Virus impossible a supprimer
Fermé
san21
Messages postés
43
Date d'inscription
lundi 3 septembre 2007
Statut
Membre
Dernière intervention
2 octobre 2009
-
2 oct. 2009 à 12:14
g!rly Messages postés 18209 Date d'inscription vendredi 17 août 2007 Statut Contributeur Dernière intervention 30 novembre 2014 - 2 oct. 2009 à 14:50
g!rly Messages postés 18209 Date d'inscription vendredi 17 août 2007 Statut Contributeur Dernière intervention 30 novembre 2014 - 2 oct. 2009 à 14:50
A voir également:
- Virus impossible a supprimer
- Supprimer une page word - Guide
- Supprimer compte instagram - Guide
- Fichier impossible à supprimer - Guide
- Supprimer edge - Guide
- Supprimer bing - Guide
7 réponses
eZula
Messages postés
3392
Date d'inscription
samedi 26 avril 2008
Statut
Contributeur
Dernière intervention
8 mai 2021
392
2 oct. 2009 à 12:16
2 oct. 2009 à 12:16
Bonjour,
télécharge GenProc http://www.genproc.com/GenProc.exe
double-clique sur GenProc.exe et poste le contenu du rapport qui s'ouvre
télécharge GenProc http://www.genproc.com/GenProc.exe
double-clique sur GenProc.exe et poste le contenu du rapport qui s'ouvre
g!rly
Messages postés
18209
Date d'inscription
vendredi 17 août 2007
Statut
Contributeur
Dernière intervention
30 novembre 2014
406
2 oct. 2009 à 12:17
2 oct. 2009 à 12:17
...
san21
Messages postés
43
Date d'inscription
lundi 3 septembre 2007
Statut
Membre
Dernière intervention
2 octobre 2009
1
2 oct. 2009 à 12:29
2 oct. 2009 à 12:29
voisi le rapport
Rapport GenProc 2.633 [1] - 02/10/2009 à 12:25:31
@ Windows XP Service Pack 2 - Mode normal
@ Internet Explorer (8.0.6001.18702) [Navigateur par défaut]
# Etape 1/ Télécharge :
- CCleaner https://www.ccleaner.com/ccleaner/download (FileHippo). Ce logiciel va permettre de supprimer tous les fichiers temporaires. Lance-le et clique sur "Options", "Avancé" et décoche la case "Effacer uniquement les fichiers, du dossier Temp de Windows, plus vieux que 48 heures". Par la suite, laisse-le avec ses réglages par défaut. Ferme le programme.
- Toolbar-S&D https://77b4795d-a-62cb3a1a-s-sites.googlegroups.com/site/eric71mespages/ToolBarSD.exe?attachauth=ANoY7cpVobGk5bHnxrhQ4yaoEUDJvOYNnEGyYjgqHZz5GqZLfutR3fMFPlsC3-CGIilfupPAguYATNyua3csodN_frdMK8sSzUpit10Yac-QJCOkMqJKkbdKcP6ySs8trWPgoNVIq4TGGWCe6o0txXQv-ZueJF9vZzw3RXsGwFYIqN2lvF2LPdQzS8mE1d5kWOVOz6EMzQuE5-lClSJM869uq3oc7-t7yg%3D%3D&attredirects=3 (Team IDN) sur ton Bureau.
Redémarre en mode sans échec comme indiqué ici https://www.wekyo.com/demarrer-le-pc-en-mode-sans-echec-windows-7-et-8/ ; Choisis ta session courante *** Compaq_Propriétaire *** (pour retrouver le rapport, clique sur le raccourci "Rapport GenProc[1]" sur ton bureau).
# Etape 2/
Lance Toolbar-S&D situé sur le Bureau. Tape sur "2" puis valide en appuyant sur "Entrée". Ne ferme pas la fenêtre lors de la suppression.
# Etape 3/
Lance CCleaner : "Nettoyeur"/"lancer le nettoyage" et c'est tout.
# Etape 4/
Redémarre normalement et poste, dans la même réponse :
- Le contenu du rapport TB.txt situé dans C:\ ;
- Un nouveau rapport HijackThis ;
- Un nouveau rapport GenProc ;
Précise les difficultés que tu as eu (ce que tu n'as pas pu faire...) ainsi que l'évolution de la situation.
~~ Arguments de la procédure ~~
# Détections [1] GenProc 2.633 02/10/2009 à 12:25:34
Toolbar:le 02/10/2009 à 12:26:36 "C:\Program Files\GamesBar"
----------------------------------------------------------------------
Sites officiels GenProc : www.alt-shift-return.org et www.genproc.com
----------------------------------------------------------------------
~~ Fin à 12:27:07 ~~
Rapport GenProc 2.633 [1] - 02/10/2009 à 12:25:31
@ Windows XP Service Pack 2 - Mode normal
@ Internet Explorer (8.0.6001.18702) [Navigateur par défaut]
# Etape 1/ Télécharge :
- CCleaner https://www.ccleaner.com/ccleaner/download (FileHippo). Ce logiciel va permettre de supprimer tous les fichiers temporaires. Lance-le et clique sur "Options", "Avancé" et décoche la case "Effacer uniquement les fichiers, du dossier Temp de Windows, plus vieux que 48 heures". Par la suite, laisse-le avec ses réglages par défaut. Ferme le programme.
- Toolbar-S&D https://77b4795d-a-62cb3a1a-s-sites.googlegroups.com/site/eric71mespages/ToolBarSD.exe?attachauth=ANoY7cpVobGk5bHnxrhQ4yaoEUDJvOYNnEGyYjgqHZz5GqZLfutR3fMFPlsC3-CGIilfupPAguYATNyua3csodN_frdMK8sSzUpit10Yac-QJCOkMqJKkbdKcP6ySs8trWPgoNVIq4TGGWCe6o0txXQv-ZueJF9vZzw3RXsGwFYIqN2lvF2LPdQzS8mE1d5kWOVOz6EMzQuE5-lClSJM869uq3oc7-t7yg%3D%3D&attredirects=3 (Team IDN) sur ton Bureau.
Redémarre en mode sans échec comme indiqué ici https://www.wekyo.com/demarrer-le-pc-en-mode-sans-echec-windows-7-et-8/ ; Choisis ta session courante *** Compaq_Propriétaire *** (pour retrouver le rapport, clique sur le raccourci "Rapport GenProc[1]" sur ton bureau).
# Etape 2/
Lance Toolbar-S&D situé sur le Bureau. Tape sur "2" puis valide en appuyant sur "Entrée". Ne ferme pas la fenêtre lors de la suppression.
# Etape 3/
Lance CCleaner : "Nettoyeur"/"lancer le nettoyage" et c'est tout.
# Etape 4/
Redémarre normalement et poste, dans la même réponse :
- Le contenu du rapport TB.txt situé dans C:\ ;
- Un nouveau rapport HijackThis ;
- Un nouveau rapport GenProc ;
Précise les difficultés que tu as eu (ce que tu n'as pas pu faire...) ainsi que l'évolution de la situation.
~~ Arguments de la procédure ~~
# Détections [1] GenProc 2.633 02/10/2009 à 12:25:34
Toolbar:le 02/10/2009 à 12:26:36 "C:\Program Files\GamesBar"
----------------------------------------------------------------------
Sites officiels GenProc : www.alt-shift-return.org et www.genproc.com
----------------------------------------------------------------------
~~ Fin à 12:27:07 ~~
eZula
Messages postés
3392
Date d'inscription
samedi 26 avril 2008
Statut
Contributeur
Dernière intervention
8 mai 2021
392
2 oct. 2009 à 12:35
2 oct. 2009 à 12:35
suis la procédure que tu viens de poster, en entier.
Vous n’avez pas trouvé la réponse que vous recherchez ?
Posez votre question
san21
Messages postés
43
Date d'inscription
lundi 3 septembre 2007
Statut
Membre
Dernière intervention
2 octobre 2009
1
2 oct. 2009 à 14:20
2 oct. 2009 à 14:20
sela na rien fais g suivi tout le rapport a la lettre et lorsque g redemarre mon ordig eu deux alerte virus que faire s'il vous plait
san21
Messages postés
43
Date d'inscription
lundi 3 septembre 2007
Statut
Membre
Dernière intervention
2 octobre 2009
1
2 oct. 2009 à 14:24
2 oct. 2009 à 14:24
g!rly voici le rapport
REGLOOKS logfile - version 0.982
Scan started: 02/10/2009 14:22:45,90
--- INFORMATION ---
Operating System: Microsoft Windows XP Édition familiale - version 5.1.2600 - Service Pack 2
Bootmode: Normal boot
User: Compaq_Propriétaire (Administrator account)
Total RAM: 511 MB (free 41 MB - 8%)
Internet Explorer Version: 8.0.6001.18702
Antivirus Program: AntiVir Desktop 9.0.1.32 [Enabled - Updated]
--- SIGCHECK ---
C:\WINDOWS\explorer.exe -- sigcheck OK
C:\WINDOWS\system32\ctfmon.exe -- sigcheck OK
C:\WINDOWS\system32\lsass.exe -- sigcheck OK
C:\WINDOWS\system32\ntkrnlpa.exe -- sigcheck OK
C:\WINDOWS\system32\ntoskrnl.exe -- sigcheck OK
C:\WINDOWS\system32\services.exe -- sigcheck OK
C:\WINDOWS\system32\sfcfiles.dll -- sigcheck OK
C:\WINDOWS\system32\spoolsv.exe -- sigcheck OK
C:\WINDOWS\system32\svchost.exe -- sigcheck OK
C:\WINDOWS\system32\termsrv.dll -- sigcheck OK
C:\WINDOWS\system32\user32.dll -- sigcheck OK
C:\WINDOWS\system32\userinit.exe -- sigcheck OK
C:\WINDOWS\system32\wininet.dll -- sigcheck OK
C:\WINDOWS\system32\winlogon.exe -- sigcheck OK
C:\WINDOWS\system32\ws2_32.dll -- sigcheck OK
C:\WINDOWS\system32\wuauclt.exe -- sigcheck OK
C:\WINDOWS\system32\drivers\ip6fw.sys -- sigcheck OK
C:\WINDOWS\system32\drivers\ndis.sys -- sigcheck OK
C:\WINDOWS\system32\drivers\tcpip.sys -- sigcheck OK
--- SSODL regkeys ---
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
"PostBootReminder"="{7849596a-48ea-486e-8937-a2a3009f31a9}" -- File: %SystemRoot%\system32\SHELL32.dll -- [?]
"CDBurn"="{fbeb8a05-beee-4442-804e-409d6c4515e9}" -- File: %SystemRoot%\system32\SHELL32.dll -- [?]
"WebCheck"="{E6FB5E20-DE35-11CF-9C87-00AA005127ED}" -- File: C:\WINDOWS\system32\webcheck.dll -- [236544] -- [08/03/2009 04:34]
"SysTray"="{35CEC8A3-2BE6-11D2-8773-92E220524153}" -- File: C:\WINDOWS\system32\stobject.dll -- [122368] -- [05/08/2004 20:00]
"WPDShServiceObj"="{AAA288BA-9A4C-45B0-95D7-94D524869DB5}" -- File: C:\WINDOWS\system32\WPDShServiceObj.dll -- [133632] -- [18/10/2006 21:47]
"UPnPMonitor"="{e57ce738-33e8-4c51-8354-bb4de9d215d1}" -- File: C:\WINDOWS\system32\upnpui.dll -- [240128] -- [05/08/2004 20:00]
--- STS regkeys ---
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\SharedTaskScheduler]
"{438755C2-A8BA-11D1-B96B-00A0C90312E1}"="Pré-chargeur Browseui" -- File: %SystemRoot%\system32\browseui.dll -- [?]
"{8C7461EF-2B13-11d2-BE35-3078302C2030}"="Démon de cache des catégories de composant" -- File: %SystemRoot%\system32\browseui.dll -- [?]
--- USERINIT regkey ---
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon]
"Userinit"="C:\\WINDOWS\\system32\\userinit.exe,"
File: C:\WINDOWS\system32\userinit.exe -- [25088] -- [05/08/2004 20:00]
--- SHELL regkey ---
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon]
"Shell"="Explorer.exe"
File: C:\WINDOWS\Explorer.exe -- [1037312] -- [13/06/2007 15:22]
--- SYSTEM regkey ---
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon]
"System"=""
--- APPINIT_DLLS regkey ---
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows NT\CurrentVersion\Windows]
"AppInit_DLLs"=""
--- NOTIFY regkey ---
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\AtiExtEvent]
-- File: C:\WINDOWS\system32\Ati2evxx.dll -- [90112] -- [04/11/2004 06:38]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\crypt32chain]
-- File: C:\WINDOWS\system32\crypt32.dll -- [604672] -- [05/08/2004 20:00]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\cryptnet]
-- File: C:\WINDOWS\system32\cryptnet.dll -- [63488] -- [05/08/2004 20:00]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\cscdll]
-- File: C:\WINDOWS\system32\cscdll.dll -- [102912] -- [05/08/2004 20:00]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\ScCertProp]
-- File: C:\WINDOWS\system32\wlnotify.dll -- [94208] -- [05/08/2004 20:00]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\Schedule]
-- File: C:\WINDOWS\system32\wlnotify.dll -- [94208] -- [05/08/2004 20:00]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\sclgntfy]
-- File: C:\WINDOWS\system32\sclgntfy.dll -- [22016] -- [05/08/2004 20:00]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\SensLogn]
-- File: C:\WINDOWS\system32\WlNotify.dll -- [94208] -- [05/08/2004 20:00]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\termsrv]
-- File: C:\WINDOWS\system32\wlnotify.dll -- [94208] -- [05/08/2004 20:00]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\wlballoon]
-- File: C:\WINDOWS\system32\wlnotify.dll -- [94208] -- [05/08/2004 20:00]
--- RUN / LOAD regkeys ---
[HKEY_CURRENT_USER\Software\Microsoft\Windows NT\CurrentVersion\Windows]
"load"=""
--- SHELLEXECUTEHOOKS regkey ---
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shellexecutehooks]
"{AEB6717E-7E19-11d0-97EE-00C04FD91972}"="" -- File: shell32.dll -- [?]
--- HKLM AUTORUN regkeys ---
[HKEY_LOCAL_MACHINE\Software\Microsoft\Command Processor]
"AutoRun"=""
--- HKCU AUTORUN regkeys ---
[HKEY_CURRENT_USER\Software\Microsoft\Command Processor]
no AutoRun regkey found
--- HKLM\RUN regkey ---
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"hpsysdrv" -- File c:\windows\system\hpsysdrv.exe -- [52736] -- [07/05/1998 18:04]
"AGRSMMSG" -- File: AGRSMMSG.exe -- [?]
"Recguard" -- File C:\WINDOWS\SMINST\RECGUARD.EXE -- [233472] -- [14/04/2004 22:43]
"ATIPTA" -- File C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe -- [344064] -- [04/11/2004 04:10]
"AlcxMonitor" -- File: ALCXMNTR.EXE -- [?]
"HP Software Update" -- File C:\Program Files\HP\HP Software Update\HPWuSchd2.exe -- [54840] -- [08/05/2007 17:24]
"KBD" -- File C:\HP\KBD\KBD.EXE -- [61440] -- [02/02/2005 16:44]
"NeroFilterCheck" -- File C:\WINDOWS\system32\NeroCheck.exe -- [155648] -- [09/07/2001 11:50]
"LVCOMSX" -- File C:\WINDOWS\system32\LVCOMSX.EXE -- [225280] -- [09/12/2005 16:32]
"LogitechCameraAssistant" -- File C:\Program Files\Logitech\Video\CameraAssistant.exe -- [489472] -- [05/01/2006 08:58]
"LogitechVideo[inspector]" -- File: C:\Program Files\Logitech\Video\InstallHelper.exe /inspect -- [?]
"LogitechCameraService(E)" -- File: C:\WINDOWS\system32\ElkCtrl.exe /automation -- [?]
"Adobe Reader Speed Launcher" -- File "C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe" -- [35696] -- [27/02/2009 18:10]
"QuickTime Task" -- File: "C:\Program Files\QuickTime\qttask.exe" -atboottime -- [?]
"avgnt" -- File: "C:\Program Files\Avira\AntiVir Desktop\avgnt.exe" /min -- [?]
"AppleSyncNotifier" -- File C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleSyncNotifier.exe -- [177472] -- [20/05/2009 22:01]
"iTunesHelper" -- File "C:\Program Files\iTunes\iTunesHelper.exe" -- [292128] -- [13/07/2009 14:03]
"SunJavaUpdateSched" -- File "C:\Program Files\Java\jre6\bin\jusched.exe" -- [149280] -- [25/07/2009 05:23]
"YSearchProtection" -- File "C:\Program Files\Yahoo!\Search Protection\SearchProtection.exe" -- [111856] -- [03/02/2009 15:15]
"DLA" -- File C:\WINDOWS\System32\DLA\DLACTRLW.EXE -- [127036] -- [13/06/2006 05:20]
--- HKLM\RUNONCE regkey ---
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce]
no runonce values found
--- HKLM\RUNONCEEX regkey ---
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnceEx]
no runonceex values found
--- HKLM\RUNSERVICES regkey ---
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\RunServices]
no runservices values found
--- HKLM\RUNSERVICESONCE regkey ---
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\RunServicesOnce]
key not found
--- HKCU\RUN regkey ---
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"ctfmon.exe" -- File C:\WINDOWS\system32\ctfmon.exe -- [15360] -- [05/08/2004 20:00]
"MsnMsgr" -- File: "C:\Program Files\Windows Live\Messenger\msnmsgr.exe" /background -- [?]
"SRS Audio Sandbox" -- File: "C:\Program Files\SRS Labs\Audio Sandbox\SRSSSC.exe" /hideme -- [?]
"H/PC Connection Agent" -- File "C:\Program Files\Microsoft ActiveSync\wcescomm.exe" -- [1211176] -- [21/06/2006 01:20]
"Sony Ericsson PC Suite" -- File: "C:\Program Files\Sony Ericsson\Sony Ericsson PC Suite\SEPCSuite.exe" /systray /nologon -- [?]
"LDM" -- File C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe -- [32768] -- [28/11/2008 20:54]
"TomTomHOME.exe" -- File -- "C:\Program Files\TomTom HOME 2\HOMERunner.exe" -- [X]
"swg" -- File "C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe" -- [39408] -- [28/03/2009 14:41]
"Search Protection" -- File C:\Program Files\Yahoo!\Search Protection\SearchProtection.exe -- [111856] -- [03/02/2009 15:15]
"YSearchProtection" -- File C:\Program Files\Yahoo!\Search Protection\SearchProtection.exe -- [111856] -- [03/02/2009 15:15]
"PopRock" -- File -- C:\DOCUME~1\COMPAQ~1\LOCALS~1\Temp\b.exe -- [X]
"NordBull" -- File C:\WINDOWS\msa.exe -- [153600] -- [20/09/2009 21:10]
--- HKCU\RUNONCE regkey ---
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce]
"Shockwave Updater" -- File: C:\WINDOWS\system32\Adobe\Shockwave 11\SwHelper_1150600.exe -Update -1150600 -"Mozilla/4.0 (compatible; MSIE 8.0; Windows NT 5.1; Trident/4.0; GTB6; .NET CLR 1.1.4322; MSN Optimized;FR; .NET CLR 2.0.50727; .NET CLR 3.0.4506.2152; .NET CLR 3.5.30729)" -"http://www.jeu.fr/jeu/street-dive.html" -- [?]
--- HKCU\RUNONCEEX regkey ---
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnceEx]
key not found
--- HKCU\RUNSERVICES regkey ---
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\RunServices]
no runservices values found
--- HKCU\RUNSERVICESONCE regkey ---
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\RunServicesOnce]
key not found
--- HKU\.DEFAULT\Run regkeys - Default user ---
[HKEY_USERS\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
no run values found
--- HKU\S-1-5-18\Run regkeys - user SYSTEM ---
[HKEY_USERS\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
no run values found
--- HKU\S-1-5-19\Run regkeys - User Lokale service ---
[HKEY_USERS\S-1-5-19\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE" -- File C:\WINDOWS\system32\CTFMON.EXE -- [15360] -- [05/08/2004 20:00]
--- HKU\S-1-5-20\Run regkeys - User Lokale service ---
[HKEY_USERS\S-1-5-20\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE" -- File C:\WINDOWS\system32\CTFMON.EXE -- [15360] -- [05/08/2004 20:00]
--- HKLM\Explorer\Run regkeys ---
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer\Run]
no run values found
--- HKCU\Explorer\Run regkeys ---
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer\Run]
key not found
--- Image File Execution regkeys ---
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options]
no debuggers found
--- BROWSER HELPER OBJECTS regkeys ---
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{02478D38-C3F9-4EFB-9B51-7695ECA05670}]
-- File: C:\Program Files\Yahoo!\Companion\Installs\cpn3\yt.dll -- [1180400] -- [21/08/2009 03:27]
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}]
-- File: C:\Program Files\Fichiers communs\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll -- [75128] -- [27/02/2009 13:07]
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{500BCA15-57A7-4eaf-8143-8C619470B13D}]
-- CLSID not found
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{5C255C8A-E604-49b4-9D64-90988571CECB}]
-- CLSID not found
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{5CA3D70E-1895-11CF-8E15-001234567890}]
-- File: C:\WINDOWS\System32\DLA\DLASHX_W.DLL -- [110652] -- [13/06/2006 05:20]
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
-- File: C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll -- [408440] -- [17/02/2009 17:11]
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AA58ED58-01DD-4d91-8333-CF10577473F7}]
-- File: C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll -- [256112] -- [24/07/2009 19:24]
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AF69DE43-7D58-4638-B6FA-CE66B5AD205D}]
-- File: C:\Program Files\Google\GoogleToolbarNotifier\5.2.4204.1700\swg.dll -- [761840] -- [24/07/2009 19:29]
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{C84D72FE-E17D-4195-BB24-76C02E2E7C4E}]
-- File: C:\Program Files\Google\Google Toolbar\Component\fastsearch_B7C5AC242193BB3E.dll -- [458736] -- [24/07/2009 19:24]
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
-- File: C:\Program Files\Java\jre6\bin\jp2ssv.dll -- [41760] -- [25/07/2009 05:23]
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E7E6F031-17CE-4C07-BC86-EABFE594F69C}]
-- File: C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll -- [73728] -- [25/07/2009 05:22]
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{FDAD4DA1-61A2-4FD8-9C17-86F7AC245081}]
-- File: C:\Program Files\Yahoo!\Companion\Installs\cpn3\YTSingleInstance.dll -- [157936] -- [21/08/2009 03:27]
--- TOOLBAR regkeys ---
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{EF99BD32-C1FB-11D2-892F-0090271D4F88} -- File: C:\Program Files\Yahoo!\Companion\Installs\cpn3\yt.dll -- [1180400] -- [21/08/2009 03:27]
--- HKLM\URLSEARCHHOOKS regkeys ---
[HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\URLSearchHooks]
no urlsearchhooks found
--- HKCU\URLSEARCHHOOKS regkeys ---
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\URLSearchHooks]
no urlsearchhooks found
--- SRCEENSAVER regkey ---
[HKEY_CURRENT_USER\Control Panel\Desktop]
scrnsave.exe value not found
--- ALTERNATESHELL regkey ---
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot]
File: C:\WINDOWS\system32\cmd.exe -- [400896] -- [05/08/2004 20:00]
--- SECURITYPROVIDERS regkey ---
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"="msapsspc.dll, schannel.dll, digest.dll, msnsspc.dll,"
File: C:\WINDOWS\system32\msapsspc.dll -- [86016] -- [05/08/2004 20:00]
File: C:\WINDOWS\system32\schannel.dll -- [144896] -- [05/12/2008 09:12]
File: C:\WINDOWS\system32\digest.dll -- [68608] -- [05/08/2004 20:00]
File: C:\WINDOWS\system32\msnsspc.dll -- [290816] -- [05/08/2004 20:00]
--- Active Setup\Installed Components regkey ---
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\<{12d0ed0d-0ee0-4f90-8827-78cefb8f4988}]
-- File: C:\WINDOWS\system32\ieudinit.exe -- [36864] -- [08/03/2009 04:32]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\>{26923b43-4d38-484f-9b9e-de460746276c}]
-- File: C:\WINDOWS\system32\ie4uinit.exe -UserIconConfig -- [?]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\>{881dd1c5-3dcf-431b-b061-f3f88e8be88a}]
-- File: %systemroot%\system32\shmgrate.exe OCInstallUserConfigOE -- [?]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\>{CB58DED6-4AF3-4080-9DF1-DEE72075169F}]
-- File: RunDLL32 IEDKCS32.DLL,BrandIE4 SIGNUP -- [?]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{0291E591-EA41-4c82-8106-3DC6CE7F7664}]
-- filepath not found
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{1465B245-308A-425E-18B1-FC6B6DE2AFBB}]
-- filepath not found
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{1C51F0F1-8168-40E2-99DC-05BC809434FA}]
-- filepath not found
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{233C1507-6A77-46A4-9443-F871F945D258}]
-- filepath not found
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{2A202491-F00D-11cf-87CC-0020AFEECF20}]
-- filepath not found
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{2C7339CF-2B09-4501-B3F3-F3508C9228ED}]
-- File: %SystemRoot%\system32\regsvr32.exe /s /n /i:/UserInstall %SystemRoot%\system32\themeui.dll -- [?]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{2DEEDB96-82F2-E229-24B8-8AE09696249C}]
-- filepath not found
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{30528230-99F7-4BB4-88D8-FA1D4F56A2AB}]
-- filepath not found
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{347B0667-C7ED-429B-BDE3-CC8D3BACAA31}]
-- filepath not found
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{44BBA840-CC51-11CF-AAFA-00AA00B6015C}]
-- File: "%ProgramFiles%\Outlook Express\setup50.exe" /APP:OE /CALLER:WINNT /user /install -- [?]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{44BBA842-CC51-11CF-AAFA-00AA00B6015B}]
-- File: rundll32.exe advpack.dll,LaunchINFSection C:\WINDOWS\INF\msnetmtg.inf,NetMtg.Install.PerUser.NT -- [?]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{5945c046-1e7d-11d1-bc44-00c04fd912be}]
-- File: rundll32.exe advpack.dll,LaunchINFSection C:\WINDOWS\INF\msmsgs.inf,BLC.QuietInstall.PerUser -- [?]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{6BF52A52-394A-11d3-B153-00C04F79FAA6}]
-- File: rundll32.exe advpack.dll,LaunchINFSection C:\WINDOWS\INF\wmp11.inf,PerUserStub -- [?]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{89820200-ECBD-11cf-8B85-00AA005B4340}]
-- File: regsvr32.exe /s /n /i:U shell32.dll -- [?]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{89820200-ECBD-11cf-8B85-00AA005B4383}]
-- File: C:\WINDOWS\system32\ie4uinit.exe -BaseSettings -- [?]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{89820200-ECBD-11cf-8B85-00AA005B4383}]
-- File: C:\WINDOWS\system32\ie4uinit.exe -BaseSettings -- [?]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{89B4C1CD-B018-4511-B0A1-5476DBF70820}]
-- File: C:\WINDOWS\system32\Rundll32.exe C:\WINDOWS\system32\mscories.dll,Install -- [?]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{8b15971b-5355-4c82-8c07-7e181ea07608}]
-- File: rundll32.exe advpack.dll,LaunchINFSection C:\WINDOWS\INF\fxsocm.inf,Fax.Install.PerUser -- [?]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{8E350386-AB12-4BB2-A4EB-4AD5EBAFB50B}]
-- filepath not found
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{9A394342-4A68-4EBA-85A6-55B559F4E700}]
-- filepath not found
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{A365BD01-76AF-1AD6-0130-0415B37B2B88}]
-- filepath not found
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{A509B1FF-37FF-4bFF-8CFF-4F3A747040FF}]
-- File: C:\WINDOWS\system32\rundll32.exe C:\WINDOWS\system32\advpack.dll,LaunchINFSectionEx C:\Program Files\Internet Explorer\clrtour.inf,DefaultInstall.ResetTour,,12 -- [?]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{C09FB3CD-3D0C-3F2D-899A-6A1D67F2073F}]
-- filepath not found
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{C654AF1E-43F0-4EDB-BF40-52E2F302AB92}]
-- filepath not found
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{DFAB96D9-E5D8-C982-385E-ACFD9BADD5B5}]
-- filepath not found
--- Services regkey ---
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\6to4]
-- File: %SystemRoot%\system32\svchost.exe -k netsvcs -- [?]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Boonty Games]
-- File: "C:\Program Files\Fichiers communs\BOONTY Shared\Service\Boonty.exe" -- [69120] -- [11/11/2007 18:01]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\BRGSp50]
-- File: System32\Drivers\BRGSp50.sys -- [?]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\dbustrcm]
-- File: \??\C:\DOCUME~1\COMPAQ~1\LOCALS~1\Temp\dbustrcm.sys -- [?]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\DLABOIOM]
-- File: System32\DLA\DLABOIOM.SYS -- [?]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\DLACDBHM]
-- File: System32\Drivers\DLACDBHM.SYS -- [?]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\DLADResN]
-- File: System32\DLA\DLADResN.SYS -- [?]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\DLAIFS_M]
-- File: System32\DLA\DLAIFS_M.SYS -- [?]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\DLAOPIOM]
-- File: System32\DLA\DLAOPIOM.SYS -- [?]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\DLAPoolM]
-- File: System32\DLA\DLAPoolM.SYS -- [?]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\DLARTL_N]
-- File: System32\Drivers\DLARTL_N.SYS -- [?]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\DLAUDFAM]
-- File: System32\DLA\DLAUDFAM.SYS -- [?]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\DLAUDF_M]
-- File: System32\DLA\DLAUDF_M.SYS -- [?]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\DRVMCDB]
-- File: System32\Drivers\DRVMCDB.SYS -- [?]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\DRVNDDM]
-- File: System32\Drivers\DRVNDDM.SYS -- [?]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\ggflt]
-- File: system32\DRIVERS\ggflt.sys -- [?]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\ggsemc]
-- File: system32\DRIVERS\ggsemc.sys -- [?]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\JavaQuickStarterService]
-- File: "C:\Program Files\Java\jre6\bin\jqs.exe" -service -config "C:\Program Files\Java\jre6\lib\deploy\jqs\jqs.conf" -- [?]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\lvmvdrv]
-- File: \??\C:\WINDOWS\system32\drivers\lvmvdrv.sys -- [?]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\LVPrcMon]
-- File: \??\C:\WINDOWS\system32\drivers\LVPrcMon.sys -- [?]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\mbr]
-- File: \??\C:\DOCUME~1\COMPAQ~1\LOCALS~1\Temp\mbr.sys -- [?]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\NetTcpPortSharing]
-- File: "C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe" -- [132096] -- [29/07/2008 19:16]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\NuidFltr]
-- File: system32\DRIVERS\NuidFltr.sys -- [?]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\p2pgasvc]
-- File: %SystemRoot%\system32\svchost.exe -k p2psvc -- [?]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\QCMerced]
-- File: system32\DRIVERS\LVCM.sys -- [?]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\s217bus]
-- File: system32\DRIVERS\s217bus.sys -- [?]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\s217mdfl]
-- File: system32\DRIVERS\s217mdfl.sys -- [?]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\s217mgmt]
-- File: system32\DRIVERS\s217mgmt.sys -- [?]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\s217nd5]
-- File: system32\DRIVERS\s217nd5.sys -- [?]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\s217obex]
-- File: system32\DRIVERS\s217obex.sys -- [?]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\s217unic]
-- File: system32\DRIVERS\s217unic.sys -- [?]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SimpTcp]
-- File: %SystemRoot%\system32\tcpsvcs.exe -- [?]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\YahooAUService]
-- File: "C:\Program Files\Yahoo!\SoftwareUpdate\YahooAUService.exe" -- [602392] -- [09/11/2008 22:48]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\ZD1211BU(BLUESTORK)]
-- File: system32\DRIVERS\zd1211Bu.sys -- [?]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\{0E46C1A8-CE4B-48B1-B219-9E89DEBE73A7}]
-- filepath not found
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\{17B9D43D-D697-47A9-A8CF-E9E684ECBD41}]
-- filepath not found
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\{679009B5-76DD-4090-809C-81567F2C7E2E}]
-- filepath not found
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\{8864CBE5-EB32-44CE-80E5-29215E69EDA7}]
-- filepath not found
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\{8A3BD736-3B0D-41CB-9D03-486B8EF5D4F6}]
-- filepath not found
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\{B332B6EB-E5C9-4CEA-A7DF-E57F321F8768}]
-- filepath not found
--- SAFEBOOT MINIMAL SERVICES ---
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal
no unknown services found
--- SAFEBOOT Network SERVICES ---
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Network
DnsCache
nm
nm.sys
--- BOOTEXECUTE regkey ---
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Session Manager]
"BootExecute"= autocheck autochk *\0\0
--- PENDINGFILERENAMEOPERATIONS regkey ---
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Session Manager]
PendingFileRenameOperations key not found
--- WOW-CMDLINE regkeys ---
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\WOW]
"cmdline" = %SystemRoot%\system32\ntvdm.exe
"cmdline" = %SystemRoot%\system32\ntvdm.exe -a %SystemRoot%\system32\krnl386
--- NETSVCS regkey ---
[HKEY_LOCAL_MACHINE\software\Microsoft\Windows NT\CurrentVersion\Svchost] -- NETSVCS
0WmdmPmSN
--- DNS SERVER regkeys ---
no "NameServer" values found
--- File associations ---
.BAT files: ("%1" %*)
.COM files: ("%1" %*)
.EXE files: ("%1" %*)
.HLP files: (%SystemRoot%\System32\winhlp32.exe %1)
.INF files: (%SystemRoot%\System32\NOTEPAD.EXE %1)
.INI files: (%SystemRoot%\System32\NOTEPAD.EXE %1)
.JS files: (%SystemRoot%\System32\WScript.exe "%1" %*)
.PIF files: ("%1" %*)
.REG files: (regedit.exe "%1" %*)
.SCR files: ("%1" %*)
.TXT files: (%SystemRoot%\system32\NOTEPAD.EXE %1)
.VBS files: (%SystemRoot%\System32\WScript.exe "%1" %*)
--- STARTUP FOLDERS ---
--- TASK SCHEDULER JOBS ---
C:\WINDOWS\tasks\AppleSoftwareUpdate.job -- [284] -- [04/09/2009 23:04]
C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job -- [1050] -- [02/10/2009 14:10]
C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job -- [1054] -- [02/10/2009 13:27]
C:\WINDOWS\tasks\User_Feed_Synchronization-{93B51C77-242E-4474-8AE1-07D78C7EBD2E}.job -- [460] -- [02/10/2009 12:34]
C:\WINDOWS\tasks\User_Feed_Synchronization-{FB930268-AD0A-40C0-81AC-B87330460D53}.job -- [434] -- [02/10/2009 14:22]
C:\WINDOWS\tasks\{7B02EF0B-A410-4938-8480-9BA26420A627}.job -- [268] -- [02/10/2009 14:11]
C:\WINDOWS\tasks\{BB65B0FB-5712-401b-B616-E69AC55E2757}.job -- [312] -- [02/10/2009 14:10]
Scan completed: 02/10/2009 14:23:40,10
FINISHED
REGLOOKS logfile - version 0.982
Scan started: 02/10/2009 14:22:45,90
--- INFORMATION ---
Operating System: Microsoft Windows XP Édition familiale - version 5.1.2600 - Service Pack 2
Bootmode: Normal boot
User: Compaq_Propriétaire (Administrator account)
Total RAM: 511 MB (free 41 MB - 8%)
Internet Explorer Version: 8.0.6001.18702
Antivirus Program: AntiVir Desktop 9.0.1.32 [Enabled - Updated]
--- SIGCHECK ---
C:\WINDOWS\explorer.exe -- sigcheck OK
C:\WINDOWS\system32\ctfmon.exe -- sigcheck OK
C:\WINDOWS\system32\lsass.exe -- sigcheck OK
C:\WINDOWS\system32\ntkrnlpa.exe -- sigcheck OK
C:\WINDOWS\system32\ntoskrnl.exe -- sigcheck OK
C:\WINDOWS\system32\services.exe -- sigcheck OK
C:\WINDOWS\system32\sfcfiles.dll -- sigcheck OK
C:\WINDOWS\system32\spoolsv.exe -- sigcheck OK
C:\WINDOWS\system32\svchost.exe -- sigcheck OK
C:\WINDOWS\system32\termsrv.dll -- sigcheck OK
C:\WINDOWS\system32\user32.dll -- sigcheck OK
C:\WINDOWS\system32\userinit.exe -- sigcheck OK
C:\WINDOWS\system32\wininet.dll -- sigcheck OK
C:\WINDOWS\system32\winlogon.exe -- sigcheck OK
C:\WINDOWS\system32\ws2_32.dll -- sigcheck OK
C:\WINDOWS\system32\wuauclt.exe -- sigcheck OK
C:\WINDOWS\system32\drivers\ip6fw.sys -- sigcheck OK
C:\WINDOWS\system32\drivers\ndis.sys -- sigcheck OK
C:\WINDOWS\system32\drivers\tcpip.sys -- sigcheck OK
--- SSODL regkeys ---
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
"PostBootReminder"="{7849596a-48ea-486e-8937-a2a3009f31a9}" -- File: %SystemRoot%\system32\SHELL32.dll -- [?]
"CDBurn"="{fbeb8a05-beee-4442-804e-409d6c4515e9}" -- File: %SystemRoot%\system32\SHELL32.dll -- [?]
"WebCheck"="{E6FB5E20-DE35-11CF-9C87-00AA005127ED}" -- File: C:\WINDOWS\system32\webcheck.dll -- [236544] -- [08/03/2009 04:34]
"SysTray"="{35CEC8A3-2BE6-11D2-8773-92E220524153}" -- File: C:\WINDOWS\system32\stobject.dll -- [122368] -- [05/08/2004 20:00]
"WPDShServiceObj"="{AAA288BA-9A4C-45B0-95D7-94D524869DB5}" -- File: C:\WINDOWS\system32\WPDShServiceObj.dll -- [133632] -- [18/10/2006 21:47]
"UPnPMonitor"="{e57ce738-33e8-4c51-8354-bb4de9d215d1}" -- File: C:\WINDOWS\system32\upnpui.dll -- [240128] -- [05/08/2004 20:00]
--- STS regkeys ---
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\SharedTaskScheduler]
"{438755C2-A8BA-11D1-B96B-00A0C90312E1}"="Pré-chargeur Browseui" -- File: %SystemRoot%\system32\browseui.dll -- [?]
"{8C7461EF-2B13-11d2-BE35-3078302C2030}"="Démon de cache des catégories de composant" -- File: %SystemRoot%\system32\browseui.dll -- [?]
--- USERINIT regkey ---
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon]
"Userinit"="C:\\WINDOWS\\system32\\userinit.exe,"
File: C:\WINDOWS\system32\userinit.exe -- [25088] -- [05/08/2004 20:00]
--- SHELL regkey ---
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon]
"Shell"="Explorer.exe"
File: C:\WINDOWS\Explorer.exe -- [1037312] -- [13/06/2007 15:22]
--- SYSTEM regkey ---
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon]
"System"=""
--- APPINIT_DLLS regkey ---
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows NT\CurrentVersion\Windows]
"AppInit_DLLs"=""
--- NOTIFY regkey ---
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\AtiExtEvent]
-- File: C:\WINDOWS\system32\Ati2evxx.dll -- [90112] -- [04/11/2004 06:38]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\crypt32chain]
-- File: C:\WINDOWS\system32\crypt32.dll -- [604672] -- [05/08/2004 20:00]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\cryptnet]
-- File: C:\WINDOWS\system32\cryptnet.dll -- [63488] -- [05/08/2004 20:00]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\cscdll]
-- File: C:\WINDOWS\system32\cscdll.dll -- [102912] -- [05/08/2004 20:00]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\ScCertProp]
-- File: C:\WINDOWS\system32\wlnotify.dll -- [94208] -- [05/08/2004 20:00]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\Schedule]
-- File: C:\WINDOWS\system32\wlnotify.dll -- [94208] -- [05/08/2004 20:00]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\sclgntfy]
-- File: C:\WINDOWS\system32\sclgntfy.dll -- [22016] -- [05/08/2004 20:00]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\SensLogn]
-- File: C:\WINDOWS\system32\WlNotify.dll -- [94208] -- [05/08/2004 20:00]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\termsrv]
-- File: C:\WINDOWS\system32\wlnotify.dll -- [94208] -- [05/08/2004 20:00]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\wlballoon]
-- File: C:\WINDOWS\system32\wlnotify.dll -- [94208] -- [05/08/2004 20:00]
--- RUN / LOAD regkeys ---
[HKEY_CURRENT_USER\Software\Microsoft\Windows NT\CurrentVersion\Windows]
"load"=""
--- SHELLEXECUTEHOOKS regkey ---
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shellexecutehooks]
"{AEB6717E-7E19-11d0-97EE-00C04FD91972}"="" -- File: shell32.dll -- [?]
--- HKLM AUTORUN regkeys ---
[HKEY_LOCAL_MACHINE\Software\Microsoft\Command Processor]
"AutoRun"=""
--- HKCU AUTORUN regkeys ---
[HKEY_CURRENT_USER\Software\Microsoft\Command Processor]
no AutoRun regkey found
--- HKLM\RUN regkey ---
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"hpsysdrv" -- File c:\windows\system\hpsysdrv.exe -- [52736] -- [07/05/1998 18:04]
"AGRSMMSG" -- File: AGRSMMSG.exe -- [?]
"Recguard" -- File C:\WINDOWS\SMINST\RECGUARD.EXE -- [233472] -- [14/04/2004 22:43]
"ATIPTA" -- File C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe -- [344064] -- [04/11/2004 04:10]
"AlcxMonitor" -- File: ALCXMNTR.EXE -- [?]
"HP Software Update" -- File C:\Program Files\HP\HP Software Update\HPWuSchd2.exe -- [54840] -- [08/05/2007 17:24]
"KBD" -- File C:\HP\KBD\KBD.EXE -- [61440] -- [02/02/2005 16:44]
"NeroFilterCheck" -- File C:\WINDOWS\system32\NeroCheck.exe -- [155648] -- [09/07/2001 11:50]
"LVCOMSX" -- File C:\WINDOWS\system32\LVCOMSX.EXE -- [225280] -- [09/12/2005 16:32]
"LogitechCameraAssistant" -- File C:\Program Files\Logitech\Video\CameraAssistant.exe -- [489472] -- [05/01/2006 08:58]
"LogitechVideo[inspector]" -- File: C:\Program Files\Logitech\Video\InstallHelper.exe /inspect -- [?]
"LogitechCameraService(E)" -- File: C:\WINDOWS\system32\ElkCtrl.exe /automation -- [?]
"Adobe Reader Speed Launcher" -- File "C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe" -- [35696] -- [27/02/2009 18:10]
"QuickTime Task" -- File: "C:\Program Files\QuickTime\qttask.exe" -atboottime -- [?]
"avgnt" -- File: "C:\Program Files\Avira\AntiVir Desktop\avgnt.exe" /min -- [?]
"AppleSyncNotifier" -- File C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleSyncNotifier.exe -- [177472] -- [20/05/2009 22:01]
"iTunesHelper" -- File "C:\Program Files\iTunes\iTunesHelper.exe" -- [292128] -- [13/07/2009 14:03]
"SunJavaUpdateSched" -- File "C:\Program Files\Java\jre6\bin\jusched.exe" -- [149280] -- [25/07/2009 05:23]
"YSearchProtection" -- File "C:\Program Files\Yahoo!\Search Protection\SearchProtection.exe" -- [111856] -- [03/02/2009 15:15]
"DLA" -- File C:\WINDOWS\System32\DLA\DLACTRLW.EXE -- [127036] -- [13/06/2006 05:20]
--- HKLM\RUNONCE regkey ---
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce]
no runonce values found
--- HKLM\RUNONCEEX regkey ---
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnceEx]
no runonceex values found
--- HKLM\RUNSERVICES regkey ---
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\RunServices]
no runservices values found
--- HKLM\RUNSERVICESONCE regkey ---
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\RunServicesOnce]
key not found
--- HKCU\RUN regkey ---
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"ctfmon.exe" -- File C:\WINDOWS\system32\ctfmon.exe -- [15360] -- [05/08/2004 20:00]
"MsnMsgr" -- File: "C:\Program Files\Windows Live\Messenger\msnmsgr.exe" /background -- [?]
"SRS Audio Sandbox" -- File: "C:\Program Files\SRS Labs\Audio Sandbox\SRSSSC.exe" /hideme -- [?]
"H/PC Connection Agent" -- File "C:\Program Files\Microsoft ActiveSync\wcescomm.exe" -- [1211176] -- [21/06/2006 01:20]
"Sony Ericsson PC Suite" -- File: "C:\Program Files\Sony Ericsson\Sony Ericsson PC Suite\SEPCSuite.exe" /systray /nologon -- [?]
"LDM" -- File C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe -- [32768] -- [28/11/2008 20:54]
"TomTomHOME.exe" -- File -- "C:\Program Files\TomTom HOME 2\HOMERunner.exe" -- [X]
"swg" -- File "C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe" -- [39408] -- [28/03/2009 14:41]
"Search Protection" -- File C:\Program Files\Yahoo!\Search Protection\SearchProtection.exe -- [111856] -- [03/02/2009 15:15]
"YSearchProtection" -- File C:\Program Files\Yahoo!\Search Protection\SearchProtection.exe -- [111856] -- [03/02/2009 15:15]
"PopRock" -- File -- C:\DOCUME~1\COMPAQ~1\LOCALS~1\Temp\b.exe -- [X]
"NordBull" -- File C:\WINDOWS\msa.exe -- [153600] -- [20/09/2009 21:10]
--- HKCU\RUNONCE regkey ---
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce]
"Shockwave Updater" -- File: C:\WINDOWS\system32\Adobe\Shockwave 11\SwHelper_1150600.exe -Update -1150600 -"Mozilla/4.0 (compatible; MSIE 8.0; Windows NT 5.1; Trident/4.0; GTB6; .NET CLR 1.1.4322; MSN Optimized;FR; .NET CLR 2.0.50727; .NET CLR 3.0.4506.2152; .NET CLR 3.5.30729)" -"http://www.jeu.fr/jeu/street-dive.html" -- [?]
--- HKCU\RUNONCEEX regkey ---
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnceEx]
key not found
--- HKCU\RUNSERVICES regkey ---
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\RunServices]
no runservices values found
--- HKCU\RUNSERVICESONCE regkey ---
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\RunServicesOnce]
key not found
--- HKU\.DEFAULT\Run regkeys - Default user ---
[HKEY_USERS\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
no run values found
--- HKU\S-1-5-18\Run regkeys - user SYSTEM ---
[HKEY_USERS\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
no run values found
--- HKU\S-1-5-19\Run regkeys - User Lokale service ---
[HKEY_USERS\S-1-5-19\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE" -- File C:\WINDOWS\system32\CTFMON.EXE -- [15360] -- [05/08/2004 20:00]
--- HKU\S-1-5-20\Run regkeys - User Lokale service ---
[HKEY_USERS\S-1-5-20\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE" -- File C:\WINDOWS\system32\CTFMON.EXE -- [15360] -- [05/08/2004 20:00]
--- HKLM\Explorer\Run regkeys ---
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer\Run]
no run values found
--- HKCU\Explorer\Run regkeys ---
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer\Run]
key not found
--- Image File Execution regkeys ---
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options]
no debuggers found
--- BROWSER HELPER OBJECTS regkeys ---
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{02478D38-C3F9-4EFB-9B51-7695ECA05670}]
-- File: C:\Program Files\Yahoo!\Companion\Installs\cpn3\yt.dll -- [1180400] -- [21/08/2009 03:27]
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}]
-- File: C:\Program Files\Fichiers communs\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll -- [75128] -- [27/02/2009 13:07]
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{500BCA15-57A7-4eaf-8143-8C619470B13D}]
-- CLSID not found
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{5C255C8A-E604-49b4-9D64-90988571CECB}]
-- CLSID not found
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{5CA3D70E-1895-11CF-8E15-001234567890}]
-- File: C:\WINDOWS\System32\DLA\DLASHX_W.DLL -- [110652] -- [13/06/2006 05:20]
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
-- File: C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll -- [408440] -- [17/02/2009 17:11]
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AA58ED58-01DD-4d91-8333-CF10577473F7}]
-- File: C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll -- [256112] -- [24/07/2009 19:24]
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AF69DE43-7D58-4638-B6FA-CE66B5AD205D}]
-- File: C:\Program Files\Google\GoogleToolbarNotifier\5.2.4204.1700\swg.dll -- [761840] -- [24/07/2009 19:29]
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{C84D72FE-E17D-4195-BB24-76C02E2E7C4E}]
-- File: C:\Program Files\Google\Google Toolbar\Component\fastsearch_B7C5AC242193BB3E.dll -- [458736] -- [24/07/2009 19:24]
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
-- File: C:\Program Files\Java\jre6\bin\jp2ssv.dll -- [41760] -- [25/07/2009 05:23]
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E7E6F031-17CE-4C07-BC86-EABFE594F69C}]
-- File: C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll -- [73728] -- [25/07/2009 05:22]
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{FDAD4DA1-61A2-4FD8-9C17-86F7AC245081}]
-- File: C:\Program Files\Yahoo!\Companion\Installs\cpn3\YTSingleInstance.dll -- [157936] -- [21/08/2009 03:27]
--- TOOLBAR regkeys ---
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{EF99BD32-C1FB-11D2-892F-0090271D4F88} -- File: C:\Program Files\Yahoo!\Companion\Installs\cpn3\yt.dll -- [1180400] -- [21/08/2009 03:27]
--- HKLM\URLSEARCHHOOKS regkeys ---
[HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\URLSearchHooks]
no urlsearchhooks found
--- HKCU\URLSEARCHHOOKS regkeys ---
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\URLSearchHooks]
no urlsearchhooks found
--- SRCEENSAVER regkey ---
[HKEY_CURRENT_USER\Control Panel\Desktop]
scrnsave.exe value not found
--- ALTERNATESHELL regkey ---
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot]
File: C:\WINDOWS\system32\cmd.exe -- [400896] -- [05/08/2004 20:00]
--- SECURITYPROVIDERS regkey ---
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"="msapsspc.dll, schannel.dll, digest.dll, msnsspc.dll,"
File: C:\WINDOWS\system32\msapsspc.dll -- [86016] -- [05/08/2004 20:00]
File: C:\WINDOWS\system32\schannel.dll -- [144896] -- [05/12/2008 09:12]
File: C:\WINDOWS\system32\digest.dll -- [68608] -- [05/08/2004 20:00]
File: C:\WINDOWS\system32\msnsspc.dll -- [290816] -- [05/08/2004 20:00]
--- Active Setup\Installed Components regkey ---
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\<{12d0ed0d-0ee0-4f90-8827-78cefb8f4988}]
-- File: C:\WINDOWS\system32\ieudinit.exe -- [36864] -- [08/03/2009 04:32]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\>{26923b43-4d38-484f-9b9e-de460746276c}]
-- File: C:\WINDOWS\system32\ie4uinit.exe -UserIconConfig -- [?]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\>{881dd1c5-3dcf-431b-b061-f3f88e8be88a}]
-- File: %systemroot%\system32\shmgrate.exe OCInstallUserConfigOE -- [?]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\>{CB58DED6-4AF3-4080-9DF1-DEE72075169F}]
-- File: RunDLL32 IEDKCS32.DLL,BrandIE4 SIGNUP -- [?]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{0291E591-EA41-4c82-8106-3DC6CE7F7664}]
-- filepath not found
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{1465B245-308A-425E-18B1-FC6B6DE2AFBB}]
-- filepath not found
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{1C51F0F1-8168-40E2-99DC-05BC809434FA}]
-- filepath not found
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{233C1507-6A77-46A4-9443-F871F945D258}]
-- filepath not found
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{2A202491-F00D-11cf-87CC-0020AFEECF20}]
-- filepath not found
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{2C7339CF-2B09-4501-B3F3-F3508C9228ED}]
-- File: %SystemRoot%\system32\regsvr32.exe /s /n /i:/UserInstall %SystemRoot%\system32\themeui.dll -- [?]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{2DEEDB96-82F2-E229-24B8-8AE09696249C}]
-- filepath not found
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{30528230-99F7-4BB4-88D8-FA1D4F56A2AB}]
-- filepath not found
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{347B0667-C7ED-429B-BDE3-CC8D3BACAA31}]
-- filepath not found
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{44BBA840-CC51-11CF-AAFA-00AA00B6015C}]
-- File: "%ProgramFiles%\Outlook Express\setup50.exe" /APP:OE /CALLER:WINNT /user /install -- [?]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{44BBA842-CC51-11CF-AAFA-00AA00B6015B}]
-- File: rundll32.exe advpack.dll,LaunchINFSection C:\WINDOWS\INF\msnetmtg.inf,NetMtg.Install.PerUser.NT -- [?]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{5945c046-1e7d-11d1-bc44-00c04fd912be}]
-- File: rundll32.exe advpack.dll,LaunchINFSection C:\WINDOWS\INF\msmsgs.inf,BLC.QuietInstall.PerUser -- [?]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{6BF52A52-394A-11d3-B153-00C04F79FAA6}]
-- File: rundll32.exe advpack.dll,LaunchINFSection C:\WINDOWS\INF\wmp11.inf,PerUserStub -- [?]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{89820200-ECBD-11cf-8B85-00AA005B4340}]
-- File: regsvr32.exe /s /n /i:U shell32.dll -- [?]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{89820200-ECBD-11cf-8B85-00AA005B4383}]
-- File: C:\WINDOWS\system32\ie4uinit.exe -BaseSettings -- [?]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{89820200-ECBD-11cf-8B85-00AA005B4383}]
-- File: C:\WINDOWS\system32\ie4uinit.exe -BaseSettings -- [?]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{89B4C1CD-B018-4511-B0A1-5476DBF70820}]
-- File: C:\WINDOWS\system32\Rundll32.exe C:\WINDOWS\system32\mscories.dll,Install -- [?]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{8b15971b-5355-4c82-8c07-7e181ea07608}]
-- File: rundll32.exe advpack.dll,LaunchINFSection C:\WINDOWS\INF\fxsocm.inf,Fax.Install.PerUser -- [?]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{8E350386-AB12-4BB2-A4EB-4AD5EBAFB50B}]
-- filepath not found
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{9A394342-4A68-4EBA-85A6-55B559F4E700}]
-- filepath not found
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{A365BD01-76AF-1AD6-0130-0415B37B2B88}]
-- filepath not found
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{A509B1FF-37FF-4bFF-8CFF-4F3A747040FF}]
-- File: C:\WINDOWS\system32\rundll32.exe C:\WINDOWS\system32\advpack.dll,LaunchINFSectionEx C:\Program Files\Internet Explorer\clrtour.inf,DefaultInstall.ResetTour,,12 -- [?]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{C09FB3CD-3D0C-3F2D-899A-6A1D67F2073F}]
-- filepath not found
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{C654AF1E-43F0-4EDB-BF40-52E2F302AB92}]
-- filepath not found
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{DFAB96D9-E5D8-C982-385E-ACFD9BADD5B5}]
-- filepath not found
--- Services regkey ---
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\6to4]
-- File: %SystemRoot%\system32\svchost.exe -k netsvcs -- [?]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Boonty Games]
-- File: "C:\Program Files\Fichiers communs\BOONTY Shared\Service\Boonty.exe" -- [69120] -- [11/11/2007 18:01]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\BRGSp50]
-- File: System32\Drivers\BRGSp50.sys -- [?]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\dbustrcm]
-- File: \??\C:\DOCUME~1\COMPAQ~1\LOCALS~1\Temp\dbustrcm.sys -- [?]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\DLABOIOM]
-- File: System32\DLA\DLABOIOM.SYS -- [?]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\DLACDBHM]
-- File: System32\Drivers\DLACDBHM.SYS -- [?]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\DLADResN]
-- File: System32\DLA\DLADResN.SYS -- [?]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\DLAIFS_M]
-- File: System32\DLA\DLAIFS_M.SYS -- [?]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\DLAOPIOM]
-- File: System32\DLA\DLAOPIOM.SYS -- [?]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\DLAPoolM]
-- File: System32\DLA\DLAPoolM.SYS -- [?]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\DLARTL_N]
-- File: System32\Drivers\DLARTL_N.SYS -- [?]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\DLAUDFAM]
-- File: System32\DLA\DLAUDFAM.SYS -- [?]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\DLAUDF_M]
-- File: System32\DLA\DLAUDF_M.SYS -- [?]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\DRVMCDB]
-- File: System32\Drivers\DRVMCDB.SYS -- [?]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\DRVNDDM]
-- File: System32\Drivers\DRVNDDM.SYS -- [?]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\ggflt]
-- File: system32\DRIVERS\ggflt.sys -- [?]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\ggsemc]
-- File: system32\DRIVERS\ggsemc.sys -- [?]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\JavaQuickStarterService]
-- File: "C:\Program Files\Java\jre6\bin\jqs.exe" -service -config "C:\Program Files\Java\jre6\lib\deploy\jqs\jqs.conf" -- [?]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\lvmvdrv]
-- File: \??\C:\WINDOWS\system32\drivers\lvmvdrv.sys -- [?]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\LVPrcMon]
-- File: \??\C:\WINDOWS\system32\drivers\LVPrcMon.sys -- [?]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\mbr]
-- File: \??\C:\DOCUME~1\COMPAQ~1\LOCALS~1\Temp\mbr.sys -- [?]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\NetTcpPortSharing]
-- File: "C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe" -- [132096] -- [29/07/2008 19:16]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\NuidFltr]
-- File: system32\DRIVERS\NuidFltr.sys -- [?]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\p2pgasvc]
-- File: %SystemRoot%\system32\svchost.exe -k p2psvc -- [?]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\QCMerced]
-- File: system32\DRIVERS\LVCM.sys -- [?]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\s217bus]
-- File: system32\DRIVERS\s217bus.sys -- [?]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\s217mdfl]
-- File: system32\DRIVERS\s217mdfl.sys -- [?]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\s217mgmt]
-- File: system32\DRIVERS\s217mgmt.sys -- [?]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\s217nd5]
-- File: system32\DRIVERS\s217nd5.sys -- [?]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\s217obex]
-- File: system32\DRIVERS\s217obex.sys -- [?]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\s217unic]
-- File: system32\DRIVERS\s217unic.sys -- [?]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SimpTcp]
-- File: %SystemRoot%\system32\tcpsvcs.exe -- [?]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\YahooAUService]
-- File: "C:\Program Files\Yahoo!\SoftwareUpdate\YahooAUService.exe" -- [602392] -- [09/11/2008 22:48]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\ZD1211BU(BLUESTORK)]
-- File: system32\DRIVERS\zd1211Bu.sys -- [?]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\{0E46C1A8-CE4B-48B1-B219-9E89DEBE73A7}]
-- filepath not found
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\{17B9D43D-D697-47A9-A8CF-E9E684ECBD41}]
-- filepath not found
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\{679009B5-76DD-4090-809C-81567F2C7E2E}]
-- filepath not found
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\{8864CBE5-EB32-44CE-80E5-29215E69EDA7}]
-- filepath not found
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\{8A3BD736-3B0D-41CB-9D03-486B8EF5D4F6}]
-- filepath not found
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\{B332B6EB-E5C9-4CEA-A7DF-E57F321F8768}]
-- filepath not found
--- SAFEBOOT MINIMAL SERVICES ---
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal
no unknown services found
--- SAFEBOOT Network SERVICES ---
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Network
DnsCache
nm
nm.sys
--- BOOTEXECUTE regkey ---
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Session Manager]
"BootExecute"= autocheck autochk *\0\0
--- PENDINGFILERENAMEOPERATIONS regkey ---
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Session Manager]
PendingFileRenameOperations key not found
--- WOW-CMDLINE regkeys ---
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\WOW]
"cmdline" = %SystemRoot%\system32\ntvdm.exe
"cmdline" = %SystemRoot%\system32\ntvdm.exe -a %SystemRoot%\system32\krnl386
--- NETSVCS regkey ---
[HKEY_LOCAL_MACHINE\software\Microsoft\Windows NT\CurrentVersion\Svchost] -- NETSVCS
0WmdmPmSN
--- DNS SERVER regkeys ---
no "NameServer" values found
--- File associations ---
.BAT files: ("%1" %*)
.COM files: ("%1" %*)
.EXE files: ("%1" %*)
.HLP files: (%SystemRoot%\System32\winhlp32.exe %1)
.INF files: (%SystemRoot%\System32\NOTEPAD.EXE %1)
.INI files: (%SystemRoot%\System32\NOTEPAD.EXE %1)
.JS files: (%SystemRoot%\System32\WScript.exe "%1" %*)
.PIF files: ("%1" %*)
.REG files: (regedit.exe "%1" %*)
.SCR files: ("%1" %*)
.TXT files: (%SystemRoot%\system32\NOTEPAD.EXE %1)
.VBS files: (%SystemRoot%\System32\WScript.exe "%1" %*)
--- STARTUP FOLDERS ---
--- TASK SCHEDULER JOBS ---
C:\WINDOWS\tasks\AppleSoftwareUpdate.job -- [284] -- [04/09/2009 23:04]
C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job -- [1050] -- [02/10/2009 14:10]
C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job -- [1054] -- [02/10/2009 13:27]
C:\WINDOWS\tasks\User_Feed_Synchronization-{93B51C77-242E-4474-8AE1-07D78C7EBD2E}.job -- [460] -- [02/10/2009 12:34]
C:\WINDOWS\tasks\User_Feed_Synchronization-{FB930268-AD0A-40C0-81AC-B87330460D53}.job -- [434] -- [02/10/2009 14:22]
C:\WINDOWS\tasks\{7B02EF0B-A410-4938-8480-9BA26420A627}.job -- [268] -- [02/10/2009 14:11]
C:\WINDOWS\tasks\{BB65B0FB-5712-401b-B616-E69AC55E2757}.job -- [312] -- [02/10/2009 14:10]
Scan completed: 02/10/2009 14:23:40,10
FINISHED
g!rly
Messages postés
18209
Date d'inscription
vendredi 17 août 2007
Statut
Contributeur
Dernière intervention
30 novembre 2014
406
2 oct. 2009 à 14:50
2 oct. 2009 à 14:50
San21,
Suis les indications de eZula merci`
Suis les indications de eZula merci`
