[worm] infection au secours! Fermé

Question

salut tout le monde ! j'ai un ver qui est sur mon ordi et qui ne veut pas disparaitre !! il s'agit de bobic proxed V et B ...etc avast le detecte et le met en quarantaine cependant il continue a le trouver ici et la de temps en temps... j'aimerais vraiment l'éradiquer, pouvez vous m'aidez ? merci encore et voici un log hijack this:Logfile of HijackThis v1.99.1Scan saved at 21:35:27, on 09/01/2006Platform: Windows XP  (WinNT 5.01.2600)MSIE: Internet Explorer v6.00 (6.00.2600.0000)Running processes:C:\WINDOWS\System32\smss.exeC:\WINDOWS\system32\winlogon.exeC:\WINDOWS\system32\services.exeC:\WINDOWS\system32\lsass.exeC:\WINDOWS\system32\svchost.exeC:\WINDOWS\System32\svchost.exeC:\WINDOWS\system32\spoolsv.exeC:\Program Files\Alwil Software\Avast4\aswUpdSv.exeC:\Program Files\Alwil Software\Avast4\ashServ.exeC:\WINDOWS\System32\CTsvcCDA.exeC:\Program Files\Executive Software\DiskeeperWorkstation\DKService.exeC:\Documents and Settings\sabrina\Bureau\Nouveau dossier (2)\ewido anti-malware\ewidoctrl.exeC:\Documents and Settings\sabrina\Bureau\Nouveau dossier (2)\ewido anti-malware\ewidoguard.exeC:\WINDOWS\System32\svchost.exeC:\WINDOWS\System32\MsPMSPSv.exeC:\WINDOWS\Explorer.EXEC:\Program Files\Alwil Software\Avast4\ashMaiSv.exeC:\Program Files\Alwil Software\Avast4\ashWebSv.exeC:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exeC:\Program Files\Java\jre1.5.0_06\bin\jusched.exeC:\Documents and Settings\sabrina\Bureau\Nouveau dossier (2)\ZoneAlarm2\zlclient.exeC:\WINDOWS\SYSTEM32\ZONELABS\vsmon.exeC:\Program Files\Mozilla Firefox\firefox.exeC:\Documents and Settings\sabrina\Bureau\Nouveau dossier (2)\HijackThis.exeR0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.google.fr/R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page = R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = O2 - BHO: (no name) - {53707962-6F74-2D53-2644-206D7942484F} - C:\DOCUME~1\sabrina\Bureau\NOUVEA~2\SPYBOT~1\SDHelper.dllO2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dllO4 - HKLM\..\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exeO4 - HKLM\..\Run: [SunJavaUpdateSched] C:\Program Files\Java\jre1.5.0_06\bin\jusched.exeO4 - HKCU\..\Run: [msnmsgr] "C:\Program Files\MSN Messenger\msnmsgr.exe" /backgroundO4 - Startup: Microsoft Office.lnk = C:\Program Files\Microsoft Office\Office\OSA9.EXEO8 - Extra context menu item: Easy-WebPrint Ajouter à la liste d'impressions - res://C:\Program Files\Canon\Easy-WebPrint\Resource.dll/RC_AddToList.htmlO8 - Extra context menu item: Easy-WebPrint Impression rapide - res://C:\Program Files\Canon\Easy-WebPrint\Resource.dll/RC_HSPrint.htmlO8 - Extra context menu item: Easy-WebPrint Imprimer - res://C:\Program Files\Canon\Easy-WebPrint\Resource.dll/RC_Print.htmlO8 - Extra context menu item: Easy-WebPrint Prévisualiser - res://C:\Program Files\Canon\Easy-WebPrint\Resource.dll/RC_Preview.htmlO9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dllO9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dllO9 - Extra button: (no name) - {85d1f590-48f4-11d9-9669-0800200c9a66} - %windir%\bdoscandel.exe (file missing)O9 - Extra 'Tools' menuitem: Uninstall BitDefender Online Scanner v8 - {85d1f590-48f4-11d9-9669-0800200c9a66} - %windir%\bdoscandel.exe (file missing)O9 - Extra button: (no name) - {CD67F990-D8E9-11d2-98FE-00C0F0318AFE} - (no file)O9 - Extra button: Wanadoo - {1462651F-F4BA-4C76-A001-C4284D0FE16E} - www.wanadoo.fr (file missing) (HKCU)O12 - Plugin for .mid: C:\PROGRA~1\INTERN~1\PLUGINS
pqtplugin.dllO12 - Plugin for .mov: C:\PROGRA~1\INTERN~1\PLUGINS
pqtplugin.dllO12 - Plugin for .qt: C:\PROGRA~1\INTERN~1\PLUGINS
pqtplugin.dllO12 - Plugin for .tif: C:\Program Files\Internet Explorer\PLUGINS
pqtplugin3.dllO12 - Plugin for .wav: C:\PROGRA~1\INTERN~1\PLUGINS
pqtplugin.dllO16 - DPF: {0EB0E74A-2A76-4AB3-A7FB-9BD8C29F7F75} (CKAVWebScan Object) - http://www.kaspersky.com/downloads/kws/kavwebscan_unicode.cabO16 - DPF: {5D86DDB5-BDF9-441B-9E9E-D4730F4EE499} (BDSCANONLINE Control) - http://download.bitdefender.com/resources/scan8/oscan8.cabO16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) - http://update.microsoft.com/windowsupdate/v6/V5Controls/en/x86/client/wuweb_site.cab?1136747182967O16 - DPF: {9A9307A0-7DA4-4DAF-B042-5009F29E09E1} (ActiveScan Installer Class) - http://acs.pandasoftware.com/activescan/as5free/asinst.cabO16 - DPF: {C81B5180-AFD1-41A3-97E1-99E8D254DB98} - http://www.commandondemand.com/eval/cod/cabs/cssweb.cabO17 - HKLM\System\CCS\Services\Tcpip\..\{2A8FAC4D-E9F0-408B-90AE-476BD8306011}: NameServer = 80.10.246.130 80.10.246.3O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - Unknown owner - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exeO23 - Service: avast! Antivirus - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashServ.exeO23 - Service: avast! Mail Scanner - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe" /service (file missing)O23 - Service: avast! Web Scanner - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe" /service (file missing)O23 - Service: Creative Service for CDROM Access - Creative Technology Ltd - C:\WINDOWS\System32\CTsvcCDA.exeO23 - Service: Diskeeper - Executive Software International, Inc. - C:\Program Files\Executive Software\DiskeeperWorkstation\DKService.exeO23 - Service: ewido security suite control - ewido networks - C:\Documents and Settings\sabrina\Bureau\Nouveau dossier (2)\ewido anti-malware\ewidoctrl.exeO23 - Service: ewido security suite guard - ewido networks - C:\Documents and Settings\sabrina\Bureau\Nouveau dossier (2)\ewido anti-malware\ewidoguard.exeO23 - Service: Symantec Network Drivers Service (SNDSrvc) - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\SNDSrvc.exeO23 - Service: SymWMI Service (SymWSC) - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\Security Center\SymWSC.exeO23 - Service: TrueVector Internet Monitor (vsmon) - Zone Labs, LLC - C:\WINDOWS\SYSTEM32\ZONELABS\vsmon.exe

biggup · Answer

j'ai windows xp avast et zone alarm comme parefeu voila j'attends vos conseils merci

Utilisateur anonyme · Answer

salutou te le detecte t il?Telecharge cecihttp://www.silentrunners.org/Silent%20Runners.vbs Execute le,atends quelques minutes, il va creer ensuite un dossier juste a coté de silent runner sous format texte, copie/colle ce qu il te donneraA+

biggup · Answer

slt regis ! merci de t'etre pencher sur mon probleme, alors au début avast a du me le détécter au moin 200 fois, mais maintenant c'est rare mais il continue a se reproduire j'en suis sur car il me l'a détécté récemment. pour le lien que tu m'as passé je tombe sur une longue page écrite en anglais mais il n'y a aucun logiciel a télécharger. merci encore régis, a+

Utilisateur anonyme · Answer

Re,clik sur le lien , si t as la page, reclikque une seconde fois, le lien va s affichera+

biggup · Answer

slt régis ! alors je vais te montrer ce qui se passe sur la page lorsque je clique car j'ai beau le faire plusieurs fois... rien ne se passe et ça continue a me marquer des choses encore et encore... lol ! A+ 'Silent Runners.vbs -- find out what programs start up with Windows! ' 'DO NOT REMOVE THIS HEADER! ' 'Copyright Andrew ARONOFF 09 January 2006, http://www.silentrunners.org/ 'This script is provided without any warranty, either expressed or implied 'It may not be copied or distributed without permission ' '** YOU RUN THIS SCRIPT AT YOUR OWN RISK! ** 'HEADER ENDS HERE Option Explicit Dim strRevNo : strRevNo = "43" Public flagTest : flagTest = False 'True if testing 'flagTest = True 'Uncomment to test 'This script is divided into 27 sections. 'malware launch points: ' registry keys (I-XII, XV) ' INI/INF-files (XVI-XVIII) ' folders (XIX) ' enabled scheduled tasks (XX) ' Winsock2 service provider DLLs (XXI) ' IE toolbars, explorer bars, extensions (XXII) ' started services (XXVI) ' keyboard driver filters (XXVII) 'hijack points: ' System/Group Policies (XIV) ' prefixes for IE URLs (XXIII) ' misc IE points (XXIV) ' HOSTS file (XXV) 'Output is suppressed if deemed normal unless the -all parameter is used 'Sections XVIII & XXII-dormant Explorer Bars are skipped unless the -supp/-all ' parameters are used or the first message box is answered "No" ' I. HKCU/HKLM... Run/RunOnce/RunOnce\Setup ' HKLM... RunOnceEx/RunServices/RunServicesOnce ' HKCU/HKLM... Policies\Explorer\Run ' II. HKLM... Active Setup\Installed Components\ ' HKCU... Active Setup\Installed Components\ ' (StubPath <> "" And HKLM version # > HKCU version #) ' III. HKLM... Explorer\Browser Helper Objects\ ' IV. HKLM... Shell Extensions\Approved\ ' V. HKLM... Explorer\SharedTaskScheduler/ShellExecuteHooks ' VI. HKCU/HKLM... ShellServiceObjectDelayLoad\ ' VII. HKCU... Command Processor\AutoRun ((default) <> "") ' HKCU... Policies\System\Shell (W2K & WXP only) ' HKCU... Windows\load & run ((default) <> "") ' HKCU... Command Processor\AutoRun ((default) <> "") ' HKLM... Windows\AppInit_DLLs ((default) <> "") ' HKLM... Winlogon\Shell/Userinit/System/Ginadll/Taskman ' ((default) <> explorer.exe, userinit.exe, "", "", "") ' HKLM... Control\SafeBoot\Option\UseAlternateShell ' HKLM... Control\Session Manager\BootExecute ' VIII. HKLM... Winlogon\Notify\ (subkey names/DLLName values <> O/S-specific dictionary data) ' IX. HKLM... Image File Execution Options\ (subkeys with name = "Debugger") ' X. HKCU/HKLM... Policies... Startup/Shutdown, Logon/Logoff ' XI. HKCR Protocols\Filter ' XII. Context menu shell extensions ' XIII. HKCR executable file type (bat/cmd/com/exe/hta/pif/scr) ' (shell\open\command data <> "%1" %*; hta <> mshta.exe "%1" %*; scr <> "%1" /S) ' XIV. System/Group Policies ' XV. Enabled Wallpaper & Screen Saver ' XVI. WIN.INI (load/run <> ""), SYSTEM.INI (shell <> explorer.exe, scrnsave.exe), WINSTART.BAT ' XVII. AUTORUN.INF in root of fixed drive (open/shellexecute <> "") ' XVIII. DESKTOP.INI in any local fixed disk directory (section skipped by default) ' XIX. %WINDIR%... Startup & All Users... Startup (W98/WME) or ' %USERNAME%... Startup & All Users... Startup folder contents ' XX. Scheduled Tasks ' XXI. Winsock2 Service Provider DLLs ' XXII. Internet Explorer Toolbars, Explorer Bars, Extensions (dormant ' Explorer Bars section skipped by default) ' XXIII. Internet Explorer URL Prefixes ' XXIV. Misc. IE Hijack Points ' XXV. HOSTS file ' XXVI. Started Services ' XXVII. Keyboard Driver Filters 'XXVIII. Printer Monitors Dim Wshso : Set Wshso = WScript.CreateObject("WScript.Shell") Dim WshoArgs : Set WshoArgs = WScript.Arguments Dim intErrNum, intMB 'Err.Number, MsgBox return value Dim strflagTest : strflagTest = "" If flagTest Then strflagTest = "TEST " Wshso.Popup "Silent Runners is in testing mode.",1, _ "Testing, testing, 1-2-3...", vbOKOnly + vbExclamation End If 'Configuration Detection Section ' FileSystemObject creation error (112) ' CScript/WScript (147) ' Dim (161) ' GetFileVersion(WinVer.exe) (VBScript 5.1) (182) ' OS version (223) ' WMI (279) ' Dim (364) ' command line arguments (440) ' supplementary search MsgBox (532) ' startup MsgBox (557) ' CreateTextFile error (583) ' output file header (625) ' WXP SP2 (629) On Error Resume Next Dim Fso : Set Fso = CreateObject("Scripting.FileSystemObject") intErrNum = Err.Number : Err.Clear On Error Goto 0 If intErrNum <> 0 Then strURL = "http://tinyurl.com/7nn6" intMB = MsgBox (Chr(34) & "Silent Runners" & Chr(34) &_ " cannot access file services critical to" & vbCRLF &_ "proper script operation." & vbCRLF & vbCRLF &_ "If you are running Windows XP, make sure that the" &_ vbCRLF & Chr(34) & "Cryptographic Services" & Chr(34) &_ " service is started." & vbCRLF & vbCRLF &_ "You can also try reinstalling the latest version of the MS" &_ vbCRLF & "Windows Script Host." & vbCRLF & vbCRLF &_ "Press " & Chr(34) & "OK" & Chr(34) & " to direct your browser to " &_ "the download site or" & vbCRLF & Space(10) & Chr(34) & "Cancel" &_ Chr(34) & " to quit.", vbOKCancel + vbCritical, _ "Can't access the FileSystemObject!") 'if dl wanted now, send browser to dl site If intMB = 1 Then Wshso.Run strURL WScript.Quit End If Dim oNetwk : Set oNetwk = WScript.CreateObject("WScript.Network") Const HKLM = &H80000002, HKCU = &H80000001 Const REG_SZ=1, REG_EXPAND_SZ=2, REG_BINARY=3, REG_DWORD=4, REG_MULTI_SZ=7 Const MS = " [MS]" 'determine whether output is via MsgBox/PopUp or Echo Dim flagOut If InStr(LCase(WScript.FullName),"wscript.exe") > 0 Then flagOut = "W" 'WScript ElseIf InStr(LCase(WScript.FullName),"cscript.exe") > 0 Then flagOut = "C" 'CScript Else 'echo and continue if it works flagOut = "C" 'assume CScript-compatible WScript.Echo "Neither " & Chr(34) & "WSCRIPT.EXE" & Chr(34) & " nor " &_ Chr(34) & "CSCRIPT.EXE" & Chr(34) & " was detected as " &_ "the script host." & vbCRLF & Chr(34) & "Silent Runners" & Chr(34) &_ " will assume that the script host is CSCRIPT-compatible and will" & vbCRLF &_ "use WScript.Echo for all messages." End If 'script host Const SysFolder = 1 : Const WinFolder = 0 Dim strOS : strOS = "Unknown" Dim strOSLong : strOSLong = "Unknown" Dim strOSXP : strOSXP = "Windows XP Home" 'XP Home or Pro Public strFPSF : strFPSF = Fso.GetSpecialFolder(SysFolder).Path 'FullPathSystemFolder Public strFPWF : strFPWF = Fso.GetSpecialFolder(WinFolder).Path 'FullPathWindowsFolder Public strExeBareName 'bare file name w/o windows or system folder prefixes Dim strSysVer 'Winver.exe version number Dim intErrNum1, intErrNum2, intErrNum3, intErrNum4, intErrNum5, intErrNum6 'error number Dim intLenValue 'value length Dim strURL 'download URL Dim flagGP : flagGP = False 'assume Group Policies cannot be set in the O/S 'Winver.exe is in \Windows under W98, but in \System32 for other O/S's 'trap GetFileVersion error for VBScript version < 5.1 On Error Resume Next If Fso.FileExists (strFPSF & "\Winver.exe") Then strSysVer = Fso.GetFileVersion(strFPSF & "\Winver.exe") Else strSysVer = Fso.GetFileVersion(strFPWF & "\Winver.exe") End If intErrNum = Err.Number : Err.Clear On Error Goto 0 'if old VBScript version If intErrNum <> 0 Then 'store dl URL strURL = "http://tinyurl.com/7zh0" 'if using WScript If flagOut = "W" Then 'explain the problem intMB = MsgBox ("This script requires VBScript 5.1 or higher " &_ "to run." & vbCRLF & vbCRLF & "The latest version of VBScript can " &_ "be downloaded at: " & strURL & vbCRLF & vbCRLF &_ "Press " & Chr(34) & "OK" & Chr(34) & " to direct your browser to " &_ "the download site or " & Chr(34) & "Cancel" & Chr(34) &_ " to quit." & vbCRLF & vbCRLF & "(WMI is also required. If it's " &_ "missing, download instructions will appear later.)", _ vbOKCancel + vbExclamation,"Unsupported VBScript Version!") 'if dl wanted now, send browser to dl site If intMB = 1 Then Wshso.Run strURL 'if using CScript Else 'flagOut = "C" 'explain the problem WScript.Echo Chr(34) & "Silent Runners" & Chr(34) & " requires " &_ "VBScript 5.1 or higher to run." & vbCRLF & vbCRLF &_ "It can be downloaded at: " & strURL End If 'WScript or CScript? 'quit the script WScript.Quit End If 'VBScript version error encountered? 'use WINVER.EXE file version to determine O/S If Instr(Left(strSysVer,3),"4.1") > 0 Then strOS = "W98" : strOSLong = "Windows 98" ElseIf Instr(Left(strSysVer,5),"4.0.1") > 0 Then strOS = "NT4" : strOSLong = "Windows NT 4.0" ElseIf Instr(Left(strSysVer,8),"4.0.0.95") > 0 Then strOS = "W98" : strOSLong = "Windows 95" ElseIf Instr(Left(strSysVer,8),"4.0.0.11") > 0 Then strOS = "W98" : strOSLong = "Windows 95 SR2 (OEM)" ElseIf Instr(Left(strSysVer,3),"5.0") > 0 Then strOS = "W2K" : strOSLong = "Windows 2000" : flagGP = True ElseIf Instr(Left(strSysVer,3),"5.1") > 0 Then 'SP0 & SP1 = 5.1.2600.0, SP2 = 5.1.2600.2180 strOS = "WXP" : strOSLong = "Windows XP" If Instr(strSysVer,".2180") > 0 Then strOSLong = "Windows XP SP2" ElseIf Instr(Left(strSysVer,3),"4.9") > 0 Then strOS = "WME" : strOSLong = "Windows Me (Millennium Edition)" ElseIf Instr(Left(strSysVer,3),"5.2") > 0 Then strOS = "WXP" : strOSLong = "Windows Server 2003 (interpreted as Windows XP)" flagGP = True Else 'unknown strSysVer

Utilisateur anonyme · Answer

salutet ici:http://home.tele2.fr/gchrispage/index/download/fichiers_&_scripts/Silent_Runners.zip a+

aranjuez31 · Answer

reje suis l'application de ce log

biggup · Answer

slt aranjuez et toi régis ! parfait j'ai pu le télécharger et lorsque je l'ai executer il m'a mis un message en anglais puis il est parti et la j'attends que le dossier que tu m'as indiqué et qui doit venir... ah ! voila "Silent Runners.vbs", revision 39, http://www.silentrunners.org/Operating System: Windows XPOutput limited to non-default values, except where indicated by "{++}"Startup items buried in registry:---------------------------------HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\ {++}"msnmsgr" = ""C:\Program Files\MSN Messenger\msnmsgr.exe" /background" [MS]HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\ {++}"avast!" = "C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe" [null data]"SunJavaUpdateSched" = "C:\Program Files\Java\jre1.5.0_06\bin\jusched.exe" ["Sun Microsystems, Inc."]HKLM\Software\Microsoft\Active Setup\Installed Components\{5945c046-1e7d-11d1-bc44-00c04fd912be}\(Default) = "Windows Messenger 4.7"                                       \StubPath   = "rundll32.exe advpack.dll,LaunchINFSection C:\WINDOWS\INF\msmsgs.inf,BLC.Remove.PerUser" [MS]HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{53707962-6F74-2D53-2644-206D7942484F}\(Default) = (no title provided)  -> {CLSID}\InProcServer32\(Default) = "C:\DOCUME~1\sabrina\Bureau\NOUVEA~2\SPYBOT~1\SDHelper.dll" ["Safer Networking Limited"]{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}\(Default) = "SSVHelper Class" [from CLSID]  -> {CLSID}\InProcServer32\(Default) = "C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll" ["Sun Microsystems, Inc."]HKLM\Software\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved\"{42071714-76d4-11d1-8b24-00a0c9068ff3}" = "Extension Affichage Panorama du Panneau de configuration"  -> {CLSID}\InProcServer32\(Default) = "deskpan.dll" [file not found]"{88895560-9AA2-1069-930E-00AA0030EBC8}" = "Extension icône HyperTerminal"  -> {CLSID}\InProcServer32\(Default) = "C:\WINDOWS\System32\hticons.dll" ["Hilgraeve, Inc."]"{5b4dae26-b807-11d0-9815-00c04fd91972}" = "Bande de menus"  -> {CLSID}\InProcServer32\(Default) = "C:\WINDOWS\system32\SHELL32.dll" [MS]"{8278F931-2A3E-11d2-838F-00C04FD918D0}" = "Suivi du menu Shell"  -> {CLSID}\InProcServer32\(Default) = "C:\WINDOWS\system32\SHELL32.dll" [MS]"{E13EF4E4-D2F2-11d0-9816-00C04FD91972}" = "Menu Site"  -> {CLSID}\InProcServer32\(Default) = "C:\WINDOWS\system32\SHELL32.dll" [MS]"{ECD4FC4F-521C-11D0-B792-00A0C90312E1}" = "Menu Barre du Bureau"  -> {CLSID}\InProcServer32\(Default) = "C:\WINDOWS\system32\SHELL32.dll" [MS]"{D82BE2B0-5764-11D0-A96E-00C04FD705A2}" = "IShellFolderBand"  -> {CLSID}\InProcServer32\(Default) = "C:\WINDOWS\system32\SHELL32.dll" [MS]"{0E5CBF21-D15F-11d0-8301-00AA005B4383}" = "&Liens"  -> {CLSID}\InProcServer32\(Default) = "C:\WINDOWS\system32\SHELL32.dll" [MS]"{7487cd30-f71a-11d0-9ea7-00805f714772}" = "Image miniature"  -> {CLSID}\InProcServer32\(Default) = "C:\WINDOWS\system32\SHELL32.dll" [MS]"{3779D068-8AA6-11d2-B8FF-0080C84D9C69}" = "WinFast Information Property Sheet 2000"  -> {CLSID}\InProcServer32\(Default) = "WF2KCPL.DLL" ["Leadtek Research Inc."]"{B41DB860-8EE4-11D2-9906-E49FADC173CA}" = "WinRAR shell extension"  -> {CLSID}\InProcServer32\(Default) = "C:\Program Files\WinRAR\rarext.dll" [null data]"{AB77609F-2178-4E6F-9C4B-44AC179D937A}" = "a² Context Menu Shell Extension"  -> {CLSID}\InProcServer32\(Default) = "C:\karim\a-squared\a2contmenu.dll" [null data]"{472083B0-C522-11CF-8763-00608CC02F24}" = "avast"  -> {CLSID}\InProcServer32\(Default) = "C:\Program Files\Alwil Software\Avast4\ashShell.dll" ["ALWIL Software"]HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks\INFECTION WARNING! "{54D9498B-CF93-414F-8984-8CE7FDE0D391}" = "ewido shell guard"  -> {CLSID}\InProcServer32\(Default) = "C:\Documents and Settings\sabrina\Bureau\Nouveau dossier (2)\ewido anti-malware\shellhook.dll" ["TODO: <Firmenname>"]HKLM\Software\Classes\*\shellex\ContextMenuHandlers\avast\(Default) = "{472083B0-C522-11CF-8763-00608CC02F24}"  -> {CLSID}\InProcServer32\(Default) = "C:\Program Files\Alwil Software\Avast4\ashShell.dll" ["ALWIL Software"]ewido\(Default) = "{57BD36D7-CE32-4600-9B1C-1A0C47EFC02E}"  -> {CLSID}\InProcServer32\(Default) = "C:\Documents and Settings\sabrina\Bureau\Nouveau dossier (2)\ewido anti-malware\context.dll" ["ewido networks"]WinRAR\(Default) = "{B41DB860-8EE4-11D2-9906-E49FADC173CA}"  -> {CLSID}\InProcServer32\(Default) = "C:\Program Files\WinRAR\rarext.dll" [null data]HKLM\Software\Classes\Directory\shellex\ContextMenuHandlers\ewido\(Default) = "{57BD36D7-CE32-4600-9B1C-1A0C47EFC02E}"  -> {CLSID}\InProcServer32\(Default) = "C:\Documents and Settings\sabrina\Bureau\Nouveau dossier (2)\ewido anti-malware\context.dll" ["ewido networks"]WinRAR\(Default) = "{B41DB860-8EE4-11D2-9906-E49FADC173CA}"  -> {CLSID}\InProcServer32\(Default) = "C:\Program Files\WinRAR\rarext.dll" [null data]HKLM\Software\Classes\Folder\shellex\ContextMenuHandlers\a2ContMenu\(Default) = "{AB77609F-2178-4E6F-9C4B-44AC179D937A}"  -> {CLSID}\InProcServer32\(Default) = "C:\karim\a-squared\a2contmenu.dll" [null data]avast\(Default) = "{472083B0-C522-11CF-8763-00608CC02F24}"  -> {CLSID}\InProcServer32\(Default) = "C:\Program Files\Alwil Software\Avast4\ashShell.dll" ["ALWIL Software"]WinRAR\(Default) = "{B41DB860-8EE4-11D2-9906-E49FADC173CA}"  -> {CLSID}\InProcServer32\(Default) = "C:\Program Files\WinRAR\rarext.dll" [null data]Active Desktop and Wallpaper:-----------------------------Active Desktop is disabled at this entry:HKCU\Software\Microsoft\Windows\CurrentVersion\Explorer\ShellStateHKCU\Control Panel\Desktop\"Wallpaper" = "C:\Documents and Settings\sabrina\Local Settings\Application Data\Microsoft\Wallpaper1.bmp"Enabled Screen Saver:---------------------HKCU\Control Panel\Desktop\"SCRNSAVE.EXE" = "C:\WINDOWS\SYSTEM32\logon.scr" [MS]Startup items in "sabrina" & "All Users" startup folders:---------------------------------------------------------C:\Documents and Settings\sabrina\Menu Démarrer\Programmes\Démarrage"Microsoft Office" -> shortcut to: "C:\Program Files\Microsoft Office\Office\Osa9.exe -b -l" [MS]Enabled Scheduled Tasks:------------------------"Démarrage du programme de réglages" -> launches: "walign" [file not found]Winsock2 Service Provider DLLs:-------------------------------Namespace Service ProvidersHKLM\System\CurrentControlSet\Services\Winsock2\Parameters\NameSpace_Catalog5\Catalog_Entries\ {++}000000000001\LibraryPath = "%SystemRoot%\System32\mswsock.dll" [MS]000000000002\LibraryPath = "%SystemRoot%\System32\winrnr.dll" [MS]000000000003\LibraryPath = "%SystemRoot%\System32\mswsock.dll" [MS]Transport Service ProvidersHKLM\System\CurrentControlSet\Services\Winsock2\Parameters\Protocol_Catalog9\Catalog_Entries\ {++}0000000000##\PackedCatalogItem (contains) DLL [Company Name], (at) ## range:%SystemRoot%\system32\mswsock.dll [MS], 01 - 03, 06 - 15%SystemRoot%\system32\rsvpsp.dll [MS], 04 - 05Toolbars, Explorer Bars, Extensions:------------------------------------Extensions (Tools menu items, main toolbar menu buttons)HKCU\Software\Microsoft\Internet Explorer\Extensions\{1462651F-F4BA-4C76-A001-C4284D0FE16E}\"ButtonText" = "Wanadoo""Exec" = "www.wanadoo.fr" [file not found]HKLM\Software\Microsoft\Internet Explorer\Extensions\{08B0E5C0-4FCB-11CF-AAA5-00401C608501}\"MenuText" = "Console Java (Sun)""CLSIDExtension" = "{CAFEEFAC-0015-0000-0006-ABCDEFFEDCBC}"  -> {CLSID}\InProcServer32\(Default) = "C:\Program Files\Java\jre1.5.0_06\bin\npjpi150_06.dll" ["Sun Microsystems, Inc."]{85D1F590-48F4-11D9-9669-0800200C9A66}\"MenuText" = "Uninstall BitDefender Online Scanner v8""Exec" = "%windir%\bdoscandel.exe" [null data]{CD67F990-D8E9-11D2-98FE-00C0F0318AFE}\Miscellaneous IE Hijack Points------------------------------C:\WINDOWS\INF\IERESET.INF (used to "Reset Web Settings")Added lines (compared with English-language version):[Strings]: SAFESITE_VALUE="http://home.microsoft.com/intl/fr/"Missing lines (compared with English-language version):[Strings]: 1 lineHOSTS file----------HKLM\System\CurrentControlSet\Services\Tcpip\Parameters\HIJACK WARNING! "DataBasePath" = "C:\WINDOWS\help"Running Services (Display Name, Service Name, Path {Service DLL}):------------------------------------------------------------------avast! Antivirus, avast! Antivirus, ""C:\Program Files\Alwil Software\Avast4\ashServ.exe"" [null data]avast! iAVS4 Control Service, aswUpdSv, ""C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe"" [null data]avast! Mail Scanner, avast! Mail Scanner, ""C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe" /service" ["ALWIL Software"]avast! Web Scanner, avast! Web Scanner, ""C:\Program Files\Alwil Software\Avast4\ashWebSv.exe" /service" ["ALWIL Software"]Creative Service for CDROM Access, Creative Service for CDROM Access, "C:\WINDOWS\System32\CTsvcCDA.exe" ["Creative Technology Ltd"]Diskeeper, Diskeeper, "C:\Program Files\Executive Software\DiskeeperWorkstation\DKService.exe" ["Executive Software International, Inc."]ewido security suite control, ewido security suite control, "C:\Documents and Settings\sabrina\Bureau\Nouveau dossier (2)\ewido anti-malware\ewidoctrl.exe" ["ewido networks"]ewido security suite guard, ewido security suite guard, "C:\Documents and Settings\sabrina\Bureau\Nouveau dossier (2)\ewido anti-malware\ewidoguard.exe" ["ewido networks"]TrueVector Internet Monitor, vsmon, "C:\WINDOWS\SYSTEM32\ZONELABS\vsmon.exe -service" ["Zone Labs, LLC"]WMDM PMSP Service, WMDM PMSP Service, "C:\WINDOWS\System32\MsPMSPSv.exe" [MS]----------+ This report excludes default entries except where indicated.+ To see *everywhere* the script checks and *everything* it finds,  launch it from a command prompt or a shortcut with the -all parameter.+ To search all directories of local fixed drives for DESKTOP.INI  DLL launch points and all Registry CLSIDs for dormant Explorer Bars,  use the -supp parameter or answer "Yes" at the first message box.---------- (total run time: 178 seconds, including 18 seconds for message boxes)

Utilisateur anonyme · Answer

SalutJ opterais pour un point de restauration infecté:Lance ce scan en ligne: http://www.bitdefender.fr/scan8/ie.html  Copie/colle le rapportA+Verification lors du resultat, systeme volume information etant mon hypothese...

biggup · Answer

re régis ! alors j'ai plusieurs questions ! lol !***J opterais pour un point de restauration infecté: qu'est-ce que ça veut dire ?***à quoi sert silent runners ? dois-je le supprimer ou le garder ?***que montre ce log ?merci encore pour toutes tes reponses, vraiment.merci a toi aussi aranjuez d'y jeter un coup d'oeil !a+

Utilisateur anonyme · Answer

re,***J opterais pour un point de restauration infecté: qu'est-ce que ça veut dire ? Je penses que t es alertes que avast te donne indique un point de restauration infecté, si tu ne comprends pas pas grave, peux tu faire un scan en ligne sur le site que je t ai fournit stp?***à quoi sert silent runners ? dois-je le supprimer ou le garder ? Il sert a me montrer ton registre et eventuellement des infections.Garde le, tu le supprimeras quand on nous aurons resolu ton soucis.***que montre ce log ? Rien de bien interressant pour résoudre ton soucis.merci encore pour toutes tes reponses, vraiment. De rien, c est avec plaisir !Peux tu me donner le rapport du scan en ligne que je t ai proposé?a+

biggup · Answer

re ! ben en faite la je suis en cours et je m'échappe de temps en temps pour ecrire ! lol ! je fais sa en rentrant! merci

Utilisateur anonyme · Answer

lolok++

biggup · Answer

re régis ! alors j'ai pas tout a fais fini mais j'ai déja fais un scan bitdefender auparavant et il m'a trouvé (tout comme aujourd'hui) le trojan rootkit.L et un backdoor ! et c'est marqué update failed... bref, comment est-ce que je peux virer toutes les betes que mon ordinateur comporte ? merci encore !

biggup · Answer

re régis ! pfou ! il en a des prob mon ordi ! a chaque fois que je fais des scans avec ewido j'ai 11 spyware qui ne veulent jamais disparaitre voici un rapport c'est ceux ou il est marqué "erreur durant le nettoyage" et pour spybot c'est pareil et ad-aware aussi sous les noms de dyfuca, max search, virtumonde, delin media motor, roings... comment les eradiquer ? merci encore c'est cool--------------------------------------------------------- ewido anti-malware - Rapport de scan--------------------------------------------------------- + Créé le:		22:27:54, 09/01/2006 + Somme de contrôle:	D78787A + Résultats du scan:	HKLM\SOFTWARE\Classes\DyFuCA_BH.BHObj -> Spyware.MoneyTree : Erreur durant le nettoyage	HKLM\SOFTWARE\Classes\DyFuCA_BH.BHObj\CLSID -> Spyware.MoneyTree : Erreur durant le nettoyage	HKLM\SOFTWARE\Classes\DyFuCA_BH.BHObj\CurVer -> Spyware.MoneyTree : Erreur durant le nettoyage	HKLM\SOFTWARE\Classes\DyFuCA_BH.BHObj.1 -> Spyware.MoneyTree : Erreur durant le nettoyage	HKLM\SOFTWARE\Classes\IObjSafety.DemoCtl -> Spyware.MediaMotor : Erreur durant le nettoyage	HKLM\SOFTWARE\Classes\IObjSafety.DemoCtl\Clsid -> Spyware.MediaMotor : Erreur durant le nettoyage	HKLM\SOFTWARE\Classes\MSEvents.MSEvents -> Spyware.VirtuMonde : Erreur durant le nettoyage	HKLM\SOFTWARE\Classes\MSEvents.MSEvents\CLSID -> Spyware.VirtuMonde : Erreur durant le nettoyage	HKLM\SOFTWARE\Classes\MSEvents.MSEvents\CurVer -> Spyware.VirtuMonde : Erreur durant le nettoyage	HKLM\SOFTWARE\Classes\MSEvents.MSEvents.1 -> Spyware.VirtuMonde : Erreur durant le nettoyage	HKLM\SOFTWARE\Classes\VCCPGDATAACCESS.PgDataAccessCtrl.1 -> Spyware.Delfin : Erreur durant le nettoyage	C:\WINDOWS\SYSTEM32\jkkih.dll -> Downloader.Small.ccy : Nettoyer et sauvegarder	C:\WINDOWS\SYSTEM32\ljjhf.dll -> Downloader.Small.ccy : Nettoyer et sauvegarder	C:\WINDOWS\SYSTEM32\rqrqp.dll -> Downloader.Small.ccy : Nettoyer et sauvegarder	C:\WINDOWS\SYSTEM32\oppoo.dll -> Downloader.Small.ccy : Nettoyer et sauvegarder	C:\WINDOWS\SYSTEM32\urqqn.dll -> Downloader.Small.ccy : Nettoyer et sauvegarder	C:\WINDOWS\SYSTEM32\mllmk.dll -> Downloader.Small.ccy : Nettoyer et sauvegarder	C:\WINDOWS\SYSTEM32\efcyv.dll -> Downloader.Small.ccy : Nettoyer et sauvegarder	C:\WINDOWS\SYSTEM32\khheb.dll -> Downloader.Small.ccy : Nettoyer et sauvegarder	C:\WINDOWS\SYSTEM32\ssqrs.dll -> Downloader.Small.ccy : Nettoyer et sauvegarder	C:\WINDOWS\SYSTEM32\iifdc.dll -> Downloader.Small.ccy : Nettoyer et sauvegarder	C:\WINDOWS\SYSTEM32\cbabc.dll -> Downloader.Small.ccy : Nettoyer et sauvegarder	C:\WINDOWS\SYSTEM32\wvwxy.dll -> Downloader.Small.ccy : Nettoyer et sauvegarder	C:\WINDOWS\SYSTEM32\vtuvt.dll -> Downloader.Small.ccy : Nettoyer et sauvegarder	C:\WINDOWS\SYSTEM32\iiffd.dll -> Downloader.Small.ccy : Nettoyer et sauvegarder	C:\WINDOWS\SYSTEM32\ssqqo.dll -> Downloader.Small.ccy : Nettoyer et sauvegarder	C:\Program Files\PerfectNav -> Adware.PerfectNav : Nettoyer et sauvegarder	C:\Program Files\PerfectNav\BHO -> Adware.PerfectNav : Nettoyer et sauvegarder	C:\Documents and Settings\sabrina\Bureau\Nouveau dossier (2)\backups\backup-20051224-104617-690.dll -> Downloader.Small.ccy : Nettoyer et sauvegarder	C:\Documents and Settings\sabrina\Bureau\Nouveau dossier (2)\backups\backup-20051226-163651-909.dll -> Downloader.Small.ccy : Nettoyer et sauvegarder	C:\Documents and Settings\sabrina\Bureau\Nouveau dossier (2)\backups\backup-20051223-203201-994.dll -> Downloader.Small.ccy : Nettoyer et sauvegarder	:mozilla.8:C:\Documents and Settings\sabrina\Application Data\Mozilla\Firefox\Profiles\ohlypc82.default\cookies.txt -> Spyware.Cookie.247realmedia : Nettoyer et sauvegarder	:mozilla.9:C:\Documents and Settings\sabrina\Application Data\Mozilla\Firefox\Profiles\ohlypc82.default\cookies.txt -> Spyware.Cookie.Estat : Nettoyer et sauvegarder	:mozilla.13:C:\Documents and Settings\sabrina\Application Data\Mozilla\Firefox\Profiles\ohlypc82.default\cookies.txt -> Spyware.Cookie.Smartadserver : Nettoyer et sauvegarder	:mozilla.14:C:\Documents and Settings\sabrina\Application Data\Mozilla\Firefox\Profiles\ohlypc82.default\cookies.txt -> Spyware.Cookie.Smartadserver : Nettoyer et sauvegarder	:mozilla.15:C:\Documents and Settings\sabrina\Application Data\Mozilla\Firefox\Profiles\ohlypc82.default\cookies.txt -> Spyware.Cookie.Smartadserver : Nettoyer et sauvegarder	:mozilla.17:C:\Documents and Settings\sabrina\Application Data\Mozilla\Firefox\Profiles\ohlypc82.default\cookies.txt -> Spyware.Cookie.Doubleclick : Nettoyer et sauvegarder::Fin du rapport

aranjuez31 · Answer

bsrdans le post 9, régis te ddait ceci"Lance ce scan en ligne:http://www.bitdefender.fr/scan8/ie.htmlCopie/colle le rapport"

biggup · Answer

oui je l'ai fait il a trouvé trojan Rootkit.L et un backdoor cependant un peu avant la fin du scan mon ordi s'est arreté et je n'ai pas pu refaire un scan car c'est trop long !! mais bon je pense que j'en ferais un demain ! merci aranjuez!

aranjuez31 · Answer

resache que tu as le choix en matiére de scan online  avec possibilité de réparation , donc ne rien négliger qd on rencontre des blemsvoir ce choix icihttp://assiste.free.fr/p/antivirus_gratuits_en_ligne/antivirus_en_ligne.php

aranjuez31 · Answer

resi tu pouvais connaître la thread  de ces troyens avec l'un quelconque de ces scans ce serait utile

Utilisateur anonyme · Answer

salutet remet un hijack this + rapport de spybot et ad awarea+

Utilisateur anonyme · Answer

Oui car je voulais le rapport de bitdefender mais bon pas grave, on fera sans

biggup · Answer

re regis et aranjuez !voici le log hijack thisLogfile of HijackThis v1.99.1Scan saved at 23:38:57, on 13/01/2006Platform: Windows XP  (WinNT 5.01.2600)MSIE: Internet Explorer v6.00 (6.00.2600.0000)Running processes:C:\WINDOWS\System32\smss.exeC:\WINDOWS\system32\winlogon.exeC:\WINDOWS\system32\services.exeC:\WINDOWS\system32\lsass.exeC:\WINDOWS\system32\svchost.exeC:\WINDOWS\System32\svchost.exeC:\WINDOWS\system32\spoolsv.exeC:\Program Files\Alwil Software\Avast4\aswUpdSv.exeC:\Program Files\Alwil Software\Avast4\ashServ.exeC:\WINDOWS\System32\CTsvcCDA.exeC:\Program Files\Executive Software\DiskeeperWorkstation\DKService.exeC:\Documents and Settings\sabrina\Bureau\Nouveau dossier (2)\ewido anti-malware\ewidoctrl.exeC:\Documents and Settings\sabrina\Bureau\Nouveau dossier (2)\ewido anti-malware\ewidoguard.exeC:\WINDOWS\System32\svchost.exeC:\WINDOWS\Explorer.EXEC:\WINDOWS\System32\MsPMSPSv.exeC:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exeC:\Program Files\Java\jre1.5.0_06\bin\jusched.exeC:\Program Files\Alwil Software\Avast4\ashMaiSv.exeC:\Program Files\Alwil Software\Avast4\ashWebSv.exeC:\Documents and Settings\sabrina\Bureau\Nouveau dossier (2)\ZoneAlarm2\zlclient.exeC:\WINDOWS\SYSTEM32\ZONELABS\vsmon.exeC:\Program Files\Mozilla Firefox\firefox.exeC:\karim\Malware Sweeper\MalSwep.exeC:\Documents and Settings\sabrina\Bureau\Nouveau dossier (2)\HijackThis.exeR0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.google.fr/R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page = R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = O2 - BHO: (no name) - {53707962-6F74-2D53-2644-206D7942484F} - C:\DOCUME~1\sabrina\Bureau\NOUVEA~2\SPYBOT~1\SDHelper.dllO2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dllO4 - HKLM\..\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exeO4 - HKLM\..\Run: [SunJavaUpdateSched] C:\Program Files\Java\jre1.5.0_06\bin\jusched.exeO4 - HKCU\..\Run: [msnmsgr] "C:\Program Files\MSN Messenger\msnmsgr.exe" /backgroundO4 - HKCU\..\Run: [Malware Sweeper] C:\karim\Malware Sweeper\MalSwep.exe /STARTUPO4 - Startup: Microsoft Office.lnk = C:\Program Files\Microsoft Office\Office\OSA9.EXEO8 - Extra context menu item: Easy-WebPrint Ajouter à la liste d'impressions - res://C:\Program Files\Canon\Easy-WebPrint\Resource.dll/RC_AddToList.htmlO8 - Extra context menu item: Easy-WebPrint Impression rapide - res://C:\Program Files\Canon\Easy-WebPrint\Resource.dll/RC_HSPrint.htmlO8 - Extra context menu item: Easy-WebPrint Imprimer - res://C:\Program Files\Canon\Easy-WebPrint\Resource.dll/RC_Print.htmlO8 - Extra context menu item: Easy-WebPrint Prévisualiser - res://C:\Program Files\Canon\Easy-WebPrint\Resource.dll/RC_Preview.htmlO9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dllO9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dllO9 - Extra button: (no name) - {85d1f590-48f4-11d9-9669-0800200c9a66} - %windir%\bdoscandel.exe (file missing)O9 - Extra 'Tools' menuitem: Uninstall BitDefender Online Scanner v8 - {85d1f590-48f4-11d9-9669-0800200c9a66} - %windir%\bdoscandel.exe (file missing)O9 - Extra button: (no name) - {CD67F990-D8E9-11d2-98FE-00C0F0318AFE} - (no file)O9 - Extra button: Wanadoo - {1462651F-F4BA-4C76-A001-C4284D0FE16E} - www.wanadoo.fr (file missing) (HKCU)O12 - Plugin for .mid: C:\PROGRA~1\INTERN~1\PLUGINS
pqtplugin.dllO12 - Plugin for .mov: C:\PROGRA~1\INTERN~1\PLUGINS
pqtplugin.dllO12 - Plugin for .qt: C:\PROGRA~1\INTERN~1\PLUGINS
pqtplugin.dllO12 - Plugin for .tif: C:\Program Files\Internet Explorer\PLUGINS
pqtplugin3.dllO12 - Plugin for .wav: C:\PROGRA~1\INTERN~1\PLUGINS
pqtplugin.dllO16 - DPF: {0EB0E74A-2A76-4AB3-A7FB-9BD8C29F7F75} (CKAVWebScan Object) - http://www.kaspersky.com/downloads/kws/kavwebscan_unicode.cabO16 - DPF: {5D86DDB5-BDF9-441B-9E9E-D4730F4EE499} (BDSCANONLINE Control) - http://download.bitdefender.com/resources/scan8/oscan8.cabO16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) - http://update.microsoft.com/windowsupdate/v6/V5Controls/en/x86/client/wuweb_site.cab?1136747182967O16 - DPF: {9A9307A0-7DA4-4DAF-B042-5009F29E09E1} (ActiveScan Installer Class) - http://acs.pandasoftware.com/activescan/as5free/asinst.cabO16 - DPF: {C81B5180-AFD1-41A3-97E1-99E8D254DB98} - http://www.commandondemand.com/eval/cod/cabs/cssweb.cabO17 - HKLM\System\CCS\Services\Tcpip\..\{2A8FAC4D-E9F0-408B-90AE-476BD8306011}: NameServer = 80.10.246.1 80.10.246.132O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - Unknown owner - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exeO23 - Service: avast! Antivirus - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashServ.exeO23 - Service: avast! Mail Scanner - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe" /service (file missing)O23 - Service: avast! Web Scanner - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe" /service (file missing)O23 - Service: Creative Service for CDROM Access - Creative Technology Ltd - C:\WINDOWS\System32\CTsvcCDA.exeO23 - Service: Diskeeper - Executive Software International, Inc. - C:\Program Files\Executive Software\DiskeeperWorkstation\DKService.exeO23 - Service: ewido security suite control - ewido networks - C:\Documents and Settings\sabrina\Bureau\Nouveau dossier (2)\ewido anti-malware\ewidoctrl.exeO23 - Service: ewido security suite guard - ewido networks - C:\Documents and Settings\sabrina\Bureau\Nouveau dossier (2)\ewido anti-malware\ewidoguard.exeO23 - Service: Symantec Network Drivers Service (SNDSrvc) - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\SNDSrvc.exeO23 - Service: SymWMI Service (SymWSC) - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\Security Center\SymWSC.exeO23 - Service: TrueVector Internet Monitor (vsmon) - Zone Labs, LLC - C:\WINDOWS\SYSTEM32\ZONELABS\vsmon.exe

aranjuez31 · Answer

rene t'ai-je pas dit pas de te m.à.j via WindowsUpdate ?ta version d'IE 6 est obsoléteje le vois à ceci Internet Explorer v6.00 (6.00.2600.0000) sur mon pc les chiffres sont différents---------je vais devoir me répétersi tu COLLAIS les RAPPORTS des SCANONLINEce serait sympaje redonne 2 liens , soit DEUX rapports dehttp://fr.trendmicro-europe.com/consumer/housecall/housecall_launch.phpEThttp://www.bitdefender.fr/bd/site/search.php#-----------essaie de comprendre qu'à distance ns avons besoin d'éléments de recherche--------désolé d'enfoncer le clou

biggup · Answer

slt aranjuez alors je ferais le scan demain et je collerais le rapport tu as raison !! et pour les m.a.j windows update c'est quoi  ? dois-je les faire ?merci pour tes reponses A+

aranjuez31 · Answer

bjrwindows updatehttp://update.microsoft.com/windowsupdate/v6/default.aspx?ln=frou biendemar+panoconfig+windowsupdateou biendemar+panoconfig+màj auto : cocher 1ére proposition + clic

biggup · Answer

ok aranjuez j'ai fais les m.a.j  que tu m'as conseillé ! pour les scan en ligne je cours les faire !!

biggup · Answer

re ! alors je viens de faire un scan avec trend micro mais il n'arrive rien a supprimer et je ne peux donc avoir aucun log !! comment faire merci

biggup · Answer

re régis, alors j'ai le log de ad-aware comme tu me l'as demandé le voici :Ad-Aware SE Build 1.06r1Logfile Created on:samedi 14 janvier 2006 13:44:16Created with Ad-Aware SE Personal, free for private use.Using definitions file:SE1R86 11.01.2006»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»References detected during the scan:»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»Adware.Freeprod Toolbar(TAC index:3):6 total referencesDyFuCA(TAC index:3):2 total referencesMediaMotor(TAC index:8):1 total referencesMRU List(TAC index:0):7 total referencesPromulGate(TAC index:5):1 total references»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»Ad-Aware SE Settings===========================Set : Search for negligible risk entriesSet : Search for low-risk threatsSet : Safe mode (always request confirmation)Set : Scan active processesSet : Scan registrySet : Deep-scan registrySet : Scan my IE Favorites for banned URLsSet : Scan my Hosts fileExtended Ad-Aware SE Settings===========================Set : Unload recognized processes & modules during scanSet : Scan registry for all users instead of current user onlySet : Always try to unload modules before deletionSet : During removal, unload Explorer and IE if necessarySet : Let Windows remove files in use at next rebootSet : Delete quarantined objects after restoringSet : Include basic Ad-Aware settings in log fileSet : Include additional Ad-Aware settings in log fileSet : Include reference summary in log fileSet : Include alternate data stream details in log fileSet : Play sound at scan completion if scan locates critical objects14-01-2006 13:44:16 - Scan started. (Smart mode)Listing running processes»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»#:1 [smss.exe]    FilePath           : \SystemRoot\System32\    ProcessID          : 312    ThreadCreationTime : 14-01-2006 11:14:08    BasePriority       : Normal#:2 [csrss.exe]    FilePath           : \??\C:\WINDOWS\system32\    ProcessID          : 364    ThreadCreationTime : 14-01-2006 11:14:10    BasePriority       : Normal#:3 [winlogon.exe]    FilePath           : \??\C:\WINDOWS\system32\    ProcessID          : 396    ThreadCreationTime : 14-01-2006 11:14:43    BasePriority       : High#:4 [services.exe]    FilePath           : C:\WINDOWS\system32\    ProcessID          : 440    ThreadCreationTime : 14-01-2006 11:14:56    BasePriority       : Normal    FileVersion        : 5.1.2600.0 (xpclient.010817-1148)    ProductVersion     : 5.1.2600.0    ProductName        : Système d'exploitation Microsoft® Windows®    CompanyName        : Microsoft Corporation    FileDescription    : Applications Services et Contrôleur    InternalName       : services.exe    LegalCopyright     : © Microsoft Corporation. Tous droits réservés.    OriginalFilename   : services.exe#:5 [lsass.exe]    FilePath           : C:\WINDOWS\system32\    ProcessID          : 452    ThreadCreationTime : 14-01-2006 11:14:56    BasePriority       : Normal    FileVersion        : 5.1.2600.0 (xpclient.010817-1148)    ProductVersion     : 5.1.2600.0    ProductName        : Microsoft® Windows® Operating System    CompanyName        : Microsoft Corporation    FileDescription    : LSA Shell (Export Version)    InternalName       : lsass.exe    LegalCopyright     : © Microsoft Corporation. All rights reserved.    OriginalFilename   : lsass.exe#:6 [svchost.exe]    FilePath           : C:\WINDOWS\system32\    ProcessID          : 624    ThreadCreationTime : 14-01-2006 11:14:59    BasePriority       : Normal    FileVersion        : 5.1.2600.0 (xpclient.010817-1148)    ProductVersion     : 5.1.2600.0    ProductName        : Microsoft® Windows® Operating System    CompanyName        : Microsoft Corporation    FileDescription    : Generic Host Process for Win32 Services    InternalName       : svchost.exe    LegalCopyright     : © Microsoft Corporation. All rights reserved.    OriginalFilename   : svchost.exe#:7 [svchost.exe]    FilePath           : C:\WINDOWS\System32\    ProcessID          : 648    ThreadCreationTime : 14-01-2006 11:14:59    BasePriority       : Normal    FileVersion        : 5.1.2600.0 (xpclient.010817-1148)    ProductVersion     : 5.1.2600.0    ProductName        : Microsoft® Windows® Operating System    CompanyName        : Microsoft Corporation    FileDescription    : Generic Host Process for Win32 Services    InternalName       : svchost.exe    LegalCopyright     : © Microsoft Corporation. All rights reserved.    OriginalFilename   : svchost.exe#:8 [svchost.exe]    FilePath           : C:\WINDOWS\System32\    ProcessID          : 712    ThreadCreationTime : 14-01-2006 11:15:00    BasePriority       : Normal    FileVersion        : 5.1.2600.0 (xpclient.010817-1148)    ProductVersion     : 5.1.2600.0    ProductName        : Microsoft® Windows® Operating System    CompanyName        : Microsoft Corporation    FileDescription    : Generic Host Process for Win32 Services    InternalName       : svchost.exe    LegalCopyright     : © Microsoft Corporation. All rights reserved.    OriginalFilename   : svchost.exe#:9 [svchost.exe]    FilePath           : C:\WINDOWS\System32\    ProcessID          : 724    ThreadCreationTime : 14-01-2006 11:15:00    BasePriority       : Normal    FileVersion        : 5.1.2600.0 (xpclient.010817-1148)    ProductVersion     : 5.1.2600.0    ProductName        : Microsoft® Windows® Operating System    CompanyName        : Microsoft Corporation    FileDescription    : Generic Host Process for Win32 Services    InternalName       : svchost.exe    LegalCopyright     : © Microsoft Corporation. All rights reserved.    OriginalFilename   : svchost.exe#:10 [spoolsv.exe]    FilePath           : C:\WINDOWS\system32\    ProcessID          : 804    ThreadCreationTime : 14-01-2006 11:15:01    BasePriority       : Normal    FileVersion        : 5.1.2600.0 (XPClient.010817-1148)    ProductVersion     : 5.1.2600.0    ProductName        : Microsoft® Windows® Operating System    CompanyName        : Microsoft Corporation    FileDescription    : Spooler SubSystem App    InternalName       : spoolsv.exe    LegalCopyright     : © Microsoft Corporation. All rights reserved.    OriginalFilename   : spoolsv.exe#:11 [aswupdsv.exe]    FilePath           : C:\Program Files\Alwil Software\Avast4\    ProcessID          : 980    ThreadCreationTime : 14-01-2006 11:15:02    BasePriority       : Normal#:12 [ashserv.exe]    FilePath           : C:\Program Files\Alwil Software\Avast4\    ProcessID          : 1008    ThreadCreationTime : 14-01-2006 11:15:04    BasePriority       : High    FileVersion        : 4, 6, 739, 0    ProductVersion     : 4, 6, 0, 0    ProductName        : avast! Antivirus    FileDescription    : avast! antivirus service    InternalName       : aswServ    LegalCopyright     : Copyright (c) 2005 ALWIL Software    OriginalFilename   : aswServ.exe#:13 [ctsvccda.exe]    FilePath           : C:\WINDOWS\System32\    ProcessID          : 1028    ThreadCreationTime : 14-01-2006 11:15:09    BasePriority       : Normal    FileVersion        : 1.0.1.0    ProductVersion     : 1.0.0.0    ProductName        : Creative Service for CDROM Access    CompanyName        : Creative Technology Ltd    FileDescription    : Creative Service for CDROM Access    InternalName       : CTsvcCDAEXE    LegalCopyright     : Copyright (c) Creative Technology Ltd., 1999. All rights reserved.    OriginalFilename   : CTsvcCDA.EXE#:14 [dkservice.exe]    FilePath           : C:\Program Files\Executive Software\DiskeeperWorkstation\    ProcessID          : 1052    ThreadCreationTime : 14-01-2006 11:15:09    BasePriority       : Normal    FileVersion        : 7.0.403.0    ProductVersion     : 7.0.403.0    ProductName        : Diskeeper (TM) Disk Defragmenter    CompanyName        : Executive Software International, Inc.    FileDescription    : DKSERVICE.EXE    InternalName       : DKSERVICE    LegalCopyright     : © 1995-2001 Executive Software Int'l, Inc.    OriginalFilename   : DKSERVICE#:15 [ewidoctrl.exe]    FilePath           : C:\Documents and Settings\sabrina\Bureau\Nouveau dossier (2)\ewido anti-malware\    ProcessID          : 1080    ThreadCreationTime : 14-01-2006 11:15:10    BasePriority       : Normal    FileVersion        : 3, 0, 0, 1    ProductVersion     : 3, 0, 0, 1    ProductName        : ewido control    CompanyName        : ewido networks    FileDescription    : ewido control    InternalName       : ewido control    LegalCopyright     : Copyright © 2004    OriginalFilename   : ewidoctrl.exe#:16 [ewidoguard.exe]    FilePath           : C:\Documents and Settings\sabrina\Bureau\Nouveau dossier (2)\ewido anti-malware\    ProcessID          : 1100    ThreadCreationTime : 14-01-2006 11:15:11    BasePriority       : Normal    FileVersion        : 3, 0, 0, 1    ProductVersion     : 3, 0, 0, 1    ProductName        : guard    CompanyName        : ewido networks    FileDescription    : guard    InternalName       : guard    LegalCopyright     : Copyright © 2004    OriginalFilename   : guard.exe#:17 [explorer.exe]    FilePath           : C:\WINDOWS\    ProcessID          : 1304    ThreadCreationTime : 14-01-2006 11:15:14    BasePriority       : Normal    FileVersion        : 6.00.2600.0000 (xpclient.010817-1148)    ProductVersion     : 6.00.2600.0000    ProductName        : Système d'exploitation Microsoft® Windows®    CompanyName        : Microsoft Corporation    FileDescription    : Explorateur Windows    InternalName       : explorer    LegalCopyright     : © Microsoft Corporation. Tous droits réservés.    OriginalFilename   : EXPLORER.EXE#:18 [svchost.exe]    FilePath           : C:\WINDOWS\System32\    ProcessID          : 1368    ThreadCreationTime : 14-01-2006 11:15:15    BasePriority       : Normal    FileVersion        : 5.1.2600.0 (xpclient.010817-1148)    ProductVersion     : 5.1.2600.0    ProductName        : Microsoft® Windows® Operating System    CompanyName        : Microsoft Corporation    FileDescription    : Generic Host Process for Win32 Services    InternalName       : svchost.exe    LegalCopyright     : © Microsoft Corporation. All rights reserved.    OriginalFilename   : svchost.exe#:19 [mspmspsv.exe]    FilePath           : C:\WINDOWS\System32\    ProcessID          : 1396    ThreadCreationTime : 14-01-2006 11:15:16    BasePriority       : Normal    FileVersion        : 7.00.00.1954    ProductVersion     : 7.00.00.1954    ProductName        : Microsoft (R) DRM    CompanyName        : Microsoft Corporation    FileDescription    : WMDM PMSP Service    InternalName       : MSPMSPSV.EXE    LegalCopyright     : Copyright (C) Microsoft Corp. 1981-2000    OriginalFilename   : MSPMSPSV.EXE#:20 [ashdisp.exe]    FilePath           : C:\PROGRA~1\ALWILS~1\Avast4\    ProcessID          : 1744    ThreadCreationTime : 14-01-2006 11:15:29    BasePriority       : Normal    FileVersion        : 4, 6, 739, 0    ProductVersion     : 4, 6, 0, 0    ProductName        : avast! Antivirus    FileDescription    : avast! service GUI component    InternalName       : aswDisp    LegalCopyright     : Copyright (c) 2005 ALWIL Software    OriginalFilename   : aswDisp.exe#:21 [jusched.exe]    FilePath           : C:\Program Files\Java\jre1.5.0_06\bin\    ProcessID          : 1752    ThreadCreationTime : 14-01-2006 11:15:30    BasePriority       : Normal#:22 [ashwebsv.exe]    FilePath           : C:\Program Files\Alwil Software\Avast4\    ProcessID          : 1888    ThreadCreationTime : 14-01-2006 11:15:36    BasePriority       : Normal#:23 [ashmaisv.exe]    FilePath           : C:\Program Files\Alwil Software\Avast4\    ProcessID          : 1940    ThreadCreationTime : 14-01-2006 11:15:40    BasePriority       : Normal#:24 [zlclient.exe]    FilePath           : C:\Documents and Settings\sabrina\Bureau\Nouveau dossier (2)\ZoneAlarm2\    ProcessID          : 1256    ThreadCreationTime : 14-01-2006 11:16:07    BasePriority       : Normal    FileVersion        : 6.1.737.000    ProductVersion     : 6.1.737.000    ProductName        : Zone Labs Client    CompanyName        : Zone Labs, LLC    FileDescription    : Zone Labs Client    InternalName       : zlclient    LegalCopyright     : Copyright © 1998-2005, Zone Labs, LLC    OriginalFilename   : zlclient.exe#:25 [vsmon.exe]    FilePath           : C:\WINDOWS\SYSTEM32\ZONELABS\    ProcessID          : 1488    ThreadCreationTime : 14-01-2006 11:16:13    BasePriority       : Normal    FileVersion        : 6.1.737.000    ProductVersion     : 6.1.737.000    ProductName        : TrueVector Service    CompanyName        : Zone Labs, LLC    FileDescription    : TrueVector Service    InternalName       : vsmon    LegalCopyright     : Copyright © 1998-2005, Zone Labs, LLC    OriginalFilename   : vsmon.exe#:26 [regseeker.exe]    FilePath           : C:\Documents and Settings\sabrina\Bureau\RegSeeker\RegSeeker\    ProcessID          : 3544    ThreadCreationTime : 14-01-2006 12:43:32    BasePriority       : Normal#:27 [ad-aware.exe]    FilePath           : C:\Documents and Settings\sabrina\Bureau\Nouveau dossier (2)\Ad-Aware SE Personal\    ProcessID          : 3416    ThreadCreationTime : 14-01-2006 12:43:47    BasePriority       : Normal    FileVersion        : 6.2.0.236    ProductVersion     : SE 106    ProductName        : Lavasoft Ad-Aware SE    CompanyName        : Lavasoft Sweden    FileDescription    : Ad-Aware SE Core application    InternalName       : Ad-Aware.exe    LegalCopyright     : Copyright © Lavasoft AB Sweden    OriginalFilename   : Ad-Aware.exe    Comments           : All Rights ReservedMemory scan result:»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»New critical objects: 0Objects found so far: 0Started registry scan»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»» Adware.Freeprod Toolbar Object Recognized!    Type               : Regkey    Data               :     TAC Rating         : 3    Category           : Adware    Comment            :     Rootkey            : HKEY_CLASSES_ROOT    Object             : toolband.xbtp07618 Adware.Freeprod Toolbar Object Recognized!    Type               : Regkey    Data               :     TAC Rating         : 3    Category           : Adware    Comment            :     Rootkey            : HKEY_CLASSES_ROOT    Object             : toolband.xbtp07618.1 Adware.Freeprod Toolbar Object Recognized!    Type               : Regkey    Data               :     TAC Rating         : 3    Category           : Adware    Comment            :     Rootkey            : HKEY_CLASSES_ROOT    Object             : xbtb07618.ietoolbar Adware.Freeprod Toolbar Object Recognized!    Type               : Regkey    Data               :     TAC Rating         : 3    Category           : Adware    Comment            :     Rootkey            : HKEY_CLASSES_ROOT    Object             : xbtb07618.ietoolbar.1 Adware.Freeprod Toolbar Object Recognized!    Type               : Regkey    Data               :     TAC Rating         : 3    Category           : Adware    Comment            :     Rootkey            : HKEY_CLASSES_ROOT    Object             : xbtb07618.xbtb07618 Adware.Freeprod Toolbar Object Recognized!    Type               : Regkey    Data               :     TAC Rating         : 3    Category           : Adware    Comment            :     Rootkey            : HKEY_CLASSES_ROOT    Object             : xbtb07618.xbtb07618.1 DyFuCA Object Recognized!    Type               : Regkey    Data               :     TAC Rating         : 3    Category           : Malware    Comment            :     Rootkey            : HKEY_CLASSES_ROOT    Object             : dyfuca_bh.bhobj.1 DyFuCA Object Recognized!    Type               : Regkey    Data               :     TAC Rating         : 3    Category           : Malware    Comment            :     Rootkey            : HKEY_CLASSES_ROOT    Object             : dyfuca_bh.bhobj MediaMotor Object Recognized!    Type               : Regkey    Data               :     TAC Rating         : 8    Category           : Malware    Comment            :     Rootkey            : HKEY_CLASSES_ROOT    Object             : iobjsafety.democtl PromulGate Object Recognized!    Type               : Regkey    Data               :     TAC Rating         : 5    Category           : Data Miner    Comment            :     Rootkey            : HKEY_LOCAL_MACHINE    Object             : software\classes\vccpgdataaccess.pgdataaccessctrl.1Registry Scan result:»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»New critical objects: 10Objects found so far: 10Started deep registry scan»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»Deep registry scan result:»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»New critical objects: 0Objects found so far: 10Started Tracking Cookie scan»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»Tracking cookie scan result:»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»New critical objects: 0Objects found so far: 10Deep scanning and examining files...»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»Disk Scan Result for C:\WINDOWS»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»New critical objects: 0Objects found so far: 10Disk Scan Result for C:\WINDOWS\System32»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»New critical objects: 0Objects found so far: 10Disk Scan Result for C:\DOCUME~1\sabrina\LOCALS~1\Temp\»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»New critical objects: 0Objects found so far: 10 MRU List Object Recognized!    Location:          : C:\Documents and Settings\sabrina\recent    Description        : list of recently opened documents MRU List Object Recognized!    Location:          : software\microsoft\direct3d\mostrecentapplication    Description        : most recent application to use microsoft direct3d MRU List Object Recognized!    Location:          : software\microsoft\direct3d\mostrecentapplication    Description        : most recent application to use microsoft direct X MRU List Object Recognized!    Location:          : software\microsoft\directdraw\mostrecentapplication    Description        : most recent application to use microsoft directdraw MRU List Object Recognized!    Location:          : S-1-5-21-527237240-854245398-2127008163-1004\software\microsoft\search assistant\acmru    Description        : list of recent search terms used with the search assistant MRU List Object Recognized!    Location:          : S-1-5-21-527237240-854245398-2127008163-1004\software\microsoft\windows\currentversion\explorer\recentdocs    Description        : list of recent documents opened MRU List Object Recognized!    Location:          : S-1-5-21-527237240-854245398-2127008163-1004\software\winrar\dialogedithistory\extrpath    Description        : winrar "extract-to" historyPerforming conditional scans...»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»Conditional scan result:»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»New critical objects: 0Objects found so far: 1713:47:36 Scan CompleteSummary Of This Scan»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»Total scanning time:00:03:20.78Objects scanned:78442Objects identified:10Objects ignored:0New critical objects:10

biggup · Answer

salut régis, je voulais te poser une question, lorsque je vais dans processus , parmi tout les processus que j'ai il y a marqué "processus inactif du systeme" qu'est-ce que c'est ? est-ce dangereux ?merci pour tes réponsesPS pourquoi est-ce que tu ne réponds plus ?

Utilisateur anonyme · Answer

Je ne repondais plus puisque aranjuez avait semble t il prit le poste donc ca ne servait a rien que je te reponde ;-)

biggup · Answer

oui mais c'est avec toi que j'ai commencé et je veux finir avec toi car j'apprécie vraiment tes conseils, je pense que aranjuez a juste mis quelques conseils et je l'en remercie d'ailleurs car c'est avec cette solidarité qu'on fait des merveilles ! voila tu reprends le poste ? as-tu une reponse quant a ma question précédente ?merci A+

Utilisateur anonyme · Answer

Re bigup;Pour ta question:http://www.commentcamarche.net/processus/processus-inactif-du-systeme.php3En bref,le "processus inactif du système", comme son nom l'indique c est un processus qui est inactif.En fait si tes processus prennent 10% de ton processeur, le processur indiquera la charge processeur inutilisée, donc indiquera 90%.Pour etre plus clair, processus inactifs à 90, ca signifie que ton processeur est a 90% libres, donc aucunes inquiétudes, c est Normal.Questions? Soucis?a+

biggup · Answer

re regis ! j'ai pas trop compris ce que tu m'as dit, mais bon... lol ! en faite il n'était jamais apparu avant (le processus qui sapelle "processus inactif du systeme) donc je m'inquiétais, sinon mes log hijack et ad-aware... ? j'ai les memes qui reviennent avec spybot, ad-aware, ewido ils n'arrivent pas a les supprimer !! ah ces spywares !! voila merci encore a+

Utilisateur anonyme · Answer

Re,1/quel est le nom du processus?2/HIJACK THIS OKAd aware ---> les MRU = traces de surfs donc rien de grave !3/Refais un scan avec ewido, copie/colle le rapporta+

biggup · Answer

re régis***pour les MRU ok mais j'ai aussi virtumonde, roings, max search, delfin...***pour le nom du processus justement c'est "processus inactif du systeme" et il prend 97 % dans processeura toute !

Utilisateur anonyme · Answer

re,Pour le processus, c est ok !Pour ad aware oui ok mais je voudrais le rapport d ewido stpa+

biggup · Answer

ok régis, jevais lancer le scan ewido par contre zone alarm ne veut plus se lancer il est écrit cela lorsque je veut l'ouvrir :"validation failed for C:\WINDOWS\SYSTEM32\VSMONAPI.DLL"que faire ? as-tu le lien pour retélécharger zone alarme free ? merci

Utilisateur anonyme · Answer

Re,essai de telecharger la dll icihttp://www.dll-files.com/dllindex/dll-files.shtml?vsmonapiEt met la dans le systeme32a+

biggup · Answer

ok merci regis, voici le rapport ewido:il est imcomplet car c'est les seuls qu'ils me trouvent  a chaque scan et qu'ils ne peut pas supprimer--------------------------------------------------------- ewido anti-malware - Rapport de scan--------------------------------------------------------- + Créé le:		00:36:14, 15/01/2006 + Somme de contrôle:	902DCBC8 + Résultats du scan:	HKLM\SOFTWARE\Classes\DyFuCA_BH.BHObj -> Spyware.MoneyTree : Erreur durant le nettoyage	HKLM\SOFTWARE\Classes\DyFuCA_BH.BHObj\CLSID -> Spyware.MoneyTree : Erreur durant le nettoyage	HKLM\SOFTWARE\Classes\DyFuCA_BH.BHObj\CurVer -> Spyware.MoneyTree : Erreur durant le nettoyage	HKLM\SOFTWARE\Classes\DyFuCA_BH.BHObj.1 -> Spyware.MoneyTree : Erreur durant le nettoyage	HKLM\SOFTWARE\Classes\IObjSafety.DemoCtl -> Spyware.MediaMotor : Erreur durant le nettoyage	HKLM\SOFTWARE\Classes\IObjSafety.DemoCtl\Clsid -> Spyware.MediaMotor : Erreur durant le nettoyage	HKLM\SOFTWARE\Classes\MSEvents.MSEvents -> Spyware.VirtuMonde : Erreur durant le nettoyage	HKLM\SOFTWARE\Classes\MSEvents.MSEvents\CLSID -> Spyware.VirtuMonde : Erreur durant le nettoyage	HKLM\SOFTWARE\Classes\MSEvents.MSEvents\CurVer -> Spyware.VirtuMonde : Erreur durant le nettoyage	HKLM\SOFTWARE\Classes\MSEvents.MSEvents.1 -> Spyware.VirtuMonde : Erreur durant le nettoyage	HKLM\SOFTWARE\Classes\VCCPGDATAACCESS.PgDataAccessCtrl.1 -> Spyware.Delfin : Erreur durant le nettoyage::Fin du rapport

biggup · Answer

je vais me coucher regis j'attends ta reponse a demainbonne nuit a+

biggup · Answer

bonjour régisque penses-tu de mon rapport ?le processus qui s'appelle "processus inactif du systeme" me fait peur, de plus depuis hier lorsque j'allume mon ordi un dossier qui est sur mon bureau et que j'ai appelé "nouveau dossier2" s'ouvre automatiquement pourquoi cela se produit-il a chaque ouverture et comment y remedier ?merci pour ton attention régis A+

Utilisateur anonyme · Answer

Salut biggupLe dossier qui s ouvre, c est pas grave, t en fais pas, ok?Un probleme a la fois lolje reviens

Utilisateur anonyme · Answer

re,Ouvre le bloc note et copie colle ceci entre les étoiles ********** REGEDIT4 [-HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{B313D637-F405-4052-AC37-E2119AB3C8F8}] [-HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{EFDAC3FE-F44A-4030-8589-1E23BC6573D5}] [-HKEY_CLASSES_ROOT\CLSID\{B313D637-F405-4052-AC37-E2119AB3C8F8}] [-HKEY_CLASSES_ROOT\CLSID\{B8B55274-0F9A-41E5-9067-A3539BD9E860}] [-HKEY_CLASSES_ROOT\CLSID\{44240BB5-BD7D-4D49-A1AA-8AB0F3D3CB44}] [-HKEY_CLASSES_ROOT\MSEvents.MSEvents] [-HKEY_CLASSES_ROOT\MSEvents.MSEvents.1] [-HKEY_LOCAL_MACHINE\SOFTWARE\Classes\MSEvents.MSEvents][-HKEY_LOCAL_MACHINE\SOFTWARE\Classes\MSEvents.MSEvents.1] [-HKEY_CLASSES_ROOT\clsid\{00000001-c003-4a2f-9142-7cb1d78de6c1}] [-HKEY_CLASSES_ROOT\clsid\{00000010-6f7d-442c-93e3-4a4827c2e4c8}][-HKEY_CLASSES_ROOT\clsid\{00000010-6f7d-442c-93e3-4a4827c2e4c8}\inprocserver32] [-HKEY_CLASSES_ROOT\clsid\{00000010-6f7d-442c-93e3-4a4827c2e4c8}\progid] [-HKEY_CLASSES_ROOT\clsid\{00000010-6f7d-442c-93e3-4a4827c2e4c8}	ypelib] [-HKEY_CLASSES_ROOT\clsid\{00000010-6f7d-442c-93e3-4a4827c2e4c8}\versionindependentprogid] [-HKEY_CLASSES_ROOT\clsid\{8f4e5661-f99e-4b3e-8d85-0ea71c0748e4}] [-HKEY_CLASSES_ROOT\clsid\{cea206e8-8057-4a04-ace9-ff0d69a92297}] [-HKEY_CLASSES_ROOT\clsid\{f7f808f0-6f7d-442c-93e3 4a4827c2e4c8}] [-HKEY_CLASSES_ROOT\dyfuca_bh.bhobj bhobj class] [-HKEY_CLASSES_ROOT\dyfuca_bh.bhobj.1 bhobj class] [-HKEY_CLASSES_ROOT\dyfuca_bh.bhobj.1\clsid {00000010-6f7d-442c-93e3-4a4827c2e4c8}][-HKEY_CLASSES_ROOT\dyfuca_bh.bhobj\clsid {00000010-6f7d-442c-93e3-4a4827c2e4c8}][-HKEY_CLASSES_ROOT\dyfuca_bh.bhobj\curverdyfuca_bh.bhobj.1] [-HKEY_CLASSES_ROOT\dyfuca_bh_bucket.bucket] [-HKEY_CLASSES_ROOT\dyfuca_bh_bucket.bucket.1] [-HKEY_CLASSES_ROOT\interface\{1c01d150-91a4-4de0-9bf8-a35d1bdf1001}\proxystubclsid] [-HKEY_CLASSES_ROOT\interface\{1c01d150-91a4-4de0-9bf8-a35d1bdf1001}\proxystubclsid32] [-HKEY_CLASSES_ROOT\interface\{1c01d150-91a4-4de0-9bf8-a35d1bdf1001}	ypelib] [-HKEY_CLASSES_ROOT	ypelib\{40b1d454-9ca4-43cc-86aa-cb175eac52fb}] [-HKEY_CLASSES_ROOT	ypelib\{40b1d454-9ca4-43cc-86aa-cb175eac52fb}\1.0] [-HKEY_CLASSES_ROOT	ypelib\{40b1d454-9ca4-43cc-86aa-cb175eac52fb}\1.0\0] [-HKEY_CLASSES_ROOT	ypelib\{40b1d454-9ca4-43cc-86aa-cb175eac52fb}\1.0\0\win32] [-HKEY_CLASSES_ROOT	ypelib\{40b1d454-9ca4-43cc-86aa-cb175eac52fb}\1.0\flags] [-HKEY_CLASSES_ROOT	ypelib\{40b1d454-9ca4-43cc-86aa-cb175eac52fb}\1.0\helpdir] [-HKEY_CURRENT_USER\software\microsoft\internetexplorer\urlsearchhooks _{02ee5b04-f144-47bb-83fb-a60bd91b74a9}][-HKEY_CURRENT_USER\software\microsoft\windows\currentversion\policies\ameopt] [-HKEY_CURRENT_USER\software\microsoft\windows\currentversionun internet optimizer][-HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversionun internet optimizer] [-HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\uninstall\a95kfrhe] [-HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\uninstall\internet optimizer] [-HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\uninstall\internet optimizer uninstallstring][-HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\uninstall\internet optimizer active alert] [-HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\uninstall\kapabout] [-HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversionun internet optimizer][-HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversionun ixizgfcp][-HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversionun msbb][-HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversionun saie][-HKEY_LOCAL_MACHINE\software\avenue media\internet optimizer] [-HKEY_LOCAL_MACHINE\software\avenue media\internetoptimizer pendingremoval][-HKEY_LOCAL_MACHINE\software\avenue media\internet optimizer\active alert] [-HKEY_LOCAL_MACHINE\software\avenue media\internet optimizer\browser helper] [-HKEY_LOCAL_MACHINE\software\avenue media\internet optimizer\browser helper\cf1] [-HKEY_LOCAL_MACHINE\software\avenue media\internetoptimizer\browser helper\cf1 rawdata][-HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\browser helper objects\{00000001-c003-4a2f-9142-7cb1d78de6c1}] [-HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\browser helper objects\{00000010-6f7d-442c-93e3-4a4827c2e4c8}] [-HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\browser helper objects\{f7f808f0-6f7d-442c-93e3-4a4827c2e4c8}] [-HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\ameopt] [-HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversionun 180ax][-HKEY_CLASSES_ROOT\IObjSafety.DemoCtl][-HKEY_CLASSES_ROOT\CLSID\{E0CE16CB-741C-4B24-8D04A817856E07F4}][-HKEY_LOCAL_MACHINE\Sofware\Classes\IObjSafety.DemoCtl][-HKEY_LOCAL_MACHINE\Software\Classes\CLSID\{E0CE16CB-741C-4B24-8D04-A817856E07F4}]************ enregistre le sur ton bureau et nomme le www.reg et dans la case en dessous type met sur tous fichiers la vas sur ton bureau et double click sur se fichier que tu vient de faire et accepte la fusion avec le registre.Passe spybot et ad awareRelance ewido, copie/colle le rapporta+

biggup · Answer

slt régisj'ai fait ce que tu m'as demandé et voici le rapport ewido (ceux de spybot et ad-aware sont en cours) mais ça n'a pas l'air d'avoir changer--------------------------------------------------------- ewido anti-malware - Rapport de scan--------------------------------------------------------- + Créé le:		11:44:26, 15/01/2006 + Somme de contrôle:	3907BF3C + Résultats du scan:	HKLM\SOFTWARE\Classes\DyFuCA_BH.BHObj -> Spyware.MoneyTree : Erreur durant le nettoyage	HKLM\SOFTWARE\Classes\DyFuCA_BH.BHObj\CLSID -> Spyware.MoneyTree : Erreur durant le nettoyage	HKLM\SOFTWARE\Classes\DyFuCA_BH.BHObj\CurVer -> Spyware.MoneyTree : Erreur durant le nettoyage	HKLM\SOFTWARE\Classes\DyFuCA_BH.BHObj.1 -> Spyware.MoneyTree : Erreur durant le nettoyage	HKLM\SOFTWARE\Classes\IObjSafety.DemoCtl -> Spyware.MediaMotor : Erreur durant le nettoyage	HKLM\SOFTWARE\Classes\IObjSafety.DemoCtl\Clsid -> Spyware.MediaMotor : Erreur durant le nettoyage	HKLM\SOFTWARE\Classes\MSEvents.MSEvents -> Spyware.VirtuMonde : Erreur durant le nettoyage	HKLM\SOFTWARE\Classes\MSEvents.MSEvents\CLSID -> Spyware.VirtuMonde : Erreur durant le nettoyage	HKLM\SOFTWARE\Classes\MSEvents.MSEvents\CurVer -> Spyware.VirtuMonde : Erreur durant le nettoyage	HKLM\SOFTWARE\Classes\MSEvents.MSEvents.1 -> Spyware.VirtuMonde : Erreur durant le nettoyage	HKLM\SOFTWARE\Classes\VCCPGDATAACCESS.PgDataAccessCtrl.1 -> Spyware.Delfin : Erreur durant le nettoyage	:mozilla.8:C:\Documents and Settings
abil\Application Data\Mozilla\Firefox\Profiles\1ziwoijy.default\cookies.txt -> Spyware.Cookie.Doubleclick : Nettoyer et sauvegarder	:mozilla.12:C:\Documents and Settings
abil\Application Data\Mozilla\Firefox\Profiles\1ziwoijy.default\cookies.txt -> Spyware.Cookie.Estat : Nettoyer et sauvegarder	:mozilla.15:C:\Documents and Settings
abil\Application Data\Mozilla\Firefox\Profiles\1ziwoijy.default\cookies.txt -> Spyware.Cookie.247realmedia : Nettoyer et sauvegarder	:mozilla.16:C:\Documents and Settings
abil\Application Data\Mozilla\Firefox\Profiles\1ziwoijy.default\cookies.txt -> Spyware.Cookie.Weborama : Nettoyer et sauvegarder	:mozilla.17:C:\Documents and Settings
abil\Application Data\Mozilla\Firefox\Profiles\1ziwoijy.default\cookies.txt -> Spyware.Cookie.Weborama : Nettoyer et sauvegarder	:mozilla.20:C:\Documents and Settings
abil\Application Data\Mozilla\Firefox\Profiles\1ziwoijy.default\cookies.txt -> Spyware.Cookie.Smartadserver : Nettoyer et sauvegarder	:mozilla.21:C:\Documents and Settings
abil\Application Data\Mozilla\Firefox\Profiles\1ziwoijy.default\cookies.txt -> Spyware.Cookie.Smartadserver : Nettoyer et sauvegarder	:mozilla.22:C:\Documents and Settings
abil\Application Data\Mozilla\Firefox\Profiles\1ziwoijy.default\cookies.txt -> Spyware.Cookie.Smartadserver : Nettoyer et sauvegarder	:mozilla.7:C:\Documents and Settings\sabrina\Application Data\Mozilla\Firefox\Profiles\ohlypc82.default\cookies.txt -> Spyware.Cookie.247realmedia : Nettoyer et sauvegarder::Fin du rapport

biggup · Answer

celui de spybot... lolMaxSearch: Root class (Clé du registre, fixing failed)  HKEY_LOCAL_MACHINE\Software\Classes\XBTB07618.XBTB07618MaxSearch: Root class (Clé du registre, fixing failed)  HKEY_LOCAL_MACHINE\Software\Classes\XBTB07618.XBTB07618.1MaxSearch: Root class (Clé du registre, fixing failed)  HKEY_LOCAL_MACHINE\Software\Classes\ToolBand.XBTP07618MaxSearch: Root class (Clé du registre, fixing failed)  HKEY_LOCAL_MACHINE\Software\Classes\ToolBand.XBTP07618.1MaxSearch: Root class (Clé du registre, fixing failed)  HKEY_LOCAL_MACHINE\Software\Classes\XBTB07618.IEToolbarMaxSearch: Root class (Clé du registre, fixing failed)  HKEY_LOCAL_MACHINE\Software\Classes\XBTB07618.IEToolbar.1Roings: Root class (Clé du registre, fixing failed)  HKEY_LOCAL_MACHINE\Software\Classes\IObjSafety.DemoCtlDyFuCA: Root class (Clé du registre, fixing failed)  HKEY_LOCAL_MACHINE\Software\Classes\DyFuCA_BH.BHObjDyFuCA: Root class (Clé du registre, fixing failed)  HKEY_LOCAL_MACHINE\Software\Classes\DyFuCA_BH.BHObj.1VirtuMonde: Root class (Clé du registre, fixing failed)  HKEY_LOCAL_MACHINE\Software\Classes\MSEvents.MSEventsVirtuMonde: Root class (Clé du registre, fixing failed)  HKEY_LOCAL_MACHINE\Software\Classes\MSEvents.MSEvents.1Delfin Project: Root class (Clé du registre, fixing failed)  HKEY_LOCAL_MACHINE\Software\Classes\VCCPGDATAACCESS.PgDataAccessCtrl.1--- Spybot - Search & Destroy version: 1.4  (build: 20050523) ---2005-12-27 unins000.exe (51.41.0.0)2005-05-31 blindman.exe (1.0.0.1)2005-05-31 SpybotSD.exe (1.4.0.3)2005-05-31 TeaTimer.exe (1.4.0.2)2005-05-31 Update.exe (1.4.0.0)2005-05-31 advcheck.dll (1.0.2.0)2005-05-31 aports.dll (2.1.0.0)2005-05-31 borlndmm.dll (7.0.4.453)2005-05-31 delphimm.dll (7.0.4.453)2005-05-31 SDHelper.dll (1.4.0.0)2005-05-31 Tools.dll (2.0.0.2)2005-05-31 UnzDll.dll (1.73.1.1)2005-05-31 ZipDll.dll (1.73.2.0)2006-01-13 Includes\Cookies.sbi (*)2006-01-13 Includes\Dialer.sbi (*)2006-01-13 Includes\Hijackers.sbi (*)2006-01-13 Includes\Keyloggers.sbi (*)2006-01-13 Includes\Malware.sbi (*)2006-01-13 Includes\Revision.sbi (*)2006-01-13 Includes\Security.sbi (*)2006-01-13 Includes\Spybots.sbi (*)2006-01-13 Includes\Trojans.sbi (*)2005-02-17 Includes\Tracks.uti2006-01-13 Includes\PUPS.sbi (*)

biggup · Answer

et celui de ad-aware ! a l'expert de jouer ! lolAd-Aware SE Build 1.06r1Fichier journal créé le :dimanche 15 janvier 2006 12:01:56Created with Ad-Aware SE Personal, free for private use.Utilisation du fichier de définitions :SE1R86 11.01.2006»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»Références détectées lors de l’analyse :»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»Adware.Freeprod Toolbar(Index TAC :3):6 Nombre total de référencesDyFuCA(Index TAC :3):2 Nombre total de référencesMediaMotor(Index TAC :8):1 Nombre total de référencesPromulGate(Index TAC :5):1 Nombre total de références»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»Ad-Aware SE Settings===========================Définir : Rechercher les entrées à risque négligeableDéfinir : Search for low-risk threatsDéfinir : Mode sécurisé (tjrs demander confirm.)Définir : Analyser les processus actifsDéfinir : Scan registryDéfinir : Analyser en profondeur le registreDéfinir : Analyser mes favoris IE pour rech. URL interditesDéfinir : Analyser mon fichier HostsExtended Ad-Aware SE Settings===========================Définir : Décharger les modules et les processus reconnus pendant l’analyseDéfinir : Anal. reg. pr tous utili. et non pr utili. actuel uniqmntDéfinir : Toujours essayer de décharger les modules avant la suppressionDéfinir : Lors de la suppression, décharger l’Explorateur et IE si nécessaireDéfinir : Perm. Win. supp. fich. en cours au proch. démar.Définir : Supprimer les objets en quarantaine après la restaurationDéfinir : Inclure les paramètres de base d'Ad-Aware dans le fichier journalDéfinir : Inclure les paramètres de base d'Ad-Aware dans le fichier journalDéfinir : Inclure un récapitulatif des références dans le fichier journalDéfinir : Inclure les détails des données ADS dans le fichier journalDéfinir : Émettre un son à la fin de l’analyse en cas de détection d'objets critiques15-01-2006 12:01:56 - L’analyse a démarré. (Analyse complète du système)Affichage des processus en cours d'exécution»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»#:1 [smss.exe]    FilePath           : \SystemRoot\System32\    ProcessID          : 316    ThreadCreationTime : 15-01-2006 09:48:42    BasePriority       : Normal#:2 [csrss.exe]    FilePath           : \??\C:\WINDOWS\system32\    ProcessID          : 396    ThreadCreationTime : 15-01-2006 10:09:46    BasePriority       : Normal#:3 [winlogon.exe]    FilePath           : \??\C:\WINDOWS\system32\    ProcessID          : 420    ThreadCreationTime : 15-01-2006 10:09:49    BasePriority       : High#:4 [services.exe]    FilePath           : C:\WINDOWS\system32\    ProcessID          : 464    ThreadCreationTime : 15-01-2006 10:09:52    BasePriority       : Normal    FileVersion        : 5.1.2600.0 (xpclient.010817-1148)    ProductVersion     : 5.1.2600.0    ProductName        : Système d'exploitation Microsoft® Windows®    CompanyName        : Microsoft Corporation    FileDescription    : Applications Services et Contrôleur    InternalName       : services.exe    LegalCopyright     : © Microsoft Corporation. Tous droits réservés.    OriginalFilename   : services.exe#:5 [lsass.exe]    FilePath           : C:\WINDOWS\system32\    ProcessID          : 476    ThreadCreationTime : 15-01-2006 10:09:52    BasePriority       : Normal    FileVersion        : 5.1.2600.0 (xpclient.010817-1148)    ProductVersion     : 5.1.2600.0    ProductName        : Microsoft® Windows® Operating System    CompanyName        : Microsoft Corporation    FileDescription    : LSA Shell (Export Version)    InternalName       : lsass.exe    LegalCopyright     : © Microsoft Corporation. All rights reserved.    OriginalFilename   : lsass.exe#:6 [svchost.exe]    FilePath           : C:\WINDOWS\system32\    ProcessID          : 648    ThreadCreationTime : 15-01-2006 10:09:56    BasePriority       : Normal    FileVersion        : 5.1.2600.0 (xpclient.010817-1148)    ProductVersion     : 5.1.2600.0    ProductName        : Microsoft® Windows® Operating System    CompanyName        : Microsoft Corporation    FileDescription    : Generic Host Process for Win32 Services    InternalName       : svchost.exe    LegalCopyright     : © Microsoft Corporation. All rights reserved.    OriginalFilename   : svchost.exe#:7 [svchost.exe]    FilePath           : C:\WINDOWS\System32\    ProcessID          : 672    ThreadCreationTime : 15-01-2006 10:09:56    BasePriority       : Normal    FileVersion        : 5.1.2600.0 (xpclient.010817-1148)    ProductVersion     : 5.1.2600.0    ProductName        : Microsoft® Windows® Operating System    CompanyName        : Microsoft Corporation    FileDescription    : Generic Host Process for Win32 Services    InternalName       : svchost.exe    LegalCopyright     : © Microsoft Corporation. All rights reserved.    OriginalFilename   : svchost.exe#:8 [svchost.exe]    FilePath           : C:\WINDOWS\System32\    ProcessID          : 736    ThreadCreationTime : 15-01-2006 10:09:57    BasePriority       : Normal    FileVersion        : 5.1.2600.0 (xpclient.010817-1148)    ProductVersion     : 5.1.2600.0    ProductName        : Microsoft® Windows® Operating System    CompanyName        : Microsoft Corporation    FileDescription    : Generic Host Process for Win32 Services    InternalName       : svchost.exe    LegalCopyright     : © Microsoft Corporation. All rights reserved.    OriginalFilename   : svchost.exe#:9 [svchost.exe]    FilePath           : C:\WINDOWS\System32\    ProcessID          : 748    ThreadCreationTime : 15-01-2006 10:09:57    BasePriority       : Normal    FileVersion        : 5.1.2600.0 (xpclient.010817-1148)    ProductVersion     : 5.1.2600.0    ProductName        : Microsoft® Windows® Operating System    CompanyName        : Microsoft Corporation    FileDescription    : Generic Host Process for Win32 Services    InternalName       : svchost.exe    LegalCopyright     : © Microsoft Corporation. All rights reserved.    OriginalFilename   : svchost.exe#:10 [spoolsv.exe]    FilePath           : C:\WINDOWS\system32\    ProcessID          : 828    ThreadCreationTime : 15-01-2006 10:09:58    BasePriority       : Normal    FileVersion        : 5.1.2600.0 (XPClient.010817-1148)    ProductVersion     : 5.1.2600.0    ProductName        : Microsoft® Windows® Operating System    CompanyName        : Microsoft Corporation    FileDescription    : Spooler SubSystem App    InternalName       : spoolsv.exe    LegalCopyright     : © Microsoft Corporation. All rights reserved.    OriginalFilename   : spoolsv.exe#:11 [aswupdsv.exe]    FilePath           : C:\Program Files\Alwil Software\Avast4\    ProcessID          : 1024    ThreadCreationTime : 15-01-2006 10:10:02    BasePriority       : Normal#:12 [ashserv.exe]    FilePath           : C:\Program Files\Alwil Software\Avast4\    ProcessID          : 1040    ThreadCreationTime : 15-01-2006 10:10:04    BasePriority       : High    FileVersion        : 4, 6, 739, 0    ProductVersion     : 4, 6, 0, 0    ProductName        : avast! Antivirus    FileDescription    : avast! antivirus service    InternalName       : aswServ    LegalCopyright     : Copyright (c) 2005 ALWIL Software    OriginalFilename   : aswServ.exe#:13 [ctsvccda.exe]    FilePath           : C:\WINDOWS\System32\    ProcessID          : 1056    ThreadCreationTime : 15-01-2006 10:10:06    BasePriority       : Normal    FileVersion        : 1.0.1.0    ProductVersion     : 1.0.0.0    ProductName        : Creative Service for CDROM Access    CompanyName        : Creative Technology Ltd    FileDescription    : Creative Service for CDROM Access    InternalName       : CTsvcCDAEXE    LegalCopyright     : Copyright (c) Creative Technology Ltd., 1999. All rights reserved.    OriginalFilename   : CTsvcCDA.EXE#:14 [dkservice.exe]    FilePath           : C:\Program Files\Executive Software\DiskeeperWorkstation\    ProcessID          : 1080    ThreadCreationTime : 15-01-2006 10:10:06    BasePriority       : Normal    FileVersion        : 7.0.403.0    ProductVersion     : 7.0.403.0    ProductName        : Diskeeper (TM) Disk Defragmenter    CompanyName        : Executive Software International, Inc.    FileDescription    : DKSERVICE.EXE    InternalName       : DKSERVICE    LegalCopyright     : © 1995-2001 Executive Software Int'l, Inc.    OriginalFilename   : DKSERVICE#:15 [ewidoctrl.exe]    FilePath           : C:\Documents and Settings\sabrina\Bureau\Nouveau dossier (2)\ewido anti-malware\    ProcessID          : 1108    ThreadCreationTime : 15-01-2006 10:10:07    BasePriority       : Normal    FileVersion        : 3, 0, 0, 1    ProductVersion     : 3, 0, 0, 1    ProductName        : ewido control    CompanyName        : ewido networks    FileDescription    : ewido control    InternalName       : ewido control    LegalCopyright     : Copyright © 2004    OriginalFilename   : ewidoctrl.exe#:16 [ewidoguard.exe]    FilePath           : C:\Documents and Settings\sabrina\Bureau\Nouveau dossier (2)\ewido anti-malware\    ProcessID          : 1128    ThreadCreationTime : 15-01-2006 10:10:07    BasePriority       : Normal    FileVersion        : 3, 0, 0, 1    ProductVersion     : 3, 0, 0, 1    ProductName        : guard    CompanyName        : ewido networks    FileDescription    : guard    InternalName       : guard    LegalCopyright     : Copyright © 2004    OriginalFilename   : guard.exe#:17 [svchost.exe]    FilePath           : C:\WINDOWS\System32\    ProcessID          : 1204    ThreadCreationTime : 15-01-2006 10:10:11    BasePriority       : Normal    FileVersion        : 5.1.2600.0 (xpclient.010817-1148)    ProductVersion     : 5.1.2600.0    ProductName        : Microsoft® Windows® Operating System    CompanyName        : Microsoft Corporation    FileDescription    : Generic Host Process for Win32 Services    InternalName       : svchost.exe    LegalCopyright     : © Microsoft Corporation. All rights reserved.    OriginalFilename   : svchost.exe#:18 [vsmon.exe]    FilePath           : C:\WINDOWS\SYSTEM32\ZONELABS\    ProcessID          : 1240    ThreadCreationTime : 15-01-2006 10:10:12    BasePriority       : Normal    FileVersion        : 6.1.737.000    ProductVersion     : 6.1.737.000    ProductName        : TrueVector Service    CompanyName        : Zone Labs, LLC    FileDescription    : TrueVector Service    InternalName       : vsmon    LegalCopyright     : Copyright © 1998-2005, Zone Labs, LLC    OriginalFilename   : vsmon.exe#:19 [explorer.exe]    FilePath           : C:\WINDOWS\    ProcessID          : 1536    ThreadCreationTime : 15-01-2006 10:10:17    BasePriority       : Normal    FileVersion        : 6.00.2600.0000 (xpclient.010817-1148)    ProductVersion     : 6.00.2600.0000    ProductName        : Système d'exploitation Microsoft® Windows®    CompanyName        : Microsoft Corporation    FileDescription    : Explorateur Windows    InternalName       : explorer    LegalCopyright     : © Microsoft Corporation. Tous droits réservés.    OriginalFilename   : EXPLORER.EXE#:20 [mspmspsv.exe]    FilePath           : C:\WINDOWS\System32\    ProcessID          : 1648    ThreadCreationTime : 15-01-2006 10:10:22    BasePriority       : Normal    FileVersion        : 7.00.00.1954    ProductVersion     : 7.00.00.1954    ProductName        : Microsoft (R) DRM    CompanyName        : Microsoft Corporation    FileDescription    : WMDM PMSP Service    InternalName       : MSPMSPSV.EXE    LegalCopyright     : Copyright (C) Microsoft Corp. 1981-2000    OriginalFilename   : MSPMSPSV.EXE#:21 [ashdisp.exe]    FilePath           : C:\PROGRA~1\ALWILS~1\Avast4\    ProcessID          : 1804    ThreadCreationTime : 15-01-2006 10:10:34    BasePriority       : Normal    FileVersion        : 4, 6, 739, 0    ProductVersion     : 4, 6, 0, 0    ProductName        : avast! Antivirus    FileDescription    : avast! service GUI component    InternalName       : aswDisp    LegalCopyright     : Copyright (c) 2005 ALWIL Software    OriginalFilename   : aswDisp.exe#:22 [jusched.exe]    FilePath           : C:\Program Files\Java\jre1.5.0_06\bin\    ProcessID          : 1816    ThreadCreationTime : 15-01-2006 10:10:35    BasePriority       : Normal#:23 [zlclient.exe]    FilePath           : C:\karim\ZoneAlarm\ZoneAlarm\    ProcessID          : 1876    ThreadCreationTime : 15-01-2006 10:10:39    BasePriority       : Normal    FileVersion        : 6.1.737.000    ProductVersion     : 6.1.737.000    ProductName        : Zone Labs Client    CompanyName        : Zone Labs, LLC    FileDescription    : Zone Labs Client    InternalName       : zlclient    LegalCopyright     : Copyright © 1998-2005, Zone Labs, LLC    OriginalFilename   : zlclient.exe#:24 [ashwebsv.exe]    FilePath           : C:\Program Files\Alwil Software\Avast4\    ProcessID          : 220    ThreadCreationTime : 15-01-2006 10:11:12    BasePriority       : Normal#:25 [ashmaisv.exe]    FilePath           : C:\Program Files\Alwil Software\Avast4\    ProcessID          : 636    ThreadCreationTime : 15-01-2006 10:11:18    BasePriority       : Normal#:26 [firefox.exe]    FilePath           : C:\Program Files\Mozilla Firefox\    ProcessID          : 2284    ThreadCreationTime : 15-01-2006 10:12:28    BasePriority       : Normal#:27 [ad-aware.exe]    FilePath           : C:\Documents and Settings\sabrina\Bureau\Nouveau dossier (2)\Ad-Aware SE Personal\    ProcessID          : 3960    ThreadCreationTime : 15-01-2006 10:53:08    BasePriority       : Normal    FileVersion        : 6.2.0.236    ProductVersion     : SE 106    ProductName        : Lavasoft Ad-Aware SE    CompanyName        : Lavasoft Sweden    FileDescription    : Ad-Aware SE Core application    InternalName       : Ad-Aware.exe    LegalCopyright     : Copyright © Lavasoft AB Sweden    OriginalFilename   : Ad-Aware.exe    Comments           : All Rights ReservedRésultat de l’analyse de la mémoire :»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»Nouv. obj. critiques : 0Objets détectés jusqu'à présent : 0Analyse du registre démarrée»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»» Adware.Freeprod Toolbar Objet reconnu !    Type               : Regkey    Données            :     Notation TAC       : 3    Catégorie          : Adware    Commentaire        :     Rootkey            : HKEY_CLASSES_ROOT    Objet              : toolband.xbtp07618 Adware.Freeprod Toolbar Objet reconnu !    Type               : Regkey    Données            :     Notation TAC       : 3    Catégorie          : Adware    Commentaire        :     Rootkey            : HKEY_CLASSES_ROOT    Objet              : toolband.xbtp07618.1 Adware.Freeprod Toolbar Objet reconnu !    Type               : Regkey    Données            :     Notation TAC       : 3    Catégorie          : Adware    Commentaire        :     Rootkey            : HKEY_CLASSES_ROOT    Objet              : xbtb07618.ietoolbar Adware.Freeprod Toolbar Objet reconnu !    Type               : Regkey    Données            :     Notation TAC       : 3    Catégorie          : Adware    Commentaire        :     Rootkey            : HKEY_CLASSES_ROOT    Objet              : xbtb07618.ietoolbar.1 Adware.Freeprod Toolbar Objet reconnu !    Type               : Regkey    Données            :     Notation TAC       : 3    Catégorie          : Adware    Commentaire        :     Rootkey            : HKEY_CLASSES_ROOT    Objet              : xbtb07618.xbtb07618 Adware.Freeprod Toolbar Objet reconnu !    Type               : Regkey    Données            :     Notation TAC       : 3    Catégorie          : Adware    Commentaire        :     Rootkey            : HKEY_CLASSES_ROOT    Objet              : xbtb07618.xbtb07618.1 DyFuCA Objet reconnu !    Type               : Regkey    Données            :     Notation TAC       : 3    Catégorie          : Malware    Commentaire        :     Rootkey            : HKEY_CLASSES_ROOT    Objet              : dyfuca_bh.bhobj.1 DyFuCA Objet reconnu !    Type               : Regkey    Données            :     Notation TAC       : 3    Catégorie          : Malware    Commentaire        :     Rootkey            : HKEY_CLASSES_ROOT    Objet              : dyfuca_bh.bhobj MediaMotor Objet reconnu !    Type               : Regkey    Données            :     Notation TAC       : 8    Catégorie          : Malware    Commentaire        :     Rootkey            : HKEY_CLASSES_ROOT    Objet              : iobjsafety.democtl PromulGate Objet reconnu !    Type               : Regkey    Données            :     Notation TAC       : 5    Catégorie          : Data Miner    Commentaire        :     Rootkey            : HKEY_LOCAL_MACHINE    Objet              : software\classes\vccpgdataaccess.pgdataaccessctrl.1Résultat de l’analyse du registre :»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»Nouv. obj. critiques : 10Objets détectés jusqu'à présent : 10Analyse approfondie du registre démarrée»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»<STOP>12:02:17 Analyse arrêtée par l'utilisateurRécap. de cette anal.»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»Durée tot. analyse :00:00:20.700Objets analysés :56958Objets identifiés :10Objets ignorés :0Nouv. obj. critiques :10

Utilisateur anonyme · Answer

Re,dis moi, as tu ceciC:\ProgramFiles\Maxifiles?

biggup · Answer

je viens de jeter un coup d'oeil mais je ne l'ai pas a part un dossier qui s'appelle MAX-FX tools

Utilisateur anonyme · Answer

T as pas le jeu Max Payne?a+

biggup · Answer

si oui ! tu as raison mais ça fait un bail... !

Utilisateur anonyme · Answer

ok, Ce fichier est lié a ce jeu,je regarde tes rapportsa+Ps: Supprime l ancien reg qu on avait fait, on va en faire un autrea+

biggup · Answer

dak j'attends mais en attendant je te propose de revoir tout les points pour lesquels je suis venus ici car on s'est égaré donc petit résumé...***qu'en est-il de bobic? de silent runners et de son rapport?***pour le procesus inactif comment se fait-il qu'il decide de pointer son nez juste maintenant ?***enfin pour mon "nouveau dossier 2" qui s'execute automatiquement quand j'ouvre mon ordi qu'est-ce que je peux faire ?***pour les log je te laisse m'indiquer la marche a suivre...merciiiiiiiiiiii

Utilisateur anonyme · Answer

re, Ouvre le bloc note et copie colle ceci entre les étoiles ********** REGEDIT4 [-HKEY_LOCAL_MACHINE\Software\Classes\XBTB07618.XBTB07618] [-HKEY_LOCAL_MACHINE\Software\Classes\XBTB07618.XBTB07618.1] [-HKEY_LOCAL_MACHINE\Software\Classes\ToolBand.XBTP07618] [-HKEY_LOCAL_MACHINE\Software\Classes\ToolBand.XBTP07618.1[-HKEY_LOCAL_MACHINE\Software\Classes\XBTB07618.IEToolbar [-HKEY_LOCAL_MACHINE\Software\Classes\XBTB07618.IEToolbar.1 [-HKEY_LOCAL_MACHINE\Software\Classes\IObjSafety.DemoCtl] [-HKEY_LOCAL_MACHINE\Software\Classes\DyFuCA_BH.BHObj] [-HKEY_LOCAL_MACHINE\Software\Classes\DyFuCA_BH.BHObj.1] [-HKEY_LOCAL_MACHINE\Software\Classes\MSEvents.MSEvents] [-HKEY_LOCAL_MACHINE\Software\Classes\MSEvents.MSEvents.1] [-HKEY_LOCAL_MACHINE\Software\Classes\VCCPGDATAACCESS.PgDataAccessCtrl.1] ************ enregistre le sur ton bureau et nomme le www.reg et dans la case en dessous type met sur tous fichiers la vas sur ton bureau et double click sur se fichier que tu vient de faire et accepte la fusion avec le registre. Demarre en mode sans echecPasse spybot et corrige les soucis si y en aReviens en normal et remet un rapport de spybota+

biggup · Answer

re régis la j'avoue que je seche ! spybot a a détécté les problemes de d'habitude mais comme d'habitude aussi il n'a pas pu les supprimer...

biggup · Answer

voici le rapport spybot régis--- Search result list ---MaxSearch: Root class (Clé du registre, fixing failed)  HKEY_LOCAL_MACHINE\Software\Classes\XBTB07618.XBTB07618MaxSearch: Root class (Clé du registre, fixing failed)  HKEY_LOCAL_MACHINE\Software\Classes\XBTB07618.XBTB07618.1MaxSearch: Root class (Clé du registre, fixing failed)  HKEY_LOCAL_MACHINE\Software\Classes\ToolBand.XBTP07618MaxSearch: Root class (Clé du registre, fixing failed)  HKEY_LOCAL_MACHINE\Software\Classes\ToolBand.XBTP07618.1MaxSearch: Root class (Clé du registre, fixing failed)  HKEY_LOCAL_MACHINE\Software\Classes\XBTB07618.IEToolbarMaxSearch: Root class (Clé du registre, fixing failed)  HKEY_LOCAL_MACHINE\Software\Classes\XBTB07618.IEToolbar.1Roings: Root class (Clé du registre, fixing failed)  HKEY_LOCAL_MACHINE\Software\Classes\IObjSafety.DemoCtlDyFuCA: Root class (Clé du registre, fixing failed)  HKEY_LOCAL_MACHINE\Software\Classes\DyFuCA_BH.BHObjDyFuCA: Root class (Clé du registre, fixing failed)  HKEY_LOCAL_MACHINE\Software\Classes\DyFuCA_BH.BHObj.1VirtuMonde: Root class (Clé du registre, fixing failed)  HKEY_LOCAL_MACHINE\Software\Classes\MSEvents.MSEventsVirtuMonde: Root class (Clé du registre, fixing failed)  HKEY_LOCAL_MACHINE\Software\Classes\MSEvents.MSEvents.1Delfin Project: Root class (Clé du registre, fixing failed)  HKEY_LOCAL_MACHINE\Software\Classes\VCCPGDATAACCESS.PgDataAccessCtrl.1--- Spybot - Search & Destroy version: 1.4  (build: 20050523) ---2005-12-27 unins000.exe (51.41.0.0)2005-05-31 blindman.exe (1.0.0.1)2005-05-31 SpybotSD.exe (1.4.0.3)2005-05-31 TeaTimer.exe (1.4.0.2)2005-05-31 Update.exe (1.4.0.0)2005-05-31 advcheck.dll (1.0.2.0)2005-05-31 aports.dll (2.1.0.0)2005-05-31 borlndmm.dll (7.0.4.453)2005-05-31 delphimm.dll (7.0.4.453)2005-05-31 SDHelper.dll (1.4.0.0)2005-05-31 Tools.dll (2.0.0.2)2005-05-31 UnzDll.dll (1.73.1.1)2005-05-31 ZipDll.dll (1.73.2.0)2006-01-13 Includes\Cookies.sbi (*)2006-01-13 Includes\Dialer.sbi (*)2006-01-13 Includes\Hijackers.sbi (*)2006-01-13 Includes\Keyloggers.sbi (*)2006-01-13 Includes\Malware.sbi (*)2006-01-13 Includes\Revision.sbi (*)2006-01-13 Includes\Security.sbi (*)2006-01-13 Includes\Spybots.sbi (*)2006-01-13 Includes\Trojans.sbi (*)2005-02-17 Includes\Tracks.uti2006-01-13 Includes\PUPS.sbi (*)--- System information ---Windows XP (Build: 2600)  / DataAccess: Microsoft Data Access Components KB870669 / DataAccess: Patch Available For XMLHTTP Vulnerability / DataAccess: Patch Available For XMLHTTP Vulnerability / DataAccess: Security Update for Microsoft Data Access Components / Windows Media Player: Correctif pour le Lecteur Windows Media [Voir Q828026 pour plus d'informations] / Windows Media Player / SP0: Correctif pour le Lecteur Windows Media [Voir Q828026 pour plus d'informations] / Windows Media Player: Windows Media Update 320920 / Windows XP / SP1: Windows XP Hotfix - KB821557 / Windows XP / SP1: Windows XP Hotfix - KB823182 / Windows XP / SP1: Windows XP Hotfix - KB824105 / Windows XP / SP1: Correctif Windows XP - KB824141 / Windows XP / SP1: Correctif Windows XP - KB828035 / Windows XP / SP1 / Q309521: Windows XP Hotfix (SP1) [See Q309521 for more information] / Windows XP / SP1: Windows XP Hotfix (SP1) [See Q311889 for more information] / Windows XP / SP1: Windows XP Hotfix (SP1) [See Q311967 for more information] / Windows XP / SP1: Windows XP Hotfix (SP1) [See Q313450 for more information] / Windows XP / SP1: Windows XP Hotfix (SP1) [See Q314862 for more information] / Windows XP / SP1: Windows XP Hotfix (SP1) [See Q315000 for more information] / Windows XP / SP1: Windows XP Hotfix (SP1) [See Q315403 for more information] / Windows XP / SP1: Windows XP Hotfix (SP1) [See Q317277 for more information] / Windows XP / SP1: Windows XP Hotfix (SP1) [See Q324096 for more information] / Windows XP / SP1: Windows XP Hotfix (SP1) [See Q326830 for more information] / Windows XP / SP1: Windows XP Hotfix (SP1) [See Q328940 for more information] / Windows XP / SP1: Windows XP Hotfix (SP1) [See Q329048 for more information] / Windows XP / SP1: Windows XP Hotfix (SP1) Q329170 / Windows XP / SP1: Windows XP Hotfix (SP1) [See Q329390 for more information] / Windows XP / SP1: Windows XP Hotfix (SP1) [See Q329441 for more information] / Windows XP / SP1: Windows XP Hotfix (SP1) [See Q329834 for more information] / Windows XP / SP1: Windows XP Hotfix (SP1) Q810577 / Windows XP / SP1: Windows XP Hotfix (SP1) Q811493 / Windows XP / SP1: Windows XP Hotfix (SP1) Q811630 / Windows XP / SP1: Windows XP Hotfix (SP1) Q815021 / Windows XP / SP1: Windows XP Hotfix (SP1) Q817606 / Windows XP / SP1: Windows XP Hotfix (SP1) Q819696 / Windows XP / SP2: Correctif Windows XP - KB810217 / Windows XP / SP2: Correctif Windows XP - KB823559 / Windows XP / SP2: Correctif Windows XP - KB825119 / Windows XP / SP2: Correctif Windows XP - KB833987 / Windows XP / SP2: Correctif Windows XP - KB839643 / Windows XP / SP2: Correctif Windows XP - KB839645 / Windows XP / SP2: Correctif Windows XP - KB840315 / Windows XP / SP2: Correctif Windows XP - KB841873 / Windows XP / SP2: Correctif Windows XP - KB842773 / Windows XP / SP2: Correctif Windows XP - KB883357 / Windows XP / SP2: Package du correctif Windows XP [voir Q323255 pour plus de détails]--- Startup entries list ---Located: HK_LM:Run, avast!command: C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe   file: C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe   size: 98352    MD5: 0a9883be214c4f7a65b6dff129f37b6eLocated: HK_LM:Run, Openwares LiveUpdatecommand: C:\Program Files\LiveUpdate\LiveUpdate.exe   file: C:\Program Files\LiveUpdate\LiveUpdate.exe   size: 61440    MD5: 93cf2b93f02e52cd6fffa567249f3f73Located: HK_LM:Run, SunJavaUpdateSchedcommand: C:\Program Files\Java\jre1.5.0_06\bin\jusched.exe   file: C:\Program Files\Java\jre1.5.0_06\bin\jusched.exe   size: 36975    MD5: 61a3a9d5d98bf0331df5b716144a8100Located: HK_LM:Run, Zone Labs Clientcommand: C:\karim\ZoneAlarm\ZoneAlarm\zlclient.exe   file: C:\karim\ZoneAlarm\ZoneAlarm\zlclient.exe   size: 755472    MD5: e85c5dc2659f562c496e839649aa7200Located: HK_CU:Run, msnmsgrcommand: "C:\Program Files\MSN Messenger\msnmsgr.exe" /background   file: C:\Program Files\MSN Messenger\msnmsgr.exe   size: 6815744    MD5: d846554575a9f571d6b891153faa0c50Located: Démarrage (utilisateur), Microsoft Office.lnkcommand: C:\Program Files\Microsoft Office\Office\Osa9.exe   file: C:\Program Files\Microsoft Office\Office\Osa9.exe   size: 65588    MD5: 09ec24043108b072e01a03a029239324Located: System.ini, crypt32chaincommand: crypt32.dll   file: crypt32.dllLocated: System.ini, cryptnetcommand: cryptnet.dll   file: cryptnet.dllLocated: System.ini, cscdllcommand: cscdll.dll   file: cscdll.dllLocated: System.ini, ScCertPropcommand: wlnotify.dll   file: wlnotify.dllLocated: System.ini, Schedulecommand: wlnotify.dll   file: wlnotify.dllLocated: System.ini, sclgntfycommand: sclgntfy.dll   file: sclgntfy.dllLocated: System.ini, SensLogncommand: WlNotify.dll   file: WlNotify.dllLocated: System.ini, termsrvcommand: wlnotify.dll   file: wlnotify.dllLocated: System.ini, wlballooncommand: wlnotify.dll   file: wlnotify.dll--- Browser helper object list ---{761497BB-D6F0-462C-B6EB-D4DAF1D92D43} (SSVHelper Class)          BHO name:         CLSID name: SSVHelper Class              Path: C:\Program Files\Java\jre1.5.0_06\bin\         Long name:            ssv.dll        Short name:                       Date (created): 10/11/2005 13:03:56Date (last access):         15/01/2006 Date (last write): 10/11/2005 13:22:10          Filesize:             184423        Attributes:           archive                MD5: F01726F7CA8538FDD4663C9DB8FEAEDC             CRC32:           0111B892           Version:           5.0.60.5--- ActiveX list ---{9A9307A0-7DA4-4DAF-B042-5009F29E09E1} (ActiveScan Installer Class)          DPF name:         CLSID name: ActiveScan Installer Class         Installer: C:\WINDOWS\Downloaded Program Files\asinst.inf          Codebase: http://acs.pandasoftware.com/activescan/as5free/asinst.cab       description:     classification: Open for discussion    known filename: ASINST.DLL         info link:        info source: Safer Networking Ltd.              Path: C:\WINDOWS\Downloaded Program Files\         Long name:         asinst.dll        Short name:                       Date (created): 19/12/2005 13:35:32Date (last access):         15/01/2006 Date (last write): 19/12/2005 13:35:32          Filesize:             135168        Attributes:           archive                MD5: 20C07B231040B49AFCE82397BFC35F9C             CRC32:           9301377D           Version:           58.4.0.0{C81B5180-AFD1-41A3-97E1-99E8D254DB98} ()          DPF name:         CLSID name:          Installer: C:\WINDOWS\Downloaded Program Files\cssweb.inf          Codebase: http://www.commandondemand.com/eval/cod/cabs/cssweb.cab       description: CSS Web Installer Class    classification: Open for discussion    known filename: CSSWEB.DLL         info link:        info source: Patrick M. Kolla{CAFEEFAC-0015-0000-0006-ABCDEFFEDCBA} (Java Runtime Environment 1.5.0)          DPF name: Java Runtime Environment 1.5.0        CLSID name: Java Plug-in 1.5.0_06         Installer:           Codebase: http://java.sun.com/update/1.5.0/jinstall-1_5_0_06-windows-i586.cab              Path: C:\Program Files\Java\jre1.5.0_06\bin\         Long name:    NPJPI150_06.dll        Short name:       NPJPI1~1.DLL    Date (created): 10/11/2005 13:03:56Date (last access):         15/01/2006 Date (last write): 10/11/2005 13:22:10          Filesize:              69746        Attributes:           archive                MD5: D2CF6BB5E9020E6707B62575F8083954             CRC32:           7F39DC54           Version:           5.0.60.5{CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} (Java Runtime Environment 1.5.0)          DPF name: Java Runtime Environment 1.5.0        CLSID name: Java Plug-in 1.5.0_06         Installer:           Codebase: http://java.sun.com/update/1.5.0/jinstall-1_5_0_06-windows-i586.cab              Path: C:\Program Files\Java\jre1.5.0_06\bin\         Long name:    NPJPI150_06.dll        Short name:       NPJPI1~1.DLL    Date (created): 10/11/2005 13:03:56Date (last access):         15/01/2006 Date (last write): 10/11/2005 13:22:10          Filesize:              69746        Attributes:           archive                MD5: D2CF6BB5E9020E6707B62575F8083954             CRC32:           7F39DC54           Version:           5.0.60.5--- Process list ---PID:    0 (   0) [System]PID:  316 (   4) \SystemRoot\System32\smss.exePID:  372 ( 316) \??\C:\WINDOWS\system32\csrss.exePID:  396 ( 316) \??\C:\WINDOWS\system32\winlogon.exePID:  440 ( 396) C:\WINDOWS\system32\services.exe size: 101888  MD5: FC0691097471EE374907E1024EDCBD43PID:  452 ( 396) C:\WINDOWS\system32\lsass.exe size: 11776  MD5: 2C2431B30A629123C1757582C9D93F38PID:  624 ( 440) C:\WINDOWS\system32\svchost.exe size: 12800  MD5: 333A4DB8410D8E24DB06D6AEBECDC7C2PID:  648 ( 440) C:\WINDOWS\System32\svchost.exe size: 12800  MD5: 333A4DB8410D8E24DB06D6AEBECDC7C2PID:  712 ( 440) C:\WINDOWS\System32\svchost.exe size: 12800  MD5: 333A4DB8410D8E24DB06D6AEBECDC7C2PID:  724 ( 440) C:\WINDOWS\System32\svchost.exe size: 12800  MD5: 333A4DB8410D8E24DB06D6AEBECDC7C2PID:  804 ( 440) C:\WINDOWS\system32\spoolsv.exe size: 51200  MD5: B1CE5287F096895D9BE26EB86F4D5FAFPID:  980 ( 440) C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe size: 53248  MD5: 435D862E96FE19612093177CF6618F4EPID: 1008 ( 440) C:\Program Files\Alwil Software\Avast4\ashServ.exe size: 98352  MD5: C8C0AEE5D0585457FF6E318E8BB9289DPID: 1028 ( 440) C:\WINDOWS\System32\CTsvcCDA.exe size: 44032  MD5: 3C8B6609712F4FF78E521F6DCFC4032BPID: 1052 ( 440) C:\Program Files\Executive Software\DiskeeperWorkstation\DKService.exe size: 253952  MD5: 5A715FC7A5E222D8E987B2D903885B0BPID: 1080 ( 440) C:\Documents and Settings\sabrina\Bureau\Nouveau dossier (2)\ewido anti-malware\ewidoctrl.exe size: 13888  MD5: 26830B750372AB1BF29C95DEEBEB802FPID: 1100 ( 440) C:\Documents and Settings\sabrina\Bureau\Nouveau dossier (2)\ewido anti-malware\ewidoguard.exe size: 151616  MD5: 34A50717AD686900F078F5208F8E908EPID: 1324 (1252) C:\WINDOWS\Explorer.EXE size: 1005056  MD5: 9E20A8EF0CA524446AFEE29F4423CC8FPID: 1396 ( 440) C:\WINDOWS\System32\svchost.exe size: 12800  MD5: 333A4DB8410D8E24DB06D6AEBECDC7C2PID: 1420 ( 440) C:\WINDOWS\SYSTEM32\ZONELABS\vsmon.exe size: 1693448  MD5: 7E9C8F0BF97910E04A078799837BB6F2PID: 1664 ( 440) C:\WINDOWS\System32\MsPMSPSv.exe size: 53520  MD5: 581176F60885AEF8F78C6E38DCC3CDF9PID: 1728 (1324) C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe size: 98352  MD5: 0A9883BE214C4F7A65B6DFF129F37B6EPID: 1796 (1324) C:\Program Files\Java\jre1.5.0_06\bin\jusched.exe size: 36975  MD5: 61A3A9D5D98BF0331DF5B716144A8100PID: 1832 (1324) C:\karim\ZoneAlarm\ZoneAlarm\zlclient.exe size: 755472  MD5: E85C5DC2659F562C496E839649AA7200PID:  184 ( 440) C:\Program Files\Alwil Software\Avast4\ashWebSv.exe size: 360496  MD5: EB51923A762779247C776A551C546898PID:  680 ( 440) C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe size: 241712  MD5: 8C50FFD2642FD97DAC0009280A438570PID: 2360 (1324) C:\Program Files\Mozilla Firefox\firefox.exe size: 7162979  MD5: F375D4684A1F72D279A7CFA7A5DE1A9CPID: 2500 (1324) C:\Documents and Settings\sabrina\Bureau\Nouveau dossier (2)\Spybot - Search & Destroy\SpybotSD.exe size: 4393096  MD5: 09CA174A605B480318731E691DC98539PID: 2900 (1324) C:\Program Files\Microsoft Office\Office\WINWORD.EXE size: 8441907  MD5: F236C1DD10011D977D2A5C8350E77D10PID:    4 (   0) System--- Browser start & search pages list ---Spybot - Search & Destroy browser pages report, 15/01/2006 14:16:33HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main\Search Page  http://www.google.comHKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main\Start Page  http://www.google.fr/HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Search\SearchAssistant Explorer\Main\Default_Search_URL  about:blankHKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Main\Start Page  http://www.microsoft.com/isapi/redir.dll?prd={SUB_PRD}&clcid={SUB_CLSID}&pver={SUB_PVER}&ar=homeHKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Main\Default_Page_URL  http://www.microsoft.com/isapi/redir.dll?prd=ie&pver=6&ar=msnhomeHKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Main\Default_Search_URL  http://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearchHKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Search\SearchAssistant  http://ie.search.msn.com/{SUB_RFC1766}/srchasst/srchasst.htmHKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Search\CustomizeSearch  http://ie.search.msn.com/{SUB_RFC1766}/srchasst/srchcust.htm--- Winsock Layered Service Provider list ------ Uninstall list ---  (128PATCH)a-squared Free 1.6.1 1.6 (a-squared Free_is1)install location: C:\karim\a-squared\   uninstall cmd: "C:\karim\a-squared\unins000.exe"       publisher: Emsi Software GmbH        comments: a-squared       help link: http://forum.emsisoft.com  (AddressBook)   uninstall cmd: "C:\Program Files\Outlook Express\setup50.exe" /APP:WAB /CALLER:IE50 /UNINSTALL /PROMPTServeur AMS  (AMS Server)   uninstall cmd: C:\WINDOWS\IsUn040c.exe -f"C:\Program Files\Serveur AMS\AMSSERVR.isu"  (AudioHQ)   uninstall cmd: RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{FD851F7E-F887-405D-9E1C-488811113EF3}\setup.exe" -l0x40c  /removeavast! Antivirus 4.6 (avast!) version (major): 4 version (minor): 6install location: C:\PROGRA~1\ALWILS~1\Avast4  install source: C:\PROGRA~1\ALWILS~1\Avast4\setup   uninstall cmd: rundll32 C:\PROGRA~1\ALWILS~1\Avast4\Setup\setiface.dll,RunSetup       publisher: Alwil Software       help link: http://www.avast.com  (Branding)Canon PIXMA iP3000  (CANONBJ_Deinstall_CNMCP61.DLL)   uninstall cmd: C:\WINDOWS\System32\CNMCP61.exe "-PRINTERNAMECanon PIXMA iP3000" "-HELPERDLLC:\BJPrinter\CNMWINDOWS\Canon PIXMA iP3000 Installer\Inst2\cnmis.dll" "-RCDLLC:\BJPrinter\CNMWINDOWS\Canon PIXMA iP3000 Installer\Inst2\cnmi040c.dll"CCleaner (remove only)  (CCleaner)   uninstall cmd: "C:\Documents and Settings\sabrina\Bureau\Nouveau dossier\CCleaner\uninst.exe"OLITEC  PCI 56K V2 Modem  (Conexant SoftK56 Modem)   uninstall cmd: infunist.exe  (Connection Manager)Cosmo Player 2.1 (38329)  (Cosmo Player 2.1)   uninstall cmd: C:\WINDOWS\IsUn040c.exe -f"C:\Program Files\CosmoSoftware\CosmoPlayer\CosmoPlayer21.isu"  (Creative Configurator)   uninstall cmd: C:\WINDOWS\IsUn040c.exe -f"C:\Program Files\Creative\Audio\Configurator.isu"  (Creative Dos Drivers)   uninstall cmd: C:\WINDOWS\IsUn040c.exe -f"C:\Program Files\Creative\Audio\Dos.isu"  (Creative Installer Setup)   uninstall cmd: C:\WINDOWS\IsUn040c.exe -f"C:\Program Files\Creative\Uninstall\Installer.isu"  (Creative MiniDisc Center)   uninstall cmd: RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{AC157741-3285-4D6A-B934-9174587A3493}\setup.exe" -l0x40c  /remove  (Creative Mixer)   uninstall cmd: C:\WINDOWS\IsUn040c.exe -f"C:\Program Files\Creative\Audio\CTMixer.isu"  (Creative News)   uninstall cmd: C:\WINDOWS\IsUninst.exe -f"C:\Program Files\Creative\News\CTNews.isu"  (Creative PlayCenter 2.0)   uninstall cmd: RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{48E3A9E6-FA13-11D5-8CC9-00A0C98192B6}\setup.exe" -l0x40c  /remove  (Creative Recorder)   uninstall cmd: RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{E7337A45-3FE5-4392-ABBB-26B794D060C9}\setup.exe" -l0x40c  /remove  (Creative Restore Defaults)   uninstall cmd: RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{9A4D2983-4662-4387-BE3D-4CFC2FA9C100}\setup.exe" -l0x40c  /remove  (Creative Surround Mixer 2)   uninstall cmd: RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{58582977-44D2-44A0-A09B-031CC2AE5938}\setup.exe" -l0x40c  /remove  (Creative WaveStudio)   uninstall cmd: RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{435E969D-867E-4364-8E74-3DC8A69C5BDB}\setup.exe" -l0x40c  /remove  (Diagnostics2)   uninstall cmd: RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{A731533B-B325-4D9C-91A4-D93C8E294C19}\setup.exe" -l0x40c  /remove  (DirectAnimation)  (DirectDrawEx)Canon Utilities Easy-PhotoPrint  (Easy-PhotoPrint)   uninstall cmd: C:\Program Files\Canon\Easy-PhotoPrint\uninst.exe C:\Program Files\Canon\Easy-PhotoPrint\uninst.iniCanon Utilities Easy-PrintToolBox  (Easy-PrintToolBox)   uninstall cmd: C:\WINDOWS\BJPSUNST.EXEEasy-WebPrint  (Easy-WebPrint)   uninstall cmd: C:\WINDOWS\IsUn040c.exe -f"C:\Program Files\Canon\Easy-WebPrint\Uninst.isu"Encyclopédie Microsoft Encarta 99 99F (Encarta99F) version (major): 6install location: "C:\Program Files\Microsoft Référence\Encyclopédie Encarta"  install source: "D:"   uninstall cmd: RunDll32 C:\PROGRA~1\MICROS~4\ENCYCL~1\UNENC99.DLL,Uninstall  C:\PROGRA~1\MICROS~4\ENCYCL~1\SETUP99F\INST99F.LOG       publisher: Microsoft Corporationewido anti-malware  (ewidoantimalware)install location: C:\Documents and Settings\sabrina\Bureau\Nouveau dossier (2)\ewido anti-malware   uninstall cmd: C:\Documents and Settings\sabrina\Bureau\Nouveau dossier (2)\ewido anti-malware\Uninstall.exe       publisher: ewido networks       help link: http://www.ewido.net  (expinst)  (Fontcore)GeForce2 GTS Experience  (GeForce2 GTS Experience)   uninstall cmd: C:\WINDOWS\IsUninst.exe -f"C:\Program Files\NVidia Corporation\GeForce2 GTS Experience\Uninst.isu"HijackThis 1.99.1 1.99.1 (HijackThis)   uninstall cmd: C:\Documents and Settings\sabrina\Bureau\Nouveau dossier (2)\HijackThis.exe /uninstall       publisher: Soeperman Enterprises Ltd.  (ICW)  (IE40)  (IE4Data)  (IE5BAKEX)  (IEData)  (IEREADME)Internet Explorer Q867801  (ieupdate)   uninstall cmd: C:\WINDOWS\ieuninst.exe C:\WINDOWS\INF\Q867801.infJava 2 Runtime Environment Standard Edition v1.3.1_03  (JRE 1.3.1_03)   uninstall cmd: C:\WINDOWS\IsUninst.exe -f"C:\Program Files\JavaSoft\JRE\1.3.1_03\Uninst.isu"Kaspersky On-line Scanner 5.0.67.0 (Kaspersky On-line Scanner)  estimated size: 6040install location: C:\WINDOWS\System32\KASPER~1\KASPER~1   uninstall cmd: C:\WINDOWS\System32\KASPER~1\KASPER~1\kavuninstall.exe       publisher: Kaspersky Lab         contact: Customer Support Department       help link: http://www.kaspersky.com/support.aspCorrectif Windows XP - KB810217 20030806.141358 (KB810217)       publisher: Microsoft Corporation       help link: http://support.microsoft.com?kbid=810217Windows XP Hotfix - KB821557 20030611.135747 (KB821557)       publisher: Microsoft Corporation       help link: http://support.microsoft.com?kbid=821557Windows XP Hotfix - KB823182 20030724.164430 (KB823182)       publisher: Microsoft Corporation       help link: http://support.microsoft.com?kbid=823182Correctif Windows XP - KB823559 20030701.220507 (KB823559)       publisher: Microsoft Corporation       help link: http://support.microsoft.com?kbid=823559Windows XP Hotfix - KB824105 20030724.165306 (KB824105)       publisher: Microsoft Corporation       help link: http://support.microsoft.com?kbid=824105Correctif Windows XP - KB824141 20030926.114228 (KB824141)       publisher: Microsoft Corporation       help link: http://support.microsoft.com?kbid=824141Correctif Windows XP - KB825119 20030828.114011 (KB825119)       publisher: Microsoft Corporation       help link: http://support.microsoft.com?kbid=825119Correctif Windows XP - KB828035 20031021.154418 (KB828035)       publisher: Microsoft Corporation       help link: http://support.microsoft.com?kbid=828035Correctif Windows XP - KB828741 20040305.180728 (KB828741)       publisher: Microsoft Corporation       help link: http://support.microsoft.com?kbid=828741Correctif Windows XP - KB833987 20040308.175855 (KB833987)       publisher: Microsoft Corporation       help link: http://support.microsoft.com?kbid=833987Correctif Windows XP - KB835732 20040329.172648 (KB835732)       publisher: Microsoft Corporation       help link: http://support.microsoft.com?kbid=835732Correctif Windows XP - KB837001 20040419.122806 (KB837001)       publisher: Microsoft Corporation       help link: http://support.microsoft.com?kbid=837001Correctif Windows XP - KB839643 20040512.132756 (KB839643)       publisher: Microsoft Corporation       help link: http://support.microsoft.com?kbid=839643Correctif Windows XP - KB839645 20040630.120539 (KB839645)       publisher: Microsoft Corporation       help link: http://support.microsoft.com?kbid=839645Correctif Windows XP - KB840315 20040622.172632 (KB840315)       publisher: Microsoft Corporation       help link: http://support.microsoft.com?kbid=840315Correctif Windows XP - KB840374 20040416.121751 (KB840374)       publisher: Microsoft Corporation       help link: http://support.microsoft.com?kbid=840374Correctif Windows XP - KB841873 20040608.144331 (KB841873)       publisher: Microsoft Corporation       help link: http://support.microsoft.com?kbid=841873Correctif Windows XP - KB842773 20040701.144218 (KB842773)       publisher: Microsoft Corporation       help link: http://support.microsoft.com?kbid=842773Microsoft Data Access Components KB870669  (KB870669)   uninstall cmd: C:\WINDOWS\muninst.exe C:\WINDOWS\INF\KB870669.inf       publisher: Microsoft Corporation       help link: http://support.microsoft.com?kbid=KB870669Correctif Windows XP - KB883357 20040804.165131 (KB883357)   uninstall cmd: C:\WINDOWS\$NtUninstallKB883357$\spuninst\spuninst.exe       publisher: Microsoft Corporation       help link: http://support.microsoft.com?kbid=883357LiveUpdate 2.6 (Symantec Corporation) 2.6.14.0 (LiveUpdate)install location: C:\Program Files\Symantec\LiveUpdate   uninstall cmd: C:\Program Files\Symantec\LiveUpdate\LSETUP.EXE /U       publisher: Symantec CorporationLogiciel iTouch de Logitech  (Logitech iTouch)   uninstall cmd: C:\WINDOWS\IsUn040c.exe -fC:\PROGRA~1\LOGITECH\ITOUCH\Uninst.isu -c"C:\PROGRA~1\LOGITECH\ITOUCH\LUnInst.dll  (Logitech Key Commander)   uninstall cmd: C:\WINDOWS\IsUn040c.exe -fC:\PROGRA~1\LOGITECH\ITOUCH\Uninst.isu -c"C:\PROGRA~1\LOGITECH\ITOUCH\LUnInst.dllMacromedia Shockwave Player 10.1.0.11 (Macromedia Shockwave Player)   uninstall cmd: C:\WINDOWS\SYSTEM32\MACROMED\SHOCKW~3\UNWISE.EXE C:\WINDOWS\SYSTEM32\MACROMED\SHOCKW~3\INSTALL.LOG       publisher: Macromedia, Inc.       help link: http://www.macromedia.com/fr/support/shockwaveMathcad 2000 Professionnel  (Mathcad 2000 Professionnel)   uninstall cmd: C:\WINDOWS\IsUn040c.exe -f"C:\Program Files\MathSoft\Mathcad 2000 Professionnel\Uninst.isu"Mathcad Add-In for Excel  (Mathcad Add-In for Excel)   uninstall cmd: C:\WINDOWS\IsUninst.exe -f"C:\Program Files\MathSoft\Mathcad Add-In for Excel\Uninst.isu"Mathcad 2000 Treasury  (Mathcad2KTreasuryKey)   uninstall cmd: C:\WINDOWS\uninst.exe -f"C:\Program Files\MathSoft\Mathcad 2000 Professionnel\DeIsL2.isu"CD-LabelPrint  (MediaNavigation.CDLabelPrint)install location: C:\Program Files\Canon\CD-LabelPrint\   uninstall cmd: "C:\Program Files\Canon\CD-LabelPrint\Uninstal.exe" Canon.CDLabelPrint.ApplicationMediaRing Talk 99 Release 7.0.0014  (MediaRing Talk 99 Release 7.0.0014)   uninstall cmd: C:\WINDOWS\preuninst.exe  (Midi Samples)   uninstall cmd: C:\WINDOWS\IsUn040c.exe -f"C:\Program Files\Creative\Audio\Midi.isu"  (MobileOptionPack)Mozilla Firefox (1.5) 1.5 (fr) (Mozilla Firefox (1.5))install location: C:\Program Files\Mozilla Firefox   uninstall cmd: C:\WINDOWS\UninstallFirefox.exe /ua "1.5 (fr)"       publisher: Mozilla  (MsJavaVM)Barre d'outils MSN  (MSN Toolbar)   uninstall cmd: C:\Program Files\MSN Apps\MSN Toolbar\01.02.4000.1001\fr\mtbs.exe c  (MSTASK)  (NetMeeting)WinFast Windows 95/98/ME Display Drivers  (NVIDIA)   uninstall cmd: rundll32.exe C:\WINDOWS\SYSTEM32\NVINST32.DLL,NvUninstall9x nvagp.infOutlook Express Q823353  (oeupdate)   uninstall cmd: C:\WINDOWS\oeuninst.exe C:\WINDOWS\INF\Q823353.inf  (OutlookExpress)  (PCHealth)   uninstall cmd: rundll32.exe setupapi.dll,InstallHinfSection DefaultUninstall 132 C:\WINDOWS\INF\PCHealth.inf  (PhotoRecord)  (PlayCenter)   uninstall cmd: C:\WINDOWS\IsUn040c.exe -f"C:\Program Files\Creative\Audio\PlayCenter\Player.isu"PopUpCop 2.0.3.20 (PopUpCop)   uninstall cmd: C:\PROGRA~1\POPUPCOP\UNWISE.EXE /U C:\PROGRA~1\POPUPCOP\INSTALL.LOG       publisher: EdenSoft       help link: http://www.PopUpCop.com/help.htmlWindows XP Hotfix (SP1) [See Q309521 for more information]  (Q309521)Windows XP Hotfix (SP1) [See Q311889 for more information]  (Q311889)Windows XP Hotfix (SP1) [See Q311967 for more information]  (Q311967)Windows XP Hotfix (SP1) [See Q313450 for more information]  (Q313450)   uninstall cmd: C:\WINDOWS\$NtUninstallQ313450$\spuninst\spuninst.exeWindows XP Hotfix (SP1) [See Q314862 for more information]  (Q314862)Windows XP Hotfix (SP1) [See Q315000 for more information]  (Q315000)Windows XP Hotfix (SP1) [See Q315403 for more information]  (Q315403)Windows XP Hotfix (SP1) [See Q317277 for more information]  (Q317277)Windows XP Hotfix (SP1) [See Q318138 for more information]  (Q318138)Windows XP Application Compatibility Update[Q319580]  (Q319580)Windows XP Hotfix (SP1) [See Q323172 for more information]  (Q323172)Windows XP Hotfix (SP1) [See Q324096 for more information]  (Q324096)Windows XP Hotfix (SP1) [See Q324380 for more information]  (Q324380)Windows XP Hotfix (SP1) [See Q326830 for more information]  (Q326830)Windows XP Hotfix (SP1) [See Q328940 for more information]  (Q328940)Windows XP Hotfix (SP1) [See Q329048 for more information]  (Q329048)Package du correctif Windows XP [voir Q329115 pour plus de détails]  (Q329115)Windows XP Hotfix (SP1) Q329170 20030102.115458 (Q329170)   uninstall cmd: C:\WINDOWS\$NtUninstallQ329170$\spuninst\spuninst.exe       publisher: Microsoft Corporation       help link: Pour plus d'informations, consultez Q329170 à l'adresse http://support.microsoft.comWindows XP Hotfix (SP1) [See Q329390 for more information]  (Q329390)Windows XP Hotfix (SP1) [See Q329441 for more information]  (Q329441)       publisher: Microsoft CorporationWindows XP Hotfix (SP1) [See Q329834 for more information]  (Q329834)Windows XP Hotfix (SP1) Q810577 20021118.133626 (Q810577)       publisher: Microsoft Corporation       help link: Pour plus d'informations, consultez Q810577 à l'adresse http://support.microsoft.comWindows XP Hotfix (SP1) Q811493 20030422.110254 (Q811493)       publisher: Microsoft Corporation       help link: http://support.microsoft.com?kbid=811493Windows XP Hotfix (SP1) Q815021 20030502.110434 (Q815021)       publisher: Microsoft Corporation       help link: http://support.microsoft.com?kbid=815021Windows XP Hotfix (SP1) Q817606 20030331.103325 (Q817606)       publisher: Microsoft Corporation       help link: http://support.microsoft.com?kbid=817606Windows XP Hotfix (SP1) Q819696 20030513.122826 (Q819696)       publisher: Microsoft Corporation       help link: http://support.microsoft.com?kbid=819696Correctif pour le Lecteur Windows Media [Voir Q828026 pour plus d'informations]  (Q828026)       publisher: Microsoft Corporation       help link: http://support.microsoft.com?kbid=828026QuickTime  (QuickTime)   uninstall cmd: C:\WINDOWS\unvise32qt.exe C:\WINDOWS\SYSTEM32\QuickTime\Uninstall.logQuickTime for Windows (32-bit)  (QuickTime32)   uninstall cmd: C:\WINDOWS\QTW32DEL.EXE  (SchedulingAgent)  (Sevinst)  (Shockwave)  (ShockwaveFlash)Solving and Optimization Extension Pack  (SOEPKey)   uninstall cmd: C:\WINDOWS\uninst.exe -f"C:\Program Files\MathSoft\Mathcad 2000 Professionnel\DeIsL1.isu"Sound Blaster AudioPCI  (Sound Blaster AudioPCI)   uninstall cmd: C:\Program Files\Creative\Uninstall\CTUNINST.EXE /U:UNINST1.INI  (Sound Blaster Live!)  (Sound Blaster Live! Pilotes Windows)   uninstall cmd: "C:\Program Files\Creative\SBLive\Program\Ctzapxx.EXE" /X /U /S /L:FRN3Deep  (tdp)   uninstall cmd: C:\WINDOWS\IsUninst.exe -f"C:\Program Files\E-Color\3Deep\TDPunins.isu" -c"C:\PROGRA~1\E-COLOR\3DEEP\TDPUNINS.DLL" ProdName3DeepUSB Monitor  (USB Monitor)   uninstall cmd: C:\WINDOWS\uninst.exe -f"C:\Program Files\USB Monitor\DeIsL1.isu"  -c"C:\Program Files\USB Monitor\_ISREG32.DLL"  (VGX)VIAhm  (VIAhm)   uninstall cmd: C:\WINDOWS\IsUninst.exe -fc:\VIAhm\Uninst.isuViewpoint Media Player (Remove Only)  (ViewpointMediaPlayer)   uninstall cmd: C:\Program Files\Viewpoint\Viewpoint Media Player\mtsAxInstaller.exe /uVirtual Pool 2  (VP2DeinstKey)   uninstall cmd: C:\WINDOWS\uninst.exe -f"C:\Program Files\VR Sports\VP2\DeIsL1.isu"Winamp (remove only)  (Winamp)   uninstall cmd: "C:\Program Files\Winamp\UninstWA.exe"Désinstallation de Windows XP  (Windows)install location: C:\undo   uninstall cmd: %SYSTEMROOT%\system32\osuninst.exeWinFox V1.0 Setup  (WinFox V1.0 Setup)   uninstall cmd: C:\WINDOWS\IsUn040c.exe -f"C:\Program Files\Leadtek Research Inc.\WinFox V1.0 Setup\Uninst.isu"Archiveur WinRAR  (WinRAR archiver)   uninstall cmd: C:\Program Files\WinRAR\uninstall.exeXingMPEG Player  (XingMPEG Player)   uninstall cmd: C:\PROGRA~1\XING\XINGMP~1\UNINST.EXE C:\PROGRA~1\XING\XINGMP~1\INSTALL.LOGZoneAlarm 6.1.737.000 (ZoneAlarm)   uninstall cmd: C:\karim\ZoneAlarm\ZoneAlarm\zauninst.exe       publisher: Zone Labs, Inc       help link: C:\karim\ZoneAlarm\ZoneAlarm\Aide\zaclients.chmMicrosoft Office 2000 Premium 9.00.2720 ({0000040C-78E1-11D2-B60F-006097C998E7})         version: 150997664 version (major): 9    install date: 24/01/01  install source: D:\   uninstall cmd: MsiExec.exe /I{0000040C-78E1-11D2-B60F-006097C998E7}       publisher: Microsoft Corporation       help link: http://www.microsoft.com/supportNorton WMI Update 2005.1.2.20 ({1526D87C-A955-4FAB-BF18-697BA457E352}) version (major): 2005 version (minor): 1  estimated size: 2168    install date: 20050129   uninstall cmd: MsiExec.exe /X{1526D87C-A955-4FAB-BF18-697BA457E352}       publisher: Symantec CorporationJ2SE Runtime Environment 5.0 Update 4 1.5.0.40 ({3248F0A8-6813-11D6-A77B-00B0D0150040})         version: 17104896 version (major): 1 version (minor): 5  estimated size: 121345    install date: 20050820  install source: http://jdl.sun.com/webapps/download/GetFile/1.5.0_04-b05/windows-i586//   uninstall cmd: MsiExec.exe /I{3248F0A8-6813-11D6-A77B-00B0D0150040}       publisher: Sun Microsystems, Inc.         contact: http://java.com       help link: http://java.com          readme: C:\Program Files\Java\jre1.5.0_04\README.txtJ2SE Runtime Environment 5.0 Update 6 1.5.0.60 ({3248F0A8-6813-11D6-A77B-00B0D0150060})         version: 17104896 version (major): 1 version (minor): 5  estimated size: 122337    install date: 20051226  install source: http://jdl.sun.com/webapps/download/GetFile/1.5.0_06-b05/windows-i586//   uninstall cmd: MsiExec.exe /I{3248F0A8-6813-11D6-A77B-00B0D0150060}       publisher: Sun Microsystems, Inc.         contact: http://java.com       help link: http://java.com          readme: C:\Program Files\Java\jre1.5.0_06\README.txtWebFldrs XP 9.50.5318 ({350C97B8-3D7C-4EE8-BAA9-00BCB3D54227})         version: 154277062 version (major): 9 version (minor): 50  estimated size: 2708    install date: 20030525  install source: C:\WINDOWS\System32\       publisher: Microsoft Corporation       help link: http://www.microsoft.com/windows  ({435E969D-867E-4364-8E74-3DC8A69C5BDB})   uninstall cmd: RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{435E969D-867E-4364-8E74-3DC8A69C5BDB}\setup.exe" -l0x40c   ({48E3A9E6-FA13-11D5-8CC9-00A0C98192B6})   uninstall cmd: RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{48E3A9E6-FA13-11D5-8CC9-00A0C98192B6}\setup.exe" -l0x40c DiskeeperWorkstation 7.0.403.2 ({5187D2C3-BCB9-4450-83B9-5E0BC4B4AB8D})         version: 117440915 version (major): 7  estimated size: 3709    install date: 20040415  install source: C:\Program Files\Executive Software\Diskeeper Setup\   uninstall cmd: MsiExec.exe /I{5187D2C3-BCB9-4450-83B9-5E0BC4B4AB8D}       publisher: Executive Software International, Inc.        comments: Copyright 2002 Executive Software International, Inc. Tous droits réservés.         contact: Support technique       help link: http://www.execsoft.com  help telephone: Téléphone - États-Unis -  818-771-1600            Europe - +011-44-1342-327477                Japon - +32984-3845894  ({58582977-44D2-44A0-A09B-031CC2AE5938})   uninstall cmd: RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{58582977-44D2-44A0-A09B-031CC2AE5938}\setup.exe" -l0x40c Dragon NaturallySpeaking 7.1 7.10.200.092 ({6675E71B-9843-4971-BC15-18AB52801134}) version (major): 7 version (minor): 10install location: C:\Program Files\ScanSoft\NaturallySpeaking  install source: D:\dragon\   uninstall cmd: C:\Program Files\InstallShield Installation Information\{6675E71B-9843-4971-BC15-18AB52801134}\setup.exe       publisher: ScanSoft       help link: http://www.ScanSoft.com/NaturallySpeaking/support/Symantec Network Drivers Update 5.4.4.17 ({7169B8E4-2632-46B1-AA5F-167CB5FE5029})         version: 84148228 version (major): 5 version (minor): 4  estimated size: 2890    install date: 20050209       publisher: Symantec CorporationMAX-FX Tools  ({7299E7F8-6921-4588-9A83-9BB7B867706F})   uninstall cmd: RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\ENGINE\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{7299E7F8-6921-4588-9A83-9BB7B867706F}\SETUP.EXE" Sound Blaster Live!  ({9115E7DB-3B29-445A-802D-11E0AA945B7F})   uninstall cmd: RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{9115E7DB-3B29-445A-802D-11E0AA945B7F}\SETUP.EXE" -l0x40c   ({9A4D2983-4662-4387-BE3D-4CFC2FA9C100})   uninstall cmd: RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{9A4D2983-4662-4387-BE3D-4CFC2FA9C100}\setup.exe" -l0x40c   ({A731533B-B325-4D9C-91A4-D93C8E294C19})   uninstall cmd: RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{A731533B-B325-4D9C-91A4-D93C8E294C19}\setup.exe" -l0x40c MSN Messenger 7.0 7.0.0777 ({ABEB838C-A1A7-4C5D-B7E1-8B4314600777})         version: 117441289 version (major): 7  estimated size: 25402    install date: 20050421   uninstall cmd: MsiExec.exe /I{ABEB838C-A1A7-4C5D-B7E1-8B4314600777}       publisher: Microsoft Corporation  ({AC157741-3285-4D6A-B934-9174587A3493})   uninstall cmd: RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{AC157741-3285-4D6A-B934-9174587A3493}\setup.exe" -l0x40c PC-Link VTech® (Masterpad®)  ({B991EED6-5106-11D5-8F02-0000E8A35E52})   uninstall cmd: RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\ENGINE\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{B991EED6-5106-11D5-8F02-0000E8A35E52}\SETUP.EXE" anythingNorton AntiVirus Corporate Edition 7.6.0.0000 ({BD12EB47-DBDF-11D3-BEEA-00A0CC272509})         version: 117833728 version (major): 7 version (minor): 6  estimated size: 75338    install date: 20020314  install source: D:\CD2\NAVCORP\ROLLOUT\AVSERVER\CLIENTS\WIN32\   uninstall cmd: MsiExec.exe /I{BD12EB47-DBDF-11D3-BEEA-00A0CC272509}       publisher: Symantec Corporation         contact:                    help link: http://www.symantec.com  help telephone:             Alcatel SpeedTouch USB Software  ({D41FAAA9-8048-4906-86B2-9AADEA1FA0B7})   uninstall cmd: RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\ENGINE\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{D41FAAA9-8048-4906-86B2-9AADEA1FA0B7}\SETUP.EXE"  -Control_PanelCanon PhotoRecord 02.02.00013 ({D958FAC4-BAE0-4B1D-A42E-DE9BFDE7DDEE})         version: 33685517 version (major): 2 version (minor): 2  estimated size: 97842    install date: 20050130  install source: D:\PREC2\   uninstall cmd: MsiExec.exe /X{D958FAC4-BAE0-4B1D-A42E-DE9BFDE7DDEE}       publisher: Cisra  ({E7337A45-3FE5-4392-ABBB-26B794D060C9})   uninstall cmd: RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{E7337A45-3FE5-4392-ABBB-26B794D060C9}\setup.exe" -l0x40c PCLink for GSM Ver.1.0  ({F3BF93D3-25E7-11D6-B496-0050BF282FBC})   uninstall cmd: RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\ENGINE\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{F3BF93D3-25E7-11D6-B496-0050BF282FBC}\SETUP.EXE" -l0x9   ({FD851F7E-F887-405D-9E1C-488811113EF3})   uninstall cmd: RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{FD851F7E-F887-405D-9E1C-488811113EF3}\setup.exe" -l0x40c --- System Services ---Service (registry key): Aavmker4  Display name: avast! Asynchronous Virus Monitor         Start: 1          Type: 1 Error Control: 1Service (registry key): Abiosdsk         Start: 4          Type: 1 Error Control: 0Service (registry key): abp480n5         Start: 4          Type: 1 Error Control: 1Service (registry key): ACPI  Display name: Pilote ACPI Microsoft    Image path: System32\DRIVERS\ACPI.sys    Image size: 180096     Image MD5: 34128BB2AB7BD69C72017BE7FCF8BE34         Start: 0          Type: 1 Error Control: 1Service (registry key): ACPIEC         Start: 4          Type: 1 Error Control: 1Service (registry key): adpu160m         Start: 4          Type: 1 Error Control: 1Service (registry key): aec  Display name: Suppresseur d'écho acoustique (Noyau Microsoft)    Image path: system32\drivers\aec.sys    Image size: 122472     Image MD5: B45A744CA0A15A59D8B0307CE9741E92         Start: 3          Type: 1 Error Control: 1Service (registry key): AFD  Display name: Environnement de prise en charge de réseau AFD    Image path: \SystemRoot\System32\drivers\afd.sys         Start: 2          Type: 1 Error Control: 1Service (registry key): Aha154x         Start: 4          Type: 1 Error Control: 1Service (registry key): aic78u2         Start: 4          Type: 1 Error Control: 1Service (registry key): aic78xx         Start: 4          Type: 1 Error Control: 1Service (registry key): alcan5wn  Display name: Alcatel SpeedTouch USB ADSL PPP Networking Driver (NDISWAN)    Image path: System32\DRIVERS\alcan5wn.sys    Image size: 53168     Image MD5: C7E217CD964D0067F18263429C87EC1B         Start: 3          Type: 1 Error Control: 1Service (registry key): alcaudsl  Display name: Alcatel Speed Touch ADSL Modem ATM Transport    Image path: System32\DRIVERS\alcaudsl.sys    Image size: 743136     Image MD5: 8080B5EA17A763BBCE6C92BBC6CEEFE8         Start: 3          Type: 1 Error Control: 1Service (registry key): Alerter  Display name: Avertissement   Description: Informe les utilisateurs et les ordinateurs sélectionnés des alertes administratives. Si ce service est arrêté, les programmes qui utilisent les alertes administratives ne les recevront pas. Si ce service est désactivé, les services qui en dépendent ne pourront pas démarrer.   Object name: NT AUTHORITY\LocalService    Image path: %SystemRoot%\System32\svchost.exe -k LocalService    Image size: 12800     Image MD5: 333A4DB8410D8E24DB06D6AEBECDC7C2         Start: 3          Type: 32 Error Control: 1 Depends On services: LanmanWorkstationService (registry key): ALG  Display name: Service de la passerelle de la couche Application   Description: Fournit la prise en charge des plugins de protocoles tiers pour le partage de connexion Internet et le pare-feu Internet.   Object name: NT AUTHORITY\LocalService    Image path: %SystemRoot%\System32\alg.exe    Image size: 40960     Image MD5: 55D226818B6C3D99741432D37657BA73         Start: 3          Type: 16 Error Control: 1Service (registry key): AliIde         Start: 4          Type: 1 Error Control: 1Service (registry key): amsint         Start: 4          Type: 1 Error Control: 1Service (registry key): AppMgmt  Display name: Gestion d'applications   Description: Fournit des services d'installation de logiciels tels que Attribuer, Publier et Supprimer.   Object name: LocalSystem    Image path: %SystemRoot%\system32\svchost.exe -k netsvcs    Image size: 12800     Image MD5: 333A4DB8410D8E24DB06D6AEBECDC7C2         Start: 3          Type: 32 Error Control: 1Service (registry key): asc         Start: 4          Type: 1 Error Control: 1Service (registry key): asc3350p         Start: 4          Type: 1 Error Control: 1Service (registry key): asc3550         Start: 4          Type: 1 Error Control: 1Service (registry key): aswMon2  Display name: avast! Standard Shield Support         Start: 2          Type: 2 Error Control: 1Service (registry key): aswRdr  Display name: aswRdr         Start: 3          Type: 1 Error Control: 1 Depends On services: tcpipService (registry key): aswTdi  Display name: avast! Network Shield Support         Start: 1          Type: 1 Error Control: 1 Depends On services: tcpipService (registry key): aswUpdSv  Display name: avast! iAVS4 Control Service   Description: Fournit la mise à jour automatique pour l'antivirus avast!.   Object name: LocalSystem    Image path: "C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe"    Image size: 53248     Image MD5: 435D862E96FE19612093177CF6618F4E         Start: 2          Type: 272 Error Control: 1Service (registry key): AsyncMac  Display name: Pilote de média asynchrone RAS   Description: Pilote de média asynchrone RAS    Image path: System32\DRIVERS\asyncmac.sys    Image size: 13568     Image MD5: 03F403B07A884FC2AA54A0916C410931         Start: 3          Type: 1 Error Control: 1Service (registry key): atapi  Display name: Contrôleur de disque dur IDE/ESDI standard    Image path: System32\DRIVERS\atapi.sys    Image size: 86656     Image MD5: A64013E98426E1877CB653685C5C0009         Start: 0          Type: 1 Error Control: 1Service (registry key): Atdisk         Start: 4          Type: 1 Error Control: 0Service (registry key): Atmarpc  Display name: Protocole client ATM ARP   Description: Protocole client ATM ARP    Image path: System32\DRIVERS\atmarpc.sys    Image size: 57216     Image MD5: 8D735CA1CBDB0081B0E3B9FF0EB222D0         Start: 3          Type: 1 Error Control: 1 Depends On services: TcpipService (registry key): AudioSrv  Display name: Audio Windows   Description: Gère les périphériques audio pour les programmes basés sur Windows. Si ce service est arrêté, les périphériques et les effets audio ne fonctionneront pas correctement. Si ce service est désactivé, les services en dépendant explicitement ne démarreront pas.   Object name: LocalSystem    Image path: %SystemRoot%\System32\svchost.exe -k netsvcs    Image size: 12800     Image MD5: 333A4DB8410D8E24DB06D6AEBECDC7C2         Start: 2          Type: 32 Error Control: 1 Depends On services: PlugPlay,RpcSsService (registry key): audstub  Display name: Pilote audio Stub    Image path: System32\DRIVERS\audstub.sys    Image size: 3072     Image MD5: D9F724AA26C010A217C97606B160ED68         Start: 3          Type: 1 Error Control: 1Service (registry key): avast! Antivirus  Display name: avast! Antivirus   Description: Gère et implémente les services de l'antivirus avast! pour cet ordinateur. Ceci inclut la protection résidente, la zone de quarantaine et le planificateur.   Object name: LocalSystem    Image path: "C:\Program Files\Alwil Software\Avast4\ashServ.exe"    Image size: 98352     Image MD5: C8C0AEE5D0585457FF6E318E8BB9289D         Start: 2          Type: 272 Error Control: 1 Depends On services: aswMon2,RpcSSService (registry key): avast! Mail Scanner  Display name: avast! Mail Scanner   Description: Implémente l'analyse du courrier électronique pour l'antivirus avast!.   Object name: LocalSystem    Image path: "C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe" /service    Image size: 241712     Image MD5: 8C50FFD2642FD97DAC0009280A438570         Start: 3          Type: 272 Error Control: 1 Depends On services: "avast! Antivirus"Service (registry key): avast! Web Scanner  Display name: avast! Web Scanner   Description: Implémente l'analyse du contenu web (HTTP) pour l'antivirus avast!.   Object name: LocalSystem    Image path: "C:\Program Files\Alwil Software\Avast4\ashWebSv.exe" /service    Image size: 360496     Image MD5: EB51923A762779247C776A551C546898         Start: 3          Type: 272 Error Control: 1 Depends On services: "avast! Antivirus"Service (registry key): BattC         Start: 0          Type: 0 Error Control: 0Service (registry key): Beep         Start: 1          Type: 1 Error Control: 1Service (registry key): BITS  Display name: Service de transfert intelligent en arrière-plan   Description: Utilise la bande passante réseau inactive pour transférer des données.   Object name: LocalSystem    Image path: %SystemRoot%\System32\svchost.exe -k netsvcs    Image size: 12800     Image MD5: 333A4DB8410D8E24DB06D6AEBECDC7C2         Start: 3          Type: 32 Error Control: 1 Depends On services: RpcssService (registry key): Browser  Display name: Explorateur d'ordinateur   Description: Tient à jour une liste des ordinateurs présents sur le réseau et fournit cette liste aux ordinateurs désignés comme navigateurs. Si ce service est arrêté, la liste ne sera pas mise ou tenue à jour. Si ce service est désactivé, les services qui en dépendent ne pourront pas démarrer.   Object name: LocalSystem    Image path: %SystemRoot%\System32\svchost.exe -k netsvcs    Image size: 12800     Image MD5: 333A4DB8410D8E24DB06D6AEBECDC7C2         Start: 3          Type: 32 Error Control: 1 Depends On services: LanmanWorkstation,LanmanServerService (registry key): cbidf2k         Start: 4          Type: 1 Error Control: 1Service (registry key): CCDECODE  Display name: Décodeur sous-titre fermé    Image path: System32\DRIVERS\CCDECODE.sys    Image size: 16256     Image MD5: 1108137A497C112126B3F1F0E8A021B6         Start: 3          Type: 1 Error Control: 1Service (registry key): cd20xrnt         Start: 4          Type: 1 Error Control: 1Service (registry key): Cdaudio         Start: 1          Type: 1 Error Control: 0Service (registry key): Cdfs         Start: 4          Type: 2 Error Control: 1 Depends On group: "SCSI CDROM Class"Service (registry key): Cdrom  Display name: Pilote de CD-ROM    Image path: System32\DRIVERS\cdrom.sys    Image size: 47488     Image MD5: CB762E814F602229A574F4D78D3D6A30         Start: 1          Type: 1 Error Control: 1 Depends On group: "SCSI miniport"Service (registry key): Changer         Start: 1          Type: 1 Error Control: 0Service (registry key): cisvc  Display name: Service d'indexation   Description: Construit un index des contenus et des propriétés des fichiers sur les ordinateurs locaux et distants ; fournit un accès rapide aux fichiers par le biais d'un langage d'interrogation flexible.   Object name: LocalSystem    Image path: C:\WINDOWS\System32\cisvc.exe    Image size: 5120     Image MD5: 7901AF03767C140467671C7CEEB2C3FE         Start: 3          Type: 32 Error Control: 1 Depends On services: RPCSSService (registry key): ClipSrv  Display name: Gestionnaire de l'Album   Description: Active le Gestionnaire de l'Album afin de stocker les informations et les partager avec des ordinateurs à distance. Si le service est arrêté, le Gestionnaire de l'Album ne pourra pas partager les informations avec des ordinateurs à distance. Si ce service est désactivé, tout service en dépendant explicitement ne démarrera pas.   Object name: LocalSystem    Image path: %SystemRoot%\system32\clipsrv.exe    Image size: 30720     Image MD5: 3D1AAB2963FABCAFEB507B5C9D67BFBC         Start: 3          Type: 16 Error Control: 1 Depends On services: NetDDEService (registry key): CmdIde         Start: 4          Type: 1 Error Control: 1Service (registry key): COMSysApp  Display name: Application système COM+   Description: Gère la configuration et le suivi des composants de base COM+ (Component Object Model) . Si le service est arrêté, la plupart des composants de base COM+ ne fonctionneront pas correctement. Si ce service est désactivé, les services qui en dépendent de manière explicite ne pourront pas démarrer.   Object name: LocalSystem    Image path: C:\WINDOWS\System32\dllhost.exe /Processid:{02D4B3F1-FD88-11D1-960D-00805FC79235}    Image size: 4608     Image MD5: 17681E6109A67F3AEA66AD6AAE2434E6         Start: 3          Type: 16 Error Control: 1 Depends On services: rpcssService (registry key): ContentFilter         Start: 0          Type: 0 Error Control: 0Service (registry key): ContentIndex         Start: 0          Type: 0 Error Control: 0Service (registry key): Cpqarray         Start: 4          Type: 1 Error Control: 1Service (registry key): Cpqarray         Start: 4          Type: 1 Error Control: 1Service (registry key): CryptSvc  Display name: Services de cryptographie   Description: Fournit trois services de gestion : le service de base de données de catalogue, qui confirme la signature des fichiers Windows; le service de racine protégée, qui ajoute et supprime des certificats d'autorité de certification de racine approuvés et le service Clé, qui fournit une aide dans l'inscription de cet ordinateur pour les certificats. Si ce service est arrêté, ces services de gestion ne fonctionneront pas correctement. Si ce service est désactivé, tout service en dépendant explicitement ne démarrera pas.   Object name: LocalSystem    Image path: %SystemRoot%\system32\svchost.exe -k netsvcs    Image size: 12800     Image MD5: 333A4DB8410D8E24DB06D6AEBECDC7C2         Start: 2          Type: 32 Error Control: 1 Depends On services: RpcSsService (registry key): ctac32k  Display name: Creative AC3 Software Decoder    Image path: System32\drivers\ctac32k.sys    Image size: 127948     Image MD5: 4B6096745F72B4FD36514617E2EA5D37         Start: 3          Type: 1 Error Control: 1Service (registry key): ctaud2k  Display name: Creative Audio Driver (WDM)    Image path: system32\drivers\ctaud2k.sys    Image size: 837548     Image MD5: 3576EC792347ED15699F6D830E0F5437         Start: 3          Type: 1 Error Control: 1Service (registry key): ctljystk  Display name: Creative SBLive! Port de jeux    Image path: System32\DRIVERS\ctljystk.sys    Image size: 3712     Image MD5: 71007BD2E1E26927FE3E4EB00C0BEEDF         Start: 3          Type: 1 Error Control: 0Service (registry key): ctprxy2k

Utilisateur anonyme · Answer

--Chouchou-Chouchou, alias Mister Chouchou² (copyright © Bansheestyle)Ouvre le bloc note et copie colle ceci entre les étoiles**********REGEDIT4[-HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{B313D637-F405-4052-AC37-E2119AB3C8F8}][-HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{EFDAC3FE-F44A-4030-8589-1E23BC6573D5}][-HKEY_CLASSES_ROOT\CLSID\{B313D637-F405-4052-AC37-E2119AB3C8F8}][-HKEY_CLASSES_ROOT\CLSID\{B8B55274-0F9A-41E5-9067-A3539BD9E860}][-HKEY_CLASSES_ROOT\CLSID\{44240BB5-BD7D-4D49-A1AA-8AB0F3D3CB44}][-HKEY_CLASSES_ROOT\MSEvents.MSEvents][-HKEY_CLASSES_ROOT\MSEvents.MSEvents.1][-HKEY_LOCAL_MACHINE\SOFTWARE\Classes\MSEvents.MSEvents][-HKEY_LOCAL_MACHINE\SOFTWARE\Classes\MSEvents.MSEvents.1]************ enregistre le sur ton bureau et nomme le www.reg et dans la case en dessous type met sur tous fichiers la vas sur ton bureau et double click sur se fichier que tu vient de faire et accepte la fusion avec le registre.Remet un spybota+

biggup · Answer

re régis toujours aucun résultats... les memes malwares et ça ne supprime rien en tout cas voici le log spybot--- Search result list ---MaxSearch: Root class (Clé du registre, fixing failed)  HKEY_LOCAL_MACHINE\Software\Classes\XBTB07618.XBTB07618MaxSearch: Root class (Clé du registre, fixing failed)  HKEY_LOCAL_MACHINE\Software\Classes\XBTB07618.XBTB07618.1MaxSearch: Root class (Clé du registre, fixing failed)  HKEY_LOCAL_MACHINE\Software\Classes\ToolBand.XBTP07618MaxSearch: Root class (Clé du registre, fixing failed)  HKEY_LOCAL_MACHINE\Software\Classes\ToolBand.XBTP07618.1MaxSearch: Root class (Clé du registre, fixing failed)  HKEY_LOCAL_MACHINE\Software\Classes\XBTB07618.IEToolbarMaxSearch: Root class (Clé du registre, fixing failed)  HKEY_LOCAL_MACHINE\Software\Classes\XBTB07618.IEToolbar.1Roings: Root class (Clé du registre, fixing failed)  HKEY_LOCAL_MACHINE\Software\Classes\IObjSafety.DemoCtlDyFuCA: Root class (Clé du registre, fixing failed)  HKEY_LOCAL_MACHINE\Software\Classes\DyFuCA_BH.BHObjDyFuCA: Root class (Clé du registre, fixing failed)  HKEY_LOCAL_MACHINE\Software\Classes\DyFuCA_BH.BHObj.1VirtuMonde: Root class (Clé du registre, fixing failed)  HKEY_LOCAL_MACHINE\Software\Classes\MSEvents.MSEventsVirtuMonde: Root class (Clé du registre, fixing failed)  HKEY_LOCAL_MACHINE\Software\Classes\MSEvents.MSEvents.1Delfin Project: Root class (Clé du registre, fixing failed)  HKEY_LOCAL_MACHINE\Software\Classes\VCCPGDATAACCESS.PgDataAccessCtrl.1--- Spybot - Search & Destroy version: 1.4  (build: 20050523) ---2005-12-27 unins000.exe (51.41.0.0)2005-05-31 blindman.exe (1.0.0.1)2005-05-31 SpybotSD.exe (1.4.0.3)2005-05-31 TeaTimer.exe (1.4.0.2)2005-05-31 Update.exe (1.4.0.0)2005-05-31 advcheck.dll (1.0.2.0)2005-05-31 aports.dll (2.1.0.0)2005-05-31 borlndmm.dll (7.0.4.453)2005-05-31 delphimm.dll (7.0.4.453)2005-05-31 SDHelper.dll (1.4.0.0)2005-05-31 Tools.dll (2.0.0.2)2005-05-31 UnzDll.dll (1.73.1.1)2005-05-31 ZipDll.dll (1.73.2.0)2006-01-13 Includes\Cookies.sbi (*)2006-01-13 Includes\Dialer.sbi (*)2006-01-13 Includes\Hijackers.sbi (*)2006-01-13 Includes\Keyloggers.sbi (*)2006-01-13 Includes\Malware.sbi (*)2006-01-13 Includes\Revision.sbi (*)2006-01-13 Includes\Security.sbi (*)2006-01-13 Includes\Spybots.sbi (*)2006-01-13 Includes\Trojans.sbi (*)2005-02-17 Includes\Tracks.uti2006-01-13 Includes\PUPS.sbi (*)--- System information ---Windows XP (Build: 2600)  / DataAccess: Microsoft Data Access Components KB870669 / DataAccess: Patch Available For XMLHTTP Vulnerability / DataAccess: Patch Available For XMLHTTP Vulnerability / DataAccess: Security Update for Microsoft Data Access Components / Windows Media Player: Correctif pour le Lecteur Windows Media [Voir Q828026 pour plus d'informations] / Windows Media Player / SP0: Correctif pour le Lecteur Windows Media [Voir Q828026 pour plus d'informations] / Windows Media Player: Windows Media Update 320920 / Windows XP / SP1: Windows XP Hotfix - KB821557 / Windows XP / SP1: Windows XP Hotfix - KB823182 / Windows XP / SP1: Windows XP Hotfix - KB824105 / Windows XP / SP1: Correctif Windows XP - KB824141 / Windows XP / SP1: Correctif Windows XP - KB828035 / Windows XP / SP1 / Q309521: Windows XP Hotfix (SP1) [See Q309521 for more information] / Windows XP / SP1: Windows XP Hotfix (SP1) [See Q311889 for more information] / Windows XP / SP1: Windows XP Hotfix (SP1) [See Q311967 for more information] / Windows XP / SP1: Windows XP Hotfix (SP1) [See Q313450 for more information] / Windows XP / SP1: Windows XP Hotfix (SP1) [See Q314862 for more information] / Windows XP / SP1: Windows XP Hotfix (SP1) [See Q315000 for more information] / Windows XP / SP1: Windows XP Hotfix (SP1) [See Q315403 for more information] / Windows XP / SP1: Windows XP Hotfix (SP1) [See Q317277 for more information] / Windows XP / SP1: Windows XP Hotfix (SP1) [See Q324096 for more information] / Windows XP / SP1: Windows XP Hotfix (SP1) [See Q326830 for more information] / Windows XP / SP1: Windows XP Hotfix (SP1) [See Q328940 for more information] / Windows XP / SP1: Windows XP Hotfix (SP1) [See Q329048 for more information] / Windows XP / SP1: Windows XP Hotfix (SP1) Q329170 / Windows XP / SP1: Windows XP Hotfix (SP1) [See Q329390 for more information] / Windows XP / SP1: Windows XP Hotfix (SP1) [See Q329441 for more information] / Windows XP / SP1: Windows XP Hotfix (SP1) [See Q329834 for more information] / Windows XP / SP1: Windows XP Hotfix (SP1) Q810577 / Windows XP / SP1: Windows XP Hotfix (SP1) Q811493 / Windows XP / SP1: Windows XP Hotfix (SP1) Q811630 / Windows XP / SP1: Windows XP Hotfix (SP1) Q815021 / Windows XP / SP1: Windows XP Hotfix (SP1) Q817606 / Windows XP / SP1: Windows XP Hotfix (SP1) Q819696 / Windows XP / SP2: Correctif Windows XP - KB810217 / Windows XP / SP2: Correctif Windows XP - KB823559 / Windows XP / SP2: Correctif Windows XP - KB825119 / Windows XP / SP2: Correctif Windows XP - KB833987 / Windows XP / SP2: Correctif Windows XP - KB839643 / Windows XP / SP2: Correctif Windows XP - KB839645 / Windows XP / SP2: Correctif Windows XP - KB840315 / Windows XP / SP2: Correctif Windows XP - KB841873 / Windows XP / SP2: Correctif Windows XP - KB842773 / Windows XP / SP2: Correctif Windows XP - KB883357 / Windows XP / SP2: Package du correctif Windows XP [voir Q323255 pour plus de détails]--- Startup entries list ---Located: HK_LM:Run, avast!command: C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe   file: C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe   size: 98352    MD5: 0a9883be214c4f7a65b6dff129f37b6eLocated: HK_LM:Run, Openwares LiveUpdatecommand: C:\Program Files\LiveUpdate\LiveUpdate.exe   file: C:\Program Files\LiveUpdate\LiveUpdate.exe   size: 61440    MD5: 93cf2b93f02e52cd6fffa567249f3f73Located: HK_LM:Run, SunJavaUpdateSchedcommand: C:\Program Files\Java\jre1.5.0_06\bin\jusched.exe   file: C:\Program Files\Java\jre1.5.0_06\bin\jusched.exe   size: 36975    MD5: 61a3a9d5d98bf0331df5b716144a8100Located: HK_LM:Run, Zone Labs Clientcommand: C:\karim\ZoneAlarm\ZoneAlarm\zlclient.exe   file: C:\karim\ZoneAlarm\ZoneAlarm\zlclient.exe   size: 755472    MD5: e85c5dc2659f562c496e839649aa7200Located: HK_CU:Run, msnmsgrcommand: "C:\Program Files\MSN Messenger\msnmsgr.exe" /background   file: C:\Program Files\MSN Messenger\msnmsgr.exe   size: 6815744    MD5: d846554575a9f571d6b891153faa0c50Located: Démarrage (utilisateur), Microsoft Office.lnkcommand: C:\Program Files\Microsoft Office\Office\Osa9.exe   file: C:\Program Files\Microsoft Office\Office\Osa9.exe   size: 65588    MD5: 09ec24043108b072e01a03a029239324Located: System.ini, crypt32chaincommand: crypt32.dll   file: crypt32.dllLocated: System.ini, cryptnetcommand: cryptnet.dll   file: cryptnet.dllLocated: System.ini, cscdllcommand: cscdll.dll   file: cscdll.dllLocated: System.ini, ScCertPropcommand: wlnotify.dll   file: wlnotify.dllLocated: System.ini, Schedulecommand: wlnotify.dll   file: wlnotify.dllLocated: System.ini, sclgntfycommand: sclgntfy.dll   file: sclgntfy.dllLocated: System.ini, SensLogncommand: WlNotify.dll   file: WlNotify.dllLocated: System.ini, termsrvcommand: wlnotify.dll   file: wlnotify.dllLocated: System.ini, wlballooncommand: wlnotify.dll   file: wlnotify.dll--- Browser helper object list ---{761497BB-D6F0-462C-B6EB-D4DAF1D92D43} (SSVHelper Class)          BHO name:         CLSID name: SSVHelper Class              Path: C:\Program Files\Java\jre1.5.0_06\bin\         Long name:            ssv.dll        Short name:                       Date (created): 10/11/2005 13:03:56Date (last access):         16/01/2006 Date (last write): 10/11/2005 13:22:10          Filesize:             184423        Attributes:           archive                MD5: F01726F7CA8538FDD4663C9DB8FEAEDC             CRC32:           0111B892           Version:           5.0.60.5--- ActiveX list ---{9A9307A0-7DA4-4DAF-B042-5009F29E09E1} (ActiveScan Installer Class)          DPF name:         CLSID name: ActiveScan Installer Class         Installer: C:\WINDOWS\Downloaded Program Files\asinst.inf          Codebase: http://acs.pandasoftware.com/activescan/as5free/asinst.cab       description:     classification: Open for discussion    known filename: ASINST.DLL         info link:        info source: Safer Networking Ltd.              Path: C:\WINDOWS\Downloaded Program Files\         Long name:         asinst.dll        Short name:                       Date (created): 19/12/2005 13:35:32Date (last access):         16/01/2006 Date (last write): 19/12/2005 13:35:32          Filesize:             135168        Attributes:           archive                MD5: 20C07B231040B49AFCE82397BFC35F9C             CRC32:           9301377D           Version:           58.4.0.0{C81B5180-AFD1-41A3-97E1-99E8D254DB98} ()          DPF name:         CLSID name:          Installer: C:\WINDOWS\Downloaded Program Files\cssweb.inf          Codebase: http://www.commandondemand.com/eval/cod/cabs/cssweb.cab       description: CSS Web Installer Class    classification: Open for discussion    known filename: CSSWEB.DLL         info link:        info source: Patrick M. Kolla{CAFEEFAC-0015-0000-0006-ABCDEFFEDCBA} (Java Runtime Environment 1.5.0)          DPF name: Java Runtime Environment 1.5.0        CLSID name: Java Plug-in 1.5.0_06         Installer:           Codebase: http://java.sun.com/update/1.5.0/jinstall-1_5_0_06-windows-i586.cab              Path: C:\Program Files\Java\jre1.5.0_06\bin\         Long name:    NPJPI150_06.dll        Short name:       NPJPI1~1.DLL    Date (created): 10/11/2005 13:03:56Date (last access):         15/01/2006 Date (last write): 10/11/2005 13:22:10          Filesize:              69746        Attributes:           archive                MD5: D2CF6BB5E9020E6707B62575F8083954             CRC32:           7F39DC54           Version:           5.0.60.5{CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} (Java Runtime Environment 1.5.0)          DPF name: Java Runtime Environment 1.5.0        CLSID name: Java Plug-in 1.5.0_06         Installer:           Codebase: http://java.sun.com/update/1.5.0/jinstall-1_5_0_06-windows-i586.cab              Path: C:\Program Files\Java\jre1.5.0_06\bin\         Long name:    NPJPI150_06.dll        Short name:       NPJPI1~1.DLL    Date (created): 10/11/2005 13:03:56Date (last access):         16/01/2006 Date (last write): 10/11/2005 13:22:10          Filesize:              69746        Attributes:           archive                MD5: D2CF6BB5E9020E6707B62575F8083954             CRC32:           7F39DC54           Version:           5.0.60.5--- Process list ---PID:    0 (   0) [System]PID:  316 (   4) \SystemRoot\System32\smss.exePID:  372 ( 316) \??\C:\WINDOWS\system32\csrss.exePID:  396 ( 316) \??\C:\WINDOWS\system32\winlogon.exePID:  440 ( 396) C:\WINDOWS\system32\services.exe size: 101888  MD5: FC0691097471EE374907E1024EDCBD43PID:  452 ( 396) C:\WINDOWS\system32\lsass.exe size: 11776  MD5: 2C2431B30A629123C1757582C9D93F38PID:  624 ( 440) C:\WINDOWS\system32\svchost.exe size: 12800  MD5: 333A4DB8410D8E24DB06D6AEBECDC7C2PID:  648 ( 440) C:\WINDOWS\System32\svchost.exe size: 12800  MD5: 333A4DB8410D8E24DB06D6AEBECDC7C2PID:  712 ( 440) C:\WINDOWS\System32\svchost.exe size: 12800  MD5: 333A4DB8410D8E24DB06D6AEBECDC7C2PID:  724 ( 440) C:\WINDOWS\System32\svchost.exe size: 12800  MD5: 333A4DB8410D8E24DB06D6AEBECDC7C2PID:  804 ( 440) C:\WINDOWS\system32\spoolsv.exe size: 51200  MD5: B1CE5287F096895D9BE26EB86F4D5FAFPID:  972 ( 440) C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe size: 53248  MD5: 435D862E96FE19612093177CF6618F4EPID: 1008 ( 440) C:\Program Files\Alwil Software\Avast4\ashServ.exe size: 98352  MD5: C8C0AEE5D0585457FF6E318E8BB9289DPID: 1028 ( 440) C:\WINDOWS\System32\CTsvcCDA.exe size: 44032  MD5: 3C8B6609712F4FF78E521F6DCFC4032BPID: 1052 ( 440) C:\Program Files\Executive Software\DiskeeperWorkstation\DKService.exe size: 253952  MD5: 5A715FC7A5E222D8E987B2D903885B0BPID: 1080 ( 440) C:\Documents and Settings\sabrina\Bureau\Nouveau dossier (2)\ewido anti-malware\ewidoctrl.exe size: 13888  MD5: 26830B750372AB1BF29C95DEEBEB802FPID: 1108 ( 440) C:\Documents and Settings\sabrina\Bureau\Nouveau dossier (2)\ewido anti-malware\ewidoguard.exe size: 151616  MD5: 34A50717AD686900F078F5208F8E908EPID: 1324 (1260) C:\WINDOWS\Explorer.EXE size: 1005056  MD5: 9E20A8EF0CA524446AFEE29F4423CC8FPID: 1376 ( 440) C:\WINDOWS\System32\svchost.exe size: 12800  MD5: 333A4DB8410D8E24DB06D6AEBECDC7C2PID: 1396 ( 440) C:\WINDOWS\SYSTEM32\ZONELABS\vsmon.exe size: 1693448  MD5: 7E9C8F0BF97910E04A078799837BB6F2PID: 1656 ( 440) C:\WINDOWS\System32\MsPMSPSv.exe size: 53520  MD5: 581176F60885AEF8F78C6E38DCC3CDF9PID: 1796 (1324) C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe size: 98352  MD5: 0A9883BE214C4F7A65B6DFF129F37B6EPID: 1820 (1324) C:\Program Files\Java\jre1.5.0_06\bin\jusched.exe size: 36975  MD5: 61A3A9D5D98BF0331DF5B716144A8100PID: 1848 (1324) C:\karim\ZoneAlarm\ZoneAlarm\zlclient.exe size: 755472  MD5: E85C5DC2659F562C496E839649AA7200PID:  196 ( 440) C:\Program Files\Alwil Software\Avast4\ashWebSv.exe size: 360496  MD5: EB51923A762779247C776A551C546898PID:  612 ( 440) C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe size: 241712  MD5: 8C50FFD2642FD97DAC0009280A438570PID: 2572 (1324) C:\Documents and Settings\sabrina\Bureau\Nouveau dossier (2)\Spybot - Search & Destroy\SpybotSD.exe size: 4393096  MD5: 09CA174A605B480318731E691DC98539PID: 2620 (1324) C:\Program Files\Microsoft Office\Office\WINWORD.EXE size: 8441907  MD5: F236C1DD10011D977D2A5C8350E77D10PID:    4 (   0) System--- Browser start & search pages list ---Spybot - Search & Destroy browser pages report, 16/01/2006 17:53:52HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main\Search Page  http://www.google.comHKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main\Start Page  http://www.google.fr/HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Search\SearchAssistant Explorer\Main\Default_Search_URL  about:blankHKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Main\Start Page  http://www.microsoft.com/isapi/redir.dll?prd={SUB_PRD}&clcid={SUB_CLSID}&pver={SUB_PVER}&ar=homeHKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Main\Default_Page_URL  http://www.microsoft.com/isapi/redir.dll?prd=ie&pver=6&ar=msnhomeHKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Main\Default_Search_URL  http://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearchHKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Search\SearchAssistant  http://ie.search.msn.com/{SUB_RFC1766}/srchasst/srchasst.htmHKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Search\CustomizeSearch  http://ie.search.msn.com/{SUB_RFC1766}/srchasst/srchcust.htm--- Winsock Layered Service Provider list ------ Uninstall list ---  (128PATCH)a-squared Free 1.6.1 1.6 (a-squared Free_is1)install location: C:\karim\a-squared\   uninstall cmd: "C:\karim\a-squared\unins000.exe"       publisher: Emsi Software GmbH        comments: a-squared       help link: http://forum.emsisoft.com  (AddressBook)   uninstall cmd: "C:\Program Files\Outlook Express\setup50.exe" /APP:WAB /CALLER:IE50 /UNINSTALL /PROMPTServeur AMS  (AMS Server)   uninstall cmd: C:\WINDOWS\IsUn040c.exe -f"C:\Program Files\Serveur AMS\AMSSERVR.isu"  (AudioHQ)   uninstall cmd: RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{FD851F7E-F887-405D-9E1C-488811113EF3}\setup.exe" -l0x40c  /removeavast! Antivirus 4.6 (avast!) version (major): 4 version (minor): 6install location: C:\PROGRA~1\ALWILS~1\Avast4  install source: C:\PROGRA~1\ALWILS~1\Avast4\setup   uninstall cmd: rundll32 C:\PROGRA~1\ALWILS~1\Avast4\Setup\setiface.dll,RunSetup       publisher: Alwil Software       help link: http://www.avast.com  (Branding)Canon PIXMA iP3000  (CANONBJ_Deinstall_CNMCP61.DLL)   uninstall cmd: C:\WINDOWS\System32\CNMCP61.exe "-PRINTERNAMECanon PIXMA iP3000" "-HELPERDLLC:\BJPrinter\CNMWINDOWS\Canon PIXMA iP3000 Installer\Inst2\cnmis.dll" "-RCDLLC:\BJPrinter\CNMWINDOWS\Canon PIXMA iP3000 Installer\Inst2\cnmi040c.dll"CCleaner (remove only)  (CCleaner)   uninstall cmd: "C:\Documents and Settings\sabrina\Bureau\Nouveau dossier\CCleaner\uninst.exe"OLITEC  PCI 56K V2 Modem  (Conexant SoftK56 Modem)   uninstall cmd: infunist.exe  (Connection Manager)Cosmo Player 2.1 (38329)  (Cosmo Player 2.1)   uninstall cmd: C:\WINDOWS\IsUn040c.exe -f"C:\Program Files\CosmoSoftware\CosmoPlayer\CosmoPlayer21.isu"  (Creative Configurator)   uninstall cmd: C:\WINDOWS\IsUn040c.exe -f"C:\Program Files\Creative\Audio\Configurator.isu"  (Creative Dos Drivers)   uninstall cmd: C:\WINDOWS\IsUn040c.exe -f"C:\Program Files\Creative\Audio\Dos.isu"  (Creative Installer Setup)   uninstall cmd: C:\WINDOWS\IsUn040c.exe -f"C:\Program Files\Creative\Uninstall\Installer.isu"  (Creative MiniDisc Center)   uninstall cmd: RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{AC157741-3285-4D6A-B934-9174587A3493}\setup.exe" -l0x40c  /remove  (Creative Mixer)   uninstall cmd: C:\WINDOWS\IsUn040c.exe -f"C:\Program Files\Creative\Audio\CTMixer.isu"  (Creative News)   uninstall cmd: C:\WINDOWS\IsUninst.exe -f"C:\Program Files\Creative\News\CTNews.isu"  (Creative PlayCenter 2.0)   uninstall cmd: RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{48E3A9E6-FA13-11D5-8CC9-00A0C98192B6}\setup.exe" -l0x40c  /remove  (Creative Recorder)   uninstall cmd: RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{E7337A45-3FE5-4392-ABBB-26B794D060C9}\setup.exe" -l0x40c  /remove  (Creative Restore Defaults)   uninstall cmd: RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{9A4D2983-4662-4387-BE3D-4CFC2FA9C100}\setup.exe" -l0x40c  /remove  (Creative Surround Mixer 2)   uninstall cmd: RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{58582977-44D2-44A0-A09B-031CC2AE5938}\setup.exe" -l0x40c  /remove  (Creative WaveStudio)   uninstall cmd: RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{435E969D-867E-4364-8E74-3DC8A69C5BDB}\setup.exe" -l0x40c  /remove  (Diagnostics2)   uninstall cmd: RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{A731533B-B325-4D9C-91A4-D93C8E294C19}\setup.exe" -l0x40c  /remove  (DirectAnimation)  (DirectDrawEx)Canon Utilities Easy-PhotoPrint  (Easy-PhotoPrint)   uninstall cmd: C:\Program Files\Canon\Easy-PhotoPrint\uninst.exe C:\Program Files\Canon\Easy-PhotoPrint\uninst.iniCanon Utilities Easy-PrintToolBox  (Easy-PrintToolBox)   uninstall cmd: C:\WINDOWS\BJPSUNST.EXEEasy-WebPrint  (Easy-WebPrint)   uninstall cmd: C:\WINDOWS\IsUn040c.exe -f"C:\Program Files\Canon\Easy-WebPrint\Uninst.isu"Encyclopédie Microsoft Encarta 99 99F (Encarta99F) version (major): 6install location: "C:\Program Files\Microsoft Référence\Encyclopédie Encarta"  install source: "D:"   uninstall cmd: RunDll32 C:\PROGRA~1\MICROS~4\ENCYCL~1\UNENC99.DLL,Uninstall  C:\PROGRA~1\MICROS~4\ENCYCL~1\SETUP99F\INST99F.LOG       publisher: Microsoft Corporationewido anti-malware  (ewidoantimalware)install location: C:\Documents and Settings\sabrina\Bureau\Nouveau dossier (2)\ewido anti-malware   uninstall cmd: C:\Documents and Settings\sabrina\Bureau\Nouveau dossier (2)\ewido anti-malware\Uninstall.exe       publisher: ewido networks       help link: http://www.ewido.net  (expinst)  (Fontcore)GeForce2 GTS Experience  (GeForce2 GTS Experience)   uninstall cmd: C:\WINDOWS\IsUninst.exe -f"C:\Program Files\NVidia Corporation\GeForce2 GTS Experience\Uninst.isu"HijackThis 1.99.1 1.99.1 (HijackThis)   uninstall cmd: C:\Documents and Settings\sabrina\Bureau\Nouveau dossier (2)\HijackThis.exe /uninstall       publisher: Soeperman Enterprises Ltd.  (ICW)  (IE40)  (IE4Data)  (IE5BAKEX)  (IEData)  (IEREADME)Internet Explorer Q867801  (ieupdate)   uninstall cmd: C:\WINDOWS\ieuninst.exe C:\WINDOWS\INF\Q867801.infJava 2 Runtime Environment Standard Edition v1.3.1_03  (JRE 1.3.1_03)   uninstall cmd: C:\WINDOWS\IsUninst.exe -f"C:\Program Files\JavaSoft\JRE\1.3.1_03\Uninst.isu"Kaspersky On-line Scanner 5.0.67.0 (Kaspersky On-line Scanner)  estimated size: 6040install location: C:\WINDOWS\System32\KASPER~1\KASPER~1   uninstall cmd: C:\WINDOWS\System32\KASPER~1\KASPER~1\kavuninstall.exe       publisher: Kaspersky Lab         contact: Customer Support Department       help link: http://www.kaspersky.com/support.aspCorrectif Windows XP - KB810217 20030806.141358 (KB810217)       publisher: Microsoft Corporation       help link: http://support.microsoft.com?kbid=810217Windows XP Hotfix - KB821557 20030611.135747 (KB821557)       publisher: Microsoft Corporation       help link: http://support.microsoft.com?kbid=821557Windows XP Hotfix - KB823182 20030724.164430 (KB823182)       publisher: Microsoft Corporation       help link: http://support.microsoft.com?kbid=823182Correctif Windows XP - KB823559 20030701.220507 (KB823559)       publisher: Microsoft Corporation       help link: http://support.microsoft.com?kbid=823559Windows XP Hotfix - KB824105 20030724.165306 (KB824105)       publisher: Microsoft Corporation       help link: http://support.microsoft.com?kbid=824105Correctif Windows XP - KB824141 20030926.114228 (KB824141)       publisher: Microsoft Corporation       help link: http://support.microsoft.com?kbid=824141Correctif Windows XP - KB825119 20030828.114011 (KB825119)       publisher: Microsoft Corporation       help link: http://support.microsoft.com?kbid=825119Correctif Windows XP - KB828035 20031021.154418 (KB828035)       publisher: Microsoft Corporation       help link: http://support.microsoft.com?kbid=828035Correctif Windows XP - KB828741 20040305.180728 (KB828741)       publisher: Microsoft Corporation       help link: http://support.microsoft.com?kbid=828741Correctif Windows XP - KB833987 20040308.175855 (KB833987)       publisher: Microsoft Corporation       help link: http://support.microsoft.com?kbid=833987Correctif Windows XP - KB835732 20040329.172648 (KB835732)       publisher: Microsoft Corporation       help link: http://support.microsoft.com?kbid=835732Correctif Windows XP - KB837001 20040419.122806 (KB837001)       publisher: Microsoft Corporation       help link: http://support.microsoft.com?kbid=837001Correctif Windows XP - KB839643 20040512.132756 (KB839643)       publisher: Microsoft Corporation       help link: http://support.microsoft.com?kbid=839643Correctif Windows XP - KB839645 20040630.120539 (KB839645)       publisher: Microsoft Corporation       help link: http://support.microsoft.com?kbid=839645Correctif Windows XP - KB840315 20040622.172632 (KB840315)       publisher: Microsoft Corporation       help link: http://support.microsoft.com?kbid=840315Correctif Windows XP - KB840374 20040416.121751 (KB840374)       publisher: Microsoft Corporation       help link: http://support.microsoft.com?kbid=840374Correctif Windows XP - KB841873 20040608.144331 (KB841873)       publisher: Microsoft Corporation       help link: http://support.microsoft.com?kbid=841873Correctif Windows XP - KB842773 20040701.144218 (KB842773)       publisher: Microsoft Corporation       help link: http://support.microsoft.com?kbid=842773Microsoft Data Access Components KB870669  (KB870669)   uninstall cmd: C:\WINDOWS\muninst.exe C:\WINDOWS\INF\KB870669.inf       publisher: Microsoft Corporation       help link: http://support.microsoft.com?kbid=KB870669Correctif Windows XP - KB883357 20040804.165131 (KB883357)   uninstall cmd: C:\WINDOWS\$NtUninstallKB883357$\spuninst\spuninst.exe       publisher: Microsoft Corporation       help link: http://support.microsoft.com?kbid=883357LiveUpdate 2.6 (Symantec Corporation) 2.6.14.0 (LiveUpdate)install location: C:\Program Files\Symantec\LiveUpdate   uninstall cmd: C:\Program Files\Symantec\LiveUpdate\LSETUP.EXE /U       publisher: Symantec CorporationLogiciel iTouch de Logitech  (Logitech iTouch)   uninstall cmd: C:\WINDOWS\IsUn040c.exe -fC:\PROGRA~1\LOGITECH\ITOUCH\Uninst.isu -c"C:\PROGRA~1\LOGITECH\ITOUCH\LUnInst.dll  (Logitech Key Commander)   uninstall cmd: C:\WINDOWS\IsUn040c.exe -fC:\PROGRA~1\LOGITECH\ITOUCH\Uninst.isu -c"C:\PROGRA~1\LOGITECH\ITOUCH\LUnInst.dllMacromedia Shockwave Player 10.1.0.11 (Macromedia Shockwave Player)   uninstall cmd: C:\WINDOWS\SYSTEM32\MACROMED\SHOCKW~3\UNWISE.EXE C:\WINDOWS\SYSTEM32\MACROMED\SHOCKW~3\INSTALL.LOG       publisher: Macromedia, Inc.       help link: http://www.macromedia.com/fr/support/shockwaveMathcad 2000 Professionnel  (Mathcad 2000 Professionnel)   uninstall cmd: C:\WINDOWS\IsUn040c.exe -f"C:\Program Files\MathSoft\Mathcad 2000 Professionnel\Uninst.isu"Mathcad Add-In for Excel  (Mathcad Add-In for Excel)   uninstall cmd: C:\WINDOWS\IsUninst.exe -f"C:\Program Files\MathSoft\Mathcad Add-In for Excel\Uninst.isu"Mathcad 2000 Treasury  (Mathcad2KTreasuryKey)   uninstall cmd: C:\WINDOWS\uninst.exe -f"C:\Program Files\MathSoft\Mathcad 2000 Professionnel\DeIsL2.isu"CD-LabelPrint  (MediaNavigation.CDLabelPrint)install location: C:\Program Files\Canon\CD-LabelPrint\   uninstall cmd: "C:\Program Files\Canon\CD-LabelPrint\Uninstal.exe" Canon.CDLabelPrint.ApplicationMediaRing Talk 99 Release 7.0.0014  (MediaRing Talk 99 Release 7.0.0014)   uninstall cmd: C:\WINDOWS\preuninst.exe  (Midi Samples)   uninstall cmd: C:\WINDOWS\IsUn040c.exe -f"C:\Program Files\Creative\Audio\Midi.isu"  (MobileOptionPack)Mozilla Firefox (1.5) 1.5 (fr) (Mozilla Firefox (1.5))install location: C:\Program Files\Mozilla Firefox   uninstall cmd: C:\WINDOWS\UninstallFirefox.exe /ua "1.5 (fr)"       publisher: Mozilla  (MsJavaVM)Barre d'outils MSN  (MSN Toolbar)   uninstall cmd: C:\Program Files\MSN Apps\MSN Toolbar\01.02.4000.1001\fr\mtbs.exe c  (MSTASK)  (NetMeeting)WinFast Windows 95/98/ME Display Drivers  (NVIDIA)   uninstall cmd: rundll32.exe C:\WINDOWS\SYSTEM32\NVINST32.DLL,NvUninstall9x nvagp.infOutlook Express Q823353  (oeupdate)   uninstall cmd: C:\WINDOWS\oeuninst.exe C:\WINDOWS\INF\Q823353.inf  (OutlookExpress)  (PCHealth)   uninstall cmd: rundll32.exe setupapi.dll,InstallHinfSection DefaultUninstall 132 C:\WINDOWS\INF\PCHealth.inf  (PhotoRecord)  (PlayCenter)   uninstall cmd: C:\WINDOWS\IsUn040c.exe -f"C:\Program Files\Creative\Audio\PlayCenter\Player.isu"PopUpCop 2.0.3.20 (PopUpCop)   uninstall cmd: C:\PROGRA~1\POPUPCOP\UNWISE.EXE /U C:\PROGRA~1\POPUPCOP\INSTALL.LOG       publisher: EdenSoft       help link: http://www.PopUpCop.com/help.htmlWindows XP Hotfix (SP1) [See Q309521 for more information]  (Q309521)Windows XP Hotfix (SP1) [See Q311889 for more information]  (Q311889)Windows XP Hotfix (SP1) [See Q311967 for more information]  (Q311967)Windows XP Hotfix (SP1) [See Q313450 for more information]  (Q313450)   uninstall cmd: C:\WINDOWS\$NtUninstallQ313450$\spuninst\spuninst.exeWindows XP Hotfix (SP1) [See Q314862 for more information]  (Q314862)Windows XP Hotfix (SP1) [See Q315000 for more information]  (Q315000)Windows XP Hotfix (SP1) [See Q315403 for more information]  (Q315403)Windows XP Hotfix (SP1) [See Q317277 for more information]  (Q317277)Windows XP Hotfix (SP1) [See Q318138 for more information]  (Q318138)Windows XP Application Compatibility Update[Q319580]  (Q319580)Windows XP Hotfix (SP1) [See Q323172 for more information]  (Q323172)Windows XP Hotfix (SP1) [See Q324096 for more information]  (Q324096)Windows XP Hotfix (SP1) [See Q324380 for more information]  (Q324380)Windows XP Hotfix (SP1) [See Q326830 for more information]  (Q326830)Windows XP Hotfix (SP1) [See Q328940 for more information]  (Q328940)Windows XP Hotfix (SP1) [See Q329048 for more information]  (Q329048)Package du correctif Windows XP [voir Q329115 pour plus de détails]  (Q329115)Windows XP Hotfix (SP1) Q329170 20030102.115458 (Q329170)   uninstall cmd: C:\WINDOWS\$NtUninstallQ329170$\spuninst\spuninst.exe       publisher: Microsoft Corporation       help link: Pour plus d'informations, consultez Q329170 à l'adresse http://support.microsoft.comWindows XP Hotfix (SP1) [See Q329390 for more information]  (Q329390)Windows XP Hotfix (SP1) [See Q329441 for more information]  (Q329441)       publisher: Microsoft CorporationWindows XP Hotfix (SP1) [See Q329834 for more information]  (Q329834)Windows XP Hotfix (SP1) Q810577 20021118.133626 (Q810577)       publisher: Microsoft Corporation       help link: Pour plus d'informations, consultez Q810577 à l'adresse http://support.microsoft.comWindows XP Hotfix (SP1) Q811493 20030422.110254 (Q811493)       publisher: Microsoft Corporation       help link: http://support.microsoft.com?kbid=811493Windows XP Hotfix (SP1) Q815021 20030502.110434 (Q815021)       publisher: Microsoft Corporation       help link: http://support.microsoft.com?kbid=815021Windows XP Hotfix (SP1) Q817606 20030331.103325 (Q817606)       publisher: Microsoft Corporation       help link: http://support.microsoft.com?kbid=817606Windows XP Hotfix (SP1) Q819696 20030513.122826 (Q819696)       publisher: Microsoft Corporation       help link: http://support.microsoft.com?kbid=819696Correctif pour le Lecteur Windows Media [Voir Q828026 pour plus d'informations]  (Q828026)       publisher: Microsoft Corporation       help link: http://support.microsoft.com?kbid=828026QuickTime  (QuickTime)   uninstall cmd: C:\WINDOWS\unvise32qt.exe C:\WINDOWS\SYSTEM32\QuickTime\Uninstall.logQuickTime for Windows (32-bit)  (QuickTime32)   uninstall cmd: C:\WINDOWS\QTW32DEL.EXE  (SchedulingAgent)  (Sevinst)  (Shockwave)  (ShockwaveFlash)Solving and Optimization Extension Pack  (SOEPKey)   uninstall cmd: C:\WINDOWS\uninst.exe -f"C:\Program Files\MathSoft\Mathcad 2000 Professionnel\DeIsL1.isu"Sound Blaster AudioPCI  (Sound Blaster AudioPCI)   uninstall cmd: C:\Program Files\Creative\Uninstall\CTUNINST.EXE /U:UNINST1.INI  (Sound Blaster Live!)  (Sound Blaster Live! Pilotes Windows)   uninstall cmd: "C:\Program Files\Creative\SBLive\Program\Ctzapxx.EXE" /X /U /S /L:FRN3Deep  (tdp)   uninstall cmd: C:\WINDOWS\IsUninst.exe -f"C:\Program Files\E-Color\3Deep\TDPunins.isu" -c"C:\PROGRA~1\E-COLOR\3DEEP\TDPUNINS.DLL" ProdName3DeepUSB Monitor  (USB Monitor)   uninstall cmd: C:\WINDOWS\uninst.exe -f"C:\Program Files\USB Monitor\DeIsL1.isu"  -c"C:\Program Files\USB Monitor\_ISREG32.DLL"  (VGX)VIAhm  (VIAhm)   uninstall cmd: C:\WINDOWS\IsUninst.exe -fc:\VIAhm\Uninst.isuViewpoint Media Player (Remove Only)  (ViewpointMediaPlayer)   uninstall cmd: C:\Program Files\Viewpoint\Viewpoint Media Player\mtsAxInstaller.exe /uVirtual Pool 2  (VP2DeinstKey)   uninstall cmd: C:\WINDOWS\uninst.exe -f"C:\Program Files\VR Sports\VP2\DeIsL1.isu"Winamp (remove only)  (Winamp)   uninstall cmd: "C:\Program Files\Winamp\UninstWA.exe"Désinstallation de Windows XP  (Windows)install location: C:\undo   uninstall cmd: %SYSTEMROOT%\system32\osuninst.exeWinFox V1.0 Setup  (WinFox V1.0 Setup)   uninstall cmd: C:\WINDOWS\IsUn040c.exe -f"C:\Program Files\Leadtek Research Inc.\WinFox V1.0 Setup\Uninst.isu"Archiveur WinRAR  (WinRAR archiver)   uninstall cmd: C:\Program Files\WinRAR\uninstall.exeXingMPEG Player  (XingMPEG Player)   uninstall cmd: C:\PROGRA~1\XING\XINGMP~1\UNINST.EXE C:\PROGRA~1\XING\XINGMP~1\INSTALL.LOGZoneAlarm 6.1.737.000 (ZoneAlarm)   uninstall cmd: C:\karim\ZoneAlarm\ZoneAlarm\zauninst.exe       publisher: Zone Labs, Inc       help link: C:\karim\ZoneAlarm\ZoneAlarm\Aide\zaclients.chmMicrosoft Office 2000 Premium 9.00.2720 ({0000040C-78E1-11D2-B60F-006097C998E7})         version: 150997664 version (major): 9    install date: 24/01/01  install source: D:\   uninstall cmd: MsiExec.exe /I{0000040C-78E1-11D2-B60F-006097C998E7}       publisher: Microsoft Corporation       help link: http://www.microsoft.com/supportNorton WMI Update 2005.1.2.20 ({1526D87C-A955-4FAB-BF18-697BA457E352}) version (major): 2005 version (minor): 1  estimated size: 2168    install date: 20050129   uninstall cmd: MsiExec.exe /X{1526D87C-A955-4FAB-BF18-697BA457E352}       publisher: Symantec CorporationJ2SE Runtime Environment 5.0 Update 4 1.5.0.40 ({3248F0A8-6813-11D6-A77B-00B0D0150040})         version: 17104896 version (major): 1 version (minor): 5  estimated size: 121345    install date: 20050820  install source: http://jdl.sun.com/webapps/download/GetFile/1.5.0_04-b05/windows-i586//   uninstall cmd: MsiExec.exe /I{3248F0A8-6813-11D6-A77B-00B0D0150040}       publisher: Sun Microsystems, Inc.         contact: http://java.com       help link: http://java.com          readme: C:\Program Files\Java\jre1.5.0_04\README.txtJ2SE Runtime Environment 5.0 Update 6 1.5.0.60 ({3248F0A8-6813-11D6-A77B-00B0D0150060})         version: 17104896 version (major): 1 version (minor): 5  estimated size: 122337    install date: 20051226  install source: http://jdl.sun.com/webapps/download/GetFile/1.5.0_06-b05/windows-i586//   uninstall cmd: MsiExec.exe /I{3248F0A8-6813-11D6-A77B-00B0D0150060}       publisher: Sun Microsystems, Inc.         contact: http://java.com       help link: http://java.com          readme: C:\Program Files\Java\jre1.5.0_06\README.txtWebFldrs XP 9.50.5318 ({350C97B8-3D7C-4EE8-BAA9-00BCB3D54227})         version: 154277062 version (major): 9 version (minor): 50  estimated size: 2708    install date: 20030525  install source: C:\WINDOWS\System32\       publisher: Microsoft Corporation       help link: http://www.microsoft.com/windows  ({435E969D-867E-4364-8E74-3DC8A69C5BDB})   uninstall cmd: RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{435E969D-867E-4364-8E74-3DC8A69C5BDB}\setup.exe" -l0x40c   ({48E3A9E6-FA13-11D5-8CC9-00A0C98192B6})   uninstall cmd: RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{48E3A9E6-FA13-11D5-8CC9-00A0C98192B6}\setup.exe" -l0x40c DiskeeperWorkstation 7.0.403.2 ({5187D2C3-BCB9-4450-83B9-5E0BC4B4AB8D})         version: 117440915 version (major): 7  estimated size: 3709    install date: 20040415  install source: C:\Program Files\Executive Software\Diskeeper Setup\   uninstall cmd: MsiExec.exe /I{5187D2C3-BCB9-4450-83B9-5E0BC4B4AB8D}       publisher: Executive Software International, Inc.        comments: Copyright 2002 Executive Software International, Inc. Tous droits réservés.         contact: Support technique       help link: http://www.execsoft.com  help telephone: Téléphone - États-Unis -  818-771-1600            Europe - +011-44-1342-327477                Japon - +32984-3845894  ({58582977-44D2-44A0-A09B-031CC2AE5938})   uninstall cmd: RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{58582977-44D2-44A0-A09B-031CC2AE5938}\setup.exe" -l0x40c Dragon NaturallySpeaking 7.1 7.10.200.092 ({6675E71B-9843-4971-BC15-18AB52801134}) version (major): 7 version (minor): 10install location: C:\Program Files\ScanSoft\NaturallySpeaking  install source: D:\dragon\   uninstall cmd: C:\Program Files\InstallShield Installation Information\{6675E71B-9843-4971-BC15-18AB52801134}\setup.exe       publisher: ScanSoft       help link: http://www.ScanSoft.com/NaturallySpeaking/support/Symantec Network Drivers Update 5.4.4.17 ({7169B8E4-2632-46B1-AA5F-167CB5FE5029})         version: 84148228 version (major): 5 version (minor): 4  estimated size: 2890    install date: 20050209       publisher: Symantec CorporationMAX-FX Tools  ({7299E7F8-6921-4588-9A83-9BB7B867706F})   uninstall cmd: RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\ENGINE\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{7299E7F8-6921-4588-9A83-9BB7B867706F}\SETUP.EXE" Sound Blaster Live!  ({9115E7DB-3B29-445A-802D-11E0AA945B7F})   uninstall cmd: RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{9115E7DB-3B29-445A-802D-11E0AA945B7F}\SETUP.EXE" -l0x40c   ({9A4D2983-4662-4387-BE3D-4CFC2FA9C100})   uninstall cmd: RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{9A4D2983-4662-4387-BE3D-4CFC2FA9C100}\setup.exe" -l0x40c   ({A731533B-B325-4D9C-91A4-D93C8E294C19})   uninstall cmd: RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{A731533B-B325-4D9C-91A4-D93C8E294C19}\setup.exe" -l0x40c MSN Messenger 7.0 7.0.0777 ({ABEB838C-A1A7-4C5D-B7E1-8B4314600777})         version: 117441289 version (major): 7  estimated size: 25402    install date: 20050421   uninstall cmd: MsiExec.exe /I{ABEB838C-A1A7-4C5D-B7E1-8B4314600777}       publisher: Microsoft Corporation  ({AC157741-3285-4D6A-B934-9174587A3493})   uninstall cmd: RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{AC157741-3285-4D6A-B934-9174587A3493}\setup.exe" -l0x40c PC-Link VTech® (Masterpad®)  ({B991EED6-5106-11D5-8F02-0000E8A35E52})   uninstall cmd: RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\ENGINE\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{B991EED6-5106-11D5-8F02-0000E8A35E52}\SETUP.EXE" anythingNorton AntiVirus Corporate Edition 7.6.0.0000 ({BD12EB47-DBDF-11D3-BEEA-00A0CC272509})         version: 117833728 version (major): 7 version (minor): 6  estimated size: 75338    install date: 20020314  install source: D:\CD2\NAVCORP\ROLLOUT\AVSERVER\CLIENTS\WIN32\   uninstall cmd: MsiExec.exe /I{BD12EB47-DBDF-11D3-BEEA-00A0CC272509}       publisher: Symantec Corporation         contact:                    help link: http://www.symantec.com  help telephone:             Alcatel SpeedTouch USB Software  ({D41FAAA9-8048-4906-86B2-9AADEA1FA0B7})   uninstall cmd: RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\ENGINE\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{D41FAAA9-8048-4906-86B2-9AADEA1FA0B7}\SETUP.EXE"  -Control_PanelCanon PhotoRecord 02.02.00013 ({D958FAC4-BAE0-4B1D-A42E-DE9BFDE7DDEE})         version: 33685517 version (major): 2 version (minor): 2  estimated size: 97842    install date: 20050130  install source: D:\PREC2\   uninstall cmd: MsiExec.exe /X{D958FAC4-BAE0-4B1D-A42E-DE9BFDE7DDEE}       publisher: Cisra  ({E7337A45-3FE5-4392-ABBB-26B794D060C9})   uninstall cmd: RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{E7337A45-3FE5-4392-ABBB-26B794D060C9}\setup.exe" -l0x40c PCLink for GSM Ver.1.0  ({F3BF93D3-25E7-11D6-B496-0050BF282FBC})   uninstall cmd: RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\ENGINE\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{F3BF93D3-25E7-11D6-B496-0050BF282FBC}\SETUP.EXE" -l0x9   ({FD851F7E-F887-405D-9E1C-488811113EF3})   uninstall cmd: RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{FD851F7E-F887-405D-9E1C-488811113EF3}\setup.exe" -l0x40c --- System Services ---Service (registry key): Aavmker4  Display name: avast! Asynchronous Virus Monitor         Start: 1          Type: 1 Error Control: 1Service (registry key): Abiosdsk         Start: 4          Type: 1 Error Control: 0Service (registry key): abp480n5         Start: 4          Type: 1 Error Control: 1Service (registry key): ACPI  Display name: Pilote ACPI Microsoft    Image path: System32\DRIVERS\ACPI.sys    Image size: 180096     Image MD5: 34128BB2AB7BD69C72017BE7FCF8BE34         Start: 0          Type: 1 Error Control: 1Service (registry key): ACPIEC         Start: 4          Type: 1 Error Control: 1Service (registry key): adpu160m         Start: 4          Type: 1 Error Control: 1Service (registry key): aec  Display name: Suppresseur d'écho acoustique (Noyau Microsoft)    Image path: system32\drivers\aec.sys    Image size: 122472     Image MD5: B45A744CA0A15A59D8B0307CE9741E92         Start: 3          Type: 1 Error Control: 1Service (registry key): AFD  Display name: Environnement de prise en charge de réseau AFD    Image path: \SystemRoot\System32\drivers\afd.sys         Start: 2          Type: 1 Error Control: 1Service (registry key): Aha154x         Start: 4          Type: 1 Error Control: 1Service (registry key): aic78u2         Start: 4          Type: 1 Error Control: 1Service (registry key): aic78xx         Start: 4          Type: 1 Error Control: 1Service (registry key): alcan5wn  Display name: Alcatel SpeedTouch USB ADSL PPP Networking Driver (NDISWAN)    Image path: System32\DRIVERS\alcan5wn.sys    Image size: 53168     Image MD5: C7E217CD964D0067F18263429C87EC1B         Start: 3          Type: 1 Error Control: 1Service (registry key): alcaudsl  Display name: Alcatel Speed Touch ADSL Modem ATM Transport    Image path: System32\DRIVERS\alcaudsl.sys    Image size: 743136     Image MD5: 8080B5EA17A763BBCE6C92BBC6CEEFE8         Start: 3          Type: 1 Error Control: 1Service (registry key): Alerter  Display name: Avertissement   Description: Informe les utilisateurs et les ordinateurs sélectionnés des alertes administratives. Si ce service est arrêté, les programmes qui utilisent les alertes administratives ne les recevront pas. Si ce service est désactivé, les services qui en dépendent ne pourront pas démarrer.   Object name: NT AUTHORITY\LocalService    Image path: %SystemRoot%\System32\svchost.exe -k LocalService    Image size: 12800     Image MD5: 333A4DB8410D8E24DB06D6AEBECDC7C2         Start: 3          Type: 32 Error Control: 1 Depends On services: LanmanWorkstationService (registry key): ALG  Display name: Service de la passerelle de la couche Application   Description: Fournit la prise en charge des plugins de protocoles tiers pour le partage de connexion Internet et le pare-feu Internet.   Object name: NT AUTHORITY\LocalService    Image path: %SystemRoot%\System32\alg.exe    Image size: 40960     Image MD5: 55D226818B6C3D99741432D37657BA73         Start: 3          Type: 16 Error Control: 1Service (registry key): AliIde         Start: 4          Type: 1 Error Control: 1Service (registry key): amsint         Start: 4          Type: 1 Error Control: 1Service (registry key): AppMgmt  Display name: Gestion d'applications   Description: Fournit des services d'installation de logiciels tels que Attribuer, Publier et Supprimer.   Object name: LocalSystem    Image path: %SystemRoot%\system32\svchost.exe -k netsvcs    Image size: 12800     Image MD5: 333A4DB8410D8E24DB06D6AEBECDC7C2         Start: 3          Type: 32 Error Control: 1Service (registry key): asc         Start: 4          Type: 1 Error Control: 1Service (registry key): asc3350p         Start: 4          Type: 1 Error Control: 1Service (registry key): asc3550         Start: 4          Type: 1 Error Control: 1Service (registry key): aswMon2  Display name: avast! Standard Shield Support         Start: 2          Type: 2 Error Control: 1Service (registry key): aswRdr  Display name: aswRdr         Start: 3          Type: 1 Error Control: 1 Depends On services: tcpipService (registry key): aswTdi  Display name: avast! Network Shield Support         Start: 1          Type: 1 Error Control: 1 Depends On services: tcpipService (registry key): aswUpdSv  Display name: avast! iAVS4 Control Service   Description: Fournit la mise à jour automatique pour l'antivirus avast!.   Object name: LocalSystem    Image path: "C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe"    Image size: 53248     Image MD5: 435D862E96FE19612093177CF6618F4E         Start: 2          Type: 272 Error Control: 1Service (registry key): AsyncMac  Display name: Pilote de média asynchrone RAS   Description: Pilote de média asynchrone RAS    Image path: System32\DRIVERS\asyncmac.sys    Image size: 13568     Image MD5: 03F403B07A884FC2AA54A0916C410931         Start: 3          Type: 1 Error Control: 1Service (registry key): atapi  Display name: Contrôleur de disque dur IDE/ESDI standard    Image path: System32\DRIVERS\atapi.sys    Image size: 86656     Image MD5: A64013E98426E1877CB653685C5C0009         Start: 0          Type: 1 Error Control: 1Service (registry key): Atdisk         Start: 4          Type: 1 Error Control: 0Service (registry key): Atmarpc  Display name: Protocole client ATM ARP   Description: Protocole client ATM ARP    Image path: System32\DRIVERS\atmarpc.sys    Image size: 57216     Image MD5: 8D735CA1CBDB0081B0E3B9FF0EB222D0         Start: 3          Type: 1 Error Control: 1 Depends On services: TcpipService (registry key): AudioSrv  Display name: Audio Windows   Description: Gère les périphériques audio pour les programmes basés sur Windows. Si ce service est arrêté, les périphériques et les effets audio ne fonctionneront pas correctement. Si ce service est désactivé, les services en dépendant explicitement ne démarreront pas.   Object name: LocalSystem    Image path: %SystemRoot%\System32\svchost.exe -k netsvcs    Image size: 12800     Image MD5: 333A4DB8410D8E24DB06D6AEBECDC7C2         Start: 2          Type: 32 Error Control: 1 Depends On services: PlugPlay,RpcSsService (registry key): audstub  Display name: Pilote audio Stub    Image path: System32\DRIVERS\audstub.sys    Image size: 3072     Image MD5: D9F724AA26C010A217C97606B160ED68         Start: 3          Type: 1 Error Control: 1Service (registry key): avast! Antivirus  Display name: avast! Antivirus   Description: Gère et implémente les services de l'antivirus avast! pour cet ordinateur. Ceci inclut la protection résidente, la zone de quarantaine et le planificateur.   Object name: LocalSystem    Image path: "C:\Program Files\Alwil Software\Avast4\ashServ.exe"    Image size: 98352     Image MD5: C8C0AEE5D0585457FF6E318E8BB9289D         Start: 2          Type: 272 Error Control: 1 Depends On services: aswMon2,RpcSSService (registry key): avast! Mail Scanner  Display name: avast! Mail Scanner   Description: Implémente l'analyse du courrier électronique pour l'antivirus avast!.   Object name: LocalSystem    Image path: "C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe" /service    Image size: 241712     Image MD5: 8C50FFD2642FD97DAC0009280A438570         Start: 3          Type: 272 Error Control: 1 Depends On services: "avast! Antivirus"Service (registry key): avast! Web Scanner  Display name: avast! Web Scanner   Description: Implémente l'analyse du contenu web (HTTP) pour l'antivirus avast!.   Object name: LocalSystem    Image path: "C:\Program Files\Alwil Software\Avast4\ashWebSv.exe" /service    Image size: 360496     Image MD5: EB51923A762779247C776A551C546898         Start: 3          Type: 272 Error Control: 1 Depends On services: "avast! Antivirus"Service (registry key): BattC         Start: 0          Type: 0 Error Control: 0Service (registry key): Beep         Start: 1          Type: 1 Error Control: 1Service (registry key): BITS  Display name: Service de transfert intelligent en arrière-plan   Description: Utilise la bande passante réseau inactive pour transférer des données.   Object name: LocalSystem    Image path: %SystemRoot%\System32\svchost.exe -k netsvcs    Image size: 12800     Image MD5: 333A4DB8410D8E24DB06D6AEBECDC7C2         Start: 3          Type: 32 Error Control: 1 Depends On services: RpcssService (registry key): Browser  Display name: Explorateur d'ordinateur   Description: Tient à jour une liste des ordinateurs présents sur le réseau et fournit cette liste aux ordinateurs désignés comme navigateurs. Si ce service est arrêté, la liste ne sera pas mise ou tenue à jour. Si ce service est désactivé, les services qui en dépendent ne pourront pas démarrer.   Object name: LocalSystem    Image path: %SystemRoot%\System32\svchost.exe -k netsvcs    Image size: 12800     Image MD5: 333A4DB8410D8E24DB06D6AEBECDC7C2         Start: 3          Type: 32 Error Control: 1 Depends On services: LanmanWorkstation,LanmanServerService (registry key): cbidf2k         Start: 4          Type: 1 Error Control: 1Service (registry key): CCDECODE  Display name: Décodeur sous-titre fermé    Image path: System32\DRIVERS\CCDECODE.sys    Image size: 16256     Image MD5: 1108137A497C112126B3F1F0E8A021B6         Start: 3          Type: 1 Error Control: 1Service (registry key): cd20xrnt         Start: 4          Type: 1 Error Control: 1Service (registry key): Cdaudio         Start: 1          Type: 1 Error Control: 0Service (registry key): Cdfs         Start: 4          Type: 2 Error Control: 1 Depends On group: "SCSI CDROM Class"Service (registry key): Cdrom  Display name: Pilote de CD-ROM    Image path: System32\DRIVERS\cdrom.sys    Image size: 47488     Image MD5: CB762E814F602229A574F4D78D3D6A30         Start: 1          Type: 1 Error Control: 1 Depends On group: "SCSI miniport"Service (registry key): Changer         Start: 1          Type: 1 Error Control: 0Service (registry key): cisvc  Display name: Service d'indexation   Description: Construit un index des contenus et des propriétés des fichiers sur les ordinateurs locaux et distants ; fournit un accès rapide aux fichiers par le biais d'un langage d'interrogation flexible.   Object name: LocalSystem    Image path: C:\WINDOWS\System32\cisvc.exe    Image size: 5120     Image MD5: 7901AF03767C140467671C7CEEB2C3FE         Start: 3          Type: 32 Error Control: 1 Depends On services: RPCSSService (registry key): ClipSrv  Display name: Gestionnaire de l'Album   Description: Active le Gestionnaire de l'Album afin de stocker les informations et les partager avec des ordinateurs à distance. Si le service est arrêté, le Gestionnaire de l'Album ne pourra pas partager les informations avec des ordinateurs à distance. Si ce service est désactivé, tout service en dépendant explicitement ne démarrera pas.   Object name: LocalSystem    Image path: %SystemRoot%\system32\clipsrv.exe    Image size: 30720     Image MD5: 3D1AAB2963FABCAFEB507B5C9D67BFBC         Start: 3          Type: 16 Error Control: 1 Depends On services: NetDDEService (registry key): CmdIde         Start: 4          Type: 1 Error Control: 1Service (registry key): COMSysApp  Display name: Application système COM+   Description: Gère la configuration et le suivi des composants de base COM+ (Component Object Model) . Si le service est arrêté, la plupart des composants de base COM+ ne fonctionneront pas correctement. Si ce service est désactivé, les services qui en dépendent de manière explicite ne pourront pas démarrer.   Object name: LocalSystem    Image path: C:\WINDOWS\System32\dllhost.exe /Processid:{02D4B3F1-FD88-11D1-960D-00805FC79235}    Image size: 4608     Image MD5: 17681E6109A67F3AEA66AD6AAE2434E6         Start: 3          Type: 16 Error Control: 1 Depends On services: rpcssService (registry key): ContentFilter         Start: 0          Type: 0 Error Control: 0Service (registry key): ContentIndex         Start: 0          Type: 0 Error Control: 0Service (registry key): Cpqarray         Start: 4          Type: 1 Error Control: 1Service (registry key): Cpqarray         Start: 4          Type: 1 Error Control: 1Service (registry key): CryptSvc  Display name: Services de cryptographie   Description: Fournit trois services de gestion : le service de base de données de catalogue, qui confirme la signature des fichiers Windows; le service de racine protégée, qui ajoute et supprime des certificats d'autorité de certification de racine approuvés et le service Clé, qui fournit une aide dans l'inscription de cet ordinateur pour les certificats. Si ce service est arrêté, ces services de gestion ne fonctionneront pas correctement. Si ce service est désactivé, tout service en dépendant explicitement ne démarrera pas.   Object name: LocalSystem    Image path: %SystemRoot%\system32\svchost.exe -k netsvcs    Image size: 12800     Image MD5: 333A4DB8410D8E24DB06D6AEBECDC7C2         Start: 2          Type: 32 Error Control: 1 Depends On services: RpcSsService (registry key): ctac32k  Display name: Creative AC3 Software Decoder    Image path: System32\drivers\ctac32k.sys    Image size: 127948     Image MD5: 4B6096745F72B4FD36514617E2EA5D37         Start: 3          Type: 1 Error Control: 1Service (registry key): ctaud2k  Display name: Creative Audio Driver (WDM)    Image path: system32\drivers\ctaud2k.sys    Image size: 837548     Image MD5: 3576EC792347ED15699F6D830E0F5437         Start: 3          Type: 1 Error Control: 1Service (registry key): ctljystk  Display name: Creative SBLive! Port de jeux    Image path: System32\DRIVERS\ctljystk.sys    Image size: 3712     Image MD5: 71007BD2E1E26927FE3E4EB00C0BEEDF         Start: 3          Type: 1 Error Control: 0Service (registry key): ctprxy2k  Display name: Creative Proxy Driver    Im

Utilisateur anonyme · Answer

SalutJe peux pas etre partout a la fois, lolTélécharge ceci Registry Search Tool http://www.billsway.com/vbspage/ décompresse le et tape ou colle XBTB07618et copie colle le résultat dans le bloc note et donne le nousA+

biggup · Answer

re régis ! alors j'ai fait ce que tu m'as demandé mais lorsque je tape et mets ok j'attends... puis ceci apparait"search completed in 64 seconds. no distances of "XBTB07618"found"

Utilisateur anonyme · Answer

Fais avecDyFuCA++

biggup · Answer

re régis, pareil "no instances do "DyFuCA" found"

Utilisateur anonyme · Answer

Télécharge aussi DLLcompare ici: http://www.downloads.subratam.org/DllCompare.exe lance le et clique sur "Run locate.com" Quand "completed the scan, click compare to continue" apparaît en bleu, clique sur le bouton COMPARE en bas à droite Une fois le scan terminé clique sur "make a log of what was found" Fait un copier coller du log sur le forum

biggup · Answer

salut régis, comment tu vas ?j'ai fait ce que tu m'as demandé mais le probleme c'est que ***lorsque je clik sur "run locate.com" j'entends un "bip" et un bloc note au fond d'écran noir apparait ??!! ***j'ai le meme probleme lorsque je tape msconfig dans executer il ya un bloc note au fond d'écran noir ou est marqué "pilote MS non installé..." dans le genre...***puis "completed the scan, click compare to continue" apparait dans la seconde et je clik dessus puis en ce moment ça scan...

biggup · Answer

re régis voici le log*    DLLCompare Log version(1.0.0.127)Files Found that Windows does not See or cannot Access*Not everything listed here means you are infected!________________________________________________C:\WINDOWS\SYSTEM32\lonar~1.dll   Wed  5 May 1999  22:22:00   A....        929 792   908,00 KC:\WINDOWS\SYSTEM32\l'¶ged~1.dll   Wed  5 May 1999  22:22:00   A....        245 760   240,00 KC:\WINDOWS\SYSTEM32\mystÔre.dll    Wed  5 May 1999  22:22:00   A....        491 520   480,00 KC:\WINDOWS\SYSTEM32\awvus.dll      Fri 23 Dec 2005  18:06:42   ..SH.         35 853    35,01 KC:\WINDOWS\SYSTEM32\awtrs.dll      Fri 23 Dec 2005  21:06:58   ..SH.         35 853    35,01 KC:\WINDOWS\SYSTEM32\xxywv.dll      Fri 23 Dec 2005  21:25:00   ..SH.         35 853    35,01 KC:\WINDOWS\SYSTEM32\yabcd.dll      Fri 23 Dec 2005  21:52:56   ..SH.         35 853    35,01 KC:\WINDOWS\SYSTEM32\hggef.dll      Fri 23 Dec 2005  22:03:12   ..SH.         35 853    35,01 KC:\WINDOWS\SYSTEM32\geefe.dll      Fri 23 Dec 2005  22:13:30   ..SH.         35 853    35,01 KC:\WINDOWS\SYSTEM32\pmklj.dll      Wed 30 Nov 2005  17:34:22   ..SH.         27 661    27,01 K________________________________________________1 370 items found:  1 370 files (7 H/S), 0 directories.Total of file sizes:  248 598 296 bytes    237,08 MAdministrator Account =  Vrai--------------------End log---------------------

biggup · Answer

re je viens de trouver un log qui s'appelle DLLC:\WINDOWS\SYSTEM32\   aucoeu~1.dll   Wed  5 May 1999  22:22:00   A....        208 896   204,00 K   lesani~1.dll   Wed  5 May 1999  22:22:00   A....        299 008   292,00 K   cp21_g~1.dll   Fri 15 May 1998   9:12:20   A....        285 184   278,50 K   cp21_g~2.dll   Fri 15 May 1998   9:12:24   A....         57 856    56,50 K   cp21_g~3.dll   Fri 15 May 1998   9:12:22   A....        285 184   278,50 K   cp21_g~4.dll   Fri 15 May 1998   9:12:24   A....         57 856    56,50 K   cp1d60~1.dll   Fri 15 May 1998   9:12:22   A....        167 936   164,00 K   cp7232~1.dll   Fri 15 May 1998   9:12:22   A....        167 936   164,00 K   shdocvw.dll    Tue 28 Aug 2001  12:00:00   A....      1 338 880     1,27 M   browseui.dll   Tue 28 Aug 2001  12:00:00   A....      1 020 928   997,00 K   shlwapi.dll    Tue 28 Aug 2001  12:00:00   .....        398 336   389,00 K   shdoclc.dll    Tue 28 Aug 2001  12:00:00   A....        571 904   558,50 K   lonar~1.dll   Wed  5 May 1999  22:22:00   A....        929 792   908,00 K   cpee3d~1.dll   Fri 15 May 1998   9:12:24   A....         13 312    13,00 K   wmv9vcm.dll    Mon 23 Jun 2003   2:44:36   A....      1 415 680     1,35 M   cpt12_~1.dll   Fri 15 May 1998   8:12:06   A....         17 408    17,00 K   cp21_j~1.dll   Fri 15 May 1998   9:01:58   A....        252 416   246,50 K   smmscrpt.dll   Mon 18 Oct 1999  17:45:00   A....         48 128    47,00 K   url.dll        Tue 28 Aug 2001  12:00:00   A....        111 104   108,50 K   cp21_v~1.dll   Fri 15 May 1998   8:28:56   A....        133 120   130,00 K   msvbvm60.dll   Tue 24 Feb 2004   3:42:40   A....      1 386 496     1,32 M   rob10_~1.dll   Fri 15 May 1998   8:24:02   A....          6 656     6,50 K   xerces~1.dll   Sat 30 Sep 2000  10:52:04   A....        638 976   624,00 K   cpt12_~2.dll   Fri 15 May 1998   8:12:24   A....         15 872    15,50 K   fondsm~1.dll   Wed  5 May 1999  22:22:00   A....        946 176   924,00 K   ccil_b~1.dll   Fri 15 May 1998   8:08:38   A....        113 664   111,00 K   bde3d_~1.dll   Wed 12 Sep 2001  10:40:40   .....        155 648   152,00 K   cp21_m~1.dll   Fri 15 May 1998   9:12:16   A....        226 304   221,00 K   cpt12_~3.dll   Fri 15 May 1998   8:12:20   A....         16 384    16,00 K   cp21_c~1.dll   Fri 15 May 1998   9:13:22   A....        260 096   254,00 K   urlmon.dll     Tue 28 Aug 2001  12:00:00   .....        454 144   443,50 K   pngfilt.dll    Tue 28 Aug 2001  12:00:00   A....         30 208    29,50 K   vbscript.dll   Tue 28 Aug 2001  12:00:00   A....        479 261   468,03 K   cm_dsh~1.dll   Wed 22 Apr 1998   8:04:24   A...R         80 896    79,00 K   mshtml.dll     Tue 28 Aug 2001  12:00:00   A....      2 793 984     2,66 M   iuengine.dll   Thu 26 May 2005   4:16:24   A....        198 424   193,77 K   inetcomm.dll   Tue 28 Aug 2001  14:00:00   A....        593 920   580,00 K   cp21_b~1.dll   Fri 22 May 1998  15:14:26   A....         26 624    26,00 K   rob10_~2.dll   Fri 15 May 1998   8:23:36   A....          7 680     7,50 K   cpt12_~4.dll   Fri 15 May 1998   8:12:28   A....         31 232    30,50 K   rob10_~3.dll   Fri 15 May 1998   8:23:50   A....         35 328    34,50 K   spmsg.dll      Fri 14 May 2004  23:12:10   .....          7 680     7,50 K   capicom.dll    Tue 14 Dec 2004  12:24:42   A....        466 944   456,00 K   iuctl.dll      Mon  9 Feb 2004  21:08:36   A....        115 480   112,77 K   cp21_a~1.dll   Fri 15 May 1998   9:18:44   A....         96 840    94,57 K   l'¶ged~1.dll   Wed  5 May 1999  22:22:00   A....        245 760   240,00 K   rob10_~4.dll   Fri 15 May 1998   8:23:46   A....         29 184    28,50 K   cm12_d~1.dll   Fri 15 May 1998   8:17:40   A....         56 320    55,00 K   ksuser.dll     Thu 23 Aug 2001  17:47:06   A....          4 096     4,00 K   cosmor~1.dll   Tue 12 May 1998  15:55:30   A....      1 224 192     1,16 M   ro9a7b~1.dll   Fri 15 May 1998   8:24:00   A....        104 448   102,00 K   cm12_c~1.dll   Fri 15 May 1998   8:17:00   A....        234 496   229,00 K   ccil_j~1.dll   Fri 15 May 1998   8:08:48   A....        111 104   108,50 K   cp21_l~1.dll   Tue  2 Jun 1998  11:43:56   A....         57 344    56,00 K   cp21_m~2.dll   Wed 20 May 1998  17:01:48   A....        781 824   763,50 K   icmfil~1.dll   Sat 12 Jan 2002  19:25:58   .....         57 344    56,00 K   msvcp70.dll    Sat  5 Jan 2002   5:40:20   A....        487 424   476,00 K   mfc70.dll      Sat  5 Jan 2002   6:48:16   A....        974 848   952,00 K   ccil_l~1.dll   Fri 15 May 1998   8:08:52   A....         42 496    41,50 K   mfc70u.dll     Sat  5 Jan 2002   6:36:38   A....        964 608   942,00 K   msvci70.dll    Sat  5 Jan 2002   5:38:38   A....         54 784    53,50 K   msxml2.dll     Tue 28 Aug 2001  12:00:00   A....        688 667   672,52 K   rmoc3260.dll   Sat 12 Jan 2002  19:24:42   A....        123 392   120,50 K   loc32vc0.dll   Mon 18 Sep 2000  18:12:40   .....         77 824    76,00 K   shdoc401.dll   Fri 30 Aug 2002   0:00:00   A....        492 816   481,27 K   s32evnt1.dll   Mon 20 Dec 2004  18:58:18   A....         83 664    81,70 K   msjt3032.dll   Wed  5 May 1999  22:22:00   A....        950 272   928,00 K   pndx5032.dll   Sat 12 Jan 2002  19:24:40   A....          5 632     5,50 K   decvw_32.dll   Wed  5 May 1999  22:22:00   A....         88 464    86,39 K   mfcuia32.dll   Wed  5 May 1999  22:22:00   A....         24 576    24,00 K   hcfcsa32.dll   Sun 13 Jun 1999  11:26:06   .....        142 848   139,50 K   pcdlib32.dll   Wed  9 Dec 1998   4:53:58   A....        212 480   207,50 K   awcodc32.dll   Wed  5 May 1999  22:22:00   A....         49 152    48,00 K   vdodec32.dll   Wed  5 May 1999  22:22:00   A....         94 208    92,00 K   awdenc32.dll   Wed  5 May 1999  22:22:00   A....         36 864    36,00 K   awdcxc32.dll   Wed  5 May 1999  22:22:00   A....         28 672    28,00 K   nvarch32.dll   Tue 12 Sep 2000  19:09:00   A....          6 144     6,00 K   inetwh32.dll   Tue 20 Oct 1998  16:05:42   A....         54 784    53,50 K   qtwmci32.dll   Mon 26 Aug 1996   2:12:00   A...R         64 512    63,00 K   nvdesk32.dll   Tue 12 Sep 2000  19:09:00   A....         90 112    88,00 K   mbslgn32.dll   Wed  5 May 1999  22:22:00   A....         45 056    44,00 K   mfcans32.dll   Wed  5 May 1999  22:22:00   A....        159 744   156,00 K   msimrt32.dll   Fri 11 Jul 1997  10:00:00   A....         22 016    21,50 K   nvinst32.dll   Tue 12 Sep 2000  19:09:00   A....         73 728    72,00 K   awview32.dll   Wed  5 May 1999  22:22:00   A....         36 864    36,00 K   mfcuiw32.dll   Wed  5 May 1999  22:22:00   A....         24 576    24,00 K   awresx32.dll   Wed  5 May 1999  22:22:00   A....         49 152    48,00 K   msvcr70.dll    Sat  5 Jan 2002   5:37:28   A....        344 064   336,00 K   hpzpom04.dll   Mon 18 Mar 2002  12:43:16   .....         48 640    47,50 K   atl70.dll      Sat  5 Jan 2002   4:18:20   A....         84 992    83,00 K   hpzr3205.dll   Mon 18 Mar 2002  11:50:06   A....      6 160 384     5,88 M   msrepl35.dll   Wed  5 May 1999  22:22:00   A....        430 080   420,00 K   msjter35.dll   Mon  2 Dec 1996  18:44:26   A....         24 336    23,77 K   msltus35.dll   Mon 18 Sep 2000  18:12:40   .....        169 984   166,00 K   msjint35.dll   Mon 13 Jan 1997  17:18:50   A....         37 136    36,27 K   msrd2x35.dll   Mon  2 Dec 1996  18:44:26   A....        251 664   245,77 K   mdt2fw95.dll   Wed  3 Mar 1999  21:05:12   A....         81 920    80,00 K   mfc42fra.dll   Mon 15 Mar 1999  13:52:52   A....         57 344    56,00 K   clrviddc.dll   Wed  5 May 1999  22:22:00   A....        217 088   212,00 K   msimusic.dll   Fri 11 Jul 1997  10:00:00   A....        120 320   117,50 K   shd401lc.dll   Fri 30 Aug 2002   0:00:00   A....         54 272    53,00 K   mfc30loc.dll   Wed  5 May 1999  22:22:00   A....         40 960    40,00 K   pstorerc.dll   Fri 30 Aug 2002   0:00:00   A....         45 840    44,77 K   bindfile.dll   Fri 30 Aug 2002   0:00:00   A....         15 872    15,50 K   divxc32f.dll   Sat  1 Apr 2000   5:35:44   A....        414 272   404,56 K   ccil_gif.dll   Fri 15 May 1998   8:08:42   A....         20 480    20,00 K   ccil_png.dll   Fri 15 May 1998   8:08:56   A....         69 632    68,00 K   ccil_sgi.dll   Fri 15 May 1998   8:09:00   A....         23 040    22,50 K   wmaudsdk.dll   Mon  9 Aug 1999  14:40:56   A....        163 600   159,77 K   rob10_gl.dll   Fri 15 May 1998   8:23:54   A....         48 640    47,50 K   nvopengl.dll   Tue 12 Sep 2000  19:09:00   A....      1 507 840     1,44 M   baseball.dll   Wed  5 May 1999  22:22:00   A....        913 408   892,00 K   indicdll.dll   Wed  5 May 1999  22:22:00   A....         24 576    24,00 K   dbmssocn.dll   Wed  5 May 1999  22:22:00   A....         28 944    28,27 K   cssms_in.dll   Mon 18 Sep 2000  18:12:40   .....         23 040    22,50 K   dbmsspxn.dll   Wed  5 May 1999  22:22:00   A....         33 040    32,27 K   msstkprp.dll   Sun  9 Aug 1998  20:07:34   A....         94 208    92,00 K   hcfreadr.dll   Wed 16 Jun 1999  20:07:46   .....        167 424   163,50 K   inloader.dll   Tue 15 Oct 1996   9:53:16   A....         78 848    77,00 K   clutil_s.dll   Mon 18 Sep 2000  18:12:40   .....         45 056    44,00 K   es.dll         Tue 28 Aug 2001  12:00:00   A....        224 768   219,50 K   msdtcprx.dll   Tue 28 Aug 2001  14:00:00   A....        360 960   352,50 K   ix509cls.dll   Mon 18 Sep 2000  18:12:40   .....        109 056   106,50 K   msrtedit.dll   Fri 22 Jan 1999  18:46:58   A....         65 536    64,00 K   msstdfmt.dll   Sun  9 Aug 1998  20:07:32   A....        118 784   116,00 K   vb6stkit.dll   Sat 15 Jul 2000   6:00:00   A....        101 888    99,50 K   dx3j.dll       Wed  5 May 1999  22:22:00   A....        327 680   320,00 K   setupwbv.dll   Fri 30 Aug 2002   0:00:00   A....         52 224    51,00 K   mscrlrev.dll   Thu  8 May 2003  12:33:32   .....          6 144     6,00 K   wuweb.dll      Thu 26 May 2005   4:19:32   A....        173 536   169,47 K   ntsdexts.dll   Tue 28 Aug 2001  12:00:00   A....         36 864    36,00 K   msimrt16.dll   Fri 11 Jul 1997  10:00:00   A....         10 544    10,30 K   msrdo20.dll    Thu 17 Sep 1998   5:20:50   A....        393 216   384,00 K   vbar332.dll    Fri  8 Nov 1996   2:48:12   A....        368 912   360,27 K   ir41_32.dll    Sat 27 Jan 2001  17:37:02   A....        744 960   727,50 K   mpg4c32.dll    Fri 13 Jul 2001  17:20:10   A....        412 160   402,50 K   exsec32.dll    Tue 16 Feb 1999  19:38:38   A....         38 912    38,00 K   divxc32.dll    Wed 24 Jan 2001   4:28:28   A....        412 160   402,50 K   qtole32.dll    Mon 26 Aug 1996   2:12:00   A...R         93 696    91,50 K   sintf32.dll    Thu 12 Apr 2001  17:03:44   A....         17 212    16,81 K   sx20p32.dll    Wed  8 Oct 1997  14:02:20   A....        177 664   173,50 K   sx73p32.dll    Mon  6 Oct 1997  11:05:42   A....         89 600    87,50 K   hndlr32.dll    Mon 26 Aug 1996   2:12:00   A...R         18 944    18,50 K   msjet35.dll    Wed  5 May 1999  22:22:00   A....      1 056 768     1,01 M   msxml3a.dll    Fri 30 Aug 2002   0:00:00   A....         28 160    27,50 K   fm20fra.dll    Mon 29 Mar 1999  11:11:04   A....         29 456    28,77 K   instrsa.dll    Fri 30 Aug 2002   0:00:00   A....        115 472   112,77 K   outlwab.dll    Thu  4 Feb 1999  23:09:58   A....         57 393    56,05 K   rapilib.dll    Wed  5 May 1999  22:22:00   A....         28 672    28,00 K   vfcodec.dll    Sat 22 Jul 2000  16:49:46   A....        431 104   421,00 K   wmicore.dll    Wed  5 May 1999  22:22:00   A....         57 344    56,00 K   mystÔre.dll    Wed  5 May 1999  22:22:00   A....        491 520   480,00 K   instsch.dll    Fri 30 Aug 2002   0:00:00   A....        138 512   135,27 K   wf2kcpl.dll    Mon 27 Nov 2000  10:11:28   A....        546 304   533,50 K   nvdmcpl.dll    Tue 12 Sep 2000  19:09:00   A....         57 344    56,00 K   modctrl.dll    Tue  3 Aug 1999  17:39:54   .....        136 704   133,50 K   lameacm.dll    Sun 21 Jan 2001   0:00:00   A....        151 552   148,00 K   sporder.dll    Sat 16 Feb 2002  17:12:34   A....          8 464     8,27 K   msprpfr.dll    Tue  6 Apr 1999  16:06:14   A....          7 680     7,50 K   cssm32s.dll    Mon 18 Sep 2000  18:12:40   .....        222 720   217,50 K   indsm_s.dll    Mon 18 Sep 2000  18:12:40   .....         62 976    61,50 K   voyages.dll    Wed  5 May 1999  22:22:00   A....         98 304    96,00 K   ela2res.dll    Fri 30 Mar 2001  10:34:26   A....        106 496   104,00 K   rdocurs.dll    Thu 17 Sep 1998   5:20:54   A....        151 552   148,00 K   sintfnt.dll    Thu 12 Apr 2001  17:03:44   A....         21 840    21,33 K   thumbvw.dll    Fri 30 Aug 2002   0:00:00   A....        202 000   197,27 K   cdm.dll        Thu 26 May 2005   4:16:24   A....         75 544    73,77 K   rpcrt4.dll     Tue 28 Aug 2001  12:00:00   A....        463 872   453,00 K   rpcss.dll      Tue 28 Aug 2001  12:00:00   A....        259 072   253,00 K   ntvdmd.dll     Tue 28 Aug 2001  12:00:00   A....         13 312    13,00 K   mfcd30.dll     Wed  5 May 1999  22:22:00   A....         73 728    72,00 K   mfcn30.dll     Wed  5 May 1999  22:22:00   A....         36 864    36,00 K   mfco30.dll     Wed  5 May 1999  22:22:00   A....        151 552   148,00 K   nvdd32.dll     Tue 12 Sep 2000  19:09:00   A....        733 184   716,00 K   qtim32.dll     Mon 26 Aug 1996   2:12:00   A...R        345 600   337,50 K   cmgr32.dll     Mon 26 Aug 1996   2:12:00   A...R         32 768    32,00 K   icfg95.dll     Wed  7 May 2003  18:30:50   .....         15 632    15,27 K   msxmla.dll     Fri 30 Aug 2002   0:00:00   A....         17 408    17,00 K   vmhelper.dll   Fri  7 Apr 2000   9:34:22   A....        286 992   280,27 K   amslib.dll     Mon 18 Sep 2000  18:12:40   .....         15 872    15,50 K   espace.dll     Wed  5 May 1999  22:22:00   A....        684 032   668,00 K   javart.dll     Fri  7 Apr 2000   9:34:16   A....        404 752   395,27 K   jungle.dll     Wed  5 May 1999  22:22:00   A....        724 992   708,00 K   nature.dll     Wed  5 May 1999  22:22:00   A....        299 008   292,00 K   rsasig.dll     Fri 30 Aug 2002   0:00:00   A....          4 368     4,27 K   enhsig.dll     Thu  8 May 2003  12:33:32   .....          4 368     4,27 K   itss.dll       Tue 28 Aug 2001  12:00:00   A....        138 048   134,81 K   ac3api.dll     Fri 19 Jul 2002   5:07:34   A....         53 248    52,00 K   nvqtwk.dll     Tue 12 Sep 2000  19:09:00   A....        122 880   120,00 K   progdl.dll     Wed  3 May 2000  17:23:12   A....         48 224    47,09 K   rtcrtp.dll     Wed 16 Oct 2002   4:28:08   A....        451 952   441,36 K   cbaxfr.dll     Mon 18 Sep 2000  18:12:40   .....         14 336    14,00 K   sqlstr.dll     Wed  5 May 1999  22:22:00   A....        119 056   116,27 K   sports.dll     Wed  5 May 1999  22:22:00   A....        204 800   200,00 K   msgsys.dll     Wed 26 Sep 2001  18:07:32   A....         20 992    20,50 K   msawt.dll      Fri  7 Apr 2000   9:34:18   A....        154 384   150,77 K   msimrt.dll     Fri 11 Jul 1997  10:00:00   A....         14 336    14,00 K   mfc30.dll      Wed  5 May 1999  22:22:00   A....        335 872   328,00 K   scp32.dll      Wed 25 Mar 1998   6:54:08   A....         15 872    15,50 K   vbame.dll      Thu 24 Dec 1998  21:23:22   A....         40 960    40,00 K   membg.dll      Wed  5 May 1999  22:22:00   A....        188 416   184,00 K   nvcpl.dll      Tue 12 Sep 2000  19:09:00   A....        942 080   920,00 K   3deep.dll      Tue 14 Sep 1999  17:32:46   A....         75 264    73,50 K   vb5fr.dll      Wed  5 May 1999  22:22:00   A....         96 256    94,00 K   vb6fr.dll      Wed  3 Mar 1999  12:50:38   A....        119 568   116,77 K   pncrt.dll      Wed 24 Jan 2001  20:30:24   A....        278 528   272,00 K   msjdbc10.dll   Fri  7 Apr 2000   9:34:22   A....         21 264    20,77 K   wing.dll       Thu  3 Oct 1996  14:45:00   A....         92 208    90,05 K   fm20.dll       Tue 12 Jan 1999  18:54:26   A....      1 109 264     1,05 M   dpwsockx.dll   Tue 28 Aug 2001  12:00:00   A....         50 176    49,00 K   javacypt.dll   Fri  7 Apr 2000   9:34:14   A....        187 152   182,77 K   qcut.dll       Wed  5 May 1999  22:22:00   A....        200 704   196,00 K   divx.dll       Wed 10 Dec 2003  15:36:10   A....        680 960   665,00 K   sp3.dll        Fri 25 Jun 1999  16:30:32   A....        202 240   197,50 K   cba.dll        Wed 26 Sep 2001  18:07:32   A....         13 824    13,50 K   stci.dll       Tue  1 Jan 1980   4:00:00   A...R          5 607     5,47 K   csl.dll        Mon 18 Sep 2000  18:12:40   .....         92 672    90,50 K   pds.dll        Wed 26 Sep 2001  18:07:32   A....         81 408    79,50 K   nts.dll        Wed 26 Sep 2001  18:07:32   A....         61 952    60,50 K   msxml3.dll     Tue 28 Aug 2001  12:00:00   A....      1 118 720     1,07 M   bootvid.dll    Tue 28 Aug 2001  12:00:00   A....         12 288    12,00 K   kdcom.dll      Tue 28 Aug 2001  12:00:00   A....          7 040     6,88 K   winhttp.dll    Thu  1 Jul 2004  23:08:14   A....        331 776   324,00 K   lsasrv.dll     Tue 28 Aug 2001  12:00:00   A....        676 352   660,50 K   advapi32.dll   Tue 28 Aug 2001  12:00:00   A....        617 984   603,50 K   comdlg32.dll   Tue 28 Aug 2001  12:00:00   A....        262 656   256,50 K   imagehlp.dll   Tue 28 Aug 2001  12:00:00   A....        126 976   124,00 K   kernel32.dll   Tue 28 Aug 2001  12:00:00   A....        991 744   968,50 K   lz32.dll       Tue 28 Aug 2001  12:00:00   A....          2 560     2,50 K   dxmasf.dll     Wed 24 Oct 2001  12:47:18   A....        500 496   488,77 K   oleaut32.dll   Tue 28 Aug 2001  12:00:00   A....        569 344   556,00 K   olecli32.dll   Tue 28 Aug 2001  12:00:00   A....         69 120    67,50 K   olecnv32.dll   Tue 28 Aug 2001  12:00:00   A....         34 304    33,50 K   olesvr32.dll   Tue 28 Aug 2001  12:00:00   A....         22 016    21,50 K   olethk32.dll   Tue 28 Aug 2001  12:00:00   A....         69 120    67,50 K   cryptui.dll    Tue 28 Aug 2001  12:00:00   A....        487 936   476,50 K   odbcbcp.dll    Tue 28 Aug 2001  12:00:00   A....         24 576    24,00 K   version.dll    Tue 28 Aug 2001  12:00:00   A....         16 384    16,00 K   msexch40.dll   Tue 28 Aug 2001  12:00:00   A....        512 074   500,07 K   wldap32.dll    Tue 28 Aug 2001  12:00:00   A....        168 448   164,50 K   sqlsrv32.dll   Tue 28 Aug 2001  12:00:00   A....        356 352   348,00 K   comctl32.dll   Tue 28 Aug 2001  12:00:00   A....        557 568   544,50 K   wmadmod.dll    Tue 28 Aug 2001  12:00:00   A....        184 320   180,00 K   mpr.dll        Tue 28 Aug 2001  12:00:00   A....         55 808    54,50 K   wow32.dll      Tue 28 Aug 2001  12:00:00   A....        248 832   243,00 K   hpzcoi05.dll   Mon 18 Mar 2002  13:52:42   A....        208 896   204,00 K   userenv.dll    Tue 28 Aug 2001  12:00:00   A....        669 696   654,00 K   csrsrv.dll     Tue 28 Aug 2001  12:00:00   A....         29 184    28,50 K   basesrv.dll    Tue 28 Aug 2001  12:00:00   A....         45 056    44,00 K   winsrv.dll     Tue 28 Aug 2001  12:00:00   A....        276 480   270,00 K   vga.dll        Tue 28 Aug 2001  12:00:00   A....          9 344     9,13 K   nddeapi.dll    Tue 28 Aug 2001  12:00:00   A....         15 872    15,50 K   secur32.dll    Tue 28 Aug 2001  12:00:00   A....         52 224    51,00 K   winsta.dll     Tue 28 Aug 2001  12:00:00   A....         47 104    46,00 K   profmap.dll    Tue 28 Aug 2001  12:00:00   A....         28 672    28,00 K   user32.dll     Tue 28 Aug 2001  12:00:00   A....        562 176   549,00 K   regapi.dll     Tue 28 Aug 2001  12:00:00   A....         44 032    43,00 K   ws2_32.dll     Tue 28 Aug 2001  12:00:00   A....         75 264    73,50 K   ws2help.dll    Tue 28 Aug 2001  12:00:00   A....         18 944    18,50 K   kbdus.dll      Tue 28 Aug 2001  12:00:00   A....          5 632     5,50 K   odbcint.dll    Tue 28 Aug 2001  12:00:00   A....         98 304    96,00 K   shsvcs.dll     Tue 28 Aug 2001  12:00:00   A....        115 200   112,50 K   setupapi.dll   Tue 28 Aug 2001  12:00:00   A....        942 592   920,50 K   sfc.dll        Tue 28 Aug 2001  12:00:00   A....          4 096     4,00 K   wintrust.dll   Tue 28 Aug 2001  12:00:00   A....        166 912   163,00 K   slayerxp.dll   Tue 28 Aug 2001  12:00:00   A....         22 528    22,00 K   apphelp.dll    Tue 28 Aug 2001  12:00:00   A....        104 448   102,00 K   scesrv.dll     Tue 28 Aug 2001  12:00:00   A....        310 784   303,50 K   umpnpmgr.dll   Tue 28 Aug 2001  12:00:00   A....        107 008   104,50 K   unrar.dll      Wed  8 May 1996  18:38:40   A....         40 960    40,00 K   cryptdll.dll   Tue 28 Aug 2001  12:00:00   A....         29 184    28,50 K   ncobjapi.dll   Tue 28 Aug 2001  12:00:00   A....         42 496    41,50 K   samsrv.dll     Tue 28 Aug 2001  12:00:00   A....        426 496   416,50 K   dnsapi.dll     Tue 28 Aug 2001  12:00:00   A....        139 264   136,00 K   samlib.dll     Tue 28 Aug 2001  12:00:00   A....         54 784    53,50 K   ntdsapi.dll    Tue 28 Aug 2001  12:00:00   A....         64 512    63,00 K   crypt32.dll    Tue 28 Aug 2001  12:00:00   A....        561 664   548,50 K   cabinet.dll    Tue 28 Aug 2001  12:00:00   A....         58 880    57,50 K   msprivs.dll    Tue 28 Aug 2001  12:00:00   A....         45 056    44,00 K   kerberos.dll   Tue 28 Aug 2001  12:00:00   A....        265 216   259,00 K   imm32.dll      Tue 28 Aug 2001  12:00:00   A....         96 768    94,50 K   winmm.dll      Tue 28 Aug 2001  12:00:00   A....        175 104   171,00 K   msv1_0.dll     Tue 28 Aug 2001  12:00:00   A....        108 032   105,50 K   netlogon.dll   Tue 28 Aug 2001  12:00:00   A....        397 824   388,50 K   wdigest.dll    Tue 28 Aug 2001  12:00:00   A....         46 592    45,50 K   rsaenh.dll     Tue 28 Aug 2001  12:00:00   A....        131 584   128,50 K   winscard.dll   Tue 28 Aug 2001  12:00:00   A....         94 208    92,00 K   eventlog.dll   Tue 28 Aug 2001  12:00:00   A....         47 616    46,50 K   netevent.dll   Tue 28 Aug 2001  12:00:00   A....        251 392   245,50 K   scecli.dll     Tue 28 Aug 2001  12:00:00   A....        180 224   176,00 K   mswsock.dll    Tue 28 Aug 2001  12:00:00   A....        230 912   225,50 K   wshtcpip.dll   Tue 28 Aug 2001  12:00:00   A....         17 408    17,00 K   iphlpapi.dll   Tue 28 Aug 2001  12:00:00   A....         78 336    76,50 K   dhcpcsvc.dll   Tue 28 Aug 2001  12:00:00   A....         99 328    97,00 K   winrnr.dll     Tue 28 Aug 2001  12:00:00   A....         14 848    14,50 K   rasadhlp.dll   Tue 28 Aug 2001  12:00:00   A....          6 144     6,00 K   rtutils.dll    Tue 28 Aug 2001  12:00:00   A....         39 936    39,00 K   uxtheme.dll    Tue 28 Aug 2001  12:00:00   A....        203 776   199,00 K   wtsapi32.dll   Tue 28 Aug 2001  12:00:00   A....         16 896    16,50 K   shell32.dll    Tue 28 Aug 2001  12:00:00   A....      8 379 392     7,99 M   dnsrslvr.dll   Tue 28 Aug 2001  12:00:00   A....         44 032    43,00 K   lmhsvc.dll     Tue 28 Aug 2001  12:00:00   A....         12 288    12,00 K   msidle.dll     Tue 28 Aug 2001  12:00:00   A....          5 120     5,00 K   ntmarta.dll    Tue 28 Aug 2001  12:00:00   A....        111 104   108,50 K   wuaueng.dll    Thu 26 May 2005   4:16:30   A....      1 343 768     1,28 M   msacm32.dll    Tue 28 Aug 2001  12:00:00   A....         67 072    65,50 K   audiosrv.dll   Tue 28 Aug 2001  12:00:00   A....         37 888    37,00 K   cfgmgr32.dll   Tue 28 Aug 2001  12:00:00   A....         16 896    16,50 K   symredir.dll   Fri 21 Jan 2005  22:31:52   A....        141 016   137,71 K   netmsg.dll     Tue 28 Aug 2001  12:00:00   A....        200 192   195,50 K   ipsecsvc.dll   Tue 28 Aug 2001  12:00:00   A....        154 112   150,50 K   faultrep.dll   Tue 28 Aug 2001  12:00:00   A....         62 464    61,00 K   oakley.dll     Tue 28 Aug 2001  12:00:00   A....        211 456   206,50 K   regsvc.dll     Tue 28 Aug 2001  12:00:00   A....         51 712    50,50 K   winipsec.dll   Tue 28 Aug 2001  12:00:00   A....         25 600    25,00 K   dmserver.dll   Tue 28 Aug 2001  12:00:00   A....         22 528    22,00 K   webclnt.dll    Tue 28 Aug 2001  12:00:00   A....         61 440    60,00 K   cryptsvc.dll   Tue 28 Aug 2001  12:00:00   A....         51 200    50,00 K   certcli.dll    Tue 28 Aug 2001  12:00:00   A....        189 952   185,50 K   atl.dll        Tue 28 Aug 2001  12:00:00   .....         74 802    73,05 K   esent.dll      Tue 28 Aug 2001  12:00:00   A....      1 034 240  1010,00 K   pstorsvc.dll   Tue 28 Aug 2001  12:00:00   A....         25 600    25,00 K   drprov.dll     Tue 28 Aug 2001  12:00:00   A....         11 776    11,50 K   psbase.dll     Tue 28 Aug 2001  12:00:00   A....         84 992    83,00 K   ntlanman.dll   Tue 28 Aug 2001  12:00:00   A....         38 400    37,50 K   netui0.dll     Tue 28 Aug 2001  12:00:00   A....         77 312    75,50 K   netui1.dll     Tue 28 Aug 2001  12:00:00   A....        230 400   225,00 K   w32time.dll    Tue 28 Aug 2001  12:00:00   A....        168 448   164,50 K   netrap.dll     Tue 28 Aug 2001  12:00:00   A....         10 752    10,50 K   msvcp60.dll    Tue 28 Aug 2001  12:00:00   A....        401 462   392,05 K   davclnt.dll    Tue 28 Aug 2001  12:00:00   A....         22 528    22,00 K   dssenh.dll     Tue 28 Aug 2001  12:00:00   A....        122 880   120,00 K   wsock32.dll    Tue 28 Aug 2001  12:00:00   .....         24 064    23,50 K   icmp.dll       Tue 28 Aug 2001  12:00:00   A....          3 072     3,00 K   mprapi.dll     Tue 28 Aug 2001  12:00:00   A....         79 360    77,50 K   activeds.dll   Tue 28 Aug 2001  12:00:00   A....        181 760   177,50 K   adsldpc.dll    Tue 28 Aug 2001  12:00:00   A....        139 264   136,00 K   trkwks.dll     Tue 28 Aug 2001  12:00:00   A....         80 384    78,50 K   seclogon.dll   Tue 28 Aug 2001  12:00:00   A....         20 992    20,50 K   srvsvc.dll     Tue 28 Aug 2001  12:00:00   A....         87 040    85,00 K   sens.dll       Tue 28 Aug 2001  12:00:00   A....         35 840    35,00 K   mspmspsv.dll   Tue 28 Aug 2001  12:00:00   A....         47 104    46,00 K   shfolder.dll   Tue 28 Aug 2001  12:00:00   A....         22 528    22,00 K   rasdlg.dll     Tue 28 Aug 2001  12:00:00   A....        657 920   642,50 K   rasman.dll     Tue 28 Aug 2001  12:00:00   A....         55 808    54,50 K   tapi32.dll     Tue 28 Aug 2001  12:00:00   A....        163 328   159,50 K   sensapi.dll    Tue 28 Aug 2001  12:00:00   A....          6 144     6,00 K   cscdll.dll     Tue 28 Aug 2001  12:00:00   A....         90 624    88,50 K   wlnotify.dll   Tue 28 Aug 2001  12:00:00   A....         87 552    85,50 K   cscui.dll      Tue 28 Aug 2001  12:00:00   A....        316 416   309,00 K   powrprof.dll   Tue 28 Aug 2001  12:00:00   A....         14 848    14,50 K   licdll.dll     Tue 28 Aug 2001  12:00:00   A....        309 760   302,50 K   dpcdll.dll     Thu 23 Aug 2001  14:00:00   A....        116 736   114,00 K   spoolss.dll    Tue 28 Aug 2001  12:00:00   A....         66 560    65,00 K   mstlsapi.dll   Tue 28 Aug 2001  12:00:00   A....        103 936   101,50 K   odbc32.dll     Tue 28 Aug 2001  12:00:00   A....        200 704   196,00 K   localspl.dll   Tue 28 Aug 2001  12:00:00   A....        295 424   288,50 K   odbccp32.dll   Tue 28 Aug 2001  12:00:00   A....         94 208    92,00 K   cnbjmon.dll    Tue 28 Aug 2001  12:00:00   A....         49 152    48,00 K   pjlmon.dll     Tue 28 Aug 2001  12:00:00   A....         12 800    12,50 K   tcpmon.dll     Tue 28 Aug 2001  12:00:00   A....         41 472    40,50 K   usbmon.dll     Tue 28 Aug 2001  12:00:00   A....         14 848    14,50 K   tsddd.dll      Tue 28 Aug 2001  12:00:00   A....          8 456     8,26 K   shmedia.dll    Tue 28 Aug 2001  12:00:00   A....        127 488   124,50 K   win32spl.dll   Tue 28 Aug 2001  12:00:00   A....         95 744    93,50 K   inetpp.dll     Tue 28 Aug 2001  12:00:00   A....         68 096    66,50 K   themeui.dll    Tue 28 Aug 2001  12:00:00   A....        389 120   380,00 K   msimg32.dll    Tue 28 Aug 2001  12:00:00   A....          4 608     4,50 K   msi.dll        Tue 28 Aug 2001  12:00:00   A....      2 044 928     1,95 M   authz.dll      Tue 28 Aug 2001  12:00:00   A....         51 200    50,00 K   aclui.dll      Tue 28 Aug 2001  12:00:00   A....        111 616   109,00 K   ulib.dll       Tue 28 Aug 2001  12:00:00   A....        305 152   298,00 K   clb.dll        Tue 28 Aug 2001  12:00:00   A....         11 264    11,00 K   actxprxy.dll   Tue 28 Aug 2001  12:00:00   A....         98 304    96,00 K   advpack.dll    Tue 28 Aug 2001  12:00:00   A....         93 184    91,00 K   linkinfo.dll   Tue 28 Aug 2001  12:00:00   A....         15 360    15,00 K   ntshrui.dll    Tue 28 Aug 2001  12:00:00   A....        139 264   136,00 K   wmasf.dll      Tue 28 Aug 2001  12:00:00   A....        274 432   268,00 K   avifil32.dll   Tue 28 Aug 2001  12:00:00   A....         76 800    75,00 K   msvfw32.dll    Tue 28 Aug 2001  12:00:00   A....        114 176   111,50 K   mindex.dll     Tue 28 Aug 2001  12:00:00   A....        163 840   160,00 K   msxml.dll      Tue 28 Aug 2001  12:00:00   A....        495 376   483,77 K   msxmlr.dll     Tue 28 Aug 2001  12:00:00   A....         30 720    30,00 K   msisam11.dll   Tue 28 Aug 2001  12:00:00   A....        368 710   360,07 K   msuni11.dll    Tue 28 Aug 2001  12:00:00   A....        241 725   236,06 K   msdart.dll     Tue 28 Aug 2001  12:00:00   A....        126 976   124,00 K   wmploc.dll     Tue 28 Aug 2001  12:00:00   A....      2 019 328     1,93 M   syssetup.dll   Tue 28 Aug 2001  12:00:00   A....        948 224   926,00 K   netman.dll     Tue 28 Aug 2001  12:00:00   A....        147 968   144,50 K   msimsg.dll     Tue 28 Aug 2001  12:00:00   A....        847 872   828,00 K   crtdll.dll     Tue 28 Aug 2001  12:00:00   A....        149 019   145,52 K   webcheck.dll   Tue 28 Aug 2001  12:00:00   A....        263 680   257,50 K   pstorec.dll    Tue 28 Aug 2001  12:00:00   A....         37 888    37,00 K   mobsync.dll    Tue 28 Aug 2001  12:00:00   A....        199 168   194,50 K   wmpshell.dll   Tue 28 Aug 2001  12:00:00   A....         77 824    76,00 K   initpki.dll    Tue 28 Aug 2001  12:00:00   A....        144 896   141,50 K   iedkcs32.dll   Tue 28 Aug 2001  12:00:00   A....        294 912   288,00 K   msident.dll    Tue 28 Aug 2001  12:00:00   A....         44 032    43,00 K   msidntld.dll   Tue 28 Aug 2001  12:00:00   A....         16 896    16,50 K   ntdll.dll      Tue 28 Aug 2001  12:00:00   A....        699 392   683,00 K   xpob2res.dll   Wed 30 Jun 2004  17:00:00   .....        185 344   181,00 K   wuaueng1.dll   Thu 26 May 2005   4:16:32   A....        195 352   190,77 K   pautoenr.dll   Tue 28 Aug 2001  12:00:00   A....         60 416    59,00 K   bitsprx3.dll   Fri  2 Jul 2004   0:08:14   .....          7 168     7,00 K   riched20.dll   Tue 28 Aug 2001  12:00:00   A....        426 496   416,50 K   cryptnet.dll   Tue 28 Aug 2001  12:00:00   A....         53 248    52,00 K   psapi.dll      Tue 28 Aug 2001  12:00:00   .....         17 408    17,00 K   loadperf.dll   Tue 28 Aug 2001  12:00:00   A....         94 720    92,50 K   wmi.dll        Tue 28 Aug 2001  12:00:00   A....          5 632     5,50 K   mprui.dll      Tue 28 Aug 2001  12:00:00   A....         47 616    46,50 K   netui2.dll     Tue 28 Aug 2001  12:00:00   A....        312 832   305,50 K   netshell.dll   Tue 28 Aug 2001  12:00:00   A....      1 634 816     1,56 M   rastls.dll     Tue 28 Aug 2001  12:00:00   A....         53 248    52,00 K   raschap.dll    Tue 28 Aug 2001  12:00:00   A....         34 304    33,50 K   hnetcfg.dll    Tue 28 Aug 2001  12:00:00   A....        243 712   238,00 K   stobject.dll   Tue 28 Aug 2001  12:00:00   A....        118 272   115,50 K   batmeter.dll   Tue 28 Aug 2001  12:00:00   A....         27 136    26,50 K   credui.dll     Tue 28 Aug 2001  12:00:00   A....        163 840   160,00 K   dfrgres.dll    Tue 28 Aug 2001  12:00:00   A....         55 808    54,50 K   vssapi.dll     Tue 28 Aug 2001  12:00:00   A....        409 088   399,50 K   wuv3is.dll     Tue 28 Aug 2001  12:00:00   A....        153 600   150,00 K   console.dll    Tue 28 Aug 2001  12:00:00   A....         67 072    65,50 K   dbghelp.dll    Tue 28 Aug 2001  12:00:00   A....        486 400   475,00 K   printui.dll    Tue 28 Aug 2001  12:00:00   A....        540 160   527,50 K   sclgntfy.dll   Tue 28 Aug 2001  12:00:00   A....         19 968    19,50 K   shgina.dll     Tue 28 Aug 2001  12:00:00   A....         62 464    61,00 K   browselc.dll   Tue 28 Aug 2001  12:00:00   A....         69 632    68,00 K   d3d8.dll       Tue 28 Aug 2001  12:00:00   A....      1 181 184     1,13 M   javaee.dll     Fri  7 Apr 2000   9:34:14   A....        139 536   136,27 K   mydocs.dll     Tue 28 Aug 2001  12:00:00   A....         89 088    87,00 K   duser.dll      Tue 28 Aug 2001  12:00:00   A....        261 120   255,00 K   6to4svc.dll    Tue 28 Aug 2001  12:00:00   A....         35 840    35,00 K   aaaamon.dll    Tue 28 Aug 2001  12:00:00   A....         26 624    26,00 K   acledit.dll    Tue 28 Aug 2001  12:00:00   A....        135 680   132,50 K   admparse.dll   Tue 28 Aug 2001  12:00:00   A....         57 344    56,00 K   adptif.dll     Tue 28 Aug 2001  12:00:00   A....         26 112    25,50 K   adsldp.dll     Tue 28 Aug 2001  12:00:00   A....        160 768   157,00 K   adsmsext.dll   Tue 28 Aug 2001  12:00:00   A....         62 464    61,00 K   adsnds.dll     Tue 28 Aug 2001  12:00:00   A....        163 328   159,50 K   adsnt.dll      Tue 28 Aug 2001  12:00:00   A....        239 616   234,00 K   adsnw.dll      Tue 28 Aug 2001  12:00:00   A....        109 568   107,00 K   alrsvc.dll     Tue 28 Aug 2001  12:00:00   A....         15 872    15,50 K   amstream.dll   Tue 28 Aug 2001  12:00:00   A....         63 488    62,00 K   apcups.dll     Tue 28 Aug 2001  12:00:00   A....        102 912   100,50 K   appmgmts.dll   Tue 28 Aug 2001  12:00:00   A....        164 352   160,50 K   appmgr.dll     Tue 28 Aug 2001  12:00:00   A....        284 160   277,50 K   asferror.dll   Tue 28 Aug 2001  12:00:00   A....          5 120     5,00 K   drmstor.dll    Tue 28 Aug 2001  12:00:00   A....         76 830    75,03 K   asycfilt.dll   Tue 28 Aug 2001  12:00:00   A....         77 824    76,00 K   atkctrs.dll    Tue 28 Aug 2001  12:00:00   A....         14 336    14,00 K   atmfd.dll      Tue 28 Aug 2001  12:00:00   A....        272 768   266,38 K   atmlib.dll     Tue 28 Aug 2001  12:00:00   A....         27 136    26,50 K   atmpvcno.dll   Tue 28 Aug 2001  12:00:00   A....         34 816    34,00 K   autodisc.dll   Tue 28 Aug 2001  12:00:00   A....         81 408    79,50 K   avicap.dll     Tue 28 Aug 2001  12:00:00   A....         70 352    68,70 K   avicap32.dll   Tue 28 Aug 2001  12:00:00   A....         66 048    64,50 K   avifile.dll    Tue 28 Aug 2001  12:00:00   A....        109 568   107,00 K   bidispl.dll    Tue 28 Aug 2001  12:00:00   A....         14 848    14,50 K   asfsipc.dll    Tue 28 Aug 2001  12:00:00   A....         14 366    14,03 K   browsewm.dll   Tue 28 Aug 2001  12:00:00   A....         71 680    70,00 K   cabview.dll    Tue 28 Aug 2001  12:00:00   A....         81 408    79,50 K   camocx.dll     Tue 28 Aug 2001  12:00:00   A....         45 056    44,00 K   capesnpn.dll   Tue 28 Aug 2001  12:00:00   A....        146 432   143,00 K   cards.dll      Tue 28 Aug 2001  12:00:00   A....        359 936   351,50 K   ccfgnt.dll     Tue 28 Aug 2001  12:00:00   A....         27 648    27,00 K   cdfview.dll    Tue 28 Aug 2001  12:00:00   A....        143 360   140,00 K   cdosys.dll     Tue 28 Aug 2001  12:00:00   A....      2 028 032     1,93 M   certmgr.dll    Tue 28 Aug 2001  12:00:00   A....        446 976   436,50 K   cewmdm.dll     Tue 28 Aug 2001  12:00:00   A....        179 712   175,50 K   ciadmin.dll    Tue 28 Aug 2001  12:00:00   A....        166 400   162,50 K   cic.dll        Tue 28 Aug 2001  12:00:00   A....        109 568   107,00 K   ciodm.dll      Tue 28 Aug 2001  12:00:00   A....         62 976    61,50 K   docprop.dll    Tue 28 Aug 2001  12:00:00   A....         47 616    46,50 K   shells~1.dll   Tue 28 Aug 2001  12:00:00   A....        435 712   425,50 K   cliconfg.dll   Tue 28 Aug 2001  12:00:00   A....        127 552   124,56 K   clusapi.dll    Tue 28 Aug 2001  12:00:00   A....         53 248    52,00 K   cmcfg32.dll    Tue 28 Aug 2001  12:00:00   A....         12 288    12,00 K   cmdial32.dll   Tue 28 Aug 2001  12:00:00   A....        324 096   316,50 K   cmpbk32.dll    Tue 28 Aug 2001  12:00:00   A....         14 336    14,00 K   cmutil.dll     Tue 28 Aug 2001  12:00:00   A....         37 888    37,00 K   cnetcfg.dll    Tue 28 Aug 2001  12:00:00   A....         32 768    32,00 K   cnvfat.dll     Tue 28 Aug 2001  12:00:00   A....         26 624    26,00 K   comcat.dll     Tue 28 Aug 2001  12:00:00   A....          3 584     3,50 K   commdlg.dll    Tue 28 Aug 2001  12:00:00   A....         33 904    33,11 K   docprop2.dll   Tue 28 Aug 2001  12:00:00   A....         45 568    44,50 K   compatui.dll   Tue 28 Aug 2001  12:00:00   A....        239 104   233,50 K   compobj.dll    Tue 28 Aug 2001  12:00:00   A....         30 160    29,45 K   compstui.dll   Tue 28 Aug 2001  12:00:00   A....        223 744   218,50 K   comres.dll     Tue 28 Aug 2001  12:00:00   A....        851 968   832,00 K   confmsp.dll    Tue 28 Aug 2001  12:00:00   A....        346 112   338,00 K   corpol.dll     Tue 28 Aug 2001  12:00:00   A....         14 877    14,53 K   cryptdlg.dll   Tue 28 Aug 2001  12:00:00   A....         71 168    69,50 K   cryptext.dll   Tue 28 Aug 2001  12:00:00   A....         49 664    48,50 K   csseqchk.dll   Tue 28 Aug 2001  12:00:00   A....         73 728    72,00 K   ctl3dv2.dll    Tue 28 Aug 2001  12:00:00   A...R         27 200    26,56 K   d3d8thk.dll    Tue 28 Aug 2001  12:00:00   A....          8 192     8,00 K   d3dim.dll      Tue 28 Aug 2001  12:00:00   A....        436 224   426,00 K   d3dim700.dll   Tue 28 Aug 2001  12:00:00   A....        791 040   772,50 K   d3dpmesh.dll   Tue 28 Aug 2001  12:00:00   A....         34 816    34,00 K   d3drm.dll      Tue 28 Aug 2001  12:00:00   A....        350 208   342,00 K   d3dxof.dll     Tue 28 Aug 2001  12:00:00   A....         47 616    46,50 K   danim.dll      Tue 28 Aug 2001  12:00:00   A....        988 672   965,50 K   dataclen.dll   Tue 28 Aug 2001  12:00:00   A....         52 736    51,50 K   datime.dll     Tue 28 Aug 2001  12:00:00   A....        152 064   148,50 K   dbgeng.dll     Tue 28 Aug 2001  12:00:00   A....        847 872   828,00 K   dbmsadsn.dll   Tue 28 Aug 2001  12:00:00   A....         20 480    20,00 K   dbmsrpcn.dll   Tue 28 Aug 2001  12:00:00   A....         24 576    24,00 K   dbnmpntw.dll   Tue 28 Aug 2001  12:00:00   A....         28 672    28,00 K   dciman32.dll   Tue 28 Aug 2001  12:00:00   A....          7 680     7,50 K   ddeml.dll      Tue 28 Aug 2001  12:00:00   A....         39 424    38,50 K   ddraw.dll      Tue 28 Aug 2001  12:00:00   A....        267 264   261,00 K   ddrawex.dll    Tue 28 Aug 2001  12:00:00   A....         24 064    23,50 K   deskadp.dll    Tue 28 Aug 2001  12:00:00   A....         16 896    16,50 K   deskmon.dll    Tue 28 Aug 2001  12:00:00   A....         16 896    16,50 K   deskperf.dll   Tue 28 Aug 2001  12:00:00   A....         18 944    18,50 K   devenum.dll    Tue 28 Aug 2001  12:00:00   A....         51 712    50,50 K   devmgr.dll     Tue 28 Aug 2001  12:00:00   A....        271 872   265,50 K   dfsshlex.dll   Tue 28 Aug 2001  12:00:00   A....         25 088    24,50 K   dfrgsnap.dll   Tue 28 Aug 2001  12:00:00   A....         42 496    41,50 K   dfrgui.dll     Tue 28 Aug 2001  12:00:00   A....        124 928   122,00 K   dgnet.dll      Tue 28 Aug 2001  12:00:00   A....        107 520   105,00 K   dhcpmon.dll    Tue 28 Aug 2001  12:00:00   A....        401 408   392,00 K   dhcpsapi.dll   Tue 28 Aug 2001  12:00:00   A....         78 848    77,00 K   diactfrm.dll   Tue 28 Aug 2001  12:00:00   A....        395 264   386,00 K   digest.dll     Tue 28 Aug 2001  12:00:00   A....         55 808    54,50 K   dimap.dll      Tue 28 Aug 2001  12:00:00   A....         44 032    43,00 K   dinput.dll     Tue 28 Aug 2001  12:00:00   A....        158 208   154,50 K   dinput8.dll    Tue 28 Aug 2001  12:00:00   A....        175 104   171,00 K   diskcopy.dll   Tue 28 Aug 2001  12:00:00   A....      1 502 208     1,43 M   dispex.dll     Tue 28 Aug 2001  12:00:00   A....         45 083    44,02 K   dmband.dll     Tue 28 Aug 2001  12:00:00   A....         26 112    25,50 K   dmcompos.dll   Tue 28 Aug 2001  12:00:00   A....         59 904    58,50 K   dmconfig.dll   Tue 28 Aug 2001  12:00:00   A....        330 752   323,00 K   dmdlgs.dll     Tue 28 Aug 2001  12:00:00   A....        273 920   267,50 K   dmdskmgr.dll   Tue 28 Aug 2001  12:00:00   A....        184 320   180,00 K   dmdskres.dll   Tue 28 Aug 2001  12:00:00   A....        134 656   131,50 K   dmime.dll      Tue 28 Aug 2001  12:00:00   A....        172 032   168,00 K   dmintf.dll     Tue 28 Aug 2001  12:00:00   A....         18 432    18,00 K   dmloader.dll   Tue 28 Aug 2001  12:00:00   A....         31 232    30,50 K   dmocx.dll      Tue 28 Aug 2001  12:00:00   A....         19 456    19,00 K   dmscript.dll   Tue 28 Aug 2001  12:00:00   A....         77 312    75,50 K   dmstyle.dll    Tue 28 Aug 2001  12:00:00   A....        110 080   107,50 K   dmsynth.dll    Tue 28 Aug 2001  12:00:00   A....         99 840    97,50 K   dmusic.dll     Tue 28 Aug 2001  12:00:00   A....         94 720    92,50 K   dmutil.dll     Tue 28 Aug 2001  12:00:00   A....         57 344    56,00 K   dplay.dll      Tue 28 Aug 2001  12:00:00   A....         33 040    32,27 K   bitsprx2.dll   Fri  2 Jul 2004   0:08:14   .....          7 680     7,50 K   dpmodemx.dll   Tue 28 Aug 2001  12:00:00   A....         21 504    21,00 K   dpnaddr.dll    Tue 28 Aug 2001  12:00:00   A....         26 112    25,50 K   dpnet.dll      Tue 28 Aug 2001  12:00:00   A....        156 672   153,00 K   dpnhpast.dll   Tue 28 Aug 2001  12:00:00   A....         30 208    29,50 K   dpnhupnp.dll   Tue 28 Aug 2001  12:00:00   A....         55 808    54,50 K   dpnlobby.dll   Tue 28 Aug 2001  12:00:00   A....         38 400    37,50 K   dpnmodem.dll   Tue 28 Aug 2001  12:00:00   A....         62 464    61,00 K   dpnwsock.dll   Tue 28 Aug 2001  12:00:00   A....         61 952    60,50 K   dpserial.dll   Tue 28 Aug 2001  12:00:00   A....         54 032    52,77 K   dpvacm.dll     Tue 28 Aug 2001  12:00:00   A....         24 064    23,50 K   dpvoice.dll    Tue 28 Aug 2001  12:00:00   A....        207 360   202,50 K   dpvvox.dll     Tue 28 Aug 2001  12:00:00   A....        113 152   110,50 K   dpwsock.dll    Tue 28 Aug 2001  12:00:00   A....         42 768    41,77 K   xenroll.dll    Tue 28 Aug 2001  12:00:00   A....        169 328   165,36 K   drmclien.dll   Tue 28 Aug 2001  12:00:00   A....        258 048   252,00 K   msdmo.dll      Tue 28 Aug 2001  12:00:00   A....         11 264    11,00 K   blackbox.dll   Tue 28 Aug 2001  12:00:00   A....        204 800   200,00 K   nwapi16.dll    Tue 28 Aug 2001  12:00:00   A....         17 408    17,00 K   ds16gt.dll     Tue 28 Aug 2001  12:00:00   A....          4 656     4,55 K   ds32gt.dll     Tue 28 Aug 2001  12:00:00   A....         16 384    16,00 K   dsauth.dll     Tue 28 Aug 2001  12:00:00   A....         62 976    61,50 K   dsdmo.dll      Tue 28 Aug 2001  12:00:00   A....        165 888   162,00 K   dsdmoprp.dll   Tue 28 Aug 2001  12:00:00   A....         67 072    65,50 K   dskquota.dll   Tue 28 Aug 2001  12:00:00   A....         86 016    84,00 K   dskquoui.dll   Tue 28 Aug 2001  12:00:00   A....        150 016   146,50 K   dsound.dll     Tue 28 Aug 2001  12:00:00   A....        338 944   331,00 K   dsound3d.dll   Tue 28 Aug 2001  12:00:00   A....      1 293 824     1,23 M   dsprop.dll     Tue 28 Aug 2001  12:00:00   A....        134 144   131,00 K   dsquery.dll    Tue 28 Aug 2001  12:00:00   A....        229 376   224,00 K   dssec.dll      Tue 28 Aug 2001  12:00:00   A....         48 640    47,50 K   dsuiext.dll    Tue 28 Aug 2001  12:00:00   A....        107 008   104,50 K   dswave.dll     Tue 28 Aug 2001  12:00:00   A....         16 896    16,50 K   dx7vb.dll      Tue 28 Aug 2001  12:00:00   A....        595 456   581,50 K   dx8vb.dll      Tue 28 Aug 2001  12:00:00   A....      1 185 792     1,13 M   dxmrtp.dll     Tue 28 Aug 2001  12:00:00   A....        802 816   784,00 K   dxtmsft.dll    Tue 28 Aug 2001  12:00:00   A....        337 920   330,00 K   dxtrans.dll    Tue 28 Aug 2001  12:00:00   A....        194 560   190,00 K   efsadu.dll     Tue 28 Aug 2001  12:00:00   A....         25 088    24,50 K   els.dll        Tue 28 Aug 2001  12:00:00   A....        177 664   173,50 K   ersvc.dll      Tue 28 Aug 2001  12:00:00   A....         17 408    17,00 K   esent97.dll    Tue 28 Aug 2001  12:00:00   A....      1 114 896     1,06 M   esentprf.dll   Tue 28 Aug 2001  12:00:00   A....         17 408    17,00 K   nwapi32.dll    Tue 28 Aug 2001  12:00:00   A....         58 880    57,50 K   eventcls.dll   Tue 28 Aug 2001  12:00:00   A....         33 280    32,50 K   nwcfg.dll      Tue 28 Aug 2001  12:00:00   A....         20 480    20,00 K   msexcl40.dll   Tue 28 Aug 2001  12:00:00   A....        319 562   312,07 K   exts.dll       Tue 28 Aug 2001  12:00:00   A....        121 856   119,00 K   fde.dll        Tue 28 Aug 2001  12:00:00   A....        119 296   116,50 K   fdeploy.dll    Tue 28 Aug 2001  12:00:00   A....         69 632    68,00 K   feclient.dll   Tue 28 Aug 2001  12:00:00   A....         18 432    18,00 K   filemgmt.dll   Tue 28 Aug 2001  12:00:00   A....        333 312   325,50 K   fldrclnr.dll   Tue 28 Aug 2001  12:00:00   A....         85 504    83,50 K   fmifs.dll      Tue 28 Aug 2001  12:00:00   A....         16 384    16,00 K   fontext.dll    Tue 28 Aug 2001  12:00:00   A....        365 056   356,50 K   fontsub.dll    Tue 28 Aug 2001  12:00:00   A....         79 360    77,50 K   framebuf.dll   Tue 28 Aug 2001  12:00:00   A....          8 832     8,63 K   fsusd.dll      Tue 28 Aug 2001  12:00:00   A....         81 920    80,00 K   ftsrch.dll     Tue 28 Aug 2001  12:00:00   A....        177 152   173,00 K   gcdef.dll      Tue 28 Aug 2001  12:00:00   A....         77 824    76,00 K   glmf32.dll     Tue 28 Aug 2001  12:00:00   A....        285 184   278,50 K   glu32.dll      Tue 28 Aug 2001  12:00:00   A....        117 760   115,00 K   gpedit.dll     Tue 28 Aug 2001  12:00:00   A....        499 200   487,50 K   gpkcsp.dll     Tue 28 Aug 2001  12:00:00   A....        101 888    99,50 K   gpkrsrc.dll    Tue 28 Aug 2001  12:00:00   A....         10 240    10,00 K   gptext.dll     Tue 28 Aug 2001  12:00:00   A....        181 248   177,00 K   srrstr.dll     Tue 28 Aug 2001  14:00:00   A....        220 672   215,50 K   wucltui.dll    Thu 26 May 2005   4:16:32   A....        128 792   125,77 K   schedsvc.dll   Tue 28 Aug 2001  14:00:00   A....        160 768   157,00 K   dplayx.dll     Tue 28 Aug 2001  12:00:00   A....        212 992   208,00 K   hid.dll        Tue 28 Aug 2001  12:00:00   A....         22 528    22,00 K   hlink.dll      Tue 28 Aug 2001  12:00:00   A....         77 850    76,02 K   hnetmon.dll    Tue 28 Aug 2001  12:00:00   A....         15 360    15,00 K   hnetwiz.dll    Tue 28 Aug 2001  12:00:00   A....        321 536   314,00 K   sfcfiles.dll   Tue 28 Aug 2001  12:00:00   A....      1 547 264     1,47 M   hotplug.dll    Tue 28 Aug 2001  12:00:00   A....        139 264   136,00 K   htui.dll       Tue 28 Aug 2001  12:00:00   A....         40 960    40,00 K   iasads.dll     Tue 28 Aug 2001  12:00:00   A....         41 472    40,50 K   iasacct.dll    Tue 28 Aug 2001  12:00:00   A....         23 552    23,00 K   iashlpr.dll    Tue 28 Aug 2001  12:00:00   A....         32 256    31,50 K   iasnap.dll     Tue 28 Aug 2001  12:00:00   A....         62 464    61,00 K   iaspolcy.dll   Tue 28 Aug 2001  12:00:00   A....         17 920    17,50 K   iasrad.dll     Tue 28 Aug 2001  12:00:00   A....        116 224   113,50 K   iasrecst.dll   Tue 28 Aug 2001  12:00:00   A....        141 312   138,00 K   iassam.dll     Tue 28 Aug 2001  12:00:00   A....         86 528    84,50 K   iassdo.dll     Tue 28 Aug 2001  12:00:00   A....        253 440   247,50 K   iassvcs.dll    Tue 28 Aug 2001  12:00:00   A....         62 976    61,50 K   iccvid.dll     Tue 28 Aug 2001  12:00:00   A....        110 592   108,00 K   icm32.dll      Tue 28 Aug 2001  12:00:00   A....        236 032   230,50 K   icmui.dll      Tue 28 Aug 2001  12:00:00   A....         56 320    55,00 K   idq.dll        Tue 28 Aug 2001  12:00:00   A....        111 616   109,00 K   ieakeng.dll    Tue 28 Aug 2001  12:00:00   A....        126 976   124,00 K   ieaksie.dll    Tue 28 Aug 2001  12:00:00   A....        208 896   204,00 K   ieakui.dll     Tue 28 Aug 2001  12:00:00   A....        245 760   240,00 K   iepeers.dll    Tue 28 Aug 2001  12:00:00   A....        230 400   225,00 K   iernonce.dll   Tue 28 Aug 2001  12:00:00   A....         23 552    23,00 K   iesetup.dll    Tue 28 Aug 2001  12:00:00   A....         60 416    59,00 K   ifmon.dll      Tue 28 Aug 2001  12:00:00   A....        133 120   130,00 K   ifsutil.dll    Tue 28 Aug 2001  12:00:00   A....         70 656    69,00 K   igmpagnt.dll   Tue 28 Aug 2001  12:00:00   A....          8 192     8,00 K   iissuba.dll    Tue 28 Aug 2001  12:00:00   A....          9 216     9,00 K   imeshare.dll   Tue 28 Aug 2001  12:00:00   A....         36 921    36,05 K   imgutil.dll    Tue 28 Aug 2001  12:00:00   A....         30 208    29,50 K   inetcplc.dll   Tue 28 Aug 2001  12:00:00   A....        121 856   119,00 K   inetmib1.dll   Tue 28 Aug 2001  12:00:00   A....         31 232    30,50 K   inetppui.dll   Tue 28 Aug 2001  12:00:00   A....         14 848    14,50 K   infosoft.dll   Tue 28 Aug 2001  12:00:00   A....        450 560   440,00 K   input.dll      Tue 28 Aug 2001  12:00:00   A....        107 520   105,00 K   inseng.dll     Tue 28 Aug 2001  12:00:00   A....         70 144    68,50 K   iologmsg.dll   Tue 28 Aug 2001  12:00:00   A....         39 936    39,00 K   ipmontr.dll    Tue 28 Aug 2001  12:00:00   A....        167 424   163,50 K   hhsetup.dll    Tue 28 Aug 2001  12:00:00   A....         67 612    66,03 K   ippromon.dll   Tue 28 Aug 2001  12:00:00   A....        344 576   336,50 K   iprop.dll      Tue 28 Aug 2001  12:00:00   A....          3 584     3,50 K   iprtprio.dll   Tue 28 Aug 2001  12:00:00   A....          4 096     4,00 K   iprtrmgr.dll   Tue 28 Aug 2001  12:00:00   A....        169 984   166,00 K   ipsecsnp.dll   Tue 28 Aug 2001  12:00:00   A....        344 576   336,50 K   ipsmsnap.dll   Tue 28 Aug 2001  12:00:00   A....        368 128   359,50 K   ipv6mon.dll    Tue 28 Aug 2001  12:00:00   A....        126 464   123,50 K   ipxmontr.dll   Tue 28 Aug 2001  12:00:00   A....         91 648    89,50 K   ipxpromn.dll   Tue 28 Aug 2001  12:00:00   A....         74 240    72,50 K   ipxrip.dll     Tue 28 Aug 2001  12:00:00   A....         21 504    21,00 K   ipxrtmgr.dll   Tue 28 Aug 2001  12:00:00   A....         39 936    39,00 K   ipxsap.dll     Tue 28 Aug 2001  12:00:00   A....         66 560    65,00 K   ipxwan.dll     Tue 28 Aug 2001  12:00:00   A....         20 992    20,50 K   ir32_32.dll    Tue 28 Aug 2001  12:00:00   A....        199 168   194,50 K   ssdpapi.dll    Tue 28 Aug 2001  12:00:00   A....         26 624    26,00 K   xactsrv.dll    Tue 28 Aug 2001  12:00:00   A....         85 504    83,50 K   ixsso.dll      Tue 28 Aug 2001  12:00:00   A....         49 664    48,50 K   jet500.dll     Tue 28 Aug 2001  12:00:00   A....        362 496   354,00 K   jgaw400.dll    Tue 28 Aug 2001  12:00:00   A....         44 544    43,50 K   jgdw400.dll    Tue 28 Aug 2001  12:00:00   A....        144 896   141,50 K   jgmd400.dll    Tue 28 Aug 2001  12:00:00   A....         35 840    35,00 K   jgpl400.dll    Tue 28 Aug 2001  12:00:00   A....         42 496    41,50 K   jgsd400.dll    Tue 28 Aug 2001  12:00:00   A....         45 568    44,50 K   jgsh400.dll    Tue 28 Aug 2001  12:00:00   A....         65 536    64,00 K   jobexec.dll    Tue 28 Aug 2001  12:00:00   A....         49 488    48,33 K   itircl.dll     Tue 28 Aug 2001  12:00:00   A....        155 552   151,91 K   jsproxy.dll    Tue 28 Aug 2001  12:00:00   A....         12 288    12,00 K   kbdbe.dll      Tue 28 Aug 2001  12:00:00   A....          6 144     6,00 K   kbdbene.dll    Tue 28 Aug 2001  12:00:00   A....          6 144     6,00 K   kbdbr.dll      Tue 28 Aug 2001  12:00:00   A....          6 144     6,00 K   kbdca.dll      Tue 28 Aug 2001  12:00:00   A....          6 144     6,00 K   kbdcan.dll     Tue 28 Aug 2001  12:00:00   A....          7 680     7,50 K   kbdda.dll      Tue 28 Aug 2001  12:00:00   A....          6 144     6,00 K   kbddv.dll      Tue 28 Aug 2001  12:00:00   A....          5 120     5,00 K   kbdes.dll      Tue 28 Aug 2001  12:00:00   A....          6 144     6,00 K   kbdfc.dll      Tue 28 Aug 2001  12:00:00   A....          6 144     6,00 K   kbdfi.dll      Tue 28 Aug 2001  12:00:00   A....          6 144     6,00 K   kbdfo.dll      Tue 28 Aug 2001  12:00:00   A....          6 144     6,00 K   kbdfr.dll      Tue 28 Aug 2001  12:00:00   A....          6 144     6,00 K   kbdgae.dll     Tue 28 Aug 2001  12:00:00   A....          5 632     5,50 K   kbdgr.dll      Tue 28 Aug 2001  12:00:00   A....          6 144     6,00 K   kbdgr1.dll     Tue 28 Aug 2001  12:00:00   A....          6 144     6,00 K   kbdic.dll      Tue 28 Aug 2001  12:00:00   A....          6 144     6,00 K   kbdir.dll      Tue 28 Aug 2001  12:00:00   A....          5 632     5,50 K   kbdit.dll      Tue 28 Aug 2001  12:00:00   A....          5 632     5,50 K   kbdit142.dll   Tue 28 Aug 2001  12:00:00   A....          5 632     5,50 K   kbdla.dll      Tue 28 Aug 2001  12:00:00   A....          6 656     6,50 K   kbdmac.dll     Tue 28 Aug 2001  12:00:00   A....          6 144     6,00 K   kbdne.dll      Tue 28 Aug 2001  12:00:00   A....          6 144     6,00 K   kbdnec.dll     Tue 28 Aug 2001  12:00:00   A....          7 168     7,00 K   kbdno.dll      Tue 28 Aug 2001  12:00:00   A....          6 144     6,00 K   kbdpo.dll      Tue 28 Aug 2001  12:00:00   A....          6 144     6,00 K   kbdsf.dll      Tue 28 Aug 2001  12:00:00   A....          6 144     6,00 K   kbdsg.dll      Tue 28 Aug 2001  12:00:00   A....          6 656     6,50 K   kbdsp.dll      Tue 28 Aug 2001  12:00:00   A....          6 144     6,00 K   kbdsw.dll      Tue 28 Aug 2001  12:00:00   A....          6 144     6,00 K   kbduk.dll      Tue 28 Aug 2001  12:00:00   A....          5 632     5,50 K   kbdusl.dll     Tue 28 Aug 2001  12:00:00   A....          6 144     6,00 K   kbdusr.dll     Tue 28 Aug 2001  12:00:00   A....          6 144     6,00 K   kbdusx.dll     Tue 28 Aug 2001  12:00:00   A....          6 144     6,00 K   kd1394.dll     Tue 28 Aug 2001  12:00:00   A....         44 160    43,13 K   msvcrt.dll     Tue 28 Aug 2001  12:00:00   .....        322 560   315,00 K   langwrbk.dll   Tue 28 Aug 2001  12:00:00   A....         89 600    87,50 K   licmgr10.dll   Tue 28 Aug 2001  12:00:00   A....         19 968    19,50 K   lmrt.dll       Tue 28 Aug 2001  12:00:00   A....        381 440   372,50 K   localsec.dll   Tue 28 Aug 2001  12:00:00   A....        209 408   204,50 K   localui.dll    Tue 28 Aug 2001  12:00:00   A....         10 240    10,00 K   laprxy.dll     Tue 28 Aug 2001  12:00:00   A....          6 656     6,50 K   loghours.dll   Tue 28 Aug 2001  12:00:00   A....         50 688    49,50 K   lpk.dll        Tue 28 Aug 2001  12:00:00   A....         18 944    18,50 K   lprhelp.dll    Tue 28 Aug 2001  12:00:00   A....          8 704     8,50 K   lprmonui.dll   Tue 28 Aug 2001  12:00:00   A....          9 216     9,00 K   keymgr.dll     Tue 28 Aug 2001  12:00:00   A....        153 088   149,50 K   lzexpand.dll   Tue 28 Aug 2001  12:00:00   A....          9 936     9,70 K   mag_hook.dll   Tue 28 Aug 2001  12:00:00   A....          8 192     8,00 K   mapistub.dll   Tue 28 Aug 2001  12:00:00   A....        112 128   109,50 K   mcastmib.dll   Tue 28 Aug 2001  12:00:00   A....         12 800    12,50 K   mcd32.dll      Tue 28 Aug 2001  12:00:00   A....         10 240    10,00 K   mcdsrv32.dll   Tue 28 Aug 2001  12:00:00   A....         10 496    10,25 K   mchgrcoi.dll   Tue 28 Aug 2001  12:00:00   A....          4 608     4,50 K   mciavi32.dll   Tue 28 Aug 2001  12:00:00   A....         81 408    79,50 K   mcicda.dll     Tue 28 Aug 2001  12:00:00   A....         17 408    17,00 K   mciole16.dll   Tue 28 Aug 2001  12:00:00   A....          8 192     8,00 K   mciole32.dll   Tue 28 Aug 2001  12:00:00   A....          7 680     7,50 K   mciqtz32.dll   Tue 28 Aug 2001  12:00:00   A....         33 280    32,50 K   mciseq.dll     Tue 28 Aug 2001  12:00:00   A....         20 992    20,50 K   mciwave.dll    Tue 28 Aug 2001  12:00:00   A....         22 016    21,50 K   mdhcp.dll      Tue 28 Aug 2001  12:00:00   A....         50 176    49,00 K   mdminst.dll    Tue 28 Aug 2001  12:00:00   A....        110 592   108,00 K   mdwmdmsp.dll   Tue 28 Aug 2001  12:00:00   A....        147 968   144,50 K   wups2.dll      Thu 26 May 2005   4:16:30   A....         18 200    17,77 K   mfc40.dll      Tue 28 Aug 2001  12:00:00   A....        924 432   902,77 K   mfc40u.dll     Tue 28 Aug 2001  12:00:00   A....        924 432   902,77 K   mfc42.dll      Tue 28 Aug 2001  12:00:00   .....        995 383   972,05 K   mfc42u.dll     Tue 28 Aug 2001  12:00:00   A....        995 384   972,05 K   mfcsubs.dll    Tue 28 Aug 2001  12:00:00   A....         20 992    20,50 K   mgmtapi.dll    Tue 28 Aug 2001  12:00:00   A....         12 800    12,50 K   midimap.dll    Tue 28 Aug 2001  12:00:00   A....         17 920    17,50 K   miglibnt.dll   Tue 28 Aug 2001  12:00:00   A....         56 320    55,00 K   mimefilt.dll   Tue 28 Aug 2001  12:00:00   A....         18 944    18,50 K   mlang.dll      Tue 28 Aug 2001  12:00:00   A....        577 024   563,50 K   mll_hp.dll     Tue 28 Aug 2001  12:00:00   A....          3 584     3,50 K   mll_mtf.dll    Tue 28 Aug 2001  12:00:00   A....          7 680     7,50 K   mll_qic.dll    Tue 28 Aug 2001  12:00:00   A....          5 632     5,50 K   mmcbase.dll    Tue 28 Aug 2001  12:00:00   A....         75 776    74,00 K   mmcndmgr.dll   Tue 28 Aug 2001  12:00:00   A....      1 141 248     1,09 M   mmcshext.dll   Tue 28 Aug 2001  12:00:00   A....         46 592    45,50 K   mmdrv.dll      Tue 28 Aug 2001  12:00:00   A....         12 288    12,00 K   mmsystem.dll   Tue 28 Aug 2001  12:00:00   A....         70 848    69,19 K   mmutilse.dll   Tue 28 Aug 2001  12:00:00   A....        119 808   117,00 K   modemui.dll    Tue 28 Aug 2001  12:00:00   A....        147 968   144,50 K   modex.dll      Tue 28 Aug 2001  12:00:00   A....         10 112     9,88 K   moricons.dll   Tue 28 Aug 2001  12:00:00   A....        185 344   181,00 K   mpg4dmod.dll   Tue 28 Aug 2001  12:00:00   A....        233 472   228,00 K   nwevent.dll    Tue 28 Aug 2001  12:00:00   A....          6 144     6,00 K   mprddm.dll     Tue 28 Aug 2001  12:00:00   A....         69 120    67,50 K   mprdim.dll     Tue 28 Aug 2001  12:00:00   A....         49 152    48,00 K   mprmsg.dll     Tue 28 Aug 2001  12:00:00   A....        114 688   112,00 K   mqad.dll       Tue 28 Aug 2001  12:00:00   A....        129 024   126,00 K   mqcertui.dll   Tue 28 Aug 2001  12:00:00   A....         10 752    10,50 K   mqdscli.dll    Tue 28 Aug 2001  12:00:00   A....         44 032    43,00 K   mqgentr.dll    Tue 28 Aug 2001  12:00:00   A....         60 928    59,50 K   mqise.dll      Tue 28 Aug 2001  12:00:00   A....         14 848    14,50 K   mqlogmgr.dll   Tue 28 Aug 2001  12:00:00   A....         55 808    54,50 K   mqoa.dll       Tue 28 Aug 2001  12:00:00   A....        214 016   209,00 K   mqperf.dll     Tue 28 Aug 2001  12:00:00   A....          8 192     8,00 K   mqqm.dll       Tue 28 Aug 2001  12:00:00   A....        605 696   591,50 K   mqrt.dll       Tue 28 Aug 2001  12:00:00   A....        164 864   161,00 K   mqrtdep.dll    Tue 28 Aug 2001  12:00:00   A....        115 200   112,50 K   mqsec.dll      Tue 28 Aug 2001  12:00:00   A....         88 576    86,50 K   mqsnap.dll     Tue 28 Aug 2001  12:00:00   A....        478 720   467,50 K   mqtrig.dll     Tue 28 Aug 2001  12:00:00   A....        164 352   160,50 K   mqupgrd.dll    Tue 28 Aug 2001  12:00:00   A....         44 544    43,50 K   mqutil.dll     Tue 28 Aug 2001  12:00:00   A....        523 264   511,00 K   msaatext.dll   Tue 28 Aug 2001  12:00:00   A....        102 912   100,50 K   msacm.dll      Tue 28 Aug 2001  12:00:00   A....         61 312    59,88 K   msafd.dll      Tue 28 Aug 2001  12:00:00   A....          3 584     3,50 K   msapsspc.dll   Tue 28 Aug 2001  12:00:00   A....         80 640    78,75 K   wmvcore.dll    Tue 28 Aug 2001  12:00:00   A....      1 216 512     1,16 M   msaudite.dll   Tue 28 Aug 2001  12:00:00   A....         77 312    75,50 K   mscat32.d

Utilisateur anonyme · Answer

reRend toi sur ce site :http://www.virustotal.com/xhtml/virustotal_en.html Clik sur parcourirRecherche ceci (1a1)C:\WINDOWS\SYSTEM32\xxywv.dll C:\WINDOWS\SYSTEM32\yabcd.dll C:\WINDOWS\SYSTEM32\hggef.dll C:\WINDOWS\SYSTEM32\geefe.dll C:\WINDOWS\SYSTEM32\pmklj.dllClik send et colle le rapport stpA+

biggup · Answer

This is a report processed by VirusTotal on 01/17/2006 at 18:26:25 (CET) after scanning the file "xxywv.dll" file.Antivirus	Version	Update	ResultAntiVir	6.33.0.77	01.17.2006	no virus foundAvast	4.6.695.0	01.17.2006	no virus foundAVG	718	01.17.2006	no virus foundAvira	6.33.0.77	01.17.2006	no virus foundBitDefender	7.2	01.17.2006	no virus foundCAT-QuickHeal	8.00	01.17.2006	no virus foundClamAV	devel-20051123	01.17.2006	no virus foundDrWeb	4.33	01.17.2006	no virus foundeTrust-InoculateIT	23.71.51	01.17.2006	no virus foundeTrust-Vet	12.4.2046	01.17.2006	Win32/Chisyne!genericEwido	3.5	01.17.2006	no virus foundFortinet	2.54.0.0	01.17.2006	suspiciousF-Prot	3.16c	01.16.2006	no virus foundIkarus	0.2.59.0	01.17.2006	no virus foundKaspersky	4.0.2.24	01.17.2006	not-a-virus:AdWare.Win32.Virtumonde.genMcAfee	4676	01.17.2006	Downloader-ASNNOD32v2	1.1368	01.16.2006	no virus foundNorman	5.70.10	01.17.2006	no virus foundPanda	9.0.0.4	01.17.2006	Trj/Vizopet.ASophos	4.01.0	01.17.2006	no virus foundSymantec	8.0	01.17.2006	no virus foundTheHacker	5.9.2.075	01.17.2006	no virus foundUNA	1.83	01.16.2006	no virus foundVBA32	3.10.5	01.17.2006	no virus foundVirusTotal is a free service offered by Hispasec Sistemas. There are no guarantees about the availability and continuity of this service. Although the detection rate afforded by the use of multiple antivirus engines is far superior to that offered by just one product, these results DO NOT guarantee the harmlessness of a file. Currently, there is not any solution that offers a 100% effectiveness rate for detecting viruses and malware.

biggup · Answer

This is a report processed by VirusTotal on 01/17/2006 at 18:31:19 (CET) after scanning the file "yabcd.dll" file.Antivirus	Version	Update	ResultAntiVir	6.33.0.77	01.17.2006	no virus foundAvast	4.6.695.0	01.17.2006	no virus foundAVG	718	01.17.2006	no virus foundAvira	6.33.0.77	01.17.2006	no virus foundBitDefender	7.2	01.17.2006	no virus foundCAT-QuickHeal	8.00	01.17.2006	no virus foundClamAV	devel-20051123	01.17.2006	no virus foundDrWeb	4.33	01.17.2006	no virus foundeTrust-InoculateIT	23.71.51	01.17.2006	no virus foundeTrust-Vet	12.4.2046	01.17.2006	Win32/Chisyne!genericEwido	3.5	01.17.2006	no virus foundFortinet	2.54.0.0	01.17.2006	suspiciousF-Prot	3.16c	01.16.2006	no virus foundIkarus	0.2.59.0	01.17.2006	no virus foundKaspersky	4.0.2.24	01.17.2006	not-a-virus:AdWare.Win32.Virtumonde.genMcAfee	4676	01.17.2006	Downloader-ASNNOD32v2	1.1368	01.16.2006	no virus foundNorman	5.70.10	01.17.2006	no virus foundPanda	9.0.0.4	01.17.2006	Trj/Vizopet.ASophos	4.01.0	01.17.2006	no virus foundSymantec	8.0	01.17.2006	no virus foundTheHacker	5.9.2.075	01.17.2006	no virus foundUNA	1.83	01.16.2006	no virus foundVBA32	3.10.5	01.17.2006	no virus foundVirusTotal is a free service offered by Hispasec Sistemas. There are no guarantees about the availability and continuity of this service. Although the detection rate afforded by the use of multiple antivirus engines is far superior to that offered by just one product, these results DO NOT guarantee the harmlessness of a file. Currently, there is not any solution that offers a 100% effectiveness rate for detecting viruses and malware.

Utilisateur anonyme · Answer

ok, infecté virtumonde, en voila un ;-)

biggup · Answer

This is a report processed by VirusTotal on 01/17/2006 at 18:32:47 (CET) after scanning the file "hggef.dll" file.Antivirus	Version	Update	ResultAntiVir	6.33.0.77	01.17.2006	no virus foundAvast	4.6.695.0	01.17.2006	no virus foundAVG	718	01.17.2006	no virus foundAvira	6.33.0.77	01.17.2006	no virus foundBitDefender	7.2	01.17.2006	no virus foundCAT-QuickHeal	8.00	01.17.2006	no virus foundClamAV	devel-20051123	01.17.2006	no virus foundDrWeb	4.33	01.17.2006	no virus foundeTrust-InoculateIT	23.71.51	01.17.2006	no virus foundeTrust-Vet	12.4.2046	01.17.2006	Win32/Chisyne!genericEwido	3.5	01.17.2006	no virus foundFortinet	2.54.0.0	01.17.2006	suspiciousF-Prot	3.16c	01.16.2006	no virus foundIkarus	0.2.59.0	01.17.2006	no virus foundKaspersky	4.0.2.24	01.17.2006	not-a-virus:AdWare.Win32.Virtumonde.genMcAfee	4676	01.17.2006	Downloader-ASNNOD32v2	1.1368	01.16.2006	no virus foundNorman	5.70.10	01.17.2006	no virus foundPanda	9.0.0.4	01.17.2006	Trj/Vizopet.ASophos	4.01.0	01.17.2006	no virus foundSymantec	8.0	01.17.2006	no virus foundTheHacker	5.9.2.075	01.17.2006	no virus foundUNA	1.83	01.16.2006	no virus foundVBA32	3.10.5	01.17.2006	no virus foundVirusTotal is a free service offered by Hispasec Sistemas. There are no guarantees about the availability and continuity of this service. Although the detection rate afforded by the use of multiple antivirus engines is far superior to that offered by just one product, these results DO NOT guarantee the harmlessness of a file. Currently, there is not any solution that offers a 100% effectiveness rate for detecting viruses and malware.

biggup · Answer

This is a report processed by VirusTotal on 01/17/2006 at 18:33:29 (CET) after scanning the file "geefe.dll" file.Antivirus	Version	Update	ResultAntiVir	6.33.0.77	01.17.2006	no virus foundAvast	4.6.695.0	01.17.2006	no virus foundAVG	718	01.17.2006	no virus foundAvira	6.33.0.77	01.17.2006	no virus foundBitDefender	7.2	01.17.2006	no virus foundCAT-QuickHeal	8.00	01.17.2006	no virus foundClamAV	devel-20051123	01.17.2006	no virus foundDrWeb	4.33	01.17.2006	no virus foundeTrust-InoculateIT	23.71.51	01.17.2006	no virus foundeTrust-Vet	12.4.2046	01.17.2006	Win32/Chisyne!genericEwido	3.5	01.17.2006	no virus foundFortinet	2.54.0.0	01.17.2006	suspiciousF-Prot	3.16c	01.16.2006	no virus foundIkarus	0.2.59.0	01.17.2006	no virus foundKaspersky	4.0.2.24	01.17.2006	not-a-virus:AdWare.Win32.Virtumonde.genMcAfee	4676	01.17.2006	Downloader-ASNNOD32v2	1.1368	01.16.2006	no virus foundNorman	5.70.10	01.17.2006	no virus foundPanda	9.0.0.4	01.17.2006	Trj/Vizopet.ASophos	4.01.0	01.17.2006	no virus foundSymantec	8.0	01.17.2006	no virus foundTheHacker	5.9.2.075	01.17.2006	no virus foundUNA	1.83	01.16.2006	no virus foundVBA32	3.10.5	01.17.2006	no virus foundVirusTotal is a free service offered by Hispasec Sistemas. There are no guarantees about the availability and continuity of this service. Although the detection rate afforded by the use of multiple antivirus engines is far superior to that offered by just one product, these results DO NOT guarantee the harmlessness of a file. Currently, there is not any solution that offers a 100% effectiveness rate for detecting viruses and malware.

biggup · Answer

This is a report processed by VirusTotal on 01/17/2006 at 18:37:52 (CET) after scanning the file "pmklj.dll" file.Antivirus	Version	Update	ResultAntiVir	6.33.0.77	01.17.2006	TR/Dldr.ConHook.Q.2Avast	4.6.695.0	01.17.2006	no virus foundAVG	718	01.17.2006	no virus foundAvira	6.33.0.77	01.17.2006	TR/Dldr.ConHook.Q.2BitDefender	7.2	01.17.2006	no virus foundCAT-QuickHeal	8.00	01.17.2006	no virus foundClamAV	devel-20051123	01.17.2006	no virus foundDrWeb	4.33	01.17.2006	no virus foundeTrust-InoculateIT	23.71.51	01.17.2006	no virus foundeTrust-Vet	12.4.2046	01.17.2006	Win32/Chisyne!genericEwido	3.5	01.17.2006	Downloader.ConHook.vFortinet	2.54.0.0	01.17.2006	suspiciousF-Prot	3.16c	01.16.2006	no virus foundIkarus	0.2.59.0	01.17.2006	no virus foundKaspersky	4.0.2.24	01.17.2006	not-a-virus:AdWare.Win32.Virtumonde.genMcAfee	4676	01.17.2006	potentially unwanted program Adware-VirtumundoNOD32v2	1.1368	01.16.2006	a variant of Win32/TrojanDownloader.ConHookNorman	5.70.10	01.17.2006	no virus foundPanda	9.0.0.4	01.17.2006	Suspicious fileSophos	4.01.0	01.17.2006	no virus foundSymantec	8.0	01.17.2006	no virus foundTheHacker	5.9.2.075	01.17.2006	no virus foundUNA	1.83	01.16.2006	no virus foundVBA32	3.10.5	01.17.2006	no virus foundVirusTotal is a free service offered by Hispasec Sistemas. There are no guarantees about the availability and continuity of this service. Although the detection rate afforded by the use of multiple antivirus engines is far superior to that offered by just one product, these results DO NOT guarantee the harmlessness of a file. Currently, there is not any solution that offers a 100% effectiveness rate for detecting viruses and malware.

Utilisateur anonyme · Answer

Ok,fais de meme avec celles ciC:\WINDOWS\SYSTEM32\lonar~1.dll C:\WINDOWS\SYSTEM32\l'¶ged~1.dll C:\WINDOWS\SYSTEM32\mystÔre.dll C:\WINDOWS\SYSTEM32\awvus.dllC:\WINDOWS\SYSTEM32\awtrs.dll

biggup · Answer

voila ce qui est marqué pour "leonar~1.dll et comment fait-on cela "¶" sur le clavier ??File size can't be more than 10 Megabytes.You can't try compressing it.Thanks you.<< Go back

biggup · Answer

pareil pour mystore

biggup · Answer

This is a report processed by VirusTotal on 01/17/2006 at 18:50:58 (CET) after scanning the file "awvus.dll" file.Antivirus	Version	Update	ResultAntiVir	6.33.0.77	01.17.2006	no virus foundAvast	4.6.695.0	01.17.2006	no virus foundAVG	718	01.17.2006	no virus foundAvira	6.33.0.77	01.17.2006	no virus foundBitDefender	7.2	01.17.2006	no virus foundCAT-QuickHeal	8.00	01.17.2006	no virus foundClamAV	devel-20051123	01.17.2006	no virus foundDrWeb	4.33	01.17.2006	no virus foundeTrust-InoculateIT	23.71.51	01.17.2006	no virus foundeTrust-Vet	12.4.2046	01.17.2006	Win32/Chisyne!genericEwido	3.5	01.17.2006	no virus foundFortinet	2.54.0.0	01.17.2006	suspiciousF-Prot	3.16c	01.16.2006	no virus foundIkarus	0.2.59.0	01.17.2006	no virus foundKaspersky	4.0.2.24	01.17.2006	not-a-virus:AdWare.Win32.Virtumonde.genMcAfee	4676	01.17.2006	Downloader-ASNNOD32v2	1.1368	01.16.2006	no virus foundNorman	5.70.10	01.17.2006	no virus foundPanda	9.0.0.4	01.17.2006	Trj/Vizopet.ASophos	4.01.0	01.17.2006	no virus foundSymantec	8.0	01.17.2006	no virus foundTheHacker	5.9.2.075	01.17.2006	no virus foundUNA	1.83	01.16.2006	no virus foundVBA32	3.10.5	01.17.2006	no virus foundVirusTotal is a free service offered by Hispasec Sistemas. There are no guarantees about the availability and continuity of this service. Although the detection rate afforded by the use of multiple antivirus engines is far superior to that offered by just one product, these results DO NOT guarantee the harmlessness of a file. Currently, there is not any solution that offers a 100% effectiveness rate for detecting viruses and malware.

biggup · Answer

This is a report processed by VirusTotal on 01/17/2006 at 18:50:27 (CET) after scanning the file "awtrs.dll" file.Antivirus	Version	Update	ResultAntiVir	6.33.0.77	01.17.2006	no virus foundAvast	4.6.695.0	01.17.2006	no virus foundAVG	718	01.17.2006	no virus foundAvira	6.33.0.77	01.17.2006	no virus foundBitDefender	7.2	01.17.2006	no virus foundCAT-QuickHeal	8.00	01.17.2006	no virus foundClamAV	devel-20051123	01.17.2006	no virus foundDrWeb	4.33	01.17.2006	no virus foundeTrust-InoculateIT	23.71.51	01.17.2006	no virus foundeTrust-Vet	12.4.2046	01.17.2006	Win32/Chisyne!genericEwido	3.5	01.17.2006	no virus foundFortinet	2.54.0.0	01.17.2006	suspiciousF-Prot	3.16c	01.16.2006	no virus foundIkarus	0.2.59.0	01.17.2006	no virus foundKaspersky	4.0.2.24	01.17.2006	not-a-virus:AdWare.Win32.Virtumonde.genMcAfee	4676	01.17.2006	Downloader-ASNNOD32v2	1.1368	01.16.2006	no virus foundNorman	5.70.10	01.17.2006	no virus foundPanda	9.0.0.4	01.17.2006	Trj/Vizopet.ASophos	4.01.0	01.17.2006	no virus foundSymantec	8.0	01.17.2006	no virus foundTheHacker	5.9.2.075	01.17.2006	no virus foundUNA	1.83	01.16.2006	no virus foundVBA32	3.10.5	01.17.2006	no virus foundVirusTotal is a free service offered by Hispasec Sistemas. There are no guarantees about the availability and continuity of this service. Although the detection rate afforded by the use of multiple antivirus engines is far superior to that offered by just one product, these results DO NOT guarantee the harmlessness of a file. Currently, there is not any solution that offers a 100% effectiveness rate for detecting viruses and malware.

Utilisateur anonyme · Answer

saluttelecharge ceciTélécharge: Pocket Killbox ici http://www.downloads.subratam.org/KillBox.exe :: Démo d utilisation (merci a Balltrap34 pour cette réalisation) ::http://pageperso.aol.fr/balltrap34/killbox.htm Avec la methode du bloc note (voir video), voici la listeC:\WINDOWS\SYSTEM32\awvus.dll C:\WINDOWS\SYSTEM32\awtrs.dll C:\WINDOWS\SYSTEM32\xxywv.dll C:\WINDOWS\SYSTEM32\yabcd.dll C:\WINDOWS\SYSTEM32\hggef.dll C:\WINDOWS\SYSTEM32\geefe.dll C:\WINDOWS\SYSTEM32\pmklj.dll Laisse le pc redemarrer et remet un dll comparea+

biggup · Answer

re régis pour la methode c'est ok mais lorsque je mets paste from clipboard il ya seulement le lien awvus.dll qui apparait alors que j'ai mis tout selectioner ! sinon est-ce que je peux faire directement copier-coller dans kill box ? merci

Utilisateur anonyme · Answer

Re,fais comme sur la video, et supprimeon verra si ca marche, si tu l as bien faitapres avoir redemarrer tu me remet un dll comparea+

biggup · Answer

re régis,

* DLLCompare Log version(1.0.0.127)
Files Found that Windows does not See or cannot Access
*Not everything listed here means you are infected!
________________________________________________

C:\WINDOWS\SYSTEM32\lonar~1.dll Wed 5 May 1999 22:22:00 A.... 929 792 908,00 K
C:\WINDOWS\SYSTEM32\l'¶ged~1.dll Wed 5 May 1999 22:22:00 A.... 245 760 240,00 K
C:\WINDOWS\SYSTEM32\mystÔre.dll Wed 5 May 1999 22:22:00 A.... 491 520 480,00 K
________________________________________________

1 363 items found: 1 363 files, 0 directories.
Total of file sizes: 248 355 517 bytes 236,85 M

Administrator Account = Vrai

--------------------End log---------------------

et pour mon probleme lorsque je tape msconfig ? merci en tout cas et excuse moi si je suis lourd...

biggup · Answer

re,j'ai toujours deux infections***deux de dyfuca***et deux de virtumonde c'est peut etre celle que dll compare a trouver ? qu'en penses-tu ?

Utilisateur anonyme · Answer

On avance...tout doucement.J espere que tu es bien en ma compagnie lolPeux tu faire un scan de spybot et me donner le rapporta+

biggup · Answer

* DLLCompare Log version(1.0.0.127)
Files Found that Windows does not See or cannot Access
*Not everything listed here means you are infected!
________________________________________________

C:\WINDOWS\SYSTEM32\lonar~1.dll Wed 5 May 1999 22:22:00 A.... 929 792 908,00 K
C:\WINDOWS\SYSTEM32\l'¶ged~1.dll Wed 5 May 1999 22:22:00 A.... 245 760 240,00 K
C:\WINDOWS\SYSTEM32\mystÔre.dll Wed 5 May 1999 22:22:00 A.... 491 520 480,00 K
________________________________________________

1 363 items found: 1 363 files, 0 directories.
Total of file sizes: 248 355 517 bytes 236,85 M

Administrator Account = Vrai

--------------------End log---------------------

Utilisateur anonyme · Answer

ok, spybot?

biggup · Answer

--- Search result list ---
MaxSearch: Root class (Clé du registre, fixing failed)
HKEY_LOCAL_MACHINE\Software\Classes\XBTB07618.XBTB07618

MaxSearch: Root class (Clé du registre, fixing failed)
HKEY_LOCAL_MACHINE\Software\Classes\ToolBand.XBTP07618

MaxSearch: Root class (Clé du registre, fixing failed)
HKEY_LOCAL_MACHINE\Software\Classes\XBTB07618.IEToolbar

DyFuCA: Root class (Clé du registre, fixing failed)
HKEY_LOCAL_MACHINE\Software\Classes\DyFuCA_BH.BHObj

VirtuMonde: Root class (Clé du registre, fixing failed)
HKEY_LOCAL_MACHINE\Software\Classes\MSEvents.MSEvents

DoubleClick: Cookie traceur (Firefox: default) (Cookie, fixed)

--- Spybot - Search & Destroy version: 1.4 (build: 20050523) ---

2005-12-27 unins000.exe (51.41.0.0)
2005-05-31 blindman.exe (1.0.0.1)
2005-05-31 SpybotSD.exe (1.4.0.3)
2005-05-31 TeaTimer.exe (1.4.0.2)
2005-05-31 Update.exe (1.4.0.0)
2005-05-31 advcheck.dll (1.0.2.0)
2005-05-31 aports.dll (2.1.0.0)
2005-05-31 borlndmm.dll (7.0.4.453)
2005-05-31 delphimm.dll (7.0.4.453)
2005-05-31 SDHelper.dll (1.4.0.0)
2005-05-31 Tools.dll (2.0.0.2)
2005-05-31 UnzDll.dll (1.73.1.1)
2005-05-31 ZipDll.dll (1.73.2.0)
2006-01-13 Includes\Cookies.sbi (*)
2006-01-13 Includes\Dialer.sbi (*)
2006-01-13 Includes\Hijackers.sbi (*)
2006-01-13 Includes\Keyloggers.sbi (*)
2006-01-13 Includes\Malware.sbi (*)
2006-01-13 Includes\Revision.sbi (*)
2006-01-13 Includes\Security.sbi (*)
2006-01-13 Includes\Spybots.sbi (*)
2006-01-13 Includes\Trojans.sbi (*)
2005-02-17 Includes\Tracks.uti
2006-01-13 Includes\PUPS.sbi (*)

--- System information ---
Windows XP (Build: 2600)
/ DataAccess: Microsoft Data Access Components KB870669
/ DataAccess: Patch Available For XMLHTTP Vulnerability
/ DataAccess: Patch Available For XMLHTTP Vulnerability
/ DataAccess: Security Update for Microsoft Data Access Components
/ Windows Media Player: Correctif pour le Lecteur Windows Media [Voir Q828026 pour plus d'informations]
/ Windows Media Player / SP0: Correctif pour le Lecteur Windows Media [Voir Q828026 pour plus d'informations]
/ Windows Media Player: Windows Media Update 320920
/ Windows XP / SP1: Windows XP Hotfix - KB821557
/ Windows XP / SP1: Windows XP Hotfix - KB823182
/ Windows XP / SP1: Windows XP Hotfix - KB824105
/ Windows XP / SP1: Correctif Windows XP - KB824141
/ Windows XP / SP1: Correctif Windows XP - KB828035
/ Windows XP / SP1 / Q309521: Windows XP Hotfix (SP1) [See Q309521 for more information]
/ Windows XP / SP1: Windows XP Hotfix (SP1) [See Q311889 for more information]
/ Windows XP / SP1: Windows XP Hotfix (SP1) [See Q311967 for more information]
/ Windows XP / SP1: Windows XP Hotfix (SP1) [See Q313450 for more information]
/ Windows XP / SP1: Windows XP Hotfix (SP1) [See Q314862 for more information]
/ Windows XP / SP1: Windows XP Hotfix (SP1) [See Q315000 for more information]
/ Windows XP / SP1: Windows XP Hotfix (SP1) [See Q315403 for more information]
/ Windows XP / SP1: Windows XP Hotfix (SP1) [See Q317277 for more information]
/ Windows XP / SP1: Windows XP Hotfix (SP1) [See Q324096 for more information]
/ Windows XP / SP1: Windows XP Hotfix (SP1) [See Q326830 for more information]
/ Windows XP / SP1: Windows XP Hotfix (SP1) [See Q328940 for more information]
/ Windows XP / SP1: Windows XP Hotfix (SP1) [See Q329048 for more information]
/ Windows XP / SP1: Windows XP Hotfix (SP1) Q329170
/ Windows XP / SP1: Windows XP Hotfix (SP1) [See Q329390 for more information]
/ Windows XP / SP1: Windows XP Hotfix (SP1) [See Q329441 for more information]
/ Windows XP / SP1: Windows XP Hotfix (SP1) [See Q329834 for more information]
/ Windows XP / SP1: Windows XP Hotfix (SP1) Q810577
/ Windows XP / SP1: Windows XP Hotfix (SP1) Q811493
/ Windows XP / SP1: Windows XP Hotfix (SP1) Q811630
/ Windows XP / SP1: Windows XP Hotfix (SP1) Q815021
/ Windows XP / SP1: Windows XP Hotfix (SP1) Q817606
/ Windows XP / SP1: Windows XP Hotfix (SP1) Q819696
/ Windows XP / SP2: Correctif Windows XP - KB810217
/ Windows XP / SP2: Correctif Windows XP - KB823559
/ Windows XP / SP2: Correctif Windows XP - KB825119
/ Windows XP / SP2: Correctif Windows XP - KB833987
/ Windows XP / SP2: Correctif Windows XP - KB839643
/ Windows XP / SP2: Correctif Windows XP - KB839645
/ Windows XP / SP2: Correctif Windows XP - KB840315
/ Windows XP / SP2: Correctif Windows XP - KB841873
/ Windows XP / SP2: Correctif Windows XP - KB842773
/ Windows XP / SP2: Correctif Windows XP - KB883357
/ Windows XP / SP2: Package du correctif Windows XP [voir Q323255 pour plus de détails]

--- Startup entries list ---
Located: HK_LM:Run, avast!
command: C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
file: C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
size: 98352
MD5: 0a9883be214c4f7a65b6dff129f37b6e

Located: HK_LM:Run, Openwares LiveUpdate
command: C:\Program Files\LiveUpdate\LiveUpdate.exe
file: C:\Program Files\LiveUpdate\LiveUpdate.exe
size: 61440
MD5: 93cf2b93f02e52cd6fffa567249f3f73

Located: HK_LM:Run, SunJavaUpdateSched
command: C:\Program Files\Java\jre1.5.0_06\bin\jusched.exe
file: C:\Program Files\Java\jre1.5.0_06\bin\jusched.exe
size: 36975
MD5: 61a3a9d5d98bf0331df5b716144a8100

Located: HK_LM:Run, Zone Labs Client
command: C:\karim\ZoneAlarm\ZoneAlarm\zlclient.exe
file: C:\karim\ZoneAlarm\ZoneAlarm\zlclient.exe
size: 755472
MD5: e85c5dc2659f562c496e839649aa7200

Located: HK_CU:Run, msnmsgr
command: "C:\Program Files\MSN Messenger\msnmsgr.exe" /background
file: C:\Program Files\MSN Messenger\msnmsgr.exe
size: 6815744
MD5: d846554575a9f571d6b891153faa0c50

Located: Démarrage (utilisateur), Microsoft Office.lnk
command: C:\Program Files\Microsoft Office\Office\Osa9.exe
file: C:\Program Files\Microsoft Office\Office\Osa9.exe
size: 65588
MD5: 09ec24043108b072e01a03a029239324

Located: System.ini, crypt32chain
command: crypt32.dll
file: crypt32.dll

Located: System.ini, cryptnet
command: cryptnet.dll
file: cryptnet.dll

Located: System.ini, cscdll
command: cscdll.dll
file: cscdll.dll

Located: System.ini, ScCertProp
command: wlnotify.dll
file: wlnotify.dll

Located: System.ini, Schedule
command: wlnotify.dll
file: wlnotify.dll

Located: System.ini, sclgntfy
command: sclgntfy.dll
file: sclgntfy.dll

Located: System.ini, SensLogn
command: WlNotify.dll
file: WlNotify.dll

Located: System.ini, termsrv
command: wlnotify.dll
file: wlnotify.dll

Located: System.ini, wlballoon
command: wlnotify.dll
file: wlnotify.dll

--- Browser helper object list ---
{761497BB-D6F0-462C-B6EB-D4DAF1D92D43} (SSVHelper Class)
BHO name:
CLSID name: SSVHelper Class
Path: C:\Program Files\Java\jre1.5.0_06\bin\
Long name: ssv.dll
Short name:
Date (created): 10/11/2005 13:03:56
Date (last access): 17/01/2006
Date (last write): 10/11/2005 13:22:10
Filesize: 184423
Attributes: archive
MD5: F01726F7CA8538FDD4663C9DB8FEAEDC
CRC32: 0111B892
Version: 5.0.60.5

--- ActiveX list ---
{9A9307A0-7DA4-4DAF-B042-5009F29E09E1} (ActiveScan Installer Class)
DPF name:
CLSID name: ActiveScan Installer Class
Installer: C:\WINDOWS\Downloaded Program Files\asinst.inf
Codebase: http://acs.pandasoftware.com/activescan/as5free/asinst.cab
description:
classification: Open for discussion
known filename: ASINST.DLL
info link:
info source: Safer Networking Ltd.
Path: C:\WINDOWS\Downloaded Program Files\
Long name: asinst.dll
Short name:
Date (created): 19/12/2005 13:35:32
Date (last access): 17/01/2006
Date (last write): 19/12/2005 13:35:32
Filesize: 135168
Attributes: archive
MD5: 20C07B231040B49AFCE82397BFC35F9C
CRC32: 9301377D
Version: 58.4.0.0

{C81B5180-AFD1-41A3-97E1-99E8D254DB98} ()
DPF name:
CLSID name:
Installer: C:\WINDOWS\Downloaded Program Files\cssweb.inf
Codebase: http://www.commandondemand.com/eval/cod/cabs/cssweb.cab
description: CSS Web Installer Class
classification: Open for discussion
known filename: CSSWEB.DLL
info link:
info source: Patrick M. Kolla

{CAFEEFAC-0015-0000-0006-ABCDEFFEDCBA} (Java Runtime Environment 1.5.0)
DPF name: Java Runtime Environment 1.5.0
CLSID name: Java Plug-in 1.5.0_06
Installer:
Codebase: http://java.sun.com/update/1.5.0/jinstall-1_5_0_06-windows-i586.cab
Path: C:\Program Files\Java\jre1.5.0_06\bin\
Long name: NPJPI150_06.dll
Short name: NPJPI1~1.DLL
Date (created): 10/11/2005 13:03:56
Date (last access): 17/01/2006
Date (last write): 10/11/2005 13:22:10
Filesize: 69746
Attributes: archive
MD5: D2CF6BB5E9020E6707B62575F8083954
CRC32: 7F39DC54
Version: 5.0.60.5

{CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} (Java Runtime Environment 1.5.0)
DPF name: Java Runtime Environment 1.5.0
CLSID name: Java Plug-in 1.5.0_06
Installer:
Codebase: http://java.sun.com/update/1.5.0/jinstall-1_5_0_06-windows-i586.cab
Path: C:\Program Files\Java\jre1.5.0_06\bin\
Long name: NPJPI150_06.dll
Short name: NPJPI1~1.DLL
Date (created): 10/11/2005 13:03:56
Date (last access): 17/01/2006
Date (last write): 10/11/2005 13:22:10
Filesize: 69746
Attributes: archive
MD5: D2CF6BB5E9020E6707B62575F8083954
CRC32: 7F39DC54
Version: 5.0.60.5

--- Process list ---
PID: 0 ( 0) [System]
PID: 316 ( 4) \SystemRoot\System32\smss.exe
PID: 372 ( 316) \??\C:\WINDOWS\system32\csrss.exe
PID: 396 ( 316) \??\C:\WINDOWS\system32\winlogon.exe
PID: 440 ( 396) C:\WINDOWS\system32\services.exe
size: 101888
MD5: FC0691097471EE374907E1024EDCBD43
PID: 452 ( 396) C:\WINDOWS\system32\lsass.exe
size: 11776
MD5: 2C2431B30A629123C1757582C9D93F38
PID: 612 ( 440) C:\WINDOWS\system32\svchost.exe
size: 12800
MD5: 333A4DB8410D8E24DB06D6AEBECDC7C2
PID: 636 ( 440) C:\WINDOWS\System32\svchost.exe
size: 12800
MD5: 333A4DB8410D8E24DB06D6AEBECDC7C2
PID: 696 ( 440) C:\WINDOWS\System32\svchost.exe
size: 12800
MD5: 333A4DB8410D8E24DB06D6AEBECDC7C2
PID: 712 ( 440) C:\WINDOWS\System32\svchost.exe
size: 12800
MD5: 333A4DB8410D8E24DB06D6AEBECDC7C2
PID: 856 ( 440) C:\WINDOWS\system32\spoolsv.exe
size: 51200
MD5: B1CE5287F096895D9BE26EB86F4D5FAF
PID: 984 ( 440) C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
size: 53248
MD5: 435D862E96FE19612093177CF6618F4E
PID: 1000 ( 440) C:\Program Files\Alwil Software\Avast4\ashServ.exe
size: 98352
MD5: C8C0AEE5D0585457FF6E318E8BB9289D
PID: 1016 ( 440) C:\WINDOWS\System32\CTsvcCDA.exe
size: 44032
MD5: 3C8B6609712F4FF78E521F6DCFC4032B
PID: 1040 ( 440) C:\Program Files\Executive Software\DiskeeperWorkstation\DKService.exe
size: 253952
MD5: 5A715FC7A5E222D8E987B2D903885B0B
PID: 1068 ( 440) C:\Documents and Settings\sabrina\Bureau\Nouveau dossier (2)\ewido anti-malware\ewidoctrl.exe
size: 13888
MD5: 26830B750372AB1BF29C95DEEBEB802F
PID: 1088 ( 440) C:\Documents and Settings\sabrina\Bureau\Nouveau dossier (2)\ewido anti-malware\ewidoguard.exe
size: 151616
MD5: 34A50717AD686900F078F5208F8E908E
PID: 1192 ( 440) C:\WINDOWS\System32\svchost.exe
size: 12800
MD5: 333A4DB8410D8E24DB06D6AEBECDC7C2
PID: 1224 ( 440) C:\WINDOWS\SYSTEM32\ZONELABS\vsmon.exe
size: 1693448
MD5: 7E9C8F0BF97910E04A078799837BB6F2
PID: 1280 ( 440) C:\WINDOWS\System32\MsPMSPSv.exe
size: 53520
MD5: 581176F60885AEF8F78C6E38DCC3CDF9
PID: 1568 (1428) C:\WINDOWS\Explorer.EXE
size: 1005056
MD5: 9E20A8EF0CA524446AFEE29F4423CC8F
PID: 1876 (1568) C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
size: 98352
MD5: 0A9883BE214C4F7A65B6DFF129F37B6E
PID: 1884 (1568) C:\Program Files\Java\jre1.5.0_06\bin\jusched.exe
size: 36975
MD5: 61A3A9D5D98BF0331DF5B716144A8100
PID: 1908 (1568) C:\karim\ZoneAlarm\ZoneAlarm\zlclient.exe
size: 755472
MD5: E85C5DC2659F562C496E839649AA7200
PID: 196 ( 440) C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
size: 360496
MD5: EB51923A762779247C776A551C546898
PID: 344 ( 440) C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
size: 241712
MD5: 8C50FFD2642FD97DAC0009280A438570
PID: 2464 (2456) C:\karim\RegistryCleaner.exe
size: 341504
MD5: 748109B1590DAB512FD602A290BB4551
PID: 2476 (1568) C:\Program Files\Mozilla Firefox\firefox.exe
size: 7162979
MD5: F375D4684A1F72D279A7CFA7A5DE1A9C
PID: 2772 (1568) C:\Documents and Settings\sabrina\Bureau\Nouveau dossier (2)\Spybot - Search & Destroy\SpybotSD.exe
size: 4393096
MD5: 09CA174A605B480318731E691DC98539
PID: 4 ( 0) System

--- Browser start & search pages list ---
Spybot - Search & Destroy browser pages report, 17/01/2006 21:37:02

HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main\Search Page
http://www.google.com
HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main\Start Page
http://www.google.fr/
HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main\First Home Page
http://www.aol.fr
HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Search\SearchAssistant Explorer\Main\Default_Search_URL
about:blank
HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Main\Start Page
http://www.microsoft.com/isapi/redir.dll?prd={SUB_PRD}&clcid={SUB_CLSID}&pver={SUB_PVER}&ar=home
HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Main\Default_Page_URL
http://www.microsoft.com/isapi/redir.dll?prd=ie&pver=6&ar=msnhome
HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Main\Default_Search_URL
http://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Search\SearchAssistant
http://ie.search.msn.com/{SUB_RFC1766}/srchasst/srchasst.htm
HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Search\CustomizeSearch
http://ie.search.msn.com/{SUB_RFC1766}/srchasst/srchcust.htm

--- Winsock Layered Service Provider list ---

--- Uninstall list ---
a-squared Free 1.6.1 1.6 (a-squared Free_is1)
install location: C:\karim\a-squared\
uninstall cmd: "C:\karim\a-squared\unins000.exe"
publisher: Emsi Software GmbH
comments: a-squared
help link: http://forum.emsisoft.com

(AddressBook)
uninstall cmd: "C:\Program Files\Outlook Express\setup50.exe" /APP:WAB /CALLER:IE50 /UNINSTALL /PROMPT

Serveur AMS (AMS Server)
uninstall cmd: C:\WINDOWS\IsUn040c.exe -f"C:\Program Files\Serveur AMS\AMSSERVR.isu"

(AudioHQ)
uninstall cmd: RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{FD851F7E-F887-405D-9E1C-488811113EF3}\setup.exe" -l0x40c /remove

avast! Antivirus 4.6 (avast!)
version (major): 4
version (minor): 6
install location: C:\PROGRA~1\ALWILS~1\Avast4
install source: C:\PROGRA~1\ALWILS~1\Avast4\setup
uninstall cmd: rundll32 C:\PROGRA~1\ALWILS~1\Avast4\Setup\setiface.dll,RunSetup
publisher: Alwil Software
help link: http://www.avast.com

(Branding)

Canon PIXMA iP3000 (CANONBJ_Deinstall_CNMCP61.DLL)
uninstall cmd: C:\WINDOWS\System32\CNMCP61.exe "-PRINTERNAMECanon PIXMA iP3000" "-HELPERDLLC:\BJPrinter\CNMWINDOWS\Canon PIXMA iP3000 Installer\Inst2\cnmis.dll" "-RCDLLC:\BJPrinter\CNMWINDOWS\Canon PIXMA iP3000 Installer\Inst2\cnmi040c.dll"

CCleaner (remove only) (CCleaner)
uninstall cmd: "C:\Documents and Settings\sabrina\Bureau\Nouveau dossier\CCleaner\uninst.exe"

OLITEC PCI 56K V2 Modem (Conexant SoftK56 Modem)
uninstall cmd: infunist.exe

(Connection Manager)

Cosmo Player 2.1 (38329) (Cosmo Player 2.1)
uninstall cmd: C:\WINDOWS\IsUn040c.exe -f"C:\Program Files\CosmoSoftware\CosmoPlayer\CosmoPlayer21.isu"

(Creative Configurator)
uninstall cmd: C:\WINDOWS\IsUn040c.exe -f"C:\Program Files\Creative\Audio\Configurator.isu"

(Creative Dos Drivers)
uninstall cmd: C:\WINDOWS\IsUn040c.exe -f"C:\Program Files\Creative\Audio\Dos.isu"

(Creative Installer Setup)
uninstall cmd: C:\WINDOWS\IsUn040c.exe -f"C:\Program Files\Creative\Uninstall\Installer.isu"

(Creative MiniDisc Center)
uninstall cmd: RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{AC157741-3285-4D6A-B934-9174587A3493}\setup.exe" -l0x40c /remove

(Creative Mixer)
uninstall cmd: C:\WINDOWS\IsUn040c.exe -f"C:\Program Files\Creative\Audio\CTMixer.isu"

(Creative PlayCenter 2.0)
uninstall cmd: RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{48E3A9E6-FA13-11D5-8CC9-00A0C98192B6}\setup.exe" -l0x40c /remove

(Creative Recorder)
uninstall cmd: RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{E7337A45-3FE5-4392-ABBB-26B794D060C9}\setup.exe" -l0x40c /remove

(Creative Restore Defaults)
uninstall cmd: RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{9A4D2983-4662-4387-BE3D-4CFC2FA9C100}\setup.exe" -l0x40c /remove

(Creative Surround Mixer 2)
uninstall cmd: RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{58582977-44D2-44A0-A09B-031CC2AE5938}\setup.exe" -l0x40c /remove

(Creative WaveStudio)
uninstall cmd: RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{435E969D-867E-4364-8E74-3DC8A69C5BDB}\setup.exe" -l0x40c /remove

(Diagnostics2)
uninstall cmd: RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{A731533B-B325-4D9C-91A4-D93C8E294C19}\setup.exe" -l0x40c /remove

Canon Utilities Easy-PhotoPrint (Easy-PhotoPrint)
uninstall cmd: C:\Program Files\Canon\Easy-PhotoPrint\uninst.exe C:\Program Files\Canon\Easy-PhotoPrint\uninst.ini

Canon Utilities Easy-PrintToolBox (Easy-PrintToolBox)
uninstall cmd: C:\WINDOWS\BJPSUNST.EXE

Easy-WebPrint (Easy-WebPrint)
uninstall cmd: C:\WINDOWS\IsUn040c.exe -f"C:\Program Files\Canon\Easy-WebPrint\Uninst.isu"

Encyclopédie Microsoft Encarta 99 99F (Encarta99F)
version (major): 6
install location: "C:\Program Files\Microsoft Référence\Encyclopédie Encarta"
install source: "D:"
uninstall cmd: RunDll32 C:\PROGRA~1\MICROS~4\ENCYCL~1\UNENC99.DLL,Uninstall C:\PROGRA~1\MICROS~4\ENCYCL~1\SETUP99F\INST99F.LOG
publisher: Microsoft Corporation

ewido anti-malware (ewidoantimalware)
install location: C:\Documents and Settings\sabrina\Bureau\Nouveau dossier (2)\ewido anti-malware
uninstall cmd: C:\Documents and Settings\sabrina\Bureau\Nouveau dossier (2)\ewido anti-malware\Uninstall.exe
publisher: ewido networks
help link: http://www.ewido.net

(expinst)

GeForce2 GTS Experience (GeForce2 GTS Experience)
uninstall cmd: C:\WINDOWS\IsUninst.exe -f"C:\Program Files\NVidia Corporation\GeForce2 GTS Experience\Uninst.isu"

HijackThis 1.99.1 1.99.1 (HijackThis)
uninstall cmd: C:\Documents and Settings\sabrina\Bureau\Nouveau dossier (2)\HijackThis.exe /uninstall
publisher: Soeperman Enterprises Ltd.

Internet Explorer Q867801 (ieupdate)
uninstall cmd: C:\WINDOWS\ieuninst.exe C:\WINDOWS\INF\Q867801.inf

Java 2 Runtime Environment Standard Edition v1.3.1_03 (JRE 1.3.1_03)
uninstall cmd: C:\WINDOWS\IsUninst.exe -f"C:\Program Files\JavaSoft\JRE\1.3.1_03\Uninst.isu"

Kaspersky On-line Scanner 5.0.67.0 (Kaspersky On-line Scanner)
estimated size: 6040
install location: C:\WINDOWS\System32\KASPER~1\KASPER~1
uninstall cmd: C:\WINDOWS\System32\KASPER~1\KASPER~1\kavuninstall.exe
publisher: Kaspersky Lab
contact: Customer Support Department
help link: http://www.kaspersky.com/support.asp

Microsoft Data Access Components KB870669 (KB870669)
uninstall cmd: C:\WINDOWS\muninst.exe C:\WINDOWS\INF\KB870669.inf
publisher: Microsoft Corporation
help link: http://support.microsoft.com?kbid=KB870669

Correctif Windows XP - KB883357 20040804.165131 (KB883357)
uninstall cmd: C:\WINDOWS\$NtUninstallKB883357$\spuninst\spuninst.exe
publisher: Microsoft Corporation
help link: http://support.microsoft.com?kbid=883357

LiveUpdate 2.6 (Symantec Corporation) 2.6.14.0 (LiveUpdate)
install location: C:\Program Files\Symantec\LiveUpdate
uninstall cmd: C:\Program Files\Symantec\LiveUpdate\LSETUP.EXE /U
publisher: Symantec Corporation

Logiciel iTouch de Logitech (Logitech iTouch)
uninstall cmd: C:\WINDOWS\IsUn040c.exe -fC:\PROGRA~1\LOGITECH\ITOUCH\Uninst.isu -c"C:\PROGRA~1\LOGITECH\ITOUCH\LUnInst.dll

(Logitech Key Commander)
uninstall cmd: C:\WINDOWS\IsUn040c.exe -fC:\PROGRA~1\LOGITECH\ITOUCH\Uninst.isu -c"C:\PROGRA~1\LOGITECH\ITOUCH\LUnInst.dll

Macromedia Shockwave Player 10.1.0.11 (Macromedia Shockwave Player)
uninstall cmd: C:\WINDOWS\SYSTEM32\MACROMED\SHOCKW~3\UNWISE.EXE C:\WINDOWS\SYSTEM32\MACROMED\SHOCKW~3\INSTALL.LOG
publisher: Macromedia, Inc.
help link: http://www.macromedia.com/fr/support/shockwave

Mathcad 2000 Professionnel (Mathcad 2000 Professionnel)
uninstall cmd: C:\WINDOWS\IsUn040c.exe -f"C:\Program Files\MathSoft\Mathcad 2000 Professionnel\Uninst.isu"

CD-LabelPrint (MediaNavigation.CDLabelPrint)
install location: C:\Program Files\Canon\CD-LabelPrint\
uninstall cmd: "C:\Program Files\Canon\CD-LabelPrint\Uninstal.exe" Canon.CDLabelPrint.Application

MediaRing Talk 99 Release 7.0.0014 (MediaRing Talk 99 Release 7.0.0014)
uninstall cmd: C:\WINDOWS\preuninst.exe

(Midi Samples)
uninstall cmd: C:\WINDOWS\IsUn040c.exe -f"C:\Program Files\Creative\Audio\Midi.isu"

Mozilla Firefox (1.5) 1.5 (fr) (Mozilla Firefox (1.5))
install location: C:\Program Files\Mozilla Firefox
uninstall cmd: C:\WINDOWS\UninstallFirefox.exe /ua "1.5 (fr)"
publisher: Mozilla

Barre d'outils MSN (MSN Toolbar)
uninstall cmd: C:\Program Files\MSN Apps\MSN Toolbar\01.02.4000.1001\fr\mtbs.exe c

WinFast Windows 95/98/ME Display Drivers (NVIDIA)
uninstall cmd: rundll32.exe C:\WINDOWS\SYSTEM32\NVINST32.DLL,NvUninstall9x nvagp.inf

Outlook Express Q823353 (oeupdate)
uninstall cmd: C:\WINDOWS\oeuninst.exe C:\WINDOWS\INF\Q823353.inf

(PCHealth)
uninstall cmd: rundll32.exe setupapi.dll,InstallHinfSection DefaultUninstall 132 C:\WINDOWS\INF\PCHealth.inf

(PlayCenter)
uninstall cmd: C:\WINDOWS\IsUn040c.exe -f"C:\Program Files\Creative\Audio\PlayCenter\Player.isu"

PopUpCop 2.0.3.20 (PopUpCop)
uninstall cmd: C:\PROGRA~1\POPUPCOP\UNWISE.EXE /U C:\PROGRA~1\POPUPCOP\INSTALL.LOG
publisher: EdenSoft
help link: http://www.PopUpCop.com/help.html

Windows XP Hotfix (SP1) [See Q313450 for more information] (Q313450)
uninstall cmd: C:\WINDOWS\$NtUninstallQ313450$\spuninst\spuninst.exe

Windows XP Hotfix (SP1) Q329170 20030102.115458 (Q329170)
uninstall cmd: C:\WINDOWS\$NtUninstallQ329170$\spuninst\spuninst.exe
publisher: Microsoft Corporation
help link: Pour plus d'informations, consultez Q329170 à l'adresse http://support.microsoft.com

QuickTime (QuickTime)
uninstall cmd: C:\WINDOWS\unvise32qt.exe C:\WINDOWS\SYSTEM32\QuickTime\Uninstall.log

QuickTime for Windows (32-bit) (QuickTime32)
uninstall cmd: C:\WINDOWS\QTW32DEL.EXE

(Sevinst)

(ShockwaveFlash)

Sound Blaster AudioPCI (Sound Blaster AudioPCI)
uninstall cmd: C:\Program Files\Creative\Uninstall\CTUNINST.EXE /U:UNINST1.INI

(Sound Blaster Live! Pilotes Windows)
uninstall cmd: "C:\Program Files\Creative\SBLive\Program\Ctzapxx.EXE" /X /U /S /L:FRN

USB Monitor (USB Monitor)
uninstall cmd: C:\WINDOWS\uninst.exe -f"C:\Program Files\USB Monitor\DeIsL1.isu" -c"C:\Program Files\USB Monitor\_ISREG32.DLL"

VIAhm (VIAhm)
uninstall cmd: C:\WINDOWS\IsUninst.exe -fc:\VIAhm\Uninst.isu

Viewpoint Media Player (Remove Only) (ViewpointMediaPlayer)
uninstall cmd: C:\Program Files\Viewpoint\Viewpoint Media Player\mtsAxInstaller.exe /u

Winamp (remove only) (Winamp)
uninstall cmd: "C:\Program Files\Winamp\UninstWA.exe"

Désinstallation de Windows XP (Windows)
install location: C:\undo
uninstall cmd: %SYSTEMROOT%\system32\osuninst.exe

WinFox V1.0 Setup (WinFox V1.0 Setup)
uninstall cmd: C:\WINDOWS\IsUn040c.exe -f"C:\Program Files\Leadtek Research Inc.\WinFox V1.0 Setup\Uninst.isu"

Archiveur WinRAR (WinRAR archiver)
uninstall cmd: C:\Program Files\WinRAR\uninstall.exe

XingMPEG Player (XingMPEG Player)
uninstall cmd: C:\PROGRA~1\XING\XINGMP~1\UNINST.EXE C:\PROGRA~1\XING\XINGMP~1\INSTALL.LOG

ZoneAlarm 6.1.737.000 (ZoneAlarm)
uninstall cmd: C:\karim\ZoneAlarm\ZoneAlarm\zauninst.exe
publisher: Zone Labs, Inc
help link: C:\karim\ZoneAlarm\ZoneAlarm\Aide\zaclients.chm

Microsoft Office 2000 Premium 9.00.2720 ({0000040C-78E1-11D2-B60F-006097C998E7})
version: 150997664
version (major): 9
install date: 24/01/01
install source: D:\
uninstall cmd: MsiExec.exe /I{0000040C-78E1-11D2-B60F-006097C998E7}
publisher: Microsoft Corporation
help link: http://www.microsoft.com/support

Norton WMI Update 2005.1.2.20 ({1526D87C-A955-4FAB-BF18-697BA457E352})
version (major): 2005
version (minor): 1
estimated size: 2168
install date: 20050129
uninstall cmd: MsiExec.exe /X{1526D87C-A955-4FAB-BF18-697BA457E352}
publisher: Symantec Corporation

J2SE Runtime Environment 5.0 Update 4 1.5.0.40 ({3248F0A8-6813-11D6-A77B-00B0D0150040})
version: 17104896
version (major): 1
version (minor): 5
estimated size: 121345
install date: 20050820
install source: http://jdl.sun.com/webapps/download/GetFile/1.5.0_04-b05/windows-i586//
uninstall cmd: MsiExec.exe /I{3248F0A8-6813-11D6-A77B-00B0D0150040}
publisher: Sun Microsystems, Inc.
contact: http://java.com
help link: http://java.com
readme: C:\Program Files\Java\jre1.5.0_04\README.txt

J2SE Runtime Environment 5.0 Update 6 1.5.0.60 ({3248F0A8-6813-11D6-A77B-00B0D0150060})
version: 17104896
version (major): 1
version (minor): 5
estimated size: 122337
install date: 20051226
install source: http://jdl.sun.com/webapps/download/GetFile/1.5.0_06-b05/windows-i586//
uninstall cmd: MsiExec.exe /I{3248F0A8-6813-11D6-A77B-00B0D0150060}
publisher: Sun Microsystems, Inc.
contact: http://java.com
help link: http://java.com
readme: C:\Program Files\Java\jre1.5.0_06\README.txt

WebFldrs XP 9.50.5318 ({350C97B8-3D7C-4EE8-BAA9-00BCB3D54227})
version: 154277062
version (major): 9
version (minor): 50
estimated size: 2708
install date: 20030525
install source: C:\WINDOWS\System32\
publisher: Microsoft Corporation
help link: http://www.microsoft.com/windows

({435E969D-867E-4364-8E74-3DC8A69C5BDB})
uninstall cmd: RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{435E969D-867E-4364-8E74-3DC8A69C5BDB}\setup.exe" -l0x40c

({48E3A9E6-FA13-11D5-8CC9-00A0C98192B6})
uninstall cmd: RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{48E3A9E6-FA13-11D5-8CC9-00A0C98192B6}\setup.exe" -l0x40c

DiskeeperWorkstation 7.0.403.2 ({5187D2C3-BCB9-4450-83B9-5E0BC4B4AB8D})
version: 117440915
version (major): 7
estimated size: 3709
install date: 20040415
install source: C:\Program Files\Executive Software\Diskeeper Setup\
uninstall cmd: MsiExec.exe /I{5187D2C3-BCB9-4450-83B9-5E0BC4B4AB8D}
publisher: Executive Software International, Inc.
comments: Copyright 2002 Executive Software International, Inc. Tous droits réservés.
contact: Support technique
help link: http://www.execsoft.com
help telephone: Téléphone - États-Unis - 818-771-1600 Europe - +011-44-1342-327477 Japon - +32984-3845894

({58582977-44D2-44A0-A09B-031CC2AE5938})
uninstall cmd: RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{58582977-44D2-44A0-A09B-031CC2AE5938}\setup.exe" -l0x40c

Dragon NaturallySpeaking 7.1 7.10.200.092 ({6675E71B-9843-4971-BC15-18AB52801134})
version (major): 7
version (minor): 10
install location: C:\Program Files\ScanSoft\NaturallySpeaking
install source: D:\dragon\
uninstall cmd: C:\Program Files\InstallShield Installation Information\{6675E71B-9843-4971-BC15-18AB52801134}\setup.exe
publisher: ScanSoft
help link: http://www.ScanSoft.com/NaturallySpeaking/support/

Symantec Network Drivers Update 5.4.4.17 ({7169B8E4-2632-46B1-AA5F-167CB5FE5029})
version: 84148228
version (major): 5
version (minor): 4
estimated size: 2890
install date: 20050209
publisher: Symantec Corporation

MAX-FX Tools ({7299E7F8-6921-4588-9A83-9BB7B867706F})
uninstall cmd: RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\ENGINE\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{7299E7F8-6921-4588-9A83-9BB7B867706F}\SETUP.EXE"

TuneUp Utilities 2006 5.0.2332 ({868D7896-99D4-4513-BC62-2B3AD3E24926})
version: 83888412
version (major): 5
estimated size: 26606
install date: 20060117
install source: C:\Program Files\Fichiers communs\Wise Installation Wizard\
uninstall cmd: MsiExec.exe /I{868D7896-99D4-4513-BC62-2B3AD3E24926}
publisher: TuneUp Software
help link: www.tuneup.de

Sound Blaster Live! ({9115E7DB-3B29-445A-802D-11E0AA945B7F})
uninstall cmd: RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{9115E7DB-3B29-445A-802D-11E0AA945B7F}\SETUP.EXE" -l0x40c

({9A4D2983-4662-4387-BE3D-4CFC2FA9C100})
uninstall cmd: RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{9A4D2983-4662-4387-BE3D-4CFC2FA9C100}\setup.exe" -l0x40c

({A731533B-B325-4D9C-91A4-D93C8E294C19})
uninstall cmd: RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{A731533B-B325-4D9C-91A4-D93C8E294C19}\setup.exe" -l0x40c

MSN Messenger 7.0 7.0.0777 ({ABEB838C-A1A7-4C5D-B7E1-8B4314600777})
version: 117441289
version (major): 7
estimated size: 25402
install date: 20050421
uninstall cmd: MsiExec.exe /I{ABEB838C-A1A7-4C5D-B7E1-8B4314600777}
publisher: Microsoft Corporation

({AC157741-3285-4D6A-B934-9174587A3493})
uninstall cmd: RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{AC157741-3285-4D6A-B934-9174587A3493}\setup.exe" -l0x40c

PC-Link VTech® (Masterpad®) ({B991EED6-5106-11D5-8F02-0000E8A35E52})
uninstall cmd: RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\ENGINE\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{B991EED6-5106-11D5-8F02-0000E8A35E52}\SETUP.EXE" anything

Norton AntiVirus Corporate Edition 7.6.0.0000 ({BD12EB47-DBDF-11D3-BEEA-00A0CC272509})
version: 117833728
version (major): 7
version (minor): 6
estimated size: 75338
install date: 20020314
install source: D:\CD2\NAVCORP\ROLLOUT\AVSERVER\CLIENTS\WIN32\
uninstall cmd: MsiExec.exe /I{BD12EB47-DBDF-11D3-BEEA-00A0CC272509}
publisher: Symantec Corporation
contact:
help link: http://www.symantec.com
help telephone:

Alcatel SpeedTouch USB Software ({D41FAAA9-8048-4906-86B2-9AADEA1FA0B7})
uninstall cmd: RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\ENGINE\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{D41FAAA9-8048-4906-86B2-9AADEA1FA0B7}\SETUP.EXE" -Control_Panel

Canon PhotoRecord 02.02.00013 ({D958FAC4-BAE0-4B1D-A42E-DE9BFDE7DDEE})
version: 33685517
version (major): 2
version (minor): 2
estimated size: 97842
install date: 20050130
install source: D:\PREC2\
uninstall cmd: MsiExec.exe /X{D958FAC4-BAE0-4B1D-A42E-DE9BFDE7DDEE}
publisher: Cisra

({E7337A45-3FE5-4392-ABBB-26B794D060C9})
uninstall cmd: RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{E7337A45-3FE5-4392-ABBB-26B794D060C9}\setup.exe" -l0x40c

PCLink for GSM Ver.1.0 ({F3BF93D3-25E7-11D6-B496-0050BF282FBC})
uninstall cmd: RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\ENGINE\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{F3BF93D3-25E7-11D6-B496-0050BF282FBC}\SETUP.EXE" -l0x9

({FD851F7E-F887-405D-9E1C-488811113EF3})
uninstall cmd: RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{FD851F7E-F887-405D-9E1C-488811113EF3}\setup.exe" -l0x40c

--- System Services ---
Service (registry key): Aavmker4
Display name: avast! Asynchronous Virus Monitor
Start: 1
Type: 1
Error Control: 1

Service (registry key): Abiosdsk
Start: 4
Type: 1
Error Control: 0

Service (registry key): abp480n5
Start: 4
Type: 1
Error Control: 1

Service (registry key): ACPI
Display name: Pilote ACPI Microsoft
Image path: System32\DRIVERS\ACPI.sys
Image size: 180096
Image MD5: 34128BB2AB7BD69C72017BE7FCF8BE34
Start: 0
Type: 1
Error Control: 1

Service (registry key): ACPIEC
Start: 4
Type: 1
Error Control: 1

Service (registry key): adpu160m
Start: 4
Type: 1
Error Control: 1

Service (registry key): aec
Display name: Suppresseur d'écho acoustique (Noyau Microsoft)
Image path: system32\drivers\aec.sys
Image size: 122472
Image MD5: B45A744CA0A15A59D8B0307CE9741E92
Start: 3
Type: 1
Error Control: 1

Service (registry key): AFD
Display name: Environnement de prise en charge de réseau AFD
Image path: \SystemRoot\System32\drivers\afd.sys
Start: 2
Type: 1
Error Control: 1

Service (registry key): Aha154x
Start: 4
Type: 1
Error Control: 1

Service (registry key): aic78u2
Start: 4
Type: 1
Error Control: 1

Service (registry key): aic78xx
Start: 4
Type: 1
Error Control: 1

Service (registry key): alcan5wn
Display name: Alcatel SpeedTouch USB ADSL PPP Networking Driver (NDISWAN)
Image path: System32\DRIVERS\alcan5wn.sys
Image size: 53168
Image MD5: C7E217CD964D0067F18263429C87EC1B
Start: 3
Type: 1
Error Control: 1

Service (registry key): alcaudsl
Display name: Alcatel Speed Touch ADSL Modem ATM Transport
Image path: System32\DRIVERS\alcaudsl.sys
Image size: 743136
Image MD5: 8080B5EA17A763BBCE6C92BBC6CEEFE8
Start: 3
Type: 1
Error Control: 1

Service (registry key): Alerter
Display name: Avertissement
Description: Informe les utilisateurs et les ordinateurs sélectionnés des alertes administratives. Si ce service est arrêté, les programmes qui utilisent les alertes administratives ne les recevront pas. Si ce service est désactivé, les services qui en dépendent ne pourront pas démarrer.
Object name: NT AUTHORITY\LocalService
Image path: %SystemRoot%\System32\svchost.exe -k LocalService
Image size: 12800
Image MD5: 333A4DB8410D8E24DB06D6AEBECDC7C2
Start: 3
Type: 32
Error Control: 1
Depends On services: LanmanWorkstation

Service (registry key): ALG
Display name: Service de la passerelle de la couche Application
Description: Fournit la prise en charge des plugins de protocoles tiers pour le partage de connexion Internet et le pare-feu Internet.
Object name: NT AUTHORITY\LocalService
Image path: %SystemRoot%\System32\alg.exe
Image size: 40960
Image MD5: 55D226818B6C3D99741432D37657BA73
Start: 3
Type: 16
Error Control: 1

Service (registry key): AliIde
Start: 4
Type: 1
Error Control: 1

Service (registry key): amsint
Start: 4
Type: 1
Error Control: 1

Service (registry key): AppMgmt
Display name: Gestion d'applications
Description: Fournit des services d'installation de logiciels tels que Attribuer, Publier et Supprimer.
Object name: LocalSystem
Image path: %SystemRoot%\system32\svchost.exe -k netsvcs
Image size: 12800
Image MD5: 333A4DB8410D8E24DB06D6AEBECDC7C2
Start: 3
Type: 32
Error Control: 1

Service (registry key): asc
Start: 4
Type: 1
Error Control: 1

Service (registry key): asc3350p
Start: 4
Type: 1
Error Control: 1

Service (registry key): asc3550
Start: 4
Type: 1
Error Control: 1

Service (registry key): aswMon2
Display name: avast! Standard Shield Support
Start: 2
Type: 2
Error Control: 1

Service (registry key): aswRdr
Display name: aswRdr
Start: 3
Type: 1
Error Control: 1
Depends On services: tcpip

Service (registry key): aswTdi
Display name: avast! Network Shield Support
Start: 1
Type: 1
Error Control: 1
Depends On services: tcpip

Service (registry key): aswUpdSv
Display name: avast! iAVS4 Control Service
Description: Fournit la mise à jour automatique pour l'antivirus avast!.
Object name: LocalSystem
Image path: "C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe"
Image size: 53248
Image MD5: 435D862E96FE19612093177CF6618F4E
Start: 2
Type: 272
Error Control: 1

Service (registry key): AsyncMac
Display name: Pilote de média asynchrone RAS
Description: Pilote de média asynchrone RAS
Image path: System32\DRIVERS\asyncmac.sys
Image size: 13568
Image MD5: 03F403B07A884FC2AA54A0916C410931
Start: 3
Type: 1
Error Control: 1

Service (registry key): atapi
Display name: Contrôleur de disque dur IDE/ESDI standard
Image path: System32\DRIVERS\atapi.sys
Image size: 86656
Image MD5: A64013E98426E1877CB653685C5C0009
Start: 0
Type: 1
Error Control: 1

Service (registry key): Atdisk
Start: 4
Type: 1
Error Control: 0

Service (registry key): Atmarpc
Display name: Protocole client ATM ARP
Description: Protocole client ATM ARP
Image path: System32\DRIVERS\atmarpc.sys
Image size: 57216
Image MD5: 8D735CA1CBDB0081B0E3B9FF0EB222D0
Start: 3
Type: 1
Error Control: 1
Depends On services: Tcpip

Service (registry key): AudioSrv
Display name: Audio Windows
Description: Gère les périphériques audio pour les programmes basés sur Windows. Si ce service est arrêté, les périphériques et les effets audio ne fonctionneront pas correctement. Si ce service est désactivé, les services en dépendant explicitement ne démarreront pas.
Object name: LocalSystem
Image path: %SystemRoot%\System32\svchost.exe -k netsvcs
Image size: 12800
Image MD5: 333A4DB8410D8E24DB06D6AEBECDC7C2
Start: 2
Type: 32
Error Control: 1
Depends On services: PlugPlay,RpcSs

Service (registry key): audstub
Display name: Pilote audio Stub
Image path: System32\DRIVERS\audstub.sys
Image size: 3072
Image MD5: D9F724AA26C010A217C97606B160ED68
Start: 3
Type: 1
Error Control: 1

Service (registry key): avast! Antivirus
Display name: avast! Antivirus
Description: Gère et implémente les services de l'antivirus avast! pour cet ordinateur. Ceci inclut la protection résidente, la zone de quarantaine et le planificateur.
Object name: LocalSystem
Image path: "C:\Program Files\Alwil Software\Avast4\ashServ.exe"
Image size: 98352
Image MD5: C8C0AEE5D0585457FF6E318E8BB9289D
Start: 2
Type: 272
Error Control: 1
Depends On services: aswMon2,RpcSS

Service (registry key): avast! Mail Scanner
Display name: avast! Mail Scanner
Description: Implémente l'analyse du courrier électronique pour l'antivirus avast!.
Object name: LocalSystem
Image path: "C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe" /service
Image size: 241712
Image MD5: 8C50FFD2642FD97DAC0009280A438570
Start: 3
Type: 272
Error Control: 1
Depends On services: "avast! Antivirus"

Service (registry key): avast! Web Scanner
Display name: avast! Web Scanner
Description: Implémente l'analyse du contenu web (HTTP) pour l'antivirus avast!.
Object name: LocalSystem
Image path: "C:\Program Files\Alwil Software\Avast4\ashWebSv.exe" /service
Image size: 360496
Image MD5: EB51923A762779247C776A551C546898
Start: 3
Type: 272
Error Control: 1
Depends On services: "avast! Antivirus"

Service (registry key): BattC
Start: 0
Type: 0
Error Control: 0

Service (registry key): Beep
Start: 1
Type: 1
Error Control: 1

Service (registry key): BITS
Display name: Service de transfert intelligent en arrière-plan
Description: Utilise la bande passante réseau inactive pour transférer des données.
Object name: LocalSystem
Image path: %SystemRoot%\System32\svchost.exe -k netsvcs
Image size: 12800
Image MD5: 333A4DB8410D8E24DB06D6AEBECDC7C2
Start: 3
Type: 32
Error Control: 1
Depends On services: Rpcss

Service (registry key): Browser
Display name: Explorateur d'ordinateur
Description: Tient à jour une liste des ordinateurs présents sur le réseau et fournit cette liste aux ordinateurs désignés comme navigateurs. Si ce service est arrêté, la liste ne sera pas mise ou tenue à jour. Si ce service est désactivé, les services qui en dépendent ne pourront pas démarrer.
Object name: LocalSystem
Image path: %SystemRoot%\System32\svchost.exe -k netsvcs
Image size: 12800
Image MD5: 333A4DB8410D8E24DB06D6AEBECDC7C2
Start: 3
Type: 32
Error Control: 1
Depends On services: LanmanWorkstation,LanmanServer

Service (registry key): cbidf2k
Start: 4
Type: 1
Error Control: 1

Service (registry key): CCDECODE
Display name: Décodeur sous-titre fermé
Image path: System32\DRIVERS\CCDECODE.sys
Image size: 16256
Image MD5: 1108137A497C112126B3F1F0E8A021B6
Start: 3
Type: 1
Error Control: 1

Service (registry key): cd20xrnt
Start: 4
Type: 1
Error Control: 1

Service (registry key): Cdaudio
Start: 1
Type: 1
Error Control: 0

Service (registry key): Cdfs
Start: 4
Type: 2
Error Control: 1
Depends On group: "SCSI CDROM Class"

Service (registry key): Cdrom
Display name: Pilote de CD-ROM
Image path: System32\DRIVERS\cdrom.sys
Image size: 47488
Image MD5: CB762E814F602229A574F4D78D3D6A30
Start: 1
Type: 1
Error Control: 1
Depends On group: "SCSI miniport"

Service (registry key): Changer
Start: 1
Type: 1
Error Control: 0

Service (registry key): cisvc
Display name: Service d'indexation
Description: Construit un index des contenus et des propriétés des fichiers sur les ordinateurs locaux et distants ; fournit un accès rapide aux fichiers par le biais d'un langage d'interrogation flexible.
Object name: LocalSystem
Image path: C:\WINDOWS\System32\cisvc.exe
Image size: 5120
Image MD5: 7901AF03767C140467671C7CEEB2C3FE
Start: 3
Type: 32
Error Control: 1
Depends On services: RPCSS

Service (registry key): ClipSrv
Display name: Gestionnaire de l'Album
Description: Active le Gestionnaire de l'Album afin de stocker les informations et les partager avec des ordinateurs à distance. Si le service est arrêté, le Gestionnaire de l'Album ne pourra pas partager les informations avec des ordinateurs à distance. Si ce service est désactivé, tout service en dépendant explicitement ne démarrera pas.
Object name: LocalSystem
Image path: %SystemRoot%\system32\clipsrv.exe
Image size: 30720
Image MD5: 3D1AAB2963FABCAFEB507B5C9D67BFBC
Start: 3
Type: 16
Error Control: 1
Depends On services: NetDDE

Service (registry key): CmdIde
Start: 4
Type: 1
Error Control: 1

Service (registry key): COMSysApp
Display name: Application système COM+
Description: Gère la configuration et le suivi des composants de base COM+ (Component Object Model) . Si le service est arrêté, la plupart des composants de base COM+ ne fonctionneront pas correctement. Si ce service est désactivé, les services qui en dépendent de manière explicite ne pourront pas démarrer.
Object name: LocalSystem
Image path: C:\WINDOWS\System32\dllhost.exe /Processid:{02D4B3F1-FD88-11D1-960D-00805FC79235}
Image size: 4608
Image MD5: 17681E6109A67F3AEA66AD6AAE2434E6
Start: 3
Type: 16
Error Control: 1
Depends On services: rpcss

Service (registry key): ContentFilter
Start: 0
Type: 0
Error Control: 0

Service (registry key): ContentIndex
Start: 0
Type: 0
Error Control: 0

Service (registry key): Cpqarray
Start: 4
Type: 1
Error Control: 1

Service (registry key): Cpqarray
Start: 4
Type: 1
Error Control: 1

Service (registry key): CryptSvc
Display name: Services de cryptographie
Description: Fournit trois services de gestion : le service de base de données de catalogue, qui confirme la signature des fichiers Windows; le service de racine protégée, qui ajoute et supprime des certificats d'autorité de certification de racine approuvés et le service Clé, qui fournit une aide dans l'inscription de cet ordinateur pour les certificats. Si ce service est arrêté, ces services de gestion ne fonctionneront pas correctement. Si ce service est désactivé, tout service en dépendant explicitement ne démarrera pas.
Object name: LocalSystem
Image path: %SystemRoot%\system32\svchost.exe -k netsvcs
Image size: 12800
Image MD5: 333A4DB8410D8E24DB06D6AEBECDC7C2
Start: 2
Type: 32
Error Control: 1
Depends On services: RpcSs

Service (registry key): ctac32k
Display name: Creative AC3 Software Decoder
Image path: System32\drivers\ctac32k.sys
Image size: 127948
Image MD5: 4B6096745F72B4FD36514617E2EA5D37
Start: 3
Type: 1
Error Control: 1

Service (registry key): ctaud2k
Display name: Creative Audio Driver (WDM)
Image path: system32\drivers\ctaud2k.sys
Image size: 837548
Image MD5: 3576EC792347ED15699F6D830E0F5437
Start: 3
Type: 1
Error Control: 1

Service (registry key): ctljystk
Display name: Creative SBLive! Port de jeux
Image path: System32\DRIVERS\ctljystk.sys
Image size: 3712
Image MD5: 71007BD2E1E26927FE3E4EB00C0BEEDF
Start: 3
Type: 1
Error Control: 0

Service (registry key): ctprxy2k
Display name: Creative Proxy Driver
Image path: System32\drivers\ctprxy2k.sys
Image size: 11068
Image MD5: 097D42574E3C6D98CD5A2EE7647FA6BF
Start: 3
Type: 1
Error Control: 1

Service (registry key): ctsfm2k
Display name: Creative SoundFont Management Device Driver
Image path: System32\drivers\ctsfm2k.sys
Image size: 213860
Image MD5: C58A2507EF62B20B9BD670C666088B50
Start: 3
Type: 1
Error Control: 1

Service (registry key): dac2w2k
Start: 4
Type: 1
Error Control: 0

Service (registry key): dac960nt
Start: 4
Type: 1
Error Control: 1

Service (registry key): Dhcp
Display name: Client DHCP
Description: Gère la configuration réseau en inscrivant et en mettant à jour les adresses IP et les noms DNS.
Object name: LocalSystem
Image path: %SystemRoot%\System32\svchost.exe -k netsvcs
Image size: 12800
Image MD5: 333A4DB8410D8E24DB06D6AEBECDC7C2
Start: 2
Type: 32
Error Control: 1
Depends On services: Tcpip,Afd,NetBT

Service (registry key): Disk
Display name: Pilote de disque
Image path: System32\DRIVERS\disk.sys
Image size: 33664
Image MD5: 43A10CD19D648E57ED039A6CAA667A56
Start: 0
Type: 1
Error Control: 1
Depends On group: "SCSI miniport"

Service (registry key): Diskeeper
Display name: Diskeeper
Description: Contrôle de service Diskeeper
Object name: LocalSystem
Image path: C:\Program Files\Executive Software\DiskeeperWorkstation\DKService.exe
Image size: 253952
Image MD5: 5A715FC7A5E222D8E987B2D903885B0B
Start: 2
Type: 272
Error Control: 0
Depends On services: RPCSS

Service (registry key): DLHOST
Display name: DynamicHost
Description: DynamicHost
Object name: LocalSystem
Start: 4
Type: 272
Error Control: 0

Service (registry key): dmadmin
Display name: Service d'administration du Gestionnaire de disque logique
Description: Configure les lecteurs de disque durs et les volumes. Le service ne s'exécute que pour les processus de configurations puis s'arrête.
Object name: LocalSystem
Image path: %SystemRoot%\System32\dmadmin.exe /com
Image size: 205312
Image MD5: F03B6377293A2CA253E02366B6F817D3
Start: 3
Type: 32
Error Control: 1
Depends On services: RpcSs,PlugPlay,DmServer

Service (registry key): dmboot
Image path: System32\drivers\dmboot.sys
Image size: 781440
Image MD5: 625043857173294DF9239909FC37CCD1
Start: 4
Type: 1
Error Control: 1

Service (registry key): dmio
Display name: Pilote de Gestionnaire de disque logique
Image path: System32\drivers\dmio.sys
Image size: 147456
Image MD5: C85A01B45E107B2D80A1263B365E62B5
Start: 0
Type: 1
Error Control: 1

Service (registry key): dmload
Image path: System32\drivers\dmload.sys
Image size: 5888
Image MD5: E9317282A63CA4D188C0DF5E09C6AC5F
Start: 0
Type: 1
Error Control: 1

Service (registry key): dmserver
Display name: Gestionnaire de disque logique
Description: Détecte et analyse de nouveaux lecteurs de disque durs et envoie les informations de volume de disque au service gestionnaire administratif de disque logique pour la configuration. Si ce service est arrêté, l'état des disques dynamiques et les informations de configuration peuvent devenir obsolètes. Si ce service est désactivé, tout service en dépendant explicitement ne démarrera pas.
Object name: LocalSystem
Image path: %SystemRoot%\System32\svchost.exe -k netsvcs
Image size: 12800
Image MD5: 333A4DB8410D8E24DB06D6AEBECDC7C2
Start: 2
Type: 32
Error Control: 1
Depends On services: RpcSs,PlugPlay

Service (registry key): DMusic
Display name: Synthétiseur DLS du noyau Microsoft
Image path: system32\drivers\DMusic.sys
Image size: 50048
Image MD5: EF05974D47D56FA8387F170F05BAE5E7
Start: 3
Type: 1
Error Control: 1

Service (registry key): Dnscache
Display name: Client DNS
Description: Résout et met en cache les noms DNS pour cet ordinateur. Si ce service est arrêté, l'ordinateur ne pourra pas résoudre les noms DNS et trouver les contrôleurs de domaine Active Directory. Si ce service est désactivé, les services qui en dépendent ne pourront pas démarrer.
Object name: NT AUTHORITY\NetworkService
Image path: %SystemRoot%\System32\svchost.exe -k NetworkService
Image size: 12800
Image MD5: 333A4DB8410D8E24DB06D6AEBECDC7C2
Start: 2
Type: 32
Error Control: 1
Depends On services: Tcpip

Service (registry key): dpti2o
Start: 4
Type: 1
Error Control: 1

Service (registry key): drmkaud
Display name: Filtre de décodeur DRM (Noyau Microsoft)
Image path: system32\drivers\drmkaud.sys
Image size: 2816
Image MD5: AA94E0CBD79DB63100D0EAE061EB69BC
Start: 3
Type: 1
Error Control: 1

Service (registry key): emupia
Display name: E-mu Plug-in Architecture Driver
Image path: System32\drivers\emupia2k.sys
Image size: 156604
Image MD5: A9D94B89372F3F9609A1A5EEC631A260
Start: 3
Type: 1
Error Control: 1

Service (registry key): ERSvc
Display name: Service de rapport d'erreurs
Description: Active le rapport d'erreurs pour les services et les applications s'exécutant sur des environnements non standard.
Object name: LocalSystem
Image path: %SystemRoot%\System32\svchost.exe -k netsvcs
Image size: 12800
Image MD5: 333A4DB8410D8E24DB06D6AEBECDC7C2
Start: 2
Type: 32
Error Control: 0
Depends On services: RpcSs

Service (registry key): es1371
Display name: Creative AudioPCI (ES1371,ES1373) (WDM)
Image path: system32\drivers\es1371mp.sys
Image size: 40704
Image MD5: A55DD7D8CED5D2624A9EE2DDA7BE0319
Start: 3
Type: 1
Error Control: 1

Service (registry key): Eventlog
Display name: Journal des événements
Description: Active les messages d'événements émis par les programmes fonctionnant sous Windows et les composants devant être affichés dans l'observateur d'événements. Ce service ne peut être arrêté.
Object name: LocalSystem
Image path: %SystemRoot%\system32\services.exe
Image size: 101888
Image MD5: FC0691097471EE374907E1024EDCBD43
Start: 2
Type: 32
Error Control: 1

Service (registry key): EventSystem
Display name: Système d'événements de COM+
Description: Prend en charge le service de notification d'événements système (SENS, System Event Notification Service), qui fournit une distribution automatique d'événements aux composants COM (Component Object Model) abonnés. Si le service est arrêté, SENS sera fermé et ne pourra fournir des informations d'ouverture et de fermeture de session. Si ce service est désactivé, le démarrage de tout service qui en dépend explicitement échouera.
Object name: LocalSystem
Image path: C:\WINDOWS\System32\svchost.exe -k netsvcs
Image size: 12800
Image MD5: 333A4DB8410D8E24DB06D6AEBECDC7C2
Start: 3
Type: 32
Error Control: 1
Depends On services: RPCSS

Service (registry key): ewido security suite control
Display name: ewido security suite control
Object name: LocalSystem
Image path: C:\Documents and Settings\sabrina\Bureau\Nouveau dossier (2)\ewido anti-malware\ewidoctrl.exe
Image size: 13888
Image MD5: 26830B750372AB1BF29C95DEEBEB802F
Start: 2
Type: 272
Error Control: 0

Service (registry key): ewido security suite driver
Display name: ewido security suite driver
Image path: \??\C:\Documents and Settings\sabrina\Bureau\Nouveau dossier (2)\ewido anti-malware\guard.sys
Image size: 3072
Image MD5: 2FF233E31AEFFF332F187E8E2ABFA6C5
Start: 1
Type: 1
Error Control: 0

Service (registry key): ewido security suite guard
Display name: ewido security suite guard
Object name: LocalSystem
Image path: C:\Documents and Settings\sabrina\Bureau\Nouveau dossier (2)\ewido anti-malware\ewidoguard.exe
Image size: 151616
Image MD5: 34A50717AD686900F078F5208F8E908E
Start: 2
Type: 272
Error Control: 0

Service (registry key): exec1x.exe
Display name: execute1x.exe
Object name: LocalSystem
Start: 4
Type: 272
Error Control: 0

Service (registry key): Fastfat
Start: 4
Type: 2
Error Control: 1

Service (registry key): FastUserSwitchingCompatibility
Display name: Compatibilité avec le Changement rapide d'utilisateur
Description: Fournit un syst

Utilisateur anonyme · Answer

* Télécharge http://www.atribune.org/ccount/click.php?id=4"VundoFix.exe sur ton Bureau.
* Double-clique VundoFix.exe afin de le lancer.
* Clique sur le bouton Scan for Vundo.
* Lorsque le scan est complété, clique sur le bouton [b]Remove Vundo.
* Une invite te demandera si tu veux supprimer les fichiers, clique YES
* Après avoir cliqué "Yes", le Bureau disparaîtra un moment lors de la suppression des fichiers.
* Tu verras une invite qui t'annonce que ton PC va s'éteindre ("shutdown"); clique OK
* Démarre ton PC à nouveau.
* Copie/colle le contenu du rapport situé dans C:\vundofix.txtain

a+

biggup · Answer

reil n'y a aucune infection vundo

Utilisateur anonyme · Answer

Re,

Comme on as supprimer des dll, essayons ainsi:

Crées un fichier texte (avec le bloc-note) et copie/colle ce texte dedans :

REGEDIT4

[-HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{B313D637-F405-4052-AC37-E2119AB3C8F8}]

[-HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{EFDAC3FE-F44A-4030-8589-1E23BC6573D5}]

[-HKEY_CLASSES_ROOT\CLSID\{B313D637-F405-4052-AC37-E2119AB3C8F8}]

[-HKEY_CLASSES_ROOT\CLSID\{B8B55274-0F9A-41E5-9067-A3539BD9E860}]

[-HKEY_CLASSES_ROOT\CLSID\{44240BB5-BD7D-4D49-A1AA-8AB0F3D3CB44}]

[-HKEY_CLASSES_ROOT\MSEvents.MSEvents]

[-HKEY_CLASSES_ROOT\MSEvents.MSEvents.1]

[-HKEY_LOCAL_MACHINE\SOFTWARE\Classes\MSEvents.MSEvents]

[-HKEY_LOCAL_MACHINE\SOFTWARE\Classes\MSEvents.MSEvents.1]

- Assures-toi de laisser une ligne vide à la fin du fichier
- Enregistre-le sous le nom de bigup.reg
- Et indique tout type de fichier
- Double-clic sur bigup.reg et accepte la fusion à ton registre.
-Relance spybot et remet le rapport

a demain

biggup · Answer

re régis, voici le spybot

--- Search result list ---
MaxSearch: Root class (Clé du registre, fixing failed)
HKEY_LOCAL_MACHINE\Software\Classes\XBTB07618.XBTB07618

MaxSearch: Root class (Clé du registre, fixing failed)
HKEY_LOCAL_MACHINE\Software\Classes\ToolBand.XBTP07618

MaxSearch: Root class (Clé du registre, fixing failed)
HKEY_LOCAL_MACHINE\Software\Classes\XBTB07618.IEToolbar

DyFuCA: Root class (Clé du registre, fixing failed)
HKEY_LOCAL_MACHINE\Software\Classes\DyFuCA_BH.BHObj

VirtuMonde: Root class (Clé du registre, fixing failed)
HKEY_LOCAL_MACHINE\Software\Classes\MSEvents.MSEvents

DoubleClick: Cookie traceur (Firefox: default) (Cookie, fixed)

--- Spybot - Search & Destroy version: 1.4 (build: 20050523) ---

2005-12-27 unins000.exe (51.41.0.0)
2005-05-31 blindman.exe (1.0.0.1)
2005-05-31 SpybotSD.exe (1.4.0.3)
2005-05-31 TeaTimer.exe (1.4.0.2)
2005-05-31 Update.exe (1.4.0.0)
2005-05-31 advcheck.dll (1.0.2.0)
2005-05-31 aports.dll (2.1.0.0)
2005-05-31 borlndmm.dll (7.0.4.453)
2005-05-31 delphimm.dll (7.0.4.453)
2005-05-31 SDHelper.dll (1.4.0.0)
2005-05-31 Tools.dll (2.0.0.2)
2005-05-31 UnzDll.dll (1.73.1.1)
2005-05-31 ZipDll.dll (1.73.2.0)
2006-01-13 Includes\Cookies.sbi (*)
2006-01-13 Includes\Dialer.sbi (*)
2006-01-13 Includes\Hijackers.sbi (*)
2006-01-13 Includes\Keyloggers.sbi (*)
2006-01-13 Includes\Malware.sbi (*)
2006-01-13 Includes\Revision.sbi (*)
2006-01-13 Includes\Security.sbi (*)
2006-01-13 Includes\Spybots.sbi (*)
2006-01-13 Includes\Trojans.sbi (*)
2005-02-17 Includes\Tracks.uti
2006-01-13 Includes\PUPS.sbi (*)

--- System information ---
Windows XP (Build: 2600)
/ DataAccess: Microsoft Data Access Components KB870669
/ DataAccess: Patch Available For XMLHTTP Vulnerability
/ DataAccess: Patch Available For XMLHTTP Vulnerability
/ DataAccess: Security Update for Microsoft Data Access Components
/ Windows Media Player: Correctif pour le Lecteur Windows Media [Voir Q828026 pour plus d'informations]
/ Windows Media Player / SP0: Correctif pour le Lecteur Windows Media [Voir Q828026 pour plus d'informations]
/ Windows Media Player: Windows Media Update 320920
/ Windows XP / SP1: Windows XP Hotfix - KB821557
/ Windows XP / SP1: Windows XP Hotfix - KB823182
/ Windows XP / SP1: Windows XP Hotfix - KB824105
/ Windows XP / SP1: Correctif Windows XP - KB824141
/ Windows XP / SP1: Correctif Windows XP - KB828035
/ Windows XP / SP1 / Q309521: Windows XP Hotfix (SP1) [See Q309521 for more information]
/ Windows XP / SP1: Windows XP Hotfix (SP1) [See Q311889 for more information]
/ Windows XP / SP1: Windows XP Hotfix (SP1) [See Q311967 for more information]
/ Windows XP / SP1: Windows XP Hotfix (SP1) [See Q313450 for more information]
/ Windows XP / SP1: Windows XP Hotfix (SP1) [See Q314862 for more information]
/ Windows XP / SP1: Windows XP Hotfix (SP1) [See Q315000 for more information]
/ Windows XP / SP1: Windows XP Hotfix (SP1) [See Q315403 for more information]
/ Windows XP / SP1: Windows XP Hotfix (SP1) [See Q317277 for more information]
/ Windows XP / SP1: Windows XP Hotfix (SP1) [See Q324096 for more information]
/ Windows XP / SP1: Windows XP Hotfix (SP1) [See Q326830 for more information]
/ Windows XP / SP1: Windows XP Hotfix (SP1) [See Q328940 for more information]
/ Windows XP / SP1: Windows XP Hotfix (SP1) [See Q329048 for more information]
/ Windows XP / SP1: Windows XP Hotfix (SP1) Q329170
/ Windows XP / SP1: Windows XP Hotfix (SP1) [See Q329390 for more information]
/ Windows XP / SP1: Windows XP Hotfix (SP1) [See Q329441 for more information]
/ Windows XP / SP1: Windows XP Hotfix (SP1) [See Q329834 for more information]
/ Windows XP / SP1: Windows XP Hotfix (SP1) Q810577
/ Windows XP / SP1: Windows XP Hotfix (SP1) Q811493
/ Windows XP / SP1: Windows XP Hotfix (SP1) Q811630
/ Windows XP / SP1: Windows XP Hotfix (SP1) Q815021
/ Windows XP / SP1: Windows XP Hotfix (SP1) Q817606
/ Windows XP / SP1: Windows XP Hotfix (SP1) Q819696
/ Windows XP / SP2: Correctif Windows XP - KB810217
/ Windows XP / SP2: Correctif Windows XP - KB823559
/ Windows XP / SP2: Correctif Windows XP - KB825119
/ Windows XP / SP2: Correctif Windows XP - KB833987
/ Windows XP / SP2: Correctif Windows XP - KB839643
/ Windows XP / SP2: Correctif Windows XP - KB839645
/ Windows XP / SP2: Correctif Windows XP - KB840315
/ Windows XP / SP2: Correctif Windows XP - KB841873
/ Windows XP / SP2: Correctif Windows XP - KB842773
/ Windows XP / SP2: Correctif Windows XP - KB883357
/ Windows XP / SP2: Package du correctif Windows XP [voir Q323255 pour plus de détails]

--- Startup entries list ---
Located: HK_LM:Run, avast!
command: C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
file: C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
size: 98352
MD5: 0a9883be214c4f7a65b6dff129f37b6e

Located: HK_LM:Run, Openwares LiveUpdate
command: C:\Program Files\LiveUpdate\LiveUpdate.exe
file: C:\Program Files\LiveUpdate\LiveUpdate.exe
size: 61440
MD5: 93cf2b93f02e52cd6fffa567249f3f73

Located: HK_LM:Run, SunJavaUpdateSched
command: C:\Program Files\Java\jre1.5.0_06\bin\jusched.exe
file: C:\Program Files\Java\jre1.5.0_06\bin\jusched.exe
size: 36975
MD5: 61a3a9d5d98bf0331df5b716144a8100

Located: HK_LM:Run, Zone Labs Client
command: C:\karim\ZoneAlarm\ZoneAlarm\zlclient.exe
file: C:\karim\ZoneAlarm\ZoneAlarm\zlclient.exe
size: 755472
MD5: e85c5dc2659f562c496e839649aa7200

Located: HK_CU:Run, msnmsgr
command: "C:\Program Files\MSN Messenger\msnmsgr.exe" /background
file: C:\Program Files\MSN Messenger\msnmsgr.exe
size: 6815744
MD5: d846554575a9f571d6b891153faa0c50

Located: Démarrage (utilisateur), Microsoft Office.lnk
command: C:\Program Files\Microsoft Office\Office\Osa9.exe
file: C:\Program Files\Microsoft Office\Office\Osa9.exe
size: 65588
MD5: 09ec24043108b072e01a03a029239324

Located: System.ini, crypt32chain
command: crypt32.dll
file: crypt32.dll

Located: System.ini, cryptnet
command: cryptnet.dll
file: cryptnet.dll

Located: System.ini, cscdll
command: cscdll.dll
file: cscdll.dll

Located: System.ini, ScCertProp
command: wlnotify.dll
file: wlnotify.dll

Located: System.ini, Schedule
command: wlnotify.dll
file: wlnotify.dll

Located: System.ini, sclgntfy
command: sclgntfy.dll
file: sclgntfy.dll

Located: System.ini, SensLogn
command: WlNotify.dll
file: WlNotify.dll

Located: System.ini, termsrv
command: wlnotify.dll
file: wlnotify.dll

Located: System.ini, wlballoon
command: wlnotify.dll
file: wlnotify.dll

--- Browser helper object list ---
{761497BB-D6F0-462C-B6EB-D4DAF1D92D43} (SSVHelper Class)
BHO name:
CLSID name: SSVHelper Class
Path: C:\Program Files\Java\jre1.5.0_06\bin\
Long name: ssv.dll
Short name:
Date (created): 10/11/2005 13:03:56
Date (last access): 17/01/2006
Date (last write): 10/11/2005 13:22:10
Filesize: 184423
Attributes: archive
MD5: F01726F7CA8538FDD4663C9DB8FEAEDC
CRC32: 0111B892
Version: 5.0.60.5

--- ActiveX list ---
{9A9307A0-7DA4-4DAF-B042-5009F29E09E1} (ActiveScan Installer Class)
DPF name:
CLSID name: ActiveScan Installer Class
Installer: C:\WINDOWS\Downloaded Program Files\asinst.inf
Codebase: http://acs.pandasoftware.com/activescan/as5free/asinst.cab
description:
classification: Open for discussion
known filename: ASINST.DLL
info link:
info source: Safer Networking Ltd.
Path: C:\WINDOWS\Downloaded Program Files\
Long name: asinst.dll
Short name:
Date (created): 19/12/2005 13:35:32
Date (last access): 17/01/2006
Date (last write): 19/12/2005 13:35:32
Filesize: 135168
Attributes: archive
MD5: 20C07B231040B49AFCE82397BFC35F9C
CRC32: 9301377D
Version: 58.4.0.0

{C81B5180-AFD1-41A3-97E1-99E8D254DB98} ()
DPF name:
CLSID name:
Installer: C:\WINDOWS\Downloaded Program Files\cssweb.inf
Codebase: http://www.commandondemand.com/eval/cod/cabs/cssweb.cab
description: CSS Web Installer Class
classification: Open for discussion
known filename: CSSWEB.DLL
info link:
info source: Patrick M. Kolla

{CAFEEFAC-0015-0000-0006-ABCDEFFEDCBA} (Java Runtime Environment 1.5.0)
DPF name: Java Runtime Environment 1.5.0
CLSID name: Java Plug-in 1.5.0_06
Installer:
Codebase: http://java.sun.com/update/1.5.0/jinstall-1_5_0_06-windows-i586.cab
Path: C:\Program Files\Java\jre1.5.0_06\bin\
Long name: NPJPI150_06.dll
Short name: NPJPI1~1.DLL
Date (created): 10/11/2005 13:03:56
Date (last access): 17/01/2006
Date (last write): 10/11/2005 13:22:10
Filesize: 69746
Attributes: archive
MD5: D2CF6BB5E9020E6707B62575F8083954
CRC32: 7F39DC54
Version: 5.0.60.5

{CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} (Java Runtime Environment 1.5.0)
DPF name: Java Runtime Environment 1.5.0
CLSID name: Java Plug-in 1.5.0_06
Installer:
Codebase: http://java.sun.com/update/1.5.0/jinstall-1_5_0_06-windows-i586.cab
Path: C:\Program Files\Java\jre1.5.0_06\bin\
Long name: NPJPI150_06.dll
Short name: NPJPI1~1.DLL
Date (created): 10/11/2005 13:03:56
Date (last access): 17/01/2006
Date (last write): 10/11/2005 13:22:10
Filesize: 69746
Attributes: archive
MD5: D2CF6BB5E9020E6707B62575F8083954
CRC32: 7F39DC54
Version: 5.0.60.5

--- Process list ---
PID: 0 ( 0) [System]
PID: 316 ( 4) \SystemRoot\System32\smss.exe
PID: 372 ( 316) \??\C:\WINDOWS\system32\csrss.exe
PID: 396 ( 316) \??\C:\WINDOWS\system32\winlogon.exe
PID: 440 ( 396) C:\WINDOWS\system32\services.exe
size: 101888
MD5: FC0691097471EE374907E1024EDCBD43
PID: 452 ( 396) C:\WINDOWS\system32\lsass.exe
size: 11776
MD5: 2C2431B30A629123C1757582C9D93F38
PID: 612 ( 440) C:\WINDOWS\system32\svchost.exe
size: 12800
MD5: 333A4DB8410D8E24DB06D6AEBECDC7C2
PID: 636 ( 440) C:\WINDOWS\System32\svchost.exe
size: 12800
MD5: 333A4DB8410D8E24DB06D6AEBECDC7C2
PID: 696 ( 440) C:\WINDOWS\System32\svchost.exe
size: 12800
MD5: 333A4DB8410D8E24DB06D6AEBECDC7C2
PID: 712 ( 440) C:\WINDOWS\System32\svchost.exe
size: 12800
MD5: 333A4DB8410D8E24DB06D6AEBECDC7C2
PID: 856 ( 440) C:\WINDOWS\system32\spoolsv.exe
size: 51200
MD5: B1CE5287F096895D9BE26EB86F4D5FAF
PID: 984 ( 440) C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
size: 53248
MD5: 435D862E96FE19612093177CF6618F4E
PID: 1000 ( 440) C:\Program Files\Alwil Software\Avast4\ashServ.exe
size: 98352
MD5: C8C0AEE5D0585457FF6E318E8BB9289D
PID: 1016 ( 440) C:\WINDOWS\System32\CTsvcCDA.exe
size: 44032
MD5: 3C8B6609712F4FF78E521F6DCFC4032B
PID: 1040 ( 440) C:\Program Files\Executive Software\DiskeeperWorkstation\DKService.exe
size: 253952
MD5: 5A715FC7A5E222D8E987B2D903885B0B
PID: 1068 ( 440) C:\Documents and Settings\sabrina\Bureau\Nouveau dossier (2)\ewido anti-malware\ewidoctrl.exe
size: 13888
MD5: 26830B750372AB1BF29C95DEEBEB802F
PID: 1088 ( 440) C:\Documents and Settings\sabrina\Bureau\Nouveau dossier (2)\ewido anti-malware\ewidoguard.exe
size: 151616
MD5: 34A50717AD686900F078F5208F8E908E
PID: 1192 ( 440) C:\WINDOWS\System32\svchost.exe
size: 12800
MD5: 333A4DB8410D8E24DB06D6AEBECDC7C2
PID: 1224 ( 440) C:\WINDOWS\SYSTEM32\ZONELABS\vsmon.exe
size: 1693448
MD5: 7E9C8F0BF97910E04A078799837BB6F2
PID: 1280 ( 440) C:\WINDOWS\System32\MsPMSPSv.exe
size: 53520
MD5: 581176F60885AEF8F78C6E38DCC3CDF9
PID: 196 ( 440) C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
size: 360496
MD5: EB51923A762779247C776A551C546898
PID: 344 ( 440) C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
size: 241712
MD5: 8C50FFD2642FD97DAC0009280A438570
PID: 4088 (4068) C:\WINDOWS\Explorer.EXE
size: 1005056
MD5: 9E20A8EF0CA524446AFEE29F4423CC8F
PID: 1320 (4088) C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
size: 98352
MD5: 0A9883BE214C4F7A65B6DFF129F37B6E
PID: 1164 (4088) C:\Program Files\Java\jre1.5.0_06\bin\jusched.exe
size: 36975
MD5: 61A3A9D5D98BF0331DF5B716144A8100
PID: 1272 (4088) C:\karim\ZoneAlarm\ZoneAlarm\zlclient.exe
size: 755472
MD5: E85C5DC2659F562C496E839649AA7200
PID: 2436 (4088) C:\Documents and Settings\sabrina\Bureau\Nouveau dossier (2)\Spybot - Search & Destroy\SpybotSD.exe
size: 4393096
MD5: 09CA174A605B480318731E691DC98539
PID: 2704 (4088) C:\Program Files\MSN Messenger\msnmsgr.exe
size: 6815744
MD5: D846554575A9F571D6B891153FAA0C50
PID: 4 ( 0) System

--- Browser start & search pages list ---
Spybot - Search & Destroy browser pages report, 17/01/2006 22:39:57

HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main\Search Page
http://www.google.com
HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main\Start Page
http://www.google.fr/
HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main\First Home Page
http://www.aol.fr
HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Search\SearchAssistant Explorer\Main\Default_Search_URL
about:blank
HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Main\Start Page
http://www.microsoft.com/isapi/redir.dll?prd={SUB_PRD}&clcid={SUB_CLSID}&pver={SUB_PVER}&ar=home
HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Main\Default_Page_URL
http://www.microsoft.com/isapi/redir.dll?prd=ie&pver=6&ar=msnhome
HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Main\Default_Search_URL
http://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Search\SearchAssistant
http://ie.search.msn.com/{SUB_RFC1766}/srchasst/srchasst.htm
HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Search\CustomizeSearch
http://ie.search.msn.com/{SUB_RFC1766}/srchasst/srchcust.htm

--- Winsock Layered Service Provider list ---

--- Uninstall list ---
a-squared Free 1.6.1 1.6 (a-squared Free_is1)
install location: C:\karim\a-squared\
uninstall cmd: "C:\karim\a-squared\unins000.exe"
publisher: Emsi Software GmbH
comments: a-squared
help link: http://forum.emsisoft.com

(AddressBook)
uninstall cmd: "C:\Program Files\Outlook Express\setup50.exe" /APP:WAB /CALLER:IE50 /UNINSTALL /PROMPT

Serveur AMS (AMS Server)
uninstall cmd: C:\WINDOWS\IsUn040c.exe -f"C:\Program Files\Serveur AMS\AMSSERVR.isu"

(AudioHQ)
uninstall cmd: RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{FD851F7E-F887-405D-9E1C-488811113EF3}\setup.exe" -l0x40c /remove

avast! Antivirus 4.6 (avast!)
version (major): 4
version (minor): 6
install location: C:\PROGRA~1\ALWILS~1\Avast4
install source: C:\PROGRA~1\ALWILS~1\Avast4\setup
uninstall cmd: rundll32 C:\PROGRA~1\ALWILS~1\Avast4\Setup\setiface.dll,RunSetup
publisher: Alwil Software
help link: http://www.avast.com

(Branding)

Canon PIXMA iP3000 (CANONBJ_Deinstall_CNMCP61.DLL)
uninstall cmd: C:\WINDOWS\System32\CNMCP61.exe "-PRINTERNAMECanon PIXMA iP3000" "-HELPERDLLC:\BJPrinter\CNMWINDOWS\Canon PIXMA iP3000 Installer\Inst2\cnmis.dll" "-RCDLLC:\BJPrinter\CNMWINDOWS\Canon PIXMA iP3000 Installer\Inst2\cnmi040c.dll"

CCleaner (remove only) (CCleaner)
uninstall cmd: "C:\Documents and Settings\sabrina\Bureau\Nouveau dossier\CCleaner\uninst.exe"

OLITEC PCI 56K V2 Modem (Conexant SoftK56 Modem)
uninstall cmd: infunist.exe

(Connection Manager)

Cosmo Player 2.1 (38329) (Cosmo Player 2.1)
uninstall cmd: C:\WINDOWS\IsUn040c.exe -f"C:\Program Files\CosmoSoftware\CosmoPlayer\CosmoPlayer21.isu"

(Creative Configurator)
uninstall cmd: C:\WINDOWS\IsUn040c.exe -f"C:\Program Files\Creative\Audio\Configurator.isu"

(Creative Dos Drivers)
uninstall cmd: C:\WINDOWS\IsUn040c.exe -f"C:\Program Files\Creative\Audio\Dos.isu"

(Creative Installer Setup)
uninstall cmd: C:\WINDOWS\IsUn040c.exe -f"C:\Program Files\Creative\Uninstall\Installer.isu"

(Creative MiniDisc Center)
uninstall cmd: RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{AC157741-3285-4D6A-B934-9174587A3493}\setup.exe" -l0x40c /remove

(Creative Mixer)
uninstall cmd: C:\WINDOWS\IsUn040c.exe -f"C:\Program Files\Creative\Audio\CTMixer.isu"

(Creative PlayCenter 2.0)
uninstall cmd: RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{48E3A9E6-FA13-11D5-8CC9-00A0C98192B6}\setup.exe" -l0x40c /remove

(Creative Recorder)
uninstall cmd: RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{E7337A45-3FE5-4392-ABBB-26B794D060C9}\setup.exe" -l0x40c /remove

(Creative Restore Defaults)
uninstall cmd: RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{9A4D2983-4662-4387-BE3D-4CFC2FA9C100}\setup.exe" -l0x40c /remove

(Creative Surround Mixer 2)
uninstall cmd: RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{58582977-44D2-44A0-A09B-031CC2AE5938}\setup.exe" -l0x40c /remove

(Creative WaveStudio)
uninstall cmd: RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{435E969D-867E-4364-8E74-3DC8A69C5BDB}\setup.exe" -l0x40c /remove

(Diagnostics2)
uninstall cmd: RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{A731533B-B325-4D9C-91A4-D93C8E294C19}\setup.exe" -l0x40c /remove

Canon Utilities Easy-PhotoPrint (Easy-PhotoPrint)
uninstall cmd: C:\Program Files\Canon\Easy-PhotoPrint\uninst.exe C:\Program Files\Canon\Easy-PhotoPrint\uninst.ini

Canon Utilities Easy-PrintToolBox (Easy-PrintToolBox)
uninstall cmd: C:\WINDOWS\BJPSUNST.EXE

Easy-WebPrint (Easy-WebPrint)
uninstall cmd: C:\WINDOWS\IsUn040c.exe -f"C:\Program Files\Canon\Easy-WebPrint\Uninst.isu"

Encyclopédie Microsoft Encarta 99 99F (Encarta99F)
version (major): 6
install location: "C:\Program Files\Microsoft Référence\Encyclopédie Encarta"
install source: "D:"
uninstall cmd: RunDll32 C:\PROGRA~1\MICROS~4\ENCYCL~1\UNENC99.DLL,Uninstall C:\PROGRA~1\MICROS~4\ENCYCL~1\SETUP99F\INST99F.LOG
publisher: Microsoft Corporation

ewido anti-malware (ewidoantimalware)
install location: C:\Documents and Settings\sabrina\Bureau\Nouveau dossier (2)\ewido anti-malware
uninstall cmd: C:\Documents and Settings\sabrina\Bureau\Nouveau dossier (2)\ewido anti-malware\Uninstall.exe
publisher: ewido networks
help link: http://www.ewido.net

(expinst)

GeForce2 GTS Experience (GeForce2 GTS Experience)
uninstall cmd: C:\WINDOWS\IsUninst.exe -f"C:\Program Files\NVidia Corporation\GeForce2 GTS Experience\Uninst.isu"

HijackThis 1.99.1 1.99.1 (HijackThis)
uninstall cmd: C:\Documents and Settings\sabrina\Bureau\Nouveau dossier (2)\HijackThis.exe /uninstall
publisher: Soeperman Enterprises Ltd.

Internet Explorer Q867801 (ieupdate)
uninstall cmd: C:\WINDOWS\ieuninst.exe C:\WINDOWS\INF\Q867801.inf

Java 2 Runtime Environment Standard Edition v1.3.1_03 (JRE 1.3.1_03)
uninstall cmd: C:\WINDOWS\IsUninst.exe -f"C:\Program Files\JavaSoft\JRE\1.3.1_03\Uninst.isu"

Kaspersky On-line Scanner 5.0.67.0 (Kaspersky On-line Scanner)
estimated size: 6040
install location: C:\WINDOWS\System32\KASPER~1\KASPER~1
uninstall cmd: C:\WINDOWS\System32\KASPER~1\KASPER~1\kavuninstall.exe
publisher: Kaspersky Lab
contact: Customer Support Department
help link: http://www.kaspersky.com/support.asp

Microsoft Data Access Components KB870669 (KB870669)
uninstall cmd: C:\WINDOWS\muninst.exe C:\WINDOWS\INF\KB870669.inf
publisher: Microsoft Corporation
help link: http://support.microsoft.com?kbid=KB870669

Correctif Windows XP - KB883357 20040804.165131 (KB883357)
uninstall cmd: C:\WINDOWS\$NtUninstallKB883357$\spuninst\spuninst.exe
publisher: Microsoft Corporation
help link: http://support.microsoft.com?kbid=883357

LiveUpdate 2.6 (Symantec Corporation) 2.6.14.0 (LiveUpdate)
install location: C:\Program Files\Symantec\LiveUpdate
uninstall cmd: C:\Program Files\Symantec\LiveUpdate\LSETUP.EXE /U
publisher: Symantec Corporation

Logiciel iTouch de Logitech (Logitech iTouch)
uninstall cmd: C:\WINDOWS\IsUn040c.exe -fC:\PROGRA~1\LOGITECH\ITOUCH\Uninst.isu -c"C:\PROGRA~1\LOGITECH\ITOUCH\LUnInst.dll

(Logitech Key Commander)
uninstall cmd: C:\WINDOWS\IsUn040c.exe -fC:\PROGRA~1\LOGITECH\ITOUCH\Uninst.isu -c"C:\PROGRA~1\LOGITECH\ITOUCH\LUnInst.dll

Macromedia Shockwave Player 10.1.0.11 (Macromedia Shockwave Player)
uninstall cmd: C:\WINDOWS\SYSTEM32\MACROMED\SHOCKW~3\UNWISE.EXE C:\WINDOWS\SYSTEM32\MACROMED\SHOCKW~3\INSTALL.LOG
publisher: Macromedia, Inc.
help link: http://www.macromedia.com/fr/support/shockwave

Mathcad 2000 Professionnel (Mathcad 2000 Professionnel)
uninstall cmd: C:\WINDOWS\IsUn040c.exe -f"C:\Program Files\MathSoft\Mathcad 2000 Professionnel\Uninst.isu"

CD-LabelPrint (MediaNavigation.CDLabelPrint)
install location: C:\Program Files\Canon\CD-LabelPrint\
uninstall cmd: "C:\Program Files\Canon\CD-LabelPrint\Uninstal.exe" Canon.CDLabelPrint.Application

MediaRing Talk 99 Release 7.0.0014 (MediaRing Talk 99 Release 7.0.0014)
uninstall cmd: C:\WINDOWS\preuninst.exe

(Midi Samples)
uninstall cmd: C:\WINDOWS\IsUn040c.exe -f"C:\Program Files\Creative\Audio\Midi.isu"

Mozilla Firefox (1.5) 1.5 (fr) (Mozilla Firefox (1.5))
install location: C:\Program Files\Mozilla Firefox
uninstall cmd: C:\WINDOWS\UninstallFirefox.exe /ua "1.5 (fr)"
publisher: Mozilla

Barre d'outils MSN (MSN Toolbar)
uninstall cmd: C:\Program Files\MSN Apps\MSN Toolbar\01.02.4000.1001\fr\mtbs.exe c

WinFast Windows 95/98/ME Display Drivers (NVIDIA)
uninstall cmd: rundll32.exe C:\WINDOWS\SYSTEM32\NVINST32.DLL,NvUninstall9x nvagp.inf

Outlook Express Q823353 (oeupdate)
uninstall cmd: C:\WINDOWS\oeuninst.exe C:\WINDOWS\INF\Q823353.inf

(PCHealth)
uninstall cmd: rundll32.exe setupapi.dll,InstallHinfSection DefaultUninstall 132 C:\WINDOWS\INF\PCHealth.inf

(PlayCenter)
uninstall cmd: C:\WINDOWS\IsUn040c.exe -f"C:\Program Files\Creative\Audio\PlayCenter\Player.isu"

PopUpCop 2.0.3.20 (PopUpCop)
uninstall cmd: C:\PROGRA~1\POPUPCOP\UNWISE.EXE /U C:\PROGRA~1\POPUPCOP\INSTALL.LOG
publisher: EdenSoft
help link: http://www.PopUpCop.com/help.html

Windows XP Hotfix (SP1) [See Q313450 for more information] (Q313450)
uninstall cmd: C:\WINDOWS\$NtUninstallQ313450$\spuninst\spuninst.exe

Windows XP Hotfix (SP1) Q329170 20030102.115458 (Q329170)
uninstall cmd: C:\WINDOWS\$NtUninstallQ329170$\spuninst\spuninst.exe
publisher: Microsoft Corporation
help link: Pour plus d'informations, consultez Q329170 à l'adresse http://support.microsoft.com

QuickTime (QuickTime)
uninstall cmd: C:\WINDOWS\unvise32qt.exe C:\WINDOWS\SYSTEM32\QuickTime\Uninstall.log

QuickTime for Windows (32-bit) (QuickTime32)
uninstall cmd: C:\WINDOWS\QTW32DEL.EXE

(Sevinst)

(ShockwaveFlash)

Sound Blaster AudioPCI (Sound Blaster AudioPCI)
uninstall cmd: C:\Program Files\Creative\Uninstall\CTUNINST.EXE /U:UNINST1.INI

(Sound Blaster Live! Pilotes Windows)
uninstall cmd: "C:\Program Files\Creative\SBLive\Program\Ctzapxx.EXE" /X /U /S /L:FRN

USB Monitor (USB Monitor)
uninstall cmd: C:\WINDOWS\uninst.exe -f"C:\Program Files\USB Monitor\DeIsL1.isu" -c"C:\Program Files\USB Monitor\_ISREG32.DLL"

VIAhm (VIAhm)
uninstall cmd: C:\WINDOWS\IsUninst.exe -fc:\VIAhm\Uninst.isu

Viewpoint Media Player (Remove Only) (ViewpointMediaPlayer)
uninstall cmd: C:\Program Files\Viewpoint\Viewpoint Media Player\mtsAxInstaller.exe /u

Winamp (remove only) (Winamp)
uninstall cmd: "C:\Program Files\Winamp\UninstWA.exe"

Désinstallation de Windows XP (Windows)
install location: C:\undo
uninstall cmd: %SYSTEMROOT%\system32\osuninst.exe

WinFox V1.0 Setup (WinFox V1.0 Setup)
uninstall cmd: C:\WINDOWS\IsUn040c.exe -f"C:\Program Files\Leadtek Research Inc.\WinFox V1.0 Setup\Uninst.isu"

Archiveur WinRAR (WinRAR archiver)
uninstall cmd: C:\Program Files\WinRAR\uninstall.exe

XingMPEG Player (XingMPEG Player)
uninstall cmd: C:\PROGRA~1\XING\XINGMP~1\UNINST.EXE C:\PROGRA~1\XING\XINGMP~1\INSTALL.LOG

ZoneAlarm 6.1.737.000 (ZoneAlarm)
uninstall cmd: C:\karim\ZoneAlarm\ZoneAlarm\zauninst.exe
publisher: Zone Labs, Inc
help link: C:\karim\ZoneAlarm\ZoneAlarm\Aide\zaclients.chm

Microsoft Office 2000 Premium 9.00.2720 ({0000040C-78E1-11D2-B60F-006097C998E7})
version: 150997664
version (major): 9
install date: 24/01/01
install source: D:\
uninstall cmd: MsiExec.exe /I{0000040C-78E1-11D2-B60F-006097C998E7}
publisher: Microsoft Corporation
help link: http://www.microsoft.com/support

Norton WMI Update 2005.1.2.20 ({1526D87C-A955-4FAB-BF18-697BA457E352})
version (major): 2005
version (minor): 1
estimated size: 2168
install date: 20050129
uninstall cmd: MsiExec.exe /X{1526D87C-A955-4FAB-BF18-697BA457E352}
publisher: Symantec Corporation

J2SE Runtime Environment 5.0 Update 4 1.5.0.40 ({3248F0A8-6813-11D6-A77B-00B0D0150040})
version: 17104896
version (major): 1
version (minor): 5
estimated size: 121345
install date: 20050820
install source: http://jdl.sun.com/webapps/download/GetFile/1.5.0_04-b05/windows-i586//
uninstall cmd: MsiExec.exe /I{3248F0A8-6813-11D6-A77B-00B0D0150040}
publisher: Sun Microsystems, Inc.
contact: http://java.com
help link: http://java.com
readme: C:\Program Files\Java\jre1.5.0_04\README.txt

J2SE Runtime Environment 5.0 Update 6 1.5.0.60 ({3248F0A8-6813-11D6-A77B-00B0D0150060})
version: 17104896
version (major): 1
version (minor): 5
estimated size: 122337
install date: 20051226
install source: http://jdl.sun.com/webapps/download/GetFile/1.5.0_06-b05/windows-i586//
uninstall cmd: MsiExec.exe /I{3248F0A8-6813-11D6-A77B-00B0D0150060}
publisher: Sun Microsystems, Inc.
contact: http://java.com
help link: http://java.com
readme: C:\Program Files\Java\jre1.5.0_06\README.txt

WebFldrs XP 9.50.5318 ({350C97B8-3D7C-4EE8-BAA9-00BCB3D54227})
version: 154277062
version (major): 9
version (minor): 50
estimated size: 2708
install date: 20030525
install source: C:\WINDOWS\System32\
publisher: Microsoft Corporation
help link: http://www.microsoft.com/windows

({435E969D-867E-4364-8E74-3DC8A69C5BDB})
uninstall cmd: RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{435E969D-867E-4364-8E74-3DC8A69C5BDB}\setup.exe" -l0x40c

({48E3A9E6-FA13-11D5-8CC9-00A0C98192B6})
uninstall cmd: RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{48E3A9E6-FA13-11D5-8CC9-00A0C98192B6}\setup.exe" -l0x40c

DiskeeperWorkstation 7.0.403.2 ({5187D2C3-BCB9-4450-83B9-5E0BC4B4AB8D})
version: 117440915
version (major): 7
estimated size: 3709
install date: 20040415
install source: C:\Program Files\Executive Software\Diskeeper Setup\
uninstall cmd: MsiExec.exe /I{5187D2C3-BCB9-4450-83B9-5E0BC4B4AB8D}
publisher: Executive Software International, Inc.
comments: Copyright 2002 Executive Software International, Inc. Tous droits réservés.
contact: Support technique
help link: http://www.execsoft.com
help telephone: Téléphone - États-Unis - 818-771-1600 Europe - +011-44-1342-327477 Japon - +32984-3845894

({58582977-44D2-44A0-A09B-031CC2AE5938})
uninstall cmd: RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{58582977-44D2-44A0-A09B-031CC2AE5938}\setup.exe" -l0x40c

Dragon NaturallySpeaking 7.1 7.10.200.092 ({6675E71B-9843-4971-BC15-18AB52801134})
version (major): 7
version (minor): 10
install location: C:\Program Files\ScanSoft\NaturallySpeaking
install source: D:\dragon\
uninstall cmd: C:\Program Files\InstallShield Installation Information\{6675E71B-9843-4971-BC15-18AB52801134}\setup.exe
publisher: ScanSoft
help link: http://www.ScanSoft.com/NaturallySpeaking/support/

Symantec Network Drivers Update 5.4.4.17 ({7169B8E4-2632-46B1-AA5F-167CB5FE5029})
version: 84148228
version (major): 5
version (minor): 4
estimated size: 2890
install date: 20050209
publisher: Symantec Corporation

MAX-FX Tools ({7299E7F8-6921-4588-9A83-9BB7B867706F})
uninstall cmd: RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\ENGINE\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{7299E7F8-6921-4588-9A83-9BB7B867706F}\SETUP.EXE"

TuneUp Utilities 2006 5.0.2332 ({868D7896-99D4-4513-BC62-2B3AD3E24926})
version: 83888412
version (major): 5
estimated size: 26606
install date: 20060117
install source: C:\Program Files\Fichiers communs\Wise Installation Wizard\
uninstall cmd: MsiExec.exe /I{868D7896-99D4-4513-BC62-2B3AD3E24926}
publisher: TuneUp Software
help link: www.tuneup.de

Sound Blaster Live! ({9115E7DB-3B29-445A-802D-11E0AA945B7F})
uninstall cmd: RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{9115E7DB-3B29-445A-802D-11E0AA945B7F}\SETUP.EXE" -l0x40c

({9A4D2983-4662-4387-BE3D-4CFC2FA9C100})
uninstall cmd: RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{9A4D2983-4662-4387-BE3D-4CFC2FA9C100}\setup.exe" -l0x40c

({A731533B-B325-4D9C-91A4-D93C8E294C19})
uninstall cmd: RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{A731533B-B325-4D9C-91A4-D93C8E294C19}\setup.exe" -l0x40c

MSN Messenger 7.0 7.0.0777 ({ABEB838C-A1A7-4C5D-B7E1-8B4314600777})
version: 117441289
version (major): 7
estimated size: 25402
install date: 20050421
uninstall cmd: MsiExec.exe /I{ABEB838C-A1A7-4C5D-B7E1-8B4314600777}
publisher: Microsoft Corporation

({AC157741-3285-4D6A-B934-9174587A3493})
uninstall cmd: RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{AC157741-3285-4D6A-B934-9174587A3493}\setup.exe" -l0x40c

PC-Link VTech® (Masterpad®) ({B991EED6-5106-11D5-8F02-0000E8A35E52})
uninstall cmd: RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\ENGINE\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{B991EED6-5106-11D5-8F02-0000E8A35E52}\SETUP.EXE" anything

Norton AntiVirus Corporate Edition 7.6.0.0000 ({BD12EB47-DBDF-11D3-BEEA-00A0CC272509})
version: 117833728
version (major): 7
version (minor): 6
estimated size: 75338
install date: 20020314
install source: D:\CD2\NAVCORP\ROLLOUT\AVSERVER\CLIENTS\WIN32\
uninstall cmd: MsiExec.exe /I{BD12EB47-DBDF-11D3-BEEA-00A0CC272509}
publisher: Symantec Corporation
contact:
help link: http://www.symantec.com
help telephone:

Alcatel SpeedTouch USB Software ({D41FAAA9-8048-4906-86B2-9AADEA1FA0B7})
uninstall cmd: RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\ENGINE\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{D41FAAA9-8048-4906-86B2-9AADEA1FA0B7}\SETUP.EXE" -Control_Panel

Canon PhotoRecord 02.02.00013 ({D958FAC4-BAE0-4B1D-A42E-DE9BFDE7DDEE})
version: 33685517
version (major): 2
version (minor): 2
estimated size: 97842
install date: 20050130
install source: D:\PREC2\
uninstall cmd: MsiExec.exe /X{D958FAC4-BAE0-4B1D-A42E-DE9BFDE7DDEE}
publisher: Cisra

({E7337A45-3FE5-4392-ABBB-26B794D060C9})
uninstall cmd: RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{E7337A45-3FE5-4392-ABBB-26B794D060C9}\setup.exe" -l0x40c

PCLink for GSM Ver.1.0 ({F3BF93D3-25E7-11D6-B496-0050BF282FBC})
uninstall cmd: RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\ENGINE\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{F3BF93D3-25E7-11D6-B496-0050BF282FBC}\SETUP.EXE" -l0x9

({FD851F7E-F887-405D-9E1C-488811113EF3})
uninstall cmd: RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{FD851F7E-F887-405D-9E1C-488811113EF3}\setup.exe" -l0x40c

--- System Services ---
Service (registry key): Aavmker4
Display name: avast! Asynchronous Virus Monitor
Start: 1
Type: 1
Error Control: 1

Service (registry key): Abiosdsk
Start: 4
Type: 1
Error Control: 0

Service (registry key): abp480n5
Start: 4
Type: 1
Error Control: 1

Service (registry key): ACPI
Display name: Pilote ACPI Microsoft
Image path: System32\DRIVERS\ACPI.sys
Image size: 180096
Image MD5: 34128BB2AB7BD69C72017BE7FCF8BE34
Start: 0
Type: 1
Error Control: 1

Service (registry key): ACPIEC
Start: 4
Type: 1
Error Control: 1

Service (registry key): adpu160m
Start: 4
Type: 1
Error Control: 1

Service (registry key): aec
Display name: Suppresseur d'écho acoustique (Noyau Microsoft)
Image path: system32\drivers\aec.sys
Image size: 122472
Image MD5: B45A744CA0A15A59D8B0307CE9741E92
Start: 3
Type: 1
Error Control: 1

Service (registry key): AFD
Display name: Environnement de prise en charge de réseau AFD
Image path: \SystemRoot\System32\drivers\afd.sys
Start: 2
Type: 1
Error Control: 1

Service (registry key): Aha154x
Start: 4
Type: 1
Error Control: 1

Service (registry key): aic78u2
Start: 4
Type: 1
Error Control: 1

Service (registry key): aic78xx
Start: 4
Type: 1
Error Control: 1

Service (registry key): alcan5wn
Display name: Alcatel SpeedTouch USB ADSL PPP Networking Driver (NDISWAN)
Image path: System32\DRIVERS\alcan5wn.sys
Image size: 53168
Image MD5: C7E217CD964D0067F18263429C87EC1B
Start: 3
Type: 1
Error Control: 1

Service (registry key): alcaudsl
Display name: Alcatel Speed Touch ADSL Modem ATM Transport
Image path: System32\DRIVERS\alcaudsl.sys
Image size: 743136
Image MD5: 8080B5EA17A763BBCE6C92BBC6CEEFE8
Start: 3
Type: 1
Error Control: 1

Service (registry key): Alerter
Display name: Avertissement
Description: Informe les utilisateurs et les ordinateurs sélectionnés des alertes administratives. Si ce service est arrêté, les programmes qui utilisent les alertes administratives ne les recevront pas. Si ce service est désactivé, les services qui en dépendent ne pourront pas démarrer.
Object name: NT AUTHORITY\LocalService
Image path: %SystemRoot%\System32\svchost.exe -k LocalService
Image size: 12800
Image MD5: 333A4DB8410D8E24DB06D6AEBECDC7C2
Start: 3
Type: 32
Error Control: 1
Depends On services: LanmanWorkstation

Service (registry key): ALG
Display name: Service de la passerelle de la couche Application
Description: Fournit la prise en charge des plugins de protocoles tiers pour le partage de connexion Internet et le pare-feu Internet.
Object name: NT AUTHORITY\LocalService
Image path: %SystemRoot%\System32\alg.exe
Image size: 40960
Image MD5: 55D226818B6C3D99741432D37657BA73
Start: 3
Type: 16
Error Control: 1

Service (registry key): AliIde
Start: 4
Type: 1
Error Control: 1

Service (registry key): amsint
Start: 4
Type: 1
Error Control: 1

Service (registry key): AppMgmt
Display name: Gestion d'applications
Description: Fournit des services d'installation de logiciels tels que Attribuer, Publier et Supprimer.
Object name: LocalSystem
Image path: %SystemRoot%\system32\svchost.exe -k netsvcs
Image size: 12800
Image MD5: 333A4DB8410D8E24DB06D6AEBECDC7C2
Start: 3
Type: 32
Error Control: 1

Service (registry key): asc
Start: 4
Type: 1
Error Control: 1

Service (registry key): asc3350p
Start: 4
Type: 1
Error Control: 1

Service (registry key): asc3550
Start: 4
Type: 1
Error Control: 1

Service (registry key): aswMon2
Display name: avast! Standard Shield Support
Start: 2
Type: 2
Error Control: 1

Service (registry key): aswRdr
Display name: aswRdr
Start: 3
Type: 1
Error Control: 1
Depends On services: tcpip

Service (registry key): aswTdi
Display name: avast! Network Shield Support
Start: 1
Type: 1
Error Control: 1
Depends On services: tcpip

Service (registry key): aswUpdSv
Display name: avast! iAVS4 Control Service
Description: Fournit la mise à jour automatique pour l'antivirus avast!.
Object name: LocalSystem
Image path: "C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe"
Image size: 53248
Image MD5: 435D862E96FE19612093177CF6618F4E
Start: 2
Type: 272
Error Control: 1

Service (registry key): AsyncMac
Display name: Pilote de média asynchrone RAS
Description: Pilote de média asynchrone RAS
Image path: System32\DRIVERS\asyncmac.sys
Image size: 13568
Image MD5: 03F403B07A884FC2AA54A0916C410931
Start: 3
Type: 1
Error Control: 1

Service (registry key): atapi
Display name: Contrôleur de disque dur IDE/ESDI standard
Image path: System32\DRIVERS\atapi.sys
Image size: 86656
Image MD5: A64013E98426E1877CB653685C5C0009
Start: 0
Type: 1
Error Control: 1

Service (registry key): Atdisk
Start: 4
Type: 1
Error Control: 0

Service (registry key): Atmarpc
Display name: Protocole client ATM ARP
Description: Protocole client ATM ARP
Image path: System32\DRIVERS\atmarpc.sys
Image size: 57216
Image MD5: 8D735CA1CBDB0081B0E3B9FF0EB222D0
Start: 3
Type: 1
Error Control: 1
Depends On services: Tcpip

Service (registry key): AudioSrv
Display name: Audio Windows
Description: Gère les périphériques audio pour les programmes basés sur Windows. Si ce service est arrêté, les périphériques et les effets audio ne fonctionneront pas correctement. Si ce service est désactivé, les services en dépendant explicitement ne démarreront pas.
Object name: LocalSystem
Image path: %SystemRoot%\System32\svchost.exe -k netsvcs
Image size: 12800
Image MD5: 333A4DB8410D8E24DB06D6AEBECDC7C2
Start: 2
Type: 32
Error Control: 1
Depends On services: PlugPlay,RpcSs

Service (registry key): audstub
Display name: Pilote audio Stub
Image path: System32\DRIVERS\audstub.sys
Image size: 3072
Image MD5: D9F724AA26C010A217C97606B160ED68
Start: 3
Type: 1
Error Control: 1

Service (registry key): avast! Antivirus
Display name: avast! Antivirus
Description: Gère et implémente les services de l'antivirus avast! pour cet ordinateur. Ceci inclut la protection résidente, la zone de quarantaine et le planificateur.
Object name: LocalSystem
Image path: "C:\Program Files\Alwil Software\Avast4\ashServ.exe"
Image size: 98352
Image MD5: C8C0AEE5D0585457FF6E318E8BB9289D
Start: 2
Type: 272
Error Control: 1
Depends On services: aswMon2,RpcSS

Service (registry key): avast! Mail Scanner
Display name: avast! Mail Scanner
Description: Implémente l'analyse du courrier électronique pour l'antivirus avast!.
Object name: LocalSystem
Image path: "C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe" /service
Image size: 241712
Image MD5: 8C50FFD2642FD97DAC0009280A438570
Start: 3
Type: 272
Error Control: 1
Depends On services: "avast! Antivirus"

Service (registry key): avast! Web Scanner
Display name: avast! Web Scanner
Description: Implémente l'analyse du contenu web (HTTP) pour l'antivirus avast!.
Object name: LocalSystem
Image path: "C:\Program Files\Alwil Software\Avast4\ashWebSv.exe" /service
Image size: 360496
Image MD5: EB51923A762779247C776A551C546898
Start: 3
Type: 272
Error Control: 1
Depends On services: "avast! Antivirus"

Service (registry key): BattC
Start: 0
Type: 0
Error Control: 0

Service (registry key): Beep
Start: 1
Type: 1
Error Control: 1

Service (registry key): BITS
Display name: Service de transfert intelligent en arrière-plan
Description: Utilise la bande passante réseau inactive pour transférer des données.
Object name: LocalSystem
Image path: %SystemRoot%\System32\svchost.exe -k netsvcs
Image size: 12800
Image MD5: 333A4DB8410D8E24DB06D6AEBECDC7C2
Start: 3
Type: 32
Error Control: 1
Depends On services: Rpcss

Service (registry key): Browser
Display name: Explorateur d'ordinateur
Description: Tient à jour une liste des ordinateurs présents sur le réseau et fournit cette liste aux ordinateurs désignés comme navigateurs. Si ce service est arrêté, la liste ne sera pas mise ou tenue à jour. Si ce service est désactivé, les services qui en dépendent ne pourront pas démarrer.
Object name: LocalSystem
Image path: %SystemRoot%\System32\svchost.exe -k netsvcs
Image size: 12800
Image MD5: 333A4DB8410D8E24DB06D6AEBECDC7C2
Start: 3
Type: 32
Error Control: 1
Depends On services: LanmanWorkstation,LanmanServer

Service (registry key): cbidf2k
Start: 4
Type: 1
Error Control: 1

Service (registry key): CCDECODE
Display name: Décodeur sous-titre fermé
Image path: System32\DRIVERS\CCDECODE.sys
Image size: 16256
Image MD5: 1108137A497C112126B3F1F0E8A021B6
Start: 3
Type: 1
Error Control: 1

Service (registry key): cd20xrnt
Start: 4
Type: 1
Error Control: 1

Service (registry key): Cdaudio
Start: 1
Type: 1
Error Control: 0

Service (registry key): Cdfs
Start: 4
Type: 2
Error Control: 1
Depends On group: "SCSI CDROM Class"

Service (registry key): Cdrom
Display name: Pilote de CD-ROM
Image path: System32\DRIVERS\cdrom.sys
Image size: 47488
Image MD5: CB762E814F602229A574F4D78D3D6A30
Start: 1
Type: 1
Error Control: 1
Depends On group: "SCSI miniport"

Service (registry key): Changer
Start: 1
Type: 1
Error Control: 0

Service (registry key): cisvc
Display name: Service d'indexation
Description: Construit un index des contenus et des propriétés des fichiers sur les ordinateurs locaux et distants ; fournit un accès rapide aux fichiers par le biais d'un langage d'interrogation flexible.
Object name: LocalSystem
Image path: C:\WINDOWS\System32\cisvc.exe
Image size: 5120
Image MD5: 7901AF03767C140467671C7CEEB2C3FE
Start: 3
Type: 32
Error Control: 1
Depends On services: RPCSS

Service (registry key): ClipSrv
Display name: Gestionnaire de l'Album
Description: Active le Gestionnaire de l'Album afin de stocker les informations et les partager avec des ordinateurs à distance. Si le service est arrêté, le Gestionnaire de l'Album ne pourra pas partager les informations avec des ordinateurs à distance. Si ce service est désactivé, tout service en dépendant explicitement ne démarrera pas.
Object name: LocalSystem
Image path: %SystemRoot%\system32\clipsrv.exe
Image size: 30720
Image MD5: 3D1AAB2963FABCAFEB507B5C9D67BFBC
Start: 3
Type: 16
Error Control: 1
Depends On services: NetDDE

Service (registry key): CmdIde
Start: 4
Type: 1
Error Control: 1

Service (registry key): COMSysApp
Display name: Application système COM+
Description: Gère la configuration et le suivi des composants de base COM+ (Component Object Model) . Si le service est arrêté, la plupart des composants de base COM+ ne fonctionneront pas correctement. Si ce service est désactivé, les services qui en dépendent de manière explicite ne pourront pas démarrer.
Object name: LocalSystem
Image path: C:\WINDOWS\System32\dllhost.exe /Processid:{02D4B3F1-FD88-11D1-960D-00805FC79235}
Image size: 4608
Image MD5: 17681E6109A67F3AEA66AD6AAE2434E6
Start: 3
Type: 16
Error Control: 1
Depends On services: rpcss

Service (registry key): ContentFilter
Start: 0
Type: 0
Error Control: 0

Service (registry key): ContentIndex
Start: 0
Type: 0
Error Control: 0

Service (registry key): Cpqarray
Start: 4
Type: 1
Error Control: 1

Service (registry key): Cpqarray
Start: 4
Type: 1
Error Control: 1

Service (registry key): CryptSvc
Display name: Services de cryptographie
Description: Fournit trois services de gestion : le service de base de données de catalogue, qui confirme la signature des fichiers Windows; le service de racine protégée, qui ajoute et supprime des certificats d'autorité de certification de racine approuvés et le service Clé, qui fournit une aide dans l'inscription de cet ordinateur pour les certificats. Si ce service est arrêté, ces services de gestion ne fonctionneront pas correctement. Si ce service est désactivé, tout service en dépendant explicitement ne démarrera pas.
Object name: LocalSystem
Image path: %SystemRoot%\system32\svchost.exe -k netsvcs
Image size: 12800
Image MD5: 333A4DB8410D8E24DB06D6AEBECDC7C2
Start: 2
Type: 32
Error Control: 1
Depends On services: RpcSs

Service (registry key): ctac32k
Display name: Creative AC3 Software Decoder
Image path: System32\drivers\ctac32k.sys
Image size: 127948
Image MD5: 4B6096745F72B4FD36514617E2EA5D37
Start: 3
Type: 1
Error Control: 1

Service (registry key): ctaud2k
Display name: Creative Audio Driver (WDM)
Image path: system32\drivers\ctaud2k.sys
Image size: 837548
Image MD5: 3576EC792347ED15699F6D830E0F5437
Start: 3
Type: 1
Error Control: 1

Service (registry key): ctljystk
Display name: Creative SBLive! Port de jeux
Image path: System32\DRIVERS\ctljystk.sys
Image size: 3712
Image MD5: 71007BD2E1E26927FE3E4EB00C0BEEDF
Start: 3
Type: 1
Error Control: 0

Service (registry key): ctprxy2k
Display name: Creative Proxy Driver
Image path: System32\drivers\ctprxy2k.sys
Image size: 11068
Image MD5: 097D42574E3C6D98CD5A2EE7647FA6BF
Start: 3
Type: 1
Error Control: 1

Service (registry key): ctsfm2k
Display name: Creative SoundFont Management Device Driver
Image path: System32\drivers\ctsfm2k.sys
Image size: 213860
Image MD5: C58A2507EF62B20B9BD670C666088B50
Start: 3
Type: 1
Error Control: 1

Service (registry key): dac2w2k
Start: 4
Type: 1
Error Control: 0

Service (registry key): dac960nt
Start: 4
Type: 1
Error Control: 1

Service (registry key): Dhcp
Display name: Client DHCP
Description: Gère la configuration réseau en inscrivant et en mettant à jour les adresses IP et les noms DNS.
Object name: LocalSystem
Image path: %SystemRoot%\System32\svchost.exe -k netsvcs
Image size: 12800
Image MD5: 333A4DB8410D8E24DB06D6AEBECDC7C2
Start: 2
Type: 32
Error Control: 1
Depends On services: Tcpip,Afd,NetBT

Service (registry key): Disk
Display name: Pilote de disque
Image path: System32\DRIVERS\disk.sys
Image size: 33664
Image MD5: 43A10CD19D648E57ED039A6CAA667A56
Start: 0
Type: 1
Error Control: 1
Depends On group: "SCSI miniport"

Service (registry key): Diskeeper
Display name: Diskeeper
Description: Contrôle de service Diskeeper
Object name: LocalSystem
Image path: C:\Program Files\Executive Software\DiskeeperWorkstation\DKService.exe
Image size: 253952
Image MD5: 5A715FC7A5E222D8E987B2D903885B0B
Start: 2
Type: 272
Error Control: 0
Depends On services: RPCSS

Service (registry key): DLHOST
Display name: DynamicHost
Description: DynamicHost
Object name: LocalSystem
Start: 4
Type: 272
Error Control: 0

Service (registry key): dmadmin
Display name: Service d'administration du Gestionnaire de disque logique
Description: Configure les lecteurs de disque durs et les volumes. Le service ne s'exécute que pour les processus de configurations puis s'arrête.
Object name: LocalSystem
Image path: %SystemRoot%\System32\dmadmin.exe /com
Image size: 205312
Image MD5: F03B6377293A2CA253E02366B6F817D3
Start: 3
Type: 32
Error Control: 1
Depends On services: RpcSs,PlugPlay,DmServer

Service (registry key): dmboot
Image path: System32\drivers\dmboot.sys
Image size: 781440
Image MD5: 625043857173294DF9239909FC37CCD1
Start: 4
Type: 1
Error Control: 1

Service (registry key): dmio
Display name: Pilote de Gestionnaire de disque logique
Image path: System32\drivers\dmio.sys
Image size: 147456
Image MD5: C85A01B45E107B2D80A1263B365E62B5
Start: 0
Type: 1
Error Control: 1

Service (registry key): dmload
Image path: System32\drivers\dmload.sys
Image size: 5888
Image MD5: E9317282A63CA4D188C0DF5E09C6AC5F
Start: 0
Type: 1
Error Control: 1

Service (registry key): dmserver
Display name: Gestionnaire de disque logique
Description: Détecte et analyse de nouveaux lecteurs de disque durs et envoie les informations de volume de disque au service gestionnaire administratif de disque logique pour la configuration. Si ce service est arrêté, l'état des disques dynamiques et les informations de configuration peuvent devenir obsolètes. Si ce service est désactivé, tout service en dépendant explicitement ne démarrera pas.
Object name: LocalSystem
Image path: %SystemRoot%\System32\svchost.exe -k netsvcs
Image size: 12800
Image MD5: 333A4DB8410D8E24DB06D6AEBECDC7C2
Start: 2
Type: 32
Error Control: 1
Depends On services: RpcSs,PlugPlay

Service (registry key): DMusic
Display name: Synthétiseur DLS du noyau Microsoft
Image path: system32\drivers\DMusic.sys
Image size: 50048
Image MD5: EF05974D47D56FA8387F170F05BAE5E7
Start: 3
Type: 1
Error Control: 1

Service (registry key): Dnscache
Display name: Client DNS
Description: Résout et met en cache les noms DNS pour cet ordinateur. Si ce service est arrêté, l'ordinateur ne pourra pas résoudre les noms DNS et trouver les contrôleurs de domaine Active Directory. Si ce service est désactivé, les services qui en dépendent ne pourront pas démarrer.
Object name: NT AUTHORITY\NetworkService
Image path: %SystemRoot%\System32\svchost.exe -k NetworkService
Image size: 12800
Image MD5: 333A4DB8410D8E24DB06D6AEBECDC7C2
Start: 2
Type: 32
Error Control: 1
Depends On services: Tcpip

Service (registry key): dpti2o
Start: 4
Type: 1
Error Control: 1

Service (registry key): drmkaud
Display name: Filtre de décodeur DRM (Noyau Microsoft)
Image path: system32\drivers\drmkaud.sys
Image size: 2816
Image MD5: AA94E0CBD79DB63100D0EAE061EB69BC
Start: 3
Type: 1
Error Control: 1

Service (registry key): emupia
Display name: E-mu Plug-in Architecture Driver
Image path: System32\drivers\emupia2k.sys
Image size: 156604
Image MD5: A9D94B89372F3F9609A1A5EEC631A260
Start: 3
Type: 1
Error Control: 1

Service (registry key): ERSvc
Display name: Service de rapport d'erreurs
Description: Active le rapport d'erreurs pour les services et les applications s'exécutant sur des environnements non standard.
Object name: LocalSystem
Image path: %SystemRoot%\System32\svchost.exe -k netsvcs
Image size: 12800
Image MD5: 333A4DB8410D8E24DB06D6AEBECDC7C2
Start: 2
Type: 32
Error Control: 0
Depends On services: RpcSs

Service (registry key): es1371
Display name: Creative AudioPCI (ES1371,ES1373) (WDM)
Image path: system32\drivers\es1371mp.sys
Image size: 40704
Image MD5: A55DD7D8CED5D2624A9EE2DDA7BE0319
Start: 3
Type: 1
Error Control: 1

Service (registry key): Eventlog
Display name: Journal des événements
Description: Active les messages d'événements émis par les programmes fonctionnant sous Windows et les composants devant être affichés dans l'observateur d'événements. Ce service ne peut être arrêté.
Object name: LocalSystem
Image path: %SystemRoot%\system32\services.exe
Image size: 101888
Image MD5: FC0691097471EE374907E1024EDCBD43
Start: 2
Type: 32
Error Control: 1

Service (registry key): EventSystem
Display name: Système d'événements de COM+
Description: Prend en charge le service de notification d'événements système (SENS, System Event Notification Service), qui fournit une distribution automatique d'événements aux composants COM (Component Object Model) abonnés. Si le service est arrêté, SENS sera fermé et ne pourra fournir des informations d'ouverture et de fermeture de session. Si ce service est désactivé, le démarrage de tout service qui en dépend explicitement échouera.
Object name: LocalSystem
Image path: C:\WINDOWS\System32\svchost.exe -k netsvcs
Image size: 12800
Image MD5: 333A4DB8410D8E24DB06D6AEBECDC7C2
Start: 3
Type: 32
Error Control: 1
Depends On services: RPCSS

Service (registry key): ewido security suite control
Display name: ewido security suite control
Object name: LocalSystem
Image path: C:\Documents and Settings\sabrina\Bureau\Nouveau dossier (2)\ewido anti-malware\ewidoctrl.exe
Image size: 13888
Image MD5: 26830B750372AB1BF29C95DEEBEB802F
Start: 2
Type: 272
Error Control: 0

Service (registry key): ewido security suite driver
Display name: ewido security suite driver
Image path: \??\C:\Documents and Settings\sabrina\Bureau\Nouveau dossier (2)\ewido anti-malware\guard.sys
Image size: 3072
Image MD5: 2FF233E31AEFFF332F187E8E2ABFA6C5
Start: 1
Type: 1
Error Control: 0

Service (registry key): ewido security suite guard
Display name: ewido security suite guard
Object name: LocalSystem
Image path: C:\Documents and Settings\sabrina\Bureau\Nouveau dossier (2)\ewido anti-malware\ewidoguard.exe
Image size: 151616
Image MD5: 34A50717AD686900F078F5208F8E908E
Start: 2
Type: 272
Error Control: 0

Service (registry key): exec1x.exe
Display name: execute1x.exe
Object name: LocalSystem
Start: 4
Type: 272
Error Control: 0

Service (registry key): Fastfat
Start: 4
Type: 2
Error Control: 1

Service (registry key): FastUserSwitchingCompatibility
Display name: Compatibilité avec le Changement rapide d'utilisateur
Description: Fournit un système de gestion à des applications qui nécessitent de l'Assistance dans un

Utilisateur anonyme · Answer

re,

Télécharge l2mfix ici:

http://www.downloads.subratam.org/l2mfix.exe

Double clic sur l2mfix.exe pour lancer l'extraction.
Dans le dossier l2mfix, double clic sur l2mfix.bat et choisis l'option #1 (et pas autre chose) et valide avec la touche entrée.
Le bloc note va s'ouvrir avec le résultat du scan.
Fais un copier coller du résultat sur le forum.

biggup · Answer

salut régis voici ce que tu m'as demandé :

L2MFIX find log 010406
These are the registry keys present
**********************************************************************************
Winlogon/notify:
Windows Registry Editor Version 5.00

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\crypt32chain]
"Asynchronous"=dword:00000000
"Impersonate"=dword:00000000
"DllName"=hex(2):63,00,72,00,79,00,70,00,74,00,33,00,32,00,2e,00,64,00,6c,00,\
6c,00,00,00
"Logoff"="ChainWlxLogoffEvent"

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\cryptnet]
"Asynchronous"=dword:00000000
"Impersonate"=dword:00000000
"DllName"=hex(2):63,00,72,00,79,00,70,00,74,00,6e,00,65,00,74,00,2e,00,64,00,\
6c,00,6c,00,00,00
"Logoff"="CryptnetWlxLogoffEvent"

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\cscdll]
"DLLName"="cscdll.dll"
"Logon"="WinlogonLogonEvent"
"Logoff"="WinlogonLogoffEvent"
"ScreenSaver"="WinlogonScreenSaverEvent"
"Startup"="WinlogonStartupEvent"
"Shutdown"="WinlogonShutdownEvent"
"StartShell"="WinlogonStartShellEvent"
"Impersonate"=dword:00000000
"Asynchronous"=dword:00000001

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\ScCertProp]
"DLLName"="wlnotify.dll"
"Logon"="SCardStartCertProp"
"Logoff"="SCardStopCertProp"
"Lock"="SCardSuspendCertProp"
"Unlock"="SCardResumeCertProp"
"Enabled"=dword:00000001
"Impersonate"=dword:00000001
"Asynchronous"=dword:00000001

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\Schedule]
"Asynchronous"=dword:00000000
"DllName"=hex(2):77,00,6c,00,6e,00,6f,00,74,00,69,00,66,00,79,00,2e,00,64,00,\
6c,00,6c,00,00,00
"Impersonate"=dword:00000000
"StartShell"="SchedStartShell"
"Logoff"="SchedEventLogOff"

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\sclgntfy]
"Logoff"="WLEventLogoff"
"Impersonate"=dword:00000000
"Asynchronous"=dword:00000001
"DllName"=hex(2):73,00,63,00,6c,00,67,00,6e,00,74,00,66,00,79,00,2e,00,64,00,\
6c,00,6c,00,00,00

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\SensLogn]
"DLLName"="WlNotify.dll"
"Lock"="SensLockEvent"
"Logon"="SensLogonEvent"
"Logoff"="SensLogoffEvent"
"Safe"=dword:00000001
"MaxWait"=dword:00000258
"StartScreenSaver"="SensStartScreenSaverEvent"
"StopScreenSaver"="SensStopScreenSaverEvent"
"Startup"="SensStartupEvent"
"Shutdown"="SensShutdownEvent"
"StartShell"="SensStartShellEvent"
"PostShell"="SensPostShellEvent"
"Disconnect"="SensDisconnectEvent"
"Reconnect"="SensReconnectEvent"
"Unlock"="SensUnlockEvent"
"Impersonate"=dword:00000001
"Asynchronous"=dword:00000001

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\termsrv]
"Asynchronous"=dword:00000000
"DllName"=hex(2):77,00,6c,00,6e,00,6f,00,74,00,69,00,66,00,79,00,2e,00,64,00,\
6c,00,6c,00,00,00
"Impersonate"=dword:00000000
"Logoff"="TSEventLogoff"
"Logon"="TSEventLogon"
"PostShell"="TSEventPostShell"
"Shutdown"="TSEventShutdown"
"StartShell"="TSEventStartShell"
"Startup"="TSEventStartup"
"MaxWait"=dword:00000258
"Reconnect"="TSEventReconnect"
"Disconnect"="TSEventDisconnect"

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\wlballoon]
"DLLName"="wlnotify.dll"
"Logon"="RegisterTicketExpiredNotificationEvent"
"Logoff"="UnregisterTicketExpiredNotificationEvent"
"Impersonate"=dword:00000001
"Asynchronous"=dword:00000001

**********************************************************************************
useragent:
Windows Registry Editor Version 5.00

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\User Agent\Post Platform]
"Wanadoo 5.3"="IEAKFTI"
"acc="=" "
"acc=vonner"=" "
"acc=none"=" "
"(none)"=" "
"()"=" "

**********************************************************************************
Shell Extension key:
Windows Registry Editor Version 5.00

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved]
"{00022613-0000-0000-C000-000000000046}"="Feuille de propri‚t‚s du fichier multim‚dia"
"{176d6597-26d3-11d1-b350-080036a75b03}"="Gestion de scanneur CCI"
"{1F2E5C40-9550-11CE-99D2-00AA006E086C}"="Page de s‚curit‚ NTFS"
"{3EA48300-8CF6-101B-84FB-666CCB9BCD32}"="Page des propri‚t‚s de OLE DocFile"
"{40dd6e20-7c17-11ce-a804-00aa003ca9f6}"="Extensions de l'environnement pour le partage"
"{41E300E0-78B6-11ce-849B-444553540000}"="PlusPack CPL Extension"
"{42071712-76d4-11d1-8b24-00a0c9068ff3}"="Extension Affichage Carte du Panneau de configuration"
"{42071713-76d4-11d1-8b24-00a0c9068ff3}"="Extension Affichage cran du Panneau de configuration"
"{42071714-76d4-11d1-8b24-00a0c9068ff3}"="Extension Affichage Panorama du Panneau de configuration"
"{4E40F770-369C-11d0-8922-00A024AB2DBB}"="Page de s‚curit‚ DS"
"{513D916F-2A8E-4F51-AEAB-0CBC76FB1AF8}"="Page de compatibilit‚"
"{56117100-C0CD-101B-81E2-00AA004AE837}"="Gestionnaire de donn‚es endommag‚es de l'environnement"
"{59099400-57FF-11CE-BD94-0020AF85B590}"="Extension copie de disquette"
"{59be4990-f85c-11ce-aff7-00aa003ca9f6}"="Extensions de l'environnement pour les objets r‚seau de Microsoft Windows"
"{5DB2625A-54DF-11D0-B6C4-0800091AA605}"="Gestion d'‚cran CCI"
"{675F097E-4C4D-11D0-B6C1-0800091AA605}"="Gestion d'imprimante CCI"
"{764BF0E1-F219-11ce-972D-00AA00A14F56}"="Extensions de l'environnement de compression de fichiers"
"{77597368-7b15-11d0-a0c2-080036af3f03}"="Extension de l'environnement d'imprimante Web"
"{7988B573-EC89-11cf-9C00-00AA00A14F56}"="Disk Quota UI"
"{853FE2B1-B769-11d0-9C4E-00C04FB6C6FA}"="Menu contextuel de cryptage"
"{85BBD920-42A0-1069-A2E4-08002B30309D}"="Porte-documents"
"{88895560-9AA2-1069-930E-00AA0030EBC8}"="Extension ic“ne HyperTerminal"
"{BD84B380-8CA2-1069-AB1D-08000948F534}"="Fonts"
"{DBCE2480-C732-101B-BE72-BA78E9AD5B27}"="Profil ICC"
"{F37C5810-4D3F-11d0-B4BF-00AA00BBB723}"="Page de s‚curit‚ des imprimantes"
"{f81e9010-6ea4-11ce-a7ff-00aa003ca9f6}"="Extensions de l'environnement pour le partage"
"{f92e8c40-3d33-11d2-b1aa-080036a75b03}"="Display TroubleShoot CPL Extension"
"{7444C717-39BF-11D1-8CD9-00C04FC29D45}"="Extension de cryptographie PKO"
"{7444C719-39BF-11D1-8CD9-00C04FC29D45}"="Extension de cryptographie Sign"
"{7007ACC7-3202-11D1-AAD2-00805FC1270E}"="Connexions r‚seau"
"{992CFFA0-F557-101A-88EC-00DD010CCC48}"="Connexions r‚seau"
"{E211B736-43FD-11D1-9EFB-0000F8757FCD}"="&Scanneurs et appareils photo"
"{FB0C9C8A-6C50-11D1-9F1D-0000F8757FCD}"="&Scanneurs et appareils photo"
"{905667aa-acd6-11d2-8080-00805f6596d2}"="&Scanneurs et appareils photo"
"{3F953603-1008-4f6e-A73A-04AAC7A992F1}"="&Scanneurs et appareils photo"
"{83bbcbf3-b28a-4919-a5aa-73027445d672}"="&Scanneurs et appareils photo"
"{F0152790-D56E-4445-850E-4F3117DB740C}"="Remote Sessions CPL Extension"
"{60254CA5-953B-11CF-8C96-00AA00B8708C}"="Extensions de l'interpr‚teur de commandes pour l'environnement d'ex‚cution de scripts Windows"
"{2206CDB2-19C1-11D1-89E0-00C04FD7A829}"="Liaison de donn‚es Microsoft"
"{DD2110F0-9EEF-11cf-8D8E-00AA0060F5BF}"="Tasks Folder Icon Handler"
"{797F1E90-9EDD-11cf-8D8E-00AA0060F5BF}"="Tasks Folder Shell Extension"
"{D6277990-4C6A-11CF-8D87-00AA0060F5BF}"="Tƒches planifi‚es"
"{0DF44EAA-FF21-4412-828E-260A8728E7F1}"="Barre des tƒches et menu D‚marrer"
"{2559a1f0-21d7-11d4-bdaf-00c04f60b9f0}"="Rechercher"
"{2559a1f1-21d7-11d4-bdaf-00c04f60b9f0}"="Aide et support"
"{2559a1f2-21d7-11d4-bdaf-00c04f60b9f0}"="Aide et support"
"{2559a1f3-21d7-11d4-bdaf-00c04f60b9f0}"="Ex‚cuter..."
"{2559a1f4-21d7-11d4-bdaf-00c04f60b9f0}"="Internet"
"{2559a1f5-21d7-11d4-bdaf-00c04f60b9f0}"="Courrier ‚lectronique"
"{D20EA4E1-3957-11d2-A40B-0C5020524152}"="Polices"
"{D20EA4E1-3957-11d2-A40B-0C5020524153}"="Outils d'administration"
"{875CB1A1-0F29-45de-A1AE-CFB4950D0B78}"="Audio Media Properties Handler"
"{40C3D757-D6E4-4b49-BB41-0E5BBEA28817}"="Video Media Properties Handler"
"{E4B29F9D-D390-480b-92FD-7DDB47101D71}"="Wav Properties Handler"
"{87D62D94-71B3-4b9a-9489-5FE6850DC73E}"="Avi Properties Handler"
"{A6FD9E45-6E44-43f9-8644-08598F5A74D9}"="Midi Properties Handler"
"{c5a40261-cd64-4ccf-84cb-c394da41d590}"="Video Thumbnail Extractor"
"{5E6AB780-7743-11CF-A12B-00AA004AE837}"="Barre d'outils Internet Microsoft"
"{22BF0C20-6DA7-11D0-B373-00A0C9034938}"="tat du t‚l‚chargement"
"{91EA3F8B-C99B-11d0-9815-00C04FD91972}"="Dossier Bureau ‚tendu"
"{6413BA2C-B461-11d1-A18A-080036B11A03}"="Dossier du shell augment‚"
"{F61FFEC1-754F-11d0-80CA-00AA005B4383}"="BandProxy"
"{7BA4C742-9E81-11CF-99D3-00AA004AE837}"="Bande du navigateur Microsoft"
"{30D02401-6A81-11d0-8274-00C04FD5AE38}"="Bande de recherche"
"{32683183-48a0-441b-a342-7c2a440a9478}"="Media Band"
"{169A0691-8DF9-11d1-A1C4-00C04FD75D13}"="Volet int‚gr‚ de recherche"
"{07798131-AF23-11d1-9111-00A0C98BA67D}"="Recherche Web"
"{AF4F6510-F982-11d0-8595-00AA004CD6D8}"="Utilitaire des options de l'arborescence du Registre"
"{01E04581-4EEE-11d0-BFE9-00AA005B4383}"="&Adresse"
"{A08C11D2-A228-11d0-825B-00AA005B4383}"="BoŒte d'entr‚e de l'adresse"
"{00BB2763-6A77-11D0-A535-00C04FD7D062}"="Saisie semi-automatique Microsoft"
"{7376D660-C583-11d0-A3A5-00C04FD706EC}"="TridentImageExtractor"
"{6756A641-DE71-11d0-831B-00AA005B4383}"="Liste de saisie semi-automatique MRU"
"{6935DB93-21E8-4ccc-BEB9-9FE3C77A297A}"="Liste de saisie semi-automatique personnalis‚e MRU"
"{7e653215-fa25-46bd-a339-34a2790f3cb7}"="Accessible"
"{acf35015-526e-4230-9596-becbe19f0ac9}"="Barre de progrŠs auto-ouvrante"
"{E0E11A09-5CB8-4B6C-8332-E00720A168F2}"="Analyseur de la barre d'adresses"
"{00BB2764-6A77-11D0-A535-00C04FD7D062}"="Liste de saisie semi-automatique de l'historique Microsoft"
"{03C036F1-A186-11D0-824A-00AA005B4383}"="Liste de saisie semi-automatique du dossier Shell Microsoft"
"{00BB2765-6A77-11D0-A535-00C04FD7D062}"="Conteneur de la liste de saisie semi-automatique multiple Microsoft"
"{ECD4FC4E-521C-11D0-B792-00A0C90312E1}"="Menu Site de bandes"
"{3CCF8A41-5C85-11d0-9796-00AA00B90ADF}"="Shell DeskBarApp"
"{ECD4FC4C-521C-11D0-B792-00A0C90312E1}"="Barre du Bureau"
"{ECD4FC4D-521C-11D0-B792-00A0C90312E1}"="Shell Rebar BandSite"
"{DD313E04-FEFF-11d1-8ECD-0000F87A470C}"="Assistance utilisateur"
"{EF8AD2D1-AE36-11D1-B2D2-006097DF8C11}"="ParamŠtres du dossier global"
"{EFA24E61-B078-11d0-89E4-00C04FC9E26E}"="Favorites Band"
"{0A89A860-D7B1-11CE-8350-444553540000}"="Shell Automation Inproc Service"
"{E7E4BC40-E76A-11CE-A9BB-00AA004AE837}"="Shell DocObject Viewer"
"{A5E46E3A-8849-11D1-9D8C-00C04FC99D61}"="Microsoft Browser Architecture"
"{FBF23B40-E3F0-101B-8488-00AA003E56F8}"="InternetShortcut"
"{3C374A40-BAE4-11CF-BF7D-00AA006946EE}"="Microsoft Url History Service"
"{FF393560-C2A7-11CF-BFF4-444553540000}"="Historique"
"{7BD29E00-76C1-11CF-9DD0-00A0C9034933}"="Temporary Internet Files"
"{7BD29E01-76C1-11CF-9DD0-00A0C9034933}"="Temporary Internet Files"
"{CFBFAE00-17A6-11D0-99CB-00C04FD64497}"="Microsoft Url Search Hook"
"{A2B0DD40-CC59-11d0-A3A5-00C04FD706EC}"="Image de d‚marrage de la Suite IE4"
"{67EA19A0-CCEF-11d0-8024-00C04FD75D13}"="CDF Extension Copy Hook"
"{131A6951-7F78-11D0-A979-00C04FD705A2}"="ISFBand OC"
"{9461b922-3c5a-11d2-bf8b-00c04fb93661}"="Search Assistant OC"
"{3DC7A020-0ACD-11CF-A9BB-00AA004AE837}"="Internet"
"{871C5380-42A0-1069-A2EA-08002B30309D}"="Internet Name Space"
"{EFA24E64-B078-11d0-89E4-00C04FC9E26E}"="Explorer Band"
"{9E56BE60-C50F-11CF-9A2C-00A0C90A90CE}"="Sendmail service"
"{9E56BE61-C50F-11CF-9A2C-00A0C90A90CE}"="Sendmail service"
"{88C6C381-2E85-11D0-94DE-444553540000}"="Dossier ActiveX Cache"
"{E6FB5E20-DE35-11CF-9C87-00AA005127ED}"="WebCheck"
"{ABBE31D0-6DAE-11D0-BECA-00C04FD940BE}"="Subscription Mgr"
"{F5175861-2688-11d0-9C5E-00AA00A45957}"="Dossier Inscription"
"{08165EA0-E946-11CF-9C87-00AA005127ED}"="WebCheckWebCrawler"
"{E3A8BDE6-ABCE-11d0-BC4B-00C04FD929DB}"="WebCheckChannelAgent"
"{E8BB6DC0-6B4E-11d0-92DB-00A0C90C2BD7}"="TrayAgent"
"{7D559C10-9FE9-11d0-93F7-00AA0059CE02}"="Code Download Agent"
"{E6CC6978-6B6E-11D0-BECA-00C04FD940BE}"="ConnectionAgent"
"{D8BD2030-6FC9-11D0-864F-00AA006809D9}"="PostAgent"
"{7FC0B86E-5FA7-11d1-BC7C-00C04FD929DB}"="WebCheck SyncMgr Handler"
"{352EC2B7-8B9A-11D1-B8AE-006008059382}"="Gestionnaire d'applications d'environnement"
"{0B124F8F-91F0-11D1-B8B5-006008059382}"="num‚rateur d'applications install‚es"
"{CFCCC7A0-A282-11D1-9082-006008059382}"="Publication d'application Darwin"
"{e84fda7c-1d6a-45f6-b725-cb260c236066}"="Shell Image Verbs"
"{66e4e4fb-f385-4dd0-8d74-a2efd1bc6178}"="Shell Image Data Factory"
"{3F30C968-480A-4C6C-862D-EFC0897BB84B}"="Extracteur de miniatures de fichier + GDI"
"{9DBD2C50-62AD-11d0-B806-00C04FD706EC}"="Summary Info Thumbnail handler (DOCFILES)"
"{EAB841A0-9550-11cf-8C16-00805F1408F3}"="Extracteur de miniatures HTML"
"{eb9b1153-3b57-4e68-959a-a3266bc3d7fe}"="Shell Image Property Handler"
"{CC6EEFFB-43F6-46c5-9619-51D571967F7D}"="Assistant Publication de sites Web"
"{add36aa8-751a-4579-a266-d66f5202ccbb}"="Commande d'impressions via le Web"
"{6b33163c-76a5-4b6c-bf21-45de9cd503a1}"="Objet Assistant de publication Shell"
"{58f1f272-9240-4f51-b6d4-fd63d1618591}"="Assistant Obtenir une identit‚ Passport"
"{7A9D77BD-5403-11d2-8785-2E0420524153}"="Comptes d'utilisateurs"
"{BD472F60-27FA-11cf-B8B4-444553540000}"="Compressed (zipped) Folder Right Drag Handler"
"{888DCA60-FC0A-11CF-8F0F-00C04FD7D062}"="Compressed (zipped) Folder SendTo Target"
"{f39a0dc0-9cc8-11d0-a599-00c04fd64433}"="Fichier de chaŒne"
"{f3aa0dc0-9cc8-11d0-a599-00c04fd64434}"="Raccourci de chaŒne"
"{f3ba0dc0-9cc8-11d0-a599-00c04fd64435}"="Channel Handler Object"
"{f3da0dc0-9cc8-11d0-a599-00c04fd64437}"="Channel Menu"
"{f3ea0dc0-9cc8-11d0-a599-00c04fd64438}"="Channel Properties"
"{63da6ec0-2e98-11cf-8d82-444553540000}"="FTP Folders Webview"
"{883373C3-BF89-11D1-BE35-080036B11A03}"="Microsoft DocProp Shell Ext"
"{A9CF0EAE-901A-4739-A481-E35B73E47F6D}"="Microsoft DocProp Inplace Edit Box Control"
"{8EE97210-FD1F-4B19-91DA-67914005F020}"="Microsoft DocProp Inplace ML Edit Box Control"
"{0EEA25CC-4362-4A12-850B-86EE61B0D3EB}"="Microsoft DocProp Inplace Droplist Combo Control"
"{6A205B57-2567-4A2C-B881-F787FAB579A3}"="Microsoft DocProp Inplace Calendar Control"
"{28F8A4AC-BBB3-4D9B-B177-82BFC914FA33}"="Microsoft DocProp Inplace Time Control"
"{8A23E65E-31C2-11d0-891C-00A024AB2DBB}"="Directory Query UI"
"{9E51E0D0-6E0F-11d2-9601-00C04FA31A86}"="Shell properties for a DS object"
"{163FDC20-2ABC-11d0-88F0-00A024AB2DBB}"="Directory Object Find"
"{F020E586-5264-11d1-A532-0000F8757D7E}"="Directory Start/Search Find"
"{0D45D530-764B-11d0-A1CA-00AA00C16E65}"="Directory Property UI"
"{62AE1F9A-126A-11D0-A14B-0800361B1103}"="Directory Context Menu Verbs"
"{ECF03A33-103D-11d2-854D-006008059367}"="MyDocs Copy Hook"
"{ECF03A32-103D-11d2-854D-006008059367}"="MyDocs Drop Target"
"{4a7ded0a-ad25-11d0-98a8-0800361b1103}"="MyDocs Properties"
"{750fdf0e-2a26-11d1-a3ea-080036587f03}"="Offline Files Menu"
"{10CFC467-4392-11d2-8DB4-00C04FA31A66}"="Offline Files Folder Options"
"{AFDB1F70-2A4C-11d2-9039-00C04F8EEB3E}"="Dossier Fichiers hors connexion"
"{143A62C8-C33B-11D1-84FE-00C04FA34A14}"="Microsoft Agent Character Property Sheet Handler"
"{ECCDF543-45CC-11CE-B9BF-0080C87CDBA6}"="DfsShell"
"{60fd46de-f830-4894-a628-6fa81bc0190d}"="%DESC_PublishDropTarget%"
"{7A80E4A8-8005-11D2-BCF8-00C04F72C717}"="MMC Icon Handler"
"{0CD7A5C0-9F37-11CE-AE65-08002B2E1262}"=".CAB file viewer"
"{32714800-2E5F-11d0-8B85-00AA0044F941}"="Des &personnes..."
"{8DD448E6-C188-4aed-AF92-44956194EB1F}"="Windows Media Player Play as Playlist Context Menu Handler"
"{CE3FB1D1-02AE-4a5f-A6E9-D9F1B4073E6C}"="Windows Media Player Burn Audio CD Context Menu Handler"
"{F1B9284F-E9DC-4e68-9D7E-42362A59F0FD}"="Windows Media Player Add to Playlist Context Menu Handler"
"{568804CA-CBD7-11d0-9816-00C04FD91972}"="Menu Dossier Bureau"
"{5b4dae26-b807-11d0-9815-00c04fd91972}"="Bande de menus"
"{8278F931-2A3E-11d2-838F-00C04FD918D0}"="Suivi du menu Shell"
"{E13EF4E4-D2F2-11d0-9816-00C04FD91972}"="Menu Site"
"{ECD4FC4F-521C-11D0-B792-00A0C90312E1}"="Menu Barre du Bureau"
"{D82BE2B0-5764-11D0-A96E-00C04FD705A2}"="IShellFolderBand"
"{0E5CBF21-D15F-11d0-8301-00AA005B4383}"="&Liens"
"{7487cd30-f71a-11d0-9ea7-00805f714772}"="Image miniature"
"{C2FBB630-2971-11d1-A18C-00C04FD75D13}"="Microsoft CopyTo Service"
"{C2FBB631-2971-11d1-A18C-00C04FD75D13}"="Microsoft MoveTo Service"
"{13709620-C279-11CE-A49E-444553540000}"="Service d'automatisation de l'interface"
"{62112AA1-EBE4-11cf-A5FB-0020AFE7292D}"="Shell Automation Folder View"
"{4622AD11-FF23-11d0-8D34-00A0C90F2719}"="Menu D‚marrer"
"{7BA4C740-9E81-11CF-99D3-00AA004AE837}"="Service SendTo Microsoft"
"{D969A300-E7FF-11d0-A93B-00A0C90F2719}"="Microsoft New Object Service"
"{3FC0B520-68A9-11D0-8D77-00C04FD70822}"="Display Control Panel HTML Extensions"
"{75048700-EF1F-11D0-9888-006097DEACF9}"="ActiveDesktop"
"{6D5313C0-8C62-11D1-B2CD-006097DF8C11}"="Folder Options Property Page Extension"
"{57651662-CE3E-11D0-8D77-00C04FC99D61}"="CmdFileIcon"
"{B091E540-83E3-11CF-A713-0020AFD79762}"="Page des types de fichiers"
"{FBF23B41-E3F0-101B-8488-00AA003E56F8}"="Gestionnaire des types de fichiers MIME"
"{8BEBB290-52D0-11D0-B7F4-00C04FD706EC}"="Miniatures"
"{7D688A77-C613-11D0-999B-00C04FD655E1}"="SlowFile Icon Overlay"
"{3779D068-8AA6-11d2-B8FF-0080C84D9C69}"="WinFast Information Property Sheet 2000"
"{B41DB860-8EE4-11D2-9906-E49FADC173CA}"="WinRAR shell extension"
"{8DE56A0D-E58B-41FE-9F80-3563CDCB2C22}"="Extraction d'image par d‚faut des propri‚t‚s"
"{BDA77241-42F6-11d0-85E2-00AA001FE28C}"="LDVP Shell Extensions"
"{AB77609F-2178-4E6F-9C4B-44AC179D937A}"="aý Context Menu Shell Extension"
"{5F327514-6C5E-4d60-8F16-D07FA08A78ED}"="Auto Update Property Sheet Extension"
"{52B87208-9CCF-42C9-B88E-069281105805}"="Trojan Remover Shell Extension"
"{472083B0-C522-11CF-8763-00608CC02F24}"="avast"
"{00DF1F20-0849-A4D1-0239-00D0AF3E9CB0}"="TuneUp Shredder Shell Context Menu Extension"

**********************************************************************************
HKEY ROOT CLASSIDS:
**********************************************************************************
Files Found are not all bad files:

C:\WINDOWS\SYSTEM32\
vsdata.dll Tue 15 Nov 2005 0:50:30 A.... 83 720 81,76 K
vsmonapi.dll Tue 15 Nov 2005 0:50:52 A.... 104 208 101,77 K
vsutil.dll Tue 15 Nov 2005 0:51:12 A.... 382 728 373,76 K
vspubapi.dll Tue 15 Nov 2005 0:50:56 A.... 227 088 221,77 K
vsinit.dll Tue 15 Nov 2005 0:50:42 A.... 141 064 137,76 K
zlcomm.dll Tue 15 Nov 2005 0:51:40 A.... 79 624 77,76 K
zlcommdb.dll Tue 15 Nov 2005 0:51:44 A.... 71 440 69,77 K
vsregexp.dll Tue 15 Nov 2005 0:51:00 A.... 71 440 69,77 K
vsxml.dll Tue 15 Nov 2005 0:51:20 ..... 100 104 97,76 K
vsutil~1.dll Tue 15 Nov 2005 0:37:08 A.... 54 960 53,67 K

10 items found: 10 files, 0 directories.
Total of file sizes: 1 316 376 bytes 1,25 M
Locate .tmp files:

No matches found.
**********************************************************************************
Directory Listing of system files:
Le volume dans le lecteur C s'appelle DISK1_VOL1
Le num‚ro de s‚rie du volume est 8D5F-09E6

R‚pertoire de C:\WINDOWS\System32

31/12/2005 13:17 338ÿ557 qqppo.ini
26/12/2005 16:34 400ÿ514 uutwa.ini
24/12/2005 16:51 270ÿ524 uutwa.ini2
25/05/2003 20:26 <REP> Microsoft
25/05/2003 19:32 <REP> dllcache
3 fichier(s) 1ÿ009ÿ595 octets
2 R‚p(s) 9ÿ878ÿ159ÿ360 octets libres

Utilisateur anonyme · Answer

re,relance l2mfix et choisis l'option 2 accepte le redémarrage du pc **relance spybot et essai de corriger sinon donne le rapporta+

biggup · Answer

re régis, pareil voici le rapport L2mfix

L2mfix 010406
Creating Account.
La commande s'est termin‚e correctement.

Adding Administrative privleges.
Checking for L2MFix account(0=no 1=yes):
1
Granting SeDebugPrivilege to L2MFIX ... successful

Running From:
C:\WINDOWS\system32

Killing Processes!

Command Line Process Viewer/Killer/Suspender for Windows NT/2000/XP V2.03
Copyright(C) 2002-2003 Craig.Peacock@beyondlogic.org
Killing PID 316 'smss.exe'

Command Line Process Viewer/Killer/Suspender for Windows NT/2000/XP V2.03
Copyright(C) 2002-2003 Craig.Peacock@beyondlogic.org
Killing PID 400 'winlogon.exe'
Killing PID 400 'winlogon.exe'
Killing PID 400 'winlogon.exe'

Command Line Process Viewer/Killer/Suspender for Windows NT/2000/XP V2.03
Copyright(C) 2002-2003 Craig.Peacock@beyondlogic.org
Killing PID 1496 'explorer.exe'

Command Line Process Viewer/Killer/Suspender for Windows NT/2000/XP V2.03
Copyright(C) 2002-2003 Craig.Peacock@beyondlogic.org
Error, Cannot find a process with an image name of rundll32.exe
Restoring Sedebugprivilege:
Granting SeDebugPrivilege to Administrateurs ... successful

Scanning First Pass. Please Wait!

First Pass Completed

Second Pass Scanning

Second pass Completed!
Desktop.ini sucessfully removed

Restoring Windows Update Certificates.:

The following Is the Current Export of the Winlogon notify key:
****************************************************************************
Windows Registry Editor Version 5.00

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\crypt32chain]
"Asynchronous"=dword:00000000
"Impersonate"=dword:00000000
"DllName"=hex(2):63,00,72,00,79,00,70,00,74,00,33,00,32,00,2e,00,64,00,6c,00,\
6c,00,00,00
"Logoff"="ChainWlxLogoffEvent"

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\cryptnet]
"Asynchronous"=dword:00000000
"Impersonate"=dword:00000000
"DllName"=hex(2):63,00,72,00,79,00,70,00,74,00,6e,00,65,00,74,00,2e,00,64,00,\
6c,00,6c,00,00,00
"Logoff"="CryptnetWlxLogoffEvent"

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\cscdll]
"DLLName"="cscdll.dll"
"Logon"="WinlogonLogonEvent"
"Logoff"="WinlogonLogoffEvent"
"ScreenSaver"="WinlogonScreenSaverEvent"
"Startup"="WinlogonStartupEvent"
"Shutdown"="WinlogonShutdownEvent"
"StartShell"="WinlogonStartShellEvent"
"Impersonate"=dword:00000000
"Asynchronous"=dword:00000001

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\ScCertProp]
"DLLName"="wlnotify.dll"
"Logon"="SCardStartCertProp"
"Logoff"="SCardStopCertProp"
"Lock"="SCardSuspendCertProp"
"Unlock"="SCardResumeCertProp"
"Enabled"=dword:00000001
"Impersonate"=dword:00000001
"Asynchronous"=dword:00000001

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\Schedule]
"Asynchronous"=dword:00000000
"DllName"=hex(2):77,00,6c,00,6e,00,6f,00,74,00,69,00,66,00,79,00,2e,00,64,00,\
6c,00,6c,00,00,00
"Impersonate"=dword:00000000
"StartShell"="SchedStartShell"
"Logoff"="SchedEventLogOff"

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\sclgntfy]
"Logoff"="WLEventLogoff"
"Impersonate"=dword:00000000
"Asynchronous"=dword:00000001
"DllName"=hex(2):73,00,63,00,6c,00,67,00,6e,00,74,00,66,00,79,00,2e,00,64,00,\
6c,00,6c,00,00,00

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\SensLogn]
"DLLName"="WlNotify.dll"
"Lock"="SensLockEvent"
"Logon"="SensLogonEvent"
"Logoff"="SensLogoffEvent"
"Safe"=dword:00000001
"MaxWait"=dword:00000258
"StartScreenSaver"="SensStartScreenSaverEvent"
"StopScreenSaver"="SensStopScreenSaverEvent"
"Startup"="SensStartupEvent"
"Shutdown"="SensShutdownEvent"
"StartShell"="SensStartShellEvent"
"PostShell"="SensPostShellEvent"
"Disconnect"="SensDisconnectEvent"
"Reconnect"="SensReconnectEvent"
"Unlock"="SensUnlockEvent"
"Impersonate"=dword:00000001
"Asynchronous"=dword:00000001

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\termsrv]
"Asynchronous"=dword:00000000
"DllName"=hex(2):77,00,6c,00,6e,00,6f,00,74,00,69,00,66,00,79,00,2e,00,64,00,\
6c,00,6c,00,00,00
"Impersonate"=dword:00000000
"Logoff"="TSEventLogoff"
"Logon"="TSEventLogon"
"PostShell"="TSEventPostShell"
"Shutdown"="TSEventShutdown"
"StartShell"="TSEventStartShell"
"Startup"="TSEventStartup"
"MaxWait"=dword:00000258
"Reconnect"="TSEventReconnect"
"Disconnect"="TSEventDisconnect"

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\wlballoon]
"DLLName"="wlnotify.dll"
"Logon"="RegisterTicketExpiredNotificationEvent"
"Logoff"="UnregisterTicketExpiredNotificationEvent"
"Impersonate"=dword:00000001
"Asynchronous"=dword:00000001

The following are the files found:
****************************************************************************

Registry Entries that were Deleted:
Please verify that the listing looks ok.
If there was something deleted wrongly there are backups in the backreg folder.
****************************************************************************
REGEDIT4

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved]
REGEDIT4

[-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\User Agent\Post Platform]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\User Agent\Post Platform]
****************************************************************************
Desktop.ini Contents:
****************************************************************************
[.ShellClassInfo]
CLSID={645FF040-5081-101B-9F08-00AA002F954E}
****************************************************************************
Checking for L2MFix account(0=no 1=yes):
0
Zipping up files for submission:
zip warning: name not matched: dlls\*.*

zip error: Nothing to do! (backup.zip)
adding: backregs/notibac.reg (deflated 87%)
adding: backregs/shell.reg (deflated 74%)

Utilisateur anonyme · Answer

salutremet moi le rapport de spybota demain

biggup · Answer

slt régis voila le rapport spybot

--- Search result list ---
MaxSearch: Root class (Clé du registre, fixing failed)
HKEY_LOCAL_MACHINE\Software\Classes\XBTB07618.XBTB07618

MaxSearch: Root class (Clé du registre, fixing failed)
HKEY_LOCAL_MACHINE\Software\Classes\ToolBand.XBTP07618

MaxSearch: Root class (Clé du registre, fixing failed)
HKEY_LOCAL_MACHINE\Software\Classes\XBTB07618.IEToolbar

DyFuCA: Root class (Clé du registre, fixing failed)
HKEY_LOCAL_MACHINE\Software\Classes\DyFuCA_BH.BHObj

VirtuMonde: Root class (Clé du registre, fixing failed)
HKEY_LOCAL_MACHINE\Software\Classes\MSEvents.MSEvents

Advertising.com: Cookie traceur (Firefox: default) (Cookie, fixed)

--- Spybot - Search & Destroy version: 1.4 (build: 20050523) ---

2005-12-27 unins000.exe (51.41.0.0)
2005-05-31 blindman.exe (1.0.0.1)
2005-05-31 SpybotSD.exe (1.4.0.3)
2005-05-31 TeaTimer.exe (1.4.0.2)
2005-05-31 Update.exe (1.4.0.0)
2005-05-31 advcheck.dll (1.0.2.0)
2005-05-31 aports.dll (2.1.0.0)
2005-05-31 borlndmm.dll (7.0.4.453)
2005-05-31 delphimm.dll (7.0.4.453)
2005-05-31 SDHelper.dll (1.4.0.0)
2005-05-31 Tools.dll (2.0.0.2)
2005-05-31 UnzDll.dll (1.73.1.1)
2005-05-31 ZipDll.dll (1.73.2.0)
2006-01-13 Includes\Cookies.sbi (*)
2006-01-13 Includes\Dialer.sbi (*)
2006-01-13 Includes\Hijackers.sbi (*)
2006-01-13 Includes\Keyloggers.sbi (*)
2006-01-13 Includes\Malware.sbi (*)
2006-01-13 Includes\Revision.sbi (*)
2006-01-13 Includes\Security.sbi (*)
2006-01-13 Includes\Spybots.sbi (*)
2006-01-13 Includes\Trojans.sbi (*)
2005-02-17 Includes\Tracks.uti
2006-01-13 Includes\PUPS.sbi (*)

--- System information ---
Windows XP (Build: 2600)
/ DataAccess: Microsoft Data Access Components KB870669
/ DataAccess: Patch Available For XMLHTTP Vulnerability
/ DataAccess: Patch Available For XMLHTTP Vulnerability
/ DataAccess: Security Update for Microsoft Data Access Components
/ Windows Media Player: Correctif pour le Lecteur Windows Media [Voir Q828026 pour plus d'informations]
/ Windows Media Player / SP0: Correctif pour le Lecteur Windows Media [Voir Q828026 pour plus d'informations]
/ Windows Media Player: Windows Media Update 320920
/ Windows XP / SP1: Windows XP Hotfix - KB821557
/ Windows XP / SP1: Windows XP Hotfix - KB823182
/ Windows XP / SP1: Windows XP Hotfix - KB824105
/ Windows XP / SP1: Correctif Windows XP - KB824141
/ Windows XP / SP1: Correctif Windows XP - KB828035
/ Windows XP / SP1 / Q309521: Windows XP Hotfix (SP1) [See Q309521 for more information]
/ Windows XP / SP1: Windows XP Hotfix (SP1) [See Q311889 for more information]
/ Windows XP / SP1: Windows XP Hotfix (SP1) [See Q311967 for more information]
/ Windows XP / SP1: Windows XP Hotfix (SP1) [See Q313450 for more information]
/ Windows XP / SP1: Windows XP Hotfix (SP1) [See Q314862 for more information]
/ Windows XP / SP1: Windows XP Hotfix (SP1) [See Q315000 for more information]
/ Windows XP / SP1: Windows XP Hotfix (SP1) [See Q315403 for more information]
/ Windows XP / SP1: Windows XP Hotfix (SP1) [See Q317277 for more information]
/ Windows XP / SP1: Windows XP Hotfix (SP1) [See Q324096 for more information]
/ Windows XP / SP1: Windows XP Hotfix (SP1) [See Q326830 for more information]
/ Windows XP / SP1: Windows XP Hotfix (SP1) [See Q328940 for more information]
/ Windows XP / SP1: Windows XP Hotfix (SP1) [See Q329048 for more information]
/ Windows XP / SP1: Windows XP Hotfix (SP1) Q329170
/ Windows XP / SP1: Windows XP Hotfix (SP1) [See Q329390 for more information]
/ Windows XP / SP1: Windows XP Hotfix (SP1) [See Q329441 for more information]
/ Windows XP / SP1: Windows XP Hotfix (SP1) [See Q329834 for more information]
/ Windows XP / SP1: Windows XP Hotfix (SP1) Q810577
/ Windows XP / SP1: Windows XP Hotfix (SP1) Q811493
/ Windows XP / SP1: Windows XP Hotfix (SP1) Q811630
/ Windows XP / SP1: Windows XP Hotfix (SP1) Q815021
/ Windows XP / SP1: Windows XP Hotfix (SP1) Q817606
/ Windows XP / SP1: Windows XP Hotfix (SP1) Q819696
/ Windows XP / SP2: Correctif Windows XP - KB810217
/ Windows XP / SP2: Correctif Windows XP - KB823559
/ Windows XP / SP2: Correctif Windows XP - KB825119
/ Windows XP / SP2: Correctif Windows XP - KB833987
/ Windows XP / SP2: Correctif Windows XP - KB839643
/ Windows XP / SP2: Correctif Windows XP - KB839645
/ Windows XP / SP2: Correctif Windows XP - KB840315
/ Windows XP / SP2: Correctif Windows XP - KB841873
/ Windows XP / SP2: Correctif Windows XP - KB842773
/ Windows XP / SP2: Correctif Windows XP - KB883357
/ Windows XP / SP2: Package du correctif Windows XP [voir Q323255 pour plus de détails]

--- Startup entries list ---
Located: HK_LM:Run, avast!
command: C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
file: C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
size: 98352
MD5: 0a9883be214c4f7a65b6dff129f37b6e

Located: HK_LM:Run, Openwares LiveUpdate
command: C:\Program Files\LiveUpdate\LiveUpdate.exe
file: C:\Program Files\LiveUpdate\LiveUpdate.exe
size: 61440
MD5: 93cf2b93f02e52cd6fffa567249f3f73

Located: HK_LM:Run, Zone Labs Client
command: C:\karim\ZoneAlarm\ZoneAlarm\zlclient.exe
file: C:\karim\ZoneAlarm\ZoneAlarm\zlclient.exe
size: 755472
MD5: e85c5dc2659f562c496e839649aa7200

Located: Démarrage (utilisateur), Microsoft Office.lnk
command: C:\Program Files\Microsoft Office\Office\Osa9.exe
file: C:\Program Files\Microsoft Office\Office\Osa9.exe
size: 65588
MD5: 09ec24043108b072e01a03a029239324

Located: System.ini, crypt32chain
command: crypt32.dll
file: crypt32.dll

Located: System.ini, cryptnet
command: cryptnet.dll
file: cryptnet.dll

Located: System.ini, cscdll
command: cscdll.dll
file: cscdll.dll

Located: System.ini, ScCertProp
command: wlnotify.dll
file: wlnotify.dll

Located: System.ini, Schedule
command: wlnotify.dll
file: wlnotify.dll

Located: System.ini, sclgntfy
command: sclgntfy.dll
file: sclgntfy.dll

Located: System.ini, SensLogn
command: WlNotify.dll
file: WlNotify.dll

Located: System.ini, termsrv
command: wlnotify.dll
file: wlnotify.dll

Located: System.ini, wlballoon
command: wlnotify.dll
file: wlnotify.dll

--- Browser helper object list ---
{761497BB-D6F0-462C-B6EB-D4DAF1D92D43} (SSVHelper Class)
BHO name:
CLSID name: SSVHelper Class
Path: C:\Program Files\Java\jre1.5.0_06\bin\
Long name: ssv.dll
Short name:
Date (created): 10/11/2005 13:03:56
Date (last access): 19/01/2006
Date (last write): 10/11/2005 13:22:10
Filesize: 184423
Attributes: archive
MD5: F01726F7CA8538FDD4663C9DB8FEAEDC
CRC32: 0111B892
Version: 5.0.60.5

--- ActiveX list ---
{9A9307A0-7DA4-4DAF-B042-5009F29E09E1} (ActiveScan Installer Class)
DPF name:
CLSID name: ActiveScan Installer Class
Installer: C:\WINDOWS\Downloaded Program Files\asinst.inf
Codebase: http://acs.pandasoftware.com/activescan/as5free/asinst.cab
description:
classification: Open for discussion
known filename: ASINST.DLL
info link:
info source: Safer Networking Ltd.
Path: C:\WINDOWS\Downloaded Program Files\
Long name: asinst.dll
Short name:
Date (created): 19/12/2005 13:35:32
Date (last access): 19/01/2006
Date (last write): 19/12/2005 13:35:32
Filesize: 135168
Attributes: archive
MD5: 20C07B231040B49AFCE82397BFC35F9C
CRC32: 9301377D
Version: 58.4.0.0

{C81B5180-AFD1-41A3-97E1-99E8D254DB98} ()
DPF name:
CLSID name:
Installer: C:\WINDOWS\Downloaded Program Files\cssweb.inf
Codebase: http://www.commandondemand.com/eval/cod/cabs/cssweb.cab
description: CSS Web Installer Class
classification: Open for discussion
known filename: CSSWEB.DLL
info link:
info source: Patrick M. Kolla

{CAFEEFAC-0015-0000-0006-ABCDEFFEDCBA} (Java Runtime Environment 1.5.0)
DPF name: Java Runtime Environment 1.5.0
CLSID name: Java Plug-in 1.5.0_06
Installer:
Codebase: http://java.sun.com/update/1.5.0/jinstall-1_5_0_06-windows-i586.cab
Path: C:\Program Files\Java\jre1.5.0_06\bin\
Long name: NPJPI150_06.dll
Short name: NPJPI1~1.DLL
Date (created): 10/11/2005 13:03:56
Date (last access): 19/01/2006
Date (last write): 10/11/2005 13:22:10
Filesize: 69746
Attributes: archive
MD5: D2CF6BB5E9020E6707B62575F8083954
CRC32: 7F39DC54
Version: 5.0.60.5

{CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} (Java Runtime Environment 1.5.0)
DPF name: Java Runtime Environment 1.5.0
CLSID name: Java Plug-in 1.5.0_06
Installer:
Codebase: http://java.sun.com/update/1.5.0/jinstall-1_5_0_06-windows-i586.cab
Path: C:\Program Files\Java\jre1.5.0_06\bin\
Long name: NPJPI150_06.dll
Short name: NPJPI1~1.DLL
Date (created): 10/11/2005 13:03:56
Date (last access): 19/01/2006
Date (last write): 10/11/2005 13:22:10
Filesize: 69746
Attributes: archive
MD5: D2CF6BB5E9020E6707B62575F8083954
CRC32: 7F39DC54
Version: 5.0.60.5

--- Process list ---
PID: 0 ( 0) [System]
PID: 316 ( 4) \SystemRoot\System32\smss.exe
PID: 372 ( 316) \??\C:\WINDOWS\system32\csrss.exe
PID: 400 ( 316) \??\C:\WINDOWS\system32\winlogon.exe
PID: 444 ( 400) C:\WINDOWS\system32\services.exe
size: 101888
MD5: FC0691097471EE374907E1024EDCBD43
PID: 456 ( 400) C:\WINDOWS\system32\lsass.exe
size: 11776
MD5: 2C2431B30A629123C1757582C9D93F38
PID: 612 ( 444) C:\WINDOWS\system32\svchost.exe
size: 12800
MD5: 333A4DB8410D8E24DB06D6AEBECDC7C2
PID: 636 ( 444) C:\WINDOWS\System32\svchost.exe
size: 12800
MD5: 333A4DB8410D8E24DB06D6AEBECDC7C2
PID: 696 ( 444) C:\WINDOWS\System32\svchost.exe
size: 12800
MD5: 333A4DB8410D8E24DB06D6AEBECDC7C2
PID: 768 ( 444) C:\WINDOWS\System32\svchost.exe
size: 12800
MD5: 333A4DB8410D8E24DB06D6AEBECDC7C2
PID: 856 ( 444) C:\WINDOWS\system32\spoolsv.exe
size: 51200
MD5: B1CE5287F096895D9BE26EB86F4D5FAF
PID: 984 ( 444) C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
size: 53248
MD5: 435D862E96FE19612093177CF6618F4E
PID: 996 ( 444) C:\Program Files\Alwil Software\Avast4\ashServ.exe
size: 98352
MD5: C8C0AEE5D0585457FF6E318E8BB9289D
PID: 1028 ( 444) C:\WINDOWS\System32\CTsvcCDA.exe
size: 44032
MD5: 3C8B6609712F4FF78E521F6DCFC4032B
PID: 1052 ( 444) C:\Program Files\Executive Software\DiskeeperWorkstation\DKService.exe
size: 253952
MD5: 5A715FC7A5E222D8E987B2D903885B0B
PID: 1080 ( 444) C:\Documents and Settings\sabrina\Bureau\Nouveau dossier (2)\ewido anti-malware\ewidoctrl.exe
size: 13888
MD5: 26830B750372AB1BF29C95DEEBEB802F
PID: 1092 ( 444) C:\Documents and Settings\sabrina\Bureau\Nouveau dossier (2)\ewido anti-malware\ewidoguard.exe
size: 151616
MD5: 34A50717AD686900F078F5208F8E908E
PID: 1192 ( 444) C:\WINDOWS\System32\svchost.exe
size: 12800
MD5: 333A4DB8410D8E24DB06D6AEBECDC7C2
PID: 1224 ( 444) C:\WINDOWS\SYSTEM32\ZONELABS\vsmon.exe
size: 1693448
MD5: 7E9C8F0BF97910E04A078799837BB6F2
PID: 1468 (1360) C:\WINDOWS\Explorer.EXE
size: 1005056
MD5: 9E20A8EF0CA524446AFEE29F4423CC8F
PID: 1532 ( 444) C:\WINDOWS\System32\MsPMSPSv.exe
size: 53520
MD5: 581176F60885AEF8F78C6E38DCC3CDF9
PID: 1808 (1468) C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
size: 98352
MD5: 0A9883BE214C4F7A65B6DFF129F37B6E
PID: 1840 (1468) C:\karim\ZoneAlarm\ZoneAlarm\zlclient.exe
size: 755472
MD5: E85C5DC2659F562C496E839649AA7200
PID: 184 ( 444) C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
size: 360496
MD5: EB51923A762779247C776A551C546898
PID: 212 ( 444) C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
size: 241712
MD5: 8C50FFD2642FD97DAC0009280A438570
PID: 2124 (1468) C:\Documents and Settings\sabrina\Bureau\Nouveau dossier (2)\Spybot - Search & Destroy\SpybotSD.exe
size: 4393096
MD5: 09CA174A605B480318731E691DC98539
PID: 2408 (1468) C:\Program Files\Mozilla Firefox\firefox.exe
size: 7162979
MD5: F375D4684A1F72D279A7CFA7A5DE1A9C
PID: 4 ( 0) System

--- Browser start & search pages list ---
Spybot - Search & Destroy browser pages report, 19/01/2006 21:02:40

HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main\Search Page
http://www.google.com
HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main\Start Page
http://www.google.fr/
HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Search\SearchAssistant Explorer\Main\Default_Search_URL
about:blank
HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Main\Start Page
http://www.microsoft.com/isapi/redir.dll?prd={SUB_PRD}&clcid={SUB_CLSID}&pver={SUB_PVER}&ar=home
HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Main\Default_Page_URL
http://www.microsoft.com/isapi/redir.dll?prd=ie&pver=6&ar=msnhome
HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Main\Default_Search_URL
http://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Search\SearchAssistant
http://ie.search.msn.com/{SUB_RFC1766}/srchasst/srchasst.htm
HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Search\CustomizeSearch
http://ie.search.msn.com/{SUB_RFC1766}/srchasst/srchcust.htm

--- Winsock Layered Service Provider list ---

--- Uninstall list ---
a-squared Free 1.6.1 1.6 (a-squared Free_is1)
install location: C:\karim\a-squared\
uninstall cmd: "C:\karim\a-squared\unins000.exe"
publisher: Emsi Software GmbH
comments: a-squared
help link: http://forum.emsisoft.com

(AddressBook)
uninstall cmd: "C:\Program Files\Outlook Express\setup50.exe" /APP:WAB /CALLER:IE50 /UNINSTALL /PROMPT

Serveur AMS (AMS Server)
uninstall cmd: C:\WINDOWS\IsUn040c.exe -f"C:\Program Files\Serveur AMS\AMSSERVR.isu"

(AudioHQ)
uninstall cmd: RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{FD851F7E-F887-405D-9E1C-488811113EF3}\setup.exe" -l0x40c /remove

avast! Antivirus 4.6 (avast!)
version (major): 4
version (minor): 6
install location: C:\PROGRA~1\ALWILS~1\Avast4
install source: C:\PROGRA~1\ALWILS~1\Avast4\setup
uninstall cmd: rundll32 C:\PROGRA~1\ALWILS~1\Avast4\Setup\setiface.dll,RunSetup
publisher: Alwil Software
help link: http://www.avast.com

(Branding)

Canon PIXMA iP3000 (CANONBJ_Deinstall_CNMCP61.DLL)
uninstall cmd: C:\WINDOWS\System32\CNMCP61.exe "-PRINTERNAMECanon PIXMA iP3000" "-HELPERDLLC:\BJPrinter\CNMWINDOWS\Canon PIXMA iP3000 Installer\Inst2\cnmis.dll" "-RCDLLC:\BJPrinter\CNMWINDOWS\Canon PIXMA iP3000 Installer\Inst2\cnmi040c.dll"

CCleaner (remove only) (CCleaner)
uninstall cmd: "C:\Documents and Settings\sabrina\Bureau\Nouveau dossier\CCleaner\uninst.exe"

OLITEC PCI 56K V2 Modem (Conexant SoftK56 Modem)
uninstall cmd: infunist.exe

(Connection Manager)

Cosmo Player 2.1 (38329) (Cosmo Player 2.1)
uninstall cmd: C:\WINDOWS\IsUn040c.exe -f"C:\Program Files\CosmoSoftware\CosmoPlayer\CosmoPlayer21.isu"

(Creative Configurator)
uninstall cmd: C:\WINDOWS\IsUn040c.exe -f"C:\Program Files\Creative\Audio\Configurator.isu"

(Creative Dos Drivers)
uninstall cmd: C:\WINDOWS\IsUn040c.exe -f"C:\Program Files\Creative\Audio\Dos.isu"

(Creative Installer Setup)
uninstall cmd: C:\WINDOWS\IsUn040c.exe -f"C:\Program Files\Creative\Uninstall\Installer.isu"

(Creative MiniDisc Center)
uninstall cmd: RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{AC157741-3285-4D6A-B934-9174587A3493}\setup.exe" -l0x40c /remove

(Creative Mixer)
uninstall cmd: C:\WINDOWS\IsUn040c.exe -f"C:\Program Files\Creative\Audio\CTMixer.isu"

(Creative PlayCenter 2.0)
uninstall cmd: RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{48E3A9E6-FA13-11D5-8CC9-00A0C98192B6}\setup.exe" -l0x40c /remove

(Creative Recorder)
uninstall cmd: RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{E7337A45-3FE5-4392-ABBB-26B794D060C9}\setup.exe" -l0x40c /remove

(Creative Restore Defaults)
uninstall cmd: RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{9A4D2983-4662-4387-BE3D-4CFC2FA9C100}\setup.exe" -l0x40c /remove

(Creative Surround Mixer 2)
uninstall cmd: RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{58582977-44D2-44A0-A09B-031CC2AE5938}\setup.exe" -l0x40c /remove

(Creative WaveStudio)
uninstall cmd: RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{435E969D-867E-4364-8E74-3DC8A69C5BDB}\setup.exe" -l0x40c /remove

(Diagnostics2)
uninstall cmd: RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{A731533B-B325-4D9C-91A4-D93C8E294C19}\setup.exe" -l0x40c /remove

Canon Utilities Easy-PhotoPrint (Easy-PhotoPrint)
uninstall cmd: C:\Program Files\Canon\Easy-PhotoPrint\uninst.exe C:\Program Files\Canon\Easy-PhotoPrint\uninst.ini

Canon Utilities Easy-PrintToolBox (Easy-PrintToolBox)
uninstall cmd: C:\WINDOWS\BJPSUNST.EXE

Easy-WebPrint (Easy-WebPrint)
uninstall cmd: C:\WINDOWS\IsUn040c.exe -f"C:\Program Files\Canon\Easy-WebPrint\Uninst.isu"

Encyclopédie Microsoft Encarta 99 99F (Encarta99F)
version (major): 6
install location: "C:\Program Files\Microsoft Référence\Encyclopédie Encarta"
install source: "D:"
uninstall cmd: RunDll32 C:\PROGRA~1\MICROS~4\ENCYCL~1\UNENC99.DLL,Uninstall C:\PROGRA~1\MICROS~4\ENCYCL~1\SETUP99F\INST99F.LOG
publisher: Microsoft Corporation

ewido anti-malware (ewidoantimalware)
install location: C:\Documents and Settings\sabrina\Bureau\Nouveau dossier (2)\ewido anti-malware
uninstall cmd: C:\Documents and Settings\sabrina\Bureau\Nouveau dossier (2)\ewido anti-malware\Uninstall.exe
publisher: ewido networks
help link: http://www.ewido.net

(expinst)

GeForce2 GTS Experience (GeForce2 GTS Experience)
uninstall cmd: C:\WINDOWS\IsUninst.exe -f"C:\Program Files\NVidia Corporation\GeForce2 GTS Experience\Uninst.isu"

HijackThis 1.99.1 1.99.1 (HijackThis)
uninstall cmd: C:\Documents and Settings\sabrina\Bureau\Nouveau dossier (2)\HijackThis.exe /uninstall
publisher: Soeperman Enterprises Ltd.

Internet Explorer Q867801 (ieupdate)
uninstall cmd: C:\WINDOWS\ieuninst.exe C:\WINDOWS\INF\Q867801.inf

Java 2 Runtime Environment Standard Edition v1.3.1_03 (JRE 1.3.1_03)
uninstall cmd: C:\WINDOWS\IsUninst.exe -f"C:\Program Files\JavaSoft\JRE\1.3.1_03\Uninst.isu"

Kaspersky On-line Scanner 5.0.67.0 (Kaspersky On-line Scanner)
estimated size: 6040
install location: C:\WINDOWS\System32\KASPER~1\KASPER~1
uninstall cmd: C:\WINDOWS\System32\KASPER~1\KASPER~1\kavuninstall.exe
publisher: Kaspersky Lab
contact: Customer Support Department
help link: http://www.kaspersky.com/support.asp

Microsoft Data Access Components KB870669 (KB870669)
uninstall cmd: C:\WINDOWS\muninst.exe C:\WINDOWS\INF\KB870669.inf
publisher: Microsoft Corporation
help link: http://support.microsoft.com?kbid=KB870669

Correctif Windows XP - KB883357 20040804.165131 (KB883357)
uninstall cmd: C:\WINDOWS\$NtUninstallKB883357$\spuninst\spuninst.exe
publisher: Microsoft Corporation
help link: http://support.microsoft.com?kbid=883357

LiveUpdate 2.6 (Symantec Corporation) 2.6.14.0 (LiveUpdate)
install location: C:\Program Files\Symantec\LiveUpdate
uninstall cmd: C:\Program Files\Symantec\LiveUpdate\LSETUP.EXE /U
publisher: Symantec Corporation

Logiciel iTouch de Logitech (Logitech iTouch)
uninstall cmd: C:\WINDOWS\IsUn040c.exe -fC:\PROGRA~1\LOGITECH\ITOUCH\Uninst.isu -c"C:\PROGRA~1\LOGITECH\ITOUCH\LUnInst.dll

(Logitech Key Commander)
uninstall cmd: C:\WINDOWS\IsUn040c.exe -fC:\PROGRA~1\LOGITECH\ITOUCH\Uninst.isu -c"C:\PROGRA~1\LOGITECH\ITOUCH\LUnInst.dll

Macromedia Shockwave Player 10.1.0.11 (Macromedia Shockwave Player)
uninstall cmd: C:\WINDOWS\SYSTEM32\MACROMED\SHOCKW~3\UNWISE.EXE C:\WINDOWS\SYSTEM32\MACROMED\SHOCKW~3\INSTALL.LOG
publisher: Macromedia, Inc.
help link: http://www.macromedia.com/fr/support/shockwave

Mathcad 2000 Professionnel (Mathcad 2000 Professionnel)
uninstall cmd: C:\WINDOWS\IsUn040c.exe -f"C:\Program Files\MathSoft\Mathcad 2000 Professionnel\Uninst.isu"

CD-LabelPrint (MediaNavigation.CDLabelPrint)
install location: C:\Program Files\Canon\CD-LabelPrint\
uninstall cmd: "C:\Program Files\Canon\CD-LabelPrint\Uninstal.exe" Canon.CDLabelPrint.Application

MediaRing Talk 99 Release 7.0.0014 (MediaRing Talk 99 Release 7.0.0014)
uninstall cmd: C:\WINDOWS\preuninst.exe

(Midi Samples)
uninstall cmd: C:\WINDOWS\IsUn040c.exe -f"C:\Program Files\Creative\Audio\Midi.isu"

Mozilla Firefox (1.5) 1.5 (fr) (Mozilla Firefox (1.5))
install location: C:\Program Files\Mozilla Firefox
uninstall cmd: C:\WINDOWS\UninstallFirefox.exe /ua "1.5 (fr)"
publisher: Mozilla

Barre d'outils MSN (MSN Toolbar)
uninstall cmd: C:\Program Files\MSN Apps\MSN Toolbar\01.02.4000.1001\fr\mtbs.exe c

WinFast Windows 95/98/ME Display Drivers (NVIDIA)
uninstall cmd: rundll32.exe C:\WINDOWS\SYSTEM32\NVINST32.DLL,NvUninstall9x nvagp.inf

Outlook Express Q823353 (oeupdate)
uninstall cmd: C:\WINDOWS\oeuninst.exe C:\WINDOWS\INF\Q823353.inf

(PCHealth)
uninstall cmd: rundll32.exe setupapi.dll,InstallHinfSection DefaultUninstall 132 C:\WINDOWS\INF\PCHealth.inf

(PlayCenter)
uninstall cmd: C:\WINDOWS\IsUn040c.exe -f"C:\Program Files\Creative\Audio\PlayCenter\Player.isu"

PopUpCop 2.0.3.20 (PopUpCop)
uninstall cmd: C:\PROGRA~1\POPUPCOP\UNWISE.EXE /U C:\PROGRA~1\POPUPCOP\INSTALL.LOG
publisher: EdenSoft
help link: http://www.PopUpCop.com/help.html

Windows XP Hotfix (SP1) [See Q313450 for more information] (Q313450)
uninstall cmd: C:\WINDOWS\$NtUninstallQ313450$\spuninst\spuninst.exe

Windows XP Hotfix (SP1) Q329170 20030102.115458 (Q329170)
uninstall cmd: C:\WINDOWS\$NtUninstallQ329170$\spuninst\spuninst.exe
publisher: Microsoft Corporation
help link: Pour plus d'informations, consultez Q329170 à l'adresse http://support.microsoft.com

QuickTime (QuickTime)
uninstall cmd: C:\WINDOWS\unvise32qt.exe C:\WINDOWS\SYSTEM32\QuickTime\Uninstall.log

QuickTime for Windows (32-bit) (QuickTime32)
uninstall cmd: C:\WINDOWS\QTW32DEL.EXE

(Sevinst)

(ShockwaveFlash)

Sound Blaster AudioPCI (Sound Blaster AudioPCI)
uninstall cmd: C:\Program Files\Creative\Uninstall\CTUNINST.EXE /U:UNINST1.INI

(Sound Blaster Live! Pilotes Windows)
uninstall cmd: "C:\Program Files\Creative\SBLive\Program\Ctzapxx.EXE" /X /U /S /L:FRN

USB Monitor (USB Monitor)
uninstall cmd: C:\WINDOWS\uninst.exe -f"C:\Program Files\USB Monitor\DeIsL1.isu" -c"C:\Program Files\USB Monitor\_ISREG32.DLL"

VIAhm (VIAhm)
uninstall cmd: C:\WINDOWS\IsUninst.exe -fc:\VIAhm\Uninst.isu

Viewpoint Media Player (Remove Only) (ViewpointMediaPlayer)
uninstall cmd: C:\Program Files\Viewpoint\Viewpoint Media Player\mtsAxInstaller.exe /u

Winamp (remove only) (Winamp)
uninstall cmd: "C:\Program Files\Winamp\UninstWA.exe"

Désinstallation de Windows XP (Windows)
install location: C:\undo
uninstall cmd: %SYSTEMROOT%\system32\osuninst.exe

WinFox V1.0 Setup (WinFox V1.0 Setup)
uninstall cmd: C:\WINDOWS\IsUn040c.exe -f"C:\Program Files\Leadtek Research Inc.\WinFox V1.0 Setup\Uninst.isu"

Archiveur WinRAR (WinRAR archiver)
uninstall cmd: C:\Program Files\WinRAR\uninstall.exe

XingMPEG Player (XingMPEG Player)
uninstall cmd: C:\PROGRA~1\XING\XINGMP~1\UNINST.EXE C:\PROGRA~1\XING\XINGMP~1\INSTALL.LOG

ZoneAlarm 6.1.737.000 (ZoneAlarm)
uninstall cmd: C:\karim\ZoneAlarm\ZoneAlarm\zauninst.exe
publisher: Zone Labs, Inc
help link: C:\karim\ZoneAlarm\ZoneAlarm\Aide\zaclients.chm

Microsoft Office 2000 Premium 9.00.2720 ({0000040C-78E1-11D2-B60F-006097C998E7})
version: 150997664
version (major): 9
install date: 24/01/01
install source: D:\
uninstall cmd: MsiExec.exe /I{0000040C-78E1-11D2-B60F-006097C998E7}
publisher: Microsoft Corporation
help link: http://www.microsoft.com/support

Norton WMI Update 2005.1.2.20 ({1526D87C-A955-4FAB-BF18-697BA457E352})
version (major): 2005
version (minor): 1
estimated size: 2168
install date: 20050129
uninstall cmd: MsiExec.exe /X{1526D87C-A955-4FAB-BF18-697BA457E352}
publisher: Symantec Corporation

J2SE Runtime Environment 5.0 Update 4 1.5.0.40 ({3248F0A8-6813-11D6-A77B-00B0D0150040})
version: 17104896
version (major): 1
version (minor): 5
estimated size: 121345
install date: 20050820
install source: http://jdl.sun.com/webapps/download/GetFile/1.5.0_04-b05/windows-i586//
uninstall cmd: MsiExec.exe /I{3248F0A8-6813-11D6-A77B-00B0D0150040}
publisher: Sun Microsystems, Inc.
contact: http://java.com
help link: http://java.com
readme: C:\Program Files\Java\jre1.5.0_04\README.txt

J2SE Runtime Environment 5.0 Update 6 1.5.0.60 ({3248F0A8-6813-11D6-A77B-00B0D0150060})
version: 17104896
version (major): 1
version (minor): 5
estimated size: 122337
install date: 20051226
install source: http://jdl.sun.com/webapps/download/GetFile/1.5.0_06-b05/windows-i586//
uninstall cmd: MsiExec.exe /I{3248F0A8-6813-11D6-A77B-00B0D0150060}
publisher: Sun Microsystems, Inc.
contact: http://java.com
help link: http://java.com
readme: C:\Program Files\Java\jre1.5.0_06\README.txt

WebFldrs XP 9.50.5318 ({350C97B8-3D7C-4EE8-BAA9-00BCB3D54227})
version: 154277062
version (major): 9
version (minor): 50
estimated size: 2708
install date: 20030525
install source: C:\WINDOWS\System32\
publisher: Microsoft Corporation
help link: http://www.microsoft.com/windows

({435E969D-867E-4364-8E74-3DC8A69C5BDB})
uninstall cmd: RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{435E969D-867E-4364-8E74-3DC8A69C5BDB}\setup.exe" -l0x40c

({48E3A9E6-FA13-11D5-8CC9-00A0C98192B6})
uninstall cmd: RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{48E3A9E6-FA13-11D5-8CC9-00A0C98192B6}\setup.exe" -l0x40c

DiskeeperWorkstation 7.0.403.2 ({5187D2C3-BCB9-4450-83B9-5E0BC4B4AB8D})
version: 117440915
version (major): 7
estimated size: 3709
install date: 20040415
install source: C:\Program Files\Executive Software\Diskeeper Setup\
uninstall cmd: MsiExec.exe /I{5187D2C3-BCB9-4450-83B9-5E0BC4B4AB8D}
publisher: Executive Software International, Inc.
comments: Copyright 2002 Executive Software International, Inc. Tous droits réservés.
contact: Support technique
help link: http://www.execsoft.com
help telephone: Téléphone - États-Unis - 818-771-1600 Europe - +011-44-1342-327477 Japon - +32984-3845894

({58582977-44D2-44A0-A09B-031CC2AE5938})
uninstall cmd: RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{58582977-44D2-44A0-A09B-031CC2AE5938}\setup.exe" -l0x40c

Dragon NaturallySpeaking 7.1 7.10.200.092 ({6675E71B-9843-4971-BC15-18AB52801134})
version (major): 7
version (minor): 10
install location: C:\Program Files\ScanSoft\NaturallySpeaking
install source: D:\dragon\
uninstall cmd: C:\Program Files\InstallShield Installation Information\{6675E71B-9843-4971-BC15-18AB52801134}\setup.exe
publisher: ScanSoft
help link: http://www.ScanSoft.com/NaturallySpeaking/support/

Symantec Network Drivers Update 5.4.4.17 ({7169B8E4-2632-46B1-AA5F-167CB5FE5029})
version: 84148228
version (major): 5
version (minor): 4
estimated size: 2890
install date: 20050209
publisher: Symantec Corporation

MAX-FX Tools ({7299E7F8-6921-4588-9A83-9BB7B867706F})
uninstall cmd: RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\ENGINE\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{7299E7F8-6921-4588-9A83-9BB7B867706F}\SETUP.EXE"

Sound Blaster Live! ({9115E7DB-3B29-445A-802D-11E0AA945B7F})
uninstall cmd: RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{9115E7DB-3B29-445A-802D-11E0AA945B7F}\SETUP.EXE" -l0x40c

({9A4D2983-4662-4387-BE3D-4CFC2FA9C100})
uninstall cmd: RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{9A4D2983-4662-4387-BE3D-4CFC2FA9C100}\setup.exe" -l0x40c

({A731533B-B325-4D9C-91A4-D93C8E294C19})
uninstall cmd: RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{A731533B-B325-4D9C-91A4-D93C8E294C19}\setup.exe" -l0x40c

MSN Messenger 7.0 7.0.0777 ({ABEB838C-A1A7-4C5D-B7E1-8B4314600777})
version: 117441289
version (major): 7
estimated size: 25402
install date: 20050421
uninstall cmd: MsiExec.exe /I{ABEB838C-A1A7-4C5D-B7E1-8B4314600777}
publisher: Microsoft Corporation

({AC157741-3285-4D6A-B934-9174587A3493})
uninstall cmd: RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{AC157741-3285-4D6A-B934-9174587A3493}\setup.exe" -l0x40c

PC-Link VTech® (Masterpad®) ({B991EED6-5106-11D5-8F02-0000E8A35E52})
uninstall cmd: RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\ENGINE\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{B991EED6-5106-11D5-8F02-0000E8A35E52}\SETUP.EXE" anything

Norton AntiVirus Corporate Edition 7.6.0.0000 ({BD12EB47-DBDF-11D3-BEEA-00A0CC272509})
version: 117833728
version (major): 7
version (minor): 6
estimated size: 75338
install date: 20020314
install source: D:\CD2\NAVCORP\ROLLOUT\AVSERVER\CLIENTS\WIN32\
uninstall cmd: MsiExec.exe /I{BD12EB47-DBDF-11D3-BEEA-00A0CC272509}
publisher: Symantec Corporation
contact:
help link: http://www.symantec.com
help telephone:

Alcatel SpeedTouch USB Software ({D41FAAA9-8048-4906-86B2-9AADEA1FA0B7})
uninstall cmd: RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\ENGINE\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{D41FAAA9-8048-4906-86B2-9AADEA1FA0B7}\SETUP.EXE" -Control_Panel

Canon PhotoRecord 02.02.00013 ({D958FAC4-BAE0-4B1D-A42E-DE9BFDE7DDEE})
version: 33685517
version (major): 2
version (minor): 2
estimated size: 97842
install date: 20050130
install source: D:\PREC2\
uninstall cmd: MsiExec.exe /X{D958FAC4-BAE0-4B1D-A42E-DE9BFDE7DDEE}
publisher: Cisra

({E7337A45-3FE5-4392-ABBB-26B794D060C9})
uninstall cmd: RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{E7337A45-3FE5-4392-ABBB-26B794D060C9}\setup.exe" -l0x40c

PCLink for GSM Ver.1.0 ({F3BF93D3-25E7-11D6-B496-0050BF282FBC})
uninstall cmd: RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\ENGINE\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{F3BF93D3-25E7-11D6-B496-0050BF282FBC}\SETUP.EXE" -l0x9

({FD851F7E-F887-405D-9E1C-488811113EF3})
uninstall cmd: RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{FD851F7E-F887-405D-9E1C-488811113EF3}\setup.exe" -l0x40c

--- System Services ---
Service (registry key): Aavmker4
Display name: avast! Asynchronous Virus Monitor
Start: 1
Type: 1
Error Control: 1

Service (registry key): Abiosdsk
Start: 4
Type: 1
Error Control: 0

Service (registry key): abp480n5
Start: 4
Type: 1
Error Control: 1

Service (registry key): ACPI
Display name: Pilote ACPI Microsoft
Image path: System32\DRIVERS\ACPI.sys
Image size: 180096
Image MD5: 34128BB2AB7BD69C72017BE7FCF8BE34
Start: 0
Type: 1
Error Control: 1

Service (registry key): ACPIEC
Start: 4
Type: 1
Error Control: 1

Service (registry key): adpu160m
Start: 4
Type: 1
Error Control: 1

Service (registry key): aec
Display name: Suppresseur d'écho acoustique (Noyau Microsoft)
Image path: system32\drivers\aec.sys
Image size: 122472
Image MD5: B45A744CA0A15A59D8B0307CE9741E92
Start: 3
Type: 1
Error Control: 1

Service (registry key): AFD
Display name: Environnement de prise en charge de réseau AFD
Image path: \SystemRoot\System32\drivers\afd.sys
Start: 2
Type: 1
Error Control: 1

Service (registry key): Aha154x
Start: 4
Type: 1
Error Control: 1

Service (registry key): aic78u2
Start: 4
Type: 1
Error Control: 1

Service (registry key): aic78xx
Start: 4
Type: 1
Error Control: 1

Service (registry key): alcan5wn
Display name: Alcatel SpeedTouch USB ADSL PPP Networking Driver (NDISWAN)
Image path: System32\DRIVERS\alcan5wn.sys
Image size: 53168
Image MD5: C7E217CD964D0067F18263429C87EC1B
Start: 3
Type: 1
Error Control: 1

Service (registry key): alcaudsl
Display name: Alcatel Speed Touch ADSL Modem ATM Transport
Image path: System32\DRIVERS\alcaudsl.sys
Image size: 743136
Image MD5: 8080B5EA17A763BBCE6C92BBC6CEEFE8
Start: 3
Type: 1
Error Control: 1

Service (registry key): Alerter
Display name: Avertissement
Description: Informe les utilisateurs et les ordinateurs sélectionnés des alertes administratives. Si ce service est arrêté, les programmes qui utilisent les alertes administratives ne les recevront pas. Si ce service est désactivé, les services qui en dépendent ne pourront pas démarrer.
Object name: NT AUTHORITY\LocalService
Image path: %SystemRoot%\System32\svchost.exe -k LocalService
Image size: 12800
Image MD5: 333A4DB8410D8E24DB06D6AEBECDC7C2
Start: 3
Type: 32
Error Control: 1
Depends On services: LanmanWorkstation

Service (registry key): ALG
Display name: Service de la passerelle de la couche Application
Description: Fournit la prise en charge des plugins de protocoles tiers pour le partage de connexion Internet et le pare-feu Internet.
Object name: NT AUTHORITY\LocalService
Image path: %SystemRoot%\System32\alg.exe
Image size: 40960
Image MD5: 55D226818B6C3D99741432D37657BA73
Start: 3
Type: 16
Error Control: 1

Service (registry key): AliIde
Start: 4
Type: 1
Error Control: 1

Service (registry key): amsint
Start: 4
Type: 1
Error Control: 1

Service (registry key): AppMgmt
Display name: Gestion d'applications
Description: Fournit des services d'installation de logiciels tels que Attribuer, Publier et Supprimer.
Object name: LocalSystem
Image path: %SystemRoot%\system32\svchost.exe -k netsvcs
Image size: 12800
Image MD5: 333A4DB8410D8E24DB06D6AEBECDC7C2
Start: 3
Type: 32
Error Control: 1

Service (registry key): asc
Start: 4
Type: 1
Error Control: 1

Service (registry key): asc3350p
Start: 4
Type: 1
Error Control: 1

Service (registry key): asc3550
Start: 4
Type: 1
Error Control: 1

Service (registry key): aswMon2
Display name: avast! Standard Shield Support
Start: 2
Type: 2
Error Control: 1

Service (registry key): aswRdr
Display name: aswRdr
Start: 3
Type: 1
Error Control: 1
Depends On services: tcpip

Service (registry key): aswTdi
Display name: avast! Network Shield Support
Start: 1
Type: 1
Error Control: 1
Depends On services: tcpip

Service (registry key): aswUpdSv
Display name: avast! iAVS4 Control Service
Description: Fournit la mise à jour automatique pour l'antivirus avast!.
Object name: LocalSystem
Image path: "C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe"
Image size: 53248
Image MD5: 435D862E96FE19612093177CF6618F4E
Start: 2
Type: 272
Error Control: 1

Service (registry key): AsyncMac
Display name: Pilote de média asynchrone RAS
Description: Pilote de média asynchrone RAS
Image path: System32\DRIVERS\asyncmac.sys
Image size: 13568
Image MD5: 03F403B07A884FC2AA54A0916C410931
Start: 3
Type: 1
Error Control: 1

Service (registry key): atapi
Display name: Contrôleur de disque dur IDE/ESDI standard
Image path: System32\DRIVERS\atapi.sys
Image size: 86656
Image MD5: A64013E98426E1877CB653685C5C0009
Start: 0
Type: 1
Error Control: 1

Service (registry key): Atdisk
Start: 4
Type: 1
Error Control: 0

Service (registry key): Atmarpc
Display name: Protocole client ATM ARP
Description: Protocole client ATM ARP
Image path: System32\DRIVERS\atmarpc.sys
Image size: 57216
Image MD5: 8D735CA1CBDB0081B0E3B9FF0EB222D0
Start: 3
Type: 1
Error Control: 1
Depends On services: Tcpip

Service (registry key): AudioSrv
Display name: Audio Windows
Description: Gère les périphériques audio pour les programmes basés sur Windows. Si ce service est arrêté, les périphériques et les effets audio ne fonctionneront pas correctement. Si ce service est désactivé, les services en dépendant explicitement ne démarreront pas.
Object name: LocalSystem
Image path: %SystemRoot%\System32\svchost.exe -k netsvcs
Image size: 12800
Image MD5: 333A4DB8410D8E24DB06D6AEBECDC7C2
Start: 2
Type: 32
Error Control: 1
Depends On services: PlugPlay,RpcSs

Service (registry key): audstub
Display name: Pilote audio Stub
Image path: System32\DRIVERS\audstub.sys
Image size: 3072
Image MD5: D9F724AA26C010A217C97606B160ED68
Start: 3
Type: 1
Error Control: 1

Service (registry key): avast! Antivirus
Display name: avast! Antivirus
Description: Gère et implémente les services de l'antivirus avast! pour cet ordinateur. Ceci inclut la protection résidente, la zone de quarantaine et le planificateur.
Object name: LocalSystem
Image path: "C:\Program Files\Alwil Software\Avast4\ashServ.exe"
Image size: 98352
Image MD5: C8C0AEE5D0585457FF6E318E8BB9289D
Start: 2
Type: 272
Error Control: 1
Depends On services: aswMon2,RpcSS

Service (registry key): avast! Mail Scanner
Display name: avast! Mail Scanner
Description: Implémente l'analyse du courrier électronique pour l'antivirus avast!.
Object name: LocalSystem
Image path: "C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe" /service
Image size: 241712
Image MD5: 8C50FFD2642FD97DAC0009280A438570
Start: 3
Type: 272
Error Control: 1
Depends On services: "avast! Antivirus"

Service (registry key): avast! Web Scanner
Display name: avast! Web Scanner
Description: Implémente l'analyse du contenu web (HTTP) pour l'antivirus avast!.
Object name: LocalSystem
Image path: "C:\Program Files\Alwil Software\Avast4\ashWebSv.exe" /service
Image size: 360496
Image MD5: EB51923A762779247C776A551C546898
Start: 3
Type: 272
Error Control: 1
Depends On services: "avast! Antivirus"

Service (registry key): BattC
Start: 0
Type: 0
Error Control: 0

Service (registry key): Beep
Start: 1
Type: 1
Error Control: 1

Service (registry key): BITS
Display name: Service de transfert intelligent en arrière-plan
Description: Utilise la bande passante réseau inactive pour transférer des données.
Object name: LocalSystem
Image path: %SystemRoot%\System32\svchost.exe -k netsvcs
Image size: 12800
Image MD5: 333A4DB8410D8E24DB06D6AEBECDC7C2
Start: 3
Type: 32
Error Control: 1
Depends On services: Rpcss

Service (registry key): Browser
Display name: Explorateur d'ordinateur
Description: Tient à jour une liste des ordinateurs présents sur le réseau et fournit cette liste aux ordinateurs désignés comme navigateurs. Si ce service est arrêté, la liste ne sera pas mise ou tenue à jour. Si ce service est désactivé, les services qui en dépendent ne pourront pas démarrer.
Object name: LocalSystem
Image path: %SystemRoot%\System32\svchost.exe -k netsvcs
Image size: 12800
Image MD5: 333A4DB8410D8E24DB06D6AEBECDC7C2
Start: 3
Type: 32
Error Control: 1
Depends On services: LanmanWorkstation,LanmanServer

Service (registry key): cbidf2k
Start: 4
Type: 1
Error Control: 1

Service (registry key): CCDECODE
Display name: Décodeur sous-titre fermé
Image path: System32\DRIVERS\CCDECODE.sys
Image size: 16256
Image MD5: 1108137A497C112126B3F1F0E8A021B6
Start: 3
Type: 1
Error Control: 1

Service (registry key): cd20xrnt
Start: 4
Type: 1
Error Control: 1

Service (registry key): Cdaudio
Start: 1
Type: 1
Error Control: 0

Service (registry key): Cdfs
Start: 4
Type: 2
Error Control: 1
Depends On group: "SCSI CDROM Class"

Service (registry key): Cdrom
Display name: Pilote de CD-ROM
Image path: System32\DRIVERS\cdrom.sys
Image size: 47488
Image MD5: CB762E814F602229A574F4D78D3D6A30
Start: 1
Type: 1
Error Control: 1
Depends On group: "SCSI miniport"

Service (registry key): Changer
Start: 1
Type: 1
Error Control: 0

Service (registry key): cisvc
Display name: Service d'indexation
Description: Construit un index des contenus et des propriétés des fichiers sur les ordinateurs locaux et distants ; fournit un accès rapide aux fichiers par le biais d'un langage d'interrogation flexible.
Object name: LocalSystem
Image path: C:\WINDOWS\System32\cisvc.exe
Image size: 5120
Image MD5: 7901AF03767C140467671C7CEEB2C3FE
Start: 3
Type: 32
Error Control: 1
Depends On services: RPCSS

Service (registry key): ClipSrv
Display name: Gestionnaire de l'Album
Description: Active le Gestionnaire de l'Album afin de stocker les informations et les partager avec des ordinateurs à distance. Si le service est arrêté, le Gestionnaire de l'Album ne pourra pas partager les informations avec des ordinateurs à distance. Si ce service est désactivé, tout service en dépendant explicitement ne démarrera pas.
Object name: LocalSystem
Image path: %SystemRoot%\system32\clipsrv.exe
Image size: 30720
Image MD5: 3D1AAB2963FABCAFEB507B5C9D67BFBC
Start: 3
Type: 16
Error Control: 1
Depends On services: NetDDE

Service (registry key): CmdIde
Start: 4
Type: 1
Error Control: 1

Service (registry key): COMSysApp
Display name: Application système COM+
Description: Gère la configuration et le suivi des composants de base COM+ (Component Object Model) . Si le service est arrêté, la plupart des composants de base COM+ ne fonctionneront pas correctement. Si ce service est désactivé, les services qui en dépendent de manière explicite ne pourront pas démarrer.
Object name: LocalSystem
Image path: C:\WINDOWS\System32\dllhost.exe /Processid:{02D4B3F1-FD88-11D1-960D-00805FC79235}
Image size: 4608
Image MD5: 17681E6109A67F3AEA66AD6AAE2434E6
Start: 3
Type: 16
Error Control: 1
Depends On services: rpcss

Service (registry key): ContentFilter
Start: 0
Type: 0
Error Control: 0

Service (registry key): ContentIndex
Start: 0
Type: 0
Error Control: 0

Service (registry key): Cpqarray
Start: 4
Type: 1
Error Control: 1

Service (registry key): Cpqarray
Start: 4
Type: 1
Error Control: 1

Service (registry key): CryptSvc
Display name: Services de cryptographie
Description: Fournit trois services de gestion : le service de base de données de catalogue, qui confirme la signature des fichiers Windows; le service de racine protégée, qui ajoute et supprime des certificats d'autorité de certification de racine approuvés et le service Clé, qui fournit une aide dans l'inscription de cet ordinateur pour les certificats. Si ce service est arrêté, ces services de gestion ne fonctionneront pas correctement. Si ce service est désactivé, tout service en dépendant explicitement ne démarrera pas.
Object name: LocalSystem
Image path: %SystemRoot%\system32\svchost.exe -k netsvcs
Image size: 12800
Image MD5: 333A4DB8410D8E24DB06D6AEBECDC7C2
Start: 2
Type: 32
Error Control: 1
Depends On services: RpcSs

Service (registry key): ctac32k
Display name: Creative AC3 Software Decoder
Image path: System32\drivers\ctac32k.sys
Image size: 127948
Image MD5: 4B6096745F72B4FD36514617E2EA5D37
Start: 3
Type: 1
Error Control: 1

Service (registry key): ctaud2k
Display name: Creative Audio Driver (WDM)
Image path: system32\drivers\ctaud2k.sys
Image size: 837548
Image MD5: 3576EC792347ED15699F6D830E0F5437
Start: 3
Type: 1
Error Control: 1

Service (registry key): ctljystk
Display name: Creative SBLive! Port de jeux
Image path: System32\DRIVERS\ctljystk.sys
Image size: 3712
Image MD5: 71007BD2E1E26927FE3E4EB00C0BEEDF
Start: 3
Type: 1
Error Control: 0

Service (registry key): ctprxy2k
Display name: Creative Proxy Driver
Image path: System32\drivers\ctprxy2k.sys
Image size: 11068
Image MD5: 097D42574E3C6D98CD5A2EE7647FA6BF
Start: 3
Type: 1
Error Control: 1

Service (registry key): ctsfm2k
Display name: Creative SoundFont Management Device Driver
Image path: System32\drivers\ctsfm2k.sys
Image size: 213860
Image MD5: C58A2507EF62B20B9BD670C666088B50
Start: 3
Type: 1
Error Control: 1

Service (registry key): dac2w2k
Start: 4
Type: 1
Error Control: 0

Service (registry key): dac960nt
Start: 4
Type: 1
Error Control: 1

Service (registry key): Dhcp
Display name: Client DHCP
Description: Gère la configuration réseau en inscrivant et en mettant à jour les adresses IP et les noms DNS.
Object name: LocalSystem
Image path: %SystemRoot%\System32\svchost.exe -k netsvcs
Image size: 12800
Image MD5: 333A4DB8410D8E24DB06D6AEBECDC7C2
Start: 2
Type: 32
Error Control: 1
Depends On services: Tcpip,Afd,NetBT

Service (registry key): Disk
Display name: Pilote de disque
Image path: System32\DRIVERS\disk.sys
Image size: 33664
Image MD5: 43A10CD19D648E57ED039A6CAA667A56
Start: 0
Type: 1
Error Control: 1
Depends On group: "SCSI miniport"

Service (registry key): Diskeeper
Display name: Diskeeper
Description: Contrôle de service Diskeeper
Object name: LocalSystem
Image path: C:\Program Files\Executive Software\DiskeeperWorkstation\DKService.exe
Image size: 253952
Image MD5: 5A715FC7A5E222D8E987B2D903885B0B
Start: 2
Type: 272
Error Control: 0
Depends On services: RPCSS

Service (registry key): DLHOST
Display name: DynamicHost
Description: DynamicHost
Object name: LocalSystem
Start: 4
Type: 272
Error Control: 0

Service (registry key): dmadmin
Display name: Service d'administration du Gestionnaire de disque logique
Description: Configure les lecteurs de disque durs et les volumes. Le service ne s'exécute que pour les processus de configurations puis s'arrête.
Object name: LocalSystem
Image path: %SystemRoot%\System32\dmadmin.exe /com
Image size: 205312
Image MD5: F03B6377293A2CA253E02366B6F817D3
Start: 3
Type: 32
Error Control: 1
Depends On services: RpcSs,PlugPlay,DmServer

Service (registry key): dmboot
Image path: System32\drivers\dmboot.sys
Image size: 781440
Image MD5: 625043857173294DF9239909FC37CCD1
Start: 4
Type: 1
Error Control: 1

Service (registry key): dmio
Display name: Pilote de Gestionnaire de disque logique
Image path: System32\drivers\dmio.sys
Image size: 147456
Image MD5: C85A01B45E107B2D80A1263B365E62B5
Start: 0
Type: 1
Error Control: 1

Service (registry key): dmload
Image path: System32\drivers\dmload.sys
Image size: 5888
Image MD5: E9317282A63CA4D188C0DF5E09C6AC5F
Start: 0
Type: 1
Error Control: 1

Service (registry key): dmserver
Display name: Gestionnaire de disque logique
Description: Détecte et analyse de nouveaux lecteurs de disque durs et envoie les informations de volume de disque au service gestionnaire administratif de disque logique pour la configuration. Si ce service est arrêté, l'état des disques dynamiques et les informations de configuration peuvent devenir obsolètes. Si ce service est désactivé, tout service en dépendant explicitement ne démarrera pas.
Object name: LocalSystem
Image path: %SystemRoot%\System32\svchost.exe -k netsvcs
Image size: 12800
Image MD5: 333A4DB8410D8E24DB06D6AEBECDC7C2
Start: 2
Type: 32
Error Control: 1
Depends On services: RpcSs,PlugPlay

Service (registry key): DMusic
Display name: Synthétiseur DLS du noyau Microsoft
Image path: system32\drivers\DMusic.sys
Image size: 50048
Image MD5: EF05974D47D56FA8387F170F05BAE5E7
Start: 3
Type: 1
Error Control: 1

Service (registry key): Dnscache
Display name: Client DNS
Description: Résout et met en cache les noms DNS pour cet ordinateur. Si ce service est arrêté, l'ordinateur ne pourra pas résoudre les noms DNS et trouver les contrôleurs de domaine Active Directory. Si ce service est désactivé, les services qui en dépendent ne pourront pas démarrer.
Object name: NT AUTHORITY\NetworkService
Image path: %SystemRoot%\System32\svchost.exe -k NetworkService
Image size: 12800
Image MD5: 333A4DB8410D8E24DB06D6AEBECDC7C2
Start: 2
Type: 32
Error Control: 1
Depends On services: Tcpip

Service (registry key): dpti2o
Start: 4
Type: 1
Error Control: 1

Service (registry key): drmkaud
Display name: Filtre de décodeur DRM (Noyau Microsoft)
Image path: system32\drivers\drmkaud.sys
Image size: 2816
Image MD5: AA94E0CBD79DB63100D0EAE061EB69BC
Start: 3
Type: 1
Error Control: 1

Service (registry key): emupia
Display name: E-mu Plug-in Architecture Driver
Image path: System32\drivers\emupia2k.sys
Image size: 156604
Image MD5: A9D94B89372F3F9609A1A5EEC631A260
Start: 3
Type: 1
Error Control: 1

Service (registry key): ERSvc
Display name: Service de rapport d'erreurs
Description: Active le rapport d'erreurs pour les services et les applications s'exécutant sur des environnements non standard.
Object name: LocalSystem
Image path: %SystemRoot%\System32\svchost.exe -k netsvcs
Image size: 12800
Image MD5: 333A4DB8410D8E24DB06D6AEBECDC7C2
Start: 2
Type: 32
Error Control: 0
Depends On services: RpcSs

Service (registry key): es1371
Display name: Creative AudioPCI (ES1371,ES1373) (WDM)
Image path: system32\drivers\es1371mp.sys
Image size: 40704
Image MD5: A55DD7D8CED5D2624A9EE2DDA7BE0319
Start: 3
Type: 1
Error Control: 1

Service (registry key): Eventlog
Display name: Journal des événements
Description: Active les messages d'événements émis par les programmes fonctionnant sous Windows et les composants devant être affichés dans l'observateur d'événements. Ce service ne peut être arrêté.
Object name: LocalSystem
Image path: %SystemRoot%\system32\services.exe
Image size: 101888
Image MD5: FC0691097471EE374907E1024EDCBD43
Start: 2
Type: 32
Error Control: 1

Service (registry key): EventSystem
Display name: Système d'événements de COM+
Description: Prend en charge le service de notification d'événements système (SENS, System Event Notification Service), qui fournit une distribution automatique d'événements aux composants COM (Component Object Model) abonnés. Si le service est arrêté, SENS sera fermé et ne pourra fournir des informations d'ouverture et de fermeture de session. Si ce service est désactivé, le démarrage de tout service qui en dépend explicitement échouera.
Object name: LocalSystem
Image path: C:\WINDOWS\System32\svchost.exe -k netsvcs
Image size: 12800
Image MD5: 333A4DB8410D8E24DB06D6AEBECDC7C2
Start: 3
Type: 32
Error Control: 1
Depends On services: RPCSS

Service (registry key): ewido security suite control
Display name: ewido security suite control
Object name: LocalSystem
Image path: C:\Documents and Settings\sabrina\Bureau\Nouveau dossier (2)\ewido anti-malware\ewidoctrl.exe
Image size: 13888
Image MD5: 26830B750372AB1BF29C95DEEBEB802F
Start: 2
Type: 272
Error Control: 0

Service (registry key): ewido security suite driver
Display name: ewido security suite driver
Image path: \??\C:\Documents and Settings\sabrina\Bureau\Nouveau dossier (2)\ewido anti-malware\guard.sys
Image size: 3072
Image MD5: 2FF233E31AEFFF332F187E8E2ABFA6C5
Start: 1
Type: 1
Error Control: 0

Service (registry key): ewido security suite guard
Display name: ewido security suite guard
Object name: LocalSystem
Image path: C:\Documents and Settings\sabrina\Bureau\Nouveau dossier (2)\ewido anti-malware\ewidoguard.exe
Image size: 151616
Image MD5: 34A50717AD686900F078F5208F8E908E
Start: 2
Type: 272
Error Control: 0

Service (registry key): exec1x.exe
Display name: execute1x.exe
Object name: LocalSystem
Start: 4
Type: 272
Error Control: 0

Service (registry key): Fastfat
Start: 4
Type: 2
Error Control: 1

Service (registry key): FastUserSwitchingCompatibility
Display name: Compatibilité avec le Changement rapide d'utilisateur
Description: Fournit un système de gestion à des applications qui nécessitent de l'Assistance dans un environnement d'utilisateurs multiples.
Object name: LocalSystem
Image path: %SystemRoot%\System32\svchost.exe -k netsvcs
Image size: 12800
Image MD5: 333A4DB8410D8E24DB06D6AEBECDC7C2
Start: 3
Type: 32
Error Control: 1
Depends On services: TermService

Service (registry key): Fdc
Display name: Pilote de contrôleur de lecteur de disquettes
Image path: System32\DRIVERS\fdc.sys
Image size: 26240
Image MD5: 19C5C7EAC0190A42522290BF002F64EA
Start: 3
Type: 1
Error Control: 1

Service (registry key): Fips
Start: 1
Type: 1
Error Control: 1

Service (registry key): Flpydisk
Display name: Pilote de lecteur de disquettes
Image path: System32\DRIVERS\flpydisk.sys
Image size: 19712
Image MD5: 21E41E89B9B191B685F99B7A8885310B
Start: 3
Type: 1
Error Control: 1

Service (registry key): Fs_Rec
Start: 1
Type: 8
Error Control: 0

Service (registry key): Ftdisk
Display name: Pilote du Gest

Utilisateur anonyme · Answer

SalutTélécharge cecihttp://cjoint.com/?bukDTRCb4XLance srch.batUne fenetre s'ouvreInscrit : 23/12/2005 Le bloc note s'ouvre; copie/colle le moi.De meme avec 30/11/2005.A+

biggup · Answer

slt régis ! voici le resultat pour

***23/12/2005

Recherche fichiers cr‚es le 23/12/2005
!!! Attention, les fichiers qui suivent ne sont pas tous infect‚s !!!

C:\init.bat
C:\WINDOWS\System32\vsdatant.sys
C:\WINDOWS\System32\vsdata.dll
C:\WINDOWS\System32\vsmonapi.dll
C:\WINDOWS\System32\vsutil.dll
C:\WINDOWS\System32\vspubapi.dll
C:\WINDOWS\System32\vsinit.dll
C:\WINDOWS\System32\zlcomm.dll
C:\WINDOWS\System32\zlcommdb.dll
C:\WINDOWS\System32\vsregexp.dll
C:\WINDOWS\System32\ZoneLabs
C:\WINDOWS\System32\uutwa.ini2

***pour 30/11/2005

Recherche fichiers cr‚es le 30/11/2005
!!! Attention, les fichiers qui suivent ne sont pas tous infect‚s !!!

C:\FOUND.038

Utilisateur anonyme · Answer

SalutTu peux remettre un Hijack This?a+

biggup · Answer

salut régis voici le hijack que tu m'as demandéLogfile of HijackThis v1.99.1Scan saved at 18:55:26, on 20/01/2006Platform: Windows XP  (WinNT 5.01.2600)MSIE: Internet Explorer v6.00 (6.00.2600.0000)Running processes:C:\WINDOWS\System32\smss.exeC:\WINDOWS\system32\winlogon.exeC:\WINDOWS\system32\services.exeC:\WINDOWS\system32\lsass.exeC:\WINDOWS\system32\svchost.exeC:\WINDOWS\System32\svchost.exeC:\WINDOWS\system32\spoolsv.exeC:\Program Files\Alwil Software\Avast4\aswUpdSv.exeC:\Program Files\Alwil Software\Avast4\ashServ.exeC:\WINDOWS\System32\CTsvcCDA.exeC:\Program Files\Executive Software\DiskeeperWorkstation\DKService.exeC:\Documents and Settings\sabrina\Bureau\Nouveau dossier (2)\ewido anti-malware\ewidoctrl.exeC:\Documents and Settings\sabrina\Bureau\Nouveau dossier (2)\ewido anti-malware\ewidoguard.exeC:\WINDOWS\System32\svchost.exeC:\WINDOWS\SYSTEM32\ZONELABS\vsmon.exeC:\WINDOWS\System32\MsPMSPSv.exeC:\Program Files\Alwil Software\Avast4\ashMaiSv.exeC:\Program Files\Alwil Software\Avast4\ashWebSv.exeC:\WINDOWS\Explorer.EXEC:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exeC:\karim\ZoneAlarm\ZoneAlarm\zlclient.exeC:\WINDOWS\System32\mmc.exeC:\Program Files\Executive Software\DiskeeperWorkstation\DfrgFat.exeC:\WINDOWS\System32	askmgr.exeC:\Program Files\Mozilla Firefox\firefox.exeC:\Documents and Settings\sabrina\Bureau\Nouveau dossier (2)\HijackThis.exeR0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.google.fr/R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page = R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = O2 - BHO: (no name) - {53707962-6F74-2D53-2644-206D7942484F} - C:\DOCUME~1\sabrina\Bureau\NOUVEA~2\SPYBOT~1\SDHelper.dllO2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dllO4 - HKLM\..\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exeO4 - HKLM\..\Run: [Openwares LiveUpdate] C:\Program Files\LiveUpdate\LiveUpdate.exeO4 - HKLM\..\Run: [Zone Labs Client] C:\karim\ZoneAlarm\ZoneAlarm\zlclient.exeO4 - Startup: Microsoft Office.lnk = C:\Program Files\Microsoft Office\Office\OSA9.EXEO8 - Extra context menu item: Easy-WebPrint Ajouter à la liste d'impressions - res://C:\Program Files\Canon\Easy-WebPrint\Resource.dll/RC_AddToList.htmlO8 - Extra context menu item: Easy-WebPrint Impression rapide - res://C:\Program Files\Canon\Easy-WebPrint\Resource.dll/RC_HSPrint.htmlO8 - Extra context menu item: Easy-WebPrint Imprimer - res://C:\Program Files\Canon\Easy-WebPrint\Resource.dll/RC_Print.htmlO8 - Extra context menu item: Easy-WebPrint Prévisualiser - res://C:\Program Files\Canon\Easy-WebPrint\Resource.dll/RC_Preview.htmlO9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dllO9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dllO9 - Extra button: (no name) - {85d1f590-48f4-11d9-9669-0800200c9a66} - %windir%\bdoscandel.exe (file missing)O9 - Extra 'Tools' menuitem: Uninstall BitDefender Online Scanner v8 - {85d1f590-48f4-11d9-9669-0800200c9a66} - %windir%\bdoscandel.exe (file missing)O9 - Extra button: (no name) - {CD67F990-D8E9-11d2-98FE-00C0F0318AFE} - (no file)O9 - Extra button: Wanadoo - {1462651F-F4BA-4C76-A001-C4284D0FE16E} - www.wanadoo.fr (file missing) (HKCU)O12 - Plugin for .mid: C:\PROGRA~1\INTERN~1\PLUGINS
pqtplugin.dllO12 - Plugin for .mov: C:\PROGRA~1\INTERN~1\PLUGINS
pqtplugin.dllO12 - Plugin for .qt: C:\PROGRA~1\INTERN~1\PLUGINS
pqtplugin.dllO12 - Plugin for .tif: C:\Program Files\Internet Explorer\PLUGINS
pqtplugin3.dllO12 - Plugin for .wav: C:\PROGRA~1\INTERN~1\PLUGINS
pqtplugin.dllO16 - DPF: {0EB0E74A-2A76-4AB3-A7FB-9BD8C29F7F75} (CKAVWebScan Object) - http://www.kaspersky.com/downloads/kws/kavwebscan_unicode.cabO16 - DPF: {5D86DDB5-BDF9-441B-9E9E-D4730F4EE499} - http://download.bitdefender.com/resources/scan8/oscan8.cabO16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) - http://update.microsoft.com/windowsupdate/v6/V5Controls/en/x86/client/wuweb_site.cab?1136747182967O16 - DPF: {9A9307A0-7DA4-4DAF-B042-5009F29E09E1} - http://acs.pandasoftware.com/activescan/as5free/asinst.cabO16 - DPF: {C81B5180-AFD1-41A3-97E1-99E8D254DB98} - http://www.commandondemand.com/eval/cod/cabs/cssweb.cabO17 - HKLM\System\CCS\Services\Tcpip\..\{2A8FAC4D-E9F0-408B-90AE-476BD8306011}: NameServer = 80.10.246.1 80.10.246.132O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - Unknown owner - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exeO23 - Service: avast! Antivirus - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashServ.exeO23 - Service: avast! Mail Scanner - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe" /service (file missing)O23 - Service: avast! Web Scanner - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe" /service (file missing)O23 - Service: Creative Service for CDROM Access - Creative Technology Ltd - C:\WINDOWS\System32\CTsvcCDA.exeO23 - Service: Diskeeper - Executive Software International, Inc. - C:\Program Files\Executive Software\DiskeeperWorkstation\DKService.exeO23 - Service: ewido security suite control - ewido networks - C:\Documents and Settings\sabrina\Bureau\Nouveau dossier (2)\ewido anti-malware\ewidoctrl.exeO23 - Service: ewido security suite guard - ewido networks - C:\Documents and Settings\sabrina\Bureau\Nouveau dossier (2)\ewido anti-malware\ewidoguard.exeO23 - Service: Symantec Network Drivers Service (SNDSrvc) - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\SNDSrvc.exeO23 - Service: SymWMI Service (SymWSC) - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\Security Center\SymWSC.exeO23 - Service: TrueVector Internet Monitor (vsmon) - Zone Labs, LLC - C:\WINDOWS\SYSTEM32\ZONELABS\vsmon.exe

Utilisateur anonyme · Answer

Sur le site en ligne, tu peux analyser ces 2 la?C:\init.bat C:\WINDOWS\System32\uutwa.ini2 MerciA+

biggup · Answer

bonsoir régis voici les résultatsThis is a report processed by VirusTotal on 01/20/2006 at 22:01:14 (CET) after scanning the file "init.bat" file.Antivirus	Version	Update	ResultAntiVir	6.33.0.77	01.20.2006	no virus foundAvast	4.6.695.0	01.20.2006	no virus foundAVG	718	01.20.2006	no virus foundAvira	6.33.0.77	01.20.2006	no virus foundBitDefender	7.2	01.20.2006	no virus foundCAT-QuickHeal	8.00	01.18.2006	no virus foundClamAV	devel-20051123	01.19.2006	no virus foundDrWeb	4.33	01.20.2006	no virus foundeTrust-InoculateIT	23.71.55	01.20.2006	no virus foundeTrust-Vet	12.4.2052	01.20.2006	no virus foundEwido	3.5	01.20.2006	no virus foundFortinet	2.54.0.0	01.20.2006	no virus foundF-Prot	3.16c	01.20.2006	no virus foundIkarus	0.2.59.0	01.20.2006	no virus foundKaspersky	4.0.2.24	01.20.2006	no virus foundMcAfee	4679	01.20.2006	no virus foundNOD32v2	1.1373	01.20.2006	no virus foundNorman	5.70.10	01.20.2006	no virus foundPanda	9.0.0.4	01.20.2006	no virus foundSophos	4.01.0	01.20.2006	no virus foundSymantec	8.0	01.20.2006	no virus foundTheHacker	5.9.2.078	01.20.2006	no virus foundUNA	1.83	01.19.2006	no virus foundVBA32	3.10.5	01.20.2006	no virus foundThis is a report processed by VirusTotal on 01/20/2006 at 22:02:32 (CET) after scanning the file "uutwa.ini2" file.Antivirus	Version	Update	ResultAntiVir	6.33.0.77	01.20.2006	no virus foundAvast	4.6.695.0	01.20.2006	no virus foundAVG	718	01.20.2006	no virus foundAvira	6.33.0.77	01.20.2006	no virus foundBitDefender	7.2	01.20.2006	no virus foundCAT-QuickHeal	8.00	01.18.2006	no virus foundClamAV	devel-20051123	01.19.2006	no virus foundDrWeb	4.33	01.20.2006	no virus foundeTrust-InoculateIT	23.71.55	01.20.2006	no virus foundeTrust-Vet	12.4.2052	01.20.2006	no virus foundEwido	3.5	01.20.2006	no virus foundFortinet	2.54.0.0	01.20.2006	no virus foundF-Prot	3.16c	01.20.2006	no virus foundIkarus	0.2.59.0	01.20.2006	no virus foundKaspersky	4.0.2.24	01.20.2006	no virus foundMcAfee	4679	01.20.2006	no virus foundNOD32v2	1.1373	01.20.2006	no virus foundNorman	5.70.10	01.20.2006	no virus foundPanda	9.0.0.4	01.20.2006	no virus foundSophos	4.01.0	01.20.2006	no virus foundSymantec	8.0	01.20.2006	no virus foundTheHacker	5.9.2.078	01.20.2006	no virus foundUNA	1.83	01.19.2006	no virus foundVBA32	3.10.5	01.20.2006	no virus found

Utilisateur anonyme · Answer

salutTelecharge ccleaner:http://www.commentcamarche.net/faq/sujet-2432-S%E9curit%E9-Prot%E9ger-un-ordinateur-contre-les-malwares-d%27Internetpuis demarre en sans echec et passe spybot !Redemarre en normal et remet un rapport(si toujours idem, on essaiera de faire un reg et j essaierais de trouver un fix....)a+

biggup · Answer

re régis, c'est bon je te remercie je n'ai plus rien ! merci pour ton aide et ta patience vraimenta+ et merci encore

Utilisateur anonyme · Answer

Salut biggupSerieux?Ce fut ccleaner notre sauveur?Si c'est le cas, on a eu bien du mal mais cela a permis de cleaner en profondeur ton pc, c'est deja un bon point Bon week end

biggup · Answer

re,non ce n'est pas ccleaner je l'ai depuis longtemps mes problemes ne sont pas réglés mais ce n'est pas grave laisse tomber on arrivé a rien, merci

Utilisateur anonyme · Answer

salut biggupEn attendant régis.Quel sont exactement les soucis qu'il te restes ?a+

biggup · Answer

salut moe voici mon logLogfile of HijackThis v1.99.1Scan saved at 15:21:35, on 21/01/2006Platform: Windows XP  (WinNT 5.01.2600)MSIE: Internet Explorer v6.00 (6.00.2600.0000)Running processes:C:\WINDOWS\System32\smss.exeC:\WINDOWS\system32\winlogon.exeC:\WINDOWS\system32\services.exeC:\WINDOWS\system32\lsass.exeC:\WINDOWS\system32\svchost.exeC:\WINDOWS\System32\svchost.exeC:\WINDOWS\system32\spoolsv.exeC:\Program Files\Alwil Software\Avast4\aswUpdSv.exeC:\Program Files\Alwil Software\Avast4\ashServ.exeC:\WINDOWS\System32\CTsvcCDA.exeC:\Program Files\Executive Software\DiskeeperWorkstation\DKService.exeC:\Documents and Settings\sabrina\Bureau\Nouveau dossier (2)\ewido anti-malware\ewidoctrl.exeC:\Documents and Settings\sabrina\Bureau\Nouveau dossier (2)\ewido anti-malware\ewidoguard.exeC:\WINDOWS\System32\svchost.exeC:\WINDOWS\System32\MsPMSPSv.exeC:\WINDOWS\Explorer.EXEC:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exeC:\karim\ZoneAlarm\ZoneAlarm\zlclient.exeC:\Program Files\Alwil Software\Avast4\ashWebSv.exeC:\Program Files\Alwil Software\Avast4\ashMaiSv.exeC:\Program Files\Mozilla Firefox\firefox.exeC:\WINDOWS\SYSTEM32\ZONELABS\vsmon.exeC:\Documents and Settings\sabrina\Bureau\Nouveau dossier (2)\HijackThis.exeR0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.google.fr/R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page = R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = O2 - BHO: (no name) - {53707962-6F74-2D53-2644-206D7942484F} - C:\DOCUME~1\sabrina\Bureau\NOUVEA~2\SPYBOT~1\SDHelper.dllO2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dllO4 - HKLM\..\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exeO4 - HKLM\..\Run: [Openwares LiveUpdate] C:\Program Files\LiveUpdate\LiveUpdate.exeO4 - HKLM\..\Run: [Zone Labs Client] C:\karim\ZoneAlarm\ZoneAlarm\zlclient.exeO4 - HKCU\..\Run: [msnmsgr] "C:\Program Files\MSN Messenger\msnmsgr.exe" /backgroundO4 - Startup: Microsoft Office.lnk = C:\Program Files\Microsoft Office\Office\OSA9.EXEO8 - Extra context menu item: Easy-WebPrint Ajouter à la liste d'impressions - res://C:\Program Files\Canon\Easy-WebPrint\Resource.dll/RC_AddToList.htmlO8 - Extra context menu item: Easy-WebPrint Impression rapide - res://C:\Program Files\Canon\Easy-WebPrint\Resource.dll/RC_HSPrint.htmlO8 - Extra context menu item: Easy-WebPrint Imprimer - res://C:\Program Files\Canon\Easy-WebPrint\Resource.dll/RC_Print.htmlO8 - Extra context menu item: Easy-WebPrint Prévisualiser - res://C:\Program Files\Canon\Easy-WebPrint\Resource.dll/RC_Preview.htmlO9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dllO9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dllO9 - Extra button: (no name) - {85d1f590-48f4-11d9-9669-0800200c9a66} - C:\WINDOWS\System32\shdocvw.dllO9 - Extra 'Tools' menuitem: Uninstall BitDefender Online Scanner v8 - {85d1f590-48f4-11d9-9669-0800200c9a66} - C:\WINDOWS\System32\shdocvw.dllO9 - Extra button: (no name) - {CD67F990-D8E9-11d2-98FE-00C0F0318AFE} - (no file)O9 - Extra button: Wanadoo - {1462651F-F4BA-4C76-A001-C4284D0FE16E} - www.wanadoo.fr (file missing) (HKCU)O12 - Plugin for .mid: C:\PROGRA~1\INTERN~1\PLUGINS
pqtplugin.dllO12 - Plugin for .mov: C:\PROGRA~1\INTERN~1\PLUGINS
pqtplugin.dllO12 - Plugin for .qt: C:\PROGRA~1\INTERN~1\PLUGINS
pqtplugin.dllO12 - Plugin for .tif: C:\Program Files\Internet Explorer\PLUGINS
pqtplugin3.dllO12 - Plugin for .wav: C:\PROGRA~1\INTERN~1\PLUGINS
pqtplugin.dllO17 - HKLM\System\CCS\Services\Tcpip\..\{2A8FAC4D-E9F0-408B-90AE-476BD8306011}: NameServer = 80.10.246.130 80.10.246.3O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - Unknown owner - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exeO23 - Service: avast! Antivirus - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashServ.exeO23 - Service: avast! Mail Scanner - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe" /service (file missing)O23 - Service: avast! Web Scanner - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe" /service (file missing)O23 - Service: Creative Service for CDROM Access - Creative Technology Ltd - C:\WINDOWS\System32\CTsvcCDA.exeO23 - Service: Diskeeper - Executive Software International, Inc. - C:\Program Files\Executive Software\DiskeeperWorkstation\DKService.exeO23 - Service: ewido security suite control - ewido networks - C:\Documents and Settings\sabrina\Bureau\Nouveau dossier (2)\ewido anti-malware\ewidoctrl.exeO23 - Service: ewido security suite guard - ewido networks - C:\Documents and Settings\sabrina\Bureau\Nouveau dossier (2)\ewido anti-malware\ewidoguard.exeO23 - Service: Symantec Network Drivers Service (SNDSrvc) - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\SNDSrvc.exeO23 - Service: SymWMI Service (SymWSC) - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\Security Center\SymWSC.exeO23 - Service: TrueVector Internet Monitor (vsmon) - Zone Labs, LLC - C:\WINDOWS\SYSTEM32\ZONELABS\vsmon.exe

Utilisateur anonyme · Answer

salutTu peux préciser quel sont tes soucis ?Tu es redirigé vers des sites non désirés ?Si tu as gardé silentrunners reposte un rapport.Sinon retelecharge le ici:http://www.silentrunners.org/Silent%20Runners.vbs

Utilisateur anonyme · Answer

Salut moeUn ptit duo ;-)En fait le probleme (voir poste 101), c est spybot qui detecte et rien ne se supprime...a+

Utilisateur anonyme · Answer

salut regisOk, problème de suppression de clés alors.ca marche pour le duo, lol :-)a+

Utilisateur anonyme · Answer

Re,;-)Biggup peux tu remettre un rapport de spybot stp++

biggup · Answer

re moe et régis, je fais en ce moment un scan avec kaspersky qui m'a trouvé pour le moment deux virus !! pour mes problemes de spywares c'est réglé j'ai supprimé les clés dans le registre, vous voudriez bien analysez le resultats kasperky apres avoir fini (en duo biensur !! lol) ??merci

Utilisateur anonyme · Answer

Oui pas de probleme :-)Nous nous entendons tres bien entre moi et moe31Un duo parfaitement coordonné...C'est une vieille connaissance, 1an que nous sommes cote a cote (deja ! eh oui !)a+

Utilisateur anonyme · Answer

un an déjà... et 12244 posts pour toi lol, c'est énorme !

Utilisateur anonyme · Answer

Ouais deja...c'est vrai que j ai fait fort en un an lolToi aussi t as fait pas mal, tu avais surtout des postes bien corsés ;-)Qu est ce qui me manque ce bon vieux temps, pfffffff

Utilisateur anonyme · Answer

lol, tu va bientot rattraper balltrap :-)En un an ça représente un peu plus de 33 posts par jours.Ouais, quelques posts bien corsés lol, mais j'ai pas mal posté non logué, avec comme pseudo moe (sans le 31).

Utilisateur anonyme · Answer

Cela mettonerait que je le rattrape, vu que je vais stagner [...]Sinon nous serions a la meme hauteur si tu etais toujours loggéLe bon vieux temps.....reviendra t  il?

Utilisateur anonyme · Answer

Le bon vieux temps.....reviendra t il? [...] De temps en temps ;-)

Utilisateur anonyme · Answer

:-([...]Domage...

jean38 · Answer

l'avantage qu'il a par rapport à balltrap c'est qu'il lui reste plus de temps devant lui... avantage des jeunes sur les vieux.lol

Utilisateur anonyme · Answer

lolT'insinue qu il est vieux?Ca sera répété !!!Mes salutations jean.

jean38 · Answer

j'insinue rien je constate juste une petite difference d'âge, quel mauvaise langue ce quentin.

Utilisateur anonyme · Answer

Sans mentir, une grande difference lol

Utilisateur anonyme · Answer

Rhaa, surement le plus "ancien" membre de cette section du forum, lolIl ne va pas tarder à débarquer si ça continue ;-)

biggup · Answer

re tout le monde !! alala ! arretez ! vous etes tous des super bénévoles ! voici mon log kaspersky et 5 virus a mon actif...------------------------------------------------------------------------------- KASPERSKY ON-LINE SCANNER REPORT Saturday, January 21, 2006 17:19:11 Operating System: Microsoft Windows XP Professional,  (Build 2600) Kaspersky On-line Scanner version: 5.0.67.0 Kaspersky Anti-Virus database last update: 21/01/2006 Kaspersky Anti-Virus database records: 161780-------------------------------------------------------------------------------Scan Settings:	Scan using the following antivirus database: standard	Scan Archives: true	Scan Mail Bases: trueScan Target - My Computer:	A:\	C:\	D:\Scan Statistics:	Total number of scanned objects: 34655	Number of viruses found: 5	Number of infected objects: 8	Number of suspicious objects: 0	Duration of the scan process: 3413 secInfected Object Name - Virus NameC:\WINDOWS\SYSTEM32\DRIVERS\etc\3.hosts	Infected: Trojan.Win32.QhostC:\WINDOWS\SYSTEM32\DRIVERS\etc\hosts.20051228-131112.backup	Infected: Trojan.Win32.Qhost.eoC:\WINDOWS\msnsrv.exe	Infected: Backdoor.Win32.SdBot.xdC:\haha.exe	Infected: Backdoor.Win32.SdBot.xdC:\Documents and Settings\sabrina\.housecall\Quarantine\A0365181.exe.bac_a03472/data.rar/sko.exe	Infected: Trojan-Proxy.Win32.Ranky.dmC:\Documents and Settings\sabrina\.housecall\Quarantine\A0365181.exe.bac_a03472/data.rar/wtf.exe	Infected: Trojan-Dropper.Win32.Agent.afgC:\Documents and Settings\sabrina\.housecall\Quarantine\A0365181.exe.bac_a03472/data.rar	Infected: Trojan-Dropper.Win32.Agent.afgC:\Documents and Settings\sabrina\.housecall\Quarantine\A0365181.exe.bac_a03472	Infected: Trojan-Dropper.Win32.Agent.afgScan process completed.

Utilisateur anonyme · Answer

Moi j ai rien dit s il debarque...Vous vous demerdez avec lui lol[mode fuite]

jean38 · Answer

c'est pas de l'age, c'est du concentre d'experience...mode pas fuite

biggup · Answer

re moe, j'ai supp ce que tu m'as demandé et voici pour hijack # Copyright (c) 1993-1999 Microsoft Corp.## This is a sample HOSTS file used by Microsoft TCP/IP for Windows.## This file contains the mappings of IP addresses to host names. Each# entry should be kept on an individual line. The IP address should# be placed in the first column followed by the corresponding host name.# The IP address and the host name should be separated by at least one# space.## Additionally, comments (such as these) may be inserted on individual# lines or following the machine name denoted by a '#' symbol.## For example:##      102.54.94.97     rhino.acme.com          # source server#       38.25.63.10     x.acme.com              # x client host127.0.0.1       localhostPS on pourrait pas ouvrir un autre post car celui-ci est trop lour !!

Utilisateur anonyme · Answer

si tu veux, tu as pu virer les fichiers infectés ?reposte aussi un rapport de silentrunnersa+

[worm] infection au secours!

130 réponses

Discussions similaires