[Spyware] Impossible éradiquer DoubleclickRésolu/Fermé

Question

Bonsoir, 

Je rencontre le même pbm que beaucoup c'est à dire : AVG ou SPYBOT me détectent des cookies traceurs comme TrackingCookie.Doubleclick, Avenue A,  inc ou WebTrends live et les nettoient mais dès que j'accède à Internet, ils réapparaissent. Je n'arrive pas à m'en débarrasser et ne sais pas analyser la log de hijackthis ! Merci à celui ou celle qui pourra m'aider tout en sachant que je ne sais pas démarrer en mode sans echec !! à bientôt

fripon79 · Accepted Answer

il suffit de rajouter doubleclick.com dans la liste des sites sensibles de IE (outil - sécurité - site sensible - site ajouter *.doubleclick.com, un coup de spybot derrière tout ça... et hop

Regis59 · Answer

Salut

Poste nous le rapport hijack this

a+

Utilisateur anonyme · Answer

Bonsoir, merci de bien vouloir vous pencher sur mon pbm. voici le rapport hijackthis de ce soir. à bientôt. 

Logfile of HijackThis v1.99.1
Scan saved at 20:07:59, on 14/02/2007
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
C:\Program Files\Alwil Software\Avast4\ashServ.exe
C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Fichiers communs\Microsoft Shared\VS7DEBUG\MDM.EXE
C:\Program Files\Symantec\LiveUpdate\ALUSchedulerSvc.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe
C:\WINDOWS\SOUNDMAN.EXE
C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
C:\Launch Manager\LaunchAp.exe
C:\Launch Manager\HotkeyApp.exe
C:\Launch Manager\OSDCtrl.exe
C:\Launch Manager\Wbutton.exe
C:\WINDOWS\system32\LVCOMSX.EXE
C:\Program Files\Logitech\Video\LogiTray.exe
C:\Program Files\Java\jre1.5.0_08\bin\jusched.exe
C:\Program Files\HP\HP Software Update\HPWuSchd2.exe
C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
C:\WINDOWS\system32\wuauclt.exe
C:\WINDOWS\system32\ctfmon.exe
C:\PROGRA~1\MESSEN~1\Msmsgs.exe
C:\Program Files\Logitech\Video\FxSvr2.exe
C:\Program Files\Google\Google Updater\GoogleUpdater.exe
C:\Program Files\Java\jre1.5.0_08\bin\jucheck.exe
C:\Program Files\eMule\eMule0.47c\emule.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\LimeWire\LimeWire.exe
C:\Program Files\Internet Explorer\IEXPLORE.EXE
C:\Program Files\Hijackthis\HijackThis.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.google.fr/?gws_rd=ssl
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = https://fr.yahoo.com/
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = https://fr.yahoo.com/
R1 - HKCU\Software\Microsoft\Internet Connection Wizard,ShellNext = https://actus.sfr.fr
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Window Title = Internet Explorer avec Club-Internet
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = 127.0.0.1
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll
O2 - BHO: (no name) - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.5.0_08\bin\ssv.dll
O2 - BHO: Windows Live Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar1.dll
O2 - BHO: Windows Live Toolbar Helper - {BDBD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\Windows Live Toolbar\msntb.dll
O3 - Toolbar: Windows Live Toolbar - {BDAD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\Windows Live Toolbar\msntb.dll
O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar1.dll
O4 - HKLM\..\Run: [ATIPTA] C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe
O4 - HKLM\..\Run: [SoundMan] SOUNDMAN.EXE
O4 - HKLM\..\Run: [SynTPEnh] C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
O4 - HKLM\..\Run: [LaunchAp] C:\Launch Manager\LaunchAp.exe
O4 - HKLM\..\Run: [HotkeyApp] C:\Launch Manager\HotkeyApp.exe
O4 - HKLM\..\Run: [LMgrOSD] C:\Launch Manager\OSDCtrl.exe
O4 - HKLM\..\Run: [Wbutton] "C:\Launch Manager\Wbutton.exe"
O4 - HKLM\..\Run: [NeroFilterCheck] C:\WINDOWS\system32\NeroCheck.exe
O4 - HKLM\..\Run: [CtrlVol] C:\Launch Manager\CtrlVol.exe
O4 - HKLM\..\Run: [LVCOMSX] C:\WINDOWS\system32\LVCOMSX.EXE
O4 - HKLM\..\Run: [LogitechVideoRepair] C:\Program Files\Logitech\Video\ISStart.exe
O4 - HKLM\..\Run: [LogitechVideoTray] C:\Program Files\Logitech\Video\LogiTray.exe
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre1.5.0_08\bin\jusched.exe"
O4 - HKLM\..\Run: [HP Software Update] C:\Program Files\HP\HP Software Update\HPWuSchd2.exe
O4 - HKLM\..\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
O4 - HKLM\..\Run: [!AVG Anti-Spyware] "C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\avgas.exe" /minimized
O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [LogitechSoftwareUpdate] "C:\Program Files\Logitech\Video\ManifestEngine.exe" boot
O4 - HKCU\..\Run: [MSMSGS] "c:\PROGRA~1\MESSEN~1\Msmsgs.exe" /background
O4 - HKCU\..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\1.2.1128.5462\GoogleToolbarNotifier.exe
O4 - Global Startup: Adobe Gamma Loader.lnk = ?
O4 - Global Startup: Microsoft Office.lnk = C:\Program Files\Microsoft Office\Office10\OSA.EXE
O4 - Global Startup: Outil de mise à jour Google.lnk = C:\Program Files\Google\Google Updater\GoogleUpdater.exe
O8 - Extra context menu item: &Windows Live Search - res://C:\Program Files\Windows Live Toolbar\msntb.dll/search.htm
O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~3\Office10\EXCEL.EXE/3000
O8 - Extra context menu item: Ouvrir dans un nouvel onglet d'arrière-plan - res://C:\Program Files\Windows Live Toolbar\Components\fr-fr\msntabres.dll.mui/229?f0c3467796d34ff7b7e766743bde5b5e
O8 - Extra context menu item: Ouvrir dans un nouvel onglet de premier plan - res://C:\Program Files\Windows Live Toolbar\Components\fr-fr\msntabres.dll.mui/230?f0c3467796d34ff7b7e766743bde5b5e
O9 - Extra button: @c:\Program Files\Messenger\Msgslang.dll,-61144 - {FB5F1910-F110-11d2-BB9E-00C04F795683} - c:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: @c:\Program Files\Messenger\Msgslang.dll,-61144 - {FB5F1910-F110-11d2-BB9E-00C04F795683} - c:\Program Files\Messenger\msmsgs.exe
O16 - DPF: {17492023-C23A-453E-A040-C7C580BBF700} (Windows Genuine Advantage Validation Tool) - http://download.microsoft.com/download/E/5/6/E5611B10-0D6D-4117-8430-A67417AA88CD/LegitCheckControl.cab
O18 - Protocol: livecall - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\MSNMES~1\MSGRAP~1.DLL
O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\MSNMES~1\MSGRAP~1.DLL
O20 - Winlogon Notify: WgaLogon - C:\WINDOWS\SYSTEM32\WgaLogon.dll
O21 - SSODL: WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\WINDOWS\system32\WPDShServiceObj.dll
O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - Unknown owner - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\WINDOWS\system32\Ati2evxx.exe
O23 - Service: avast! Antivirus - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashServ.exe
O23 - Service: avast! Mail Scanner - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe" /service (file missing)
O23 - Service: avast! Web Scanner - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe" /service (file missing)
O23 - Service: AVG Anti-Spyware Guard - Unknown owner - C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe (file missing)
O23 - Service: Symantec Lic NetConnect service (CLTNetCnService) - Unknown owner - C:\Program Files\Fichiers communs\Symantec Shared\ccSvcHst.exe" /h ccCommon (file missing)
O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Fichiers communs\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: LiveUpdate - Symantec Corporation - C:\PROGRA~1\Symantec\LIVEUP~1\LUCOMS~1.EXE
O23 - Service: Planificateur LiveUpdate automatique - Symantec Corporation - C:\Program Files\Symantec\LiveUpdate\ALUSchedulerSvc.exe
O23 - Service: Pml Driver HPZ12 - HP - C:\WINDOWS\system32\HPZipm12.exe

Regis59 · Answer

Re

Peux tu me fournir un rapport de Spybot S AND D?

A+

Utilisateur anonyme · Answer

voici le rapport spybot et à la fin je joins celui de AVG. --- Search result list --- WebTrends live: Cookie traceur (Internet Explorer: chantal) (Cookie, fixed) DoubleClick: Cookie traceur (Internet Explorer: chantal) (Cookie, fixed) TagASaurus: Cookie traceur (Internet Explorer: chantal) (Cookie, fixed) Tradedoubler: Cookie traceur (Internet Explorer: chantal) (Cookie, fixed) Marketengines: Cookie traceur (Internet Explorer: chantal) (Cookie, fixed) Avenue A, Inc.: Cookie traceur (Internet Explorer: chantal) (Cookie, fixed) BlueStreak: Cookie traceur (Internet Explorer: chantal) (Cookie, fixed) --- Spybot - Search & Destroy version: 1.4 (build: 20050523) --- 2005-05-31 blindman.exe (1.0.0.1) 2005-05-31 SpybotSD.exe (1.4.0.3) 2005-05-31 TeaTimer.exe (1.4.0.2) 2007-02-12 unins000.exe (51.41.0.0) 2005-05-31 Update.exe (1.4.0.0) 2007-01-15 advcheck.dll (1.2.1.0) 2005-05-31 aports.dll (2.1.0.0) 2005-05-31 borlndmm.dll (7.0.4.453) 2005-05-31 delphimm.dll (7.0.4.453) 2005-05-31 SDHelper.dll (1.4.0.0) 2007-01-02 Tools.dll (2.0.1.0) 2005-05-31 UnzDll.dll (1.73.1.1) 2005-05-31 ZipDll.dll (1.73.2.0) 2007-02-07 Includes\Cookies.sbi (*) 2006-12-08 Includes\Dialer.sbi (*) 2007-02-07 Includes\DialerC.sbi (*) 2007-02-07 Includes\Hijackers.sbi (*) 2007-02-07 Includes\HijackersC.sbi (*) 2006-10-27 Includes\Keyloggers.sbi (*) 2007-02-07 Includes\KeyloggersC.sbi (*) 2007-01-12 Includes\Malware.sbi (*) 2007-02-07 Includes\MalwareC.sbi (*) 2007-01-19 Includes\PUPS.sbi (*) 2007-02-07 Includes\PUPSC.sbi (*) 2007-02-07 Includes\Revision.sbi (*) 2006-12-08 Includes\Security.sbi (*) 2007-02-07 Includes\SecurityC.sbi (*) 2007-02-02 Includes\Spybots.sbi (*) 2007-02-07 Includes\SpybotsC.sbi (*) 2005-02-17 Includes\Tracks.uti 2006-12-08 Includes\Trojans.sbi (*) 2007-02-07 Includes\TrojansC.sbi (*) --- System information --- Windows XP (Build: 2600) Service Pack 2 / .NETFramework / 1.1: Microsoft .NET Framework 1.1 Hotfix (KB886903) / .NETFramework / 1.1: Microsoft .NET Framework 1.1 Service Pack 1 (KB867460) / Microsoft .NET Framework 2.0: This Security Update is for Microsoft .NET Framework 2.0. If you later install a more recent service pack, this Security Update will be uninstalled automatically. For more information, visit https://support.microsoft.com/en-us/help/917283/ms06-033-a-vulnerability-in-asp-net-could-allow-information-disclosure / Microsoft .NET Framework 2.0: This Security Update is for Microsoft .NET Framework 2.0. If you later install a more recent service pack, this Security Update will be uninstalled automatically. For more information, visit https://support.microsoft.com/en-us/help/922770 / MSXML4SP2: FIX: ASP stops responding when calling Response.Redirect to another server using msxml4 sp2 / MSXML4SP2: FIX: ASP stops responding when calling Response.Redirect to another server using msxml4 sp2 / Step By Step Interactive Training / SP2: Mise à jour de sécurité pour Step by Step Interactive Training (KB898458) / Windows Media Player 10: Mise à jour de sécurité pour Lecteur Windows Media 10 (KB911565) / Windows Media Player 10: Mise à jour de sécurité pour Lecteur Windows Media 10 (KB917734) / Windows Media Player 6.4: Mise à jour de sécurité pour Lecteur Windows Media 6.4 (KB925398) / Windows XP / SP10: Microsoft Compression Client Pack 1.0 for Windows XP / Windows XP / SP3: Correctif Windows XP - KB873339 / Windows XP / SP3: Correctif Windows XP - KB883529 / Windows XP / SP3: Correctif Windows XP - KB883667 / Windows XP / SP3: Correctif Windows XP - KB884575 / Windows XP / SP3: Correctif Windows XP - KB884883 / Windows XP / SP3: Correctif Windows XP - KB885523 / Windows XP / SP3: Correctif Windows XP - KB885835 / Windows XP / SP3: Correctif Windows XP - KB885836 / Windows XP / SP3: Correctif Windows XP - KB885855 / Windows XP / SP3: Correctif Windows XP - KB885884 / Windows XP / SP3: Correctif Windows XP - KB885894 / Windows XP / SP3: Correctif Windows XP - KB886677 / Windows XP / SP3: Correctif Windows XP - KB886716 / Windows XP / SP3: Correctif Windows XP - KB887742 / Windows XP / SP3: Correctif Windows XP - KB887797 / Windows XP / SP3: Correctif Windows XP - KB888113 / Windows XP / SP3: Correctif Windows XP - KB888302 / Windows XP / SP3: Correctif Windows XP - KB888402 / Windows XP / SP3: Correctif Windows XP - KB889016 / Windows XP / SP3: Correctif pour Windows XP (KB889527) / Windows XP / SP3: Correctif Windows XP - KB889673 / Windows XP / SP3: Mise à jour de sécurité pour Windows XP (KB890046) / Windows XP / SP3: Correctif Windows XP - KB890831 / Windows XP / SP3: Correctif Windows XP - KB890859 / Windows XP / SP3: Correctif Windows XP - KB891781 / Windows XP / SP3: Correctif Windows XP - KB892627 / Windows XP / SP3: Correctif Windows XP - KB893056 / Windows XP / SP3: Mise à jour de sécurité pour Windows XP (KB893066) / Windows XP / SP3: Correctif pour Windows XP (KB893357) / Windows XP / SP3: Mise à jour de sécurité pour Windows XP (KB893756) / Windows XP / SP3: Windows Installer 3.1 (KB893803) / Windows XP / SP3: Correctif pour Windows XP (KB896256) / Windows XP / SP3: Mise à jour de sécurité pour Windows XP (KB896358) / Windows XP / SP3: Mise à jour de sécurité pour Windows XP (KB896422) / Windows XP / SP3: Mise à jour de sécurité pour Windows XP (KB896423) / Windows XP / SP3: Mise à jour de sécurité pour Windows XP (KB896424) / Windows XP / SP3: Mise à jour pour Windows XP (KB896427) / Windows XP / SP3: Mise à jour de sécurité pour Windows XP (KB896428) / Windows XP / SP3: Correctif Windows XP - KB896626 / Windows XP / SP3: Mise à jour pour Windows XP (KB897663) / Windows XP / SP3: Mise à jour pour Windows XP (KB898461) / Windows XP / SP3: Correctif pour Windows XP (KB898900) / Windows XP / SP3: Mise à jour de sécurité pour Windows XP (KB899587) / Windows XP / SP3: Mise à jour de sécurité pour Windows XP (KB899589) / Windows XP / SP3: Mise à jour de sécurité pour Windows XP (KB899591) / Windows XP / SP3: Mise à jour pour Windows XP (KB900485) / Windows XP / SP3: Mise à jour de sécurité pour Windows XP (KB900725) / Windows XP / SP3: Mise à jour de sécurité pour Windows XP (KB900930) / Windows XP / SP3: Mise à jour de sécurité pour Windows XP (KB901017) / Windows XP / SP3: Mise à jour de sécurité pour Windows XP (KB901214) / Windows XP / SP3: Mise à jour de sécurité pour Windows XP (KB902400) / Windows XP / SP3: Correctif pour Windows XP (KB903234) / Windows XP / SP3: Correctif pour Windows XP (KB904412) / Windows XP / SP3: Mise à jour de sécurité pour Windows XP (KB904706) / Windows XP / SP3: Mise à jour de sécurité pour Windows XP (KB905414) / Windows XP / SP3: Mise à jour de sécurité pour Windows XP (KB905749) / Windows XP / SP3: Mise à jour de sécurité pour Windows XP (KB905915) / Windows XP / SP3: Correctif pour Windows XP (KB906569) / Windows XP / SP3: Correctif pour Windows XP (KB907865) / Windows XP / SP3: Mise à jour de sécurité pour Windows XP (KB908519) / Windows XP / SP3: Mise à jour pour Windows XP (KB908521) / Windows XP / SP3: Mise à jour pour Windows XP (KB908531) / Windows XP / SP3: Mise à jour pour Windows XP (KB910437) / Windows XP / SP3: Correctif pour Windows XP (KB910728) / Windows XP / SP3: Mise à jour pour Windows XP (KB911280) / Windows XP / SP3: Mise à jour de sécurité pour Windows XP (KB911562) / Windows XP / SP3: Mise à jour de sécurité pour Windows XP (KB911567) / Windows XP / SP3: Mise à jour de sécurité pour Windows XP (KB911927) / Windows XP / SP3: Mise à jour de sécurité pour Windows XP (KB912919) / Windows XP / SP3: Mise à jour de sécurité pour Windows XP (KB913580) / Windows XP / SP3: Mise à jour de sécurité pour Windows XP (KB914388) / Windows XP / SP3: Mise à jour de sécurité pour Windows XP (KB914389) / Windows XP / SP3: Mise à jour pour Windows XP (KB916595) / Windows XP / SP3: Mise à jour de sécurité pour Windows XP (KB917159) / Windows XP / SP3: Mise à jour de sécurité pour Windows XP (KB917344) / Windows XP / SP3: Mise à jour de sécurité pour Windows XP (KB917422) / Windows XP / SP3: Mise à jour de sécurité pour Windows XP (KB917953) / Windows XP / SP3: Mise à jour de sécurité pour Windows XP (KB918439) / Windows XP / SP3: Mise à jour de sécurité pour Windows XP (KB918899) / Windows XP / SP3: Mise à jour de sécurité pour Windows XP (KB919007) / Windows XP / SP3: Mise à jour de sécurité pour Windows XP (KB920213) / Windows XP / SP3: Mise à jour de sécurité pour Windows XP (KB920214) / Windows XP / SP3: Mise à jour de sécurité pour Windows XP (KB920670) / Windows XP / SP3: Mise à jour de sécurité pour Windows XP (KB920683) / Windows XP / SP3: Mise à jour de sécurité pour Windows XP (KB920685) / Windows XP / SP3: Mise à jour pour Windows XP (KB920872) / Windows XP / SP3: Mise à jour de sécurité pour Windows XP (KB921398) / Windows XP / SP3: Mise à jour de sécurité pour Windows XP (KB921883) / Windows XP / SP3: Mise à jour pour Windows XP (KB922582) / Windows XP / SP3: Mise à jour de sécurité pour Windows XP (KB922616) / Windows XP / SP3: Mise à jour de sécurité pour Windows XP (KB922760) / Windows XP / SP3: Mise à jour de sécurité pour Windows XP (KB922819) / Windows XP / SP3: Mise à jour de sécurité pour Windows XP (KB923191) / Windows XP / SP3: Mise à jour de sécurité pour Windows XP (KB923414) / Windows XP / SP3: Mise à jour de sécurité pour Windows XP (KB923694) / Windows XP / SP3: Mise à jour de sécurité pour Windows XP (KB923980) / Windows XP / SP3: Mise à jour de sécurité pour Windows XP (KB924191) / Windows XP / SP3: Mise à jour de sécurité pour Windows XP (KB924270) / Windows XP / SP3: Mise à jour de sécurité pour Windows XP (KB924496) / Windows XP / SP3: Mise à jour de sécurité pour Windows XP (KB925454) / Windows XP / SP3: Mise à jour de sécurité pour Windows XP (KB925486) / Windows XP / SP3: Hotfix for Windows XP (KB926239) / Windows XP / SP3: Mise à jour de sécurité pour Windows XP (KB926255) / Windows XP / SP3: Mise à jour de sécurité pour Windows XP (KB929969) --- Startup entries list --- Located: HK_LM:Run, !AVG Anti-Spyware command: "C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\avgas.exe" /minimized file: Located: HK_LM:Run, ATIPTA command: C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe file: C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe size: 339968 MD5: fe1ae350f8e1642397c67a4402afdb48 Located: HK_LM:Run, avast! command: C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe file: C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe size: 108160 MD5: 26a15d8d5c81a3b053e82b01a5d8208e Located: HK_LM:Run, CtrlVol command: C:\Launch Manager\CtrlVol.exe file: C:\Launch Manager\CtrlVol.exe size: 20480 MD5: 9660245a1d3d56df388f7f68a19cfe14 Located: HK_LM:Run, HotkeyApp command: C:\Launch Manager\HotkeyApp.exe file: C:\Launch Manager\HotkeyApp.exe size: 57344 MD5: 8e65f1fbf3e9fac37dd5556819a82bb2 Located: HK_LM:Run, HP Software Update command: C:\Program Files\HP\HP Software Update\HPWuSchd2.exe file: C:\Program Files\HP\HP Software Update\HPWuSchd2.exe size: 49152 MD5: ac116f16a7716a720a45d7ea47cfd983 Located: HK_LM:Run, LaunchAp command: C:\Launch Manager\LaunchAp.exe file: C:\Launch Manager\LaunchAp.exe size: 32768 MD5: 2472cccb6d7ad0af19db20554bdae317 Located: HK_LM:Run, LMgrOSD command: C:\Launch Manager\OSDCtrl.exe file: C:\Launch Manager\OSDCtrl.exe size: 245760 MD5: 023859f5d791742c344b15d93ed10e4a Located: HK_LM:Run, LogitechVideoRepair command: C:\Program Files\Logitech\Video\ISStart.exe file: C:\Program Files\Logitech\Video\ISStart.exe size: 458752 MD5: 3d9d5aa7b8a3d9f447274599d3efb578 Located: HK_LM:Run, LogitechVideoTray command: C:\Program Files\Logitech\Video\LogiTray.exe file: C:\Program Files\Logitech\Video\LogiTray.exe size: 217088 MD5: ee2a9192a73d51e7f4d9099fc35c32d0 Located: HK_LM:Run, LVCOMSX command: C:\WINDOWS\system32\LVCOMSX.EXE file: C:\WINDOWS\system32\LVCOMSX.EXE size: 221184 MD5: bcd419d4ea19087e91601c1c2914323a Located: HK_LM:Run, NeroFilterCheck command: C:\WINDOWS\system32\NeroCheck.exe file: C:\WINDOWS\system32\NeroCheck.exe size: 155648 MD5: 3e4c03cefad8de135263236b61a49c90 Located: HK_LM:Run, QuickTime Task command: "C:\Program Files\QuickTime\qttask.exe" -atboottime file: C:\Program Files\QuickTime\qttask.exe size: 282624 MD5: 383145864f6543c97a7e1b78505d2f1c Located: HK_LM:Run, SoundMan command: SOUNDMAN.EXE file: C:\WINDOWS\SOUNDMAN.EXE size: 77824 MD5: f101729fef2aad615655a780a4b64b7a Located: HK_LM:Run, StandardInstall command: file: Located: HK_LM:Run, SunJavaUpdateSched command: "C:\Program Files\Java\jre1.5.0_08\bin\jusched.exe" file: C:\Program Files\Java\jre1.5.0_08\bin\jusched.exe size: 49263 MD5: ffb2d7833002457d3801aa4422ffb44f Located: HK_LM:Run, SynTPEnh command: C:\Program Files\Synaptics\SynTP\SynTPEnh.exe file: C:\Program Files\Synaptics\SynTP\SynTPEnh.exe size: 737369 MD5: 93609a7b70d36c67c54da8b81369c4bf Located: HK_LM:Run, Wbutton command: "C:\Launch Manager\Wbutton.exe" file: C:\Launch Manager\Wbutton.exe size: 81920 MD5: 978879286f518ca8da55681e25991b8a Located: HK_CU:Run, CTFMON.EXE command: C:\WINDOWS\system32\ctfmon.exe file: C:\WINDOWS\system32\ctfmon.exe size: 15360 MD5: 5584247b568c2e53934873f4b655fe6a Located: HK_CU:Run, LogitechSoftwareUpdate command: "C:\Program Files\Logitech\Video\ManifestEngine.exe" boot file: C:\Program Files\Logitech\Video\ManifestEngine.exe size: 196608 MD5: c1913a21cb3a7bf314641acf0a8f81c9 Located: HK_CU:Run, MSMSGS command: "c:\PROGRA~1\MESSEN~1\Msmsgs.exe" /background file: c:\PROGRA~1\MESSEN~1\Msmsgs.exe size: 1658592 MD5: f125c0a696480f3d132b1bc736d871bf Located: HK_CU:Run, swg command: C:\Program Files\Google\GoogleToolbarNotifier\1.2.1128.5462\GoogleToolbarNotifier.exe file: C:\Program Files\Google\GoogleToolbarNotifier\1.2.1128.5462\GoogleToolbarNotifier.exe size: 171448 MD5: 0fa44ea8b03aba3e1d240b5a333d8e6a Located: Démarrage (tous utilisateurs), Adobe Gamma Loader.lnk command: C:\Program Files\Fichiers communs\Adobe\Calibration\Adobe Gamma Loader.exe file: C:\Program Files\Fichiers communs\Adobe\Calibration\Adobe Gamma Loader.exe size: 110592 MD5: 5cd0cd0ec4dc5df459b3ac016764f5aa Located: Démarrage (tous utilisateurs), Microsoft Office.lnk command: C:\Program Files\Microsoft Office\Office10\OSA.EXE file: C:\Program Files\Microsoft Office\Office10\OSA.EXE size: 83360 MD5: 5bc65464354a9fd3beaa28e18839734a Located: Démarrage (tous utilisateurs), Outil de mise à jour Google.lnk command: C:\Program Files\Google\Google Updater\GoogleUpdater.exe file: C:\Program Files\Google\Google Updater\GoogleUpdater.exe size: 123640 MD5: c381c7a81cd485d6cf3ba53b96fd2a79 Located: System.ini, AtiExtEvent command: Ati2evxx.dll file: Ati2evxx.dll Located: System.ini, crypt32chain command: crypt32.dll file: crypt32.dll Located: System.ini, cryptnet command: cryptnet.dll file: cryptnet.dll Located: System.ini, cscdll command: cscdll.dll file: cscdll.dll Located: System.ini, ScCertProp command: wlnotify.dll file: wlnotify.dll Located: System.ini, Schedule command: wlnotify.dll file: wlnotify.dll Located: System.ini, sclgntfy command: sclgntfy.dll file: sclgntfy.dll Located: System.ini, SensLogn command: WlNotify.dll file: WlNotify.dll Located: System.ini, termsrv command: wlnotify.dll file: wlnotify.dll Located: System.ini, WgaLogon command: WgaLogon.dll file: WgaLogon.dll Located: System.ini, wlballoon command: wlnotify.dll file: wlnotify.dll --- Browser helper object list --- {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} (AcroIEHlprObj Class) BHO name: CLSID name: AcroIEHlprObj Class description: Adobe Acrobat reader classification: Legitimate known filename: AcroIEhelper.ocx
AcroIEhelper.dll info link: https://get2.adobe.com/reader/otherversions/ info source: TonyKlein Path: C:\Program Files\Adobe\Acrobat 7.0\ActiveX\ Long name: AcroIEHelper.dll Short name: ACROIE~1.DLL Date (created): 23/09/2005 20:12:08 Date (last access): 14/02/2007 20:31:36 Date (last write): 23/09/2005 20:12:08 Filesize: 63136 Attributes: archive MD5: B61D5D651ECC6055C29BF826CA7B1141 CRC32: FEF15799 Version: 7.0.5.172 {53707962-6F74-2D53-2644-206D7942484F} () BHO name: CLSID name: description: Spybot-S&D IE Browser plugin classification: Legitimate known filename: SDhelper.dll info link: http://spybot.eon.net.au/ info source: Patrick M. Kolla Path: C:\PROGRA~1\SPYBOT~1\ Long name: SDHelper.dll Short name: Date (created): 12/02/2007 20:14:52 Date (last access): 14/02/2007 20:31:38 Date (last write): 31/05/2005 01:04:00 Filesize: 853672 Attributes: archive MD5: 250D787A5712D7768DDC133B3E477759 CRC32: D4589A41 Version: 1.4.0.0 {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} (SSVHelper Class) BHO name: CLSID name: SSVHelper Class Path: C:\Program Files\Java\jre1.5.0_08\bin\ Long name: ssv.dll Short name: Date (created): 26/07/2006 02:03:18 Date (last access): 14/02/2007 20:31:36 Date (last write): 26/07/2006 02:17:56 Filesize: 434279 Attributes: archive MD5: 77036728E730F810CD479EF9F48398C5 CRC32: E3502158 Version: 5.0.80.3 {9030D464-4C02-4ABF-8ECC-5164760863C6} (Windows Live Sign-in Helper) BHO name: CLSID name: Windows Live Sign-in Helper Path: C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\ Long name: WindowsLiveLogin.dll Short name: WINDOW~1.DLL Date (created): 17/04/2006 12:32:58 Date (last access): 14/02/2007 20:31:36 Date (last write): 17/04/2006 12:32:58 Filesize: 323904 Attributes: archive MD5: 4D834364B09155778A3330A67EBD4621 CRC32: D2CB2586 Version: 4.0.248.1 {AA58ED58-01DD-4d91-8333-CF10577473F7} (Google Toolbar Helper) BHO name: CLSID name: Google Toolbar Helper description: Google toolbar classification: Open for discussion known filename: googletoolbar.dll
googletoolbar*.dll
(* = number)
googletoolbar_en_*.**-big.dll
Googletoolbar_en_*.*.**-deleon.dll info link: http://www.google.com/intl/fr/toolbar/ie/index.html info source: TonyKlein Path: c:\program files\google\ Long name: GoogleToolbar1.dll Short name: GOOGLE~1.DLL Date (created): 10/02/2007 14:46:04 Date (last access): 14/02/2007 20:31:36 Date (last write): 10/02/2007 14:46:04 Filesize: 2436160 Attributes: readonly archive MD5: 6D44E0C3B43D27484FBB355E470C4188 CRC32: 2DE875CD Version: 4.0.1601.4978 {BDBD1DAD-C946-4A17-ADC1-64B5B4FF55D0} (Windows Live Toolbar Helper) BHO name: CLSID name: Windows Live Toolbar Helper Path: C:\Program Files\Windows Live Toolbar\ Long name: msntb.dll Short name: Date (created): 10/10/2006 23:26:40 Date (last access): 14/02/2007 20:31:38 Date (last write): 10/10/2006 23:26:40 Filesize: 544032 Attributes: archive MD5: D638AFC241FCC42D15886CD26A3F1461 CRC32: EC0AD183 Version: 3.1.0.72 --- ActiveX list --- Microsoft XML Parser for Java (Microsoft XML Parser for Java) DPF name: Microsoft XML Parser for Java CLSID name: Installer: Codebase: file://C:\WINDOWS\Java\classes\xmldso.cab description: classification: Legitimate known filename: %WINDIR%\Java\classes\xmldso.cab info link: info source: Patrick M. Kolla {17492023-C23A-453E-A040-C7C580BBF700} (Windows Genuine Advantage Validation Tool) DPF name: CLSID name: Windows Genuine Advantage Validation Tool Installer: C:\WINDOWS\Downloaded Program Files\LegitCheckControl.inf Codebase: http://download.microsoft.com/download/E/5/6/E5611B10-0D6D-4117-8430-A67417AA88CD/LegitCheckControl.cab description: classification: Legitimate known filename: LegitCheckControl.DLL info link: info source: Safer Networking Ltd. Path: C:\WINDOWS\system32\ Long name: LegitCheckControl.DLL Short name: LEGITC~1.DLL Date (created): 19/06/2006 15:19:42 Date (last access): 14/02/2007 07:20:06 Date (last write): 07/08/2006 08:50:22 Filesize: 1484592 Attributes: archive MD5: 5E700932C726D5F845AF03478B999749 CRC32: B7C379F2 Version: 1.5.708.0 {8AD9C840-044E-11D1-B3E9-00805F499D93} (Java Runtime Environment 1.5.0) DPF name: Java Runtime Environment 1.5.0 CLSID name: Java Plug-in 1.5.0_08 Installer: Codebase: http://java.sun.com/update/1.5.0/jinstall-1_5_0_08-windows-i586.cab description: Sun Java classification: Legitimate known filename: %PROGRAM FILES%\JabaSoft\JRE\*\Bin pjava131.dll info link: info source: Patrick M. Kolla Path: C:\Program Files\Java\jre1.5.0_08\bin\ Long name: NPJPI150_08.dll Short name: NPJPI1~1.DLL Date (created): 26/07/2006 02:03:18 Date (last access): 13/02/2007 20:10:20 Date (last write): 26/07/2006 02:17:56 Filesize: 69746 Attributes: archive MD5: C10D603F2BD3B0A2EAC4EC5B743430D3 CRC32: 1EB99B36 Version: 5.0.80.3 {CAFEEFAC-0015-0000-0008-ABCDEFFEDCBA} (Java Runtime Environment 1.5.0) DPF name: Java Runtime Environment 1.5.0 CLSID name: Java Plug-in 1.5.0_08 Installer: Codebase: http://java.sun.com/update/1.5.0/jinstall-1_5_0_08-windows-i586.cab description: classification: Legitimate known filename: NPJPI150_08.dll info link: info source: Safer Networking Ltd. Path: C:\Program Files\Java\jre1.5.0_08\bin\ Long name: NPJPI150_08.dll Short name: NPJPI1~1.DLL Date (created): 26/07/2006 02:03:18 Date (last access): 14/02/2007 20:42:10 Date (last write): 26/07/2006 02:17:56 Filesize: 69746 Attributes: archive MD5: C10D603F2BD3B0A2EAC4EC5B743430D3 CRC32: 1EB99B36 Version: 5.0.80.3 {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} (Java Runtime Environment 1.5.0) DPF name: Java Runtime Environment 1.5.0 CLSID name: Java Plug-in 1.5.0_08 Installer: Codebase: http://java.sun.com/update/1.5.0/jinstall-1_5_0_08-windows-i586.cab description: classification: Legitimate known filename: npjpi150_06.dll info link: info source: Safer Networking Ltd. Path: C:\Program Files\Java\jre1.5.0_08\bin\ Long name: NPJPI150_08.dll Short name: NPJPI1~1.DLL Date (created): 26/07/2006 02:03:18 Date (last access): 14/02/2007 20:42:10 Date (last write): 26/07/2006 02:17:56 Filesize: 69746 Attributes: archive MD5: C10D603F2BD3B0A2EAC4EC5B743430D3 CRC32: 1EB99B36 Version: 5.0.80.3 --- Process list --- PID: 0 ( 0) [System] PID: 496 ( 4) \SystemRoot\System32\smss.exe PID: 556 ( 496) \??\C:\WINDOWS\system32\csrss.exe PID: 584 ( 496) \??\C:\WINDOWS\system32\winlogon.exe PID: 628 ( 584) C:\WINDOWS\system32\services.exe size: 108544 MD5: 732E0B1ABAACE15D80EC19056B0A2AF9 PID: 640 ( 584) C:\WINDOWS\system32\lsass.exe size: 13312 MD5: 9F3744A5C6F49291A7A685040A013399 PID: 800 ( 628) C:\WINDOWS\system32\Ati2evxx.exe size: 364544 MD5: 6BDB117F5CF40FE91FF50E1BB3F28184 PID: 816 ( 628) C:\WINDOWS\system32\svchost.exe size: 14336 MD5: 1BD6C2F707A275CB7C16FD99FE0F31CA PID: 876 ( 628) C:\WINDOWS\system32\svchost.exe size: 14336 MD5: 1BD6C2F707A275CB7C16FD99FE0F31CA PID: 920 ( 628) C:\WINDOWS\System32\svchost.exe size: 14336 MD5: 1BD6C2F707A275CB7C16FD99FE0F31CA PID: 1008 ( 628) C:\WINDOWS\system32\svchost.exe size: 14336 MD5: 1BD6C2F707A275CB7C16FD99FE0F31CA PID: 1112 ( 628) C:\WINDOWS\system32\svchost.exe size: 14336 MD5: 1BD6C2F707A275CB7C16FD99FE0F31CA PID: 1272 ( 628) C:\WINDOWS\system32\spoolsv.exe size: 57856 MD5: DA81EC57ACD4CDC3D4C51CF3D409AF9F PID: 1400 ( 628) C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe size: 59008 MD5: DC995DA2D258C0590C3AE07EC68BFEE6 PID: 1420 ( 628) C:\Program Files\Alwil Software\Avast4\ashServ.exe size: 132736 MD5: 8E33DA0415023EA7A9378AFA04D9BF4D PID: 1460 ( 628) C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe size: 136952 MD5: 26F8F60ED654DC09773899D2B70970B2 PID: 1524 ( 628) C:\WINDOWS\System32\svchost.exe size: 14336 MD5: 1BD6C2F707A275CB7C16FD99FE0F31CA PID: 1560 ( 628) C:\Program Files\Fichiers communs\Microsoft Shared\VS7DEBUG\MDM.EXE size: 322120 MD5: 11F714F85530A2BD134074DC30E99FCA PID: 1612 ( 628) C:\Program Files\Symantec\LiveUpdate\ALUSchedulerSvc.exe size: 198336 MD5: 0FCFBD0EDAA188B3D652DDCE6D16D866 PID: 1700 ( 628) C:\WINDOWS\system32\svchost.exe size: 14336 MD5: 1BD6C2F707A275CB7C16FD99FE0F31CA PID: 1864 ( 628) C:\Program Files\Windows Media Player\WMPNetwk.exe size: 918016 MD5: C9BEA742CE225CC993C9465FDDAE4656 PID: 544 ( 628) C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe size: 255616 MD5: AA6691D73782FA5D94E0CED6D27C3DE8 PID: 644 ( 628) C:\Program Files\Alwil Software\Avast4\ashWebSv.exe size: 370304 MD5: D6B2638DDBFB34AC78B153CDD0792C37 PID: 860 ( 628) C:\WINDOWS\System32\alg.exe size: 44544 MD5: 2FE681D10C5FC343DBBC0610B8DD4D24 PID: 3636 ( 584) C:\WINDOWS\system32\Ati2evxx.exe size: 364544 MD5: 6BDB117F5CF40FE91FF50E1BB3F28184 PID: 3792 ( 816) C:\WINDOWS\system32\wbem\wmiprvse.exe size: 218112 MD5: DB493DD6BC2FA5B38811F2BCDCF03D2B PID: 3800 (3684) C:\WINDOWS\Explorer.EXE size: 1036288 MD5: 0BEE3B07ACE3303EE57698808E1D2DE3 PID: 4040 (3800) C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe size: 339968 MD5: FE1AE350F8E1642397C67A4402AFDB48 PID: 4056 (3800) C:\WINDOWS\SOUNDMAN.EXE size: 77824 MD5: F101729FEF2AAD615655A780A4B64B7A PID: 336 (3800) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe size: 737369 MD5: 93609A7B70D36C67C54DA8B81369C4BF PID: 1708 (3800) C:\Launch Manager\LaunchAp.exe size: 32768 MD5: 2472CCCB6D7AD0AF19DB20554BDAE317 PID: 404 (3800) C:\Launch Manager\HotkeyApp.exe size: 57344 MD5: 8E65F1FBF3E9FAC37DD5556819A82BB2 PID: 632 (3800) C:\Launch Manager\OSDCtrl.exe size: 245760 MD5: 023859F5D791742C344B15D93ED10E4A PID: 900 (3800) C:\Launch Manager\Wbutton.exe size: 81920 MD5: 978879286F518CA8DA55681E25991B8A PID: 260 (3800) C:\WINDOWS\system32\LVCOMSX.EXE size: 221184 MD5: BCD419D4EA19087E91601C1C2914323A PID: 1188 (3800) C:\Program Files\Logitech\Video\LogiTray.exe size: 217088 MD5: EE2A9192A73D51E7F4D9099FC35C32D0 PID: 1672 (3800) C:\Program Files\Java\jre1.5.0_08\bin\jusched.exe size: 49263 MD5: FFB2D7833002457D3801AA4422FFB44F PID: 2072 (3800) C:\Program Files\HP\HP Software Update\HPWuSchd2.exe size: 49152 MD5: AC116F16A7716A720A45D7EA47CFD983 PID: 2112 (3800) C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe size: 108160 MD5: 26A15D8D5C81A3B053E82B01A5D8208E PID: 2120 ( 920) C:\WINDOWS\system32\wuauclt.exe size: 125720 MD5: 6CC08152ED8681BC176BE1B0F3C0E908 PID: 2136 (3800) C:\WINDOWS\system32\ctfmon.exe size: 15360 MD5: 5584247B568C2E53934873F4B655FE6A PID: 2172 (3800) C:\PROGRA~1\MESSEN~1\Msmsgs.exe size: 1658592 MD5: F125C0A696480F3D132B1BC736D871BF PID: 2212 ( 816) C:\Program Files\Logitech\Video\FxSvr2.exe size: 192512 MD5: F0D7CFBE4ED807D5801950556FD418A1 PID: 2364 (3800) C:\Program Files\Google\Google Updater\GoogleUpdater.exe size: 123640 MD5: C381C7A81CD485D6CF3BA53B96FD2A79 PID: 2260 (1672) C:\Program Files\Java\jre1.5.0_08\bin\jucheck.exe size: 241775 MD5: 2A929E12A71F71CA61B8A6769647E272 PID: 1832 (3800) C:\Program Files\eMule\eMule0.47c\emule.exe size: 5001216 MD5: CD303FAE5324C6C644CA223D395ABF79 PID: 3524 ( 628) C:\WINDOWS\system32\svchost.exe size: 14336 MD5: 1BD6C2F707A275CB7C16FD99FE0F31CA PID: 1496 (3800) C:\Program Files\LimeWire\LimeWire.exe size: 159744 MD5: 9FE8ED98B63CA6AC4DABF15025482916 PID: 2412 (3800) C:\Program Files\Outlook Express\msimn.exe size: 60416 MD5: EAF29EC62803B726C32AD0C9C59CDE87 PID: 3652 (3800) C:\Program Files\Internet Explorer\IEXPLORE.EXE size: 93184 MD5: 833E2B3F0E2484C0F2B804AE871B4381 PID: 1608 (3800) C:\Program Files\Spybot - Search & Destroy\SpybotSD.exe size: 4393096 MD5: 09CA174A605B480318731E691DC98539 PID: 4 ( 0) System --- Browser start & search pages list --- Spybot - Search & Destroy browser pages report, 14/02/2007 20:42:10 HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main\Local Page C:\WINDOWS\system32\blank.htm HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main\Search Page https://www.google.com/?gws_rd=ssl HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main\Search Bar http://www.google.com/toolbar/ie8/sidebar.html HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main\Start Page https://www.google.fr/?gws_rd=ssl HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Search\SearchAssistant http://www.google.com/toolbar/ie8/sidebar.html HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\SearchUrl\@ http://www.google.com/search?q=%s HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Main\Local Page %SystemRoot%\system32\blank.htm HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Main\Search Page http://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Main\Start Page https://fr.yahoo.com/ HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Main\Default_Page_URL https://fr.yahoo.com/ HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Main\Default_Search_URL http://www.google.com/toolbar/ie8/sidebar.html HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Search\SearchAssistant http://www.google.com/toolbar/ie8/sidebar.html HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Search\CustomizeSearch https://www.bing.com/?toHttps=1&redig=8F3F334EA60E4B1CB4D040DCFE393A89{SUB_RFC1766}/srchasst/srchcust.htm --- Winsock Layered Service Provider list --- Protocol 0: MSAFD Tcpip [TCP/IP] GUID: {E70F1AA0-AB8B-11CF-8CA3-00805F48A192} Filename: %SystemRoot%\system32\mswsock.dll Description: Microsoft Windows NT/2k/XP IP protocol DB filename: %SystemRoot%\system32\mswsock.dll DB protocol: MSAFD Tcpip [*] Protocol 1: MSAFD Tcpip [UDP/IP] GUID: {E70F1AA0-AB8B-11CF-8CA3-00805F48A192} Filename: %SystemRoot%\system32\mswsock.dll Description: Microsoft Windows NT/2k/XP IP protocol DB filename: %SystemRoot%\system32\mswsock.dll DB protocol: MSAFD Tcpip [*] Protocol 2: MSAFD Tcpip [RAW/IP] GUID: {E70F1AA0-AB8B-11CF-8CA3-00805F48A192} Filename: %SystemRoot%\system32\mswsock.dll Description: Microsoft Windows NT/2k/XP IP protocol DB filename: %SystemRoot%\system32\mswsock.dll DB protocol: MSAFD Tcpip [*] Protocol 3: RSVP UDP Service Provider GUID: {9D60A9E0-337A-11D0-BD88-0000C082E69A} Filename: %SystemRoot%\system32 svpsp.dll Description: Microsoft Windows NT/2k/XP RVSP DB filename: %SystemRoot%\system32 svpsp.dll DB protocol: RSVP * Service Provider Protocol 4: RSVP TCP Service Provider GUID: {9D60A9E0-337A-11D0-BD88-0000C082E69A} Filename: %SystemRoot%\system32 svpsp.dll Description: Microsoft Windows NT/2k/XP RVSP DB filename: %SystemRoot%\system32 svpsp.dll DB protocol: RSVP * Service Provider Protocol 5: MSAFD NetBIOS [\Device\NetBT_Tcpip_{42DA5E02-AF1B-4E80-A741-39B801B213CB}] SEQPACKET 5 GUID: {8D5F1830-C273-11CF-95C8-00805F48A192} Filename: %SystemRoot%\system32\mswsock.dll Description: Microsoft Windows NT/2k/XP NetBios protocol DB filename: %SystemRoot%\system32\mswsock.dll DB protocol: MSAFD NetBIOS * Protocol 6: MSAFD NetBIOS [\Device\NetBT_Tcpip_{42DA5E02-AF1B-4E80-A741-39B801B213CB}] DATAGRAM 5 GUID: {8D5F1830-C273-11CF-95C8-00805F48A192} Filename: %SystemRoot%\system32\mswsock.dll Description: Microsoft Windows NT/2k/XP NetBios protocol DB filename: %SystemRoot%\system32\mswsock.dll DB protocol: MSAFD NetBIOS * Protocol 7: MSAFD NetBIOS [\Device\NetBT_Tcpip_{C1EFF2BC-7884-4A8A-9DA2-817F4882CFC0}] SEQPACKET 4 GUID: {8D5F1830-C273-11CF-95C8-00805F48A192} Filename: %SystemRoot%\system32\mswsock.dll Description: Microsoft Windows NT/2k/XP NetBios protocol DB filename: %SystemRoot%\system32\mswsock.dll DB protocol: MSAFD NetBIOS * Protocol 8: MSAFD NetBIOS [\Device\NetBT_Tcpip_{C1EFF2BC-7884-4A8A-9DA2-817F4882CFC0}] DATAGRAM 4 GUID: {8D5F1830-C273-11CF-95C8-00805F48A192} Filename: %SystemRoot%\system32\mswsock.dll Description: Microsoft Windows NT/2k/XP NetBios protocol DB filename: %SystemRoot%\system32\mswsock.dll DB protocol: MSAFD NetBIOS * Protocol 9: MSAFD NetBIOS [\Device\NetBT_Tcpip_{98B11C11-1891-4E46-BD77-2482B1BA6021}] SEQPACKET 1 GUID: {8D5F1830-C273-11CF-95C8-00805F48A192} Filename: %SystemRoot%\system32\mswsock.dll Description: Microsoft Windows NT/2k/XP NetBios protocol DB filename: %SystemRoot%\system32\mswsock.dll DB protocol: MSAFD NetBIOS * Protocol 10: MSAFD NetBIOS [\Device\NetBT_Tcpip_{98B11C11-1891-4E46-BD77-2482B1BA6021}] DATAGRAM 1 GUID: {8D5F1830-C273-11CF-95C8-00805F48A192} Filename: %SystemRoot%\system32\mswsock.dll Description: Microsoft Windows NT/2k/XP NetBios protocol DB filename: %SystemRoot%\system32\mswsock.dll DB protocol: MSAFD NetBIOS * Protocol 11: MSAFD NetBIOS [\Device\NetBT_Tcpip_{98A33F9C-7B83-4B01-AD4C-8E7F1C9FC02B}] SEQPACKET 0 GUID: {8D5F1830-C273-11CF-95C8-00805F48A192} Filename: %SystemRoot%\system32\mswsock.dll Description: Microsoft Windows NT/2k/XP NetBios protocol DB filename: %SystemRoot%\system32\mswsock.dll DB protocol: MSAFD NetBIOS * Protocol 12: MSAFD NetBIOS [\Device\NetBT_Tcpip_{98A33F9C-7B83-4B01-AD4C-8E7F1C9FC02B}] DATAGRAM 0 GUID: {8D5F1830-C273-11CF-95C8-00805F48A192} Filename: %SystemRoot%\system32\mswsock.dll Description: Microsoft Windows NT/2k/XP NetBios protocol DB filename: %SystemRoot%\system32\mswsock.dll DB protocol: MSAFD NetBIOS * Protocol 13: MSAFD NetBIOS [\Device\NetBT_Tcpip_{124EE506-7956-4BFB-B0BB-21D66A096682}] SEQPACKET 2 GUID: {8D5F1830-C273-11CF-95C8-00805F48A192} Filename: %SystemRoot%\system32\mswsock.dll Description: Microsoft Windows NT/2k/XP NetBios protocol DB filename: %SystemRoot%\system32\mswsock.dll DB protocol: MSAFD NetBIOS * Protocol 14: MSAFD NetBIOS [\Device\NetBT_Tcpip_{124EE506-7956-4BFB-B0BB-21D66A096682}] DATAGRAM 2 GUID: {8D5F1830-C273-11CF-95C8-00805F48A192} Filename: %SystemRoot%\system32\mswsock.dll Description: Microsoft Windows NT/2k/XP NetBios protocol DB filename: %SystemRoot%\system32\mswsock.dll DB protocol: MSAFD NetBIOS * Protocol 15: MSAFD NetBIOS [\Device\NetBT_Tcpip_{EA1128DA-A21E-4961-838E-0D8569DADE5C}] SEQPACKET 3 GUID: {8D5F1830-C273-11CF-95C8-00805F48A192} Filename: %SystemRoot%\system32\mswsock.dll Description: Microsoft Windows NT/2k/XP NetBios protocol DB filename: %SystemRoot%\system32\mswsock.dll DB protocol: MSAFD NetBIOS * Protocol 16: MSAFD NetBIOS [\Device\NetBT_Tcpip_{EA1128DA-A21E-4961-838E-0D8569DADE5C}] DATAGRAM 3 GUID: {8D5F1830-C273-11CF-95C8-00805F48A192} Filename: %SystemRoot%\system32\mswsock.dll Description: Microsoft Windows NT/2k/XP NetBios protocol DB filename: %SystemRoot%\system32\mswsock.dll DB protocol: MSAFD NetBIOS * Namespace Provider 0: TCP/IP GUID: {22059D40-7E9E-11CF-AE5A-00AA00A7112B} Filename: %SystemRoot%\System32\mswsock.dll Description: Microsoft Windows NT/2k/XP TCP/IP name space provider DB filename: %SystemRoot%\system32\mswsock.dll DB protocol: TCP/IP Namespace Provider 1: NTDS GUID: {3B2637EE-E580-11CF-A555-00C04FD8D4AC} Filename: %SystemRoot%\System32\winrnr.dll Description: Microsoft Windows NT/2k/XP name space provider DB filename: %SystemRoot%\system32\winrnr.dll DB protocol: NTDS Namespace Provider 2: Espace de noms NLA (Network Location Awareness) GUID: {6642243A-3BA8-4AA6-BAA5-2E0BD71FDD83} Filename: %SystemRoot%\System32\mswsock.dll Description: Microsoft Windows NT/2k/XP name space provider DB filename: %SystemRoot%\system32\mswsock.dll DB protocol: NLA-Namespace --- Uninstall list --- (AddressBook) Adobe Photoshop Elements 2.0 2.0 (Adobe Photoshop Elements 2.0) version (major): 2 install location: C:\Program Files\Adobe\Photoshop Elements 2 install source: D:\Adobe Photoshop Elements\ uninstall cmd: C:\WINDOWS\ISUN040C.EXE -f"C:\Program Files\Adobe\Photoshop Elements 2\Uninst.isu" -c"C:\Program Files\Adobe\Photoshop Elements 2\Uninst.dll" publisher: Adobe Systems, Inc. ATI Display Driver 8.123-050405a-022728C (ATI Display Driver) uninstall cmd: rundll32 C:\WINDOWS\system32\atiiiexx.dll,_InfEngUnInstallINFFile_RunDLL@16 -force_restart -flags:0x2010001 -inf_class:DISPLAY -clean avast! Antivirus 4.7 (avast!) version (major): 4 version (minor): 7 install location: C:\PROGRA~1\ALWILS~1\Avast4 install source: C:\DOCUME~1\chantal\Bureau uninstall cmd: rundll32 C:\PROGRA~1\ALWILS~1\Avast4\Setup\setiface.dll,RunSetup publisher: Alwil Software help link: https://www.avast.com/fr-fr/index AVG Anti-Spyware 7.5 (AVGAntiSpyware75) install location: C:\Program Files\Grisoft\AVG Anti-Spyware 7.5 uninstall cmd: C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\Uninstall.exe publisher: Grisoft Ltd. help link: https://www.avg.com/fr-fr/homepage Azureus 2.5.0.4 (Azureus) install location: C:\Program Files\Azureus uninstall cmd: C:\Program Files\Azureus\Uninstall.exe (Branding) Club Internet Service Photos 2.01.0011 (Club Internet Service Photos) uninstall cmd: C:\PROGRA~1\CLUB-I~1\SERVIC~1\UNWISE.EXE C:\PROGRA~1\CLUB-I~1\SERVIC~1\INSTALL.LOG publisher: T-Online International AG SoftV90 Data Fax Modem with SmartCP (CNXT_MODEM_PCI_VEN_1002&DEV_4378&SUBSYS_10921734) uninstall cmd: C:\Program Files\CONEXANT\CNXT_MODEM_PCI_VEN_1002&DEV_4378&SUBSYS_10921734\HXFSETUP.EXE -U -IVEN_1002&DEV_4378&SUBSYS_10921734 Configurateur Modem (ConfigurateurModem) uninstall cmd: "C:\Program Files\Club-Internet\Assistance\uninstall.exe" (Connection Manager) Microsoft Windows XP Video Decoder Checkup Utility (DECCHECK) uninstall cmd: RunDll32 advpack.dll,LaunchINFSection C:\WINDOWS\INF\DECCHECK.inf,Uninstall (DirectAnimation) (DirectDrawEx) DivX Content Uploader 1.0.0 (DivX Content Uploader) install location: C:\Program Files\DivX uninstall cmd: C:\Program Files\DivX\DivXContentUploaderUninstall.exe /CUPLOADER publisher: DivX, Inc. (DXM_Runtime) (Fontcore) GalleryPlayer Images 1.0 (GalleryPlayer Images) uninstall cmd: C:\WINDOWS\GalleryPlayer Images Uninstaller.exe publisher: GalleryPlayer Outil de mise à jour Google 2.0.755.22488 (Google Updater) uninstall cmd: "C:\Program Files\Google\Google Updater\GoogleUpdater.exe" -uninstall publisher: Google Inc. help link: http://pack.google.com:80/pack-support?hl=fr&gl=fr HijackThis 1.99.1 1.99.1 (HijackThis) uninstall cmd: C:\Documents and Settings\chantal\Bureau\HijackThis.exe /uninstall publisher: Soeperman Enterprises Ltd. HP Imaging Device Functions 5.3 5.3 (HP Imaging Device Functions) uninstall cmd: C:\Program Files\HP\Digital Imaging\DigitalImagingMonitor\hpzscr01.exe -datfile hpqbud01.dat publisher: HP help link: https://support.hp.com/us-en?openCLC=true HP Solution Center & Imaging Support Tools 5.3 5.3 (HP Solution Center & Imaging Support Tools) uninstall cmd: C:\Program Files\HP\Digital Imaging\eSupport\hpzscr01.exe -datfile hpqbud05.dat publisher: HP help link: https://support.hp.com/us-en?openCLC=true HP Extended Capabilities 5.3 5.3 (HPExtendedCapabilities) uninstall cmd: C:\Program Files\HP\Digital Imaging\ExtCapUninstall\hpzscr01.exe -datfile hpqhsc01.dat publisher: HP help link: https://support.hp.com/us-en?openCLC=true (ICW) (IE40) (IE4Data) (IE5BAKEX) (IEData) (InstallShield Uninstall Information) QuickTime 7.1 (InstallShield_{C21D5524-A970-42FA-AC8A-59B8C7CDCA31}) version: 117506048 version (major): 7 version (minor): 1 estimated size: 71347 install date: 20060823 install location: C:\Program Files\QuickTime\ install source: C:\DOCUME~1\chantal\LOCALS~1\Temp\_isE9\ uninstall cmd: C:\PROGRA~1\FICHIE~1\INSTAL~1\Driver\11\INTEL3~1\IDriver.exe /M{C21D5524-A970-42FA-AC8A-59B8C7CDCA31} /l1036 publisher: Apple Computer, Inc. contact: Assistance AppleCare help link: https://support.apple.com/fr-fr help telephone: (33) 0825 888 024 Correctif Windows XP - KB873339 20041117.092459 (KB873339) uninstall cmd: C:\WINDOWS\$NtUninstallKB873339$\spuninst\spuninst.exe publisher: Microsoft Corporation help link: https://support.microsoft.com/en-us/help/873339 Correctif Windows XP - KB883529 20040825.095422 (KB883529) uninstall cmd: C:\WINDOWS\$NtUninstallKB883529$\spuninst\spuninst.exe publisher: Microsoft Corporation help link: https://support.microsoft.com/en-us/help/883529 Correctif Windows XP - KB883667 20040812.104354 (KB883667) uninstall cmd: C:\WINDOWS\$NtUninstallKB883667$\spuninst\spuninst.exe publisher: Microsoft Corporation help link: https://support.microsoft.com/en-us/help/883667 (KB884016) (KB884267) Correctif Windows XP - KB884575 20040827.145237 (KB884575) uninstall cmd: C:\WINDOWS\$NtUninstallKB884575$\spuninst\spuninst.exe publisher: Microsoft Corporation help link: https://support.microsoft.com/en-us/help/884575 Correctif Windows XP - KB884883 8 (KB884883) install date: 20060130 uninstall cmd: "C:\WINDOWS\$NtUninstallKB884883$\spuninst\spuninst.exe" publisher: Microsoft Corporation help link: https://support.microsoft.com/en-us/help/884883 (KB885353) Correctif Windows XP - KB885523 20040923.190702 (KB885523) uninstall cmd: C:\WINDOWS\$NtUninstallKB885523$\spuninst\spuninst.exe publisher: Microsoft Corporation help link: https://support.microsoft.com/en-us/help/885523 Correctif Windows XP - KB885835 20041027.181713 (KB885835) uninstall cmd: C:\WINDOWS\$NtUninstallKB885835$\spuninst\spuninst.exe publisher: Microsoft Corporation help link: https://support.microsoft.com/en-us/help/885835/ms04-044-vulnerabilities-in-windows-kernel-and-lsass-could-allow-eleva Correctif Windows XP - KB885836 20041028.173203 (KB885836) uninstall cmd: C:\WINDOWS\$NtUninstallKB885836$\spuninst\spuninst.exe publisher: Microsoft Corporation help link: https://support.microsoft.com/en-us/help/885836/ms04-041-a-vulnerability-in-wordpad-could-allow-code-execution Correctif Windows XP - KB885855 20040930.104104 (KB885855) uninstall cmd: C:\WINDOWS\$NtUninstallKB885855$\spuninst\spuninst.exe publisher: Microsoft Corporation help link: https://support.microsoft.com/en-us/help/885855 Correctif Windows XP - KB885884 20040924.025457 (KB885884) uninstall cmd: C:\WINDOWS\$NtUninstallKB885884$\spuninst\spuninst.exe publisher: Microsoft Corporation help link: https://support.microsoft.com/en-us/help/885884 Correctif Windows XP - KB885894 20040923.185333 (KB885894) uninstall cmd: C:\WINDOWS\$NtUninstallKB885894$\spuninst\spuninst.exe publisher: Microsoft Corporation help link: https://support.microsoft.com/en-us/help/885894 (KB886612) Correctif Windows XP - KB886677 20041015.135028 (KB886677) uninstall cmd: C:\WINDOWS\$NtUninstallKB886677$\spuninst\spuninst.exe publisher: Microsoft Corporation help link: https://support.microsoft.com/en-us/help/886677 Correctif Windows XP - KB886716 2 (KB886716) install date: 20060130 uninstall cmd: "C:\WINDOWS\$NtUninstallKB886716$\spuninst\spuninst.exe" publisher: Microsoft Corporation help link: https://support.microsoft.com/en-us/help/886716 (KB887078) (KB887626) Correctif Windows XP - KB887742 20041103.095002 (KB887742) uninstall cmd: C:\WINDOWS\$NtUninstallKB887742$\spuninst\spuninst.exe publisher: Microsoft Corporation help link: https://support.microsoft.com/en-us/help/887742 Correctif Windows XP - KB887797 20041018.133824 (KB887797) uninstall cmd: C:\WINDOWS\$NtUninstallKB887797$\spuninst\spuninst.exe publisher: Microsoft Corporation help link: https://support.microsoft.com/en-us/help/887797 High Definition Audio - KB888111 20040219.000000 (KB888111WXPSP2) uninstall cmd: "C:\WINDOWS\$NtUninstallKB888111WXPSP2$\spuninst\spuninst.exe" publisher: Microsoft Corporation help link: https://support.microsoft.com/en-us Correctif Windows XP - KB888113 20041116.131036 (KB888113) uninstall cmd: C:\WINDOWS\$NtUninstallKB888113$\spuninst\spuninst.exe publisher: Microsoft Corporation help link: https://support.microsoft.com/en-us/help/888113 Correctif Windows XP - KB888302 20041207.111426 (KB888302) uninstall cmd: C:\WINDOWS\$NtUninstallKB888302$\spuninst\spuninst.exe publisher: Microsoft Corporation help link: https://support.microsoft.com/en-us/help/888302 Correctif Windows XP - KB888402 20041117.151732 (KB888402) uninstall cmd: C:\WINDOWS\$NtUninstallKB888402$\spuninst\spuninst.exe publisher: Microsoft Corporation help link: https://support.microsoft.com/en-us/help/888402 Windows Media Player 10 Hotfix - KB888656 (KB888656) install date: 20060130 uninstall cmd: "C:\WINDOWS\$NtUninstallKB888656$\spuninst\spuninst.exe" publisher: Microsoft Corporation help link: https://support.microsoft.com/en-us/help/888656 Correctif Windows XP - KB889016 20041112.120732 (KB889016) uninstall cmd: C:\WINDOWS\$NtUninstallKB889016$\spuninst\spuninst.exe publisher: Microsoft Corporation help link: https://support.microsoft.com/en-us/help/889016 Correctif pour Windows XP (KB889527) 3 (KB889527) install date: 20060130 uninstall cmd: "C:\WINDOWS\$NtUninstallKB889527$\spuninst\spuninst.exe" publisher: Microsoft Corporation help link: https://support.microsoft.com/en-us/help/889527 Correctif Windows XP - KB889673 20041116.085848 (KB889673) uninstall cmd: C:\WINDOWS\$NtUninstallKB889673$\spuninst\spuninst.exe publisher: Microsoft Corporation help link: https://support.microsoft.com/en-us/help/889673 (KB889858) Mise à jour de sécurité pour Windows XP (KB890046) 1 (KB890046) install date: 20060130 uninstall cmd: "C:\WINDOWS\$NtUninstallKB890046$\spuninst\spuninst.exe" publisher: Microsoft Corporation help link: https://support.microsoft.com/en-us/help/890046 Correctif Windows XP - KB890831 20041206.145031 (KB890831) uninstall cmd: C:\WINDOWS\$NtUninstallKB890831$\spuninst\spuninst.exe publisher: Microsoft Corporation help link: https://support.microsoft.com/en-us/help/890831 Correctif Windows XP - KB890859 1 (KB890859) install date: 20060130 uninstall cmd: "C:\WINDOWS\$NtUninstallKB890859$\spuninst\spuninst.exe" publisher: Microsoft Corporation help link: https://support.microsoft.com/en-us/help/890859 Windows Media Format SDK Hotfix - KB891122 (KB891122) install date: 20060130 uninstall cmd: "C:\WINDOWS\$NtUninstallKB891122$\spuninst\spuninst.exe" publisher: Microsoft Corporation help link: https://support.microsoft.com/en-us/help/891122 Correctif Windows XP - KB891781 20050110.165439 (KB891781) uninstall cmd: C:\WINDOWS\$NtUninstallKB891781$\spuninst\spuninst.exe publisher: Microsoft Corporation help link: https://support.microsoft.com/en-us/help/891781 (KB892313) Correctif Windows XP - KB892627 20050201.181426 (KB892627) uninstall cmd: C:\WINDOWS\$NtUninstallKB892627$\spuninst\spuninst.exe publisher: Microsoft Corporation help link: https://support.microsoft.com/en-us/help/892627 Correctif Windows XP - KB893056 20050126.164313 (KB893056) uninstall cmd: C:\WINDOWS\$NtUninstallKB893056$\spuninst\spuninst.exe publisher: Microsoft Corporation help link: https://support.microsoft.com/en-us/help/893056 Mise à jour de sécurité pour Windows XP (KB893066) 2 (KB893066) install date: 20060130 uninstall cmd: "C:\WINDOWS\$NtUninstallKB893066$\spuninst\spuninst.exe" publisher: Microsoft Corporation help link: https://support.microsoft.com/en-us/help/893066/ms05-019-vulnerabilities-in-tcp-ip-could-allow-remote-code-execution-a (KB893240) (KB893241) Correctif pour Windows XP (KB893357) 2 (KB893357) install date: 20060130 uninstall cmd: "C:\WINDOWS\$NtUninstallKB893357$\spuninst\spuninst.exe" publisher: Microsoft Corporation help link: https://support.microsoft.com/en-us/help/893357 Mise à jour de sécurité pour Windows XP (KB893756) 1 (KB893756) install date: 20060130 uninstall cmd: "C:\WINDOWS\$NtUninstallKB893756$\spuninst\spuninst.exe" publisher: Microsoft Corporation help link: https://support.microsoft.com/en-us/help/893756 3.1 (KB893803) help link: https://support.microsoft.com/en-us/help/893803/windows-installer-3-1-v2-3-1-4000-2435-is-available Windows Installer 3.1 (KB893803) (KB893803v2) uninstall cmd: "C:\WINDOWS\$MSI31Uninstall_KB893803v2$\spuninst\spuninst.exe" publisher: Microsoft Corporation help link: https://support.microsoft.com/en-us/help/893803/windows-installer-3-1-v2-3-1-4000-2435-is-available (KB895181) (KB895316) (KB895572) Correctif pour Windows XP (KB896256) 3 (KB896256) install date: 20060130 uninstall cmd: "C:\WINDOWS\$NtUninstallKB896256$\spuninst\spuninst.exe" publisher: Microsoft Corporation help link: https://support.microsoft.com/en-us/help/896256 Mise à jour de sécurité pour Windows XP (KB896358) 1 (KB896358) install date: 20060130 uninstall cmd: "C:\WINDOWS\$NtUninstallKB896358$\spuninst\spuninst.exe" publisher: Microsoft Corporation help link: https://support.microsoft.com/en-us/help/896358/ms05-026-a-vulnerability-in-html-help-could-allow-remote-code-executio Mise à jour de sécurité pour Windows XP (KB896422) 1 (KB896422) install date: 20060130 uninstall cmd: "C:\WINDOWS\$NtUninstallKB896422$\spuninst\spuninst.exe" publisher: Microsoft Corporation help link: https://support.microsoft.com/en-us/help/896422/ms05-027-vulnerability-in-server-message-block-could-allow-remote-code Mise à jour de sécurité pour Windows XP (KB896423) 1 (KB896423) install date: 20060130 uninstall cmd: "C:\WINDOWS\$NtUninstallKB896423$\spuninst\spuninst.exe" publisher: Microsoft Corporation help link: https://support.microsoft.com/en-us/windows?ui=en-US&rs=en-001&ad=US Mise à jour de sécurité pour Windows XP (KB896424) 1 (KB896424) install date: 20060130 uninstall cmd: "C:\WINDOWS\$NtUninstallKB896424$\spuninst\spuninst.exe" publisher: Microsoft Corporation help link: https://support.microsoft.com/en-us/help/896424 Mise à jour pour Windows XP (KB896427) 3 (KB896427) install date: 20060130 uninstall cmd: "C:\WINDOWS\$NtUninstallKB896427$\spuninst\spuninst.exe" publisher: Microsoft Corporation help link: https://support.microsoft.com/en-us/help/896427 Mise à jour de sécurité pour Windows XP (KB896428) 1 (KB896428) install date: 20060130 uninstall cmd: "C:\WINDOWS\$NtUninstallKB896428$\spuninst\spuninst.exe" publisher: Microsoft Corporation help link: https://support.microsoft.com/en-us/help/896428 Correctif Windows XP - KB896626 2 (KB896626) install date: 20060130 uninstall cmd: "C:\WINDOWS\$NtUninstallKB896626$\spuninst\spuninst.exe" publisher: Microsoft Corporation help link: https://support.microsoft.com/en-us/help/896626 (KB897586) Mise à jour pour Windows XP (KB897663) 1 (KB897663) install date: 20060130 uninstall cmd: "C:\WINDOWS\$NtUninstallKB897663$\spuninst\spuninst.exe" publisher: Microsoft Corporation help link: https://support.microsoft.com/en-us/help/897663/ Mise à jour de sécurité pour Step by Step Interactive Training (KB898458) 20050502.101010 (KB898458) uninstall cmd: "C:\WINDOWS\$NtUninstallKB898458$\spuninst\spuninst.exe" publisher: Microsoft Corporation help link: https://support.microsoft.com/en-us/help/898458 Mise à jour pour Windows XP (KB898461) 1 (KB898461)

Regis59 · Answer

Salut

Scan ton PC avec avg anti spyware et copie colle le rapport

a+

Utilisateur anonyme · Answer

ok, voici le rapport de AVG obtenu hier après spybot et hijackthis. 
merci

---------------------------------------------------------
AVG Anti-Spyware - Rapport d'analyse
---------------------------------------------------------

 + Créé à:	20:06:34 14/02/2007

 + Résultat de l'analyse:	



C:\System Volume Information\_restore{61D8C734-E9CF-4617-964C-AD03FB898A5C}\RP1\A0000545.exe -> Dropper.Agent.bct : Nettoyé et sauvegardé (mise en quarantaine).
C:\Documents and Settings\chantal\Cookies\chantal@247realmedia[2].txt -> TrackingCookie.247realmedia : Nettoyé.
C:\Documents and Settings\chantal\Cookies\chantal@atdmt[2].txt -> TrackingCookie.Atdmt : Nettoyé.
C:\Documents and Settings\chantal\Cookies\chantal@bluestreak[2].txt -> TrackingCookie.Bluestreak : Nettoyé.
C:\Documents and Settings\chantal\Cookies\chantal@doubleclick[1].txt -> TrackingCookie.Doubleclick : Nettoyé.
C:\Documents and Settings\chantal\Cookies\chantal@weborama[2].txt -> TrackingCookie.Weborama : Nettoyé.
C:\Documents and Settings\chantal\Cookies\chantal@ad.yieldmanager[2].txt -> TrackingCookie.Yieldmanager : Nettoyé.


Fin du rapport

Regis59 · Answer

Salut

relance spybot et copie colle le rapport

a+

Regis59 · Answer

Salut

Juste apres l avoir corrigé les soucis, relance un scan, c est clean?

A+

Regis59 · Answer

Salut

Ce sont des cookies, c est normal.
Des cookies sont des traces de surfs donc lorsque tu surfs, les cookies apparaissent.
Cependant, tu dois quand meme avoir une mauvaise configuration.

Installe un pare feu:
firewall

A+

Utilisateur anonyme · Answer

Bonjour, 

excuse moi, mais si ce sont de simples cookies, pourquoi sont'ils detectés (eux et pas d'autres) par spyware ou spybot et ce systématiquement? 
quant au firewall, celui de windows est activé sur mon poste, mais peut-être que ça ne suffit pas? est-ce que tu peux m'en conseiller un ? et est-ce qu'AVAST fait firewall? 

merci encore pour tout

Regis59 · Answer

Salut

Pour informations sur les cookies, lire ceci:
cookies

Non celui de windows ne suffit pas puisque il en est pas vraiment un par definition...
Je te conseille Zone Alarm.
Avast ne fait que antivirus. Et non pare feu (ou en anglais firewall)

A+

Regis59 · Answer

Salut

D'accord, y a pas de quoi !
Si tu as besoin, n'hésite pas !

Bon courage ;)

Bonne continuation.

[Spyware] Impossible éradiquer Doubleclick

13 réponses

Discussions similaires

Newsletters