Virus 'lien' msn

Résolu
MAD -  
 f0ll-hi -
Bonjour.

Comme bcp j'ai cliqué sur ce fameux lien qui infecte notre msn :s
(Pour moi le lien etait en espagol)

Depuis je ne peux plus me connecter a ma session msn.

J'aimerais savoir s'il y a des solutions a mon probleme et comment le regler.

Merci :)

33 réponses

  • 1
  • 2
  1. gigi49 Messages postés 7 Statut Membre 1
     
    bonjour

    https://www.luanagames.com/index.fr.html
    voilà il y a un programme pour supprimer le virus sur msn
    cordialement
    1
    1. Séb08 Messages postés 18169 Date d'inscription   Statut Contributeur Dernière intervention   1 430
       
      A voir ... ;-)

      il aurait du être detecté dans le scan AV en ligne .

      Il peut apparaître sur votre disque dur sous les noms tels que: "sexy_bedroom.pif", "drunk_lol.pif", "naked_party.pif", "webcam_(nombre aléatoire).pif", "love_me.pif
      0
  2. ^^Marie^^ Messages postés 41884 Date d'inscription   Statut Membre Dernière intervention   3 280
     
    Slt,

    Supprime MSN pour l'instant, on verra après...

    1
  3. ^^Marie^^ Messages postés 41884 Date d'inscription   Statut Membre Dernière intervention   3 280
     
    Re,

    Rafais un Hitjackthis
    et dis nous les symptomes de ton pc..
    A++
    1
  4. ^^Marie^^ Messages postés 41884 Date d'inscription   Statut Membre Dernière intervention   3 280
     
    Salut,

    Autant en profiter et faire un nettoyage complet

    Il est important d’effectuer la manip dans sa totalité et dans l’ordre :

    Télécharge (sauf si tu les as) et colle les 3 rapports dans l’ordre

    A - ad-aware version 1.06
    (ici) http://www.florensac-chasse-trap.com/ section virus/logiciel de securite
    voir demo
    http://pageperso.aol.fr/balltrap34/adwseflash.zip

    B - spybot version 1.4
    (ici) http://www.florensac-chasse-trap.com/ section virus/logiciel de securite
    voir demo d utilisation
    http://pageperso.aol.fr/Balltrap34/demo%20spybot.htm

    C - Ccleaner : ( nettoyeur de registre, cookies+temps+tempos+prefetch+historique+etc..)
    Télécharge ici :
    https://www.ccleaner.com/ccleaner/download
    Tutorial ici:
    https://www.vulgarisation-informatique.com/nettoyer-windows-ccleaner.php

    D – Ewido
    https://www.malekal.com/tutorial-et-guide-ewido-v4/
    ou
    http://www.infos-du-net.com/telecharger/Ewido-Anti-Malware.html

    Mets le à jour en cliquant update now.
    Fais un "complete system scan".
    A la fin du scan, vérifie qu'il y est bien marqué "delete à côté de chaque malware et clique seulement sur : "Apply all actions"
    Ensuite, clique sur "Save Report " puis "Save report as" et sauve le rapport dans tes documents.

    Copie/colle le rapport

    E - Scan online avec BitDefender (fonctionne uniquement sous Internet Explorer en acceptant l’ activX)
    https://assiste.com/404_La_page_demandee_n_existe_pas.php
    http://www.bitdefender.fr/scan8/ie.html
    Copie/COLLE le rapport entier

    F - Hijackthis - Outil de diagnostic et réparation
    lire démo
    http://pageperso.aol.fr/balltrap34/Hijenr.gif
    http://pageperso.aol.fr/balltrap34/demohijack.htm
    Télécharge version française ici
    http://telechargement.zebulon.fr/160-patch-francais-pour-hijackthis-1991.html
    Copie/colle le rapport

    Bon courage

    A++
    0
  5. Vous n’avez pas trouvé la réponse que vous recherchez ?

    Posez votre question
  6. MAD
     
    Salut marie !
    Merci de ton aide :)
    J'ai donc commencer la procedure dont tu me parles!
    Voila les rapports et mes problemes rencontrés!

    -J'ai fait dans l'ordre proposé, cependant pour Ewido, ca n'as pas fonctionner: l'application s'installe ms ne se lance pas.

    Ayant vu l'interface graphique dans les tuto, j'ai vu que ça ressemblait a AVG anti-spyware 7.5 donc j'ai fait une analyse AVG a defaut de pouvoir faire Ewido.

    voici mes rapports (ac ommencer par celui de ad-aware)

    Ad-Aware SE Build 1.06r1
    Logfile Created on:mardi 17 octobre 2006 20:25:36
    Created with Ad-Aware SE Personal, free for private use.
    Using definitions file:SE1R127 17.10.2006
    »»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»

    References detected during the scan:
    »»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»
    MRU List(TAC index:0):13 total references
    Tracking Cookie(TAC index:3):1 total references
    »»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»

    Ad-Aware SE Settings
    ===========================
    Set : Search for negligible risk entries
    Set : Safe mode (always request confirmation)
    Set : Scan active processes
    Set : Scan registry
    Set : Deep-scan registry
    Set : Scan my IE Favorites for banned URLs
    Set : Scan my Hosts file

    Extended Ad-Aware SE Settings
    ===========================
    Set : Unload recognized processes & modules during scan
    Set : Scan registry for all users instead of current user only
    Set : Always try to unload modules before deletion
    Set : During removal, unload Explorer and IE if necessary
    Set : Let Windows remove files in use at next reboot
    Set : Delete quarantined objects after restoring
    Set : Include basic Ad-Aware settings in log file
    Set : Include additional Ad-Aware settings in log file
    Set : Include reference summary in log file
    Set : Include alternate data stream details in log file
    Set : Play sound at scan completion if scan locates critical objects

    17-10-2006 20:25:36 - Scan started. (Full System Scan)

    MRU List Object Recognized!
    Location: : C:\Documents and Settings\MAD\recent
    Description : list of recently opened documents

    MRU List Object Recognized!
    Location: : software\microsoft\direct3d\mostrecentapplication
    Description : most recent application to use microsoft direct3d

    MRU List Object Recognized!
    Location: : software\microsoft\direct3d\mostrecentapplication
    Description : most recent application to use microsoft direct X

    MRU List Object Recognized!
    Location: : software\microsoft\directdraw\mostrecentapplication
    Description : most recent application to use microsoft directdraw

    MRU List Object Recognized!
    Location: : S-1-5-21-583907252-261478967-725345543-1003\software\microsoft\mediaplayer\medialibraryui
    Description : last selected node in the microsoft windows media player media library

    MRU List Object Recognized!
    Location: : S-1-5-21-583907252-261478967-725345543-1003\software\microsoft\office\11.0\access\settings
    Description : list of recently opened documents in microsoft access

    MRU List Object Recognized!
    Location: : S-1-5-21-583907252-261478967-725345543-1003\software\microsoft\windows\currentversion\explorer\comdlg32\lastvisitedmru
    Description : list of recent programs opened

    MRU List Object Recognized!
    Location: : S-1-5-21-583907252-261478967-725345543-1003\software\microsoft\windows\currentversion\explorer\comdlg32\opensavemru
    Description : list of recently saved files, stored according to file extension

    MRU List Object Recognized!
    Location: : S-1-5-21-583907252-261478967-725345543-1003\software\microsoft\windows\currentversion\explorer\recentdocs
    Description : list of recent documents opened

    MRU List Object Recognized!
    Location: : S-1-5-21-583907252-261478967-725345543-1003\software\microsoft\windows\currentversion\explorer\runmru
    Description : mru list for items opened in start | run

    MRU List Object Recognized!
    Location: : .DEFAULT\software\microsoft\windows media\wmsdk\general
    Description : windows media sdk

    MRU List Object Recognized!
    Location: : S-1-5-18\software\microsoft\windows media\wmsdk\general
    Description : windows media sdk

    MRU List Object Recognized!
    Location: : S-1-5-21-583907252-261478967-725345543-1003\software\microsoft\windows media\wmsdk\general
    Description : windows media sdk

    Listing running processes
    »»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»

    #:1 [smss.exe]
    FilePath : \SystemRoot\System32\
    ProcessID : 636
    ThreadCreationTime : 17-10-2006 15:38:42
    BasePriority : Normal

    #:2 [csrss.exe]
    FilePath : \??\C:\WINDOWS\system32\
    ProcessID : 688
    ThreadCreationTime : 17-10-2006 15:38:43
    BasePriority : Normal

    #:3 [winlogon.exe]
    FilePath : \??\C:\WINDOWS\system32\
    ProcessID : 728
    ThreadCreationTime : 17-10-2006 15:38:47
    BasePriority : High

    #:4 [services.exe]
    FilePath : C:\WINDOWS\system32\
    ProcessID : 776
    ThreadCreationTime : 17-10-2006 15:38:48
    BasePriority : Normal
    FileVersion : 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)
    ProductVersion : 5.1.2600.2180
    ProductName : Système d'exploitation Microsoft® Windows®
    CompanyName : Microsoft Corporation
    FileDescription : Applications Services et Contrôleur
    InternalName : services.exe
    LegalCopyright : © Microsoft Corporation. Tous droits réservés.
    OriginalFilename : services.exe

    #:5 [lsass.exe]
    FilePath : C:\WINDOWS\system32\
    ProcessID : 788
    ThreadCreationTime : 17-10-2006 15:38:48
    BasePriority : Normal
    FileVersion : 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)
    ProductVersion : 5.1.2600.2180
    ProductName : Microsoft® Windows® Operating System
    CompanyName : Microsoft Corporation
    FileDescription : LSA Shell (Export Version)
    InternalName : lsass.exe
    LegalCopyright : © Microsoft Corporation. All rights reserved.
    OriginalFilename : lsass.exe

    #:6 [ati2evxx.exe]
    FilePath : C:\WINDOWS\system32\
    ProcessID : 944
    ThreadCreationTime : 17-10-2006 15:38:50
    BasePriority : Normal
    FileVersion : 6.14.10.4140
    ProductVersion : 6.14.10.4140
    ProductName : ATI External Event Utility for Windows
    CompanyName : ATI Technologies Inc.
    FileDescription : ATI External Event Utility EXE Module
    InternalName : ATI2EVXX.EXE
    LegalCopyright : Copyright © 1999-2006 ATI Technologies Inc.
    OriginalFilename : ATI2EVXX.EXE

    #:7 [svchost.exe]
    FilePath : C:\WINDOWS\system32\
    ProcessID : 964
    ThreadCreationTime : 17-10-2006 15:38:50
    BasePriority : Normal
    FileVersion : 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)
    ProductVersion : 5.1.2600.2180
    ProductName : Microsoft® Windows® Operating System
    CompanyName : Microsoft Corporation
    FileDescription : Generic Host Process for Win32 Services
    InternalName : svchost.exe
    LegalCopyright : © Microsoft Corporation. All rights reserved.
    OriginalFilename : svchost.exe

    #:8 [svchost.exe]
    FilePath : C:\WINDOWS\system32\
    ProcessID : 1032
    ThreadCreationTime : 17-10-2006 15:38:51
    BasePriority : Normal
    FileVersion : 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)
    ProductVersion : 5.1.2600.2180
    ProductName : Microsoft® Windows® Operating System
    CompanyName : Microsoft Corporation
    FileDescription : Generic Host Process for Win32 Services
    InternalName : svchost.exe
    LegalCopyright : © Microsoft Corporation. All rights reserved.
    OriginalFilename : svchost.exe

    #:9 [svchost.exe]
    FilePath : C:\WINDOWS\System32\
    ProcessID : 1136
    ThreadCreationTime : 17-10-2006 15:38:51
    BasePriority : Normal
    FileVersion : 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)
    ProductVersion : 5.1.2600.2180
    ProductName : Microsoft® Windows® Operating System
    CompanyName : Microsoft Corporation
    FileDescription : Generic Host Process for Win32 Services
    InternalName : svchost.exe
    LegalCopyright : © Microsoft Corporation. All rights reserved.
    OriginalFilename : svchost.exe

    #:10 [svchost.exe]
    FilePath : C:\WINDOWS\system32\
    ProcessID : 1196
    ThreadCreationTime : 17-10-2006 15:38:51
    BasePriority : Normal
    FileVersion : 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)
    ProductVersion : 5.1.2600.2180
    ProductName : Microsoft® Windows® Operating System
    CompanyName : Microsoft Corporation
    FileDescription : Generic Host Process for Win32 Services
    InternalName : svchost.exe
    LegalCopyright : © Microsoft Corporation. All rights reserved.
    OriginalFilename : svchost.exe

    #:11 [ati2evxx.exe]
    FilePath : C:\WINDOWS\system32\
    ProcessID : 1260
    ThreadCreationTime : 17-10-2006 15:38:52
    BasePriority : Normal
    FileVersion : 6.14.10.4140
    ProductVersion : 6.14.10.4140
    ProductName : ATI External Event Utility for Windows
    CompanyName : ATI Technologies Inc.
    FileDescription : ATI External Event Utility EXE Module
    InternalName : ATI2EVXX.EXE
    LegalCopyright : Copyright © 1999-2006 ATI Technologies Inc.
    OriginalFilename : ATI2EVXX.EXE

    #:12 [svchost.exe]
    FilePath : C:\WINDOWS\system32\
    ProcessID : 1364
    ThreadCreationTime : 17-10-2006 15:38:52
    BasePriority : Normal
    FileVersion : 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)
    ProductVersion : 5.1.2600.2180
    ProductName : Microsoft® Windows® Operating System
    CompanyName : Microsoft Corporation
    FileDescription : Generic Host Process for Win32 Services
    InternalName : svchost.exe
    LegalCopyright : © Microsoft Corporation. All rights reserved.
    OriginalFilename : svchost.exe

    #:13 [spoolsv.exe]
    FilePath : C:\WINDOWS\system32\
    ProcessID : 1564
    ThreadCreationTime : 17-10-2006 15:38:53
    BasePriority : Normal
    FileVersion : 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)
    ProductVersion : 5.1.2600.2180
    ProductName : Microsoft® Windows® Operating System
    CompanyName : Microsoft Corporation
    FileDescription : Spooler SubSystem App
    InternalName : spoolsv.exe
    LegalCopyright : © Microsoft Corporation. All rights reserved.
    OriginalFilename : spoolsv.exe

    #:14 [explorer.exe]
    FilePath : C:\WINDOWS\
    ProcessID : 1788
    ThreadCreationTime : 17-10-2006 15:38:55
    BasePriority : Normal
    FileVersion : 6.00.2900.2180 (xpsp_sp2_rtm.040803-2158)
    ProductVersion : 6.00.2900.2180
    ProductName : Système d'exploitation Microsoft® Windows®
    CompanyName : Microsoft Corporation
    FileDescription : Explorateur Windows
    InternalName : explorer
    LegalCopyright : © Microsoft Corporation. Tous droits réservés.
    OriginalFilename : EXPLORER.EXE

    #:15 [nvmixertray.exe]
    FilePath : C:\Program Files\NVIDIA Corporation\NvMixer\
    ProcessID : 1884
    ThreadCreationTime : 17-10-2006 15:38:58
    BasePriority : Normal

    #:16 [ashdisp.exe]
    FilePath : D:\ANTIVI~1\ALWILS~1\Avast4\
    ProcessID : 1900
    ThreadCreationTime : 17-10-2006 15:38:58
    BasePriority : Normal
    FileVersion : 5, 0, 0, 0
    ProductVersion : 5, 0, 0, 0
    ProductName : avast! Antivirus
    FileDescription : avast! service GUI component
    InternalName : aswDisp
    LegalCopyright : Copyright (c) 2006 ALWIL Software
    OriginalFilename : aswDisp.exe

    #:17 [daemon.exe]
    FilePath : D:\DAEMON Tools\
    ProcessID : 1916
    ThreadCreationTime : 17-10-2006 15:38:59
    BasePriority : Normal

    #:18 [cli.exe]
    FilePath : C:\Program Files\ATI Technologies\ATI.ACE\
    ProcessID : 1944
    ThreadCreationTime : 17-10-2006 15:38:59
    BasePriority : Normal

    #:19 [jusched.exe]
    FilePath : C:\Program Files\Java\jre1.5.0_08\bin\
    ProcessID : 1952
    ThreadCreationTime : 17-10-2006 15:39:00
    BasePriority : Normal

    #:20 [unlockerassistant.exe]
    FilePath : D:\programmes\Unlocker\
    ProcessID : 1960
    ThreadCreationTime : 17-10-2006 15:39:00
    BasePriority : Normal

    #:21 [avgas.exe]
    FilePath : D:\Antivirus\AVG Anti-Spyware 7.5\
    ProcessID : 1972
    ThreadCreationTime : 17-10-2006 15:39:00
    BasePriority : Normal
    FileVersion : 7, 5, 0, 50
    ProductVersion : 7, 5, 0, 50
    ProductName : AVG Anti-Spyware
    CompanyName : Anti-Malware Development a.s.
    FileDescription : AVG Anti-Spyware
    InternalName : AVG Anti-Spyware
    LegalCopyright : Copyright © 2006 Anti-Malware Development a.s.
    OriginalFilename : avgas.exe

    #:22 [ctfmon.exe]
    FilePath : C:\WINDOWS\system32\
    ProcessID : 1980
    ThreadCreationTime : 17-10-2006 15:39:00
    BasePriority : Normal
    FileVersion : 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)
    ProductVersion : 5.1.2600.2180
    ProductName : Microsoft® Windows® Operating System
    CompanyName : Microsoft Corporation
    FileDescription : CTF Loader
    InternalName : CTFMON
    LegalCopyright : © Microsoft Corporation. All rights reserved.
    OriginalFilename : CTFMON.EXE

    #:23 [teatimer.exe]
    FilePath : D:\Antivirus\Spybot - Search & Destroy\
    ProcessID : 252
    ThreadCreationTime : 17-10-2006 15:39:03
    BasePriority : Idle
    FileVersion : 1, 4, 0, 2
    ProductVersion : 1, 4, 0, 3
    ProductName : Spybot - Search & Destroy
    CompanyName : Safer Networking Limited
    FileDescription : System settings protector
    InternalName : TeaTimer
    LegalCopyright : © 2000-2005 Patrick M. Kolla / Safer Networking Limited. Alle Rechte vorbehalten.
    LegalTrademarks : "Spybot" und "Spybot - Search & Destroy" sind registrierte Warenzeichen.
    OriginalFilename : TeaTimer.exe
    Comments : Schützt Systemeinstellungen vor ungewollten Änderungen.

    #:24 [aswupdsv.exe]
    FilePath : D:\Antivirus\Alwil Software\Avast4\
    ProcessID : 288
    ThreadCreationTime : 17-10-2006 15:39:04
    BasePriority : Normal

    #:25 [ashserv.exe]
    FilePath : D:\Antivirus\Alwil Software\Avast4\
    ProcessID : 320
    ThreadCreationTime : 17-10-2006 15:39:04
    BasePriority : Normal
    FileVersion : 4, 7, 889, 0
    ProductVersion : 4, 7, 0, 0
    ProductName : avast! Antivirus
    FileDescription : avast! antivirus service
    InternalName : aswServ
    LegalCopyright : Copyright (c) 2006 ALWIL Software
    OriginalFilename : aswServ.exe

    #:26 [guard.exe]
    FilePath : D:\Antivirus\AVG Anti-Spyware 7.5\
    ProcessID : 412
    ThreadCreationTime : 17-10-2006 15:39:10
    BasePriority : Normal
    FileVersion : 7, 5, 0, 47
    ProductVersion : 7, 5, 0, 47
    ProductName : AVG Anti-Spyware
    CompanyName : Anti-Malware Development a.s.
    FileDescription : AVG Anti-Spyware guard
    InternalName : AVG Anti-Spyware guard
    LegalCopyright : Copyright © 2006 Anti-Malware Development a.s.
    OriginalFilename : guard.exe

    #:27 [mdm.exe]
    FilePath : C:\Program Files\Fichiers communs\Microsoft Shared\VS7DEBUG\
    ProcessID : 484
    ThreadCreationTime : 17-10-2006 15:39:11
    BasePriority : Normal
    FileVersion : 7.00.9466
    ProductVersion : 7.00.9466
    ProductName : Microsoft® Visual Studio .NET
    CompanyName : Microsoft Corporation
    FileDescription : Machine Debug Manager
    InternalName : mdm.exe
    LegalCopyright : © Microsoft Corporation. All rights reserved.
    OriginalFilename : mdm.exe

    #:28 [svchost.exe]
    FilePath : C:\WINDOWS\system32\
    ProcessID : 548
    ThreadCreationTime : 17-10-2006 15:39:14
    BasePriority : Normal
    FileVersion : 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)
    ProductVersion : 5.1.2600.2180
    ProductName : Microsoft® Windows® Operating System
    CompanyName : Microsoft Corporation
    FileDescription : Generic Host Process for Win32 Services
    InternalName : svchost.exe
    LegalCopyright : © Microsoft Corporation. All rights reserved.
    OriginalFilename : svchost.exe

    #:29 [wdfmgr.exe]
    FilePath : C:\WINDOWS\system32\
    ProcessID : 680
    ThreadCreationTime : 17-10-2006 15:39:15
    BasePriority : Normal
    FileVersion : 5.2.3790.1230 built by: dnsrv(bld4act)
    ProductVersion : 5.2.3790.1230
    ProductName : Microsoft® Windows® Operating System
    CompanyName : Microsoft Corporation
    FileDescription : Windows User Mode Driver Manager
    InternalName : WdfMgr
    LegalCopyright : © Microsoft Corporation. All rights reserved.
    OriginalFilename : WdfMgr.exe

    #:30 [alg.exe]
    FilePath : C:\WINDOWS\System32\
    ProcessID : 2764
    ThreadCreationTime : 17-10-2006 15:39:59
    BasePriority : Normal
    FileVersion : 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)
    ProductVersion : 5.1.2600.2180
    ProductName : Microsoft® Windows® Operating System
    CompanyName : Microsoft Corporation
    FileDescription : Application Layer Gateway Service
    InternalName : ALG.exe
    LegalCopyright : © Microsoft Corporation. All rights reserved.
    OriginalFilename : ALG.exe

    #:31 [cli.exe]
    FilePath : C:\Program Files\ATI Technologies\ATI.ACE\
    ProcessID : 4056
    ThreadCreationTime : 17-10-2006 15:40:22
    BasePriority : Normal

    #:32 [cli.exe]
    FilePath : C:\Program Files\ATI Technologies\ATI.ACE\
    ProcessID : 4064
    ThreadCreationTime : 17-10-2006 15:40:22
    BasePriority : Normal

    #:33 [wuauclt.exe]
    FilePath : C:\WINDOWS\system32\
    ProcessID : 2964
    ThreadCreationTime : 17-10-2006 16:11:34
    BasePriority : Normal
    FileVersion : 5.8.0.2469 built by: lab01_n(wmbla)
    ProductVersion : 5.8.0.2469
    ProductName : Système d'exploitation Microsoft® Windows®
    CompanyName : Microsoft Corporation
    FileDescription : Mises à jour automatiques
    InternalName : wuauclt.exe
    LegalCopyright : © Microsoft Corporation. Tous droits réservés.
    OriginalFilename : wuauclt.exe

    #:34 [wscntfy.exe]
    FilePath : C:\WINDOWS\system32\
    ProcessID : 2288
    ThreadCreationTime : 17-10-2006 16:22:01
    BasePriority : Normal
    FileVersion : 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)
    ProductVersion : 5.1.2600.2180
    ProductName : Microsoft® Windows® Operating System
    CompanyName : Microsoft Corporation
    FileDescription : Windows Security Center Notification App
    InternalName : wscntfy.exe
    LegalCopyright : © Microsoft Corporation. All rights reserved.
    OriginalFilename : wscntfy.exe

    #:35 [emule.exe]
    FilePath : D:\eMule\
    ProcessID : 3312
    ThreadCreationTime : 17-10-2006 17:37:51
    BasePriority : Normal
    FileVersion : 0.46.2 Unicode
    ProductVersion : 0.46.2 Unicode
    ProductName : eMule
    CompanyName : https://www.emule-project.net/home/perl/general.cgi?l=1
    FileDescription : eMule
    InternalName : emule.exe
    LegalCopyright : Copyright © 2002-2005 Merkur - read license.txt for more infos
    OriginalFilename : emule.exe

    #:36 [wmplayer.exe]
    FilePath : C:\Program Files\Windows Media Player\
    ProcessID : 1488
    ThreadCreationTime : 17-10-2006 17:53:38
    BasePriority : Normal
    FileVersion : 10.00.00.3802
    ProductVersion : 10.00.00.3802
    ProductName : Lecteur Windows Media Microsoft(R)
    CompanyName : Microsoft Corporation
    FileDescription : Lecteur Windows Media
    InternalName : WMPLAYER.EXE
    LegalCopyright : (C) Microsoft Corporation. Tous droits réservés.
    OriginalFilename : WMPLAYER.EXE

    #:37 [firefox.exe]
    FilePath : C:\Program Files\Mozilla Firefox 2 Beta 2\
    ProcessID : 652
    ThreadCreationTime : 17-10-2006 18:11:08
    BasePriority : Normal

    #:38 [ad-aware.exe]
    FilePath : D:\Antivirus\Ad-Aware SE Personal\
    ProcessID : 4080
    ThreadCreationTime : 17-10-2006 18:22:37
    BasePriority : Normal
    FileVersion : 6.2.0.236
    ProductVersion : SE 106
    ProductName : Lavasoft Ad-Aware SE
    CompanyName : Lavasoft Sweden
    FileDescription : Ad-Aware SE Core application
    InternalName : Ad-Aware.exe
    LegalCopyright : Copyright © Lavasoft AB Sweden
    OriginalFilename : Ad-Aware.exe
    Comments : All Rights Reserved

    Memory scan result:
    »»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»
    New critical objects: 0
    Objects found so far: 13

    Started registry scan
    »»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»

    Registry Scan result:
    »»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»
    New critical objects: 0
    Objects found so far: 13

    Started deep registry scan
    »»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»

    Deep registry scan result:
    »»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»
    New critical objects: 0
    Objects found so far: 13

    Started Tracking Cookie scan
    »»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»

    Tracking Cookie Object Recognized!
    Type : IECache Entry
    Data : mad@weborama[2].txt
    TAC Rating : 3
    Category : Data Miner
    Comment : Hits:2
    Value : Cookie:mad@weborama.fr/
    Expires : 15-10-2008 23:24:30
    LastSync : Hits:2
    UseCount : 0
    Hits : 2

    Tracking cookie scan result:
    »»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»
    New critical objects: 1
    Objects found so far: 14

    Deep scanning and examining files (C:)
    »»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»

    Disk Scan Result for C:\
    »»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»
    New critical objects: 0
    Objects found so far: 14

    Deep scanning and examining files (D:)
    »»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»

    Disk Scan Result for D:\
    »»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»
    New critical objects: 0
    Objects found so far: 14

    Scanning Hosts file......
    Hosts file location:"C:\WINDOWS\system32\drivers\etc\hosts".
    »»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»

    Hosts file scan result:
    »»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»
    1 entries scanned.
    New critical objects:0
    Objects found so far: 14

    Performing conditional scans...
    »»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»

    Conditional scan result:
    »»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»
    New critical objects: 0
    Objects found so far: 14

    20:37:15 Scan Complete

    Summary Of This Scan
    »»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»
    Total scanning time:00:11:38.578
    Objects scanned:259788
    Objects identified:1
    Objects ignored:0
    New critical objects:1
    0
  7. MAD
     
    POUR SPYBOT:

    --- Search result list ---
    Félicitations!: Aucun mouchard n'a été trouvé. ()

    --- Spybot - Search & Destroy version: 1.4 (build: 20050523) ---

    2005-05-31 blindman.exe (1.0.0.1)
    2005-05-31 SpybotSD.exe (1.4.0.3)
    2005-05-31 TeaTimer.exe (1.4.0.2)
    2006-09-10 unins000.exe (51.41.0.0)
    2005-05-31 Update.exe (1.4.0.0)
    2006-02-06 advcheck.dll (1.0.2.0)
    2005-05-31 aports.dll (2.1.0.0)
    2005-05-31 borlndmm.dll (7.0.4.453)
    2005-05-31 delphimm.dll (7.0.4.453)
    2005-05-31 SDHelper.dll (1.4.0.0)
    2006-02-20 Tools.dll (2.0.0.2)
    2005-05-31 UnzDll.dll (1.73.1.1)
    2005-05-31 ZipDll.dll (1.73.2.0)
    2006-10-13 Includes\Cookies.sbi (*)
    2006-10-13 Includes\Dialer.sbi (*)
    2006-10-13 Includes\DialerC.sbi (*)
    2006-10-13 Includes\Hijackers.sbi (*)
    2006-10-13 Includes\HijackersC.sbi (*)
    2006-10-13 Includes\Keyloggers.sbi (*)
    2006-10-13 Includes\KeyloggersC.sbi (*)
    2004-11-29 Includes\LSP.sbi (*)
    2006-10-13 Includes\Malware.sbi (*)
    2006-10-13 Includes\MalwareC.sbi (*)
    2006-10-13 Includes\PUPS.sbi (*)
    2006-10-13 Includes\PUPSC.sbi (*)
    2006-10-13 Includes\Revision.sbi (*)
    2006-10-13 Includes\Security.sbi (*)
    2006-10-13 Includes\SecurityC.sbi (*)
    2006-10-13 Includes\Spybots.sbi (*)
    2006-10-13 Includes\SpybotsC.sbi (*)
    2005-02-17 Includes\Tracks.uti
    2006-10-13 Includes\Trojans.sbi (*)
    2006-10-13 Includes\TrojansC.sbi (*)

    --- System information ---
    Windows XP (Build: 2600) Service Pack 2

    --- Startup entries list ---
    Located: HK_LM:Run, !AVG Anti-Spyware
    command: "D:\Antivirus\AVG Anti-Spyware 7.5\avgas.exe" /minimized
    file: D:\Antivirus\AVG Anti-Spyware 7.5\avgas.exe
    size: 6266880
    MD5: 01d90ae5dccbce0c7b52874fec35a608

    Located: HK_LM:Run, ATICCC
    command: "C:\Program Files\ATI Technologies\ATI.ACE\CLIStart.exe"
    file: C:\Program Files\ATI Technologies\ATI.ACE\CLIStart.exe
    size: 90112
    MD5: 0dc2e1b6951bd2170bc47f0eebf629b3

    Located: HK_LM:Run, avast!
    command: D:\ANTIVI~1\ALWILS~1\Avast4\ashDisp.exe
    file: D:\ANTIVI~1\ALWILS~1\Avast4\ashDisp.exe
    size: 108160
    MD5: 264c095d36aa973d9c64909124d0ba60

    Located: HK_LM:Run, DAEMON Tools
    command: "D:\DAEMON Tools\daemon.exe" -lang 1033
    file: D:\DAEMON Tools\daemon.exe
    size: 133016
    MD5: d050311a72d10d4d2cffacf5728fc978

    Located: HK_LM:Run, NVMixerTray
    command: "C:\Program Files\NVIDIA Corporation\NvMixer\NVMixerTray.exe"
    file: C:\Program Files\NVIDIA Corporation\NvMixer\NVMixerTray.exe
    size: 131072
    MD5: 37fff683aee7f09f5f7087138192bf02

    Located: HK_LM:Run, SunJavaUpdateSched
    command: "C:\Program Files\Java\jre1.5.0_08\bin\jusched.exe"
    file: C:\Program Files\Java\jre1.5.0_08\bin\jusched.exe
    size: 49263
    MD5: ffb2d7833002457d3801aa4422ffb44f

    Located: HK_LM:Run, UnlockerAssistant
    command: "D:\programmes\Unlocker\UnlockerAssistant.exe"
    file: D:\programmes\Unlocker\UnlockerAssistant.exe
    size: 6656
    MD5: c86730e122567294cfc35a36eb01111e

    Located: HK_CU:Run, CTFMON.EXE
    command: C:\WINDOWS\system32\ctfmon.exe
    file: C:\WINDOWS\system32\ctfmon.exe
    size: 15360
    MD5: 64e41e8fee655b03e3f19ded21ba5118

    Located: HK_CU:Run, MsnMsgr
    command: "C:\Program Files\MSN Messenger\MsnMsgr.Exe" /background
    file: C:\Program Files\MSN Messenger\MsnMsgr.Exe
    size: 5354792
    MD5: 6b3c274963543b07951ca0e23a9f1fa3

    Located: HK_CU:Run, SpybotSD TeaTimer
    command: D:\Antivirus\Spybot - Search & Destroy\TeaTimer.exe
    file: D:\Antivirus\Spybot - Search & Destroy\TeaTimer.exe
    size: 1415824
    MD5: 70496eee0ddbe485f658693826f44d38

    Located: Démarrage (tous utilisateurs), Lancement rapide d'Adobe Reader.lnk
    command: D:\programmes\Adobe\Acrobat 7.0\Reader\reader_sl.exe
    file: D:\programmes\Adobe\Acrobat 7.0\Reader\reader_sl.exe
    size: 29696
    MD5: 43362b96870ce8649f4f2ec893da93f0

    Located: System.ini, AtiExtEvent
    command: Ati2evxx.dll
    file: Ati2evxx.dll

    Located: System.ini, crypt32chain
    command: crypt32.dll
    file: crypt32.dll

    Located: System.ini, cryptnet
    command: cryptnet.dll
    file: cryptnet.dll

    Located: System.ini, cscdll
    command: cscdll.dll
    file: cscdll.dll

    Located: System.ini, ScCertProp
    command: wlnotify.dll
    file: wlnotify.dll

    Located: System.ini, Schedule
    command: wlnotify.dll
    file: wlnotify.dll

    Located: System.ini, sclgntfy
    command: sclgntfy.dll
    file: sclgntfy.dll

    Located: System.ini, SensLogn
    command: WlNotify.dll
    file: WlNotify.dll

    Located: System.ini, termsrv
    command: wlnotify.dll
    file: wlnotify.dll

    Located: System.ini, wlballoon
    command: wlnotify.dll
    file: wlnotify.dll

    --- Browser helper object list ---

    --- ActiveX list ---
    {CAFEEFAC-0015-0000-0008-ABCDEFFEDCBA} (Java Runtime Environment 1.5.0)
    DPF name: Java Runtime Environment 1.5.0
    CLSID name: Java Plug-in 1.5.0_08
    Installer:
    Codebase: http://java.sun.com/update/1.5.0/jinstall-1_5_0_08-windows-i586.cab
    Path: C:\Program Files\Java\jre1.5.0_08\bin\
    Long name: NPJPI150_08.dll
    Short name: NPJPI1~1.DLL
    Date (created): 26/07/2006 03:03:18
    Date (last access): 18/09/2006 18:59:36
    Date (last write): 26/07/2006 03:17:56
    Filesize: 69746
    Attributes: archive
    MD5: C10D603F2BD3B0A2EAC4EC5B743430D3
    CRC32: 1EB99B36
    Version: 5.0.80.3

    --- Process list ---
    PID: 0 ( 0) [System]
    PID: 636 ( 4) \SystemRoot\System32\smss.exe
    PID: 688 ( 636) \??\C:\WINDOWS\system32\csrss.exe
    PID: 728 ( 636) \??\C:\WINDOWS\system32\winlogon.exe
    PID: 776 ( 728) C:\WINDOWS\system32\services.exe
    size: 108544
    MD5: 63DCDE1A0D86EEB8924D6738FF616EAD
    PID: 788 ( 728) C:\WINDOWS\system32\lsass.exe
    size: 13312
    MD5: 259AF82A0932EEA4F316F92DB94707B6
    PID: 944 ( 776) C:\WINDOWS\system32\Ati2evxx.exe
    size: 401408
    MD5: 688E49AFEF3A07FCA943250D6A9729AA
    PID: 964 ( 776) C:\WINDOWS\system32\svchost.exe
    size: 14336
    MD5: 2979B03D5382A602623C0535B16AB9C0
    PID: 1032 ( 776) C:\WINDOWS\system32\svchost.exe
    size: 14336
    MD5: 2979B03D5382A602623C0535B16AB9C0
    PID: 1136 ( 776) C:\WINDOWS\System32\svchost.exe
    size: 14336
    MD5: 2979B03D5382A602623C0535B16AB9C0
    PID: 1196 ( 776) C:\WINDOWS\system32\svchost.exe
    size: 14336
    MD5: 2979B03D5382A602623C0535B16AB9C0
    PID: 1260 ( 728) C:\WINDOWS\system32\Ati2evxx.exe
    size: 401408
    MD5: 688E49AFEF3A07FCA943250D6A9729AA
    PID: 1364 ( 776) C:\WINDOWS\system32\svchost.exe
    size: 14336
    MD5: 2979B03D5382A602623C0535B16AB9C0
    PID: 1564 ( 776) C:\WINDOWS\system32\spoolsv.exe
    size: 57856
    MD5: DF9FC62AD51CB082B0AE371919A232CB
    PID: 1788 (1720) C:\WINDOWS\Explorer.EXE
    size: 1036288
    MD5: 2A7BD330924252A2FD80344FC949BB72
    PID: 1884 (1788) C:\Program Files\NVIDIA Corporation\NvMixer\NVMixerTray.exe
    size: 131072
    MD5: 37FFF683AEE7F09F5F7087138192BF02
    PID: 1900 (1788) D:\ANTIVI~1\ALWILS~1\Avast4\ashDisp.exe
    size: 108160
    MD5: 264C095D36AA973D9C64909124D0BA60
    PID: 1916 (1788) D:\DAEMON Tools\daemon.exe
    size: 133016
    MD5: D050311A72D10D4D2CFFACF5728FC978
    PID: 1944 (1928) C:\Program Files\ATI Technologies\ATI.ACE\CLI.EXE
    size: 45056
    MD5: 64C4C17BF6A40FF1CD21205E6FD415B8
    PID: 1952 (1788) C:\Program Files\Java\jre1.5.0_08\bin\jusched.exe
    size: 49263
    MD5: FFB2D7833002457D3801AA4422FFB44F
    PID: 1960 (1788) D:\programmes\Unlocker\UnlockerAssistant.exe
    size: 6656
    MD5: C86730E122567294CFC35A36EB01111E
    PID: 1972 (1788) D:\Antivirus\AVG Anti-Spyware 7.5\avgas.exe
    size: 6266880
    MD5: 01D90AE5DCCBCE0C7B52874FEC35A608
    PID: 1980 (1788) C:\WINDOWS\system32\ctfmon.exe
    size: 15360
    MD5: 64E41E8FEE655B03E3F19DED21BA5118
    PID: 252 (1788) D:\Antivirus\Spybot - Search & Destroy\TeaTimer.exe
    size: 1415824
    MD5: 70496EEE0DDBE485F658693826F44D38
    PID: 288 ( 776) D:\Antivirus\Alwil Software\Avast4\aswUpdSv.exe
    size: 59008
    MD5: DC995DA2D258C0590C3AE07EC68BFEE6
    PID: 320 ( 776) D:\Antivirus\Alwil Software\Avast4\ashServ.exe
    size: 108160
    MD5: 1CA6D8776D4F615E7861E35221582AE0
    PID: 412 ( 776) D:\Antivirus\AVG Anti-Spyware 7.5\guard.exe
    size: 204800
    MD5: E8FBDCC8D618D1BB84B828F247A6244B
    PID: 484 ( 776) C:\Program Files\Fichiers communs\Microsoft Shared\VS7DEBUG\MDM.EXE
    size: 322120
    MD5: 11F714F85530A2BD134074DC30E99FCA
    PID: 548 ( 776) C:\WINDOWS\system32\svchost.exe
    size: 14336
    MD5: 2979B03D5382A602623C0535B16AB9C0
    PID: 680 ( 776) C:\WINDOWS\system32\wdfmgr.exe
    size: 38912
    MD5: AB0A7CA90D9E3D6A193905DC1715DED0
    PID: 2764 ( 776) C:\WINDOWS\System32\alg.exe
    size: 44544
    MD5: B43CC0F07752D456038CD0268E4D84E9
    PID: 4056 (1944) C:\Program Files\ATI Technologies\ATI.ACE\cli.exe
    size: 45056
    MD5: 64C4C17BF6A40FF1CD21205E6FD415B8
    PID: 4064 (1944) C:\Program Files\ATI Technologies\ATI.ACE\cli.exe
    size: 45056
    MD5: 64C4C17BF6A40FF1CD21205E6FD415B8
    PID: 2964 (1136) C:\WINDOWS\system32\wuauclt.exe
    size: 125720
    MD5: 6CC08152ED8681BC176BE1B0F3C0E908
    PID: 2288 (1136) C:\WINDOWS\system32\wscntfy.exe
    size: 13824
    MD5: 8558905BA81F6EFAAF9667139BB117DD
    PID: 1488 (1788) C:\Program Files\Windows Media Player\wmplayer.exe
    size: 73728
    MD5: 50D89B28FFAA6E57D65D140757E26B7E
    PID: 652 ( 888) C:\Program Files\Mozilla Firefox 2 Beta 2\firefox.exe
    size: 7604331
    MD5: CB49C8AE9B44535D2B6FCDE74C589AC9
    PID: 2572 (1788) D:\Antivirus\Spybot - Search & Destroy\SpybotSD.exe
    size: 4393096
    MD5: 09CA174A605B480318731E691DC98539
    PID: 4 ( 0) System

    --- Browser start & search pages list ---
    Spybot - Search & Destroy browser pages report, 17/10/2006 20:49:33

    HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main\Local Page
    C:\WINDOWS\system32\blank.htm
    HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main\Search Page
    http://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
    HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main\Start Page
    http://www.microsoft.com/isapi/redir.dll?prd=ie&pver=6&ar=msnhome
    HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Main\Local Page
    %SystemRoot%\system32\blank.htm
    HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Main\Search Page
    http://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
    HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Main\Start Page
    http://www.microsoft.com/isapi/redir.dll?prd={SUB_PRD}&clcid={SUB_CLSID}&pver={SUB_PVER}&ar=home
    HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Main\Default_Page_URL
    http://www.microsoft.com/isapi/redir.dll?prd=ie&pver=6&ar=msnhome
    HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Main\Default_Search_URL
    http://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
    HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Search\SearchAssistant
    https://www.bing.com/?toHttps=1&redig=8F3F334EA60E4B1CB4D040DCFE393A89{SUB_RFC1766}/srchasst/srchasst.htm
    HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Search\CustomizeSearch
    https://www.bing.com/?toHttps=1&redig=8F3F334EA60E4B1CB4D040DCFE393A89{SUB_RFC1766}/srchasst/srchcust.htm

    --- Winsock Layered Service Provider list ---

    --- Uninstall list ---
    ABC (remove only) (ABC)
    uninstall cmd: D:\programmes\ABC\Uninstall.exe

    Ad-Aware SE Personal 1.06 (Ad-Aware SE Personal)
    uninstall cmd: D:\ANTIVI~1\AD-AWA~1\UNWISE.EXE D:\ANTIVI~1\AD-AWA~1\INSTALL.LOG
    publisher: Lavasoft
    help link: https://www.adaware.com/

    (AddressBook)

    Adobe Shockwave Player 10.1.4.20 (Adobe Shockwave Player)
    uninstall cmd: C:\WINDOWS\system32\Macromed\SHOCKW~1\UNWISE.EXE C:\WINDOWS\system32\Macromed\SHOCKW~1\Install.log
    publisher: Adobe Systems, Inc.
    help link: https://helpx.adobe.com/shockwave.html

    ATI - Software Uninstall Utility 6.14.10.1014 (All ATI Software)
    install location: C:\Program Files\ATI Technologies\UninstallAll
    uninstall cmd: C:\Program Files\ATI Technologies\UninstallAll\AtiCimUn.exe

    ATI Display Driver 8.282-060802a-035179C-ATI (ATI Display Driver)
    uninstall cmd: rundll32 C:\WINDOWS\system32\atiiiexx.dll,_InfEngUnInstallINFFile_RunDLL@16 -force_restart -flags:0x2010001 -inf_class:DISPLAY -clean

    avast! Antivirus 4.7 (avast!)
    version (major): 4
    version (minor): 7
    install location: D:\ANTIVI~1\ALWILS~1\Avast4
    install source: D:\ANTIVI~1\ALWILS~1\Avast4\setup
    uninstall cmd: rundll32 D:\ANTIVI~1\ALWILS~1\Avast4\Setup\setiface.dll,RunSetup
    publisher: Alwil Software
    help link: https://www.avast.com/fr-fr/index

    AVG Anti-Spyware 7.5 (AVGAntiSpyware75)
    install location: D:\Antivirus\AVG Anti-Spyware 7.5
    uninstall cmd: D:\Antivirus\AVG Anti-Spyware 7.5\Uninstall.exe
    publisher: Grisoft Ltd.
    help link: https://www.avg.com/fr-fr/homepage

    Baldur's Gate (Baldur's Gate)
    uninstall cmd: C:\WINDOWS\IsUn040c.exe -fd:\jeux\BG\Uninst.isu

    (Branding)

    CCleaner (remove only) (CCleaner)
    uninstall cmd: "D:\Antivirus\CCleaner\uninst.exe"

    (Connection Manager)

    (DirectAnimation)

    (DirectDrawEx)

    (DXM_Runtime)

    eMule (eMule)
    uninstall cmd: "D:\eMule\Uninstall.exe"

    EVEREST Home Edition v2.20 2.20 (EVEREST Home Edition_is1)
    install location: D:\programmes\EVEREST Home Edition\
    uninstall cmd: "D:\programmes\EVEREST Home Edition\unins000.exe"
    publisher: Lavalys Inc
    help link: http://www.lavalys.com

    (Fontcore)

    HijackThis 1.99.1 1.99.1 (HijackThis)
    uninstall cmd: D:\Mes fichiers\telechargement\Mozilla\HijackThis.exe /uninstall
    publisher: Soeperman Enterprises Ltd.

    (ICW)

    (IE40)

    (IE4Data)

    (IE5BAKEX)

    (IEData)

    JCreator LE 3.00 (JCreator LE_is1)
    uninstall cmd: "D:\Programmes\Xinox Software\JCreatorV3 LE\unins000.exe"
    publisher: Xinox Software
    help link: http://www.jcreator.com

    K-Lite Codec Pack 2.75 Full 2.75 (KLiteCodecPack_is1)
    install location: D:\Codecs\K-Lite Codec Pack\
    uninstall cmd: "D:\Codecs\K-Lite Codec Pack\unins000.exe"

    Media Player Classic fr 6.4.9.0 (Media Player Classic)
    install location: D:\lecteur divX\Media Player Classic
    uninstall cmd: "D:\lecteur divX\Media Player Classic\uninstall.exe"

    Messenger Plus! Live 4.01 (build 240) (Messenger Plus! Live)
    install location: C:\Program Files\Messenger Plus! Live
    uninstall cmd: "C:\Program Files\Messenger Plus! Live\Uninstall.exe"
    publisher: Patchou

    (MobileOptionPack)

    Mozilla Firefox (2.0) 2.0 (fr) (Mozilla Firefox (2.0))
    install location: C:\PROGRA~1\MOZILL~1
    uninstall cmd: C:\Program Files\Mozilla Firefox 2 Beta 2\uninstall\uninst.exe
    publisher: Mozilla

    (MPlayer2)

    (NetMeeting)

    NVIDIA Drivers (NVIDIA Drivers)
    uninstall cmd: C:\WINDOWS\system32\NVUNINST.EXE UninstallGUI

    (OutlookExpress)

    (PCHealth)
    uninstall cmd: rundll32.exe setupapi.dll,InstallHinfSection DefaultUninstall 132 C:\WINDOWS\INF\PCHealth.inf

    (SchedulingAgent)

    (Shockwave)

    Adobe Flash Player 9 ActiveX 9 (ShockwaveFlash)
    uninstall cmd: C:\WINDOWS\system32\Macromed\Flash\UninstFl.exe -q
    publisher: Adobe Systems
    help link: https://helpx.adobe.com/flash-player.html

    Spybot - Search & Destroy 1.4 1.4 (Spybot - Search & Destroy_is1)
    install location: D:\Antivirus\Spybot - Search & Destroy\
    uninstall cmd: "D:\Antivirus\Spybot - Search & Destroy\unins000.exe"
    publisher: Safer Networking Limited

    Unlocker 1.8.4 1.8.4 (Unlocker)
    uninstall cmd: D:\programmes\Unlocker\uninst.exe
    publisher: Cedrick Collomb

    Windows Media Format Runtime (Windows Media Format Runtime)
    uninstall cmd: "C:\Program Files\Windows Media Player\wmsetsdk.exe" /UninstallAll

    Lecteur Windows Media 10 (Windows Media Player)
    uninstall cmd: "C:\Program Files\Windows Media Player\Setup_wm.exe" /Uninstall

    Archiveur WinRAR (WinRAR archiver)
    uninstall cmd: D:\WinRAR\uninstall.exe

    The Godfather™ The Game ({1D2CF076-A63F-41A5-00A1-5924FADFAD9D})
    uninstall cmd: D:\Jeux\Electronic Arts\The Godfather The Game\EAUninstall.exe

    J2SE Runtime Environment 5.0 Update 8 1.5.0.80 ({3248F0A8-6813-11D6-A77B-00B0D0150080})
    version: 17104896
    version (major): 1
    version (minor): 5
    estimated size: 156485
    install date: 20060918
    install source: C:\Program Files\Fichiers communs\Java\Update\Base Images\jdk1.5.0.b64\patch-jdk1.5.0_08.b03\
    uninstall cmd: MsiExec.exe /I{3248F0A8-6813-11D6-A77B-00B0D0150080}
    publisher: Sun Microsystems, Inc.
    contact: https://www.java.com/en/
    help link: https://www.java.com/en/
    readme: C:\Program Files\Java\jre1.5.0_08\README.txt

    J2SE Development Kit 5.0 Update 8 1.5.0.80 ({32A3A4F4-B792-11D6-A78A-00B0D0150080})
    version: 17104896
    version (major): 1
    version (minor): 5
    estimated size: 285833
    install date: 20060918
    install source: http://jdl.sun.com/webapps/download/GetFile/1.5.0_08-b03/windows-i586//
    uninstall cmd: MsiExec.exe /I{32A3A4F4-B792-11D6-A78A-00B0D0150080}
    publisher: Sun Microsystems, Inc.
    contact: https://www.oracle.com/java/technologies/
    help link: http://developer.java.sun.com/developer/support
    readme: D:\Programmes\Java\jdk1.5.0_08\README.html

    WebFldrs XP 9.50.7523 ({350C940c-3D7C-4EE8-BAA9-00BCB3D54227})
    version: 154279267
    version (major): 9
    version (minor): 50
    estimated size: 2608
    install date: 20060910
    install source: C:\WINDOWS\system32\
    publisher: Microsoft Corporation
    help link: https://www.microsoft.com/en-us/windows/

    Titan Quest 1.00.0000 ({412B69AF-C352-4F6F-A318-B92B3CB9ACC6})
    version: 16777216
    install date: 20060910
    install location: D:\Jeux\THQ\Titan Quest
    install source: L:\
    uninstall cmd: RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\PROFES~1\RunTime\11\50\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{412B69AF-C352-4F6F-A318-B92B3CB9ACC6}\setup.exe" -l0x40c -removeonly
    publisher: Iron Lore
    contact: THQ Customer Support
    help link: http://info.thq.com/support/
    help telephone: 818-880-0456

    Baldur's Gate(TM) II - Throne of Bhaal (TM) ({43D4C77E-4339-11D5-96E7-0050BA84F5F7})
    uninstall cmd: RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{43D4C77E-4339-11D5-96E7-0050BA84F5F7}\Setup.exe"

    ATI Catalyst Control Center 1.2.2405.30455 ({7989FC0E-85EC-4C8D-AD5C-3FD1398261A7})
    version: 16910693
    version (major): 1
    version (minor): 2
    estimated size: 67424
    install date: 20060910
    install source: C:\ATI\SUPPORT\6-8_xp-2k_dd_ccc_wdm_enu_35179\ACE\
    uninstall cmd: MsiExec.exe /I{7989FC0E-85EC-4C8D-AD5C-3FD1398261A7}
    comments: Free technical support for ATI products, available 24 hours a day through our customer care webform.
    contact: Customer Support Department
    help link: http://www.ati.com/support/
    help telephone: 1-877-284-1564

    MyDSC2 1.00.000 ({83d96ed0-98aa-4515-8ddc-816f3efdd104})
    version: 16777216
    install location: C:\WINDOWS\Twain_32\MyDSC2
    uninstall cmd: RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\PROFES~1\RunTime\0701\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{83D96ED0-98AA-4515-8DDC-816F3EFDD104}\Setup.exe" -l0x9

    Microsoft Office Professional Edition 2003 11.0.5614.0 ({9011040C-6000-11D3-8CFE-0150048383C9})
    version: 184554990
    version (major): 11
    estimated size: 693345
    install date: 20060912
    install location: D:\programmes\Microsoft office\
    install source: D:\MSOCache\All Users\9000040c-6000-11D3-8CFE-0150048383C9\
    uninstall cmd: MsiExec.exe /I{9011040C-6000-11D3-8CFE-0150048383C9}
    publisher: Microsoft Corporation
    help link: https://support.microsoft.com/en-us
    readme: D:\programmes\Microsoft office\OFFICE11\1036\OFREADME.HTM

    Adobe Reader 7.0.8 - Français 7.0.8 ({AC76BA86-7AD7-1036-7B44-A70800000002})
    version: 117440520
    version (major): 7
    estimated size: 78532
    install date: 20060929
    install location: D:\Programmes\Adobe\Acrobat 7.0\Reader\
    install source: C:\Program Files\Adobe\Acrobat 7.0\Setup Files\RdrBig708\FRA\
    uninstall cmd: MsiExec.exe /I{AC76BA86-7AD7-1036-7B44-A70800000002}
    publisher: Adobe Systems Incorporated
    comments:
    contact:
    help link: https://helpx.adobe.com/support.html
    help telephone:
    readme: D:\Programmes\Adobe\Acrobat 7.0\Reader\Readme.htm

    Microsoft .NET Framework 1.1 1.1.4322 ({CB2F7EDD-9D1F-43C1-90FC-4F52EAE172A1})
    version: 16847074
    version (major): 1
    version (minor): 1
    estimated size: 37015
    install date: 20060910
    install source: C:\DOCUME~1\MAD\LOCALS~1\Temp\IXP000.TMP\
    uninstall cmd: MsiExec.exe /X{CB2F7EDD-9D1F-43C1-90FC-4F52EAE172A1}
    publisher: Microsoft
    readme: file://C:\WINDOWS\Microsoft.NET\Framework\v1.1.4322\1033\RepairRedist.htm

    NvMixer ({D7A6C517-11F2-419F-B5BB-27772B939698})
    uninstall cmd: RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{D7A6C517-11F2-419F-B5BB-27772B939698}\Setup.exe" -uninstall

    Windows Live Messenger 8.0.0812.00 ({E22885AB-B503-46E2-8437-73BBC6BC5487})
    version: 134218540
    version (major): 8
    estimated size: 28317
    install date: 20061016
    install source: C:\DOCUME~1\MAD\LOCALS~1\Temp\IXP000.TMP\
    uninstall cmd: MsiExec.exe /I{E22885AB-B503-46E2-8437-73BBC6BC5487}
    publisher: Microsoft Corporation

    --- System Services ---
    Service (registry key): .NET CLR Data
    Start: 0
    Type: 0
    Error Control: 0

    Service (registry key): .NET CLR Networking
    Start: 0
    Type: 0
    Error Control: 0

    Service (registry key): .NETFramework
    Start: 0
    Type: 0
    Error Control: 0

    Service (registry key): a347bus
    Image path: system32\DRIVERS\a347bus.sys
    Start: 0
    Type: 1
    Error Control: 1

    Service (registry key): a347scsi
    Image path: System32\Drivers\a347scsi.sys
    Start: 0
    Type: 1
    Error Control: 0

    Service (registry key): Aavmker4
    Display name: avast! Asynchronous Virus Monitor
    Start: 1
    Type: 1
    Error Control: 1

    Service (registry key): Abiosdsk
    Start: 4
    Type: 1
    Error Control: 0

    Service (registry key): abp480n5
    Start: 4
    Type: 1
    Error Control: 1

    Service (registry key): ACPI
    Display name: Pilote ACPI Microsoft
    Image path: system32\DRIVERS\ACPI.sys
    Image size: 188672
    Image MD5: 0BD94FBFC14EA3606CD6CA4C0255BAA3
    Start: 0
    Type: 1
    Error Control: 1

    Service (registry key): ACPIEC
    Start: 4
    Type: 1
    Error Control: 1

    Service (registry key): adpu160m
    Start: 4
    Type: 1
    Error Control: 1

    Service (registry key): aec
    Display name: Suppresseur d'écho acoustique (Noyau Microsoft)
    Image path: system32\drivers\aec.sys
    Image size: 142464
    Image MD5: 841F385C6CFAF66B58FBD898722BB4F0
    Start: 3
    Type: 1
    Error Control: 1

    Service (registry key): AFD
    Display name: AFD
    Description: Environnement de prise en charge de réseau AFD
    Image path: \SystemRoot\System32\drivers\afd.sys
    Start: 1
    Type: 1
    Error Control: 1

    Service (registry key): Aha154x
    Start: 4
    Type: 1
    Error Control: 1

    Service (registry key): aic78u2
    Start: 4
    Type: 1
    Error Control: 1

    Service (registry key): aic78xx
    Start: 4
    Type: 1
    Error Control: 1

    Service (registry key): Alerter
    Display name: Avertissement
    Description: Informe les utilisateurs et les ordinateurs sélectionnés des alertes administratives. Si ce service est arrêté, les programmes qui utilisent les alertes administratives ne les recevront pas. Si ce service est désactivé, les services qui en dépendent ne pourront pas démarrer.
    Object name: NT AUTHORITY\LocalService
    Image path: %SystemRoot%\system32\svchost.exe -k LocalService
    Image size: 14336
    Image MD5: 2979B03D5382A602623C0535B16AB9C0
    Start: 4
    Type: 32
    Error Control: 1
    Depends On services: LanmanWorkstation

    Service (registry key): ALG
    Display name: Service de la passerelle de la couche Application
    Description: Offre la prise en charge des plug-ins de protocoles tiers pour le Partage de connexion Internet et le Pare-feu Windows.
    Object name: NT AUTHORITY\LocalService
    Image path: %SystemRoot%\System32\alg.exe
    Image size: 44544
    Image MD5: B43CC0F07752D456038CD0268E4D84E9
    Start: 3
    Type: 16
    Error Control: 1

    Service (registry key): AliIde
    Start: 4
    Type: 1
    Error Control: 1

    Service (registry key): amsint
    Start: 4
    Type: 1
    Error Control: 1

    Service (registry key): AppMgmt
    Display name: Gestion d'applications
    Description: Fournit des services d'installation de logiciels tels que Attribuer, Publier et Supprimer.
    Object name: LocalSystem
    Image path: %SystemRoot%\system32\svchost.exe -k netsvcs
    Image size: 14336
    Image MD5: 2979B03D5382A602623C0535B16AB9C0
    Start: 3
    Type: 32
    Error Control: 1

    Service (registry key): asc
    Start: 4
    Type: 1
    Error Control: 1

    Service (registry key): asc3350p
    Start: 4
    Type: 1
    Error Control: 1

    Service (registry key): asc3550
    Start: 4
    Type: 1
    Error Control: 1

    Service (registry key): ASP.NET
    Start: 0
    Type: 0
    Error Control: 0

    Service (registry key): ASP.NET_1.1.4322
    Start: 0
    Type: 0
    Error Control: 0

    Service (registry key): aspnet_state
    Display name: ASP.NET State Service
    Description: Provides support for out-of-process session states for ASP.NET. If this service is stopped, out-of-process requests will not be processed. If this service is disabled, any services that explicitly depend on it will fail to start.
    Object name: NT AUTHORITY\NetworkService
    Image path: %SystemRoot%\Microsoft.NET\Framework\v1.1.4322\aspnet_state.exe
    Image size: 32768
    Image MD5: A986FCFDAC587E68478DB51547B90800
    Start: 3
    Type: 16
    Error Control: 1

    Service (registry key): aswMon2
    Display name: avast! Standard Shield Support
    Start: 2
    Type: 2
    Error Control: 1

    Service (registry key): aswRdr
    Display name: aswRdr
    Start: 3
    Type: 1
    Error Control: 1
    Depends On services: tcpip

    Service (registry key): aswTdi
    Display name: avast! Network Shield Support
    Start: 1
    Type: 1
    Error Control: 1
    Depends On services: tcpip

    Service (registry key): aswUpdSv
    Display name: avast! iAVS4 Control Service
    Description: Fournit la mise à jour automatique pour l'antivirus avast!.
    Object name: LocalSystem
    Image path: "D:\Antivirus\Alwil Software\Avast4\aswUpdSv.exe"
    Image size: 59008
    Image MD5: DC995DA2D258C0590C3AE07EC68BFEE6
    Start: 2
    Type: 272
    Error Control: 1

    Service (registry key): AsyncMac
    Display name: Pilote de média asynchrone RAS
    Description: Pilote de média asynchrone RAS
    Image path: system32\DRIVERS\asyncmac.sys
    Image size: 14336
    Image MD5: 02000ABF34AF4C218C35D257024807D6
    Start: 3
    Type: 1
    Error Control: 1

    Service (registry key): atapi
    Display name: Contrôleur de disque dur IDE/ESDI standard
    Image path: system32\DRIVERS\atapi.sys
    Image size: 95360
    Image MD5: CDFE4411A69C224BD1D11B2DA92DAC51
    Start: 0
    Type: 1
    Error Control: 1

    Service (registry key): Atdisk
    Start: 4
    Type: 1
    Error Control: 0

    Service (registry key): Ati HotKey Poller
    Object name: LocalSystem
    Image path: %SystemRoot%\system32\Ati2evxx.exe
    Image size: 401408
    Image MD5: 688E49AFEF3A07FCA943250D6A9729AA
    Start: 2
    Type: 272
    Error Control: 1

    Service (registry key): ATI Smart
    Display name: ATI Smart
    Object name: LocalSystem
    Image path: C:\WINDOWS\system32\ati2sgag.exe
    Image size: 520192
    Image MD5: AF9FF191E134E49BDC0E8D93F4F1B843
    Start: 2
    Type: 272
    Error Control: 1

    Service (registry key): ati2mtag
    Image path: system32\DRIVERS\ati2mtag.sys
    Image size: 1681920
    Image MD5: 86A7A22F3670465EF575614E001159C0
    Start: 3
    Type: 1
    Error Control: 0

    Service (registry key): Atierecord
    Start: 0
    Type: 0
    Error Control: 0

    Service (registry key): Atmarpc
    Display name: Protocole client ATM ARP
    Description: Protocole client ATM ARP
    Image path: system32\DRIVERS\atmarpc.sys
    Image size: 59904
    Image MD5: EC88DA854AB7D7752EC8BE11A741BB7F
    Start: 3
    Type: 1
    Error Control: 1
    Depends On services: Tcpip

    Service (registry key): AudioSrv
    Display name: Audio Windows
    Description: Gère les périphériques audio pour les programmes basés sur Windows. Si ce service est arrêté, les périphériques et les effets audio ne fonctionneront pas correctement. Si ce service est désactivé, les services en dépendant explicitement ne démarreront pas.
    Object name: LocalSystem
    Image path: %SystemRoot%\System32\svchost.exe -k netsvcs
    Image size: 14336
    Image MD5: 2979B03D5382A602623C0535B16AB9C0
    Start: 2
    Type: 32
    Error Control: 1
    Depends On services: PlugPlay,RpcSs

    Service (registry key): audstub
    Display name: Pilote audio Stub
    Image path: system32\DRIVERS\audstub.sys
    Image size: 3072
    Image MD5: D9F724AA26C010A217C97606B160ED68
    Start: 3
    Type: 1
    Error Control: 1

    Service (registry key): avast! Antivirus
    Display name: avast! Antivirus
    Description: Gère et implémente les services de l'antivirus avast! pour cet ordinateur. Ceci inclut la protection résidente, la zone de quarantaine et le planificateur.
    Object name: LocalSystem
    Image path: "D:\Antivirus\Alwil Software\Avast4\ashServ.exe"
    Image size: 108160
    Image MD5: 1CA6D8776D4F615E7861E35221582AE0
    Start: 2
    Type: 272
    Error Control: 1
    Depends On services: aswMon2,RpcSS

    Service (registry key): avast! Mail Scanner
    Display name: avast! Mail Scanner
    Description: Implémente l'analyse du courrier électronique pour l'antivirus avast!.
    Object name: LocalSystem
    Image path: "D:\Antivirus\Alwil Software\Avast4\ashMaiSv.exe" /service
    Image size: 251520
    Image MD5: 30020C9FD8754F4099F9D868C6C87051
    Start: 3
    Type: 272
    Error Control: 1
    Depends On services: "avast! Antivirus"

    Service (registry key): avast! Web Scanner
    Display name: avast! Web Scanner
    Description: Implémente l'analyse du contenu web (HTTP) pour l'antivirus avast!.
    Object name: LocalSystem
    Image path: "D:\Antivirus\Alwil Software\Avast4\ashWebSv.exe" /service
    Image size: 370304
    Image MD5: 165408DD1BB1CC1AC41115F906FCFACB
    Start: 3
    Type: 272
    Error Control: 1
    Depends On services: "avast! Antivirus"

    Service (registry key): AVG Anti-Spyware Driver
    Display name: AVG Anti-Spyware Driver
    Image path: \??\D:\Antivirus\AVG Anti-Spyware 7.5\guard.sys
    Image size: 4096
    Image MD5: 7D78B7FD0EBE00F177B053A08C78E35B
    Start: 1
    Type: 1
    Error Control: 1

    Service (registry key): AVG Anti-Spyware Guard
    Display name: AVG Anti-Spyware Guard
    Object name: LocalSystem
    Image path: D:\Antivirus\AVG Anti-Spyware 7.5\guard.exe
    Image size: 204800
    Image MD5: E8FBDCC8D618D1BB84B828F247A6244B
    Start: 2
    Type: 16
    Error Control: 1

    Service (registry key): AvgAsCln
    Display name: AVG Anti-Spyware Clean Driver
    Image path: System32\DRIVERS\AvgAsCln.sys
    Image size: 3968
    Image MD5: 6D4A1DA6E6D522B3EBBCBFF4A3589EC5
    Start: 1
    Type: 1
    Error Control: 1

    Service (registry key): BattC
    Start: 0
    Type: 0
    Error Control: 0

    Service (registry key): Beep
    Start: 1
    Type: 1
    Error Control: 1

    Service (registry key): BITS
    Display name: Service de transfert intelligent en arrière-plan
    Description: Transfère des données entre les clients et les serveurs en tâche de fond. Si le service BITS est désactivé, les fonctionnalités telles que Windows Update ne fonctionneront pas correctement.
    Object name: LocalSystem
    Image path: %SystemRoot%\system32\svchost.exe -k netsvcs
    Image size: 14336
    Image MD5: 2979B03D5382A602623C0535B16AB9C0
    Start: 3
    Type: 32
    Error Control: 1
    Depends On services: RpcSs

    Service (registry key): Browser
    Display name: Explorateur d'ordinateur
    Description: Tient à jour une liste des ordinateurs présents sur le réseau et fournit cette liste aux ordinateurs désignés comme navigateurs. Si ce service est arrêté, la liste ne sera pas mise ou tenue à jour. Si ce service est désactivé, les services qui en dépendent ne pourront pas démarrer.
    Object name: LocalSystem
    Image path: %SystemRoot%\system32\svchost.exe -k netsvcs
    Image size: 14336
    Image MD5: 2979B03D5382A602623C0535B16AB9C0
    Start: 2
    Type: 32
    Error Control: 1
    Depends On services: LanmanWorkstation,LanmanServer

    Service (registry key): cbidf2k
    Start: 4
    Type: 1
    Error Control: 1

    Service (registry key): CCDECODE
    Display name: Décodeur sous-titre fermé
    Image path: system32\DRIVERS\CCDECODE.sys
    Image size: 17024
    Image MD5: 6163ED60B684BAB19D3352AB22FC48B2
    Start: 3
    Type: 1
    Error Control: 1

    Service (registry key): cd20xrnt
    Start: 4
    Type: 1
    Error Control: 1

    Service (registry key): Cdaudio
    Start: 1
    Type: 1
    Error Control: 0

    Service (registry key): Cdfs
    Start: 4
    Type: 2
    Error Control: 1
    Depends On group: "SCSI CDROM Class"

    Service (registry key): Cdrom
    Display name: Pilote de CD-ROM
    Image path: system32\DRIVERS\cdrom.sys
    Image size: 49536
    Image MD5: AF9C19B3100FE010496B1A27181FBF72
    Start: 1
    Type: 1
    Error Control: 1
    Depends On group: "SCSI miniport"

    Service (registry key): Changer
    Start: 1
    Type: 1
    Error Control: 0

    Service (registry key): CiSvc
    Display name: Service d'indexation
    Description: Construit un index des contenus et des propriétés des fichiers sur les ordinateurs locaux et distants ; fournit un accès rapide aux fichiers par le biais d'un langage d'interrogation flexible.
    Object name: LocalSystem
    Image path: %SystemRoot%\system32\cisvc.exe
    Image size: 5632
    Image MD5: ABFAC5D58218C0A655DFCAE2D8A535F3
    Start: 3
    Type: 288
    Error Control: 1
    Depends On services: RPCSS

    Service (registry key): ClipSrv
    Display name: Gestionnaire de l'Album
    Description: Active le Gestionnaire de l'Album afin de stocker les informations et les partager avec des ordinateurs à distance. Si le service est arrêté, le Gestionnaire de l'Album ne pourra pas partager les informations avec des ordinateurs à distance. Si ce service est désactivé, tout service en dépendant explicitement ne démarrera pas.
    Object name: LocalSystem
    Image path: %SystemRoot%\system32\clipsrv.exe
    Image size: 33280
    Image MD5: E42101918C50F754FC15367814FEC11C
    Start: 4
    Type: 16
    Error Control: 1
    Depends On services: NetDDE

    Service (registry key): CmdIde
    Start: 4
    Type: 1
    Error Control: 1

    Service (registry key): COMSysApp
    Display name: Application système COM+
    Description: Gère la configuration et le suivi des composants de base COM+ (Component Object Model) . Si le service est arrêté, la plupart des composants de base COM+ ne fonctionneront pas correctement. Si ce service est désactivé, les services qui en dépendent de manière explicite ne pourront pas démarrer.
    Object name: LocalSystem
    Image path: C:\WINDOWS\system32\dllhost.exe /Processid:{02D4B3F1-FD88-11D1-960D-00805FC79235}
    Image size: 5120
    Image MD5: 9B2CE161927038D4CABE0482A14FD052
    Start: 3
    Type: 16
    Error Control: 1
    Depends On services: rpcss

    Service (registry key): ContentFilter
    Start: 0
    Type: 0
    Error Control: 0

    Service (registry key): ContentIndex
    Start: 0
    Type: 0
    Error Control: 0

    Service (registry key): Cpqarray
    Start: 4
    Type: 1
    Error Control: 1

    Service (registry key): CryptSvc
    Display name: Services de cryptographie
    Description: Fournit trois services de gestion : le service de base de données de catalogue, qui confirme la signature des fichiers Windows; le service de racine protégée, qui ajoute et supprime des certificats d'autorité de certification de racine approuvés et le service Clé, qui fournit une aide dans l'inscription de cet ordinateur pour les certificats. Si ce service est arrêté, ces services de gestion ne fonctionneront pas correctement. Si ce service est désactivé, tout service en dépendant explicitement ne démarrera pas.
    Object name: LocalSystem
    Image path: %SystemRoot%\system32\svchost.exe -k netsvcs
    Image size: 14336
    Image MD5: 2979B03D5382A602623C0535B16AB9C0
    Start: 2
    Type: 32
    Error Control: 1
    Depends On services: RpcSs

    Service (registry key): dac2w2k
    Start: 4
    Type: 1
    Error Control: 0

    Service (registry key): dac960nt
    Start: 4
    Type: 1
    Error Control: 1

    Service (registry key): DcomLaunch
    Display name: Lanceur de processus serveur DCOM
    Description: Fournit la fonctionnalité de lancement des services DCOM.
    Object name: LocalSystem
    Image path: %SystemRoot%\system32\svchost -k DcomLaunch
    Image size: 14336
    Image MD5: 2979B03D5382A602623C0535B16AB9C0
    Start: 2
    Type: 32
    Error Control: 1

    Service (registry key): Dhcp
    Display name: Client DHCP
    Description: Gère la configuration réseau en inscrivant et en mettant à jour les adresses IP et les noms DNS.
    Object name: LocalSystem
    Image path: %SystemRoot%\system32\svchost.exe -k netsvcs
    Image size: 14336
    Image MD5: 2979B03D5382A602623C0535B16AB9C0
    Start: 2
    Type: 32
    Error Control: 1
    Depends On services: Tcpip,Afd,NetBT

    Service (registry key): Disk
    Display name: Pilote de disque
    Image path: system32\DRIVERS\disk.sys
    Image size: 36352
    Image MD5: 00CA44E4534865F8A3B64F7C0984BFF0
    Start: 0
    Type: 1
    Error Control: 1
    Depends On group: "SCSI miniport"

    Service (registry key): dmadmin
    Display name: Service d'administration du Gestionnaire de disque logique
    Description: Configure les lecteurs de disque durs et les volumes. Le service ne s'exécute que pour les processus de configurations puis s'arrête.
    Object name: LocalSystem
    Image path: %SystemRoot%\System32\dmadmin.exe /com
    Image size: 225280
    Image MD5: 647D03A59615FEE96D647D4426F1537E
    Start: 3
    Type: 32
    Error Control: 1
    Depends On services: RpcSs,PlugPlay,DmServer

    Service (registry key): dmboot
    Image path: System32\drivers\dmboot.sys
    Image size: 800256
    Image MD5: E2D3B7620310FE56685F9B15A6B404B3
    Start: 4
    Type: 1
    Error Control: 1

    Service (registry key): dmio
    Display name: Pilote de Gestionnaire de disque logique
    Image path: System32\drivers\dmio.sys
    Image size: 154496
    Image MD5: C77F5C20AA70197A69AA84BAA9DE43C8
    Start: 0
    Type: 1
    Error Control: 1

    Service (registry key): dmload
    Image path: System32\drivers\dmload.sys
    Image size: 5888
    Image MD5: E9317282A63CA4D188C0DF5E09C6AC5F
    Start: 0
    Type: 1
    Error Control: 1

    Service (registry key): dmserver
    Display name: Gestionnaire de disque logique
    Description: Détecte et analyse de nouveaux lecteurs de disque durs et envoie les informations de volume de disque au service gestionnaire administratif de disque logique pour la configuration. Si ce service est arrêté, l'état des disques dynamiques et les informations de configuration peuvent devenir obsolètes. Si ce service est désactivé, tout service en dépendant explicitement ne démarrera pas.
    Object name: LocalSystem
    Image path: %SystemRoot%\System32\svchost.exe -k netsvcs
    Image size: 14336
    Image MD5: 2979B03D5382A602623C0535B16AB9C0
    Start: 2
    Type: 32
    Error Control: 1
    Depends On services: RpcSs,PlugPlay

    Service (registry key): DMusic
    Display name: Synthétiseur DLS du noyau Microsoft
    Image path: system32\drivers\DMusic.sys
    Image size: 52864
    Image MD5: A6F881284AC1150E37D9AE47FF601267
    Start: 3
    Type: 1
    Error Control: 1

    Service (registry key): Dnscache
    Display name: Client DNS
    Description: Résout et met en cache les noms DNS pour cet ordinateur. Si ce service est arrêté, l'ordinateur ne pourra pas résoudre les noms DNS et trouver les contrôleurs de domaine Active Directory. Si ce service est désactivé, les services qui en dépendent ne pourront pas démarrer.
    Object name: NT AUTHORITY\NetworkService
    Image path: %SystemRoot%\system32\svchost.exe -k NetworkService
    Image size: 14336
    Image MD5: 2979B03D5382A602623C0535B16AB9C0
    Start: 2
    Type: 32
    Error Control: 1
    Depends On services: Tcpip

    Service (registry key): dpti2o
    Start: 4
    Type: 1
    Error Control: 1

    Service (registry key): drmkaud
    Display name: Filtre de décodeur DRM (Noyau Microsoft)
    Image path: system32\drivers\drmkaud.sys
    Image size: 2944
    Image MD5: 1ED4DBBAE9F5D558DBBA4CC450E3EB2E
    Start: 3
    Type: 1
    Error Control: 1

    Service (registry key): dtscsi
    Image path: \SystemRoot\System32\Drivers\dtscsi.sys
    Start: 3
    Type: 1
    Error Control: 1

    Service (registry key): ERSvc
    Display name: Service de rapport d'erreurs
    Description: Active le rapport d'erreurs pour les services et les applications s'exécutant sur des environnements non standard.
    Object name: LocalSystem
    Image path: %SystemRoot%\System32\svchost.exe -k netsvcs
    Image size: 14336
    Image MD5: 2979B03D5382A602623C0535B16AB9C0
    Start: 2
    Type: 32
    Error Control: 0
    Depends On services: RpcSs

    Service (registry key): Eventlog
    Display name: Journal des événements
    Description: Active les messages d'événements émis par les programmes fonctionnant sous Windows et les composants devant être affichés dans l'observateur d'événements. Ce service ne peut être arrêté.
    Object name: LocalSystem
    Image path: %SystemRoot%\system32\services.exe
    Image size: 108544
    Image MD5: 63DCDE1A0D86EEB8924D6738FF616EAD
    Start: 2
    Type: 32
    Error Control: 1

    Service (registry key): EventSystem
    Display name: Système d'événements de COM+
    Description: Prend en charge le service de notification d'événements système (SENS, System Event Notification Service), qui fournit une distribution automatique d'événements aux composants COM (Component Object Model) abonnés. Si le service est arrêté, SENS sera fermé et ne pourra fournir des informations d'ouverture et de fermeture de session. Si ce service est désactivé, le démarrage de tout service qui en dépend explicitement échouera.
    Object name: LocalSystem
    Image path: C:\WINDOWS\system32\svchost.exe -k netsvcs
    Image size: 14336
    Image MD5: 2979B03D5382A602623C0535B16AB9C0
    Start: 3
    Type: 32
    Error Control: 1
    Depends On services: RPCSS

    Service (registry key): Fastfat
    Start: 4
    Type: 2
    Error Control: 1

    Service (registry key): FastUserSwitchingCompatibility
    Display name: Compatibilité avec le Changement rapide d'utilisateur
    Description: Fournit un système de gestion à des applications qui nécessitent de l'Assistance dans un environnement d'utilisateurs multiples.
    Object name: LocalSystem
    Image path: %SystemRoot%\System32\svchost.exe -k netsvcs
    Image size: 14336
    Image MD5: 2979B03D5382A602623C0535B16AB9C0
    Start: 3
    Type: 32
    Error Control: 1
    Depends On services: TermService

    Service (registry key): Fdc
    Start: 1
    Type: 1
    Error Control: 0

    Service (registry key): Fips
    Start: 1
    Type: 1
    Error Control: 1

    Service (registry key): Flpydisk
    Start: 1
    Type: 1
    Error Control: 0

    Service (registry key): FltMgr
    Display name: FltMgr
    Description: Pilote du gestionnaire de filtre de système de fichiers
    Image path: system32\DRIVERS\fltMgr.sys
    Image size: 124800
    Image MD5: 157754F0DF355A9E0A6F54721914F9C6
    Start: 0
    Type: 2
    Error Control: 1

    Service (registry key): Fs_Rec
    Start: 1
    Type: 8
    Error Control: 0

    Service (registry key): Ftdisk
    Display name: Pilote du Gestionnaire de volume
    Image path: system32\DRIVERS\ftdisk.sys
    Image size: 126080
    Image MD5: A86859B77B908C18C2657F284AA29FE3
    Start: 0
    Type: 1
    Error Control: 1

    Service (registry key): gameenum
    Display name: Énumérateur de port jeu
    Image path: system32\DRIVERS\gameenum.sys
    Image size: 10624
    Image MD5: 5F92FD09E5610A5995DA7D775EADCD12
    Start: 3
    Type: 1
    Error Control: 0

    Service (registry key): Gpc
    Display name: Classificateur de paquets générique
    Description: Classificateur de paquets générique
    Image path: system32\DRIVERS\msgpc.sys
    Image size: 35072
    Image MD5: C0F1D4A21DE5A415DF8170616703DEBF
    Start: 3
    Type: 1
    Error Control: 1

    Service (registry key): helpsvc
    Display name: Aide et support
    Description: Permet à l'application Aide et support de fonctionner sur cet ordinateur. Si ce service est arrêté, la fonctionnalité Aide et support ne sera pas disponible. S'il est désactivé, tous les services dépendant explicitement de ce service ne pourront pas démarrer.
    Object name: LocalSystem
    Image path: %SystemRoot%\System32\svchost.exe -k netsvcs
    Image size: 14336
    Image MD5: 2979B03D5382A602623C0535B16AB9C0
    Start: 2
    Type: 32
    Error Control: 1
    Depends On services: RPCSS

    Service (registry key): HidServ
    Display name: Accès du périphérique d'interface utilisateur
    Description: Permet l'accès entrant générique aux périphériques d'interface utilisateur, qui activent et maintiennent l'utilisation des boutons actifs prédéfinis sur le clavier, les contrôles à distance, et d'autres périphériques multimédia. Si ce service est arrêté, les boutons actifs contrôlés par ce service ne fonctionneront pas. Si ce service est désactivé, tout service en dépendant explicitement ne démarrera pas.
    Object name: LocalSystem
    Image path: %SystemRoot%\System32\svchost.exe -k netsvcs
    Image size: 14336
    Image MD5: 2979B03D5382A602623C0535B16AB9C0
    Start: 4
    Type: 32
    Error Control: 1
    Depends On services: RpcSs

    Service (registry key): hpn
    Start: 4
    Type: 1
    Error Control: 1

    Service (registry key): HTTP
    Display name: HTTP
    Description: Ce service implémente le protocole HTTP (HyperText Transfer Protocol). Si ce service est désactivé, tous les services qui en dépendent de manière explicite échoueront au démarrage.
    Image path: System32\Drivers\HTTP.sys
    Image size: 263040
    Image MD5: C19B522A9AE0BBC3293397F3055E80A1
    Start: 3
    Type: 1
    Error Control: 1

    Service (registry key): HTTPFilter
    Display name: HTTP SSL
    Description: Ce service implémente le protocole sécurisé HTTPS (Secure HyperText Transfer Protocol) pour le service HTTP, en utilisant la couche SSL (Secure Socket Layer). Si ce service est désactivé, tous les services qui en dépendent de manière explicite échoueront au démarrage.
    Object name: LocalSystem
    Image path: %SystemRoot%\System32\svchost.exe -k HTTPFilter
    Image size: 14336
    Image MD5: 2979B03D5382A602623C0535B16AB9C0
    Start: 3
    Type: 32
    Error Control: 1
    Depends On services: HTTP

    Service (registry key): i2omgmt
    Start: 1
    Type: 1
    Error Control: 1

    Service (registry key): i2omp
    Start: 4
    Type: 1
    Error Control: 1

    Service (registry key): i8042prt
    Display name: Pilote pour clavier i8042 et souris sur port PS/2
    Image path: system32\DRIVERS\i8042prt.sys
    Image size: 54400
    Image MD5: D1EFCBD693B5BA21314D06368C471070
    Start: 1
    Type: 1
    Error Control: 1

    Service (registry key): Imapi
    Display name: Pilote de filtre de gravure CD
    Image path: system32\DRIVERS\imapi.sys
    Image size: 41856
    Image MD5: F8AA320C6A0409C0380E5D8A99D76EC6
    Start: 1
    Type: 1
    Error Control: 1

    Service (registry key): ImapiService
    Display name: Service COM de gravage de CD IMAPI
    Description: Gère le gravage des CD via l'interface série IMAPI (Image Mastering Applications Programming Interface). Si ce service est arrêté, cet ordinateur ne pourra plus enregistrer de CD. Si ce service est désactivé, les services qui en dépendent ne vont pas pouvoir démarrer.
    Object name: LocalSystem
    Image path: C:\WINDOWS\system32\imapi.exe
    Image size: 150016
    Image MD5: 17B7A4375868B8C38F2DFC98B3B420C6
    Start: 3
    Type: 16
    Error Control: 1

    Service (registry key): inetaccs
    Start: 0
    Type: 0
    Error Control: 0

    Service (registry key): ini910u
    Start: 4
    Type: 1
    Error Control: 1

    Service (registry key): Inport
    Start: 0
    Type: 0
    Error Control: 0

    Service (registry key): IntelIde
    Start: 4
    Type: 1
    Error Control: 1

    Service (registry key): Ip6Fw
    Display name: Pilote du pare-feu Windows IPv6
    Description: Fournit un service de prévention d'intrusion pour un réseau domestique ou de petite entreprise.
    Image path: system32\DRIVERS\Ip6Fw.sys
    Image size: 29056
    Image MD5: 4448006B6BC60E6C027932CFC38D6855
    Start: 3
    Type: 1
    Error Control: 1

    Service (registry key): IpFilterDriver
    Display name: Pilote de filtre de trafic IP
    Description: Pilote de filtre de trafic IP
    Image path: system32\DRIVERS\ipfltdrv.sys
    Image size: 32896
    Image MD5: 731F22BA402EE4B62748ADAF6363C182
    Start: 3
    Type: 1
    Error Control: 1
    Depends On services: Tcpip

    Service (registry key): IpInIp
    Display name: Pilote de tunnelage IP dans IP
    Description: Pilote de tunnelage IP dans IP
    Image path: system32\DRIVERS\ipinip.sys
    Image size: 20992
    Image MD5: E1EC7F5DA720B640CD8FB8424F1B14BB
    Start: 3
    Type: 1
    Error Control: 1
    Depends On services: Tcpip

    Service (registry key): IpNat
    Display name: Traducteur d'adresses réseau IP
    Description: Traducteur d'adresses réseau IP
    Image path: system32\DRIVERS\ipnat.sys
    Image size: 134912
    Image MD5: B5A8E215AC29D24D60B4D1250EF05ACE
    Start: 3
    Type: 1
    Error Control: 1
    Depends On services: Tcpip

    Service (registry key): IPSec
    Display name: Pilote IPSEC
    Description: Pilote IPSEC
    Image path: system32\DRIVERS\ipsec.sys
    Image size: 74752
    Image MD5: 64537AA5C003A6AFEEE1DF819062D0D1
    Start: 1
    Type: 1
    Error Control: 1

    Service (registry key): IRENUM
    Display name: Service énumérateur IR
    Image path: system32\DRIVERS\irenum.sys
    Image size: 11264
    Image MD5: 50708DAA1B1CBB7D6AC1CF8F56A24410
    Start: 3
    Type: 1
    Error Control: 1

    Service (registry key): ISAPISearch
    Start: 0
    Type: 0
    Error Control: 0

    Service (registry key): isapnp
    Display name: Pilote de bus Plug-and-Play ISA/EISA
    Image path: system32\DRIVERS\isapnp.sys
    Image size: 36224
    Image MD5: 54632F1A7DE61DC3615D756F2A90FA72
    Start: 0
    Type: 1
    Error Control: 3

    Service (registry key): Kbdclass
    Display name: Pilote de la classe Clavier
    Image path: system32\DRIVERS\kbdclass.sys
    Image size: 25216
    Image MD5: E798705E8DC7FAB596EF6BFDF167E007
    Start: 1
    Type: 1
    Error Control: 1

    Service (registry key): kmixer
    Display name: Mélangeur audio Wave de noyau Microsoft
    Image path: system32\drivers\kmixer.sys
    Image size: 171776
    Image MD5: D93CAD07C5683DB066B0B2D2D3790EAD
    Start: 3
    Type: 1
    Error Control: 1

    Service (registry key): KSecDD
    Start: 0
    Type: 1
    Error Control: 1

    Service (registry key): lanmanserver
    Display name: Serveur
    Description: Prend en charge le partage de fichiers, d'impression et des canaux nommés via le réseau pour cet ordinateur. Si ce service est arrêté, ces fonctions ne seront pas disponibles. Si ce service est désactivé, les services qui en dépendent ne pourront pas démarrer.
    Object name: LocalSystem
    Image path: %SystemRoot%\system32\svchost.exe -k netsvcs
    Image size: 14336
    Image MD5: 2979B03D5382A602623C0535B16AB9C0
    Start: 2
    Type: 32
    Error Control: 1

    Service (registry key): lanmanworkstation
    Display name: Station de travail
    Description: Crée et maintient des connexions de réseau client à des serveurs distants. Si ce service est arrêté, ces connexions ne seront pas disponibles. Si ce service est désactivé, les services qui en dépendent ne pourront pas démarrer.
    Object name: LocalSystem
    Image path: %SystemRoot%\system32\svchost.exe -k netsvcs
    Image size: 14336
    Image MD5: 2979B03D5382A602623C0535B16AB9C0
    Start: 2
    Type: 32
    Error Control: 1

    Service (registry key): lbrtfdc
    Start: 1
    Type: 1
    Error Control: 0

    Service (registry key): ldap
    Start: 0
    Type: 0
    Error Control: 0

    Service (registry key): LicenseService
    Start: 0
    Type: 0
    Error Control: 0

    Service (registry key): LmHosts
    Display name: Assistance TCP/IP NetBIOS
    Description: Permet la prise en charge pour NetBIOS sur un service TCP/IP (NetBT) et la résolution des noms NetBIOS.
    Object name: NT AUTHORITY\LocalService
    Image path: %SystemRoot%\system32\svchost.exe -k LocalService
    Image size: 14336
    Image MD5: 2979B03D5382A602623C0535B16AB9C0
    Start: 2
    Type: 32
    Error Control: 1
    Depends On services: NetBT,Afd

    Service (registry key): MDM
    Display name: Machine Debug Manager
    Description: Prend en charge le débogage local et distant pour les débogueurs Visual Studio et de script. Si ce service est arrêté, les débogueurs ne fonctionneront pas correctement.
    Object name: LocalSystem
    Image path: "C:\Program Files\Fichiers communs\Microsoft Shared\VS7DEBUG\MDM.EXE"
    Image size: 322120
    Image MD5: 11F714F85530A2BD134074DC30E99FCA
    Start: 2
    Type: 272
    Error Control: 1
    Depends On services: RPCSS

    Service (registry key): Messenger
    Display name: Affichage des messages
    Description: Envoie et reçoit les messages des services d'alertes entre les clients et les serveurs. Ce service n'est pas lié à Windows Messenger. Si ce service est arrêté, les messages d'alertes ne seront pas transmis. Si ce service est désactivé, les services qui en dépendent ne pourront pas démarrer.
    Object name: LocalSystem
    Image path: %SystemRoot%\system32\svchost.exe -k netsvcs
    Image size: 14336
    Image MD5: 2979B03D5382A602623C0535B16AB9C0
    Start: 4
    Type: 32
    Error Control: 1
    Depends On services: LanmanWorkstation,NetBIOS,PlugPlay,RpcSS

    Service (registry key): mnmdd
    Start: 1
    Type: 1
    Error Control: 0

    Service (registry key): mnmsrvc
    Display nam
    0
  8. MAD
     
    POUR Ccleaner:
    aucun rapport ne fut generer (ou je ne savais pas comment le recuperer)
    0
  9. MAD
     
    POUR AVG anti-spyware 7.5:

    ---------------------------------------------------------
    AVG Anti-Spyware - Rapport d'analyse
    ---------------------------------------------------------

    + Créé à: 21:45:34 17/10/2006

    + Résultat de l'analyse:

    Rien à signaler.

    Fin du rapport

    Sinon j'ai aussi avast a jour et il n'a rien trouvé.

    Voila mnt j'attend la fin de bitdefender pour envoyer le resultat.
    Mais si vous voyez deja des choses a travers ces rapports, n'hesitez pas.
    Merci
    0
  10. MAD
     
    POUR bitdefender:

    BitDefender Online Scanner - Rapport virus en temps réel

    Généré à: Tue, Oct 17, 2006 - 23:02:18

    Info d'analyse

    Fichiers scannés

    345491

    Infectés Fichiers

    0

    Virus Détectés

    Aucun virus trouvé.
    0
  11. MAD
     
    POUR hijackthis:

    Logfile of HijackThis v1.99.1
    Scan saved at 23:07:24, on 17/10/2006
    Platform: Windows XP SP2 (WinNT 5.01.2600)
    MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)

    Running processes:
    C:\WINDOWS\System32\smss.exe
    C:\WINDOWS\system32\winlogon.exe
    C:\WINDOWS\system32\services.exe
    C:\WINDOWS\system32\lsass.exe
    C:\WINDOWS\system32\Ati2evxx.exe
    C:\WINDOWS\system32\svchost.exe
    C:\WINDOWS\System32\svchost.exe
    C:\WINDOWS\system32\Ati2evxx.exe
    C:\WINDOWS\system32\spoolsv.exe
    C:\WINDOWS\Explorer.EXE
    C:\Program Files\NVIDIA Corporation\NvMixer\NVMixerTray.exe
    D:\ANTIVI~1\ALWILS~1\Avast4\ashDisp.exe
    D:\DAEMON Tools\daemon.exe
    C:\Program Files\ATI Technologies\ATI.ACE\CLI.EXE
    C:\Program Files\Java\jre1.5.0_08\bin\jusched.exe
    D:\programmes\Unlocker\UnlockerAssistant.exe
    D:\Antivirus\AVG Anti-Spyware 7.5\avgas.exe
    C:\WINDOWS\system32\ctfmon.exe
    D:\Antivirus\Spybot - Search & Destroy\TeaTimer.exe
    D:\Antivirus\Alwil Software\Avast4\aswUpdSv.exe
    D:\Antivirus\Alwil Software\Avast4\ashServ.exe
    D:\Antivirus\AVG Anti-Spyware 7.5\guard.exe
    C:\Program Files\Fichiers communs\Microsoft Shared\VS7DEBUG\MDM.EXE
    C:\WINDOWS\system32\svchost.exe
    C:\Program Files\ATI Technologies\ATI.ACE\cli.exe
    C:\Program Files\ATI Technologies\ATI.ACE\cli.exe
    C:\WINDOWS\system32\wuauclt.exe
    C:\WINDOWS\system32\wscntfy.exe
    C:\Program Files\Mozilla Firefox 2 Beta 2\firefox.exe
    D:\antivirus\ewido anti-spyware 4.0\guard.exe
    C:\Program Files\Windows Media Player\wmplayer.exe
    D:\Antivirus\hijackthis\bonjour.exe.exe

    R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
    O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - D:\Programmes\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll
    O2 - BHO: (no name) - {53707962-6F74-2D53-2644-206D7942484F} - D:\ANTIVI~1\SPYBOT~1\SDHelper.dll
    O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.5.0_08\bin\ssv.dll
    O4 - HKLM\..\Run: [NVMixerTray] "C:\Program Files\NVIDIA Corporation\NvMixer\NVMixerTray.exe"
    O4 - HKLM\..\Run: [avast!] D:\ANTIVI~1\ALWILS~1\Avast4\ashDisp.exe
    O4 - HKLM\..\Run: [DAEMON Tools] "D:\DAEMON Tools\daemon.exe" -lang 1033
    O4 - HKLM\..\Run: [ATICCC] "C:\Program Files\ATI Technologies\ATI.ACE\CLIStart.exe"
    O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre1.5.0_08\bin\jusched.exe"
    O4 - HKLM\..\Run: [UnlockerAssistant] "D:\programmes\Unlocker\UnlockerAssistant.exe"
    O4 - HKLM\..\Run: [!AVG Anti-Spyware] "D:\Antivirus\AVG Anti-Spyware 7.5\avgas.exe" /minimized
    O4 - HKLM\..\Run: [!ewido] "D:\antivirus\ewido anti-spyware 4.0\ewido.exe" /minimized
    O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe
    O4 - HKCU\..\Run: [SpybotSD TeaTimer] D:\Antivirus\Spybot - Search & Destroy\TeaTimer.exe
    O4 - Global Startup: Lancement rapide d'Adobe Reader.lnk = D:\programmes\Adobe\Acrobat 7.0\Reader\reader_sl.exe
    O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://D:\PROGRA~1\MICROS~1\OFFICE11\EXCEL.EXE/3000
    O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_08\bin\ssv.dll
    O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_08\bin\ssv.dll
    O9 - Extra button: (no name) - {85d1f590-48f4-11d9-9669-0800200c9a66} - %windir%\bdoscandel.exe (file missing)
    O9 - Extra 'Tools' menuitem: Uninstall BitDefender Online Scanner v8 - {85d1f590-48f4-11d9-9669-0800200c9a66} - %windir%\bdoscandel.exe (file missing)
    O9 - Extra button: Recherche - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - D:\PROGRA~1\MICROS~1\OFFICE11\REFIEBAR.DLL
    O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
    O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
    O16 - DPF: {5D86DDB5-BDF9-441B-9E9E-D4730F4EE499} (BDSCANONLINE Control) - http://www.bitdefender.fr/scan8/oscan8.cab
    O16 - DPF: {8E0D4DE5-3180-4024-A327-4DFAD1796A8D} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsClient.cab31267.cab
    O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - Unknown owner - D:\Antivirus\Alwil Software\Avast4\aswUpdSv.exe
    O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\WINDOWS\system32\Ati2evxx.exe
    O23 - Service: ATI Smart - Unknown owner - C:\WINDOWS\system32\ati2sgag.exe
    O23 - Service: avast! Antivirus - Unknown owner - D:\Antivirus\Alwil Software\Avast4\ashServ.exe
    O23 - Service: avast! Mail Scanner - Unknown owner - D:\Antivirus\Alwil Software\Avast4\ashMaiSv.exe" /service (file missing)
    O23 - Service: avast! Web Scanner - Unknown owner - D:\Antivirus\Alwil Software\Avast4\ashWebSv.exe" /service (file missing)
    O23 - Service: AVG Anti-Spyware Guard - Anti-Malware Development a.s. - D:\Antivirus\AVG Anti-Spyware 7.5\guard.exe
    O23 - Service: ewido anti-spyware 4.0 guard - Anti-Malware Development a.s. - D:\antivirus\ewido anti-spyware 4.0\guard.exe
    0
  12. MAD
     
    Voila j'ai tout fait (dans la limite du possible) j'attend mainteant vos indications :)

    A tres vite!!
    0
  13. Séb08 Messages postés 18169 Date d'inscription   Statut Contributeur Dernière intervention   1 430
     
    slt,
    Pourquoi tu as renommé Hijack.exe en bonjour.exe ?

    D:\Antivirus\hijackthis\bonjour.exe.exe

    a+
    0
  14. MAD
     
    Bon et bien j'ai autre chose alors que ce virus, car en fait je ne peux pas me connecter a mes sessions MSN alors que mn frere peut lui !

    Vous savez de quoi ça peut venir??
    0
  15. MAD
     
    Je rajoute au passage que j'ai plusieurs sessions msn et l'une d'entre fonctionne. Et le probleme qui survient avec les autres c'est que lorsque je tente de me connecter la page reste toujours la avec les 2 petits bonhomme MSN (le logo) qui tourne et rien ne se passe, d'ailleur je n'ai meme pas d'erreur, ça reste comme ça c'est tout...
    0
  16. MAD
     
    OK donc pour les symptomes: lorsque je lance windows live messenger la page de conexoion s'ouvre normalement, ensuite je rentre mon adresse mail et mon mot de passe puis la connexion se met en route; et là ça bloque les petits bonhommesmsn tournent sans arret (comme a chaque connexion) et je n'ai aucun message d'erreur n i rien,simplement ça reste sur cette page avec 'connexion en cours' .

    Voici le dernier rapport hjackthis:

    Logfile of HijackThis v1.99.1
    Scan saved at 18:14:24, on 18/10/2006
    Platform: Windows XP SP2 (WinNT 5.01.2600)
    MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)

    Running processes:
    C:\WINDOWS\System32\smss.exe
    C:\WINDOWS\system32\winlogon.exe
    C:\WINDOWS\system32\services.exe
    C:\WINDOWS\system32\lsass.exe
    C:\WINDOWS\system32\Ati2evxx.exe
    C:\WINDOWS\system32\svchost.exe
    C:\WINDOWS\System32\svchost.exe
    C:\WINDOWS\system32\Ati2evxx.exe
    C:\WINDOWS\system32\spoolsv.exe
    C:\WINDOWS\Explorer.EXE
    C:\Program Files\NVIDIA Corporation\NvMixer\NVMixerTray.exe
    D:\ANTIVI~1\ALWILS~1\Avast4\ashDisp.exe
    D:\DAEMON Tools\daemon.exe
    C:\Program Files\ATI Technologies\ATI.ACE\CLI.EXE
    C:\Program Files\Java\jre1.5.0_08\bin\jusched.exe
    D:\programmes\Unlocker\UnlockerAssistant.exe
    D:\Antivirus\AVG Anti-Spyware 7.5\avgas.exe
    C:\WINDOWS\system32\ctfmon.exe
    D:\Antivirus\Alwil Software\Avast4\aswUpdSv.exe
    D:\Antivirus\Alwil Software\Avast4\ashServ.exe
    D:\Antivirus\AVG Anti-Spyware 7.5\guard.exe
    C:\WINDOWS\system32\svchost.exe
    C:\Program Files\Mozilla Firefox 2 Beta 2\firefox.exe
    D:\antivirus\ewido anti-spyware 4.0\guard.exe
    D:\eMule\emule.exe
    D:\Antivirus\Alwil Software\Avast4\ashMaiSv.exe
    D:\Antivirus\Alwil Software\Avast4\ashWebSv.exe
    C:\WINDOWS\system32\wuauclt.exe
    C:\WINDOWS\system32\wuauclt.exe
    C:\WINDOWS\system32\msiexec.exe
    D:\Antivirus\hijackthis\hijackthis.exe.exe

    R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
    O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - D:\Programmes\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll
    O2 - BHO: (no name) - {53707962-6F74-2D53-2644-206D7942484F} - D:\ANTIVI~1\SPYBOT~1\SDHelper.dll
    O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.5.0_08\bin\ssv.dll
    O4 - HKLM\..\Run: [NVMixerTray] "C:\Program Files\NVIDIA Corporation\NvMixer\NVMixerTray.exe"
    O4 - HKLM\..\Run: [avast!] D:\ANTIVI~1\ALWILS~1\Avast4\ashDisp.exe
    O4 - HKLM\..\Run: [DAEMON Tools] "D:\DAEMON Tools\daemon.exe" -lang 1033
    O4 - HKLM\..\Run: [ATICCC] "C:\Program Files\ATI Technologies\ATI.ACE\CLIStart.exe"
    O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre1.5.0_08\bin\jusched.exe"
    O4 - HKLM\..\Run: [UnlockerAssistant] "D:\programmes\Unlocker\UnlockerAssistant.exe"
    O4 - HKLM\..\Run: [!AVG Anti-Spyware] "D:\Antivirus\AVG Anti-Spyware 7.5\avgas.exe" /minimized
    O4 - HKLM\..\Run: [!ewido] "D:\antivirus\ewido anti-spyware 4.0\ewido.exe" /minimized
    O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe
    O4 - HKCU\..\Run: [SpybotSD TeaTimer] D:\Antivirus\Spybot - Search & Destroy\TeaTimer.exe
    O4 - HKCU\..\Run: [MsnMsgr] "C:\Program Files\MSN Messenger\MsnMsgr.Exe" /background
    O4 - Global Startup: Lancement rapide d'Adobe Reader.lnk = D:\programmes\Adobe\Acrobat 7.0\Reader\reader_sl.exe
    O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://D:\PROGRA~1\MICROS~1\OFFICE11\EXCEL.EXE/3000
    O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_08\bin\ssv.dll
    O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_08\bin\ssv.dll
    O9 - Extra button: (no name) - {85d1f590-48f4-11d9-9669-0800200c9a66} - %windir%\bdoscandel.exe (file missing)
    O9 - Extra 'Tools' menuitem: Uninstall BitDefender Online Scanner v8 - {85d1f590-48f4-11d9-9669-0800200c9a66} - %windir%\bdoscandel.exe (file missing)
    O9 - Extra button: Recherche - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - D:\PROGRA~1\MICROS~1\OFFICE11\REFIEBAR.DLL
    O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
    O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
    O16 - DPF: {5D86DDB5-BDF9-441B-9E9E-D4730F4EE499} (BDSCANONLINE Control) - http://www.bitdefender.fr/scan8/oscan8.cab
    O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - Unknown owner - D:\Antivirus\Alwil Software\Avast4\aswUpdSv.exe
    O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\WINDOWS\system32\Ati2evxx.exe
    O23 - Service: ATI Smart - Unknown owner - C:\WINDOWS\system32\ati2sgag.exe
    O23 - Service: avast! Antivirus - Unknown owner - D:\Antivirus\Alwil Software\Avast4\ashServ.exe
    O23 - Service: avast! Mail Scanner - Unknown owner - D:\Antivirus\Alwil Software\Avast4\ashMaiSv.exe" /service (file missing)
    O23 - Service: avast! Web Scanner - Unknown owner - D:\Antivirus\Alwil Software\Avast4\ashWebSv.exe" /service (file missing)
    O23 - Service: AVG Anti-Spyware Guard - Anti-Malware Development a.s. - D:\Antivirus\AVG Anti-Spyware 7.5\guard.exe
    O23 - Service: ewido anti-spyware 4.0 guard - Anti-Malware Development a.s. - D:\antivirus\ewido anti-spyware 4.0\guard.exe
    0
  17. Séb08 Messages postés 18169 Date d'inscription   Statut Contributeur Dernière intervention   1 430
     
    Essaye cette manip

    Démarrer/exécuter puis taper les 3 lignes l’une après l’autre suivies de [Enter]

    regsvr32 softpub.dll
    regsvr32 initpki.dll
    regsvr32 mssip32.dll

    ensuite ça doit remarcher, relance l’ordi tu dois pouvoir te reconnecter

    a+
    0
  18. MAD
     
    Seb08, j'ai essayer ta manip lorsque sn etait desinstallé, puis j'ai relancé mo nPC et réinstaller: ça n'a rienchangé! J'ai essayer apres l'avoir réinstaller, et ça n'a rien changer non plus... :'(

    Merci quand meme.

    J'commence a déséspérer. :'(

    Personne n'a une autre idée??
    0
  • 1
  • 2