spybot se bloque

Modérateur: Modérateurs et Modératrices

Messagede dommab » 04 Juin 2008, 10:06

bonjour,

quelqu'un peux t-il m'aider svp ??

merci d'avance

cordialement

dommab
dommab
 
Messages: 10
Inscription: 27 Mai 2008, 13:23

Messagede nickW » 04 Juin 2008, 20:45

Bonsoir,

Quels sont les autres logiciels de sécurité installés et actifs?

Quels sont les modules de surveillance en temps réel activés?

A suivre,
nickW - Image
30/07/2012: Plus de désinfection de PC jusqu'à nouvel ordre.
Pas de demande d'analyse de log en MP (Message Privé)
Mes configs
Avatar de l’utilisateur
nickW
Modérateur
 
Messages: 21698
Inscription: 20 Mai 2004, 17:41
Localisation: Dordogne/Île de France

Messagede dommab » 05 Juin 2008, 14:40

bonjour,
je suis désolée, mais je ne sais pas comment trouver:

Quels sont les autres logiciels de sécurité installés et actifs?

Quels sont les modules de surveillance en temps réel activés?

pour tout dire je n'y comprends rien, merci de m'éclairer

cordialement

dommab
dommab
 
Messages: 10
Inscription: 27 Mai 2008, 13:23

Messagede dommab » 13 Juin 2008, 14:10

sniff, sniff

pas de réponse ??

cordialement
dommab : :cry: :cry:
dommab
 
Messages: 10
Inscription: 27 Mai 2008, 13:23

Messagede nickW » 13 Juin 2008, 23:02

Bonsoir,

Désactiver la protection résidente de BitDefender:
Dans BitDefender, cliquer sur Antivirus---->Résident
Décocher la case située devant Protection en temps réel activée.

Ensuite, relancer une analyse avec Spybot-S&D


Si cette analyse échoue, peux-tu faire ceci:

*- Faire démarrer le PC en mode sans échec
*- Lancer une analyse via Spybot-S&D
*- Dans Spybot-S&D, Outils---->Voir le rapport
Décocher l'option
*- "Ne pas inclure d'éléments désactivés ou connus comme légaux."

Cliquer (en haut) sur le bouton "Voir le rapport".
Attendre l'affichage dudit rapport.
Appuyer sur "Exporter"; dans la boîte de dialogue qui apparaît, choisir un emplacement et un nom de sauvegarde pour le fichier (en conservant le Type "Fichiers textes").
Envoyer le contenu de ce fichier en réponse.

Penser à réactiver la protection résidente de BitDefender!

A suivre,
nickW - Image
30/07/2012: Plus de désinfection de PC jusqu'à nouvel ordre.
Pas de demande d'analyse de log en MP (Message Privé)
Mes configs
Avatar de l’utilisateur
nickW
Modérateur
 
Messages: 21698
Inscription: 20 Mai 2004, 17:41
Localisation: Dordogne/Île de France

Messagede dommab » 15 Juin 2008, 18:21

bonsoir nickw,
la suite:


comme prévu la 1ère analyse a échoué.
l'analyse en mode sans échec aussi ,donc voici le rapport demandé


--- Spybot - Search & Destroy version: 1.5.2 (build: 20080128) ---

2008-01-28 blindman.exe (1.0.0.7)
2008-01-28 SDDelFile.exe (1.0.2.4)
2008-01-28 SDMain.exe (1.0.0.5)
2007-10-07 SDShred.exe (1.0.1.2)
2008-01-28 SDUpdate.exe (1.0.8.8)
2008-01-28 SDWinSec.exe (1.0.0.11)
2008-01-28 SpybotSD.exe (1.5.2.20)
2008-01-28 TeaTimer.exe (1.5.2.16)
2008-06-15 unins000.exe (51.49.0.0)
2008-01-28 Update.exe (1.4.0.6)
2008-01-28 advcheck.dll (1.5.4.5)
2007-04-02 aports.dll (2.1.0.0)
2007-11-17 DelZip179.dll (1.79.7.4)
2008-01-28 SDFiles.dll (1.5.1.19)
2008-01-28 SDHelper.dll (1.5.0.11)
2008-01-28 Tools.dll (2.1.3.3)
2008-06-03 Includes\Adware.sbi
2008-06-10 Includes\AdwareC.sbi
2008-06-03 Includes\Cookies.sbi
2008-06-03 Includes\Dialer.sbi
2008-06-10 Includes\DialerC.sbi
2008-06-03 Includes\HeavyDuty.sbi
2008-06-04 Includes\Hijackers.sbi
2008-06-03 Includes\HijackersC.sbi
2008-06-03 Includes\Keyloggers.sbi
2008-06-10 Includes\KeyloggersC.sbi
2004-11-29 Includes\LSP.sbi
2008-06-03 Includes\Malware.sbi
2008-06-11 Includes\MalwareC.sbi
2008-06-03 Includes\PUPS.sbi
2008-06-10 Includes\PUPSC.sbi
2007-11-07 Includes\Revision.sbi
2008-06-10 Includes\Security.sbi
2008-06-10 Includes\SecurityC.sbi
2008-06-03 Includes\Spybots.sbi
2008-06-03 Includes\SpybotsC.sbi
2008-06-03 Includes\Spyware.sbi
2008-06-03 Includes\SpywareC.sbi
2008-06-03 Includes\Tracks.uti
2008-06-11 Includes\Trojans.sbi
2008-06-11 Includes\TrojansC.sbi
2008-03-04 Plugins\Chai.dll
2008-03-05 Plugins\Fennel.dll
2008-02-26 Plugins\Mate.dll
2007-12-24 Plugins\TCPIPAddress.dll


--- System information ---
Windows 98 (Build: 2222) (4.10.2222)
/ Windows XP / SP4: Mise à jour de sécurité pour Windows XP (KB951698)
/ Windows XP / SP4: Mise à jour de sécurité pour Windows XP (KB951376)
/ Windows XP / SP4: Mise à jour de sécurité pour Windows XP (KB950762)
/ Windows XP / SP4: Mise à jour de sécurité pour Windows XP (KB950760)
/ Windows XP / SP3: Windows XP Service Pack 3
/ Windows XP / SP2: Windows XP Service Pack 2
/ Windows XP / SP0: Mise à jour de sécurité pour Windows Internet Explorer 7 (KB950759)
/ Windows XP / SP0: Correctif pour Windows Internet Explorer 7 (KB947864)
/ Windows XP / SP0: Mise à jour de sécurité pour Windows Internet Explorer 7 (KB942615)
/ Windows XP / SP0: Mise à jour de sécurité pour Windows Internet Explorer 7 (KB939653)
/ Windows XP / SP0: Mise à jour de sécurité pour Windows Internet Explorer 7 (KB938127)
/ Windows XP / SP0: Mise à jour de sécurité pour Windows Internet Explorer 7 (KB929969)
/ Windows XP / SP0: Mise à jour de sécurité pour Windows Internet Explorer 7 (KB928090)
/ Windows XP: Mise à jour de sécurité pour Windows XP (KB941569)
/ Windows Media Player 6.4: Mise à jour de sécurité pour Lecteur Windows Media 6.4 (KB925398)
/ Windows Media Player 11: Correctif pour Lecteur Windows Media 11 (KB939683)
/ Windows Media Player 11: Mise à jour de sécurité pour Lecteur Windows Media 11 (KB936782)
/ Windows Media Player 10: Mise à jour de sécurité pour Lecteur Windows Media 10 (KB911565)
/ Windows Media Player / SP0: Correctif pour le Lecteur Windows Media [Voir Q828026 pour plus d'informations]
/ Windows Media Player: Correctif pour le Lecteur Windows Media [Voir Q828026 pour plus d'informations]
/ Windows Media Format 11 SDK: Hotfix for Windows Media Format 11 SDK (KB929399)
/ Windows / SP1: Microsoft National Language Support Downlevel APIs
/ Windows / SP1: Microsoft Internationalized Domain Names Mitigation APIs
/ Step By Step Interactive Training / SP2: Mise à jour de sécurité pour Step by Step Interactive Training (KB923723)
/ Step By Step Interactive Training / SP2: Mise à jour de sécurité pour Step by Step Interactive Training (KB898458)
/ MSXML4SP2: Security update for MSXML4 SP2 (KB936181)
/ MSXML4SP2: FIX: ASP stops responding when calling Response.Redirect to another server using msxml4 sp2
/ MSXML4SP2: FIX: ASP stops responding when calling Response.Redirect to another server using msxml4 sp2
/ .NETFramework / 1.1: Microsoft .NET Framework 1.1 Service Pack 1 (KB867460)
/ .NETFramework / 1.1: Microsoft .NET Framework 1.1 Hotfix (KB928366)


--- Startup entries list ---
Located: HK_LM:Run, Activboard
command: c:\apps\ABoard\ABoard.exe
file: c:\apps\ABoard\ABoard.exe
size: 24576
MD5: 84DA056C4331B17A5AAFACFF49C3BBA3

Located: HK_LM:Run, Adobe Reader Speed Launcher
command: "C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe"
file: C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe
size: 40048
MD5: 66D4456C920E21BD2188F8CC33680DF5

Located: HK_LM:Run, AdslTaskBar
command: rundll32.exe stmctrl.dll,TaskBar
file:
size: 0
MD5: D41D8CD98F00B204E9800998ECF8427E
Warning: if the file is actually larger than 0 bytes,
the checksum could not be properly calculated!

Located: HK_LM:Run, BDAgent
command: "C:\Program Files\BitDefender\BitDefender 2008\bdagent.exe"
file: C:\Program Files\BitDefender\BitDefender 2008\bdagent.exe
size: 360448
MD5: 7624F60BC48976C72419D82244AB4C22

Located: HK_LM:Run, BitDefender Antiphishing Helper
command: "C:\Program Files\BitDefender\BitDefender 2008\IEShow.exe"
file: C:\Program Files\BitDefender\BitDefender 2008\IEShow.exe
size: 61440
MD5: 2E3B46B0A00F17DA31776664D0F2FFF3

Located: HK_LM:Run, BluetoothAuthenticationAgent
command: rundll32.exe bthprops.cpl,,BluetoothAuthenticationAgent
file:
size: 0
MD5: D41D8CD98F00B204E9800998ECF8427E
Warning: if the file is actually larger than 0 bytes,
the checksum could not be properly calculated!

Located: HK_LM:Run, HP Component Manager
command: "C:\Program Files\HP\hpcoretech\hpcmpmgr.exe"
file: C:\Program Files\HP\hpcoretech\hpcmpmgr.exe
size: 241664
MD5: B75B654EE1DA99876461B24597AE3FF3

Located: HK_LM:Run, HP Software Update
command: "C:\Program Files\Hewlett-Packard\HP Software Update\HPWuSchd2.exe"
file: C:\Program Files\Hewlett-Packard\HP Software Update\HPWuSchd2.exe
size: 49152
MD5: 6AD9DCB0257B10EA458165F70634DABC

Located: HK_LM:Run, HPDJ Taskbar Utility
command: C:\WINDOWS\system32\spool\drivers\w32x86\3\hpztsb10.exe
file: C:\WINDOWS\system32\spool\drivers\w32x86\3\hpztsb10.exe
size: 172032
MD5: FD32127449AF0B96EBECA3CAAB74E423

Located: HK_LM:Run, IMJPMIG8.1
command: "C:\WINDOWS\IME\imjp8_1\IMJPMIG.EXE /Spoil /RemAdvDef /Migration32"
file: C:\WINDOWS\IME\imjp8_1\IMJPMIG.EXE
size: 208952
MD5: 7BBE4CF421AECC7F0226EDD75F12079F

Located: HK_LM:Run, iTunesHelper
command: "C:\Program Files\iTunes\iTunesHelper.exe"
file: C:\Program Files\iTunes\iTunesHelper.exe
size: 267048
MD5: 04A9F0C58B170F30445BCC0683EF9FFC

Located: HK_LM:Run, LyraHD2TrayApp
command: "C:\Program Files\Thomson\Lyra Jukebox\LyraHDTrayApp\LYRAHD2TrayApp.exe"
file: C:\Program Files\Thomson\Lyra Jukebox\LyraHDTrayApp\LYRAHD2TrayApp.exe
size: 290816
MD5: 693D2DB2B86A1B2E474F2B8CF84F27A6

Located: HK_LM:Run, MSConfig
command: C:\WINDOWS\PCHealth\HelpCtr\Binaries\MSConfig.exe /auto
file: C:\WINDOWS\PCHealth\HelpCtr\Binaries\MSConfig.exe
size: 172544
MD5: AF0715A82E358FBB1A6F7817CBBB4DC0

Located: HK_LM:Run, PCMService
command: "c:\Apps\Powercinema\PCMService.exe"
file: c:\Apps\Powercinema\PCMService.exe
size: 127118
MD5: C31A0AF9B3702C5C2A3FA4BDCC37A76F

Located: HK_LM:Run, PHIME2002A
command: C:\WINDOWS\system32\IME\TINTLGNT\TINTSETP.EXE /IMEName
file: C:\WINDOWS\system32\IME\TINTLGNT\TINTSETP.EXE
size: 455168
MD5: 024DC0F68DF5FD6AE9DD82DFBAF479D6

Located: HK_LM:Run, PHIME2002ASync
command: C:\WINDOWS\system32\IME\TINTLGNT\TINTSETP.EXE /SYNC
file: C:\WINDOWS\system32\IME\TINTLGNT\TINTSETP.EXE
size: 455168
MD5: 024DC0F68DF5FD6AE9DD82DFBAF479D6

Located: HK_LM:Run, QuickTime Task
command: "C:\Program Files\QuickTime\QTTask.exe" -atboottime
file: C:\Program Files\QuickTime\QTTask.exe
size: 413696
MD5: 6DF76965A0FB8237E9C3B3CAB9815EC2

Located: HK_LM:Run, Share-to-Web Namespace Daemon
command: C:\Program Files\Hewlett-Packard\HP Share-to-Web\hpgs2wnd.exe
file: C:\Program Files\Hewlett-Packard\HP Share-to-Web\hpgs2wnd.exe
size: 69632
MD5: D5BC63D2822B8E244E53D2FF8078CC6B

Located: HK_LM:Run, SoundMan
command: SOUNDMAN.EXE
file: C:\WINDOWS\SOUNDMAN.EXE
size: 577536
MD5: 80FD4D46B0E9B620CF757A9A5C789329

Located: HK_LM:Run, SunJavaUpdateSched
command: "C:\Program Files\Java\jre1.6.0_06\bin\jusched.exe"
file: C:\Program Files\Java\jre1.6.0_06\bin\jusched.exe
size: 144784
MD5: E8C086DA635EB410FEF106CB279ADFBF

Located: HK_LM:Run, TkBellExe
command: "C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe" -osboot
file: C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe
size: 180269
MD5: 77ED13FD3196EBC7311CCD6899C7488C

Located: HK_LM:Run, Ulead AutoDetector v2
command: C:\Program Files\Fichiers communs\Ulead Systems\AutoDetector\monitor.exe
file: C:\Program Files\Fichiers communs\Ulead Systems\AutoDetector\monitor.exe
size: 90112
MD5: CAA71374014DA23AF7E10F15EA975BDF

Located: HK_LM:Run, UnlockerAssistant
command: "C:\Program Files\Unlocker\UnlockerAssistant.exe"
file: C:\Program Files\Unlocker\UnlockerAssistant.exe
size: 15872
MD5: 3FFE8752B77382C5050006C31781D05A

Located: HK_LM:Run, WinampAgent
command: "C:\Program Files\Winamp\winampa.exe"
file: C:\Program Files\Winamp\winampa.exe
size: 36352
MD5: 93146CD558AE246116BA3315E15505B7

Located: HK_CU:Run, CTFMON.EXE
where: S-1-5-18...
command: C:\WINDOWS\system32\CTFMON.EXE
file: C:\WINDOWS\system32\CTFMON.EXE
size: 15360
MD5: 59DC5BB82E4C8E0B3EADCFDBC44BA6E4

Located: HK_CU:Run, ctfmon.exe
where: S-1-5-21-2699397896-1493333324-3233896502-1006...
command: C:\WINDOWS\system32\ctfmon.exe
file: C:\WINDOWS\system32\ctfmon.exe
size: 15360
MD5: 59DC5BB82E4C8E0B3EADCFDBC44BA6E4

Located: HK_CU:Run, IncrediMail
where: S-1-5-21-2699397896-1493333324-3233896502-1006...
command: C:\Program Files\IncrediMail\bin\IncMail.exe /c
file: C:\Program Files\IncrediMail\bin\IncMail.exe
size: 214456
MD5: 1C074E7D14D195DD575863603B6770B9

Located: HK_CU:Run, MsnMsgr
where: S-1-5-21-2699397896-1493333324-3233896502-1006...
command: "C:\Program Files\MSN Messenger\MsnMsgr.Exe" /background
file: C:\Program Files\MSN Messenger\MsnMsgr.Exe
size: 5674352
MD5: A7EFC7EA7EF6FB022A8A95813EDCBE5D

Located: HK_CU:Run, Orb
where: S-1-5-21-2699397896-1493333324-3233896502-1006...
command: "C:\Program Files\Winamp Remote\bin\OrbTray.exe" /background
file: C:\Program Files\Winamp Remote\bin\OrbTray.exe
size: 495616
MD5: CEDC102DEB888A78B22110734F07F153

Located: HK_CU:Run, SpybotSD TeaTimer
where: S-1-5-21-2699397896-1493333324-3233896502-1006...
command: C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe
file: C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe
size: 2097488
MD5: A9A5DB6AC3721BE698B996913693D73F

Located: HK_CU:Run, CTFMON.EXE
where: S-1-5-20...
command: C:\WINDOWS\system32\CTFMON.EXE
file: C:\WINDOWS\system32\CTFMON.EXE
size: 15360
MD5: 59DC5BB82E4C8E0B3EADCFDBC44BA6E4

Located: HK_CU:Run, CTFMON.EXE
where: S-1-5-19...
command: C:\WINDOWS\system32\CTFMON.EXE
file: C:\WINDOWS\system32\CTFMON.EXE
size: 15360
MD5: 59DC5BB82E4C8E0B3EADCFDBC44BA6E4

Located: HK_CU:Run, CTFMON.EXE
where: .DEFAULT...
command: C:\WINDOWS\system32\CTFMON.EXE
file: C:\WINDOWS\system32\CTFMON.EXE
size: 15360
MD5: 59DC5BB82E4C8E0B3EADCFDBC44BA6E4

Located: Démarrage (tous utilisateurs), Contrôleur de calendrier Ulead.lnk
where: D:\Documents and Settings\All Users\Menu Démarrer\Programmes\Démarrage...
command: C:\Program Files\Ulead Systems\Ulead Photo Express 4.0 SE\CalCheck.exe
file: C:\Program Files\Ulead Systems\Ulead Photo Express 4.0 SE\CalCheck.exe
size: 69632
MD5: E69FC2484C3D9C648C5C275F7F8C5287

Located: Démarrage (tous utilisateurs), Microsoft Office.lnk
where: D:\Documents and Settings\All Users\Menu Démarrer\Programmes\Démarrage...
command: C:\Program Files\Microsoft Office\Office\OSA9.EXE
file: C:\Program Files\Microsoft Office\Office\OSA9.EXE
size: 65588
MD5: 47C9CC072E569EF7606E495EC7ACBE43

Located: Démarrage (tous utilisateurs), WinZip Quick Pick.lnk
where: D:\Documents and Settings\All Users\Menu Démarrer\Programmes\Démarrage...
command: C:\Program Files\WinZip\WZQKPICK.EXE
file: C:\Program Files\WinZip\WZQKPICK.EXE
size: 118784
MD5: 04915CAD50BC2303F443C30F7549567D

Located: Démarrage (utilisateur), Contrôleur de calendrier Ulead.lnk
where: D:\Documents and Settings\All Users\Menu Démarrer\Programmes\Démarrage...
command: C:\Program Files\Ulead Systems\Ulead Photo Express 4.0 SE\CalCheck.exe
file: C:\Program Files\Ulead Systems\Ulead Photo Express 4.0 SE\CalCheck.exe
size: 69632
MD5: E69FC2484C3D9C648C5C275F7F8C5287

Located: Démarrage (utilisateur), Microsoft Office.lnk
where: D:\Documents and Settings\All Users\Menu Démarrer\Programmes\Démarrage...
command: C:\Program Files\Microsoft Office\Office\OSA9.EXE
file: C:\Program Files\Microsoft Office\Office\OSA9.EXE
size: 65588
MD5: 47C9CC072E569EF7606E495EC7ACBE43

Located: Démarrage (utilisateur), WinZip Quick Pick.lnk
where: D:\Documents and Settings\All Users\Menu Démarrer\Programmes\Démarrage...
command: C:\Program Files\WinZip\WZQKPICK.EXE
file: C:\Program Files\WinZip\WZQKPICK.EXE
size: 118784
MD5: 04915CAD50BC2303F443C30F7549567D

Located: Démarrage (utilisateur), aide mémoire.lnk
where: D:\Documents and Settings\Mabrut Dominique\Menu Démarrer\Programmes\Démarrage...
command: C:\Program Files\Aide mémoire\TrayIcon.exe
file: C:\Program Files\Aide mémoire\TrayIcon.exe
size: 34816
MD5: 095AB6EAC61948B7EE52E4268AA66325

Located: Démarrage (utilisateur), Rappels Adresses.lnk
where: D:\Documents and Settings\Mabrut Dominique\Menu Démarrer\Programmes\Démarrage...
command: C:\Program Files\3B-Editions\Adresses\rappels.exe
file: C:\Program Files\3B-Editions\Adresses\rappels.exe
size: 20480
MD5: 70AAECCA9086C34C14CD4B5FB442CDA8

Located: WinLogon, wlballoon
command: wlnotify.dll
file: wlnotify.dll
size: 0
MD5: D41D8CD98F00B204E9800998ECF8427E
Warning: if the file is actually larger than 0 bytes,
the checksum could not be properly calculated!

Located: WinLogon, WgaLogon
command: WgaLogon.dll
file: WgaLogon.dll
size: 0
MD5: D41D8CD98F00B204E9800998ECF8427E
Warning: if the file is actually larger than 0 bytes,
the checksum could not be properly calculated!

Located: WinLogon, termsrv
command: wlnotify.dll
file: wlnotify.dll
size: 0
MD5: D41D8CD98F00B204E9800998ECF8427E
Warning: if the file is actually larger than 0 bytes,
the checksum could not be properly calculated!

Located: WinLogon, SensLogn
command: WlNotify.dll
file: WlNotify.dll
size: 0
MD5: D41D8CD98F00B204E9800998ECF8427E
Warning: if the file is actually larger than 0 bytes,
the checksum could not be properly calculated!

Located: WinLogon, sclgntfy
command: sclgntfy.dll
file: sclgntfy.dll
size: 0
MD5: D41D8CD98F00B204E9800998ECF8427E
Warning: if the file is actually larger than 0 bytes,
the checksum could not be properly calculated!

Located: WinLogon, Schedule
command: wlnotify.dll
file: wlnotify.dll
size: 0
MD5: D41D8CD98F00B204E9800998ECF8427E
Warning: if the file is actually larger than 0 bytes,
the checksum could not be properly calculated!

Located: WinLogon, ScCertProp
command: wlnotify.dll
file: wlnotify.dll
size: 0
MD5: D41D8CD98F00B204E9800998ECF8427E
Warning: if the file is actually larger than 0 bytes,
the checksum could not be properly calculated!

Located: WinLogon, dimsntfy
command: C:\WINDOWS\System32\dimsntfy.dll
file: C:\WINDOWS\System32\dimsntfy.dll
size: 0
MD5: D41D8CD98F00B204E9800998ECF8427E
Warning: if the file is actually larger than 0 bytes,
the checksum could not be properly calculated!

Located: WinLogon, cscdll
command: cscdll.dll
file: cscdll.dll
size: 0
MD5: D41D8CD98F00B204E9800998ECF8427E
Warning: if the file is actually larger than 0 bytes,
the checksum could not be properly calculated!

Located: WinLogon, cryptnet
command: cryptnet.dll
file: cryptnet.dll
size: 0
MD5: D41D8CD98F00B204E9800998ECF8427E
Warning: if the file is actually larger than 0 bytes,
the checksum could not be properly calculated!

Located: WinLogon, crypt32chain
command: crypt32.dll
file: crypt32.dll
size: 0
MD5: D41D8CD98F00B204E9800998ECF8427E
Warning: if the file is actually larger than 0 bytes,
the checksum could not be properly calculated!

Located: WinLogon, AtiExtEvent
command: Ati2evxx.dll
file: Ati2evxx.dll
size: 0
MD5: D41D8CD98F00B204E9800998ECF8427E
Warning: if the file is actually larger than 0 bytes,
the checksum could not be properly calculated!



--- Browser helper object list ---
{AA58ED58-01DD-4d91-8333-CF10577473F7} (Google Toolbar Helper)
location: HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\
BHO name:
CLSID name: Google Toolbar Helper
description: Google toolbar
classification: Open for discussion
known filename: googletoolbar.dll<br>googletoolbar*.dll<br>(* = number)<br>googletoolbar_en_*.**-big.dll<br>Googletoolbar_en_*.*.**-deleon.dll
info link: http://toolbar.google.com/
info source: TonyKlein
Path: c:\program files\google\
Long name: GoogleToolbar4.dll
Short name: GOOGLE~4.DLL
Date (created): 31/01/2007 16:07:56
Date (last access): 15/06/2008 18:29:48
Date (last write): 20/01/2007 00:56:04
Filesize: 2436160
Attributes: readonly archive
MD5: 6D44E0C3B43D27484FBB355E470C4188
CRC32: 2DE875CD
Version: 4.0.1601.4978

{9030D464-4C02-4ABF-8ECC-5164760863C6} (Windows Live Sign-in Helper)
location: HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\
BHO name:
CLSID name: Windows Live Sign-in Helper
Path: C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\
Long name: WindowsLiveLogin.dll
Short name: WINDOW~1.DLL
Date (created): 17/04/2006 13:32:58
Date (last access): 15/06/2008 18:29:48
Date (last write): 17/04/2006 13:32:58
Filesize: 323904
Attributes: archive
MD5: 4D834364B09155778A3330A67EBD4621
CRC32: D2CB2586
Version: 4.0.248.1

{761497BB-D6F0-462C-B6EB-D4DAF1D92D43} (SSVHelper Class)
location: HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\
BHO name:
CLSID name: SSVHelper Class
Path: C:\Program Files\Java\jre1.6.0_06\bin\
Long name: ssv.dll
Short name:
Date (created): 26/05/2008 19:58:08
Date (last access): 15/06/2008 18:59:08
Date (last write): 25/03/2008 04:28:02
Filesize: 509328
Attributes: archive
MD5: CA1E733B9B003530C38390EDF7E05B61
CRC32: 980493E3
Version: 6.0.60.2

{53707962-6F74-2D53-2644-206D7942484F} (Spybot-S&D IE Protection)
location: HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\
BHO name:
CLSID name: Spybot-S&D IE Protection
description: Spybot-S&D IE Browser plugin
classification: Legitimate
known filename: SDhelper.dll
info link: http://spybot.eon.net.au/
info source: Patrick M. Kolla
Path: C:\PROGRA~1\SPYBOT~1\
Long name: SDHelper.dll
Short name:
Date (created): 15/06/2008 16:45:44
Date (last access): 15/06/2008 18:29:34
Date (last write): 28/01/2008 11:43:28
Filesize: 1554256
Attributes: archive
MD5: 5248E02EFBCB64D328647CD00E384B85
CRC32: C1B426A9
Version: 1.5.0.11

{06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} (Aide pour le lien d'Adobe PDF Reader)
location: HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\
BHO name:
CLSID name: Aide pour le lien d'Adobe PDF Reader
description: Adobe Acrobat reader
classification: Legitimate
known filename: AcroIEhelper.ocx<br>AcroIEhelper.dll
info link: http://www.adobe.com/products/acrobat/readstep2.html
info source: TonyKlein
Path: C:\Program Files\Fichiers communs\Adobe\Acrobat\ActiveX\
Long name: AcroIEHelper.dll
Short name: ACROIE~1.DLL
Date (created): 22/10/2006 23:08:42
Date (last access): 15/06/2008 18:29:50
Date (last write): 22/10/2006 23:08:42
Filesize: 62080
Attributes: archive
MD5: C11F6A1F61481E24BE3FDC06EA6F7D2A
CRC32: E388508F
Version: 8.0.0.456

{02478D38-C3F9-4EFB-9B51-7695ECA05670} (Yahoo! Toolbar Helper)
location: HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\
BHO name:
CLSID name: Yahoo! Toolbar Helper
description: Yahoo Companion!
classification: Legitimate
known filename: Ycomp*_*_*_*.dll
info link: http://companion.yahoo.com/
info source: TonyKlein
Path: C:\Program Files\Yahoo!\Companion\Installs\cpn\
Long name: yt.dll
Short name:
Date (created): 27/05/2007 20:18:40
Date (last access): 15/06/2008 18:29:50
Date (last write): 26/10/2006 10:28:40
Filesize: 440384
Attributes: archive
MD5: 2785037CE05B63D5607C9D5DFB2FEEE4
CRC32: 9ED93A02
Version: 2006.10.26.1



--- ActiveX list ---
{DF780F87-FF2B-4DF8-92D0-73DB16A1543A} ()
DPF name:
CLSID name:
Installer:
Codebase: http://aolsvc.aol.com/onlinegames/bejew ... er_v10.cab
description:
classification: Legitimate
known filename: POPCAPLOADER.DLL
info link:
info source: Safer Networking Ltd.

{D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object)
DPF name:
CLSID name: Shockwave Flash Object
Installer: C:\WINDOWS\Downloaded Program Files\swflash.inf
Codebase: http://fpdownload2.macromedia.com/get/s ... wflash.cab
description: Macromedia Shockwave Flash Player
classification: Legitimate
known filename:
info link:
info source: Patrick M. Kolla
Path: C:\WINDOWS\system32\Macromed\Flash\
Long name: Flash9f.ocx
Short name:
Date (created): 25/03/2008 04:32:42
Date (last access): 15/06/2008 18:29:52
Date (last write): 25/03/2008 04:32:42
Filesize: 2991488
Attributes: readonly archive
MD5: 48FDF435B8595604E54125B321924510
CRC32: 12335E29
Version: 9.0.124.0

{CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} (Java Runtime Environment 1.6.0)
DPF name: Java Runtime Environment 1.6.0
CLSID name: Java Plug-in 1.6.0_06
Installer:
Codebase: http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab
description:
classification: Legitimate
known filename: npjpi150_06.dll
info link:
info source: Safer Networking Ltd.
Path: C:\Program Files\Java\jre1.6.0_06\bin\
Long name: npjpi160_06.dll
Short name: NPJPI1~1.DLL
Date (created): 25/03/2008 02:37:02
Date (last access): 15/06/2008 18:59:08
Date (last write): 25/03/2008 04:28:02
Filesize: 132496
Attributes: archive
MD5: 5522AFEAB77DD6D401F3FE5C0A46122E
CRC32: F643B062
Version: 6.0.60.2

{CAFEEFAC-0016-0000-0006-ABCDEFFEDCBA} (Java Runtime Environment 1.6.0)
DPF name: Java Runtime Environment 1.6.0
CLSID name: Java Plug-in 1.6.0_06
Installer:
Codebase: http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab
Path: C:\Program Files\Java\jre1.6.0_06\bin\
Long name: npjpi160_06.dll
Short name: NPJPI1~1.DLL
Date (created): 25/03/2008 02:37:02
Date (last access): 15/06/2008 18:59:08
Date (last write): 25/03/2008 04:28:02
Filesize: 132496
Attributes: archive
MD5: 5522AFEAB77DD6D401F3FE5C0A46122E
CRC32: F643B062
Version: 6.0.60.2

{CAFEEFAC-0016-0000-0005-ABCDEFFEDCBA} (Java Runtime Environment 1.6.0)
DPF name: Java Runtime Environment 1.6.0
CLSID name: Java Plug-in 1.6.0_05
Installer:
Codebase: http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab
Path: C:\Program Files\Java\jre1.6.0_05\bin\
Long name: npjpi160_05.dll
Short name: NPJPI1~1.DLL
Date (created): 22/02/2008 02:33:32
Date (last access): 15/06/2008 18:29:52
Date (last write): 22/02/2008 04:25:20
Filesize: 132496
Attributes: archive
MD5: 4FDFB86D78994BD71CBB779A7809E9CD
CRC32: 5A0EB880
Version: 6.0.50.13

{CAFEEFAC-0016-0000-0003-ABCDEFFEDCBA} (Java Runtime Environment 1.6.0)
DPF name: Java Runtime Environment 1.6.0
CLSID name: Java Plug-in 1.6.0_03
Installer:
Codebase: http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab
Path: C:\Program Files\Java\jre1.6.0_03\bin\
Long name: npjpi160_03.dll
Short name: NPJPI1~1.DLL
Date (created): 25/09/2007 00:31:44
Date (last access): 15/06/2008 18:29:52
Date (last write): 25/09/2007 02:11:34
Filesize: 132496
Attributes: archive
MD5: D6A4682A6FF41832A3F1A7AB9AE08199
CRC32: 9080B537
Version: 6.0.30.5

{CAFEEFAC-0016-0000-0002-ABCDEFFEDCBA} (Java Runtime Environment 1.6.0)
DPF name: Java Runtime Environment 1.6.0
CLSID name: Java Plug-in 1.6.0_02
Installer:
Codebase: http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab
description:
classification: Legitimate
known filename: npjpi160_02.dll
info link:
info source: Safer Networking Ltd.
Path: C:\Program Files\Java\jre1.6.0_02\bin\
Long name: npjpi160_02.dll
Short name: NPJPI1~1.DLL
Date (created): 12/07/2007 02:22:38
Date (last access): 15/06/2008 18:29:54
Date (last write): 12/07/2007 04:00:36
Filesize: 132496
Attributes: archive
MD5: E3811F1A1C5063C941EC0E2766C3EA39
CRC32: AEFD3747
Version: 6.0.20.6

{CAFEEFAC-0016-0000-0001-ABCDEFFEDCBA} (Java Runtime Environment 1.6.0)
DPF name: Java Runtime Environment 1.6.0
CLSID name: Java Plug-in 1.6.0_01
Installer:
Codebase: http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab
description:
classification: Legitimate
known filename: npjpi160_01.dll
info link:
info source: Safer Networking Ltd.
Path: C:\Program Files\Java\jre1.6.0_01\bin\
Long name: npjpi160_01.dll
Short name: NPJPI1~1.DLL
Date (created): 14/03/2007 02:04:46
Date (last access): 15/06/2008 18:29:54
Date (last write): 14/03/2007 03:43:42
Filesize: 132760
Attributes: archive
MD5: F112FB2FD2EF66D439799E3F834DF000
CRC32: D2B09219
Version: 6.0.0.6

{CAFEEFAC-0015-0000-0011-ABCDEFFEDCBA} (Java Runtime Environment 1.5.0)
DPF name: Java Runtime Environment 1.5.0
CLSID name: Java Plug-in 1.5.0_11
Installer:
Codebase: http://java.sun.com/update/1.5.0/jinsta ... s-i586.cab
description:
classification: Legitimate
known filename: npjpi150_11.dll
info link:
info source: Safer Networking Ltd.
Path: C:\Program Files\Java\jre1.5.0_11\bin\
Long name: NPJPI150_11.dll
Short name: NPJPI1~1.DLL
Date (created): 15/12/2006 04:09:16
Date (last access): 15/06/2008 18:29:54
Date (last write): 15/12/2006 04:23:26
Filesize: 75528
Attributes: archive
MD5: 3B3F6984DBF972DAFF1B7E9C44E2FE75
CRC32: 4BDE2041
Version: 5.0.110.3

{CAFEEFAC-0015-0000-0010-ABCDEFFEDCBA} (Java Runtime Environment 1.5.0)
DPF name: Java Runtime Environment 1.5.0
CLSID name: Java Plug-in 1.5.0_10
Installer:
Codebase: http://java.sun.com/update/1.5.0/jinsta ... s-i586.cab
description:
classification: Legitimate
known filename: npjpi150_10.dll
info link:
info source: Safer Networking Ltd.
Path: C:\Program Files\Java\jre1.5.0_10\bin\
Long name: NPJPI150_10.dll
Short name: NPJPI1~1.DLL
Date (created): 09/11/2006 16:07:34
Date (last access): 15/06/2008 18:29:54
Date (last write): 09/11/2006 16:21:54
Filesize: 75528
Attributes: archive
MD5: 635F4B3A0F1C661B5CEDE628BA85E46B
CRC32: 0C9B7145
Version: 5.0.100.3

{CAFEEFAC-0015-0000-0006-ABCDEFFEDCBA} (Java Runtime Environment 1.5.0)
DPF name: Java Runtime Environment 1.5.0
CLSID name: Java Plug-in 1.5.0_06
Installer:
Codebase: http://java.sun.com/update/1.5.0/jinsta ... s-i586.cab
description:
classification: Legitimate
known filename: npjpi150_06.dll
info link:
info source: Safer Networking Ltd.
Path: C:\Program Files\Java\jre1.5.0_06\bin\
Long name: NPJPI150_06.dll
Short name: NPJPI1~1.DLL
Date (created): 10/11/2005 14:03:56
Date (last access): 15/06/2008 18:29:54
Date (last write): 10/11/2005 14:22:10
Filesize: 69746
Attributes: archive
MD5: D2CF6BB5E9020E6707B62575F8083954
CRC32: 7F39DC54
Version: 5.0.60.5

{CAFEEFAC-0015-0000-0002-ABCDEFFEDCBA} (Java Runtime Environment 1.5.0)
DPF name: Java Runtime Environment 1.5.0
CLSID name: Java Plug-in 1.5.0_02
Installer:
Codebase: http://java.sun.com/update/1.5.0/jinsta ... s-i586.cab
description:
classification: Legitimate
known filename: NPJPI150_02.dll
info link:
info source: Safer Networking Ltd.
Path: C:\Program Files\Java\jre1.5.0_02\bin\
Long name: NPJPI150_02.dll
Short name: NPJPI1~1.DLL
Date (created): 04/03/2005 03:36:50
Date (last access): 15/06/2008 18:29:54
Date (last write): 04/03/2005 03:54:18
Filesize: 69746
Attributes: archive
MD5: 6C9A4C573C0C771D99D902EE06DA3CBB
CRC32: 55F989EE
Version: 5.0.20.9

{C7DB51B4-BCF7-4923-8874-7F1A0DC92277} (Office Update Installation Engine)
DPF name:
CLSID name: Office Update Installation Engine
Installer:
Codebase: http://office.microsoft.com/officeupdat ... /opuc4.cab
description:
classification: Legitimate
known filename: opuc.dll
info link:
info source: Safer Networking Ltd.
Path: C:\WINDOWS\
Long name: opuc.dll
Short name:
Date (created): 22/10/2007 11:57:52
Date (last access): 15/06/2008 18:59:08
Date (last write): 22/10/2007 11:57:52
Filesize: 524288
Attributes: archive
MD5: F1ED50F66FEF8F56E06F087AA1CE3629
CRC32: CD8AE024
Version: 12.0.5543.1000

{C3F79A2B-B9B4-4A66-B012-3EE46475B072} ()
DPF name:
CLSID name:
Installer:
Codebase: http://messenger.zone.msn.com/binary/Me ... b56907.cab
description:
classification: Legitimate
known filename: MessengerStatsPAClient.dll
info link:
info source: Safer Networking Ltd.

{BFF1950D-B1B4-4AE8-B842-B2CCF06D9A1B} (Zylom Games Player)
DPF name:
CLSID name: Zylom Games Player
Installer: C:\WINDOWS\Downloaded Program Files\ZylomGamesPlayer.inf
Codebase: http://game01.zylom.com/activex/zylomgamesplayer.cab
description:
classification: Legitimate
known filename: zylomgamesplayer.dll
info link:
info source: Safer Networking Ltd.
Path: D:\Documents and Settings\All Users\Application Data\Zylom\ZylomGamesPlayer\
Long name: zylomgamesplayer.dll
Short name: ZYLOMG~1.DLL
Date (created): 29/12/2006 23:07:06
Date (last access): 15/06/2008 18:59:08
Date (last write): 26/09/2006 13:03:14
Filesize: 161976
Attributes: archive
MD5: 7FAF5222EEB546E1DC0F348DCB314B0B
CRC32: B03D23B2
Version: 2.0.0.1

{BB21F850-63F4-4EC9-BF9D-565BD30C9AE9} ()
DPF name:
CLSID name:
Installer:
Codebase: http://ax.emsisoft.com/asquared.cab
description:
classification: Legitimate
known filename: axscan.ocx
info link:
info source: Safer Networking Ltd.

{B7D07999-2ADB-4AEB-997E-F61CB7B2E2CD} (TSEasyInstallX Control)
DPF name:
CLSID name: TSEasyInstallX Control
Installer: C:\WINDOWS\Downloaded Program Files\TSEasyInstallX.inf
Codebase: http://www.trendsecure.com/easy_install ... stallX.CAB
Path: C:\WINDOWS\DOWNLO~1\
Long name: TSEasyInstallX.ocx
Short name: TSEASY~1.OCX
Date (created): 09/04/2008 16:21:00
Date (last access): 15/06/2008 18:59:08
Date (last write): 09/04/2008 16:21:00
Filesize: 405504
Attributes: archive
MD5: ED576818C3C3754DC07B3886CA87794F
CRC32: 8001A2B4
Version: 3.1.0.1056

{B1826A9F-4AA0-4510-BA77-9013E74E4B9B} ()
DPF name:
CLSID name:
Installer:
Codebase: http://www.trendmicro.com/spyware-scan/as4web.cab

{AB86CE53-AC9F-449F-9399-D8ABCA09EC09} ()
DPF name:
CLSID name:
Installer:
Codebase: https://h17000.www1.hp.com/ewfrf-JAVA/S ... anager.ocx
description:
classification: Legitimate
known filename: HPGetDownloadManager.ocx
info link:
info source: Safer Networking Ltd.

{A18962F6-E6ED-40B1-97C9-1FB36F38BFA8} ()
DPF name:
CLSID name:
Installer:
Codebase: http://www.wisup.net/_plateforme/Upload ... ader35.cab
description:
classification: Legitimate
known filename: ImageUploader3.ocx
info link:
info source: Safer Networking Ltd.

{9A9307A0-7DA4-4DAF-B042-5009F29E09E1} ()
DPF name:
CLSID name:
Installer:
Codebase: http://acs.pandasoftware.com/activescan ... asinst.cab
description:
classification: Legitimate
known filename: ASINST.DLL
info link:
info source: Safer Networking Ltd.

{8AD9C840-044E-11D1-B3E9-00805F499D93} (Java Runtime Environment 1.6.0)
DPF name: Java Runtime Environment 1.6.0
CLSID name: Java Plug-in 1.6.0_06
Installer:
Codebase: http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab
description: Sun Java
classification: Legitimate
known filename: %PROGRAM FILES%\JabaSoft\JRE\*\Bin\npjava131.dll
info link:
info source: Patrick M. Kolla
Path: C:\Program Files\Java\jre1.6.0_06\bin\
Long name: npjpi160_06.dll
Short name: NPJPI1~1.DLL
Date (created): 25/03/2008 02:37:02
Date (last access): 15/06/2008 18:59:08
Date (last write): 25/03/2008 04:28:02
Filesize: 132496
Attributes: archive
MD5: 5522AFEAB77DD6D401F3FE5C0A46122E
CRC32: F643B062
Version: 6.0.60.2

{6E32070A-766D-4EE6-879C-DC1FA91D2FC3} (MUWebControl Class)
DPF name:
CLSID name: MUWebControl Class
Installer:
Codebase: http://update.microsoft.com/microsoftup ... 1443392734
description:
classification: Legitimate
known filename: muweb.dll
info link:
info source: Safer Networking Ltd.
Path: C:\WINDOWS\system32\
Long name: muweb.dll
Short name:
Date (created): 26/05/2005 04:19:32
Date (last access): 15/06/2008 18:59:08
Date (last write): 30/07/2007 19:19:04
Filesize: 207736
Attributes: archive
MD5: 2DEE560CCEF55353EB62FDA870446393
CRC32: 5AA71F7B
Version: 7.0.6000.381

{6B75345B-AA36-438A-BBE6-4078B4C6984D} (HpProductDetection Class)
DPF name:
CLSID name: HpProductDetection Class
Installer: C:\WINDOWS\Downloaded Program Files\setup.inf
Codebase: http://h20270.www2.hp.com/ediags/gmn2/i ... ection.cab
description:
classification: Legitimate
known filename: HPDeviceDetection.dll
info link:
info source: Safer Networking Ltd.
Path: C:\Program Files\HP\Common\
Long name: HPDeviceDetection.dll
Short name: HPDEVI~1.DLL
Date (created): 07/05/2007 11:53:44
Date (last access): 15/06/2008 18:59:08
Date (last write): 07/05/2007 11:53:44
Filesize: 516664
Attributes: archive
MD5: 312C2C77595B224249D50CA278505432
CRC32: AD85C64C
Version: 4.0.2.0

{6932D140-ABC4-4073-A44C-D4A541665E35} (ImageShack Toolbar)
DPF name: ImageShack Toolbar
CLSID name: ImageShack Toolbar
Installer:
Codebase: http://toolbar.imageshack.us/toolbar/Im ... oolbar.cab
description:
classification: Legitimate
known filename: ImageShackToolbar.dll
info link:
info source: Safer Networking Ltd.
Path: C:\WINDOWS\ImageShackToolbar\
Long name: ImageShackToolbar.dll
Short name: IMAGES~1.DLL
Date (created): 19/10/2006 22:47:18
Date (last access): 15/06/2008 18:59:12
Date (last write): 19/10/2006 22:47:18
Filesize: 368640
Attributes: archive
MD5: 4860CA261FCE1E57B5BCF008A0EDCB19
CRC32: 6207C2B2
Version: 2.0.0.36

{4F1E5B1A-2A80-42CA-8532-2D05CB959537} ()
DPF name:
CLSID name:
Installer:
Codebase: http://by16fd.bay16.hotmail.msn.com/res ... nPUpld.cab
description:
classification: Legitimate
known filename: MsnPUpld.dll
info link:
info source: Safer Networking Ltd.

{33564D57-9980-0010-8000-00AA00389B71} ()
DPF name:
CLSID name:
Installer: C:\WINDOWS\Downloaded Program Files\wmv9dmo.inf
Codebase: http://download.microsoft.com/download/ ... mv9dmo.cab
description: Microsoft WMV Video Codec
classification: Legitimate
known filename: WMV9DMO.CAB
info link:
info source: Patrick M. Kolla

{30528230-99f7-4bb4-88d8-fa1d4f56a2ab} (YInstStarter Class)
DPF name:
CLSID name: YInstStarter Class
Installer: C:\Program Files\Yahoo!\Common\yinst.inf
Codebase: C:\Program Files\Yahoo!\Common\yinsthelper.dll
description: Yahoo! Installation helper
classification: Legitimate
known filename: %SystemRoot%\Downloaded Program Files\yinsthelper.dll
info link:
info source: Patrick M. Kolla
Path: C:\PROGRA~1\Yahoo!\Common\
Long name: yinsthelper.dll
Short name: YINSTH~1.DLL
Date (created): 27/05/2007 20:18:40
Date (last access): 15/06/2008 18:59:12
Date (last write): 30/07/2006 13:25:34
Filesize: 188968
Attributes: archive
MD5: 18B54B53CEE0E7204495BAB864EBBF03
CRC32: 6D72BB93
Version: 2006.4.14.2

{233C1507-6A77-46A4-9443-F871F945D258} (Shockwave ActiveX Control)
DPF name:
CLSID name: Shockwave ActiveX Control
Installer: C:\WINDOWS\Downloaded Program Files\setup.inf
Codebase: http://fpdownload.macromedia.com/get/sh ... tor/sw.cab
description:
classification: Legitimate
known filename: SwDir.dll
info link:
info source: Safer Networking Ltd.
Path: C:\WINDOWS\system32\Macromed\Director\
Long name: SwDir.dll
Short name:
Date (created): 09/09/2004 15:49:12
Date (last access): 15/06/2008 18:59:12
Date (last write): 07/08/2007 18:20:44
Filesize: 182248
Attributes: archive
MD5: 6C90714399BD3F1E7C0503A38EADBAC7
CRC32: D1E8C81D
Version: 10.2.0.23

{1E3F1348-4370-4BBE-A67A-CC7ED824CA85} (Microsoft Genuine Advantage Self Support Tool)
DPF name:
CLSID name: Microsoft Genuine Advantage Self Support Tool
Installer:
Codebase: http://download.microsoft.com/download/ ... ontrol.cab
Path: C:\WINDOWS\system32\
Long name: SelfHelpControl.DLL
Short name: SELFHE~1.DLL
Date (created): 15/02/2007 16:22:26
Date (last access): 15/06/2008 18:59:12
Date (last write): 15/02/2007 16:22:26
Filesize: 688000
Attributes: archive
MD5: 9B33D0014BCB40FCA9B16DDC8A8F46EC
CRC32: 6E932A05
Version: 1.7.13.0

{1754A1BA-A1DF-4F10-B199-AA55AA1A120F} ()
DPF name:
CLSID name:
Installer:
Codebase: https://signup.msn.com/pages/MsnInstC.cab
description:
classification: Legitimate
known filename: MsnInstC.dll
info link:
info source: Safer Networking Ltd.

{17492023-C23A-453E-A040-C7C580BBF700} (Windows Genuine Advantage Validation Tool)
DPF name:
CLSID name: Windows Genuine Advantage Validation Tool
Installer:
Codebase: http://download.microsoft.com/download/ ... ontrol.cab
description:
classification: Legitimate
known filename: LegitCheckControl.DLL
info link:
info source: Safer Networking Ltd.
Path: C:\WINDOWS\system32\
Long name: LegitCheckControl.dll
Short name: LEGITC~1.DLL
Date (created): 12/07/2005 19:04:22
Date (last access): 15/06/2008 18:59:12
Date (last write): 20/03/2008 18:06:36
Filesize: 1480232
Attributes: archive
MD5: E058C4821D48E0A67F6069CB50818D44
CRC32: 3513AE02
Version: 1.7.69.2

{05CA9FB0-3E3E-4B36-BF41-0E3A5CAA8CD8} (Office Genuine Advantage Validation Tool)
DPF name:
CLSID name: Office Genuine Advantage Validation Tool
Installer:
Codebase: http://download.microsoft.com/download/ ... ontrol.cab
Path: C:\WINDOWS\system32\
Long name: OGACheckControl.DLL
Short name: OGACHE~1.DLL
Date (created): 05/03/2007 14:34:28
Date (last access): 15/06/2008 18:59:12
Date (last write): 05/03/2007 14:34:28
Filesize: 676224
Attributes: archive
MD5: B221B218126BC9409257F39837BAB90C
CRC32: 60F920AA
Version: 1.6.21.0

Microsoft XML Parser for Java (Microsoft XML Parser for Java)
DPF name: Microsoft XML Parser for Java
CLSID name:
Installer:
Codebase:
description:
classification: Legitimate
known filename: %WINDIR%\Java\classes\xmldso.cab
info link:
info source: Patrick M. Kolla



--- Process list ---
PID: 0 ( 0) [System]
PID: 484 ( 0) \SystemRoot\System32\smss.exe
size: 50688
PID: 612 ( 0) \??\C:\WINDOWS\system32\winlogon.exe
size: 512000
PID: 656 ( 0) C:\WINDOWS\system32\services.exe
size: 109056
MD5: 54CB50058851D95E56EC70D09F70857F
PID: 668 ( 0) C:\WINDOWS\system32\lsass.exe
size: 13312
MD5: 91E6024D6D4DCDECDB36C43ECF9BBECB
PID: 816 ( 0) C:\WINDOWS\system32\Ati2evxx.exe
size: 393216
MD5: 29CE0B7E8190D7AE278F94BBC43F496E
PID: 828 ( 0) C:\WINDOWS\system32\svchost.exe
size: 14336
MD5: E4BDF223CD75478BF44567B4D5C2634D
PID: 960 ( 0) C:\WINDOWS\System32\svchost.exe
size: 14336
MD5: E4BDF223CD75478BF44567B4D5C2634D
PID: 1224 ( 0) C:\WINDOWS\system32\spoolsv.exe
size: 57856
MD5: 460E4CE148BD07218DA0B6A3D31885A9
PID: 1324 ( 0) C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
size: 110592
MD5: 69DA2BB73AC426CDEEBDACC68438BA3D
PID: 1356 ( 0) C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe
size: 312880
MD5: 5DCD235C061022BCDA9AA48670B64211
PID: 1392 ( 0) c:\APPS\Powercinema\Kernel\TV\CLCapSvc.exe
size: 221266
MD5: 4921CB1FAE6978D44A91D0D65D93FA57
PID: 1468 ( 0) C:\WINDOWS\system32\Ati2evxx.exe
size: 393216
MD5: 29CE0B7E8190D7AE278F94BBC43F496E
PID: 1592 (1504) C:\WINDOWS\Explorer.EXE
size: 1037824
MD5: F2317622D29F9FF0F88AEECD5F60F0DD
PID: 1708 ( 0) C:\Program Files\CyberLink\Shared Files\CLML_NTService\CLMLServer.exe
size: 61440
MD5: BC2DDAF478AAF92F237FB52E35EB53D6
PID: 1724 ( 0) C:\Program Files\CyberLink\Shared Files\CLML_NTService\CLMLService.exe
size: 737381
MD5: C0E569681F74A0C1E5FBEBF914509BF0
PID: 1744 ( 0) c:\APPS\HIDSERVICE\HIDSERVICE.exe
size: 49152
MD5: 69202C049779AE09470370F163363F13
PID: 1788 ( 0) C:\WINDOWS\system32\PSIService.exe
size: 174656
MD5: 64E413BA0C529AA40C3924BBCC4153DB
PID: 1864 ( 0) C:\Program Files\Spyware Terminator\sp_rsser.exe
size: 606720
MD5: 20CC04B6DC942027B294415CC7689204
PID: 1956 ( 0) C:\WINDOWS\system32\svchost.exe
size: 14336
MD5: E4BDF223CD75478BF44567B4D5C2634D
PID: 1976 ( 0) C:\Program Files\Fichiers communs\Ulead Systems\DVD\ULCDRSvr.exe
size: 49152
MD5: CA90D2C55EB3BB90687677BEA3DB0B59
PID: 2020 ( 0) C:\Program Files\Fichiers communs\BitDefender\BitDefender Communicator\xcommsvr.exe
size: 86016
MD5: 979F6C6A2A1E31E7BCC6D5D527C98927
PID: 2044 ( 0) c:\APPS\Powercinema\Kernel\TV\CLSched.exe
size: 110672
MD5: BFB1A491B7CFAFBD35220537EEE92760
PID: 168 ( 0) C:\Program Files\Fichiers communs\BitDefender\BitDefender Update Service\livesrv.exe
size: 1155072
MD5: 0B5A48FC05B3753E9C4B8ADCE134173F
PID: 252 ( 0) C:\Program Files\BitDefender\BitDefender 2008\vsserv.exe
size: 1216512
MD5: E87761FB3062DA38D06F5D9DADF539BB
PID: 464 ( 0) C:\WINDOWS\System32\svchost.exe
size: 14336
MD5: E4BDF223CD75478BF44567B4D5C2634D
PID: 2236 ( 0) C:\Program Files\Java\jre1.6.0_06\bin\jusched.exe
size: 144784
MD5: E8C086DA635EB410FEF106CB279ADFBF
PID: 2244 ( 0) C:\Program Files\Hewlett-Packard\HP Software Update\HPWuSchd2.exe
size: 49152
MD5: 6AD9DCB0257B10EA458165F70634DABC
PID: 2260 ( 0) C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe
size: 180269
MD5: 77ED13FD3196EBC7311CCD6899C7488C
PID: 2268 ( 0) C:\WINDOWS\system32\rundll32.exe
size: 33792
MD5: 93AD0B78C7357A05F50E594EC7C22300
PID: 2276 ( 0) C:\Program Files\HP\hpcoretech\hpcmpmgr.exe
size: 241664
MD5: B75B654EE1DA99876461B24597AE3FF3
PID: 2288 ( 0) C:\WINDOWS\system32\spool\drivers\w32x86\3\hpztsb10.exe
size: 172032
MD5: FD32127449AF0B96EBECA3CAAB74E423
PID: 2296 ( 0) C:\Program Files\Hewlett-Packard\HP Share-to-Web\hpgs2wnd.exe
size: 69632
MD5: D5BC63D2822B8E244E53D2FF8078CC6B
PID: 2304 ( 0) C:\apps\ABoard\ABoard.exe
size: 24576
MD5: 84DA056C4331B17A5AAFACFF49C3BBA3
PID: 2368 ( 0) C:\apps\ABoard\AOSD.exe
size: 69632
MD5: 66C31EC9B966A1D5FFC726A53DC1A137
PID: 2400 ( 0) C:\Program Files\Fichiers communs\Ulead Systems\AutoDetector\monitor.exe
size: 90112
MD5: CAA71374014DA23AF7E10F15EA975BDF
PID: 2412 ( 0) C:\Apps\Powercinema\PCMService.exe
size: 127118
MD5: C31A0AF9B3702C5C2A3FA4BDCC37A76F
PID: 2436 ( 0) C:\Program Files\Unlocker\UnlockerAssistant.exe
size: 15872
MD5: 3FFE8752B77382C5050006C31781D05A
PID: 2464 ( 0) C:\Program Files\iTunes\iTunesHelper.exe
size: 267048
MD5: 04A9F0C58B170F30445BCC0683EF9FFC
PID: 2472 ( 0) C:\Program Files\Hewlett-Packard\HP Share-to-Web\hpgs2wnf.exe
size: 77824
MD5: 59380D1808A83AA4150F550F45BEE3A9
PID: 2484 ( 0) C:\WINDOWS\system32\rundll32.exe
size: 33792
MD5: 93AD0B78C7357A05F50E594EC7C22300
PID: 2504 ( 0) C:\Program Files\BitDefender\BitDefender 2008\bdagent.exe
size: 360448
MD5: 7624F60BC48976C72419D82244AB4C22
PID: 2520 ( 0) C:\WINDOWS\SOUNDMAN.EXE
size: 577536
MD5: 80FD4D46B0E9B620CF757A9A5C789329
PID: 2536 ( 0) C:\Program Files\Winamp\winampa.exe
size: 36352
MD5: 93146CD558AE246116BA3315E15505B7
PID: 2544 ( 0) C:\Program Files\Thomson\Lyra Jukebox\LyraHDTrayApp\LYRAHD2TrayApp.exe
size: 290816
MD5: 693D2DB2B86A1B2E474F2B8CF84F27A6
PID: 2604 ( 0) C:\WINDOWS\system32\ctfmon.exe
size: 15360
MD5: 59DC5BB82E4C8E0B3EADCFDBC44BA6E4
PID: 2612 ( 0) C:\Program Files\Winamp Remote\bin\OrbTray.exe
size: 495616
MD5: CEDC102DEB888A78B22110734F07F153
PID: 2620 ( 0) C:\Program Files\MSN Messenger\MsnMsgr.Exe
size: 5674352
MD5: A7EFC7EA7EF6FB022A8A95813EDCBE5D
PID: 2640 ( 0) C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe
size: 2097488
MD5: A9A5DB6AC3721BE698B996913693D73F
PID: 2680 ( 0) C:\Program Files\Ulead Systems\Ulead Photo Express 4.0 SE\CalCheck.exe
size: 69632
MD5: E69FC2484C3D9C648C5C275F7F8C5287
PID: 2712 ( 0) C:\Program Files\WinZip\WZQKPICK.EXE
size: 118784
MD5: 04915CAD50BC2303F443C30F7549567D
PID: 2796 ( 0) C:\Program Files\Winamp Remote\bin\Orb.exe
size: 73728
MD5: 80E4D9495EA8E383E8989A99EE81B1BF
PID: 2820 ( 0) C:\Program Files\Aide mémoire\TrayIcon.exe
size: 34816
MD5: 095AB6EAC61948B7EE52E4268AA66325
PID: 2828 ( 0) C:\PROGRA~1\INCRED~1\bin\IMApp.exe
size: 148912
MD5: 600336FF8F9A9620B953E794DDAB5A2C
PID: 3008 ( 0) C:\Program Files\HP\hpcoretech\comp\hptskmgr.exe
size: 135168
MD5: 981A3E9F6DE5BF23CDF1520D6E34770D
PID: 3056 ( 0) C:\Program Files\iPod\bin\iPodService.exe
size: 504104
MD5: 1CB96E83FD76EB5580451CEF29E24303
PID: 3036 ( 0) C:\PROGRA~1\INCRED~1\bin\IncMail.exe
size: 214456
MD5: 1C074E7D14D195DD575863603B6770B9
PID: 3944 ( 0) C:\Program Files\Spybot - Search & Destroy\SpybotSD.exe
size: 5146448
MD5: 2ECA8CDEED7C82F879E766DA92A3561A


--- Browser start & search pages list ---
Spybot - Search & Destroy browser pages report, 15/06/2008 19:12:52

HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main\Search Page
http://go.microsoft.com/fwlink/?LinkId=54896
HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main\Search Bar
http://www.crawler.com/search/dispatche ... p=aus&qkw=%s&tbid=60076
HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main\Start Page
http://french.eazel.com/index.php?rvs=hompag
HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\SearchUrl\@
http://www.google.com/search?q=%s
HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Main\Local Page
C:\WINDOWS\system32\blank.htm
HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Main\Search Page
http://go.microsoft.com/fwlink/?LinkId=54896
HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Main\Start Page
http://go.microsoft.com/fwlink/?LinkId=69157
HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Main\Default_Page_URL
http://go.microsoft.com/fwlink/?LinkId=69157
HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Main\Default_Search_URL
http://go.microsoft.com/fwlink/?LinkId=54896
HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Main\SearchAssistant
http://www.crawler.com/search/ie.aspx?tb_id=60076
HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Search\SearchAssistant
http://www.crawler.com/search/ie.aspx?tb_id=60076
HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Search\CustomizeSearch
http://dnl.crawler.com/support/sa_custo ... TbId=60076


--- Winsock Layered Service Provider list ---
Protocol 0: MSAFD Tcpip [TCP/IP]
GUID: {E70F1AA0-AB8B-11CF-8CA3-00805F48A192}
Filename: %SystemRoot%\system32\mswsock.dll
Description: Microsoft Windows NT/2k/XP IP protocol
DB filename: %SystemRoot%\system32\mswsock.dll
DB protocol: MSAFD Tcpip [*]

Protocol 1: MSAFD Tcpip [UDP/IP]
GUID: {E70F1AA0-AB8B-11CF-8CA3-00805F48A192}
Filename: %SystemRoot%\system32\mswsock.dll
Description: Microsoft Windows NT/2k/XP IP protocol
DB filename: %SystemRoot%\system32\mswsock.dll
DB protocol: MSAFD Tcpip [*]

Protocol 2: MSAFD Tcpip [RAW/IP]
GUID: {E70F1AA0-AB8B-11CF-8CA3-00805F48A192}
Filename: %SystemRoot%\system32\mswsock.dll
Description: Microsoft Windows NT/2k/XP IP protocol
DB filename: %SystemRoot%\system32\mswsock.dll
DB protocol: MSAFD Tcpip [*]

Protocol 3: RSVP UDP Service Provider
GUID: {9D60A9E0-337A-11D0-BD88-0000C082E69A}
Filename: %SystemRoot%\system32\rsvpsp.dll
Description: Microsoft Windows NT/2k/XP RVSP
DB filename: %SystemRoot%\system32\rsvpsp.dll
DB protocol: RSVP * Service Provider

Protocol 4: RSVP TCP Service Provider
GUID: {9D60A9E0-337A-11D0-BD88-0000C082E69A}
Filename: %SystemRoot%\system32\rsvpsp.dll
Description: Microsoft Windows NT/2k/XP RVSP
DB filename: %SystemRoot%\system32\rsvpsp.dll
DB protocol: RSVP * Service Provider

Protocol 5: MSAFD RfComm [Bluetooth]
GUID: {9FC48064-7298-43E4-B7BD-181F2089792A}
Filename: %SystemRoot%\system32\mswsock.dll
Description: Bluetooth
DB filename: %SystemRoot%\system32\mswsock.dll
DB protocol: MSAFD RfComm [Bluetooth]

Protocol 6: MSAFD NetBIOS [\Device\NetBT_Tcpip_{7477BE6A-3025-431E-8B65-50FB23968EE9}] SEQPACKET 7
GUID: {8D5F1830-C273-11CF-95C8-00805F48A192}
Filename: %SystemRoot%\system32\mswsock.dll
Description: Microsoft Windows NT/2k/XP NetBios protocol
DB filename: %SystemRoot%\system32\mswsock.dll
DB protocol: MSAFD NetBIOS *

Protocol 7: MSAFD NetBIOS [\Device\NetBT_Tcpip_{7477BE6A-3025-431E-8B65-50FB23968EE9}] DATAGRAM 7
GUID: {8D5F1830-C273-11CF-95C8-00805F48A192}
Filename: %SystemRoot%\system32\mswsock.dll
Description: Microsoft Windows NT/2k/XP NetBios protocol
DB filename: %SystemRoot%\system32\mswsock.dll
DB protocol: MSAFD NetBIOS *

Protocol 8: MSAFD NetBIOS [\Device\NetBT_Tcpip_{264AACF8-A969-4C87-A127-55C4EE4C0C01}] SEQPACKET 3
GUID: {8D5F1830-C273-11CF-95C8-00805F48A192}
Filename: %SystemRoot%\system32\mswsock.dll
Description: Microsoft Windows NT/2k/XP NetBios protocol
DB filename: %SystemRoot%\system32\mswsock.dll
DB protocol: MSAFD NetBIOS *

Protocol 9: MSAFD NetBIOS [\Device\NetBT_Tcpip_{264AACF8-A969-4C87-A127-55C4EE4C0C01}] DATAGRAM 3
GUID: {8D5F1830-C273-11CF-95C8-00805F48A192}
Filename: %SystemRoot%\system32\mswsock.dll
Description: Microsoft Windows NT/2k/XP NetBios protocol
DB filename: %SystemRoot%\system32\mswsock.dll
DB protocol: MSAFD NetBIOS *

Protocol 10: MSAFD NetBIOS [\Device\NetBT_Tcpip_{0CA79B9D-C145-4263-B543-95DF9E2D5D9F}] SEQPACKET 0
GUID: {8D5F1830-C273-11CF-95C8-00805F48A192}
Filename: %SystemRoot%\system32\mswsock.dll
Description: Microsoft Windows NT/2k/XP NetBios protocol
DB filename: %SystemRoot%\system32\mswsock.dll
DB protocol: MSAFD NetBIOS *

Protocol 11: MSAFD NetBIOS [\Device\NetBT_Tcpip_{0CA79B9D-C145-4263-B543-95DF9E2D5D9F}] DATAGRAM 0
GUID: {8D5F1830-C273-11CF-95C8-00805F48A192}
Filename: %SystemRoot%\system32\mswsock.dll
Description: Microsoft Windows NT/2k/XP NetBios protocol
DB filename: %SystemRoot%\system32\mswsock.dll
DB protocol: MSAFD NetBIOS *

Protocol 12: MSAFD NetBIOS [\Device\NetBT_Tcpip_{ABBC1E7F-D8EA-4C66-A652-35D0C5AAC7B6}] SEQPACKET 4
GUID: {8D5F1830-C273-11CF-95C8-00805F48A192}
Filename: %SystemRoot%\system32\mswsock.dll
Description: Microsoft Windows NT/2k/XP NetBios protocol
DB filename: %SystemRoot%\system32\mswsock.dll
DB protocol: MSAFD NetBIOS *

Protocol 13: MSAFD NetBIOS [\Device\NetBT_Tcpip_{ABBC1E7F-D8EA-4C66-A652-35D0C5AAC7B6}] DATAGRAM 4
GUID: {8D5F1830-C273-11CF-95C8-00805F48A192}
Filename: %SystemRoot%\system32\mswsock.dll
Description: Microsoft Windows NT/2k/XP NetBios protocol
DB filename: %SystemRoot%\system32\mswsock.dll
DB protocol: MSAFD NetBIOS *

Protocol 14: MSAFD NetBIOS [\Device\NetBT_Tcpip_{8FEDED2D-763C-44CB-AEAA-5C9D637C4DDB}] SEQPACKET 1
GUID: {8D5F1830-C273-11CF-95C8-00805F48A192}
Filename: %SystemRoot%\system32\mswsock.dll
Description: Microsoft Windows NT/2k/XP NetBios protocol
DB filename: %SystemRoot%\system32\mswsock.dll
DB protocol: MSAFD NetBIOS *

Protocol 15: MSAFD NetBIOS [\Device\NetBT_Tcpip_{8FEDED2D-763C-44CB-AEAA-5C9D637C4DDB}] DATAGRAM 1
GUID: {8D5F1830-C273-11CF-95C8-00805F48A192}
Filename: %SystemRoot%\system32\mswsock.dll
Description: Microsoft Windows NT/2k/XP NetBios protocol
DB filename: %SystemRoot%\system32\mswsock.dll
DB protocol: MSAFD NetBIOS *

Protocol 16: MSAFD NetBIOS [\Device\NetBT_Tcpip_{FF508A4A-C92B-48C3-BFF2-DFE3BBAF6C38}] SEQPACKET 2
GUID: {8D5F1830-C273-11CF-95C8-00805F48A192}
Filename: %SystemRoot%\system32\mswsock.dll
Description: Microsoft Windows NT/2k/XP NetBios protocol
DB filename: %SystemRoot%\system32\mswsock.dll
DB protocol: MSAFD NetBIOS *

Protocol 17: MSAFD NetBIOS [\Device\NetBT_Tcpip_{FF508A4A-C92B-48C3-BFF2-DFE3BBAF6C38}] DATAGRAM 2
GUID: {8D5F1830-C273-11CF-95C8-00805F48A192}
Filename: %SystemRoot%\system32\mswsock.dll
Description: Microsoft Windows NT/2k/XP NetBios protocol
DB filename: %SystemRoot%\system32\mswsock.dll
DB protocol: MSAFD NetBIOS *

Protocol 18: MSAFD NetBIOS [\Device\NetBT_Tcpip_{3F48405A-8311-4CD8-88C3-6CCCA1DBB7A3}] SEQPACKET 5
GUID: {8D5F1830-C273-11CF-95C8-00805F48A192}
Filename: %SystemRoot%\system32\mswsock.dll
Description: Microsoft Windows NT/2k/XP NetBios protocol
DB filename: %SystemRoot%\system32\mswsock.dll
DB protocol: MSAFD NetBIOS *

Protocol 19: MSAFD NetBIOS [\Device\NetBT_Tcpip_{3F48405A-8311-4CD8-88C3-6CCCA1DBB7A3}] DATAGRAM 5
GUID: {8D5F1830-C273-11CF-95C8-00805F48A192}
Filename: %SystemRoot%\system32\mswsock.dll
Description: Microsoft Windows NT/2k/XP NetBios protocol
DB filename: %SystemRoot%\system32\mswsock.dll
DB protocol: MSAFD NetBIOS *

Protocol 20: MSAFD NetBIOS [\Device\NetBT_Tcpip_{053BFF71-B11F-44A1-9F92-B47EFB225987}] SEQPACKET 6
GUID: {8D5F1830-C273-11CF-95C8-00805F48A192}
Filename: %SystemRoot%\system32\mswsock.dll
Description: Microsoft Windows NT/2k/XP NetBios protocol
DB filename: %SystemRoot%\system32\mswsock.dll
DB protocol: MSAFD NetBIOS *

Protocol 21: MSAFD NetBIOS [\Device\NetBT_Tcpip_{053BFF71-B11F-44A1-9F92-B47EFB225987}] DATAGRAM 6
GUID: {8D5F1830-C273-11CF-95C8-00805F48A192}
Filename: %SystemRoot%\system32\mswsock.dll
Description: Microsoft Windows NT/2k/XP NetBios protocol
DB filename: %SystemRoot%\system32\mswsock.dll
DB protocol: MSAFD NetBIOS *

Namespace Provider 0: TCP/IP
GUID: {22059D40-7E9E-11CF-AE5A-00AA00A7112B}
Filename: %SystemRoot%\System32\mswsock.dll
Description: Microsoft Windows NT/2k/XP TCP/IP name space provider
DB filename: %SystemRoot%\system32\mswsock.dll
DB protocol: TCP/IP

Namespace Provider 1: NTDS
GUID: {3B2637EE-E580-11CF-A555-00C04FD8D4AC}
Filename: %SystemRoot%\System32\winrnr.dll
Description: Microsoft Windows NT/2k/XP name space provider
DB filename: %SystemRoot%\system32\winrnr.dll
DB protocol: NTDS

Namespace Provider 2: Espace de noms NLA (Network Location Awareness)
GUID: {6642243A-3BA8-4AA6-BAA5-2E0BD71FDD83}
Filename: %SystemRoot%\System32\mswsock.dll
Description: Microsoft Windows NT/2k/XP name space provider
DB filename: %SystemRoot%\system32\mswsock.dll
DB protocol: NLA-Namespace

Namespace Provider 3: Espace de noms Bluetooth
GUID: {06AA63E0-7D60-41FF-AFB2-3EE6D2D9392D}
Filename: %SystemRoot%\system32\wshbth.dll
Description: Bluetooth
DB filename: %SystemRoot%\system32\wshbth.dll
DB protocol: Bluetooth-Namespace

merci de m'aider. j'espère avoir bien fait la manoeuvre car le rapport me semble bien long...............
à bientôt
cordialement

dommab :cry: :cry:
dommab
 
Messages: 10
Inscription: 27 Mai 2008, 13:23

Messagede dommab » 21 Juin 2008, 16:00

bonjour,

pas de réponse svp ?????


tant pis


cordialement

dommab : :cry: :cry: :cry: :cry:
dommab
 
Messages: 10
Inscription: 27 Mai 2008, 13:23

Précédente

Retourner vers Spybot S&D

Qui est en ligne

Utilisateurs parcourant ce forum: Google [Bot] et 2 invités