sos pour le Flash Player

sibern · le 08 Juil 2008 20:54

bonjour voila je vous explique je vais voir des video sur un site et le site me dit quil faut charger flach paiyer donc je le charge il me marque operation reussi donc je revais voir les video et ca marche toujour pas et il a 10 jour jai telecharget un logiciel qui dectecte lles spyroire les mouchart donc voilat je me demande ci ca vien pas de la car avant javai le flache plaiyer donc voilat esque vous pouver maider merci davance z+

r@in | b0w · le 08 Juil 2008 21:45

Bonjour.

On va tenter de regarder la santé de ta machine.

Suis ce tutorial et postes le rapport généré.

sibern · le 09 Juil 2008 16:46

voilat le resultat de lanalyse a + pour la reponce merci bocoup

Etat de l'analyse :

Analyse : 1

Début d'analyse : 07/09/08 17:28:41

Cibles de l'analyse : Processus en cours d'exécution;Points d'entrée

Définitions de virus : 07/08/08

Décompte de l'analyse : 4658

Risques détectés : 1

Risques résolus : 0

Risques non résolus : 1

Durée d'analyse : 402 sec

Analyse terminée : 07/09/08 17:35:23

Menaces résolues :

Menaces non résolues :

Tracking Cookie

ID du virus : 4294909925

Risque : Bas

Catégories : Cookie

Etat : Non traité

-----------

Cookie :

Cookie:sibern@sales.liveperson.net/hc/57472748

Cookie:sibern@server.iad.liveperson.net/

Cookie:sibern@adv.surinter.net/

Cookie:sibern@sales.liveperson.net/

--------------------------------------------------------------------------

Skynet · le 09 Juil 2008 17:13

Bonjour sibern,

ce n'est pas un rapport de Hijackthis, recommence depuis le tuto

.

@+

sibern · le 09 Juil 2008 17:19

ok et en + je met lanalyse dun autre logiciel qui sapele spybot je lenvoir dans 30m il et en train de lanalyser

sibern · le 09 Juil 2008 18:01

1er analyse de pysbot cidesous ainsi de suite

Microsoft.Windows.Security.InternetExplorer: [SBI $A3433CBF] Réglages (Modification du registre, nothing done)
HKEY_USERSS-1-5-21-1390067357-1770027372-839522115-1004SoftwareMicrosoftInternet ExplorerMainFeatureControlFEATURE_LOCALMACHINE_LOCKDOWNiexplore.exe

--- Spybot - Search & Destroy version: 1.5.2 (build: 20080128) ---

2008-01-28 blindman.exe (1.0.0.7)
2008-01-28 SDDelFile.exe (1.0.2.4)
2008-01-28 SDMain.exe (1.0.0.5)
2007-10-07 SDShred.exe (1.0.1.2)
2008-01-28 SDUpdate.exe (1.0.8.

2008-01-28 SDWinSec.exe (1.0.0.11)
2008-01-28 SpybotSD.exe (1.5.2.20)
2008-01-28 TeaTimer.exe (1.5.2.16)
2008-06-30 unins000.exe (51.49.0.0)
2008-01-28 Update.exe (1.4.0.6)
2008-01-28 advcheck.dll (1.5.4.5)
2007-04-02 aports.dll (2.1.0.0)
2007-11-17 DelZip179.dll (1.79.7.4)
2008-01-28 SDFiles.dll (1.5.1.19)
2008-01-28 SDHelper.dll (1.5.0.11)
2008-01-28 Tools.dll (2.1.3.3)
2008-06-17 IncludesAdware.sbi (*)
2008-07-07 IncludesAdwareC.sbi (*)
2008-06-03 IncludesCookies.sbi (*)
2008-06-03 IncludesDialer.sbi (*)
2008-07-07 IncludesDialerC.sbi (*)
2008-06-03 IncludesHeavyDuty.sbi (*)
2008-06-16 IncludesHijackers.sbi (*)
2008-07-08 IncludesHijackersC.sbi (*)
2008-06-25 IncludesKeyloggers.sbi (*)
2008-07-08 IncludesKeyloggersC.sbi (*)
2004-11-29 IncludesLSP.sbi (*)
2008-07-02 IncludesMalware.sbi (*)
2008-07-08 IncludesMalwareC.sbi (*)
2008-06-17 IncludesPUPS.sbi (*)
2008-07-01 IncludesPUPSC.sbi (*)
2007-11-07 IncludesRevision.sbi (*)
2008-06-10 IncludesSecurity.sbi (*)
2008-07-08 IncludesSecurityC.sbi (*)
2008-06-03 IncludesSpybots.sbi (*)
2008-06-03 IncludesSpybotsC.sbi (*)
2008-06-17 IncludesSpyware.sbi (*)
2008-07-08 IncludesSpywareC.sbi (*)
2008-06-03 IncludesTracks.uti
2008-06-24 IncludesTrojans.sbi (*)
2008-07-08 IncludesTrojansC.sbi (*)
2008-03-04 PluginsChai.dll
2008-03-05 PluginsFennel.dll
2008-02-26 PluginsMate.dll
2007-12-24 PluginsTCPIPAddress.dll

suite2
--- Search result list ---
Microsoft.Windows.Security.InternetExplorer: [SBI $A3433CBF] Réglages (Modification du registre, fixed)
HKEY_USERSS-1-5-21-1390067357-1770027372-839522115-1004SoftwareMicrosoftInternet ExplorerMainFeatureControlFEATURE_LOCALMACHINE_LOCKDOWNiexplore.exe

--- Spybot - Search & Destroy version: 1.5.2 (build: 20080128) ---

2008-01-28 blindman.exe (1.0.0.7)
2008-01-28 SDDelFile.exe (1.0.2.4)
2008-01-28 SDMain.exe (1.0.0.5)
2007-10-07 SDShred.exe (1.0.1.2)
2008-01-28 SDUpdate.exe (1.0.8.

2008-01-28 SDWinSec.exe (1.0.0.11)
2008-01-28 SpybotSD.exe (1.5.2.20)
2008-01-28 TeaTimer.exe (1.5.2.16)
2008-06-30 unins000.exe (51.49.0.0)
2008-01-28 Update.exe (1.4.0.6)
2008-01-28 advcheck.dll (1.5.4.5)
2007-04-02 aports.dll (2.1.0.0)
2007-11-17 DelZip179.dll (1.79.7.4)
2008-01-28 SDFiles.dll (1.5.1.19)
2008-01-28 SDHelper.dll (1.5.0.11)
2008-01-28 Tools.dll (2.1.3.3)
2008-06-17 IncludesAdware.sbi (*)
2008-07-07 IncludesAdwareC.sbi (*)
2008-06-03 IncludesCookies.sbi (*)
2008-06-03 IncludesDialer.sbi (*)
2008-07-07 IncludesDialerC.sbi (*)
2008-06-03 IncludesHeavyDuty.sbi (*)
2008-06-16 IncludesHijackers.sbi (*)
2008-07-08 IncludesHijackersC.sbi (*)
2008-06-25 IncludesKeyloggers.sbi (*)
2008-07-08 IncludesKeyloggersC.sbi (*)
2004-11-29 IncludesLSP.sbi (*)
2008-07-02 IncludesMalware.sbi (*)
2008-07-08 IncludesMalwareC.sbi (*)
2008-06-17 IncludesPUPS.sbi (*)
2008-07-01 IncludesPUPSC.sbi (*)
2007-11-07 IncludesRevision.sbi (*)
2008-06-10 IncludesSecurity.sbi (*)
2008-07-08 IncludesSecurityC.sbi (*)
2008-06-03 IncludesSpybots.sbi (*)
2008-06-03 IncludesSpybotsC.sbi (*)
2008-06-17 IncludesSpyware.sbi (*)
2008-07-08 IncludesSpywareC.sbi (*)
2008-06-03 IncludesTracks.uti
2008-06-24 IncludesTrojans.sbi (*)
2008-07-08 IncludesTrojansC.sbi (*)
2008-03-04 PluginsChai.dll
2008-03-05 PluginsFennel.dll
2008-02-26 PluginsMate.dll
2007-12-24 PluginsTCPIPAddress.dll

--- System information ---
Windows XP (Build: 2600) Service Pack 2 (5.1.2600)
/ .NETFramework / 1.1: Microsoft .NET Framework 1.1 Hotfix (KB928366)
/ .NETFramework / 1.1: Microsoft .NET Framework 1.1 Service Pack 1 (KB867460)
/ Windows / SP1: Microsoft Internationalized Domain Names Mitigation APIs
/ Windows / SP1: Microsoft National Language Support Downlevel APIs
/ Windows Media Format 11 SDK: Hotfix for Windows Media Format 11 SDK (KB929399)
/ Windows Media Player: Correctif pour le Lecteur Windows Media [Voir Q828026 pour plus d'informations]
/ Windows Media Player / SP0: Correctif pour le Lecteur Windows Media [Voir Q828026 pour plus d'informations]
/ Windows Media Player 11: Mise à jour de sécurité pour Lecteur Windows Media 11 (KB936782)
/ Windows Media Player 11: Correctif pour Lecteur Windows Media 11 (KB939683)
/ Windows Media Player 6.4: Mise à jour de sécurité pour Lecteur Windows Media 6.4 (KB925398)
/ Windows Media Player 9: Mise à jour de sécurité pour Lecteur Windows Media 9 (KB936782)
/ Windows XP: Mise à jour de sécurité pour Windows XP (KB923689)
/ Windows XP: Mise à jour de sécurité pour Windows XP (KB941569)
/ Windows XP / SP0: Mise à jour de sécurité pour Windows Internet Explorer 7 (KB937143)
/ Windows XP / SP0: Mise à jour de sécurité pour Windows Internet Explorer 7 (KB938127)
/ Windows XP / SP0: Mise à jour de sécurité pour Windows Internet Explorer 7 (KB939653)
/ Windows XP / SP0: Mise à jour de sécurité pour Windows Internet Explorer 7 (KB942615)
/ Windows XP / SP0: Mise à jour de sécurité pour Windows Internet Explorer 7 (KB944533)
/ Windows XP / SP0: Correctif pour Windows Internet Explorer 7 (KB947864)
/ Windows XP / SP0: Mise à jour de sécurité pour Windows Internet Explorer 7 (KB950759)
/ Windows XP / SP10: Microsoft Compression Client Pack 1.0 for Windows XP
/ Windows XP / SP3: Correctif Windows XP - KB873339
/ Windows XP / SP3: Correctif Windows XP - KB885835
/ Windows XP / SP3: Correctif Windows XP - KB885836
/ Windows XP / SP3: Correctif Windows XP - KB886185
/ Windows XP / SP3: Correctif Windows XP - KB887472
/ Windows XP / SP3: Correctif Windows XP - KB888302
/ Windows XP / SP3: Mise à jour de sécurité pour Windows XP (KB890046)
/ Windows XP / SP3: Correctif Windows XP - KB890859
/ Windows XP / SP3: Correctif Windows XP - KB891781
/ Windows XP / SP3: Mise à jour de sécurité pour Windows XP (KB893756)
/ Windows XP / SP3: Windows Installer 3.1 (KB893803)
/ Windows XP / SP3: Mise à jour pour Windows XP (KB894391)
/ Windows XP / SP3: Mise à jour de sécurité pour Windows XP (KB896358)
/ Windows XP / SP3: Mise à jour de sécurité pour Windows XP (KB896423)
/ Windows XP / SP3: Mise à jour de sécurité pour Windows XP (KB896428)
/ Windows XP / SP3: Mise à jour pour Windows XP (KB898461)
/ Windows XP / SP3: Mise à jour de sécurité pour Windows XP (KB899587)
/ Windows XP / SP3: Mise à jour de sécurité pour Windows XP (KB899591)
/ Windows XP / SP3: Mise à jour pour Windows XP (KB900485)
/ Windows XP / SP3: Mise à jour de sécurité pour Windows XP (KB900725)
/ Windows XP / SP3: Mise à jour de sécurité pour Windows XP (KB901017)
/ Windows XP / SP3: Mise à jour de sécurité pour Windows XP (KB901214)
/ Windows XP / SP3: Mise à jour de sécurité pour Windows XP (KB902400)
/ Windows XP / SP3: Mise à jour de sécurité pour Windows XP (KB904706)
/ Windows XP / SP3: Mise à jour pour Windows XP (KB904942)
/ Windows XP / SP3: Mise à jour de sécurité pour Windows XP (KB905414)
/ Windows XP / SP3: Mise à jour de sécurité pour Windows XP (KB905749)
/ Windows XP / SP3: Mise à jour de sécurité pour Windows XP (KB908519)
/ Windows XP / SP3: Mise à jour pour Windows XP (KB908531)
/ Windows XP / SP3: Mise à jour pour Windows XP (KB910437)
/ Windows XP / SP3: Mise à jour pour Windows XP (KB911280)
/ Windows XP / SP3: Mise à jour de sécurité pour Windows XP (KB911562)
/ Windows XP / SP3: Mise à jour de sécurité pour Windows XP (KB911927)
/ Windows XP / SP3: Mise à jour de sécurité pour Windows XP (KB913580)
/ Windows XP / SP3: Mise à jour de sécurité pour Windows XP (KB914388)
/ Windows XP / SP3: Mise à jour de sécurité pour Windows XP (KB914389)
/ Windows XP / SP3: Correctif pour Windows XP (KB914440)
/ Windows XP / SP3: Hotfix for Windows XP (KB915800)
/ Windows XP / SP3: Hotfix for Windows XP (KB915865)
/ Windows XP / SP3: Mise à jour pour Windows XP (KB916595)
/ Windows XP / SP3: Mise à jour de sécurité pour Windows XP (KB917344)
/ Windows XP / SP3: Mise à jour de sécurité pour Windows XP (KB917953)
/ Windows XP / SP3: Mise à jour de sécurité pour Windows XP (KB918118)
/ Windows XP / SP3: Mise à jour de sécurité pour Windows XP (KB918439)
/ Windows XP / SP3: Mise à jour de sécurité pour Windows XP (KB919007)
/ Windows XP / SP3: Mise à jour de sécurité pour Windows XP (KB920213)
/ Windows XP / SP3: Mise à jour pour Windows XP (KB920342)
/ Windows XP / SP3: Mise à jour de sécurité pour Windows XP (KB920670)
/ Windows XP / SP3: Mise à jour de sécurité pour Windows XP (KB920683)
/ Windows XP / SP3: Mise à jour de sécurité pour Windows XP (KB920685)
/ Windows XP / SP3: Mise à jour pour Windows XP (KB920872)
/ Windows XP / SP3: Mise à jour de sécurité pour Windows XP (KB921503)
/ Windows XP / SP3: Mise à jour pour Windows XP (KB922582)
/ Windows XP / SP3: Mise à jour de sécurité pour Windows XP (KB922819)
/ Windows XP / SP3: Mise à jour de sécurité pour Windows XP (KB923191)
/ Windows XP / SP3: Mise à jour de sécurité pour Windows XP (KB923414)
/ Windows XP / SP3: Mise à jour de sécurité pour Windows XP (KB923980)
/ Windows XP / SP3: Mise à jour de sécurité pour Windows XP (KB924270)
/ Windows XP / SP3: Mise à jour de sécurité pour Windows XP (KB924496)
/ Windows XP / SP3: Mise à jour de sécurité pour Windows XP (KB924667)
/ Windows XP / SP3: Mise à jour pour Windows XP (KB925720)
/ Windows XP / SP3: Mise à jour pour Windows XP (KB925876)
/ Windows XP / SP3: Mise à jour de sécurité pour Windows XP (KB925902)
/ Windows XP / SP3: Hotfix for Windows XP (KB926239)
/ Windows XP / SP3: Mise à jour de sécurité pour Windows XP (KB926255)
/ Windows XP / SP3: Mise à jour de sécurité pour Windows XP (KB926436)
/ Windows XP / SP3: Mise à jour de sécurité pour Windows XP (KB927779)
/ Windows XP / SP3: Mise à jour de sécurité pour Windows XP (KB927802)
/ Windows XP / SP3: Mise à jour pour Windows XP (KB927891)
/ Windows XP / SP3: Mise à jour de sécurité pour Windows XP (KB928255)
/ Windows XP / SP3: Mise à jour de sécurité pour Windows XP (KB928843)
/ Windows XP / SP3: Mise à jour de sécurité pour Windows XP (KB929123)
/ Windows XP / SP3: Mise à jour de sécurité pour Windows XP (KB930178)
/ Windows XP / SP3: Mise à jour pour Windows XP (KB930916)
/ Windows XP / SP3: Mise à jour de sécurité pour Windows XP (KB931261)
/ Windows XP / SP3: Mise à jour de sécurité pour Windows XP (KB931784)
/ Windows XP / SP3: Mise à jour pour Windows XP (KB931836)
/ Windows XP / SP3: Mise à jour de sécurité pour Windows XP (KB932168)
/ Windows XP / SP3: Mise à jour pour Windows XP (KB932823-v3)
/ Windows XP / SP3: Mise à jour pour Windows XP (KB933360)
/ Windows XP / SP3: Mise à jour de sécurité pour Windows XP (KB933729)
/ Windows XP / SP3: Mise à jour de sécurité pour Windows XP (KB935839)
/ Windows XP / SP3: Mise à jour de sécurité pour Windows XP (KB935840)
/ Windows XP / SP3: Mise à jour de sécurité pour Windows XP (KB936021)
/ Windows XP / SP3: Mise à jour de sécurité pour Windows XP (KB937143)
/ Windows XP / SP3: Mise à jour de sécurité pour Windows XP (KB938127)
/ Windows XP / SP3: Mise à jour pour Windows XP (KB938828)
/ Windows XP / SP3: Mise à jour de sécurité pour Windows XP (KB938829)
/ Windows XP / SP3: Mise à jour de sécurité pour Windows XP (KB941202)
/ Windows XP / SP3: Mise à jour de sécurité pour Windows XP (KB941568)
/ Windows XP / SP3: Mise à jour de sécurité pour Windows XP (KB941644)
/ Windows XP / SP3: Mise à jour de sécurité pour Windows XP (KB941693)
/ Windows XP / SP3: Mise à jour pour Windows XP (KB942763)
/ Windows XP / SP3: Mise à jour de sécurité pour Windows XP (KB943055)
/ Windows XP / SP3: Mise à jour de sécurité pour Windows XP (KB943460)
/ Windows XP / SP3: Mise à jour de sécurité pour Windows XP (KB943485)
/ Windows XP / SP3: Mise à jour de sécurité pour Windows XP (KB944653)
/ Windows XP / SP3: Mise à jour de sécurité pour Windows XP (KB945553)
/ Windows XP / SP3: Mise à jour de sécurité pour Windows XP (KB946026)
/ Windows XP / SP3: Mise à jour de sécurité pour Windows XP (KB948590)
/ Windows XP / SP3: Mise à jour de sécurité pour Windows XP (KB948881)
/ Windows XP / SP3: Mise à jour de sécurité pour Windows XP (KB950749)
/ Windows XP / SP4: Mise à jour de sécurité pour Windows XP (KB950760)
/ Windows XP / SP4: Mise à jour de sécurité pour Windows XP (KB950762)
/ Windows XP / SP4: Mise à jour de sécurité pour Windows XP (KB951376)
/ Windows XP / SP4: Mise à jour de sécurité pour Windows XP (KB951376-v2)
/ Windows XP / SP4: Mise à jour de sécurité pour Windows XP (KB951698)
/ Windows XP / SP4: Mise à jour de sécurité pour Windows XP (KB951748)
/ XML Paper Specification Shared Components Pack 1.0: XML Paper Specification Shared Components Pack 1.0

--- Startup entries list ---
Located: HK_LM:Run, Adobe Reader Speed Launcher
command: "C:Program FilesAdobeReader 9.0ReaderReader_sl.exe"
file: C:Program FilesAdobeReader 9.0ReaderReader_sl.exe
size: 34672
MD5: 69B16C7B7746BA5C642FC05B3561FC73

Located: HK_LM:Run, avast!
command: C:PROGRA~1ALWILS~1Avast4ashDisp.exe
file: C:PROGRA~1ALWILS~1Avast4ashDisp.exe
size: 79224
MD5: 87B63FD1B5EC5CC41589CE7026DB7C5F

Located: HK_LM:Run, NvCplDaemon
command: RUNDLL32.EXE C:WINDOWSsystem32NvCpl.dll,NvStartup
file:
size: 0
MD5: D41D8CD98F00B204E9800998ECF8427E
Warning: if the file is actually larger than 0 bytes,
the checksum could not be properly calculated!

Located: HK_CU:Run, CTFMON.EXE
where: .DEFAULT...
command: C:WINDOWSsystem32CTFMON.EXE
file: C:WINDOWSsystem32CTFMON.EXE
size: 15360
MD5: 5584247B568C2E53934873F4B655FE6A

Located: HK_CU:Run, OrangePlayer
where: .DEFAULT...
command: c:program filesorangeplayer orangeOrange Player.exe /systray
file: c:program filesorangeplayer orangeOrange Player.exe
size: 319488
MD5: 54D92EC9ED3B49C6A9E1B4113DBEE01C

Located: HK_CU:Run, CTFMON.EXE
where: S-1-5-19...
command: C:WINDOWSsystem32CTFMON.EXE
file: C:WINDOWSsystem32CTFMON.EXE
size: 15360
MD5: 5584247B568C2E53934873F4B655FE6A

Located: HK_CU:Run, OrangePlayer
where: S-1-5-19...
command: c:program filesorangeplayer orangeOrange Player.exe /systray
file: c:program filesorangeplayer orangeOrange Player.exe
size: 319488
MD5: 54D92EC9ED3B49C6A9E1B4113DBEE01C

Located: HK_CU:Run, CTFMON.EXE
where: S-1-5-20...
command: C:WINDOWSsystem32CTFMON.EXE
file: C:WINDOWSsystem32CTFMON.EXE
size: 15360
MD5: 5584247B568C2E53934873F4B655FE6A

Located: HK_CU:Run, OrangePlayer
where: S-1-5-20...
command: c:program filesorangeplayer orangeOrange Player.exe /systray
file: c:program filesorangeplayer orangeOrange Player.exe
size: 319488
MD5: 54D92EC9ED3B49C6A9E1B4113DBEE01C

Located: HK_CU:Run, ctfmon.exe
where: S-1-5-21-1390067357-1770027372-839522115-1004...
command: C:WINDOWSsystem32ctfmon.exe
file: C:WINDOWSsystem32ctfmon.exe
size: 15360
MD5: 5584247B568C2E53934873F4B655FE6A

Located: HK_CU:Run, msnmsgr
where: S-1-5-21-1390067357-1770027372-839522115-1004...
command: "C:Program FilesWindows LiveMessengermsnmsgr.exe" /background
file: C:Program FilesWindows LiveMessengermsnmsgr.exe
size: 5724184
MD5: 97384875B6D03831B2D1820AB8952F67

Located: HK_CU:Run, swg
where: S-1-5-21-1390067357-1770027372-839522115-1004...
command: C:Program FilesGoogleGoogleToolbarNotifier1.2.1128.5462GoogleToolbarNotifier.exe
file: C:Program FilesGoogleGoogleToolbarNotifier1.2.1128.5462GoogleToolbarNotifier.exe
size: 171448
MD5: 0FA44EA8B03ABA3E1D240B5A333D8E6A

Located: HK_CU:Run, CTFMON.EXE
where: S-1-5-18...
command: C:WINDOWSsystem32CTFMON.EXE
file: C:WINDOWSsystem32CTFMON.EXE
size: 15360
MD5: 5584247B568C2E53934873F4B655FE6A

Located: HK_CU:Run, OrangePlayer
where: S-1-5-18...
command: c:program filesorangeplayer orangeOrange Player.exe /systray
file: c:program filesorangeplayer orangeOrange Player.exe
size: 319488
MD5: 54D92EC9ED3B49C6A9E1B4113DBEE01C

Located: Démarrage (désactivé), Windows Desktop Search (DISABLED)
command: C:PROGRA~1WI459E~1WINDOW~1.EXE /startup
file: C:PROGRA~1WI459E~1WINDOW~1.EXE
size: 118784
MD5: 946467B375D696FA073A6B9370A4C6CE

Located: Démarrage (désactivé), DeliveryManager (DISABLED)
command: D:DeliveryDELIVE~2.EXE -s
file: D:DeliveryDELIVE~2.EXE
size: 796544
MD5: 2D74C6C8CC8E05B73BA6A2AE6EF021CC

Located: WinLogon, crypt32chain
command: crypt32.dll
file: crypt32.dll
size: 0
MD5: D41D8CD98F00B204E9800998ECF8427E
Warning: if the file is actually larger than 0 bytes,
the checksum could not be properly calculated!

Located: WinLogon, cryptnet
command: cryptnet.dll
file: cryptnet.dll
size: 0
MD5: D41D8CD98F00B204E9800998ECF8427E
Warning: if the file is actually larger than 0 bytes,
the checksum could not be properly calculated!

Located: WinLogon, cscdll
command: cscdll.dll
file: cscdll.dll
size: 0
MD5: D41D8CD98F00B204E9800998ECF8427E
Warning: if the file is actually larger than 0 bytes,
the checksum could not be properly calculated!

Located: WinLogon, ScCertProp
command: wlnotify.dll
file: wlnotify.dll
size: 0
MD5: D41D8CD98F00B204E9800998ECF8427E
Warning: if the file is actually larger than 0 bytes,
the checksum could not be properly calculated!

Located: WinLogon, Schedule
command: wlnotify.dll
file: wlnotify.dll
size: 0
MD5: D41D8CD98F00B204E9800998ECF8427E
Warning: if the file is actually larger than 0 bytes,
the checksum could not be properly calculated!

Located: WinLogon, sclgntfy
command: sclgntfy.dll
file: sclgntfy.dll
size: 0
MD5: D41D8CD98F00B204E9800998ECF8427E
Warning: if the file is actually larger than 0 bytes,
the checksum could not be properly calculated!

Located: WinLogon, SensLogn
command: WlNotify.dll
file: WlNotify.dll
size: 0
MD5: D41D8CD98F00B204E9800998ECF8427E
Warning: if the file is actually larger than 0 bytes,
the checksum could not be properly calculated!

Located: WinLogon, termsrv
command: wlnotify.dll
file: wlnotify.dll
size: 0
MD5: D41D8CD98F00B204E9800998ECF8427E
Warning: if the file is actually larger than 0 bytes,
the checksum could not be properly calculated!

Located: WinLogon, wlballoon
command: wlnotify.dll
file: wlnotify.dll
size: 0
MD5: D41D8CD98F00B204E9800998ECF8427E
Warning: if the file is actually larger than 0 bytes,
the checksum could not be properly calculated!

--- Browser helper object list ---
{18DF081C-E8AD-4283-A596-FA578C2EBDC3} (AcroIEHelperStub)
location: HKEY_LOCAL_MACHINESOFTWAREMicrosoftWindowsCurrentVersionExplorerBrowser Helper Objects
BHO name: AcroIEHelperStub
CLSID name: Adobe PDF Link Helper
Path: C:Program FilesFichiers communsAdobeAcrobatActiveX
Long name: AcroIEHelperShim.dll
Short name: ACROIE~2.DLL
Date (created): 11/06/2008 22:33:16
Date (last access): 09/07/2008 18:45:10
Date (last write): 11/06/2008 22:33:16
Filesize: 75128
Attributes: archive
MD5: E96C752BBA0E22330A43258FC800200E
CRC32: E5D72083
Version: 9.0.0.332

{6A87B991-A31F-4130-AE72-6D0C294BF082} (DealioBHO Class)
location: HKEY_LOCAL_MACHINESOFTWAREMicrosoftWindowsCurrentVersionExplorerBrowser Helper Objects
BHO name:
CLSID name: DealioBHO Class
Path: C:Program FilesDealiokb127
Long name: Dealio.dll
Short name:
Date (created): 26/05/2008 19:50:36
Date (last access): 09/07/2008 18:16:42
Date (last write): 26/05/2008 19:50:36
Filesize: 3170144
Attributes: archive
MD5: 7FD978E0BD82EC06D663F3E61453C7EB
CRC32: 2B3821D1
Version: 3.4.0.8

{7E853D72-626A-48EC-A868-BA8D5E23E045} ()
location: HKEY_LOCAL_MACHINESOFTWAREMicrosoftWindowsCurrentVersionExplorerBrowser Helper Objects
BHO name:
CLSID name:

{9030D464-4C02-4ABF-8ECC-5164760863C6} (Programme d'aide de l'Assistant de connexion Windows Live)
location: HKEY_LOCAL_MACHINESOFTWAREMicrosoftWindowsCurrentVersionExplorerBrowser Helper Objects
BHO name:
CLSID name: Programme d'aide de l'Assistant de connexion Windows Live
Path: C:Program FilesFichiers communsMicrosoft SharedWindows Live
Long name: WindowsLiveLogin.dll
Short name: WINDOW~1.DLL
Date (created): 20/09/2007 11:30:18
Date (last access): 09/07/2008 18:16:48
Date (last write): 20/09/2007 11:30:18
Filesize: 328752
Attributes: archive
MD5: 59CF5BF6684AFCF906CADAD39B4214DE
CRC32: C363813C
Version: 4.200.520.1

{AA58ED58-01DD-4d91-8333-CF10577473F7} (Google Toolbar Helper)
location: HKEY_LOCAL_MACHINESOFTWAREMicrosoftWindowsCurrentVersionExplorerBrowser Helper Objects
BHO name:
CLSID name: Google Toolbar Helper
description: Google toolbar
classification: Open for discussion
known filename: googletoolbar.dll<br>googletoolbar*.dll<br>(* = number)<br>googletoolbar_en_*.**-big.dll<br>Googletoolbar_en_*.*.**-deleon.dll
info link: http://toolbar.google.com/
info source: TonyKlein
Path: c:program filesgoogle
Long name: GoogleToolbar1.dll
Short name: GOOGLE~1.DLL
Date (created): 03/07/2008 16:56:32
Date (last access): 09/07/2008 18:16:42
Date (last write): 03/07/2008 16:56:32
Filesize: 2436160
Attributes: readonly archive
MD5: 6D44E0C3B43D27484FBB355E470C4188
CRC32: 2DE875CD
Version: 4.0.1601.4978

{CC59E0F9-7E43-44FA-9FAA-8377850BF205} (FDMIECookiesBHO Class)
location: HKEY_LOCAL_MACHINESOFTWAREMicrosoftWindowsCurrentVersionExplorerBrowser Helper Objects
BHO name:
CLSID name: FDMIECookiesBHO Class
Path: D:Free Download Manager
Long name: iefdm2.dll
Short name:
Date (created): 25/08/2007 11:20:08
Date (last access): 09/07/2008 18:08:42
Date (last write): 25/07/2007 22:44:06
Filesize: 90112
Attributes: archive
MD5: F887DD35C9C50BB69C970EA3B7EC9BE2
CRC32: 2F3F731F
Version: 637.0.0.5

{E312764E-7706-43F1-8DAB-FCDD2B1E416D} (SearchSettings Class)
location: HKEY_LOCAL_MACHINESOFTWAREMicrosoftWindowsCurrentVersionExplorerBrowser Helper Objects
BHO name:
CLSID name: SearchSettings Class
Path: C:Program FilesSearch Settingskb127
Long name: SearchSettings.dll
Short name: SEARCH~1.DLL
Date (created): 12/06/2008 16:57:18
Date (last access): 09/07/2008 18:16:50
Date (last write): 12/06/2008 16:57:18
Filesize: 1111904
Attributes: archive
MD5: 204A7D5F3E4EC748FA9ADA5C0FE861FC
CRC32: 160A00E8
Version: 1.2.0.9

--- ActiveX list ---
{029FDBA6-3547-11D7-AA4C-0050BF051A00} (Rawflow ICD Client)
DPF name:
CLSID name: Rawflow ICD Client
Installer:
Codebase: http://s.tf1.fr/mmdia/static/rawflow/cl ... awflow.cab
description:
classification: Open for discussion
known filename: Rawflow.ocx
info link:
info source: Safer Networking Ltd.
Path: C:WINDOWSDOWNLO~1
Long name: Rawflow.ocx
Short name:
Date (created): 09/07/2007 12:27:04
Date (last access): 09/07/2008 18:50:04
Date (last write): 09/07/2007 12:27:04
Filesize: 2377088
Attributes: archive
MD5: 943E22C10A1A7A411433107ACADFFC9D
CRC32: B59B8B1F
Version: 5.3.1.0

{02BF25D5-8C17-4B23-BC80-D3488ABDDC6B} (QuickTime Plugin Control)
DPF name:
CLSID name: QuickTime Plugin Control
Installer: C:WINDOWSDownloaded Program FilesQTPlugin.inf
Codebase: http://appldnld.apple.com.edgesuite.net ... plugin.cab
description: Apple Quicktime
classification: Legitimate
known filename: QTPLUGIN.OCX
info link:
info source: Patrick M. Kolla
Path: C:Program FilesQuickTime
Long name: QTPlugin.ocx
Short name:
Date (created): 30/01/2008 11:29:18
Date (last access): 09/07/2008 18:50:06
Date (last write): 30/01/2008 11:29:20
Filesize: 750896
Attributes: archive
MD5: 1F1D877F7982CE5AAC286F0F60DD8088
CRC32: D1594441
Version: 7.4.0.91

{166B1BCA-3F9C-11CF-8075-444553540000} (Shockwave ActiveX Control)
DPF name:
CLSID name: Shockwave ActiveX Control
Installer: C:WINDOWSDownloaded Program Filesswdir.inf
Codebase: http://download.macromedia.com/pub/shoc ... tor/sw.cab
description: Macromedia ShockWave Flash Player 7
classification: Legitimate
known filename: SWDIR.DLL
info link:
info source: Patrick M. Kolla
Path: C:WINDOWSsystem32AdobeDirector
Long name: swdir.dll
Short name:
Date (created): 01/05/2008 21:09:24
Date (last access): 09/07/2008 18:50:06
Date (last write): 17/06/2008 16:23:02
Filesize: 202168
Attributes: archive
MD5: 25F0A729215D2CAF61F0BF5092D07CF9
CRC32: 93C62F10
Version: 11.0.0.458

{20A60F0D-9AFA-4515-A0FD-83BD84642501} (Checkers Class)
DPF name:
CLSID name: Checkers Class
Installer:
Codebase: http://messenger.zone.msn.com/binary/ms ... b56986.cab
Path: C:WINDOWSDownloaded Program Files
Long name: msgrchkr.dll
Short name:
Date (created): 28/02/2007 14:21:04
Date (last access): 09/07/2008 17:52:46
Date (last write): 28/02/2007 14:21:04
Filesize: 131472
Attributes: archive
MD5: 1E5CFDF9AEBDD84305A4C8154277A269
CRC32: 73C871D0
Version: 9.5.7087.1

{30528230-99f7-4bb4-88d8-fa1d4f56a2ab} (YInstStarter Class)
DPF name:
CLSID name: YInstStarter Class
Installer: C:Program FilesYahoo!Commonyinst.inf
Codebase: C:Program FilesYahoo!Commonyinsthelper.dll
description: Yahoo! Installation helper
classification: Legitimate
known filename: %SystemRoot%Downloaded Program Filesyinsthelper.dll
info link:
info source: Patrick M. Kolla
Path: C:Program FilesYahoo!Common
Long name: yinsthelper.dll
Short name: YINSTH~1.DLL
Date (created): 15/10/2007 19:32:50
Date (last access): 09/07/2008 18:50:06
Date (last write): 30/07/2006 13:25:34
Filesize: 188968
Attributes: archive
MD5: 18B54B53CEE0E7204495BAB864EBBF03
CRC32: 6D72BB93
Version: 2006.4.14.2

{4F1E5B1A-2A80-42CA-8532-2D05CB959537} (MSN Photo Upload Tool)
DPF name:
CLSID name: MSN Photo Upload Tool
Installer: C:WINDOWSDownloaded Program FilesMSNPupld.inf
Codebase: http://groups.msn.com/controls/PhotoUC/MsnPUpld.cab
description:
classification: Legitimate
known filename: MsnPUpld.dll
info link:
info source: Safer Networking Ltd.
Path: C:WINDOWSDownloaded Program Files
Long name: MsnPUpld.dll
Short name:
Date (created): 08/10/2004 16:01:22
Date (last access): 09/07/2008 17:52:46
Date (last write): 08/10/2004 16:01:22
Filesize: 372736
Attributes: archive
MD5: D2ED523BB0FE94F8F492BEFE1C336040
CRC32: C4677625
Version: 10.0.910.0

{5D6F45B3-9043-443D-A792-115447494D24} (UnoCtrl Class)
DPF name:
CLSID name: UnoCtrl Class
Installer: C:WINDOWSDownloaded Program FilesGAME_UNO1.INF
Codebase: http://messenger.zone.msn.com/FR-FR/a-U ... E_UNO1.cab
description:
classification: Legitimate
known filename: unomsnger.dll
info link:
info source: Safer Networking Ltd.
Path: C:WINDOWSDownloaded Program Files
Long name: GAME_UNO1.dll
Short name: GAME_U~1.DLL
Date (created): 13/04/2007 02:14:52
Date (last access): 09/07/2008 17:52:46
Date (last write): 13/04/2007 02:14:52
Filesize: 382344
Attributes: archive
MD5: A9F8AB66D9D05A13843623EE6B92D259
CRC32: C9DFA641
Version: 1.0.1201.1

{67DABFBF-D0AB-41FA-9C46-CC0F21721616} (DivXBrowserPlugin Object)
DPF name:
CLSID name: DivXBrowserPlugin Object
Installer: C:WINDOWSDownloaded Program FilesDivXPlugin.inf
Codebase: http://download.divx.com/player/DivXBrowserPlugin.cab
description:
classification: Legitimate
known filename: npdivx32.dll
info link:
info source: Safer Networking Ltd.
Path: D:DivXDivX Web Player
Long name: npdivx32.dll
Short name:
Date (created): 20/11/2007 21:37:22
Date (last access): 09/07/2008 18:50:06
Date (last write): 20/11/2007 21:37:22
Filesize: 1334576
Attributes: archive
MD5: 2DE8AB3B2452EC57368D9960E49A5A23
CRC32: A2AE7EA8
Version: 1.4.0.207

{6C269571-C6D7-4818-BCA4-32A035E8C884} (Creative Software AutoUpdate)
DPF name:
CLSID name: Creative Software AutoUpdate
Installer: C:WINDOWSDownloaded Program FilesCTSUEng.inf
Codebase: http://www.creative.com/softwareupdate/ ... TSUEng.cab
Path: C:WINDOWSDOWNLO~1
Long name: CTSUEngn.ocx
Short name:
Date (created): 11/06/2008 15:45:56
Date (last access): 09/07/2008 18:50:08
Date (last write): 11/06/2008 15:45:56
Filesize: 643792
Attributes: archive
MD5: 96659FBC9A8B951DDD46C3FF509AE9B1
CRC32: C145AD52
Version: 1.51.1.0

{6E32070A-766D-4EE6-879C-DC1FA91D2FC3} (MUWebControl Class)
DPF name:
CLSID name: MUWebControl Class
Installer: C:WINDOWSDownloaded Program Filesmuweb.inf
Codebase: http://www.update.microsoft.com/microso ... 7968709484
description:
classification: Legitimate
known filename: muweb.dll
info link:
info source: Safer Networking Ltd.
Path: C:WINDOWSsystem32
Long name: muweb.dll
Short name:
Date (created): 30/07/2007 19:18:34
Date (last access): 09/07/2008 18:00:06
Date (last write): 30/07/2007 19:18:34
Filesize: 207736
Attributes: archive
MD5: 8038B166CE79E58E193566150CE26465
CRC32: 9137D395
Version: 7.0.6000.381

{6E5E167B-1566-4316-B27F-0DDAB3484CF7} (Image Uploader Control)
DPF name:
CLSID name: Image Uploader Control
Installer: C:WINDOWSDownloaded Program FilesImageUploader4.inf
Codebase: http://www.photobox.fr/assets/aurigma/I ... oader4.cab
Path: C:WINDOWSDownloaded Program Files
Long name: ImageUploader4.ocx
Short name: IMAGEU~1.OCX
Date (created): 25/09/2007 13:36:54
Date (last access): 09/07/2008 18:50:10
Date (last write): 25/09/2007 13:36:54
Filesize: 2655792
Attributes: archive
MD5: FF638BA1FFE8035FABE71A67C36800E1
CRC32: 19B03DB6
Version: 4.5.54.0

{8AD9C840-044E-11D1-B3E9-00805F499D93} (Java Runtime Environment 1.6.0)
DPF name: Java Runtime Environment 1.6.0
CLSID name: Java Plug-in 1.6.0_05
Installer:
Codebase: http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab
description: Sun Java
classification: Legitimate
known filename: %PROGRAM FILES%JabaSoftJRE*Bin
pjava131.dll
info link:
info source: Patrick M. Kolla
Path: C:Program FilesJavajre1.6.0_05in
Long name: npjpi160_05.dll
Short name: NPJPI1~1.DLL
Date (created): 22/02/2008 02:33:32
Date (last access): 09/07/2008 18:50:10
Date (last write): 22/02/2008 04:25:20
Filesize: 132496
Attributes: archive
MD5: 4FDFB86D78994BD71CBB779A7809E9CD
CRC32: 5A0EB880
Version: 6.0.50.13

{8FFBE65D-2C9C-4669-84BD-5829DC0B603C} ()
DPF name:
CLSID name:
Installer: C:WINDOWSDownloaded Program Fileserma.inf
Codebase: http://fpdownload.macromedia.com/get/fl ... rashim.cab
description:
classification: Open for discussion
known filename:
info link:
info source: Safer Networking Ltd.

{C3F79A2B-B9B4-4A66-B012-3EE46475B072} (MessengerStatsClient Class)
DPF name:
CLSID name: MessengerStatsClient Class
Installer:
Codebase: http://messenger.zone.msn.com/binary/Me ... b56907.cab
description:
classification: Legitimate
known filename: MessengerStatsPAClient.dll
info link:
info source: Safer Networking Ltd.
Path: C:WINDOWSDownloaded Program Files
Long name: MessengerStatsPAClient.dll
Short name: MESSEN~1.DLL
Date (created): 22/02/2007 23:41:12
Date (last access): 09/07/2008 17:52:46
Date (last write): 22/02/2007 23:41:12
Filesize: 304544
Attributes: archive
MD5: 8945CCA5FC4F25168E8B6F401EFAF51F
CRC32: 0F12FD23
Version: 9.5.6907.1

{C45B1500-7B63-47C2-AB25-C28CB46AFDEE} (MediaBar)
DPF name:
CLSID name: MediaBar
Installer: C:WINDOWSDownloaded Program FilesMusicManager.inf
Codebase: http://sib1.od2.com/common/musicmanager ... Plugin.CAB
description:
classification: Legitimate
known filename: MusicManagerPlugin.ocx
info link:
info source: Safer Networking Ltd.
Path: C:WINDOWSDownloaded Program Files
Long name: MusicManagerPlugin.ocx
Short name: MUSICM~1.OCX
Date (created): 25/06/2007 12:53:34
Date (last access): 09/07/2008 18:50:10
Date (last write): 25/06/2007 12:53:34
Filesize: 1099184
Attributes: archive
MD5: 04A65D2170DEC5584C91E7413F400B4E
CRC32: 26643AA0
Version: 11.1.0.1068

{CAFEEFAC-0015-0000-0012-ABCDEFFEDCBA} (Java Runtime Environment 1.5.0)
DPF name: Java Runtime Environment 1.5.0
CLSID name: Java Plug-in 1.5.0_12
Installer:
Codebase: http://java.sun.com/update/1.5.0/jinsta ... s-i586.cab
Path: C:Program FilesJavajre1.5.0_12in
Long name: NPJPI150_12.dll
Short name: NPJPI1~1.DLL
Date (created): 02/05/2007 04:01:22
Date (last access): 09/07/2008 18:50:10
Date (last write): 02/05/2007 04:15:48
Filesize: 75528
Attributes: archive
MD5: 9256073CD6FC98B5F37167AE3E1906E6
CRC32: E62CC94E
Version: 5.0.120.4

{CAFEEFAC-0016-0000-0003-ABCDEFFEDCBA} (Java Runtime Environment 1.6.0)
DPF name: Java Runtime Environment 1.6.0
CLSID name: Java Plug-in 1.6.0_03
Installer:
Codebase: http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab
Path: C:Program FilesJavajre1.6.0_03in
Long name: npjpi160_03.dll
Short name: NPJPI1~1.DLL
Date (created): 24/09/2007 23:31:44
Date (last access): 09/07/2008 18:50:10
Date (last write): 25/09/2007 01:11:34
Filesize: 132496
Attributes: archive
MD5: D6A4682A6FF41832A3F1A7AB9AE08199
CRC32: 9080B537
Version: 6.0.30.5

{CAFEEFAC-0016-0000-0005-ABCDEFFEDCBA} (Java Runtime Environment 1.6.0)
DPF name: Java Runtime Environment 1.6.0
CLSID name: Java Plug-in 1.6.0_05
Installer:
Codebase: http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab
Path: C:Program FilesJavajre1.6.0_05in
Long name: npjpi160_05.dll
Short name: NPJPI1~1.DLL
Date (created): 22/02/2008 02:33:32
Date (last access): 09/07/2008 18:50:10
Date (last write): 22/02/2008 04:25:20
Filesize: 132496
Attributes: archive
MD5: 4FDFB86D78994BD71CBB779A7809E9CD
CRC32: 5A0EB880
Version: 6.0.50.13

{CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} (Java Runtime Environment 1.6.0)
DPF name: Java Runtime Environment 1.6.0
CLSID name: Java Plug-in 1.6.0_05
Installer:
Codebase: http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab
description:
classification: Legitimate
known filename: npjpi150_06.dll
info link:
info source: Safer Networking Ltd.
Path: C:Program FilesJavajre1.6.0_05in
Long name: npjpi160_05.dll
Short name: NPJPI1~1.DLL
Date (created): 22/02/2008 02:33:32
Date (last access): 09/07/2008 18:50:10
Date (last write): 22/02/2008 04:25:20
Filesize: 132496
Attributes: archive
MD5: 4FDFB86D78994BD71CBB779A7809E9CD
CRC32: 5A0EB880
Version: 6.0.50.13

{D0C0F75C-683A-4390-A791-1ACFD5599AB8} (Oberon Flash Game Host)
DPF name:
CLSID name: Oberon Flash Game Host
Installer: C:WINDOWSDownloaded Program FilesOberonGameHost_dbg.inf
Codebase: http://jeuxenligne.orange.fr/Gameshell/ ... meHost.cab
Path: C:WINDOWSDownloaded Program Files
Long name: OberonGameHost.dll
Short name: OBERON~1.DLL
Date (created): 15/06/2007 10:02:06
Date (last access): 09/07/2008 17:52:46
Date (last write): 15/06/2007 10:02:06
Filesize: 632392
Attributes: archive
MD5: 4305F843E38ABB2186D0CD07982EBECD
CRC32: B97C2B72
Version: 1.0.4.3881

{D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object)
DPF name:
CLSID name: Shockwave Flash Object
Installer: C:WINDOWSDownloaded Program Filesswflash.inf
Codebase: http://fpdownload2.macromedia.com/get/s ... wflash.cab
description: Macromedia Shockwave Flash Player
classification: Legitimate
known filename:
info link:
info source: Patrick M. Kolla
Path: C:WINDOWSsystem32MacromedFlash
Long name: Flash9f.ocx
Short name:
Date (created): 25/03/2008 04:32:42
Date (last access): 09/07/2008 18:50:12
Date (last write): 25/03/2008 04:32:42
Filesize: 2991488
Attributes: readonly archive
MD5: 48FDF435B8595604E54125B321924510
CRC32: 12335E29
Version: 9.0.124.0

{D821DC4A-0814-435E-9820-661C543A4679} (CRLDownloadWrapper Class)
DPF name:
CLSID name: CRLDownloadWrapper Class
Installer:
Codebase: http://drmlicense.one.microsoft.com/crl ... crlocx.ocx
Path: C:WINDOWSDownloaded Program Files
Long name: crlocx.ocx
Short name:
Date (created): 18/12/2007 20:04:08
Date (last access): 09/07/2008 18:50:12
Date (last write): 18/12/2007 20:04:08
Filesize: 43760
Attributes: archive
MD5: 83412AE824500F533C22599DCAE43F1A
CRC32: AB100875
Version: 1.0.0.1

{DF780F87-FF2B-4DF8-92D0-73DB16A1543A} (PopCapLoader Object)
DPF name:
CLSID name: PopCapLoader Object
Installer: C:WINDOWSDownloaded Program Filespopcaploader.inf
Codebase: http://files-mjf.jeuxvideo-flash.com/po ... v10_fr.cab
description:
classification: Legitimate
known filename: POPCAPLOADER.DLL
info link:
info source: Safer Networking Ltd.
Path: C:WINDOWSDownloaded Program Files
Long name: popcaploader.dll
Short name: POPCAP~1.DLL
Date (created): 16/08/2007 16:59:14
Date (last access): 09/07/2008 17:52:46
Date (last write): 16/08/2007 16:59:14
Filesize: 263488
Attributes: archive
MD5: D28C65F59E5D6AA8D278B05B4F614BC3
CRC32: F7D51D58
Version: 1.0.0.10

{F5A7706B-B9C0-4C89-A715-7A0C6B05DD48} (Minesweeper Flags Class)
DPF name:
CLSID name: Minesweeper Flags Class
Installer:
Codebase: http://messenger.zone.msn.com/binary/Mi ... b56986.cab
description:
classification: Legitimate
known filename: MineSweeper.dll
info link:
info source: Safer Networking Ltd.
Path: C:WINDOWSDownloaded Program Files
Long name: MineSweeper.dll
Short name: MINESW~1.DLL
Date (created): 28/02/2007 14:21:04
Date (last access): 09/07/2008 17:52:46
Date (last write): 28/02/2007 14:21:04
Filesize: 130472
Attributes: archive
MD5: E661E91B5929632665683222D509D271
CRC32: 63A9B975
Version: 9.5.6986.1

{F6ACF75C-C32C-447B-9BEF-46B766368D29} (Creative Software AutoUpdate Support Package)
DPF name:
CLSID name: Creative Software AutoUpdate Support Package
Installer: C:WINDOWSDownloaded Program FilesCTPID.inf
Codebase: http://www.creative.com/softwareupdate/ ... /CTPID.cab
description:
classification: Legitimate
known filename: CTPID.ocx
info link:
info source: Safer Networking Ltd.
Path: C:WINDOWSDOWNLO~1
Long name: CTPID.ocx
Short name:
Date (created): 23/06/2008 18:05:20
Date (last access): 09/07/2008 18:50:12
Date (last write): 23/06/2008 18:05:20
Filesize: 37616
Attributes: archive
MD5: 7A010197AB42691358A3443B19B8078A
CRC32: 044AB639
Version: 1.0.45.0

{F8C5C0F1-D884-43EB-A5A0-9E1C4A102FA8} (GoPetsWeb Control)
DPF name:
CLSID name: GoPetsWeb Control
Installer: C:WINDOWSDownloaded Program FilesGoPetsWeb.inf
Codebase: https://secure.gopetslive.com/dev/GoPetsWeb.cab
Path: C:WINDOWSDOWNLO~1
Long name: GoPetsWeb.ocx
Short name: GOPETS~1.OCX
Date (created): 29/06/2007 23:34:16
Date (last access): 09/07/2008 18:50:12
Date (last write): 29/06/2007 23:34:16
Filesize: 448024
Attributes: archive
MD5: 67FFC34D78C9D15A3FC95D4BD1BC4B99
CRC32: F5A92F6E
Version: 1.14.0.1

--- Process list ---
PID: 0 ( 0) [System]
PID: 532 ( 4) SystemRootSystem32smss.exe
size: 50688
PID: 580 ( 532) ??C:WINDOWSsystem32csrss.exe
size: 6144
PID: 604 ( 532) ??C:WINDOWSsystem32winlogon.exe
size: 506368
PID: 648 ( 604) C:WINDOWSsystem32services.exe
size: 108544
MD5: 732E0B1ABAACE15D80EC19056B0A2AF9
PID: 660 ( 604) C:WINDOWSsystem32lsass.exe
size: 13312
MD5: 9F3744A5C6F49291A7A685040A013399
PID: 820 ( 648) C:WINDOWSsystem32svchost.exe
size: 14336
MD5: 1BD6C2F707A275CB7C16FD99FE0F31CA
PID: 868 ( 648) C:WINDOWSsystem32svchost.exe
size: 14336
MD5: 1BD6C2F707A275CB7C16FD99FE0F31CA
PID: 980 ( 648) C:WINDOWSSystem32svchost.exe
size: 14336
MD5: 1BD6C2F707A275CB7C16FD99FE0F31CA
PID: 1024 ( 648) C:WINDOWSsystem32svchost.exe
size: 14336
MD5: 1BD6C2F707A275CB7C16FD99FE0F31CA
PID: 1108 ( 648) C:WINDOWSsystem32svchost.exe
size: 14336
MD5: 1BD6C2F707A275CB7C16FD99FE0F31CA
PID: 1144 ( 648) C:WINDOWSsystem32svchost.exe
size: 14336
MD5: 1BD6C2F707A275CB7C16FD99FE0F31CA
PID: 1368 ( 648) C:WINDOWSsystem32spoolsv.exe
size: 57856
MD5: DA81EC57ACD4CDC3D4C51CF3D409AF9F
PID: 1520 ( 648) C:Program FilesAlwil SoftwareAvast4aswUpdSv.exe
size: 17272
MD5: 67AF5593EF8359B56DAD6F289D22494B
PID: 1536 ( 648) C:Program FilesAlwil SoftwareAvast4ashServ.exe
size: 144760
MD5: 373BF09D372A82EA637CA9A6BC8CC8E9
PID: 1560 ( 648) C:WINDOWSsystem32CTsvcCDA.exe
size: 44032
MD5: 3C8B6609712F4FF78E521F6DCFC4032B
PID: 1608 ( 648) C:WINDOWSsystem32
vsvc32.exe
size: 159810
MD5: 0FEBE37DB6650FAA5965C00545009D1D
PID: 1644 ( 648) C:WINDOWSsystem32svchost.exe
size: 14336
MD5: 1BD6C2F707A275CB7C16FD99FE0F31CA
PID: 1792 ( 648) C:WINDOWSsystem32SearchIndexer.exe
size: 300032
MD5: 2EC497AA4B728D1B1A368ACF2E309E8B
PID: 624 ( 648) C:Program FilesAlwil SoftwareAvast4ashMaiSv.exe
size: 247160
MD5: 1E105120FCA89F052081D94D8EDDD522
PID: 780 ( 648) C:Program FilesAlwil SoftwareAvast4ashWebSv.exe
size: 349560
MD5: 0AC0D3338B4E4F2744B648FCC35A8BB3
PID: 1236 ( 648) C:WINDOWSSystem32alg.exe
size: 44544
MD5: 2FE681D10C5FC343DBBC0610B8DD4D24
PID: 864 (1060) C:WINDOWSExplorer.EXE
size: 1037312
MD5: D0288319660EDCFED07C7E74C4EA38A5
PID: 1604 ( 864) C:Program FilesAlwil SoftwareAvast4ashDisp.exe
size: 79224
MD5: 87B63FD1B5EC5CC41589CE7026DB7C5F
PID: 2112 ( 864) C:WINDOWSsystem32ctfmon.exe
size: 15360
MD5: 5584247B568C2E53934873F4B655FE6A
PID: 2164 ( 864) C:Program FilesGoogleGoogleToolbarNotifier1.2.1128.5462GoogleToolbarNotifier.exe
size: 171448
MD5: 0FA44EA8B03ABA3E1D240B5A333D8E6A
PID: 2952 ( 648) C:Program FilesWindows LiveMessengerusnsvc.exe
size: 98328
MD5: 9D19B042A4FD5C02195071EA2FE0C821
PID: 3372 ( 980) C:WINDOWSsystem32wuauclt.exe
size: 53080
MD5: F3E9065EB617A7E3A832A7976BFA021B
PID: 2136 (1912) C:Program FilesSpybot - Search & DestroySpybotSD.exe
size: 5146448
MD5: 2ECA8CDEED7C82F879E766DA92A3561A
PID: 1948 ( 980) C:Program FilesNorton Security ScanNss.exe
size: 591728
MD5: D3F7B6C0E8042B733F44FFF4E31E0700
PID: 3300 (1792) C:WINDOWSsystem32SearchProtocolHost.exe
size: 182784
MD5: 4B0EA20D942AF11584D2D72A8419E3CB
PID: 1656 ( 820) C:Program FilesInternet ExplorerIEXPLORE.EXE
size: 625664
MD5: 232B22817B90AE0AFF2D189E3E3735AC
PID: 3500 ( 820) C:Program FilesFichiers communsMicrosoft SharedWindows LiveWLLoginProxy.exe
size: 118336
MD5: 7FA0AA2F3DABA5BEB2C4AC1EEC054EFA
PID: 2692 (1792) C:WINDOWSsystem32SearchFilterHost.exe
size: 76800
MD5: 0B57A82B223AA3CFDD264D9DB8491D43
PID: 4 ( 0) System

--- Browser start & search pages list ---
Spybot - Search & Destroy browser pages report, 09/07/2008 18:52:12

HKEY_CURRENT_USERSoftwareMicrosoftInternet ExplorerMainLocal Page
C:WINDOWSsystem32lank.htm
HKEY_CURRENT_USERSoftwareMicrosoftInternet ExplorerMainSearch Page
http://www.google.com
HKEY_CURRENT_USERSoftwareMicrosoftInternet ExplorerMainSearch Bar
http://www.google.com/ie
HKEY_CURRENT_USERSoftwareMicrosoftInternet ExplorerMainStart Page
http://orange.fr/
HKEY_LOCAL_MACHINESoftwareMicrosoftInternet ExplorerMainLocal Page
%SystemRoot%system32lank.htm
HKEY_LOCAL_MACHINESoftwareMicrosoftInternet ExplorerMainSearch Page
http://go.microsoft.com/fwlink/?LinkId=54896
HKEY_LOCAL_MACHINESoftwareMicrosoftInternet ExplorerMainStart Page
http://go.microsoft.com/fwlink/?LinkId=69157
HKEY_LOCAL_MACHINESoftwareMicrosoftInternet ExplorerMainDefault_Page_URL
http://go.microsoft.com/fwlink/?LinkId=69157
HKEY_LOCAL_MACHINESoftwareMicrosoftInternet ExplorerMainDefault_Search_URL
http://go.microsoft.com/fwlink/?LinkId=54896
HKEY_LOCAL_MACHINESoftwareMicrosoftInternet ExplorerSearchSearchAssistant
http://ie.search.msn.com/{SUB_RFC1766}/srchasst/srchasst.htm
HKEY_LOCAL_MACHINESoftwareMicrosoftInternet ExplorerSearchCustomizeSearch
http://ie.search.msn.com/{SUB_RFC1766}/srchasst/srchcust.htm

--- Winsock Layered Service Provider list ---

--- Uninstall list ---
(AddressBook)

Adobe Acrobat 4.0 4.0 (Adobe Acrobat 4.0)
version (major): 4
install location: d:
install source: C:Documents and SettingsSibernLocal SettingsTemppft39~tmp
uninstall cmd: C:WINDOWSISUN040C.EXE -f"C:Program FilesFichiers communsAdobeAcrobat 4.0NTUninst.isu" -c"C:Program FilesFichiers communsAdobeAcrobat 4.0NTUninst.dll"
publisher: Adobe Systems, Inc.
help link: http://www.adobe.com/prodindex/acrobat/main.html

Adobe Shockwave Player 11 11 (Adobe Shockwave Player)
version (major): 11
install location: C:WINDOWSsystem32Adobe
uninstall cmd: C:WINDOWSsystem32adobeSHOCKW~1UNWISE.EXE C:WINDOWSsystem32AdobeSHOCKW~1Install.log
publisher: Adobe Systems, Inc.
help link: http://www.adobe.com/fr/support/shockwave

adsl TV (adsl TV)
uninstall cmd: C:Program FilesadslTVUninstal.exe

Astérix aux Jeux Olympiques (Asterix at the Olympic Games)
uninstall cmd: "C:Program FilesAtariAsterix at the Olympic GamesUninstall.exe"
publisher: Atari

AudibleManager 2147311616.2147348480.1342792.1244472 (AudibleManager)
uninstall cmd: C:Program FilesAudibleBinUpgrade.exe /Uninstall
publisher: Audible, Inc.

avast! Antivirus 4.8 (avast!)
version (major): 4
version (minor): 8
install location: C:PROGRA~1ALWILS~1Avast4
install source: C:PROGRA~1ALWILS~1Avast4setup
uninstall cmd: C:Program FilesAlwil SoftwareAvast4aswRunDll.exe "C:Program FilesAlwil SoftwareAvast4Setupsetiface.dll",RunSetup
publisher: Alwil Software
help link: http://www.avast.com

(Branding)

(Connection Manager)

(Creative Audio CD Ripper)
uninstall cmd: "C:Program FilesCreative Installation InformationCD_RIPPER_UNICODE_2Setup.exe" /remove /l0x040c

(Creative Sync Manager (Unicode))
uninstall cmd: "C:Program FilesCreative Installation InformationCREATIVE_SYNC_MANAGER_USetup.exe" /remove /l0x040c

(Creative Video Converter)
uninstall cmd: "C:Program FilesCreative Installation InformationCREATIVE_VIDEO_CONVERTERSetup.exe" /remove /l0x040c

(Creative ZEN (DVP-FL0001))

Delivery (Delivery)
uninstall cmd: "D:Deliveryuninst.exe"

(DirectAnimation)

(DirectDrawEx)

(DXM_Runtime)

F1 2007 pour GTR2 v1.15 (F1 2007 pour GTR2 v1.15)
uninstall cmd: D:Uninstal mod F1 2007 pour GTR2.exe

(Fontcore)

Free Download Manager Archive Pack (Free Download Manager Archive Pack_is1)
uninstall cmd: "C:WINDOWSunins000.exe"
publisher: VicMan Software
help link: http://www.freedownloadmanager.org/

Free Download Manager 2.5 (Free Download Manager_is1)
install date: 20070825
install location: D:Free Download Manager
uninstall cmd: "D:Free Download Managerunins000.exe"
publisher: FreeDownloadManager.ORG
help link: http://www.freedownloadmanager.org/

Free Video Converter V 1.2 (Free Video Converter_is1)
install date: 20080702
install location: C:Program FilesFree Video Converter
uninstall cmd: "C:Program FilesFree Video Converterunins000.exe"
publisher: Koyote Soft
help link: http://www.koyotesoft.com/indexEn.html

GoPets 0.365.0 (GoPets)
version (minor): 365
install location: D:GoPets Ltd
uninstall cmd: "D:GoPets LtdUninstall GoPets.exe"

(ICW)

Microsoft Internationalized Domain Names Mitigation APIs (IDNMitigationAPIs)
install date: 20070824
uninstall cmd: "C:WINDOWS$NtServicePackUninstallIDNMitigationAPIs$spuninstspuninst.exe"
publisher: Microsoft Corporation

(IE40)

(IE4Data)

(IE5BAKEX)

Windows Internet Explorer 7 20061107.210142 (ie7)
install date: 20070824
uninstall cmd: "C:WINDOWSie7spuninstspuninst.exe"
publisher: Microsoft Corporation
help link: http://www.microsoft.com/ie

(IEData)

Correctif Windows XP - KB873339 20041117.092459 (KB873339)
uninstall cmd: C:WINDOWS$NtUninstallKB873339$spuninstspuninst.exe
publisher: Microsoft Corporation
help link: http://support.microsoft.com?kbid=873339

(KB884016)

(KB884267)

(KB885353)

Correctif Windows XP - KB885835 20041027.181713 (KB885835)
uninstall cmd: C:WINDOWS$NtUninstallKB885835$spuninstspuninst.exe
publisher: Microsoft Corporation
help link: http://support.microsoft.com?kbid=885835

Correctif Windows XP - KB885836 20041028.173203 (KB885836)
uninstall cmd: C:WINDOWS$NtUninstallKB885836$spuninstspuninst.exe
publisher: Microsoft Corporation
help link: http://support.microsoft.com?kbid=885836

Correctif Windows XP - KB886185 20041021.090540 (KB886185)
uninstall cmd: C:WINDOWS$NtUninstallKB886185$spuninstspuninst.exe
publisher: Microsoft Corporation
help link: http://support.microsoft.com?kbid=886185

(KB886612)

(KB887078)

Correctif Windows XP - KB887472 20041014.162858 (KB887472)
uninstall cmd: C:WINDOWS$NtUninstallKB887472$spuninstspuninst.exe
publisher: Microsoft Corporation
help link: http://support.microsoft.com?kbid=887472

(KB887626)

Correctif Windows XP - KB888302 20041207.111426 (KB888302)
uninstall cmd: C:WINDOWS$NtUninstallKB888302$spuninstspuninst.exe
publisher: Microsoft Corporation
help link: http://support.microsoft.com?kbid=888302

(KB888656)

(KB889858)

Mise à jour de sécurité pour Windows XP (KB890046) 1 (KB890046)
uninstall cmd: "C:WINDOWS$NtUninstallKB890046$spuninstspuninst.exe"
publisher: Microsoft Corporation
help link: http://support.microsoft.com?kbid=890046

Correctif Windows XP - KB890859 1 (KB890859)
install date: 20070824
uninstall cmd: "C:WINDOWS$NtUninstallKB890859$spuninstspuninst.exe"
publisher: Microsoft Corporation
help link: http://support.microsoft.com?kbid=890859

Windows Media Format SDK Hotfix - KB891122 (KB891122)
uninstall cmd: "C:WINDOWS$NtUninstallKB891122$spuninstspuninst.exe"
publisher: Microsoft Corporation
help link: http://support.microsoft.com?kbid=891122

Correctif Windows XP - KB891781 20050110.165439 (KB891781)
uninstall cmd: C:WINDOWS$NtUninstallKB891781$spuninstspuninst.exe
publisher: Microsoft Corporation
help link: http://support.microsoft.com?kbid=891781

Windows Genuine Advantage Validation Tool (KB892130) (KB892130)
install date: 20070824
publisher: Microsoft Corporation
help link: http://support.microsoft.com?kbid=892130

(KB892313)

(KB893240)

(KB893241)

Mise à jour de sécurité pour Windows XP (KB893756) 1 (KB893756)
install date: 20070824
uninstall cmd: "C:WINDOWS$NtUninstallKB893756$spuninstspuninst.exe"
publisher: Microsoft Corporation
help link: http://support.microsoft.com?kbid=893756

(KB893803)

Windows Installer 3.1 (KB893803) 3.1 (KB893803v2)
uninstall cmd: "C:WINDOWS$MSI31Uninstall_KB893803v2$spuninstspuninst.exe"
publisher: Microsoft Corporation
help link: http://go.microsoft.com/fwlink/?LinkId=42467

Mise à jour pour Windows XP (KB894391) 1 (KB894391)
install date: 20070824
uninstall cmd: "C:WINDOWS$NtUninstallKB894391$spuninstspuninst.exe"
publisher: Microsoft Corporation
help link: http://support.microsoft.com?kbid=894391

(KB895181)

(KB895316)

(KB895572)

Mise à jour de sécurité pour Windows XP (KB896358) 1 (KB896358)
install date: 20070824
uninstall cmd: "C:WINDOWS$NtUninstallKB896358$spuninstspuninst.exe"
publisher: Microsoft Corporation
help link: http://support.microsoft.com?kbid=896358

Mise à jour de sécurité pour Windows XP (KB896423) 1 (KB896423)
install date: 20070824
uninstall cmd: "C:WINDOWS$NtUninstallKB896423$spuninstspuninst.exe"
publisher: Microsoft Corporation
help link: http://support.microsoft.com?kbid=896423

Mise à jour de sécurité pour Windows XP (KB896428) 1 (KB896428)
install date: 20070824
uninstall cmd: "C:WINDOWS$NtUninstallKB896428$spuninstspuninst.exe"
publisher: Microsoft Corporation
help link: http://support.microsoft.com?kbid=896428

(KB897586)

Mise à jour pour Windows XP (KB898461) 1 (KB898461)
install date: 20070824
uninstall cmd: "C:WINDOWS$NtUninstallKB898461$spuninstspuninst.exe"
publisher: Microsoft Corporation
help link: http://support.microsoft.com?kbid=898461

(KB898549)

Mise à jour de sécurité pour Windows XP (KB899587) 1 (KB899587)
install date: 20070824
uninstall cmd: "C:WINDOWS$NtUninstallKB899587$spuninstspuninst.exe"
publisher: Microsoft Corporation
help link: http://support.microsoft.com?kbid=899587

Mise à jour de sécurité pour Windows XP (KB899591) 1 (KB899591)
install date: 20070824
uninstall cmd: "C:WINDOWS$NtUninstallKB899591$spuninstspuninst.exe"
publisher: Microsoft Corporation
help link: http://support.microsoft.com?kbid=899591

(KB900399)

Mise à jour pour Windows XP (KB900485) 2 (KB900485)
install date: 20070824
uninstall cmd: "C:WINDOWS$NtUninstallKB900485$spuninstspuninst.exe"
publisher: Microsoft Corporation
help link: http://support.microsoft.com?kbid=900485

Mise à jour de sécurité pour Windows XP (KB900725) 1 (KB900725)
install date: 20070824
uninstall cmd: "C:WINDOWS$NtUninstallKB900725$spuninstspuninst.exe"
publisher: Microsoft Corporation
help link: http://support.microsoft.com?kbid=900725

Mise à jour de sécurité pour Windows XP (KB901017) 1 (KB901017)
install date: 20070824
uninstall cmd: "C:WINDOWS$NtUninstallKB901017$spuninstspuninst.exe"
publisher: Microsoft Corporation
help link: http://support.microsoft.com?kbid=901017

Mise à jour de sécurité pour Windows XP (KB901214) 1 (KB901214)
install date: 20070824
uninstall cmd: "C:WINDOWS$NtUninstallKB901214$spuninstspuninst.exe"
publisher: Microsoft Corporation
help link: http://support.microsoft.com?kbid=901214

(KB902344)

Mise à jour de sécurité pour Windows XP (KB902400) 1 (KB902400)
install date: 20070824
uninstall cmd: "C:WINDOWS$NtUninstallKB902400$spuninstspuninst.exe"
publisher: Microsoft Corporation
help link: http://support.microsoft.com?kbid=902400

Mise à jour de sécurité pour Windows XP (KB904706) 2 (KB904706)
install date: 20070824
uninstall cmd: "C:WINDOWS$NtUninstallKB904706$spuninstspuninst.exe"
publisher: Microsoft Corporation
help link: http://support.microsoft.com?kbid=904706

Mise à jour pour Windows XP (KB904942) 2 (KB904942)
install date: 20070824
uninstall cmd: "C:WINDOWS$NtUninstallKB904942$spuninstspuninst.exe"
publisher: Microsoft Corporation
help link: http://support.microsoft.com?kbid=904942

Mise à jour de sécurité pour Windows XP (KB905414) 1 (KB905414)
install date: 20070824
uninstall cmd: "C:WINDOWS$NtUninstallKB905414$spuninstspuninst.exe"
publisher: Microsoft Corporation
help link: http://support.microsoft.com?kbid=905414

Mise à jour de sécurité pour Windows XP (KB905749) 1 (KB905749)
install date: 20070824
uninstall cmd: "C:WINDOWS$NtUninstallKB905749$spuninstspuninst.exe"
publisher: Microsoft Corporation
help link: http://support.microsoft.com?kbid=905749

(KB907658)

Mise à jour de sécurité pour Windows XP (KB908519) 1 (KB908519)
install date: 20070824
uninstall cmd: "C:WINDOWS$NtUninstallKB908519$spuninstspuninst.exe"
publisher: Microsoft Corporation
help link: http://support.microsoft.com?kbid=908519

Mise à jour pour Windows XP (KB908531) 2 (KB908531)
install date: 20070824
uninstall cmd: "C:WINDOWS$NtUninstallKB908531$spuninstspuninst.exe"
publisher: Microsoft Corporation
help link: http://support.microsoft.com?kbid=908531

Package de base Microsoft de service de chiffrement pour cartes à puce (KB909520)
uninstall cmd: "C:WINDOWS$NtUninstallbasecsp$spuninstspuninst.exe"
publisher: Microsoft Corporation

Mise à jour pour Windows XP (KB910437) 1 (KB910437)
install date: 20070824
uninstall cmd: "C:WINDOWS$NtUninstallKB910437$spuninstspuninst.exe"
publisher: Microsoft Corporation
help link: http://support.microsoft.com?kbid=910437

Mise à jour pour Windows XP (KB911280) 2 (KB911280)
install date: 20070824
uninstall cmd: "C:WINDOWS$NtUninstallKB911280$spuninstspuninst.exe"
publisher: Microsoft Corporation
help link: http://support.microsoft.com?kbid=911280

Mise à jour de sécurité pour Windows XP (KB911562) 1 (KB911562)
install date: 20070824
uninstall cmd: "C:WINDOWS$NtUninstallKB911562$spuninstspuninst.exe"
publisher: Microsoft Corporation
help link: http://support.microsoft.com?kbid=911562

Mise à jour de sécurité pour Lecteur Windows Media (KB911564) (KB911564)
install date: 20070824
uninstall cmd: "C:WINDOWS$NtUninstallKB911564$spuninstspuninst.exe"
publisher: Microsoft Corporation
help link: http://support.microsoft.com/?kbid=911564

(KB911565)

(KB911854)

Mise à jour de sécurité pour Windows XP (KB

sibern · le 09 Juil 2008 19:11

re

jai fait lanalyse avec votre logiciel norton met jai pa pu copier le raport met en gros le raport il dit quil a 2 virus non reparable avec lanalyseur pourtant psbot corige les probleme bonne soiret a+

sibern · le 09 Juil 2008 19:48

a pardon jai oublier ou etais les 2 virus et bin il son sur exploreur a+

psychocat · le 09 Juil 2008 20:24

salut

c'est "flash player" me semble t'il :lol:

r@in | b0w · le 09 Juil 2008 22:09

Bonjour.

Tu n'as pas du suivre le bon lien:

r@in | b0w a écrit:Suis ce tutorial et postes le rapport généré.

Tu as quoi comme Antivirus?

Quels sont les virus détectés?

A suivre aussi, notre Dossier Nettoyage.

sibern · le 10 Juil 2008 14:16

re le lien que vous mavez doner jai esaiyer de lexecuter met ces conplex jai peur fair des betise met jai re scaner avec spybot ces un detecteur de mouchart que jai etais chercher sur le net et ce martin il a rien trouver et il a 1 semaine il avais trouvais des mouchart hier vous me demander qes que ja com logiciel et bin ces avast un logiciel gratuis jai entendu en dir du bien et avant javais panda il parais que ces le meileur panda il parais la naza lutilise donc le meileur met com il et payant je prefere metre avast il met il et valable ? .autre chose ces les video ne charge pas jai recharget flache plaiyer met sans succe pourtant il me di chargement reusi me dit flache plaiyer donc jai etai sur sur allo cine.com la video charge pas pour voir les bande anonce met sans succe donc pouver maider merci a+

r@in | b0w · le 10 Juil 2008 14:52

Bonjour.

Ce serait très serviable de ta part si tu ralentissais le style SMS, cela facilitera la compréhension.

Pour HiJackThis, je te demande juste de faire une analyse et de nous poster le rapport d'analyse, en aucun cas de prendre une décisions cruciale en faisant une quelconque suppression.

Tu cliques juste sur Do a system scan and save a logfile et tu nous fais un copier-coller du rapport.

Pour les antivirus, ils se valent tous, aucun n'est parfait.
Tu as Avast, continues.
Tu mets en plus un firewall, un anti-adware; anti-spyware & anti-rootkit et ce sera bon.

Si tu n'as pas cela, tu vas voir dans notre logithèque.

sibern · le 10 Juil 2008 14:59

ok je vais esaiyer de lanaliser met jai fait une autre analiise que sur cette page ci jai fait analise et il me dit que la securiter et ok merci bocouip a+

le met le copier coler de lanalyse ci desous

Testez la sécurité de votre ordinateurTest de firewall : scanneur de ports TCP
--------------------------------------------------------------------------------

Félicitation ! Votre sécurité semble optimale !
La totalité des ports TCP testés sont masqués, votre ordinateur ne donne donc aucune réponse aux tests de ports effectués. Votre machine est donc invisible aux yeux de pirates potentiels.

Ports TCP ouverts Aucun port détecté

Ports TCP fermés Aucun port détecté

Ports TCP masqués 21 ftp Utilisé pour le transfert de fichier entre ordinateurs Trojans possibles : Back Construction, Blade Runner, Cattivik FTP Server, CC Invader, Dark FTP, Doly Trojan, Fore, FreddyK, Invisible FTP, Juggernaut 42, Larva, MotIv FTP, Net Administrator, Ramen, RTB 666, Senna Spy FTP server, The Flu, Traitor 21, WebEx, WinCrash

22 ssh Le shell SSH permet de se connecter à un serveur de façon sécurisée Trojans possibles : Adore sshd, Shaft

23 telnet Utilisé pour obtenir un shell distant Trojans possibles : ADM worm, Fire HacKer, My Very Own trojan, RTB 666, Telnet Pro, Tiny Telnet Server - TTS, Truva Atl

25 smtp Utilisé pour le transfert de courrier électronique entre deux hôtes. Si vous n'utilisez pas de serveur de messagerie, il est conseillé de fermer ce port. Trojans possibles : Ajan, Antigen, Barok, BSE, Email Password Sender - EPS, EPS II, Gip, Gris, Happy99, Hpteam mail, Hybris, I love you, Kuang2, Magic Horse, MBT (Mail Bombing Trojan), Moscow Email trojan, Naebi, NewApt worm, ProMail trojan, Shtirlitz, Stealth, Stukach, Tapiras, Terminator, WinPC, WinSpy

79 finger Permet de connaître diverses informations relatives à votre profil Trojans possibles : CDK, Firehotcker

80 http Utilisé pour les services Web. Si vous n'utilisez pas de serveur web, il est conseillé de fermer ce port Trojans possibles : 711 trojan (Seven Eleven), AckCmd, Back End, Back Orifice 2000 Plug-Ins, Cafeini, CGI Backdoor, Code Red, Executor, God Message, God Message 4 Creator, Hooker, IISworm, MTX, NCX, Nimda, Noob, Ramen, Reverse WWW Tunnel Backdoor, RingZero, RTB 666, Seeker, WAN Remote, Web Server CT, WebDownloader

110 pop3 Utilisé par les serveurs de messagerie Internet. Si vous n'utilisez pas de serveur de messagerie, il est conseillé de fermer ce port. Trojans possibles : ProMail trojan

113 auth Utilisé par certains serveurs de messagerie ou de newsgroups (MiRC - Virc...). Des problèmes de performances peuvent survenir si ce port est masqué Trojans possibles : Invisible Identd Deamon, Kazimas

119 nntp Utilisé par les serveurs de news pour la distribution d'articles Usenet Trojans possibles : Happy99

135 N/A Utilisé pour les applications client/server basées sur des systèmes d'exploitation Microsoft Trojans possibles : W32.Blaster.Worm, W32/Lovsan.worm

139 netbios-ssn Utilisé pour le partage de fichiers dans un réseau local Trojans possibles : Chode, God Message worm, Msinit, Netlog, Network, Qaz, Sadmind, SMB Relay

143 imap Utilisé par les serveurs de messagerie Internet pour l'envoi de messages électroniques. Si vous n'utilisez pas de serveur IMAP, il est conseillé de fermer ce port. Trojans possibles : N/A

389 ldap LDAP (Lightweight Directory Access Protocol) : utilisé pour accéder automatiquement à des services d'annuaires en ligne Trojans possibles : N/A

443 https Utilisé pour sécuriser les communications HTTP. Si vous n'utilisez pas de serveur web, il est conseillé de fermer ce port. Ce port est également utilisé par AOL Instant Messenger Trojans possibles : N/A

445 microsoft-ds Utilisé pour le partage des protocoles SMB. Son exploitation peut permettre d'obtenir vos mots de passe Trojans possibles : Lioten, Randon, WORM_DELODER.A, W32/Deloder.A, W32.HLLW.Deloder

1002 N/A Port non standard Trojans possibles : N/A

1024 N/A Port réservé Trojans possibles : Jade, Latinus, NetSpy, Remote Administration Tool - RAT [no 2]

1025 N/A Port non standard Trojans possibles : Fraggle Rock, md5 Backdoor, NetSpy, Remote Storm

1026 N/A Port non standard Trojans possibles : N/A

1027 N/A Port non standard Trojans possibles : ICKiller

1028 N/A Port non standard Trojans possibles : N/A

1029 N/A Port non standard Trojans possibles : InCommand Access, ICQ Nuke 98

1030 N/A Port non standard Trojans possibles : N/A

1720 h323hostcall Port non standard. Peut être utilisé par NetMeeting Trojans possibles : N/A

5000 N/A Utilisé pour communiquer avec tous les périphériques UpnP reliés à votre réseau Trojans possibles : Back Door Setup, BioNet Lite, Blazer5, Bubbel, ICKiller, Ra1d, Sockets des Troie

Temps d'exécution du scan : 25 secondes

Survolez les avec le pointeur de votre souris afin de connaître les trojans susceptible d'utiliser chacun des ports.
Contact - Services [RSS-JS] - Partenaires - Plan du site - Notice légale Copyright © 1999-2008 Zebulon.fr - Optimisation PC - Tous Droits Réservés. Hébergé par OVH - Design : 3doublev
Partenaires : Magazine du stockage - NDFR.net - Matbe.com - Essentiel PC - PC-Tests - Sur-la-Toile - Matériel informatique - Informatruc - Informanews
Comparer les prix - Sécurité informatique - Cours informatique - imprimante

r@in | b0w · le 10 Juil 2008 15:07

Re.

Ecoute, je vais être franc.

Depuis le début, je te demande une chose. Et tu fais tout autre.
Si tu as besoin d'aide, il vaut mieux suivre les conseils et accepter de faire quelques manipulations.

J'attends depuis trois messages un rapport HiJackThis.

Si tu le postes, je te répondrai.
Sinon, je passe la main.

Ps: surtout que sur le rapport donné, il n'y a que deux lignes intéressantes!
Beaucoup d'informations inutiles.

sibern · le 10 Juil 2008 15:08

voilat voilat le resultat de votre logiciel ci desous a+

Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 16:06:19, on 10/07/2008
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.6000.16674)
Boot mode: Normal

Running processes:
C:WINDOWSSystem32smss.exe
C:WINDOWSsystem32winlogon.exe
C:WINDOWSsystem32services.exe
C:WINDOWSsystem32lsass.exe
C:WINDOWSsystem32svchost.exe
C:WINDOWSSystem32svchost.exe
C:WINDOWSsystem32svchost.exe
C:WINDOWSsystem32spoolsv.exe
C:WINDOWSExplorer.EXE
C:PROGRA~1ALWILS~1Avast4ashDisp.exe
C:Program FilesWindows LiveMessengermsnmsgr.exe
C:WINDOWSsystem32ctfmon.exe
C:Program FilesGoogleGoogleToolbarNotifier1.2.1128.5462GoogleToolbarNotifier.exe
C:Program FilesAlwil SoftwareAvast4aswUpdSv.exe
C:Program FilesAlwil SoftwareAvast4ashServ.exe
C:WINDOWSsystem32CTsvcCDA.exe
C:WINDOWSsystem32
vsvc32.exe
C:WINDOWSsystem32svchost.exe
C:WINDOWSsystem32SearchIndexer.exe
C:Program FilesAlwil SoftwareAvast4ashMaiSv.exe
C:Program FilesAlwil SoftwareAvast4ashWebSv.exe
C:Program FilesWindows LiveMessengerusnsvc.exe
D:FREEDO~1fdm.exe
C:Program FilesInternet ExplorerIEXPLORE.EXE
C:Program FilesFichiers communsMicrosoft SharedWindows LiveWLLoginProxy.exe
C:Program FilesOutlook Expressmsimn.exe
C:DownloadsSoftwareHiJackThis(1).exe

R0 - HKCUSoftwareMicrosoftInternet ExplorerMain,Start Page = http://orange.fr/
R1 - HKLMSoftwareMicrosoftInternet ExplorerMain,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLMSoftwareMicrosoftInternet ExplorerMain,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLMSoftwareMicrosoftInternet ExplorerMain,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLMSoftwareMicrosoftInternet ExplorerMain,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R0 - HKCUSoftwareMicrosoftInternet ExplorerToolbar,LinksFolderName = Liens
R3 - URLSearchHook: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - (no file)
R3 - URLSearchHook: SearchSettings Class - {E312764E-7706-43F1-8DAB-FCDD2B1E416D} - C:Program FilesSearch Settingskb127SearchSettings.dll
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:Program FilesFichiers communsAdobeAcrobatActiveXAcroIEHelperShim.dll
O2 - BHO: Spybot-S&D IE Protection - {53707962-6F74-2D53-2644-206D7942484F} - C:PROGRA~1SPYBOT~1SDHelper.dll
O2 - BHO: DealioBHO Class - {6A87B991-A31F-4130-AE72-6D0C294BF082} - C:Program FilesDealiokb127Dealio.dll
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:Program FilesJavajre1.6.0_05inssv.dll
O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)
O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:Program FilesFichiers communsMicrosoft SharedWindows LiveWindowsLiveLogin.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:program filesgooglegoogletoolbar1.dll
O2 - BHO: FDMIECookiesBHO Class - {CC59E0F9-7E43-44FA-9FAA-8377850BF205} - D:Free Download Manageriefdm2.dll
O2 - BHO: SearchSettings Class - {E312764E-7706-43F1-8DAB-FCDD2B1E416D} - C:Program FilesSearch Settingskb127SearchSettings.dll
O3 - Toolbar: Dealio - {E67C74F4-A00A-4F2C-9FEC-FD9DC004A67F} - C:Program FilesDealiokb127Dealio.dll
O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:program filesgooglegoogletoolbar1.dll
O4 - HKLM..Run: [avast!] C:PROGRA~1ALWILS~1Avast4ashDisp.exe
O4 - HKLM..Run: [NvCplDaemon] RUNDLL32.EXE C:WINDOWSsystem32NvCpl.dll,NvStartup
O4 - HKLM..Run: [Adobe Reader Speed Launcher] "C:Program FilesAdobeReader 9.0ReaderReader_sl.exe"
O4 - HKLM..Run: [KernelFaultCheck] %systemroot%system32dumprep 0 -k
O4 - HKCU..Run: [msnmsgr] "C:Program FilesWindows LiveMessengermsnmsgr.exe" /background
O4 - HKCU..Run: [ctfmon.exe] C:WINDOWSsystem32ctfmon.exe
O4 - HKCU..Run: [swg] C:Program FilesGoogleGoogleToolbarNotifier1.2.1128.5462GoogleToolbarNotifier.exe
O4 - HKUSS-1-5-19..Run: [CTFMON.EXE] C:WINDOWSsystem32CTFMON.EXE (User 'SERVICE LOCAL')
O4 - HKUSS-1-5-19..Run: [OrangePlayer] c:program filesorangeplayer orangeOrange Player.exe /systray (User 'SERVICE LOCAL')
O4 - HKUSS-1-5-20..Run: [CTFMON.EXE] C:WINDOWSsystem32CTFMON.EXE (User 'SERVICE RESEAU')
O4 - HKUSS-1-5-18..Run: [CTFMON.EXE] C:WINDOWSsystem32CTFMON.EXE (User 'SYSTEM')
O4 - HKUS.DEFAULT..Run: [CTFMON.EXE] C:WINDOWSsystem32CTFMON.EXE (User 'Default user')
O8 - Extra context menu item: Compare Prices with &Dealio - C:Documents and SettingsSibernApplication DataDealiokb127 esDealioSearch.html
O8 - Extra context menu item: Download all with Free Download Manager - file://D:Free Download Managerdlall.htm
O8 - Extra context menu item: Download selected with Free Download Manager - file://D:Free Download Managerdlselected.htm
O8 - Extra context menu item: Download video with Free Download Manager - file://D:Free Download Managerdlfvideo.htm
O8 - Extra context menu item: Download with Free Download Manager - file://D:Free Download Managerdllink.htm
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:Program FilesJavajre1.6.0_05inssv.dll
O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:Program FilesJavajre1.6.0_05inssv.dll
O9 - Extra button: Ajout Direct - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:Program FilesWindows LiveWriterWriterBrowserExtension.dll
O9 - Extra 'Tools' menuitem: &Ajout Direct dans Windows Live Writer - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:Program FilesWindows LiveWriterWriterBrowserExtension.dll
O9 - Extra button: (no name) - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:PROGRA~1SPYBOT~1SDHelper.dll
O9 - Extra 'Tools' menuitem: Spybot - Search & Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:PROGRA~1SPYBOT~1SDHelper.dll
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:WINDOWSNetwork Diagnosticxpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:WINDOWSNetwork Diagnosticxpnetdiag.exe
O9 - Extra button: Dealio - {E908B145-C847-4e85-B315-07E2E70DECF8} - C:Program FilesDealiokb127Dealio.dll
O9 - Extra 'Tools' menuitem: Dealio - {E908B145-C847-4e85-B315-07E2E70DECF8} - C:Program FilesDealiokb127Dealio.dll
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:Program FilesMessengermsmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:Program FilesMessengermsmsgs.exe
O9 - Extra button: Upload - {FD4E2FF8-973C-4A19-89BD-8E86B3CFCFE1} - D:Free Download ManagerFUMfumiebtn.dll
O16 - DPF: {029FDBA6-3547-11D7-AA4C-0050BF051A00} (Rawflow ICD Client) - http://s.tf1.fr/mmdia/static/rawflow/cl ... awflow.cab
O16 - DPF: {02BF25D5-8C17-4B23-BC80-D3488ABDDC6B} (QuickTime Plugin Control) - http://appldnld.apple.com.edgesuite.net ... plugin.cab
O16 - DPF: {20A60F0D-9AFA-4515-A0FD-83BD84642501} (Checkers Class) - http://messenger.zone.msn.com/binary/ms ... b56986.cab
O16 - DPF: {30528230-99f7-4bb4-88d8-fa1d4f56a2ab} (YInstStarter Class) - C:Program FilesYahoo!Commonyinsthelper.dll
O16 - DPF: {4F1E5B1A-2A80-42CA-8532-2D05CB959537} (MSN Photo Upload Tool) - http://groups.msn.com/controls/PhotoUC/MsnPUpld.cab
O16 - DPF: {5D6F45B3-9043-443D-A792-115447494D24} (UnoCtrl Class) - http://messenger.zone.msn.com/FR-FR/a-U ... E_UNO1.cab
O16 - DPF: {67DABFBF-D0AB-41FA-9C46-CC0F21721616} (DivXBrowserPlugin Object) - http://download.divx.com/player/DivXBrowserPlugin.cab
O16 - DPF: {6C269571-C6D7-4818-BCA4-32A035E8C884} (Creative Software AutoUpdate) - http://www.creative.com/softwareupdate/ ... TSUEng.cab
O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} (MUWebControl Class) - http://www.update.microsoft.com/microso ... 7968709484
O16 - DPF: {6E5E167B-1566-4316-B27F-0DDAB3484CF7} (Image Uploader Control) - http://www.photobox.fr/assets/aurigma/I ... oader4.cab
O16 - DPF: {C3F79A2B-B9B4-4A66-B012-3EE46475B072} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/Me ... b56907.cab
O16 - DPF: {C45B1500-7B63-47C2-AB25-C28CB46AFDEE} (MediaBar) - http://sib1.od2.com/common/musicmanager ... Plugin.CAB
O16 - DPF: {D0C0F75C-683A-4390-A791-1ACFD5599AB8} (Oberon Flash Game Host) - http://jeuxenligne.orange.fr/Gameshell/ ... meHost.cab
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/s ... wflash.cab
O16 - DPF: {D821DC4A-0814-435E-9820-661C543A4679} (CRLDownloadWrapper Class) - http://drmlicense.one.microsoft.com/crl ... crlocx.ocx
O16 - DPF: {DF780F87-FF2B-4DF8-92D0-73DB16A1543A} (PopCapLoader Object) - http://files-mjf.jeuxvideo-flash.com/po ... v10_fr.cab
O16 - DPF: {F5A7706B-B9C0-4C89-A715-7A0C6B05DD48} (Minesweeper Flags Class) - http://messenger.zone.msn.com/binary/Mi ... b56986.cab
O16 - DPF: {F6ACF75C-C32C-447B-9BEF-46B766368D29} (Creative Software AutoUpdate Support Package) - http://www.creative.com/softwareupdate/ ... /CTPID.cab
O16 - DPF: {F8C5C0F1-D884-43EB-A5A0-9E1C4A102FA8} (GoPetsWeb Control) - https://secure.gopetslive.com/dev/GoPetsWeb.cab
O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - ALWIL Software - C:Program FilesAlwil SoftwareAvast4aswUpdSv.exe
O23 - Service: avast! Antivirus - ALWIL Software - C:Program FilesAlwil SoftwareAvast4ashServ.exe
O23 - Service: avast! Mail Scanner - ALWIL Software - C:Program FilesAlwil SoftwareAvast4ashMaiSv.exe
O23 - Service: avast! Web Scanner - ALWIL Software - C:Program FilesAlwil SoftwareAvast4ashWebSv.exe
O23 - Service: Creative Service for CDROM Access - Creative Technology Ltd - C:WINDOWSsystem32CTsvcCDA.exe
O23 - Service: Google Updater Service (gusvc) - Google - C:Program FilesGoogleCommonGoogle UpdaterGoogleUpdaterService.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:Program FilesFichiers communsInstallShieldDriver11Intel 32IDriverT.exe
O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:WINDOWSsystem32
vsvc32.exe
O24 - Desktop Component 0: (no name) - http://cathedrale.chartres.free.fr/image/compagnon.gif
O24 - Desktop Component 1: (no name) - http://upload.wikimedia.org/wikipedia/c ... _paste.jpg

--
End of file - 10892 bytes

sos pour le Flash Player

sos pour le Flash Player

Sujets similaires

Qui est en ligne