Virus urgent
Résolu/Fermé
A voir également:
- Virus urgent
- Youtu.be virus - Accueil - Guide virus
- Svchost.exe virus - Guide
- Faux message virus ordinateur - Accueil - Arnaque
- Virus mcafee - Accueil - Piratage
- Tinyurl.com virus - Forum Virus
176 réponses
Utilisateur anonyme
25 déc. 2008 à 01:50
25 déc. 2008 à 01:50
ok mais pour avast il ne peut démarer depuit le virus ça me marqe qu'l n'est pas une app win32 valide
Utilisateur anonyme
25 déc. 2008 à 01:51
25 déc. 2008 à 01:51
Re,
Clic droit sur l'icone et "execute en tant qu'administrateur".
Clic droit sur l'icone et "execute en tant qu'administrateur".
Utilisateur anonyme
25 déc. 2008 à 01:56
25 déc. 2008 à 01:56
au redemarage le par feu bloque wintems je le débloque ou pas
Vous n’avez pas trouvé la réponse que vous recherchez ?
Posez votre question
Utilisateur anonyme
25 déc. 2008 à 02:04
25 déc. 2008 à 02:04
Re,
Bon passe sa.
FindyKill de Chiquitine29
▶ Fais un clique droit sur le lien et choisis ( "enregistrer la cible sous ...." )( , destination le bureau .
▶ ( Note importante : si tu as le prg Elibagla sur ton PC , supprimes le ( risque de conflit entre les deux outils )( .
▶ Entre dans le dossier " FindyKill "
▶ Double clic sur " FindyKill.bat " (et pas sur autre chose!) pour lancer l'outil .
▶ Choisis ( l'option 1( . Puis laisses travailler ...
▶ Une fois terminé, postes le rapport FindyKill.txt qui est généré ...
( Note : le rapport est sauvegardé à la racine du disque -> C:\FindyKill.txt )
Les-risques-securitaires-du-peer-to-peer
Si un rapport ne passe pas faire une alerte à la conciergerie avec le /!\ jaune.
Bon passe sa.
FindyKill de Chiquitine29
▶ Fais un clique droit sur le lien et choisis ( "enregistrer la cible sous ...." )( , destination le bureau .
▶ ( Note importante : si tu as le prg Elibagla sur ton PC , supprimes le ( risque de conflit entre les deux outils )( .
▶ Entre dans le dossier " FindyKill "
▶ Double clic sur " FindyKill.bat " (et pas sur autre chose!) pour lancer l'outil .
▶ Choisis ( l'option 1( . Puis laisses travailler ...
▶ Une fois terminé, postes le rapport FindyKill.txt qui est généré ...
( Note : le rapport est sauvegardé à la racine du disque -> C:\FindyKill.txt )
Les-risques-securitaires-du-peer-to-peer
Si un rapport ne passe pas faire une alerte à la conciergerie avec le /!\ jaune.
spoophy
Messages postés
354
Date d'inscription
mercredi 17 décembre 2008
Statut
Membre
Dernière intervention
19 août 2009
41
25 déc. 2008 à 02:07
25 déc. 2008 à 02:07
une question esque ta spybot installer sur ton pc et esque ta eu la modir du registre au demarage de windows
Utilisateur anonyme
25 déc. 2008 à 02:10
25 déc. 2008 à 02:10
Re,
On va passer cent ans
http://sd-1.archive-host.com/membres/up/116615172019703188/FindyKill.exe
Passe sa et fait le choix 1.
On va passer cent ans
http://sd-1.archive-host.com/membres/up/116615172019703188/FindyKill.exe
Passe sa et fait le choix 1.
Utilisateur anonyme
25 déc. 2008 à 02:17
25 déc. 2008 à 02:17
----------------- FindyKill V4.710 ------------------
* User : Jimmy - JIMMY_1
* Emplacement : D:\Program Files\FindyKill
* Outils Mis a jours le 21/12/08 par Chiquitine29
* Recherche effectuée à 2:12:04 le 25/12/2008
* Windows Vista - Internet Explorer 7.0.6001.18000
((((((((((((((((( *** Recherche *** ))))))))))))))))))
--------------- [ Processus actifs ] ----------------
C:\Windows\System32\smss.exe
C:\Windows\system32\csrss.exe
C:\Windows\system32\wininit.exe
C:\Windows\system32\csrss.exe
C:\Windows\system32\services.exe
C:\Windows\system32\winlogon.exe
C:\Windows\system32\lsass.exe
C:\Windows\system32\lsm.exe
C:\Windows\system32\svchost.exe
C:\Windows\system32\svchost.exe
C:\Windows\system32\Ati2evxx.exe
C:\Windows\System32\svchost.exe
C:\Windows\System32\svchost.exe
C:\Windows\system32\svchost.exe
C:\Windows\system32\SLsvc.exe
C:\Windows\system32\svchost.exe
C:\Windows\system32\svchost.exe
C:\Windows\system32\Ati2evxx.exe
C:\Windows\System32\spoolsv.exe
C:\Windows\system32\svchost.exe
C:\Windows\system32\WUDFHost.exe
C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
C:\Program Files\Bonjour\mDNSResponder.exe
C:\Windows\system32\svchost.exe
C:\Program Files\NewTech Infosystems\NTI Backup Now 5\Client\Agentsvc.exe
C:\Program Files\Acer\Empowering Technology\eDataSecurity\x86\eDSService.exe
C:\Program Files\Acer\Empowering Technology\Service\ETService.exe
C:\Program Files\Common Files\LightScribe\LSSrvc.exe
C:\Program Files\Microsoft SQL Server\MSSQL.1\MSSQL\Binn\sqlservr.exe
C:\Program Files\NewTech Infosystems\NTI Backup Now 5\BackupSvc.exe
C:\Program Files\NewTech Infosystems\NTI Backup Now 5\SchedulerSvc.exe
C:\Program Files\Cyberlink\Shared files\RichVideo.exe
C:\Windows\system32\svchost.exe
C:\Windows\System32\TUProgSt.exe
C:\Windows\System32\svchost.exe
C:\Windows\system32\SearchIndexer.exe
C:\Windows\system32\WUDFHost.exe
C:\Windows\system32\taskeng.exe
C:\Windows\system32\taskeng.exe
C:\Windows\system32\Dwm.exe
C:\Windows\Explorer.EXE
C:\Program Files\Acer\Empowering Technology\Framework.Launcher.exe
C:\Program Files\Acer\Empowering Technology\eDataSecurity\x86\eDSLoader.exe
C:\Program Files\Cyberlink\PowerDVD\PDVDServ.exe
C:\Windows\RtHDVCpl.exe
C:\Windows\WindowsMobile\wmdc.exe
C:\Windows\System32\wpcumi.exe
C:\Program Files\Windows Sidebar\sidebar.exe
C:\Users\Jimmy\AppData\Local\acsig.exe
C:\Program Files\RayV\RayV\RayV.exe
C:\Program Files\SlySoft\AnyDVD\AnyDVDtray.exe
C:\Users\Jimmy\AppData\Roaming\drivers\winupgro.exe
C:\Windows\system32\svchost.exe
C:\Windows\system32\wbem\wmiprvse.exe
C:\Program Files\Windows Sidebar\sidebar.exe
C:\Windows\system32\wbem\unsecapp.exe
D:\Program Files\iPod\bin\iPodService.exe
D:\Program Files\iTunes\iTunes.exe
C:\Windows\system32\DllHost.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Windows\system32\conime.exe
C:\Windows\system32\taskeng.exe
C:\Windows\system32\SearchProtocolHost.exe
C:\Windows\system32\SearchFilterHost.exe
C:\Program Files\Common Files\Apple\Mobile Device Support\bin\distnoted.exe
--------------- [ Processus infectieux stoppés ] ----------------
"C:\Users\Jimmy\AppData\Roaming\drivers\winupgro.exe" (3592)
--------------- [ Fichiers/Dossiers infectieux ] ----------------
»»»» Presence des fichiers dans C:
»»»» Presence des fichiers dans C:\Windows
»»»» Presence des fichiers dans C:\Windows\Prefetch
Found ! - C:\Windows\prefetch\508890.EXE-137BD6D8.pf
Found ! - C:\Windows\Prefetch\KEYGEN.EXE-31342A67.pf
Found ! - C:\Windows\Prefetch\KEYGEN.EXE-73DA0114.pf
Found ! - C:\Windows\Prefetch\SERIAL.EXE-83FD72D9.pf
Found ! - C:\Windows\Prefetch\KEYGEN.EXE-31342A67.pf
Found ! - C:\Windows\Prefetch\KEYGEN.EXE-73DA0114.pf
»»»» Presence des fichiers dans C:\Windows\system32
Found ! [25/12/2008 01:55] - C:\Windows\system32\mdelk.exe
Found ! [25/12/2008 01:55] - C:\Windows\system32\wintems.exe
Found ! [25/12/2008 02:11] - C:\Windows\system32\ban_list.txt
»»»» Presence des fichiers dans C:\Windows\system32\config\systemprofile\AppData\Roaming
»»»» Presence des fichiers dans C:\Windows\system32\drivers
»»»» Presence des fichiers dans C:\Users\Jimmy\AppData\Roaming
Found ! [25/12/2008 00:26] - "C:\Users\Jimmy\AppData\Roaming\m\flec006.exe"
Found ! [25/12/2008 00:26] - "C:\Users\Jimmy\AppData\Roaming\m\list.oct"
Found ! [25/12/2008 00:27] - "C:\Users\Jimmy\AppData\Roaming\m\data.oct"
Found ! [25/12/2008 00:27] - "C:\Users\Jimmy\AppData\Roaming\m\srvlist.oct"
Found ! [25/12/2008 01:56] - "C:\Users\Jimmy\AppData\Roaming\m\shared"
Found ! [25/12/2008 00:27] - "C:\Users\Jimmy\AppData\Roaming\m"
Found ! [25/12/2008 00:20] - "C:\Users\Jimmy\AppData\Roaming\drivers"
Found ! [25/12/2008 01:55] - "C:\Users\Jimmy\AppData\Roaming\drivers\srosa.sys"
Found ! [25/12/2008 01:55] - "C:\Users\Jimmy\AppData\Roaming\drivers\srosa2.sys"
Found ! [04/09/2004 03:06] - "C:\Users\Jimmy\AppData\Roaming\drivers\winupgro.exe"
Found ! [25/12/2008 02:07] - "C:\Users\Jimmy\AppData\Roaming\drivers\downld"
Found ! [25/12/2008 02:07] - C:\Users\Jimmy\AppData\Roaming\drivers\downld\106408.exe
Found ! [25/12/2008 02:07] - C:\Users\Jimmy\AppData\Roaming\drivers\downld\152834.exe
Found ! [25/12/2008 02:07] - C:\Users\Jimmy\AppData\Roaming\drivers\downld\154409.exe
Found ! [25/12/2008 02:07] - C:\Users\Jimmy\AppData\Roaming\drivers\downld\154971.exe
Found ! [25/12/2008 02:07] - C:\Users\Jimmy\AppData\Roaming\drivers\downld\243969.exe
Found ! [25/12/2008 02:07] - C:\Users\Jimmy\AppData\Roaming\drivers\downld\244391.exe
Found ! [25/12/2008 02:07] - C:\Users\Jimmy\AppData\Roaming\drivers\downld\244406.exe
Found ! [25/12/2008 02:07] - C:\Users\Jimmy\AppData\Roaming\drivers\downld\248618.exe
Found ! [25/12/2008 02:07] - C:\Users\Jimmy\AppData\Roaming\drivers\downld\277385.exe
Found ! [25/12/2008 02:07] - C:\Users\Jimmy\AppData\Roaming\drivers\downld\278009.exe
Found ! [25/12/2008 02:07] - C:\Users\Jimmy\AppData\Roaming\drivers\downld\278024.exe
Found ! [25/12/2008 02:07] - C:\Users\Jimmy\AppData\Roaming\drivers\downld\295044.exe
Found ! [25/12/2008 02:07] - C:\Users\Jimmy\AppData\Roaming\drivers\downld\295840.exe
Found ! [25/12/2008 02:07] - C:\Users\Jimmy\AppData\Roaming\drivers\downld\296433.exe
Found ! [25/12/2008 02:07] - C:\Users\Jimmy\AppData\Roaming\drivers\downld\296885.exe
Found ! [25/12/2008 02:07] - C:\Users\Jimmy\AppData\Roaming\drivers\downld\297025.exe
Found ! [25/12/2008 02:07] - C:\Users\Jimmy\AppData\Roaming\drivers\downld\297478.exe
Found ! [25/12/2008 02:07] - C:\Users\Jimmy\AppData\Roaming\drivers\downld\297681.exe
Found ! [25/12/2008 02:07] - C:\Users\Jimmy\AppData\Roaming\drivers\downld\298632.exe
Found ! [25/12/2008 02:07] - C:\Users\Jimmy\AppData\Roaming\drivers\downld\299116.exe
Found ! [25/12/2008 02:07] - C:\Users\Jimmy\AppData\Roaming\drivers\downld\321674.exe
Found ! [25/12/2008 02:07] - C:\Users\Jimmy\AppData\Roaming\drivers\downld\402700.exe
Found ! [25/12/2008 02:07] - C:\Users\Jimmy\AppData\Roaming\drivers\downld\414697.exe
Found ! [25/12/2008 02:07] - C:\Users\Jimmy\AppData\Roaming\drivers\downld\417599.exe
Found ! [25/12/2008 02:07] - C:\Users\Jimmy\AppData\Roaming\drivers\downld\435445.exe
Found ! [25/12/2008 02:07] - C:\Users\Jimmy\AppData\Roaming\drivers\downld\437005.exe
Found ! [25/12/2008 02:07] - C:\Users\Jimmy\AppData\Roaming\drivers\downld\437582.exe
Found ! [25/12/2008 02:07] - C:\Users\Jimmy\AppData\Roaming\drivers\downld\438612.exe
Found ! [25/12/2008 02:07] - C:\Users\Jimmy\AppData\Roaming\drivers\downld\439579.exe
Found ! [25/12/2008 02:07] - C:\Users\Jimmy\AppData\Roaming\drivers\downld\440125.exe
Found ! [25/12/2008 02:07] - C:\Users\Jimmy\AppData\Roaming\drivers\downld\466037.exe
Found ! [25/12/2008 02:07] - C:\Users\Jimmy\AppData\Roaming\drivers\downld\466926.exe
Found ! [25/12/2008 02:07] - C:\Users\Jimmy\AppData\Roaming\drivers\downld\467441.exe
Found ! [25/12/2008 02:07] - C:\Users\Jimmy\AppData\Roaming\drivers\downld\476973.exe
Found ! [25/12/2008 02:07] - C:\Users\Jimmy\AppData\Roaming\drivers\downld\479640.exe
Found ! [25/12/2008 02:07] - C:\Users\Jimmy\AppData\Roaming\drivers\downld\480389.exe
Found ! [25/12/2008 02:07] - C:\Users\Jimmy\AppData\Roaming\drivers\downld\539217.exe
Found ! [25/12/2008 02:07] - C:\Users\Jimmy\AppData\Roaming\drivers\downld\540527.exe
Found ! [25/12/2008 02:07] - C:\Users\Jimmy\AppData\Roaming\drivers\downld\540964.exe
Found ! [25/12/2008 02:07] - C:\Users\Jimmy\AppData\Roaming\drivers\downld\741051.exe
Found ! [25/12/2008 02:07] - C:\Users\Jimmy\AppData\Roaming\drivers\downld\741956.exe
Found ! [25/12/2008 02:07] - C:\Users\Jimmy\AppData\Roaming\drivers\downld\742315.exe
Found ! [25/12/2008 02:07] - C:\Users\Jimmy\AppData\Roaming\drivers\downld\755216.exe
Found ! [25/12/2008 02:07] - C:\Users\Jimmy\AppData\Roaming\drivers\downld\757509.exe
Found ! [25/12/2008 02:07] - C:\Users\Jimmy\AppData\Roaming\drivers\downld\757946.exe
Found ! [25/12/2008 02:07] - C:\Users\Jimmy\AppData\Roaming\drivers\downld\792547.exe
Found ! [25/12/2008 02:07] - C:\Users\Jimmy\AppData\Roaming\drivers\downld\793311.exe
Found ! [25/12/2008 02:07] - C:\Users\Jimmy\AppData\Roaming\drivers\downld\793467.exe
Found ! [25/12/2008 02:07] - C:\Users\Jimmy\AppData\Roaming\drivers\downld\94630.exe
Found ! [25/12/2008 02:07] - C:\Users\Jimmy\AppData\Roaming\drivers\downld\97500.exe
Found ! [25/12/2008 02:07] - C:\Users\Jimmy\AppData\Roaming\drivers\downld\97516.exe
»»»» Presence des fichiers dans C:\Users\Jimmy\AppData\Local\Temp
Found ! - C:\Users\Jimmy\AppData\Local\Temp\Rar$DI03.710\crack.nfo
Found ! - C:\Users\Jimmy\AppData\Local\Temp\Rar$DI04.321\[KEYGEN] - Microsoft Office 2007(1).txt
Found ! - C:\Users\Jimmy\AppData\Local\Temp\Rar$DI05.850\Readme keygen.txt
Found ! - C:\Users\Jimmy\AppData\Local\Temp\Rar$EX00.918\crack.nfo
»»»» Presence des fichiers dans C:\Users\Jimmy\Local Settings\Temporary Internet Files\Content.IE5
Found ! [04/11/2008 10:13] - D:\Users\Jimmy\Documents\iWizz\Thumbnails\09FBBB78-B640-4E6A-BAC8-EC6C7ACFD286.jpg
Found ! [08/11/2008 12:44] - D:\Users\Jimmy\Documents\iWizz\Thumbnails\0FB64222-6AAE-4547-B262-B3DDC8376ED0.jpg
Found ! [04/11/2008 10:10] - D:\Users\Jimmy\Documents\iWizz\Thumbnails\28FDE204-FB64-4965-9903-4445C6EEAF2D.jpg
Found ! [04/11/2008 10:13] - D:\Users\Jimmy\Documents\iWizz\Thumbnails\52F77901-9462-4797-BB5E-0B648F8E9593.jpg
Found ! [08/11/2008 12:43] - D:\Users\Jimmy\Documents\iWizz\Thumbnails\5FC9BA70-5189-4A71-9B64-8F876947844D.jpg
Found ! [04/11/2008 10:12] - D:\Users\Jimmy\Documents\iWizz\Thumbnails\63B64114-7395-4337-9F62-42B17A1280FE.jpg
Found ! [05/11/2008 12:11] - D:\Users\Jimmy\Documents\iWizz\Thumbnails\80DA81AF-3CDE-4732-AC0D-BC9B6409692C.jpg
Found ! [04/11/2008 10:13] - D:\Users\Jimmy\Documents\iWizz\Thumbnails\8680CA5F-AEF4-4096-B64C-1FA9FA38B20B.jpg
Found ! [04/11/2008 10:12] - D:\Users\Jimmy\Documents\iWizz\Thumbnails\9E36B911-A493-4EB8-B64D-7C36F3B26E23.jpg
Found ! [04/11/2008 10:12] - D:\Users\Jimmy\Documents\iWizz\Thumbnails\A06AE301-CE2C-423E-954B-24996A9B647E.jpg
Found ! [12/11/2008 19:03] - D:\Users\Jimmy\iWizz\Thumbnails\09FBBB78-B640-4E6A-BAC8-EC6C7ACFD286.jpg
Found ! [12/11/2008 19:04] - D:\Users\Jimmy\iWizz\Thumbnails\0FB64222-6AAE-4547-B262-B3DDC8376ED0.jpg
Found ! [19/11/2008 13:15] - D:\Users\Jimmy\iWizz\Thumbnails\28D82A01-B1DE-4B64-A179-E2CD3170C8A5.jpg
Found ! [12/11/2008 19:01] - D:\Users\Jimmy\iWizz\Thumbnails\28FDE204-FB64-4965-9903-4445C6EEAF2D.jpg
Found ! [28/11/2008 21:00] - D:\Users\Jimmy\iWizz\Thumbnails\5B1B640C-CF2F-41CD-AD6C-3941AAC5B850.jpg
Found ! [12/11/2008 19:04] - D:\Users\Jimmy\iWizz\Thumbnails\5FC9BA70-5189-4A71-9B64-8F876947844D.jpg
Found ! [12/11/2008 19:03] - D:\Users\Jimmy\iWizz\Thumbnails\63B64114-7395-4337-9F62-42B17A1280FE.jpg
Found ! [19/11/2008 13:15] - D:\Users\Jimmy\iWizz\Thumbnails\83F42472-7B64-4E43-BD35-C4D6C8AE4D6D.jpg
Found ! [12/11/2008 19:03] - D:\Users\Jimmy\iWizz\Thumbnails\8680CA5F-AEF4-4096-B64C-1FA9FA38B20B.jpg
Found ! [19/11/2008 13:15] - D:\Users\Jimmy\iWizz\Thumbnails\93968732-B215-40DD-B641-4C7A6BDFB6A0.jpg
Found ! [12/11/2008 19:04] - D:\Users\Jimmy\iWizz\Thumbnails\9E36B911-A493-4EB8-B64D-7C36F3B26E23.jpg
Found ! [19/11/2008 13:15] - D:\Users\Jimmy\iWizz\Thumbnails\E1D050C4-C610-4CE8-B033-308B641B1F81.jpg
--------------- [ Registre / Startup ] ----------------
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\run]
Sidebar=C:\Program Files\Windows Sidebar\sidebar.exe /autoRun
MsnMsgr="C:\Program Files\Windows Live\Messenger\MsnMsgr.Exe" /background
acsig="c:\users\jimmy\appdata\local\acsig.exe" acsig
RayV=C:\Program Files\RayV\RayV\RayV.exe /background
AnyDVD=C:\Program Files\SlySoft\AnyDVD\AnyDVDtray.exe
eMuleAutoStart=C:\Program Files\eMule\emule.exe -AutoStart
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\run]
Windows Defender=%ProgramFiles%\Windows Defender\MSASCui.exe -hide
Acer Empowering Technology Monitor=C:\Program Files\Acer\Empowering Technology\SysMonitor.exe
EmpoweringTechnology=C:\Program Files\Acer\Empowering Technology\Framework.Launcher.exe boot
eDataSecurity Loader=C:\Program Files\Acer\Empowering Technology\eDataSecurity\x86\eDSloader.exe
RemoteControl="C:\Program Files\CyberLink\PowerDVD\PDVDServ.exe"
RtHDVCpl=RtHDVCpl.exe
WarReg_PopUp=C:\Program Files\Acer\WR_PopUp\WarReg_PopUp.exe
avast!=C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
Windows Mobile-based device management=%windir%\WindowsMobile\wmdc.exe
QuickTime Task="C:\Program Files\QuickTime\QTTask.exe" -atboottime
WPCUMI=C:\Windows\system32\WpcUmi.exe
EPSON Stylus DX4800 Series=C:\Windows\system32\spool\DRIVERS\W32X86\3\E_FATIADE.EXE /F "C:\Windows\TEMP\E_SDFAE.tmp" /EF "HKLM"
AppleSyncNotifier=C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleSyncNotifier.exe
iTunesHelper="D:\Program Files\iTunes\iTunesHelper.exe"
HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\run\OptionalComponents=
<NO NAME>=
HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\run\OptionalComponents\IMAIL=
Installed=1
<NO NAME>=
HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\run\OptionalComponents\MAPI=
NoChange=1
Installed=1
<NO NAME>=
HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\run\OptionalComponents\MSFS=
Installed=1
<NO NAME>=
[HKEY_CURRENT_USER\software\local appwizard-generated applications\AttachToEmail]
[HKEY_CURRENT_USER\software\local appwizard-generated applications\DocUnins]
[HKEY_CURRENT_USER\software\local appwizard-generated applications\Launch Tool]
[HKEY_CURRENT_USER\software\local appwizard-generated applications\msnmsgr]
[HKEY_CURRENT_USER\software\local appwizard-generated applications\NTI AudioEditor]
[HKEY_CURRENT_USER\software\local appwizard-generated applications\serial]
[HKEY_CURRENT_USER\software\local appwizard-generated applications\Split]
[HKEY_CURRENT_USER\software\local appwizard-generated applications\winupgro]
--------------- [ Registre / Clés infectieuses ] ----------------
Found ! - HKEY_USERS\S-1-5-21-414501896-1195741646-1103707232-1000\Software\Local AppWizard-Generated Applications\msnmsgr
Found ! - HKEY_USERS\S-1-5-21-414501896-1195741646-1103707232-1000\Software\Local AppWizard-Generated Applications\serial
Found ! - HKEY_USERS\S-1-5-21-414501896-1195741646-1103707232-1000\Software\Local AppWizard-Generated Applications\winupgro
Found ! - HKEY_USERS\S-1-5-21-414501896-1195741646-1103707232-1000\Software\bisoft
Found ! - HKEY_USERS\S-1-5-21-414501896-1195741646-1103707232-1000\Software\DateTime4
Found ! - HKEY_USERS\S-1-5-21-414501896-1195741646-1103707232-1000\Software\FirtR
Found ! - HKEY_USERS\S-1-5-21-414501896-1195741646-1103707232-1000\Software\MuleAppData
Found ! - HKEY_CURRENT_USER\Software\Local AppWizard-Generated Applications\msnmsgr
Found ! - HKEY_CURRENT_USER\Software\Local AppWizard-Generated Applications\serial
Found ! - HKEY_CURRENT_USER\Software\Local AppWizard-Generated Applications\winupgro
Found ! - HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\srosa
Found ! - HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Services\srosa
Found ! - HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Services\srosa
Found ! - HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_SROSA
Found ! - HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Enum\Root\LEGACY_SROSA
Found ! - HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Enum\Root\LEGACY_SROSA
Found ! - HKEY_CURRENT_USER\Software\bisoft
Found ! - HKEY_CURRENT_USER\Software\DateTime4
Found ! - HKEY_CURRENT_USER\Software\FirtR
Found ! - HKEY_CURRENT_USER\Software\MuleAppData
Found ! - HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\sK9Ou0s
Found ! - HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_SK9OU0S
Found ! - HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Enum\Root\LEGACY_SK9OU0S
Found ! - HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Enum\Root\LEGACY_SK9OU0S
Found ! - HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\sK9Ou0s
Found ! - HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Services\sK9Ou0s
Found ! - HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Services\sK9Ou0s
--------------- [ Etat / Services ] ----------------
+- Services : [ Auto=2 / Demande=3 / Désactivé=4 ]
/!\ Ndisuio - Type de démarrage = 4
EapHost - Type de démarrage = 3
Wlansvc - Type de démarrage = 3
/!\ SharedAccess - Type de démarrage = 4
/!\ wuauserv - Type de démarrage = 4
/!\ wscsvc - Type de démarrage = 4
/!\ WinDefend - Type de démarrage = 4
--------------- [ Recherche dans supports amovibles] ----------------
+- Informations :
C: - Lecteur fixe
D: - Lecteur fixe
J: - Lecteur amovible
K: - Lecteur amovible
L: - Lecteur amovible
Y: - Lecteur r‚seau ou distant
+- presence des fichiers :
--------------- [ Registre / Mountpoint2 ] ----------------
-> Not found !
------------------- ! Fin du rapport ! --------------------
* User : Jimmy - JIMMY_1
* Emplacement : D:\Program Files\FindyKill
* Outils Mis a jours le 21/12/08 par Chiquitine29
* Recherche effectuée à 2:12:04 le 25/12/2008
* Windows Vista - Internet Explorer 7.0.6001.18000
((((((((((((((((( *** Recherche *** ))))))))))))))))))
--------------- [ Processus actifs ] ----------------
C:\Windows\System32\smss.exe
C:\Windows\system32\csrss.exe
C:\Windows\system32\wininit.exe
C:\Windows\system32\csrss.exe
C:\Windows\system32\services.exe
C:\Windows\system32\winlogon.exe
C:\Windows\system32\lsass.exe
C:\Windows\system32\lsm.exe
C:\Windows\system32\svchost.exe
C:\Windows\system32\svchost.exe
C:\Windows\system32\Ati2evxx.exe
C:\Windows\System32\svchost.exe
C:\Windows\System32\svchost.exe
C:\Windows\system32\svchost.exe
C:\Windows\system32\SLsvc.exe
C:\Windows\system32\svchost.exe
C:\Windows\system32\svchost.exe
C:\Windows\system32\Ati2evxx.exe
C:\Windows\System32\spoolsv.exe
C:\Windows\system32\svchost.exe
C:\Windows\system32\WUDFHost.exe
C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
C:\Program Files\Bonjour\mDNSResponder.exe
C:\Windows\system32\svchost.exe
C:\Program Files\NewTech Infosystems\NTI Backup Now 5\Client\Agentsvc.exe
C:\Program Files\Acer\Empowering Technology\eDataSecurity\x86\eDSService.exe
C:\Program Files\Acer\Empowering Technology\Service\ETService.exe
C:\Program Files\Common Files\LightScribe\LSSrvc.exe
C:\Program Files\Microsoft SQL Server\MSSQL.1\MSSQL\Binn\sqlservr.exe
C:\Program Files\NewTech Infosystems\NTI Backup Now 5\BackupSvc.exe
C:\Program Files\NewTech Infosystems\NTI Backup Now 5\SchedulerSvc.exe
C:\Program Files\Cyberlink\Shared files\RichVideo.exe
C:\Windows\system32\svchost.exe
C:\Windows\System32\TUProgSt.exe
C:\Windows\System32\svchost.exe
C:\Windows\system32\SearchIndexer.exe
C:\Windows\system32\WUDFHost.exe
C:\Windows\system32\taskeng.exe
C:\Windows\system32\taskeng.exe
C:\Windows\system32\Dwm.exe
C:\Windows\Explorer.EXE
C:\Program Files\Acer\Empowering Technology\Framework.Launcher.exe
C:\Program Files\Acer\Empowering Technology\eDataSecurity\x86\eDSLoader.exe
C:\Program Files\Cyberlink\PowerDVD\PDVDServ.exe
C:\Windows\RtHDVCpl.exe
C:\Windows\WindowsMobile\wmdc.exe
C:\Windows\System32\wpcumi.exe
C:\Program Files\Windows Sidebar\sidebar.exe
C:\Users\Jimmy\AppData\Local\acsig.exe
C:\Program Files\RayV\RayV\RayV.exe
C:\Program Files\SlySoft\AnyDVD\AnyDVDtray.exe
C:\Users\Jimmy\AppData\Roaming\drivers\winupgro.exe
C:\Windows\system32\svchost.exe
C:\Windows\system32\wbem\wmiprvse.exe
C:\Program Files\Windows Sidebar\sidebar.exe
C:\Windows\system32\wbem\unsecapp.exe
D:\Program Files\iPod\bin\iPodService.exe
D:\Program Files\iTunes\iTunes.exe
C:\Windows\system32\DllHost.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Windows\system32\conime.exe
C:\Windows\system32\taskeng.exe
C:\Windows\system32\SearchProtocolHost.exe
C:\Windows\system32\SearchFilterHost.exe
C:\Program Files\Common Files\Apple\Mobile Device Support\bin\distnoted.exe
--------------- [ Processus infectieux stoppés ] ----------------
"C:\Users\Jimmy\AppData\Roaming\drivers\winupgro.exe" (3592)
--------------- [ Fichiers/Dossiers infectieux ] ----------------
»»»» Presence des fichiers dans C:
»»»» Presence des fichiers dans C:\Windows
»»»» Presence des fichiers dans C:\Windows\Prefetch
Found ! - C:\Windows\prefetch\508890.EXE-137BD6D8.pf
Found ! - C:\Windows\Prefetch\KEYGEN.EXE-31342A67.pf
Found ! - C:\Windows\Prefetch\KEYGEN.EXE-73DA0114.pf
Found ! - C:\Windows\Prefetch\SERIAL.EXE-83FD72D9.pf
Found ! - C:\Windows\Prefetch\KEYGEN.EXE-31342A67.pf
Found ! - C:\Windows\Prefetch\KEYGEN.EXE-73DA0114.pf
»»»» Presence des fichiers dans C:\Windows\system32
Found ! [25/12/2008 01:55] - C:\Windows\system32\mdelk.exe
Found ! [25/12/2008 01:55] - C:\Windows\system32\wintems.exe
Found ! [25/12/2008 02:11] - C:\Windows\system32\ban_list.txt
»»»» Presence des fichiers dans C:\Windows\system32\config\systemprofile\AppData\Roaming
»»»» Presence des fichiers dans C:\Windows\system32\drivers
»»»» Presence des fichiers dans C:\Users\Jimmy\AppData\Roaming
Found ! [25/12/2008 00:26] - "C:\Users\Jimmy\AppData\Roaming\m\flec006.exe"
Found ! [25/12/2008 00:26] - "C:\Users\Jimmy\AppData\Roaming\m\list.oct"
Found ! [25/12/2008 00:27] - "C:\Users\Jimmy\AppData\Roaming\m\data.oct"
Found ! [25/12/2008 00:27] - "C:\Users\Jimmy\AppData\Roaming\m\srvlist.oct"
Found ! [25/12/2008 01:56] - "C:\Users\Jimmy\AppData\Roaming\m\shared"
Found ! [25/12/2008 00:27] - "C:\Users\Jimmy\AppData\Roaming\m"
Found ! [25/12/2008 00:20] - "C:\Users\Jimmy\AppData\Roaming\drivers"
Found ! [25/12/2008 01:55] - "C:\Users\Jimmy\AppData\Roaming\drivers\srosa.sys"
Found ! [25/12/2008 01:55] - "C:\Users\Jimmy\AppData\Roaming\drivers\srosa2.sys"
Found ! [04/09/2004 03:06] - "C:\Users\Jimmy\AppData\Roaming\drivers\winupgro.exe"
Found ! [25/12/2008 02:07] - "C:\Users\Jimmy\AppData\Roaming\drivers\downld"
Found ! [25/12/2008 02:07] - C:\Users\Jimmy\AppData\Roaming\drivers\downld\106408.exe
Found ! [25/12/2008 02:07] - C:\Users\Jimmy\AppData\Roaming\drivers\downld\152834.exe
Found ! [25/12/2008 02:07] - C:\Users\Jimmy\AppData\Roaming\drivers\downld\154409.exe
Found ! [25/12/2008 02:07] - C:\Users\Jimmy\AppData\Roaming\drivers\downld\154971.exe
Found ! [25/12/2008 02:07] - C:\Users\Jimmy\AppData\Roaming\drivers\downld\243969.exe
Found ! [25/12/2008 02:07] - C:\Users\Jimmy\AppData\Roaming\drivers\downld\244391.exe
Found ! [25/12/2008 02:07] - C:\Users\Jimmy\AppData\Roaming\drivers\downld\244406.exe
Found ! [25/12/2008 02:07] - C:\Users\Jimmy\AppData\Roaming\drivers\downld\248618.exe
Found ! [25/12/2008 02:07] - C:\Users\Jimmy\AppData\Roaming\drivers\downld\277385.exe
Found ! [25/12/2008 02:07] - C:\Users\Jimmy\AppData\Roaming\drivers\downld\278009.exe
Found ! [25/12/2008 02:07] - C:\Users\Jimmy\AppData\Roaming\drivers\downld\278024.exe
Found ! [25/12/2008 02:07] - C:\Users\Jimmy\AppData\Roaming\drivers\downld\295044.exe
Found ! [25/12/2008 02:07] - C:\Users\Jimmy\AppData\Roaming\drivers\downld\295840.exe
Found ! [25/12/2008 02:07] - C:\Users\Jimmy\AppData\Roaming\drivers\downld\296433.exe
Found ! [25/12/2008 02:07] - C:\Users\Jimmy\AppData\Roaming\drivers\downld\296885.exe
Found ! [25/12/2008 02:07] - C:\Users\Jimmy\AppData\Roaming\drivers\downld\297025.exe
Found ! [25/12/2008 02:07] - C:\Users\Jimmy\AppData\Roaming\drivers\downld\297478.exe
Found ! [25/12/2008 02:07] - C:\Users\Jimmy\AppData\Roaming\drivers\downld\297681.exe
Found ! [25/12/2008 02:07] - C:\Users\Jimmy\AppData\Roaming\drivers\downld\298632.exe
Found ! [25/12/2008 02:07] - C:\Users\Jimmy\AppData\Roaming\drivers\downld\299116.exe
Found ! [25/12/2008 02:07] - C:\Users\Jimmy\AppData\Roaming\drivers\downld\321674.exe
Found ! [25/12/2008 02:07] - C:\Users\Jimmy\AppData\Roaming\drivers\downld\402700.exe
Found ! [25/12/2008 02:07] - C:\Users\Jimmy\AppData\Roaming\drivers\downld\414697.exe
Found ! [25/12/2008 02:07] - C:\Users\Jimmy\AppData\Roaming\drivers\downld\417599.exe
Found ! [25/12/2008 02:07] - C:\Users\Jimmy\AppData\Roaming\drivers\downld\435445.exe
Found ! [25/12/2008 02:07] - C:\Users\Jimmy\AppData\Roaming\drivers\downld\437005.exe
Found ! [25/12/2008 02:07] - C:\Users\Jimmy\AppData\Roaming\drivers\downld\437582.exe
Found ! [25/12/2008 02:07] - C:\Users\Jimmy\AppData\Roaming\drivers\downld\438612.exe
Found ! [25/12/2008 02:07] - C:\Users\Jimmy\AppData\Roaming\drivers\downld\439579.exe
Found ! [25/12/2008 02:07] - C:\Users\Jimmy\AppData\Roaming\drivers\downld\440125.exe
Found ! [25/12/2008 02:07] - C:\Users\Jimmy\AppData\Roaming\drivers\downld\466037.exe
Found ! [25/12/2008 02:07] - C:\Users\Jimmy\AppData\Roaming\drivers\downld\466926.exe
Found ! [25/12/2008 02:07] - C:\Users\Jimmy\AppData\Roaming\drivers\downld\467441.exe
Found ! [25/12/2008 02:07] - C:\Users\Jimmy\AppData\Roaming\drivers\downld\476973.exe
Found ! [25/12/2008 02:07] - C:\Users\Jimmy\AppData\Roaming\drivers\downld\479640.exe
Found ! [25/12/2008 02:07] - C:\Users\Jimmy\AppData\Roaming\drivers\downld\480389.exe
Found ! [25/12/2008 02:07] - C:\Users\Jimmy\AppData\Roaming\drivers\downld\539217.exe
Found ! [25/12/2008 02:07] - C:\Users\Jimmy\AppData\Roaming\drivers\downld\540527.exe
Found ! [25/12/2008 02:07] - C:\Users\Jimmy\AppData\Roaming\drivers\downld\540964.exe
Found ! [25/12/2008 02:07] - C:\Users\Jimmy\AppData\Roaming\drivers\downld\741051.exe
Found ! [25/12/2008 02:07] - C:\Users\Jimmy\AppData\Roaming\drivers\downld\741956.exe
Found ! [25/12/2008 02:07] - C:\Users\Jimmy\AppData\Roaming\drivers\downld\742315.exe
Found ! [25/12/2008 02:07] - C:\Users\Jimmy\AppData\Roaming\drivers\downld\755216.exe
Found ! [25/12/2008 02:07] - C:\Users\Jimmy\AppData\Roaming\drivers\downld\757509.exe
Found ! [25/12/2008 02:07] - C:\Users\Jimmy\AppData\Roaming\drivers\downld\757946.exe
Found ! [25/12/2008 02:07] - C:\Users\Jimmy\AppData\Roaming\drivers\downld\792547.exe
Found ! [25/12/2008 02:07] - C:\Users\Jimmy\AppData\Roaming\drivers\downld\793311.exe
Found ! [25/12/2008 02:07] - C:\Users\Jimmy\AppData\Roaming\drivers\downld\793467.exe
Found ! [25/12/2008 02:07] - C:\Users\Jimmy\AppData\Roaming\drivers\downld\94630.exe
Found ! [25/12/2008 02:07] - C:\Users\Jimmy\AppData\Roaming\drivers\downld\97500.exe
Found ! [25/12/2008 02:07] - C:\Users\Jimmy\AppData\Roaming\drivers\downld\97516.exe
»»»» Presence des fichiers dans C:\Users\Jimmy\AppData\Local\Temp
Found ! - C:\Users\Jimmy\AppData\Local\Temp\Rar$DI03.710\crack.nfo
Found ! - C:\Users\Jimmy\AppData\Local\Temp\Rar$DI04.321\[KEYGEN] - Microsoft Office 2007(1).txt
Found ! - C:\Users\Jimmy\AppData\Local\Temp\Rar$DI05.850\Readme keygen.txt
Found ! - C:\Users\Jimmy\AppData\Local\Temp\Rar$EX00.918\crack.nfo
»»»» Presence des fichiers dans C:\Users\Jimmy\Local Settings\Temporary Internet Files\Content.IE5
Found ! [04/11/2008 10:13] - D:\Users\Jimmy\Documents\iWizz\Thumbnails\09FBBB78-B640-4E6A-BAC8-EC6C7ACFD286.jpg
Found ! [08/11/2008 12:44] - D:\Users\Jimmy\Documents\iWizz\Thumbnails\0FB64222-6AAE-4547-B262-B3DDC8376ED0.jpg
Found ! [04/11/2008 10:10] - D:\Users\Jimmy\Documents\iWizz\Thumbnails\28FDE204-FB64-4965-9903-4445C6EEAF2D.jpg
Found ! [04/11/2008 10:13] - D:\Users\Jimmy\Documents\iWizz\Thumbnails\52F77901-9462-4797-BB5E-0B648F8E9593.jpg
Found ! [08/11/2008 12:43] - D:\Users\Jimmy\Documents\iWizz\Thumbnails\5FC9BA70-5189-4A71-9B64-8F876947844D.jpg
Found ! [04/11/2008 10:12] - D:\Users\Jimmy\Documents\iWizz\Thumbnails\63B64114-7395-4337-9F62-42B17A1280FE.jpg
Found ! [05/11/2008 12:11] - D:\Users\Jimmy\Documents\iWizz\Thumbnails\80DA81AF-3CDE-4732-AC0D-BC9B6409692C.jpg
Found ! [04/11/2008 10:13] - D:\Users\Jimmy\Documents\iWizz\Thumbnails\8680CA5F-AEF4-4096-B64C-1FA9FA38B20B.jpg
Found ! [04/11/2008 10:12] - D:\Users\Jimmy\Documents\iWizz\Thumbnails\9E36B911-A493-4EB8-B64D-7C36F3B26E23.jpg
Found ! [04/11/2008 10:12] - D:\Users\Jimmy\Documents\iWizz\Thumbnails\A06AE301-CE2C-423E-954B-24996A9B647E.jpg
Found ! [12/11/2008 19:03] - D:\Users\Jimmy\iWizz\Thumbnails\09FBBB78-B640-4E6A-BAC8-EC6C7ACFD286.jpg
Found ! [12/11/2008 19:04] - D:\Users\Jimmy\iWizz\Thumbnails\0FB64222-6AAE-4547-B262-B3DDC8376ED0.jpg
Found ! [19/11/2008 13:15] - D:\Users\Jimmy\iWizz\Thumbnails\28D82A01-B1DE-4B64-A179-E2CD3170C8A5.jpg
Found ! [12/11/2008 19:01] - D:\Users\Jimmy\iWizz\Thumbnails\28FDE204-FB64-4965-9903-4445C6EEAF2D.jpg
Found ! [28/11/2008 21:00] - D:\Users\Jimmy\iWizz\Thumbnails\5B1B640C-CF2F-41CD-AD6C-3941AAC5B850.jpg
Found ! [12/11/2008 19:04] - D:\Users\Jimmy\iWizz\Thumbnails\5FC9BA70-5189-4A71-9B64-8F876947844D.jpg
Found ! [12/11/2008 19:03] - D:\Users\Jimmy\iWizz\Thumbnails\63B64114-7395-4337-9F62-42B17A1280FE.jpg
Found ! [19/11/2008 13:15] - D:\Users\Jimmy\iWizz\Thumbnails\83F42472-7B64-4E43-BD35-C4D6C8AE4D6D.jpg
Found ! [12/11/2008 19:03] - D:\Users\Jimmy\iWizz\Thumbnails\8680CA5F-AEF4-4096-B64C-1FA9FA38B20B.jpg
Found ! [19/11/2008 13:15] - D:\Users\Jimmy\iWizz\Thumbnails\93968732-B215-40DD-B641-4C7A6BDFB6A0.jpg
Found ! [12/11/2008 19:04] - D:\Users\Jimmy\iWizz\Thumbnails\9E36B911-A493-4EB8-B64D-7C36F3B26E23.jpg
Found ! [19/11/2008 13:15] - D:\Users\Jimmy\iWizz\Thumbnails\E1D050C4-C610-4CE8-B033-308B641B1F81.jpg
--------------- [ Registre / Startup ] ----------------
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\run]
Sidebar=C:\Program Files\Windows Sidebar\sidebar.exe /autoRun
MsnMsgr="C:\Program Files\Windows Live\Messenger\MsnMsgr.Exe" /background
acsig="c:\users\jimmy\appdata\local\acsig.exe" acsig
RayV=C:\Program Files\RayV\RayV\RayV.exe /background
AnyDVD=C:\Program Files\SlySoft\AnyDVD\AnyDVDtray.exe
eMuleAutoStart=C:\Program Files\eMule\emule.exe -AutoStart
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\run]
Windows Defender=%ProgramFiles%\Windows Defender\MSASCui.exe -hide
Acer Empowering Technology Monitor=C:\Program Files\Acer\Empowering Technology\SysMonitor.exe
EmpoweringTechnology=C:\Program Files\Acer\Empowering Technology\Framework.Launcher.exe boot
eDataSecurity Loader=C:\Program Files\Acer\Empowering Technology\eDataSecurity\x86\eDSloader.exe
RemoteControl="C:\Program Files\CyberLink\PowerDVD\PDVDServ.exe"
RtHDVCpl=RtHDVCpl.exe
WarReg_PopUp=C:\Program Files\Acer\WR_PopUp\WarReg_PopUp.exe
avast!=C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
Windows Mobile-based device management=%windir%\WindowsMobile\wmdc.exe
QuickTime Task="C:\Program Files\QuickTime\QTTask.exe" -atboottime
WPCUMI=C:\Windows\system32\WpcUmi.exe
EPSON Stylus DX4800 Series=C:\Windows\system32\spool\DRIVERS\W32X86\3\E_FATIADE.EXE /F "C:\Windows\TEMP\E_SDFAE.tmp" /EF "HKLM"
AppleSyncNotifier=C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleSyncNotifier.exe
iTunesHelper="D:\Program Files\iTunes\iTunesHelper.exe"
HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\run\OptionalComponents=
<NO NAME>=
HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\run\OptionalComponents\IMAIL=
Installed=1
<NO NAME>=
HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\run\OptionalComponents\MAPI=
NoChange=1
Installed=1
<NO NAME>=
HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\run\OptionalComponents\MSFS=
Installed=1
<NO NAME>=
[HKEY_CURRENT_USER\software\local appwizard-generated applications\AttachToEmail]
[HKEY_CURRENT_USER\software\local appwizard-generated applications\DocUnins]
[HKEY_CURRENT_USER\software\local appwizard-generated applications\Launch Tool]
[HKEY_CURRENT_USER\software\local appwizard-generated applications\msnmsgr]
[HKEY_CURRENT_USER\software\local appwizard-generated applications\NTI AudioEditor]
[HKEY_CURRENT_USER\software\local appwizard-generated applications\serial]
[HKEY_CURRENT_USER\software\local appwizard-generated applications\Split]
[HKEY_CURRENT_USER\software\local appwizard-generated applications\winupgro]
--------------- [ Registre / Clés infectieuses ] ----------------
Found ! - HKEY_USERS\S-1-5-21-414501896-1195741646-1103707232-1000\Software\Local AppWizard-Generated Applications\msnmsgr
Found ! - HKEY_USERS\S-1-5-21-414501896-1195741646-1103707232-1000\Software\Local AppWizard-Generated Applications\serial
Found ! - HKEY_USERS\S-1-5-21-414501896-1195741646-1103707232-1000\Software\Local AppWizard-Generated Applications\winupgro
Found ! - HKEY_USERS\S-1-5-21-414501896-1195741646-1103707232-1000\Software\bisoft
Found ! - HKEY_USERS\S-1-5-21-414501896-1195741646-1103707232-1000\Software\DateTime4
Found ! - HKEY_USERS\S-1-5-21-414501896-1195741646-1103707232-1000\Software\FirtR
Found ! - HKEY_USERS\S-1-5-21-414501896-1195741646-1103707232-1000\Software\MuleAppData
Found ! - HKEY_CURRENT_USER\Software\Local AppWizard-Generated Applications\msnmsgr
Found ! - HKEY_CURRENT_USER\Software\Local AppWizard-Generated Applications\serial
Found ! - HKEY_CURRENT_USER\Software\Local AppWizard-Generated Applications\winupgro
Found ! - HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\srosa
Found ! - HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Services\srosa
Found ! - HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Services\srosa
Found ! - HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_SROSA
Found ! - HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Enum\Root\LEGACY_SROSA
Found ! - HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Enum\Root\LEGACY_SROSA
Found ! - HKEY_CURRENT_USER\Software\bisoft
Found ! - HKEY_CURRENT_USER\Software\DateTime4
Found ! - HKEY_CURRENT_USER\Software\FirtR
Found ! - HKEY_CURRENT_USER\Software\MuleAppData
Found ! - HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\sK9Ou0s
Found ! - HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_SK9OU0S
Found ! - HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Enum\Root\LEGACY_SK9OU0S
Found ! - HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Enum\Root\LEGACY_SK9OU0S
Found ! - HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\sK9Ou0s
Found ! - HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Services\sK9Ou0s
Found ! - HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Services\sK9Ou0s
--------------- [ Etat / Services ] ----------------
+- Services : [ Auto=2 / Demande=3 / Désactivé=4 ]
/!\ Ndisuio - Type de démarrage = 4
EapHost - Type de démarrage = 3
Wlansvc - Type de démarrage = 3
/!\ SharedAccess - Type de démarrage = 4
/!\ wuauserv - Type de démarrage = 4
/!\ wscsvc - Type de démarrage = 4
/!\ WinDefend - Type de démarrage = 4
--------------- [ Recherche dans supports amovibles] ----------------
+- Informations :
C: - Lecteur fixe
D: - Lecteur fixe
J: - Lecteur amovible
K: - Lecteur amovible
L: - Lecteur amovible
Y: - Lecteur r‚seau ou distant
+- presence des fichiers :
--------------- [ Registre / Mountpoint2 ] ----------------
-> Not found !
------------------- ! Fin du rapport ! --------------------
spoophy
Messages postés
354
Date d'inscription
mercredi 17 décembre 2008
Statut
Membre
Dernière intervention
19 août 2009
41
25 déc. 2008 à 02:17
25 déc. 2008 à 02:17
il n'ya pas de problème sans solution a faute de bosser je fais le vieux sage désolé
