Aller au contenu

Léon des Landes

Membres
  • Compteur de contenus

    34
  • Inscription

  • Dernière visite

Tout ce qui a été posté par Léon des Landes

  1. Bonsoir je vous transmets différents scans suite à une histoire de fou : Lors d'un scan antivirus de McAfee en tâche programmé celui-ci me trouve une infection du nom de : « prcviewer »qu'il ne peut supprimer. Ce faisant je réalise un scan en ligne avec Kaspersky qui ne trouve rien; je refais la même opération avec F-Sécure qui lui aussi ne trouve rien pas plus que Blacklight. Par contre Bitdéfender me trouve bien« prcviewer »et le supprime mais me trouve aussi ''trojan.mailskinner.g'' qu'il ne peut éradiquer. En faisant quelques recherches concernant « trojan-mailskinner.g » il était indiqué de faire un scan avec Ashampoo qui lui pour ne pas être en reste me trouve un trojan « trojan.win32.patched.q ». Ci joint différents scans : scan bitdefender: BitDefender Online Scanner Scan report generated at: Mon, Dec 17, 2007 - 00:53:46 Scan path: C:\;D:\;E:\; Statistics Time 01:15:33 Files 287227 Folders 6738 Boot Sectors 3 Archives 5719 Packed Files 10342 Results Identified Viruses 1 Infected Files 1 Suspect Files 0 Warnings 0 Disinfected 0 Deleted Files 1 Engines Info Virus Definitions 882511 Engine build AVCORE v1.0 (build 2422) (i386) (Sep 25 2007 08:26:36) Scan plugins 14 Archive plugins 38 Unpack plugins 7 E-mail plugins 6 System plugins 1 Scan Settings First Action Disinfect Second Action Delete Heuristics Yes Enable Warnings Yes Scanned Extensions *; Exclude Extensions Scan Emails Yes Scan Archives Yes Scan Packed Yes Scan Files Yes Scan Boot Yes Scanned File Status C:\WINDOWS\pack.epk=>(NSIS 2g)=>lzma_solid_nsis0008 Infected with: Trojan.Mailskinner.G C:\WINDOWS\pack.epk=>(NSIS 2g)=>lzma_solid_nsis0008 Disinfection failed C:\WINDOWS\pack.epk=>(NSIS 2g)=>lzma_solid_nsis0008 Deleted C:\WINDOWS\pack.epk=>(NSIS 2g) Update failed Scan NAVILOG Search Navipromo version 3.3.8 commencé le 17/12/2007 à 21:04:25,98 !!! Attention,ce rapport peut indiquer des fichiers/programmes légitimes!!! !!! Postez ce rapport sur le forum pour le faire analyser !!! !!! Ne lancez pas la partie désinfection sans l'avis d'un spécialiste !!! Outil exécuté depuis C:\Program Files\navilog1 Mise à jour le 11.12.2007 à 18h00 par IL-MAFIOSO Microsoft Windows XP [version 5.1.2600] Internet Explorer : 7.0.5730.11 Système de fichiers : NTFS Executé en mode normal *** Recherche Programmes installés *** *** Recherche dossiers dans C:\WINDOWS *** *** Recherche dossiers dans C:\Program Files *** C:\Program Files\WebMediaPlayer trouvé ! *** Recherche dossiers dans C:\DOCUME~1\ALLUSE~1\APPLIC~1 *** *** Recherche dossiers dans "C:\Documents and Settings\LF\application data" *** *** Recherche dossiers dans C:\DOCUME~1\ALLUSE~1\MENUD?~1\PROGRA~1 *** *** Recherche avec Catchme-rootkit/stealth malware detector par gmer *** pour + d'infos : http://www.gmer.net Aucun Fichier trouvé *** Recherche avec GenericNaviSearch *** !!! Tous ces résultats peuvent révéler des fichiers légitimes !!! !!! A vérifier impérativement avant toute suppression manuelle !!! * Recherche dans C:\WINDOWS\system32 * * Recherche dans "C:\Documents and Settings\LF\local settings\application data" * *** Recherche fichiers *** C:\WINDOWS\pack.epk trouvé ! *** Recherche clés spécifiques dans le Registre *** *** Module de Recherche complémentaire *** (Recherche fichiers spécifiques) 1)Recherche nouveaux fichiers Instant Access : 2)Recherche Heuristique : * Dans C:\WINDOWS\system32 : * Dans "C:\Documents and Settings\LF\local settings\application data" : 3)Recherche Certificats : Certificat Egroup absent ! 4)Recherche fichiers connus : *** Analyse terminée le 17/12/2007 à 21:09:40,85 *** Scan Hijackthis Logfile of Trend Micro HijackThis v2.0.2 Scan saved at 21:15:52, on 17/12/2007 Platform: Windows XP SP2 (WinNT 5.01.2600) MSIE: Internet Explorer v7.00 (7.00.6000.16574) Boot mode: Normal Running processes: C:\WINDOWS\System32\smss.exe C:\WINDOWS\system32\csrss.exe C:\WINDOWS\system32\winlogon.exe C:\WINDOWS\system32\services.exe C:\WINDOWS\system32\lsass.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\System32\svchost.exe C:\WINDOWS\System32\svchost.exe C:\WINDOWS\system32\spoolsv.exe C:\WINDOWS\Explorer.EXE c:\program files\a-squared free\a2service.exe C:\WINDOWS\System32\dllhost.exe C:\PROGRA~1\McAfee\MSC\mcmscsvc.exe c:\PROGRA~1\FICHIE~1\mcafee\mna\mcnasvc.exe c:\PROGRA~1\FICHIE~1\mcafee\mcproxy\mcproxy.exe C:\PROGRA~1\McAfee\VIRUSS~1\mcshield.exe C:\Program Files\McAfee\MPF\MPFSrv.exe C:\Program Files\CDBurnerXP\NMSAccessU.exe C:\WINDOWS\System32\nvsvc32.exe C:\WINDOWS\System32\svchost.exe C:\WINDOWS\system32\svchost.exe C:\PROGRA~1\McAfee.com\Agent\mcagent.exe C:\WINDOWS\system32\dlbtcoms.exe C:\WINDOWS\System32\alg.exe C:\PROGRA~1\McAfee\VIRUSS~1\mcsysmon.exe C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe C:\Program Files\Java\jre1.6.0_03\bin\jusched.exe C:\Program Files\Dell Photo AIO Printer 922\dlbtbmgr.exe C:\Program Files\Ashampoo\Ashampoo AntiSpyWare\AntiSpyWareGuard.exe C:\WINDOWS\system32\ctfmon.exe C:\Program Files\Logitech\SetPoint\SetPoint.exe C:\Program Files\Mozilla Firefox\firefox.exe C:\Program Files\Dell Photo AIO Printer 922\dlbtbmon.exe C:\Program Files\PopTray\PopTray.exe C:\Program Files\OpenOffice.org 2.3\program\soffice.exe C:\Program Files\OpenOffice.org 2.3\program\soffice.BIN C:\Program Files\Ashampoo\Ashampoo AntiSpyWare\AntiSpyWareControl.exe C:\Program Files\Fichiers communs\Logitech\KHAL\KHALMNPR.EXE C:\WINDOWS\system32\notepad.exe C:\Program Files\Trend Micro\HijackThis\HijackThis.exe C:\WINDOWS\System32\wbem\wmiprvse.exe R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = http://www.crawler.com/search/dispatcher.a...&tbid=60327 R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.lemonde.fr R1 - HKLM\Software\Microsoft\Internet Explorer\Main,SearchAssistant = http://www.crawler.com/search/ie.aspx?tb_id=60327 R1 - HKLM\Software\Microsoft\Internet Explorer\Main,CustomizeSearch = http://dnl.crawler.com/support/sa_customize.aspx?TbId=60327 O2 - BHO: IE7Pro - {00011268-E188-40DF-A514-835FCD78B1BF} - C:\Program Files\IE7Pro\IE7Pro.dll O2 - BHO: Aide pour le lien d'Adobe PDF Reader - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Fichiers communs\Adobe\Acrobat\ActiveX\AcroIEHelper.dll O2 - BHO: QFX Software KeyScrambler - {2B9F5787-88A5-4945-90E7-C4B18563BC5E} - C:\Program Files\KeyScrambler\KeyScramblerIE.dll O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_03\bin\ssv.dll O2 - BHO: scriptproxy - {7DB2D5A0-7241-4E79-B68D-6309F01C5231} - C:\Program Files\McAfee\VirusScan\scriptsn.dll O4 - HKLM\..\Run: [Logitech Hardware Abstraction Layer] KHALMNPR.EXE O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe" -osboot O4 - HKLM\..\Run: [sunJavaUpdateSched] "C:\Program Files\Java\jre1.6.0_03\bin\jusched.exe" O4 - HKLM\..\Run: [mcagent_exe] "C:\Program Files\McAfee.com\Agent\mcagent.exe" /runkey O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe" O4 - HKLM\..\Run: [Dell Photo AIO Printer 922] "C:\Program Files\Dell Photo AIO Printer 922\dlbtbmgr.exe" O4 - HKLM\..\Run: [DLBTCATS] rundll32 C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\DLBTtime.dll,_RunDLLEntry@16 O4 - HKLM\..\Run: [Ashampoo AntiSpyWare Guard] C:\Program Files\Ashampoo\Ashampoo AntiSpyWare\AntiSpyWareGuard.exe O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'SERVICE LOCAL') O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'SERVICE RÉSEAU') O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'SYSTEM') O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'Default user') O4 - Startup: Firefox.lnk = C:\Program Files\Mozilla Firefox\firefox.exe O4 - Startup: OpenOffice.org 2.3.lnk = C:\Program Files\OpenOffice.org 2.3\program\quickstart.exe O4 - Startup: PopTray.lnk = C:\Program Files\PopTray\PopTray.exe O4 - Global Startup: Logitech SetPoint.lnk = C:\Program Files\Logitech\SetPoint\SetPoint.exe O8 - Extra context menu item: Analyser avec LeechGet - file://C:\Program Files\LeechGet 2006\\Parser.html O8 - Extra context menu item: Tout télécharger avec Free Download Manager - file://C:\Program Files\Free Download Manager\dlall.htm O8 - Extra context menu item: Télécharger avec Free Download Manager - file://C:\Program Files\Free Download Manager\dllink.htm O8 - Extra context menu item: Télécharger en utilisant l'assistant LeechGet - file://C:\Program Files\LeechGet 2006\\Wizard.html O8 - Extra context menu item: Télécharger en utilisant LeechGet - file://C:\Program Files\LeechGet 2006\\AddUrl.html O8 - Extra context menu item: Télécharger la sélection avec Free Download Manager - file://C:\Program Files\Free Download Manager\dlselected.htm O8 - Extra context menu item: Télécharger la vidéo avec Free Download Manager - file://C:\Program Files\Free Download Manager\dlfvideo.htm O9 - Extra button: IE7Pro Preferences - {0026439F-A980-4f18-8C95-4F1CBBF9C1D8} - C:\Program Files\IE7Pro\IE7Pro.dll O9 - Extra 'Tools' menuitem: IE7Pro Preferences - {0026439F-A980-4f18-8C95-4F1CBBF9C1D8} - C:\Program Files\IE7Pro\IE7Pro.dll O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_03\bin\ssv.dll O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_03\bin\ssv.dll O9 - Extra button: (no name) - {5C106A59-CC3C-4caa-81A4-6D909B5ACE23} - C:\Program Files\KeyScrambler\KeyScramblerIE.dll O9 - Extra 'Tools' menuitem: &KeyScrambler... - {5C106A59-CC3C-4caa-81A4-6D909B5ACE23} - C:\Program Files\KeyScrambler\KeyScramblerIE.dll O9 - Extra button: (no name) - {85d1f590-48f4-11d9-9669-0800200c9a66} - C:\WINDOWS\bdoscandel.exe O9 - Extra 'Tools' menuitem: Uninstall BitDefender Online Scanner v8 - {85d1f590-48f4-11d9-9669-0800200c9a66} - C:\WINDOWS\bdoscandel.exe O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe O16 - DPF: {0B79F48A-E8D6-11DB-9283-E25056D89593} (F-Secure Online Scanner 3.1) - http://support.f-secure.com/ols/fscax.cab O16 - DPF: {17492023-C23A-453E-A040-C7C580BBF700} (Windows Genuine Advantage Validation Tool) - http://go.microsoft.com/fwlink/?linkid=39204 O16 - DPF: {30528230-99f7-4bb4-88d8-fa1d4f56a2ab} (YInstStarter Class) - C:\Program Files\Yahoo!\Common\yinsthelper.dll O16 - DPF: {5D86DDB5-BDF9-441B-9E9E-D4730F4EE499} (BDSCANONLINE Control) - http://download.bitdefender.com/resources/scan8/oscan8.cab O16 - DPF: {A4069847-C342-48E2-9257-01A24E5C78EA} (F-Secure Online Scanner 3.2) - http://support.f-secure.com/ols3beta/fscax.cab O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\FICHIE~1\Skype\SKYPE4~1.DLL O23 - Service: a-squared Free Service (a2free) - Emsi Software GmbH - c:\program files\a-squared free\a2service.exe O23 - Service: dlbt_device - Dell - C:\WINDOWS\system32\dlbtcoms.exe O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Fichiers communs\InstallShield\Driver\1050\Intel 32\IDriverT.exe O23 - Service: McAfee Services (mcmscsvc) - McAfee, Inc. - C:\PROGRA~1\McAfee\MSC\mcmscsvc.exe O23 - Service: McAfee Network Agent (McNASvc) - McAfee, Inc. - c:\PROGRA~1\FICHIE~1\mcafee\mna\mcnasvc.exe O23 - Service: McAfee Scanner (McODS) - McAfee, Inc. - C:\PROGRA~1\McAfee\VIRUSS~1\mcods.exe O23 - Service: McAfee Proxy Service (McProxy) - McAfee, Inc. - c:\PROGRA~1\FICHIE~1\mcafee\mcproxy\mcproxy.exe O23 - Service: McAfee Real-time Scanner (McShield) - McAfee, Inc. - C:\PROGRA~1\McAfee\VIRUSS~1\mcshield.exe O23 - Service: McAfee SystemGuards (McSysmon) - McAfee, Inc. - C:\PROGRA~1\McAfee\VIRUSS~1\mcsysmon.exe O23 - Service: McAfee Personal Firewall Service (MpfService) - McAfee, Inc. - C:\Program Files\McAfee\MPF\MPFSrv.exe O23 - Service: Intel NCS NetService (NetSvc) - Intel® Corporation - C:\Program Files\Intel\NCS\Sync\NetSvc.exe O23 - Service: NMSAccessU - Unknown owner - C:\Program Files\CDBurnerXP\NMSAccessU.exe O23 - Service: NVIDIA Driver Helper Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\System32\nvsvc32.exe -- End of file - 9007 bytes Résultat du scan Ashampoo que j'ai égaré Trojan.Win32.Patched.q c:\i386\winlogon.exe Meci à vous tous
  2. Bonjour et hyper merci à toi Gof et à tous tes collègues pour ton efficacité et ta disponibilité. Contrairement à certains forums on voit qu'il y a de la compétence et de l'écoute. Les réponses sont claires (j'ai apprécié les renvois vers les tutoriels) et s'adressent bien à des personnes qui ne sont pas des informaticiens nés. Les "t'as qu'à faire......." ne sont pas de mise sur votre forum. Je vous trouve bien indulgents vis à vis de grossiers personnages qui ne méritent pas que l'on s'intéresse à leur sort. Encore merci.
  3. Bonjour Gof J'ai réalisé l'opération toolsCleaner et voici le log : ********ToolsCleaner2 (A.Rothstein)******** Debut le 30/08/2007 a 11:05:30,64 *************************************** -Hijackthis = Trouve! -Hijackthis = Suppression effectuee! -FixWareout.exe = Trouve! - (B) Fixwareout = Suppression effectuee! -Diaghelp = Trouve! - (B) DiagHelp = Suppression effectuee! Programme(s) supprime(s) avec succes! *************************************** Fin le 30/08/2007 a 11:07:35,10 Merci d'avoir utilise ToolsCleaner2 Ps : j'ai pas encore trouvé l'astuce pour marqué le dossier : résolu
  4. Bonjour , bonjour Gof Ci joint le dernier Hijackthis. Rien de particulier à signaler. Tout fonctionne correctement. Logfile of Trend Micro HijackThis v2.0.2 Scan saved at 10:54:35, on 29/08/2007 Platform: Windows XP SP2 (WinNT 5.01.2600) MSIE: Internet Explorer v7.00 (7.00.6000.16512) Boot mode: Normal Running processes: C:\WINDOWS\System32\smss.exe C:\WINDOWS\system32\winlogon.exe C:\WINDOWS\system32\services.exe C:\WINDOWS\system32\lsass.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\System32\svchost.exe C:\WINDOWS\system32\spoolsv.exe C:\WINDOWS\Explorer.EXE C:\Program Files\Dell Photo AIO Printer 922\dlbtbmgr.exe C:\Program Files\McAfee\MBK\McAfeeDataBackup.exe C:\Program Files\Java\jre1.6.0_02\bin\jusched.exe C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\avgas.exe C:\Program Files\Dell Photo AIO Printer 922\dlbtbmon.exe C:\WINDOWS\system32\ctfmon.exe C:\Program Files\Free Download Manager\FUM\fumoei.exe C:\Program Files\Logitech\SetPoint\SetPoint.exe C:\Program Files\OpenOffice.org 2.2\program\soffice.exe C:\Program Files\OpenOffice.org 2.2\program\soffice.BIN C:\Program Files\Fichiers communs\Logitech\KHAL\KHALMNPR.EXE c:\program files\a-squared free\a2service.exe C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe C:\Program Files\McAfee\MBK\MBackMonitor.exe C:\Program Files\Fichiers communs\McAfee\HackerWatch\HWAPI.exe C:\PROGRA~1\McAfee\MSC\mcmscsvc.exe c:\program files\fichiers communs\mcafee\mna\mcnasvc.exe C:\PROGRA~1\McAfee\VIRUSS~1\mcods.exe C:\PROGRA~1\McAfee\MSC\mcpromgr.exe c:\PROGRA~1\FICHIE~1\mcafee\redirsvc\redirsvc.exe C:\PROGRA~1\McAfee\VIRUSS~1\mcshield.exe C:\PROGRA~1\McAfee\VIRUSS~1\mcsysmon.exe C:\Program Files\McAfee\MPF\MPFSrv.exe C:\WINDOWS\System32\nvsvc32.exe C:\WINDOWS\system32\svchost.exe c:\PROGRA~1\mcafee.com\agent\mcagent.exe C:\PROGRA~1\FREEDO~1\fdm.exe C:\WINDOWS\System32\svchost.exe C:\WINDOWS\system32\dlbtcoms.exe c:\PROGRA~1\mcafee\VIRUSS~1\mcvsshld.exe C:\Program Files\Trend Micro\HijackThis\HijackThis.exe R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.lemonde.fr/ O2 - BHO: Aide pour le lien d'Adobe PDF Reader - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Fichiers communs\Adobe\Acrobat\ActiveX\AcroIEHelper.dll O2 - BHO: QFX Software KeyScrambler - {2B9F5787-88A5-4945-90E7-C4B18563BC5E} - C:\Program Files\KeyScrambler\KeyScramblerIE.dll O2 - BHO: (no name) - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_02\bin\ssv.dll (file missing) O2 - BHO: scriptproxy - {7DB2D5A0-7241-4E79-B68D-6309F01C5231} - c:\program files\mcafee\virusscan\scriptcl.dll O2 - BHO: FDMIECookiesBHO Class - {CC59E0F9-7E43-44FA-9FAA-8377850BF205} - C:\Program Files\Free Download Manager\iefdm2.dll O4 - HKLM\..\Run: [Dell Photo AIO Printer 922] "C:\Program Files\Dell Photo AIO Printer 922\dlbtbmgr.exe" O4 - HKLM\..\Run: [DLBTCATS] rundll32 C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\DLBTtime.dll,_RunDLLEntry@16 O4 - HKLM\..\Run: [Logitech Hardware Abstraction Layer] KHALMNPR.EXE O4 - HKLM\..\Run: [McAfee Backup] C:\Program Files\McAfee\MBK\McAfeeDataBackup.exe O4 - HKLM\..\Run: [MBkLogOnHook] C:\Program Files\McAfee\MBK\LogOnHook.exe O4 - HKLM\..\Run: [sunJavaUpdateSched] "C:\Program Files\Java\jre1.6.0_02\bin\jusched.exe" O4 - HKLM\..\Run: [!AVG Anti-Spyware] "C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\avgas.exe" /minimized O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe O4 - HKCU\..\Run: [Free Uploader Oe Integration] C:\Program Files\Free Download Manager\FUM\fumoei.exe O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'SERVICE LOCAL') O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'SERVICE RÉSEAU') O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'SYSTEM') O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'Default user') O4 - Startup: ERUNT AutoBackup.lnk = C:\Program Files\ERUNT\AUTOBACK.EXE O4 - Startup: OpenOffice.org 2.2.lnk = C:\Program Files\OpenOffice.org 2.2\program\quickstart.exe O4 - Global Startup: Logitech SetPoint.lnk = C:\Program Files\Logitech\SetPoint\SetPoint.exe O8 - Extra context menu item: Analyser avec LeechGet - file://C:\Program Files\LeechGet 2006\\Parser.html O8 - Extra context menu item: Download all with Free Download Manager - file://C:\Program Files\Free Download Manager\dlall.htm O8 - Extra context menu item: Download selected with Free Download Manager - file://C:\Program Files\Free Download Manager\dlselected.htm O8 - Extra context menu item: Download video with Free Download Manager - file://C:\Program Files\Free Download Manager\dlfvideo.htm O8 - Extra context menu item: Download with Free Download Manager - file://C:\Program Files\Free Download Manager\dllink.htm O8 - Extra context menu item: Télécharger en utilisant l'assistant LeechGet - file://C:\Program Files\LeechGet 2006\\Wizard.html O8 - Extra context menu item: Télécharger en utilisant LeechGet - file://C:\Program Files\LeechGet 2006\\AddUrl.html O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_02\bin\ssv.dll (file missing) O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_02\bin\ssv.dll (file missing) O9 - Extra button: (no name) - {5C106A59-CC3C-4caa-81A4-6D909B5ACE23} - C:\Program Files\KeyScrambler\KeyScramblerIE.dll O9 - Extra 'Tools' menuitem: &KeyScrambler... - {5C106A59-CC3C-4caa-81A4-6D909B5ACE23} - C:\Program Files\KeyScrambler\KeyScramblerIE.dll O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe O9 - Extra button: Upload - {FD4E2FF8-973C-4A19-89BD-8E86B3CFCFE1} - C:\Program Files\Free Download Manager\FUM\fumiebtn.dll O16 - DPF: {0EB0E74A-2A76-4AB3-A7FB-9BD8C29F7F75} (CKAVWebScan Object) - http://webscanner.kaspersky.fr/kavwebscan_unicode.cab O16 - DPF: {17492023-C23A-453E-A040-C7C580BBF700} (Windows Genuine Advantage Validation Tool) - http://go.microsoft.com/fwlink/?linkid=39204 O16 - DPF: {30528230-99f7-4bb4-88d8-fa1d4f56a2ab} (YInstStarter Class) - C:\Program Files\Yahoo!\Common\yinsthelper.dll O17 - HKLM\System\CCS\Services\Tcpip\..\{5CD2D80C-813E-4E02-A4C7-9B3BADBC17CB}: NameServer = 80.10.246.1 80.10.246.132 O23 - Service: a-squared Free Service (a2free) - Emsi Software GmbH - c:\program files\a-squared free\a2service.exe O23 - Service: AVG Anti-Spyware Guard - GRISOFT s.r.o. - C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe O23 - Service: dlbt_device - Dell - C:\WINDOWS\system32\dlbtcoms.exe O23 - Service: McAfee E-mail Proxy (Emproxy) - McAfee, Inc. - C:\PROGRA~1\FICHIE~1\McAfee\EmProxy\emproxy.exe O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Fichiers communs\InstallShield\Driver\1050\Intel 32\IDriverT.exe O23 - Service: MBackMonitor - McAfee - C:\Program Files\McAfee\MBK\MBackMonitor.exe O23 - Service: McAfee HackerWatch Service - McAfee, Inc. - C:\Program Files\Fichiers communs\McAfee\HackerWatch\HWAPI.exe O23 - Service: McAfee Update Manager (mcmispupdmgr) - McAfee, Inc. - C:\PROGRA~1\McAfee\MSC\mcupdmgr.exe O23 - Service: McAfee Services (mcmscsvc) - McAfee, Inc. - C:\PROGRA~1\McAfee\MSC\mcmscsvc.exe O23 - Service: McAfee Network Agent (McNASvc) - McAfee, Inc. - c:\program files\fichiers communs\mcafee\mna\mcnasvc.exe O23 - Service: McAfee Scanner (McODS) - McAfee, Inc. - C:\PROGRA~1\McAfee\VIRUSS~1\mcods.exe O23 - Service: McAfee Protection Manager (mcpromgr) - McAfee, Inc. - C:\PROGRA~1\McAfee\MSC\mcpromgr.exe O23 - Service: McAfee Redirector Service (McRedirector) - McAfee, Inc. - c:\PROGRA~1\FICHIE~1\mcafee\redirsvc\redirsvc.exe O23 - Service: McAfee Real-time Scanner (McShield) - McAfee, Inc. - C:\PROGRA~1\McAfee\VIRUSS~1\mcshield.exe O23 - Service: McAfee SystemGuards (McSysmon) - McAfee, Inc. - C:\PROGRA~1\McAfee\VIRUSS~1\mcsysmon.exe O23 - Service: McAfee Personal Firewall Service (MpfService) - McAfee, Inc. - C:\Program Files\McAfee\MPF\MPFSrv.exe O23 - Service: Intel NCS NetService (NetSvc) - Intel® Corporation - C:\Program Files\Intel\NCS\Sync\NetSvc.exe O23 - Service: NVIDIA Driver Helper Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\System32\nvsvc32.exe -- End of file - 8565 bytes
  5. Bonjour j'ai bien supprimé 13E.tmp et bdod.bin d'autre part pour wininit je n'ai trouvé que le fichier texte wininit copié ci-dessous mais rien concernant wininit.ini ou wininit.exe. La même chose ? wininit [Rename] NUL= NUL= NUL= NUL= NUL= NUL= NUL= NUL= NUL= NUL= NUL= NUL= NUL= NUL= NUL= NUL= NUL= NUL= NUL= NUL= NUL= NUL=C:\DOCUME~1\LF\LOCALS~1\Temp\nstmp\uninstall.exe NUL=C:\DOCUME~1\LF\LOCALS~1\Temp\nstmp\uninstall.ini NUL=C:\DOCUME~1\LF\LOCALS~1\Temp\nstmp NUL=C:\DOCUME~1\LF\LOCALS~1\Temp\nstmp\uninstall.exe NUL=C:\DOCUME~1\LF\LOCALS~1\Temp\nstmp\uninstall.ini NUL=C:\DOCUME~1\LF\LOCALS~1\Temp\nstmp NUL=C:\DOCUME~1\LF\LOCALS~1\Temp\nstmp\uninstall.exe NUL=C:\DOCUME~1\LF\LOCALS~1\Temp\nstmp\uninstall.ini NUL=C:\DOCUME~1\LF\LOCALS~1\Temp\nstmp NUL=C:\DOCUME~1\LF\LOCALS~1\Temp\nstmp\uninstall.exe NUL=C:\DOCUME~1\LF\LOCALS~1\Temp\nstmp\uninstall.ini NUL=C:\DOCUME~1\LF\LOCALS~1\Temp\nstmp NUL=C:\DOCUME~1\LF\LOCALS~1\Temp\nstmp1\uninstall.exe NUL=C:\DOCUME~1\LF\LOCALS~1\Temp\nstmp1\uninstall.ini NUL=C:\DOCUME~1\LF\LOCALS~1\Temp\nstmp1 NUL=C:\DOCUME~1\LF\LOCALS~1\Temp\nstmp2\uninstall.exe NUL=C:\DOCUME~1\LF\LOCALS~1\Temp\nstmp2\uninstall.ini NUL=C:\DOCUME~1\LF\LOCALS~1\Temp\nstmp2 NUL=C:\DOCUME~1\LF\LO2CA6~1\Temp\nstmp\uninstall.exe NUL=C:\DOCUME~1\LF\LO2CA6~1\Temp\nstmp\uninstall.ini NUL=C:\DOCUME~1\LF\LO2CA6~1\Temp\nstmp NUL=C:\DOCUME~1\LF\LO2CA6~1\Temp\nstmp1\uninstall.exe NUL=C:\DOCUME~1\LF\LO2CA6~1\Temp\nstmp1\uninstall.ini NUL=C:\DOCUME~1\LF\LO2CA6~1\Temp\nstmp1 NUL=C:\DOCUME~1\LF\LO2CA6~1\Temp\nstmp2\uninstall.exe NUL=C:\DOCUME~1\LF\LO2CA6~1\Temp\nstmp2\uninstall.ini NUL=C:\DOCUME~1\LF\LO2CA6~1\Temp\nstmp2 NUL=C:\DOCUME~1\LF\LO2CA6~1\Temp\nstmp3\uninstall.exe NUL=C:\DOCUME~1\LF\LO2CA6~1\Temp\nstmp3\uninstall.ini NUL=C:\DOCUME~1\LF\LO2CA6~1\Temp\nstmp3 NUL=C:\DOCUME~1\LF\LO2CA6~1\Temp\nstmp4\uninstall.exe NUL=C:\DOCUME~1\LF\LO2CA6~1\Temp\nstmp4\uninstall.ini NUL=C:\DOCUME~1\LF\LO2CA6~1\Temp\nstmp4 NUL=C:\DOCUME~1\LF\LO2CA6~1\Temp\nstmp\uninstall.exe NUL=C:\DOCUME~1\LF\LO2CA6~1\Temp\nstmp\uninstall.ini NUL=C:\DOCUME~1\LF\LO2CA6~1\Temp\nstmp NUL=C:\DOCUME~1\LF\LO2CA6~1\Temp\nstmp\uninstall.exe NUL=C:\DOCUME~1\LF\LO2CA6~1\Temp\nstmp\uninstall.ini nul=c:\tempjunk821.tmp c:\tempjunk1368.tmp=C:\WINDOWS\SchedLgU.Txt_tobedeleted c:\tempjunk5999.tmp=C:\WINDOWS\SchedLgU.Txt_tobedeleted c:\tempjunk821.tmp=C:\WINDOWS\SchedLgU.Txt_tobedeleted
  6. Bonjour Gof j'ai bien désinstallé Logitech Desktop Messenger par ajout/supp mais il y a encore du monde sur le rapport hij.. ainsi que l'ombre de yahoo ainsi que celle de Néro que j'ai aussi désinstallé. ( A chaque fermeture de windowos une fenêtre me dit que ctfmond.exe ne répond pas ainsi que "archivald agent" je crois. DiagHelp version v1.1.2 - http://www.malekal.com excute le 28/08/2007 à 9:59:16,37 Liste des derniers fichies modifies/crees dans windir\system32 C:\WINDOWS\System32/drivers\fwdrv.err -->11/08/2007 00:19:30 C:\WINDOWS\System32/drivers\tmcomm.sys -->13/07/2007 00:02:22 C:\WINDOWS\System32/drivers\AvgAsCln.sys -->30/05/2007 14:10:42 C:\WINDOWS\System32/drivers\update.sys -->23/04/2007 12:32:54 C:\WINDOWS\System32/drivers\keyscrambler.sys -->13/03/2007 06:24:50 C:\WINDOWS\System32/drivers\Mpfp.sys -->02/03/2007 14:16:52 C:\WINDOWS\System32/drivers\ntfs.sys -->09/02/2007 13:10:35 C:\WINDOWS\System32\Config.MPF -->28/08/2007 09:51:24 C:\WINDOWS\System32\tmp.txt -->26/08/2007 23:51:37 C:\WINDOWS\System32\tmp.reg -->26/08/2007 23:51:37 C:\WINDOWS\System32\WPA.DBL -->25/08/2007 11:03:02 C:\WINDOWS\System32\bdod.bin -->22/08/2007 23:38:27 C:\WINDOWS\System32\PerfStringBackup.INI -->16/08/2007 20:52:59 C:\WINDOWS\System32\perfh00C.dat -->16/08/2007 20:52:59 C:\WINDOWS\System32\PERFH009.DAT -->16/08/2007 20:52:59 C:\WINDOWS\System32\perfc00C.dat -->16/08/2007 20:52:59 C:\WINDOWS\System32\PERFC009.DAT -->16/08/2007 20:52:59 C:\WINDOWS\System32\iklog.log -->04/08/2007 00:35:34 C:\WINDOWS\System32\MRT.exe -->03/08/2007 06:34:10 C:\WINDOWS\System32\wuaucpl.cpl.mui -->30/07/2007 19:20:06 C:\WINDOWS\System32\wuapi.dll.mui -->30/07/2007 19:19:52 C:\WINDOWS\System32\wuaueng.dll -->30/07/2007 19:19:42 C:\WINDOWS\System32\wuapi.dll -->30/07/2007 19:19:36 C:\WINDOWS\System32\wucltui.dll -->30/07/2007 19:19:32 C:\WINDOWS\System32\wuweb.dll -->30/07/2007 19:19:28 C:\WINDOWS\System32\wuaucpl.cpl -->30/07/2007 19:19:28 C:\WINDOWS\System32\cdm.dll -->30/07/2007 19:19:20 C:\WINDOWS\System32\wuauclt.exe -->30/07/2007 19:19:16 C:\WINDOWS\System32\wups2.dll -->30/07/2007 19:19:12 C:\WINDOWS\System32\wucltui.dll.mui -->30/07/2007 19:19:04 C:\WINDOWS\System32\wuaueng.dll.mui -->30/07/2007 19:18:48 C:\WINDOWS\System32\wups.dll -->30/07/2007 19:18:40 C:\WINDOWS\dellstat.ini -->28/08/2007 09:57:24 C:\WINDOWS\WindowsUpdate.log -->27/08/2007 23:46:54 C:\WINDOWS\wiaservc.log -->27/08/2007 23:45:34 C:\WINDOWS\wiadebug.log -->27/08/2007 23:45:34 C:\WINDOWS\BOOTSTAT.DAT -->27/08/2007 19:15:52 C:\WINDOWS\SchedLgU.Txt -->27/08/2007 15:27:16 C:\WINDOWS\setupapi.log -->27/08/2007 15:06:10 C:\WINDOWS\WORDPAD.INI -->25/08/2007 16:05:17 C:\WINDOWS\wininit.ini -->25/08/2007 14:09:37 C:\WINDOWS\Sti_Trace.log -->23/08/2007 11:05:45 C:\WINDOWS\WIN.INI -->31/07/2007 00:55:35 C:\WINDOWS\DESKTOP.INI -->27/07/2007 23:45:03 C:\WINDOWS\mozver.dat -->21/07/2007 22:46:05 C:\WINDOWS\catchme.exe -->20/07/2007 00:47:22 C:\WINDOWS\NeroDigital.ini -->19/07/2007 18:27:52 Le volume dans le lecteur C n'a pas de nom. Le numéro de série du volume est EC6C-4B2E Répertoire de C:\WINDOWS\system 10/09/1999 13:06 4 672 wowpost.exe 1 fichier(s) 4 672 octets 0 Rép(s) 59 277 942 784 octets libres Le volume dans le lecteur C n'a pas de nom. Le numéro de série du volume est EC6C-4B2E Répertoire de C:\WINDOWS\system32 20/08/2004 01:09 6 144 csrss.exe 1 fichier(s) 6 144 octets 0 Rép(s) 59 277 942 784 octets libres Contenu de Downloaded Program Files Le volume dans le lecteur C n'a pas de nom. Le numéro de série du volume est EC6C-4B2E Répertoire de C:\WINDOWS\Downloaded Program Files 24/08/2007 23:48 <REP> . 24/08/2007 23:48 <REP> .. 18/09/2002 12:33 65 DESKTOP.INI 03/08/2004 16:45 1 271 erma.inf 08/08/2006 11:45 576 kavwebscan.inf 15/05/2006 18:48 367 LegitCheckControl.inf 24/05/2005 17:47 691 McGDMgr.inf 13/04/2005 13:46 678 mcinsctl.inf 20/01/2000 16:25 1 162 Microsoft XML Parser for Java.osd 09/11/2006 15:36 5 019 swflash.inf 8 fichier(s) 9 829 octets Total des fichiers listés : 8 fichier(s) 9 829 octets 2 Rép(s) 59 277 938 688 octets libres Recherche de rootkit! (Merci S!Ri) Recherche d'infections connues Export des clefs sensibles.. Liste des fichiers en exception sur le pare-feu XP SP2 Export de la clef SharedTaskScheduler [sharedTaskScheduler] "{438755C2-A8BA-11D1-B96B-00A0C90312E1}"="Pré-chargeur Browseui" "{8C7461EF-2B13-11d2-BE35-3078302C2030}"="Démon de cache des catégories de composant" Rechercher adresses sensibles dans le fichier HOSTS... catchme 0.3.1066 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net Rootkit scan 2007-08-28 09:59:33 Windows 5.1.2600 Service Pack 2 NTFS scanning hidden services & system hive ... scanning hidden registry entries ... [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\System] "OODEFRAG08.00.00.01WORKSTATION"="054518811D8F3FC6A930F70611E5F50787B875E2339C9CD01B3D726D1B252B54703D0A1D0CC9218C486F351CB3D3079781754071CDC6D4A4DF9C0EAA031F96EA1B23AEA4A5306E383BA03FD83C0ADE85CFEF2546556865A6EA2C8D5DB3C26B85F444418543DC7EE54A134FB2676FDFC6AE937A018BFEBC9E127BECC74CFEBC9E127BECC74CFEBC9E127BECC74CFEBC9E127BECC74CFEBC9E127BECC74CFEBC9E127BECC74C8EDD5E5BE2F6E6675D575E7D6A3B98089DB7CE019D40AA5C8EDD5E5BE2F6E667B3E24808E96166011D88432AC4FA2AC477ABE5C48262BAC7A47065D44FA144B1BB67FC5430CC2325B31FC9ABAEF60657947834729BF4A37DBDD869FED676FA014129E5C734642707479A1291E599C0CD05496D73FC664F51C2A5C225F6E25045F2347821DB19C2DCD7956D8F70F0D1E13D665811EC7EFEA2B86B52C4550FEB24070CCFB04F8EA8ADEC20CBEC96BF1421B38DE2A6F7BED72327B39CEEDF555D14B5A629DFFD9D6D5710BC4585E9F9C86C62EC1CA4EBD860D919F9CB4947461561BBEBE72615D20D8A4D6194C6B9CA11FB472AB80F5D3285229EB0AC0CFD24682BD9BC0F130D6F654B387B1AB51E0DF5D6675C0EFEA266192ACA3D2E843D6811E654EA4A491E6738F364E756E96FD4615C468E1AA0D6C44DF5B576E795813DABDAF3BAE67EC563ACAF6C7A728DCD66243DF1C17C34584DBCDAFB2C10338903BA23056757FBC2BF4D006FFA37DE19BCEF0176EA798C4CB8E2833B1E06675ACCA2AFD99D32A21E0D08B98D23953479835E7FE670779397719EF01900C94E3D612EC4C481AF621E8F2F066B221FF1D71DE9E7DA2F83C56894B6F23BFC7E1B3BBC0978A0A72F42D1407ADFB41C8A94639F713BEC77CD32AAF5D2324F31EF11A88F4539C79AB0DC88CB821B1627342C0E53B8CFBA0D2A7E131BFE28032E8909153CD9441D58DC5F571246D9C24E1ADA0D3667CF68270FE098402CA58BF75C735DD91DAE04D27B0E1A2829956D91DE58DAF908B69AF29A28F652ADCB9F081D4F1AB54F60656F7A3DEB56F01B5161C96F37840BD8FD0F0BB22CF33D927BCAA4322CCD8F142E88EC58AD19C60C2DA7C500A1EE43DABF1245F57B7BF5435F23704539D5655B4E6D885D05A13BDB423F61FCE287E73793015079EDF45A7C8D64A046A8363997BBDE26DD5BD33F5554F5D0ED03CD153BAF5AD8594B9D4C33CE59FB06A5885882EC93C4815EC7A8132E8EE86ED0F8CA87CE8C2E46A668152C6DBC68E9A11F74A7E03506817D4A34061EC025ACDE736A93AF7C4485D0FB6204BA41F4EBCFFAA26696612FAC6FDC7E747538A66D04D83D2A140133ED603242A7098A5298A8D5DB71932AABE4AC338AF58992AC86D8FAECE44468B6EA321AABD9B0B2541169197ED16196872172363E783463A1E33CDF8A3A09702F7FE4F6F4330DC675" scanning hidden files ... scan completed successfully hidden files: 0 KProcCheck Version 0.2-beta1 Proof-of-Concept by SIG^2 (www.security.org.sg) Process list by traversal of KiWaitListHead 224 - RedirSvc.exe 364 - Mcshield.exe 404 - mcsysmon.exe 488 - MpfSrv.exe 560 - MBackMonitor.ex 644 - csrss.exe 668 - winlogon.exe 712 - services.exe 724 - lsass.exe 840 - nvsvc32.exe 912 - svchost.exe 972 - dlbtcoms.exe 980 - svchost.exe 1088 - svchost.exe 1096 - svchost.exe 1384 - spoolsv.exe 1472 - explorer.exe 1676 - dlbtbmgr.exe 1716 - McAfeeDataBacku 1772 - ctfmon.exe 1780 - dlbtbmon.exe 1788 - fumoei.exe 1896 - soffice.bin 2032 - McNASvc.exe 2784 - alg.exe 3312 - firefox.exe 3572 - cmd.exe 3712 - fdm.exe Total number of processes = 28 NOTE: Under WinXP, this will not show all processes. KProcCheck Version 0.2-beta1 Proof-of-Concept by SIG^2 (www.security.org.sg) Driver/Module list by traversal of PsLoadedModuleList 804D7000 - \WINDOWS\system32\ntoskrnl.exe 806FD000 - \WINDOWS\system32\hal.dll F7987000 - \WINDOWS\system32\KDCOM.DLL F7897000 - \WINDOWS\system32\BOOTVID.dll F75A7000 - ACPI.sys F7989000 - \WINDOWS\System32\DRIVERS\WMILIB.SYS F7596000 - pci.sys F75F7000 - isapnp.sys F7A4F000 - pciide.sys F7707000 - \WINDOWS\System32\DRIVERS\PCIIDEX.SYS F7607000 - MountMgr.sys F74D7000 - ftdisk.sys F770F000 - PartMgr.sys F7617000 - VolSnap.sys F74BF000 - atapi.sys F7627000 - disk.sys F7637000 - \WINDOWS\System32\DRIVERS\CLASSPNP.SYS F749F000 - fltmgr.sys F748D000 - sr.sys F7478000 - drvmcdb.sys F7717000 - PxHelp20.sys F7461000 - KSecDD.sys F7B52000 - Ntfs.sys F7434000 - NDIS.sys F7419000 - Mup.sys F7647000 - agp440.sys F76D7000 - \SystemRoot\System32\DRIVERS\intelppm.sys B9A26000 - \SystemRoot\System32\DRIVERS\nv4_mini.sys B9A12000 - \SystemRoot\System32\DRIVERS\VIDEOPRT.SYS F77D7000 - \SystemRoot\System32\DRIVERS\usbuhci.sys B99EF000 - \SystemRoot\System32\DRIVERS\USBPORT.SYS F77DF000 - \SystemRoot\System32\DRIVERS\usbehci.sys B99C7000 - \SystemRoot\System32\DRIVERS\e100b325.sys F77E7000 - \SystemRoot\System32\DRIVERS\fdc.sys F76E7000 - \SystemRoot\System32\DRIVERS\i8042prt.sys BAFDC000 - \SystemRoot\System32\Drivers\L8042Kbd.sys B99AD000 - \SystemRoot\System32\drivers\keyscrambler.sys F77EF000 - \SystemRoot\System32\DRIVERS\kbdclass.sys B999C000 - \SystemRoot\System32\DRIVERS\serial.sys BAFD8000 - \SystemRoot\System32\DRIVERS\serenum.sys B9988000 - \SystemRoot\System32\DRIVERS\parport.sys F77F7000 - \SystemRoot\system32\drivers\Afc.sys F77FF000 - \SystemRoot\system32\drivers\pfc.sys F79AF000 - \SystemRoot\system32\drivers\sscdbhk5.sys F76F7000 - \SystemRoot\System32\DRIVERS\cdrom.sys F7586000 - \SystemRoot\System32\DRIVERS\redbook.sys B9965000 - \SystemRoot\System32\DRIVERS\ks.sys F7576000 - \SystemRoot\System32\DRIVERS\imapi.sys B98D7000 - \SystemRoot\system32\drivers\smwdm.sys B98B3000 - \SystemRoot\system32\drivers\portcls.sys F7566000 - \SystemRoot\system32\drivers\drmk.sys F79B3000 - \SystemRoot\system32\drivers\aeaudio.sys F7A8C000 - \SystemRoot\System32\DRIVERS\audstub.sys F7556000 - \SystemRoot\System32\DRIVERS\rasl2tp.sys BAFB7000 - \SystemRoot\System32\DRIVERS\ndistapi.sys B989C000 - \SystemRoot\System32\DRIVERS\ndiswan.sys F7546000 - \SystemRoot\System32\DRIVERS\raspppoe.sys F7536000 - \SystemRoot\System32\DRIVERS\raspptp.sys F7807000 - \SystemRoot\System32\DRIVERS\TDI.SYS B988B000 - \SystemRoot\System32\DRIVERS\psched.sys F7526000 - \SystemRoot\System32\DRIVERS\msgpc.sys F780F000 - \SystemRoot\System32\DRIVERS\ptilink.sys F7817000 - \SystemRoot\System32\DRIVERS\raspti.sys F7516000 - \SystemRoot\System32\DRIVERS\termdd.sys F781F000 - \SystemRoot\System32\DRIVERS\mouclass.sys F79B9000 - \SystemRoot\System32\DRIVERS\swenum.sys B9832000 - \SystemRoot\System32\DRIVERS\update.sys F7737000 - \SystemRoot\System32\DRIVERS\omci.sys BAFA7000 - \SystemRoot\System32\DRIVERS\mssmbios.sys F7506000 - \SystemRoot\System32\Drivers\NDProxy.SYS F74F6000 - \SystemRoot\System32\DRIVERS\usbhub.sys F79C1000 - \SystemRoot\System32\DRIVERS\USBD.SYS F79C7000 - \SystemRoot\System32\Drivers\i2omgmt.SYS F79CB000 - \SystemRoot\System32\Drivers\Fs_Rec.SYS BA4CA000 - \SystemRoot\System32\Drivers\Null.SYS F79CD000 - \SystemRoot\System32\Drivers\Beep.SYS F774F000 - \SystemRoot\system32\drivers\ssrtln.sys F7757000 - \SystemRoot\System32\drivers\vga.sys F79CF000 - \SystemRoot\System32\Drivers\mnmdd.SYS F79D1000 - \SystemRoot\System32\DRIVERS\RDPCDD.sys F775F000 - \SystemRoot\System32\Drivers\Msfs.SYS F7767000 - \SystemRoot\System32\Drivers\Npfs.SYS F7913000 - \SystemRoot\System32\DRIVERS\rasacd.sys B04F6000 - \SystemRoot\System32\DRIVERS\ipsec.sys B049E000 - \SystemRoot\System32\DRIVERS\tcpip.sys B047B000 - \SystemRoot\System32\Drivers\Mpfp.sys BAF5F000 - \SystemRoot\System32\DRIVERS\ipfltdrv.sys B0453000 - \SystemRoot\System32\DRIVERS\netbt.sys B0431000 - \SystemRoot\System32\drivers\afd.sys BAF4F000 - \SystemRoot\System32\DRIVERS\netbios.sys B0406000 - \SystemRoot\System32\DRIVERS\rdbss.sys B0397000 - \SystemRoot\System32\DRIVERS\mrxsmb.sys BAF1F000 - \SystemRoot\System32\Drivers\Fips.SYS B0376000 - \SystemRoot\System32\DRIVERS\ipnat.sys BAF0F000 - \SystemRoot\System32\DRIVERS\wanarp.sys F7777000 - \SystemRoot\System32\DRIVERS\usbccgp.sys B02D5000 - \SystemRoot\system32\DRIVERS\P1110VID.sys BAEFF000 - \SystemRoot\system32\DRIVERS\STREAM.SYS BA5D0000 - \SystemRoot\System32\Drivers\LHidUsbK.Sys BA5C0000 - \SystemRoot\System32\Drivers\HIDCLASS.SYS F777F000 - \SystemRoot\System32\Drivers\HIDPARSE.SYS F793F000 - \SystemRoot\System32\DRIVERS\usbscan.sys F7787000 - \SystemRoot\System32\DRIVERS\usbprint.sys F7943000 - \SystemRoot\system32\DRIVERS\hidusb.sys F7797000 - \SystemRoot\system32\DRIVERS\LHidKE.Sys F7947000 - \SystemRoot\System32\DRIVERS\mouhid.sys B019C000 - \SystemRoot\system32\DRIVERS\LMouKE.Sys F7697000 - \SystemRoot\System32\Drivers\Cdfs.SYS B0152000 - \SystemRoot\System32\Drivers\dump_atapi.sys F79ED000 - \SystemRoot\System32\Drivers\dump_WMILIB.SYS BF800000 - \SystemRoot\System32\win32k.sys B064F000 - \SystemRoot\System32\drivers\Dxapi.sys B981A000 - \SystemRoot\System32\watchdog.sys BF9C3000 - \SystemRoot\System32\drivers\dxg.sys F7A9F000 - \SystemRoot\System32\drivers\dxgthk.sys BF9D5000 - \SystemRoot\System32\nv4_disp.dll BFFA0000 - \SystemRoot\System32\ATMFD.DLL F7667000 - \SystemRoot\system32\drivers\drvnddm.sys BA637000 - \SystemRoot\system32\dla\tfsndres.sys AFC06000 - \SystemRoot\system32\dla\tfsnifs.sys AFD2B000 - \SystemRoot\system32\dla\tfsnopio.sys F79AB000 - \SystemRoot\system32\dla\tfsnpool.sys B97FA000 - \SystemRoot\system32\dla\tfsnboio.sys BA590000 - \SystemRoot\system32\dla\tfsncofs.sys BA4C9000 - \SystemRoot\system32\dla\tfsndrct.sys AFBED000 - \SystemRoot\system32\dla\tfsnudf.sys AFBD4000 - \SystemRoot\system32\dla\tfsnudfa.sys AF98F000 - \SystemRoot\system32\drivers\wdmaud.sys BA570000 - \SystemRoot\system32\drivers\sysaudio.sys F799D000 - \SystemRoot\System32\Drivers\ParVdm.SYS AF7CA000 - \SystemRoot\System32\Drivers\Aspi32.SYS AF6AE000 - \SystemRoot\System32\Drivers\MASPINT.SYS AF3AE000 - \??\C:\WINDOWS\system32\drivers\PfModNT.sys F79D9000 - \SystemRoot\System32\Drivers\TICalc.SYS AF292000 - \??\C:\WINDOWS\system32\drivers\tmcomm.sys AF17A000 - \SystemRoot\system32\drivers\mfehidk.sys F776F000 - \SystemRoot\system32\drivers\mfesmfk.sys B01E5000 - \SystemRoot\system32\drivers\mfebopk.sys AF50A000 - \SystemRoot\system32\drivers\mfeavfk.sys F7ABF000 - \??\C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.sys F79F5000 - \SystemRoot\System32\Drivers\hiber_WMILIB.SYS F7A05000 - \??\C:\WINDOWS\system32\13E.tmp F7A92000 - \SystemRoot\System32\DRIVERS\KProcCheck.sys Total number of drivers = 143 Liste des programmes installes 7-Zip 4.47 beta a-squared Free 2.1 Adobe Flash Player 9 ActiveX Adobe Flash Player Plugin Adobe Reader 8.1.0 - Français Adobe SVG Viewer 3.0 AusLogics Disk Defrag 1.1 AVG Anti-Spyware 7.5 BankPerfect 6.21 ByeBye CCleaner (remove only) Correctif pour Windows XP (KB914440) Correctif pour Windows XP (KB924867) Creative WebCam NX Driver (1.02.01.0827) DeepBurner v1.8.0.224 Dell Photo AIO Printer 922 Dell ResourceCD DVDSentry ERUNT 1.1j FastStone Capture 5.3 (French) FastStone Image Viewer 3.2 FireTune Folderico 3.7.2 Free Download Manager 2.5 HijackThis 2.0.2 Hotfix for Windows Media Format 11 SDK (KB929399) Hotfix for Windows XP (KB915865) Hotfix for Windows XP (KB926239) Intel® 537EP V9x DF PCI Modem Intel® PROSet Java 6 Update 2 Kaspersky On-line Scanner Kaspersky Online Scanner KeyScrambler Lecteur Windows Media 11 LedConsommation 4.1.7 Logitech SetPoint LUMIX Simple Viewer Macromedia Shockwave Player Manuel d'utilisation de Creative WebCam NX (Français) McAfee SecurityCenter Microsoft .NET Framework 1.1 Microsoft .NET Framework 1.1 Microsoft .NET Framework 1.1 French Language Pack Microsoft .NET Framework 1.1 Hotfix (KB928366) Microsoft .NET Framework 2.0 Microsoft .NET Framework 2.0 Microsoft .NET Framework 3.0 Microsoft .NET Framework 3.0 Microsoft .NET Framework 3.0 French Language Pack Microsoft Compression Client Pack 1.0 for Windows XP Microsoft Data Access Components KB870669 Microsoft Internationalized Domain Names Mitigation APIs Microsoft National Language Support Downlevel APIs Microsoft Office PowerPoint Viewer 2007 (French) Microsoft User-Mode Driver Framework Feature Pack 1.0 MicroStaff WINASPI NT Mira version 2.4.0.0 Mise à jour de sécurité pour Lecteur Windows Media (KB911564) Mise à jour de sécurité pour Lecteur Windows Media 10 (KB911565) Mise à jour de sécurité pour Lecteur Windows Media 10 (KB917734) Mise à jour de sécurité pour Lecteur Windows Media 11 (KB936782) Mise à jour de sécurité pour Lecteur Windows Media 6.4 (KB925398) Mise à jour de sécurité pour Step by Step Interactive Training (KB923723) Mise à jour de sécurité pour Windows Internet Explorer 7 (KB928090) Mise à jour de sécurité pour Windows Internet Explorer 7 (KB931768) Mise à jour de sécurité pour Windows Internet Explorer 7 (KB933566) Mise à jour de sécurité pour Windows Internet Explorer 7 (KB937143) Mise à jour de sécurité pour Windows Internet Explorer 7 (KB938127) Mise à jour de sécurité pour Windows XP (KB905915) Mise à jour de sécurité pour Windows XP (KB908519) Mise à jour de sécurité pour Windows XP (KB908531) Mise à jour de sécurité pour Windows XP (KB911280) Mise à jour de sécurité pour Windows XP (KB911562) Mise à jour de sécurité pour Windows XP (KB911567) Mise à jour de sécurité pour Windows XP (KB911927) Mise à jour de sécurité pour Windows XP (KB912812) Mise à jour de sécurité pour Windows XP (KB912919) Mise à jour de sécurité pour Windows XP (KB913446) Mise à jour de sécurité pour Windows XP (KB913580) Mise à jour de sécurité pour Windows XP (KB914388) Mise à jour de sécurité pour Windows XP (KB914389) Mise à jour de sécurité pour Windows XP (KB916281) Mise à jour de sécurité pour Windows XP (KB917159) Mise à jour de sécurité pour Windows XP (KB917344) Mise à jour de sécurité pour Windows XP (KB917422) Mise à jour de sécurité pour Windows XP (KB917953) Mise à jour de sécurité pour Windows XP (KB918118) Mise à jour de sécurité pour Windows XP (KB918439) Mise à jour de sécurité pour Windows XP (KB918899) Mise à jour de sécurité pour Windows XP (KB919007) Mise à jour de sécurité pour Windows XP (KB920213) Mise à jour de sécurité pour Windows XP (KB920214) Mise à jour de sécurité pour Windows XP (KB920670) Mise à jour de sécurité pour Windows XP (KB920683) Mise à jour de sécurité pour Windows XP (KB920685) Mise à jour de sécurité pour Windows XP (KB921398) Mise à jour de sécurité pour Windows XP (KB921503) Mise à jour de sécurité pour Windows XP (KB921883) Mise à jour de sécurité pour Windows XP (KB922616) Mise à jour de sécurité pour Windows XP (KB922760) Mise à jour de sécurité pour Windows XP (KB922819) Mise à jour de sécurité pour Windows XP (KB923191) Mise à jour de sécurité pour Windows XP (KB923414) Mise à jour de sécurité pour Windows XP (KB923694) Mise à jour de sécurité pour Windows XP (KB923789) Mise à jour de sécurité pour Windows XP (KB923980) Mise à jour de sécurité pour Windows XP (KB924191) Mise à jour de sécurité pour Windows XP (KB924270) Mise à jour de sécurité pour Windows XP (KB924496) Mise à jour de sécurité pour Windows XP (KB924667) Mise à jour de sécurité pour Windows XP (KB925486) Mise à jour de sécurité pour Windows XP (KB925902) Mise à jour de sécurité pour Windows XP (KB926255) Mise à jour de sécurité pour Windows XP (KB926436) Mise à jour de sécurité pour Windows XP (KB927779) Mise à jour de sécurité pour Windows XP (KB927802) Mise à jour de sécurité pour Windows XP (KB928255) Mise à jour de sécurité pour Windows XP (KB928843) Mise à jour de sécurité pour Windows XP (KB929123) Mise à jour de sécurité pour Windows XP (KB930178) Mise à jour de sécurité pour Windows XP (KB931261) Mise à jour de sécurité pour Windows XP (KB931784) Mise à jour de sécurité pour Windows XP (KB932168) Mise à jour de sécurité pour Windows XP (KB935839) Mise à jour de sécurité pour Windows XP (KB935840) Mise à jour de sécurité pour Windows XP (KB936021) Mise à jour de sécurité pour Windows XP (KB938829) Mise à jour pour Windows XP (KB898461) Mise à jour pour Windows XP (KB900485) Mise à jour pour Windows XP (KB904942) Mise à jour pour Windows XP (KB910437) Mise à jour pour Windows XP (KB916595) Mise à jour pour Windows XP (KB920342) Mise à jour pour Windows XP (KB920872) Mise à jour pour Windows XP (KB922582) Mise à jour pour Windows XP (KB925720) Mise à jour pour Windows XP (KB925876) Mise à jour pour Windows XP (KB927891) Mise à jour pour Windows XP (KB929338) Mise à jour pour Windows XP (KB930916) Mise à jour pour Windows XP (KB931836) Mise à jour pour Windows XP (KB936357) Mise à jour pour Windows XP (KB938828) Modem Event Monitor Modem Helper Modem On Hold Module de prise en charge linguistique de Microsoft .NET Framework 2.0 - FRA Module de prise en charge linguistique du français de Microsoft .NET Framework 3.0 Mozilla Firefox (2.0.0.6) Mozilla Thunderbird (2.0.0.6) MSXML 6.0 Parser (KB933579) NVIDIA Windows 2000/XP Display Drivers OpenOffice.org 2.2 Opera 9.23 Package de base Microsoft de service de chiffrement pour cartes à puce PC Wizard 2007.1.72 PDFCreator PowerDVD QuickTime Radio Fr Solo 2.1 RealPlayer Security Update pour Microsoft .NET Framework 2.0 (KB928365) SetBrowser (remove only) Simple Sudoku 4.2 Sonic DLA Sonic RecordNow! Sonic Update Manager Sophos Anti-Rootkit 1.3 Spelling Dictionaries Support For Adobe Reader 8 Spybot - Search & Destroy 1.4 SuperCopier2 TribalWeb 2.35 VideoLAN VLC media player 0.8.6c Windows Communication Foundation Windows Communication Foundation Language Pack - FRA Windows Genuine Advantage v1.3.0254.0 Windows Imaging Component Windows Installer Clean Up Windows Internet Explorer 7 Windows Media Format 11 runtime Windows Media Format 11 runtime Windows Media Player 11 Windows Media Player Firefox Plugin Windows Presentation Foundation Windows Presentation Foundation Language Pack (FRA) Windows Workflow Foundation Windows Workflow Foundation FR Language Pack XML Paper Specification Shared Components Language Pack 1.0 XML Paper Specification Shared Components Pack 1.0 Le volume dans le lecteur C n'a pas de nom. Le numéro de série du volume est EC6C-4B2E Répertoire de C:\Program Files 28/08/2007 00:24 <REP> . 28/08/2007 00:24 <REP> .. 28/05/2007 22:07 <REP> 7-Zip 06/06/2007 12:20 <REP> Adobe 06/09/2005 17:26 <REP> AGICS 25/07/2007 14:10 <REP> Ahead 23/08/2007 22:20 <REP> AIDA32 - Personal System Information 19/01/2006 01:37 <REP> Aide mémoire 29/10/2006 21:33 <REP> Alwil Software 07/08/2007 14:03 <REP> Arovax AntiSpyware 23/08/2007 14:30 <REP> Ashampoo 26/08/2007 00:04 <REP> a-squared Free 25/07/2007 12:47 <REP> Astonsoft 18/08/2007 14:53 <REP> AusLogics Disk Defrag 19/07/2007 23:17 <REP> AxBx 27/05/2007 10:59 <REP> BankPerfect 22/08/2007 23:40 <REP> BitDefender 02/05/2006 00:17 <REP> ByeBye 13/08/2007 00:09 <REP> CCleaner 23/10/2005 00:19 <REP> closebase 13/03/2007 23:55 <REP> Cobian Backup 8 22/06/2004 23:06 <REP> Common Files 03/06/2004 18:54 <REP> ComPlus Applications 13/08/2006 21:53 <REP> Creative 03/06/2004 19:38 <REP> CyberLink 03/06/2004 19:38 <REP> Dell 14/08/2006 00:06 <REP> Dell Photo AIO Printer 922 31/07/2007 00:55 <REP> Dictionnaire 28/08/2007 09:57 <REP> Dl_cats 25/08/2007 11:57 <REP> EnveloppesEditor1.08 18/08/2007 12:13 <REP> ERUNT 20/08/2007 14:26 <REP> FastStone Capture 27/07/2007 23:42 <REP> FastStone Image Viewer 23/08/2007 22:29 <REP> Fichiers communs 19/07/2007 18:27 <REP> FireTune 04/01/2007 23:27 <REP> Folderico 13/02/2007 00:46 <REP> Foxit Software 24/08/2007 22:14 <REP> Free Download Manager 22/04/2007 22:41 <REP> Google 28/08/2007 00:24 <REP> Grisoft 19/05/2005 09:59 <REP> HTML Help Workshop 11/06/2005 00:05 <REP> Icônes 03/06/2004 19:38 <REP> Intel 21/08/2006 13:50 <REP> InterMute 15/08/2007 10:53 <REP> Internet Explorer 12/12/2005 23:59 <REP> Jasc Software Inc 21/07/2007 23:08 <REP> Java 11/08/2007 13:04 <REP> Kaspersky Lab 09/08/2007 21:19 <REP> KeyScrambler 25/07/2007 18:49 <REP> LED 21/05/2006 00:32 <REP> Logitech 11/08/2007 14:21 <REP> McAfee 11/08/2007 14:13 <REP> McAfee.com 22/06/2004 22:48 <REP> Messager Wanadoo 11/08/2007 21:48 <REP> Messenger 27/03/2007 19:01 <REP> metagenia 06/02/2006 22:13 <REP> Microsoft AntiSpyware 25/07/2007 18:49 <REP> microsoft frontpage 25/07/2007 18:26 <REP> Microsoft Office 29/01/2005 16:19 <REP> Microsoft Works 29/09/2004 23:32 <REP> Modem Helper 29/09/2004 23:32 <REP> Modem On Hold 29/09/2004 23:32 <REP> Movie Maker 13/08/2007 00:15 <REP> Mozilla Firefox 02/08/2007 20:48 <REP> Mozilla Thunderbird 13/01/2006 14:31 <REP> mozilla-sunbird_mozilla_sunbird_0.3a_francais_11130 17/10/2005 23:59 <REP> mp3planamen 11/04/2007 21:17 <REP> MSBuild 25/07/2007 18:25 <REP> MSECACHE 29/01/2005 16:15 <REP> MSN Apps 03/06/2004 18:54 <REP> MSN Gaming Zone 15/08/2007 10:54 <REP> MSXML 6.0 21/05/2006 14:20 <REP> MUSICMATCH 11/01/2007 00:13 <REP> Must-Hit 05/09/2004 18:10 <REP> NetMeeting 31/03/2007 12:08 <REP> nLite 03/06/2004 19:40 <REP> Nullsoft 20/07/2007 22:57 <REP> OpenOffice.org 2.2 13/08/2007 00:15 <REP> Opera 15/06/2007 12:53 <REP> Outlook Express 03/06/2007 16:59 <REP> Panasonic 29/01/2007 20:14 <REP> PC Wizard 2007 07/10/2006 11:41 <REP> PDFCreator 17/12/2004 12:24 <REP> Plus! 24/04/2007 22:35 <REP> PrestoNotes 03/06/2007 17:57 <REP> QuickTime 28/03/2007 22:55 <REP> r2 Studios 04/03/2007 01:17 <REP> Radio Fr Solo 03/06/2004 19:40 <REP> Real 11/04/2007 21:12 <REP> Reference Assemblies 24/08/2007 23:31 <REP> RegCleaner 11/06/2004 22:49 <REP> Services en ligne 03/03/2007 12:05 <REP> SetBrowser 19/12/2006 01:43 <REP> Simple Sudoku 25/01/2007 00:05 <REP> Skype 17/12/2006 23:14 <REP> SnIco Edit 13/06/2005 21:18 <REP> SoftChris 03/06/2004 19:39 <REP> Sonic 13/08/2007 00:15 <REP> Sophos 25/08/2007 15:40 <REP> Spybot - Search & Destroy 05/07/2006 12:14 <REP> Sunbelt Software 04/03/2007 15:20 <REP> SuperCopier2 19/07/2007 20:45 <REP> Trend Micro 01/07/2007 22:00 <REP> TribalWeb 28/02/2007 21:20 <REP> Unlocker 09/06/2006 00:40 <REP> VideoLAN 25/08/2007 11:59 <REP> VS Revo Group 29/01/2005 16:21 <REP> Wanadoo Messager 20/04/2007 17:04 <REP> Web Media Player 09/01/2007 01:31 <REP> WebMediaPlayer 16/06/2007 23:21 <REP> Webroot 28/05/2007 21:47 <REP> Windows Installer Clean Up 19/07/2007 18:29 <REP> Windows Media Connect 2 05/01/2007 13:07 <REP> Windows Media Player 12/11/2004 00:45 <REP> Windows NT 03/06/2004 18:54 <REP> XEROX 23/08/2007 19:34 <REP> Xi 05/08/2007 00:12 <REP> XoftSpySE 0 fichier(s) 0 octets 118 Rép(s) 59 277 627 392 octets libres Le volume dans le lecteur C n'a pas de nom. Le numéro de série du volume est EC6C-4B2E Répertoire de C:\Program Files\fichiers communs 23/08/2007 22:29 <REP> . 23/08/2007 22:29 <REP> .. 06/06/2007 12:20 <REP> Adobe 25/07/2007 14:10 <REP> Ahead 09/06/2004 13:59 <REP> AOL 09/06/2004 14:00 <REP> aolback 10/07/2006 11:23 <REP> Borland Shared 14/08/2005 14:54 <REP> InstallShield 03/06/2004 19:34 <REP> Java 21/05/2006 00:30 <REP> Logitech 11/08/2007 14:14 <REP> McAfee 25/07/2007 18:26 <REP> Microsoft Shared 03/06/2004 18:53 <REP> MSSoap 03/06/2004 18:53 <REP> ODBC 02/01/2007 17:46 <REP> Real 03/06/2004 18:53 <REP> Services 03/06/2004 19:39 <REP> Sonic 03/06/2004 18:53 <REP> SpeechEngines 14/07/2004 20:21 <REP> SWF Studio 15/06/2007 12:53 <REP> System 02/01/2007 17:46 <REP> xing shared 0 fichier(s) 0 octets 21 Rép(s) 59 277 635 584 octets libres Le volume dans le lecteur C n'a pas de nom. Le numéro de série du volume est EC6C-4B2E Répertoire de C:\Program Files\fichiers communs\Microsoft Shared\Web Folders 03/06/2004 18:53 <REP> . 03/06/2004 18:53 <REP> .. 18/05/2001 18:57 561 209 MSONSEXT.DLL 03/06/1999 15:09 122 937 MSOWS409.DLL 07/03/2001 10:00 127 033 MSOWS40c.DLL 3 fichier(s) 811 179 octets 2 Rép(s) 59 277 635 584 octets libres Le volume dans le lecteur C n'a pas de nom. Le numéro de série du volume est EC6C-4B2E Répertoire de C:\Program Files\common files 22/06/2004 23:06 <REP> . 22/06/2004 23:06 <REP> .. 30/07/2004 23:57 <REP> System 0 fichier(s) 0 octets 3 Rép(s) 59 277 635 584 octets libres Le volume dans le lecteur C n'a pas de nom. Le numéro de série du volume est EC6C-4B2E Répertoire de C:\ 12/05/2007 18:22 68 096 diff.exe 12/05/2007 18:22 103 424 grep.exe 26/10/2004 05:40 38 029 McTool.exe 26/10/2004 05:40 213 049 Scan.exe 12/10/2006 22:47 2 127 973 Scanpm.exe 5 fichier(s) 2 550 571 octets 0 Rép(s) 59 277 635 584 octets libres Le volume dans le lecteur C n'a pas de nom. Le numéro de série du volume est EC6C-4B2E Répertoire de C:\ c:\Documents and Settings\All Users\Application Data\Apple Computer\Installer Cache\QuickTime 7.1.3.100\QuickTimeInstallerAdmin.exe c:\Documents and Settings\All Users\Application Data\Kaspersky Lab Setup Files\Kaspersky Anti-Virus 7.0.0.119\French\setup.exe c:\Documents and Settings\All Users\Application Data\Kaspersky Lab Setup Files\Kaspersky Anti-Virus 7.0.0.123\French\setup.exe c:\Documents and Settings\All Users\Application Data\Kaspersky Lab Setup Files\Kaspersky Anti-Virus 7.0.0.125\French\setup.exe c:\Documents and Settings\LF\.housecall6.6\getMac.exe c:\Documents and Settings\LF\.housecall6.6\patch.exe c:\Documents and Settings\LF\.housecall6.6\tsc.exe c:\Documents and Settings\LF\Application Data\Microsoft\Installer\{7F7F868A-37B1-43BB-9FFD-C4559A43A90A}\ARPPRODUCTICON.exe c:\Documents and Settings\LF\Application Data\Mozilla\Firefox\Profiles\vrvc9erp.default\FlashGot.exe c:\Documents and Settings\LF\Application Data\Mozilla\Firefox\Profiles\vrvc9erp.default\extensions\keyscrambler@qfx.software.corporation\installer\setup.exe c:\Documents and Settings\LF\Bureau\Fixwareout.exe c:\Documents and Settings\LF\Bureau\zipcity.exe c:\Documents and Settings\LF\Bureau\DiagHelp\DiagHelp\catchme.exe c:\Documents and Settings\LF\Bureau\DiagHelp\DiagHelp\diff.exe c:\Documents and Settings\LF\Bureau\DiagHelp\DiagHelp\dumphive.exe c:\Documents and Settings\LF\Bureau\DiagHelp\DiagHelp\FilesInfoCmd.exe c:\Documents and Settings\LF\Bureau\DiagHelp\DiagHelp\find2.exe c:\Documents and Settings\LF\Bureau\DiagHelp\DiagHelp\Fport.exe c:\Documents and Settings\LF\Bureau\DiagHelp\DiagHelp\grep.exe c:\Documents and Settings\LF\Bureau\DiagHelp\DiagHelp\KProcCheck.exe c:\Documents and Settings\LF\Bureau\DiagHelp\DiagHelp\LFiles.exe c:\Documents and Settings\LF\Bureau\DiagHelp\DiagHelp\LISTDLLS.exe c:\Documents and Settings\LF\Bureau\DiagHelp\DiagHelp\pslist.exe c:\Documents and Settings\LF\Bureau\DiagHelp\DiagHelp\streams.exe c:\Documents and Settings\LF\Bureau\DiagHelp\DiagHelp\swreg.exe c:\Documents and Settings\LF\Mes documents\Boite à outils\MCPR.exe c:\Documents and Settings\LF\Mes documents\Boite à outils\SpySweeper5.3.2.2361_FR.exe c:\Documents and Settings\LF\Mes documents\Boite à outils\Test Adsl\DSLtest2003.exe c:\Documents and Settings\LF\Mes documents\Mes Téléchargements\avg-anti-spyware_avg_anti-spyware_7.5.1.36_francais_27645.exe c:\Documents and Settings\LF\Mes documents\Mes Téléchargements\avgarkt-setup-1.1.0.42.exe c:\Documents and Settings\LF\Mes documents\Mes Téléchargements\ssftrialsnrsetup1_1918711471.exe c:\Documents and Settings\LF\Mes documents\Mes Téléchargements\total-uninstall_total_uninstall_2.35_francais_10903.exe c:\Documents and Settings\LF\Mes documents\Mes Téléchargements\DiagHelp\DiagHelp\catchme.exe c:\Documents and Settings\LF\Mes documents\Mes Téléchargements\DiagHelp\DiagHelp\diff.exe c:\Documents and Settings\LF\Mes documents\Mes Téléchargements\DiagHelp\DiagHelp\dumphive.exe c:\Documents and Settings\LF\Mes documents\Mes Téléchargements\DiagHelp\DiagHelp\FilesInfoCmd.exe c:\Documents and Settings\LF\Mes documents\Mes Téléchargements\DiagHelp\DiagHelp\find2.exe c:\Documents and Settings\LF\Mes documents\Mes Téléchargements\DiagHelp\DiagHelp\Fport.exe c:\Documents and Settings\LF\Mes documents\Mes Téléchargements\DiagHelp\DiagHelp\grep.exe c:\Documents and Settings\LF\Mes documents\Mes Téléchargements\DiagHelp\DiagHelp\KProcCheck.exe c:\Documents and Settings\LF\Mes documents\Mes Téléchargements\DiagHelp\DiagHelp\LFiles.exe c:\Documents and Settings\LF\Mes documents\Mes Téléchargements\DiagHelp\DiagHelp\LISTDLLS.exe c:\Documents and Settings\LF\Mes documents\Mes Téléchargements\DiagHelp\DiagHelp\pslist.exe c:\Documents and Settings\LF\Mes documents\Mes Téléchargements\DiagHelp\DiagHelp\streams.exe c:\Documents and Settings\LF\Mes documents\Mes Téléchargements\DiagHelp\DiagHelp\swreg.exe c:\Documents and Settings\LF\Mes documents\Mes Téléchargements\RegSeeker\RegSeeker.exe c:\Documents and Settings\All Users\Application Data\Grisoft\AVG Anti-Spyware 7.5\Downloads\help.dll c:\Documents and Settings\All Users\Application Data\Microsoft\IdentityCRL\ppcrlconfig.dll c:\Documents and Settings\LF\Application Data\Mozilla\Firefox\Profiles\vrvc9erp.default\extensions\keyscrambler@qfx.software.corporation\components\KeyScramblerIE.dll c:\Documents and Settings\LF\Application Data\Mozilla\Firefox\Profiles\vrvc9erp.default\extensions\{0784CD66-62FE-4cef-ABF4-F8ED9B654ACC}\components\tab_effect_xpcom.dll c:\Documents and Settings\LF\Application Data\Mozilla\Firefox\Profiles\vrvc9erp.default\extensions\{77b819fa-95ad-4f2c-ac7c-486b356188a9}\plugins\npietab.dll c:\Documents and Settings\LF\Application Data\TaoUSign\jsec.dll c:\Documents and Settings\LocalService\Application Data\Microsoft\UPnP Device Host\upnphost\udhisapi.dll ****** Fin du rapport DiagHelp
  7. Salut Gof Ci joint le rapport H.... Logfile of Trend Micro HijackThis v2.0.2 Scan saved at 09:54:45, on 27/08/2007 Platform: Windows XP SP2 (WinNT 5.01.2600) MSIE: Internet Explorer v7.00 (7.00.6000.16512) Boot mode: Normal Running processes: C:\WINDOWS\System32\smss.exe C:\WINDOWS\system32\winlogon.exe C:\WINDOWS\system32\services.exe C:\WINDOWS\system32\lsass.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\System32\svchost.exe C:\WINDOWS\system32\spoolsv.exe C:\PROGRA~1\SPYBOT~1\SpybotSD.exe C:\WINDOWS\Explorer.EXE C:\Program Files\Dell Photo AIO Printer 922\dlbtbmgr.exe C:\Program Files\McAfee\MBK\McAfeeDataBackup.exe C:\Program Files\Java\jre1.6.0_02\bin\jusched.exe C:\Program Files\Dell Photo AIO Printer 922\dlbtbmon.exe C:\WINDOWS\system32\ctfmon.exe C:\Program Files\Free Download Manager\FUM\fumoei.exe C:\Program Files\Logitech\SetPoint\SetPoint.exe C:\Program Files\OpenOffice.org 2.2\program\soffice.exe C:\Program Files\OpenOffice.org 2.2\program\soffice.BIN C:\Program Files\Fichiers communs\Logitech\KHAL\KHALMNPR.EXE c:\program files\a-squared free\a2service.exe C:\Program Files\McAfee\MBK\MBackMonitor.exe C:\Program Files\Fichiers communs\McAfee\HackerWatch\HWAPI.exe C:\PROGRA~1\McAfee\MSC\mcmscsvc.exe c:\program files\fichiers communs\mcafee\mna\mcnasvc.exe C:\PROGRA~1\McAfee\VIRUSS~1\mcods.exe C:\PROGRA~1\McAfee\MSC\mcpromgr.exe c:\PROGRA~1\FICHIE~1\mcafee\redirsvc\redirsvc.exe C:\PROGRA~1\McAfee\VIRUSS~1\mcshield.exe C:\PROGRA~1\McAfee\VIRUSS~1\mcsysmon.exe C:\Program Files\McAfee\MPF\MPFSrv.exe C:\WINDOWS\System32\nvsvc32.exe C:\WINDOWS\system32\svchost.exe c:\PROGRA~1\mcafee.com\agent\mcagent.exe C:\WINDOWS\system32\wuauclt.exe C:\Program Files\Mozilla Firefox\firefox.exe C:\Program Files\Trend Micro\HijackThis\HijackThis.exe R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.lemonde.fr/ R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank O2 - BHO: Aide pour le lien d'Adobe PDF Reader - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Fichiers communs\Adobe\Acrobat\ActiveX\AcroIEHelper.dll O2 - BHO: QFX Software KeyScrambler - {2B9F5787-88A5-4945-90E7-C4B18563BC5E} - C:\Program Files\KeyScrambler\KeyScramblerIE.dll O2 - BHO: (no name) - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_02\bin\ssv.dll O2 - BHO: scriptproxy - {7DB2D5A0-7241-4E79-B68D-6309F01C5231} - c:\program files\mcafee\virusscan\scriptcl.dll O2 - BHO: FDMIECookiesBHO Class - {CC59E0F9-7E43-44FA-9FAA-8377850BF205} - C:\Program Files\Free Download Manager\iefdm2.dll O3 - Toolbar: Yahoo! Toolbar avec bloqueur de fenêtres pop-up - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - (no file) O3 - Toolbar: (no name) - {0BF43445-2F28-4351-9252-17FE6E806AA0} - (no file) O3 - Toolbar: (no name) - {381FFDE8-2394-4f90-B10D-FC6124A40F8C} - (no file) O4 - HKLM\..\Run: [Dell Photo AIO Printer 922] "C:\Program Files\Dell Photo AIO Printer 922\dlbtbmgr.exe" O4 - HKLM\..\Run: [DLBTCATS] rundll32 C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\DLBTtime.dll,_RunDLLEntry@16 O4 - HKLM\..\Run: [Logitech Hardware Abstraction Layer] KHALMNPR.EXE O4 - HKLM\..\Run: [McAfee Backup] C:\Program Files\McAfee\MBK\McAfeeDataBackup.exe O4 - HKLM\..\Run: [MBkLogOnHook] C:\Program Files\McAfee\MBK\LogOnHook.exe O4 - HKLM\..\Run: [sunJavaUpdateSched] "C:\Program Files\Java\jre1.6.0_02\bin\jusched.exe" O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe O4 - HKCU\..\Run: [Free Uploader Oe Integration] C:\Program Files\Free Download Manager\FUM\fumoei.exe O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'SERVICE LOCAL') O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'SERVICE RÉSEAU') O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'SYSTEM') O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'Default user') O4 - Startup: ERUNT AutoBackup.lnk = C:\Program Files\ERUNT\AUTOBACK.EXE O4 - Startup: OpenOffice.org 2.2.lnk = C:\Program Files\OpenOffice.org 2.2\program\quickstart.exe O4 - Global Startup: Logitech SetPoint.lnk = C:\Program Files\Logitech\SetPoint\SetPoint.exe O8 - Extra context menu item: Analyser avec LeechGet - file://C:\Program Files\LeechGet 2006\\Parser.html O8 - Extra context menu item: Download all with Free Download Manager - file://C:\Program Files\Free Download Manager\dlall.htm O8 - Extra context menu item: Download selected with Free Download Manager - file://C:\Program Files\Free Download Manager\dlselected.htm O8 - Extra context menu item: Download video with Free Download Manager - file://C:\Program Files\Free Download Manager\dlfvideo.htm O8 - Extra context menu item: Download with Free Download Manager - file://C:\Program Files\Free Download Manager\dllink.htm O8 - Extra context menu item: Télécharger en utilisant l'assistant LeechGet - file://C:\Program Files\LeechGet 2006\\Wizard.html O8 - Extra context menu item: Télécharger en utilisant LeechGet - file://C:\Program Files\LeechGet 2006\\AddUrl.html O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_02\bin\ssv.dll O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_02\bin\ssv.dll O9 - Extra button: (no name) - {5C106A59-CC3C-4caa-81A4-6D909B5ACE23} - C:\Program Files\KeyScrambler\KeyScramblerIE.dll O9 - Extra 'Tools' menuitem: &KeyScrambler... - {5C106A59-CC3C-4caa-81A4-6D909B5ACE23} - C:\Program Files\KeyScrambler\KeyScramblerIE.dll O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe O9 - Extra button: Upload - {FD4E2FF8-973C-4A19-89BD-8E86B3CFCFE1} - C:\Program Files\Free Download Manager\FUM\fumiebtn.dll O16 - DPF: {0EB0E74A-2A76-4AB3-A7FB-9BD8C29F7F75} (CKAVWebScan Object) - http://webscanner.kaspersky.fr/kavwebscan_unicode.cab O16 - DPF: {17492023-C23A-453E-A040-C7C580BBF700} (Windows Genuine Advantage Validation Tool) - http://go.microsoft.com/fwlink/?linkid=39204 O16 - DPF: {30528230-99f7-4bb4-88d8-fa1d4f56a2ab} (YInstStarter Class) - C:\Program Files\Yahoo!\Common\yinsthelper.dll O16 - DPF: {4ED9DDF0-7479-4BBE-9335-5A1EDB1D8A21} - O16 - DPF: {BCC0FF27-31D9-4614-A68E-C18E1ADA4389} - http://download.mcafee.com/molbin/shared/m...,26/mcgdmgr.cab O16 - DPF: {CAFEEFAC-0015-0000-0004-ABCDEFFEDCBA} (Java Plug-in 1.5.0_04) - O16 - DPF: {CAFEEFAC-0015-0000-0006-ABCDEFFEDCBA} (Java Plug-in 1.5.0_06) - O16 - DPF: {CAFEEFAC-0015-0000-0008-ABCDEFFEDCBA} (Java Plug-in 1.5.0_08) - O16 - DPF: {CAFEEFAC-0015-0000-0009-ABCDEFFEDCBA} (Java Plug-in 1.5.0_09) - O16 - DPF: {CAFEEFAC-0015-0000-0010-ABCDEFFEDCBA} (Java Plug-in 1.5.0_10) - O16 - DPF: {CAFEEFAC-0015-0000-0011-ABCDEFFEDCBA} (Java Plug-in 1.5.0_11) - O17 - HKLM\System\CCS\Services\Tcpip\..\{5CD2D80C-813E-4E02-A4C7-9B3BADBC17CB}: NameServer = 80.10.246.1 80.10.246.132 O18 - Protocol: bw+0 - {6488CC82-47A7-4A92-90AB-12C4F65F065A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw+0s - {6488CC82-47A7-4A92-90AB-12C4F65F065A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw-0 - {6488CC82-47A7-4A92-90AB-12C4F65F065A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw-0s - {6488CC82-47A7-4A92-90AB-12C4F65F065A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw00 - {6488CC82-47A7-4A92-90AB-12C4F65F065A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw00s - {6488CC82-47A7-4A92-90AB-12C4F65F065A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw10 - {6488CC82-47A7-4A92-90AB-12C4F65F065A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw10s - {6488CC82-47A7-4A92-90AB-12C4F65F065A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw20 - {6488CC82-47A7-4A92-90AB-12C4F65F065A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw20s - {6488CC82-47A7-4A92-90AB-12C4F65F065A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw30 - {6488CC82-47A7-4A92-90AB-12C4F65F065A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw30s - {6488CC82-47A7-4A92-90AB-12C4F65F065A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw40 - {6488CC82-47A7-4A92-90AB-12C4F65F065A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw40s - {6488CC82-47A7-4A92-90AB-12C4F65F065A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw50 - {6488CC82-47A7-4A92-90AB-12C4F65F065A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw50s - {6488CC82-47A7-4A92-90AB-12C4F65F065A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw60 - {6488CC82-47A7-4A92-90AB-12C4F65F065A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw60s - {6488CC82-47A7-4A92-90AB-12C4F65F065A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw70 - {6488CC82-47A7-4A92-90AB-12C4F65F065A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw70s - {6488CC82-47A7-4A92-90AB-12C4F65F065A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw80 - {6488CC82-47A7-4A92-90AB-12C4F65F065A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw80s - {6488CC82-47A7-4A92-90AB-12C4F65F065A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw90 - {6488CC82-47A7-4A92-90AB-12C4F65F065A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw90s - {6488CC82-47A7-4A92-90AB-12C4F65F065A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwa0 - {6488CC82-47A7-4A92-90AB-12C4F65F065A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwa0s - {6488CC82-47A7-4A92-90AB-12C4F65F065A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwb0 - {6488CC82-47A7-4A92-90AB-12C4F65F065A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwb0s - {6488CC82-47A7-4A92-90AB-12C4F65F065A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwc0 - {6488CC82-47A7-4A92-90AB-12C4F65F065A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwc0s - {6488CC82-47A7-4A92-90AB-12C4F65F065A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwd0 - {6488CC82-47A7-4A92-90AB-12C4F65F065A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwd0s - {6488CC82-47A7-4A92-90AB-12C4F65F065A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwe0 - {6488CC82-47A7-4A92-90AB-12C4F65F065A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwe0s - {6488CC82-47A7-4A92-90AB-12C4F65F065A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwf0 - {6488CC82-47A7-4A92-90AB-12C4F65F065A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwf0s - {6488CC82-47A7-4A92-90AB-12C4F65F065A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwfile-8876480 - {9462A756-7B47-47BC-8C80-C34B9B80B32B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\GAPlugProtocol-8876480.dll O18 - Protocol: bwg0 - {6488CC82-47A7-4A92-90AB-12C4F65F065A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwg0s - {6488CC82-47A7-4A92-90AB-12C4F65F065A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwh0 - {6488CC82-47A7-4A92-90AB-12C4F65F065A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwh0s - {6488CC82-47A7-4A92-90AB-12C4F65F065A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwi0 - {6488CC82-47A7-4A92-90AB-12C4F65F065A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwi0s - {6488CC82-47A7-4A92-90AB-12C4F65F065A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwj0 - {6488CC82-47A7-4A92-90AB-12C4F65F065A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwj0s - {6488CC82-47A7-4A92-90AB-12C4F65F065A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwk0 - {6488CC82-47A7-4A92-90AB-12C4F65F065A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwk0s - {6488CC82-47A7-4A92-90AB-12C4F65F065A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwl0 - {6488CC82-47A7-4A92-90AB-12C4F65F065A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwl0s - {6488CC82-47A7-4A92-90AB-12C4F65F065A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwm0 - {6488CC82-47A7-4A92-90AB-12C4F65F065A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwm0s - {6488CC82-47A7-4A92-90AB-12C4F65F065A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwn0 - {6488CC82-47A7-4A92-90AB-12C4F65F065A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwn0s - {6488CC82-47A7-4A92-90AB-12C4F65F065A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwo0 - {6488CC82-47A7-4A92-90AB-12C4F65F065A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwo0s - {6488CC82-47A7-4A92-90AB-12C4F65F065A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwp0 - {6488CC82-47A7-4A92-90AB-12C4F65F065A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwp0s - {6488CC82-47A7-4A92-90AB-12C4F65F065A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwq0 - {6488CC82-47A7-4A92-90AB-12C4F65F065A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwq0s - {6488CC82-47A7-4A92-90AB-12C4F65F065A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwr0 - {6488CC82-47A7-4A92-90AB-12C4F65F065A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwr0s - {6488CC82-47A7-4A92-90AB-12C4F65F065A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bws0 - {6488CC82-47A7-4A92-90AB-12C4F65F065A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bws0s - {6488CC82-47A7-4A92-90AB-12C4F65F065A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwt0 - {6488CC82-47A7-4A92-90AB-12C4F65F065A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwt0s - {6488CC82-47A7-4A92-90AB-12C4F65F065A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwu0 - {6488CC82-47A7-4A92-90AB-12C4F65F065A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwu0s - {6488CC82-47A7-4A92-90AB-12C4F65F065A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwv0 - {6488CC82-47A7-4A92-90AB-12C4F65F065A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwv0s - {6488CC82-47A7-4A92-90AB-12C4F65F065A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bww0 - {6488CC82-47A7-4A92-90AB-12C4F65F065A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bww0s - {6488CC82-47A7-4A92-90AB-12C4F65F065A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwx0 - {6488CC82-47A7-4A92-90AB-12C4F65F065A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwx0s - {6488CC82-47A7-4A92-90AB-12C4F65F065A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwy0 - {6488CC82-47A7-4A92-90AB-12C4F65F065A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwy0s - {6488CC82-47A7-4A92-90AB-12C4F65F065A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwz0 - {6488CC82-47A7-4A92-90AB-12C4F65F065A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwz0s - {6488CC82-47A7-4A92-90AB-12C4F65F065A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: offline-8876480 - {6488CC82-47A7-4A92-90AB-12C4F65F065A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O23 - Service: a-squared Free Service (a2free) - Emsi Software GmbH - c:\program files\a-squared free\a2service.exe O23 - Service: dlbt_device - Dell - C:\WINDOWS\system32\dlbtcoms.exe O23 - Service: McAfee E-mail Proxy (Emproxy) - McAfee, Inc. - C:\PROGRA~1\FICHIE~1\McAfee\EmProxy\emproxy.exe O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Fichiers communs\InstallShield\Driver\1050\Intel 32\IDriverT.exe O23 - Service: MBackMonitor - McAfee - C:\Program Files\McAfee\MBK\MBackMonitor.exe O23 - Service: McAfee HackerWatch Service - McAfee, Inc. - C:\Program Files\Fichiers communs\McAfee\HackerWatch\HWAPI.exe O23 - Service: McAfee Update Manager (mcmispupdmgr) - McAfee, Inc. - C:\PROGRA~1\McAfee\MSC\mcupdmgr.exe O23 - Service: McAfee Services (mcmscsvc) - McAfee, Inc. - C:\PROGRA~1\McAfee\MSC\mcmscsvc.exe O23 - Service: McAfee Network Agent (McNASvc) - McAfee, Inc. - c:\program files\fichiers communs\mcafee\mna\mcnasvc.exe O23 - Service: McAfee Scanner (McODS) - McAfee, Inc. - C:\PROGRA~1\McAfee\VIRUSS~1\mcods.exe O23 - Service: McAfee Protection Manager (mcpromgr) - McAfee, Inc. - C:\PROGRA~1\McAfee\MSC\mcpromgr.exe O23 - Service: McAfee Redirector Service (McRedirector) - McAfee, Inc. - c:\PROGRA~1\FICHIE~1\mcafee\redirsvc\redirsvc.exe O23 - Service: McAfee Real-time Scanner (McShield) - McAfee, Inc. - C:\PROGRA~1\McAfee\VIRUSS~1\mcshield.exe O23 - Service: McAfee SystemGuards (McSysmon) - McAfee, Inc. - C:\PROGRA~1\McAfee\VIRUSS~1\mcsysmon.exe O23 - Service: McAfee Personal Firewall Service (MpfService) - McAfee, Inc. - C:\Program Files\McAfee\MPF\MPFSrv.exe O23 - Service: Intel NCS NetService (NetSvc) - Intel® Corporation - C:\Program Files\Intel\NCS\Sync\NetSvc.exe O23 - Service: NVIDIA Driver Helper Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\System32\nvsvc32.exe -- End of file - 21069 bytes
  8. http://forum.zebulon.fr/style_images/1/fol...icons/icon4.gif http://forum.zebulon.fr/style_images/1/fol...icons/icon4.gif Tout fonctionne correctement. Je me connecte bien. J'ai éteint le micro et il a redémarré normalement. Seul pb : mon imprimante clignote mais c'est un manque d'encre. Et moi j'ai beaucoup transpiré.
  9. http://forum.zebulon.fr/style_emoticons/de...on_rolleyes.gif ok c'est fait SmitFraudFix v2.195 Rapport fait à 23:51:31,67, 26/08/2007 Executé à partir de C:\Documents and Settings\LF\Mes documents\Mes T‚l‚chargements\SmitfraudFix OS: Microsoft Windows XP [version 5.1.2600] - Windows_NT Le type du système de fichiers est NTFS Fix executé en mode normal »»»»»»»»»»»»»»»»»»»»»»»» Process C:\WINDOWS\System32\smss.exe C:\WINDOWS\system32\winlogon.exe C:\WINDOWS\system32\services.exe C:\WINDOWS\system32\lsass.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\System32\svchost.exe C:\WINDOWS\system32\spoolsv.exe C:\WINDOWS\Explorer.EXE C:\Program Files\Dell Photo AIO Printer 922\dlbtbmgr.exe C:\Program Files\McAfee\MBK\McAfeeDataBackup.exe C:\Program Files\Java\jre1.6.0_02\bin\jusched.exe C:\Program Files\Dell Photo AIO Printer 922\dlbtbmon.exe C:\WINDOWS\system32\ctfmon.exe C:\Program Files\Free Download Manager\FUM\fumoei.exe C:\Program Files\Logitech\SetPoint\SetPoint.exe C:\Program Files\OpenOffice.org 2.2\program\soffice.exe C:\Program Files\OpenOffice.org 2.2\program\soffice.BIN C:\Program Files\Fichiers communs\Logitech\KHAL\KHALMNPR.EXE c:\program files\a-squared free\a2service.exe C:\Program Files\McAfee\MBK\MBackMonitor.exe C:\Program Files\Fichiers communs\McAfee\HackerWatch\HWAPI.exe C:\PROGRA~1\McAfee\MSC\mcmscsvc.exe c:\program files\fichiers communs\mcafee\mna\mcnasvc.exe C:\PROGRA~1\McAfee\VIRUSS~1\mcods.exe C:\PROGRA~1\McAfee\MSC\mcpromgr.exe c:\PROGRA~1\FICHIE~1\mcafee\redirsvc\redirsvc.exe C:\PROGRA~1\McAfee\VIRUSS~1\mcshield.exe C:\PROGRA~1\McAfee\VIRUSS~1\mcsysmon.exe C:\Program Files\McAfee\MPF\MPFSrv.exe C:\WINDOWS\System32\nvsvc32.exe C:\WINDOWS\system32\svchost.exe c:\PROGRA~1\mcafee.com\agent\mcagent.exe C:\WINDOWS\system32\dlbtcoms.exe C:\Program Files\Adobe\Reader 8.0\Reader\AcroRd32Info.exe C:\WINDOWS\system32\cmd.exe »»»»»»»»»»»»»»»»»»»»»»»» hosts »»»»»»»»»»»»»»»»»»»»»»»» C:\ »»»»»»»»»»»»»»»»»»»»»»»» C:\WINDOWS »»»»»»»»»»»»»»»»»»»»»»»» C:\WINDOWS\system »»»»»»»»»»»»»»»»»»»»»»»» C:\WINDOWS\Web »»»»»»»»»»»»»»»»»»»»»»»» C:\WINDOWS\system32 »»»»»»»»»»»»»»»»»»»»»»»» C:\WINDOWS\system32\LogFiles »»»»»»»»»»»»»»»»»»»»»»»» C:\Documents and Settings\LF »»»»»»»»»»»»»»»»»»»»»»»» C:\Documents and Settings\LF\Application Data »»»»»»»»»»»»»»»»»»»»»»»» Menu Démarrer »»»»»»»»»»»»»»»»»»»»»»»» C:\DOCUME~1\LF\Favoris »»»»»»»»»»»»»»»»»»»»»»»» Bureau »»»»»»»»»»»»»»»»»»»»»»»» C:\Program Files »»»»»»»»»»»»»»»»»»»»»»»» Clés corrompues »»»»»»»»»»»»»»»»»»»»»»»» Eléments du bureau »»»»»»»»»»»»»»»»»»»»»»»» Sharedtaskscheduler !!!Attention, les clés qui suivent ne sont pas forcément infectées!!! SrchSTS.exe by S!Ri Search SharedTaskScheduler's .dll »»»»»»»»»»»»»»»»»»»»»»»» AppInit_DLLs !!!Attention, les clés qui suivent ne sont pas forcément infectées!!! [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows] "AppInit_DLLs"="" »»»»»»»»»»»»»»»»»»»»»»»» Winlogon.System !!!Attention, les clés qui suivent ne sont pas forcément infectées!!! [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon] "System"="" »»»»»»»»»»»»»»»»»»»»»»»» Rustock »»»»»»»»»»»»»»»»»»»»»»»» DNS Description: WAN (PPP/SLIP) Interface DNS Server Search Order: 80.10.246.1 DNS Server Search Order: 80.10.246.132 HKLM\SYSTEM\CCS\Services\Tcpip\..\{5CD2D80C-813E-4E02-A4C7-9B3BADBC17CB}: NameServer=80.10.246.1 80.10.246.132 HKLM\SYSTEM\CS3\Services\Tcpip\..\{5CD2D80C-813E-4E02-A4C7-9B3BADBC17CB}: NameServer=80.10.246.1 80.10.246.132 »»»»»»»»»»»»»»»»»»»»»»»» Recherche infection wininet.dll »»»»»»»»»»»»»»»»»»»»»»»» Fin
  10. J'ai supprimé les quatre lignes en fait 3 je suppose puisque les 2 premières sont identiques. Toujours est il que toutes les lignes ont été supprimées. La connexion fonctionne. Je me suis déconnecté et reconnecté.
  11. Bonsoir Gof Je pensais avoir réalisé correctement la fusion. J'ai recommencé et le résultat me semble différent. REGEDIT4 [-HKLM\SYSTEM\CS2\Services\Tcpip\Parameters\Interfaces\{593A6C32-B52A-49BB-B438-100F46D81A20}] [-HKLM\SYSTEM\CS2\Services\Tcpip\Parameters\Interfaces\{593A6C32-B52A-49BB-B438-100F46D81A20}] [-HKLM\SYSTEM\CS2\Services\Tcpip\Parameters\Interfaces\{BAF27415-7A8C-4647-87C9-363AAE67FDE0}] [-HKLM\SYSTEM\CS2\Services\Tcpip\Parameters\Interfaces\{C3E6B25B-4F37-4FEB-A5AC-4CBCC0CE5D0F}] [HKLM\SYSTEM\CS2\Services\Tcpip\Parameters] "NameServer"=- SmitFraudFix v2.195 Rapport fait à 20:41:07,98, 26/08/2007 Executé à partir de C:\Documents and Settings\LF\Mes documents\Mes T‚l‚chargements\SmitfraudFix OS: Microsoft Windows XP [version 5.1.2600] - Windows_NT Le type du système de fichiers est NTFS Fix executé en mode normal »»»»»»»»»»»»»»»»»»»»»»»» DNS Avant Fix HKLM\SYSTEM\CS2\Services\Tcpip\..\{593A6C32-B52A-49BB-B438-100F46D81A20}: DhcpNameServer=85.255.115.60,85.255.112.87 HKLM\SYSTEM\CS2\Services\Tcpip\..\{593A6C32-B52A-49BB-B438-100F46D81A20}: NameServer=85.255.115.60,85.255.112.87 HKLM\SYSTEM\CS2\Services\Tcpip\..\{BAF27415-7A8C-4647-87C9-363AAE67FDE0}: NameServer=85.255.115.60,85.255.112.87 HKLM\SYSTEM\CS2\Services\Tcpip\..\{C3E6B25B-4F37-4FEB-A5AC-4CBCC0CE5D0F}: DhcpNameServer=85.255.115.60,85.255.112.87 HKLM\SYSTEM\CS2\Services\Tcpip\Parameters: NameServer=85.255.115.60 85.255.112.87 »»»»»»»»»»»»»»»»»»»»»»»» DNS Après Fix HKLM\SYSTEM\CS2\Services\Tcpip\..\{593A6C32-B52A-49BB-B438-100F46D81A20}: DhcpNameServer=85.255.115.60,85.255.112.87 HKLM\SYSTEM\CS2\Services\Tcpip\..\{593A6C32-B52A-49BB-B438-100F46D81A20}: NameServer=85.255.115.60,85.255.112.87 HKLM\SYSTEM\CS2\Services\Tcpip\..\{BAF27415-7A8C-4647-87C9-363AAE67FDE0}: NameServer=85.255.115.60,85.255.112.87 HKLM\SYSTEM\CS2\Services\Tcpip\..\{C3E6B25B-4F37-4FEB-A5AC-4CBCC0CE5D0F}: DhcpNameServer=85.255.115.60,85.255.112.87 HKLM\SYSTEM\CS2\Services\Tcpip\Parameters: NameServer=85.255.115.60 85.255.112.87
  12. Salut Gof REGEDIT4 [-HKLM\SYSTEM\CS2\Services\Tcpip\Parameters\Interfaces\{593A6C32-B52A-49BB-B438-100F46D81A20}] [-HKLM\SYSTEM\CS2\Services\Tcpip\Parameters\Interfaces\{593A6C32-B52A-49BB-B438-100F46D81A20}] [-HKLM\SYSTEM\CS2\Services\Tcpip\Parameters\Interfaces\{BAF27415-7A8C-4647-87C9-363AAE67FDE0}] [-HKLM\SYSTEM\CS2\Services\Tcpip\Parameters\Interfaces\{C3E6B25B-4F37-4FEB-A5AC-4CBCC0CE5D0F}] [HKLM\SYSTEM\CS2\Services\Tcpip\Parameters] "NameServer"=- SmitFraudFix v2.195 Rapport fait à 10:30:12,65, 26/08/2007 Executé à partir de C:\Documents and Settings\LF\Mes documents\Mes T‚l‚chargements\SmitfraudFix OS: Microsoft Windows XP [version 5.1.2600] - Windows_NT Le type du système de fichiers est NTFS Fix executé en mode normal »»»»»»»»»»»»»»»»»»»»»»»» DNS Avant Fix Description: WAN (PPP/SLIP) Interface DNS Server Search Order: 80.10.246.1 DNS Server Search Order: 80.10.246.132 HKLM\SYSTEM\CCS\Services\Tcpip\..\{5CD2D80C-813E-4E02-A4C7-9B3BADBC17CB}: NameServer=80.10.246.1 80.10.246.132 HKLM\SYSTEM\CS2\Services\Tcpip\..\{593A6C32-B52A-49BB-B438-100F46D81A20}: DhcpNameServer=85.255.115.60,85.255.112.87 HKLM\SYSTEM\CS2\Services\Tcpip\..\{593A6C32-B52A-49BB-B438-100F46D81A20}: NameServer=85.255.115.60,85.255.112.87 HKLM\SYSTEM\CS2\Services\Tcpip\..\{BAF27415-7A8C-4647-87C9-363AAE67FDE0}: NameServer=85.255.115.60,85.255.112.87 HKLM\SYSTEM\CS2\Services\Tcpip\..\{C3E6B25B-4F37-4FEB-A5AC-4CBCC0CE5D0F}: DhcpNameServer=85.255.115.60,85.255.112.87 HKLM\SYSTEM\CS3\Services\Tcpip\..\{5CD2D80C-813E-4E02-A4C7-9B3BADBC17CB}: NameServer=80.10.246.1 80.10.246.132 HKLM\SYSTEM\CS2\Services\Tcpip\Parameters: NameServer=85.255.115.60 85.255.112.87 »»»»»»»»»»»»»»»»»»»»»»»» DNS Après Fix Description: WAN (PPP/SLIP) Interface DNS Server Search Order: 80.10.246.1 DNS Server Search Order: 80.10.246.132 HKLM\SYSTEM\CCS\Services\Tcpip\..\{5CD2D80C-813E-4E02-A4C7-9B3BADBC17CB}: NameServer=80.10.246.1 80.10.246.132 HKLM\SYSTEM\CS2\Services\Tcpip\..\{593A6C32-B52A-49BB-B438-100F46D81A20}: DhcpNameServer=85.255.115.60,85.255.112.87 HKLM\SYSTEM\CS2\Services\Tcpip\..\{593A6C32-B52A-49BB-B438-100F46D81A20}: NameServer=85.255.115.60,85.255.112.87 HKLM\SYSTEM\CS2\Services\Tcpip\..\{BAF27415-7A8C-4647-87C9-363AAE67FDE0}: NameServer=85.255.115.60,85.255.112.87 HKLM\SYSTEM\CS2\Services\Tcpip\..\{C3E6B25B-4F37-4FEB-A5AC-4CBCC0CE5D0F}: DhcpNameServer=85.255.115.60,85.255.112.87 HKLM\SYSTEM\CS3\Services\Tcpip\..\{5CD2D80C-813E-4E02-A4C7-9B3BADBC17CB}: NameServer=80.10.246.1 80.10.246.132 HKLM\SYSTEM\CS2\Services\Tcpip\Parameters: NameServer=85.255.115.60 85.255.112.87
  13. Rapport smit.. SmitFraudFix v2.195 Rapport fait à 22:07:49,28, 25/08/2007 Executé à partir de C:\Documents and Settings\LF\Mes documents\Mes T‚l‚chargements\SmitfraudFix OS: Microsoft Windows XP [version 5.1.2600] - Windows_NT Le type du système de fichiers est NTFS Fix executé en mode normal »»»»»»»»»»»»»»»»»»»»»»»» DNS Avant Fix Description: WAN (PPP/SLIP) Interface DNS Server Search Order: 80.10.246.1 DNS Server Search Order: 80.10.246.132 HKLM\SYSTEM\CCS\Services\Tcpip\..\{5CD2D80C-813E-4E02-A4C7-9B3BADBC17CB}: NameServer=80.10.246.1 80.10.246.132 HKLM\SYSTEM\CS2\Services\Tcpip\..\{593A6C32-B52A-49BB-B438-100F46D81A20}: DhcpNameServer=85.255.115.60,85.255.112.87 HKLM\SYSTEM\CS2\Services\Tcpip\..\{593A6C32-B52A-49BB-B438-100F46D81A20}: NameServer=85.255.115.60,85.255.112.87 HKLM\SYSTEM\CS2\Services\Tcpip\..\{BAF27415-7A8C-4647-87C9-363AAE67FDE0}: NameServer=85.255.115.60,85.255.112.87 HKLM\SYSTEM\CS2\Services\Tcpip\..\{C3E6B25B-4F37-4FEB-A5AC-4CBCC0CE5D0F}: DhcpNameServer=85.255.115.60,85.255.112.87 HKLM\SYSTEM\CS3\Services\Tcpip\..\{5CD2D80C-813E-4E02-A4C7-9B3BADBC17CB}: NameServer=80.10.246.1 80.10.246.132 HKLM\SYSTEM\CS2\Services\Tcpip\Parameters: NameServer=85.255.115.60 85.255.112.87 »»»»»»»»»»»»»»»»»»»»»»»» DNS Après Fix Description: WAN (PPP/SLIP) Interface DNS Server Search Order: 80.10.246.1 DNS Server Search Order: 80.10.246.132 HKLM\SYSTEM\CCS\Services\Tcpip\..\{5CD2D80C-813E-4E02-A4C7-9B3BADBC17CB}: NameServer=80.10.246.1 80.10.246.132 HKLM\SYSTEM\CS2\Services\Tcpip\..\{593A6C32-B52A-49BB-B438-100F46D81A20}: DhcpNameServer=85.255.115.60,85.255.112.87 HKLM\SYSTEM\CS2\Services\Tcpip\..\{593A6C32-B52A-49BB-B438-100F46D81A20}: NameServer=85.255.115.60,85.255.112.87 HKLM\SYSTEM\CS2\Services\Tcpip\..\{BAF27415-7A8C-4647-87C9-363AAE67FDE0}: NameServer=85.255.115.60,85.255.112.87 HKLM\SYSTEM\CS2\Services\Tcpip\..\{C3E6B25B-4F37-4FEB-A5AC-4CBCC0CE5D0F}: DhcpNameServer=85.255.115.60,85.255.112.87 HKLM\SYSTEM\CS3\Services\Tcpip\..\{5CD2D80C-813E-4E02-A4C7-9B3BADBC17CB}: NameServer=80.10.246.1 80.10.246.132 HKLM\SYSTEM\CS2\Services\Tcpip\Parameters: NameServer=85.255.115.60 85.255.112.87 http://forum.zebulon.fr/style_images/1/fol...icons/icon1.gif
  14. Bonjour Gof.Si tu as réussi à bronzer tu es super très fort! On y retourne. Je dois t'avouer que je suis un ignoble individu car j'aurais dû te dire que j'avais essayé la dernière version de kaspersky avant de retourner à Mcafee. K me trouvait bien Zlob.Dnschanger sans préciser qu'il s'agissait d'un trojan mais en signalant la présence d'un mot de passe. J'ai fait le scan en ligne : KASPERSKY ON-LINE SCANNER REPORT Saturday, August 25, 2007 1:22:17 PM Système d'exploitation : Microsoft Windows XP Home Edition, Service Pack 2 (Build 2600) Kaspersky On-line Scanner version : 5.0.83.0 Dernière mise à jour de la base antivirus Kaspersky : 25/08/2007 Enregistrements dans la base antivirus Kaspersky : 365634 Paramètres d'analyse Analyser avec la base antivirus suivante standard Analyser les archives vrai Analyser les bases de messagerie vrai Cible de l'analyse Poste de travail C:\ D:\ E:\ Statistiques de l'analyse Total d'objets analysés 56516 Nombre de virus trouvés 0 Nombre d'objets infectés 0 / 0 Nombre d'objets suspects 0 Durée de l'analyse 01:02:59 Nom de l'objet infecté Nom du virus Dernière action C:\Documents and Settings\All Users\Application Data\McAfee\MNA\NAData L'objet est verrouillé ignoré C:\Documents and Settings\All Users\Application Data\McAfee\MPF\data\log.edb L'objet est verrouillé ignoré C:\Documents and Settings\All Users\Application Data\McAfee\MSC\Logs\Events.dat L'objet est verrouillé ignoré C:\Documents and Settings\All Users\Application Data\McAfee\MSC\Logs\{DA5762BC-CB01-42E0-A973-4CBEF2E9C435}.log L'objet est verrouillé ignoré C:\Documents and Settings\All Users\Application Data\McAfee\MSC\McUsers.dat L'objet est verrouillé ignoré C:\Documents and Settings\All Users\Application Data\McAfee\VirusScan\Data\TFR1.tmp L'objet est verrouillé ignoré C:\Documents and Settings\All Users\Application Data\McAfee\VirusScan\Logs\OAS.Log L'objet est verrouillé ignoré C:\Documents and Settings\All Users\Application Data\Microsoft\Network\Downloader\qmgr0.dat L'objet est verrouillé ignoré C:\Documents and Settings\All Users\Application Data\Microsoft\Network\Downloader\qmgr1.dat L'objet est verrouillé ignoré C:\Documents and Settings\LF\Application Data\McAfee\MBK\ARBUSFILE.GDB L'objet est verrouillé ignoré C:\Documents and Settings\LF\Cookies\index.dat L'objet est verrouillé ignoré C:\Documents and Settings\LF\Local Settings\Application Data\ApplicationHistory\McAfeeDataBackup.exe.e548c4c.ini.inuse L'objet est verrouillé ignoré C:\Documents and Settings\LF\Local Settings\Application Data\Microsoft\Windows\UsrClass.dat L'objet est verrouillé ignoré C:\Documents and Settings\LF\Local Settings\Application Data\Microsoft\Windows\UsrClass.dat.LOG L'objet est verrouillé ignoré C:\Documents and Settings\LF\Local Settings\Historique\History.IE5\index.dat L'objet est verrouillé ignoré C:\Documents and Settings\LF\Local Settings\Temp\fb_1700.lck L'objet est verrouillé ignoré C:\Documents and Settings\LF\Local Settings\Temp\Free Download Manager\tic4D.tmp L'objet est verrouillé ignoré C:\Documents and Settings\LF\Local Settings\Temp\Free Download Manager\tic4F.tmp L'objet est verrouillé ignoré C:\Documents and Settings\LF\Local Settings\Temp\~DFF6D8.tmp L'objet est verrouillé ignoré C:\Documents and Settings\LF\Local Settings\Temporary Internet Files\AntiPhishing\B3BB5BBA-E7D5-40AB-A041-A5B1C0B26C8F.dat L'objet est verrouillé ignoré C:\Documents and Settings\LF\Local Settings\Temporary Internet Files\Content.IE5\index.dat L'objet est verrouillé ignoré C:\Documents and Settings\LF\NTUSER.DAT L'objet est verrouillé ignoré C:\Documents and Settings\LF\ntuser.dat.LOG L'objet est verrouillé ignoré C:\Documents and Settings\LocalService\Local Settings\Application Data\Microsoft\Windows\UsrClass.dat L'objet est verrouillé ignoré C:\Documents and Settings\LocalService\Local Settings\Application Data\Microsoft\Windows\UsrClass.dat.LOG L'objet est verrouillé ignoré C:\Documents and Settings\LocalService\NTUSER.DAT L'objet est verrouillé ignoré C:\Documents and Settings\LocalService\ntuser.dat.LOG L'objet est verrouillé ignoré C:\Documents and Settings\NetworkService\Local Settings\Application Data\Microsoft\Windows\UsrClass.dat L'objet est verrouillé ignoré C:\Documents and Settings\NetworkService\Local Settings\Application Data\Microsoft\Windows\UsrClass.dat.LOG L'objet est verrouillé ignoré C:\Documents and Settings\NetworkService\NTUSER.DAT L'objet est verrouillé ignoré C:\Documents and Settings\NetworkService\ntuser.dat.LOG L'objet est verrouillé ignoré C:\sti.log L'objet est verrouillé ignoré C:\System Volume Information\_restore{2D081E92-40B0-4D11-86A6-AF667022EB05}\RP23\change.log L'objet est verrouillé ignoré C:\WINDOWS\Debug\PASSWD.LOG L'objet est verrouillé ignoré C:\WINDOWS\SchedLgU.Txt L'objet est verrouillé ignoré C:\WINDOWS\SoftwareDistribution\EventCache\{9BAB70E4-9EA9-43B3-8559-7172A74F12A5}.bin L'objet est verrouillé ignoré C:\WINDOWS\SoftwareDistribution\ReportingEvents.log L'objet est verrouillé ignoré C:\WINDOWS\Sti_Trace.log L'objet est verrouillé ignoré C:\WINDOWS\SYSTEM32\CONFIG\AppEvent.Evt L'objet est verrouillé ignoré C:\WINDOWS\SYSTEM32\CONFIG\DEFAULT L'objet est verrouillé ignoré C:\WINDOWS\SYSTEM32\CONFIG\DEFAULT.LOG L'objet est verrouillé ignoré C:\WINDOWS\SYSTEM32\CONFIG\Internet.evt L'objet est verrouillé ignoré C:\WINDOWS\SYSTEM32\CONFIG\SAM L'objet est verrouillé ignoré C:\WINDOWS\SYSTEM32\CONFIG\SAM.LOG L'objet est verrouillé ignoré C:\WINDOWS\SYSTEM32\CONFIG\SecEvent.Evt L'objet est verrouillé ignoré C:\WINDOWS\SYSTEM32\CONFIG\SECURITY L'objet est verrouillé ignoré C:\WINDOWS\SYSTEM32\CONFIG\SECURITY.LOG L'objet est verrouillé ignoré C:\WINDOWS\SYSTEM32\CONFIG\SOFTWARE L'objet est verrouillé ignoré C:\WINDOWS\SYSTEM32\CONFIG\SOFTWARE.LOG L'objet est verrouillé ignoré C:\WINDOWS\SYSTEM32\CONFIG\SysEvent.Evt L'objet est verrouillé ignoré C:\WINDOWS\SYSTEM32\CONFIG\SYSTEM L'objet est verrouillé ignoré C:\WINDOWS\SYSTEM32\CONFIG\SYSTEM.LOG L'objet est verrouillé ignoré C:\WINDOWS\SYSTEM32\H323LOG.TXT L'objet est verrouillé ignoré C:\WINDOWS\SYSTEM32\WBEM\Repository\FS\INDEX.BTR L'objet est verrouillé ignoré C:\WINDOWS\SYSTEM32\WBEM\Repository\FS\INDEX.MAP L'objet est verrouillé ignoré C:\WINDOWS\SYSTEM32\WBEM\Repository\FS\MAPPING.VER L'objet est verrouillé ignoré C:\WINDOWS\SYSTEM32\WBEM\Repository\FS\MAPPING1.MAP L'objet est verrouillé ignoré C:\WINDOWS\SYSTEM32\WBEM\Repository\FS\MAPPING2.MAP L'objet est verrouillé ignoré C:\WINDOWS\SYSTEM32\WBEM\Repository\FS\OBJECTS.DATA L'objet est verrouillé ignoré C:\WINDOWS\SYSTEM32\WBEM\Repository\FS\OBJECTS.MAP L'objet est verrouillé ignoré C:\WINDOWS\temp\mcafee_nrpe2Loegk0UAMQ L'objet est verrouillé ignoré C:\WINDOWS\temp\mcmsc_njRAQshPBtubGfb L'objet est verrouillé ignoré C:\WINDOWS\temp\mcmsc_R4fvbAlvbkch4Xx L'objet est verrouillé ignoré C:\WINDOWS\temp\mcmsc_xO0w7Rxe7KUX4mh L'objet est verrouillé ignoré C:\WINDOWS\wiadebug.log L'objet est verrouillé ignoré C:\WINDOWS\wiaservc.log L'objet est verrouillé ignoré C:\WINDOWS\WindowsUpdate.log L'objet est verrouillé ignoré Analyse terminée. J'ai fait un scan Spybot qui ne trouve plus rien depuis que l'on a modifié les adresses il me semble. --- Search result list --- Félicitations!: Aucun mouchard n'a été trouvé. () --- Spybot - Search & Destroy version: 1.4 (build: 20050523) --- 2005-05-31 blindman.exe (1.0.0.1) 2005-05-31 SpybotSD.exe (1.4.0.3) 2005-05-31 TeaTimer.exe (1.4.0.2) 2007-08-25 unins000.exe (51.41.0.0) 2005-05-31 Update.exe (1.4.0.0) 2007-05-23 advcheck.dll (1.5.3.0) 2005-05-31 aports.dll (2.1.0.0) 2005-05-31 borlndmm.dll (7.0.4.453) 2005-05-31 delphimm.dll (7.0.4.453) 2005-05-31 SDHelper.dll (1.4.0.0) 2007-07-31 Tools.dll (2.1.2.0) 2005-05-31 UnzDll.dll (1.73.1.1) 2005-05-31 ZipDll.dll (1.73.2.0) 2007-08-22 Includes\Cookies.sbi (*) 2007-07-25 Includes\Dialer.sbi (*) 2007-08-22 Includes\DialerC.sbi (*) 2007-07-11 Includes\Hijackers.sbi (*) 2007-08-22 Includes\HijackersC.sbi (*) 2007-07-25 Includes\Keyloggers.sbi (*) 2007-08-22 Includes\KeyloggersC.sbi (*) 2004-11-29 Includes\LSP.sbi (*) 2007-08-01 Includes\Malware.sbi (*) 2007-08-22 Includes\MalwareC.sbi (*) 2007-08-22 Includes\PUPS.sbi (*) 2007-08-22 Includes\PUPSC.sbi (*) 2007-08-22 Includes\Revision.sbi (*) 2007-05-30 Includes\Security.sbi (*) 2007-08-22 Includes\SecurityC.sbi (*) 2007-08-01 Includes\Spybots.sbi (*) 2007-08-22 Includes\SpybotsC.sbi (*) 2007-08-21 Includes\Tracks.uti 2007-08-01 Includes\Trojans.sbi (*) 2007-08-22 Includes\TrojansC.sbi (*) 2007-06-06 Plugins\TCPIPAddress.dll --- System information --- Windows XP (Build: 2600) Service Pack 2 / .NETFramework / 1.1: Microsoft .NET Framework 1.1 Hotfix (KB928366) / .NETFramework / 1.1: Microsoft .NET Framework 1.1 Service Pack 1 (KB867460) / DataAccess: Microsoft Data Access Components KB870669 / DataAccess: Security Update for Microsoft Data Access Components / DirectX / DX9 / SP1: Correctif pour DirectX 9 - KB839643 / Microsoft .NET Framework 2.0: This Security Update is for Microsoft .NET Framework 2.0. \n If you later install a more recent service pack, this Security Update will be uninstalled automatically. \n For more information, visit http://support.microsoft.com/kb/917283 / Microsoft .NET Framework 2.0: This Security Update is for Microsoft .NET Framework 2.0. \n If you later install a more recent service pack, this Security Update will be uninstalled automatically. \n For more information, visit http://support.microsoft.com/kb/922770 / Microsoft .NET Framework 2.0: This Security Update is for Microsoft .NET Framework 2.0. \n If you later install a more recent service pack, this Security Update will be uninstalled automatically. \n For more information, visit http://support.microsoft.com/kb/928365 / Step By Step Interactive Training / SP2: Mise à jour de sécurité pour Step by Step Interactive Training (KB898458) / Step By Step Interactive Training / SP2: Mise à jour de sécurité pour Step by Step Interactive Training (KB923723) / Windows / SP1: Microsoft Internationalized Domain Names Mitigation APIs / Windows / SP1: Microsoft National Language Support Downlevel APIs / Windows Media Format 11 SDK: Hotfix for Windows Media Format 11 SDK (KB929399) / Windows Media Player: Correctif pour le Lecteur Windows Media [Voir Q828026 pour plus d'informations] / Windows Media Player / SP0: Correctif pour le Lecteur Windows Media [Voir Q828026 pour plus d'informations] / Windows Media Player: Windows Media Update 817787 / Windows Media Player 10: Mise à jour de sécurité pour Lecteur Windows Media 10 (KB911565) / Windows Media Player 10: Mise à jour de sécurité pour Lecteur Windows Media 10 (KB917734) / Windows Media Player 11: Mise à jour de sécurité pour Lecteur Windows Media 11 (KB936782) / Windows Media Player 6.4: Mise à jour de sécurité pour Lecteur Windows Media 6.4 (KB925398) / Windows XP / SP0: Mise à jour de sécurité pour Windows Internet Explorer 7 (KB928090) / Windows XP / SP0: Mise à jour de sécurité pour Windows Internet Explorer 7 (KB929969) / Windows XP / SP0: Mise à jour de sécurité pour Windows Internet Explorer 7 (KB931768) / Windows XP / SP0: Mise à jour de sécurité pour Windows Internet Explorer 7 (KB933566) / Windows XP / SP0: Mise à jour de sécurité pour Windows Internet Explorer 7 (KB937143) / Windows XP / SP0: Mise à jour de sécurité pour Windows Internet Explorer 7 (KB938127) / Windows XP / SP10: Microsoft Compression Client Pack 1.0 for Windows XP / Windows XP / SP2: Windows XP Service Pack 2 / Windows XP / SP3: Correctif Windows XP - KB834707 / Windows XP / SP3: Correctif Windows XP - KB867282 / Windows XP / SP3: Correctif Windows XP - KB873333 / Windows XP / SP3: Correctif Windows XP - KB873339 / Windows XP / SP3: Mise à jour de sécurité pour Windows XP (KB883939) / Windows XP / SP3: Correctif Windows XP - KB885250 / Windows XP / SP3: Correctif Windows XP - KB885835 / Windows XP / SP3: Correctif Windows XP - KB885836 / Windows XP / SP3: Correctif Windows XP - KB886185 / Windows XP / SP3: Correctif Windows XP - KB887472 / Windows XP / SP3: Correctif Windows XP - KB887742 / Windows XP / SP3: Correctif Windows XP - KB888113 / Windows XP / SP3: Correctif Windows XP - KB888302 / Windows XP / SP3: Mise à jour de sécurité pour Windows XP (KB890046) / Windows XP / SP3: Correctif Windows XP - KB890047 / Windows XP / SP3: Correctif Windows XP - KB890175 / Windows XP / SP3: Correctif Windows XP - KB890859 / Windows XP / SP3: Correctif Windows XP - KB890923 / Windows XP / SP3: Correctif Windows XP - KB891781 / Windows XP / SP3: Mise à jour de sécurité pour Windows XP (KB893066) / Windows XP / SP3: Correctif Windows XP - KB893086 / Windows XP / SP3: Mise à jour de sécurité pour Windows XP (KB893756) / Windows XP / SP3: Windows Installer 3.1 (KB893803) / Windows XP / SP3: Windows Installer 3.1 (KB893803) / Windows XP / SP3: Mise à jour pour Windows XP (KB894391) / Windows XP / SP3: Mise à jour de sécurité pour Windows XP (KB896358) / Windows XP / SP3: Mise à jour de sécurité pour Windows XP (KB896422) / Windows XP / SP3: Mise à jour de sécurité pour Windows XP (KB896423) / Windows XP / SP3: Mise à jour de sécurité pour Windows XP (KB896424) / Windows XP / SP3: Mise à jour de sécurité pour Windows XP (KB896428) / Windows XP / SP3: Mise à jour de sécurité pour Windows XP (KB896688) / Windows XP / SP3: Mise à jour pour Windows XP (KB896727) / Windows XP / SP3: Mise à jour pour Windows XP (KB898461) / Windows XP / SP3: Mise à jour de sécurité pour Windows XP (KB899587) / Windows XP / SP3: Mise à jour de sécurité pour Windows XP (KB899588) / Windows XP / SP3: Mise à jour de sécurité pour Windows XP (KB899591) / Windows XP / SP3: Mise à jour pour Windows XP (KB900485) / Windows XP / SP3: Mise à jour de sécurité pour Windows XP (KB900725) / Windows XP / SP3: Mise à jour de sécurité pour Windows XP (KB901017) / Windows XP / SP3: Mise à jour de sécurité pour Windows XP (KB901214) / Windows XP / SP3: Mise à jour de sécurité pour Windows XP (KB902400) / Windows XP / SP3: Mise à jour de sécurité pour Windows XP (KB903235) / Windows XP / SP3: Mise à jour de sécurité pour Windows XP (KB904706) / Windows XP / SP3: Mise à jour pour Windows XP (KB904942) / Windows XP / SP3: Mise à jour de sécurité pour Windows XP (KB905414) / Windows XP / SP3: Mise à jour de sécurité pour Windows XP (KB905749) / Windows XP / SP3: Mise à jour de sécurité pour Windows XP (KB905915) / Windows XP / SP3: Mise à jour de sécurité pour Windows XP (KB908519) / Windows XP / SP3: Mise à jour de sécurité pour Windows XP (KB908531) / Windows XP / SP3: Mise à jour pour Windows XP (KB910437) / Windows XP / SP3: Mise à jour de sécurité pour Windows XP (KB911280) / Windows XP / SP3: Mise à jour de sécurité pour Windows XP (KB911562) / Windows XP / SP3: Mise à jour de sécurité pour Windows XP (KB911567) / Windows XP / SP3: Mise à jour de sécurité pour Windows XP (KB911927) / Windows XP / SP3: Mise à jour de sécurité pour Windows XP (KB912812) / Windows XP / SP3: Mise à jour de sécurité pour Windows XP (KB912919) / Windows XP / SP3: Mise à jour de sécurité pour Windows XP (KB913446) / Windows XP / SP3: Mise à jour de sécurité pour Windows XP (KB913580) / Windows XP / SP3: Mise à jour de sécurité pour Windows XP (KB914388) / Windows XP / SP3: Mise à jour de sécurité pour Windows XP (KB914389) / Windows XP / SP3: Correctif pour Windows XP (KB914440) / Windows XP / SP3: Hotfix for Windows XP (KB915865) / Windows XP / SP3: Mise à jour de sécurité pour Windows XP (KB916281) / Windows XP / SP3: Mise à jour pour Windows XP (KB916595) / Windows XP / SP3: Mise à jour de sécurité pour Windows XP (KB917159) / Windows XP / SP3: Mise à jour de sécurité pour Windows XP (KB917344) / Windows XP / SP3: Mise à jour de sécurité pour Windows XP (KB917422) / Windows XP / SP3: Mise à jour de sécurité pour Windows XP (KB917953) / Windows XP / SP3: Mise à jour de sécurité pour Windows XP (KB918118) / Windows XP / SP3: Mise à jour de sécurité pour Windows XP (KB918439) / Windows XP / SP3: Mise à jour de sécurité pour Windows XP (KB918899) / Windows XP / SP3: Mise à jour de sécurité pour Windows XP (KB919007) / Windows XP / SP3: Mise à jour de sécurité pour Windows XP (KB920213) / Windows XP / SP3: Mise à jour de sécurité pour Windows XP (KB920214) / Windows XP / SP3: Mise à jour pour Windows XP (KB920342) / Windows XP / SP3: Mise à jour de sécurité pour Windows XP (KB920670) / Windows XP / SP3: Mise à jour de sécurité pour Windows XP (KB920683) / Windows XP / SP3: Mise à jour de sécurité pour Windows XP (KB920685) / Windows XP / SP3: Mise à jour pour Windows XP (KB920872) / Windows XP / SP3: Mise à jour de sécurité pour Windows XP (KB921398) / Windows XP / SP3: Mise à jour de sécurité pour Windows XP (KB921503) / Windows XP / SP3: Mise à jour de sécurité pour Windows XP (KB921883) / Windows XP / SP3: Mise à jour pour Windows XP (KB922582) / Windows XP / SP3: Mise à jour de sécurité pour Windows XP (KB922616) / Windows XP / SP3: Mise à jour de sécurité pour Windows XP (KB922760) / Windows XP / SP3: Mise à jour de sécurité pour Windows XP (KB922819) / Windows XP / SP3: Mise à jour de sécurité pour Windows XP (KB923191) / Windows XP / SP3: Mise à jour de sécurité pour Windows XP (KB923414) / Windows XP / SP3: Mise à jour de sécurité pour Windows XP (KB923694) / Windows XP / SP3: Mise à jour de sécurité pour Windows XP (KB923980) / Windows XP / SP3: Mise à jour de sécurité pour Windows XP (KB924191) / Windows XP / SP3: Mise à jour de sécurité pour Windows XP (KB924270) / Windows XP / SP3: Mise à jour de sécurité pour Windows XP (KB924496) / Windows XP / SP3: Mise à jour de sécurité pour Windows XP (KB924667) / Windows XP / SP3: Correctif pour Windows XP (KB924867) / Windows XP / SP3: Mise à jour de sécurité pour Windows XP (KB925486) / Windows XP / SP3: Mise à jour pour Windows XP (KB925720) / Windows XP / SP3: Mise à jour pour Windows XP (KB925876) / Windows XP / SP3: Mise à jour de sécurité pour Windows XP (KB925902) / Windows XP / SP3: Hotfix for Windows XP (KB926239) / Windows XP / SP3: Mise à jour de sécurité pour Windows XP (KB926255) / Windows XP / SP3: Mise à jour de sécurité pour Windows XP (KB926436) / Windows XP / SP3: Mise à jour de sécurité pour Windows XP (KB927779) / Windows XP / SP3: Mise à jour de sécurité pour Windows XP (KB927802) / Windows XP / SP3: Mise à jour pour Windows XP (KB927891) / Windows XP / SP3: Mise à jour de sécurité pour Windows XP (KB928255) / Windows XP / SP3: Mise à jour de sécurité pour Windows XP (KB928843) / Windows XP / SP3: Mise à jour de sécurité pour Windows XP (KB929123) / Windows XP / SP3: Mise à jour pour Windows XP (KB929338) / Windows XP / SP3: Mise à jour de sécurité pour Windows XP (KB930178) / Windows XP / SP3: Mise à jour pour Windows XP (KB930916) / Windows XP / SP3: Mise à jour de sécurité pour Windows XP (KB931261) / Windows XP / SP3: Mise à jour de sécurité pour Windows XP (KB931784) / Windows XP / SP3: Mise à jour pour Windows XP (KB931836) / Windows XP / SP3: Mise à jour de sécurité pour Windows XP (KB932168) / Windows XP / SP3: Mise à jour de sécurité pour Windows XP (KB935839) / Windows XP / SP3: Mise à jour de sécurité pour Windows XP (KB935840) / Windows XP / SP3: Mise à jour de sécurité pour Windows XP (KB936021) / Windows XP / SP3: Mise à jour pour Windows XP (KB936357) / Windows XP / SP3: Mise à jour pour Windows XP (KB938828) / Windows XP / SP3: Mise à jour de sécurité pour Windows XP (KB938829) / XML Paper Specification Shared Components Pack 1.0: XML Paper Specification Shared Components Pack 1.0 --- Startup entries list --- Located: HK_LM:Run, Dell Photo AIO Printer 922 command: "C:\Program Files\Dell Photo AIO Printer 922\dlbtbmgr.exe" file: C:\Program Files\Dell Photo AIO Printer 922\dlbtbmgr.exe size: 290816 MD5: b00e8f6e00de82b7a10a3043decc53ed Located: HK_LM:Run, DLBTCATS command: rundll32 C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\DLBTtime.dll,_RunDLLEntry@16 file: Located: HK_LM:Run, Logitech Hardware Abstraction Layer command: KHALMNPR.EXE file: C:\WINDOWS\KHALMNPR.EXE size: 28160 MD5: 60c2d0115b1b1fac72a194cff1a56494 Located: HK_LM:Run, MBkLogOnHook command: C:\Program Files\McAfee\MBK\LogOnHook.exe file: C:\Program Files\McAfee\MBK\LogOnHook.exe size: 20480 MD5: ad32fdd7e1c04631da81b68f7072d29e Located: HK_LM:Run, McAfee Backup command: C:\Program Files\McAfee\MBK\McAfeeDataBackup.exe file: C:\Program Files\McAfee\MBK\McAfeeDataBackup.exe size: 4838952 MD5: 61a452152de82d97f2c20c9467c05d23 Located: HK_LM:Run, SunJavaUpdateSched command: "C:\Program Files\Java\jre1.6.0_02\bin\jusched.exe" file: C:\Program Files\Java\jre1.6.0_02\bin\jusched.exe size: 132496 MD5: 896e712a34d654a337c8cbb9deb07200 Located: HK_LM:Run, Adobe Reader Speed Launcher (DISABLED) command: "C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe" file: C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe size: 40048 MD5: 66d4456c920e21bd2188f8cc33680df5 Located: HK_LM:Run, Creative WebCam Tray (DISABLED) command: C:\Program Files\Creative\Shared Files\CAMTRAY.EXE file: C:\Program Files\Creative\Shared Files\CAMTRAY.EXE size: 184320 MD5: b016babfc870d351a30afdc1f8413493 Located: HK_LM:Run, SunJavaUpdateSched (DISABLED) command: "C:\Program Files\Java\jre1.6.0_02\bin\jusched.exe" file: C:\Program Files\Java\jre1.6.0_02\bin\jusched.exe size: 132496 MD5: 896e712a34d654a337c8cbb9deb07200 Located: HK_LM:Run, TkBellExe (DISABLED) command: "C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe" -osboot file: C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe size: 185896 MD5: 1eda1c63e0d2ae1aebdf98083454079c Located: HK_CU:Run, ctfmon.exe command: C:\WINDOWS\system32\ctfmon.exe file: C:\WINDOWS\system32\ctfmon.exe size: 15360 MD5: 64e41e8fee655b03e3f19ded21ba5118 Located: HK_CU:Run, Free Uploader Oe Integration command: C:\Program Files\Free Download Manager\FUM\fumoei.exe file: C:\Program Files\Free Download Manager\FUM\fumoei.exe size: 40960 MD5: 99528ac475755a70f130e4f5b956a395 Located: HK_CU:Run, ctfmon.exe (DISABLED) command: C:\WINDOWS\system32\ctfmon.exe file: C:\WINDOWS\system32\ctfmon.exe size: 15360 MD5: 64e41e8fee655b03e3f19ded21ba5118 Located: HK_CU:Run, Mozilla Thunderbird (DISABLED) command: "C:\Program Files\Mozilla Thunderbird\thunderbird.exe" file: C:\Program Files\Mozilla Thunderbird\thunderbird.exe size: 8472936 MD5: 456a3d4b4cf20077ea6540d1f21b08b9 Located: Démarrage (tous utilisateurs), Logitech SetPoint.lnk command: C:\Program Files\Logitech\SetPoint\SetPoint.exe file: C:\Program Files\Logitech\SetPoint\SetPoint.exe size: 450560 MD5: 57781b2d6c4ddbf753d820472462e445 Located: Démarrage (utilisateur), ERUNT AutoBackup.lnk command: C:\Program Files\ERUNT\AUTOBACK.EXE file: C:\Program Files\ERUNT\AUTOBACK.EXE size: 38912 MD5: e00de20f0f6bed5cd2160247ddc9443b Located: Démarrage (utilisateur), OpenOffice.org 2.2.lnk command: C:\Program Files\OpenOffice.org 2.2\program\quickstart.exe file: C:\Program Files\OpenOffice.org 2.2\program\quickstart.exe size: 393216 MD5: 7636c40413bb9ac278bd2c8ae24e3e0c Located: System.ini, crypt32chain command: crypt32.dll file: crypt32.dll Located: System.ini, cryptnet command: cryptnet.dll file: cryptnet.dll Located: System.ini, cscdll command: cscdll.dll file: cscdll.dll Located: System.ini, ScCertProp command: wlnotify.dll file: wlnotify.dll Located: System.ini, Schedule command: wlnotify.dll file: wlnotify.dll Located: System.ini, sclgntfy command: sclgntfy.dll file: sclgntfy.dll Located: System.ini, SensLogn command: WlNotify.dll file: WlNotify.dll Located: System.ini, termsrv command: wlnotify.dll file: wlnotify.dll Located: System.ini, WgaLogon command: WgaLogon.dll file: WgaLogon.dll Located: System.ini, wlballoon command: wlnotify.dll file: wlnotify.dll --- Browser helper object list --- {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} (Aide pour le lien d'Adobe PDF Reader) BHO name: CLSID name: Aide pour le lien d'Adobe PDF Reader description: Adobe Acrobat reader classification: Legitimate known filename: AcroIEhelper.ocx<br>AcroIEhelper.dll info link: http://www.adobe.com/products/acrobat/readstep2.html info source: TonyKlein Path: C:\Program Files\Fichiers communs\Adobe\Acrobat\ActiveX\ Long name: AcroIEHelper.dll Short name: ACROIE~1.DLL Date (created): 22/10/2006 23:08:42 Date (last access): 25/08/2007 15:26:46 Date (last write): 22/10/2006 23:08:42 Filesize: 62080 Attributes: archive MD5: C11F6A1F61481E24BE3FDC06EA6F7D2A CRC32: E388508F Version: 8.0.0.456 {2B9F5787-88A5-4945-90E7-C4B18563BC5E} (QFX Software KeyScrambler) BHO name: QFX Software KeyScrambler CLSID name: CKeyScramblerBHO Object Path: C:\Program Files\KeyScrambler\ Long name: KeyScramblerIE.dll Short name: KEYSCR~1.DLL Date (created): 20/07/2007 22:17:00 Date (last access): 25/08/2007 14:25:30 Date (last write): 07/08/2007 22:47:00 Filesize: 712800 Attributes: archive MD5: 098FB124CB598FD530649E0BFFFABF42 CRC32: 2558A8C9 Version: 1.2.1.0 {53707962-6F74-2D53-2644-206D7942484F} () BHO name: CLSID name: description: Spybot-S&D IE Browser plugin classification: Legitimate known filename: SDhelper.dll info link: http://spybot.eon.net.au/ info source: Patrick M. Kolla Path: C:\PROGRA~1\SPYBOT~1\ Long name: SDHelper.dll Short name: Date (created): 25/08/2007 15:37:42 Date (last access): 25/08/2007 15:37:42 Date (last write): 31/05/2005 01:04:00 Filesize: 853672 Attributes: archive MD5: 250D787A5712D7768DDC133B3E477759 CRC32: D4589A41 Version: 1.4.0.0 {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} (SSVHelper Class) BHO name: CLSID name: SSVHelper Class Path: C:\Program Files\Java\jre1.6.0_02\bin\ Long name: ssv.dll Short name: Date (created): 21/07/2007 22:39:18 Date (last access): 25/08/2007 14:25:30 Date (last write): 12/07/2007 04:00:36 Filesize: 501136 Attributes: archive MD5: D6137540BDF0F9F9B9055C60ADD8007A CRC32: 29E910AF Version: 6.0.20.6 {7DB2D5A0-7241-4E79-B68D-6309F01C5231} (scriptproxy) BHO name: scriptproxy CLSID name: scriptproxy Path: c:\program files\mcafee\virusscan\ Long name: scriptcl.dll Short name: Date (created): 11/08/2007 14:14:26 Date (last access): 25/08/2007 15:36:56 Date (last write): 22/12/2006 16:02:40 Filesize: 67136 Attributes: archive MD5: 196CCD7A9076A9D937EF39ED52332688 CRC32: C3E8AA9F Version: 13.3.2.101 {CC59E0F9-7E43-44FA-9FAA-8377850BF205} (FDMIECookiesBHO Class) BHO name: CLSID name: FDMIECookiesBHO Class Path: C:\Program Files\Free Download Manager\ Long name: iefdm2.dll Short name: Date (created): 24/08/2007 22:14:20 Date (last access): 25/08/2007 15:45:24 Date (last write): 25/07/2007 22:44:06 Filesize: 90112 Attributes: archive MD5: F887DD35C9C50BB69C970EA3B7EC9BE2 CRC32: 2F3F731F Version: 637.0.0.5 --- ActiveX list --- {0EB0E74A-2A76-4AB3-A7FB-9BD8C29F7F75} (CKAVWebScan Object) DPF name: CLSID name: CKAVWebScan Object Installer: C:\WINDOWS\Downloaded Program Files\kavwebscan.inf Codebase: http://webscanner.kaspersky.fr/kavwebscan_unicode.cab description: classification: Legitimate known filename: info link: info source: Safer Networking Ltd. Path: C:\WINDOWS\system32\Kaspersky Lab\Kaspersky Online Scanner\ Long name: kavwebscan.dll Short name: KAVWEB~1.DLL Date (created): 20/03/2006 13:17:20 Date (last access): 25/08/2007 14:25:30 Date (last write): 20/03/2006 13:17:20 Filesize: 798720 Attributes: archive MD5: F74B09086C2097BC535C5DCCCD3402AC CRC32: 01AA9D3D Version: 5.0.83.0 {17492023-C23A-453E-A040-C7C580BBF700} (Windows Genuine Advantage Validation Tool) DPF name: CLSID name: Windows Genuine Advantage Validation Tool Installer: C:\WINDOWS\Downloaded Program Files\LegitCheckControl.inf Codebase: http://go.microsoft.com/fwlink/?linkid=39204 description: classification: Legitimate known filename: LegitCheckControl.DLL info link: info source: Safer Networking Ltd. Path: C:\WINDOWS\system32\ Long name: LegitCheckControl.dll Short name: LEGITC~1.DLL Date (created): 12/07/2005 18:04:22 Date (last access): 25/08/2007 14:25:30 Date (last write): 15/02/2007 19:01:04 Filesize: 1476992 Attributes: archive MD5: 6299685540C149FED6DBFD2CD587D1F4 CRC32: 6C1D4BDA Version: 1.7.17.0 {30528230-99f7-4bb4-88d8-fa1d4f56a2ab} (YInstStarter Class) DPF name: CLSID name: YInstStarter Class Installer: C:\Program Files\Yahoo!\Common\yinst.inf Codebase: C:\Program Files\Yahoo!\Common\yinsthelper.dll description: Yahoo! Installation helper classification: Legitimate known filename: %SystemRoot%\Downloaded Program Files\yinsthelper.dll info link: info source: Patrick M. Kolla {4ED9DDF0-7479-4BBE-9335-5A1EDB1D8A21} () DPF name: CLSID name: Installer: Codebase: description: classification: Legitimate known filename: mcinsctl.dll info link: info source: Safer Networking Ltd. {8AD9C840-044E-11D1-B3E9-00805F499D93} (Java Runtime Environment 1.6.0) DPF name: Java Runtime Environment 1.6.0 CLSID name: Java Plug-in 1.6.0_02 Installer: Codebase: http://java.sun.com/update/1.6.0/jinstall-...indows-i586.cab description: Sun Java classification: Legitimate known filename: %PROGRAM FILES%\JabaSoft\JRE\*\Bin\npjava131.dll info link: info source: Patrick M. Kolla Path: C:\Program Files\Java\jre1.6.0_02\bin\ Long name: npjpi160_02.dll Short name: NPJPI1~1.DLL Date (created): 12/07/2007 02:22:38 Date (last access): 25/08/2007 14:25:30 Date (last write): 12/07/2007 04:00:36 Filesize: 132496 Attributes: archive MD5: E3811F1A1C5063C941EC0E2766C3EA39 CRC32: AEFD3747 Version: 6.0.20.6 {BCC0FF27-31D9-4614-A68E-C18E1ADA4389} () DPF name: CLSID name: Installer: C:\WINDOWS\Downloaded Program Files\McGDMgr.inf Codebase: http://download.mcafee.com/molbin/shared/m...,26/mcgdmgr.cab description: classification: Legitimate known filename: McGDMgr.dll info link: info source: Safer Networking Ltd. {CAFEEFAC-0015-0000-0004-ABCDEFFEDCBA} () DPF name: CLSID name: Installer: Codebase: description: classification: Legitimate known filename: npjpi150_04.dll info link: info source: Safer Networking Ltd. {CAFEEFAC-0015-0000-0006-ABCDEFFEDCBA} () DPF name: CLSID name: Installer: Codebase: description: classification: Legitimate known filename: npjpi150_06.dll info link: info source: Safer Networking Ltd. {CAFEEFAC-0015-0000-0008-ABCDEFFEDCBA} () DPF name: CLSID name: Installer: Codebase: description: classification: Legitimate known filename: NPJPI150_08.dll info link: info source: Safer Networking Ltd. {CAFEEFAC-0015-0000-0009-ABCDEFFEDCBA} () DPF name: CLSID name: Installer: Codebase: description: classification: Legitimate known filename: NPJPI150_09.dll info link: info source: Safer Networking Ltd. {CAFEEFAC-0015-0000-0010-ABCDEFFEDCBA} () DPF name: CLSID name: Installer: Codebase: description: classification: Legitimate known filename: npjpi150_10.dll info link: info source: Safer Networking Ltd. {CAFEEFAC-0015-0000-0011-ABCDEFFEDCBA} () DPF name: CLSID name: Installer: Codebase: description: classification: Legitimate known filename: npjpi150_11.dll info link: info source: Safer Networking Ltd. {CAFEEFAC-0016-0000-0002-ABCDEFFEDCBA} (Java Runtime Environment 1.6.0) DPF name: Java Runtime Environment 1.6.0 CLSID name: Java Plug-in 1.6.0_02 Installer: Codebase: http://java.sun.com/update/1.6.0/jinstall-...indows-i586.cab description: classification: Legitimate known filename: npjpi160_02.dll info link: info source: Safer Networking Ltd. Path: C:\Program Files\Java\jre1.6.0_02\bin\ Long name: npjpi160_02.dll Short name: NPJPI1~1.DLL Date (created): 12/07/2007 02:22:38 Date (last access): 25/08/2007 16:00:00 Date (last write): 12/07/2007 04:00:36 Filesize: 132496 Attributes: archive MD5: E3811F1A1C5063C941EC0E2766C3EA39 CRC32: AEFD3747 Version: 6.0.20.6 {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} (Java Runtime Environment 1.6.0) DPF name: Java Runtime Environment 1.6.0 CLSID name: Java Plug-in 1.6.0_02 Installer: Codebase: http://java.sun.com/update/1.6.0/jinstall-...indows-i586.cab description: classification: Legitimate known filename: npjpi150_06.dll info link: info source: Safer Networking Ltd. Path: C:\Program Files\Java\jre1.6.0_02\bin\ Long name: npjpi160_02.dll Short name: NPJPI1~1.DLL Date (created): 12/07/2007 02:22:38 Date (last access): 25/08/2007 16:00:00 Date (last write): 12/07/2007 04:00:36 Filesize: 132496 Attributes: archive MD5: E3811F1A1C5063C941EC0E2766C3EA39 CRC32: AEFD3747 Version: 6.0.20.6 {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) DPF name: CLSID name: Shockwave Flash Object Installer: C:\WINDOWS\Downloaded Program Files\swflash.inf Codebase: http://download.macromedia.com/pub/shockwa...ash/swflash.cab description: Macromedia Shockwave Flash Player classification: Legitimate known filename: info link: info source: Patrick M. Kolla Path: C:\WINDOWS\system32\Macromed\Flash\ Long name: Flash9b.ocx Short name: Date (created): 09/11/2006 15:46:28 Date (last access): 25/08/2007 14:25:30 Date (last write): 09/11/2006 15:46:28 Filesize: 2262648 Attributes: readonly archive MD5: F3B3EE66CA76C94510555ABE9D00A353 CRC32: A51F3CB4 Version: 9.0.28.0 --- Process list --- PID: 0 ( 0) [system] PID: 596 ( 4) \SystemRoot\System32\smss.exe PID: 644 ( 596) \??\C:\WINDOWS\system32\csrss.exe PID: 668 ( 596) \??\C:\WINDOWS\system32\winlogon.exe PID: 712 ( 668) C:\WINDOWS\system32\services.exe size: 108544 MD5: 63DCDE1A0D86EEB8924D6738FF616EAD PID: 724 ( 668) C:\WINDOWS\system32\lsass.exe size: 13312 MD5: 259AF82A0932EEA4F316F92DB94707B6 PID: 896 ( 712) C:\WINDOWS\system32\svchost.exe size: 14336 MD5: 2979B03D5382A602623C0535B16AB9C0 PID: 976 ( 712) C:\WINDOWS\system32\svchost.exe size: 14336 MD5: 2979B03D5382A602623C0535B16AB9C0 PID: 1092 ( 712) C:\WINDOWS\System32\svchost.exe size: 14336 MD5: 2979B03D5382A602623C0535B16AB9C0 PID: 1136 ( 712) C:\WINDOWS\System32\svchost.exe size: 14336 MD5: 2979B03D5382A602623C0535B16AB9C0 PID: 1428 (1388) C:\WINDOWS\Explorer.EXE size: 1037312 MD5: D0288319660EDCFED07C7E74C4EA38A5 PID: 1444 ( 712) C:\WINDOWS\system32\spoolsv.exe size: 57856 MD5: DA81EC57ACD4CDC3D4C51CF3D409AF9F PID: 1724 (1428) C:\Program Files\Dell Photo AIO Printer 922\dlbtbmgr.exe size: 290816 MD5: B00E8F6E00DE82B7A10A3043DECC53ED PID: 1748 (1428) C:\Program Files\McAfee\MBK\McAfeeDataBackup.exe size: 4838952 MD5: 61A452152DE82D97F2C20C9467C05D23 PID: 1768 (1428) C:\Program Files\Java\jre1.6.0_02\bin\jusched.exe size: 132496 MD5: 896E712A34D654A337C8CBB9DEB07200 PID: 1784 (1428) C:\WINDOWS\system32\ctfmon.exe size: 15360 MD5: 64E41E8FEE655B03E3F19DED21BA5118 PID: 1800 (1724) C:\Program Files\Dell Photo AIO Printer 922\dlbtbmon.exe size: 102400 MD5: CBFB501E78970EEE3044FE0839836695 PID: 1808 (1428) C:\Program Files\Free Download Manager\FUM\fumoei.exe size: 40960 MD5: 99528AC475755A70F130E4F5B956A395 PID: 1824 (1428) C:\Program Files\Logitech\SetPoint\SetPoint.exe size: 450560 MD5: 57781B2D6C4DDBF753D820472462E445 PID: 1868 (1856) C:\Program Files\OpenOffice.org 2.2\program\soffice.exe size: 2359296 MD5: 92972B746849766DDB3AF2D1F12FC676 PID: 1884 (1868) C:\Program Files\OpenOffice.org 2.2\program\soffice.BIN size: 2510848 MD5: 0D601C7C65AF904254C45A0FAA37F3C5 PID: 1900 (1824) C:\Program Files\Fichiers communs\Logitech\KHAL\KHALMNPR.EXE size: 28160 MD5: 60C2D0115B1B1FAC72A194CFF1A56494 PID: 300 ( 712) c:\program files\a-squared free\a2service.exe size: 217208 MD5: C0C09160883A964B1B6E6CF32643A394 PID: 384 ( 712) C:\Program Files\McAfee\MBK\MBackMonitor.exe size: 71208 MD5: 9BB480AD3EE8B406594411F2140BD882 PID: 1668 ( 712) C:\Program Files\Fichiers communs\McAfee\HackerWatch\HWAPI.exe size: 540776 MD5: 38BCCF016B694A745E1CDBC0B080A59C PID: 1712 ( 712) C:\PROGRA~1\McAfee\MSC\mcmscsvc.exe size: 361560 MD5: BB8A45E65BE310996A201F8A75646A8D PID: 1736 ( 712) c:\program files\fichiers communs\mcafee\mna\mcnasvc.exe size: 2209320 MD5: 4C5B97B76C13D9154AA91D0C754E79E3 PID: 2016 ( 712) C:\PROGRA~1\McAfee\VIRUSS~1\mcods.exe size: 362064 MD5: D984FAF698966AA360C1702EF623C3F9 PID: 2040 ( 712) C:\PROGRA~1\McAfee\MSC\mcpromgr.exe size: 493144 MD5: 14313FF5203DF7CB53E8D2F18F59D4D2 PID: 148 ( 712) c:\PROGRA~1\FICHIE~1\mcafee\redirsvc\redirsvc.exe size: 256096 MD5: DAF486036F2F6EE9DBA390D3CF2E5C29 PID: 200 ( 712) C:\PROGRA~1\McAfee\VIRUSS~1\mcshield.exe size: 144960 MD5: B74CEBEF7F2126F68CDC060C855E5AAB PID: 1620 ( 712) C:\PROGRA~1\McAfee\VIRUSS~1\mcsysmon.exe size: 643664 MD5: 9770A8706BBA3C4CBEA998D2A6BF2D08 PID: 452 ( 712) C:\Program Files\McAfee\MPF\MPFSrv.exe size: 841256 MD5: B2979980FC750125FFACF9B75E005248 PID: 540 ( 712) C:\WINDOWS\System32\nvsvc32.exe size: 73728 MD5: 557015B4919C4A688771221C1338EED0 PID: 628 ( 712) C:\WINDOWS\system32\svchost.exe size: 14336 MD5: 2979B03D5382A602623C0535B16AB9C0 PID: 2472 ( 896) c:\PROGRA~1\mcafee.com\agent\mcagent.exe size: 566872 MD5: 4C4F3DE9CF6E0F8B7A4AE639FF981BFF PID: 2784 ( 712) C:\WINDOWS\System32\alg.exe size: 44544 MD5: B43CC0F07752D456038CD0268E4D84E9 PID: 4060 (1428) C:\Program Files\Mozilla Firefox\firefox.exe size: 7644520 MD5: E169EEF3C383D7A86F11B60220822A34 PID: 1156 ( 896) C:\PROGRA~1\FREEDO~1\fdm.exe size: 2424879 MD5: FBE398533D7D8F5303C99C947C59DDB5 PID: 2384 (3200) C:\Program Files\Spybot - Search & Destroy\SpybotSD.exe size: 4393096 MD5: 09CA174A605B480318731E691DC98539 PID: 3240 ( 712) C:\WINDOWS\System32\svchost.exe size: 14336 MD5: 2979B03D5382A602623C0535B16AB9C0 PID: 4 ( 0) System --- Browser start & search pages list --- Spybot - Search & Destroy browser pages report, 25/08/2007 16:00:00 HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main\Local Page C:\windows\system32\blank.htm HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main\Search Page http://www.microsoft.com/isapi/redir.dll?p...amp;ar=iesearch HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main\Start Page http://www.lemonde.fr/ HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main\Default_Search_URL http://www.microsoft.com/isapi/redir.dll?p...amp;ar=iesearch HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\SearchUrl\@ http://home.microsoft.com/access/autosearch.asp?p=%s HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Main\Local Page C:\windows\system32\blank.htm HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Main\Search Page http://www.microsoft.com/isapi/redir.dll?p...amp;ar=iesearch HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Main\Start Page about:blank HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Main\Default_Page_URL http://www.microsoft.com/isapi/redir.dll?p...&ar=msnhome HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Main\Default_Search_URL http://www.microsoft.com/isapi/redir.dll?p...amp;ar=iesearch HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Search\SearchAssistant http://ie.search.msn.com/{SUB_RFC1766}/srchasst/srchasst.htm HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Search\CustomizeSearch http://ie.search.msn.com/{SUB_RFC1766}/srchasst/srchcust.htm HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\SearchUrl\@ http://home.microsoft.com/access/autosearch.asp?p=%s --- Winsock Layered Service Provider list --- Protocol 0: MSAFD Tcpip [TCP/IP] GUID: {E70F1AA0-AB8B-11CF-8CA3-00805F48A192} Filename: %SystemRoot%\system32\mswsock.dll Description: Microsoft Windows NT/2k/XP IP protocol DB filename: %SystemRoot%\system32\mswsock.dll DB protocol: MSAFD Tcpip [*] Protocol 1: MSAFD Tcpip [uDP/IP] GUID: {E70F1AA0-AB8B-11CF-8CA3-00805F48A192} Filename: %SystemRoot%\system32\mswsock.dll Description: Microsoft Windows NT/2k/XP IP protocol DB filename: %SystemRoot%\system32\mswsock.dll DB protocol: MSAFD Tcpip [*] Protocol 2: MSAFD Tcpip [RAW/IP] GUID: {E70F1AA0-AB8B-11CF-8CA3-00805F48A192} Filename: %SystemRoot%\system32\mswsock.dll Description: Microsoft Windows NT/2k/XP IP protocol DB filename: %SystemRoot%\system32\mswsock.dll DB protocol: MSAFD Tcpip [*] Protocol 3: RSVP UDP Service Provider GUID: {9D60A9E0-337A-11D0-BD88-0000C082E69A} Filename: %SystemRoot%\system32\rsvpsp.dll Description: Microsoft Windows NT/2k/XP RVSP DB filename: %SystemRoot%\system32\rsvpsp.dll DB protocol: RSVP * Service Provider Protocol 4: RSVP TCP Service Provider GUID: {9D60A9E0-337A-11D0-BD88-0000C082E69A} Filename: %SystemRoot%\system32\rsvpsp.dll Description: Microsoft Windows NT/2k/XP RVSP DB filename: %SystemRoot%\system32\rsvpsp.dll DB protocol: RSVP * Service Provider Protocol 5: MSAFD NetBIOS [\Device\NetBT_Tcpip_{593A6C32-B52A-49BB-B438-100F46D81A20}] SEQPACKET 5 GUID: {8D5F1830-C273-11CF-95C8-00805F48A192} Filename: %SystemRoot%\system32\mswsock.dll Description: Microsoft Windows NT/2k/XP NetBios protocol DB filename: %SystemRoot%\system32\mswsock.dll DB protocol: MSAFD NetBIOS * Protocol 6: MSAFD NetBIOS [\Device\NetBT_Tcpip_{593A6C32-B52A-49BB-B438-100F46D81A20}] DATAGRAM 5 GUID: {8D5F1830-C273-11CF-95C8-00805F48A192} Filename: %SystemRoot%\system32\mswsock.dll Description: Microsoft Windows NT/2k/XP NetBios protocol DB filename: %SystemRoot%\system32\mswsock.dll DB protocol: MSAFD NetBIOS * Protocol 7: MSAFD NetBIOS [\Device\NetBT_Tcpip_{BAF27415-7A8C-4647-87C9-363AAE67FDE0}] SEQPACKET 0 GUID: {8D5F1830-C273-11CF-95C8-00805F48A192} Filename: %SystemRoot%\system32\mswsock.dll Description: Microsoft Windows NT/2k/XP NetBios protocol DB filename: %SystemRoot%\system32\mswsock.dll DB protocol: MSAFD NetBIOS * Protocol 8: MSAFD NetBIOS [\Device\NetBT_Tcpip_{BAF27415-7A8C-4647-87C9-363AAE67FDE0}] DATAGRAM 0 GUID: {8D5F1830-C273-11CF-95C8-00805F48A192} Filename: %SystemRoot%\system32\mswsock.dll Description: Microsoft Windows NT/2k/XP NetBios protocol DB filename: %SystemRoot%\system32\mswsock.dll DB protocol: MSAFD NetBIOS * Protocol 9: MSAFD NetBIOS [\Device\NetBT_Tcpip_{C3E6B25B-4F37-4FEB-A5AC-4CBCC0CE5D0F}] SEQPACKET 2 GUID: {8D5F1830-C273-11CF-95C8-00805F48A192} Filename: %SystemRoot%\system32\mswsock.dll Description: Microsoft Windows NT/2k/XP NetBios protocol DB filename: %SystemRoot%\system32\mswsock.dll DB protocol: MSAFD NetBIOS * Protocol 10: MSAFD NetBIOS [\Device\NetBT_Tcpip_{C3E6B25B-4F37-4FEB-A5AC-4CBCC0CE5D0F}] DATAGRAM 2 GUID: {8D5F1830-C273-11CF-95C8-00805F48A192} Filename: %SystemRoot%\system32\mswsock.dll Description: Microsoft Windows NT/2k/XP NetBios protocol DB filename: %SystemRoot%\system32\mswsock.dll DB protocol: MSAFD NetBIOS * Protocol 11: MSAFD NetBIOS [\Device\NetBT_Tcpip_{CC569269-1970-4BF3-894A-DFDD514EAE21}] SEQPACKET 3 GUID: {8D5F1830-C273-11CF-95C8-00805F48A192} Filename: %SystemRoot%\system32\mswsock.dll Description: Microsoft Windows NT/2k/XP NetBios protocol DB filename: %SystemRoot%\system32\mswsock.dll DB protocol: MSAFD NetBIOS * Protocol 12: MSAFD NetBIOS [\Device\NetBT_Tcpip_{CC569269-1970-4BF3-894A-DFDD514EAE21}] DATAGRAM 3 GUID: {8D5F1830-C273-11CF-95C8-00805F48A192} Filename: %SystemRoot%\system32\mswsock.dll Description: Microsoft Windows NT/2k/XP NetBios protocol DB filename: %SystemRoot%\system32\mswsock.dll DB protocol: MSAFD NetBIOS * Protocol 13: MSAFD NetBIOS [\Device\NetBT_Tcpip_{165688C3-7373-48EA-B37C-2386E051EE56}] SEQPACKET 1 GUID: {8D5F1830-C273-11CF-95C8-00805F48A192} Filename: %SystemRoot%\system32\mswsock.dll Description: Microsoft Windows NT/2k/XP NetBios protocol DB filename: %SystemRoot%\system32\mswsock.dll DB protocol: MSAFD NetBIOS * Protocol 14: MSAFD NetBIOS [\Device\NetBT_Tcpip_{165688C3-7373-48EA-B37C-2386E051EE56}] DATAGRAM 1 GUID: {8D5F1830-C273-11CF-95C8-00805F48A192} Filename: %SystemRoot%\system32\mswsock.dll Description: Microsoft Windows NT/2k/XP NetBios protocol DB filename: %SystemRoot%\system32\mswsock.dll DB protocol: MSAFD NetBIOS * Protocol 15: MSAFD NetBIOS [\Device\NetBT_Tcpip_{5CD2D80C-813E-4E02-A4C7-9B3BADBC17CB}] SEQPACKET 4 GUID: {8D5F1830-C273-11CF-95C8-00805F48A192} Filename: %SystemRoot%\system32\mswsock.dll Description: Microsoft Windows NT/2k/XP NetBios protocol DB filename: %SystemRoot%\system32\mswsock.dll DB protocol: MSAFD NetBIOS * Protocol 16: MSAFD NetBIOS [\Device\NetBT_Tcpip_{5CD2D80C-813E-4E02-A4C7-9B3BADBC17CB}] DATAGRAM 4 GUID: {8D5F1830-C273-11CF-95C8-00805F48A192} Filename: %SystemRoot%\system32\mswsock.dll Description: Microsoft Windows NT/2k/XP NetBios protocol DB filename: %SystemRoot%\system32\mswsock.dll DB protocol: MSAFD NetBIOS * Namespace Provider 0: TCP/IP GUID: {22059D40-7E9E-11CF-AE5A-00AA00A7112B} Filename: %SystemRoot%\System32\mswsock.dll Description: Microsoft Windows NT/2k/XP TCP/IP name space provider DB filename: %SystemRoot%\system32\mswsock.dll DB protocol: TCP/IP Namespace Provider 1: NTDS GUID: {3B2637EE-E580-11CF-A555-00C04FD8D4AC} Filename: %SystemRoot%\System32\winrnr.dll Description: Microsoft Windows NT/2k/XP name space provider DB filename: %SystemRoot%\system32\winrnr.dll DB protocol: NTDS Namespace Provider 2: Espace de noms NLA (Network Location Awareness) GUID: {6642243A-3BA8-4AA6-BAA5-2E0BD71FDD83} Filename: %SystemRoot%\System32\mswsock.dll Description: Microsoft Windows NT/2k/XP name space provider DB filename: %SystemRoot%\system32\mswsock.dll DB protocol: NLA-Namespace --- Uninstall list --- 7-Zip 4.47 beta (7-Zip) uninstall cmd: "C:\Program Files\7-Zip\Uninstall.exe" a-squared Free 2.1 2.1 (a-squared Free_is1) install date: 20061108 install location: C:\Program Files\a-squared Free\ uninstall cmd: "C:\Program Files\a-squared Free\unins000.exe" publisher: Emsi Software GmbH comments: a-squared help link: http://forum.emsisoft.com Adobe Flash Player Plugin 9.0.45.0 (Adobe Flash Player Plugin) uninstall cmd: C:\WINDOWS\system32\Macromed\Flash\uninstall_plugin.exe publisher: Adobe Systems Incorporated Adobe SVG Viewer 3.0 3.0 (Adobe SVG Viewer) version (major): 3 install location: C:\WINDOWS\system32\Adobe\SVG Viewer 3.0 uninstall cmd: C:\Program Files\Fichiers communs\Adobe\SVG Viewer 3.0\Uninstall\Winstall.exe -u -fC:\Program Files\Fichiers communs\Adobe\SVG Viewer 3.0\Uninstall\Install.log publisher: Adobe Systems, Inc. (BackWeb-8876480 Uninstaller) BankPerfect 6.21 6.21 (BankPerfect) uninstall cmd: "C:\Program Files\BankPerfect\uninstall.exe" publisher: Fabio Chelly (Branding) ByeBye (ByeBye) uninstall cmd: C:\WINDOWS\unin040c.exe -f"C:\Program Files\ByeBye\DeIsL1.isu" -c"C:\Program Files\ByeBye\_ISREG32.DLL" CCleaner (remove only) (CCleaner) uninstall cmd: "C:\Program Files\CCleaner\uninst.exe" (Creative PC-CAM Center) uninstall cmd: RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{D43F13A1-1E39-4BD4-9682-DF889FE75421}\setup.exe" -l0x40c /remove Creative WebCam NX Driver (1.02.01.0827) (Creative PD1110) uninstall cmd: C:\WINDOWS\CtDrvIns.exe -uninstall -script P1110.uns -unsext NT -plugin p1110pin.dll -pluginres p1110pin.crl (Creative WebCam Monitor) uninstall cmd: RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{CA9EC1C6-3B51-11D6-B1A9-BCD2747AA951}\setup.exe" -l0x40c /remove Dell Photo AIO Printer 922 (Dell Photo AIO Printer 922) uninstall cmd: C:\WINDOWS\system32\spool\drivers\w32x86\3\DLBTUNST.EXE -NOLICENSE (dlatray.exe) uninstall cmd: C:\WINDOWS\System32\\MSIEXEC.EXE /x {1206EF92-2E83-4859-ACCB-2048C3CB7DA6} ERUNT 1.1j (ERUNT_is1) install location: C:\Program Files\ERUNT\ uninstall cmd: "C:\Program Files\ERUNT\unins000.exe" publisher: Lars Hederer help link: http://www.larshederer.homepage.t-online.de/erunt (expinst) FastStone Capture 5.3 (French) 5.3 (French) (FastStone Capture) uninstall cmd: C:\Program Files\FastStone Capture\uninst.exe publisher: FastStone Soft FastStone Image Viewer 3.2 3.2 (FastStone Image Viewer) uninstall cmd: C:\Program Files\FastStone Image Viewer\uninst.exe publisher: FastStone Soft FireTune (FireTune) uninstall cmd: C:\WINDOWS\iun6002.exe "C:\Program Files\FireTune\irunin.ini" Folderico 3.7.2 3.7.2 (Folderico) uninstall cmd: C:\Program Files\Folderico\uninst.exe publisher: Shedko ( www.softq.org ) Free Download Manager 2.5 (Free Download Manager_is1) install date: 20070824 install location: C:\Program Files\Free Download Manager\ uninstall cmd: "C:\Program Files\Free Download Manager\unins000.exe" publisher: FreeDownloadManager.ORG help link: http://www.freedownloadmanager.org/ HijackThis 2.0.2 2.0.2 (HijackThis) uninstall cmd: "C:\Program Files\Trend Micro\HijackThis\HijackThis.exe" /uninstall publisher: TrendMicro Microsoft Internationalized Domain Names Mitigation APIs (IDNMitigationAPIs) install date: 20061101 uninstall cmd: "C:\WINDOWS\$NtServicePackUninstallIDNMitigationAPIs$\spuninst\spuninst.exe" publisher: Microsoft Corporation Windows Internet Explorer 7 20061027.150806 (ie7) install date: 20070227 uninstall cmd: "C:\WINDOWS\ie7\spuninst\spuninst.exe" publisher: Microsoft Corporation help link: http://www.microsoft.com/ie Intel® 537EP V9x DF PCI Modem (Intel® 537EP V9x DF PCI Modem) uninstall cmd: rundll32 IntelCci.dll,iSMUninstallation "Intel® 537EP V9x DF PCI Modem" Kaspersky On-line Scanner 5.0.83.0 (Kaspersky On-line Scanner) estimated size: 6040 install location: C:\WINDOWS\system32\KASPER~1\KASPER~1 uninstall cmd: C:\WINDOWS\system32\KASPER~1\KASPER~1\kavuninstall.exe publisher: Kaspersky Lab contact: Customer Support Department help link: http://www.kaspersky.com/support.asp Kaspersky Online Scanner 5.0.83.0 (Kaspersky Online Scanner) estimated size: 6040 install location: C:\WINDOWS\system32\KASPER~1\KASPER~1 uninstall cmd: C:\WINDOWS\system32\KASPER~1\KASPER~1\kavuninstall.exe publisher: Kaspersky Lab contact: Customer Support Department help link: http://www.kaspersky.com/support.asp Microsoft Data Access Components KB870669 (KB870669) uninstall cmd: C:\WINDOWS\muninst.exe C:\WINDOWS\INF\KB870669.inf publisher: Microsoft Corporation help link: http://support.microsoft.com?kbid=KB870669 (KB884267) (KB885353) (KB886612) (KB887078) (KB887626) (KB888656) (KB889858) (KB891122) (KB892313) (KB893240) (KB893241) (KB895181) (KB895316) (KB895572) (KB897586) Mise à jour pour Windows XP (KB898461) 1 (KB898461) install date: 20050629 uninstall cmd: "C:\WINDOWS\$NtUninstallKB898461$\spuninst\spuninst.exe" publisher: Microsoft Corporation help link: http://support.microsoft.com?kbid=898461 (KB898549) (KB900399) Mise à jour pour Windows XP (KB900485) 2 (KB900485) install date: 20060426 uninstall cmd: "C:\WINDOWS\$NtUninstallKB900485$\spuninst\spuninst.exe" publisher: Microsoft Corporation help link: http://support.microsoft.com?kbid=900485 (KB902344) Mise à jour pour Windows XP (KB904942) 2 (KB904942) install date: 20061101 uninstall cmd: "C:\WINDOWS\$NtUninstallKB904942$\spuninst\spuninst.exe" publisher: Microsoft Corporation help link: http://support.microsoft.com?kbid=904942 Mise à jour de sécurité pour Windows XP (KB905915) 1 (KB905915) install date: 20051216 uninstall cmd: "C:\WINDOWS\$NtUninstallKB905915$\spuninst\spuninst.exe" publisher: Microsoft Corporation help link: http://support.microsoft.com?kbid=905915 (KB907658) Mise à jour de sécurité pour Windows XP (KB908519) 1 (KB908519) install date: 20060111 uninstall cmd: "C:\WINDOWS\$NtUninstallKB908519$\spuninst\spuninst.exe" publisher: Microsoft Corporation help link: http://support.microsoft.com?kbid=908519 Mise à jour de sécurité pour Windows XP (KB908531) 1 (KB908531) install date: 20060415 uninstall cmd: "C:\WINDOWS\$NtUninstallKB908531$\spuninst\spuninst.exe" publisher: Microsoft Corporation help link: http://support.microsoft.com?kbid=908531 Package de base Microsoft de service de chiffrement pour cartes à puce (KB909520) uninstall cmd: "C:\WINDOWS\$NtUninstallbasecsp$\spuninst\spuninst.exe" publisher: Microsoft Corporation Mise à jour pour Windows XP (KB910437) 1 (KB910437) install date: 20051216 uninstall cmd: "C:\WINDOWS\$NtUninstallKB910437$\spuninst\spuninst.exe" publisher: Microsoft Corporation help link: http://support.microsoft.com?kbid=910437 Mise à jour de sécurité pour Windows XP (KB911280) 1 (KB911280) install date: 20060615 uninstall cmd: "C:\WINDOWS\$NtUninstallKB911280$\spuninst\spuninst.exe" publisher: Microsoft Corporation help link: http://support.microsoft.com?kbid=911280 Mise à jour de sécurité pour Windows XP (KB911562) 1 (KB911562) install date: 20060415 uninstall cmd: "C:\WINDOWS\$NtUninstallKB911562$\spuninst\spuninst.exe" publisher: Microsoft Corporation help link: http://support.microsoft.com?kbid=911562 Mise à jour de sécurité pour Lecteur Windows Media (KB911564) (KB911564) install date: 20060214 uninstall cmd: "C:\WINDOWS\$NtUninstallKB911564$\spuninst\spuninst.exe" publisher: Microsoft Corporation help link: http://support.microsoft.com/?kbid=911564 Mise à jour de sécurité pour Lecteur Windows Media 10 (KB911565) (KB911565) install date: 20060214 uninstall cmd: "C:\WINDOWS\$NtUninstallKB911565$\spuninst\spuninst.exe" publisher: Microsoft Corporation help link: http://support.microsoft.com/?kbid=911565 Mise à jour de sécurité pour Windows XP (KB911567) 1 (KB911567) install date: 20060415 uninstall cmd: "C:\WINDOWS\$NtUninstallKB911567$\spuninst\spuninst.exe" publisher: Microsoft Corporation help link: http://support.microsoft.com?kbid=911567 (KB911854) Mise à jour de sécurité pour Windows XP (KB911927) 1 (KB911927) install date: 20060214 uninstall cmd: "C:\WINDOWS\$NtUninstallKB911927$\spuninst\spuninst.exe" publisher: Microsoft Corporation help link: http://support.microsoft.com?kbid=911927 Mise à jour de sécurité pour Windows XP (KB912812) 1 (KB912812) install date: 20060415 uninstall cmd: "C:\WINDOWS\$NtUninstallKB912812$\spuninst\spuninst.exe" publisher: Microsoft Corporation help link: http://support.microsoft.com?kbid=912812 Mise à jour de sécurité pour Windows XP (KB912919) 1 (KB912919) install date: 20060105 uninstall cmd: "C:\WINDOWS\$NtUninstallKB912919$\spuninst\spuninst.exe" publisher: Microsoft Corporation help link: http://support.microsoft.com?kbid=912919 Mise à jour de sécurité pour Windows XP (KB913446) 1 (KB913446) install date: 20060214 uninstall cmd: "C:\WINDOWS\$NtUninstallKB913446$\spuninst\spuninst.exe" publisher: Microsoft Corporation help link: http://support.microsoft.com?kbid=913446 Mise à jour de sécurité pour Windows XP (KB913580) 1 (KB913580) install date: 20060509 uninstall cmd: "C:\WINDOWS\$NtUninstallKB913580$\spuninst\spuninst.exe" publisher: Microsoft Corporation help link: http://support.microsoft.com?kbid=913580 Mise à jour de sécurité pour Windows XP (KB914388) 1 (KB914388) install date: 20060713 uninstall cmd: "C:\WINDOWS\$NtUninstallKB914388$\spuninst\spuninst.exe" publisher: Microsoft Corporation help link: http://support.microsoft.com?kbid=914388 Mise à jour de sécurité pour Windows XP (KB914389) 1 (KB914389) install date: 20060615 uninstall cmd: "C:\WINDOWS\$NtUninstallKB914389$\spuninst\spuninst.exe" publisher: Microsoft Corporation help link: http://support.microsoft.com?kbid=914389 Correctif pour Windows XP (KB914440) 12 (KB914440) install date: 20061101 uninstall cmd: "C:\WINDOWS\$NtUninstallKB914440$\spuninst\spuninst.exe" publisher: Microsoft Corporation help link: http://support.microsoft.com?kbid=914440 Hotfix for Windows XP (KB915865) 10 (KB915865) install date: 20061101 uninstall cmd: "C:\WINDOWS\$NtUninstallKB915865$\spuninst\spuninst.exe" publisher: Microsoft Corporation help link: http://support.microsoft.com?kbid=915865 Mise à jour de sécurité pour Windows XP (KB916281) 1 (KB916281) install date: 20060615 uninstall cmd: "C:\WINDOWS\$NtUninstallKB916281$\spuninst\spuninst.exe" publisher: Microsoft Corporation help link: http://support.microsoft.com?kbid=916281 Mise à jour pour Windows XP (KB916595) 1 (KB916595) install date: 20060713 uninstall cmd: "C:\WINDOWS\$NtUninstallKB916595$\spuninst\spuninst.exe" publisher: Microsoft Corporation help link: http://support.microsoft.com?kbid=916595 Mise à jour de sécurité pour Windows XP (KB917159) 1 (KB917159) install date: 20060713 uninstall cmd: "C:\WINDOWS\$NtUninstallKB917159$\spuninst\spuninst.exe" publisher: Microsoft Corporation help link: http://support.microsoft.com?kbid=917159 Mise à jour de sécurité pour Windows XP (KB917344) 1 (KB917344) install date: 20060615 uninstall cmd: "C:\WINDOWS\$NtUninstallKB917344$\spuninst\spuninst.exe" publisher: Microsoft Corporation help link: http://support.microsoft.com?kbid=917344 Mise à jour de sécurité pour Windows XP (KB917422) 1 (KB917422) install date: 20060809 uninstall cmd: "C:\WINDOWS\$NtUninstallKB917422$\spuninst\spuninst.exe" publisher: Microsoft Corporation help link: http://support.microsoft.com?kbid=917422 Mise à jour de sécurité pour Lecteur Windows Media 10 (KB917734) (KB917734_WMP10) install date: 20060615 uninstall cmd: "C:\WINDOWS\$NtUninstallKB917734_WMP10$\spuninst\spuninst.exe" publisher: Microsoft Corporation help link: http://support.microsoft.com/?kbid=917734 Mise à jour de sécurité pour Windows XP (KB917953) 1 (KB917953) install date: 20060615 uninstall cmd: "C:\WINDOWS\$NtUninstallKB917953$\spuninst\spuninst.exe" publisher: Microsoft Corporation help link: http://support.microsoft.com?kbid=917953 Mise à jour de sécurité pour Windows XP (KB918118) 1 (KB918118) install date: 20070216 uninstall cmd: "C:\WINDOWS\$NtUninstallKB918118$\spuninst\spuninst.exe" publisher: Microsoft Corporation help link: http://support.microsoft.com?kbid=918118 Mise à jour de sécurité pour Windows XP (KB918439) 1 (KB918439) install date: 20060615 uninstall cmd: "C:\WINDOWS\$NtUninstallKB918439$\spuninst\spuninst.exe" publisher: Microsoft Corporation help link: http://support.microsoft.com?kbid=918439 Mise à jour de sécurité pour Windows XP (KB918899) 1 (KB918899) install date: 20060809 uninstall cmd: "C:\WINDOWS\$NtUninstallKB918899$\spuninst\spuninst.exe" publisher: Microsoft Corporation help link: http://support.microsoft.com?kbid=918899 Mise à jour de sécurité pour Windows XP (KB919007) 1 (KB919007) install date: 20060918 uninstall cmd: "C:\WINDOWS\$NtUninstallKB919007$\spuninst\spuninst.exe" publisher: Microsoft Corporation help link: http://support.microsoft.com?kbid=919007 Mise à jour de sécurité pour Windows XP (KB920213) 1 (KB920213) install date: 20061116 uninstall cmd: "C:\WINDOWS\$NtUninstallKB920213$\spuninst\spuninst.exe" publisher: Microsoft Corporation help link: http://support.microsoft.com?kbid=920213 Mise à jour de sécurité pour Windows XP (KB920214) 1 (KB920214) install date: 20060809 uninstall cmd: "C:\WINDOWS\$NtUninstallKB920214$\spuninst\spuninst.exe" publisher: Microsoft Corporation help link: http://support.microsoft.com?kbid=920214 Mise à jour pour Windows XP (KB920342) 1 (KB920342) install date: 20061116 uninstall cmd: "C:\WINDOWS\$NtUninstallKB920342$\spuninst\spuninst.exe" publisher: Microsoft Corporation help link: http://support.microsoft.com?kbid=920342 Mise à jour de sécurité pour Windows XP (KB920670) 1 (KB920670) install date: 20060809 uninstall cmd: "C:\WINDOWS\$NtUninstallKB920670$\spuninst\spuninst.exe" publisher: Microsoft Corporation help link: http://support.microsoft.com?kbid=920670 Mise à jour de sécurité pour Windows XP (KB920683) 1 (KB920683) install date: 20060809 uninstall cmd: "C:\WINDOWS\$NtUninstallKB920683$\spuninst\spuninst.exe" publisher: Microsoft Corporation help link: http://support.microsoft.com?kbid=920683 Mise à jour de sécurité pour Windows XP (KB920685) 1 (KB920685) install date: 20060918 uninstall cmd: "C:\WINDOWS\$NtUninstallKB920685$\spuninst\spuninst.exe" publisher: Microsoft Corporation help link: http://support.microsoft.com?kbid=920685 Mise à jour pour Windows XP (KB920872) 1 (KB920872) install date: 20061027 uninstall cmd: "C:\WINDOWS\$NtUninstallKB920872$\spuninst\spuninst.exe" publisher: Microsoft Corporation help link: http://support.microsoft.com?kbid=920872 Mise à jour de sécurité pour Windows XP (KB921398) 1 (KB921398) install date: 20060809 uninstall cmd: "C:\WINDOWS\$NtUninstallKB921398$\spuninst\spuninst.exe" publisher: Microsoft Corporation help link: http://support.microsoft.com?kbid=921398 Mise à jour de sécurité pour Windows XP (KB921503) 1 (KB921503) install date: 20070815 uninstall cmd: "C:\WINDOWS\$NtUninstallKB921503$\spuninst\spuninst.exe" publisher: Microsoft Corporation help link: http://support.microsoft.com?kbid=921503 Mise à jour de sécurité pour Windows XP (KB921883) 1 (KB921883) install date: 20060808 uninstall cmd: "C:\WINDOWS\$NtUninstallKB921883$\spuninst\spuninst.exe" publisher: Microsoft Corporation help link: http://support.microsoft.com?kbid=921883 Mise à jour pour Windows XP (KB922582) 1 (KB922582) install date: 20060918 uninstall cmd: "C:\WINDOWS\$NtUninstallKB922582$\spuninst\spuninst.exe" publisher: Microsoft Corporation help link: http://support.microsoft.com?kbid=922582 Mise à jour de sécurité pour Windows XP (KB922616) 1 (KB922616) install date: 20060809 uninstall cmd: "C:\WINDOWS\$NtUninstallKB922616$\spuninst\spuninst.exe" publisher: Microsoft Corporation help link: http://support.microsoft.com?kbid=922616 Mise à jour de sécurité pour Windows XP (KB922760) 1 (KB922760) install date: 20061116 uninstall cmd: "C:\WINDOWS\$NtUninstallKB922760$\spuninst\spuninst.exe" publisher: Microsoft Corporation help link: http://support.microsoft.com?kbid=922760 Mise à jour de sécurité pour Windows XP (KB922819) 1 (KB922819) install date: 20061011 uninstall cmd: "C:\WINDOWS\$NtUninstallKB922819$\spuninst\spuninst.exe" publisher: Microsoft Corporation help link: http://support.microsoft.com?kbid=922819 Mise à jour de sécurité pour Windows XP (KB923191) 1 (KB923191) install date: 20061011 uninstall cmd: "C:\WINDOWS\$NtUninstallKB923191$\spuninst\spuninst.exe" publisher: Microsoft Corporation help link: http://support.microsoft.com?kbid=923191 Mise à jour de sécurité pour Windows XP (KB923414) 1 (KB923414) install date: 20061011 uninstall cmd: "C:\WINDOWS\$NtUninstallKB923414$\spuninst\spuninst.exe" publisher: Microsoft Corporation help link: http://support.microsoft.com?kbid=923414 Mise à jour de sécurité pour Windows XP (KB923694) 1 (KB923694) install date: 20061216 uninstall cmd: "C:\WINDOWS\$NtUninstallKB923694$\spuninst\spuninst.exe" publisher: Microsoft Corporation help link: http://support.microsoft.com?kbid=923694 Mise à jour de sécurité pour Step by Step Interactive Training (KB923723) 20050502.101010 (KB923723) install date: 20070216 uninstall cmd: "C:\WINDOWS\$NtUninstallKB923723$\spuninst\spuninst.exe" publisher: Microsoft Corporation help link: http://support.microsoft.com/kb/923723 Mise à jour de sécurité pour Windows XP (KB923789) (KB923789) uninstall cmd: C:\WINDOWS\system32\MacroMed\Flash\genuinst.exe C:\WINDOWS\system32\MacroMed\Flash\KB923789.inf publisher: Microsoft Corporation help link: http://support.microsoft.com?kbid=923789 Mise à jour de sécurité pour Windows XP (KB923980) 1 (KB923980) install date: 20061116 uninstall cmd: "C:\WINDOWS\$NtUninstallKB923980$\spuninst\spuninst.exe" publisher: Microsoft Corporation help link: http://support.microsoft.com?kbid=923980 Mise à jour de sécurité pour Windows XP (KB924191) 1 (KB924191) install date: 20061011 uninstall cmd: "C:\WINDOWS\$NtUninstallKB924191$\spuninst\spuninst.exe" publisher: Microsoft Corporation help link: http://support.microsoft.com?kbid=924191 Mise à jour de sécurité pour Windows XP (KB924270) 1 (KB924270) install date: 20061116 uninstall cmd: "C:\WINDOWS\$NtUninstallKB924270$\spuninst\spuninst.exe" publisher: Microsoft Corporation help link: http://support.microsoft.com?kbid=924270 Mise à jour de sécurité pour Windows XP (KB924496) 1 (KB924496) install date: 20061011 uninstall cmd: "C:\WINDOWS\$NtUninstallKB924496$\spuninst\spuninst.exe" publisher: Microsoft Corporation help link: http://support.microsoft.com?kbid=924496 Mise à jour de sécurité pour Windows XP (KB924667) 1 (KB924667) install date: 20070216 uninstall cmd: "C:\WINDOWS\$NtUninstallKB924667$\spuninst\spuninst.exe" publisher: Microsoft Corporation help link: http://support.microsoft.com?kbid=924667 Correctif pour Windows XP (KB924867) 1 (KB924867) install date: 20061023 uninstall cmd: "C:\WINDOWS\$NtUninstallKB924867$\spuninst\spuninst.exe" publisher: Microsoft Corporation help link: http://support.microsoft.com?kbid=924867 Mise à jour de sécurité pour Lecteur Windows Media 6.4 (KB925398) (KB925398_WMP64) install date: 20061216 uninstall cmd: "C:\WINDOWS\$NtUninstallKB925398_WMP64$\spuninst\spuninst.exe" publisher: Microsoft Corporation help link: http://support.microsoft.com/?kbid=925398 Mise à jour de sécurité pour Windows XP (KB925486) 1 (KB925486) install date: 20060926 uninstall cmd: "C:\WINDOWS\$NtUninstallKB925486$\spuninst\spuninst.exe" publisher: Microsoft Corporation help link: http://support.microsoft.com?kbid=925486 Mise à jour pour Windows XP (KB925720) 1 (KB925720) install date: 20070412 uninstall cmd: "C:\WINDOWS\$NtUninstallKB925720$\spuninst\spuninst.exe" publisher: Microsoft Corporation help link: http://support.microsoft.com?kbid=925720 Mise à jour pour Windows XP (KB925876) 1 (KB925876) install date: 20070412 uninstall cmd: "C:\WINDOWS\$NtUninstallKB925876$\spuninst\spuninst.exe" publisher: Microsoft Corporation help link: http://support.microsoft.com?kbid=925876 Mise à jour de sécurité pour Windows XP (KB925902) 1 (KB925902) install date: 20070404 uninstall cmd: "C:\WINDOWS\$NtUninstallKB925902$\spuninst\spuninst.exe" publisher: Microsoft Corporation help link: http://support.microsoft.com?kbid=925902 Hotfix for Windows XP (KB926239) 2 (KB926239) install date: 20061104 uninstall cmd: "C:\WINDOWS\$NtUninstallKB926239$\spuninst\spuninst.exe" publisher: Microsoft Corporation help link: http://support.microsoft.com?kbid=926239 Mise à jour de sécurité pour Windows XP (KB926255) 1 (KB926255) install date: 20061216 uninstall cmd: "C:\WINDOWS\$NtUninstallKB926255$\spuninst\spuninst.exe" publisher: Microsoft Corporation help link: http://support.microsoft.com?kbid=926255 Mise à jour de sécurité pour Windows XP (KB926436) 1 (KB926436) install date: 20070216 uninstall cmd: "C:\WINDOWS\$NtUninstallKB926436$\spuninst\spuninst.exe" publisher: Microsoft Corporation help link: http://support.microsoft.com?kbid=926436 Mise à jour de sécurité pour Windows XP (KB927779) 1 (KB927779) install date: 20070216 uninstall cmd: "C:\WINDOWS\$NtUninstallKB927779$\spuninst\spuninst.exe" publisher: Microsoft Corporation help link: http://support.microsoft.com?kbid=927779 Mise à jour de sécurité pour Windows XP (KB927802) 1 (KB927802) install date: 20070216 uninstall cmd: "C:\WINDOWS\$NtUninstallKB927802$\spuninst\spuninst.exe" publisher: Microsoft Corporation help link: http://support.microsoft.com?kbid=927802 Mise à jour pour Windows XP (KB927891) 3 (KB927891) install date: 20070523 uninstall cmd: "C:\WINDOWS\$NtUninstallKB927891$\spuninst\spuninst.exe" publisher: Microsoft Corporation help link: http://support.microsoft.com?kbid=927891 Mise à jour de sécurité pour Windows Internet Explorer 7 (KB928090) 20070117.120000 (KB928090-IE7) install date: 20070227 uninstall cmd: "C:\WINDOWS\ie7updates\KB928090-IE7\spuninst\spuninst.exe" publisher: Microsoft Corporation help link: http://support.microsoft.com?kbid=928090 Mise à jour de sécurité pour Windows XP (KB928255) 1 (KB928255) install date: 20070216 uninstall cmd: "C:\WINDOWS\$NtUninstallKB928255$\spuninst\spuninst.exe" publisher: Microsoft Corporation help link: http://support.microsoft.com?kbid=928255 Security Update pour Microsoft .NET Framework 2.0 (KB928365) 2 (KB928365.T1_1ToU569_1) uninstall cmd: C:\WINDOWS\system32\msiexec.exe /promptrestart /uninstall {8056AC9E-49C5-4375-9ADE-B2F862C9DF51} /package {7131646D-CD3C-40F4-97B9-CD9E4E6262EF} publisher: Microsoft Corporation help link: http://support.microsoft.com/kb/928365 Mise à jour de sécurité pour Windows XP (KB928843) 1 (KB928843) install date: 20070216 uninstall cmd: "C:\WINDOWS\$NtUninstallKB928843$\spuninst\spuninst.exe" publisher: Microsoft Corporation help link: http://support.microsoft.com?kbid=928843 Mise à jour de sécurité pour Windows XP (KB929123) 1 (KB929123) install date: 20070615 uninstall cmd: "C:\WINDOWS\$NtUninstallKB929123$\spuninst\spuninst.exe" publisher: Microsoft Corporation help link: http://support.microsoft.com?kbid=929123 Mise à jour pour Windows XP (KB929338) 1 (KB929338) install date: 20070314 uninstall cmd: "C:\WINDOWS\$NtUninstallKB929338$\spuninst\spuninst.exe" publisher: Microsoft Corporation help link: http://support.microsoft.com?kbid=929338 Hotfix for Windows Media Format 11 SDK (KB929399) (KB929399) install date: 20070314 uninstall cmd: "C:\WINDOWS\$NtUninstallKB929399$\spuninst\spuninst.exe" publisher: Microsoft Corporation help link: http://support.microsoft.com/?kbid=929399 Mise à jour de sécurité pour Windows XP (KB930178) 1 (KB930178) install date: 20070410 uninstall cmd: "C:\WINDOWS\$NtUninstallKB930178$\spuninst\spuninst.exe" publisher: Microsoft Corporation help link: http://support.microsoft.com?kbid=930178 Mise à jour pour Windows XP (KB930916) 1 (KB930916) install date: 20070508 uninstall cmd: "C:\WINDOWS\$NtUninstallKB930916$\spuninst\spuninst.exe" publisher: Microsoft Corporation help link: http://support.microsoft.com?kbid=930916 Mise à jour de sécurité pour Windows XP (KB931261) 1 (KB931261) install date: 20070410 uninstall cmd: "C:\WINDOWS\$NtUninstallKB931261$\spuninst\spuninst.exe" publisher: Microsoft Corporation help link: http://support.microsoft.com?kbid=931261 Mise à jour de sécurité pour Windows Internet Explorer 7 (KB931768) 1 (KB931768-IE7) install date: 20070508 uninstall cmd: "C:\WINDOWS\ie7updates\KB931768-IE7\spuninst\spuninst.exe" publisher: Microsoft Corporation help link: http://support.microsoft.com?kbid=931768 Mise à jour de sécurité pour Windows XP (KB931784) 1 (KB931784) install date: 20070411 uninstall cmd: "C:\WINDOWS\$NtUninstallKB931784$\spuninst\spuninst.exe" publisher: Microsoft Corporation help link: http://support.microsoft.com?kbid=931784 Mise à jour pour Windows XP (KB931836) 1 (KB931836) install date: 20070216 uninstall cmd: "C:\WINDOWS\$NtUninstallKB931836$\spuninst\spuninst.exe" publisher: Microsoft Corporation help link: http://support.microsoft.com?kbid=931836 Mise à jour de sécurité pour Windows XP (KB932168) 1 (KB932168) install date: 20070410 uninstall cmd: "C:\WINDOWS\$NtUninstallKB932168$\spuninst\spuninst.exe" publisher: Microsoft Corporation help link: http://support.microsoft.com?kbid=932168 Mise à jour de sécurité pour Windows Internet Explorer 7 (KB933566) 1 (KB933566-IE7) install date: 20070615 uninstall cmd: "C:\WINDOWS\ie7updates\KB933566-IE7\spuninst\spuninst.exe" publisher: Microsoft Corporation help link: http://support.microsoft.com?kbid=933566 Mise à jour de sécurité pour Windows XP (KB935839) 1 (KB935839) install date: 20070615 uninstall cmd: "C:\WINDOWS\$NtUninstallKB935839$\spuninst\spuninst.exe" publisher: Microsoft Corporation help link: http://support.microsoft.com?kbid=935839 Mise à jour de sécurité pour Windows XP (KB935840) 1 (KB935840) install date: 20070615 uninstall cmd: "C:\WINDOWS\$NtUninstallKB935840$\spuninst\spuninst.exe" publisher: Microsoft Corporation help link: http://support.microsoft.com?kbid=935840 Mise à jour de sécurité pour Windows XP (KB936021) 1 (KB936021) install date: 20070815 uninstall cmd: "C:\WINDOWS\$NtUninstallKB936021$\spuninst\spuninst.exe" publisher: Microsoft Corporation help link: http://support.microsoft.com?kbid=936021 Mise à jour pour Windows XP (KB936357) 1 (KB936357) install date: 20070711 uninstall cmd: "C:\WINDOWS\$NtUninstallKB936357$\spuninst\spuninst.exe" publisher: Microsoft Corporation help link: http://support.microsoft.com?kbid=936357 Mise à jour de sécurité pour Lecteur Windows Media 11 (KB936782) (KB936782_WMP11) install date: 20070815 uninstall cmd: "C:\WINDOWS\$NtUninstallKB936782_WMP11$\spuninst\spuninst.exe" publisher: Microsoft Corporation help link: http://support.microsoft.com/?kbid=936782 Mise à jour de sécurité pour Windows Internet Explorer 7 (KB937143) 1 (KB937143-IE7) install date: 20070815 uninstall cmd: "C:\WINDOWS\ie7updates\KB937143-IE7\spuninst\spuninst.exe" publisher: Microsoft Corporation help link: http://support.microsoft.com?kbid=937143 Mise à jour de sécurité pour Windows Internet Explorer 7 (KB938127) 1 (KB938127-IE7) install date: 20070815 uninstall cmd: "C:\WINDOWS\ie7updates\KB938127-IE7\spuninst\spuninst.exe" publisher: Microsoft Corporation help link: http://support.microsoft.com?kbid=938127 Mise à jour pour Windows XP (KB938828) 1 (KB938828) install date: 20070815 uninstall cmd: "C:\WINDOWS\$NtUninstallKB938828$\spuninst\spuninst.exe" publisher: Microsoft Corporation help link: http://support.microsoft.com?kbid=938828 Mise à jour de sécurité pour Windows XP (KB938829) 1 (KB938829) install date: 20070815 uninstall cmd: "C:\WINDOWS\$NtUninstallKB938829$\spuninst\spuninst.exe" publisher: Microsoft Corporation help link: http://support.microsoft.com?kbid=938829 KeyScrambler (KeyScrambler) uninstall cmd: C:\Program Files\KeyScrambler\uninstall.exe publisher: QFX Software Corporation help link: http://www.keyscrambler.com LedConsommation 4.1.7 (LedConsommation_is1) install location: C:\Program Files\LED\LedConsommation\ uninstall cmd: "C:\Program Files\LED\LedConsommation\unins000.exe" publisher: LED Microsoft .NET Framework 1.1 Hotfix (KB928366) (M928366) uninstall cmd: "C:\WINDOWS\Microsoft.NET\Framework\v1.1.4322\Updates\hotfix.exe" "C:\WINDOWS\Microsoft.NET\Framework\v1.1.4322\Updates\M928366\M928366Uninstall.msp" Macromedia Shockwave Player 10.1.0.11 (Macromedia Shockwave Player) uninstall cmd: C:\WINDOWS\SYSTEM32\Macromed\SHOCKW~1\UNWISE.EXE C:\WINDOWS\SYSTEM32\Macromed\SHOCKW~1\Install.log publisher: Macromedia, Inc. help link: http://www.macromedia.com/fr/support/shockwave Manuel d'utilisation de Creative WebCam NX (Français) (Manuel d'utilisation de Creative WebCam NX French) uninstall cmd: C:\WINDOWS\IsUn040c.exe -f"C:\Program Files\Creative\Creative WebCam NX\Manuel d'utilisation de Creative WebCam NX\French\CTManual.isu" Microsoft .NET Framework 1.1 (Microsoft .NET Framework 1.1 (1033)) uninstall cmd: msiexec.exe /X {CB2F7EDD-9D1F-43C1-90FC-4F52EAE172A1} readme: file://C:\WINDOWS\Microsoft.NET\Framework\v1.1.4322\1033\RepairRedist.htm Microsoft .NET Framework 2.0 (Microsoft .NET Framework 2.0) install location: C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\ uninstall cmd: C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\Microsoft .NET Framework 2.0\install.exe publisher: Microsoft Corporation help link: http://go.microsoft.com/fwlink/?LinkId=45396 Module de prise en charge linguistique de Microsoft .NET Framework 2.0 - FRA (Microsoft .NET Framework 2.0 Language Pack - FRA) install location: C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\ uninstall cmd: C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\Microsoft .NET Framework 2.0 Language Pack - FRA\install.exe publisher: Microsoft Corporation help link: http://go.microsoft.com/fwlink/?LinkId=45396 Microsoft .NET Framework 3.0 (Microsoft .NET Framework 3.0) install location: c:\WINDOWS\Microsoft.NET\Framework\v3.0\ uninstall cmd: c:\WINDOWS\Microsoft.NET\Framework\v3.0\Microsoft .NET Framework 3.0\setup.exe publisher: Microsoft Corporation help link: http://go.microsoft.com/fwlink/?LinkId=51019 Module de prise en charge linguistique du français de Microsoft .NET Framework 3.0 (Microsoft .NET Framework 3.0 French Language Pack) install location: c:\WINDOWS\Microsoft.NET\Framework\v3.0\ uninstall cmd: c:\WINDOWS\Microsoft.NET\Framework\v3.0\Microsoft .NET Framework 3.0 French Language Pack\setup.exe publisher: Microsoft Corporation help link: http://go.microsoft.com/fwlink/?LinkId=51019 (Microsoft Interactive Training) uninstall cmd: C:\WINDOWS\IsUn040c.exe -fC:\WINDOWS\orun32.isu Mira version 2.4.0.0 (Mira_is1) uninstall cmd: "C:\Program Files\SoftChris\Mira\unins000.exe" Mozilla Firefox (2.0.0.6) 2.0.0.6 (fr) (Mozilla Firefox (2.0.0.6)) install location: C:\Program Files\Mozilla Firefox uninstall cmd: C:\Program Files\Mozilla Firefox\uninstall\helper.exe publisher: Mozilla comments: Mozilla Firefox Mozilla Thunderbird (2.0.0.6) 2.0.0.6 (fr) (Mozilla Thunderbird (2.0.0.6)) install location: C:\Program Files\Mozilla Thunderbird uninstall cmd: C:\Program Files\Mozilla Thunderbird\uninstall\helper.exe publisher: Mozilla comments: Mozilla Thunderbird McAfee SecurityCenter (MSC) uninstall cmd: C:\Program Files\McAfee\MSC\mcuninst.exe Microsoft Compression Client Pack 1.0 for Windows XP 1 (MSCompPackV1) install date: 20061104 uninstall cmd: "C:\WINDOWS\$NtUninstallMSCompPackV1$\spuninst\spuninst.exe" publisher: Microsoft Corporation help link: http://go.microsoft.com/fwlink/?LinkId=74087 MicroStaff WINASPI NT (MWASPINT) uninstall cmd: C:\MWASPINT\uninst.exe Microsoft National Language Support Downlevel APIs (NLSDownlevelMapping) install date: 20061101 uninstall cmd: "C:\WINDOWS\$NtServicePackUninstallNLSDownlevelMapping$\spuninst\spuninst.exe" publisher: Microsoft Corporation NVIDIA Windows 2000/XP Display Drivers (NVIDIA) uninstall cmd: rundll32.exe C:\WINDOWS\System32\nvinstnt.dll,NvUninstallNT4 nvdd.inf PC Wizard 2007.1.72 (PC Wizard 2007_is1) install date: 20070129 install location: C:\Program Files\PC Wizard 2007\ uninstall cmd: "C:\Program Files\PC Wizard 2007\unins000.exe" publisher: Laurent KUTIL & Franck DELATTRE help link: http://www.cpuid.com (PCHealth) uninstall cmd: rundll32.exe setupapi.dll,InstallHinfSection DefaultUninstall 132 C:\WINDOWS\INF\PCHealth.inf Radio Fr Solo 2.1 (Radio_Fr) uninstall cmd: C:\Program Files\Radio Fr Solo\Uninstall.exe (RealJukebox 1.0) uninstall cmd: C:\Program Files\Fichiers communs\Real\Update_OB\r1puninst.exe RealNetworks|RealPlayer|6.0 RealPlayer (RealPlayer 6.0) uninstall cmd: C:\Program Files\Fichiers communs\Real\Update_OB\r1puninst.exe RealNetworks|RealPlayer|6.0 (RecordNow.exe) uninstall cmd: C:\WINDOWS\System32\\MSIEXEC.EXE /x {9541FED0-327F-4df0-8B96-EF57EF622F19} SetBrowser (remove only) (SetBrowser) uninstall cmd: "C:\Program Files\SetBrowser\uninstal.exe" (SGTRAY.EXE) uninstall cmd: C:\WINDOWS\System32\\MSIEXEC.EXE /I {09DA4F91-2A09-4232-AB8C-6BC740096DE3} REMOVE=UpdateMgrFeature TribalWeb 2.35 2.35 (ShalSoft.TribalWeb_is1) install location: C:\Program Files\TribalWeb\ uninstall cmd: "C:\Program Files\TribalWeb\unins000.exe" publisher: ShalSoft help link: http://www.tribalweb.net Adobe Flash Player 9 ActiveX 9 (ShockwaveFlash) uninstall cmd: C:\WINDOWS\system32\Macromed\Flash\FlashUtil9b.exe -uninstallDelete publisher: Adobe Systems help link: http://www.adobe.com/go/flashplayer_support/ Simple Sudoku 4.2 (Simple Sudoku_is1) install location: C:\Program Files\Simple Sudoku\ uninstall cmd: "C:\Program Files\Simple Sudoku\unins000.exe" Sophos Anti-Rootkit 1.3 (Sophos-AntiRootkit) uninstall cmd: C:\Program Files\Sophos\Sophos Anti-Rootkit\helper.exe remove Spybot - Search & Destroy 1.4 1.4 (Spybot - Search & Destroy_is1) install location: C:\Program Files\Spybot - Search & Destroy\ uninstall cmd: "C:\Program Files\Spybot - Search & Destroy\unins000.exe" publisher: Safer Networking Limited SuperCopier2 (SuperCopier2) uninstall cmd: "C:\Program Files\SuperCopier2\SC2Uninst.exe" VideoLAN VLC media player 0.8.6c 0.8.6c (VLC media player) uninstall cmd: C:\Program Files\VideoLAN\VLC\uninstall.exe publisher: VideoLAN Team Windows Imaging Component 3.0.0.0 (WIC) install date: 20070411 uninstall cmd: "C:\WINDOWS\$NtUninstallWIC$\spuninst\spuninst.exe" publisher: Microsoft Corporation Windows Media Format 11 runtime (Windows Media Format Runtime) uninstall cmd: "C:\Program Files\Windows Media Player\wmsetsdk.exe" /UninstallAll help link: http://go.microsoft.com/fwlink/?LinkId=62768 Lecteur Windows Media 11 (Windows Media Player) uninstall cmd: "C:\Program Files\Windows Media Player\Setup_wm.exe" /Uninstall (WMCSetup) Windows Media Format 11 runtime (WMFDist11) install date: 20061104 uninstall cmd: "C:\WINDOWS\$NtUninstallWMFDist11$\spuninst\spuninst.exe" publisher: Microsoft Corporation help link: http: Windows Media Player 11 (wmp11) install date: 20061104 uninstall cmd: "C:\WINDOWS\$NtUninstallwmp11$\spuninst\spuninst.exe" publisher: Microsoft Corporation help link: http: Microsoft User-Mode Driver Framework Feature Pack 1.0 (Wudf01000) install date: 20061104 uninstall cmd: "C:\WINDOWS\$NtUninstallWudf01000$\spuninst\spuninst.exe" publisher: Microsoft Corporation comments: Build Number 5716 XML Paper Specification Shared Components Pack 1.0 (XpsEPSC) install date: 20070411 publisher: Microsoft Corporation help link: http://support.microsoft.com?kbid=test XML Paper Specification Shared Components Language Pack 1.0 (XPSEPSCLP) install date: 20070411 uninstall cmd: "C:\WINDOWS\$NtUninstallXPSEPSCLP$\spuninst\spuninst.exe" publisher: Microsoft Corporation help link: http://support.microsoft.com?kbid=test PDFCreator 0.9.3 ({0001B4FD-9EA3-4D90-A79E-FD14BA3AB01D}) install date: 20060826 uninstall cmd: C:\Program Files\PDFCreator\unins000.exe publisher: Frank Heindörfer, Philip Chinery comments: PDFCreator - Opensource help link: http://www.sf.net/projects/pdfcreator readme: http://www.pdfforge.org Sonic Update Manager 2.9 ({09DA4F91-2A09-4232-AB8C-6BC740096DE3}) version: 34144256 version (major): 2 version (minor): 9 install date: 20040603 uninstall cmd: MsiExec.exe /I{09DA4F91-2A09-4232-AB8C-6BC740096DE3} publisher: Sonic Solutions Sonic DLA 4.90 ({1206EF92-2E83-4859-ACCB-2048C3CB7DA6}) version: 73007104 version (major): 4 version (minor): 90 install date: 20040603 uninstall cmd: MsiExec.exe /I{1206EF92-2E83-4859-ACCB-2048C3CB7DA6} publisher: Sonic Solutions help link: http://support.sonic.com/ Windows Installer Clean Up 3.00.00.0000 ({121634B0-2F4B-11D3-ADA3-00C04F52DD52}) version: 50331648 version (major): 3 estimated size: 305 install date: 20070214 install source: C:\Program Files\MSECACHE\WICU3\ uninstall cmd: MsiExec.exe /X{121634B0-2F4B-11D3-ADA3-00C04F52DD52} publisher: Microsoft Corporation Microsoft .NET Framework 3.0 3.0.04506.30 ({15095BF3-A3D7-4DDF-B193-3A496881E003}) version: 50336154 version (major): 3 estimated size: 16102 install date: 20070411 install location: c:\WINDOWS\Microsoft.NET\Framework\v3.0\ uninstall cmd: MsiExec.exe /X{15095BF3-A3D7-4DDF-B193-3A496881E003} publisher: Microsoft Corporation MSXML 6.0 Parser (KB933579) 6.10.1200.0 ({1787603C-E6E3-42D4-8034-55F358486F1D}) version: 101319856 version (major): 6 version (minor): 10 estimated size: 1365 install date: 20070815 install source: c:\755744d2fa02a907ce86658c60e4\ uninstall cmd: MsiExec.exe /I{1787603C-E6E3-42D4-8034-55F358486F1D} publisher: Microsoft Corporation help link: http://support.microsoft.com/kb/933579 DeepBurner v1.8.0.224 ({1ADE23D7-7A1E-4AEC-BA5D-EB8A01BED943}) install date: 07/25/2007 install location: C:\Program Files\Astonsoft\DeepBurner install source: C:\Documents and Settings\LF\Mes documents\Mes Téléchargements uninstall cmd: "C:\Program Files\Astonsoft\DeepBurner\Uninstall.exe" "C:\Program Files\Astonsoft\DeepBurner\install.log" LUMIX Simple Viewer 0.99.0000 ({2CDCCE7E-55D5-40CC-AEA0-ABA54713501F}) version: 6488064 install date: 20070603 install location: C:\Program Files\Panasonic\LUMIXSimpleViewer install source: E:\SIMPLEVIEW\setup\ uninstall cmd: C:\Program Files\InstallShield Installation Information\{2CDCCE7E-55D5-40CC-AEA0-ABA54713501F}\setup.exe -runfromtemp -l0x040c -removeonly publisher: Panasonic Logitech SetPoint 2.40 ({2E8EAC71-BFE4-417A-88F0-5A1BDFBCF5D3}) version: 36175872 install date: 20060521 install location: C:\Program Files\Logitech\SetPoint install source: D:\1-SetPoint\32-bit\ uninstall cmd: RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\PROFES~1\RunTime\101\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{2E8EAC71-BFE4-417A-88F0-5A1BDFBCF5D3}\setup.exe" -l0x40c -removeonly publisher: Logitech Java 6 Update 2 1.6.0.20 ({3248F0A8-6813-11D6-A77B-00B0D0160020}) version: 17170432 version (major): 1 version (minor): 6 estimated size: 113906 install date: 20070721 install source: http://javadl.sun.com/webapps/download/Get...6/windows-i586/ uninstall cmd: MsiExec.exe /I{3248F0A8-6813-11D6-A77B-00B0D0160020} publisher: Sun Microsystems, Inc. contact: http://java.com help link: http://java.com readme: C:\Program Files\Java\jre1.6.0_02\README.txt Modem On Hold 1.12 ({3F92ABBB-6BBF-11D5-B229-002078017FBF}) version (major): 1 version (minor): 12 install location: C:\Program Files\Modem On Hold uninstall cmd: RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{3F92ABBB-6BBF-11D5-B229-002078017FBF}\setup.exe" -l0x40c ControlPanelAnyText publisher: BVRP Software, Inc OpenOffice.org 2.2 2.2.9161 ({419805D6-75A0-4981-BC8F-9FF97EC6B03A}) version: 33694665 version (major): 2 version (minor): 2 estimated size: 260008 install date: 20070623 install location: C:\Program Files\OpenOffice.org 2.2\ install source: C:\Documents and Settings\LF\Bureau\OpenOffice.org 2.2 Installation Files\ uninstall cmd: MsiExec.exe /I{419805D6-75A0-4981-BC8F-9FF97EC6B03A} publisher: OpenOffice.org comments: OpenOffice.org 2.2 (fr) (OOF680m18(Build:9161)) contact: Support technique help link: http://www.openoffice.org help telephone: x-xxx-xxx-xxx Windows Communication Foundation 3.0.04506.30 ({491DD792-AD81-429C-9EB4-86DD3D22E333}) version: 50336154 version (major): 3 estimated size: 90556 install date: 20070411 uninstall cmd: MsiExec.exe /X{491DD792-AD81-429C-9EB4-86DD3D22E333} publisher: Microsoft Corporation Windows Genuine Advantage v1.3.0254.0 1.3.0254.0 ({63569CE9-FA00-469C-AF5C-E5D4D93ACF91}) version: 16974078 version (major): 1 version (minor): 3 estimated size: 519 install date: 20050810 uninstall cmd: MsiExec.exe /I{63569CE9-FA00-469C-AF5C-E5D4D93ACF91} publisher: Microsoft comments: Your Comments contact: Customer Support Department help link: http://www.microsoft.com/genuine/downloads...idate.aspx/help help telephone: 1-425.882.8080 PowerDVD ({6811CAA0-BF12-11D4-9EA1-0050BAE317E1}) uninstall cmd: RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{6811CAA0-BF12-11D4-9EA1-0050BAE317E1}\setup.exe" -uninstall Windows Presentation Foundation Language Pack (FRA) 3.0.6920.0 ({6901DD22-527A-41EF-9059-E81FEDE9E494}) version: 50338568 version (major): 3 estimated size: 15213 install date: 20070411 uninstall cmd: MsiExec.exe /X{6901DD22-527A-41EF-9059-E81FEDE9E494} publisher: Microsoft Corporation Windows Media Player Firefox Plugin 1.0.0.8 ({69FDFBB6-351D-4B8C-89D8-867DC9D0A2A4}) version: 16777216 version (major): 1 estimated size: 296 install date: 20070420 uninstall cmd: MsiExec.exe /I{69FDFBB6-351D-4B8C-89D8-867DC9D0A2A4} publisher: Microsoft Corp Microsoft .NET Framework 2.0 2.0.50727 ({7131646D-CD3C-40F4-97B9-CD9E4E6262EF}) version: 33605159 version (major): 2 estimated size: 19432 install date: 20070711 install source: C:\Program Files\Goodies-Tv\FW2\ publisher: Microsoft Corporation Modem Event Monitor ({7A0EFAFB-AC4B-4B88-8C6B-6731BE88DB68}) uninstall cmd: RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{7A0EFAFB-AC4B-4B88-8C6B-6731BE88DB68}\setup.exe" -l0x40c Windows Workflow Foundation 3.0.4203.2 ({7D1B85BD-AA07-48B8-808D-67A4067FC6BD}) version: 50335851 version (major): 3 estimated size: 18672 install date: 20070411 install location: c:\Program Files\Reference Assemblies\Microsoft\Framework\v3.0\ uninstall cmd: MsiExec.exe /I{7D1B85BD-AA07-48B8-808D-67A4067FC6BD} publisher: Microsoft Corporation Modem Helper 2.25 ({7F142D56-3326-11D5-B229-002078017FBF}) install location: C:\Program Files\Modem Helper uninstall cmd: RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{7F142D56-3326-11D5-B229-002078017FBF}\setup.exe" -l0x40c ControlPanel publisher: BVRP Software Opera 9.23 9.23 ({7F7F868A-37B1-43BB-9FFD-C4559A43A90A}) version: 152502272 version (major): 9 version (minor): 23 estimated size: 12450 install date: 20070810 install location: C:\Program Files\Opera\ install source: C:\DOCUME~1\LF\LO2CA6~1\Temp\_is350\ uninstall cmd: MsiExec.exe /X{7F7F868A-37B1-43BB-9FFD-C4559A43A90A} publisher: Opera Software ASA help link: http://www.opera.com/support Microsoft Office PowerPoint Viewer 2007 (French) 12.0.4518.1014 ({95120000-00AF-040C-0000-0000000FF1CE}) version: 201331110 version (major): 12 estimated size: 63444 install date: 20070725 install source: C:\Program Files\MSECache\PPTViewer\ uninstall cmd: MsiExec.exe /X{95120000-00AF-040C-0000-0000000FF1CE} publisher: Microsoft Corporation help link: http://support.microsoft.com Sonic RecordNow! 7.10 ({9541FED0-327F-4DF0-8B96-EF57EF622F19}) version: 118095872 version (major): 7 version (minor): 10 install date: 20040603 uninstall cmd: MsiExec.exe /I{9541FED0-327F-4DF0-8B96-EF57EF622F19} publisher: Sonic Solutions help link: http://support.sonic.com/ DVDSentry 1.00.0000 ({98DF85D9-96C0-4F57-A92E-C3539477EF5E}) version: 16777216 version (major): 1 install date: 20040603 uninstall cmd: MsiExec.exe /I{98DF85D9-96C0-4F57-A92E-C3539477EF5E} publisher: Dell help link: http://www.support.dell.com help telephone: www.support.dell.com Microsoft .NET Framework 1.1 French Language Pack 1.1.4322 ({9A394342-4A68-4EBA-85A6-55B559F4E700}) version: 16847074 version (major): 1 version (minor): 1 estimated size: 3118 install date: 20061116 uninstall cmd: MsiExec.exe /X{9A394342-4A68-4EBA-85A6-55B559F4E700} publisher: Microsoft readme: file://C:\WINDOWS\Microsoft.NET\Framework\v1.1.4322\1036\RepairRedist.htm Intel® PROSet 6.05.2001 ({A790BEB1-BCCF-4EC6-807B-5708B36E8A79}) version: 100992977 version (major): 6 version (minor): 5 install date: 20040603 uninstall cmd: MsiExec.exe /I{A790BEB1-BCCF-4EC6-807B-5708B36E8A79} publisher: Intel comments: Intel® PROSet installation package contact: Intel Customer Support help link: http://support.intel.com Adobe Reader 8.1.0 - Français 8.1.0 ({AC76BA86-7AD7-1036-7B44-A81000000003}) version: 134283264 version (major): 8 version (minor): 1 estimated size: 103080 install date: 20070606 install source: C:\Documents and Settings\LF\Local Settings\Application Data\Adobe\Updater5\Install\reader8rdr-fr_FR\ uninstall cmd: MsiExec.exe /I{AC76BA86-7AD7-1036-7B44-A81000000003} publisher: Adobe Systems Incorporated comments: contact: Support clientèle help link: http://www.adobe.fr/support/main.html readme: [iNSTALLDIR]Reader\Lisezmoi.htm Spelling Dictionaries Support For Adobe Reader 8 8.0.0 ({AC76BA86-7AD7-5464-3428-800000000003}) version: 134217728 version (major): 8 estimated size: 33322 install date: 20070505 install source: C:\Documents and Settings\LF\Local Settings\Application Data\Adobe\Updater5\Install\ uninstall cmd: MsiExec.exe /I{AC76BA86-7AD7-5464-3428-800000000003} publisher: Adobe Systems comments: This is a placeholder for ARP comments for Spelling Dictionaries for Adobe Reader 8.0 contact: Customer Support help link: http://www.adobe.com/support/main.html help telephone: 1-800-833-6687 Windows Communication Foundation Language Pack - FRA 3.0.04506.30 ({B168C59D-5FCF-4EEC-B464-BFA7A8266150}) version: 50336154 version (major): 3 estimated size: 3395 install date: 20070411 publisher: Microsoft Corporation Windows Workflow Foundation FR Language Pack 3.0.4203.2 ({B84C141C-9A13-44BE-9A69-301D7B11D836}) version: 50335851 version (major): 3 estimated size: 482 install date: 20070411 uninstall cmd: MsiExec.exe /I{B84C141C-9A13-44BE-9A69-301D7B11D836} publisher: Microsoft Corporation Windows Presentation Foundation 3.0.6920.0 ({BAF78226-3200-4DB4-BE33-4D922A799840}) version: 50338568 version (major): 3 estimated size: 117877 install date: 20070411 uninstall cmd: MsiExec.exe /X{BAF78226-3200-4DB4-BE33-4D922A799840} publisher: Microsoft Corporation ({CA9EC1C6-3B51-11D6-B1A9-BCD2747AA951}) uninstall cmd: RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{CA9EC1C6-3B51-11D6-B1A9-BCD2747AA951}\setup.exe" -l0x40c Microsoft .NET Framework 1.1 1.1.4322 ({CB2F7EDD-9D1F-43C1-90FC-4F52EAE172A1}) version: 16847074 version (major): 1 version (minor): 1 estimated size: 75259 install date: 20070711 uninstall cmd: MsiExec.exe /X{CB2F7EDD-9D1F-43C1-90FC-4F52EAE172A1} publisher: Microsoft readme: file://C:\WINDOWS\Microsoft.NET\Framework\v1.1.4322\1033\RepairRedist.htm ({D43F13A1-1E39-4BD4-9682-DF889FE75421}) uninstall cmd: RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{D43F13A1-1E39-4BD4-9682-DF889FE75421}\setup.exe" -l0x40c Dell ResourceCD ({D78653C3-A8FF-415F-92E6-D774E634FF2D}) uninstall cmd: RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\engine\6\INTEL3~1\ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{D78653C3-A8FF-415F-92E6-D774E634FF2D}\setup.exe" AusLogics Disk Defrag 1.1 1.1.5.225 ({DF6A13C0-77DF-41FE-BD05-6D5201EB0CE7}_is1) install date: 20070818 install location: C:\Program Files\AusLogics Disk Defrag\ uninstall cmd: "C:\Program Files\AusLogics Disk Defrag\unins000.exe" publisher: AusLogics, Inc. contact: info@auslogics.com help link: http://www.auslogics.com/support.php Microsoft .NET Framework 3.0 French Language Pack 3.0.04506.30 ({E3C080B0-23F5-49AF-89F8-8E8DBC89E659}) version: 50336154 version (major): 3 estimated size: 9065 install date: 20070411 install location: c:\WINDOWS\Microsoft.NET\Framework\v3.0\ uninstall cmd: MsiExec.exe /X{E3C080B0-23F5-49AF-89F8-8E8DBC89E659} publisher: Microsoft Corporation QuickTime 7.1.3.100 ({F07B861C-72B9-40A4-8B1A-AAED4C06A7E8}) version: 117506051 version (major): 7 version (minor): 1 estimated size: 71803 install date: 20070603 install location: C:\Program Files\QuickTime\ uninstall cmd: MsiExec.exe /I{F07B861C-72B9-40A4-8B1A-AAED4C06A7E8} publisher: Apple Computer, Inc. contact: Assistance AppleCare help link: http://www.apple.com/fr/support/ help telephone: (33) 0825 888 024 --- System Services --- Service (registry key): .NET CLR Data Start: 0 Type: 0 Error Control: 0 Service (registry key): .NET CLR Networking Start: 0 Type: 0 Error Control: 0 Service (registry key): .NET Data Provider for Oracle Start: 0 Type: 0 Error Control: 0 Service (registry key): .NET Data Provider for SqlServer Start: 0 Type: 0 Error Control: 0 Service (registry key): .NETFramework Start: 0 Type: 0 Error Control: 0 Service (registry key): a2free Display name: a-squared Free Service Description: Scans the PC for unwanted software and provides protection from malicious code Object name: LocalSystem Image path: "c:\program files\a-squared free\a2service.exe" Image size: 217208 Image MD5: C0C09160883A964B1B6E6CF32643A394 Start: 2 Type: 16 Error Control: 1 Service (registry key): Abiosdsk Start: 4 Type: 1 Error Control: 0 Service (registry key): abp480n5 Display name: abp480n5 Image path: \SystemRoot\System32\DRIVERS\ABP480N5.SYS Start: 4 Type: 1 Error Control: 1 Service (registry key): ACPI Display name: Pilote ACPI Microsoft Image path: System32\DRIVERS\ACPI.sys Image size: 188672 Image MD5: 0BD94FBFC14EA3606CD6CA4C0255BAA3 Start: 0 Type: 1 Error Control: 1 Service (registry key): ACPIEC Start: 4 Type: 1 Error Control: 1 Service (registry key): adpu160m Display name: adpu160m Image path: \SystemRoot\System32\DRIVERS\adpu160m.sys Start: 4 Type: 1 Error Control: 1 Service (registry key): aeaudio Image path: system32\drivers\aeaudio.sys Image size: 4816 Image MD5: 11C04B17ED2ABBB4833694BCD644AC90 Start: 3 Type: 1 Error Control: 1 Service (registry key): aec Display name: Suppresseur d'écho acoustique (Noyau Microsoft) Image path: system32\drivers\aec.sys Image size: 142464 Image MD5: 1EE7B434BA961EF845DE136224C30FEC Start: 3 Type: 1 Error Control: 1 Service (registry key): Afc Display name: PPdus ASPI Shell Image path: system32\drivers\Afc.sys Image size: 11776 Image MD5: A7B8A3A79D35215D798A300DF49ED23F Start: 3 Type: 1 Error Control: 1 Service (registry key): AFD Display name: Environnement de prise en charge de réseau AFD Description: Environnement de prise en charge de réseau AFD Image path: \SystemRoot\System32\drivers\afd.sys Start: 1 Type: 1 Error Control: 1 Service (registry key): agp440 Display name: Filtre de bus AGP Intel Image path: \SystemRoot\System32\DRIVERS\agp440.sys Start: 0 Type: 1 Error Control: 1 Service (registry key): agpCPQ Display name: Filtre de bus AGP Compaq Image path: \SystemRoot\System32\DRIVERS\agpCPQ.sys Start: 4 Type: 1 Error Control: 1 Service (registry key): Aha154x Display name: Aha154x Image path: \SystemRoot\System32\DRIVERS\aha154x.sys Start: 4 Type: 1 Error Control: 1 Service (registry key): aic78u2 Display name: aic78u2 Image path: \SystemRoot\System32\DRIVERS\aic78u2.sys Start: 4 Type: 1 Error Control: 1 Service (registry key): aic78xx Display name: aic78xx Image path: \SystemRoot\System32\DRIVERS\aic78xx.sys Start: 4 Type: 1 Error Control: 1 Service (registry key): alcan5wn Display name: SpeedTouch USB ADSL PPP Networking Driver (NDISWAN) Image path: System32\DRIVERS\alcan5wn.sys Image size: 53600 Image MD5: 293BCAF4EF7AFCC4B00D28F75C420356 Start: 3 Type: 1 Error Control: 1 Service (registry key): alcaudsl Display name: SpeedTouch ADSL Modem ATM Transport Image path: System32\DRIVERS\alcaudsl.sys Image size: 70624 Image MD5: BDB16789E789F087B43B5F75032D4FDC Start: 3 Type: 1 Error Control: 1 Service (registry key): Alerter Display name: Avertissement Description: Informe les utilisateurs et les ordinateurs sélectionnés des alertes administratives. Si ce service est arrêté, les programmes qui utilisent les alertes administratives ne les recevront pas. Si ce service est désactivé, les services qui en dépendent ne pourront pas démarrer. Object name: NT AUTHORITY\LocalService Image path: %SystemRoot%\System32\svchost.exe -k LocalService Image size: 14336 Image MD5: 2979B03D5382A602623C0535B16AB9C0 Start: 4 Type: 32 Error Control: 1 Depends On services: LanmanWorkstation Service (registry key): ALG Display name: Service de la passerelle de la couche Application Description: Offre la prise en charge des plug-ins de protocoles tiers pour le Partage de connexion Internet et le Pare-feu Windows. Object name: NT AUTHORITY\LocalService Image path: %SystemRoot%\System32\alg.exe Image size: 44544 Image MD5: B43CC0F07752D456038CD0268E4D84E9 Start: 3 Type: 16 Error Control: 1 Service (registry key): AliIde Display name: AliIde Image path: \SystemRoot\System32\DRIVERS\aliide.sys Start: 4 Type: 1 Error Control: 1 Service (registry key): alim1541 Display name: Filtre de bus AGP ALI Image path: \SystemRoot\System32\DRIVERS\alim1541.sys Start: 4 Type: 1 Error Control: 1 Service (registry key): amdagp Display name: Pilote de filtre du bus AMD AGP Image path: \SystemRoot\System32\DRIVERS\amdagp.sys Start: 4 Type: 1 Error Control: 1 Service (registry key): amsint Display name: amsint Image path: \SystemRoot\System32\DRIVERS\amsint.sys Start: 4 Type: 1 Error Control: 1 Service (registry key): AppMgmt Display name: Gestion d'applications Description: Fournit des services d'installation de logiciels tels que Attribuer, Publier et Supprimer. Object name: LocalSystem Image path: %SystemRoot%\system32\svchost.exe -k netsvcs Image size: 14336 Image MD5: 2979B03D5382A602623C0535B16AB9C0 Start: 4 Type: 32 Error Control: 1 Service (registry key): asc Display name: asc Image path: \SystemRoot\System32\DRIVERS\asc.sys Start: 4 Type: 1 Error Control: 1 Service (registry key): asc3350p Display name: asc3350p Image path: \SystemRoot\System32\DRIVERS\asc3350p.sys Start: 4 Type: 1 Error Control: 1 Service (registry key): asc3550 Display name: asc3550 Image path: \SystemRoot\System32\DRIVERS\asc3550.sys Start: 4 Type: 1 Error Control: 1 Service (registry key): ASP.NET Start: 0 Type: 0 Error Control: 0 Service (registry key): ASP.NET_1.1.4322 Start: 0 Type: 0 Error Control: 0 Service (registry key): ASP.NET_2.0.50727 Start: 0 Type: 0 Error Control: 0 Service (registry key): Aspi Start: 0 Type: 0 Error Control: 0 Service (registry key): Aspi32 Start: 2 Type: 1 Error Control: 1 Service (registry key): aspnet_state Display name: Service d'état ASP.NET Description: Assure la prise en charge des états de session out-of-process pour ASP.NET. En cas d'interruption de ce service, les demandes out-of process ne sont pas traitées. En cas de désactivation du service, le démarrage de tout service qui dépend explicitement de ce service est impossible. Object name: NT AUTHORITY\NetworkService Image path: %SystemRoot%\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe Image size: 33632 Image MD5: E1633440859F9A1B3CEAF73BA85225CA Start: 3 Type: 16 Error Control: 1 Service (registry key): AsyncMac Display name: Pilote de média asynchrone RAS Description: Pilote de média asynchrone RAS Image path: System32\DRIVERS\asyncmac.sys Image size: 14336 Image MD5: 02000ABF34AF4C218C35D257024807D6 Start: 3 Type: 1 Error Control: 1 Service (registry key): atapi Display name: Contrôleur de disque dur IDE/ESDI standard Image path: System32\DRIVERS\atapi.sys Image size: 95360 Image MD5: CDFE4411A69C224BD1D11B2DA92DAC51 Start: 0 Type: 1 Error Control: 1 Service (registry key): Atdisk Start: 4 Type: 1 Error Control: 0 Service (registry key): Atmarpc Display name: Protocole client ATM ARP Description: Protocole client ATM ARP Image path: System32\DRIVERS\atmarpc.sys Image size: 59904 Image MD5: EC88DA854AB7D7752EC8BE11A741BB7F Start: 3 Type: 1 Error Control: 1 Depends On services: Tcpip Service (registry key): AudioSrv Display name: Audio Windows Description: Gère les périphériques audio pour les programmes basés sur Windows. Si ce service est arrêté, les périphériques et les effets audio ne fonctionneront pas correctement. Si ce service est désactivé, les services en dépendant explicitement ne démarreront pas. Object name: LocalSystem Image path: %SystemRoot%\System32\svchost.exe -k netsvcs Image size: 14336 Image MD5: 2979B03D5382A602623C0535B16AB9C0 Start: 2 Type: 32 Error Control: 1 Depends On services: PlugPlay,RpcSs Service (registry key): audstub Display name: Pilote audio Stub Image path: System32\DRIVERS\audstub.sys Image size: 3072 Image MD5: D9F724AA26C010A217C97606B160ED68 Start: 3 Type: 1 Error Control: 1 Service (registry key): BattC Start: 0 Type: 0 Error Control: 0 Service (registry key): BDSelfPr Display name: BDSelfPr Image path: \??\C:\Program Files\BitDefender\BitDefender 2008\bdselfpr.sys Start: 3 Type: 1 Error Control: 1 Service (registry key): Beep Start: 1 Type: 1 Error Control: 1 Service (registry key): BITS Display name: Service de transfert intelligent en arrière-plan Description: Transfère des fichiers en tâche de fond en utilisant la bande passante du réseau lors de ses périodes d'inactivité. Si le service est arrêté, des fonctionnalités telles que Windows Update et MSN Explorer ne pourront plus télécharger automatiquement des programmes et d'autres informations. Si ce service est désactivé, tous les services qui en dépendent explicitement peuvent présenter des problèmes de transfert de fichiers s'ils ne disposent pas d'un mécanisme sûr de remplacement pour transférer les fichier Object name: LocalSystem Image path: %SystemRoot%\System32\svchost.exe -k netsvcs Image size: 14336 Image MD5: 2979B03D5382A602623C0535B16AB9C0 Start: 2 Type: 32 Error Control: 1 Depends On services: Rpcss Service (registry key): Browser Display name: Explorateur d'ordinateur Description: Tient à jour une liste des ordinateurs présents sur le réseau et fournit cette liste aux ordinateurs désignés comme navigateurs. Si ce service est arrêté, la liste ne sera pas mise ou tenue à jour. Si ce service est désactivé, les services qui en dépendent ne pourront pas démarrer. Object name: LocalSystem Image path: %SystemRoot%\System32\svchost.exe -k netsvcs Image size: 14336 Image MD5: 2979B03D5382A602623C0535B16AB9C0 Start: 3 Type: 32 Error Control: 1 Depends On services: LanmanWorkstation,LanmanServer Service (registry key): bvrp_pci Start: 3 Type: 1 Error Control: 1 Service (registry key): Camdrv30 Display name: Philips ToUcam XS Image path: System32\Drivers\camdrv30.sys Image size: 171264 Image MD5: B626EC900ED64FEA808C1763ADD40C87 Start: 3 Type: 1 Error Control: 1 Service (registry key): catchme Image path: \??\C:\DOCUME~1\LF\LO2CA6~1\Temp\catchme.sys Start: 3 Type: 1 Error Control: 1 Service (registry key): cbidf Display name: cbidf Image path: \SystemRoot\System32\DRIVERS\cbidf2k.sys Start: 4 Type: 1 Error Control: 1 Service (registry key): cbidf2k Start: 4 Type: 1 Error Control: 1 Service (registry key): CCDECODE Display name: Décodeur sous-titre fermé Image path: system32\DRIVERS\CCDECODE.sys Image size: 17024 Image MD5: 6163ED60B684BAB19D3352AB22FC48B2 Start: 3 Type: 1 Error Control: 1 Service (registry key): cd20xrnt Display name: cd20xrnt Image path: \SystemRoot\System32\DRIVERS\cd20xrnt.sys Start: 4 Type: 1 Error Control: 1 Service (registry key): Cdaudio Start: 1 Type: 1 Error Control: 0 Service (registry key): Cdfs Start: 4 Type: 2 Error Control: 1 Depends On group: "SCSI CDROM Class" Service (registry key): Cdrom Display name: Pilote de CD-ROM Image path: System32\DRIVERS\cdrom.sys Image size: 49536 Image MD5: AF9C19B3100FE010496B1A27181FBF72 Start: 1 Type: 1 Error Control: 1 Depends On group: "SCSI miniport" Service (registry key): Changer Start: 1 Type: 1 Error Control: 0 Service (registry key): CiSvc Display name: Service d'indexation Description: Construit un index des contenus et des propriétés des fichiers sur les ordinateurs locaux et distants ; fournit un accès rapide aux fichiers par le biais d'un langage d'interrogation flexible. Object name: LocalSystem Image path: %SystemRoot%\system32\cisvc.exe Image size: 5632 Image MD5: ABFAC5D58218C0A655DFCAE2D8A535F3 Start: 4 Type: 288 Error Control: 1 Depends On services: RPCSS Service (registry key): ClipSrv Display name: Gestionnaire de l'Album Description: Active le Gestionnaire de l'Album afin de stocker les informations et les partager avec des ordinateurs à distance. Si le service est arrêté, le Gestionnaire de l'Album ne pourra pas partager les informations avec des ordinateurs à distance. Si ce service est désactivé, tout service en dépendant explicitement ne démarrera pas. Object name: LocalSystem Image path: %SystemRoot%\system32\clipsrv.exe Image size: 33280 Image MD5: E42101918C50F754FC15367814FEC11C Start: 4 Type: 16 Error Control: 1 Depends On services: NetDDE Service (registry key): clr_optimization_v2.0.50727_32 Display name: .NET Runtime Optimization Service v2.0.50727_X86 Description: Microsoft .NET Framework NGEN Object name: LocalSystem Image path: C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe Image size: 68952 Image MD5: 3D560AF01BDC50B4A1E1BFB5CDC06D63 Start: 3 Type: 16 Error Control: 0 Service (registry key): CmdIde Display name: CmdIde Image path: \SystemRoot\System32\DRIVERS\cmdide.sys Start: 4 Type: 1 Error Control: 1 Service (registry key): COMSysApp Display name: Application système COM+ Description: Gère la configuration et le suivi des composants de base COM+ (Component Object Model) . Si le service est arrêté, la plupart des composants de base COM+ ne fonctionneront pas correctement. Si ce service est désactivé, les services qui en dépendent de manière explicite ne pourront pas démarrer. Object name: LocalSystem Image path: C:\WINDOWS\System32\dllhost.exe /Processid:{02D4B3F1-FD88-11D1-960D-00805FC79235} Image size: 5120 Image MD5: 9B2CE161927038D4CABE0482A14FD052 Start: 3 Type: 16 Error Control: 1 Depends On services: rpcss Service (registry key): ContentFilter Start: 0 Type: 0 Error Control: 0 Service (registry key): ContentIndex Start: 0 Type: 0 Error Control: 0 Service (registry key): Cpqarray Display name: Cpqarray Image path: \SystemRoot\System32\DRIVERS\cpqarray.sys Start: 4 Type: 1 Error Control: 1 Service (registry key): CryptSvc Display name: Services de cryptographie Description: Fournit trois services de gestion : le service de base de données de catalogue, qui confirme la signature des fichiers Windows; le service de racine protégée, qui ajoute et supprime des certificats d'autorité de certification de racine approuvés et le service Clé, qui fournit une aide dans l'inscription de cet ordinateur pour les certificats. Si ce service est arrêté, ces services de gestion ne fonctionneront pas correctement. Si ce service est désactivé, tout service en dépendant explicitement ne démarrera pas. Object name: LocalSystem Image path: %SystemRoot%\system32\svchost.exe -k netsvcs Image size: 14336 Image MD5: 2979B03D5382A602623C0535B16AB9C0 Start: 2 Type: 32 Error Control: 1 Depends On services: RpcSs Service (registry key): dac2w2k Display name: dac2w2k Image path: \SystemRoot\System32\DRIVERS\dac2w2k.sys Start: 4 Type: 1 Error Control: 1 Service (registry key): dac960nt Display name: dac960nt Image path: \SystemRoot\System32\DRIVERS\dac960nt.sys Start: 4 Type: 1 Error Control: 1 Service (registry key): DcomLaunch Display name: Lanceur de processus serveur DCOM Description: Fournit la fonctionnalité de lancement des services DCOM. Object name: LocalSystem Image path: %SystemRoot%\system32\svchost -k DcomLaunch Image size: 14336 Image MD5: 2979B03D5382A602623C0535B16AB9C0 Start: 2 Type: 32 Error Control: 1 Service (registry key): Dhcp Display name: Client DHCP Description: Gère la configuration réseau en inscrivant et en mettant à jour les adresses IP et les noms DNS. Object name: LocalSystem Image path: %SystemRoot%\System32\svchost.exe -k netsvcs Image size: 14336 Image MD5: 2979B03D5382A602623C0535B16AB9C0 Start: 2 Type: 32 Error Control: 1 Depends On services: Tcpip,Afd,NetBT Service (registry key): Disk Display name: Pilote de disque Image path: System32\DRIVERS\disk.sys Image size: 36352 Image MD5: 00CA44E4534865F8A3B64F7C0984BFF0 Start: 0 Type: 1 Error Control: 1 Depends On group: "SCSI miniport" Service (registry key): dlbt_device Display name: dlbt_device Object name: LocalSystem Image path: C:\WINDOWS\system32\dlbtcoms.exe -service Image size: 466944 Image MD5: 378430A79668891615FE8DD335590A32 Start: 3 Type: 272 Error Control: 1 Service (registry key): dmadmin Display name: Service d'administration du Gestionnaire de disque logique Description: Configure les lecteurs de disque durs et les volumes. Le service ne s'exécute que pour les processus de configurations puis s'arrête. Object name: LocalSystem Image path: %SystemRoot%\System32\dmadmin.exe /com Image size: 225280 Image MD5: 647D03A59615FEE96D647D4426F1537E Start: 3 Type: 32 Error Control: 1 Depends On services: RpcSs,PlugPlay,DmServer Service (registry key): dmboot Image path: System32\drivers\dmboot.sys Image size: 800256 Image MD5: E2D3B7620310FE56685F9B15A6B404B3 Start: 4 Type: 1 Error Control: 1 Service (registry key): dmio Image path: System32\drivers\dmio.sys Image size: 154496 Image MD5: C77F5C20AA70197A69AA84BAA9DE43C8 Start: 4 Type: 1 Error Control: 1 Service (registry key): dmload Image path: System32\drivers\dmload.sys Image size: 5888 Image MD5: E9317282A63CA4D188C0DF5E09C6AC5F Start: 4 Type: 1 Error Control: 1 Service (registry key): dmserver Display name: Gestionnaire de disque logique Description: Détecte et analyse de nouveaux lecteurs de disque durs et envoie les informations de volume de disque au service gestionnaire administratif de disque logique pour la configuration. Si ce service est arrêté, l'état des disques dynamiques et les informations de configuration peuvent devenir obsolètes. Si ce service est désactivé, tout service en dépendant explicitement ne démarrera pas. Object name: LocalSystem Image path: %SystemRoot%\System32\svchost.exe -k netsvcs Image size: 14336 Image MD5: 2979B03D5382A602623C0535B16AB9C0 Start: 3 Type: 32 Error Control: 1 Depends On services: RpcSs,PlugPlay Service (registry key): DMusic Display name: Synthétiseur DLS du noyau Microsoft Image path: system32\drivers\DMusic.sys Image size: 52864 Image MD5: A6F881284AC1150E37D9AE47FF601267 Start: 3 Type: 1 Error Control: 1 Service (registry key): Dnscache Display name: Client DNS Description: Résout et met en cache les noms DNS pour cet ordinateur. Si ce service est arrêté, l'ordinateur ne pourra pas résoudre les noms DNS et trouver les contrôleurs de domaine Active Directory. Si ce service est désactivé, les services qui en dépendent ne pourront pas démarrer. Object name: NT AUTHORITY\NetworkService Image path: %SystemRoot%\System32\svchost.exe -k NetworkService Image size: 14336 Image MD5: 2979B03D5382A602623C0535B16AB9C0 Start: 2 Type: 32 Error Control: 1 Depends On services: Tcpip Service (registry key): dpti2o Display name: dpti2o Image path: \SystemRoot\System32\DRIVERS\dpti2o.sys Start: 4 Type: 1 Error Control: 1 Service (registry key): drmkaud Display name: Filtre de décodeur DRM (Noyau Microsoft) Image path: system32\drivers\drmkaud.sys Image size: 2944 Image MD5: 1ED4DBBAE9F5D558DBBA4CC450E3EB2E Start: 3 Type: 1 Error Control: 1 Service (registry key): drvmcdb Image path: system32\drivers\drvmcdb.sys Image size: 86160 Image MD5: 049177996E5E33B5FAF40CAD2B82098C Start: 0 Type: 1 Error Control: 0 Service (registry key): drvncdb Start: 0 Type: 0 Error Control: 0 Service (registry key): drvnddm Image path: system32\drivers\drvnddm.sys Image size: 40480 Image MD5: 2F4134D073F972575C174E3D621F0107 Start: 2 Type: 2 Error Control: 0 Service (registry key): DSDrv4 Display name: DSDrv4 Image path: \??\C:\PROGRA~1\K!TV\Plugins\S_Bt8x8\DSDrv4.sys Start: 3 Type: 1 Error Control: 1 Service (registry key): E100B Display name: Intel® PRO Network Connection Driver Image path: System32\DRIVERS\e100b325.sys Image size: 162816 Image MD5: D57A8FC800B501AC05B10D00F66D127A Start: 3 Type: 1 Error Control: 1 Service (registry key): EL90XBC Display name: Pilote de la carte EtherLink XL 90XB/C 3Com Image path: System32\DRIVERS\el90xbc5.sys Image size: 66591 Image MD5: 6E883BF518296A40959131C2304AF714 Start: 3 Type: 1 Error Control: 1 Service (registry key): Emproxy Display name: McAfee E-mail Proxy Description: Analyse les e-mails entrants (POP3) et sortants (SMTP) et les pièces jointes pour détecter les virus et autres menaces. Object name: LocalSystem Image path: C:\PROGRA~1\FICHIE~1\McAfee\EmProxy\emproxy.exe Image size: 341584 Image MD5: DB415BB143CD8AE0BCD62E3448667C43 Start: 3 Type: 16 Error Control: 1 Service (registry key): ERSvc Display name: Error Reporting Service Description: Allows error reporting for services and applictions running in non-standard environments. Object name: LocalSystem Image path: %SystemRoot%\System32\svchost.exe -k netsvcs Image size: 14336 Image MD5: 2979B03D5382A602623C0535B16AB9C0 Start: 2 Type: 32 Error Control: 0 Depends On services: RpcSs Service (registry key): Eventlog Display name: Journal des événements Description: Active les messages d'événements émis par les programmes fonctionnant sous Windows et les composants devant être affichés dans l'observateur d'événements. Ce service ne peut être arrêté. Object name: LocalSystem Image path: %SystemRoot%\system32\services.exe Image size: 108544 Image MD5: 63DCDE1A0D86EEB8924D6738FF616EAD Start: 2 Type: 32 Error Control: 1 Service (registry key): EventSystem Display name: Système d'événements de COM+ Description: Prend en charge le service de notification d'événements système (SENS, System Event Notification Service), qui fournit une distribution automatique d'événements aux composants COM (Component Object Model) abonnés. Si le service est arrêté, SENS sera fermé et ne pourra fournir des informations d'ouverture et de fermeture de session. Si ce service est désactivé, le démarrage de tout service qui en dépend explicitement échouera. Object name: LocalSystem Image path: C:\WINDOWS\System32\svchost.exe -k netsvcs Image size: 14336 Image MD5: 2979B03D5382A602623C0535B16AB9C0 Start: 3 Type: 32 Error Control: 1 Depends On services: RPCSS Service (registry key): Fastfat Start: 4 Type: 2 Error Control: 1 Service (registry key): FastUserSwitchingCompatibility Display name: Compatibilité avec le Changement rapide d'utilisateur Description: Fournit un système de gestion à des applications qui nécessitent de l'Assistance dans un environnement d'utilisateurs multiples. Object name: LocalSystem Image path: %SystemRoot%\System32\svchost.exe -k netsvcs Image size: 14336 Image MD5: 2979B03D5382A602623C0535B16AB9C0 Start: 3 Type: 32 Error Control: 1 Depends On services: TermService Service (registry key): Fax Display name: Fax Description: Vous permet d'envoyer et de recevoir des télécopies, d'utiliser les ressources de télécopie disponibles sur cet ordinateur ou le réseau. Object name: LocalSystem Image path: %systemroot%\system32\fxssvc.exe Image size: 268800 Image MD5: FBE05797F3A311596D0DDBB6AB60FE19 Start: 3 Type: 16 Error Control: 1 Depends On services: TapiSrv,RpcSs,PlugPlay,Spooler Service (registry key): Fdc Display name: Pilote de contrôleur de lecteur de disquettes Image path: System32\DRIVERS\fdc.sys Image size: 27392 Image MD5: CED2E8396A8838E59D8FD529C680E02C Start: 3 Type: 1 Error Control: 1 Service (registry key): Fips Start: 1 Type: 1 Error Control: 1 Service (registry key): Flpydisk Display name: Pilote de lecteur de disquettes Image path: System32\DRIVERS\flpydisk.sys Image size: 20480 Image MD5: 0DD1DE43115B93F4D85E889D7A86F548 Start: 3 Type: 1 Error Control: 1 Service (registry key): FltMgr Display name: FltMgr Description: File System Filter Manager Driver Image path: system32\drivers\fltmgr.sys Image size: 128896 Image MD5: 3D234FB6D6EE875EB009864A299BEA29 Start: 0 Type: 2 Error Control: 1 Service (registry key): FontCache3.0.0.0 Display name: Windows Presentation Foundation Font Cache 3.0.0.0 Description: Optimizes performance of Windows Presentation Foundation (WPF) applications by caching commonly used font data. WPF applications will start this service if it is not already running. It can be disabled, though doing so will degrade the performance of WPF applications. Object name: NT AUTHORITY\LocalService Image path: c:\WINDOWS\Microsoft.Net\Framework\v3.0\WPF\PresentationFontCache.exe Image size: 36864 Image MD5: FACECF3F75BAF3775A879D1168402270 Start: 3 Type: 16 Error Control: 1 Service (registry key): Fs_Rec Start: 1 Type: 8 Error Control: 0 Service (registry key): Ftdisk Display name: Pilote du Gestionnaire de volume Image path: System32\DRIVERS\ftdisk.sys Image size: 126080 Image MD5: A86859B77B908C18C2657F284AA29FE3 Start: 0 Type: 1 Error Control: 1 Service (registry key): fwdrv Start: 0 Type: 0 Error Control: 0 Service (registry key): Gpc Display name: Classificateur de paquets générique Description: Classificateur de paquets générique Image path: System32\DRIVERS\msgpc.sys Image size: 35072 Image MD5: C0F1D4A21DE5A415DF8170616703DEBF Start: 3 Type: 1 Error Control: 1 Service (registry key): helpsvc Display name: Aide et support Description: Permet à l'application Aide et support de fonctionner sur cet ordinateur. Si ce service est arrêté, la fonctionnalité Aide et support ne sera pas disponible. S'il est désactivé, tous les services dépendant explicitement de ce service ne pourront pas démarrer. Object name: LocalSystem Image path: %SystemRoot%\System32\svchost.exe -k netsvcs Image size: 14336 Image MD5: 2979B03D5382A602623C0535B16AB9C0 Start: 3 Type: 32 Error Control: 1 Depends On services: RPCSS Service (registry key): HidServ Display name: Accès du périphérique d'interface utilisateur Description: Permet l'accès entrant générique aux périphériques d'interface utilisateur, qui activent et maintiennent l'utilisation des boutons actifs prédéfinis sur le clavier, les contrôles à distance, et d'autres périphériques multimédia. Si ce service est arrêté, les boutons actifs contrôlés par ce service ne fonctionneront pas. Si ce service est désactivé, tout service en dépendant explicitement ne démarrera pas. Object name: LocalSystem Image path: %SystemRoot%\System32\svchost.exe -k netsvcs Image size: 14336 Image MD5: 2979B03D5382A602623C0535B16AB9C0 Start: 4 Type: 32 Error Control: 1 Depends On services: RpcSs Service (registry key): HidUsb Display name: Pilote de classe HID Microsoft Image path: system32\DRIVERS\hidusb.sys Image size: 9600 Image MD5: 1DE6783B918F540149AA69943BDFEBA8 Start: 3 Type: 1 Error Control: 0 Service (registry key): hpn Display name: hpn Image path: \SystemRoot\System32\DRIVERS\hpn.sys Start: 4 Type: 1 Error Control: 1 Service (registry key): HTTP Display name: HTTP Description: Ce service implémente le protocole HTTP (HyperText Transfer Protocol). Si ce service est désactivé, tous les services qui en dépendent de manière explicite échoueront au démarrage. Image path: System32\Drivers\HTTP.sys Image size: 262784 Image MD5: CB77BB47E67E84DEB17BA29632501730 Start: 3 Type: 1 Error Control: 1 Service (registry key): HTTPFilter Display name: HTTP SSL Description: Ce service implémente le protocole sécurisé HTTPS (Secure HyperText Transfer Protocol) pour le service HTTP, en utilisant la couche SSL (Secure Socket Layer). Si ce service est désactivé, tous les services qui en dépendent de manière explicite échoueront au démarrage. Object name: LocalSystem Image path: %SystemRoot%\System32\svchost.exe -k HTTPFilter Image size: 14336 Image MD5: 2979B03D5382A602623C0535B16AB9C0 Start: 3 Type: 32 Error Control: 1 Depends On services: HTTP Service (registry key): i2omgmt Start: 1 Type: 1 Error Control: 1 Service (registry key): i2omp Display name: i2omp Image path: \SystemRoot\System32\DRIVERS\i2omp.sys Start: 4 Type: 1 Error Control: 1 Service (registry key): i8042prt Display name: Pilote pour clavier i8042 et souris sur port PS/2 Image path: System32\DRIVERS\i8042prt.sys Image size: 54400 Image MD5: D1EFCBD693B5BA21314D06368C471070 Start: 1 Type: 1 Error Control: 1 Service (registry key): IDriverT Display name: InstallDriver Table Manager Description: Provides support for the Running Object Table for InstallShield Drivers Object name: LocalSystem Image path: "C:\Program Files\Fichiers communs\InstallShield\Driver\1050\Intel 32\IDriverT.exe" Image size: 73728 Image MD5: 6F95324909B502E2651442C1548AB12F Start: 3 Type: 16 Error Control: 0 Service (registry key): idsvc Display name: Windows CardSpace Description: Securely enables the creation, management, and disclosure of digital identities. Object name: LocalSystem Image path: "C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe" Image size: 741376 Image MD5: EA7267505149B3A10DF32506A4E4E412 Start: 3 Type: 32 Error Control: 1 Service (registry key): ILADFtmi Start: 0 Type: 0 Error Control: 0 Service (registry key): Imapi Display name: Pilote de filtre de gravure CD Image path: System32\DRIVERS\imapi.sys Image size: 41856 Image MD5: F8AA320C6A0409C0380E5D8A99D76EC6 Start: 1 Type: 1 Error Control: 1 Service (registry key): ImapiService Display name: Service COM de gravage de CD IMAPI Description: Gère le gravage des CD via l'interface série IMAPI (Image Mastering Applications Programming Interface). Si ce service est arrêté, cet ordinateur ne pourra plus enregistrer de CD. Si ce service est désactivé, les services qui en dépendent ne vont pas pouvoir démarrer. Object name: LocalSystem Image path: C:\WINDOWS\System32\imapi.exe Image size: 150016 Image MD5: 17B7A4375868B8C38F2DFC98B3B420C6 Start: 3 Type: 16 Error Control: 1 Service (registry key): inetaccs Start: 0 Type: 0 Error Control: 0 Service (registry key): ini910u Display name: ini910u Image path: \SystemRoot\System32\DRIVERS\ini910u.sys Start: 4 Type: 1 Error Control: 1 Service (registry key): Inport Start: 0 Type: 0 Error Control: 0 Service (registry key): IntelC51 Image path: System32\DRIVERS\IntelC51.sys Image size: 1233525 Image MD5: 7509C548400F4C9E0211E3F6E66ABBE6 Start: 3 Type: 1 Error Control: 1 Service (registry key): IntelC52 Image path: System32\DRIVERS\IntelC52.sys Image size: 647929 Image MD5: 9584FFDD41D37F2C239681D0DAC2513E Start: 3 Type: 1 Error Control: 1 Service (registry key): IntelC53 Image path: System32\DRIVERS\IntelC53.sys Image size: 60949 Image MD5: DE2686C0E012E6AE24ACD6E79EB7FF5D Start: 3 Type: 1 Error Control: 1 Service (registry key): IntelIde Display name: IntelIde Image path: \SystemRoot\System32\DRIVERS\intelide.sys Start: 4 Type: 1 Error Control: 1 Service (registry key): intelppm Display name: Pilote de processeur Intel Image path: System32\DRIVERS\intelppm.sys Image size: 40320 Image MD5: DD5AD1E79AC26D3F8D8828AD4627F160 Start: 1 Type: 1 Error Control: 1 Service (registry key): ip6fw Display name: Pilote du pare-feu Windows IPv6 Description: Fournit un service de prévention d'intrusion pour un réseau domestique ou de petite entreprise. Image path: system32\drivers\ip6fw.sys Image size: 29056 Image MD5: 4448006B6BC60E6C027932CFC38D6855 Start: 3 Type: 1 Error Control: 1 Service (registry key): IpFilterDriver Display name: Pilote de filtre de trafic IP Description: Pilote de filtre de trafic IP Image path: System32\DRIVERS\ipfltdrv.sys Image size: 32896 Image MD5: 731F22BA402EE4B62748ADAF6363C182 Start: 3 Type: 1 Error Control: 1 Depends On services: Tcpip Service (registry key): IpInIp Display name: Pilote de tunnelage IP dans IP Description: Pilote de tunnelage IP dans IP Image path: System32\DRIVERS\ipinip.sys Image size: 20992 Image MD5: E1EC7F5DA720B640CD8FB8424F1B14BB Start: 3 Type: 1 Error Control: 1 Depends On services: Tcpip Service (registry key): IpNat Display name: Traducteur d'adresses réseau IP Description: Traducteur d'adresses réseau IP Image path: System32\DRIVERS\ipnat.sys Image size: 134912 Image MD5: E2168CBC7098FFE963C6F23F472A3593 Start: 3 Type: 1 Error Control: 1 Depends On services: Tcpip Service (registry key): IPSec Display name: Pilote IPSEC Description: Pilote IPSEC Image path: System32\DRIVERS\ipsec.sys Image size: 74752 Image MD5: 64537AA5C003A6AFEEE1DF819062D0D1 Start: 1 Type: 1 Error Control: 1 Service (registry key): IRENUM Display name: Service énumérateur IR Image path: System32\DRIVERS\irenum.sys Image size: 11264 Image MD5: 50708DAA1B1CBB7D6AC1CF8F56A24410 Start: 3 Type: 1 Error Control: 1 Service (registry key): ISAPISearch Start: 0 Type: 0 Error Control: 0 Service (registry key): isapnp Display name: Pilote de bus Plug-and-Play ISA/EISA Image path: System32\DRIVERS\isapnp.sys Image size: 36224 Image MD5: 54632F1A7DE61DC3615D756F2A90FA72 Start: 0 Type: 1 Error Control: 3 Service (registry key): Kbdclass Display name: Pilote de la classe Clavier Image path: System32\DRIVERS\kbdclass.sys Image size: 25216 Image MD5: E798705E8DC7FAB596EF6BFDF167E007 Start: 1 Type: 1 Error Control: 1 Service (registry key): KeyScrambler Display name: KeyScrambler Image path: System32\drivers\keyscrambler.sys Image size: 113128 Image MD5: B143D56ACE006580D8C38733CEC17DE7 Start: 3 Type: 1 Error Control: 0 Service (registry key): khips Start: 0 Type: 0 Error Control: 0 Service (registry key): kmixer Display name: Mélangeur audio Wave de noyau Microsoft Image path: system32\drivers\kmixer.sys Image size: 171776 Image MD5: D93CAD07C5683DB066B0B2D2D3790EAD Start: 3 Type: 1 Error Control: 1 Service (registry key): KSecDD Start: 0 Type: 1 Error Control: 1 Service (registry key): L8042Kbd Display name: Logitech SetPoint Keyboard Driver Image path: System32\Drivers\L8042Kbd.sys Image size: 13056 Image MD5: 5A11400EA1F0A106FE7EDB28C270F7B8 Start: 3 Type: 1 Error Control: 0 Service (registry key): L8042mou Display name: Logitech SetPoint PS/2 Mouse Filter Driver Image path: system32\DRIVERS\L8042mou.Sys Image size: 54528 Image MD5: 20C919B52897B72EBCB2AD2FC29D8EF0 Start: 3 Type: 1 Error Control: 1 Service (registry key): lanmanserver Display name: Serveur Description: Prend en charge le partage de fichiers, d'impression et des canaux nommés via le réseau pour cet ordinateur. Si ce service est arrêté, ces fonctions ne seront pas disponibles. Si ce service est désactivé, les services qui en dépendent ne pourront pas démarrer. Object name: LocalSystem Image path: %SystemRoot%\System32\svchost.exe -k netsvcs Image size: 14336 Image MD5: 2979B03D5382A602623C0535B16AB9C0 Start: 4 Type: 32 Error Control: 1 Service (registry key): lanmanworkstation Display name: Station de travail Description: Crée et maintient des connexions de réseau client à des serveurs distants. Si ce service est arrêté, ces connexions ne seront pas disponibles. Si ce service est désactivé, les services qui en dépendent ne pourront pas démarrer. Object name: LocalSystem Image path: %SystemRoot%\System32\svchost.exe -k netsvcs Image size: 14336 Image MD5: 2979B03D5382A602623C0535B16AB9C0 Start: 2 Type: 32 Error Control: 1 Service (registry key): lbrtfdc Start: 1 Type: 1 Error Control: 0 Service (registry key): ldap Start: 0 Type: 0 Error Control: 0 Service (registry key): LHidKe Display name: Logitech SetPoint HID Mouse Filter Driver Image path: system32\DRIVERS\LHidKE.Sys Image size: 25600 Image MD5: 31B582394DA3290DFF300F10952E9A4D Start: 3 Type: 1 Error Control: 1 Service (registry key): LHidUsbK Display name: Logitech SetPoint USB Receiver device driver Description: Logitech SetPoint USB Receiver Image path: System32\Drivers\LHidUsbK.Sys Image size: 36480 Image MD5: CBD1C6BFF70E170CEC6E1502E7FCFEF6 Start: 3 Type: 1 Error Control: 0 Service (registry key): LicenseService Start: 0 Type: 0 Error Control: 0 Service (registry key): LmHosts Display name: Assistance TCP/IP NetBIOS Description: Permet la prise en charge pour NetBIOS sur un service TCP/IP (NetBT) et la résolution des noms NetBIOS. Object name: NT AUTHORITY\LocalService Image path: %SystemRoot%\System32\svchost.exe -k LocalService Image size: 14336 Image MD5: 2979B03D5382A602623C0535B16AB9C0 Start: 4 Type: 32 Error Control: 1 Depends On services: NetBT,Afd Service (registry key): LMouKE Display name: Logitech SetPoint Mouse Filter Driver Image path: system32\DRIVERS\LMouKE.Sys Image size: 68352 Image MD5: 90A794D0A0BF3531C4BA1C0510449629 Start: 3 Type: 1 Error Control: 1 Service (registry key): MASPINT Start: 2 Type: 1 Error Control: 1 Service (registry key): MBackMonitor Display name: MBackMonitor Object name: LocalSystem Image path: C:\Program Files\McAfee\MBK\MBackMonitor.exe Image size: 71208 Image MD5: 9BB480AD3EE8B406594411F2140BD882 Start: 2 Type: 16 Error Control: 1 Service (registry key): McAfee HackerWatch Service Display name: McAfee HackerWatch Service Description: McAfee HackerWatch Service Object name: LocalSystem Image path: "C:\Program Files\Fichiers communs\McAfee\HackerWatch\HWAPI.exe" Image size: 540776 Image MD5: 38BCCF016B694A745E1CDBC0B080A59C Start: 2 Type: 16 Error Control: 1 Depends On services: RPCSS Service (registry key): mcmispupdmgr Display name: McAfee Update Manager Description: Télécharge et installe les mises à jour des programmes McAfee. Object name: LocalSystem Image path: C:\PROGRA~1\McAfee\MSC\mcupdmgr.exe Image size: 689752 Image MD5: 993582EC1CF765206CF9D4D5CA22589F Start: 3 Type: 272 Error Control: 1 Service (registry key): mcmscsvc Display name: McAfee Services Description: Gère les utilisateurs McAfee. Object name: LocalSystem Image path: C:\PROGRA~1\McAfee\MSC\mcmscsvc.exe Image size: 361560 Image MD5: BB8A45E65BE310996A201F8A75646A8D Start: 2 Type: 16 Error Control: 1 Service (registry key): McNASvc Display name: McAfee Network Agent Description: Allows McAfee applications to communicate securely on the local network. Object name: LocalSystem Image path: "c:\program files\fichiers communs\mcafee\mna\mcnasvc.exe" Image size: 2209320 Image MD5: 4C5B97B76C13D9154AA91D0C754E79E3 Start: 2 Type: 16 Error Control: 1 Depends On services: RPCSS Service (registry key): McODS Display name: McAfee Scanner Description: Analyse les emplacements spécifiés sur l'ordinateur pour détecter les virus et autres menaces. Le service exécute les analyses planifiées et les analyses manuelles. Object name: LocalSystem Image path: C:\PROGRA~1\McAfee\VIRUSS~1\mcods.exe Image size: 362064 Image MD5: D984FAF698966AA360C1702EF623C3F9 Start: 2 Type: 16 Error Control: 1 Service (registry key): mcpromgr Display name: McAfee Protection Manager Description: Gère les problèmes de protection sur l'ordinateur pour les programmes McAfee. Object name: LocalSystem Image path: C:\PROGRA~1\McAfee\MSC\mcpromgr.exe Image size: 493144 Image MD5: 14313FF5203DF7CB53E8D2F18F59D4D2 Start: 2 Type: 16 Error Control: 1 Service (registry key): McRedirector Display name: McAfee Redirector Service Description: McAfee Redirector Service Object name: LocalSystem Image path: c:\PROGRA~1\FICHIE~1\mcafee\redirsvc\redirsvc.exe Image size: 256096 Image MD5: DAF486036F2F6EE9DBA390D3CF2E5C29 Start: 2 Type: 16 Error Control: 1 Service (registry key): McShield Display name: McAfee Real-time Scanner Description: Analyse les fichiers pour détecter les virus et autres menaces lorsque l'ordinateur y accède. Object name: LocalSystem Image path: C:\PROGRA~1\McAfee\VIRUSS~1\mcshield.exe Image size: 144960 Image MD5: B74CEBEF7F2126F68CDC060C855E5AAB Start: 2 Type: 16 Error Control: 1 Service (registry key): McSysmon Display name: McAfee SystemGuards Description: Surveille les changements potentiellement non autorisés apportés à l'ordinateur. Object name: LocalSystem Image path: C:\PROGRA~1\McAfee\VIRUSS~1\mcsysmon.exe Image size: 643664 Image MD5: 9770A8706BBA3C4CBEA998D2A6BF2D08 Start: 2 Type: 16 Error Control: 1 Service (registry key): MEMSWEEP2 Display name: MEMSWEEP2 Image path: \??\C:\WINDOWS\system32\15.tmp Start: 3 Type: 1 Error Control: 1 Service (registry key): Messenger Display name: Affichage des messages Description: Envoie et reçoit les messages des services d'alertes entre les clients et les serveurs. Ce service n'est pas lié à Windows Messenger. Si ce service est arrêté, les messages d'alertes ne seront pas transmis. Si ce service est désactivé, les services qui en dépendent ne pourront pas démarrer. Object name: LocalSystem Image path: %SystemRoot%\System32\svchost.exe -k netsvcs Image size: 14336 Image MD5: 2979B03D5382A602623C0535B16AB9C0 Start: 4 Type: 32 Error Control: 1 Depends On services: LanmanWorkstation,NetBIOS,PlugPlay,RpcSS Service (registry key): mfeavfk Display name: McAfee Inc. Image path: system32\drivers\mfeavfk.sys Image size: 71496 Image MD5: F5250976C1334C1E4FECEDDCDF02353E Start: 3 Type: 1 Error Control: 1 Service (registry key): mfebopk Display name: McAfee Inc. Image path: system32\drivers\mfebopk.sys Image size: 34184 Image MD5: 787702627CC0770F45206F4034390580 Start: 3 Type: 1 Error Control: 1 Service (registry key): mfehidk Display name: McAfee Inc. Image path: system32\drivers\mfehidk.sys Image size: 170408 Image MD5: 241C09C7D8C589EA1D72A36E6578E42C Start: 3 Type: 1 Error Control: 1 Service (registry key): mferkdk Display name: McAfee Inc. Image path: system32\drivers\mferkdk.sys Image size: 32008 Image MD5: A321C17FADAD2665C455C6D39E465FE0 Start: 3 Type: 1 Error Control: 1 Service (registry key): mfesmfk Display name: McAfee Inc. Image path: system32\drivers\mfesmfk.sys Image size: 37480 Image MD5: 1FBDD2EB37CE910D6CEE60140C400B6A Start: 3 Type: 1 Error Control: 1 Service (registry key): mnmdd Start: 1 Type: 1 Error Control: 0 Service (registry key): mnmsrvc Display name: Partage de Bureau à distance NetMeeting Description: Permet aux personnes autorisées d'accéder à votre Bureau Windows en utilisant NetMeeting. Object name: LocalSystem Image path: C:\WINDOWS\System32\mnmsrvc.exe Image size: 32768 Image MD5: 5B219F99CF6D5BE05A6C6E86C38CB7CE Start: 4 Type: 272 Error Control: 1 Service (registry key): Modem Start: 3 Type: 1 Error Control: 0 Service (registry key): MODEMCSA Display name: Périphérique de filtrage de flux Unimodem Image path: system32\drivers\MODEMCSA.sys Image size: 16128 Image MD5: 1992E0D143B09653AB0F9C5E04B0FD65 Start: 3 Type: 1 Error Control: 1 Service (registry key): mohfilt Image path: System32\DRIVERS\mohfilt.sys Image size: 37048 Image MD5: 59B8B11FF70728EEC60E72131C58B716 Start: 3 Type: 1 Error Control: 1 Service (registry key): Mouclass Display name: Pilote de la classe Souris Image path: System32\DRIVERS\mouclass.sys Image size: 23680 Image MD5: 7D4F19411BD941E1D432A99E24230386 Start: 1 Type: 1 Error Control: 1 Service (registry key): mouhid Display name: Pilote HID de souris Image path: System32\DRIVERS\mouhid.sys Image size: 12288 Image MD5: 124D6846040C79B9C997F78EF4B2A4E5 Start: 3 Type: 1 Error Control: 0 Service (registry key): MountMgr Display name: Gestionnaire de point de montage Start: 0 Type: 1 Error Control: 1 Service (registry key): MPFP Display name: MPFP Image path: System32\Drivers\Mpfp.sys Image size: 109608 Image MD5: B53A1134237A49A10352D5DD54BB2A54 Start: 1 Type: 1 Error Control: 1 Depends On services: TcpIp Service (registry key): MpfService Display name: McAfee Personal Firewall Service Description: MpfService Object name: LocalSystem Image path: "C:\Program Files\McAfee\MPF\MPFSrv.exe" Image size: 841256 Image MD5: B2979980FC750125FFACF9B75E005248 Start: 2 Type: 16 Error Control: 1 Service (registry key): mraid35x Display name: mraid35x Image path: \SystemRoot\System32\DRIVERS\mraid35x.sys Start: 4 Type: 1 Error Control: 1 Service (registry key): MRxDAV Display name: Redirecteur client WebDav Description: Redirecteur client WebDav Image path: System32\DRIVERS\mrxdav.sys Image size: 181248 Image MD5: 46EDCC8F2DB2F322C24F48785CB46366 Start: 3 Type: 2 Error Control: 1 Service (registry key): MRxSmb Display name: MRXSMB Description: MRXSMB Image path: System32\DRIVERS\mrxsmb.sys Image size: 453120 Image MD5: 025AF03CE51645C62F3B6907A7E2BE5E Start: 1 Type: 2 Error Control: 1 Service (registry key): MSDTC Display name: Distributed Transaction Coordinator Description: Coordonne les transactions qui comportent plusieurs gestionnaires de ressources, tels que des bases de données, des files d'attente de messages net des systèmes de fichiers. Si ce service est arrêté, ces transactions ne se produiront pas. S'il est désactivé, le démarrage de tout service qui en dépend explicitement échouera. Object name: NT Authority\NetworkService Image path: C:\WINDOWS\System32\msdtc.exe Image size: 6144 Image MD5: 11CA338B8765DB8E2D1B459F2CFAD147 Start: 4 Type: 16 Error Control: 1 Depends On services: RPCSS,SamSS Service (registry key): MSDTC Bridge 3.0.0.0 Start: 0 Type: 0 Error Control: 0 Service (registry key): Msfs Start: 1 Type: 2 Error Control: 1 Service (registry key): MSIServer Display name: Windows Installer Description: Ajoute, modifie et supprime les applications fournies sous la forme de package Windows Installer (*.msi). Si ce service est désactivé, les services qui en dépendent de manière explicite ne démarreront pas. Object name: LocalSystem Image path: C:\WINDOWS\system32\msiexec.exe /V Image size: 78848 Image MD5: F5F0146580E7023ADB963879840777F8 Start: 3 Type: 32 Error Control: 1 Depends On services: RpcSs Service (registry key): MSKSSRV Display name: Proxy de service de répartition Microsoft Image path: system32\drivers\MSKSSRV.sys Image size: 7552 Image MD5: AE431A8DD3C1D0D0610CDBAC16057AD0 Start: 3 Type: 1 Error Control: 1 Service (registry key): MSPCLOCK Display name: Proxy d'horloge de répartition Microsoft Image path: system32\drivers\MSPCLOCK.sys Image size: 5376 Image MD5: 13E75FEF9DFEB08EEDED9D0246E1F448 Start: 3 Type: 1 Error Control: 1 Service (registry key): MSPQM Display name: Proxy de gestion de qualité de répartition Microsoft Image path: system32\drivers\MSPQM.sys Image size: 4992 Image MD5: 1988A33FF19242576C3D0EF9CE785DA7 Start: 3 Type: 1 Error Control: 1 Service (registry key): mssmbios Display name: Pilote BIOS de gestion de systèmes Microsoft Image path: System32\DRIVERS\mssmbios.sys Image size: 15488 Image MD5: 469541F8BFD2B32659D5D463A6714BCE Start: 3 Type: 1 Error Control: 1 Service (registry key): MSTEE Display name: Convertisseur en T/site-à-site de répartition Microsoft Image path: system32\drivers\MSTEE.sys Image size: 5504 Image MD5: BF13612142995096AB084F2DB7F40F77 Start: 3 Type: 1 Error Control: 1 Service (registry key): Mup Display name: Mup Start: 0 Type: 2 Error Control: 1 Service (registry key): NABTSFEC Display name: Codec NABTS/FEC VBI Image path: system32\DRIVERS\NABTSFEC.sys Image size: 85376 Image MD5: 5C8DC6429C43DC6177C1FA5B76290D1A Start: 3 Type: 1 Error Control: 1 Service (registry key): NDIS Display name: Pilote système NDIS Start: 0 Type: 1 Error Control: 1 Service (registry key): NdisIP Display name: Connection TV/vidéo Microsoft Image path: system32\DRIVERS\NdisIP.sys Image size: 10880 Image MD5: 520CE427A8B298F54112857BCF6BDE15 Start: 3 Type: 1 Error Control: 1 Service (registry key): NdisTapi Display name: Pilote TAPI NDIS d'accès distant Description: Pilote TAPI NDIS d'accès distant Image path: System32\DRIVERS\ndistapi.sys Image size: 9600 Image MD5: 08D43BBDACDF23F34D79E44ED35C1B4C Start: 3 Type: 1 Error Control: 1 Service (registry key): Ndisuio Display name: NDIS mode utilisateur E/S Protocole Description: NDIS mode utilisateur E/S Protocole Image path: System32\DRIVERS\ndisuio.sys Image size: 12928 Image MD5: 34D6CD56409DA9A7ED573E1C90A308BF Start: 3 Type: 1 Error Control: 1 Service (registry key): NdisWan Display name: Pilote réseau étendu NDIS d'accès distant Description: Pilote réseau étendu NDIS d'accès distant Image path: System32\DRIVERS\ndiswan.sys Image size: 91776 Image MD5: 0B90E255A9490166AB368CD55A529893 Start: 3 Type: 1 Error Control: 1 Service (registry key): NDProxy Start: 3 Type: 1 Error Control: 1 Service (registry key): NetBIOS Display name: Interface NetBIOS Description: Interface NetBIOS Image path: System32\DRIVERS\netbios.sys Image size: 34560 Image MD5: 3A2ACA8FC1D7786902CA434998D7CEB4 Start: 1 Type: 2 Error Control: 1 Service (registry key): NetBT Display name: NetBIOS sur TCP/IP Description: NetBIOS sur TCP/IP Image path: System32\DRIVERS\netbt.sys Image size: 162816 Image MD5: 0C80E410CD2F47134407EE7DD19CC86B Start: 1 Type: 1 Error Control: 1 Depends On services: Tcpip,MPFP Service (registry key): NetDDE Display name: DDE réseau Description: Fournit le transport en réseau et la sécurité pour l'échange dynamique de données pour les programmes exécutés sur un même ordinateur ou des ordinateurs différents. Si ce service est arrêté, le transport et la sécurité de l'échange dynamique de données seront indisponibles. Si ce service est désactivé, tout service en dépendant explicitement ne démarrera pas. Object name: LocalSystem Image path: %SystemRoot%\system32\netdde.exe Image size: 114176 Image MD5: D40598FD7B7DCCBFB22D777E0DFB1CF0 Start: 4 Type: 32 Error Control: 1 Depends On services: NetDDEDSDM Service (registry key): NetDDEdsdm Display name: DSDM DDE réseau Description: Gère l'échange dynamique de données partagées de réseau. Si ce service est arrêté, l'échange dynamique de données partagées de réseau ne sera plus disponible. Si ce service est désactivé, tout service en dépendant explicitement ne démarrera pas. Object name: LocalSystem Image path: %SystemRoot%\system32\netdde.exe Image size: 114176 Image MD5: D40598FD7B7DCCBFB22D777E0DFB1CF0 Start: 4 Type: 32 Error Control: 1 Service (registry key): Netlogon Display name: Ouverture de session réseau Description: Prend en charge l'authentification directe des événements d'ouverture de session du compte pour les ordinateurs dans un domaine. Object name: LocalSystem Image path: %SystemRoot%\System32\lsass.exe Image size: 13312 Image MD5: 259AF82A0932EEA4F316F92DB94707B6 Start: 3 Type: 32 Error Control: 1 Depends On services: LanmanWorkstation Service (registry key): Netman Display name: Connexions réseau Description: Prend en charge les objets dans le dossier Connexions réseau et accès à distance, dans lequel vous pouvez afficher à la fois les connexions du réseau local et les connexions à distance. Object name: LocalSystem Image path: %SystemRoot%\System32\svchost.exe -k netsvcs Image size: 14336 Image MD5: 2979B03D5382A602623C0535B16AB9C0 Start: 3 Type: 288 Error Control: 1 Depends On services: RpcSs Service (registry key): NetSvc Display name: Intel NCS NetService Object name: LocalSystem Image path: C:\Program Files\Intel\NCS\Sync\NetSvc.exe Image size: 143360 Image MD5: 737351F39FEF765234037770ABDD72BD Start: 3 Type: 272 Error Control: 1 Depends On services: RPCSS Service (registry key): NetTcpPortSharing Display name: Net.Tcp Port Sharing Service Description: Provides ability to share TCP ports over the net.tcp protocol. Object name: NT AUTHORITY\LocalService Image path: "C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe" Image size: 122880 Image MD5: 8070BB07FE06DE8B9ACB29B07016A273 Start: 4 Type: 32 Error Control: 1 Service (registry key): Nla Display name: NLA (Network Location Awareness) Description: Recueille et stocke les informations de configuration et d'emplacement réseau, et notifie les applications quand ces informations changent. Object name: LocalSystem Image path: %SystemRoot%\System32\svchost.exe -k netsvcs Image size: 14336 Image MD5: 2979B03D5382A602623C0535B16AB9C0 Start: 4 Type: 32 Error Control: 1 Depends On services: Tcpip,Afd Service (registry key): Npfs Start: 1 Type: 2 Error Control: 1 Service (registry key): Ntfs Start: 4 Type: 2 Error Control: 1 Service (registry key): NtLmSsp Display name: Fournisseur de la prise en charge de sécurité LM NT Description: Assure la sécurité des programmes RPC (appels de procédure distante) qui utilisent des transports autres que des canaux nommés. Object name: LocalSystem Image path: %SystemRoot%\System32\lsass.exe Image size: 13312 Image MD5: 259AF82A0932EEA4F316F92DB94707B6 Start: 3 Type: 32 Error Control: 1 Service (registry key): NtmsSvc Display name: Stockage amovible Object name: LocalSystem Image path: %SystemRoot%\system32\svchost.exe -k netsvcs Image size: 14336 Image MD5: 2979B03D5382A602623C0535B16AB9C0 Start: 3 Type: 32 Error Control: 1 Depends On services: RpcSs Service (registry key): Null Start: 1 Type: 1 Error Control: 1 Service (registry key): nv Image path: System32\DRIVERS\nv4_mini.sys Image size: 1330940 Image MD5: 66C90AFBF0D10A93789F6544BE459E72 Start: 3 Type: 1 Error Control: 0 Service (registry key): NVSvc Display name: NVIDIA Driver Helper Service Object name: LocalSystem Image path: %SystemRoot%\System32\nvsvc32.exe Image size: 73728 Image MD5: 557015B4919C4A688771221C1338EED0 Start: 2 Type: 16 Error Control: 1 Service (registry key): NwlnkFlt Display name: Pilote de filtre de trafic IPX Description: Pilote de filtre de trafic IPX Image path: System32\DRIVERS\nwlnkflt.sys Image size: 12416 Image MD5: B305F3FAD35083837EF46A0BBCE2FC57 Start: 3 Type: 1 Error Control: 1 Depends On services: NwlnkFwd Service (registry key): NwlnkFwd Display name: Pilote de transfert de trafic IPX Description: Pilote de transfert de trafic IPX Image path: System32\DRIVERS\nwlnkfwd.sys Image size: 32512 Image MD5: C99B3415198D1AAB7227F2C88FD664B9 Start: 3 Type: 1 Error Control: 1 Service (registry key): omci Display name: OMCI WDM Device Driver Image path: System32\DRIVERS\omci.sys Image size: 17217 Image MD5: 53D5F1278D9EDB21689BBBCECC09108D Start: 1 Type: 1 Error Control: 1 Service (registry key): P1110VID Display name: Creative WebCam NX Image path: system32\DRIVERS\P1110VID.sys Image size: 90357 Image MD5: F1FDA9093A04D77063AE84FE3F9A30A0 Start: 3 Type: 1 Error Control: 1 Service (registry key): P3 Display name: Pilote processeur Intel Pentium III Image path: System32\DRIVERS\p3.sys Image size: 46720 Image MD5: 136E0CEA9BD1C42066692DECFA5C6418 Start: 1 Type: 1 Error Control: 1 Service (registry key): Parport Display name: Pilote de port parallèle Image path: System32\DRIVERS\parport.sys Image size: 80384 Image MD5: 318696359AC7DF48D1E51974EC527DD2 Start: 3 Type: 1 Error Control: 1 Service (registry key): PartMgr Display name: Gestionnaire de partition Start: 0 Type: 1 Error Control: 1 Service (registry key): ParVdm Start: 2 Type: 1 Error Control: 0 Depends On services: Parport Depends On group: "Parallel arbitrator" Service (registry key): PCI Display name: Pilote de bus PCI Image path: System32\DRIVERS\pci.sys Image size: 68608 Image MD5: 7C5DA5C1ED801AD8B0309D5514F0B75E Start: 0 Type: 1 Error Control: 3 Service (registry key): PCIDump Start: 1 Type: 1 Error Control: 0 Service (registry key): PCIIde Image path: System32\DRIVERS\pciide.sys Image size: 3328 Image MD5: F4BFDE7209C14A07AAA61E4D6AE69EAC Start: 0 Type: 1 Error Control: 1 Service (registry key): Pcmcia Start: 4 Type: 1 Error Control: 1 Service (registry key): PDCOMP Start: 3 Type: 1 Error Control: 0 Service (registry key): PDFRAME Start: 3 Type: 1 Error Control: 0 Service (registry key): PDRELI Start: 3 Type: 1 Error Control: 0 Service (registry key): PDRFRAME Start: 3 Type: 1 Error Control: 0 Service (registry key): perc2 Display name: perc2 Image path: \SystemRoot\System32\DRIVERS\perc2.sys Start: 4 Type: 1 Error Control: 1 Service (registry key): perc2hib Display name: perc2hib Image path: \SystemRoot\System32\DRIVERS\perc2hib.sys Start: 4 Type: 1 Error Control: 1 Service (registry key): PerfDisk Start: 0 Type: 0 Error Control: 0 Service (registry key): PerfNet Start: 0 Type: 0 Error Control: 0 Service (registry key): PerfOS Start: 0 Type: 0 Error Control: 0 Service (registry key): PerfProc Start: 0 Type: 0 Error Control: 0 Service (registry key): pfc Display name: Padus ASPI Shell Image path: system32\drivers\pfc.sys Image size: 21248 Image MD5: 6C1618A07B49E3873582B6449E744088 Start: 3 Type: 1 Error Control: 1 Service (registry key): PfModNT Image path: \??\C:\WINDOWS\system32\drivers\PfModNT.sys Image size: 15840 Image MD5: C8A2D6FF660AC601B7BB9A9B16A5C25E Start: 2 Type: 1 Error Control: 1 Service (registry key): PlugPlay Display name: Plug-and-Play Description: Permet à l'ordinateur de reconnaître et d'adapter les modifications matérielles avec peu ou pas du tout d'intervention de l'utilisateur. Arrêter ou désactiver ce service provoque une instabilité du système. Object name: LocalSystem Image path: %SystemRoot%\system32\services.exe Image size: 108544 Image MD5: 63DCDE1A0D86EEB8924D6738FF616EAD Start: 2 Type: 32 Error Control: 1 Service (registry key): PolicyAgent Display name: Services IPSEC Description: Gère la stratégie de sécurité IP et démarre les pilotes de gestion de sécurité IP et ISAKMP/Oakley (IKE). Object name: LocalSystem Image path: %SystemRoot%\System32\lsass.exe Image size: 13312 Image MD5: 259AF82A0932EEA4F316F92DB94707B6 Start: 3 Type: 32 Error Control: 1 Depends On services: RPCSS,Tcpip,IPSec Service (registry key): PptpMiniport Display name: Miniport réseau étendu (PPTP) Description: Miniport réseau étendu (PPTP) Image path: System32\DRIVERS\raspptp.sys Image size: 48384 Image MD5: 1C5CC65AAC0783C344F16353E60B72AC Start: 3 Type: 1 Error Control: 1 Service (registry key): Processor Display name: Pilote processeur Image path: System32\DRIVERS\processr.sys Image size: 39552 Image MD5: F480712B761E538BC8E44EDE60F3A3C3 Start: 1 Type: 1 Error Control: 1 Service (registry key): Profos Display name: Profos Image path: \??\C:\Program Files\Fichiers communs\BitDefender\BitDefender Threat Scanner\profos.sys Start: 3 Type: 1 Error Control: 1 Service (registry key): ProtectedStorage Display name: Emplacement protégé Description: Fournit un stockage protégé pour les données sensibles, telles que les clés privées, afin d'empêcher l'accès par des services, des processus ou des utilisateurs non autorisés. Object name: LocalSystem Image path: %SystemRoot%\system32\lsass.exe Image size: 13312 Image MD5: 259AF82A0932EEA4F316F92DB94707B6 Start: 2 Type: 288 Error Control: 1 Depends On services: RpcSs Service (registry key): PSched Display name: Planificateur de paquets QoS Description: Planificateur de paquets QoS Image path: System32\DRIVERS\psched.sys Image size: 69120 Image MD5: 48671F327553DCF1D27F6197F622A668 Start: 3 Type: 1 Error Control: 1 Depends On services: Gpc Service (registry key): Ptilink Display name: Pilote de liaison parallèle directe Description: Pilote de liaison parallèle directe Image path: System32\DRIVERS\ptilink.sys Image size: 17792 Image MD5: 80D317BD1C3DBC5D4FE7B1678C60CADD Start: 3 Type: 1 Error Control: 1 Service (registry key): PxHelp20 Display name: PxHelp20 Image path: System32\Drivers\PxHelp20.sys Image size: 20640 Image MD5: 183EF96BCC2EC3D5294CB2C2C0ECBCD1 Start: 0 Type: 1 Error Control: 1 Service (registry key): ql1080 Display name: ql1080 Image path: \SystemRoot\System32\DRIVERS\ql1080.sys Start: 4 Type: 1 Error Control: 1 Service (registry key): Ql10wnt Display name: Ql10wnt Image path: \SystemRoot\System32\DRIVERS\ql10wnt.sys Start: 4 Type: 1 Error Control: 1 Service (registry key): ql12160 Display name: ql12160 Image path: \SystemRoot\System32\DRIVERS\ql12160.sys Start: 4 Type: 1 Error Control: 1 Service (registry key): ql1240 Display name: ql1240 Image path: \SystemRoot\System32\DRIVERS\ql1240.sys Start: 4 Type: 1 Error Control: 1 Service (registry key): ql1280 Display name: ql1280 Image path: \SystemRoot\System32\DRIVERS\ql1280.sys Start: 4 Type: 1 Error Control: 1 Service (registry key): RasAcd Display name: Pilote de connexion automatique d'accès distant Description: Pilote de connexion automatique d'accès distant Image path: System32\DRIVERS\rasacd.sys Image size: 8832 Image MD5: FE0D99D6F31E4FAD8159F690D68DED9C Start: 1 Type: 1 Error Control: 1 Service (registry key): RasAuto Display name: Gestionnaire de connexion automatique d'accès distant Description: Crée une connexion vers un réseau distant à chaque fois qu'un programme référence un nom ou une adresse DNS ou NetBIOS distant. Object name: LocalSystem Image path: %SystemRoot%\System32\svchost.exe -k netsvcs Image size: 14336 Image MD5: 2979B03D5382A602623C0535B16AB9C0 Start: 3 Type: 32 Error Control: 1 Depends On services: RasMan,Tapisrv Service (registry key): Rasl2tp Display name: Miniport réseau étendu (L2TP) Description: Miniport réseau étendu (L2TP) Image path: System32\DRIVERS\rasl2tp.sys Image size: 51328 Image MD5: 98FAEB4A4DCF812BA1C6FCA4AA3E115C Start: 3 Type: 1 Error Control: 1 Service (registry key): RasMan Display name: Gestionnaire de connexions d'accès distant Description: Crée une connexion réseau. Object name: LocalSystem Image path: %SystemRoot%\System32\svchost.exe -k netsvcs Image size: 14336 Image MD5: 2979B03D5382A602623C0535B16AB9C0 Start: 3 Type: 32 Error Control: 1 Depends On services: Tapisrv Service (registry key): RasPppoe Display name: Pilote PPPOE d'accès à distance Description: Pilote PPPOE d'accès à distance Image path: System32\DRIVERS\raspppoe.sys Image size: 41472 Image MD5: 7306EEED8895454CBED4669BE9F79FAA Start: 3 Type: 1 Error Control: 1 Service (registry key): Raspti Display name: Parallèle direct Description: Parallèle direct Image path: System32\DRIVERS\raspti.sys Image size: 16512 Image MD5: FDBB1D60066FCFBB7452FD8F9829B242 Start: 3 Type: 1 Error Control: 1 Service (registry key): Rdbss Display name: Rdbss Description: Rdbss Image path: System32\DRIVERS\rdbss.sys Image size: 174592 Image MD5: 03B965B1CA47F6EF60EB5E51CB50E0AF Start: 1 Type: 2 Error Control: 1 Service (registry key): RDPCDD Image path: System32\DRIVERS\RDPCDD.sys Image size: 4224 Image MD5: 4912D5B403614CE99C28420F75353332 Start: 1 Type: 1 Error Control: 0 Service (registry key): RDPDD Start: 0 Type: 0 Error Control: 0 Service (registry key): rdpdr Display name: Pilote de redirecteur de périphérique Terminal Server Image path: System32\DRIVERS\rdpdr.sys Image size: 196864 Image MD5: A2CAE2C60BC37E0751EF9DDA7CEAF4AD Start: 3 Type: 1 Error Control: 1 Service (registry key): RDPNP Start: 0 Type: 0 Error Control: 0 Service (registry key): RDPWD Start: 3 Type: 1 Error Control: 0 Service (registry key): RDSessMgr Display name: Gestionnaire de session d'aide sur le Bureau à distance Description: Gère et contrôle l'assistance à distance. Si ce service est arrêté, l'assistance à distance n'est pas disponible. Consultez l'onglet Dépendances avant d'arrêter ce service. Object name: LocalSystem Image path: C:\WINDOWS\system32\sessmgr.exe Image size: 142336 Image MD5: F35A23E5B6413F93CCCA0D05D00183FB Start: 3 Type: 16 Error Control: 1 Depends On services: RPCSS Service (registry key): redbook Display name: Pilote de filtre de lecture digitale de CD audio Image path: System32\DRIVERS\redbook.sys Image size: 58496 Image MD5: 2CC30B68DD62B73D444A41322CD7FC4C Start: 1 Type: 1 Error Control: 1 Service (registry key): RemoteAccess Display name: Routage et accès distant Description: Offre aux entreprises des services de routage dans les environnements de réseau local ou étendu. Object name: LocalSystem Image path: %SystemRoot%\System32\svchost.exe -k netsvcs Image size: 14336 Image MD5: 2979B03D5382A602623C0535B16AB9C0 Start: 4 Type: 32 Error Control: 1 Depends On services: RpcSS Depends On group: NetBIOSGroup Service (registry key): RpcLocator Display name: Localisateur d'appels de procédure distante (RPC) Description: Gère la base de données du service de nom RPC. Object name: NT AUTHORITY\NetworkService Image path: %SystemRoot%\System32\locator.exe Image size: 75264 Image MD5: DAB8E0B2F07DC4D44F8F72BF3994630B Start: 3 Type: 16 Error Control: 1 Depends On services: LanmanWorkstation Service (registry key): RpcSs Display name: Appel de procédure distante (RPC) Description: Fournit le mappeur du point de sortie et divers services RPC. Object name: NT Authority\NetworkService Image path: %SystemRoot%\system32\svchost -k rpcss Image size: 14336 Image MD5: 2979B03D5382A602623C0535B16AB9C0 Start: 2 Type: 32 Error Control: 1 Service (registry key): RSVP Display name: QoS RSVP Description: Fournit la signalisation de réseau et la fonctionnalité d'installation du contrôle de trafic local pour les programmes reconnaissant QoS et les applets de contrôle. Object name: LocalSystem Image path: %SystemRoot%\System32\rsvp.exe Image size: 132608 Image MD5: 414964844F4793ACB868D057E8ED997E Start: 4 Type: 16 Error Control: 1 Depends On services: TcpIp,Afd,RpcSs Service (registry key): SamSs Display name: Gestionnaire de comptes de sécurité Description: Stocke les informations de sécurité pour les comptes d'utilisateurs locaux. Object name: LocalSystem Image path: %SystemRoot%\system32\lsass.exe Image size: 13312 Image MD5: 259AF82A0932EEA4F316F92DB94707B6 Start: 2 Type: 32 Error Control: 1 Depends On services: RPCSS Service (registry key): SCardSvr Display name: Carte à puce Description: Gère l'accès aux cartes à puce lues par cet ordinateur. Si ce service est arrêté, cet ordinateur ne pourra plus lire de cartes à puces. Si ce service est désactivé, tout service en dépendant explicitement ne démarrera pas. Object name: NT AUTHORITY\LocalService Image path: %SystemRoot%\System32\SCardSvr.exe Image size: 100352 Image MD5: 8866078139C403A28CB4CB460CA6DC90 Start: 3 Type: 32 Error Control: 0 Depends On services: PlugPlay Service (registry key): Schedule Display name: Planificateur de tâches Description: Permet à un utilisateur de configurer et de planifier des tâches automatisées sur cet ordinateur. Si ce service est arrêté, ces tâches ne seront pas exécutées à l'heure prévue. Si ce service est désactivé, tout service en dépendant explicitement ne démarrera pas. Object name: LocalSystem Image path: %SystemRoot%\System32\svchost.exe -k netsvcs Image size: 14336 Image MD5: 2979B03D5382A602623C0535B16AB9C0 Start: 2 Type: 288 Error Control: 1 Depends On services: RpcSs Service (registry key): ScsiPort Image path: %SystemRoot%\system32\drivers\scsiport.sys Image size: 96256 Image MD5: D7FD0FF761E28AC0EA35AD71E0CD67E9 Start: 0 Type: 0 Error Control: 0 Service (registry key): Secdrv Display name: Secdrv Description: SafeDisc driver Image path: System32\DRIVERS\secdrv.sys Image size: 27440 Image MD5: D26E26EA516450AF9D072635C60387F4 Start: 3 Type: 1 Error Control: 1 Service (registry key): seclogon Display name: Connexion secondaire Description: Permet le démarrage des processus sous d'autres informations d'identification. Si ce service est arrêté, ce type d'ouverture de session sera indisponible. Si ce service est désactivé, tout service en dépendant explicitement ne démarrera pas. Object name: LocalSystem Image path: %SystemRoot%\System32\svchost.exe -k netsvcs Image size: 14336 Image MD5: 2979B03D5382A602623C0535B16AB9C0 Start: 4 Type: 288 Error Control: 0 Service (registry key): SENS Display name: Notification d'événement système Description: Scrute les événements système tels que les ouvertures de session Windows et les événements concernant le réseau et l'alimentation. Avertit les abonnés du système d'événements COM+ de ces événements. Object name: LocalSystem Image path: %SystemRoot%\system32\svchost.exe -k netsvcs Image size: 14336 Image MD5: 2979B03D5382A602623C0535B16AB9C0 Start: 2 Type: 32 Error Control: 1 Depends On services: EventSystem Service (registry key): serenum Display name: Pilote de filtre Serenum Image path: System32\DRIVERS\serenum.sys Image size: 15488 Image MD5: A2D868AEEFF612E70E213C451A70CAFB Start: 3 Type: 1 Error Control: 1 Service (registry key): Serial Display name: Pilote de port série Image path: System32\DRIVERS\serial.sys Image size: 66560 Image MD5: 653201755CA96AB4AAA4131DAF6DA356 Start: 1 Type: 1 Error Control: 0 Service (registry key): ServiceModelEndpoint 3.0.0.0 Start: 0 Type: 0 Error Control: 0 Service (registry key): ServiceModelOperation 3.0.0.0 Start: 0 Type: 0 Error Control: 0 Service (registry key): ServiceModelService 3.0.0.0 Start: 0 Type: 0 Error Control: 0 Service (registry key): Sfloppy Start: 1 Type: 1 Error Control: 0 Depends On group: "SCSI miniport" Service (registry key): SharedAccess Display name: Internet Connection Sharing Description: Provides network address translation, addressing, and name resolution services for all computers on your home network through a dial-up connection. Object name: LocalSystem Image path: %SystemRoot%\System32\svchost.exe -k netsvcs Image size: 14336 Image MD5: 2979B03D5382A602623C0535B16AB9C0 Start: 2 Type: 32 Error Control: 1 Depends On services: Netman,WinMgmt Service (registry key): ShellHWDetection Display name: Détection matériel noyau Object name: LocalSystem Image path: %SystemRoot%\System32\svchost.exe -k netsvcs Image size: 14336 Image MD5: 2979B03D5382A602623C0535B16AB9C0 Start: 2 Type: 32 Error Control: 0 Depends On services: RpcSs Service (registry key): Simbad Start: 4 Type: 1 Error Control: 1 Service (registry key): sisagp Display name: Filtre de bus AGP SIS Image path: \SystemRoot\System32\DRIVERS\sisagp.sys Start: 4 Type: 1 Error Control: 1 Service (registry key): SLIP Display name: Détrameur décalage BDA Image path: system32\DRIVERS\SLIP.sys Image size: 11136 Image MD5: 5CAEED86821FA2C6139E32E9E05CCDC9 Start: 3 Type: 1 Error Control: 1 Service (registry key): SMSvcHost 3.0.0.0 Start: 0 Type: 0 Error Control: 0 Service (registry key): smwdm Image path: system32\drivers\smwdm.sys Image size: 578176 Image MD5: 39F9595D2F6F7EB93F45A466789A6F49 Start: 3 Type: 1 Error Control: 1 Service (registry key): Sparrow Display name: Sparrow Image path: \SystemRoot\System32\DRIVERS\sparrow.sys Start: 4 Type: 1 Error Control: 1 Service (registry key): splitter Display name: Splitter audio du noyau Microsoft Image path: system32\drivers\splitter.sys Image size: 6400 Image MD5: 8E186B8F23295D1E42C573B82B80D548 Start: 3 Type: 1 Error Control: 1 Service (registry key): Spooler Display name: Spouleur d'impression Description: Charge des fichiers en mémoire pour une impression ultérieure. Object name: LocalSystem Image path: %SystemRoot%\system32\spoolsv.exe Image size: 57856 Image MD5: DA81EC57ACD4CDC3D4C51CF3D409AF9F Start: 2 Type: 272 Error Control: 1 Depends On services: RPCSS Service (registry key): sr Display name: Pilote de filtre de restauration système Image path: System32\DRIVERS\sr.sys Image size: 73600 Image MD5: B52181023B827ACDA36C1B76751EBFFD Start: 0 Type: 2 Error Control: 1 Service (registry key): srservice Display name: Service de restauration système Description: Effectue des opérations de restauration du système. Pour arrêter ce service, désactivez Restauration du système dans l'onglet Restauration du système des propriétés du Poste de travail. Object name: LocalSystem Image path: %SystemRoot%\System32\svchost.exe -k netsvcs Image size: 14336 Image MD5: 2979B03D5382A602623C0535B16AB9C0 Start: 2 Type: 32 Error Control: 1 Depends On services: RpcSs Service (registry key): Srv Display name: Srv Description: Srv Image path: System32\DRIVERS\srv.sys Image size: 332928 Image MD5: EA554A3FFC3F536FE8320EB38F5E4843 Start: 3 Type: 2 Error Control: 1 Service (registry key): sscdbhk5 Image path: system32\drivers\sscdbhk5.sys Image size: 5621 Image MD5: 7C0C9BDCA2D351FF3B4F9B69F99AA995 Start: 1 Type: 2 Error Control: 0 Service (registry key): SSDPSRV Display name: Service de découvertes SSDP Description: Active la découverte de périphériques Plug and Play universels sur votre réseau domestique. Object name: NT AUTHORITY\LocalService Image path: %SystemRoot%\System32\svchost.exe -k LocalService Image size: 14336 Image MD5: 2979B03D5382A602623C0535B16AB9C0 Start: 4 Type: 32 Error Control: 1 Depends On services: HTTP Service (registry key): ssrtln Image path: system32\drivers\ssrtln.sys Image size: 23219 Image MD5: 31726706D54894D5059F7471111A87BB Start: 1 Type: 2 Error Control: 0 Service (registry key): StillCam Display name: Pilote d'appareil photo numérique série Image path: System32\DRIVERS\serscan.sys Image size: 6912 Image MD5: 3F669C9FC6411BDBC0155544AA876E46 Start: 3 Type: 1 Error Control: 1 Service (registry key): stisvc Display name: Acquisition d'image Windows (WIA) Description: Fournit des services d'acquisition d'images pour les scanneurs et les appareils photo. Object name: LocalSystem Image path: %SystemRoot%\System32\svchost.exe -k imgsvc Image size: 14336 Image MD5: 2979B03D5382A602623C0535B16AB9C0 Start: 3 Type: 32 Error Control: 1 Depends On services: RpcSs Service (registry key): streamip Display name: BDA IPSink Image path: system32\DRIVERS\StreamIP.sys Image size: 15360 Image MD5: 284C57DF5DC7ABCA656BC2B96A667AFB Start: 3 Type: 1 Error Control: 1 Service (registry key): swenum Display name: Pilote de bus logiciel Image path: System32\DRIVERS\swenum.sys Image size: 4352 Image MD5: 03C1BAE4766E2450219D20B993D6E046 Start: 3 Type: 1 Error Control: 1 Service (registry key): swmidi Display name: Synthétiseur de table de sons GC noyau Microsoft Image path: system32\drivers\swmidi.sys Image size: 54272 Image MD5: 94ABC808FC4B6D7D2BBF42B85E25BB4D Start: 3 Type: 1 Error Control: 1 Service (registry key): SwPrv Display name: MS Software Shadow Copy Provider Description: Gère les copies logicielles de clichés instantanés de volumes créés par le service de cliché instantané de volumes. Si ce service est arrêté, les copies logicielles de clichés instantanés ne peuvent pas être gérées. Si le service est désactivé, les services qui en dépendent ne pourront pas démarrer. Object name: LocalSystem Image path: C:\WINDOWS\System32\dllhost.exe /Processid:{B21D9DED-985F-4DD8-A530-AEB30138BD0F} Image size: 5120 Image MD5: 9B2CE161927038D4CABE0482A14FD052 Start: 3 Type: 16 Error Control: 0 Depends On services: rpcss Service (registry key): swwd Start: 0 Type: 0 Error Control: 0 Service (registry key): symc810 Display name: symc810 Image path: \SystemRoot\System32\DRIVERS\symc810.sys Start: 4 Type: 1 Error Control: 1 Service (registry key): symc8xx Display name: symc8xx Image path: \SystemRoot\System32\DRIVERS\symc8xx.sys Start: 4 Type: 1 Error Control: 1 Service (registry key): sym_hi Display name: sym_hi Image path: \SystemRoot\System32\DRIVERS\sym_hi.sys Start: 4 Type: 1 Error Control: 1 Service (registry key): sym_u3 Display name: sym_u3 Image path: \SystemRoot\System32\DRIVERS\sym_u3.sys Start: 4 Type: 1 Error Control: 1 Service (registry key): sysaudio Display name: Périphérique audio système du noyau Microsoft Image path: system32\drivers\sysaudio.sys Image size: 60800 Image MD5: 650AD082D46BAC0E64C9C0E0928492FD Start: 3 Type: 1 Error Control: 1 Service (registry key): SysmonLog Display name: Journaux et alertes de performance Description: Collecte les données de performances des ordinateurs locaux ou distants basés sur des paramètres planifiés préconfigurés, puis écrit les données dans un journal ou déclenche une alerte. Si ce service est arrêté, les informations de performances ne seront pas collectées. Si ce service est désactivé, tout service en dépendant explicitement ne démarrera pas. Object name: NT Authority\NetworkService Image path: %SystemRoot%\system32\smlogsvc.exe Image size: 93184 Image MD5: 0FAAD412D36E668260A6D5699875D534 Start: 4 Type: 16 Error Control: 1 Service (registry key): TapiSrv Display name: Téléphonie Description: Fournit la prise en charge des API de téléphonie (TAPI) pour les programmes contrôlant les périphériques de téléphonie, les connexions vocales basées sur le protocole IP, sur l'ordinateur local, via le réseau local, sur le serveur où ce service fonctionne également. Object name: LocalSystem Image path: %SystemRoot%\System32\svchost.exe -k netsvcs Image size: 14336 Image MD5: 2979B03D5382A602623C0535B16AB9C0 Start: 3 Type: 32 Error Control: 1 Depends On services: PlugPlay,RpcSs Service (registry key): Tcpip Display name: Pilote du protocole TCP/IP Description: Pilote du protocole TCP/IP Image path: System32\DRIVERS\tcpip.sys Image size: 359808 Image MD5: B4E29943B4B04BD5E7381546848E6669 Start: 1 Type: 1 Error Control: 1 Depends On services: IPSec Service (registry key): TDPIPE Start: 3 Type: 1 Error Control: 0 Service (registry key): TDTCP Start: 3 Type: 1 Error Control: 0 Service (registry key): TermDD Display name: Pilote de périphérique terminal Image path: System32\DRIVERS\termdd.sys Image size: 40840 Image MD5: A540A99C281D933F3D69D55E48727F47 Start: 1 Type: 1 Error Control: 1 Service (registry key): TermService Display name: Services Terminal Server Description: Permet à plusieurs utilisateurs de se connecter en même temps à un ordinateur, tout en affichant les bureaux et les applications sur les ordinateurs distants. Contient les fonctions sous-jacentes de Bureau à distance (y compris le Bureau à distance pour les administrateurs), le Changement rapide d'utilisateur, l'Assistance à distance et le service Terminal Server. Object name: LocalSystem Image path: %SystemRoot%\System32\svchost -k DComLaunch Image size: 14336 Image MD5: 2979B03D5382A602623C0535B16AB9C0 Start: 4 Type: 32 Error Control: 1 Depends On services: RPCSS Service (registry key): tfsnboio Image path: system32\dla\tfsnboio.sys Image size: 25685 Image MD5: B0D311F33C5B4A5858E4E6C965A79267 Start: 2 Type: 2 Error Control: 0 Service (registry key): tfsncofs Image path: system32\dla\tfsncofs.sys Image size: 34837 Image MD5: 250F74FCE5D1ECCB29AD9ABEB55F35D8 Start: 2 Type: 2 Error Control: 0 Service (registry key): tfsndrct Image path: system32\dla\tfsndrct.sys Image size: 4117 Image MD5: E23291934C59E1741BA83582E7A209C0 Start: 2 Type: 2 Error Control: 0 Service (registry key): tfsndres Image path: system32\dla\tfsndres.sys Image size: 2265 Image MD5: C16A70695D78F750680E544103D72D25 Start: 2 Type: 2 Error Control: 0 Service (registry key): tfsnifs Image path: system32\dla\tfsnifs.sys Image size: 85972 Image MD5: E3E10696663E35062851A376299198BD Start: 2 Type: 2 Error Control: 0 Service (registry key): tfsnopio Image path: system32\dla\tfsnopio.sys Image size: 14229 Image MD5: 00CC366BDCBD8A9A1C95C1C59900DD9B Start: 2 Type: 2 Error Control: 0 Service (registry key): tfsnpool Image path: system32\dla\tfsnpool.sys Image size: 6357 Image MD5: 84A91D08F49831E8C24E4D25DDEFAE87 Start: 2 Type: 2 Error Control: 0 Service (registry key): tfsnudf Image path: system32\dla\tfsnudf.sys Image size: 98580 Image MD5: 55B761C6E2D4FCEDAC3B46B6C0724830 Start: 2 Type: 2 Error Control: 0 Service (registry key): tfsnudfa Image path: system32\dla\tfsnudfa.sys Image size: 100597 Image MD5: 64C6E8C217E30EE595120C66F6E783BA Start: 2 Type: 2 Error Control: 0 Service (registry key): Themes Display name: Thèmes Description: Fournit un système de gestion de thème de l'expérience utilisateur. Object name: LocalSystem Image path: %SystemRoot%\System32\svchost.exe -k netsvcs Image size: 14336 Image MD5: 2979B03D5382A602623C0535B16AB9C0 Start: 2 Type: 32 Error Control: 1 Service (registry key): TICalc Start: 2 Type: 1 Error Control: 1 Service (registry key): tmcomm Display name: tmcomm Image path: \??\C:\WINDOWS\system32\drivers\tmcomm.sys Image size: 102800 Image MD5: 3E4A1384A27013AB7B767A88B8A1BD34 Start: 2 Type: 1 Error Control: 1 Service (registry key): TosIde Display name: TosIde Image path: \SystemRoot\System32\DRIVERS\toside.sys Start: 4 Type: 1 Error Control: 1 Service (registry key): TrkWks Display name: Client de suivi de lien distribué Description: Maintient les liens entre les fichiers NTFS au sein d'un ordinateur ou de plusieurs ordinateurs dans un domaine de réseau. Object name: LocalSystem Image path: %SystemRoot%\system32\svchost.exe -k netsvcs Image size: 14336 Image MD5: 2979B03D5382A602623C0535B16AB9C0 Start: 4 Type: 32 Error Control: 1 Depends On services: RpcSs Service (registry key): Trufos Display name: Trufos Image path: \??\C:\Program Files\Fichiers communs\BitDefender\BitDefender Threat Scanner\trufos.sys Start: 3 Type: 1 Error Control: 1 Service (registry key): TSDDD Start: 0 Type: 0 Error Control: 0 Service (registry key): TSP Display name: TSP Image path: \??\C:\WINDOWS\system32\drivers\klif.sys Start: 3 Type: 1 Error Control: 1 Service (registry key): Udfs Start: 4 Type: 2 Error Control: 1 Service (registry key): ultra Display name: ultra Image path: \SystemRoot\System32\DRIVERS\ultra.sys Start: 4 Type: 1 Error Control: 1 Service (registry key): Update Display name: Pilote de mise à jour microcode Image path: System32\DRIVERS\update.sys Image size: 364160 Image MD5: CED744117E91BDC0BEB810F7D8608183 Start: 3 Type: 1 Error Control: 1 Service (registry key): upnphost Display name: Hôte de périphérique universel Plug-and-Play Description: Offre la prise en charge des périphériques hôtes universels Plug-and-Play. Object name: NT AUTHORITY\LocalService Image path: %SystemRoot%\System32\svchost.exe -k LocalService Image size: 14336 Image MD5: 2979B03D5382A602623C0535B16AB9C0 Start: 4 Type: 32 Error Control: 1 Depends On services: SSDPSRV,HTTP Service (registry key): UPS Display name: Uninterruptible Power Supply Description: Manages an uninterruptible power supply (UPS) connected to the computer. Object name: LocalSystem Image path: %SystemRoot%\System32\ups.exe Image size: 18432 Image MD5: 394C9B28C1A97E1AE0421BE88DDAC102 Start: 3 Type: 16 Error Control: 1 Service (registry key): usbccgp Display name: Pilote parent générique USB Microsoft Image path: System32\DRIVERS\usbccgp.sys Image size: 31616 Image MD5: BFFD9F120CC63BCBAA3D840F3EEF9F79 Start: 3 Type: 1 Error Control: 1 Service (registry key): usbehci Display name: Pilote miniport de contrôleur hôte amélioré USB 2.0 Microsoft Image path: System32\DRIVERS\usbehci.sys Image size: 26624 Image MD5: 15E993BA2F6946B2BFBBFCD30398621E Start: 3 Type: 1 Error Control: 1 Service (registry key): usbhub Display name: Concentrateur USB2 Image path: System32\DRIVERS\usbhub.sys Image size: 57600 Image MD5: C72F40947F92CEA56A8FB532EDF025F1 Start: 3 Type: 1 Error Control: 1 Service (registry key): usbprint Display name: Classe d'imprimantes USB Microsoft Image path: System32\DRIVERS\usbprint.sys Image size: 25856 Image MD5: A42369B7CD8886CD7C70F33DA6FCBCF5 Start: 3 Type: 1 Error Control: 1 Service (registry key): usbscan Display name: Pilote de scanneur USB Image path: System32\DRIVERS\usbscan.sys Image size: 15104 Image MD5: A6BC71402F4F7DD5B77FD7F4A8DDBA85 Start: 3 Type: 1 Error Control: 1 Service (registry key): USBSTOR Display name: Pilote de stockage de masse USB Image path: System32\DRIVERS\USBSTOR.SYS Image size: 26496 Image MD5: 6CD7B22193718F1D17A47A1CD6D37E75 Start: 3 Type: 1 Error Control: 1 Service (registry key): usbuhci Display name: Pilote miniport de contrôleur hôte universel USB Microsoft Image path: System32\DRIVERS\usbuhci.sys Image size: 20480 Image MD5: F8FD1400092E23C8F2F31406EF06167B Start: 3 Type: 1 Error Control: 1 Service (registry key): VgaSave Display name: Carte vidéo VGA. Description: Gère la carte vidéo VGA pour offrir un affichage de base. Image path: \SystemRoot\System32\drivers\vga.sys Start: 1 Type: 1 Error Control: 0 Service (registry key): viaagp Display name: Filtre de bus AGP VIA Image path: \SystemRoot\System32\DRIVERS\viaagp.sys Start: 4 Type: 1 Error Control: 1 Service (registry key): ViaIde Display name: ViaIde Image path: \SystemRoot\System32\DRIVERS\viaide.sys Start: 4 Type: 1 Error Control: 1 Service (registry key): VolSnap Start: 0 Type: 1 Error Control: 1 Service (registry key): VSS Display name: Cliché instantané de volume Description: Gère et implémente les clichés instantanés de volumes pour les sauvegardes et autres utilisations. Si ce service est arrêté, les clichés instantanés ne seront pas disponibles pour la sauvegarde et la sauvegarde échouera. Si ce service est désactivé, les services en dépendant explicitement ne démarreront pas. Object name: LocalSystem Image path: %SystemRoot%\System32\vssvc.exe Image size: 295424 Image MD5: CE38755FF8C161A66E45FC0C10CDEE87 Start: 3 Type: 16 Error Control: 1 Depends On services: RPCSS Service (registry key): VxD Start: 0 Type: 0 Error Control: 0 Service (registry key): w32time Display name: Windows Time Description: Conserve la synchronisation de la date et de l'heure sur tous les clients et serveurs sur le réseau. Si ce service est arrêté, la synchronisation de la date et de l'heure sera indisponible. Si ce service est désactivé, tout service en dépendant explicitement ne démarrera pas. Object name: LocalSystem Image path: %SystemRoot%\system32\svchost.exe -k netsvcs Image size: 14336 Image MD5: 2979B03D5382A602623C0535B16AB9C0 Start: 2 Type: 32 Error Control: 1 Service (registry key): W3SVC Start: 0 Type: 0 Error Control: 0 Service (registry key): Wanarp Display name: Pilote ARP IP d'accès distant Description: Pilote ARP IP d'accès distant Image path: System32\DRIVERS\wanarp.sys Image size: 34560 Image MD5: 984EF0B9788ABF89974CFED4BFBAACBC Start: 3 Type: 1 Error Control: 1 Service (registry key): wanatw Display name: WAN Miniport (ATW) Image path: System32\DRIVERS\wanatw4.sys Start: 3 Type: 1 Error Control: 1 Service (registry key): WDICA Start: 3 Type: 1 Error Control: 0 Service (registry key): wdmaud Display name: Pilote WINMM de compatibilité audio WDM Microsoft Image path: system32\drivers\wdmaud.sys Image size: 82944 Image MD5: 2797F33EBF50466020C430EE4F037933 Start: 3 Type: 1 Error Control: 1 Service (registry key): WebClient Display name: WebClient Description: Permet à un programme fonctionnant sous Windows de créer, modifier et accéder à des fichiers Internet. Si ce service est arrêté, Ces fonctions ne seront pas disponibles. Si ce service est désactivé, tout service en dépendant explicitement ne démarrera pas. Object name: NT AUTHORITY\LocalService Image path: %SystemRoot%\System32\svchost.exe -k LocalService Image size: 14336 Image MD5: 2979B03D5382A602623C0535B16AB9C0 Start: 4 Type: 32 Error Control: 1 Depends On services: MRxDAV Service (registry key): Windows Workflow Foundation 3.0.0.0 Start: 0 Type: 0 Error Control: 0 Service (registry key): winmgmt Display name: Infrastructure de gestion Windows Description: Fournit une interface commune et un modèle objet pour accéder aux informations de gestion du système d'exploitation, des périphériques, des applications et des services. Si ce service est arrêté, la plupart des logiciels sur base Windows ne fonctionneront pas correctement. Si ce service est désactivé, tout service qui en dépend explicitement ne démarrera pas. Object name: LocalSystem Image path: %systemroot%\system32\svchost.exe -k netsvcs Image size: 14336 Image MD5: 2979B03D5382A602623C0535B16AB9C0 Start: 2 Type: 32 Error Control: 0 Depends On services: RPCSS,Eventlog Service (registry key): Winsock Start: 3 Type: 4 Error Control: 1 Service (registry key): WinSock2 Start: 0 Type: 0 Error Control: 0 Service (registry key): WinTrust Start: 0 Type: 0 Error Control: 0 Service (registry key): WmdmPmSN Display name: Service de numéro de série du lecteur multimédia portable Description: Extrait le numéro de série d'un lecteur multimédia portable connecté à cet ordinateur. Si ce service est interrompu, le contenu protégé risque de ne pas être téléchargé sur le périphérique. Object name: LocalSystem Image path: %SystemRoot%\System32\svchost.exe -k netsvcs Image size: 14336 Image MD5: 2979B03D5382A602623C0535B16AB9C0 Start: 3 Type: 32 Error Control: 1 Service (registry key): Wmi Start: 0 Type: 0 Error Control: 0 Service (registry key): WmiApRpl Start: 0 Type: 0 Error Control: 0 Service (registry key): WmiApSrv Display name: Carte de performance WMI Description: Fournit des informations concernant la bibliothèque de performance à partir des fournisseurs HiPerf WMI. Object name: LocalSystem Image path: C:\WINDOWS\System32\wbem\wmiapsrv.exe Image size: 126464 Image MD5: 93A3FC4CF42587A7AB54788F19B9259C Start: 4 Type: 16 Error Control: 1 Depends On services: RPCSS Service (registry key): WMPNetworkSvc Display name: Service Partage réseau du Lecteur Windows Media Description: Partage les bibliothèques du Lecteur Windows Media avec des lecteurs réseau et des appareils multimédias qui utilisent le Plug-and-Play universel Object name: NT AUTHORITY\NetworkService Image path: "C:\Program Files\Windows Media Player\WMPNetwk.exe" Image size: 918016 Image MD5: C9BEA742CE225CC993C9465FDDAE4656 Start: 3 Type: 16 Error Control: 1 Depends On services: upnphost,http,HTTPFilter Service (registry key): WS2IFSL Display name: Environnement de prise en charge de Fournisseur de services non-IFS Windows Sockets 2.0 Image path: \SystemRoot\System32\drivers\ws2ifsl.sys Start: 4 Type: 1 Error Control: 1 Service (registry key): wscsvc Display name: Centre de sécurité Description: Analyse les paramètres de sécurité et les configurations du système. Object name: LocalSystem Image path: %SystemRoot%\System32\svchost.exe -k netsvcs Image size: 14336 Image MD5: 2979B03D5382A602623C0535B16AB9C0 Start: 2 Type: 32 Error Control: 1 Depends On services: RpcSs,winmgmt Service (registry key): WSTCODEC Display name: Codec Teletext standard Image path: system32\DRIVERS\WSTCODEC.SYS Image size: 19328 Image MD5: D5842484F05E12121C511AA93F6439EC Start: 3 Type: 1 Error Control: 1 Service (registry key): wuauserv Display name: Mises à jour automatiques Description: Active le téléchargement et l'installation de mises à jour Windows critiques. Si le service est désactivé, le système d'exploitation peut être mis à jour manuellement sur le site Web de Windows Update. Object name: LocalSystem Image path: %systemroot%\system32\svchost.exe -k netsvcs Image size: 14336 Image MD5: 2979B03D5382A602623C0535B16AB9C0 Start: 2 Type: 272 Error Control: 1 Service (registry key): WudfPf Display name: Windows Driver Foundation - User-mode Driver Framework Platform Driver Description: Provide communciation services for UMDF components. Image path: system32\DRIVERS\WudfPf.sys Image size: 77568 Image MD5: F15FEAFFFBB3644CCC80C5DA584E6311 Start: 3 Type: 1 Error Control: 1 Service (registry key): WudfRd Display name: Windows Driver Foundation - User-mode Driver Framework Reflector Description: Reflect device requests to user-mode driver drivers Image path: system32\DRIVERS\wudfrd.sys Image size: 82944 Image MD5: 28B524262BCE6DE1F7EF9F510BA3985B Start: 3 Type: 1 Error Control: 1 Service (registry key): WudfSvc Display name: Windows Driver Foundation - User-mode Driver Framework Description: Manages user-mode driver host processes Object name: LocalSystem Image path: %SystemRoot%\system32\svchost.exe -k WudfServiceGroup Image size: 14336 Image MD5: 2979B03D5382A602623C0535B16AB9C0 Start: 3 Type: 32 Error Control: 1 Depends On services: PlugPlay Service (registry key): WZCSVC Display name: Configuration automatique sans fil Description: Fournit la configuration automatique des cartes 802.11 Object name: LocalSystem Image path: %SystemRoot%\System32\svchost.exe -k netsvcs Image size: 14336 Image MD5: 2979B03D5382A602623C0535B16AB9C0 Start: 4 Type: 32 Error Control: 1 Depends On services: RpcSs,Ndisuio Service (registry key): xmlprov Display name: Service d'approvisionnement réseau Description: Gère les fichiers de configuration XML en fonction du domaine pour l'approvisionnement réseau automatique. Object name: LocalSystem Image path: %SystemRoot%\System32\svchost.exe -k netsvcs Image size: 14336 Image MD5: 2979B03D5382A602623C0535B16AB9C0 Start: 3 Type: 32 Error Control: 1 Depends On services: RpcSs Service (registry key): {593A6C32-B52A-49BB-B438-100F46D81A20} Start: 0 Type: 0 Error Control: 0 Service (registry key): {BAF27415-7A8C-4647-87C9-363AAE67FDE0} Start: 0 Type: 0 Error Control: 0 A bientôt. Si tu trouves des trucs qui ne servent à rien je suis preneur.
  15. http://forum.zebulon.fr/style_images/1/fol...icons/icon5.gif Bonsoir Gof Je pense avoir bien réalisé la modif du registre . Je n'avais pas saisi le mode d'emploi Logfile of Trend Micro HijackThis v2.0.2 Scan saved at 22:32:34, on 19/08/2007 Platform: Windows XP SP2 (WinNT 5.01.2600) MSIE: Internet Explorer v7.00 (7.00.6000.16512) Boot mode: Normal Running processes: C:\WINDOWS\System32\smss.exe C:\WINDOWS\system32\winlogon.exe C:\WINDOWS\system32\services.exe C:\WINDOWS\system32\lsass.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\System32\svchost.exe C:\WINDOWS\system32\spoolsv.exe C:\WINDOWS\Explorer.EXE C:\Program Files\Dell Photo AIO Printer 922\dlbtbmgr.exe C:\Program Files\McAfee\MBK\McAfeeDataBackup.exe C:\Program Files\POP Peeper\POPPeeper.exe C:\Program Files\Dell Photo AIO Printer 922\dlbtbmon.exe C:\WINDOWS\system32\ctfmon.exe C:\Program Files\Free Download Manager\FUM\fumoei.exe C:\Program Files\Logitech\SetPoint\SetPoint.exe C:\Program Files\OpenOffice.org 2.2\program\soffice.exe C:\Program Files\OpenOffice.org 2.2\program\soffice.BIN C:\Program Files\Fichiers communs\Logitech\KHAL\KHALMNPR.EXE c:\program files\a-squared free\a2service.exe C:\WINDOWS\System32\dllhost.exe C:\Program Files\McAfee\MBK\MBackMonitor.exe C:\Program Files\Fichiers communs\McAfee\HackerWatch\HWAPI.exe C:\PROGRA~1\McAfee\MSC\mcmscsvc.exe c:\program files\fichiers communs\mcafee\mna\mcnasvc.exe C:\PROGRA~1\McAfee\VIRUSS~1\mcods.exe C:\PROGRA~1\McAfee\MSC\mcpromgr.exe c:\PROGRA~1\FICHIE~1\mcafee\redirsvc\redirsvc.exe C:\PROGRA~1\McAfee\VIRUSS~1\mcshield.exe C:\PROGRA~1\McAfee\VIRUSS~1\mcsysmon.exe C:\Program Files\McAfee\MPF\MPFSrv.exe C:\WINDOWS\System32\nvsvc32.exe C:\WINDOWS\system32\svchost.exe c:\PROGRA~1\mcafee.com\agent\mcagent.exe C:\PROGRA~1\FICHIE~1\McAfee\EmProxy\emproxy.exe C:\Program Files\Mozilla Firefox\firefox.exe C:\Program Files\Trend Micro\HijackThis\HijackThis.exe R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank O2 - BHO: Aide pour le lien d'Adobe PDF Reader - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Fichiers communs\Adobe\Acrobat\ActiveX\AcroIEHelper.dll O2 - BHO: QFX Software KeyScrambler - {2B9F5787-88A5-4945-90E7-C4B18563BC5E} - C:\Program Files\KeyScrambler\KeyScramblerIE.dll O2 - BHO: (no name) - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_02\bin\ssv.dll O2 - BHO: scriptproxy - {7DB2D5A0-7241-4E79-B68D-6309F01C5231} - c:\program files\mcafee\virusscan\scriptcl.dll O2 - BHO: FDMIECookiesBHO Class - {CC59E0F9-7E43-44FA-9FAA-8377850BF205} - C:\Program Files\Free Download Manager\iefdm2.dll O3 - Toolbar: Yahoo! Toolbar avec bloqueur de fenêtres pop-up - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - (no file) O3 - Toolbar: (no name) - {0BF43445-2F28-4351-9252-17FE6E806AA0} - (no file) O4 - HKLM\..\Run: [Dell Photo AIO Printer 922] "C:\Program Files\Dell Photo AIO Printer 922\dlbtbmgr.exe" O4 - HKLM\..\Run: [DLBTCATS] rundll32 C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\DLBTtime.dll,_RunDLLEntry@16 O4 - HKLM\..\Run: [Logitech Hardware Abstraction Layer] KHALMNPR.EXE O4 - HKLM\..\Run: [McAfee Backup] C:\Program Files\McAfee\MBK\McAfeeDataBackup.exe O4 - HKLM\..\Run: [MBkLogOnHook] C:\Program Files\McAfee\MBK\LogOnHook.exe O4 - HKCU\..\Run: [POP Peeper] "C:\Program Files\POP Peeper\POPPeeper.exe" -min O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe O4 - HKCU\..\Run: [Free Uploader Oe Integration] C:\Program Files\Free Download Manager\FUM\fumoei.exe O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'SERVICE LOCAL') O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'SERVICE RÉSEAU') O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'SYSTEM') O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'Default user') O4 - Startup: ERUNT AutoBackup.lnk = C:\Program Files\ERUNT\AUTOBACK.EXE O4 - Startup: OpenOffice.org 2.2.lnk = C:\Program Files\OpenOffice.org 2.2\program\quickstart.exe O4 - Startup: TribalWeb.lnk = C:\Program Files\TribalWeb\tribalweb.exe O4 - Startup: wanadoo2.lnk = ? O4 - Global Startup: Logitech SetPoint.lnk = C:\Program Files\Logitech\SetPoint\SetPoint.exe O8 - Extra context menu item: Analyser avec LeechGet - file://C:\Program Files\LeechGet 2006\\Parser.html O8 - Extra context menu item: Download all with Free Download Manager - file://C:\Program Files\Free Download Manager\dlall.htm O8 - Extra context menu item: Download selected with Free Download Manager - file://C:\Program Files\Free Download Manager\dlselected.htm O8 - Extra context menu item: Download video with Free Download Manager - file://C:\Program Files\Free Download Manager\dlfvideo.htm O8 - Extra context menu item: Download with Free Download Manager - file://C:\Program Files\Free Download Manager\dllink.htm O8 - Extra context menu item: Tout télécharger avec Free Download Manager - file://C:\Program Files\Free Download Manager\dlall.htm O8 - Extra context menu item: Télécharger avec Free Download Manager - file://C:\Program Files\Free Download Manager\dllink.htm O8 - Extra context menu item: Télécharger en utilisant l'assistant LeechGet - file://C:\Program Files\LeechGet 2006\\Wizard.html O8 - Extra context menu item: Télécharger en utilisant LeechGet - file://C:\Program Files\LeechGet 2006\\AddUrl.html O8 - Extra context menu item: Télécharger la sélection avec Free Download Manager - file://C:\Program Files\Free Download Manager\dlselected.htm O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_02\bin\ssv.dll O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_02\bin\ssv.dll O9 - Extra button: (no name) - {5C106A59-CC3C-4caa-81A4-6D909B5ACE23} - C:\Program Files\KeyScrambler\KeyScramblerIE.dll O9 - Extra 'Tools' menuitem: &KeyScrambler... - {5C106A59-CC3C-4caa-81A4-6D909B5ACE23} - C:\Program Files\KeyScrambler\KeyScramblerIE.dll O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe O9 - Extra button: Upload - {FD4E2FF8-973C-4A19-89BD-8E86B3CFCFE1} - C:\Program Files\Free Download Manager\FUM\fumiebtn.dll O16 - DPF: {17492023-C23A-453E-A040-C7C580BBF700} (Windows Genuine Advantage Validation Tool) - http://go.microsoft.com/fwlink/?linkid=39204 O16 - DPF: {30528230-99f7-4bb4-88d8-fa1d4f56a2ab} (YInstStarter Class) - C:\Program Files\Yahoo!\Common\yinsthelper.dll O16 - DPF: {4ED9DDF0-7479-4BBE-9335-5A1EDB1D8A21} - O16 - DPF: {BCC0FF27-31D9-4614-A68E-C18E1ADA4389} - http://download.mcafee.com/molbin/shared/m...,26/mcgdmgr.cab O16 - DPF: {CAFEEFAC-0015-0000-0004-ABCDEFFEDCBA} (Java Plug-in 1.5.0_04) - O16 - DPF: {CAFEEFAC-0015-0000-0006-ABCDEFFEDCBA} (Java Plug-in 1.5.0_06) - O16 - DPF: {CAFEEFAC-0015-0000-0008-ABCDEFFEDCBA} (Java Plug-in 1.5.0_08) - O16 - DPF: {CAFEEFAC-0015-0000-0009-ABCDEFFEDCBA} (Java Plug-in 1.5.0_09) - O16 - DPF: {CAFEEFAC-0015-0000-0010-ABCDEFFEDCBA} (Java Plug-in 1.5.0_10) - O16 - DPF: {CAFEEFAC-0015-0000-0011-ABCDEFFEDCBA} (Java Plug-in 1.5.0_11) - O17 - HKLM\System\CCS\Services\Tcpip\..\{5CD2D80C-813E-4E02-A4C7-9B3BADBC17CB}: NameServer = 80.10.246.1 80.10.246.132 O18 - Protocol: bw+0 - {6488CC82-47A7-4A92-90AB-12C4F65F065A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw+0s - {6488CC82-47A7-4A92-90AB-12C4F65F065A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw-0 - {6488CC82-47A7-4A92-90AB-12C4F65F065A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw-0s - {6488CC82-47A7-4A92-90AB-12C4F65F065A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw00 - {6488CC82-47A7-4A92-90AB-12C4F65F065A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw00s - {6488CC82-47A7-4A92-90AB-12C4F65F065A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw10 - {6488CC82-47A7-4A92-90AB-12C4F65F065A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw10s - {6488CC82-47A7-4A92-90AB-12C4F65F065A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw20 - {6488CC82-47A7-4A92-90AB-12C4F65F065A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw20s - {6488CC82-47A7-4A92-90AB-12C4F65F065A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw30 - {6488CC82-47A7-4A92-90AB-12C4F65F065A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw30s - {6488CC82-47A7-4A92-90AB-12C4F65F065A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw40 - {6488CC82-47A7-4A92-90AB-12C4F65F065A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw40s - {6488CC82-47A7-4A92-90AB-12C4F65F065A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw50 - {6488CC82-47A7-4A92-90AB-12C4F65F065A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw50s - {6488CC82-47A7-4A92-90AB-12C4F65F065A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw60 - {6488CC82-47A7-4A92-90AB-12C4F65F065A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw60s - {6488CC82-47A7-4A92-90AB-12C4F65F065A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw70 - {6488CC82-47A7-4A92-90AB-12C4F65F065A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw70s - {6488CC82-47A7-4A92-90AB-12C4F65F065A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw80 - {6488CC82-47A7-4A92-90AB-12C4F65F065A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw80s - {6488CC82-47A7-4A92-90AB-12C4F65F065A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw90 - {6488CC82-47A7-4A92-90AB-12C4F65F065A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw90s - {6488CC82-47A7-4A92-90AB-12C4F65F065A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwa0 - {6488CC82-47A7-4A92-90AB-12C4F65F065A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwa0s - {6488CC82-47A7-4A92-90AB-12C4F65F065A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwb0 - {6488CC82-47A7-4A92-90AB-12C4F65F065A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwb0s - {6488CC82-47A7-4A92-90AB-12C4F65F065A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwc0 - {6488CC82-47A7-4A92-90AB-12C4F65F065A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwc0s - {6488CC82-47A7-4A92-90AB-12C4F65F065A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwd0 - {6488CC82-47A7-4A92-90AB-12C4F65F065A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwd0s - {6488CC82-47A7-4A92-90AB-12C4F65F065A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwe0 - {6488CC82-47A7-4A92-90AB-12C4F65F065A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwe0s - {6488CC82-47A7-4A92-90AB-12C4F65F065A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwf0 - {6488CC82-47A7-4A92-90AB-12C4F65F065A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwf0s - {6488CC82-47A7-4A92-90AB-12C4F65F065A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwfile-8876480 - {9462A756-7B47-47BC-8C80-C34B9B80B32B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\GAPlugProtocol-8876480.dll O18 - Protocol: bwg0 - {6488CC82-47A7-4A92-90AB-12C4F65F065A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwg0s - {6488CC82-47A7-4A92-90AB-12C4F65F065A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwh0 - {6488CC82-47A7-4A92-90AB-12C4F65F065A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwh0s - {6488CC82-47A7-4A92-90AB-12C4F65F065A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwi0 - {6488CC82-47A7-4A92-90AB-12C4F65F065A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwi0s - {6488CC82-47A7-4A92-90AB-12C4F65F065A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwj0 - {6488CC82-47A7-4A92-90AB-12C4F65F065A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwj0s - {6488CC82-47A7-4A92-90AB-12C4F65F065A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwk0 - {6488CC82-47A7-4A92-90AB-12C4F65F065A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwk0s - {6488CC82-47A7-4A92-90AB-12C4F65F065A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwl0 - {6488CC82-47A7-4A92-90AB-12C4F65F065A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwl0s - {6488CC82-47A7-4A92-90AB-12C4F65F065A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwm0 - {6488CC82-47A7-4A92-90AB-12C4F65F065A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwm0s - {6488CC82-47A7-4A92-90AB-12C4F65F065A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwn0 - {6488CC82-47A7-4A92-90AB-12C4F65F065A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwn0s - {6488CC82-47A7-4A92-90AB-12C4F65F065A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwo0 - {6488CC82-47A7-4A92-90AB-12C4F65F065A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwo0s - {6488CC82-47A7-4A92-90AB-12C4F65F065A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwp0 - {6488CC82-47A7-4A92-90AB-12C4F65F065A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwp0s - {6488CC82-47A7-4A92-90AB-12C4F65F065A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwq0 - {6488CC82-47A7-4A92-90AB-12C4F65F065A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwq0s - {6488CC82-47A7-4A92-90AB-12C4F65F065A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwr0 - {6488CC82-47A7-4A92-90AB-12C4F65F065A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwr0s - {6488CC82-47A7-4A92-90AB-12C4F65F065A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bws0 - {6488CC82-47A7-4A92-90AB-12C4F65F065A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bws0s - {6488CC82-47A7-4A92-90AB-12C4F65F065A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwt0 - {6488CC82-47A7-4A92-90AB-12C4F65F065A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwt0s - {6488CC82-47A7-4A92-90AB-12C4F65F065A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwu0 - {6488CC82-47A7-4A92-90AB-12C4F65F065A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwu0s - {6488CC82-47A7-4A92-90AB-12C4F65F065A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwv0 - {6488CC82-47A7-4A92-90AB-12C4F65F065A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwv0s - {6488CC82-47A7-4A92-90AB-12C4F65F065A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bww0 - {6488CC82-47A7-4A92-90AB-12C4F65F065A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bww0s - {6488CC82-47A7-4A92-90AB-12C4F65F065A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwx0 - {6488CC82-47A7-4A92-90AB-12C4F65F065A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwx0s - {6488CC82-47A7-4A92-90AB-12C4F65F065A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwy0 - {6488CC82-47A7-4A92-90AB-12C4F65F065A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwy0s - {6488CC82-47A7-4A92-90AB-12C4F65F065A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwz0 - {6488CC82-47A7-4A92-90AB-12C4F65F065A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwz0s - {6488CC82-47A7-4A92-90AB-12C4F65F065A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: offline-8876480 - {6488CC82-47A7-4A92-90AB-12C4F65F065A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O23 - Service: a-squared Free Service (a2free) - Emsi Software GmbH - c:\program files\a-squared free\a2service.exe O23 - Service: dlbt_device - Dell - C:\WINDOWS\system32\dlbtcoms.exe O23 - Service: McAfee E-mail Proxy (Emproxy) - McAfee, Inc. - C:\PROGRA~1\FICHIE~1\McAfee\EmProxy\emproxy.exe O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Fichiers communs\InstallShield\Driver\1050\Intel 32\IDriverT.exe O23 - Service: MBackMonitor - McAfee - C:\Program Files\McAfee\MBK\MBackMonitor.exe O23 - Service: McAfee HackerWatch Service - McAfee, Inc. - C:\Program Files\Fichiers communs\McAfee\HackerWatch\HWAPI.exe O23 - Service: McAfee Update Manager (mcmispupdmgr) - McAfee, Inc. - C:\PROGRA~1\McAfee\MSC\mcupdmgr.exe O23 - Service: McAfee Services (mcmscsvc) - McAfee, Inc. - C:\PROGRA~1\McAfee\MSC\mcmscsvc.exe O23 - Service: McAfee Network Agent (McNASvc) - McAfee, Inc. - c:\program files\fichiers communs\mcafee\mna\mcnasvc.exe O23 - Service: McAfee Scanner (McODS) - McAfee, Inc. - C:\PROGRA~1\McAfee\VIRUSS~1\mcods.exe O23 - Service: McAfee Protection Manager (mcpromgr) - McAfee, Inc. - C:\PROGRA~1\McAfee\MSC\mcpromgr.exe O23 - Service: McAfee Redirector Service (McRedirector) - McAfee, Inc. - c:\PROGRA~1\FICHIE~1\mcafee\redirsvc\redirsvc.exe O23 - Service: McAfee Real-time Scanner (McShield) - McAfee, Inc. - C:\PROGRA~1\McAfee\VIRUSS~1\mcshield.exe O23 - Service: McAfee SystemGuards (McSysmon) - McAfee, Inc. - C:\PROGRA~1\McAfee\VIRUSS~1\mcsysmon.exe O23 - Service: McAfee Personal Firewall Service (MpfService) - McAfee, Inc. - C:\Program Files\McAfee\MPF\MPFSrv.exe O23 - Service: Intel NCS NetService (NetSvc) - Intel® Corporation - C:\Program Files\Intel\NCS\Sync\NetSvc.exe O23 - Service: NVIDIA Driver Helper Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\System32\nvsvc32.exe -- End of file - 21281 bytes SmitFraudFix v2.195 Rapport fait à 22:35:27,45, 19/08/2007 Executé à partir de C:\Documents and Settings\LF\Mes documents\Mes T‚l‚chargements\SmitfraudFix OS: Microsoft Windows XP [version 5.1.2600] - Windows_NT Le type du système de fichiers est NTFS Fix executé en mode normal »»»»»»»»»»»»»»»»»»»»»»»» Process C:\WINDOWS\System32\smss.exe C:\WINDOWS\system32\winlogon.exe C:\WINDOWS\system32\services.exe C:\WINDOWS\system32\lsass.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\System32\svchost.exe C:\WINDOWS\system32\spoolsv.exe C:\WINDOWS\Explorer.EXE C:\Program Files\Dell Photo AIO Printer 922\dlbtbmgr.exe C:\Program Files\McAfee\MBK\McAfeeDataBackup.exe C:\Program Files\POP Peeper\POPPeeper.exe C:\Program Files\Dell Photo AIO Printer 922\dlbtbmon.exe C:\WINDOWS\system32\ctfmon.exe C:\Program Files\Free Download Manager\FUM\fumoei.exe C:\Program Files\Logitech\SetPoint\SetPoint.exe C:\Program Files\OpenOffice.org 2.2\program\soffice.exe C:\Program Files\OpenOffice.org 2.2\program\soffice.BIN C:\Program Files\Fichiers communs\Logitech\KHAL\KHALMNPR.EXE c:\program files\a-squared free\a2service.exe C:\WINDOWS\System32\dllhost.exe C:\Program Files\McAfee\MBK\MBackMonitor.exe C:\Program Files\Fichiers communs\McAfee\HackerWatch\HWAPI.exe C:\PROGRA~1\McAfee\MSC\mcmscsvc.exe c:\program files\fichiers communs\mcafee\mna\mcnasvc.exe C:\PROGRA~1\McAfee\VIRUSS~1\mcods.exe C:\PROGRA~1\McAfee\MSC\mcpromgr.exe c:\PROGRA~1\FICHIE~1\mcafee\redirsvc\redirsvc.exe C:\PROGRA~1\McAfee\VIRUSS~1\mcshield.exe C:\PROGRA~1\McAfee\VIRUSS~1\mcsysmon.exe C:\Program Files\McAfee\MPF\MPFSrv.exe C:\WINDOWS\System32\nvsvc32.exe C:\WINDOWS\system32\svchost.exe c:\PROGRA~1\mcafee.com\agent\mcagent.exe C:\PROGRA~1\FICHIE~1\McAfee\EmProxy\emproxy.exe C:\Program Files\Mozilla Firefox\firefox.exe C:\Program Files\Adobe\Reader 8.0\Reader\AcroRd32Info.exe C:\WINDOWS\system32\cmd.exe »»»»»»»»»»»»»»»»»»»»»»»» hosts »»»»»»»»»»»»»»»»»»»»»»»» C:\ »»»»»»»»»»»»»»»»»»»»»»»» C:\WINDOWS »»»»»»»»»»»»»»»»»»»»»»»» C:\WINDOWS\system »»»»»»»»»»»»»»»»»»»»»»»» C:\WINDOWS\Web »»»»»»»»»»»»»»»»»»»»»»»» C:\WINDOWS\system32 »»»»»»»»»»»»»»»»»»»»»»»» C:\WINDOWS\system32\LogFiles »»»»»»»»»»»»»»»»»»»»»»»» C:\Documents and Settings\LF »»»»»»»»»»»»»»»»»»»»»»»» C:\Documents and Settings\LF\Application Data »»»»»»»»»»»»»»»»»»»»»»»» Menu Démarrer »»»»»»»»»»»»»»»»»»»»»»»» C:\DOCUME~1\LF\Favoris »»»»»»»»»»»»»»»»»»»»»»»» Bureau »»»»»»»»»»»»»»»»»»»»»»»» C:\Program Files »»»»»»»»»»»»»»»»»»»»»»»» Clés corrompues »»»»»»»»»»»»»»»»»»»»»»»» Eléments du bureau »»»»»»»»»»»»»»»»»»»»»»»» Sharedtaskscheduler !!!Attention, les clés qui suivent ne sont pas forcément infectées!!! SrchSTS.exe by S!Ri Search SharedTaskScheduler's .dll »»»»»»»»»»»»»»»»»»»»»»»» AppInit_DLLs !!!Attention, les clés qui suivent ne sont pas forcément infectées!!! [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows] "AppInit_DLLs"="" »»»»»»»»»»»»»»»»»»»»»»»» Winlogon.System !!!Attention, les clés qui suivent ne sont pas forcément infectées!!! [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon] "System"="" »»»»»»»»»»»»»»»»»»»»»»»» Rustock »»»»»»»»»»»»»»»»»»»»»»»» DNS Description: WAN (PPP/SLIP) Interface DNS Server Search Order: 80.10.246.1 DNS Server Search Order: 80.10.246.132 HKLM\SYSTEM\CCS\Services\Tcpip\..\{5CD2D80C-813E-4E02-A4C7-9B3BADBC17CB}: NameServer=80.10.246.1 80.10.246.132 HKLM\SYSTEM\CS2\Services\Tcpip\..\{593A6C32-B52A-49BB-B438-100F46D81A20}: DhcpNameServer=85.255.115.60,85.255.112.87 HKLM\SYSTEM\CS2\Services\Tcpip\..\{593A6C32-B52A-49BB-B438-100F46D81A20}: NameServer=85.255.115.60,85.255.112.87 HKLM\SYSTEM\CS2\Services\Tcpip\..\{BAF27415-7A8C-4647-87C9-363AAE67FDE0}: NameServer=85.255.115.60,85.255.112.87 HKLM\SYSTEM\CS2\Services\Tcpip\..\{C3E6B25B-4F37-4FEB-A5AC-4CBCC0CE5D0F}: DhcpNameServer=85.255.115.60,85.255.112.87 HKLM\SYSTEM\CS3\Services\Tcpip\..\{5CD2D80C-813E-4E02-A4C7-9B3BADBC17CB}: NameServer=80.10.246.1 80.10.246.132 HKLM\SYSTEM\CS2\Services\Tcpip\Parameters: NameServer=85.255.115.60 85.255.112.87 »»»»»»»»»»»»»»»»»»»»»»»» Recherche infection wininet.dll »»»»»»»»»»»»»»»»»»»»»»»» Fin http://forum.zebulon.fr/style_images/1/fol...icons/icon8.gif
  16. A la réflexion quand je lance regleon.reg à partir du tuto je n'obtiens pas un fichier de type "registre" où l'on trouve effectivement la fonction "fusionner"
  17. je ne trouve pas la fonction : accepter la fusion. Faut il enregistrer le fichier regedit4 ? en sélectionnant tout le fichier et en double cliquant je ne constate rien
  18. Je pense ne pas avoir saisi la manoeuvre.
  19. Bonsoir REGEDIT4 [-HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Tcpip\Parameters\Interfaces\{BAF27415-7A8C-4647-87C9-363AAE67FDE0}] [-HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Tcpip\Parameters\Interfaces\{C3E6B25B-4F37-4FEB-A5AC-4CBCC0CE5D0F}] [-HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet002\Services\Tcpip\Parameters\Interfaces\{593A6C32-B52A-49BB-B438-100F46D81A20}] [-HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet002\Services\Tcpip\Parameters\Interfaces\{593A6C32-B52A-49BB-B438-100F46D81A20}] [-HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet002\Services\Tcpip\Parameters\Interfaces\{BAF27415-7A8C-4647-87C9-363AAE67FDE0}] [-HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet002\Services\Tcpip\Parameters\Interfaces\{C3E6B25B-4F37-4FEB-A5AC-4CBCC0CE5D0F}] [-HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet003\Services\Tcpip\Parameters\Interfaces\{BAF27415-7A8C-4647-87C9-363AAE67FDE0}] [-HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet003\Services\Tcpip\Parameters\Interfaces\{C3E6B25B-4F37-4FEB-A5AC-4CBCC0CE5D0F}] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet002\Services\Tcpip\Parameters] "NameServer"=- Logfile of Trend Micro HijackThis v2.0.2 Scan saved at 21:50:39, on 18/08/2007 Platform: Windows XP SP2 (WinNT 5.01.2600) MSIE: Internet Explorer v7.00 (7.00.6000.16512) Boot mode: Normal Running processes: C:\WINDOWS\System32\smss.exe C:\WINDOWS\system32\winlogon.exe C:\WINDOWS\system32\services.exe C:\WINDOWS\system32\lsass.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\System32\svchost.exe C:\WINDOWS\system32\spoolsv.exe C:\WINDOWS\Explorer.EXE C:\Program Files\Dell Photo AIO Printer 922\dlbtbmgr.exe C:\Program Files\McAfee\MBK\McAfeeDataBackup.exe C:\Program Files\POP Peeper\POPPeeper.exe C:\Program Files\Dell Photo AIO Printer 922\dlbtbmon.exe C:\WINDOWS\system32\ctfmon.exe C:\Program Files\Free Download Manager\FUM\fumoei.exe C:\Program Files\Logitech\SetPoint\SetPoint.exe C:\Program Files\OpenOffice.org 2.2\program\soffice.exe C:\Program Files\OpenOffice.org 2.2\program\soffice.BIN C:\Program Files\Fichiers communs\Logitech\KHAL\KHALMNPR.EXE c:\program files\a-squared free\a2service.exe C:\WINDOWS\System32\dllhost.exe C:\Program Files\McAfee\MBK\MBackMonitor.exe C:\Program Files\Fichiers communs\McAfee\HackerWatch\HWAPI.exe C:\PROGRA~1\McAfee\MSC\mcmscsvc.exe c:\program files\fichiers communs\mcafee\mna\mcnasvc.exe C:\PROGRA~1\McAfee\VIRUSS~1\mcods.exe C:\PROGRA~1\McAfee\MSC\mcpromgr.exe c:\PROGRA~1\FICHIE~1\mcafee\redirsvc\redirsvc.exe C:\PROGRA~1\McAfee\VIRUSS~1\mcshield.exe C:\PROGRA~1\McAfee\VIRUSS~1\mcsysmon.exe C:\Program Files\McAfee\MPF\MPFSrv.exe C:\WINDOWS\System32\nvsvc32.exe C:\WINDOWS\system32\svchost.exe c:\PROGRA~1\mcafee.com\agent\mcagent.exe C:\Program Files\Mozilla Firefox\firefox.exe C:\PROGRA~1\FICHIE~1\McAfee\EmProxy\emproxy.exe C:\WINDOWS\System32\svchost.exe C:\PROGRA~1\FREEDO~1\fdm.exe C:\Program Files\Trend Micro\HijackThis\HijackThis.exe R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank O2 - BHO: Aide pour le lien d'Adobe PDF Reader - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Fichiers communs\Adobe\Acrobat\ActiveX\AcroIEHelper.dll O2 - BHO: QFX Software KeyScrambler - {2B9F5787-88A5-4945-90E7-C4B18563BC5E} - C:\Program Files\KeyScrambler\KeyScramblerIE.dll O2 - BHO: (no name) - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_02\bin\ssv.dll O2 - BHO: scriptproxy - {7DB2D5A0-7241-4E79-B68D-6309F01C5231} - c:\program files\mcafee\virusscan\scriptcl.dll O2 - BHO: FDMIECookiesBHO Class - {CC59E0F9-7E43-44FA-9FAA-8377850BF205} - C:\Program Files\Free Download Manager\iefdm2.dll O3 - Toolbar: Yahoo! Toolbar avec bloqueur de fenêtres pop-up - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - (no file) O3 - Toolbar: (no name) - {0BF43445-2F28-4351-9252-17FE6E806AA0} - (no file) O4 - HKLM\..\Run: [Dell Photo AIO Printer 922] "C:\Program Files\Dell Photo AIO Printer 922\dlbtbmgr.exe" O4 - HKLM\..\Run: [DLBTCATS] rundll32 C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\DLBTtime.dll,_RunDLLEntry@16 O4 - HKLM\..\Run: [Logitech Hardware Abstraction Layer] KHALMNPR.EXE O4 - HKLM\..\Run: [McAfee Backup] C:\Program Files\McAfee\MBK\McAfeeDataBackup.exe O4 - HKLM\..\Run: [MBkLogOnHook] C:\Program Files\McAfee\MBK\LogOnHook.exe O4 - HKCU\..\Run: [POP Peeper] "C:\Program Files\POP Peeper\POPPeeper.exe" -min O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe O4 - HKCU\..\Run: [Free Uploader Oe Integration] C:\Program Files\Free Download Manager\FUM\fumoei.exe O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'SERVICE LOCAL') O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'SERVICE RÉSEAU') O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'SYSTEM') O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'Default user') O4 - Startup: ERUNT AutoBackup.lnk = C:\Program Files\ERUNT\AUTOBACK.EXE O4 - Startup: OpenOffice.org 2.2.lnk = C:\Program Files\OpenOffice.org 2.2\program\quickstart.exe O4 - Startup: TribalWeb.lnk = C:\Program Files\TribalWeb\tribalweb.exe O4 - Startup: wanadoo2.lnk = ? O4 - Global Startup: Logitech SetPoint.lnk = C:\Program Files\Logitech\SetPoint\SetPoint.exe O8 - Extra context menu item: Analyser avec LeechGet - file://C:\Program Files\LeechGet 2006\\Parser.html O8 - Extra context menu item: Download all with Free Download Manager - file://C:\Program Files\Free Download Manager\dlall.htm O8 - Extra context menu item: Download selected with Free Download Manager - file://C:\Program Files\Free Download Manager\dlselected.htm O8 - Extra context menu item: Download video with Free Download Manager - file://C:\Program Files\Free Download Manager\dlfvideo.htm O8 - Extra context menu item: Download with Free Download Manager - file://C:\Program Files\Free Download Manager\dllink.htm O8 - Extra context menu item: Tout télécharger avec Free Download Manager - file://C:\Program Files\Free Download Manager\dlall.htm O8 - Extra context menu item: Télécharger avec Free Download Manager - file://C:\Program Files\Free Download Manager\dllink.htm O8 - Extra context menu item: Télécharger en utilisant l'assistant LeechGet - file://C:\Program Files\LeechGet 2006\\Wizard.html O8 - Extra context menu item: Télécharger en utilisant LeechGet - file://C:\Program Files\LeechGet 2006\\AddUrl.html O8 - Extra context menu item: Télécharger la sélection avec Free Download Manager - file://C:\Program Files\Free Download Manager\dlselected.htm O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_02\bin\ssv.dll O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_02\bin\ssv.dll O9 - Extra button: (no name) - {5C106A59-CC3C-4caa-81A4-6D909B5ACE23} - C:\Program Files\KeyScrambler\KeyScramblerIE.dll O9 - Extra 'Tools' menuitem: &KeyScrambler... - {5C106A59-CC3C-4caa-81A4-6D909B5ACE23} - C:\Program Files\KeyScrambler\KeyScramblerIE.dll O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe O9 - Extra button: Upload - {FD4E2FF8-973C-4A19-89BD-8E86B3CFCFE1} - C:\Program Files\Free Download Manager\FUM\fumiebtn.dll O16 - DPF: {17492023-C23A-453E-A040-C7C580BBF700} (Windows Genuine Advantage Validation Tool) - http://go.microsoft.com/fwlink/?linkid=39204 O16 - DPF: {30528230-99f7-4bb4-88d8-fa1d4f56a2ab} (YInstStarter Class) - C:\Program Files\Yahoo!\Common\yinsthelper.dll O16 - DPF: {4ED9DDF0-7479-4BBE-9335-5A1EDB1D8A21} - O16 - DPF: {BCC0FF27-31D9-4614-A68E-C18E1ADA4389} - http://download.mcafee.com/molbin/shared/m...,26/mcgdmgr.cab O16 - DPF: {CAFEEFAC-0015-0000-0004-ABCDEFFEDCBA} (Java Plug-in 1.5.0_04) - O16 - DPF: {CAFEEFAC-0015-0000-0006-ABCDEFFEDCBA} (Java Plug-in 1.5.0_06) - O16 - DPF: {CAFEEFAC-0015-0000-0008-ABCDEFFEDCBA} (Java Plug-in 1.5.0_08) - O16 - DPF: {CAFEEFAC-0015-0000-0009-ABCDEFFEDCBA} (Java Plug-in 1.5.0_09) - O16 - DPF: {CAFEEFAC-0015-0000-0010-ABCDEFFEDCBA} (Java Plug-in 1.5.0_10) - O16 - DPF: {CAFEEFAC-0015-0000-0011-ABCDEFFEDCBA} (Java Plug-in 1.5.0_11) - O17 - HKLM\System\CCS\Services\Tcpip\..\{5CD2D80C-813E-4E02-A4C7-9B3BADBC17CB}: NameServer = 80.10.246.1 80.10.246.132 O18 - Protocol: bw+0 - {6488CC82-47A7-4A92-90AB-12C4F65F065A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw+0s - {6488CC82-47A7-4A92-90AB-12C4F65F065A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw-0 - {6488CC82-47A7-4A92-90AB-12C4F65F065A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw-0s - {6488CC82-47A7-4A92-90AB-12C4F65F065A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw00 - {6488CC82-47A7-4A92-90AB-12C4F65F065A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw00s - {6488CC82-47A7-4A92-90AB-12C4F65F065A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw10 - {6488CC82-47A7-4A92-90AB-12C4F65F065A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw10s - {6488CC82-47A7-4A92-90AB-12C4F65F065A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw20 - {6488CC82-47A7-4A92-90AB-12C4F65F065A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw20s - {6488CC82-47A7-4A92-90AB-12C4F65F065A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw30 - {6488CC82-47A7-4A92-90AB-12C4F65F065A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw30s - {6488CC82-47A7-4A92-90AB-12C4F65F065A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw40 - {6488CC82-47A7-4A92-90AB-12C4F65F065A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw40s - {6488CC82-47A7-4A92-90AB-12C4F65F065A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw50 - {6488CC82-47A7-4A92-90AB-12C4F65F065A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw50s - {6488CC82-47A7-4A92-90AB-12C4F65F065A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw60 - {6488CC82-47A7-4A92-90AB-12C4F65F065A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw60s - {6488CC82-47A7-4A92-90AB-12C4F65F065A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw70 - {6488CC82-47A7-4A92-90AB-12C4F65F065A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw70s - {6488CC82-47A7-4A92-90AB-12C4F65F065A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw80 - {6488CC82-47A7-4A92-90AB-12C4F65F065A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw80s - {6488CC82-47A7-4A92-90AB-12C4F65F065A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw90 - {6488CC82-47A7-4A92-90AB-12C4F65F065A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw90s - {6488CC82-47A7-4A92-90AB-12C4F65F065A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwa0 - {6488CC82-47A7-4A92-90AB-12C4F65F065A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwa0s - {6488CC82-47A7-4A92-90AB-12C4F65F065A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwb0 - {6488CC82-47A7-4A92-90AB-12C4F65F065A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwb0s - {6488CC82-47A7-4A92-90AB-12C4F65F065A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwc0 - {6488CC82-47A7-4A92-90AB-12C4F65F065A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwc0s - {6488CC82-47A7-4A92-90AB-12C4F65F065A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwd0 - {6488CC82-47A7-4A92-90AB-12C4F65F065A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwd0s - {6488CC82-47A7-4A92-90AB-12C4F65F065A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwe0 - {6488CC82-47A7-4A92-90AB-12C4F65F065A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwe0s - {6488CC82-47A7-4A92-90AB-12C4F65F065A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwf0 - {6488CC82-47A7-4A92-90AB-12C4F65F065A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwf0s - {6488CC82-47A7-4A92-90AB-12C4F65F065A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwfile-8876480 - {9462A756-7B47-47BC-8C80-C34B9B80B32B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\GAPlugProtocol-8876480.dll O18 - Protocol: bwg0 - {6488CC82-47A7-4A92-90AB-12C4F65F065A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwg0s - {6488CC82-47A7-4A92-90AB-12C4F65F065A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwh0 - {6488CC82-47A7-4A92-90AB-12C4F65F065A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwh0s - {6488CC82-47A7-4A92-90AB-12C4F65F065A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwi0 - {6488CC82-47A7-4A92-90AB-12C4F65F065A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwi0s - {6488CC82-47A7-4A92-90AB-12C4F65F065A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwj0 - {6488CC82-47A7-4A92-90AB-12C4F65F065A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwj0s - {6488CC82-47A7-4A92-90AB-12C4F65F065A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwk0 - {6488CC82-47A7-4A92-90AB-12C4F65F065A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwk0s - {6488CC82-47A7-4A92-90AB-12C4F65F065A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwl0 - {6488CC82-47A7-4A92-90AB-12C4F65F065A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwl0s - {6488CC82-47A7-4A92-90AB-12C4F65F065A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwm0 - {6488CC82-47A7-4A92-90AB-12C4F65F065A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwm0s - {6488CC82-47A7-4A92-90AB-12C4F65F065A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwn0 - {6488CC82-47A7-4A92-90AB-12C4F65F065A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwn0s - {6488CC82-47A7-4A92-90AB-12C4F65F065A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwo0 - {6488CC82-47A7-4A92-90AB-12C4F65F065A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwo0s - {6488CC82-47A7-4A92-90AB-12C4F65F065A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwp0 - {6488CC82-47A7-4A92-90AB-12C4F65F065A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwp0s - {6488CC82-47A7-4A92-90AB-12C4F65F065A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwq0 - {6488CC82-47A7-4A92-90AB-12C4F65F065A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwq0s - {6488CC82-47A7-4A92-90AB-12C4F65F065A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwr0 - {6488CC82-47A7-4A92-90AB-12C4F65F065A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwr0s - {6488CC82-47A7-4A92-90AB-12C4F65F065A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bws0 - {6488CC82-47A7-4A92-90AB-12C4F65F065A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bws0s - {6488CC82-47A7-4A92-90AB-12C4F65F065A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwt0 - {6488CC82-47A7-4A92-90AB-12C4F65F065A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwt0s - {6488CC82-47A7-4A92-90AB-12C4F65F065A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwu0 - {6488CC82-47A7-4A92-90AB-12C4F65F065A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwu0s - {6488CC82-47A7-4A92-90AB-12C4F65F065A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwv0 - {6488CC82-47A7-4A92-90AB-12C4F65F065A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwv0s - {6488CC82-47A7-4A92-90AB-12C4F65F065A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bww0 - {6488CC82-47A7-4A92-90AB-12C4F65F065A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bww0s - {6488CC82-47A7-4A92-90AB-12C4F65F065A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwx0 - {6488CC82-47A7-4A92-90AB-12C4F65F065A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwx0s - {6488CC82-47A7-4A92-90AB-12C4F65F065A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwy0 - {6488CC82-47A7-4A92-90AB-12C4F65F065A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwy0s - {6488CC82-47A7-4A92-90AB-12C4F65F065A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwz0 - {6488CC82-47A7-4A92-90AB-12C4F65F065A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwz0s - {6488CC82-47A7-4A92-90AB-12C4F65F065A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: offline-8876480 - {6488CC82-47A7-4A92-90AB-12C4F65F065A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O23 - Service: a-squared Free Service (a2free) - Emsi Software GmbH - c:\program files\a-squared free\a2service.exe O23 - Service: dlbt_device - Dell - C:\WINDOWS\system32\dlbtcoms.exe O23 - Service: McAfee E-mail Proxy (Emproxy) - McAfee, Inc. - C:\PROGRA~1\FICHIE~1\McAfee\EmProxy\emproxy.exe O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Fichiers communs\InstallShield\Driver\1050\Intel 32\IDriverT.exe O23 - Service: MBackMonitor - McAfee - C:\Program Files\McAfee\MBK\MBackMonitor.exe O23 - Service: McAfee HackerWatch Service - McAfee, Inc. - C:\Program Files\Fichiers communs\McAfee\HackerWatch\HWAPI.exe O23 - Service: McAfee Update Manager (mcmispupdmgr) - McAfee, Inc. - C:\PROGRA~1\McAfee\MSC\mcupdmgr.exe O23 - Service: McAfee Services (mcmscsvc) - McAfee, Inc. - C:\PROGRA~1\McAfee\MSC\mcmscsvc.exe O23 - Service: McAfee Network Agent (McNASvc) - McAfee, Inc. - c:\program files\fichiers communs\mcafee\mna\mcnasvc.exe O23 - Service: McAfee Scanner (McODS) - McAfee, Inc. - C:\PROGRA~1\McAfee\VIRUSS~1\mcods.exe O23 - Service: McAfee Protection Manager (mcpromgr) - McAfee, Inc. - C:\PROGRA~1\McAfee\MSC\mcpromgr.exe O23 - Service: McAfee Redirector Service (McRedirector) - McAfee, Inc. - c:\PROGRA~1\FICHIE~1\mcafee\redirsvc\redirsvc.exe O23 - Service: McAfee Real-time Scanner (McShield) - McAfee, Inc. - C:\PROGRA~1\McAfee\VIRUSS~1\mcshield.exe O23 - Service: McAfee SystemGuards (McSysmon) - McAfee, Inc. - C:\PROGRA~1\McAfee\VIRUSS~1\mcsysmon.exe O23 - Service: McAfee Personal Firewall Service (MpfService) - McAfee, Inc. - C:\Program Files\McAfee\MPF\MPFSrv.exe O23 - Service: Intel NCS NetService (NetSvc) - Intel® Corporation - C:\Program Files\Intel\NCS\Sync\NetSvc.exe O23 - Service: NVIDIA Driver Helper Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\System32\nvsvc32.exe -- End of file - 21344 bytes SmitFraudFix v2.195 Rapport fait à 21:51:39,23, 18/08/2007 Executé à partir de C:\Documents and Settings\LF\Mes documents\Mes T‚l‚chargements\SmitfraudFix OS: Microsoft Windows XP [version 5.1.2600] - Windows_NT Le type du système de fichiers est NTFS Fix executé en mode normal »»»»»»»»»»»»»»»»»»»»»»»» Process C:\WINDOWS\System32\smss.exe C:\WINDOWS\system32\winlogon.exe C:\WINDOWS\system32\services.exe C:\WINDOWS\system32\lsass.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\System32\svchost.exe C:\WINDOWS\system32\spoolsv.exe C:\WINDOWS\Explorer.EXE C:\Program Files\Dell Photo AIO Printer 922\dlbtbmgr.exe C:\Program Files\McAfee\MBK\McAfeeDataBackup.exe C:\Program Files\POP Peeper\POPPeeper.exe C:\Program Files\Dell Photo AIO Printer 922\dlbtbmon.exe C:\WINDOWS\system32\ctfmon.exe C:\Program Files\Free Download Manager\FUM\fumoei.exe C:\Program Files\Logitech\SetPoint\SetPoint.exe C:\Program Files\OpenOffice.org 2.2\program\soffice.exe C:\Program Files\OpenOffice.org 2.2\program\soffice.BIN C:\Program Files\Fichiers communs\Logitech\KHAL\KHALMNPR.EXE c:\program files\a-squared free\a2service.exe C:\WINDOWS\System32\dllhost.exe C:\Program Files\McAfee\MBK\MBackMonitor.exe C:\Program Files\Fichiers communs\McAfee\HackerWatch\HWAPI.exe C:\PROGRA~1\McAfee\MSC\mcmscsvc.exe c:\program files\fichiers communs\mcafee\mna\mcnasvc.exe C:\PROGRA~1\McAfee\VIRUSS~1\mcods.exe C:\PROGRA~1\McAfee\MSC\mcpromgr.exe c:\PROGRA~1\FICHIE~1\mcafee\redirsvc\redirsvc.exe C:\PROGRA~1\McAfee\VIRUSS~1\mcshield.exe C:\PROGRA~1\McAfee\VIRUSS~1\mcsysmon.exe C:\Program Files\McAfee\MPF\MPFSrv.exe C:\WINDOWS\System32\nvsvc32.exe C:\WINDOWS\system32\svchost.exe c:\PROGRA~1\mcafee.com\agent\mcagent.exe C:\Program Files\Mozilla Firefox\firefox.exe C:\PROGRA~1\FICHIE~1\McAfee\EmProxy\emproxy.exe C:\WINDOWS\System32\svchost.exe C:\PROGRA~1\FREEDO~1\fdm.exe C:\Program Files\Adobe\Reader 8.0\Reader\AcroRd32Info.exe C:\WINDOWS\system32\cmd.exe »»»»»»»»»»»»»»»»»»»»»»»» hosts »»»»»»»»»»»»»»»»»»»»»»»» C:\ »»»»»»»»»»»»»»»»»»»»»»»» C:\WINDOWS »»»»»»»»»»»»»»»»»»»»»»»» C:\WINDOWS\system »»»»»»»»»»»»»»»»»»»»»»»» C:\WINDOWS\Web »»»»»»»»»»»»»»»»»»»»»»»» C:\WINDOWS\system32 »»»»»»»»»»»»»»»»»»»»»»»» C:\WINDOWS\system32\LogFiles »»»»»»»»»»»»»»»»»»»»»»»» C:\Documents and Settings\LF »»»»»»»»»»»»»»»»»»»»»»»» C:\Documents and Settings\LF\Application Data »»»»»»»»»»»»»»»»»»»»»»»» Menu Démarrer »»»»»»»»»»»»»»»»»»»»»»»» C:\DOCUME~1\LF\Favoris »»»»»»»»»»»»»»»»»»»»»»»» Bureau »»»»»»»»»»»»»»»»»»»»»»»» C:\Program Files »»»»»»»»»»»»»»»»»»»»»»»» Clés corrompues »»»»»»»»»»»»»»»»»»»»»»»» Eléments du bureau »»»»»»»»»»»»»»»»»»»»»»»» Sharedtaskscheduler !!!Attention, les clés qui suivent ne sont pas forcément infectées!!! SrchSTS.exe by S!Ri Search SharedTaskScheduler's .dll »»»»»»»»»»»»»»»»»»»»»»»» AppInit_DLLs !!!Attention, les clés qui suivent ne sont pas forcément infectées!!! [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows] "AppInit_DLLs"="" »»»»»»»»»»»»»»»»»»»»»»»» Winlogon.System !!!Attention, les clés qui suivent ne sont pas forcément infectées!!! [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon] "System"="" »»»»»»»»»»»»»»»»»»»»»»»» Rustock »»»»»»»»»»»»»»»»»»»»»»»» DNS Description: WAN (PPP/SLIP) Interface DNS Server Search Order: 80.10.246.1 DNS Server Search Order: 80.10.246.132 HKLM\SYSTEM\CCS\Services\Tcpip\..\{5CD2D80C-813E-4E02-A4C7-9B3BADBC17CB}: NameServer=80.10.246.1 80.10.246.132 HKLM\SYSTEM\CCS\Services\Tcpip\..\{C3E6B25B-4F37-4FEB-A5AC-4CBCC0CE5D0F}: DhcpNameServer=207.68.160.190 194.25.2.129 208.67.222.222 ,207.68.160.190 194.25.2.129 208.67.222.222 HKLM\SYSTEM\CS2\Services\Tcpip\..\{593A6C32-B52A-49BB-B438-100F46D81A20}: DhcpNameServer=85.255.115.60,85.255.112.87 HKLM\SYSTEM\CS2\Services\Tcpip\..\{593A6C32-B52A-49BB-B438-100F46D81A20}: NameServer=85.255.115.60,85.255.112.87 HKLM\SYSTEM\CS2\Services\Tcpip\..\{BAF27415-7A8C-4647-87C9-363AAE67FDE0}: NameServer=85.255.115.60,85.255.112.87 HKLM\SYSTEM\CS2\Services\Tcpip\..\{C3E6B25B-4F37-4FEB-A5AC-4CBCC0CE5D0F}: DhcpNameServer=85.255.115.60,85.255.112.87 HKLM\SYSTEM\CS3\Services\Tcpip\..\{5CD2D80C-813E-4E02-A4C7-9B3BADBC17CB}: NameServer=80.10.246.1 80.10.246.132 HKLM\SYSTEM\CS3\Services\Tcpip\..\{C3E6B25B-4F37-4FEB-A5AC-4CBCC0CE5D0F}: DhcpNameServer=207.68.160.190 194.25.2.129 208.67.222.222 ,207.68.160.190 194.25.2.129 208.67.222.222 HKLM\SYSTEM\CS2\Services\Tcpip\Parameters: NameServer=85.255.115.60 85.255.112.87 »»»»»»»»»»»»»»»»»»»»»»»» Recherche infection wininet.dll »»»»»»»»»»»»»»»»»»»»»»»» Fin Salut.
  20. Salut! Juste un petit souci quand je clique dans le tuto sur regleon.reg pour le télécharger j'obtiens directement le fichier qui suit qui a bien l'air de correspondre si je consulte les lignes dans le registre: [-HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Tcpip\Parameters\Interfaces\{BAF27415-7A8C-4647-87C9-363AAE67FDE0}] [-HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Tcpip\Parameters\Interfaces\{C3E6B25B-4F37-4FEB-A5AC-4CBCC0CE5D0F}] [-HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet002\Services\Tcpip\Parameters\Interfaces\{593A6C32-B52A-49BB-B438-100F46D81A20}] [-HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet002\Services\Tcpip\Parameters\Interfaces\{593A6C32-B52A-49BB-B438-100F46D81A20}] [-HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet002\Services\Tcpip\Parameters\Interfaces\{BAF27415-7A8C-4647-87C9-363AAE67FDE0}] [-HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet002\Services\Tcpip\Parameters\Interfaces\{C3E6B25B-4F37-4FEB-A5AC-4CBCC0CE5D0F}] [-HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet003\Services\Tcpip\Parameters\Interfaces\{BAF27415-7A8C-4647-87C9-363AAE67FDE0}] [-HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet003\Services\Tcpip\Parameters\Interfaces\{C3E6B25B-4F37-4FEB-A5AC-4CBCC0CE5D0F}] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet002\Services\Tcpip\Parameters] "NameServer"=- qu'en faire ? je ne vois rien qui m'indique d'accepter la fusion.
  21. Bonsoir Gof. On s'en remet une petite couche. j'ai essayé de bien réaliser tout ce que tu m'as demandé: Suppression des 2 lignes 17 et suppression de ma connexion Orange. Je ne sais pas s'il fallait supprimer la connexion au réseau local; de toute façon je ne savais pas. Mais par contre il semble qu'on est obligé de lui donner une adresse IP. J'ai gardé les DNS. Pour la connexion Orange par contre quelque soit la config : en auto avec 80,10......ou 194...... tout fonctionne. J'ai remarqué que si l'on mettait les DNS en choix automatique la modif ne se faisait pas dans le registre au niveau du nameserveur. Donc j'ai fait ma connexion en Ip automatique et en Dns avec adresse indiquée. Et comme un pb n'arrive jamais seul je me suis planté en indiquant les adresses dns et à chaque fois que j'ai fait un essai en DNS auto la mauvaise adresse revenait au niveau du nameserveur dans le registre et donc dans le log de Hijacktis. J'ai donc modifié l'adresse manuellement dans le registre et tout a l'air de correspondre maintenant. Logfile of Trend Micro HijackThis v2.0.2 Scan saved at 23:41:07, on 17/08/2007 Platform: Windows XP SP2 (WinNT 5.01.2600) MSIE: Internet Explorer v7.00 (7.00.6000.16512) Boot mode: Normal Running processes: C:\WINDOWS\System32\smss.exe C:\WINDOWS\system32\winlogon.exe C:\WINDOWS\system32\services.exe C:\WINDOWS\system32\lsass.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\System32\svchost.exe C:\WINDOWS\Explorer.EXE C:\WINDOWS\system32\spoolsv.exe C:\Program Files\Dell Photo AIO Printer 922\dlbtbmgr.exe C:\Program Files\McAfee\MBK\McAfeeDataBackup.exe C:\Program Files\POP Peeper\POPPeeper.exe C:\Program Files\Dell Photo AIO Printer 922\dlbtbmon.exe C:\WINDOWS\system32\ctfmon.exe C:\Program Files\Free Download Manager\FUM\fumoei.exe C:\Program Files\Logitech\SetPoint\SetPoint.exe C:\Program Files\OpenOffice.org 2.2\program\soffice.exe C:\Program Files\OpenOffice.org 2.2\program\soffice.BIN C:\Program Files\Fichiers communs\Logitech\KHAL\KHALMNPR.EXE c:\program files\a-squared free\a2service.exe C:\WINDOWS\System32\dllhost.exe C:\Program Files\McAfee\MBK\MBackMonitor.exe C:\Program Files\Fichiers communs\McAfee\HackerWatch\HWAPI.exe C:\PROGRA~1\McAfee\MSC\mcmscsvc.exe c:\program files\fichiers communs\mcafee\mna\mcnasvc.exe C:\PROGRA~1\McAfee\VIRUSS~1\mcods.exe C:\PROGRA~1\McAfee\MSC\mcpromgr.exe c:\PROGRA~1\FICHIE~1\mcafee\redirsvc\redirsvc.exe C:\PROGRA~1\McAfee\VIRUSS~1\mcshield.exe C:\PROGRA~1\McAfee\VIRUSS~1\mcsysmon.exe C:\Program Files\McAfee\MPF\MPFSrv.exe C:\WINDOWS\System32\nvsvc32.exe C:\WINDOWS\system32\svchost.exe c:\PROGRA~1\mcafee.com\agent\mcagent.exe C:\WINDOWS\System32\svchost.exe C:\PROGRA~1\FICHIE~1\McAfee\EmProxy\emproxy.exe C:\Program Files\Trend Micro\HijackThis\HijackThis.exe R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank O2 - BHO: Aide pour le lien d'Adobe PDF Reader - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Fichiers communs\Adobe\Acrobat\ActiveX\AcroIEHelper.dll O2 - BHO: QFX Software KeyScrambler - {2B9F5787-88A5-4945-90E7-C4B18563BC5E} - C:\Program Files\KeyScrambler\KeyScramblerIE.dll O2 - BHO: (no name) - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_02\bin\ssv.dll O2 - BHO: scriptproxy - {7DB2D5A0-7241-4E79-B68D-6309F01C5231} - c:\program files\mcafee\virusscan\scriptcl.dll O2 - BHO: FDMIECookiesBHO Class - {CC59E0F9-7E43-44FA-9FAA-8377850BF205} - C:\Program Files\Free Download Manager\iefdm2.dll O3 - Toolbar: Yahoo! Toolbar avec bloqueur de fenêtres pop-up - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - (no file) O3 - Toolbar: (no name) - {0BF43445-2F28-4351-9252-17FE6E806AA0} - (no file) O4 - HKLM\..\Run: [Dell Photo AIO Printer 922] "C:\Program Files\Dell Photo AIO Printer 922\dlbtbmgr.exe" O4 - HKLM\..\Run: [DLBTCATS] rundll32 C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\DLBTtime.dll,_RunDLLEntry@16 O4 - HKLM\..\Run: [Logitech Hardware Abstraction Layer] KHALMNPR.EXE O4 - HKLM\..\Run: [McAfee Backup] C:\Program Files\McAfee\MBK\McAfeeDataBackup.exe O4 - HKLM\..\Run: [MBkLogOnHook] C:\Program Files\McAfee\MBK\LogOnHook.exe O4 - HKCU\..\Run: [POP Peeper] "C:\Program Files\POP Peeper\POPPeeper.exe" -min O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe O4 - HKCU\..\Run: [Free Uploader Oe Integration] C:\Program Files\Free Download Manager\FUM\fumoei.exe O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'SERVICE LOCAL') O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'SERVICE RÉSEAU') O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'SYSTEM') O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'Default user') O4 - Startup: OpenOffice.org 2.2.lnk = C:\Program Files\OpenOffice.org 2.2\program\quickstart.exe O4 - Startup: TribalWeb.lnk = C:\Program Files\TribalWeb\tribalweb.exe O4 - Startup: wanadoo2.lnk = ? O4 - Global Startup: Logitech SetPoint.lnk = C:\Program Files\Logitech\SetPoint\SetPoint.exe O8 - Extra context menu item: Analyser avec LeechGet - file://C:\Program Files\LeechGet 2006\\Parser.html O8 - Extra context menu item: Download all with Free Download Manager - file://C:\Program Files\Free Download Manager\dlall.htm O8 - Extra context menu item: Download selected with Free Download Manager - file://C:\Program Files\Free Download Manager\dlselected.htm O8 - Extra context menu item: Download video with Free Download Manager - file://C:\Program Files\Free Download Manager\dlfvideo.htm O8 - Extra context menu item: Download with Free Download Manager - file://C:\Program Files\Free Download Manager\dllink.htm O8 - Extra context menu item: Télécharger en utilisant l'assistant LeechGet - file://C:\Program Files\LeechGet 2006\\Wizard.html O8 - Extra context menu item: Télécharger en utilisant LeechGet - file://C:\Program Files\LeechGet 2006\\AddUrl.html O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_02\bin\ssv.dll O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_02\bin\ssv.dll O9 - Extra button: (no name) - {5C106A59-CC3C-4caa-81A4-6D909B5ACE23} - C:\Program Files\KeyScrambler\KeyScramblerIE.dll O9 - Extra 'Tools' menuitem: &KeyScrambler... - {5C106A59-CC3C-4caa-81A4-6D909B5ACE23} - C:\Program Files\KeyScrambler\KeyScramblerIE.dll O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe O9 - Extra button: Upload - {FD4E2FF8-973C-4A19-89BD-8E86B3CFCFE1} - C:\Program Files\Free Download Manager\FUM\fumiebtn.dll O16 - DPF: {17492023-C23A-453E-A040-C7C580BBF700} (Windows Genuine Advantage Validation Tool) - http://go.microsoft.com/fwlink/?linkid=39204 O16 - DPF: {30528230-99f7-4bb4-88d8-fa1d4f56a2ab} (YInstStarter Class) - C:\Program Files\Yahoo!\Common\yinsthelper.dll O16 - DPF: {4ED9DDF0-7479-4BBE-9335-5A1EDB1D8A21} - O16 - DPF: {BCC0FF27-31D9-4614-A68E-C18E1ADA4389} - http://download.mcafee.com/molbin/shared/m...,26/mcgdmgr.cab O16 - DPF: {CAFEEFAC-0015-0000-0004-ABCDEFFEDCBA} (Java Plug-in 1.5.0_04) - O16 - DPF: {CAFEEFAC-0015-0000-0006-ABCDEFFEDCBA} (Java Plug-in 1.5.0_06) - O16 - DPF: {CAFEEFAC-0015-0000-0008-ABCDEFFEDCBA} (Java Plug-in 1.5.0_08) - O16 - DPF: {CAFEEFAC-0015-0000-0009-ABCDEFFEDCBA} (Java Plug-in 1.5.0_09) - O16 - DPF: {CAFEEFAC-0015-0000-0010-ABCDEFFEDCBA} (Java Plug-in 1.5.0_10) - O16 - DPF: {CAFEEFAC-0015-0000-0011-ABCDEFFEDCBA} (Java Plug-in 1.5.0_11) - O17 - HKLM\System\CCS\Services\Tcpip\..\{5CD2D80C-813E-4E02-A4C7-9B3BADBC17CB}: NameServer = 80.10.246.1,80.10.246.132 O17 - HKLM\System\CCS\Services\Tcpip\..\{BAF27415-7A8C-4647-87C9-363AAE67FDE0}: NameServer = 207.68.160.190,207.68.160.194 O18 - Protocol: bw+0 - {6488CC82-47A7-4A92-90AB-12C4F65F065A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw+0s - {6488CC82-47A7-4A92-90AB-12C4F65F065A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw-0 - {6488CC82-47A7-4A92-90AB-12C4F65F065A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw-0s - {6488CC82-47A7-4A92-90AB-12C4F65F065A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw00 - {6488CC82-47A7-4A92-90AB-12C4F65F065A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw00s - {6488CC82-47A7-4A92-90AB-12C4F65F065A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw10 - {6488CC82-47A7-4A92-90AB-12C4F65F065A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw10s - {6488CC82-47A7-4A92-90AB-12C4F65F065A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw20 - {6488CC82-47A7-4A92-90AB-12C4F65F065A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw20s - {6488CC82-47A7-4A92-90AB-12C4F65F065A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw30 - {6488CC82-47A7-4A92-90AB-12C4F65F065A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw30s - {6488CC82-47A7-4A92-90AB-12C4F65F065A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw40 - {6488CC82-47A7-4A92-90AB-12C4F65F065A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw40s - {6488CC82-47A7-4A92-90AB-12C4F65F065A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw50 - {6488CC82-47A7-4A92-90AB-12C4F65F065A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw50s - {6488CC82-47A7-4A92-90AB-12C4F65F065A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw60 - {6488CC82-47A7-4A92-90AB-12C4F65F065A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw60s - {6488CC82-47A7-4A92-90AB-12C4F65F065A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw70 - {6488CC82-47A7-4A92-90AB-12C4F65F065A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw70s - {6488CC82-47A7-4A92-90AB-12C4F65F065A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw80 - {6488CC82-47A7-4A92-90AB-12C4F65F065A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw80s - {6488CC82-47A7-4A92-90AB-12C4F65F065A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw90 - {6488CC82-47A7-4A92-90AB-12C4F65F065A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw90s - {6488CC82-47A7-4A92-90AB-12C4F65F065A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwa0 - {6488CC82-47A7-4A92-90AB-12C4F65F065A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwa0s - {6488CC82-47A7-4A92-90AB-12C4F65F065A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwb0 - {6488CC82-47A7-4A92-90AB-12C4F65F065A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwb0s - {6488CC82-47A7-4A92-90AB-12C4F65F065A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwc0 - {6488CC82-47A7-4A92-90AB-12C4F65F065A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwc0s - {6488CC82-47A7-4A92-90AB-12C4F65F065A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwd0 - {6488CC82-47A7-4A92-90AB-12C4F65F065A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwd0s - {6488CC82-47A7-4A92-90AB-12C4F65F065A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwe0 - {6488CC82-47A7-4A92-90AB-12C4F65F065A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwe0s - {6488CC82-47A7-4A92-90AB-12C4F65F065A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwf0 - {6488CC82-47A7-4A92-90AB-12C4F65F065A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwf0s - {6488CC82-47A7-4A92-90AB-12C4F65F065A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwfile-8876480 - {9462A756-7B47-47BC-8C80-C34B9B80B32B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\GAPlugProtocol-8876480.dll O18 - Protocol: bwg0 - {6488CC82-47A7-4A92-90AB-12C4F65F065A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwg0s - {6488CC82-47A7-4A92-90AB-12C4F65F065A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwh0 - {6488CC82-47A7-4A92-90AB-12C4F65F065A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwh0s - {6488CC82-47A7-4A92-90AB-12C4F65F065A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwi0 - {6488CC82-47A7-4A92-90AB-12C4F65F065A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwi0s - {6488CC82-47A7-4A92-90AB-12C4F65F065A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwj0 - {6488CC82-47A7-4A92-90AB-12C4F65F065A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwj0s - {6488CC82-47A7-4A92-90AB-12C4F65F065A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwk0 - {6488CC82-47A7-4A92-90AB-12C4F65F065A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwk0s - {6488CC82-47A7-4A92-90AB-12C4F65F065A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwl0 - {6488CC82-47A7-4A92-90AB-12C4F65F065A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwl0s - {6488CC82-47A7-4A92-90AB-12C4F65F065A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwm0 - {6488CC82-47A7-4A92-90AB-12C4F65F065A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwm0s - {6488CC82-47A7-4A92-90AB-12C4F65F065A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwn0 - {6488CC82-47A7-4A92-90AB-12C4F65F065A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwn0s - {6488CC82-47A7-4A92-90AB-12C4F65F065A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwo0 - {6488CC82-47A7-4A92-90AB-12C4F65F065A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwo0s - {6488CC82-47A7-4A92-90AB-12C4F65F065A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwp0 - {6488CC82-47A7-4A92-90AB-12C4F65F065A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwp0s - {6488CC82-47A7-4A92-90AB-12C4F65F065A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwq0 - {6488CC82-47A7-4A92-90AB-12C4F65F065A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwq0s - {6488CC82-47A7-4A92-90AB-12C4F65F065A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwr0 - {6488CC82-47A7-4A92-90AB-12C4F65F065A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwr0s - {6488CC82-47A7-4A92-90AB-12C4F65F065A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bws0 - {6488CC82-47A7-4A92-90AB-12C4F65F065A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bws0s - {6488CC82-47A7-4A92-90AB-12C4F65F065A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwt0 - {6488CC82-47A7-4A92-90AB-12C4F65F065A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwt0s - {6488CC82-47A7-4A92-90AB-12C4F65F065A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwu0 - {6488CC82-47A7-4A92-90AB-12C4F65F065A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwu0s - {6488CC82-47A7-4A92-90AB-12C4F65F065A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwv0 - {6488CC82-47A7-4A92-90AB-12C4F65F065A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwv0s - {6488CC82-47A7-4A92-90AB-12C4F65F065A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bww0 - {6488CC82-47A7-4A92-90AB-12C4F65F065A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bww0s - {6488CC82-47A7-4A92-90AB-12C4F65F065A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwx0 - {6488CC82-47A7-4A92-90AB-12C4F65F065A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwx0s - {6488CC82-47A7-4A92-90AB-12C4F65F065A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwy0 - {6488CC82-47A7-4A92-90AB-12C4F65F065A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwy0s - {6488CC82-47A7-4A92-90AB-12C4F65F065A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwz0 - {6488CC82-47A7-4A92-90AB-12C4F65F065A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwz0s - {6488CC82-47A7-4A92-90AB-12C4F65F065A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: offline-8876480 - {6488CC82-47A7-4A92-90AB-12C4F65F065A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O23 - Service: a-squared Free Service (a2free) - Emsi Software GmbH - c:\program files\a-squared free\a2service.exe O23 - Service: dlbt_device - Dell - C:\WINDOWS\system32\dlbtcoms.exe O23 - Service: McAfee E-mail Proxy (Emproxy) - McAfee, Inc. - C:\PROGRA~1\FICHIE~1\McAfee\EmProxy\emproxy.exe O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Fichiers communs\InstallShield\Driver\1050\Intel 32\IDriverT.exe O23 - Service: MBackMonitor - McAfee - C:\Program Files\McAfee\MBK\MBackMonitor.exe O23 - Service: McAfee HackerWatch Service - McAfee, Inc. - C:\Program Files\Fichiers communs\McAfee\HackerWatch\HWAPI.exe O23 - Service: McAfee Update Manager (mcmispupdmgr) - McAfee, Inc. - C:\PROGRA~1\McAfee\MSC\mcupdmgr.exe O23 - Service: McAfee Services (mcmscsvc) - McAfee, Inc. - C:\PROGRA~1\McAfee\MSC\mcmscsvc.exe O23 - Service: McAfee Network Agent (McNASvc) - McAfee, Inc. - c:\program files\fichiers communs\mcafee\mna\mcnasvc.exe O23 - Service: McAfee Scanner (McODS) - McAfee, Inc. - C:\PROGRA~1\McAfee\VIRUSS~1\mcods.exe O23 - Service: McAfee Protection Manager (mcpromgr) - McAfee, Inc. - C:\PROGRA~1\McAfee\MSC\mcpromgr.exe O23 - Service: McAfee Redirector Service (McRedirector) - McAfee, Inc. - c:\PROGRA~1\FICHIE~1\mcafee\redirsvc\redirsvc.exe O23 - Service: McAfee Real-time Scanner (McShield) - McAfee, Inc. - C:\PROGRA~1\McAfee\VIRUSS~1\mcshield.exe O23 - Service: McAfee SystemGuards (McSysmon) - McAfee, Inc. - C:\PROGRA~1\McAfee\VIRUSS~1\mcsysmon.exe O23 - Service: McAfee Personal Firewall Service (MpfService) - McAfee, Inc. - C:\Program Files\McAfee\MPF\MPFSrv.exe O23 - Service: Intel NCS NetService (NetSvc) - Intel® Corporation - C:\Program Files\Intel\NCS\Sync\NetSvc.exe O23 - Service: NVIDIA Driver Helper Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\System32\nvsvc32.exe -- End of file - 20910 bytes SmitFraudFix v2.210 Rapport fait à 23:42:40,70, 17/08/2007 Executé à partir de C:\Documents and Settings\LF\Mes documents\Mes T‚l‚chargements\SmitfraudFix\SmitfraudFix OS: Microsoft Windows XP [version 5.1.2600] - Windows_NT Le type du système de fichiers est NTFS Fix executé en mode normal »»»»»»»»»»»»»»»»»»»»»»»» Process C:\WINDOWS\System32\smss.exe C:\WINDOWS\system32\winlogon.exe C:\WINDOWS\system32\services.exe C:\WINDOWS\system32\lsass.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\System32\svchost.exe C:\WINDOWS\Explorer.EXE C:\WINDOWS\system32\spoolsv.exe C:\Program Files\Dell Photo AIO Printer 922\dlbtbmgr.exe C:\Program Files\McAfee\MBK\McAfeeDataBackup.exe C:\Program Files\POP Peeper\POPPeeper.exe C:\Program Files\Dell Photo AIO Printer 922\dlbtbmon.exe C:\WINDOWS\system32\ctfmon.exe C:\Program Files\Free Download Manager\FUM\fumoei.exe C:\Program Files\Logitech\SetPoint\SetPoint.exe C:\Program Files\OpenOffice.org 2.2\program\soffice.exe C:\Program Files\OpenOffice.org 2.2\program\soffice.BIN C:\Program Files\Fichiers communs\Logitech\KHAL\KHALMNPR.EXE c:\program files\a-squared free\a2service.exe C:\WINDOWS\System32\dllhost.exe C:\Program Files\McAfee\MBK\MBackMonitor.exe C:\Program Files\Fichiers communs\McAfee\HackerWatch\HWAPI.exe C:\PROGRA~1\McAfee\MSC\mcmscsvc.exe c:\program files\fichiers communs\mcafee\mna\mcnasvc.exe C:\PROGRA~1\McAfee\VIRUSS~1\mcods.exe C:\PROGRA~1\McAfee\MSC\mcpromgr.exe c:\PROGRA~1\FICHIE~1\mcafee\redirsvc\redirsvc.exe C:\PROGRA~1\McAfee\VIRUSS~1\mcshield.exe C:\PROGRA~1\McAfee\VIRUSS~1\mcsysmon.exe C:\Program Files\McAfee\MPF\MPFSrv.exe C:\WINDOWS\System32\nvsvc32.exe C:\WINDOWS\system32\svchost.exe c:\PROGRA~1\mcafee.com\agent\mcagent.exe C:\WINDOWS\System32\svchost.exe C:\PROGRA~1\FICHIE~1\McAfee\EmProxy\emproxy.exe C:\WINDOWS\system32\cmd.exe »»»»»»»»»»»»»»»»»»»»»»»» hosts »»»»»»»»»»»»»»»»»»»»»»»» C:\ »»»»»»»»»»»»»»»»»»»»»»»» C:\WINDOWS »»»»»»»»»»»»»»»»»»»»»»»» C:\WINDOWS\system »»»»»»»»»»»»»»»»»»»»»»»» C:\WINDOWS\Web »»»»»»»»»»»»»»»»»»»»»»»» C:\WINDOWS\system32 »»»»»»»»»»»»»»»»»»»»»»»» C:\WINDOWS\system32\LogFiles »»»»»»»»»»»»»»»»»»»»»»»» C:\Documents and Settings\LF »»»»»»»»»»»»»»»»»»»»»»»» C:\Documents and Settings\LF\Application Data »»»»»»»»»»»»»»»»»»»»»»»» Menu Démarrer »»»»»»»»»»»»»»»»»»»»»»»» C:\DOCUME~1\LF\Favoris »»»»»»»»»»»»»»»»»»»»»»»» Bureau »»»»»»»»»»»»»»»»»»»»»»»» C:\Program Files »»»»»»»»»»»»»»»»»»»»»»»» Clés corrompues »»»»»»»»»»»»»»»»»»»»»»»» Eléments du bureau »»»»»»»»»»»»»»»»»»»»»»»» Sharedtaskscheduler !!!Attention, les clés qui suivent ne sont pas forcément infectées!!! SrchSTS.exe by S!Ri Search SharedTaskScheduler's .dll »»»»»»»»»»»»»»»»»»»»»»»» AppInit_DLLs !!!Attention, les clés qui suivent ne sont pas forcément infectées!!! [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows] "AppInit_DLLs"="" »»»»»»»»»»»»»»»»»»»»»»»» Winlogon.System !!!Attention, les clés qui suivent ne sont pas forcément infectées!!! [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon] "System"="" »»»»»»»»»»»»»»»»»»»»»»»» Rustock »»»»»»»»»»»»»»»»»»»»»»»» DNS Description: Intel® PRO/100 VE Network Connection - Miniport d'ordonnancement de paquets DNS Server Search Order: 207.68.160.190 DNS Server Search Order: 207.68.160.194 Description: WAN (PPP/SLIP) Interface DNS Server Search Order: 80.10.246.1 DNS Server Search Order: 80.10.246.132 HKLM\SYSTEM\CCS\Services\Tcpip\..\{5CD2D80C-813E-4E02-A4C7-9B3BADBC17CB}: NameServer=80.10.246.1,80.10.246.132 HKLM\SYSTEM\CCS\Services\Tcpip\..\{BAF27415-7A8C-4647-87C9-363AAE67FDE0}: NameServer=207.68.160.190,207.68.160.194 HKLM\SYSTEM\CCS\Services\Tcpip\..\{C3E6B25B-4F37-4FEB-A5AC-4CBCC0CE5D0F}: DhcpNameServer=207.68.160.190 194.25.2.129 208.67.222.222 ,207.68.160.190 194.25.2.129 208.67.222.222 HKLM\SYSTEM\CS2\Services\Tcpip\..\{593A6C32-B52A-49BB-B438-100F46D81A20}: DhcpNameServer=85.255.115.60,85.255.112.87 HKLM\SYSTEM\CS2\Services\Tcpip\..\{593A6C32-B52A-49BB-B438-100F46D81A20}: NameServer=85.255.115.60,85.255.112.87 HKLM\SYSTEM\CS2\Services\Tcpip\..\{BAF27415-7A8C-4647-87C9-363AAE67FDE0}: NameServer=85.255.115.60,85.255.112.87 HKLM\SYSTEM\CS2\Services\Tcpip\..\{C3E6B25B-4F37-4FEB-A5AC-4CBCC0CE5D0F}: DhcpNameServer=85.255.115.60,85.255.112.87 HKLM\SYSTEM\CS3\Services\Tcpip\..\{5CD2D80C-813E-4E02-A4C7-9B3BADBC17CB}: NameServer=80.10.246.1,80.10.246.132 HKLM\SYSTEM\CS3\Services\Tcpip\..\{BAF27415-7A8C-4647-87C9-363AAE67FDE0}: NameServer=207.68.160.190,207.68.160.194 HKLM\SYSTEM\CS3\Services\Tcpip\..\{C3E6B25B-4F37-4FEB-A5AC-4CBCC0CE5D0F}: DhcpNameServer=207.68.160.190 194.25.2.129 208.67.222.222 ,207.68.160.190 194.25.2.129 208.67.222.222 HKLM\SYSTEM\CS2\Services\Tcpip\Parameters: NameServer=85.255.115.60 85.255.112.87 »»»»»»»»»»»»»»»»»»»»»»»» Recherche infection wininet.dll »»»»»»»»»»»»»»»»»»»»»»»» Fin Mis à part ce petit pb de mauvais adressage tout c'est bien passé. Je n'avais jamais fait de connexions jusqu'à présent mais maintenant l'utilitaire commence à montrer des signes d'usure. Salut à toi, bonne soirée et merci encore.
×
×
  • Créer...