VOILA LE RAPPORT
MERCI D AVANCE
--- Search result list ---
Félicitations!: Aucun mouchard n'a été trouvé. ()
--- Spybot - Search & Destroy version: 1.5.2 (build: 20080128) ---
2008-01-28 blindman.exe (1.0.0.7)
2008-01-28 SDDelFile.exe (1.0.2.4)
2008-01-28 SDMain.exe (1.0.0.5)
2007-10-07 SDShred.exe (1.0.1.2)
2008-01-28 SDUpdate.exe (1.0.8.8)
2008-01-28 SDWinSec.exe (1.0.0.11)
2008-01-28 SpybotSD.exe (1.5.2.20)
2008-01-28 TeaTimer.exe (1.5.2.16)
2008-02-26 unins000.exe (51.49.0.0)
2008-01-28 Update.exe (1.4.0.6)
2008-01-28 advcheck.dll (1.5.4.5)
2007-04-02 aports.dll (2.1.0.0)
2007-11-17 DelZip179.dll (1.79.7.4)
2008-01-28 SDFiles.dll (1.5.1.19)
2008-01-28 SDHelper.dll (1.5.0.11)
2008-01-28 Tools.dll (2.1.3.3)
2008-02-20 Includes\Cookies.sbi (*)
2007-12-26 Includes\Dialer.sbi (*)
2008-02-20 Includes\DialerC.sbi (*)
2008-02-20 Includes\HeavyDuty.sbi (*)
2008-02-20 Includes\Hijackers.sbi (*)
2008-02-20 Includes\HijackersC.sbi (*)
2008-02-20 Includes\Keyloggers.sbi (*)
2008-02-20 Includes\KeyloggersC.sbi (*)
2004-11-29 Includes\LSP.sbi (*)
2008-02-20 Includes\Malware.sbi (*)
2008-02-20 Includes\MalwareC.sbi (*)
2008-02-20 Includes\PUPS.sbi (*)
2008-02-20 Includes\PUPSC.sbi (*)
2008-02-20 Includes\Revision.sbi (*)
2008-01-09 Includes\Security.sbi (*)
2008-02-20 Includes\SecurityC.sbi (*)
2008-02-20 Includes\Spybots.sbi (*)
2008-02-20 Includes\SpybotsC.sbi (*)
2007-11-06 Includes\Tracks.uti
2008-02-20 Includes\Trojans.sbi (*)
2008-02-20 Includes\TrojansC.sbi (*)
2007-12-24 Plugins\TCPIPAddress.dll
--- System information ---
Windows XP (Build: 2600) Service Pack 2 (5.1.2600)
/ .NETFramework / 1.1: Microsoft .NET Framework 1.1 Hotfix (KB928366)
/ .NETFramework / 1.1: Microsoft .NET Framework 1.1 Service Pack 1 (KB867460)
/ MSXML4SP2: FIX: ASP stops responding when calling Response.Redirect to another server using msxml4 sp2
/ MSXML4SP2: Security update for MSXML4 SP2 (KB936181)
/ Step By Step Interactive Training / SP2: Mise à jour de sécurité pour Step by Step Interactive Training (KB898458)
/ Step By Step Interactive Training / SP2: Mise à jour de sécurité pour Step by Step Interactive Training (KB923723)
/ Windows / SP1: Microsoft Internationalized Domain Names Mitigation APIs
/ Windows / SP1: Microsoft National Language Support Downlevel APIs
/ Windows Media Player 10: Mise à jour de sécurité pour Lecteur Windows Media 10 (KB917734)
/ Windows Media Player 10: Mise à jour de sécurité pour Lecteur Windows Media 10 (KB936782)
/ Windows Media Player 6.4: Mise à jour de sécurité pour Lecteur Windows Media 6.4 (KB925398)
/ Windows XP: Mise à jour de sécurité pour Windows XP (KB923689)
/ Windows XP: Mise à jour de sécurité pour Windows XP (KB941569)
/ Windows XP / SP0: Mise à jour de sécurité pour Windows Internet Explorer 7 (KB938127)
/ Windows XP / SP0: Mise à jour de sécurité pour Windows Internet Explorer 7 (KB942615)
/ Windows XP / SP0: Mise à jour de sécurité pour Windows Internet Explorer 7 (KB944533)
/ Windows XP / SP0: Correctif pour Windows Internet Explorer 7 (KB947864)
/ Windows XP / SP3: Correctif Windows XP - KB834707
/ Windows XP / SP3: Correctif Windows XP - KB873339
/ Windows XP / SP3: Correctif Windows XP - KB884018
/ Windows XP / SP3: Correctif Windows XP - KB885250
/ Windows XP / SP3: Correctif Windows XP - KB885835
/ Windows XP / SP3: Correctif Windows XP - KB885836
/ Windows XP / SP3: Correctif Windows XP - KB885855
/ Windows XP / SP3: Correctif Windows XP - KB885884
/ Windows XP / SP3: Correctif Windows XP - KB886185
/ Windows XP / SP3: Correctif Windows XP - KB887472
/ Windows XP / SP3: Correctif Windows XP - KB887742
/ Windows XP / SP3: Correctif Windows XP - KB888113
/ Windows XP / SP3: Correctif Windows XP - KB888302
/ Windows XP / SP3: Correctif Windows XP - KB889673
/ Windows XP / SP3: Mise à jour de sécurité pour Windows XP (KB890046)
/ Windows XP / SP3: Correctif Windows XP - KB890175
/ Windows XP / SP3: Correctif Windows XP - KB890859
/ Windows XP / SP3: Correctif Windows XP - KB891781
/ Windows XP / SP3: Mise à jour de sécurité pour Windows XP (KB893066)
/ Windows XP / SP3: Mise à jour de sécurité pour Windows XP (KB893756)
/ Windows XP / SP3: Windows Installer 3.1 (KB893803)
/ Windows XP / SP3: Mise à jour pour Windows XP (KB894391)
/ Windows XP / SP3: Mise à jour de sécurité pour Windows XP (KB896358)
/ Windows XP / SP3: Mise à jour de sécurité pour Windows XP (KB896422)
/ Windows XP / SP3: Mise à jour de sécurité pour Windows XP (KB896423)
/ Windows XP / SP3: Mise à jour de sécurité pour Windows XP (KB896424)
/ Windows XP / SP3: Mise à jour de sécurité pour Windows XP (KB896428)
/ Windows XP / SP3: Mise à jour pour Windows XP (KB898461)
/ Windows XP / SP3: Mise à jour de sécurité pour Windows XP (KB899587)
/ Windows XP / SP3: Mise à jour de sécurité pour Windows XP (KB899591)
/ Windows XP / SP3: Mise à jour pour Windows XP (KB900485)
/ Windows XP / SP3: Mise à jour de sécurité pour Windows XP (KB900725)
/ Windows XP / SP3: Mise à jour de sécurité pour Windows XP (KB901017)
/ Windows XP / SP3: Mise à jour de sécurité pour Windows XP (KB901214)
/ Windows XP / SP3: Mise à jour de sécurité pour Windows XP (KB902400)
/ Windows XP / SP3: Mise à jour de sécurité pour Windows XP (KB904706)
/ Windows XP / SP3: Mise à jour pour Windows XP (KB904942)
/ Windows XP / SP3: Mise à jour de sécurité pour Windows XP (KB905414)
/ Windows XP / SP3: Mise à jour de sécurité pour Windows XP (KB905749)
/ Windows XP / SP3: Mise à jour de sécurité pour Windows XP (KB908519)
/ Windows XP / SP3: Mise à jour pour Windows XP (KB908531)
/ Windows XP / SP3: Mise à jour pour Windows XP (KB910437)
/ Windows XP / SP3: Mise à jour pour Windows XP (KB911280)
/ Windows XP / SP3: Mise à jour de sécurité pour Windows XP (KB911562)
/ Windows XP / SP3: Mise à jour de sécurité pour Windows XP (KB911567)
/ Windows XP / SP3: Mise à jour de sécurité pour Windows XP (KB911927)
/ Windows XP / SP3: Mise à jour de sécurité pour Windows XP (KB912919)
/ Windows XP / SP3: Mise à jour de sécurité pour Windows XP (KB913446)
/ Windows XP / SP3: Mise à jour de sécurité pour Windows XP (KB913580)
/ Windows XP / SP3: Mise à jour de sécurité pour Windows XP (KB914388)
/ Windows XP / SP3: Mise à jour de sécurité pour Windows XP (KB914389)
/ Windows XP / SP3: Correctif pour Windows XP (KB914440)
/ Windows XP / SP3: Hotfix for Windows XP (KB915865)
/ Windows XP / SP3: Mise à jour pour Windows XP (KB916595)
/ Windows XP / SP3: Mise à jour de sécurité pour Windows XP (KB917344)
/ Windows XP / SP3: Mise à jour de sécurité pour Windows XP (KB917422)
/ Windows XP / SP3: Mise à jour de sécurité pour Windows XP (KB917953)
/ Windows XP / SP3: Mise à jour de sécurité pour Windows XP (KB918118)
/ Windows XP / SP3: Mise à jour de sécurité pour Windows XP (KB918439)
/ Windows XP / SP3: Mise à jour de sécurité pour Windows XP (KB919007)
/ Windows XP / SP3: Mise à jour de sécurité pour Windows XP (KB920213)
/ Windows XP / SP3: Mise à jour de sécurité pour Windows XP (KB920214)
/ Windows XP / SP3: Mise à jour de sécurité pour Windows XP (KB920670)
/ Windows XP / SP3: Mise à jour de sécurité pour Windows XP (KB920683)
/ Windows XP / SP3: Mise à jour de sécurité pour Windows XP (KB920685)
/ Windows XP / SP3: Mise à jour pour Windows XP (KB920872)
/ Windows XP / SP3: Mise à jour de sécurité pour Windows XP (KB921398)
/ Windows XP / SP3: Mise à jour de sécurité pour Windows XP (KB921503)
/ Windows XP / SP3: Mise à jour de sécurité pour Windows XP (KB921883)
/ Windows XP / SP3: Mise à jour pour Windows XP (KB922582)
/ Windows XP / SP3: Mise à jour de sécurité pour Windows XP (KB922616)
/ Windows XP / SP3: Mise à jour de sécurité pour Windows XP (KB922819)
/ Windows XP / SP3: Mise à jour de sécurité pour Windows XP (KB923191)
/ Windows XP / SP3: Mise à jour de sécurité pour Windows XP (KB923414)
/ Windows XP / SP3: Mise à jour de sécurité pour Windows XP (KB923694)
/ Windows XP / SP3: Mise à jour de sécurité pour Windows XP (KB923980)
/ Windows XP / SP3: Mise à jour de sécurité pour Windows XP (KB924191)
/ Windows XP / SP3: Mise à jour de sécurité pour Windows XP (KB924270)
/ Windows XP / SP3: Mise à jour de sécurité pour Windows XP (KB924496)
/ Windows XP / SP3: Mise à jour de sécurité pour Windows XP (KB924667)
/ Windows XP / SP3: Mise à jour de sécurité pour Windows XP (KB925454)
/ Windows XP / SP3: Mise à jour de sécurité pour Windows XP (KB925486)
/ Windows XP / SP3: Mise à jour de sécurité pour Windows XP (KB925902)
/ Windows XP / SP3: Mise à jour de sécurité pour Windows XP (KB926255)
/ Windows XP / SP3: Mise à jour de sécurité pour Windows XP (KB926436)
/ Windows XP / SP3: Mise à jour de sécurité pour Windows XP (KB927779)
/ Windows XP / SP3: Mise à jour de sécurité pour Windows XP (KB927802)
/ Windows XP / SP3: Mise à jour pour Windows XP (KB927891)
/ Windows XP / SP3: Mise à jour de sécurité pour Windows XP (KB928090)
/ Windows XP / SP3: Mise à jour de sécurité pour Windows XP (KB928255)
/ Windows XP / SP3: Mise à jour de sécurité pour Windows XP (KB928843)
/ Windows XP / SP3: Mise à jour de sécurité pour Windows XP (KB929123)
/ Windows XP / SP3: Mise à jour pour Windows XP (KB929338)
/ Windows XP / SP3: Mise à jour de sécurité pour Windows XP (KB929969)
/ Windows XP / SP3: Mise à jour de sécurité pour Windows XP (KB930178)
/ Windows XP / SP3: Mise à jour pour Windows XP (KB930916)
/ Windows XP / SP3: Mise à jour de sécurité pour Windows XP (KB931261)
/ Windows XP / SP3: Mise à jour de sécurité pour Windows XP (KB931768)
/ Windows XP / SP3: Mise à jour de sécurité pour Windows XP (KB931784)
/ Windows XP / SP3: Mise à jour pour Windows XP (KB931836)
/ Windows XP / SP3: Mise à jour de sécurité pour Windows XP (KB932168)
/ Windows XP / SP3: Mise à jour pour Windows XP (KB933360)
/ Windows XP / SP3: Mise à jour de sécurité pour Windows XP (KB933566)
/ Windows XP / SP3: Mise à jour de sécurité pour Windows XP (KB933729)
/ Windows XP / SP3: Mise à jour de sécurité pour Windows XP (KB935839)
/ Windows XP / SP3: Mise à jour de sécurité pour Windows XP (KB935840)
/ Windows XP / SP3: Mise à jour de sécurité pour Windows XP (KB936021)
/ Windows XP / SP3: Mise à jour pour Windows XP (KB936357)
/ Windows XP / SP3: Mise à jour de sécurité pour Windows XP (KB937143)
/ Windows XP / SP3: Mise à jour de sécurité pour Windows XP (KB938127)
/ Windows XP / SP3: Mise à jour pour Windows XP (KB938828)
/ Windows XP / SP3: Mise à jour de sécurité pour Windows XP (KB938829)
/ Windows XP / SP3: Mise à jour de sécurité pour Windows XP (KB939653)
/ Windows XP / SP3: Mise à jour de sécurité pour Windows XP (KB941202)
/ Windows XP / SP3: Mise à jour de sécurité pour Windows XP (KB941568)
/ Windows XP / SP3: Mise à jour de sécurité pour Windows XP (KB941644)
/ Windows XP / SP3: Mise à jour de sécurité pour Windows XP (KB941693)
/ Windows XP / SP3: Mise à jour de sécurité pour Windows XP (KB942615)
/ Windows XP / SP3: Mise à jour pour Windows XP (KB942763)
/ Windows XP / SP3: Mise à jour pour Windows XP (KB942840)
/ Windows XP / SP3: Mise à jour de sécurité pour Windows XP (KB943055)
/ Windows XP / SP3: Mise à jour de sécurité pour Windows XP (KB943460)
/ Windows XP / SP3: Mise à jour de sécurité pour Windows XP (KB943485)
/ Windows XP / SP3: Mise à jour de sécurité pour Windows XP (KB944653)
/ Windows XP / SP3: Mise à jour de sécurité pour Windows XP (KB945553)
/ Windows XP / SP3: Mise à jour de sécurité pour Windows XP (KB946026)
/ Windows XP / SP3: Mise à jour pour Windows XP (KB946627)
/ Windows XP / SP3: Mise à jour de sécurité pour Windows XP (KB948590)
/ Windows XP / SP3: Mise à jour de sécurité pour Windows XP (KB948881)
--- Startup entries list ---
Located: HK_LM:Run, AGRSMMSG
command: AGRSMMSG.exe
file: C:\WINDOWS\AGRSMMSG.exe
size: 88363
MD5: 08486B4336D032373B94C4C4687AC380
Located: HK_LM:Run, Apoint
command: C:\Program Files\Apoint2K\Apoint.exe
file: C:\Program Files\Apoint2K\Apoint.exe
size: 192512
MD5: E6899986D6FE0C793B3DF5BAE7D18B40
Located: HK_LM:Run, ATIPTA
command: C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe
file: C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe
size: 339968
MD5: F109CEE3C00A3F620B3A0BC1C3F697D6
Located: HK_LM:Run, AVP
command: "C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 7.0\avp.exe"
file: C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 7.0\avp.exe
size: 218376
MD5: 38BA040617859C0610DDC6FEF9016703
Located: HK_LM:Run, CeEKEY
command: C:\Program Files\TOSHIBA\E-KEY\CeEKey.exe
file: C:\Program Files\TOSHIBA\E-KEY\CeEKey.exe
size: 675840
MD5: E221B4C43E91047158BC1814EE1A46BB
Located: HK_LM:Run, CFSServ.exe
command: CFSServ.exe -NoClient
file:
size: 0
MD5: D41D8CD98F00B204E9800998ECF8427E
Warning: if the file is actually larger than 0 bytes,
the checksum could not be properly calculated!
Located: HK_LM:Run, Device Detector
command: DevDetect.exe -autorun
file:
size: 0
MD5: D41D8CD98F00B204E9800998ECF8427E
Warning: if the file is actually larger than 0 bytes,
the checksum could not be properly calculated!
Located: HK_LM:Run, dla
command: C:\WINDOWS\system32\dla\tfswctrl.exe
file: C:\WINDOWS\system32\dla\tfswctrl.exe
size: 122939
MD5: 5D9919D31D973631BC11EE44F465F10D
Located: HK_LM:Run, EPSON Stylus C82 Series
command: C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\E_S10IC2.EXE /P23 "EPSON Stylus C82 Series" /O6 "USB001" /M "Stylus C82"
file: C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\E_S10IC2.EXE
size: 74752
MD5: 7984D2A1B7A3A691889C53708FE450BF
Located: HK_LM:Run, F-Secure Manager
command: "C:\Program Files\Pack Sécurité\Common\FSM32.EXE" /splash
file: C:\Program Files\Pack Sécurité\Common\FSM32.EXE
size: 184369
MD5: 405430F0895C293F8227DFC1905643A7
Located: HK_LM:Run, F-Secure Startup Wizard
command: "C:\Program Files\Pack Sécurité\FSGUI\FSSW.EXE" /reboot
file: C:\Program Files\Pack Sécurité\FSGUI\FSSW.EXE
size: 724992
MD5: 5BF0B4B31F63507CE57EC17DDD69476E
Located: HK_LM:Run, F-Secure TNB
command: "C:\Program Files\Pack Sécurité\FSGUI\TNBUtil.exe" /CHECKALL /WAITFORSW
file: C:\Program Files\Pack Sécurité\FSGUI\TNBUtil.exe
size: 671744
MD5: 53B539D7C505249B2637532A82D88F37
Located: HK_LM:Run, HWSetup
command: C:\Program Files\TOSHIBA\TOSHIBA Applet\HWSetup.exe hwSetUP
file: C:\Program Files\TOSHIBA\TOSHIBA Applet\HWSetup.exe
size: 28672
MD5: A9701AB3582D15AF6F92B97DD0163AB6
Located: HK_LM:Run, LtMoh
command: C:\Program Files\ltmoh\Ltmoh.exe
file: C:\Program Files\ltmoh\Ltmoh.exe
size: 184320
MD5: C2EDE68251407CCACABF5E48028626BD
Located: HK_LM:Run, NDSTray.exe
command: NDSTray.exe
file:
size: 0
MD5: D41D8CD98F00B204E9800998ECF8427E
Warning: if the file is actually larger than 0 bytes,
the checksum could not be properly calculated!
Located: HK_LM:Run, Option Bib Logo Log
command: C:\Documents and Settings\All Users\Application Data\LICENSE ADMIN OPTION BIB\hope mfcd.exe
file:
size: 0
MD5: D41D8CD98F00B204E9800998ECF8427E
Warning: if the file is actually larger than 0 bytes,
the checksum could not be properly calculated!
Located: HK_LM:Run, PadTouch
command: C:\Program Files\TOSHIBA\Touch and Launch\PadExe.exe
file: C:\Program Files\TOSHIBA\Touch and Launch\PadExe.exe
size: 1077327
MD5: 3E248C34D0D5E9D777D9BC452B421635
Located: HK_LM:Run, SmoothView
command: C:\Program Files\TOSHIBA\Utilitaire de zoom TOSHIBA\SmoothView.exe
file: C:\Program Files\TOSHIBA\Utilitaire de zoom TOSHIBA\SmoothView.exe
size: 118784
MD5: B9955C6AE5D8B50DCF34751DA4BFBEA7
Located: HK_LM:Run, SpybotSnD
command: "C:\Program Files\Spybot - Search & Destroy\SpybotSD.exe"
file: C:\Program Files\Spybot - Search & Destroy\SpybotSD.exe
size: 5146448
MD5: 2ECA8CDEED7C82F879E766DA92A3561A
Located: HK_LM:Run, SVPWUTIL
command: C:\Program Files\Toshiba\Windows Utilities\SVPWUTIL.exe SVPwUTIL
file: C:\Program Files\Toshiba\Windows Utilities\SVPWUTIL.exe
size: 65536
MD5: C22B18467345DD3E70301CC3735140BB
Located: HK_LM:Run, TCtryIOHook
command: TCtrlIOHook.exe
file: C:\WINDOWS\system32\TCtrlIOHook.exe
size: 28672
MD5: E0D6512806169AE042A7B664047E43DF
Located: HK_LM:Run, TFncKy
command: TFncKy.exe
file:
size: 0
MD5: D41D8CD98F00B204E9800998ECF8427E
Warning: if the file is actually larger than 0 bytes,
the checksum could not be properly calculated!
Located: HK_LM:Run, TOSHIBA Accessibility
command: C:\Program Files\TOSHIBA\Accessibility\FnKeyHook.exe
file: C:\Program Files\TOSHIBA\Accessibility\FnKeyHook.exe
size: 24576
MD5: A2E358AB821D769396138D268DAB59FD
Located: HK_LM:Run, TPNF
command: C:\Program Files\TOSHIBA\TouchPad\TPTray.exe
file: C:\Program Files\TOSHIBA\TouchPad\TPTray.exe
size: 53248
MD5: 2E8797EB1A9E2D0697D748E663255091
Located: HK_LM:Run, TPSMain
command: TPSMain.exe
file: C:\WINDOWS\system32\TPSMain.exe
size: 266240
MD5: 454D563D0EAE7F12F203FB508F02FD2C
Located: HK_LM:Run, Tvs
command: C:\Program Files\TOSHIBA\Tvs\TvsTray.exe
file: C:\Program Files\TOSHIBA\Tvs\TvsTray.exe
size: 73728
MD5: FCD532BE0C00E6583E9DFEBA273A8F10
Located: HK_LM:Run, Zooming
command: ZoomingHook.exe
file: C:\WINDOWS\system32\ZoomingHook.exe
size: 24576
MD5: 2CDCE2EF3BFB8148042B92D0929CB382
Located: HK_CU:Run, CTFMON.EXE
where: .DEFAULT...
command: C:\WINDOWS\system32\CTFMON.EXE
file: C:\WINDOWS\system32\CTFMON.EXE
size: 15360
MD5: 5584247B568C2E53934873F4B655FE6A
Located: HK_CU:Run, CTFMON.EXE
where: PE_C_MANON...
command: C:\WINDOWS\system32\ctfmon.exe
file: C:\WINDOWS\system32\ctfmon.exe
size: 15360
MD5: 5584247B568C2E53934873F4B655FE6A
Located: HK_CU:Run, MSMSGS
where: PE_C_MANON...
command: "C:\Program Files\Messenger\msmsgs.exe" /background
file: C:\Program Files\Messenger\msmsgs.exe
size: 1694208
MD5: 74E6E96C6F0E2ECA4EDBB7F7A468F259
Located: HK_CU:Run, msnmsgr
where: PE_C_MANON...
command: "C:\Program Files\MSN Messenger\msnmsgr.exe" /background
file:
size: 0
MD5: D41D8CD98F00B204E9800998ECF8427E
Warning: if the file is actually larger than 0 bytes,
the checksum could not be properly calculated!
Located: HK_CU:Run, TOSCDSPD
where: PE_C_MANON...
command: C:\Program Files\TOSHIBA\TOSCDSPD\toscdspd.exe
file: C:\Program Files\TOSHIBA\TOSCDSPD\toscdspd.exe
size: 65536
MD5: AA9767E0B6C4BCA718DD1CF47DFBC2F6
Located: HK_CU:Run, CTFMON.EXE
where: PE_C_PASCAL...
command: C:\WINDOWS\system32\ctfmon.exe
file: C:\WINDOWS\system32\ctfmon.exe
size: 15360
MD5: 5584247B568C2E53934873F4B655FE6A
Located: HK_CU:Run, msnmsgr
where: PE_C_PASCAL...
command: "C:\Program Files\MSN Messenger\msnmsgr.exe" /background
file:
size: 0
MD5: D41D8CD98F00B204E9800998ECF8427E
Warning: if the file is actually larger than 0 bytes,
the checksum could not be properly calculated!
Located: HK_CU:Run, TOSCDSPD
where: PE_C_PASCAL...
command: C:\Program Files\TOSHIBA\TOSCDSPD\toscdspd.exe
file: C:\Program Files\TOSHIBA\TOSCDSPD\toscdspd.exe
size: 65536
MD5: AA9767E0B6C4BCA718DD1CF47DFBC2F6
Located: HK_CU:Run, CTFMON.EXE
where: PE_C_TANGUY...
command: C:\WINDOWS\system32\ctfmon.exe
file: C:\WINDOWS\system32\ctfmon.exe
size: 15360
MD5: 5584247B568C2E53934873F4B655FE6A
Located: HK_CU:Run, download curb
where: PE_C_TANGUY...
command: C:\DOCUME~1\Tanguy\APPLIC~1\DELETE~1\Jump remote.exe
file:
size: 0
MD5: D41D8CD98F00B204E9800998ECF8427E
Warning: if the file is actually larger than 0 bytes,
the checksum could not be properly calculated!
Located: HK_CU:Run, MSMSGS
where: PE_C_TANGUY...
command: "C:\Program Files\Messenger\msmsgs.exe" /background
file: C:\Program Files\Messenger\msmsgs.exe
size: 1694208
MD5: 74E6E96C6F0E2ECA4EDBB7F7A468F259
Located: HK_CU:Run, msnmsgr
where: PE_C_TANGUY...
command: "C:\Program Files\Windows Live\Messenger\msnmsgr.exe" /background
file:
size: 0
MD5: D41D8CD98F00B204E9800998ECF8427E
Warning: if the file is actually larger than 0 bytes,
the checksum could not be properly calculated!
Located: HK_CU:Run, TOSCDSPD
where: PE_C_TANGUY...
command: C:\Program Files\TOSHIBA\TOSCDSPD\toscdspd.exe
file: C:\Program Files\TOSHIBA\TOSCDSPD\toscdspd.exe
size: 65536
MD5: AA9767E0B6C4BCA718DD1CF47DFBC2F6
Located: HK_CU:Run, CTFMON.EXE
where: S-1-5-19...
command: C:\WINDOWS\system32\CTFMON.EXE
file: C:\WINDOWS\system32\CTFMON.EXE
size: 15360
MD5: 5584247B568C2E53934873F4B655FE6A
Located: HK_CU:Run, CTFMON.EXE
where: S-1-5-20...
command: C:\WINDOWS\system32\CTFMON.EXE
file: C:\WINDOWS\system32\CTFMON.EXE
size: 15360
MD5: 5584247B568C2E53934873F4B655FE6A
Located: HK_CU:Run, ctfmon.exe
where: S-1-5-21-934252417-3523714245-1204104605-1006...
command: C:\WINDOWS\system32\ctfmon.exe
file: C:\WINDOWS\system32\ctfmon.exe
size: 15360
MD5: 5584247B568C2E53934873F4B655FE6A
Located: HK_CU:Run, download curb
where: S-1-5-21-934252417-3523714245-1204104605-1006...
command: C:\DOCUME~1\Laure\APPLIC~1\DELETE~1\Jump remote.exe
file: C:\DOCUME~1\Laure\APPLIC~1\DELETE~1\Jump remote.exe
size: 423424
MD5: 89E46D557BCEA2806A909519AA986649
Located: HK_CU:Run, MsnMsgr
where: S-1-5-21-934252417-3523714245-1204104605-1006...
command: "C:\Program Files\Windows Live\Messenger\MsnMsgr.Exe" /background
file:
size: 0
MD5: D41D8CD98F00B204E9800998ECF8427E
Warning: if the file is actually larger than 0 bytes,
the checksum could not be properly calculated!
Located: HK_CU:Run, SpybotSD TeaTimer
where: S-1-5-21-934252417-3523714245-1204104605-1006...
command: C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe
file: C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe
size: 2097488
MD5: A9A5DB6AC3721BE698B996913693D73F
Located: HK_CU:Run, TOSCDSPD
where: S-1-5-21-934252417-3523714245-1204104605-1006...
command: C:\Program Files\TOSHIBA\TOSCDSPD\toscdspd.exe
file: C:\Program Files\TOSHIBA\TOSCDSPD\toscdspd.exe
size: 65536
MD5: AA9767E0B6C4BCA718DD1CF47DFBC2F6
Located: HK_CU:Run, CTFMON.EXE
where: S-1-5-18...
command: C:\WINDOWS\system32\CTFMON.EXE
file: C:\WINDOWS\system32\CTFMON.EXE
size: 15360
MD5: 5584247B568C2E53934873F4B655FE6A
Located: Démarrage (tous utilisateurs), Microsoft Office.lnk
where: C:\Documents and Settings\All Users\Menu Démarrer\Programmes\Démarrage...
command: C:\Program Files\Microsoft Office\Office10\OSA.EXE
file: C:\Program Files\Microsoft Office\Office10\OSA.EXE
size: 83360
MD5: 5BC65464354A9FD3BEAA28E18839734A
Located: Démarrage (tous utilisateurs), Pack Sécurité.lnk
where: C:\Documents and Settings\All Users\Menu Démarrer\Programmes\Démarrage...
command: C:\Program Files\Pack Sécurité\backweb\361343\Program\fspex.exe
file: C:\Program Files\Pack Sécurité\backweb\361343\Program\fspex.exe
size: 32807
MD5: 803098713F1091A6A3525C10521062B6
Located: Démarrage (utilisateur), La Solution Ciel 2000.lnk
where: C:\Documents and Settings\Laure\Menu Démarrer\Programmes\Démarrage...
command: C:\CIEL\STARTER.EXE
file: C:\CIEL\STARTER.EXE
size: 372736
MD5: 5B060CCA821498E4109075C72AAC2479
Located: WinLogon, AtiExtEvent
command: Ati2evxx.dll
file: Ati2evxx.dll
size: 0
MD5: D41D8CD98F00B204E9800998ECF8427E
Warning: if the file is actually larger than 0 bytes,
the checksum could not be properly calculated!
Located: WinLogon, crypt32chain
command: crypt32.dll
file: crypt32.dll
size: 0
MD5: D41D8CD98F00B204E9800998ECF8427E
Warning: if the file is actually larger than 0 bytes,
the checksum could not be properly calculated!
Located: WinLogon, cryptnet
command: cryptnet.dll
file: cryptnet.dll
size: 0
MD5: D41D8CD98F00B204E9800998ECF8427E
Warning: if the file is actually larger than 0 bytes,
the checksum could not be properly calculated!
Located: WinLogon, cscdll
command: cscdll.dll
file: cscdll.dll
size: 0
MD5: D41D8CD98F00B204E9800998ECF8427E
Warning: if the file is actually larger than 0 bytes,
the checksum could not be properly calculated!
Located: WinLogon, klogon
command: C:\WINDOWS\system32\klogon.dll
file: C:\WINDOWS\system32\klogon.dll
size: 0
MD5: D41D8CD98F00B204E9800998ECF8427E
Warning: if the file is actually larger than 0 bytes,
the checksum could not be properly calculated!
Located: WinLogon, ScCertProp
command: wlnotify.dll
file: wlnotify.dll
size: 0
MD5: D41D8CD98F00B204E9800998ECF8427E
Warning: if the file is actually larger than 0 bytes,
the checksum could not be properly calculated!
Located: WinLogon, Schedule
command: wlnotify.dll
file: wlnotify.dll
size: 0
MD5: D41D8CD98F00B204E9800998ECF8427E
Warning: if the file is actually larger than 0 bytes,
the checksum could not be properly calculated!
Located: WinLogon, sclgntfy
command: sclgntfy.dll
file: sclgntfy.dll
size: 0
MD5: D41D8CD98F00B204E9800998ECF8427E
Warning: if the file is actually larger than 0 bytes,
the checksum could not be properly calculated!
Located: WinLogon, SensLogn
command: WlNotify.dll
file: WlNotify.dll
size: 0
MD5: D41D8CD98F00B204E9800998ECF8427E
Warning: if the file is actually larger than 0 bytes,
the checksum could not be properly calculated!
Located: WinLogon, termsrv
command: wlnotify.dll
file: wlnotify.dll
size: 0
MD5: D41D8CD98F00B204E9800998ECF8427E
Warning: if the file is actually larger than 0 bytes,
the checksum could not be properly calculated!
Located: WinLogon, WgaLogon
command: WgaLogon.dll
file: WgaLogon.dll
size: 0
MD5: D41D8CD98F00B204E9800998ECF8427E
Warning: if the file is actually larger than 0 bytes,
the checksum could not be properly calculated!
Located: WinLogon, wlballoon
command: wlnotify.dll
file: wlnotify.dll
size: 0
MD5: D41D8CD98F00B204E9800998ECF8427E
Warning: if the file is actually larger than 0 bytes,
the checksum could not be properly calculated!
--- Browser helper object list ---
{06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} (AcroIEHlprObj Class)
location: HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\
BHO name:
CLSID name: AcroIEHlprObj Class
description: Adobe Acrobat reader
classification: Legitimate
known filename: AcroIEhelper.ocx<br>AcroIEhelper.dll
info link:
http://www.adobe.com/products/acrobat/readstep2.html
info source: TonyKlein
Path: C:\Program Files\Adobe\Acrobat 6.0\Reader\ActiveX\
Long name: AcroIEHelper.dll
Short name: ACROIE~1.DLL
Date (created): 03/11/2003 15:17:44
Date (last access): 15/04/2008 21:21:00
Date (last write): 03/11/2003 15:17:44
Filesize: 54248
Attributes: archive
MD5: FC7850324464E4D19A24A03D882B5CC4
CRC32: 452E8571
Version: 6.0.1.1091
{53707962-6F74-2D53-2644-206D7942484F} (Spybot-S&D IE Protection)
location: HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\
BHO name:
CLSID name: Spybot-S&D IE Protection
description: Spybot-S&D IE Browser plugin
classification: Legitimate
known filename: SDhelper.dll
info link:
http://spybot.eon.net.au/
info source: Patrick M. Kolla
Path: C:\PROGRA~1\SPYBOT~1\
Long name: SDHelper.dll
Short name:
Date (created): 26/02/2008 16:20:54
Date (last access): 15/04/2008 21:18:44
Date (last write): 28/01/2008 12:43:28
Filesize: 1554256
Attributes: archive
MD5: 5248E02EFBCB64D328647CD00E384B85
CRC32: C1B426A9
Version: 1.5.0.11
{5CA3D70E-1895-11CF-8E15-001234567890} (DriveLetterAccess)
location: HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\
BHO name:
CLSID name: DriveLetterAccess
description: Hewlett-Packard's DLA software
classification: Unknown
known filename: tfswshx.dll
info link:
info source: TonyKlein
Path: C:\WINDOWS\system32\dla\
Long name: tfswshx.dll
Short name:
Date (created): 17/03/2005 13:52:04
Date (last access): 15/04/2008 20:17:28
Date (last write): 14/01/2005 02:05:00
Filesize: 118842
Attributes: archive
MD5: 0AF9A438E9B87C2128F769C539ECBFA1
CRC32: 65B60E2F
Version: 1.4.8.0
{9030D464-4C02-4ABF-8ECC-5164760863C6} (Programme d'aide de l'Assistant de connexion Windows Live)
location: HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\
BHO name:
CLSID name: Programme d'aide de l'Assistant de connexion Windows Live
Path: C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\
Long name: WindowsLiveLogin.dll
Short name: WINDOW~1.DLL
Date (created): 22/06/2007 16:35:20
Date (last access): 15/04/2008 20:17:28
Date (last write): 22/06/2007 16:35:20
Filesize: 329104
Attributes: archive
MD5: 0EA66723D82D8B97380D816BD39EC705
CRC32: 26D38ECF
Version: 4.200.514.2
--- ActiveX list ---
{8E0D4DE5-3180-4024-A327-4DFAD1796A8D} (MessengerStatsClient Class)
DPF name:
CLSID name: MessengerStatsClient Class
Installer:
Codebase:
http://messenger.zone.msn.com/binary/MessengerStatsClient.cab31267.cab
description:
classification: Legitimate
known filename: messengerstatsclient.dll
info link:
info source: Safer Networking Ltd.
Path: C:\WINDOWS\Downloaded Program Files\
Long name: messengerstatsclient.dll
Short name: MESSEN~1.DLL
Date (created): 29/05/2003 16:00:20
Date (last access): 15/04/2008 20:22:42
Date (last write): 29/05/2003 16:00:20
Filesize: 160864
Attributes: archive
MD5: B069B555A00AA026F657AA4FD13AE154
CRC32: 89BB01E1
Version: 7.1.9502.1
{CAFEEFAC-0015-0000-0000-ABCDEFFEDCBA} (Java Runtime Environment 1.5.0)
DPF name: Java Runtime Environment 1.5.0
CLSID name: Java Plug-in 1.5.0
Installer:
Codebase:
http://java.sun.com/update/1.5.0/jinstall-1_5_0-windows-i586.cab
description:
classification: Legitimate
known filename: NPJPI150.dll
info link:
info source: Safer Networking Ltd.
Path: C:\Program Files\Java\jre1.5.0\bin\
Long name: NPJPI150.dll
Short name:
Date (created): 17/03/2005 09:30:16
Date (last access): 15/04/2008 17:06:36
Date (last write): 17/03/2005 09:30:16
Filesize: 69740
Attributes: archive
MD5: D25BB4762A876A3DBF6F2BAA36A179FA
CRC32: 9367234B
Version: 1.5.0.0
{D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object)
DPF name:
CLSID name: Shockwave Flash Object
Installer: C:\WINDOWS\Downloaded Program Files\swflash.inf
Codebase:
http://download.macromedia.com/pub/shockwave/cabs/flash/swflash.cab
description: Macromedia Shockwave Flash Player
classification: Legitimate
known filename:
info link:
info source: Patrick M. Kolla
Path: C:\WINDOWS\system32\Macromed\Flash\
Long name: Flash9e.ocx
Short name:
Date (created): 21/11/2007 02:04:14
Date (last access): 15/04/2008 21:21:02
Date (last write): 21/11/2007 02:04:14
Filesize: 2987392
Attributes: readonly archive
MD5: D3C50535C26190FEAD7785A03499C0AC
CRC32: A77C3E92
Version: 9.0.115.0
--- Process list ---
PID: 0 ( 0) [System]
PID: 1100 ( 4) \SystemRoot\System32\smss.exe
size: 50688
PID: 1148 (1100) \??\C:\WINDOWS\system32\csrss.exe
size: 6144
PID: 1188 (1100) \??\C:\WINDOWS\system32\winlogon.exe
size: 506368
PID: 1236 (1188) C:\WINDOWS\system32\services.exe
size: 108544
MD5: 732E0B1ABAACE15D80EC19056B0A2AF9
PID: 1248 (1188) C:\WINDOWS\system32\lsass.exe
size: 13312
MD5: 9F3744A5C6F49291A7A685040A013399
PID: 1412 (1236) C:\WINDOWS\system32\Ati2evxx.exe
size: 352256
MD5: D6C058E35B19F2999966E85433AFD760
PID: 1436 (1236) C:\WINDOWS\system32\svchost.exe
size: 14336
MD5: 1BD6C2F707A275CB7C16FD99FE0F31CA
PID: 1524 (1236) C:\WINDOWS\system32\svchost.exe
size: 14336
MD5: 1BD6C2F707A275CB7C16FD99FE0F31CA
PID: 1592 (1236) C:\WINDOWS\System32\svchost.exe
size: 14336
MD5: 1BD6C2F707A275CB7C16FD99FE0F31CA
PID: 1688 (1236) C:\WINDOWS\system32\svchost.exe
size: 14336
MD5: 1BD6C2F707A275CB7C16FD99FE0F31CA
PID: 1892 (1236) C:\WINDOWS\system32\svchost.exe
size: 14336
MD5: 1BD6C2F707A275CB7C16FD99FE0F31CA
PID: 388 (1236) C:\WINDOWS\system32\spoolsv.exe
size: 57856
MD5: DA81EC57ACD4CDC3D4C51CF3D409AF9F
PID: 548 (1236) C:\Program Files\Fichiers communs\EPSON\EBAPI\eEBSVC.exe
size: 77824
MD5: CD64CE62BE47DF0E9A459FD9002221FE
PID: 732 (1236) C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 7.0\avp.exe
size: 218376
MD5: 38BA040617859C0610DDC6FEF9016703
PID: 744 (1236) C:\PROGRA~1\PACKSC~1\backweb\361343\Program\SERVIC~1.EXE
size: 32807
MD5: 803098713F1091A6A3525C10521062B6
PID: 764 (1236) C:\Program Files\TOSHIBA\ConfigFree\CFSvcs.exe
size: 36864
MD5: 98D65C9B0F4A28300E0F5FDCB3A4874C
PID: 812 (1236) C:\Program Files\Fichiers communs\EPSON\EBAPI\SAgent2.exe
size: 94208
MD5: 12CDB5DC7774298223099D6E41ED5CE7
PID: 848 (1236) C:\Program Files\Pack Sécurité\backweb\361343\program\fsbwsys.exe
size: 278581
MD5: 86C2EB90DCB3281E5D26EC2E621003E5
PID: 1120 (1236) C:\Program Files\Pack Sécurité\Common\FSMA32.EXE
size: 106546
MD5: 7B85F84565A32B51411491061CAEB618
PID: 1464 (1120) C:\Program Files\Pack Sécurité\Common\FSMB32.EXE
size: 229426
MD5: 2A4B63C7D15D65CE5609E82B4D6A9FED
PID: 1448 (1236) C:\WINDOWS\system32\svchost.exe
size: 14336
MD5: 1BD6C2F707A275CB7C16FD99FE0F31CA
PID: 1680 (1236) C:\WINDOWS\system32\wdfmgr.exe
size: 38912
MD5: C81B8635DEE0D3EF5F64B3DD643023A5
PID: 220 (1120) C:\Program Files\Pack Sécurité\Common\FCH32.EXE
size: 127025
MD5: 0939282895C62BDFFCFE3825142C2DAC
PID: 1024 (1120) C:\Program Files\Pack Sécurité\Common\FAMEH32.EXE
size: 335923
MD5: 945B79B5EDA1885A971AEA90449A53F4
PID: 1068 (1120) C:\Program Files\Pack Sécurité\FSPC\fspc.exe
size: 450560
MD5: 25CACEE34BFF048D63D1AD3BF66D4476
PID: 3312 (1236) C:\WINDOWS\System32\alg.exe
size: 44544
MD5: 2FE681D10C5FC343DBBC0610B8DD4D24
PID: 3940 (1236) C:\WINDOWS\System32\svchost.exe
size: 14336
MD5: 1BD6C2F707A275CB7C16FD99FE0F31CA
PID: 2292 (1188) C:\WINDOWS\system32\Ati2evxx.exe
size: 352256
MD5: D6C058E35B19F2999966E85433AFD760
PID: 2536 (2328) C:\WINDOWS\Explorer.EXE
size: 1037312
MD5: D0288319660EDCFED07C7E74C4EA38A5
PID: 2936 (2536) C:\WINDOWS\system32\ZoomingHook.exe
size: 24576
MD5: 2CDCE2EF3BFB8148042B92D0929CB382
PID: 2960 (2536) C:\Program Files\TOSHIBA\Tvs\TvsTray.exe
size: 73728
MD5: FCD532BE0C00E6583E9DFEBA273A8F10
PID: 3108 (2536) C:\WINDOWS\system32\TPSMain.exe
size: 266240
MD5: 454D563D0EAE7F12F203FB508F02FD2C
PID: 3124 (2536) C:\Program Files\TOSHIBA\TouchPad\TPTray.exe
size: 53248
MD5: 2E8797EB1A9E2D0697D748E663255091
PID: 3152 (2536) C:\Program Files\TOSHIBA\Accessibility\FnKeyHook.exe
size: 24576
MD5: A2E358AB821D769396138D268DAB59FD
PID: 3212 (2536) C:\Program Files\TOSHIBA\Commandes TOSHIBA\TFncKy.exe
size: 118784
MD5: FA4A0ED307DDB4F0815FF140D7CAED80
PID: 3064 (2536) C:\WINDOWS\system32\TCtrlIOHook.exe
size: 28672
MD5: E0D6512806169AE042A7B664047E43DF
PID: 3428 (2536) C:\Program Files\TOSHIBA\Utilitaire de zoom TOSHIBA\SmoothView.exe
size: 118784
MD5: B9955C6AE5D8B50DCF34751DA4BFBEA7
PID: 3436 (2536) C:\Program Files\TOSHIBA\Touch and Launch\PadExe.exe
size: 1077327
MD5: 3E248C34D0D5E9D777D9BC452B421635
PID: 3456 (2536) C:\Program Files\TOSHIBA\ConfigFree\NDSTray.exe
size: 933888
MD5: BBE1249C873C9676EEA0FF2B79A2FEC8
PID: 3464 (2536) C:\Program Files\ltmoh\Ltmoh.exe
size: 184320
MD5: C2EDE68251407CCACABF5E48028626BD
PID: 3492 (2536) C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\E_S10IC2.EXE
size: 74752
MD5: 7984D2A1B7A3A691889C53708FE450BF
PID: 3500 (2536) C:\WINDOWS\system32\dla\tfswctrl.exe
size: 122939
MD5: 5D9919D31D973631BC11EE44F465F10D
PID: 3560 (2536) C:\Program Files\TOSHIBA\ConfigFree\CFSServ.exe
size: 548864
MD5: DE4C1A4E8FABA4D0B7059EF7B9BAE11D
PID: 3588 (2536) C:\Program Files\TOSHIBA\E-KEY\CeEKey.exe
size: 675840
MD5: E221B4C43E91047158BC1814EE1A46BB
PID: 3596 (2536) C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe
size: 339968
MD5: F109CEE3C00A3F620B3A0BC1C3F697D6
PID: 3604 (2536) C:\Program Files\Apoint2K\Apoint.exe
size: 192512
MD5: E6899986D6FE0C793B3DF5BAE7D18B40
PID: 3632 (2536) C:\WINDOWS\AGRSMMSG.exe
size: 88363
MD5: 08486B4336D032373B94C4C4687AC380
PID: 3664 (2536) C:\Program Files\Pack Sécurité\Common\FSM32.EXE
size: 184369
MD5: 405430F0895C293F8227DFC1905643A7
PID: 3792 (2536) C:\Program Files\Spybot - Search & Destroy\SpybotSD.exe
size: 5146448
MD5: 2ECA8CDEED7C82F879E766DA92A3561A
PID: 3872 (3108) C:\WINDOWS\system32\TPSBattM.exe
size: 40960
MD5: 52BEF4634BE1BC8B64805E93E8EB22FA
PID: 3924 (2536) C:\Program Files\Fichiers communs\ACD Systems\FR\DevDetect.exe
size: 288296
MD5: 9C8ACCB9AA289995EF17D88E5C7BB4A4
PID: 4028 (2536) C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 7.0\avp.exe
size: 218376
MD5: 38BA040617859C0610DDC6FEF9016703
PID: 312 (4040) C:\Program Files\Apoint2K\Apntex.exe
size: 45056
MD5: CCA1B81492B40890E44B2B20A780EE1F
PID: 324 (2536) C:\WINDOWS\system32\ctfmon.exe
size: 15360
MD5: 5584247B568C2E53934873F4B655FE6A
PID: 896 (2536) C:\Program Files\TOSHIBA\TOSCDSPD\toscdspd.exe
size: 65536
MD5: AA9767E0B6C4BCA718DD1CF47DFBC2F6
PID: 2572 (2536) C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe
size: 2097488
MD5: A9A5DB6AC3721BE698B996913693D73F
PID: 2700 (3664) C:\Program Files\Pack Sécurité\FSGUI\fsguidll.exe
size: 421888
MD5: 36C692A47005B8674282F734ECEE8A00
PID: 2768 (1788) C:\Program Files\Internet Explorer\IEXPLORE.EXE
size: 625664
MD5: 2D0E5592AB5A46C27DAF7CCAFF4F5B59
PID: 3220 (2536) C:\Program Files\Pack Sécurité\backweb\361343\Program\fspex.exe
size: 32807
MD5: 803098713F1091A6A3525C10521062B6
PID: 4040 (1436) C:\Program Files\Messenger\msmsgs.exe
size: 1694208
MD5: 74E6E96C6F0E2ECA4EDBB7F7A468F259
PID: 4 ( 0) System
PID: 2052 (2880) C:\Program Files\Internet Explorer\iexplore.exe
size: 625664
MD5: 2D0E5592AB5A46C27DAF7CCAFF4F5B59
PID: 2592 (3528) C:\Program Files\Internet Explorer\iexplore.exe
size: 625664
MD5: 2D0E5592AB5A46C27DAF7CCAFF4F5B59
PID: 3400 (4072) C:\Program Files\Internet Explorer\iexplore.exe
size: 625664
MD5: 2D0E5592AB5A46C27DAF7CCAFF4F5B59
--- Browser start & search pages list ---
Spybot - Search & Destroy browser pages report, 15/04/2008 21:22:06
HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main\Local Page
C:\WINDOWS\system32\blank.htm
HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main\Search Page
http://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main\Search Bar
http://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main\Start Page
http://go.microsoft.com/fwlink/?LinkId=69157
HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Search\SearchAssistant
http://ie.search.msn.com/{SUB_RFC1766}/srchasst/srchasst.htm
HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Search\CustomizeSearch
http://ie.search.msn.com/{SUB_RFC1766}/srchasst/srchcust.htm
HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\SearchUrl\@
http://home.microsoft.com/access/autosearch.asp?p=%s
HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Main\Local Page
%SystemRoot%\system32\blank.htm
HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Main\Search Page
http://go.microsoft.com/fwlink/?LinkId=54896
HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Main\Start Page
http://go.microsoft.com/fwlink/?LinkId=69157
HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Main\Default_Page_URL
http://go.microsoft.com/fwlink/?LinkId=69157
HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Main\Default_Search_URL
http://go.microsoft.com/fwlink/?LinkId=54896
HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Search\SearchAssistant
http://recherche.neuf.fr/ie/default.html
HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Search\CustomizeSearch
http://ie.search.msn.com/{SUB_RFC1766}/srchasst/srchcust.htm
--- Winsock Layered Service Provider list ---
Protocol 0: F-Secure Protocol Scanner [MSAFD Irda [IrDA]]
GUID: {5F267BA1-8F48-469A-AEC3-AF8EFAF7C5E5}
Filename: C:\Program Files\Pack Sécurité\FSPS\program\FSLSP.DLL
Protocol 1: F-Secure Protocol Scanner [MSAFD Tcpip [TCP/IP]]
GUID: {8EAABFD0-4E64-433D-84F6-98E8A7120087}
Filename: C:\Program Files\Pack Sécurité\FSPS\program\FSLSP.DLL
Protocol 2: F-Secure Protocol Scanner [MSAFD Tcpip [UDP/IP]]
GUID: {FC235B13-FF9D-45AD-B5D7-316AB29FE158}
Filename: C:\Program Files\Pack Sécurité\FSPS\program\FSLSP.DLL
Protocol 3: F-Secure Protocol Scanner [MSAFD Tcpip [RAW/IP]]
GUID: {2896AAD1-A064-4734-A748-B1FEBFB605FE}
Filename: C:\Program Files\Pack Sécurité\FSPS\program\FSLSP.DLL
Protocol 4: F-Secure Protocol Scanner [MSAFD NetBIOS [\Device\NetBT_Tcpip_{FE5F6A24-BA11-4319-A719-89DD0968F3FB}] SEQPACKET 10]
GUID: {753740A4-82EF-4E05-9F99-A3DB7BB181BE}
Filename: C:\Program Files\Pack Sécurité\FSPS\program\FSLSP.DLL
Protocol 5: F-Secure Protocol Scanner [MSAFD NetBIOS [\Device\NetBT_Tcpip_{FE5F6A24-BA11-4319-A719-89DD0968F3FB}] DATAGRAM 10]
GUID: {023D116A-1D70-4E01-9672-E9BC1CD54089}
Filename: C:\Program Files\Pack Sécurité\FSPS\program\FSLSP.DLL
Protocol 6: F-Secure Protocol Scanner [MSAFD NetBIOS [\Device\NetBT_Tcpip_{2B956619-0F52-4AC9-8E5D-2F06F59B0CDA}] SEQPACKET 9]
GUID: {F1FA2B36-C4D1-4FA0-94CC-A1D6061CDEA9}
Filename: C:\Program Files\Pack Sécurité\FSPS\program\FSLSP.DLL
Protocol 7: F-Secure Protocol Scanner [MSAFD NetBIOS [\Device\NetBT_Tcpip_{2B956619-0F52-4AC9-8E5D-2F06F59B0CDA}] DATAGRAM 9]
GUID: {F3868456-D53E-4C77-BBD2-A2153BE84979}
Filename: C:\Program Files\Pack Sécurité\FSPS\program\FSLSP.DLL
Protocol 8: F-Secure Protocol Scanner [MSAFD NetBIOS [\Device\NetBT_Tcpip_{14BC4A04-7B5B-466F-BA0C-3631311A69C7}] SEQPACKET 8]
GUID: {BA7CBA34-8FAA-4CA5-B892-F9447EFC5924}
Filename: C:\Program Files\Pack Sécurité\FSPS\program\FSLSP.DLL
Protocol 9: F-Secure Protocol Scanner [MSAFD NetBIOS [\Device\NetBT_Tcpip_{14BC4A04-7B5B-466F-BA0C-3631311A69C7}] DATAGRAM 8]
GUID: {00021CAB-705E-4B02-8BE0-E0CB41B9B35D}
Filename: C:\Program Files\Pack Sécurité\FSPS\program\FSLSP.DLL
Protocol 10: F-Secure Protocol Scanner [MSAFD NetBIOS [\Device\NetBT_Tcpip_{A08C4508-40C1-42A0-AFA4-0D80A0B7B9A1}] SEQPACKET 5]
GUID: {5A9F0646-4ACE-493C-A626-EF7DC4F00345}
Filename: C:\Program Files\Pack Sécurité\FSPS\program\FSLSP.DLL
Protocol 11: F-Secure Protocol Scanner [MSAFD NetBIOS [\Device\NetBT_Tcpip_{A08C4508-40C1-42A0-AFA4-0D80A0B7B9A1}] DATAGRAM 5]
GUID: {8BA22E2B-2DC2-4F4F-A9DB-43B849883F84}
Filename: C:\Program Files\Pack Sécurité\FSPS\program\FSLSP.DLL
Protocol 12: F-Secure Protocol Scanner [MSAFD NetBIOS [\Device\NetBT_Tcpip_{3906E0AB-8B91-4A55-A966-193DF6BAEB86}] SEQPACKET 1]
GUID: {80B075A1-201D-4E83-94E6-8EAD62F9309B}
Filename: C:\Program Files\Pack Sécurité\FSPS\program\FSLSP.DLL
Protocol 13: F-Secure Protocol Scanner [MSAFD NetBIOS [\Device\NetBT_Tcpip_{3906E0AB-8B91-4A55-A966-193DF6BAEB86}] DATAGRAM 1]
GUID: {2DAD313F-B5EC-40F8-9042-3C14297C51B3}
Filename: C:\Program Files\Pack Sécurité\FSPS\program\FSLSP.DLL
Protocol 14: F-Secure Protocol Scanner [MSAFD NetBIOS [\Device\NetBT_Tcpip_{25CFA077-6DFD-4E8B-9A40-B2FC82CDC33B}] SEQPACKET 0]
GUID: {FD040EB6-EE2C-4CC6-AEB4-31FF3EE804B6}
Filename: C:\Program Files\Pack Sécurité\FSPS\program\FSLSP.DLL
Protocol 15: F-Secure Protocol Scanner [MSAFD NetBIOS [\Device\NetBT_Tcpip_{25CFA077-6DFD-4E8B-9A40-B2FC82CDC33B}] DATAGRAM 0]
GUID: {4A83FEBF-9AF5-4B50-BEA4-3DEE5E855DD7}
Filename: C:\Program Files\Pack Sécurité\FSPS\program\FSLSP.DLL
Protocol 16: F-Secure Protocol Scanner [MSAFD NetBIOS [\Device\NetBT_Tcpip_{8903E0E4-C40D-498C-BF62-BBADAD901B6D}] SEQPACKET 4]
GUID: {44A657B4-6502-4B2A-A63E-0A4FAE18C3C5}
Filename: C:\Program Files\Pack Sécurité\FSPS\program\FSLSP.DLL
Protocol 17: F-Secure Protocol Scanner [MSAFD NetBIOS [\Device\NetBT_Tcpip_{8903E0E4-C40D-498C-BF62-BBADAD901B6D}] DATAGRAM 4]
GUID: {9E069D8A-4DE0-4649-9650-E2BAEA0CD5F8}
Filename: C:\Program Files\Pack Sécurité\FSPS\program\FSLSP.DLL
Protocol 18: F-Secure Protocol Scanner [MSAFD NetBIOS [\Device\NetBT_Tcpip_{C7F24D36-5855-4681-92BB-D40AA22B91AF}] SEQPACKET 2]
GUID: {8798E279-D813-4AB1-A7BD-C6720BCF608C}
Filename: C:\Program Files\Pack Sécurité\FSPS\program\FSLSP.DLL
Protocol 19: F-Secure Protocol Scanner [MSAFD NetBIOS [\Device\NetBT_Tcpip_{C7F24D36-5855-4681-92BB-D40AA22B91AF}] DATAGRAM 2]
GUID: {0B2D0F7D-42D6-4D43-AF45-B94E37C70D7F}
Filename: C:\Program Files\Pack Sécurité\FSPS\program\FSLSP.DLL
Protocol 20: F-Secure Protocol Scanner [MSAFD NetBIOS [\Device\NetBT_Tcpip_{9D5EAAA7-271C-4AA3-8B54-C21CCB761A74}] SEQPACKET 3]
GUID: {CBED4EE5-45F6-4D9F-9078-67A1EFBB2F5E}
Filename: C:\Program Files\Pack Sécurité\FSPS\program\FSLSP.DLL
Protocol 21: F-Secure Protocol Scanner [MSAFD NetBIOS [\Device\NetBT_Tcpip_{9D5EAAA7-271C-4AA3-8B54-C21CCB761A74}] DATAGRAM 3]
GUID: {2CDC4927-BD22-48A6-8C96-CEBA70988218}
Filename: C:\Program Files\Pack Sécurité\FSPS\program\FSLSP.DLL
Protocol 22: F-Secure Protocol Scanner [MSAFD NetBIOS [\Device\NetBT_Tcpip_{16ACC6DE-0A00-4421-A452-239A78DBDDA7}] SEQPACKET 6]
GUID: {5EF7651D-ADB7-4413-AE2B-F7C69C3C9F30}
Filename: C:\Program Files\Pack Sécurité\FSPS\program\FSLSP.DLL
Protocol 23: F-Secure Protocol Scanner [MSAFD NetBIOS [\Device\NetBT_Tcpip_{16ACC6DE-0A00-4421-A452-239A78DBDDA7}] DATAGRAM 6]
GUID: {20904EE5-D58B-4346-8A5D-C99EF8900F13}
Filename: C:\Program Files\Pack Sécurité\FSPS\program\FSLSP.DLL
Protocol 24: F-Secure Protocol Scanner [MSAFD NetBIOS [\Device\NetBT_Tcpip_{022C2228-E077-4434-9C10-D0EA0475D588}] SEQPACKET 7]
GUID: {2D364B02-F8FA-4017-B397-C0F578A03F38}
Filename: C:\Program Files\Pack Sécurité\FSPS\program\FSLSP.DLL
Protocol 25: F-Secure Protocol Scanner [MSAFD NetBIOS [\Device\NetBT_Tcpip_{022C2228-E077-4434-9C10-D0EA0475D588}] DATAGRAM 7]
GUID: {1F1CD17E-A7CD-4655-8929-2299FDBAC97C}
Filename: C:\Program Files\Pack Sécurité\FSPS\program\FSLSP.DLL
Protocol 26: MSAFD Irda [IrDA]
GUID: {3972523D-2AF1-11D1-B655-00805F3642CC}
Filename: %SystemRoot%\system32\mswsock.dll
Description: Infrared protocol
DB filename: %SystemRoot%\system32\mswsock.dll
DB protocol: MSAFD Irda [IrDA]
Protocol 27: MSAFD Tcpip [TCP/IP]
GUID: {E70F1AA0-AB8B-11CF-8CA3-00805F48A192}
Filename: %SystemRoot%\system32\mswsock.dll
Description: Microsoft Windows NT/2k/XP IP protocol
DB filename: %SystemRoot%\system32\mswsock.dll
DB protocol: MSAFD Tcpip [*]
Protocol 28: MSAFD Tcpip [UDP/IP]
GUID: {E70F1AA0-AB8B-11CF-8CA3-00805F48A192}
Filename: %SystemRoot%\system32\mswsock.dll
Description: Microsoft Windows NT/2k/XP IP protocol
DB filename: %SystemRoot%\system32\mswsock.dll
DB protocol: MSAFD Tcpip [*]
Protocol 29: MSAFD Tcpip [RAW/IP]
GUID: {E70F1AA0-AB8B-11CF-8CA3-00805F48A192}
Filename: %SystemRoot%\system32\mswsock.dll
Description: Microsoft Windows NT/2k/XP IP protocol
DB filename: %SystemRoot%\system32\mswsock.dll
DB protocol: MSAFD Tcpip [*]
Protocol 30: RSVP UDP Service Provider
GUID: {9D60A9E0-337A-11D0-BD88-0000C082E69A}
Filename: %SystemRoot%\system32\rsvpsp.dll
Description: Microsoft Windows NT/2k/XP RVSP
DB filename: %SystemRoot%\system32\rsvpsp.dll
DB protocol: RSVP * Service Provider
Protocol 31: RSVP TCP Service Provider
GUID: {9D60A9E0-337A-11D0-BD88-0000C082E69A}
Filename: %SystemRoot%\system32\rsvpsp.dll
Description: Microsoft Windows NT/2k/XP RVSP
DB filename: %SystemRoot%\system32\rsvpsp.dll
DB protocol: RSVP * Service Provider
Protocol 32: MSAFD NetBIOS [\Device\NetBT_Tcpip_{FE5F6A24-BA11-4319-A719-89DD0968F3FB}] SEQPACKET 10
GUID: {8D5F1830-C273-11CF-95C8-00805F48A192}
Filename: %SystemRoot%\system32\mswsock.dll
Description: Microsoft Windows NT/2k/XP NetBios protocol
DB filename: %SystemRoot%\system32\mswsock.dll
DB protocol: MSAFD NetBIOS *
Protocol 33: MSAFD NetBIOS [\Device\NetBT_Tcpip_{FE5F6A24-BA11-4319-A719-89DD0968F3FB}] DATAGRAM 10
GUID: {8D5F1830-C273-11CF-95C8-00805F48A192}
Filename: %SystemRoot%\system32\mswsock.dll
Description: Microsoft Windows NT/2k/XP NetBios protocol
DB filename: %SystemRoot%\system32\mswsock.dll
DB protocol: MSAFD NetBIOS *
Protocol 34: MSAFD NetBIOS [\Device\NetBT_Tcpip_{2B956619-0F52-4AC9-8E5D-2F06F59B0CDA}] SEQPACKET 9
GUID: {8D5F1830-C273-11CF-95C8-00805F48A192}
Filename: %SystemRoot%\system32\mswsock.dll
Description: Microsoft Windows NT/2k/XP NetBios protocol
DB filename: %SystemRoot%\system32\mswsock.dll
DB protocol: MSAFD NetBIOS *
Protocol 35: MSAFD NetBIOS [\Device\NetBT_Tcpip_{2B956619-0F52-4AC9-8E5D-2F06F59B0CDA}] DATAGRAM 9
GUID: {8D5F1830-C273-11CF-95C8-00805F48A192}
Filename: %SystemRoot%\system32\mswsock.dll
Description: Microsoft Windows NT/2k/XP NetBios protocol
DB filename: %SystemRoot%\system32\mswsock.dll
DB protocol: MSAFD NetBIOS *
Protocol 36: MSAFD NetBIOS [\Device\NetBT_Tcpip_{14BC4A04-7B5B-466F-BA0C-3631311A69C7}] SEQPACKET 8
GUID: {8D5F1830-C273-11CF-95C8-00805F48A192}
Filename: %SystemRoot%\system32\mswsock.dll
Description: Microsoft Windows NT/2k/XP NetBios protocol
DB filename: %SystemRoot%\system32\mswsock.dll
DB protocol: MSAFD NetBIOS *
Protocol 37: MSAFD NetBIOS [\Device\NetBT_Tcpip_{14BC4A04-7B5B-466F-BA0C-3631311A69C7}] DATAGRAM 8
GUID: {8D5F1830-C273-11CF-95C8-00805F48A192}
Filename: %SystemRoot%\system32\mswsock.dll
Description: Microsoft Windows NT/2k/XP NetBios protocol
DB filename: %SystemRoot%\system32\mswsock.dll
DB protocol: MSAFD NetBIOS *
Protocol 38: MSAFD NetBIOS [\Device\NetBT_Tcpip_{A08C4508-40C1-42A0-AFA4-0D80A0B7B9A1}] SEQPACKET 5
GUID: {8D5F1830-C273-11CF-95C8-00805F48A192}
Filename: %SystemRoot%\system32\mswsock.dll
Description: Microsoft Windows NT/2k/XP NetBios protocol
DB filename: %SystemRoot%\system32\mswsock.dll
DB protocol: MSAFD NetBIOS *
Protocol 39: MSAFD NetBIOS [\Device\NetBT_Tcpip_{A08C4508-40C1-42A0-AFA4-0D80A0B7B9A1}] DATAGRAM 5
GUID: {8D5F1830-C273-11CF-95C8-00805F48A192}
Filename: %SystemRoot%\system32\mswsock.dll
Description: Microsoft Windows NT/2k/XP NetBios protocol
DB filename: %SystemRoot%\system32\mswsock.dll
DB protocol: MSAFD NetBIOS *
Protocol 40: MSAFD NetBIOS [\Device\NetBT_Tcpip_{3906E0AB-8B91-4A55-A966-193DF6BAEB86}] SEQPACKET 1
GUID: {8D5F1830-C273-11CF-95C8-00805F48A192}
Filename: %SystemRoot%\system32\mswsock.dll
Description: Microsoft Windows NT/2k/XP NetBios protocol
DB filename: %SystemRoot%\system32\mswsock.dll
DB protocol: MSAFD NetBIOS *
Protocol 41: MSAFD NetBIOS [\Device\NetBT_Tcpip_{3906E0AB-8B91-4A55-A966-193DF6BAEB86}] DATAGRAM 1
GUID: {8D5F1830-C273-11CF-95C8-00805F48A192}
Filename: %SystemRoot%\system32\mswsock.dll
Description: Microsoft Windows NT/2k/XP NetBios protocol
DB filename:
