Que fair avec Mcaffe? ( rootkits)
sparcate
Messages postés
87
Statut
Membre
-
Utilisateur anonyme -
Utilisateur anonyme -
Bonjour, suite à un root-kits chopé par un crack, j'ai download Mcaffe Rootkit Detective1.1 Je me met alors à faire un scan ( en mode sans échèc ), Et je ne sais pas quoi cocher entre: "view hidden processes and files", " View hidden registry keys/values ", "View hooked services", "View hooked imports/exports" et "View all processes". Et je ne sais pas quoi faire des informations qui y sont présente ( il y a du Win32 ), je n'ose pas trop i toucher :s. Merci de vos infos :)
A voir également:
- Que fair avec Mcaffe? ( rootkits)
- Mcaffe virus - Accueil - Piratage
- Fair use wizard - Télécharger - Conversion & Codecs
- Rootkits download - Télécharger - Antivirus & Antimalwares
- Fair phone 6 - Guide
- Media fair pc - Télécharger - Téléchargement & Transfert
145 réponses
Le rapport c'est affiché à l'écran et comme je devais redémarrer la "bête" en mode sans échec, il a disparue et n'est pas dans C:/Findykill.txt :s
Il ne trouve rien :s J'ai alors fait une 2èm fois la manip' et voilà le rapport:
############################## | FindyKill V5.002 |
# User : utilisateur (Administrateurs) # UTILISAT-808325
# Update on 12/06/09 by Chiquitine29
# Start at: 16:13:39 | 18/06/2009
# Website : http://pagesperso-orange.fr/NosTools/findykill.html
# AMD Athlon(tm) 64 X2 Dual Core Processor 5000+
# Microsoft Windows XP Édition familiale (5.1.2600 32-bit) # Service Pack 3
# Internet Explorer 7.0.5730.13
# Windows Firewall Status : Disabled
# AV : Kaspersky Internet Security 8.0.0.357 [ (!) Disabled | Updated ]
# FW : Kaspersky Internet Security[ Enabled ]8.0.0.357
# C:\ # Disque fixe local # 232,88 Go (133,91 Go free) # NTFS
# D:\ # Disque CD-ROM
# E:\ # Disque CD-ROM
############################## | Processus actifs |
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\csrss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
C:\Documents and Settings\avp.exe
C:\Program Files\Bonjour\mDNSResponder.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Fichiers communs\Nero\Nero BackItUp 4\NBService.exe
C:\WINDOWS\system32\nvsvc32.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Canon\CAL\CALMAIN.exe
C:\WINDOWS\System32\alg.exe
C:\WINDOWS\system32\wbem\wmiprvse.exe
C:\WINDOWS\system32\wscntfy.exe
################## | C: |
################## | C:\WINDOWS |
################## | C:\WINDOWS\system32 |
################## | C:\WINDOWS\system32\drivers |
################## | C:\Documents and Settings\utilisateur\Application Data |
################## | C:\Documents and Settings\abhelper.dll\Application Data |
################## | C:\Documents and Settings\adialhk.dll\Application Data |
################## | C:\Documents and Settings\adialtsk.ppl\Application Data |
################## | C:\Documents and Settings\advdis.ppl\Application Data |
################## | C:\Documents and Settings\ahids.ppl\Application Data |
################## | C:\Documents and Settings\Alwil Software\Application Data |
################## | C:\Documents and Settings\antispam.ppl\Application Data |
################## | C:\Documents and Settings\aphish.ppl\Application Data |
################## | C:\Documents and Settings\aphisht.ppl\Application Data |
################## | C:\Documents and Settings\Arj.ppl\Application Data |
################## | C:\Documents and Settings\ArjPack.ppl\Application Data |
################## | C:\Documents and Settings\asppp.dll\Application Data |
################## | C:\Documents and Settings\avlib.ppl\Application Data |
################## | C:\Documents and Settings\avp.com\Application Data |
################## | C:\Documents and Settings\avp.exe\Application Data |
################## | C:\Documents and Settings\avpgs.ppl\Application Data |
################## | C:\Documents and Settings\avpgui.ppl\Application Data |
################## | C:\Documents and Settings\avs.ppl\Application Data |
################## | C:\Documents and Settings\avspm.ppl\Application Data |
################## | C:\Documents and Settings\avzkrnl.dll\Application Data |
################## | C:\Documents and Settings\avzproxy.ppl\Application Data |
################## | C:\Documents and Settings\avzscan.ppl\Application Data |
################## | C:\Documents and Settings\base64.ppl\Application Data |
################## | C:\Documents and Settings\base64p.ppl\Application Data |
################## | C:\Documents and Settings\basegui.ppl\Application Data |
################## | C:\Documents and Settings\bl.ppl\Application Data |
################## | C:\Documents and Settings\btdisk.ppl\Application Data |
################## | C:\Documents and Settings\btimages.ppl\Application Data |
################## | C:\Documents and Settings\buffer.ppl\Application Data |
################## | C:\Documents and Settings\CAB.ppl\Application Data |
################## | C:\Documents and Settings\cfdata3.dll\Application Data |
################## | C:\Documents and Settings\cfilter3.dll\Application Data |
################## | C:\Documents and Settings\ckahcomm.dll\Application Data |
################## | C:\Documents and Settings\ckahrule.dll\Application Data |
################## | C:\Documents and Settings\ckahstat.dll\Application Data |
################## | C:\Documents and Settings\ckahum.dll\Application Data |
################## | C:\Documents and Settings\clldr.dll\Application Data |
################## | C:\Documents and Settings\ComStmIO.ppl\Application Data |
################## | C:\Documents and Settings\crpthlpr.ppl\Application Data |
################## | C:\Documents and Settings\dbghelp.dll\Application Data |
################## | C:\Documents and Settings\deflate.ppl\Application Data |
################## | C:\Documents and Settings\diffs.dll\Application Data |
################## | C:\Documents and Settings\DMAP.ppl\Application Data |
################## | C:\Documents and Settings\Doc\Application Data |
################## | C:\Documents and Settings\dtreg.ppl\Application Data |
################## | C:\Documents and Settings\Explode.ppl\Application Data |
################## | C:\Documents and Settings\extprtc.ppl\Application Data |
################## | C:\Documents and Settings\filemap.ppl\Application Data |
################## | C:\Documents and Settings\FsDrvPlg.ppl\Application Data |
################## | C:\Documents and Settings\fssync.dll\Application Data |
################## | C:\Documents and Settings\GetSI.dll\Application Data |
################## | C:\Documents and Settings\HASHMD5.PPL\Application Data |
################## | C:\Documents and Settings\hips.ppl\Application Data |
################## | C:\Documents and Settings\httpanlz.ppl\Application Data |
################## | C:\Documents and Settings\httpscan.ppl\Application Data |
################## | C:\Documents and Settings\ichk2.ppl\Application Data |
################## | C:\Documents and Settings\iChkSA.ppl\Application Data |
################## | C:\Documents and Settings\ICQprtc.dll\Application Data |
################## | C:\Documents and Settings\ievkbd.dll\Application Data |
################## | C:\Documents and Settings\ie_banner_deny.htm\Application Data |
################## | C:\Documents and Settings\IKLAntiSpam.xpt\Application Data |
################## | C:\Documents and Settings\IMAPprtc.ppl\Application Data |
################## | C:\Documents and Settings\Inflate.ppl\Application Data |
################## | C:\Documents and Settings\inifile.ppl\Application Data |
################## | C:\Documents and Settings\iwgen.ppl\Application Data |
################## | C:\Documents and Settings\kav.bav\Application Data |
################## | C:\Documents and Settings\kav.tbp\Application Data |
################## | C:\Documents and Settings\kl.url\Application Data |
################## | C:\Documents and Settings\KLIFX86\Application Data |
################## | C:\Documents and Settings\KLIMX86\Application Data |
################## | C:\Documents and Settings\kloehk.dll\Application Data |
################## | C:\Documents and Settings\klscav.dll\Application Data |
################## | C:\Documents and Settings\klthbplg.dll\Application Data |
################## | C:\Documents and Settings\lha.ppl\Application Data |
################## | C:\Documents and Settings\libola.dll\Application Data |
################## | C:\Documents and Settings\lic.ppl\Application Data |
################## | C:\Documents and Settings\Load46St.dll\Application Data |
################## | C:\Documents and Settings\maildisp.ppl\Application Data |
################## | C:\Documents and Settings\MailMsg.ppl\Application Data |
################## | C:\Documents and Settings\MAPIEDK.dll\Application Data |
################## | C:\Documents and Settings\mc.ppl\Application Data |
################## | C:\Documents and Settings\mcou.dll\Application Data |
################## | C:\Documents and Settings\mcouas.dll\Application Data |
################## | C:\Documents and Settings\mdb.ppl\Application Data |
################## | C:\Documents and Settings\MDMAP.ppl\Application Data |
################## | C:\Documents and Settings\MemModSc.ppl\Application Data |
################## | C:\Documents and Settings\MemScan.ppl\Application Data |
################## | C:\Documents and Settings\mfc42.dll\Application Data |
################## | C:\Documents and Settings\Microsoft.VC80.CRT.manifest\Application Data |
################## | C:\Documents and Settings\minizip.ppl\Application Data |
################## | C:\Documents and Settings\mkavio.ppl\Application Data |
################## | C:\Documents and Settings\msdll.txt\Application Data |
################## | C:\Documents and Settings\MSNprtc.dll\Application Data |
################## | C:\Documents and Settings\msoe.ppl\Application Data |
################## | C:\Documents and Settings\msvcm80.dll\Application Data |
################## | C:\Documents and Settings\msvcp80.dll\Application Data |
################## | C:\Documents and Settings\msvcr80.dll\Application Data |
################## | C:\Documents and Settings\mzvkbd.dll\Application Data |
################## | C:\Documents and Settings\ndetect.ppl\Application Data |
################## | C:\Documents and Settings\netdtls.ppl\Application Data |
################## | C:\Documents and Settings\netwatch.ppl\Application Data |
################## | C:\Documents and Settings\nfio.ppl\Application Data |
################## | C:\Documents and Settings\NNTPprtc.ppl\Application Data |
################## | C:\Documents and Settings\NTFSstrm.ppl\Application Data |
################## | C:\Documents and Settings\oas.ppl\Application Data |
################## | C:\Documents and Settings\ods.ppl\Application Data |
################## | C:\Documents and Settings\oeas.dll\Application Data |
################## | C:\Documents and Settings\opera_banner_deny.vbs\Application Data |
################## | C:\Documents and Settings\params.ppl\Application Data |
################## | C:\Documents and Settings\passdmap.ppl\Application Data |
################## | C:\Documents and Settings\pdm2rt.ppl\Application Data |
################## | C:\Documents and Settings\POP3prtc.ppl\Application Data |
################## | C:\Documents and Settings\PrKernel.ppl\Application Data |
################## | C:\Documents and Settings\prloader.dll\Application Data |
################## | C:\Documents and Settings\procmon.ppl\Application Data |
################## | C:\Documents and Settings\propmap.ppl\Application Data |
################## | C:\Documents and Settings\ProxyDet.ppl\Application Data |
################## | C:\Documents and Settings\prremote.dll\Application Data |
################## | C:\Documents and Settings\prseqio.ppl\Application Data |
################## | C:\Documents and Settings\PrTransp.ppl\Application Data |
################## | C:\Documents and Settings\prupdate.ppl\Application Data |
################## | C:\Documents and Settings\PrUtil.ppl\Application Data |
################## | C:\Documents and Settings\pxstub.ppl\Application Data |
################## | C:\Documents and Settings\qb.ppl\Application Data |
################## | C:\Documents and Settings\rar.ppl\Application Data |
################## | C:\Documents and Settings\regmap.ppl\Application Data |
################## | C:\Documents and Settings\report.ppl\Application Data |
################## | C:\Documents and Settings\reportdb.ppl\Application Data |
################## | C:\Documents and Settings\rescue32.exe\Application Data |
################## | C:\Documents and Settings\rescuecd.zip\Application Data |
################## | C:\Documents and Settings\resip.ppl\Application Data |
################## | C:\Documents and Settings\sc.ppl\Application Data |
################## | C:\Documents and Settings\schedule.ppl\Application Data |
################## | C:\Documents and Settings\SCIEPlgn.dll\Application Data |
################## | C:\Documents and Settings\scrchpg.dll\Application Data |
################## | C:\Documents and Settings\SFDB.PPL\Application Data |
################## | C:\Documents and Settings\shellex.dll\Application Data |
################## | C:\Documents and Settings\Skin\Application Data |
################## | C:\Documents and Settings\SMTPprtc.ppl\Application Data |
################## | C:\Documents and Settings\spamtst.ppl\Application Data |
################## | C:\Documents and Settings\stat.ppl\Application Data |
################## | C:\Documents and Settings\StdComp.ppl\Application Data |
################## | C:\Documents and Settings\StEnum2.ppl\Application Data |
################## | C:\Documents and Settings\stored.ppl\Application Data |
################## | C:\Documents and Settings\SuperIO.ppl\Application Data |
################## | C:\Documents and Settings\syswatch.ppl\Application Data |
################## | C:\Documents and Settings\tempfile.ppl\Application Data |
################## | C:\Documents and Settings\THBExt\Application Data |
################## | C:\Documents and Settings\thpimpl.ppl\Application Data |
################## | C:\Documents and Settings\timer.ppl\Application Data |
################## | C:\Documents and Settings\tm.ppl\Application Data |
################## | C:\Documents and Settings\TrafMon2.ppl\Application Data |
################## | C:\Documents and Settings\TrainSup.ppl\Application Data |
################## | C:\Documents and Settings\UnArj.ppl\Application Data |
################## | C:\Documents and Settings\UniArc.ppl\Application Data |
################## | C:\Documents and Settings\UnLZX.ppl\Application Data |
################## | C:\Documents and Settings\Unreduce.ppl\Application Data |
################## | C:\Documents and Settings\UNSHRINK.ppl\Application Data |
################## | C:\Documents and Settings\UnStored.ppl\Application Data |
################## | C:\Documents and Settings\updater.dll\Application Data |
################## | C:\Documents and Settings\urlflt.ppl\Application Data |
################## | C:\Documents and Settings\ushata.dll\Application Data |
################## | C:\Documents and Settings\vkbd.dll\Application Data |
################## | C:\Documents and Settings\vmarea.ppl\Application Data |
################## | C:\Documents and Settings\WDiskIO.ppl\Application Data |
################## | C:\Documents and Settings\WinReg.ppl\Application Data |
################## | C:\Documents and Settings\wmihlpr.ppl\Application Data |
################## | C:\Documents and Settings\xorio.ppl\Application Data |
################## | Autres ... |
################## | Temporary Internet Files |
################## | Registre / Clés infectieuses |
################## | Etat / Services / Informations |
# Mode sans echec : OK
# Affichage des fichiers cachés : OK
# Ndisuio -> Start = 3 ( Good = 3 | Bad = 4 )
# EapHost -> Start = 2 ( Good = 2 | Bad = 4 )
# Ip6Fw -> Start = 2 ( Good = 2 | Bad = 4 )
# SharedAccess -> Start = 2 ( Good = 2 | Bad = 4 )
# wuauserv -> Start = 2 ( Good = 2 | Bad = 4 )
# wscsvc -> Start = 2 ( Good = 2 | Bad = 4 )
################## | PEH ... |
Corrompu : C:\Program Files\Mozilla Firefox\uninstall\helper.exe
[Offset = 000000DC - Valeur = 0x0001]
################## | Cracks / Keygens / Serials |
"C:\Documents and Settings\All Users\Application Data\Kaspersky Lab\AVP8\Data\Updater\Temporary Files\temporaryFolder\AutoPatches\kav8exec\8.0.0.357\"avp.exe""
11/06/2009 22:16 |Size 201992 |Crc32 adde7ef8 |Md5 47fe9cea9bb87ea5e0803e2846f7bf36
################## | ! Fin du rapport # FindyKill V5.002 ! |
############################## | FindyKill V5.002 |
# User : utilisateur (Administrateurs) # UTILISAT-808325
# Update on 12/06/09 by Chiquitine29
# Start at: 16:13:39 | 18/06/2009
# Website : http://pagesperso-orange.fr/NosTools/findykill.html
# AMD Athlon(tm) 64 X2 Dual Core Processor 5000+
# Microsoft Windows XP Édition familiale (5.1.2600 32-bit) # Service Pack 3
# Internet Explorer 7.0.5730.13
# Windows Firewall Status : Disabled
# AV : Kaspersky Internet Security 8.0.0.357 [ (!) Disabled | Updated ]
# FW : Kaspersky Internet Security[ Enabled ]8.0.0.357
# C:\ # Disque fixe local # 232,88 Go (133,91 Go free) # NTFS
# D:\ # Disque CD-ROM
# E:\ # Disque CD-ROM
############################## | Processus actifs |
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\csrss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
C:\Documents and Settings\avp.exe
C:\Program Files\Bonjour\mDNSResponder.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Fichiers communs\Nero\Nero BackItUp 4\NBService.exe
C:\WINDOWS\system32\nvsvc32.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Canon\CAL\CALMAIN.exe
C:\WINDOWS\System32\alg.exe
C:\WINDOWS\system32\wbem\wmiprvse.exe
C:\WINDOWS\system32\wscntfy.exe
################## | C: |
################## | C:\WINDOWS |
################## | C:\WINDOWS\system32 |
################## | C:\WINDOWS\system32\drivers |
################## | C:\Documents and Settings\utilisateur\Application Data |
################## | C:\Documents and Settings\abhelper.dll\Application Data |
################## | C:\Documents and Settings\adialhk.dll\Application Data |
################## | C:\Documents and Settings\adialtsk.ppl\Application Data |
################## | C:\Documents and Settings\advdis.ppl\Application Data |
################## | C:\Documents and Settings\ahids.ppl\Application Data |
################## | C:\Documents and Settings\Alwil Software\Application Data |
################## | C:\Documents and Settings\antispam.ppl\Application Data |
################## | C:\Documents and Settings\aphish.ppl\Application Data |
################## | C:\Documents and Settings\aphisht.ppl\Application Data |
################## | C:\Documents and Settings\Arj.ppl\Application Data |
################## | C:\Documents and Settings\ArjPack.ppl\Application Data |
################## | C:\Documents and Settings\asppp.dll\Application Data |
################## | C:\Documents and Settings\avlib.ppl\Application Data |
################## | C:\Documents and Settings\avp.com\Application Data |
################## | C:\Documents and Settings\avp.exe\Application Data |
################## | C:\Documents and Settings\avpgs.ppl\Application Data |
################## | C:\Documents and Settings\avpgui.ppl\Application Data |
################## | C:\Documents and Settings\avs.ppl\Application Data |
################## | C:\Documents and Settings\avspm.ppl\Application Data |
################## | C:\Documents and Settings\avzkrnl.dll\Application Data |
################## | C:\Documents and Settings\avzproxy.ppl\Application Data |
################## | C:\Documents and Settings\avzscan.ppl\Application Data |
################## | C:\Documents and Settings\base64.ppl\Application Data |
################## | C:\Documents and Settings\base64p.ppl\Application Data |
################## | C:\Documents and Settings\basegui.ppl\Application Data |
################## | C:\Documents and Settings\bl.ppl\Application Data |
################## | C:\Documents and Settings\btdisk.ppl\Application Data |
################## | C:\Documents and Settings\btimages.ppl\Application Data |
################## | C:\Documents and Settings\buffer.ppl\Application Data |
################## | C:\Documents and Settings\CAB.ppl\Application Data |
################## | C:\Documents and Settings\cfdata3.dll\Application Data |
################## | C:\Documents and Settings\cfilter3.dll\Application Data |
################## | C:\Documents and Settings\ckahcomm.dll\Application Data |
################## | C:\Documents and Settings\ckahrule.dll\Application Data |
################## | C:\Documents and Settings\ckahstat.dll\Application Data |
################## | C:\Documents and Settings\ckahum.dll\Application Data |
################## | C:\Documents and Settings\clldr.dll\Application Data |
################## | C:\Documents and Settings\ComStmIO.ppl\Application Data |
################## | C:\Documents and Settings\crpthlpr.ppl\Application Data |
################## | C:\Documents and Settings\dbghelp.dll\Application Data |
################## | C:\Documents and Settings\deflate.ppl\Application Data |
################## | C:\Documents and Settings\diffs.dll\Application Data |
################## | C:\Documents and Settings\DMAP.ppl\Application Data |
################## | C:\Documents and Settings\Doc\Application Data |
################## | C:\Documents and Settings\dtreg.ppl\Application Data |
################## | C:\Documents and Settings\Explode.ppl\Application Data |
################## | C:\Documents and Settings\extprtc.ppl\Application Data |
################## | C:\Documents and Settings\filemap.ppl\Application Data |
################## | C:\Documents and Settings\FsDrvPlg.ppl\Application Data |
################## | C:\Documents and Settings\fssync.dll\Application Data |
################## | C:\Documents and Settings\GetSI.dll\Application Data |
################## | C:\Documents and Settings\HASHMD5.PPL\Application Data |
################## | C:\Documents and Settings\hips.ppl\Application Data |
################## | C:\Documents and Settings\httpanlz.ppl\Application Data |
################## | C:\Documents and Settings\httpscan.ppl\Application Data |
################## | C:\Documents and Settings\ichk2.ppl\Application Data |
################## | C:\Documents and Settings\iChkSA.ppl\Application Data |
################## | C:\Documents and Settings\ICQprtc.dll\Application Data |
################## | C:\Documents and Settings\ievkbd.dll\Application Data |
################## | C:\Documents and Settings\ie_banner_deny.htm\Application Data |
################## | C:\Documents and Settings\IKLAntiSpam.xpt\Application Data |
################## | C:\Documents and Settings\IMAPprtc.ppl\Application Data |
################## | C:\Documents and Settings\Inflate.ppl\Application Data |
################## | C:\Documents and Settings\inifile.ppl\Application Data |
################## | C:\Documents and Settings\iwgen.ppl\Application Data |
################## | C:\Documents and Settings\kav.bav\Application Data |
################## | C:\Documents and Settings\kav.tbp\Application Data |
################## | C:\Documents and Settings\kl.url\Application Data |
################## | C:\Documents and Settings\KLIFX86\Application Data |
################## | C:\Documents and Settings\KLIMX86\Application Data |
################## | C:\Documents and Settings\kloehk.dll\Application Data |
################## | C:\Documents and Settings\klscav.dll\Application Data |
################## | C:\Documents and Settings\klthbplg.dll\Application Data |
################## | C:\Documents and Settings\lha.ppl\Application Data |
################## | C:\Documents and Settings\libola.dll\Application Data |
################## | C:\Documents and Settings\lic.ppl\Application Data |
################## | C:\Documents and Settings\Load46St.dll\Application Data |
################## | C:\Documents and Settings\maildisp.ppl\Application Data |
################## | C:\Documents and Settings\MailMsg.ppl\Application Data |
################## | C:\Documents and Settings\MAPIEDK.dll\Application Data |
################## | C:\Documents and Settings\mc.ppl\Application Data |
################## | C:\Documents and Settings\mcou.dll\Application Data |
################## | C:\Documents and Settings\mcouas.dll\Application Data |
################## | C:\Documents and Settings\mdb.ppl\Application Data |
################## | C:\Documents and Settings\MDMAP.ppl\Application Data |
################## | C:\Documents and Settings\MemModSc.ppl\Application Data |
################## | C:\Documents and Settings\MemScan.ppl\Application Data |
################## | C:\Documents and Settings\mfc42.dll\Application Data |
################## | C:\Documents and Settings\Microsoft.VC80.CRT.manifest\Application Data |
################## | C:\Documents and Settings\minizip.ppl\Application Data |
################## | C:\Documents and Settings\mkavio.ppl\Application Data |
################## | C:\Documents and Settings\msdll.txt\Application Data |
################## | C:\Documents and Settings\MSNprtc.dll\Application Data |
################## | C:\Documents and Settings\msoe.ppl\Application Data |
################## | C:\Documents and Settings\msvcm80.dll\Application Data |
################## | C:\Documents and Settings\msvcp80.dll\Application Data |
################## | C:\Documents and Settings\msvcr80.dll\Application Data |
################## | C:\Documents and Settings\mzvkbd.dll\Application Data |
################## | C:\Documents and Settings\ndetect.ppl\Application Data |
################## | C:\Documents and Settings\netdtls.ppl\Application Data |
################## | C:\Documents and Settings\netwatch.ppl\Application Data |
################## | C:\Documents and Settings\nfio.ppl\Application Data |
################## | C:\Documents and Settings\NNTPprtc.ppl\Application Data |
################## | C:\Documents and Settings\NTFSstrm.ppl\Application Data |
################## | C:\Documents and Settings\oas.ppl\Application Data |
################## | C:\Documents and Settings\ods.ppl\Application Data |
################## | C:\Documents and Settings\oeas.dll\Application Data |
################## | C:\Documents and Settings\opera_banner_deny.vbs\Application Data |
################## | C:\Documents and Settings\params.ppl\Application Data |
################## | C:\Documents and Settings\passdmap.ppl\Application Data |
################## | C:\Documents and Settings\pdm2rt.ppl\Application Data |
################## | C:\Documents and Settings\POP3prtc.ppl\Application Data |
################## | C:\Documents and Settings\PrKernel.ppl\Application Data |
################## | C:\Documents and Settings\prloader.dll\Application Data |
################## | C:\Documents and Settings\procmon.ppl\Application Data |
################## | C:\Documents and Settings\propmap.ppl\Application Data |
################## | C:\Documents and Settings\ProxyDet.ppl\Application Data |
################## | C:\Documents and Settings\prremote.dll\Application Data |
################## | C:\Documents and Settings\prseqio.ppl\Application Data |
################## | C:\Documents and Settings\PrTransp.ppl\Application Data |
################## | C:\Documents and Settings\prupdate.ppl\Application Data |
################## | C:\Documents and Settings\PrUtil.ppl\Application Data |
################## | C:\Documents and Settings\pxstub.ppl\Application Data |
################## | C:\Documents and Settings\qb.ppl\Application Data |
################## | C:\Documents and Settings\rar.ppl\Application Data |
################## | C:\Documents and Settings\regmap.ppl\Application Data |
################## | C:\Documents and Settings\report.ppl\Application Data |
################## | C:\Documents and Settings\reportdb.ppl\Application Data |
################## | C:\Documents and Settings\rescue32.exe\Application Data |
################## | C:\Documents and Settings\rescuecd.zip\Application Data |
################## | C:\Documents and Settings\resip.ppl\Application Data |
################## | C:\Documents and Settings\sc.ppl\Application Data |
################## | C:\Documents and Settings\schedule.ppl\Application Data |
################## | C:\Documents and Settings\SCIEPlgn.dll\Application Data |
################## | C:\Documents and Settings\scrchpg.dll\Application Data |
################## | C:\Documents and Settings\SFDB.PPL\Application Data |
################## | C:\Documents and Settings\shellex.dll\Application Data |
################## | C:\Documents and Settings\Skin\Application Data |
################## | C:\Documents and Settings\SMTPprtc.ppl\Application Data |
################## | C:\Documents and Settings\spamtst.ppl\Application Data |
################## | C:\Documents and Settings\stat.ppl\Application Data |
################## | C:\Documents and Settings\StdComp.ppl\Application Data |
################## | C:\Documents and Settings\StEnum2.ppl\Application Data |
################## | C:\Documents and Settings\stored.ppl\Application Data |
################## | C:\Documents and Settings\SuperIO.ppl\Application Data |
################## | C:\Documents and Settings\syswatch.ppl\Application Data |
################## | C:\Documents and Settings\tempfile.ppl\Application Data |
################## | C:\Documents and Settings\THBExt\Application Data |
################## | C:\Documents and Settings\thpimpl.ppl\Application Data |
################## | C:\Documents and Settings\timer.ppl\Application Data |
################## | C:\Documents and Settings\tm.ppl\Application Data |
################## | C:\Documents and Settings\TrafMon2.ppl\Application Data |
################## | C:\Documents and Settings\TrainSup.ppl\Application Data |
################## | C:\Documents and Settings\UnArj.ppl\Application Data |
################## | C:\Documents and Settings\UniArc.ppl\Application Data |
################## | C:\Documents and Settings\UnLZX.ppl\Application Data |
################## | C:\Documents and Settings\Unreduce.ppl\Application Data |
################## | C:\Documents and Settings\UNSHRINK.ppl\Application Data |
################## | C:\Documents and Settings\UnStored.ppl\Application Data |
################## | C:\Documents and Settings\updater.dll\Application Data |
################## | C:\Documents and Settings\urlflt.ppl\Application Data |
################## | C:\Documents and Settings\ushata.dll\Application Data |
################## | C:\Documents and Settings\vkbd.dll\Application Data |
################## | C:\Documents and Settings\vmarea.ppl\Application Data |
################## | C:\Documents and Settings\WDiskIO.ppl\Application Data |
################## | C:\Documents and Settings\WinReg.ppl\Application Data |
################## | C:\Documents and Settings\wmihlpr.ppl\Application Data |
################## | C:\Documents and Settings\xorio.ppl\Application Data |
################## | Autres ... |
################## | Temporary Internet Files |
################## | Registre / Clés infectieuses |
################## | Etat / Services / Informations |
# Mode sans echec : OK
# Affichage des fichiers cachés : OK
# Ndisuio -> Start = 3 ( Good = 3 | Bad = 4 )
# EapHost -> Start = 2 ( Good = 2 | Bad = 4 )
# Ip6Fw -> Start = 2 ( Good = 2 | Bad = 4 )
# SharedAccess -> Start = 2 ( Good = 2 | Bad = 4 )
# wuauserv -> Start = 2 ( Good = 2 | Bad = 4 )
# wscsvc -> Start = 2 ( Good = 2 | Bad = 4 )
################## | PEH ... |
Corrompu : C:\Program Files\Mozilla Firefox\uninstall\helper.exe
[Offset = 000000DC - Valeur = 0x0001]
################## | Cracks / Keygens / Serials |
"C:\Documents and Settings\All Users\Application Data\Kaspersky Lab\AVP8\Data\Updater\Temporary Files\temporaryFolder\AutoPatches\kav8exec\8.0.0.357\"avp.exe""
11/06/2009 22:16 |Size 201992 |Crc32 adde7ef8 |Md5 47fe9cea9bb87ea5e0803e2846f7bf36
################## | ! Fin du rapport # FindyKill V5.002 ! |
reessaie superantispyware
tu le desinstalles , le retelecharges , le reinstalles , puis le lances comme indiqué plus haut
tu le desinstalles , le retelecharges , le reinstalles , puis le lances comme indiqué plus haut
Vous n’avez pas trouvé la réponse que vous recherchez ?
Posez votre question
Arf.. ><'
Toujours aucun rapport.. :s ( je ne le trouve pas, cependant il est affiché..):
############################## | FindyKill V5.002 |
# User : utilisateur (Administrateurs) # UTILISAT-808325
# Update on 12/06/09 by Chiquitine29
# Start at: 17:26:39 | 18/06/2009
# Website : http://pagesperso-orange.fr/NosTools/findykill.html
# AMD Athlon(tm) 64 X2 Dual Core Processor 5000+
# Microsoft Windows XP Édition familiale (5.1.2600 32-bit) # Service Pack 3
# Internet Explorer 7.0.5730.13
# Windows Firewall Status : Disabled
# AV : Kaspersky Internet Security 8.0.0.357 [ (!) Disabled | Updated ]
# FW : Kaspersky Internet Security[ Enabled ]8.0.0.357
# C:\ # Disque fixe local # 232,88 Go (133,88 Go free) # NTFS
# D:\ # Disque CD-ROM
# E:\ # Disque CD-ROM
############################## | Processus actifs |
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\csrss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
C:\Documents and Settings\avp.exe
C:\Program Files\Bonjour\mDNSResponder.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Fichiers communs\Nero\Nero BackItUp 4\NBService.exe
C:\WINDOWS\system32\nvsvc32.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Canon\CAL\CALMAIN.exe
C:\WINDOWS\system32\wbem\wmiprvse.exe
C:\WINDOWS\System32\alg.exe
C:\WINDOWS\system32\wscntfy.exe
################## | C: |
################## | C:\WINDOWS |
################## | C:\WINDOWS\system32 |
################## | C:\WINDOWS\system32\drivers |
################## | C:\Documents and Settings\utilisateur\Application Data |
################## | C:\Documents and Settings\abhelper.dll\Application Data |
################## | C:\Documents and Settings\adialhk.dll\Application Data |
################## | C:\Documents and Settings\adialtsk.ppl\Application Data |
################## | C:\Documents and Settings\advdis.ppl\Application Data |
################## | C:\Documents and Settings\ahids.ppl\Application Data |
################## | C:\Documents and Settings\Alwil Software\Application Data |
################## | C:\Documents and Settings\antispam.ppl\Application Data |
################## | C:\Documents and Settings\aphish.ppl\Application Data |
################## | C:\Documents and Settings\aphisht.ppl\Application Data |
################## | C:\Documents and Settings\Arj.ppl\Application Data |
################## | C:\Documents and Settings\ArjPack.ppl\Application Data |
################## | C:\Documents and Settings\asppp.dll\Application Data |
################## | C:\Documents and Settings\avlib.ppl\Application Data |
################## | C:\Documents and Settings\avp.com\Application Data |
################## | C:\Documents and Settings\avp.exe\Application Data |
################## | C:\Documents and Settings\avpgs.ppl\Application Data |
################## | C:\Documents and Settings\avpgui.ppl\Application Data |
################## | C:\Documents and Settings\avs.ppl\Application Data |
################## | C:\Documents and Settings\avspm.ppl\Application Data |
################## | C:\Documents and Settings\avzkrnl.dll\Application Data |
################## | C:\Documents and Settings\avzproxy.ppl\Application Data |
################## | C:\Documents and Settings\avzscan.ppl\Application Data |
################## | C:\Documents and Settings\base64.ppl\Application Data |
################## | C:\Documents and Settings\base64p.ppl\Application Data |
################## | C:\Documents and Settings\basegui.ppl\Application Data |
################## | C:\Documents and Settings\bl.ppl\Application Data |
################## | C:\Documents and Settings\btdisk.ppl\Application Data |
################## | C:\Documents and Settings\btimages.ppl\Application Data |
################## | C:\Documents and Settings\buffer.ppl\Application Data |
################## | C:\Documents and Settings\CAB.ppl\Application Data |
################## | C:\Documents and Settings\cfdata3.dll\Application Data |
################## | C:\Documents and Settings\cfilter3.dll\Application Data |
################## | C:\Documents and Settings\ckahcomm.dll\Application Data |
################## | C:\Documents and Settings\ckahrule.dll\Application Data |
################## | C:\Documents and Settings\ckahstat.dll\Application Data |
################## | C:\Documents and Settings\ckahum.dll\Application Data |
################## | C:\Documents and Settings\clldr.dll\Application Data |
################## | C:\Documents and Settings\ComStmIO.ppl\Application Data |
################## | C:\Documents and Settings\crpthlpr.ppl\Application Data |
################## | C:\Documents and Settings\dbghelp.dll\Application Data |
################## | C:\Documents and Settings\deflate.ppl\Application Data |
################## | C:\Documents and Settings\diffs.dll\Application Data |
################## | C:\Documents and Settings\DMAP.ppl\Application Data |
################## | C:\Documents and Settings\Doc\Application Data |
################## | C:\Documents and Settings\dtreg.ppl\Application Data |
################## | C:\Documents and Settings\Explode.ppl\Application Data |
################## | C:\Documents and Settings\extprtc.ppl\Application Data |
################## | C:\Documents and Settings\filemap.ppl\Application Data |
################## | C:\Documents and Settings\FsDrvPlg.ppl\Application Data |
################## | C:\Documents and Settings\fssync.dll\Application Data |
################## | C:\Documents and Settings\GetSI.dll\Application Data |
################## | C:\Documents and Settings\HASHMD5.PPL\Application Data |
################## | C:\Documents and Settings\hips.ppl\Application Data |
################## | C:\Documents and Settings\httpanlz.ppl\Application Data |
################## | C:\Documents and Settings\httpscan.ppl\Application Data |
################## | C:\Documents and Settings\ichk2.ppl\Application Data |
################## | C:\Documents and Settings\iChkSA.ppl\Application Data |
################## | C:\Documents and Settings\ICQprtc.dll\Application Data |
################## | C:\Documents and Settings\ievkbd.dll\Application Data |
################## | C:\Documents and Settings\ie_banner_deny.htm\Application Data |
################## | C:\Documents and Settings\IKLAntiSpam.xpt\Application Data |
################## | C:\Documents and Settings\IMAPprtc.ppl\Application Data |
################## | C:\Documents and Settings\Inflate.ppl\Application Data |
################## | C:\Documents and Settings\inifile.ppl\Application Data |
################## | C:\Documents and Settings\iwgen.ppl\Application Data |
################## | C:\Documents and Settings\kav.bav\Application Data |
################## | C:\Documents and Settings\kav.tbp\Application Data |
################## | C:\Documents and Settings\kl.url\Application Data |
################## | C:\Documents and Settings\KLIFX86\Application Data |
################## | C:\Documents and Settings\KLIMX86\Application Data |
################## | C:\Documents and Settings\kloehk.dll\Application Data |
################## | C:\Documents and Settings\klscav.dll\Application Data |
################## | C:\Documents and Settings\klthbplg.dll\Application Data |
################## | C:\Documents and Settings\lha.ppl\Application Data |
################## | C:\Documents and Settings\libola.dll\Application Data |
################## | C:\Documents and Settings\lic.ppl\Application Data |
################## | C:\Documents and Settings\Load46St.dll\Application Data |
################## | C:\Documents and Settings\maildisp.ppl\Application Data |
################## | C:\Documents and Settings\MailMsg.ppl\Application Data |
################## | C:\Documents and Settings\MAPIEDK.dll\Application Data |
################## | C:\Documents and Settings\mc.ppl\Application Data |
################## | C:\Documents and Settings\mcou.dll\Application Data |
################## | C:\Documents and Settings\mcouas.dll\Application Data |
################## | C:\Documents and Settings\mdb.ppl\Application Data |
################## | C:\Documents and Settings\MDMAP.ppl\Application Data |
################## | C:\Documents and Settings\MemModSc.ppl\Application Data |
################## | C:\Documents and Settings\MemScan.ppl\Application Data |
################## | C:\Documents and Settings\mfc42.dll\Application Data |
################## | C:\Documents and Settings\Microsoft.VC80.CRT.manifest\Application Data |
################## | C:\Documents and Settings\minizip.ppl\Application Data |
################## | C:\Documents and Settings\mkavio.ppl\Application Data |
################## | C:\Documents and Settings\msdll.txt\Application Data |
################## | C:\Documents and Settings\MSNprtc.dll\Application Data |
################## | C:\Documents and Settings\msoe.ppl\Application Data |
################## | C:\Documents and Settings\msvcm80.dll\Application Data |
################## | C:\Documents and Settings\msvcp80.dll\Application Data |
################## | C:\Documents and Settings\msvcr80.dll\Application Data |
################## | C:\Documents and Settings\mzvkbd.dll\Application Data |
################## | C:\Documents and Settings\ndetect.ppl\Application Data |
################## | C:\Documents and Settings\netdtls.ppl\Application Data |
################## | C:\Documents and Settings\netwatch.ppl\Application Data |
################## | C:\Documents and Settings\nfio.ppl\Application Data |
################## | C:\Documents and Settings\NNTPprtc.ppl\Application Data |
################## | C:\Documents and Settings\NTFSstrm.ppl\Application Data |
################## | C:\Documents and Settings\oas.ppl\Application Data |
################## | C:\Documents and Settings\ods.ppl\Application Data |
################## | C:\Documents and Settings\oeas.dll\Application Data |
################## | C:\Documents and Settings\opera_banner_deny.vbs\Application Data |
################## | C:\Documents and Settings\params.ppl\Application Data |
################## | C:\Documents and Settings\passdmap.ppl\Application Data |
################## | C:\Documents and Settings\pdm2rt.ppl\Application Data |
################## | C:\Documents and Settings\POP3prtc.ppl\Application Data |
################## | C:\Documents and Settings\PrKernel.ppl\Application Data |
################## | C:\Documents and Settings\prloader.dll\Application Data |
################## | C:\Documents and Settings\procmon.ppl\Application Data |
################## | C:\Documents and Settings\propmap.ppl\Application Data |
################## | C:\Documents and Settings\ProxyDet.ppl\Application Data |
################## | C:\Documents and Settings\prremote.dll\Application Data |
################## | C:\Documents and Settings\prseqio.ppl\Application Data |
################## | C:\Documents and Settings\PrTransp.ppl\Application Data |
################## | C:\Documents and Settings\prupdate.ppl\Application Data |
################## | C:\Documents and Settings\PrUtil.ppl\Application Data |
################## | C:\Documents and Settings\pxstub.ppl\Application Data |
################## | C:\Documents and Settings\qb.ppl\Application Data |
################## | C:\Documents and Settings\rar.ppl\Application Data |
################## | C:\Documents and Settings\regmap.ppl\Application Data |
################## | C:\Documents and Settings\report.ppl\Application Data |
################## | C:\Documents and Settings\reportdb.ppl\Application Data |
################## | C:\Documents and Settings\rescue32.exe\Application Data |
################## | C:\Documents and Settings\rescuecd.zip\Application Data |
################## | C:\Documents and Settings\resip.ppl\Application Data |
################## | C:\Documents and Settings\sc.ppl\Application Data |
################## | C:\Documents and Settings\schedule.ppl\Application Data |
################## | C:\Documents and Settings\SCIEPlgn.dll\Application Data |
################## | C:\Documents and Settings\scrchpg.dll\Application Data |
################## | C:\Documents and Settings\SFDB.PPL\Application Data |
################## | C:\Documents and Settings\shellex.dll\Application Data |
################## | C:\Documents and Settings\Skin\Application Data |
################## | C:\Documents and Settings\SMTPprtc.ppl\Application Data |
################## | C:\Documents and Settings\spamtst.ppl\Application Data |
################## | C:\Documents and Settings\stat.ppl\Application Data |
################## | C:\Documents and Settings\StdComp.ppl\Application Data |
################## | C:\Documents and Settings\StEnum2.ppl\Application Data |
################## | C:\Documents and Settings\stored.ppl\Application Data |
################## | C:\Documents and Settings\SuperIO.ppl\Application Data |
################## | C:\Documents and Settings\syswatch.ppl\Application Data |
################## | C:\Documents and Settings\tempfile.ppl\Application Data |
################## | C:\Documents and Settings\THBExt\Application Data |
################## | C:\Documents and Settings\thpimpl.ppl\Application Data |
################## | C:\Documents and Settings\timer.ppl\Application Data |
################## | C:\Documents and Settings\tm.ppl\Application Data |
################## | C:\Documents and Settings\TrafMon2.ppl\Application Data |
################## | C:\Documents and Settings\TrainSup.ppl\Application Data |
################## | C:\Documents and Settings\UnArj.ppl\Application Data |
################## | C:\Documents and Settings\UniArc.ppl\Application Data |
################## | C:\Documents and Settings\UnLZX.ppl\Application Data |
################## | C:\Documents and Settings\Unreduce.ppl\Application Data |
################## | C:\Documents and Settings\UNSHRINK.ppl\Application Data |
################## | C:\Documents and Settings\UnStored.ppl\Application Data |
################## | C:\Documents and Settings\updater.dll\Application Data |
################## | C:\Documents and Settings\urlflt.ppl\Application Data |
################## | C:\Documents and Settings\ushata.dll\Application Data |
################## | C:\Documents and Settings\vkbd.dll\Application Data |
################## | C:\Documents and Settings\vmarea.ppl\Application Data |
################## | C:\Documents and Settings\WDiskIO.ppl\Application Data |
################## | C:\Documents and Settings\WinReg.ppl\Application Data |
################## | C:\Documents and Settings\wmihlpr.ppl\Application Data |
################## | C:\Documents and Settings\xorio.ppl\Application Data |
################## | Autres ... |
################## | Temporary Internet Files |
################## | Registre / Clés infectieuses |
################## | Etat / Services / Informations |
# Mode sans echec : OK
# Affichage des fichiers cachés : OK
# Ndisuio -> Start = 3 ( Good = 3 | Bad = 4 )
# EapHost -> Start = 2 ( Good = 2 | Bad = 4 )
# Ip6Fw -> Start = 2 ( Good = 2 | Bad = 4 )
# SharedAccess -> Start = 2 ( Good = 2 | Bad = 4 )
# wuauserv -> Start = 2 ( Good = 2 | Bad = 4 )
# wscsvc -> Start = 2 ( Good = 2 | Bad = 4 )
################## | PEH ... |
Corrompu : C:\Program Files\Mozilla Firefox\uninstall\helper.exe
[Offset = 000000DC - Valeur = 0x0001]
################## | Cracks / Keygens / Serials |
"C:\Documents and Settings\All Users\Application Data\Kaspersky Lab\AVP8\Data\Updater\Temporary Files\temporaryFolder\AutoPatches\kav8exec\8.0.0.357\"avp.exe""
11/06/2009 22:16 |Size 201992 |Crc32 adde7ef8 |Md5 47fe9cea9bb87ea5e0803e2846f7bf36
################## | ! Fin du rapport # FindyKill V5.002 ! |
Toujours aucun rapport.. :s ( je ne le trouve pas, cependant il est affiché..):
############################## | FindyKill V5.002 |
# User : utilisateur (Administrateurs) # UTILISAT-808325
# Update on 12/06/09 by Chiquitine29
# Start at: 17:26:39 | 18/06/2009
# Website : http://pagesperso-orange.fr/NosTools/findykill.html
# AMD Athlon(tm) 64 X2 Dual Core Processor 5000+
# Microsoft Windows XP Édition familiale (5.1.2600 32-bit) # Service Pack 3
# Internet Explorer 7.0.5730.13
# Windows Firewall Status : Disabled
# AV : Kaspersky Internet Security 8.0.0.357 [ (!) Disabled | Updated ]
# FW : Kaspersky Internet Security[ Enabled ]8.0.0.357
# C:\ # Disque fixe local # 232,88 Go (133,88 Go free) # NTFS
# D:\ # Disque CD-ROM
# E:\ # Disque CD-ROM
############################## | Processus actifs |
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\csrss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
C:\Documents and Settings\avp.exe
C:\Program Files\Bonjour\mDNSResponder.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Fichiers communs\Nero\Nero BackItUp 4\NBService.exe
C:\WINDOWS\system32\nvsvc32.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Canon\CAL\CALMAIN.exe
C:\WINDOWS\system32\wbem\wmiprvse.exe
C:\WINDOWS\System32\alg.exe
C:\WINDOWS\system32\wscntfy.exe
################## | C: |
################## | C:\WINDOWS |
################## | C:\WINDOWS\system32 |
################## | C:\WINDOWS\system32\drivers |
################## | C:\Documents and Settings\utilisateur\Application Data |
################## | C:\Documents and Settings\abhelper.dll\Application Data |
################## | C:\Documents and Settings\adialhk.dll\Application Data |
################## | C:\Documents and Settings\adialtsk.ppl\Application Data |
################## | C:\Documents and Settings\advdis.ppl\Application Data |
################## | C:\Documents and Settings\ahids.ppl\Application Data |
################## | C:\Documents and Settings\Alwil Software\Application Data |
################## | C:\Documents and Settings\antispam.ppl\Application Data |
################## | C:\Documents and Settings\aphish.ppl\Application Data |
################## | C:\Documents and Settings\aphisht.ppl\Application Data |
################## | C:\Documents and Settings\Arj.ppl\Application Data |
################## | C:\Documents and Settings\ArjPack.ppl\Application Data |
################## | C:\Documents and Settings\asppp.dll\Application Data |
################## | C:\Documents and Settings\avlib.ppl\Application Data |
################## | C:\Documents and Settings\avp.com\Application Data |
################## | C:\Documents and Settings\avp.exe\Application Data |
################## | C:\Documents and Settings\avpgs.ppl\Application Data |
################## | C:\Documents and Settings\avpgui.ppl\Application Data |
################## | C:\Documents and Settings\avs.ppl\Application Data |
################## | C:\Documents and Settings\avspm.ppl\Application Data |
################## | C:\Documents and Settings\avzkrnl.dll\Application Data |
################## | C:\Documents and Settings\avzproxy.ppl\Application Data |
################## | C:\Documents and Settings\avzscan.ppl\Application Data |
################## | C:\Documents and Settings\base64.ppl\Application Data |
################## | C:\Documents and Settings\base64p.ppl\Application Data |
################## | C:\Documents and Settings\basegui.ppl\Application Data |
################## | C:\Documents and Settings\bl.ppl\Application Data |
################## | C:\Documents and Settings\btdisk.ppl\Application Data |
################## | C:\Documents and Settings\btimages.ppl\Application Data |
################## | C:\Documents and Settings\buffer.ppl\Application Data |
################## | C:\Documents and Settings\CAB.ppl\Application Data |
################## | C:\Documents and Settings\cfdata3.dll\Application Data |
################## | C:\Documents and Settings\cfilter3.dll\Application Data |
################## | C:\Documents and Settings\ckahcomm.dll\Application Data |
################## | C:\Documents and Settings\ckahrule.dll\Application Data |
################## | C:\Documents and Settings\ckahstat.dll\Application Data |
################## | C:\Documents and Settings\ckahum.dll\Application Data |
################## | C:\Documents and Settings\clldr.dll\Application Data |
################## | C:\Documents and Settings\ComStmIO.ppl\Application Data |
################## | C:\Documents and Settings\crpthlpr.ppl\Application Data |
################## | C:\Documents and Settings\dbghelp.dll\Application Data |
################## | C:\Documents and Settings\deflate.ppl\Application Data |
################## | C:\Documents and Settings\diffs.dll\Application Data |
################## | C:\Documents and Settings\DMAP.ppl\Application Data |
################## | C:\Documents and Settings\Doc\Application Data |
################## | C:\Documents and Settings\dtreg.ppl\Application Data |
################## | C:\Documents and Settings\Explode.ppl\Application Data |
################## | C:\Documents and Settings\extprtc.ppl\Application Data |
################## | C:\Documents and Settings\filemap.ppl\Application Data |
################## | C:\Documents and Settings\FsDrvPlg.ppl\Application Data |
################## | C:\Documents and Settings\fssync.dll\Application Data |
################## | C:\Documents and Settings\GetSI.dll\Application Data |
################## | C:\Documents and Settings\HASHMD5.PPL\Application Data |
################## | C:\Documents and Settings\hips.ppl\Application Data |
################## | C:\Documents and Settings\httpanlz.ppl\Application Data |
################## | C:\Documents and Settings\httpscan.ppl\Application Data |
################## | C:\Documents and Settings\ichk2.ppl\Application Data |
################## | C:\Documents and Settings\iChkSA.ppl\Application Data |
################## | C:\Documents and Settings\ICQprtc.dll\Application Data |
################## | C:\Documents and Settings\ievkbd.dll\Application Data |
################## | C:\Documents and Settings\ie_banner_deny.htm\Application Data |
################## | C:\Documents and Settings\IKLAntiSpam.xpt\Application Data |
################## | C:\Documents and Settings\IMAPprtc.ppl\Application Data |
################## | C:\Documents and Settings\Inflate.ppl\Application Data |
################## | C:\Documents and Settings\inifile.ppl\Application Data |
################## | C:\Documents and Settings\iwgen.ppl\Application Data |
################## | C:\Documents and Settings\kav.bav\Application Data |
################## | C:\Documents and Settings\kav.tbp\Application Data |
################## | C:\Documents and Settings\kl.url\Application Data |
################## | C:\Documents and Settings\KLIFX86\Application Data |
################## | C:\Documents and Settings\KLIMX86\Application Data |
################## | C:\Documents and Settings\kloehk.dll\Application Data |
################## | C:\Documents and Settings\klscav.dll\Application Data |
################## | C:\Documents and Settings\klthbplg.dll\Application Data |
################## | C:\Documents and Settings\lha.ppl\Application Data |
################## | C:\Documents and Settings\libola.dll\Application Data |
################## | C:\Documents and Settings\lic.ppl\Application Data |
################## | C:\Documents and Settings\Load46St.dll\Application Data |
################## | C:\Documents and Settings\maildisp.ppl\Application Data |
################## | C:\Documents and Settings\MailMsg.ppl\Application Data |
################## | C:\Documents and Settings\MAPIEDK.dll\Application Data |
################## | C:\Documents and Settings\mc.ppl\Application Data |
################## | C:\Documents and Settings\mcou.dll\Application Data |
################## | C:\Documents and Settings\mcouas.dll\Application Data |
################## | C:\Documents and Settings\mdb.ppl\Application Data |
################## | C:\Documents and Settings\MDMAP.ppl\Application Data |
################## | C:\Documents and Settings\MemModSc.ppl\Application Data |
################## | C:\Documents and Settings\MemScan.ppl\Application Data |
################## | C:\Documents and Settings\mfc42.dll\Application Data |
################## | C:\Documents and Settings\Microsoft.VC80.CRT.manifest\Application Data |
################## | C:\Documents and Settings\minizip.ppl\Application Data |
################## | C:\Documents and Settings\mkavio.ppl\Application Data |
################## | C:\Documents and Settings\msdll.txt\Application Data |
################## | C:\Documents and Settings\MSNprtc.dll\Application Data |
################## | C:\Documents and Settings\msoe.ppl\Application Data |
################## | C:\Documents and Settings\msvcm80.dll\Application Data |
################## | C:\Documents and Settings\msvcp80.dll\Application Data |
################## | C:\Documents and Settings\msvcr80.dll\Application Data |
################## | C:\Documents and Settings\mzvkbd.dll\Application Data |
################## | C:\Documents and Settings\ndetect.ppl\Application Data |
################## | C:\Documents and Settings\netdtls.ppl\Application Data |
################## | C:\Documents and Settings\netwatch.ppl\Application Data |
################## | C:\Documents and Settings\nfio.ppl\Application Data |
################## | C:\Documents and Settings\NNTPprtc.ppl\Application Data |
################## | C:\Documents and Settings\NTFSstrm.ppl\Application Data |
################## | C:\Documents and Settings\oas.ppl\Application Data |
################## | C:\Documents and Settings\ods.ppl\Application Data |
################## | C:\Documents and Settings\oeas.dll\Application Data |
################## | C:\Documents and Settings\opera_banner_deny.vbs\Application Data |
################## | C:\Documents and Settings\params.ppl\Application Data |
################## | C:\Documents and Settings\passdmap.ppl\Application Data |
################## | C:\Documents and Settings\pdm2rt.ppl\Application Data |
################## | C:\Documents and Settings\POP3prtc.ppl\Application Data |
################## | C:\Documents and Settings\PrKernel.ppl\Application Data |
################## | C:\Documents and Settings\prloader.dll\Application Data |
################## | C:\Documents and Settings\procmon.ppl\Application Data |
################## | C:\Documents and Settings\propmap.ppl\Application Data |
################## | C:\Documents and Settings\ProxyDet.ppl\Application Data |
################## | C:\Documents and Settings\prremote.dll\Application Data |
################## | C:\Documents and Settings\prseqio.ppl\Application Data |
################## | C:\Documents and Settings\PrTransp.ppl\Application Data |
################## | C:\Documents and Settings\prupdate.ppl\Application Data |
################## | C:\Documents and Settings\PrUtil.ppl\Application Data |
################## | C:\Documents and Settings\pxstub.ppl\Application Data |
################## | C:\Documents and Settings\qb.ppl\Application Data |
################## | C:\Documents and Settings\rar.ppl\Application Data |
################## | C:\Documents and Settings\regmap.ppl\Application Data |
################## | C:\Documents and Settings\report.ppl\Application Data |
################## | C:\Documents and Settings\reportdb.ppl\Application Data |
################## | C:\Documents and Settings\rescue32.exe\Application Data |
################## | C:\Documents and Settings\rescuecd.zip\Application Data |
################## | C:\Documents and Settings\resip.ppl\Application Data |
################## | C:\Documents and Settings\sc.ppl\Application Data |
################## | C:\Documents and Settings\schedule.ppl\Application Data |
################## | C:\Documents and Settings\SCIEPlgn.dll\Application Data |
################## | C:\Documents and Settings\scrchpg.dll\Application Data |
################## | C:\Documents and Settings\SFDB.PPL\Application Data |
################## | C:\Documents and Settings\shellex.dll\Application Data |
################## | C:\Documents and Settings\Skin\Application Data |
################## | C:\Documents and Settings\SMTPprtc.ppl\Application Data |
################## | C:\Documents and Settings\spamtst.ppl\Application Data |
################## | C:\Documents and Settings\stat.ppl\Application Data |
################## | C:\Documents and Settings\StdComp.ppl\Application Data |
################## | C:\Documents and Settings\StEnum2.ppl\Application Data |
################## | C:\Documents and Settings\stored.ppl\Application Data |
################## | C:\Documents and Settings\SuperIO.ppl\Application Data |
################## | C:\Documents and Settings\syswatch.ppl\Application Data |
################## | C:\Documents and Settings\tempfile.ppl\Application Data |
################## | C:\Documents and Settings\THBExt\Application Data |
################## | C:\Documents and Settings\thpimpl.ppl\Application Data |
################## | C:\Documents and Settings\timer.ppl\Application Data |
################## | C:\Documents and Settings\tm.ppl\Application Data |
################## | C:\Documents and Settings\TrafMon2.ppl\Application Data |
################## | C:\Documents and Settings\TrainSup.ppl\Application Data |
################## | C:\Documents and Settings\UnArj.ppl\Application Data |
################## | C:\Documents and Settings\UniArc.ppl\Application Data |
################## | C:\Documents and Settings\UnLZX.ppl\Application Data |
################## | C:\Documents and Settings\Unreduce.ppl\Application Data |
################## | C:\Documents and Settings\UNSHRINK.ppl\Application Data |
################## | C:\Documents and Settings\UnStored.ppl\Application Data |
################## | C:\Documents and Settings\updater.dll\Application Data |
################## | C:\Documents and Settings\urlflt.ppl\Application Data |
################## | C:\Documents and Settings\ushata.dll\Application Data |
################## | C:\Documents and Settings\vkbd.dll\Application Data |
################## | C:\Documents and Settings\vmarea.ppl\Application Data |
################## | C:\Documents and Settings\WDiskIO.ppl\Application Data |
################## | C:\Documents and Settings\WinReg.ppl\Application Data |
################## | C:\Documents and Settings\wmihlpr.ppl\Application Data |
################## | C:\Documents and Settings\xorio.ppl\Application Data |
################## | Autres ... |
################## | Temporary Internet Files |
################## | Registre / Clés infectieuses |
################## | Etat / Services / Informations |
# Mode sans echec : OK
# Affichage des fichiers cachés : OK
# Ndisuio -> Start = 3 ( Good = 3 | Bad = 4 )
# EapHost -> Start = 2 ( Good = 2 | Bad = 4 )
# Ip6Fw -> Start = 2 ( Good = 2 | Bad = 4 )
# SharedAccess -> Start = 2 ( Good = 2 | Bad = 4 )
# wuauserv -> Start = 2 ( Good = 2 | Bad = 4 )
# wscsvc -> Start = 2 ( Good = 2 | Bad = 4 )
################## | PEH ... |
Corrompu : C:\Program Files\Mozilla Firefox\uninstall\helper.exe
[Offset = 000000DC - Valeur = 0x0001]
################## | Cracks / Keygens / Serials |
"C:\Documents and Settings\All Users\Application Data\Kaspersky Lab\AVP8\Data\Updater\Temporary Files\temporaryFolder\AutoPatches\kav8exec\8.0.0.357\"avp.exe""
11/06/2009 22:16 |Size 201992 |Crc32 adde7ef8 |Md5 47fe9cea9bb87ea5e0803e2846f7bf36
################## | ! Fin du rapport # FindyKill V5.002 ! |
Je peux toujours rien installer en mode normal et même 2 -3 progr' en mode sans échec. Beaucoup de mes raccourcis ont été changé.. C'est le monstre bordel.. :s Tu me conseil de faire quoi?
moi s il m arrive un truc comme ca ? j'enquille le cd de windows et je refais tout
je cherche d abord bien sur mais apres...si plus rien ne marche quand meme....
je cherche d abord bien sur mais apres...si plus rien ne marche quand meme....
Si je formate mon P.C et réinstalle Windows XP, cela réglera tout, non?
L'soucis c'est que quand j'ai acheté mon P.C j'ai donné la licence de mon ancien P.C, donc je n'est plus le C.D :s
Tu penses que le vendeur pourrais me "prêter" un C.D de windows XP ?
Sa fait beaucoup de questions^^
L'soucis c'est que quand j'ai acheté mon P.C j'ai donné la licence de mon ancien P.C, donc je n'est plus le C.D :s
Tu penses que le vendeur pourrais me "prêter" un C.D de windows XP ?
Sa fait beaucoup de questions^^
Quand je veux réinstaller Steam, il m'affiche "L'administrateur système a configuré la politique de votre système pour interdire cette installation. Sa commence à m'saouler... Le P.C a moins d'un ans et est "H.S".
Si je formate mon P.C et réinstalle Windows XP, cela réglera tout, non?
c'est certain !
le pc n est pas h.s du tout c'est le systeme d'exploitation qui a pris une claque
c'est certain !
le pc n est pas h.s du tout c'est le systeme d'exploitation qui a pris une claque
