> Tous les forums > Forum Sécurité
 demande si on peut entrer sur mon DDSujet résolu
Ajouter un message à la discussion
Pages : [1] 2 ... Fin
Page 1 sur 2 [Fin]
witekop
  Posté le 08/09/2011 @ 18:06 
Aller en bas de la page 
Astucien

Bonjour,

depuis quelque temps j'ai quand je lis une vidéo d'un journal ver l'avenir un carré qui me demande si on peut entrer

sur mon Disque dur pour aller vérifier ce qu'il y a dessus.

Comment faire pour ne plus avoir ce message j'ai beau refuser et cliquer plusieur fois sur refuser cela ne se ferme pas et je suis obligé de

couper pour etre tranquille que faire pour que personne ne sache aller sur mon ordi .

Merci de m'aider SVP.

bonne soirée

Publicité
Anonyme
 Posté le 08/09/2011 à 19:39 
Aller en bas de la page Revenir au message précédent Revenir en haut de la page
Nouvel astucien

Bonjour,

*Télécharge RSIT (merci random/random) sur le Bureau : Ici ou
Double-clique sur RSIT.exe, il ne nécessite pas d' installation.
Clique Continue à l' écran Disclaimer si tu acceptes les conditions.
-Si HijackThis est non détecté sur ton Pc, il le téléchargera (autorise l' accès via ton pare-feu si demandé et accepte la licence).
Lorsque l' analyse sera terminée, deux fichiers texte s' ouvriront.
Poste le contenu de log.txt (celui qui s' ouvre) ainsi qu' info.txt qui est dans la Barre des Tâches > Insérer un rapport, en bas de la page

Tuto : https://forum.pcastuces.com/randoms_system_information_tool_rsit-f31s31.htm

NB : Ces rapports sont enregistrés dans le dossier C:\rsit

A+

Anonyme
 Posté le 08/09/2011 à 20:41 
Aller en bas de la page Revenir au message précédent Revenir en haut de la page
Nouvel astucien
witekop a écrit :

> Cela suffit il ,

Re,

> Non, il manque le rapport info.txt de RSIT.

Ton Pc est infecté...

¤ Télécharge Ad-Remover (merci C_XX) sur ton Bureau : Ici
- Double-clique dessus pour le démarrer (Vista/7, clic-droit>Exécuter en tant qu' Administrateur)
- Lance la recherche et poste le rapport généré

Anonyme
 Posté le 09/09/2011 à 10:52 
Aller en bas de la page Revenir au message précédent Revenir en haut de la page
Nouvel astucien
Anonyme
 Posté le 09/09/2011 à 20:00 
Aller en bas de la page Revenir au message précédent Revenir en haut de la page
Nouvel astucien
witekop a écrit :

> Et ceci convient il ,

Re,

> Oui.

- Double-clique sur Ad-Remover pour l' exécuter
- Lance le nettoyage et poste le rapport

Anonyme
 Posté le 11/09/2011 à 08:59 
Aller en bas de la page Revenir au message précédent Revenir en haut de la page
Nouvel astucien

Bonjour,

où en es-tu?

A+

Anonyme
 Posté le 12/09/2011 à 19:26 
Aller en bas de la page Revenir au message précédent Revenir en haut de la page
Nouvel astucien
witekop a écrit :

> Voila ce que vous m'avez demander

Bonjour,

> Non...

- Double-clique sur Ad-Remover pour l' exécuter
- Lance le nettoyage et poste le rapport (bis)

A+

Anonyme
 Posté le 12/09/2011 à 22:08 
Aller en bas de la page Revenir au message précédent Revenir en haut de la page
Nouvel astucien
witekop a écrit :

> J'èspère que cette fois c'est bon

Bonsoir,

>

http://www.teamxscript.org/adremoverNettoyage.html

A+

Anonyme
 Posté le 13/09/2011 à 13:22 
Aller en bas de la page Revenir au message précédent Revenir en haut de la page
Nouvel astucien
witekop a écrit :

> C'est très gentil mais trop compliqué pour moi 68 ans.

Bonjour,

> Tu dois le faire, ton Pc est infecté.

Téléchargez AD-Remover sur le bureau
image

Déconnectez-vous et fermez toutes les applications en cours
Cliquer sur "Ad-R.exe" pour lancer l'installation et laisser les paramètres par défaut .
Une fenêtre s'affichera Vous prévenant des risques de l'utilisation de ce logiciel
Cliquez sur "OUI"
Double cliquer sur l'icône Ad-remover sur le bureau
image
Au menu principal choisir l'optionScanner et Validez

Patientez pendant le travail de l'outil.
Poster le rapport qui apparait à la fin .
Il est sauvegardé aussi sous C:\Ad-report.log

Ensuite

Relancer Ad- remover , choisir l'option Nettoyer

Il y aura 2 rapports à poster après :Scanner et Nettoyer

A+

Ps : Merci Pear

Anonyme
 Posté le 13/09/2011 à 19:49 
Aller en bas de la page Revenir au message précédent Revenir en haut de la page
Nouvel astucien
witekop a écrit :

> J'ai fait ce que vous avez demander mais je me demande si je me suis pas trompé sur le deuxieme fichier???

Re,

> Euh, non.

1) Télécharge :
Malwarebytes' Anti-Malware : Ici

2) Lance-le :
Tuto : https://forum.pcastuces.com/malwarebytes_anti_malware____scan_rapide-f31s27.htm

3) Poste le rapport.

Ps : Tutoyons-nous

Anonyme
 Posté le 14/09/2011 à 12:06 
Aller en bas de la page Revenir au message précédent Revenir en haut de la page
Nouvel astucien
witekop a écrit :

> dis moi si tout vas bien

Bonjour,

>

Fais un scan antivirus avec Eset.
Tuto : https://forum.pcastuces.com/eset_online_scanner___nouvelle_version___tutoriel-f31s56.htm
Poste le rapport.

A+

Br_Fr
 Posté le 14/09/2011 à 20:02 
Aller en bas de la page Revenir au message précédent Revenir en haut de la page
  Maîtresse astucienne
witekop a écrit :

voullez vous que je vous envoie encore quelque chose

Bonsoir wiketop!

fredericx a écrit :Fais un scan antivirus avec Eset.

Poste le rapport.

donc il te reste à envoyer ce rapport!

Anonyme
 Posté le 14/09/2011 à 20:30 
Aller en bas de la page Revenir au message précédent Revenir en haut de la page
Nouvel astucien
gibrini13 a écrit :

> donc il te reste à envoyer ce rapport!

> C:\Program Files\ESET Online Scanner\log.txt ou C:\Program Files (x86) \ESET Online Scanner\log.tx

Br_Fr
 Posté le 14/09/2011 à 20:32 
Aller en bas de la page Revenir au message précédent Revenir en haut de la page
  Maîtresse astucienne

fredreicx*il est pourtant indiqué dans le tuto:

witekop
 Posté le 14/09/2011 à 22:43 
Aller en bas de la page Revenir au message précédent Revenir en haut de la page
Astucien

RE

Mais je je trouve que Esed nod 32 Antivirus

Et l'antivirus tourne toujour mais il n'y as plus que 5 comme tantôt



Modifié par witekop le 14/09/2011 22:46
Anonyme
 Posté le 15/09/2011 à 06:25 
Aller en bas de la page Revenir au message précédent Revenir en haut de la page
Nouvel astucien

Bonjour,

poste un rapport RSIT.

A+

witekop
 Posté le 15/09/2011 à 16:43 
Aller en bas de la page Revenir au message précédent Revenir en haut de la page
Astucien

Il n'accepte pas erreur 505 je vais essayer en 3x je divise le rapport

Logfile of random's system information tool 1.09 (written by random/random)
Run by van raemdonck at 2011-09-15 16:38:45
Microsoft Windows XP Édition familiale Service Pack 3
System drive C: has 10 GB (28%) free of 36 GB
Total RAM: 1791 MB (50% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 16:38:49, on 15/09/2011
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v8.00 (8.00.6001.18702)
Boot mode: Normal

Running processes:
C:\WINDOWSD\System32\smss.exe
C:\WINDOWSD\system32\winlogon.exe
C:\WINDOWSD\system32\services.exe
C:\WINDOWSD\system32\lsass.exe
C:\WINDOWSD\system32\nvsvc32.exe
C:\WINDOWSD\system32\svchost.exe
C:\WINDOWSD\System32\svchost.exe
C:\Program Files\Lavasoft\Ad-Aware\AAWService.exe
C:\Program Files\AVAST Software\Avast\AvastSvc.exe
C:\WINDOWSD\Explorer.EXE
C:\WINDOWSD\system32\spoolsv.exe
C:\Program Files\AVAST Software\Avast\avastUI.exe
C:\WINDOWSD\system32\RUNDLL32.EXE
C:\Program Files\Microsoft IntelliPoint\ipoint.exe
C:\WINDOWSD\system32\ctfmon.exe
C:\Program Files\Hewlett-Packard\Digital Imaging\bin\hpohmr08.exe
C:\Program Files\Hewlett-Packard\Digital Imaging\bin\hpotdd01.exe
C:\WINDOWSD\system32\dllhost.exe
C:\Program Files\Microsoft Office\Office\FINDFAST.EXE
C:\Program Files\Webshots\3.1.5.7619\Webshots.scr
C:\Program Files\CDBurnerXP\NMSAccessU.exe
C:\Program Files\Sony\PMB\PMBDeviceInfoProvider.exe
C:\Program Files\Hewlett-Packard\Digital Imaging\bin\hpoevm08.exe
C:\WINDOWSD\system32\svchost.exe
C:\Program Files\Clarus\Samsung SecretZone\SZAssistSVC.exe
C:\WINDOWSD\system32\SearchIndexer.exe
C:\Program Files\Hewlett-Packard\Digital Imaging\Bin\hpoSTS08.exe
C:\Program Files\Lavasoft\Ad-Aware\AAWTray.exe
C:\Documents and Settings\van raemdonck.VAN-FC00B2E8E73\Local Settings\Application Data\Google\Chrome\Application\chrome.exe
C:\Documents and Settings\van raemdonck.VAN-FC00B2E8E73\Local Settings\Application Data\Google\Chrome\Application\chrome.exe
C:\Documents and Settings\van raemdonck.VAN-FC00B2E8E73\Local Settings\Application Data\Google\Chrome\Application\chrome.exe
C:\Documents and Settings\van raemdonck.VAN-FC00B2E8E73\Local Settings\Application Data\Google\Chrome\Application\chrome.exe
C:\Documents and Settings\van raemdonck.VAN-FC00B2E8E73\Local Settings\Application Data\Google\Chrome\Application\chrome.exe
C:\Documents and Settings\van raemdonck.VAN-FC00B2E8E73\Local Settings\Application Data\Google\Chrome\Application\chrome.exe
C:\Documents and Settings\van raemdonck.VAN-FC00B2E8E73\Local Settings\Application Data\Google\Chrome\Application\chrome.exe
C:\WINDOWSD\system32\SearchProtocolHost.exe
C:\Documents and Settings\van raemdonck.VAN-FC00B2E8E73\Mes documents\Downloads\RSIT.exe
C:\Program Files\trend micro\van raemdonck.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = http://go.microsoft.com/fwlink/?linkid=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://fr.msn.com/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://fr.msn.com/
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
R3 - Default URLSearchHook is missing
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Fichiers communs\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: QFX Software KeyScrambler - {2B9F5787-88A5-4945-90E7-C4B18563BC5E} - C:\Program Files\KeyScrambler\KeyScramblerIE.dll
O2 - BHO: (no name) - {5C255C8A-E604-49b4-9D64-90988571CECB} - (no file)
O2 - BHO: Search Helper - {6EBF7485-159F-4bff-A14F-B9E3AAC4465B} - C:\Program Files\Microsoft\Search Enhancement Pack\Search Helper\SearchHelper.dll
O2 - BHO: avast! WebRep - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll
O2 - BHO: Windows Live Toolbar Helper - {E15A8DC0-8516-42A1-81EA-DC94EC1ACF10} - C:\Program Files\Windows Live\Toolbar\wltcore.dll
O2 - BHO: JQSIEStartDetectorImpl - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll
O3 - Toolbar: &Windows Live Toolbar - {21FA44EF-376D-4D53-9B0F-8A89D3229068} - C:\Program Files\Windows Live\Toolbar\wltcore.dll
O3 - Toolbar: avast! WebRep - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
O4 - HKLM\..\Run: [Alcmtr] ALCMTR.EXE
O4 - HKLM\..\Run: [TkBellExe] :"C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe" -osboot
O4 - HKLM\..\Run: [avast] "C:\Program Files\AVAST Software\Avast\avastUI.exe" /nogui
O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\WINDOWSD\system32\NvMcTray.dll,NvTaskbarInit
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWSD\system32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [nwiz] C:\Program Files\NVIDIA Corporation\nView\nwiz.exe /installquiet
O4 - HKLM\..\Run: [IntelliPoint] "C:\Program Files\Microsoft IntelliPoint\ipoint.exe"
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWSD\system32\ctfmon.exe
O4 - HKCU\..\Run: [Google Update] "C:\Documents and Settings\van raemdonck.VAN-FC00B2E8E73\Local Settings\Application Data\Google\Update\GoogleUpdate.exe" /c
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWSD\system32\CTFMON.EXE (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWSD\system32\CTFMON.EXE (User 'SERVICE RÉSEAU')
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWSD\system32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWSD\system32\CTFMON.EXE (User 'Default user')
O4 - Startup: Microsoft Recherche accélérée.lnk = C:\Program Files\Microsoft Office\Office\FINDFAST.EXE
O4 - Startup: Webshots.lnk = C:\Program Files\Webshots\3.1.5.7619\Launcher.exe
O4 - Startup: ~Disabled
O4 - Global Startup: hp psc 1000 series.lnk = ?
O4 - Global Startup: hpoddt01.exe.lnk = ?
O8 - Extra context menu item: Google Sidewiki... - res://C:\Program Files\Google\Google Toolbar\Component\GoogleToolbarDynamic_mui_en_89D8574934B26AC4.dll/cmsidewiki.html
O9 - Extra button: Ajout Direct - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra 'Tools' menuitem: &Ajout Direct dans Windows Live Writer - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra button: (no name) - {5C106A59-CC3C-4caa-81A4-6D909B5ACE23} - C:\Program Files\KeyScrambler\KeyScramblerIE.dll
O9 - Extra 'Tools' menuitem: &KeyScrambler Options - {5C106A59-CC3C-4caa-81A4-6D909B5ACE23} - C:\Program Files\KeyScrambler\KeyScramblerIE.dll
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWSD\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWSD\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O16 - DPF: {1C11B948-582A-433F-A98D-A8C4D5CC64F2} (20-20 3D Viewer) - http://kitchenplanner.ikea.com/be/Core/Player/2020PlayerAX_Win32.cab
O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} (MUWebControl Class) - http://www.update.microsoft.com/microsoftupdate/v6/V5Controls/en/x86/client/muweb_site.cab?1290803692265
O16 - DPF: {7530BFB8-7293-4D34-9923-61A11451AFC5} - http://download.eset.com/special/eos/OnlineScanner.cab
O16 - DPF: {B60CEFE7-2DD0-4B78-951A-509D951DB1F0} (ExtraFilm Uploader Control) - http://belgacom.extrafilm.be/ExtraFilmUploader6.cab
O16 - DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} (get_atlcom Class) - http://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab
O22 - SharedTaskScheduler: Pré-chargeur Browseui - {438755C2-A8BA-11D1-B96B-00A0C90312E1} - C:\WINDOWSD\system32\browseui.dll
O22 - SharedTaskScheduler: Démon de cache des catégories de composant - {8C7461EF-2B13-11d2-BE35-3078302C2030} - C:\WINDOWSD\system32\browseui.dll
O23 - Service: avast! Antivirus - AVAST Software - C:\Program Files\AVAST Software\Avast\AvastSvc.exe
O23 - Service: Service d'administration du Gestionnaire de disque logique (dmadmin) - Unknown owner - C:\WINDOWSD\System32\dmadmin.exe
O23 - Service: Journal des événements (Eventlog) - Unknown owner - C:\WINDOWSD\system32\services.exe
O23 - Service: Service Google Update (gupdate) (gupdate) - Unknown owner - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Service Google Update (gupdatem) (gupdatem) - Unknown owner - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Service COM de gravage de CD IMAPI (ImapiService) - Unknown owner - C:\WINDOWSD\system32\imapi.exe
O23 - Service: Java Quick Starter (JavaQuickStarterService) - Sun Microsystems, Inc. - C:\Program Files\Java\jre6\bin\jqs.exe
O23 - Service: Lavasoft Ad-Aware Service - Lavasoft Limited - C:\Program Files\Lavasoft\Ad-Aware\AAWService.exe
O23 - Service: Partage de Bureau à distance NetMeeting (mnmsrvc) - Unknown owner - C:\WINDOWSD\system32\mnmsrvc.exe
O23 - Service: NMSAccess - Unknown owner - C:\Program Files\CDBurnerXP\NMSAccessU.exe
O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWSD\system32\nvsvc32.exe
O23 - Service: Plug-and-Play (PlugPlay) - Unknown owner - C:\WINDOWSD\system32\services.exe
O23 - Service: PMBDeviceInfoProvider - Sony Corporation - C:\Program Files\Sony\PMB\PMBDeviceInfoProvider.exe
O23 - Service: Pml Driver HPZ12 - HP - C:\WINDOWSD\system32\HPZipm12.exe
O23 - Service: Gestionnaire de session d'aide sur le Bureau à distance (RDSessMgr) - Unknown owner - C:\WINDOWSD\system32\sessmgr.exe
O23 - Service: Carte à puce (SCardSvr) - Unknown owner - C:\WINDOWSD\System32\SCardSvr.exe
O23 - Service: Journaux et alertes de performance (SysmonLog) - Unknown owner - C:\WINDOWSD\system32\smlogsvc.exe
O23 - Service: SecretZone Assist Service (SZASSIST) - Clarus, Inc. - C:\Program Files\Clarus\Samsung SecretZone\SZAssistSVC.exe
O23 - Service: Cliché instantané de volume (VSS) - Unknown owner - C:\WINDOWSD\System32\vssvc.exe
O23 - Service: Carte de performance WMI (WmiApSrv) - Unknown owner - C:\WINDOWSD\system32\wbem\wmiapsrv.exe
O23 - Service: Service Partage réseau du Lecteur Windows Media (WMPNetworkSvc) - Unknown owner - C:\Program Files\Windows Media Player\WMPNetwk.exe

witekop
 Posté le 15/09/2011 à 16:47 
Aller en bas de la page Revenir au message précédent Revenir en haut de la page
Astucien

End of file - 10779 bytes

======Scheduled tasks folder======

C:\WINDOWSD\tasks\Ad-Aware Update (Weekly).job
C:\WINDOWSD\tasks\FRU Task #Hewlett-Packard#hp psc 1200 series#1311588251.job
C:\WINDOWSD\tasks\GlaryInitialize.job
C:\WINDOWSD\tasks\GoogleUpdateTaskMachineCore.job
C:\WINDOWSD\tasks\GoogleUpdateTaskMachineUA.job
C:\WINDOWSD\tasks\GoogleUpdateTaskUserS-1-5-21-484763869-515967899-725345543-1004Core.job
C:\WINDOWSD\tasks\GoogleUpdateTaskUserS-1-5-21-484763869-515967899-725345543-1004UA.job
C:\WINDOWSD\tasks\User_Feed_Synchronization-{ADD5ECA2-EDF6-4275-A305-70CDFAA2E32C}.job

=========Mozilla firefox=========

ProfilePath - C:\Documents and Settings\van raemdonck.VAN-FC00B2E8E73\Application Data\Mozilla\Firefox\Profiles\e9g2otwj.default

prefs.js - "browser.startup.homepage" - "https://www.deutschebank.be/fr/home-prospect.html|https://www.bnpparibasfortis.be/portal/start_BE_F.asp "
prefs.js - "extensions.enabledItems" - "{CAFEEFAC-0016-0000-0013-ABCDEFFEDCBA}:6.0.13, {CAFEEFAC-0016-0000-0014-ABCDEFFEDCBA}:6.0.14, {CAFEEFAC-0016-0000-0015-ABCDEFFEDCBA}:6.0.15, {20a82645-c095-46ed-80e3-08825760534b}:1.2.1, {CAFEEFAC-0016-0000-0020-ABCDEFFEDCBA}:6.0.20, jqs@sun.com:1.0, {CAFEEFAC-0016-0000-0022-ABCDEFFEDCBA}:6.0.22, {CAFEEFAC-0016-0000-0023-ABCDEFFEDCBA}:6.0.23, {CAFEEFAC-0016-0000-0024-ABCDEFFEDCBA}:6.0.24, wrc@avast.com:20110101, {972ce4c6-7e08-4474-a285-3208198ce6fd}:3.6.17"

"{20a82645-c095-46ed-80e3-08825760534b}"=C:\WINDOWSD\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension\
"jqs@sun.com"=C:\Program Files\Java\jre6\lib\deploy\jqs\ff
"wrc@avast.com"=C:\Program Files\AVAST Software\Avast\WebRep\FF
"belgiumeid@eid.belgium.be"=C:\Program Files\Mozilla Firefox\extensions\belgiumeid@eid.belgium.be


[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 10.1 Plugin
"Path"=C:\WINDOWSD\system32\Macromed\Flash\NPSWF32.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/ShockwavePlayer]
"Description"=Adobe Shockwave Player
"Path"=C:\WINDOWSD\system32\Adobe\Director\np32dsw.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@java.com/JavaPlugin]
"Description"=Oracle® Next Generation Java™ Plug-In
"Path"=C:\Program Files\Java\jre6\bin\new_plugin\npjp2.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0]
"Description"=Ag Player Plugin
"Path"=C:\Program Files\Microsoft Silverlight\4.0.60531.0\npctrl.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/WLPG,version=14.0.8117.0416]
"Description"=WLPG Install MIME type
"Path"=C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/WPF,version=3.5]
"Description"=Windows Presentation Foundation plug-in for Mozilla browsers
"Path"=C:\WINDOWSD\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@nosltd.com/getPlus+(R),version=1.6.2.103]
"Description"=getPlus+(R)
"Path"=C:\Program Files\NOS\bin\np_gp.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@tools.google.com/Google Update;version=3]
"Description"=Google Update
"Path"=C:\Program Files\Google\Update\1.3.21.65\npGoogleUpdate3.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@tools.google.com/Google Update;version=9]
"Description"=Google Update
"Path"=C:\Program Files\Google\Update\1.3.21.65\npGoogleUpdate3.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@videolan.org/vlc,version=1.1.5]
"Description"=VLC Multimedia Plugin
"Path"=D:\programmes\VLC\npvlc.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\Adobe Reader]
"Description"=Handles PDFs in-place in Firefox
"Path"=C:\Program Files\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll

C:\Program Files\Mozilla Firefox\extensions\
{972ce4c6-7e08-4474-a285-3208198ce6fd}
{CAFEEFAC-0016-0000-0013-ABCDEFFEDCBA}
{CAFEEFAC-0016-0000-0014-ABCDEFFEDCBA}
{CAFEEFAC-0016-0000-0015-ABCDEFFEDCBA}
{CAFEEFAC-0016-0000-0020-ABCDEFFEDCBA}
{CAFEEFAC-0016-0000-0022-ABCDEFFEDCBA}
{CAFEEFAC-0016-0000-0023-ABCDEFFEDCBA}
{CAFEEFAC-0016-0000-0024-ABCDEFFEDCBA}
{CAFEEFAC-0016-0000-0026-ABCDEFFEDCBA}

C:\Program Files\Mozilla Firefox\components\
binary.manifest
browsercomps.dll
nppl3260.xpt
nsILegitCheckPlugin.xpt
nsJSRealPlayerPlugin.xpt

C:\Program Files\Mozilla Firefox\plugins\
np-mswmp.dll
npdeployJava1.dll
npLegitCheckPlugin.dll
nppdf32.dll
nppdf32.FRA
nppl3260.dll
npqtplugin.dll
nprjplug.dll
nprpjplug.dll
np_gp.dll
WMP Firefox Plugin License.rtf
WMP Firefox Plugin RelNotes.txt

C:\Program Files\Mozilla Firefox\searchplugins\
amazon-france.xml
bing.xml
cnrtl-tlfi-fr.xml
eBay-france.xml
google.xml
wikipedia-fr.xml
yahoo-france.xml

C:\Documents and Settings\van raemdonck.VAN-FC00B2E8E73\Application Data\Mozilla\Firefox\Profiles\e9g2otwj.default\extensions\
ChoiceGuard@Microsoft
keyscrambler@qfx.software.corporation
{20a82645-c095-46ed-80e3-08825760534b}

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}]
Adobe PDF Link Helper - C:\Program Files\Fichiers communs\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2011-06-06 63912]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{2B9F5787-88A5-4945-90E7-C4B18563BC5E}]
KeyScramblerBHO Class - C:\Program Files\KeyScrambler\KeyScramblerIE.dll [2011-07-18 915256]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{5C255C8A-E604-49b4-9D64-90988571CECB}]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{6EBF7485-159F-4bff-A14F-B9E3AAC4465B}]
Search Helper - C:\Program Files\Microsoft\Search Enhancement Pack\Search Helper\SearchHelper.dll [2009-01-14 92504]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06}]
avast! WebRep - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2011-09-06 806456]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
Programme d'aide de l'Assistant de connexion Windows Live - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2009-01-22 408448]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre6\bin\jp2ssv.dll [2011-02-03 41760]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E15A8DC0-8516-42A1-81EA-DC94EC1ACF10}]
Windows Live Toolbar Helper - C:\Program Files\Windows Live\Toolbar\wltcore.dll [2010-04-16 1067872]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E7E6F031-17CE-4C07-BC86-EABFE594F69C}]
JQSIEStartDetectorImpl Class - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll [2011-02-03 79648]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{21FA44EF-376D-4D53-9B0F-8A89D3229068} - &Windows Live Toolbar - C:\Program Files\Windows Live\Toolbar\wltcore.dll [2010-04-16 1067872]
{8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - avast! WebRep - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2011-09-06 806456]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"Alcmtr"=C:\WINDOWSD\ALCMTR.EXE [2005-05-03 69632]
"TkBellExe"=:C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe -osboot []
"avast"=C:\Program Files\AVAST Software\Avast\avastUI.exe [2011-09-06 3722416]
"NvMediaCenter"=C:\WINDOWSD\system32\NvMcTray.dll [2011-02-23 111208]
"NvCplDaemon"=C:\WINDOWSD\system32\NvCpl.dll [2011-02-23 13880424]
"nwiz"=C:\Program Files\NVIDIA Corporation\nView\nwiz.exe [2010-11-04 1753192]
"IntelliPoint"=C:\Program Files\Microsoft IntelliPoint\ipoint.exe [2010-07-21 1797008]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"ctfmon.exe"=C:\WINDOWSD\system32\ctfmon.exe [2008-04-14 15360]
"Google Update"=C:\Documents and Settings\van raemdonck.VAN-FC00B2E8E73\Local Settings\Application Data\Google\Update\GoogleUpdate.exe [2011-06-08 136176]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Load]
 []

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Run]
 []

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Documents and Settings^All Users.WINDOWSD^Menu Démarrer^Programmes^Démarrage^Adobe Reader Speed Launch.lnk]
[]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Documents and Settings^All Users.WINDOWSD^Menu Démarrer^Programmes^Démarrage^Windows Search.lnk]
C:\PROGRA~1\Windows Desktop Search\WindowsSearch.exe [2008-05-26 123904]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Documents and Settings^van raemdonck.VAN-FC00B2E8E73^Menu Démarrer^Programmes^Démarrage^Webshots Daily Features.lnk]
[]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Documents and Settings^van raemdonck.VAN-FC00B2E8E73^Menu Démarrer^Programmes^Démarrage^WebshotsWidget.lnk]
[]

C:\Documents and Settings\All Users.WINDOWSD\Menu Démarrer\Programmes\Démarrage
hp psc 1000 series.lnk - C:\Program Files\Hewlett-Packard\Digital Imaging\bin\hpohmr08.exe
hpoddt01.exe.lnk - C:\Program Files\Hewlett-Packard\Digital Imaging\bin\hpotdd01.exe

C:\Documents and Settings\van raemdonck.VAN-FC00B2E8E73\Menu Démarrer\Programmes\Démarrage
Microsoft Recherche accélérée.lnk - C:\Program Files\Microsoft Office\Office\FINDFAST.EXE
Webshots.lnk - C:\Program Files\Webshots\3.1.5.7619\Launcher.exe
~Disabled

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\WINDOWSD\system32\WPDShServiceObj.dll [2006-10-18 133632]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{56F9679E-7826-4C84-81F3-532071A8BCC5}"=C:\Program Files\Windows Desktop Search\MSNLNamespaceMgr.dll [2009-05-24 304128]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Lavasoft Ad-Aware Service]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Lavasoft Ad-Aware Service]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{1a3e09be-1e45-494b-9174-d7385b45bbf5}]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=145

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"HonorAutoRunSetting"=1

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"C:\WINDOWSD\system32\usmt\migwiz.exe"="C:\WINDOWSD\system32\usmt\migwiz.exe:*:Enabled:Assistant Transfert de fichiers et de paramètres"
"C:\Program Files\Messenger\msmsgs.exe"="C:\Program Files\Messenger\msmsgs.exe:*:Enabled:Windows Messenger"
"C:\Program Files\Windows Live\Messenger\wlcsdk.exe"="C:\Program Files\Windows Live\Messenger\wlcsdk.exe:*:Enabled:Windows Live Call"
"C:\Program Files\Windows Live\Messenger\msnmsgr.exe"="C:\Program Files\Windows Live\Messenger\msnmsgr.exe:*:Enabled:Windows Live Messenger"
"C:\Program Files\Windows Live\Sync\WindowsLiveSync.exe"="C:\Program Files\Windows Live\Sync\WindowsLiveSync.exe:*:Enabled:Windows Live FolderShare"
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
"C:\Program Files\LimeWire\LimeWire.exe"="C:\Program Files\LimeWire\LimeWire.exe:*:Enabled:LimeWire"
"C:\Program Files\VideoLAN\VLC\vlc.exe"="C:\Program Files\VideoLAN\VLC\vlc.exe:*:Enabled:VLC media player"
"C:\Program Files\eMule\emule.exe"="C:\Program Files\eMule\emule.exe:*:Enabled:eMule"
"C:\Program Files\BearShare Applications\BearShare\BearShare.exe"="C:\Program Files\BearShare Applications\BearShare\BearShare.exe:*:Enabled:BearShare"
"C:\Program Files\Google\Google Earth\client\googleearth.exe"="C:\Program Files\Google\Google Earth\client\googleearth.exe:*:Enabled:Google Earth"
"C:\Program Files\Vuze\Azureus.exe"="C:\Program Files\Vuze\Azureus.exe:*:Enabled:Azureus / Vuze"

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"C:\Program Files\Windows Live\Messenger\wlcsdk.exe"="C:\Program Files\Windows Live\Messenger\wlcsdk.exe:*:Enabled:Windows Live Call"
"C:\Program Files\Windows Live\Messenger\msnmsgr.exe"="C:\Program Files\Windows Live\Messenger\msnmsgr.exe:*:Enabled:Windows Live Messenger"
"C:\Program Files\Windows Live\Sync\WindowsLiveSync.exe"="C:\Program Files\Windows Live\Sync\WindowsLiveSync.exe:*:Enabled:Windows Live FolderShare"
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
"C:\Program Files\BearShare Applications\BearShare\BearShare.exe"="C:\Program Files\BearShare Applications\BearShare\BearShare.exe:*:Enabled:BearShare"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"midimapper"=midimap.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msadpcm"=msadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.trspch"=tssoft32.acm
"vidc.cvid"=iccvid.dll
"vidc.I420"=msh263.drv
"vidc.iv31"=ir32_32.dll
"vidc.iv32"=ir32_32.dll
"vidc.iv41"=ir41_32.ax
"vidc.iyuv"=iyuv_32.dll
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"vidc.uyvy"=msyuv.dll
"vidc.yuy2"=msyuv.dll
"vidc.yvu9"=tsbyuv.dll
"vidc.yvyu"=msyuv.dll
"wavemapper"=msacm32.drv
"msacm.msg723"=msg723.acm
"vidc.M263"=msh263.drv
"vidc.M261"=msh261.drv
"msacm.msaudio1"=msaud32.acm
"msacm.sl_anet"=sl_anet.acm
"msacm.iac2"=C:\WINDOWSD\system32\iac25_32.ax
"vidc.iv50"=ir50_32.dll
"msacm.l3acm"=C:\WINDOWSD\system32\l3codeca.acm
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"msacm.siren"=sirenacm.dll
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux1"=wdmaud.drv

======List of files/folders created in the last 1 month======

2011-09-14 21:37:41 ----D---- C:\Documents and Settings\van raemdonck.VAN-FC00B2E8E73\Application Data\ESTsoft
2011-09-14 12:46:53 ----HDC---- C:\WINDOWSD\$NtUninstallKB2616676$
2011-09-14 12:45:10 ----A---- C:\WINDOWSD\imsins.BAK
2011-09-14 12:45:07 ----HDC---- C:\WINDOWSD\$NtUninstallKB2570947$
2011-09-13 16:32:17 ----A---- C:\Ad-Report-CLEAN[2].txt
2011-09-13 16:22:31 ----A---- C:\Ad-Report-SCAN[5].txt
2011-09-01 01:53:55 ----D---- C:\Program Files\OCCT

======List of files/folders modified in the last 1 month======

2011-09-15 16:38:48 ----D---- C:\WINDOWSD\Prefetch
2011-09-15 16:38:46 ----D---- C:\Program Files\Trend Micro
2011-09-15 16:14:20 ----D---- C:\WINDOWSD\Temp
2011-09-15 16:00:09 ----D---- C:\WINDOWSD\system32\CatRoot2
2011-09-15 15:59:45 ----SD---- C:\WINDOWSD\Tasks
2011-09-15 15:59:35 ----AH---- C:\WINDOWSD\system32\FFASTLOG.TXT
2011-09-15 15:59:34 ----D---- C:\WINDOWSD\Registration
2011-09-15 13:21:21 ----A---- C:\WINDOWSD\SchedLgU.Txt
2011-09-15 12:54:50 ----D---- C:\WINDOWSD\Minidump
2011-09-15 12:54:50 ----D---- C:\WINDOWSD
2011-09-15 11:14:25 ----D---- C:\WINDOWSD\system32\drivers
2011-09-15 11:14:25 ----D---- C:\WINDOWSD\system32
2011-09-15 11:14:23 ----HD---- C:\WINDOWSD\inf
2011-09-15 09:07:03 ----D---- C:\Program Files\Mozilla Firefox
2011-09-14 23:32:15 ----D---- C:\Config.Msi
2011-09-14 23:30:29 ----SHD---- C:\WINDOWSD\Installer
2011-09-14 23:27:06 ----RD---- C:\Program Files
2011-09-14 12:46:54 ----RSHDC---- C:\WINDOWSD\system32\dllcache
2011-09-14 12:45:32 ----D---- C:\WINDOWSD\Debug
2011-09-14 12:45:29 ----A---- C:\WINDOWSD\system32\MRT.exe
2011-09-14 12:44:46 ----HD---- C:\WINDOWSD\$hf_mig$
2011-09-13 18:53:50 ----D---- C:\Program Files\Internet Explorer
2011-09-12 20:45:42 ----D---- C:\WINDOWSD\Microsoft.NET
2011-09-12 20:44:48 ----RSD---- C:\WINDOWSD\assembly
2011-09-12 15:53:42 ----D---- C:\WINDOWSD\network diagnostic
2011-09-10 23:58:50 ----D---- C:\Program Files\MyDefrag v4.3.1
2011-09-09 18:34:14 ----D---- C:\WINDOWSD\system32\config
2011-09-09 18:33:58 ----D---- C:\WINDOWSD\system32\wbem
2011-09-09 13:51:56 ----D---- C:\Program Files\Fichiers communs\Microsoft Shared
2011-09-09 11:53:19 ----D---- C:\Program Files\Ad-remover
2011-09-09 11:12:01 ----A---- C:\WINDOWSD\system32\crypt32.dll
2011-09-07 23:45:28 ----ASH---- C:\boot.ini
2011-09-06 22:45:29 ----A---- C:\WINDOWSD\system32\aswBoot.exe
2011-09-02 21:08:20 ----D---- C:\WINDOWSD\WinSxS
2011-09-02 21:08:13 ----A---- C:\WINDOWSD\system32\PerfStringBackup.INI
2011-09-01 18:59:39 ----D---- C:\Program Files\Glary Utilities
2011-09-01 09:51:32 ----D---- C:\Program Files\Bonjour
2011-08-29 22:54:08 ----A---- C:\WINDOWSD\win.ini
2011-08-29 22:52:20 ----D---- C:\WINDOWS
2011-08-23 14:30:28 ----SD---- C:\Documents and Settings\van raemdonck.VAN-FC00B2E8E73\Application Data\Microsoft
2011-08-23 14:22:05 ----SHD---- C:\System Volume Information
2011-08-23 14:22:05 ----D---- C:\WINDOWSD\system32\Restore
2011-08-23 11:10:28 ----D---- C:\Documents and Settings

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 hotcore3;Hotcore helper; C:\WINDOWSD\system32\DRIVERS\hotcore3.sys [2008-12-13 40496]
R0 Lbd;Lbd; C:\WINDOWSD\system32\DRIVERS\Lbd.sys [2010-07-12 64288]
R1 Aavmker4;avast! Asynchronous Virus Monitor; C:\WINDOWSD\system32\drivers\Aavmker4.sys [2011-09-06 30808]
R1 AFS2K;AFS2k; C:\WINDOWSD\system32\drivers\AFS2K.sys [2011-07-25 82380]
R1 AmdK8;Pilote de processeur AMD; C:\WINDOWSD\system32\DRIVERS\AmdK8.sys [2006-07-01 43520]
R1 aswRdr;aswRdr; C:\WINDOWSD\system32\drivers\aswRdr.sys [2011-09-06 34392]
R1 aswSnx;aswSnx; C:\WINDOWSD\system32\drivers\aswSnx.sys [2011-09-06 442200]
R1 aswSP;aswSP; C:\WINDOWSD\system32\drivers\aswSP.sys [2011-09-06 320856]
R1 aswTdi;avast! Network Shield Support; C:\WINDOWSD\system32\drivers\aswTdi.sys [2011-09-06 52568]
R1 WmiAcpi;Interface de gestion Microsoft Windows pour ACPI; C:\WINDOWSD\system32\DRIVERS\wmiacpi.sys [2008-04-13 8832]
R2 aswFsBlk;aswFsBlk; C:\WINDOWSD\system32\drivers\aswFsBlk.sys [2011-09-06 20568]
R2 aswMon2;avast! Standard Shield Support; C:\WINDOWSD\system32\drivers\aswMon2.sys [2011-09-06 110552]
R2 irda;Protocole IrDA; C:\WINDOWSD\system32\DRIVERS\irda.sys [2008-04-13 88192]
R2 StarOpen;StarOpen; C:\WINDOWSD\system32\drivers\StarOpen.sys [2009-11-12 5504]
R2 stltrk2k;STLTR2K; C:\WINDOWSD\System32\Drivers\stltrk2k.sys [2000-06-02 13806]
R3 HDAudBus;Pilote de bus Microsoft UAA pour High Definition Audio; C:\WINDOWSD\system32\DRIVERS\HDAudBus.sys [2008-04-13 144384]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\WINDOWSD\system32\drivers\RtkHDAud.sys [2007-11-27 4630016]
R3 irsir;Pilote série infrarouge Microsoft; C:\WINDOWSD\system32\DRIVERS\irsir.sys [2001-08-17 18688]
R3 KeyScrambler;KeyScrambler; C:\WINDOWSD\System32\drivers\keyscrambler.sys [2011-04-25 225856]
R3 Lavasoft Kernexplorer;Lavasoft helper driver; \??\C:\Program Files\Lavasoft\Ad-Aware\KernExplorer.sys []
R3 mdf16;mdf16; \??\C:\Program Files\Clarus\Samsung SecretZone\mdf16.sys []
R3 mvd22;mvd22; \??\C:\Program Files\Clarus\Samsung SecretZone\mvd22.sys []
R3 nv;nv; C:\WINDOWSD\system32\DRIVERS\nv4_mini.sys [2011-02-23 9888384]
R3 NVENETFD;NVIDIA nForce Networking Controller Driver; C:\WINDOWSD\system32\DRIVERS\NVENETFD.sys [2007-03-06 58752]
R3 nvnetbus;NVIDIA Network Bus Enumerator; C:\WINDOWSD\system32\DRIVERS\nvnetbus.sys [2007-03-06 19968]
R3 nvsmu;nvsmu; C:\WINDOWSD\system32\DRIVERS\nvsmu.sys [2007-02-16 12032]
R3 Rasirda;Miniport réseau étendu (IrDA); C:\WINDOWSD\system32\DRIVERS\rasirda.sys [2001-08-17 19584]
S3 ACSSCR;ACR38 Smart Card Reader; C:\WINDOWSD\system32\DRIVERS\a38usb.sys [2011-06-04 33536]
S3 HidUsb;Pilote de classe HID Microsoft; C:\WINDOWSD\system32\DRIVERS\hidusb.sys [2008-04-13 10368]
S3 HPZid412;IEEE-1284.4 Driver HPZid412; C:\WINDOWSD\system32\DRIVERS\HPZid412.sys [2003-03-09 51024]
S3 HPZipr12;Print Class Driver for IEEE-1284.4 HPZipr12; C:\WINDOWSD\system32\DRIVERS\HPZipr12.sys [2003-03-09 16080]
S3 HPZius12;USB to IEEE-1284.4 Translation Driver HPZius12; C:\WINDOWSD\system32\DRIVERS\HPZius12.sys [2003-03-09 21456]
S3 usbaudio;Pilote USB audio (WDM); C:\WINDOWSD\system32\drivers\usbaudio.sys [2008-04-13 60032]
S3 usbccgp;Pilote parent générique USB Microsoft; C:\WINDOWSD\system32\DRIVERS\usbccgp.sys [2008-04-13 32128]
S3 usbprint;Classe d'imprimantes USB Microsoft; C:\WINDOWSD\system32\DRIVERS\usbprint.sys [2008-04-13 25856]
S3 usbscan;Pilote de scanneur USB; C:\WINDOWSD\system32\DRIVERS\usbscan.sys [2008-04-13 15104]
S3 USBSTOR;Pilote de stockage de masse USB; C:\WINDOWSD\system32\DRIVERS\USBSTOR.SYS [2008-04-13 26368]
S3 Wdf01000;Wdf01000; C:\WINDOWSD\system32\DRIVERS\Wdf01000.sys [2006-11-02 492000]
S3 WudfPf;Windows Driver Foundation - User-mode Driver Framework Platform Driver; C:\WINDOWSD\system32\DRIVERS\WudfPf.sys [2006-09-28 77568]
S3 WudfRd;Windows Driver Foundation - User-mode Driver Framework Reflector; C:\WINDOWSD\system32\DRIVERS\wudfrd.sys [2006-09-28 82944]
S3 xusb21;Xbox 360 Wireless Receiver Driver Service 21; C:\WINDOWSD\system32\DRIVERS\xusb21.sys [2007-08-28 55808]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 avast! Antivirus;avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [2011-09-06 44768]
R2 Irmon;Moniteur infrarouge; C:\WINDOWSD\system32\svchost.exe [2008-04-14 14336]
R2 Lavasoft Ad-Aware Service;Lavasoft Ad-Aware Service; C:\Program Files\Lavasoft\Ad-Aware\AAWService.exe [2011-09-02 2152152]
R2 NMSAccess;NMSAccess; C:\Program Files\CDBurnerXP\NMSAccessU.exe [2010-03-04 71096]
R2 NVSvc;NVIDIA Display Driver Service; C:\WINDOWSD\system32\nvsvc32.exe [2011-02-23 156776]
R2 PMBDeviceInfoProvider;PMBDeviceInfoProvider; C:\Program Files\Sony\PMB\PMBDeviceInfoProvider.exe [2011-03-15 428384]
R2 SZASSIST;SecretZone Assist Service; C:\Program Files\Clarus\Samsung SecretZone\SZAssistSVC.exe [2010-08-30 90112]
R2 WSearch;Windows Search; C:\WINDOWSD\system32\SearchIndexer.exe [2008-05-26 439808]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\WINDOWSD\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-03-18 130384]
S2 gupdate;Service Google Update (gupdate); C:\Program Files\Google\Update\GoogleUpdate.exe [2010-01-28 135664]
S2 JavaQuickStarterService;Java Quick Starter; C:\Program Files\Java\jre6\bin\jqs.exe [2011-02-02 153376]
S3 aspnet_state;Service d'état ASP.NET; C:\WINDOWSD\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe [2008-07-25 34312]
S3 FontCache3.0.0.0;Windows Presentation Foundation Font Cache 3.0.0.0; C:\WINDOWSD\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe [2008-07-29 46104]
S3 gupdatem;Service Google Update (gupdatem); C:\Program Files\Google\Update\GoogleUpdate.exe [2010-01-28 135664]
S3 idsvc;Windows CardSpace; C:\WINDOWSD\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe [2008-07-29 881664]
S3 nosGetPlusHelper;getPlus(R) Helper 3004; C:\WINDOWSD\System32\svchost.exe [2008-04-14 14336]
S3 Pml Driver HPZ12;Pml Driver HPZ12; C:\WINDOWSD\system32\HPZipm12.exe [2003-03-09 65795]
S3 WinRM;Windows Remote Management (WS-Management); C:\WINDOWSD\system32\svchost.exe [2008-04-14 14336]
S3 WMPNetworkSvc;Service Partage réseau du Lecteur Windows Media; C:\Program Files\Windows Media Player\WMPNetwk.exe [2006-11-03 918016]
S3 WPFFontCache_v0400;Windows Presentation Foundation Font Cache 4.0.0.0; C:\WINDOWSD\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe [2010-03-18 753504]
S3 WudfSvc;Windows Driver Foundation - User-mode Driver Framework; C:\WINDOWSD\system32\svchost.exe [2008-04-14 14336]
S4 clr_optimization_v2.0.50727_32;.NET Runtime Optimization Service v2.0.50727_X86; C:\WINDOWSD\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe [2008-07-25 69632]
S4 NetTcpPortSharing;Service de partage de ports Net.Tcp; C:\WINDOWSD\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe [2008-07-29 132096

End of file - 10779 bytes

======Scheduled tasks folder======

C:\WINDOWSD\tasks\Ad-Aware Update (Weekly).job
C:\WINDOWSD\tasks\FRU Task #Hewlett-Packard#hp psc 1200 series#1311588251.job
C:\WINDOWSD\tasks\GlaryInitialize.job
C:\WINDOWSD\tasks\GoogleUpdateTaskMachineCore.job
C:\WINDOWSD\tasks\GoogleUpdateTaskMachineUA.job
C:\WINDOWSD\tasks\GoogleUpdateTaskUserS-1-5-21-484763869-515967899-725345543-1004Core.job
C:\WINDOWSD\tasks\GoogleUpdateTaskUserS-1-5-21-484763869-515967899-725345543-1004UA.job
C:\WINDOWSD\tasks\User_Feed_Synchronization-{ADD5ECA2-EDF6-4275-A305-70CDFAA2E32C}.job

=========Mozilla firefox=========

ProfilePath - C:\Documents and Settings\van raemdonck.VAN-FC00B2E8E73\Application Data\Mozilla\Firefox\Profiles\e9g2otwj.default

prefs.js - "browser.startup.homepage" - "https://www.deutschebank.be/fr/home-prospect.html|https://www.bnpparibasfortis.be/portal/start_BE_F.asp "
prefs.js - "extensions.enabledItems" - "{CAFEEFAC-0016-0000-0013-ABCDEFFEDCBA}:6.0.13, {CAFEEFAC-0016-0000-0014-ABCDEFFEDCBA}:6.0.14, {CAFEEFAC-0016-0000-0015-ABCDEFFEDCBA}:6.0.15, {20a82645-c095-46ed-80e3-08825760534b}:1.2.1, {CAFEEFAC-0016-0000-0020-ABCDEFFEDCBA}:6.0.20, jqs@sun.com:1.0, {CAFEEFAC-0016-0000-0022-ABCDEFFEDCBA}:6.0.22, {CAFEEFAC-0016-0000-0023-ABCDEFFEDCBA}:6.0.23, {CAFEEFAC-0016-0000-0024-ABCDEFFEDCBA}:6.0.24, wrc@avast.com:20110101, {972ce4c6-7e08-4474-a285-3208198ce6fd}:3.6.17"

"{20a82645-c095-46ed-80e3-08825760534b}"=C:\WINDOWSD\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension\
"jqs@sun.com"=C:\Program Files\Java\jre6\lib\deploy\jqs\ff
"wrc@avast.com"=C:\Program Files\AVAST Software\Avast\WebRep\FF
"belgiumeid@eid.belgium.be"=C:\Program Files\Mozilla Firefox\extensions\belgiumeid@eid.belgium.be


[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 10.1 Plugin
"Path"=C:\WINDOWSD\system32\Macromed\Flash\NPSWF32.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/ShockwavePlayer]
"Description"=Adobe Shockwave Player
"Path"=C:\WINDOWSD\system32\Adobe\Director\np32dsw.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@java.com/JavaPlugin]
"Description"=Oracle® Next Generation Java™ Plug-In
"Path"=C:\Program Files\Java\jre6\bin\new_plugin\npjp2.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0]
"Description"=Ag Player Plugin
"Path"=C:\Program Files\Microsoft Silverlight\4.0.60531.0\npctrl.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/WLPG,version=14.0.8117.0416]
"Description"=WLPG Install MIME type
"Path"=C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/WPF,version=3.5]
"Description"=Windows Presentation Foundation plug-in for Mozilla browsers
"Path"=C:\WINDOWSD\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@nosltd.com/getPlus+(R),version=1.6.2.103]
"Description"=getPlus+(R)
"Path"=C:\Program Files\NOS\bin\np_gp.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@tools.google.com/Google Update;version=3]
"Description"=Google Update
"Path"=C:\Program Files\Google\Update\1.3.21.65\npGoogleUpdate3.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@tools.google.com/Google Update;version=9]
"Description"=Google Update
"Path"=C:\Program Files\Google\Update\1.3.21.65\npGoogleUpdate3.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@videolan.org/vlc,version=1.1.5]
"Description"=VLC Multimedia Plugin
"Path"=D:\programmes\VLC\npvlc.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\Adobe Reader]
"Description"=Handles PDFs in-place in Firefox
"Path"=C:\Program Files\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll

C:\Program Files\Mozilla Firefox\extensions\
{972ce4c6-7e08-4474-a285-3208198ce6fd}
{CAFEEFAC-0016-0000-0013-ABCDEFFEDCBA}
{CAFEEFAC-0016-0000-0014-ABCDEFFEDCBA}
{CAFEEFAC-0016-0000-0015-ABCDEFFEDCBA}
{CAFEEFAC-0016-0000-0020-ABCDEFFEDCBA}
{CAFEEFAC-0016-0000-0022-ABCDEFFEDCBA}
{CAFEEFAC-0016-0000-0023-ABCDEFFEDCBA}
{CAFEEFAC-0016-0000-0024-ABCDEFFEDCBA}
{CAFEEFAC-0016-0000-0026-ABCDEFFEDCBA}

C:\Program Files\Mozilla Firefox\components\
binary.manifest
browsercomps.dll
nppl3260.xpt
nsILegitCheckPlugin.xpt
nsJSRealPlayerPlugin.xpt

C:\Program Files\Mozilla Firefox\plugins\
np-mswmp.dll
npdeployJava1.dll
npLegitCheckPlugin.dll
nppdf32.dll
nppdf32.FRA
nppl3260.dll
npqtplugin.dll
nprjplug.dll
nprpjplug.dll
np_gp.dll
WMP Firefox Plugin License.rtf
WMP Firefox Plugin RelNotes.txt

C:\Program Files\Mozilla Firefox\searchplugins\
amazon-france.xml
bing.xml
cnrtl-tlfi-fr.xml
eBay-france.xml
google.xml
wikipedia-fr.xml
yahoo-france.xml

C:\Documents and Settings\van raemdonck.VAN-FC00B2E8E73\Application Data\Mozilla\Firefox\Profiles\e9g2otwj.default\extensions\
ChoiceGuard@Microsoft
keyscrambler@qfx.software.corporation
{20a82645-c095-46ed-80e3-08825760534b}

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}]
Adobe PDF Link Helper - C:\Program Files\Fichiers communs\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2011-06-06 63912]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{2B9F5787-88A5-4945-90E7-C4B18563BC5E}]
KeyScramblerBHO Class - C:\Program Files\KeyScrambler\KeyScramblerIE.dll [2011-07-18 915256]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{5C255C8A-E604-49b4-9D64-90988571CECB}]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{6EBF7485-159F-4bff-A14F-B9E3AAC4465B}]

witekop
 Posté le 15/09/2011 à 16:48 
Aller en bas de la page Revenir au message précédent Revenir en haut de la page
Astucien

End of file - 10779 bytes

======Scheduled tasks folder======

C:\WINDOWSD\tasks\Ad-Aware Update (Weekly).job
C:\WINDOWSD\tasks\FRU Task #Hewlett-Packard#hp psc 1200 series#1311588251.job
C:\WINDOWSD\tasks\GlaryInitialize.job
C:\WINDOWSD\tasks\GoogleUpdateTaskMachineCore.job
C:\WINDOWSD\tasks\GoogleUpdateTaskMachineUA.job
C:\WINDOWSD\tasks\GoogleUpdateTaskUserS-1-5-21-484763869-515967899-725345543-1004Core.job
C:\WINDOWSD\tasks\GoogleUpdateTaskUserS-1-5-21-484763869-515967899-725345543-1004UA.job
C:\WINDOWSD\tasks\User_Feed_Synchronization-{ADD5ECA2-EDF6-4275-A305-70CDFAA2E32C}.job

=========Mozilla firefox=========

ProfilePath - C:\Documents and Settings\van raemdonck.VAN-FC00B2E8E73\Application Data\Mozilla\Firefox\Profiles\e9g2otwj.default

prefs.js - "browser.startup.homepage" - "https://www.deutschebank.be/fr/home-prospect.html|https://www.bnpparibasfortis.be/portal/start_BE_F.asp "
prefs.js - "extensions.enabledItems" - "{CAFEEFAC-0016-0000-0013-ABCDEFFEDCBA}:6.0.13, {CAFEEFAC-0016-0000-0014-ABCDEFFEDCBA}:6.0.14, {CAFEEFAC-0016-0000-0015-ABCDEFFEDCBA}:6.0.15, {20a82645-c095-46ed-80e3-08825760534b}:1.2.1, {CAFEEFAC-0016-0000-0020-ABCDEFFEDCBA}:6.0.20, jqs@sun.com:1.0, {CAFEEFAC-0016-0000-0022-ABCDEFFEDCBA}:6.0.22, {CAFEEFAC-0016-0000-0023-ABCDEFFEDCBA}:6.0.23, {CAFEEFAC-0016-0000-0024-ABCDEFFEDCBA}:6.0.24, wrc@avast.com:20110101, {972ce4c6-7e08-4474-a285-3208198ce6fd}:3.6.17"

"{20a82645-c095-46ed-80e3-08825760534b}"=C:\WINDOWSD\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension\
"jqs@sun.com"=C:\Program Files\Java\jre6\lib\deploy\jqs\ff
"wrc@avast.com"=C:\Program Files\AVAST Software\Avast\WebRep\FF
"belgiumeid@eid.belgium.be"=C:\Program Files\Mozilla Firefox\extensions\belgiumeid@eid.belgium.be


[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 10.1 Plugin
"Path"=C:\WINDOWSD\system32\Macromed\Flash\NPSWF32.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/ShockwavePlayer]
"Description"=Adobe Shockwave Player
"Path"=C:\WINDOWSD\system32\Adobe\Director\np32dsw.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@java.com/JavaPlugin]
"Description"=Oracle® Next Generation Java™ Plug-In
"Path"=C:\Program Files\Java\jre6\bin\new_plugin\npjp2.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0]
"Description"=Ag Player Plugin
"Path"=C:\Program Files\Microsoft Silverlight\4.0.60531.0\npctrl.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/WLPG,version=14.0.8117.0416]
"Description"=WLPG Install MIME type
"Path"=C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/WPF,version=3.5]
"Description"=Windows Presentation Foundation plug-in for Mozilla browsers
"Path"=C:\WINDOWSD\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@nosltd.com/getPlus+(R),version=1.6.2.103]
"Description"=getPlus+(R)
"Path"=C:\Program Files\NOS\bin\np_gp.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@tools.google.com/Google Update;version=3]
"Description"=Google Update
"Path"=C:\Program Files\Google\Update\1.3.21.65\npGoogleUpdate3.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@tools.google.com/Google Update;version=9]
"Description"=Google Update
"Path"=C:\Program Files\Google\Update\1.3.21.65\npGoogleUpdate3.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@videolan.org/vlc,version=1.1.5]
"Description"=VLC Multimedia Plugin
"Path"=D:\programmes\VLC\npvlc.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\Adobe Reader]
"Description"=Handles PDFs in-place in Firefox
"Path"=C:\Program Files\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll

C:\Program Files\Mozilla Firefox\extensions\
{972ce4c6-7e08-4474-a285-3208198ce6fd}
{CAFEEFAC-0016-0000-0013-ABCDEFFEDCBA}
{CAFEEFAC-0016-0000-0014-ABCDEFFEDCBA}
{CAFEEFAC-0016-0000-0015-ABCDEFFEDCBA}
{CAFEEFAC-0016-0000-0020-ABCDEFFEDCBA}
{CAFEEFAC-0016-0000-0022-ABCDEFFEDCBA}
{CAFEEFAC-0016-0000-0023-ABCDEFFEDCBA}
{CAFEEFAC-0016-0000-0024-ABCDEFFEDCBA}
{CAFEEFAC-0016-0000-0026-ABCDEFFEDCBA}

C:\Program Files\Mozilla Firefox\components\
binary.manifest
browsercomps.dll
nppl3260.xpt
nsILegitCheckPlugin.xpt
nsJSRealPlayerPlugin.xpt

C:\Program Files\Mozilla Firefox\plugins\
np-mswmp.dll
npdeployJava1.dll
npLegitCheckPlugin.dll
nppdf32.dll
nppdf32.FRA
nppl3260.dll
npqtplugin.dll
nprjplug.dll
nprpjplug.dll
np_gp.dll
WMP Firefox Plugin License.rtf
WMP Firefox Plugin RelNotes.txt

C:\Program Files\Mozilla Firefox\searchplugins\
amazon-france.xml
bing.xml
cnrtl-tlfi-fr.xml
eBay-france.xml
google.xml
wikipedia-fr.xml
yahoo-france.xml

C:\Documents and Settings\van raemdonck.VAN-FC00B2E8E73\Application Data\Mozilla\Firefox\Profiles\e9g2otwj.default\extensions\
ChoiceGuard@Microsoft
keyscrambler@qfx.software.corporation
{20a82645-c095-46ed-80e3-08825760534b}

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}]
Adobe PDF Link Helper - C:\Program Files\Fichiers communs\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2011-06-06 63912]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{2B9F5787-88A5-4945-90E7-C4B18563BC5E}]
KeyScramblerBHO Class - C:\Program Files\KeyScrambler\KeyScramblerIE.dll [2011-07-18 915256]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{5C255C8A-E604-49b4-9D64-90988571CECB}]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{6EBF7485-159F-4bff-A14F-B9E3AAC4465B}]
Search Helper - C:\Program Files\Microsoft\Search Enhancement Pack\Search Helper\SearchHelper.dll [2009-01-14 92504]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06}]
avast! WebRep - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2011-09-06 806456]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
Programme d'aide de l'Assistant de connexion Windows Live - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2009-01-22 408448]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre6\bin\jp2ssv.dll [2011-02-03 41760]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E15A8DC0-8516-42A1-81EA-DC94EC1ACF10}]
Windows Live Toolbar Helper - C:\Program Files\Windows Live\Toolbar\wltcore.dll [2010-04-16 1067872]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E7E6F031-17CE-4C07-BC86-EABFE594F69C}]
JQSIEStartDetectorImpl Class - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll [2011-02-03 79648]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{21FA44EF-376D-4D53-9B0F-8A89D3229068} - &Windows Live Toolbar - C:\Program Files\Windows Live\Toolbar\wltcore.dll [2010-04-16 1067872]
{8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - avast! WebRep - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2011-09-06 806456]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"Alcmtr"=C:\WINDOWSD\ALCMTR.EXE [2005-05-03 69632]
"TkBellExe"=:C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe -osboot []
"avast"=C:\Program Files\AVAST Software\Avast\avastUI.exe [2011-09-06 3722416]
"NvMediaCenter"=C:\WINDOWSD\system32\NvMcTray.dll [2011-02-23 111208]
"NvCplDaemon"=C:\WINDOWSD\system32\NvCpl.dll [2011-02-23 13880424]
"nwiz"=C:\Program Files\NVIDIA Corporation\nView\nwiz.exe [2010-11-04 1753192]
"IntelliPoint"=C:\Program Files\Microsoft IntelliPoint\ipoint.exe [2010-07-21 1797008]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"ctfmon.exe"=C:\WINDOWSD\system32\ctfmon.exe [2008-04-14 15360]
"Google Update"=C:\Documents and Settings\van raemdonck.VAN-FC00B2E8E73\Local Settings\Application Data\Google\Update\GoogleUpdate.exe [2011-06-08 136176]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Load]
 []

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Run]
 []

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Documents and Settings^All Users.WINDOWSD^Menu Démarrer^Programmes^Démarrage^Adobe Reader Speed Launch.lnk]
[]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Documents and Settings^All Users.WINDOWSD^Menu Démarrer^Programmes^Démarrage^Windows Search.lnk]
C:\PROGRA~1\Windows Desktop Search\WindowsSearch.exe [2008-05-26 123904]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Documents and Settings^van raemdonck.VAN-FC00B2E8E73^Menu Démarrer^Programmes^Démarrage^Webshots Daily Features.lnk]
[]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Documents and Settings^van raemdonck.VAN-FC00B2E8E73^Menu Démarrer^Programmes^Démarrage^WebshotsWidget.lnk]
[]

C:\Documents and Settings\All Users.WINDOWSD\Menu Démarrer\Programmes\Démarrage
hp psc 1000 series.lnk - C:\Program Files\Hewlett-Packard\Digital Imaging\bin\hpohmr08.exe
hpoddt01.exe.lnk - C:\Program Files\Hewlett-Packard\Digital Imaging\bin\hpotdd01.exe

C:\Documents and Settings\van raemdonck.VAN-FC00B2E8E73\Menu Démarrer\Programmes\Démarrage
Microsoft Recherche accélérée.lnk - C:\Program Files\Microsoft Office\Office\FINDFAST.EXE
Webshots.lnk - C:\Program Files\Webshots\3.1.5.7619\Launcher.exe
~Disabled

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\WINDOWSD\system32\WPDShServiceObj.dll [2006-10-18 133632]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{56F9679E-7826-4C84-81F3-532071A8BCC5}"=C:\Program Files\Windows Desktop Search\MSNLNamespaceMgr.dll [2009-05-24 304128]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Lavasoft Ad-Aware Service]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Lavasoft Ad-Aware Service]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{1a3e09be-1e45-494b-9174-d7385b45bbf5}]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=145

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"HonorAutoRunSetting"=1

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"C:\WINDOWSD\system32\usmt\migwiz.exe"="C:\WINDOWSD\system32\usmt\migwiz.exe:*:Enabled:Assistant Transfert de fichiers et de paramètres"
"C:\Program Files\Messenger\msmsgs.exe"="C:\Program Files\Messenger\msmsgs.exe:*:Enabled:Windows Messenger"
"C:\Program Files\Windows Live\Messenger\wlcsdk.exe"="C:\Program Files\Windows Live\Messenger\wlcsdk.exe:*:Enabled:Windows Live Call"
"C:\Program Files\Windows Live\Messenger\msnmsgr.exe"="C:\Program Files\Windows Live\Messenger\msnmsgr.exe:*:Enabled:Windows Live Messenger"
"C:\Program Files\Windows Live\Sync\WindowsLiveSync.exe"="C:\Program Files\Windows Live\Sync\WindowsLiveSync.exe:*:Enabled:Windows Live FolderShare"
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
"C:\Program Files\LimeWire\LimeWire.exe"="C:\Program Files\LimeWire\LimeWire.exe:*:Enabled:LimeWire"
"C:\Program Files\VideoLAN\VLC\vlc.exe"="C:\Program Files\VideoLAN\VLC\vlc.exe:*:Enabled:VLC media player"
"C:\Program Files\eMule\emule.exe"="C:\Program Files\eMule\emule.exe:*:Enabled:eMule"
"C:\Program Files\BearShare Applications\BearShare\BearShare.exe"="C:\Program Files\BearShare Applications\BearShare\BearShare.exe:*:Enabled:BearShare"
"C:\Program Files\Google\Google Earth\client\googleearth.exe"="C:\Program Files\Google\Google Earth\client\googleearth.exe:*:Enabled:Google Earth"
"C:\Program Files\Vuze\Azureus.exe"="C:\Program Files\Vuze\Azureus.exe:*:Enabled:Azureus / Vuze"

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"C:\Program Files\Windows Live\Messenger\wlcsdk.exe"="C:\Program Files\Windows Live\Messenger\wlcsdk.exe:*:Enabled:Windows Live Call"
"C:\Program Files\Windows Live\Messenger\msnmsgr.exe"="C:\Program Files\Windows Live\Messenger\msnmsgr.exe:*:Enabled:Windows Live Messenger"
"C:\Program Files\Windows Live\Sync\WindowsLiveSync.exe"="C:\Program Files\Windows Live\Sync\WindowsLiveSync.exe:*:Enabled:Windows Live FolderShare"
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
"C:\Program Files\BearShare Applications\BearShare\BearShare.exe"="C:\Program Files\BearShare Applications\BearShare\BearShare.exe:*:Enabled:BearShare"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"midimapper"=midimap.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msadpcm"=msadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.trspch"=tssoft32.acm
"vidc.cvid"=iccvid.dll
"vidc.I420"=msh263.drv
"vidc.iv31"=ir32_32.dll
"vidc.iv32"=ir32_32.dll
"vidc.iv41"=ir41_32.ax
"vidc.iyuv"=iyuv_32.dll
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"vidc.uyvy"=msyuv.dll
"vidc.yuy2"=msyuv.dll
"vidc.yvu9"=tsbyuv.dll
"vidc.yvyu"=msyuv.dll
"wavemapper"=msacm32.drv
"msacm.msg723"=msg723.acm
"vidc.M263"=msh263.drv
"vidc.M261"=msh261.drv
"msacm.msaudio1"=msaud32.acm
"msacm.sl_anet"=sl_anet.acm
"msacm.iac2"=C:\WINDOWSD\system32\iac25_32.ax
"vidc.iv50"=ir50_32.dll
"msacm.l3acm"=C:\WINDOWSD\system32\l3codeca.acm
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"msacm.siren"=sirenacm.dll
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux1"=wdmaud.drv

======List of files/folders created in the last 1 month======

2011-09-14 21:37:41 ----D---- C:\Documents and Settings\van raemdonck.VAN-FC00B2E8E73\Application Data\ESTsoft
2011-09-14 12:46:53 ----HDC---- C:\WINDOWSD\$NtUninstallKB2616676$
2011-09-14 12:45:10 ----A---- C:\WINDOWSD\imsins.BAK
2011-09-14 12:45:07 ----HDC---- C:\WINDOWSD\$NtUninstallKB2570947$
2011-09-13 16:32:17 ----A---- C:\Ad-Report-CLEAN[2].txt
2011-09-13 16:22:31 ----A---- C:\Ad-Report-SCAN[5].txt
2011-09-01 01:53:55 ----D---- C:\Program Files\OCCT

======List of files/folders modified in the last 1 month======

2011-09-15 16:38:48 ----D---- C:\WINDOWSD\Prefetch
2011-09-15 16:38:46 ----D---- C:\Program Files\Trend Micro
2011-09-15 16:14:20 ----D---- C:\WINDOWSD\Temp
2011-09-15 16:00:09 ----D---- C:\WINDOWSD\system32\CatRoot2
2011-09-15 15:59:45 ----SD---- C:\WINDOWSD\Tasks
2011-09-15 15:59:35 ----AH---- C:\WINDOWSD\system32\FFASTLOG.TXT
2011-09-15 15:59:34 ----D---- C:\WINDOWSD\Registration
2011-09-15 13:21:21 ----A---- C:\WINDOWSD\SchedLgU.Txt
2011-09-15 12:54:50 ----D---- C:\WINDOWSD\Minidump
2011-09-15 12:54:50 ----D---- C:\WINDOWSD
2011-09-15 11:14:25 ----D---- C:\WINDOWSD\system32\drivers
2011-09-15 11:14:25 ----D---- C:\WINDOWSD\system32
2011-09-15 11:14:23 ----HD---- C:\WINDOWSD\inf
2011-09-15 09:07:03 ----D---- C:\Program Files\Mozilla Firefox
2011-09-14 23:32:15 ----D---- C:\Config.Msi
2011-09-14 23:30:29 ----SHD---- C:\WINDOWSD\Installer
2011-09-14 23:27:06 ----RD---- C:\Program Files
2011-09-14 12:46:54 ----RSHDC---- C:\WINDOWSD\system32\dllcache
2011-09-14 12:45:32 ----D---- C:\WINDOWSD\Debug
2011-09-14 12:45:29 ----A---- C:\WINDOWSD\system32\MRT.exe
2011-09-14 12:44:46 ----HD---- C:\WINDOWSD\$hf_mig$
2011-09-13 18:53:50 ----D---- C:\Program Files\Internet Explorer
2011-09-12 20:45:42 ----D---- C:\WINDOWSD\Microsoft.NET
2011-09-12 20:44:48 ----RSD---- C:\WINDOWSD\assembly
2011-09-12 15:53:42 ----D---- C:\WINDOWSD\network diagnostic
2011-09-10 23:58:50 ----D---- C:\Program Files\MyDefrag v4.3.1
2011-09-09 18:34:14 ----D---- C:\WINDOWSD\system32\config
2011-09-09 18:33:58 ----D---- C:\WINDOWSD\system32\wbem
2011-09-09 13:51:56 ----D---- C:\Program Files\Fichiers communs\Microsoft Shared
2011-09-09 11:53:19 ----D---- C:\Program Files\Ad-remover
2011-09-09 11:12:01 ----A---- C:\WINDOWSD\system32\crypt32.dll
2011-09-07 23:45:28 ----ASH---- C:\boot.ini
2011-09-06 22:45:29 ----A---- C:\WINDOWSD\system32\aswBoot.exe
2011-09-02 21:08:20 ----D---- C:\WINDOWSD\WinSxS
2011-09-02 21:08:13 ----A---- C:\WINDOWSD\system32\PerfStringBackup.INI
2011-09-01 18:59:39 ----D---- C:\Program Files\Glary Utilities
2011-09-01 09:51:32 ----D---- C:\Program Files\Bonjour
2011-08-29 22:54:08 ----A---- C:\WINDOWSD\win.ini
2011-08-29 22:52:20 ----D---- C:\WINDOWS
2011-08-23 14:30:28 ----SD---- C:\Documents and Settings\van raemdonck.VAN-FC00B2E8E73\Application Data\Microsoft
2011-08-23 14:22:05 ----SHD---- C:\System Volume Information
2011-08-23 14:22:05 ----D---- C:\WINDOWSD\system32\Restore
2011-08-23 11:10:28 ----D---- C:\Documents and Settings

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 hotcore3;Hotcore helper; C:\WINDOWSD\system32\DRIVERS\hotcore3.sys [2008-12-13 40496]
R0 Lbd;Lbd; C:\WINDOWSD\system32\DRIVERS\Lbd.sys [2010-07-12 64288]
R1 Aavmker4;avast! Asynchronous Virus Monitor; C:\WINDOWSD\system32\drivers\Aavmker4.sys [2011-09-06 30808]
R1 AFS2K;AFS2k; C:\WINDOWSD\system32\drivers\AFS2K.sys [2011-07-25 82380]
R1 AmdK8;Pilote de processeur AMD; C:\WINDOWSD\system32\DRIVERS\AmdK8.sys [2006-07-01 43520]
R1 aswRdr;aswRdr; C:\WINDOWSD\system32\drivers\aswRdr.sys [2011-09-06 34392]
R1 aswSnx;aswSnx; C:\WINDOWSD\system32\drivers\aswSnx.sys [2011-09-06 442200]
R1 aswSP;aswSP; C:\WINDOWSD\system32\drivers\aswSP.sys [2011-09-06 320856]
R1 aswTdi;avast! Network Shield Support; C:\WINDOWSD\system32\drivers\aswTdi.sys [2011-09-06 52568]
R1 WmiAcpi;Interface de gestion Microsoft Windows pour ACPI; C:\WINDOWSD\system32\DRIVERS\wmiacpi.sys [2008-04-13 8832]
R2 aswFsBlk;aswFsBlk; C:\WINDOWSD\system32\drivers\aswFsBlk.sys [2011-09-06 20568]
R2 aswMon2;avast! Standard Shield Support; C:\WINDOWSD\system32\drivers\aswMon2.sys [2011-09-06 110552]
R2 irda;Protocole IrDA; C:\WINDOWSD\system32\DRIVERS\irda.sys [2008-04-13 88192]
R2 StarOpen;StarOpen; C:\WINDOWSD\system32\drivers\StarOpen.sys [2009-11-12 5504]
R2 stltrk2k;STLTR2K; C:\WINDOWSD\System32\Drivers\stltrk2k.sys [2000-06-02 13806]
R3 HDAudBus;Pilote de bus Microsoft UAA pour High Definition Audio; C:\WINDOWSD\system32\DRIVERS\HDAudBus.sys [2008-04-13 144384]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\WINDOWSD\system32\drivers\RtkHDAud.sys [2007-11-27 4630016]
R3 irsir;Pilote série infrarouge Microsoft; C:\WINDOWSD\system32\DRIVERS\irsir.sys [2001-08-17 18688]
R3 KeyScrambler;KeyScrambler; C:\WINDOWSD\System32\drivers\keyscrambler.sys [2011-04-25 225856]
R3 Lavasoft Kernexplorer;Lavasoft helper driver; \??\C:\Program Files\Lavasoft\Ad-Aware\KernExplorer.sys []
R3 mdf16;mdf16; \??\C:\Program Files\Clarus\Samsung SecretZone\mdf16.sys []
R3 mvd22;mvd22; \??\C:\Program Files\Clarus\Samsung SecretZone\mvd22.sys []
R3 nv;nv; C:\WINDOWSD\system32\DRIVERS\nv4_mini.sys [2011-02-23 9888384]
R3 NVENETFD;NVIDIA nForce Networking Controller Driver; C:\WINDOWSD\system32\DRIVERS\NVENETFD.sys [2007-03-06 58752]
R3 nvnetbus;NVIDIA Network Bus Enumerator; C:\WINDOWSD\system32\DRIVERS\nvnetbus.sys [2007-03-06 19968]
R3 nvsmu;nvsmu; C:\WINDOWSD\system32\DRIVERS\nvsmu.sys [2007-02-16 12032]
R3 Rasirda;Miniport réseau étendu (IrDA); C:\WINDOWSD\system32\DRIVERS\rasirda.sys [2001-08-17 19584]
S3 ACSSCR;ACR38 Smart Card Reader; C:\WINDOWSD\system32\DRIVERS\a38usb.sys [2011-06-04 33536]
S3 HidUsb;Pilote de classe HID Microsoft; C:\WINDOWSD\system32\DRIVERS\hidusb.sys [2008-04-13 10368]
S3 HPZid412;IEEE-1284.4 Driver HPZid412; C:\WINDOWSD\system32\DRIVERS\HPZid412.sys [2003-03-09 51024]
S3 HPZipr12;Print Class Driver for IEEE-1284.4 HPZipr12; C:\WINDOWSD\system32\DRIVERS\HPZipr12.sys [2003-03-09 16080]
S3 HPZius12;USB to IEEE-1284.4 Translation Driver HPZius12; C:\WINDOWSD\system32\DRIVERS\HPZius12.sys [2003-03-09 21456]
S3 usbaudio;Pilote USB audio (WDM); C:\WINDOWSD\system32\drivers\usbaudio.sys [2008-04-13 60032]
S3 usbccgp;Pilote parent générique USB Microsoft; C:\WINDOWSD\system32\DRIVERS\usbccgp.sys [2008-04-13 32128]
S3 usbprint;Classe d'imprimantes USB Microsoft; C:\WINDOWSD\system32\DRIVERS\usbprint.sys [2008-04-13 25856]
S3 usbscan;Pilote de scanneur USB; C:\WINDOWSD\system32\DRIVERS\usbscan.sys [2008-04-13 15104]
S3 USBSTOR;Pilote de stockage de masse USB; C:\WINDOWSD\system32\DRIVERS\USBSTOR.SYS [2008-04-13 26368]
S3 Wdf01000;Wdf01000; C:\WINDOWSD\system32\DRIVERS\Wdf01000.sys [2006-11-02 492000]
S3 WudfPf;Windows Driver Foundation - User-mode Driver Framework Platform Driver; C:\WINDOWSD\system32\DRIVERS\WudfPf.sys [2006-09-28 77568]
S3 WudfRd;Windows Driver Foundation - User-mode Driver Framework Reflector; C:\WINDOWSD\system32\DRIVERS\wudfrd.sys [2006-09-28 82944]
S3 xusb21;Xbox 360 Wireless Receiver Driver Service 21; C:\WINDOWSD\system32\DRIVERS\xusb21.sys [2007-08-28 55808]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 avast! Antivirus;avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [2011-09-06 44768]
R2 Irmon;Moniteur infrarouge; C:\WINDOWSD\system32\svchost.exe [2008-04-14 14336]
R2 Lavasoft Ad-Aware Service;Lavasoft Ad-Aware Service; C:\Program Files\Lavasoft\Ad-Aware\AAWService.exe [2011-09-02 2152152]
R2 NMSAccess;NMSAccess; C:\Program Files\CDBurnerXP\NMSAccessU.exe [2010-03-04 71096]
R2 NVSvc;NVIDIA Display Driver Service; C:\WINDOWSD\system32\nvsvc32.exe [2011-02-23 156776]
R2 PMBDeviceInfoProvider;PMBDeviceInfoProvider; C:\Program Files\Sony\PMB\PMBDeviceInfoProvider.exe [2011-03-15 428384]
R2 SZASSIST;SecretZone Assist Service; C:\Program Files\Clarus\Samsung SecretZone\SZAssistSVC.exe [2010-08-30 90112]
R2 WSearch;Windows Search; C:\WINDOWSD\system32\SearchIndexer.exe [2008-05-26 439808]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\WINDOWSD\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-03-18 130384]
S2 gupdate;Service Google Update (gupdate); C:\Program Files\Google\Update\GoogleUpdate.exe [2010-01-28 135664]
S2 JavaQuickStarterService;Java Quick Starter; C:\Program Files\Java\jre6\bin\jqs.exe [2011-02-02 153376]
S3 aspnet_state;Service d'état ASP.NET; C:\WINDOWSD\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe [2008-07-25 34312]
S3 FontCache3.0.0.0;Windows Presentation Foundation Font Cache 3.0.0.0; C:\WINDOWSD\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe [2008-07-29 46104]
S3 gupdatem;Service Google Update (gupdatem); C:\Program Files\Google\Update\GoogleUpdate.exe [2010-01-28 135664]
S3 idsvc;Windows CardSpace; C:\WINDOWSD\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe [2008-07-29 881664]
S3 nosGetPlusHelper;getPlus(R) Helper 3004; C:\WINDOWSD\System32\svchost.exe [2008-04-14 14336]
S3 Pml Driver HPZ12;Pml Driver HPZ12; C:\WINDOWSD\system32\HPZipm12.exe [2003-03-09 65795]
S3 WinRM;Windows Remote Management (WS-Management); C:\WINDOWSD\system32\svchost.exe [2008-04-14 14336]
S3 WMPNetworkSvc;Service Partage réseau du Lecteur Windows Media; C:\Program Files\Windows Media Player\WMPNetwk.exe [2006-11-03 918016]
S3 WPFFontCache_v0400;Windows Presentation Foundation Font Cache 4.0.0.0; C:\WINDOWSD\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe [2010-03-18 753504]
S3 WudfSvc;Windows Driver Foundation - User-mode Driver Framework; C:\WINDOWSD\system32\svchost.exe [2008-04-14 14336]
S4 clr_optimization_v2.0.50727_32;.NET Runtime Optimization Service v2.0.50727_X86; C:\WINDOWSD\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe [2008-07-25 69632]
S4 NetTcpPortSharing;Service de partage de ports Net.Tcp; C:\WINDOWSD\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe [2008-07-29 132096

witekop
 Posté le 15/09/2011 à 16:51 
Aller en bas de la page Revenir au message précédent Revenir en haut de la page
Astucien

Voila j'ai envoyé le rapport mais en 3fois car mon ord ou Pc astuce a refusé de tout mettre d'un coup .

j'èspère que cela ira comme ça

Grand merci j'attend avec impatience votre réponse

Anonyme
 Posté le 15/09/2011 à 19:21 
Aller en bas de la page Revenir au message précédent Revenir en haut de la page
Nouvel astucien

Re,

il manque le rapport info.txt de RSIT (bis).

witekop
 Posté le 15/09/2011 à 20:24 
Aller en bas de la page Revenir au message précédent Revenir en haut de la page
Astucien

Bonjour ,

Mais il n'y as que ce rapport la.

Pas vde problème faisons comme si c'etait arrangé.

Bonne soirée

witekop
 Posté le 16/09/2011 à 01:59 
Aller en bas de la page Revenir au message précédent Revenir en haut de la page
Astucien

======= RAPPORT D'AD-REMOVER 2.0.0.2,G | UNIQUEMENT XP/VISTA/7 =======

Mis à jour par TeamXscript le 12/04/11
Contact: AdRemover[DOT]contact[AT]gmail[DOT]com
Site web: http://www.teamxscript.org

C:\Program Files\Ad-remover\main.exe (SCAN [5]) -> Lancé à 16:22:12 le 13/09/2011, Mode normal

Microsoft Windows XP Édition familiale Service Pack 3 (X86)
van raemdonck@VAN-FC00B2E8E73 ( )

============== RECHERCHE ==============

Service: "AGCoreService" Présent

Dossier trouvé: C:\Documents and Settings\van raemdonck.VAN-FC00B2E8E73\Application Data\AGI
Dossier trouvé: C:\Documents and Settings\All Users.WINDOWSD\Application Data\AGI
Dossier trouvé: C:\Program Files\AGI

Clé trouvée: HKLM\Software\Classes\CLSID\{0BC6E3FA-78EF-4886-842C-5A1258C4455A}
Clé trouvée: HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{0BC6E3FA-78EF-4886-842C-5A1258C4455A}
Clé trouvée: HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{0BC6E3FA-78EF-4886-842C-5A1258C4455A}
Clé trouvée: HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{0BC6E3FA-78EF-4886-842C-5A1258C4455A}
Clé trouvée: HKLM\Software\Classes\agcore.Config.AGConfig
Clé trouvée: HKLM\Software\Classes\agcore.Search.Search
Clé trouvée: HKLM\Software\Classes\agcore.Text.JSON
Clé trouvée: HKLM\Software\Classes\agihelper.AGUtils
Clé trouvée: HKLM\Software\AGI
Clé trouvée: HKCU\Software\AGI
Clé trouvée: HKLM\Software\Canneverbe Limited\OpenCandy
Clé trouvée: HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{0BC6E3FA-78EF-4886-842C-5A1258C4455A}
Clé trouvée: HKLM\Software\Microsoft\Internet Explorer\SearchScopes\{0BC6E3FA-78EF-4886-842C-5A1258C4455A}

Valeur trouvée: HKCU\Software\Microsoft\Internet Explorer\URLSearchHooks|{0BC6E3FA-78EF-4886-842C-5A1258C4455A}


============== SCAN ADDITIONNEL ==============

**** Mozilla Firefox Version [6.0.1 (fr)] ****

Plugins\npqtplugin.dll (Apple Computer, Inc.)
HKLM_MozillaPlugins\Adobe Reader (x)
Searchplugins\bing.xml ( hxxp://www.bing.com/search)
Components\browsercomps.dll (Mozilla Foundation)
HKLM_Extensions|belgiumeid@eid.belgium.be - C:\Program Files\Mozilla Firefox\extensions\belgiumeid@eid.belgium.be (x)

-- C:\Documents and Settings\van raemdonck.VAN-FC00B2E8E73\Application Data\Mozilla\FireFox\Profiles\e9g2otwj.default --
Extensions\ChoiceGuard@Microsoft (Microsoft Choice Guard)
Extensions\keyscrambler@qfx.software.corporation (KeyScrambler)
Prefs.js - browser.search.defaultenginename,
Prefs.js - browser.search.selectedEngine, Google
Prefs.js - browser.startup.homepage, hxxps://www.deutschebank.be/fr/home-prospect.html|hxxps://www.bnpparibasfortis.be/portal/start...
Prefs.js - browser.startup.homepage_override.buildID, 20110830092941
Prefs.js - browser.startup.homepage_override.mstone, rv:6.0.1

========================================

**** Google Chrome Version [13.0.782.220] ****

Extension\icmlaeflemplmjndnaapfdbbnpncnbda (C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChrome.crx) (?)

-- C:\Documents and Settings\van raemdonck.VAN-FC00B2E8E73\Local Settings\Application Data\Google\Chrome\User Data\Default --
Preferences - default_search_provider: "PC Astuces" (Activé: true) (hxxp://www.pcastuces.com/recherche.asp?q={searchTerms})
Preferences - homepage: hxxp://www.google.com
Preferences - homepage_is_newtabpage: false

========================================

**** Internet Explorer Version [8.0.6001.18702] ****

HKCU_Main|Default_Page_URL - hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&pver=6&ar=msnhome
HKCU_Main|Default_Search_URL - hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
HKCU_Main|Start Page - hxxp://go.microsoft.com/fwlink/?LinkId=69157
HKLM_Main|Default_Page_URL - hxxp://go.microsoft.com/fwlink/?LinkId=54896
HKLM_Main|Default_Search_URL - hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
HKLM_Main|Search bar - hxxp://search.msn.com/spbasic.htm
HKLM_Main|Search Page - hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
HKLM_Main|Start Page - hxxp://fr.msn.com/
HKCU_URLSearchHooks|{0BC6E3FA-78EF-4886-842C-5A1258C4455A} - "agihelper.AGUtils" (mscoree.dll) (x)
HKCU_SearchScopes\{0BC6E3FA-78EF-4886-842C-5A1258C4455A} - "Search the Web" (hxxp://search.imgag.com/?appid=wsdt&component=&c=GNWDO59900&sbs=2&sc=2&f=web&ver...)
HKCU_SearchScopes\{185B18F3-DF36-4AFA-BEE4-C3481A4ECA0F} - "eBay" (hxxp://rover.ebay.com/rover/1/711-43047-14818-1/4?satitle={searchTerms})
HKCU_SearchScopes\{8A96AF9E-4074-43b7-BEA3-87217BDA74C8} - "?" (?)
HKCU_SearchScopes\{C16B5220-F061-43BC-B5A5-8D3BFB077CBF} - "PC Astuces" (hxxp://www.pcastuces.com/recherche.asp?q={searchTerms})
HKLM_SearchScopes\{0BC6E3FA-78EF-4886-842C-5A1258C4455A} - "Search the Web" (hxxp://search.imgag.com/?appid=wsdt&component=&c=GNWDO59900&sbs=2&sc=2&f=web&ver...)
HKCU_Toolbar|{710EB7A1-45ED-11D0-924A-0020AFC7AC4D} (x)
HKLM_Toolbar|{8E5E2654-AD2D-48bf-AC2D-D17F00898D06} (C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll)
HKLM_ElevationPolicy\{E6B969FB-6D33-48d2-9061-8BBD4899EB08} - C:\Program Files\Iminent\MMServer\Iminent.MMServer.exe (x)
HKLM_Extensions\{5C106A59-CC3C-4caa-81A4-6D909B5ACE23} - "?" (?)
HKLM_Extensions\{e2e2dd38-d088-4134-82b7-f2ba38496583} - "?" (?)
BHO\{0bc6e3fa-78ef-4886-842c-5a1258c4455a} - "agihelper.AGUtils" (mscoree.dll) (x)
BHO\{2B9F5787-88A5-4945-90E7-C4B18563BC5E} - "KeyScramblerBHO Class" (C:\Program Files\KeyScrambler\KeyScramblerIE.dll)
BHO\{5C255C8A-E604-49b4-9D64-90988571CECB} (?)
BHO\{6EBF7485-159F-4bff-A14F-B9E3AAC4465B} - "Search Helper" (C:\Program Files\Microsoft\Search Enhancement Pack\Search Helper\SearchHelper.dll)
BHO\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - "avast! WebRep" (C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll)

========================================

C:\Program Files\Ad-remover\Quarantine: 375 Fichier(s)
C:\Program Files\Ad-remover\Backup: 21 Fichier(s)

C:\Ad-Report-CLEAN[1].txt - 26/01/2011 01:52:18 (6270 Octet(s))
C:\Ad-Report-SCAN[3].txt - 14/07/2011 12:52:57 (4354 Octet(s))
C:\Ad-Report-SCAN[4].txt - 12/09/2011 21:01:52 (4410 Octet(s))
C:\Ad-Report-SCAN[5].txt - 13/09/2011 16:22:31 (5863 Octet(s))

Fin à: 16:23:07, 13/09/2011

============== E.O.F ==============

======= RAPPORT D'AD-REMOVER 2.0.0.2,G | UNIQUEMENT XP/VISTA/7 =======

Mis à jour par TeamXscript le 12/04/11
Contact: AdRemover[DOT]contact[AT]gmail[DOT]com
Site web: http://www.teamxscript.org

C:\Program Files\Ad-remover\main.exe (CLEAN [2]) -> Lancé à 16:20:37 le 13/09/2011, Mode normal

Microsoft Windows XP Édition familiale Service Pack 3 (X86)
van raemdonck@VAN-FC00B2E8E73 ( )

============== ACTION(S) ==============

Service: "AGCoreService" Stoppé et supprimé

Dossier supprimé: C:\Documents and Settings\van raemdonck.VAN-FC00B2E8E73\Application Data\AGI
Dossier supprimé: C:\Documents and Settings\All Users.WINDOWSD\Application Data\AGI
Dossier supprimé: C:\Program Files\AGI

(!) -- Fichiers temporaires supprimés.


Clé supprimée: HKLM\Software\Classes\CLSID\{0BC6E3FA-78EF-4886-842C-5A1258C4455A}
Clé supprimée: HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{0BC6E3FA-78EF-4886-842C-5A1258C4455A}
Clé supprimée: HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{0BC6E3FA-78EF-4886-842C-5A1258C4455A}
Clé supprimée: HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{0BC6E3FA-78EF-4886-842C-5A1258C4455A}
Clé supprimée: HKLM\Software\Classes\agcore.Config.AGConfig
Clé supprimée: HKLM\Software\Classes\agcore.Search.Search
Clé supprimée: HKLM\Software\Classes\agcore.Text.JSON
Clé supprimée: HKLM\Software\Classes\agihelper.AGUtils
Clé supprimée: HKLM\Software\AGI
Clé supprimée: HKCU\Software\AGI
Clé supprimée: HKLM\Software\Canneverbe Limited\OpenCandy
Clé supprimée: HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{0BC6E3FA-78EF-4886-842C-5A1258C4455A}
Clé supprimée: HKLM\Software\Microsoft\Internet Explorer\SearchScopes\{0BC6E3FA-78EF-4886-842C-5A1258C4455A}

Valeur supprimée: HKCU\Software\Microsoft\Internet Explorer\URLSearchHooks|{0BC6E3FA-78EF-4886-842C-5A1258C4455A}


============== SCAN ADDITIONNEL ==============

**** Mozilla Firefox Version [6.0.1 (fr)] ****

Plugins\npqtplugin.dll (Apple Computer, Inc.)
HKLM_MozillaPlugins\Adobe Reader (x)
Searchplugins\bing.xml ( hxxp://www.bing.com/search)
Components\browsercomps.dll (Mozilla Foundation)
HKLM_Extensions|belgiumeid@eid.belgium.be - C:\Program Files\Mozilla Firefox\extensions\belgiumeid@eid.belgium.be (x)

-- C:\Documents and Settings\van raemdonck.VAN-FC00B2E8E73\Application Data\Mozilla\FireFox\Profiles\e9g2otwj.default --
Extensions\ChoiceGuard@Microsoft (Microsoft Choice Guard)
Extensions\keyscrambler@qfx.software.corporation (KeyScrambler)
Prefs.js - browser.search.defaultenginename,
Prefs.js - browser.search.selectedEngine, Google
Prefs.js - browser.startup.homepage, hxxps://www.deutschebank.be/fr/home-prospect.html|hxxps://www.bnpparibasfortis.be/portal/start...
Prefs.js - browser.startup.homepage_override.buildID, 20110830092941
Prefs.js - browser.startup.homepage_override.mstone, rv:6.0.1

========================================

**** Google Chrome Version [13.0.782.220] ****

Extension\icmlaeflemplmjndnaapfdbbnpncnbda (C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChrome.crx) (?)

-- C:\Documents and Settings\van raemdonck.VAN-FC00B2E8E73\Local Settings\Application Data\Google\Chrome\User Data\Default --
Preferences - default_search_provider: "PC Astuces" (Activé: true) (hxxp://www.pcastuces.com/recherche.asp?q={searchTerms})
Preferences - homepage: hxxp://www.google.com
Preferences - homepage_is_newtabpage: false

========================================

**** Internet Explorer Version [8.0.6001.18702] ****

HKCU_Main|Default_Page_URL - hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&pver=6&ar=msnhome
HKCU_Main|Default_Search_URL - hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
HKCU_Main|Search bar - hxxp://go.microsoft.com/fwlink/?linkid=54896
HKCU_Main|Start Page - hxxp://fr.msn.com/
HKLM_Main|Default_Page_URL - hxxp://go.microsoft.com/fwlink/?LinkId=54896
HKLM_Main|Default_Search_URL - hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
HKLM_Main|Search bar - hxxp://search.msn.com/spbasic.htm
HKLM_Main|Search Page - hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
HKLM_Main|Start Page - hxxp://fr.msn.com/
HKCU_SearchScopes\{185B18F3-DF36-4AFA-BEE4-C3481A4ECA0F} - "eBay" (hxxp://rover.ebay.com/rover/1/711-43047-14818-1/4?satitle={searchTerms})
HKCU_SearchScopes\{8A96AF9E-4074-43b7-BEA3-87217BDA74C8} - "?" (?)
HKCU_SearchScopes\{C16B5220-F061-43BC-B5A5-8D3BFB077CBF} - "PC Astuces" (hxxp://www.pcastuces.com/recherche.asp?q={searchTerms})
HKCU_Toolbar|{710EB7A1-45ED-11D0-924A-0020AFC7AC4D} (x)
HKLM_Toolbar|{8E5E2654-AD2D-48bf-AC2D-D17F00898D06} (C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll)
HKLM_ElevationPolicy\{E6B969FB-6D33-48d2-9061-8BBD4899EB08} - C:\Program Files\Iminent\MMServer\Iminent.MMServer.exe (x)
HKLM_Extensions\{5C106A59-CC3C-4caa-81A4-6D909B5ACE23} - "?" (?)
HKLM_Extensions\{e2e2dd38-d088-4134-82b7-f2ba38496583} - "?" (?)
BHO\{2B9F5787-88A5-4945-90E7-C4B18563BC5E} - "KeyScramblerBHO Class" (C:\Program Files\KeyScrambler\KeyScramblerIE.dll)
BHO\{5C255C8A-E604-49b4-9D64-90988571CECB} (?)
BHO\{6EBF7485-159F-4bff-A14F-B9E3AAC4465B} - "Search Helper" (C:\Program Files\Microsoft\Search Enhancement Pack\Search Helper\SearchHelper.dll)
BHO\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - "avast! WebRep" (C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll)

========================================

C:\Program Files\Ad-remover\Quarantine: 400 Fichier(s)
C:\Program Files\Ad-remover\Backup: 33 Fichier(s)

C:\Ad-Report-CLEAN[1].txt - 26/01/2011 01:52:18 (6270 Octet(s))
C:\Ad-Report-CLEAN[2].txt - 13/09/2011 16:32:17 (5486 Octet(s))
C:\Ad-Report-SCAN[3].txt - 14/07/2011 12:52:57 (4354 Octet(s))
C:\Ad-Report-SCAN[4].txt - 12/09/2011 21:01:52 (4410 Octet(s))
C:\Ad-Report-SCAN[5].txt - 13/09/2011 16:22:31 (6306 Octet(s))

Fin à: 16:33:07, 13/09/2011

============== E.O.F ==============



Modifié par witekop le 16/09/2011 02:01
Br_Fr
 Posté le 16/09/2011 à 07:33 
Aller en bas de la page Revenir au message précédent Revenir en haut de la page
  Maîtresse astucienne
fredericx a écrit :

Re,

il manque le rapport info.txt de RSIT (bis).

wiketop,il te suffit de recommencer avec RSIT,ce n'est pas compliqué!

witekop
 Posté le 16/09/2011 à 10:11 
Aller en bas de la page Revenir au message précédent Revenir en haut de la page
Astucien

Logfile of random's system information tool 1.09 (written by random/random)

Run by van raemdonck at 2011-09-16 10:07:27

Microsoft Windows XP Édition familiale Service Pack 3

System drive C: has 10 GB (28%) free of 36 GB

Total RAM: 1791 MB (52% free)

Logfile of Trend Micro HijackThis v2.0.4

Scan saved at 10:07:31, on 16/09/2011

Platform: Windows XP SP3 (WinNT 5.01.2600)

MSIE: Internet Explorer v8.00 (8.00.6001.18702)

Boot mode: Normal

Running processes:

C:\WINDOWSD\System32\smss.exe

C:\WINDOWSD\system32\winlogon.exe

C:\WINDOWSD\system32\services.exe

C:\WINDOWSD\system32\lsass.exe

C:\WINDOWSD\system32\nvsvc32.exe

C:\WINDOWSD\system32\svchost.exe

C:\WINDOWSD\System32\svchost.exe

C:\Program Files\Lavasoft\Ad-Aware\AAWService.exe

C:\Program Files\AVAST Software\Avast\AvastSvc.exe

C:\WINDOWSD\system32\spoolsv.exe

C:\WINDOWSD\system32\dllhost.exe

C:\Program Files\CDBurnerXP\NMSAccessU.exe

C:\Program Files\Sony\PMB\PMBDeviceInfoProvider.exe

C:\WINDOWSD\Explorer.EXE

C:\WINDOWSD\system32\svchost.exe

C:\Program Files\Clarus\Samsung SecretZone\SZAssistSVC.exe

C:\WINDOWSD\system32\SearchIndexer.exe

C:\WINDOWSD\system32\wuauclt.exe

C:\Program Files\AVAST Software\Avast\avastUI.exe

C:\WINDOWSD\system32\RUNDLL32.EXE

C:\Program Files\Microsoft IntelliPoint\ipoint.exe

C:\WINDOWSD\system32\ctfmon.exe

C:\Program Files\Hewlett-Packard\Digital Imaging\bin\hpohmr08.exe

C:\Program Files\Hewlett-Packard\Digital Imaging\bin\hpotdd01.exe

C:\Program Files\Microsoft Office\Office\FINDFAST.EXE

C:\Program Files\Webshots\3.1.5.7619\Webshots.scr

C:\Program Files\Hewlett-Packard\Digital Imaging\bin\hpoevm08.exe

C:\Program Files\Hewlett-Packard\Digital Imaging\Bin\hpoSTS08.exe

C:\Program Files\Lavasoft\Ad-Aware\AAWTray.exe

C:\Program Files\Outlook Express\msimn.exe

C:\Documents and Settings\van raemdonck.VAN-FC00B2E8E73\Local Settings\Application Data\Google\Chrome\Application\chrome.exe

C:\Documents and Settings\van raemdonck.VAN-FC00B2E8E73\Local Settings\Application Data\Google\Chrome\Application\chrome.exe

C:\WINDOWSD\system32\SearchProtocolHost.exe

C:\Documents and Settings\van raemdonck.VAN-FC00B2E8E73\Local Settings\Application Data\Google\Chrome\Application\chrome.exe

C:\Documents and Settings\van raemdonck.VAN-FC00B2E8E73\Local Settings\Application Data\Google\Chrome\Application\chrome.exe

C:\Documents and Settings\van raemdonck.VAN-FC00B2E8E73\Mes documents\Downloads\RSIT (1).exe

C:\Program Files\trend micro\van raemdonck.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = http://go.microsoft.com/fwlink/?linkid=54896

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://fr.msn.com/

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=54896

R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://fr.msn.com/

R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =

R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =

R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens

R3 - Default URLSearchHook is missing

O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Fichiers communs\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll

O2 - BHO: QFX Software KeyScrambler - {2B9F5787-88A5-4945-90E7-C4B18563BC5E} - C:\Program Files\KeyScrambler\KeyScramblerIE.dll

O2 - BHO: (no name) - {5C255C8A-E604-49b4-9D64-90988571CECB} - (no file)

O2 - BHO: Search Helper - {6EBF7485-159F-4bff-A14F-B9E3AAC4465B} - C:\Program Files\Microsoft\Search Enhancement Pack\Search Helper\SearchHelper.dll

O2 - BHO: avast! WebRep - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll

O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll

O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll

O2 - BHO: Windows Live Toolbar Helper - {E15A8DC0-8516-42A1-81EA-DC94EC1ACF10} - C:\Program Files\Windows Live\Toolbar\wltcore.dll

O2 - BHO: JQSIEStartDetectorImpl - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll

O3 - Toolbar: &Windows Live Toolbar - {21FA44EF-376D-4D53-9B0F-8A89D3229068} - C:\Program Files\Windows Live\Toolbar\wltcore.dll

O3 - Toolbar: avast! WebRep - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll

O4 - HKLM\..\Run: [Alcmtr] ALCMTR.EXE

O4 - HKLM\..\Run: [TkBellExe] :"C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe" -osboot

O4 - HKLM\..\Run: [avast] "C:\Program Files\AVAST Software\Avast\avastUI.exe" /nogui

O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\WINDOWSD\system32\NvMcTray.dll,NvTaskbarInit

O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWSD\system32\NvCpl.dll,NvStartup

O4 - HKLM\..\Run: [nwiz] C:\Program Files\NVIDIA Corporation\nView\nwiz.exe /installquiet

O4 - HKLM\..\Run: [IntelliPoint] "C:\Program Files\Microsoft IntelliPoint\ipoint.exe"

O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWSD\system32\ctfmon.exe

O4 - HKCU\..\Run: [Google Update] "C:\Documents and Settings\van raemdonck.VAN-FC00B2E8E73\Local Settings\Application Data\Google\Update\GoogleUpdate.exe" /c

O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWSD\system32\CTFMON.EXE (User 'SERVICE LOCAL')

O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWSD\system32\CTFMON.EXE (User 'SERVICE RÉSEAU')

O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWSD\system32\CTFMON.EXE (User 'SYSTEM')

O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWSD\system32\CTFMON.EXE (User 'Default user')

O4 - Startup: Microsoft Recherche accélérée.lnk = C:\Program Files\Microsoft Office\Office\FINDFAST.EXE

O4 - Startup: Webshots.lnk = C:\Program Files\Webshots\3.1.5.7619\Launcher.exe

O4 - Startup: ~Disabled

O4 - Global Startup: hp psc 1000 series.lnk = ?

O4 - Global Startup: hpoddt01.exe.lnk = ?

O8 - Extra context menu item: Google Sidewiki... - res://C:\Program Files\Google\Google Toolbar\Component\GoogleToolbarDynamic_mui_en_89D8574934B26AC4.dll/cmsidewiki.html

O9 - Extra button: Ajout Direct - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll

O9 - Extra 'Tools' menuitem: &Ajout Direct dans Windows Live Writer - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll

O9 - Extra button: (no name) - {5C106A59-CC3C-4caa-81A4-6D909B5ACE23} - C:\Program Files\KeyScrambler\KeyScramblerIE.dll

O9 - Extra 'Tools' menuitem: &KeyScrambler Options - {5C106A59-CC3C-4caa-81A4-6D909B5ACE23} - C:\Program Files\KeyScrambler\KeyScramblerIE.dll

O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWSD\Network Diagnostic\xpnetdiag.exe

O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWSD\Network Diagnostic\xpnetdiag.exe

O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe

O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe

O16 - DPF: {1C11B948-582A-433F-A98D-A8C4D5CC64F2} (20-20 3D Viewer) - http://kitchenplanner.ikea.com/be/Core/Player/2020PlayerAX_Win32.cab

O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} (MUWebControl Class) - http://www.update.microsoft.com/microsoftupdate/v6/V5Controls/en/x86/client/muweb_site.cab?1290803692265

O16 - DPF: {7530BFB8-7293-4D34-9923-61A11451AFC5} - http://download.eset.com/special/eos/OnlineScanner.cab

O16 - DPF: {B60CEFE7-2DD0-4B78-951A-509D951DB1F0} (ExtraFilm Uploader Control) - http://belgacom.extrafilm.be/ExtraFilmUploader6.cab

O16 - DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} (get_atlcom Class) - http://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab

O22 - SharedTaskScheduler: Pré-chargeur Browseui - {438755C2-A8BA-11D1-B96B-00A0C90312E1} - C:\WINDOWSD\system32\browseui.dll

O22 - SharedTaskScheduler: Démon de cache des catégories de composant - {8C7461EF-2B13-11d2-BE35-3078302C2030} - C:\WINDOWSD\system32\browseui.dll

O23 - Service: avast! Antivirus - AVAST Software - C:\Program Files\AVAST Software\Avast\AvastSvc.exe

O23 - Service: Service d'administration du Gestionnaire de disque logique (dmadmin) - Unknown owner - C:\WINDOWSD\System32\dmadmin.exe

O23 - Service: Journal des événements (Eventlog) - Unknown owner - C:\WINDOWSD\system32\services.exe

O23 - Service: Service Google Update (gupdate) (gupdate) - Unknown owner - C:\Program Files\Google\Update\GoogleUpdate.exe

O23 - Service: Service Google Update (gupdatem) (gupdatem) - Unknown owner - C:\Program Files\Google\Update\GoogleUpdate.exe

O23 - Service: Service COM de gravage de CD IMAPI (ImapiService) - Unknown owner - C:\WINDOWSD\system32\imapi.exe

O23 - Service: Java Quick Starter (JavaQuickStarterService) - Sun Microsystems, Inc. - C:\Program Files\Java\jre6\bin\jqs.exe

O23 - Service: Lavasoft Ad-Aware Service - Lavasoft Limited - C:\Program Files\Lavasoft\Ad-Aware\AAWService.exe

O23 - Service: Partage de Bureau à distance NetMeeting (mnmsrvc) - Unknown owner - C:\WINDOWSD\system32\mnmsrvc.exe

O23 - Service: NMSAccess - Unknown owner - C:\Program Files\CDBurnerXP\NMSAccessU.exe

O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWSD\system32\nvsvc32.exe

O23 - Service: Plug-and-Play (PlugPlay) - Unknown owner - C:\WINDOWSD\system32\services.exe

O23 - Service: PMBDeviceInfoProvider - Sony Corporation - C:\Program Files\Sony\PMB\PMBDeviceInfoProvider.exe

O23 - Service: Pml Driver HPZ12 - HP - C:\WINDOWSD\system32\HPZipm12.exe

O23 - Service: Gestionnaire de session d'aide sur le Bureau à distance (RDSessMgr) - Unknown owner - C:\WINDOWSD\system32\sessmgr.exe

O23 - Service: Carte à puce (SCardSvr) - Unknown owner - C:\WINDOWSD\System32\SCardSvr.exe

O23 - Service: Journaux et alertes de performance (SysmonLog) - Unknown owner - C:\WINDOWSD\system32\smlogsvc.exe

O23 - Service: SecretZone Assist Service (SZASSIST) - Clarus, Inc. - C:\Program Files\Clarus\Samsung SecretZone\SZAssistSVC.exe

O23 - Service: Cliché instantané de volume (VSS) - Unknown owner - C:\WINDOWSD\System32\vssvc.exe

O23 - Service: Carte de performance WMI (WmiApSrv) - Unknown owner - C:\WINDOWSD\system32\wbem\wmiapsrv.exe

O23 - Service: Service Partage réseau du Lecteur Windows Media (WMPNetworkSvc) - Unknown owner - C:\Program Files\Windows Media Player\WMPNetwk.exe

--

End of file - 10483 bytes

======Scheduled tasks folder======

C:\WINDOWSD\tasks\Ad-Aware Update (Weekly).job

C:\WINDOWSD\tasks\FRU Task #Hewlett-Packard#hp psc 1200 series#1311588251.job

C:\WINDOWSD\tasks\GlaryInitialize.job

C:\WINDOWSD\tasks\GoogleUpdateTaskMachineCore.job

C:\WINDOWSD\tasks\GoogleUpdateTaskMachineUA.job

C:\WINDOWSD\tasks\GoogleUpdateTaskUserS-1-5-21-484763869-515967899-725345543-1004Core.job

C:\WINDOWSD\tasks\GoogleUpdateTaskUserS-1-5-21-484763869-515967899-725345543-1004UA.job

C:\WINDOWSD\tasks\User_Feed_Synchronization-{ADD5ECA2-EDF6-4275-A305-70CDFAA2E32C}.job

=========Mozilla firefox=========

ProfilePath - C:\Documents and Settings\van raemdonck.VAN-FC00B2E8E73\Application Data\Mozilla\Firefox\Profiles\e9g2otwj.default

prefs.js - "browser.startup.homepage" - "https://www.deutschebank.be/fr/home-prospect.html|https://www.bnpparibasfortis.be/portal/start_BE_F.asp "

prefs.js - "extensions.enabledItems" - "{CAFEEFAC-0016-0000-0013-ABCDEFFEDCBA}:6.0.13, {CAFEEFAC-0016-0000-0014-ABCDEFFEDCBA}:6.0.14, {CAFEEFAC-0016-0000-0015-ABCDEFFEDCBA}:6.0.15, {20a82645-c095-46ed-80e3-08825760534b}:1.2.1, {CAFEEFAC-0016-0000-0020-ABCDEFFEDCBA}:6.0.20, jqs@sun.com:1.0, {CAFEEFAC-0016-0000-0022-ABCDEFFEDCBA}:6.0.22, {CAFEEFAC-0016-0000-0023-ABCDEFFEDCBA}:6.0.23, {CAFEEFAC-0016-0000-0024-ABCDEFFEDCBA}:6.0.24, wrc@avast.com:20110101, {972ce4c6-7e08-4474-a285-3208198ce6fd}:3.6.17"

"{20a82645-c095-46ed-80e3-08825760534b}"=C:\WINDOWSD\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension\

"jqs@sun.com"=C:\Program Files\Java\jre6\lib\deploy\jqs\ff

"wrc@avast.com"=C:\Program Files\AVAST Software\Avast\WebRep\FF

"belgiumeid@eid.belgium.be"=C:\Program Files\Mozilla Firefox\extensions\belgiumeid@eid.belgium.be

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/FlashPlayer]

"Description"=Adobe® Flash® Player 10.1 Plugin

"Path"=C:\WINDOWSD\system32\Macromed\Flash\NPSWF32.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/ShockwavePlayer]

"Description"=Adobe Shockwave Player

"Path"=C:\WINDOWSD\system32\Adobe\Director\np32dsw.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@java.com/JavaPlugin]

"Description"=Oracle® Next Generation Java™ Plug-In

"Path"=C:\Program Files\Java\jre6\bin\new_plugin\npjp2.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0]

"Description"=Ag Player Plugin

"Path"=C:\Program Files\Microsoft Silverlight\4.0.60531.0\npctrl.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/WLPG,version=14.0.8117.0416]

"Description"=WLPG Install MIME type

"Path"=C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/WPF,version=3.5]

"Description"=Windows Presentation Foundation plug-in for Mozilla browsers

"Path"=C:\WINDOWSD\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@nosltd.com/getPlus+(R),version=1.6.2.103]

"Description"=getPlus+(R)

"Path"=C:\Program Files\NOS\bin\np_gp.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@tools.google.com/Google Update;version=3]

"Description"=Google Update

"Path"=C:\Program Files\Google\Update\1.3.21.65\npGoogleUpdate3.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@tools.google.com/Google Update;version=9]

"Description"=Google Update

"Path"=C:\Program Files\Google\Update\1.3.21.65\npGoogleUpdate3.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@videolan.org/vlc,version=1.1.5]

"Description"=VLC Multimedia Plugin

"Path"=D:\programmes\VLC\npvlc.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\Adobe Reader]

"Description"=Handles PDFs in-place in Firefox

"Path"=C:\Program Files\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll

C:\Program Files\Mozilla Firefox\extensions\

{972ce4c6-7e08-4474-a285-3208198ce6fd}

{CAFEEFAC-0016-0000-0013-ABCDEFFEDCBA}

{CAFEEFAC-0016-0000-0014-ABCDEFFEDCBA}

{CAFEEFAC-0016-0000-0015-ABCDEFFEDCBA}

{CAFEEFAC-0016-0000-0020-ABCDEFFEDCBA}

{CAFEEFAC-0016-0000-0022-ABCDEFFEDCBA}

{CAFEEFAC-0016-0000-0023-ABCDEFFEDCBA}

{CAFEEFAC-0016-0000-0024-ABCDEFFEDCBA}

{CAFEEFAC-0016-0000-0026-ABCDEFFEDCBA}

C:\Program Files\Mozilla Firefox\components\

binary.manifest

browsercomps.dll

nppl3260.xpt

nsILegitCheckPlugin.xpt

nsJSRealPlayerPlugin.xpt

C:\Program Files\Mozilla Firefox\plugins\

np-mswmp.dll

npdeployJava1.dll

npLegitCheckPlugin.dll

nppdf32.dll

nppdf32.FRA

nppl3260.dll

npqtplugin.dll

nprjplug.dll

nprpjplug.dll

np_gp.dll

WMP Firefox Plugin License.rtf

WMP Firefox Plugin RelNotes.txt

C:\Program Files\Mozilla Firefox\searchplugins\

amazon-france.xml

bing.xml

cnrtl-tlfi-fr.xml

eBay-france.xml

google.xml

wikipedia-fr.xml

yahoo-france.xml

C:\Documents and Settings\van raemdonck.VAN-FC00B2E8E73\Application Data\Mozilla\Firefox\Profiles\e9g2otwj.default\extensions\

ChoiceGuard@Microsoft

keyscrambler@qfx.software.corporation

{20a82645-c095-46ed-80e3-08825760534b}

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}]

Adobe PDF Link Helper - C:\Program Files\Fichiers communs\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2011-06-06 63912]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{2B9F5787-88A5-4945-90E7-C4B18563BC5E}]

KeyScramblerBHO Class - C:\Program Files\KeyScrambler\KeyScramblerIE.dll [2011-07-18 915256]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{5C255C8A-E604-49b4-9D64-90988571CECB}]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{6EBF7485-159F-4bff-A14F-B9E3AAC4465B}]

Search Helper - C:\Program Files\Microsoft\Search Enhancement Pack\Search Helper\SearchHelper.dll [2009-01-14 92504]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06}]

avast! WebRep - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2011-09-06 806456]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]

Programme d'aide de l'Assistant de connexion Windows Live - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2009-01-22 408448]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]

Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre6\bin\jp2ssv.dll [2011-02-03 41760]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E15A8DC0-8516-42A1-81EA-DC94EC1ACF10}]

Windows Live Toolbar Helper - C:\Program Files\Windows Live\Toolbar\wltcore.dll [2010-04-16 1067872]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E7E6F031-17CE-4C07-BC86-EABFE594F69C}]

JQSIEStartDetectorImpl Class - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll [2011-02-03 79648]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]

{21FA44EF-376D-4D53-9B0F-8A89D3229068} - &Windows Live Toolbar - C:\Program Files\Windows Live\Toolbar\wltcore.dll [2010-04-16 1067872]

{8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - avast! WebRep - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2011-09-06 806456]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]

"Alcmtr"=C:\WINDOWSD\ALCMTR.EXE [2005-05-03 69632]

"TkBellExe"=:C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe -osboot []

"avast"=C:\Program Files\AVAST Software\Avast\avastUI.exe [2011-09-06 3722416]

"NvMediaCenter"=C:\WINDOWSD\system32\NvMcTray.dll [2011-02-23 111208]

"NvCplDaemon"=C:\WINDOWSD\system32\NvCpl.dll [2011-02-23 13880424]

"nwiz"=C:\Program Files\NVIDIA Corporation\nView\nwiz.exe [2010-11-04 1753192]

"IntelliPoint"=C:\Program Files\Microsoft IntelliPoint\ipoint.exe [2010-07-21 1797008]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]

"ctfmon.exe"=C:\WINDOWSD\system32\ctfmon.exe [2008-04-14 15360]

"Google Update"=C:\Documents and Settings\van raemdonck.VAN-FC00B2E8E73\Local Settings\Application Data\Google\Update\GoogleUpdate.exe [2011-06-08 136176]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Load]

 []

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Run]

 []

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Documents and Settings^All Users.WINDOWSD^Menu Démarrer^Programmes^Démarrage^Adobe Reader Speed Launch.lnk]

[]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Documents and Settings^All Users.WINDOWSD^Menu Démarrer^Programmes^Démarrage^Windows Search.lnk]

C:\PROGRA~1\Windows Desktop Search\WindowsSearch.exe [2008-05-26 123904]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Documents and Settings^van raemdonck.VAN-FC00B2E8E73^Menu Démarrer^Programmes^Démarrage^Webshots Daily Features.lnk]

[]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Documents and Settings^van raemdonck.VAN-FC00B2E8E73^Menu Démarrer^Programmes^Démarrage^WebshotsWidget.lnk]

[]

C:\Documents and Settings\All Users.WINDOWSD\Menu Démarrer\Programmes\Démarrage

hp psc 1000 series.lnk - C:\Program Files\Hewlett-Packard\Digital Imaging\bin\hpohmr08.exe

hpoddt01.exe.lnk - C:\Program Files\Hewlett-Packard\Digital Imaging\bin\hpotdd01.exe

C:\Documents and Settings\van raemdonck.VAN-FC00B2E8E73\Menu Démarrer\Programmes\Démarrage

Microsoft Recherche accélérée.lnk - C:\Program Files\Microsoft Office\Office\FINDFAST.EXE

Webshots.lnk - C:\Program Files\Webshots\3.1.5.7619\Launcher.exe

~Disabled

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]

WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\WINDOWSD\system32\WPDShServiceObj.dll [2006-10-18 133632]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]

"{56F9679E-7826-4C84-81F3-532071A8BCC5}"=C:\Program Files\Windows Desktop Search\MSNLNamespaceMgr.dll [2009-05-24 304128]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Lavasoft Ad-Aware Service]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Lavasoft Ad-Aware Service]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{1a3e09be-1e45-494b-9174-d7385b45bbf5}]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]

"dontdisplaylastusername"=0

"legalnoticecaption"=

"legalnoticetext"=

"shutdownwithoutlogon"=1

"undockwithoutlogon"=1

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]

"NoDriveTypeAutoRun"=145

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]

"HonorAutoRunSetting"=1

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"

"C:\WINDOWSD\system32\usmt\migwiz.exe"="C:\WINDOWSD\system32\usmt\migwiz.exe:*:Enabled:Assistant Transfert de fichiers et de paramètres"

"C:\Program Files\Messenger\msmsgs.exe"="C:\Program Files\Messenger\msmsgs.exe:*:Enabled:Windows Messenger"

"C:\Program Files\Windows Live\Messenger\wlcsdk.exe"="C:\Program Files\Windows Live\Messenger\wlcsdk.exe:*:Enabled:Windows Live Call"

"C:\Program Files\Windows Live\Messenger\msnmsgr.exe"="C:\Program Files\Windows Live\Messenger\msnmsgr.exe:*:Enabled:Windows Live Messenger"

"C:\Program Files\Windows Live\Sync\WindowsLiveSync.exe"="C:\Program Files\Windows Live\Sync\WindowsLiveSync.exe:*:Enabled:Windows Live FolderShare"

"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"

"C:\Program Files\LimeWire\LimeWire.exe"="C:\Program Files\LimeWire\LimeWire.exe:*:Enabled:LimeWire"

"C:\Program Files\VideoLAN\VLC\vlc.exe"="C:\Program Files\VideoLAN\VLC\vlc.exe:*:Enabled:VLC media player"

"C:\Program Files\eMule\emule.exe"="C:\Program Files\eMule\emule.exe:*:Enabled:eMule"

"C:\Program Files\BearShare Applications\BearShare\BearShare.exe"="C:\Program Files\BearShare Applications\BearShare\BearShare.exe:*:Enabled:BearShare"

"C:\Program Files\Google\Google Earth\client\googleearth.exe"="C:\Program Files\Google\Google Earth\client\googleearth.exe:*:Enabled:Google Earth"

"C:\Program Files\Vuze\Azureus.exe"="C:\Program Files\Vuze\Azureus.exe:*:Enabled:Azureus / Vuze"

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"

"C:\Program Files\Windows Live\Messenger\wlcsdk.exe"="C:\Program Files\Windows Live\Messenger\wlcsdk.exe:*:Enabled:Windows Live Call"

"C:\Program Files\Windows Live\Messenger\msnmsgr.exe"="C:\Program Files\Windows Live\Messenger\msnmsgr.exe:*:Enabled:Windows Live Messenger"

"C:\Program Files\Windows Live\Sync\WindowsLiveSync.exe"="C:\Program Files\Windows Live\Sync\WindowsLiveSync.exe:*:Enabled:Windows Live FolderShare"

"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"

"C:\Program Files\BearShare Applications\BearShare\BearShare.exe"="C:\Program Files\BearShare Applications\BearShare\BearShare.exe:*:Enabled:BearShare"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]

"midimapper"=midimap.dll

"msacm.imaadpcm"=imaadp32.acm

"msacm.msadpcm"=msadp32.acm

"msacm.msg711"=msg711.acm

"msacm.msgsm610"=msgsm32.acm

"msacm.trspch"=tssoft32.acm

"vidc.cvid"=iccvid.dll

"vidc.I420"=msh263.drv

"vidc.iv31"=ir32_32.dll

"vidc.iv32"=ir32_32.dll

"vidc.iv41"=ir41_32.ax

"vidc.iyuv"=iyuv_32.dll

"vidc.mrle"=msrle32.dll

"vidc.msvc"=msvidc32.dll

"vidc.uyvy"=msyuv.dll

"vidc.yuy2"=msyuv.dll

"vidc.yvu9"=tsbyuv.dll

"vidc.yvyu"=msyuv.dll

"wavemapper"=msacm32.drv

"msacm.msg723"=msg723.acm

"vidc.M263"=msh263.drv

"vidc.M261"=msh261.drv

"msacm.msaudio1"=msaud32.acm

"msacm.sl_anet"=sl_anet.acm

"msacm.iac2"=C:\WINDOWSD\system32\iac25_32.ax

"vidc.iv50"=ir50_32.dll

"msacm.l3acm"=C:\WINDOWSD\system32\l3codeca.acm

"wave"=wdmaud.drv

"midi"=wdmaud.drv

"mixer"=wdmaud.drv

"aux"=wdmaud.drv

"msacm.siren"=sirenacm.dll

"wave1"=wdmaud.drv

"midi1"=wdmaud.drv

"mixer1"=wdmaud.drv

"aux1"=wdmaud.drv

======List of files/folders created in the last 1 month======

2011-09-14 21:37:41 ----D---- C:\Documents and Settings\van raemdonck.VAN-FC00B2E8E73\Application Data\ESTsoft

2011-09-13 16:32:17 ----A---- C:\Ad-Report-CLEAN[2].txt

2011-09-13 16:22:31 ----A---- C:\Ad-Report-SCAN[5].txt

2011-09-01 01:53:55 ----D---- C:\Program Files\OCCT

======List of files/folders modified in the last 1 month======

2011-09-16 10:07:30 ----D---- C:\WINDOWSD\Prefetch

2011-09-16 10:07:29 ----D---- C:\Program Files\Trend Micro

2011-09-16 10:04:27 ----D---- C:\WINDOWSD\Temp

2011-09-16 10:03:24 ----D---- C:\WINDOWSD\system32\CatRoot2

2011-09-16 10:03:01 ----SD---- C:\WINDOWSD\Tasks

2011-09-16 10:02:59 ----AH---- C:\WINDOWSD\system32\FFASTLOG.TXT

2011-09-16 10:02:40 ----D---- C:\WINDOWSD\Registration

2011-09-16 10:02:28 ----D---- C:\WINDOWSD

2011-09-16 02:08:51 ----A---- C:\WINDOWSD\SchedLgU.Txt

2011-09-16 01:37:56 ----D---- C:\WINDOWSD\system32\drivers

2011-09-16 00:18:20 ----D---- C:\WINDOWSD\system32

2011-09-15 18:44:10 ----D---- C:\WINDOWSD\Minidump

2011-09-15 18:44:10 ----D---- C:\WINDOWSD\Debug

2011-09-15 11:14:23 ----HD---- C:\WINDOWSD\inf

2011-09-15 09:07:03 ----D---- C:\Program Files\Mozilla Firefox

2011-09-14 23:32:15 ----D---- C:\Config.Msi

2011-09-14 23:30:29 ----SHD---- C:\WINDOWSD\Installer

2011-09-14 23:27:06 ----RD---- C:\Program Files

2011-09-14 12:46:54 ----RSHDC---- C:\WINDOWSD\system32\dllcache

2011-09-14 12:45:29 ----A---- C:\WINDOWSD\system32\MRT.exe

2011-09-14 12:44:46 ----HD---- C:\WINDOWSD\$hf_mig$

2011-09-13 18:53:50 ----D---- C:\Program Files\Internet Explorer

2011-09-12 20:45:42 ----D---- C:\WINDOWSD\Microsoft.NET

2011-09-12 20:44:48 ----RSD---- C:\WINDOWSD\assembly

2011-09-12 15:53:42 ----D---- C:\WINDOWSD\network diagnostic

2011-09-10 23:58:50 ----D---- C:\Program Files\MyDefrag v4.3.1

2011-09-09 18:34:14 ----D---- C:\WINDOWSD\system32\config

2011-09-09 18:33:58 ----D---- C:\WINDOWSD\system32\wbem

2011-09-09 13:51:56 ----D---- C:\Program Files\Fichiers communs\Microsoft Shared

2011-09-09 11:53:19 ----D---- C:\Program Files\Ad-remover

2011-09-09 11:12:01 ----A---- C:\WINDOWSD\system32\crypt32.dll

2011-09-07 23:45:28 ----ASH---- C:\boot.ini

2011-09-06 22:45:29 ----A---- C:\WINDOWSD\system32\aswBoot.exe

2011-09-02 21:08:20 ----D---- C:\WINDOWSD\WinSxS

2011-09-02 21:08:13 ----A---- C:\WINDOWSD\system32\PerfStringBackup.INI

2011-09-01 18:59:39 ----D---- C:\Program Files\Glary Utilities

2011-09-01 09:51:32 ----D---- C:\Program Files\Bonjour

2011-08-29 22:54:08 ----A---- C:\WINDOWSD\win.ini

2011-08-29 22:52:20 ----D---- C:\WINDOWS

2011-08-23 14:30:28 ----SD---- C:\Documents and Settings\van raemdonck.VAN-FC00B2E8E73\Application Data\Microsoft

2011-08-23 14:22:05 ----SHD---- C:\System Volume Information

2011-08-23 14:22:05 ----D---- C:\WINDOWSD\system32\Restore

2011-08-23 11:10:28 ----D---- C:\Documents and Settings

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 hotcore3;Hotcore helper; C:\WINDOWSD\system32\DRIVERS\hotcore3.sys [2008-12-13 40496]

R0 Lbd;Lbd; C:\WINDOWSD\system32\DRIVERS\Lbd.sys [2010-07-12 64288]

R1 Aavmker4;avast! Asynchronous Virus Monitor; C:\WINDOWSD\system32\drivers\Aavmker4.sys [2011-09-06 30808]

R1 AFS2K;AFS2k; C:\WINDOWSD\system32\drivers\AFS2K.sys [2011-07-25 82380]

R1 AmdK8;Pilote de processeur AMD; C:\WINDOWSD\system32\DRIVERS\AmdK8.sys [2006-07-01 43520]

R1 aswRdr;aswRdr; C:\WINDOWSD\system32\drivers\aswRdr.sys [2011-09-06 34392]

R1 aswSnx;aswSnx; C:\WINDOWSD\system32\drivers\aswSnx.sys [2011-09-06 442200]

R1 aswSP;aswSP; C:\WINDOWSD\system32\drivers\aswSP.sys [2011-09-06 320856]

R1 aswTdi;avast! Network Shield Support; C:\WINDOWSD\system32\drivers\aswTdi.sys [2011-09-06 52568]

R1 WmiAcpi;Interface de gestion Microsoft Windows pour ACPI; C:\WINDOWSD\system32\DRIVERS\wmiacpi.sys [2008-04-13 8832]

R2 aswFsBlk;aswFsBlk; C:\WINDOWSD\system32\drivers\aswFsBlk.sys [2011-09-06 20568]

R2 aswMon2;avast! Standard Shield Support; C:\WINDOWSD\system32\drivers\aswMon2.sys [2011-09-06 110552]

R2 irda;Protocole IrDA; C:\WINDOWSD\system32\DRIVERS\irda.sys [2008-04-13 88192]

R2 StarOpen;StarOpen; C:\WINDOWSD\system32\drivers\StarOpen.sys [2009-11-12 5504]

R2 stltrk2k;STLTR2K; C:\WINDOWSD\System32\Drivers\stltrk2k.sys [2000-06-02 13806]

R3 HDAudBus;Pilote de bus Microsoft UAA pour High Definition Audio; C:\WINDOWSD\system32\DRIVERS\HDAudBus.sys [2008-04-13 144384]

R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\WINDOWSD\system32\drivers\RtkHDAud.sys [2007-11-27 4630016]

R3 irsir;Pilote série infrarouge Microsoft; C:\WINDOWSD\system32\DRIVERS\irsir.sys [2001-08-17 18688]

R3 KeyScrambler;KeyScrambler; C:\WINDOWSD\System32\drivers\keyscrambler.sys [2011-04-25 225856]

R3 Lavasoft Kernexplorer;Lavasoft helper driver; \??\C:\Program Files\Lavasoft\Ad-Aware\KernExplorer.sys []

R3 mdf16;mdf16; \??\C:\Program Files\Clarus\Samsung SecretZone\mdf16.sys []

R3 mvd22;mvd22; \??\C:\Program Files\Clarus\Samsung SecretZone\mvd22.sys []

R3 nv;nv; C:\WINDOWSD\system32\DRIVERS\nv4_mini.sys [2011-02-23 9888384]

R3 NVENETFD;NVIDIA nForce Networking Controller Driver; C:\WINDOWSD\system32\DRIVERS\NVENETFD.sys [2007-03-06 58752]

R3 nvnetbus;NVIDIA Network Bus Enumerator; C:\WINDOWSD\system32\DRIVERS\nvnetbus.sys [2007-03-06 19968]

R3 nvsmu;nvsmu; C:\WINDOWSD\system32\DRIVERS\nvsmu.sys [2007-02-16 12032]

R3 Rasirda;Miniport réseau étendu (IrDA); C:\WINDOWSD\system32\DRIVERS\rasirda.sys [2001-08-17 19584]

S3 ACSSCR;ACR38 Smart Card Reader; C:\WINDOWSD\system32\DRIVERS\a38usb.sys [2011-06-04 33536]

S3 HidUsb;Pilote de classe HID Microsoft; C:\WINDOWSD\system32\DRIVERS\hidusb.sys [2008-04-13 10368]

S3 HPZid412;IEEE-1284.4 Driver HPZid412; C:\WINDOWSD\system32\DRIVERS\HPZid412.sys [2003-03-09 51024]

S3 HPZipr12;Print Class Driver for IEEE-1284.4 HPZipr12; C:\WINDOWSD\system32\DRIVERS\HPZipr12.sys [2003-03-09 16080]

S3 HPZius12;USB to IEEE-1284.4 Translation Driver HPZius12; C:\WINDOWSD\system32\DRIVERS\HPZius12.sys [2003-03-09 21456]

S3 usbaudio;Pilote USB audio (WDM); C:\WINDOWSD\system32\drivers\usbaudio.sys [2008-04-13 60032]

S3 usbccgp;Pilote parent générique USB Microsoft; C:\WINDOWSD\system32\DRIVERS\usbccgp.sys [2008-04-13 32128]

S3 usbprint;Classe d'imprimantes USB Microsoft; C:\WINDOWSD\system32\DRIVERS\usbprint.sys [2008-04-13 25856]

S3 usbscan;Pilote de scanneur USB; C:\WINDOWSD\system32\DRIVERS\usbscan.sys [2008-04-13 15104]

S3 USBSTOR;Pilote de stockage de masse USB; C:\WINDOWSD\system32\DRIVERS\USBSTOR.SYS [2008-04-13 26368]

S3 Wdf01000;Wdf01000; C:\WINDOWSD\system32\DRIVERS\Wdf01000.sys [2006-11-02 492000]

S3 WudfPf;Windows Driver Foundation - User-mode Driver Framework Platform Driver; C:\WINDOWSD\system32\DRIVERS\WudfPf.sys [2006-09-28 77568]

S3 WudfRd;Windows Driver Foundation - User-mode Driver Framework Reflector; C:\WINDOWSD\system32\DRIVERS\wudfrd.sys [2006-09-28 82944]

S3 xusb21;Xbox 360 Wireless Receiver Driver Service 21; C:\WINDOWSD\system32\DRIVERS\xusb21.sys [2007-08-28 55808]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 avast! Antivirus;avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [2011-09-06 44768]

R2 Irmon;Moniteur infrarouge; C:\WINDOWSD\system32\svchost.exe [2008-04-14 14336]

R2 Lavasoft Ad-Aware Service;Lavasoft Ad-Aware Service; C:\Program Files\Lavasoft\Ad-Aware\AAWService.exe [2011-09-02 2152152]

R2 NMSAccess;NMSAccess; C:\Program Files\CDBurnerXP\NMSAccessU.exe [2010-03-04 71096]

R2 NVSvc;NVIDIA Display Driver Service; C:\WINDOWSD\system32\nvsvc32.exe [2011-02-23 156776]

R2 PMBDeviceInfoProvider;PMBDeviceInfoProvider; C:\Program Files\Sony\PMB\PMBDeviceInfoProvider.exe [2011-03-15 428384]

R2 SZASSIST;SecretZone Assist Service; C:\Program Files\Clarus\Samsung SecretZone\SZAssistSVC.exe [2010-08-30 90112]

R2 WSearch;Windows Search; C:\WINDOWSD\system32\SearchIndexer.exe [2008-05-26 439808]

S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\WINDOWSD\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-03-18 130384]

S2 gupdate;Service Google Update (gupdate); C:\Program Files\Google\Update\GoogleUpdate.exe [2010-01-28 135664]

S2 JavaQuickStarterService;Java Quick Starter; C:\Program Files\Java\jre6\bin\jqs.exe [2011-02-02 153376]

S3 aspnet_state;Service d'état ASP.NET; C:\WINDOWSD\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe [2008-07-25 34312]

S3 FontCache3.0.0.0;Windows Presentation Foundation Font Cache 3.0.0.0; C:\WINDOWSD\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe [2008-07-29 46104]

S3 gupdatem;Service Google Update (gupdatem); C:\Program Files\Google\Update\GoogleUpdate.exe [2010-01-28 135664]

S3 idsvc;Windows CardSpace; C:\WINDOWSD\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe [2008-07-29 881664]

S3 nosGetPlusHelper;getPlus(R) Helper 3004; C:\WINDOWSD\System32\svchost.exe [2008-04-14 14336]

S3 Pml Driver HPZ12;Pml Driver HPZ12; C:\WINDOWSD\system32\HPZipm12.exe [2003-03-09 65795]

S3 WinRM;Windows Remote Management (WS-Management); C:\WINDOWSD\system32\svchost.exe [2008-04-14 14336]

S3 WMPNetworkSvc;Service Partage réseau du Lecteur Windows Media; C:\Program Files\Windows Media Player\WMPNetwk.exe [2006-11-03 918016]

S3 WPFFontCache_v0400;Windows Presentation Foundation Font Cache 4.0.0.0; C:\WINDOWSD\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe [2010-03-18 753504]

S3 WudfSvc;Windows Driver Foundation - User-mode Driver Framework; C:\WINDOWSD\system32\svchost.exe [2008-04-14 14336]

S4 clr_optimization_v2.0.50727_32;.NET Runtime Optimization Service v2.0.50727_X86; C:\WINDOWSD\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe [2008-07-25 69632]

S4 NetTcpPortSharing;Service de partage de ports Net.Tcp; C:\WINDOWSD\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe [2008-07-29 132096]

-----------------EOF-----------------

witekop
 Posté le 16/09/2011 à 10:15 
Aller en bas de la page Revenir au message précédent Revenir en haut de la page
Astucien

RE ,

j'ai été obligé de l'envoyer en reponse rapide normalement cela marquait toujour erreur interne au serveur

C'est RSIT celui ci.

Publicité
Pages : [1] 2 ... Fin
Page 1 sur 2 [Fin]

Vous devez être connecté pour participer à la discussion.
Cliquez ici pour vous identifier.

Vous n'avez pas de compte ? Créez-en un gratuitement !
Recevoir PC Astuces par e-mail


La Lettre quotidienne +226 000 inscrits
Avec l'actu, des logiciels, des applis, des astuces, des bons plans, ...

Les bonnes affaires
Une fois par semaine, un récap des meilleurs offres.

Les fonds d'écran
De jolies photos pour personnaliser votre bureau. Une fois par semaine.

Les nouveaux Bons Plans
Des notifications pour ne pas rater les bons plans publiés sur le site.

Les bons plans du moment PC Astuces

Tous les Bons Plans
14,90 €Windows 10 Pro 32/64 bits OEM à 14,90 €
Valable jusqu'au 08 Décembre

Le vendeur sérieux LicenSE-ONLine propose sur Amazon la clé d'activation pour Windows 10 professionnel en français 32 bits / 64 bits à 14,90 €. Cette clé livrée par email fonctionne avec l'outil d'installation et de création de support de Microsoft que vous pouvez télécharger ici ou directement avec l'ISO de Windows 10 Pro. De quoi installer légalement Windows 10 Pro sur un PC. Pour en savoir plus sur l'achat et l'installation d'une clé OEM de Windows 10, suivez les indications de notre dossier pratique.

Notez que vous pourrez également passer à Windows 11 gratuitement avec cette clé.


> Voir l'offre
29,99 €Radio réveil Lenovo Smart Clock Essential avec assistant Google à 29,99 €
Valable jusqu'au 08 Décembre

Darty fait une promotion sur le radio réveil Lenovo Smart Clock Essential avec assistant Google qui passe à 29,99 € au lieu de 49 €. Avec son large affichage extrêmement visible, vous pouvez consulter l’heure depuis l’autre bout de la pièce. Parlez à Google pour lui poser des questions, écouter de la musique, définir votre heure de réveil, contrôler vos appareils domestiques intelligents et bien plus encore. Cette horloge intelligente est là pour vous aider à être plus productif et à gagner du temps. Elle dispose également d’une veilleuse, d’un haut-parleur et de microphones intégrés.


> Voir l'offre
GratuitUn livre audio offert sur Amazon.fr
Valable jusqu'au 04 Janvier

En vous inscrivant à l'offre d'essai gratuite du service de livres audio Audible (qui appartient à Amazon) vous pourrez télécharger gratuitement un livre audio. L'abonnement passe ensuite à 9,95 € / mois après ce mois d'essai. Notez que l'offre est résiliable à tout moment et facilement et ce, même avant la fin de l'essai gratuit. Les membres Amazon Prime bénéficient de 2 mois gratuits (2 livres audio offerts).

Vous pouvez prendre n'importe quel livre audio parmi une large sélection de 500 000 titres, peu importe sa durée ou son prix. Vous pourrez télécharger et d'écouter (même hors connexion) vos livres via l'application Audible ou directivement via le site.

Vous n'avez pas le temps de lire ? Avec Audible, écoutez vos livres en voiture, en marchant, en faisant du sport, ...


> Voir l'offre

Sujets relatifs
Demande d'aide PC peut être infecté
PC portable encombré demande 5mn au démarrage
Sécunia demande une MAJ de microsoft 8.1?
Demande d'aide pour une désinféction, svp
Demande de modification contrôle de compte utilisateur
demande de nettoyage
Technique de nettoyage ? Demande d'explication...
"Ressources système insuffisantes pour terminer le service demandé."
pc très lent et peut être infecté
demande de désinfection
Plus de sujets relatifs à demande si on peut entrer sur mon DD
 > Tous les forums > Forum Sécurité