WINDOWS\system32\msxml6.dll, (Signed) Microsoft Corporation>
[Windows Live Sign-in Helper]
{9030D464-4C02-4ABF-8ECC-5164760863C6} <C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll, (Signed) Microsoft Corporation>
[]
{917623D1-D8E5-11D2-BE8B-00104B06BDE3} <, >
[RMGetLicense Class]
{A9FC132B-096D-460B-B7D5-1DB0FAE0C062} <C:\WINDOWS\system32\msnetobj.dll, (Signed) Microsoft Corporation>
[Google Toolbar Helper]
{AA58ED58-01DD-4D91-8333-CF10577473F7} <c:\program files\google\googletoolbar2.dll, (Signed) Google Inc.>
[]
{B38870E4-7ECB-40DA-8C6A-595F0A5519FF} <, >
[SearchAssistantOC]
{B45FF030-4447-11D2-85DE-00C04FA35C89} <%SystemRoot%\System32\shdocvw.dll, (Signed) N/A>
[TSLink Class]
{B7156514-A76C-4545-9D5B-A4E1D02C7AEC} <C:\Program Files\Kazaa\Topsearch.dll, N/A>
[]
{BDAD1DAD-C946-4A17-ADC1-64B5B4FF55D0} <, >
[]
{BDBD1DAD-C946-4A17-ADC1-64B5B4FF55D0} <, >
[]
{C36112BF-2FA3-4694-8603-3B510EA3B465} <, >
[]
{CA8A9780-280D-11CF-A24D-444553540000} <, >
[AUDIO__MID Moniker Class]
{CD3AFA74-B84F-48F0-9393-7EDC34128127} <C:\WINDOWS\system32\wmp.dll, (Signed) Microsoft Corporation>
[AUDIO__MP3 Moniker Class]
{CD3AFA76-B84F-48F0-9393-7EDC34128127} <C:\WINDOWS\system32\wmp.dll, (Signed) Microsoft Corporation>
[AUDIO__WAV Moniker Class]
{CD3AFA7B-B84F-48F0-9393-7EDC34128127} <C:\WINDOWS\system32\wmp.dll, (Signed) Microsoft Corporation>
[VIDEO__X_MS_ASF Moniker Class]
{CD3AFA8F-B84F-48F0-9393-7EDC34128127} <C:\WINDOWS\system32\wmp.dll, (Signed) Microsoft Corporation>
[VIDEO__X_MS_WMV Moniker Class]
{CD3AFA94-B84F-48F0-9393-7EDC34128127} <C:\WINDOWS\system32\wmp.dll, (Signed) Microsoft Corporation>
[Msxml]
{CFC399AF-D876-11D0-9C10-00C04FC99C8E} <%SystemRoot%\System32\msxml3.dll, (Signed) N/A>
[Windows Live Sign-in Control]
{D2517915-48CE-4286-970F-921E881B8C5C} <C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll, (Signed) Microsoft Corporation>
[Shockwave Flash Object]
{D27CDB6E-AE6D-11CF-96B8-444553540000} <C:\WINDOWS\system32\Macromed\Flash\Flash9e.ocx, (Signed) Adobe Systems, Inc.>
[]
{D27CDB6E-AE6D-11CF-96B8-444553541010} <, >
[]
{D73F49B1-B51B-4D32-A3B7-BD04B8342F53} <, >
[QuickTimeCheck Class]
{DE4AF3B0-F4D4-11D3-B41A-0050DA2E6C21} <C:\WINDOWS\system32\QuickTimeCheck.OCX, Apple Computer, Inc.>
[]
{E13AAC70-70AE-4988-808C-B267F2C20E79} <, >
[]
{E1771B7F-98BE-407F-BA67-AA16ADA5D0C5} <C:\PROGRA~1\MSNMES~1\MSGSC8~1.DLL, (Signed) Microsoft Corporation>
[]
{E2E2DD38-D088-4134-82B7-F2BA38496583} <, >
[SVG Document]
{EBF9B040-94C9-11D4-9064-00C04F78ACF9} <C:\WINDOWS\System32\Adobe\SVG Viewer\SVGControl.dll, Adobe Systems Incorporated>
[XML HTTP Request]
{ED8C108E-4349-11D2-91A4-00C04F7969E8} <%SystemRoot%\System32\msxml3.dll, (Signed) N/A>
[]
{F06608C7-1874-4EEA-B3B2-DF99EBB144B8} <C:\PROGRA~1\MSNMES~1\MSGSC8~1.DLL, (Signed) Microsoft Corporation>
[]
{F11BFF96-CC7A-4482-819B-91EAE4C454EF} <, >
[JScript Language]
{F414C260-6AC0-11CF-B6D1-00AA00BBBB58} <C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2009\scrchpg.dll, (Signed) Kaspersky Lab>
[XML DOM Document 3.0]
{F5078F32-C551-11D3-89B9-0000F81FE221} <%SystemRoot%\System32\msxml3.dll, (Signed) N/A>
[XML DOM Document]
{F6D90F11-9C73-11D3-B32E-00C04F990BB4} <%SystemRoot%\System32\msxml3.dll, (Signed) N/A>
[XML HTTP]
{F6D90F16-9C73-11D3-B32E-00C04F990BB4} <%SystemRoot%\System32\msxml3.dll, (Signed) N/A>
[]
{FB5F1910-F110-11D2-BB9E-00C04F795683} <, >

==================================
Running Processes
[PID: 1144 / SYSTEM][\SystemRoot\System32\smss.exe] [Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)]
[PID: 1272 / SYSTEM][\??\C:\WINDOWS\system32\csrss.exe] [Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)]
[PID: 1296 / SYSTEM][\??\C:\WINDOWS\system32\winlogon.exe] [Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)]
[C:\WINDOWS\system32\klogon.dll] [Kaspersky Lab, 8.0.0.357]
[C:\WINDOWS\system32\WgaLogon.dll] [Microsoft Corporation, 1.7.0018.5]
[C:\WINDOWS\system32\msacm32.drv] [Microsoft Corporation, 5.1.2600.0 (xpclient.010817-1148)]
[PID: 1340 / SYSTEM][C:\WINDOWS\system32\services.exe] [Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)]
[C:\WINDOWS\AppPatch\AcAdProc.dll] [Microsoft Corporation, 5.1.2600.3008 (xpsp.061004-0027)]
[PID: 1352 / SYSTEM][C:\WINDOWS\system32\lsass.exe] [Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)]
[PID: 1512 / SYSTEM][C:\WINDOWS\system32\svchost.exe] [Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)]
[PID: 1608 / SERVICE RÉSEAU][C:\WINDOWS\system32\svchost.exe] [Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)]
[PID: 1804 / SYSTEM][C:\WINDOWS\System32\svchost.exe] [Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)]
[C:\WINDOWS\system32\Normaliz.dll] [Microsoft Corporation, 6.0.5441.0 (winmain(wmbla).060628-1735)]
[C:\WINDOWS\system32\iertutil.dll] [Microsoft Corporation, 7.00.6000.16674 (vista_gdr.080415-1732)]
[C:\WINDOWS\system32\wups2.dll] [Microsoft Corporation, 7.0.6000.381 (winmain(wmbla).070730-1740)]
[PID: 144 / SERVICE LOCAL][C:\WINDOWS\system32\svchost.exe] [Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)]
[C:\WINDOWS\system32\Normaliz.dll] [Microsoft Corporation, 6.0.5441.0 (winmain(wmbla).060628-1735)]
[C:\WINDOWS\system32\iertutil.dll] [Microsoft Corporation, 7.00.6000.16674 (vista_gdr.080415-1732)]
[PID: 548 / MARCEL][C:\WINDOWS\Explorer.EXE] [Microsoft Corporation, 6.00.2900.3156 (xpsp_sp2_gdr.070613-1234)]
[C:\WINDOWS\system32\Normaliz.dll] [Microsoft Corporation, 6.0.5441.0 (winmain(wmbla).060628-1735)]
[C:\WINDOWS\system32\iertutil.dll] [Microsoft Corporation, 7.00.6000.16674 (vista_gdr.080415-1732)]
[C:\Program Files\Tall Emu\Online Armor\OAWatch.dll] [Tall Emu, 2.1.0.131]
[C:\WINDOWS\system32\ieframe.dll] [Microsoft Corporation, 7.00.6000.16674 (vista_gdr.080415-1732)]
[C:\WINDOWS\system32\WPDShServiceObj.dll] [Microsoft Corporation, 5.2.5721.5145 (WMP_11.061018-2006)]
[C:\WINDOWS\system32\PortableDeviceTypes.dll] [Microsoft Corporation, 5.2.5721.5145 (WMP_11.061018-2006)]
[C:\WINDOWS\system32\PortableDeviceApi.dll] [Microsoft Corporation, 5.2.5721.5145 (WMP_11.061018-2006)]
[C:\WINDOWS\system32\msacm32.drv] [Microsoft Corporation, 5.1.2600.0 (xpclient.010817-1148)]
[C:\Program Files\Malwarebytes' Anti-Malware\mbamext.dll] [Malwarebytes Corporation, 1, 1, 0, 0]
[C:\Program Files\WinRAR\rarext.dll] [N/A, ]
[C:\Program Files\Morpheus\MorphShellExt.dll] [N/A, ]
[C:\WINDOWS\system32\MSVCP71.dll] [Microsoft Corporation, 7.10.3077.0]
[C:\WINDOWS\system32\MSVCR71.dll] [Microsoft Corporation, 7.10.3052.4]
[C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2009\ShellEx.dll] [Kaspersky Lab, 8.0.0.357]
[C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\context.dll] [GRISOFT s.r.o., 7, 5, 1, 36]
[C:\WINDOWS\system32\SynTPFcs.dll] [Synaptics, Inc., 7.12.7 04Nov04]
[C:\Program Files\ScanSoft\OmniPageSE\ophook32.dll] [ScanSoft, Inc, 11.0]
[C:\Program Files\SPAMfighter\Clients\Outlook Express\SFOE0001.dll] [SPAMfighter ApS, 4, 0, 0, 87]
[C:\Program Files\OpenOffice.org 2.4\program\shlxthdl.dll] [Sun Microsystems, Inc., 2.03]
[C:\Program Files\OpenOffice.org 2.4\program\stlport_vc7145.dll] [STLport Consulting, Inc., 4.5.2003.0120]
[C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\shellexecutehook.dll] [GRISOFT s.r.o., 7, 5, 1, 36]
[C:\PROGRA~1\TALLEM~1\ONLINE~1\oaevent.dll] [Tall Emu, 2.1.0.131]
[PID: 1688 / SYSTEM][C:\WINDOWS\system32\spoolsv.exe] [Microsoft Corporation, 5.1.2600.2696 (xpsp_sp2_gdr.050610-1519)]
[C:\WINDOWS\system32\hpzlnt09.dll] [HP, 2.236.2.0]
[C:\WINDOWS\System32\spool\PRTPROCS\W32X86\filterpipelineprintproc.dll] [Microsoft Corporation, 6.0.5824.16384 (winmain(wmbla).060911-0725)]
[C:\WINDOWS\System32\spool\PRTPROCS\W32X86\WfxPrint2000.dll] [BVRP Software, 5.03]
[PID: 1532 / SYSTEM][C:\WINDOWS\system32\HPConfig.exe] [Hewlett-Packard, 3, 0, 1, 8]
[PID: 1784 / SYSTEM][C:\Program Files\HPQ\Notebook Utilities\HPWirelessMgr.exe] [Hewlett-Packard Co., 1, 0, 0, 6]
[PID: 2000 / SYSTEM][C:\WINDOWS\System32\svchost.exe] [Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)]
[PID: 1404 / SYSTEM][C:\Program Files\SPAMfighter\sfus.exe] [SPAMfighter ApS, 1, 0, 0, 7]
[C:\WINDOWS\system32\Normaliz.dll] [Microsoft Corporation, 6.0.5441.0 (winmain(wmbla).060628-1735)]
[C:\WINDOWS\system32\iertutil.dll] [Microsoft Corporation, 7.00.6000.16674 (vista_gdr.080415-1732)]
[C:\Program Files\SPAMfighter\sfsg.dll] [, 1.0.2.3]
[C:\Program Files\SPAMfighter\sfse.dll] [, 3.1.0.6]
[PID: 904 / SYSTEM][C:\WINDOWS\System32\svchost.exe] [Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)]
[PID: 1768 / SERVICE RÉSEAU][C:\Program Files\Windows Media Player\WMPNetwk.exe] [Microsoft Corporation, 11.0.5721.5145 (WMP_11.061018-2006)]
[C:\WINDOWS\system32\wmpmde.dll] [Microsoft Corporation, 11.0.5721.5145 (WMP_11.061018-2006)]
[C:\WINDOWS\system32\MFPlat.DLL] [Microsoft Corporation, 11.0.5721.5145 (WMP_11.061018-2006)]
[C:\WINDOWS\system32\wmpps.dll] [Microsoft Corporation, 11.0.5721.5145 (WMP_11.061018-2006)]
[PID: 832 / SYSTEM][C:\Program Files\Canon\CAL\CALMAIN.exe] [Canon Inc., 8, 0, 0, 21]
[PID: 2744 / SERVICE LOCAL][C:\WINDOWS\System32\alg.exe] [Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)]
[PID: 3316 / MARCEL][C:\WINDOWS\system32\carpserv.exe] [Conexant Systems, Inc., 6.02.05]
[C:\Program Files\Tall Emu\Online Armor\OAWatch.dll] [Tall Emu, 2.1.0.131]
[PID: 4012 / MARCEL][C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe] [ATI Technologies, Inc., 6.13.10.3022]
[C:\Program Files\Tall Emu\Online Armor\OAWatch.dll] [Tall Emu, 2.1.0.131]
[C:\PROGRAM FILES\ATI TECHNOLOGIES\ATI CONTROL PANEL\ATRPUIXX.FRA] [ATI Technologies, Inc., 6.13.10.3022]
[C:\Program Files\ATI Technologies\ATI Control Panel\atipdsxx.dll] [ATI Technologies, Inc., 6.13.10.3022]
[C:\Program Files\ScanSoft\OmniPageSE\ophook32.dll] [ScanSoft, Inc, 11.0]
[PID: 3436 / MARCEL][C:\PROGRA~1\HPQ\ONE-TO~1\OneTouch.EXE] [Dritek System Inc., 1.6.3.0]
[C:\PROGRA~1\HPQ\ONE-TO~1\SzUPFUtl.dll] [Dritek System Inc., 1.00]
[C:\PROGRA~1\HPQ\ONE-TO~1\OSDUtl.dll] [Dritek System Inc., 1.00]
[C:\PROGRA~1\HPQ\ONE-TO~1\RgnMaker.dll] [Dritek System Inc., 12.07.1999 ( VC60 )]
[C:\PROGRA~1\HPQ\ONE-TO~1\CDRomUtl.dll] [Dritek System Inc., 1.00]
[C:\PROGRA~1\HPQ\ONE-TO~1\MixerUtl.dll] [Dritek System Inc., 1.00]
[C:\PROGRA~1\HPQ\ONE-TO~1\LgKCUtl.dll] [Dritek System Inc., 2, 0, 1, 1]
[C:\PROGRA~1\HPQ\ONE-TO~1\ComFnUtl.dll] [Dritek System Inc., 1.00]
[C:\PROGRA~1\HPQ\ONE-TO~1\Wnd2File.dll] [Dritek System Inc., 3.00]
[C:\Program Files\Tall Emu\Online Armor\OAWatch.dll] [Tall Emu, 2.1.0.131]
[C:\WINDOWS\system32\msacm32.drv] [Microsoft Corporation, 5.1.2600.0 (xpclient.010817-1148)]
[C:\Program Files\ScanSoft\OmniPageSE\ophook32.dll] [ScanSoft, Inc, 11.0]
[PID: 3644 / MARCEL][C:\Program Files\Synaptics\SynTP\SynTPLpr.exe] [Synaptics, Inc., 7.12.7 04Nov04]
[C:\Program Files\Tall Emu\Online Armor\OAWatch.dll] [Tall Emu, 2.1.0.131]
[C:\WINDOWS\system32\SynCOM.dll] [Synaptics, Inc., 7.12.7 04Nov04]
[C:\WINDOWS\system32\SynTPFcs.dll] [Synaptics, Inc., 7.12.7 04Nov04]
[C:\Program Files\ScanSoft\OmniPageSE\ophook32.dll] [ScanSoft, Inc, 11.0]
[PID: 3960 / MARCEL][C:\Program Files\Synaptics\SynTP\SynTPEnh.exe] [Synaptics, Inc., 7.12.7 04Nov04]
[C:\Program Files\Tall Emu\Online Armor\OAWatch.dll] [Tall Emu, 2.1.0.131]
[C:\WINDOWS\system32\SynCOM.dll] [Synaptics, Inc., 7.12.7 04Nov04]
[C:\WINDOWS\system32\SynTPAPI.dll] [Synaptics, Inc., 7.12.7 04Nov04]
[C:\WINDOWS\system32\SynTPFcs.dll] [Synaptics, Inc., 7.12.7 04Nov04]
[C:\Program Files\ScanSoft\OmniPageSE\ophook32.dll] [ScanSoft, Inc, 11.0]
[PID: 508 / MARCEL][C:\Program Files\WinFax Plus\CapFax.EXE] [BVRP Software, 1.01]
[C:\Program Files\Tall Emu\Online Armor\OAWatch.dll] [Tall Emu, 2.1.0.131]
[C:\WINDOWS\system32\SynTPFcs.dll] [Synaptics, Inc., 7.12.7 04Nov04]
[C:\Program Files\ScanSoft\OmniPageSE\ophook32.dll] [ScanSoft, Inc, 11.0]
[PID: 3784 / MARCEL][C:\Program Files\HP\hpcoretech\hpcmpmgr.exe] [Hewlett-Packard Company, 2.1.1]
[C:\Program Files\HP\hpcoretech\HPVCR70.dll] [Microsoft Corporation, 7.00.9466.0]
[C:\Program Files\Tall Emu\Online Armor\OAWatch.dll] [Tall Emu, 2.1.0.131]
[C:\WINDOWS\system32\SynTPFcs.dll] [Synaptics, Inc., 7.12.7 04Nov04]
[C:\Program Files\ScanSoft\OmniPageSE\ophook32.dll] [ScanSoft, Inc, 11.0]
[C:\WINDOWS\system32\MSXML4.dll] [Microsoft Corporation, 4.20.9848.0]
[C:\WINDOWS\system32\Normaliz.dll] [Microsoft Corporation, 6.0.5441.0 (winmain(wmbla).060628-1735)]
[C:\WINDOWS\system32\iertutil.dll] [Microsoft Corporation, 7.00.6000.16674 (vista_gdr.080415-1732)]
[PID: 3872 / MARCEL][C:\Program Files\Hewlett-Packard\HP Software Update\HPWuSchd.exe] [Hewlett-Packard, 1, 0, 0, 2]
[C:\Program Files\Tall Emu\Online Armor\OAWatch.dll] [Tall Emu, 2.1.0.131]
[C:\WINDOWS\system32\SynTPFcs.dll] [Synaptics, Inc., 7.12.7 04Nov04]
[C:\Program Files\ScanSoft\OmniPageSE\ophook32.dll] [ScanSoft, Inc, 11.0]
[PID: 648 / MARCEL][C:\WINDOWS\system32\spool\drivers\w32x86\3\hpztsb09.exe] [HP, 2.236.2.0]
[C:\Program Files\Tall Emu\Online Armor\OAWatch.dll] [Tall Emu, 2.1.0.131]
[C:\WINDOWS\system32\spool\drivers\w32x86\3\HPZR3209.dll] [HP, 2.236.2.0]
[C:\WINDOWS\system32\SynTPFcs.dll] [Synaptics, Inc., 7.12.7 04Nov04]
[C:\Program Files\ScanSoft\OmniPageSE\ophook32.dll] [ScanSoft, Inc, 11.0]
[PID: 888 / MARCEL][C:\Program Files\ScanSoft\OmniPageSE\opware32.exe] [ScanSoft, Inc, 11.0]
[C:\Program Files\Tall Emu\Online Armor\OAWatch.dll] [Tall Emu, 2.1.0.131]
[C:\WINDOWS\system32\SynTPFcs.dll] [Synaptics, Inc., 7.12.7 04Nov04]
[C:\Program Files\ScanSoft\OmniPageSE\ophook32.dll] [ScanSoft, Inc, 11.0]
[PID: 1828 / MARCEL][C:\Program Files\Logitech\ImageStudio\LogiTray.exe] [Logitech Inc., 7.3.0.1113]
[C:\Program Files\Logitech\ImageStudio\QCUI.dll] [Logitech Inc., 7.3.0.1113]
[C:\Program Files\Logitech\ImageStudio\LTWVC12n.dll] [LEAD Technologies, Inc., 12.1.0.011]
[C:\Program Files\Logitech\ImageStudio\LQCUI.dll] [Logitech Inc., 7.3.0.1113]
[C:\WINDOWS\system32\SynTPFcs.dll] [Synaptics, Inc., 7.12.7 04Nov04]
[C:\Program Files\ScanSoft\OmniPageSE\ophook32.dll] [ScanSoft, Inc, 11.0]
[C:\Program Files\Tall Emu\Online Armor\OAWatch.dll] [Tall Emu, 2.1.0.131]
[C:\Program Files\Logitech\ImageStudio\LLogTray.dll] [Logitech Inc., 7.3.0.1113]
[C:\Program Files\Fichiers communs\Logitech\QCDriver\HPortal.dll] [Logitech Inc., 7.0.0.1221]
[C:\Program Files\Fichiers communs\Logitech\QCDriver\LHPortal.dll] [Logitech Inc., 7.0.0.1221]
[C:\Program Files\Fichiers communs\Logitech\QCDriver\LVComC.dll] [Logitech Inc., 7.0.0.1221]
[C:\WINDOWS\system32\iertutil.dll] [Microsoft Corporation, 7.00.6000.16674 (vista_gdr.080415-1732)]
[PID: 2996 / MARCEL][C:\Program Files\HP\hpcoretech\comp\hptskmgr.exe] [Hewlett-Packard Company, 2.1.1]
[C:\WINDOWS\system32\HPVAUT32.dll] [Microsoft Corporation, 2.40.4517]
[C:\WINDOWS\system32\HPVCP70.dll] [Microsoft Corporation, 7.00.9466.0]
[C:\WINDOWS\system32\HPVCR70.dll] [Microsoft Corporation, 7.00.9466.0]
[C:\Program Files\Tall Emu\Online Armor\OAWatch.dll] [Tall Emu, 2.1.0.131]
[C:\WINDOWS\system32\SynTPFcs.dll] [Synaptics, Inc., 7.12.7 04Nov04]
[C:\Program Files\ScanSoft\OmniPageSE\ophook32.dll] [ScanSoft, Inc, 11.0]
[C:\Program Files\HP\hpcoretech\HPCmpMgr.dll] [Hewlett-Packard Company, 2.1.1]
[C:\WINDOWS\system32\MSXML4.dll] [Microsoft Corporation, 4.20.9848.0]
[C:\WINDOWS\system32\Normaliz.dll] [Microsoft Corporation, 6.0.5441.0 (winmain(wmbla).060628-1735)]
[C:\WINDOWS\system32\iertutil.dll] [Microsoft Corporation, 7.00.6000.16674 (vista_gdr.080415-1732)]
[C:\Program Files\HP\hpcoretech\comp\hpschedr.dll] [Hewlett-Packard Company, 2.1.1]
[C:\Program Files\SPAMfighter\Clients\Outlook Express\SFOE0001.dll] [SPAMfighter ApS, 4, 0, 0, 87]
[PID: 3820 / MARCEL][C:\Program Files\Fichiers communs\Logitech\QCDriver\LVCOMS.EXE] [Logitech Inc., 7.0.0.1221]
[C:\Program Files\Tall Emu\Online Armor\OAWatch.dll] [Tall Emu, 2.1.0.131]
[C:\WINDOWS\system32\SynTPFcs.dll] [Synaptics, Inc., 7.12.7 04Nov04]
[C:\Program Files\ScanSoft\OmniPageSE\ophook32.dll] [ScanSoft, Inc, 11.0]
[C:\Program Files\Fichiers communs\Logitech\QCDriver\LVComC.dll] [Logitech Inc., 7.0.0.1221]
[PID: 3920 / MARCEL][C:\Program Files\QuickTime\qttask.exe] [Apple Computer, Inc., 6.5]
[C:\Program Files\Tall Emu\Online Armor\OAWatch.dll] [Tall Emu, 2.1.0.131]
[C:\WINDOWS\system32\SynTPFcs.dll] [Synaptics, Inc., 7.12.7 04Nov04]
[C:\Program Files\ScanSoft\OmniPageSE\ophook32.dll] [ScanSoft, Inc, 11.0]
[PID: 664 / MARCEL][C:\Program Files\SPAMfighter\SFAgent.exe] [SPAMfighter ApS, 1, 2, 1, 9]
[C:\WINDOWS\system32\Normaliz.dll] [Microsoft Corporation, 6.0.5441.0 (winmain(wmbla).060628-1735)]
[C:\WINDOWS\system32\iertutil.dll] [Microsoft Corporation, 7.00.6000.16674 (vista_gdr.080415-1732)]
[C:\Program Files\Tall Emu\Online Armor\OAWatch.dll] [Tall Emu, 2.1.0.131]
[C:\Program Files\SPAMfighter\sfsg.dll] [, 1.0.2.3]
[C:\Program Files\SPAMfighter\sfse.dll] [, 3.1.0.6]
[C:\WINDOWS\system32\SynTPFcs.dll] [Synaptics, Inc., 7.12.7 04Nov04]
[C:\Program Files\ScanSoft\OmniPageSE\ophook32.dll] [ScanSoft, Inc, 11.0]
[C:\Program Files\SPAMfighter\LazyMail.dll] [SPAMfighter ApS, 1, 1, 4, 3]
[C:\Program Files\SPAMfighter\Core.dll] [SPAMfighter ApS, 3, 1, 2, 6]
[C:\Program Files\SPAMfighter\Clients\Outlook Express\SFOE0001.dll] [SPAMfighter ApS, 4, 0, 0, 87]
[PID: 1892 / MARCEL][C:\WINDOWS\system32\ctfmon.exe] [Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)]
[C:\Program Files\Tall Emu\Online Armor\OAWatch.dll] [Tall Emu, 2.1.0.131]
[C:\WINDOWS\system32\SynTPFcs.dll] [Synaptics, Inc., 7.12.7 04Nov04]
[C:\Program Files\ScanSoft\OmniPageSE\ophook32.dll] [ScanSoft, Inc, 11.0]
[PID: 2200 / MARCEL][C:\Program Files\Sony Ericsson\Mobile2\Application Launcher\Application Launcher.exe] [, 2.0.10.129]
[C:\WINDOWS\system32\Normaliz.dll] [Microsoft Corporation, 6.0.5441.0 (winmain(wmbla).060628-1735)]
[C:\WINDOWS\system32\iertutil.dll] [Microsoft Corporation, 7.00.6000.16674 (vista_gdr.080415-1732)]
[C:\WINDOWS\system32\MFC71U.DLL] [Microsoft Corporation, 7.10.3077.0]
[C:\WINDOWS\system32\MSVCR71.dll] [Microsoft Corporation, 7.10.3052.4]
[C:\WINDOWS\system32\MSVCP71.dll] [Microsoft Corporation, 7.10.3077.0]
[C:\Program Files\Fichiers communs\Teleca Shared\tlib_log.dll] [Popwire AB, 1.1.0.67]
[C:\Program Files\Fichiers communs\Teleca Shared\boost_log-vc71-mt-1_33.dll] [N/A, ]
[C:\Program Files\Fichiers communs\Teleca Shared\tlib_cmndlgs.dll] [Popwire AB, 1.1.0.19]
[C:\Program Files\Tall Emu\Online Armor\OAWatch.dll] [Tall Emu, 2.1.0.131]
[C:\Program Files\Sony Ericsson\Mobile2\Application Launcher\Application LauncherLg.dll] [, 2.0.4.47]
[C:\Program Files\Sony Ericsson\Mobile2\Application Launcher\Application LauncherBmp.dll] [, 2.0.4.31]
[C:\WINDOWS\system32\MFC71.DLL] [Microsoft Corporation, 7.10.3077.0]
[C:\Program Files\Sony Ericsson\Mobile2\Application Launcher\Application LauncherMainDlg.dll] [Sony Ericsson Mobile Communications AB, 2.0.4.33]
[C:\WINDOWS\system32\SynTPFcs.dll] [Synaptics, Inc., 7.12.7 04Nov04]
[C:\Program Files\ScanSoft\OmniPageSE\ophook32.dll] [ScanSoft, Inc, 11.0]
[C:\Program Files\SPAMfighter\Clients\Outlook Express\SFOE0001.dll] [SPAMfighter ApS, 4, 0, 0, 87]
[C:\WINDOWS\system32\icm32.dll] [Microsoft Corporation, 5.1.2600.2709 (xpsp_sp2_gdr.050628-1518)]
[C:\Program Files\Fichiers communs\Teleca Shared\TC Device Mgmt.dll] [Popwire AB, 1.4.7.14]
[PID: 1824 / MARCEL][C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WLLoginProxy.exe] [Microsoft Corporation, 4.100.313.1]
[C:\Program Files\Tall Emu\Online Armor\OAWatch.dll] [Tall Emu, 2.1.0.131]
[C:\WINDOWS\system32\SynTPFcs.dll] [Synaptics, Inc., 7.12.7 04Nov04]
[C:\Program Files\ScanSoft\OmniPageSE\ophook32.dll] [ScanSoft, Inc, 11.0]
[C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\msidcrl40.dll] [Microsoft Corporation, 4.100.313.1]
[C:\WINDOWS\system32\Normaliz.dll] [Microsoft Corporation, 6.0.5441.0 (winmain(wmbla).060628-1735)]
[C:\WINDOWS\system32\iertutil.dll] [Microsoft Corporation, 7.00.6000.16674 (vista_gdr.080415-1732)]
[PID: 4036 / MARCEL][C:\Program Files\Java\jre1.6.0_07\bin\jusched.exe] [Sun Microsystems, Inc., 6.0.70.6]
[C:\WINDOWS\system32\Normaliz.dll] [Microsoft Corporation, 6.0.5441.0 (winmain(wmbla).060628-1735)]
[C:\WINDOWS\system32\iertutil.dll] [Microsoft Corporation, 7.00.6000.16674 (vista_gdr.080415-1732)]
[C:\Program Files\Tall Emu\Online Armor\OAWatch.dll] [Tall Emu, 2.1.0.131]
[C:\Program Files\SPAMfighter\Clients\Outlook Express\SFOE0001.dll] [SPAMfighter ApS, 4, 0, 0, 87]
[C:\Program Files\ScanSoft\OmniPageSE\ophook32.dll] [ScanSoft, Inc, 11.0]
[PID: 1772 / MARCEL][C:\PROGRA~1\MI3AA1~1\wcescomm.exe] [Microsoft Corporation, 4.2.4876.0]
[C:\WINDOWS\system32\CEUTIL.dll] [Microsoft Corporation, 4.2.4876.0]
[C:\WINDOWS\system32\MSVCR71.dll] [Microsoft Corporation, 7.10.3052.4]
[C:\WINDOWS\system32\RAPI.dll] [Microsoft Corporation, 4.2.4876.0]
[C:\PROGRA~1\MI3AA1~1\TCP2UDP.dll] [Microsoft Corporation, 4.2.4876.0]
[C:\Program Files\Tall Emu\Online Armor\OAWatch.dll] [Tall Emu, 2.1.0.131]
[C:\Program Files\SPAMfighter\Clients\Outlook Express\SFOE0001.dll] [SPAMfighter ApS, 4, 0, 0, 87]
[C:\Program Files\ScanSoft\OmniPageSE\ophook32.dll] [ScanSoft, Inc, 11.0]
[C:\Program Files\Microsoft ActiveSync\rapiproxystub.dll] [N/A, ]
[C:\PROGRA~1\MI3AA1~1\dtptdns.dll] [Microsoft Corporation, 4.2.4876.0]
[PID: 3848 / MARCEL][C:\PROGRA~1\MI3AA1~1\rapimgr.exe] [Microsoft Corporation, 4.2.4876.0]
[C:\WINDOWS\system32\CEUTIL.dll] [Microsoft Corporation, 4.2.4876.0]
[C:\WINDOWS\system32\MSVCR71.dll] [Microsoft Corporation, 7.10.3052.4]
[C:\PROGRA~1\MI3AA1~1\MSVCP71.dll] [Microsoft Corporation, 7.10.3077.0]
[C:\Program Files\Tall Emu\Online Armor\OAWatch.dll] [Tall Emu, 2.1.0.131]
[C:\Program Files\SPAMfighter\Clients\Outlook Express\SFOE0001.dll] [SPAMfighter ApS, 4, 0, 0, 87]
[C:\Program Files\ScanSoft\OmniPageSE\ophook32.dll] [ScanSoft, Inc, 11.0]
[C:\Program Files\Microsoft ActiveSync\rapiproxystub.dll] [N/A, ]
[PID: 2156 / MARCEL][C:\Program Files\Windows Media Player\WMPNSCFG.exe] [Microsoft Corporation, 11.0.5721.5145 (WMP_11.061018-2006)]
[C:\Program Files\Tall Emu\Online Armor\OAWatch.dll] [Tall Emu, 2.1.0.131]
[C:\Program Files\SPAMfighter\Clients\Outlook Express\SFOE0001.dll] [SPAMfighter ApS, 4, 0, 0, 87]
[C:\Program Files\ScanSoft\OmniPageSE\ophook32.dll] [ScanSoft, Inc, 11.0]
[C:\Program Files\Windows Media Player\wmpnssci.dll] [Microsoft Corporation, 11.0.5721.5145 (WMP_11.061018-2006)]
[PID: 2872 / MARCEL][C:\Program Files\SAGEM Wi-Fi USB 802.11g\WLANUTL.exe] [ , 2, 0, 9, 12]
[C:\WINDOWS\system32\W32N50.dll] [Printing Communications Assoc., Inc. (PCAUSA), 5.00.13.50]
[C:\Program Files\Tall Emu\Online Armor\OAWatch.dll] [Tall Emu, 2.1.0.131]
[C:\Program Files\SPAMfighter\Clients\Outlook Express\SFOE0001.dll] [SPAMfighter ApS, 4, 0, 0, 87]
[C:\Program Files\ScanSoft\OmniPageSE\ophook32.dll] [ScanSoft, Inc, 11.0]
[PID: 1204 / MARCEL][C:\Program Files\OpenOffice.org 2.4\program\soffice.exe] [OpenOffice.org, 2.03.9307]
[C:\Program Files\OpenOffice.org 2.4\program\MSVCR71.dll] [Microsoft Corporation, 7.10.3052.4]
[C:\Program Files\Tall Emu\Online Armor\OAWatch.dll] [Tall Emu, 2.1.0.131]
[C:\Program Files\OpenOffice.org 2.4\program\uwinapi.dll] [Sun Microsystems, Inc., 2.03]
[PID: 2376 / MARCEL][C:\Program Files\OpenOffice.org 2.4\program\soffice.BIN] [OpenOffice.org, 2.03.9307]
[C:\Program Files\OpenOffice.org 2.4\program\vcl680mi.dll] [Sun Microsystems, Inc., 2.03]
[C:\Program Files\OpenOffice.org 2.4\program\sot680mi.dll] [Sun Microsystems, Inc., 2.03]
[C:\Program Files\OpenOffice.org 2.4\program\tl680mi.dll] [Sun Microsystems, Inc., 2.03]
[C:\Program Files\OpenOffice.org 2.4\program\cppu3.dll] [Sun Microsystems, Inc., 2.03]
[C:\Program Files\OpenOffice.org 2.4\program\MSVCR71.dll] [Microsoft Corporation, 7.10.3052.4]
[C:\Program Files\OpenOffice.org 2.4\program\sal3.dll] [Sun Microsystems, Inc., 2.03]
[C:\Program Files\OpenOffice.org 2.4\program\uwinapi.dll] [Sun Microsystems, Inc., 2.03]
[C:\Program Files\OpenOffice.org 2.4\program\stlport_vc7145.dll] [STLport Consulting, Inc., 4.5.2003.0120]
[C:\Program Files\OpenOffice.org 2.4\program\MSVCP71.dll] [Microsoft Corporation, 7.10.3077.0]
[C:\Program Files\OpenOffice.org 2.4\program\vos3MSC.dll] [Sun Microsystems, Inc., 2.03]
[C:\Program Files\OpenOffice.org 2.4\program\basegfx680mi.dll] [Sun Microsystems, Inc., 2.03]
[C:\Program Files\OpenOffice.org 2.4\program\i18nisolang1MSC.dll] [Sun Microsystems, Inc., 2.03]
[C:\Program Files\OpenOffice.org 2.4\program\utl680mi.dll] [Sun Microsystems, Inc., 2.03]
[C:\Program Files\OpenOffice.org 2.4\program\salhelper3MSC.dll] [Sun Microsystems, Inc., 2.03]
[C:\Program Files\OpenOffice.org 2.4\program\comphelp4MSC.dll] [Sun Microsystems, Inc., 2.03]
[C:\Program Files\OpenOffice.org 2.4\program\cppuhelper3MSC.dll] [Sun Microsystems, Inc., 2.03]
[C:\Program Files\OpenOffice.org 2.4\program\ucbhelper4MSC.dll] [Sun Microsystems, Inc., 2.03]
[C:\Program Files\OpenOffice.org 2.4\program\icuuc36.dll] [IBM Corporation and others, 3, 6, 0, 0]
[C:\Program Files\OpenOffice.org 2.4\program\icudt36l.dll] [IBM Corporation and others, 3, 6, 0, 0]
[C:\Program Files\OpenOffice.org 2.4\program\svl680mi.dll] [Sun Microsystems, Inc., 2.03]
[C:\Program Files\OpenOffice.org 2.4\program\svt680mi.dll] [Sun Microsystems, Inc., 2.03]
[C:\Program Files\OpenOffice.org 2.4\program\tk680mi.dll] [Sun Microsystems, Inc., 2.03]
[C:\Program Files\OpenOffice.org 2.4\program\jvmfwk3.dll] [Sun Microsystems, Inc., 2.03]
[C:\Program Files\OpenOffice.org 2.4\program\libxml2.dll] [N/A, ]
[C:\Program Files\OpenOffice.org 2.4\program\sfx680mi.dll] [Sun Microsystems, Inc., 2.03]
[C:\Program Files\OpenOffice.org 2.4\program\fwe680mi.dll] [Sun Microsystems, Inc., 2.03]
[C:\Program Files\OpenOffice.org 2.4\program\fwi680mi.dll] [Sun Microsystems, Inc., 2.03]
[C:\Program Files\OpenOffice.org 2.4\program\sb680mi.dll] [Sun Microsystems, Inc., 2.03]
[C:\Program Files\OpenOffice.org 2.4\program\xcr680mi.dll] [Sun Microsystems, Inc., 2.03]
[C:\Program Files\OpenOffice.org 2.4\program\j680mi_g.dll] [Sun Microsystems, Inc., 2.03]
[C:\Program Files\OpenOffice.org 2.4\program\jvmaccess3MSC.dll] [Sun Microsystems, Inc., 2.03]
[C:\Program Files\Tall Emu\Online Armor\OAWatch.dll] [Tall Emu, 2.1.0.131]
[C:\Program Files\SPAMfighter\Clients\Outlook Express\SFOE0001.dll] [SPAMfighter ApS, 4, 0, 0, 87]
[C:\Program Files\ScanSoft\OmniPageSE\ophook32.dll] [ScanSoft, Inc, 11.0]
[C:\Program Files\OpenOffice.org 2.4\program\msci_uno.dll] [Sun Microsystems, Inc., 2.03]
[C:\Program Files\OpenOffice.org 2.4\program\bootstrap.uno.dll] [Sun Microsystems, Inc., 2.03]
[C:\Program Files\OpenOffice.org 2.4\program\reg3.dll] [Sun Microsystems, Inc., 2.03]
[C:\Program Files\OpenOffice.org 2.4\program\store3.dll] [Sun Microsystems, Inc., 2.03]
[C:\Program Files\OpenOffice.org 2.4\program\unsafe_uno_uno.dll] [Sun Microsystems, Inc., 2.03]
[C:\Program Files\OpenOffice.org 2.4\program\purpenvhelper3MSC.dll] [Sun Microsystems, Inc., 2.03]
[C:\Program Files\OpenOffice.org 2.4\program\configmgr2.uno.dll] [Sun Microsystems, Inc., 2.03]
[C:\Program Files\OpenOffice.org 2.4\program\stocservices.uno.dll] [Sun Microsystems, Inc., 2.03]
[C:\Program Files\OpenOffice.org 2.4\program\sysmgr1.uno.dll] [Sun Microsystems, Inc., 2.03]
[C:\Program Files\OpenOffice.org 2.4\program\sax.uno.dll] [Sun Microsystems, Inc., 2.03]
[C:\Program Files\OpenOffice.org 2.4\program\localebe1.uno.dll] [Sun Microsystems, Inc., 2.03]
[C:\Program Files\OpenOffice.org 2.4\program\behelper.uno.dll] [Sun Microsystems, Inc., 2.03]
[C:\Program Files\OpenOffice.org 2.4\program\ucb1.dll] [Sun Microsystems, Inc., 2.03]
[C:\Program Files\OpenOffice.org 2.4\program\fwl680mi.dll] [Sun Microsystems, Inc., 2.03]
[C:\Program Files\OpenOffice.org 2.4\program\ucpfile1.dll] [Sun Microsystems, Inc., 2.03]
[C:\Program Files\OpenOffice.org 2.4\program\fwk680mi.dll] [Sun Microsystems, Inc., 2.03]
[C:\Program Files\OpenOffice.org 2.4\program\fwm680mi.dll] [Sun Microsystems, Inc., 2.03]
[C:\Program Files\OpenOffice.org 2.4\program\oleautobridge.uno.dll] [Sun Microsystems, Inc., 2.03]
[C:\Program Files\OpenOffice.org 2.4\program\emser680mi.dll] [Sun Microsystems, Inc., 2.03]
[PID: 2292 / MARCEL][C:\Program Files\Fichiers communs\Teleca Shared\Generic.exe] [Teleca AB, 1, 4, 14, 0]
[C:\WINDOWS\system32\MSVCP71.dll] [Microsoft Corporation, 7.10.3077.0]
[C:\WINDOWS\system32\MSVCR71.dll] [Microsoft Corporation, 7.10.3052.4]
[C:\Program Files\Fichiers communs\Teleca Shared\tlib_log.dll] [Popwire AB, 1.1.0.67]
[C:\Program Files\Fichiers communs\Teleca Shared\boost_log-vc71-mt-1_33.dll] [N/A, ]
[C:\Program Files\Tall Emu\Online Armor\OAWatch.dll] [Tall Emu, 2.1.0.131]
[C:\WINDOWS\system32\MSXML4.dll] [Microsoft Corporation, 4.20.9848.0]
[C:\Program Files\Fichiers communs\Teleca Shared\TC Device Mgmt.dll] [Popwire AB, 1.4.7.14]
[C:\Program Files\Fichiers communs\Teleca Shared\HookStarter.dll] [Popwire AB, 1.0.3.11]
[C:\WINDOWS\system32\Normaliz.dll] [Microsoft Corporation, 6.0.5441.0 (winmain(wmbla).060628-1735)]
[C:\WINDOWS\system32\iertutil.dll] [Microsoft Corporation, 7.00.6000.16674 (vista_gdr.080415-1732)]
[C:\Program Files\SPAMfighter\Clients\Outlook Express\SFOE0001.dll] [SPAMfighter ApS, 4, 0, 0, 87]
[C:\Program Files\ScanSoft\OmniPageSE\ophook32.dll] [ScanSoft, Inc, 11.0]
[C:\Program Files\Fichiers communs\Sony Ericsson Shared\SpecificMPM.dll] [Sony Ericsson Mobile Communications AB, 1, 3, 0, 0]
[C:\Program Files\Fichiers communs\Teleca Shared\SpecificUSB.dll] [Popwire AB, 1, 2, 1, 1]
[PID: 2336 / MARCEL][C:\Program Files\Sony Ericsson\Mobile2\Mobile Phone Monitor\epmworker.exe] [Sony Ericsson Mobile Communications AB, 1, 2, 0,1229]
[C:\Program Files\Sony Ericsson\Mobile2\Mobile Phone Monitor\ShowMfcDialog.dll] [Sony Ericsson Mobile Communications AB, 1, 0, 0,161]
[C:\Program Files\Tall Emu\Online Armor\OAWatch.dll] [Tall Emu, 2.1.0.131]
[C:\Program Files\SPAMfighter\Clients\Outlook Express\SFOE0001.dll] [SPAMfighter ApS, 4, 0, 0, 87]
[C:\Program Files\ScanSoft\OmniPageSE\ophook32.dll] [ScanSoft, Inc, 11.0]
[C:\Program Files\Sony Ericsson\Mobile2\Mobile Phone Monitor\Capires040c.DLL] [Popwire AB, 1, 0, 0,2018]
[C:\Program Files\Sony Ericsson\Mobile2\Mobile Phone Monitor\msirsock_object.dll] [Sony Ericsson Mobile Communications AB, 1, 0, 0,1050]
[C:\Program Files\Sony Ericsson\Mobile2\Mobile Phone Monitor\cellphone_object.dll] [Sony Ericsson Mobile Communications AB, 1, 0, 0,1233]
[C:\Program Files\Sony Ericsson\Mobile2\Mobile Phone Monitor\ecsmoddata.dll] [Sony Ericsson Mobile Communications AB, 1, 2, 0,349]
[C:\WINDOWS\system32\MSXML4.dll] [Microsoft Corporation, 4.20.9848.0]
[C:\Program Files\Sony Ericsson\Mobile2\Mobile Phone Monitor\cabmain.dll] [Sony Ericsson Mobile Communications AB, 1, 0, 0,1267]
[PID: 2056 / MARCEL][C:\Program Files\Internet Explorer\iexplore.exe] [Microsoft Corporation, 7.00.6000.16674 (vista_gdr.080415-1732)]
[C:\WINDOWS\system32\iertutil.dll] [Microsoft Corporation, 7.00.6000.16674 (vista_gdr.080415-1732)]
[C:\Program Files\Tall Emu\Online Armor\OAWatch.dll] [Tall Emu, 2.1.0.131]
[C:\WINDOWS\system32\IEFRAME.dll] [Microsoft Corporation, 7.00.6000.16674 (vista_gdr.080415-1732)]
[C:\Program Files\SPAMfighter\Clients\Outlook Express\SFOE0001.dll] [SPAMfighter ApS, 4, 0, 0, 87]
[C:\Program Files\ScanSoft\OmniPageSE\ophook32.dll] [ScanSoft, Inc, 11.0]
[C:\WINDOWS\system32\IEUI.dll] [Microsoft Corporation, 7.00.5730.11 (winmain(wmbla).061017-1135)]
[C:\WINDOWS\system32\xmllite.dll] [Microsoft Corporation, 1.00.1018.0]
[C:\Program Files\Microsoft Office\Office10\msohev.dll] [Microsoft Corporation, 10.0.2609]
[C:\Program Files\Internet Explorer\ieproxy.dll] [Microsoft Corporation, 7.00.5730.11 (winmain(wmbla).061017-1135)]
[C:\WINDOWS\system32\Normaliz.dll] [Microsoft Corporation, 6.0.5441.0 (winmain(wmbla).060628-1735)]
[C:\Program Files\Spybot - Search & Destroy\SDHelper.dll] [Safer Networking Limited, 1, 3, 0, 12]
[C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2009\ievkbd.dll] [Kaspersky Lab, 8.0.0.369]
[C:\Program Files\Java\jre1.6.0_07\bin\ssv.dll] [Sun Microsystems, Inc., 6.0.70.6]
[C:\Program Files\Java\jre1.6.0_07\bin\MSVCR71.dll] [Microsoft Corporation, 7.10.3052.4]
[C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll] [Microsoft Corporation, 4.100.313.1]
[c:\program files\google\googletoolbar2.dll] [Google Inc., 4, 0, 1601, 4978]
[C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\msidcrl40.dll] [Microsoft Corporation, 4.100.313.1]
[C:\WINDOWS\system32\ieapfltr.dll] [Microsoft Corporation, 7.0.6000.16461]
[C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2009\scrchpg.dll] [Kaspersky Lab, 8.0.0.357]
[C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2009\prloader.dll] [Kaspersky Lab, 8.0.0.357]
[C:\WINDOWS\system32\msacm32.drv] [Microsoft Corporation, 5.1.2600.0 (xpclient.010817-1148)]
[C:\Program Files\OpenOffice.org 2.4\program\shlxthdl.dll] [Sun Microsystems, Inc., 2.03]
[C:\Program Files\OpenOffice.org 2.4\program\stlport_vc7145.dll] [STLport Consulting, Inc., 4.5.2003.0120]
[C:\Program Files\OpenOffice.org 2.4\program\MSVCP71.dll] [Microsoft Corporation, 7.10.3077.0]
[PID: 1120 / MARCEL][C:\WINDOWS\system32\taskmgr.exe] [Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)]
[C:\Program Files\Tall Emu\Online Armor\OAWatch.dll] [Tall Emu, 2.1.0.131]
[C:\Program Files\SPAMfighter\Clients\Outlook Express\SFOE0001.dll] [SPAMfighter ApS, 4, 0, 0, 87]
[C:\Program Files\ScanSoft\OmniPageSE\ophook32.dll] [ScanSoft, Inc, 11.0]
[PID: 2660 / MARCEL][C:\Documents and Settings\MARCEL\Bureau\SREngLdr.EXE] [N/A, ]
[C:\Program Files\Tall Emu\Online Armor\OAWatch.dll] [Tall Emu, 2.1.0.131]
[PID: 3096 / MARCEL][C:\Documents and Settings\MARCEL\Bureau\SREb2086498.EXE] [Smallfrogs Studio, 2.6.12.1018]
[C:\WINDOWS\system32\Normaliz.dll] [Microsoft Corporation, 6.0.5441.0 (winmain(wmbla).060628-1735)]
[C:\WINDOWS\system32\iertutil.dll] [Microsoft Corporation, 7.00.6000.16674 (vista_gdr.080415-1732)]
[C:\Program Files\Tall Emu\Online Armor\OAWatch.dll] [Tall Emu, 2.1.0.131]
[C:\Program Files\SPAMfighter\Clients\Outlook Express\SFOE0001.dll] [SPAMfighter ApS, 4, 0, 0, 87]
[C:\Program Files\ScanSoft\OmniPageSE\ophook32.dll] [ScanSoft, Inc, 11.0]

==================================
File Associations
.TXT OK. [%SystemRoot%\system32\NOTEPAD.EXE %1]
.EXE OK. ["%1" %*]
.COM OK. ["%1" %*]
.PIF OK. ["%1" %*]
.REG Error. [regedit.exe "%1" %*]
.BAT OK. ["%1" %*]
.SCR Error. ["%1" %*]
.C

La suite...le point 3 :

Mobile Intel(R) Pentium(R)
4-MCPU 2.20 GHz
2.19 GHz - Ram : 448 Mo

et le point 4 :

Mémoire virtuelle : 1024 Mo avec l'inscription "taille totale du fichier d'échange pour tous les lecteurs" et au préalable "un fichier d'échange est une zone..."

Espère apporté les réponses que tu attends...encore merci

Je le voyais comme ça aussi...j'imaginais la tête de mon beau père avec cette avalanche de messages dont il ne connais pas un mot. Je vais en charger un autre. Cependant comment puis je contourner dezipper avec winrar sachant qu'il me demande d'acheter la version maintenant que les 40j d'évaluation sont terminés.

Quant au pc si je peux lui rendre la semaine prochaine se sera parfait.

En réponse, les informations demandées lors de ton avant dernier mel...j'ai pris du retard, je m'en excuse.

Alors, nous disions :
Tu me donnes les chiffres qui correspondent à :

Processus : 56

UC : ça varie tout le temps ! : au moment ou je t'écris : valeur basse 6% - valeur haute 32 % (suffit que je demande de faire basculer le gestionaire d'application dans la barre des taches) - Sinon tout en bas charge dédiée : 475 Mo

Charge dédiée total 487 356 / Limite 1 443 332 / Pic 553 352

Allez on y va ... :

CARPService] pour pouvoir écouter le haut parlleur interne du modem connexant. : je présume que c'est utile pour la com en webcam ? si ce n'est pas le cas : N
[ATIPTA] gestion de l'affichage ( inutile à mon avis ) : ton avis étant éclairé...je prends : N
[QT4HPOT] pour un DD externe maxtor : N
[CapFax] Logiciel BVRP Software pour le fax et le téléphone ( utilité ?? ) : N
[HP Software Update] mise à jour des produits HP : N (peut s'activer manuellement je présume)
[HPDJ Taskbar Utilityt ] maintenace de l'imprimante HP Deskjet series printer : Maintenance ? si elle peut se lancer manuellement : N
[Omnipage] scanneur : O
[LogitechImageStudioTray] partie du studio d'image de logitech : si ça sert à sa web cam : O sinon : N
[LVCOMS] netmeeting avec Quickcam : Ouh là...netmeeting oui je crois que c'est là qu'il à trouvé l'âme soeur!!! avec en plus un mariage à la clé. Alors : O + O
[SPAMfighter Agent] a desinstaller : ok j'utilise l'outils installer/désintaler de windows ?
[Sony Ericsson PC Suite ] pour le télephone mobile sony ericson P910 : N
[OnlineArmor GUI] desiinstallé : ok je m'en occupe
[H/PC Connection Agent ] POur l'utilisation d'un PDA : N
[WMPNSCFG] windows media player : N
[swg] Sagem - Utilitaire réseau pour Clé USB Wi-Fi 802.11g.lnk = ? explicite : je mettrais N cependant car j'attaque directement avec la carte réseau wifi du px ma connexion wifi mais je crains que cela ne soit son cas. Est ce que cela joue sur les performances de connexion ?

Au préalable du rapport demandé :

La défragmentation :

Volume (C:)
Taille du volume = 55,88 Go
Taille de cluster = 4 Ko
Espace utilisé = 17,84 Go
Espace libre = 38,05 Go
Pourcentage d'espace libre = 68 %

Fragmentation du volume
Fragmentation totale = 4 %
Fragmentation de fichiers = 8 %
Fragmentation de l'espace libre = 0 %

Fragmentation de fichiers
Total de fichiers = 89 842
Taille moyenne de fichier = 299 Ko
Total de fichiers fragmentés = 2
Total de fragments en trop = 2 461
Nombre moyen de fragments par fichier = 1,02

Fragmentation du fichier paginé
Taille du fichier paginé = 1,00 Go
Total de fragments = 1

Fragmentation de dossier
Total de dossiers = 6 929
Dossiers fragmentés = 1
Fragments de dossiers en trop = 0

Fragmentation de la table de fichiers principale (MFT)
Taille totale de la MFT = 113 Mo
Nombre d'enregistrements dans la MFT = 97 247
Pourcentage d'utilisation de la MFT = 84 %
Total de fragments dans la MFT = 3

_________________________________________________________________________________________
Puis les information sur la RAM

Mobile Intel(R) Pentium(R)
4-MCPU 2.20 GHz
2.19 GHz - Ram : 448 Mo


Mémoire virtuelle : 1024 Mo avec l'inscription "taille totale du fichier d'échange pour tous les lecteurs" et au préalable "un fichier d'échange est une zone..."

et enfin les info sur la charge dédiée :

Processus : 43

UC : 100%

Charge dédiée 298 Mo
_______________________________________________________________________________________

Le rapport Hijackthis après l'ensemble des opérations :

Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 21:08:00, on 31/07/2008
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.6000.16674)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\carpserv.exe
C:\Program Files\Synaptics\SynTP\SynTPLpr.exe
C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
C:\Program Files\HP\hpcoretech\hpcmpmgr.exe
C:\Program Files\ScanSoft\OmniPageSE\opware32.exe
C:\Program Files\Logitech\ImageStudio\LogiTray.exe
C:\Program Files\Fichiers communs\Logitech\QCDriver\LVCOMS.EXE
C:\Program Files\QuickTime\qttask.exe
C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2009\avp.exe
C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\avgas.exe
C:\Program Files\Java\jre1.6.0_07\bin\jusched.exe
C:\PROGRA~1\MI3AA1~1\rapimgr.exe
C:\Program Files\SAGEM Wi-Fi USB 802.11g\WLANUTL.exe
C:\Program Files\HP\hpcoretech\comp\hptskmgr.exe
C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe
C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2009\avp.exe
C:\WINDOWS\system32\HPConfig.exe
C:\Program Files\HPQ\Notebook Utilities\HPWirelessMgr.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Sunbelt Software\Personal Firewall\SbPFLnch.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Canon\CAL\CALMAIN.exe
C:\Program Files\Fichiers communs\Teleca Shared\Generic.exe
C:\Program Files\Sony Ericsson\Mobile2\Mobile Phone Monitor\epmworker.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WLLoginProxy.exe
C:\WINDOWS\system32\wscntfy.exe
C:\WINDOWS\system32\taskmgr.exe
C:\Program Files\Trend Micro\HijackThis\HijackThis.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.google.fr/?gws_rd=ssl
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = https://www.msn.com/fr-fr/?ocid=iehp
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Bar = http://search.presario.net/...
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.msn.com/fr-fr/?ocid=iehp
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R1 - HKCU\Software\Microsoft\Internet Explorer\SearchURL,(Default) = https://www.bing.com/?FORM=TOOLBR&cc=fr&toHttps=1&redig=4527FFF1C12746FC9EDB535C75E80ECC
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
O2 - BHO: (no name) - {53707962-6F74-2D53-2644-206D7942484F} - C:\Program Files\Spybot - Search & Destroy\SDHelper.dll
O2 - BHO: IEVkbdBHO - {59273AB4-E7D3-40F9-A1A8-6FA9CCA1862C} - C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2009\ievkbd.dll
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_07\bin\ssv.dll
O2 - BHO: Windows Live Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar2.dll
O4 - HKLM\..\Run: [CARPService] carpserv.exe
O4 - HKLM\..\Run: [PreloadApp] c:\hp\drivers\printers\photosmart\hphprld.exe c:\hp\drivers\printers\photosmart\setup.exe -d
O4 - HKLM\..\Run: [srmclean] C:\Cpqs\Scom\srmclean.exe
O4 - HKLM\..\Run: [Display Settings] C:\Program Files\HPQ\Notebook Utilities\hptasks.exe /s
O4 - HKLM\..\Run: [SynTPLpr] C:\Program Files\Synaptics\SynTP\SynTPLpr.exe
O4 - HKLM\..\Run: [SynTPEnh] C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
O4 - HKLM\..\Run: [Cpqset] C:\Program Files\HPQ\Default Settings\cpqset.exe
O4 - HKLM\..\Run: [HP Component Manager] "C:\Program Files\HP\hpcoretech\hpcmpmgr.exe"
O4 - HKLM\..\Run: [Omnipage] C:\Program Files\ScanSoft\OmniPageSE\opware32.exe
O4 - HKLM\..\Run: [LogitechImageStudioTray] C:\Program Files\Logitech\ImageStudio\LogiTray.exe
O4 - HKLM\..\Run: [LogitechGalleryRepair] C:\Program Files\Logitech\ImageStudio\ISStart.exe
O4 - HKLM\..\Run: [LVCOMS] C:\Program Files\Fichiers communs\Logitech\QCDriver\LVCOMS.EXE
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [AVP] "C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2009\avp.exe"
O4 - HKLM\..\Run: [!AVG Anti-Spyware] "C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\avgas.exe" /minimized
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre1.6.0_07\bin\jusched.exe"
O4 - Global Startup: Sagem - Utilitaire réseau pour Clé USB Wi-Fi 802.11g.lnk = ?
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_07\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_07\bin\ssv.dll
O9 - Extra button: Statistiques de la protection du trafic Internet - {1F460357-8A94-4D71-9CA3-AA4ACF32ED8E} - C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2009\SCIEPlgn.dll
O9 - Extra button: Create Mobile Favorite - {2EAF5BB1-070F-11D3-9307-00C04FAE2D4F} - C:\PROGRA~1\MI3AA1~1\INetRepl.dll
O9 - Extra button: (no name) - {2EAF5BB2-070F-11D3-9307-00C04FAE2D4F} - C:\PROGRA~1\MI3AA1~1\INetRepl.dll
O9 - Extra 'Tools' menuitem: Créer un favori mobile... - {2EAF5BB2-070F-11D3-9307-00C04FAE2D4F} - C:\PROGRA~1\MI3AA1~1\INetRepl.dll
O9 - Extra button: (no name) - {85d1f590-48f4-11d9-9669-0800200c9a66} - C:\WINDOWS\bdoscandel.exe
O9 - Extra 'Tools' menuitem: Uninstall BitDefender Online Scanner v8 - {85d1f590-48f4-11d9-9669-0800200c9a66} - C:\WINDOWS\bdoscandel.exe
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O16 - DPF: {0EB0E74A-2A76-4AB3-A7FB-9BD8C29F7F75} (CKAVWebScan Object) - https://www.kaspersky.fr/?domain=webscanner.kaspersky.fr
O16 - DPF: {5D86DDB5-BDF9-441B-9E9E-D4730F4EE499} (BDSCANONLINE Control) - http://www.bitdefender.fr/scan_fr/scan8/oscan8.cab
O23 - Service: AVG Anti-Spyware Guard - GRISOFT s.r.o. - C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe
O23 - Service: Kaspersky Anti-Virus (avp) - Kaspersky Lab - C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2009\avp.exe
O23 - Service: Canon Camera Access Library 8 (CCALib8) - Canon Inc. - C:\Program Files\Canon\CAL\CALMAIN.exe
O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: HP Configuration Interface Service (HPConfig) - Hewlett-Packard - C:\WINDOWS\system32\HPConfig.exe
O23 - Service: HPWirelessMgr - Hewlett-Packard Co. - C:\Program Files\HPQ\Notebook Utilities\HPWirelessMgr.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Fichiers communs\InstallShield\Driver\1150\Intel 32\IDriverT.exe
O23 - Service: SbPF.Launcher - Sunbelt Software, Inc. - C:\Program Files\Sunbelt Software\Personal Firewall\SbPFLnch.exe
O23 - Service: Sunbelt Personal Firewall 4 (SPF4) - Sunbelt Software, Inc. - C:\Program Files\Sunbelt Software\Personal Firewall\SbPFSvc.exe

Nom de l'image Processeur Util. mémoire
iexplore.exe 00 33280
explorer.exe 01 30804
svchost.exe 00 26100
SbPFSvc.exe 00 24768
avp.exe 97 24320
guard.exe 00 20172
wmpnetwk 00 8716
...
Cela répond il à ta demande ?

Cela se passe mieux qu'à 100% :

UC : 26%

Charge dédié : 305 Mo

Processus : 39

C'est pas une formule 1 mais y a du mieux tout de même

Ok, je viens de passer à 4 Go.

La Ram, ok, je vais aller acheter de quoi le monter

Pour kaspersy,si celui-ci n'est plus lancé au démarrage, cela implique que j'ai une action manuelle ?