Sujet Précédent Sujet Suivant

SOS regis59!mailskinner est toujours là!vista

Résolu/Fermé
lisa1708 - 14 sept. 2007 à 14:00
Regis59 Messages postés 21143 Date d'inscription mardi 27 juin 2006 Statut Contributeur sécurité Dernière intervention 22 juin 2016 - 28 sept. 2007 à 12:13
salut!, si c'est régis59 (ou quentin) qui repond alors il comprendra!, sinon j'accepte toute aide biensur!!, en fait j'ai encore mailskinner qui traine dans mon ordi!, et "antivir" ne l'a pas détecté!; hier j'ai attrapé un virus sur MSN, à cause du frére d'1 copine qui a mon adresse!, je recevais des messages instantanés avec des fichiers à deziper, biensur je ne les ai pas ouvert!, en plus elle n'etai pas au couran et ne m'a jamais rien envoyé!; donc son mari m'a dit d'installer "panda 2007" à l'essai, et biensur il m'a trouvé 7virus espions, 4supprimés et 3 renommés!, donc, soit disant qu'ils son en inactivité!, mais ceux-ci c'est mailskinner!!! alors que je pensais l'avoir deja viré avec toi quentin!!! grrr!!! il est tenace lui!!....bon, ben j'attends de vos news!, en attendan je vai faire un rapport hyjackthis...KISS et MERCI!!
A voir également:

65 réponses

Précédent
Réponse 41 / 65
lisa1708
18 sept. 2007 à 20:48
Rapport des incidents de Panda Antivirus 2007

EVENEMENT DATE RESULTAT INFORMATIONS SUPPLEMENTAIRES
-----------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------
Fin de l'analyse 18/09/07 18:36:40 Analyse : Tous les disques durs
Mise à jour 18/09/07 18:30:11 Correcte Signatures de menaces
Spyware détecté : Cookie/Falkag 18/09/07 18:20:27 Eliminé Emplacement : c:\users\lisa\appdata\roaming\microsoft\windows\cookies\lisa@as-eu.falkag[1].txt
Spyware détecté : Cookie/Weborama 18/09/07 18:13:45 Eliminé Emplacement : c:\users\lisa\appdata\roaming\microsoft\windows\cookies\lisa@weborama[1].txt
Spyware détecté : Cookie/Atlas DMT 18/09/07 18:13:42 Eliminé Emplacement : c:\users\lisa\appdata\roaming\microsoft\windows\cookies\lisa@atdmt[1].txt
Spyware détecté : Cookie/Serving-sys 18/09/07 18:13:00 Eliminé Emplacement : c:\users\lisa\appdata\roaming\microsoft\windows\cookies\lisa@serving-sys[1].txt
Spyware détecté : Cookie/Serving-sys 18/09/07 18:13:00 Eliminé Emplacement : c:\users\lisa\appdata\roaming\microsoft\windows\cookies\lisa@bs.serving-sys[1].txt
Spyware détecté : Cookie/Smartadserver 18/09/07 18:11:00 Eliminé Emplacement : c:\users\lisa\appdata\roaming\microsoft\windows\cookies\lisa@smartadserver[1].txt
Spyware détecté : Cookie/Serving-sys 18/09/07 18:10:57 Eliminé Emplacement : c:\users\lisa\appdata\roaming\microsoft\windows\cookies\lisa@bs.serving-sys[1].txt
Spyware détecté : Cookie/Serving-sys 18/09/07 18:10:57 Eliminé Emplacement : c:\users\lisa\appdata\roaming\microsoft\windows\cookies\lisa@serving-sys[1].txt
Spyware détecté : Cookie/Serving-sys 18/09/07 18:10:57 Eliminé Emplacement : c:\users\lisa\appdata\roaming\microsoft\windows\cookies\lisa@serving-sys[1].txt
Spyware détecté : Cookie/Serving-sys 18/09/07 18:10:57 Eliminé Emplacement : c:\users\lisa\appdata\roaming\microsoft\windows\cookies\lisa@cah6okom.txt
Spyware détecté : Cookie/Serving-sys 18/09/07 18:10:48 Eliminé Emplacement : c:\users\lisa\appdata\roaming\microsoft\windows\cookies\lisa@bs.serving-sys[1].txt
Spyware détecté : Cookie/Serving-sys 18/09/07 18:10:48 Eliminé Emplacement : c:\users\lisa\appdata\roaming\microsoft\windows\cookies\lisa@serving-sys[1].txt
Spyware détecté : Cookie/Serving-sys 18/09/07 18:08:04 Eliminé Emplacement : c:\users\lisa\appdata\roaming\microsoft\windows\cookies\lisa@serving-sys[1].txt
Spyware détecté : Cookie/Smartadserver 18/09/07 18:08:04 Eliminé Emplacement : c:\users\lisa\appdata\roaming\microsoft\windows\cookies\lisa@smartadserver[1].txt
Spyware détecté : Cookie/Smartadserver 18/09/07 18:08:04 Eliminé Emplacement : c:\users\lisa\appdata\roaming\microsoft\windows\cookies\lisa@smartadserver[1].txt
Spyware détecté : Cookie/Serving-sys 18/09/07 18:08:04 Eliminé Emplacement : c:\users\lisa\appdata\roaming\microsoft\windows\cookies\lisa@bs.serving-sys[1].txt
Spyware détecté : Cookie/Smartadserver 18/09/07 18:06:24 Eliminé Emplacement : c:\users\lisa\appdata\roaming\microsoft\windows\cookies\lisa@smartadserver[1].txt
Spyware détecté : Cookie/Serving-sys 18/09/07 18:06:23 Eliminé Emplacement : c:\users\lisa\appdata\roaming\microsoft\windows\cookies\lisa@bs.serving-sys[1].txt
Spyware détecté : Cookie/Serving-sys 18/09/07 18:06:23 Eliminé Emplacement : c:\users\lisa\appdata\roaming\microsoft\windows\cookies\lisa@serving-sys[1].txt
Spyware détecté : Cookie/Serving-sys 18/09/07 18:06:23 Eliminé Emplacement : c:\users\lisa\appdata\roaming\microsoft\windows\cookies\lisa@serving-sys[1].txt
Spyware détecté : Cookie/Weborama 18/09/07 18:05:57 Eliminé Emplacement : c:\users\lisa\appdata\roaming\microsoft\windows\cookies\lisa@weborama[1].txt
Spyware détecté : Cookie/Atlas DMT 18/09/07 18:05:54 Eliminé Emplacement : c:\users\lisa\appdata\roaming\microsoft\windows\cookies\lisa@atdmt[1].txt
Début de l'analyse 18/09/07 18:05:07 Analyse : Tous les disques durs
Fin de l'analyse 18/09/07 16:02:33 Analyse : Tous les disques durs
Spyware détecté : Cookie/Falkag 18/09/07 15:53:35 Eliminé Emplacement : c:\users\lisa\appdata\roaming\microsoft\windows\cookies\lisa@as-eu.falkag[1].txt
Début de l'analyse 18/09/07 15:26:09 Analyse : Tous les disques durs
Fin de l'analyse 18/09/07 15:17:52 Analyse : Tout mon PC
Spyware détecté : Cookie/Serving-sys 18/09/07 15:06:38 Eliminé Emplacement : C:\Users\Lisa\AppData\Roaming\Microsoft\Windows\Cookies\Low\lisa@serving-sys[2].txt
Spyware détecté : Cookie/Comclick 18/09/07 15:06:38 Eliminé Emplacement : C:\Users\Lisa\AppData\Roaming\Microsoft\Windows\Cookies\Low\lisa@fl01.ct2.comclick[1].txt
Spyware détecté : Cookie/Weborama 18/09/07 15:06:38 Eliminé Emplacement : C:\Users\Lisa\AppData\Roaming\Microsoft\Windows\Cookies\Low\lisa@weborama[1].txt
Spyware détecté : Cookie/Smartadserver 18/09/07 15:06:38 Eliminé Emplacement : C:\Users\Lisa\AppData\Roaming\Microsoft\Windows\Cookies\Low\lisa@smartadserver[1].txt
Spyware détecté : Cookie/Adtech 18/09/07 15:06:38 Eliminé Emplacement : C:\Users\Lisa\AppData\Roaming\Microsoft\Windows\Cookies\Low\lisa@adtech[2].txt
Spyware détecté : Cookie/Xiti 18/09/07 15:06:38 Eliminé Emplacement : C:\Users\Lisa\AppData\Roaming\Microsoft\Windows\Cookies\Low\lisa@xiti[1].txt
Spyware détecté : Cookie/Serving-sys 18/09/07 15:06:38 Eliminé Emplacement : C:\Users\Lisa\AppData\Roaming\Microsoft\Windows\Cookies\Low\lisa@bs.serving-sys[1].txt
Début de l'analyse 18/09/07 14:51:46 Analyse : Tout mon PC
Spyware détecté : Cookie/Falkag 18/09/07 14:47:36 Eliminé Emplacement : c:\users\lisa\appdata\roaming\microsoft\windows\cookies\lisa@as-eu.falkag[1].txt
Spyware détecté : Cookie/Falkag 18/09/07 14:46:03 Eliminé Emplacement : c:\users\lisa\appdata\roaming\microsoft\windows\cookies\lisa@as-eu.falkag[1].txt
Mise à jour 18/09/07 14:07:10 Correcte Signatures de menaces
Fin de l'analyse 18/09/07 12:07:14 Analyse : Tous les disques durs
Spyware détecté : Cookie/Serving-sys 18/09/07 11:51:58 Eliminé Emplacement : c:\users\lisa\appdata\roaming\microsoft\windows\cookies\lisa@serving-sys[1].txt
Spyware détecté : Cookie/Serving-sys 18/09/07 11:51:58 Eliminé Emplacement : c:\users\lisa\appdata\roaming\microsoft\windows\cookies\lisa@bs.serving-sys[1].txt
Spyware détecté : Cookie/Atlas DMT 18/09/07 11:50:57 Eliminé Emplacement : C:\Users\Lisa\AppData\Roaming\Microsoft\Windows\Cookies\Low\lisa@atdmt[2].txt
Spyware détecté : Cookie/Xiti 18/09/07 11:50:57 Eliminé Emplacement : C:\Users\Lisa\AppData\Roaming\Microsoft\Windows\Cookies\Low\lisa@xiti[1].txt
Début de l'analyse 18/09/07 11:38:46 Analyse : Tous les disques durs
Spyware détecté : Cookie/Weborama 18/09/07 11:36:56 Eliminé Emplacement : c:\users\lisa\appdata\roaming\microsoft\windows\cookies\lisa@weborama[1].txt
Spyware détecté : Cookie/Atlas DMT 18/09/07 11:36:56 Eliminé Emplacement : c:\users\lisa\appdata\roaming\microsoft\windows\cookies\lisa@atdmt[1].txt
Spyware détecté : Cookie/Serving-sys 18/09/07 11:36:53 Bloqué Emplacement : c:\users\lisa\appdata\roaming\microsoft\windows\cookies\lisa@serving-sys[1].txt
Spyware détecté : Cookie/Serving-sys 18/09/07 11:36:53 Eliminé Emplacement : c:\users\lisa\appdata\roaming\microsoft\windows\cookies\lisa@serving-sys[1].txt
Spyware détecté : Cookie/Serving-sys 18/09/07 11:36:53 Eliminé Emplacement : c:\users\lisa\appdata\roaming\microsoft\windows\cookies\lisa@bs.serving-sys[1].txt
Fin de l'analyse 18/09/07 09:18:02 Analyse : Tous les disques durs
Spyware détecté : Cookie/Smartadserver 18/09/07 09:00:05 Eliminé Emplacement : C:\Users\Lisa\AppData\Roaming\Microsoft\Windows\Cookies\Low\lisa@smartadserver[1].txt
Spyware détecté : Cookie/Weborama 18/09/07 09:00:05 Eliminé Emplacement : C:\Users\Lisa\AppData\Roaming\Microsoft\Windows\Cookies\Low\lisa@weborama[1].txt
Spyware détecté : Cookie/Atlas DMT 18/09/07 09:00:05 Eliminé Emplacement : C:\Users\Lisa\AppData\Roaming\Microsoft\Windows\Cookies\Low\lisa@atdmt[2].txt
Spyware détecté : Cookie/Xiti 18/09/07 09:00:05 Eliminé Emplacement : C:\Users\Lisa\AppData\Roaming\Microsoft\Windows\Cookies\Low\lisa@xiti[1].txt
Programme de surveillance détecté : Application/MailSkinner 18/09/07 08:35:18 Informé Emplacement : C:\...\$RI59O92_exe.vir[OLSkinner.dll]
Programme de surveillance détecté : Application/MailSkinner 18/09/07 08:35:17 Informé Emplacement : $RI59O92_exe.vir[MailSkinner.exe]
Logiciel publicitaire détecté : Adware/NaviPromo 18/09/07 08:35:15 Informé Emplacement : C:\$Recycle.Bin\S-1-5-21-3955613599-3626709804-3129783513-1000\$RI59O92_exe.vir[²ÜÇ\NSUtils.dll]
Début de l'analyse 18/09/07 08:35:09 Analyse : Tous les disques durs
Fin de l'analyse 18/09/07 08:21:22 Analyse : Menu Contextuel
Début de l'analyse 18/09/07 08:21:22 Analyse : Menu Contextuel
Spyware détecté : Cookie/Weborama 18/09/07 07:51:19 Eliminé Emplacement : c:\users\lisa\appdata\roaming\microsoft\windows\cookies\lisa@weborama[1].txt
Spyware détecté : Cookie/Atlas DMT 18/09/07 07:51:18 Eliminé Emplacement : c:\users\lisa\appdata\roaming\microsoft\windows\cookies\lisa@atdmt[1].txt
Mise à jour 18/09/07 07:40:17 Correcte Signatures de menaces
Mise à jour 18/09/07 07:40:12 Correcte Nouvelles signatures de menaces : 254
Spyware détecté : Cookie/Atlas DMT 18/09/07 07:36:13 Eliminé Emplacement : c:\users\lisa\appdata\roaming\microsoft\windows\cookies\lisa@atdmt[1].txt
Spyware détecté : Cookie/Weborama 18/09/07 07:36:13 Eliminé Emplacement : c:\users\lisa\appdata\roaming\microsoft\windows\cookies\lisa@weborama[1].txt
Spyware détecté : Cookie/Smartadserver 18/09/07 07:36:02 Eliminé Emplacement : c:\users\lisa\appdata\roaming\microsoft\windows\cookies\lisa@smartadserver[1].txt
Spyware détecté : Cookie/Xiti 18/09/07 07:35:25 Bloqué Emplacement : c:\users\lisa\appdata\roaming\microsoft\windows\cookies\low\lisa@xiti[1].txt
Spyware détecté : Cookie/Xiti 18/09/07 07:35:25 Bloqué Emplacement : c:\users\lisa\appdata\roaming\microsoft\windows\cookies\low\lisa@xiti[1].txt
Spyware détecté : Cookie/Atlas DMT 17/09/07 20:48:42 Bloqué Emplacement : c:\users\lisa\appdata\roaming\microsoft\windows\cookies\low\lisa@atdmt[1].txt
Spyware détecté : Cookie/Weborama 17/09/07 20:30:23 Eliminé Emplacement : c:\users\lisa\appdata\roaming\microsoft\windows\cookies\lisa@weborama[1].txt
Spyware détecté : Cookie/Atlas DMT 17/09/07 20:30:23 Eliminé Emplacement : c:\users\lisa\appdata\roaming\microsoft\windows\cookies\lisa@atdmt[1].txt
Spyware détecté : Cookie/Smartadserver 17/09/07 20:30:17 Eliminé Emplacement : c:\users\lisa\appdata\roaming\microsoft\windows\cookies\lisa@smartadserver[1].txt
Spyware détecté : Cookie/Serving-sys 17/09/07 20:30:10 Eliminé Emplacement : c:\users\lisa\appdata\roaming\microsoft\windows\cookies\lisa@serving-sys[1].txt
Spyware détecté : Cookie/Weborama 17/09/07 20:09:28 Eliminé Emplacement : c:\users\lisa\appdata\roaming\microsoft\windows\cookies\lisa@weborama[1].txt
Spyware détecté : Cookie/Atlas DMT 17/09/07 20:09:28 Eliminé Emplacement : c:\users\lisa\appdata\roaming\microsoft\windows\cookies\lisa@atdmt[1].txt
Spyware détecté : Cookie/Smartadserver 17/09/07 20:09:26 Eliminé Emplacement : c:\users\lisa\appdata\roaming\microsoft\windows\cookies\lisa@smartadserver[1].txt
Spyware détecté : Cookie/Serving-sys 17/09/07 20:09:21 Eliminé Emplacement : c:\users\lisa\appdata\roaming\microsoft\windows\cookies\lisa@bs.serving-sys[1].txt
Spyware détecté : Cookie/Serving-sys 17/09/07 20:09:21 Eliminé Emplacement : c:\users\lisa\appdata\roaming\microsoft\windows\cookies\lisa@serving-sys[1].txt
Mise à jour 17/09/07 20:08:29 Correcte Signatures de menaces
Spyware détecté : Cookie/Xiti 17/09/07 20:08:18 Eliminé Emplacement : c:\users\lisa\appdata\roaming\microsoft\windows\cookies\low\lisa@xiti[1].txt
Spyware détecté : Cookie/Serving-sys 17/09/07 20:08:17 Bloqué Emplacement : c:\users\lisa\appdata\roaming\microsoft\windows\cookies\low\lisa@serving-sys[2].txt
Spyware détecté : Cookie/Serving-sys 17/09/07 20:08:17 Bloqué Emplacement : c:\users\lisa\appdata\roaming\microsoft\windows\cookies\low\lisa@serving-sys[2].txt
Spyware détecté : Cookie/Weborama 17/09/07 20:08:17 Bloqué Emplacement : c:\users\lisa\appdata\roaming\microsoft\windows\cookies\low\lisa@weborama[1].txt
Spyware détecté : Cookie/Atlas DMT 17/09/07 20:08:16 Bloqué Emplacement : c:\users\lisa\appdata\roaming\microsoft\windows\cookies\low\lisa@atdmt[2].txt
Spyware détecté : Cookie/Serving-sys 17/09/07 20:08:16 Bloqué Emplacement : c:\users\lisa\appdata\roaming\microsoft\windows\cookies\low\lisa@bs.serving-sys[1].txt
Fin de l'analyse 17/09/07 15:10:45 Analyse : C:
Spyware détecté : Cookie/Xiti 17/09/07 14:44:15 Eliminé Emplacement : C:\Users\Lisa\AppData\Roaming\Microsoft\Windows\Cookies\Low\lisa@xiti[1].txt
Spyware détecté : Cookie/Weborama 17/09/07 14:44:15 Eliminé Emplacement : C:\Users\Lisa\AppData\Roaming\Microsoft\Windows\Cookies\Low\lisa@weborama[1].txt
Spyware détecté : Cookie/Overture 17/09/07 14:44:15 Eliminé Emplacement : C:\Users\Lisa\AppData\Roaming\Microsoft\Windows\Cookies\Low\lisa@overture[1].txt
Spyware détecté : Cookie/Atlas DMT 17/09/07 14:44:15 Eliminé Emplacement : C:\Users\Lisa\AppData\Roaming\Microsoft\Windows\Cookies\Low\lisa@atdmt[2].txt
Spyware détecté : Cookie/Serving-sys 17/09/07 14:32:03 Eliminé Emplacement : c:\users\lisa\appdata\roaming\microsoft\windows\cookies\lisa@serving-sys[1].txt
Spyware détecté : Cookie/Serving-sys 17/09/07 14:32:03 Eliminé Emplacement : c:\users\lisa\appdata\roaming\microsoft\windows\cookies\lisa@bs.serving-sys[1].txt
Programme de surveillance détecté : Application/MailSkinner 17/09/07 14:22:39 Informé Emplacement : C:\$Recycle.Bin\S-1-5-21-3955613599-3626709804-3129783513-1000\$RI59O92_exe.vir[OLSkinner.dll]
Programme de surveillance détecté : Application/MailSkinner 17/09/07 14:22:39 Informé Emplacement : $RI59O92_exe.vir[MailSkinner.exe]
Logiciel publicitaire détecté : Adware/NaviPromo 17/09/07 14:22:31 Informé Emplacement : C:\$Recycle.Bin\S-1-5-21-3955613599-3626709804-3129783513-1000\$RI59O92_exe.vir[²ÜÇ\NSUtils.dll]
Début de l'analyse 17/09/07 14:22:24 Analyse : C:
Spyware détecté : Cookie/Serving-sys 17/09/07 14:17:01 Eliminé Emplacement : c:\users\lisa\appdata\roaming\microsoft\windows\cookies\lisa@serving-sys[1].txt
Spyware détecté : Cookie/Serving-sys 17/09/07 14:17:01 Eliminé Emplacement : c:\users\lisa\appdata\roaming\microsoft\windows\cookies\lisa@serving-sys[2].txt
Spyware détecté : Cookie/Serving-sys 17/09/07 14:17:01 Eliminé Emplacement : c:\users\lisa\appdata\roaming\microsoft\windows\cookies\lisa@serving-sys[2].txt
Spyware détecté : Cookie/Smartadserver 17/09/07 14:17:01 Eliminé Emplacement : c:\users\lisa\appdata\roaming\microsoft\windows\cookies\lisa@smartadserver[1].txt
Spyware détecté : Cookie/Serving-sys 17/09/07 14:17:01 Eliminé Emplacement : c:\users\lisa\appdata\roaming\microsoft\windows\cookies\lisa@serving-sys[1].txt
Spyware détecté : Cookie/Serving-sys 17/09/07 14:17:01 Eliminé Emplacement : c:\users\lisa\appdata\roaming\microsoft\windows\cookies\lisa@bs.serving-sys[1].txt
Spyware détecté : Cookie/Serving-sys 17/09/07 14:15:57 Eliminé Emplacement : c:\users\lisa\appdata\roaming\microsoft\windows\cookies\lisa@serving-sys[1].txt
Spyware détecté : Cookie/Serving-sys 17/09/07 14:15:57 Eliminé Emplacement : c:\users\lisa\appdata\roaming\microsoft\windows\cookies\lisa@bs.serving-sys[1].txt
Spyware détecté : Cookie/Weborama 17/09/07 14:13:09 Eliminé Emplacement : c:\users\lisa\appdata\roaming\microsoft\windows\cookies\lisa@weborama[1].txt
Spyware détecté : Cookie/Weborama 17/09/07 14:13:09 Eliminé Emplacement : c:\users\lisa\appdata\roaming\microsoft\windows\cookies\lisa@weborama[2].txt
Spyware détecté : Cookie/Atlas DMT 17/09/07 14:13:09 Eliminé Emplacement : c:\users\lisa\appdata\roaming\microsoft\windows\cookies\lisa@atdmt[1].txt
Spyware détecté : Cookie/Smartadserver 17/09/07 14:13:08 Eliminé Emplacement : c:\users\lisa\appdata\roaming\microsoft\windows\cookies\lisa@smartadserver[1].txt
Spyware détecté : Cookie/Serving-sys 17/09/07 14:13:08 Eliminé Emplacement : c:\users\lisa\appdata\roaming\microsoft\windows\cookies\lisa@serving-sys[1].txt
Spyware détecté : Cookie/Serving-sys 17/09/07 14:13:08 Eliminé Emplacement : c:\users\lisa\appdata\roaming\microsoft\windows\cookies\lisa@bs.serving-sys[1].txt
Spyware détecté : Cookie/Serving-sys 17/09/07 14:13:08 Eliminé Emplacement : c:\users\lisa\appdata\roaming\microsoft\windows\cookies\lisa@serving-sys[1].txt
Spyware détecté : Cookie/Serving-sys 17/09/07 14:13:08 Eliminé Emplacement : c:\users\lisa\appdata\roaming\microsoft\windows\cookies\lisa@serving-sys[2].txt
Spyware détecté : Cookie/Serving-sys 17/09/07 14:12:52 Eliminé Emplacement : c:\users\lisa\appdata\roaming\microsoft\windows\cookies\lisa@bs.serving-sys[1].txt
Spyware détecté : Cookie/Serving-sys 17/09/07 14:12:52 Eliminé Emplacement : c:\users\lisa\appdata\roaming\microsoft\windows\cookies\lisa@serving-sys[1].txt
Spyware détecté : Cookie/Serving-sys 17/09/07 14:10:43 Eliminé Emplacement : c:\users\lisa\appdata\roaming\microsoft\windows\cookies\lisa@serving-sys[1].txt
Spyware détecté : Cookie/Serving-sys 17/09/07 14:10:40 Eliminé Emplacement : c:\users\lisa\appdata\roaming\microsoft\windows\cookies\lisa@serving-sys[1].txt
Spyware détecté : Cookie/Serving-sys 17/09/07 14:10:40 Eliminé Emplacement : c:\users\lisa\appdata\roaming\microsoft\windows\cookies\lisa@bs.serving-sys[1].txt
Spyware détecté : Cookie/Serving-sys 17/09/07 14:10:40 Eliminé Emplacement : c:\users\lisa\appdata\roaming\microsoft\windows\cookies\lisa@serving-sys[2].txt
Spyware détecté : Cookie/Smartadserver 17/09/07 14:10:40 Eliminé Emplacement : c:\users\lisa\appdata\roaming\microsoft\windows\cookies\lisa@smartadserver[1].txt
Spyware détecté : Cookie/Weborama 17/09/07 14:10:19 Eliminé Emplacement : c:\users\lisa\appdata\roaming\microsoft\windows\cookies\lisa@weborama[1].txt
Spyware détecté : Cookie/Atlas DMT 17/09/07 14:10:19 Eliminé Emplacement : c:\users\lisa\appdata\roaming\microsoft\windows\cookies\lisa@atdmt[1].txt
Spyware détecté : Cookie/Weborama 17/09/07 14:10:19 Eliminé Emplacement : c:\users\lisa\appdata\roaming\microsoft\windows\cookies\lisa@weborama[1].txt
Spyware détecté : Cookie/Falkag 17/09/07 13:52:26 Eliminé Emplacement : c:\users\lisa\appdata\roaming\microsoft\windows\cookies\lisa@as-eu.falkag[1].txt
Fin de l'analyse 17/09/07 13:50:21 Analyse : Menu Contextuel
Début de l'analyse 17/09/07 13:50:20 Analyse : Menu Contextuel
Fin de l'analyse 17/09/07 13:49:50 Analyse : Menu Contextuel
Début de l'analyse 17/09/07 13:49:49 Analyse : Menu Contextuel
Fin de l'analyse 17/09/07 13:49:39 Analyse : Menu Contextuel
Début de l'analyse 17/09/07 13:49:37 Analyse : Menu Contextuel
Fin de l'analyse 17/09/07 13:48:31 Analyse : Menu Contextuel
Début de l'analyse 17/09/07 13:48:24 Analyse : Menu Contextuel
Mise à jour 17/09/07 13:44:39 Correcte Signatures de menaces
Fin de l'analyse 17/09/07 13:23:15 Analyse : Menu Contextuel
Début de l'analyse 17/09/07 13:23:15 Analyse : Menu Contextuel
Fin de l'analyse 17/09/07 13:23:05 Analyse : Menu Contextuel
Début de l'analyse 17/09/07 13:23:05 Analyse : Menu Contextuel
Fin de l'analyse 17/09/07 13:18:08 Analyse : Tous les disques durs
Spyware détecté : Cookie/Serving-sys 17/09/07 13:10:31 Eliminé Emplacement : c:\users\lisa\appdata\roaming\microsoft\windows\cookies\lisa@bs.serving-sys[1].txt
Programme de surveillance détecté : Application/MailSkinner 17/09/07 12:57:00 Informé Emplacement : C:\...\$RI59O92_exe.vir[OLSkinner.dll]
Programme de surveillance détecté : Application/MailSkinner 17/09/07 12:56:59 Informé Emplacement : $RI59O92_exe.vir[MailSkinner.exe]
Logiciel publicitaire détecté : Adware/NaviPromo 17/09/07 12:56:56 Informé Emplacement : C:\$Recycle.Bin\S-1-5-21-3955613599-3626709804-3129783513-1000\$RI59O92_exe.vir[²ÜÇ\NSUtils.dll]
Début de l'analyse 17/09/07 12:56:42 Analyse : Tous les disques durs
Spyware détecté : Cookie/Serving-sys 17/09/07 12:55:25 Eliminé Emplacement : c:\users\lisa\appdata\roaming\microsoft\windows\cookies\lisa@serving-sys[1].txt
Spyware détecté : Cookie/Serving-sys 17/09/07 12:55:25 Eliminé Emplacement : c:\users\lisa\appdata\roaming\microsoft\windows\cookies\lisa@bs.serving-sys[1].txt
Spyware détecté : Cookie/Smartadserver 17/09/07 12:55:25 Eliminé Emplacement : c:\users\lisa\appdata\roaming\microsoft\windows\cookies\lisa@smartadserver[1].txt
Spyware détecté : Cookie/Weborama 17/09/07 12:55:25 Eliminé Emplacement : c:\users\lisa\appdata\roaming\microsoft\windows\cookies\lisa@weborama[1].txt
Spyware détecté : Cookie/Atlas DMT 17/09/07 12:55:25 Eliminé Emplacement : c:\users\lisa\appdata\roaming\microsoft\windows\cookies\lisa@atdmt[1].txt
Spyware détecté : Cookie/Xiti 17/09/07 12:52:11 Bloqué Emplacement : c:\users\lisa\appdata\roaming\microsoft\windows\cookies\low\lisa@xiti[1].txt
Spyware détecté : Cookie/Weborama 17/09/07 12:52:11 Eliminé Emplacement : c:\users\lisa\appdata\roaming\microsoft\windows\cookies\low\lisa@weborama[1].txt
Spyware détecté : Cookie/Overture 17/09/07 12:52:10 Eliminé Emplacement : c:\users\lisa\appdata\roaming\microsoft\windows\cookies\low\lisa@overture[1].txt
Spyware détecté : Cookie/Atlas DMT 17/09/07 12:52:10 Bloqué Emplacement : c:\users\lisa\appdata\roaming\microsoft\windows\cookies\low\lisa@atdmt[2].txt
Spyware détecté : Cookie/Serving-sys 17/09/07 11:21:59 Eliminé Emplacement : c:\users\lisa\appdata\roaming\microsoft\windows\cookies\lisa@bs.serving-sys[1].txt
Spyware détecté : Cookie/Serving-sys 17/09/07 11:21:59 Eliminé Emplacement : c:\users\lisa\appdata\roaming\microsoft\windows\cookies\lisa@serving-sys[1].txt
Spyware détecté : Cookie/Weborama 17/09/07 11:06:58 Eliminé Emplacement : c:\users\lisa\appdata\roaming\microsoft\windows\cookies\lisa@weborama[2].txt
Spyware détecté : Cookie/Weborama 17/09/07 11:06:58 Eliminé Emplacement : c:\users\lisa\appdata\roaming\microsoft\windows\cookies\lisa@weborama[1].txt
Spyware détecté : Cookie/Atlas DMT 17/09/07 11:06:58 Eliminé Emplacement : c:\users\lisa\appdata\roaming\microsoft\windows\cookies\lisa@atdmt[1].txt
Spyware détecté : Cookie/Serving-sys 17/09/07 11:06:55 Eliminé Emplacement : c:\users\lisa\appdata\roaming\microsoft\windows\cookies\lisa@serving-sys[1].txt
Spyware détecté : Cookie/Serving-sys 17/09/07 11:06:55 Eliminé Emplacement : c:\users\lisa\appdata\roaming\microsoft\windows\cookies\lisa@bs.serving-sys[1].txt
Spyware détecté : Cookie/Smartadserver 17/09/07 11:06:55 Eliminé Emplacement : c:\users\lisa\appdata\roaming\microsoft\windows\cookies\lisa@smartadserver[1].txt
Fin de l'analyse 17/09/07 10:32:09 Analyse : Menu Contextuel
Début de l'analyse 17/09/07 10:32:08 Analyse : Menu Contextuel
Fin de l'analyse 17/09/07 10:31:59 Analyse : Menu Contextuel
Début de l'analyse 17/09/07 10:31:59 Analyse : Menu Contextuel
Fin de l'analyse 17/09/07 10:31:50 Analyse : Menu Contextuel
Début de l'analyse 17/09/07 10:31:39 Analyse : Menu Contextuel
Fin de l'analyse 17/09/07 10:30:15 Analyse : Menu Contextuel
Début de l'analyse 17/09/07 10:29:42 Analyse : Menu Contextuel
Fin de l'analyse 17/09/07 10:28:49 Analyse : Menu Contextuel
Début de l'analyse 17/09/07 10:28:48 Analyse : Menu Contextuel
Fin de l'analyse 17/09/07 10:28:35 Analyse : Menu Contextuel
Début de l'analyse 17/09/07 10:28:33 Analyse : Menu Contextuel
Fin de l'analyse 17/09/07 10:27:49 Analyse : Menu Contextuel
Début de l'analyse 17/09/07 10:27:29 Analyse : Menu Contextuel
Fin de l'analyse 17/09/07 10:19:13 Analyse : Menu Contextuel
Début de l'analyse 17/09/07 10:18:12 Analyse : Menu Contextuel
Fin de l'analyse 17/09/07 10:17:40 Analyse : Menu Contextuel
Début de l'analyse 17/09/07 10:17:39 Analyse : Menu Contextuel
Fin de l'analyse 17/09/07 10:17:33 Analyse : Menu Contextuel
Début de l'analyse 17/09/07 10:17:33 Analyse : Menu Contextuel
0
Réponse 42 / 65
Regis59 Messages postés 21143 Date d'inscription mardi 27 juin 2006 Statut Contributeur sécurité Dernière intervention 22 juin 2016 1 321
18 sept. 2007 à 21:09
Ok, toujours pareil mais t as le rapport de spybot?
0
Réponse 43 / 65
lisa1708
18 sept. 2007 à 21:39
j'ai enormement de mal à utiliser mon ordi ce soir!!!, il est comme possédé!!!!, les virus peuvent t'ils m'empecher de faire des manip' ou d'acceder à ce site?!!!! là je commence à stresser!!! ou alors c'est le net' qui deconne!!!...OU MOI!!!! LOL!!!!

par contre, le rapport ci dessus est rempli de spayware, mais panda m'a dit "aucun virus n'a été detecté"!!!, comment le rapport peut il etre si different?

je t'envoi le rapport spybot ......heu!!, je veu bien, mail il est ou le presse papier?????....
0
Réponse 44 / 65
lisa1708
18 sept. 2007 à 21:53
je l'ai mi dan mes documents!, plus facile!...bonne lecture et à demain!!


--- Search result list ---
Message Mates: Réglages utilisateur (Clé du registre, nothing done)
HKEY_USERS\S-1-5-21-3955613599-3626709804-3129783513-1000\Software\AdTools, Inc.


--- Spybot - Search & Destroy version: 1.4 (build: 20050523) ---

2005-05-31 blindman.exe (1.0.0.1)
2005-05-31 SpybotSD.exe (1.4.0.3)
2005-05-31 TeaTimer.exe (1.4.0.2)
2007-08-14 unins000.exe (51.41.0.0)
2005-05-31 Update.exe (1.4.0.0)
2007-05-23 advcheck.dll (1.5.3.0)
2005-05-31 aports.dll (2.1.0.0)
2005-05-31 borlndmm.dll (7.0.4.453)
2005-05-31 delphimm.dll (7.0.4.453)
2005-05-31 SDHelper.dll (1.4.0.0)
2007-07-31 Tools.dll (2.1.2.0)
2005-05-31 UnzDll.dll (1.73.1.1)
2005-05-31 ZipDll.dll (1.73.2.0)
2007-09-12 Includes\Cookies.sbi (*)
2007-07-25 Includes\Dialer.sbi (*)
2007-09-12 Includes\DialerC.sbi (*)
2007-08-29 Includes\Hijackers.sbi (*)
2007-09-12 Includes\HijackersC.sbi (*)
2007-07-25 Includes\Keyloggers.sbi (*)
2007-09-12 Includes\KeyloggersC.sbi (*)
2007-09-12 Includes\Malware.sbi (*)
2007-09-12 Includes\MalwareC.sbi (*)
2007-09-05 Includes\PUPS.sbi (*)
2007-09-12 Includes\PUPSC.sbi (*)
2007-09-12 Includes\Revision.sbi (*)
2007-05-30 Includes\Security.sbi (*)
2007-09-12 Includes\SecurityC.sbi (*)
2007-09-12 Includes\Spybots.sbi (*)
2007-09-12 Includes\SpybotsC.sbi (*)
2007-08-21 Includes\Tracks.uti
2007-09-12 Includes\Trojans.sbi (*)
2007-09-12 Includes\TrojansC.sbi (*)
2007-06-06 Plugins\TCPIPAddress.dll



--- System information ---
Unknown Windows version 6.0 (Build: 6000)
/ MSXML4SP2: FIX: ASP stops responding when calling Response.Redirect to another server using msxml4 sp2
/ MSXML4SP2: FIX: ASP stops responding when calling Response.Redirect to another server using msxml4 sp2
/ MSXML4SP2: Security update for MSXML4 SP2 (KB936181)


--- Startup entries list ---
Located: HK_LM:Run, 00TCrdMain
command: %ProgramFiles%\TOSHIBA\FlashCards\TCrdMain.exe
file: C:\Program Files\TOSHIBA\FlashCards\TCrdMain.exe
size: 530552
MD5: e57a49bc4c21c2f2ea5403626efc6df0

Located: HK_LM:Run, APVXDWIN
command: "C:\Program Files\Panda Software\Panda Antivirus 2007\APVXDWIN.EXE" /s
file: C:\Program Files\Panda Software\Panda Antivirus 2007\APVXDWIN.EXE
size: 321072
MD5: 907ab6685973c4ca1b289eaa542aadfa

Located: HK_LM:Run, ATICCC
command: "C:\Program Files\ATI Technologies\ATI.ACE\CLIStart.exe"
file: C:\Program Files\ATI Technologies\ATI.ACE\CLIStart.exe
size: 90112
MD5: d331734ec12cc7a5f14d89735432800f

Located: HK_LM:Run, LanzarL2007
command: "C:\Users\Lisa\AppData\Local\Temp\{13079429-C7BB-4D5B-82D9-1DFB1FD4D7A0}\{D1DA2BA7-2592-4036-9BB2-DCCABDE8DC1A}\..\..\L2007tmp\Setup.exe" /SETUP:"/l0x040c"
file:

Located: HK_LM:Run, LogitechCommunicationsManager
command: "C:\Program Files\Common Files\LogiShrd\LComMgr\Communications_Helper.exe"
file: C:\Program Files\Common Files\LogiShrd\LComMgr\Communications_Helper.exe
size: 488984
MD5: 022db38becb5a44da6f7e27923457624

Located: HK_LM:Run, LogitechQuickCamRibbon
command: "C:\Program Files\Logitech\QuickCam10\QuickCam10.exe" /hide
file: C:\Program Files\Logitech\QuickCam10\QuickCam10.exe
size: 774168
MD5: 6b84b11cfad4173733dd96c810d9bc6f

Located: HK_LM:Run, LtMoh
command: C:\Program Files\ltmoh\Ltmoh.exe
file: C:\Program Files\ltmoh\Ltmoh.exe
size: 188416
MD5: 7dc4e93f9be692e29b1e1d27b6a389dc

Located: HK_LM:Run, LVCOMSX
command: "C:\Program Files\Common Files\LogiShrd\LComMgr\LVComSX.exe"
file: C:\Program Files\Common Files\LogiShrd\LComMgr\LVComSX.exe
size: 252704
MD5: ad7503d6857dbffc7e5f2e96bc9cc283

Located: HK_LM:Run, NDSTray.exe
command: NDSTray.exe
file:

Located: HK_LM:Run, QuickTime Task
command: "C:\Program Files\QuickTime\qttask.exe" -atboottime
file: C:\Program Files\QuickTime\qttask.exe
size: 282624
MD5: caf03357de72f8f19fa099581a685c1a

Located: HK_LM:Run, RtHDVCpl
command: RtHDVCpl.exe
file: C:\Windows\RtHDVCpl.exe
size: 3772416
MD5: 97aabae3e81ca2cb198fd1ba38795ead

Located: HK_LM:Run, SmoothView
command: %ProgramFiles%\Toshiba\SmoothView\SmoothView.exe
file: C:\Program Files\Toshiba\SmoothView\SmoothView.exe
size: 493688
MD5: 1ed780f9c470d4f22d9ef29a3082b0f4

Located: HK_LM:Run, SunJavaUpdateSched
command: "C:\Program Files\Java\jre1.6.0\bin\jusched.exe"
file: C:\Program Files\Java\jre1.6.0\bin\jusched.exe
size: 77824
MD5: 8f5e772b91a10ac97415b760ff21a94f

Located: HK_LM:Run, SynTPEnh
command: C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
file: C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
size: 815104
MD5: f98281ef23616f751fabe97a6ec5dbe6

Located: HK_LM:Run, topi
command: C:\Program Files\TOSHIBA\Toshiba Online Product Information\topi.exe -startup
file:

Located: HK_LM:Run, TOSHIBA Volume Indicator
command: "C:\Program Files\Toshiba\Utilities\VolControl.exe"
file: C:\Program Files\Toshiba\Utilities\VolControl.exe
size: 94208
MD5: 21951365ee72b60574d2b1615939746d

Located: HK_LM:Run, TPwrMain
command: %ProgramFiles%\TOSHIBA\Power Saver\TPwrMain.EXE
file: C:\Program Files\TOSHIBA\Power Saver\TPwrMain.EXE
size: 411768
MD5: 878ca2665dbbe3d45874347b88e27244

Located: HK_LM:Run, Windows Defender
command: %ProgramFiles%\Windows Defender\MSASCui.exe -hide
file:

Located: HK_LM:Run, zzz_ImInstaller_IncrediMail
command: C:\Users\Lisa\AppData\Local\Temp\ImInstaller\IncrediMail\incredimail_install[1].exe -startup -product IncrediMail
file:

Located: HK_CU:Run, ccleaner
command: "C:\Users\Public\Downloads\CCleaner\ccleaner.exe" /AUTO
file: C:\Users\Public\Downloads\CCleaner\ccleaner.exe
size: 598920
MD5: 02dc8f8fdc55ffe0a7ae6626bdd3f850

Located: HK_CU:Run, Diddl_Scr.exe
command: C:\Program Files\Diddl Screenmate\Diddl_Scr.exe
file: C:\Program Files\Diddl Screenmate\Diddl_Scr.exe
size: 5857280
MD5: 703f63a7df966760160662915a777056

Located: HK_CU:Run, Felix II
command: C:\Program Files\ScreenMates\Felix II\Fr\Felix2.exe
file: C:\Program Files\ScreenMates\Felix II\Fr\Felix2.exe
size: 1007616
MD5: bbc2b34ffd7d65f130f2903c3332a66e

Located: HK_CU:Run, MsnMsgr
command: "C:\Program Files\MSN Messenger\MsnMsgr.Exe" /background
file: C:\Program Files\MSN Messenger\MsnMsgr.Exe
size: 5674352
MD5: a7efc7ea7ef6fb022a8a95813edcbe5d

Located: HK_CU:Run, Sidebar
command: C:\Program Files\Windows Sidebar\sidebar.exe /autoRun
file:

Located: HK_CU:Run, TOSCDSPD
command: C:\Program Files\TOSHIBA\TOSCDSPD\TOSCDSPD.exe
file: C:\Program Files\TOSHIBA\TOSCDSPD\TOSCDSPD.exe
size: 413696
MD5: 002835a0afff66d5a7b7fb266a6aa368

Located: Démarrage (tous utilisateurs), Lancement rapide d'Adobe Reader.lnk
command: C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe
file: C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe
size: 29696
MD5: 43362b96870ce8649f4f2ec893da93f0

Located: Démarrage (tous utilisateurs), Microsoft Office.lnk
command: C:\Program Files\Microsoft Office\Office\OSA9.EXE
file: C:\Program Files\Microsoft Office\Office\OSA9.EXE
size: 65588
MD5: 2ffa2696472c004f1f89c183da953aae

Located: System.ini, avldr
command: avldr.dll
file: avldr.dll



--- Browser helper object list ---
{9030D464-4C02-4ABF-8ECC-5164760863C6} (Windows Live Sign-in Helper)
BHO name:
CLSID name: Windows Live Sign-in Helper
Path: C:\Program Files\Common Files\Microsoft Shared\Windows Live\
Long name: WindowsLiveLogin.dll
Short name: WINDOW~1.DLL
Date (created): 31/08/2006 21:33:06
Date (last access): 19/03/2007 20:30:58
Date (last write): 31/08/2006 21:33:06
Filesize: 322368
Attributes: archive
MD5: E43F7CFDEE2B00A22C96C168147B20D3
CRC32: 2AEACC43
Version: 4.100.313.1

{BDBD1DAD-C946-4A17-ADC1-64B5B4FF55D0} (Windows Live Toolbar Helper)
BHO name:
CLSID name: Windows Live Toolbar Helper
Path: C:\Program Files\Windows Live Toolbar\
Long name: msntb.dll
Short name:
Date (created): 12/02/2007 15:56:04
Date (last access): 01/06/2007 08:25:52
Date (last write): 12/02/2007 15:56:04
Filesize: 546672
Attributes: archive
MD5: 0FAF0281CBC1F5B8293A2A03745C0ACB
CRC32: C42472CB
Version: 3.1.0.130



--- ActiveX list ---
{04CB5B64-5915-4629-B869-8945CEBADD21} (Module de délivrance de certificat MINEFI)
DPF name:
CLSID name: Module de délivrance de certificat MINEFI
Installer:
Codebase: https://static.impots.gouv.fr/abos/static/securite/certdgi1.cab
Path: C:\Windows\Downloaded Program Files\
Long name: CERTDGI1.dll
Short name:
Date (created): 06/04/2007 13:10:34
Date (last access): 06/04/2007 13:10:34
Date (last write): 06/04/2007 13:10:34
Filesize: 117288
Attributes: archive
MD5: 612E0D35B33BC1AFCE1D563F01398F5D
CRC32: DD758CDC
Version: 1.0.0.5

{7FC1B346-83E6-4774-8D20-1A6B09B0E737} (Windows Live Photo Upload Control)
DPF name:
CLSID name: Windows Live Photo Upload Control
Installer: C:\Windows\Downloaded Program Files\CONFLICT.1\MSNPUpld.inf
Codebase: http://cid-571070718028b7e2.spaces.live.com/PhotoUpload/VistaMsnPUpldfr-fr.cab
Path: C:\Windows\Downloaded Program Files\CONFLICT.1\
Long name: MsnPUpld.dll
Short name:
Date (created): 02/08/2007 11:31:32
Date (last access): 02/08/2007 11:31:32
Date (last write): 02/08/2007 11:31:32
Filesize: 360320
Attributes: archive
MD5: C670858E2347EAB5C9507A91A142210F
CRC32: B1C9923E
Version: 10.0.916.0

{8436FE12-31DB-48BF-83BF-FE682F9160B4} (NanoInstaller Class)
DPF name:
CLSID name: NanoInstaller Class
Installer: C:\Windows\Downloaded Program Files\nanoinst.inf
Codebase: https://www.pandasecurity.com/en/homeusers/online-antivirus/?ref=activescan
Path: C:\Windows\Downloaded Program Files\
Long name: NanoInst.dll
Short name:
Date (created): 22/08/2007 09:55:30
Date (last access): 22/08/2007 09:55:30
Date (last write): 22/08/2007 09:55:30
Filesize: 38280
Attributes: archive
MD5: CCC32C37746AD012E893CD3472802391
CRC32: D0AD721C
Version: 2.2.0.4

{8FFBE65D-2C9C-4669-84BD-5829DC0B603C} ()
DPF name:
CLSID name:
Installer: C:\Windows\Downloaded Program Files\erma.inf
Codebase: http://fpdownload.macromedia.com/get/flashplayer/current/ultrashim.cab
description:
classification: Open for discussion
known filename:
info link:
info source: Safer Networking Ltd.



--- Process list ---
PID: 400 ( 4) \SystemRoot\System32\smss.exe
PID: 528 ( 516) C:\Windows\system32\csrss.exe
size: 7680
MD5: 117B7C8A8B026A5DCE5E3180ED05E823
PID: 576 ( 516) C:\Windows\system32\wininit.exe
size: 95744
MD5: D4385B03E8CCCEE6F0EE249F827C1F3E
PID: 588 ( 568) C:\Windows\system32\csrss.exe
size: 7680
MD5: 117B7C8A8B026A5DCE5E3180ED05E823
PID: 620 ( 576) C:\Windows\system32\services.exe
size: 279552
MD5: 329CF3C97CE4C19375C8ABCABAE258B0
PID: 632 ( 576) C:\Windows\system32\lsass.exe
size: 7680
MD5: 6A0E382E74280E4CC0DF17FE2661D003
PID: 640 ( 576) C:\Windows\system32\lsm.exe
size: 210944
MD5: 77F52395637906269B91264FFE576B51
PID: 712 ( 568) C:\Windows\system32\winlogon.exe
size: 308224
MD5: 9F75392B9128A91ABAFB044EA350BAAD
PID: 832 ( 620) C:\Windows\system32\svchost.exe
size: 22016
MD5: 10DA15933D582D2FEDCF705EFE394B09
PID: 884 ( 620) C:\Windows\system32\svchost.exe
size: 22016
MD5: 10DA15933D582D2FEDCF705EFE394B09
PID: 920 ( 620) C:\Windows\System32\svchost.exe
size: 22016
MD5: 10DA15933D582D2FEDCF705EFE394B09
PID: 1028 ( 620) C:\Windows\system32\Ati2evxx.exe
size: 557056
MD5: CDAB1FB2AC6160EF35B44D6337A04DD4
PID: 1044 ( 620) C:\Windows\System32\svchost.exe
size: 22016
MD5: 10DA15933D582D2FEDCF705EFE394B09
PID: 1120 ( 620) C:\Windows\System32\svchost.exe
size: 22016
MD5: 10DA15933D582D2FEDCF705EFE394B09
PID: 1140 ( 620) c:\program files\common files\logishrd\lvmvfm\LVPrcSrv.exe
size: 109344
MD5: 995D0B52870C7A5CAF3EA165FD674A35
PID: 1160 ( 620) C:\Windows\system32\svchost.exe
size: 22016
MD5: 10DA15933D582D2FEDCF705EFE394B09
PID: 1236 ( 620) C:\Windows\system32\SLsvc.exe
size: 2605568
MD5: A1DCD30534835CB67733AD00175125A6
PID: 1260 ( 620) C:\Windows\system32\svchost.exe
size: 22016
MD5: 10DA15933D582D2FEDCF705EFE394B09
PID: 1408 ( 620) C:\Windows\system32\svchost.exe
size: 22016
MD5: 10DA15933D582D2FEDCF705EFE394B09
PID: 1512 (1028) C:\Windows\system32\Ati2evxx.exe
size: 557056
MD5: CDAB1FB2AC6160EF35B44D6337A04DD4
PID: 1648 ( 620) C:\Windows\System32\spoolsv.exe
size: 124928
MD5: DA612EF2556776DF2630B68BF2D48935
PID: 1676 ( 620) C:\Windows\system32\svchost.exe
size: 22016
MD5: 10DA15933D582D2FEDCF705EFE394B09
PID: 344 (1120) C:\Windows\system32\Dwm.exe
size: 83456
MD5: E87B968F3D49117445893EB0503FE34F
PID: 408 (1160) C:\Windows\system32\taskeng.exe
size: 166400
MD5: 1226E9FAE5B8508801EC974E3C9D9C14
PID: 392 ( 324) C:\Windows\Explorer.EXE
size: 2923520
MD5: FD8C53FB002217F6F888BCF6F5D7084D
PID: 2052 ( 392) C:\Program Files\Windows Defender\MSASCui.exe
size: 1006264
MD5: 9AD9E2FB2811123DA13DE84CC154AB77
PID: 2060 ( 392) C:\Program Files\Java\jre1.6.0\bin\jusched.exe
size: 77824
MD5: 8F5E772B91A10AC97415B760FF21A94F
PID: 2116 ( 392) C:\Program Files\TOSHIBA\Power Saver\TPwrMain.exe
size: 411768
MD5: 878CA2665DBBE3D45874347B88E27244
PID: 2136 ( 392) C:\Program Files\TOSHIBA\SmoothView\SmoothView.exe
size: 493688
MD5: 1ED780F9C470D4F22D9EF29A3082B0F4
PID: 2156 ( 392) C:\Program Files\TOSHIBA\FlashCards\TCrdMain.exe
size: 530552
MD5: E57A49BC4C21C2F2EA5403626EFC6DF0
PID: 2184 ( 392) C:\Windows\RtHDVCpl.exe
size: 3772416
MD5: 97AABAE3E81CA2CB198FD1BA38795EAD
PID: 2192 ( 392) C:\Program Files\ltmoh\ltmoh.exe
size: 188416
MD5: 7DC4E93F9BE692E29B1E1D27B6A389DC
PID: 2204 ( 392) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
size: 815104
MD5: F98281EF23616F751FABE97A6EC5DBE6
PID: 2216 ( 392) C:\Program Files\TOSHIBA\Utilities\VolControl.exe
size: 94208
MD5: 21951365EE72B60574D2B1615939746D
PID: 2228 ( 392) C:\Program Files\TOSHIBA\ConfigFree\NDSTray.exe
size: 1372160
MD5: 93225E495B790822039F561839529B0B
PID: 2252 ( 392) C:\Program Files\TOSHIBA\Toshiba Online Product Information\TOPI.exe
size: 577536
MD5: B7A199DD944A74B59642C431A5CA4C4B
PID: 2264 ( 392) C:\Program Files\Common Files\logishrd\LComMgr\Communications_Helper.exe
size: 488984
MD5: 022DB38BECB5A44DA6F7E27923457624
PID: 2272 ( 392) C:\Program Files\Common Files\logishrd\LComMgr\LVComSX.exe
size: 252704
MD5: AD7503D6857DBFFC7E5F2E96BC9CC283
PID: 2284 (2176) C:\Program Files\ATI Technologies\ATI.ACE\CLI.EXE
size: 45056
MD5: 2FE88C5E0C19928854A6A52BCBE1233A
PID: 2292 ( 392) C:\Program Files\Logitech\QuickCam10\QuickCam10.exe
size: 774168
MD5: 6B84B11CFAD4173733DD96C810D9BC6F
PID: 2300 ( 392) C:\Program Files\QuickTime\qttask.exe
size: 282624
MD5: CAF03357DE72F8F19FA099581A685C1A
PID: 2308 ( 392) C:\Program Files\Panda Software\Panda Antivirus 2007\ApVxdWin.exe
size: 321072
MD5: 907AB6685973C4CA1B289EAA542AADFA
PID: 2376 ( 392) C:\Program Files\Windows Sidebar\sidebar.exe
size: 1196032
MD5: 43632977504B323F8A41BF7A9965C453
PID: 2400 ( 392) C:\Program Files\TOSHIBA\TOSCDSPD\TOSCDSPD.exe
size: 413696
MD5: 002835A0AFFF66D5A7B7FB266A6AA368
PID: 2412 ( 392) C:\Program Files\MSN Messenger\msnmsgr.exe
size: 5674352
MD5: A7EFC7EA7EF6FB022A8A95813EDCBE5D
PID: 2468 (2204) C:\Program Files\Synaptics\SynTP\SynToshiba.exe
size: 192512
MD5: FD0B9CFB4F7CFD3F364123F241C553C4
PID: 3036 ( 832) C:\Program Files\Common Files\Logishrd\LQCVFX\COCIManager.exe
size: 230936
MD5: 4F97F4BE05F1DBF89E493ED85EC1013B
PID: 3436 ( 620) C:\Windows\system32\agrsmsvc.exe
size: 9216
MD5: 1CB677BF1DABD3BAF4F944E2C90D6C73
PID: 3472 ( 620) C:\Program Files\TOSHIBA\ConfigFree\CFSvcs.exe
size: 40960
MD5: C82162949BBA6CC5D006C7BD008F3CF1
PID: 3556 ( 620) C:\Program Files\Panda Software\Panda Antivirus 2007\PsCtrls.exe
size: 217088
MD5: A92882BC409FF71280196975770FD6B6
PID: 3656 ( 620) C:\Windows\system32\svchost.exe
size: 22016
MD5: 10DA15933D582D2FEDCF705EFE394B09
PID: 3700 ( 620) C:\Program Files\Panda Software\Panda Antivirus 2007\PsImSvc.exe
size: 102400
MD5: 6B143A3050513478C7503BC38207C23A
PID: 3780 ( 620) C:\Program Files\Panda Software\Panda Antivirus 2007\PskSvc.exe
size: 27184
MD5: 01B7164C5A08F0363ACD55DE8EE2D43F
PID: 3844 ( 620) C:\Windows\system32\svchost.exe
size: 22016
MD5: 10DA15933D582D2FEDCF705EFE394B09
PID: 3868 ( 620) C:\Windows\system32\TODDSrv.exe
size: 114688
MD5: D540858E65BFA6FDED41AD2495ECE344
PID: 3888 ( 620) C:\Program Files\TOSHIBA\Power Saver\TosCoSrv.exe
size: 428152
MD5: FE267A802103687E45DE449BE05CE87C
PID: 3948 ( 620) C:\Program Files\Common Files\Ulead Systems\DVD\ULCDRSvr.exe
size: 49152
MD5: 332D341D92B933600D41953B08360DFB
PID: 3992 ( 620) C:\Windows\System32\svchost.exe
size: 22016
MD5: 10DA15933D582D2FEDCF705EFE394B09
PID: 4032 ( 620) C:\Windows\system32\SearchIndexer.exe
size: 287744
MD5: 5DE40982E3AE45DC00586A93637B351B
PID: 4060 ( 620) C:\Program Files\Panda Software\Panda Antivirus 2007\pavsrvx86.exe
size: 155136
MD5: 78134E1F733348726DA84BB59D0AE251
PID: 1096 (4060) C:\Program Files\Panda Software\Panda Antivirus 2007\AVENGINE.EXE
size: 90624
MD5: 212EC3DA057C880773FA5FBD2A5BE6A2
PID: 256 ( 620) C:\Windows\System32\alg.exe
size: 58880
MD5: E69FB0E3112C40FDC0EF7D21A52DC951
PID: 1152 (1160) C:\Windows\system32\taskeng.exe
size: 166400
MD5: 1226E9FAE5B8508801EC974E3C9D9C14
PID: 4148 ( 832) C:\Windows\system32\wbem\wmiprvse.exe
size: 245248
MD5: CD8A7F4847DD181903E6B2F1924E723E
PID: 4404 (2228) C:\Program Files\TOSHIBA\ConfigFree\CFSwMgr.exe
size: 405504
MD5: AB7EB5E27E9F18698B9B6CB6F56E6745
PID: 4576 (2308) c:\program files\panda software\panda antivirus 2007\WebProxy.exe
size: 77824
MD5: 3732744B25F6BE07837D3F65BD43CD09
PID: 4732 ( 832) C:\Windows\system32\wbem\unsecapp.exe
size: 37376
MD5: E19C7BCE081B85F86F03AE9D82FFA77B
PID: 4920 ( 620) C:\Windows\Microsoft.Net\Framework\v3.0\WPF\PresentationFontCache.exe
size: 36864
MD5: 7EF57375636991F794BF40B522A8E7EF
PID: 5212 ( 392) C:\Program Files\Spybot - Search & Destroy\SpybotSD.exe
size: 4393096
MD5: 09CA174A605B480318731E691DC98539
PID: 5432 ( 620) C:\Program Files\MSN Messenger\usnsvc.exe
size: 97136
MD5: C5B70A6AA947667CE0E5FC84A05EC8B6
PID: 5560 (2284) C:\Program Files\ATI Technologies\ATI.ACE\CLI.exe
size: 45056
MD5: 2FE88C5E0C19928854A6A52BCBE1233A
PID: 5572 (2284) C:\Program Files\ATI Technologies\ATI.ACE\CLI.exe
size: 45056
MD5: 2FE88C5E0C19928854A6A52BCBE1233A
PID: 804 (3752) C:\Program Files\Internet Explorer\IEUser.exe
size: 294912
MD5: 580C95594BA4AC90E1BD4EABF9BF9B27
PID: 0 ( 0) [System]
PID: 5004 (5836) C:\Program Files\Internet Explorer\iexplore.exe
size: 625152
MD5: 275CEE268B9E5D82474C43D5D249D111
PID: 3536 ( 832) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLLoginProxy.exe
size: 115024
MD5: 44CDED85B91EEF32E9CBCA348371F6BB
PID: 5448 (1160) C:\Windows\system32\taskeng.exe
size: 166400
MD5: 1226E9FAE5B8508801EC974E3C9D9C14
PID: 3300 (5448) C:\Windows\system32\sdclt.exe
size: 1192960
MD5: FDA72FF6093B5488B93967281EB52FE6
PID: 4 ( 0) System
PID: 1204 (1044) audiodg.exe
PID: 5508 (4588) iedw.exe
PID: 6028 ( 832) C:\Windows\system32\Macromed\Flash\FlashUtil9c.exe
size: 190696
MD5: 0F11E926B57EDA60148A1BBED973572D
PID: 3408 (4032) C:\Windows\system32\SearchProtocolHost.exe
size: 204288
MD5: 2A0B63014AD1ED027D47A58C89F4A1AA
PID: 4600 (4032) C:\Windows\system32\SearchFilterHost.exe
size: 76288
MD5: 78B5AE488DCD24556CF976BE0BBA82BE
PID: 4376 (3700) C:\Program Files\Panda Software\Panda Antivirus 2007\psimreal.exe
size: 54784
MD5: 37D6B72F558CDD6B693F252485ACC238


--- Browser start & search pages list ---
Spybot - Search & Destroy browser pages report, 18/09/2007 21:42:47

HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main\Local Page
C:\Windows\system32\blank.htm
HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main\Search Page
https://www.bing.com/?FORM=TOOLBR&cc=fr&toHttps=1&redig=4527FFF1C12746FC9EDB535C75E80ECC
HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main\Search Bar
https://www.bing.com/?FORM=TOOLBR&cc=fr&toHttps=1&redig=4527FFF1C12746FC9EDB535C75E80ECC
HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main\Start Page
https://www.google.fr/?gws_rd=ssl
HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\SearchUrl\@
https://www.bing.com/?FORM=TOOLBR&cc=fr&toHttps=1&redig=4527FFF1C12746FC9EDB535C75E80ECC
HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Main\Local Page
%SystemRoot%\system32\blank.htm
HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Main\Search Page
https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Main\Start Page
https://www.msn.com/fr-fr/?ocid=iehp
HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Main\Default_Page_URL
https://www.msn.com/fr-fr/?ocid=iehp
HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Main\Default_Search_URL
https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF


--- Winsock Layered Service Provider list ---
Protocol 0: PAV_LAYERED over [Parental Controls LSP over [MSAFD Tcpip [TCP/IP]]]
GUID: {A5622B8B-30DE-467C-900D-0371EE1ED607}
Filename: c:\program files\panda software\panda antivirus 2007\pavlsp.dll

Protocol 1: PAV_LAYERED over [Parental Controls LSP over [MSAFD Tcpip [UDP/IP]]]
GUID: {A5622B8B-30DE-467C-900D-0371EE1ED607}
Filename: c:\program files\panda software\panda antivirus 2007\pavlsp.dll

Protocol 2: PAV_LAYERED over [Parental Controls LSP over [MSAFD Tcpip [TCP/IPv6]]]
GUID: {A5622B8B-30DE-467C-900D-0371EE1ED607}
Filename: c:\program files\panda software\panda antivirus 2007\pavlsp.dll

Protocol 3: PAV_LAYERED over [Parental Controls LSP over [MSAFD Tcpip [UDP/IPv6]]]
GUID: {A5622B8B-30DE-467C-900D-0371EE1ED607}
Filename: c:\program files\panda software\panda antivirus 2007\pavlsp.dll

Protocol 4: PAV_LAYERED over [MSAFD Tcpip [RAW/IP]]
GUID: {A5622B8B-30DE-467C-900D-0371EE1ED607}
Filename: c:\program files\panda software\panda antivirus 2007\pavlsp.dll

Protocol 5: PAV_LAYERED over [MSAFD Tcpip [RAW/IPv6]]
GUID: {A5622B8B-30DE-467C-900D-0371EE1ED607}
Filename: c:\program files\panda software\panda antivirus 2007\pavlsp.dll

Protocol 6: Parental Controls LSP over [MSAFD Tcpip [TCP/IP]]
GUID: {E7E93C46-A985-4D51-BF93-4F7E8E885424}
Filename: C:\Windows\system32\wpclsp.dll

Protocol 7: Parental Controls LSP over [MSAFD Tcpip [UDP/IP]]
GUID: {01A67FC5-C428-44D7-AB6D-763E3381D153}
Filename: C:\Windows\system32\wpclsp.dll

Protocol 8: MSAFD Tcpip [TCP/IP]
GUID: {448F14B7-6C34-44AC-A11B-EBCD734CDF9B}
Filename: C:\Windows\system32\wpclsp.dll

Protocol 9: MSAFD Tcpip [UDP/IP]
GUID: {103ED4F7-475B-4022-87E5-9E04302B6093}
Filename: C:\Windows\system32\wpclsp.dll

Protocol 10: MSAFD Tcpip [RAW/IP]
GUID: {26F70965-F872-4CDE-962F-BE4AF3D7DE20}
Filename: C:\Windows\system32\wpclsp.dll

Protocol 11: MSAFD Tcpip [TCP/IPv6]
GUID: {212A67D5-66A2-4C3B-BF22-27B66D581A23}
Filename: C:\Windows\system32\wpclsp.dll

Protocol 12: MSAFD Tcpip [UDP/IPv6]
GUID: {09795AE6-433A-46E1-8B94-395606A2FBF4}
Filename: C:\Windows\system32\wpclsp.dll

Protocol 13: MSAFD Tcpip [RAW/IPv6]
GUID: {E28AA6F5-ACA2-4A1A-9C65-6A6FCF037391}
Filename: C:\Windows\system32\wpclsp.dll

Protocol 32: Parental Controls LSP
GUID: {572F18CF-62F6-4456-BE0E-AF2D8FDBCE0B}
Filename: C:\Windows\system32\wpclsp.dll

Protocol 33: PAV_LAYERED
GUID: {6B320271-E041-22D0-9A38-11BB1164A02D}
Filename: c:\program files\panda software\panda antivirus 2007\pavlsp.dll

Namespace Provider 3: Fournisseur Shim d'affectation de noms de messagerie
GUID: {964ACBA2-B2BC-40EB-8C6A-A6DB40161CAE}
Filename:

Namespace Provider 4: Fournisseur d'espace de noms du nuage PNRP
GUID: {03FE89CE-766D-4976-B9C1-BB9BC42C7B4D}
Filename:

Namespace Provider 5: Fournisseur d'espace de noms du nom PNRP
GUID: {03FE89CD-766D-4976-B9C1-BB9BC42C7B4D}
Filename:



--- Uninstall list ---
(AddressBook)

Adobe Flash Player ActiveX 9.0.45.0 (Adobe Flash Player ActiveX)
uninstall cmd: C:\Windows\system32\Macromed\Flash\uninstall_activeX.exe
publisher: Adobe Systems Incorporated
help link: https://helpx.adobe.com/flash-player.html

TOSHIBA Software Modem (Agere Systems Soft Modem)
uninstall cmd: Tosmreg -U
publisher: Agere Systems

Ami d'écran Diddl (Ami d'écran Diddl)
uninstall cmd: C:\Program Files\Diddl Screenmate\Diddl_Scr.exe -uninstall

CCleaner (remove only) (CCleaner)
uninstall cmd: "C:\Users\Public\Downloads\CCleaner\uninst.exe"

(Connection Manager)

(DirectDrawEx)

(DXM_Runtime)

(Fontcore)

Free Solitaire 5.0 (Free Solitaire_is1)
uninstall cmd: "C:\Program Files\FreeSolitaire\unins000.exe"
publisher: Goodsol Development
help link: https://www.goodsol.com/freesol/

Free Spider (Free Spider)
uninstall cmd: C:\PROGRA~1\FREESP~1\UNWISE.EXE C:\PROGRA~1\FREESP~1\INSTALL.LOG

HijackThis 2.0.2 2.0.2 (HijackThis)
uninstall cmd: "C:\Users\Lisa\Documents\Mes fichiers reçus\HiJackThis\HijackThis.exe" /uninstall
publisher: TrendMicro

(IE40)

(IE4Data)

(IE5BAKEX)

(IEData)

IncrediMail Xe 5.6.5.3088 (IncrediMail)
uninstall cmd: C:\PROGRA~1\INCRED~1\bin\imsetup.exe /remove /addon:IncrediMail /log:IncMail.log
publisher: IncrediMail Ltd.
help link: http://help.incredimail.com/english/help/index.html

(InstallShield Uninstall Information)

WinDVD for TOSHIBA 8.0-B6.108 (InstallShield_{20471B27-D702-4FE8-8DEC-0702CC8C0A85})
version: 134217728
version (major): 8
estimated size: 136258
install date: 20061220
install location: C:\Program Files\InterVideo\DVD8\
install source: C:\Toshiba\components\WinDVD\
uninstall cmd: C:\Program Files\InstallShield Installation Information\{20471B27-D702-4FE8-8DEC-0702CC8C0A85}\setup.exe -runfromtemp -l0x040c
publisher: InterVideo Inc.
contact: https://www.windvdpro.com/fr/
help link: support@intervideo.com

TOSHIBA Extended Tiles for Windows Mobility Center 1.00.00 (InstallShield_{617C36FD-0CBE-4600-84B2-441CEB12FADF})
version: 16777216
version (major): 1
estimated size: 1278
install date: 20061220
install location: C:\Program Files\TOSHIBA\MobilityCenter\
install source: C:\Toshiba\components\Tiles for Mobility Center\
uninstall cmd: C:\PROGRA~1\COMMON~1\INSTAL~1\Driver\1150\INTEL3~1\IDriver.exe /M{617C36FD-0CBE-4600-84B2-441CEB12FADF} /l1036
publisher: Toshiba

TOSHIBA Volume Indicator 2.00.05.00 (InstallShield_{98708E86-46E1-479D-B897-9802E591E762})
version: 33554437
version (major): 2
estimated size: 2504
install date: 20061220
install location: C:\Program Files\Toshiba\Utilities\
install source: C:\Toshiba\components\Volume Indicator\
uninstall cmd: C:\PROGRA~1\COMMON~1\INSTAL~1\Driver\11\INTEL3~1\IDriver.exe /M{98708E86-46E1-479D-B897-9802E591E762} /l1036
publisher: TOSHIBA
comments: Toshiba Hardware Setup Utility
contact: Customer Support Department
help link: http://www.toshiba.co.jp/worldwide/
help telephone: +81-3-3457-4511
readme: Readme.txt

TOSHIBA Supervisor Password 2.00.05.00 (InstallShield_{BE998F99-4CEB-4E64-B717-493A2E9797F4})
version: 33554437
version (major): 2
estimated size: 720
install date: 20061220
install location: C:\Program Files\Toshiba\Utilities\
install source: C:\Toshiba\components\Supervisor Password\
uninstall cmd: C:\PROGRA~1\COMMON~1\INSTAL~1\Driver\11\INTEL3~1\IDriver.exe /M{BE998F99-4CEB-4E64-B717-493A2E9797F4} /l1036
publisher: TOSHIBA
comments: Toshiba Supervisor Password Utility
contact: Customer Support Department
help link: http://www.toshiba.co.jp/worldwide/
help telephone: +81-3-3457-4511
readme: Readme.txt

TOSHIBA Hardware Setup 2.00.05.00 (InstallShield_{EB0B41B1-E84F-483C-91FF-BB83019EE127})
version: 33554437
version (major): 2
estimated size: 877
install date: 20061220
install location: C:\Program Files\Toshiba\Utilities\
install source: C:\Toshiba\components\Hardware Setup\
uninstall cmd: C:\PROGRA~1\COMMON~1\INSTAL~1\Driver\11\INTEL3~1\IDriver.exe /M{EB0B41B1-E84F-483C-91FF-BB83019EE127} /l1036
publisher: TOSHIBA
comments: Toshiba Hardware Setup Utility
contact: Customer Support Department
help link: http://www.toshiba.co.jp/worldwide/
help telephone: +81-3-3457-4511
readme: Readme.txt

TOSHIBA Value Added Package 1.0.7.u (InstallShield_{FEDD27A0-B306-45EF-BF58-B527406B42C8})
version: 16777223
version (major): 1
estimated size: 68365
install date: 20061220
install location: C:\Program Files\My Company Name\My Product Name\
install source: C:\Toshiba\components\Value Added Package\
uninstall cmd: C:\Program Files\InstallShield Installation Information\{FEDD27A0-B306-45EF-BF58-B527406B42C8}\setup.exe -runfromtemp -l0x040c
publisher: TOSHIBA Corporation

Security Update for CAPICOM (KB931906) 2.1.0.2 (KB931906)
uninstall cmd: MsiExec.exe /X{0EFDF2F9-836D-4EB7-A32D-038BD3F1FB2A}
publisher: Microsoft Corporation
help link: https://support.microsoft.com/en-us/help/931906/ms07-028-vulnerability-in-capicom-could-allow-remote-code-execution

(MobileOptionPack)

(MPlayer2)

(Panda Antivirus)

(Panda Antivirus Lite)
uninstall cmd: .

PowerpointImageExtractor V 1.2 (http://alainlecomte.free.fr/Download.htm (PowerpointImageExtractor_is1)
install location: C:\Program Files\PowerpointImageExtractor_V1_2\
uninstall cmd: "C:\Program Files\PowerpointImageExtractor_V1_2\unins000.exe"

(SchedulingAgent)

Macromedia Flash Player 8 8 (ShockwaveFlash)
uninstall cmd: RunDll32 advpack.dll,LaunchINFSection C:\Windows\INF\swflash.inf,DefaultUninstall,5
publisher: Macromedia
help link: https://helpx.adobe.com/flash-player.html

Spybot - Search & Destroy 1.4 1.4 (Spybot - Search & Destroy_is1)
install location: C:\Program Files\Spybot - Search & Destroy\
uninstall cmd: "C:\Program Files\Spybot - Search & Destroy\unins000.exe"
publisher: Safer Networking Limited

Synaptics Pointing Device Driver 9.1.0.0 (SynTPDeinstKey)
uninstall cmd: rundll32.exe "C:\Program Files\Synaptics\SynTP\SynISDLL.dll",standAloneUninstall
publisher: Synaptics

2.1.73 (SM2173ALD09) (TOSHIBA Software Modem)

VideoLAN VLC media player 0.8.6c 0.8.6c (VLC media player)
uninstall cmd: C:\Program Files\VideoLAN\VLC\uninstall.exe
publisher: VideoLAN Team

Windows Live Toolbar 03.01.0130 (Windows Live Toolbar)
uninstall cmd: "C:\Program Files\Windows Live Toolbar\UnInstall.exe" {E8A81E1F-665E-4F81-B04D-B6D164A8F360}
publisher: Microsoft Corporation

Codeur Windows Media Série 9 (Windows Media Encoder 9)
uninstall cmd: msiexec.exe /I {E38C00D0-A68B-4318-A8A6-F7D4B5B1DF0E}

Microsoft Office 2000 Premium 9.00.2720 ({0000040C-78E1-11D2-B60F-006097C998E7})
version: 150997664
version (major): 9
estimated size: 212923
install date: 20070814
install source: E:\
uninstall cmd: MsiExec.exe /I{0000040C-78E1-11D2-B60F-006097C998E7}
publisher: Microsoft Corporation
help link: https://support.microsoft.com/en-us
readme: C:\Program Files\Microsoft Office\Office\ofread9.txt

Security Update for CAPICOM (KB931906) 2.1.0.2 ({0EFDF2F9-836D-4EB7-A32D-038BD3F1FB2A})
version: 33619968
version (major): 2
version (minor): 1
estimated size: 770
install date: 20070510
install source: C:\Windows\TEMP\IXP000.TMP\
uninstall cmd: MsiExec.exe /I{0EFDF2F9-836D-4EB7-A32D-038BD3F1FB2A}
publisher: Microsoft Corporation

TOSHIBA Assist 2.00.01 ({12B3A009-A080-4619-9A2A-C6DB151D8D67})
version: 33554433
install location: C:\Program Files\TOSHIBA\TOSHIBA Assist
uninstall cmd: RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\PROFES~1\RunTime\09\01\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{12B3A009-A080-4619-9A2A-C6DB151D8D67}\setup.exe" -l0x40c

Détecteur de flux Windows Live Toolbar (Windows Live Toolbar) 03.01.0073 ({175B7C4A-CAF8-437A-B597-73E0D2D970FE})
version: 50397257
version (major): 3
version (minor): 1
estimated size: 386
install date: 20070319
install source: C:\Users\Lisa\AppData\Local\Temp\
uninstall cmd: MsiExec.exe /X{175B7C4A-CAF8-437A-B597-73E0D2D970FE}
publisher: Microsoft Corporation

WinDVD for TOSHIBA 8.0-B6.108 ({20471B27-D702-4FE8-8DEC-0702CC8C0A85})
version: 134217728
version (major): 8
estimated size: 136258
install date: 20061220
install location: C:\Program Files\InterVideo\DVD8\
install source: C:\Toshiba\components\WinDVD\
publisher: InterVideo Inc.
contact: https://www.windvdpro.com/fr/
help link: support@intervideo.com

Toshiba Online Product Information 1.00.0002 ({2290A680-4083-410A-ADCC-7092C67FC052})
version: 16777218
install date: 20061221
install location: C:\Program Files\TOSHIBA\Toshiba Online Product Information
install source: C:\Toshiba\components\Toshiba Online Product Information\
uninstall cmd: C:\Program Files\InstallShield Installation Information\{2290A680-4083-410A-ADCC-7092C67FC052}\setup.exe -runfromtemp -l0x040c -removeonly
publisher: TOSHIBA

Programme d’installation d’Atheros Driver 5.0 ({28006915-2739-4EBE-B5E8-49B25D32EB33})
version: 83886080
install date: 20070319
install location: C:\Program Files\Atheros
install source: C:\Toshiba\Drivers\WLAN\Atheros\
uninstall cmd: RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\PROFES~1\RunTime\11\50\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{28006915-2739-4EBE-B5E8-49B25D32EB33}\Setup.exe" -l0x40c -removeonly
publisher: Atheros

Manuels TOSHIBA 7.10 ({29D59BE2-C15F-4835-B113-121D73924979})
version: 118095872
install date: 20061220
install location: C:\Program Files\TOSHIBA\Manuals
install source: C:\Toshiba\components\Manuals\
uninstall cmd: RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\PROFES~1\RunTime\10\01\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{29D59BE2-C15F-4835-B113-121D73924979}\setup.exe" -l0x40c -removeonly
publisher: TOSHIBA

3.0.20070217 ({2CCBABCB-6427-4A55-B091-49864623C43F})
version: 20070217
version (major): 3

Java(TM) SE Runtime Environment 6 1.6.0.0 ({3248F0A8-6813-11D6-A77B-00B0D0160000})
version: 17170432
version (major): 1
version (minor): 6
estimated size: 111170
install date: 20061220
install source: C:\Users\Administrator\AppData\LocalLow\Sun\Java\jre1.6.0\
uninstall cmd: MsiExec.exe /I{3248F0A8-6813-11D6-A77B-00B0D0160000}
publisher: Sun Microsystems, Inc.
contact: https://www.java.com/en/
help link: https://www.java.com/en/
readme: C:\Program Files\Java\jre1.6.0\README.txt

Menus intelligents (Windows Live Toolbar) 03.01.0072 ({3585ED1C-74C5-43B0-A232-831B96A12A2B})
version: 50397256
version (major): 3
version (minor): 1
estimated size: 651
install date: 20070319
install source: C:\Users\Lisa\AppData\Local\Temp\
uninstall cmd: MsiExec.exe /X{3585ED1C-74C5-43B0-A232-831B96A12A2B}
publisher: Microsoft Corporation

MSXML 4.0 SP2 (KB927978) 4.20.9841.0 ({37477865-A3F1-4772-AD43-AAFC6BCFF99F})
version: 68429425
version (major): 4
version (minor): 20
estimated size: 1269
install date: 20070320
install source: c:\06163d7a161afc8e09dac4a2621abe\
uninstall cmd: MsiExec.exe /I{37477865-A3F1-4772-AD43-AAFC6BCFF99F}
publisher: Microsoft Corporation
help link: https://support.microsoft.com/en-us/help/927978/ms06-071-security-update-for-microsoft-xml-core-services-4-0

({3CF0858D-1AC5-4308-9DE7-AD15288A8BDC})

ATI Catalyst Install Manager 3.0.641.0 ({4160DC5B-4C56-D0C3-C5FD-F5BDAD3C882B})
version: 50332289
version (major): 3
estimated size: 14153
install date: 20070906
install location: C:\Program Files\ATI\CIM\
install source: C:\Windows\SoftwareDistribution\Download\Install\
publisher: ATI Technologies, Inc.
contact: ATI Customer Support
help link: https://support.ati.com
help telephone: 905-882-2600

ATI Catalyst Control Center Ex 2.0.2519.38216 ({44FEBA8C-2C89-E2A9-1423-AE5E5A42F472})
version: 33556951
version (major): 2
estimated size: 118330
install date: 20061220
install location: C:\Program Files\ATI Technologies\
install source: C:\Toshiba\components\Display Driver ATI\Packages\Apps\excalibur\
uninstall cmd: MsiExec.exe /I{44FEBA8C-2C89-E2A9-1423-AE5E5A42F472}
publisher: Nom de votre société
comments: From online registration through personal assistance, ATI Customer Care is focused on delivering accurate, up-to-date product support for optimum usability and performance.
contact: ATI Customer Care Department
help link: http://www.ati.com/support/

Windows Live Sign-in Assistant 4.100.313.1 ({49672EC2-171B-47B4-8CE7-50D7806360D7})
version: 73662777
version (major): 4
version (minor): 100
estimated size: 1220
install date: 20070319
install source: C:\Users\Lisa\AppData\Local\Temp\IXP000.TMP\
uninstall cmd: MsiExec.exe /I{49672EC2-171B-47B4-8CE7-50D7806360D7}
publisher: Microsoft Corporation

Apple Software Update 1.0.0.7 ({55FA89BD-21D3-42F7-9249-C94C0094A83C})
version: 16777216
version (major): 1
estimated size: 2432
install date: 20070618
install location: C:\Program Files\Apple Software Update\
install source: C:\Users\Lisa\AppData\Local\Temp\IXP025.TMP\
uninstall cmd: MsiExec.exe /I{55FA89BD-21D3-42F7-9249-C94C0094A83C}
publisher: Apple Computer, Inc.
contact: Assistance AppleCare
help link: https://support.apple.com/fr-fr
help telephone: 0825 888 024

TOSHIBA Disc Creator 2.0.0.0 ({5DA0E02F-970B-424B-BF41-513A5018E4C0})
version: 33554432
version (major): 2
estimated size: 9798
install date: 20061220
install location: C:\Program Files\TOSHIBA\TOSHIBA Disc Creator\
install source: C:\Toshiba\components\Disc Creator\
uninstall cmd: MsiExec.exe /I{5DA0E02F-970B-424B-BF41-513A5018E4C0}
publisher: TOSHIBA Corporation

TOSHIBA Extended Tiles for Windows Mobility Center 1.00.00 ({617C36FD-0CBE-4600-84B2-441CEB12FADF})
version: 16777216
version (major): 1
estimated size: 1278
install date: 20061220
install location: C:\Program Files\TOSHIBA\MobilityCenter\
install source: C:\Toshiba\components\Tiles for Mobility Center\
publisher: Toshiba

2.1 ({622E6F16-0904-49B6-BBE1-4CC836314CCF})
version: 33619968
version (major): 2
install location: c:\program files\ulead systems\dvd moviefactory for toshiba\Ulead DVD Tweak and Fit 2.1
uninstall cmd: RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\PROFES~1\RunTime\0701\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{622E6F16-0904-49B6-BBE1-4CC836314CCF}\setup.exe" -l0x40c
publisher: Ulead Systems, Inc.

2.2 ({697AFC77-F318-4CD4-BF16-F50F4C1072DA})
version: 33685504
version (major): 2
install location: c:\program files\ulead systems\dvd moviefactory for toshiba\Ulead DVD DiscRecorder 2.2
uninstall cmd: RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\PROFES~1\RunTime\0701\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{697AFC77-F318-4CD4-BF16-F50F4C1072DA}\setup.exe" -l0x40c
publisher: Ulead Systems, Inc.

Logitech QuickCam 10.51.2029 ({7D2370AC-D8E6-4996-986A-19824F8A167C})
version: 171116525
version (major): 10
version (minor): 51
estimated size: 40541
install date: 20070413
install location: C:\Program Files\Logitech\QuickCam10\
install source: C:\Program Files\Logitech\QuickCamAppWebInstall\QuickCam\x32\
uninstall cmd: MsiExec.exe /X{7D2370AC-D8E6-4996-986A-19824F8A167C}
publisher: Logitech Inc.
contact: Service clientèle de Logitech®
help link: https://support.logi.com/hc/en-001
help telephone: +33-(0) 1-43 62 34 14
readme: C:\Program Files\Logitech\QuickCam10\Readme.htm

TOSHIBA Volume Indicator 2.00.05.00 ({98708E86-46E1-479D-B897-9802E591E762})
version: 33554437
version (major): 2
estimated size: 2504
install date: 20061220
install location: C:\Program Files\Toshiba\Utilities\
install source: C:\Toshiba\components\Volume Indicator\
publisher: TOSHIBA
comments: Toshiba Hardware Setup Utility
contact: Customer Support Department
help link: http://www.toshiba.co.jp/worldwide/
help telephone: +81-3-3457-4511
readme: Readme.txt

Réducteur de bruit lect. CD/DVD 2.00.02 ({9FE35071-CAB2-4E79-93E7-BFC6A2DC5C5D})
version: 33554434
install location: C:\Program Files\TOSHIBA\TOSCDSPD
uninstall cmd: RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\PROFES~1\RunTime\09\01\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{9FE35071-CAB2-4E79-93E7-BFC6A2DC5C5D}\setup.exe" -l0x40c
publisher: TOSHIBA

Microsoft Visual C++ 2005 Redistributable 8.0.50727.42 ({A49F249F-0C91-497F-86DF-B2585E8E76B7})
version: 134268455
version (major): 8
estimated size: 558
install date: 20061220
install source: C:\Toshiba\components\Display Driver ATI\Packages\Apps\VC8RTx86\vcredist_x86\
uninstall cmd: MsiExec.exe /X{A49F249F-0C91-497F-86DF-B2585E8E76B7}
publisher: Microsoft Corporation

({A644254B-92F6-4970-8635-AB0775371E72})
install location: C:\Program Files\InterVideo\AVControl
uninstall cmd: "C:\Program Files\InstallShield Installation Information\{A644254B-92F6-4970-8635-AB0775371E72}\setup.exe" --u:{A644254B-92F6-4970-8635-AB0775371E72}
publisher: InterVideo Inc.
contact: support@intervideo.com
help link: https://www.windvdpro.com/fr/

MSXML 4.0 SP2 (KB925672) 4.20.9839.0 ({A9CF9052-F4A0-475D-A00F-A8388C62DD63})
version: 68429423
version (major): 4
version (minor): 20
estimated size: 1265
install date: 20070320
install source: c:\2e4dca97357fc28f39bb977f19c346\
uninstall cmd: MsiExec.exe /I{A9CF9052-F4A0-475D-A00F-A8388C62DD63}
publisher: Microsoft Corporation
help link: https://support.microsoft.com/en-us/help/925672/ms06-061-security-update-for-microsoft-xml-core-services-4-0-sp2

Adobe Reader 7.0.9 - Français 7.0.9 ({AC76BA86-7AD7-1036-7B44-A70900000002})
version: 117440521
version (major): 7
estimated size: 78484
install date: 20070506
install source: C:\Program Files\Adobe\Acrobat 7.0\Setup Files\RdrBig709\FRA\
uninstall cmd: MsiExec.exe /I{AC76BA86-7AD7-1036-7B44-A70900000002}
publisher: Adobe Systems Incorporated
comments:
contact:
help link: https://helpx.adobe.com/support.html
help telephone:
readme: C:\Program Files\Adobe\Acrobat 7.0\Reader\Readme.htm

Adobe Reader 7.0.5 Language Support 7.0.5 ({AC76BA86-7AD7-5464-3428-7050000000A7})
version: 117440517
version (major): 7
estimated size: 34373
install date: 20070403
install source: C:\Program Files\Adobe\Acrobat 7.0\Setup Files\SpellingDictionary\{E54EF49D-FCD5-4B3E-97B9-128D247834E1}\
uninstall cmd: MsiExec.exe /I{AC76BA86-7AD7-5464-3428-7050000000A7}
publisher: Adobe Systems
comments: This is a placeholder for ARP comments for Spelling Dictionaries for Adobe Reader 7.0
contact: Customer Support
help link: https://helpx.adobe.com/support.html
help telephone: 1-800-833-6687

Microsoft XML Parser 8.20.8730.4 ({B5FDA445-CAC4-4BA6-A8FB-A7212BD439DE})
version: 135537178
version (major): 8
version (minor): 20
estimated size: 792
install date: 20061220
install source: C:\Users\ADMINI~1\AppData\Local\Temp\IXP000.TMP\
publisher: Microsoft Corporation

TOSHIBA ConfigFree 7.00.22 ({BDD83DC9-BEE9-4654-A5DA-CC46C250088D})
version: 117440534
install date: 20061220
install location: C:\Program Files\TOSHIBA\ConfigFree
install source: C:\Toshiba\components\Config Free\
uninstall cmd: C:\Program Files\InstallShield Installation Information\{BDD83DC9-BEE9-4654-A5DA-CC46C250088D}\setup.exe -runfromtemp -l0x040cuninstall -removeonly
publisher: TOSHIBA

TOSHIBA Supervisor Password 2.00.05.00 ({BE998F99-4CEB-4E64-B717-493A2E9797F4})
version: 33554437
version (major): 2
estimated size: 720
install date: 20061220
install location: C:\Program Files\Toshiba\Utilities\
install source: C:\Toshiba\components\Supervisor Password\
publisher: TOSHIBA
comments: Toshiba Supervisor Password Utility
contact: Customer Support Department
help link: http://www.toshiba.co.jp/worldwide/
help telephone: +81-3-3457-4511
readme: Readme.txt

MSXML 4.0 SP2 (KB936181) 4.20.9848.0 ({C04E32E0-0416-434D-AFB9-6969D703A9EF})
version: 68429432
version (major): 4
version (minor): 20
estimated size: 1296
install date: 20070815
install source: c:\8f22b586122b6ef4e2fafbc9af4387bf\
uninstall cmd: MsiExec.exe /I{C04E32E0-0416-434D-AFB9-6969D703A9EF}
publisher: Microsoft Corporation
help link: https://support.microsoft.com/en-us/help/936181

Logiciel QuickCam de Logitech 8.47.0000 ({C43048A9-742C-4DAD-90D2-E3B53C9DB825})
version: 137297920
install location: C:\Program Files\Logitech\Video
install source: E:\QuickCam\
uninstall cmd: RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\PROFES~1\RunTime\09\01\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{C43048A9-742C-4DAD-90D2-E3B53C9DB825}\setup.exe" -l0x40c
publisher: Logitech, Inc.
contact: Service clientèle de Logitech®
help link: https://support.logi.com/hc/en-001
help telephone: +33-(0) 1-43 62 34 14
readme: C:\Program Files\Logitech\Video\Readme.txt

Panda Antivirus 2007 2.01.00 ({D1DA2BA7-2592-4036-9BB2-DCCABDE8DC1A})
version: 33619968
install date: 20070914
install location: C:\Program Files\Panda Software\Panda Antivirus 2007\
install source: C:\Users\Lisa\AppData\Local\Temp\WZSE0.TMP\
uninstall cmd: RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\PROFES~1\RunTime\11\50\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{D1DA2BA7-2592-4036-9BB2-DCCABDE8DC1A}\setup.exe" -l0x40c -removeonly
publisher: Panda Software

Codeur Windows Media Série 9 9.00.2980 ({E38C00D0-A68B-4318-A8A6-F7D4B5B1DF0E})
version: 150997924
version (major): 9
estimated size: 14043
install date: 20061220
install source: C:\Windows\Installer\
uninstall cmd: MsiExec.exe /I{E38C00D0-A68B-4318-A8A6-F7D4B5B1DF0E}
publisher: Microsoft Corporation
help link: https://support.microsoft.com/en-us/windows/get-windows-media-player-81718e0d-cfce-25b1-aee3-94596b658287

Windows Live Toolbar 03.01.0130 ({E8A81E1F-665E-4F81-B04D-B6D164A8F360})
version: 50397314
version (major): 3
version (minor): 1
estimated size: 5150
install date: 20070601
install source: C:\Windows\TEMP\IXP000.TMP\
uninstall cmd: MsiExec.exe /X{E8A81E1F-665E-4F81-B04D-B6D164A8F360}
publisher: Microsoft Corporation

TOSHIBA Hardware Setup 2.00.05.00 ({EB0B41B1-E84F-483C-91FF-BB83019EE127})
version: 33554437
version (major): 2
estimated size: 877
install date: 20061220
install location: C:\Program Files\Toshiba\Utilities\
install source: C:\Toshiba\components\Hardware Setup\
publisher: TOSHIBA
comments: Toshiba Hardware Setup Utility
contact: Customer Support Department
help link: http://www.toshiba.co.jp/worldwide/
help telephone: +81-3-3457-4511
readme: Readme.txt

QuickTime 7.1.3.100 ({F07B861C-72B9-40A4-8B1A-AAED4C06A7E8})
version: 117506051
version (major): 7
version (minor): 1
estimated size: 71805
install date: 20070618
install location: C:\Program Files\QuickTime\
install source: C:\Users\Lisa\AppData\Local\Temp\IXP025.TMP\
uninstall cmd: MsiExec.exe /I{F07B861C-72B9-40A4-8B1A-AAED4C06A7E8}
publisher: Apple Computer, Inc.
contact: Assistance AppleCare
help link: https://support.apple.com/fr-fr
help telephone: (33) 0825 888 024

Realtek High Definition Audio Driver 6.0.1.5317 ({F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC})
version: 34799616
install date: 20061220
install location: C:\Program Files\Realtek\InstallShield\
install source: C:\Toshiba\components\Sound Driver\
uninstall cmd: RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\PROFES~1\RunTime\11\50\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}\Setup.exe" -l0x40c -removeonly
publisher: Realtek Semiconductor Corp.

DVD MovieFactory for TOSHIBA 5.3 ({F214EAA4-A069-4BAF-9DA4-4DB8BEEDE485})
version: 84082688
version (major): 5
install location: C:\Program Files\Ulead Systems\DVD MovieFactory for TOSHIBA\Ulead DVD MovieFactory 5
uninstall cmd: RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\PROFES~1\RunTime\0701\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{F214EAA4-A069-4BAF-9DA4-4DB8BEEDE485}\setup.exe" -l0x40c
publisher: Ulead Systems, Inc.

Windows Live Messenger 8.1.0178.00 ({F6326B60-1B1D-4ABF-BFCD-7B7404F44411})
version: 134283442
version (major): 8
version (minor): 1
estimated size: 30338
install date: 20070319
install source: C:\Users\Lisa\AppData\Local\Temp\IXP000.TMP\
uninstall cmd: MsiExec.exe /I{F6326B60-1B1D-4ABF-BFCD-7B7404F44411}
publisher: Microsoft Corporation

TOSHIBA Value Added Package 1.0.7.u ({FEDD27A0-B306-45EF-BF58-B527406B42C8})
version: 16777223
version (major): 1
estimated size: 68365
install date: 20061220
install location: C:\Program Files\My Company Name\My Product Name\
install source: C:\Toshiba\components\Value Added Package\
publisher: TOSHIBA Corporation



--- System Services ---
Service (registry key): .NET CLR Data
Start: 0
Type: 0
Error Control: 0

Service (registry key): .NET CLR Networking
Start: 0
Type: 0
Error Control: 0

Service (registry key): .NET Data Provider for Oracle
Start: 0
Type: 0
Error Control: 0

Service (registry key): .NET Data Provider for SqlServer
Start: 0
Type: 0
Error Control: 0

Service (registry key): .NETFramework
Start: 0
Type: 0
Error Control: 0

Service (registry key): ACPI
Display name: Pilote ACPI Microsoft
Image path: system32\drivers\acpi.sys
Image size: 255592
Image MD5: 192BDBD1540645C4A2AA69F24CCE197F
Start: 0
Type: 1
Error Control: 3

Service (registry key): adp94xx
Image path: \SystemRoot\system32\drivers\adp94xx.sys
Start: 4
Type: 1
Error Control: 1

Service (registry key): adpahci
Image path: \SystemRoot\system32\drivers\adpahci.sys
Start: 4
Type: 1
Error Control: 1

Service (registry key): adpu160m
Image path: \SystemRoot\system32\drivers\adpu160m.sys
Start: 4
Type: 1
Error Control: 1

Service (registry key): adpu320
Image path: \SystemRoot\system32\drivers\adpu320.sys
Start: 4
Type: 1
Error Control: 1

Service (registry key): adsi
Start: 0
Type: 0
Error Control: 0

Service (registry key): AeLookupSvc
Display name: @%SystemRoot%\system32\aelupsvc.dll,-1
Description: @%SystemRoot%\system32\aelupsvc.dll,-2
Object name: localSystem
Image path: %systemroot%\system32\svchost.exe -k netsvcs
Image size: 22016
Image MD5: 10DA15933D582D2FEDCF705EFE394B09
Start: 2
Type: 32
Error Control: 1

Service (registry key): AFD
Display name: Ancilliary Function Driver for Winsock
Description: Ancilliary Function Driver for Winsock
Image path: \SystemRoot\system32\drivers\afd.sys
Start: 1
Type: 1
Error Control: 1

Service (registry key): AgereModemAudio
Display name: Agere Modem Call Progress Audio
Object name: LocalSystem
Image path: C:\Windows\system32\agrsmsvc.exe
Image size: 9216
Image MD5: 1CB677BF1DABD3BAF4F944E2C90D6C73
Start: 2
Type: 16
Error Control: 1

Service (registry key): AgereSoftModem
Display name: TOSHIBA V92 Software Modem
Image path: system32\DRIVERS\AGRSM.sys
Image size: 1161152
Image MD5: 4E6294A06BE883C9BD685A8DFD9FCD4E
Start: 3
Type: 1
Error Control: 1

Service (registry key): agp440
Display name: Intel AGP Bus Filter
Image path: \SystemRoot\system32\drivers\agp440.sys
Start: 3
Type: 1
Error Control: 1

Service (registry key): aic78xx
Image path: \SystemRoot\system32\drivers\djsvs.sys
Start: 4
Type: 1
Error Control: 1

Service (registry key): ALG
Display name: @%SystemRoot%\system32\Alg.exe,-112
Description: @%SystemRoot%\system32\Alg.exe,-113
Object name: NT AUTHORITY\LocalService
Image path: %SystemRoot%\System32\alg.exe
Image size: 58880
Image MD5: E69FB0E3112C40FDC0EF7D21A52DC951
Start: 3
Type: 16
Error Control: 1

Service (registry key): aliide
Image path: \SystemRoot\system32\drivers\aliide.sys
Start: 4
Type: 1
Error Control: 3

Service (registry key): amdagp
Display name: AMD AGP Bus Filter Driver
Image path: \SystemRoot\system32\drivers\amdagp.sys
Start: 3
Type: 1
Error Control: 1

Service (registry key): amdide
Image path: \SystemRoot\system32\drivers\amdide.sys
Start: 4
Type: 1
Error Control: 3

Service (registry key): AmdK7
Display name: AMD K7 Processor Driver
Image path: \SystemRoot\system32\drivers\amdk7.sys
Start: 4
Type: 1
0

Vous n’avez pas trouvé la réponse que vous recherchez ?

Posez votre question
Réponse 45 / 65
Regis59 Messages postés 21143 Date d'inscription mardi 27 juin 2006 Statut Contributeur sécurité Dernière intervention 22 juin 2016 1 321
19 sept. 2007 à 18:39
CCm avait quelques problemes lol

As tu scanné avec spybot en mode sans echec?

A+
0
Réponse 46 / 65
lisa1708
20 sept. 2007 à 09:12
COUCOU!!!! (je songe à me faire teindre en blonde platine!!!! lol)

ah dac!!!;
apparammant je n'ai plus de virus, car j'avais peur de tout ces cookies mais ce serait des traces de mon surf sur le net'!!!(cool), je comprends pas pourquoi panda me les detecte comme logiciel espion!!!, ils font trop fliper ces antivirus!!!!
hier j'ai fais un scan avec AVG anti-Spyware en mode sans echec...ET?.......résultat:

---------------------------------------------------------
AVG Anti-Spyware - Rapport d'analyse
---------------------------------------------------------

+ Créé à: 10:42:10 19/09/2007

+ Résultat de l'analyse:



Rien à signaler.



Fin du rapport

mon ordi à l'air en bonne santé?!!!, t'en penses quoi???, et mailskinner???, toujours des traces???, bisous a+
0
Réponse 47 / 65
lisa1708
20 sept. 2007 à 20:45
t'es toujours là quentin??!!!!, donne moi des news!, pars pas comme ça!!! :'-( !

je voulais te demander de me virer definitivement "symantec liveupdate" et je voulais que tu me conseilles un trés bon antivirus, efficace!
qui ne laisse pas passer les pirates sur MSN!!!!!

merci quentin et à tres vite j'espere...KISS
0
Réponse 48 / 65
Regis59 Messages postés 21143 Date d'inscription mardi 27 juin 2006 Statut Contributeur sécurité Dernière intervention 22 juin 2016 1 321
20 sept. 2007 à 21:55
Coucou

Désolé, journée chargée...

C'est ok, panda aussi?

Pour un antivirus, je te conseille antivir:
antivir

Telecharge antivir puis Supprime norton et seulement apres tu installes antivir.

A+
0
Réponse 49 / 65
lisa1708
21 sept. 2007 à 12:56
ah!, il y a des jours comme ça!!, puis t'as pas à etre désolé!, j'espere pour toi qu'il n'y a pas que le forum dans ta vie!!!

panda me detecte toujours les memes spywares, donc rien d'inquietant!

es tu sur qu'antivir soit au top?, car j'avais celui ci quand j'ai reçu ces messages sur MSN!, comment peut on pirater un ordi avec antivir?!!!!

pour Norton, je l'ai desinstallé deja, il ya qqs mois!!, mais quand je t'envoi des scans, je vois qu"il apparait encore dans des fichiers (symantec liveUpdate), en recherche manuelle, windows ne me trouve rien!, pourtan sur le scan d'hijackthis (par exemple), on les voi un peu partou!!....et panda?, je le desinstalle avant de télécharger un nouvel antivirus?; que penses tu de bitdefender?.....dis moi la marche à suivre en detail STP!, je voudrais pas faire nimporte quoi!, merci de ton aide et de ta patience!, cé cool de savoir qu'il y a des personnes competentes et bénévolent sur le net'!!!, j'hesiterais pas à t'envoyer des SOS au cas ou!!!....BISOUS, A tres vite pour ta reponse!!! ;-D
0
Réponse 50 / 65
Regis59 Messages postés 21143 Date d'inscription mardi 27 juin 2006 Statut Contributeur sécurité Dernière intervention 22 juin 2016 1 321
21 sept. 2007 à 15:45
lol Non :)

Ok pour panda tant que c est des cookies.
Oui antivir est tres bien, j'ai ce même antivirus. Faut savoir que antivir a le meilleur moteur heuristique, a mon sens. Ensuite ses detections sont supérieurs a antivir. Nous envoyons des fichiers inconnus infectés a antivir et sa réactivité est correct. Alors qu'avast est extrement long.
Et puis un antivirus ne fait pas tout, il faut aussi un parefeu, c est ce qui "empeche les pirates de s introduire". Enfin, c est une barriere si tu preferes. Le meilleur antivirus c est toi, selon tes surfs et tes comportements sur le net. Si tu fais n importe quoi, faut pas t etonnes et faut pas s etonner que l antivirus ne peut pas tout faire. ;)

Y'a encore des traces de norton/symantec.

Des que tu as téléchargé le fichier d'installation de antivir , tu vas dans ajout suppression de programme et tu desinstalles Panda, Puis tu lances le fichier d antivir que tu as téléchargé et tu suis les instructions.
Pour bitdefender, il est payant. Quitte a payer, je prefere kaspersky.

a+
0
Réponse 51 / 65
lisa1708
21 sept. 2007 à 17:07
désolée, mais ils disent que antivir est périmé!!!, je le vois quand je vais dans le centre de sécurité!, donc pas d'antivirus qui me protege?, tu me proposes quoi?, AVG, Ad aware?..
quand j'installe antivir, ils disent ça:
Avira AntiVir PersonalEdition Classic
*************************************

Copyright © 2007 Avira GmbH.
All rights reserved.


Inhalt
******

0 Important information
1 System requirements
2 Important requirements for an installation
3 Incompatibilities with other programs
4 Support service
5 Contact address


0 Important information
***********************

Users who have up to now installed an ANSI version of the Avira
AntiVir PersonalEdition Classic software pack on a Microsoft Windows
NT, Microsoft Windows 2000 or Microsoft Windows XP operating system,
receive update information when attempting to update.

When updating, please proceed as follows:

1. Deinstall the installed version of the Avira AntiVir
PersonalEdition Classic.
2. Download a current software pack from the downoad section of the
Avira AntiVir PersonalEdition Classic website
https://www.avira.com/
3. Install this software pack on your computer.

1 System requirements
*********************

In order for Avira AntiVir PersonalEdition Classic to run properly,
the computer system must fulfill the following requirements:

- Computer: Pentium or higher, at least 133 MHz

- Operating system
- Microsoft Windows Vista or
- Microsoft Windows XP Home or Professional, or
- Microsoft Windows 2000, SP 4 recommended

Avira AntiVir PersonalEdition Classic also supports Microsoft Windows
XP x64 Edition.

The display of the program interfaces can differ, depending on the
operating system used.

- 30 MB free memory on the hard disk (more if quarantine is used)

- Min. 100 MB temporary memory on the hard disk

- Min. 25 MB of free main memory

- For all installations: Internet Explorer 5.0 or higher

- For the installation of Avira AntiVir PersonalEdition Classic:
administrator rights

Note
----

- If there is no Internet Explorer 5.0 or higher available on your
system, you can download it under the following address:

https://support.microsoft.com/en-us/office/internet-explorer-help-23360e49-9cd3-4dda-ba52-705336cc0de2?ui=en-US&rs=en-001&ad=US


2 Important requirements for an installation
********************************************

Ensure that the following requirements are fulfilled so that Avira
AntiVir PersonalEdition Classic works properly on your computer:

- System requirements fulfilled
- No other on-access scanner (also called Guard) installed
- Installer has administrator rights
- Internet/Intranet connection available
- All running programs on the computer exited


3 Incompatibilities with other programs
***************************************

Cygwin

If the Avira AntiVir PersonalEdition Classic runs on a system where
the product Cygwin is installed, you might encounter problems with
updating the Avira AntiVir PersonalEdition Classic. In a worst case
scenario you might not be able to update the Avira AntiVir
PersonalEdition Classic at all. Background to this behavior is the
fact that the cygwin process "cygrun.srv.exe" together with the
Microsoft Client/Server runtime server subsystem ("csrss.exe) causes
a complete load of the system once the update process of the Avira
AntiVir PersonalEdition Classic is started. It is therefore strongly
recommended to deinstall Cygwin before the Avira AntiVir
PersonalEdition Classic is installed.


4 Support service
*****************

If you have problems please try first to solve them using the
integrated help system and the user manual (Download at:
http://www.free-av.com). For harder problem, please feel free to
post a message to our bulletin board at https://support.avira.com/hc/de/community/topics or
to call our Support-Hotline.

Please also feel free to post bug reports, hints, feature requests
and anything else related to the Avira AntiVir PersonalEdition
Classic to this Bulletin Board.

Please note that technical inquiries can only be anserwered via our
Support-Forum or our Support-Hotline.


Support-Forum
-------------

...our forum is available for you at any time!

The forum, which is subdivided into clear categories offers you the
possibility to exchange yourself online with other users and our
employees of the customer support. An up-to-date, electronic
bulletin board that is coordinated by our moderators is available.
Our experience multiplies with the experience from the users of
AntiVir all over the world. Have a look on it without any
obligation...

https://support.avira.com/hc/de/community/topics


Support-Hotline
---------------

Germany: 0900 10 11 333 (1,99 Euro/Min*)
Austria: 0900 51 03 61 121 (2,16 Euro/Min*)
Switzerland: 0900 51 03 61 (4,23 CHF/Min*)

* Prices are subject to change.

Mo - Fr between 10 a.m. and 7 p.m.


5 Contact
*********

Avira GmbH
Lindauer Str. 21
D-88069 Tettnang
Germany

Internet: https://www.avira.com/

et oui, ya toujours norton!!, il s'entrave avec mon pare feu windows (et windows defender!) le piratage a eu lieu magré mon pare feu!; il saoule ce norton!!; peux tu m'aider à virer tous ces composants?

dis moi vite quel antivirus mettre!!; et oui tu as raison!, pour mailskinner je suis seule responsable!, j'ai accepté son téléchargement malgré l'avertissement de mon pare feu!! :-(

merci et bisous (c'est ton metier les ordi?..)
0
Réponse 52 / 65
Regis59 Messages postés 21143 Date d'inscription mardi 27 juin 2006 Statut Contributeur sécurité Dernière intervention 22 juin 2016 1 321
21 sept. 2007 à 19:42
Non, suis bénévole !

Pour antivir, faut le mettre a jour ! Clique droit sur l icone et choisis start update.
Une fois terminé, redemarre ton pc
regarde si ca indique toujours périmé.

A+
0
Réponse 53 / 65
lisa1708
21 sept. 2007 à 20:34
ça y est je l'ai fais ensuite, et cé ok, il est actif...tout comme Norton!(grrr!!), je viens de trouver des composant symantec et LiveUpdate, mais malgrés tout, il est encore actif!!!, je te donne un rapport antivir, et tu me dis ce que t'en penses, si tout est ok; et comment virer Norton!!

21.09.2007 16:51:08 - Installation Directory: C:\Program Files\Avira\AntiVir PersonalEdition Classic\
21.09.2007 16:51:08 - Backup Directory: C:\ProgramData\Avira\AntiVir PersonalEdition Classic\BACKUP\
21.09.2007 16:51:08 - Temp Directory: C:\ProgramData\Avira\AntiVir PersonalEdition Classic\Update\AVUPDATE_46f3da5c\
21.09.2007 16:51:09 - Start the Update GUI... Displaymode: 0

21.09.2007 16:51:08 - Installation Directory: C:\Program Files\Avira\AntiVir PersonalEdition Classic\
21.09.2007 16:51:08 - Backup Directory: C:\ProgramData\Avira\AntiVir PersonalEdition Classic\BACKUP\
21.09.2007 16:51:08 - Temp Directory: C:\ProgramData\Avira\AntiVir PersonalEdition Classic\Update\AVUPDATE_46f3da5c\
21.09.2007 16:51:09 - Start the Update GUI... Displaymode: 0

21.09.2007 16:51:12 - Keyfile: OK [FULL Mode]

21.09.2007 16:51:12 - Avira AntiVir PersonalEdition Classic

21.09.2007 16:51:19 - Master IDX file has changed
21.09.2007 16:51:26 - Keyfile: OK [FULL Mode]

21.09.2007 16:51:27 - Downloading the product.info file from http://dl5.avgate.net/upd/idx/classic-nt-en.info.gz
21.09.2007 16:51:28 - File basic-nt/2k/avgntflt.sys's operating system doesn't match the current one. File ignored.
21.09.2007 16:51:28 - File basic-nt/avgio64.sys's operating system doesn't match the current one. File ignored.
21.09.2007 16:51:28 - File basic-nt/imp64b.exe's operating system doesn't match the current one. File ignored.
21.09.2007 16:51:28 - File basic-nt/psapi.dll's operating system doesn't match the current one. File ignored.
21.09.2007 16:51:28 - File basic-nt/shlext64.dll's operating system doesn't match the current one. File ignored.
21.09.2007 16:51:28 - File basic-nt/vista64/avgntflt.sys's operating system doesn't match the current one. File ignored.
21.09.2007 16:51:28 - File basic-nt/xp64/avgntflt.sys's operating system doesn't match the current one. File ignored.
21.09.2007 16:51:28 - File basic-nt/2k/avgntdd.sys's operating system doesn't match the current one. File ignored.
21.09.2007 16:51:28 - File basic-nt/2k/avgntmgr.sys's operating system doesn't match the current one. File ignored.
21.09.2007 16:51:28 - File basic-nt/nt/avgntdd.sys's operating system doesn't match the current one. File ignored.
21.09.2007 16:51:28 - File basic-nt/nt/avgntmgr.sys's operating system doesn't match the current one. File ignored.
21.09.2007 16:51:28 - File basic-nt/vista64/avgntflt.sys's operating system doesn't match the current one. File ignored.
21.09.2007 16:51:28 - Downloading the product.info file from http://dl5.avgate.net/upd/idx/vdf_preload.info.gz
21.09.2007 16:51:28 - Downloading the product.info file from http://dl5.avgate.net/upd/idx/vdf.info.gz
21.09.2007 16:51:31 - Keyfile: OK [FULL Mode]

21.09.2007 16:51:31 - Downloading the product.info file from http://dl5.avgate.net/upd/idx/specvir-nt.info.gz
21.09.2007 16:51:32 - Downloading the product.info file from http://dl5.avgate.net/upd/idx/engine.info.gz
21.09.2007 16:51:33 - Downloading the product.info file from http://dl5.avgate.net/upd/idx/engine-nt-en.info.gz
21.09.2007 16:51:34 - Module: SELFUPDATE Source: winwks\en\ Destination: C:\Program Files\Avira\AntiVir PersonalEdition Classic\ Files: 15
21.09.2007 16:51:35 - Module: MAIN Source: winwks\en\ Destination: C:\Program Files\Avira\AntiVir PersonalEdition Classic\ Files: 77
21.09.2007 16:51:38 - build.dat b726570a341411e8918ad7c0f2bf701f != 6c345d2097f5791881eeda2797081e7c
21.09.2007 16:51:38 - Module: COMMAPPDATA Source: winwks\en\ Destination: C:\ProgramData\ Files: 1
21.09.2007 16:51:38 - Module: TEXT Source: winwks\en\ Destination: C:\Program Files\Avira\AntiVir PersonalEdition Classic\ Files: 3
21.09.2007 16:51:38 - Module: VDF_PRELOAD Source: vdf_preload\ Destination: C:\ProgramData\Avira\AntiVir PersonalEdition Classic\Update\ Files: 31
21.09.2007 16:51:38 - Module: VDF Source: vdf\ Destination: C:\Program Files\Avira\AntiVir PersonalEdition Classic\ Files: 4
21.09.2007 16:51:38 - C:\Program Files\Avira\AntiVir PersonalEdition Classic\antivir2.vdf 6.39.1.43 < 6.39.1.120
21.09.2007 16:51:38 - C:\Program Files\Avira\AntiVir PersonalEdition Classic\antivir3.vdf 6.39.1.51 < 6.39.1.163
21.09.2007 16:51:38 - Module: AVREP_NT Source: engine\nt\ Destination: C:\Program Files\Avira\AntiVir PersonalEdition Classic\ Files: 1
21.09.2007 16:51:38 - Module: ENGINE Source: engine\ Destination: C:\Program Files\Avira\AntiVir PersonalEdition Classic\ Files: 2
21.09.2007 16:51:38 - C:\Program Files\Avira\AntiVir PersonalEdition Classic\avewin32.dll 7.6.0.5 < 7.6.0.15
21.09.2007 16:51:39 - Module: ENGINE_NT_EN Source: engine\nt\ Destination: C:\Program Files\Avira\AntiVir PersonalEdition Classic\ Files: 1
21.09.2007 16:51:39 - Module: DRV Source: winwks\en\ Destination: C:\Windows\SYSTEM32\drivers\ Files: 4
21.09.2007 16:51:39 - Minifilter is installed

21.09.2007 16:51:39 - Minifilter is possible

21.09.2007 16:51:39 - Reading registry value successful: Software\Avira\AntiVir PersonalEdition Classic | FilterType

21.09.2007 16:51:39 - File basic-nt/xp/avgntdd.sys which was recognized as modified, must not be updated
21.09.2007 16:51:39 - File basic-nt/xp/avgntmgr.sys which was recognized as modified, must not be updated
21.09.2007 16:51:39 - The Module DRV which was recognized as modified, must not be updated
21.09.2007 16:51:39 - Initialize avnotify.exe

21.09.2007 16:51:39 - Starting avnotify.exe successful

21.09.2007 16:51:39 - Preparing to download files
21.09.2007 16:51:39 - 35 files need to be downloaded / copied from http://dl5.avgate.net/upd/
21.09.2007 16:51:39 - #1: Downloading and extracting http://dl5.avgate.net/upd/winwks/en/classic-nt/build.dat.gz to C:\ProgramData\Avira\AntiVir PersonalEdition Classic\Update\AVUPDATE_46f3da5c\winwks\en\classic-nt/build.dat
21.09.2007 16:51:40 - #2: Downloading and extracting http://dl5.avgate.net/upd/vdf_preload/vdf1.vdf.gz to C:\ProgramData\Avira\AntiVir PersonalEdition Classic\Update\AVUPDATE_46f3da5c\vdf_preload\vdf1.vdf
21.09.2007 16:51:46 - #3: Downloading and extracting http://dl5.avgate.net/upd/vdf_preload/vdf10.vdf.gz to C:\ProgramData\Avira\AntiVir PersonalEdition Classic\Update\AVUPDATE_46f3da5c\vdf_preload\vdf10.vdf
21.09.2007 16:51:51 - #4: Downloading and extracting http://dl5.avgate.net/upd/vdf_preload/vdf11.vdf.gz to C:\ProgramData\Avira\AntiVir PersonalEdition Classic\Update\AVUPDATE_46f3da5c\vdf_preload\vdf11.vdf
21.09.2007 16:51:56 - #5: Downloading and extracting http://dl5.avgate.net/upd/vdf_preload/vdf12.vdf.gz to C:\ProgramData\Avira\AntiVir PersonalEdition Classic\Update\AVUPDATE_46f3da5c\vdf_preload\vdf12.vdf
21.09.2007 16:52:02 - #6: Downloading and extracting http://dl5.avgate.net/upd/vdf_preload/vdf13.vdf.gz to C:\ProgramData\Avira\AntiVir PersonalEdition Classic\Update\AVUPDATE_46f3da5c\vdf_preload\vdf13.vdf
21.09.2007 16:52:08 - #7: Downloading and extracting http://dl5.avgate.net/upd/vdf_preload/vdf14.vdf.gz to C:\ProgramData\Avira\AntiVir PersonalEdition Classic\Update\AVUPDATE_46f3da5c\vdf_preload\vdf14.vdf
21.09.2007 16:52:13 - #8: Downloading and extracting http://dl5.avgate.net/upd/vdf_preload/vdf15.vdf.gz to C:\ProgramData\Avira\AntiVir PersonalEdition Classic\Update\AVUPDATE_46f3da5c\vdf_preload\vdf15.vdf
21.09.2007 16:52:18 - #9: Downloading and extracting http://dl5.avgate.net/upd/vdf_preload/vdf16.vdf.gz to C:\ProgramData\Avira\AntiVir PersonalEdition Classic\Update\AVUPDATE_46f3da5c\vdf_preload\vdf16.vdf
21.09.2007 16:52:35 - #10: Downloading and extracting http://dl5.avgate.net/upd/vdf_preload/vdf17.vdf.gz to C:\ProgramData\Avira\AntiVir PersonalEdition Classic\Update\AVUPDATE_46f3da5c\vdf_preload\vdf17.vdf
21.09.2007 16:53:13 - There was a problem updating from the specified server: Internet file read error while downloading the file http://dl5.avgate.net/upd/vdf_preload/vdf17.vdf.gz.
21.09.2007 16:53:13 - Switching to next update server
21.09.2007 16:53:34 - Connection failed while downloading the file http://dl5.avgate.net/upd/idx/master.idx
21.09.2007 16:53:34 - Switching to next update server
21.09.2007 16:53:35 - Master IDX file has changed
21.09.2007 16:53:42 - Keyfile: OK [FULL Mode]

21.09.2007 16:53:42 - File basic-nt/2k/avgntflt.sys's operating system doesn't match the current one. File ignored.
21.09.2007 16:53:42 - File basic-nt/avgio64.sys's operating system doesn't match the current one. File ignored.
21.09.2007 16:53:42 - File basic-nt/imp64b.exe's operating system doesn't match the current one. File ignored.
21.09.2007 16:53:42 - File basic-nt/psapi.dll's operating system doesn't match the current one. File ignored.
21.09.2007 16:53:42 - File basic-nt/shlext64.dll's operating system doesn't match the current one. File ignored.
21.09.2007 16:53:42 - File basic-nt/vista64/avgntflt.sys's operating system doesn't match the current one. File ignored.
21.09.2007 16:53:42 - File basic-nt/xp64/avgntflt.sys's operating system doesn't match the current one. File ignored.
21.09.2007 16:53:42 - File basic-nt/2k/avgntdd.sys's operating system doesn't match the current one. File ignored.
21.09.2007 16:53:42 - File basic-nt/2k/avgntmgr.sys's operating system doesn't match the current one. File ignored.
21.09.2007 16:53:42 - File basic-nt/nt/avgntdd.sys's operating system doesn't match the current one. File ignored.
21.09.2007 16:53:42 - File basic-nt/nt/avgntmgr.sys's operating system doesn't match the current one. File ignored.
21.09.2007 16:53:42 - File basic-nt/vista64/avgntflt.sys's operating system doesn't match the current one. File ignored.
21.09.2007 16:53:42 - Downloading the product.info file from http://dl3.avgate.net/upd/idx/vdf_preload.info.gz
21.09.2007 16:53:43 - Downloading the product.info file from http://dl3.avgate.net/upd/idx/vdf.info.gz
21.09.2007 16:53:46 - Keyfile: OK [FULL Mode]

21.09.2007 16:53:46 - Downloading the product.info file from http://dl3.avgate.net/upd/idx/specvir-nt.info.gz
21.09.2007 16:53:46 - Downloading the product.info file from http://dl3.avgate.net/upd/idx/engine.info.gz
21.09.2007 16:53:47 - Downloading the product.info file from http://dl3.avgate.net/upd/idx/engine-nt-en.info.gz
21.09.2007 16:53:49 - Module: SELFUPDATE Source: winwks\en\ Destination: C:\Program Files\Avira\AntiVir PersonalEdition Classic\ Files: 15
21.09.2007 16:53:49 - Module: MAIN Source: winwks\en\ Destination: C:\Program Files\Avira\AntiVir PersonalEdition Classic\ Files: 77
21.09.2007 16:53:49 - build.dat b726570a341411e8918ad7c0f2bf701f != 6c345d2097f5791881eeda2797081e7c
21.09.2007 16:53:49 - Module: COMMAPPDATA Source: winwks\en\ Destination: C:\ProgramData\ Files: 1
21.09.2007 16:53:49 - Module: TEXT Source: winwks\en\ Destination: C:\Program Files\Avira\AntiVir PersonalEdition Classic\ Files: 3
21.09.2007 16:53:49 - Module: VDF_PRELOAD Source: vdf_preload\ Destination: C:\ProgramData\Avira\AntiVir PersonalEdition Classic\Update\ Files: 31
21.09.2007 16:53:49 - Module: VDF Source: vdf\ Destination: C:\Program Files\Avira\AntiVir PersonalEdition Classic\ Files: 4
21.09.2007 16:53:50 - C:\Program Files\Avira\AntiVir PersonalEdition Classic\antivir2.vdf 6.39.1.43 < 6.39.1.120
21.09.2007 16:53:50 - C:\Program Files\Avira\AntiVir PersonalEdition Classic\antivir3.vdf 6.39.1.51 < 6.39.1.163
21.09.2007 16:53:50 - Module: AVREP_NT Source: engine\nt\ Destination: C:\Program Files\Avira\AntiVir PersonalEdition Classic\ Files: 1
21.09.2007 16:53:50 - Module: ENGINE Source: engine\ Destination: C:\Program Files\Avira\AntiVir PersonalEdition Classic\ Files: 2
21.09.2007 16:53:50 - C:\Program Files\Avira\AntiVir PersonalEdition Classic\avewin32.dll 7.6.0.5 < 7.6.0.15
21.09.2007 16:53:50 - Module: ENGINE_NT_EN Source: engine\nt\ Destination: C:\Program Files\Avira\AntiVir PersonalEdition Classic\ Files: 1
21.09.2007 16:53:50 - Module: DRV Source: winwks\en\ Destination: C:\Windows\SYSTEM32\drivers\ Files: 4
21.09.2007 16:53:50 - Minifilter is installed

21.09.2007 16:53:50 - Minifilter is possible

21.09.2007 16:53:50 - Reading registry value successful: Software\Avira\AntiVir PersonalEdition Classic | FilterType

21.09.2007 16:53:50 - File basic-nt/xp/avgntdd.sys which was recognized as modified, must not be updated
21.09.2007 16:53:50 - File basic-nt/xp/avgntmgr.sys which was recognized as modified, must not be updated
21.09.2007 16:53:50 - The Module DRV which was recognized as modified, must not be updated
21.09.2007 16:53:50 - Preparing to download files
21.09.2007 16:53:50 - 70 files need to be downloaded / copied from http://dl3.avgate.net/upd/
21.09.2007 16:53:50 - File C:\ProgramData\Avira\AntiVir PersonalEdition Classic\Update\AVUPDATE_46f3da5c\winwks\en\classic-nt\build.dat.gz already exists in temporary folder and it will not be downloaded again
21.09.2007 16:53:50 - File C:\ProgramData\Avira\AntiVir PersonalEdition Classic\Update\AVUPDATE_46f3da5c\vdf_preload\vdf1.vdf.gz already exists in temporary folder and it will not be downloaded again
21.09.2007 16:53:50 - File C:\ProgramData\Avira\AntiVir PersonalEdition Classic\Update\AVUPDATE_46f3da5c\vdf_preload\vdf10.vdf.gz already exists in temporary folder and it will not be downloaded again
21.09.2007 16:53:50 - File C:\ProgramData\Avira\AntiVir PersonalEdition Classic\Update\AVUPDATE_46f3da5c\vdf_preload\vdf11.vdf.gz already exists in temporary folder and it will not be downloaded again
21.09.2007 16:53:50 - File C:\ProgramData\Avira\AntiVir PersonalEdition Classic\Update\AVUPDATE_46f3da5c\vdf_preload\vdf12.vdf.gz already exists in temporary folder and it will not be downloaded again
21.09.2007 16:53:50 - File C:\ProgramData\Avira\AntiVir PersonalEdition Classic\Update\AVUPDATE_46f3da5c\vdf_preload\vdf13.vdf.gz already exists in temporary folder and it will not be downloaded again
21.09.2007 16:53:51 - File C:\ProgramData\Avira\AntiVir PersonalEdition Classic\Update\AVUPDATE_46f3da5c\vdf_preload\vdf14.vdf.gz already exists in temporary folder and it will not be downloaded again
21.09.2007 16:53:51 - File C:\ProgramData\Avira\AntiVir PersonalEdition Classic\Update\AVUPDATE_46f3da5c\vdf_preload\vdf15.vdf.gz already exists in temporary folder and it will not be downloaded again
21.09.2007 16:53:51 - File C:\ProgramData\Avira\AntiVir PersonalEdition Classic\Update\AVUPDATE_46f3da5c\vdf_preload\vdf16.vdf.gz already exists in temporary folder and it will not be downloaded again
21.09.2007 16:53:51 - Older version of file C:\ProgramData\Avira\AntiVir PersonalEdition Classic\Update\AVUPDATE_46f3da5c\vdf_preload\vdf17.vdf.gz already exists in temporary folder. It will be downloaded again
21.09.2007 16:53:51 - #1: Downloading and extracting http://dl3.avgate.net/upd/vdf_preload/vdf17.vdf.gz to C:\ProgramData\Avira\AntiVir PersonalEdition Classic\Update\AVUPDATE_46f3da5c\vdf_preload\vdf17.vdf
21.09.2007 16:53:59 - #2: Downloading and extracting http://dl3.avgate.net/upd/vdf_preload/vdf18.vdf.gz to C:\ProgramData\Avira\AntiVir PersonalEdition Classic\Update\AVUPDATE_46f3da5c\vdf_preload\vdf18.vdf
21.09.2007 16:54:05 - #3: Downloading and extracting http://dl3.avgate.net/upd/vdf_preload/vdf19.vdf.gz to C:\ProgramData\Avira\AntiVir PersonalEdition Classic\Update\AVUPDATE_46f3da5c\vdf_preload\vdf19.vdf
21.09.2007 16:54:11 - #4: Downloading and extracting http://dl3.avgate.net/upd/vdf_preload/vdf2.vdf.gz to C:\ProgramData\Avira\AntiVir PersonalEdition Classic\Update\AVUPDATE_46f3da5c\vdf_preload\vdf2.vdf
21.09.2007 16:54:16 - #5: Downloading and extracting http://dl3.avgate.net/upd/vdf_preload/vdf20.vdf.gz to C:\ProgramData\Avira\AntiVir PersonalEdition Classic\Update\AVUPDATE_46f3da5c\vdf_preload\vdf20.vdf
21.09.2007 16:54:20 - #6: Downloading and extracting http://dl3.avgate.net/upd/vdf_preload/vdf21.vdf.gz to C:\ProgramData\Avira\AntiVir PersonalEdition Classic\Update\AVUPDATE_46f3da5c\vdf_preload\vdf21.vdf
21.09.2007 16:54:26 - #7: Downloading and extracting http://dl3.avgate.net/upd/vdf_preload/vdf22.vdf.gz to C:\ProgramData\Avira\AntiVir PersonalEdition Classic\Update\AVUPDATE_46f3da5c\vdf_preload\vdf22.vdf
21.09.2007 16:54:29 - #8: Downloading and extracting http://dl3.avgate.net/upd/vdf_preload/vdf23.vdf.gz to C:\ProgramData\Avira\AntiVir PersonalEdition Classic\Update\AVUPDATE_46f3da5c\vdf_preload\vdf23.vdf
21.09.2007 16:54:33 - #9: Downloading and extracting http://dl3.avgate.net/upd/vdf_preload/vdf24.vdf.gz to C:\ProgramData\Avira\AntiVir PersonalEdition Classic\Update\AVUPDATE_46f3da5c\vdf_preload\vdf24.vdf
21.09.2007 16:54:37 - #10: Downloading and extracting http://dl3.avgate.net/upd/vdf_preload/vdf25.vdf.gz to C:\ProgramData\Avira\AntiVir PersonalEdition Classic\Update\AVUPDATE_46f3da5c\vdf_preload\vdf25.vdf
21.09.2007 16:54:41 - #11: Downloading and extracting http://dl3.avgate.net/upd/vdf_preload/vdf26.vdf.gz to C:\ProgramData\Avira\AntiVir PersonalEdition Classic\Update\AVUPDATE_46f3da5c\vdf_preload\vdf26.vdf
21.09.2007 16:54:46 - #12: Downloading and extracting http://dl3.avgate.net/upd/vdf_preload/vdf27.vdf.gz to C:\ProgramData\Avira\AntiVir PersonalEdition Classic\Update\AVUPDATE_46f3da5c\vdf_preload\vdf27.vdf
21.09.2007 16:54:49 - #13: Downloading and extracting http://dl3.avgate.net/upd/vdf_preload/vdf28.vdf.gz to C:\ProgramData\Avira\AntiVir PersonalEdition Classic\Update\AVUPDATE_46f3da5c\vdf_preload\vdf28.vdf
21.09.2007 16:54:54 - #14: Downloading and extracting http://dl3.avgate.net/upd/vdf_preload/vdf29.vdf.gz to C:\ProgramData\Avira\AntiVir PersonalEdition Classic\Update\AVUPDATE_46f3da5c\vdf_preload\vdf29.vdf
21.09.2007 16:54:58 - #15: Downloading and extracting http://dl3.avgate.net/upd/vdf_preload/vdf3.vdf.gz to C:\ProgramData\Avira\AntiVir PersonalEdition Classic\Update\AVUPDATE_46f3da5c\vdf_preload\vdf3.vdf
21.09.2007 16:55:01 - #16: Downloading and extracting http://dl3.avgate.net/upd/vdf_preload/vdf30.vdf.gz to C:\ProgramData\Avira\AntiVir PersonalEdition Classic\Update\AVUPDATE_46f3da5c\vdf_preload\vdf30.vdf
21.09.2007 16:55:07 - #17: Downloading and extracting http://dl3.avgate.net/upd/vdf_preload/vdf31.vdf.gz to C:\ProgramData\Avira\AntiVir PersonalEdition Classic\Update\AVUPDATE_46f3da5c\vdf_preload\vdf31.vdf
21.09.2007 16:55:11 - #18: Downloading and extracting http://dl3.avgate.net/upd/vdf_preload/vdf4.vdf.gz to C:\ProgramData\Avira\AntiVir PersonalEdition Classic\Update\AVUPDATE_46f3da5c\vdf_preload\vdf4.vdf
21.09.2007 16:55:35 - #19: Downloading and extracting http://dl3.avgate.net/upd/vdf_preload/vdf5.vdf.gz to C:\ProgramData\Avira\AntiVir PersonalEdition Classic\Update\AVUPDATE_46f3da5c\vdf_preload\vdf5.vdf
21.09.2007 16:55:41 - #20: Downloading and extracting http://dl3.avgate.net/upd/vdf_preload/vdf6.vdf.gz to C:\ProgramData\Avira\AntiVir PersonalEdition Classic\Update\AVUPDATE_46f3da5c\vdf_preload\vdf6.vdf
21.09.2007 16:55:46 - #21: Downloading and extracting http://dl3.avgate.net/upd/vdf_preload/vdf7.vdf.gz to C:\ProgramData\Avira\AntiVir PersonalEdition Classic\Update\AVUPDATE_46f3da5c\vdf_preload\vdf7.vdf
21.09.2007 16:55:51 - #22: Downloading and extracting http://dl3.avgate.net/upd/vdf_preload/vdf8.vdf.gz to C:\ProgramData\Avira\AntiVir PersonalEdition Classic\Update\AVUPDATE_46f3da5c\vdf_preload\vdf8.vdf
21.09.2007 16:55:54 - #23: Downloading and extracting http://dl3.avgate.net/upd/vdf_preload/vdf9.vdf.gz to C:\ProgramData\Avira\AntiVir PersonalEdition Classic\Update\AVUPDATE_46f3da5c\vdf_preload\vdf9.vdf
21.09.2007 16:55:58 - #24: Downloading and extracting http://dl3.avgate.net/upd/vdf/antivir2.vdf.gz to C:\ProgramData\Avira\AntiVir PersonalEdition Classic\Update\AVUPDATE_46f3da5c\vdf\antivir2.vdf
21.09.2007 16:56:17 - #25: Downloading and extracting http://dl3.avgate.net/upd/vdf/antivir3.vdf.gz to C:\ProgramData\Avira\AntiVir PersonalEdition Classic\Update\AVUPDATE_46f3da5c\vdf\antivir3.vdf
21.09.2007 16:56:20 - #26: Downloading and extracting http://dl3.avgate.net/upd/engine/avewin32.dll.gz to C:\ProgramData\Avira\AntiVir PersonalEdition Classic\Update\AVUPDATE_46f3da5c\engine\avewin32.dll
21.09.2007 16:56:38 - Status of service AntiVirService is running

21.09.2007 16:56:38 - Initialize avscan.exe

21.09.2007 16:56:38 - Initialize avcenter.exe

21.09.2007 16:56:38 - Initialize avgnt.exe

21.09.2007 16:56:39 - Save file C:\Program Files\Avira\AntiVir PersonalEdition Classic\antivir0.vdf to C:\ProgramData\Avira\AntiVir PersonalEdition Classic\BACKUP\FAILSAFE\antivir0.vdf.

21.09.2007 16:56:40 - Save file C:\Program Files\Avira\AntiVir PersonalEdition Classic\antivir1.vdf to C:\ProgramData\Avira\AntiVir PersonalEdition Classic\BACKUP\FAILSAFE\antivir1.vdf.

21.09.2007 16:56:40 - Save file C:\Program Files\Avira\AntiVir PersonalEdition Classic\antivir2.vdf to C:\ProgramData\Avira\AntiVir PersonalEdition Classic\BACKUP\FAILSAFE\antivir2.vdf.

21.09.2007 16:56:40 - Save file C:\Program Files\Avira\AntiVir PersonalEdition Classic\antivir3.vdf to C:\ProgramData\Avira\AntiVir PersonalEdition Classic\BACKUP\FAILSAFE\antivir3.vdf.

21.09.2007 16:56:40 - Save file C:\Program Files\Avira\AntiVir PersonalEdition Classic\avewin32.dll to C:\ProgramData\Avira\AntiVir PersonalEdition Classic\BACKUP\FAILSAFE\avewin32.dll.

21.09.2007 16:56:40 - avgnt.exe closed.

21.09.2007 16:56:40 - Starting to install
21.09.2007 16:56:40 - Processing module MAIN Source: C:\ProgramData\Avira\AntiVir PersonalEdition Classic\Update\AVUPDATE_46f3da5c\winwks\en\ Destination: C:\Program Files\Avira\AntiVir PersonalEdition Classic\
21.09.2007 16:56:40 - File C:\ProgramData\Avira\AntiVir PersonalEdition Classic\Update\vdf1.vdf will not be backed up because it doesn't exist
21.09.2007 16:56:40 - File C:\ProgramData\Avira\AntiVir PersonalEdition Classic\Update\vdf10.vdf will not be backed up because it doesn't exist
21.09.2007 16:56:40 - File C:\ProgramData\Avira\AntiVir PersonalEdition Classic\Update\vdf11.vdf will not be backed up because it doesn't exist
21.09.2007 16:56:40 - File C:\ProgramData\Avira\AntiVir PersonalEdition Classic\Update\vdf12.vdf will not be backed up because it doesn't exist
21.09.2007 16:56:40 - File C:\ProgramData\Avira\AntiVir PersonalEdition Classic\Update\vdf13.vdf will not be backed up because it doesn't exist
21.09.2007 16:56:40 - File C:\ProgramData\Avira\AntiVir PersonalEdition Classic\Update\vdf14.vdf will not be backed up because it doesn't exist
21.09.2007 16:56:40 - File C:\ProgramData\Avira\AntiVir PersonalEdition Classic\Update\vdf15.vdf will not be backed up because it doesn't exist
21.09.2007 16:56:40 - File C:\ProgramData\Avira\AntiVir PersonalEdition Classic\Update\vdf16.vdf will not be backed up because it doesn't exist
21.09.2007 16:56:40 - File C:\ProgramData\Avira\AntiVir PersonalEdition Classic\Update\vdf17.vdf will not be backed up because it doesn't exist
21.09.2007 16:56:40 - File C:\ProgramData\Avira\AntiVir PersonalEdition Classic\Update\vdf18.vdf will not be backed up because it doesn't exist
21.09.2007 16:56:40 - File C:\ProgramData\Avira\AntiVir PersonalEdition Classic\Update\vdf19.vdf will not be backed up because it doesn't exist
21.09.2007 16:56:40 - File C:\ProgramData\Avira\AntiVir PersonalEdition Classic\Update\vdf2.vdf will not be backed up because it doesn't exist
21.09.2007 16:56:40 - File C:\ProgramData\Avira\AntiVir PersonalEdition Classic\Update\vdf20.vdf will not be backed up because it doesn't exist
21.09.2007 16:56:40 - File C:\ProgramData\Avira\AntiVir PersonalEdition Classic\Update\vdf21.vdf will not be backed up because it doesn't exist
21.09.2007 16:56:40 - File C:\ProgramData\Avira\AntiVir PersonalEdition Classic\Update\vdf22.vdf will not be backed up because it doesn't exist
21.09.2007 16:56:40 - File C:\ProgramData\Avira\AntiVir PersonalEdition Classic\Update\vdf23.vdf will not be backed up because it doesn't exist
21.09.2007 16:56:40 - File C:\ProgramData\Avira\AntiVir PersonalEdition Classic\Update\vdf24.vdf will not be backed up because it doesn't exist
21.09.2007 16:56:40 - File C:\ProgramData\Avira\AntiVir PersonalEdition Classic\Update\vdf25.vdf will not be backed up because it doesn't exist
21.09.2007 16:56:40 - File C:\ProgramData\Avira\AntiVir PersonalEdition Classic\Update\vdf26.vdf will not be backed up because it doesn't exist
21.09.2007 16:56:40 - File C:\ProgramData\Avira\AntiVir PersonalEdition Classic\Update\vdf27.vdf will not be backed up because it doesn't exist
21.09.2007 16:56:40 - File C:\ProgramData\Avira\AntiVir PersonalEdition Classic\Update\vdf28.vdf will not be backed up because it doesn't exist
21.09.2007 16:56:40 - File C:\ProgramData\Avira\AntiVir PersonalEdition Classic\Update\vdf29.vdf will not be backed up because it doesn't exist
21.09.2007 16:56:40 - File C:\ProgramData\Avira\AntiVir PersonalEdition Classic\Update\vdf3.vdf will not be backed up because it doesn't exist
21.09.2007 16:56:40 - File C:\ProgramData\Avira\AntiVir PersonalEdition Classic\Update\vdf30.vdf will not be backed up because it doesn't exist
21.09.2007 16:56:40 - File C:\ProgramData\Avira\AntiVir PersonalEdition Classic\Update\vdf31.vdf will not be backed up because it doesn't exist
21.09.2007 16:56:40 - File C:\ProgramData\Avira\AntiVir PersonalEdition Classic\Update\vdf4.vdf will not be backed up because it doesn't exist
21.09.2007 16:56:40 - File C:\ProgramData\Avira\AntiVir PersonalEdition Classic\Update\vdf5.vdf will not be backed up because it doesn't exist
21.09.2007 16:56:40 - File C:\ProgramData\Avira\AntiVir PersonalEdition Classic\Update\vdf6.vdf will not be backed up because it doesn't exist
21.09.2007 16:56:40 - File C:\ProgramData\Avira\AntiVir PersonalEdition Classic\Update\vdf7.vdf will not be backed up because it doesn't exist
21.09.2007 16:56:40 - File C:\ProgramData\Avira\AntiVir PersonalEdition Classic\Update\vdf8.vdf will not be backed up because it doesn't exist
21.09.2007 16:56:40 - File C:\ProgramData\Avira\AntiVir PersonalEdition Classic\Update\vdf9.vdf will not be backed up because it doesn't exist
21.09.2007 16:56:40 - Processing module VDF_PRELOAD Source: C:\ProgramData\Avira\AntiVir PersonalEdition Classic\Update\AVUPDATE_46f3da5c\vdf_preload\ Destination: C:\ProgramData\Avira\AntiVir PersonalEdition Classic\Update\
21.09.2007 16:56:53 - Processing module VDF Source: C:\ProgramData\Avira\AntiVir PersonalEdition Classic\Update\AVUPDATE_46f3da5c\vdf\ Destination: C:\Program Files\Avira\AntiVir PersonalEdition Classic\
21.09.2007 16:56:54 - File C:\Program Files\Avira\AntiVir PersonalEdition Classic\avewin32.dll will not be backed up because it doesn't exist
21.09.2007 16:56:54 - Processing module ENGINE Source: C:\ProgramData\Avira\AntiVir PersonalEdition Classic\Update\AVUPDATE_46f3da5c\engine\ Destination: C:\Program Files\Avira\AntiVir PersonalEdition Classic\
21.09.2007 16:56:55 - A total of 70 files were updated
21.09.2007 16:56:55 - Registry entry created successfully: Software\Avira\AntiVir PersonalEdition Classic |UpdateInProgress

21.09.2007 16:56:57 - Status of service AntiVirService is running

21.09.2007 16:57:15 - Reinitialization of AntiVirService carried out successfully.

21.09.2007 16:57:16 - Starting avgnt.exe successful

21.09.2007 16:57:16 - Dialup: 0

21.09.2007 16:57:16 - Downloaded bytes: 28529636

21.09.2007 16:57:16 - Downloaded file(s): 35

21.09.2007 16:57:16 - Downloaded file(s): build.dat; vdf1.vdf; vdf10.vdf; vdf11.vdf; vdf12.vdf; vdf13.vdf; vdf14.vdf; vdf15.vdf; vdf16.vdf; vdf17.vdf; vdf18.vdf; vdf19.vdf; vdf2.vdf; vdf20.vdf; vdf21.vdf; vdf22.vdf; vdf23.vdf; vdf24.vdf; vdf25.vdf; vdf26.vdf; vdf27.vdf; vdf28.vdf; vdf29.vdf; vdf3.vdf; vdf30.vdf; vdf31.vdf; vdf4.vdf; vdf5.vdf; vdf6.vdf; vdf7.vdf; vdf8.vdf; vdf9.vdf; antivir2.vdf; antivir3.vdf; avewin32.dll

21.09.2007 16:57:16 - Engine version local : 7.6.0.5

21.09.2007 16:57:16 - Engine version internet: 7.6.0.15

21.09.2007 16:57:16 - 0. VDF version local : 6.35.0.1

21.09.2007 16:57:16 - 0. VDF version internet: 6.35.0.1

21.09.2007 16:57:16 - 1. VDF version local : 6.39.0.129

21.09.2007 16:57:16 - 1. VDF version internet: 6.39.0.129

21.09.2007 16:57:16 - 2. VDF version local : 6.39.1.43

21.09.2007 16:57:16 - 2. VDF version internet: 6.39.1.120

21.09.2007 16:57:16 - 3. VDF version local : 6.39.1.51

21.09.2007 16:57:16 - 3. VDF version internet: 6.39.1.163

21.09.2007 16:57:16 - Required time: 06:07

21.09.2007 16:57:16 - Registry entry created successfully: Software\Avira\AntiVir PersonalEdition Classic |LastUpdate

21.09.2007 16:57:16 - Update finished successfully


j'avais compris que t'etais bénévole sur le site, mais dans la vie: etais ce ton metier?......kiss
0
Réponse 54 / 65
Regis59 Messages postés 21143 Date d'inscription mardi 27 juin 2006 Statut Contributeur sécurité Dernière intervention 22 juin 2016 1 321
22 sept. 2007 à 21:46
Coucou

Non je suis etudiant.

Pour norton.
Dans ajout suppression de programmes, as tu soit norton, soit symantec de present?

A+
0
Réponse 55 / 65
lisa1708
23 sept. 2007 à 10:13
etudiant?, j'aurais pas cru!, ta vocation est toute tracée!!!

pour Norton, tu veux dire dans panneau de configuration? et programmes?; bien justement il n'y a plus rien ; pas de symantec, ni de LiveUpdate...
mais quand je vais dans "panneau de configuration", que je clic sur "sécurité", j'ai une liste: centre de securité, puis pare feu windows, windows defender.....etc, chacun avec un icone à gauche; puis j'ai un icone "page blanche" et à coté ya écri " symantec LiveUpdate", quand je clic dessus ils me disent : application introuvable"?!, et impossible de supprimer cette icone!...sinon aucune autre trace!, mais le centre de sécurité me trouve 2 pare feu en activité! (ils precisent que 2 cé pas bien car ils peuven s'entraver!), ya parefeu windows et norton actif!!!!.....

BON DIMANCHE.....
0
Réponse 56 / 65
Regis59 Messages postés 21143 Date d'inscription mardi 27 juin 2006 Statut Contributeur sécurité Dernière intervention 22 juin 2016 1 321
23 sept. 2007 à 10:42
Ok :-)

Essaie en mode sans echec de supprimer ce LiveUpdate de Symantec.

Puis installe RegCleaner, compatible Vista, pour supprimer les entrées obsoletes du registre:
http://www.softastuces.com/tuto/maint/regcleaner/clean.php

Suis bien les instructions et depuis le debut.
Il ne faut pas s'amuser avec ce genre de logiciel et simplement suivre les instructions.

A+
0
Réponse 57 / 65
lisa1708
23 sept. 2007 à 14:14
coucou!!
j'ai essayé de supprimer en mode sans echec, mais dans ce mode là; ils te proposent pas de voir les parametres de sécurité!! :-(

cool aussi regcleaner!, j'ai supprimé beaucoup de "symantec" et "norton", mais ils sont toujours presents!!!, et en recherche manuele ils sont introuvable!!...regardes mon rapport hyjackthis...dans les lignes 23, il y est à 3 reprises (symantec et LiveUpdate)!!
il s'accroche ce C..!!!
et au fait?, comment on fait pour supprimer regcleaner ensuite?, en mode sans echec? car il faut une autorisation!! :-(

Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 13:58:52, on 23/09/2007
Platform: Windows Vista (WinNT 6.00.1904)
MSIE: Internet Explorer v7.00 (7.00.6000.16512)
Boot mode: Normal

Running processes:
C:\Windows\SYSTEM32\taskeng.exe
C:\Windows\system32\Dwm.exe
C:\Windows\Explorer.EXE
C:\Program Files\Windows Defender\MSASCui.exe
C:\Program Files\Java\jre1.6.0\bin\jusched.exe
C:\Program Files\TOSHIBA\Power Saver\TPwrMain.exe
C:\Program Files\TOSHIBA\SmoothView\SmoothView.exe
C:\Program Files\TOSHIBA\FlashCards\TCrdMain.exe
C:\Windows\RtHDVCpl.exe
C:\Program Files\ltmoh\ltmoh.exe
C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
C:\Program Files\TOSHIBA\Utilities\VolControl.exe
C:\Program Files\ATI Technologies\ATI.ACE\CLI.EXE
C:\Program Files\TOSHIBA\ConfigFree\NDSTray.exe
C:\Program Files\TOSHIBA\Toshiba Online Product Information\TOPI.exe
C:\Program Files\QuickTime\qttask.exe
C:\Program Files\Common Files\logishrd\LComMgr\Communications_Helper.exe
C:\Program Files\Logitech\QuickCam\Quickcam.exe
C:\Program Files\Windows Sidebar\sidebar.exe
C:\Program Files\TOSHIBA\TOSCDSPD\TOSCDSPD.exe
C:\Program Files\MSN Messenger\msnmsgr.exe
C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe
C:\Program Files\Synaptics\SynTP\SynToshiba.exe
C:\Program Files\Common Files\LogiShrd\LVCOMSER\LVComSer.exe
C:\Windows\system32\wbem\unsecapp.exe
C:\Program Files\TOSHIBA\ConfigFree\CFSwMgr.exe
C:\Program Files\Common Files\Logishrd\LQCVFX\COCIManager.exe
C:\Users\Lisa\Documents\Mes fichiers reçus\HiJackThis\HijackThis.exe
C:\Program Files\ATI Technologies\ATI.ACE\CLI.exe
C:\Program Files\ATI Technologies\ATI.ACE\CLI.exe
C:\Program Files\Internet Explorer\ieuser.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLLoginProxy.exe
C:\Windows\system32\Macromed\Flash\FlashUtil9c.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = https://www.bing.com/?FORM=TOOLBR&cc=fr&toHttps=1&redig=4527FFF1C12746FC9EDB535C75E80ECC
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = https://www.bing.com/?FORM=TOOLBR&cc=fr&toHttps=1&redig=4527FFF1C12746FC9EDB535C75E80ECC
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.google.fr/?gws_rd=ssl
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = https://www.msn.com/fr-fr/?ocid=iehp
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.msn.com/fr-fr/?ocid=iehp
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R1 - HKCU\Software\Microsoft\Internet Explorer\SearchURL,(Default) = https://www.bing.com/?FORM=TOOLBR&cc=fr&toHttps=1&redig=4527FFF1C12746FC9EDB535C75E80ECC
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
O1 - Hosts: ::1 localhost
O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0\bin\ssv.dll
O2 - BHO: Windows Live Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Windows Live Toolbar Helper - {BDBD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\Windows Live Toolbar\msntb.dll
O3 - Toolbar: Windows Live Toolbar - {BDAD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\Windows Live Toolbar\msntb.dll
O4 - HKLM\..\Run: [Windows Defender] %ProgramFiles%\Windows Defender\MSASCui.exe -hide
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre1.6.0\bin\jusched.exe"
O4 - HKLM\..\Run: [TPwrMain] %ProgramFiles%\TOSHIBA\Power Saver\TPwrMain.EXE
O4 - HKLM\..\Run: [SmoothView] %ProgramFiles%\Toshiba\SmoothView\SmoothView.exe
O4 - HKLM\..\Run: [00TCrdMain] %ProgramFiles%\TOSHIBA\FlashCards\TCrdMain.exe
O4 - HKLM\..\Run: [ATICCC] "C:\Program Files\ATI Technologies\ATI.ACE\CLIStart.exe"
O4 - HKLM\..\Run: [RtHDVCpl] RtHDVCpl.exe
O4 - HKLM\..\Run: [LtMoh] C:\Program Files\ltmoh\Ltmoh.exe
O4 - HKLM\..\Run: [SynTPEnh] C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
O4 - HKLM\..\Run: [TOSHIBA Volume Indicator] "C:\Program Files\Toshiba\Utilities\VolControl.exe"
O4 - HKLM\..\Run: [NDSTray.exe] NDSTray.exe
O4 - HKLM\..\Run: [topi] C:\Program Files\TOSHIBA\Toshiba Online Product Information\topi.exe -startup
O4 - HKLM\..\Run: [zzz_ImInstaller_IncrediMail] C:\Users\Lisa\AppData\Local\Temp\ImInstaller\IncrediMail\incredimail_install[1].exe -startup -product IncrediMail
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [LanzarL2007] "C:\Users\Lisa\AppData\Local\Temp\{13079429-C7BB-4D5B-82D9-1DFB1FD4D7A0}\{D1DA2BA7-2592-4036-9BB2-DCCABDE8DC1A}\..\..\L2007tmp\Setup.exe" /SETUP:"/l0x040c"
O4 - HKLM\..\Run: [LogitechCommunicationsManager] "C:\Program Files\Common Files\LogiShrd\LComMgr\Communications_Helper.exe"
O4 - HKLM\..\Run: [LogitechQuickCamRibbon] "C:\Program Files\Logitech\QuickCam\Quickcam.exe" /hide
O4 - HKCU\..\Run: [Sidebar] C:\Program Files\Windows Sidebar\sidebar.exe /autoRun
O4 - HKCU\..\Run: [TOSCDSPD] C:\Program Files\TOSHIBA\TOSCDSPD\TOSCDSPD.exe
O4 - HKCU\..\Run: [MsnMsgr] "C:\Program Files\MSN Messenger\MsnMsgr.Exe" /background
O4 - HKCU\..\Run: [ccleaner] "C:\Users\Public\Downloads\CCleaner\ccleaner.exe" /AUTO
O4 - HKCU\..\Run: [Felix II] C:\Program Files\ScreenMates\Felix II\Fr\Felix2.exe
O4 - Global Startup: Lancement rapide d'Adobe Reader.lnk = C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe
O4 - Global Startup: Microsoft Office.lnk = C:\Program Files\Microsoft Office\Office\OSA9.EXE
O8 - Extra context menu item: &Windows Live Search - res://C:\Program Files\Windows Live Toolbar\msntb.dll/search.htm
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0\bin\ssv.dll
O9 - Extra button: eBay - {C08CAF1D-C0A3-40D5-9970-06D067EAC017} - http://www.webtip.ch/cgi-bin/toshiba/tracker_url.pl?FR (file missing)
O10 - Unknown file in Winsock LSP: c:\windows\system32\wpclsp.dll
O10 - Unknown file in Winsock LSP: c:\windows\system32\wpclsp.dll
O10 - Unknown file in Winsock LSP: c:\windows\system32\wpclsp.dll
O10 - Unknown file in Winsock LSP: c:\windows\system32\wpclsp.dll
O10 - Unknown file in Winsock LSP: c:\windows\system32\wpclsp.dll
O10 - Unknown file in Winsock LSP: c:\windows\system32\wpclsp.dll
O10 - Unknown file in Winsock LSP: c:\windows\system32\wpclsp.dll
O10 - Unknown file in Winsock LSP: c:\windows\system32\wpclsp.dll
O10 - Unknown file in Winsock LSP: c:\windows\system32\wpclsp.dll
O16 - DPF: {04CB5B64-5915-4629-B869-8945CEBADD21} (Module de délivrance de certificat MINEFI) - https://static.impots.gouv.fr/abos/static/securite/certdgi1.cab
O16 - DPF: {4F1E5B1A-2A80-42CA-8532-2D05CB959537} (MSN Photo Upload Tool) - http://gfx1.mail.live.com/mail/w1/resources/VistaMSNPUpldfr-fr.cab
O16 - DPF: {7FC1B346-83E6-4774-8D20-1A6B09B0E737} (Windows Live Photo Upload Control) - http://cid-571070718028b7e2.spaces.live.com/PhotoUpload/VistaMsnPUpldfr-fr.cab
O16 - DPF: {8436FE12-31DB-48BF-83BF-FE682F9160B4} (NanoInstaller Class) - https://www.pandasecurity.com/en/homeusers/online-antivirus/?ref=activescan
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab
O23 - Service: Agere Modem Call Progress Audio (AgereModemAudio) - Agere Systems - C:\Windows\system32\agrsmsvc.exe
O23 - Service: AntiVir PersonalEdition Classic Scheduler (AntiVirScheduler) - Avira GmbH - C:\Program Files\Avira\AntiVir PersonalEdition Classic\sched.exe
O23 - Service: AntiVir PersonalEdition Classic Guard (AntiVirService) - Avira GmbH - C:\Program Files\Avira\AntiVir PersonalEdition Classic\avguard.exe
O23 - Service: Ati External Event Utility - ATI Technologies Inc. - C:\Windows\system32\Ati2evxx.exe
O23 - Service: ConfigFree Service (CFSvcs) - TOSHIBA CORPORATION - C:\Program Files\TOSHIBA\ConfigFree\CFSvcs.exe
O23 - Service: Symantec Lic NetConnect service (CLTNetCnService) - Unknown owner - C:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe (file missing)
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\1150\Intel 32\IDriverT.exe
O23 - Service: LiveUpdate - Unknown owner - C:\PROGRA~1\Symantec\LIVEUP~1\LUCOMS~1.EXE (file missing)
O23 - Service: LVCOMSer - Logitech Inc. - C:\Program Files\Common Files\LogiShrd\LVCOMSER\LVComSer.exe
O23 - Service: Process Monitor (LVPrcSrv) - Logitech Inc. - C:\Program Files\Common Files\LogiShrd\LVMVFM\LVPrcSrv.exe
O23 - Service: LVSrvLauncher - Logitech Inc. - C:\Program Files\Common Files\LogiShrd\SrvLnch\SrvLnch.exe
O23 - Service: Planificateur LiveUpdate automatique - Unknown owner - C:\Program Files\Symantec\LiveUpdate\ALUSchedulerSvc.exe (file missing)
O23 - Service: TOSHIBA Optical Disc Drive Service (TODDSrv) - TOSHIBA Corporation - C:\Windows\system32\TODDSrv.exe
O23 - Service: TOSHIBA Power Saver (TosCoSrv) - TOSHIBA Corporation - C:\Program Files\TOSHIBA\Power Saver\TosCoSrv.exe
O23 - Service: Ulead Burning Helper (UleadBurningHelper) - Ulead Systems, Inc. - C:\Program Files\Common Files\Ulead Systems\DVD\ULCDRSvr.exe
0
Réponse 58 / 65
Regis59 Messages postés 21143 Date d'inscription mardi 27 juin 2006 Statut Contributeur sécurité Dernière intervention 22 juin 2016 1 321
24 sept. 2007 à 20:23
Re,

Essaie ceci:

¤Relance HijackThis, coche les cases devant ces lignes et ensuite clique sur fix checked :

O23 - Service: Symantec Lic NetConnect service (CLTNetCnService) - Unknown owner - C:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe (file missing)

O23 - Service: LiveUpdate - Unknown owner - C:\PROGRA~1\Symantec\LIVEUP~1\LUCOMS~1.EXE (file missing)

Ferme HJT

Essaie d arreter les services comme ceci:

Clique sur Démarrer->exécuter->tape: services.msc

Double-clique: Service: Symantec Lic NetConnect service

Règle-le sur "Arrêté" et "Désactivé".

Pareil avec LiveUpdate.

A+
0
Réponse 59 / 65
lisa1708
25 sept. 2007 à 13:43
coucou!!, t'as toujours des solutions!!, j'adore!!, toutse aussi efficacent les unes que les autres!! :-)

bon, j'ai fais tous ce que tu m'as dis, par contre avec vista les manip' sont un peu différentes!!, mais le principal est que dans "service" j'ai pu desactiver Liveupdate et Symantec; par contre cette saleté est toujours activé!, et ya toujours cette page blanche en icone dans le panneau de configuration!! GRRR!!!!, pourtan j'ai fixé les lignes sur hijackthis et n'apparaissent plus!; autant il ya un autre truc a desactivé, mais avec un autre nom que symantec ou liveupdate?....mais bon, cé pas moi la pro!...je te redonne un rapport hikackthis....si tu trouves une autre ligne à effacer...KISS et a+


Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 13:31:54, on 25/09/2007
Platform: Windows Vista (WinNT 6.00.1904)
MSIE: Internet Explorer v7.00 (7.00.6000.16512)
Boot mode: Normal

Running processes:
C:\Program Files\Common Files\LogiShrd\LVCOMSER\LVComSer.exe
C:\Windows\system32\Dwm.exe
C:\Windows\SYSTEM32\taskeng.exe
C:\Program Files\Windows Defender\MSASCui.exe
C:\Program Files\Java\jre1.6.0\bin\jusched.exe
C:\Program Files\TOSHIBA\Power Saver\TPwrMain.exe
C:\Program Files\TOSHIBA\SmoothView\SmoothView.exe
C:\Program Files\TOSHIBA\FlashCards\TCrdMain.exe
C:\Program Files\ATI Technologies\ATI.ACE\CLI.EXE
C:\Windows\RtHDVCpl.exe
C:\Program Files\ltmoh\ltmoh.exe
C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
C:\Program Files\TOSHIBA\Utilities\VolControl.exe
C:\Program Files\TOSHIBA\ConfigFree\NDSTray.exe
C:\Program Files\TOSHIBA\Toshiba Online Product Information\TOPI.exe
C:\Program Files\QuickTime\qttask.exe
C:\Program Files\Common Files\logishrd\LComMgr\Communications_Helper.exe
C:\Program Files\Logitech\QuickCam\Quickcam.exe
C:\Program Files\Avira\AntiVir PersonalEdition Classic\avgnt.exe
C:\Program Files\Windows Sidebar\sidebar.exe
C:\Program Files\TOSHIBA\TOSCDSPD\TOSCDSPD.exe
C:\Program Files\MSN Messenger\msnmsgr.exe
C:\Program Files\Synaptics\SynTP\SynToshiba.exe
C:\Windows\system32\wbem\unsecapp.exe
C:\Program Files\TOSHIBA\ConfigFree\CFSwMgr.exe
C:\Program Files\Common Files\Logishrd\LQCVFX\COCIManager.exe
C:\Program Files\ATI Technologies\ATI.ACE\CLI.exe
C:\Program Files\ATI Technologies\ATI.ACE\CLI.exe
C:\Windows\SYSTEM32\taskeng.exe
C:\Windows\system32\sdclt.exe
C:\Windows\explorer.exe
C:\PROGRA~1\INCRED~1\bin\ImApp.exe
C:\Program Files\Internet Explorer\IEUser.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLLoginProxy.exe
C:\Windows\system32\Macromed\Flash\FlashUtil9c.exe
C:\Users\Lisa\Documents\Mes fichiers reçus\HiJackThis\HijackThis.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = https://www.bing.com/?FORM=TOOLBR&cc=fr&toHttps=1&redig=4527FFF1C12746FC9EDB535C75E80ECC
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = https://www.bing.com/?FORM=TOOLBR&cc=fr&toHttps=1&redig=4527FFF1C12746FC9EDB535C75E80ECC
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.google.fr/?gws_rd=ssl
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = https://www.msn.com/fr-fr/?ocid=iehp
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.msn.com/fr-fr/?ocid=iehp
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R1 - HKCU\Software\Microsoft\Internet Explorer\SearchURL,(Default) = https://www.bing.com/?FORM=TOOLBR&cc=fr&toHttps=1&redig=4527FFF1C12746FC9EDB535C75E80ECC
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
O1 - Hosts: ::1 localhost
O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0\bin\ssv.dll
O2 - BHO: Windows Live Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Windows Live Toolbar Helper - {BDBD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\Windows Live Toolbar\msntb.dll
O3 - Toolbar: Windows Live Toolbar - {BDAD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\Windows Live Toolbar\msntb.dll
O4 - HKLM\..\Run: [Windows Defender] %ProgramFiles%\Windows Defender\MSASCui.exe -hide
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre1.6.0\bin\jusched.exe"
O4 - HKLM\..\Run: [TPwrMain] %ProgramFiles%\TOSHIBA\Power Saver\TPwrMain.EXE
O4 - HKLM\..\Run: [SmoothView] %ProgramFiles%\Toshiba\SmoothView\SmoothView.exe
O4 - HKLM\..\Run: [00TCrdMain] %ProgramFiles%\TOSHIBA\FlashCards\TCrdMain.exe
O4 - HKLM\..\Run: [ATICCC] "C:\Program Files\ATI Technologies\ATI.ACE\CLIStart.exe"
O4 - HKLM\..\Run: [RtHDVCpl] RtHDVCpl.exe
O4 - HKLM\..\Run: [LtMoh] C:\Program Files\ltmoh\Ltmoh.exe
O4 - HKLM\..\Run: [SynTPEnh] C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
O4 - HKLM\..\Run: [TOSHIBA Volume Indicator] "C:\Program Files\Toshiba\Utilities\VolControl.exe"
O4 - HKLM\..\Run: [NDSTray.exe] NDSTray.exe
O4 - HKLM\..\Run: [topi] C:\Program Files\TOSHIBA\Toshiba Online Product Information\topi.exe -startup
O4 - HKLM\..\Run: [zzz_ImInstaller_IncrediMail] C:\Users\Lisa\AppData\Local\Temp\ImInstaller\IncrediMail\incredimail_install[1].exe -startup -product IncrediMail
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [LanzarL2007] "C:\Users\Lisa\AppData\Local\Temp\{13079429-C7BB-4D5B-82D9-1DFB1FD4D7A0}\{D1DA2BA7-2592-4036-9BB2-DCCABDE8DC1A}\..\..\L2007tmp\Setup.exe" /SETUP:"/l0x040c"
O4 - HKLM\..\Run: [LogitechCommunicationsManager] "C:\Program Files\Common Files\LogiShrd\LComMgr\Communications_Helper.exe"
O4 - HKLM\..\Run: [LogitechQuickCamRibbon] "C:\Program Files\Logitech\QuickCam\Quickcam.exe" /hide
O4 - HKLM\..\Run: [avgnt] "C:\Program Files\Avira\AntiVir PersonalEdition Classic\avgnt.exe" /min
O4 - HKCU\..\Run: [Sidebar] C:\Program Files\Windows Sidebar\sidebar.exe /autoRun
O4 - HKCU\..\Run: [TOSCDSPD] C:\Program Files\TOSHIBA\TOSCDSPD\TOSCDSPD.exe
O4 - HKCU\..\Run: [MsnMsgr] "C:\Program Files\MSN Messenger\MsnMsgr.Exe" /background
O4 - HKCU\..\Run: [ccleaner] "C:\Users\Public\Downloads\CCleaner\ccleaner.exe" /AUTO
O4 - HKCU\..\Run: [Felix II] C:\Program Files\ScreenMates\Felix II\Fr\Felix2.exe
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-19\..\Run: [WindowsWelcomeCenter] rundll32.exe oobefldr.dll,ShowWelcomeCenter (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'SERVICE RÉSEAU')
O4 - Global Startup: Lancement rapide d'Adobe Reader.lnk = C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe
O4 - Global Startup: Microsoft Office.lnk = C:\Program Files\Microsoft Office\Office\OSA9.EXE
O8 - Extra context menu item: &Windows Live Search - res://C:\Program Files\Windows Live Toolbar\msntb.dll/search.htm
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0\bin\ssv.dll
O9 - Extra button: eBay - {C08CAF1D-C0A3-40D5-9970-06D067EAC017} - http://www.webtip.ch/cgi-bin/toshiba/tracker_url.pl?FR (file missing)
O10 - Unknown file in Winsock LSP: c:\windows\system32\wpclsp.dll
O10 - Unknown file in Winsock LSP: c:\windows\system32\wpclsp.dll
O10 - Unknown file in Winsock LSP: c:\windows\system32\wpclsp.dll
O10 - Unknown file in Winsock LSP: c:\windows\system32\wpclsp.dll
O10 - Unknown file in Winsock LSP: c:\windows\system32\wpclsp.dll
O10 - Unknown file in Winsock LSP: c:\windows\system32\wpclsp.dll
O10 - Unknown file in Winsock LSP: c:\windows\system32\wpclsp.dll
O10 - Unknown file in Winsock LSP: c:\windows\system32\wpclsp.dll
O10 - Unknown file in Winsock LSP: c:\windows\system32\wpclsp.dll
O16 - DPF: {04CB5B64-5915-4629-B869-8945CEBADD21} (Module de délivrance de certificat MINEFI) - https://static.impots.gouv.fr/abos/static/securite/certdgi1.cab
O16 - DPF: {4F1E5B1A-2A80-42CA-8532-2D05CB959537} (MSN Photo Upload Tool) - http://gfx1.mail.live.com/mail/w1/resources/VistaMSNPUpldfr-fr.cab
O16 - DPF: {7FC1B346-83E6-4774-8D20-1A6B09B0E737} (Windows Live Photo Upload Control) - http://cid-571070718028b7e2.spaces.live.com/PhotoUpload/VistaMsnPUpldfr-fr.cab
O16 - DPF: {8436FE12-31DB-48BF-83BF-FE682F9160B4} (NanoInstaller Class) - https://www.pandasecurity.com/en/homeusers/online-antivirus/?ref=activescan
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab
O23 - Service: Agere Modem Call Progress Audio (AgereModemAudio) - Agere Systems - C:\Windows\system32\agrsmsvc.exe
O23 - Service: AntiVir PersonalEdition Classic Scheduler (AntiVirScheduler) - Avira GmbH - C:\Program Files\Avira\AntiVir PersonalEdition Classic\sched.exe
O23 - Service: AntiVir PersonalEdition Classic Guard (AntiVirService) - Avira GmbH - C:\Program Files\Avira\AntiVir PersonalEdition Classic\avguard.exe
O23 - Service: Ati External Event Utility - ATI Technologies Inc. - C:\Windows\system32\Ati2evxx.exe
O23 - Service: ConfigFree Service (CFSvcs) - TOSHIBA CORPORATION - C:\Program Files\TOSHIBA\ConfigFree\CFSvcs.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\1150\Intel 32\IDriverT.exe
O23 - Service: LVCOMSer - Logitech Inc. - C:\Program Files\Common Files\LogiShrd\LVCOMSER\LVComSer.exe
O23 - Service: Process Monitor (LVPrcSrv) - Logitech Inc. - C:\Program Files\Common Files\LogiShrd\LVMVFM\LVPrcSrv.exe
O23 - Service: LVSrvLauncher - Logitech Inc. - C:\Program Files\Common Files\LogiShrd\SrvLnch\SrvLnch.exe
O23 - Service: TOSHIBA Optical Disc Drive Service (TODDSrv) - TOSHIBA Corporation - C:\Windows\system32\TODDSrv.exe
O23 - Service: TOSHIBA Power Saver (TosCoSrv) - TOSHIBA Corporation - C:\Program Files\TOSHIBA\Power Saver\TosCoSrv.exe
O23 - Service: Ulead Burning Helper (UleadBurningHelper) - Ulead Systems, Inc. - C:\Program Files\Common Files\Ulead Systems\DVD\ULCDRSvr.exe
0
Réponse 60 / 65
Regis59 Messages postés 21143 Date d'inscription mardi 27 juin 2006 Statut Contributeur sécurité Dernière intervention 22 juin 2016 1 321
25 sept. 2007 à 19:17
Coucou

Avec le nettoyeur de registre, est ce que tu peux lancer une recherche dans le registre avec norton et symantec?

A+
0

Discussions similaires

j'ai perdu mon mot de passe sous vista
gregos -
Samy -

9 réponses
télécharger windows 7 gratuit pr remplacer windows vista edition
danv -
Marc -

5 réponses
Google chrome sous vista
mariepel -
brucine -

14 réponses
avant xp et maintenant vista
claudio -
gouby -

2 réponses
Attention a vista print
fashionhair -
andy -

32 réponses