command service et surf side kick

a beluga · le 10 juin 2006

p.s.

spybot détecte toujours command service, sans pouvoir le détruire au complet

a beluga · le 11 juin 2006

désolé pour double post

aussi, il ya souvent une fenêtre qui apparait et qui me demande si je veux aller à une adresse

Thanos · le 11 juin 2006

salut

aussi, il ya souvent une fenêtre qui apparait et qui me demande si je veux aller à une adresse

De quelle adresse s'agit il? peux tu poster une capture d'écran par exemple , ou relever le message exact?

spybot détecte toujours command service, sans pouvoir le détruire au complet

Ok! LonnyRJones qui est membre de le "Team Spybot" parle de ce problème avec command service qui s'accroche! il se trouve que c'est certainement un faux positif : autrement dit une fausse alerte!

La discussion ici=> http://forums.spybot.info/showthread.php?t=1074

J'ai déjà eu affaire avec ce problème, QC001 m'avait alors orienté sur cette discussion: c'est le service mchInjDrv qui est responsable de cette fausse détection! En fait ce service est installé par certains programmes de sécurité tels TrojanHunter, spysweeper, a2 etc...

Peux tu stp me poster un rapport hijackthis comme ceci=>

Ouvre HijackThis.

Clique sur Open Misc Tools Section

Assure toi que les deux cases de droite sont bien cochées:

* List all minor sections(Full)

* List Empty Sections(Complete)

Clique surGenerate StartupList Log

Click sur "oui" lorsque l'on te le demande.

Cela va générer un rapport,copie le et poste le ici.

et aussi, antivir détecte souvent ce fichier : rmtag2[1]et aussi, antivir détecte souvent ce fichier : rmtag2[1].js

Il ne parviens pas à l'éliminer??Peux tu poster le rapport d'Antivir stp?

@+ tard

a beluga · le 12 juin 2006

rapport hijackthis:

StartupList report, 2006-06-11, 21:41:43

StartupList version: 1.52.2

Started from : C:\Program Files\Hijackthis\HijackThis.EXE

Detected: Windows XP SP2 (WinNT 5.01.2600)

Detected: Internet Explorer v6.00 SP2 (6.00.2900.2180)

* Using default options

* Including empty and uninteresting sections

* Showing rarely important sections

==================================================

Running processes:

C:\WINDOWS\System32\smss.exe

C:\WINDOWS\system32\winlogon.exe

C:\WINDOWS\system32\services.exe

C:\WINDOWS\system32\lsass.exe

C:\WINDOWS\system32\svchost.exe

C:\WINDOWS\System32\svchost.exe

C:\WINDOWS\system32\spoolsv.exe

C:\Program Files\AntiVir PersonalEdition Classic\sched.exe

C:\Program Files\AntiVir PersonalEdition Classic\avguard.exe

C:\Program Files\ewido anti-malware\ewidoctrl.exe

C:\Program Files\ewido anti-malware\ewidoguard.exe

C:\Program Files\wamp\apache2\bin\Apache.exe

C:\Program Files\wamp\mysql\bin\mysqld-nt.exe

C:\Program Files\wamp\apache2\bin\Apache.exe

C:\WINDOWS\Explorer.EXE

C:\WINDOWS\system32\ctfmon.exe

C:\Program Files\AntiVir PersonalEdition Classic\avgnt.exe

C:\WINDOWS\system32\wuauclt.exe

C:\Program Files\wamp\wampserver.exe

C:\WINDOWS\System32\svchost.exe

C:\Program Files\MSN Messenger\msnmsgr.exe

C:\Program Files\Internet Explorer\iexplore.exe

C:\Program Files\Hijackthis\HijackThis.exe

--------------------------------------------------

Listing of startup folders:

Shell folders Startup:

[C:\Documents and Settings\Alexis\Menu Démarrer\Programmes\Démarrage]

WampServer.lnk = C:\Program Files\wamp\wampserver.exe

Shell folders AltStartup:

*Folder not found*

User shell folders Startup:

*Folder not found*

User shell folders AltStartup:

*Folder not found*

Shell folders Common Startup:

[C:\Documents and Settings\All Users\Menu Démarrer\Programmes\Démarrage]

*No files*

Shell folders Common AltStartup:

*Folder not found*

User shell folders Common Startup:

*Folder not found*

User shell folders Alternate Common Startup:

*Folder not found*

--------------------------------------------------

Checking Windows NT UserInit:

[HKLM\Software\Microsoft\Windows NT\CurrentVersion\Winlogon]

UserInit = userinit.exe

[HKLM\Software\Microsoft\Windows\CurrentVersion\Winlogon]

*Registry key not found*

[HKCU\Software\Microsoft\Windows NT\CurrentVersion\Winlogon]

*Registry value not found*

[HKCU\Software\Microsoft\Windows\CurrentVersion\Winlogon]

*Registry key not found*

--------------------------------------------------

Autorun entries from Registry:

HKLM\Software\Microsoft\Windows\CurrentVersion\Run

PinnacleDriverCheck = C:\WINDOWS\system32\PSDrvCheck.exe -CheckReg

avgnt = "C:\Program Files\AntiVir PersonalEdition Classic\avgnt.exe" /min

--------------------------------------------------

Autorun entries from Registry:

HKLM\Software\Microsoft\Windows\CurrentVersion\RunOnce

*No values found*

--------------------------------------------------

Autorun entries from Registry:

HKLM\Software\Microsoft\Windows\CurrentVersion\RunOnceEx

*No values found*

--------------------------------------------------

Autorun entries from Registry:

HKLM\Software\Microsoft\Windows\CurrentVersion\RunServices

*No values found*

--------------------------------------------------

Autorun entries from Registry:

HKLM\Software\Microsoft\Windows\CurrentVersion\RunServicesOnce

*No values found*

--------------------------------------------------

Autorun entries from Registry:

HKCU\Software\Microsoft\Windows\CurrentVersion\Run

ctfmon.exe = C:\WINDOWS\system32\ctfmon.exe

--------------------------------------------------

Autorun entries from Registry:

HKCU\Software\Microsoft\Windows\CurrentVersion\RunOnce

*No values found*

--------------------------------------------------

Autorun entries from Registry:

HKCU\Software\Microsoft\Windows\CurrentVersion\RunOnceEx

*Registry key not found*

--------------------------------------------------

Autorun entries from Registry:

HKCU\Software\Microsoft\Windows\CurrentVersion\RunServices

*No values found*

--------------------------------------------------

Autorun entries from Registry:

HKCU\Software\Microsoft\Windows\CurrentVersion\RunServicesOnce

*No values found*

--------------------------------------------------

Autorun entries from Registry:

HKLM\Software\Microsoft\Windows NT\CurrentVersion\Run

*Registry key not found*

--------------------------------------------------

Autorun entries from Registry:

HKCU\Software\Microsoft\Windows NT\CurrentVersion\Run

*Registry key not found*

--------------------------------------------------

Autorun entries in Registry subkeys of:

HKLM\Software\Microsoft\Windows\CurrentVersion\Run

[OptionalComponents]

*No values found*

--------------------------------------------------

Autorun entries in Registry subkeys of:

HKLM\Software\Microsoft\Windows\CurrentVersion\RunOnce

*No subkeys found*

--------------------------------------------------

Autorun entries in Registry subkeys of:

HKLM\Software\Microsoft\Windows\CurrentVersion\RunOnceEx

*No subkeys found*

--------------------------------------------------

Autorun entries in Registry subkeys of:

HKLM\Software\Microsoft\Windows\CurrentVersion\RunServices

*No subkeys found*

--------------------------------------------------

Autorun entries in Registry subkeys of:

HKLM\Software\Microsoft\Windows\CurrentVersion\RunServicesOnce

*No subkeys found*

--------------------------------------------------

Autorun entries in Registry subkeys of:

HKCU\Software\Microsoft\Windows\CurrentVersion\Run

*No subkeys found*

--------------------------------------------------

Autorun entries in Registry subkeys of:

HKCU\Software\Microsoft\Windows\CurrentVersion\RunOnce

*No subkeys found*

--------------------------------------------------

Autorun entries in Registry subkeys of:

HKCU\Software\Microsoft\Windows\CurrentVersion\RunOnceEx

*Registry key not found*

--------------------------------------------------

Autorun entries in Registry subkeys of:

HKCU\Software\Microsoft\Windows\CurrentVersion\RunServices

*No subkeys found*

--------------------------------------------------

Autorun entries in Registry subkeys of:

HKCU\Software\Microsoft\Windows\CurrentVersion\RunServicesOnce

*No subkeys found*

--------------------------------------------------

Autorun entries in Registry subkeys of:

HKLM\Software\Microsoft\Windows NT\CurrentVersion\Run

*Registry key not found*

--------------------------------------------------

Autorun entries in Registry subkeys of:

HKCU\Software\Microsoft\Windows NT\CurrentVersion\Run

*Registry key not found*

--------------------------------------------------

File association entry for .EXE:

HKEY_CLASSES_ROOT\exefile\shell\open\command

(Default) = "%1" %*

--------------------------------------------------

File association entry for .COM:

HKEY_CLASSES_ROOT\comfile\shell\open\command

(Default) = "%1" %*

--------------------------------------------------

File association entry for .BAT:

HKEY_CLASSES_ROOT\batfile\shell\open\command

(Default) = "%1" %*

--------------------------------------------------

File association entry for .PIF:

HKEY_CLASSES_ROOT\piffile\shell\open\command

(Default) = "%1" %*

--------------------------------------------------

File association entry for .SCR:

HKEY_CLASSES_ROOT\scrfile\shell\open\command

(Default) = "%1" /S

--------------------------------------------------

File association entry for .HTA:

HKEY_CLASSES_ROOT\htafile\shell\open\command

(Default) = C:\WINDOWS\system32\mshta.exe "%1" %*

--------------------------------------------------

File association entry for .TXT:

HKEY_CLASSES_ROOT\txtfile\shell\open\command

(Default) = %SystemRoot%\system32\NOTEPAD.EXE %1

--------------------------------------------------

Enumerating Active Setup stub paths:

HKLM\Software\Microsoft\Active Setup\Installed Components

(* = disabled by HKCU twin)

[>{22d6f312-b0f6-11d0-94ab-0080c74c7e95}]

StubPath = C:\WINDOWS\inf\unregmp2.exe /ShowWMP

[>{26923b43-4d38-484f-9b9e-de460746276c}] *

StubPath = %systemroot%\system32\shmgrate.exe OCInstallUserConfigIE

[>{881dd1c5-3dcf-431b-b061-f3f88e8be88a}] *

StubPath = %systemroot%\system32\shmgrate.exe OCInstallUserConfigOE

[{2C7339CF-2B09-4501-B3F3-F3508C9228ED}] *

StubPath = %SystemRoot%\system32\regsvr32.exe /s /n /i:/UserInstall %SystemRoot%\system32\themeui.dll

[{44BBA840-CC51-11CF-AAFA-00AA00B6015C}] *

StubPath = "%ProgramFiles%\Outlook Express\setup50.exe" /APP:OE /CALLER:WINNT /user /install

[{44BBA842-CC51-11CF-AAFA-00AA00B6015B}] *

StubPath = rundll32.exe advpack.dll,LaunchINFSection C:\WINDOWS\INF\msnetmtg.inf,NetMtg.Install.PerUser.NT

[{5945c046-1e7d-11d1-bc44-00c04fd912be}] *

StubPath = rundll32.exe advpack.dll,LaunchINFSection C:\WINDOWS\INF\msmsgs.inf,BLC.QuietInstall.PerUser

[{6BF52A52-394A-11d3-B153-00C04F79FAA6}] *

StubPath = rundll32.exe advpack.dll,LaunchINFSection C:\WINDOWS\INF\wmp10.inf,PerUserStub

[{7790769C-0471-11d2-AF11-00C04FA35D02}] *

StubPath = "%ProgramFiles%\Outlook Express\setup50.exe" /APP:WAB /CALLER:WINNT /user /install

[{89820200-ECBD-11cf-8B85-00AA005B4340}] *

StubPath = regsvr32.exe /s /n /i:U shell32.dll

[{89820200-ECBD-11cf-8B85-00AA005B4383}] *

StubPath = %SystemRoot%\system32\ie4uinit.exe

[{89B4C1CD-B018-4511-B0A1-5476DBF70820}] *

StubPath = C:\WINDOWS\system32\Rundll32.exe C:\WINDOWS\system32\mscories.dll,Install

--------------------------------------------------

Enumerating ICQ Agent Autostart apps:

HKCU\Software\Mirabilis\ICQ\Agent\Apps

*Registry key not found*

--------------------------------------------------

Load/Run keys from C:\WINDOWS\WIN.INI:

load=*INI section not found*

run=*INI section not found*

Load/Run keys from Registry:

HKLM\..\Windows NT\CurrentVersion\WinLogon: load=*Registry value not found*

HKLM\..\Windows NT\CurrentVersion\WinLogon: run=*Registry value not found*

HKLM\..\Windows\CurrentVersion\WinLogon: load=*Registry key not found*

HKLM\..\Windows\CurrentVersion\WinLogon: run=*Registry key not found*

HKCU\..\Windows NT\CurrentVersion\WinLogon: load=*Registry value not found*

HKCU\..\Windows NT\CurrentVersion\WinLogon: run=*Registry value not found*

HKCU\..\Windows\CurrentVersion\WinLogon: load=*Registry key not found*

HKCU\..\Windows\CurrentVersion\WinLogon: run=*Registry key not found*

HKCU\..\Windows NT\CurrentVersion\Windows: load=

HKCU\..\Windows NT\CurrentVersion\Windows: run=*Registry value not found*

HKLM\..\Windows NT\CurrentVersion\Windows: load=*Registry value not found*

HKLM\..\Windows NT\CurrentVersion\Windows: run=*Registry value not found*

HKLM\..\Windows NT\CurrentVersion\Windows: AppInit_DLLs= C:\WINDOWS\system32\rundll.dll

--------------------------------------------------

Shell & screensaver key from C:\WINDOWS\SYSTEM.INI:

Shell=*INI section not found*

SCRNSAVE.EXE=*INI section not found*

drivers=*INI section not found*

Shell & screensaver key from Registry:

Shell=Explorer.exe

SCRNSAVE.EXE=C:\WINDOWS\system32\logon.scr

drivers=*Registry value not found*

Policies Shell key:

HKCU\..\Policies: Shell=*Registry key not found*

HKLM\..\Policies: Shell=*Registry value not found*

--------------------------------------------------

Checking for EXPLORER.EXE instances:

C:\WINDOWS\Explorer.exe: PRESENT!

C:\Explorer.exe: not present

C:\WINDOWS\Explorer\Explorer.exe: not present

C:\WINDOWS\System\Explorer.exe: not present

C:\WINDOWS\System32\Explorer.exe: not present

C:\WINDOWS\Command\Explorer.exe: not present

C:\WINDOWS\Fonts\Explorer.exe: not present

--------------------------------------------------

Checking for superhidden extensions:

.lnk: HIDDEN! (arrow overlay: yes)

.pif: HIDDEN! (arrow overlay: yes)

.exe: not hidden

.com: not hidden

.bat: not hidden

.hta: not hidden

.scr: not hidden

.shs: HIDDEN!

.shb: HIDDEN!

.vbs: not hidden

.vbe: not hidden

.wsh: not hidden

.scf: HIDDEN! (arrow overlay: NO!)

.url: HIDDEN! (arrow overlay: yes)

.js: not hidden

.jse: not hidden

--------------------------------------------------

Verifying REGEDIT.EXE integrity:

- Regedit.exe found in C:\WINDOWS

- .reg open command is normal (regedit.exe %1)

- Regedit.exe has no CompanyName property! It is either missing or named something else.

- Regedit.exe has no OriginalFilename property! It is either missing or named something else.

- Regedit.exe has no FileDescription property! It is either missing or named something else.

Registry check failed!

--------------------------------------------------

Enumerating Browser Helper Objects:

(no name) - C:\PROGRA~1\SPYBOT~1\SDHelper.dll - {53707962-6F74-2D53-2644-206D7942484F}

--------------------------------------------------

Enumerating Task Scheduler jobs:

Spybot - Search & Destroy - Scheduled Task.job

--------------------------------------------------

Enumerating Download Program Files:

[Windows Genuine Advantage Validation Tool]

InProcServer32 = C:\WINDOWS\system32\legitcheckcontrol.dll

CODEBASE = http://go.microsoft.com/fwlink/?linkid=39204

[ActiveScan Installer Class]

InProcServer32 = C:\WINDOWS\Downloaded Program Files\asinst.dll

CODEBASE = http://acs.pandasoftware.com/activescan/as5free/asinst.cab

[shockwave Flash Object]

InProcServer32 = C:\WINDOWS\system32\Macromed\Flash\Flash8.ocx

CODEBASE = http://download.macromedia.com/pub/shockwa...ash/swflash.cab

--------------------------------------------------

Enumerating Winsock LSP files:

NameSpace #1: C:\WINDOWS\System32\mswsock.dll

NameSpace #2: C:\WINDOWS\System32\winrnr.dll

NameSpace #3: C:\WINDOWS\System32\mswsock.dll

Protocol #1: C:\WINDOWS\system32\mswsock.dll

Protocol #2: C:\WINDOWS\system32\mswsock.dll

Protocol #3: C:\WINDOWS\system32\mswsock.dll

Protocol #4: C:\WINDOWS\system32\rsvpsp.dll

Protocol #5: C:\WINDOWS\system32\rsvpsp.dll

Protocol #6: C:\WINDOWS\system32\mswsock.dll

Protocol #7: C:\WINDOWS\system32\mswsock.dll

Protocol #8: C:\WINDOWS\system32\mswsock.dll

Protocol #9: C:\WINDOWS\system32\mswsock.dll

Protocol #10: C:\WINDOWS\system32\mswsock.dll

Protocol #11: C:\WINDOWS\system32\mswsock.dll

Protocol #12: C:\WINDOWS\system32\mswsock.dll

Protocol #13: C:\WINDOWS\system32\mswsock.dll

Protocol #14: C:\WINDOWS\system32\mswsock.dll

Protocol #15: C:\WINDOWS\system32\mswsock.dll

Protocol #16: C:\WINDOWS\system32\mswsock.dll

Protocol #17: C:\WINDOWS\system32\mswsock.dll

--------------------------------------------------

Enumerating Windows NT/2000/XP services

Pilote ACPI Microsoft: system32\DRIVERS\ACPI.sys (system)

Pilote de contrôleur intégré Microsoft: system32\DRIVERS\ACPIEC.sys (system)

Atheros Configuration Service: C:\WINDOWS\system32\ACS.exe (disabled)

Adobe LM Service: "C:\Program Files\Fichiers communs\Adobe Systems Shared\Service\Adobelmsvc.exe" (manual start)

Suppresseur d'écho acoustique (Noyau Microsoft): system32\drivers\aec.sys (manual start)

AFD: \SystemRoot\System32\drivers\afd.sys (system)

TOSHIBA V92 Software Modem: system32\DRIVERS\AGRSM.sys (manual start)

Service for Realtek AC97 Audio (WDM): system32\drivers\ALCXWDM.SYS (manual start)

Avertissement: %SystemRoot%\system32\svchost.exe -k LocalService (disabled)

Service de la passerelle de la couche Application: %SystemRoot%\System32\alg.exe (manual start)

AntiVir PersonalEdition Classic Scheduler: C:\Program Files\AntiVir PersonalEdition Classic\sched.exe (autostart)

AntiVir PersonalEdition Classic Guard: C:\Program Files\AntiVir PersonalEdition Classic\avguard.exe (autostart)

Alps Pointing-device Filter Driver: system32\DRIVERS\Apfiltr.sys (manual start)

Gestion d'applications: %SystemRoot%\system32\svchost.exe -k netsvcs (manual start)

Atheros Wireless Network Adapter Service: system32\DRIVERS\ar5211.sys (manual start)

ASAPIW2K: system32\drivers\ASAPIW2k.sys (manual start)

ASP.NET State Service: %SystemRoot%\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe (manual start)

Pilote de média asynchrone RAS: system32\DRIVERS\asyncmac.sys (manual start)

Contrôleur de disque dur IDE/ESDI standard: system32\DRIVERS\atapi.sys (system)

Ati HotKey Poller: %SystemRoot%\system32\Ati2evxx.exe (disabled)

ati2mtag: system32\DRIVERS\ati2mtag.sys (manual start)

Protocole client ATM ARP: system32\DRIVERS\atmarpc.sys (manual start)

Audio Windows: %SystemRoot%\System32\svchost.exe -k netsvcs (autostart)

Pilote audio Stub: system32\DRIVERS\audstub.sys (manual start)

avgio: \??\C:\Program Files\AntiVir PersonalEdition Classic\avgio.sys (system)

avgntflt: \??\C:\Program Files\AntiVir PersonalEdition Classic\avgntflt.sys (manual start)

Service de transfert intelligent en arrière-plan: %SystemRoot%\system32\svchost.exe -k netsvcs (manual start)

Explorateur d'ordinateur: %SystemRoot%\system32\svchost.exe -k netsvcs (autostart)

Pilote de CD-ROM: system32\DRIVERS\cdrom.sys (system)

ConfigFree Service: C:\Program Files\TOSHIBA\ConfigFree\CFSvcs.exe (disabled)

Service d'indexation: %SystemRoot%\system32\cisvc.exe (manual start)

Gestionnaire de l'Album: %SystemRoot%\system32\clipsrv.exe (disabled)

.NET Runtime Optimization Service v2.0.50727_X86: C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe (manual start)

Pilote pour Batterie à méthode de contrôle ACPI Microsoft: system32\DRIVERS\CmBatt.sys (manual start)

Pilote de batterie composite Microsoft: system32\DRIVERS\compbatt.sys (system)

Application système COM+: C:\WINDOWS\system32\dllhost.exe /Processid:{02D4B3F1-FD88-11D1-960D-00805FC79235} (manual start)

Services de cryptographie: %SystemRoot%\system32\svchost.exe -k netsvcs (autostart)

Lanceur de processus serveur DCOM: %SystemRoot%\system32\svchost -k DcomLaunch (autostart)

Client DHCP: %SystemRoot%\system32\svchost.exe -k netsvcs (autostart)

Pilote de disque: system32\DRIVERS\disk.sys (system)

DLABOIOM: System32\DLA\DLABOIOM.SYS (autostart)

DLACDBHM: System32\Drivers\DLACDBHM.SYS (system)

DLADResN: System32\DLA\DLADResN.SYS (autostart)

DLAIFS_M: System32\DLA\DLAIFS_M.SYS (autostart)

DLAOPIOM: System32\DLA\DLAOPIOM.SYS (autostart)

DLAPoolM: System32\DLA\DLAPoolM.SYS (autostart)

DLARTL_N: System32\Drivers\DLARTL_N.SYS (system)

DLAUDFAM: System32\DLA\DLAUDFAM.SYS (autostart)

DLAUDF_M: System32\DLA\DLAUDF_M.SYS (autostart)

Service d'administration du Gestionnaire de disque logique: %SystemRoot%\System32\dmadmin.exe /com (manual start)

dmboot: System32\drivers\dmboot.sys (disabled)

dmio: System32\drivers\dmio.sys (disabled)

dmload: System32\drivers\dmload.sys (disabled)

Gestionnaire de disque logique: %SystemRoot%\System32\svchost.exe -k netsvcs (manual start)

Synthétiseur DLS du noyau Microsoft: system32\drivers\DMusic.sys (manual start)

Client DNS: %SystemRoot%\system32\svchost.exe -k NetworkService (autostart)

Pilote MS IEEE-1284.4: system32\DRIVERS\Dot4.sys (manual start)

Pilote de classe Imprimante pour IEEE-1284.4: system32\DRIVERS\Dot4Prt.sys (manual start)

HP Dot4USB Filter: system32\DRIVERS\hppaufd0.sys (manual start)

Filtre de décodeur DRM (Noyau Microsoft): system32\drivers\drmkaud.sys (manual start)

DRVMCDB: System32\Drivers\DRVMCDB.SYS (system)

DRVNDDM: System32\Drivers\DRVNDDM.SYS (autostart)

dtscsi: \SystemRoot\System32\Drivers\dtscsi.sys (manual start)

DVD-RAM_Service: C:\WINDOWS\system32\DVDRAMSV.exe (disabled)

Service de rapport d'erreurs: %SystemRoot%\System32\svchost.exe -k netsvcs (autostart)

Journal des événements: %SystemRoot%\system32\services.exe (autostart)

Système d'événements de COM+: C:\WINDOWS\system32\svchost.exe -k netsvcs (manual start)

ewido security suite control: C:\Program Files\ewido anti-malware\ewidoctrl.exe (autostart)

ewido security suite driver: \??\C:\Program Files\ewido anti-malware\guard.sys (system)

ewido security suite guard: C:\Program Files\ewido anti-malware\ewidoguard.exe (autostart)

Compatibilité avec le Changement rapide d'utilisateur: %SystemRoot%\System32\svchost.exe -k netsvcs (manual start)

FltMgr: system32\DRIVERS\fltMgr.sys (system)

Pilote du Gestionnaire de volume: system32\DRIVERS\ftdisk.sys (system)

GEARAspiWDM: System32\Drivers\GEARAspiWDM.sys (manual start)

Classificateur de paquets générique: system32\DRIVERS\msgpc.sys (manual start)

Aide et support: %SystemRoot%\System32\svchost.exe -k netsvcs (autostart)

HID Input Service: %SystemRoot%\System32\svchost.exe -k netsvcs (autostart)

Pilote de classe HID Microsoft: system32\DRIVERS\hidusb.sys (manual start)

Storage Class Driver for IEEE-1284.4 (HPZ12): System32\Drivers\hpzs2k12.sys (manual start)

HTTP: System32\Drivers\HTTP.sys (manual start)

HTTP SSL: %SystemRoot%\System32\svchost.exe -k HTTPFilter (manual start)

Pilote pour clavier i8042 et souris sur port PS/2: system32\DRIVERS\i8042prt.sys (system)

InstallDriver Table Manager: "C:\Program Files\Fichiers communs\InstallShield\Driver\11\Intel 32\IDriverT.exe" (disabled)

Pilote de filtre de gravure CD: system32\DRIVERS\imapi.sys (system)

Service COM de gravage de CD IMAPI: C:\WINDOWS\system32\imapi.exe (manual start)

Pilote de processeur Intel: system32\DRIVERS\intelppm.sys (system)

Pilote du pare-feu Windows IPv6: system32\DRIVERS\Ip6Fw.sys (manual start)

Pilote de filtre de trafic IP: system32\DRIVERS\ipfltdrv.sys (manual start)

Pilote de tunnelage IP dans IP: system32\DRIVERS\ipinip.sys (manual start)

Traducteur d'adresses réseau IP: system32\DRIVERS\ipnat.sys (manual start)

iPodService: C:\Program Files\iPod\bin\iPodService.exe (disabled)

Pilote IPSEC: system32\DRIVERS\ipsec.sys (system)

Service énumérateur IR: system32\DRIVERS\irenum.sys (manual start)

Pilote de bus Plug-and-Play ISA/EISA: system32\DRIVERS\isapnp.sys (system)

IVI ASPI Shell: system32\drivers\iviaspi.sys (manual start)

Pilote de la classe Clavier: system32\DRIVERS\kbdclass.sys (system)

Pilote HID de clavier: system32\DRIVERS\kbdhid.sys (system)

Mélangeur audio Wave de noyau Microsoft: system32\drivers\kmixer.sys (manual start)

Serveur: %SystemRoot%\system32\svchost.exe -k netsvcs (autostart)

Station de travail: %SystemRoot%\system32\svchost.exe -k netsvcs (autostart)

Assistance TCP/IP NetBIOS: %SystemRoot%\system32\svchost.exe -k LocalService (autostart)

AEGIS Protocol (IEEE 802.1x) v2.3.1.10: system32\DRIVERS\mdc8021x.sys (autostart)

meiudf: System32\Drivers\meiudf.sys (system)

Affichage des messages: %SystemRoot%\system32\svchost.exe -k netsvcs (disabled)

Partage de Bureau à distance NetMeeting: C:\WINDOWS\system32\mnmsrvc.exe (manual start)

Pilote de la classe Souris: system32\DRIVERS\mouclass.sys (system)

Pilote HID de souris: system32\DRIVERS\mouhid.sys (manual start)

Redirecteur client WebDav: system32\DRIVERS\mrxdav.sys (manual start)

MRXSMB: system32\DRIVERS\mrxsmb.sys (system)

Distributed Transaction Coordinator: C:\WINDOWS\system32\msdtc.exe (manual start)

Windows Installer: C:\WINDOWS\system32\msiexec.exe /V (manual start)

Proxy de service de répartition Microsoft: system32\drivers\MSKSSRV.sys (manual start)

Proxy d'horloge de répartition Microsoft: system32\drivers\MSPCLOCK.sys (manual start)

Proxy de gestion de qualité de répartition Microsoft: system32\drivers\MSPQM.sys (manual start)

Pilote BIOS de gestion de systèmes Microsoft: system32\DRIVERS\mssmbios.sys (manual start)

Pilote TAPI NDIS d'accès distant: system32\DRIVERS\ndistapi.sys (manual start)

NDIS mode utilisateur E/S Protocole: system32\DRIVERS\ndisuio.sys (manual start)

Pilote réseau étendu NDIS d'accès distant: system32\DRIVERS\ndiswan.sys (manual start)

Interface NetBIOS: system32\DRIVERS\netbios.sys (system)

NetBIOS sur TCP/IP: system32\DRIVERS\netbt.sys (system)

DDE réseau: %SystemRoot%\system32\netdde.exe (disabled)

DSDM DDE réseau: %SystemRoot%\system32\netdde.exe (disabled)

TOSHIBA Network Device Usermode I/O Protocol: system32\DRIVERS\netdevio.sys (autostart)

Ouverture de session réseau: %SystemRoot%\system32\lsass.exe (manual start)

Connexions réseau: %SystemRoot%\System32\svchost.exe -k netsvcs (manual start)

NLA (Network Location Awareness): %SystemRoot%\system32\svchost.exe -k netsvcs (manual start)

npkcrypt: \??\C:\Program Files\Lineage II\system\npkcrypt.sys (manual start)

NPPTNT2: \??\C:\WINDOWS\system32\npptNT2.sys (system)

Fournisseur de la prise en charge de sécurité LM NT: %SystemRoot%\system32\lsass.exe (manual start)

Stockage amovible: %SystemRoot%\system32\svchost.exe -k netsvcs (manual start)

Pilote de filtre de trafic IPX: system32\DRIVERS\nwlnkflt.sys (manual start)

Pilote de transfert de trafic IPX: system32\DRIVERS\nwlnkfwd.sys (manual start)

Office Source Engine: "C:\Program Files\Fichiers communs\Microsoft Shared\Source Engine\OSE.EXE" (disabled)

Pilote de bus PCI: system32\DRIVERS\pci.sys (system)

PCIIde: system32\DRIVERS\pciide.sys (system)

Pcmcia: system32\DRIVERS\pcmcia.sys (system)

Padus ASPI Shell: system32\drivers\pfc.sys (manual start)

Plug-and-Play: %SystemRoot%\system32\services.exe (autostart)

Services IPSEC: %SystemRoot%\system32\lsass.exe (autostart)

Miniport réseau étendu (PPTP): system32\DRIVERS\raspptp.sys (manual start)

Emplacement protégé: %SystemRoot%\system32\lsass.exe (autostart)

Planificateur de paquets QoS: system32\DRIVERS\psched.sys (manual start)

Pilote de liaison parallèle directe: system32\DRIVERS\ptilink.sys (manual start)

PxHelp20: System32\Drivers\PxHelp20.sys (system)

Pilote de connexion automatique d'accès distant: system32\DRIVERS\rasacd.sys (system)

Gestionnaire de connexion automatique d'accès distant: %SystemRoot%\system32\svchost.exe -k netsvcs (manual start)

Miniport réseau étendu (L2TP): system32\DRIVERS\rasl2tp.sys (manual start)

Gestionnaire de connexions d'accès distant: %SystemRoot%\system32\svchost.exe -k netsvcs (manual start)

Pilote PPPOE d'accès à distance: system32\DRIVERS\raspppoe.sys (manual start)

Parallèle direct: system32\DRIVERS\raspti.sys (manual start)

Rdbss: system32\DRIVERS\rdbss.sys (system)

RDPCDD: System32\DRIVERS\RDPCDD.sys (system)

Gestionnaire de session d'aide sur le Bureau à distance: C:\WINDOWS\system32\sessmgr.exe (manual start)

Pilote de filtre de lecture digitale de CD audio: system32\DRIVERS\redbook.sys (system)

Routage et accès distant: %SystemRoot%\system32\svchost.exe -k netsvcs (disabled)

Localisateur d'appels de procédure distante (RPC): %SystemRoot%\system32\locator.exe (manual start)

Appel de procédure distante (RPC): %SystemRoot%\system32\svchost -k rpcss (autostart)

QoS RSVP: %SystemRoot%\system32\rsvp.exe (manual start)

Realtek RTL8139/810x/8169/8110 all in one NDIS XP Driver: system32\DRIVERS\Rtlnicxp.sys (manual start)

Pilote NT de carte Realtek PCI Fast Ethernet à base RTL8139(A/B/C): system32\DRIVERS\RTL8139.SYS (manual start)

Gestionnaire de comptes de sécurité: %SystemRoot%\system32\lsass.exe (autostart)

Carte à puce: %SystemRoot%\System32\SCardSvr.exe (manual start)

Planificateur de tâches: %SystemRoot%\System32\svchost.exe -k netsvcs (autostart)

Secdrv: system32\DRIVERS\secdrv.sys (manual start)

Connexion secondaire: %SystemRoot%\System32\svchost.exe -k netsvcs (autostart)

Notification d'événement système: %SystemRoot%\system32\svchost.exe -k netsvcs (autostart)

Pare-feu Windows / Partage de connexion Internet: %SystemRoot%\system32\svchost.exe -k netsvcs (autostart)

Détection matériel noyau: %SystemRoot%\System32\svchost.exe -k netsvcs (autostart)

Pilote de filtrage Sony USB (SONYPVU1): system32\DRIVERS\SONYPVU1.SYS (manual start)

Splitter audio du noyau Microsoft: system32\drivers\splitter.sys (manual start)

Spouleur d'impression: %SystemRoot%\system32\spoolsv.exe (autostart)

sptd: System32\Drivers\sptd.sys (system)

Pilote de filtre de restauration système: system32\DRIVERS\sr.sys (system)

Service de restauration système: %SystemRoot%\system32\svchost.exe -k netsvcs (autostart)

Srv: system32\DRIVERS\srv.sys (manual start)

SrvcSSIOMngr: System32\Drivers\SSIoMngr.sys (system)

Service de découvertes SSDP: %SystemRoot%\system32\svchost.exe -k LocalService (manual start)

Acquisition d'image Windows (WIA): %SystemRoot%\system32\svchost.exe -k imgsvc (manual start)

Pilote de bus logiciel: system32\DRIVERS\swenum.sys (manual start)

Synthétiseur de table de sons GC noyau Microsoft: system32\drivers\swmidi.sys (manual start)

MS Software Shadow Copy Provider: C:\WINDOWS\system32\dllhost.exe /Processid:{81837335-A818-4128-866E-1546A3B11067} (manual start)

Périphérique audio système du noyau Microsoft: system32\drivers\sysaudio.sys (manual start)

Journaux et alertes de performance: %SystemRoot%\system32\smlogsvc.exe (manual start)

Téléphonie: %SystemRoot%\System32\svchost.exe -k netsvcs (manual start)

TBiosDrv: \??\C:\WINDOWS\system32\Drivers\Tbiosdrv.sys (manual start)

Pilote du protocole TCP/IP: system32\DRIVERS\tcpip.sys (system)

Pilote de périphérique terminal: system32\DRIVERS\termdd.sys (system)

Services Terminal Server: %SystemRoot%\System32\svchost -k DComLaunch (manual start)

Thèmes: %SystemRoot%\System32\svchost.exe -k netsvcs (autostart)

Common Driver: System32\Drivers\TPwSav.sys (system)

Client de suivi de lien distribué: %SystemRoot%\system32\svchost.exe -k netsvcs (autostart)

Toshiba Virtual Sound with SRS technologies: system32\DRIVERS\Tvs.sys (manual start)

Windows User Mode Driver Framework: C:\WINDOWS\system32\wdfmgr.exe (autostart)

Pilote de mise à jour microcode: system32\DRIVERS\update.sys (manual start)

Hôte de périphérique universel Plug-and-Play: %SystemRoot%\system32\svchost.exe -k LocalService (manual start)

Onduleur: %SystemRoot%\System32\ups.exe (manual start)

Pilote parent générique USB Microsoft: system32\DRIVERS\usbccgp.sys (manual start)

Pilote miniport de contrôleur d'hôte amélioré Microsoft USB 2.0: system32\DRIVERS\usbehci.sys (manual start)

Concentrateur USB2: system32\DRIVERS\usbhub.sys (manual start)

Pilote miniport de contrôleur hôte ouvert USB Microsoft: system32\DRIVERS\usbohci.sys (manual start)

Pilote de stockage de masse USB: system32\DRIVERS\USBSTOR.SYS (manual start)

User Privilege Service: %SystemRoot%\System32\svchost.exe -k netsvcs (manual start)

VgaSave: \SystemRoot\System32\drivers\vga.sys (system)

Cliché instantané de volume: %SystemRoot%\System32\vssvc.exe (manual start)

Horloge Windows: %SystemRoot%\System32\svchost.exe -k netsvcs (autostart)

wampapache: "C:\Program Files\wamp\apache2\bin\Apache.exe" -k runservice (autostart)

wampmysqld: "C:\Program Files\wamp\mysql\bin\mysqld-nt.exe" "--defaults-file=C:\Program Files\wamp\mysql\my.ini" wampmysqld (autostart)

Pilote ARP IP d'accès distant: system32\DRIVERS\wanarp.sys (manual start)

Pilote WINMM de compatibilité audio WDM Microsoft: system32\drivers\wdmaud.sys (manual start)

WebClient: %SystemRoot%\system32\svchost.exe -k LocalService (autostart)

Infrastructure de gestion Windows: %systemroot%\system32\svchost.exe -k netsvcs (autostart)

Service Windows Media Connect: C:\Program Files\Windows Media Connect 2\wmccds.exe (manual start)

Service de numéro de série du lecteur multimédia portable: %SystemRoot%\System32\svchost.exe -k netsvcs (manual start)

Carte de performance WMI: C:\WINDOWS\system32\wbem\wmiapsrv.exe (manual start)

Environnement de prise en charge de Fournisseur de services non-IFS Windows Sockets 2.0: \SystemRoot\System32\drivers\ws2ifsl.sys (disabled)

Centre de sécurité: %SystemRoot%\System32\svchost.exe -k netsvcs (autostart)

Mises à jour automatiques: %systemroot%\system32\svchost.exe -k netsvcs (autostart)

Configuration automatique sans fil: %SystemRoot%\System32\svchost.exe -k netsvcs (autostart)

Service d'approvisionnement réseau: %SystemRoot%\System32\svchost.exe -k netsvcs (manual start)

--------------------------------------------------

Enumerating Windows NT logon/logoff scripts:

*No scripts set to run*

Windows NT checkdisk command:

BootExecute = autocheck autochk *

Windows NT 'Wininit.ini':

PendingFileRenameOperations: C:\WINDOWS\system32\rundll.dll||C:\WINDOWS\system32\rundll.dll||C:\WINDOWS\system32\rundll.dll||C:\WINDOWS\system32\rundll.dll||C:\WINDOWS\system32\rundll.dll||C:\WINDOWS\system32\rundll.dll||C:\WINDOWS\system32\rundll.dll||C:\WINDOWS\system32\rundll.dll||C:\WINDOWS\system32\rundll.dll||C:\WINDOWS\system32\rundll.dll||C:\WINDOWS\system32\rundll.dll||C:\WINDOWS\system32\rundll.dll||C:\WINDOWS\system32\rundll.dll||C:\WINDOWS\system32\rundll.dll||C:\WINDOWS\system32\rundll.dll||C:\WINDOWS\system32\rundll.dll||C:\WINDOWS\system32\rundll.dll

--------------------------------------------------

Enumerating ShellServiceObjectDelayLoad items:

PostBootReminder: C:\WINDOWS\system32\SHELL32.dll

CDBurn: C:\WINDOWS\system32\SHELL32.dll

WebCheck: C:\WINDOWS\system32\webcheck.dll

SysTray: C:\WINDOWS\system32\stobject.dll

--------------------------------------------------

Autorun entries from Registry:

HKCU\Software\Microsoft\Windows\CurrentVersion\policies\Explorer\Run

*Registry key not found*

--------------------------------------------------

Autorun entries from Registry:

HKLM\Software\Microsoft\Windows\CurrentVersion\policies\Explorer\Run

*No values found*

--------------------------------------------------

End of report, 34 670 bytes

Report generated in 0,172 seconds

Command line options:

/verbose - to add additional info on each section

/complete - to include empty sections and unsuspicious data

/full - to include several rarely-important sections

/force9x - to include Win9x-only startups even if running on WinNT

/forcent - to include WinNT-only startups even if running on Win9x

/forceall - to include all Win9x and WinNT startups, regardless of platform

/history - to list version history only

a beluga · le 12 juin 2006

quand j'ai fait un scan de antivir, il a pas trouv fichier

mais voici le rapport :

AntiVir PersonalEdition Classic

Report file date: 11 juin 2006 21:45

Scanning for 406081 virus strains and unwanted programs.

Licensed to: AntiVir PersonalEdition Classic

Serial number: 0000149996-WURGE-0001

Platform: Windows XP

Windows version: (Service Pack 2) [5.1.2600]

Username: Alexis

Computer name: NOM-8ABC2A6DAF0

Version informations:

AVSCAN.EXE : 7.0.0.42 557096 2006-06-06 23:26:22

AVSCAN.DLL : 7.0.0.42 53288 2006-06-06 23:26:22

LUKE.DLL : 7.0.0.42 118824 2006-06-06 23:26:34

LUKERES.DLL : 7.0.0.42 25640 2006-06-06 23:26:34

ANTIVIR0.VDF : 6.35.0.1 7371264 2006-06-06 23:26:22

ANTIVIR1.VDF : 6.35.0.5 2048 2006-06-06 23:26:22

ANTIVIR2.VDF : 6.35.0.7 113664 2006-06-06 23:26:22

ANTIVIR3.VDF : 6.35.0.16 30208 2006-06-06 23:26:22

AVEWIN32.DLL : 7.1.0.10 1511936 2006-06-06 23:26:22

AVPREF.DLL : 7.0.0.1 49192 2006-06-06 23:26:22

AVREP.DLL : 6.35.0.2 659496 2006-06-06 23:26:22

AVRPBASE.DLL : 7.0.0.0 2162728 2006-06-06 23:26:22

AVPACK32.DLL : 7.1.0.1 335912 2006-06-06 23:26:22

AVREG.DLL : 6.31.0.90 27688 2006-06-06 23:26:22

NETNT.DLL : 6.32.0.0 6696 2006-06-06 23:26:34

NETNW.DLL : 6.32.0.0 9768 2006-06-06 23:26:34

RCIMAGE.DLL : 7.0.0.71 1642536 2006-06-06 23:26:36

RCTEXT.DLL : 7.0.0.75 77864 2006-06-06 23:26:36

Configuration settings for the scan:

Jobname: '%s'.................: Local Hard Disks

Configuration file............: C:\Program Files\AntiVir PersonalEdition Classic\alldiscs.avp

Boot sectors..................: C

Scan memory...................: 1

Process scan..................: 1

Scan all files................: 2

Scan archives.................: 1

Recursion depth...............: 20

Smart extensions..............: 1

Macro heuristic...............: 1

File heuristic................: -1

Primary action................: 1

Secondary action..............: 0

Start of the scan: 11 juin 2006 21:45

The scan over running processes will be started

34 Processes was scanned

Start scanning boot sectors:

Boot sector 'C:\'

[NOTE] No virus was found!

Starting to scan the registry.

The registry was scanned ( 8 files ).

Starting the file scan:

C:\hiberfil.sys

[WARNING] The file could not be opened!

C:\pagefile.sys

[WARNING] The file could not be opened!

C:\Documents and Settings\Alexis\NTUSER.DAT

[WARNING] The file could not be opened!

C:\Documents and Settings\Alexis\ntuser.dat.LOG

[WARNING] The file could not be opened!

C:\Documents and Settings\Alexis\Local Settings\Application Data\Microsoft\Windows\UsrClass.dat

[WARNING] The file could not be opened!

C:\Documents and Settings\Alexis\Local Settings\Application Data\Microsoft\Windows\UsrClass.dat.LOG

[WARNING] The file could not be opened!

C:\Documents and Settings\LocalService\NTUSER.DAT

[WARNING] The file could not be opened!

C:\Documents and Settings\LocalService\ntuser.dat.LOG

[WARNING] The file could not be opened!

C:\Documents and Settings\LocalService\Local Settings\Application Data\Microsoft\Windows\UsrClass.dat

[WARNING] The file could not be opened!

C:\Documents and Settings\LocalService\Local Settings\Application Data\Microsoft\Windows\UsrClass.dat.LOG

[WARNING] The file could not be opened!

C:\Documents and Settings\NetworkService\NTUSER.DAT

[WARNING] The file could not be opened!

C:\Documents and Settings\NetworkService\ntuser.dat.LOG

[WARNING] The file could not be opened!

C:\Documents and Settings\NetworkService\Local Settings\Application Data\Microsoft\Windows\UsrClass.dat

[WARNING] The file could not be opened!

C:\Documents and Settings\NetworkService\Local Settings\Application Data\Microsoft\Windows\UsrClass.dat.LOG

[WARNING] The file could not be opened!

C:\Program Files\EQAdvice\equpd.exe

[DETECTION] Contains signature of the dropper DR/PurityScan.ED

[iNFO] The file was deleted!

C:\RECYCLER\S-1-5-21-2378468875-2328275169-2517897983-500\Dc11.exe

[DETECTION] Contains signature of the dropper DR/Clicker.Small.G.2

[iNFO] The file was deleted!

C:\WINDOWS\SoftwareDistribution\EventCache\{1C55B150-3660-4C54-B284-44B492E7F9C5}.bin

[WARNING] The file could not be opened!

C:\WINDOWS\system32\config\default

[WARNING] The file could not be opened!

C:\WINDOWS\system32\config\default.LOG

[WARNING] The file could not be opened!

C:\WINDOWS\system32\config\SAM

[WARNING] The file could not be opened!

C:\WINDOWS\system32\config\SAM.LOG

[WARNING] The file could not be opened!

C:\WINDOWS\system32\config\SECURITY

[WARNING] The file could not be opened!

C:\WINDOWS\system32\config\SECURITY.LOG

[WARNING] The file could not be opened!

C:\WINDOWS\system32\config\software

[WARNING] The file could not be opened!

C:\WINDOWS\system32\config\software.LOG

[WARNING] The file could not be opened!

C:\WINDOWS\system32\config\system

[WARNING] The file could not be opened!

C:\WINDOWS\system32\config\system.LOG

[WARNING] The file could not be opened!

C:\WINDOWS\system32\drivers\dtscsi.sys

[WARNING] The file could not be opened!

C:\WINDOWS\system32\drivers\sptd.sys

[WARNING] The file could not be opened!

C:\WINDOWS\system32\drivers\sptd0733.sys

[WARNING] The file could not be opened!

C:\WINDOWS\Temp\ib2

[WARNING] The file could not be opened!

C:\WINDOWS\Temp\ib3

[WARNING] The file could not be opened!

C:\WINDOWS\Temp\ib4

[WARNING] The file could not be opened!

C:\WINDOWS\Temp\ib5

[WARNING] The file could not be opened!

C:\WINDOWS\Temp\ib6

[WARNING] The file could not be opened!

End of the scan: 11 juin 2006 22:32

Used time: 46:53 min

The scan has been done completely.

7559 Scanning directories

283290 Files were scanned

2 viruses and/or unwanted programs was found

2 files were deleted

0 files were repaired

0 files were moved to quarantine

0 files were renamed

8075 Archives were scanned

33 Warnings

0 Notes

Thanos · le 12 juin 2006

salut a beluga

Bon on ne voit pas dans ton rapport le fameux driver détecté par Spybot comme étant command service!

Aussi dans le rapport de Spybot , il doit y avoir les lignes relatives à l'infection : il me faudrait le rapport!

Tu peux retrouver ce dernier rapport de scan ici=> C:\Documents and Settings\All Users\Application Data\Spybot - Search & Destroy\Logs .Le rapport à poster se nomme Fixes 060411(date du jour) ...txt

Si tu ne trouve rien,refais un scan avec Spybot(pense à le mettre à jour d'abord) et poste le rapport.

Pour ce faire, suis les étapes =>

* Lance Spybot.Sur la page d'accueil , clique sur "Vérifier tout"

Patiente le temps du scan. Lorsque le scan est fini, clique sur "Corriger les problèmes" pour éliminer les espions.

Sauvegarde le résultat du scan comme ceci=>

- Clique sur la liste de malwares trouvés avec le bouton droit de ta souris

- Dans le menu, choisis : "Sauver tout le rapport dans le fichier".

- Une fenêtre s'ouvre, clique sur le bouton "Enregistrer".

- Quitte le programme.

On a encore du nettoyage de la base de registre à faire, je te prépare ca

Modifié le 12 juin 2006 par charles ingals

a beluga · le 13 juin 2006

voici le rapport de spybot, et voici le lien du screenshot de la fenêtre qui me demande d'aller à une adresse :

http://img156.imageshack.us/img156/1801/url6oa.jpg

--- Search result list ---

Command Service: Settings (Registry key, fixing failed)

HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\cmdService

Command Service: Settings (Registry key, fixing failed)

HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Services\cmdService

Command Service: Settings (Registry key, fixed)

HKEY_LOCAL_MACHINE\SYSTEM\ControlSet003\Services\cmdService

--- Spybot - Search & Destroy version: 1.4 (build: 20050523) ---

2005-05-31 blindman.exe (1.0.0.1)

2005-05-31 SpybotSD.exe (1.4.0.3)

2005-05-31 TeaTimer.exe (1.4.0.2)

2006-04-14 unins000.exe (51.41.0.0)

2005-05-31 Update.exe (1.4.0.0)

2006-02-06 advcheck.dll (1.0.2.0)

2005-05-31 aports.dll (2.1.0.0)

2005-05-31 borlndmm.dll (7.0.4.453)

2005-05-31 delphimm.dll (7.0.4.453)

2005-05-31 SDHelper.dll (1.4.0.0)

2006-02-20 Tools.dll (2.0.0.2)

2005-05-31 UnzDll.dll (1.73.1.1)

2005-05-31 ZipDll.dll (1.73.2.0)

2006-06-10 Includes\Cookies.sbi (*)

2006-06-10 Includes\Dialer.sbi (*)

2006-06-10 Includes\Hijackers.sbi (*)

2006-06-10 Includes\Keyloggers.sbi (*)

2004-11-29 Includes\LSP.sbi (*)

2006-06-10 Includes\Malware.sbi (*)

2006-06-10 Includes\PUPS.sbi (*)

2006-06-10 Includes\Revision.sbi (*)

2006-06-10 Includes\Security.sbi (*)

2006-06-10 Includes\Spybots.sbi (*)

2005-02-17 Includes\Tracks.uti

2006-06-10 Includes\Trojans.sbi (*)

--- System information ---

Windows XP (Build: 2600) Service Pack 2

/ .NETFramework / 1.1: Microsoft .NET Framework 1.1 Hotfix (KB886903)

/ .NETFramework / 1.1: Microsoft .NET Framework 1.1 Service Pack 1 (KB867460)

/ Step By Step Interactive Training / SP2: Mise à jour de sécurité pour Step by Step Interactive Training (KB898458)

/ Windows Media Player 10: Mise à jour de sécurité pour Lecteur Windows Media 10 (KB911565)

/ Windows XP / SP3: Correctif Windows XP - KB873333

/ Windows XP / SP3: Correctif Windows XP - KB873339

/ Windows XP / SP3: Mise à jour de sécurité pour Windows XP (KB883939)

/ Windows XP / SP3: Correctif Windows XP - KB884018

/ Windows XP / SP3: Correctif Windows XP - KB885250

/ Windows XP / SP3: Correctif Windows XP - KB885835

/ Windows XP / SP3: Correctif Windows XP - KB885836

/ Windows XP / SP3: Correctif Windows XP - KB885855

/ Windows XP / SP3: Correctif Windows XP - KB886185

/ Windows XP / SP3: Correctif Windows XP - KB887472

/ Windows XP / SP3: Correctif Windows XP - KB887742

/ Windows XP / SP3: Correctif Windows XP - KB887797

/ Windows XP / SP3: Correctif Windows XP - KB888113

/ Windows XP / SP3: Correctif Windows XP - KB888302

/ Windows XP / SP3: Correctif Windows XP - KB889673

/ Windows XP / SP3: Mise à jour de sécurité pour Windows XP (KB890046)

/ Windows XP / SP3: Correctif Windows XP - KB890047

/ Windows XP / SP3: Correctif Windows XP - KB890175

/ Windows XP / SP3: Correctif Windows XP - KB890859

/ Windows XP / SP3: Correctif Windows XP - KB890923

/ Windows XP / SP3: Correctif Windows XP - KB891781

/ Windows XP / SP3: Correctif Windows XP - KB893056

/ Windows XP / SP3: Mise à jour de sécurité pour Windows XP (KB893066)

/ Windows XP / SP3: Correctif Windows XP - KB893086

/ Windows XP / SP3: Mise à jour de sécurité pour Windows XP (KB893756)

/ Windows XP / SP3: Windows Installer 3.1 (KB893803)

/ Windows XP / SP3: Mise à jour pour Windows XP (KB894391)

/ Windows XP / SP3: Correctif pour Windows XP (KB894871)

/ Windows XP / SP3: Mise à jour de sécurité pour Windows XP (KB896358)

/ Windows XP / SP3: Mise à jour de sécurité pour Windows XP (KB896422)

/ Windows XP / SP3: Mise à jour de sécurité pour Windows XP (KB896423)

/ Windows XP / SP3: Mise à jour de sécurité pour Windows XP (KB896424)

/ Windows XP / SP3: Mise à jour de sécurité pour Windows XP (KB896428)

/ Windows XP / SP3: Mise à jour de sécurité pour Windows XP (KB896688)

/ Windows XP / SP3: Mise à jour pour Windows XP (KB898461)

/ Windows XP / SP3: Mise à jour de sécurité pour Windows XP (KB899587)

/ Windows XP / SP3: Mise à jour de sécurité pour Windows XP (KB899591)

/ Windows XP / SP3: Mise à jour pour Windows XP (KB900485)

/ Windows XP / SP3: Mise à jour de sécurité pour Windows XP (KB900725)

/ Windows XP / SP3: Mise à jour pour Windows XP (KB900930)

/ Windows XP / SP3: Mise à jour de sécurité pour Windows XP (KB901017)

/ Windows XP / SP3: Mise à jour de sécurité pour Windows XP (KB901214)

/ Windows XP / SP3: Mise à jour de sécurité pour Windows XP (KB902400)

/ Windows XP / SP3: Mise à jour de sécurité pour Windows XP (KB903235)

/ Windows XP / SP3: Mise à jour de sécurité pour Windows XP (KB904706)

/ Windows XP / SP3: Mise à jour de sécurité pour Windows XP (KB905414)

/ Windows XP / SP3: Mise à jour de sécurité pour Windows XP (KB905749)

/ Windows XP / SP3: Mise à jour de sécurité pour Windows XP (KB905915)

/ Windows XP / SP3: Mise à jour de sécurité pour Windows XP (KB908519)

/ Windows XP / SP3: Mise à jour de sécurité pour Windows XP (KB908531)

/ Windows XP / SP3: Mise à jour pour Windows XP (KB910437)

/ Windows XP / SP3: Mise à jour de sécurité pour Windows XP (KB911562)

/ Windows XP / SP3: Mise à jour de sécurité pour Windows XP (KB911567)

/ Windows XP / SP3: Mise à jour de sécurité pour Windows XP (KB911927)

/ Windows XP / SP3: Mise à jour de sécurité pour Windows XP (KB912812)

/ Windows XP / SP3: Mise à jour de sécurité pour Windows XP (KB912919)

/ Windows XP / SP3: Mise à jour de sécurité pour Windows XP (KB913446)

/ Windows XP / SP3: Mise à jour de sécurité pour Windows XP (KB913580)

--- Startup entries list ---

Located: HK_LM:Run, avgnt

command: "C:\Program Files\AntiVir PersonalEdition Classic\avgnt.exe" /min

file: C:\Program Files\AntiVir PersonalEdition Classic\avgnt.exe

size: 233512

MD5: d05a80b5a605f8b8fb0915d1a4905471

Located: HK_LM:Run, PinnacleDriverCheck

command: C:\WINDOWS\system32\PSDrvCheck.exe -CheckReg

file: C:\WINDOWS\system32\PSDrvCheck.exe

size: 406016

MD5: 39d31d333c39caa9a13b738804b43284

Located: HK_LM:Run, QuickTime Task

command: "C:\Program Files\QuickTime\qttask.exe" -atboottime

file: C:\Program Files\QuickTime\qttask.exe

size: 155648

MD5: 216b3acc656cda8a5a0c3071ec0a408b

Located: HK_CU:Run, ctfmon.exe

command: C:\WINDOWS\system32\ctfmon.exe

file: C:\WINDOWS\system32\ctfmon.exe

size: 15360

MD5: 5584247b568c2e53934873f4b655fe6a

Located: Startup (user), WampServer.lnk

command: C:\Program Files\wamp\wampserver.exe

file: C:\Program Files\wamp\wampserver.exe

size: 1101824

MD5: 443ecc7b6b8244678971030906d71382

Located: System.ini, AtiExtEvent

command: Ati2evxx.dll

file: Ati2evxx.dll

Located: System.ini, crypt32chain

command: crypt32.dll

file: crypt32.dll

Located: System.ini, cryptnet

command: cryptnet.dll

file: cryptnet.dll

Located: System.ini, cscdll

command: cscdll.dll

file: cscdll.dll

Located: System.ini, ScCertProp

command: wlnotify.dll

file: wlnotify.dll

Located: System.ini, Schedule

command: wlnotify.dll

file: wlnotify.dll

Located: System.ini, sclgntfy

command: sclgntfy.dll

file: sclgntfy.dll

Located: System.ini, SensLogn

command: WlNotify.dll

file: WlNotify.dll

Located: System.ini, termsrv

command: wlnotify.dll

file: wlnotify.dll

Located: System.ini, WgaLogon

command: WgaLogon.dll

file: WgaLogon.dll

Located: System.ini, wlballoon

command: wlnotify.dll

file: wlnotify.dll

--- Browser helper object list ---

--- ActiveX list ---

{9A9307A0-7DA4-4DAF-B042-5009F29E09E1} (ActiveScan Installer Class)

DPF name:

CLSID name: ActiveScan Installer Class

Installer: C:\WINDOWS\Downloaded Program Files\asinst.inf

Codebase: http://acs.pandasoftware.com/activescan/as5free/asinst.cab

description:

classification: Open for discussion

known filename: ASINST.DLL

info link:

info source: Safer Networking Ltd.

Path: C:\WINDOWS\Downloaded Program Files\

Long name: asinst.dll

Short name:

Date (created): 2006-04-11 17:10:10

Date (last access): 2006-06-12 22:26:38

Date (last write): 2006-04-11 17:10:10

Filesize: 135168

Attributes: archive

MD5: 7267AE9C8DF527C30885DC29687D2A9B

CRC32: 1B1733A3

Version: 58.5.0.0

--- Process list ---

PID: 0 ( 0) [system]

PID: 520 ( 4) \SystemRoot\System32\smss.exe

PID: 576 ( 520) \??\C:\WINDOWS\system32\csrss.exe

PID: 600 ( 520) \??\C:\WINDOWS\system32\winlogon.exe

PID: 648 ( 600) C:\WINDOWS\system32\services.exe

size: 108544

MD5: 732E0B1ABAACE15D80EC19056B0A2AF9

PID: 660 ( 600) C:\WINDOWS\system32\lsass.exe

size: 13312

MD5: 9F3744A5C6F49291A7A685040A013399

PID: 816 ( 648) C:\WINDOWS\system32\svchost.exe

size: 14336

MD5: 1BD6C2F707A275CB7C16FD99FE0F31CA

PID: 876 ( 648) C:\WINDOWS\system32\svchost.exe

size: 14336

MD5: 1BD6C2F707A275CB7C16FD99FE0F31CA

PID: 916 ( 648) C:\WINDOWS\System32\svchost.exe

size: 14336

MD5: 1BD6C2F707A275CB7C16FD99FE0F31CA

PID: 968 ( 648) C:\WINDOWS\system32\svchost.exe

size: 14336

MD5: 1BD6C2F707A275CB7C16FD99FE0F31CA

PID: 1044 ( 648) C:\WINDOWS\system32\svchost.exe

size: 14336

MD5: 1BD6C2F707A275CB7C16FD99FE0F31CA

PID: 1304 ( 648) C:\WINDOWS\system32\spoolsv.exe

size: 57856

MD5: DA81EC57ACD4CDC3D4C51CF3D409AF9F

PID: 1404 ( 648) C:\Program Files\AntiVir PersonalEdition Classic\sched.exe

size: 34344

MD5: 756696E86515155A2DB03E1CD7C4EBD0

PID: 1416 ( 648) C:\Program Files\AntiVir PersonalEdition Classic\avguard.exe

size: 191016

MD5: F8182E30C3E4904E5C3352449E3BE877

PID: 1456 ( 648) C:\Program Files\ewido anti-malware\ewidoctrl.exe

size: 13888

MD5: 26830B750372AB1BF29C95DEEBEB802F

PID: 1480 ( 648) C:\Program Files\ewido anti-malware\ewidoguard.exe

size: 151616

MD5: 34A50717AD686900F078F5208F8E908E

PID: 1600 ( 648) C:\WINDOWS\system32\wdfmgr.exe

size: 38912

MD5: AB0A7CA90D9E3D6A193905DC1715DED0

PID: 1676 ( 648) C:\Program Files\wamp\apache2\bin\Apache.exe

size: 20541

MD5: 801B28C9171271686D608F112747B107

PID: 1728 ( 648) C:\Program Files\wamp\mysql\bin\mysqld-nt.exe

size: 4149248

MD5: 7C33E7EF9B46ED53839CB31CA7676BD6

PID: 1936 (1676) C:\Program Files\wamp\apache2\bin\Apache.exe

size: 20541

MD5: 801B28C9171271686D608F112747B107

PID: 2512 ( 648) C:\WINDOWS\System32\alg.exe

size: 44544

MD5: 2FE681D10C5FC343DBBC0610B8DD4D24

PID: 3624 ( 648) C:\WINDOWS\System32\svchost.exe

size: 14336

MD5: 1BD6C2F707A275CB7C16FD99FE0F31CA

PID: 2800 (3172) C:\WINDOWS\Explorer.EXE

size: 1036288

MD5: 4C33E5B9A6197B6ED215F6CFBA0A2DAA

PID: 1468 (2800) C:\Program Files\AntiVir PersonalEdition Classic\avgnt.exe

size: 233512

MD5: D05A80B5A605F8B8FB0915D1A4905471

PID: 3840 (2800) C:\Program Files\QuickTime\qttask.exe

size: 155648

MD5: 216B3ACC656CDA8A5A0C3071EC0A408B

PID: 692 (2800) C:\WINDOWS\system32\ctfmon.exe

size: 15360

MD5: 5584247B568C2E53934873F4B655FE6A

PID: 784 (2800) C:\Program Files\wamp\wampserver.exe

size: 1101824

MD5: 443ECC7B6B8244678971030906D71382

PID: 3312 ( 916) C:\WINDOWS\system32\wuauclt.exe

size: 125720

MD5: 6CC08152ED8681BC176BE1B0F3C0E908

PID: 3396 (2800) C:\Program Files\MSN Messenger\msnmsgr.exe

size: 7094272

MD5: BCD239CB30B5356A019FD81E45D6636B

PID: 2672 ( 648) C:\WINDOWS\system32\svchost.exe

size: 14336

MD5: 1BD6C2F707A275CB7C16FD99FE0F31CA

PID: 3416 (2800) C:\Program Files\Internet Explorer\iexplore.exe

size: 93184

MD5: 833E2B3F0E2484C0F2B804AE871B4381

PID: 3884 (2800) C:\Program Files\Spybot - Search & Destroy\SpybotSD.exe

size: 4393096

MD5: 09CA174A605B480318731E691DC98539

PID: 4 ( 0) System

--- Browser start & search pages list ---

Spybot - Search & Destroy browser pages report, 2006-06-12 22:33:09

HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\SearchURL

http://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch

HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main\Local Page

C:\WINDOWS\system32\blank.htm

HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main\Search Page

http://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch

HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main\Search Bar

http://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch

HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main\Start Page

about:blank

HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main\Default_Search_URL

http://ie.search.msn.com

HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Search\SearchAssistant

http://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch

HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Search\SearchAssistant Explorer\Main\Default_Search_URL

about:blank

HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Main\Local Page

%SystemRoot%\system32\blank.htm

HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Main\Start Page

http://www.microsoft.com/isapi/redir.dll?p...B_PVER}&ar=home

HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Main\Default_Search_URL

http://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch

HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Search\SearchAssistant

http://ie.search.msn.com/{SUB_RFC1766}/srchasst/srchasst.htm

HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Search\CustomizeSearch

http://ie.search.msn.com/{SUB_RFC1766}/srchasst/srchcust.htm

--- Winsock Layered Service Provider list ---

--- Uninstall list ---

(AddressBook)

Adobe Acrobat 5.0 5.1 (Adobe Acrobat 5.0)

version (major): 5

version (minor): 1

install location: C:\Program Files\Adobe\Acrobat 5.0

uninstall cmd: C:\WINDOWS\ISUN040C.EXE -f"C:\Program Files\Fichiers communs\Adobe\Acrobat 5.0\NT\Uninst.isu" -c"C:\Program Files\Fichiers communs\Adobe\Acrobat 5.0\NT\Uninst.dll"

publisher: Adobe Systems, Inc.

help link: http://www.adobe.com/prodindex/acrobat/main.html

Adobe Photoshop CS2 9.0 (Adobe Photoshop CS2 - {236BB7C4-4419-42FD-0409-1E257A25E34D})

version: 9

version (major): 9

install location: C:\Program Files\Adobe\Adobe Photoshop CS2\

uninstall cmd: msiexec /I {236BB7C4-4419-42FD-0409-1E257A25E34D}

publisher: Adobe Systems, Inc.

comments:

contact: Customer Support

help link: http://www.adobe.com/support/main.html

help telephone: 1-555-555-4505

ATI - Utilitaire de désinstallation du logiciel 6.14.10.1012 (All ATI Software)

install location: C:\Program Files\ATI Technologies\UninstallAll

uninstall cmd: C:\Program Files\ATI Technologies\UninstallAll\AtiCimUn.exe

Avira AntiVir PersonalEdition Classic (AntiVir PersonalEdition Classic)

uninstall cmd: C:\Program Files\AntiVir PersonalEdition Classic\SETUP.EXE /REMOVE

publisher: Avira GmbH

help link: http://www.avira.com/en/technical_support

ATI Display Driver 8.153-050705a1-025176C (ATI Display Driver)

uninstall cmd: rundll32 C:\WINDOWS\system32\atiiiexx.dll,_InfEngUnInstallINFFile_RunDLL@16 -force_restart -flags:0x2010001 -inf_class:DISPLAY -clean

BitTorrent 4.0.1 (BitTorrent)

uninstall cmd: "C:\Program Files\BitTorrent\uninstall.exe"

BuffyGame (BuffyGame)

uninstall cmd: C:\WINDOWS\IsUninst.exe -f"C:\Program Files\BladeGames\BuffyGame\Uninst.isu"

(Connection Manager)

Diablo II (Diablo II)

uninstall cmd: C:\WINDOWS\DIIUnin.exe C:\WINDOWS\DIIUnin.dat

(DirectAnimation)

(DirectDrawEx)

(dlatray.exe)

uninstall cmd: C:\WINDOWS\system32\\MSIEXEC.EXE /x {1206EF92-2E83-4859-ACCB-2048C3CB7DA6}

(DXM_Runtime)

Elasto Mania (Elasto Mania)

uninstall cmd: C:\PROGRA~1\ELASTO~1\UNWISE.EXE C:\PROGRA~1\ELASTO~1\INSTALL.LOG

ewido anti-malware (ewidoantimalware)

install location: C:\Program Files\ewido anti-malware

uninstall cmd: C:\Program Files\ewido anti-malware\Uninstall.exe

publisher: ewido networks

help link: http://www.ewido.net

TOSHIBA Fn-esse 1.0.1.1114C (Fn-esse)

uninstall cmd: C:\WINDOWS\UnInst32.exe Fn-esse.UNI

(Fontcore)

GetDiz 3.0 3.0 (GetDiz 3.0)

uninstall cmd: C:\PROGRA~1\GetDiz\UNINST~1\UNWISE.EXE C:\PROGRA~1\GetDiz\UNINST~1\install.log

publisher: Outer Technologies

comments: fast and handy text viewer

HijackThis 1.99.1 1.99.1 (HijackThis)

uninstall cmd: C:\Documents and Settings\Alexis\Local Settings\Temporary Internet Files\Content.IE5\1DEMRAKU\HijackThis.exe /uninstall

publisher: Soeperman Enterprises Ltd.

PinnacleHollywood FX 5 (Hollywood FX 5)

uninstall cmd: C:\WINDOWS\unvise32.exe C:\Program Files\Pinnacle\Hollywood FX 5\uninstal.log

Programme de désinstallation de l'imprimante hp deskjet 450 (hp deskjet 450 printer unistaller)

uninstall cmd: C:\Program Files\Hewlett-Packard\hp deskjet 450 printer\Uninstall\setup.exe ciuninst.ini

(ICW)

(IE40)

(IE4Data)

(IE5BAKEX)

(IEData)

(InstallShield Uninstall Information)

(InstallShield_{0B9E0BD1-328D-415C-80A5-6B0028F0C104})

(InstallShield_{12688FD7-CB92-4A5B-BEE4-5C8E0574434F})

QuickTime 7.0.3 (InstallShield_{3868A8EE-5051-4DB0-8DF6-4F4B8A98D083})

version: 117440515

version (major): 7

estimated size: 62923

install date: 20051210

install location: C:\Program Files\QuickTime\

install source: C:\DOCUME~1\Alexis\LOCALS~1\Temp\_is584\

uninstall cmd: C:\PROGRA~1\FICHIE~1\INSTAL~1\Driver\11\INTEL3~1\IDriver.exe /M{3868A8EE-5051-4DB0-8DF6-4F4B8A98D083} /l1036

publisher: Apple Computer, Inc.

contact: Assistance AppleCare

help link: http://www.apple.com/fr/support/

help telephone: (33) 0825 888 024

TOSHIBA Accessibility 1.35.0.4C (InstallShield_{3A57482F-BEBC-47E4-ADA1-6302403C7E50})

version: 19070976

version (major): 1

version (minor): 35

estimated size: 137

install date: 20050923

install source: C:\DOCUME~1\PROPRI~1\LOCALS~1\Temp\_is7D\

uninstall cmd: C:\PROGRA~1\FICHIE~1\INSTAL~1\Driver\7\INTEL3~1\IDriver.exe /M{3A57482F-BEBC-47E4-ADA1-6302403C7E50} /l1036

publisher: TOSHIBA

TOSHIBA Mot de passe responsable 1.35.0.1C (InstallShield_{51B4E156-14A5-4904-9AE4-B1AA2A0E46BE})

version: 19070976

version (major): 1

version (minor): 35

estimated size: 72

install date: 20050923

install source: C:\DOCUME~1\PROPRI~1\LOCALS~1\Temp\_isB7\

uninstall cmd: C:\PROGRA~1\FICHIE~1\INSTAL~1\Driver\7\INTEL3~1\IDriver.exe /M{51B4E156-14A5-4904-9AE4-B1AA2A0E46BE} /l1036

publisher: TOSHIBA

TOSHIBA Hardware Setup 1.35.0.4C (InstallShield_{5279374D-87FE-4879-9385-F17278EBB9D3})

version: 19070976

version (major): 1

version (minor): 35

estimated size: 416

install date: 20050923

install source: C:\DOCUME~1\PROPRI~1\LOCALS~1\Temp\_is5C\

uninstall cmd: C:\PROGRA~1\FICHIE~1\INSTAL~1\Driver\7\INTEL3~1\IDriver.exe /M{5279374D-87FE-4879-9385-F17278EBB9D3} /l1036

publisher: TOSHIBA

(InstallShield_{59FDFDFB-52FE-45B1-8A2A-A00079B07FF0})

Utilitaire Hotkey TOSHIBA 1.35.0.6C (InstallShield_{7900D3A6-A9E8-4954-ACCB-AB15867978BF})

version: 19070976

version (major): 1

version (minor): 35

estimated size: 871

install date: 20050922

install source: C:\DOCUME~1\PROPRI~1\LOCALS~1\Temp\_is6B\

uninstall cmd: C:\PROGRA~1\FICHIE~1\INSTAL~1\Driver\7\INTEL3~1\IDriver.exe /M{7900D3A6-A9E8-4954-ACCB-AB15867978BF} /l1036

publisher: TOSHIBA

Utilitaire TouchPad ON/OFF 1.35.0.1C (InstallShield_{80977342-27E8-4FF7-8B6A-D8D89461DA7F})

version: 19070976

version (major): 1

version (minor): 35

estimated size: 175

install date: 20050922

install source: C:\DOCUME~1\PROPRI~1\LOCALS~1\Temp\_is1A7\

uninstall cmd: C:\PROGRA~1\FICHIE~1\INSTAL~1\Driver\7\INTEL3~1\IDriver.exe /M{80977342-27E8-4FF7-8B6A-D8D89461DA7F} /l1036

publisher: TOSHIBA

iTunes 6.0.1.3 (InstallShield_{872653C6-5DDC-488B-B7C2-CF9E4D9335E5})

version: 100663297

version (major): 6

estimated size: 32022

install date: 20051210

install location: C:\Program Files\iTunes\

install source: C:\WINDOWS\Downloaded Installations\{872653C6-5DDC-488B-B7C2-CF9E4D9335E5}\

uninstall cmd: C:\PROGRA~1\FICHIE~1\INSTAL~1\Driver\11\INTEL3~1\IDriver.exe /M{872653C6-5DDC-488B-B7C2-CF9E4D9335E5} /l1036

publisher: Apple Computer, Inc.

contact: Assistance AppleCare

help link: http://www.info.apple.com/frfr/index.html

help telephone: 1-800-275-2273

(InstallShield_{FCE19796-1ADF-42DF-81D8-3563867FC2C2})

Correctif Windows XP - KB873333 20050114.005213 (KB873333)

publisher: Microsoft Corporation

help link: http://support.microsoft.com?kbid=873333

Correctif Windows XP - KB873339 20041117.092459 (KB873339)

publisher: Microsoft Corporation

help link: http://support.microsoft.com?kbid=873339

Mise à jour de sécurité pour Windows XP (KB883939) 1 (KB883939)

publisher: Microsoft Corporation

help link: http://support.microsoft.com?kbid=883939

(KB884016)

Correctif Windows XP - KB884018 20040812.132033 (KB884018)

publisher: Microsoft Corporation

help link: http://support.microsoft.com?kbid=884018

Correctif Windows XP - KB885250 20050118.202711 (KB885250)

publisher: Microsoft Corporation

help link: http://support.microsoft.com?kbid=885250

Correctif Windows XP - KB885835 20041027.181713 (KB885835)

publisher: Microsoft Corporation

help link: http://support.microsoft.com?kbid=885835

Correctif Windows XP - KB885836 20041028.173203 (KB885836)

publisher: Microsoft Corporation

help link: http://support.microsoft.com?kbid=885836

Correctif Windows XP - KB885855 20040930.104104 (KB885855)

publisher: Microsoft Corporation

help link: http://support.microsoft.com?kbid=885855

Correctif Windows XP - KB886185 20041021.090540 (KB886185)

publisher: Microsoft Corporation

help link: http://support.microsoft.com?kbid=886185

Correctif Windows XP - KB887472 20041014.162858 (KB887472)

publisher: Microsoft Corporation

help link: http://support.microsoft.com?kbid=887472

Correctif Windows XP - KB887742 20041103.095002 (KB887742)

uninstall cmd: C:\WINDOWS\$NtUninstallKB887742$\spuninst\spuninst.exe

publisher: Microsoft Corporation

help link: http://support.microsoft.com?kbid=887742

Correctif Windows XP - KB887797 20041018.133824 (KB887797)

uninstall cmd: C:\WINDOWS\$NtUninstallKB887797$\spuninst\spuninst.exe

publisher: Microsoft Corporation

help link: http://support.microsoft.com?kbid=887797

Correctif Windows XP - KB888113 20041116.131036 (KB888113)

publisher: Microsoft Corporation

help link: http://support.microsoft.com?kbid=888113

Correctif Windows XP - KB888302 20041207.111426 (KB888302)

publisher: Microsoft Corporation

help link: http://support.microsoft.com?kbid=888302

Correctif Windows XP - KB889673 20041116.085848 (KB889673)

uninstall cmd: C:\WINDOWS\$NtUninstallKB889673$\spuninst\spuninst.exe

publisher: Microsoft Corporation

help link: http://support.microsoft.com?kbid=889673

Mise à jour de sécurité pour Windows XP (KB890046) 1 (KB890046)

install date: 20051201

uninstall cmd: "C:\WINDOWS\$NtUninstallKB890046$\spuninst\spuninst.exe"

publisher: Microsoft Corporation

help link: http://support.microsoft.com?kbid=890046

Correctif Windows XP - KB890047 20041221.124506 (KB890047)

uninstall cmd: C:\WINDOWS\$NtUninstallKB890047$\spuninst\spuninst.exe

publisher: Microsoft Corporation

help link: http://support.microsoft.com?kbid=890047

Correctif Windows XP - KB890175 20041201.233338 (KB890175)

uninstall cmd: C:\WINDOWS\$NtUninstallKB890175$\spuninst\spuninst.exe

publisher: Microsoft Corporation

help link: http://support.microsoft.com?kbid=890175

Correctif Windows XP - KB890859 1 (KB890859)

install date: 20051201

uninstall cmd: "C:\WINDOWS\$NtUninstallKB890859$\spuninst\spuninst.exe"

publisher: Microsoft Corporation

help link: http://support.microsoft.com?kbid=890859

Correctif Windows XP - KB890923 1 (KB890923)

publisher: Microsoft Corporation

help link: http://support.microsoft.com?kbid=890923

Windows Media Format SDK Hotfix - KB891122 (KB891122)

install date: 20051201

uninstall cmd: "C:\WINDOWS\$NtUninstallKB891122$\spuninst\spuninst.exe"

publisher: Microsoft Corporation

help link: http://support.microsoft.com?kbid=891122

Correctif Windows XP - KB891781 20050110.165439 (KB891781)

publisher: Microsoft Corporation

help link: http://support.microsoft.com?kbid=891781

Correctif Windows XP - KB893056 20050126.164313 (KB893056)

publisher: Microsoft Corporation

help link: http://support.microsoft.com?kbid=893056

Mise à jour de sécurité pour Windows XP (KB893066) 2 (KB893066)

publisher: Microsoft Corporation

help link: http://support.microsoft.com?kbid=893066

Correctif Windows XP - KB893086 1 (KB893086)

publisher: Microsoft Corporation

help link: http://support.microsoft.com?kbid=893086

Mise à jour de sécurité pour Windows XP (KB893756) 1 (KB893756)

install date: 20051201

uninstall cmd: "C:\WINDOWS\$NtUninstallKB893756$\spuninst\spuninst.exe"

publisher: Microsoft Corporation

help link: http://support.microsoft.com?kbid=893756

Windows Installer 3.1 (KB893803) 3.1 (KB893803)

publisher: Microsoft Corporation

help link: http://go.microsoft.com/fwlink/?LinkId=42467

Windows Installer 3.1 (KB893803) 3.1 (KB893803v2)

uninstall cmd: "C:\WINDOWS\$MSI31Uninstall_KB893803v2$\spuninst\spuninst.exe"

publisher: Microsoft Corporation

help link: http://go.microsoft.com/fwlink/?LinkId=42467

Mise à jour pour Windows XP (KB894391) 1 (KB894391)

install date: 20051201

uninstall cmd: "C:\WINDOWS\$NtUninstallKB894391$\spuninst\spuninst.exe"

publisher: Microsoft Corporation

help link: http://support.microsoft.com?kbid=894391

Correctif pour Windows XP (KB894871) 1 (KB894871)

publisher: Microsoft Corporation

help link: http://support.microsoft.com?kbid=894871

Correctif Windows XP - KB895200 1 (KB895200)

publisher: Microsoft Corporation

help link: http://support.microsoft.com?kbid=895200

Mise à jour de sécurité pour Windows XP (KB896358) 1 (KB896358)

publisher: Microsoft Corporation

help link: http://support.microsoft.com?kbid=896358

Mise à jour de sécurité pour Windows XP (KB896422) 1 (KB896422)

publisher: Microsoft Corporation

help link: http://support.microsoft.com?kbid=896422

Mise à jour de sécurité pour Windows XP (KB896423) 1 (KB896423)

install date: 20051201

uninstall cmd: "C:\WINDOWS\$NtUninstallKB896423$\spuninst\spuninst.exe"

publisher: Microsoft Corporation

help link: http://support.microsoft.com?kbid=896423

Mise à jour de sécurité pour Windows XP (KB896424) 1 (KB896424)

install date: 20051201

uninstall cmd: "C:\WINDOWS\$NtUninstallKB896424$\spuninst\spuninst.exe"

publisher: Microsoft Corporation

help link: http://support.microsoft.com?kbid=896424

Mise à jour de sécurité pour Windows XP (KB896428) 1 (KB896428)

install date: 20051201

uninstall cmd: "C:\WINDOWS\$NtUninstallKB896428$\spuninst\spuninst.exe"

publisher: Microsoft Corporation

help link: http://support.microsoft.com?kbid=896428

Mise à jour de sécurité pour Windows XP (KB896688) 1 (KB896688)

install date: 20051201

uninstall cmd: "C:\WINDOWS\$NtUninstallKB896688$\spuninst\spuninst.exe"

publisher: Microsoft Corporation

help link: http://support.microsoft.com?kbid=896688

Mise à jour de sécurité pour Step by Step Interactive Training (KB898458) 20050502.101010 (KB898458)

install date: 20051201

uninstall cmd: "C:\WINDOWS\$NtUninstallKB898458$\spuninst\spuninst.exe"

publisher: Microsoft Corporation

help link: http://support.microsoft.com/kb/898458

Mise à jour pour Windows XP (KB898461) 1 (KB898461)

install date: 20051201

uninstall cmd: "C:\WINDOWS\$NtUninstallKB898461$\spuninst\spuninst.exe"

publisher: Microsoft Corporation

help link: http://support.microsoft.com?kbid=898461

Mise à jour de sécurité pour Windows XP (KB899587) 1 (KB899587)

install date: 20051201

uninstall cmd: "C:\WINDOWS\$NtUninstallKB899587$\spuninst\spuninst.exe"

publisher: Microsoft Corporation

help link: http://support.microsoft.com?kbid=899587

Mise à jour de sécurité pour Windows XP (KB899591) 1 (KB899591)

install date: 20051201

uninstall cmd: "C:\WINDOWS\$NtUninstallKB899591$\spuninst\spuninst.exe"

publisher: Microsoft Corporation

help link: http://support.microsoft.com?kbid=899591

Mise à jour pour Windows XP (KB900485) 2 (KB900485)

install date: 20060426

uninstall cmd: "C:\WINDOWS\$NtUninstallKB900485$\spuninst\spuninst.exe"

publisher: Microsoft Corporation

help link: http://support.microsoft.com?kbid=900485

Mise à jour de sécurité pour Windows XP (KB900725) 1 (KB900725)

install date: 20051201

uninstall cmd: "C:\WINDOWS\$NtUninstallKB900725$\spuninst\spuninst.exe"

publisher: Microsoft Corporation

help link: http://support.microsoft.com?kbid=900725

Mise à jour pour Windows XP (KB900930) 1 (KB900930)

install date: 20051201

uninstall cmd: "C:\WINDOWS\$NtUninstallKB900930$\spuninst\spuninst.exe"

publisher: Microsoft Corporation

help link: http://support.microsoft.com?kbid=900930

Mise à jour de sécurité pour Windows XP (KB901017) 1 (KB901017)

install date: 20051201

uninstall cmd: "C:\WINDOWS\$NtUninstallKB901017$\spuninst\spuninst.exe"

publisher: Microsoft Corporation

help link: http://support.microsoft.com?kbid=901017

Mise à jour de sécurité pour Windows XP (KB901214) 1 (KB901214)

publisher: Microsoft Corporation

help link: http://support.microsoft.com?kbid=901214

Hotfix for Windows Media Format SDK (KB902344) (KB902344)

uninstall cmd: "C:\WINDOWS\$NtUninstallKB902344$\spuninst\spuninst.exe"

publisher: Microsoft Corporation

help link: http://support.microsoft.com?kbid=902344

Mise à jour de sécurité pour Windows XP (KB902400) 1 (KB902400)

install date: 20051201

uninstall cmd: "C:\WINDOWS\$NtUninstallKB902400$\spuninst\spuninst.exe"

publisher: Microsoft Corporation

help link: http://support.microsoft.com?kbid=902400

Mise à jour de sécurité pour Windows XP (KB903235) 1 (KB903235)

publisher: Microsoft Corporation

help link: http://support.microsoft.com?kbid=903235

Mise à jour de sécurité pour Windows XP (KB904706) 1 (KB904706)

install date: 20051201

uninstall cmd: "C:\WINDOWS\$NtUninstallKB904706$\spuninst\spuninst.exe"

publisher: Microsoft Corporation

help link: http://support.microsoft.com?kbid=904706

Mise à jour de sécurité pour Windows XP (KB905414) 1 (KB905414)

install date: 20051201

uninstall cmd: "C:\WINDOWS\$NtUninstallKB905414$\spuninst\spuninst.exe"

publisher: Microsoft Corporation

help link: http://support.microsoft.com?kbid=905414

Mise à jour de sécurité pour Windows XP (KB905749) 1 (KB905749)

install date: 20051201

uninstall cmd: "C:\WINDOWS\$NtUninstallKB905749$\spuninst\spuninst.exe"

publisher: Microsoft Corporation

help link: http://support.microsoft.com?kbid=905749

Mise à jour de sécurité pour Windows XP (KB905915) 1 (KB905915)

install date: 20051217

uninstall cmd: "C:\WINDOWS\$NtUninstallKB905915$\spuninst\spuninst.exe"

publisher: Microsoft Corporation

help link: http://support.microsoft.com?kbid=905915

Mise à jour de sécurité pour Windows XP (KB908519) 1 (KB908519)

install date: 20060112

uninstall cmd: "C:\WINDOWS\$NtUninstallKB908519$\spuninst\spuninst.exe"

publisher: Microsoft Corporation

help link: http://support.microsoft.com?kbid=908519

Mise à jour de sécurité pour Windows XP (KB908531) 1 (KB908531)

install date: 20060414

uninstall cmd: "C:\WINDOWS\$NtUninstallKB908531$\spuninst\spuninst.exe"

publisher: Microsoft Corporation

help link: http://support.microsoft.com?kbid=908531

Package de base Microsoft de service de chiffrement pour cartes à puce (KB909520)

uninstall cmd: "C:\WINDOWS\$NtUninstallbasecsp$\spuninst\spuninst.exe"

publisher: Microsoft Corporation

Mise à jour pour Windows XP (KB910437) 1 (KB910437)

install date: 20051217

uninstall cmd: "C:\WINDOWS\$NtUninstallKB910437$\spuninst\spuninst.exe"

publisher: Microsoft Corporation

help link: http://support.microsoft.com?kbid=910437

Mise à jour de sécurité pour Windows XP (KB911562) 1 (KB911562)

install date: 20060414

uninstall cmd: "C:\WINDOWS\$NtUninstallKB911562$\spuninst\spuninst.exe"

publisher: Microsoft Corporation

help link: http://support.microsoft.com?kbid=911562

Mise à jour de sécurité pour Lecteur Windows Media (KB911564) (KB911564)

install date: 20060215

uninstall cmd: "C:\WINDOWS\$NtUninstallKB911564$\spuninst\spuninst.exe"

publisher: Microsoft Corporation

help link: http://support.microsoft.com/?kbid=911564

Mise à jour de sécurité pour Lecteur Windows Media 10 (KB911565) (KB911565)

install date: 20060215

uninstall cmd: "C:\WINDOWS\$NtUninstallKB911565$\spuninst\spuninst.exe"

publisher: Microsoft Corporation

help link: http://support.microsoft.com/?kbid=911565

Mise à jour de sécurité pour Windows XP (KB911567) 1 (KB911567)

install date: 20060413

uninstall cmd: "C:\WINDOWS\$NtUninstallKB911567$\spuninst\spuninst.exe"

publisher: Microsoft Corporation

help link: http://support.microsoft.com?kbid=911567

Mise à jour de sécurité pour Windows XP (KB911927) 1 (KB911927)

install date: 20060215

uninstall cmd: "C:\WINDOWS\$NtUninstallKB911927$\spuninst\spuninst.exe"

publisher: Microsoft Corporation

help link: http://support.microsoft.com?kbid=911927

Mise à jour de sécurité pour Windows XP (KB912812) 1 (KB912812)

install date: 20060414

uninstall cmd: "C:\WINDOWS\$NtUninstallKB912812$\spuninst\spuninst.exe"

publisher: Microsoft Corporation

help link: http://support.microsoft.com?kbid=912812

Mise à jour de sécurité pour Windows XP (KB912919) 1 (KB912919)

install date: 20060107

uninstall cmd: "C:\WINDOWS\$NtUninstallKB912919$\spuninst\spuninst.exe"

publisher: Microsoft Corporation

help link: http://support.microsoft.com?kbid=912919

Mise à jour de sécurité pour Windows XP (KB913446) 1 (KB913446)

install date: 20060215

uninstall cmd: "C:\WINDOWS\$NtUninstallKB913446$\spuninst\spuninst.exe"

publisher: Microsoft Corporation

help link: http://support.microsoft.com?kbid=913446

Mise à jour de sécurité pour Windows XP (KB913580) 1 (KB913580)

install date: 20060510

uninstall cmd: "C:\WINDOWS\$NtUninstallKB913580$\spuninst\spuninst.exe"

publisher: Microsoft Corporation

help link: http://support.microsoft.com?kbid=913580

(KBKB895200)

LimeWire PRO 4.10.9 4.10.9 (LimeWire)

uninstall cmd: "C:\Program Files\LimeWire\uninstall.exe"

publisher: Lime Wire, LLC

help link: http://www.limewire.com/support

Microsoft .NET Framework 1.1 Hotfix (KB886903) (M886903)

uninstall cmd: "C:\WINDOWS\Microsoft.NET\Framework\v1.1.4322\Updates\hotfix.exe" "C:\WINDOWS\Microsoft.NET\Framework\v1.1.4322\Updates\M886903\M886903Uninstall.msp"

Macromedia Shockwave Player 10.1.0.11 (Macromedia Shockwave Player)

uninstall cmd: C:\WINDOWS\system32\Macromed\SHOCKW~1\UNWISE.EXE C:\WINDOWS\system32\Macromed\SHOCKW~1\Install.log

publisher: Macromedia, Inc.

help link: http://www.macromedia.com/fr/support/shockwave

Microsoft .NET Framework 1.1 (Microsoft .NET Framework 1.1 (1033))

uninstall cmd: msiexec.exe /X {CB2F7EDD-9D1F-43C1-90FC-4F52EAE172A1}

readme: file://C:\WINDOWS\Microsoft.NET\Framework\v1.1.4322\1033\RepairRedist.htm

Microsoft .NET Framework 2.0 (Microsoft .NET Framework 2.0)

install location: C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\

uninstall cmd: C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\Microsoft .NET Framework 2.0\install.exe

publisher: Microsoft Corporation

help link: http://go.microsoft.com/fwlink/?LinkId=45396

(Microsoft Interactive Training)

uninstall cmd: C:\WINDOWS\IsUn040c.exe -fC:\WINDOWS\orun32.isu

mIRC (mIRC)

uninstall cmd: "C:\Program Files\mIRC\mirc.exe" -uninstall

(MobileOptionPack)

(MPlayer2)

(MSI30-Beta1)

(MSI30-Beta2)

(MSI30-KB884016)

(MSI30-RC1)

(MSI30-RC2)

(MSI30a-KB884016)

(MSI31-Beta)

(MSI31-RC1)

MSN (MSNINST)

uninstall cmd: C:\Program Files\MSN\MsnInstaller\msninst.exe /Action:ARP

Native Instruments Sibelius Player (Native Instruments Sibelius Player)

uninstall cmd: C:\PROGRA~1\NATIVE~1\SIBELI~1\UNWISE.EXE C:\PROGRA~1\NATIVE~1\SIBELI~1\INSTALL.LOG

(NetMeeting)

Neuratron PhotoScore Lite 3.00 (Neuratron PhotoScore Lite)

uninstall cmd: C:\PROGRA~1\NEURAT~1\UNWISE.EXE C:\PROGRA~1\NEURAT~1\INSTALL.LOG

publisher: Neuratron Limited

help link: http://www.neuratron.com/support.htm

Outil de diagnostic PC TOSHIBA (Outil de diagnostic PC)

uninstall cmd: C:\WINDOWS\IsUn040c.exe -f"C:\Program Files\TOSHIBA\PCDiag\Uninst.isu"

(OutlookExpress)

Panda ActiveScan (Panda ActiveScan)

uninstall cmd: C:\WINDOWS\system32\ASUninst.exe Panda ActiveScan

publisher: Panda Software S.L.

(PCHealth)

uninstall cmd: rundll32.exe setupapi.dll,InstallHinfSection DefaultUninstall 132 C:\WINDOWS\INF\PCHealth.inf

Gestion d'énergie TOSHIBA 7.03.07.C (Power Saver)

uninstall cmd: C:\WINDOWS\IsUn040c.exe -f"C:\Program Files\TOSHIBA\Power Saver\Uninst.isu" -c"C:\WINDOWS\system32\TPSDel.dll"

QuickSFV (Remove only) (QuickSFV)

uninstall cmd: C:\Program Files\QuickSFV\QSFVUNST.EXE C:\Program Files\QuickSFV\

(RealJukebox 1.0)

uninstall cmd: C:\Program Files\Fichiers communs\Real\Update_OB\r1puninst.exe RealNetworks|RealPlayer|6.0

RealPlayer (RealPlayer 6.0)

uninstall cmd: C:\Program Files\Fichiers communs\Real\Update_OB\r1puninst.exe RealNetworks|RealPlayer|6.0

(RecordNow.exe)

uninstall cmd: C:\WINDOWS\system32\\MSIEXEC.EXE /x {9541FED0-327F-4df0-8B96-EF57EF622F19}

(SchedulingAgent)

(Shockwave)

Macromedia Flash Player 8 8 (ShockwaveFlash)

uninstall cmd: RunDll32 advpack.dll,LaunchINFSection C:\WINDOWS\INF\swflash.inf,DefaultUninstall,5

publisher: Macromedia

help link: http://www.macromedia.com/go/flashplayer_support/

Sibelius v3.1 (Sibelius v3.1)

uninstall cmd: C:\PROGRA~1\SIBELI~1\SIBELI~1\UNWISE.EXE C:\PROGRA~1\SIBELI~1\SIBELI~1\INSTALL.LOG

Snowball Wars by OIN (Snowball Wars)

uninstall cmd: C:\Program Files\Snowball Wars\uninstaller.exe

Spybot - Search & Destroy 1.4 1.4 (Spybot - Search & Destroy_is1)

install location: C:\Program Files\Spybot - Search & Destroy\

uninstall cmd: "C:\Program Files\Spybot - Search & Destroy\unins000.exe"

publisher: Safer Networking Limited

SpywareBlaster v3.5.1 3.5.1 (SpywareBlaster_is1)

install location: C:\Program Files\SpywareBlaster\

uninstall cmd: "C:\Program Files\SpywareBlaster\unins000.exe"

publisher: Javacool Software LLC

TContext (TContext)

uninstall cmd: "C:\Program Files\Internet Optimizer\optimize.exe" /u 8

TOSHIBA Software Modem 2.1.51 (SM2151ALD05) (TOSHIBA Software Modem)

uninstall cmd: Tosmreg -U

Toshiba Tbiosdrv Driver (Toshiba Tbiosdrv Driver)

uninstall cmd: C:\PROGRA~1\TOSHIBA\TOSHIB~1\UNWISE.EXE C:\PROGRA~1\TOSHIBA\TOSHIB~1\INSTALL.LOG

Tweak UI (Tweak UI 2.10)

uninstall cmd: "C:\WINDOWS\system32\mshta.exe" "res://C:\WINDOWS\system32\TweakUI.exe/uninstall.hta"

vanBasco's Karaoke Player (VMidi)

uninstall cmd: C:\Program Files\vanBasco's Karaoke Player\uninst.exe

WAMP5 1.6.3 (WAMP5_is1)

install location: C:\Program Files\wamp\

uninstall cmd: "C:\Program Files\wamp\unins000.exe"

publisher: Romain Bourdon (Roms)

help link: http://www.wampserver.com

WebCopier (WebCopier_4.3)

uninstall cmd: C:\WINDOWS\iun506.exe C:\Program Files\WebCopier\irunin_4.3.ini

WebCopier (WebCopier_4.3.1)

uninstall cmd: C:\WINDOWS\iun506.exe C:\Program Files\WebCopier\irunin_4.3.1.ini

WebExpert 6 6.50.1 (WebExpert 6)

version (major): 6

version (minor): 5

install location: C:\Program Files\Visicom Media\WebExpert 6

uninstall cmd: "C:\Program Files\Visicom Media\WebExpert 6\uninst-web.exe"

Windows Genuine Advantage Validation Tool (KB892130) 1.5.0530.0 (WGA)

install date: 20060606

publisher: Microsoft Corporation

help link: http://support.microsoft.com?kbid=892130

Windows Genuine Advantage Notifications (KB905474) 1.5.0532.0 (WgaNotify)

install date: 20060606

publisher: Microsoft Corporation

help link: http://support.microsoft.com?kbid=905474

Winamp (remove only) (Winamp)

uninstall cmd: "C:\Program Files\Winamp\UninstWA.exe"

Windows Media Format Runtime (Windows Media Format Runtime)

uninstall cmd: "C:\Program Files\Windows Media Player\wmsetsdk.exe" /UninstallAll

Lecteur Windows Media 10 (Windows Media Player)

uninstall cmd: "C:\Program Files\Windows Media Player\Setup_wm.exe" /Uninstall

WinRAR archiver (WinRAR archiver)

uninstall cmd: C:\Program Files\WinRAR\uninstall.exe

WinZip 9.0 SR-1 (6224f) (WinZip)

version (major): 9

install location: C:\PROGRA~1\WINZIP\

uninstall cmd: "C:\Program Files\WinZip\WINZIP32.EXE" /uninstall

publisher: WinZip Computing, Inc.

help link: http://www.winzip.com/wzredir.cgi?FRSWZX

Windows Media Connect (WMCSetup)

uninstall cmd: "C:\WINDOWS\$NtUninstallWMCSetup$\spuninst\spuninst.exe"

publisher: Microsoft Corporation

help link: http://go.microsoft.com/fwlink/?LinkId=47544

Atheros Wireless LAN MiniPCI card Driver ({05832D65-6EDB-4D32-BA78-BCD0E2B91C02})

uninstall cmd: RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{05832D65-6EDB-4D32-BA78-BCD0E2B91C02}\Setup.exe" -l0x40c

Macromedia Dreamweaver 8 8.0.0.2734 ({0837A661-FEC3-48B3-876C-91E7D32048A9})

version: 134217728

version (major): 8

estimated size: 169853

install date: 20051216

install location: C:\Program Files\Macromedia\Dreamweaver 8\

install source: C:\WINDOWS\Downloaded Installations\Macromedia Dreamweaver 8\

uninstall cmd: MsiExec.exe /I{0837A661-FEC3-48B3-876C-91E7D32048A9}

publisher: Macromedia

comments: Language: En

help link: http://www.macromedia.com/go/dreamweaver/support

Adobe Premiere Pro 7.0 ({084709F7-38C5-4609-B55F-2417939315EB})

version: 117440512

version (major): 7

install location: C:\Program Files\Adobe\Premiere Pro

install source: C:\Documents and Settings\Adobe Premiere Pro 7.0 (With Key)\Premiere Pro\

uninstall cmd: RunDll32 "C:\Program Files\Fichiers communs\InstallShield\Professional\RunTime\0701\Intel32\ctor.dll",LaunchSetup "C:\Program Files\InstallShield Installation Information\{084709F7-38C5-4609-B55F-2417939315EB}\setup.exe"

publisher: Adobe Systems, Inc.

Panneau de contrôle ATI 6.14.10.5157 ({0BEDBD4E-2D34-47B5-9973-57E62B29307C})

uninstall cmd: RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\engine\6\INTEL3~1\ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{0BEDBD4E-2D34-47B5-9973-57E62B29307C}\setup.exe"

Sonic DLA 5.1.0 ({1206EF92-2E83-4859-ACCB-2048C3CB7DA6})

version: 83951616

version (major): 5

version (minor): 1

estimated size: 2837

install date: 20050923

install source: C:\SW\DLA\

uninstall cmd: MsiExec.exe /I{1206EF92-2E83-4859-ACCB-2048C3CB7DA6}

publisher: Sonic Solutions

help link: http://www.sonicjapan.co.jp/support/index.html

Utility Common Driver 0.0.0.1C ({12688FD7-CB92-4A5B-BEE4-5C8E0574434F})

estimated size: 21

install date: 20050922

install source: C:\DOCUME~1\PROPRI~1\LOCALS~1\Temp\_is8E\

publisher: TOSHIBA

Assist TOSHIBA ({12B3A009-A080-4619-9A2A-C6DB151D8D67})

uninstall cmd: RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{12B3A009-A080-4619-9A2A-C6DB151D8D67}\Setup.exe" -l0x40c

Adobe Photoshop CS2 9.0 ({236BB7C4-4419-42FD-0409-1E257A25E34D})

version: 150994944

version (major): 9

estimated size: 639892

install date: 20051218

install location: C:\Program Files\Adobe\Adobe Photoshop CS2\

install source: C:\Documents and Settings\Alexis\Photoshop CS2 v9.0 + working KeyGen\Photoshop CS2\Adobe® Photoshop® CS2\

publisher: Adobe Systems, Inc.

comments:

contact: Customer Support

help link: http://www.adobe.com/support/main.html

help telephone: 1-555-555-4505

Macromedia Flash 8 8.00.0000 ({2BD5C305-1B27-4D41-B690-7A61172D2FEB})

version: 134217728

version (major): 8

estimated size: 252071

install date: 20051210

install location: C:\Program Files\Macromedia\Flash 8\

install source: C:\Documents and Settings\Alexis\Macromedia Flash 8 PRO\data\

uninstall cmd: MsiExec.exe /I{2BD5C305-1B27-4D41-B690-7A61172D2FEB}

publisher: Macromedia

comments: Thank you for choosing Macromedia.

contact: Support and Training

help link: http://www.macromedia.com/go/flash_support

InterVideo WinDVD Creator 2 2.0.14.368 ({2FCE4FC5-6930-40E7-A4F1-F862207424EF})

version (major): 2

install location: C:\Program Files\InterVideo\WCreator2

uninstall cmd: "C:\Program Files\InstallShield Installation Information\{2FCE4FC5-6930-40E7-A4F1-F862207424EF}\setup.exe" REMOVEALL

publisher: InterVideo Inc.

contact: support@intervideo.com

help link: http://www.intervideo.com/jsp/Support.jsp

J2SE Runtime Environment 5.0 Update 2 1.5.0.20 ({3248F0A8-6813-11D6-A77B-00B0D0150020})

version: 17104896

version (major): 1

version (minor): 5

estimated size: 154313

install date: 20050923

install source: C:\Documents and Settings\Propriétaire\Local Settings\Application Data\{3248F0A6-6813-11D6-A77B-00B0D0150020}\

uninstall cmd: MsiExec.exe /I{3248F0A8-6813-11D6-A77B-00B0D0150020}

publisher: Sun Microsystems, Inc.

contact: http://java.com

help link: http://java.com

readme: C:\Program Files\Java\jre1.5.0_02\README.txt

WebFldrs XP 9.50.7523 ({350C940c-3D7C-4EE8-BAA9-00BCB3D54227})

version: 154279267

version (major): 9

version (minor): 50

estimated size: 2608

install date: 20050922

install source: C:\WINDOWS\system32\

publisher: Microsoft Corporation

help link: http://www.microsoft.com/windows

QuickTime 7.0.3 ({3868A8EE-5051-4DB0-8DF6-4F4B8A98D083})

version: 117440515

version

Thanos · le 13 juin 2006

salut a beluga

merci pour le rapport! je reviens ce soir pour poster

Thanos · le 14 juin 2006

salut a beluga

Un problème pour poster hier et aujourd'hui sur le forum! Tout est rentré dans l'ordre,continuons!

J'ai besoin d'un rapport rapide comme ceci stp (pour voir ou tu en es)=>

Télécharge windatfindbat et dézippe le sur ton bureau.

Lance le fichier windatfind.bat en double cliquant dessus.

Une fenêtre DOS va s'ouvrir brièvement, et un fichier texte va apparaitre: poste stp le résultat en sélectionnant juste les 30 derniers jours.

a beluga · le 14 juin 2006

je sais pas si j'ai mis la bonne chose mais voila

Le volume dans le lecteur C n'a pas de nom.

Le num‚ro de s‚rie du volume est 898D-B2DA

R‚pertoire de C:\

2006-06-14 17:54 0 dirdat.txt

2006-06-14 10:41 467 845 120 hiberfil.sys

2006-06-14 10:41 704 643 072 pagefile.sys

2006-06-11 22:33 12 630 AVSCAN-20060611-214534-A86CA4F8.LOG

2006-06-10 14:38 158 908 SpybotSD.Results.txt

2006-06-06 19:19 6 351 Nouveau Document texte.txt

2006-06-06 19:19 10 816 112 antivir_workstation_win7u_en_h.exe

2006-05-17 02:20 17 d.bat

R‚pertoire de C:\WINDOWS

2006-06-14 14:27 1 125 winamp.ini

2006-06-14 11:28 159 wiadebug.log

2006-06-14 11:27 50 wiaservc.log

2006-06-14 10:48 1 435 118 WindowsUpdate.log

2006-06-14 10:41 0 0.log

2006-06-14 10:41 2 048 bootstat.dat

2006-06-13 23:41 32 522 SchedLgU.Txt

2006-06-12 22:25 41 472 Thumbs.db

2006-06-12 11:07 328 480 setupapi.log

2006-06-11 22:07 35 872 wmsetup.log

2006-06-10 14:12 32 pavsig.txt

2006-06-08 19:39 2 735 490 ntbtlog.txt

2006-06-06 19:32 2 806 setupact.log

2006-06-05 20:14 4 141 spupdsvc.log

2006-06-05 20:12 9 012 WgaNotify.log

2006-06-05 20:12 25 033 updspapi.log

2006-06-05 20:11 7 358 WGA.log

2006-06-05 18:29 4 046 win.ini

2006-06-05 17:28 4 039 DirectX.log

2006-05-28 09:34 1 635 cfg32.exe

2006-05-24 14:32 149 yfesefmf.ini

2006-05-20 22:34 60 GOTO.INI

2006-05-20 22:33 229 REGGOTO.INI

2006-05-20 16:01 286 720 iun506.exe

2006-05-20 13:23 35 862 wallp2.exe

R‚pertoire de C:\DOCUME~1\Alexis\LOCALS~1\Temp

2006-06-14 11:58 2 080 java_install_reg.log

2006-06-13 16:14 0 fla5D.tmp

2006-06-11 22:07 717 control.xml

Connexion

Pas encore inscrit ?

command service et surf side kick

Messages recommandés

a beluga

a beluga

Thanos

a beluga

a beluga

Thanos

a beluga

Thanos

Thanos

a beluga

Rejoindre la conversation

En ligne récemment 0 membre est en ligne

Zebulon

Outils en ligne

Naviguer