[Virus] Hijackthis.log
Fermé
JP
-
28 nov. 2006 à 14:36
^^Marie^^ Messages postés 113901 Date d'inscription mardi 6 septembre 2005 Statut Membre Dernière intervention 28 août 2020 - 28 nov. 2006 à 15:56
^^Marie^^ Messages postés 113901 Date d'inscription mardi 6 septembre 2005 Statut Membre Dernière intervention 28 août 2020 - 28 nov. 2006 à 15:56
A voir également:
- [Virus] Hijackthis.log
- Youtu.be virus - Accueil - Guide virus
- Svchost.exe virus - Guide
- Faux message virus ordinateur - Accueil - Arnaque
- Tinyurl.com virus - Forum Virus
- Virus mcafee - Accueil - Piratage
3 réponses
^^Marie^^
Messages postés
113901
Date d'inscription
mardi 6 septembre 2005
Statut
Membre
Dernière intervention
28 août 2020
3 275
28 nov. 2006 à 14:44
28 nov. 2006 à 14:44
Salut
Continue le nettoyage et poste les rapports
stp
merci
Télécharge (sauf si tu les as) et colle les rapports dans l’ordre
A - ad-aware version 1.06
(ici) http://www.florensac-chasse-trap.com/ section virus/logiciel de securite
voir demo
http://pageperso.aol.fr/balltrap34/adwseflash.zip
B - spybot version 1.4
(ici) http://www.florensac-chasse-trap.com/ section virus/logiciel de securite
voir demo d utilisation
http://pageperso.aol.fr/Balltrap34/demo%20spybot.htm
C - Ccleaner : ( nettoyeur de registre, cookies+temps+tempos+prefetch+historique+etc..)
Télécharge ici :
https://www.ccleaner.com/ccleaner/download
Tutorial ici:
https://www.vulgarisation-informatique.com/nettoyer-windows-ccleaner.php
et
http://perso.orange.fr/jesses/Docs/Logiciels/CCleaner.htm
D – Ewido – AVG
AVG Anti-Spyware :
https://www.avg.com/en-ww/free-antivirus-download
Tu l'installes.
Lance AVG Anti-Spyware et clique sur le bouton Mise à jour. Patiente!
Lance AVG Anti-Spyware
Clique sur le bouton Analyse (de la barre d'outils)
Puis sur l'onglets Comment réagir, clique sur Actions recommandées. Sélectionne Quarantaine.
Reviens à l'onglet Analyse. Clique sur Analyse complète du système.
A la fin du scan, choisis l'option " Appliquer toutes les actions " en bas.
Clique sur "Enregistrer le rapport". Ceci génère un rapport en fichier texte qui se trouve dans le dossier Reports du dossier d'AVG Anti-Spyware.
Copie/colle le rapport
E - Scan online avec BitDefender (fonctionne uniquement sous Internet Explorer en acceptant l’ activX)
https://assiste.com/404_La_page_demandee_n_existe_pas.php
http://www.bitdefender.fr/scan8/ie.html
Copie/COLLE le rapport entier
A++
Continue le nettoyage et poste les rapports
stp
merci
Télécharge (sauf si tu les as) et colle les rapports dans l’ordre
A - ad-aware version 1.06
(ici) http://www.florensac-chasse-trap.com/ section virus/logiciel de securite
voir demo
http://pageperso.aol.fr/balltrap34/adwseflash.zip
B - spybot version 1.4
(ici) http://www.florensac-chasse-trap.com/ section virus/logiciel de securite
voir demo d utilisation
http://pageperso.aol.fr/Balltrap34/demo%20spybot.htm
C - Ccleaner : ( nettoyeur de registre, cookies+temps+tempos+prefetch+historique+etc..)
Télécharge ici :
https://www.ccleaner.com/ccleaner/download
Tutorial ici:
https://www.vulgarisation-informatique.com/nettoyer-windows-ccleaner.php
et
http://perso.orange.fr/jesses/Docs/Logiciels/CCleaner.htm
D – Ewido – AVG
AVG Anti-Spyware :
https://www.avg.com/en-ww/free-antivirus-download
Tu l'installes.
Lance AVG Anti-Spyware et clique sur le bouton Mise à jour. Patiente!
Lance AVG Anti-Spyware
Clique sur le bouton Analyse (de la barre d'outils)
Puis sur l'onglets Comment réagir, clique sur Actions recommandées. Sélectionne Quarantaine.
Reviens à l'onglet Analyse. Clique sur Analyse complète du système.
A la fin du scan, choisis l'option " Appliquer toutes les actions " en bas.
Clique sur "Enregistrer le rapport". Ceci génère un rapport en fichier texte qui se trouve dans le dossier Reports du dossier d'AVG Anti-Spyware.
Copie/colle le rapport
E - Scan online avec BitDefender (fonctionne uniquement sous Internet Explorer en acceptant l’ activX)
https://assiste.com/404_La_page_demandee_n_existe_pas.php
http://www.bitdefender.fr/scan8/ie.html
Copie/COLLE le rapport entier
A++
Ad-Aware (j'ai perdu les logs lors du scan donc voici le log des objets ayant été mis en quarantaine)
------------
ArchiveData(Virus en quarantaine.bckp)
Referencefile : SE1R135 27.11.2006
======================================================
TRACKING COOKIE
»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»
obj[0]=IECache Entry : Cookie:pierre@mediaplex.com/
obj[1]=IECache Entry : Cookie:pierre@bs.serving-sys.com/
obj[2]=IECache Entry : Cookie:pierre@casalemedia.com/
obj[3]=IECache Entry : Cookie:pierre@atdmt.com/
obj[4]=IECache Entry : Cookie:pierre@doubleclick.net/
obj[5]=IECache Entry : Cookie:pierre@bfast.com/
obj[6]=IECache Entry : Cookie:pierre@adtech.de/
obj[7]=IECache Entry : Cookie:pierre@bluestreak.com/
obj[8]=IECache Entry : Cookie:pierre@advertising.com/
obj[9]=IECache Entry : Cookie:pierre@stat.onestat.com/
obj[10]=IECache Entry : Cookie:pierre@ehg-neuftelecom.hitbox.com/
obj[11]=IECache Entry : Cookie:pierre@as1.falkag.de/
obj[12]=IECache Entry : Cookie:pierre@tradedoubler.com/
obj[13]=IECache Entry : Cookie:pierre@hitbox.com/
obj[14]=IECache Entry : Cookie:pierre@fl01.ct2.comclick.com/
obj[15]=IECache Entry : Cookie:pierre@www.cibleclick.com/
obj[16]=IECache Entry : Cookie:pierre@kelkoo.com/
obj[17]=IECache Entry : Cookie:pierre@estat.com/
obj[18]=IECache Entry : Cookie:pierre@weborama.fr/
obj[19]=IECache Entry : Cookie:pierre@valueclick.com/
obj[20]=IECache Entry : Cookie:pierre@kelkoo.fr/
obj[21]=IECache Entry : Cookie:pierre@statcounter.com/
obj[22]=IECache Entry : Cookie:pierre@247realmedia.com/
obj[23]=IECache Entry : Cookie:pierre@statse.webtrendslive.com/
obj[24]=IECache Entry : Cookie:pierre@www.smartadserver.com/
obj[25]=IECache Entry : Cookie:pierre@overture.com/
obj[26]=IECache Entry : Cookie:pierre@serving-sys.com/
obj[27]=IECache Entry : Cookie:pierre@server.iad.liveperson.net/
obj[28]=IECache Entry : Cookie:pierre@zedo.com/
obj[29]=IECache Entry : Cookie:pierre@media.fastclick.net/
obj[30]=IECache Entry : Cookie:pierre@iv2.bluestreak.com/
obj[31]=IECache Entry : Cookie:pierre@apmebf.com/
obj[32]=IECache Entry : Cookie:pierre@2o7.net/
obj[33]=IECache Entry : Cookie:pierre@ehg-yvesrocher.hitbox.com/
obj[34]=IECache Entry : Cookie:pierre@metriweb.be/
obj[35]=IECache Entry : Cookie:pierre@fastclick.net/
obj[36]=IECache Entry : Cookie:pierre@sextracker.com/
obj[37]=IECache Entry : Cookie:pierre@ehg-francetelecom.hitbox.com/
obj[38]=IECache Entry : Cookie:pierre@tribalfusion.com/
obj[39]=IECache Entry : Cookie:pierre@ehg-corusentertainment.hitbox.com/
obj[40]=IECache Entry : Cookie:pierre@counter16.sextracker.com/
obj[41]=IECache Entry : Cookie:pierre@webads.nl/
obj[42]=IECache Entry : Cookie:pierre@data.coremetrics.com/
obj[43]=IECache Entry : Cookie:pierre@promo.match.com/
obj[44]=IECache Entry : Cookie:pierre@ads.multimania.lycos.fr/
obj[45]=IECache Entry : Cookie:pierre@realmedia.com/
Spybot
--------
--- Search result list ---
SpySheriff: Réglages utilisateur (Clé du registre, fixed)
HKEY_USERS\S-1-5-21-3389435761-2815227213-3683320934-1006\Software\SNO2
PestTrap: Dossier Programme (Répertoire, fixed)
c:\Program Files\PestTrap\
MediaPlex: Cookie traceur (Internet Explorer: Pierre) (Cookie, fixed)
CasaleMedia: Cookie traceur (Internet Explorer: Pierre) (Cookie, fixed)
Avenue A, Inc.: Cookie traceur (Internet Explorer: Pierre) (Cookie, fixed)
DoubleClick: Cookie traceur (Internet Explorer: Pierre) (Cookie, fixed)
BFast: Cookie traceur (Internet Explorer: Pierre) (Cookie, fixed)
BlueStreak: Cookie traceur (Internet Explorer: Pierre) (Cookie, fixed)
Advertising.com: Cookie traceur (Internet Explorer: Pierre) (Cookie, fixed)
HitBox: Cookie traceur (Internet Explorer: Pierre) (Cookie, fixed)
Tradedoubler: Cookie traceur (Internet Explorer: Pierre) (Cookie, fixed)
HitBox: Cookie traceur (Internet Explorer: Pierre) (Cookie, fixed)
WebTrends live: Cookie traceur (Internet Explorer: Pierre) (Cookie, fixed)
ValueClick: Cookie traceur (Internet Explorer: Pierre) (Cookie, fixed)
Statcounter: Cookie traceur (Internet Explorer: Pierre) (Cookie, fixed)
WebTrends live: Cookie traceur (Internet Explorer: Pierre) (Cookie, fixed)
MediaPlex: Cookie traceur (Internet Explorer: Pierre) (Cookie, fixed)
Zedo: Cookie traceur (Internet Explorer: Pierre) (Cookie, fixed)
FastClick: Cookie traceur (Internet Explorer: Pierre) (Cookie, fixed)
BlueStreak: Cookie traceur (Internet Explorer: Pierre) (Cookie, fixed)
MediaPlex: Cookie traceur (Internet Explorer: Pierre) (Cookie, fixed)
Zanox: Cookie traceur (Internet Explorer: Pierre) (Cookie, fixed)
WebTrends live: Cookie traceur (Internet Explorer: Pierre) (Cookie, fixed)
HitBox: Cookie traceur (Internet Explorer: Pierre) (Cookie, fixed)
FastClick: Cookie traceur (Internet Explorer: Pierre) (Cookie, fixed)
SexTracker: Cookie traceur (Internet Explorer: Pierre) (Cookie, fixed)
HitBox: Cookie traceur (Internet Explorer: Pierre) (Cookie, fixed)
HitBox: Cookie traceur (Internet Explorer: Pierre) (Cookie, fixed)
SexTracker: Cookie traceur (Internet Explorer: Pierre) (Cookie, fixed)
CoreMetrics: Cookie traceur (Internet Explorer: Pierre) (Cookie, fixed)
TagASaurus: Cookie traceur (Internet Explorer: Pierre) (Cookie, fixed)
PestTrap: Cookie traceur (Mozilla: default) (Cookie, fixed)
PestTrap: Cookie traceur (Mozilla: default) (Cookie, fixed)
PestTrap: Cookie traceur (Mozilla: default) (Cookie, fixed)
PestTrap: Cookie traceur (Mozilla: default) (Cookie, fixed)
--- Spybot - Search & Destroy version: 1.4 (build: 20050523) ---
2005-05-31 blindman.exe (1.0.0.1)
2005-05-31 SpybotSD.exe (1.4.0.3)
2005-05-31 TeaTimer.exe (1.4.0.2)
2006-11-28 unins000.exe (51.41.0.0)
2005-05-31 Update.exe (1.4.0.0)
2006-02-06 advcheck.dll (1.0.2.0)
2005-05-31 aports.dll (2.1.0.0)
2005-05-31 borlndmm.dll (7.0.4.453)
2005-05-31 delphimm.dll (7.0.4.453)
2005-05-31 SDHelper.dll (1.4.0.0)
2006-02-20 Tools.dll (2.0.0.2)
2005-05-31 UnzDll.dll (1.73.1.1)
2005-05-31 ZipDll.dll (1.73.2.0)
2006-11-24 Includes\Cookies.sbi (*)
2006-10-13 Includes\Dialer.sbi (*)
2006-11-24 Includes\DialerC.sbi (*)
2006-11-24 Includes\Hijackers.sbi (*)
2006-11-24 Includes\HijackersC.sbi (*)
2006-10-27 Includes\Keyloggers.sbi (*)
2006-11-24 Includes\KeyloggersC.sbi (*)
2006-10-13 Includes\Malware.sbi (*)
2006-11-24 Includes\MalwareC.sbi (*)
2006-10-20 Includes\PUPS.sbi (*)
2006-11-24 Includes\PUPSC.sbi (*)
2006-11-24 Includes\Revision.sbi (*)
2006-10-13 Includes\Security.sbi (*)
2006-11-24 Includes\SecurityC.sbi (*)
2006-10-13 Includes\Spybots.sbi (*)
2006-11-24 Includes\SpybotsC.sbi (*)
2005-02-17 Includes\Tracks.uti
2006-11-24 Includes\Trojans.sbi (*)
2006-11-24 Includes\TrojansC.sbi (*)
--- System information ---
Windows XP (Build: 2600) Service Pack 2
/ Step By Step Interactive Training / SP2: Mise à jour de sécurité pour Step by Step Interactive Training (KB898458)
/ Windows Media Player 9: Mise à jour de sécurité pour Lecteur Windows Media 9 (KB917734)
/ Windows XP / SP3: Correctif Windows XP - KB834707
/ Windows XP / SP3: Correctif Windows XP - KB867282
/ Windows XP / SP3: Correctif Windows XP - KB873333
/ Windows XP / SP3: Correctif Windows XP - KB873339
/ Windows XP / SP3: Mise à jour de sécurité pour Windows XP (KB883939)
/ Windows XP / SP3: Correctif Windows XP - KB885250
/ Windows XP / SP3: Correctif Windows XP - KB885835
/ Windows XP / SP3: Correctif Windows XP - KB885836
/ Windows XP / SP3: Correctif Windows XP - KB885884
/ Windows XP / SP3: Correctif Windows XP - KB886185
/ Windows XP / SP3: Correctif Windows XP - KB887472
/ Windows XP / SP3: Correctif Windows XP - KB887742
/ Windows XP / SP3: Correctif Windows XP - KB888113
/ Windows XP / SP3: Correctif Windows XP - KB888302
/ Windows XP / SP3: Mise à jour de sécurité pour Windows XP (KB890046)
/ Windows XP / SP3: Correctif Windows XP - KB890047
/ Windows XP / SP3: Correctif Windows XP - KB890175
/ Windows XP / SP3: Correctif Windows XP - KB890859
/ Windows XP / SP3: Correctif Windows XP - KB890923
/ Windows XP / SP3: Correctif Windows XP - KB891781
/ Windows XP / SP3: Mise à jour de sécurité pour Windows XP (KB893066)
/ Windows XP / SP3: Correctif Windows XP - KB893086
/ Windows XP / SP3: Mise à jour de sécurité pour Windows XP (KB893756)
/ Windows XP / SP3: Windows Installer 3.1 (KB893803)
/ Windows XP / SP3: Windows Installer 3.1 (KB893803)
/ Windows XP / SP3: Mise à jour pour Windows XP (KB894391)
/ Windows XP / SP3: Mise à jour de sécurité pour Windows XP (KB896358)
/ Windows XP / SP3: Mise à jour de sécurité pour Windows XP (KB896422)
/ Windows XP / SP3: Mise à jour de sécurité pour Windows XP (KB896423)
/ Windows XP / SP3: Mise à jour de sécurité pour Windows XP (KB896424)
/ Windows XP / SP3: Mise à jour de sécurité pour Windows XP (KB896428)
/ Windows XP / SP3: Mise à jour de sécurité pour Windows XP (KB896688)
/ Windows XP / SP3: Mise à jour pour Windows XP (KB896727)
/ Windows XP / SP3: Mise à jour pour Windows XP (KB898461)
/ Windows XP / SP3: Mise à jour de sécurité pour Windows XP (KB899587)
/ Windows XP / SP3: Mise à jour de sécurité pour Windows XP (KB899588)
/ Windows XP / SP3: Mise à jour de sécurité pour Windows XP (KB899591)
/ Windows XP / SP3: Mise à jour pour Windows XP (KB900485)
/ Windows XP / SP3: Mise à jour de sécurité pour Windows XP (KB900725)
/ Windows XP / SP3: Mise à jour de sécurité pour Windows XP (KB901017)
/ Windows XP / SP3: Mise à jour de sécurité pour Windows XP (KB901214)
/ Windows XP / SP3: Mise à jour de sécurité pour Windows XP (KB902400)
/ Windows XP / SP3: Mise à jour de sécurité pour Windows XP (KB903235)
/ Windows XP / SP3: Mise à jour de sécurité pour Windows XP (KB904706)
/ Windows XP / SP3: Mise à jour de sécurité pour Windows XP (KB905414)
/ Windows XP / SP3: Mise à jour de sécurité pour Windows XP (KB905749)
/ Windows XP / SP3: Mise à jour de sécurité pour Windows XP (KB905915)
/ Windows XP / SP3: Mise à jour de sécurité pour Windows XP (KB908519)
/ Windows XP / SP3: Mise à jour de sécurité pour Windows XP (KB908531)
/ Windows XP / SP3: Mise à jour pour Windows XP (KB910437)
/ Windows XP / SP3: Mise à jour de sécurité pour Windows XP (KB911280)
/ Windows XP / SP3: Mise à jour de sécurité pour Windows XP (KB911562)
/ Windows XP / SP3: Mise à jour de sécurité pour Windows XP (KB911567)
/ Windows XP / SP3: Mise à jour de sécurité pour Windows XP (KB911927)
/ Windows XP / SP3: Mise à jour de sécurité pour Windows XP (KB912812)
/ Windows XP / SP3: Mise à jour de sécurité pour Windows XP (KB912919)
/ Windows XP / SP3: Mise à jour de sécurité pour Windows XP (KB913446)
/ Windows XP / SP3: Mise à jour de sécurité pour Windows XP (KB913580)
/ Windows XP / SP3: Mise à jour de sécurité pour Windows XP (KB914388)
/ Windows XP / SP3: Mise à jour de sécurité pour Windows XP (KB914389)
/ Windows XP / SP3: Mise à jour de sécurité pour Windows XP (KB916281)
/ Windows XP / SP3: Mise à jour pour Windows XP (KB916595)
/ Windows XP / SP3: Mise à jour de sécurité pour Windows XP (KB917159)
/ Windows XP / SP3: Mise à jour de sécurité pour Windows XP (KB917344)
/ Windows XP / SP3: Mise à jour de sécurité pour Windows XP (KB917422)
/ Windows XP / SP3: Mise à jour de sécurité pour Windows XP (KB917953)
/ Windows XP / SP3: Mise à jour de sécurité pour Windows XP (KB918439)
/ Windows XP / SP3: Mise à jour de sécurité pour Windows XP (KB918899)
/ Windows XP / SP3: Mise à jour de sécurité pour Windows XP (KB919007)
/ Windows XP / SP3: Mise à jour de sécurité pour Windows XP (KB920213)
/ Windows XP / SP3: Mise à jour de sécurité pour Windows XP (KB920214)
/ Windows XP / SP3: Mise à jour de sécurité pour Windows XP (KB920670)
/ Windows XP / SP3: Mise à jour de sécurité pour Windows XP (KB920683)
/ Windows XP / SP3: Mise à jour de sécurité pour Windows XP (KB920685)
/ Windows XP / SP3: Mise à jour pour Windows XP (KB920872)
/ Windows XP / SP3: Mise à jour de sécurité pour Windows XP (KB921398)
/ Windows XP / SP3: Mise à jour de sécurité pour Windows XP (KB921883)
/ Windows XP / SP3: Mise à jour pour Windows XP (KB922582)
/ Windows XP / SP3: Mise à jour de sécurité pour Windows XP (KB922616)
/ Windows XP / SP3: Mise à jour de sécurité pour Windows XP (KB922760)
/ Windows XP / SP3: Mise à jour de sécurité pour Windows XP (KB922819)
/ Windows XP / SP3: Mise à jour de sécurité pour Windows XP (KB923191)
/ Windows XP / SP3: Mise à jour de sécurité pour Windows XP (KB923414)
/ Windows XP / SP3: Mise à jour de sécurité pour Windows XP (KB923980)
/ Windows XP / SP3: Mise à jour de sécurité pour Windows XP (KB924191)
/ Windows XP / SP3: Mise à jour de sécurité pour Windows XP (KB924270)
/ Windows XP / SP3: Mise à jour de sécurité pour Windows XP (KB924496)
/ Windows XP / SP3: Mise à jour de sécurité pour Windows XP (KB925486)
--- Startup entries list ---
Located: HK_LM:Run, !AVG Anti-Spyware
command: "C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\avgas.exe" /minimized
file: C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\avgas.exe
size: 6266880
MD5: 01d90ae5dccbce0c7b52874fec35a608
Located: HK_LM:Run, AGRSMMSG
command: AGRSMMSG.exe
file: C:\WINDOWS\AGRSMMSG.exe
size: 88363
MD5: 32f801e868bd2006911d49128cdd6312
Located: HK_LM:Run, ATIPTA
command: C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe
file: C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe
size: 335872
MD5: 75a3ed9713c372c3bf3f819595585f40
Located: HK_LM:Run, avast!
command: C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
file: C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
size: 108160
MD5: 264c095d36aa973d9c64909124d0ba60
Located: HK_LM:Run, MSConfig
command: C:\WINDOWS\PCHealth\HelpCtr\Binaries\MSConfig.exe /auto
file: C:\WINDOWS\PCHealth\HelpCtr\Binaries\MSConfig.exe
size: 160768
MD5: 8cb106ce4c4e21511ea98a0cf0d8b5dd
Located: HK_LM:Run, NDSTray.exe
command: NDSTray.exe
file:
Located: HK_LM:Run, openvpn-gui
command: C:\OpenVPN\bin\openvpn-gui.exe
file: C:\OpenVPN\bin\openvpn-gui.exe
size: 99328
MD5: d5de3333ea2bb10015f484134565db92
Located: HK_LM:Run, PadTouch
command: "C:\Program Files\TOSHIBA\PadTouch\PadExe.exe
file: C:\Program Files\TOSHIBA\PadTouch\PadExe.exe
size: 1019904
MD5: e076f66a8b68d2b09e5e895b3353ca65
Located: HK_LM:Run, PowerDOCSAPIHost
command: "C:\Program Files\Hummingbird\DM Extensions\papihost.exe"
file: C:\Program Files\Hummingbird\DM Extensions\papihost.exe
size: 430162
MD5: 5de1259e991ada4eea2d927ea7c6352f
Located: HK_LM:Run, SmoothView
command: C:\Program Files\TOSHIBA\Utilitaire de zoom TOSHIBA\SmoothView.exe
file: C:\Program Files\TOSHIBA\Utilitaire de zoom TOSHIBA\SmoothView.exe
size: 118784
MD5: 85002e4e0afb66eed76b333a5000f5b9
Located: HK_LM:Run, SunJavaUpdateSched
command: C:\Program Files\Java\jre1.5.0_07\bin\jusched.exe
file: C:\Program Files\Java\jre1.5.0_07\bin\jusched.exe
size: 36975
MD5: 892eb04bc0b1a542a97197d3fa31268f
Located: HK_LM:Run, SynTPEnh
command: C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
file: C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
size: 507904
MD5: bf35235d8c7840c8533414b81c5ed8e1
Located: HK_LM:Run, SynTPLpr
command: C:\Program Files\Synaptics\SynTP\SynTPLpr.exe
file: C:\Program Files\Synaptics\SynTP\SynTPLpr.exe
size: 98304
MD5: 74ac1d999fb14b095c66eebf0925b5e1
Located: HK_LM:Run, TFncKy
command: TFncKy.exe
file:
Located: HK_LM:Run, THotkey
command: C:\Program Files\Toshiba\Toshiba Applet\thotkey.exe
file: C:\Program Files\Toshiba\Toshiba Applet\thotkey.exe
size: 430080
MD5: d6d6fb19b09caa7ea9239c848607099c
Located: HK_LM:Run, TPSMain
command: TPSMain.exe
file: C:\WINDOWS\system32\TPSMain.exe
size: 266240
MD5: 928d691fe50cf07ea460d3f312481b03
Located: HK_CU:Run, ctfmon.exe
command: C:\WINDOWS\system32\ctfmon.exe
file: C:\WINDOWS\system32\ctfmon.exe
size: 15360
MD5: 5584247b568c2e53934873f4b655fe6a
Located: HK_CU:Run, Mozilla Quick Launch
command: "C:\Program Files\mozilla.org\Mozilla\Mozilla.exe" -turbo
file: C:\Program Files\mozilla.org\Mozilla\Mozilla.exe
size: 146560
MD5: ee4bd66bb7e0e4b031c77110fbedbea9
Located: HK_CU:Run, MSMSGS
command: "C:\Program Files\Messenger\msmsgs.exe" /background
file: C:\Program Files\Messenger\msmsgs.exe
size: 1694208
MD5: 74e6e96c6f0e2eca4edbb7f7a468f259
Located: HK_CU:Run, neufbox_reminder
command: "C:\Program Files\Kit ADSL\Wizard\PostInstall_Checker.exe" -r
file: C:\Program Files\Kit ADSL\Wizard\PostInstall_Checker.exe
size: 465920
MD5: 8354db507b23fb6a1c9f955ba5acceac
Located: HK_CU:Run, TOSCDSPD
command: C:\Program Files\TOSHIBA\TOSCDSPD\toscdspd.exe
file: C:\Program Files\TOSHIBA\TOSCDSPD\toscdspd.exe
size: 65536
MD5: a7a0ed26c68892135f23f4d4f176e2e3
Located: Démarrage (tous utilisateurs), Microsoft Office.lnk
command: C:\Program Files\Microsoft Office\Office10\OSA.EXE
file: C:\Program Files\Microsoft Office\Office10\OSA.EXE
size: 83360
MD5: 5bc65464354a9fd3beaa28e18839734a
Located: Démarrage (utilisateur), Lancement rapide de Microsoft Office OneNote 2003.lnk
command: C:\Program Files\Microsoft Office\OFFICE11\ONENOTEM.EXE
file: C:\Program Files\Microsoft Office\OFFICE11\ONENOTEM.EXE
size: 59080
MD5: 028d53c3fede8771d9ccb56287965984
Located: System.ini, AtiExtEvent
command: Ati2evxx.dll
file: Ati2evxx.dll
Located: System.ini, crypt32chain
command: crypt32.dll
file: crypt32.dll
Located: System.ini, cryptnet
command: cryptnet.dll
file: cryptnet.dll
Located: System.ini, cscdll
command: cscdll.dll
file: cscdll.dll
Located: System.ini, req
command: C:\WINDOWS\system32\req.dll
file: C:\WINDOWS\system32\req.dll
Located: System.ini, ScCertProp
command: wlnotify.dll
file: wlnotify.dll
Located: System.ini, Schedule
command: wlnotify.dll
file: wlnotify.dll
Located: System.ini, sclgntfy
command: sclgntfy.dll
file: sclgntfy.dll
Located: System.ini, SensLogn
command: WlNotify.dll
file: WlNotify.dll
Located: System.ini, termsrv
command: wlnotify.dll
file: wlnotify.dll
Located: System.ini, WgaLogon
command: WgaLogon.dll
file: WgaLogon.dll
Located: System.ini, wlballoon
command: wlnotify.dll
file: wlnotify.dll
--- Browser helper object list ---
{06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} (AcroIEHlprObj Class)
BHO name:
CLSID name: AcroIEHlprObj Class
description: Adobe Acrobat reader
classification: Legitimate
known filename: AcroIEhelper.ocx<br>AcroIEhelper.dll
info link: https://get2.adobe.com/reader/otherversions/
info source: TonyKlein
Path: C:\Program Files\Adobe\Acrobat 6.0\Reader\ActiveX\
Long name: AcroIEHelper.dll
Short name: ACROIE~1.DLL
Date (created): 03/11/2003 13:17:44
Date (last access): 28/11/2006 15:21:54
Date (last write): 03/11/2003 13:17:44
Filesize: 54248
Attributes: archive
MD5: FC7850324464E4D19A24A03D882B5CC4
CRC32: 452E8571
Version: 6.0.1.1091
{761497BB-D6F0-462C-B6EB-D4DAF1D92D43} (SSVHelper Class)
BHO name:
CLSID name: SSVHelper Class
Path: C:\Program Files\Java\jre1.5.0_07\bin\
Long name: ssv.dll
Short name:
Date (created): 03/05/2006 01:57:02
Date (last access): 28/11/2006 14:42:24
Date (last write): 03/05/2006 02:14:38
Filesize: 434279
Attributes: archive
MD5: 162186B53BBB5964F9E806F96934338E
CRC32: 1C68240D
Version: 5.0.70.3
--- ActiveX list ---
Microsoft XML Parser for Java (Microsoft XML Parser for Java)
DPF name: Microsoft XML Parser for Java
CLSID name:
Installer:
Codebase: file://C:\WINDOWS\Java\classes\xmldso.cab
description:
classification: Legitimate
known filename: %WINDIR%\Java\classes\xmldso.cab
info link:
info source: Patrick M. Kolla
{17492023-C23A-453E-A040-C7C580BBF700} (Windows Genuine Advantage Validation Tool)
DPF name:
CLSID name: Windows Genuine Advantage Validation Tool
Installer: C:\WINDOWS\Downloaded Program Files\LegitCheckControl.inf
Codebase: http://download.microsoft.com/download/E/5/6/E5611B10-0D6D-4117-8430-A67417AA88CD/LegitCheckControl.cab
description:
classification: Legitimate
known filename: LegitCheckControl.DLL
info link:
info source: Safer Networking Ltd.
Path: C:\WINDOWS\system32\
Long name: LegitCheckControl.dll
Short name: LEGITC~1.DLL
Date (created): 12/07/2005 17:04:22
Date (last access): 28/11/2006 13:44:30
Date (last write): 19/06/2006 15:19:42
Filesize: 571184
Attributes: archive
MD5: 31BF58C9814F840EB10A2B7A410ABEA3
CRC32: DAFAE165
Version: 1.5.540.0
{1754A1BA-A1DF-4F10-B199-AA55AA1A120F} (InstallerBehaviorFactory Class)
DPF name:
CLSID name: InstallerBehaviorFactory Class
Installer: C:\WINDOWS\Downloaded Program Files\MsnInstC.inf
Codebase: https://www.msn.com/fr-fr/
description:
classification: Legitimate
known filename: MsnInstC.dll
info link:
info source: Safer Networking Ltd.
Path: C:\WINDOWS\Downloaded Program Files\
Long name: MsnInstC.dll
Short name:
Date (created): 14/12/2005 09:24:52
Date (last access): 28/11/2006 15:23:56
Date (last write): 14/12/2005 09:24:52
Filesize: 323272
Attributes: archive
MD5: 76B975A59A1018572F9F84DEB3BEE9A1
CRC32: 68B0407D
Version: 11.0.1213.1
{5D86DDB5-BDF9-441B-9E9E-D4730F4EE499} (BDSCANONLINE Control)
DPF name:
CLSID name: BDSCANONLINE Control
Installer: C:\WINDOWS\Downloaded Program Files\oscan8.inf
Codebase: http://download.bitdefender.com/resources/scan8/oscan8.cab
description:
classification: Legitimate
known filename: oscan8.ocx
info link:
info source: Safer Networking Ltd.
Path: C:\WINDOWS\DOWNLO~1\
Long name: oscan8.ocx
Short name:
Date (created): 01/06/2006 02:54:16
Date (last access): 28/11/2006 14:55:08
Date (last write): 01/06/2006 02:54:16
Filesize: 471040
Attributes: archive
MD5: 9026F860148F0569BD92AEEFC4BDDFD7
CRC32: D1520CCE
Version: 1.0.0.1
{6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class)
DPF name:
CLSID name: WUWebControl Class
Installer: C:\WINDOWS\Downloaded Program Files\wuweb.inf
Codebase: http://v5.windowsupdate.microsoft.com/v5consumer/V5Controls/en/x86/client/wuweb_site.cab?1106585603834
description:
classification: Legitimate
known filename: wuweb.dll
info link:
info source: Safer Networking Ltd.
Path: C:\WINDOWS\system32\
Long name: wuweb.dll
Short name:
Date (created): 24/08/2004 07:20:42
Date (last access): 28/11/2006 13:45:46
Date (last write): 26/05/2005 03:16:30
Filesize: 173536
Attributes: archive
MD5: C459F2D5E64C942F3F66E1CD7F1C4C00
CRC32: EEF66B50
Version: 5.8.0.2469
{8AD9C840-044E-11D1-B3E9-00805F499D93} (Java Runtime Environment 1.5.0)
DPF name: Java Runtime Environment 1.5.0
CLSID name: Java Plug-in 1.5.0_07
Installer:
Codebase: http://java.sun.com/update/1.5.0/jinstall-1_5_0_07-windows-i586.cab
description: Sun Java
classification: Legitimate
known filename: %PROGRAM FILES%\JabaSoft\JRE\*\Bin\npjava131.dll
info link:
info source: Patrick M. Kolla
Path: C:\Program Files\Java\jre1.5.0_07\bin\
Long name: NPJPI150_07.dll
Short name: NPJPI1~1.DLL
Date (created): 03/05/2006 01:57:02
Date (last access): 28/11/2006 13:18:18
Date (last write): 03/05/2006 02:14:38
Filesize: 69746
Attributes: archive
MD5: 2663A75A8F6DAD0F7C10BF920AE81940
CRC32: 5235B91D
Version: 5.0.70.3
{A18962F6-E6ED-40B1-97C9-1FB36F38BFA8} (Aurigma Image Uploader 3.5 Control)
DPF name:
CLSID name: Aurigma Image Uploader 3.5 Control
Installer: C:\WINDOWS\Downloaded Program Files\ImageUploader3.inf
Codebase: http://www.photoways.com/clients/ImageUploader3.cab
description:
classification: Legitimate
known filename: ImageUploader3.ocx
info link:
info source: Safer Networking Ltd.
Path: C:\WINDOWS\Downloaded Program Files\
Long name: ImageUploader3.ocx
Short name: IMAGEU~1.OCX
Date (created): 22/03/2005 18:32:42
Date (last access): 28/11/2006 13:38:46
Date (last write): 22/03/2005 18:32:42
Filesize: 1918488
Attributes: archive
MD5: 43559FD5607AA570A4908157717CDA7C
CRC32: 58CEE6CD
Version: 3.5.4.0
{CAFEEFAC-0014-0002-0005-ABCDEFFEDCBA} (Java Runtime Environment 1.4.2)
DPF name: Java Runtime Environment 1.4.2
CLSID name: Java Plug-in 1.4.2_05
Installer:
Codebase: https://www.oracle.com/java/technologies/
description:
classification: Legitimate
known filename: NPJPI142_05.dll
info link:
info source: Safer Networking Ltd.
Path: C:\Program Files\Java\j2re1.4.2_05\bin\
Long name: NPJPI142_05.dll
Short name: NPJPI1~1.DLL
Date (created): 24/08/2004 07:34:14
Date (last access): 28/11/2006 13:18:00
Date (last write): 24/08/2004 07:34:14
Filesize: 65650
Attributes: archive
MD5: 174488C8877FA852448D1937C322AABB
CRC32: 62C2460D
Version: 1.4.2.50
{CAFEEFAC-0015-0000-0007-ABCDEFFEDCBA} (Java Runtime Environment 1.5.0)
DPF name: Java Runtime Environment 1.5.0
CLSID name: Java Plug-in 1.5.0_07
Installer:
Codebase: http://java.sun.com/update/1.5.0/jinstall-1_5_0_07-windows-i586.cab
description:
classification: Legitimate
known filename: NPJPI150_07.dll
info link:
info source: Safer Networking Ltd.
Path: C:\Program Files\Java\jre1.5.0_07\bin\
Long name: NPJPI150_07.dll
Short name: NPJPI1~1.DLL
Date (created): 03/05/2006 01:57:02
Date (last access): 28/11/2006 15:33:22
Date (last write): 03/05/2006 02:14:38
Filesize: 69746
Attributes: archive
MD5: 2663A75A8F6DAD0F7C10BF920AE81940
CRC32: 5235B91D
Version: 5.0.70.3
{CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} (Java Runtime Environment 1.5.0)
DPF name: Java Runtime Environment 1.5.0
CLSID name: Java Plug-in 1.5.0_07
Installer:
Codebase: http://java.sun.com/update/1.5.0/jinstall-1_5_0_07-windows-i586.cab
description:
classification: Legitimate
known filename: npjpi150_06.dll
info link:
info source: Safer Networking Ltd.
Path: C:\Program Files\Java\jre1.5.0_07\bin\
Long name: NPJPI150_07.dll
Short name: NPJPI1~1.DLL
Date (created): 03/05/2006 01:57:02
Date (last access): 28/11/2006 15:33:22
Date (last write): 03/05/2006 02:14:38
Filesize: 69746
Attributes: archive
MD5: 2663A75A8F6DAD0F7C10BF920AE81940
CRC32: 5235B91D
Version: 5.0.70.3
{CE3409C4-9E26-4F8E-83E4-778498F9E7B4} (PB_Uploader Class)
DPF name:
CLSID name: PB_Uploader Class
Installer:
Codebase: http://www.photoways.com/clients/uploader_v2.1.0.53.cab
description:
classification: Open for discussion
known filename: uploader.ocx
info link:
info source: Safer Networking Ltd.
Path: C:\WINDOWS\Downloaded Program Files\
Long name: uploader_uni.ocx
Short name: UPLOAD~1.OCX
Date (created): 18/09/2006 09:31:24
Date (last access): 28/11/2006 13:38:48
Date (last write): 13/11/2006 12:14:56
Filesize: 1064176
Attributes: archive
MD5: 22419EED252AAD0E0C592F618DBF3FF5
CRC32: E55E782A
Version: 2.1.0.53
--- Process list ---
PID: 0 ( 0) [System]
PID: 648 ( 4) \SystemRoot\System32\smss.exe
PID: 704 ( 648) \??\C:\WINDOWS\system32\csrss.exe
PID: 732 ( 648) \??\C:\WINDOWS\system32\winlogon.exe
PID: 776 ( 732) C:\WINDOWS\system32\services.exe
size: 108544
MD5: 732E0B1ABAACE15D80EC19056B0A2AF9
PID: 788 ( 732) C:\WINDOWS\system32\lsass.exe
size: 13312
MD5: 9F3744A5C6F49291A7A685040A013399
PID: 952 ( 776) C:\WINDOWS\system32\Ati2evxx.exe
size: 425984
MD5: 09266AE04746D652680120BE8BE76F53
PID: 968 ( 776) C:\WINDOWS\system32\svchost.exe
size: 14336
MD5: 1BD6C2F707A275CB7C16FD99FE0F31CA
PID: 1028 ( 776) C:\WINDOWS\system32\svchost.exe
size: 14336
MD5: 1BD6C2F707A275CB7C16FD99FE0F31CA
PID: 1072 ( 776) C:\WINDOWS\System32\svchost.exe
size: 14336
MD5: 1BD6C2F707A275CB7C16FD99FE0F31CA
PID: 1216 ( 776) C:\WINDOWS\system32\svchost.exe
size: 14336
MD5: 1BD6C2F707A275CB7C16FD99FE0F31CA
PID: 1252 ( 776) C:\WINDOWS\system32\svchost.exe
size: 14336
MD5: 1BD6C2F707A275CB7C16FD99FE0F31CA
PID: 1540 ( 776) C:\WINDOWS\system32\spoolsv.exe
size: 57856
MD5: DA81EC57ACD4CDC3D4C51CF3D409AF9F
PID: 1744 ( 776) C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
size: 59008
MD5: DC995DA2D258C0590C3AE07EC68BFEE6
PID: 1768 ( 776) C:\Program Files\Alwil Software\Avast4\ashServ.exe
size: 108160
MD5: 1CA6D8776D4F615E7861E35221582AE0
PID: 1836 ( 776) C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe
size: 204800
MD5: E8FBDCC8D618D1BB84B828F247A6244B
PID: 1844 ( 732) C:\WINDOWS\system32\Ati2evxx.exe
size: 425984
MD5: 09266AE04746D652680120BE8BE76F53
PID: 1932 (1876) C:\WINDOWS\Explorer.EXE
size: 1036288
MD5: 4C33E5B9A6197B6ED215F6CFBA0A2DAA
PID: 1956 ( 776) C:\Program Files\TOSHIBA\ConfigFree\CFSvcs.exe
size: 36864
MD5: 527235C8109BF5D4DBDA7D1948648C46
PID: 184 ( 776) C:\Program Files\Fichiers communs\Microsoft Shared\VS7Debug\mdm.exe
size: 270336
MD5: 8520BEB4B37160D45CB99E8C1BBC8222
PID: 200 ( 776) C:\Program Files\lotus\notes\ntmulti.exe
size: 53297
MD5: 5B7711E1D810D5BD987A3357C7C56A45
PID: 248 ( 776) C:\WINDOWS\system32\svchost.exe
size: 14336
MD5: 1BD6C2F707A275CB7C16FD99FE0F31CA
PID: 1552 (1932) C:\Program Files\Toshiba\Toshiba Applet\thotkey.exe
size: 430080
MD5: D6D6FB19B09CAA7EA9239C848607099C
PID: 1576 (1932) C:\Program Files\TOSHIBA\Commandes TOSHIBA\TFncKy.exe
size: 114688
MD5: F97D4599B5E38A0CCCB9851F0D996637
PID: 1592 (1932) C:\Program Files\Synaptics\SynTP\SynTPLpr.exe
size: 98304
MD5: 74AC1D999FB14B095C66EEBF0925B5E1
PID: 1792 (1932) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
size: 507904
MD5: BF35235D8C7840C8533414B81C5ED8E1
PID: 1812 (1932) C:\Program Files\TOSHIBA\Utilitaire de zoom TOSHIBA\SmoothView.exe
size: 118784
MD5: 85002E4E0AFB66EED76B333A5000F5B9
PID: 1888 (1932) C:\Program Files\TOSHIBA\PadTouch\PadExe.exe
size: 1019904
MD5: E076F66A8B68D2B09E5E895B3353CA65
PID: 2008 (1932) C:\Program Files\TOSHIBA\ConfigFree\NDSTray.exe
size: 892928
MD5: 65E0D99F87F0B5963019BC91083E75CE
PID: 2060 (1496) C:\WINDOWS\system32\TPSBattM.exe
size: 40960
MD5: CFA123E0EA693D0D084C60D4BB39B2B7
PID: 2080 (1932) C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
size: 108160
MD5: 264C095D36AA973D9C64909124D0BA60
PID: 2136 (1932) C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe
size: 335872
MD5: 75A3ED9713C372C3BF3F819595585F40
PID: 2156 (1932) C:\WINDOWS\AGRSMMSG.exe
size: 88363
MD5: 32F801E868BD2006911D49128CDD6312
PID: 2168 (1932) C:\Program Files\Hummingbird\DM Extensions\papihost.exe
size: 430162
MD5: 5DE1259E991ADA4EEA2D927EA7C6352F
PID: 2188 (1932) C:\OpenVPN\bin\openvpn-gui.exe
size: 99328
MD5: D5DE3333EA2BB10015F484134565DB92
PID: 2200 (1932) C:\Program Files\Java\jre1.5.0_07\bin\jusched.exe
size: 36975
MD5: 892EB04BC0B1A542A97197D3FA31268F
PID: 2224 (1072) C:\WINDOWS\system32\wscntfy.exe
size: 13824
MD5: 54CDDAD404557ED98433D6ECBFC92691
PID: 2244 ( 776) C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
size: 370304
MD5: 165408DD1BB1CC1AC41115F906FCFACB
PID: 2252 (1932) C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\avgas.exe
size: 6266880
MD5: 01D90AE5DCCBCE0C7B52874FEC35A608
PID: 2264 (1932) C:\WINDOWS\system32\ctfmon.exe
size: 15360
MD5: 5584247B568C2E53934873F4B655FE6A
PID: 2416 (1932) C:\Program Files\TOSHIBA\TOSCDSPD\toscdspd.exe
size: 65536
MD5: A7A0ED26C68892135F23F4D4F176E2E3
PID: 2624 (1932) C:\Program Files\Messenger\msmsgs.exe
size: 1694208
MD5: 74E6E96C6F0E2ECA4EDBB7F7A468F259
PID: 2856 (1932) C:\Program Files\Kit ADSL\Wizard\PostInstall_Checker.exe
size: 465920
MD5: 8354DB507B23FB6A1C9F955BA5ACCEAC
PID: 2888 ( 776) C:\WINDOWS\System32\alg.exe
size: 44544
MD5: 2FE681D10C5FC343DBBC0610B8DD4D24
PID: 3104 (1932) C:\Program Files\Microsoft Office\OFFICE11\ONENOTEM.EXE
size: 59080
MD5: 028D53C3FEDE8771D9CCB56287965984
PID: 3204 ( 776) C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
size: 251520
MD5: 30020C9FD8754F4099F9D868C6C87051
PID: 584 (1932) C:\Program Files\Internet Explorer\IEXPLORE.EXE
size: 93184
MD5: 833E2B3F0E2484C0F2B804AE871B4381
PID: 3764 (1932) C:\DOCUME~1\Pierre\LOCALS~1\Temp\Répertoire temporaire 1 pour hijackthis[1].zip\HijackThis.exe
size: 218112
MD5: EE86268E59E4B38961E7C40D16BE5BB4
PID: 2232 ( 584) C:\Documents and Settings\Pierre\Local Settings\Temporary Internet Files\Content.IE5\C5Q3SLYN\aawsepersonal[1].exe
size: 2855080
MD5: 6286CF12EEAE984D381773F097BAF981
PID: 3472 (2232) C:\PROGRA~1\Lavasoft\AD-AWA~1\Ad-Aware.exe
size: 824832
MD5: 1B0EDBF799B57EAD6EF68A82906C2097
PID: 3152 (2332) C:\PROGRA~1\mozilla.org\Mozilla\Mozilla.exe
size: 146560
MD5: EE4BD66BB7E0E4B031C77110FBEDBEA9
PID: 3784 (1900) C:\Program Files\Spybot - Search & Destroy\SpybotSD.exe
size: 4393096
MD5: 09CA174A605B480318731E691DC98539
PID: 4 ( 0) System
--- Browser start & search pages list ---
Spybot - Search & Destroy browser pages report, 28/11/2006 15:33:28
HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main\Local Page
C:\WINDOWS\system32\blank.htm
HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main\Search Page
http://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main\Start Page
http://neufportail.fr/
HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main\Default_Page_URL
http://www.neuf.fr
HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Main\Local Page
%SystemRoot%\system32\blank.htm
HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Main\Search Page
http://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Main\Start Page
http://www.microsoft.com/isapi/redir.dll?prd={SUB_PRD}&clcid={SUB_CLSID}&pver={SUB_PVER}&ar=home
HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Main\Default_Page_URL
http://www.microsoft.com/isapi/redir.dll?prd=ie&pver=6&ar=msnhome
HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Main\Default_Search_URL
http://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Search\SearchAssistant
https://www.bing.com/?toHttps=1&redig=8F3F334EA60E4B1CB4D040DCFE393A89{SUB_RFC1766}/srchasst/srchasst.htm
HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Search\CustomizeSearch
https://www.bing.com/?toHttps=1&redig=8F3F334EA60E4B1CB4D040DCFE393A89{SUB_RFC1766}/srchasst/srchcust.htm
--- Winsock Layered Service Provider list ---
Protocol 0: MSAFD Tcpip [TCP/IP]
GUID: {E70F1AA0-AB8B-11CF-8CA3-00805F48A192}
Filename: %SystemRoot%\system32\mswsock.dll
Description: Microsoft Windows NT/2k/XP IP protocol
DB filename: %SystemRoot%\system32\mswsock.dll
DB protocol: MSAFD Tcpip [*]
Protocol 1: MSAFD Tcpip [UDP/IP]
GUID: {E70F1AA0-AB8B-11CF-8CA3-00805F48A192}
Filename: %SystemRoot%\system32\mswsock.dll
Description: Microsoft Windows NT/2k/XP IP protocol
DB filename: %SystemRoot%\system32\mswsock.dll
DB protocol: MSAFD Tcpip [*]
Protocol 2: MSAFD Tcpip [RAW/IP]
GUID: {E70F1AA0-AB8B-11CF-8CA3-00805F48A192}
Filename: %SystemRoot%\system32\mswsock.dll
Description: Microsoft Windows NT/2k/XP IP protocol
DB filename: %SystemRoot%\system32\mswsock.dll
DB protocol: MSAFD Tcpip [*]
Protocol 3: RSVP UDP Service Provider
GUID: {9D60A9E0-337A-11D0-BD88-0000C082E69A}
Filename: %SystemRoot%\system32\rsvpsp.dll
Description: Microsoft Windows NT/2k/XP RVSP
DB filename: %SystemRoot%\system32\rsvpsp.dll
DB protocol: RSVP * Service Provider
Protocol 4: RSVP TCP Service Provider
GUID: {9D60A9E0-337A-11D0-BD88-0000C082E69A}
Filename: %SystemRoot%\system32\rsvpsp.dll
Description: Microsoft Windows NT/2k/XP RVSP
DB filename: %SystemRoot%\system32\rsvpsp.dll
DB protocol: RSVP * Service Provider
Protocol 5: MSAFD Irda [IrDA]
GUID: {3972523D-2AF1-11D1-B655-00805F3642CC}
Filename: %SystemRoot%\system32\mswsock.dll
Description: Infrared protocol
DB filename: %SystemRoot%\system32\mswsock.dll
DB protocol: MSAFD Irda [IrDA]
Protocol 6: MSAFD NetBIOS [\Device\NetBT_Tcpip_{20D928D1-279C-4750-A772-AF49050AE27C}] SEQPACKET 7
GUID: {8D5F1830-C273-11CF-95C8-00805F48A192}
Filename: %SystemRoot%\system32\mswsock.dll
Description: Microsoft Windows NT/2k/XP NetBios protocol
DB filename: %SystemRoot%\system32\mswsock.dll
DB protocol: MSAFD NetBIOS *
Protocol 7: MSAFD NetBIOS [\Device\NetBT_Tcpip_{20D928D1-279C-4750-A772-AF49050AE27C}] DATAGRAM 7
GUID: {8D5F1830-C273-11CF-95C8-00805F48A192}
Filename: %SystemRoot%\system32\mswsock.dll
Description: Microsoft Windows NT/2k/XP NetBios protocol
DB filename: %SystemRoot%\system32\mswsock.dll
DB protocol: MSAFD NetBIOS *
Protocol 8: MSAFD NetBIOS [\Device\NetBT_Tcpip_{21C09C30-470A-4284-A99A-0F060FEB3E27}] SEQPACKET 4
GUID: {8D5F1830-C273-11CF-95C8-00805F48A192}
Filename: %SystemRoot%\system32\mswsock.dll
Description: Microsoft Windows NT/2k/XP NetBios protocol
DB filename: %SystemRoot%\system32\mswsock.dll
DB protocol: MSAFD NetBIOS *
Protocol 9: MSAFD NetBIOS [\Device\NetBT_Tcpip_{21C09C30-470A-4284-A99A-0F060FEB3E27}] DATAGRAM 4
GUID: {8D5F1830-C273-11CF-95C8-00805F48A192}
Filename: %SystemRoot%\system32\mswsock.dll
Description: Microsoft Windows NT/2k/XP NetBios protocol
DB filename: %SystemRoot%\system32\mswsock.dll
DB protocol: MSAFD NetBIOS *
Protocol 10: MSAFD NetBIOS [\Device\NetBT_Tcpip_{36585666-C0F3-43DF-BB62-B3919272EF2D}] SEQPACKET 3
GUID: {8D5F1830-C273-11CF-95C8-00805F48A192}
Filename: %SystemRoot%\system32\mswsock.dll
Description: Microsoft Windows NT/2k/XP NetBios protocol
DB filename: %SystemRoot%\system32\mswsock.dll
DB protocol: MSAFD NetBIOS *
Protocol 11: MSAFD NetBIOS [\Device\NetBT_Tcpip_{36585666-C0F3-43DF-BB62-B3919272EF2D}] DATAGRAM 3
GUID: {8D5F1830-C273-11CF-95C8-00805F48A192}
Filename: %SystemRoot%\system32\mswsock.dll
Description: Microsoft Windows NT/2k/XP NetBios protocol
DB filename: %SystemRoot%\system32\mswsock.dll
DB protocol: MSAFD NetBIOS *
Protocol 12: MSAFD NetBIOS [\Device\NetBT_Tcpip_{915DE9CF-09D1-40F9-B70E-C470A33417FC}] SEQPACKET 0
GUID: {8D5F1830-C273-11CF-95C8-00805F48A192}
Filename: %SystemRoot%\system32\mswsock.dll
Description: Microsoft Windows NT/2k/XP NetBios protocol
DB filename: %SystemRoot%\system32\mswsock.dll
DB protocol: MSAFD NetBIOS *
Protocol 13: MSAFD NetBIOS [\Device\NetBT_Tcpip_{915DE9CF-09D1-40F9-B70E-C470A33417FC}] DATAGRAM 0
GUID: {8D5F1830-C273-11CF-95C8-00805F48A192}
Filename: %SystemRoot%\system32\mswsock.dll
Description: Microsoft Windows NT/2k/XP NetBios protocol
DB filename: %SystemRoot%\system32\mswsock.dll
DB protocol: MSAFD NetBIOS *
Protocol 14: MSAFD NetBIOS [\Device\NetBT_Tcpip_{15892CE6-EFCB-425B-8825-B1869BD1A5BA}] SEQPACKET 1
GUID: {8D5F1830-C273-11CF-95C8-00805F48A192}
Filename: %SystemRoot%\system32\mswsock.dll
Description: Microsoft Windows NT/2k/XP NetBios protocol
DB filename: %SystemRoot%\system32\mswsock.dll
DB protocol: MSAFD NetBIOS *
Protocol 15: MSAFD NetBIOS [\Device\NetBT_Tcpip_{15892CE6-EFCB-425B-8825-B1869BD1A5BA}] DATAGRAM 1
GUID: {8D5F1830-C273-11CF-95C8-00805F48A192}
Filename: %SystemRoot%\system32\mswsock.dll
Description: Microsoft Windows NT/2k/XP NetBios protocol
DB filename: %SystemRoot%\system32\mswsock.dll
DB protocol: MSAFD NetBIOS *
Protocol 16: MSAFD NetBIOS [\Device\NetBT_Tcpip_{8805D968-9DDD-4D3C-AB61-40184C9C796A}] SEQPACKET 2
GUID: {8D5F1830-C273-11CF-95C8-00805F48A192}
Filename: %SystemRoot%\system32\mswsock.dll
Description: Microsoft Windows NT/2k/XP NetBios protocol
DB filename: %SystemRoot%\system32\mswsock.dll
DB protocol: MSAFD NetBIOS *
Protocol 17: MSAFD NetBIOS [\Device\NetBT_Tcpip_{8805D968-9DDD-4D3C-AB61-40184C9C796A}] DATAGRAM 2
GUID: {8D5F1830-C273-11CF-95C8-00805F48A192}
Filename: %SystemRoot%\system32\mswsock.dll
Description: Microsoft Windows NT/2k/XP NetBios protocol
DB filename: %SystemRoot%\system32\mswsock.dll
DB protocol: MSAFD NetBIOS *
Protocol 18: MSAFD NetBIOS [\Device\NetBT_Tcpip_{921CA57A-C75C-40C2-8700-67FBF7E0F121}] SEQPACKET 5
GUID: {8D5F1830-C273-11CF-95C8-00805F48A192}
Filename: %SystemRoot%\system32\mswsock.dll
Description: Microsoft Windows NT/2k/XP NetBios protocol
DB filename: %SystemRoot%\system32\mswsock.dll
DB protocol: MSAFD NetBIOS *
Protocol 19: MSAFD NetBIOS [\Device\NetBT_Tcpip_{921CA57A-C75C-40C2-8700-67FBF7E0F121}] DATAGRAM 5
GUID: {8D5F1830-C273-11CF-95C8-00805F48A192}
Filename: %SystemRoot%\system32\mswsock.dll
Description: Microsoft Windows NT/2k/XP NetBios protocol
DB filename: %SystemRoot%\system32\mswsock.dll
DB protocol: MSAFD NetBIOS *
Protocol 20: MSAFD NetBIOS [\Device\NetBT_Tcpip_{488A0DEF-33F3-453A-B448-E3F283C8BFA5}] SEQPACKET 6
GUID: {8D5F1830-C273-11CF-95C8-00805F48A192}
Filename: %SystemRoot%\system32\mswsock.dll
Description: Microsoft Windows NT/2k/XP NetBios protocol
DB filename: %SystemRoot%\system32\mswsock.dll
DB protocol: MSAFD NetBIOS *
Protocol 21: MSAFD NetBIOS [\Device\NetBT_Tcpip_{488A0DEF-33F3-453A-B448-E3F283C8BFA5}] DATAGRAM 6
GUID: {8D5F1830-C273-11CF-95C8-00805F48A192}
Filename: %SystemRoot%\system32\mswsock.dll
Description: Microsoft Windows NT/2k/XP NetBios protocol
DB filename: %SystemRoot%\system32\mswsock.dll
DB protocol: MSAFD NetBIOS *
Namespace Provider 0: TCP/IP
GUID: {22059D40-7E9E-11CF-AE5A-00AA00A7112B}
Filename: %SystemRoot%\System32\mswsock.dll
Description: Microsoft Windows NT/2k/XP TCP/IP name space provider
DB filename: %SystemRoot%\system32\mswsock.dll
DB protocol: TCP/IP
Namespace Provider 1: NTDS
GUID: {3B2637EE-E580-11CF-A555-00C04FD8D4AC}
Filename: %SystemRoot%\System32\winrnr.dll
Description: Microsoft Windows NT/2k/XP name space provider
DB filename: %SystemRoot%\system32\winrnr.dll
DB protocol: NTDS
Namespace Provider 2: Espace de noms NLA (Network Location Awareness)
GUID: {6642243A-3BA8-4AA6-BAA5-2E0BD71FDD83}
Filename: %SystemRoot%\System32\mswsock.dll
Description: Microsoft Windows NT/2k/XP name space provider
DB filename: %SystemRoot%\system32\mswsock.dll
DB protocol: NLA-Namespace
--- Uninstall list ---
1.06 (Ad-Aware SE Personal)
publisher: Lavasoft
help link: https://www.adaware.com/
(AddressBook)
Adibou V.3.10 (C:) (Adibou V.3.10 (C:))
uninstall cmd: "C:\coktel\Adibou3\Uninst.exe"
ATI - Utilitaire de désinstallation du logiciel 6.14.10.1008 (All ATI Software)
uninstall cmd: C:\Program Files\ATI Technologies\UninstallAll\AtiCimUn.exe
ATI Display Driver 8.08-041111a-021421C-Toshiba (ATI Display Driver)
uninstall cmd: rundll32 C:\WINDOWS\system32\atiiiexx.dll,_InfEngUnInstallINFFile_RunDLL@16 -force_restart -flags:0x2010001 -inf_class:DISPLAY -clean
avast! Antivirus 4.7 (avast!)
version (major): 4
version (minor): 7
install location: C:\PROGRA~1\ALWILS~1\Avast4
install source: C:\PROGRA~1\ALWILS~1\Avast4\setup
uninstall cmd: rundll32 C:\PROGRA~1\ALWILS~1\Avast4\Setup\setiface.dll,RunSetup
publisher: Alwil Software
help link: https://www.avast.com/fr-fr/index
AVG Anti-Spyware 7.5 (AVGAntiSpyware75)
install location: C:\Program Files\Grisoft\AVG Anti-Spyware 7.5
uninstall cmd: C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\Uninstall.exe
publisher: Grisoft Ltd.
help link: https://www.avg.com/fr-fr/homepage
(Branding)
(Connection Manager)
(DirectAnimation)
(DirectDrawEx)
(DXM_Runtime)
(Fontcore)
HijackThis 1.99.1 1.99.1 (HijackThis)
uninstall cmd: C:\DOCUME~1\Pierre\LOCALS~1\Temp\Répertoire temporaire 1 pour hijackthis[1].zip\HijackThis.exe /uninstall
publisher: Soeperman Enterprises Ltd.
(ICW)
(IE40)
(IE4Data)
(IE5BAKEX)
(IEData)
(InstallShield Uninstall Information)
SRS WOW XT Plug-In for Windows Media Player for Toshiba version 1.0.2 1.0.2.0 (InstallShield_{68D368EE-F5AC-4402-BD45-B454B5453FE1})
version: 16777218
version (major): 1
estimated size: 3131
install date: 20040824
install location: C:\Program Files\srslabs\wowxt plug-in\
install source: C:\DOCUME~1\PROPRI~1\LOCALS~1\Temp\_is3\
uninstall cmd: C:\PROGRA~1\FICHIE~1\INSTAL~1\Driver\9\INTEL3~1\IDriver.exe /M{68D368EE-F5AC-4402-BD45-B454B5453FE1}
publisher: SRS Labs, Inc.
help link: https://dts.com/
help telephone: 1-949-442-1070
PCI 1620 Cardbus Controller and Software 1.00.0001 (InstallShield_{AE2310DC-B261-4D84-BE03-BD318EB41B78})
version: 16777217
version (major): 1
estimated size: 560
install date: 20040824
install source: E:\PMR400222EU0 Osaka20 SP2 en,gr,fr,it\CardBus Driver\
uninstall cmd: C:\PROGRA~1\FICHIE~1\INSTAL~1\Driver\7\INTEL3~1\IDriver.exe /M{AE2310DC-B261-4D84-BE03-BD318EB41B78} /l1036
publisher: Texas Instruments Inc
comments: Your Comments
contact: Customer Support Department
help link: https://yoursite.com/
help telephone: 1-555-555-4505
readme: ...
Correctif Windows XP - KB834707 20040929.110854 (KB834707)
uninstall cmd: C:\WINDOWS\$NtUninstallKB834707$\spuninst\spuninst.exe
publisher: Microsoft Corporation
help link: https://support.microsoft.com/en-us/help/834707
Correctif Windows XP - KB867282 20050127.090417 (KB867282)
uninstall cmd: C:\WINDOWS\$NtUninstallKB867282$\spuninst\spuninst.exe
publisher: Microsoft Corporation
help link: https://support.microsoft.com/en-us/help/867282
Correctif Windows XP - KB873333 20050114.005213 (KB873333)
uninstall cmd: C:\WINDOWS\$NtUninstallKB873333$\spuninst\spuninst.exe
publisher: Microsoft Corporation
help link: https://support.microsoft.com/en-us/help/873333/ms05-012-vulnerability-in-ole-and-com-could-allow-remote-code-executio
Correctif Windows XP - KB873339 20041117.092459 (KB873339)
uninstall cmd: C:\WINDOWS\$NtUninstallKB873339$\spuninst\spuninst.exe
publisher: Microsoft Corporation
help link: https://support.microsoft.com/en-us/help/873339
Mise à jour de sécurité pour Windows XP (KB883939) 1 (KB883939)
install date: 20050619
uninstall cmd: "C:\WINDOWS\$NtUninstallKB883939$\spuninst\spuninst.exe"
publisher: Microsoft Corporation
help link: https://support.microsoft.com/en-us/help/883939
(KB884016)
Correctif Windows XP - KB885250 20050118.202711 (KB885250)
uninstall cmd: C:\WINDOWS\$NtUninstallKB885250$\spuninst\spuninst.exe
publisher: Microsoft Corporation
help link: https://support.microsoft.com/en-us/help/885250
Correctif Windows XP - KB885835 20041027.181713 (KB885835)
uninstall cmd: C:\WINDOWS\$NtUninstallKB885835$\spuninst\spuninst.exe
publisher: Microsoft Corporation
help link: https://support.microsoft.com/en-us/help/885835/ms04-044-vulnerabilities-in-windows-kernel-and-lsass-could-allow-eleva
Correctif Windows XP - KB885836 20041028.173203 (KB885836)
uninstall cmd: C:\WINDOWS\$NtUninstallKB885836$\spuninst\spuninst.exe
publisher: Microsoft Corporation
help link: https://support.microsoft.com/en-us/help/885836/ms04-041-a-vulnerability-in-wordpad-could-allow-code-execution
Correctif Windows XP - KB885884 20040924.025457 (KB885884)
uninstall cmd: C:\WINDOWS\$NtUninstallKB885884$\spuninst\spuninst.exe
publisher: Microsoft Corporation
help link: https://support.microsoft.com/en-us/help/885884
Correctif Windows XP - KB886185 20041021.090540 (KB886185)
uninstall cmd: C:\WINDOWS\$NtUninstallKB886185$\spuninst\spuninst.exe
publisher: Microsoft Corporation
help link: https://support.microsoft.com/en-us/help/886185
Correctif Windows XP - KB887472 20041014.162858 (KB887472)
uninstall cmd: C:\WINDOWS\$NtUninstallKB887472$\spuninst\spuninst.exe
publisher: Microsoft Corporation
help link: https://support.microsoft.com/en-us/help/887472
Correctif Windows XP - KB887742 20041103.095002 (KB887742)
uninstall cmd: C:\WINDOWS\$NtUninstallKB887742$\spuninst\spuninst.exe
publisher: Microsoft Corporation
help link: https://support.microsoft.com/en-us/help/887742
Correctif Windows XP - KB888113 20041116.131036 (KB888113)
uninstall cmd: C:\WINDOWS\$NtUninstallKB888113$\spuninst\spuninst.exe
publisher: Microsoft Corporation
help link: https://support.microsoft.com/en-us/help/888113
Correctif Windows XP - KB888302 20041207.111426 (KB888302)
uninstall cmd: C:\WINDOWS\$NtUninstallKB888302$\spuninst\spuninst.exe
publisher: Microsoft Corporation
help link: https://support.microsoft.com/en-us/help/888302
Mise à jour de sécurité pour Windows XP (KB890046) 1 (KB890046)
install date: 20050619
uninstall cmd: "C:\WINDOWS\$NtUninstallKB890046$\spuninst\spuninst.exe"
publisher: Microsoft Corporation
help link: https://support.microsoft.com/en-us/help/890046
Correctif Windows XP - KB890047 20041221.124506 (KB890047)
uninstall cmd: C:\WINDOWS\$NtUninstallKB890047$\spuninst\spuninst.exe
publisher: Microsoft Corporation
help link: https://support.microsoft.com/en-us/help/890047
Correctif Windows XP - KB890175 20041201.233338 (KB890175)
uninstall cmd: C:\WINDOWS\$NtUninstallKB890175$\spuninst\spuninst.exe
publisher: Microsoft Corporation
help link: https://support.microsoft.com/en-us/help/890175/ms05-001-vulnerability-in-html-help-could-allow-code-execution
Correctif Windows XP - KB890859 1 (KB890859)
install date: 20050413
uninstall cmd: "C:\WINDOWS\$NtUninstallKB890859$\spuninst\spuninst.exe"
publisher: Microsoft Corporation
help link: https://support.microsoft.com/en-us/help/890859
Correctif Windows XP - KB890923 1 (KB890923)
install date: 20050413
uninstall cmd: "C:\WINDOWS\$NtUninstallKB890923$\spuninst\spuninst.exe"
publisher: Microsoft Corporation
help link: https://support.microsoft.com/en-us/help/890923
Correctif Windows XP - KB891781 20050110.165439 (KB891781)
uninstall cmd: C:\WINDOWS\$NtUninstallKB891781$\spuninst\spuninst.exe
publisher: Microsoft Corporation
help link: https://support.microsoft.com/en-us/help/891781
Correctif Windows XP - KB893066 1 (KB893066)
install date: 20050413
uninstall cmd: "C:\WINDOWS\$NtUninstallKB893066$\spuninst\spuninst.exe"
publisher: Microsoft Corporation
help link: https://support.microsoft.com/en-us/help/893066/ms05-019-vulnerabilities-in-tcp-ip-could-allow-remote-code-execution-a
Correctif Windows XP - KB893086 1 (KB893086)
install date: 20050413
uninstall cmd: "C:\WINDOWS\$NtUninstallKB893086$\spuninst\spuninst.exe"
publisher: Microsoft Corporation
help link: https://support.microsoft.com/en-us/help/893086
Mise à jour de sécurité pour Windows XP (KB893756) 1 (KB893756)
install date: 20050904
uninstall cmd: "C:\WINDOWS\$NtUninstallKB893756$\spuninst\spuninst.exe"
publisher: Microsoft Corporation
help link: https://support.microsoft.com/en-us/help/893756
Windows Installer 3.1 (KB893803) 3.1 (KB893803)
uninstall cmd: "C:\WINDOWS\$MSI31Uninstall_KB893803$\spuninst\spuninst.exe"
publisher: Microsoft Corporation
help link: https://support.microsoft.com/en-us/help/893803/windows-installer-3-1-v2-3-1-4000-2435-is-available
Windows Installer 3.1 (KB893803) 3.1 (KB893803v2)
uninstall cmd: "C:\WINDOWS\$MSI31Uninstall_KB893803v2$\spuninst\spuninst.exe"
publisher: Microsoft Corporation
help link: https://support.microsoft.com/en-us/help/893803/windows-installer-3-1-v2-3-1-4000-2435-is-available
Mise à jour pour Windows XP (KB894391) 1 (KB894391)
install date: 20050904
uninstall cmd: "C:\WINDOWS\$NtUninstallKB894391$\spuninst\spuninst.exe"
publisher: Microsoft Corporation
help link: https://support.microsoft.com/en-us/help/894391/
Mise à jour de sécurité pour Windows XP (KB896358) 1 (KB896358)
install date: 20050619
uninstall cmd: "C:\WINDOWS\$NtUninstallKB896358$\spuninst\spuninst.exe"
publisher: Microsoft Corporation
help link: https://support.microsoft.com/en-us/help/896358/ms05-026-a-vulnerability-in-html-help-could-allow-remote-code-executio
Mise à jour de sécurité pour Windows XP (KB896422) 1 (KB896422)
install date: 20050619
uninstall cmd: "C:\WINDOWS\$NtUninstallKB896422$\spuninst\spuninst.exe"
publisher: Microsoft Corporation
help link: https://support.microsoft.com/en-us/help/896422/ms05-027-vulnerability-in-server-message-block-could-allow-remote-code
Mise à jour de sécurité pour Windows
------------
ArchiveData(Virus en quarantaine.bckp)
Referencefile : SE1R135 27.11.2006
======================================================
TRACKING COOKIE
»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»
obj[0]=IECache Entry : Cookie:pierre@mediaplex.com/
obj[1]=IECache Entry : Cookie:pierre@bs.serving-sys.com/
obj[2]=IECache Entry : Cookie:pierre@casalemedia.com/
obj[3]=IECache Entry : Cookie:pierre@atdmt.com/
obj[4]=IECache Entry : Cookie:pierre@doubleclick.net/
obj[5]=IECache Entry : Cookie:pierre@bfast.com/
obj[6]=IECache Entry : Cookie:pierre@adtech.de/
obj[7]=IECache Entry : Cookie:pierre@bluestreak.com/
obj[8]=IECache Entry : Cookie:pierre@advertising.com/
obj[9]=IECache Entry : Cookie:pierre@stat.onestat.com/
obj[10]=IECache Entry : Cookie:pierre@ehg-neuftelecom.hitbox.com/
obj[11]=IECache Entry : Cookie:pierre@as1.falkag.de/
obj[12]=IECache Entry : Cookie:pierre@tradedoubler.com/
obj[13]=IECache Entry : Cookie:pierre@hitbox.com/
obj[14]=IECache Entry : Cookie:pierre@fl01.ct2.comclick.com/
obj[15]=IECache Entry : Cookie:pierre@www.cibleclick.com/
obj[16]=IECache Entry : Cookie:pierre@kelkoo.com/
obj[17]=IECache Entry : Cookie:pierre@estat.com/
obj[18]=IECache Entry : Cookie:pierre@weborama.fr/
obj[19]=IECache Entry : Cookie:pierre@valueclick.com/
obj[20]=IECache Entry : Cookie:pierre@kelkoo.fr/
obj[21]=IECache Entry : Cookie:pierre@statcounter.com/
obj[22]=IECache Entry : Cookie:pierre@247realmedia.com/
obj[23]=IECache Entry : Cookie:pierre@statse.webtrendslive.com/
obj[24]=IECache Entry : Cookie:pierre@www.smartadserver.com/
obj[25]=IECache Entry : Cookie:pierre@overture.com/
obj[26]=IECache Entry : Cookie:pierre@serving-sys.com/
obj[27]=IECache Entry : Cookie:pierre@server.iad.liveperson.net/
obj[28]=IECache Entry : Cookie:pierre@zedo.com/
obj[29]=IECache Entry : Cookie:pierre@media.fastclick.net/
obj[30]=IECache Entry : Cookie:pierre@iv2.bluestreak.com/
obj[31]=IECache Entry : Cookie:pierre@apmebf.com/
obj[32]=IECache Entry : Cookie:pierre@2o7.net/
obj[33]=IECache Entry : Cookie:pierre@ehg-yvesrocher.hitbox.com/
obj[34]=IECache Entry : Cookie:pierre@metriweb.be/
obj[35]=IECache Entry : Cookie:pierre@fastclick.net/
obj[36]=IECache Entry : Cookie:pierre@sextracker.com/
obj[37]=IECache Entry : Cookie:pierre@ehg-francetelecom.hitbox.com/
obj[38]=IECache Entry : Cookie:pierre@tribalfusion.com/
obj[39]=IECache Entry : Cookie:pierre@ehg-corusentertainment.hitbox.com/
obj[40]=IECache Entry : Cookie:pierre@counter16.sextracker.com/
obj[41]=IECache Entry : Cookie:pierre@webads.nl/
obj[42]=IECache Entry : Cookie:pierre@data.coremetrics.com/
obj[43]=IECache Entry : Cookie:pierre@promo.match.com/
obj[44]=IECache Entry : Cookie:pierre@ads.multimania.lycos.fr/
obj[45]=IECache Entry : Cookie:pierre@realmedia.com/
Spybot
--------
--- Search result list ---
SpySheriff: Réglages utilisateur (Clé du registre, fixed)
HKEY_USERS\S-1-5-21-3389435761-2815227213-3683320934-1006\Software\SNO2
PestTrap: Dossier Programme (Répertoire, fixed)
c:\Program Files\PestTrap\
MediaPlex: Cookie traceur (Internet Explorer: Pierre) (Cookie, fixed)
CasaleMedia: Cookie traceur (Internet Explorer: Pierre) (Cookie, fixed)
Avenue A, Inc.: Cookie traceur (Internet Explorer: Pierre) (Cookie, fixed)
DoubleClick: Cookie traceur (Internet Explorer: Pierre) (Cookie, fixed)
BFast: Cookie traceur (Internet Explorer: Pierre) (Cookie, fixed)
BlueStreak: Cookie traceur (Internet Explorer: Pierre) (Cookie, fixed)
Advertising.com: Cookie traceur (Internet Explorer: Pierre) (Cookie, fixed)
HitBox: Cookie traceur (Internet Explorer: Pierre) (Cookie, fixed)
Tradedoubler: Cookie traceur (Internet Explorer: Pierre) (Cookie, fixed)
HitBox: Cookie traceur (Internet Explorer: Pierre) (Cookie, fixed)
WebTrends live: Cookie traceur (Internet Explorer: Pierre) (Cookie, fixed)
ValueClick: Cookie traceur (Internet Explorer: Pierre) (Cookie, fixed)
Statcounter: Cookie traceur (Internet Explorer: Pierre) (Cookie, fixed)
WebTrends live: Cookie traceur (Internet Explorer: Pierre) (Cookie, fixed)
MediaPlex: Cookie traceur (Internet Explorer: Pierre) (Cookie, fixed)
Zedo: Cookie traceur (Internet Explorer: Pierre) (Cookie, fixed)
FastClick: Cookie traceur (Internet Explorer: Pierre) (Cookie, fixed)
BlueStreak: Cookie traceur (Internet Explorer: Pierre) (Cookie, fixed)
MediaPlex: Cookie traceur (Internet Explorer: Pierre) (Cookie, fixed)
Zanox: Cookie traceur (Internet Explorer: Pierre) (Cookie, fixed)
WebTrends live: Cookie traceur (Internet Explorer: Pierre) (Cookie, fixed)
HitBox: Cookie traceur (Internet Explorer: Pierre) (Cookie, fixed)
FastClick: Cookie traceur (Internet Explorer: Pierre) (Cookie, fixed)
SexTracker: Cookie traceur (Internet Explorer: Pierre) (Cookie, fixed)
HitBox: Cookie traceur (Internet Explorer: Pierre) (Cookie, fixed)
HitBox: Cookie traceur (Internet Explorer: Pierre) (Cookie, fixed)
SexTracker: Cookie traceur (Internet Explorer: Pierre) (Cookie, fixed)
CoreMetrics: Cookie traceur (Internet Explorer: Pierre) (Cookie, fixed)
TagASaurus: Cookie traceur (Internet Explorer: Pierre) (Cookie, fixed)
PestTrap: Cookie traceur (Mozilla: default) (Cookie, fixed)
PestTrap: Cookie traceur (Mozilla: default) (Cookie, fixed)
PestTrap: Cookie traceur (Mozilla: default) (Cookie, fixed)
PestTrap: Cookie traceur (Mozilla: default) (Cookie, fixed)
--- Spybot - Search & Destroy version: 1.4 (build: 20050523) ---
2005-05-31 blindman.exe (1.0.0.1)
2005-05-31 SpybotSD.exe (1.4.0.3)
2005-05-31 TeaTimer.exe (1.4.0.2)
2006-11-28 unins000.exe (51.41.0.0)
2005-05-31 Update.exe (1.4.0.0)
2006-02-06 advcheck.dll (1.0.2.0)
2005-05-31 aports.dll (2.1.0.0)
2005-05-31 borlndmm.dll (7.0.4.453)
2005-05-31 delphimm.dll (7.0.4.453)
2005-05-31 SDHelper.dll (1.4.0.0)
2006-02-20 Tools.dll (2.0.0.2)
2005-05-31 UnzDll.dll (1.73.1.1)
2005-05-31 ZipDll.dll (1.73.2.0)
2006-11-24 Includes\Cookies.sbi (*)
2006-10-13 Includes\Dialer.sbi (*)
2006-11-24 Includes\DialerC.sbi (*)
2006-11-24 Includes\Hijackers.sbi (*)
2006-11-24 Includes\HijackersC.sbi (*)
2006-10-27 Includes\Keyloggers.sbi (*)
2006-11-24 Includes\KeyloggersC.sbi (*)
2006-10-13 Includes\Malware.sbi (*)
2006-11-24 Includes\MalwareC.sbi (*)
2006-10-20 Includes\PUPS.sbi (*)
2006-11-24 Includes\PUPSC.sbi (*)
2006-11-24 Includes\Revision.sbi (*)
2006-10-13 Includes\Security.sbi (*)
2006-11-24 Includes\SecurityC.sbi (*)
2006-10-13 Includes\Spybots.sbi (*)
2006-11-24 Includes\SpybotsC.sbi (*)
2005-02-17 Includes\Tracks.uti
2006-11-24 Includes\Trojans.sbi (*)
2006-11-24 Includes\TrojansC.sbi (*)
--- System information ---
Windows XP (Build: 2600) Service Pack 2
/ Step By Step Interactive Training / SP2: Mise à jour de sécurité pour Step by Step Interactive Training (KB898458)
/ Windows Media Player 9: Mise à jour de sécurité pour Lecteur Windows Media 9 (KB917734)
/ Windows XP / SP3: Correctif Windows XP - KB834707
/ Windows XP / SP3: Correctif Windows XP - KB867282
/ Windows XP / SP3: Correctif Windows XP - KB873333
/ Windows XP / SP3: Correctif Windows XP - KB873339
/ Windows XP / SP3: Mise à jour de sécurité pour Windows XP (KB883939)
/ Windows XP / SP3: Correctif Windows XP - KB885250
/ Windows XP / SP3: Correctif Windows XP - KB885835
/ Windows XP / SP3: Correctif Windows XP - KB885836
/ Windows XP / SP3: Correctif Windows XP - KB885884
/ Windows XP / SP3: Correctif Windows XP - KB886185
/ Windows XP / SP3: Correctif Windows XP - KB887472
/ Windows XP / SP3: Correctif Windows XP - KB887742
/ Windows XP / SP3: Correctif Windows XP - KB888113
/ Windows XP / SP3: Correctif Windows XP - KB888302
/ Windows XP / SP3: Mise à jour de sécurité pour Windows XP (KB890046)
/ Windows XP / SP3: Correctif Windows XP - KB890047
/ Windows XP / SP3: Correctif Windows XP - KB890175
/ Windows XP / SP3: Correctif Windows XP - KB890859
/ Windows XP / SP3: Correctif Windows XP - KB890923
/ Windows XP / SP3: Correctif Windows XP - KB891781
/ Windows XP / SP3: Mise à jour de sécurité pour Windows XP (KB893066)
/ Windows XP / SP3: Correctif Windows XP - KB893086
/ Windows XP / SP3: Mise à jour de sécurité pour Windows XP (KB893756)
/ Windows XP / SP3: Windows Installer 3.1 (KB893803)
/ Windows XP / SP3: Windows Installer 3.1 (KB893803)
/ Windows XP / SP3: Mise à jour pour Windows XP (KB894391)
/ Windows XP / SP3: Mise à jour de sécurité pour Windows XP (KB896358)
/ Windows XP / SP3: Mise à jour de sécurité pour Windows XP (KB896422)
/ Windows XP / SP3: Mise à jour de sécurité pour Windows XP (KB896423)
/ Windows XP / SP3: Mise à jour de sécurité pour Windows XP (KB896424)
/ Windows XP / SP3: Mise à jour de sécurité pour Windows XP (KB896428)
/ Windows XP / SP3: Mise à jour de sécurité pour Windows XP (KB896688)
/ Windows XP / SP3: Mise à jour pour Windows XP (KB896727)
/ Windows XP / SP3: Mise à jour pour Windows XP (KB898461)
/ Windows XP / SP3: Mise à jour de sécurité pour Windows XP (KB899587)
/ Windows XP / SP3: Mise à jour de sécurité pour Windows XP (KB899588)
/ Windows XP / SP3: Mise à jour de sécurité pour Windows XP (KB899591)
/ Windows XP / SP3: Mise à jour pour Windows XP (KB900485)
/ Windows XP / SP3: Mise à jour de sécurité pour Windows XP (KB900725)
/ Windows XP / SP3: Mise à jour de sécurité pour Windows XP (KB901017)
/ Windows XP / SP3: Mise à jour de sécurité pour Windows XP (KB901214)
/ Windows XP / SP3: Mise à jour de sécurité pour Windows XP (KB902400)
/ Windows XP / SP3: Mise à jour de sécurité pour Windows XP (KB903235)
/ Windows XP / SP3: Mise à jour de sécurité pour Windows XP (KB904706)
/ Windows XP / SP3: Mise à jour de sécurité pour Windows XP (KB905414)
/ Windows XP / SP3: Mise à jour de sécurité pour Windows XP (KB905749)
/ Windows XP / SP3: Mise à jour de sécurité pour Windows XP (KB905915)
/ Windows XP / SP3: Mise à jour de sécurité pour Windows XP (KB908519)
/ Windows XP / SP3: Mise à jour de sécurité pour Windows XP (KB908531)
/ Windows XP / SP3: Mise à jour pour Windows XP (KB910437)
/ Windows XP / SP3: Mise à jour de sécurité pour Windows XP (KB911280)
/ Windows XP / SP3: Mise à jour de sécurité pour Windows XP (KB911562)
/ Windows XP / SP3: Mise à jour de sécurité pour Windows XP (KB911567)
/ Windows XP / SP3: Mise à jour de sécurité pour Windows XP (KB911927)
/ Windows XP / SP3: Mise à jour de sécurité pour Windows XP (KB912812)
/ Windows XP / SP3: Mise à jour de sécurité pour Windows XP (KB912919)
/ Windows XP / SP3: Mise à jour de sécurité pour Windows XP (KB913446)
/ Windows XP / SP3: Mise à jour de sécurité pour Windows XP (KB913580)
/ Windows XP / SP3: Mise à jour de sécurité pour Windows XP (KB914388)
/ Windows XP / SP3: Mise à jour de sécurité pour Windows XP (KB914389)
/ Windows XP / SP3: Mise à jour de sécurité pour Windows XP (KB916281)
/ Windows XP / SP3: Mise à jour pour Windows XP (KB916595)
/ Windows XP / SP3: Mise à jour de sécurité pour Windows XP (KB917159)
/ Windows XP / SP3: Mise à jour de sécurité pour Windows XP (KB917344)
/ Windows XP / SP3: Mise à jour de sécurité pour Windows XP (KB917422)
/ Windows XP / SP3: Mise à jour de sécurité pour Windows XP (KB917953)
/ Windows XP / SP3: Mise à jour de sécurité pour Windows XP (KB918439)
/ Windows XP / SP3: Mise à jour de sécurité pour Windows XP (KB918899)
/ Windows XP / SP3: Mise à jour de sécurité pour Windows XP (KB919007)
/ Windows XP / SP3: Mise à jour de sécurité pour Windows XP (KB920213)
/ Windows XP / SP3: Mise à jour de sécurité pour Windows XP (KB920214)
/ Windows XP / SP3: Mise à jour de sécurité pour Windows XP (KB920670)
/ Windows XP / SP3: Mise à jour de sécurité pour Windows XP (KB920683)
/ Windows XP / SP3: Mise à jour de sécurité pour Windows XP (KB920685)
/ Windows XP / SP3: Mise à jour pour Windows XP (KB920872)
/ Windows XP / SP3: Mise à jour de sécurité pour Windows XP (KB921398)
/ Windows XP / SP3: Mise à jour de sécurité pour Windows XP (KB921883)
/ Windows XP / SP3: Mise à jour pour Windows XP (KB922582)
/ Windows XP / SP3: Mise à jour de sécurité pour Windows XP (KB922616)
/ Windows XP / SP3: Mise à jour de sécurité pour Windows XP (KB922760)
/ Windows XP / SP3: Mise à jour de sécurité pour Windows XP (KB922819)
/ Windows XP / SP3: Mise à jour de sécurité pour Windows XP (KB923191)
/ Windows XP / SP3: Mise à jour de sécurité pour Windows XP (KB923414)
/ Windows XP / SP3: Mise à jour de sécurité pour Windows XP (KB923980)
/ Windows XP / SP3: Mise à jour de sécurité pour Windows XP (KB924191)
/ Windows XP / SP3: Mise à jour de sécurité pour Windows XP (KB924270)
/ Windows XP / SP3: Mise à jour de sécurité pour Windows XP (KB924496)
/ Windows XP / SP3: Mise à jour de sécurité pour Windows XP (KB925486)
--- Startup entries list ---
Located: HK_LM:Run, !AVG Anti-Spyware
command: "C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\avgas.exe" /minimized
file: C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\avgas.exe
size: 6266880
MD5: 01d90ae5dccbce0c7b52874fec35a608
Located: HK_LM:Run, AGRSMMSG
command: AGRSMMSG.exe
file: C:\WINDOWS\AGRSMMSG.exe
size: 88363
MD5: 32f801e868bd2006911d49128cdd6312
Located: HK_LM:Run, ATIPTA
command: C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe
file: C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe
size: 335872
MD5: 75a3ed9713c372c3bf3f819595585f40
Located: HK_LM:Run, avast!
command: C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
file: C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
size: 108160
MD5: 264c095d36aa973d9c64909124d0ba60
Located: HK_LM:Run, MSConfig
command: C:\WINDOWS\PCHealth\HelpCtr\Binaries\MSConfig.exe /auto
file: C:\WINDOWS\PCHealth\HelpCtr\Binaries\MSConfig.exe
size: 160768
MD5: 8cb106ce4c4e21511ea98a0cf0d8b5dd
Located: HK_LM:Run, NDSTray.exe
command: NDSTray.exe
file:
Located: HK_LM:Run, openvpn-gui
command: C:\OpenVPN\bin\openvpn-gui.exe
file: C:\OpenVPN\bin\openvpn-gui.exe
size: 99328
MD5: d5de3333ea2bb10015f484134565db92
Located: HK_LM:Run, PadTouch
command: "C:\Program Files\TOSHIBA\PadTouch\PadExe.exe
file: C:\Program Files\TOSHIBA\PadTouch\PadExe.exe
size: 1019904
MD5: e076f66a8b68d2b09e5e895b3353ca65
Located: HK_LM:Run, PowerDOCSAPIHost
command: "C:\Program Files\Hummingbird\DM Extensions\papihost.exe"
file: C:\Program Files\Hummingbird\DM Extensions\papihost.exe
size: 430162
MD5: 5de1259e991ada4eea2d927ea7c6352f
Located: HK_LM:Run, SmoothView
command: C:\Program Files\TOSHIBA\Utilitaire de zoom TOSHIBA\SmoothView.exe
file: C:\Program Files\TOSHIBA\Utilitaire de zoom TOSHIBA\SmoothView.exe
size: 118784
MD5: 85002e4e0afb66eed76b333a5000f5b9
Located: HK_LM:Run, SunJavaUpdateSched
command: C:\Program Files\Java\jre1.5.0_07\bin\jusched.exe
file: C:\Program Files\Java\jre1.5.0_07\bin\jusched.exe
size: 36975
MD5: 892eb04bc0b1a542a97197d3fa31268f
Located: HK_LM:Run, SynTPEnh
command: C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
file: C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
size: 507904
MD5: bf35235d8c7840c8533414b81c5ed8e1
Located: HK_LM:Run, SynTPLpr
command: C:\Program Files\Synaptics\SynTP\SynTPLpr.exe
file: C:\Program Files\Synaptics\SynTP\SynTPLpr.exe
size: 98304
MD5: 74ac1d999fb14b095c66eebf0925b5e1
Located: HK_LM:Run, TFncKy
command: TFncKy.exe
file:
Located: HK_LM:Run, THotkey
command: C:\Program Files\Toshiba\Toshiba Applet\thotkey.exe
file: C:\Program Files\Toshiba\Toshiba Applet\thotkey.exe
size: 430080
MD5: d6d6fb19b09caa7ea9239c848607099c
Located: HK_LM:Run, TPSMain
command: TPSMain.exe
file: C:\WINDOWS\system32\TPSMain.exe
size: 266240
MD5: 928d691fe50cf07ea460d3f312481b03
Located: HK_CU:Run, ctfmon.exe
command: C:\WINDOWS\system32\ctfmon.exe
file: C:\WINDOWS\system32\ctfmon.exe
size: 15360
MD5: 5584247b568c2e53934873f4b655fe6a
Located: HK_CU:Run, Mozilla Quick Launch
command: "C:\Program Files\mozilla.org\Mozilla\Mozilla.exe" -turbo
file: C:\Program Files\mozilla.org\Mozilla\Mozilla.exe
size: 146560
MD5: ee4bd66bb7e0e4b031c77110fbedbea9
Located: HK_CU:Run, MSMSGS
command: "C:\Program Files\Messenger\msmsgs.exe" /background
file: C:\Program Files\Messenger\msmsgs.exe
size: 1694208
MD5: 74e6e96c6f0e2eca4edbb7f7a468f259
Located: HK_CU:Run, neufbox_reminder
command: "C:\Program Files\Kit ADSL\Wizard\PostInstall_Checker.exe" -r
file: C:\Program Files\Kit ADSL\Wizard\PostInstall_Checker.exe
size: 465920
MD5: 8354db507b23fb6a1c9f955ba5acceac
Located: HK_CU:Run, TOSCDSPD
command: C:\Program Files\TOSHIBA\TOSCDSPD\toscdspd.exe
file: C:\Program Files\TOSHIBA\TOSCDSPD\toscdspd.exe
size: 65536
MD5: a7a0ed26c68892135f23f4d4f176e2e3
Located: Démarrage (tous utilisateurs), Microsoft Office.lnk
command: C:\Program Files\Microsoft Office\Office10\OSA.EXE
file: C:\Program Files\Microsoft Office\Office10\OSA.EXE
size: 83360
MD5: 5bc65464354a9fd3beaa28e18839734a
Located: Démarrage (utilisateur), Lancement rapide de Microsoft Office OneNote 2003.lnk
command: C:\Program Files\Microsoft Office\OFFICE11\ONENOTEM.EXE
file: C:\Program Files\Microsoft Office\OFFICE11\ONENOTEM.EXE
size: 59080
MD5: 028d53c3fede8771d9ccb56287965984
Located: System.ini, AtiExtEvent
command: Ati2evxx.dll
file: Ati2evxx.dll
Located: System.ini, crypt32chain
command: crypt32.dll
file: crypt32.dll
Located: System.ini, cryptnet
command: cryptnet.dll
file: cryptnet.dll
Located: System.ini, cscdll
command: cscdll.dll
file: cscdll.dll
Located: System.ini, req
command: C:\WINDOWS\system32\req.dll
file: C:\WINDOWS\system32\req.dll
Located: System.ini, ScCertProp
command: wlnotify.dll
file: wlnotify.dll
Located: System.ini, Schedule
command: wlnotify.dll
file: wlnotify.dll
Located: System.ini, sclgntfy
command: sclgntfy.dll
file: sclgntfy.dll
Located: System.ini, SensLogn
command: WlNotify.dll
file: WlNotify.dll
Located: System.ini, termsrv
command: wlnotify.dll
file: wlnotify.dll
Located: System.ini, WgaLogon
command: WgaLogon.dll
file: WgaLogon.dll
Located: System.ini, wlballoon
command: wlnotify.dll
file: wlnotify.dll
--- Browser helper object list ---
{06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} (AcroIEHlprObj Class)
BHO name:
CLSID name: AcroIEHlprObj Class
description: Adobe Acrobat reader
classification: Legitimate
known filename: AcroIEhelper.ocx<br>AcroIEhelper.dll
info link: https://get2.adobe.com/reader/otherversions/
info source: TonyKlein
Path: C:\Program Files\Adobe\Acrobat 6.0\Reader\ActiveX\
Long name: AcroIEHelper.dll
Short name: ACROIE~1.DLL
Date (created): 03/11/2003 13:17:44
Date (last access): 28/11/2006 15:21:54
Date (last write): 03/11/2003 13:17:44
Filesize: 54248
Attributes: archive
MD5: FC7850324464E4D19A24A03D882B5CC4
CRC32: 452E8571
Version: 6.0.1.1091
{761497BB-D6F0-462C-B6EB-D4DAF1D92D43} (SSVHelper Class)
BHO name:
CLSID name: SSVHelper Class
Path: C:\Program Files\Java\jre1.5.0_07\bin\
Long name: ssv.dll
Short name:
Date (created): 03/05/2006 01:57:02
Date (last access): 28/11/2006 14:42:24
Date (last write): 03/05/2006 02:14:38
Filesize: 434279
Attributes: archive
MD5: 162186B53BBB5964F9E806F96934338E
CRC32: 1C68240D
Version: 5.0.70.3
--- ActiveX list ---
Microsoft XML Parser for Java (Microsoft XML Parser for Java)
DPF name: Microsoft XML Parser for Java
CLSID name:
Installer:
Codebase: file://C:\WINDOWS\Java\classes\xmldso.cab
description:
classification: Legitimate
known filename: %WINDIR%\Java\classes\xmldso.cab
info link:
info source: Patrick M. Kolla
{17492023-C23A-453E-A040-C7C580BBF700} (Windows Genuine Advantage Validation Tool)
DPF name:
CLSID name: Windows Genuine Advantage Validation Tool
Installer: C:\WINDOWS\Downloaded Program Files\LegitCheckControl.inf
Codebase: http://download.microsoft.com/download/E/5/6/E5611B10-0D6D-4117-8430-A67417AA88CD/LegitCheckControl.cab
description:
classification: Legitimate
known filename: LegitCheckControl.DLL
info link:
info source: Safer Networking Ltd.
Path: C:\WINDOWS\system32\
Long name: LegitCheckControl.dll
Short name: LEGITC~1.DLL
Date (created): 12/07/2005 17:04:22
Date (last access): 28/11/2006 13:44:30
Date (last write): 19/06/2006 15:19:42
Filesize: 571184
Attributes: archive
MD5: 31BF58C9814F840EB10A2B7A410ABEA3
CRC32: DAFAE165
Version: 1.5.540.0
{1754A1BA-A1DF-4F10-B199-AA55AA1A120F} (InstallerBehaviorFactory Class)
DPF name:
CLSID name: InstallerBehaviorFactory Class
Installer: C:\WINDOWS\Downloaded Program Files\MsnInstC.inf
Codebase: https://www.msn.com/fr-fr/
description:
classification: Legitimate
known filename: MsnInstC.dll
info link:
info source: Safer Networking Ltd.
Path: C:\WINDOWS\Downloaded Program Files\
Long name: MsnInstC.dll
Short name:
Date (created): 14/12/2005 09:24:52
Date (last access): 28/11/2006 15:23:56
Date (last write): 14/12/2005 09:24:52
Filesize: 323272
Attributes: archive
MD5: 76B975A59A1018572F9F84DEB3BEE9A1
CRC32: 68B0407D
Version: 11.0.1213.1
{5D86DDB5-BDF9-441B-9E9E-D4730F4EE499} (BDSCANONLINE Control)
DPF name:
CLSID name: BDSCANONLINE Control
Installer: C:\WINDOWS\Downloaded Program Files\oscan8.inf
Codebase: http://download.bitdefender.com/resources/scan8/oscan8.cab
description:
classification: Legitimate
known filename: oscan8.ocx
info link:
info source: Safer Networking Ltd.
Path: C:\WINDOWS\DOWNLO~1\
Long name: oscan8.ocx
Short name:
Date (created): 01/06/2006 02:54:16
Date (last access): 28/11/2006 14:55:08
Date (last write): 01/06/2006 02:54:16
Filesize: 471040
Attributes: archive
MD5: 9026F860148F0569BD92AEEFC4BDDFD7
CRC32: D1520CCE
Version: 1.0.0.1
{6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class)
DPF name:
CLSID name: WUWebControl Class
Installer: C:\WINDOWS\Downloaded Program Files\wuweb.inf
Codebase: http://v5.windowsupdate.microsoft.com/v5consumer/V5Controls/en/x86/client/wuweb_site.cab?1106585603834
description:
classification: Legitimate
known filename: wuweb.dll
info link:
info source: Safer Networking Ltd.
Path: C:\WINDOWS\system32\
Long name: wuweb.dll
Short name:
Date (created): 24/08/2004 07:20:42
Date (last access): 28/11/2006 13:45:46
Date (last write): 26/05/2005 03:16:30
Filesize: 173536
Attributes: archive
MD5: C459F2D5E64C942F3F66E1CD7F1C4C00
CRC32: EEF66B50
Version: 5.8.0.2469
{8AD9C840-044E-11D1-B3E9-00805F499D93} (Java Runtime Environment 1.5.0)
DPF name: Java Runtime Environment 1.5.0
CLSID name: Java Plug-in 1.5.0_07
Installer:
Codebase: http://java.sun.com/update/1.5.0/jinstall-1_5_0_07-windows-i586.cab
description: Sun Java
classification: Legitimate
known filename: %PROGRAM FILES%\JabaSoft\JRE\*\Bin\npjava131.dll
info link:
info source: Patrick M. Kolla
Path: C:\Program Files\Java\jre1.5.0_07\bin\
Long name: NPJPI150_07.dll
Short name: NPJPI1~1.DLL
Date (created): 03/05/2006 01:57:02
Date (last access): 28/11/2006 13:18:18
Date (last write): 03/05/2006 02:14:38
Filesize: 69746
Attributes: archive
MD5: 2663A75A8F6DAD0F7C10BF920AE81940
CRC32: 5235B91D
Version: 5.0.70.3
{A18962F6-E6ED-40B1-97C9-1FB36F38BFA8} (Aurigma Image Uploader 3.5 Control)
DPF name:
CLSID name: Aurigma Image Uploader 3.5 Control
Installer: C:\WINDOWS\Downloaded Program Files\ImageUploader3.inf
Codebase: http://www.photoways.com/clients/ImageUploader3.cab
description:
classification: Legitimate
known filename: ImageUploader3.ocx
info link:
info source: Safer Networking Ltd.
Path: C:\WINDOWS\Downloaded Program Files\
Long name: ImageUploader3.ocx
Short name: IMAGEU~1.OCX
Date (created): 22/03/2005 18:32:42
Date (last access): 28/11/2006 13:38:46
Date (last write): 22/03/2005 18:32:42
Filesize: 1918488
Attributes: archive
MD5: 43559FD5607AA570A4908157717CDA7C
CRC32: 58CEE6CD
Version: 3.5.4.0
{CAFEEFAC-0014-0002-0005-ABCDEFFEDCBA} (Java Runtime Environment 1.4.2)
DPF name: Java Runtime Environment 1.4.2
CLSID name: Java Plug-in 1.4.2_05
Installer:
Codebase: https://www.oracle.com/java/technologies/
description:
classification: Legitimate
known filename: NPJPI142_05.dll
info link:
info source: Safer Networking Ltd.
Path: C:\Program Files\Java\j2re1.4.2_05\bin\
Long name: NPJPI142_05.dll
Short name: NPJPI1~1.DLL
Date (created): 24/08/2004 07:34:14
Date (last access): 28/11/2006 13:18:00
Date (last write): 24/08/2004 07:34:14
Filesize: 65650
Attributes: archive
MD5: 174488C8877FA852448D1937C322AABB
CRC32: 62C2460D
Version: 1.4.2.50
{CAFEEFAC-0015-0000-0007-ABCDEFFEDCBA} (Java Runtime Environment 1.5.0)
DPF name: Java Runtime Environment 1.5.0
CLSID name: Java Plug-in 1.5.0_07
Installer:
Codebase: http://java.sun.com/update/1.5.0/jinstall-1_5_0_07-windows-i586.cab
description:
classification: Legitimate
known filename: NPJPI150_07.dll
info link:
info source: Safer Networking Ltd.
Path: C:\Program Files\Java\jre1.5.0_07\bin\
Long name: NPJPI150_07.dll
Short name: NPJPI1~1.DLL
Date (created): 03/05/2006 01:57:02
Date (last access): 28/11/2006 15:33:22
Date (last write): 03/05/2006 02:14:38
Filesize: 69746
Attributes: archive
MD5: 2663A75A8F6DAD0F7C10BF920AE81940
CRC32: 5235B91D
Version: 5.0.70.3
{CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} (Java Runtime Environment 1.5.0)
DPF name: Java Runtime Environment 1.5.0
CLSID name: Java Plug-in 1.5.0_07
Installer:
Codebase: http://java.sun.com/update/1.5.0/jinstall-1_5_0_07-windows-i586.cab
description:
classification: Legitimate
known filename: npjpi150_06.dll
info link:
info source: Safer Networking Ltd.
Path: C:\Program Files\Java\jre1.5.0_07\bin\
Long name: NPJPI150_07.dll
Short name: NPJPI1~1.DLL
Date (created): 03/05/2006 01:57:02
Date (last access): 28/11/2006 15:33:22
Date (last write): 03/05/2006 02:14:38
Filesize: 69746
Attributes: archive
MD5: 2663A75A8F6DAD0F7C10BF920AE81940
CRC32: 5235B91D
Version: 5.0.70.3
{CE3409C4-9E26-4F8E-83E4-778498F9E7B4} (PB_Uploader Class)
DPF name:
CLSID name: PB_Uploader Class
Installer:
Codebase: http://www.photoways.com/clients/uploader_v2.1.0.53.cab
description:
classification: Open for discussion
known filename: uploader.ocx
info link:
info source: Safer Networking Ltd.
Path: C:\WINDOWS\Downloaded Program Files\
Long name: uploader_uni.ocx
Short name: UPLOAD~1.OCX
Date (created): 18/09/2006 09:31:24
Date (last access): 28/11/2006 13:38:48
Date (last write): 13/11/2006 12:14:56
Filesize: 1064176
Attributes: archive
MD5: 22419EED252AAD0E0C592F618DBF3FF5
CRC32: E55E782A
Version: 2.1.0.53
--- Process list ---
PID: 0 ( 0) [System]
PID: 648 ( 4) \SystemRoot\System32\smss.exe
PID: 704 ( 648) \??\C:\WINDOWS\system32\csrss.exe
PID: 732 ( 648) \??\C:\WINDOWS\system32\winlogon.exe
PID: 776 ( 732) C:\WINDOWS\system32\services.exe
size: 108544
MD5: 732E0B1ABAACE15D80EC19056B0A2AF9
PID: 788 ( 732) C:\WINDOWS\system32\lsass.exe
size: 13312
MD5: 9F3744A5C6F49291A7A685040A013399
PID: 952 ( 776) C:\WINDOWS\system32\Ati2evxx.exe
size: 425984
MD5: 09266AE04746D652680120BE8BE76F53
PID: 968 ( 776) C:\WINDOWS\system32\svchost.exe
size: 14336
MD5: 1BD6C2F707A275CB7C16FD99FE0F31CA
PID: 1028 ( 776) C:\WINDOWS\system32\svchost.exe
size: 14336
MD5: 1BD6C2F707A275CB7C16FD99FE0F31CA
PID: 1072 ( 776) C:\WINDOWS\System32\svchost.exe
size: 14336
MD5: 1BD6C2F707A275CB7C16FD99FE0F31CA
PID: 1216 ( 776) C:\WINDOWS\system32\svchost.exe
size: 14336
MD5: 1BD6C2F707A275CB7C16FD99FE0F31CA
PID: 1252 ( 776) C:\WINDOWS\system32\svchost.exe
size: 14336
MD5: 1BD6C2F707A275CB7C16FD99FE0F31CA
PID: 1540 ( 776) C:\WINDOWS\system32\spoolsv.exe
size: 57856
MD5: DA81EC57ACD4CDC3D4C51CF3D409AF9F
PID: 1744 ( 776) C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
size: 59008
MD5: DC995DA2D258C0590C3AE07EC68BFEE6
PID: 1768 ( 776) C:\Program Files\Alwil Software\Avast4\ashServ.exe
size: 108160
MD5: 1CA6D8776D4F615E7861E35221582AE0
PID: 1836 ( 776) C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe
size: 204800
MD5: E8FBDCC8D618D1BB84B828F247A6244B
PID: 1844 ( 732) C:\WINDOWS\system32\Ati2evxx.exe
size: 425984
MD5: 09266AE04746D652680120BE8BE76F53
PID: 1932 (1876) C:\WINDOWS\Explorer.EXE
size: 1036288
MD5: 4C33E5B9A6197B6ED215F6CFBA0A2DAA
PID: 1956 ( 776) C:\Program Files\TOSHIBA\ConfigFree\CFSvcs.exe
size: 36864
MD5: 527235C8109BF5D4DBDA7D1948648C46
PID: 184 ( 776) C:\Program Files\Fichiers communs\Microsoft Shared\VS7Debug\mdm.exe
size: 270336
MD5: 8520BEB4B37160D45CB99E8C1BBC8222
PID: 200 ( 776) C:\Program Files\lotus\notes\ntmulti.exe
size: 53297
MD5: 5B7711E1D810D5BD987A3357C7C56A45
PID: 248 ( 776) C:\WINDOWS\system32\svchost.exe
size: 14336
MD5: 1BD6C2F707A275CB7C16FD99FE0F31CA
PID: 1552 (1932) C:\Program Files\Toshiba\Toshiba Applet\thotkey.exe
size: 430080
MD5: D6D6FB19B09CAA7EA9239C848607099C
PID: 1576 (1932) C:\Program Files\TOSHIBA\Commandes TOSHIBA\TFncKy.exe
size: 114688
MD5: F97D4599B5E38A0CCCB9851F0D996637
PID: 1592 (1932) C:\Program Files\Synaptics\SynTP\SynTPLpr.exe
size: 98304
MD5: 74AC1D999FB14B095C66EEBF0925B5E1
PID: 1792 (1932) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
size: 507904
MD5: BF35235D8C7840C8533414B81C5ED8E1
PID: 1812 (1932) C:\Program Files\TOSHIBA\Utilitaire de zoom TOSHIBA\SmoothView.exe
size: 118784
MD5: 85002E4E0AFB66EED76B333A5000F5B9
PID: 1888 (1932) C:\Program Files\TOSHIBA\PadTouch\PadExe.exe
size: 1019904
MD5: E076F66A8B68D2B09E5E895B3353CA65
PID: 2008 (1932) C:\Program Files\TOSHIBA\ConfigFree\NDSTray.exe
size: 892928
MD5: 65E0D99F87F0B5963019BC91083E75CE
PID: 2060 (1496) C:\WINDOWS\system32\TPSBattM.exe
size: 40960
MD5: CFA123E0EA693D0D084C60D4BB39B2B7
PID: 2080 (1932) C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
size: 108160
MD5: 264C095D36AA973D9C64909124D0BA60
PID: 2136 (1932) C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe
size: 335872
MD5: 75A3ED9713C372C3BF3F819595585F40
PID: 2156 (1932) C:\WINDOWS\AGRSMMSG.exe
size: 88363
MD5: 32F801E868BD2006911D49128CDD6312
PID: 2168 (1932) C:\Program Files\Hummingbird\DM Extensions\papihost.exe
size: 430162
MD5: 5DE1259E991ADA4EEA2D927EA7C6352F
PID: 2188 (1932) C:\OpenVPN\bin\openvpn-gui.exe
size: 99328
MD5: D5DE3333EA2BB10015F484134565DB92
PID: 2200 (1932) C:\Program Files\Java\jre1.5.0_07\bin\jusched.exe
size: 36975
MD5: 892EB04BC0B1A542A97197D3FA31268F
PID: 2224 (1072) C:\WINDOWS\system32\wscntfy.exe
size: 13824
MD5: 54CDDAD404557ED98433D6ECBFC92691
PID: 2244 ( 776) C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
size: 370304
MD5: 165408DD1BB1CC1AC41115F906FCFACB
PID: 2252 (1932) C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\avgas.exe
size: 6266880
MD5: 01D90AE5DCCBCE0C7B52874FEC35A608
PID: 2264 (1932) C:\WINDOWS\system32\ctfmon.exe
size: 15360
MD5: 5584247B568C2E53934873F4B655FE6A
PID: 2416 (1932) C:\Program Files\TOSHIBA\TOSCDSPD\toscdspd.exe
size: 65536
MD5: A7A0ED26C68892135F23F4D4F176E2E3
PID: 2624 (1932) C:\Program Files\Messenger\msmsgs.exe
size: 1694208
MD5: 74E6E96C6F0E2ECA4EDBB7F7A468F259
PID: 2856 (1932) C:\Program Files\Kit ADSL\Wizard\PostInstall_Checker.exe
size: 465920
MD5: 8354DB507B23FB6A1C9F955BA5ACCEAC
PID: 2888 ( 776) C:\WINDOWS\System32\alg.exe
size: 44544
MD5: 2FE681D10C5FC343DBBC0610B8DD4D24
PID: 3104 (1932) C:\Program Files\Microsoft Office\OFFICE11\ONENOTEM.EXE
size: 59080
MD5: 028D53C3FEDE8771D9CCB56287965984
PID: 3204 ( 776) C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
size: 251520
MD5: 30020C9FD8754F4099F9D868C6C87051
PID: 584 (1932) C:\Program Files\Internet Explorer\IEXPLORE.EXE
size: 93184
MD5: 833E2B3F0E2484C0F2B804AE871B4381
PID: 3764 (1932) C:\DOCUME~1\Pierre\LOCALS~1\Temp\Répertoire temporaire 1 pour hijackthis[1].zip\HijackThis.exe
size: 218112
MD5: EE86268E59E4B38961E7C40D16BE5BB4
PID: 2232 ( 584) C:\Documents and Settings\Pierre\Local Settings\Temporary Internet Files\Content.IE5\C5Q3SLYN\aawsepersonal[1].exe
size: 2855080
MD5: 6286CF12EEAE984D381773F097BAF981
PID: 3472 (2232) C:\PROGRA~1\Lavasoft\AD-AWA~1\Ad-Aware.exe
size: 824832
MD5: 1B0EDBF799B57EAD6EF68A82906C2097
PID: 3152 (2332) C:\PROGRA~1\mozilla.org\Mozilla\Mozilla.exe
size: 146560
MD5: EE4BD66BB7E0E4B031C77110FBEDBEA9
PID: 3784 (1900) C:\Program Files\Spybot - Search & Destroy\SpybotSD.exe
size: 4393096
MD5: 09CA174A605B480318731E691DC98539
PID: 4 ( 0) System
--- Browser start & search pages list ---
Spybot - Search & Destroy browser pages report, 28/11/2006 15:33:28
HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main\Local Page
C:\WINDOWS\system32\blank.htm
HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main\Search Page
http://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main\Start Page
http://neufportail.fr/
HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main\Default_Page_URL
http://www.neuf.fr
HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Main\Local Page
%SystemRoot%\system32\blank.htm
HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Main\Search Page
http://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Main\Start Page
http://www.microsoft.com/isapi/redir.dll?prd={SUB_PRD}&clcid={SUB_CLSID}&pver={SUB_PVER}&ar=home
HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Main\Default_Page_URL
http://www.microsoft.com/isapi/redir.dll?prd=ie&pver=6&ar=msnhome
HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Main\Default_Search_URL
http://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Search\SearchAssistant
https://www.bing.com/?toHttps=1&redig=8F3F334EA60E4B1CB4D040DCFE393A89{SUB_RFC1766}/srchasst/srchasst.htm
HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Search\CustomizeSearch
https://www.bing.com/?toHttps=1&redig=8F3F334EA60E4B1CB4D040DCFE393A89{SUB_RFC1766}/srchasst/srchcust.htm
--- Winsock Layered Service Provider list ---
Protocol 0: MSAFD Tcpip [TCP/IP]
GUID: {E70F1AA0-AB8B-11CF-8CA3-00805F48A192}
Filename: %SystemRoot%\system32\mswsock.dll
Description: Microsoft Windows NT/2k/XP IP protocol
DB filename: %SystemRoot%\system32\mswsock.dll
DB protocol: MSAFD Tcpip [*]
Protocol 1: MSAFD Tcpip [UDP/IP]
GUID: {E70F1AA0-AB8B-11CF-8CA3-00805F48A192}
Filename: %SystemRoot%\system32\mswsock.dll
Description: Microsoft Windows NT/2k/XP IP protocol
DB filename: %SystemRoot%\system32\mswsock.dll
DB protocol: MSAFD Tcpip [*]
Protocol 2: MSAFD Tcpip [RAW/IP]
GUID: {E70F1AA0-AB8B-11CF-8CA3-00805F48A192}
Filename: %SystemRoot%\system32\mswsock.dll
Description: Microsoft Windows NT/2k/XP IP protocol
DB filename: %SystemRoot%\system32\mswsock.dll
DB protocol: MSAFD Tcpip [*]
Protocol 3: RSVP UDP Service Provider
GUID: {9D60A9E0-337A-11D0-BD88-0000C082E69A}
Filename: %SystemRoot%\system32\rsvpsp.dll
Description: Microsoft Windows NT/2k/XP RVSP
DB filename: %SystemRoot%\system32\rsvpsp.dll
DB protocol: RSVP * Service Provider
Protocol 4: RSVP TCP Service Provider
GUID: {9D60A9E0-337A-11D0-BD88-0000C082E69A}
Filename: %SystemRoot%\system32\rsvpsp.dll
Description: Microsoft Windows NT/2k/XP RVSP
DB filename: %SystemRoot%\system32\rsvpsp.dll
DB protocol: RSVP * Service Provider
Protocol 5: MSAFD Irda [IrDA]
GUID: {3972523D-2AF1-11D1-B655-00805F3642CC}
Filename: %SystemRoot%\system32\mswsock.dll
Description: Infrared protocol
DB filename: %SystemRoot%\system32\mswsock.dll
DB protocol: MSAFD Irda [IrDA]
Protocol 6: MSAFD NetBIOS [\Device\NetBT_Tcpip_{20D928D1-279C-4750-A772-AF49050AE27C}] SEQPACKET 7
GUID: {8D5F1830-C273-11CF-95C8-00805F48A192}
Filename: %SystemRoot%\system32\mswsock.dll
Description: Microsoft Windows NT/2k/XP NetBios protocol
DB filename: %SystemRoot%\system32\mswsock.dll
DB protocol: MSAFD NetBIOS *
Protocol 7: MSAFD NetBIOS [\Device\NetBT_Tcpip_{20D928D1-279C-4750-A772-AF49050AE27C}] DATAGRAM 7
GUID: {8D5F1830-C273-11CF-95C8-00805F48A192}
Filename: %SystemRoot%\system32\mswsock.dll
Description: Microsoft Windows NT/2k/XP NetBios protocol
DB filename: %SystemRoot%\system32\mswsock.dll
DB protocol: MSAFD NetBIOS *
Protocol 8: MSAFD NetBIOS [\Device\NetBT_Tcpip_{21C09C30-470A-4284-A99A-0F060FEB3E27}] SEQPACKET 4
GUID: {8D5F1830-C273-11CF-95C8-00805F48A192}
Filename: %SystemRoot%\system32\mswsock.dll
Description: Microsoft Windows NT/2k/XP NetBios protocol
DB filename: %SystemRoot%\system32\mswsock.dll
DB protocol: MSAFD NetBIOS *
Protocol 9: MSAFD NetBIOS [\Device\NetBT_Tcpip_{21C09C30-470A-4284-A99A-0F060FEB3E27}] DATAGRAM 4
GUID: {8D5F1830-C273-11CF-95C8-00805F48A192}
Filename: %SystemRoot%\system32\mswsock.dll
Description: Microsoft Windows NT/2k/XP NetBios protocol
DB filename: %SystemRoot%\system32\mswsock.dll
DB protocol: MSAFD NetBIOS *
Protocol 10: MSAFD NetBIOS [\Device\NetBT_Tcpip_{36585666-C0F3-43DF-BB62-B3919272EF2D}] SEQPACKET 3
GUID: {8D5F1830-C273-11CF-95C8-00805F48A192}
Filename: %SystemRoot%\system32\mswsock.dll
Description: Microsoft Windows NT/2k/XP NetBios protocol
DB filename: %SystemRoot%\system32\mswsock.dll
DB protocol: MSAFD NetBIOS *
Protocol 11: MSAFD NetBIOS [\Device\NetBT_Tcpip_{36585666-C0F3-43DF-BB62-B3919272EF2D}] DATAGRAM 3
GUID: {8D5F1830-C273-11CF-95C8-00805F48A192}
Filename: %SystemRoot%\system32\mswsock.dll
Description: Microsoft Windows NT/2k/XP NetBios protocol
DB filename: %SystemRoot%\system32\mswsock.dll
DB protocol: MSAFD NetBIOS *
Protocol 12: MSAFD NetBIOS [\Device\NetBT_Tcpip_{915DE9CF-09D1-40F9-B70E-C470A33417FC}] SEQPACKET 0
GUID: {8D5F1830-C273-11CF-95C8-00805F48A192}
Filename: %SystemRoot%\system32\mswsock.dll
Description: Microsoft Windows NT/2k/XP NetBios protocol
DB filename: %SystemRoot%\system32\mswsock.dll
DB protocol: MSAFD NetBIOS *
Protocol 13: MSAFD NetBIOS [\Device\NetBT_Tcpip_{915DE9CF-09D1-40F9-B70E-C470A33417FC}] DATAGRAM 0
GUID: {8D5F1830-C273-11CF-95C8-00805F48A192}
Filename: %SystemRoot%\system32\mswsock.dll
Description: Microsoft Windows NT/2k/XP NetBios protocol
DB filename: %SystemRoot%\system32\mswsock.dll
DB protocol: MSAFD NetBIOS *
Protocol 14: MSAFD NetBIOS [\Device\NetBT_Tcpip_{15892CE6-EFCB-425B-8825-B1869BD1A5BA}] SEQPACKET 1
GUID: {8D5F1830-C273-11CF-95C8-00805F48A192}
Filename: %SystemRoot%\system32\mswsock.dll
Description: Microsoft Windows NT/2k/XP NetBios protocol
DB filename: %SystemRoot%\system32\mswsock.dll
DB protocol: MSAFD NetBIOS *
Protocol 15: MSAFD NetBIOS [\Device\NetBT_Tcpip_{15892CE6-EFCB-425B-8825-B1869BD1A5BA}] DATAGRAM 1
GUID: {8D5F1830-C273-11CF-95C8-00805F48A192}
Filename: %SystemRoot%\system32\mswsock.dll
Description: Microsoft Windows NT/2k/XP NetBios protocol
DB filename: %SystemRoot%\system32\mswsock.dll
DB protocol: MSAFD NetBIOS *
Protocol 16: MSAFD NetBIOS [\Device\NetBT_Tcpip_{8805D968-9DDD-4D3C-AB61-40184C9C796A}] SEQPACKET 2
GUID: {8D5F1830-C273-11CF-95C8-00805F48A192}
Filename: %SystemRoot%\system32\mswsock.dll
Description: Microsoft Windows NT/2k/XP NetBios protocol
DB filename: %SystemRoot%\system32\mswsock.dll
DB protocol: MSAFD NetBIOS *
Protocol 17: MSAFD NetBIOS [\Device\NetBT_Tcpip_{8805D968-9DDD-4D3C-AB61-40184C9C796A}] DATAGRAM 2
GUID: {8D5F1830-C273-11CF-95C8-00805F48A192}
Filename: %SystemRoot%\system32\mswsock.dll
Description: Microsoft Windows NT/2k/XP NetBios protocol
DB filename: %SystemRoot%\system32\mswsock.dll
DB protocol: MSAFD NetBIOS *
Protocol 18: MSAFD NetBIOS [\Device\NetBT_Tcpip_{921CA57A-C75C-40C2-8700-67FBF7E0F121}] SEQPACKET 5
GUID: {8D5F1830-C273-11CF-95C8-00805F48A192}
Filename: %SystemRoot%\system32\mswsock.dll
Description: Microsoft Windows NT/2k/XP NetBios protocol
DB filename: %SystemRoot%\system32\mswsock.dll
DB protocol: MSAFD NetBIOS *
Protocol 19: MSAFD NetBIOS [\Device\NetBT_Tcpip_{921CA57A-C75C-40C2-8700-67FBF7E0F121}] DATAGRAM 5
GUID: {8D5F1830-C273-11CF-95C8-00805F48A192}
Filename: %SystemRoot%\system32\mswsock.dll
Description: Microsoft Windows NT/2k/XP NetBios protocol
DB filename: %SystemRoot%\system32\mswsock.dll
DB protocol: MSAFD NetBIOS *
Protocol 20: MSAFD NetBIOS [\Device\NetBT_Tcpip_{488A0DEF-33F3-453A-B448-E3F283C8BFA5}] SEQPACKET 6
GUID: {8D5F1830-C273-11CF-95C8-00805F48A192}
Filename: %SystemRoot%\system32\mswsock.dll
Description: Microsoft Windows NT/2k/XP NetBios protocol
DB filename: %SystemRoot%\system32\mswsock.dll
DB protocol: MSAFD NetBIOS *
Protocol 21: MSAFD NetBIOS [\Device\NetBT_Tcpip_{488A0DEF-33F3-453A-B448-E3F283C8BFA5}] DATAGRAM 6
GUID: {8D5F1830-C273-11CF-95C8-00805F48A192}
Filename: %SystemRoot%\system32\mswsock.dll
Description: Microsoft Windows NT/2k/XP NetBios protocol
DB filename: %SystemRoot%\system32\mswsock.dll
DB protocol: MSAFD NetBIOS *
Namespace Provider 0: TCP/IP
GUID: {22059D40-7E9E-11CF-AE5A-00AA00A7112B}
Filename: %SystemRoot%\System32\mswsock.dll
Description: Microsoft Windows NT/2k/XP TCP/IP name space provider
DB filename: %SystemRoot%\system32\mswsock.dll
DB protocol: TCP/IP
Namespace Provider 1: NTDS
GUID: {3B2637EE-E580-11CF-A555-00C04FD8D4AC}
Filename: %SystemRoot%\System32\winrnr.dll
Description: Microsoft Windows NT/2k/XP name space provider
DB filename: %SystemRoot%\system32\winrnr.dll
DB protocol: NTDS
Namespace Provider 2: Espace de noms NLA (Network Location Awareness)
GUID: {6642243A-3BA8-4AA6-BAA5-2E0BD71FDD83}
Filename: %SystemRoot%\System32\mswsock.dll
Description: Microsoft Windows NT/2k/XP name space provider
DB filename: %SystemRoot%\system32\mswsock.dll
DB protocol: NLA-Namespace
--- Uninstall list ---
1.06 (Ad-Aware SE Personal)
publisher: Lavasoft
help link: https://www.adaware.com/
(AddressBook)
Adibou V.3.10 (C:) (Adibou V.3.10 (C:))
uninstall cmd: "C:\coktel\Adibou3\Uninst.exe"
ATI - Utilitaire de désinstallation du logiciel 6.14.10.1008 (All ATI Software)
uninstall cmd: C:\Program Files\ATI Technologies\UninstallAll\AtiCimUn.exe
ATI Display Driver 8.08-041111a-021421C-Toshiba (ATI Display Driver)
uninstall cmd: rundll32 C:\WINDOWS\system32\atiiiexx.dll,_InfEngUnInstallINFFile_RunDLL@16 -force_restart -flags:0x2010001 -inf_class:DISPLAY -clean
avast! Antivirus 4.7 (avast!)
version (major): 4
version (minor): 7
install location: C:\PROGRA~1\ALWILS~1\Avast4
install source: C:\PROGRA~1\ALWILS~1\Avast4\setup
uninstall cmd: rundll32 C:\PROGRA~1\ALWILS~1\Avast4\Setup\setiface.dll,RunSetup
publisher: Alwil Software
help link: https://www.avast.com/fr-fr/index
AVG Anti-Spyware 7.5 (AVGAntiSpyware75)
install location: C:\Program Files\Grisoft\AVG Anti-Spyware 7.5
uninstall cmd: C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\Uninstall.exe
publisher: Grisoft Ltd.
help link: https://www.avg.com/fr-fr/homepage
(Branding)
(Connection Manager)
(DirectAnimation)
(DirectDrawEx)
(DXM_Runtime)
(Fontcore)
HijackThis 1.99.1 1.99.1 (HijackThis)
uninstall cmd: C:\DOCUME~1\Pierre\LOCALS~1\Temp\Répertoire temporaire 1 pour hijackthis[1].zip\HijackThis.exe /uninstall
publisher: Soeperman Enterprises Ltd.
(ICW)
(IE40)
(IE4Data)
(IE5BAKEX)
(IEData)
(InstallShield Uninstall Information)
SRS WOW XT Plug-In for Windows Media Player for Toshiba version 1.0.2 1.0.2.0 (InstallShield_{68D368EE-F5AC-4402-BD45-B454B5453FE1})
version: 16777218
version (major): 1
estimated size: 3131
install date: 20040824
install location: C:\Program Files\srslabs\wowxt plug-in\
install source: C:\DOCUME~1\PROPRI~1\LOCALS~1\Temp\_is3\
uninstall cmd: C:\PROGRA~1\FICHIE~1\INSTAL~1\Driver\9\INTEL3~1\IDriver.exe /M{68D368EE-F5AC-4402-BD45-B454B5453FE1}
publisher: SRS Labs, Inc.
help link: https://dts.com/
help telephone: 1-949-442-1070
PCI 1620 Cardbus Controller and Software 1.00.0001 (InstallShield_{AE2310DC-B261-4D84-BE03-BD318EB41B78})
version: 16777217
version (major): 1
estimated size: 560
install date: 20040824
install source: E:\PMR400222EU0 Osaka20 SP2 en,gr,fr,it\CardBus Driver\
uninstall cmd: C:\PROGRA~1\FICHIE~1\INSTAL~1\Driver\7\INTEL3~1\IDriver.exe /M{AE2310DC-B261-4D84-BE03-BD318EB41B78} /l1036
publisher: Texas Instruments Inc
comments: Your Comments
contact: Customer Support Department
help link: https://yoursite.com/
help telephone: 1-555-555-4505
readme: ...
Correctif Windows XP - KB834707 20040929.110854 (KB834707)
uninstall cmd: C:\WINDOWS\$NtUninstallKB834707$\spuninst\spuninst.exe
publisher: Microsoft Corporation
help link: https://support.microsoft.com/en-us/help/834707
Correctif Windows XP - KB867282 20050127.090417 (KB867282)
uninstall cmd: C:\WINDOWS\$NtUninstallKB867282$\spuninst\spuninst.exe
publisher: Microsoft Corporation
help link: https://support.microsoft.com/en-us/help/867282
Correctif Windows XP - KB873333 20050114.005213 (KB873333)
uninstall cmd: C:\WINDOWS\$NtUninstallKB873333$\spuninst\spuninst.exe
publisher: Microsoft Corporation
help link: https://support.microsoft.com/en-us/help/873333/ms05-012-vulnerability-in-ole-and-com-could-allow-remote-code-executio
Correctif Windows XP - KB873339 20041117.092459 (KB873339)
uninstall cmd: C:\WINDOWS\$NtUninstallKB873339$\spuninst\spuninst.exe
publisher: Microsoft Corporation
help link: https://support.microsoft.com/en-us/help/873339
Mise à jour de sécurité pour Windows XP (KB883939) 1 (KB883939)
install date: 20050619
uninstall cmd: "C:\WINDOWS\$NtUninstallKB883939$\spuninst\spuninst.exe"
publisher: Microsoft Corporation
help link: https://support.microsoft.com/en-us/help/883939
(KB884016)
Correctif Windows XP - KB885250 20050118.202711 (KB885250)
uninstall cmd: C:\WINDOWS\$NtUninstallKB885250$\spuninst\spuninst.exe
publisher: Microsoft Corporation
help link: https://support.microsoft.com/en-us/help/885250
Correctif Windows XP - KB885835 20041027.181713 (KB885835)
uninstall cmd: C:\WINDOWS\$NtUninstallKB885835$\spuninst\spuninst.exe
publisher: Microsoft Corporation
help link: https://support.microsoft.com/en-us/help/885835/ms04-044-vulnerabilities-in-windows-kernel-and-lsass-could-allow-eleva
Correctif Windows XP - KB885836 20041028.173203 (KB885836)
uninstall cmd: C:\WINDOWS\$NtUninstallKB885836$\spuninst\spuninst.exe
publisher: Microsoft Corporation
help link: https://support.microsoft.com/en-us/help/885836/ms04-041-a-vulnerability-in-wordpad-could-allow-code-execution
Correctif Windows XP - KB885884 20040924.025457 (KB885884)
uninstall cmd: C:\WINDOWS\$NtUninstallKB885884$\spuninst\spuninst.exe
publisher: Microsoft Corporation
help link: https://support.microsoft.com/en-us/help/885884
Correctif Windows XP - KB886185 20041021.090540 (KB886185)
uninstall cmd: C:\WINDOWS\$NtUninstallKB886185$\spuninst\spuninst.exe
publisher: Microsoft Corporation
help link: https://support.microsoft.com/en-us/help/886185
Correctif Windows XP - KB887472 20041014.162858 (KB887472)
uninstall cmd: C:\WINDOWS\$NtUninstallKB887472$\spuninst\spuninst.exe
publisher: Microsoft Corporation
help link: https://support.microsoft.com/en-us/help/887472
Correctif Windows XP - KB887742 20041103.095002 (KB887742)
uninstall cmd: C:\WINDOWS\$NtUninstallKB887742$\spuninst\spuninst.exe
publisher: Microsoft Corporation
help link: https://support.microsoft.com/en-us/help/887742
Correctif Windows XP - KB888113 20041116.131036 (KB888113)
uninstall cmd: C:\WINDOWS\$NtUninstallKB888113$\spuninst\spuninst.exe
publisher: Microsoft Corporation
help link: https://support.microsoft.com/en-us/help/888113
Correctif Windows XP - KB888302 20041207.111426 (KB888302)
uninstall cmd: C:\WINDOWS\$NtUninstallKB888302$\spuninst\spuninst.exe
publisher: Microsoft Corporation
help link: https://support.microsoft.com/en-us/help/888302
Mise à jour de sécurité pour Windows XP (KB890046) 1 (KB890046)
install date: 20050619
uninstall cmd: "C:\WINDOWS\$NtUninstallKB890046$\spuninst\spuninst.exe"
publisher: Microsoft Corporation
help link: https://support.microsoft.com/en-us/help/890046
Correctif Windows XP - KB890047 20041221.124506 (KB890047)
uninstall cmd: C:\WINDOWS\$NtUninstallKB890047$\spuninst\spuninst.exe
publisher: Microsoft Corporation
help link: https://support.microsoft.com/en-us/help/890047
Correctif Windows XP - KB890175 20041201.233338 (KB890175)
uninstall cmd: C:\WINDOWS\$NtUninstallKB890175$\spuninst\spuninst.exe
publisher: Microsoft Corporation
help link: https://support.microsoft.com/en-us/help/890175/ms05-001-vulnerability-in-html-help-could-allow-code-execution
Correctif Windows XP - KB890859 1 (KB890859)
install date: 20050413
uninstall cmd: "C:\WINDOWS\$NtUninstallKB890859$\spuninst\spuninst.exe"
publisher: Microsoft Corporation
help link: https://support.microsoft.com/en-us/help/890859
Correctif Windows XP - KB890923 1 (KB890923)
install date: 20050413
uninstall cmd: "C:\WINDOWS\$NtUninstallKB890923$\spuninst\spuninst.exe"
publisher: Microsoft Corporation
help link: https://support.microsoft.com/en-us/help/890923
Correctif Windows XP - KB891781 20050110.165439 (KB891781)
uninstall cmd: C:\WINDOWS\$NtUninstallKB891781$\spuninst\spuninst.exe
publisher: Microsoft Corporation
help link: https://support.microsoft.com/en-us/help/891781
Correctif Windows XP - KB893066 1 (KB893066)
install date: 20050413
uninstall cmd: "C:\WINDOWS\$NtUninstallKB893066$\spuninst\spuninst.exe"
publisher: Microsoft Corporation
help link: https://support.microsoft.com/en-us/help/893066/ms05-019-vulnerabilities-in-tcp-ip-could-allow-remote-code-execution-a
Correctif Windows XP - KB893086 1 (KB893086)
install date: 20050413
uninstall cmd: "C:\WINDOWS\$NtUninstallKB893086$\spuninst\spuninst.exe"
publisher: Microsoft Corporation
help link: https://support.microsoft.com/en-us/help/893086
Mise à jour de sécurité pour Windows XP (KB893756) 1 (KB893756)
install date: 20050904
uninstall cmd: "C:\WINDOWS\$NtUninstallKB893756$\spuninst\spuninst.exe"
publisher: Microsoft Corporation
help link: https://support.microsoft.com/en-us/help/893756
Windows Installer 3.1 (KB893803) 3.1 (KB893803)
uninstall cmd: "C:\WINDOWS\$MSI31Uninstall_KB893803$\spuninst\spuninst.exe"
publisher: Microsoft Corporation
help link: https://support.microsoft.com/en-us/help/893803/windows-installer-3-1-v2-3-1-4000-2435-is-available
Windows Installer 3.1 (KB893803) 3.1 (KB893803v2)
uninstall cmd: "C:\WINDOWS\$MSI31Uninstall_KB893803v2$\spuninst\spuninst.exe"
publisher: Microsoft Corporation
help link: https://support.microsoft.com/en-us/help/893803/windows-installer-3-1-v2-3-1-4000-2435-is-available
Mise à jour pour Windows XP (KB894391) 1 (KB894391)
install date: 20050904
uninstall cmd: "C:\WINDOWS\$NtUninstallKB894391$\spuninst\spuninst.exe"
publisher: Microsoft Corporation
help link: https://support.microsoft.com/en-us/help/894391/
Mise à jour de sécurité pour Windows XP (KB896358) 1 (KB896358)
install date: 20050619
uninstall cmd: "C:\WINDOWS\$NtUninstallKB896358$\spuninst\spuninst.exe"
publisher: Microsoft Corporation
help link: https://support.microsoft.com/en-us/help/896358/ms05-026-a-vulnerability-in-html-help-could-allow-remote-code-executio
Mise à jour de sécurité pour Windows XP (KB896422) 1 (KB896422)
install date: 20050619
uninstall cmd: "C:\WINDOWS\$NtUninstallKB896422$\spuninst\spuninst.exe"
publisher: Microsoft Corporation
help link: https://support.microsoft.com/en-us/help/896422/ms05-027-vulnerability-in-server-message-block-could-allow-remote-code
Mise à jour de sécurité pour Windows
^^Marie^^
Messages postés
113901
Date d'inscription
mardi 6 septembre 2005
Statut
Membre
Dernière intervention
28 août 2020
3 275
28 nov. 2006 à 15:56
28 nov. 2006 à 15:56
Pierre,
Je ne voulais que AVG et Bitdefender........
Je ne voulais que AVG et Bitdefender........
