Actualité informatique
Test comparatif matériel informatique
Jeux vidéo
Astuces informatique
Vidéo
Télécharger
Services en ligne
Forum informatique
01Business

|-  SECURITE


|||-  

"Resolu" scan avec "systeme explorer"

 

2 utilisateurs anonymes et 73 utilisateurs inconnus
Ajouter une réponse
 

 
Page photos
 
     
Vider la liste des messages à citer
 
 Page :
1
Auteur
 Sujet :

"Resolu" scan avec "systeme explorer"

Prévenir les modérateurs en cas d'abus 
remi fasol
vieux motard que jamais
remi-fasol
Sur la bonne voie (de 100 à 499 messages postés)
  1. Posté le 23/01/2012 à 17:44:34  
  1. answer
  1. Prévenir les modérateurs en cas d'abus
 
Bonjour a vous j'ai fait un scan avec "Système Explorer",et il m'indique que (bgsvcgen.exe) est TREATH.Dois-je le supprimer? ;)

Imagine ...
Profil : Equipe sécurité
kmisol
Célèbre sur tout le forum (de 30 000 à 99 999 messages postés)
  1. Posté le 23/01/2012 à 22:09:02  
  1. answer
  1. Prévenir les modérateurs en cas d'abus
 
Hello,

 Télécharge RSIT (de random/random) sur le bureau :

 - Sur le bureau, double clique sur RSIT.exe ;
 - Clique sur Continue (Disclaimer) dans la fenêtre ;

 Si la dernière version de HijackThis n'est pas détectée sur ton PC, RSIT le téléchargera et te demandera d'accepter la licence.

 Une fois l’analyse achevée, 2 fichiers texte s’ouvriront (avec le bloc-notes).

 Poste le contenu de log.txt (celui qui apparaît à l’ écran) ainsi que info.txt (que tu verras dans la Barre des tâches).

 Tutoriel ->  ici

(Publicité)
vieux motard que jamais
remi-fasol
Sur la bonne voie (de 100 à 499 messages postés)
  1. Posté le 24/01/2012 à 18:53:43  
  1. answer
  1. Prévenir les modérateurs en cas d'abus
 
Voici  log,txt
 Logfile of random's system information tool 1.09 (written by random/random)
 Run by HP_Administrateur at 2012-01-24 18:48:20
 Microsoft Windows XP Professionnel Service Pack 3
 System drive C: has 61 GB (33%) free of 184 GB
 Total RAM: 959 MB (36% free)

 Logfile of Trend Micro HijackThis v2.0.4
 Scan saved at 18:49:46, on 24/01/2012
 Platform: Windows XP SP3 (WinNT 5.01.2600)
 MSIE: Internet Explorer v8.00 (8.00.6001.18702)
 Boot mode: Normal

 Running processes:
 C:\WINDOWS\System32\smss.exe
 C:\WINDOWS\system32\winlogon.e​xe
 C:\WINDOWS\system32\services.e​xe
 C:\WINDOWS\system32\lsass.exe
 C:\WINDOWS\system32\Ati2evxx.e​xe
 C:\WINDOWS\system32\svchost.ex​e
 C:\Program Files\Fichiers communs\G DATA\GDScan\GDScan.exe
 C:\Program Files\G Data\AntiVirus\AVK\AVKWCtl.exe
 C:\WINDOWS\System32\svchost.ex​e
 C:\WINDOWS\system32\svchost.ex​e
 C:\WINDOWS\system32\Ati2evxx.e​xe
 C:\WINDOWS\system32\spoolsv.ex​e
 C:\WINDOWS\Explorer.EXE
 C:\Program Files\Fichiers communs\Apple\Mobile Device Support\AppleMobileDeviceServi​ce.exe
 C:\WINDOWS\arservice.exe
 C:\Program Files\Fichiers communs\G DATA\AVKProxy\AVKProxy.exe
 C:\Program Files\G Data\AntiVirus\AVK\AVKService.​exe
 C:\WINDOWS\system32\bgsvcgen.e​xe
 C:\Program Files\Bonjour\mDNSResponder.ex​e
 C:\WINDOWS\eHome\ehRecvr.exe
 C:\WINDOWS\eHome\ehSched.exe
 C:\WINDOWS\System32\svchost.ex​e
 C:\Program Files\Java\jre6\bin\jqs.exe
 C:\WINDOWS\ehome\ehtray.exe
 C:\WINDOWS\ARPWRMSG.EXE
 C:\windows\system\hpsysdrv.exe
 C:\WINDOWS\RTHDCPL.EXE
 C:\WINDOWS\system32\svchost.ex​e
 C:\HP\KBD\KBD.EXE
 C:\Program Files\HP\HP Software Update\HPWuSchd2.exe
 C:\program files\real\realplayer\update\r​ealsched.exe
 C:\Program Files\G Data\AntiVirus\AVKTray\AVKTray​.exe
 C:\Program Files\Fichiers communs\InstallShield\UpdateSe​rvice\issch.exe
 C:\Program Files\Fichiers communs\Java\Java Update\jusched.exe
 C:\Program Files\iTunes\iTunesHelper.exe
 C:\Program Files\Samsung\Kies\KiesTrayAge​nt.exe
 C:\WINDOWS\system32\ctfmon.exe
 C:\Program Files\SFR\Kit\9props.exe
 C:\Program Files\Samsung\Kies\External\Fi​rmwareUpdate\KiesPDLR.exe
 C:\Program Files\Windows Media Player\WMPNSCFG.exe
 C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe
 c:\Program Files\HP\Digital Imaging\bin\hpqSTE08.exe
 C:\Program Files\OpenOffice.org 3\program\soffice.exe
 C:\WINDOWS\system32\dllhost.ex​e
 C:\Program Files\iPod\bin\iPodService.exe
 C:\Program Files\OpenOffice.org 3\program\soffice.bin
 C:\WINDOWS\eHome\ehmsas.exe
 C:\Documents and Settings\HP_Administrateur.NOM​-FB9B15D2723\Mes documents\Téléchargements\RSIT​.exe
 C:\Program Files\trend micro\HP_Administrateur.exe

 R1 - HKCU\Software\Microsoft\Intern​et Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
 R0 - HKCU\Software\Microsoft\Intern​et Explorer\Main,Start Page = http://search.igeared.com/dispatcher.aspx?i=67
 R1 - HKLM\Software\Microsoft\Intern​et Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
 R1 - HKLM\Software\Microsoft\Intern​et Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
 R0 - HKLM\Software\Microsoft\Intern​et Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
 R1 - HKCU\Software\Microsoft\Window​s\CurrentVersion\Internet Settings,ProxyOverride = *.local
 R0 - HKCU\Software\Microsoft\Intern​et Explorer\Toolbar,LinksFolderNa​me = Liens
 O2 - BHO: G Data WebFilter Class - {0124123D-61B4-456f-AF86-78C53​A0790C5} - C:\Program Files\G Data\AntiVirus\WebFilter\AvkWe​bIE.dll
 O2 - BHO: Aide à la navigation SFR - {0F6E720A-1A6B-40E1-A294-1D4D1​9F156C8} - C:\Program Files\SFR\Kit\SFRNavErrorHelpe​r.dll
 O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578​C2EBDC3} - C:\Program Files\Fichiers communs\Adobe\Acrobat\ActiveX\​AcroIEHelperShim.dll
 O2 - BHO: RealPlayer Download and Record Plugin for Internet Explorer - {3049C3E9-B461-4BC5-8870-4C091​46192CA} - C:\Documents and Settings\All Users\Application Data\Real\RealPlayer\BrowserRe​cordPlugin\IE\rpbrowserrecordp​lugin.dll
 O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF​1D92D43} - C:\Program Files\Java\jre6\bin\ssv.dll
 O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live - {9030D464-4C02-4ABF-8ECC-51647​60863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
 O2 - BHO: G Data BankGuard - {BA3295CF-17ED-4F49-9E95-D999A​0ADBFDC} - C:\Program Files\Fichiers communs\G Data\AVKProxy\BanksafeBHO.dll
 O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C​1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll
 O2 - BHO: JQSIEStartDetectorImpl - {E7E6F031-17CE-4C07-BC86-EABFE​594F69C} - C:\Program Files\Java\jre6\lib\deploy\jqs​\ie\jqs_plugin.dll
 O3 - Toolbar: G Data WebFilter - {0124123D-61B4-456f-AF86-78C53​A0790C5} - C:\Program Files\G Data\AntiVirus\WebFilter\AvkWe​bIE.dll
 O3 - Toolbar: (no name) - {2793FB58-DCE3-4A83-97DE-7208C​AD0341C} - (no file)
 O4 - HKLM\..\Run: [ehTray] C:\WINDOWS\ehome\ehtray.exe
 O4 - HKLM\..\Run: [ftutil2] rundll32.exe ftutil2.dll,SetWriteCacheMode
 O4 - HKLM\..\Run: [AlwaysReady Power Message APP] ARPWRMSG.EXE
 O4 - HKLM\..\Run: [hpsysdrv] c:\windows\system\hpsysdrv.exe
 O4 - HKLM\..\Run: [RTHDCPL] RTHDCPL.EXE
 O4 - HKLM\..\Run: [Alcmtr] ALCMTR.EXE
 O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,​NvStartup
 O4 - HKLM\..\Run: [nwiz] nwiz.exe /installquiet /keeploaded /nodetect
 O4 - HKLM\..\Run: [HPHUPD08] c:\Program Files\HP\Digital Imaging\{33D6CC28-9F75-4d1b-A1​1D-98895B3A3729}\hphupd08.exe
 O4 - HKLM\..\Run: [KBD] C:\HP\KBD\KBD.EXE
 O4 - HKLM\..\Run: [Recguard] C:\WINDOWS\SMINST\RECGUARD.EXE
 O4 - HKLM\..\Run: [PS2] C:\WINDOWS\system32\ps2.exe
 O4 - HKLM\..\Run: [HP Software Update] C:\Program Files\HP\HP Software Update\HPWuSchd2.exe
 O4 - HKLM\..\Run: [TkBellExe] "C:\program files\real\realplayer\update\r​ealsched.exe"  -osboot
 O4 - HKLM\..\Run: [G Data AntiVirus Tray Application] C:\Program Files\G Data\AntiVirus\AVKTray\AVKTray​.exe
 O4 - HKLM\..\Run: [ISUSPM Startup] C:\PROGRA~1\FICHIE~1\INSTAL~1\​UPDATE~1\ISUSPM.exe -startup
 O4 - HKLM\..\Run: [ISUSScheduler] "C:\Program Files\Fichiers communs\InstallShield\UpdateSe​rvice\issch.exe" -start
 O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files\Fichiers communs\Adobe\ARM\1.0\AdobeARM​.exe"
 O4 - HKLM\..\Run: [APSDaemon] "C:\Program Files\Fichiers communs\Apple\Apple Application Support\APSDaemon.exe"
 O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Fichiers communs\Java\Java Update\jusched.exe"
 O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\QTTask.exe" -atboottime
 O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe"
 O4 - HKLM\..\Run: [KiesTrayAgent] C:\Program Files\Samsung\Kies\KiesTrayAge​nt.exe
 O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
 O4 - HKCU\..\Run: [Connexion SFR 9props.exe] "C:\Program Files\SFR\Kit\9props.exe" /trayicon
 O4 - HKCU\..\Run: [KiesHelper] C:\Program Files\Samsung\Kies\KiesHelper.​exe /s
 O4 - HKCU\..\Run: [KiesPDLR] C:\Program Files\Samsung\Kies\External\Fi​rmwareUpdate\KiesPDLR.exe
 O4 - HKCU\..\Run: [WMPNSCFG] C:\Program Files\Windows Media Player\WMPNSCFG.exe
 O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE LOCAL')
 O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE RÉSEAU')
 O4 - S-1-5-18 Startup: OpenOffice.org 3.3.lnk = C:\Program Files\OpenOffice.org 3\program\quickstart.exe (User 'SYSTEM')
 O4 - .DEFAULT Startup: OpenOffice.org 3.3.lnk = C:\Program Files\OpenOffice.org 3\program\quickstart.exe (User 'Default user')
 O4 - .DEFAULT User Startup: Pin.lnk = C:\hp\bin\CLOAKER.EXE (User 'Default user')
 O4 - Startup: OpenOffice.org 3.3.lnk = C:\Program Files\OpenOffice.org 3\program\quickstart.exe
 O4 - Global Startup: HP Digital Imaging Monitor.lnk = C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe
 O8 - Extra context menu item: Add to Google Photos Screensa&ver - res://C:\WINDOWS\system32\GPho​tos.scr/200
 O9 - Extra button: Aide à la connexion - {E2D4D26B-0180-43a4-B05F-462D6​D54C789} - C:\WINDOWS\PCHEALTH\HELPCTR\Ve​ndors\CN=Hewlett-Packard,L=Cup​ertino,S=Ca,C=US\IEButton\supp​ort.htm
 O9 - Extra 'Tools' menuitem: Aide à la connexion - {E2D4D26B-0180-43a4-B05F-462D6​D54C789} - C:\WINDOWS\PCHEALTH\HELPCTR\Ve​ndors\CN=Hewlett-Packard,L=Cup​ertino,S=Ca,C=US\IEButton\supp​ort.htm
 O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba3​8496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
 O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba3​8496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
 O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04​F795683} - C:\Program Files\Messenger\msmsgs.exe
 O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04​F795683} - C:\Program Files\Messenger\msmsgs.exe
 O22 - SharedTaskScheduler: Pré-chargeur Browseui - {438755C2-A8BA-11D1-B96B-00A0C​90312E1} - C:\WINDOWS\system32\browseui.d​ll
 O22 - SharedTaskScheduler: Démon de cache des catégories de composant - {8C7461EF-2B13-11d2-BE35-30783​02C2030} - C:\WINDOWS\system32\browseui.d​ll
 O23 - Service: Apple Mobile Device - Apple Inc. - C:\Program Files\Fichiers communs\Apple\Mobile Device Support\AppleMobileDeviceServi​ce.exe
 O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\WINDOWS\system32\Ati2evxx.e​xe
 O23 - Service: ATI Smart - Unknown owner - C:\WINDOWS\system32\ati2sgag.e​xe
 O23 - Service: G Data AntiVirus Proxy (AVKProxy) - Unknown owner - C:\Program Files\Fichiers communs\G DATA\AVKProxy\AVKProxy.exe
 O23 - Service: Planificateur G Data (AVKService) - Unknown owner - C:\Program Files\G Data\AntiVirus\AVK\AVKService.​exe
 O23 - Service: G Data Gardien (AVKWCtl) - G Data Software AG - C:\Program Files\G Data\AntiVirus\AVK\AVKWCtl.exe
 O23 - Service: B's Recorder GOLD Library General Service (bgsvcgen) - B.H.A Corporation - C:\WINDOWS\system32\bgsvcgen.e​xe
 O23 - Service: Service Bonjour (Bonjour Service) - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.ex​e
 O23 - Service: Boonty Games - BOONTY - C:\Program Files\Fichiers communs\BOONTY Shared\Service\Boonty.exe
 O23 - Service: Service d'administration du Gestionnaire de disque logique (dmadmin) - Unknown owner - C:\WINDOWS\System32\dmadmin.ex​e
 O23 - Service: Service de planification Media Center (ehSched) - Unknown owner - C:\WINDOWS\eHome\ehSched.exe
 O23 - Service: Journal des événements (Eventlog) - Unknown owner - C:\WINDOWS\system32\services.e​xe
 O23 - Service: Fax - Unknown owner - C:\WINDOWS\system32\fxssvc.exe
 O23 - Service: G Data Scanner (GDScan) - Unknown owner - C:\Program Files\Fichiers communs\G DATA\GDScan\GDScan.exe
 O23 - Service: Google Software Updater (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.e​xe
 O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Fichiers communs\InstallShield\Driver\1​050\Intel 32\IDriverT.exe
 O23 - Service: Service COM de gravage de CD IMAPI (ImapiService) - Unknown owner - C:\WINDOWS\system32\imapi.exe
 O23 - Service: Service de l’iPod (iPod Service) - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
 O23 - Service: Java Quick Starter (JavaQuickStarterService) - Sun Microsystems, Inc. - C:\Program Files\Java\jre6\bin\jqs.exe
 O23 - Service: Ma-Config Service (maconfservice) - Unknown owner - C:\Program Files\ma-config.com\maconfserv​ice.exe
 O23 - Service: Partage de Bureau à distance NetMeeting (mnmsrvc) - Unknown owner - C:\WINDOWS\system32\mnmsrvc.ex​e
 O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.ex​e
 O23 - Service: Plug-and-Play (PlugPlay) - Unknown owner - C:\WINDOWS\system32\services.e​xe
 O23 - Service: Gestionnaire de session d'aide sur le Bureau à distance (RDSessMgr) - Unknown owner - C:\WINDOWS\system32\sessmgr.ex​e
 O23 - Service: Carte à puce (SCardSvr) - Unknown owner - C:\WINDOWS\System32\SCardSvr.e​xe
 O23 - Service: Journaux et alertes de performance (SysmonLog) - Unknown owner - C:\WINDOWS\system32\smlogsvc.e​xe
 O23 - Service: Cliché instantané de volume (VSS) - Unknown owner - C:\WINDOWS\System32\vssvc.exe
 O23 - Service: Carte de performance WMI (WmiApSrv) - Unknown owner - C:\WINDOWS\system32\wbem\wmiap​srv.exe
 O23 - Service: Service Partage réseau du Lecteur Windows Media (WMPNetworkSvc) - Unknown owner - C:\Program Files\Windows Media Player\WMPNetwk.exe

 --
 End of file - 12238 bytes

 ======Scheduled tasks folder======

 C:\WINDOWS\tasks\AppleSoftware​Update.job
 C:\WINDOWS\tasks\Connexion facile à Internet.job
 C:\WINDOWS\tasks\Maintenance en 1 clic.job
 C:\WINDOWS\tasks\RealUpgradeLo​gonTaskS-1-5-21-4109910490-374​4524818-1263572-1007.job
 C:\WINDOWS\tasks\RealUpgradeSc​heduledTaskS-1-5-21-4109910490​-3744524818-1263572-1007.job

 =========Mozilla firefox=========

 ProfilePath - C:\Documents and Settings\HP_Administrateur.NOM​-FB9B15D2723\Application Data\Mozilla\Firefox\Profiles\​38lmwea1.default

 prefs.js - "browser.startup.homepage" -  "http://www.google.fr/"
 prefs.js - "keyword.URL" -  "http://search.igeared.com/dis​patcher.aspx?i=67&tp=ab&q="

 "{ABDE892B-13A8-4d1b-88E6-365A​6E755758}"=C:\Documents and Settings\All Users\Application Data\Real\RealPlayer\BrowserRe​cordPlugin\Firefox\Ext
 "jqs@sun.com"=C:\Program Files\Java\jre6\lib\deploy\jqs​\ff


 [HKEY_LOCAL_MACHINE\SOFTWARE\Mo​zillaPlugins\@adobe.com/FlashP​layer]
 "Description"=Adobe® Flash® Player 10.1 Plugin
 "Path"=C:\WINDOWS\system32\Mac​romed\Flash\NPSWF32.dll

 [HKEY_LOCAL_MACHINE\SOFTWARE\Mo​zillaPlugins\@adobe.com/Shockw​avePlayer]
 "Description"=Adobe Shockwave Player
 "Path"=C:\WINDOWS\system32\Ado​be\Director\np32dsw.dll

 [HKEY_LOCAL_MACHINE\SOFTWARE\Mo​zillaPlugins\@Apple.com/iTunes​,version=]
 "Description"=Module iTunes Detector
 "Path"=

 [HKEY_LOCAL_MACHINE\SOFTWARE\Mo​zillaPlugins\@Apple.com/iTunes​,version=1.0]
 "Description"=
 "Path"=C:\Program Files\iTunes\Mozilla Plugins\npitunes.dll

 [HKEY_LOCAL_MACHINE\SOFTWARE\Mo​zillaPlugins\@google.com/npPic​asa3,version=3.0.0]
 "Description"=Picasa3 plugin
 "Path"=C:\Program Files\Picasa2\Picasa3\npPicasa​3.dll

 [HKEY_LOCAL_MACHINE\SOFTWARE\Mo​zillaPlugins\@java.com/JavaPlu​gin]
 "Description"=Oracle® Next Generation Java™ Plug-In
 "Path"=C:\Program Files\Java\jre6\bin\new_plugin​\npjp2.dll

 [HKEY_LOCAL_MACHINE\SOFTWARE\Mo​zillaPlugins\@ma-config.com/Ha​rdwareDetection]
 "Description"=Détection de sa configuration
 "Path"=C:\Program Files\ma-config.com\nphardware​detection.dll

 [HKEY_LOCAL_MACHINE\SOFTWARE\Mo​zillaPlugins\@Microsoft.com/Np​Ctrl,version=1.0]
 "Description"=Ag Player Plugin
 "Path"=c:\Program Files\Microsoft Silverlight\4.0.60831.0\npctrl​.dll

 [HKEY_LOCAL_MACHINE\SOFTWARE\Mo​zillaPlugins\@real.com/nppl326​0;version=12.0.1.669]
 "Description"=RealPlayer(tm) LiveConnect-Enabled Plug-In
 "Path"=c:\program files\real\realplayer\Netscape​6\nppl3260.dll

 [HKEY_LOCAL_MACHINE\SOFTWARE\Mo​zillaPlugins\@real.com/nprjplu​g;version=12.0.1.669]
 "Description"=RealJukebox Netscape Plugin
 "Path"=c:\program files\real\realplayer\Netscape​6\nprjplug.dll

 [HKEY_LOCAL_MACHINE\SOFTWARE\Mo​zillaPlugins\@real.com/nprpchr​omebrowserrecordext;version=12​.0.1.669]
 "Description"=RealNetworks(tm) RealPlayer Chrome Background Extension Plug-In
 "Path"=C:\Documents and Settings\All Users\Application Data\Real\RealPlayer\BrowserRe​cordPlugin\MozillaPlugins\nprp​chromebrowserrecordext.dll

 [HKEY_LOCAL_MACHINE\SOFTWARE\Mo​zillaPlugins\@real.com/nprphtm​l5videoshim;version=12.0.1.669​]
 "Description"=RealPlayer(tm) HTML5VideoShim Plug-In
 "Path"=C:\Documents and Settings\All Users\Application Data\Real\RealPlayer\BrowserRe​cordPlugin\MozillaPlugins\nprp​html5videoshim.dll

 [HKEY_LOCAL_MACHINE\SOFTWARE\Mo​zillaPlugins\@real.com/nprpjpl​ug;version=12.0.1.669]
 "Description"=12.0.1.669
 "Path"=c:\program files\real\realplayer\Netscape​6\nprpjplug.dll

 [HKEY_LOCAL_MACHINE\SOFTWARE\Mo​zillaPlugins\@real.com/nsJSRea​lPlayerPlugin;version=]
 "Description"=
 "Path"=

 [HKEY_LOCAL_MACHINE\SOFTWARE\Mo​zillaPlugins\@rim.com/npappwor​ld]
 "Description"=
 "Path"=C:\Program Files\Research In Motion Limited\Plug-in du navigateur BlackBerry App World\npappworld.dll

 [HKEY_LOCAL_MACHINE\SOFTWARE\Mo​zillaPlugins\@zylom.com/ZylomG​amesPlayer]
 "Description"=Zylom Games Player 1.00
 "Path"=C:\Documents and Settings\All Users\Application Data\Zylom\ZylomGamesPlayer\np​zylomgamesplayer.dll

 [HKEY_LOCAL_MACHINE\SOFTWARE\Mo​zillaPlugins\Adobe Reader]
 "Description"=Handles PDFs in-place in Firefox
 "Path"=C:\Program Files\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll

 C:\Program Files\Mozilla Firefox\extensions\
 talkback@mozilla(2).org
 {3112ca9c-de6d-4884-a869-9855d​e68056c}
 {3112ca9c-de6d-4884-a869-9855d​e68056c}(2)
 {906305f7-aafc-45e9-8bbd-94195​0a84dad}
 {9AA46F4F-4DC7-4c06-97AF-50351​70633FE}
 {CAFEEFAC-0016-0000-0002-ABCDE​FFEDCBA}(2)

 C:\Program Files\Mozilla Firefox\components\
 AskSearch.js
 binary.manifest
 browsercomps.dll
 IBDFirefox.xpt
 ijjiAutoInstallPluginFF.xpt
 npijjiFFPlugin1.xpt
 nsILegitCheckPlugin.xpt
 nsIQTScriptablePlugin.xpt
 nsIZylomPlugin.xpt

 C:\Program Files\Mozilla Firefox\plugins\
 np-mswmp.dll
 npagent.dll
 npdeployJava1.dll
 npijjiautoinstallpluginff.dll
 npijjiFFPlugin1.dll
 npLegitCheckPlugin.dll
 nppdf32.dll
 nppdf32.FRA
 nppl3260.dll
 nppl3260.xpt
 npqtplugin.dll
 npqtplugin2.dll
 npqtplugin3.dll
 npqtplugin4.dll
 npqtplugin5.dll
 npqtplugin6.dll
 npqtplugin7.dll
 nprjplug.dll
 nprpjplug.dll
 npzylomgamesplayer.dll
 nsjsrealplayerplugin.xpt
 QuickTimePlugin.class
 TVicHW32.sys
 TVICHW32.VXD
 TVicHW64.sys
 WMP Firefox Plugin License.rtf
 WMP Firefox Plugin RelNotes.txt

 C:\Program Files\Mozilla Firefox\searchplugins\
 amazon-france.xml
 bing.xml
 cnrtl-tlfi-fr.xml
 eBay-france.xml
 google.xml
 ssg_igeared.xml
 wikipedia-fr.xml
 yahoo-france.xml

 C:\Documents and Settings\HP_Administrateur.NOM​-FB9B15D2723\Application Data\Mozilla\Firefox\Profiles\​38lmwea1.default\searchplugins​\
 bing.xml

 ======Registry dump======

 [HKEY_LOCAL_MACHINE\SOFTWARE\Mi​crosoft\Windows\CurrentVersion​\Explorer\Browser Helper Objects\{0124123D-61B4-456f-AF86-78C53A0790C5}]
 G Data WebFilter - C:\Program Files\G Data\AntiVirus\WebFilter\AvkWe​bIE.dll [2011-09-22 654856]

 [HKEY_LOCAL_MACHINE\SOFTWARE\Mi​crosoft\Windows\CurrentVersion​\Explorer\Browser Helper Objects\{0F6E720A-1A6B-40E1-A294-1D4D19F156C8}]
 Objet d'aide à la navigation SFR - C:\Program Files\SFR\Kit\SFRNavErrorHelpe​r.dll [2011-06-10 165256]

 [HKEY_LOCAL_MACHINE\SOFTWARE\Mi​crosoft\Windows\CurrentVersion​\Explorer\Browser Helper Objects\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}]
 Adobe PDF Link Helper - C:\Program Files\Fichiers communs\Adobe\Acrobat\ActiveX\​AcroIEHelperShim.dll [2012-01-03 63912]

 [HKEY_LOCAL_MACHINE\SOFTWARE\Mi​crosoft\Windows\CurrentVersion​\Explorer\Browser Helper Objects\{3049C3E9-B461-4BC5-8870-4C09146192CA}]
 RealPlayer Download and Record Plugin for Internet Explorer - C:\Documents and Settings\All Users\Application Data\Real\RealPlayer\BrowserRe​cordPlugin\IE\rpbrowserrecordp​lugin.dll [2011-10-23 414416]

 [HKEY_LOCAL_MACHINE\SOFTWARE\Mi​crosoft\Windows\CurrentVersion​\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
 Java(tm) Plug-In SSV Helper - C:\Program Files\Java\jre6\bin\ssv.dll [2011-11-10 325408]

 [HKEY_LOCAL_MACHINE\SOFTWARE\Mi​crosoft\Windows\CurrentVersion​\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
 Programme d'aide de l'Assistant de connexion Windows Live - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2009-01-22 408448]

 [HKEY_LOCAL_MACHINE\SOFTWARE\Mi​crosoft\Windows\CurrentVersion​\Explorer\Browser Helper Objects\{BA3295CF-17ED-4F49-9E95-D999A0ADBFDC}]
 G Data BankGuard - C:\Program Files\Fichiers communs\G Data\AVKProxy\BanksafeBHO.dll [2011-08-10 52216]

 [HKEY_LOCAL_MACHINE\SOFTWARE\Mi​crosoft\Windows\CurrentVersion​\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
 Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre6\bin\jp2ssv.dll [2011-11-10 42272]

 [HKEY_LOCAL_MACHINE\SOFTWARE\Mi​crosoft\Windows\CurrentVersion​\Explorer\Browser Helper Objects\{E7E6F031-17CE-4C07-BC86-EABFE594F69C}]
 JQSIEStartDetectorImpl Class - C:\Program Files\Java\jre6\lib\deploy\jqs​\ie\jqs_plugin.dll [2011-11-10 79648]

 [HKEY_LOCAL_MACHINE\SOFTWARE\Mi​crosoft\Internet Explorer\Toolbar]
 {0124123D-61B4-456f-AF86-78C53​A0790C5} - G Data WebFilter - C:\Program Files\G Data\AntiVirus\WebFilter\AvkWe​bIE.dll [2011-09-22 654856]
 {2793FB58-DCE3-4A83-97DE-7208C​AD0341C}

 [HKEY_LOCAL_MACHINE\Software\Mi​crosoft\Windows\CurrentVersion​\Run]
 "ehTray"=C:\WINDOWS\ehome\ehtr​ay.exe [2005-08-05 64512]
 "ftutil2"=ftutil2.dll,SetWrite​CacheMode []
 "AlwaysReady Power Message APP"=C:\WINDOWS\ARPWRMSG.EXE [2005-08-03 77312]
 "hpsysdrv"=c:\windows\system\h​psysdrv.exe [1998-05-07 52736]
 "RTHDCPL"=C:\WINDOWS\RTHDCPL.E​XE [2005-10-15 14864384]
 "Alcmtr"=C:\WINDOWS\ALCMTR.EXE [2005-05-04 69632]
 "NvCplDaemon"=C:\WINDOWS\syste​m32\NvCpl.dll [2005-08-02 7110656]
 "nwiz"=nwiz.exe /installquiet /keeploaded /nodetect []
 "HPHUPD08"=c:\Program Files\HP\Digital Imaging\{33D6CC28-9F75-4d1b-A1​1D-98895B3A3729}\hphupd08.exe [2005-06-02 49152]
 "KBD"=C:\HP\KBD\KBD.EXE [2005-02-03 61440]
 "Recguard"=C:\WINDOWS\SMINST\R​ECGUARD.EXE [2005-07-22 237568]
 "PCDrProfiler"= []
 "PS2"=C:\WINDOWS\system32\ps2.​exe [2004-10-25 90112]
 "HP Software Update"=C:\Program Files\HP\HP Software Update\HPWuSchd2.exe [2010-06-09 49208]
 "TkBellExe"=C:\program files\real\realplayer\update\r​ealsched.exe [2011-10-23 273528]
 "G Data AntiVirus Tray Application"=C:\Program Files\G Data\AntiVirus\AVKTray\AVKTray​.exe [2011-09-22 1012744]
 "ISUSPM Startup"=C:\PROGRA~1\FICHIE~1\​INSTAL~1\UPDATE~1\ISUSPM.exe [2004-07-27 221184]
 "ISUSScheduler"=C:\Program Files\Fichiers communs\InstallShield\UpdateSe​rvice\issch.exe [2004-07-27 81920]
 "Adobe ARM"=C:\Program Files\Fichiers communs\Adobe\ARM\1.0\AdobeARM​.exe [2012-01-03 843712]
 "APSDaemon"=C:\Program Files\Fichiers communs\Apple\Apple Application Support\APSDaemon.exe [2011-11-01 59240]
 "SunJavaUpdateSched"=C:\Progra​m Files\Fichiers communs\Java\Java Update\jusched.exe [2011-06-09 254696]
 ""= []
 "QuickTime Task"=C:\Program Files\QuickTime\QTTask.exe [2011-10-24 421888]
 "iTunesHelper"=C:\Program Files\iTunes\iTunesHelper.exe [2011-12-08 421736]
 "KiesTrayAgent"=C:\Program Files\Samsung\Kies\KiesTrayAge​nt.exe [2011-12-27 3508624]

 [HKEY_CURRENT_USER\Software\Mic​rosoft\Windows\CurrentVersion\​Run]
 "ctfmon.exe"=C:\WINDOWS\system​32\ctfmon.exe [2008-04-14 15360]
 "Connexion SFR 9props.exe"=C:\Program Files\SFR\Kit\9props.exe [2011-06-10 959880]
 "KiesHelper"=C:\Program Files\Samsung\Kies\KiesHelper.​exe [2011-12-27 937360]
 "KiesPDLR"=C:\Program Files\Samsung\Kies\External\Fi​rmwareUpdate\KiesPDLR.exe [2011-12-27 21392]
 "WMPNSCFG"=C:\Program Files\Windows Media Player\WMPNSCFG.exe [2006-11-03 204288]

 [HKEY_LOCAL_MACHINE\software\mi​crosoft\shared tools\msconfig\startupreg\iTunesHelper]
 C:\Program Files\iTunes\iTunesHelper.exe [2011-12-08 421736]

 [HKEY_LOCAL_MACHINE\software\mi​crosoft\shared tools\msconfig\startupreg\Quic​kTime Task]
 C:\Program Files\QuickTime\QTTask.exe [2011-10-24 421888]

 [HKEY_LOCAL_MACHINE\software\mi​crosoft\shared tools\msconfig\startupreg\TomTomHOME.exe]
 C:\Program Files\TomTom HOME 2\TomTomHOMERunner.exe []

 [HKEY_LOCAL_MACHINE\software\mi​crosoft\shared tools\msconfig\startupreg\WMPNSCFG]
 C:\Program Files\Windows Media Player\WMPNSCFG.exe [2006-11-03 204288]

 [HKEY_LOCAL_MACHINE\software\mi​crosoft\shared tools\msconfig\startupreg\Zune Launcher]
 c:\Program Files\Zune\ZuneLauncher.exe []

 [HKEY_LOCAL_MACHINE\software\mi​crosoft\shared tools\msconfig\startupfolder\C​:^Documents and Settings^All Users^Menu Démarrer^Programmes^Démarrage^​Microsoft Office.lnk]
 C:\PROGRA~1\MICROS~3\Office\OS​A9.EXE [2003-11-22 65588]

 [HKEY_LOCAL_MACHINE\software\mi​crosoft\shared tools\msconfig\startupfolder\C​:^Documents and Settings^All Users^Menu Démarrer^Programmes^Démarrage^​PHOTOfunSTUDIO HD Edition.lnk]
 C:\PROGRA~1\PANASO~1\PHOTOF~1\​PHAUTO~1.EXE [2009-01-30 44176]

 C:\Documents and Settings\All Users\Menu Démarrer\Programmes\Démarrage
 HP Digital Imaging Monitor.lnk - C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe

 C:\Documents and Settings\HP_Administrateur.NOM​-FB9B15D2723\Menu Démarrer\Programmes\Démarrage
 OpenOffice.org 3.3.lnk - C:\Program Files\OpenOffice.org 3\program\quickstart.exe

 [HKEY_LOCAL_MACHINE\SOFTWARE\Mi​crosoft\Windows NT\CurrentVersion\Winlogon\Notify\AtiExtEvent]
 C:\WINDOWS\system32\Ati2evxx.d​ll [2008-12-01 143360]

 [HKEY_LOCAL_MACHINE\SOFTWARE\Mi​crosoft\Windows\CurrentVersion​\ShellServiceObjectDelayLoad]
 WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D52​4869DB5} - C:\WINDOWS\system32\WPDShServi​ceObj.dll [2006-10-18 133632]

 [HKEY_LOCAL_MACHINE\SYSTEM\Curr​entControlSet\Control\SafeBoot​\Minimal\Wdf01000.sys]

 [HKEY_LOCAL_MACHINE\SYSTEM\Curr​entControlSet\Control\SafeBoot​\network\Wdf01000.sys]

 [HKEY_LOCAL_MACHINE\Software\Mi​crosoft\Windows\CurrentVersion​\Policies\System]
 "dontdisplaylastusername"=0
 "legalnoticecaption"=
 "legalnoticetext"=
 "shutdownwithoutlogon"=1
 "undockwithoutlogon"=1
 "InstallVisualStyle"=C:\WINDOW​S\Resources\Themes\Royale\Roya​le.msstyles
 "InstallTheme"=C:\WINDOWS\Reso​urces\Themes\Royale.theme

 [HKEY_CURRENT_USER\Software\Mic​rosoft\Windows\CurrentVersion\​Policies\explorer]
 "NoDriveTypeAutoRun"=145

 [HKEY_LOCAL_MACHINE\Software\Mi​crosoft\Windows\CurrentVersion​\Policies\explorer]
 "HonorAutoRunSetting"=1

 [HKEY_LOCAL_MACHINE\system\curr​entcontrolset\services\shareda​ccess\parameters\firewallpolic​y\standardprofile\authorizedap​plications\list]
 "%windir%\system32\sessmgr.exe​"="%windir%\system32\sessmgr.e​xe:*:enabled:@xpsp2res.dll,-22​019"
 "C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe"="C:\​Program Files\HP\Digital Imaging\bin\hpqtra08.exe:*:Ena​bled:hpqtra08.exe"
 "C:\Program Files\HP\Digital Imaging\bin\hpqste08.exe"="C:\​Program Files\HP\Digital Imaging\bin\hpqste08.exe:*:Ena​bled:hpqste08.exe"
 "C:\Program Files\HP\Digital Imaging\bin\hpofxm08.exe"="C:\​Program Files\HP\Digital Imaging\bin\hpofxm08.exe:*:Ena​bled:hpofxm08.exe"
 "C:\Program Files\HP\Digital Imaging\bin\hposfx08.exe"="C:\​Program Files\HP\Digital Imaging\bin\hposfx08.exe:*:Ena​bled:hposfx08.exe"
 "C:\Program Files\HP\Digital Imaging\bin\hposid01.exe"="C:\​Program Files\HP\Digital Imaging\bin\hposid01.exe:*:Ena​bled:hposid01.exe"
 "C:\Program Files\HP\Digital Imaging\bin\hpqscnvw.exe"="C:\​Program Files\HP\Digital Imaging\bin\hpqscnvw.exe:*:Ena​bled:hpqscnvw.exe"
 "C:\Program Files\HP\Digital Imaging\bin\hpqkygrp.exe"="C:\​Program Files\HP\Digital Imaging\bin\hpqkygrp.exe:*:Ena​bled:hpqkygrp.exe"
 "C:\Program Files\HP\Digital Imaging\bin\hpqCopy.exe"="C:\P​rogram Files\HP\Digital Imaging\bin\hpqCopy.exe:*:Enab​led:hpqcopy.exe"
 "C:\Program Files\HP\Digital Imaging\bin\hpfccopy.exe"="C:\​Program Files\HP\Digital Imaging\bin\hpfccopy.exe:*:Ena​bled:hpfccopy.exe"
 "C:\Program Files\HP\Digital Imaging\bin\hpzwiz01.exe"="C:\​Program Files\HP\Digital Imaging\bin\hpzwiz01.exe:*:Ena​bled:hpzwiz01.exe"
 "C:\Program Files\HP\Digital Imaging\Unload\HpqPhUnl.exe"="​C:\Program Files\HP\Digital Imaging\Unload\HpqPhUnl.exe:*:​Enabled:hpqphunl.exe"
 "C:\Program Files\HP\Digital Imaging\Unload\HpqDIA.exe"="C:​\Program Files\HP\Digital Imaging\Unload\HpqDIA.exe:*:En​abled:hpqdia.exe"
 "C:\Program Files\HP\Digital Imaging\bin\hpoews01.exe"="C:\​Program Files\HP\Digital Imaging\bin\hpoews01.exe:*:Ena​bled:hpoews01.exe"
 "C:\Program Files\AOL 9.0\waol.exe"="C:\Program Files\AOL 9.0\waol.exe:*:Enabled:AOL France"
 "C:\Program Files\ma-config.com\maconfserv​ice.exe"="C:\Program Files\ma-config.com\maconfserv​ice.exe:LocalSubNet:Enabled:ma​confservice"
 "C:\Program Files\Messenger\msmsgs.exe"="C​:\Program Files\Messenger\msmsgs.exe:*:E​nabled:Windows Messenger"
 "%windir%\Network Diagnostic\xpnetdiag.exe"="%wi​ndir%\Network Diagnostic\xpnetdiag.exe:*:Ena​bled:@xpsp3res.dll,-20000"
 "C:\Program Files\Windows Live\Messenger\wlcsdk.exe"="C:​\Program Files\Windows Live\Messenger\wlcsdk.exe:*:En​abled:Windows Live Call"
 "C:\Program Files\Windows Live\Messenger\msnmsgr.exe"="C​:\Program Files\Windows Live\Messenger\msnmsgr.exe:*:E​nabled:Windows Live Messenger"
 "C:\Program Files\Google\Google Earth\client\googleearth.exe"=​"C:\Program Files\Google\Google Earth\client\googleearth.exe:*​:Disabled:Google Earth"
 "C:\Program Files\eMule\emule.exe"="C:\Pro​gram Files\eMule\emule.exe:*:Disabl​ed:eMule"
 "C:\Program Files\Bonjour\mDNSResponder.ex​e"="C:\Program Files\Bonjour\mDNSResponder.ex​e:*:Enabled:Service Bonjour"
 "C:\Documents and Settings\HP_Administrateur.NOM​-FB9B15D2723\Mes documents\Téléchargements\Swee​tImSetup.exe"="C:\Documents and Settings\HP_Administrateur.NOM​-FB9B15D2723\Mes documents\Téléchargements\Swee​tImSetup.exe:*:Enabled:SweetIM Installer"
 "C:\Program Files\Fichiers communs\Apple\Apple Application Support\WebKit2WebProcess.exe"​="C:\Program Files\Fichiers communs\Apple\Apple Application Support\WebKit2WebProcess.exe:​*:Enabled:WebKit"
 "C:\Program Files\iTunes\iTunes.exe"="C:\P​rogram Files\iTunes\iTunes.exe:*:Enab​led:iTunes"
 "C:\WINDOWS\system32\muzapp.ex​e"="C:\WINDOWS\system32\muzapp​.exe:*:Enabled:MUZ AOD APP player"
 "C:\Documents and Settings\HP_Administrateur.NOM​-FB9B15D2723\Mes documents\Téléchargements\Swee​tImSetup(1).exe"="C:\Documents and Settings\HP_Administrateur.NOM​-FB9B15D2723\Mes documents\Téléchargements\Swee​tImSetup(1).exe:*:Enabled:Swee​tIM Installer"
 "C:\Documents and Settings\HP_Administrateur.NOM​-FB9B15D2723\Local Settings\Temp\SweetIMReinstall​\SweetImSetup(1).exe"="C:\Docu​ments and Settings\HP_Administrateur.NOM​-FB9B15D2723\Local Settings\Temp\SweetIMReinstall​\SweetImSetup(1).exe:*:Enabled​:SweetIM Installer"

 [HKEY_LOCAL_MACHINE\system\curr​entcontrolset\services\shareda​ccess\parameters\firewallpolic​y\domainprofile\authorizedappl​ications\list]
 "%windir%\system32\sessmgr.exe​"="%windir%\system32\sessmgr.e​xe:*:enabled:@xpsp2res.dll,-22​019"
 "%windir%\Network Diagnostic\xpnetdiag.exe"="%wi​ndir%\Network Diagnostic\xpnetdiag.exe:*:Ena​bled:@xpsp3res.dll,-20000"
 "C:\Program Files\Windows Live\Messenger\wlcsdk.exe"="C:​\Program Files\Windows Live\Messenger\wlcsdk.exe:*:En​abled:Windows Live Call"
 "C:\Program Files\Windows Live\Messenger\msnmsgr.exe"="C​:\Program Files\Windows Live\Messenger\msnmsgr.exe:*:E​nabled:Windows Live Messenger"

 [HKEY_LOCAL_MACHINE\SOFTWARE\Mi​crosoft\Windows NT\CurrentVersion\Drivers32]
 "midimapper"=midimap.dll
 "msacm.imaadpcm"=imaadp32.acm
 "msacm.msadpcm"=msadp32.acm
 "msacm.msg711"=msg711.acm
 "msacm.msgsm610"=msgsm32.acm
 "msacm.trspch"=tssoft32.acm
 "vidc.cvid"=iccvid.dll
 "VIDC.I420"=msh263.drv
 "vidc.iv31"=ir32_32.dll
 "vidc.iv32"=ir32_32.dll
 "vidc.iv41"=ir41_32.ax
 "VIDC.IYUV"=iyuv_32.dll
 "vidc.mrle"=msrle32.dll
 "vidc.msvc"=msvidc32.dll
 "VIDC.UYVY"=msyuv.dll
 "VIDC.YUY2"=msyuv.dll
 "VIDC.YVU9"=tsbyuv.dll
 "VIDC.YVYU"=msyuv.dll
 "wavemapper"=msacm32.drv
 "msacm.msg723"=msg723.acm
 "vidc.M263"=msh263.drv
 "vidc.M261"=msh261.drv
 "msacm.msaudio1"=msaud32.acm
 "msacm.sl_anet"=sl_anet.acm
 "msacm.iac2"=C:\WINDOWS\system​32\iac25_32.ax
 "vidc.iv50"=ir50_32.dll
 "msacm.l3acm"=C:\WINDOWS\syste​m32\l3codeca.acm
 "wave"=wdmaud.drv
 "midi"=wdmaud.drv
 "mixer"=wdmaud.drv
 "aux"=wdmaud.drv
 "MSVideo8"=VfWWDM32.dll
 "wave1"=wdmaud.drv
 "mixer1"=wdmaud.drv
 "vidc.LEAD"=LCODCCMP.DLL
 "msacm.siren"=sirenacm.dll

 ======List of files/folders created in the last 1 month======

 2012-01-23 17:35:42 ----D---- C:\Program Files\System Security Guard
 2012-01-22 12:25:42 ----D---- C:\Documents and Settings\HP_Administrateur.NOM​-FB9B15D2723\Application Data\NevoSoft
 2012-01-22 12:25:42 ----A---- C:\Documents and Settings\HP_Administrateur.NOM​-FB9B15D2723\Application Data\log.txt
 2012-01-17 13:48:09 ----D---- C:\Program Files\MyFree Codec
 2012-01-16 21:21:41 ----D---- C:\Documents and Settings\HP_Administrateur.NOM​-FB9B15D2723\Application Data\Realore_Whiterra Roads Of Rome 3
 2012-01-12 12:07:56 ----HDC---- C:\WINDOWS\$NtUninstallKB26465​24$
 2012-01-12 12:07:33 ----HDC---- C:\WINDOWS\$NtUninstallKB25855​42$
 2012-01-12 12:07:04 ----HDC---- C:\WINDOWS\$NtUninstallKB26318​13$
 2012-01-12 12:03:25 ----HDC---- C:\WINDOWS\$NtUninstallKB25984​79$
 2012-01-12 12:02:47 ----HDC---- C:\WINDOWS\$NtUninstallKB26033​81$
 2012-01-12 12:02:12 ----HDC---- C:\WINDOWS\$NtUninstallKB25841​46$
 2012-01-12 11:59:40 ----HDC---- C:\WINDOWS\$NtUninstallKB26282​59$
 2012-01-08 19:31:42 ----D---- C:\Documents and Settings\HP_Administrateur.NOM​-FB9B15D2723\Application Data\Temp
 2012-01-08 19:18:04 ----D---- C:\Temp
 2012-01-08 19:06:16 ----D---- C:\Documents and Settings\HP_Administrateur.NOM​-FB9B15D2723\Application Data\Samsung
 2012-01-08 19:01:03 ----A---- C:\WINDOWS\system32\drivers\ss​admdm.sys
 2012-01-08 19:01:03 ----A---- C:\WINDOWS\system32\drivers\ss​admdfl.sys
 2012-01-08 19:01:03 ----A---- C:\WINDOWS\system32\drivers\ss​adcmnt.sys
 2012-01-08 19:01:03 ----A---- C:\WINDOWS\system32\drivers\ss​adcm.sys
 2012-01-08 19:01:02 ----A---- C:\WINDOWS\system32\drivers\ss​adwhnt.sys
 2012-01-08 19:01:02 ----A---- C:\WINDOWS\system32\drivers\ss​adwh.sys
 2012-01-08 19:01:02 ----A---- C:\WINDOWS\system32\drivers\ss​adbus.sys
 2012-01-08 18:56:07 ----A---- C:\WINDOWS\system32\Redemption​.dll
 2012-01-08 18:51:38 ----D---- C:\Program Files\MarkAny
 2012-01-08 18:51:38 ----A---- C:\WINDOWS\system32\drivers\dg​derdrv.sys
 2012-01-08 18:51:35 ----A---- C:\WINDOWS\system32\DIFxAPI.dl​l
 2012-01-08 18:51:34 ----A---- C:\WINDOWS\system32\dgderapi.d​ll
 2012-01-08 18:47:57 ----D---- C:\Program Files\Samsung
 2012-01-08 18:47:56 ----D---- C:\Documents and Settings\All Users\Application Data\Samsung
 2011-12-31 10:11:21 ----D---- C:\Documents and Settings\HP_Administrateur.NOM​-FB9B15D2723\Application Data\Help
 2011-12-28 09:59:24 ----A---- C:\WINDOWS\system32\javaws.exe
 2011-12-28 09:59:24 ----A---- C:\WINDOWS\system32\javaw.exe
 2011-12-28 09:59:24 ----A---- C:\WINDOWS\system32\java.exe

 ======List of files/folders modified in the last 1 month======

 2012-01-24 18:49:41 ----SD---- C:\WINDOWS\Tasks
 2012-01-24 18:48:44 ----D---- C:\WINDOWS\Prefetch
 2012-01-24 18:48:39 ----D---- C:\WINDOWS\temp
 2012-01-24 18:48:36 ----D---- C:\Program Files\trend micro
 2012-01-24 17:20:12 ----D---- C:\Documents and Settings\All Users\Application Data\Wizard101(FR)
 2012-01-24 08:45:40 ----D---- C:\WINDOWS\Registration
 2012-01-24 08:45:32 ----D---- C:\WINDOWS
 2012-01-24 08:43:28 ----D---- C:\WINDOWS\system32\Lang
 2012-01-24 08:43:00 ----D---- C:\WINDOWS\system32\CatRoot2
 2012-01-23 23:23:22 ----A---- C:\WINDOWS\SchedLgU.Txt
 2012-01-23 19:30:34 ----SHD---- C:\WINDOWS\Installer
 2012-01-23 18:21:23 ----D---- C:\Program Files
 2012-01-23 16:40:51 ----SHD---- C:\System Volume Information
 2012-01-23 16:40:02 ----D---- C:\WINDOWS\repair
 2012-01-23 12:41:44 ----D---- C:\Zylom Games
 2012-01-23 12:41:37 ----D---- C:\Program Files\RealArcade
 2012-01-23 12:41:37 ----D---- C:\Program Files\CCleaner
 2012-01-23 11:07:47 ----D---- C:\WINDOWS\system32\drivers
 2012-01-22 18:39:26 ----D---- C:\WINDOWS\system32
 2012-01-22 12:02:03 ----D---- C:\Program Files\Wakfu
 2012-01-21 11:23:10 ----D---- C:\Program Files\Malwarebytes' Anti-Malware
 2012-01-20 18:10:41 ----D---- C:\Documents and Settings\All Users\Application Data\Spybot - Search & Destroy
 2012-01-16 17:31:39 ----D---- C:\Documents and Settings\HP_Administrateur.NOM​-FB9B15D2723\Application Data\Friday's games
 2012-01-16 13:54:01 ----D---- C:\WINDOWS\Debug
 2012-01-12 12:35:07 ----HD---- C:\WINDOWS\inf
 2012-01-12 12:07:59 ----RSHD---- C:\WINDOWS\system32\dllcache
 2012-01-12 12:03:47 ----A---- C:\WINDOWS\system32\MRT.exe
 2012-01-12 12:02:42 ----HD---- C:\WINDOWS\$hf_mig$
 2012-01-12 11:59:43 ----AD---- C:\WINDOWS\ehome
 2012-01-11 14:36:28 ----SD---- C:\Documents and Settings\HP_Administrateur.NOM​-FB9B15D2723\Application Data\Microsoft
 2012-01-11 09:20:45 ----RSD---- C:\WINDOWS\assembly
 2012-01-11 09:20:45 ----D---- C:\WINDOWS\Microsoft.NET
 2012-01-10 23:22:44 ----A---- C:\WINDOWS\system32\PerfString​Backup.INI
 2012-01-10 23:22:20 ----D---- C:\WINDOWS\WinSxS
 2012-01-09 18:52:18 ----D---- C:\Program Files\Mozilla Firefox
 2012-01-08 19:01:57 ----DC---- C:\WINDOWS\system32\DRVSTORE
 2012-01-08 18:50:29 ----HD---- C:\Program Files\InstallShield Installation Information
 2011-12-31 10:12:04 ----D---- C:\WINDOWS\Help
 2011-12-28 09:59:19 ----D---- C:\Program Files\Java

 ======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

 R0 bb-run;Promise driver accelerator; C:\WINDOWS\system32\DRIVERS\bb​-run.sys [2003-11-05 17408]
 R0 ftsata2;ftsata2; C:\WINDOWS\system32\DRIVERS\ft​sata2.sys [2005-06-30 175104]
 R0 GDBehave;GDBehave; C:\WINDOWS\system32\drivers\GD​Behave.sys [2011-11-22 40440]
 R0 iaStor;Intel RAID Controller; C:\WINDOWS\system32\DRIVERS\ia​Stor.sys [2005-06-17 872064]
 R0 ohci1394;Contrôleur hôte compatible IEE 1394 VIA OHCI; C:\WINDOWS\system32\DRIVERS\oh​ci1394.sys [2008-04-13 61696]
 R0 PxHelp20;PxHelp20; C:\WINDOWS\System32\Drivers\Px​Help20.sys [2005-04-25 20640]
 R0 WudfPf;Windows Driver Foundation - User-mode Driver Framework Platform Driver; C:\WINDOWS\system32\DRIVERS\Wu​dfPf.sys [2006-09-28 77568]
 R1 cdrbsdrv;cdrbsdrv; C:\WINDOWS\system32\drivers\cd​rbsdrv.sys [2006-02-20 33408]
 R1 GDMnIcpt;GDMnIcpt; \??\C:\WINDOWS\system32\driver​s\MiniIcpt.sys []
 R1 GRD;G Data Rootkit Detector Driver; \??\C:\WINDOWS\system32\driver​s\GRD.sys []
 R1 HookCentre;HookCentre; \??\C:\WINDOWS\system32\driver​s\HookCentre.sys []
 R1 intelppm;Pilote de processeur Intel; C:\WINDOWS\system32\DRIVERS\in​telppm.sys [2008-04-14 40576]
 R2 acedrv11;acedrv11; \??\C:\WINDOWS\system32\driver​s\acedrv11.sys []
 R2 atksgt;atksgt; C:\WINDOWS\system32\DRIVERS\at​ksgt.sys [2010-06-22 278984]
 R2 GDTdiInterceptor;GDTdiIntercep​tor; \??\C:\WINDOWS\system32\driver​s\GDTdiIcpt.sys []
 R2 lirsgt;lirsgt; C:\WINDOWS\system32\DRIVERS\li​rsgt.sys [2010-06-22 25416]
 R3 3xHybrid;3xHybrid service; C:\WINDOWS\system32\DRIVERS\3x​Hybrid.sys [2005-10-03 2799488]
 R3 Afc;PPdus ASPI Shell; C:\WINDOWS\system32\drivers\Af​c.sys [2005-02-23 11776]
 R3 aracpi;aracpi; C:\WINDOWS\system32\DRIVERS\ar​acpi.sys [2005-08-03 22784]
 R3 arhidfltr;MS Ar HID Filter Driver; C:\WINDOWS\system32\DRIVERS\ar​hidfltr.sys [2005-08-03 19200]
 R3 arkbcfltr;Microsoft PS2 Keyboard Filter; C:\WINDOWS\system32\DRIVERS\ar​kbcfltr.sys [2005-08-03 5376]
 R3 armoucfltr;Microsoft PS2 Mouse Filter; C:\WINDOWS\system32\DRIVERS\ar​moucfltr.sys [2005-08-03 4992]
 R3 Arp1394;Protocole client ARP 1394; C:\WINDOWS\system32\DRIVERS\ar​p1394.sys [2008-04-13 60800]
 R3 ARPolicy;ARPolicy; C:\WINDOWS\system32\DRIVERS\ar​policy.sys [2005-08-03 10112]
 R3 ati2mtag;ati2mtag; C:\WINDOWS\system32\DRIVERS\at​i2mtag.sys [2008-12-01 3452928]
 R3 GearAspiWDM;GEARAspiWDM; C:\WINDOWS\System32\drivers\GE​ARAspiWDM.sys [2009-05-18 26600]
 R3 HDAudBus;Pilote de bus Microsoft UAA pour High Definition Audio; C:\WINDOWS\system32\DRIVERS\HD​AudBus.sys [2008-04-13 144384]
 R3 HidUsb;Pilote de classe HID Microsoft; C:\WINDOWS\system32\DRIVERS\hi​dusb.sys [2008-04-13 10368]
 R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\WINDOWS\system32\drivers\Rt​kHDAud.sys [2005-10-18 4034048]
 R3 mouhid;Pilote HID de souris; C:\WINDOWS\system32\DRIVERS\mo​uhid.sys [2001-08-23 12288]
 R3 NIC1394;Pilote réseau 1394; C:\WINDOWS\system32\DRIVERS\ni​c1394.sys [2008-04-13 61824]
 R3 Ps2;PS2; C:\WINDOWS\system32\DRIVERS\PS​2.sys [2005-07-04 26624]
 R3 RTL8023xp;Realtek 10/100/1000 NIC Family all in one NDIS XP Driver; C:\WINDOWS\system32\DRIVERS\Rt​lnicxp.sys [2005-03-04 74496]
 R3 usbccgp;Pilote parent générique USB Microsoft; C:\WINDOWS\system32\DRIVERS\us​bccgp.sys [2008-04-13 32128]
 R3 usbstor;Pilote de stockage de masse USB; C:\WINDOWS\system32\DRIVERS\US​BSTOR.SYS [2008-04-13 26368]
 S2 zumbus;Zune Bus Enumerator Driver; C:\WINDOWS\system32\DRIVERS\zu​mbus.sys []
 S3 CCDECODE;Décodeur sous-titre fermé; C:\WINDOWS\system32\DRIVERS\CC​DECODE.sys [2008-04-13 17024]
 S3 driverhardwarev2;driverhardwar​ev2; \??\C:\Program Files\ma-config.com\Drivers\dr​iverhardwarev2.sys []
 S3 HPZid412;IEEE-1284.4 Driver HPZid412; C:\WINDOWS\system32\DRIVERS\HP​Zid412.sys [2006-04-13 49664]
 S3 HPZipr12;Print Class Driver for IEEE-1284.4 HPZipr12; C:\WINDOWS\system32\DRIVERS\HP​Zipr12.sys [2006-04-13 16496]
 S3 HPZius12;USB to IEEE-1284.4 Translation Driver HPZius12; C:\WINDOWS\system32\DRIVERS\HP​Zius12.sys [2006-04-13 21568]
 S3 mdf15;mdf15; \??\C:\Program Files\Clarus\Samsung SecretZone\mdf15.sys []
 S3 MHNDRV;Pilote MHN; C:\WINDOWS\system32\DRIVERS\mh​ndrv.sys [2004-08-10 11008]
 S3 MPE;Filtre BDA MPE; C:\WINDOWS\system32\DRIVERS\MP​E.sys [2008-04-13 15232]
 S3 MSTEE;Convertisseur en T/site-à-site de répartition Microsoft; C:\WINDOWS\system32\drivers\MS​TEE.sys [2008-04-13 5504]
 S3 mvd21;mvd21; \??\C:\Program Files\Clarus\Samsung SecretZone\mvd21.sys []
 S3 NABTSFEC;Codec NABTS/FEC VBI; C:\WINDOWS\system32\DRIVERS\NA​BTSFEC.sys [2008-04-13 85248]
 S3 NdisIP;Connection TV/vidéo Microsoft; C:\WINDOWS\system32\DRIVERS\Nd​isIP.sys [2008-04-13 10880]
 S3 nv;nv; C:\WINDOWS\system32\DRIVERS\nv​4_mini.sys [2005-08-02 3199328]
 S3 RimUsb;Téléphone intelligent BlackBerry ; C:\WINDOWS\System32\Drivers\Ri​mUsb.sys [2011-03-18 22784]
 S3 rtl8139;Pilote NT de carte Realtek PCI Fast Ethernet à base RTL8139(A/B/C); C:\WINDOWS\system32\DRIVERS\RT​L8139.SYS [2004-08-04 20992]
 S3 SLIP;Détrameur décalage BDA; C:\WINDOWS\system32\DRIVERS\SL​IP.sys [2008-04-13 11136]
 S3 ssadbus;SAMSUNG Android USB Composite Device driver (WDM); C:\WINDOWS\system32\DRIVERS\ss​adbus.sys [2011-12-08 121064]
 S3 ssadmdfl;SAMSUNG Android USB Modem (Filter); C:\WINDOWS\system32\DRIVERS\ss​admdfl.sys [2011-12-08 12776]
 S3 ssadmdm;SAMSUNG Android USB Modem Drivers; C:\WINDOWS\system32\DRIVERS\ss​admdm.sys [2011-12-08 136808]
 S3 streamip;BDA IPSink; C:\WINDOWS\system32\DRIVERS\St​reamIP.sys [2008-04-13 15232]
 S3 USBAAPL;Apple Mobile USB Driver; C:\WINDOWS\System32\Drivers\us​baapl.sys [2011-08-02 42496]
 S3 usbprint;Classe d'imprimantes USB Microsoft; C:\WINDOWS\system32\DRIVERS\us​bprint.sys [2008-04-13 25856]
 S3 usbscan;Pilote de scanneur USB; C:\WINDOWS\system32\DRIVERS\us​bscan.sys [2008-04-13 15104]
 S3 usbuhci;Pilote miniport de contrôleur hôte universel USB Microsoft; C:\WINDOWS\system32\DRIVERS\us​buhci.sys [2008-04-13 20608]
 S3 Wdf01000;Kernel Mode Driver Frameworks service; C:\WINDOWS\System32\Drivers\wd​f01000.sys [2009-07-14 444136]
 S3 WpdUsb;WpdUsb; C:\WINDOWS\system32\DRIVERS\wp​dusb.sys [2006-10-18 38528]
 S3 WSTCODEC;Codec Teletext standard; C:\WINDOWS\system32\DRIVERS\WS​TCODEC.SYS [2008-04-13 19200]
 S3 WudfRd;Windows Driver Foundation - User-mode Driver Framework Reflector; C:\WINDOWS\system32\DRIVERS\wu​dfrd.sys [2006-09-28 82944]

 ======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

 R2 Apple Mobile Device;Apple Mobile Device; C:\Program Files\Fichiers communs\Apple\Mobile Device Support\AppleMobileDeviceServi​ce.exe [2011-10-24 55144]
 R2 ARSVC;ARSVC; C:\WINDOWS\arservice.exe [2005-08-03 58880]
 R2 Ati HotKey Poller;Ati HotKey Poller; C:\WINDOWS\system32\Ati2evxx.e​xe [2008-12-01 598016]
 R2 AVKProxy;G Data AntiVirus Proxy; C:\Program Files\Fichiers communs\G DATA\AVKProxy\AVKProxy.exe [2011-11-08 1501704]
 R2 AVKService;Planificateur G Data; C:\Program Files\G Data\AntiVirus\AVK\AVKService.​exe [2011-09-22 464392]
 R2 AVKWCtl;G Data Gardien; C:\Program Files\G Data\AntiVirus\AVK\AVKWCtl.exe [2011-10-28 1554184]
 R2 bgsvcgen;B's Recorder GOLD Library General Service; C:\WINDOWS\system32\bgsvcgen.e​xe [2007-06-15 145504]
 R2 Bonjour Service;Service Bonjour; C:\Program Files\Bonjour\mDNSResponder.ex​e [2011-08-30 390504]
 R2 ehRecvr;Media Center Receiver Service; C:\WINDOWS\eHome\ehRecvr.exe [2006-10-09 237568]
 R2 ehSched;Service de planification Media Center; C:\WINDOWS\eHome\ehSched.exe [2005-08-05 103424]
 R2 JavaQuickStarterService;Java Quick Starter; C:\Program Files\Java\jre6\bin\jqs.exe [2011-11-10 153376]
 R2 McrdSvc;Media Center Extender Service; C:\WINDOWS\ehome\mcrdsvc.exe [2005-08-05 99328]
 R2 WMPNetworkSvc;Service Partage réseau du Lecteur Windows Media; C:\Program Files\Windows Media Player\WMPNetwk.exe [2006-11-03 918016]
 R2 WudfSvc;Windows Driver Foundation - User-mode Driver Framework; C:\WINDOWS\system32\svchost.ex​e [2008-04-14 14336]
 R3 GDScan;G Data Scanner; C:\Program Files\Fichiers communs\G DATA\GDScan\GDScan.exe [2011-10-28 457536]
 R3 iPod Service;Service de l’iPod; C:\Program Files\iPod\bin\iPodService.exe [2011-12-08 821608]
 R3 WPFFontCache_v0400;Windows Presentation Foundation Font Cache 4.0.0.0; C:\WINDOWS\Microsoft.NET\Frame​work\v4.0.30319\WPF\WPFFontCac​he_v0400.exe [2010-03-18 753504]
 S0 Pml Driver HPZ12;Pml Driver HPZ12; C:\WINDOWS\system32\HPZipm12.e​xe [2004-09-29 69632]
 S2 ATI Smart;ATI Smart; C:\WINDOWS\system32\ati2sgag.e​xe [2008-12-01 593920]
 S2 clr_optimization_v4.0.30319_32​;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\WINDOWS\Microsoft.NET\Frame​work\v4.0.30319\mscorsvw.exe [2010-03-18 130384]
 S2 NVSvc;NVIDIA Display Driver Service; C:\WINDOWS\system32\nvsvc32.ex​e [2005-08-02 127043]
 S3 aspnet_state;ASP.NET State Service; C:\WINDOWS\Microsoft.NET\Frame​work\v4.0.30319\aspnet_state.e​xe [2010-03-18 35160]
 S3 Boonty Games;Boonty Games; C:\Program Files\Fichiers communs\BOONTY Shared\Service\Boonty.exe [2006-03-25 69120]
 S3 Fax;Fax; C:\WINDOWS\system32\fxssvc.exe [2008-04-14 268800]
 S3 gusvc;Google Software Updater; C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.e​xe [2010-11-17 182768]
 S3 IDriverT;InstallDriver Table Manager; C:\Program Files\Fichiers communs\InstallShield\Driver\1​050\Intel 32\IDriverT.exe [2004-10-22 73728]
 S3 LPDSVC;Serveur d'impression TCP/IP; C:\WINDOWS\system32\tcpsvcs.ex​e [2004-08-10 19456]
 S3 maconfservice;Ma-Config Service; C:\Program Files\ma-config.com\maconfserv​ice.exe [2010-05-11 271728]
 S3 MHN;MHN; C:\WINDOWS\System32\svchost.ex​e [2008-04-14 14336]
 S4 NetTcpPortSharing;Net.Tcp Port Sharing Service; C:\WINDOWS\Microsoft.NET\Frame​work\v4.0.30319\SMSvcHost.exe [2010-03-18 124240]

 -----------------EOF----------​-------

Imagine ...
Profil : Equipe sécurité
kmisol
Célèbre sur tout le forum (de 30 000 à 99 999 messages postés)
  1. Posté le 24/01/2012 à 19:19:44  
  1. answer
  1. Prévenir les modérateurs en cas d'abus
 
Hello,

 Télécharge AdwCleaner (by Xplode) et enregistre-le sur le bureau.

 Puis, clique sur l'icône AdwCleaner qui est sur le bureau.

 Choisis l'option "Recherche".

 Patiente le temps du scan ...

 Une fois le scan achevé, le rapport s'affiche.

 Poste (copie colle) celui-ci dans ta prochaine réponse.

vieux motard que jamais
remi-fasol
Sur la bonne voie (de 100 à 499 messages postés)
  1. Posté le 24/01/2012 à 19:26:58  
  1. answer
  1. Prévenir les modérateurs en cas d'abus
 
# AdwCleaner v1.407 - Rapport créé le 24/01/2012 à 19:26:13
 # Mis à jour le 18/01/2012 par Xplode
 # Système d'exploitation : Microsoft Windows XP Service Pack 3 (32 bits)
 # Nom d'utilisateur : HP_Administrateur - NOM-FB9B15D2723 (Administrateur)
 # Exécuté depuis : C:\Documents and Settings\HP_Administrateur.NOM​-FB9B15D2723\Mes documents\Téléchargements\adwc​leaner.exe
 # Option [Recherche]


 ***** [Services] *****


 ***** [Fichiers / Dossiers] *****

 Dossier Présent : C:\Documents and Settings\All Users\Application Data\Viewpoint
 Dossier Présent : C:\Documents and Settings\HP_Administrateur.NOM​-FB9B15D2723\Application Data\Mozilla\Extensions\{ec803​0f7-c20a-464f-9b0e-13a3a9e9738​4}
 Fichier Présent : C:\Program Files\Mozilla FireFox\Components\AskSearch.j​s

 ***** [Registre] *****

 Clé Présente : HKCU\Software\Conduit
 Clé Présente : HKCU\Software\SweetIm
 Clé Présente : HKLM\SOFTWARE\Conduit
 Clé Présente : HKLM\SOFTWARE\Classes\AppID\So​ftwareUpdate.exe
 Clé Présente : HKLM\SOFTWARE\Microsoft\RFC115​6Agent
 Clé Présente : HKLM\SOFTWARE\Classes\TypeLib\​{2D5E2D34-BED5-4B9F-9793-A31E2​6E6806E}
 Clé Présente : HKCU\Software\Microsoft\Window​s\CurrentVersion\Ext\Stats\{88​56F961-340A-11D0-A96B-00C04FD7​05A2}
 Clé Présente : HKLM\SOFTWARE\Microsoft\Window​s NT\CurrentVersion\Image File Execution Options\setup.exe

 ***** [Navigateurs] *****

 -\\ Internet Explorer v8.0.6001.18702

 [OK] Le registre ne contient aucune entrée illégitime.

 -\\ Mozilla Firefox v9.0.1 (fr)

 Profil : 38lmwea1.default
 Fichier : C:\Documents and Settings\HP_Administrateur.NOM​-FB9B15D2723\Application Data\Mozilla\Firefox\Profiles\​38lmwea1.default\prefs.js

 [OK] Le fichier ne contient aucune entrée illégitime.

 -\\ Google Chrome v [Impossible d'obtenir la version]

 Fichier : C:\Documents and Settings\HP_Administrateur.NOM​-FB9B15D2723\Local Settings\Application Data\Google\Chrome\User Data\Default\Preferences

 [OK] Le fichier ne contient aucune entrée illégitime.

 *************************

 AdwCleaner[R1].txt - [2020 octets] - [24/01/2012 19:26:13]

 ########## EOF - C:\AdwCleaner[R1].txt - [2148 octets] ##########

 

kmisol a écrit :

Hello,

 Télécharge AdwCleaner (by Xplode) et enregistre-le sur le bureau.

 Puis, clique sur l'icône AdwCleaner qui est sur le bureau.

 Choisis l'option "Recherche".

 Patiente le temps du scan ...

 Une fois le scan achevé, le rapport s'affiche.

 Poste (copie colle) celui-ci dans ta prochaine réponse.

 



(Publicité)
Imagine ...
Profil : Equipe sécurité
kmisol
Célèbre sur tout le forum (de 30 000 à 99 999 messages postés)
  1. Posté le 24/01/2012 à 19:34:30  
  1. answer
  1. Prévenir les modérateurs en cas d'abus
 
...

 OK.

 Fais ce qui suit, dans l'ordre (merci de respecter cet ordre) :

 1/ Relance AdwCleaner et choisis l’option « Suppression ».

 Poste le rapport.

 -----
 2/ Télécharge AD-R (de Cyrildu17 / C_XX) sur ton Bureau.

 !! Déconnecte-toi du net et ferme toutes applications en cours !!

 Double-clique sur le programme d'installation ; laisse-le
 s’installer par défaut (C:\Program files).

 Double-clique sur l'icône AD-Remover située sur ton Bureau.

 Au menu principal, choisis l'option « Nettoyer ».

 L’outil débute le nettoyage … Laisse-le travailler !

 Le scan achevé, une fenêtre va s’afficher.
 Poste (copie-colle) le rapport qui apparaît à la fin.

 (tu trouveras aussi le rapport sous C:\Ad-report(date).log)

 Note : "Process.exe", une composante de l'outil peut être
 détecté par certains antivirus comme une infection ; donc, ne pas en tenir compte : il s'agit d'un faux positif.

vieux motard que jamais
remi-fasol
Sur la bonne voie (de 100 à 499 messages postés)
  1. Posté le 24/01/2012 à 20:06:31  
  1. answer
  1. Prévenir les modérateurs en cas d'abus
 

 

kmisol a écrit :

...

 OK.

 Fais ce qui suit, dans l'ordre (merci de respecter cet ordre) :

 1/ Relance AdwCleaner et choisis l’option « Suppression ».

 Poste le rapport.

 -----
 2/ Télécharge AD-R (de Cyrildu17 / C_XX) sur ton Bureau.

 !! Déconnecte-toi du net et ferme toutes applications en cours !!

 Double-clique sur le programme d'installation ; laisse-le
 s’installer par défaut (C:\Program files).

 Double-clique sur l'icône AD-Remover située sur ton Bureau.

 Au menu principal, choisis l'option « Nettoyer ».

 L’outil débute le nettoyage … Laisse-le travailler !

 Le scan achevé, une fenêtre va s’afficher.
 Poste (copie-colle) le rapport qui apparaît à la fin.

 (tu trouveras aussi le rapport sous C:\Ad-report(date).log)

 Note : "Process.exe", une composante de l'outil peut être
 détecté par certains antivirus comme une infection ; donc, ne pas en tenir compte : il s'agit d'un faux positif.

 



 # AdwCleaner v1.407 - Rapport créé le 24/01/2012 à 19:54:12
 # Mis à jour le 18/01/2012 par Xplode
 # Système d'exploitation : Microsoft Windows XP Service Pack 3 (32 bits)
 # Nom d'utilisateur : HP_Administrateur - NOM-FB9B15D2723 (Administrateur)
 # Exécuté depuis : C:\Documents and Settings\HP_Administrateur.NOM​-FB9B15D2723\Mes documents\Téléchargements\adwc​leaner(1).exe
 # Option [Suppression]


 ***** [Services] *****


 ***** [Fichiers / Dossiers] *****

 Dossier Supprimé : C:\Documents and Settings\All Users\Application Data\Viewpoint
 Dossier Supprimé : C:\Documents and Settings\HP_Administrateur.NOM​-FB9B15D2723\Application Data\Mozilla\Extensions\{ec803​0f7-c20a-464f-9b0e-13a3a9e9738​4}
 Fichier Supprimé : C:\Program Files\Mozilla FireFox\Components\AskSearch.j​s

 ***** [Registre] *****

 Clé Supprimée : HKCU\Software\Conduit
 Clé Supprimée : HKCU\Software\SweetIm
 Clé Supprimée : HKLM\SOFTWARE\Conduit
 Clé Supprimée : HKLM\SOFTWARE\Classes\AppID\So​ftwareUpdate.exe
 Clé Supprimée : HKLM\SOFTWARE\Microsoft\RFC115​6Agent
 Clé Supprimée : HKLM\SOFTWARE\Classes\TypeLib\​{2D5E2D34-BED5-4B9F-9793-A31E2​6E6806E}
 Clé Supprimée : HKCU\Software\Microsoft\Window​s\CurrentVersion\Ext\Stats\{88​56F961-340A-11D0-A96B-00C04FD7​05A2}
 Clé Supprimée : HKLM\SOFTWARE\Microsoft\Window​s NT\CurrentVersion\Image File Execution Options\setup.exe

 ***** [Navigateurs] *****

 -\\ Internet Explorer v8.0.6001.18702

 [OK] Le registre ne contient aucune entrée illégitime.

 -\\ Mozilla Firefox v9.0.1 (fr)

 Profil : 38lmwea1.default
 Fichier : C:\Documents and Settings\HP_Administrateur.NOM​-FB9B15D2723\Application Data\Mozilla\Firefox\Profiles\​38lmwea1.default\prefs.js

 [OK] Le fichier ne contient aucune entrée illégitime.

 -\\ Google Chrome v [Impossible d'obtenir la version]

 Fichier : C:\Documents and Settings\HP_Administrateur.NOM​-FB9B15D2723\Local Settings\Application Data\Google\Chrome\User Data\Default\Preferences

 [OK] Le fichier ne contient aucune entrée illégitime.

 *************************

 AdwCleaner[R1].txt - [2149 octets] - [24/01/2012 19:26:13]
 AdwCleaner[S1].txt - [2096 octets] - [24/01/2012 19:54:12]

 *************************

 Dossier Temporaire : 20 dossier(s) et 368 fichier(s) supprimés

 ########## EOF - C:\AdwCleaner[S1].txt - [2319 octets] ##########

Imagine ...
Profil : Equipe sécurité
kmisol
Célèbre sur tout le forum (de 30 000 à 99 999 messages postés)
  1. Posté le 24/01/2012 à 21:27:02  
  1. answer
  1. Prévenir les modérateurs en cas d'abus
 
...

 Concernant la présence de mes messages dans tes ... réponses !

 http://forum.telecharger.01net [...] ges-1.html

 Merci de ta compréhension.

(Publicité)
vieux motard que jamais
remi-fasol
Sur la bonne voie (de 100 à 499 messages postés)
  1. Posté le 24/01/2012 à 21:57:31  
  1. answer
  1. Prévenir les modérateurs en cas d'abus
 
Sorry
 ======= RAPPORT D'AD-REMOVER 2.0.0.2,G | UNIQUEMENT XP/VISTA/7 =======

 Mis à jour par TeamXscript le 12/04/11
 Contact: AdRemover[DOT]contact[AT]gmail[DOT]com
 Site web: http://www.teamxscript.org

 C:\Program Files\Ad-Remover\main.exe (CLEAN [1]) -> Lancé à 21:38:46 le 24/01/2012, Mode normal

 Microsoft Windows XP Professionnel Service Pack 3 (X86)
 HP_Administrateur@NOM-FB9B15D2​723 ( )
 
 ============== ACTION(S) ==============


 Dossier supprimé: C:\Documents and Settings\All Users\Application Data\Trymedia
 Dossier supprimé: C:\Program Files\Trymedia

 (!) -- Fichiers temporaires supprimés.


 Clé supprimée: HKLM\Software\Classes\ASAPCom.​ASAPClass
 Clé supprimée: HKLM\Software\Classes\ASAPCom.​ASAPClass.1
 Clé supprimée: HKLM\Software\Classes\ASAPCom.​ASAPEnvelope
 Clé supprimée: HKLM\Software\Classes\ASAPCom.​ASAPEnvelope.1
 Clé supprimée: HKLM\Software\Classes\ASAPCom.​ASAPMain
 Clé supprimée: HKLM\Software\Classes\ASAPCom.​ASAPMain.1
 Clé supprimée: HKLM\Software\Classes\ASAPCom.​ASAPMessage
 Clé supprimée: HKLM\Software\Classes\ASAPCom.​ASAPMessage.1
 Clé supprimée: HKLM\Software\Classes\ASAPCom.​ASAPRecipients
 Clé supprimée: HKLM\Software\Classes\ASAPCom.​ASAPRecipients.1
 Clé supprimée: HKLM\Software\Trymedia Systems
 Clé supprimée: HKCU\Software\PopCap
 Clé supprimée: HKLM\Software\DigitalVolcano\O​penCandy


 ============== SCAN ADDITIONNEL ==============

 **** Mozilla Firefox Version [9.0.1 (fr)] ****

 Plugins\npagent.dll (?)
 Plugins\npijjiautoinstallplugi​nff.dll (NHN USA Inc.)
 Plugins\npijjiFFPlugin1.dll (NHN USA Inc. )
 HKLM_MozillaPlugins\@zylom.com​/ZylomGamesPlayer (x)
 HKLM_MozillaPlugins\Adobe Reader (x)
 Searchplugins\bing.xml (    hxxp://www.bing.com/search)
 Searchplugins\ssg_igeared.xml (hxxp://search.igeared.com/dis​patcher.aspx?i=67&tp=chrom​e&q={searchTerms}/)
 Components\browsercomps.dll (Mozilla Foundation)
 Extensions\talkback@mozilla(2)​.org (Talkback)
 Extensions - "{3112ca9c-de6d-4884-a869-9855​de68056c}" (?)
 Extensions\{3112ca9c-de6d-4884​-a869-9855de68056c}(2) (Google Toolbar for Firefox)
 Extensions\{906305f7-aafc-45e9​-8bbd-941950a84dad} (G Data BankGuard)
 Extensions\{9AA46F4F-4DC7-4c06​-97AF-5035170633FE} (G Data Filtre Internet)

 -- C:\Documents and Settings\HP_Administrateur.NOM​-FB9B15D2723\Application Data\Mozilla\FireFox\Profiles\​38lmwea1.default --
 Prefs.js - browser.search.defaultenginena​me, Protected Search
 Prefs.js - browser.search.selectedEngine, Protected Search
 Prefs.js - browser.startup.homepage, hxxp://www.google.fr/
 Prefs.js - browser.startup.homepage_overr​ide.buildID, 20111220165912
 Prefs.js - browser.startup.homepage_overr​ide.mstone, rv:9.0.1
 Prefs.js - keyword.URL, hxxp://search.igeared.com/disp​atcher.aspx?i=67&tp=ab&q=

 ==============================​==========

 **** Internet Explorer Version [8.0.6001.18702] ****

 HKCU_Main|Default_Page_URL - hxxp://www.microsoft.com/isapi​/redir.dll?prd=ie&pver=6&ar=ms​nhome
 HKCU_Main|Default_Search_URL - hxxp://www.microsoft.com/isapi​/redir.dll?prd=ie&ar=iesearch
 HKCU_Main|Search bar - hxxp://go.microsoft.com/fwlink​/?linkid=54896
 HKCU_Main|Start Page - hxxp://fr.msn.com/
 HKLM_Main|Default_Page_URL - hxxp://go.microsoft.com/fwlink​/?LinkId=54896
 HKLM_Main|Default_Search_URL - hxxp://www.microsoft.com/isapi​/redir.dll?prd=ie&ar=iesearch
 HKLM_Main|Search bar - hxxp://search.msn.com/spbasic.​htm
 HKLM_Main|Search Page - hxxp://www.microsoft.com/isapi​/redir.dll?prd=ie&ar=iesearch
 HKLM_Main|Start Page - hxxp://fr.msn.com/
 HKCU_SearchScopes\{191EA421-96​4E-4AEB-B7A3-1D75FE1AA94C} - "Protected Search" (hxxp://search.igeared.com/dis​patcher.aspx?i=67&tp=chrome&q=​{searchTerms})
 HKCU_Toolbar\ShellBrowser|{42C​DD1BF-3FFB-4238-8AD1-7859DF00B​1D6} (x)
 HKLM_Toolbar|{0124123D-61B4-45​6f-AF86-78C53A0790C5} (C:\Program Files\G Data\AntiVirus\WebFilter\AvkWe​bIE.dll)
 HKLM_Toolbar|{2793FB58-DCE3-4A​83-97DE-7208CAD0341C} (x)
 HKLM_ElevationPolicy\{B2321D2F​-1154-4d97-AD3E-2FE0BAE2897B} - C:\Program Files\SFR\Kit\9launch.exe (SFR)
 HKLM_ElevationPolicy\{E5A16ED5​-1288-4bc3-8F60-48E32854CEF6} - C:\Program Files\Fichiers communs\Research In Motion\USB Drivers\BbDevMgr.exe (Research In Motion Limited)
 HKLM_Extensions\{E2D4D26B-0180​-43a4-B05F-462D6D54C789} - "Aide à la connexion" (C:\WINDOWS\PCHEALTH\HELPCTR\V​endors\CN=Hewlett-Packard,L=Cu​pertino,S=Ca,C=US\IEButton\con​n_support.ico)
 HKLM_Extensions\{e2e2dd38-d088​-4134-82b7-f2ba38496583} - "?" (?)
 BHO\{0F6E720A-1A6B-40E1-A294-1​D4D19F156C8} - "Objet d'aide à la navigation SFR" (C:\Program Files\SFR\Kit\SFRNavErrorHelpe​r.dll)
 BHO\{BA3295CF-17ED-4F49-9E95-D​999A0ADBFDC} - "G Data BankGuard" (C:\Program Files\Fichiers communs\G Data\AVKProxy\BanksafeBHO.dll)

 ==============================​==========

 C:\Program Files\Ad-Remover\Quarantine: 551 Fichier(s)
 C:\Program Files\Ad-Remover\Backup: 13 Fichier(s)

 C:\Ad-Report-CLEAN[1].txt - 24/01/2012 21:41:07 (4172 Octet(s))

 Fin à: 21:44:46, 24/01/2012
 
 ============== E.O.F ==============

vieux motard que jamais
remi-fasol
Sur la bonne voie (de 100 à 499 messages postés)
  1. Posté le 28/01/2012 à 15:35:55  
  1. answer
  1. Prévenir les modérateurs en cas d'abus
 
y a quelqu’un svp ?

Imagine ...
Profil : Equipe sécurité
kmisol
Célèbre sur tout le forum (de 30 000 à 99 999 messages postés)
  1. Posté le 28/01/2012 à 16:57:42  
  1. answer
  1. Prévenir les modérateurs en cas d'abus
 
Hello,

 



j'ai fait un scan avec "Système Explorer",et il m'indique que (bgsvcgen.exe) est TREATH.



 C'est tjrs le cas ?

 -----
 Clique droit sur ComboFix (par sUBs).  

 Choisis "Enregistrer sous" (dans IE c'est "Enregistrer la cible/le lien sous.." ) et sauvegarde-le (Enregistrer dans) sur le Bureau (et pas ailleurs).

 Important : dans "Nom du fichier" enregistre (renomme) "combofix" en remi

 Prends connaissance de ce tutoriel : http://www.bleepingcomputer.co [...] r-combofix

 Ferme toutes les fenêtres et applications, déconnecte-toi du net et désactive tes protections résidentes (antivirus, antispy, etc ...) :
 http://forum.pcastuces.com/des [...] -f31s4.htm

 Sur le bureau, double-clique sur l’ icône remi.

 Tape sur la touche Y (Yes) pour démarrer le scan.

 Important : si l’ installation de la Console de récupération est demandé, accepte.

 ComboFix redémarrera ton PC.

 Lorsque le scan sera complété, un rapport apparaîtra.
 Copie/colle ce rapport dans ta prochaine réponse.

 PS : le rapport se trouve également ici : C:\Combofix.txt

 Autres liens si celui donné d' entrée ne fonctionne pas : Combo2 ou Combo3

 Ne clique pas dans la fenêtre de Combofix durant l’analyse : cela pourrait provoquer le gel du programme !

(Publicité)
vieux motard que jamais
remi-fasol
Sur la bonne voie (de 100 à 499 messages postés)
  1. Posté le 29/01/2012 à 17:01:42  
  1. answer
  1. Prévenir les modérateurs en cas d'abus
 
p'tit soucis le scanne s’arrête a l'etape 23 puis plus rien pendant 3/4 d'heure.

Imagine ...
Profil : Equipe sécurité
kmisol
Célèbre sur tout le forum (de 30 000 à 99 999 messages postés)
  1. Posté le 29/01/2012 à 23:19:10  
  1. answer
  1. Prévenir les modérateurs en cas d'abus
 
Hello,

 Désinstalle ComboFix ...

 Par le menu Démarrer > Exécuter ... puis tape (ou copie/colle) :

 ComboFix /Uninstall et valide par OK.

 -----
 Puis, réinstalle ComboFix (voir procédure plus haut) et lance un scan.

 Poste le rapport.

vieux motard que jamais
remi-fasol
Sur la bonne voie (de 100 à 499 messages postés)
  1. Posté le 30/01/2012 à 15:46:38  
  1. answer
  1. Prévenir les modérateurs en cas d'abus
 
Le scanne a dure plus d'une heure trente:
 ComboFix 12-01-30.01 - HP_Administrateur 30/01/2012  14:07:23.3.2 - x86
 Microsoft Windows XP Professionnel  5.1.2600.3.1252.33.1036.18.959​.257 [GMT 1:00]
 Lancé depuis: c:\documents and settings\HP_Administrateur.NOM​-FB9B15D2723\Bureau\remi.exe
 AV: G Data AntiVirus 2012 *Disabled/Updated* {71310606-6F3B-49F2-9A81-8315A​A75FBB3}
 .
 .
 ((((((((((((((((((((((((((((((​((((((   Autres suppressions   ))))))))))))))))))))))))))))))​))))))))))))))))))
 .
 .
 c:\documents and settings\Administrateur\WINDOW​S
 c:\documents and settings\All Users\Application Data\TEMP
 c:\documents and settings\Default User\WINDOWS
 c:\documents and settings\HP_Administrateur.NOM​-FB9B15D2723\Application Data\app
 c:\documents and settings\HP_Administrateur.NOM​-FB9B15D2723\Application Data\app\Jerakine_lang.dat
 c:\documents and settings\HP_Administrateur.NOM​-FB9B15D2723\Application Data\app\Jerakine_lang_vesrion​.dat
 c:\documents and settings\HP_Administrateur.NOM​-FB9B15D2723\Application Data\log.txt
 c:\documents and settings\HP_Administrateur.NOM​-FB9B15D2723\Application Data\TMInc
 c:\documents and settings\HP_Administrateur.NOM​-FB9B15D2723\Application Data\TMInc\game.cfg
 c:\documents and settings\HP_Administrateur.NOM​-FB9B15D2723\Application Data\TMInc\user1.sav
 c:\documents and settings\HP_Administrateur.NOM​-FB9B15D2723\Mes documents\dpvsetup.exe
 c:\documents and settings\HP_Administrateur.NOM​-FB9B15D2723\WINDOWS
 c:\documents and settings\HP_Administrateur\WIN​DOWS
 c:\documents and settings\HP_Administrateur\WIN​DOWS\system\SETUPDLL.DLL
 c:\windows\desktop
 c:\windows\iun6002.exe
 c:\windows\kb913800.exe
 c:\windows\system32\config\sys​temprofile\WINDOWS
 c:\windows\system32\muzapp.exe
 c:\windows\system32\ps2.bat
 c:\windows\XSxS
 .
 .
 ((((((((((((((((((((((((((((((​(((((((((   Pilotes/Services   ))))))))))))))))))))))))))))))​)))))))))))))))))))
 .
 .
 -------\Legacy_BOONTY_GAMES
 -------\Service_Boonty Games
 .
 .
 (((((((((((((((((((((((((((((   Fichiers créés du 2011-12-28 au 2012-01-30  ))))))))))))))))))))))))))))))​))))))
 .
 .
 2012-01-30 12:56 . 2012-01-30 12:57 -------- d-----w- C:\remi
 2012-01-26 08:03 . 2012-01-26 08:03 -------- d-----w- c:\documents and settings\All Users\Application Data\Trymedia
 2012-01-25 09:12 . 2012-01-25 09:12 -------- d-----w- c:\documents and settings\HP_Administrateur.NOM​-FB9B15D2723\Application Data\MagicIndie
 2012-01-24 20:37 . 2012-01-25 22:06 -------- d-----w- c:\program files\Ad-Remover
 2012-01-23 16:38 . 2012-01-23 16:38 -------- d-----w- c:\documents and settings\HP_Administrateur.NOM​-FB9B15D2723\Local Settings\Application Data\System Security Guard Toolbar
 2012-01-23 16:35 . 2012-01-23 16:45 -------- d-----w- c:\program files\System Security Guard
 2012-01-22 11:25 . 2012-01-22 11:25 -------- d-----w- c:\documents and settings\HP_Administrateur.NOM​-FB9B15D2723\Application Data\NevoSoft
 2012-01-17 12:48 . 2012-01-17 12:48 -------- d-----w- c:\program files\MyFree Codec
 2012-01-16 20:21 . 2012-01-16 20:23 -------- d-----w- c:\documents and settings\HP_Administrateur.NOM​-FB9B15D2723\Application Data\Realore_Whiterra Roads Of Rome 3
 2012-01-09 17:51 . 2012-01-09 17:51 43992 ----a-w- c:\program files\Mozilla Firefox\mozutils.dll
 2012-01-09 17:51 . 2012-01-09 17:51 479232 ----a-w- c:\program files\Mozilla Firefox\msvcm80.dll
 2012-01-09 17:51 . 2012-01-09 17:51 548864 ----a-w- c:\program files\Mozilla Firefox\msvcp80.dll
 2012-01-09 17:51 . 2012-01-09 17:51 626688 ----a-w- c:\program files\Mozilla Firefox\msvcr80.dll
 2012-01-08 18:31 . 2012-01-08 18:31 -------- d-----w- c:\documents and settings\HP_Administrateur.NOM​-FB9B15D2723\Application Data\Temp
 2012-01-08 18:18 . 2012-01-17 12:50 -------- d-----w- C:\Temp
 2012-01-08 18:06 . 2012-01-25 08:17 -------- d-----w- c:\documents and settings\HP_Administrateur.NOM​-FB9B15D2723\Local Settings\Application Data\Samsung
 2012-01-08 18:06 . 2012-01-08 18:06 -------- d-----w- c:\documents and settings\HP_Administrateur.NOM​-FB9B15D2723\Application Data\Samsung
 2012-01-08 18:01 . 2011-12-08 04:22 136808 ----a-w- c:\windows\system32\drivers\ss​admdm.sys
 2012-01-08 18:01 . 2011-12-08 04:22 12776 ----a-w- c:\windows\system32\drivers\ss​admdfl.sys
 2012-01-08 18:01 . 2011-12-08 04:22 10472 ----a-w- c:\windows\system32\drivers\ss​adcmnt.sys
 2012-01-08 18:01 . 2011-12-08 04:22 10472 ----a-w- c:\windows\system32\drivers\ss​adcm.sys
 2012-01-08 18:01 . 2011-12-08 04:22 121064 ----a-w- c:\windows\system32\drivers\ss​adbus.sys
 2012-01-08 18:01 . 2011-12-08 04:22 10344 ----a-w- c:\windows\system32\drivers\ss​adwhnt.sys
 2012-01-08 18:01 . 2011-12-08 04:22 10344 ----a-w- c:\windows\system32\drivers\ss​adwh.sys
 2012-01-08 17:56 . 2011-12-23 19:58 4659712 ----a-w- c:\windows\system32\Redemption​.dll
 2012-01-08 17:51 . 2012-01-08 17:51 -------- d-----w- c:\program files\MarkAny
 2012-01-08 17:47 . 2012-01-08 17:59 -------- d-----w- c:\program files\Samsung
 2012-01-08 17:47 . 2012-01-25 08:17 -------- d-----w- c:\documents and settings\All Users\Application Data\Samsung
 2012-01-03 13:10 . 2012-01-03 13:10 182672 ----a-w- c:\program files\Mozilla Firefox\plugins\nppdf32.dll
 2012-01-03 13:10 . 2012-01-03 13:10 182672 ----a-w- c:\program files\Internet Explorer\PLUGINS\nppdf32.dll
 .
 .
 .
 ((((((((((((((((((((((((((((((​((((   Compte-rendu de Find3M   ))))))))))))))))))))))))))))))​))))))))))))))))))
 .
 2011-12-30 08:25 . 2011-05-19 06:00 414368 ----a-w- c:\windows\system32\FlashPlaye​rCPLApp.cpl
 2011-12-23 19:58 . 2011-12-23 19:58 974848 ----a-w- c:\windows\system32\cis-2.4.dl​l
 2011-12-23 19:58 . 2011-12-23 19:58 81920 ----a-w- c:\windows\system32\issacapi_b​s-2.3.dll
 2011-12-23 19:58 . 2011-12-23 19:58 65536 ----a-w- c:\windows\system32\issacapi_p​e-2.3.dll
 2011-12-23 19:58 . 2011-12-23 19:58 57344 ----a-w- c:\windows\system32\MTXSYNCICO​N.dll
 2011-12-23 19:58 . 2011-12-23 19:58 57344 ----a-w- c:\windows\system32\MK_Lyric.d​ll
 2011-12-23 19:58 . 2011-12-23 19:58 57344 ----a-w- c:\windows\system32\issacapi_s​e-2.3.dll
 2011-12-23 19:58 . 2011-12-23 19:58 569344 ----a-w- c:\windows\system32\muzdecode.​ax
 2011-12-23 19:58 . 2011-12-23 19:58 491520 ----a-w- c:\windows\system32\muzapp.dll
 2011-12-23 19:58 . 2011-12-23 19:58 49152 ----a-w- c:\windows\system32\MaJGUILib.​dll
 2011-12-23 19:58 . 2011-12-23 19:58 45056 ----a-w- c:\windows\system32\MaXMLProto​.dll
 2011-12-23 19:58 . 2011-12-23 19:58 45056 ----a-w- c:\windows\system32\MACXMLProt​o.dll
 2011-12-23 19:58 . 2011-12-23 19:58 40960 ----a-w- c:\windows\system32\MTTELECHIP​.dll
 2011-12-23 19:58 . 2011-12-23 19:58 40960 ----a-w- c:\windows\system32\MAMACExtra​ct.dll
 2011-12-23 19:58 . 2011-12-23 19:58 352256 ----a-w- c:\windows\system32\MSLUR71.dl​l
 2011-12-23 19:58 . 2011-12-23 19:58 258048 ----a-w- c:\windows\system32\muzoggsp.a​x
 2011-12-23 19:58 . 2011-12-23 19:58 245760 ----a-w- c:\windows\system32\MSCLib.dll
 2011-12-23 19:58 . 2011-12-23 19:58 24576 ----a-w- c:\windows\system32\MASetupCle​aner.exe
 2011-12-23 19:58 . 2011-12-23 19:58 200704 ----a-w- c:\windows\system32\muzwmts.dl​l
 2011-12-23 19:58 . 2011-12-23 19:58 155648 ----a-w- c:\windows\system32\MSFLib.dll
 2011-12-23 19:58 . 2011-12-23 19:58 143360 ----a-w- c:\windows\system32\3DAudio.ax
 2011-12-23 19:58 . 2011-12-23 19:58 14336 ----a-w- c:\windows\system32\avrt.dll
 2011-12-23 19:58 . 2011-12-23 19:58 135168 ----a-w- c:\windows\system32\muzaf1.dll
 2011-12-23 19:58 . 2011-12-23 19:58 131072 ----a-w- c:\windows\system32\muzmpgsp.a​x
 2011-12-23 19:58 . 2011-12-23 19:58 122880 ----a-w- c:\windows\system32\muzeffect.​ax
 2011-12-23 19:58 . 2011-12-23 19:58 118784 ----a-w- c:\windows\system32\MaDRM.dll
 2011-12-23 19:58 . 2011-12-23 19:58 110592 ----a-w- c:\windows\system32\muzmp4sp.a​x
 2011-12-10 14:24 . 2010-05-22 13:10 20464 ----a-w- c:\windows\system32\drivers\mb​am.sys
 2011-11-26 22:45 . 2010-05-20 12:25 69112 ----a-w- c:\windows\system32\drivers\GR​D.sys
 2011-11-25 21:57 . 2004-08-10 19:00 293888 ----a-w- c:\windows\system32\winsrv.dll
 2011-11-23 14:40 . 2004-08-10 19:00 1859712 ----a-w- c:\windows\system32\win32k.sys
 2011-11-22 07:58 . 2010-05-20 12:02 52216 ----a-w- c:\windows\system32\drivers\GD​TdiIcpt.sys
 2011-11-22 07:58 . 2011-03-29 09:08 40568 ----a-w- c:\windows\system32\drivers\Ho​okCentre.sys
 2011-11-22 07:58 . 2010-05-20 12:02 79992 ----a-w- c:\windows\system32\drivers\Mi​niIcpt.sys
 2011-11-22 07:58 . 2010-05-20 12:02 40440 ----a-w- c:\windows\system32\drivers\GD​Behave.sys
 2011-11-20 06:12 . 2004-08-10 19:00 61952 ----a-w- c:\windows\system32\packager.e​xe
 2011-11-16 14:22 . 2004-08-10 19:00 354816 ----a-w- c:\windows\system32\winhttp.dl​l
 2011-11-16 14:22 . 2004-08-10 19:00 152064 ----a-w- c:\windows\system32\schannel.d​ll
 2011-11-10 04:54 . 2010-05-20 11:17 472808 ----a-w- c:\windows\system32\deployJava​1.dll
 2011-11-10 02:27 . 2011-10-23 20:46 73728 ----a-w- c:\windows\system32\javacpl.cp​l
 2011-11-04 19:13 . 2004-08-10 19:00 916992 ----a-w- c:\windows\system32\wininet.dl​l
 2011-11-04 19:13 . 2004-08-10 19:00 43520 ----a-w- c:\windows\system32\licmgr10.d​ll
 2011-11-04 19:13 . 2004-08-10 19:00 1469440 ----a-w- c:\windows\system32\inetcpl.cp​l
 2011-11-04 11:24 . 2004-08-10 19:00 385024 ----a-w- c:\windows\system32\html.iec
 2011-11-03 15:28 . 2004-08-10 19:00 387072 ----a-w- c:\windows\system32\qdvd.dll
 2011-11-03 15:28 . 2004-08-10 19:00 1298432 ----a-w- c:\windows\system32\quartz.dll
 2011-11-01 16:07 . 2004-08-10 19:00 1288192 ----a-w- c:\windows\system32\ole32.dll
 2012-01-09 17:51 . 2011-10-15 19:36 121816 ----a-w- c:\program files\mozilla firefox\components\browsercomp​s.dll
 2005-05-13 15:12 217073 --sha-r- c:\windows\meta4.exe
 2005-10-24 09:13 66560 --sha-r- c:\windows\MOTA113.exe
 2005-10-13 19:27 422400 --sha-r- c:\windows\x2.64.exe
 .
 .
 ((((((((((((((((((((((((((((((​(((   Points de chargement Reg   ))))))))))))))))))))))))))))))​))))))))))))))))))
 .
 .
 *Note* les éléments vides & les éléments initiaux légitimes ne sont pas listés
 REGEDIT4
 .
 [HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{0F6E720A-1A6B-40E1-A294-1D4D19F156C8}]
 2011-06-10 06:24 165256 ----a-w- c:\program files\SFR\Kit\SFRNavErrorHelpe​r.dll
 .
 c:\documents and settings\HP_Administrateur.NOM​-FB9B15D2723\Menu Démarrer\Programmes\Démarrage\
 OpenOffice.org 3.3.lnk - c:\program files\OpenOffice.org 3\program\quickstart.exe [2010-12-13 1198592]
 .
 c:\documents and settings\HP_Administrateur.NOM​-FB9B15D2723\Menu Démarrer\Programmes\Démarrage\
 OpenOffice.org 3.3.lnk - c:\program files\OpenOffice.org 3\program\quickstart.exe [2010-12-13 1198592]
 .
 c:\documents and settings\HP_Administrateur.NOM​-FB9B15D2723\Menu Démarrer\Programmes\Démarrage\
 OpenOffice.org 3.3.lnk - c:\program files\OpenOffice.org 3\program\quickstart.exe [2010-12-13 1198592]
 .
 c:\documents and settings\All Users\Menu Démarrer\Programmes\Démarrage\
 HP Digital Imaging Monitor.lnk - c:\program files\HP\Digital Imaging\bin\hpqtra08.exe [2005-5-12 282624]
 .
 c:\documents and settings\HP_Administrateur.NOM​-FB9B15D2723\Menu Démarrer\Programmes\Démarrage\
 OpenOffice.org 3.3.lnk - c:\program files\OpenOffice.org 3\program\quickstart.exe [2010-12-13 1198592]
 .
 [HKEY_LOCAL_MACHINE\SYSTEM\Curr​entControlSet\Control\SafeBoot​\Minimal\Wdf01000.sys]
 @="Driver"
 .
 [HKLM\~\startupfolder\C:^Docume​nts and Settings^All Users^Menu Démarrer^Programmes^Démarrage^​Microsoft Office.lnk]
 path=c:\documents and settings\All Users\Menu Démarrer\Programmes\Démarrage\​Microsoft Office.lnk
 backup=c:\windows\pss\Microsof​t Office.lnkCommon Startup
 .
 [HKLM\~\startupfolder\C:^Docume​nts and Settings^All Users^Menu Démarrer^Programmes^Démarrage^​PHOTOfunSTUDIO HD Edition.lnk]
 path=c:\documents and settings\All Users\Menu Démarrer\Programmes\Démarrage\​PHOTOfunSTUDIO HD Edition.lnk
 backup=c:\windows\pss\PHOTOfun​STUDIO HD Edition.lnkCommon Startup
 .
 [HKEY_LOCAL_MACHINE\software\mi​crosoft\shared tools\msconfig\startupreg\iTunesHelper]
 2011-12-08 00:36 421736 ----a-w- c:\program files\iTunes\iTunesHelper.exe
 .
 [HKEY_LOCAL_MACHINE\software\mi​crosoft\shared tools\msconfig\startupreg\Quic​kTime Task]
 2011-10-24 13:28 421888 ----a-w- c:\program files\QuickTime\QTTask.exe
 .
 [HKEY_LOCAL_MACHINE\software\mi​crosoft\shared tools\msconfig\startupreg\WMPNSCFG]
 2006-11-03 07:59 204288 ------w- c:\program files\Windows Media Player\wmpnscfg.exe
 .
 [HKLM\~\services\sharedaccess\p​arameters\firewallpolicy\stand​ardprofile\AuthorizedApplicati​ons\List]
 "%windir%\\system32\\sessmgr.e​xe"=
 "c:\\Program Files\\HP\\Digital Imaging\\bin\\hpqtra08.exe"=
 "c:\\Program Files\\HP\\Digital Imaging\\bin\\hpqste08.exe"=
 "c:\\Program Files\\HP\\Digital Imaging\\bin\\hpofxm08.exe"=
 "c:\\Program Files\\HP\\Digital Imaging\\bin\\hposfx08.exe"=
 "c:\\Program Files\\HP\\Digital Imaging\\bin\\hposid01.exe"=
 "c:\\Program Files\\HP\\Digital Imaging\\bin\\hpqscnvw.exe"=
 "c:\\Program Files\\HP\\Digital Imaging\\bin\\hpqkygrp.exe"=
 "c:\\Program Files\\HP\\Digital Imaging\\bin\\hpqCopy.exe"=
 "c:\\Program Files\\HP\\Digital Imaging\\bin\\hpfccopy.exe"=
 "c:\\Program Files\\HP\\Digital Imaging\\bin\\hpzwiz01.exe"=
 "c:\\Program Files\\HP\\Digital Imaging\\Unload\\HpqPhUnl.exe"​=
 "c:\\Program Files\\HP\\Digital Imaging\\Unload\\HpqDIA.exe"=
 "c:\\Program Files\\HP\\Digital Imaging\\bin\\hpoews01.exe"=
 "c:\\Program Files\\AOL 9.0\\waol.exe"=
 "c:\\Program Files\\Messenger\\msmsgs.exe"=
 "%windir%\\Network Diagnostic\\xpnetdiag.exe"=
 "c:\\Program Files\\Windows Live\\Messenger\\wlcsdk.exe"=
 "c:\\Program Files\\Windows Live\\Messenger\\msnmsgr.exe"=
 "c:\\Program Files\\Google\\Google Earth\\client\\googleearth.exe​"=
 "c:\\Program Files\\eMule\\emule.exe"=
 "c:\\Program Files\\Bonjour\\mDNSResponder.​exe"=
 "c:\\Documents and Settings\\HP_Administrateur.NO​M-FB9B15D2723\\Mes documents\\Téléchargements\\Sw​eetImSetup.exe"=
 "c:\\Program Files\\Fichiers communs\\Apple\\Apple Application Support\\WebKit2WebProcess.exe​"=
 "c:\\Program Files\\iTunes\\iTunes.exe"=
 "c:\\WINDOWS\\system32\\muzapp​.exe"=
 "c:\\Documents and Settings\\HP_Administrateur.NO​M-FB9B15D2723\\Mes documents\\Téléchargements\\Sw​eetImSetup(1).exe"=
 "c:\\Documents and Settings\\HP_Administrateur.NO​M-FB9B15D2723\\Local Settings\\Temp\\SweetIMReinsta​ll\\SweetImSetup(1).exe"=
 .
 [HKLM\~\services\sharedaccess\p​arameters\firewallpolicy\stand​ardprofile\GloballyOpenPorts\L​ist]
 "1421:TCP"= 1421:TCP:Akamai NetSession Interface
 "5000:UDP"= 5000:UDP:Akamai NetSession Interface
 .
 R0 GDBehave;GDBehave;c:\windows\s​ystem32\drivers\GDBehave.sys [20/05/2010 13:02 40440]
 R1 GDMnIcpt;GDMnIcpt;c:\windows\s​ystem32\drivers\MiniIcpt.sys [20/05/2010 13:02 79992]
 R1 GRD;G Data Rootkit Detector Driver;c:\windows\system32\dri​vers\GRD.sys [20/05/2010 13:25 69112]
 R1 HookCentre;HookCentre;c:\windo​ws\system32\drivers\HookCentre​.sys [29/03/2011 10:08 40568]
 R2 acedrv11;acedrv11;c:\windows\s​ystem32\drivers\acedrv11.sys [24/02/2010 11:22 185472]
 R2 AVKProxy;G Data AntiVirus Proxy;c:\program files\Fichiers communs\G DATA\AVKProxy\AVKProxy.exe [16/04/2010 12:10 1501704]
 R2 AVKService;Planificateur G Data;c:\program files\G Data\AntiVirus\AVK\AVKService.​exe [16/04/2010 12:10 464392]
 R2 AVKWCtl;G Data Gardien;c:\program files\G Data\AntiVirus\AVK\AVKWCtl.exe [15/03/2010 10:24 1554184]
 R2 GDTdiInterceptor;GDTdiIntercep​tor;c:\windows\system32\driver​s\GDTdiIcpt.sys [20/05/2010 13:02 52216]
 R3 3xHybrid;3xHybrid service;c:\windows\system32\dr​ivers\3xHybrid.sys [03/01/2005 01:21 2799488]
 R3 GDScan;G Data Scanner;c:\program files\Fichiers communs\G DATA\GDScan\GDScan.exe [22/04/2010 12:59 457536]
 S2 clr_optimization_v4.0.30319_32​;Microsoft .NET Framework NGEN v4.0.30319_X86;c:\windows\Micr​osoft.NET\Framework\v4.0.30319​\mscorsvw.exe [18/03/2010 13:16 130384]
 S3 maconfservice;Ma-Config Service;c:\program files\ma-config.com\maconfserv​ice.exe [11/05/2010 10:34 271728]
 S3 mdf15;mdf15;\??\c:\program files\Clarus\Samsung SecretZone\mdf15.sys --> c:\program files\Clarus\Samsung SecretZone\mdf15.sys [?]
 S3 mvd21;mvd21;\??\c:\program files\Clarus\Samsung SecretZone\mvd21.sys --> c:\program files\Clarus\Samsung SecretZone\mvd21.sys [?]
 S3 ssadbus;SAMSUNG Android USB Composite Device driver (WDM);c:\windows\system32\driv​ers\ssadbus.sys [08/01/2012 19:01 121064]
 S3 ssadmdfl;SAMSUNG Android USB Modem (Filter);c:\windows\system32\d​rivers\ssadmdfl.sys [08/01/2012 19:01 12776]
 S3 ssadmdm;SAMSUNG Android USB Modem Drivers;c:\windows\system32\dr​ivers\ssadmdm.sys [08/01/2012 19:01 136808]
 S3 WPFFontCache_v0400;Windows Presentation Foundation Font Cache 4.0.0.0;c:\windows\Microsoft.N​ET\Framework\v4.0.30319\WPF\WP​FFontCache_v0400.exe [18/03/2010 13:16 753504]
 .
 Contenu du dossier 'Tâches planifiées'
 .
 2012-01-26 c:\windows\Tasks\AppleSoftware​Update.job
 - c:\program files\Apple Software Update\SoftwareUpdate.exe [2011-06-01 15:57]
 .
 2011-12-12 c:\windows\Tasks\Connexion facile à Internet.job
 - c:\program files\Hewlett-Packard\SDP\HPSd​pApp.exe [2005-09-08 18:23]
 .
 2012-01-30 c:\windows\Tasks\RealUpgradeLo​gonTaskS-1-5-21-4109910490-374​4524818-1263572-1007.job
 - c:\program files\Real\RealUpgrade\realupg​rade.exe [2011-09-27 11:40]
 .
 2012-01-30 c:\windows\Tasks\RealUpgradeSc​heduledTaskS-1-5-21-4109910490​-3744524818-1263572-1007.job
 - c:\program files\Real\RealUpgrade\realupg​rade.exe [2011-09-27 11:40]
 .
 .
 ------- Examen supplémentaire -------
 .
 uInternet Settings,ProxyOverride = *.local
 IE: Add to Google Photos Screensa&ver - c:\windows\system32\GPhotos.sc​r/200
 TCP: DhcpNameServer = 192.168.1.1
 FF - ProfilePath - c:\documents and settings\HP_Administrateur.NOM​-FB9B15D2723\Application Data\Mozilla\Firefox\Profiles\​38lmwea1.default\
 FF - prefs.js: browser.search.selectedEngine - Google
 FF - prefs.js: browser.startup.homepage - hxxp://www.google.fr/
 FF - prefs.js: keyword.URL - hxxp://search.igeared.com/disp​atcher.aspx?i=67&tp=ab&q=
 .
 - - - - ORPHELINS SUPPRIMES - - - -
 .
 Toolbar-{2793FB58-DCE3-4A83-97​DE-7208CAD0341C} - (no file)
 MSConfigStartUp-TomTomHOME - c:\program files\TomTom HOME 2\TomTomHOMERunner.exe
 MSConfigStartUp-Zune Launcher - c:\program files\Zune\ZuneLauncher.exe
 AddRemove-Ad-Remover - c:\program files\Ad-Remover\main.exe
 AddRemove-01_Simmental - c:\program files\Samsung\USB Drivers\01_Simmental\Uninstall​.exe
 AddRemove-02_Siberian - c:\program files\Samsung\USB Drivers\02_Siberian\Uninstall.​exe
 AddRemove-03_Swallowtail - c:\program files\Samsung\USB Drivers\03_Swallowtail\Uninsta​ll.exe
 AddRemove-04_semseyite - c:\program files\Samsung\USB Drivers\04_semseyite\Uninstall​.exe
 AddRemove-05_Sloan - c:\program files\Samsung\USB Drivers\05_Sloan\Uninstall.exe
 AddRemove-06_Spencer - c:\program files\Samsung\USB Drivers\06_Spencer\Uninstall.e​xe
 AddRemove-07_Schorl - c:\program files\Samsung\USB Drivers\07_Schorl\Uninstall.ex​e
 AddRemove-08_EMPChipset - c:\program files\Samsung\USB Drivers\08_EMPChipset\Uninstal​l.exe
 AddRemove-09_Hsp - c:\program files\Samsung\USB Drivers\09_Hsp\Uninstall.exe
 AddRemove-11_HSP_Plus_Default - c:\program files\Samsung\USB Drivers\11_HSP_Plus_Default\Un​install.exe
 AddRemove-16_Shrewsbury - c:\program files\Samsung\USB Drivers\16_Shrewsbury\Uninstal​l.exe
 AddRemove-17_EMP_Chipset2 - c:\program files\Samsung\USB Drivers\17_EMP_Chipset2\Uninst​all.exe
 AddRemove-18_Zinia_Serial_Driv​er - c:\program files\Samsung\USB Drivers\18_Zinia_Serial_Driver​\Uninstall.exe
 AddRemove-19_VIA_driver - c:\program files\Samsung\USB Drivers\19_VIA_driver\Uninstal​l.exe
 AddRemove-20_NXP_Driver - c:\program files\Samsung\USB Drivers\20_NXP_Driver\Uninstal​l.exe
 AddRemove-21_Searsburg - c:\program files\Samsung\USB Drivers\21_Searsburg\Uninstall​.exe
 AddRemove-22_WiBro_WiMAX - c:\program files\Samsung\USB Drivers\22_WiBro_WiMAX\Uninsta​ll.exe
 AddRemove-24_flashusbdriver - c:\program files\Samsung\USB Drivers\24_flashusbdriver\Unin​stall.exe
 AddRemove-25_escape - c:\program files\Samsung\USB Drivers\25_escape\Uninstall.ex​e
 .
 .
 .
 ******************************​******************************​**************
 .
 catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
 Rootkit scan 2012-01-30 15:29
 Windows 5.1.2600 Service Pack 3 NTFS
 .
 Recherche de processus cachés ...
 .
 Recherche d'éléments en démarrage automatique cachés ...
 .
 Recherche de fichiers cachés ...
 .
 Scan terminé avec succès
 Fichiers cachés: 0
 .
 ******************************​******************************​**************
 .
 [HKEY_LOCAL_MACHINE\System\Cont​rolSet002\Services\.NET CLR Data]
 .
 [HKEY_LOCAL_MACHINE\System\Cont​rolSet002\Services\.NET CLR Networking]
 .
 [HKEY_LOCAL_MACHINE\System\Cont​rolSet002\Services\.NET CLR Networking 4.0.0.0]
 .
 [HKEY_LOCAL_MACHINE\System\Cont​rolSet002\Services\.NET Data Provider for Oracle]
 .
 [HKEY_LOCAL_MACHINE\System\Cont​rolSet002\Services\.NET Data Provider for SqlServer]
 .
 [HKEY_LOCAL_MACHINE\System\Cont​rolSet002\Services\.NET Memory Cache 4.0]
 .
 [HKEY_LOCAL_MACHINE\System\Cont​rolSet002\Services\.NETFramewo​rk]
 .
 [HKEY_LOCAL_MACHINE\System\Cont​rolSet002\Services\3xHybrid]
 "ImagePath"="system32\DRIVERS\​3xHybrid.sys"
 .
 [HKEY_LOCAL_MACHINE\System\Cont​rolSet002\Services\Abiosdsk]
 .
 [HKEY_LOCAL_MACHINE\System\Cont​rolSet002\Services\abp480n5]
 .
 [HKEY_LOCAL_MACHINE\System\Cont​rolSet002\Services\acedrv11]
 "ImagePath"="\??\c:\windows\sy​stem32\drivers\acedrv11.sys"
 .
 [HKEY_LOCAL_MACHINE\System\Cont​rolSet002\Services\ACPI]
 "ImagePath"="system32\DRIVERS\​ACPI.sys"
 .
 [HKEY_LOCAL_MACHINE\System\Cont​rolSet002\Services\ACPIEC]
 .
 [HKEY_LOCAL_MACHINE\System\Cont​rolSet002\Services\adpu160m]
 .
 [HKEY_LOCAL_MACHINE\System\Cont​rolSet002\Services\aec]
 "ImagePath"="system32\drivers\​aec.sys"
 .
 [HKEY_LOCAL_MACHINE\System\Cont​rolSet002\Services\Afc]
 "ImagePath"="system32\drivers\​Afc.sys"
 .
 [HKEY_LOCAL_MACHINE\System\Cont​rolSet002\Services\AFD]
 "ImagePath"="\SystemRoot\Syste​m32\drivers\afd.sys"
 .
 [HKEY_LOCAL_MACHINE\System\Cont​rolSet002\Services\Aha154x]
 .
 [HKEY_LOCAL_MACHINE\System\Cont​rolSet002\Services\aic78u2]
 .
 [HKEY_LOCAL_MACHINE\System\Cont​rolSet002\Services\aic78xx]
 .
 [HKEY_LOCAL_MACHINE\System\Cont​rolSet002\Services\Alerter]
 "ServiceDll"="%SystemRoot%\sys​tem32\alrsvc.dll"
 .
 [HKEY_LOCAL_MACHINE\System\Cont​rolSet002\Services\ALG]
 "ImagePath"="%SystemRoot%\Syst​em32\alg.exe"
 .
 [HKEY_LOCAL_MACHINE\System\Cont​rolSet002\Services\AliIde]
 .
 [HKEY_LOCAL_MACHINE\System\Cont​rolSet002\Services\amsint]
 .
 [HKEY_LOCAL_MACHINE\System\Cont​rolSet002\Services\Apple Mobile Device]
 "ImagePath"="\"c:\program files\Fichiers communs\Apple\Mobile Device Support\AppleMobileDeviceServi​ce.exe\""
 .
 [HKEY_LOCAL_MACHINE\System\Cont​rolSet002\Services\AppMgmt]
 "ServiceDll"="%SystemRoot%\Sys​tem32\appmgmts.dll"
 .
 [HKEY_LOCAL_MACHINE\System\Cont​rolSet002\Services\aracpi]
 "ImagePath"="system32\DRIVERS\​aracpi.sys"
 .
 [HKEY_LOCAL_MACHINE\System\Cont​rolSet002\Services\arhidfltr]
 "ImagePath"="system32\DRIVERS\​arhidfltr.sys"
 .
 [HKEY_LOCAL_MACHINE\System\Cont​rolSet002\Services\arkbcfltr]
 "ImagePath"="system32\DRIVERS\​arkbcfltr.sys"
 .
 [HKEY_LOCAL_MACHINE\System\Cont​rolSet002\Services\armoucfltr]
 "ImagePath"="system32\DRIVERS\​armoucfltr.sys"
 .
 [HKEY_LOCAL_MACHINE\System\Cont​rolSet002\Services\Arp1394]
 "ImagePath"="system32\DRIVERS\​arp1394.sys"
 .
 [HKEY_LOCAL_MACHINE\System\Cont​rolSet002\Services\ARPolicy]
 "ImagePath"="system32\DRIVERS\​arpolicy.sys"
 .
 [HKEY_LOCAL_MACHINE\System\Cont​rolSet002\Services\ARSVC]
 "ImagePath"="c:\windows\arserv​ice.exe"
 .
 [HKEY_LOCAL_MACHINE\System\Cont​rolSet002\Services\asc]
 .
 [HKEY_LOCAL_MACHINE\System\Cont​rolSet002\Services\asc3350p]
 .
 [HKEY_LOCAL_MACHINE\System\Cont​rolSet002\Services\asc3550]
 .
 [HKEY_LOCAL_MACHINE\System\Cont​rolSet002\Services\ASP.NET]
 .
 [HKEY_LOCAL_MACHINE\System\Cont​rolSet002\Services\ASP.NET_1.1​.4322]
 .
 [HKEY_LOCAL_MACHINE\System\Cont​rolSet002\Services\ASP.NET_4.0​.30319]
 .
 [HKEY_LOCAL_MACHINE\System\Cont​rolSet002\Services\aspnet_stat​e]
 "ImagePath"="%SystemRoot%\Micr​osoft.NET\Framework\v4.0.30319​\aspnet_state.exe"
 .
 [HKEY_LOCAL_MACHINE\System\Cont​rolSet002\Services\AsyncMac]
 "ImagePath"="system32\DRIVERS\​asyncmac.sys"
 .
 [HKEY_LOCAL_MACHINE\System\Cont​rolSet002\Services\atapi]
 "ImagePath"="system32\DRIVERS\​atapi.sys"
 .
 [HKEY_LOCAL_MACHINE\System\Cont​rolSet002\Services\Atdisk]
 .
 [HKEY_LOCAL_MACHINE\System\Cont​rolSet002\Services\Ati HotKey Poller]
 "ImagePath"="%SystemRoot%\syst​em32\Ati2evxx.exe"
 .
 [HKEY_LOCAL_MACHINE\System\Cont​rolSet002\Services\ATI Smart]
 "ImagePath"="c:\windows\system​32\ati2sgag.exe"
 .
 [HKEY_LOCAL_MACHINE\System\Cont​rolSet002\Services\ati2mtag]
 "ImagePath"="system32\DRIVERS\​ati2mtag.sys"
 .
 [HKEY_LOCAL_MACHINE\System\Cont​rolSet002\Services\Atierecord]
 .
 [HKEY_LOCAL_MACHINE\System\Cont​rolSet002\Services\atksgt]
 "ImagePath"="system32\DRIVERS\​atksgt.sys"
 .
 [HKEY_LOCAL_MACHINE\System\Cont​rolSet002\Services\Atmarpc]
 "ImagePath"="system32\DRIVERS\​atmarpc.sys"
 .
 [HKEY_LOCAL_MACHINE\System\Cont​rolSet002\Services\AudioSrv]
 "ServiceDll"="%SystemRoot%\Sys​tem32\audiosrv.dll"
 .
 [HKEY_LOCAL_MACHINE\System\Cont​rolSet002\Services\audstub]
 "ImagePath"="system32\DRIVERS\​audstub.sys"
 .
 [HKEY_LOCAL_MACHINE\System\Cont​rolSet002\Services\AVKProxy]
 "ImagePath"="\"c:\program files\Fichiers communs\G DATA\AVKProxy\AVKProxy.exe\""
 .
 [HKEY_LOCAL_MACHINE\System\Cont​rolSet002\Services\AVKService]
 "ImagePath"="c:\program files\G Data\AntiVirus\AVK\AVKService.​exe"
 .
 [HKEY_LOCAL_MACHINE\System\Cont​rolSet002\Services\AVKWCtl]
 "ImagePath"="c:\program files\G Data\AntiVirus\AVK\AVKWCtl.exe​"
 .
 [HKEY_LOCAL_MACHINE\System\Cont​rolSet002\Services\BattC]
 "MofImagePath"="System32\Drive​rs\battc.sys"
 .
 [HKEY_LOCAL_MACHINE\System\Cont​rolSet002\Services\bb-run]
 "ImagePath"="system32\DRIVERS\​bb-run.sys"
 .
 [HKEY_LOCAL_MACHINE\System\Cont​rolSet002\Services\Beep]
 .
 [HKEY_LOCAL_MACHINE\System\Cont​rolSet002\Services\bgsvcgen]
 "ImagePath"="\"c:\windows\syst​em32\bgsvcgen.exe\""
 .
 [HKEY_LOCAL_MACHINE\System\Cont​rolSet002\Services\BITS]
 "ServiceDll"="%systemroot%\sys​tem32\qmgr.dll"
 .
 [HKEY_LOCAL_MACHINE\System\Cont​rolSet002\Services\Bonjour Service]
 "ImagePath"="\"c:\program files\Bonjour\mDNSResponder.ex​e\""
 .
 [HKEY_LOCAL_MACHINE\System\Cont​rolSet002\Services\Browser]
 "ServiceDll"="%SystemRoot%\Sys​tem32\browser.dll"
 .
 [HKEY_LOCAL_MACHINE\System\Cont​rolSet002\Services\catchme]
 "ImagePath"="\??\c:\docume~1\H​P_ADM~1.NOM\LOCALS~1\Temp\catc​hme.sys"
 .
 [HKEY_LOCAL_MACHINE\System\Cont​rolSet002\Services\cbidf2k]
 .
 [HKEY_LOCAL_MACHINE\System\Cont​rolSet002\Services\CCDECODE]
 "ImagePath"="system32\DRIVERS\​CCDECODE.sys"
 .
 [HKEY_LOCAL_MACHINE\System\Cont​rolSet002\Services\cd20xrnt]
 .
 [HKEY_LOCAL_MACHINE\System\Cont​rolSet002\Services\Cdaudio]
 .
 [HKEY_LOCAL_MACHINE\System\Cont​rolSet002\Services\Cdfs]
 .
 [HKEY_LOCAL_MACHINE\System\Cont​rolSet002\Services\cdrbsdrv]
 .
 [HKEY_LOCAL_MACHINE\System\Cont​rolSet002\Services\Cdrom]
 "ImagePath"="system32\DRIVERS\​cdrom.sys"
 .
 [HKEY_LOCAL_MACHINE\System\Cont​rolSet002\Services\Changer]
 .
 [HKEY_LOCAL_MACHINE\System\Cont​rolSet002\Services\CiSvc]
 "ImagePath"="%SystemRoot%\syst​em32\cisvc.exe"
 .
 [HKEY_LOCAL_MACHINE\System\Cont​rolSet002\Services\ClipSrv]
 "ImagePath"="%SystemRoot%\syst​em32\clipsrv.exe"
 .
 [HKEY_LOCAL_MACHINE\System\Cont​rolSet002\Services\clr_optimiz​ation_v4.0.30319_32]
 "ImagePath"="c:\windows\Micros​oft.NET\Framework\v4.0.30319\m​scorsvw.exe"
 .
 [HKEY_LOCAL_MACHINE\System\Cont​rolSet002\Services\CmdIde]
 .
 [HKEY_LOCAL_MACHINE\System\Cont​rolSet002\Services\COMSysApp]
 "ImagePath"="%SystemRoot%\syst​em32\dllhost.exe /Processid:{02D4B3F1-FD88-11D1​-960D-00805FC79235}"
 .
 [HKEY_LOCAL_MACHINE\System\Cont​rolSet002\Services\ContentFilt​er]
 .
 [HKEY_LOCAL_MACHINE\System\Cont​rolSet002\Services\ContentInde​x]
 .
 [HKEY_LOCAL_MACHINE\System\Cont​rolSet002\Services\Cpqarray]
 .
 [HKEY_LOCAL_MACHINE\System\Cont​rolSet002\Services\CryptSvc]
 "ServiceDll"="%SystemRoot%\Sys​tem32\cryptsvc.dll"
 .
 [HKEY_LOCAL_MACHINE\System\Cont​rolSet002\Services\dac2w2k]
 .
 [HKEY_LOCAL_MACHINE\System\Cont​rolSet002\Services\dac960nt]
 .
 [HKEY_LOCAL_MACHINE\System\Cont​rolSet002\Services\DcomLaunch]
 "ServiceDll"="%SystemRoot%\sys​tem32\rpcss.dll"
 .
 [HKEY_LOCAL_MACHINE\System\Cont​rolSet002\Services\Dhcp]
 "ServiceDll"="%SystemRoot%\Sys​tem32\dhcpcsvc.dll"
 .
 [HKEY_LOCAL_MACHINE\System\Cont​rolSet002\Services\Disk]
 "ImagePath"="system32\DRIVERS\​disk.sys"
 .
 [HKEY_LOCAL_MACHINE\System\Cont​rolSet002\Services\dmadmin]
 "ImagePath"="%SystemRoot%\Syst​em32\dmadmin.exe /com"
 .
 [HKEY_LOCAL_MACHINE\System\Cont​rolSet002\Services\dmboot]
 "ImagePath"="System32\drivers\​dmboot.sys"
 .
 [HKEY_LOCAL_MACHINE\System\Cont​rolSet002\Services\dmio]
 "ImagePath"="System32\drivers\​dmio.sys"
 .
 [HKEY_LOCAL_MACHINE\System\Cont​rolSet002\Services\dmload]
 "ImagePath"="System32\drivers\​dmload.sys"
 .
 [HKEY_LOCAL_MACHINE\System\Cont​rolSet002\Services\dmserver]
 "ServiceDll"="%SystemRoot%\Sys​tem32\dmserver.dll"
 .
 [HKEY_LOCAL_MACHINE\System\Cont​rolSet002\Services\DMusic]
 "ImagePath"="system32\drivers\​DMusic.sys"
 .
 [HKEY_LOCAL_MACHINE\System\Cont​rolSet002\Services\Dnscache]
 "ServiceDll"="%SystemRoot%\Sys​tem32\dnsrslvr.dll"
 .
 [HKEY_LOCAL_MACHINE\System\Cont​rolSet002\Services\Dot3svc]
 "ServiceDll"="%SystemRoot%\Sys​tem32\dot3svc.dll"
 .
 [HKEY_LOCAL_MACHINE\System\Cont​rolSet002\Services\dpti2o]
 .
 [HKEY_LOCAL_MACHINE\System\Cont​rolSet002\Services\driverhardw​arev2]
 "ImagePath"="\??\c:\program files\ma-config.com\Drivers\dr​iverhardwarev2.sys"
 .
 [HKEY_LOCAL_MACHINE\System\Cont​rolSet002\Services\drmkaud]
 "ImagePath"="system32\drivers\​drmkaud.sys"
 .
 [HKEY_LOCAL_MACHINE\System\Cont​rolSet002\Services\EapHost]
 "ServiceDll"="%SystemRoot%\Sys​tem32\eapsvc.dll"
 .
 [HKEY_LOCAL_MACHINE\System\Cont​rolSet002\Services\ehRecvr]
 "ImagePath"="c:\windows\eHome\​ehRecvr.exe"
 .
 [HKEY_LOCAL_MACHINE\System\Cont​rolSet002\Services\ehSched]
 "ImagePath"="c:\windows\eHome\​ehSched.exe"
 .
 [HKEY_LOCAL_MACHINE\System\Cont​rolSet002\Services\ERSvc]
 "ServiceDll"="%SystemRoot%\Sys​tem32\ersvc.dll"
 .
 [HKEY_LOCAL_MACHINE\System\Cont​rolSet002\Services\Eventlog]
 "ImagePath"="%SystemRoot%\syst​em32\services.exe"
 .
 [HKEY_LOCAL_MACHINE\System\Cont​rolSet002\Services\EventSystem​]
 "ServiceDll"="c:\windows\syste​m32\es.dll"
 .
 [HKEY_LOCAL_MACHINE\System\Cont​rolSet002\Services\Fastfat]
 .
 [HKEY_LOCAL_MACHINE\System\Cont​rolSet002\Services\FastUserSwi​tchingCompatibility]
 "ServiceDll"="%SystemRoot%\Sys​tem32\shsvcs.dll"
 .
 [HKEY_LOCAL_MACHINE\System\Cont​rolSet002\Services\Fax]
 "ImagePath"="%systemroot%\syst​em32\fxssvc.exe"
 .
 [HKEY_LOCAL_MACHINE\System\Cont​rolSet002\Services\Fdc]
 "ImagePath"="system32\DRIVERS\​fdc.sys"
 .
 [HKEY_LOCAL_MACHINE\System\Cont​rolSet002\Services\Fips]
 .
 [HKEY_LOCAL_MACHINE\System\Cont​rolSet002\Services\Flpydisk]
 .
 [HKEY_LOCAL_MACHINE\System\Cont​rolSet002\Services\FltMgr]
 "ImagePath"="system32\drivers\​fltmgr.sys"
 .
 [HKEY_LOCAL_MACHINE\System\Cont​rolSet002\Services\Fs_Rec]
 .
 [HKEY_LOCAL_MACHINE\System\Cont​rolSet002\Services\Ftdisk]
 "ImagePath"="system32\DRIVERS\​ftdisk.sys"
 .
 [HKEY_LOCAL_MACHINE\System\Cont​rolSet002\Services\ftsata2]
 "ImagePath"="system32\DRIVERS\​ftsata2.sys"
 .
 [HKEY_LOCAL_MACHINE\System\Cont​rolSet002\Services\GDBehave]
 "ImagePath"="system32\drivers\​GDBehave.sys"
 .
 [HKEY_LOCAL_MACHINE\System\Cont​rolSet002\Services\GDMnIcpt]
 "ImagePath"="\??\c:\windows\sy​stem32\drivers\MiniIcpt.sys"
 .
 [HKEY_LOCAL_MACHINE\System\Cont​rolSet002\Services\GDScan]
 "ImagePath"="\"c:\program files\Fichiers communs\G DATA\GDScan\GDScan.exe\""
 .
 [HKEY_LOCAL_MACHINE\System\Cont​rolSet002\Services\GDTdiInterc​eptor]
 "ImagePath"="\??\c:\windows\sy​stem32\drivers\GDTdiIcpt.sys"
 .
 [HKEY_LOCAL_MACHINE\System\Cont​rolSet002\Services\GearAspiWDM​]
 "ImagePath"="System32\drivers\​GEARAspiWDM.sys"
 .
 [HKEY_LOCAL_MACHINE\System\Cont​rolSet002\Services\Gpc]
 "ImagePath"="system32\DRIVERS\​msgpc.sys"
 .
 [HKEY_LOCAL_MACHINE\System\Cont​rolSet002\Services\GRD]
 "ImagePath"="\??\c:\windows\sy​stem32\drivers\GRD.sys"
 .
 [HKEY_LOCAL_MACHINE\System\Cont​rolSet002\Services\gusvc]
 "ImagePath"="\"c:\program files\Google\Common\Google Updater\GoogleUpdaterService.e​xe\""
 .
 [HKEY_LOCAL_MACHINE\System\Cont​rolSet002\Services\HDAudBus]
 "ImagePath"="system32\DRIVERS\​HDAudBus.sys"
 .
 [HKEY_LOCAL_MACHINE\System\Cont​rolSet002\Services\helpsvc]
 "ServiceDll"="%WINDIR%\PCHealt​h\HelpCtr\Binaries\pchsvc.dll"
 .
 [HKEY_LOCAL_MACHINE\System\Cont​rolSet002\Services\HidServ]
 "ServiceDll"="%SystemRoot%\Sys​tem32\hidserv.dll"
 .
 [HKEY_LOCAL_MACHINE\System\Cont​rolSet002\Services\HidUsb]
 "ImagePath"="system32\DRIVERS\​hidusb.sys"
 .
 [HKEY_LOCAL_MACHINE\System\Cont​rolSet002\Services\hkmsvc]
 "ServiceDll"="%SystemRoot%\Sys​tem32\kmsvc.dll"
 .
 [HKEY_LOCAL_MACHINE\System\Cont​rolSet002\Services\HookCentre]
 "ImagePath"="\??\c:\windows\sy​stem32\drivers\HookCentre.sys"
 .
 [HKEY_LOCAL_MACHINE\System\Cont​rolSet002\Services\hpn]
 .
 [HKEY_LOCAL_MACHINE\System\Cont​rolSet002\Services\HPZid412]
 "ImagePath"="system32\DRIVERS\​HPZid412.sys"
 .
 [HKEY_LOCAL_MACHINE\System\Cont​rolSet002\Services\HPZipr12]
 "ImagePath"="system32\DRIVERS\​HPZipr12.sys"
 .
 [HKEY_LOCAL_MACHINE\System\Cont​rolSet002\Services\HPZius12]
 "ImagePath"="system32\DRIVERS\​HPZius12.sys"
 .
 [HKEY_LOCAL_MACHINE\System\Cont​rolSet002\Services\HTTP]
 "ImagePath"="System32\Drivers\​HTTP.sys"
 .
 [HKEY_LOCAL_MACHINE\System\Cont​rolSet002\Services\HTTPFilter]
 "ServiceDll"="%SystemRoot%\Sys​tem32\w3ssl.dll"
 .
 [HKEY_LOCAL_MACHINE\System\Cont​rolSet002\Services\i2omgmt]
 .
 [HKEY_LOCAL_MACHINE\System\Cont​rolSet002\Services\i2omp]
 .
 [HKEY_LOCAL_MACHINE\System\Cont​rolSet002\Services\i8042prt]
 "ImagePath"="system32\DRIVERS\​i8042prt.sys"
 .
 [HKEY_LOCAL_MACHINE\System\Cont​rolSet002\Services\iaStor]
 "ImagePath"="system32\DRIVERS\​iaStor.sys"
 .
 [HKEY_LOCAL_MACHINE\System\Cont​rolSet002\Services\IDriverT]
 "ImagePath"="\"c:\program files\Fichiers communs\InstallShield\Driver\1​050\Intel 32\IDriverT.exe\""
 .
 [HKEY_LOCAL_MACHINE\System\Cont​rolSet002\Services\Imapi]
 "ImagePath"="system32\DRIVERS\​imapi.sys"
 .
 [HKEY_LOCAL_MACHINE\System\Cont​rolSet002\Services\ImapiServic​e]
 "ImagePath"="%systemroot%\syst​em32\imapi.exe"
 .
 [HKEY_LOCAL_MACHINE\System\Cont​rolSet002\Services\inetaccs]
 .
 [HKEY_LOCAL_MACHINE\System\Cont​rolSet002\Services\ini910u]
 .
 [HKEY_LOCAL_MACHINE\System\Cont​rolSet002\Services\Inport]
 .
 [HKEY_LOCAL_MACHINE\System\Cont​rolSet002\Services\IntcAzAudAd​dService]
 "ImagePath"="system32\drivers\​RtkHDAud.sys"
 .
 [HKEY_LOCAL_MACHINE\System\Cont​rolSet002\Services\IntelIde]
 "ImagePath"="system32\DRIVERS\​intelide.sys"
 .
 [HKEY_LOCAL_MACHINE\System\Cont​rolSet002\Services\intelppm]
 "ImagePath"="system32\DRIVERS\​intelppm.sys"
 .
 [HKEY_LOCAL_MACHINE\System\Cont​rolSet002\Services\Ip6Fw]
 "ImagePath"="system32\drivers\​ip6fw.sys"
 .
 [HKEY_LOCAL_MACHINE\System\Cont​rolSet002\Services\IpFilterDri​ver]
 "ImagePath"="system32\DRIVERS\​ipfltdrv.sys"
 .
 [HKEY_LOCAL_MACHINE\System\Cont​rolSet002\Services\IpInIp]
 "ImagePath"="system32\DRIVERS\​ipinip.sys"
 .
 [HKEY_LOCAL_MACHINE\System\Cont​rolSet002\Services\IpNat]
 "ImagePath"="system32\DRIVERS\​ipnat.sys"
 .
 [HKEY_LOCAL_MACHINE\System\Cont​rolSet002\Services\iPod Service]
 "ImagePath"="\"c:\program files\iPod\bin\iPodService.exe​\""
 .
 [HKEY_LOCAL_MACHINE\System\Cont​rolSet002\Services\IPSec]
 "ImagePath"="system32\DRIVERS\​ipsec.sys"
 .
 [HKEY_LOCAL_MACHINE\System\Cont​rolSet002\Services\IRENUM]
 "ImagePath"="system32\DRIVERS\​irenum.sys"
 .
 [HKEY_LOCAL_MACHINE\System\Cont​rolSet002\Services\ISAPISearch​]
 .
 [HKEY_LOCAL_MACHINE\System\Cont​rolSet002\Services\isapnp]
 "ImagePath"="system32\DRIVERS\​isapnp.sys"
 .
 [HKEY_LOCAL_MACHINE\System\Cont​rolSet002\Services\JavaQuickSt​arterService]
 "ImagePath"="\"c:\program files\Java\jre6\bin\jqs.exe\" -service -config \"c:\program files\Java\jre6\lib\deploy\jqs​\jqs.conf\""
 .
 [HKEY_LOCAL_MACHINE\System\Cont​rolSet002\Services\Kbdclass]
 "ImagePath"="system32\DRIVERS\​kbdclass.sys"
 .
 [HKEY_LOCAL_MACHINE\System\Cont​rolSet002\Services\kmixer]
 "ImagePath"="system32\drivers\​kmixer.sys"
 .
 [HKEY_LOCAL_MACHINE\System\Cont​rolSet002\Services\KSecDD]
 .
 [HKEY_LOCAL_MACHINE\System\Cont​rolSet002\Services\lanmanserve​r]
 "ServiceDll"="%SystemRoot%\Sys​tem32\srvsvc.dll"
 .
 [HKEY_LOCAL_MACHINE\System\Cont​rolSet002\Services\lanmanworks​tation]
 "ServiceDll"="%SystemRoot%\Sys​tem32\wkssvc.dll"
 .
 [HKEY_LOCAL_MACHINE\System\Cont​rolSet002\Services\lbrtfdc]
 .
 [HKEY_LOCAL_MACHINE\System\Cont​rolSet002\Services\ldap]
 .
 [HKEY_LOCAL_MACHINE\System\Cont​rolSet002\Services\LicenseServ​ice]
 .
 [HKEY_LOCAL_MACHINE\System\Cont​rolSet002\Services\lirsgt]
 "ImagePath"="system32\DRIVERS\​lirsgt.sys"
 .
 [HKEY_LOCAL_MACHINE\System\Cont​rolSet002\Services\LmHosts]
 "ServiceDll"="%SystemRoot%\Sys​tem32\lmhsvc.dll"
 .
 [HKEY_LOCAL_MACHINE\System\Cont​rolSet002\Services\LPDSVC]
 "ImagePath"="%SystemRoot%\syst​em32\tcpsvcs.exe"
 .
 [HKEY_LOCAL_MACHINE\System\Cont​rolSet002\Services\maconfservi​ce]
 "ImagePath"="\"c:\program files\ma-config.com\maconfserv​ice.exe\""
 .
 [HKEY_LOCAL_MACHINE\System\Cont​rolSet002\Services\McrdSvc]
 "ImagePath"="c:\windows\ehome\​mcrdsvc.exe"
 .
 [HKEY_LOCAL_MACHINE\System\Cont​rolSet002\Services\mdf15]
 "ImagePath"="\??\c:\program files\Clarus\Samsung SecretZone\mdf15.sys"
 .
 [HKEY_LOCAL_MACHINE\System\Cont​rolSet002\Services\Messenger]
 "ServiceDll"="%SystemRoot%\Sys​tem32\msgsvc.dll"
 .
 [HKEY_LOCAL_MACHINE\System\Cont​rolSet002\Services\MHN]
 "ServiceDll"="%SystemRoot%\Sys​tem32\mhn.dll"
 .
 [HKEY_LOCAL_MACHINE\System\Cont​rolSet002\Services\MHNDRV]
 "ImagePath"="system32\DRIVERS\​mhndrv.sys"
 .
 [HKEY_LOCAL_MACHINE\System\Cont​rolSet002\Services\mnmdd]
 .
 [HKEY_LOCAL_MACHINE\System\Cont​rolSet002\Services\mnmsrvc]
 "ImagePath"="c:\windows\system​32\mnmsrvc.exe"
 .
 [HKEY_LOCAL_MACHINE\System\Cont​rolSet002\Services\Modem]
 .
 [HKEY_LOCAL_MACHINE\System\Cont​rolSet002\Services\Mouclass]
 "ImagePath"="system32\DRIVERS\​mouclass.sys"
 .
 [HKEY_LOCAL_MACHINE\System\Cont​rolSet002\Services\mouhid]
 "ImagePath"="system32\DRIVERS\​mouhid.sys"
 .
 [HKEY_LOCAL_MACHINE\System\Cont​rolSet002\Services\MountMgr]
 .
 [HKEY_LOCAL_MACHINE\System\Cont​rolSet002\Services\MPE]
 "ImagePath"="system32\DRIVERS\​MPE.sys"
 .
 [HKEY_LOCAL_MACHINE\System\Cont​rolSet002\Services\mraid35x]
 .
 [HKEY_LOCAL_MACHINE\System\Cont​rolSet002\Services\MRxDAV]
 "ImagePath"="system32\DRIVERS\​mrxdav.sys"
 .
 [HKEY_LOCAL_MACHINE\System\Cont​rolSet002\Services\MRxSmb]
 "ImagePath"="system32\DRIVERS\​mrxsmb.sys"
 .
 [HKEY_LOCAL_MACHINE\System\Cont​rolSet002\Services\MSDTC]
 "ImagePath"="c:\windows\system​32\msdtc.exe"
 .
 [HKEY_LOCAL_MACHINE\System\Cont​rolSet002\Services\MSDTC Bridge 4.0.0.0]
 .
 [HKEY_LOCAL_MACHINE\System\Cont​rolSet002\Services\Msfs]
 .
 [HKEY_LOCAL_MACHINE\System\Cont​rolSet002\Services\MSIServer]
 "ImagePath"="%systemroot%\syst​em32\msiexec.exe /V"
 .
 [HKEY_LOCAL_MACHINE\System\Cont​rolSet002\Services\MSKSSRV]
 "ImagePath"="system32\drivers\​MSKSSRV.sys"
 .
 [HKEY_LOCAL_MACHINE\System\Cont​rolSet002\Services\MSPCLOCK]
 "ImagePath"="system32\drivers\​MSPCLOCK.sys"
 .
 [HKEY_LOCAL_MACHINE\System\Cont​rolSet002\Services\MSPQM]
 "ImagePath"="system32\drivers\​MSPQM.sys"
 .
 [HKEY_LOCAL_MACHINE\System\Cont​rolSet002\Services\mssmbios]
 "ImagePath"="system32\DRIVERS\​mssmbios.sys"
 .
 [HKEY_LOCAL_MACHINE\System\Cont​rolSet002\Services\MSTEE]
 "ImagePath"="system32\drivers\​MSTEE.sys"
 .
 [HKEY_LOCAL_MACHINE\System\Cont​rolSet002\Services\Mup]
 .
 [HKEY_LOCAL_MACHINE\System\Cont​rolSet002\Services\mvd21]
 "ImagePath"="\??\c:\program files\Clarus\Samsung SecretZone\mvd21.sys"
 .
 [HKEY_LOCAL_MACHINE\System\Cont​rolSet002\Services\NABTSFEC]
 "ImagePath"="system32\DRIVERS\​NABTSFEC.sys"
 .
 [HKEY_LOCAL_MACHINE\System\Cont​rolSet002\Services\napagent]
 "ServiceDll"="%SystemRoot%\Sys​tem32\qagentrt.dll"
 .
 [HKEY_LOCAL_MACHINE\System\Cont​rolSet002\Services\NDIS]
 .
 [HKEY_LOCAL_MACHINE\System\Cont​rolSet002\Services\NdisIP]
 "ImagePath"="system32\DRIVERS\​NdisIP.sys"
 .
 [HKEY_LOCAL_MACHINE\System\Cont​rolSet002\Services\NdisTapi]
 "ImagePath"="system32\DRIVERS\​ndistapi.sys"
 .
 [HKEY_LOCAL_MACHINE\System\Cont​rolSet002\Services\Ndisuio]
 "ImagePath"="system32\DRIVERS\​ndisuio.sys"
 .
 [HKEY_LOCAL_MACHINE\System\Cont​rolSet002\Services\NdisWan]
 "ImagePath"="system32\DRIVERS\​ndiswan.sys"
 .
 [HKEY_LOCAL_MACHINE\System\Cont​rolSet002\Services\NDProxy]
 .
 [HKEY_LOCAL_MACHINE\System\Cont​rolSet002\Services\NetBIOS]
 "ImagePath"="system32\DRIVERS\​netbios.sys"
 .
 [HKEY_LOCAL_MACHINE\System\Cont​rolSet002\Services\NetBT]
 "ImagePath"="system32\DRIVERS\​netbt.sys"
 .
 [HKEY_LOCAL_MACHINE\System\Cont​rolSet002\Services\NetDDE]
 "ImagePath"="%SystemRoot%\syst​em32\netdde.exe"
 .
 [HKEY_LOCAL_MACHINE\System\Cont​rolSet002\Services\NetDDEdsdm]
 "ImagePath"="%SystemRoot%\syst​em32\netdde.exe"
 .
 [HKEY_LOCAL_MACHINE\System\Cont​rolSet002\Services\Netlogon]
 "ImagePath"="%SystemRoot%\syst​em32\lsass.exe"
 .
 [HKEY_LOCAL_MACHINE\System\Cont​rolSet002\Services\Netman]
 "ServiceDll"="%SystemRoot%\Sys​tem32\netman.dll"
 .
 [HKEY_LOCAL_MACHINE\System\Cont​rolSet002\Services\NetTcpPortS​haring]
 "ImagePath"="c:\windows\Micros​oft.NET\Framework\v4.0.30319\S​MSvcHost.exe"
 .
 [HKEY_LOCAL_MACHINE\System\Cont​rolSet002\Services\NIC1394]
 "ImagePath"="system32\DRIVERS\​nic1394.sys"
 .
 [HKEY_LOCAL_MACHINE\System\Cont​rolSet002\Services\Nla]
 "ServiceDll"="%SystemRoot%\Sys​tem32\mswsock.dll"
 .
 [HKEY_LOCAL_MACHINE\System\Cont​rolSet002\Services\Npfs]
 .
 [HKEY_LOCAL_MACHINE\System\Cont​rolSet002\Services\Ntfs]
 .
 [HKEY_LOCAL_MACHINE\System\Cont​rolSet002\Services\NtLmSsp]
 "ImagePath"="%SystemRoot%\syst​em32\lsass.exe"
 .
 [HKEY_LOCAL_MACHINE\System\Cont​rolSet002\Services\NtmsSvc]
 "ServiceDll"="%SystemRoot%\sys​tem32\ntmssvc.dll"
 .
 [HKEY_LOCAL_MACHINE\System\Cont​rolSet002\Services\Null]
 .
 [HKEY_LOCAL_MACHINE\System\Cont​rolSet002\Services\nv]
 "ImagePath"="system32\DRIVERS\​nv4_mini.sys"
 .
 [HKEY_LOCAL_MACHINE\System\Cont​rolSet002\Services\NVSvc]
 "ImagePath"="%SystemRoot%\syst​em32\nvsvc32.exe"
 .
 [HKEY_LOCAL_MACHINE\System\Cont​rolSet002\Services\NwlnkFlt]
 "ImagePath"="system32\DRIVERS\​nwlnkflt.sys"
 .
 [HKEY_LOCAL_MACHINE\System\Cont​rolSet002\Services\NwlnkFwd]
 "ImagePath"="system32\DRIVERS\​nwlnkfwd.sys"
 .
 [HKEY_LOCAL_MACHINE\System\Cont​rolSet002\Services\ohci1394]
 "ImagePath"="system32\DRIVERS\​ohci1394.sys"
 .
 [HKEY_LOCAL_MACHINE\System\Cont​rolSet002\Services\Parport]
 "ImagePath"="system32\DRIVERS\​parport.sys"
 .
 [HKEY_LOCAL_MACHINE\System\Cont​rolSet002\Services\PartMgr]
 .
 [HKEY_LOCAL_MACHINE\System\Cont​rolSet002\Services\ParVdm]
 .
 [HKEY_LOCAL_MACHINE\System\Cont​rolSet002\Services\PCI]
 "ImagePath"="system32\DRIVERS\​pci.sys"
 .
 [HKEY_LOCAL_MACHINE\System\Cont​rolSet002\Services\PCIDump]
 .
 [HKEY_LOCAL_MACHINE\System\Cont​rolSet002\Services\PCIIde]
 "ImagePath"="system32\DRIVERS\​pciide.sys"
 .
 [HKEY_LOCAL_MACHINE\System\Cont​rolSet002\Services\Pcmcia]
 .
 [HKEY_LOCAL_MACHINE\System\Cont​rolSet002\Services\PDCOMP]
 .
 [HKEY_LOCAL_MACHINE\System\Cont​rolSet002\Services\PDFRAME]
 .
 [HKEY_LOCAL_MACHINE\System\Cont​rolSet002\Services\PDRELI]
 .
 [HKEY_LOCAL_MACHINE\System\Cont​rolSet002\Services\PDRFRAME]
 .
 [HKEY_LOCAL_MACHINE\System\Cont​rolSet002\Services\perc2]
 .
 [HKEY_LOCAL_MACHINE\System\Cont​rolSet002\Services\perc2hib]
 .
 [HKEY_LOCAL_MACHINE\System\Cont​rolSet002\Services\PerfDisk]
 .
 [HKEY_LOCAL_MACHINE\System\Cont​rolSet002\Services\PerfNet]
 .
 [HKEY_LOCAL_MACHINE\System\Cont​rolSet002\Services\PerfOS]
 .
 [HKEY_LOCAL_MACHINE\System\Cont​rolSet002\Services\PerfProc]
 .
 [HKEY_LOCAL_MACHINE\System\Cont​rolSet002\Services\PlugPlay]
 "ImagePath"="%SystemRoot%\syst​em32\services.exe"
 .
 [HKEY_LOCAL_MACHINE\System\Cont​rolSet002\Services\Pml Driver HPZ12]
 "ImagePath"="c:\windows\system​32\HPZipm12.exe"
 .
 [HKEY_LOCAL_MACHINE\System\Cont​rolSet002\Services\PolicyAgent​]
 "ImagePath"="%SystemRoot%\syst​em32\lsass.exe"
 .
 [HKEY_LOCAL_MACHINE\System\Cont​rolSet002\Services\PptpMinipor​t]
 "ImagePath"="system32\DRIVERS\​raspptp.sys"
 .
 [HKEY_LOCAL_MACHINE\System\Cont​rolSet002\Services\ProtectedSt​orage]
 "ImagePath"="%SystemRoot%\syst​em32\lsass.exe"
 .
 [HKEY_LOCAL_MACHINE\System\Cont​rolSet002\Services\Ps2]
 "ImagePath"="system32\DRIVERS\​PS2.sys"
 .
 [HKEY_LOCAL_MACHINE\System\Cont​rolSet002\Services\PSched]
 "ImagePath"="system32\DRIVERS\​psched.sys"
 .
 [HKEY_LOCAL_MACHINE\System\Cont​rolSet002\Services\Ptilink]
 "ImagePath"="system32\DRIVERS\​ptilink.sys"
 .
 [HKEY_LOCAL_MACHINE\System\Cont​rolSet002\Services\PxHelp20]
 "ImagePath"="System32\Drivers\​PxHelp20.sys"
 .
 [HKEY_LOCAL_MACHINE\System\Cont​rolSet002\Services\ql1080]
 .
 [HKEY_LOCAL_MACHINE\System\Cont​rolSet002\Services\Ql10wnt]
 .
 [HKEY_LOCAL_MACHINE\System\Cont​rolSet002\Services\ql12160]
 .
 [HKEY_LOCAL_MACHINE\System\Cont​rolSet002\Services\ql1240]
 .
 [HKEY_LOCAL_MACHINE\System\Cont​rolSet002\Services\ql1280]
 .
 [HKEY_LOCAL_MACHINE\System\Cont​rolSet002\Services\RasAcd]
 "ImagePath"="system32\DRIVERS\​rasacd.sys"
 .
 [HKEY_LOCAL_MACHINE\System\Cont​rolSet002\Services\RasAuto]
 "ServiceDll"="%SystemRoot%\Sys​tem32\rasauto.dll"
 .
 [HKEY_LOCAL_MACHINE\System\Cont​rolSet002\Services\Rasl2tp]
 "ImagePath"="system32\DRIVERS\​rasl2tp.sys"
 .
 [HKEY_LOCAL_MACHINE\System\Cont​rolSet002\Services\RasMan]
 "ServiceDll"="%SystemRoot%\Sys​tem32\rasmans.dll"
 .
 [HKEY_LOCAL_MACHINE\System\Cont​rolSet002\Services\RasPppoe]
 "ImagePath"="system32\DRIVERS\​raspppoe.sys"
 .
 [HKEY_LOCAL_MACHINE\System\Cont​rolSet002\Services\Raspti]
 "ImagePath"="system32\DRIVERS\​raspti.sys"
 .
 [HKEY_LOCAL_MACHINE\System\Cont​rolSet002\Services\Rdbss]
 "ImagePath"="system32\DRIVERS\​rdbss.sys"
 .
 [HKEY_LOCAL_MACHINE\System\Cont​rolSet002\Services\RDPCDD]
 "ImagePath"="System32\DRIVERS\​RDPCDD.sys"
 .
 [HKEY_LOCAL_MACHINE\System\Cont​rolSet002\Services\RDPDD]
 .
 [HKEY_LOCAL_MACHINE\System\Cont​rolSet002\Services\rdpdr]
 "ImagePath"="system32\DRIVERS\​rdpdr.sys"
 .
 [HKEY_LOCAL_MACHINE\System\Cont​rolSet002\Services\RDPNP]
 .
 [HKEY_LOCAL_MACHINE\System\Cont​rolSet002\Services\RDPWD]
 .
 [HKEY_LOCAL_MACHINE\System\Cont​rolSet002\Services\RDSessMgr]
 "ImagePath"="c:\windows\system​32\sessmgr.exe"
 .
 [HKEY_LOCAL_MACHINE\System\Cont​rolSet002\Services\redbook]
 "ImagePath"="system32\DRIVERS\​redbook.sys"
 .
 [HKEY_LOCAL_MACHINE\System\Cont​rolSet002\Services\RemoteAcces​s]
 "ServiceDll"="%SystemRoot%\Sys​tem32\mprdim.dll"
 .
 [HKEY_LOCAL_MACHINE\System\Cont​rolSet002\Services\RemoteRegis​try]
 "ServiceDll"="%SystemRoot%\sys​tem32\regsvc.dll"
 .
 [HKEY_LOCAL_MACHINE\System\Cont​rolSet002\Services\RimUsb]
 "ImagePath"="System32\Drivers\​RimUsb.sys"
 .
 [HKEY_LOCAL_MACHINE\System\Cont​rolSet002\Services\RpcLocator]
 "ImagePath"="%SystemRoot%\syst​em32\locator.exe"
 .
 [HKEY_LOCAL_MACHINE\System\Cont​rolSet002\Services\RpcSs]
 "ServiceDll"="%SystemRoot%\Sys​tem32\rpcss.dll"
 .
 [HKEY_LOCAL_MACHINE\System\Cont​rolSet002\Services\RSVP]
 "ImagePath"="%SystemRoot%\syst​em32\rsvp.exe"
 .
 [HKEY_LOCAL_MACHINE\System\Cont​rolSet002\Services\RTL8023xp]
 "ImagePath"="system32\DRIVERS\​Rtlnicxp.sys"
 .
 [HKEY_LOCAL_MACHINE\System\Cont​rolSet002\Services\rtl8139]
 "ImagePath"="system32\DRIVERS\​RTL8139.SYS"
 .
 [HKEY_LOCAL_MACHINE\System\Cont​rolSet002\Services\SamSs]
 "ImagePath"="%SystemRoot%\syst​em32\lsass.exe"
 .
 [HKEY_LOCAL_MACHINE\System\Cont​rolSet002\Services\SCardSvr]
 "ImagePath"="%SystemRoot%\Syst​em32\SCardSvr.exe"
 .
 [HKEY_LOCAL_MACHINE\System\Cont​rolSet002\Services\Schedule]
 "ServiceDll"="%SystemRoot%\sys​tem32\schedsvc.dll"
 .
 [HKEY_LOCAL_MACHINE\System\Cont​rolSet002\Services\ScsiPort]
 "ImagePath"="%SystemRoot%\syst​em32\drivers\scsiport.sys"
 .
 [HKEY_LOCAL_MACHINE\System\Cont​rolSet002\Services\Secdrv]
 "ImagePath"="system32\DRIVERS\​secdrv.sys"
 .
 [HKEY_LOCAL_MACHINE\System\Cont​rolSet002\Services\seclogon]
 "ServiceDll"="%SystemRoot%\Sys​tem32\seclogon.dll"
 .
 [HKEY_LOCAL_MACHINE\System\Cont​rolSet002\Services\SENS]
 "ServiceDll"="%SystemRoot%\sys​tem32\sens.dll"
 .
 [HKEY_LOCAL_MACHINE\System\Cont​rolSet002\Services\Serial]
 .
 [HKEY_LOCAL_MACHINE\System\Cont​rolSet002\Services\ServiceMode​lEndpoint 4.0.0.0]
 .
 [HKEY_LOCAL_MACHINE\System\Cont​rolSet002\Services\ServiceMode​lOperation 4.0.0.0]
 .
 [HKEY_LOCAL_MACHINE\System\Cont​rolSet002\Services\ServiceMode​lService 4.0.0.0]
 .
 [HKEY_LOCAL_MACHINE\System\Cont​rolSet002\Services\Sfloppy]
 .
 [HKEY_LOCAL_MACHINE\System\Cont​rolSet002\Services\SharedAcces​s]
 "ServiceDll"="%SystemRoot%\Sys​tem32\ipnathlp.dll"
 .
 [HKEY_LOCAL_MACHINE\System\Cont​rolSet002\Services\ShellHWDete​ction]
 "ServiceDll"="%SystemRoot%\Sys​tem32\shsvcs.dll"
 .
 [HKEY_LOCAL_MACHINE\System\Cont​rolSet002\Services\Simbad]
 .
 [HKEY_LOCAL_MACHINE\System\Cont​rolSet002\Services\SLIP]
 "ImagePath"="system32\DRIVERS\​SLIP.sys"
 .
 [HKEY_LOCAL_MACHINE\System\Cont​rolSet002\Services\SMSvcHost 4.0.0.0]
 .
 [HKEY_LOCAL_MACHINE\System\Cont​rolSet002\Services\Sparrow]
 .
 [HKEY_LOCAL_MACHINE\System\Cont​rolSet002\Services\splitter]
 "ImagePath"="system32\drivers\​splitter.sys"
 .
 [HKEY_LOCAL_MACHINE\System\Cont​rolSet002\Services\Spooler]
 "ImagePath"="%SystemRoot%\syst​em32\spoolsv.exe"
 .
 [HKEY_LOCAL_MACHINE\System\Cont​rolSet002\Services\sr]
 "ImagePath"="system32\DRIVERS\​sr.sys"
 .
 [HKEY_LOCAL_MACHINE\System\Cont​rolSet002\Services\srservice]
 "ServiceDll"="%SystemRoot%\sys​tem32\srsvc.dll"
 .
 [HKEY_LOCAL_MACHINE\System\Cont​rolSet002\Services\Srv]
 "ImagePath"="system32\DRIVERS\​srv.sys"
 .
 [HKEY_LOCAL_MACHINE\System\Cont​rolSet002\Services\ssadbus]
 "ImagePath"="system32\DRIVERS\​ssadbus.sys"
 .
 [HKEY_LOCAL_MACHINE\System\Cont​rolSet002\Services\ssadmdfl]
 "ImagePath"="system32\DRIVERS\​ssadmdfl.sys"
 .
 [HKEY_LOCAL_MACHINE\System\Cont​rolSet002\Services\ssadmdm]
 "ImagePath"="system32\DRIVERS\​ssadmdm.sys"
 .
 [HKEY_LOCAL_MACHINE\System\Cont​rolSet002\Services\SSDPSRV]
 "ServiceDll"="%SystemRoot%\Sys​tem32\ssdpsrv.dll"
 .
 [HKEY_LOCAL_MACHINE\System\Cont​rolSet002\Services\stisvc]
 "ServiceDll"="%SystemRoot%\sys​tem32\wiaservc.dll"
 .
 [HKEY_LOCAL_MACHINE\System\Cont​rolSet002\Services\streamip]
 "ImagePath"="system32\DRIVERS\​StreamIP.sys"
 .
 [HKEY_LOCAL_MACHINE\System\Cont​rolSet002\Services\swenum]
 "ImagePath"="system32\DRIVERS\​swenum.sys"
 .
 [HKEY_LOCAL_MACHINE\System\Cont​rolSet002\Services\swmidi]
 "ImagePath"="system32\drivers\​swmidi.sys"
 .
 [HKEY_LOCAL_MACHINE\System\Cont​rolSet002\Services\SwPrv]
 "ImagePath"="c:\windows\system​32\dllhost.exe /Processid:{E240A44A-EE25-4AA3​-A4EB-0106CD6D8248}"
 .
 [HKEY_LOCAL_MACHINE\System\Cont​rolSet002\Services\swwd]
 .
 [HKEY_LOCAL_MACHINE\System\Cont​rolSet002\Services\symc810]
 .
 [HKEY_LOCAL_MACHINE\System\Cont​rolSet002\Services\symc8xx]
 .
 [HKEY_LOCAL_MACHINE\System\Cont​rolSet002\Services\sym_hi]
 .
 [HKEY_LOCAL_MACHINE\System\Cont​rolSet002\Services\sym_u3]
 .
 [HKEY_LOCAL_MACHINE\System\Cont​rolSet002\Services\sysaudio]
 "ImagePath"="system32\drivers\​sysaudio.sys"
 .
 [HKEY_LOCAL_MACHINE\System\Cont​rolSet002\Services\SysmonLog]
 "ImagePath"="%SystemRoot%\syst​em32\smlogsvc.exe"
 .
 [HKEY_LOCAL_MACHINE\System\Cont​rolSet002\Services\TapiSrv]
 "ServiceDll"="%SystemRoot%\Sys​tem32\tapisrv.dll"
 .
 [HKEY_LOCAL_MACHINE\System\Cont​rolSet002\Services\Tcpip]
 "ImagePath"="system32\DRIVERS\​tcpip.sys"
 .
 [HKEY_LOCAL_MACHINE\System\Cont​rolSet002\Services\TDPIPE]
 .
 [HKEY_LOCAL_MACHINE\System\Cont​rolSet002\Services\TDTCP]
 .
 [HKEY_LOCAL_MACHINE\System\Cont​rolSet002\Services\TermDD]
 "ImagePath"="system32\DRIVERS\​termdd.sys"
 .
 [HKEY_LOCAL_MACHINE\System\Cont​rolSet002\Services\TermService​]
 "ServiceDll"="%SystemRoot%\Sys​tem32\termsrv.dll"
 .
 [HKEY_LOCAL_MACHINE\System\Cont​rolSet002\Services\Themes]
 "ServiceDll"="%SystemRoot%\Sys​tem32\shsvcs.dll"
 .
 [HKEY_LOCAL_MACHINE\System\Cont​rolSet002\Services\TlntSvr]
 "ImagePath"="c:\windows\system​32\tlntsvr.exe"
 .
 [HKEY_LOCAL_MACHINE\System\Cont​rolSet002\Services\TosIde]
 .
 [HKEY_LOCAL_MACHINE\System\Cont​rolSet002\Services\TrkWks]
 "ServiceDll"="%SystemRoot%\sys​tem32\trkwks.dll"
 .
 [HKEY_LOCAL_MACHINE\System\Cont​rolSet002\Services\TSDDD]
 .
 [HKEY_LOCAL_MACHINE\System\Cont​rolSet002\Services\Udfs]
 .
 [HKEY_LOCAL_MACHINE\System\Cont​rolSet002\Services\ultra]
 .
 [HKEY_LOCAL_MACHINE\System\Cont​rolSet002\Services\Update]
 "ImagePath"="system32\DRIVERS\​update.sys"
 .
 [HKEY_LOCAL_MACHINE\System\Cont​rolSet002\Services\upnphost]
 "ServiceDll"="%SystemRoot%\Sys​tem32\upnphost.dll"
 .
 [HKEY_LOCAL_MACHINE\System\Cont​rolSet002\Services\UPS]
 "ImagePath"="%SystemRoot%\Syst​em32\ups.exe"
 .
 [HKEY_LOCAL_MACHINE\System\Cont​rolSet002\Services\usb]
 .
 [HKEY_LOCAL_MACHINE\System\Cont​rolSet002\Services\USBAAPL]
 "ImagePath"="System32\Drivers\​usbaapl.sys"
 .
 [HKEY_LOCAL_MACHINE\System\Cont​rolSet002\Services\usbccgp]
 "ImagePath"="system32\DRIVERS\​usbccgp.sys"
 .
 [HKEY_LOCAL_MACHINE\System\Cont​rolSet002\Services\usbehci]
 "ImagePath"="system32\DRIVERS\​usbehci.sys"
 .
 [HKEY_LOCAL_MACHINE\System\Cont​rolSet002\Services\usbhub]
 "ImagePath"="system32\DRIVERS\​usbhub.sys"
 .
 [HKEY_LOCAL_MACHINE\System\Cont​rolSet002\Services\usbohci]
 "ImagePath"="system32\DRIVERS\​usbohci.sys"
 .
 [HKEY_LOCAL_MACHINE\System\Cont​rolSet002\Services\usbprint]
 "ImagePath"="system32\DRIVERS\​usbprint.sys"
 .
 [HKEY_LOCAL_MACHINE\System\Cont​rolSet002\Services\usbscan]
 "ImagePath"="system32\DRIVERS\​usbscan.sys"
 .
 [HKEY_LOCAL_MACHINE\System\Cont​rolSet002\Services\usbstor]
 "ImagePath"="system32\DRIVERS\​USBSTOR.SYS"
 .
 [HKEY_LOCAL_MACHINE\System\Cont​rolSet002\Services\usbuhci]
 "ImagePath"="system32\DRIVERS\​usbuhci.sys"
 .
 [HKEY_LOCAL_MACHINE\System\Cont​rolSet002\Services\VgaSave]
 "ImagePath"="\SystemRoot\Syste​m32\drivers\vga.sys"
 .
 [HKEY_LOCAL_MACHINE\System\Cont​rolSet002\Services\ViaIde]
 "ImagePath"="system32\DRIVERS\​viaide.sys"
 .
 [HKEY_LOCAL_MACHINE\System\Cont​rolSet002\Services\VolSnap]
 .
 [HKEY_LOCAL_MACHINE\System\Cont​rolSet002\Services\VSS]
 "ImagePath"="%SystemRoot%\Syst​em32\vssvc.exe"
 .
 [HKEY_LOCAL_MACHINE\System\Cont​rolSet002\Services\W32Time]
 "ServiceDll"="%systemroot%\sys​tem32\w32time.dll"
 .
 [HKEY_LOCAL_MACHINE\System\Cont​rolSet002\Services\W3SVC]
 .
 [HKEY_LOCAL_MACHINE\System\Cont​rolSet002\Services\Wanarp]
 "ImagePath"="system32\DRIVERS\​wanarp.sys"
 .
 [HKEY_LOCAL_MACHINE\System\Cont​rolSet002\Services\Wdf01000]
 "ImagePath"="System32\Drivers\​wdf01000.sys"
 .
 [HKEY_LOCAL_MACHINE\System\Cont​rolSet002\Services\WDICA]
 .
 [HKEY_LOCAL_MACHINE\System\Cont​rolSet002\Services\wdmaud]
 "ImagePath"="system32\drivers\​wdmaud.sys"
 .
 [HKEY_LOCAL_MACHINE\System\Cont​rolSet002\Services\WebClient]
 "ServiceDll"="%SystemRoot%\Sys​tem32\webclnt.dll"
 .
 [HKEY_LOCAL_MACHINE\System\Cont​rolSet002\Services\Windows Workflow Foundation 4.0.0.0]
 .
 [HKEY_LOCAL_MACHINE\System\Cont​rolSet002\Services\winmgmt]
 "ServiceDll"="%SystemRoot%\sys​tem32\wbem\WMIsvc.dll"
 .
 [HKEY_LOCAL_MACHINE\System\Cont​rolSet002\Services\Winsock]
 .
 [HKEY_LOCAL_MACHINE\System\Cont​rolSet002\Services\WinSock2]
 .
 [HKEY_LOCAL_MACHINE\System\Cont​rolSet002\Services\WinTrust]
 .
 [HKEY_LOCAL_MACHINE\System\Cont​rolSet002\Services\WmdmPmSN]
 "ServiceDll"="c:\windows\syste​m32\mspmsnsv.dll"
 --
 .
 [HKEY_LOCAL_MACHINE\System\Cont​rolSet002\Services\Wmi]
 "ServiceDll"="%SystemRoot%\Sys​tem32\advapi32.dll"
 .
 [HKEY_LOCAL_MACHINE\System\Cont​rolSet002\Services\WmiApRpl]
 .
 [HKEY_LOCAL_MACHINE\System\Cont​rolSet002\Services\WmiApSrv]
 "ImagePath"="c:\windows\system​32\wbem\wmiapsrv.exe"
 .
 [HKEY_LOCAL_MACHINE\System\Cont​rolSet002\Services\WMPNetworkS​vc]
 "ImagePath"="\"c:\program files\Windows Media Player\WMPNetwk.exe\""
 .
 [HKEY_LOCAL_MACHINE\System\Cont​rolSet002\Services\WpdUsb]
 "ImagePath"="system32\DRIVERS\​wpdusb.sys"
 .
 [HKEY_LOCAL_MACHINE\System\Cont​rolSet002\Services\WPFFontCach​e_v0400]
 "ImagePath"="c:\windows\Micros​oft.NET\Framework\v4.0.30319\W​PF\WPFFontCache_v0400.exe"
 .
 [HKEY_LOCAL_MACHINE\System\Cont​rolSet002\Services\WS2IFSL]
 "ImagePath"="\SystemRoot\Syste​m32\drivers\ws2ifsl.sys"
 .
 [HKEY_LOCAL_MACHINE\System\Cont​rolSet002\Services\wscsvc]
 "ServiceDll"="%SYSTEMROOT%\sys​tem32\wscsvc.dll"
 .
 [HKEY_LOCAL_MACHINE\System\Cont​rolSet002\Services\WSTCODEC]
 "ImagePath"="system32\DRIVERS\​WSTCODEC.SYS"
 .
 [HKEY_LOCAL_MACHINE\System\Cont​rolSet002\Services\wuauserv]
 "ServiceDll"="c:\windows\syste​m32\wuauserv.dll"
 .
 [HKEY_LOCAL_MACHINE\System\Cont​rolSet002\Services\WudfPf]
 "ImagePath"="system32\DRIVERS\​WudfPf.sys"
 .
 [HKEY_LOCAL_MACHINE\System\Cont​rolSet002\Services\WudfRd]
 "ImagePath"="system32\DRIVERS\​wudfrd.sys"
 .
 [HKEY_LOCAL_MACHINE\System\Cont​rolSet002\Services\WudfSvc]
 "ServiceDll"="%SystemRoot%\Sys​tem32\WUDFSvc.dll"
 .
 [HKEY_LOCAL_MACHINE\System\Cont​rolSet002\Services\WZCSVC]
 "ServiceDll"="%SystemRoot%\Sys​tem32\wzcsvc.dll"
 .
 [HKEY_LOCAL_MACHINE\System\Cont​rolSet002\Services\xmlprov]
 "ServiceDll"="%SystemRoot%\Sys​tem32\xmlprov.dll"
 .
 [HKEY_LOCAL_MACHINE\System\Cont​rolSet002\Services\zumbus]
 "ImagePath"="system32\DRIVERS\​zumbus.sys"
 .
 [HKEY_LOCAL_MACHINE\System\Cont​rolSet002\Services\{1CEDAE29-F​A41-4AE6-BD3D-D3CBBA6A701C}]
 .
 [HKEY_LOCAL_MACHINE\System\Cont​rolSet002\Services\{2A583631-4​561-4C78-B51F-1A17A8B137D8}]
 .
 [HKEY_LOCAL_MACHINE\System\Cont​rolSet002\Services\{B3D725FA-1​806-4AA6-9FBE-1BDD638A9277}]
 .
 [HKEY_LOCAL_MACHINE\System\Cont​rolSet002\Services\{D19DAD3F-1​6CB-44C8-A302-024C40BB48AD}]
 .
 --------------------- CLES DE REGISTRE BLOQUEES ---------------------
 .
 [HKEY_USERS\S-1-5-21-4109910490​-3744524818-1263572-1007\Softw​are\Microsoft\SystemCertificat​es\AddressBook*]
 @Allowed: (Read) (RestrictedCode)
 @Allowed: (Read) (RestrictedCode)
 .
 --------------------- DLLs chargées dans les processus actifs ---------------------
 .
 - - - - - - - > 'winlogon.exe'(720)
 c:\windows\system32\Ati2evxx.d​ll
 .
 - - - - - - - > 'explorer.exe'(5272)
 c:\windows\system32\eappprxy.d​ll
 c:\windows\system32\webcheck.d​ll
 c:\windows\system32\WPDShServi​ceObj.dll
 c:\windows\system32\PortableDe​viceTypes.dll
 c:\windows\system32\PortableDe​viceApi.dll
 .
 ------------------------ Autres processus actifs ------------------------
 .
 c:\windows\system32\Ati2evxx.e​xe
 c:\windows\system32\Ati2evxx.e​xe
 c:\program files\Fichiers communs\Apple\Mobile Device Support\AppleMobileDeviceServi​ce.exe
 c:\windows\system32\bgsvcgen.e​xe
 c:\program files\Bonjour\mDNSResponder.ex​e
 c:\program files\Java\jre6\bin\jqs.exe
 c:\program files\Windows Media Player\WMPNetwk.exe
 c:\windows\system32\dllhost.ex​e
 c:\windows\system32\wscntfy.ex​e
 c:\windows\ehome\ehtray.exe
 c:\windows\ARPWRMSG.EXE
 c:\windows\system\hpsysdrv.exe
 c:\windows\RTHDCPL.EXE
 c:\windows\eHome\ehmsas.exe
 c:\hp\KBD\KBD.EXE
 c:\program files\HP\HP Software Update\HPWuSchd2.exe
 c:\program files\real\realplayer\update\r​ealsched.exe
 c:\program files\Fichiers communs\InstallShield\UpdateSe​rvice\issch.exe
 c:\program files\Fichiers communs\Java\Java Update\jusched.exe
 c:\program files\SFR\Kit\9props.exe
 c:\program files\OpenOffice.org 3\program\soffice.exe
 c:\program files\OpenOffice.org 3\program\soffice.bin
 c:\program files\iPod\bin\iPodService.exe
 c:\program files\HP\Digital Imaging\bin\hpqSTE08.exe
 .
 ******************************​******************************​**************
 .
 Heure de fin: 2012-01-30  15:39:11 - La machine a redémarré
 ComboFix-quarantined-files.txt  2012-01-30 14:38
 .
 Avant-CF: 72 065 806 336 octets libres
 Après-CF: 71 969 460 224 octets libres
 .
 - - End Of File - - 14B0CEBB04DA18DFA7637D8668D218​F9

(Publicité)
Imagine ...
Profil : Equipe sécurité
kmisol
Célèbre sur tout le forum (de 30 000 à 99 999 messages postés)
  1. Posté le 30/01/2012 à 19:51:14  
  1. answer
  1. Prévenir les modérateurs en cas d'abus
 
Hello,

 



------------------------ Autres processus actifs ------------------------
 .
 c:\windows\system32\Ati2evxx.e​xe
 c:\windows\system32\Ati2evxx.e​xe
 c:\program files\Fichiers communs\Apple\Mobile Device Support\AppleMobileDeviceServi​ce.exe
 c:\windows\system32\bgsvcgen.exe <--
 c:\program files\Bonjour\mDNSResponder.ex​e
 c:\program files\Java\jre6\bin\jqs.exe
 c:\program files\Windows Media Player\WMPNetwk.exe
 c:\windows\system32\dllhost.ex​e
 ...
 




 Extrait du rapport ComboFix.

 



j'ai fait un scan avec "Système Explorer",et il m'indique que (bgsvcgen.exe) est TREATH.



 Tu peux relancer un scan pour voir ?

vieux motard que jamais
remi-fasol
Sur la bonne voie (de 100 à 499 messages postés)
  1. Posté le 31/01/2012 à 08:50:36  
  1. answer
  1. Prévenir les modérateurs en cas d'abus
 
il est toujours là !

Home

News

Download

Awards

Help

Forum

Support

File Database

 System Explorer Logo
 System Explorer Scan Results
 Overview
 Scan Time: 2012-01-31 08:41:10
 Operating System: Windows XP
 Scanned Files: 287
 RatingThreat Files: 1
 RatingSuspicious Files: 0
 RatingSafe Files: 227
 RatingUnknown Files: 59
 Scanned Files
 Directory Filename Occurence Rating  
 %sysdir%\ bgsvcgen.exe High Rating Details
 %allusers_appdata%\real\realpl​ayer\browserrecordplugin\chrom​e\hoo... rpchrome14browserrecordhelper.​dll High Rating Details
 %allusers_appdata%\real\realpl​ayer\browserrecordplugin\commo​n\ rpcommon15browserrecordplugin.​dll High Rating Details
 %allusers_appdata%\real\realpl​ayer\browserrecordplugin\firef​ox\ex... nprpffbrowserrecordext.dll High Rating Details
 %allusers_appdata%\real\realpl​ayer\browserrecordplugin\thins​hims\ rpnpshimswf.dll High Rating Details
 %commonfiles%\apple\apple application support\ AppleVersions.dll High Rating Details
 %commonfiles%\apple\apple application support\ ASL.dll High Rating Details
 %commonfiles%\apple\apple application support\ CFNetwork.dll High Rating Details
 %commonfiles%\apple\apple application support\ CoreFoundation.dll High Rating Details
 %commonfiles%\apple\apple application support\ icudt46.dll High Rating Details
 %commonfiles%\apple\apple application support\ libdispatch.dll High Rating Details
 %commonfiles%\apple\apple application support\ libicuin.dll High Rating Details
 %commonfiles%\apple\apple application support\ libicuuc.dll High Rating Details
 %commonfiles%\apple\apple application support\ libxml2.dll High Rating Details
 %commonfiles%\apple\apple application support\ objc.dll High Rating Details
 %commonfiles%\apple\apple application support\ pthreadVC2.dll High Rating Details
 %commonfiles%\apple\apple application support\ SQLite3.dll High Rating Details
 %commonfiles%\apple\apple application support\ YSCrashDump.dll High Rating Details
 %commonfiles%\apple\apple application support\ zlib1.dll High Rating Details
 %commonfiles%\apple\mobile device support\ AppleMobileDeviceService.exe High Rating Details
 %commonfiles%\apple\mobile device support\ AppleMobileDeviceService_main.​dll High Rating Details
 %commonfiles%\apple\mobile device support\ iTunesMobileDevice.dll High Rating Details
 %commonfiles%\apple\mobile device support\ MobileDevice.dll High Rating Details
 %commonfiles%\g data\avkproxy\ AVKProxy.exe Medium Rating Details
 %commonfiles%\g data\gdscan\ GDScan.exe Medium Rating Details
 %commonfiles%\installshield\up​dateservice\ issch.exe High Rating Details
 %commonfiles%\java\java update\ jusched.exe High Rating Details
 %programfiles%\bonjour\ mdnsNSP.dll High Rating Details
 %programfiles%\bonjour\ mDNSResponder.exe High Rating Details
 %programfiles%\g data\antivirus\avktray\ AVKTray.exe High Rating Details
 %programfiles%\g data\antivirus\avk\ AVKService.exe Medium Rating Details
 %programfiles%\g data\antivirus\avk\ AVKWCtl.exe High Rating Details
 %programfiles%\hp\digital imaging\bin\ hphtra08.dll Medium Rating Details
 %programfiles%\hp\digital imaging\bin\ hpocxi08.dll High Rating Details
 %programfiles%\hp\digital imaging\bin\ hpoddcomm09.dll High Rating Details
 %programfiles%\hp\digital imaging\bin\ hpodio08.dll High Rating Details
 %programfiles%\hp\digital imaging\bin\ hpodvd09.dll High Rating Details
 %programfiles%\hp\digital imaging\bin\ hpotra08.dll Medium Rating Details
 %programfiles%\hp\digital imaging\bin\ hpotra08.rsc Medium Rating Details
 %programfiles%\hp\digital imaging\bin\ hpotradd.dll High Rating Details
 %programfiles%\hp\digital imaging\bin\ hpqcob08.dll High Rating Details
 %programfiles%\hp\digital imaging\bin\ hpqcxm08.dll High Rating Details
 %programfiles%\hp\digital imaging\bin\ hpqmfc09.dll High Rating Details
 %programfiles%\hp\digital imaging\bin\ hpqmif08.dll Medium Rating Details
 %programfiles%\hp\digital imaging\bin\ hpqsem08.rsc Medium Rating Details
 %programfiles%\hp\digital imaging\bin\ hpqSTE08.exe High Rating Details
 %programfiles%\hp\digital imaging\bin\ hpqSTE08.rsc Medium Rating Details
 %programfiles%\hp\digital imaging\bin\ hpqsti08.dll High Rating Details
 %programfiles%\hp\digital imaging\bin\ hpqstp08.dll High Rating Details
 %programfiles%\hp\digital imaging\bin\ hpqtao08.dll High Rating Details
 %programfiles%\hp\digital imaging\bin\ hpqtap08.dll High Rating Details
 %programfiles%\hp\digital imaging\bin\ hpqtra08.exe High Rating Details
 %programfiles%\hp\digital imaging\bin\ hpqtra08.rsc Medium Rating Details
 %programfiles%\hp\digital imaging\bin\ hpquio08.dll High Rating Details
 %programfiles%\hp\digital imaging\bin\ HpqUtil.dll Medium Rating Details
 %programfiles%\hp\digital imaging\unload\ hpiCamTA.dll Medium Rating Details
 %programfiles%\hp\digital imaging\unload\ HpqUnRes.dll Medium Rating Details
 %programfiles%\hp\hp software update\ HPWuSchd2.exe High Rating Details
 %programfiles%\ipod\bin\ iPodService.exe High Rating Details
 %programfiles%\ipod\bin\ipodse​rvice.resources\fr.lproj\ iPodServiceLocalized.DLL High Rating Details
 %programfiles%\ipod\bin\ipodse​rvice.resources\ iPodService.DLL High Rating Details
 %programfiles%\itunes\ iTunesHelper.dll High Rating Details
 %programfiles%\itunes\ iTunesHelper.exe High Rating Details
 %programfiles%\itunes\ituneshe​lper.resources\fr.lproj\ iTunesHelperLocalized.DLL High Rating Details
 %programfiles%\itunes\ituneshe​lper.resources\ iTunesHelper.DLL High Rating Details
 %programfiles%\java\jre6\bin\ jqs.exe High Rating Details
 %programfiles%\java\jre6\bin\ MSVCR71.dll High Rating Details
 %programfiles%\mainconcept\ mceesmpeg.ax Medium Rating Details
 %programfiles%\mainconcept\ mcempgaout.dll Medium Rating Details
 %programfiles%\mainconcept\ mcempgmux.dll Medium Rating Details
 %programfiles%\mainconcept\ mcempgvout.004 Medium Rating Details
 %programfiles%\mainconcept\ mcempgvout.dll Medium Rating Details
 %programfiles%\mozilla firefox\components\ browsercomps.dll High Rating Details
 %programfiles%\mozilla firefox\ firefox.exe High Rating Details
 %programfiles%\mozilla firefox\ freebl3.dll High Rating Details
 %programfiles%\mozilla firefox\ mozalloc.dll High Rating Details
 %programfiles%\mozilla firefox\ mozjs.dll High Rating Details
 %programfiles%\mozilla firefox\ mozsqlite3.dll High Rating Details
 %programfiles%\mozilla firefox\ mozutils.dll High Rating Details
 %programfiles%\mozilla firefox\ nspr4.dll High Rating Details
 %programfiles%\mozilla firefox\ nss3.dll High Rating Details
 %programfiles%\mozilla firefox\ nssckbi.dll High Rating Details
 %programfiles%\mozilla firefox\ nssdbm3.dll High Rating Details
 %programfiles%\mozilla firefox\ nssutil3.dll High Rating Details
 %programfiles%\mozilla firefox\ plc4.dll High Rating Details
 %programfiles%\mozilla firefox\ plds4.dll High Rating Details
 %programfiles%\mozilla firefox\ plugin-container.exe High Rating Details
 %programfiles%\mozilla firefox\ smime3.dll High Rating Details
 %programfiles%\mozilla firefox\ softokn3.dll High Rating Details
 %programfiles%\mozilla firefox\ ssl3.dll High Rating Details
 %programfiles%\mozilla firefox\ xpcom.dll High Rating Details
 %programfiles%\mozilla firefox\ xul.dll High Rating Details
 %programfiles%\openoffice.org 3\program\ saxmi.dll High Rating Details
 %programfiles%\openoffice.org 3\program\ soffice.bin High Rating Details
 %programfiles%\openoffice.org 3\program\ soffice.exe High Rating Details
 %programfiles%\real\realplayer​\update\ realsched.exe High Rating Details
 %programfiles%\sfr\kit\ 9props.exe Medium Rating Details
 %programfiles%\system explorer\ SystemExplorer.exe High Rating Details
 %programfiles%\windows media player\ WMPNetwk.exe High Rating Details
 %programfiles%\windows media player\ WMPNSCFG.exe Medium Rating Details
 %programfiles%\windows media player\ wmpnssci.dll Medium Rating Details
 %sysdir%\ alg.exe High Rating Details
 %sysdir%\ Ati2evxx.exe High Rating Details
 %sysdir%\ csrss.exe High Rating Details
 %sysdir%\ dllhost.exe High Rating Details
 %sysdir%\drivers\ 3xHybrid.sys Medium Rating Details
 %sysdir%\drivers\ acedrv11.sys High Rating Details
 %sysdir%\drivers\ ACPI.sys High Rating Details
 %sysdir%\drivers\ Afc.sys High Rating Details
 %sysdir%\drivers\ afd.sys High Rating Details
 %sysdir%\drivers\ aracpi.sys Medium Rating Details
 %sysdir%\drivers\ arhidfltr.sys Medium Rating Details
 %sysdir%\drivers\ arkbcfltr.sys Medium Rating Details
 %sysdir%\drivers\ armoucfltr.sys Medium Rating Details
 %sysdir%\drivers\ arp1394.sys High Rating Details
 %sysdir%\drivers\ arpolicy.sys Medium Rating Details
 %sysdir%\drivers\ atapi.sys High Rating Details
 %sysdir%\drivers\ ati2mtag.sys High Rating Details
 %sysdir%\drivers\ atksgt.sys High Rating Details
 %sysdir%\drivers\ audstub.sys High Rating Details
 %sysdir%\drivers\ bb-run.sys High Rating Details
 %sysdir%\drivers\ cdrom.sys High Rating Details
 %sysdir%\drivers\ disk.sys High Rating Details
 %sysdir%\drivers\ dmio.sys High Rating Details
 %sysdir%\drivers\ dmload.sys High Rating Details
 %sysdir%\drivers\ fdc.sys High Rating Details
 %sysdir%\drivers\ fltMgr.sys High Rating Details
 %sysdir%\drivers\ ftdisk.sys High Rating Details
 %sysdir%\drivers\ ftsata2.sys High Rating Details
 %sysdir%\drivers\ GDBehave.sys High Rating Details
 %sysdir%\drivers\ GDTdiIcpt.sys High Rating Details
 %sysdir%\drivers\ GEARAspiWDM.sys High Rating Details
 %sysdir%\drivers\ GRD.sys Medium Rating Details
 %sysdir%\drivers\ HDAudBus.sys High Rating Details
 %sysdir%\drivers\ hidusb.sys High Rating Details
 %sysdir%\drivers\ HookCentre.sys High Rating Details
 %sysdir%\drivers\ HTTP.sys High Rating Details
 %sysdir%\drivers\ i8042prt.sys High Rating Details
 %sysdir%\drivers\ iastor.sys High Rating Details
 %sysdir%\drivers\ imapi.sys High Rating Details
 %sysdir%\drivers\ intelide.sys High Rating Details
 %sysdir%\drivers\ intelppm.sys High Rating Details
 %sysdir%\drivers\ ipnat.sys High Rating Details
 %sysdir%\drivers\ ipsec.sys High Rating Details
 %sysdir%\drivers\ isapnp.sys High Rating Details
 %sysdir%\drivers\ kbdclass.sys High Rating Details
 %sysdir%\drivers\ lirsgt.sys High Rating Details
 %sysdir%\drivers\ MiniIcpt.sys High Rating Details
 %sysdir%\drivers\ mouclass.sys High Rating Details
 %sysdir%\drivers\ mouhid.sys High Rating Details
 %sysdir%\drivers\ mrxdav.sys High Rating Details
 %sysdir%\drivers\ mrxsmb.sys High Rating Details
 %sysdir%\drivers\ msgpc.sys High Rating Details
 %sysdir%\drivers\ MSPQM.sys High Rating Details
 %sysdir%\drivers\ mssmbios.sys High Rating Details
 %sysdir%\drivers\ ndistapi.sys High Rating Details
 %sysdir%\drivers\ ndisuio.sys High Rating Details
 %sysdir%\drivers\ ndiswan.sys High Rating Details
 %sysdir%\drivers\ netbios.sys High Rating Details
 %sysdir%\drivers\ netbt.sys High Rating Details
 %sysdir%\drivers\ nic1394.sys High Rating Details
 %sysdir%\drivers\ ohci1394.sys High Rating Details
 %sysdir%\drivers\ parport.sys High Rating Details
 %sysdir%\drivers\ pci.sys High Rating Details
 %sysdir%\drivers\ pciide.sys High Rating Details
 %sysdir%\drivers\ PS2.sys Medium Rating Details
 %sysdir%\drivers\ psched.sys High Rating Details
 %sysdir%\drivers\ ptilink.sys High Rating Details
 %sysdir%\drivers\ PxHelp20.sys High Rating Details
 %sysdir%\drivers\ rasacd.sys High Rating Details
 %sysdir%\drivers\ rasl2tp.sys High Rating Details
 %sysdir%\drivers\ raspppoe.sys High Rating Details
 %sysdir%\drivers\ raspptp.sys High Rating Details
 %sysdir%\drivers\ raspti.sys High Rating Details
 %sysdir%\drivers\ rdbss.sys High Rating Details
 %sysdir%\drivers\ RDPCDD.sys High Rating Details
 %sysdir%\drivers\ rdpdr.sys High Rating Details
 %sysdir%\drivers\ redbook.sys High Rating Details
 %sysdir%\drivers\ RtkHDAud.sys Medium Rating Details
 %sysdir%\drivers\ Rtlnicxp.sys High Rating Details
 %sysdir%\drivers\ sr.sys High Rating Details
 %sysdir%\drivers\ srv.sys High Rating Details
 %sysdir%\drivers\ swenum.sys High Rating Details
 %sysdir%\drivers\ sysaudio.sys High Rating Details
 %sysdir%\drivers\ tcpip.sys High Rating Details
 %sysdir%\drivers\ termdd.sys High Rating Details
 %sysdir%\drivers\ update.sys High Rating Details
 %sysdir%\drivers\ usbccgp.sys High Rating Details
 %sysdir%\drivers\ usbehci.sys High Rating Details
 %sysdir%\drivers\ usbhub.sys High Rating Details
 %sysdir%\drivers\ usbohci.sys High Rating Details
 %sysdir%\drivers\ USBSTOR.SYS High Rating Details
 %sysdir%\drivers\ vga.sys High Rating Details
 %sysdir%\drivers\ viaide.sys High Rating Details
 %sysdir%\drivers\ wanarp.sys High Rating Details
 %sysdir%\drivers\ wdmaud.sys High Rating Details
 %sysdir%\drivers\ ws2ifsl.sys High Rating Details
 %sysdir%\drivers\ WudfPf.sys High Rating Details
 %sysdir%\ lsass.exe High Rating Details
 %sysdir%\ services.exe High Rating Details
 %sysdir%\ smss.exe High Rating Details
 %sysdir%\ spoolsv.exe High Rating Details
 %sysdir%\ svchost.exe High Rating Details
 %sysdir%\ winlogon.exe High Rating Details
 %systemdiskroot%\documents and settings\all users\drm\cache\ Indiv01.key Medium Rating Details
 %systemdiskroot%\hp\kbd\ aol.dll High Rating Details
 %systemdiskroot%\hp\kbd\ cfg.dll High Rating Details
 %systemdiskroot%\hp\kbd\ KBD.EXE High Rating Details
 %systemdiskroot%\hp\kbd\ led.dll High Rating Details
 %systemdiskroot%\hp\kbd\ msg.dll High Rating Details
 %systemdiskroot%\hp\kbd\ MSIKBDIF.DLL High Rating Details
 %systemdiskroot%\hp\kbd\ onl.dll Medium Rating Details
 %systemdiskroot%\hp\kbd\ osd.dll Medium Rating Details
 %systemdiskroot%\hp\kbd\ ps2.dll High Rating Details
 %systemdiskroot%\hp\kbd\ sct.dll Medium Rating Details
 %systemdiskroot%\hp\kbd\ url.dll High Rating Details
 %systemdiskroot%\hp\kbd\ USB.dll High Rating Details
 %windir%\ ARPWRMSG.EXE Medium Rating Details
 %windir%\ arservice.exe Medium Rating Details
 %windir%\ehome\ ehmsas.exe High Rating Details
 %windir%\ehome\ ehRec.exe Medium Rating Details
 %windir%\ehome\ ehRecvr.exe High Rating Details
 %windir%\ehome\ ehSched.exe High Rating Details
 %windir%\ehome\ ehtray.exe High Rating Details
 %windir%\ehome\ mcrdsvc.exe High Rating Details
 %windir%\ Explorer.EXE High Rating Details
 %windir%\ RTHDCPL.EXE Medium Rating Details
 %windir%\system\ hpsysdrv.exe High Rating Details
 %programfiles%\openoffice.org 3\program\ aggmi.dll Low Rating Details
 %programfiles%\openoffice.org 3\program\ avmediami.dll Low Rating Details
 %programfiles%\openoffice.org 3\program\ basegfxmi.dll Low Rating Details
 %programfiles%\openoffice.org 3\program\ canvastoolsmi.dll Low Rating Details
 %programfiles%\openoffice.org 3\program\ comphelp4MSC.dll Low Rating Details
 %programfiles%\openoffice.org 3\program\ configmgr.uno.dll Low Rating Details
 %programfiles%\openoffice.org 3\program\ cppcanvasmi.dll Low Rating Details
 %programfiles%\openoffice.org 3\program\ deploymentmiscmi.dll Low Rating Details
 %programfiles%\openoffice.org 3\program\ drawinglayermi.dll Low Rating Details
 %programfiles%\openoffice.org 3\program\ editengmi.dll Low Rating Details
 %programfiles%\openoffice.org 3\program\ emsermi.dll Low Rating Details
 %programfiles%\openoffice.org 3\program\ fwemi.dll Low Rating Details
 %programfiles%\openoffice.org 3\program\ fwimi.dll Low Rating Details
 %programfiles%\openoffice.org 3\program\ fwkmi.dll Low Rating Details
 %programfiles%\openoffice.org 3\program\ i18nisolang1MSC.dll Low Rating Details
 %programfiles%\openoffice.org 3\program\ i18npapermi.dll Low Rating Details
 %programfiles%\openoffice.org 3\program\ i18npool.uno.dll Low Rating Details
 %programfiles%\openoffice.org 3\program\ i18nutilMSC.dll Low Rating Details
 %programfiles%\openoffice.org 3\program\ icudt40.dll Low Rating Details
 %programfiles%\openoffice.org 3\program\ icuin40.dll Low Rating Details
 %programfiles%\openoffice.org 3\program\ icuuc40.dll Low Rating Details
 %programfiles%\openoffice.org 3\program\ libdb47.dll Low Rating Details
 %programfiles%\openoffice.org 3\program\ libxml2.dll Low Rating Details
 %programfiles%\openoffice.org 3\program\ lngmi.dll Low Rating Details
 %programfiles%\openoffice.org 3\program\ localebe1.uno.dll Low Rating Details
 %programfiles%\openoffice.org 3\program\ logmi.dll Low Rating Details
 %programfiles%\openoffice.org 3\program\ oleautobridge.uno.dll Low Rating Details
 %programfiles%\openoffice.org 3\program\ oooimprovecoremi.dll Low Rating Details
 %programfiles%\openoffice.org 3\program\ oooimprovementmi.dll Low Rating Details
 %programfiles%\openoffice.org 3\program\ sbmi.dll Low Rating Details
 %programfiles%\openoffice.org 3\program\ sfxmi.dll Low Rating Details
 %programfiles%\openoffice.org 3\program\ sofficeapp.dll Low Rating Details
 %programfiles%\openoffice.org 3\program\ sotmi.dll Low Rating Details
 %programfiles%\openoffice.org 3\program\ stsmi.DLL Low Rating Details
 %programfiles%\openoffice.org 3\program\ svlmi.dll Low Rating Details
 %programfiles%\openoffice.org 3\program\ svtmi.dll Low Rating Details
 %programfiles%\openoffice.org 3\program\ svxcoremi.dll Low Rating Details
 %programfiles%\openoffice.org 3\program\ tkmi.dll Low Rating Details
 %programfiles%\openoffice.org 3\program\ tlmi.dll Low Rating Details
 %programfiles%\openoffice.org 3\program\ ucb1.dll Low Rating Details
 %programfiles%\openoffice.org 3\program\ ucbhelper4MSC.dll Low Rating Details
 %programfiles%\openoffice.org 3\program\ ucpfile1.dll Low Rating Details
 %programfiles%\openoffice.org 3\program\ utlmi.dll Low Rating Details
 %programfiles%\openoffice.org 3\program\ vclmi.dll Low Rating Details
 %programfiles%\openoffice.org 3\program\ vos3MSC.dll Low Rating Details
 %programfiles%\openoffice.org 3\program\ xcrmi.dll Low Rating Details
 %programfiles%\openoffice.org 3\program\ xomi.dll Low Rating Details
 %programfiles%\openoffice.org 3\ure\bin\ bootstrap.uno.dll Low Rating Details
 %programfiles%\openoffice.org 3\ure\bin\ cppu3.dll Low Rating Details
 %programfiles%\openoffice.org 3\ure\bin\ cppuhelper3MSC.dll Low Rating Details
 %programfiles%\openoffice.org 3\ure\bin\ jvmfwk3.dll Low Rating Details
 %programfiles%\openoffice.org 3\ure\bin\ msci_uno.dll Low Rating Details
 %programfiles%\openoffice.org 3\ure\bin\ reg3.dll Low Rating Details
 %programfiles%\openoffice.org 3\ure\bin\ sal3.dll Low Rating Details
 %programfiles%\openoffice.org 3\ure\bin\ salhelper3MSC.dll Low Rating Details
 %programfiles%\openoffice.org 3\ure\bin\ stlport_vc7145.dll Low Rating Details
 %programfiles%\openoffice.org 3\ure\bin\ stocservices.uno.dll Low Rating Details
 %programfiles%\openoffice.org 3\ure\bin\ store3.dll Low Rating Details
 %programfiles%\openoffice.org 3\ure\bin\ uwinapi.dll Low Rating Details
 Privacy Policy
 Data are anonymously stored and accessible for 24 hours. If you want, you can DELETE the report immediately or make the report PERMANENT.
 © 2007-2012 Mister Group System Explorer. All Rights Reserved. Contact: admin@systemexplorer.net
 Google+ Facebook Twitter PAD

vieux motard que jamais
remi-fasol
Sur la bonne voie (de 100 à 499 messages postés)
  1. Posté le 31/01/2012 à 09:10:50  
  1. answer
  1. Prévenir les modérateurs en cas d'abus
 
J'ai aussi fait un scann avec " SYSTEME SECURITY SCANNER " Lprobleme est le meme,je te le poste:

Home

About

Contact

 System Security Guard
 System Security Guard Scan Results

 Overview
 Scan Time: 2012-01-31 08:59:22
 Operating System: Windows XP
 Scanned Files: 688
 RatingThreat Files: 1
 RatingSuspicious Files: 0
 RatingSafe Files: 613
 RatingUnknown Files: 74

 Scanned Files

 Directory
   
 Filename
   
 Occurence
   
 Rating
   
 %sysdir%\\ bgsvcgen.exe High Rating Details
 %allusers_appdata%\\real\\real​player\\browserrecordplugin\\c​hrome... rpchrome14browserrecordhelper.​dll High Rating Details
 %allusers_appdata%\\real\\real​player\\browserrecordplugin\\c​ommon... rpcommon15browserrecordplugin.​dll High Rating Details
 %allusers_appdata%\\real\\real​player\\browserrecordplugin\\f​irefo... nprpffbrowserrecordext.dll High Rating Details
 %allusers_appdata%\\real\\real​player\\browserrecordplugin\\t​hinsh... rpnpshimswf.dll High Rating Details
 %commonfiles%\\apple\\apple application support\\ AppleVersions.dll High Rating Details
 %commonfiles%\\apple\\apple application support\\ ASL.dll High Rating Details
 %commonfiles%\\apple\\apple application support\\ CFNetwork.dll High Rating Details
 %commonfiles%\\apple\\apple application support\\ CoreFoundation.dll High Rating Details
 %commonfiles%\\apple\\apple application support\\ icudt46.dll High Rating Details
 %commonfiles%\\apple\\apple application support\\ libdispatch.dll High Rating Details
 %commonfiles%\\apple\\apple application support\\ libicuin.dll High Rating Details
 %commonfiles%\\apple\\apple application support\\ libicuuc.dll High Rating Details
 %commonfiles%\\apple\\apple application support\\ libxml2.dll High Rating Details
 %commonfiles%\\apple\\apple application support\\ objc.dll High Rating Details
 %commonfiles%\\apple\\apple application support\\ pthreadVC2.dll High Rating Details
 %commonfiles%\\apple\\apple application support\\ SQLite3.dll High Rating Details
 %commonfiles%\\apple\\apple application support\\ YSCrashDump.dll High Rating Details
 %commonfiles%\\apple\\apple application support\\ zlib1.dll High Rating Details
 %commonfiles%\\apple\\mobile device support\\ AppleMobileDeviceService.exe High Rating Details
 %commonfiles%\\apple\\mobile device support\\ AppleMobileDeviceService_main.​dll High Rating Details
 %commonfiles%\\apple\\mobile device support\\ iTunesMobileDevice.dll High Rating Details
 %commonfiles%\\apple\\mobile device support\\ MobileDevice.dll High Rating Details
 %commonfiles%\\g data\\avkproxy\\ AVKProxy.exe Medium Rating Details
 %commonfiles%\\g data\\gdscan\\ GDScan.exe Medium Rating Details
 %commonfiles%\\installshield\\​updateservice\\ issch.exe High Rating Details
 %commonfiles%\\java\\java update\\ jusched.exe High Rating Details
 %programfiles%\\bonjour\\ mdnsNSP.dll High Rating Details
 %programfiles%\\bonjour\\ mDNSResponder.exe High Rating Details
 %programfiles%\\g data\\antivirus\\avktray\\ AVKTray.exe High Rating Details
 %programfiles%\\g data\\antivirus\\avk\\ AVKService.exe Medium Rating Details
 %programfiles%\\g data\\antivirus\\avk\\ AVKWCtl.exe High Rating Details
 %programfiles%\\hp\\digital imaging\\bin\\ hphtra08.dll Medium Rating Details
 %programfiles%\\hp\\digital imaging\\bin\\ hpocxi08.dll High Rating Details
 %programfiles%\\hp\\digital imaging\\bin\\ hpoddcomm09.dll High Rating Details
 %programfiles%\\hp\\digital imaging\\bin\\ hpodio08.dll High Rating Details
 %programfiles%\\hp\\digital imaging\\bin\\ hpodvd09.dll High Rating Details
 %programfiles%\\hp\\digital imaging\\bin\\ hpotra08.dll Medium Rating Details
 %programfiles%\\hp\\digital imaging\\bin\\ hpotra08.rsc Medium Rating Details
 %programfiles%\\hp\\digital imaging\\bin\\ hpotradd.dll High Rating Details
 %programfiles%\\hp\\digital imaging\\bin\\ hpqcob08.dll High Rating Details
 %programfiles%\\hp\\digital imaging\\bin\\ hpqcxm08.dll High Rating Details
 %programfiles%\\hp\\digital imaging\\bin\\ hpqmfc09.dll High Rating Details
 %programfiles%\\hp\\digital imaging\\bin\\ hpqmif08.dll Medium Rating Details
 %programfiles%\\hp\\digital imaging\\bin\\ hpqsem08.rsc Medium Rating Details
 %programfiles%\\hp\\digital imaging\\bin\\ hpqSTE08.exe High Rating Details
 %programfiles%\\hp\\digital imaging\\bin\\ hpqSTE08.rsc Medium Rating Details
 %programfiles%\\hp\\digital imaging\\bin\\ hpqsti08.dll High Rating Details
 %programfiles%\\hp\\digital imaging\\bin\\ hpqstp08.dll High Rating Details
 %programfiles%\\hp\\digital imaging\\bin\\ hpqtao08.dll High Rating Details
 %programfiles%\\hp\\digital imaging\\bin\\ hpqtap08.dll High Rating Details
 %programfiles%\\hp\\digital imaging\\bin\\ hpqtra08.exe High Rating Details
 %programfiles%\\hp\\digital imaging\\bin\\ hpqtra08.rsc Medium Rating Details
 %programfiles%\\hp\\digital imaging\\bin\\ hpquio08.dll High Rating Details
 %programfiles%\\hp\\digital imaging\\bin\\ HpqUtil.dll Medium Rating Details
 %programfiles%\\hp\\digital imaging\\unload\\ hpiCamTA.dll Medium Rating Details
 %programfiles%\\hp\\digital imaging\\unload\\ HpqUnRes.dll Medium Rating Details
 %programfiles%\\hp\\hp software update\\ HPWuSchd2.exe High Rating Details
 %programfiles%\\ipod\\bin\\ iPodService.exe High Rating Details
 %programfiles%\\ipod\\bin\\ipo​dservice.resources\\fr.lproj\\ iPodServiceLocalized.DLL High Rating Details
 %programfiles%\\ipod\\bin\\ipo​dservice.resources\\ iPodService.DLL High Rating Details
 %programfiles%\\itunes\\ iTunesHelper.dll High Rating Details
 %programfiles%\\itunes\\ iTunesHelper.exe High Rating Details
 %programfiles%\\itunes\\itunes​helper.resources\\fr.lproj\\ iTunesHelperLocalized.DLL High Rating Details
 %programfiles%\\itunes\\itunes​helper.resources\\ iTunesHelper.DLL High Rating Details
 %programfiles%\\java\\jre6\\bi​n\\ jqs.exe High Rating Details
 %programfiles%\\java\\jre6\\bi​n\\ MSVCR71.dll High Rating Details
 %programfiles%\\mainconcept\\ mceesmpeg.ax Medium Rating Details
 %programfiles%\\mainconcept\\ mcempgaout.dll Medium Rating Details
 %programfiles%\\mainconcept\\ mcempgmux.dll Medium Rating Details
 %programfiles%\\mainconcept\\ mcempgvout.004 Medium Rating Details
 %programfiles%\\mainconcept\\ mcempgvout.dll Medium Rating Details
 %programfiles%\\mozilla firefox\\components\\ browsercomps.dll High Rating Details
 %programfiles%\\mozilla firefox\\ firefox.exe High Rating Details
 %programfiles%\\mozilla firefox\\ freebl3.dll High Rating Details
 %programfiles%\\mozilla firefox\\ mozalloc.dll High Rating Details
 %programfiles%\\mozilla firefox\\ mozjs.dll High Rating Details
 %programfiles%\\mozilla firefox\\ mozsqlite3.dll High Rating Details
 %programfiles%\\mozilla firefox\\ mozutils.dll High Rating Details
 %programfiles%\\mozilla firefox\\ nspr4.dll High Rating Details
 %programfiles%\\mozilla firefox\\ nss3.dll High Rating Details
 %programfiles%\\mozilla firefox\\ nssckbi.dll High Rating Details
 %programfiles%\\mozilla firefox\\ nssdbm3.dll High Rating Details
 %programfiles%\\mozilla firefox\\ nssutil3.dll High Rating Details
 %programfiles%\\mozilla firefox\\ plc4.dll High Rating Details
 %programfiles%\\mozilla firefox\\ plds4.dll High Rating Details
 %programfiles%\\mozilla firefox\\ plugin-container.exe High Rating Details
 %programfiles%\\mozilla firefox\\ smime3.dll High Rating Details
 %programfiles%\\mozilla firefox\\ softokn3.dll High Rating Details
 %programfiles%\\mozilla firefox\\ ssl3.dll High Rating Details
 %programfiles%\\mozilla firefox\\ xpcom.dll High Rating Details
 %programfiles%\\mozilla firefox\\ xul.dll High Rating Details
 %programfiles%\\openoffice.org 3\\program\\ saxmi.dll High Rating Details
 %programfiles%\\openoffice.org 3\\program\\ soffice.bin High Rating Details
 %programfiles%\\openoffice.org 3\\program\\ soffice.exe High Rating Details
 %programfiles%\\real\\realplay​er\\update\\ realsched.exe High Rating Details
 %programfiles%\\sfr\\kit\\ 9props.exe Medium Rating Details
 %programfiles%\\system explorer\\ SystemExplorer.exe High Rating Details
 %programfiles%\\system security guard\\ SystemSecurityGuard.exe High Rating Details
 %programfiles%\\system security guard\\ SystemSecurityGuardTray.exe High Rating Details
 %programfiles%\\windows media player\\ WMPNetwk.exe High Rating Details
 %programfiles%\\windows media player\\ WMPNSCFG.exe High Rating Details
 %programfiles%\\windows media player\\ wmpnssci.dll High Rating Details
 %sysdir%\\ ACTIVEDS.dll High Rating Details
 %sysdir%\\ ACTXPRXY.DLL High Rating Details
 %sysdir%\\ adsldpc.dll High Rating Details
 %sysdir%\\ ADVAPI32.dll High Rating Details
 %sysdir%\\ ADVPACK.dll High Rating Details
 %sysdir%\\ alg.exe High Rating Details
 %sysdir%\\ appHelp.dll High Rating Details
 %sysdir%\\ aspnet_counters.dll High Rating Details
 %sysdir%\\ Ati2edxx.dll Medium Rating Details
 %sysdir%\\ Ati2evxx.dll Medium Rating Details
 %sysdir%\\ Ati2evxx.exe High Rating Details
 %sysdir%\\ atipdlxx.dll Medium Rating Details
 %sysdir%\\ ATL.DLL High Rating Details
 %sysdir%\\ ATL71.DLL High Rating Details
 %sysdir%\\ audiosrv.dll High Rating Details
 %sysdir%\\ AUTHZ.dll High Rating Details
 %sysdir%\\ basesrv.dll High Rating Details
 %sysdir%\\ BatMeter.dll High Rating Details
 %sysdir%\\ BdaPlgin.ax Medium Rating Details
 %sysdir%\\ browser.dll High Rating Details
 %sysdir%\\ BROWSEUI.dll Medium Rating Details
 %sysdir%\\ Cabinet.dll High Rating Details
 %sysdir%\\ certcli.dll High Rating Details
 %sysdir%\\ CFGMGR32.dll High Rating Details
 %sysdir%\\ CLBCATQ.DLL High Rating Details
 %sysdir%\\ CLUSAPI.dll High Rating Details
 %sysdir%\\ cnbjmon.dll High Rating Details
 %sysdir%\\ colbact.DLL High Rating Details
 %sysdir%\\ comctl32.dll High Rating Details
 %sysdir%\\ comdlg32.dll High Rating Details
 %sysdir%\\ COMRes.dll High Rating Details
 %sysdir%\\ comsvcs.dll High Rating Details
 %sysdir%\\ credui.dll High Rating Details
 %sysdir%\\ CRYPT32.dll High Rating Details
 %sysdir%\\ cryptdll.dll High Rating Details
 %sysdir%\\ cryptnet.dll High Rating Details
 %sysdir%\\ cryptsvc.dll High Rating Details
 %sysdir%\\ CRYPTUI.dll High Rating Details
 %sysdir%\\ CSCDLL.dll High Rating Details
 %sysdir%\\ cscui.dll High Rating Details
 %sysdir%\\ csrsrv.dll High Rating Details
 %sysdir%\\ davclnt.dll High Rating Details
 %sysdir%\\ dbghelp.dll High Rating Details
 %sysdir%\\ devenum.dll High Rating Details
 %sysdir%\\ DHCPCSVC.DLL High Rating Details
 %sysdir%\\ dimsntfy.dll High Rating Details
 %sysdir%\\ dllhost.exe High Rating Details
 %sysdir%\\ dmserver.dll High Rating Details
 %sysdir%\\ DNSAPI.dll High Rating Details
 %sysdir%\\ dnsrslvr.dll High Rating Details
 %sysdir%\\ dnssd.dll High Rating Details
 %sysdir%\\ dot3api.dll High Rating Details
 %sysdir%\\ dot3dlg.dll High Rating Details
 %sysdir%\\drivers\\ 3xHybrid.sys Medium Rating Details
 %sysdir%\\drivers\\ acedrv11.sys High Rating Details
 %sysdir%\\drivers\\ ACPI.sys High Rating Details
 %sysdir%\\drivers\\ Afc.sys High Rating Details
 %sysdir%\\drivers\\ afd.sys High Rating Details
 %sysdir%\\drivers\\ aracpi.sys Medium Rating Details
 %sysdir%\\drivers\\ arhidfltr.sys Medium Rating Details
 %sysdir%\\drivers\\ arkbcfltr.sys Medium Rating Details
 %sysdir%\\drivers\\ armoucfltr.sys Medium Rating Details
 %sysdir%\\drivers\\ arp1394.sys High Rating Details
 %sysdir%\\drivers\\ arpolicy.sys Medium Rating Details
 %sysdir%\\drivers\\ atapi.sys High Rating Details
 %sysdir%\\drivers\\ ati2mtag.sys High Rating Details
 %sysdir%\\drivers\\ atksgt.sys High Rating Details
 %sysdir%\\drivers\\ audstub.sys High Rating Details
 %sysdir%\\drivers\\ bb-run.sys High Rating Details
 %sysdir%\\drivers\\ cdrom.sys High Rating Details
 %sysdir%\\drivers\\ disk.sys High Rating Details
 %sysdir%\\drivers\\ dmio.sys High Rating Details
 %sysdir%\\drivers\\ dmload.sys High Rating Details
 %sysdir%\\drivers\\ fdc.sys High Rating Details
 %sysdir%\\drivers\\ fltmgr.sys High Rating Details
 %sysdir%\\drivers\\ ftdisk.sys High Rating Details
 %sysdir%\\drivers\\ ftsata2.sys High Rating Details
 %sysdir%\\drivers\\ GDBehave.sys High Rating Details
 %sysdir%\\drivers\\ GDTdiIcpt.sys High Rating Details
 %sysdir%\\drivers\\ GEARAspiWDM.sys High Rating Details
 %sysdir%\\drivers\\ GRD.sys Medium Rating Details
 %sysdir%\\drivers\\ HDAudBus.sys High Rating Details
 %sysdir%\\drivers\\ hidusb.sys High Rating Details
 %sysdir%\\drivers\\ HookCentre.sys High Rating Details
 %sysdir%\\drivers\\ HTTP.sys High Rating Details
 %sysdir%\\drivers\\ i8042prt.sys High Rating Details
 %sysdir%\\drivers\\ iaStor.sys High Rating Details
 %sysdir%\\drivers\\ imapi.sys High Rating Details
 %sysdir%\\drivers\\ intelide.sys High Rating Details
 %sysdir%\\drivers\\ intelppm.sys High Rating Details
 %sysdir%\\drivers\\ ipnat.sys High Rating Details
 %sysdir%\\drivers\\ ipsec.sys High Rating Details
 %sysdir%\\drivers\\ isapnp.sys High Rating Details
 %sysdir%\\drivers\\ kbdclass.sys High Rating Details
 %sysdir%\\drivers\\ kmixer.sys High Rating Details
 %sysdir%\\drivers\\ lirsgt.sys High Rating Details
 %sysdir%\\drivers\\ MiniIcpt.sys High Rating Details
 %sysdir%\\drivers\\ mouclass.sys High Rating Details
 %sysdir%\\drivers\\ mouhid.sys High Rating Details
 %sysdir%\\drivers\\ mrxdav.sys High Rating Details
 %sysdir%\\drivers\\ mrxsmb.sys High Rating Details
 %sysdir%\\drivers\\ msgpc.sys High Rating Details
 %sysdir%\\drivers\\ MSPQM.sys High Rating Details
 %sysdir%\\drivers\\ mssmbios.sys High Rating Details
 %sysdir%\\drivers\\ ndistapi.sys High Rating Details
 %sysdir%\\drivers\\ ndisuio.sys High Rating Details
 %sysdir%\\drivers\\ ndiswan.sys High Rating Details
 %sysdir%\\drivers\\ netbios.sys High Rating Details
 %sysdir%\\drivers\\ netbt.sys High Rating Details
 %sysdir%\\drivers\\ nic1394.sys High Rating Details
 %sysdir%\\drivers\\ ohci1394.sys High Rating Details
 %sysdir%\\drivers\\ parport.sys High Rating Details
 %sysdir%\\drivers\\ pci.sys High Rating Details
 %sysdir%\\drivers\\ pciide.sys High Rating Details
 %sysdir%\\drivers\\ PS2.sys Medium Rating Details
 %sysdir%\\drivers\\ psched.sys High Rating Details
 %sysdir%\\drivers\\ ptilink.sys High Rating Details
 %sysdir%\\drivers\\ PxHelp20.sys High Rating Details
 %sysdir%\\drivers\\ rasacd.sys High Rating Details
 %sysdir%\\drivers\\ rasl2tp.sys High Rating Details
 %sysdir%\\drivers\\ raspppoe.sys High Rating Details
 %sysdir%\\drivers\\ raspptp.sys High Rating Details
 %sysdir%\\drivers\\ raspti.sys High Rating Details
 %sysdir%\\drivers\\ rdbss.sys High Rating Details
 %sysdir%\\drivers\\ RDPCDD.sys High Rating Details
 %sysdir%\\drivers\\ rdpdr.sys High Rating Details
 %sysdir%\\drivers\\ redbook.sys High Rating Details
 %sysdir%\\drivers\\ RtkHDAud.sys Medium Rating Details
 %sysdir%\\drivers\\ Rtlnicxp.sys High Rating Details
 %sysdir%\\drivers\\ sr.sys High Rating Details
 %sysdir%\\drivers\\ srv.sys High Rating Details
 %sysdir%\\drivers\\ swenum.sys High Rating Details
 %sysdir%\\drivers\\ sysaudio.sys High Rating Details
 %sysdir%\\drivers\\ tcpip.sys High Rating Details
 %sysdir%\\drivers\\ termdd.sys High Rating Details
 %sysdir%\\drivers\\ update.sys High Rating Details
 %sysdir%\\drivers\\ usbccgp.sys High Rating Details
 %sysdir%\\drivers\\ usbehci.sys High Rating Details
 %sysdir%\\drivers\\ usbhub.sys High Rating Details
 %sysdir%\\drivers\\ usbohci.sys High Rating Details
 %sysdir%\\drivers\\ USBSTOR.SYS High Rating Details
 %sysdir%\\drivers\\ vga.sys High Rating Details
 %sysdir%\\drivers\\ viaide.sys High Rating Details
 %sysdir%\\drivers\\ wanarp.sys High Rating Details
 %sysdir%\\drivers\\ wdmaud.sys High Rating Details
 %sysdir%\\drivers\\ ws2ifsl.sys High Rating Details
 %sysdir%\\drivers\\ WudfPf.sys High Rating Details
 %sysdir%\\ drmv2clt.dll High Rating Details
 %sysdir%\\ drprov.dll High Rating Details
 %sysdir%\\ DSOUND.dll High Rating Details
 %sysdir%\\ dssenh.dll High Rating Details
 %sysdir%\\ EapolQec.dll High Rating Details
 %sysdir%\\ eappcfg.dll High Rating Details
 %sysdir%\\ eappprxy.dll High Rating Details
 %sysdir%\\ encdec.dll Medium Rating Details
 %sysdir%\\ ersvc.dll High Rating Details
 %sysdir%\\ es.dll High Rating Details
 %sysdir%\\ ESENT.dll High Rating Details
 %sysdir%\\ eventlog.dll High Rating Details
 %sysdir%\\ faultrep.dll High Rating Details
 %sysdir%\\ feclient.dll High Rating Details
 %sysdir%\\ fpalsu.dll Medium Rating Details
 %sysdir%\\ FXSAPI.dll High Rating Details
 %sysdir%\\ FXSEVENT.dll Medium Rating Details
 %sysdir%\\ FXSMON.DLL Medium Rating Details
 %sysdir%\\ fxsperf.dll Medium Rating Details
 %sysdir%\\ fxsst.dll High Rating Details
 %sysdir%\\ GDI32.dll High Rating Details
 %sysdir%\\ h323.tsp High Rating Details
 %sysdir%\\ HHCTRL.OCX High Rating Details
 %sysdir%\\ hid.dll High Rating Details
 %sysdir%\\ hidphone.tsp High Rating Details
 %sysdir%\\ hnetcfg.dll High Rating Details
 %sysdir%\\ hptcpmib.dll High Rating Details
 %sysdir%\\ HpTcpMon.dll High Rating Details
 %sysdir%\\ HPTcpMUI.dll Medium Rating Details
 %sysdir%\\ hpz3l3xu.dll Medium Rating Details
 %sysdir%\\ hpzidr12.dll Medium Rating Details
 %sysdir%\\ hpzipr12.dll Medium Rating Details
 %sysdir%\\ hpzjrd01.dll Medium Rating Details
 %sysdir%\\ httpapi.dll High Rating Details
 %sysdir%\\ ICAAPI.dll High Rating Details
 %sysdir%\\ icm32.dll High Rating Details
 %sysdir%\\ ieframe.dll High Rating Details
 %sysdir%\\ iertutil.dll High Rating Details
 %sysdir%\\ IMAGEHLP.dll High Rating Details
 %sysdir%\\ IMM32.DLL High Rating Details
 %sysdir%\\ inetpp.dll High Rating Details
 %sysdir%\\ ipconf.tsp High Rating Details
 %sysdir%\\ iphlpapi.dll High Rating Details
 %sysdir%\\ ipnathlp.dll High Rating Details
 %sysdir%\\ ipsecsvc.dll High Rating Details
 %sysdir%\\ kerberos.dll High Rating Details
 %sysdir%\\ kernel32.dll High Rating Details
 %sysdir%\\ kmddsp.tsp High Rating Details
 %sysdir%\\ ksproxy.ax Medium Rating Details
 %sysdir%\\ kstvtune.ax Medium Rating Details
 %sysdir%\\ KsUser.dll High Rating Details
 %sysdir%\\ kswdmcap.ax Medium Rating Details
 %sysdir%\\ ksxbar.ax Medium Rating Details
 %sysdir%\\ LINKINFO.dll High Rating Details
 %sysdir%\\ lmhsvc.dll High Rating Details
 %sysdir%\\ loadperf.dll High Rating Details
 %sysdir%\\ localspl.dll High Rating Details
 %sysdir%\\ LPRHELP.dll Medium Rating Details
 %sysdir%\\ lprmon.dll Medium Rating Details
 %sysdir%\\ LSASRV.dll High Rating Details
 %sysdir%\\ lsass.exe High Rating Details
 %sysdir%\\ LZ32.dll High Rating Details
 %sysdir%\\macromed\\flash\\ NPSWF32.dll High Rating Details
 %sysdir%\\ Macrovision.dll Medium Rating Details
 %sysdir%\\ MFC42.DLL High Rating Details
 %sysdir%\\ MFC42LOC.DLL High Rating Details
 %sysdir%\\ MFC71.DLL High Rating Details
 %sysdir%\\ MFC71FRA.DLL High Rating Details
 %sysdir%\\ MFPlat.DLL High Rating Details
 %sysdir%\\ mgmtapi.dll Medium Rating Details
 %sysdir%\\ midimap.dll High Rating Details
 %sysdir%\\ MLANG.dll High Rating Details
 %sysdir%\\ Mpeg2Data.ax Medium Rating Details
 %sysdir%\\ mpg2splt.ax Medium Rating Details
 %sysdir%\\ MPR.dll High Rating Details
 %sysdir%\\ MPRAPI.dll High Rating Details
 %sysdir%\\ MSACM32.dll High Rating Details
 %sysdir%\\ msacm32.drv High Rating Details
 %sysdir%\\ MSASN1.dll High Rating Details
 %sysdir%\\ mscms.dll High Rating Details
 %sysdir%\\ mscoree.dll High Rating Details
 %sysdir%\\ MSCTF.dll High Rating Details
 %sysdir%\\ msctfime.ime High Rating Details
 %sysdir%\\ msdmo.dll High Rating Details
 %sysdir%\\ msftedit.dll High Rating Details
 %sysdir%\\ MSGINA.dll High Rating Details
 %sysdir%\\ mshtml.dll High Rating Details
 %sysdir%\\ msi.dll High Rating Details
 %sysdir%\\ MSIDLE.DLL High Rating Details
 %sysdir%\\ MSIMG32.dll High Rating Details
 %sysdir%\\ msimtf.dll High Rating Details
 %sysdir%\\ msls31.dll High Rating Details
 %sysdir%\\ MSNP.ax Medium Rating Details
 %sysdir%\\ mspatcha.dll High Rating Details
 %sysdir%\\ msprivs.dll High Rating Details
 %sysdir%\\ mstlsapi.dll High Rating Details
 %sysdir%\\ msutb.dll High Rating Details
 %sysdir%\\ msv1_0.dll High Rating Details
 %sysdir%\\ MSVCIRT.dll Medium Rating Details
 %sysdir%\\ MSVCP60.dll High Rating Details
 %sysdir%\\ MSVCP71.dll High Rating Details
 %sysdir%\\ MSVCR100_CLR0400.dll High Rating Details
 %sysdir%\\ MSVCR71.dll High Rating Details
 %sysdir%\\ msvcrt.dll High Rating Details
 %sysdir%\\ MSVFW32.dll High Rating Details
 %sysdir%\\ msvidctl.dll Medium Rating Details
 %sysdir%\\ mswsock.dll High Rating Details
 %sysdir%\\ msxml3.dll High Rating Details
 %sysdir%\\ MTXCLU.DLL High Rating Details
 %sysdir%\\mui\\000c\\ HHCTRLui.dll High Rating Details
 %sysdir%\\ NCObjAPI.DLL High Rating Details
 %sysdir%\\ NDdeApi.dll High Rating Details
 %sysdir%\\ ndptsp.tsp High Rating Details
 %sysdir%\\ NETAPI32.dll High Rating Details
 %sysdir%\\ netcfgx.dll High Rating Details
 %sysdir%\\ netfxperf.dll High Rating Details
 %sysdir%\\ netlogon.dll High Rating Details
 %sysdir%\\ netman.dll High Rating Details
 %sysdir%\\ NETRAP.dll High Rating Details
 %sysdir%\\ NETSHELL.dll High Rating Details
 %sysdir%\\ NETUI0.dll High Rating Details
 %sysdir%\\ NETUI1.dll High Rating Details
 %sysdir%\\ Normaliz.dll High Rating Details
 %sysdir%\\ ntdll.dll High Rating Details
 %sysdir%\\ NTDSAPI.dll High Rating Details
 %sysdir%\\ ntlanman.dll High Rating Details
 %sysdir%\\ ntlsapi.dll High Rating Details
 %sysdir%\\ NTMARTA.DLL High Rating Details
 %sysdir%\\ ntshrui.dll High Rating Details
 %sysdir%\\ oakley.DLL High Rating Details
 %sysdir%\\ ODBC32.dll High Rating Details
 %sysdir%\\ odbcbcp.dll High Rating Details
 %sysdir%\\ odbcint.dll High Rating Details
 %sysdir%\\ ole32.dll High Rating Details
 %sysdir%\\ oleacc.dll High Rating Details
 %sysdir%\\ OLEAUT32.dll High Rating Details
 %sysdir%\\ oledlg.dll High Rating Details
 %sysdir%\\ OLEPRO32.DLL High Rating Details
 %sysdir%\\ OneX.DLL High Rating Details
 %sysdir%\\ pdh.dll High Rating Details
 %sysdir%\\ Perfctrs.dll High Rating Details
 %sysdir%\\ perfdisk.dll High Rating Details
 %sysdir%\\ perfnet.dll High Rating Details
 %sysdir%\\ perfos.dll High Rating Details
 %sysdir%\\ perfproc.dll High Rating Details
 %sysdir%\\ perfts.dll High Rating Details
 %sysdir%\\ pjlmon.dll High Rating Details
 %sysdir%\\ PortableDeviceApi.dll High Rating Details
 %sysdir%\\ PortableDeviceTypes.dll High Rating Details
 %sysdir%\\ POWRPROF.dll High Rating Details
 %sysdir%\\ PROFMAP.dll High Rating Details
 %sysdir%\\ PSAPI.DLL High Rating Details
 %sysdir%\\ psbase.dll High Rating Details
 %sysdir%\\ pschdprf.dll High Rating Details
 %sysdir%\\ PsisDecd.dll Medium Rating Details
 %sysdir%\\ PsisRndr.ax Medium Rating Details
 %sysdir%\\ pstorsvc.dll High Rating Details
 %sysdir%\\ qmgr.dll High Rating Details
 %sysdir%\\ qmgrprxy.dll Medium Rating Details
 %sysdir%\\ quartz.dll Medium Rating Details
 %sysdir%\\ query.dll High Rating Details
 %sysdir%\\ QUtil.dll High Rating Details
 %sysdir%\\ rasadhlp.dll High Rating Details
 %sysdir%\\ RASAPI32.dll High Rating Details
 %sysdir%\\ raschap.dll High Rating Details
 %sysdir%\\ RASDLG.dll High Rating Details
 %sysdir%\\ rasman.dll High Rating Details
 %sysdir%\\ rasmans.dll High Rating Details
 %sysdir%\\ rasppp.dll High Rating Details
 %sysdir%\\ RASQEC.DLL High Rating Details
 %sysdir%\\ rastapi.dll High Rating Details
 %sysdir%\\ rastls.dll High Rating Details
 %sysdir%\\ REGAPI.dll High Rating Details
 %sysdir%\\ regsvc.dll High Rating Details
 %sysdir%\\ RESUTILS.DLL High Rating Details
 %sysdir%\\ RPCRT4.dll High Rating Details
 %sysdir%\\ rpcss.dll High Rating Details
 %sysdir%\\ rsaenh.dll High Rating Details
 %sysdir%\\ rsvpperf.dll High Rating Details
 %sysdir%\\ rtutils.dll High Rating Details
 %sysdir%\\ SAMLIB.dll High Rating Details
 %sysdir%\\ SAMSRV.dll High Rating Details
 %sysdir%\\ sbe.dll High Rating Details
 %sysdir%\\ sbeio.dll Medium Rating Details
 %sysdir%\\ scecli.dll High Rating Details
 %sysdir%\\ SCESRV.dll High Rating Details
 %sysdir%\\ schannel.dll High Rating Details
 %sysdir%\\ schedsvc.dll High Rating Details
 %sysdir%\\ seclogon.dll High Rating Details
 %sysdir%\\ Secur32.dll High Rating Details
 %sysdir%\\ security.dll High Rating Details
 %sysdir%\\ Sens.dll High Rating Details
 %sysdir%\\ sensapi.dll High Rating Details
 %sysdir%\\ services.exe High Rating Details
 %sysdir%\\ SETUPAPI.dll High Rating Details
 %sysdir%\\ sfc.dll High Rating Details
 %sysdir%\\ sfc_os.dll High Rating Details
 %sysdir%\\ SHDOCVW.dll Medium Rating Details
 %sysdir%\\ SHELL32.dll High Rating Details
 %sysdir%\\ SHFolder.dll High Rating Details
 %sysdir%\\ ShimEng.dll High Rating Details
 %sysdir%\\ SHLWAPI.dll High Rating Details
 %sysdir%\\ SHSVCS.dll High Rating Details
 %sysdir%\\ snmpapi.dll High Rating Details
 %sysdir%\\ SPOOLSS.DLL High Rating Details
 %sysdir%\\ spoolsv.exe High Rating Details
 %sysdir%\\spool\\prtprocs\\w32​x86\\ hpzpp3xu.dll Medium Rating Details
 %sysdir%\\ srsvc.dll High Rating Details
 %sysdir%\\ srvsvc.dll High Rating Details
 %sysdir%\\ SSDPAPI.dll High Rating Details
 %sysdir%\\ ssdpsrv.dll High Rating Details
 %sysdir%\\ stobject.dll High Rating Details
 %sysdir%\\ strmfilt.dll High Rating Details
 %sysdir%\\ svchost.exe High Rating Details
 %sysdir%\\ SXS.DLL High Rating Details
 %sysdir%\\ T2EMBED.DLL High Rating Details
 %sysdir%\\ TAPI32.dll High Rating Details
 %sysdir%\\ tapiperf.dll High Rating Details
 %sysdir%\\ tapisrv.dll High Rating Details
 %sysdir%\\ tcpmon.dll High Rating Details
 %sysdir%\\ termsrv.dll High Rating Details
 %sysdir%\\ themeui.dll High Rating Details
 %sysdir%\\ TRAFFIC.dll High Rating Details
 %sysdir%\\ trkwks.dll High Rating Details
 %sysdir%\\ TvRatings.dll Medium Rating Details
 %sysdir%\\ txflog.dll Medium Rating Details
 %sysdir%\\ umpnpmgr.dll High Rating Details
 %sysdir%\\ unimdm.tsp High Rating Details
 %sysdir%\\ uniplat.dll High Rating Details
 %sysdir%\\ upnp.dll High Rating Details
 %sysdir%\\ upnphost.dll Medium Rating Details
 %sysdir%\\ urlmon.dll High Rating Details
 %sysdir%\\ usbmon.dll High Rating Details
 %sysdir%\\ USER32.dll High Rating Details
 %sysdir%\\ USERENV.dll High Rating Details
 %sysdir%\\ USP10.dll High Rating Details
 %sysdir%\\ UTILDLL.dll High Rating Details
 %sysdir%\\ UxTheme.dll High Rating Details
 %sysdir%\\ VBICodec.ax Medium Rating Details
 %sysdir%\\ VERSION.dll High Rating Details
 %sysdir%\\ vidcap.ax Medium Rating Details
 %sysdir%\\ VSSAPI.DLL High Rating Details
 %sysdir%\\ w32time.dll High Rating Details
 %sysdir%\\ w3ssl.dll High Rating Details
 %sysdir%\\wbem\\ esscli.dll High Rating Details
 %sysdir%\\wbem\\ fastprox.dll High Rating Details
 %sysdir%\\wbem\\ ncprov.dll High Rating Details
 %sysdir%\\wbem\\ repdrvfs.dll High Rating Details
 %sysdir%\\wbem\\ wbemcomn.dll High Rating Details
 %sysdir%\\wbem\\ wbemcore.dll High Rating Details
 %sysdir%\\wbem\\ wbemess.dll High Rating Details
 %sysdir%\\wbem\\ wbemprox.dll High Rating Details
 %sysdir%\\wbem\\ wbemsvc.dll High Rating Details
 %sysdir%\\wbem\\ wmiaprpl.dll High Rating Details
 %sysdir%\\wbem\\ wmiprvsd.dll High Rating Details
 %sysdir%\\wbem\\ wmisvc.dll High Rating Details
 %sysdir%\\wbem\\ wmiutils.dll High Rating Details
 %sysdir%\\ wdigest.dll High Rating Details
 %sysdir%\\ wdmaud.drv High Rating Details
 %sysdir%\\ webcheck.dll High Rating Details
 %sysdir%\\ webclnt.dll High Rating Details
 %sysdir%\\ wiaservc.dll High Rating Details
 %sysdir%\\ win32spl.dll High Rating Details
 %sysdir%\\ WINHTTP.dll High Rating Details
 %sysdir%\\ WININET.dll High Rating Details
 %sysdir%\\ WINIPSEC.DLL High Rating Details
 %sysdir%\\ WINMM.dll High Rating Details
 %sysdir%\\ winrnr.dll High Rating Details
 %sysdir%\\ WinSCard.dll High Rating Details
 %sysdir%\\ WINSPOOL.DRV High Rating Details
 %sysdir%\\ winsrv.dll High Rating Details
 %sysdir%\\ WINSTA.dll High Rating Details
 %sysdir%\\ WINTRUST.dll High Rating Details
 %sysdir%\\ wkssvc.dll High Rating Details
 %sysdir%\\ Wlanapi.dll Medium Rating Details
 %sysdir%\\ WLDAP32.dll High Rating Details
 %sysdir%\\ WlNotify.dll High Rating Details
 %sysdir%\\ WMASF.DLL High Rating Details
 %sysdir%\\ wmdrmdev.dll Medium Rating Details
 %sysdir%\\ wmdrmnet.dll Medium Rating Details
 %sysdir%\\ WMDRMSDK.DLL High Rating Details
 %sysdir%\\ WMI.dll High Rating Details
 %sysdir%\\ wmp.dll High Rating Details
 %sysdir%\\ wmploc.dll Medium Rating Details
 %sysdir%\\ wmpmde.dll High Rating Details
 %sysdir%\\ wmpps.dll High Rating Details
 %sysdir%\\ wmvcore.dll High Rating Details
 %sysdir%\\ WPDShServiceObj.dll High Rating Details
 %sysdir%\\ WS2HELP.dll High Rating Details
 %sysdir%\\ WS2_32.dll High Rating Details
 %sysdir%\\ wscsvc.dll High Rating Details
 %sysdir%\\ wshtcpip.dll High Rating Details
 %sysdir%\\ wsnmp32.dll Medium Rating Details
 %sysdir%\\ WSOCK32.dll High Rating Details
 %sysdir%\\ WSTPager.ax Medium Rating Details
 %sysdir%\\ WTSAPI32.dll High Rating Details
 %sysdir%\\ wuaueng.dll High Rating Details
 %sysdir%\\ wuauserv.dll High Rating Details
 %sysdir%\\ WUDFPlatform.dll High Rating Details
 %sysdir%\\ wudfsvc.dll High Rating Details
 %sysdir%\\ wups2.dll High Rating Details
 %sysdir%\\ WZCSAPI.DLL High Rating Details
 %sysdir%\\ WZCSvc.DLL High Rating Details
 %sysdir%\\ xpsp2res.dll High Rating Details
 %systemdiskroot%\\documents and settings\\all users\\drm\\cache\\ Indiv01.key Medium Rating Details
 %systemdiskroot%\\hp\\kbd\\ aol.dll High Rating Details
 %systemdiskroot%\\hp\\kbd\\ cfg.dll High Rating Details
 %systemdiskroot%\\hp\\kbd\\ KBD.EXE High Rating Details
 %systemdiskroot%\\hp\\kbd\\ led.dll High Rating Details
 %systemdiskroot%\\hp\\kbd\\ msg.dll High Rating Details
 %systemdiskroot%\\hp\\kbd\\ MSIKBDIF.DLL High Rating Details
 %systemdiskroot%\\hp\\kbd\\ onl.dll Medium Rating Details
 %systemdiskroot%\\hp\\kbd\\ osd.dll Medium Rating Details
 %systemdiskroot%\\hp\\kbd\\ ps2.dll High Rating Details
 %systemdiskroot%\\hp\\kbd\\ sct.dll Medium Rating Details
 %systemdiskroot%\\hp\\kbd\\ url.dll High Rating Details
 %systemdiskroot%\\hp\\kbd\\ USB.dll High Rating Details
 %windir%\\apppatch\\ AcAdProc.dll High Rating Details
 %windir%\\apppatch\\ AcGenral.DLL High Rating Details
 %windir%\\ armcex.dll Medium Rating Details
 %windir%\\ ARPWRMSG.EXE Medium Rating Details
 %windir%\\ arservice.exe Medium Rating Details
 %windir%\\assembly\\gac\\ehcm\​\6.0.3000.0__31bf3856ad364e35\​\ ehcm.dll Medium Rating Details
 %windir%\\assembly\\gac\\ehepg​\\6.0.3000.0__31bf3856ad364e35​\\ ehepg.dll Medium Rating Details
 %windir%\\assembly\\gac\\mscor​lib.resources\\1.0.5000.0_fr_b​77a5c... mscorlib.resources.dll Medium Rating Details
 %windir%\\assembly\\gac\\syste​m.data\\1.0.5000.0__b77a5c5619​34e08... system.data.dll Medium Rating Details
 %windir%\\assembly\\gac\\syste​m.enterpriseservices\\1.0.5000​.0__b... system.enterpriseservices.dll Medium Rating Details
 %windir%\\assembly\\gac\\syste​m.enterpriseservices\\1.0.5000​.0__b... system.enterpriseservices.thun​k.dll Medium Rating Details
 %windir%\\assembly\\gac\\syste​m.resources\\1.0.5000.0_fr_b77​a5c56... system.resources.dll Medium Rating Details
 %windir%\\assembly\\gac\\syste​m.xml\\1.0.5000.0__b77a5c56193​4e089... system.xml.dll High Rating Details
 %windir%\\assembly\\gac\\syste​m\\1.0.5000.0__b77a5c561934e08​9\\ system.dll High Rating Details
 %windir%\\ehome\\ custsat.dll Medium Rating Details
 %windir%\\ehome\\ ehGLID.dll Medium Rating Details
 %windir%\\ehome\\ ehmsas.exe High Rating Details
 %windir%\\ehome\\ ehProxy.dll Medium Rating Details
 %windir%\\ehome\\ ehRec.exe Medium Rating Details
 %windir%\\ehome\\ ehRecvr.exe High Rating Details
 %windir%\\ehome\\ ehSched.exe High Rating Details
 %windir%\\ehome\\ ehTrace.dll Medium Rating Details
 %windir%\\ehome\\ ehtray.exe High Rating Details
 %windir%\\ehome\\ EhUI.dll Medium Rating Details
 %windir%\\ehome\\ mcrdsvc.exe High Rating Details
 %windir%\\ Explorer.EXE High Rating Details
 %windir%\\microsoft.net\\frame​work\\v1.1.4322\\ aspnet_isapi.dll High Rating Details
 %windir%\\microsoft.net\\frame​work\\v1.1.4322\\ diasymreader.dll Medium Rating Details
 %windir%\\microsoft.net\\frame​work\\v1.1.4322\\ fusion.dll High Rating Details
 %windir%\\microsoft.net\\frame​work\\v1.1.4322\\ MSCORJIT.DLL High Rating Details
 %windir%\\microsoft.net\\frame​work\\v1.1.4322\\ mscorlib.dll High Rating Details
 %windir%\\microsoft.net\\frame​work\\v1.1.4322\\ mscorsn.dll High Rating Details
 %windir%\\microsoft.net\\frame​work\\v1.1.4322\\ mscorsvr.dll Medium Rating Details
 %windir%\\microsoft.net\\frame​work\\v1.1.4322\\ MSVCR71.dll High Rating Details
 %windir%\\microsoft.net\\frame​work\\v4.0.30319\\ aspnet_perf.dll High Rating Details
 %windir%\\microsoft.net\\frame​work\\v4.0.30319\\ CorperfmonExt.dll High Rating Details
 %windir%\\microsoft.net\\frame​work\\v4.0.30319\\ mscoreei.dll High Rating Details
 %windir%\\microsoft.net\\frame​work\\v4.0.30319\\ perfcounter.dll High Rating Details
 %windir%\\pchealth\\helpctr\\b​inaries\\ pchsvc.dll High Rating Details
 %windir%\\ RTHDCPL.EXE Medium Rating Details
 %windir%\\system\\ hpsysdrv.exe High Rating Details
 %windir%\\winsxs\\x86_microsof​t.vc80.crt_1fc8b3b9a1e18e3b_8.​0.507... MSVCP80.dll High Rating Details
 %windir%\\winsxs\\x86_microsof​t.vc80.crt_1fc8b3b9a1e18e3b_8.​0.507... MSVCR80.dll High Rating Details
 %windir%\\winsxs\\x86_microsof​t.vc90.crt_1fc8b3b9a1e18e3b_9.​0.307... MSVCP90.dll High Rating Details
 %windir%\\winsxs\\x86_microsof​t.vc90.crt_1fc8b3b9a1e18e3b_9.​0.307... MSVCR90.dll High Rating Details
 %windir%\\winsxs\\x86_microsof​t.windows.common-controls_6595​b6414... comctl32.dll High Rating Details
 %windir%\\winsxs\\x86_microsof​t.windows.gdiplus_6595b64144cc​f1df_... gdiplus.dll High Rating Details
 %programfiles%\\openoffice.org 3\\program\\ aggmi.dll Medium Rating Details
 %programfiles%\\openoffice.org 3\\program\\ avmediami.dll Medium Rating Details
 %programfiles%\\openoffice.org 3\\program\\ basegfxmi.dll Medium Rating Details
 %programfiles%\\openoffice.org 3\\program\\ canvastoolsmi.dll Medium Rating Details
 %programfiles%\\openoffice.org 3\\program\\ comphelp4MSC.dll Medium Rating Details
 %programfiles%\\openoffice.org 3\\program\\ configmgr.uno.dll Medium Rating Details
 %programfiles%\\openoffice.org 3\\program\\ cppcanvasmi.dll Medium Rating Details
 %programfiles%\\openoffice.org 3\\program\\ deploymentmiscmi.dll Medium Rating Details
 %programfiles%\\openoffice.org 3\\program\\ drawinglayermi.dll Medium Rating Details
 %programfiles%\\openoffice.org 3\\program\\ editengmi.dll Medium Rating Details
 %programfiles%\\openoffice.org 3\\program\\ emsermi.dll Medium Rating Details
 %programfiles%\\openoffice.org 3\\program\\ fwemi.dll Medium Rating Details
 %programfiles%\\openoffice.org 3\\program\\ fwimi.dll Medium Rating Details
 %programfiles%\\openoffice.org 3\\program\\ fwkmi.dll Medium Rating Details
 %programfiles%\\openoffice.org 3\\program\\ i18nisolang1MSC.dll Medium Rating Details
 %programfiles%\\openoffice.org 3\\program\\ i18npapermi.dll Medium Rating Details
 %programfiles%\\openoffice.org 3\\program\\ i18npool.uno.dll Medium Rating Details
 %programfiles%\\openoffice.org 3\\program\\ i18nutilMSC.dll Medium Rating Details
 %programfiles%\\openoffice.org 3\\program\\ icudt40.dll Medium Rating Details
 %programfiles%\\openoffice.org 3\\program\\ icuin40.dll Medium Rating Details
 %programfiles%\\openoffice.org 3\\program\\ icuuc40.dll Medium Rating Details
 %programfiles%\\openoffice.org 3\\program\\ libdb47.dll Medium Rating Details
 %programfiles%\\openoffice.org 3\\program\\ libxml2.dll Medium Rating Details
 %programfiles%\\openoffice.org 3\\program\\ lngmi.dll Medium Rating Details
 %programfiles%\\openoffice.org 3\\program\\ localebe1.uno.dll Medium Rating Details
 %programfiles%\\openoffice.org 3\\program\\ logmi.dll Medium Rating Details
 %programfiles%\\openoffice.org 3\\program\\ oleautobridge.uno.dll Medium Rating Details
 %programfiles%\\openoffice.org 3\\program\\ oooimprovecoremi.dll Medium Rating Details
 %programfiles%\\openoffice.org 3\\program\\ oooimprovementmi.dll Medium Rating Details
 %programfiles%\\openoffice.org 3\\program\\ sbmi.dll Medium Rating Details
 %programfiles%\\openoffice.org 3\\program\\ sfxmi.dll Medium Rating Details
 %programfiles%\\openoffice.org 3\\program\\ sofficeapp.dll Medium Rating Details
 %programfiles%\\openoffice.org 3\\program\\ sotmi.dll Medium Rating Details
 %programfiles%\\openoffice.org 3\\program\\ stsmi.DLL Medium Rating Details
 %programfiles%\\openoffice.org 3\\program\\ svlmi.dll Medium Rating Details
 %programfiles%\\openoffice.org 3\\program\\ svtmi.dll Medium Rating Details
 %programfiles%\\openoffice.org 3\\program\\ svxcoremi.dll Medium Rating Details
 %programfiles%\\openoffice.org 3\\program\\ tkmi.dll Medium Rating Details
 %programfiles%\\openoffice.org 3\\program\\ tlmi.dll Medium Rating Details
 %programfiles%\\openoffice.org 3\\program\\ ucb1.dll Medium Rating Details
 %programfiles%\\openoffice.org 3\\program\\ ucbhelper4MSC.dll Medium Rating Details
 %programfiles%\\openoffice.org 3\\program\\ ucpfile1.dll Medium Rating Details
 %programfiles%\\openoffice.org 3\\program\\ utlmi.dll Medium Rating Details
 %programfiles%\\openoffice.org 3\\program\\ vclmi.dll Medium Rating Details
 %programfiles%\\openoffice.org 3\\program\\ vos3MSC.dll Medium Rating Details
 %programfiles%\\openoffice.org 3\\program\\ xcrmi.dll Medium Rating Details
 %programfiles%\\openoffice.org 3\\program\\ xomi.dll Medium Rating Details
 %programfiles%\\openoffice.org 3\\ure\\bin\\ bootstrap.uno.dll Medium Rating Details
 %programfiles%\\openoffice.org 3\\ure\\bin\\ cppu3.dll Medium Rating Details
 %programfiles%\\openoffice.org 3\\ure\\bin\\ cppuhelper3MSC.dll Medium Rating Details
 %programfiles%\\openoffice.org 3\\ure\\bin\\ jvmfwk3.dll Medium Rating Details
 %programfiles%\\openoffice.org 3\\ure\\bin\\ msci_uno.dll Medium Rating Details
 %programfiles%\\openoffice.org 3\\ure\\bin\\ reg3.dll Medium Rating Details
 %programfiles%\\openoffice.org 3\\ure\\bin\\ sal3.dll Medium Rating Details
 %programfiles%\\openoffice.org 3\\ure\\bin\\ salhelper3MSC.dll Medium Rating Details
 %programfiles%\\openoffice.org 3\\ure\\bin\\ stlport_vc7145.dll Medium Rating Details
 %programfiles%\\openoffice.org 3\\ure\\bin\\ stocservices.uno.dll Medium Rating Details
 %programfiles%\\openoffice.org 3\\ure\\bin\\ store3.dll Medium Rating Details
 %programfiles%\\openoffice.org 3\\ure\\bin\\ uwinapi.dll Medium Rating Details
 %windir%\\assembly\\gac\\bdatu​nepia\\6.0.3000.0__31bf3856ad3​64e35... bdatunepia.dll Low Rating Details
 %windir%\\assembly\\gac\\ehcir​\\6.0.3000.0__31bf3856ad364e35​\\ ehcir.dll Low Rating Details
 %windir%\\assembly\\gac\\ehepg​dat\\6.0.3000.0__31bf3856ad364​e35\\ ehepgdat.dll Low Rating Details
 %windir%\\assembly\\gac\\ehipr​oxy\\6.0.3000.0__31bf3856ad364​e35\\ ehiproxy.dll Low Rating Details
 %windir%\\assembly\\gac\\ehius​erxp\\6.0.3000.0__31bf3856ad36​4e35\... ehiuserxp.dll Low Rating Details
 %windir%\\assembly\\gac\\ehrec​obj\\6.0.3000.0__31bf3856ad364​e35\\ ehrecobj.dll Low Rating Details
 %windir%\\assembly\\nativeimag​es1_v1.1.4322\\mscorlib\\1.0.5​000.0... mscorlib.dll Low Rating Details
 %windir%\\assembly\\nativeimag​es1_v1.1.4322\\system.xml\\1.0​.5000... system.xml.dll Low Rating Details
 %windir%\\assembly\\nativeimag​es1_v1.1.4322\\system\\1.0.500​0.0__... system.dll Low Rating Details
 %windir%\\ehome\\ EhDebug.dll Low Rating Details
 %windir%\\ehome\\ ehepgdec.dll Low Rating Details
 %windir%\\ehome\\fr\\ ehepg.resources.dll Low Rating Details
 %windir%\\ehome\\ SQLDB20.dll Low Rating Details
 %windir%\\ehome\\ sqlqp20.dll Low Rating Details
 %windir%\\ehome\\ sqlse20.dll Low Rating Details

 Privacy Policy
 Data are anonymously stored and accessible for 24 hours. If you want, you can DELETE the report immediately or make the report PERMANENT.

Home

About

Contact

 SystemSecurityGuard.com  © 2011Privacy Policy Terms of Use

Imagine ...
Profil : Equipe sécurité
kmisol
Célèbre sur tout le forum (de 30 000 à 99 999 messages postés)
  1. Posté le 31/01/2012 à 18:20:59  
  1. answer
  1. Prévenir les modérateurs en cas d'abus
 
Hello,

 Télécharge TDSSKiller (de Kaspersky) sur ton Bureau :

 Lance TDSSKiller.exe en double-cliquant sur l’icône
 (pour Vista/Seven clique droit sur l'icône et choisir "Exécuter en tant qu'administrateur" ).

 Clique sur Start scan et … laisse l'outil travailler (n’utilise pas le PC).

 Conserve l'action que propose l’outil par défaut ; ainsi :
 - pour TDSS.tdl2 : l'option Delete sera cochée.
 - pour TDSS.tdl3 et/ou TDSS.tdl4 : assure-toi que Cure est bien cochée.
 - pour "Suspicious object" laisse sur Skip
 
 Clique sur Continue puis, sur Reboot now si le redémarrage est proposé.

 Poste le rapport.

 Le rapport se trouve à la racine du disque principal : C:\TDSSKiller.n° de version_date_heure_log.txt

vieux motard que jamais
remi-fasol
Sur la bonne voie (de 100 à 499 messages postés)
  1. Posté le 31/01/2012 à 18:48:02  
  1. answer
  1. Prévenir les modérateurs en cas d'abus
 

 18:43:28.0531 3884 TDSS rootkit removing tool 2.7.8.0 Jan 30 2012 16:39:36
 18:43:29.0234 3884 ==============================​==============================
 18:43:29.0234 3884 Current date / time: 2012/01/31 18:43:29.0234
 18:43:29.0234 3884 SystemInfo:
 18:43:29.0234 3884  
 18:43:29.0234 3884 OS Version: 5.1.2600 ServicePack: 3.0
 18:43:29.0234 3884 Product type: Workstation
 18:43:29.0234 3884 ComputerName: NOM-FB9B15D2723
 18:43:29.0265 3884 UserName: HP_Administrateur
 18:43:29.0265 3884 Windows directory: C:\WINDOWS
 18:43:29.0265 3884 System windows directory: C:\WINDOWS
 18:43:29.0265 3884 Processor architecture: Intel x86
 18:43:29.0265 3884 Number of processors: 2
 18:43:29.0265 3884 Page size: 0x1000
 18:43:29.0265 3884 Boot type: Normal boot
 18:43:29.0265 3884 ==============================​==============================
 18:43:34.0625 3884 Drive \Device\Harddisk0\DR0 - Size: 0x2E93E36000 (186.31 Gb), SectorSize: 0x200, Cylinders: 0x5F01, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000054
 18:43:34.0734 3884 \Device\Harddisk0\DR0:
 18:43:34.0734 3884 MBR used
 18:43:34.0734 3884 \Device\Harddisk0\DR0\Partitio​n0: MBR, Type 0xC, StartLBA 0x3F, BlocksNum 0xE04B94
 18:43:34.0734 3884 \Device\Harddisk0\DR0\Partitio​n1: MBR, Type 0x7, StartLBA 0xE04BD3, BlocksNum 0x1669532D
 18:43:34.0781 3884 Initialize success
 18:43:34.0781 3884 ==============================​==============================
 18:43:54.0125 17024 ==============================​==============================
 18:43:54.0125 17024 Scan started
 18:43:54.0125 17024 Mode: Manual;
 18:43:54.0125 17024 ==============================​==============================
 18:43:55.0062 17024 3xHybrid        (14071068e85e90bacab57e34c544f​c6d) C:\WINDOWS\system32\DRIVERS\3x​Hybrid.sys
 18:43:55.0140 17024 3xHybrid - ok
 18:43:55.0171 17024 Abiosdsk - ok
 18:43:55.0218 17024 abp480n5 - ok
 18:43:55.0312 17024 acedrv11        (e6f53d6c0dea3d375362265e175ca​638) C:\WINDOWS\system32\drivers\ac​edrv11.sys
 18:43:55.0328 17024 acedrv11 - ok
 18:43:55.0453 17024 ACPI            (e5e6dbfc41ea8aad005cb9a57a96b​43b) C:\WINDOWS\system32\DRIVERS\AC​PI.sys
 18:43:55.0468 17024 ACPI - ok
 18:43:55.0546 17024 ACPIEC          (e4abc1212b70bb03d35e60681c447​210) C:\WINDOWS\system32\drivers\AC​PIEC.sys
 18:43:55.0562 17024 ACPIEC - ok
 18:43:55.0593 17024 adpu160m - ok
 18:43:55.0781 17024 aec             (8bed39e3c35d6a489438b8141717a​557) C:\WINDOWS\system32\drivers\ae​c.sys
 18:43:55.0796 17024 aec - ok
 18:43:55.0859 17024 Afc             (a7b8a3a79d35215d798a300df49ed​23f) C:\WINDOWS\system32\drivers\Af​c.sys
 18:43:55.0875 17024 Afc - ok
 18:43:55.0984 17024 AFD             (1e44bc1e83d8fd2305f8d452db109​cf9) C:\WINDOWS\System32\drivers\af​d.sys
 18:43:56.0000 17024 AFD - ok
 18:43:56.0031 17024 Aha154x - ok
 18:43:56.0078 17024 aic78u2 - ok
 18:43:56.0125 17024 aic78xx - ok
 18:43:56.0171 17024 AliIde - ok
 18:43:56.0203 17024 amsint - ok
 18:43:56.0312 17024 aracpi          (c195c48aebcc2891550c1167b3e3f​658) C:\WINDOWS\system32\DRIVERS\ar​acpi.sys
 18:43:56.0312 17024 aracpi - ok
 18:43:56.0375 17024 arhidfltr       (7de52fcde9468ee55c2e9a9492373​a08) C:\WINDOWS\system32\DRIVERS\ar​hidfltr.sys
 18:43:56.0390 17024 arhidfltr - ok
 18:43:56.0468 17024 arkbcfltr       (7ecd19a1e174fac4ac14a74910c04​33b) C:\WINDOWS\system32\DRIVERS\ar​kbcfltr.sys
 18:43:56.0484 17024 arkbcfltr - ok
 18:43:56.0531 17024 armoucfltr      (cb37867bf77e8e95df759ca768048​7e5) C:\WINDOWS\system32\DRIVERS\ar​moucfltr.sys
 18:43:56.0546 17024 armoucfltr - ok
 18:43:56.0703 17024 Arp1394         (b5b8a80875c1dededa8b02765642c​32f) C:\WINDOWS\system32\DRIVERS\ar​p1394.sys
 18:43:56.0703 17024 Arp1394 - ok
 18:43:56.0765 17024 ARPolicy        (ef05d0cc4061f790a6e0ffe03b585​600) C:\WINDOWS\system32\DRIVERS\ar​policy.sys
 18:43:56.0765 17024 ARPolicy - ok
 18:43:56.0843 17024 asc - ok
 18:43:56.0875 17024 asc3350p - ok
 18:43:56.0921 17024 asc3550 - ok
 18:43:57.0000 17024 AsyncMac        (b153affac761e7f5fcfa822b9c4e9​7bc) C:\WINDOWS\system32\DRIVERS\as​yncmac.sys
 18:43:57.0000 17024 AsyncMac - ok
 18:43:57.0046 17024 atapi           (9f3a2f5aa6875c72bf062c712cfa2​674) C:\WINDOWS\system32\DRIVERS\at​api.sys
 18:43:57.0046 17024 atapi - ok
 18:43:57.0078 17024 Atdisk - ok
 18:43:58.0046 17024 ati2mtag        (15b2fe76e2eceb98c49ed52311a6f​26f) C:\WINDOWS\system32\DRIVERS\at​i2mtag.sys
 18:43:58.0687 17024 ati2mtag - ok
 18:43:58.0843 17024 atksgt          (3c4b9850a2631c2263507400d0290​57b) C:\WINDOWS\system32\DRIVERS\at​ksgt.sys
 18:43:58.0859 17024 atksgt - ok
 18:43:59.0000 17024 Atmarpc         (9916c1225104ba14794209cfa8012​159) C:\WINDOWS\system32\DRIVERS\at​marpc.sys
 18:43:59.0000 17024 Atmarpc - ok
 18:43:59.0109 17024 audstub         (d9f724aa26c010a217c97606b160e​d68) C:\WINDOWS\system32\DRIVERS\au​dstub.sys
 18:43:59.0125 17024 audstub - ok
 18:43:59.0187 17024 bb-run          (7270d070173b20ac9487ea16bb08b​45f) C:\WINDOWS\system32\DRIVERS\bb​-run.sys
 18:43:59.0203 17024 bb-run - ok
 18:43:59.0328 17024 Beep            (da1f27d85e0d1525f6621372e7b68​5e9) C:\WINDOWS\system32\drivers\Be​ep.sys
 18:43:59.0328 17024 Beep - ok
 18:43:59.0390 17024 catchme - ok
 18:43:59.0625 17024 cbidf2k         (90a673fc8e12a79afbed2576f6a7a​af9) C:\WINDOWS\system32\drivers\cb​idf2k.sys
 18:43:59.0656 17024 cbidf2k - ok
 18:43:59.0890 17024 CCDECODE        (0be5aef125be881c4f854c554f2b0​25c) C:\WINDOWS\system32\DRIVERS\CC​DECODE.sys
 18:43:59.0890 17024 CCDECODE - ok
 18:44:00.0093 17024 cd20xrnt - ok
 18:44:00.0437 17024 Cdaudio         (c1b486a7658353d33a10cc15211a8​73b) C:\WINDOWS\system32\drivers\Cd​audio.sys
 18:44:00.0453 17024 Cdaudio - ok
 18:44:00.0593 17024 Cdfs            (c885b02847f5d2fd45a24e219ed93​b32) C:\WINDOWS\system32\drivers\Cd​fs.sys
 18:44:00.0593 17024 Cdfs - ok
 18:44:00.0703 17024 cdrbsdrv        (e0042bd5bef17a6a3ef1df576bde2​4d1) C:\WINDOWS\system32\drivers\cd​rbsdrv.sys
 18:44:00.0718 17024 cdrbsdrv - ok
 18:44:00.0781 17024 Cdrom           (1f4260cc5b42272d71f79e570a27a​4fe) C:\WINDOWS\system32\DRIVERS\cd​rom.sys
 18:44:00.0781 17024 Cdrom - ok
 18:44:00.0812 17024 Changer - ok
 18:44:00.0859 17024 CmdIde - ok
 18:44:00.0921 17024 Cpqarray - ok
 18:44:00.0968 17024 dac2w2k - ok
 18:44:01.0015 17024 dac960nt - ok
 18:44:01.0062 17024 Disk            (044452051f3e02e7963599fc8f4f3​e25) C:\WINDOWS\system32\DRIVERS\di​sk.sys
 18:44:01.0078 17024 Disk - ok
 18:44:01.0156 17024 dmboot          (f5deadd42335fb33edca74ecb2f36​cba) C:\WINDOWS\system32\drivers\dm​boot.sys
 18:44:01.0187 17024 dmboot - ok
 18:44:01.0234 17024 dmio            (5a7c47c9b3f9fb92a66410a7509f0​c71) C:\WINDOWS\system32\drivers\dm​io.sys
 18:44:01.0250 17024 dmio - ok
 18:44:01.0390 17024 dmload          (e9317282a63ca4d188c0df5e09c6a​c5f) C:\WINDOWS\system32\drivers\dm​load.sys
 18:44:01.0390 17024 dmload - ok
 18:44:01.0546 17024 DMusic          (8a208dfcf89792a484e76c40e5f50​b45) C:\WINDOWS\system32\drivers\DM​usic.sys
 18:44:01.0546 17024 DMusic - ok
 18:44:01.0593 17024 dpti2o - ok
 18:44:01.0781 17024 driverhardwarev2 (a694d8db6d360a3bbb0bd1517f1c1​aee) C:\Program Files\ma-config.com\Drivers\dr​iverhardwarev2.sys
 18:44:01.0781 17024 driverhardwarev2 - ok
 18:44:01.0937 17024 drmkaud         (8f5fcff8e8848afac920905fbd9d3​3c8) C:\WINDOWS\system32\drivers\dr​mkaud.sys
 18:44:01.0953 17024 drmkaud - ok
 18:44:02.0015 17024 Fastfat         (38d332a6d56af32635675f1325483​43e) C:\WINDOWS\system32\drivers\Fa​stfat.sys
 18:44:02.0031 17024 Fastfat - ok
 18:44:02.0062 17024 Fdc             (92cdd60b6730b9f50f6a1a0c1f8cd​c81) C:\WINDOWS\system32\DRIVERS\fd​c.sys
 18:44:02.0078 17024 Fdc - ok
 18:44:02.0125 17024 Fips            (31f923eb2170fc172c81abda0045d​18c) C:\WINDOWS\system32\drivers\Fi​ps.sys
 18:44:02.0125 17024 Fips - ok
 18:44:02.0156 17024 Flpydisk        (9d27e7b80bfcdf1cdd9b555862d5e​7f0) C:\WINDOWS\system32\drivers\Fl​pydisk.sys
 18:44:02.0156 17024 Flpydisk - ok
 18:44:02.0343 17024 FltMgr          (b2cf4b0786f8212cb92ed2b50c6db​6b0) C:\WINDOWS\system32\drivers\fl​tmgr.sys
 18:44:02.0343 17024 FltMgr - ok
 18:44:02.0421 17024 Fs_Rec          (3e1e2bd4f39b0e2b7dc4f4d2bcc27​79a) C:\WINDOWS\system32\drivers\Fs​_Rec.sys
 18:44:02.0437 17024 Fs_Rec - ok
 18:44:02.0500 17024 Ftdisk          (a86859b77b908c18c2657f284aa29​fe3) C:\WINDOWS\system32\DRIVERS\ft​disk.sys
 18:44:02.0500 17024 Ftdisk - ok
 18:44:02.0562 17024 ftsata2         (22399d3ce5840c6082844679cca5d​2fc) C:\WINDOWS\system32\DRIVERS\ft​sata2.sys
 18:44:02.0562 17024 ftsata2 - ok
 18:44:02.0671 17024 GDBehave        (1b519753da1e7e51f37001e23f1bb​045) C:\WINDOWS\system32\drivers\GD​Behave.sys
 18:44:02.0687 17024 GDBehave - ok
 18:44:02.0859 17024 GDMnIcpt        (cd58774324a78bba15b89c35bed81​593) C:\WINDOWS\system32\drivers\Mi​niIcpt.sys
 18:44:02.0859 17024 GDMnIcpt - ok
 18:44:02.0953 17024 GDTdiInterceptor (564777071576ce55b9204a02ec8fd​645) C:\WINDOWS\system32\drivers\GD​TdiIcpt.sys
 18:44:02.0953 17024 GDTdiInterceptor - ok
 18:44:03.0015 17024 GearAspiWDM     (8182ff89c65e4d38b2de4bb0fb185​64e) C:\WINDOWS\system32\drivers\GE​ARAspiWDM.sys
 18:44:03.0015 17024 GearAspiWDM - ok
 18:44:03.0125 17024 Gpc             (0a02c63c8b144bd8c86b103dee7c8​6a2) C:\WINDOWS\system32\DRIVERS\ms​gpc.sys
 18:44:03.0125 17024 Gpc - ok
 18:44:03.0218 17024 GRD             (6a317ad9a2d6c9612d34b692084ea​6f8) C:\WINDOWS\system32\drivers\GR​D.sys
 18:44:03.0218 17024 GRD - ok
 18:44:03.0453 17024 HDAudBus        (573c7d0a32852b48f3058cfd8026f​511) C:\WINDOWS\system32\DRIVERS\HD​AudBus.sys
 18:44:03.0453 17024 HDAudBus - ok
 18:44:03.0625 17024 HidUsb          (ccf82c5ec8a7326c3066de870c06d​af1) C:\WINDOWS\system32\DRIVERS\hi​dusb.sys
 18:44:03.0640 17024 HidUsb - ok
 18:44:03.0734 17024 HookCentre      (f60c377c72bb24f5212ff994420f5​11f) C:\WINDOWS\system32\drivers\Ho​okCentre.sys
 18:44:03.0734 17024 HookCentre - ok
 18:44:03.0765 17024 hpn - ok
 18:44:03.0859 17024 HPZid412        (30ca91e657cede2f95359d6ef186f​650) C:\WINDOWS\system32\DRIVERS\HP​Zid412.sys
 18:44:03.0859 17024 HPZid412 - ok
 18:44:04.0046 17024 HPZipr12        (efd31afa752aa7c7bbb57bcbe2b01​c78) C:\WINDOWS\system32\DRIVERS\HP​Zipr12.sys
 18:44:04.0062 17024 HPZipr12 - ok
 18:44:04.0140 17024 HPZius12        (7ac43c38ca8fd7ed0b0a4466f753e​06e) C:\WINDOWS\system32\DRIVERS\HP​Zius12.sys
 18:44:04.0140 17024 HPZius12 - ok
 18:44:04.0250 17024 HTTP            (f80a415ef82cd06ffaf0d971528ea​d38) C:\WINDOWS\system32\Drivers\HT​TP.sys
 18:44:04.0265 17024 HTTP - ok
 18:44:04.0312 17024 i2omgmt - ok
 18:44:04.0390 17024 i2omp - ok
 18:44:04.0484 17024 i8042prt        (a09bdc4ed10e3b2e0ec27bb94af32​516) C:\WINDOWS\system32\DRIVERS\i8​042prt.sys
 18:44:04.0500 17024 i8042prt - ok
 18:44:04.0609 17024 iaStor          (9a65e42664d1534b68512caad0efe​963) C:\WINDOWS\system32\DRIVERS\ia​Stor.sys
 18:44:04.0640 17024 iaStor - ok
 18:44:04.0812 17024 Imapi           (083a052659f5310dd8b6a6cb05edc​f8e) C:\WINDOWS\system32\DRIVERS\im​api.sys
 18:44:04.0812 17024 Imapi - ok
 18:44:04.0875 17024 ini910u - ok
 18:44:05.0046 17024 IntcAzAudAddService (27b220620a480e54bf57e4750ca9b​65f) C:\WINDOWS\system32\drivers\Rt​kHDAud.sys
 18:44:05.0156 17024 IntcAzAudAddService - ok
 18:44:05.0234 17024 IntelIde        (4b6da2f0a4095857a9e3f3697399d​575) C:\WINDOWS\system32\DRIVERS\in​telide.sys
 18:44:05.0234 17024 IntelIde - ok
 18:44:05.0312 17024 intelppm        (ad340800c35a42d4de1641a37feea​34c) C:\WINDOWS\system32\DRIVERS\in​telppm.sys
 18:44:05.0328 17024 intelppm - ok
 18:44:05.0500 17024 Ip6Fw           (3bb22519a194418d5fec05d800a19​ad0) C:\WINDOWS\system32\drivers\ip​6fw.sys
 18:44:05.0500 17024 Ip6Fw - ok
 18:44:05.0593 17024 IpFilterDriver  (731f22ba402ee4b62748adaf6363c​182) C:\WINDOWS\system32\DRIVERS\ip​fltdrv.sys
 18:44:05.0593 17024 IpFilterDriver - ok
 18:44:05.0734 17024 IpInIp          (b87ab476dcf76e72010632b555095​5f5) C:\WINDOWS\system32\DRIVERS\ip​inip.sys
 18:44:05.0734 17024 IpInIp - ok
 18:44:05.0843 17024 IpNat           (cc748ea12c6effde940ee98098bf9​6bb) C:\WINDOWS\system32\DRIVERS\ip​nat.sys
 18:44:05.0859 17024 IpNat - ok
 18:44:05.0953 17024 IPSec           (23c74d75e36e7158768dd63d92789​a91) C:\WINDOWS\system32\DRIVERS\ip​sec.sys
 18:44:05.0953 17024 IPSec - ok
 18:44:06.0015 17024 IRENUM          (c93c9ff7b04d772627a3646d89f7b​f89) C:\WINDOWS\system32\DRIVERS\ir​enum.sys
 18:44:06.0015 17024 IRENUM - ok
 18:44:06.0093 17024 isapnp          (355836975a67b6554bca60328cd6c​b74) C:\WINDOWS\system32\DRIVERS\is​apnp.sys
 18:44:06.0093 17024 isapnp - ok
 18:44:06.0281 17024 Kbdclass        (16813155807c6881f4bfbf6657424​659) C:\WINDOWS\system32\DRIVERS\kb​dclass.sys
 18:44:06.0281 17024 Kbdclass - ok
 18:44:06.0328 17024 kmixer          (692bcf44383d056aed41b045a323d​378) C:\WINDOWS\system32\drivers\km​ixer.sys
 18:44:06.0328 17024 kmixer - ok
 18:44:06.0421 17024 KSecDD          (b467646c54cc746128904e1654c75​0c1) C:\WINDOWS\system32\drivers\KS​ecDD.sys
 18:44:06.0437 17024 KSecDD - ok
 18:44:06.0500 17024 lbrtfdc - ok
 18:44:06.0593 17024 lirsgt          (4127e8b6ddb4090e815c1f8852c27​7d3) C:\WINDOWS\system32\DRIVERS\li​rsgt.sys
 18:44:06.0593 17024 lirsgt - ok
 18:44:06.0687 17024 mdf15 - ok
 18:44:06.0859 17024 MHNDRV          (7f2f1d2815a6449d346fcccbc569f​bd6) C:\WINDOWS\system32\DRIVERS\mh​ndrv.sys
 18:44:06.0859 17024 MHNDRV - ok
 18:44:06.0968 17024 mnmdd           (4ae068242760a1fb6e1a44bf4e16a​fa6) C:\WINDOWS\system32\drivers\mn​mdd.sys
 18:44:06.0968 17024 mnmdd - ok
 18:44:07.0046 17024 Modem           (510ade9327fe84c10254e1902697e​25f) C:\WINDOWS\system32\drivers\Mo​dem.sys
 18:44:07.0046 17024 Modem - ok
 18:44:07.0125 17024 Mouclass        (027c01bd7ef3349aaebc883d8a799​efb) C:\WINDOWS\system32\DRIVERS\mo​uclass.sys
 18:44:07.0125 17024 Mouclass - ok
 18:44:07.0312 17024 mouhid          (124d6846040c79b9c997f78ef4b2a​4e5) C:\WINDOWS\system32\DRIVERS\mo​uhid.sys
 18:44:07.0421 17024 mouhid - ok
 18:44:07.0640 17024 MountMgr        (a80b9a0bad1b73637dbcbba7df72d​3fd) C:\WINDOWS\system32\drivers\Mo​untMgr.sys
 18:44:07.0640 17024 MountMgr - ok
 18:44:07.0703 17024 MPE             (c0f8e0c2c3c0437cf37c6781896dc​3ec) C:\WINDOWS\system32\DRIVERS\MP​E.sys
 18:44:07.0703 17024 MPE - ok
 18:44:07.0750 17024 mraid35x - ok
 18:44:07.0828 17024 MRxDAV          (11d42bb6206f33fbb3ba0288d3ef8​1bd) C:\WINDOWS\system32\DRIVERS\mr​xdav.sys
 18:44:07.0859 17024 MRxDAV - ok
 18:44:07.0937 17024 MRxSmb          (7d304a5eb4344ebeeab53a2fe3ffb​9f0) C:\WINDOWS\system32\DRIVERS\mr​xsmb.sys
 18:44:07.0984 17024 MRxSmb - ok
 18:44:08.0093 17024 Msfs            (c941ea2454ba8350021d774daf0f1​027) C:\WINDOWS\system32\drivers\Ms​fs.sys
 18:44:08.0093 17024 Msfs - ok
 18:44:08.0171 17024 MSKSSRV         (d1575e71568f4d9e14ca56b7b0453​bf1) C:\WINDOWS\system32\drivers\MS​KSSRV.sys
 18:44:08.0171 17024 MSKSSRV - ok
 18:44:08.0265 17024 MSPCLOCK        (325bb26842fc7ccc1fcce2c457317​f3e) C:\WINDOWS\system32\drivers\MS​PCLOCK.sys
 18:44:08.0265 17024 MSPCLOCK - ok
 18:44:08.0312 17024 MSPQM           (bad59648ba099da4a17680b39730c​b3d) C:\WINDOWS\system32\drivers\MS​PQM.sys
 18:44:08.0312 17024 MSPQM - ok
 18:44:08.0406 17024 mssmbios        (af5f4f3f14a8ea2c26de30f7a1e17​136) C:\WINDOWS\system32\DRIVERS\ms​smbios.sys
 18:44:08.0406 17024 mssmbios - ok
 18:44:08.0546 17024 MSTEE           (e53736a9e30c45fa9e7b5eac55056​d1d) C:\WINDOWS\system32\drivers\MS​TEE.sys
 18:44:08.0546 17024 MSTEE - ok
 18:44:08.0640 17024 Mup             (de6a75f5c270e756c5508d94b6cf6​8f5) C:\WINDOWS\system32\drivers\Mu​p.sys
 18:44:08.0640 17024 Mup - ok
 18:44:08.0718 17024 mvd21 - ok
 18:44:08.0843 17024 NABTSFEC        (5b50f1b2a2ed47d560577b221da73​4db) C:\WINDOWS\system32\DRIVERS\NA​BTSFEC.sys
 18:44:08.0843 17024 NABTSFEC - ok
 18:44:08.0984 17024 NDIS            (1df7f42665c94b825322fae717211​30d) C:\WINDOWS\system32\drivers\ND​IS.sys
 18:44:08.0984 17024 NDIS - ok
 18:44:09.0031 17024 NdisIP          (7ff1f1fd8609c149aa432f95a8163​d97) C:\WINDOWS\system32\DRIVERS\Nd​isIP.sys
 18:44:09.0046 17024 NdisIP - ok
 18:44:09.0125 17024 NdisTapi        (0109c4f3850dfbab279542515386a​e22) C:\WINDOWS\system32\DRIVERS\nd​istapi.sys
 18:44:09.0125 17024 NdisTapi - ok
 18:44:09.0171 17024 Ndisuio         (f927a4434c5028758a842943ef1a3​849) C:\WINDOWS\system32\DRIVERS\nd​isuio.sys
 18:44:09.0171 17024 Ndisuio - ok
 18:44:09.0218 17024 NdisWan         (edc1531a49c80614b2cfda43ca865​9ab) C:\WINDOWS\system32\DRIVERS\nd​iswan.sys
 18:44:09.0218 17024 NdisWan - ok
 18:44:09.0343 17024 NDProxy         (9282bd12dfb069d3889eb3fcc1000​a9b) C:\WINDOWS\system32\drivers\ND​Proxy.sys
 18:44:09.0359 17024 NDProxy - ok
 18:44:09.0468 17024 NetBIOS         (5d81cf9a2f1a3a756b66cf684911c​df0) C:\WINDOWS\system32\DRIVERS\ne​tbios.sys
 18:44:09.0484 17024 NetBIOS - ok
 18:44:09.0609 17024 NetBT           (74b2b2f5bea5e9a3dc021d685551b​d3d) C:\WINDOWS\system32\DRIVERS\ne​tbt.sys
 18:44:09.0625 17024 NetBT - ok
 18:44:09.0687 17024 NIC1394         (e9e47cfb2d461fa0fc75b7a74c638​3ea) C:\WINDOWS\system32\DRIVERS\ni​c1394.sys
 18:44:09.0703 17024 NIC1394 - ok
 18:44:09.0734 17024 Npfs            (3182d64ae053d6fb034f44b6def80​34a) C:\WINDOWS\system32\drivers\Np​fs.sys
 18:44:09.0750 17024 Npfs - ok
 18:44:09.0796 17024 Ntfs            (78a08dd6a8d65e697c18e1db01c5c​dca) C:\WINDOWS\system32\drivers\Nt​fs.sys
 18:44:09.0812 17024 Ntfs - ok
 18:44:09.0937 17024 Null            (73c1e1f395918bc2c6dd67af7591a​3ad) C:\WINDOWS\system32\drivers\Nu​ll.sys
 18:44:09.0937 17024 Null - ok
 18:44:10.0187 17024 nv              (55310bbf289cdc07d1a8bdbe3432a​bbf) C:\WINDOWS\system32\DRIVERS\nv​4_mini.sys
 18:44:10.0375 17024 nv - ok
 18:44:10.0578 17024 NwlnkFlt        (b305f3fad35083837ef46a0bbce2f​c57) C:\WINDOWS\system32\DRIVERS\nw​lnkflt.sys
 18:44:10.0578 17024 NwlnkFlt - ok
 18:44:10.0750 17024 NwlnkFwd        (c99b3415198d1aab7227f2c88fd66​4b9) C:\WINDOWS\system32\DRIVERS\nw​lnkfwd.sys
 18:44:10.0765 17024 NwlnkFwd - ok
 18:44:10.0859 17024 ohci1394        (ca33832df41afb202ee7aeb051459​22f) C:\WINDOWS\system32\DRIVERS\oh​ci1394.sys
 18:44:10.0859 17024 ohci1394 - ok
 18:44:10.0906 17024 Parport         (8fd0bdbea875d06ccf6c945ca9aba​f75) C:\WINDOWS\system32\DRIVERS\pa​rport.sys
 18:44:10.0906 17024 Parport - ok
 18:44:10.0968 17024 PartMgr         (beb3ba25197665d82ec7065b72417​1c6) C:\WINDOWS\system32\drivers\Pa​rtMgr.sys
 18:44:10.0968 17024 PartMgr - ok
 18:44:11.0046 17024 ParVdm          (9575c5630db8fb804649a69597371​54c) C:\WINDOWS\system32\drivers\Pa​rVdm.sys
 18:44:11.0046 17024 ParVdm - ok
 18:44:11.0187 17024 PCI             (043410877bda580c528f45165f712​5bc) C:\WINDOWS\system32\DRIVERS\pc​i.sys
 18:44:11.0187 17024 PCI - ok
 18:44:11.0250 17024 PCIDump - ok
 18:44:11.0296 17024 PCIIde          (f4bfde7209c14a07aaa61e4d6ae69​eac) C:\WINDOWS\system32\DRIVERS\pc​iide.sys
 18:44:11.0296 17024 PCIIde - ok
 18:44:11.0390 17024 Pcmcia          (f0406cbc60bdb0394a0e17ffb04cd​d3d) C:\WINDOWS\system32\drivers\Pc​mcia.sys
 18:44:11.0390 17024 Pcmcia - ok
 18:44:11.0468 17024 PDCOMP - ok
 18:44:11.0515 17024 PDFRAME - ok
 18:44:11.0562 17024 PDRELI - ok
 18:44:11.0593 17024 PDRFRAME - ok
 18:44:11.0640 17024 perc2 - ok
 18:44:11.0687 17024 perc2hib - ok
 18:44:11.0781 17024 PptpMiniport    (efeec01b1d3cf84f16ddd24d9d9d8​f99) C:\WINDOWS\system32\DRIVERS\ra​spptp.sys
 18:44:11.0781 17024 PptpMiniport - ok
 18:44:11.0921 17024 Ps2             (0e2eb30605ca6ed2509d59af6a736​2b4) C:\WINDOWS\system32\DRIVERS\PS​2.sys
 18:44:11.0921 17024 Ps2 - ok
 18:44:12.0015 17024 PSched          (09298ec810b07e5d582cb3a3f9255​424) C:\WINDOWS\system32\DRIVERS\ps​ched.sys
 18:44:12.0015 17024 PSched - ok
 18:44:12.0125 17024 Ptilink         (80d317bd1c3dbc5d4fe7b1678c60c​add) C:\WINDOWS\system32\DRIVERS\pt​ilink.sys
 18:44:12.0125 17024 Ptilink - ok
 18:44:12.0203 17024 PxHelp20        (86724469cd077901706854974cd13​c3e) C:\WINDOWS\system32\Drivers\Px​Help20.sys
 18:44:12.0203 17024 PxHelp20 - ok
 18:44:12.0328 17024 ql1080 - ok
 18:44:12.0406 17024 Ql10wnt - ok
 18:44:12.0437 17024 ql12160 - ok
 18:44:12.0484 17024 ql1240 - ok
 18:44:12.0531 17024 ql1280 - ok
 18:44:12.0578 17024 RasAcd          (fe0d99d6f31e4fad8159f690d68de​d9c) C:\WINDOWS\system32\DRIVERS\ra​sacd.sys
 18:44:12.0578 17024 RasAcd - ok
 18:44:12.0640 17024 Rasl2tp         (11b4a627bc9614b885c4969bfa5ff​8a6) C:\WINDOWS\system32\DRIVERS\ra​sl2tp.sys
 18:44:12.0656 17024 Rasl2tp - ok
 18:44:12.0734 17024 RasPppoe        (5bc962f2654137c9909c3d4603587​dee) C:\WINDOWS\system32\DRIVERS\ra​spppoe.sys
 18:44:12.0750 17024 RasPppoe - ok
 18:44:12.0843 17024 Raspti          (fdbb1d60066fcfbb7452fd8f9829b​242) C:\WINDOWS\system32\DRIVERS\ra​spti.sys
 18:44:12.0859 17024 Raspti - ok
 18:44:13.0031 17024 Rdbss           (7ad224ad1a1437fe28d89cf22b177​80a) C:\WINDOWS\system32\DRIVERS\rd​bss.sys
 18:44:13.0046 17024 Rdbss - ok
 18:44:13.0093 17024 RDPCDD          (4912d5b403614ce99c28420f75353​332) C:\WINDOWS\system32\DRIVERS\RD​PCDD.sys
 18:44:13.0093 17024 RDPCDD - ok
 18:44:13.0171 17024 rdpdr           (15cabd0f7c00c47c70124907916af​3f1) C:\WINDOWS\system32\DRIVERS\rd​pdr.sys
 18:44:13.0203 17024 rdpdr - ok
 18:44:13.0406 17024 RDPWD           (fc105dd312ed64eb66bff111e8ec6​eac) C:\WINDOWS\system32\drivers\RD​PWD.sys
 18:44:13.0421 17024 RDPWD - ok
 18:44:13.0484 17024 redbook         (d8eb2a7904db6c916eb5361878ddc​bae) C:\WINDOWS\system32\DRIVERS\re​dbook.sys
 18:44:13.0500 17024 redbook - ok
 18:44:13.0609 17024 RimUsb          (f17713d108aca124a139fde877eef​68a) C:\WINDOWS\system32\Drivers\Ri​mUsb.sys
 18:44:13.0625 17024 RimUsb - ok
 18:44:13.0781 17024 RTL8023xp       (7f0413bdd7d53eb4c7a371e7f6f84​df1) C:\WINDOWS\system32\DRIVERS\Rt​lnicxp.sys
 18:44:13.0781 17024 RTL8023xp - ok
 18:44:13.0890 17024 rtl8139         (d507c1400284176573224903819ff​da3) C:\WINDOWS\system32\DRIVERS\RT​L8139.SYS
 18:44:14.0078 17024 rtl8139 - ok
 18:44:14.0281 17024 Secdrv          (90a3935d05b494a5a39d37e71f09a​677) C:\WINDOWS\system32\DRIVERS\se​cdrv.sys
 18:44:14.0281 17024 Secdrv - ok
 18:44:14.0390 17024 Serial          (93d313c31f7ad9ea2b75f26075413​c7c) C:\WINDOWS\system32\drivers\Se​rial.sys
 18:44:14.0390 17024 Serial - ok
 18:44:14.0437 17024 Sfloppy         (8e6b8c671615d126fdc553d1e2de5​562) C:\WINDOWS\system32\drivers\Sf​loppy.sys
 18:44:14.0437 17024 Sfloppy - ok
 18:44:14.0484 17024 Simbad - ok
 18:44:14.0531 17024 SLIP            (866d538ebe33709a5c9f5c62b73b7​d14) C:\WINDOWS\system32\DRIVERS\SL​IP.sys
 18:44:14.0531 17024 SLIP - ok
 18:44:14.0578 17024 Sparrow - ok
 18:44:14.0765 17024 splitter        (ab8b92451ecb048a4d1de7c3ffcb4​a9f) C:\WINDOWS\system32\drivers\sp​litter.sys
 18:44:14.0765 17024 splitter - ok
 18:44:14.0812 17024 sr              (39626e6dc1fb39434ec40c42722b6​60a) C:\WINDOWS\system32\DRIVERS\sr​.sys
 18:44:14.0812 17024 sr - ok
 18:44:14.0890 17024 Srv             (47ddfc2f003f7f9f0592c6874962a​2e7) C:\WINDOWS\system32\DRIVERS\sr​v.sys
 18:44:14.0921 17024 Srv - ok
 18:44:15.0000 17024 ssadbus         (64e44acd8c238fcbbb78f0ba4bdc4​b05) C:\WINDOWS\system32\DRIVERS\ss​adbus.sys
 18:44:15.0000 17024 ssadbus - ok
 18:44:15.0046 17024 ssadmdfl        (bb2c84a15c765da89fd832b0e73f2​6ce) C:\WINDOWS\system32\DRIVERS\ss​admdfl.sys
 18:44:15.0046 17024 ssadmdfl - ok
 18:44:15.0203 17024 ssadmdm         (6d0d132ddc6f43eda00dced6d8b1c​a31) C:\WINDOWS\system32\DRIVERS\ss​admdm.sys
 18:44:15.0203 17024 ssadmdm - ok
 18:44:15.0406 17024 streamip        (77813007ba6265c4b6098187e6ed7​9d2) C:\WINDOWS\system32\DRIVERS\St​reamIP.sys
 18:44:15.0406 17024 streamip - ok
 18:44:15.0531 17024 swenum          (3941d127aef12e93addf6fe6ee027​e0f) C:\WINDOWS\system32\DRIVERS\sw​enum.sys
 18:44:15.0531 17024 swenum - ok
 18:44:15.0578 17024 swmidi          (8ce882bcc6cf8a62f2b2323d95cb3​d01) C:\WINDOWS\system32\drivers\sw​midi.sys
 18:44:15.0578 17024 swmidi - ok
 18:44:15.0625 17024 symc810 - ok
 18:44:15.0671 17024 symc8xx - ok
 18:44:15.0703 17024 sym_hi - ok
 18:44:15.0750 17024 sym_u3 - ok
 18:44:15.0796 17024 sysaudio        (8b83f3ed0f1688b4958f77cd6d2bf​290) C:\WINDOWS\system32\drivers\sy​saudio.sys
 18:44:15.0812 17024 sysaudio - ok
 18:44:15.0968 17024 Tcpip           (9aefa14bd6b182d61e3119fa5f436​d3d) C:\WINDOWS\system32\DRIVERS\tc​pip.sys
 18:44:15.0984 17024 Tcpip - ok
 18:44:16.0093 17024 TDPIPE          (6471a66807f5e104e4885f5b67349​397) C:\WINDOWS\system32\drivers\TD​PIPE.sys
 18:44:16.0109 17024 TDPIPE - ok
 18:44:16.0203 17024 TDTCP           (c56b6d0402371cf3700eb322ef3aa​f61) C:\WINDOWS\system32\drivers\TD​TCP.sys
 18:44:16.0218 17024 TDTCP - ok
 18:44:16.0281 17024 TermDD          (88155247177638048422893737429​d9e) C:\WINDOWS\system32\DRIVERS\te​rmdd.sys
 18:44:16.0281 17024 TermDD - ok
 18:44:16.0437 17024 TosIde - ok
 18:44:16.0546 17024 Udfs            (5787b80c2e3c5e2f56c2a233d91fa​2c9) C:\WINDOWS\system32\drivers\Ud​fs.sys
 18:44:16.0546 17024 Udfs - ok
 18:44:16.0609 17024 ultra - ok
 18:44:16.0687 17024 Update          (402ddc88356b1bac0ee3dd1580c76​a31) C:\WINDOWS\system32\DRIVERS\up​date.sys
 18:44:16.0718 17024 Update - ok
 18:44:16.0875 17024 USBAAPL         (83cafcb53201bbac04d822f32438e​244) C:\WINDOWS\system32\Drivers\us​baapl.sys
 18:44:16.0890 17024 USBAAPL - ok
 18:44:17.0000 17024 usbccgp         (173f317ce0db8e21322e71b7e60a2​7e8) C:\WINDOWS\system32\DRIVERS\us​bccgp.sys
 18:44:17.0000 17024 usbccgp - ok
 18:44:17.0109 17024 usbehci         (65dcf09d0e37d4c6b11b5b0b76d47​0a7) C:\WINDOWS\system32\DRIVERS\us​behci.sys
 18:44:17.0109 17024 usbehci - ok
 18:44:17.0234 17024 usbhub          (1ab3cdde553b6e064d2e754efe202​85c) C:\WINDOWS\system32\DRIVERS\us​bhub.sys
 18:44:17.0234 17024 usbhub - ok
 18:44:17.0312 17024 usbohci         (0daecce65366ea32b162f85f07c67​53b) C:\WINDOWS\system32\DRIVERS\us​bohci.sys
 18:44:17.0312 17024 usbohci - ok
 18:44:17.0656 17024 usbprint        (a717c8721046828520c9edf31288f​c00) C:\WINDOWS\system32\DRIVERS\us​bprint.sys
 18:44:17.0734 17024 usbprint - ok
 18:44:17.0937 17024 usbscan         (a0b8cf9deb1184fbdd20784a58fa7​5d4) C:\WINDOWS\system32\DRIVERS\us​bscan.sys
 18:44:17.0937 17024 usbscan - ok
 18:44:18.0046 17024 usbstor         (a32426d9b14a089eaa1d922e0c580​1a9) C:\WINDOWS\system32\DRIVERS\US​BSTOR.SYS
 18:44:18.0046 17024 usbstor - ok
 18:44:18.0156 17024 usbuhci         (26496f9dee2d787fc3e61ad54821f​fe6) C:\WINDOWS\system32\DRIVERS\us​buhci.sys
 18:44:18.0156 17024 usbuhci - ok
 18:44:18.0265 17024 VgaSave         (0d3a8fafceacd8b7625cd549757a7​df1) C:\WINDOWS\System32\drivers\vg​a.sys
 18:44:18.0265 17024 VgaSave - ok
 18:44:18.0375 17024 ViaIde          (3b3efcda263b8ac14fdf9cbdd0791​b2e) C:\WINDOWS\system32\DRIVERS\vi​aide.sys
 18:44:18.0390 17024 ViaIde - ok
 18:44:18.0468 17024 VolSnap         (46de1126684369bace4849e4fc8c4​3ca) C:\WINDOWS\system32\drivers\Vo​lSnap.sys
 18:44:18.0468 17024 VolSnap - ok
 18:44:18.0546 17024 Wanarp          (e20b95baedb550f32dd489265c1da​1f6) C:\WINDOWS\system32\DRIVERS\wa​narp.sys
 18:44:18.0562 17024 Wanarp - ok
 18:44:18.0671 17024 Wdf01000        (d918617b46457b9ac28027722e30f​647) C:\WINDOWS\system32\Drivers\wd​f01000.sys
 18:44:18.0687 17024 Wdf01000 - ok
 18:44:18.0765 17024 WDICA - ok
 18:44:18.0859 17024 wdmaud          (6768acf64b18196494413695f0c3a​00f) C:\WINDOWS\system32\drivers\wd​maud.sys
 18:44:18.0875 17024 wdmaud - ok
 18:44:19.0046 17024 WpdUsb          (cf4def1bf66f06964dc0d91844239​104) C:\WINDOWS\system32\DRIVERS\wp​dusb.sys
 18:44:19.0046 17024 WpdUsb - ok
 18:44:19.0187 17024 WS2IFSL         (6abe6e225adb5a751622a9cc3bc19​ce8) C:\WINDOWS\System32\drivers\ws​2ifsl.sys
 18:44:19.0187 17024 WS2IFSL - ok
 18:44:19.0281 17024 WSTCODEC        (c98b39829c2bbd34e454150633c62​c78) C:\WINDOWS\system32\DRIVERS\WS​TCODEC.SYS
 18:44:19.0296 17024 WSTCODEC - ok
 18:44:19.0515 17024 WudfPf          (f15feafffbb3644ccc80c5da584e6​311) C:\WINDOWS\system32\DRIVERS\Wu​dfPf.sys
 18:44:19.0515 17024 WudfPf - ok
 18:44:19.0609 17024 WudfRd          (28b524262bce6de1f7ef9f510ba39​85b) C:\WINDOWS\system32\DRIVERS\wu​dfrd.sys
 18:44:19.0609 17024 WudfRd - ok
 18:44:19.0734 17024 zumbus - ok
 18:44:19.0796 17024 MBR (0x1B8)     (0ac6d996bce152aed9600e6d6b797​e2e) \Device\Harddisk0\DR0
 18:44:19.0859 17024 \Device\Harddisk0\DR0 - ok
 18:44:19.0859 17024 Boot (0x1200)   (224ec622b9e97f60c8e991310c717​9e4) \Device\Harddisk0\DR0\Partitio​n0
 18:44:19.0875 17024 \Device\Harddisk0\DR0\Partitio​n0 - ok
 18:44:19.0875 17024 Boot (0x1200)   (3ce95a1a70d599da1ddc0442250e2​155) \Device\Harddisk0\DR0\Partitio​n1
 18:44:19.0875 17024 \Device\Harddisk0\DR0\Partitio​n1 - ok
 18:44:19.0875 17024 ==============================​==============================
 18:44:19.0875 17024 Scan finished
 18:44:19.0875 17024 ==============================​==============================
 18:44:19.0906 14732 Detected object count: 0
 18:44:19.0906 14732 Actual detected object count: 0

Imagine ...
Profil : Equipe sécurité
kmisol
Célèbre sur tout le forum (de 30 000 à 99 999 messages postés)
  1. Posté le 31/01/2012 à 23:58:49  
  1. answer
  1. Prévenir les modérateurs en cas d'abus
 
...

 OK.

 Télécharge, installe et mets à jour Malwarebytes Anti-malware.

 Puis, exécute un scan complet.

 Une fois le scan achevé, si MalwareByte's a détecté des infections, clique sur Afficher les résultats, puis sur Supprimer la sélection.

 Poste le rapport.

vieux motard que jamais
remi-fasol
Sur la bonne voie (de 100 à 499 messages postés)
  1. Posté le 01/02/2012 à 07:05:57  
  1. answer
  1. Prévenir les modérateurs en cas d'abus
 
J'avais deja fait un scanne avec malwarebytes,mais mon ordi s'est bloque avec un message du genre boot ,reboot,je te renvoie le message exact ce soir.

Imagine ...
Profil : Equipe sécurité
kmisol
Célèbre sur tout le forum (de 30 000 à 99 999 messages postés)
  1. Posté le 01/02/2012 à 08:38:46  
  1. answer
  1. Prévenir les modérateurs en cas d'abus
 
Hello,

 OK.

 Désinstalle Malwarebytes' Anti-Malware en utilisant le menu Ajout/Suppres… des Progr. depuis le Panneau de Configuration.

 Redémarre le PC (très important) !

 Télécharge MBAM Cleaner sur le bureau et lance-le.

 Il te sera demandé de redémarrer le PC lorsque l'outil aura terminé
 son travail (accepte).

 Après redémarrage, réinstalle la dernière version de MBAM.

 Note: Si tu utilises la version payante de Malwarebytes, il te faudra réactiver le programme en utilisant la licence qui t'a été expédiée par e-mail.

vieux motard que jamais
remi-fasol
Sur la bonne voie (de 100 à 499 messages postés)
  1. Posté le 01/02/2012 à 21:39:55  
  1. answer
  1. Prévenir les modérateurs en cas d'abus
 
Désole je tourne en rond pour désinstaller malwarebytes ,on me demande de rebooter mon ordi a chaque fois. :??:

vieux motard que jamais
remi-fasol
Sur la bonne voie (de 100 à 499 messages postés)
  1. Posté le 03/02/2012 à 19:51:42  
  1. answer
  1. Prévenir les modérateurs en cas d'abus
 
pour télécharger MBAM cleaner comme tu me le préconise,on me demande de redémarrer mon ordi pour désinstaller malwarebytes.Mais c'est pareil a chaque téléchargement de MBAM.

Imagine ...
Profil : Equipe sécurité
kmisol
Célèbre sur tout le forum (de 30 000 à 99 999 messages postés)
  1. Posté le 03/02/2012 à 21:53:26  
  1. answer
  1. Prévenir les modérateurs en cas d'abus
 
Hello,

 Rends-toi sur cette page

 Clique sur "Choose File"

 Vas sur ton disque dur, chercher ce fichier à cet emplacement :

 



C:\WINDOWS\system32\bgsvcgen.exe




 Clique ensuite sur le bouton "Scan It".

 http://lh3.ggpht.com/-24kGezWm​wy0/Tw8mc_WItqI/AAAAAAAABu4/G8​9d42GlJVQ/mazio.png

 Patiente le temps de l'analyse qui dépend de la taille du fichier.

 http://lh6.ggpht.com/-zhXcSsbu​VGA/Tw8nHXKxD8I/AAAAAAAABvo/Wn​Wx3rVFcQQ/mazio.png

 Une fois celle-ci terminée, apparaît le rang de détection (Detection Ratio) :

 http://lh5.ggpht.com/-pix3Yg33​ETE/Tw8nArP73BI/AAAAAAAABvY/6t​FGw2tY3Uw/mazio.png

 Communique-le dans ta prochaine réponse sur le forum et donne, en même temps le lien de la page VirusTotal en le copiant dans la barre d'adresse et en le collant dans ta prochaine réponse :

 http://lh6.ggpht.com/-Rs-4bJW7​8JE/Tw8pdfe9FmI/AAAAAAAABv4/_g​QAjDWBHO8/mazio.png


vieux motard que jamais
remi-fasol
Sur la bonne voie (de 100 à 499 messages postés)
  1. Posté le 03/02/2012 à 22:58:52  
  1. answer
  1. Prévenir les modérateurs en cas d'abus
 
This file was already analysed by VirusTotal on 2012-01-29 14:24:12.

 Detection ratio: 0/43

 You can take a look at the last analysis or analyse it again now.
 https://www.virustotal.com/
 pour l'adresse je ne suis pas sur que se soit celle que tu voulais.

vieux motard que jamais
remi-fasol
Sur la bonne voie (de 100 à 499 messages postés)
  1. Posté le 03/02/2012 à 23:00:41  
  1. answer
  1. Prévenir les modérateurs en cas d'abus
 
https://www.virustotal.com/fil [...] /analysis/
 Je crois que je l'ai trouvee.

Imagine ...
Profil : Equipe sécurité
kmisol
Célèbre sur tout le forum (de 30 000 à 99 999 messages postés)
  1. Posté le 04/02/2012 à 22:38:28  
  1. answer
  1. Prévenir les modérateurs en cas d'abus
 
Hello,

 Le résultat est bon : il n'y a pas d'infection.

vieux motard que jamais
remi-fasol
Sur la bonne voie (de 100 à 499 messages postés)
  1. Posté le 05/02/2012 à 17:57:44  
  1. answer
  1. Prévenir les modérateurs en cas d'abus
 
j'ai refait un scanne avec "system explorer" et le resultat est pareil,le fichier "bgsvcgen.exe est toujours treath.Est-ce que cela veut dire infecte

Imagine ...
Profil : Equipe sécurité
kmisol
Célèbre sur tout le forum (de 30 000 à 99 999 messages postés)
  1. Posté le 05/02/2012 à 19:24:52  
  1. answer
  1. Prévenir les modérateurs en cas d'abus
 
Hello,

 Les scans effectués avec VirusTotal ne révèlent pas d'infection !
 (ce fichier a quand même été soumis à 40 scans différents)

 Même si cela semble "menaçant".

 Est-ce que cet outil (System Explorer) te donne l'emplacement du fichier infecté ?

 As-tu cela comme info ?

 C:\Windows\system32\bgsvcgen.e​xe

 Peux-tu poster le rapport ?

vieux motard que jamais
remi-fasol
Sur la bonne voie (de 100 à 499 messages postés)
  1. Posté le 06/02/2012 à 21:40:19  
  1. answer
  1. Prévenir les modérateurs en cas d'abus
 
  voila le scanne.
 Home

News

Download

Awards

Help

Forum

Support

File Database

 System Explorer Logo
 System Explorer Scan Results
 Overview
 Scan Time: 2012-02-06 21:30:18
 Operating System: Windows XP
 Scanned Files: 311
 RatingThreat Files: 1
 RatingSuspicious Files: 0
 RatingSafe Files: 307
 RatingUnknown Files: 3
 Scanned Files
 Directory Filename Occurence Rating  
 %sysdir%\ bgsvcgen.exe High Rating Details
 %allusers_appdata%\real\realpl​ayer\browserrecordplugin\chrom​e\hoo... rpchrome14browserrecordhelper.​dll High Rating Details
 %allusers_appdata%\real\realpl​ayer\browserrecordplugin\commo​n\ rpcommon15browserrecordplugin.​dll High Rating Details
 %allusers_appdata%\real\realpl​ayer\browserrecordplugin\firef​ox\ex... nprpffbrowserrecordext.dll High Rating Details
 %allusers_appdata%\real\realpl​ayer\browserrecordplugin\thins​hims\ rpnpshimswf.dll High Rating Details
 %commonfiles%\adobe\acrobat\ac​tivex\ PDFShell.dll High Rating Details
 %commonfiles%\adobe\acrobat\ac​tivex\ PDFShell.FRA High Rating Details
 %commonfiles%\apple\apple application support\ AppleVersions.dll High Rating Details
 %commonfiles%\apple\apple application support\ ASL.dll High Rating Details
 %commonfiles%\apple\apple application support\ CFNetwork.dll High Rating Details
 %commonfiles%\apple\apple application support\ CoreFoundation.dll High Rating Details
 %commonfiles%\apple\apple application support\ icudt46.dll High Rating Details
 %commonfiles%\apple\apple application support\ libdispatch.dll High Rating Details
 %commonfiles%\apple\apple application support\ libicuin.dll High Rating Details
 %commonfiles%\apple\apple application support\ libicuuc.dll High Rating Details
 %commonfiles%\apple\apple application support\ libxml2.dll High Rating Details
 %commonfiles%\apple\apple application support\ objc.dll High Rating Details
 %commonfiles%\apple\apple application support\ pthreadVC2.dll High Rating Details
 %commonfiles%\apple\apple application support\ SQLite3.dll High Rating Details
 %commonfiles%\apple\apple application support\ YSCrashDump.dll High Rating Details
 %commonfiles%\apple\apple application support\ zlib1.dll High Rating Details
 %commonfiles%\apple\mobile device support\ AppleMobileDeviceService.exe High Rating Details
 %commonfiles%\apple\mobile device support\ AppleMobileDeviceService_main.​dll High Rating Details
 %commonfiles%\apple\mobile device support\ iTunesMobileDevice.dll High Rating Details
 %commonfiles%\apple\mobile device support\ MobileDevice.dll High Rating Details
 %commonfiles%\g data\avkproxy\ AVKProxy.exe Medium Rating Details
 %commonfiles%\g data\gdscan\ GDScan.exe Medium Rating Details
 %commonfiles%\installshield\up​dateservice\ issch.exe High Rating Details
 %commonfiles%\java\java update\ jusched.exe High Rating Details
 %programfiles%\bonjour\ mdnsNSP.dll High Rating Details
 %programfiles%\bonjour\ mDNSResponder.exe High Rating Details
 %programfiles%\g data\antivirus\avktray\ AVKTray.exe High Rating Details
 %programfiles%\g data\antivirus\avk\ AVKService.exe Medium Rating Details
 %programfiles%\g data\antivirus\avk\ AVKWCtl.exe High Rating Details
 %programfiles%\hp\digital imaging\bin\ hphtra08.dll Medium Rating Details
 %programfiles%\hp\digital imaging\bin\ hpocxi08.dll High Rating Details
 %programfiles%\hp\digital imaging\bin\ hpoddcomm09.dll High Rating Details
 %programfiles%\hp\digital imaging\bin\ hpodio08.dll High Rating Details
 %programfiles%\hp\digital imaging\bin\ hpodvd09.dll High Rating Details
 %programfiles%\hp\digital imaging\bin\ hpotra08.dll Medium Rating Details
 %programfiles%\hp\digital imaging\bin\ hpotra08.rsc Medium Rating Details
 %programfiles%\hp\digital imaging\bin\ hpotradd.dll High Rating Details
 %programfiles%\hp\digital imaging\bin\ hpqcob08.dll High Rating Details
 %programfiles%\hp\digital imaging\bin\ hpqcxm08.dll High Rating Details
 %programfiles%\hp\digital imaging\bin\ hpqmfc09.dll High Rating Details
 %programfiles%\hp\digital imaging\bin\ hpqmif08.dll Medium Rating Details
 %programfiles%\hp\digital imaging\bin\ hpqsem08.rsc Medium Rating Details
 %programfiles%\hp\digital imaging\bin\ hpqSTE08.exe High Rating Details
 %programfiles%\hp\digital imaging\bin\ hpqSTE08.rsc Medium Rating Details
 %programfiles%\hp\digital imaging\bin\ hpqsti08.dll High Rating Details
 %programfiles%\hp\digital imaging\bin\ hpqstp08.dll High Rating Details
 %programfiles%\hp\digital imaging\bin\ hpqtao08.dll High Rating Details
 %programfiles%\hp\digital imaging\bin\ hpqtap08.dll High Rating Details
 %programfiles%\hp\digital imaging\bin\ hpqtra08.exe High Rating Details
 %programfiles%\hp\digital imaging\bin\ hpqtra08.rsc Medium Rating Details
 %programfiles%\hp\digital imaging\bin\ hpquio08.dll High Rating Details
 %programfiles%\hp\digital imaging\bin\ HpqUtil.dll Medium Rating Details
 %programfiles%\hp\digital imaging\unload\ hpiCamTA.dll Medium Rating Details
 %programfiles%\hp\digital imaging\unload\ HpqUnRes.dll Medium Rating Details
 %programfiles%\hp\hp software update\ HPWuSchd2.exe High Rating Details
 %programfiles%\ipod\bin\ iPodService.exe High Rating Details
 %programfiles%\ipod\bin\ipodse​rvice.resources\fr.lproj\ iPodServiceLocalized.DLL High Rating Details
 %programfiles%\ipod\bin\ipodse​rvice.resources\ iPodService.DLL High Rating Details
 %programfiles%\itunes\ iTunesHelper.dll High Rating Details
 %programfiles%\itunes\ iTunesHelper.exe High Rating Details
 %programfiles%\itunes\ituneshe​lper.resources\fr.lproj\ iTunesHelperLocalized.DLL High Rating Details
 %programfiles%\itunes\ituneshe​lper.resources\ iTunesHelper.DLL High Rating Details
 %programfiles%\java\jre6\bin\ jqs.exe High Rating Details
 %programfiles%\java\jre6\bin\ MSVCR71.dll High Rating Details
 %programfiles%\mainconcept\ mceesmpeg.ax Medium Rating Details
 %programfiles%\mainconcept\ mcempgaout.dll Medium Rating Details
 %programfiles%\mainconcept\ mcempgmux.dll Medium Rating Details
 %programfiles%\mainconcept\ mcempgvout.004 Medium Rating Details
 %programfiles%\mainconcept\ mcempgvout.dll Medium Rating Details
 %programfiles%\mozilla firefox\components\ browsercomps.dll High Rating Details
 %programfiles%\mozilla firefox\ firefox.exe High Rating Details
 %programfiles%\mozilla firefox\ freebl3.dll High Rating Details
 %programfiles%\mozilla firefox\ mozalloc.dll High Rating Details
 %programfiles%\mozilla firefox\ mozjs.dll High Rating Details
 %programfiles%\mozilla firefox\ mozsqlite3.dll High Rating Details
 %programfiles%\mozilla firefox\ mozutils.dll High Rating Details
 %programfiles%\mozilla firefox\ nspr4.dll High Rating Details
 %programfiles%\mozilla firefox\ nss3.dll High Rating Details
 %programfiles%\mozilla firefox\ nssckbi.dll High Rating Details
 %programfiles%\mozilla firefox\ nssdbm3.dll High Rating Details
 %programfiles%\mozilla firefox\ nssutil3.dll High Rating Details
 %programfiles%\mozilla firefox\ plc4.dll High Rating Details
 %programfiles%\mozilla firefox\ plds4.dll High Rating Details
 %programfiles%\mozilla firefox\ plugin-container.exe High Rating Details
 %programfiles%\mozilla firefox\ smime3.dll High Rating Details
 %programfiles%\mozilla firefox\ softokn3.dll High Rating Details
 %programfiles%\mozilla firefox\ ssl3.dll High Rating Details
 %programfiles%\mozilla firefox\ xpcom.dll High Rating Details
 %programfiles%\mozilla firefox\ xul.dll High Rating Details
 %programfiles%\openoffice.org 3\basis\program\shlxthdl\ shlxthdl.dll High Rating Details
 %programfiles%\openoffice.org 3\program\ aggmi.dll Medium Rating Details
 %programfiles%\openoffice.org 3\program\ avmediami.dll Medium Rating Details
 %programfiles%\openoffice.org 3\program\ basegfxmi.dll Medium Rating Details
 %programfiles%\openoffice.org 3\program\ canvastoolsmi.dll Medium Rating Details
 %programfiles%\openoffice.org 3\program\ comphelp4MSC.dll Medium Rating Details
 %programfiles%\openoffice.org 3\program\ configmgr.uno.dll Medium Rating Details
 %programfiles%\openoffice.org 3\program\ cppcanvasmi.dll Medium Rating Details
 %programfiles%\openoffice.org 3\program\ deploymentmiscmi.dll Medium Rating Details
 %programfiles%\openoffice.org 3\program\ drawinglayermi.dll Medium Rating Details
 %programfiles%\openoffice.org 3\program\ editengmi.dll Medium Rating Details
 %programfiles%\openoffice.org 3\program\ emsermi.dll Medium Rating Details
 %programfiles%\openoffice.org 3\program\ fwemi.dll Medium Rating Details
 %programfiles%\openoffice.org 3\program\ fwimi.dll Medium Rating Details
 %programfiles%\openoffice.org 3\program\ fwkmi.dll Medium Rating Details
 %programfiles%\openoffice.org 3\program\ i18nisolang1MSC.dll Medium Rating Details
 %programfiles%\openoffice.org 3\program\ i18npapermi.dll Medium Rating Details
 %programfiles%\openoffice.org 3\program\ i18npool.uno.dll Medium Rating Details
 %programfiles%\openoffice.org 3\program\ i18nutilMSC.dll Medium Rating Details
 %programfiles%\openoffice.org 3\program\ icudt40.dll Medium Rating Details
 %programfiles%\openoffice.org 3\program\ icuin40.dll Medium Rating Details
 %programfiles%\openoffice.org 3\program\ icuuc40.dll Medium Rating Details
 %programfiles%\openoffice.org 3\program\ libdb47.dll Medium Rating Details
 %programfiles%\openoffice.org 3\program\ libxml2.dll Medium Rating Details
 %programfiles%\openoffice.org 3\program\ lngmi.dll Medium Rating Details
 %programfiles%\openoffice.org 3\program\ localebe1.uno.dll Medium Rating Details
 %programfiles%\openoffice.org 3\program\ logmi.dll Medium Rating Details
 %programfiles%\openoffice.org 3\program\ oleautobridge.uno.dll Medium Rating Details
 %programfiles%\openoffice.org 3\program\ oooimprovecoremi.dll Medium Rating Details
 %programfiles%\openoffice.org 3\program\ oooimprovementmi.dll Medium Rating Details
 %programfiles%\openoffice.org 3\program\ saxmi.dll High Rating Details
 %programfiles%\openoffice.org 3\program\ sbmi.dll Medium Rating Details
 %programfiles%\openoffice.org 3\program\ sfxmi.dll Medium Rating Details
 %programfiles%\openoffice.org 3\program\ soffice.bin High Rating Details
 %programfiles%\openoffice.org 3\program\ soffice.exe High Rating Details
 %programfiles%\openoffice.org 3\program\ sofficeapp.dll Medium Rating Details
 %programfiles%\openoffice.org 3\program\ sotmi.dll Medium Rating Details
 %programfiles%\openoffice.org 3\program\ stsmi.DLL Medium Rating Details
 %programfiles%\openoffice.org 3\program\ svlmi.dll Medium Rating Details
 %programfiles%\openoffice.org 3\program\ svtmi.dll Medium Rating Details
 %programfiles%\openoffice.org 3\program\ svxcoremi.dll Medium Rating Details
 %programfiles%\openoffice.org 3\program\ tkmi.dll Medium Rating Details
 %programfiles%\openoffice.org 3\program\ tlmi.dll Medium Rating Details
 %programfiles%\openoffice.org 3\program\ ucb1.dll Medium Rating Details
 %programfiles%\openoffice.org 3\program\ ucbhelper4MSC.dll Medium Rating Details
 %programfiles%\openoffice.org 3\program\ ucpfile1.dll Medium Rating Details
 %programfiles%\openoffice.org 3\program\ utlmi.dll Medium Rating Details
 %programfiles%\openoffice.org 3\program\ vclmi.dll Medium Rating Details
 %programfiles%\openoffice.org 3\program\ vos3MSC.dll Medium Rating Details
 %programfiles%\openoffice.org 3\program\ xcrmi.dll Medium Rating Details
 %programfiles%\openoffice.org 3\program\ xomi.dll Medium Rating Details
 %programfiles%\openoffice.org 3\ure\bin\ bootstrap.uno.dll Medium Rating Details
 %programfiles%\openoffice.org 3\ure\bin\ cppu3.dll Medium Rating Details
 %programfiles%\openoffice.org 3\ure\bin\ cppuhelper3MSC.dll Medium Rating Details
 %programfiles%\openoffice.org 3\ure\bin\ jvmfwk3.dll Medium Rating Details
 %programfiles%\openoffice.org 3\ure\bin\ msci_uno.dll Medium Rating Details
 %programfiles%\openoffice.org 3\ure\bin\ reg3.dll Medium Rating Details
 %programfiles%\openoffice.org 3\ure\bin\ sal3.dll Medium Rating Details
 %programfiles%\openoffice.org 3\ure\bin\ salhelper3MSC.dll Medium Rating Details
 %programfiles%\openoffice.org 3\ure\bin\ stlport_vc7145.dll Medium Rating Details
 %programfiles%\openoffice.org 3\ure\bin\ stocservices.uno.dll Medium Rating Details
 %programfiles%\openoffice.org 3\ure\bin\ store3.dll Medium Rating Details
 %programfiles%\openoffice.org 3\ure\bin\ uwinapi.dll Medium Rating Details
 %programfiles%\real\realplayer​\update\ realsched.exe High Rating Details
 %programfiles%\sfr\kit\ 9props.exe Medium Rating Details
 %programfiles%\system explorer\ SystemExplorer.exe High Rating Details
 %programfiles%\wakfu\ cg.dll Low Rating Details
 %programfiles%\wakfu\ cgGL.dll Low Rating Details
 %programfiles%\wakfu\jre\bin\ awt.dll Medium Rating Details
 %programfiles%\wakfu\jre\bin\ fontmanager.dll Medium Rating Details
 %programfiles%\wakfu\jre\bin\ hpi.dll Medium Rating Details
 %programfiles%\wakfu\jre\bin\ java.dll Medium Rating Details
 %programfiles%\wakfu\jre\bin\ jawt.dll Medium Rating Details
 %programfiles%\wakfu\jre\bin\ mlib_image.dll Medium Rating Details
 %programfiles%\wakfu\jre\bin\ net.dll Medium Rating Details
 %programfiles%\wakfu\jre\bin\ nio.dll Medium Rating Details
 %programfiles%\wakfu\jre\bin\s​erver\ jvm.dll Medium Rating Details
 %programfiles%\wakfu\jre\bin\ splashscreen.dll Low Rating Details
 %programfiles%\wakfu\jre\bin\ verify.dll Medium Rating Details
 %programfiles%\wakfu\jre\bin\ zip.dll Medium Rating Details
 %programfiles%\wakfu\ luajava-1.1.dll Low Rating Details
 %programfiles%\wakfu\ lwjgl.dll Low Rating Details
 %programfiles%\wakfu\ UpLauncher.exe Low Rating Details
 %programfiles%\wakfu\ Wakfu.exe Low Rating Details
 %programfiles%\windows media player\ WMPNetwk.exe High Rating Details
 %programfiles%\windows media player\ WMPNSCFG.exe High Rating Details
 %programfiles%\windows media player\ wmpnssci.dll High Rating Details
 %sysdir%\ alg.exe High Rating Details
 %sysdir%\ Ati2evxx.exe High Rating Details
 %sysdir%\ csrss.exe High Rating Details
 %sysdir%\ dllhost.exe High Rating Details
 %sysdir%\drivers\ 3xHybrid.sys Medium Rating Details
 %sysdir%\drivers\ acedrv11.sys High Rating Details
 %sysdir%\drivers\ ACPI.sys High Rating Details
 %sysdir%\drivers\ Afc.sys High Rating Details
 %sysdir%\drivers\ afd.sys High Rating Details
 %sysdir%\drivers\ aracpi.sys Medium Rating Details
 %sysdir%\drivers\ arhidfltr.sys Medium Rating Details
 %sysdir%\drivers\ arkbcfltr.sys Medium Rating Details
 %sysdir%\drivers\ armoucfltr.sys Medium Rating Details
 %sysdir%\drivers\ arp1394.sys High Rating Details
 %sysdir%\drivers\ arpolicy.sys Medium Rating Details
 %sysdir%\drivers\ atapi.sys High Rating Details
 %sysdir%\drivers\ ati2mtag.sys High Rating Details
 %sysdir%\drivers\ atksgt.sys High Rating Details
 %sysdir%\drivers\ audstub.sys High Rating Details
 %sysdir%\drivers\ bb-run.sys High Rating Details
 %sysdir%\drivers\ cdrom.sys High Rating Details
 %sysdir%\drivers\ disk.sys High Rating Details
 %sysdir%\drivers\ dmio.sys High Rating Details
 %sysdir%\drivers\ dmload.sys High Rating Details
 %sysdir%\drivers\ fdc.sys High Rating Details
 %sysdir%\drivers\ fltMgr.sys High Rating Details
 %sysdir%\drivers\ ftdisk.sys High Rating Details
 %sysdir%\drivers\ ftsata2.sys High Rating Details
 %sysdir%\drivers\ GDBehave.sys High Rating Details
 %sysdir%\drivers\ GDTdiIcpt.sys High Rating Details
 %sysdir%\drivers\ GEARAspiWDM.sys High Rating Details
 %sysdir%\drivers\ GRD.sys Medium Rating Details
 %sysdir%\drivers\ HDAudBus.sys High Rating Details
 %sysdir%\drivers\ hidusb.sys High Rating Details
 %sysdir%\drivers\ HookCentre.sys High Rating Details
 %sysdir%\drivers\ HTTP.sys High Rating Details
 %sysdir%\drivers\ i8042prt.sys High Rating Details
 %sysdir%\drivers\ iastor.sys High Rating Details
 %sysdir%\drivers\ imapi.sys High Rating Details
 %sysdir%\drivers\ intelide.sys High Rating Details
 %sysdir%\drivers\ intelppm.sys High Rating Details
 %sysdir%\drivers\ ipnat.sys High Rating Details
 %sysdir%\drivers\ ipsec.sys High Rating Details
 %sysdir%\drivers\ isapnp.sys High Rating Details
 %sysdir%\drivers\ kbdclass.sys High Rating Details
 %sysdir%\drivers\ lirsgt.sys High Rating Details
 %sysdir%\drivers\ MiniIcpt.sys High Rating Details
 %sysdir%\drivers\ mouclass.sys High Rating Details
 %sysdir%\drivers\ mouhid.sys High Rating Details
 %sysdir%\drivers\ mrxdav.sys High Rating Details
 %sysdir%\drivers\ mrxsmb.sys High Rating Details
 %sysdir%\drivers\ msgpc.sys High Rating Details
 %sysdir%\drivers\ MSPQM.sys High Rating Details
 %sysdir%\drivers\ mssmbios.sys High Rating Details
 %sysdir%\drivers\ ndistapi.sys High Rating Details
 %sysdir%\drivers\ ndisuio.sys High Rating Details
 %sysdir%\drivers\ ndiswan.sys High Rating Details
 %sysdir%\drivers\ netbios.sys High Rating Details
 %sysdir%\drivers\ netbt.sys High Rating Details
 %sysdir%\drivers\ nic1394.sys High Rating Details
 %sysdir%\drivers\ ohci1394.sys High Rating Details
 %sysdir%\drivers\ parport.sys High Rating Details
 %sysdir%\drivers\ pci.sys High Rating Details
 %sysdir%\drivers\ pciide.sys High Rating Details
 %sysdir%\drivers\ PS2.sys Medium Rating Details
 %sysdir%\drivers\ psched.sys High Rating Details
 %sysdir%\drivers\ ptilink.sys High Rating Details
 %sysdir%\drivers\ PxHelp20.sys High Rating Details
 %sysdir%\drivers\ rasacd.sys High Rating Details
 %sysdir%\drivers\ rasl2tp.sys High Rating Details
 %sysdir%\drivers\ raspppoe.sys High Rating Details
 %sysdir%\drivers\ raspptp.sys High Rating Details
 %sysdir%\drivers\ raspti.sys High Rating Details
 %sysdir%\drivers\ rdbss.sys High Rating Details
 %sysdir%\drivers\ RDPCDD.sys High Rating Details
 %sysdir%\drivers\ rdpdr.sys High Rating Details
 %sysdir%\drivers\ redbook.sys High Rating Details
 %sysdir%\drivers\ RtkHDAud.sys Medium Rating Details
 %sysdir%\drivers\ Rtlnicxp.sys High Rating Details
 %sysdir%\drivers\ sr.sys High Rating Details
 %sysdir%\drivers\ srv.sys High Rating Details
 %sysdir%\drivers\ swenum.sys High Rating Details
 %sysdir%\drivers\ sysaudio.sys High Rating Details
 %sysdir%\drivers\ tcpip.sys High Rating Details
 %sysdir%\drivers\ termdd.sys High Rating Details
 %sysdir%\drivers\ update.sys High Rating Details
 %sysdir%\drivers\ usbccgp.sys High Rating Details
 %sysdir%\drivers\ usbehci.sys High Rating Details
 %sysdir%\drivers\ usbhub.sys High Rating Details
 %sysdir%\drivers\ usbohci.sys High Rating Details
 %sysdir%\drivers\ USBSTOR.SYS High Rating Details
 %sysdir%\drivers\ vga.sys High Rating Details
 %sysdir%\drivers\ viaide.sys High Rating Details
 %sysdir%\drivers\ wanarp.sys High Rating Details
 %sysdir%\drivers\ wdmaud.sys High Rating Details
 %sysdir%\drivers\ ws2ifsl.sys High Rating Details
 %sysdir%\drivers\ WudfPf.sys High Rating Details
 %sysdir%\ lsass.exe High Rating Details
 %sysdir%\ msdtc.exe High Rating Details
 %sysdir%\ services.exe High Rating Details
 %sysdir%\ smss.exe High Rating Details
 %sysdir%\ spoolsv.exe High Rating Details
 %sysdir%\ svchost.exe High Rating Details
 %sysdir%\ winlogon.exe High Rating Details
 %systemdiskroot%\documents and settings\all users\drm\cache\ Indiv01.key Medium Rating Details
 %systemdiskroot%\hp\kbd\ aol.dll High Rating Details
 %systemdiskroot%\hp\kbd\ cfg.dll High Rating Details
 %systemdiskroot%\hp\kbd\ KBD.EXE High Rating Details
 %systemdiskroot%\hp\kbd\ led.dll High Rating Details
 %systemdiskroot%\hp\kbd\ msg.dll High Rating Details
 %systemdiskroot%\hp\kbd\ MSIKBDIF.DLL High Rating Details
 %systemdiskroot%\hp\kbd\ onl.dll Medium Rating Details
 %systemdiskroot%\hp\kbd\ osd.dll Medium Rating Details
 %systemdiskroot%\hp\kbd\ ps2.dll High Rating Details
 %systemdiskroot%\hp\kbd\ sct.dll Medium Rating Details
 %systemdiskroot%\hp\kbd\ url.dll High Rating Details
 %systemdiskroot%\hp\kbd\ USB.dll High Rating Details
 %windir%\ ARPWRMSG.EXE Medium Rating Details
 %windir%\ arservice.exe Medium Rating Details
 %windir%\ehome\ ehmsas.exe High Rating Details
 %windir%\ehome\ ehRecvr.exe High Rating Details
 %windir%\ehome\ ehSched.exe High Rating Details
 %windir%\ehome\ ehtray.exe High Rating Details
 %windir%\ehome\ mcrdsvc.exe High Rating Details
 %windir%\ Explorer.EXE High Rating Details
 %windir%\ RTHDCPL.EXE Medium Rating Details
 %windir%\system\ hpsysdrv.exe High Rating Details
 %programfiles%\wakfu\ jogl.dll Low Rating Details
 %programfiles%\wakfu\ jogl_awt.dll Low Rating Details
 %programfiles%\wakfu\ jogl_cg.dll Low Rating Details
 Privacy Policy
 Data are anonymously stored and accessible for 24 hours. If you want, you can DELETE the report immediately or make the report PERMANENT.
 © 2007-2012 Mister Group System Explorer. All Rights Reserved. Contact: admin@systemexplorer.net
 Google+ Facebook Twitter PAD

Imagine ...
Profil : Equipe sécurité
kmisol
Célèbre sur tout le forum (de 30 000 à 99 999 messages postés)
  1. Posté le 06/02/2012 à 22:55:21  
  1. answer
  1. Prévenir les modérateurs en cas d'abus
 
...

 



System Explorer Logo
 System Explorer Scan Results
 Overview
 Scan Time: 2012-02-06 21:30:18
 Operating System: Windows XP
 Scanned Files: 311
 RatingThreat Files: 1
 RatingSuspicious Files: 0
 RatingSafe Files: 307
 RatingUnknown Files: 3
 Scanned Files
 Directory Filename Occurence Rating
 %sysdir%\ bgsvcgen.exe High Rating Details
 %allusers_appdata%\real\realpl​ayer\browserrecordplugin\chrom​e\hoo... rpchrome14browserrecordhelper.​dll High Rating Details




 Je ne vois rien d'anormal ou alors quelque chose m'échappe ...

 Peut être le fait qu'il y a un espace entre le \ et bgsvcgen.exe !

 Le même scan en mode sans echec, ça donnerait quoi ?

vieux motard que jamais
remi-fasol
Sur la bonne voie (de 100 à 499 messages postés)
  1. Posté le 07/02/2012 à 08:39:58  
  1. answer
  1. Prévenir les modérateurs en cas d'abus
 
En mode sans echec le scan s'arrete et j'ai le message suivant;
 unknow error occured.

Imagine ...
Profil : Equipe sécurité
kmisol
Célèbre sur tout le forum (de 30 000 à 99 999 messages postés)
  1. Posté le 07/02/2012 à 09:07:36  
  1. answer
  1. Prévenir les modérateurs en cas d'abus
 
Salut,

 A mon avis, ce fichier n'est pas à supprimer.

 Peut-être un bug de "System Explorer" (outil dont on voit peu parler sur les forums !).

vieux motard que jamais
remi-fasol
Sur la bonne voie (de 100 à 499 messages postés)
  1. Posté le 07/02/2012 à 14:01:08  
  1. answer
  1. Prévenir les modérateurs en cas d'abus
 
Ok merci pour ta patience.

 Page :
1

Aller à :
 

Sujets relatifs
comment supprimer les restes du firewall COMODO dans le registre? [Résolu] [RESOLU] Comment se débarrasser d'un cheval de troie ?
Qu'est-ce que mc???.tmp ? [résolu]  
Plus de sujets relatifs à : "Resolu" scan avec "systeme explorer"

Les 5 sujets de discussion précédents Nombre de réponses Dernier message
MON PC EST INFECTE PAR LE VIRUS " SYSTEM CHECK" AIDEZ MOI SVP 4
Virus System Check! Help help help 7
svp comment nettoyer mon pc des virus 0
Suite à un virus Ukash... [Résolu] 12
[Résolu] Victime d'un Killer, plus rien ne marche ? 31