Pubs intenpestives

Question

Bonjour,
Depuis quelques temps, lorsque je fais une recherche sur google, le premier clic effectué sur le lien voulu m'emmène vers une pub, ou alors vers yahoo ou même http://results3.google.com/. Je dois refaire un deuxième clic pour pouvoir accéder au lien voulu dès le départ ...

C'est très énervant a force, pour moi et pour eux qui utilisent cet ordinateur. 

J'ai déjà fait des scans avec LopSd, et supprimé avec ce même logiciel, les pop-ups intempestives que j'avais de CDI on disparu, mais ce problème lui reste inchangé.

Je pense qu'il s'agit de exoclic, mais j'ai suivi les procédures expliquées sur un autre forum, mais rien a faire.

Merci d'avance a ceux qui répondront

ric025 · Answer

Salut.

Lop peut entraîner des pop-up, mais il n'y a pas que lui !! ;)

HijackThis :

&#x25B6; Télécharge hijackthis

&#x25B6; Tout est expliqué sur ce site web pour l'installer et l'utiliser correctement.

&#x25B6; Poste le rapport obtenu dans le bloc note dans ta prochaine réponse.


Comment copier/coller le rapport :


&#x25B6; Quand tu as le rapport à l écran, tu fais ctrl A pour "sélectionner tout" puis ctrl C pour "copier".

&#x25B6; Ensuite tu viens sur le forum pour me répondre et tu fais ctrl V pour "coller" le rapport.

+

rjmdm · Answer

Merci beaucoup pour la rapidité de ton aide, demain dès que j'ai la possibilité je poste ça.

Merci

rjmdm · Answer

Bonjour, voici le rapport obtenu : 


Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 14:02:02, on 22/08/2009
Platform: Windows Vista SP2 (WinNT 6.00.1906)
MSIE: Internet Explorer v8.00 (8.00.6001.18372)
Boot mode: Normal

Running processes:
C:\Windows\system32\Dwm.exe
C:\Windows\system32	askeng.exe
C:\Windows\Explorer.EXE
C:\Users\Ricardo\AppData\Roaming\eoRezo\SoftwareUpdate\SoftwareUpdateHP.exe
C:\Windows\RtHDVCpl.exe
C:\Windows\V0270Mon.exe
C:\Windows\WindowsMobile\wmdc.exe
C:\Program Files\Ascentive\Performance Center\ApcMain.exe
C:\Program Files\Windows Live\Family Safety\fsui.exe
C:\Program Files\Windows Live\Messenger\msnmsgr.exe
C:\Windows\ehome\ehtray.exe
C:\Program Files\Windows Media Player\wmpnscfg.exe
C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe
C:\Windows\ehome\ehmsas.exe
C:\Acer\Empowering Technology\eRecovery\ERAGENT.EXE
C:\Windows\system32\wbem\unsecapp.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Program Files\Windows Live\Contacts\wlcomm.exe
C:\Windows\system32\wuauclt.exe
C:\Program Files\Trend Micro\HijackThis\HJT.exe
C:\Windows\system32\SearchFilterHost.exe

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://fr.yahoo.com
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = https://fr.yahoo.com/
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant = 
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch = 
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = 
R3 - URLSearchHook: (no name) - {6638A9DE-0745-4292-8A2E-AE530E7B9B3F} - (no file)
R3 - URLSearchHook: Yahoo! Toolbar avec bloqueur de fenêtres pop-up - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - (no file)
R3 - URLSearchHook: SweetIM For Internet Explorer - {BC4FFE41-DE9F-46fa-B455-AAD49B9F9938} - C:\Program Files\Macrogaming\SweetIMBarForIE	oolbar.dll (file missing)
R3 - URLSearchHook: Best Security Tips Toolbar - {da30eff8-ccc6-4162-a20d-67402a26a215} - C:\Program Files\Best_Security_Tips	bBest.dll
O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll
O2 - BHO: SWEETIE - {1A0AADCD-3A72-4b5f-900F-E3BB5A838E2A} - C:\PROGRA~1\MACROG~1\SWEETI~1	oolbar.dll (file missing)
O2 - BHO: (no name) - {1E8A6170-7264-4D0F-BEAE-D42A53123C75} - C:\Program Files\Common Files\Symantec Shared\coShared\Browser\1.5\NppBho.dll
O2 - BHO: RealPlayer Download and Record Plugin for Internet Explorer - {3049C3E9-B461-4BC5-8870-4C09146192CA} - C:\Program Files\Real\RealPlayerpbrowserrecordplugin.dll
O2 - BHO: AdsCleaner Helper - {40FB69E1-9B7B-453F-B238-37D8E9528929} - C:\Program Files\SoftInform\AdsCleaner Trial\PAKIEPlugins.dll
O2 - BHO: Windows Live Family Safety Browser Helper - {4f3ed5cd-0726-42a9-87f5-d13f3d2976ac} - C:\Program Files\Windows Live\Family Safety\fssbho.dll
O2 - BHO: Spybot-S&D IE Protection - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O2 - BHO: Click-to-Call BHO - {5C255C8A-E604-49b4-9D64-90988571CECB} - C:\Program Files\Windows Live\Messenger\wlchtc.dll
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_05\bin\ssv.dll
O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files\Google\Google Toolbar\GoogleToolbar.dll
O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\5.1.1309.15642\swg.dll
O2 - BHO: (no name) - {C2A1C5CB-C0EF-4689-9436-F62CCA1C5383} - C:\Program Files\Video Add-on\isfmdl.dll (file missing)
O2 - BHO: TBSB05234 - {C4EC4403-3E2C-44F3-A2EC-B31B91D3FD11} - C:\Program Files\BarreMagique\sms-illimite.dll (file missing)
O2 - BHO: Google Dictionary Compression sdch - {C84D72FE-E17D-4195-BB24-76C02E2E7C4E} - C:\Program Files\Google\Google Toolbar\Component\fastsearch_A8904FB862BD9564.dll
O2 - BHO: Best Security Tips Toolbar - {da30eff8-ccc6-4162-a20d-67402a26a215} - C:\Program Files\Best_Security_Tips	bBest.dll
O2 - BHO: Offliner AdFilter Helper - {DC9377A2-2E8D-44A1-99DB-F8A821DF254D} - C:\Windows\System32\SiPlugins.dll
O2 - BHO: e404 helper - {F10587E9-0E47-4CBE-ABCD-7DD20B8622FF} - C:\Program Files\Helper\1201884012.dll (file missing)
O3 - Toolbar: SweetIM For Internet Explorer - {BC4FFE41-DE9F-46fa-B455-AAD49B9F9938} - C:\Program Files\Macrogaming\SweetIMBarForIE	oolbar.dll (file missing)
O3 - Toolbar: Show Norton Toolbar - {90222687-F593-4738-B738-FBEE9C7B26DF} - C:\Program Files\Common Files\Symantec Shared\coShared\Browser\1.5\UIBHO.dll
O3 - Toolbar: AdsCleaner Links Bar - {A8415B7A-F661-4D31-92D7-4398E50483DF} - C:\PROGRA~1\SOFTIN~1\ADSCLE~1\PAKIEGUI.dll
O3 - Toolbar: AdsCleaner Bar - {75CD0BC5-E317-449C-9FF6-4986B3D48F64} - C:\PROGRA~1\SOFTIN~1\ADSCLE~1\PAKIEGUI.dll
O3 - Toolbar: Best Security Tips Toolbar - {da30eff8-ccc6-4162-a20d-67402a26a215} - C:\Program Files\Best_Security_Tips	bBest.dll
O3 - Toolbar: (no name) - {4E7BD74F-2B8D-469E-8DA9-FD60BB9AAE33} - (no file)
O3 - Toolbar: Veoh Web Player Video Finder - {0FBB9689-D3D7-4f7a-A2E2-585B10099BFC} - C:\Program Files\Veoh Networks\VeohWebPlayer\VeohIEToolbar.dll
O3 - Toolbar: BarreMagique - {BFB5F154-9212-46F3-B547-AC6106030A54} - C:\Program Files\BarreMagique\sms-illimite.dll (file missing)
O3 - Toolbar: Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar.dll
O4 - HKLM\..\Run: [RtHDVCpl] RtHDVCpl.exe
O4 - HKLM\..\Run: [C:\Windows\system32\V0270Ext.ax] C:\Windows\system32\RegSvr32.exe /s C:\Windows\system32\V0270Ext.ax
O4 - HKLM\..\Run: [V0270Mon.exe] C:\Windows\V0270Mon.exe
O4 - HKLM\..\Run: [Windows Mobile Device Center] %windir%\WindowsMobile\wmdc.exe
O4 - HKLM\..\Run: [Performance Center] C:\Program Files\Ascentive\Performance Center\ApcMain.exe -m
O4 - HKLM\..\Run: [PC SpeedScan Pro] C:\Users\Ricardo\Desktop\123\PCSpeedScan.exe -m
O4 - HKLM\..\Run: [Symantec PIF AlertEng] "C:\Program Files\Common Files\Symantec Shared\PIF\{B8E1DD85-8582-4c61-B58F-2F227FCA9A08}\PIFSvc.exe" /a /m "C:\Program Files\Common Files\Symantec Shared\PIF\{B8E1DD85-8582-4c61-B58F-2F227FCA9A08}\AlertEng.dll"
O4 - HKLM\..\Run: [fssui] "C:\Program Files\Windows Live\Family Safety\fsui.exe" -autorun
O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe"
O4 - HKLM\..\RunOnce: [SoftwareHelper] C:\Users\Ricardo\AppData\Roaming\eoRezo\SoftwareUpdate\SoftwareUpdateHP.exe -runonce
O4 - HKCU\..\Run: [msnmsgr] "C:\Program Files\Windows Live\Messenger\MsnMsgr.Exe" /background
O4 - HKCU\..\Run: [ISUSPM Startup] "C:\Program Files\Common Files\InstallShield\UpdateService\ISUSPM.exe" -startup
O4 - HKCU\..\Run: [Google Update] "C:\Users\Ricardo\AppData\Local\Google\Update\GoogleUpdate.exe" /c
O4 - HKCU\..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
O4 - HKCU\..\Run: [ehTray.exe] C:\Windows\ehome\ehTray.exe
O4 - HKCU\..\Run: [WMPNSCFG] C:\Program Files\Windows Media Player\WMPNSCFG.exe
O4 - HKCU\..\Run: [SpybotSD TeaTimer] C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe
O4 - HKLM\..\Policies\Explorer\Run: [] 
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-19\..\Run: [WindowsWelcomeCenter] rundll32.exe oobefldr.dll,ShowWelcomeCenter (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-19\..\RunOnce: []  (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'SERVICE RÉSEAU')
O4 - HKUS\S-1-5-20\..\RunOnce: []  (User 'SERVICE RÉSEAU')
O4 - HKUS\S-1-5-18\..\Run: [msnmsgr] "C:\Program Files\Windows Live\Messenger\msnmsgr.exe" /background (User 'SYSTEM')
O4 - HKUS\S-1-5-18\..\RunOnce: []  (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [msnmsgr] "C:\Program Files\Windows Live\Messenger\msnmsgr.exe" /background (User 'Default user')
O4 - HKUS\.DEFAULT\..\RunOnce: []  (User 'Default user')
O4 - Global Startup: Adobe Gamma Loader.lnk = C:\Program Files\Common Files\Adobe\Calibration\Adobe Gamma Loader.exe
O4 - Global Startup: Empowering Technology Launcher.lnk = ?
O8 - Extra context menu item: &Search - ?p=ZSzim029MXFR
O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office12\EXCEL.EXE/3000
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_05\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_05\bin\ssv.dll
O9 - Extra button: Ajout Direct - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra 'Tools' menuitem: &Ajout Direct dans Windows Live Writer - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra button: @C:\Windows\WindowsMobile\INetRepl.dll,-222 - {2EAF5BB1-070F-11D3-9307-00C04FAE2D4F} - C:\Windows\WindowsMobile\INetRepl.dll
O9 - Extra button: (no name) - {2EAF5BB2-070F-11D3-9307-00C04FAE2D4F} - C:\Windows\WindowsMobile\INetRepl.dll
O9 - Extra 'Tools' menuitem: @C:\Windows\WindowsMobile\INetRepl.dll,-223 - {2EAF5BB2-070F-11D3-9307-00C04FAE2D4F} - C:\Windows\WindowsMobile\INetRepl.dll
O9 - Extra button: Run WinHTTrack - {36ECAF82-3300-8F84-092E-AFF36D6C7040} - C:\Program Files\WinHTTrack\WinHTTrackIEBar.dll (file missing)
O9 - Extra 'Tools' menuitem: Launch WinHTTrack - {36ECAF82-3300-8F84-092E-AFF36D6C7040} - C:\Program Files\WinHTTrack\WinHTTrackIEBar.dll (file missing)
O9 - Extra button: Bonjour - {7F9DB11C-E358-4ca6-A83D-ACC663939424} - C:\Program Files\Bonjour\ExplorerPlugin.dll
O9 - Extra button: (no name) - {9034A523-D068-4BE8-A284-9DF278BE776E} - http://www.freeietool.com/redirect.php (file missing)
O9 - Extra 'Tools' menuitem: IE Anti-Spyware - {9034A523-D068-4BE8-A284-9DF278BE776E} - http://www.freeietool.com/redirect.php (file missing)
O9 - Extra button: AdsCleaner Bar - {B5D8F853-BEC9-4F9C-B3C9-0F744B6869D1} - C:\PROGRA~1\SOFTIN~1\ADSCLE~1\PAKIEGUI.dll
O9 - Extra button: Run IMVU - {d9288080-1baa-4bc4-9cf8-a92d743db949} - C:\Users\Ricardo\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\IMVU\Run IMVU.lnk
O9 - Extra button: (no name) - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O9 - Extra 'Tools' menuitem: Spybot - Search & Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O13 - Gopher Prefix: 
O15 - Trusted Zone: https://www.toucharger.com/
O16 - DPF: CabBuilder - http://kiw.imgag.com/imgag/kiw/toolbar/download/InstallerControl.cab
O16 - DPF: {070CA17A-4BD2-4612-83B4-32B1B9159B47} (ULiveCtrl Control) - http://uc.sina.com.cn/download/live/weblive2.4.0.0.cab
O16 - DPF: {20A60F0D-9AFA-4515-A0FD-83BD84642501} (Checkers Class) - http://messenger.zone.msn.com/binary/msgrchkr.cab56986.cab
O16 - DPF: {3EA4FA88-E0BE-419A-A732-9B79B87A6ED0} (CTVUAxCtrl Object) - http://dl.tvunetworks.com/TVUAx.cab
O16 - DPF: {5C051655-FCD5-4969-9182-770EA5AA5565} (Solitaire Showdown Class) - http://messenger.zone.msn.com/binary/SolitaireShowdown.cab56986.cab
O16 - DPF: {5D6F45B3-9043-443D-A792-115447494D24} (UnoCtrl Class) - http://messenger.zone.msn.com/FR-FR/a-UNO1/GAME_UNO1.cab
O16 - DPF: {67DABFBF-D0AB-41FA-9C46-CC0F21721616} (DivXBrowserPlugin Object) - http://download.divx.com/player/DivXBrowserPlugin.cab
O16 - DPF: {B8BE5E93-A60C-4D26-A2DC-220313175592} (MSN Games - Installer) - http://messenger.zone.msn.com/binary/ZIntro.cab56649.cab
O16 - DPF: {BD08A9D5-0E5C-4F42-99A3-C0CB5E860557} (CSolidBrowserObj Object) - http://www.playwhat.com/solidPlugin/solidstateion.cab
O16 - DPF: {BD393C14-72AD-4790-A095-76522973D6B8} (CBreakshotControl Class) - http://messenger.zone.msn.com/binary/Bankshot.cab57213.cab
O16 - DPF: {BD8667B7-38D8-4C77-B580-18C3E146372C} (Creative Toolbox Plug-in) - http://ak.imgag.com/imgag/cp/install/crusher-kiwen.cab
O16 - DPF: {C3F79A2B-B9B4-4A66-B012-3EE46475B072} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsPAClient.cab56907.cab
O16 - DPF: {F5A7706B-B9C0-4C89-A715-7A0C6B05DD48} (Minesweeper Flags Class) - http://messenger.zone.msn.com/binary/MineSweeper.cab56986.cab
O17 - HKLM\System\CCS\Services\Tcpip\..\{CB150540-7459-451F-BE4E-392551A5C409}: NameServer = 85.255.112.70,85.255.112.127
O17 - HKLM\System\CS1\Services\Tcpip\Parameters: NameServer = 85.255.112.70,85.255.112.127
O17 - HKLM\System\CS3\Services\Tcpip\Parameters: NameServer = 85.255.112.70,85.255.112.127
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: NameServer = 85.255.112.70,85.255.112.127
O18 - Filter: x-sdch - {B1759355-3EEC-4C1E-B0F1-B719FE26E377} - C:\Program Files\Google\Google Toolbar\Component\fastsearch_A8904FB862BD9564.dll
O23 - Service: Adobe LM Service - Unknown owner - C:\Program Files\Common Files\Adobe Systems Shared\Service\Adobelmsvc.exe
O23 - Service: Apple Mobile Device - Apple Inc. - C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
O23 - Service: Ati External Event Utility - ATI Technologies Inc. - C:\Windows\system32\Ati2evxx.exe
O23 - Service: Service Bonjour (Bonjour Service) - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: Symantec Event Manager (ccEvtMgr) - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe
O23 - Service: Symantec Settings Manager (ccSetMgr) - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe
O23 - Service: Symantec Lic NetConnect service (CLTNetCnService) - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe
O23 - Service: COM Host (comHost) - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\VAScanner\comHost.exe
O23 - Service: eRecovery Service (eRecoveryService) - Acer Inc. - C:\Acer\Empowering Technology\eRecovery\eRecoveryService.exe
O23 - Service: Firebird Server - MAGIX Instance (FirebirdServerMAGIXInstance) - MAGIX® - C:\Program Files\MAGIX\Common\Database\bin\fbserver.exe
O23 - Service: Google Update Service (gupdate1c9d1ceab48b93b) (gupdate1c9d1ceab48b93b) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Google Software Updater (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\1150\Intel 32\IDriverT.exe
O23 - Service: Service de l’iPod (iPod Service) - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: Symantec IS Password Validation (ISPwdSvc) - Symantec Corporation - C:\Program Files\Norton Internet Security\isPwdSvc.exe
O23 - Service: LightScribeService Direct Disc Labeling Service (LightScribeService) - Hewlett-Packard Company - C:\Program Files\Common Files\LightScribe\LSSrvc.exe
O23 - Service: LiveUpdate - Symantec Corporation - C:\PROGRA~1\Symantec\LIVEUP~1\LUCOMS~1.EXE
O23 - Service: LiveUpdate Notice Service Ex (LiveUpdate Notice Ex) - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe
O23 - Service: LiveUpdate Notice Service - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\PIF\{B8E1DD85-8582-4c61-B58F-2F227FCA9A08}\PIFSvc.exe
O23 - Service: Process Monitor (LVPrcSrv) - Logitech Inc. - C:\Program Files\Common Files\LogiShrd\LVMVFM\LVPrcSrv.exe
O23 - Service: Ma-Config Service (maconfservice) - CybelSoft - C:\Program Files\ma-config.com\maconfservice.exe
O23 - Service: My Web Search Service (MyWebSearchService) - MyWebSearch.com - C:\PROGRA~1\MYWEBS~1\bar\1.bin\mwssvc.exe
O23 - Service: Planificateur LiveUpdate automatique - Symantec Corporation - C:\Program Files\Symantec\LiveUpdate\ALUSchedulerSvc.exe
O23 - Service: PnkBstrA - Unknown owner - C:\Windows\system32\PnkBstrA.exe
O23 - Service: Cyberlink RichVideo Service(CRVS) (RichVideo) - Unknown owner - C:\Program Files\CyberLink\Shared Files\RichVideo.exe
O23 - Service: Steam Client Service - Valve Corporation - C:\Program Files\Common Files\Steam\SteamService.exe
O23 - Service: Symantec Core LC - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\CCPD-LC\symlcsvc.exe
O23 - Service: Symantec AppCore Service (SymAppCore) - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\AppCore\AppSvc32.exe
O23 - Service: wampapache - Unknown owner - c:\wamp\bin\apache\apache2.2.8\bin\httpd.exe (file missing)
O23 - Service: wampmysqld - Unknown owner - c:\wamp\bin\mysql\mysql5.0.51b\bin\mysqld-nt.exe (file missing)

ric025 · Answer

Salut. :)

Plusieurs infections !!

Ton Windows est modifié ? 

Tu as une infection "Wareout", détournements DNS. C'est ce qui fait que tes recherches Google sont redirigées. Cette infection s'accompagnant d'un Rootkit, fais ce qui suit :

/!\ A l'attention de ceux qui passent sur ce sujet : L'outil qui suit ne doit pas être utilisé sans avis /!\

/!\ Désactive tes protections résidentes (Antivirus, Antispywares, etc...) /!\

Télécharge ComboFix (de sUBs) sur ton Bureau. (Ici renommé et hébergé).

http://sd-1.archive-host.com/membres/up/21362097671547645/rjmdm.exe

* Double-clique sur rjmdm.exe (le .exe n'est pas forcément visible) afin de le lancer.
* Il va te demander d'installer la console de récupération : ACCEPTE !.
* Ne touche pas au pc durant le scan.
* Lorsque la recherche sera terminée, un rapport apparaîtra. Poste ce rapport (C:\Combofix.txt) dans ta prochaine réponse.

Pour t'aider : Un Tutoriel sur l'utilisation de ComboFix (à lire avant de le lancer)

-->> https://www.bleepingcomputer.com/combofix/fr/comment-utiliser-combofix 

++

rjmdm · Answer

Merci beaucoup de ton aide, mais j'ai une question, comment on désactive les protections résidentes ?

merci

ric025 · Answer

Tu as Nero ? Tu devrais pouvoir en cliquant-droit sur l'icône et tu choisis "désactiver".

++

rjmdm · Answer

Je crois que j'ai pas réussi a tout désactiver mais voici le rapport obtenu : 




ComboFix 09-08-04.04 - Ricardo 22/08/2009 21:43.1.2 - NTFSx86
Microsoft® Windows Vista™ Édition Familiale Premium   6.0.6002.2.1252.33.1036.18.1023.343 [GMT 2:00]
Lancé depuis: c:\users\Ricardo\Downloadsjmdm.exe
AV: Norton Internet Security Online *On-access scanning enabled* (Updated) {E10A9785-9598-4754-B552-92431C1C35F8}
FW: Norton Internet Security Online *enabled* {7C21A4C9-F61F-4AC4-B722-A6E19C16F220}
SP: Norton Internet Security Online *enabled* (Updated) {CBB7EE13-8244-4DAB-8B55-D5C7AA91E59A}
SP: Spybot - Search and Destroy *enabled* (Outdated) {ED588FAF-1B8F-43B4-ACA8-8E3C85DADBE9}
SP: Windows Defender *enabled* (Updated) {D68DDC3A-831F-4FAE-9E44-DA132C1ACF46}
.
- Mode FONCTIONNALITES REDUITES -
.

((((((((((((((((((((((((((((((((((((   Autres suppressions   ))))))))))))))))))))))))))))))))))))))))))))))))
.

C:\autorun.inf
c:\program files\Helper
c:\program files\Internet Explorer\msimg32.dll
c:\program files\MyWebSearch
c:\program files\MyWebSearch\bar\1.bin\MWSSVC.EXE
c:\program files\Video Add-on
c:\windows\system32\adssite-remove.exe
c:\windows\system32\f3PSSavr.scr
c:\windows\system32\gaopdxcounter
c:\windows\system32\lnaccess.exe
D:\Autorun.inf

.
(((((((((((((((((((((((((((((   Fichiers créés du 2009-07-22 au 2009-08-22  ))))))))))))))))))))))))))))))))))))
.

2009-08-22 19:45 . 2009-08-22 19:46	--------	d-----w-	c:\users\Ricardo\AppData\Local	emp
2009-08-22 19:45 . 2009-08-22 19:45	--------	d-----w-	c:\users\Default\AppData\Local	emp
2009-08-22 16:10 . 2009-07-15 10:16	87888	----a-w-	c:\programdata\Symantec\Definitions\VirusDefs\20090822.004\NAVENG.SYS
2009-08-22 16:10 . 2009-07-15 10:16	875728	----a-w-	c:\programdata\Symantec\Definitions\VirusDefs\20090822.004\NAVEX15.SYS
2009-08-22 16:10 . 2009-07-15 10:16	371248	----a-w-	c:\programdata\Symantec\Definitions\VirusDefs\20090822.004\EECTRL.SYS
2009-08-22 16:10 . 2009-07-15 10:16	259368	----a-w-	c:\programdata\Symantec\Definitions\VirusDefs\20090822.004\ECMSVR32.DLL
2009-08-22 16:10 . 2009-07-15 10:16	2414128	----a-w-	c:\programdata\Symantec\Definitions\VirusDefs\20090822.004\CCERASER.DLL
2009-08-22 16:10 . 2009-07-15 10:16	177520	----a-w-	c:\programdata\Symantec\Definitions\VirusDefs\20090822.004\NAVENG32.DLL
2009-08-22 16:10 . 2009-07-15 10:16	1181040	----a-w-	c:\programdata\Symantec\Definitions\VirusDefs\20090822.004\NAVEX32A.DLL
2009-08-22 16:10 . 2009-07-15 10:16	101936	----a-w-	c:\programdata\Symantec\Definitions\VirusDefs\20090822.004\ERASER.SYS
2009-08-22 12:40 . 2009-08-22 12:40	--------	d-----w-	c:\users\Ricardo\AppData\Roaming\Canneverbe_Limited
2009-08-22 12:39 . 2009-08-22 12:39	--------	d-----w-	c:\programdata\Canneverbe Limited
2009-08-22 12:39 . 2009-08-22 12:39	--------	d-----w-	c:\program files\CDBurnerXP
2009-08-22 12:24 . 2009-08-22 12:20	3974440	----a-w-	c:\windows\system\AdvrCntr3.dll
2009-08-22 12:21 . 2009-08-22 12:20	3974440	----a-w-	C:\AdvrCntr3.dll
2009-08-22 11:46 . 2009-08-22 11:46	--------	d-----w-	c:\program files\Trend Micro
2009-08-22 11:28 . 2009-08-22 11:29	--------	d-----w-	c:\windows\system32\ca-ES
2009-08-22 11:28 . 2009-08-22 11:29	--------	d-----w-	c:\windows\system32\eu-ES
2009-08-22 11:28 . 2009-08-22 11:28	--------	d-----w-	c:\windows\system32\vi-VN
2009-08-22 11:17 . 2009-08-22 11:17	--------	d-----w-	c:\windows\system32\SPReview
2009-08-22 11:01 . 2009-04-10 21:28	928768	----a-w-	c:\windows\system32\scavenge.dll
2009-08-22 11:01 . 2009-04-10 21:27	57856	----a-w-	c:\windows\system32\compcln.exe
2009-08-22 10:59 . 2009-04-10 21:32	3601896	----a-w-	c:\windows\system32
tkrnlpa.exe
2009-08-22 10:58 . 2009-04-10 21:28	85504	----a-w-	c:\windows\system32\msctfui.dll
2009-08-22 10:57 . 2009-04-10 21:28	532992	----a-w-	c:\windows\system32\wpcao.dll
2009-08-21 23:45 . 2009-08-21 23:45	--------	d-----w-	c:\program files\Smart Projects
2009-08-21 21:00 . 2009-08-21 21:00	--------	d-----w-	c:\windows\system32\EventProviders
2009-08-21 18:59 . 2009-08-21 20:49	--------	d-----w-	C:\Lop SD
2009-08-21 18:13 . 2009-07-15 10:16	87888	----a-w-	c:\programdata\Symantec\Definitions\VirusDefs\20090821.007\NAVENG.SYS
2009-08-21 18:13 . 2009-07-15 10:16	875728	----a-w-	c:\programdata\Symantec\Definitions\VirusDefs\20090821.007\NAVEX15.SYS
2009-08-21 18:13 . 2009-07-15 10:16	371248	----a-w-	c:\programdata\Symantec\Definitions\VirusDefs\20090821.007\EECTRL.SYS
2009-08-21 18:13 . 2009-07-15 10:16	259368	----a-w-	c:\programdata\Symantec\Definitions\VirusDefs\20090821.007\ECMSVR32.DLL
2009-08-21 18:13 . 2009-07-15 10:16	2414128	----a-w-	c:\programdata\Symantec\Definitions\VirusDefs\20090821.007\CCERASER.DLL
2009-08-21 18:13 . 2009-07-15 10:16	177520	----a-w-	c:\programdata\Symantec\Definitions\VirusDefs\20090821.007\NAVENG32.DLL
2009-08-21 18:13 . 2009-07-15 10:16	1181040	----a-w-	c:\programdata\Symantec\Definitions\VirusDefs\20090821.007\NAVEX32A.DLL
2009-08-21 18:13 . 2009-07-15 10:16	101936	----a-w-	c:\programdata\Symantec\Definitions\VirusDefs\20090821.007\ERASER.SYS
2009-08-18 10:41 . 2009-07-15 10:16	87888	----a-w-	c:\programdata\Symantec\Definitions\VirusDefs\BinHub\NAVENG.SYS
2009-08-18 10:41 . 2009-07-15 10:16	875728	----a-w-	c:\programdata\Symantec\Definitions\VirusDefs\BinHub\NAVEX15.SYS
2009-08-18 10:41 . 2009-07-15 10:16	177520	----a-w-	c:\programdata\Symantec\Definitions\VirusDefs\BinHub\NAVENG32.DLL
2009-08-18 10:41 . 2009-07-15 10:16	1181040	----a-w-	c:\programdata\Symantec\Definitions\VirusDefs\BinHub\NAVEX32A.DLL
2009-08-18 10:41 . 2009-07-15 10:16	371248	----a-w-	c:\programdata\Symantec\Definitions\VirusDefs\BinHub\EECTRL.SYS
2009-08-18 10:41 . 2009-07-15 10:16	259368	----a-w-	c:\programdata\Symantec\Definitions\VirusDefs\BinHub\ECMSVR32.DLL
2009-08-18 10:41 . 2009-07-15 10:16	2414128	----a-w-	c:\programdata\Symantec\Definitions\VirusDefs\BinHub\CCERASER.DLL
2009-08-18 10:41 . 2009-07-15 10:16	101936	----a-w-	c:\programdata\Symantec\Definitions\VirusDefs\BinHub\ERASER.SYS
2009-08-17 21:32 . 2009-08-17 21:33	--------	d-----w-	c:\users\Ricardo\AppData\Local\Thunderbird
2009-08-17 21:32 . 2009-08-17 21:32	--------	d-----w-	c:\users\Ricardo\AppData\Roaming\Thunderbird
2009-08-17 21:31 . 2009-08-17 21:31	--------	d-----w-	c:\program files\Mozilla Thunderbird
2009-08-17 20:55 . 2009-08-17 20:55	--------	d-----w-	c:\users\Ricardo\AppData\Roaming\PeerNetworking
2009-08-17 19:47 . 2009-08-17 19:47	--------	d-----w-	c:\users\Ricardo\AppData\Local\MigWiz
2009-08-17 19:27 . 2009-08-17 19:27	--------	d-----w-	C:\DriveKey
2009-08-15 10:38 . 2009-08-15 10:37	66872	----a-w-	c:\windows\system32\PnkBstrA.exe
2009-08-15 10:37 . 2009-08-15 15:56	138184	----a-w-	c:\windows\system32\drivers\PnkBstrK.sys
2009-08-15 00:39 . 2009-08-15 15:56	183112	----a-w-	c:\windows\system32\PnkBstrB.exe
2009-08-15 00:38 . 2009-08-15 00:38	--------	d-----w-	c:\users\Ricardo\AppData\Local\PunkBuster
2009-08-14 23:16 . 2009-08-14 23:16	--------	d-----w-	c:\program files\EA Games
2009-08-14 21:20 . 2009-02-09 22:59	272432	----a-w-	c:\programdata\Symantec\Definitions\SymcData\idsdefs\20090811.001\IDSvix86.sys
2009-08-14 21:20 . 2009-02-09 22:59	251768	----a-w-	c:\programdata\Symantec\Definitions\SymcData\idsdefs\20090811.001\SymIDSCo.sys
2009-08-14 21:20 . 2009-02-09 22:59	685432	----a-w-	c:\programdata\Symantec\Definitions\SymcData\idsdefs\20090811.001\IDSxpx86.dll
2009-08-14 21:20 . 2009-02-09 22:59	173432	----a-w-	c:\programdata\Symantec\Definitions\SymcData\idsdefs\20090811.001\SymIDSI.dll
2009-08-14 21:20 . 2009-02-09 22:59	370224	----a-w-	c:\programdata\Symantec\Definitions\SymcData\idsdefs\20090811.001\IDSviA64.sys
2009-08-14 21:20 . 2007-11-06 16:28	157120	----a-w-	c:\programdata\Symantec\Definitions\SymcData\idsdefs\20090811.001\IDS9xx86.dll
2009-08-14 21:10 . 2008-09-29 04:09	1290584	----a-w-	c:\programdata\Symantec\SyKnAppS\Freezer\CAV\SyKnAppS.dll

.
((((((((((((((((((((((((((((((((((   Compte-rendu de Find3M   ))))))))))))))))))))))))))))))))))))))))))))))))
.
2009-08-22 18:24 . 2006-01-06 17:42	--------	d-----w-	c:\programdata\Symantec
2009-08-22 18:09 . 2007-06-30 14:01	--------	d-----w-	c:\programdata\Google Updater
2009-08-22 12:20 . 2008-08-28 19:39	3974440	----a-w-	c:\windows\system32\AdvrCntr3.dll
2009-08-22 12:01 . 2006-11-02 15:48	679042	----a-w-	c:\windows\system32\perfh00C.dat
2009-08-22 12:01 . 2006-11-02 15:48	128138	----a-w-	c:\windows\system32\perfc00C.dat
2009-08-22 11:56 . 2008-07-02 09:12	--------	d-----w-	c:\program files\Ascentive
2009-08-22 11:52 . 2007-06-11 19:13	0	----a-w-	c:\windows\system32\drivers\lvuvc.hs
2009-08-22 11:50 . 2007-06-25 16:15	12	----a-w-	c:\windows\bthservsdp.dat
2009-08-22 11:29 . 2006-11-02 12:37	--------	d-----w-	c:\program files\Windows Calendar
2009-08-22 11:29 . 2006-11-02 11:18	--------	d-----w-	c:\program files\Windows Mail
2009-08-22 11:29 . 2006-11-02 12:37	--------	d-----w-	c:\program files\Windows Sidebar
2009-08-22 11:29 . 2006-11-02 12:37	--------	d-----w-	c:\program files\Windows Collaboration
2009-08-22 11:29 . 2006-11-02 12:37	--------	d-----w-	c:\program files\Windows Journal
2009-08-22 11:29 . 2006-11-02 12:37	--------	d-----w-	c:\program files\Windows Photo Gallery
2009-08-22 11:29 . 2006-11-02 12:37	--------	d-----w-	c:\program files\Windows Defender
2009-08-22 11:28 . 2006-11-02 12:37	--------	d-----w-	c:\program files\Microsoft Games
2009-08-22 11:27 . 2006-11-02 10:25	665600	----a-w-	c:\windows\inf\drvindex.dat
2009-08-22 11:25 . 2007-06-11 19:09	--------	d-----w-	c:\program files\Common Files\LogiShrd
2009-08-22 11:14 . 2006-11-02 12:37	37665	----a-w-	c:\windows\Fonts\GlobalUserInterface.CompositeFont
2009-08-21 19:43 . 2008-10-03 19:01	--------	d-----w-	c:\users\Ricardo\AppData\Roaming\FileZilla
2009-08-18 10:59 . 2007-10-17 15:46	--------	d-----w-	c:\programdata\Spybot - Search & Destroy
2009-08-18 10:09 . 2009-05-18 00:26	--------	d-----w-	c:\program files\Steam
2009-08-17 19:27 . 2006-01-06 17:37	--------	d--h--w-	c:\program files\InstallShield Installation Information
2009-08-16 09:32 . 2008-01-11 18:26	--------	d-----w-	c:\program files\AskTBar
2009-08-15 21:58 . 2009-01-27 11:16	--------	d-----w-	c:\program files\Common Files\Steam
2009-08-15 01:18 . 2007-06-02 15:22	--------	d-----w-	c:\users\Ricardo\AppData\Roaming\LimeWire
2009-08-14 21:38 . 2008-01-14 17:55	--------	d-----w-	c:\program files\Messenger Plus! Live
2009-07-18 21:30 . 2009-07-18 21:30	680	----a-w-	c:\users\Ricardo\AppData\Local\d3d9caps.dat
2009-07-18 19:03 . 2009-07-18 19:03	--------	d-----w-	c:\users\Ricardo\AppData\Roaming\Red Kawa
2009-07-18 16:02 . 2009-07-18 16:02	--------	d-----w-	c:\program files\Regensoft
2009-07-18 16:02 . 2009-07-18 16:02	--------	d-----w-	c:\program files\Red Kawa
2009-07-18 13:18 . 2009-02-08 22:15	--------	d-----w-	c:\programdata\DVD Shrink
2009-07-18 13:16 . 2009-07-18 13:16	--------	d-----w-	c:\program files\DVD Shrink
2009-07-18 12:56 . 2009-07-18 12:56	--------	d-----w-	c:\program files\SlySoft
2009-07-17 19:14 . 2009-07-17 19:11	--------	d-----w-	c:\program files\iTunes
2009-07-17 19:12 . 2009-07-17 19:12	--------	d-----w-	c:\program files\iPod
2009-07-17 19:12 . 2008-11-04 18:26	--------	d-----w-	c:\program files\Common Files\Apple
2009-07-17 19:04 . 2009-07-17 19:02	--------	d-----w-	c:\program files\QuickTime
2009-07-17 19:02 . 2007-12-25 14:52	--------	d-----w-	c:\programdata\Apple Computer
2009-07-13 12:22 . 2009-07-13 12:22	75048	----a-w-	c:\programdata\Apple Computer\Installer Cache\iTunes 8.2.1.6\SetupAdmin.exe
2009-07-12 21:46 . 2009-07-12 16:17	--------	d-----w-	c:\program files\RPG Maker VX
2009-07-11 10:52 . 2009-07-11 10:52	390664	----a-w-	c:\users\Ricardo\AppData\Roaming\Real\RealPlayer\Updateealplayer11gold.exe
2009-07-11 10:52 . 2009-07-11 10:52	390664	------w-	c:\users\Ricardo\AppData\Roaming\Real\Update	emp\~Upg3ealplayer11gold.exe
2009-07-11 10:22 . 2008-07-15 17:37	--------	d-----w-	c:\users\Ricardo\AppData\Roaming\MAGIX
2009-07-11 10:21 . 2008-07-15 16:48	--------	d-----w-	c:\programdata\MAGIX
2009-07-11 10:21 . 2009-07-11 10:19	--------	d-----w-	c:\program files\MAGIX
2009-07-08 20:10 . 2009-07-08 19:56	--------	d-----w-	c:\users\Ricardo\AppData\Roaming\ESTsoft
2009-07-08 20:10 . 2009-07-08 20:10	--------	d-----w-	c:\programdata\Estsoft
2009-07-08 19:56 . 2009-07-08 19:56	--------	d-----w-	c:\program files\ESTsoft
2009-07-06 18:27 . 2009-07-06 20:43	52224	----a-w-	c:\users\Ricardo\AppData\Roaming\Mozilla\Firefox\Profiles\vc27oisf.default\extensions\{b67b6dca-f38b-4a5a-98ca-73062ffbc4d2}\components\FFExternalAlert.dll
2009-07-06 18:27 . 2009-07-06 20:43	114688	----a-w-	c:\users\Ricardo\AppData\Roaming\Mozilla\Firefox\Profiles\vc27oisf.default\extensions\{b67b6dca-f38b-4a5a-98ca-73062ffbc4d2}\components
pmozax.dll
2009-07-03 10:51 . 2009-07-03 10:51	390664	------w-	c:\users\Ricardo\AppData\Roaming\Real\Update	emp\~Upg2ealplayer11gold.exe
2009-07-01 12:55 . 2009-07-01 12:55	--------	d-----w-	c:\programdata\SFR
2009-07-01 11:30 . 2009-03-24 20:36	--------	d-----w-	c:\users\Ricardo\AppData\Roaming\vlc
2009-07-01 10:54 . 2009-07-01 10:54	--------	d-----w-	c:\program files\VideoLAN
2009-06-30 17:19 . 2009-06-30 17:19	--------	d-----w-	c:\program files\Gomez
2009-06-30 11:53 . 2008-07-15 16:19	--------	d-----w-	c:\users\Ricardo\AppData\Roaming\BitTorrent
2009-06-29 19:08 . 2007-10-19 19:03	--------	d-----w-	c:\users\Ricardo\AppData\Roaming\OpenOffice.org2
2009-06-29 19:01 . 2007-10-19 22:13	1	----a-w-	c:\users\Ricardo\AppData\Roaming\OpenOffice.org2\user\uno_packages\cache\stamp.sys
2009-06-26 20:30 . 2008-01-21 17:14	--------	d-----w-	c:\program files\Windows Live Safety Center
2009-06-24 20:33 . 2009-06-24 20:05	52224	----a-w-	c:\users\Ricardo\AppData\Roaming\Mozilla\Firefox\Profiles\vc27oisf.default\extensions\{eda98a0e-a71e-456e-857a-544ad2670162}\components\FFExternalAlert.dll
2009-06-24 20:33 . 2009-06-24 20:05	114688	----a-w-	c:\users\Ricardo\AppData\Roaming\Mozilla\Firefox\Profiles\vc27oisf.default\extensions\{eda98a0e-a71e-456e-857a-544ad2670162}\components
pmozax.dll
2009-06-24 17:55 . 2007-06-02 21:41	--------	d-----w-	c:\program files\Google
2009-06-22 10:51 . 2009-06-22 10:51	390664	------w-	c:\users\Ricardo\AppData\Roaming\Real\Update	emp\~Upg1ealplayer11gold.exe
2009-06-05 09:42 . 2009-06-05 09:42	39424	----a-w-	c:\windows\system32\drivers\usbaapl.sys
2009-06-05 09:42 . 2009-06-05 09:42	2060288	----a-w-	c:\windows\system32\usbaaplrc.dll
2009-05-25 12:01 . 2009-05-25 12:01	89256	----a-w-	c:\windows\system32\ElbyCDIO.dll
.

(((((((((((((((((((((((((((((((((   Points de chargement Reg   ))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Note* les éléments vides & les éléments initiaux légitimes ne sont pas listés 
REGEDIT4

[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\URLSearchHooks]
"{da30eff8-ccc6-4162-a20d-67402a26a215}"= "c:\program files\Best_Security_Tips	bBest.dll" [2008-07-10 1600024]

[HKEY_CLASSES_ROOT\clsid\{da30eff8-ccc6-4162-a20d-67402a26a215}]

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{da30eff8-ccc6-4162-a20d-67402a26a215}]
2008-07-10 12:04	1600024	----a-w-	c:\program files\Best_Security_Tips	bBest.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
"{da30eff8-ccc6-4162-a20d-67402a26a215}"= "c:\program files\Best_Security_Tips	bBest.dll" [2008-07-10 1600024]

[HKEY_CLASSES_ROOT\clsid\{da30eff8-ccc6-4162-a20d-67402a26a215}]

[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Toolbar\Webbrowser]
"{DA30EFF8-CCC6-4162-A20D-67402A26A215}"= "c:\program files\Best_Security_Tips	bBest.dll" [2008-07-10 1600024]

[HKEY_CLASSES_ROOT\clsid\{da30eff8-ccc6-4162-a20d-67402a26a215}]

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"msnmsgr"="c:\program files\Windows Live\Messenger\MsnMsgr.Exe" [2009-02-06 3885408]
"ISUSPM Startup"="c:\program files\Common Files\InstallShield\UpdateService\ISUSPM.exe" [2005-08-11 249856]
"Google Update"="c:\users\Ricardo\AppData\Local\Google\Update\GoogleUpdate.exe" [2009-05-11 133104]
"swg"="c:\program files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe" [2007-06-30 68856]
"ehTray.exe"="c:\windows\ehome\ehTray.exe" [2008-01-19 125952]
"WMPNSCFG"="c:\program files\Windows Media Player\WMPNSCFG.exe" [2008-01-19 202240]
"SpybotSD TeaTimer"="c:\program files\Spybot - Search & Destroy\TeaTimer.exe" [2008-07-07 2156368]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"c:\windows\system32\V0270Ext.ax"="c:\windows\system32\V0270Ext.ax" [X]
"V0270Mon.exe"="c:\windows\V0270Mon.exe" [2006-09-11 32768]
"Windows Mobile Device Center"="c:\windows\WindowsMobile\wmdc.exe" [2007-05-31 648072]
"Performance Center"="c:\program files\Ascentive\Performance Center\ApcMain.exe" [2008-03-13 3239936]
"Symantec PIF AlertEng"="c:\program files\Common Files\Symantec Shared\PIF\{B8E1DD85-8582-4c61-B58F-2F227FCA9A08}\PIFSvc.exe" [2008-01-29 583048]
"fssui"="c:\program files\Windows Live\Family Safety\fsui.exe" [2009-02-06 454000]
"Adobe Reader Speed Launcher"="c:\program files\Adobe\Reader 8.0\Reader\Reader_sl.exe" [2008-10-15 39792]
"ccApp"="c:\program files\Common Files\Symantec Shared\ccApp.exe" [2007-02-19 115816]
"RtHDVCpl"="RtHDVCpl.exe" - c:\windows\RtHDVCpl.exe [2006-11-09 3784704]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce]
"SoftwareHelper"="c:\users\Ricardo\AppData\Roaming\eoRezo\SoftwareUpdate\SoftwareUpdateHP.exe" [2008-12-09 368224]

[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run]
"msnmsgr"="c:\program files\Windows Live\Messenger\msnmsgr.exe" [2009-02-06 3885408]

c:\users\… moi\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\
OpenOffice.org 2.3.lnk - c:\program files\OpenOffice.org 2.3\program\quickstart.exe [2007-8-17 393216]

c:\programdata\Microsoft\Windows\Start Menu\Programs\Startup\
Adobe Gamma Loader.lnk - c:\program files\Common Files\Adobe\Calibration\Adobe Gamma Loader.exe [2008-8-17 113664]
Empowering Technology Launcher.lnk - c:\acer\Empowering Technology\eAPLauncher.exe [2006-1-6 528384]

c:\users\Ricardo\AppData\Roaming\MICROS~1\Windows\STARTM~1\Programs\Startup\
Need for SpeedT Undercover Registration.lnk - c:\program files\EA Games\Need for Speed Undercover\Support\EAregister.exe [2008-10-22 4369408]

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"EnableLUA"= 0 (0x0)
"EnableUIADesktopToggle"= 0 (0x0)

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\WinDefend]
@="Service"

[HKLM\~\startupfolder\C:^Users^Ricardo^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^GomezPEER.lnk]
path=c:\users\Ricardo\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\GomezPEER.lnk
backup=c:\windows\pss\GomezPEER.lnk.Startup
backupExtension=.Startup

[HKLM\~\startupfolder\C:^Users^Ricardo^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^IMVU.lnk]
path=c:\users\Ricardo\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\IMVU.lnk
backup=c:\windows\pss\IMVU.lnk.Startup
backupExtension=.Startup

[HKLM\~\startupfolder\C:^Users^Ricardo^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^UltimateZip Quick Start.lnk]
path=c:\users\Ricardo\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\UltimateZip Quick Start.lnk
backup=c:\windows\pss\UltimateZip Quick Start.lnk.Startup
backupExtension=.Startup

[HKEY_LOCAL_MACHINE\software\microsoft\security center]
"UacDisableNotify"=dword:00000001
"InternetSettingsDisableNotify"=dword:00000001
"AutoUpdateDisableNotify"=dword:00000001

[HKEY_LOCAL_MACHINE\software\microsoft\security center\Monitoring]
"DisableMonitoring"=dword:00000001

[HKEY_LOCAL_MACHINE\software\microsoft\security center\Monitoring\SymantecAntiVirus]
"DisableMonitoring"=dword:00000001

[HKEY_LOCAL_MACHINE\software\microsoft\security center\Monitoring\SymantecFirewall]
"DisableMonitoring"=dword:00000001

[HKEY_LOCAL_MACHINE\software\microsoft\security center\Svc]
"VistaSp2"=hex(b):03,68,28,d1,1c,23,ca,01

[HKLM\~\services\sharedaccess\parameters\firewallpolicy\FirewallRules]
"{CBA664D7-7845-4748-A78F-A801EA076BBF}"= UDP:c:\program files\Acer Zone\Acer Zone Main Page\MCE Deluxe Suite.exe:CyberLink MCE Deluxe Suite
"{88ECF735-BA95-4C4C-B1DD-F8A0505D0210}"= TCP:c:\program files\Acer Zone\Acer Zone Main Page\MCE Deluxe Suite.exe:CyberLink MCE Deluxe Suite
"{BDE6C266-D4E0-412E-8BDC-137FDAFD962D}"= UDP:c:\program files\Acer Zone\Acer Picture Slide DVD\Component\CLSLDVD.exe:Cyberlink Picture Slide DVD workprocess
"{95A589C8-AC04-4F93-BBA6-CFE965C0573A}"= TCP:c:\program files\Acer Zone\Acer Picture Slide DVD\Component\CLSLDVD.exe:Cyberlink Picture Slide DVD workprocess
"{9357837E-EEB8-4804-AEE7-FBB2A61280F4}"= UDP:c:\program files\Acer Zone\Acer Plug and Record\Component\ARAWP.exe:Cyberlink Plug and Record ARA workprocess
"{6539D799-7174-4EA6-AFEC-7E368AF33207}"= TCP:c:\program files\Acer Zone\Acer Plug and Record\Component\ARAWP.exe:Cyberlink Plug and Record ARA workprocess
"{3644AAC3-5A91-49CD-AFF0-3574437F4077}"= UDP:c:\program files\Acer Zone\Acer Plug and Record\Component\DVAX2Process.exe:Cyberlink Plug and Record AVAX workprocess
"{BDD9BF01-7BE7-4893-B26C-DBF76962231A}"= TCP:c:\program files\Acer Zone\Acer Plug and Record\Component\DVAX2Process.exe:Cyberlink Plug and Record AVAX workprocess
"{D107C740-DFB4-4E00-9C4E-0465AC8388A5}"= UDP:c:\program files\Acer Zone\Acer Zone SoftDMA\SoftDMA.exe:CyberLink SoftDMA
"{E2EC3638-EB6F-463F-AD0E-8C6100D6E4DD}"= TCP:c:\program files\Acer Zone\Acer Zone SoftDMA\SoftDMA.exe:CyberLink SoftDMA
"{090C4225-BFE2-4FDA-9CC5-DC28506E3A0F}"= UDP:c:\program files\LimeWire\LimeWire.exe:LimeWire
"{6B091040-2CEA-4BD3-8FC6-972BC9A701DF}"= TCP:c:\program files\LimeWire\LimeWire.exe:LimeWire
"TCP Query User{187C878F-9E9F-407C-98F2-B09CD0FEA47B}c:\program files\sopcast\sopcast.exe"= UDP:c:\program files\sopcast\sopcast.exe:SopCast Main Application
"UDP Query User{5D6F6DE0-81B3-4F86-BB8C-4EFBE983C3F0}c:\program files\sopcast\sopcast.exe"= TCP:c:\program files\sopcast\sopcast.exe:SopCast Main Application
"TCP Query User{DD5A6429-1DAA-48E8-B174-0C44E4249214}c:\users\ricardo\appdata\roaming\sopcast\adv\sopadver.exe"= UDP:c:\usersicardo\appdataoaming\sopcast\adv\sopadver.exe:sopadver.exe
"UDP Query User{05BBCDC2-F18D-4776-B0B3-F43DDA536A1D}c:\users\ricardo\appdata\roaming\sopcast\adv\sopadver.exe"= TCP:c:\usersicardo\appdataoaming\sopcast\adv\sopadver.exe:sopadver.exe
"{4959FD92-D8D5-439F-B3EA-3EDFB5E080C2}"= Disabled:UDP:c:\program files\IncrediMail\bin\ImpCnt.exe:IncrediMail
"{2E956A26-8394-4DFD-BF8D-A099154B7DAB}"= Disabled:TCP:c:\program files\IncrediMail\bin\ImpCnt.exe:IncrediMail
"{2184E950-7181-4CFA-B123-C5DFA054221C}"= Disabled:UDP:c:\program files\IncrediMail\bin\IncMail.exe:IncrediMail
"{8130ECDA-92C3-424F-B41D-6070D1CF6A47}"= Disabled:TCP:c:\program files\IncrediMail\bin\IncMail.exe:IncrediMail
"{3A1A4DDC-F366-424C-920A-20CABFD916CF}"= Disabled:UDP:c:\program files\IncrediMail\bin\ImApp.exe:IncrediMail
"{EA3DE179-B1C2-4359-97EF-6398307EE077}"= Disabled:TCP:c:\program files\IncrediMail\bin\ImApp.exe:IncrediMail
"{6F853006-2957-44A8-9F04-080EA13D14B0}"= Disabled:UDP:c:\program files\Magentic\bin\MgImp.exe:Magentic
"{7833FC8C-A22F-47C7-82A8-FEFC7845AB6C}"= Disabled:TCP:c:\program files\Magentic\bin\MgImp.exe:Magentic
"{257AC152-B740-4141-B7BD-577DFC0AE264}"= Disabled:UDP:c:\program files\Magentic\bin\MgApp.exe:Magentic
"{5B6336E6-ED90-46FC-902A-D3B33B274A65}"= Disabled:TCP:c:\program files\Magentic\bin\MgApp.exe:Magentic
"{01BD686F-9D2E-4FE1-A92B-1A0AAC3D0512}"= Disabled:UDP:c:\program files\Magentic\bin\Magentic.exe:Magentic
"{C6356A0F-3D66-4306-A937-7A8DD7F38A33}"= Disabled:TCP:c:\program files\Magentic\bin\Magentic.exe:Magentic
"TCP Query User{26042D68-A201-4DCD-8279-7792437EA9DF}c:\program files\sightspeed\sightspeed.exe"= UDP:c:\program files\sightspeed\sightspeed.exe:SightSpeed
"UDP Query User{C784F2EE-A9A9-442D-9CF2-38096B028519}c:\program files\sightspeed\sightspeed.exe"= TCP:c:\program files\sightspeed\sightspeed.exe:SightSpeed
"TCP Query User{46289BC1-086C-4084-91E4-CF1F72E0202C}c:\config.msi\641c3.rbf"= UDP:c:\config.msi\641c3.rbf:Messenger
"UDP Query User{AD46BDCE-F1E0-406E-8C2F-5980858B71B0}c:\config.msi\641c3.rbf"= TCP:c:\config.msi\641c3.rbf:Messenger
"TCP Query User{E8A11DB2-A1E9-4F56-9EBD-0D1B30563C14}c:\config.msi\24ecd.rbf"= UDP:c:\config.msi\24ecd.rbf:Messenger
"UDP Query User{1F430A55-F383-4C72-990F-470DDDEF89D9}c:\config.msi\24ecd.rbf"= TCP:c:\config.msi\24ecd.rbf:Messenger
"TCP Query User{FDAF5C10-BF06-4844-87B3-E9B2FE748E43}c:\program files\outlook messenger\outlookmessenger.exe"= UDP:c:\program files\outlook messenger\outlookmessenger.exe:Outlook LAN Messenger
"UDP Query User{5D5B2D34-B00C-44B0-B3A8-7593484D76CE}c:\program files\outlook messenger\outlookmessenger.exe"= TCP:c:\program files\outlook messenger\outlookmessenger.exe:Outlook LAN Messenger
"{F8132DAF-2429-4001-ACF5-F05A4A3E2429}"= UDP:c:\program files\RayV\RayV\RayV.exe:RayV
"{077B1430-A2E4-49D1-BA9A-C2CA89CD539E}"= TCP:c:\program files\RayV\RayV\RayV.exe:RayV
"{C78AB091-E1F7-4BB8-8DF5-6864AB2C5829}"= UDP:c:\program files\PPLive\PPLive.exe:PPLive
"{D63828CE-F0F5-4221-83E2-281D0D76EB0D}"= TCP:c:\program files\PPLive\PPLive.exe:PPLive
"TCP Query User{9D609AC7-8845-4E01-ACEE-C65D2A5A8994}c:\program files\kyuubi-barre\jre1.6.0\launch4j-tmp\kb.exe"= UDP:c:\program files\kyuubi-barre\jre1.6.0\launch4j-tmp\kb.exe:Java(TM) Platform SE binary
"UDP Query User{AB47C120-2276-4EC0-A0DB-FE9D7D13FA9A}c:\program files\kyuubi-barre\jre1.6.0\launch4j-tmp\kb.exe"= TCP:c:\program files\kyuubi-barre\jre1.6.0\launch4j-tmp\kb.exe:Java(TM) Platform SE binary
"TCP Query User{60729171-9449-420E-84FD-DF486ED3213E}c:\program files\crazy browser\crazy browser.exe"= UDP:c:\program files\crazy browser\crazy browser.exe:Crazy Browser
"UDP Query User{03222D0A-709C-4653-8DFB-A3DECBA65B99}c:\program files\crazy browser\crazy browser.exe"= TCP:c:\program files\crazy browser\crazy browser.exe:Crazy Browser
"TCP Query User{655C2C82-3640-4970-8326-D6F8E904311A}c:\program files\tvants\tvants.exe"= UDP:c:\program files	vants	vants.exe:TVAnts
"UDP Query User{84BF91CF-5925-4371-BFCB-604B910644C7}c:\program files\tvants\tvants.exe"= TCP:c:\program files	vants	vants.exe:TVAnts
"{D5CC803C-8D13-400D-A62E-51E0517E44F6}"= UDP:41451:SolidNetworkManager
"{4C283952-F151-4C7E-BBF3-AADB1D8DE8BA}"= TCP:41451:SolidNetworkManager
"{84B6D75E-D9E7-415A-90F2-8750C51BD208}"= Disabled:UDP:17554:SolidNetworkManager
"{9C26C80A-6702-4AE9-AF65-B6822106DDBB}"= Disabled:TCP:17554:SolidNetworkManager
"{CEB6716D-0188-499D-AE80-9DC7C5FF2537}"= UDP:48113:LocalSubnet:LocalSubnet:maconfig_tcp
"{14414E1B-D94D-4E2F-8081-772AA02E272A}"= TCP:48113:LocalSubnet:LocalSubnet:maconfig_udp
"{F5971C41-5E37-43A0-87DB-69ED83E715B8}"= UDP:c:\program files\ma-config.com\maconfservice.exe:maconfservice
"{F5188A7D-A8B5-4B5F-991C-2099FC11E467}"= TCP:c:\program files\ma-config.com\maconfservice.exe:maconfservice
"{7A25B3B4-AC76-4E45-BD10-2FB0E14D1E9F}"= UDP:c:\program files\BitTorrent\bittorrent.exe:BitTorrent
"{471FADA7-46C0-46B1-9D2B-F9C2A8BF188E}"= TCP:c:\program files\BitTorrent\bittorrent.exe:BitTorrent
"{6F484811-531D-4F2B-BB0B-F44BE538755B}"= UDP:c:\program files\Veoh Networks\VeohWebPlayer\veohwebplayer.exe:Veoh Web Player 
"{A8B2C001-0C3C-4248-ACAD-D1AD184A544B}"= TCP:c:\program files\Veoh Networks\VeohWebPlayer\veohwebplayer.exe:Veoh Web Player 
"{996D2861-ADAF-4044-80E2-2AF1501CCB95}"= UDP:c:\program files\Bonjour\mDNSResponder.exe:Bonjour
"{14305CFE-0854-4FF5-93FB-368264A4DF2A}"= TCP:c:\program files\Bonjour\mDNSResponder.exe:Bonjour
"{8788AF0D-73F6-4BA1-B0AE-DDD356E69FEC}"= UDP:c:\program files\DNA\btdna.exe:DNA (TCP-In)
"{5F8FA90E-19A1-4C02-9A69-57386AEBD765}"= TCP:c:\program files\DNA\btdna.exe:DNA (UDP-In)
"{BC48F419-BE64-4008-A11C-E94053F7CC6B}"= UDP:c:\program files\BitTorrent\bittorrent.exe:BitTorrent (TCP-In)
"{19702841-2C89-4ADC-9F20-26CCC2ABA047}"= TCP:c:\program files\BitTorrent\bittorrent.exe:BitTorrent (UDP-In)
"{3F919615-5226-4B3E-84E8-AC4A281085F8}"= c:\program files\Windows Live\Sync\WindowsLiveSync.exe:Windows Live Sync
"{A1CDB990-441F-4BF0-8FDB-9B3FE6FD8255}"= UDP:c:\program files\AeriaGames\ProjectTorque\ProjectTorque.bin:Project Torqu
"{C2141C54-67BC-401B-9D53-ACF1730FF683}"= TCP:c:\program files\AeriaGames\ProjectTorque\ProjectTorque.bin:Project Torqu
"{995E786E-B6CA-4132-9E45-62D0C3549495}"= UDP:c:\program files\Logitech\Logitech Vid\Vid.exe:Logitech Vid
"{6A08F31B-CB83-4624-9825-58F6FDB00AD3}"= TCP:c:\program files\Logitech\Logitech Vid\Vid.exe:Logitech Vid
"{35A59725-AABD-4DC8-AEDC-20B0A3F739B7}"= UDP:c:\program files\iTunes\iTunes.exe:iTunes
"{E35AB045-1299-4333-A381-BCC4B6BA5E73}"= TCP:c:\program files\iTunes\iTunes.exe:iTunes

[HKLM\~\services\sharedaccess\parameters\firewallpolicy\PublicProfile]
"EnableFirewall"= 0 (0x0)

[HKLM\~\services\sharedaccess\parameters\firewallpolicy\StandardProfile\AuthorizedApplications\List]
"c:\Program Files\BitTorrent\bittorrent.exe"= c:\program files\BitTorrent\bittorrent.exe:*:Enabled:BitTorrent

R2 gupdate1c9d1ceab48b93b;Google Update Service (gupdate1c9d1ceab48b93b);c:\program files\Google\Update\GoogleUpdate.exe [2009-05-11 133104]
R3 FirebirdServerMAGIXInstance;Firebird Server - MAGIX Instance;c:\program files\MAGIX\Common\Database\bin\fbserver.exe [2005-11-17 1527900]
R3 maconfservice;Ma-Config Service;c:\program files\ma-config.com\maconfservice.exe [2008-06-26 576680]
R3 ManyCam;ManyCam Virtual Webcam, WDM Video Capture Driver;c:\windows\system32\DRIVERS\ManyCam.sys [x]
R3 VF0270Dev;Live! Cam Optia;c:\windows\system32\DRIVERS\V0270Dev.sys [2006-09-12 221152]
R3 VF0270Vfx;VF0270 Video FX;c:\windows\system32\DRIVERS\V0270VFx.sys [2006-06-19 6912]
S1 IDSvix86;Symantec Intrusion Prevention Driver;c:\progra~2\Symantec\DEFINI~1\SymcData\idsdefs\20090811.001\IDSvix86.sys [2009-02-09 272432]
S2 fssfltr;fssfltr;c:\windows\system32\DRIVERS\fssfltr.sys [2008-12-08 55264]
S2 fsssvc;Windows Live Contrôle parental;c:\program files\Windows Live\Family Safety\fsssvc.exe [2009-02-06 533360]
S2 MyWebSearchService;My Web Search Service;c:\progra~1\MYWEBS~1\bar\1.bin\mwssvc.exe [x]
S3 EraserUtilRebootDrv;EraserUtilRebootDrv;c:\program files\Common Files\Symantec Shared\EENGINE\EraserUtilRebootDrv.sys [2009-05-13 101936]
S3 SYMNDISV;SYMNDISV;c:\windows\System32\Drivers\SYMNDISV.SYS [2008-10-03 37936]


--- Autres Services/Pilotes en mémoire ---

*NewlyCreated* - COMHOST

[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\svchost]
bthsvcs	REG_MULTI_SZ   	BthServ
WindowsMobile	REG_MULTI_SZ   	wcescomm rapimgr
LocalServiceRestricted	REG_MULTI_SZ   	WcesComm RapiMgr
rsmsvcs	REG_MULTI_SZ   	ntmssvc

[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{5502b964-a34a-11dd-bdbd-001921e2ec4e}]
\shell\AutoRun\command - start.exe
\shell\iledefrance\command - start.exe

[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{61d000b8-e54b-11dc-9077-001921e2ec4e}]
\shell\AutoRun\command - RavMon.exe

[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{92636aac-e54a-11dc-9de5-001921e2ec4e}]
\shell\AutoRun\command - c:\windows\system32\RunDLL32.EXE Shell32.DLL,ShellExec_RunDLL f:\launcher\launcher.exe

[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{dbc86506-2e97-11de-a9e7-001921e2ec4e}]
\shell\AutoRun\command - c:\windows\system32\RunDLL32.EXE Shell32.DLL,ShellExec_RunDLL www.hccglobal.com

[HKEY_LOCAL_MACHINE\software\microsoft\active setup\installed components\>{60B49E34-C7CC-11D0-8953-00A0C90347FF}]
"c:\windows\System32undll32.exe" "c:\windows\System32\iedkcs32.dll",BrandIEActiveSetup SIGNUP
.
Contenu du dossier 'Tâches planifiées'

2009-08-22 c:\windows\Tasks\Google Software Updater.job
- c:\program files\Google\Common\Google Updater\GoogleUpdaterService.exe [2007-06-04 18:26]

2009-08-22 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job
- c:\program files\Google\Update\GoogleUpdate.exe [2009-05-11 00:22]

2009-08-22 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job
- c:\program files\Google\Update\GoogleUpdate.exe [2009-05-11 00:22]

2009-08-19 c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-2799193080-3415097235-2351408868-1000Core.job
- c:\users\Ricardo\AppData\Local\Google\Update\GoogleUpdate.exe [2009-05-23 00:22]

2009-08-22 c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-2799193080-3415097235-2351408868-1000UA.job
- c:\users\Ricardo\AppData\Local\Google\Update\GoogleUpdate.exe [2009-05-23 00:22]

2009-07-13 c:\windows\Tasks\Norton Internet Security Online - Analyse système complète - Ricardo.job
- c:\program files\Norton Internet Security\Norton AntiVirus\Navw32.exe [2007-02-19 17:26]

2009-08-22 c:\windows\Tasks\User_Feed_Synchronization-{64150592-A591-47BE-8A35-96203D1A945B}.job
- c:\windows\system32\msfeedssync.exe [2009-01-01 10:01]
.
- - - - ORPHELINS SUPPRIMES - - - -

URLSearchHooks-{6638A9DE-0745-4292-8A2E-AE530E7B9B3F} - (no file)
BHO-{C4EC4403-3E2C-44F3-A2EC-B31B91D3FD11} - c:\program files\BarreMagique\sms-illimite.dll
WebBrowser-{6638A9DE-0745-4292-8A2E-AE530E7B9B3F} - (no file)
WebBrowser-{A057A204-BACC-4D26-8287-79A187E26987} - (no file)
HKLM-Run-PC SpeedScan Pro - c:\users\Ricardo\Desktop\123\PCSpeedScan.exe
HKLM-Run-EoEngine - (no file)


.
------- Examen supplémentaire -------
.
uStart Page = hxxp://www.msn.com
uSearchMigratedDefaultURL = hxxp://search.yahoo.com/search?p={searchTerms}&ei=utf-8&fr=b1ie7
mStart Page = hxxp://fr.yahoo.com
uInternet Settings,ProxyOverride = *.local
IE: &Search - ?p=ZSzim029MXFR
IE: E&xporter vers Microsoft Excel - c:\progra~1\MICROS~2\Office12\EXCEL.EXE/3000
IE: {{d9288080-1baa-4bc4-9cf8-a92d743db949} - c:\users\Ricardo\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\IMVU\Run IMVU.lnk
Trusted Zone: localhost
Trusted Zone: maxicodes.com\www
Trusted Zone: toocharger.com\www
TCP: {CB150540-7459-451F-BE4E-392551A5C409} = 85.255.112.70,85.255.112.127
DPF: CabBuilder - hxxp://kiw.imgag.com/imgag/kiw/toolbar/download/InstallerControl.cab
DPF: {070CA17A-4BD2-4612-83B4-32B1B9159B47} - hxxp://uc.sina.com.cn/download/live/weblive2.4.0.0.cab
FF - ProfilePath - c:\users\Ricardo\AppData\Roaming\Mozilla\Firefox\Profiles\vc27oisf.default\
FF - prefs.js: browser.search.defaulturl - hxxp://www.fastbrowsersearch.com/results/results.aspx?s=DEF&v=18&q=
FF - prefs.js: browser.search.selectedEngine - Fast Browser Search
FF - prefs.js: browser.startup.homepage - hxxp://www.google.fr/webhp?hl=fr
FF - component: c:\program files\Real\RealPlayer\browserrecord\components
prpbrowserrecordplugin.dll
FF - component: c:\users\Ricardo\AppData\Roaming\Mozilla\Firefox\Profiles\vc27oisf.default\extensions\{3112ca9c-de6d-4884-a869-9855de68056c}\components\googletoolbar.dll
FF - component: c:\users\Ricardo\AppData\Roaming\Mozilla\Firefox\Profiles\vc27oisf.default\extensions\{3112ca9c-de6d-4884-a869-9855de68056c}\components\metrics.dll
FF - component: c:\users\Ricardo\AppData\Roaming\Mozilla\Firefox\Profiles\vc27oisf.default\extensions\{b67b6dca-f38b-4a5a-98ca-73062ffbc4d2}\components\FFExternalAlert.dll
FF - component: c:\users\Ricardo\AppData\Roaming\Mozilla\Firefox\Profiles\vc27oisf.default\extensions\{da30eff8-ccc6-4162-a20d-67402a26a215}\components\FFAlert.dll
FF - component: c:\users\Ricardo\AppData\Roaming\Mozilla\Firefox\Profiles\vc27oisf.default\extensions\{eda98a0e-a71e-456e-857a-544ad2670162}\components\FFExternalAlert.dll
FF - component: c:\users\Ricardo\AppData\Roaming\Mozilla\Firefox\Profiles\vc27oisf.default\extensions\capturefoxmovie@advancity.net\components	est.dll
FF - plugin: c:\program files\Google\Google Earth Plugin
pgeplugin.dll
FF - plugin: c:\program files\Google\Google Updater\2.4.1536.6592
pCIDetect13.dll
FF - plugin: c:\program files\Google\Update\1.2.183.7
pGoogleOneClick8.dll
FF - plugin: c:\program files\ma-config.com
phardwaredetection.dll
FF - plugin: c:\program files\Mozilla Firefox\plugins
p-mswmp.dll
FF - plugin: c:\program files\Mozilla Firefox\plugins
pbittorrent.dll
FF - plugin: c:\program files\Mozilla Firefox\plugins
prayvplugin.dll
FF - plugin: c:\program files\Veoh Networks\VeohWebPlayer\NPVeohTVPlugin.dll
FF - plugin: c:\program files\Veoh Networks\VeohWebPlayer
pWebPlayerVideoPluginATL.dll
FF - plugin: c:\program files\Windows Live\Photo Gallery\NPWLPG.dll
FF - plugin: c:\users\Ricardo\AppData\Local\Google\Update\1.2.183.7
pGoogleOneClick8.dll
FF - plugin: c:\users\Ricardo\AppData\Roaming\Mozilla\Firefox\Profiles\vc27oisf.default\extensions\{bb628310-0ab7-11db-9cd8-0800200c9a66}\plugins
phardwaredetection.dll
.

**************************************************************************

catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2009-08-22 21:46
Windows 6.0.6002 Service Pack 2 NTFS

Recherche de processus cachés ... 

Recherche d'éléments en démarrage automatique cachés ... 

Recherche de fichiers cachés ... 

Scan terminé avec succès
Fichiers cachés: 0

**************************************************************************
.
--------------------- CLES DE REGISTRE BLOQUEES ---------------------

[HKEY_LOCAL_MACHINE\system\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0000\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
.
Heure de fin: 2009-08-22 21:56
ComboFix-quarantined-files.txt  2009-08-22 19:56

Avant-CF: 40 787 079 168 octets libres
Après-CF: 42 966 999 040 octets libres

426	--- E O F ---	2009-02-03 21:06

ric025 · Answer

Ok.

Fais ce qui suit : 

ToolbarSD : nettoyage

&#x25B6; Télécharge Toolbar-S&D (de Team IDN) sur ton Bureau
 
&#x25B6; Lance l'installation du programme en exécutant le fichier téléchargé.

&#x25B6; Sous Vista : Fais un clic droit sur ToolbarSD et sélectionne "Exécuter en tant qu'administrateur".

&#x25B6; Sélectionne la langue souhaitée en tapant la lettre de ton choix puis en validant avec la touche Entrée.

&#x25B6; Tape sur "2" puis valide en appuyant sur "Entrée".

/!\ Ne ferme pas la fenêtre lors de la suppression /!\

&#x25B6; Un rapport sera généré, poste son contenu ici.

NOTE : Si ton Bureau ne réapparait pas, appuie simultanément sur Ctrl+Alt+Suppr pour ouvrir le Gestionnaire des tâches.
Rends-toi sur l'onglet "Processus". Clique en haut à gauche sur Fichier et choisis "Exécuter..."
Tape explorer puis valide.

Ce qu'il faut savoir sur les toolbars (barres d'outils)

===============================

• Télécharge et installe UsbFix par Chiquitine29

 (!) Branche tes sources de données externes à ton PC, (clé USB, disque dur externe, etc...) susceptibles d'avoir été infectées sans les ouvrir

• Double clique sur le raccourci UsbFix présent sur ton bureau .

• Au menu principal choisis l'option " F " pour français et tape sur [entrée] . 

• Au second menu Choisis l'option " 1 " (recherche) et tape sur [entrée] 

• Laisse travailler l'outil.

• Ensuite poste le rapport UsbFix.txt qui apparaitra.

• Note : Le rapport UsbFix.txt est sauvegardé a la racine du disque. ( C:\UsbFix.txt )

( CTRL+A Pour tout sélectionner , CTRL+C pour copier et CTRL+V pour coller ) 

• Note : "Process.exe", une composante de l'outil, est détecté par certains antivirus (AntiVir, Dr.Web, Kaspersky Anti-Virus) comme étant un RiskTool. 
          Il ne s'agit pas d'un virus, mais d'un utilitaire destiné à mettre fin à des processus. 
          Mis entre de mauvaises mains, cet utilitaire pourrait arrêter des logiciels de sécurité (Antivirus, Firewall...) d'où l'alerte émise par ces antivirus. 


• Tuto : http://pagesperso-orange.fr/NosTools/usbfix.html

++

Rjmdm · Answer

Bonsoir, après avoir fait la mise a jour de certains logiciels, le pc ne veut plus sallumer, je vous parle de mon itouch. Je viens en parler car c'est après avoir suivi vos premiers conseils que cela est arrive. L'écran est tout noir avec écrit en haut a gauche : verifying dmi pool data.  Est ce un problème du aux mises a jour ( je les avait déjà fait aupparavent et pas de buts :-S ). Ou bien les manips effectuées ? merci

Rjmdm · Answer

Sachant que cela fait presque trois heures que c'est comme ça. Jepense que c'est du aux clé registre effacees avec le programme. J'ai tenté une restauration vers un point antérieur mais rien a faire le problème est toujours la ... Merci

Rjmdm · Answer

J'ai réussi a accéder au bios et mettre les paramètres par default, et le problème est résolu. Faut que j'essaye ce que tu me proposes pour le problème de Google. Encore merci pour laide depuis le début

ric025 · Answer

Salut.

De quelles mises à jour tu parles ? Il faut s'en tenir aux programmes demandés pour l'instant. Tu en es où maintenant ?

++

Rjmdm · Answer

J'ai mis a jour le pack vista, installe le pack deux.        Et je suis dans les instructions de ton dernier message mais je peux le faire que dans 20min car il y a quelqu'un sur le pc.     Merci

ric025 · Answer

Ton Windows a été modifié ! Certainement que c'est ce qui bloque les mises à jour de ce type ! :)

rjmdm · Answer

Modifié ? Comment ça ? Par qui ? oO   Je n'y ai pas touché ! Il est, enfin je croyais, comme a son origine, avec des logiciels en plus ...

Et je n'arrive pas non plus a rechercher les mises a jour via windows update, alors qu'avant j'y arrivais, c'est surement a cause de ça.

rjmdm · Answer

Le premier rapport : Toolbar-s&d 
( on voit tout mes logiciels ... )



   -----------\  ToolBar S&D 1.2.9   XP/Vista

   Microsoft® Windows Vista™ Édition Familiale Premium  ( v6.0.6001 ) Service Pack 1
   X86-based PC ( Multiprocessor Free : AMD Athlon(tm) 64 X2 Dual Core Processor 5000+ )
   BIOS : )Phoenix - Award WorkstationBIOS v6.00PG
   USER : Ricardo ( Not Administrator ! )
   BOOT : Normal boot
   Antivirus : Norton Internet Security Online 2007 (Activated)
   Firewall  : Norton Internet Security Online 2007 (Activated)
   C:\ (Local Disk) - NTFS - Total:145 Go (Free:35 Go)
   D:\ (Local Disk) - NTFS - Total:145 Go (Free:112 Go)
   E:\ (CD or DVD)
   G:\ (USB)
   H:\ (USB)
   I:\ (USB)
   J:\ (USB)

   "C:\ToolBar SD" ( MAJ : 22-08-2009|18:42 )
   Option : [2] ( 23/08/2009|12:09 )

   [ UAC => 1 ]
   C:\Windows\system32\adssite-remove.exe
   C:\Windows\System32\f3PSSavr.scr
   C:\Program Files\Internet Explorer\msimg32.dll

   -----------\ SUPPRESSION

   ... [Service] MyWebSearchService -- Marqué pour suppression !
   Supprime! - C:\PROGRA~2\MICROS~1\Windows\STARTM~1\Programs\Adssite Games Collection
   Supprime! - C:\Program Files\AskTBar\bar
   Supprime! - C:\Program Files\AskTBar\PopSwatr
   Supprime! - C:\Program Files\MyWebSearch\bar
   Supprime! - C:\Windows\system32\adssite-remove.exe
   Supprime! - C:\Windows\System32\f3PSSavr.scr
   Supprime! - C:\Program Files\Internet Explorer\msimg32.dll
   Supprime! - C:\Program Files\AskTBar
   Supprime! - C:\Program Files\MyWebSearch

   -----------\  Recherche de Fichiers / Dossiers ...


   -----------\  [..\Internet Explorer\Main]

   [HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
   "Start Page"="https://www.google.fr/webhp?sourceid=navclient&hl=fr&ie=UTF-8&gws_rd=ssl"
   "SEARCH PAGE"="http://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch"
   "Local Page"="C:\Windows\system32\blank.htm"
   "SearchMigratedDefaultURL"="https://search.yahoo.com/web{searchTerms}&ei=utf-8&fr=b1ie7"
   "Search Bar"="http://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch"
   "Url"="https://www.msn.com/fr-fr/actualite/"
   "Url"="https://www.msn.com/fr-fr/actualite/"

   [HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Main]
   "Start Page"="https://www.msn.com/fr-fr/"
   "Default_Page_URL"="https://fr.yahoo.com/"
   "Default_Search_URL"="https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF"
   "Search Page"="http://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch"
   "Local Page"="C:\Windows\System32\blank.htm"


   --------------------\  Recherche d'autres infections

   [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Services\Tcpip\Parameters]
    NameServer    REG_SZ    85.255.112.70,85.255.112.127
   [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet003\Services\Tcpip\Parameters]
    NameServer    REG_SZ    85.255.112.70,85.255.112.127
   [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Tcpip\Parameters]
    NameServer    REG_SZ    85.255.112.70,85.255.112.127
   [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\..\{CB150540-7459-451F-BE4E-392551A5C409}]
    NameServer    REG_SZ    85.255.112.70,85.255.112.127
   [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet003\..\{CB150540-7459-451F-BE4E-392551A5C409}]
    NameServer    REG_SZ    85.255.112.70,85.255.112.127
   [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\..\{CB150540-7459-451F-BE4E-392551A5C409}]
    NameServer    REG_SZ    85.255.112.70,85.255.112.127
   [b]==> WAREOUT <==/b
 
   --------------------\  ROGUES ..

   C:\PROGRA~2\MICROS~1\Windows\STARTM~1\Programs\Spyware-Secure

   --------------------\  Cracks & Keygens ..

   C:\Users\Ricardo\AppData\Roaming\BitTorrent\photoshop CS3 + crack + patch fr.iso.torrent
   C:\Users\Ricardo\AppData\Roaming\Microsoft\Windows\Recent\Crack.Keygen.All.Languages.NFS.UNDERCOVER.rar.lnk
   C:\Users\Ricardo\AppData\Roaming\Microsoft\Windows\Recent\Crack.lnk
   C:\Users\Ricardo\AppData\Roaming\Microsoft\Windows\Recent\crack.nfo.lnk
   C:\Users\Ricardo\Desktop\elifoot\2002\elifoot2002r2_crack_[PM-Planeta-Manager].exe
   C:\Users\Ricardo\Desktop\MAGIX_Music_Maker_15_Premium\Crack
   C:\Users\Ricardo\Desktop\MAGIX_Music_Maker_15_Premium\crack.nfo
   C:\Users\Ricardo\Desktop\MAGIX_Music_Maker_15_Premium\Crack\MusicMaker.exe
   C:\Users\Ricardo\Desktop	out pour site et note pad++\cs3\Adobe Photoshop 8 Cs Fr Le Vrai (Version Finale Francaise)\crack
   C:\Users\Ricardo\Desktop	out pour site et note pad++\cs3\Adobe Photoshop 8 Cs Fr Le Vrai (Version Finale Francaise)\crack.rar
   C:\Users\Ricardo\Desktop	out pour site et note pad++\cs3\Adobe Photoshop 8 Cs Fr Le Vrai (Version Finale Francaise)\crack\adobelm.dll
   C:\Users\Ricardo\Desktop	out pour site et note pad++\cs3\Adobe Photoshop 8 Cs Fr Le Vrai (Version Finale Francaise)\crack\lisezmoi.txt
   C:\Users\Ricardo\Desktop	out pour site et note pad++\cs3\Adobe Photoshop 8 Cs Fr Le Vrai (Version Finale Francaise)\crack	w10122.dat
   C:\Users\Ricardo\Documents\Downloads\photoshop CS3 + crack + patch fr.iso
   C:\Users\Ricardo\Documents\FireTorrentDownloads\Adobe Photoshop CS3 Extended plus Crack
   C:\Users\Ricardo\Documents\FireTorrentDownloads\Adobe Photoshop CS3 Extended plus Crack\Crack
   C:\Users\Ricardo\Documents\FireTorrentDownloads\Adobe Photoshop CS3 Extended plus Crack\payloads
   C:\Users\Ricardo\Documents\FireTorrentDownloads\Adobe Photoshop CS3 Extended plus Crackedist
   C:\Users\Ricardo\Documents\FireTorrentDownloads\Adobe Photoshop CS3 Extended plus Crackesources
   C:\Users\Ricardo\Documents\FireTorrentDownloads\Adobe Photoshop CS3 Extended plus Crack\Crack\Deployment.xml
   C:\Users\Ricardo\Documents\FireTorrentDownloads\Adobe Photoshop CS3 Extended plus Crack\Crack\Instructions.nfo
   C:\Users\Ricardo\Documents\FireTorrentDownloads\Adobe Photoshop CS3 Extended plus Crack\Crack\Photoshop.exe
   C:\Users\Ricardo\Documents\FireTorrentDownloads\Adobe Photoshop CS3 Extended plus Crack\payloads\AdobeALMAnchorServiceAll
   C:\Users\Ricardo\Documents\FireTorrentDownloads\Adobe Photoshop CS3 Extended plus Crack\payloads\AdobeAssetServices3All
   C:\Users\Ricardo\Documents\FireTorrentDownloads\Adobe Photoshop CS3 Extended plus Crack\payloads\AdobeAUM5.1All
   C:\Users\Ricardo\Documents\FireTorrentDownloads\Adobe Photoshop CS3 Extended plus Crack\payloads\AdobeBridge2All
   C:\Users\Ricardo\Documents\FireTorrentDownloads\Adobe Photoshop CS3 Extended plus Crack\payloads\AdobeCameraRaw4.0All
   C:\Users\Ricardo\Documents\FireTorrentDownloads\Adobe Photoshop CS3 Extended plus Crack\payloads\AdobeCMapsAll
   C:\Users\Ricardo\Documents\FireTorrentDownloads\Adobe Photoshop CS3 Extended plus Crack\payloads\AdobeColorCommonSetAll
   C:\Users\Ricardo\Documents\FireTorrentDownloads\Adobe Photoshop CS3 Extended plus Crack\payloads\AdobeColorEU_ExtraSettingsAll
   C:\Users\Ricardo\Documents\FireTorrentDownloads\Adobe Photoshop CS3 Extended plus Crack\payloads\AdobeColorJA_ExtraSettingsAll
   C:\Users\Ricardo\Documents\FireTorrentDownloads\Adobe Photoshop CS3 Extended plus Crack\payloads\AdobeColorNA_RecommendedAll
   C:\Users\Ricardo\Documents\FireTorrentDownloads\Adobe Photoshop CS3 Extended plus Crack\payloads\AdobeColorPhotoshopAll
   C:\Users\Ricardo\Documents\FireTorrentDownloads\Adobe Photoshop CS3 Extended plus Crack\payloads\AdobeDefaultLanguageCS3All
   C:\Users\Ricardo\Documents\FireTorrentDownloads\Adobe Photoshop CS3 Extended plus Crack\payloads\AdobeDeviceCentralAll
   C:\Users\Ricardo\Documents\FireTorrentDownloads\Adobe Photoshop CS3 Extended plus Crack\payloads\AdobeExtendScriptToolKitAll
   C:\Users\Ricardo\Documents\FireTorrentDownloads\Adobe Photoshop CS3 Extended plus Crack\payloads\AdobeFontsAll
   C:\Users\Ricardo\Documents\FireTorrentDownloads\Adobe Photoshop CS3 Extended plus Crack\payloads\AdobeHelpViewerAll
   C:\Users\Ricardo\Documents\FireTorrentDownloads\Adobe Photoshop CS3 Extended plus Crack\payloads\AdobeLinguisticsAll
   C:\Users\Ricardo\Documents\FireTorrentDownloads\Adobe Photoshop CS3 Extended plus Crack\payloads\AdobePDFL8All
   C:\Users\Ricardo\Documents\FireTorrentDownloads\Adobe Photoshop CS3 Extended plus Crack\payloads\AdobePDFSettingsNAEU
   C:\Users\Ricardo\Documents\FireTorrentDownloads\Adobe Photoshop CS3 Extended plus Crack\payloads\AdobePhotoshop10en_US
   C:\Users\Ricardo\Documents\FireTorrentDownloads\Adobe Photoshop CS3 Extended plus Crack\payloads\AdobeStockPhotos1.5All
   C:\Users\Ricardo\Documents\FireTorrentDownloads\Adobe Photoshop CS3 Extended plus Crack\payloads\AdobeTypeSupportAll
   C:\Users\Ricardo\Documents\FireTorrentDownloads\Adobe Photoshop CS3 Extended plus Crack\payloads\AdobeVersionCueClient3All
   C:\Users\Ricardo\Documents\FireTorrentDownloads\Adobe Photoshop CS3 Extended plus Crack\payloads\AdobeWinSoftLinguisticsPluginAll
   C:\Users\Ricardo\Documents\FireTorrentDownloads\Adobe Photoshop CS3 Extended plus Crack\payloads\AdobeXMPPanelsAll
   C:\Users\Ricardo\Documents\FireTorrentDownloads\Adobe Photoshop CS3 Extended plus Crack\payloads\BridgeStartMeeting
   C:\Users\Ricardo\Documents\FireTorrentDownloads\Adobe Photoshop CS3 Extended plus Crack\payloads\setup.xml
   C:\Users\Ricardo\Documents\FireTorrentDownloads\Adobe Photoshop CS3 Extended plus Crack\payloads\AdobeALMAnchorServiceAll\AdobeALMAnchorServiceAll.boot.xml
   C:\Users\Ricardo\Documents\FireTorrentDownloads\Adobe Photoshop CS3 Extended plus Crack\payloads\AdobeALMAnchorServiceAll\AdobeALMAnchorServiceAll.msi
   C:\Users\Ricardo\Documents\FireTorrentDownloads\Adobe Photoshop CS3 Extended plus Crack\payloads\AdobeALMAnchorServiceAll\AdobeALMAnchorServiceAll.proxy.xml
   C:\Users\Ricardo\Documents\FireTorrentDownloads\Adobe Photoshop CS3 Extended plus Crack\payloads\AdobeALMAnchorServiceAll\AdobeALMAnchorServiceAll1.cab
   C:\Users\Ricardo\Documents\FireTorrentDownloads\Adobe Photoshop CS3 Extended plus Crack\payloads\AdobeAssetServices3All\AdobeAssetServices3All.boot.xml
   C:\Users\Ricardo\Documents\FireTorrentDownloads\Adobe Photoshop CS3 Extended plus Crack\payloads\AdobeAssetServices3All\AdobeAssetServices3All.msi
   C:\Users\Ricardo\Documents\FireTorrentDownloads\Adobe Photoshop CS3 Extended plus Crack\payloads\AdobeAssetServices3All\AdobeAssetServices3All.proxy.xml
   C:\Users\Ricardo\Documents\FireTorrentDownloads\Adobe Photoshop CS3 Extended plus Crack\payloads\AdobeAssetServices3All\AdobeAssetServices3All1.cab
   C:\Users\Ricardo\Documents\FireTorrentDownloads\Adobe Photoshop CS3 Extended plus Crack\payloads\AdobeAUM5.1All\AdobeAUM5.1All.boot.xml
   C:\Users\Ricardo\Documents\FireTorrentDownloads\Adobe Photoshop CS3 Extended plus Crack\payloads\AdobeAUM5.1All\AdobeAUM5.1All.msi
   C:\Users\Ricardo\Documents\FireTorrentDownloads\Adobe Photoshop CS3 Extended plus Crack\payloads\AdobeAUM5.1All\AdobeAUM5.1All.proxy.xml
   C:\Users\Ricardo\Documents\FireTorrentDownloads\Adobe Photoshop CS3 Extended plus Crack\payloads\AdobeAUM5.1All\AdobeAUM5.1All1.cab
   C:\Users\Ricardo\Documents\FireTorrentDownloads\Adobe Photoshop CS3 Extended plus Crack\payloads\AdobeBridge2All\AdobeBridge2All.boot.xml
   C:\Users\Ricardo\Documents\FireTorrentDownloads\Adobe Photoshop CS3 Extended plus Crack\payloads\AdobeBridge2All\AdobeBridge2All.msi
   C:\Users\Ricardo\Documents\FireTorrentDownloads\Adobe Photoshop CS3 Extended plus Crack\payloads\AdobeBridge2All\AdobeBridge2All.proxy.xml
   C:\Users\Ricardo\Documents\FireTorrentDownloads\Adobe Photoshop CS3 Extended plus Crack\payloads\AdobeBridge2All\AdobeBridge2All1.cab
   C:\Users\Ricardo\Documents\FireTorrentDownloads\Adobe Photoshop CS3 Extended plus Crack\payloads\AdobeCameraRaw4.0All\AdobeCameraRaw4.0All.boot.xml
   C:\Users\Ricardo\Documents\FireTorrentDownloads\Adobe Photoshop CS3 Extended plus Crack\payloads\AdobeCameraRaw4.0All\AdobeCameraRaw4.0All.msi
   C:\Users\Ricardo\Documents\FireTorrentDownloads\Adobe Photoshop CS3 Extended plus Crack\payloads\AdobeCameraRaw4.0All\AdobeCameraRaw4.0All.proxy.xml
   C:\Users\Ricardo\Documents\FireTorrentDownloads\Adobe Photoshop CS3 Extended plus Crack\payloads\AdobeCameraRaw4.0All\AdobeCameraRaw4.0All1.cab
   C:\Users\Ricardo\Documents\FireTorrentDownloads\Adobe Photoshop CS3 Extended plus Crack\payloads\AdobeCMapsAll\AdobeCMapsAll.boot.xml
   C:\Users\Ricardo\Documents\FireTorrentDownloads\Adobe Photoshop CS3 Extended plus Crack\payloads\AdobeCMapsAll\AdobeCMapsAll.msi
   C:\Users\Ricardo\Documents\FireTorrentDownloads\Adobe Photoshop CS3 Extended plus Crack\payloads\AdobeCMapsAll\AdobeCMapsAll.proxy.xml
   C:\Users\Ricardo\Documents\FireTorrentDownloads\Adobe Photoshop CS3 Extended plus Crack\payloads\AdobeCMapsAll\AdobeCMapsAll1.cab
   C:\Users\Ricardo\Documents\FireTorrentDownloads\Adobe Photoshop CS3 Extended plus Crack\payloads\AdobeColorCommonSetAll\AdobeColorCommonSetAll.boot.xml
   C:\Users\Ricardo\Documents\FireTorrentDownloads\Adobe Photoshop CS3 Extended plus Crack\payloads\AdobeColorCommonSetAll\AdobeColorCommonSetAll.msi
   C:\Users\Ricardo\Documents\FireTorrentDownloads\Adobe Photoshop CS3 Extended plus Crack\payloads\AdobeColorCommonSetAll\AdobeColorCommonSetAll.proxy.xml
   C:\Users\Ricardo\Documents\FireTorrentDownloads\Adobe Photoshop CS3 Extended plus Crack\payloads\AdobeColorCommonSetAll\AdobeColorCommonSetAll1.cab
   C:\Users\Ricardo\Documents\FireTorrentDownloads\Adobe Photoshop CS3 Extended plus Crack\payloads\AdobeColorEU_ExtraSettingsAll\AdobeColorEU_ExtraSettingsAll.boot.xml
   C:\Users\Ricardo\Documents\FireTorrentDownloads\Adobe Photoshop CS3 Extended plus Crack\payloads\AdobeColorEU_ExtraSettingsAll\AdobeColorEU_ExtraSettingsAll.msi
   C:\Users\Ricardo\Documents\FireTorrentDownloads\Adobe Photoshop CS3 Extended plus Crack\payloads\AdobeColorEU_ExtraSettingsAll\AdobeColorEU_ExtraSettingsAll.proxy.xml
   C:\Users\Ricardo\Documents\FireTorrentDownloads\Adobe Photoshop CS3 Extended plus Crack\payloads\AdobeColorEU_ExtraSettingsAll\AdobeColorEU_ExtraSettingsAll1.cab
   C:\Users\Ricardo\Documents\FireTorrentDownloads\Adobe Photoshop CS3 Extended plus Crack\payloads\AdobeColorEU_ExtraSettingsAll\en_US.mst
   C:\Users\Ricardo\Documents\FireTorrentDownloads\Adobe Photoshop CS3 Extended plus Crack\payloads\AdobeColorEU_ExtraSettingsAll\ja_JP.mst
   C:\Users\Ricardo\Documents\FireTorrentDownloads\Adobe Photoshop CS3 Extended plus Crack\payloads\AdobeColorEU_ExtraSettingsAll\ko_KR.mst
   C:\Users\Ricardo\Documents\FireTorrentDownloads\Adobe Photoshop CS3 Extended plus Crack\payloads\AdobeColorEU_ExtraSettingsAll\zh_CN.mst
   C:\Users\Ricardo\Documents\FireTorrentDownloads\Adobe Photoshop CS3 Extended plus Crack\payloads\AdobeColorEU_ExtraSettingsAll\zh_TW.mst
   C:\Users\Ricardo\Documents\FireTorrentDownloads\Adobe Photoshop CS3 Extended plus Crack\payloads\AdobeColorJA_ExtraSettingsAll\AdobeColorJA_ExtraSettingsAll.boot.xml
   C:\Users\Ricardo\Documents\FireTorrentDownloads\Adobe Photoshop CS3 Extended plus Crack\payloads\AdobeColorJA_ExtraSettingsAll\AdobeColorJA_ExtraSettingsAll.msi
   C:\Users\Ricardo\Documents\FireTorrentDownloads\Adobe Photoshop CS3 Extended plus Crack\payloads\AdobeColorJA_ExtraSettingsAll\AdobeColorJA_ExtraSettingsAll.proxy.xml
   C:\Users\Ricardo\Documents\FireTorrentDownloads\Adobe Photoshop CS3 Extended plus Crack\payloads\AdobeColorJA_ExtraSettingsAll\AdobeColorJA_ExtraSettingsAll1.cab
   C:\Users\Ricardo\Documents\FireTorrentDownloads\Adobe Photoshop CS3 Extended plus Crack\payloads\AdobeColorJA_ExtraSettingsAll\ar_AE.mst
   C:\Users\Ricardo\Documents\FireTorrentDownloads\Adobe Photoshop CS3 Extended plus Crack\payloads\AdobeColorJA_ExtraSettingsAll\cs_CZ.mst
   C:\Users\Ricardo\Documents\FireTorrentDownloads\Adobe Photoshop CS3 Extended plus Crack\payloads\AdobeColorJA_ExtraSettingsAll\da_DK.mst
   C:\Users\Ricardo\Documents\FireTorrentDownloads\Adobe Photoshop CS3 Extended plus Crack\payloads\AdobeColorJA_ExtraSettingsAll\de_DE.mst
   C:\Users\Ricardo\Documents\FireTorrentDownloads\Adobe Photoshop CS3 Extended plus Crack\payloads\AdobeColorJA_ExtraSettingsAll\el_GR.mst
   C:\Users\Ricardo\Documents\FireTorrentDownloads\Adobe Photoshop CS3 Extended plus Crack\payloads\AdobeColorJA_ExtraSettingsAll\en_GB.mst
   C:\Users\Ricardo\Documents\FireTorrentDownloads\Adobe Photoshop CS3 Extended plus Crack\payloads\AdobeColorJA_ExtraSettingsAll\en_US.mst
   C:\Users\Ricardo\Documents\FireTorrentDownloads\Adobe Photoshop CS3 Extended plus Crack\payloads\AdobeColorJA_ExtraSettingsAll\es_ES.mst
   C:\Users\Ricardo\Documents\FireTorrentDownloads\Adobe Photoshop CS3 Extended plus Crack\payloads\AdobeColorJA_ExtraSettingsAll\fi_FI.mst
   C:\Users\Ricardo\Documents\FireTorrentDownloads\Adobe Photoshop CS3 Extended plus Crack\payloads\AdobeColorJA_ExtraSettingsAll\fr_FR.mst
   C:\Users\Ricardo\Documents\FireTorrentDownloads\Adobe Photoshop CS3 Extended plus Crack\payloads\AdobeColorJA_ExtraSettingsAll\hu_HU.mst
   C:\Users\Ricardo\Documents\FireTorrentDownloads\Adobe Photoshop CS3 Extended plus Crack\payloads\AdobeColorJA_ExtraSettingsAll\it_IT.mst
   C:\Users\Ricardo\Documents\FireTorrentDownloads\Adobe Photoshop CS3 Extended plus Crack\payloads\AdobeColorJA_ExtraSettingsAll
b_NO.mst
   C:\Users\Ricardo\Documents\FireTorrentDownloads\Adobe Photoshop CS3 Extended plus Crack\payloads\AdobeColorJA_ExtraSettingsAll
l_NL.mst
   C:\Users\Ricardo\Documents\FireTorrentDownloads\Adobe Photoshop CS3 Extended plus Crack\payloads\AdobeColorJA_ExtraSettingsAll\pl_PL.mst
   C:\Users\Ricardo\Documents\FireTorrentDownloads\Adobe Photoshop CS3 Extended plus Crack\payloads\AdobeColorJA_ExtraSettingsAll\pt_BR.mst
   C:\Users\Ricardo\Documents\FireTorrentDownloads\Adobe Photoshop CS3 Extended plus Crack\payloads\AdobeColorJA_ExtraSettingsAllu_RU.mst
   C:\Users\Ricardo\Documents\FireTorrentDownloads\Adobe Photoshop CS3 Extended plus Crack\payloads\AdobeColorJA_ExtraSettingsAll\sv_SE.mst
   C:\Users\Ricardo\Documents\FireTorrentDownloads\Adobe Photoshop CS3 Extended plus Crack\payloads\AdobeColorJA_ExtraSettingsAll	r_TR.mst
   C:\Users\Ricardo\Documents\FireTorrentDownloads\Adobe Photoshop CS3 Extended plus Crack\payloads\AdobeColorNA_RecommendedAll\AdobeColorNA_RecommendedAll.boot.xml
   C:\Users\Ricardo\Documents\FireTorrentDownloads\Adobe Photoshop CS3 Extended plus Crack\payloads\AdobeColorNA_RecommendedAll\AdobeColorNA_RecommendedAll.msi
   C:\Users\Ricardo\Documents\FireTorrentDownloads\Adobe Photoshop CS3 Extended plus Crack\payloads\AdobeColorNA_RecommendedAll\AdobeColorNA_RecommendedAll.proxy.xml
   C:\Users\Ricardo\Documents\FireTorrentDownloads\Adobe Photoshop CS3 Extended plus Crack\payloads\AdobeColorNA_RecommendedAll\AdobeColorNA_RecommendedAll1.cab
   C:\Users\Ricardo\Documents\FireTorrentDownloads\Adobe Photoshop CS3 Extended plus Crack\payloads\AdobeColorNA_RecommendedAll\en_US.mst
   C:\Users\Ricardo\Documents\FireTorrentDownloads\Adobe Photoshop CS3 Extended plus Crack\payloads\AdobeColorPhotoshopAll\AdobeColorPhotoshopAll.boot.xml
   C:\Users\Ricardo\Documents\FireTorrentDownloads\Adobe Photoshop CS3 Extended plus Crack\payloads\AdobeColorPhotoshopAll\AdobeColorPhotoshopAll.msi
   C:\Users\Ricardo\Documents\FireTorrentDownloads\Adobe Photoshop CS3 Extended plus Crack\payloads\AdobeColorPhotoshopAll\AdobeColorPhotoshopAll.proxy.xml
   C:\Users\Ricardo\Documents\FireTorrentDownloads\Adobe Photoshop CS3 Extended plus Crack\payloads\AdobeColorPhotoshopAll\AdobeColorPhotoshopAll1.cab
   C:\Users\Ricardo\Documents\FireTorrentDownloads\Adobe Photoshop CS3 Extended plus Crack\payloads\AdobeDefaultLanguageCS3All\AdobeDefaultLanguageCS3All.boot.xml
   C:\Users\Ricardo\Documents\FireTorrentDownloads\Adobe Photoshop CS3 Extended plus Crack\payloads\AdobeDefaultLanguageCS3All\AdobeDefaultLanguageCS3All.msi
   C:\Users\Ricardo\Documents\FireTorrentDownloads\Adobe Photoshop CS3 Extended plus Crack\payloads\AdobeDefaultLanguageCS3All\AdobeDefaultLanguageCS3All.proxy.xml
   C:\Users\Ricardo\Documents\FireTorrentDownloads\Adobe Photoshop CS3 Extended plus Crack\payloads\AdobeDefaultLanguageCS3All\AdobeDefaultLanguageCS3All1.cab
   C:\Users\Ricardo\Documents\FireTorrentDownloads\Adobe Photoshop CS3 Extended plus Crack\payloads\AdobeDefaultLanguageCS3All\ar_AE.mst
   C:\Users\Ricardo\Documents\FireTorrentDownloads\Adobe Photoshop CS3 Extended plus Crack\payloads\AdobeDefaultLanguageCS3All\bg_BG.mst
   C:\Users\Ricardo\Documents\FireTorrentDownloads\Adobe Photoshop CS3 Extended plus Crack\payloads\AdobeDefaultLanguageCS3All\ca_ES.mst
   C:\Users\Ricardo\Documents\FireTorrentDownloads\Adobe Photoshop CS3 Extended plus Crack\payloads\AdobeDefaultLanguageCS3All\cs_CZ.mst
   C:\Users\Ricardo\Documents\FireTorrentDownloads\Adobe Photoshop CS3 Extended plus Crack\payloads\AdobeDefaultLanguageCS3All\da_DK.mst
   C:\Users\Ricardo\Documents\FireTorrentDownloads\Adobe Photoshop CS3 Extended plus Crack\payloads\AdobeDefaultLanguageCS3All\de_DE.mst
   C:\Users\Ricardo\Documents\FireTorrentDownloads\Adobe Photoshop CS3 Extended plus Crack\payloads\AdobeDefaultLanguageCS3All\el_GR.mst
   C:\Users\Ricardo\Documents\FireTorrentDownloads\Adobe Photoshop CS3 Extended plus Crack\payloads\AdobeDefaultLanguageCS3All\en_GB.mst
   C:\Users\Ricardo\Documents\FireTorrentDownloads\Adobe Photoshop CS3 Extended plus Crack\payloads\AdobeDefaultLanguageCS3All\en_US.mst
   C:\Users\Ricardo\Documents\FireTorrentDownloads\Adobe Photoshop CS3 Extended plus Crack\payloads\AdobeDefaultLanguageCS3All\es_ES.mst
   C:\Users\Ricardo\Documents\FireTorrentDownloads\Adobe Photoshop CS3 Extended plus Crack\payloads\AdobeDefaultLanguageCS3All\et_EE.mst
   C:\Users\Ricardo\Documents\FireTorrentDownloads\Adobe Photoshop CS3 Extended plus Crack\payloads\AdobeDefaultLanguageCS3All\fi_FI.mst
   C:\Users\Ricardo\Documents\FireTorrentDownloads\Adobe Photoshop CS3 Extended plus Crack\payloads\AdobeDefaultLanguageCS3All\fr_FR.mst
   C:\Users\Ricardo\Documents\FireTorrentDownloads\Adobe Photoshop CS3 Extended plus Crack\payloads\AdobeDefaultLanguageCS3All\he_IL.mst
   C:\Users\Ricardo\Documents\FireTorrentDownloads\Adobe Photoshop CS3 Extended plus Crack\payloads\AdobeDefaultLanguageCS3All\hr_HR.mst
   C:\Users\Ricardo\Documents\FireTorrentDownloads\Adobe Photoshop CS3 Extended plus Crack\payloads\AdobeDefaultLanguageCS3All\hu_HU.mst
   C:\Users\Ricardo\Documents\FireTorrentDownloads\Adobe Photoshop CS3 Extended plus Crack\payloads\AdobeDefaultLanguageCS3All\it_IT.mst
   C:\Users\Ricardo\Documents\FireTorrentDownloads\Adobe Photoshop CS3 Extended plus Crack\payloads\AdobeDefaultLanguageCS3All\ja_JP.mst
   C:\Users\Ricardo\Documents\FireTorrentDownloads\Adobe Photoshop CS3 Extended plus Crack\payloads\AdobeDefaultLanguageCS3All\ko_KR.mst
   C:\Users\Ricardo\Documents\FireTorrentDownloads\Adobe Photoshop CS3 Extended plus Crack\payloads\AdobeDefaultLanguageCS3All\lt_LT.mst
   C:\Users\Ricardo\Documents\FireTorrentDownloads\Adobe Photoshop CS3 Extended plus Crack\payloads\AdobeDefaultLanguageCS3All\lv_LV.mst
   C:\Users\Ricardo\Documents\FireTorrentDownloads\Adobe Photoshop CS3 Extended plus Crack\payloads\AdobeDefaultLanguageCS3All
b_NO.mst
   C:\Users\Ricardo\Documents\FireTorrentDownloads\Adobe Photoshop CS3 Extended plus Crack\payloads\AdobeDefaultLanguageCS3All
l_NL.mst
   C:\Users\Ricardo\Documents\FireTorrentDownloads\Adobe Photoshop CS3 Extended plus Crack\payloads\AdobeDefaultLanguageCS3All\pl_PL.mst
   C:\Users\Ricardo\Documents\FireTorrentDownloads\Adobe Photoshop CS3 Extended plus Crack\payloads\AdobeDefaultLanguageCS3All\pt_BR.mst
   C:\Users\Ricardo\Documents\FireTorrentDownloads\Adobe Photoshop CS3 Extended plus Crack\payloads\AdobeDefaultLanguageCS3Allo_RO.mst
   C:\Users\Ricardo\Documents\FireTorrentDownloads\Adobe Photoshop CS3 Extended plus Crack\payloads\AdobeDefaultLanguageCS3Allu_RU.mst
   C:\Users\Ricardo\Documents\FireTorrentDownloads\Adobe Photoshop CS3 Extended plus Crack\payloads\AdobeDefaultLanguageCS3All\sk_SK.mst
   C:\Users\Ricardo\Documents\FireTorrentDownloads\Adobe Photoshop CS3 Extended plus Crack\payloads\AdobeDefaultLanguageCS3All\sl_SI.mst
   C:\Users\Ricardo\Documents\FireTorrentDownloads\Adobe Photoshop CS3 Extended plus Crack\payloads\AdobeDefaultLanguageCS3All\sv_SE.mst
   C:\Users\Ricardo\Documents\FireTorrentDownloads\Adobe Photoshop CS3 Extended plus Crack\payloads\AdobeDefaultLanguageCS3All	r_TR.mst
   C:\Users\Ricardo\Documents\FireTorrentDownloads\Adobe Photoshop CS3 Extended plus Crack\payloads\AdobeDefaultLanguageCS3All\uk_UA.mst
   C:\Users\Ricardo\Documents\FireTorrentDownloads\Adobe Photoshop CS3 Extended plus Crack\payloads\AdobeDefaultLanguageCS3All\zh_CN.mst
   C:\Users\Ricardo\Documents\FireTorrentDownloads\Adobe Photoshop CS3 Extended plus Crack\payloads\AdobeDefaultLanguageCS3All\zh_TW.mst
   C:\Users\Ricardo\Documents\FireTorrentDownloads\Adobe Photoshop CS3 Extended plus Crack\payloads\AdobeDeviceCentralAll\AdobeDeviceCentralAll.boot.xml
   C:\Users\Ricardo\Documents\FireTorrentDownloads\Adobe Photoshop CS3 Extended plus Crack\payloads\AdobeDeviceCentralAll\AdobeDeviceCentralAll.msi
   C:\Users\Ricardo\Documents\FireTorrentDownloads\Adobe Photoshop CS3 Extended plus Crack\payloads\AdobeDeviceCentralAll\AdobeDeviceCentralAll.proxy.xml
   C:\Users\Ricardo\Documents\FireTorrentDownloads\Adobe Photoshop CS3 Extended plus Crack\payloads\AdobeDeviceCentralAll\AdobeDeviceCentralAll1.cab
   C:\Users\Ricardo\Documents\FireTorrentDownloads\Adobe Photoshop CS3 Extended plus Crack\payloads\AdobeDeviceCentralAll\oem
   C:\Users\Ricardo\Documents\FireTorrentDownloads\Adobe Photoshop CS3 Extended plus Crack\payloads\AdobeDeviceCentralAll\oem\Adobe Device Central CS3
   C:\Users\Ricardo\Documents\FireTorrentDownloads\Adobe Photoshop CS3 Extended plus Crack\payloads\AdobeDeviceCentralAll\oem\Adobe Device Central CS3\Device Central CS3 Bitte lesen.html
   C:\Users\Ricardo\Documents\FireTorrentDownloads\Adobe Photoshop CS3 Extended plus Crack\payloads\AdobeDeviceCentralAll\oem\Adobe Device Central CS3\Device Central CS3 Ilgeobogi.html
   C:\Users\Ricardo\Documents\FireTorrentDownloads\Adobe Photoshop CS3 Extended plus Crack\payloads\AdobeDeviceCentralAll\oem\Adobe Device Central CS3\Device Central CS3 Lees mij.html
   C:\Users\Ricardo\Documents\FireTorrentDownloads\Adobe Photoshop CS3 Extended plus Crack\payloads\AdobeDeviceCentralAll\oem\Adobe Device Central CS3\Device Central CS3 Leggimi.html
   C:\Users\Ricardo\Documents\FireTorrentDownloads\Adobe Photoshop CS3 Extended plus Crack\payloads\AdobeDeviceCentralAll\oem\Adobe Device Central CS3\Device Central CS3 Lisez-moi.html
   C:\Users\Ricardo\Documents\FireTorrentDownloads\Adobe Photoshop CS3 Extended plus Crack\payloads\AdobeDeviceCentralAll\oem\Adobe Device Central CS3\Device Central CS3 L‚ame.html
   C:\Users\Ricardo\Documents\FireTorrentDownloads\Adobe Photoshop CS3 Extended plus Crack\payloads\AdobeDeviceCentralAll\oem\Adobe Device Central CS3\Device Central CS3 Oyomikudasai.html
   C:\Users\Ricardo\Documents\FireTorrentDownloads\Adobe Photoshop CS3 Extended plus Crack\payloads\AdobeDeviceCentralAll\oem\Adobe Device Central CS3\Device Central CS3 Read Me.html
   C:\Users\Ricardo\Documents\FireTorrentDownloads\Adobe Photoshop CS3 Extended plus Crack\payloads\AdobeDeviceCentralAll\oem\Adobe Device Central CS3\Device Central CS3 Tu Wo Tang An.html
   C:\Users\Ricardo\Documents\FireTorrentDownloads\Adobe Photoshop CS3 Extended plus Crack\payloads\AdobeDeviceCentralAll\oem\Adobe Device Central CS3\Device Central CS3 Viktigt.html
   C:\Users\Ricardo\Documents\FireTorrentDownloads\Adobe Photoshop CS3 Extended plus Crack\payloads\AdobeDeviceCentralAll\oem\Adobe Device Central CS3\Device Central CS3 Zishu.html
   C:\Users\Ricardo\Documents\FireTorrentDownloads\Adobe Photoshop CS3 Extended plus Crack\payloads\AdobeExtendScriptToolKitAll\AdobeExtendScriptToolKitAll.boot.xml
   C:\Users\Ricardo\Documents\FireTorrentDownloads\Adobe Photoshop CS3 Extended plus Crack\payloads\AdobeExtendScriptToolKitAll\AdobeExtendScriptToolKitAll.msi
   C:\Users\Ricardo\Documents\FireTorrentDownloads\Adobe Photoshop CS3 Extended plus Crack\payloads\AdobeExtendScriptToolKitAll\AdobeExtendScriptToolKitAll.proxy.xml
   C:\Users\Ricardo\Documents\FireTorrentDownloads\Adobe Photoshop CS3 Extended plus Crack\payloads\AdobeExtendScriptToolKitAll\AdobeExtendScriptToolKitAll1.cab
   C:\Users\Ricardo\Documents\FireTorrentDownloads\Adobe Photoshop CS3 Extended plus Crack\payloads\AdobeExtendScriptToolKitAll\ar_AE.mst
   C:\Users\Ricardo\Documents\FireTorrentDownloads\Adobe Photoshop CS3 Extended plus Crack\payloads\AdobeExtendScriptToolKitAll\be_BY.mst
   C:\Users\Ricardo\Documents\FireTorrentDownloads\Adobe Photoshop CS3 Extended plus Crack\payloads\AdobeExtendScriptToolKitAll\bg_BG.mst
   C:\Users\Ricardo\Documents\FireTorrentDownloads\Adobe Photoshop CS3 Extended plus Crack\payloads\AdobeExtendScriptToolKitAll\ca_ES.mst
   C:\Users\Ricardo\Documents\FireTorrentDownloads\Adobe Photoshop CS3 Extended plus Crack\payloads\AdobeExtendScriptToolKitAll\cs_CZ.mst
   C:\Users\Ricardo\Documents\FireTorrentDownloads\Adobe Photoshop CS3 Extended plus Crack\payloads\AdobeExtendScriptToolKitAll\da_DK.mst
   C:\Users\Ricardo\Documents\FireTorrentDownloads\Adobe Photoshop CS3 Extended plus Crack\payloads\AdobeExtendScriptToolKitAll\de_DE.mst
   C:\Users\Ricardo\Documents\FireTorrentDownloads\Adobe Photoshop CS3 Extended plus Crack\payloads\AdobeExtendScriptToolKitAll\el_GR.mst
   C:\Users\Ricardo\Documents\FireTorrentDownloads\Adobe Photoshop CS3 Extended plus Crack\payloads\AdobeExtendScriptToolKitAll\en_GB.mst
   C:\Users\Ricardo\Documents\FireTorrentDownloads\Adobe Photoshop CS3 Extended plus Crack\payloads\AdobeExtendScriptToolKitAll\en_US.mst
   C:\Users\Ricardo\Documents\FireTorrentDownloads\Adobe Photoshop CS3 Extended plus Crack\payloads\AdobeExtendScriptToolKitAll\en_XC.mst
   C:\Users\Ricardo\Documents\FireTorrentDownloads\Adobe Photoshop CS3 Extended plus Crack\payloads\AdobeExtendScriptToolKitAll\en_XM.mst
   C:\Users\Ricardo\Documents\FireTorrentDownloads\Adobe Photoshop CS3 Extended plus Crack\payloads\AdobeExtendScriptToolKitAll\es_ES.mst
   C:\Users\Ricardo\Documents\FireTorrentDownloads\Adobe Photoshop CS3 Extended plus Crack\payloads\AdobeExtendScriptToolKitAll\es_QM.mst
   C:\Users\Ricardo\Documents\FireTorrentDownloads\Adobe Photoshop CS3 Extended plus Crack\payloads\AdobeExtendScriptToolKitAll\et_EE.mst
   C:\Users\Ricardo\Documents\FireTorrentDownloads\Adobe Photoshop CS3 Extended plus Crack\payloads\AdobeExtendScriptToolKitAll\fi_FI.mst
   C:\Users\Ricardo\Documents\FireTorrentDownloads\Adobe Photoshop CS3 Extended plus Crack\payloads\AdobeExtendScriptToolKitAll\fr_FR.mst
   C:\Users\Ricardo\Documents\FireTorrentDownloads\Adobe Photoshop CS3 Extended plus Crack\payloads\AdobeExtendScriptToolKitAll\fr_XM.mst
   C:\Users\Ricardo\Documents\FireTorrentDownloads\Adobe Photoshop CS3 Extended plus Crack\payloads\AdobeExtendScriptToolKitAll\he_IL.mst
   C:\Users\Ricardo\Documents\FireTorrentDownloads\Adobe Photoshop CS3 Extended plus Crack\payloads\AdobeExtendScriptToolKitAll\hi_IN.mst
   C:\Users\Ricardo\Documents\FireTorrentDownloads\Adobe Photoshop CS3 Extended plus Crack\payloads\AdobeExtendScriptToolKitAll\hr_HR.mst
   C:\Users\Ricardo\Documents\FireTorrentDownloads\Adobe Photoshop CS3 Extended plus Crack\payloads\AdobeExtendScriptToolKitAll\hu_HU.mst
   C:\Users\Ricardo\Documents\FireTorrentDownloads\Adobe Photoshop CS3 Extended plus Crack\payloads\AdobeExtendScriptToolKitAll\is_IS.mst
   C:\Users\Ricardo\Documents\FireTorrentDownloads\Adobe Photoshop CS3 Extended plus Crack\payloads\AdobeExtendScriptToolKitAll\it_IT.mst
   C:\Users\Ricardo\Documents\FireTorrentDownloads\Adobe Photoshop CS3 Extended plus Crack\payloads\AdobeExtendScriptToolKitAll\ja_JP.mst
   C:\Users\Ricardo\Documents\FireTorrentDownloads\Adobe Photoshop CS3 Extended plus Crack\payloads\AdobeExtendScriptToolKitAll\ko_KR.mst
   C:\Users\Ricardo\Documents\FireTorrentDownloads\Adobe Photoshop CS3 Extended plus Crack\payloads\AdobeExtendScriptToolKitAll\lt_LT.mst
   C:\Users\Ricardo\Documents\FireTorrentDownloads\Adobe Photoshop CS3 Extended plus Crack\payloads\AdobeExtendScriptToolKitAll\lv_LV.mst
   C:\Users\Ricardo\Documents\FireTorrentDownloads\Adobe Photoshop CS3 Extended plus Crack\payloads\AdobeExtendScriptToolKitAll\mk_MK.mst
   C:\Users\Ricardo\Documents\FireTorrentDownloads\Adobe Photoshop CS3 Extended plus Crack\payloads\AdobeExtendScriptToolKitAll
b_NO.mst
   C:\Users\Ricardo\Documents\FireTorrentDownloads\Adobe Photoshop CS3 Extended plus Crack\payloads\AdobeExtendScriptToolKitAll
l_NL.mst
   C:\Users\Ricardo\Documents\FireTorrentDownloads\Adobe Photoshop CS3 Extended plus Crack\payloads\AdobeExtendScriptToolKitAll\pl_PL.mst
   C:\Users\Ricardo\Documents\FireTorrentDownloads\Adobe Photoshop CS3 Extended plus Crack\payloads\AdobeExtendScriptToolKitAll\pt_BR.mst
   C:\Users\Ricardo\Documents\FireTorrentDownloads\Adobe Photoshop CS3 Extended plus Crack\payloads\AdobeExtendScriptToolKitAllo_RO.mst
   C:\Users\Ricardo\Documents\FireTorrentDownloads\Adobe Photoshop CS3 Extended plus Crack\payloads\AdobeExtendScriptToolKitAllu_RU.mst
   C:\Users\Ricardo\Documents\FireTorrentDownloads\Adobe Photoshop CS3 Extended plus Crack\payloads\AdobeExtendScriptToolKitAll\sh_YU.mst
   C:\Users\Ricardo\Documents\FireTorrentDownloads\Adobe Photoshop CS3 Extended plus Crack\payloads\AdobeExtendScriptToolKitAll\sk_SK.mst
   C:\Users\Ricardo\Documents\FireTorrentDownloads\Adobe Photoshop CS3 Extended plus Crack\payloads\AdobeExtendScriptToolKitAll\sl_SI.mst
   C:\Users\Ricardo\Documents\FireTorrentDownloads\Adobe Photoshop CS3 Extended plus Crack\payloads\AdobeExtendScriptToolKitAll\sq_AL.mst
   C:\Users\Ricardo\Documents\FireTorrentDownloads\Adobe Photoshop CS3 Extended plus Crack\payloads\AdobeExtendScriptToolKitAll\sv_SE.mst
   C:\Users\Ricardo\Documents\FireTorrentDownloads\Adobe Photoshop CS3 Extended plus Crack\payloads\AdobeExtendScriptToolKitAll	h_TH.mst
   C:\Users\Ricardo\Documents\FireTorrentDownloads\Adobe Photoshop CS3 Extended plus Crack\payloads\AdobeExtendScriptToolKitAll	r_TR.mst
   C:\Users\Ricardo\Documents\FireTorrentDownloads\Adobe Photoshop CS3 Extended plus Crack\payloads\AdobeExtendScriptToolKitAll\uk_UA.mst
   C:\Users\Ricardo\Documents\FireTorrentDownloads\Adobe Photoshop CS3 Extended plus Crack\payloads\AdobeExtendScriptToolKitAll\vi_VN.mst
   C:\Users\Ricardo\Documents\FireTorrentDownloads\Adobe Photoshop CS3 Extended plus Crack\payloads\AdobeExtendScriptToolKitAll\zh_CN.mst
   C:\Users\Ricardo\Documents\FireTorrentDownloads\Adobe Photoshop CS3 Extended plus Crack\payloads\AdobeExtendScriptToolKitAll\zh_TW.mst
   C:\Users\Ricardo\Documents\FireTorrentDownloads\Adobe Photoshop CS3 Extended plus Crack\payloads\AdobeFontsAll\AdobeFontsAll.boot.xml
   C:\Users\Ricardo\Documents\FireTorrentDownloads\Adobe Photoshop CS3 Extended plus Crack\payloads\AdobeFontsAll\AdobeFontsAll.msi
   C:\Users\Ricardo\Documents\FireTorrentDownloads\Adobe Photoshop CS3 Extended plus Crack\payloads\AdobeFontsAll\AdobeFontsAll.proxy.xml
   C:\Users\Ricardo\Documents\FireTorrentDownloads\Adobe Photoshop CS3 Extended plus Crack\payloads\AdobeFontsAll\AdobeFontsAll1.cab
   C:\Users\Ricardo\Documents\FireTorrentDownloads\Adobe Photoshop CS3 Extended plus Crack\payloads\AdobeHelpViewerAll\AdobeHelpViewerAll.boot.xml
   C:\Users\Ricardo\Documents\FireTorrentDownloads\Adobe Photoshop CS3 Extended plus Crack\payloads\AdobeHelpViewerAll\AdobeHelpViewerAll.msi
   C:\Users\Ricardo\Documents\FireTorrentDownloads\Adobe Photoshop CS3 Extended plus Crack\payloads\AdobeHelpViewerAll\AdobeHelpViewerAll.proxy.xml
   C:\Users\Ricardo\Documents\FireTorrentDownloads\Adobe Photoshop CS3 Extended plus Crack\payloads\AdobeHelpViewerAll\AdobeHelpViewerAll1.cab
   C:\Users\Ricardo\Documents\FireTorrentDownloads\Adobe Photoshop CS3 Extended plus Crack\payloads\AdobeLinguisticsAll\AdobeLinguisticsAll.boot.xml
   C:\Users\Ricardo\Documents\FireTorrentDownloads\Adobe Photoshop CS3 Extended plus Crack\payloads\AdobeLinguisticsAll\AdobeLinguisticsAll.msi
   C:\Users\Ricardo\Documents\FireTorrentDownloads\Adobe Photoshop CS3 Extended plus Crack\payloads\AdobeLinguisticsAll\AdobeLinguisticsAll.proxy.xml
   C:\Users\Ricardo\Documents\FireTorrentDownloads\Adobe Photoshop CS3 Extended plus Crack\payloads\AdobeLinguisticsAll\AdobeLinguisticsAll1.cab
   C:\Users\Ricardo\Documents\FireTorrentDownloads\Adobe Photoshop CS3 Extended plus Crack\payloads\AdobePDFL8All\AdobePDFL8All.boot.xml
   C:\Users\Ricardo\Documents\FireTorrentDownloads\Adobe Photoshop CS3 Extended plus Crack\payloads\AdobePDFL8All\AdobePDFL8All.msi
   C:\Users\Ricardo\Documents\FireTorrentDownloads\Adobe Photoshop CS3 Extended plus Crack\payloads\AdobePDFL8All\AdobePDFL8All.proxy.xml
   C:\Users\Ricardo\Documents\FireTorrentDownloads\Adobe Photoshop CS3 Extended plus Crack\payloads\AdobePDFL8All\AdobePDFL8All1.cab
   C:\Users\Ricardo\Documents\FireTorrentDownloads\Adobe Photoshop CS3 Extended plus Crack\payloads\AdobePDFSettingsNAEU\AdobePDFSettingsAll.boot.xml
   C:\Users\Ricardo\Documents\FireTorrentDownloads\Adobe Photoshop CS3 Extended plus Crack\payloads\AdobePDFSettingsNAEU\AdobePDFSettingsAll.msi
   C:\Users\Ricardo\Documents\FireTorrentDownloads\Adobe Photoshop CS3 Extended plus Crack\payloads\AdobePDFSettingsNAEU\AdobePDFSettingsAll.proxy.xml
   C:\Users\Ricardo\Documents\FireTorrentDownloads\Adobe Photoshop CS3 Extended plus Crack\payloads\AdobePDFSettingsNAEU\AdobePDFSettingsAll1.cab
   C:\Users\Ricardo\Documents\FireTorrentDownloads\Adobe Photoshop CS3 Extended plus Crack\payloads\AdobePhotoshop10en_US\AdobePhotoshop10en_US.boot.xml
   C:\Users\Ricardo\Documents\FireTorrentDownloads\Adobe Photoshop CS3 Extended plus Crack\payloads\AdobePhotoshop10en_US\AdobePhotoshop10en_US.msi
   C:\Users\Ricardo\Documents\FireTorrentDownloads\Adobe Photoshop CS3 Extended plus Crack\payloads\AdobePhotoshop10en_US\AdobePhotoshop10en_US.proxy.xml
   C:\Users\Ricardo\Documents\FireTorrentDownloads\Adobe Photoshop CS3 Extended plus Crack\payloads\AdobePhotoshop10en_US\AdobePhotoshop10en_US1.cab
   C:\Users\Ricardo\Documents\FireTorrentDownloads\Adobe Photoshop CS3 Extended plus Crack\payloads\AdobePhotoshop10en_US\en_US.mst
   C:\Users\Ricardo\Documents\FireTorrentDownloads\Adobe Photoshop CS3 Extended plus Crack\payloads\AdobeStockPhotos1.5All\AdobeStockPhotos1.5All.boot.xml
   C:\Users\Ricardo\Documents\FireTorrentDownloads\Adobe Photoshop CS3 Extended plus Crack\payloads\AdobeStockPhotos1.5All\AdobeStockPhotos1.5All.msi
   C:\Users\Ricardo\Documents\FireTorrentDownloads\Adobe Photoshop CS3 Extended plus Crack\payloads\AdobeStockPhotos1.5All\AdobeStockPhotos1.5All.proxy.xml
   C:\Users\Ricardo\Documents\FireTorrentDownloads\Adobe Photoshop CS3 Extended plus Crack\payloads\AdobeStockPhotos1.5All\AdobeStockPhotos1.5All1.cab
   C:\Users\Ricardo\Documents\FireTorrentDownloads\Adobe Photoshop CS3 Extended plus Crack\payloads\AdobeTypeSupportAll\AdobeTypeSupportAll.boot.xml
   C:\Users\Ricardo\Documents\FireTorrentDownloads\Adobe Photoshop CS3 Extended plus Crack\payloads\AdobeTypeSupportAll\AdobeTypeSupportAll.msi
   C:\Users\Ricardo\Documents\FireTorrentDownloads\Adobe Photoshop CS3 Extended plus Crack\payloads\AdobeTypeSupportAll\AdobeTypeSupportAll.proxy.xml
   C:\Users\Ricardo\Documents\FireTorrentDownloads\Adobe Photoshop CS3 Extended plus Crack\payloads\AdobeTypeSupportAll\AdobeTypeSupportAll1.cab
   C:\Users\Ricardo\Documents\FireTorrentDownloads\Adobe Photoshop CS3 Extended plus Crack\payloads\AdobeVersionCueClient3All\AdobeVersionCueClient3All.boot.xml
   C:\Users\Ricardo\Documents\FireTorrentDownloads\Adobe Photoshop CS3 Extended plus Crack\payloads\AdobeVersionCueClient3All\AdobeVersionCueClient3All.msi
   C:\Users\Ricardo\Documents\FireTorrentDownloads\Adobe Photoshop CS3 Extended plus Crack\payloads\AdobeVersionCueClient3All\AdobeVersionCueClient3All.proxy.xml
   C:\Users\Ricardo\Documents\FireTorrentDownloads\Adobe Photoshop CS3 Extended plus Crack\payloads\AdobeVersionCueClient3All\AdobeVersionCueClient3All1.cab
   C:\Users\Ricardo\Documents\FireTorrentDownloads\Adobe Photoshop CS3 Extended plus Crack\payloads\AdobeWinSoftLinguisticsPluginAll\AdobeWinSoftLinguisticsPluginAll.boot.xml
   C:\Users\Ricardo\Documents\FireTorrentDownloads\Adobe Photoshop CS3 Extended plus Crack\payloads\AdobeWinSoftLinguisticsPluginAll\AdobeWinSoftLinguisticsPluginAll.msi
   C:\Users\Ricardo\Documents\FireTorrentDownloads\Adobe Photoshop CS3 Extended plus Crack\payloads\AdobeWinSoftLinguisticsPluginAll\AdobeWinSoftLinguisticsPluginAll.proxy.xml
   C:\Users\Ricardo\Documents\FireTorrentDownloads\Adobe Photoshop CS3 Extended plus Crack\payloads\AdobeWinSoftLinguisticsPluginAll\AdobeWinSoftLinguisticsPluginAll1.cab
   C:\Users\Ricardo\Documents\FireTorrentDownloads\Adobe Photoshop CS3 Extended plus Crack\payloads\AdobeXMPPanelsAll\AdobeXMPPanelsAll.boot.xml
   C:\Users\Ricardo\Documents\FireTorrentDownloads\Adobe Photoshop CS3 Extended plus Crack\payloads\AdobeXMPPanelsAll\AdobeXMPPanelsAll.msi
   C:\Users\Ricardo\Documents\FireTorrentDownloads\Adobe Photoshop CS3 Extended plus Crack\payloads\AdobeXMPPanelsAll\AdobeXMPPanelsAll.proxy.xml
   C:\Users\Ricardo\Documents\FireTorrentDownloads\Adobe Photoshop CS3 Extended plus Crack\payloads\AdobeXMPPanelsAll\AdobeXMPPanelsAll1.cab
   C:\Users\Ricardo\Documents\FireTorrentDownloads\Adobe Photoshop CS3 Extended plus Crack\payloads\BridgeStartMeeting\BridgeStartMeeting.boot.xml
   C:\Users\Ricardo\Documents\FireTorrentDownloads\Adobe Photoshop CS3 Extended plus Crack\payloads\BridgeStartMeeting\BridgeStartMeeting.msi
   C:\Users\Ricardo\Documents\FireTorrentDownloads\Adobe Photoshop CS3 Extended plus Crack\payloads\BridgeStartMeeting\BridgeStartMeeting.proxy.xml
   C:\Users\Ricardo\Documents\FireTorrentDownloads\Adobe Photoshop CS3 Extended plus Crack\payloads\BridgeStartMeeting\BridgeStartMeeting1.cab
   C:\Users\Ricardo\Documents\FireTorrentDownloads\Adobe Photoshop CS3 Extended plus Crackedist\WindowsInstaller-KB893803-v2-x86.exe
   C:\Users\Ricardo\Documents\FireTorrentDownloads\Adobe Photoshop CS3 Extended plus Crackedist\WindowsServer2003-KB898715-ia64-enu.exe
   C:\Users\Ricardo\Documents\FireTorrentDownloads\Adobe Photoshop CS3 Extended plus Crackedist\WindowsServer2003-KB898715-x64-enu.exe
   C:\Users\Ricardo\Documents\FireTorrentDownloads\Adobe Photoshop CS3 Extended plus Crackedist\WindowsServer2003-KB898715-x86-enu.exe
   C:\Users\Ricardo\Documents\FireTorrentDownloads\Adobe Photoshop CS3 Extended plus Crackedist\WindowsXP-KB898715-x64-enu.exe
   C:\Users\Ricardo\Documents\FireTorrentDownloads\Adobe Photoshop CS3 Extended plus Crackesources\common
   C:\Users\Ricardo\Documents\FireTorrentDownloads\Adobe Photoshop CS3 Extended plus Crackesources\main.html
   C:\Users\Ricardo\Documents\FireTorrentDownloads\Adobe Photoshop CS3 Extended plus Crackesources\main.xml
   C:\Users\Ricardo\Documents\FireTorrentDownloads\Adobe Photoshop CS3 Extended plus Crackesources\media
   C:\Users\Ricardo\Documents\FireTorrentDownloads\Adobe Photoshop CS3 Extended plus Crackesources\common\alert
   C:\Users\Ricardo\Documents\FireTorrentDownloads\Adobe Photoshop CS3 Extended plus Crackesources\common\scripts
   C:\Users\Ricardo\Documents\FireTorrentDownloads\Adobe Photoshop CS3 Extended plus Crackesources\common\alert\alert.css
   C:\Users\Ricardo\Documents\FireTorrentDownloads\Adobe Photoshop CS3 Extended plus Crackesources\common\alert\alert.html
   C:\Users\Ricardo\Documents\FireTorrentDownloads\Adobe Photoshop CS3 Extended plus Crackesources\common\alert\alert_ie.css
   C:\Users\Ricardo\Documents\FireTorrentDownloads\Adobe Photoshop CS3 Extended plus Crackesources\common\scripts\ContainerProxy.js
   C:\Users\Ricardo\Documents\FireTorrentDownloads\Adobe Photoshop CS3 Extended plus Crackesources\common\scripts\localization.js
   C:\Users\Ricardo\Documents\FireTorrentDownloads\Adobe Photoshop CS3 Extended plus Crackesources\common\scripts\silentWorkflow.js
   C:\Users\Ricardo\Documents\FireTorrentDownloads\Adobe Photoshop CS3 Extended plus Crackesources\common\scripts\utils.js
   C:\Users\Ricardo\Documents\FireTorrentDownloads\Adobe Photoshop CS3 Extended plus Crackesources\media\css
   C:\Users\Ricardo\Documents\FireTorrentDownloads\Adobe Photoshop CS3 Extended plus Crackesources\media\img
   C:\Users\Ricardo\Documents\FireTorrentDownloads\Adobe Photoshop CS3 Extended plus Crackesources\media\css\styles.css
   C:\Users\Ricardo\Documents\FireTorrentDownloads\Adobe Photoshop CS3 Extended plus Crackesources\media\img\progbarLeft_on.png
   C:\Users\Ricardo\Documents\FireTorrentDownloads\Adobe Photoshop CS3 Extended plus Crackesources\media\img\progbarRight.png
   C:\Users\Ricardo\Documents\FireTorrentDownloads\Adobe Photoshop CS3 Extended plus Crackesources\media\img\progbar_on.png
   C:\Users\Ricardo\Documents\FireTorrentDownloads\Adobe Photoshop CS3 Extended plus Crackesources\media\img\progbox.png
   C:\Users\Ricardo\Documents\FireTorrentDownloads\Adobe Photoshop CS3 Extended plus Crackesources\media\img\setup.exe
   C:\Users\Ricardo\Documents\FireTorrentDownloads\Adobe Photoshop CS3 Extended plus Crackesources\media\img\Torrent downloaded from Demonoid.com.txt
   C:\Users\Ricardo\Documents\FireTorrentDownloads\Adobe Photoshop CS3 Extended plus Crackesources\media\img\VersionInfo.xml
   C:\Users\Ricardo\Documents\FireTorrentDownloads\Adobe Photoshop CS3 Extended plus Crackesources\media\img\WinBootstrapper.msi
   C:\Users\Ricardo\Documents\FireTorrentDownloads\Adobe Photoshop CS3 Extended plus Crackesources\media\img\WinBootstrapper1.cab
   C:\Users\Ricardo\Documents\UseNeXT\alt.binaries.cd.image.reposts\FL Studio XXL v.7 Crack And Many Nice Sounds. .zip
   C:\Users\Ricardo\Shared\Crack.Keygen.All.Languages.NFS.UNDERCOVER.rar


   [ UAC => 1 ]


   1 - "C:\ToolBar SD\TB_1.txt" - 23/08/2009|12:13 - Option : [2]

   -----------\  Fin du rapport a 12:13:56,65

rjmdm · Answer

Pour ce qui est du deuxiéme, j'utilise qu'une clé usb, et non infectée normalement, et je n'arrive pas a rechercher car c'est en accés refusé.

Merci

ric025 · Answer

Re. Tu as acheté ton pc neuf ?

Il y a encore du boulot ! :(

Pour USBFix, essaie de le lancer en faisant un clic-droit puis "Exécuter en tant qu'administrateur".

Avec les cracks que tu trimballes, c'est normal les infections !! 

Utile, à lire absolument, quelques minutes de prévention, notamment sur les cracks : https://www.malekal.com/fichiers/projetantimalwares/prevention-protection.pdf 

++

rjmdm · Answer

Salut, oui, je l'ai acheté neuf a carrefour ! Tout neuf .... je comprends pas pourquoi il est si modifié ! est ce que des logiciels peuvent modifier ça ?

ric025 · Answer

Ok pour le pc alors...

Et USBFix ?

rjmdm · Answer

Un jour mon ordi est tombé en panne, je n'arrivais plus a le modifier, je suis allé au service aprés vente et en 2 jours c'était réparé ... et j'avais un logiciel en plus : ATI catalyst install manager. 

C'est peut etre eux qui me l'on modifié ... 


et si c'est bon ça a marché cette fois, voici le rapport : 



############################## | UsbFix V6.021 |

User : Ricardo (Administrateurs) # PC-DE-RICARDO
Update on 22/08/09 by Chiquitine29
Start at: 21:35:11 | 23/08/2009
Website : http://pagesperso-orange.fr/NosTools/index.html

AMD Athlon(tm) 64 X2 Dual Core Processor 5000+
Microsoft® Windows Vista™ Édition Familiale Premium  (6.0.6001 32-bit) # Service Pack 1
Internet Explorer 8.0.6001.18372
Windows Firewall Status : Disabled
AV : Norton Internet Security Online 2007 [ Enabled | Updated ]
FW : Norton Internet Security Online[ Enabled ]2007

C:\ -> Disque fixe local # 145,8 Go (34,36 Go free) [ACER] # NTFS
D:\ -> Disque fixe local # 145,46 Go (112 Go free) [DATA] # NTFS
E:\ -> Disque CD-ROM
F:\ -> Disque amovible # 1,88 Go (1,34 Go free) # FAT
G:\ -> Disque amovible
H:\ -> Disque amovible
I:\ -> Disque amovible
J:\ -> Disque amovible

############################## | Processus actifs |

C:\Windows\System32\smss.exe
C:\Windows\system32\csrss.exe
C:\Windows\system32\csrss.exe
C:\Windows\system32\wininit.exe
C:\Windows\system32\services.exe
C:\Windows\system32\winlogon.exe
C:\Windows\system32\lsass.exe
C:\Windows\system32\lsm.exe
C:\Windows\system32\svchost.exe
C:\Windows\system32\svchost.exe
C:\Windows\system32\Ati2evxx.exe
C:\Windows\System32\svchost.exe
C:\Windows\System32\svchost.exe
C:\Windows\system32\svchost.exe
C:\Windows\system32\svchost.exe
C:\Windows\system32\SLsvc.exe
C:\Windows\system32\svchost.exe
C:\Windows\system32\svchost.exe
C:\Windows\system32\Ati2evxx.exe
C:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe
C:\Program Files\Common Files\Symantec Shared\AppCore\AppSvc32.exe
C:\Windows\System32\spoolsv.exe
C:\Windows\system32\svchost.exe
C:\Windows\system32	askeng.exe
C:\Windows\system32\Dwm.exe
C:\Windows\system32	askeng.exe
C:\Windows\Explorer.EXE
C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
C:\Program Files\Bonjour\mDNSResponder.exe
C:\Windows\system32\svchost.exe
C:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe
C:\Program Files\Windows Live\Family Safety\fsssvc.exe
C:\Program Files\Common Files\LightScribe\LSSrvc.exe
C:\Program Files\Common Files\LogiShrd\LVMVFM\LVPrcSrv.exe
C:\Program Files\Symantec\LiveUpdate\ALUSchedulerSvc.exe
C:\Windows\system32\PnkBstrA.exe
C:\Windows\system32\svchost.exe
C:\Program Files\CyberLink\Shared Files\RichVideo.exe
C:\Windows\system32\svchost.exe
C:\Windows\System32\svchost.exe
C:\Windows\system32\SearchIndexer.exe
C:\Acer\Empowering Technology\eRecovery\eRecoveryService.exe
C:\Windows\system32\WUDFHost.exe
C:\Users\Ricardo\AppData\Roaming\eoRezo\SoftwareUpdate\SoftwareUpdateHP.exe
C:\Windows\RtHDVCpl.exe
C:\Windows\V0270Mon.exe
C:\Windows\WindowsMobile\wmdc.exe
C:\Program Files\Windows Live\Family Safety\fsui.exe
C:\Program Files\Windows Live\Messenger\msnmsgr.exe
C:\Windows\ehome\ehtray.exe
C:\Program Files\Windows Media Player\wmpnscfg.exe
C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe
C:\Windows\system32\wbem\unsecapp.exe
C:\Windows\system32\svchost.exe
C:\Windows\ehome\ehmsas.exe
C:\Windows\system32\wbem\wmiprvse.exe
C:\Program Files\Windows Media Player\wmpnetwk.exe
C:\Acer\Empowering Technology\eRecovery\ERAGENT.EXE
C:\Program Files\Windows Live\Contacts\wlcomm.exe
C:\Windows\system32\wuauclt.exe
C:\Program Files\Norton Internet Security\Norton AntiVirus\NAVW32.exe
C:\Program Files\Common Files\Symantec Shared\CCPD-LC\symlcsvc.exe
C:\Program Files\Windows Live\Messenger\msnmsgr.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Program Files\Adobe\Reader 8.0\Reader\AcroRd32.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Google\Google Toolbar\GoogleToolbarUser.exe
C:\Program Files\Common Files\Adobe\Updater5\AdobeUpdater.exe
C:\Windows\system32\SearchProtocolHost.exe
C:\Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe
C:\PROGRA~1\Symantec\LIVEUP~1\LUCOMS~1.EXE
C:\Windows\system32\Macromed\Flash\FlashUtil10a.exe
C:\Windows\system32\conime.exe
C:\Windows\system32\SearchFilterHost.exe
C:\Windows\system32\wbem\wmiprvse.exe

################## | Fichiers # Dossiers infectieux |

C:\autorun.inf # -> fichier appelé  : "C:\"RECYCLER\S-1-9-84-100008199-100002661-100003092-1328.com c:\"" ( Absent ! )  
Présent ! C:\autorun.inf  
F:\autorun.inf # -> fichier appelé  : "F:\ktly.exe" ( Absent ! )  
Présent ! F:\abk.bat  
Présent ! F:\autorun.inf  

################## | Suspect ! ... | https://www.virustotal.com/gui/ |


################## | Registre # Clés Run infectieuses |

Présent ! HKLM\software\microsoft\security center "UacDisableNotify" ( 0x1 )  

################## | Registre # Mountpoints2 |

HKCU\..\..\Explorer\MountPoints2\{5502b964-a34a-11dd-bdbd-001921e2ec4e}
shell\AutoRun\command =start.exe 
shell\iledefrance\command =start.exe 

HKCU\..\..\Explorer\MountPoints2\{61d000b8-e54b-11dc-9077-001921e2ec4e}
shell\AutoRun\command =RavMon.exe 

HKCU\..\..\Explorer\MountPoints2\{92636aac-e54a-11dc-9de5-001921e2ec4e}
shell\AutoRun\command =C:\Windows\system32\RunDLL32.EXE Shell32.DLL,ShellExec_RunDLL F:\launcher\launcher.exe

HKCU\..\..\Explorer\MountPoints2\{cac2d7e6-8fc7-11de-91ca-001921e2ec4e}
shell\AutoRun\command =ktly.exe 
shell\open\Command =ktly.exe 

HKCU\..\..\Explorer\MountPoints2\{d50b2b32-0ba0-11dc-89a7-806e6f6e6963}
shell\AutoRun\command =E:\Manual_de_instalação.txt 

HKCU\..\..\Explorer\MountPoints2\{dbc86506-2e97-11de-a9e7-001921e2ec4e}
shell\AutoRun\command =C:\Windows\system32\RunDLL32.EXE Shell32.DLL,ShellExec_RunDLL www.hccglobal.com

################## | Cracks / Keygens / Serials |

"C:\Users\Ricardo\Desktop\elifoot\2002\elifoot2002r2_crack_[PM-Planeta-Manager].exe"  
16/04/2009 20:30 |Size : 531013 |Crc32 : 4f151fe7 |Md5 : c7207bf13a83237a3bb50d3b6e376684  
 
"C:\Users\Ricardo\Desktop\MAGIX_Music_Maker_15_Premium\Crack\MusicMaker.exe"  
14/11/2008 04:42 |Size : 15020032 |Crc32 : f4427768 |Md5 : 325ec64d87867f05a42eeb219ce5b971  
 
"C:\Users\Ricardo\Documents\FireTorrentDownloads\Adobe Photoshop CS3 Extended plus Crack\Crack\Photoshop.exe"  
15/07/2008 17:50 |Size : 44814336 |Crc32 : 9afef53b |Md5 : a47961a1eba34c51399a1ae6279bbb6f  
 
"C:\Users\Ricardo\Documents\FireTorrentDownloads\Adobe Photoshop CS3 Extended plus Crackedist\WindowsInstaller-KB893803-v2-x86.exe"  
15/07/2008 17:50 |Size : 2585872 |Crc32 : 2704084e |Md5 : b0c71c2bcadb1176b83d124ff472324c  
 
"C:\Users\Ricardo\Documents\FireTorrentDownloads\Adobe Photoshop CS3 Extended plus Crackedist\WindowsServer2003-KB898715-ia64-enu.exe"  
15/07/2008 17:50 |Size : 5960944 |Crc32 : a5065474 |Md5 : c8fb61e3b51acc1ebc8d1868d0207c2f  
 
"C:\Users\Ricardo\Documents\FireTorrentDownloads\Adobe Photoshop CS3 Extended plus Crackedist\WindowsServer2003-KB898715-x64-enu.exe"  
15/07/2008 17:50 |Size : 4584688 |Crc32 : 4386abdb |Md5 : aca3ba88fd17fb7afcbe6d600c8b3e9d  
 
"C:\Users\Ricardo\Documents\FireTorrentDownloads\Adobe Photoshop CS3 Extended plus Crackedist\WindowsServer2003-KB898715-x86-enu.exe"  
15/07/2008 17:50 |Size : 1536752 |Crc32 : fb88107a |Md5 : 20733469bd0851638d8feb5ed98e00c9  
 
"C:\Users\Ricardo\Documents\FireTorrentDownloads\Adobe Photoshop CS3 Extended plus Crackedist\WindowsXP-KB898715-x64-enu.exe"  
15/07/2008 17:50 |Size : 4584688 |Crc32 : e0cbc6c9 |Md5 : 62e49878234cc0cbb348925a91b3f4c1  
 
"C:\Users\Ricardo\Documents\FireTorrentDownloads\Adobe Photoshop CS3 Extended plus Crackesources\media\img\setup.exe"  
15/07/2008 17:11 |Size : 125033 |Crc32 : 6a497733 |Md5 : 5c12231ea14817a896481b1dbe04736a  
 

################## | ! Fin du rapport # UsbFix V6.021 ! |

ric025 · Answer

(!) Branche tes sources de données externes à ton PC, (clé USB, disque dur externe, etc...) susceptibles d avoir été infectés sans les ouvrir

• Clique droit sur le raccourci UsbFix présent sur ton bureau et choisis "Exécuter en tant qu'Administrateur".

• Au menu principal choisis l'option " F " pour français et tape sur [entrée] .

• Au second menu Choisis l'option " 2 " ( Suppression ) et tape sur [entrée]  

• Ton bureau disparaitra et le pc redémarrera .

• Au redémarrage , UsbFix scannera ton pc , laisse travailler l'outil.

• Ensuite post le rapport UsbFix.txt qui apparaitra avec le bureau .

• Note : Le rapport UsbFix.txt est sauvegardé a la racine du disque.( C:\UsbFix.txt )

++

rjmdm · Answer

Bonjour, je te remercie beacoup de ton aide, mais, en essayaant de booter linux avec vista, je n'arrivais plus a accéder a vista, j'ai mis le cd d'instalation, et j'ai réinstallé. Plus aucun problème ! Oui ... vista c'est réinstallé sur mon deuxiéme dsque dur ce qui fait que je n'ai pas accés a mon premier disque dur ainsi qu'a ses données ...

ric025 · Answer

Je n'ai pas tout compris....

Le problème actuel ?

rjmdm · Answer

En faite j'ai voulu faire un multiboot de vista et linux ... linux marchait bien, enfin presque, mais pas vista, il c'était désactivé. J'ai du insérer le cd d'instalation vista, et réinstaller tout depuis le début. Donc maintenant, plus de problèmes de trojans etc comme avant, car il c'est installé sur mon deuxiéme disque dur qui était vide. Maintenant, le disque dur que j'utilisais n'est plus détécté, et donc je peux pas accéder a mes contenus, mes favorits, mes logiciels, etc

ric025 · Answer

Houlah ! On dépasse mes compétences.... Ça devient un soucis matériel car c'est ton disque dur qui n'est pas détecté. Là, dès que l'on parle de Bios, priorités de démarrage, cavaliers à l'arrière des DD...., je me perds...  

J'ai peur de ne pas t'être d'une grande aide pour la suite des opérations ! Essaie de changer de section sur CCM et de demander de l'aide sur le forum Hardware. Au pire, quand tu auras accès à ton disque Dur avec tes anciennes données, tu pourras me refaire signe ! :( 

Donne leur le lien vers cette discussion.

Et par pitié, à l'avenir, évite les cracks ! ;)

++

rjmdm · Answer

Merci de ton aide ;-) je vais t'envoyer mon adresse msn, si tu veux on pourra en reparler :) a bientot sur msn j'espére.

ric025 · Answer

Ok. Désolé, mais en Hardware, je ne préfère pas m'avancer ! Toucher mon pc, ok, mais pas celui des autres ! :)

A bientôt.

rjmdm · Answer

Merci de ton aide ;-) je vais t'envoyer mon adresse msn, si tu veux on pourra en reparler :) a bientot sur msn j'espére.

Pubs intenpestives

29 réponses

Votre réponse

Discussions similaires

Newsletters