NewDotNet Au secours

franckkoenig Messages postés 4 Statut Membre -  
^^Marie^^ Messages postés 41884 Date d'inscription   Statut Membre Dernière intervention   -
Bonjour je suis infecté par NewDotNet et autre et je ne sais plus comment m'en débarrasser... Je n'ai rien dans ajouter supprimer des programmes et je ne peux les supprimer directement que faire??
Voici mon Rapport HijackThis
Logfile of HijackThis v1.99.1
Scan saved at 10:33:51, on 21/06/2006
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\csrss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\ewido anti-malware\ewidoctrl.exe
C:\Program Files\Alcohol Soft\Alcohol 120\StarWind\StarWindService.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\wdfmgr.exe
C:\Program Files\Fichiers communs\Softwin\BitDefender Communicator\xcommsvr.exe
C:\WINDOWS\System32\alg.exe
C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe
C:\Program Files\Softwin\BitDefender9\bdoesrv.exe
C:\WINDOWS\System32\svchost.exe
C:\progra~1\softwin\bitdef~1\bdswitch.exe
C:\Program Files\MessengerPlus! 3\MsgPlus.exe
C:\Program Files\BroadJump\Client Foundation\CFD.exe
C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe
C:\Program Files\iTunes\iTunesHelper.exe
C:\Program Files\Club-Internet\Agent Wi-Fi V2\McciTrayApp.exe
C:\Program Files\iPod\bin\iPodService.exe
C:\WINDOWS\ALCXMNTR.EXE
C:\WINDOWS\NCLAUNCH.EXe
C:\Program Files\TomTom HOME\TomTomHOME.exe
C:\Program Files\Club-Internet\Dr Club Internet\bin\mpbtn.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Fichiers communs\Softwin\BitDefender Update Service\livesrv.exe
C:\Program Files\Fichiers communs\Softwin\BitDefender Scan Server\bdss.exe
C:\Program Files\Softwin\BitDefender9\vsserv.exe
c:\progra~1\softwin\bitdef~1\bdmcon.exe
C:\Program Files\Internet Explorer\IEXPLORE.EXE
C:\Program Files\a-squared Anti-Malware\a2guard.exe
C:\Program Files\MSN Messenger\msnmsgr.exe
C:\Program Files\Internet Explorer\IEXPLORE.EXE
C:\PROGRA~1\INCRED~1\bin\IncMail.exe
C:\PROGRA~1\INCRED~1\bin\IMApp.exe
C:\Program Files\Hijackthis Version Française\VERSION TRADUITE ORIGINALE.EXE

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = https://actus.sfr.fr
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Window Title = Internet Explorer avec Club-Internet
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll
O2 - BHO: (no name) - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O2 - BHO: EoRezoBHO - {64F56FC1-1272-44CD-BA6E-39723696E350} - (no file)
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll
O2 - BHO: Windows Live Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: ST - {9394EDE7-C8B5-483E-8773-474BF36AF6E4} - C:\Program Files\MSN Apps\ST\01.03.0000.1005\en-xu\stmain.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar2.dll
O2 - BHO: MSNToolBandBHO - {BDBD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\MSN Apps\MSN Toolbar\01.02.5000.1021\fr\msntb.dll
O3 - Toolbar: MSN - {BDAD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\MSN Apps\MSN Toolbar\01.02.5000.1021\fr\msntb.dll
O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar2.dll
O4 - HKLM\..\Run: [ATIPTA] "C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe"
O4 - HKLM\..\Run: [Recguard] C:\WINDOWS\SMINST\RECGUARD.EXE
O4 - HKLM\..\Run: [BDMCon] c:\progra~1\softwin\bitdef~1\bdmcon.exe
O4 - HKLM\..\Run: [BDOESRV] "C:\Program Files\Softwin\BitDefender9\bdoesrv.exe"
O4 - HKLM\..\Run: [BDSwitchAgent] "c:\progra~1\softwin\bitdef~1\bdswitch.exe"
O4 - HKLM\..\Run: [MessengerPlus3] "C:\Program Files\MessengerPlus! 3\MsgPlus.exe"
O4 - HKLM\..\Run: [BJCFD] C:\Program Files\BroadJump\Client Foundation\CFD.exe
O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe" -osboot
O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe"
O4 - HKLM\..\Run: [NeroFilterCheck] C:\WINDOWS\system32\NeroCheck.exe
O4 - HKLM\..\Run: [Club-Internet_McciTrayApp] C:\Program Files\Club-Internet\Agent Wi-Fi V2\McciTrayApp.exe
O4 - HKLM\..\Run: [a-squared] "C:\Program Files\a-squared Anti-Malware\a2guard.exe"
O4 - HKLM\..\Run: [AlcxMonitor] ALCXMNTR.EXE
O4 - HKCU\..\Run: [NCLaunch] C:\WINDOWS\NCLAUNCH.EXe
O4 - Startup: TomTom HOME.lnk = C:\Program Files\TomTom HOME\TomTomHOME.exe
O4 - Global Startup: Adobe Gamma Loader.lnk = C:\Program Files\Fichiers communs\Adobe\Calibration\Adobe Gamma Loader.exe
O4 - Global Startup: Docteur Club Internet.lnk = C:\Program Files\Club-Internet\Dr Club Internet\bin\matcli.exe
O8 - Extra context menu item: &Traduire à partir de l'anglais - res://c:\program files\google\GoogleToolbar2.dll/cmwordtrans.html
O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office10\EXCEL.EXE/3000
O8 - Extra context menu item: Pages liées - res://c:\program files\google\GoogleToolbar2.dll/cmbacklinks.html
O8 - Extra context menu item: Pages similaires - res://c:\program files\google\GoogleToolbar2.dll/cmsimilar.html
O8 - Extra context menu item: Recherche &Google - res://c:\program files\google\GoogleToolbar2.dll/cmsearch.html
O8 - Extra context menu item: Version de la page actuelle disponible dans le cache Google - res://c:\program files\google\GoogleToolbar2.dll/cmcache.html
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll
O9 - Extra button: Aide à la connexion - {E2D4D26B-0180-43a4-B05F-462D6D54C789} - C:\WINDOWS\PCHEALTH\HELPCTR\Vendors\CN=Hewlett-Packard,L=Cupertino,S=Ca,C=US\IEButton\support.htm
O9 - Extra 'Tools' menuitem: Aide à la connexion - {E2D4D26B-0180-43a4-B05F-462D6D54C789} - C:\WINDOWS\PCHEALTH\HELPCTR\Vendors\CN=Hewlett-Packard,L=Cupertino,S=Ca,C=US\IEButton\support.htm
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O16 - DPF: {70BA88C8-DAE8-4CE9-92BB-979C4A75F53B} (GSDACtl Class) - http://www.gamespy.com
O16 - DPF: {9A9307A0-7DA4-4DAF-B042-5009F29E09E1} (ActiveScan Installer Class) - http://acs.pandasoftware.com/activescan/as5free/asinst.cab
O18 - Protocol: livecall - {828030A1-22C1-4009-854F-8E305202313F} - "C:\PROGRA~1\MSNMES~1\msgrapp.dll" (file missing)
O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - "C:\PROGRA~1\MSNMES~1\msgrapp.dll" (file missing)
O23 - Service: Adobe LM Service - Unknown owner - C:\Program Files\Fichiers communs\Adobe Systems Shared\Service\Adobelmsvc.exe
O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\WINDOWS\system32\Ati2evxx.exe
O23 - Service: BitDefender Scan Server (bdss) - Unknown owner - C:\Program Files\Fichiers communs\Softwin\BitDefender Scan Server\bdss.exe" /service (file missing)
O23 - Service: ewido security suite control - ewido networks - C:\Program Files\ewido anti-malware\ewidoctrl.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Fichiers communs\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: iPodService - Apple Computer, Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: BitDefender Desktop Update Service (LIVESRV) - Unknown owner - C:\Program Files\Fichiers communs\Softwin\BitDefender Update Service\livesrv.exe" /service (file missing)
O23 - Service: Pml Driver HPZ12 - HP - C:\WINDOWS\system32\HPZipm12.exe
O23 - Service: StarWind iSCSI Service (StarWindService) - Rocket Division Software - C:\Program Files\Alcohol Soft\Alcohol 120\StarWind\StarWindService.exe
O23 - Service: TuneUp WinStyler Theme Service (TUWinStylerThemeSvc) - TuneUp Software GmbH - C:\Program Files\TuneUp Utilities 2004\WinStylerThemeSvc.exe
O23 - Service: BitDefender Virus Shield (VSSERV) - Unknown owner - C:\Program Files\Softwin\BitDefender9\vsserv.exe" /service (file missing)
O23 - Service: BitDefender Communicator (XCOMM) - Unknown owner - C:\Program Files\Fichiers communs\Softwin\BitDefender Communicator\xcommsvr.exe" /service (file missing)

Merci de votre aide
Franck

5 réponses

  1. ^^Marie^^ Messages postés 41884 Date d'inscription   Statut Membre Dernière intervention   3 280
     
    Salut,

    Il est important d’effectuer la manip dans sa totalité.

    Télécharge et colle les rapports : (sauf si tu en as)...

    A - ad-aware version 1.06
    (ici) http://www.florensac-chasse-trap.com/ section virus/logiciel de securite
    voir demo
    http://pageperso.aol.fr/balltrap34/adwseflash.zip

    B - spybot version 1.4
    (ici) http://www.florensac-chasse-trap.com/ section virus/logiciel de securite
    voir demo d utilisation
    http://pageperso.aol.fr/Balltrap34/demo%20spybot.htm

    C - Ccleaner : ( nettoyeur de registre, cookies+temps+tempos+prefetch+historique+etc..)
    Télécharge ici :
    https://www.ccleaner.com/ccleaner/download
    Tutorial ici:
    https://www.vulgarisation-informatique.com/nettoyer-windows-ccleaner.php

    D - Ewido (download)- gratuit même après 14 jours d’essai
    http://perso.wanadoo.fr/entraide-hijackthis/Ewido/
    Copie/COLLE le rapport généré sur ce forum
    Pour certaines versions de Windows antérieures à XP, Ewido peut ne pas être compatible
    Dans ce cas, il te faudra utiliser a-squared free et demander une clef pour son usage gratuit
    https://www.emsisoft.com/fr/

    E - Scan online avec BitDefender (fonctionne uniquement sous Internet Explorer en acceptant l’ activX)
    https://assiste.com/404_La_page_demandee_n_existe_pas.php
    http://www.bitdefender.fr/scan8/ie.html
    Copie/COLLE le rapport entier

    =====================
    ENSUITE
    =====================

    Effectue cette opération :

    Smitfraudfix

    Télécharger ceci (merci a S!RI pour ce petit programme) :
    http://siri.urz.free.fr/Fix/SmitfraudFix.zip
    L'exécuter, puis double-cliquer sur Smitfraudfix.cmd
    Choisir l’option 1, elle va générer un rapport
    Copie-COLLE ce dernier dans un message sur le forum.
    Tutorial imagée à lire :
    http://siri.urz.free.fr/Fix/SmitfraudFix.php

    ==========

    Démarre en mode sans échec :

    Pour cela, tu tapotes la touche F8 dès le début de l’allumage du PC sans t’arrêter
    Une fenêtre va s’ouvrir tu te déplaces avec les flèches du clavier sur démarrer en mode sans échec puis tape ‘Entrée’ sur ton clavier.
    Une fois sur le bureau s’il n’y a pas toutes les couleurs et autres, c’est normal !
    (Si F8 ne marche pas utilise la touche F5).

    Relance le programme Smitfraud,
    Cette fois choisit l’option 2, répond OUI à tout ;
    Sauvegarde le rapport, redémarre en mode normal,
    copie-COLLE le rapport sauvegardé sur le forum.

    Refais un HT.

    Bon courage
    A+

    0
    1. franckkoenig Messages postés 4 Statut Membre
       
      Voici le rapport du pti logiciel sympa :
      SmitFraudFix v2.63

      Rapport fait à 12:59:34,51, 21/06/2006
      Executé à partir de C:\Documents and Settings\Compaq_Propri‚taire\Mes documents\Programmes\SmitfraudFix
      OS: Microsoft Windows XP [version 5.1.2600] - Windows_NT
      Fix executé en mode normal

      »»»»»»»»»»»»»»»»»»»»»»»» C:\


      »»»»»»»»»»»»»»»»»»»»»»»» C:\WINDOWS


      »»»»»»»»»»»»»»»»»»»»»»»» C:\WINDOWS\system


      »»»»»»»»»»»»»»»»»»»»»»»» C:\WINDOWS\Web


      »»»»»»»»»»»»»»»»»»»»»»»» C:\WINDOWS\system32


      »»»»»»»»»»»»»»»»»»»»»»»» C:\WINDOWS\system32\LogFiles


      »»»»»»»»»»»»»»»»»»»»»»»» C:\Documents and Settings\Compaq_Propri‚taire\Application Data


      »»»»»»»»»»»»»»»»»»»»»»»» Menu Démarrer


      »»»»»»»»»»»»»»»»»»»»»»»» C:\DOCUME~1\COMPAQ~1\Favoris


      »»»»»»»»»»»»»»»»»»»»»»»» Bureau


      »»»»»»»»»»»»»»»»»»»»»»»» C:\Program Files


      »»»»»»»»»»»»»»»»»»»»»»»» Clés corrompues


      »»»»»»»»»»»»»»»»»»»»»»»» Eléments du bureau

      [HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Desktop\Components\0]
      "Source"="About:Home"
      "SubscribedURL"="About:Home"
      "FriendlyName"="Ma page d'accueil"


      »»»»»»»»»»»»»»»»»»»»»»»» Sharedtaskscheduler
      !!!Attention, les clés qui suivent ne sont pas forcément infectées!!!

      SrchSTS.exe by S!Ri
      Search SharedTaskScheduler's .dll

      »»»»»»»»»»»»»»»»»»»»»»»» Recherche infection wininet.dll


      »»»»»»»»»»»»»»»»»»»»»»»» Fin

      Par contre adaware se fige lors de l'ana:lyse. Quand a ewido il est en cours ainsi que bit defender qui est mon anti virus
      0
  2. franckkoenig Messages postés 4 Statut Membre
     
    Voici mon rapport de spybot :

    --- Search result list ---
    HotsearchBar: Fichier temporaire (Fichier, nothing done)
    C:\Documents and Settings\Compaq_Propriétaire\Local Settings\Temp\nss95.tmp

    HotsearchBar: Fichier temporaire (Fichier, nothing done)
    C:\Documents and Settings\Compaq_Propriétaire\Local Settings\Temp\nsu98.tmp

    NewDotNet: Dossier Programme (Répertoire, nothing done)
    C:\Program Files\NewDotNet\

    --- Spybot - Search & Destroy version: 1.4 (build: 20050523) ---

    2005-05-31 blindman.exe (1.0.0.1)
    2005-05-31 SpybotSD.exe (1.4.0.3)
    2005-05-31 TeaTimer.exe (1.4.0.2)
    2006-06-13 unins000.exe (51.41.0.0)
    2005-05-31 Update.exe (1.4.0.0)
    2006-02-06 advcheck.dll (1.0.2.0)
    2005-05-31 aports.dll (2.1.0.0)
    2005-05-31 borlndmm.dll (7.0.4.453)
    2005-05-31 delphimm.dll (7.0.4.453)
    2005-05-31 SDHelper.dll (1.4.0.0)
    2006-02-20 Tools.dll (2.0.0.2)
    2005-05-31 UnzDll.dll (1.73.1.1)
    2005-05-31 ZipDll.dll (1.73.2.0)
    2006-06-10 Includes\Cookies.sbi (*)
    2006-06-10 Includes\Dialer.sbi (*)
    2006-06-10 Includes\Hijackers.sbi (*)
    2006-06-10 Includes\Keyloggers.sbi (*)
    2006-06-10 Includes\Malware.sbi (*)
    2006-06-10 Includes\PUPS.sbi (*)
    2006-06-10 Includes\Revision.sbi (*)
    2006-06-10 Includes\Security.sbi (*)
    2006-06-10 Includes\Spybots.sbi (*)
    2005-02-17 Includes\Tracks.uti
    2006-06-10 Includes\Trojans.sbi (*)

    --- System information ---
    Windows XP (Build: 2600) Service Pack 2
    / .NETFramework / 1.1: Microsoft .NET Framework 1.1 Hotfix (KB886903)
    / .NETFramework / 1.1: Microsoft .NET Framework 1.1 Service Pack 1 (KB867460)
    / Step By Step Interactive Training / SP2: Mise à jour de sécurité pour Step by Step Interactive Training (KB898458)
    / Windows Media Player 10: Mise à jour de sécurité pour Lecteur Windows Media 10 (KB911565)
    / Windows Media Player 10: Mise à jour de sécurité pour Lecteur Windows Media 10 (KB917734)
    / Windows XP / SP3: Correctif Windows XP - KB873339
    / Windows XP / SP3: Correctif Windows XP - KB883667
    / Windows XP / SP3: Correctif Windows XP - KB885250
    / Windows XP / SP3: Correctif Windows XP - KB885835
    / Windows XP / SP3: Correctif Windows XP - KB885836
    / Windows XP / SP3: Correctif Windows XP - KB885884
    / Windows XP / SP3: Correctif Windows XP - KB886185
    / Windows XP / SP3: Correctif Windows XP - KB887472
    / Windows XP / SP3: Correctif Windows XP - KB887742
    / Windows XP / SP3: Correctif Windows XP - KB888113
    / Windows XP / SP3: Correctif Windows XP - KB888239
    / Windows XP / SP3: Correctif Windows XP - KB888302
    / Windows XP / SP3: Mise à jour de sécurité pour Windows XP (KB890046)
    / Windows XP / SP3: Correctif Windows XP - KB890175
    / Windows XP / SP3: Correctif Windows XP - KB890859
    / Windows XP / SP3: Correctif Windows XP - KB891781
    / Windows XP / SP3: Correctif Windows XP - KB892050
    / Windows XP / SP3: Correctif Windows XP - KB893066
    / Windows XP / SP3: Mise à jour de sécurité pour Windows XP (KB893756)
    / Windows XP / SP3: Windows Installer 3.1 (KB893803)
    / Windows XP / SP3: Mise à jour de sécurité pour Windows XP (KB896358)
    / Windows XP / SP3: Mise à jour de sécurité pour Windows XP (KB896422)
    / Windows XP / SP3: Mise à jour de sécurité pour Windows XP (KB896423)
    / Windows XP / SP3: Mise à jour de sécurité pour Windows XP (KB896424)
    / Windows XP / SP3: Mise à jour de sécurité pour Windows XP (KB896428)
    / Windows XP / SP3: Mise à jour de sécurité pour Windows XP (KB896688)
    / Windows XP / SP3: Mise à jour pour Windows XP (KB898461)
    / Windows XP / SP3: Mise à jour de sécurité pour Windows XP (KB899587)
    / Windows XP / SP3: Mise à jour de sécurité pour Windows XP (KB899591)
    / Windows XP / SP3: Mise à jour pour Windows XP (KB900485)
    / Windows XP / SP3: Mise à jour de sécurité pour Windows XP (KB900725)
    / Windows XP / SP3: Mise à jour de sécurité pour Windows XP (KB901017)
    / Windows XP / SP3: Mise à jour de sécurité pour Windows XP (KB901190)
    / Windows XP / SP3: Mise à jour de sécurité pour Windows XP (KB901214)
    / Windows XP / SP3: Mise à jour de sécurité pour Windows XP (KB902400)
    / Windows XP / SP3: Mise à jour de sécurité pour Windows XP (KB904706)
    / Windows XP / SP3: Mise à jour de sécurité pour Windows XP (KB905414)
    / Windows XP / SP3: Mise à jour de sécurité pour Windows XP (KB905749)
    / Windows XP / SP3: Mise à jour de sécurité pour Windows XP (KB905915)
    / Windows XP / SP3: Mise à jour de sécurité pour Windows XP (KB908519)
    / Windows XP / SP3: Mise à jour de sécurité pour Windows XP (KB908531)
    / Windows XP / SP3: Mise à jour pour Windows XP (KB910437)
    / Windows XP / SP3: Mise à jour de sécurité pour Windows XP (KB911280)
    / Windows XP / SP3: Mise à jour de sécurité pour Windows XP (KB911562)
    / Windows XP / SP3: Mise à jour de sécurité pour Windows XP (KB911567)
    / Windows XP / SP3: Mise à jour de sécurité pour Windows XP (KB911927)
    / Windows XP / SP3: Mise à jour de sécurité pour Windows XP (KB912812)
    / Windows XP / SP3: Mise à jour de sécurité pour Windows XP (KB912919)
    / Windows XP / SP3: Mise à jour de sécurité pour Windows XP (KB913446)
    / Windows XP / SP3: Mise à jour de sécurité pour Windows XP (KB913580)
    / Windows XP / SP3: Mise à jour de sécurité pour Windows XP (KB914389)
    / Windows XP / SP3: Mise à jour de sécurité pour Windows XP (KB916281)
    / Windows XP / SP3: Mise à jour de sécurité pour Windows XP (KB917344)
    / Windows XP / SP3: Mise à jour de sécurité pour Windows XP (KB917953)
    / Windows XP / SP3: Mise à jour de sécurité pour Windows XP (KB918439)

    --- Startup entries list ---
    Located: HK_LM:Run, AlcxMonitor
    command: ALCXMNTR.EXE
    file: C:\WINDOWS\ALCXMNTR.EXE
    size: 57344
    MD5: 7b8875a5b04932ac73afd8079864db68

    Located: HK_LM:Run, a-squared
    command: "C:\Program Files\a-squared Anti-Malware\a2guard.exe"
    file: C:\Program Files\a-squared Anti-Malware\a2guard.exe
    size: 1720320
    MD5: d37bd1cd6a7f2738ae96ea39ffc1f68d

    Located: HK_LM:Run, ATIPTA
    command: "C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe"
    file: C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe
    size: 344064
    MD5: 29e8e6b337d61c931b11a90a98310626

    Located: HK_LM:Run, BDMCon
    command: c:\progra~1\softwin\bitdef~1\bdmcon.exe
    file: c:\progra~1\softwin\bitdef~1\bdmcon.exe
    size: 372736
    MD5: 9feb897442b05e01ab7cdc9c94c58ec4

    Located: HK_LM:Run, BDOESRV
    command: "C:\Program Files\Softwin\BitDefender9\bdoesrv.exe"
    file: C:\Program Files\Softwin\BitDefender9\bdoesrv.exe
    size: 90112
    MD5: 01980366e2a0ee31bab611a141f44e8d

    Located: HK_LM:Run, BDSwitchAgent
    command: "c:\progra~1\softwin\bitdef~1\bdswitch.exe"
    file: c:\progra~1\softwin\bitdef~1\bdswitch.exe
    size: 33280
    MD5: 5ee1d89d2a400e3f05137604ca262c20

    Located: HK_LM:Run, BJCFD
    command: C:\Program Files\BroadJump\Client Foundation\CFD.exe
    file: C:\Program Files\BroadJump\Client Foundation\CFD.exe
    size: 376912
    MD5: 021e25cfae7607a411d06f2b504d2256

    Located: HK_LM:Run, Club-Internet_McciTrayApp
    command: C:\Program Files\Club-Internet\Agent Wi-Fi V2\McciTrayApp.exe
    file: C:\Program Files\Club-Internet\Agent Wi-Fi V2\McciTrayApp.exe
    size: 543232
    MD5: 8dc095ca6d2af4276a120ff18f99ed1b

    Located: HK_LM:Run, iTunesHelper
    command: "C:\Program Files\iTunes\iTunesHelper.exe"
    file: C:\Program Files\iTunes\iTunesHelper.exe
    size: 278528
    MD5: 8778072a594e1310c0b7d0a93771e8bd

    Located: HK_LM:Run, MessengerPlus3
    command: "C:\Program Files\MessengerPlus! 3\MsgPlus.exe"
    file: C:\Program Files\MessengerPlus! 3\MsgPlus.exe
    size: 190024
    MD5: b787d9a60fee9c3732c2e2d4571bb716

    Located: HK_LM:Run, NeroFilterCheck
    command: C:\WINDOWS\system32\NeroCheck.exe
    file: C:\WINDOWS\system32\NeroCheck.exe
    size: 155648
    MD5: 3e4c03cefad8de135263236b61a49c90

    Located: HK_LM:Run, Recguard
    command: C:\WINDOWS\SMINST\RECGUARD.EXE
    file: C:\WINDOWS\SMINST\RECGUARD.EXE
    size: 237568
    MD5: f3eaea279f09a7779c18793c87640794

    Located: HK_LM:Run, TkBellExe
    command: "C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe" -osboot
    file: C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe
    size: 180269
    MD5: f9b47f830dd55fedd6ef27d063c29a42

    Located: HK_LM:Run, HP Software Update (DISABLED)
    command: C:\Program Files\HP\HP Software Update\HPwuSchd2.exe
    file: C:\Program Files\HP\HP Software Update\HPwuSchd2.exe
    size: 49152
    MD5: 821f73b833c4daebc33c1a9a4b16bb5a

    Located: HK_LM:Run, hpsysdrv (DISABLED)
    command: c:\windows\system\hpsysdrv.exe
    file: c:\windows\system\hpsysdrv.exe
    size: 52736
    MD5: 06a1ecb63df139ec639e084d4ab3c9d7

    Located: HK_LM:Run, KBD (DISABLED)
    command: C:\HP\KBD\KBD.EXE
    file: C:\HP\KBD\KBD.EXE
    size: 61440
    MD5: c81be1b951c36e97d3da90da745da5f7

    Located: HK_LM:Run, PS2 (DISABLED)
    command: C:\WINDOWS\system32\ps2.exe
    file: C:\WINDOWS\system32\ps2.exe
    size: 90112
    MD5: ff8ccc86c4e42f59b189bd28d362b599

    Located: HK_LM:Run, SunJavaUpdateSched (DISABLED)
    command: C:\Program Files\Java\jre1.5.0_06\bin\jusched.exe
    file: C:\Program Files\Java\jre1.5.0_06\bin\jusched.exe
    size: 36975
    MD5: 61a3a9d5d98bf0331df5b716144a8100

    Located: HK_LM:Run, TkBellExe (DISABLED)
    command: "C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe" -osboot
    file: C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe
    size: 180269
    MD5: f9b47f830dd55fedd6ef27d063c29a42

    Located: HK_CU:Run, NCLaunch
    command: C:\WINDOWS\NCLAUNCH.EXe
    file: C:\WINDOWS\NCLAUNCH.EXe
    size: 40960
    MD5: 533e9d5e5258712f1ddee511cb8e2e18

    Located: Démarrage (tous utilisateurs), Adobe Gamma Loader.lnk
    command: C:\Program Files\Fichiers communs\Adobe\Calibration\Adobe Gamma Loader.exe
    file: C:\Program Files\Fichiers communs\Adobe\Calibration\Adobe Gamma Loader.exe
    size: 113664
    MD5: c2ff17734176cd15221c10044ef0ba1a

    Located: Démarrage (tous utilisateurs), Docteur Club Internet.lnk
    command: C:\Program Files\Club-Internet\Dr Club Internet\bin\matcli.exe
    file: C:\Program Files\Club-Internet\Dr Club Internet\bin\matcli.exe
    size: 217088
    MD5: 90aebccb2e6ab9180113f21792d11c32

    Located: Démarrage (utilisateur), TomTom HOME.lnk
    command: C:\Program Files\TomTom HOME\TomTomHOME.exe
    file: C:\Program Files\TomTom HOME\TomTomHOME.exe
    size: 4806824
    MD5: 3fa58adb0b968e29f6bfa736b8e26cb4

    Located: System.ini, AtiExtEvent
    command: Ati2evxx.dll
    file: Ati2evxx.dll

    Located: System.ini, crypt32chain
    command: crypt32.dll
    file: crypt32.dll

    Located: System.ini, cryptnet
    command: cryptnet.dll
    file: cryptnet.dll

    Located: System.ini, cscdll
    command: cscdll.dll
    file: cscdll.dll

    Located: System.ini, ScCertProp
    command: wlnotify.dll
    file: wlnotify.dll

    Located: System.ini, Schedule
    command: wlnotify.dll
    file: wlnotify.dll

    Located: System.ini, sclgntfy
    command: sclgntfy.dll
    file: sclgntfy.dll

    Located: System.ini, SensLogn
    command: WlNotify.dll
    file: WlNotify.dll

    Located: System.ini, termsrv
    command: wlnotify.dll
    file: wlnotify.dll

    Located: System.ini, wlballoon
    command: wlnotify.dll
    file: wlnotify.dll

    --- Browser helper object list ---
    {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} (Adobe PDF Reader Link Helper)
    BHO name:
    CLSID name: Adobe PDF Reader Link Helper
    description: Adobe Acrobat reader
    classification: Legitimate
    known filename: AcroIEhelper.ocx<br>AcroIEhelper.dll
    info link: https://get2.adobe.com/reader/otherversions/
    info source: TonyKlein
    Path: C:\Program Files\Adobe\Acrobat 7.0\ActiveX\
    Long name: AcroIEHelper.dll
    Short name: ACROIE~1.DLL
    Date (created): 14/12/2004 02:56:50
    Date (last access): 21/06/2006 12:37:48
    Date (last write): 12/01/2006 20:38:22
    Filesize: 63128
    Attributes: archive
    MD5: F17B2B264072B921FC66A0BE16626BAB
    CRC32: 5184CFEA
    Version: 7.0.7.142

    {53707962-6F74-2D53-2644-206D7942484F} ()
    BHO name:
    CLSID name:
    description: Spybot-S&D IE Browser plugin
    classification: Legitimate
    known filename: SDhelper.dll
    info link: http://spybot.eon.net.au/
    info source: Patrick M. Kolla
    Path: C:\PROGRA~1\SPYBOT~1\
    Long name: SDHelper.dll
    Short name:
    Date (created): 13/06/2006 16:25:52
    Date (last access): 21/06/2006 12:37:48
    Date (last write): 31/05/2005 01:04:00
    Filesize: 853672
    Attributes: archive
    MD5: 250D787A5712D7768DDC133B3E477759
    CRC32: D4589A41
    Version: 1.4.0.0

    {64F56FC1-1272-44CD-BA6E-39723696E350} (EoRezoBHO)
    BHO name: EoRezoBHO
    CLSID name: EoBho Class

    {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} (SSVHelper Class)
    BHO name:
    CLSID name: SSVHelper Class
    Path: C:\Program Files\Java\jre1.5.0_06\bin\
    Long name: ssv.dll
    Short name:
    Date (created): 02/03/2006 13:53:00
    Date (last access): 21/06/2006 12:37:50
    Date (last write): 10/11/2005 13:22:12
    Filesize: 184423
    Attributes: archive
    MD5: F01726F7CA8538FDD4663C9DB8FEAEDC
    CRC32: 0111B892
    Version: 5.0.60.5

    {9030D464-4C02-4ABF-8ECC-5164760863C6} (Windows Live Sign-in Helper)
    BHO name:
    CLSID name: Windows Live Sign-in Helper
    Path: C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\
    Long name: WindowsLiveLogin.dll
    Short name: WINDOW~1.DLL
    Date (created): 07/04/2006 00:02:02
    Date (last access): 21/06/2006 12:37:50
    Date (last write): 07/04/2006 00:02:02
    Filesize: 323904
    Attributes: archive
    MD5: B30FAF9FD36BB993A5FB3A3AFE0E3703
    CRC32: 53C1960B
    Version: 4.0.246.1

    {9394EDE7-C8B5-483E-8773-474BF36AF6E4} (ST)
    BHO name:
    CLSID name: ST
    Path: C:\Program Files\MSN Apps\ST\01.03.0000.1005\en-xu\
    Long name: stmain.dll
    Short name:
    Date (created): 06/04/2006 11:55:40
    Date (last access): 21/06/2006 12:37:50
    Date (last write): 13/08/2004 17:42:00
    Filesize: 155648
    Attributes: archive
    MD5: 0DA1349495955CB41A5899047C5A1267
    CRC32: C050EECD
    Version: 1.2.3000.1001

    {AA58ED58-01DD-4d91-8333-CF10577473F7} (Google Toolbar Helper)
    BHO name:
    CLSID name: Google Toolbar Helper
    description: Google toolbar
    classification: Open for discussion
    known filename: googletoolbar.dll<br>googletoolbar*.dll<br>(* = number)<br>googletoolbar_en_*.**-big.dll<br>Googletoolbar_en_*.*.**-deleon.dll
    info link: http://www.google.com/intl/fr/toolbar/ie/index.html
    info source: TonyKlein
    Path: c:\program files\google\
    Long name: GoogleToolbar2.dll
    Short name: GOOGLE~2.DLL
    Date (created): 10/04/2006 18:32:50
    Date (last access): 21/06/2006 12:37:48
    Date (last write): 14/02/2006 20:06:14
    Filesize: 1204224
    Attributes: readonly archive
    MD5: D91CB7361D7814035F543C7CCAE9DD60
    CRC32: 16D568FF
    Version: 3.0.131.0

    {BDBD1DAD-C946-4A17-ADC1-64B5B4FF55D0} (MSNToolBandBHO)
    BHO name:
    CLSID name: MSNToolBandBHO
    Path: C:\Program Files\MSN Apps\MSN Toolbar\01.02.5000.1021\fr\
    Long name: msntb.dll
    Short name:
    Date (created): 06/04/2006 11:53:50
    Date (last access): 21/06/2006 12:37:50
    Date (last write): 17/01/2006 16:04:16
    Filesize: 282624
    Attributes: archive
    MD5: 6B3B0C6657B3DFEAD7ABC5BFEE45B347
    CRC32: 1DF31317
    Version: 1.2.5000.1021

    --- ActiveX list ---
    Microsoft XML Parser for Java (Microsoft XML Parser for Java)
    DPF name: Microsoft XML Parser for Java
    CLSID name:
    Installer:
    Codebase: file://C:\WINDOWS\Java\classes\xmldso.cab
    description:
    classification: Legitimate
    known filename: %WINDIR%\Java\classes\xmldso.cab
    info link:
    info source: Patrick M. Kolla

    {3E68E405-C6DE-49FF-83AE-41EE9F4C36CE} (Office Update Installation Engine)
    DPF name:
    CLSID name: Office Update Installation Engine
    Installer: C:\WINDOWS\Downloaded Program Files\opuc.inf
    Codebase: http://office.microsoft.com/officeupdate/content/opuc3.cab
    description:
    classification: Legitimate
    known filename: opuc.dll
    info link:
    info source: Safer Networking Ltd.
    Path: C:\WINDOWS\
    Long name: opuc.dll
    Short name:
    Date (created): 17/11/2005 23:12:26
    Date (last access): 21/06/2006 12:38:24
    Date (last write): 17/11/2005 23:12:26
    Filesize: 533504
    Attributes: archive
    MD5: 24F3058766D5FC3FD0F37F6D6EE6FE9B
    CRC32: F1FAEDE3
    Version: 12.0.3208.1014

    {70BA88C8-DAE8-4CE9-92BB-979C4A75F53B} (GSDACtl Class)
    DPF name:
    CLSID name: GSDACtl Class
    Installer:
    Codebase: http://www.gamespy.com
    description:
    classification: Open for discussion
    known filename: gsda.dll
    info link:
    info source: Safer Networking Ltd.

    {8AD9C840-044E-11D1-B3E9-00805F499D93} (Java Runtime Environment 1.5.0)
    DPF name: Java Runtime Environment 1.5.0
    CLSID name: Java Plug-in 1.5.0_06
    Installer:
    Codebase: http://java.sun.com/update/1.5.0/jinstall-1_5_0_06-windows-i586.cab
    description: Sun Java
    classification: Legitimate
    known filename: %PROGRAM FILES%\JabaSoft\JRE\*\Bin\npjava131.dll
    info link:
    info source: Patrick M. Kolla
    Path: C:\Program Files\Java\jre1.5.0_06\bin\
    Long name: NPJPI150_06.dll
    Short name: NPJPI1~1.DLL
    Date (created): 02/03/2006 13:52:58
    Date (last access): 19/06/2006 18:25:06
    Date (last write): 10/11/2005 13:22:12
    Filesize: 69746
    Attributes: archive
    MD5: D2CF6BB5E9020E6707B62575F8083954
    CRC32: 7F39DC54
    Version: 5.0.60.5

    {9A9307A0-7DA4-4DAF-B042-5009F29E09E1} (ActiveScan Installer Class)
    DPF name:
    CLSID name: ActiveScan Installer Class
    Installer: C:\WINDOWS\Downloaded Program Files\asinst.inf
    Codebase: http://acs.pandasoftware.com/activescan/as5free/asinst.cab
    description:
    classification: Open for discussion
    known filename: ASINST.DLL
    info link:
    info source: Safer Networking Ltd.
    Path: C:\WINDOWS\Downloaded Program Files\
    Long name: asinst.dll
    Short name:
    Date (created): 19/12/2005 13:35:32
    Date (last access): 21/06/2006 12:38:14
    Date (last write): 19/12/2005 13:35:32
    Filesize: 135168
    Attributes: archive
    MD5: 20C07B231040B49AFCE82397BFC35F9C
    CRC32: 9301377D
    Version: 58.4.0.0

    {CAFEEFAC-0015-0000-0005-ABCDEFFEDCBA} (Java Runtime Environment 1.5.0)
    DPF name: Java Runtime Environment 1.5.0
    CLSID name: Java Plug-in 1.5.0_05
    Installer:
    Codebase: http://java.sun.com/update/1.5.0/jinstall-1_5_0_05-windows-i586.cab
    Path: C:\Program Files\Java\jre1.5.0_05\bin\
    Long name: NPJPI150_05.dll
    Short name: NPJPI1~1.DLL
    Date (created): 26/08/2005 19:14:48
    Date (last access): 19/06/2006 18:25:00
    Date (last write): 26/08/2005 19:33:54
    Filesize: 69746
    Attributes: archive
    MD5: 52A85771BE18C9C00732F475A2C192AE
    CRC32: 525AE3AD
    Version: 5.0.50.5

    {CAFEEFAC-0015-0000-0006-ABCDEFFEDCBA} (Java Runtime Environment 1.5.0)
    DPF name: Java Runtime Environment 1.5.0
    CLSID name: Java Plug-in 1.5.0_06
    Installer:
    Codebase: http://java.sun.com/update/1.5.0/jinstall-1_5_0_06-windows-i586.cab
    Path: C:\Program Files\Java\jre1.5.0_06\bin\
    Long name: NPJPI150_06.dll
    Short name: NPJPI1~1.DLL
    Date (created): 02/03/2006 13:52:58
    Date (last access): 21/06/2006 12:48:54
    Date (last write): 10/11/2005 13:22:12
    Filesize: 69746
    Attributes: archive
    MD5: D2CF6BB5E9020E6707B62575F8083954
    CRC32: 7F39DC54
    Version: 5.0.60.5

    {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} (Java Runtime Environment 1.5.0)
    DPF name: Java Runtime Environment 1.5.0
    CLSID name: Java Plug-in 1.5.0_06
    Installer:
    Codebase: http://java.sun.com/update/1.5.0/jinstall-1_5_0_06-windows-i586.cab
    Path: C:\Program Files\Java\jre1.5.0_06\bin\
    Long name: NPJPI150_06.dll
    Short name: NPJPI1~1.DLL
    Date (created): 02/03/2006 13:52:58
    Date (last access): 21/06/2006 12:48:54
    Date (last write): 10/11/2005 13:22:12
    Filesize: 69746
    Attributes: archive
    MD5: D2CF6BB5E9020E6707B62575F8083954
    CRC32: 7F39DC54
    Version: 5.0.60.5

    {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object)
    DPF name:
    CLSID name: Shockwave Flash Object
    Installer: C:\WINDOWS\Downloaded Program Files\swflash.inf
    Codebase: http://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab
    description: Macromedia Shockwave Flash Player
    classification: Legitimate
    known filename:
    info link:
    info source: Patrick M. Kolla
    Path: C:\WINDOWS\system32\Macromed\Flash\
    Long name: Flash8a.ocx
    Short name:
    Date (created): 02/01/2006 11:13:28
    Date (last access): 21/06/2006 12:35:18
    Date (last write): 02/01/2006 11:13:28
    Filesize: 1443464
    Attributes: readonly archive
    MD5: 3066BB99502AE33AE44F17954AF56B8F
    CRC32: 658FAE72
    Version: 8.0.24.0

    --- Process list ---
    PID: 0 ( 0) [System]
    PID: 436 ( 4) \SystemRoot\System32\smss.exe
    PID: 680 ( 436) \??\C:\WINDOWS\system32\csrss.exe
    PID: 708 ( 436) \??\C:\WINDOWS\system32\winlogon.exe
    PID: 756 ( 708) C:\WINDOWS\system32\services.exe
    size: 108544
    MD5: 732E0B1ABAACE15D80EC19056B0A2AF9
    PID: 768 ( 708) C:\WINDOWS\system32\lsass.exe
    size: 13312
    MD5: 9F3744A5C6F49291A7A685040A013399
    PID: 912 ( 756) C:\WINDOWS\system32\Ati2evxx.exe
    size: 376832
    MD5: D21352BCAAB174948EB9672BC203BB0F
    PID: 924 ( 756) C:\WINDOWS\system32\svchost.exe
    size: 14336
    MD5: 1BD6C2F707A275CB7C16FD99FE0F31CA
    PID: 988 ( 756) C:\WINDOWS\system32\svchost.exe
    size: 14336
    MD5: 1BD6C2F707A275CB7C16FD99FE0F31CA
    PID: 1024 ( 756) C:\WINDOWS\System32\svchost.exe
    size: 14336
    MD5: 1BD6C2F707A275CB7C16FD99FE0F31CA
    PID: 1076 ( 756) C:\WINDOWS\system32\svchost.exe
    size: 14336
    MD5: 1BD6C2F707A275CB7C16FD99FE0F31CA
    PID: 1228 ( 756) C:\WINDOWS\system32\svchost.exe
    size: 14336
    MD5: 1BD6C2F707A275CB7C16FD99FE0F31CA
    PID: 1320 ( 708) C:\WINDOWS\system32\Ati2evxx.exe
    size: 376832
    MD5: D21352BCAAB174948EB9672BC203BB0F
    PID: 1376 (1348) C:\WINDOWS\Explorer.EXE
    size: 1036288
    MD5: 4C33E5B9A6197B6ED215F6CFBA0A2DAA
    PID: 1596 ( 756) C:\WINDOWS\system32\spoolsv.exe
    size: 57856
    MD5: DA81EC57ACD4CDC3D4C51CF3D409AF9F
    PID: 1712 ( 756) C:\Program Files\ewido anti-malware\ewidoctrl.exe
    size: 13888
    MD5: 26830B750372AB1BF29C95DEEBEB802F
    PID: 1772 ( 756) C:\Program Files\Alcohol Soft\Alcohol 120\StarWind\StarWindService.exe
    size: 217600
    MD5: AB2B9349ADA4AC5EC74B622B8303FE23
    PID: 1804 ( 756) C:\WINDOWS\system32\svchost.exe
    size: 14336
    MD5: 1BD6C2F707A275CB7C16FD99FE0F31CA
    PID: 1860 ( 756) C:\WINDOWS\system32\wdfmgr.exe
    size: 38912
    MD5: C81B8635DEE0D3EF5F64B3DD643023A5
    PID: 1916 ( 756) C:\Program Files\Fichiers communs\Softwin\BitDefender Communicator\xcommsvr.exe
    size: 86016
    MD5: B31359D3CD699A484AF46477231C019C
    PID: 1100 ( 756) C:\WINDOWS\System32\alg.exe
    size: 44544
    MD5: 2FE681D10C5FC343DBBC0610B8DD4D24
    PID: 2088 (1376) C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe
    size: 344064
    MD5: 29E8E6B337D61C931B11A90A98310626
    PID: 2152 (1376) C:\Program Files\Softwin\BitDefender9\bdoesrv.exe
    size: 90112
    MD5: 01980366E2A0EE31BAB611A141F44E8D
    PID: 2168 ( 756) C:\WINDOWS\System32\svchost.exe
    size: 14336
    MD5: 1BD6C2F707A275CB7C16FD99FE0F31CA
    PID: 2176 (1376) C:\progra~1\softwin\bitdef~1\bdswitch.exe
    size: 33280
    MD5: 5EE1D89D2A400E3F05137604CA262C20
    PID: 2244 (1376) C:\Program Files\MessengerPlus! 3\MsgPlus.exe
    size: 190024
    MD5: B787D9A60FEE9C3732C2E2D4571BB716
    PID: 2268 (1376) C:\Program Files\BroadJump\Client Foundation\CFD.exe
    size: 376912
    MD5: 021E25CFAE7607A411D06F2B504D2256
    PID: 2284 (1376) C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe
    size: 180269
    MD5: F9B47F830DD55FEDD6EF27D063C29A42
    PID: 2316 (1376) C:\Program Files\iTunes\iTunesHelper.exe
    size: 278528
    MD5: 8778072A594E1310C0B7D0A93771E8BD
    PID: 2380 (1376) C:\Program Files\Club-Internet\Agent Wi-Fi V2\McciTrayApp.exe
    size: 543232
    MD5: 8DC095CA6D2AF4276A120FF18F99ED1B
    PID: 2400 ( 756) C:\Program Files\iPod\bin\iPodService.exe
    size: 323584
    MD5: 962BC769D1008D83F6A00B9DE887EEF4
    PID: 2540 (1376) C:\WINDOWS\ALCXMNTR.EXE
    size: 57344
    MD5: 7B8875A5B04932AC73AFD8079864DB68
    PID: 2556 (1376) C:\WINDOWS\NCLAUNCH.EXe
    size: 40960
    MD5: 533E9D5E5258712F1DDEE511CB8E2E18
    PID: 3704 (1376) C:\Program Files\TomTom HOME\TomTomHOME.exe
    size: 4806824
    MD5: 3FA58ADB0B968E29F6BFA736B8E26CB4
    PID: 4008 (3116) C:\Program Files\Club-Internet\Dr Club Internet\bin\mpbtn.exe
    size: 192512
    MD5: 056B62587DCCE5E9480745BE84A0B765
    PID: 1528 ( 756) C:\WINDOWS\system32\svchost.exe
    size: 14336
    MD5: 1BD6C2F707A275CB7C16FD99FE0F31CA
    PID: 5284 (4792) C:\Program Files\a-squared Anti-Malware\a2guard.exe
    size: 1720320
    MD5: D37BD1CD6A7F2738AE96EA39FFC1F68D
    PID: 4140 (1376) C:\Program Files\MSN Messenger\msnmsgr.exe
    size: 5278504
    MD5: 5476667D81EABB2DC5D4D3A14FB27C0E
    PID: 5936 ( 924) C:\PROGRA~1\INCRED~1\bin\IMApp.exe
    size: 139305
    MD5: 2ABE5AE88F3E35BC0B67DB5D5B5F949C
    PID: 1044 ( 756) C:\Program Files\Fichiers communs\Softwin\BitDefender Update Service\livesrv.exe
    size: 225280
    MD5: DF80E4FDACD3B77EEB51C1A7F392BFB7
    PID: 5432 ( 756) C:\Program Files\Fichiers communs\Softwin\BitDefender Scan Server\bdss.exe
    size: 69632
    MD5: A7F6B6454B138C5CB2618A9EF018F61D
    PID: 3904 ( 756) C:\Program Files\Softwin\BitDefender9\vsserv.exe
    size: 335872
    MD5: E780A9D7BCF5B21E3A7603D2E1785CD7
    PID: 5460 (5032) c:\progra~1\softwin\bitdef~1\bdmcon.exe
    size: 372736
    MD5: 9FEB897442B05E01AB7CDC9C94C58EC4
    PID: 5488 (1376) C:\Program Files\Lavasoft\Ad-Aware SE Personal\Ad-Aware.exe
    size: 824832
    MD5: 1B0EDBF799B57EAD6EF68A82906C2097
    PID: 3500 (1376) C:\Program Files\Spybot - Search & Destroy\SpybotSD.exe
    size: 4393096
    MD5: 09CA174A605B480318731E691DC98539
    PID: 7788 (1376) C:\Program Files\ewido anti-malware\SecuritySuite.exe
    size: 528448
    MD5: 87DE2E52B80DDBE0673A20512588DA3C
    PID: 4 ( 0) System

    --- Browser start & search pages list ---
    Spybot - Search & Destroy browser pages report, 21/06/2006 12:48:58

    HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main\Local Page
    C:\WINDOWS\system32\blank.htm
    HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main\Search Page
    http://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
    HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main\Start Page
    https://actus.sfr.fr
    HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Main\Local Page
    %SystemRoot%\system32\blank.htm
    HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Main\Search Page
    http://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
    HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Main\Start Page
    http://www.microsoft.com/isapi/redir.dll?prd={SUB_PRD}&clcid={SUB_CLSID}&pver={SUB_PVER}&ar=home
    HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Main\Default_Page_URL
    http://www.microsoft.com/isapi/redir.dll?prd=ie&pver=6&ar=msnhome
    HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Main\Default_Search_URL
    http://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
    HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Search\SearchAssistant
    https://www.bing.com/?toHttps=1&redig=8F3F334EA60E4B1CB4D040DCFE393A89{SUB_RFC1766}/srchasst/srchasst.htm
    HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Search\CustomizeSearch
    https://www.bing.com/?toHttps=1&redig=8F3F334EA60E4B1CB4D040DCFE393A89{SUB_RFC1766}/srchasst/srchcust.htm

    --- Winsock Layered Service Provider list ---
    Protocol 0: MSAFD Tcpip [TCP/IP]
    GUID: {E70F1AA0-AB8B-11CF-8CA3-00805F48A192}
    Filename: %SystemRoot%\system32\mswsock.dll
    Description: Microsoft Windows NT/2k/XP IP protocol
    DB filename: %SystemRoot%\system32\mswsock.dll
    DB protocol: MSAFD Tcpip [*]

    Protocol 1: MSAFD Tcpip [UDP/IP]
    GUID: {E70F1AA0-AB8B-11CF-8CA3-00805F48A192}
    Filename: %SystemRoot%\system32\mswsock.dll
    Description: Microsoft Windows NT/2k/XP IP protocol
    DB filename: %SystemRoot%\system32\mswsock.dll
    DB protocol: MSAFD Tcpip [*]

    Protocol 2: MSAFD Tcpip [RAW/IP]
    GUID: {E70F1AA0-AB8B-11CF-8CA3-00805F48A192}
    Filename: %SystemRoot%\system32\mswsock.dll
    Description: Microsoft Windows NT/2k/XP IP protocol
    DB filename: %SystemRoot%\system32\mswsock.dll
    DB protocol: MSAFD Tcpip [*]

    Protocol 3: RSVP UDP Service Provider
    GUID: {9D60A9E0-337A-11D0-BD88-0000C082E69A}
    Filename: %SystemRoot%\system32\rsvpsp.dll
    Description: Microsoft Windows NT/2k/XP RVSP
    DB filename: %SystemRoot%\system32\rsvpsp.dll
    DB protocol: RSVP * Service Provider

    Protocol 4: RSVP TCP Service Provider
    GUID: {9D60A9E0-337A-11D0-BD88-0000C082E69A}
    Filename: %SystemRoot%\system32\rsvpsp.dll
    Description: Microsoft Windows NT/2k/XP RVSP
    DB filename: %SystemRoot%\system32\rsvpsp.dll
    DB protocol: RSVP * Service Provider

    Protocol 5: MSAFD NetBIOS [\Device\NetBT_Tcpip_{762514A3-5E6E-44B5-96DD-3EE367C2C1E7}] SEQPACKET 6
    GUID: {8D5F1830-C273-11CF-95C8-00805F48A192}
    Filename: %SystemRoot%\system32\mswsock.dll
    Description: Microsoft Windows NT/2k/XP NetBios protocol
    DB filename: %SystemRoot%\system32\mswsock.dll
    DB protocol: MSAFD NetBIOS *

    Protocol 6: MSAFD NetBIOS [\Device\NetBT_Tcpip_{762514A3-5E6E-44B5-96DD-3EE367C2C1E7}] DATAGRAM 6
    GUID: {8D5F1830-C273-11CF-95C8-00805F48A192}
    Filename: %SystemRoot%\system32\mswsock.dll
    Description: Microsoft Windows NT/2k/XP NetBios protocol
    DB filename: %SystemRoot%\system32\mswsock.dll
    DB protocol: MSAFD NetBIOS *

    Protocol 7: MSAFD NetBIOS [\Device\NetBT_Tcpip_{80D409DD-A299-4A09-8497-8809F70401D9}] SEQPACKET 5
    GUID: {8D5F1830-C273-11CF-95C8-00805F48A192}
    Filename: %SystemRoot%\system32\mswsock.dll
    Description: Microsoft Windows NT/2k/XP NetBios protocol
    DB filename: %SystemRoot%\system32\mswsock.dll
    DB protocol: MSAFD NetBIOS *

    Protocol 8: MSAFD NetBIOS [\Device\NetBT_Tcpip_{80D409DD-A299-4A09-8497-8809F70401D9}] DATAGRAM 5
    GUID: {8D5F1830-C273-11CF-95C8-00805F48A192}
    Filename: %SystemRoot%\system32\mswsock.dll
    Description: Microsoft Windows NT/2k/XP NetBios protocol
    DB filename: %SystemRoot%\system32\mswsock.dll
    DB protocol: MSAFD NetBIOS *

    Protocol 9: MSAFD NetBIOS [\Device\NetBT_Tcpip_{5C9DD1FE-3C8C-4D18-BBF5-9E35D34570F2}] SEQPACKET 1
    GUID: {8D5F1830-C273-11CF-95C8-00805F48A192}
    Filename: %SystemRoot%\system32\mswsock.dll
    Description: Microsoft Windows NT/2k/XP NetBios protocol
    DB filename: %SystemRoot%\system32\mswsock.dll
    DB protocol: MSAFD NetBIOS *

    Protocol 10: MSAFD NetBIOS [\Device\NetBT_Tcpip_{5C9DD1FE-3C8C-4D18-BBF5-9E35D34570F2}] DATAGRAM 1
    GUID: {8D5F1830-C273-11CF-95C8-00805F48A192}
    Filename: %SystemRoot%\system32\mswsock.dll
    Description: Microsoft Windows NT/2k/XP NetBios protocol
    DB filename: %SystemRoot%\system32\mswsock.dll
    DB protocol: MSAFD NetBIOS *

    Protocol 11: MSAFD NetBIOS [\Device\NetBT_Tcpip_{20EE3C41-EDB8-4963-B118-564863D80481}] SEQPACKET 4
    GUID: {8D5F1830-C273-11CF-95C8-00805F48A192}
    Filename: %SystemRoot%\system32\mswsock.dll
    Description: Microsoft Windows NT/2k/XP NetBios protocol
    DB filename: %SystemRoot%\system32\mswsock.dll
    DB protocol: MSAFD NetBIOS *

    Protocol 12: MSAFD NetBIOS [\Device\NetBT_Tcpip_{20EE3C41-EDB8-4963-B118-564863D80481}] DATAGRAM 4
    GUID: {8D5F1830-C273-11CF-95C8-00805F48A192}
    Filename: %SystemRoot%\system32\mswsock.dll
    Description: Microsoft Windows NT/2k/XP NetBios protocol
    DB filename: %SystemRoot%\system32\mswsock.dll
    DB protocol: MSAFD NetBIOS *

    Protocol 13: MSAFD NetBIOS [\Device\NetBT_Tcpip_{DE246E2C-8697-44FE-A5BB-FA04D12D4DEC}] SEQPACKET 0
    GUID: {8D5F1830-C273-11CF-95C8-00805F48A192}
    Filename: %SystemRoot%\system32\mswsock.dll
    Description: Microsoft Windows NT/2k/XP NetBios protocol
    DB filename: %SystemRoot%\system32\mswsock.dll
    DB protocol: MSAFD NetBIOS *

    Protocol 14: MSAFD NetBIOS [\Device\NetBT_Tcpip_{DE246E2C-8697-44FE-A5BB-FA04D12D4DEC}] DATAGRAM 0
    GUID: {8D5F1830-C273-11CF-95C8-00805F48A192}
    Filename: %SystemRoot%\system32\mswsock.dll
    Description: Microsoft Windows NT/2k/XP NetBios protocol
    DB filename: %SystemRoot%\system32\mswsock.dll
    DB protocol: MSAFD NetBIOS *

    Protocol 15: MSAFD NetBIOS [\Device\NetBT_Tcpip_{E658C067-685E-4840-9EC2-ADC9EA7F2B73}] SEQPACKET 2
    GUID: {8D5F1830-C273-11CF-95C8-00805F48A192}
    Filename: %SystemRoot%\system32\mswsock.dll
    Description: Microsoft Windows NT/2k/XP NetBios protocol
    DB filename: %SystemRoot%\system32\mswsock.dll
    DB protocol: MSAFD NetBIOS *

    Protocol 16: MSAFD NetBIOS [\Device\NetBT_Tcpip_{E658C067-685E-4840-9EC2-ADC9EA7F2B73}] DATAGRAM 2
    GUID: {8D5F1830-C273-11CF-95C8-00805F48A192}
    Filename: %SystemRoot%\system32\mswsock.dll
    Description: Microsoft Windows NT/2k/XP NetBios protocol
    DB filename: %SystemRoot%\system32\mswsock.dll
    DB protocol: MSAFD NetBIOS *

    Protocol 17: MSAFD NetBIOS [\Device\NetBT_Tcpip_{89939DAA-FFF0-44C3-855E-96DF39B920E1}] SEQPACKET 3
    GUID: {8D5F1830-C273-11CF-95C8-00805F48A192}
    Filename: %SystemRoot%\system32\mswsock.dll
    Description: Microsoft Windows NT/2k/XP NetBios protocol
    DB filename: %SystemRoot%\system32\mswsock.dll
    DB protocol: MSAFD NetBIOS *

    Protocol 18: MSAFD NetBIOS [\Device\NetBT_Tcpip_{89939DAA-FFF0-44C3-855E-96DF39B920E1}] DATAGRAM 3
    GUID: {8D5F1830-C273-11CF-95C8-00805F48A192}
    Filename: %SystemRoot%\system32\mswsock.dll
    Description: Microsoft Windows NT/2k/XP NetBios protocol
    DB filename: %SystemRoot%\system32\mswsock.dll
    DB protocol: MSAFD NetBIOS *

    Namespace Provider 0: TCP/IP
    GUID: {22059D40-7E9E-11CF-AE5A-00AA00A7112B}
    Filename: %SystemRoot%\System32\mswsock.dll
    Description: Microsoft Windows NT/2k/XP TCP/IP name space provider
    DB filename: %SystemRoot%\system32\mswsock.dll
    DB protocol: TCP/IP

    Namespace Provider 1: NTDS
    GUID: {3B2637EE-E580-11CF-A555-00C04FD8D4AC}
    Filename: %SystemRoot%\System32\winrnr.dll
    Description: Microsoft Windows NT/2k/XP name space provider
    DB filename: %SystemRoot%\system32\winrnr.dll
    DB protocol: NTDS

    Namespace Provider 2: Espace de noms NLA (Network Location Awareness)
    GUID: {6642243A-3BA8-4AA6-BAA5-2E0BD71FDD83}
    Filename: %SystemRoot%\System32\mswsock.dll
    Description: Microsoft Windows NT/2k/XP name space provider
    DB filename: %SystemRoot%\system32\mswsock.dll
    DB protocol: NLA-Namespace

    --- Uninstall list ---
    Windows Driver Package - MSN (usbccgp) USB (04/19/2006 1.1.0.2) 04/19/2006 1.1.0.2 (60A5FC6E548B5906438A6A163A886BAF2BE75AA9)
    uninstall cmd: rundll32.exe C:\PROGRA~1\DIFX\7AA84A78695B31A503D9537A76801D74E0FD14BD\DIFxAppA.dll, DIFxARPUninstallDriverPackage C:\WINDOWS\system32\DRVSTORE\WLPhoneC_A6FBDDFD78E9FD2D94C453BC7FCFBE6BEE0A125E\WLPhoneC.inf
    publisher: MSN

    a-squared Anti-Malware 2.0 2.0 (a-squared Anti-Malware_is1)
    install location: C:\Program Files\a-squared Anti-Malware\
    uninstall cmd: "C:\Program Files\a-squared Anti-Malware\unins000.exe"
    publisher: Emsi Software GmbH
    comments: a-squared
    help link: https://support.emsisoft.com/

    Ad-Aware SE Personal 1.06 (Ad-Aware SE Personal)
    uninstall cmd: C:\PROGRA~1\Lavasoft\AD-AWA~1\UNWISE.EXE C:\PROGRA~1\Lavasoft\AD-AWA~1\INSTALL.LOG
    publisher: Lavasoft
    help link: https://www.adaware.com/

    advertismen (advertismen)
    uninstall cmd: rundll32.exe C:\WINDOWS\system32\pushow7.dll Uninstall

    ATI Display Driver 8.17-050813a1-025991C-HP (ATI Display Driver)
    uninstall cmd: rundll32 C:\WINDOWS\system32\atiiiexx.dll,_InfEngUnInstallINFFile_RunDLL@16 -force_restart -flags:0x2010001 -inf_class:DISPLAY -clean

    AUDI Q7 Screen Saver (AUDI Q7)
    uninstall cmd: C:\WINDOWS\NCUNINST.EXe REMOVE AUDI Q7

    BroadJump Client Foundation (BroadJump Client Foundation)
    uninstall cmd: C:\WINDOWS\IsUninst.exe -f"C:\Program Files\BroadJump\Client Foundation\Uninst.isu" -c"C:\Program Files\BroadJump\Client Foundation\RmvBJCFD.dll" -b"CFD" -h"CFD" -a

    CCleaner (remove only) (CCleaner)
    uninstall cmd: "C:\Program Files\CCleaner\uninst.exe"

    CleanUp! (CleanUp!)
    uninstall cmd: C:\Program Files\CleanUp!\uninstall.exe

    Club Internet Agent Wi-Fi V2 (Club Internet Agent Wi-Fi V2)
    uninstall cmd: C:\Program Files\Club-Internet\Agent Wi-Fi V2\uninstall.exe

    Configurateur Modem (ConfigurateurModem)
    uninstall cmd: "C:\Program Files\Club-Internet\Assistance\uninstall.exe"

    (Connection Manager)

    DivXMachine 2.2 - 219 Pack4 (DivXMachine II_is1)
    uninstall cmd: "C:\Program Files\DivXMachine II\unins000.exe"
    publisher: Machine Team
    help link: http://www.divxmachine.com

    5.8.0.asst_classic.asst_install (Docteur Club Internet)
    uninstall cmd: C:\PROGRA~1\CLUB-I~1\DRCLUB~1\Uninstall.exe TONLFR
    publisher: Motive Communications, Inc.

    DVD Shrink 3.2 (DVD Shrink_is1)
    install location: C:\Program Files\DVD Shrink\
    uninstall cmd: "C:\Program Files\DVD Shrink\unins000.exe"
    publisher: DVD Shrink
    help link: http://www.dvdshrink.org

    EVEREST Home Edition v1.51 (EVEREST Home Edition_is1)
    uninstall cmd: "C:\Program Files\Lavalys\EVEREST Home Edition\unins000.exe"
    publisher: Lavalys Inc
    help link: http://www.lavalys.com

    ewido anti-malware (ewidoantimalware)
    install location: C:\Program Files\ewido anti-malware
    uninstall cmd: C:\Program Files\ewido anti-malware\Uninstall.exe
    publisher: ewido networks
    help link: https://www.avg.com/en-us/free-antivirus-download

    Microsoft Flight Simulator 2004 Un siècle d'aviation 9.0 (Flight Simulator 9.0)
    version (major): 9
    install location: C:\Program Files\Microsoft Games\Flight Simulator 9
    uninstall cmd: "C:\Program Files\Microsoft Games\Flight Simulator 9\UNINSTAL.EXE" /runtemp /addremove
    publisher: Microsoft
    help link: https://support.microsoft.com/en-us
    readme: C:\Program Files\Microsoft Games\Flight Simulator 9\Lisezmoi.rtf

    HijackThis 1.99.1 1.99.1 (HijackThis)
    uninstall cmd: C:\Program Files\Hijackthis Version Française\HijackThis.exe /uninstall
    publisher: Soeperman Enterprises Ltd.

    Hijackthis Version Française (Hijackthis Version Française_is1)
    install location: C:\Program Files\Hijackthis Version Française\
    uninstall cmd: "C:\Program Files\Hijackthis Version Française\unins000.exe"
    publisher: Pc-Help-Bordeaux
    help link: http://pchelpbordeaux.free.fr

    Photo et imagerie HP 2.0 - hp psc 1200 series (HP PSC 1200 Series)
    uninstall cmd: C:\Program Files\Hewlett-Packard\Digital Imaging\{7C8BB31C-E09E-4c7d-BBF1-45E33B467FE1}\Setup\hpzscr01.exe -datfile hposcr02.dat -forcereboot

    IncrediMail Xe (IncrediMail)
    uninstall cmd: C:\PROGRA~1\INCRED~1\bin\imsetup.exe /remove /addon:IncrediMail /log:IncMail.log

    (InstallShield Uninstall Information)

    Amélioration de nos services Customer Experience Enhancement -1.0.0.1680 (InstallShield_{23012310-3E05-46A5-88A9-C6CBCABCAC79})
    version: 16777216
    version (major): 1
    estimated size: 336
    install date: 20051210
    install source: C:\hp\tmp\src\
    uninstall cmd: C:\PROGRA~1\FICHIE~1\INSTAL~1\Driver\1050\INTEL3~1\IDriver.exe /M{23012310-3E05-46A5-88A9-C6CBCABCAC79} /l1036
    publisher: Hewlett-Packard

    Age of Empires III 1.00.0000 (InstallShield_{485775E8-AEB8-46BD-922B-242879E03DD5})
    version: 16777216
    version (major): 1
    estimated size: 2100885
    install date: 20060525
    install location: C:\Program Files\Microsoft Games\Age of Empires III\
    install source: E:\
    uninstall cmd: C:\PROGRA~1\FICHIE~1\INSTAL~1\Driver\11\INTEL3~1\IDriver.exe /M{485775E8-AEB8-46BD-922B-242879E03DD5}
    publisher: Microsoft Game Studios
    help link: https://www.xbox.com/en-US/games?xr=shellnav

    iTunes 6.0.4.2 (InstallShield_{59C4F14F-7590-45FC-BE9F-A67AB3590709})
    version: 100663300
    version (major): 6
    estimated size: 34690
    install date: 20060501
    install location: C:\Program Files\iTunes\
    install source: C:\WINDOWS\Downloaded Installations\{59C4F14F-7590-45FC-BE9F-A67AB3590709}\
    uninstall cmd: C:\PROGRA~1\FICHIE~1\INSTAL~1\Driver\11\INTEL3~1\IDriver.exe /M{59C4F14F-7590-45FC-BE9F-A67AB3590709} /l1036
    publisher: Apple Computer, Inc.
    contact: Assistance AppleCare
    help link: http://www.info.apple.com/frfr/index.html
    help telephone: 1-800-275-2273

    QuickTime 7.0.4 (InstallShield_{929408E6-D265-4174-805F-81D1D914E2A4})
    version: 117440516
    version (major): 7
    estimated size: 66739
    install date: 20060501
    install location: C:\Program Files\QuickTime\
    install source: C:\DOCUME~1\COMPAQ~1\LOCALS~1\Temp\_is5A\
    uninstall cmd: C:\PROGRA~1\FICHIE~1\INSTAL~1\Driver\11\INTEL3~1\IDriver.exe /M{929408E6-D265-4174-805F-81D1D914E2A4} /l1036
    publisher: Apple Computer, Inc.
    contact: Assistance AppleCare
    help link: https://support.apple.com/fr-fr
    help telephone: (33) 0825 888 024

    Call of Duty(R) 2 1.00.0000 (InstallShield_{D0A05794-48C2-4424-A15A-9F20FCFDD374})
    version: 16777216
    version (major): 1
    estimated size: 3559568
    install date: 20060502
    install location: C:\Program Files\Activision\Call of Duty 2\
    install source: E:\
    uninstall cmd: C:\PROGRA~1\FICHIE~1\INSTAL~1\Driver\9\INTEL3~1\IDriver.exe /M{D0A05794-48C2-4424-A15A-9F20FCFDD374}
    publisher: Activision
    comments: Call of Duty(R) 2
    contact: Support technique
    help link: http://activision.custhelp.com

    JVTorrent 1.1 1.1 (JVTorrent)
    uninstall cmd: C:\Program Files\JVTorrent\uninst.exe
    publisher: JeuxVideo.com

    (KB884016)

    Correctif Windows XP - KB885884 20040924.025457 (KB885884)
    uninstall cmd: C:\WINDOWS\$NtUninstallKB885884$\spuninst\spuninst.exe
    publisher: Microsoft Corporation
    help link: https://support.microsoft.com/en-us/help/885884

    (KB893803)

    Windows Installer 3.1 (KB893803) 3.1 (KB893803v2)
    uninstall cmd: "C:\WINDOWS\$MSI31Uninstall_KB893803v2$\spuninst\spuninst.exe"
    publisher: Microsoft Corporation
    help link: https://support.microsoft.com/en-us/help/893803/windows-installer-3-1-v2-3-1-4000-2435-is-available

    Mise à jour pour Windows XP (KB900485) 2 (KB900485)
    install date: 20060426
    uninstall cmd: "C:\WINDOWS\$NtUninstallKB900485$\spuninst\spuninst.exe"
    publisher: Microsoft Corporation
    help link: https://support.microsoft.com/en-us/help/900485

    Mise à jour de sécurité pour Windows XP (KB911280) 1 (KB911280)
    install date: 20060616
    uninstall cmd: "C:\WINDOWS\$NtUninstallKB911280$\spuninst\spuninst.exe"
    publisher: Microsoft Corporation
    help link: https://support.microsoft.com/en-us/help/911280

    Mise à jour de sécurité pour Windows XP (KB913580) 1 (KB913580)
    install date: 20060510
    uninstall cmd: "C:\WINDOWS\$NtUninstallKB913580$\spuninst\spuninst.exe"
    publisher: Microsoft Corporation
    help link: https://support.microsoft.com/en-us/help/913580

    Mise à jour de sécurité pour Windows XP (KB914389) 1 (KB914389)
    install date: 20060616
    uninstall cmd: "C:\WINDOWS\$NtUninstallKB914389$\spuninst\spuninst.exe"
    publisher: Microsoft Corporation
    help link: https://support.microsoft.com/en-us/help/914389

    Mise à jour de sécurité pour Windows XP (KB916281) 1 (KB916281)
    install date: 20060616
    uninstall cmd: "C:\WINDOWS\$NtUninstallKB916281$\spuninst\spuninst.exe"
    publisher: Microsoft Corporation
    help link: https://support.microsoft.com/en-us/help/916281

    Mise à jour de sécurité pour Windows XP (KB917344) 1 (KB917344)
    install date: 20060616
    uninstall cmd: "C:\WINDOWS\$NtUninstallKB917344$\spuninst\spuninst.exe"
    publisher: Microsoft Corporation
    help link: https://support.microsoft.com/en-us/help/917344

    Mise à jour de sécurité pour Lecteur Windows Media 10 (KB917734) (KB917734_WMP10)
    install date: 20060616
    uninstall cmd: "C:\WINDOWS\$NtUninstallKB917734_WMP10$\spuninst\spuninst.exe"
    publisher: Microsoft Corporation
    help link: https://support.microsoft.com/en-us/help/917734

    Mise à jour de sécurité pour Windows XP (KB917953) 1 (KB917953)
    install date: 20060616
    uninstall cmd: "C:\WINDOWS\$NtUninstallKB917953$\spuninst\spuninst.exe"
    publisher: Microsoft Corporation
    help link: https://support.microsoft.com/en-us/help/917953

    Mise à jour de sécurité pour Windows XP (KB918439) 1 (KB918439)
    install date: 20060616
    uninstall cmd: "C:\WINDOWS\$NtUninstallKB918439$\spuninst\spuninst.exe"
    publisher: Microsoft Corporation
    help link: https://support.microsoft.com/en-us/help/918439

    Compaq Multimedia Keyboard Software (KBD)
    uninstall cmd: C:\HP\KBD\Install.exe /remove

    L'Age de Glace 2 - Scrat2 1.0 (L'Age de Glace 2 - Scrat2_is1)
    uninstall cmd: "C:\Program Files\L'Age de Glace 2 - Scrat2\unins000.exe"
    publisher: Fox
    help link: info@foxfrance.com

    L'Age de Glace 2 - Scrat 1.0 (L'Age de Glace 2 - Scrat_is1)
    uninstall cmd: "C:\Program Files\L'Age de Glace 2 - Scrat\unins000.exe"
    publisher: Fox
    help link: info@foxfrance.com

    LifeGlobe Goldfish Aquarium 1.0 (LifeGlobe Goldfish Aquarium_is1)
    uninstall cmd: "C:\Program Files\Prolific Publishing, Inc.\Goldfish Aquarium\unins000.exe"
    publisher: Prolific Publishing, Inc.
    help link: https://prolificpublishinginc.com/store/manufacturers.php?manufacturerid=2

    Logitech Print Service (Logitech Print Service)
    uninstall cmd: C:\PROGRA~1\Logitech\PRINTS~1\UNWISE.EXE C:\PROGRA~1\Logitech\PRINTS~1\INSTALL.LOG

    Microsoft .NET Framework 1.1 Hotfix (KB886903) (M886903)
    uninstall cmd: "C:\WINDOWS\Microsoft.NET\Framework\v1.1.4322\Updates\hotfix.exe" "C:\WINDOWS\Microsoft.NET\Framework\v1.1.4322\Updates\M886903\M886903Uninstall.msp"

    Microsoft .NET Framework 1.1 (Microsoft .NET Framework 1.1 (1033))
    uninstall cmd: msiexec.exe /X {CB2F7EDD-9D1F-43C1-90FC-4F52EAE172A1}
    readme: file://C:\WINDOWS\Microsoft.NET\Framework\v1.1.4322\1033\RepairRedist.htm

    (Microsoft Interactive Training)
    uninstall cmd: C:\WINDOWS\IsUn040c.exe -fC:\WINDOWS\orun32.isu

    Microsoft Money 14 (Money2005b)
    uninstall cmd: C:\Program Files\Microsoft Money 2005\MNYCoreFiles\Setup\uninst.exe /s:120
    publisher: Microsoft
    comments: La base de données d'installation contient la logique et les données requises pour installer Money.
    help link: https://support.microsoft.com/en-us
    help telephone: 0 825 827 829

    MotoGP2 (MotoGP2_is1)
    uninstall cmd: "C:\Program Files\MotoGP2\unins000.exe"
    publisher: THQ

    Messenger Plus! 3 (MsgPlus! Plugin)
    uninstall cmd: "C:\Program Files\MessengerPlus! 3\MsgPlus.exe" /Remove

    (MSI30-Beta1)

    (MSI30-Beta2)

    (MSI30-KB884016)

    (MSI30-RC1)

    (MSI30-RC2)

    (MSI30a-KB884016)

    (MSI31-Beta)

    (MSI31-RC1)

    Barre d'outils MSN (MSN Toolbar)
    uninstall cmd: C:\Program Files\MSN Apps\MSN Toolbar\01.02.5000.1021\fr\mtbs.exe c

    (Nero - Burning Rom!UninstallKey)
    uninstall cmd: C:\Program Files\Ahead\nero\uninstall\UNNERO.exe /UNINSTALL

    Nero Suite (NeroMultiInstaller!UninstallKey)
    uninstall cmd: C:\Program Files\Fichiers communs\Ahead\Uninstall\Setup.exe /uninstall

    (NeroVision!UninstallKey)
    uninstall cmd: C:\WINDOWS\UNNeroVision.exe /UNINSTALL

    (NMPUninstallKey)
    uninstall cmd: C:\WINDOWS\UNNMP.exe /UNINSTALL

    Panda ActiveScan (Panda ActiveScan)
    uninstall cmd: C:\WINDOWS\system32\ASUninst.exe Panda ActiveScan
    publisher: Panda Software S.L.

    PC-Doctor 5 for Windows 5.00.3187.03 (PC-Doctor 5 for Windows)
    uninstall cmd: C:\Program Files\PC-Doctor 5 for Windows\uninst.exe
    publisher: PC-Doctor, Inc.

    (PCHealth)
    uninstall cmd: rundll32.exe setupapi.dll,InstallHinfSection DefaultUninstall 132 C:\WINDOWS\INF\PCHealth.inf

    PS2 (PS2)
    uninstall cmd: C:\WINDOWS\system32\ps2.exe uninstall

    Python 2.2.3 2.2.3 (Python 2.2.3)
    uninstall cmd: C:\Python22\UNWISE.EXE C:\Python22\INSTALL.LOG
    publisher: PythonLabs at Zope Corporation
    help link: https://www.python.org/

    Python 2.2 pywin32 extensions (build 203) (pywin32-py2.2)
    uninstall cmd: "C:\Python22\Removepywin32.exe" -u "C:\Python22\pywin32-wininst.log"

    Programme de gestion Camera de Logitech® (QcDrv)
    install location: C:\Program Files\Fichiers communs\Logitech\QCDRV
    install source: F:\Drivers\Bin\
    uninstall cmd: "C:\Program Files\Fichiers communs\Logitech\QCDRV\BIN\SETUP.EXE" UNINSTALL REMOVEPROMPT

    QuickSFV (Remove only) (QuickSFV)
    uninstall cmd: C:\Program Files\QuickSFV\QSFVUNST.EXE C:\Program Files\QuickSFV\

    (RealJukebox 1.0)
    uninstall cmd: C:\Program Files\Fichiers communs\Real\Update_OB\r1puninst.exe RealNetworks|RealPlayer|6.0

    RealPlayer (RealPlayer 6.0)
    uninstall cmd: C:\Program Files\Fichiers communs\Real\Update_OB\r1puninst.exe RealNetworks|RealPlayer|6.0

    SereneScreen Marine Aquarium 2 2.0 (SereneScreen Marine Aquarium 2_is1)
    uninstall cmd: "C:\Program Files\SereneScreen\Marine Aquarium 2\unins000.exe"
    publisher: Prolific Publishing, Inc.
    help link: https://serenescreen.com/v2/

    Macromedia Flash Player 8 8 (ShockwaveFlash)
    uninstall cmd: RunDll32 advpack.dll,LaunchINFSection C:\WINDOWS\INF\swflash.inf,DefaultUninstall,5
    publisher: Macromedia
    help link: https://helpx.adobe.com/flash-player.html

    Spybot - Search & Destroy 1.4 1.4 (Spybot - Search & Destroy_is1)
    install location: C:\Program Files\Spybot - Search & Destroy\
    uninstall cmd: "C:\Program Files\Spybot - Search & Destroy\unins000.exe"
    publisher: Safer Networking Limited

    TomTom HOME (TomTom HOME)
    uninstall cmd: C:\WINDOWS\unvise32.exe C:\Program Files\TomTom HOME\uninstal.log

    Docteur Club Internet (TONLFR.MCCInstall)
    uninstall cmd: C:\WINDOWS\Motive\TONLFR\MCCUninst.exe

    UxTheme Multipatcher Fr (UxTheme Multipatcher Fr)
    uninstall cmd: C:\Program Files\UxTheme Multipatcher Fr\uninstall.exe

    Windows Media Format Runtime (Windows Media Format Runtime)
    uninstall cmd: "C:\Program Files\Windows Media Player\wmsetsdk.exe" /UninstallAll

    Lecteur Windows Media 10 (Windows Media Player)
    uninstall cmd: "C:\Program Files\Windows Media Player\Setup_wm.exe" /Uninstall

    WinRAR archiver (WinRAR archiver)
    uninstall cmd: C:\Program Files\WinRAR\uninstall.exe

    Panneau de contrôle ATI 6.14.10.5166 ({0BEDBD4E-2D34-47B5-9973-57E62B29307C})
    uninstall cmd: RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\engine\6\INTEL3~1\ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{0BEDBD4E-2D34-47B5-9973-57E62B29307C}\setup.exe"

    Fire Department 2 1.00 ({1DA8594C-2F14-4491-B155-2BF3A999622D})
    version: 16777216
    install location: C:\Program Files\Monte Cristo\Fire Department 2
    uninstall cmd: RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\PROFES~1\RunTime\0701\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{1DA8594C-2F14-4491-B155-2BF3A999622D}\setup.exe" -l0x40c Uninstall

    Amélioration de nos services Customer Experience Enhancement -1.0.0.1680 ({23012310-3E05-46A5-88A9-C6CBCABCAC79})
    version: 16777216
    version (major): 1
    estimated size: 336
    install date: 20051210
    install source: C:\hp\tmp\src\
    publisher: Hewlett-Packard

    Google Toolbar for Internet Explorer ({2318C2B1-4965-11d4-9B18-009027A5CD4F})
    uninstall cmd: regsvr32 /u /s "c:\program files\google\googletoolbar2.dll"

    TuneUp Utilities 2004 4.1.2313 ({2C3738C9-56FA-410A-BCB5-79C5DFD238F0})
    version: 67176713
    version (major): 4
    version (minor): 1
    estimated size: 14243
    install date: 20060331
    install source: C:\Program Files\Fichiers communs\Wise Installation Wizard\
    uninstall cmd: MsiExec.exe /I{2C3738C9-56FA-410A-BCB5-79C5DFD238F0}
    publisher: TuneUp Software
    help link: www.TuneUp.fr

    J2SE Runtime Environment 5.0 Update 5 1.5.0.50 ({3248F0A8-6813-11D6-A77B-00B0D0150050})
    version: 17104896
    version (major): 1
    version (minor): 5
    estimated size: 155209
    install date: 20051210
    install source: C:\Documents and Settings\Propriétaire\Local Settings\Application Data\{3248F0A6-6813-11D6-A77B-00B0D0150050}\
    uninstall cmd: MsiExec.exe /I{3248F0A8-6813-11D6-A77B-00B0D0150050}
    publisher: Sun Microsystems, Inc.
    contact: https://www.java.com/en/
    help link: https://www.java.com/en/
    readme: C:\Program Files\Java\jre1.5.0_05\README.txt

    J2SE Runtime Environment 5.0 Update 6 1.5.0.60 ({3248F0A8-6813-11D6-A77B-00B0D0150060})
    version: 17104896
    version (major): 1
    version (minor): 5
    estimated size: 122273
    install date: 20060413
    install source: http://jdl.sun.com/webapps/download/GetFile/1.5.0_06plus-b05/windows-i586//
    uninstall cmd: MsiExec.exe /I{3248F0A8-6813-11D6-A77B-00B0D0150060}
    publisher: Sun Microsystems, Inc.
    contact: https://www.java.com/en/
    help link: https://www.java.com/en/
    readme: C:\Program Files\Java\jre1.5.0_06\README.txt

    WebFldrs XP 9.50.7523 ({350C940c-3D7C-4EE8-BAA9-00BCB3D54227})
    version: 154279267
    version (major): 9
    version (minor): 50
    estimated size: 2588
    install date: 20041123
    install source: C:\WINDOWS\system32\
    publisher: Microsoft Corporation
    help link: https://www.microsoft.com/en-us/windows/

    Age of Empires III 1.00.0000 ({485775E8-AEB8-46BD-922B-242879E03DD5})
    version: 16777216
    version (major): 1
    estimated size: 2100885
    install date: 20060525
    install location: C:\Program Files\Microsoft Games\Age of Empires III\
    install source: E:\
    publisher: Microsoft Game Studios
    help link: https://www.xbox.com/en-US/games?xr=shellnav

    0
  3. ^^Marie^^ Messages postés 41884 Date d'inscription   Statut Membre Dernière intervention   3 280
     
    Re,

    Il serait sympa de suivre le <1> dans l'ordre.........
    Déjà que je Raaaaame, alors dans le désordre......ça va payer........!!!

    Seuls les rapports EWIDO (2 rapports) et Smitfraud (2 rapports) sont demandés

    Merci

    0
  4. franckkoenig Messages postés 4 Statut Membre
     
    Excuses moi donc je te post le rappot ewido
    ---------------------------------------------------------
    ewido anti-malware - Rapport de scan
    ---------------------------------------------------------

    + Créé le: 15:40:40, 21/06/2006
    + Somme de contrôle: 4492FCFA

    + Résultats du scan:

    C:\Documents and Settings\Compaq_Propriétaire\Cookies\compaq_propriétaire@247realmedia[2].txt -> TrackingCookie.247realmedia : Nettoyer et sauvegarder
    C:\Documents and Settings\Compaq_Propriétaire\Cookies\compaq_propriétaire@ads.pointroll[2].txt -> TrackingCookie.Pointroll : Nettoyer et sauvegarder
    C:\Documents and Settings\Compaq_Propriétaire\Cookies\compaq_propriétaire@bluestreak[2].txt -> TrackingCookie.Bluestreak : Nettoyer et sauvegarder
    C:\Documents and Settings\Compaq_Propriétaire\Cookies\compaq_propriétaire@boonty.122.2o7[1].txt -> TrackingCookie.2o7 : Nettoyer et sauvegarder
    C:\Documents and Settings\Compaq_Propriétaire\Cookies\compaq_propriétaire@estat[1].txt -> TrackingCookie.Estat : Nettoyer et sauvegarder
    C:\Documents and Settings\Compaq_Propriétaire\Cookies\compaq_propriétaire@iv2.bluestreak[1].txt -> TrackingCookie.Bluestreak : Nettoyer et sauvegarder
    C:\Documents and Settings\Compaq_Propriétaire\Cookies\compaq_propriétaire@overture[2].txt -> TrackingCookie.Overture : Nettoyer et sauvegarder
    C:\Documents and Settings\Compaq_Propriétaire\Cookies\compaq_propriétaire@tradedoubler[1].txt -> TrackingCookie.Tradedoubler : Nettoyer et sauvegarder
    C:\Documents and Settings\Compaq_Propriétaire\Cookies\compaq_propriétaire@tribalfusion[1].txt -> TrackingCookie.Tribalfusion : Nettoyer et sauvegarder
    C:\Documents and Settings\Compaq_Propriétaire\Cookies\compaq_propriétaire@weborama[1].txt -> TrackingCookie.Weborama : Nettoyer et sauvegarder
    C:\Documents and Settings\Compaq_Propriétaire\Cookies\compaq_propriétaire@www.smartadserver[1].txt -> TrackingCookie.Smartadserver : Nettoyer et sauvegarder
    C:\Program Files\a-squared Anti-Malware\Quarantine\a2quarantine.tmp/Program Files/edonkey2000/temp/Madden NFL 2006 Crack & KeyGen all Versions.exe/1.1.part -> Worm.VB.dz : Nettoyer et sauvegarder
    C:\Program Files\NewDotNet -> Adware.NewDotNet : Nettoyer et sauvegarder
    C:\Program Files\NewDotNet\newdotnet6_38.dll -> Adware.NewDotNet : Erreur durant le nettoyage

    ::Fin du rapport
    0
  5. Vous n’avez pas trouvé la réponse que vous recherchez ?

    Posez votre question
  6. ^^Marie^^ Messages postés 41884 Date d'inscription   Statut Membre Dernière intervention   3 280
     
    Re,

    un oubli
    =====

    Démarre en mode sans échec :

    Pour cela, tu tapotes la touche F8 dès le début de l’allumage du PC sans t’arrêter
    Une fenêtre va s’ouvrir tu te déplaces avec les flèches du clavier sur démarrer en mode sans échec puis tape ‘Entrée’ sur ton clavier.
    Une fois sur le bureau s’il n’y a pas toutes les couleurs et autres, c’est normal !
    (Si F8 ne marche pas utilise la touche F5).

    Relance le programme Smitfraud,
    Cette fois choisit l’option 2, répond OUI à tout ;
    Sauvegarde le rapport, redémarre en mode normal,
    copie-COLLE le rapport sauvegardé sur le forum.


    Refais un HT.

    Bon courage
    A+
    0