[smitfraud-C] j'ai besoin de vous merci Fermé

Question

bonjour tout le monde,je viens faire appel aux experts de CCM pour vous faire part d'un problème, spybot viens à l'instant de me trouver smitfraud-C et j'aimerais bien m'en débarrasser mais aussi savoir ce que ce malware fait à mon ordinateur... merci beaucoup ! ci joint un rapport spybot:--- Search result list ---Smitfraud-C.: Réglages (Valeur du registre, fixed)  HKEY_LOCAL_MACHINE\SOFTWARE\Policies\{06849E9F-C8D7-4D59-B87D-784B7D6BE0B3}=...MTE3NDI6ODoxNg...--- Spybot - Search & Destroy version: 1.4  (build: 20050523) ---2005-12-27 unins000.exe (51.41.0.0)2005-05-31 blindman.exe (1.0.0.1)2005-05-31 SpybotSD.exe (1.4.0.3)2005-05-31 TeaTimer.exe (1.4.0.2)2005-05-31 Update.exe (1.4.0.0)2005-05-31 advcheck.dll (1.0.2.0)2005-05-31 aports.dll (2.1.0.0)2005-05-31 borlndmm.dll (7.0.4.453)2005-05-31 delphimm.dll (7.0.4.453)2005-05-31 SDHelper.dll (1.4.0.0)2005-05-31 Tools.dll (2.0.0.2)2005-05-31 UnzDll.dll (1.73.1.1)2005-05-31 ZipDll.dll (1.73.2.0)2006-02-10 Includes\Cookies.sbi (*)2006-02-10 Includes\Dialer.sbi (*)2006-02-10 Includes\Hijackers.sbi (*)2006-02-10 Includes\Keyloggers.sbi (*)2006-02-10 Includes\Malware.sbi (*)2006-02-10 Includes\Revision.sbi (*)2006-02-10 Includes\Security.sbi (*)2006-02-10 Includes\Spybots.sbi (*)2006-02-10 Includes\Trojans.sbi (*)2005-02-17 Includes\Tracks.uti2006-02-10 Includes\PUPS.sbi (*)--- System information ---Windows XP (Build: 2600)  / DataAccess: Microsoft Data Access Components KB870669 / DataAccess: Patch Available For XMLHTTP Vulnerability / DataAccess: Patch Available For XMLHTTP Vulnerability / DataAccess: Security Update for Microsoft Data Access Components / Windows Media Player: Correctif pour le Lecteur Windows Media [Voir Q828026 pour plus d'informations] / Windows Media Player / SP0: Correctif pour le Lecteur Windows Media [Voir Q828026 pour plus d'informations] / Windows Media Player: Windows Media Update 320920 / Windows XP / SP1: Windows XP Hotfix - KB821557 / Windows XP / SP1: Windows XP Hotfix - KB823182 / Windows XP / SP1: Windows XP Hotfix - KB824105 / Windows XP / SP1: Correctif Windows XP - KB824141 / Windows XP / SP1: Correctif Windows XP - KB828035 / Windows XP / SP1 / Q309521: Windows XP Hotfix (SP1) [See Q309521 for more information] / Windows XP / SP1: Windows XP Hotfix (SP1) [See Q311889 for more information] / Windows XP / SP1: Windows XP Hotfix (SP1) [See Q311967 for more information] / Windows XP / SP1: Windows XP Hotfix (SP1) [See Q313450 for more information] / Windows XP / SP1: Windows XP Hotfix (SP1) [See Q314862 for more information] / Windows XP / SP1: Windows XP Hotfix (SP1) [See Q315000 for more information] / Windows XP / SP1: Windows XP Hotfix (SP1) [See Q315403 for more information] / Windows XP / SP1: Windows XP Hotfix (SP1) [See Q317277 for more information] / Windows XP / SP1: Windows XP Hotfix (SP1) [See Q324096 for more information] / Windows XP / SP1: Windows XP Hotfix (SP1) [See Q326830 for more information] / Windows XP / SP1: Windows XP Hotfix (SP1) [See Q328940 for more information] / Windows XP / SP1: Windows XP Hotfix (SP1) [See Q329048 for more information] / Windows XP / SP1: Windows XP Hotfix (SP1) Q329170 / Windows XP / SP1: Windows XP Hotfix (SP1) [See Q329390 for more information] / Windows XP / SP1: Windows XP Hotfix (SP1) [See Q329441 for more information] / Windows XP / SP1: Windows XP Hotfix (SP1) [See Q329834 for more information] / Windows XP / SP1: Windows XP Hotfix (SP1) Q810577 / Windows XP / SP1: Windows XP Hotfix (SP1) Q811493 / Windows XP / SP1: Windows XP Hotfix (SP1) Q811630 / Windows XP / SP1: Windows XP Hotfix (SP1) Q815021 / Windows XP / SP1: Windows XP Hotfix (SP1) Q817606 / Windows XP / SP1: Windows XP Hotfix (SP1) Q819696 / Windows XP / SP2: Correctif Windows XP - KB810217 / Windows XP / SP2: Correctif Windows XP - KB823559 / Windows XP / SP2: Correctif Windows XP - KB825119 / Windows XP / SP2: Correctif Windows XP - KB833987 / Windows XP / SP2: Correctif Windows XP - KB839643 / Windows XP / SP2: Correctif Windows XP - KB839645 / Windows XP / SP2: Correctif Windows XP - KB840315 / Windows XP / SP2: Correctif Windows XP - KB841873 / Windows XP / SP2: Correctif Windows XP - KB842773 / Windows XP / SP2: Correctif Windows XP - KB883357 / Windows XP / SP2: Package du correctif Windows XP [voir Q323255 pour plus de détails]--- Startup entries list ---Located: HK_LM:Run, avast!command: C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe   file: C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe   size: 102448    MD5: 9eb989d83225f2e6d9ecfdccdd0db0caLocated: HK_LM:Run, Openwares LiveUpdatecommand: C:\Program Files\LiveUpdate\LiveUpdate.exe   file: C:\Program Files\LiveUpdate\LiveUpdate.exe   size: 61440    MD5: 93cf2b93f02e52cd6fffa567249f3f73Located: HK_LM:Run, SpyCatcher Remindercommand: "C:\karim\SpyCatcher 2006\SpyCatcher.exe" reminder   file: C:\karim\SpyCatcher 2006\SpyCatcher.exe   size: 98421    MD5: 53aca3d8b46774b0116d7e845332265fLocated: HK_LM:Run, Zone Labs Clientcommand: C:\karim\ZoneAlarm\ZoneAlarm\zlclient.exe   file: C:\karim\ZoneAlarm\ZoneAlarm\zlclient.exe   size: 755472    MD5: e85c5dc2659f562c496e839649aa7200Located: Démarrage (tous utilisateurs), SpyCatcher Protector.lnkcommand: C:\karim\SpyCatcher 2006\Protector.exe   file: C:\karim\SpyCatcher 2006\Protector.exe   size: 86133    MD5: 08ad75d8c985ce3c1e50742d4ddb919bLocated: Démarrage (utilisateur), Microsoft Office.lnkcommand: C:\Program Files\Microsoft Office\Office\Osa9.exe   file: C:\Program Files\Microsoft Office\Office\Osa9.exe   size: 65588    MD5: 09ec24043108b072e01a03a029239324Located: System.ini, crypt32chaincommand: crypt32.dll   file: crypt32.dllLocated: System.ini, cryptnetcommand: cryptnet.dll   file: cryptnet.dllLocated: System.ini, cscdllcommand: cscdll.dll   file: cscdll.dllLocated: System.ini, ScCertPropcommand: wlnotify.dll   file: wlnotify.dllLocated: System.ini, Schedulecommand: wlnotify.dll   file: wlnotify.dllLocated: System.ini, sclgntfycommand: sclgntfy.dll   file: sclgntfy.dllLocated: System.ini, SensLogncommand: WlNotify.dll   file: WlNotify.dllLocated: System.ini, termsrvcommand: wlnotify.dll   file: wlnotify.dllLocated: System.ini, wlballooncommand: wlnotify.dll   file: wlnotify.dll--- Browser helper object list ---{0A87E45F-537A-40B4-B812-E2544C21A09F} (SpywareBlock Class)          BHO name:         CLSID name: SpywareBlock Class{761497BB-D6F0-462C-B6EB-D4DAF1D92D43} (SSVHelper Class)          BHO name:         CLSID name: SSVHelper Class              Path: C:\Program Files\Java\jre1.5.0_06\bin\         Long name:            ssv.dll        Short name:                       Date (created): 10/11/2005 13:03:56Date (last access):         11/02/2006 Date (last write): 10/11/2005 13:22:10          Filesize:             184423        Attributes:           archive                MD5: F01726F7CA8538FDD4663C9DB8FEAEDC             CRC32:           0111B892           Version:           5.0.60.5--- ActiveX list ---{32305793-C19A-48E7-AD2F-D87FF7B264A4} (TenebrilSpywareScanner Control)          DPF name:         CLSID name: TenebrilSpywareScanner Control         Installer:           Codebase: http://www.tenebril.com/assets/activeX/SpywareScanner.ocx              Path: C:\WINDOWS\DOWNLO~1\         Long name: SpywareScanner.ocx        Short name:       SPYWAR~1.OCX    Date (created): 25/01/2006 18:57:28Date (last access):         11/02/2006 Date (last write): 25/01/2006 18:57:32          Filesize:             266296        Attributes:           archive                MD5: 268CB2C6A115D32DE4B34579DBFA659C             CRC32:           508E30CB           Version:            1.0.1.0--- Process list ---PID:    0 (   0) [System]PID:  316 (   4) \SystemRoot\System32\smss.exePID:  372 ( 316) \??\C:\WINDOWS\system32\csrss.exePID:  396 ( 316) \??\C:\WINDOWS\system32\winlogon.exePID:  448 ( 396) C:\WINDOWS\system32\services.exe size: 101888  MD5: FC0691097471EE374907E1024EDCBD43PID:  460 ( 396) C:\WINDOWS\system32\lsass.exe size: 11776  MD5: 2C2431B30A629123C1757582C9D93F38PID:  648 ( 448) C:\WINDOWS\system32\svchost.exe size: 12800  MD5: 333A4DB8410D8E24DB06D6AEBECDC7C2PID:  680 ( 448) C:\WINDOWS\System32\svchost.exe size: 12800  MD5: 333A4DB8410D8E24DB06D6AEBECDC7C2PID:  752 ( 448) C:\WINDOWS\System32\svchost.exe size: 12800  MD5: 333A4DB8410D8E24DB06D6AEBECDC7C2PID:  772 ( 448) C:\WINDOWS\System32\svchost.exe size: 12800  MD5: 333A4DB8410D8E24DB06D6AEBECDC7C2PID:  860 ( 448) C:\WINDOWS\system32\spoolsv.exe size: 51200  MD5: B1CE5287F096895D9BE26EB86F4D5FAFPID: 1064 ( 448) C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe size: 53248  MD5: 435D862E96FE19612093177CF6618F4EPID: 1092 ( 448) C:\Program Files\Alwil Software\Avast4\ashServ.exe size: 102448  MD5: 0839B8BFDF17DAC8C9B083009768400EPID: 1136 ( 448) C:\WINDOWS\System32\CTsvcCDA.exe size: 44032  MD5: 3C8B6609712F4FF78E521F6DCFC4032BPID: 1160 ( 448) C:\Program Files\Executive Software\DiskeeperWorkstation\DKService.exe size: 253952  MD5: 5A715FC7A5E222D8E987B2D903885B0BPID: 1212 ( 448) C:\Documents and Settings\sabrina\Bureau\Nouveau dossier (2)\ewido anti-malware\ewidoctrl.exe size: 13888  MD5: 26830B750372AB1BF29C95DEEBEB802FPID: 1248 ( 448) C:\Documents and Settings\sabrina\Bureau\Nouveau dossier (2)\ewido anti-malware\ewidoguard.exe size: 151616  MD5: 34A50717AD686900F078F5208F8E908EPID: 1464 (1364) C:\WINDOWS\Explorer.EXE size: 1005056  MD5: 9E20A8EF0CA524446AFEE29F4423CC8FPID: 1524 ( 448) C:\WINDOWS\System32\svchost.exe size: 12800  MD5: 333A4DB8410D8E24DB06D6AEBECDC7C2PID: 1564 ( 448) C:\WINDOWS\SYSTEM32\ZONELABS\vsmon.exe size: 1693448  MD5: 7E9C8F0BF97910E04A078799837BB6F2PID: 1836 ( 448) C:\WINDOWS\System32\MsPMSPSv.exe size: 53520  MD5: 581176F60885AEF8F78C6E38DCC3CDF9PID: 2016 (1464) C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe size: 102448  MD5: 9EB989D83225F2E6D9ECFDCCDD0DB0CAPID:  192 (1464) C:\karim\ZoneAlarm\ZoneAlarm\zlclient.exe size: 755472  MD5: E85C5DC2659F562C496E839649AA7200PID: 1156 ( 448) C:\Program Files\Alwil Software\Avast4\ashWebSv.exe size: 364592  MD5: 1E898FA5EA0C8CB3BF053997516BB2C0PID: 1312 ( 448) C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe size: 241712  MD5: A7A61A9FFE49102C0ECDC259C915BDB9PID: 3096 (1464) C:\Documents and Settings\sabrina\Bureau\Nouveau dossier (2)\Spybot - Search & Destroy\SpybotSD.exe size: 4393096  MD5: 09CA174A605B480318731E691DC98539PID: 1980 (1464) C:\Program Files\Mozilla Firefox\firefox.exe size: 7166053  MD5: DC7051841F2F67410524B2EEC25A1755PID:    4 (   0) System--- Browser start & search pages list ---Spybot - Search & Destroy browser pages report, 11/02/2006 19:29:37HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main\Search Page  http://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearchHKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main\Start Page  http://www.google.fr/HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main\Default_Search_URL  http://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearchHKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Search\SearchAssistant Explorer\Main\Default_Search_URL  about:blankHKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\SearchUrl\@  http://home.microsoft.com/access/autosearch.asp?p=%sHKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Main\Search Page  http://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearchHKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Main\Start Page  http://www.microsoft.com/isapi/redir.dll?prd={SUB_PRD}&clcid={SUB_CLSID}&pver={SUB_PVER}&ar=homeHKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Main\Default_Page_URL  http://www.microsoft.com/isapi/redir.dll?prd=ie&pver=6&ar=msnhomeHKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Main\Default_Search_URL  http://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearchHKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Search\SearchAssistant  http://ie.search.msn.com/{SUB_RFC1766}/srchasst/srchasst.htmHKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Search\CustomizeSearch  http://ie.search.msn.com/{SUB_RFC1766}/srchasst/srchcust.htm--- Winsock Layered Service Provider list ------ Uninstall list ---a-squared Free 1.6.1 1.6 (a-squared Free_is1)install location: C:\karim\a-squared\   uninstall cmd: "C:\karim\a-squared\unins000.exe"       publisher: Emsi Software GmbH        comments: a-squared       help link: http://forum.emsisoft.com  (AddressBook)   uninstall cmd: "C:\Program Files\Outlook Express\setup50.exe" /APP:WAB /CALLER:IE50 /UNINSTALL /PROMPTServeur AMS  (AMS Server)   uninstall cmd: C:\WINDOWS\IsUn040c.exe -f"C:\Program Files\Serveur AMS\AMSSERVR.isu"  (AudioHQ)   uninstall cmd: RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{FD851F7E-F887-405D-9E1C-488811113EF3}\setup.exe" -l0x40c  /removeavast! Antivirus 4.6 (avast!) version (major): 4 version (minor): 6install location: C:\PROGRA~1\ALWILS~1\Avast4  install source: C:\PROGRA~1\ALWILS~1\Avast4\setup   uninstall cmd: rundll32 C:\PROGRA~1\ALWILS~1\Avast4\Setup\setiface.dll,RunSetup       publisher: Alwil Software       help link: http://www.avast.com  (Branding)Canon PIXMA iP3000  (CANONBJ_Deinstall_CNMCP61.DLL)   uninstall cmd: C:\WINDOWS\System32\CNMCP61.exe "-PRINTERNAMECanon PIXMA iP3000" "-HELPERDLLC:\BJPrinter\CNMWINDOWS\Canon PIXMA iP3000 Installer\Inst2\cnmis.dll" "-RCDLLC:\BJPrinter\CNMWINDOWS\Canon PIXMA iP3000 Installer\Inst2\cnmi040c.dll"CCleaner (remove only)  (CCleaner)   uninstall cmd: "C:\Documents and Settings\sabrina\Bureau\Nouveau dossier\CCleaner\uninst.exe"OLITEC  PCI 56K V2 Modem  (Conexant SoftK56 Modem)   uninstall cmd: infunist.exe  (Connection Manager)Cosmo Player 2.1 (38329)  (Cosmo Player 2.1)   uninstall cmd: C:\WINDOWS\IsUn040c.exe -f"C:\Program Files\CosmoSoftware\CosmoPlayer\CosmoPlayer21.isu"  (Creative Configurator)   uninstall cmd: C:\WINDOWS\IsUn040c.exe -f"C:\Program Files\Creative\Audio\Configurator.isu"  (Creative Dos Drivers)   uninstall cmd: C:\WINDOWS\IsUn040c.exe -f"C:\Program Files\Creative\Audio\Dos.isu"  (Creative Installer Setup)   uninstall cmd: C:\WINDOWS\IsUn040c.exe -f"C:\Program Files\Creative\Uninstall\Installer.isu"  (Creative MiniDisc Center)   uninstall cmd: RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{AC157741-3285-4D6A-B934-9174587A3493}\setup.exe" -l0x40c  /remove  (Creative Mixer)   uninstall cmd: C:\WINDOWS\IsUn040c.exe -f"C:\Program Files\Creative\Audio\CTMixer.isu"  (Creative PlayCenter 2.0)   uninstall cmd: RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{48E3A9E6-FA13-11D5-8CC9-00A0C98192B6}\setup.exe" -l0x40c  /remove  (Creative Recorder)   uninstall cmd: RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{E7337A45-3FE5-4392-ABBB-26B794D060C9}\setup.exe" -l0x40c  /remove  (Creative Restore Defaults)   uninstall cmd: RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{9A4D2983-4662-4387-BE3D-4CFC2FA9C100}\setup.exe" -l0x40c  /remove  (Creative Surround Mixer 2)   uninstall cmd: RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{58582977-44D2-44A0-A09B-031CC2AE5938}\setup.exe" -l0x40c  /remove  (Creative WaveStudio)   uninstall cmd: RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{435E969D-867E-4364-8E74-3DC8A69C5BDB}\setup.exe" -l0x40c  /remove  (Diagnostics2)   uninstall cmd: RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{A731533B-B325-4D9C-91A4-D93C8E294C19}\setup.exe" -l0x40c  /removeCanon Utilities Easy-PhotoPrint  (Easy-PhotoPrint)   uninstall cmd: C:\Program Files\Canon\Easy-PhotoPrint\uninst.exe C:\Program Files\Canon\Easy-PhotoPrint\uninst.iniCanon Utilities Easy-PrintToolBox  (Easy-PrintToolBox)   uninstall cmd: C:\WINDOWS\BJPSUNST.EXEEasy-WebPrint  (Easy-WebPrint)   uninstall cmd: C:\WINDOWS\IsUn040c.exe -f"C:\Program Files\Canon\Easy-WebPrint\Uninst.isu"Encyclopédie Microsoft Encarta 99 99F (Encarta99F) version (major): 6install location: "C:\Program Files\Microsoft Référence\Encyclopédie Encarta"  install source: "D:"   uninstall cmd: RunDll32 C:\PROGRA~1\MICROS~4\ENCYCL~1\UNENC99.DLL,Uninstall  C:\PROGRA~1\MICROS~4\ENCYCL~1\SETUP99F\INST99F.LOG       publisher: Microsoft Corporationewido anti-malware  (ewidoantimalware)install location: C:\Documents and Settings\sabrina\Bureau\Nouveau dossier (2)\ewido anti-malware   uninstall cmd: C:\Documents and Settings\sabrina\Bureau\Nouveau dossier (2)\ewido anti-malware\Uninstall.exe       publisher: ewido networks       help link: http://www.ewido.net  (expinst)GeForce2 GTS Experience  (GeForce2 GTS Experience)   uninstall cmd: C:\WINDOWS\IsUninst.exe -f"C:\Program Files\NVidia Corporation\GeForce2 GTS Experience\Uninst.isu"HijackThis 1.99.1 1.99.1 (HijackThis)   uninstall cmd: C:\Documents and Settings\sabrina\Bureau\Nouveau dossier (2)\HijackThis.exe /uninstall       publisher: Soeperman Enterprises Ltd.Internet Explorer Q867801  (ieupdate)   uninstall cmd: C:\WINDOWS\ieuninst.exe C:\WINDOWS\INF\Q867801.infJava 2 Runtime Environment Standard Edition v1.3.1_03  (JRE 1.3.1_03)   uninstall cmd: C:\WINDOWS\IsUninst.exe -f"C:\Program Files\JavaSoft\JRE\1.3.1_03\Uninst.isu"jv16 PowerTools 1.3  (jv16 PowerTools_is1)   uninstall cmd: "C:\karim\jv16 PowerTools\unins000.exe"Kaspersky On-line Scanner 5.0.67.0 (Kaspersky On-line Scanner)  estimated size: 6040install location: C:\WINDOWS\System32\KASPER~1\KASPER~1   uninstall cmd: C:\WINDOWS\System32\KASPER~1\KASPER~1\kavuninstall.exe       publisher: Kaspersky Lab         contact: Customer Support Department       help link: http://www.kaspersky.com/support.aspMicrosoft Data Access Components KB870669  (KB870669)   uninstall cmd: C:\WINDOWS\muninst.exe C:\WINDOWS\INF\KB870669.inf       publisher: Microsoft Corporation       help link: http://support.microsoft.com?kbid=KB870669Correctif Windows XP - KB883357 20040804.165131 (KB883357)   uninstall cmd: C:\WINDOWS\$NtUninstallKB883357$\spuninst\spuninst.exe       publisher: Microsoft Corporation       help link: http://support.microsoft.com?kbid=883357LiveUpdate 2.6 (Symantec Corporation) 2.6.14.0 (LiveUpdate)install location: C:\Program Files\Symantec\LiveUpdate   uninstall cmd: C:\Program Files\Symantec\LiveUpdate\LSETUP.EXE /U       publisher: Symantec CorporationLogiciel iTouch de Logitech  (Logitech iTouch)   uninstall cmd: C:\WINDOWS\IsUn040c.exe -fC:\PROGRA~1\LOGITECH\ITOUCH\Uninst.isu -c"C:\PROGRA~1\LOGITECH\ITOUCH\LUnInst.dll  (Logitech Key Commander)   uninstall cmd: C:\WINDOWS\IsUn040c.exe -fC:\PROGRA~1\LOGITECH\ITOUCH\Uninst.isu -c"C:\PROGRA~1\LOGITECH\ITOUCH\LUnInst.dllMacromedia Shockwave Player 10.1.0.11 (Macromedia Shockwave Player)   uninstall cmd: C:\WINDOWS\SYSTEM32\MACROMED\SHOCKW~3\UNWISE.EXE C:\WINDOWS\SYSTEM32\MACROMED\SHOCKW~3\INSTALL.LOG       publisher: Macromedia, Inc.       help link: http://www.macromedia.com/fr/support/shockwaveMathcad 2000 Professionnel  (Mathcad 2000 Professionnel)   uninstall cmd: C:\WINDOWS\IsUn040c.exe -f"C:\Program Files\MathSoft\Mathcad 2000 Professionnel\Uninst.isu"CD-LabelPrint  (MediaNavigation.CDLabelPrint)install location: C:\Program Files\Canon\CD-LabelPrint\   uninstall cmd: "C:\Program Files\Canon\CD-LabelPrint\Uninstal.exe" Canon.CDLabelPrint.ApplicationMediaRing Talk 99 Release 7.0.0014  (MediaRing Talk 99 Release 7.0.0014)   uninstall cmd: C:\WINDOWS\preuninst.exe  (Midi Samples)   uninstall cmd: C:\WINDOWS\IsUn040c.exe -f"C:\Program Files\Creative\Audio\Midi.isu"Mozilla Firefox (1.5.0.1) 1.5.0.1 (fr) (Mozilla Firefox (1.5.0.1))install location: C:\Program Files\Mozilla Firefox   uninstall cmd: C:\WINDOWS\UninstallFirefox.exe /ua "1.5.0.1 (fr)"       publisher: MozillaBarre d'outils MSN  (MSN Toolbar)   uninstall cmd: C:\Program Files\MSN Apps\MSN Toolbar\01.02.4000.1001\fr\mtbs.exe cWinFast Windows 95/98/ME Display Drivers  (NVIDIA)   uninstall cmd: rundll32.exe C:\WINDOWS\SYSTEM32\NVINST32.DLL,NvUninstall9x nvagp.infOutlook Express Q823353  (oeupdate)   uninstall cmd: C:\WINDOWS\oeuninst.exe C:\WINDOWS\INF\Q823353.inf  (PCHealth)   uninstall cmd: rundll32.exe setupapi.dll,InstallHinfSection DefaultUninstall 132 C:\WINDOWS\INF\PCHealth.inf  (PlayCenter)   uninstall cmd: C:\WINDOWS\IsUn040c.exe -f"C:\Program Files\Creative\Audio\PlayCenter\Player.isu"PopUpCop 2.0.3.20 (PopUpCop)   uninstall cmd: C:\PROGRA~1\POPUPCOP\UNWISE.EXE /U C:\PROGRA~1\POPUPCOP\INSTALL.LOG       publisher: EdenSoft       help link: http://www.PopUpCop.com/help.htmlWindows XP Hotfix (SP1) [See Q313450 for more information]  (Q313450)   uninstall cmd: C:\WINDOWS\$NtUninstallQ313450$\spuninst\spuninst.exeWindows XP Hotfix (SP1) Q329170 20030102.115458 (Q329170)   uninstall cmd: C:\WINDOWS\$NtUninstallQ329170$\spuninst\spuninst.exe       publisher: Microsoft Corporation       help link: Pour plus d'informations, consultez Q329170 à l'adresse http://support.microsoft.comQuickTime  (QuickTime)   uninstall cmd: C:\WINDOWS\unvise32qt.exe C:\WINDOWS\SYSTEM32\QuickTime\Uninstall.logQuickTime for Windows (32-bit)  (QuickTime32)   uninstall cmd: C:\WINDOWS\QTW32DEL.EXE  (Sevinst)  (ShockwaveFlash)Sound Blaster AudioPCI  (Sound Blaster AudioPCI)   uninstall cmd: C:\Program Files\Creative\Uninstall\CTUNINST.EXE /U:UNINST1.INI  (Sound Blaster Live! Pilotes Windows)   uninstall cmd: "C:\Program Files\Creative\SBLive\Program\Ctzapxx.EXE" /X /U /S /L:FRNSpyCatcher Express 2006  (SpyCatcher Express 2006_is1)install location: C:\karim\SpyCatcher 2006\   uninstall cmd: "C:\karim\SpyCatcher 2006\unins000.exe"       publisher: Tenebril       help link: http://www.tenebril.com/support/index.phpUSB Monitor  (USB Monitor)   uninstall cmd: C:\WINDOWS\uninst.exe -f"C:\Program Files\USB Monitor\DeIsL1.isu"  -c"C:\Program Files\USB Monitor\_ISREG32.DLL"VIAhm  (VIAhm)   uninstall cmd: C:\WINDOWS\IsUninst.exe -fc:\VIAhm\Uninst.isuViewpoint Media Player (Remove Only)  (ViewpointMediaPlayer)   uninstall cmd: C:\Program Files\Viewpoint\Viewpoint Media Player\mtsAxInstaller.exe /uWinamp (remove only)  (Winamp)   uninstall cmd: "C:\Documents and Settings\sabrina\Bureau\Nouveau dossier (2)\Winamp\UninstWA.exe"Désinstallation de Windows XP  (Windows)install location: C:\undo   uninstall cmd: %SYSTEMROOT%\system32\osuninst.exeWinFox V1.0 Setup  (WinFox V1.0 Setup)   uninstall cmd: C:\WINDOWS\IsUn040c.exe -f"C:\Program Files\Leadtek Research Inc.\WinFox V1.0 Setup\Uninst.isu"Archiveur WinRAR  (WinRAR archiver)   uninstall cmd: C:\Program Files\WinRAR\uninstall.exeXingMPEG Player  (XingMPEG Player)   uninstall cmd: C:\PROGRA~1\XING\XINGMP~1\UNINST.EXE C:\PROGRA~1\XING\XINGMP~1\INSTALL.LOGZoneAlarm 6.1.737.000 (ZoneAlarm)   uninstall cmd: C:\karim\ZoneAlarm\ZoneAlarm\zauninst.exe       publisher: Zone Labs, Inc       help link: C:\karim\ZoneAlarm\ZoneAlarm\Aide\zaclients.chmMicrosoft Office 2000 Premium 9.00.2720 ({0000040C-78E1-11D2-B60F-006097C998E7})         version: 150997664 version (major): 9    install date: 24/01/01  install source: D:\   uninstall cmd: MsiExec.exe /I{0000040C-78E1-11D2-B60F-006097C998E7}       publisher: Microsoft Corporation       help link: http://www.microsoft.com/supportNorton WMI Update 2005.1.2.20 ({1526D87C-A955-4FAB-BF18-697BA457E352}) version (major): 2005 version (minor): 1  estimated size: 2168    install date: 20050129   uninstall cmd: MsiExec.exe /X{1526D87C-A955-4FAB-BF18-697BA457E352}       publisher: Symantec CorporationJ2SE Runtime Environment 5.0 Update 4 1.5.0.40 ({3248F0A8-6813-11D6-A77B-00B0D0150040})         version: 17104896 version (major): 1 version (minor): 5  estimated size: 121345    install date: 20050820  install source: http://jdl.sun.com/webapps/download/GetFile/1.5.0_04-b05/windows-i586//   uninstall cmd: MsiExec.exe /I{3248F0A8-6813-11D6-A77B-00B0D0150040}       publisher: Sun Microsystems, Inc.         contact: http://java.com       help link: http://java.com          readme: C:\Program Files\Java\jre1.5.0_04\README.txtJ2SE Runtime Environment 5.0 Update 6 1.5.0.60 ({3248F0A8-6813-11D6-A77B-00B0D0150060})         version: 17104896 version (major): 1 version (minor): 5  estimated size: 122337    install date: 20051226  install source: http://jdl.sun.com/webapps/download/GetFile/1.5.0_06-b05/windows-i586//   uninstall cmd: MsiExec.exe /I{3248F0A8-6813-11D6-A77B-00B0D0150060}       publisher: Sun Microsystems, Inc.         contact: http://java.com       help link: http://java.com          readme: C:\Program Files\Java\jre1.5.0_06\README.txtWebFldrs XP 9.50.5318 ({350C97B8-3D7C-4EE8-BAA9-00BCB3D54227})         version: 154277062 version (major): 9 version (minor): 50  estimated size: 2708    install date: 20030525  install source: C:\WINDOWS\System32\       publisher: Microsoft Corporation       help link: http://www.microsoft.com/windows  ({435E969D-867E-4364-8E74-3DC8A69C5BDB})   uninstall cmd: RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{435E969D-867E-4364-8E74-3DC8A69C5BDB}\setup.exe" -l0x40c   ({48E3A9E6-FA13-11D5-8CC9-00A0C98192B6})   uninstall cmd: RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{48E3A9E6-FA13-11D5-8CC9-00A0C98192B6}\setup.exe" -l0x40c DiskeeperWorkstation 7.0.403.2 ({5187D2C3-BCB9-4450-83B9-5E0BC4B4AB8D})         version: 117440915 version (major): 7  estimated size: 3709    install date: 20040415  install source: C:\Program Files\Executive Software\Diskeeper Setup\   uninstall cmd: MsiExec.exe /I{5187D2C3-BCB9-4450-83B9-5E0BC4B4AB8D}       publisher: Executive Software International, Inc.        comments: Copyright 2002 Executive Software International, Inc. Tous droits réservés.         contact: Support technique       help link: http://www.execsoft.com  help telephone: Téléphone - États-Unis -  818-771-1600            Europe - +011-44-1342-327477                Japon - +32984-3845894  ({58582977-44D2-44A0-A09B-031CC2AE5938})   uninstall cmd: RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{58582977-44D2-44A0-A09B-031CC2AE5938}\setup.exe" -l0x40c Dragon NaturallySpeaking 7.1 7.10.200.092 ({6675E71B-9843-4971-BC15-18AB52801134}) version (major): 7 version (minor): 10install location: C:\Program Files\ScanSoft\NaturallySpeaking  install source: D:\dragon\   uninstall cmd: C:\Program Files\InstallShield Installation Information\{6675E71B-9843-4971-BC15-18AB52801134}\setup.exe       publisher: ScanSoft       help link: http://www.ScanSoft.com/NaturallySpeaking/support/MAX-FX Tools  ({7299E7F8-6921-4588-9A83-9BB7B867706F})   uninstall cmd: RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\ENGINE\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{7299E7F8-6921-4588-9A83-9BB7B867706F}\SETUP.EXE" TuneUp Utilities 2006 5.0.2332 ({868D7896-99D4-4513-BC62-2B3AD3E24926})         version: 83888412 version (major): 5  estimated size: 26606    install date: 20060126  install source: C:\Program Files\Fichiers communs\Wise Installation Wizard\   uninstall cmd: MsiExec.exe /I{868D7896-99D4-4513-BC62-2B3AD3E24926}       publisher: TuneUp Software       help link: www.tuneup.deSound Blaster Live!  ({9115E7DB-3B29-445A-802D-11E0AA945B7F})   uninstall cmd: RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{9115E7DB-3B29-445A-802D-11E0AA945B7F}\SETUP.EXE" -l0x40c   ({9A4D2983-4662-4387-BE3D-4CFC2FA9C100})   uninstall cmd: RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{9A4D2983-4662-4387-BE3D-4CFC2FA9C100}\setup.exe" -l0x40c   ({A731533B-B325-4D9C-91A4-D93C8E294C19})   uninstall cmd: RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{A731533B-B325-4D9C-91A4-D93C8E294C19}\setup.exe" -l0x40c MSN Messenger 7.0 7.0.0816 ({ABEB838C-A1A7-4C5D-B7E1-8B4314600816})         version: 117441328 version (major): 7  estimated size: 12506    install date: 20060201   uninstall cmd: MsiExec.exe /I{ABEB838C-A1A7-4C5D-B7E1-8B4314600816}       publisher: Microsoft Corporation  ({AC157741-3285-4D6A-B934-9174587A3493})   uninstall cmd: RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{AC157741-3285-4D6A-B934-9174587A3493}\setup.exe" -l0x40c PC-Link VTech® (Masterpad®)  ({B991EED6-5106-11D5-8F02-0000E8A35E52})   uninstall cmd: RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\ENGINE\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{B991EED6-5106-11D5-8F02-0000E8A35E52}\SETUP.EXE" anythingNorton AntiVirus Corporate Edition 7.6.0.0000 ({BD12EB47-DBDF-11D3-BEEA-00A0CC272509})         version: 117833728 version (major): 7 version (minor): 6  estimated size: 75338    install date: 20020314  install source: D:\CD2\NAVCORP\ROLLOUT\AVSERVER\CLIENTS\WIN32\   uninstall cmd: MsiExec.exe /I{BD12EB47-DBDF-11D3-BEEA-00A0CC272509}       publisher: Symantec Corporation         contact:                    help link: http://www.symantec.com  help telephone:             Alcatel SpeedTouch USB Software  ({D41FAAA9-8048-4906-86B2-9AADEA1FA0B7})   uninstall cmd: RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\ENGINE\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{D41FAAA9-8048-4906-86B2-9AADEA1FA0B7}\SETUP.EXE"  -Control_PanelCanon PhotoRecord 02.02.00013 ({D958FAC4-BAE0-4B1D-A42E-DE9BFDE7DDEE})         version: 33685517 version (major): 2 version (minor): 2  estimated size: 97842    install date: 20050130  install source: D:\PREC2\   uninstall cmd: MsiExec.exe /X{D958FAC4-BAE0-4B1D-A42E-DE9BFDE7DDEE}       publisher: Cisra  ({E7337A45-3FE5-4392-ABBB-26B794D060C9})   uninstall cmd: RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{E7337A45-3FE5-4392-ABBB-26B794D060C9}\setup.exe" -l0x40c PCLink for GSM Ver.1.0  ({F3BF93D3-25E7-11D6-B496-0050BF282FBC})   uninstall cmd: RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\ENGINE\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{F3BF93D3-25E7-11D6-B496-0050BF282FBC}\SETUP.EXE" -l0x9   ({FD851F7E-F887-405D-9E1C-488811113EF3})   uninstall cmd: RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{FD851F7E-F887-405D-9E1C-488811113EF3}\setup.exe" -l0x40c --- System Services ---Service (registry key): Aavmker4  Display name: avast! Asynchronous Virus Monitor         Start: 1          Type: 1 Error Control: 1Service (registry key): Abiosdsk         Start: 4          Type: 1 Error Control: 0Service (registry key): abp480n5         Start: 4          Type: 1 Error Control: 1Service (registry key): ACPI  Display name: Pilote ACPI Microsoft    Image path: System32\DRIVERS\ACPI.sys    Image size: 180096     Image MD5: 34128BB2AB7BD69C72017BE7FCF8BE34         Start: 0          Type: 1 Error Control: 1Service (registry key): ACPIEC         Start: 4          Type: 1 Error Control: 1Service (registry key): adpu160m         Start: 4          Type: 1 Error Control: 1Service (registry key): aec  Display name: Suppresseur d'écho acoustique (Noyau Microsoft)    Image path: system32\drivers\aec.sys    Image size: 122472     Image MD5: B45A744CA0A15A59D8B0307CE9741E92         Start: 3          Type: 1 Error Control: 1Service (registry key): AFD  Display name: Environnement de prise en charge de réseau AFD    Image path: \SystemRoot\System32\drivers\afd.sys         Start: 2          Type: 1 Error Control: 1Service (registry key): Aha154x         Start: 4          Type: 1 Error Control: 1Service (registry key): aic78u2         Start: 4          Type: 1 Error Control: 1Service (registry key): aic78xx         Start: 4          Type: 1 Error Control: 1Service (registry key): alcan5wn  Display name: Alcatel SpeedTouch USB ADSL PPP Networking Driver (NDISWAN)    Image path: System32\DRIVERS\alcan5wn.sys    Image size: 53168     Image MD5: C7E217CD964D0067F18263429C87EC1B         Start: 3          Type: 1 Error Control: 1Service (registry key): alcaudsl  Display name: Alcatel Speed Touch ADSL Modem ATM Transport    Image path: System32\DRIVERS\alcaudsl.sys    Image size: 743136     Image MD5: 8080B5EA17A763BBCE6C92BBC6CEEFE8         Start: 3          Type: 1 Error Control: 1Service (registry key): Alerter  Display name: Avertissement   Description: Informe les utilisateurs et les ordinateurs sélectionnés des alertes administratives. Si ce service est arrêté, les programmes qui utilisent les alertes administratives ne les recevront pas. Si ce service est désactivé, les services qui en dépendent ne pourront pas démarrer.   Object name: NT AUTHORITY\LocalService    Image path: %SystemRoot%\System32\svchost.exe -k LocalService    Image size: 12800     Image MD5: 333A4DB8410D8E24DB06D6AEBECDC7C2         Start: 3          Type: 32 Error Control: 1 Depends On services: LanmanWorkstationService (registry key): ALG  Display name: Service de la passerelle de la couche Application   Description: Fournit la prise en charge des plugins de protocoles tiers pour le partage de connexion Internet et le pare-feu Internet.   Object name: NT AUTHORITY\LocalService    Image path: %SystemRoot%\System32\alg.exe    Image size: 40960     Image MD5: 55D226818B6C3D99741432D37657BA73         Start: 3          Type: 16 Error Control: 1Service (registry key): AliIde         Start: 4          Type: 1 Error Control: 1Service (registry key): amsint         Start: 4          Type: 1 Error Control: 1Service (registry key): AppMgmt  Display name: Gestion d'applications   Description: Fournit des services d'installation de logiciels tels que Attribuer, Publier et Supprimer.   Object name: LocalSystem    Image path: %SystemRoot%\system32\svchost.exe -k netsvcs    Image size: 12800     Image MD5: 333A4DB8410D8E24DB06D6AEBECDC7C2         Start: 3          Type: 32 Error Control: 1Service (registry key): asc         Start: 4          Type: 1 Error Control: 1Service (registry key): asc3350p         Start: 4          Type: 1 Error Control: 1Service (registry key): asc3550         Start: 4          Type: 1 Error Control: 1Service (registry key): aswMon2  Display name: avast! Standard Shield Support         Start: 2          Type: 2 Error Control: 1Service (registry key): aswRdr  Display name: aswRdr         Start: 3          Type: 1 Error Control: 1 Depends On services: tcpipService (registry key): aswTdi  Display name: avast! Network Shield Support         Start: 1          Type: 1 Error Control: 1 Depends On services: tcpipService (registry key): aswUpdSv  Display name: avast! iAVS4 Control Service   Description: Fournit la mise à jour automatique pour l'antivirus avast!.   Object name: LocalSystem    Image path: "C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe"    Image size: 53248     Image MD5: 435D862E96FE19612093177CF6618F4E         Start: 2          Type: 272 Error Control: 1Service (registry key): AsyncMac  Display name: Pilote de média asynchrone RAS   Description: Pilote de média asynchrone RAS    Image path: System32\DRIVERS\asyncmac.sys    Image size: 13568     Image MD5: 03F403B07A884FC2AA54A0916C410931         Start: 3          Type: 1 Error Control: 1Service (registry key): atapi  Display name: Contrôleur de disque dur IDE/ESDI standard    Image path: System32\DRIVERS\atapi.sys    Image size: 86656     Image MD5: A64013E98426E1877CB653685C5C0009         Start: 0          Type: 1 Error Control: 1Service (registry key): Atdisk         Start: 4          Type: 1 Error Control: 0Service (registry key): Atmarpc  Display name: Protocole client ATM ARP   Description: Protocole client ATM ARP    Image path: System32\DRIVERS\atmarpc.sys    Image size: 57216     Image MD5: 8D735CA1CBDB0081B0E3B9FF0EB222D0         Start: 3          Type: 1 Error Control: 1 Depends On services: TcpipService (registry key): AudioSrv  Display name: Audio Windows   Description: Gère les périphériques audio pour les programmes basés sur Windows. Si ce service est arrêté, les périphériques et les effets audio ne fonctionneront pas correctement. Si ce service est désactivé, les services en dépendant explicitement ne démarreront pas.   Object name: LocalSystem    Image path: %SystemRoot%\System32\svchost.exe -k netsvcs    Image size: 12800     Image MD5: 333A4DB8410D8E24DB06D6AEBECDC7C2         Start: 2          Type: 32 Error Control: 1 Depends On services: PlugPlay,RpcSsService (registry key): audstub  Display name: Pilote audio Stub    Image path: System32\DRIVERS\audstub.sys    Image size: 3072     Image MD5: D9F724AA26C010A217C97606B160ED68         Start: 3          Type: 1 Error Control: 1Service (registry key): avast! Antivirus  Display name: avast! Antivirus   Description: Gère et implémente les services de l'antivirus avast! pour cet ordinateur. Ceci inclut la protection résidente, la zone de quarantaine et le planificateur.   Object name: LocalSystem    Image path: "C:\Program Files\Alwil Software\Avast4\ashServ.exe"    Image size: 102448     Image MD5: 0839B8BFDF17DAC8C9B083009768400E         Start: 2          Type: 272 Error Control: 1 Depends On services: aswMon2,RpcSSService (registry key): avast! Mail Scanner  Display name: avast! Mail Scanner   Description: Implémente l'analyse du courrier électronique pour l'antivirus avast!.   Object name: LocalSystem    Image path: "C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe" /service    Image size: 241712     Image MD5: A7A61A9FFE49102C0ECDC259C915BDB9         Start: 3          Type: 272 Error Control: 1 Depends On services: "avast! Antivirus"Service (registry key): avast! Web Scanner  Display name: avast! Web Scanner   Description: Implémente l'analyse du contenu web (HTTP) pour l'antivirus avast!.   Object name: LocalSystem    Image path: "C:\Program Files\Alwil Software\Avast4\ashWebSv.exe" /service    Image size: 364592     Image MD5: 1E898FA5EA0C8CB3BF053997516BB2C0         Start: 3          Type: 272 Error Control: 1 Depends On services: "avast! Antivirus"Service (registry key): BattC         Start: 0          Type: 0 Error Control: 0Service (registry key): Beep         Start: 1          Type: 1 Error Control: 1Service (registry key): BITS  Display name: Service de transfert intelligent en arrière-plan   Description: Utilise la bande passante réseau inactive pour transférer des données.   Object name: LocalSystem    Image path: %SystemRoot%\System32\svchost.exe -k netsvcs    Image size: 12800     Image MD5: 333A4DB8410D8E24DB06D6AEBECDC7C2         Start: 2          Type: 32 Error Control: 1 Depends On services: RpcssService (registry key): Browser  Display name: Explorateur d'ordinateur   Description: Tient à jour une liste des ordinateurs présents sur le réseau et fournit cette liste aux ordinateurs désignés comme navigateurs. Si ce service est arrêté, la liste ne sera pas mise ou tenue à jour. Si ce service est désactivé, les services qui en dépendent ne pourront pas démarrer.   Object name: LocalSystem    Image path: %SystemRoot%\System32\svchost.exe -k netsvcs    Image size: 12800     Image MD5: 333A4DB8410D8E24DB06D6AEBECDC7C2         Start: 3          Type: 32 Error Control: 1 Depends On services: LanmanWorkstation,LanmanServerService (registry key): cbidf2k         Start: 4          Type: 1 Error Control: 1Service (registry key): CCDECODE  Display name: Décodeur sous-titre fermé    Image path: System32\DRIVERS\CCDECODE.sys    Image size: 16256     Image MD5: 1108137A497C112126B3F1F0E8A021B6         Start: 3          Type: 1 Error Control: 1Service (registry key): cd20xrnt         Start: 4          Type: 1 Error Control: 1Service (registry key): Cdaudio         Start: 1          Type: 1 Error Control: 0Service (registry key): Cdfs         Start: 4          Type: 2 Error Control: 1 Depends On group: "SCSI CDROM Class"Service (registry key): Cdrom  Display name: Pilote de CD-ROM    Image path: System32\DRIVERS\cdrom.sys    Image size: 47488     Image MD5: CB762E814F602229A574F4D78D3D6A30         Start: 1          Type: 1 Error Control: 1 Depends On group: "SCSI miniport"Service (registry key): Changer         Start: 1          Type: 1 Error Control: 0Service (registry key): cisvc  Display name: Service d'indexation   Description: Construit un index des contenus et des propriétés des fichiers sur les ordinateurs locaux et distants ; fournit un accès rapide aux fichiers par le biais d'un langage d'interrogation flexible.   Object name: LocalSystem    Image path: C:\WINDOWS\System32\cisvc.exe    Image size: 5120     Image MD5: 7901AF03767C140467671C7CEEB2C3FE         Start: 3          Type: 32 Error Control: 1 Depends On services: RPCSSService (registry key): ClipSrv  Display name: Gestionnaire de l'Album   Description: Active le Gestionnaire de l'Album afin de stocker les informations et les partager avec des ordinateurs à distance. Si le service est arrêté, le Gestionnaire de l'Album ne pourra pas partager les informations avec des ordinateurs à distance. Si ce service est désactivé, tout service en dépendant explicitement ne démarrera pas.   Object name: LocalSystem    Image path: %SystemRoot%\system32\clipsrv.exe    Image size: 30720     Image MD5: 3D1AAB2963FABCAFEB507B5C9D67BFBC         Start: 3          Type: 16 Error Control: 1 Depends On services: NetDDEService (registry key): CmdIde         Start: 4          Type: 1 Error Control: 1Service (registry key): COMSysApp  Display name: Application système COM+   Description: Gère la configuration et le suivi des composants de base COM+ (Component Object Model) . Si le service est arrêté, la plupart des composants de base COM+ ne fonctionneront pas correctement. Si ce service est désactivé, les services qui en dépendent de manière explicite ne pourront pas démarrer.   Object name: LocalSystem    Image path: C:\WINDOWS\System32\dllhost.exe /Processid:{02D4B3F1-FD88-11D1-960D-00805FC79235}    Image size: 4608     Image MD5: 17681E6109A67F3AEA66AD6AAE2434E6         Start: 3          Type: 16 Error Control: 1 Depends On services: rpcssService (registry key): ContentFilter         Start: 0          Type: 0 Error Control: 0Service (registry key): ContentIndex         Start: 0          Type: 0 Error Control: 0Service (registry key): Cpqarray         Start: 4          Type: 1 Error Control: 1Service (registry key): Cpqarray         Start: 4          Type: 1 Error Control: 1Service (registry key): CryptSvc  Display name: Services de cryptographie   Description: Fournit trois services de gestion : le service de base de données de catalogue, qui confirme la signature des fichiers Windows; le service de racine protégée, qui ajoute et supprime des certificats d'autorité de certification de racine approuvés et le service Clé, qui fournit une aide dans l'inscription de cet ordinateur pour les certificats. Si ce service est arrêté, ces services de gestion ne fonctionneront pas correctement. Si ce service est désactivé, tout service en dépendant explicitement ne démarrera pas.   Object name: LocalSystem    Image path: %SystemRoot%\system32\svchost.exe -k netsvcs    Image size: 12800     Image MD5: 333A4DB8410D8E24DB06D6AEBECDC7C2         Start: 2          Type: 32 Error Control: 1 Depends On services: RpcSsService (registry key): ctac32k  Display name: Creative AC3 Software Decoder    Image path: System32\drivers\ctac32k.sys    Image size: 127948     Image MD5: 4B6096745F72B4FD36514617E2EA5D37         Start: 3          Type: 1 Error Control: 1Service (registry key): ctaud2k  Display name: Creative Audio Driver (WDM)    Image path: system32\drivers\ctaud2k.sys    Image size: 837548     Image MD5: 3576EC792347ED15699F6D830E0F5437         Start: 3          Type: 1 Error Control: 1Service (registry key): ctljystk  Display name: Creative SBLive! Port de jeux    Image path: System32\DRIVERS\ctljystk.sys    Image size: 3712     Image MD5: 71007BD2E1E26927FE3E4EB00C0BEEDF         Start: 3          Type: 1 Error Control: 0Service (registry key): ctprxy2k  Display name: Creative Proxy Driver    Image path: System32\drivers\ctprxy2k.sys    Image size: 11068     Image MD5: 097D42574E3C6D98CD5A2EE7647FA6BF         Start: 3          Type: 1 Error Control: 1Service (registry key): ctsfm2k  Display name: Creative SoundFont Management Device Driver    Image path: System32\drivers\ctsfm2k.sys    Image size: 213860     Image MD5: C58A2507EF62B20B9BD670C666088B50         Start: 3          Type: 1 Error Control: 1Service (registry key): dac2w2k         Start: 4          Type: 1 Error Control: 0Service (registry key): dac960nt         Start: 4          Type: 1 Error Control: 1Service (registry key): Dhcp  Display name: Client DHCP   Description: Gère la configuration réseau en inscrivant et en mettant à jour les adresses IP et les noms DNS.   Object name: LocalSystem    Image path: %SystemRoot%\System32\svchost.exe -k netsvcs    Image size: 12800     Image MD5: 333A4DB8410D8E24DB06D6AEBECDC7C2         Start: 2          Type: 32 Error Control: 1 Depends On services: Tcpip,Afd,NetBTService (registry key): Disk  Display name: Pilote de disque    Image path: System32\DRIVERS\disk.sys    Image size: 33664     Image MD5: 43A10CD19D648E57ED039A6CAA667A56         Start: 0          Type: 1 Error Control: 1 Depends On group: "SCSI miniport"Service (registry key): Diskeeper  Display name: Diskeeper   Description: Contrôle de service Diskeeper   Object name: LocalSystem    Image path: C:\Program Files\Executive Software\DiskeeperWorkstation\DKService.exe    Image size: 253952     Image MD5: 5A715FC7A5E222D8E987B2D903885B0B         Start: 2          Type: 272 Error Control: 0 Depends On services: RPCSSService (registry key): DLHOST  Display name: DynamicHost   Description: DynamicHost   Object name: LocalSystem         Start: 4          Type: 272 Error Control: 0Service (registry key): dmadmin  Display name: Service d'administration du Gestionnaire de disque logique   Description: Configure les lecteurs de disque durs et les volumes. Le service ne s'exécute que pour les processus de configurations puis s'arrête.   Object name: LocalSystem    Image path: %SystemRoot%\System32\dmadmin.exe /com    Image size: 205312     Image MD5: F03B6377293A2CA253E02366B6F817D3         Start: 3          Type: 32 Error Control: 1 Depends On services: RpcSs,PlugPlay,DmServerService (registry key): dmboot    Image path: System32\drivers\dmboot.sys    Image size: 781440     Image MD5: 625043857173294DF9239909FC37CCD1         Start: 4          Type: 1 Error Control: 1Service (registry key): dmio  Display name: Pilote de Gestionnaire de disque logique    Image path: System32\drivers\dmio.sys    Image size: 147456     Image MD5: C85A01B45E107B2D80A1263B365E62B5         Start: 0          Type: 1 Error Control: 1Service (registry key): dmload    Image path: System32\drivers\dmload.sys    Image size: 5888     Image MD5: E9317282A63CA4D188C0DF5E09C6AC5F         Start: 0          Type: 1 Error Control: 1Service (registry key): dmserver  Display name: Gestionnaire de disque logique   Description: Détecte et analyse de nouveaux lecteurs de disque durs et envoie les informations de volume de disque au service gestionnaire administratif de disque logique pour la configuration. Si ce service est arrêté, l'état des disques dynamiques et les informations de configuration peuvent devenir obsolètes. Si ce service est désactivé, tout service en dépendant explicitement ne démarrera pas.   Object name: LocalSystem    Image path: %SystemRoot%\System32\svchost.exe -k netsvcs    Image size: 12800     Image MD5: 333A4DB8410D8E24DB06D6AEBECDC7C2         Start: 2          Type: 32 Error Control: 1 Depends On services: RpcSs,PlugPlayService (registry key): DMusic  Display name: Synthétiseur DLS du noyau Microsoft    Image path: system32\drivers\DMusic.sys    Image size: 50048     Image MD5: EF05974D47D56FA8387F170F05BAE5E7         Start: 3          Type: 1 Error Control: 1Service (registry key): Dnscache  Display name: Client DNS   Description: Résout et met en cache les noms DNS pour cet ordinateur. Si ce service est arrêté, l'ordinateur ne pourra pas résoudre les noms DNS et trouver les contrôleurs de domaine Active Directory. Si ce service est désactivé, les services qui en dépendent ne pourront pas démarrer.   Object name: NT AUTHORITY\NetworkService    Image path: %SystemRoot%\System32\svchost.exe -k NetworkService    Image size: 12800     Image MD5: 333A4DB8410D8E24DB06D6AEBECDC7C2         Start: 2          Type: 32 Error Control: 1 Depends On services: TcpipService (registry key): dpti2o         Start: 4          Type: 1 Error Control: 1Service (registry key): drmkaud  Display name: Filtre de décodeur DRM (Noyau Microsoft)    Image path: system32\drivers\drmkaud.sys    Image size: 2816     Image MD5: AA94E0CBD79DB63100D0EAE061EB69BC         Start: 3          Type: 1 Error Control: 1Service (registry key): emupia  Display name: E-mu Plug-in Architecture Driver    Image path: System32\drivers\emupia2k.sys    Image size: 156604     Image MD5: A9D94B89372F3F9609A1A5EEC631A260         Start: 3          Type: 1 Error Control: 1Service (registry key): ERSvc  Display name: Service de rapport d'erreurs   Description: Active le rapport d'erreurs pour les services et les applications s'exécutant sur des environnements non standard.   Object name: LocalSystem    Image path: %SystemRoot%\System32\svchost.exe -k netsvcs    Image size: 12800     Image MD5: 333A4DB8410D8E24DB06D6AEBECDC7C2         Start: 2          Type: 32 Error Control: 0 Depends On services: RpcSsService (registry key): es1371  Display name: Creative AudioPCI (ES1371,ES1373) (WDM)    Image path: system32\drivers\es1371mp.sys    Image size: 40704     Image MD5: A55DD7D8CED5D2624A9EE2DDA7BE0319         Start: 3          Type: 1 Error Control: 1Service (registry key): Eventlog  Display name: Journal des événements   Description: Active les messages d'événements émis par les programmes fonctionnant sous Windows et les composants devant être affichés dans l'observateur d'événements. Ce service ne peut être arrêté.   Object name: LocalSystem    Image path: %SystemRoot%\system32\services.exe    Image size: 101888     Image MD5: FC0691097471EE374907E1024EDCBD43         Start: 2          Type: 32 Error Control: 1Service (registry key): EventSystem  Display name: Système d'événements de COM+   Description: Prend en charge le service de notification d'événements système (SENS, System Event Notification Service), qui fournit une distribution automatique d'événements aux composants COM (Component Object Model) abonnés. Si le service est arrêté, SENS sera fermé et ne pourra fournir des informations d'ouverture et de fermeture de session. Si ce service est désactivé, le démarrage de tout service qui en dépend explicitement échouera.   Object name: LocalSystem    Image path: C:\WINDOWS\System32\svchost.exe -k netsvcs    Image size: 12800     Image MD5: 333A4DB8410D8E24DB06D6AEBECDC7C2         Start: 3          Type: 32 Error Control: 1 Depends On services: RPCSSService (registry key): ewido security suite control  Display name: ewido security suite control   Object name: LocalSystem    Image path: C:\Documents and Settings\sabrina\Bureau\Nouveau dossier (2)\ewido anti-malware\ewidoctrl.exe    Image size: 13888     Image MD5: 26830B750372AB1BF29C95DEEBEB802F         Start: 2          Type: 272 Error Control: 0Service (registry key): ewido security suite driver  Display name: ewido security suite driver    Image path: \??\C:\Documents and Settings\sabrina\Bureau\Nouveau dossier (2)\ewido anti-malware\guard.sys    Image size: 3072     Image MD5: 2FF233E31AEFFF332F187E8E2ABFA6C5         Start: 1          Type: 1 Error Control: 0Service (registry key): ewido security suite guard  Display name: ewido security suite guard   Object name: LocalSystem    Image path: C:\Documents and Settings\sabrina\Bureau\Nouveau dossier (2)\ewido anti-malware\ewidoguard.exe    Image size: 151616     Image MD5: 34A50717AD686900F078F5208F8E908E         Start: 2          Type: 272 Error Control: 0Service (registry key): exec1x.exe  Display name: execute1x.exe   Object name: LocalSystem         Start: 4          Type: 272 Error Control: 0Service (registry key): Fastfat         Start: 4          Type: 2 Error Control: 1Service (registry key): FastUserSwitchingCompatibility  Display name: Compatibilité avec le Changement rapide d'utilisateur   Description: Fournit un système de gestion à des applications qui nécessitent de l'Assistance dans un environnement d'utilisateurs multiples.   Object name: LocalSystem    Image path: %SystemRoot%\System32\svchost.exe -k netsvcs    Image size: 12800     Image MD5: 333A4DB8410D8E24DB06D6AEBECDC7C2         Start: 3          Type: 32 Error Control: 1 Depends On services: TermServiceService (registry key): Fdc  Display name: Pilote de contrôleur de lecteur de disquettes    Image path: System32\DRIVERS\fdc.sys    Image size: 26240     Image MD5: 19C5C7EAC0190A42522290BF002F64EA         Start: 3          Type: 1 Error Control: 1Service (registry key): Fips         Start: 1          Type: 1 Error Control: 1Service (registry key): Flpydisk  Display name: Pilote de lecteur de disquettes    Image path: System32\DRIVERS\flpydisk.sys    Image size: 19712     Image MD5: 21E41E89B9B191B685F99B7A8885310B         Start: 3          Type: 1 Error Control: 1Service (registry key): Fs_Rec         Start: 1          Type: 8 Error Control: 0Service (registry key): Ftdisk  Display name: Pilote du Gestionnaire de volume    Image path: System32\DRIVERS\ftdisk.sys    Image size: 126080     Image MD5: A86859B77B908C18C2657F284AA29FE3         Start: 0          Type: 1 Error Control: 1Service (registry key): gameenum  Display name: Énumérateur de port jeu    Image path: System32\DRIVERS\gameenum.sys    Image size: 9728     Image MD5: 90D951A8876631E617ED64A9DDF0BAFC         Start: 3          Type: 1 Error Control: 0Service (registry key): Gpc  Display name: Classificateur de paquets générique   Description: Classificateur de paquets générique    Image path: System32\DRIVERS\msgpc.sys    Image size: 33792     Image MD5: 13591E0A02E85DE2A388F3EC4BD206

incognito02 · Answer

Bonsoir,telecharge SmitfraudFix http://siri.urz.free.fr/Fix/SmitfraudFix.zip Exécute le, Double click sur Smitfraudfix.cmd choisit l’option 1, il va générer un rapport Copie/colle le sur le forum stp.Démarre en mode sans échec : Pour cela, tu tapotes la touche F8 dès le début de l’allumage du pc sans t’arrêter Une fenêtre va s’ouvrir tu te déplaces avec les flèches du clavier sur démarrer en mode sans échec puis tape entrée. Une fois sur le bureau s’il n’y a pas toutes les couleurs et autres c’est normal ! (Si F8 ne marche pas utilise la touche F5). ---------------------------------------------------------------------------- Relance le programme Smitfraud, Cette fois choisit l’option 2, répond oui a tous ; Sauvegarde le rapport, Redémarre en mode normal, copie/colle le rapport sauvegardé sur le forum Bon courage. A+

sinap · Answer

slt inco ! merci d'avoir répondu, voici le rapportSmitFraudFix v2.19Rapport fait à 19:57:12,46 le 11/02/2006Executé à partir de C:\Documents and Settings\sabrina\Local Settings\Temp\SmitfraudFix\SmitfraudFixOS: Microsoft Windows XP [version 5.1.2600]»»»»»»»»»»»»»»»»»»»»»»»» Recherche C:\»»»»»»»»»»»»»»»»»»»»»»»» Recherche C:\WINDOWS»»»»»»»»»»»»»»»»»»»»»»»» Recherche C:\WINDOWS\system»»»»»»»»»»»»»»»»»»»»»»»» Recherche C:\WINDOWS\Web»»»»»»»»»»»»»»»»»»»»»»»» Recherche C:\WINDOWS\system32»»»»»»»»»»»»»»»»»»»»»»»» Recherche ...\Application Data»»»»»»»»»»»»»»»»»»»»»»»» Recherche Menu Démarrer»»»»»»»»»»»»»»»»»»»»»»»» Recherche Bureau»»»»»»»»»»»»»»»»»»»»»»»» Recherche C:\Program Files »»»»»»»»»»»»»»»»»»»»»»»» Recherche présence de clés corrompues»»»»»»»»»»»»»»»»»»»»»»»» Recherche éléments du bureau  »»»»»»»»»»»»»»»»»»»»»»»» Recherche SharedtaskschedulerSrchSTS.exe by S!RiSearch SharedTaskScheduler's .dll[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\SharedTaskScheduler]"{438755C2-A8BA-11D1-B96B-00A0C90312E1}"="Pré-chargeur Browseui"[HKEY_CLASSES_ROOT\CLSID\{438755C2-A8BA-11D1-B96B-00A0C90312E1}\InProcServer32]@="%SystemRoot%\System32\browseui.dll"[HKEY_LOCAL_MACHINE\Software\Classes\CLSID\{438755C2-A8BA-11D1-B96B-00A0C90312E1}\InProcServer32]@="%SystemRoot%\System32\browseui.dll"[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\SharedTaskScheduler]"{8C7461EF-2B13-11d2-BE35-3078302C2030}"="Démon de cache des catégories de composant"[HKEY_CLASSES_ROOT\CLSID\{8C7461EF-2B13-11d2-BE35-3078302C2030}\InProcServer32]@="%SystemRoot%\System32\browseui.dll"[HKEY_LOCAL_MACHINE\Software\Classes\CLSID\{8C7461EF-2B13-11d2-BE35-3078302C2030}\InProcServer32]@="%SystemRoot%\System32\browseui.dll"»»»»»»»»»»»»»»»»»»»»»»»» Recherche infection wininet.dll»»»»»»»»»»»»»»»»»»»»»»»» Fin du rapport

incognito02 · Answer

Sinap,Ton log est celui de l'option 1 ou de l'option 2 ?Bon appétit.A+

sinap · Answer

re,j'aimerais ajouter que j'ai des erreurs de registre impossible à réparer ou supprimer. des extension de fichier invalide, des truks qui s'appellent "HKCR"... comment les enlever ?merci encore

sinap · Answer

celui de l'option 1 lol !bon app a toi aussi, mais tu t'en va ou tu vas continuer à m'aider tout de suite ?merci

incognito02 · Answer

Re,je vais manger, sinon je suis bon à rien ! lol Mais je reviens !En attendant : 1 - telecharge Edwidohttp://download.ewido.net/ewido-setup.exePendant l'installation, sur la page "Additional Options", décoche les deux options "Install background guard" et "Install scan via context menu Ewido Security Suite. Clique sur mise à jour.Clique sur scanner puis sur scan complet du système puis colle le rapport ici 2 - télécharge HijackThis ici: http://www.hijackthis.de/downloads/hijackthis_199.zip Dézippe le dans un dossier prévu à cet effet. Par exemple C:\hijackthis < Enregistre le bien dans c : ! Démo : (Merci a Balltrap34 pour cette réalisation) http://pageperso.aol.fr/balltrap34/Hijenr.gif Lance le puis: clique sur "do a system scan and save logfile" (cf démo) faire un copier coller du log entier sur le forum Démo : (Merci a Balltrap34 pour cette réalisation) http://pageperso.aol.fr/balltrap34/demohijack.htm Bon courage A+

Utilisateur anonyme · Answer

salut tout le monde :)  normalement l'option 3 elimine smitfraud c @++++++++++

sinap · Answer

re,bon appétit !!!!!!j'avais déja éwido dc je l'ai désinstaller puis réinstaller en décochant les deux options que tu m'as indiqué ! cependant pkoi faut-elles les décocher?pr le hjack je t'envwa ça tt de suite

sinap · Answer

Logfile of HijackThis v1.99.1Scan saved at 20:29:31, on 11/02/2006Platform: Windows XP  (WinNT 5.01.2600)MSIE: Internet Explorer v6.00 (6.00.2600.0000)Running processes:C:\WINDOWS\System32\smss.exeC:\WINDOWS\system32\winlogon.exeC:\WINDOWS\system32\services.exeC:\WINDOWS\system32\lsass.exeC:\WINDOWS\system32\svchost.exeC:\WINDOWS\System32\svchost.exeC:\WINDOWS\system32\spoolsv.exeC:\Program Files\Alwil Software\Avast4\aswUpdSv.exeC:\Program Files\Alwil Software\Avast4\ashServ.exeC:\WINDOWS\System32\CTsvcCDA.exeC:\Program Files\Executive Software\DiskeeperWorkstation\DKService.exeC:\WINDOWS\System32\svchost.exeC:\WINDOWS\SYSTEM32\ZONELABS\vsmon.exeC:\WINDOWS\System32\MsPMSPSv.exeC:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exeC:\karim\ZoneAlarm\ZoneAlarm\zlclient.exeC:\Program Files\Alwil Software\Avast4\ashWebSv.exeC:\Program Files\Alwil Software\Avast4\ashMaiSv.exeC:\Program Files\Mozilla Firefox\firefox.exeC:\Program Files\Windows Media Player\wmplayer.exeC:\WINDOWS\explorer.exeC:\Documents and Settings\sabrina\Bureau\Nouveau dossier (2)\ewido anti-malware\ewidoctrl.exeC:\Documents and Settings\sabrina\Bureau\Nouveau dossier (2)\ewido anti-malware\SecuritySuite.exeC:\Documents and Settings\sabrina\Bureau\Nouveau dossier (2)\HijackThis.exeR0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.google.fr/R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page = R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = O2 - BHO: SpywareBlock Class - {0A87E45F-537A-40B4-B812-E2544C21A09F} - (no file)O2 - BHO: (no name) - {53707962-6F74-2D53-2644-206D7942484F} - C:\DOCUME~1\sabrina\Bureau\NOUVEA~2\SPYBOT~1\SDHelper.dllO2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dllO4 - HKLM\..\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exeO4 - HKLM\..\Run: [Openwares LiveUpdate] C:\Program Files\LiveUpdate\LiveUpdate.exeO4 - HKLM\..\Run: [Zone Labs Client] C:\karim\ZoneAlarm\ZoneAlarm\zlclient.exeO4 - HKLM\..\Run: [SpyCatcher Reminder] "C:\karim\SpyCatcher 2006\SpyCatcher.exe" reminderO4 - HKCU\..\Run: [msnmsgr] "C:\Program Files\MSN Messenger\msnmsgr.exe" /backgroundO4 - Startup: Microsoft Office.lnk = C:\Program Files\Microsoft Office\Office\OSA9.EXEO4 - Global Startup: SpyCatcher Protector.lnk = C:\karim\SpyCatcher 2006\Protector.exeO8 - Extra context menu item: Easy-WebPrint Ajouter à la liste d'impressions - res://C:\Program Files\Canon\Easy-WebPrint\Resource.dll/RC_AddToList.htmlO8 - Extra context menu item: Easy-WebPrint Impression rapide - res://C:\Program Files\Canon\Easy-WebPrint\Resource.dll/RC_HSPrint.htmlO8 - Extra context menu item: Easy-WebPrint Imprimer - res://C:\Program Files\Canon\Easy-WebPrint\Resource.dll/RC_Print.htmlO8 - Extra context menu item: Easy-WebPrint Prévisualiser - res://C:\Program Files\Canon\Easy-WebPrint\Resource.dll/RC_Preview.htmlO9 - Extra button: Wanadoo - {1462651F-F4BA-4C76-A001-C4284D0FE16E} - www.wanadoo.fr (file missing) (HKCU)O12 - Plugin for .mid: C:\PROGRA~1\INTERN~1\PLUGINS
pqtplugin.dllO12 - Plugin for .mov: C:\PROGRA~1\INTERN~1\PLUGINS
pqtplugin.dllO12 - Plugin for .qt: C:\PROGRA~1\INTERN~1\PLUGINS
pqtplugin.dllO12 - Plugin for .tif: C:\Program Files\Internet Explorer\PLUGINS
pqtplugin3.dllO12 - Plugin for .wav: C:\PROGRA~1\INTERN~1\PLUGINS
pqtplugin.dllO16 - DPF: {32305793-C19A-48E7-AD2F-D87FF7B264A4} (TenebrilSpywareScanner Control) - http://www.tenebril.com/assets/activeX/SpywareScanner.ocxO16 - DPF: {5D86DDB5-BDF9-441B-9E9E-D4730F4EE499} (BDSCANONLINE Control) - http://download.bitdefender.com/resources/scan8/oscan8.cabO17 - HKLM\System\CCS\Services\Tcpip\..\{2A8FAC4D-E9F0-408B-90AE-476BD8306011}: NameServer = 80.10.246.1 80.10.246.132O20 - AppInit_DLLs: interceptor.dllO23 - Service: avast! iAVS4 Control Service (aswUpdSv) - Unknown owner - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exeO23 - Service: avast! Antivirus - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashServ.exeO23 - Service: avast! Mail Scanner - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe" /service (file missing)O23 - Service: avast! Web Scanner - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe" /service (file missing)O23 - Service: Creative Service for CDROM Access - Creative Technology Ltd - C:\WINDOWS\System32\CTsvcCDA.exeO23 - Service: Diskeeper - Executive Software International, Inc. - C:\Program Files\Executive Software\DiskeeperWorkstation\DKService.exeO23 - Service: ewido security suite control - ewido networks - C:\Documents and Settings\sabrina\Bureau\Nouveau dossier (2)\ewido anti-malware\ewidoctrl.exeO23 - Service: Symantec Network Drivers Service (SNDSrvc) - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\SNDSrvc.exeO23 - Service: SymWMI Service (SymWSC) - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\Security Center\SymWSC.exeO23 - Service: TuneUp WinStyler Theme Service (TUWinStylerThemeSvc) - TuneUp Software GmbH - C:\karim\WinStylerThemeSvc.exeO23 - Service: TrueVector Internet Monitor (vsmon) - Zone Labs, LLC - C:\WINDOWS\SYSTEM32\ZONELABS\vsmon.exe

incognito02 · Answer

Re,relance smitfraudfix et choisi l'option 3, comme l'a proposé Jess.précise nous où en sont tes soucis.a+

sinap · Answer

re inco1)j'aimerais ajouter que j'ai des erreurs de registre impossible à réparer ou supprimer. des extension de fichier invalide, des truks qui s'appellent "HKCR"... comment les enlever ?2)'avais déja éwido dc je l'ai désinstaller puis réinstaller en décochant les deux options que tu m'as indiqué ! cependant pkoi faut-elles les décocher? merci encore !

incognito02 · Answer

re,pour tes erreurs de registre, nous verrons cela après ton problème de virus si tu le veux bien.pour avast il n'est pas necessaire d'installer ces options, elles ne servent pas à grand choseA+

sinap · Answer

re,pkoi me parles-tu d'avast ?je n'ai plus de problème smitfraud-C s'est envolée ! terrible merci !

incognito02 · Answer

Ravi que ton problème soit résolu.pour avast, oublie, par moment je pense à plusieurs choses à la fois et le me mélange les crayons lol.Bonne soirée.a+

sinap · Answer

RE, inco, je te comprends tu dois avoir plusieurs post a gérer !que fait-on pour mes erreurs de registre ?

incognito02 · Answer

Ah oui, les erreurs de registre !j'avais oublié, excuses moi.telecharge Ccleaner ici :http://www.01net.com/telecharger/windows/Utilitaire/nettoyeurs_et_installeurs/fiches/32599.htmlet tu trouveras un tutoriel très bien fait ici :http://www.vulgarisation-informatique.com/nettoyer-windows-ccleaner.phpA+

Utilisateur anonyme · Answer

C'est des foutaisesmet a jour ton systeme, met le sp2http://update.microsoft.com/windowsupdate/v6/default.aspx?ln=frBye (grillé incongnito)lol

incognito02 · Answer

Non non, tu m'as pas grillé Regis ! regarde l'heure ! PTDR !!!!!!A+

Utilisateur anonyme · Answer

et merde lolCeci dit, je t ai grillé sur la manip car la mienne est la bonne (héhé grillé quand meme mdr)

sinap · Answer

re,je vais suivre le conseil a régis mais en quoi les MAJ vont supprimer les 500 clés de mon registres déféctueuses ?merci

Utilisateur anonyme · Answer

Salut sinap;En fait ton pc  n est pas entierement protégé. Tu as des failles non corrigé qui sont exploiter par de nombreux vers dont le plus connu: SASSER.Mettre a jour son systeme permet de corriger ces failles. Je parie autant que tu veux que ces messages s intitulent "services affichages des messages". Comment veux tu qu aucuns programmes installé par toi puisses evaluer sans scan les erreurs de ton registre? C'est de l arnaque qui permet de faire vendre de faux produits. Corriges les failles en installant le sp2 et tu m en diras des nouvelles ;-)

incognito02 · Answer

Sinap,le SP2 corrige un tas de choses, entre autres des entrées de base de registre.A+

[smitfraud-C] j'ai besoin de vous merci

22 réponses

Discussions similaires