Rapport RSIT

Rmat -
Utilisateur anonyme - 13 févr. 2010 à 21:15

Bonjour,
je viens de suivrela fiche pratique : "[Virus] Méthode préliminaire de désinfection"dans laquelle il est demandé de lancé RSIT,
je suis cette fiche car mon PC est lent au démarrage mais aussi à l'utilisation.

Donc est ce que qu'un pourrait analyser mes 2 rapports.

Merci d'avance

Voici le rapport info :

-->C:\PROGRA~1\Yahoo!\Common\UNYT_W~1.EXE
7-Zip 4.65-->"C:\Program Files\7-Zip\Uninstall.exe"
Acrobat.com-->C:\Program Files\Fichiers communs\Adobe AIR\Versions\1.0\Adobe AIR Application Installer.exe -uninstall com.adobe.mauby 4875E02D9FB21EE389F73B8D1702B320485DF8CE.1
Acrobat.com-->MsiExec.exe /I{77DCDCE3-2DED-62F3-8154-05E745472D07}
Adobe AIR-->C:\Program Files\Fichiers communs\Adobe AIR\Versions\1.0\Adobe AIR Updater.exe -arp:uninstall
Adobe AIR-->MsiExec.exe /I{00203668-8170-44A0-BE44-B632FA4D780F}
Adobe Flash Player 10 ActiveX-->C:\WINDOWS\system32\Macromed\Flash\uninstall_activeX.exe
Adobe Reader 9.2 - Français-->MsiExec.exe /I{AC76BA86-7AD7-1036-7B44-A92000000001}
Adobe Shockwave Player-->C:\WINDOWS\system32\Adobe\SHOCKW~1\UNWISE.EXE C:\WINDOWS\system32\Adobe\SHOCKW~1\Install.log
ASIO4ALL-->C:\Program Files\ASIO4ALL v2\uninstall.exe
Assistant de connexion Windows Live-->MsiExec.exe /I{DCE8CD14-FBF5-4464-B9A4-E18E473546C7}
Avira AntiVir Personal - Free Antivirus-->C:\Program Files\Avira\AntiVir Desktop\setup.exe /REMOVE
CA Yahoo! Anti-Spy (remove only)-->"C:\Program Files\CA Yahoo! Anti-Spy\uninstall.exe"
CCleaner-->"C:\Program Files\CCleaner\uninst.exe"
Collab-->C:\Program Files\Image-Line\Collab\uninstall.exe
Correctif pour Windows XP (KB952287)-->"C:\WINDOWS\$NtUninstallKB952287$\spuninst\spuninst.exe"
Correctif pour Windows XP (KB961118)-->"C:\WINDOWS\$NtUninstallKB961118$\spuninst\spuninst.exe"
Correctif pour Windows XP (KB970653-v3)-->"C:\WINDOWS\$NtUninstallKB970653-v3$\spuninst\spuninst.exe"
COSMOSFloWorks-->MsiExec.exe /I{9944827A-6E24-429C-B232-406E58E19492}
COSMOSMotion-->MsiExec.exe /I{1FCB9C5C-3983-4BC6-9BF9-4B4CA313CC42}
COSMOSWorks 2006 SP04-->MsiExec.exe /I{E1C06466-1092-48D8-A3E7-FBF6BADC6283}
Dealio Toolbar 3.4-->MsiExec.exe /X{6105648C-0C3C-481D-8C11-1F4952D6FB53}
DWGeditor-->MsiExec.exe /X{1CECDCCE-1D2D-46E8-9F02-CCFC93120B55}
eDrawings 2006-->MsiExec.exe /I{E44895E5-15CA-48CB-B136-707E5183BEF3}
Encyclopédie Standard Microsoft Encarta 2002-->MsiExec.exe /I{01020202-823E-46CD-A70E-BEE818F97169}
FL Studio 8-->C:\Program Files\Image-Line\FL Studio 8\uninstall.exe
Galerie de photos Windows Live-->MsiExec.exe /X{B131E59D-202C-43C6-84C9-68F0C37541F1}
Google Toolbar for Internet Explorer-->"C:\Program Files\Google\Google Toolbar\Component\GoogleToolbarManager_E85CDE7661A53A6A.exe" /uninstall
Google Toolbar for Internet Explorer-->MsiExec.exe /I{18455581-E099-4BA8-BC6B-F34B2F06600C}
Hercules WiFi Controller-->C:\Program Files\InstallShield Installation Information\{CB85D557-008D-4DC1-9B01-B1B470771860}\setup.exe -runfromtemp -l0x040c -removeonly
HijackThis 2.0.2-->"C:\Program Files\trend micro\HijackThis.exe" /uninstall
Hotfix for Microsoft .NET Framework 3.5 SP1 (KB953595)-->C:\WINDOWS\system32\msiexec.exe /package {CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9} /uninstall /qb+ REBOOTPROMPT=""
Hotfix for Microsoft .NET Framework 3.5 SP1 (KB958484)-->C:\WINDOWS\system32\msiexec.exe /package {CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9} /uninstall {A7EEA2F2-BFCD-4A54-A575-7B81A786E658} /qb+ REBOOTPROMPT=""
IL Download Manager-->C:\Program Files\Image-Line\Downloader\uninstall.exe
Installation de Microsoft Works Suite 2002-->C:\Program Files\Microsoft Works Suite 2002\Setup\Launcher.exe E:\
Installation Windows Live-->C:\Program Files\Windows Live\Installer\wlarp.exe
Installation Windows Live-->MsiExec.exe /I{46ABBC54-1872-4AA3-95E2-F2C063A63F31}
Java(TM) 6 Update 4-->MsiExec.exe /I{3248F0A8-6813-11D6-A77B-00B0D0160040}
Java(TM) 6 Update 6-->MsiExec.exe /I{3248F0A8-6813-11D6-A77B-00B0D0160060}
Junk Mail filter update-->MsiExec.exe /I{E2DFE069-083E-4631-9B6C-43C48E991DE5}
Microsoft .NET Framework 2.0 Service Pack 2-->MsiExec.exe /I{C09FB3CD-3D0C-3F2D-899A-6A1D67F2073F}
Microsoft .NET Framework 3.0 Service Pack 2-->MsiExec.exe /I{A3051CD0-2F64-3813-A88D-B8DCCDE8F8C7}
Microsoft .NET Framework 3.5 SP1-->C:\WINDOWS\Microsoft.NET\Framework\v3.5\Microsoft .NET Framework 3.5 SP1\setup.exe
Microsoft .NET Framework 3.5 SP1-->MsiExec.exe /I{CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9}
Microsoft Choice Guard-->MsiExec.exe /X{F0E12BBA-AD66-4022-A453-A1C8A0C4D570}
Microsoft Silverlight-->MsiExec.exe /X{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}
Microsoft SQL Server 2005 Compact Edition [ENU]-->MsiExec.exe /I{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}
Microsoft Visual C++ 2008 ATL Update kb973924 - x86 9.0.30729.4148-->MsiExec.exe /X{002D9D5E-29BA-3E6D-9BC4-3D7D6DBC735C}
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17-->MsiExec.exe /X{9A25302D-30C0-39D9-BD6F-21E6EC160475}
Microsoft Works 6.0-->MsiExec.exe /I{FB12FDAC-457D-40D6-B6D6-9075AF29208E}
Mise à jour critique pour Lecteur Windows Media 11 (KB959772)-->"C:\WINDOWS\$NtUninstallKB959772_WM11$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Lecteur Windows Media (KB952069)-->"C:\WINDOWS\$NtUninstallKB952069_WM9$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Lecteur Windows Media (KB954155)-->"C:\WINDOWS\$NtUninstallKB954155_WM9$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Lecteur Windows Media (KB968816)-->"C:\WINDOWS\$NtUninstallKB968816_WM9$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Lecteur Windows Media (KB973540)-->"C:\WINDOWS\$NtUninstallKB973540_WM9$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Lecteur Windows Media 11 (KB954154)-->"C:\WINDOWS\$NtUninstallKB954154_WM11$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows Internet Explorer 7 (KB963027)-->"C:\WINDOWS\ie7updates\KB963027-IE7\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows Internet Explorer 8 (KB969897)-->"C:\WINDOWS\ie8updates\KB969897-IE8\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows Internet Explorer 8 (KB971961)-->"C:\WINDOWS\ie8updates\KB971961-IE8\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows Internet Explorer 8 (KB972260)-->"C:\WINDOWS\ie8updates\KB972260-IE8\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows Internet Explorer 8 (KB976325)-->"C:\WINDOWS\ie8updates\KB976325-IE8\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB938464-v2)-->"C:\WINDOWS\$NtUninstallKB938464-v2$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB950760)-->"C:\WINDOWS\$NtUninstallKB950760$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB950762)-->"C:\WINDOWS\$NtUninstallKB950762$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB950974)-->"C:\WINDOWS\$NtUninstallKB950974$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB951066)-->"C:\WINDOWS\$NtUninstallKB951066$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB951376-v2)-->"C:\WINDOWS\$NtUninstallKB951376-v2$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB951748)-->"C:\WINDOWS\$NtUninstallKB951748$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB952004)-->"C:\WINDOWS\$NtUninstallKB952004$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB952954)-->"C:\WINDOWS\$NtUninstallKB952954$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB954459)-->"C:\WINDOWS\$NtUninstallKB954459$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB954600)-->"C:\WINDOWS\$NtUninstallKB954600$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB955069)-->"C:\WINDOWS\$NtUninstallKB955069$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB956572)-->"C:\WINDOWS\$NtUninstallKB956572$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB956744)-->"C:\WINDOWS\$NtUninstallKB956744$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB956802)-->"C:\WINDOWS\$NtUninstallKB956802$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB956803)-->"C:\WINDOWS\$NtUninstallKB956803$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB956844)-->"C:\WINDOWS\$NtUninstallKB956844$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB957097)-->"C:\WINDOWS\$NtUninstallKB957097$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB958644)-->"C:\WINDOWS\$NtUninstallKB958644$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB958687)-->"C:\WINDOWS\$NtUninstallKB958687$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB958690)-->"C:\WINDOWS\$NtUninstallKB958690$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB959426)-->"C:\WINDOWS\$NtUninstallKB959426$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB960225)-->"C:\WINDOWS\$NtUninstallKB960225$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB960715)-->"C:\WINDOWS\$NtUninstallKB960715$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB960803)-->"C:\WINDOWS\$NtUninstallKB960803$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB961371)-->"C:\WINDOWS\$NtUninstallKB961371$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB961373)-->"C:\WINDOWS\$NtUninstallKB961373$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB961501)-->"C:\WINDOWS\$NtUninstallKB961501$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB968537)-->"C:\WINDOWS\$NtUninstallKB968537$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB969059)-->"C:\WINDOWS\$NtUninstallKB969059$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB969898)-->"C:\WINDOWS\$NtUninstallKB969898$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB969947)-->"C:\WINDOWS\$NtUninstallKB969947$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB970238)-->"C:\WINDOWS\$NtUninstallKB970238$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB971486)-->"C:\WINDOWS\$NtUninstallKB971486$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB971557)-->"C:\WINDOWS\$NtUninstallKB971557$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB971633)-->"C:\WINDOWS\$NtUninstallKB971633$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB971657)-->"C:\WINDOWS\$NtUninstallKB971657$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB972270)-->"C:\WINDOWS\$NtUninstallKB972270$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB973346)-->"C:\WINDOWS\$NtUninstallKB973346$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB973354)-->"C:\WINDOWS\$NtUninstallKB973354$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB973507)-->"C:\WINDOWS\$NtUninstallKB973507$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB973525)-->"C:\WINDOWS\$NtUninstallKB973525$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB973869)-->"C:\WINDOWS\$NtUninstallKB973869$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB973904)-->"C:\WINDOWS\$NtUninstallKB973904$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB974112)-->"C:\WINDOWS\$NtUninstallKB974112$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB974318)-->"C:\WINDOWS\$NtUninstallKB974318$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB974392)-->"C:\WINDOWS\$NtUninstallKB974392$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB974571)-->"C:\WINDOWS\$NtUninstallKB974571$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB975025)-->"C:\WINDOWS\$NtUninstallKB975025$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB975467)-->"C:\WINDOWS\$NtUninstallKB975467$\spuninst\spuninst.exe"
Mise à jour pour Windows Internet Explorer 8 (KB969497)-->"C:\WINDOWS\ie8updates\KB969497-IE8\spuninst\spuninst.exe"
Mise à jour pour Windows XP (KB898461)-->"C:\WINDOWS\$NtUninstallKB898461$\spuninst\spuninst.exe"
Mise à jour pour Windows XP (KB951978)-->"C:\WINDOWS\$NtUninstallKB951978$\spuninst\spuninst.exe"
Mise à jour pour Windows XP (KB955839)-->"C:\WINDOWS\$NtUninstallKB955839$\spuninst\spuninst.exe"
Mise à jour pour Windows XP (KB961503)-->"C:\WINDOWS\$NtUninstallKB961503$\spuninst\spuninst.exe"
Mise à jour pour Windows XP (KB967715)-->"C:\WINDOWS\$NtUninstallKB967715$\spuninst\spuninst.exe"
Mise à jour pour Windows XP (KB968389)-->"C:\WINDOWS\$NtUninstallKB968389$\spuninst\spuninst.exe"
Mise à jour pour Windows XP (KB971737)-->"C:\WINDOWS\$NtUninstallKB971737$\spuninst\spuninst.exe"
Mise à jour pour Windows XP (KB973687)-->"C:\WINDOWS\$NtUninstallKB973687$\spuninst\spuninst.exe"
Mise à jour pour Windows XP (KB973815)-->"C:\WINDOWS\$NtUninstallKB973815$\spuninst\spuninst.exe"
MSN Toolbar-->MsiExec.exe /I{7390F1A6-B3D4-4FCC-BDB1-A935EB0114F1}
MSVCRT-->MsiExec.exe /I{22B775E7-6C42-4FC5-8E10-9A5E3257BD94}
MSXML 4.0 SP2 (KB954430)-->MsiExec.exe /I{86493ADD-824D-4B8E-BD72-8C5DCDC52A71}
MSXML 4.0 SP2 (KB973688)-->MsiExec.exe /I{F662A8E6-F4DC-41A2-901E-8C11F044BDEC}
NVIDIA Drivers-->C:\WINDOWS\system32\NVUNINST.EXE UninstallGUI
NvMixer-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{D7A6C517-11F2-419F-B5BB-27772B939698}\Setup.exe" -uninstall
OmniPage Pro 9.0-->C:\Program Files\Caere\OmniPagePro90\Deinstall.exe "C:\Program Files\Caere\OmniPagePro90\uninstall.exe -f'C:\Program Files\Caere\OmniPagePro90\DeIsL1.isu'"
OpenOffice.org 2.4-->MsiExec.exe /I{A122962F-331A-4C2E-93DB-AD92D8A4FB14}
Outil de mise à jour Google-->"C:\Program Files\Google\Google Updater\GoogleUpdater.exe" -uninstall
Outil de téléchargement Windows Live-->MsiExec.exe /I{205C6BDD-7B73-42DE-8505-9A093F35A238}
PoiZone-->C:\Program Files\Image-Line\PoiZone\uninstall.exe
Scan Manager 5.2-->MsiExec.exe /I{E0A1559B-9886-11D4-8D06-0050DA284A39}
Search Settings 1.2-->MsiExec.exe /X{D0C73318-7B4A-4D16-A0C4-3B83F075EA88}
Segoe UI-->MsiExec.exe /I{A1F66FC9-11EE-4F2F-98C9-16F8D1E69FB7}
Shockwave-->C:\WINDOWS\system32\Macromed\SHOCKW~1\UNWISE.EXE C:\WINDOWS\system32\Macromed\SHOCKW~1\Install.log
SolidWorks 2006 SP04.1-->MsiExec.exe /I{63E5E5CC-2B3A-4ECA-8194-DA297715C9DF}
Spybot - Search & Destroy-->"C:\Program Files\Spybot - Search & Destroy\unins000.exe"
TELL ME MORE Communication-->"C:\Program Files\Auralog\TELL ME MORE Communication\Bin\unsetup.exe" -file "C:\Program Files\Auralog\TELL ME MORE Communication\unsetup.aui"
Text-To-Speech-Runtime-->MsiExec.exe /X{7B3F0113-E63C-4D6D-AF19-111A3165CCA2}
TI Connect 1.6-->MsiExec.exe /I{A8B94669-8654-4126-BD28-D0D2412CDED6}
Toxic Biohazard-->C:\Program Files\Image-Line\Toxic Biohazard\uninstall.exe
Unlocker 1.8.7-->C:\Program Files\Unlocker\uninst.exe
Update for Microsoft .NET Framework 3.5 SP1 (KB963707)-->C:\WINDOWS\system32\msiexec.exe /package {CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9} /uninstall {B2AE9C82-DC7B-3641-BFC8-87275C4F3607} /qb+ REBOOTPROMPT=""
Viewpoint Media Player-->C:\Program Files\Viewpoint\Viewpoint Media Player\MtsAxInstaller.exe /u
Vista Codec Package-->MsiExec.exe /I{F9FD80CE-0448-4D4F-8BCD-77FC514C3F99}
VLC media player 1.0.3-->C:\Program Files\VideoLAN\VLC\uninstall.exe
Windows Internet Explorer 8-->"C:\WINDOWS\ie8\spuninst\spuninst.exe"
Windows Live Call-->MsiExec.exe /I{82C7B308-0BDD-49D8-8EA5-9CD3A3F9DF41}
Windows Live Communications Platform-->MsiExec.exe /I{3B4E636E-9D65-4D67-BA61-189800823F52}
Windows Live FolderShare-->MsiExec.exe /X{2075CB0A-D26F-4DAA-B424-5079296B43BA}
Windows Live Mail-->MsiExec.exe /I{5DD76286-9BE7-4894-A990-E905E91AC818}
Windows Live Messenger-->MsiExec.exe /X{770F1BEC-2871-4E70-B837-FB8525FFA3B1}
Windows Live Writer-->MsiExec.exe /X{4634B21A-CC07-4396-890C-2B8168661FEA}
Windows Trust Installer-->"C:\Program Files\WTInstaller\Désinstaller.exe"
WinRAR-->"C:\Program Files\WinRAR\uninstall.exe"
Yahoo! Install Manager-->C:\WINDOWS\system32\regsvr32 /u C:\PROGRA~1\Yahoo!\Common\YINSTH~1.DLL
Yahoo! Internet Mail-->C:\WINDOWS\system32\regsvr32 /u /s C:\PROGRA~1\Yahoo!\Common\YMMAPI.dll
Yahoo! Mail Advisor-->C:\PROGRA~1\Yahoo!\Common\UNINST~1.EXE
Yahoo! Search Protection-->C:\PROGRA~1\Yahoo!\SEARCH~1\UNINST~1.EXE
Yahoo! Toolbar-->C:\PROGRA~1\Yahoo!\Common\UNYT_W~1.EXE

#NOM ?

127.0.0.1 localhost
127.0.0.1 mpa.one.microsoft.com
127.0.0.1
127.0.0.1
127.0.0.1
127.0.0.1
127.0.0.1
127.0.0.1
127.0.0.1
127.0.0.1

Securitycenter WMI appears to be broken

#NOM ?

Computer Name: ADMIN-4EEED84B7
Event Code: 26
Message: Application popup : : Machine Check:

Record Number: 30299
Source Name: Application Popup
Time Written: 20100107131020.000000+060
Event Type: Informations
User:

Computer Name: ADMIN-4EEED84B7
Event Code: 26
Message: Application popup : : Machine Check: Regs

Record Number: 30298
Source Name: Application Popup
Time Written: 20100107131020.000000+060
Event Type: Informations
User:

Computer Name: ADMIN-4EEED84B7
Event Code: 26
Message: Application popup : : Machine Check:

Record Number: 30297
Source Name: Application Popup
Time Written: 20100107131020.000000+060
Event Type: Informations
User:

Computer Name: ADMIN-4EEED84B7
Event Code: 26
Message: Application popup : : Machine Check: Regs

Record Number: 30296
Source Name: Application Popup
Time Written: 20100107131020.000000+060
Event Type: Informations
User:

Computer Name: ADMIN-4EEED84B7
Event Code: 26
Message: Application popup : : Machine Check:

Record Number: 30295
Source Name: Application Popup
Time Written: 20100107131020.000000+060
Event Type: Informations
User:

#NOM ?

Computer Name: ADMIN-4EEED84B7
Event Code: 1014
Message:
Record Number: 4178
Source Name: WgaSetup
Time Written: 20090829174859.000000+120
Event Type: Informations
User:

Computer Name: ADMIN-4EEED84B7
Event Code: 1000
Message:
Record Number: 4177
Source Name: WgaSetup
Time Written: 20090829174845.000000+120
Event Type: Informations
User:

Computer Name: ADMIN-4EEED84B7
Event Code: 4096
Message: Le service AntiVir a bien démarré!

Record Number: 4176
Source Name: Avira AntiVir
Time Written: 20090829152515.000000+120
Event Type: Informations
User: AUTORITE NT\SYSTEM

Computer Name: ADMIN-4EEED84B7
Event Code: 0
Message:
Record Number: 4175
Source Name: gusvc
Time Written: 20090829152454.000000+120
Event Type: Informations
User:

Computer Name: ADMIN-4EEED84B7
Event Code: 8193
Message: Erreur du service de cliché instantané des volumes : erreur lors de l'appel de la routine CoCreateInstance. hr = 0x80040206.

Record Number: 4174
Source Name: VSS
Time Written: 20090829152405.000000+120
Event Type: erreur
User:

#NOM ?

ComSpec=%SystemRoot%\system32\cmd.exe
Path=%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\System32\Wbem
windir=%SystemRoot%
FP_NO_HOST_CHECK=NO
OS=Windows_NT
PROCESSOR_ARCHITECTURE=x86
PROCESSOR_LEVEL=6
PROCESSOR_IDENTIFIER=x86 Family 6 Model 6 Stepping 2, AuthenticAMD
PROCESSOR_REVISION=0602
NUMBER_OF_PROCESSORS=1
PATHEXT=.COM;.EXE;.BAT;.CMD;.VBS;.VBE;.JS;.JSE;.WSF;.WSH
TEMP=%SystemRoot%\TEMP
TMP=%SystemRoot%\TEMP

-----------------EOF-----------------

et voici le rapport log:

Logfile of random's system information tool 1.06 (written by random/random)
Run by Administrateur at 2010-02-05 19:42:46
Microsoft Windows XP Professionnel Service Pack 3, v.5857
System drive C: has 14 GB (41%) free of 34 GB
Total RAM: 255 MB (12% free)

Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 19:45:21, on 05/02/2010
Platform: Windows XP SP3, v.5857 (WinNT 5.01.2600)
MSIE: Internet Explorer v8.00 (8.00.6001.18702)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Avira\AntiVir Desktop\sched.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\Avira\AntiVir Desktop\avguard.exe
C:\WINDOWS\system32\pctspk.exe
C:\Program Files\SolidWorks\COSMOS\FloWorks\binCFW\StandAloneSlv.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Viewpoint\Common\ViewpointService.exe
C:\Program Files\Yahoo!\Common\YMailAdvisor.exe
C:\Program Files\Yahoo!\Search Protection\SearchProtection.exe
C:\Program Files\Fichiers communs\Microsoft Shared\Works Shared\WkUFind.exe
C:\Program Files\Hercules\Hercules WiFi Controller Software\WiFiCtrl.exe
C:\Program Files\NVIDIA Corporation\NvMixer\NVMixerTray.exe
C:\Program Files\Avira\AntiVir Desktop\avgnt.exe
C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe
C:\Program Files\Fichiers communs\Microsoft Shared\Works Shared\wkcalrem.exe
C:\WINDOWS\system32\wuauclt.exe
C:\Program Files\internet explorer\iexplore.exe
C:\Program Files\internet explorer\iexplore.exe
C:\Documents and Settings\Administrateur\Local Settings\Temporary Internet Files\Content.IE5\JA3ZO0VL\RSIT[1].exe
C:\Program Files\trend micro\Administrateur.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://neufportail.fr/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = https://www.msn.com/fr-fr/?ocid=iehp
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.msn.com/fr-fr/?ocid=iehp
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Favoris
R3 - URLSearchHook: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn0\yt.dll
O2 - BHO: &Yahoo! Toolbar Helper - {02478D38-C3F9-4efb-9B51-7695ECA05670} - C:\Program Files\Yahoo!\Companion\Installs\cpn0\yt.dll
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Fichiers communs\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: Spybot-S&D IE Protection - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O2 - BHO: (no name) - {5C255C8A-E604-49b4-9D64-90988571CECB} - (no file)
O2 - BHO: DealioBHO Class - {6A87B991-A31F-4130-AE72-6D0C294BF082} - C:\Program Files\Dealio\kb127\Dealio.dll (file missing)
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_06\bin\ssv.dll
O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll
O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\5.5.4723.1820\swg.dll
O2 - BHO: MSN Toolbar Helper - {d2ce3e00-f94a-4740-988e-03dc2f38c34f} - C:\Program Files\MSN\Toolbar\3.0.0621.0\msneshellx.dll
O2 - BHO: SingleInstance Class - {FDAD4DA1-61A2-4FD8-9C17-86F7AC245081} - C:\Program Files\Yahoo!\Companion\Installs\cpn0\YTSingleInstance.dll
O3 - Toolbar: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn0\yt.dll
O3 - Toolbar: MSN Toolbar - {1E61ED7C-7CB8-49d6-B9E9-AB4C880C8414} - C:\Program Files\MSN\Toolbar\3.0.0621.0\msneshellx.dll
O3 - Toolbar: Dealio - {E67C74F4-A00A-4F2C-9FEC-FD9DC004A67F} - C:\Program Files\Dealio\kb127\Dealio.dll (file missing)
O3 - Toolbar: Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll
O4 - HKLM\..\Run: [YMailAdvisor] "C:\Program Files\Yahoo!\Common\YMailAdvisor.exe"
O4 - HKLM\..\Run: [YSearchProtection] "C:\Program Files\Yahoo!\Search Protection\SearchProtection.exe"
O4 - HKLM\..\Run: [WorksFUD] C:\Program Files\Microsoft Works\wkfud.exe
O4 - HKLM\..\Run: [Microsoft Works Portfolio] C:\Program Files\Microsoft Works\WksSb.exe /AllUsers
O4 - HKLM\..\Run: [Microsoft Works Update Detection] C:\Program Files\Fichiers communs\Microsoft Shared\Works Shared\WkUFind.exe
O4 - HKLM\..\Run: [WiFiCtrl] C:\Program Files\Hercules\Hercules WiFi Controller Software\WiFiCtrl.exe min
O4 - HKLM\..\Run: [NVMixerTray] "C:\Program Files\NVIDIA Corporation\NvMixer\NVMixerTray.exe"
O4 - HKLM\..\Run: [avgnt] "C:\Program Files\Avira\AntiVir Desktop\avgnt.exe" /min
O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe"
O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files\Fichiers communs\Adobe\ARM\1.0\AdobeARM.exe"
O4 - HKLM\..\RunOnce: [NSSInstallation] C:\WINDOWS\system32\Adobe\Shockwave 11\nssstub.exe /RunOnce
O4 - HKCU\..\Run: [YSearchProtection] C:\Program Files\Yahoo!\Search Protection\SearchProtection.exe
O4 - HKCU\..\Run: [SpybotSD TeaTimer] C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe
O4 - HKCU\..\Run: [DAEMON Tools Lite] "C:\Program Files\DAEMON Tools Lite\DTLite.exe" -autorun
O4 - S-1-5-18 Startup: Adobe Media Player.lnk = C:\Program Files\Adobe Media Player\Adobe Media Player.exe (User 'SYSTEM')
O4 - .DEFAULT Startup: Adobe Media Player.lnk = C:\Program Files\Adobe Media Player\Adobe Media Player.exe (User 'Default user')
O4 - Startup: Adobe Media Player.lnk = C:\Program Files\Adobe Media Player\Adobe Media Player.exe
O4 - Global Startup: Rappels du Calendrier Microsoft Works.lnk = ?
O8 - Extra context menu item: Compare Prices with &Dealio - C:\Documents and Settings\Administrateur\Application Data\Dealio\kb127\res\DealioSearch.html
O8 - Extra context menu item: Google Sidewiki... - res://C:\Program Files\Google\Google Toolbar\Component\GoogleToolbarDynamic_mui_en_96D6FF0C6D236BF8.dll/cmsidewiki.html
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_06\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_06\bin\ssv.dll
O9 - Extra button: Ajout Direct - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra 'Tools' menuitem: &Ajout Direct dans Windows Live Writer - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra button: (no name) - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O9 - Extra 'Tools' menuitem: Spybot - Search & Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Dealio - {E908B145-C847-4e85-B315-07E2E70DECF8} - C:\Program Files\Dealio\kb127\Dealio.dll (file missing)
O9 - Extra 'Tools' menuitem: Dealio - {E908B145-C847-4e85-B315-07E2E70DECF8} - C:\Program Files\Dealio\kb127\Dealio.dll (file missing)
O10 - Unknown file in Winsock LSP: c:\windows\system32\nwprovau.dll
O23 - Service: Avira AntiVir Planificateur (AntiVirSchedulerService) - Avira GmbH - C:\Program Files\Avira\AntiVir Desktop\sched.exe
O23 - Service: Avira AntiVir Guard (AntiVirService) - Avira GmbH - C:\Program Files\Avira\AntiVir Desktop\avguard.exe
O23 - Service: CiSvc - Unknown owner - C:\WINDOWS\system32\cisvc.exe (file missing)
O23 - Service: ClipSrv - Unknown owner - C:\WINDOWS\system32\clipsrv.exe (file missing)
O23 - Service: Google Software Updater (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: PCTEL Speaker Phone (Pctspk) - PCtel, Inc. - C:\WINDOWS\system32\pctspk.exe
O23 - Service: Remote Solver for COSMOSFloWorks 2006 - Unknown owner - C:\Program Files\SolidWorks\COSMOS\FloWorks\binCFW\StandAloneSlv.exe
O23 - Service: Viewpoint Service - Viewpoint Corporation - C:\Program Files\Viewpoint\Common\ViewpointService.exe

Afficher la suite

A voir également:

Rapport RSIT
Rsit - Télécharger - Antivirus & Antimalwares
Plan rapport de stage - Guide
Rapport de crash windows - Guide
Impossible d'afficher le rapport de tableau croisé dynamique sur un rapport existant ✓ - Forum Excel
Excel 2010 - TCD - message d'erreur - Forum Excel

18 réponses

Réponse 1 / 18

Utilisateur anonyme

salut il est fracassé ce pc !!

▶ Télécharge Ad-remover ( de C_XX ) sur ton bureau :

▶ Déconnecte toi et ferme toutes applications en cours !

▶ Double clique sur "Ad-R.exe" pour lancer l'installation et laisse les paramètres d'installation par défaut .

▶ Double-clique sur le raccourci Ad-remover qui est sur ton bureau pour lancer l'outil .

▶ Au menu principal choisis l'option "L" et tape sur [entrée] .

▶ Laisse travailler l'outil et ne touche à rien ...

▶ Poste le rapport qui apparait à la fin , sur le forum ...

( Le rapport est sauvegardé aussi sous C:\Ad-report.log )
( CTRL+A Pour tout sélectionner , CTRL+C pour copier et CTRL+V pour coller )

▶ Note : "Process.exe", une composante de l'outil, est détecté par certains antivirus (AntiVir, Dr.Web, Kaspersky Anti-Virus) comme étant un RiskTool.
Il ne s'agit pas d'un virus, mais d'un utilitaire destiné à mettre fin à des processus.
Mis entre de mauvaises mains, cet utilitaire pourrait arrêter des logiciels de sécurité (Antivirus, Firewall...) d'où l'alerte émise par ces antivirus.

Rmat

j'ai suivie vos indicatons,
voici le rapport :

======= RAPPORT D'AD-REMOVER 1.1.4.6_J | UNIQUEMENT XP/VISTA/7 =======
.
Mis à jour par C_XX le 05.02.2010 à 17:34
Contact: AdRemover.contact@gmail.com
Site web: http://pagesperso-orange.fr/NosTools/ad_remover.html
.
Lancé à: 20:47:40, 05/02/2010 | Mode Normal | Option: CLEAN
Exécuté de: C:\Ad-Remover\
Système d'exploitation: Microsoft® Windows XP™ Service Pack 3
Nom du PC: ADMIN-4EEED84B7 | Utilisateur actuel: Administrateur
.
============== ÉLÉMENT(S) NEUTRALISÉ(S) ==============
.

C:\DOCUME~1\ALLUSE~1\MENUDM~1\PROGRA~1\Dealio
C:\Program Files\Dealio
C:\Program Files\Viewpoint - ... [b]ERREUR SUPPRESSION !![/b]
C:\DOCUME~1\ADMINI~1\APPLIC~1\Dealio
C:\DOCUME~1\ADMINI~1\APPLIC~1\Search Settings
C:\DOCUME~1\ADMINI~1\APPLIC~1\Viewpoint
C:\DOCUME~1\ALLUSE~1\APPLIC~1\Viewpoint
C:\Windows\Installer\433289.msi
C:\Windows\Installer\433290.msi
C:\Documents and Settings\HelpAssistant\Application Data\Dealio
C:\Documents and Settings\HelpAssistant\Application Data\Search Settings
C:\Documents and Settings\HelpAssistant\Application Data\Viewpoint

(!) -- Fichiers temporaires supprimés.

.
HKCU\software\Dealio
HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\\{E67C74F4-A00A-4F2C-9FEC-FD9DC004A67F}
HKCU\software\Search Settings
HKLM\software\classes\AxMetaStream.MetaStreamCtl
HKLM\software\classes\AxMetaStream.MetaStreamCtl.1
HKLM\software\classes\AxMetaStream.MetaStreamCtlSecondary
HKLM\software\classes\AxMetaStream.MetaStreamCtlSecondary.1
HKLM\Software\Classes\CLSID\{03F998B2-0E00-11D3-A498-00104B6EB52E}
HKLM\Software\Classes\CLSID\{1B00725B-C455-4DE6-BFB6-AD540AD427CD}
HKLM\Software\Classes\CLSID\{6A87B991-A31F-4130-AE72-6D0C294BF082}
HKLM\Software\Classes\CLSID\{E49F0B41-3322-11D4-AEFE-00C04F61025C}
HKLM\Software\Classes\Interface\{D5A1EF9A-7948-435D-8B87-D6A598317288}
HKLM\software\MetaStream
HKLM\Software\Microsoft\Active Setup\Installed Components\{03F998B2-0E00-11D3-A498-00104B6EB52E}
HKLM\Software\Microsoft\Active Setup\Installed Components\{1B00725B-C455-4DE6-BFB6-AD540AD427CD}
HKLM\Software\Microsoft\Internet Explorer\Extensions\{E908B145-C847-4e85-B315-07E2E70DECF8}
HKLM\Software\Microsoft\Internet Explorer\Toolbar\\{E67C74F4-A00A-4F2C-9FEC-FD9DC004A67F}
HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{6A87B991-A31F-4130-AE72-6D0C294BF082}
HKLM\software\microsoft\windows\currentversion\installer\userdata\S-1-5-18\Components\0292226F570267D459357AF78015E534
HKLM\software\microsoft\windows\currentversion\installer\userdata\S-1-5-18\Components\03285961954D5824C85975D955031EE8
HKLM\software\microsoft\windows\currentversion\installer\userdata\S-1-5-18\Components\6AC3985F4D64C2245A96D31569D1BF40
HKLM\software\microsoft\windows\currentversion\installer\userdata\S-1-5-18\Components\855847FA0E25FBA46B8516389DFDD4B3
HKLM\software\microsoft\windows\currentversion\installer\userdata\S-1-5-18\Components\9DC2844D0E3E8924C8973C3B3BAE1F58
HKLM\software\microsoft\windows\currentversion\installer\userdata\S-1-5-18\Components\AFEB575AA30ACB243B748619F62F0782
HKLM\software\microsoft\windows\currentversion\installer\userdata\S-1-5-18\Components\F461B8DD96FF5AA41A52D14E1D7B69C7
HKLM\software\microsoft\windows\currentversion\uninstall\ViewpointMediaPlayer
HKLM\software\Search Settings
HKLM\software\Viewpoint
.
============== Scan additionnel ==============
.
.
* Internet Explorer Version 8.0.6001.18702 *
.
[HKEY_CURRENT_USER\..\Internet Explorer\Main]
.
Show_ToolBar: yes
Start Page: hxxp://fr.msn.com/
Enable Browser Extensions: yes
Do404Search: 01000000
Local Page: C:\WINDOWS\system32\blank.htm
Default_search_url: hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
Default_page_url: hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&pver=6&ar=msnhome
Search bar: hxxp://go.microsoft.com/fwlink/?linkid=54896
.
[HKEY_LOCAL_MACHINE\..\Internet Explorer\Main]
.
Default_Page_URL: hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&pver=6&ar=msnhome
Default_Search_URL: hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
Delete_Temp_Files_On_Exit: yes
Local Page: C:\WINDOWS\system32\blank.htm
Search Page: hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
Start Page: hxxp://fr.msn.com/
Search bar: hxxp://search.msn.com/spbasic.htm
.
[HKEY_LOCAL_MACHINE\..\Internet Explorer\ABOUTURLS]
.
Tabs: res://ieframe.dll/tabswelcome.htm
.
============== Suspect (Cracks, Serials, ...) ==============
.
C:\Documents and Settings\Administrateur\Mes documents\hackers\guide et outils pour cracker des logiciel\Dissamblers.zip
C:\Documents and Settings\Administrateur\Mes documents\hackers\guide et outils pour cracker des logiciel\editeur exad‚cimal.zip
C:\Documents and Settings\Administrateur\Mes documents\hackers\guide et outils pour cracker des logiciel\Files analyser v.136.zip
C:\Documents and Settings\Administrateur\Mes documents\hackers\guide et outils pour cracker des logiciel\Patcher.zip
C:\Documents and Settings\Administrateur\Mes documents\hackers\guide et outils pour cracker des logiciel\unpacker v.2.2.zip
C:\Documents and Settings\Administrateur\Mes documents\hackers\guide et outils pour cracker des logiciel\w32dasm8.9.zip
C:\Documents and Settings\HelpAssistant\Mes documents\hackers\guide et outils pour cracker des logiciel\Dissamblers.zip
C:\Documents and Settings\HelpAssistant\Mes documents\hackers\guide et outils pour cracker des logiciel\editeur exad‚cimal.zip
C:\Documents and Settings\HelpAssistant\Mes documents\hackers\guide et outils pour cracker des logiciel\Files analyser v.136.zip
C:\Documents and Settings\HelpAssistant\Mes documents\hackers\guide et outils pour cracker des logiciel\Patcher.zip
C:\Documents and Settings\HelpAssistant\Mes documents\hackers\guide et outils pour cracker des logiciel\unpacker v.2.2.zip
C:\Documents and Settings\HelpAssistant\Mes documents\hackers\guide et outils pour cracker des logiciel\w32dasm8.9.zip
.
===================================
.
6045 Octet(s) - C:\Ad-Report-CLEAN[1].log
.
37 Fichier(s) - C:\DOCUME~1\ADMINI~1\LOCALS~1\Temp
7 Fichier(s) - C:\WINDOWS\Temp
0 Fichier(s) - C:\WINDOWS\Prefetch
.
16 Fichier(s) - C:\Ad-Remover\BACKUP
600 Fichier(s) - C:\Ad-Remover\QUARANTINE
.
Fin à: 21:04:01 | 05/02/2010 - CLEAN[1]
.
============== E.O.F ==============
.

Réponse 2 / 18

Utilisateur anonyme

hackers\guide et outils pour cracker des logiciel\editeur exad‚cimal.

je comprends pourquoi tu es infecté ^^

Desactive ton antivirus le temps de la manip ainsi que ton parefeu si présent(car il est detecté a tort comme infection)

▶ Télécharge List&Kill'em et enregistre le sur ton bureau

▶ Branche clés usb , disques durs externes , mp3 , mp4 , etc..

double clique ( clic droit "executer en tant qu'administrateur" pour Vista/7 ) sur le raccourci sur ton bureau pour lancer l'installation

coche la case "creer une icone sur le bureau"

une fois terminée , clic sur "terminer" et le programme se lancera seul

choisis la langue puis choisis l'option 1 = Mode Recherche

▶ laisse travailler l'outil

à l'apparition de la fenetre blanche , c'est un peu long , c'est normal , le programme n'est pas bloqué.

un rapport du nom de catchme apparait sur ton bureau , ignore-le,ne le poste pas , mais ne le supprime pas pour l instant, le scan n'est pas fini.

▶ Poste le contenu du rapport qui s'ouvre aux 100 % du scan à l'ecran "COMPLETED"

tu peux supprimer le rapport catchme.log de ton bureau maintenant.

Rmat

voici le rapport de List&Kill'em :

List'em by g3n-h@ckm@n 1.2.4.0

User : Administrateur (Administrateurs)
Update on 05/02/2010 by g3n-h@ckm@n ::::: 18.40
Start at: 21:36:52 | 05/02/2010
Contact : https://forums.commentcamarche.net/forum/virus-securite-7

AMD Athlon(tm) XP 1800+
Microsoft Windows XP Professionnel (5.1.2600 32-bit) # Service Pack 3, v.5857
Internet Explorer 8.0.6001.18702
Windows Firewall Status : Disabled

A:\ -> Lecteur de disquettes 3 ½ pouces
C:\ -> Disque fixe local | 33,68 Go (13,63 Go free) | NTFS
D:\ -> Disque fixe local | 4,58 Go (1,64 Go free) [HP_RECOVERY] | FAT32
E:\ -> Disque CD-ROM
F:\ -> Disque CD-ROM
G:\ -> Disque CD-ROM
H:\ -> Disque amovible | 994,95 Mo (204,25 Mo free) | FAT

¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤ Processes running

C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\csrss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Avira\AntiVir Desktop\sched.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\Avira\AntiVir Desktop\avguard.exe
C:\WINDOWS\system32\pctspk.exe
C:\Program Files\SolidWorks\COSMOS\FloWorks\binCFW\StandAloneSlv.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Viewpoint\Common\ViewpointService.exe
C:\Program Files\Notepad++\notepad++.exe
C:\WINDOWS\system32\wuauclt.exe
C:\Program Files\Yahoo!\Common\YMailAdvisor.exe
C:\Program Files\Yahoo!\Search Protection\SearchProtection.exe
C:\Program Files\Fichiers communs\Microsoft Shared\Works Shared\WkUFind.exe
C:\Program Files\Hercules\Hercules WiFi Controller Software\WiFiCtrl.exe
C:\Program Files\NVIDIA Corporation\NvMixer\NVMixerTray.exe
C:\Program Files\Avira\AntiVir Desktop\avgnt.exe
C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe
C:\Program Files\DAEMON Tools Lite\DTLite.exe
C:\Program Files\Fichiers communs\Microsoft Shared\Works Shared\wkcalrem.exe
C:\Program Files\internet explorer\iexplore.exe
C:\Program Files\internet explorer\iexplore.exe
C:\Program Files\List_Kill'em\List_Kill'em.scr
C:\WINDOWS\system32\cmd.exe
C:\WINDOWS\system32\wbem\wmiprvse.exe
C:\Documents and Settings\Administrateur\Local Settings\temp\3.tmp\pv.exe

======================
Keys "Run"
======================
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
YSearchProtection REG_SZ C:\Program Files\Yahoo!\Search Protection\SearchProtection.exe
SpybotSD TeaTimer REG_SZ C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe
DAEMON Tools Lite REG_SZ "C:\Program Files\DAEMON Tools Lite\DTLite.exe" -autorun

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
YMailAdvisor REG_SZ "C:\Program Files\Yahoo!\Common\YMailAdvisor.exe"
YSearchProtection REG_SZ "C:\Program Files\Yahoo!\Search Protection\SearchProtection.exe"
WorksFUD REG_SZ C:\Program Files\Microsoft Works\wkfud.exe
Microsoft Works Portfolio REG_SZ C:\Program Files\Microsoft Works\WksSb.exe /AllUsers
Microsoft Works Update Detection REG_SZ C:\Program Files\Fichiers communs\Microsoft Shared\Works Shared\WkUFind.exe
WiFiCtrl REG_SZ C:\Program Files\Hercules\Hercules WiFi Controller Software\WiFiCtrl.exe min
NVMixerTray REG_SZ "C:\Program Files\NVIDIA Corporation\NvMixer\NVMixerTray.exe"
avgnt REG_SZ "C:\Program Files\Avira\AntiVir Desktop\avgnt.exe" /min
Adobe Reader Speed Launcher REG_SZ "C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe"
Adobe ARM REG_SZ "C:\Program Files\Fichiers communs\Adobe\ARM\1.0\AdobeARM.exe"

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\RunServices]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\RunOnce]
NSSInstallation REG_SZ C:\WINDOWS\system32\Adobe\Shockwave 11\nssstub.exe /RunOnce

=====================
Other Keys
=====================
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
dontdisplaylastusername REG_DWORD 1 (0x1)
legalnoticecaption REG_SZ
legalnoticetext REG_SZ
shutdownwithoutlogon REG_DWORD 1 (0x1)
undockwithoutlogon REG_DWORD 1 (0x1)
SynchronousMachineGroupPolicy REG_DWORD 0 (0x0)
SynchronousUserGroupPolicy REG_DWORD 0 (0x0)
NoInternetOpenWith REG_DWORD 1 (0x1)
DisableRegistryTools REG_DWORD 0 (0x0)

===============
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
NoDriveTypeAutoRun REG_DWORD 323 (0x143)
NoSMHelp REG_DWORD 1 (0x1)
LinkResolveIgnoreLinkInfo REG_DWORD 1 (0x1)
NoDesktopCleanupWizard REG_DWORD 1 (0x1)
NoInstrumentation REG_DWORD 1 (0x1)
NoLowDiskSpaceChecks REG_DWORD 1 (0x1)
NoRecentDocsHistory REG_DWORD 1 (0x1)
NoRecentDocsMenu REG_DWORD 1 (0x1)
NoResolveSearch REG_DWORD 1 (0x1)
NoResolveTrack REG_DWORD 1 (0x1)
NoSMBalloonTip REG_DWORD 1 (0x1)
NoSMConfigurePrograms REG_DWORD 1 (0x1)
NoStartBanner REG_DWORD 1 (0x1)
NoStartMenuMFUprogramsList REG_DWORD 1 (0x1)
NoStrCmpLogical REG_DWORD 0 (0x0)
NoWelcomeScreen REG_DWORD 1 (0x1)
NoDriveAutoRun REG_DWORD 67108863 (0x3ffffff)
NoDrives REG_DWORD 0 (0x0)

===============
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
NoDesktopCleanupWizard REG_DWORD 1 (0x1)
CDRAutoRun REG_DWORD 1 (0x1)
NoCDBurning REG_DWORD 1 (0x1)
NoDriveTypeAutoRun REG_DWORD 323 (0x143)
NoRemoteRecursiveEvents REG_DWORD 1 (0x1)
NoResolveTrack REG_DWORD 1 (0x1)
HideRunAsVerb REG_DWORD 1 (0x1)
NoInstrumentation REG_DWORD 1 (0x1)
NoNetConnectDisconnect REG_DWORD 1 (0x1)
NoRecentDocsHistory REG_DWORD 1 (0x1)
NoStartMenuMFUprogramsList REG_DWORD 1 (0x1)
NoRecentDocsMenu REG_DWORD 1 (0x1)
AllowLegacyWebView REG_DWORD 1 (0x1)
AllowUnhashedWebView REG_DWORD 1 (0x1)
HonorAutoRunSetting REG_DWORD 1 (0x1)
NoDriveAutoRun REG_DWORD 67108863 (0x3ffffff)
NoDrives REG_DWORD 0 (0x0)

===============
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows]

===============
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows NT\CurrentVersion\Winlogon]
AutoRestartShell REG_DWORD 1 (0x1)
DefaultDomainName REG_SZ ADMIN-4EEED84B7
DefaultUserName REG_SZ Administrateur
LegalNoticeCaption REG_SZ
LegalNoticeText REG_SZ
PowerdownAfterShutdown REG_SZ 1
ReportBootOk REG_SZ 1
Shell REG_SZ Explorer.exe
ShutdownWithoutLogon REG_SZ 1
System REG_SZ
Userinit REG_SZ C:\WINDOWS\system32\userinit.exe,
VmApplet REG_SZ rundll32 shell32,Control_RunDLL "sysdm.cpl"
SfcQuota REG_DWORD -1 (0xffffffff)
SfcDisable REG_DWORD 0 (0x0)
allocatecdroms REG_SZ 0
allocatedasd REG_SZ 0
allocatefloppies REG_SZ 0
cachedlogonscount REG_SZ 10
forceunlocklogon REG_DWORD 0 (0x0)
passwordexpirywarning REG_DWORD 14 (0xe)
scremoveoption REG_SZ 0
AllowMultipleTSSessions REG_DWORD 1 (0x1)
KeepRasConnections REG_SZ 1
ShowLogonOptions REG_DWORD 49 (0x31)
SlowLinkDetectEnabled REG_DWORD 0 (0x0)
AltDefaultUserName REG_SZ Administrateur
UIHost REG_EXPAND_SZ logonui.exe
LogonType REG_DWORD 1 (0x1)
Background REG_SZ 0 0 0
DebugServerCommand REG_SZ no
HibernationPreviouslyEnabled REG_DWORD 1 (0x1)
WinStationsDisabled REG_SZ 0
AltDefaultDomainName REG_SZ ADMIN-4EEED84B7
EnableConcurrentSessions REG_DWORD 1 (0x1)

===============
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\winlogon\notify\crypt32chain]
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\winlogon\notify\cryptnet]
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\winlogon\notify\cscdll]
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\winlogon\notify\dimsntfy]
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\winlogon\notify\ScCertProp]
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\winlogon\notify\Schedule]
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\winlogon\notify\sclgntfy]
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\winlogon\notify\SensLogn]
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\winlogon\notify\termsrv]
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\winlogon\notify\wlballoon]

===============
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
{AEB6717E-7E19-11d0-97EE-00C04FD91972} REG_SZ

===============
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
%windir%\Network Diagnostic\xpnetdiag.exe REG_SZ %windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000
%windir%\system32\sessmgr.exe REG_SZ %windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019
C:\Program Files\Windows Live\Messenger\wlcsdk.exe REG_SZ C:\Program Files\Windows Live\Messenger\wlcsdk.exe:*:Enabled:Windows Live Call
C:\Program Files\Windows Live\Messenger\msnmsgr.exe REG_SZ C:\Program Files\Windows Live\Messenger\msnmsgr.exe:*:Enabled:Windows Live Messenger
C:\Program Files\Windows Live\Sync\WindowsLiveSync.exe REG_SZ C:\Program Files\Windows Live\Sync\WindowsLiveSync.exe:*:Enabled:Windows Live FolderShare

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
%windir%\Network Diagnostic\xpnetdiag.exe REG_SZ %windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000
%windir%\system32\sessmgr.exe REG_SZ %windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019
C:\Program Files\Windows Live\Messenger\wlcsdk.exe REG_SZ C:\Program Files\Windows Live\Messenger\wlcsdk.exe:*:Enabled:Windows Live Call
C:\Program Files\Windows Live\Messenger\msnmsgr.exe REG_SZ C:\Program Files\Windows Live\Messenger\msnmsgr.exe:*:Enabled:Windows Live Messenger
C:\Program Files\Windows Live\Sync\WindowsLiveSync.exe REG_SZ C:\Program Files\Windows Live\Sync\WindowsLiveSync.exe:*:Enabled:Windows Live FolderShare

===============
ActivX controls
===============

===============
HKEY_LOCAL_MACHINE\software\microsoft\active setup\installed components\<{12d0ed0d-0ee0-4f90-8827-78cefb8f4988}
HKEY_LOCAL_MACHINE\software\microsoft\active setup\installed components\>{22d6f312-b0f6-11d0-94ab-0080c74c7e95}
HKEY_LOCAL_MACHINE\software\microsoft\active setup\installed components\>{26923b43-4d38-484f-9b9e-de460746276c}
HKEY_LOCAL_MACHINE\software\microsoft\active setup\installed components\>{881dd1c5-3dcf-431b-b061-f3f88e8be88a}
HKEY_LOCAL_MACHINE\software\microsoft\active setup\installed components\>{C487AA9C-07E0-4F8B-AE44-FDD2EDCDF0EC}
HKEY_LOCAL_MACHINE\software\microsoft\active setup\installed components\{0291E591-EA41-4c82-8106-3DC6CE7F7664}
HKEY_LOCAL_MACHINE\software\microsoft\active setup\installed components\{08B0E5C0-4FCB-11CF-AAA5-00401C608500}
HKEY_LOCAL_MACHINE\software\microsoft\active setup\installed components\{10072CEC-8CC1-11D1-986E-00A0C955B42F}
HKEY_LOCAL_MACHINE\software\microsoft\active setup\installed components\{166B1BCA-3F9C-11CF-8075-444553540000}
HKEY_LOCAL_MACHINE\software\microsoft\active setup\installed components\{1C51F0F1-8168-40E2-99DC-05BC809434FA}
HKEY_LOCAL_MACHINE\software\microsoft\active setup\installed components\{2179C5D3-EBFF-11CF-B6FD-00AA00B4E220}
HKEY_LOCAL_MACHINE\software\microsoft\active setup\installed components\{22d6f312-b0f6-11d0-94ab-0080c74c7e95}
HKEY_LOCAL_MACHINE\software\microsoft\active setup\installed components\{233C1507-6A77-46A4-9443-F871F945D258}
HKEY_LOCAL_MACHINE\software\microsoft\active setup\installed components\{283807B5-2C60-11D0-A31D-00AA00B92C03}
HKEY_LOCAL_MACHINE\software\microsoft\active setup\installed components\{2A202491-F00D-11cf-87CC-0020AFEECF20}
HKEY_LOCAL_MACHINE\software\microsoft\active setup\installed components\{2C7339CF-2B09-4501-B3F3-F3508C9228ED}
HKEY_LOCAL_MACHINE\software\microsoft\active setup\installed components\{30528230-99F7-4BB4-88D8-FA1D4F56A2AB}
HKEY_LOCAL_MACHINE\software\microsoft\active setup\installed components\{347B0667-C7ED-429B-BDE3-CC8D3BACAA31}
HKEY_LOCAL_MACHINE\software\microsoft\active setup\installed components\{36f8ec70-c29a-11d1-b5c7-0000f8051515}
HKEY_LOCAL_MACHINE\software\microsoft\active setup\installed components\{3af36230-a269-11d1-b5bf-0000f8051515}
HKEY_LOCAL_MACHINE\software\microsoft\active setup\installed components\{3bf42070-b3b1-11d1-b5c5-0000f8051515}
HKEY_LOCAL_MACHINE\software\microsoft\active setup\installed components\{4278c270-a269-11d1-b5bf-0000f8051515}
HKEY_LOCAL_MACHINE\software\microsoft\active setup\installed components\{44BBA840-CC51-11CF-AAFA-00AA00B6015C}
HKEY_LOCAL_MACHINE\software\microsoft\active setup\installed components\{44BBA848-CC51-11CF-AAFA-00AA00B6015C}
HKEY_LOCAL_MACHINE\software\microsoft\active setup\installed components\{44BBA855-CC51-11CF-AAFA-00AA00B6015F}
HKEY_LOCAL_MACHINE\software\microsoft\active setup\installed components\{45ea75a0-a269-11d1-b5bf-0000f8051515}
HKEY_LOCAL_MACHINE\software\microsoft\active setup\installed components\{4f216970-c90c-11d1-b5c7-0000f8051515}
HKEY_LOCAL_MACHINE\software\microsoft\active setup\installed components\{4f645220-306d-11d2-995d-00c04f98bbc9}
HKEY_LOCAL_MACHINE\software\microsoft\active setup\installed components\{5A8D6EE0-3E18-11D0-821E-444553540000}
HKEY_LOCAL_MACHINE\software\microsoft\active setup\installed components\{5fd399c0-a70a-11d1-9948-00c04f98bbc9}
HKEY_LOCAL_MACHINE\software\microsoft\active setup\installed components\{630b1da0-b465-11d1-9948-00c04f98bbc9}
HKEY_LOCAL_MACHINE\software\microsoft\active setup\installed components\{6BF52A52-394A-11d3-B153-00C04F79FAA6}
HKEY_LOCAL_MACHINE\software\microsoft\active setup\installed components\{6fab99d0-bab8-11d1-994a-00c04f98bbc9}
HKEY_LOCAL_MACHINE\software\microsoft\active setup\installed components\{7790769C-0471-11d2-AF11-00C04FA35D02}
HKEY_LOCAL_MACHINE\software\microsoft\active setup\installed components\{89820200-ECBD-11cf-8B85-00AA005B4340}
HKEY_LOCAL_MACHINE\software\microsoft\active setup\installed components\{89820200-ECBD-11cf-8B85-00AA005B4383}
HKEY_LOCAL_MACHINE\software\microsoft\active setup\installed components\{89B4C1CD-B018-4511-B0A1-5476DBF70820}
HKEY_LOCAL_MACHINE\software\microsoft\active setup\installed components\{8E350386-AB12-4BB2-A4EB-4AD5EBAFB50B}
HKEY_LOCAL_MACHINE\software\microsoft\active setup\installed components\{9381D8F2-0288-11D0-9501-00AA00B911A5}
HKEY_LOCAL_MACHINE\software\microsoft\active setup\installed components\{A17E30C4-A9BA-11D4-8673-60DB54C10000}
HKEY_LOCAL_MACHINE\software\microsoft\active setup\installed components\{A509B1FF-37FF-4bFF-8CFF-4F3A747040FF}
HKEY_LOCAL_MACHINE\software\microsoft\active setup\installed components\{AA218328-0EA8-4D70-8972-E987A9190FF4}
HKEY_LOCAL_MACHINE\software\microsoft\active setup\installed components\{ACC563BC-4266-43f0-B6ED-9D38C4202C7E}
HKEY_LOCAL_MACHINE\software\microsoft\active setup\installed components\{B508B3F1-A24A-32C0-B310-85786919EF28}
HKEY_LOCAL_MACHINE\software\microsoft\active setup\installed components\{C09FB3CD-3D0C-3F2D-899A-6A1D67F2073F}
HKEY_LOCAL_MACHINE\software\microsoft\active setup\installed components\{C654AF1E-43F0-4EDB-BF40-52E2F302AB92}
HKEY_LOCAL_MACHINE\software\microsoft\active setup\installed components\{C9E9A340-D1F1-11D0-821E-444553540600}
HKEY_LOCAL_MACHINE\software\microsoft\active setup\installed components\{CC2A9BA0-3BDD-11D0-821E-444553540000}
HKEY_LOCAL_MACHINE\software\microsoft\active setup\installed components\{D27CDB6E-AE6D-11cf-96B8-444553540000}
HKEY_LOCAL_MACHINE\software\microsoft\active setup\installed components\{de5aed00-a4bf-11d1-9948-00c04f98bbc9}
HKEY_LOCAL_MACHINE\software\microsoft\active setup\installed components\{E92B03AB-B707-11d2-9CBD-0000F87A369E}

==============
BHO :
======
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\browser helper objects\{02478D38-C3F9-4efb-9B51-7695ECA05670}]
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\browser helper objects\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}]
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\browser helper objects\{53707962-6F74-2D53-2644-206D7942484F}]
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\browser helper objects\{5C255C8A-E604-49b4-9D64-90988571CECB}]
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\browser helper objects\{6A87B991-A31F-4130-AE72-6D0C294BF082}]
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\browser helper objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\browser helper objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\browser helper objects\{AA58ED58-01DD-4d91-8333-CF10577473F7}]
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\browser helper objects\{AF69DE43-7D58-4638-B6FA-CE66B5AD205D}]
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\browser helper objects\{d2ce3e00-f94a-4740-988e-03dc2f38c34f}]
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\browser helper objects\{FDAD4DA1-61A2-4FD8-9C17-86F7AC245081}]

================
Internet Explorer :
================
[HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Main]
Start Page REG_SZ https://www.msn.com/fr-fr

[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
Start Page REG_SZ https://www.msn.com/fr-fr

========
Services
========
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services]

Ndisuio : 0x3 ( OK = 3 )
EapHost : 0x4 ( OK = 2 )
SharedAccess : 0x2 ( OK = 2 )
wuauserv : 0x2 ( OK = 2 )

=========
Atapi.sys
=========

%%%% HASHDEEP-1.0
%%%% size,md5,sha256,filename
## Invoked from: C:\Documents and Settings\Administrateur\Local Settings\temp\3.tmp
## C:\> hashdeep C:\WINDOWS\System32\Drivers\atapi.sys
##
96512,9f3a2f5aa6875c72bf062c712cfa2674,b4df1d2c56a593c6b54de57395e3b51d288f547842893b32b0f59228a0cf70b9,C:\WINDOWS\System32\Drivers\atapi.sys

Sources
=======

C:\Qoobox\Quarantine\C\WINDOWS\system32\drivers\atapi.sys.vir
C:\WINDOWS\ERDNT\cache\atapi.sys
C:\WINDOWS\system32\drivers\atapi.sys

Référence :
==========

Win XP_32b : a64013e98426e1877cb653685c5c0009
Win XP_SP2_32b : CDFE4411A69C224BD1D11B2DA92DAC51
Win XP_SP3_32b : 9F3A2F5AA6875C72BF062C712CFA2674
Vista_32b : e03e8c99d15d0381e02743c36afc7c6f
Vista_SP1_32b : 2d9c903dc76a66813d350a562de40ed9
Vista_SP2_32b : 1F05B78AB91C9075565A9D8A4B880BC4
Vista_SP2_64b : 1898FAE8E07D97F2F6C2D5326C633FAC
Windows 7_32b : 80C40F7FDFC376E4C5FEEC28B41C119E
Windows 7_64b : 02062C0B390B7729EDC9E69C680A6F3C

H:\Autorun.inf :
----------------
;Asd143jwk8jki2aaDfsAak7U12LAa9d3fdd42fwqdkwmSAos4JIL9owLKLac33lai32ikqqKKZi0l4DlKs4qw33DSd4qwkooDnKHk5l8LKeJsJ50L22aKkiX
[AutoRun]
;sjLj9caJ
open=uisvkqr.exe
;03f4L2a3raKwwZ4d7LFk6l14K0aw92ewrawoaiZmi9kApkdirafsqD5nip28143fLkSliljLlok0i5wS3i5dqac7D5wLflkIe0wq
shell\open\Command=uisvkqr.exe
;kqK0KAKjoIZisDo3Zwd0Sqlsp37F754iaifd1ia0KJJlS1rk0wos2J9wA2l372aDC
shell\open\Default=1
;wwkkkroap
shell\explore\Command=uisvkqr.exe
;aiKdL3lqLswa23i8K5f4f4SiKk2kwdi4Kk

=======
Drive :
=======

¤¤¤¤¤¤¤¤¤¤ Files/folders :

Present !! : C:\Documents and Settings\All Users\Application Data\sysReserve.ini
Present !! : C:\WINDOWS\DUMP3bb1.tmp
Present !! : C:\WINDOWS\SET3.tmp
Present !! : C:\WINDOWS\SET4.tmp
Present !! : C:\WINDOWS\SET8.tmp
Present !! : C:\WINDOWS\VDM4D.tmp
Present !! : C:\WINDOWS\VDM4E.tmp
Present !! : C:\WINDOWS\Fonts\GRGAREF.TTF
Present !! : C:\WINDOWS\System32\drivers\etc\hosts.msn

¤¤¤¤¤¤¤¤¤¤ Keys :

Present !! : HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer\NoDrives
Present !! : HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer\NoDrives
Present !! : "HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\Install.exe"
Present !! : "HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\Setup.exe"
Present !! : "HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{6A87B991-A31F-4130-AE72-6D0C294BF082}"

============

catchme 0.3.1398.3 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2010-02-05 21:49:53
Windows 5.1.2600 Service Pack 3, v.5857 NTFS

scanning hidden processes ...

scanning hidden services & system hive ...

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\sptd\Cfg]
"s1"=dword:2df9c43f
"s2"=dword:110480d0
"h0"=dword:00000001

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC]
"p0"="C:\Program Files\DAEMON Tools Lite\"
"u0"=hex:d4,c3,97,02,00,00,00,00,00,00,00,00,00,00,00,00,00,00,00,00,00,..
"h0"=dword:00000000
"hdf12"=hex:2c,4c,2f,d2,b1,1a,5e,01,ef,e3,d3,6f,83,18,f4,10,a4,d0,b7,d4,62,..

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC\00000001]
"a0"=hex:20,01,00,00,a1,bc,3b,46,48,61,0d,7f,49,ea,a3,a1,bf,dd,fe,31,27,..
"hdf12"=hex:ca,fa,dd,25,e6,18,15,1f,ed,01,2b,97,e3,85,21,41,55,17,71,a9,33,..

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC\00000001\gdq0]
"hdf12"=hex:99,61,b8,49,8f,a6,f5,e1,fc,ca,ef,a2,59,63,80,d9,93,7b,a0,e3,69,..
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet003\Services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC]
"p0"="C:\Program Files\DAEMON Tools Lite\"
"u0"=hex:d4,c3,97,02,00,00,00,00,00,00,00,00,00,00,00,00,00,00,00,00,00,..
"h0"=dword:00000000
"hdf12"=hex:b7,de,03,4f,6e,67,c1,fe,5b,a3,19,2d,aa,e7,d0,d1,e1,ff,cd,8d,fa,..

[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet003\Services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC\00000001]
"a0"=hex:20,01,00,00,a1,bc,3b,46,48,61,0d,7f,49,ea,a3,a1,bf,dd,fe,31,27,..
"hdf12"=hex:ca,fa,dd,25,e6,18,15,1f,ed,01,2b,97,e3,85,21,41,55,17,71,a9,33,..

[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet003\Services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC\00000001\gdq0]
"hdf12"=hex:99,61,b8,49,8f,a6,f5,e1,fc,ca,ef,a2,59,63,80,d9,93,7b,a0,e3,69,..

scanning hidden registry entries ...

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{D27CDB6E-AE6D-11CF-96B8-444553540000}\iexplore]
"Count"=dword:000820e6
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{F6D90F16-9C73-11D3-B32E-00C04F990BB4}\iexplore]
"Count"=dword:00000619

scanning hidden files ...

scan completed successfully
hidden processes: 0
hidden services: 0
hidden files: 0

Stealth MBR rootkit/Mebroot/Sinowal detector 0.3.7 by Gmer, http://www.gmer.net

device: opened successfully
user: MBR read successfully
called modules: ntoskrnl.exe CLASSPNP.SYS disk.sys >>UNKNOWN [0xFFA7A088]<<
kernel: MBR read successfully
detected MBR rootkit hooks:
\Driver\ACPI -> 0xffa7a088
NDIS: NVIDIA nForce Networking Controller -> SendCompleteHandler -> 0xffb7b330
Warning: possible MBR rootkit infection !
copy of MBR has been found in sector 0x04C8DAD0
malicious code @ sector 0x04C8DAD3 !
PE file found in sector at 0x04C8DAE9 !
MBR rootkit infection detected ! Use: "mbr.exe -f" to fix.

==========
Programs
==========

7-Zip
Adobe
ArcSoft
ASIO4ALL v2
Auralog
Avira
AviSynth 2.5
Bandoo
CA Yahoo! Anti-Spy
Caere
Canon
CCleaner
ComPlus Applications
DAEMON Tools Lite
DWGeditor
Fichiers communs
FL Studio 8
GEOPLANW
Google
Hercules
Image-Line
InstallShield Installation Information
Internet Explorer
Java
List_Kill'em
Microsoft
Microsoft Encarta
microsoft frontpage
Microsoft Office
Microsoft Silverlight
Microsoft SQL Server Compact Edition
Microsoft Works
Microsoft Works Suite 2002
movie maker
MSBuild
MSN
msn gaming zone
netmeeting
NOS
Notepad++
NVIDIA Corporation
OpenOffice.org 2.4
Outlook Express
Outsim
Paint.NET
Realtek AC97
Reference Assemblies
SolidWorks
Spybot - Search & Destroy
TI Education
trend micro
Uninstall Information
Unlocker
VideoLAN
Viewpoint
VistaCodecPack
VstPlugins
Windows Live
Windows Live SkyDrive
Windows Media Player
windows nt
Windows Trust
WinRAR
WTInstaller
xerox
Yahoo!

============
Drive C:
============

A CONSERVER !
Ad-Remover
Ad-Report-CLEAN[1].log
AUTOEXEC.BAT
Cache
ComboFix.txt
CONFIG.SYS
Documents and Settings
e01b65d4c931e2417d
IO.SYS
Kill'em
List'em.txt
MSDOS.SYS
NVIDIA
OtsLabs
pagefile.sys
Program Files
Qoobox
RECYCLER
rsit
sqmnoopt00.sqm
sqmnoopt01.sqm
sqmnoopt02.sqm
sqmnoopt03.sqm
sqmnoopt04.sqm
sqmnoopt05.sqm
sqmnoopt06.sqm
sqmnoopt07.sqm
sqmnoopt08.sqm
sqmnoopt09.sqm
sqmnoopt10.sqm
sqmnoopt11.sqm
sqmnoopt12.sqm
sqmnoopt13.sqm
sqmnoopt14.sqm
sqmnoopt15.sqm
sqmnoopt16.sqm
System Volume Information
trace.ini
WINDOWS

¤¤¤¤¤¤¤¤¤¤ Cracks | Keygens | Serials

C:\Documents and Settings\Administrateur\Mes documents\hackers\guide et outils pour cracker des logiciel\Patcher.zip
C:\Documents and Settings\HelpAssistant\Mes documents\hackers\guide et outils pour cracker des logiciel\Patcher.zip
C:\Program Files\Image-Line\FL Studio 8\Data\Patches
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Automation
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Automation.nfo
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Channel presets
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Channel presets.nfo
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Clipboard files
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Clipboard files.nfo
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Collected
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Collected.nfo
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Humanizing presets
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Humanizing presets.nfo
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Instruments.nfo
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Misc
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Misc.nfo
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Mixer presets
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Mixer presets.nfo
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Packs
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Packs.nfo
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Plugin database
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Plugin database.nfo
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Plugin presets
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Plugin presets.nfo
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Project bones
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Project bones.nfo
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Recorded
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Recorded.nfo
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Rendered
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Rendered.nfo
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Scores
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Scores.nfo
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Sliced beats
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Sliced beats.nfo
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Soundfonts
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Soundfonts.nfo
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Speech
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Speech synth.nfo
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Speech.nfo
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\User
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\User.nfo
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Automation\empty.txt
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Channel presets\3x Osc
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Channel presets\Automation Clips
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Channel presets\BeepMap
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Channel presets\Fruity slicer
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Channel presets\Layers
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Channel presets\Plucked!
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Channel presets\Sampler
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Channel presets\TS404
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Channel presets\Useful
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Channel presets\Various
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Channel presets\3x Osc\Accordeon 2.fst
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Channel presets\3x Osc\Accordeon.fst
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Channel presets\3x Osc\Analog dreamz.fst
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Channel presets\3x Osc\Analogous phattus.fst
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Channel presets\3x Osc\Arp King.fst
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Channel presets\3x Osc\Arpeggio 10.fst
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Channel presets\3x Osc\Arpeggio 2.fst
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Channel presets\3x Osc\Arpeggio 3.fst
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Channel presets\3x Osc\Arpeggio 4.fst
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Channel presets\3x Osc\Arpeggio 5.fst
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Channel presets\3x Osc\Arpeggio 6.fst
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Channel presets\3x Osc\Arpeggio 7.fst
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Channel presets\3x Osc\Arpeggio 8.fst
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Channel presets\3x Osc\Arpeggio 9.fst
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Channel presets\3x Osc\Arpeggio.fst
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Channel presets\3x Osc\Bassline.fst
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Channel presets\3x Osc\Bell.fst
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Channel presets\3x Osc\BP string.fst
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Channel presets\3x Osc\Brass 2.fst
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Channel presets\3x Osc\Brass 3.fst
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Channel presets\3x Osc\Brass 4.fst
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Channel presets\3x Osc\Brass 5.fst
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Channel presets\3x Osc\Brass 6.fst
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Channel presets\3x Osc\Brass.fst
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Channel presets\3x Osc\Caesar.fst
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Channel presets\3x Osc\Changing bass.fst
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Channel presets\3x Osc\Cheap trumpet.fst
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Channel presets\3x Osc\Chime synth.fst
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Channel presets\3x Osc\Chip 2.fst
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Channel presets\3x Osc\Chip 3.fst
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Channel presets\3x Osc\Chip 4.fst
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Channel presets\3x Osc\Chip.fst
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Channel presets\3x Osc\Clap.fst
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Channel presets\3x Osc\Clean.fst
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Channel presets\3x Osc\Closed hat.fst
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Channel presets\3x Osc\Death ray.fst
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Channel presets\3x Osc\Detuned.fst
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Channel presets\3x Osc\Dixie.fst
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Channel presets\3x Osc\Droplets.fst
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Channel presets\3x Osc\DX7.fst
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Channel presets\3x Osc\Fat cheese 2.fst
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Channel presets\3x Osc\Fat cheese.fst
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Channel presets\3x Osc\Flute.fst
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Channel presets\3x Osc\Glitchy.fst
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Channel presets\3x Osc\Hard bass.fst
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Channel presets\3x Osc\Hihat.fst
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Channel presets\3x Osc\Hoover.fst
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Channel presets\3x Osc\HQ_Brass 2 (fat).fst
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Channel presets\3x Osc\HQ_Brass 2.fst
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Channel presets\3x Osc\HQ_Brass.fst
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Channel presets\3x Osc\Intregue.fst
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Channel presets\3x Osc\JrBass.fst
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Channel presets\3x Osc\Kick 2.fst
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Channel presets\3x Osc\Kick 3.fst
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Channel presets\3x Osc\Kick 4.fst
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Channel presets\3x Osc\Kick 5.fst
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Channel presets\3x Osc\Kick.fst
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Channel presets\3x Osc\Laser.fst
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Channel presets\3x Osc\Log drum.fst
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Channel presets\3x Osc\Long string (major).fst
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Channel presets\3x Osc\Long string.fst
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Channel presets\3x Osc\Mad KB.fst
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Channel presets\3x Osc\Moog bass.fst
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Channel presets\3x Osc\Moogish.fst
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Channel presets\3x Osc\Moralog.fst
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Channel presets\3x Osc\Nasty.fst
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Channel presets\3x Osc\Noisy bass 2.fst
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Channel presets\3x Osc\Noisy bass.fst
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Channel presets\3x Osc\Notched string 2.fst
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Channel presets\3x Osc\Notched string 3.fst
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Channel presets\3x Osc\Notched string.fst
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Channel presets\3x Osc\Odd brass.fst
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Channel presets\3x Osc\Open hat.fst
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Channel presets\3x Osc\Organ 2.fst
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Channel presets\3x Osc\Organ 3 (fat).fst
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Channel presets\3x Osc\Organ 3 (major).fst
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Channel presets\3x Osc\Organ 3.fst
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Channel presets\3x Osc\Organ 4.fst
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Channel presets\3x Osc\Organ 5.fst
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Channel presets\3x Osc\Organ 6.fst
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Channel presets\3x Osc\Organ.fst
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Channel presets\3x Osc\Outer space hooter.fst
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Channel presets\3x Osc\Phat bass.fst
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Channel presets\3x Osc\Pilch bass.fst
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Channel presets\3x Osc\Pilch tech lead.fst
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Channel presets\3x Osc\Pilch tech pad.fst
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Channel presets\3x Osc\Pluck (fat).fst
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Channel presets\3x Osc\Pluck.fst
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Channel presets\3x Osc\Porta bass.fst
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Channel presets\3x Osc\Pure bass 2.fst
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Channel presets\3x Osc\Pure bass 3.fst
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Channel presets\3x Osc\Pure bass 4.fst
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Channel presets\3x Osc\Pure bass 5.fst
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Channel presets\3x Osc\Pure bass 6.fst
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Channel presets\3x Osc\Pure bass 7.fst
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Channel presets\3x Osc\Pure bass 8.fst
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Channel presets\3x Osc\Pure bass.fst
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Channel presets\3x Osc\Quiet.fst
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Channel presets\3x Osc\Rave lead.fst
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Channel presets\3x Osc\Raw.fst
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Channel presets\3x Osc\Roswel Landing.fst
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Channel presets\3x Osc\SciFi 2.fst
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Channel presets\3x Osc\SciFi 3.fst
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Channel presets\3x Osc\SciFi 4.fst
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Channel presets\3x Osc\SciFi 5.fst
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Channel presets\3x Osc\SciFi 6.fst
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Channel presets\3x Osc\SciFi 7.fst
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Channel presets\3x Osc\SciFi 8.fst
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Channel presets\3x Osc\SciFi.fst
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Channel presets\3x Osc\Short 10.fst
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Channel presets\3x Osc\Short 11.fst
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Channel presets\3x Osc\Short 2.fst
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Channel presets\3x Osc\Short 3.fst
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Channel presets\3x Osc\Short 4.fst
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Channel presets\3x Osc\Short 5.fst
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Channel presets\3x Osc\Short 6.fst
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Channel presets\3x Osc\Short 7 (fat).fst
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Channel presets\3x Osc\Short 7.fst
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Channel presets\3x Osc\Short 8.fst
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Channel presets\3x Osc\Short 9.fst
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Channel presets\3x Osc\Short square 2.fst
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Channel presets\3x Osc\Short square.fst
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Channel presets\3x Osc\Short.fst
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Channel presets\3x Osc\Slice.fst
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Channel presets\3x Osc\Smooth string 2 (fat).fst
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Channel presets\3x Osc\Smooth string 2.fst
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Channel presets\3x Osc\Smooth string.fst
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Channel presets\3x Osc\Smooth synth.fst
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Channel presets\3x Osc\Snare 2.fst
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Channel presets\3x Osc\Snare.fst
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Channel presets\3x Osc\Snarekick 2.fst
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Channel presets\3x Osc\Snarekick.fst
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Channel presets\3x Osc\Square 2.fst
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Channel presets\3x Osc\Square bass 2.fst
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Channel presets\3x Osc\Square bass.fst
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Channel presets\3x Osc\Square.fst
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Channel presets\3x Osc\String (fat).fst
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Channel presets\3x Osc\String 10.fst
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Channel presets\3x Osc\String 11.fst
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Channel presets\3x Osc\String 2.fst
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Channel presets\3x Osc\String 3.fst
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Channel presets\3x Osc\String 4.fst
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Channel presets\3x Osc\String 5.fst
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Channel presets\3x Osc\String 6.fst
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Channel presets\3x Osc\String 7.fst
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Channel presets\3x Osc\String 8.fst
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Channel presets\3x Osc\String 9.fst
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Channel presets\3x Osc\String.fst
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Channel presets\3x Osc\Stutt arp.fst
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Channel presets\3x Osc\Supa bass.fst
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Channel presets\3x Osc\Synth bass 10.fst
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Channel presets\3x Osc\Synth bass 2.fst
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Channel presets\3x Osc\Synth bass 3.fst
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Channel presets\3x Osc\Synth bass 4.fst
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Channel presets\3x Osc\Synth bass 5.fst
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Channel presets\3x Osc\Synth bass 6.fst
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Channel presets\3x Osc\Synth bass 7.fst
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Channel presets\3x Osc\Synth bass 8.fst
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Channel presets\3x Osc\Synth bass 9.fst
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Channel presets\3x Osc\Synth bass.fst
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Channel presets\3x Osc\Trance lead.fst
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Channel presets\3x Osc\Voodoo.fst
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Channel presets\3x Osc\Warble 2.fst
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Channel presets\3x Osc\Warble.fst
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Channel presets\3x Osc\Warped.fst
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Channel presets\3x Osc\Weird bass.fst
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Channel presets\3x Osc\Windy.fst
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Channel presets\3x Osc\Wip.fst
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Channel presets\3x Osc\zzzzap.fst
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Channel presets\Automation Clips\Gates
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Channel presets\Automation Clips\Shapes
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Channel presets\Automation Clips\Gates\BasicGate1.fst
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Channel presets\Automation Clips\Gates\BasicGate10.fst
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Channel presets\Automation Clips\Gates\BasicGate11.fst
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Channel presets\Automation Clips\Gates\BasicGate12.fst
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Channel presets\Automation Clips\Gates\BasicGate13.fst
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Channel presets\Automation Clips\Gates\BasicGate14.fst
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Channel presets\Automation Clips\Gates\BasicGate15.fst
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Channel presets\Automation Clips\Gates\BasicGate16.fst
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Channel presets\Automation Clips\Gates\BasicGate2.fst
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Channel presets\Automation Clips\Gates\BasicGate3.fst
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Channel presets\Automation Clips\Gates\BasicGate5.fst
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Channel presets\Automation Clips\Gates\BasicGate6.fst
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Channel presets\Automation Clips\Gates\BasicGate7.fst
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Channel presets\Automation Clips\Gates\BasicGate8.fst
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Channel presets\Automation Clips\Gates\BasicGate9.fst
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Channel presets\Automation Clips\Shapes\Saw-1-0.fst
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Channel presets\Automation Clips\Shapes\Saw-1-100.fst
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Channel presets\Automation Clips\Shapes\Saw-16th-0.fst
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Channel presets\Automation Clips\Shapes\Saw-16th-100.fst
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Channel presets\Automation Clips\Shapes\Saw-2nd-0.fst
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Channel presets\Automation Clips\Shapes\Saw-2nd-100.fst
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Channel presets\Automation Clips\Shapes\Saw-4th-0.fst
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Channel presets\Automation Clips\Shapes\Saw-4th-100.fst
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Channel presets\Automation Clips\Shapes\Saw-8th-0.fst
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Channel presets\Automation Clips\Shapes\Saw-8th-100.fst
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Channel presets\Automation Clips\Shapes\Sin-1-0.fst
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Channel presets\Automation Clips\Shapes\Sin-1-100.fst
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Channel presets\Automation Clips\Shapes\Sin-1-50.fst
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Channel presets\Automation Clips\Shapes\Sin-16th-0.fst
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Channel presets\Automation Clips\Shapes\Sin-16th-100.fst
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Channel presets\Automation Clips\Shapes\Sin-16th-50.fst
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Channel presets\Automation Clips\Shapes\Sin-2nd-0.fst
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Channel presets\Automation Clips\Shapes\Sin-2nd-100.fst
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Channel presets\Automation Clips\Shapes\Sin-2nd-50.fst
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Channel presets\Automation Clips\Shapes\Sin-8th-0.fst
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Channel presets\Automation Clips\Shapes\Sin-8th-100.fst
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Channel presets\Automation Clips\Shapes\Sin-8th-50.fst
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Channel presets\Automation Clips\Shapes\Square-16th-0.fst
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Channel presets\Automation Clips\Shapes\Square-16th-100.fst
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Channel presets\Automation Clips\Shapes\Square-2nd-0.fst
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Channel presets\Automation Clips\Shapes\Square-2nd-100.fst
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Channel presets\Automation Clips\Shapes\Square-4th-0.fst
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Channel presets\Automation Clips\Shapes\Square-4th-100.fst
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Channel presets\Automation Clips\Shapes\Square-8th-0.fst
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Channel presets\Automation Clips\Shapes\Square-8th-100.fst
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Channel presets\Automation Clips\Shapes\Triangle-1-0.fst
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Channel presets\Automation Clips\Shapes\Triangle-1-100.fst
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Channel presets\Automation Clips\Shapes\Triangle-16th-0.fst
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Channel presets\Automation Clips\Shapes\Triangle-16th-100.fst
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Channel presets\Automation Clips\Shapes\Triangle-2nd-0.fst
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Channel presets\Automation Clips\Shapes\Triangle-2nd-100.fst
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Channel presets\Automation Clips\Shapes\Triangle-4th-0.fst
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Channel presets\Automation Clips\Shapes\Triangle-4th-100.fst
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Channel presets\Automation Clips\Shapes\Triangle-8th-0.fst
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Channel presets\Automation Clips\Shapes\Triangle-8th-100.fst
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Channel presets\BeepMap\Beepcoder.fst
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Channel presets\BeepMap\duda1.fst
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Channel presets\BeepMap\duda2.fst
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Channel presets\BeepMap\duda3.fst
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Channel presets\BeepMap\duda4.fst
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Channel presets\BeepMap\duda5.fst
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Channel presets\BeepMap\duda6.fst
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Channel presets\Fruity slicer\Basic slicing.fst
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Channel presets\Fruity slicer\Filtered.fst
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Channel presets\Layers\1notejam.fst
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Channel presets\Layers\3xJam-d.fst
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Channel presets\Layers\Bass.fst
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Channel presets\Layers\BigPad.fst
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Channel presets\Layers\Dance.fst
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Channel presets\Layers\Hoover1.fst
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Channel presets\Layers\MajorPad.fst
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Channel presets\Layers\MellowPad.fst
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Channel presets\Layers\Nice.fst
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Channel presets\Layers\Pad.fst
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Channel presets\Layers\SuperString 2.fst
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Channel presets\Layers\SuperString.fst
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Channel presets\Layers\Surround.fst
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Channel presets\Plucked!\Arp.fst
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Channel presets\Plucked!\KB tracked.fst
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Channel presets\Sampler\Basic envelope.fst
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Channel presets\Sampler\Default.fst
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Channel presets\TS404\303 Bass Arpeggio 2.fst
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Channel presets\TS404\303 Bass Arpeggio 3.fst
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Channel presets\TS404\303 Bass Arpeggio 4.fst
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Channel presets\TS404\303 Bass Arpeggio 5.fst
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Channel presets\TS404\303 Bass Arpeggio 6.fst
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Channel presets\TS404\303 Bass Arpeggio.fst
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Channel presets\TS404\303ish Again.fst
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Channel presets\TS404\404 Beep.fst
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Channel presets\TS404\404 Reasons Phat.fst
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Channel presets\TS404\404 Reasons.fst
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Channel presets\TS404\Another Step Beyound.fst
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Channel presets\TS404\Apocalypse.fst
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Channel presets\TS404\Backward Incompatible.fst
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Channel presets\TS404\Bass'n'Drum.fst
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Channel presets\TS404\Bee.fst
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Channel presets\TS404\Cans.fst
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Channel presets\TS404\Casio Arpeggio.fst
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Channel presets\TS404\Clang Bass.fst
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Channel presets\TS404\Classic 1.fst
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Channel presets\TS404\Classic 2.fst
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Channel presets\TS404\Classic Mono.fst
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Channel presets\TS404\Crying.fst
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Channel presets\TS404\Designer Drug.fst
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Channel presets\TS404\Distorted Bass.fst
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Channel presets\TS404\Distorted Phase.fst
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Channel presets\TS404\Distorted Triangle 303.fst
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Channel presets\TS404\Distorted.fst
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Channel presets\TS404\Dull Rubber Flubber.fst
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Channel presets\TS404\Eurodance Arpeggio.fst
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Channel presets\TS404\Exhaust.fst
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Channel presets\TS404\Extreme Arpeggio.fst
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Channel presets\TS404\Fat Rezonator.fst
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Channel presets\TS404\Fat Square.fst
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Channel presets\TS404\Fat Triangle.fst
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Channel presets\TS404\Fatter Rezonatorer.fst
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Channel presets\TS404\Frog.fst
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Channel presets\TS404\Future Wave.fst
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Channel presets\TS404\H2CO3.fst
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Channel presets\TS404\H2SO4.fst
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Channel presets\TS404\Happy Hardcore Bass Arpeggiator 2.fst
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Channel presets\TS404\Happy Hardcore Bass Arpeggiator 3.fst
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Channel presets\TS404\Happy Hardcore Bass Arpeggiator.fst
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Channel presets\TS404\HNO3.fst
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Channel presets\TS404\Hoover Bass Arpeggio.fst
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Channel presets\TS404\Horror Bass.fst
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Channel presets\TS404\Icy.fst
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Channel presets\TS404\Junothing.fst
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Channel presets\TS404\Lead Res.fst
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Channel presets\TS404\Liquid Arpeggiator.fst
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Channel presets\TS404\Low Flying Object Bass Arpeggio.fst
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Channel presets\TS404\Lowbass Rim.fst
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Channel presets\TS404\Midlife.fst
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Channel presets\TS404\My First Roland.fst
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Channel presets\TS404\Notre.fst
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Channel presets\TS404\Pearls.fst
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Channel presets\TS404\Plucked Square.fst
C:\Program Files\Image-Line\FL Studio 8\Data\Patche

Réponse 3 / 18

Utilisateur anonyme

ok alors pour commencer :

▶ Relance List&Kill'em(soit en clic droit pour vista),avec le raccourci sur ton bureau.
mais cette fois-ci :

▶ choisis l'option 6 = Restore MBR

laisse travailler l'outil.

en fin de scan un rapport s'ouvre

▶ colle le contenu dans ta reponse

ensuite :

▶ Relance List&Kill'em(soit en clic droit pour vista),avec le raccourci sur ton bureau.
mais cette fois-ci :

▶ choisis l'option 2 = Mode Suppression

laisse travailler l'outil.

en fin de scan un rapport s'ouvre

▶ colle le contenu dans ta reponse

ensuite :

relance encore List_Kill'em et option 3 = desinstaller

Rmat

Bonjour,

je viens de voir votre réponse ce matin car hier soir j'ai éteind le pc,
Dois je tout recommencer avec le logiciel list kill'em?

car quand je lance l'option 6 il ne se passe rien mise par que j'ai une demande pour créer un fichier sous notepad++ du nom "mrb.log" et c'est tout.

Réponse 4 / 18

Utilisateur anonyme

salut fais l'option 2

Rmat

le contenu du rapport obtenu je le colle dans quelle réponse précisement?

Vous n’avez pas trouvé la réponse que vous recherchez ?

Posez votre question

Réponse 5 / 18

Utilisateur anonyme

comme tu as fait pour l option 1

Rmat

ba je n'ai rien coller avec l'option 1
je l'ai juste coller ici

Réponse 6 / 18

Utilisateur anonyme

ben voila ;)

Rmat

a ok je n'avais pas compris désolé, le voici:
(je peut faire l'option suivante)

Kill'em by g3n-h@ckm@n 1.2.4.0

User : Administrateur (Administrateurs)
Update on 05/02/2010 by g3n-h@ckm@n ::::: 18.40
Start at: 12:18:22 | 06/02/2010
Contact : https://forums.commentcamarche.net/forum/virus-securite-7

AMD Athlon(tm) XP 1800+
Microsoft Windows XP Professionnel (5.1.2600 32-bit) # Service Pack 3, v.5857
Internet Explorer 8.0.6001.18702
Windows Firewall Status : Disabled

A:\ -> Lecteur de disquettes 3 ½ pouces
C:\ -> Disque fixe local | 33,68 Go (13,61 Go free) | NTFS
D:\ -> Disque fixe local | 4,58 Go (1,64 Go free) [HP_RECOVERY] | FAT32
E:\ -> Disque CD-ROM
F:\ -> Disque CD-ROM
G:\ -> Disque CD-ROM

¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤ Processes running

C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\csrss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\Avira\AntiVir Desktop\sched.exe
C:\Program Files\Avira\AntiVir Desktop\avguard.exe
C:\WINDOWS\system32\pctspk.exe
C:\Program Files\SolidWorks\COSMOS\FloWorks\binCFW\StandAloneSlv.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Viewpoint\Common\ViewpointService.exe
C:\Program Files\Yahoo!\Common\YMailAdvisor.exe
C:\Program Files\Yahoo!\Search Protection\SearchProtection.exe
C:\Program Files\Fichiers communs\Microsoft Shared\Works Shared\WkUFind.exe
C:\Program Files\Hercules\Hercules WiFi Controller Software\WiFiCtrl.exe
C:\Program Files\NVIDIA Corporation\NvMixer\NVMixerTray.exe
C:\Program Files\Avira\AntiVir Desktop\avgnt.exe
C:\Program Files\DAEMON Tools Lite\DTLite.exe
C:\Program Files\Fichiers communs\Microsoft Shared\Works Shared\wkcalrem.exe
C:\WINDOWS\system32\wuauclt.exe
C:\Program Files\List_Kill'em\List_Kill'em.scr
C:\WINDOWS\system32\cmd.exe
C:\WINDOWS\system32\wbem\wmiprvse.exe
C:\Documents and Settings\Administrateur\Local Settings\temp\C.tmp\ERUNT.EXE
C:\Documents and Settings\Administrateur\Local Settings\temp\C.tmp\pv.exe

Detections :
==========

¤¤¤¤¤¤¤¤¤¤ Files/folders :

Quarantined & Deleted !! : C:\Documents and Settings\All Users\Application Data\sysReserve.ini
Quarantined & Deleted !! : C:\WINDOWS\DUMP3bb1.tmp
Quarantined & Deleted !! : C:\WINDOWS\SET3.tmp
Quarantined & Deleted !! : C:\WINDOWS\SET4.tmp
Quarantined & Deleted !! : C:\WINDOWS\SET8.tmp
Quarantined & Deleted !! : C:\WINDOWS\VDM4D.tmp
Quarantined & Deleted !! : C:\WINDOWS\VDM4E.tmp
Quarantined & Deleted !! : C:\WINDOWS\Fonts\GRGAREF.TTF

Quarantined & Deleted !! : C:\WINDOWS\System32\drivers\etc\hosts.msn

==============
host file OK !
==============

========
Registry
========

Deleted : HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer\NoDrives
Deleted : HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer\NoDrives
Deleted : "HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\Install.exe"
Deleted : "HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\Setup.exe"
Deleted : "HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{6A87B991-A31F-4130-AE72-6D0C294BF082}"
========
Services
=========

Ndisuio : Start = 3
EapHost : Start = 2
Ip6Fw : Start = 2
SharedAccess : Start = 2
wuauserv : Start = 2
wscsvc : Start = 2

============
Disk Cleaned
============

================
Prefetch cleaned
================

¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤( EOF )¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤

Réponse 7 / 18

Utilisateur anonyme

reesaie l'option 6 et reponds oui

Rmat

voilà je viens de réssayer ca m'a reouvert un doc notepad++ "mbr.log" mais il est vide,
que dois je faire maintenant?

Réponse 8 / 18

Utilisateur anonyme

refais l option 1 pour contrôle

Rmat

voici le nouveau rapport:

List'em by g3n-h@ckm@n 1.2.4.0

User : Administrateur (Administrateurs)
Update on 05/02/2010 by g3n-h@ckm@n ::::: 18.40
Start at: 13:15:00 | 06/02/2010
Contact : https://forums.commentcamarche.net/forum/virus-securite-7

AMD Athlon(tm) XP 1800+
Microsoft Windows XP Professionnel (5.1.2600 32-bit) # Service Pack 3, v.5857
Internet Explorer 8.0.6001.18702
Windows Firewall Status : Disabled

A:\ -> Lecteur de disquettes 3 ½ pouces
C:\ -> Disque fixe local | 33,68 Go (13,62 Go free) | NTFS
D:\ -> Disque fixe local | 4,58 Go (1,64 Go free) [HP_RECOVERY] | FAT32
E:\ -> Disque CD-ROM
F:\ -> Disque CD-ROM
G:\ -> Disque CD-ROM
H:\ -> Disque amovible | 994,95 Mo (204,25 Mo free) | FAT

¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤ Processes running

C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\csrss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\Avira\AntiVir Desktop\sched.exe
C:\Program Files\Avira\AntiVir Desktop\avguard.exe
C:\WINDOWS\system32\pctspk.exe
C:\Program Files\SolidWorks\COSMOS\FloWorks\binCFW\StandAloneSlv.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Viewpoint\Common\ViewpointService.exe
C:\Program Files\Yahoo!\Common\YMailAdvisor.exe
C:\Program Files\Yahoo!\Search Protection\SearchProtection.exe
C:\Program Files\Fichiers communs\Microsoft Shared\Works Shared\WkUFind.exe
C:\Program Files\Hercules\Hercules WiFi Controller Software\WiFiCtrl.exe
C:\Program Files\NVIDIA Corporation\NvMixer\NVMixerTray.exe
C:\Program Files\Avira\AntiVir Desktop\avgnt.exe
C:\Program Files\DAEMON Tools Lite\DTLite.exe
C:\Program Files\Fichiers communs\Microsoft Shared\Works Shared\wkcalrem.exe
C:\WINDOWS\system32\wuauclt.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Notepad++\notepad++.exe
C:\Program Files\internet explorer\iexplore.exe
C:\Program Files\internet explorer\iexplore.exe
C:\Program Files\List_Kill'em\List_Kill'em.scr
C:\WINDOWS\system32\cmd.exe
C:\WINDOWS\system32\wbem\wmiprvse.exe
C:\Documents and Settings\Administrateur\Local Settings\temp\12.tmp\pv.exe

======================
Keys "Run"
======================
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
YSearchProtection REG_SZ C:\Program Files\Yahoo!\Search Protection\SearchProtection.exe
SpybotSD TeaTimer REG_SZ C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe
DAEMON Tools Lite REG_SZ "C:\Program Files\DAEMON Tools Lite\DTLite.exe" -autorun

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
YMailAdvisor REG_SZ "C:\Program Files\Yahoo!\Common\YMailAdvisor.exe"
YSearchProtection REG_SZ "C:\Program Files\Yahoo!\Search Protection\SearchProtection.exe"
WorksFUD REG_SZ C:\Program Files\Microsoft Works\wkfud.exe
Microsoft Works Portfolio REG_SZ C:\Program Files\Microsoft Works\WksSb.exe /AllUsers
Microsoft Works Update Detection REG_SZ C:\Program Files\Fichiers communs\Microsoft Shared\Works Shared\WkUFind.exe
WiFiCtrl REG_SZ C:\Program Files\Hercules\Hercules WiFi Controller Software\WiFiCtrl.exe min
NVMixerTray REG_SZ "C:\Program Files\NVIDIA Corporation\NvMixer\NVMixerTray.exe"
avgnt REG_SZ "C:\Program Files\Avira\AntiVir Desktop\avgnt.exe" /min
Adobe Reader Speed Launcher REG_SZ "C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe"
Adobe ARM REG_SZ "C:\Program Files\Fichiers communs\Adobe\ARM\1.0\AdobeARM.exe"

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\RunServices]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\RunOnce]
NSSInstallation REG_SZ C:\WINDOWS\system32\Adobe\Shockwave 11\nssstub.exe /RunOnce

=====================
Other Keys
=====================
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
dontdisplaylastusername REG_DWORD 1 (0x1)
legalnoticecaption REG_SZ
legalnoticetext REG_SZ
shutdownwithoutlogon REG_DWORD 1 (0x1)
undockwithoutlogon REG_DWORD 1 (0x1)
SynchronousMachineGroupPolicy REG_DWORD 0 (0x0)
SynchronousUserGroupPolicy REG_DWORD 0 (0x0)
NoInternetOpenWith REG_DWORD 1 (0x1)
DisableRegistryTools REG_DWORD 0 (0x0)

===============
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
NoDriveTypeAutoRun REG_DWORD 323 (0x143)
NoSMHelp REG_DWORD 1 (0x1)
LinkResolveIgnoreLinkInfo REG_DWORD 1 (0x1)
NoDesktopCleanupWizard REG_DWORD 1 (0x1)
NoInstrumentation REG_DWORD 1 (0x1)
NoLowDiskSpaceChecks REG_DWORD 1 (0x1)
NoRecentDocsHistory REG_DWORD 1 (0x1)
NoRecentDocsMenu REG_DWORD 1 (0x1)
NoResolveSearch REG_DWORD 1 (0x1)
NoResolveTrack REG_DWORD 1 (0x1)
NoSMBalloonTip REG_DWORD 1 (0x1)
NoSMConfigurePrograms REG_DWORD 1 (0x1)
NoStartBanner REG_DWORD 1 (0x1)
NoStartMenuMFUprogramsList REG_DWORD 1 (0x1)
NoStrCmpLogical REG_DWORD 0 (0x0)
NoWelcomeScreen REG_DWORD 1 (0x1)
NoDriveAutoRun REG_DWORD 67108863 (0x3ffffff)

===============
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
NoDesktopCleanupWizard REG_DWORD 1 (0x1)
CDRAutoRun REG_DWORD 1 (0x1)
NoCDBurning REG_DWORD 1 (0x1)
NoDriveTypeAutoRun REG_DWORD 323 (0x143)
NoRemoteRecursiveEvents REG_DWORD 1 (0x1)
NoResolveTrack REG_DWORD 1 (0x1)
HideRunAsVerb REG_DWORD 1 (0x1)
NoInstrumentation REG_DWORD 1 (0x1)
NoNetConnectDisconnect REG_DWORD 1 (0x1)
NoRecentDocsHistory REG_DWORD 1 (0x1)
NoStartMenuMFUprogramsList REG_DWORD 1 (0x1)
NoRecentDocsMenu REG_DWORD 1 (0x1)
AllowLegacyWebView REG_DWORD 1 (0x1)
AllowUnhashedWebView REG_DWORD 1 (0x1)
HonorAutoRunSetting REG_DWORD 1 (0x1)
NoDriveAutoRun REG_DWORD 67108863 (0x3ffffff)

===============
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows]

===============
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows NT\CurrentVersion\Winlogon]
AutoRestartShell REG_DWORD 1 (0x1)
DefaultDomainName REG_SZ ADMIN-4EEED84B7
DefaultUserName REG_SZ Administrateur
LegalNoticeCaption REG_SZ
LegalNoticeText REG_SZ
PowerdownAfterShutdown REG_SZ 1
ReportBootOk REG_SZ 1
Shell REG_SZ Explorer.exe
ShutdownWithoutLogon REG_SZ 1
System REG_SZ
Userinit REG_SZ C:\WINDOWS\system32\userinit.exe,
VmApplet REG_SZ rundll32 shell32,Control_RunDLL "sysdm.cpl"
SfcQuota REG_DWORD -1 (0xffffffff)
SfcDisable REG_DWORD 0 (0x0)
allocatecdroms REG_SZ 0
allocatedasd REG_SZ 0
allocatefloppies REG_SZ 0
cachedlogonscount REG_SZ 10
forceunlocklogon REG_DWORD 0 (0x0)
passwordexpirywarning REG_DWORD 14 (0xe)
scremoveoption REG_SZ 0
AllowMultipleTSSessions REG_DWORD 1 (0x1)
KeepRasConnections REG_SZ 1
ShowLogonOptions REG_DWORD 49 (0x31)
SlowLinkDetectEnabled REG_DWORD 0 (0x0)
AltDefaultUserName REG_SZ Administrateur
UIHost REG_EXPAND_SZ logonui.exe
LogonType REG_DWORD 1 (0x1)
Background REG_SZ 0 0 0
DebugServerCommand REG_SZ no
HibernationPreviouslyEnabled REG_DWORD 1 (0x1)
WinStationsDisabled REG_SZ 0
AltDefaultDomainName REG_SZ ADMIN-4EEED84B7
EnableConcurrentSessions REG_DWORD 1 (0x1)

===============
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\winlogon\notify\crypt32chain]
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\winlogon\notify\cryptnet]
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\winlogon\notify\cscdll]
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\winlogon\notify\dimsntfy]
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\winlogon\notify\ScCertProp]
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\winlogon\notify\Schedule]
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\winlogon\notify\sclgntfy]
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\winlogon\notify\SensLogn]
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\winlogon\notify\termsrv]
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\winlogon\notify\wlballoon]

===============
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
{AEB6717E-7E19-11d0-97EE-00C04FD91972} REG_SZ

===============
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
%windir%\Network Diagnostic\xpnetdiag.exe REG_SZ %windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000
%windir%\system32\sessmgr.exe REG_SZ %windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019
C:\Program Files\Windows Live\Messenger\wlcsdk.exe REG_SZ C:\Program Files\Windows Live\Messenger\wlcsdk.exe:*:Enabled:Windows Live Call
C:\Program Files\Windows Live\Messenger\msnmsgr.exe REG_SZ C:\Program Files\Windows Live\Messenger\msnmsgr.exe:*:Enabled:Windows Live Messenger
C:\Program Files\Windows Live\Sync\WindowsLiveSync.exe REG_SZ C:\Program Files\Windows Live\Sync\WindowsLiveSync.exe:*:Enabled:Windows Live FolderShare

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
%windir%\Network Diagnostic\xpnetdiag.exe REG_SZ %windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000
%windir%\system32\sessmgr.exe REG_SZ %windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019
C:\Program Files\Windows Live\Messenger\wlcsdk.exe REG_SZ C:\Program Files\Windows Live\Messenger\wlcsdk.exe:*:Enabled:Windows Live Call
C:\Program Files\Windows Live\Messenger\msnmsgr.exe REG_SZ C:\Program Files\Windows Live\Messenger\msnmsgr.exe:*:Enabled:Windows Live Messenger
C:\Program Files\Windows Live\Sync\WindowsLiveSync.exe REG_SZ C:\Program Files\Windows Live\Sync\WindowsLiveSync.exe:*:Enabled:Windows Live FolderShare

===============
ActivX controls
===============

===============
HKEY_LOCAL_MACHINE\software\microsoft\active setup\installed components\<{12d0ed0d-0ee0-4f90-8827-78cefb8f4988}
HKEY_LOCAL_MACHINE\software\microsoft\active setup\installed components\>{22d6f312-b0f6-11d0-94ab-0080c74c7e95}
HKEY_LOCAL_MACHINE\software\microsoft\active setup\installed components\>{26923b43-4d38-484f-9b9e-de460746276c}
HKEY_LOCAL_MACHINE\software\microsoft\active setup\installed components\>{881dd1c5-3dcf-431b-b061-f3f88e8be88a}
HKEY_LOCAL_MACHINE\software\microsoft\active setup\installed components\>{C487AA9C-07E0-4F8B-AE44-FDD2EDCDF0EC}
HKEY_LOCAL_MACHINE\software\microsoft\active setup\installed components\{0291E591-EA41-4c82-8106-3DC6CE7F7664}
HKEY_LOCAL_MACHINE\software\microsoft\active setup\installed components\{08B0E5C0-4FCB-11CF-AAA5-00401C608500}
HKEY_LOCAL_MACHINE\software\microsoft\active setup\installed components\{10072CEC-8CC1-11D1-986E-00A0C955B42F}
HKEY_LOCAL_MACHINE\software\microsoft\active setup\installed components\{166B1BCA-3F9C-11CF-8075-444553540000}
HKEY_LOCAL_MACHINE\software\microsoft\active setup\installed components\{1C51F0F1-8168-40E2-99DC-05BC809434FA}
HKEY_LOCAL_MACHINE\software\microsoft\active setup\installed components\{2179C5D3-EBFF-11CF-B6FD-00AA00B4E220}
HKEY_LOCAL_MACHINE\software\microsoft\active setup\installed components\{22d6f312-b0f6-11d0-94ab-0080c74c7e95}
HKEY_LOCAL_MACHINE\software\microsoft\active setup\installed components\{233C1507-6A77-46A4-9443-F871F945D258}
HKEY_LOCAL_MACHINE\software\microsoft\active setup\installed components\{283807B5-2C60-11D0-A31D-00AA00B92C03}
HKEY_LOCAL_MACHINE\software\microsoft\active setup\installed components\{2A202491-F00D-11cf-87CC-0020AFEECF20}
HKEY_LOCAL_MACHINE\software\microsoft\active setup\installed components\{2C7339CF-2B09-4501-B3F3-F3508C9228ED}
HKEY_LOCAL_MACHINE\software\microsoft\active setup\installed components\{30528230-99F7-4BB4-88D8-FA1D4F56A2AB}
HKEY_LOCAL_MACHINE\software\microsoft\active setup\installed components\{347B0667-C7ED-429B-BDE3-CC8D3BACAA31}
HKEY_LOCAL_MACHINE\software\microsoft\active setup\installed components\{36f8ec70-c29a-11d1-b5c7-0000f8051515}
HKEY_LOCAL_MACHINE\software\microsoft\active setup\installed components\{3af36230-a269-11d1-b5bf-0000f8051515}
HKEY_LOCAL_MACHINE\software\microsoft\active setup\installed components\{3bf42070-b3b1-11d1-b5c5-0000f8051515}
HKEY_LOCAL_MACHINE\software\microsoft\active setup\installed components\{4278c270-a269-11d1-b5bf-0000f8051515}
HKEY_LOCAL_MACHINE\software\microsoft\active setup\installed components\{44BBA840-CC51-11CF-AAFA-00AA00B6015C}
HKEY_LOCAL_MACHINE\software\microsoft\active setup\installed components\{44BBA848-CC51-11CF-AAFA-00AA00B6015C}
HKEY_LOCAL_MACHINE\software\microsoft\active setup\installed components\{44BBA855-CC51-11CF-AAFA-00AA00B6015F}
HKEY_LOCAL_MACHINE\software\microsoft\active setup\installed components\{45ea75a0-a269-11d1-b5bf-0000f8051515}
HKEY_LOCAL_MACHINE\software\microsoft\active setup\installed components\{4f216970-c90c-11d1-b5c7-0000f8051515}
HKEY_LOCAL_MACHINE\software\microsoft\active setup\installed components\{4f645220-306d-11d2-995d-00c04f98bbc9}
HKEY_LOCAL_MACHINE\software\microsoft\active setup\installed components\{5A8D6EE0-3E18-11D0-821E-444553540000}
HKEY_LOCAL_MACHINE\software\microsoft\active setup\installed components\{5fd399c0-a70a-11d1-9948-00c04f98bbc9}
HKEY_LOCAL_MACHINE\software\microsoft\active setup\installed components\{630b1da0-b465-11d1-9948-00c04f98bbc9}
HKEY_LOCAL_MACHINE\software\microsoft\active setup\installed components\{6BF52A52-394A-11d3-B153-00C04F79FAA6}
HKEY_LOCAL_MACHINE\software\microsoft\active setup\installed components\{6fab99d0-bab8-11d1-994a-00c04f98bbc9}
HKEY_LOCAL_MACHINE\software\microsoft\active setup\installed components\{7790769C-0471-11d2-AF11-00C04FA35D02}
HKEY_LOCAL_MACHINE\software\microsoft\active setup\installed components\{89820200-ECBD-11cf-8B85-00AA005B4340}
HKEY_LOCAL_MACHINE\software\microsoft\active setup\installed components\{89820200-ECBD-11cf-8B85-00AA005B4383}
HKEY_LOCAL_MACHINE\software\microsoft\active setup\installed components\{89B4C1CD-B018-4511-B0A1-5476DBF70820}
HKEY_LOCAL_MACHINE\software\microsoft\active setup\installed components\{8E350386-AB12-4BB2-A4EB-4AD5EBAFB50B}
HKEY_LOCAL_MACHINE\software\microsoft\active setup\installed components\{9381D8F2-0288-11D0-9501-00AA00B911A5}
HKEY_LOCAL_MACHINE\software\microsoft\active setup\installed components\{A17E30C4-A9BA-11D4-8673-60DB54C10000}
HKEY_LOCAL_MACHINE\software\microsoft\active setup\installed components\{A509B1FF-37FF-4bFF-8CFF-4F3A747040FF}
HKEY_LOCAL_MACHINE\software\microsoft\active setup\installed components\{AA218328-0EA8-4D70-8972-E987A9190FF4}
HKEY_LOCAL_MACHINE\software\microsoft\active setup\installed components\{ACC563BC-4266-43f0-B6ED-9D38C4202C7E}
HKEY_LOCAL_MACHINE\software\microsoft\active setup\installed components\{B508B3F1-A24A-32C0-B310-85786919EF28}
HKEY_LOCAL_MACHINE\software\microsoft\active setup\installed components\{C09FB3CD-3D0C-3F2D-899A-6A1D67F2073F}
HKEY_LOCAL_MACHINE\software\microsoft\active setup\installed components\{C654AF1E-43F0-4EDB-BF40-52E2F302AB92}
HKEY_LOCAL_MACHINE\software\microsoft\active setup\installed components\{C9E9A340-D1F1-11D0-821E-444553540600}
HKEY_LOCAL_MACHINE\software\microsoft\active setup\installed components\{CC2A9BA0-3BDD-11D0-821E-444553540000}
HKEY_LOCAL_MACHINE\software\microsoft\active setup\installed components\{D27CDB6E-AE6D-11cf-96B8-444553540000}
HKEY_LOCAL_MACHINE\software\microsoft\active setup\installed components\{de5aed00-a4bf-11d1-9948-00c04f98bbc9}
HKEY_LOCAL_MACHINE\software\microsoft\active setup\installed components\{E92B03AB-B707-11d2-9CBD-0000F87A369E}

==============
BHO :
======
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\browser helper objects\{02478D38-C3F9-4efb-9B51-7695ECA05670}]
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\browser helper objects\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}]
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\browser helper objects\{53707962-6F74-2D53-2644-206D7942484F}]
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\browser helper objects\{5C255C8A-E604-49b4-9D64-90988571CECB}]
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\browser helper objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\browser helper objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\browser helper objects\{AA58ED58-01DD-4d91-8333-CF10577473F7}]
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\browser helper objects\{AF69DE43-7D58-4638-B6FA-CE66B5AD205D}]
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\browser helper objects\{d2ce3e00-f94a-4740-988e-03dc2f38c34f}]
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\browser helper objects\{FDAD4DA1-61A2-4FD8-9C17-86F7AC245081}]

================
Internet Explorer :
================
[HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Main]
Start Page REG_SZ https://www.msn.com/fr-fr

[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
Start Page REG_SZ https://www.msn.com/fr-fr

========
Services
========
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services]

Ndisuio : 0x3 ( OK = 3 )
EapHost : 0x2 ( OK = 2 )
SharedAccess : 0x2 ( OK = 2 )
wuauserv : 0x2 ( OK = 2 )

=========
Atapi.sys
=========

%%%% HASHDEEP-1.0
%%%% size,md5,sha256,filename
## Invoked from: C:\Documents and Settings\Administrateur\Local Settings\temp\12.tmp
## C:\> hashdeep C:\WINDOWS\System32\Drivers\atapi.sys
##
96512,9f3a2f5aa6875c72bf062c712cfa2674,b4df1d2c56a593c6b54de57395e3b51d288f547842893b32b0f59228a0cf70b9,C:\WINDOWS\System32\Drivers\atapi.sys

Sources
=======

C:\Qoobox\Quarantine\C\WINDOWS\system32\drivers\atapi.sys.vir
C:\WINDOWS\ERDNT\cache\atapi.sys
C:\WINDOWS\system32\drivers\atapi.sys

Référence :
==========

Win XP_32b : a64013e98426e1877cb653685c5c0009
Win XP_SP2_32b : CDFE4411A69C224BD1D11B2DA92DAC51
Win XP_SP3_32b : 9F3A2F5AA6875C72BF062C712CFA2674
Vista_32b : e03e8c99d15d0381e02743c36afc7c6f
Vista_SP1_32b : 2d9c903dc76a66813d350a562de40ed9
Vista_SP2_32b : 1F05B78AB91C9075565A9D8A4B880BC4
Vista_SP2_64b : 1898FAE8E07D97F2F6C2D5326C633FAC
Windows 7_32b : 80C40F7FDFC376E4C5FEEC28B41C119E
Windows 7_64b : 02062C0B390B7729EDC9E69C680A6F3C

H:\Autorun.inf :
----------------
;Asd143jwk8jki2aaDfsAak7U12LAa9d3fdd42fwqdkwmSAos4JIL9owLKLac33lai32ikqqKKZi0l4DlKs4qw33DSd4qwkooDnKHk5l8LKeJsJ50L22aKkiX
[AutoRun]
;sjLj9caJ
open=uisvkqr.exe
;03f4L2a3raKwwZ4d7LFk6l14K0aw92ewrawoaiZmi9kApkdirafsqD5nip28143fLkSliljLlok0i5wS3i5dqac7D5wLflkIe0wq
shell\open\Command=uisvkqr.exe
;kqK0KAKjoIZisDo3Zwd0Sqlsp37F754iaifd1ia0KJJlS1rk0wos2J9wA2l372aDC
shell\open\Default=1
;wwkkkroap
shell\explore\Command=uisvkqr.exe
;aiKdL3lqLswa23i8K5f4f4SiKk2kwdi4Kk

=======
Drive :
=======

¤¤¤¤¤¤¤¤¤¤ Files/folders :

¤¤¤¤¤¤¤¤¤¤ Keys :

============

catchme 0.3.1398.3 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2010-02-06 13:27:37
Windows 5.1.2600 Service Pack 3, v.5857 NTFS

scanning hidden processes ...

scanning hidden services & system hive ...

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\sptd\Cfg]
"s1"=dword:2df9c43f
"s2"=dword:110480d0
"h0"=dword:00000001

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC]
"p0"="C:\Program Files\DAEMON Tools Lite\"
"u0"=hex:d4,c3,97,02,00,00,00,00,00,00,00,00,00,00,00,00,00,00,00,00,00,..
"h0"=dword:00000000
"hdf12"=hex:51,1f,68,c0,c4,d8,34,99,b7,75,98,11,47,e9,50,60,83,e4,21,7f,22,..

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC\00000001]
"a0"=hex:20,01,00,00,a1,bc,3b,46,48,61,0d,7f,49,ea,a3,a1,bf,dd,fe,31,27,..
"hdf12"=hex:ca,fa,dd,25,e6,18,15,1f,ed,01,2b,97,e3,85,21,41,55,17,71,a9,33,..

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC\00000001\gdq0]
"hdf12"=hex:99,61,b8,49,8f,a6,f5,e1,fc,ca,ef,a2,59,63,80,d9,93,7b,a0,e3,69,..
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet003\Services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC]
"p0"="C:\Program Files\DAEMON Tools Lite\"
"u0"=hex:d4,c3,97,02,00,00,00,00,00,00,00,00,00,00,00,00,00,00,00,00,00,..
"h0"=dword:00000000
"hdf12"=hex:51,1f,68,c0,c4,d8,34,99,b7,75,98,11,47,e9,50,60,83,e4,21,7f,22,..

[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet003\Services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC\00000001]
"a0"=hex:20,01,00,00,a1,bc,3b,46,48,61,0d,7f,49,ea,a3,a1,bf,dd,fe,31,27,..
"hdf12"=hex:ca,fa,dd,25,e6,18,15,1f,ed,01,2b,97,e3,85,21,41,55,17,71,a9,33,..

[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet003\Services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC\00000001\gdq0]
"hdf12"=hex:99,61,b8,49,8f,a6,f5,e1,fc,ca,ef,a2,59,63,80,d9,93,7b,a0,e3,69,..

scanning hidden registry entries ...

scanning hidden files ...

scan completed successfully
hidden processes: 0
hidden services: 0
hidden files: 0

Stealth MBR rootkit/Mebroot/Sinowal detector 0.3.7 by Gmer, http://www.gmer.net

device: opened successfully
user: MBR read successfully
called modules: ntoskrnl.exe CLASSPNP.SYS disk.sys >>UNKNOWN [0xFFA81538]<<
kernel: MBR read successfully
detected MBR rootkit hooks:
\Driver\ACPI -> 0xffa81538
NDIS: NVIDIA nForce Networking Controller -> SendCompleteHandler -> 0xffb7b330
Warning: possible MBR rootkit infection !
user & kernel MBR OK
copy of MBR has been found in sector 0x04C8DAD0
malicious code @ sector 0x04C8DAD3 !
PE file found in sector at 0x04C8DAE9 !
Use "Recovery Console" command "fixmbr" to clear infection !

==========
Programs
==========

7-Zip
Adobe
ArcSoft
ASIO4ALL v2
Auralog
Avira
AviSynth 2.5
Bandoo
CA Yahoo! Anti-Spy
Caere
Canon
CCleaner
ComPlus Applications
DAEMON Tools Lite
DWGeditor
Fichiers communs
FL Studio 8
GEOPLANW
Google
Hercules
Image-Line
InstallShield Installation Information
Internet Explorer
Java
List_Kill'em
Microsoft
Microsoft Encarta
microsoft frontpage
Microsoft Office
Microsoft Silverlight
Microsoft SQL Server Compact Edition
Microsoft Works
Microsoft Works Suite 2002
movie maker
MSBuild
MSN
msn gaming zone
netmeeting
NOS
Notepad++
NVIDIA Corporation
OpenOffice.org 2.4
Outlook Express
Outsim
Paint.NET
Realtek AC97
Reference Assemblies
SolidWorks
Spybot - Search & Destroy
TI Education
trend micro
Uninstall Information
Unlocker
VideoLAN
Viewpoint
VistaCodecPack
VstPlugins
Windows Live
Windows Live SkyDrive
Windows Media Player
windows nt
Windows Trust
WinRAR
WTInstaller
xerox
Yahoo!

============
Drive C:
============

A CONSERVER !
Ad-Remover
Ad-Report-CLEAN[1].log
AUTOEXEC.BAT
Cache
ComboFix.txt
CONFIG.SYS
Documents and Settings
e01b65d4c931e2417d
IO.SYS
Kill'em
Kill'em.txt
List'em.txt
MSDOS.SYS
NVIDIA
OtsLabs
pagefile.sys
Program Files
Qoobox
RECYCLER
rsit
sqmnoopt00.sqm
sqmnoopt01.sqm
sqmnoopt02.sqm
sqmnoopt03.sqm
sqmnoopt04.sqm
sqmnoopt05.sqm
sqmnoopt06.sqm
sqmnoopt07.sqm
sqmnoopt08.sqm
sqmnoopt09.sqm
sqmnoopt10.sqm
sqmnoopt11.sqm
sqmnoopt12.sqm
sqmnoopt13.sqm
sqmnoopt14.sqm
sqmnoopt15.sqm
sqmnoopt16.sqm
System Volume Information
trace.ini
WINDOWS

¤¤¤¤¤¤¤¤¤¤ Cracks | Keygens | Serials

C:\Documents and Settings\Administrateur\Mes documents\hackers\guide et outils pour cracker des logiciel\Patcher.zip
C:\Documents and Settings\HelpAssistant\Mes documents\hackers\guide et outils pour cracker des logiciel\Patcher.zip
C:\Program Files\Image-Line\FL Studio 8\Data\Patches
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Automation
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Automation.nfo
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Channel presets
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Channel presets.nfo
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Clipboard files
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Clipboard files.nfo
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Collected
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Collected.nfo
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Humanizing presets
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Humanizing presets.nfo
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Instruments.nfo
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Misc
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Misc.nfo
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Mixer presets
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Mixer presets.nfo
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Packs
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Packs.nfo
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Plugin database
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Plugin database.nfo
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Plugin presets
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Plugin presets.nfo
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Project bones
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Project bones.nfo
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Recorded
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Recorded.nfo
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Rendered
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Rendered.nfo
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Scores
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Scores.nfo
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Sliced beats
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Sliced beats.nfo
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Soundfonts
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Soundfonts.nfo
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Speech
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Speech synth.nfo
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Speech.nfo
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\User
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\User.nfo
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Automation\empty.txt
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Channel presets\3x Osc
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Channel presets\Automation Clips
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Channel presets\BeepMap
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Channel presets\Fruity slicer
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Channel presets\Layers
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Channel presets\Plucked!
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Channel presets\Sampler
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Channel presets\TS404
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Channel presets\Useful
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Channel presets\Various
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Channel presets\3x Osc\Accordeon 2.fst
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Channel presets\3x Osc\Accordeon.fst
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Channel presets\3x Osc\Analog dreamz.fst
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Channel presets\3x Osc\Analogous phattus.fst
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Channel presets\3x Osc\Arp King.fst
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Channel presets\3x Osc\Arpeggio 10.fst
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Channel presets\3x Osc\Arpeggio 2.fst
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Channel presets\3x Osc\Arpeggio 3.fst
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Channel presets\3x Osc\Arpeggio 4.fst
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Channel presets\3x Osc\Arpeggio 5.fst
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Channel presets\3x Osc\Arpeggio 6.fst
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Channel presets\3x Osc\Arpeggio 7.fst
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Channel presets\3x Osc\Arpeggio 8.fst
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Channel presets\3x Osc\Arpeggio 9.fst
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Channel presets\3x Osc\Arpeggio.fst
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Channel presets\3x Osc\Bassline.fst
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Channel presets\3x Osc\Bell.fst
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Channel presets\3x Osc\BP string.fst
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Channel presets\3x Osc\Brass 2.fst
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Channel presets\3x Osc\Brass 3.fst
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Channel presets\3x Osc\Brass 4.fst
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Channel presets\3x Osc\Brass 5.fst
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Channel presets\3x Osc\Brass 6.fst
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Channel presets\3x Osc\Brass.fst
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Channel presets\3x Osc\Caesar.fst
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Channel presets\3x Osc\Changing bass.fst
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Channel presets\3x Osc\Cheap trumpet.fst
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Channel presets\3x Osc\Chime synth.fst
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Channel presets\3x Osc\Chip 2.fst
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Channel presets\3x Osc\Chip 3.fst
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Channel presets\3x Osc\Chip 4.fst
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Channel presets\3x Osc\Chip.fst
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Channel presets\3x Osc\Clap.fst
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Channel presets\3x Osc\Clean.fst
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Channel presets\3x Osc\Closed hat.fst
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Channel presets\3x Osc\Death ray.fst
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Channel presets\3x Osc\Detuned.fst
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Channel presets\3x Osc\Dixie.fst
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Channel presets\3x Osc\Droplets.fst
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Channel presets\3x Osc\DX7.fst
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Channel presets\3x Osc\Fat cheese 2.fst
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Channel presets\3x Osc\Fat cheese.fst
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Channel presets\3x Osc\Flute.fst
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Channel presets\3x Osc\Glitchy.fst
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Channel presets\3x Osc\Hard bass.fst
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Channel presets\3x Osc\Hihat.fst
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Channel presets\3x Osc\Hoover.fst
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Channel presets\3x Osc\HQ_Brass 2 (fat).fst
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Channel presets\3x Osc\HQ_Brass 2.fst
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Channel presets\3x Osc\HQ_Brass.fst
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Channel presets\3x Osc\Intregue.fst
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Channel presets\3x Osc\JrBass.fst
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Channel presets\3x Osc\Kick 2.fst
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Channel presets\3x Osc\Kick 3.fst
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Channel presets\3x Osc\Kick 4.fst
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Channel presets\3x Osc\Kick 5.fst
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Channel presets\3x Osc\Kick.fst
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Channel presets\3x Osc\Laser.fst
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Channel presets\3x Osc\Log drum.fst
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Channel presets\3x Osc\Long string (major).fst
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Channel presets\3x Osc\Long string.fst
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Channel presets\3x Osc\Mad KB.fst
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Channel presets\3x Osc\Moog bass.fst
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Channel presets\3x Osc\Moogish.fst
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Channel presets\3x Osc\Moralog.fst
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Channel presets\3x Osc\Nasty.fst
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Channel presets\3x Osc\Noisy bass 2.fst
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Channel presets\3x Osc\Noisy bass.fst
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Channel presets\3x Osc\Notched string 2.fst
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Channel presets\3x Osc\Notched string 3.fst
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Channel presets\3x Osc\Notched string.fst
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Channel presets\3x Osc\Odd brass.fst
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Channel presets\3x Osc\Open hat.fst
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Channel presets\3x Osc\Organ 2.fst
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Channel presets\3x Osc\Organ 3 (fat).fst
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Channel presets\3x Osc\Organ 3 (major).fst
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Channel presets\3x Osc\Organ 3.fst
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Channel presets\3x Osc\Organ 4.fst
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Channel presets\3x Osc\Organ 5.fst
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Channel presets\3x Osc\Organ 6.fst
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Channel presets\3x Osc\Organ.fst
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Channel presets\3x Osc\Outer space hooter.fst
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Channel presets\3x Osc\Phat bass.fst
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Channel presets\3x Osc\Pilch bass.fst
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Channel presets\3x Osc\Pilch tech lead.fst
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Channel presets\3x Osc\Pilch tech pad.fst
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Channel presets\3x Osc\Pluck (fat).fst
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Channel presets\3x Osc\Pluck.fst
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Channel presets\3x Osc\Porta bass.fst
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Channel presets\3x Osc\Pure bass 2.fst
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Channel presets\3x Osc\Pure bass 3.fst
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Channel presets\3x Osc\Pure bass 4.fst
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Channel presets\3x Osc\Pure bass 5.fst
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Channel presets\3x Osc\Pure bass 6.fst
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Channel presets\3x Osc\Pure bass 7.fst
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Channel presets\3x Osc\Pure bass 8.fst
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Channel presets\3x Osc\Pure bass.fst
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Channel presets\3x Osc\Quiet.fst
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Channel presets\3x Osc\Rave lead.fst
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Channel presets\3x Osc\Raw.fst
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Channel presets\3x Osc\Roswel Landing.fst
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Channel presets\3x Osc\SciFi 2.fst
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Channel presets\3x Osc\SciFi 3.fst
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Channel presets\3x Osc\SciFi 4.fst
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Channel presets\3x Osc\SciFi 5.fst
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Channel presets\3x Osc\SciFi 6.fst
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Channel presets\3x Osc\SciFi 7.fst
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Channel presets\3x Osc\SciFi 8.fst
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Channel presets\3x Osc\SciFi.fst
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Channel presets\3x Osc\Short 10.fst
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Channel presets\3x Osc\Short 11.fst
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Channel presets\3x Osc\Short 2.fst
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Channel presets\3x Osc\Short 3.fst
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Channel presets\3x Osc\Short 4.fst
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Channel presets\3x Osc\Short 5.fst
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Channel presets\3x Osc\Short 6.fst
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Channel presets\3x Osc\Short 7 (fat).fst
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Channel presets\3x Osc\Short 7.fst
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Channel presets\3x Osc\Short 8.fst
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Channel presets\3x Osc\Short 9.fst
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Channel presets\3x Osc\Short square 2.fst
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Channel presets\3x Osc\Short square.fst
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Channel presets\3x Osc\Short.fst
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Channel presets\3x Osc\Slice.fst
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Channel presets\3x Osc\Smooth string 2 (fat).fst
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Channel presets\3x Osc\Smooth string 2.fst
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Channel presets\3x Osc\Smooth string.fst
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Channel presets\3x Osc\Smooth synth.fst
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Channel presets\3x Osc\Snare 2.fst
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Channel presets\3x Osc\Snare.fst
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Channel presets\3x Osc\Snarekick 2.fst
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Channel presets\3x Osc\Snarekick.fst
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Channel presets\3x Osc\Square 2.fst
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Channel presets\3x Osc\Square bass 2.fst
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Channel presets\3x Osc\Square bass.fst
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Channel presets\3x Osc\Square.fst
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Channel presets\3x Osc\String (fat).fst
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Channel presets\3x Osc\String 10.fst
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Channel presets\3x Osc\String 11.fst
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Channel presets\3x Osc\String 2.fst
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Channel presets\3x Osc\String 3.fst
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Channel presets\3x Osc\String 4.fst
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Channel presets\3x Osc\String 5.fst
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Channel presets\3x Osc\String 6.fst
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Channel presets\3x Osc\String 7.fst
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Channel presets\3x Osc\String 8.fst
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Channel presets\3x Osc\String 9.fst
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Channel presets\3x Osc\String.fst
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Channel presets\3x Osc\Stutt arp.fst
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Channel presets\3x Osc\Supa bass.fst
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Channel presets\3x Osc\Synth bass 10.fst
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Channel presets\3x Osc\Synth bass 2.fst
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Channel presets\3x Osc\Synth bass 3.fst
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Channel presets\3x Osc\Synth bass 4.fst
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Channel presets\3x Osc\Synth bass 5.fst
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Channel presets\3x Osc\Synth bass 6.fst
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Channel presets\3x Osc\Synth bass 7.fst
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Channel presets\3x Osc\Synth bass 8.fst
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Channel presets\3x Osc\Synth bass 9.fst
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Channel presets\3x Osc\Synth bass.fst
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Channel presets\3x Osc\Trance lead.fst
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Channel presets\3x Osc\Voodoo.fst
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Channel presets\3x Osc\Warble 2.fst
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Channel presets\3x Osc\Warble.fst
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Channel presets\3x Osc\Warped.fst
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Channel presets\3x Osc\Weird bass.fst
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Channel presets\3x Osc\Windy.fst
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Channel presets\3x Osc\Wip.fst
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Channel presets\3x Osc\zzzzap.fst
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Channel presets\Automation Clips\Gates
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Channel presets\Automation Clips\Shapes
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Channel presets\Automation Clips\Gates\BasicGate1.fst
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Channel presets\Automation Clips\Gates\BasicGate10.fst
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Channel presets\Automation Clips\Gates\BasicGate11.fst
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Channel presets\Automation Clips\Gates\BasicGate12.fst
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Channel presets\Automation Clips\Gates\BasicGate13.fst
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Channel presets\Automation Clips\Gates\BasicGate14.fst
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Channel presets\Automation Clips\Gates\BasicGate15.fst
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Channel presets\Automation Clips\Gates\BasicGate16.fst
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Channel presets\Automation Clips\Gates\BasicGate2.fst
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Channel presets\Automation Clips\Gates\BasicGate3.fst
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Channel presets\Automation Clips\Gates\BasicGate5.fst
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Channel presets\Automation Clips\Gates\BasicGate6.fst
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Channel presets\Automation Clips\Gates\BasicGate7.fst
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Channel presets\Automation Clips\Gates\BasicGate8.fst
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Channel presets\Automation Clips\Gates\BasicGate9.fst
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Channel presets\Automation Clips\Shapes\Saw-1-0.fst
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Channel presets\Automation Clips\Shapes\Saw-1-100.fst
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Channel presets\Automation Clips\Shapes\Saw-16th-0.fst
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Channel presets\Automation Clips\Shapes\Saw-16th-100.fst
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Channel presets\Automation Clips\Shapes\Saw-2nd-0.fst
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Channel presets\Automation Clips\Shapes\Saw-2nd-100.fst
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Channel presets\Automation Clips\Shapes\Saw-4th-0.fst
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Channel presets\Automation Clips\Shapes\Saw-4th-100.fst
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Channel presets\Automation Clips\Shapes\Saw-8th-0.fst
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Channel presets\Automation Clips\Shapes\Saw-8th-100.fst
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Channel presets\Automation Clips\Shapes\Sin-1-0.fst
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Channel presets\Automation Clips\Shapes\Sin-1-100.fst
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Channel presets\Automation Clips\Shapes\Sin-1-50.fst
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Channel presets\Automation Clips\Shapes\Sin-16th-0.fst
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Channel presets\Automation Clips\Shapes\Sin-16th-100.fst
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Channel presets\Automation Clips\Shapes\Sin-16th-50.fst
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Channel presets\Automation Clips\Shapes\Sin-2nd-0.fst
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Channel presets\Automation Clips\Shapes\Sin-2nd-100.fst
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Channel presets\Automation Clips\Shapes\Sin-2nd-50.fst
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Channel presets\Automation Clips\Shapes\Sin-8th-0.fst
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Channel presets\Automation Clips\Shapes\Sin-8th-100.fst
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Channel presets\Automation Clips\Shapes\Sin-8th-50.fst
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Channel presets\Automation Clips\Shapes\Square-16th-0.fst
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Channel presets\Automation Clips\Shapes\Square-16th-100.fst
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Channel presets\Automation Clips\Shapes\Square-2nd-0.fst
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Channel presets\Automation Clips\Shapes\Square-2nd-100.fst
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Channel presets\Automation Clips\Shapes\Square-4th-0.fst
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Channel presets\Automation Clips\Shapes\Square-4th-100.fst
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Channel presets\Automation Clips\Shapes\Square-8th-0.fst
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Channel presets\Automation Clips\Shapes\Square-8th-100.fst
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Channel presets\Automation Clips\Shapes\Triangle-1-0.fst
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Channel presets\Automation Clips\Shapes\Triangle-1-100.fst
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Channel presets\Automation Clips\Shapes\Triangle-16th-0.fst
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Channel presets\Automation Clips\Shapes\Triangle-16th-100.fst
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Channel presets\Automation Clips\Shapes\Triangle-2nd-0.fst
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Channel presets\Automation Clips\Shapes\Triangle-2nd-100.fst
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Channel presets\Automation Clips\Shapes\Triangle-4th-0.fst
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Channel presets\Automation Clips\Shapes\Triangle-4th-100.fst
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Channel presets\Automation Clips\Shapes\Triangle-8th-0.fst
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Channel presets\Automation Clips\Shapes\Triangle-8th-100.fst
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Channel presets\BeepMap\Beepcoder.fst
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Channel presets\BeepMap\duda1.fst
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Channel presets\BeepMap\duda2.fst
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Channel presets\BeepMap\duda3.fst
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Channel presets\BeepMap\duda4.fst
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Channel presets\BeepMap\duda5.fst
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Channel presets\BeepMap\duda6.fst
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Channel presets\Fruity slicer\Basic slicing.fst
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Channel presets\Fruity slicer\Filtered.fst
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Channel presets\Layers\1notejam.fst
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Channel presets\Layers\3xJam-d.fst
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Channel presets\Layers\Bass.fst
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Channel presets\Layers\BigPad.fst
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Channel presets\Layers\Dance.fst
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Channel presets\Layers\Hoover1.fst
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Channel presets\Layers\MajorPad.fst
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Channel presets\Layers\MellowPad.fst
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Channel presets\Layers\Nice.fst
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Channel presets\Layers\Pad.fst
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Channel presets\Layers\SuperString 2.fst
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Channel presets\Layers\SuperString.fst
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Channel presets\Layers\Surround.fst
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Channel presets\Plucked!\Arp.fst
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Channel presets\Plucked!\KB tracked.fst
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Channel presets\Sampler\Basic envelope.fst
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Channel presets\Sampler\Default.fst
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Channel presets\TS404\303 Bass Arpeggio 2.fst
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Channel presets\TS404\303 Bass Arpeggio 3.fst
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Channel presets\TS404\303 Bass Arpeggio 4.fst
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Channel presets\TS404\303 Bass Arpeggio 5.fst
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Channel presets\TS404\303 Bass Arpeggio 6.fst
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Channel presets\TS404\303 Bass Arpeggio.fst
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Channel presets\TS404\303ish Again.fst
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Channel presets\TS404\404 Beep.fst
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Channel presets\TS404\404 Reasons Phat.fst
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Channel presets\TS404\404 Reasons.fst
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Channel presets\TS404\Another Step Beyound.fst
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Channel presets\TS404\Apocalypse.fst
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Channel presets\TS404\Backward Incompatible.fst
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Channel presets\TS404\Bass'n'Drum.fst
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Channel presets\TS404\Bee.fst
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Channel presets\TS404\Cans.fst
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Channel presets\TS404\Casio Arpeggio.fst
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Channel presets\TS404\Clang Bass.fst
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Channel presets\TS404\Classic 1.fst
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Channel presets\TS404\Classic 2.fst
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Channel presets\TS404\Classic Mono.fst
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Channel presets\TS404\Crying.fst
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Channel presets\TS404\Designer Drug.fst
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Channel presets\TS404\Distorted Bass.fst
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Channel presets\TS404\Distorted Phase.fst
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Channel presets\TS404\Distorted Triangle 303.fst
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Channel presets\TS404\Distorted.fst
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Channel presets\TS404\Dull Rubber Flubber.fst
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Channel presets\TS404\Eurodance Arpeggio.fst
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Channel presets\TS404\Exhaust.fst
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Channel presets\TS404\Extreme Arpeggio.fst
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Channel presets\TS404\Fat Rezonator.fst
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Channel presets\TS404\Fat Square.fst
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Channel presets\TS404\Fat Triangle.fst
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Channel presets\TS404\Fatter Rezonatorer.fst
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Channel presets\TS404\Frog.fst
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Channel presets\TS404\Future Wave.fst
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Channel presets\TS404\H2CO3.fst
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Channel presets\TS404\H2SO4.fst
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Channel presets\TS404\Happy Hardcore Bass Arpeggiator 2.fst
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Channel presets\TS404\Happy Hardcore Bass Arpeggiator 3.fst
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Channel presets\TS404\Happy Hardcore Bass Arpeggiator.fst
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Channel presets\TS404\HNO3.fst
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Channel presets\TS404\Hoover Bass Arpeggio.fst
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Channel presets\TS404\Horror Bass.fst
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Channel presets\TS404\Icy.fst
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Channel presets\TS404\Junothing.fst
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Channel presets\TS404\Lead Res.fst
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Channel presets\TS404\Liquid Arpeggiator.fst
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Channel presets\TS404\Low Flying Object Bass Arpeggio.fst
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Channel presets\TS404\Lowbass Rim.fst
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Channel presets\TS404\Midlife.fst
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Channel presets\TS404\My First Roland.fst
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Channel presets\TS404\Notre.fst
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Channel presets\TS404\Pearls.fst
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Channel presets\TS404\Plucked Square.fst
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Channel presets\TS404\Plucked.fst
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Channel presets\TS404\Rave.fst
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Channel presets\TS404\RBS303.fst
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Channel presets\TS404\See Two.fst
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Channel presets\TS404\SH101T.fst
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Channel presets\TS404\Sid-like.fst
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Channel presets\TS404\Synth.fst
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Channel presets\TS404\Synthy Lead Bass.fst
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Channel presets\TS404\Syrenas Voice.fst
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Channel presets\TS404\TB303.fst
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Channel presets\TS404\Technic.fst
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Channel presets\TS404\Triangle 303.fst
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Channel presets\TS404\Upwards Mobile.fst
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Channel presets\TS404\Wub Bass.fst
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Channel presets\TS404\Wub.fst
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Channel presets\TS404\Wubber Bassier Harder.fst
C:\Program Files\Image-Line\FL Studio 8\Data\Patches\Channel presets\Useful\Rev cym.fst
C:\Program Files\Image-Line\FL Studio 8

Réponse 9 / 18

Utilisateur anonyme

▶ Télécharge UsbFix

(!) Branche tes sources de données externes à ton PC, (clé USB, disque dur externe, etc...) susceptible d'avoir été infectées sans les ouvrir

▶ Double clic sur le raccourci UsbFix présent sur ton bureau .

▶ Au menu principal choisis l'option " F " pour français et tape sur [entrée] .

▶ Au second menu Choisis l'option " 1 " (recherche) et tape sur [entrée]

▶ Laisse travailler l'outil.

▶ Ensuite post le rapport UsbFix.txt qui apparaitra.

Note : Le rapport UsbFix.txt est sauvegardé a la racine du disque. ( C:\UsbFix.txt )

( CTRL+A Pour tout selectionner , CTRL+C pour copier et CTRL+V pour coller )

Note : "Process.exe", une composante de l'outil, est détecté par certains antivirus (AntiVir, Dr.Web, Kaspersky Anti-Virus) comme étant un RiskTool.
Il ne s'agit pas d'un virus, mais d'un utilitaire destiné à mettre fin à des processus.
Mis entre de mauvaises mains, cet utilitaire pourrait arrêter des logiciels de sécurité (Antivirus, Firewall...) d'où l'alerte émise par ces antivirus.

Rmat

voici le rapport de usbfix :

############################## | UsbFix V6.091 |

User : Administrateur (Administrateurs) # ADMIN-4EEED84B7
Update on 05/02/2010 by El Desaparecido , C_XX & Chimay8
Start at: 16:36:51 | 06/02/2010
Website : http://pagesperso-orange.fr/NosTools/index.html
Contact : FindyKill.Contact@gmail.com

AMD Athlon(tm) XP 1800+
Microsoft Windows XP Professionnel (5.1.2600 32-bit) # Service Pack 3, v.5857
Internet Explorer 8.0.6001.18702
Windows Firewall Status : Disabled

A:\ -> Lecteur de disquettes 3 ½ pouces
C:\ -> Disque fixe local # 33,68 Go (13,61 Go free) # NTFS
D:\ -> Disque fixe local # 4,58 Go (1,64 Go free) [HP_RECOVERY] # FAT32
E:\ -> Disque CD-ROM
F:\ -> Disque CD-ROM
G:\ -> Disque CD-ROM
H:\ -> Disque amovible # 994,95 Mo (204,25 Mo free) # FAT
I:\ -> Disque amovible # 1,88 Go (337,25 Mo free) # FAT

############################## | Processus actifs |

C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\csrss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\Avira\AntiVir Desktop\sched.exe
C:\Program Files\Avira\AntiVir Desktop\avguard.exe
C:\WINDOWS\system32\pctspk.exe
C:\Program Files\SolidWorks\COSMOS\FloWorks\binCFW\StandAloneSlv.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Viewpoint\Common\ViewpointService.exe
C:\Program Files\Yahoo!\Common\YMailAdvisor.exe
C:\Program Files\Yahoo!\Search Protection\SearchProtection.exe
C:\Program Files\Fichiers communs\Microsoft Shared\Works Shared\WkUFind.exe
C:\Program Files\Hercules\Hercules WiFi Controller Software\WiFiCtrl.exe
C:\Program Files\NVIDIA Corporation\NvMixer\NVMixerTray.exe
C:\Program Files\Avira\AntiVir Desktop\avgnt.exe
C:\Program Files\DAEMON Tools Lite\DTLite.exe
C:\Program Files\Fichiers communs\Microsoft Shared\Works Shared\wkcalrem.exe
C:\WINDOWS\system32\wuauclt.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Notepad++\notepad++.exe
C:\Program Files\internet explorer\iexplore.exe
C:\Program Files\internet explorer\iexplore.exe
C:\WINDOWS\system32\wbem\wmiprvse.exe

################## | Elements infectieux |

H:\autorun.inf
H:\autorun.inf -> fichier appelé : "H:\uisvkqr.exe" ( Présent ! )
H:\autorun.inf

################## | Registre |

[HKLM\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer] "NoRecentDocsHistory"
[HKCU\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer] "NoRecentDocsHistory"
[HKLM\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer] "NoRecentDocsMenu"
[HKCU\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer] "NoRecentDocsMenu"
[HKCU\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer] "NoResolveSearch"

################## | Mountpoints2 |

HKCU\..\..\Explorer\MountPoints2\{6f701c6c-7b6f-11dd-bafb-0010dc9abd22}
Shell\AutoRun\command =H:\uisvkqr.exe
Shell\explore\Command =H:\uisvkqr.exe
Shell\open\Command =H:\uisvkqr.exe

################## | Vaccin |

(!) Cet ordinateur n'est pas vacciné !

################## | ! Fin du rapport # UsbFix V6.091 ! |

Rmat

Réponse 10 / 18

Utilisateur anonyme

▶ (!) Branche tes sources de données externes à ton PC, (clé USB, disque dur externe, etc...) susceptible d avoir été infectés sans les ouvrir

▶ Double clic (clic droit "en tant qu'administrateur" pour Vista)sur le raccourci UsbFix présent sur ton bureau

▶ Au menu principal choisis l'option " F " pour français et tape sur [entrée] .

▶ Au second menu Choisis l'option " 2 " ( Suppression ) et tape sur [entrée]

▶ Ton bureau disparaitra et le pc redémarrera .

▶ Au redémarrage , UsbFix scannera ton pc , laisse travailler l'outil.

▶ Ensuite post le rapport UsbFix.txt qui apparaitra avec le bureau .

Note : Le rapport UsbFix.txt est sauvegardé a la racine du disque.( C:\UsbFix.txt )

( CTRL+A Pour tout selectionner , CTRL+C pour copier et CTRL+V pour coller )

Rmat

############################## | UsbFix V6.091 |

User : Administrateur (Administrateurs) # ADMIN-4EEED84B7
Update on 05/02/2010 by El Desaparecido , C_XX & Chimay8
Start at: 17:22:30 | 06/02/2010
Website : http://pagesperso-orange.fr/NosTools/index.html
Contact : FindyKill.Contact@gmail.com

AMD Athlon(tm) XP 1800+
Microsoft Windows XP Professionnel (5.1.2600 32-bit) # Service Pack 3, v.5857
Internet Explorer 8.0.6001.18702
Windows Firewall Status : Enabled

A:\ -> Lecteur de disquettes 3 ½ pouces
C:\ -> Disque fixe local # 33,68 Go (13,58 Go free) # NTFS
D:\ -> Disque fixe local # 4,58 Go (1,64 Go free) [HP_RECOVERY] # FAT32
E:\ -> Disque CD-ROM
F:\ -> Disque CD-ROM
G:\ -> Disque CD-ROM
H:\ -> Disque amovible # 994,95 Mo (204,25 Mo free) # FAT
I:\ -> Disque amovible # 1,88 Go (337,25 Mo free) # FAT

############################## | Processus actifs |

C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\csrss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Avira\AntiVir Desktop\sched.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\Avira\AntiVir Desktop\avguard.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
C:\WINDOWS\system32\pctspk.exe
C:\Program Files\SolidWorks\COSMOS\FloWorks\binCFW\StandAloneSlv.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Viewpoint\Common\ViewpointService.exe
C:\WINDOWS\system32\wuauclt.exe
C:\WINDOWS\system32\wbem\wmiprvse.exe

################## | Elements infectieux |

Supprimé ! C:\Recycler\S-1-5-21-343818398-2139871995-1606980848-500
H:\autorun.inf -> fichier appelé : "H:\uisvkqr.exe" ( Présent ! )
Supprimé ! H:\uisvkqr.exe
Supprimé ! H:\autorun.inf

################## | Registre |

Supprimé ! [HKLM\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer] "NoRecentDocsHistory"
Supprimé ! [HKCU\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer] "NoRecentDocsHistory"
Supprimé ! [HKLM\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer] "NoRecentDocsMenu"
Supprimé ! [HKCU\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer] "NoRecentDocsMenu"
Supprimé ! [HKCU\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer] "NoResolveSearch"

################## | Mountpoints2 |

################## | Listing des fichiers présent |

[05/02/2010 21:04|--a------|6386] C:\Ad-Report-CLEAN[1].log
[06/02/2010 12:36|--a------|4] C:\AUTOEXEC.BAT
[08/12/2009 21:19|--a------|9287] C:\ComboFix.txt
[02/08/2008 15:50|--a------|0] C:\CONFIG.SYS
[02/08/2008 15:50|-rahs----|0] C:\IO.SYS
[06/02/2010 12:36|--a------|3699] C:\Kill'em.txt
[06/02/2010 13:40|--a------|637431] C:\List'em.txt
[02/08/2008 15:50|-rahs----|0] C:\MSDOS.SYS
[?|?|?] C:\pagefile.sys
[27/12/2009 18:31|--a------|11] C:\trace.ini
[06/02/2010 17:34|--a------|3035] C:\UsbFix.txt
[27/07/2001 21:07|---------|0] D:\AUTOEXEC.BAT
[02/08/2008 16:37|--a------|211] D:\Boot.bak
[03/08/2004 23:00|--a------|263488] D:\CMLDR
[27/07/2001 21:07|--a------|0] D:\CONFIG.SYS
[14/12/2001 09:51|---------|266] D:\Desktop.ini
[01/03/2002 20:07|---------|7802] D:\Folder.htt
[30/04/2001 11:16|-ra------|14] D:\GRAPH
[25/01/2002 09:21|-ra------|0] D:\GRAPH16
[27/07/2001 21:07|-rahs----|0] D:\IO.SYS
[27/07/2001 21:07|-rahs----|0] D:\MSDOS.SYS
[08/12/2009 19:47|--ahs----|282] D:\boot.ini
[17/08/2001 06:32|-ra------|0] D:\NTFS
[14/04/2008 12:00|-rahs----|47564] D:\NTDETECT.COM
[30/04/2001 11:16|-ra------|14] D:\SVGA
[14/04/2008 12:00|-rahs----|252240] D:\ntldr
[30/08/2002 14:00|-rahs----|4952] D:\Bootfont.bin
[08/09/2002 04:07|-ra------|6] D:\BLOCK.RIN
[08/09/2002 04:09|-ra------|346] D:\MASTER.LOG
[18/08/2001 06:00|-ra------|10] D:\WIN51
[22/01/2001 06:00|-ra------|11] D:\WIN51.B2
[25/07/2001 06:00|-ra------|11] D:\WIN51.RC1
[25/07/2001 11:47|-ra------|11] D:\WIN51.RC2
[18/08/2001 06:00|-ra------|10] D:\WIN51IC
[20/03/2001 06:00|-ra------|11] D:\WIN51IC.B2
[25/07/2001 06:00|-ra------|11] D:\WIN51IC.RC1
[25/07/2001 06:00|-ra------|11] D:\WIN51IC.RC2
[17/08/2001 06:00|-ra------|10] D:\WIN51IP
[22/01/2001 06:00|-ra------|11] D:\WIN51IP.B2
[25/07/2001 11:47|-ra------|11] D:\WIN51IP.RC2
[17/08/2001 04:17|-ra------|184] D:\WINBOM.INI
[01/10/2002 20:36|--ah-----|18] D:\USER
[09/08/2007 19:44|--a------|1131] D:\BDWizReg.log
[02/02/2010 08:51|--a------|217519] H:\TIP127.pdf
[08/12/2009 19:27|--a------|464] H:\Un guide et un tutoriel sur l'utilisation de ComboFix.url
[21/01/2010 00:07|--a------|21742] H:\dm espagnol.odt
[30/07/2009 11:27|--a------|730984448] I:\Destination Finale 2 [DVDRiP].avi
[30/07/2009 12:27|--a------|731238674] I:\Destination Finale 3 [DVDRiP].avi

################## | Vaccination |

# C:\autorun.inf -> Dossier créé par UsbFix .
# D:\autorun.inf -> Dossier créé par UsbFix .
# H:\autorun.inf -> Dossier créé par UsbFix .
# I:\autorun.inf -> Dossier créé par UsbFix .

################## | Upload |

Veuillez envoyer le fichier : C:\UsbFix_Upload_Me_ADMIN-4EEED84B7.zip : https://www.ionos.fr/?affiliate_id=77097
Merci pour votre contribution .

################## | ! Fin du rapport # UsbFix V6.091 ! |

Rmat

Réponse 11 / 18

Utilisateur anonyme

H:\Un guide et un tutoriel sur l'utilisation de ComboFix.url

tu devrais te debarasser de ca et ne t'en occuper uniquement sur avis de quelqu'un d'experimenté car c'est un outil tres dangereux (on ne le dira jamais assez !!!) il risque , mal utilisé , de planter ta machine completement

Télécharge OTL de OLDTimer

▶ enregistre le sur ton Bureau.

▶ Double clic ( pour vista / 7 => clic droit "executer en tant qu'administrateur") sur OTL.exe pour le lancer.

▶ Coche les 2 cases Lop et Purity

▶ Coche la case devant scan all users

▶ règle-le sur "60 Days"

▶ dans la colonne de gauche , mets tout sur all

ne modifie pas ceci :

"files created whithin" et "files modified whithin"

▶Clic sur Run Scan.

A la fin du scan, le Bloc-Notes va s'ouvrir avec le rapport (OTL.txt).

Ce fichier est sur ton Bureau (en général C:\Documents and settings\le_nom_de_ta_session\OTL.txt)

▶▶▶ NE LE POSTE PAS SUR LE FORUM

Pour me le transmettre clique sur ce lien : http://www.cijoint.fr/

▶ Clique sur Parcourir et cherche le fichier ci-dessus.

▶ Clique sur Ouvrir.

▶ Clique sur "Cliquez ici pour déposer le fichier".

Un lien de cette forme :

http://www.cijoint.fr/cjlink.php?file=cjge368/cijSKAP5fU.txt

est ajouté dans la page.

▶ Copie ce lien dans ta réponse.

▶▶ Tu feras la meme chose avec le "Extra.txt".

Rmat

tenez voici les 2 liens des rapport de OTL :

http://www.cijoint.fr/cjlink.php?file=cj201002/cijGAkF8sd.txt

http://www.cijoint.fr/cjlink.php?file=cj201002/cij0taO6UW.txt

Réponse 12 / 18

Utilisateur anonyme

evite d'installer Daelio toolbar , Ask Toolbar , Etc....elles sont infectieuses

▶ Télécharge DAFT !

▶ Sauvegarde-le sur ton Bureau.
▶ Dézippe le dossier le contenant (clic droit , extraire ici)
▶ Double-clique sur l'icône de DAFT se trouvant dans son dossier dézippé, présent sur ton bureau.
▶ Clique sur le bouton Scan.
▶ Sélectionne tout ce qui apparaît.
▶ Clique sur le bouton Fix.
▶ Ensuite relance DAFT. Si tout est OK, un message du type "All associations are OK" devrait apparaître.
▶ Ferme DAFT et supprime-le

ensuite :

▶ Télécharge Zeb-Restoreet enregistre ce fichier sur le bureau.

▶-Clic droit Zeb-Restore.zip ==> Extraire tout choisis comme lieu d'enregistrement le bureau.

▶-Ouvre le dossier ZR_1.0.0.37 ==> double clic sur Zeb-Restore.exe

▶- Coche la case devant : sites de confiance

▶- Ne coche aucune autre case

▶-Clique sur Restaurer

▶-Redémarre ton PC

ensuite :

▶ clic droit "executer en tant qu'administrateur" sur OTL.exe pour le lancer.

▶Copie la liste qui se trouve en gras ci-dessous,

▶ colle-la dans la zone sous Customs Scans/Fixes :

:processes
explorer.exe
iexplore.exe
firefox.exe
msnmsgr.exe
Teatimer.exe

:OTL
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoCDBurning = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoRemoteRecursiveEvents = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoResolveTrack = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: HideRunAsVerb = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoInstrumentation = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoNetConnectDisconnect = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoStartMenuMFUprogramsList = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: AllowLegacyWebView = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: AllowUnhashedWebView = 1
O7 - HKCU\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKCU\Software\Policies\Microsoft\Internet Explorer\Infodelivery present
O7 - HKCU\Software\Policies\Microsoft\Internet Explorer\Recovery present
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoLowDiskSpaceChecks = 1
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoResolveTrack = 1
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoSMBalloonTip = 1
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoStartBanner = 1

:reg
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"Adobe Reader Speed Launcher"=-
"Microsoft Works Portfolio"=-
"NVMixerTray"=-
"WorksFUD"=-
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{6105648C-0C3C-481D-8C11-1F4952D6FB53}"=-

:commands
[emptytemp]
[start explorer]
[reboot]

▶ Clique sur RunFix pour lancer la suppression.

▶ Poste le rapport.

Rmat

voici le dernier rapport de OTL :

All processes killed
Error: Unable to interpret <[emptytemp] > in the current context!
Error: Unable to interpret <[start explorer] > in the current context!
Error: Unable to interpret <[reboot] > in the current context!

OTL by OldTimer - Version 3.1.28.0 log created on 02062010_193959

Files\Folders moved on Reboot...

Registry entries deleted on Reboot...

Rmat > Rmat

Que dois je faire maintenant?

Réponse 13 / 18

Utilisateur anonyme

euh..il faut mettre tout ce qui est en gras dans OTL

Rmat

bonjour,
il y a du y avoir un bug parce qu'il me semble que j'avais bien tout copier,
du coup je viens de le refaire et voici le nouveau rapport qui est un peu plus long que le précèdent :)

All processes killed
========== PROCESSES ==========
No active process named explorer.exe was found!
Process iexplore.exe killed successfully!
No active process named firefox.exe was found!
No active process named msnmsgr.exe was found!
No active process named Teatimer.exe was found!
========== OTL ==========
Registry value HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer\\NoCDBurning not found.
Registry value HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer\\NoRemoteRecursiveEvents not found.
Registry value HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer\\NoResolveTrack not found.
Registry value HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer\\HideRunAsVerb not found.
Registry value HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer\\NoInstrumentation not found.
Registry value HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer\\NoNetConnectDisconnect not found.
Registry value HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer\\NoStartMenuMFUprogramsList not found.
Registry value HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer\\AllowLegacyWebView not found.
Registry value HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer\\AllowUnhashedWebView not found.
Registry key HKEY_CURRENT_USER\Software\Policies\Microsoft\Internet Explorer\Control Panel\ not found.
Registry key HKEY_CURRENT_USER\Software\Policies\Microsoft\Internet Explorer\Infodelivery\ not found.
Registry key HKEY_CURRENT_USER\Software\Policies\Microsoft\Internet Explorer\Recovery\ not found.
Registry value HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer\\NoLowDiskSpaceChecks not found.
Registry value HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer\\NoResolveTrack not found.
Registry value HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer\\NoSMBalloonTip not found.
Registry value HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer\\NoStartBanner not found.
========== REGISTRY ==========
Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run\\Adobe Reader Speed Launcher not found.
Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run\\Microsoft Works Portfolio not found.
Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run\\NVMixerTray not found.
Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run\\WorksFUD not found.
Registry value HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\\{6105648C-0C3C-481D-8C11-1F4952D6FB53} not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{6105648C-0C3C-481D-8C11-1F4952D6FB53}\ not found.
========== COMMANDS ==========

[EMPTYTEMP]

User: Administrateur
->Temp folder emptied: 57477 bytes
->Temporary Internet Files folder emptied: 10412167 bytes
->Java cache emptied: 0 bytes

User: All Users

User: Default User
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes

User: HelpAssistant
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 738352701 bytes
->Java cache emptied: 624496 bytes

User: LocalService
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 33170 bytes

User: NetworkService
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 702191 bytes

%systemdrive% .tmp files removed: 0 bytes
%systemroot% .tmp files removed: 0 bytes
%systemroot%\System32 .tmp files removed: 3072 bytes
%systemroot%\System32\dllcache .tmp files removed: 0 bytes
%systemroot%\System32\drivers .tmp files removed: 0 bytes
Windows Temp folder emptied: 0 bytes
%systemroot%\system32\config\systemprofile\Local Settings\Temp folder emptied: 0 bytes
%systemroot%\system32\config\systemprofile\Local Settings\Temporary Internet Files folder emptied: 67 bytes
RecycleBin emptied: 0 bytes

Total Files Cleaned = 715,00 mb

OTL by OldTimer - Version 3.1.28.0 log created on 02072010_122442

Files\Folders moved on Reboot...

Registry entries deleted on Reboot...

Réponse 14 / 18

Utilisateur anonyme

Imprime ces instructions car il faudra fermer toutes les fenêtres et applications lors de l'installation et de l'analyse.

▶ Télécharge :

Malwarebytes

ou :

Malwarebytes

▶ Installe le ( choisis bien "francais" ; ne modifie pas les paramètres d'installe ) et mets le à jour .

(NB : Si tu as un message d'erreur t'indiquant qu'il te manque "COMCTL32.OCX" lors de l'installe, alors télécharge le ici : COMCTL32.OCX

▶ Potasses le Tuto pour te familiariser avec le prg :

( cela dit, il est très simple d'utilisation ).

relance malwarebytes en suivant scrupuleusement ces consignes :

! Déconnecte toi et ferme toutes applications en cours !

▶ Lance Malwarebyte's .

Fais un examen dit "Complet" .

▶ Laisse le programme travailler ( et ne rien faire d'autre avec le PC durant le scan ).
▶ à la fin tu cliques sur "résultat" .
▶ Vérifie que tous les objets infectés soient validés, puis clique sur " suppression " .

▶ Note : si il faut redémarrer ton PC pour finir le nettoyage, fais le !

▶ Poste le rapport sauvegardé après la suppression des objets infectés (dans l'onglet "rapport/log"de Malwarebytes, le dernier en date)

Rmat

ba ca tombe bien je l'ai téléchargé ce matin et j'ai fait un examen complet mais durant l'examen mon anti-virus (antivir) c'est déclanché plusieurs fois (j'ai fait supprimer à chaque fois),
voici le rapport de malwarebytes :

Malwarebytes' Anti-Malware 1.44
Version de la base de données: 3698
Windows 5.1.2600 Service Pack 3, v.5857
Internet Explorer 8.0.6001.18702

07/02/2010 11:59:26
mbam-log-2010-02-07 (11-59-26).txt

Type de recherche: Examen complet (C:\|D:\|H:\|)
Eléments examinés: 231746
Temps écoulé: 1 hour(s), 33 minute(s), 36 second(s)

Processus mémoire infecté(s): 0
Module(s) mémoire infecté(s): 0
Clé(s) du Registre infectée(s): 0
Valeur(s) du Registre infectée(s): 0
Elément(s) de données du Registre infecté(s): 1
Dossier(s) infecté(s): 0
Fichier(s) infecté(s): 0

Processus mémoire infecté(s):
(Aucun élément nuisible détecté)

Module(s) mémoire infecté(s):
(Aucun élément nuisible détecté)

Clé(s) du Registre infectée(s):
(Aucun élément nuisible détecté)

Valeur(s) du Registre infectée(s):
(Aucun élément nuisible détecté)

Elément(s) de données du Registre infecté(s):
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer\NoSMHelp (Hijack.Help) -> Bad: (1) Good: (0) -> Quarantined and deleted successfully.

Dossier(s) infecté(s):
(Aucun élément nuisible détecté)

Fichier(s) infecté(s):
(Aucun élément nuisible détecté)

Réponse 15 / 18

Utilisateur anonyme

tu as retrouvé le point d'interrogation bleu dans le menu demarrer ^^

Pour nettoyer les outils utilsés et mieux sécuriser ton pc
--------------------------------------------------------------------------------

▶---> Télécharge ToolsCleaner2sur ton Bureau.
* Double-clique (clic droit "en tant qu'administrateur" pour Vista) sur ToolsCleaner2.exe pour le lancer.
* Clique sur Recherche et laisse le scan agir.
* Clique sur Suppression pour finaliser.
* Tu peux, si tu le souhaites, te servir des Options Facultatives.
* Clique sur Quitter pour obtenir le rapport.
* Poste le rapport (TCleaner.txt) qui se trouve à la racine de ton disque dur (C:\).
___________________________________________________

▶ Tu peux supprimer ToolCleaner

___________________________________________________

▶ Télécharge :ATF Cleaner par Atribune

Double-clique (clic droit "en tant qu'administrateur" pour Vista) ATF-Cleaner.exe afin de lancer le programme.
Sous l'onglet Main, choisis : Select All
Clique sur le bouton Empty Selected
Si tu utilises le navigateur Firefox :
Clique Firefox au haut et choisis : Select All
Clique le bouton Empty Selected a
NOTE : Si tu veux conserver tes mots de passe sauvegardés, clique No à l'invité.
Si tu utilises le navigateur Opera :
Clique Opera au haut et choisis : Select All
Clique le bouton Empty Selected
NOTE : Si tu veux conserver tes mots de passe sauvegardés, clique No à l'invité.
Clique Exit, du menu prinicipal, afin de fermer le programme.
Pour obtenir du Support technique, double-clique l'adresse électronique située au bas de chacun des menus.

__________________________________________________

▶ Tu peux garder ATF pour d'eventuels netttoyages un peu plus poussés
__________________________________________________

▶ Télécharge et installe CCleaner (N'installe pas la Yahoo Toolbar) :

* Lance-le.(clic droit "en tant qu'administrateur" pour Vista) Va dans Options puis Avancé et décoche la case Effacer uniquement les fichiers etc....
* Va dans Nettoyeur, choisis Analyse. Une fois terminé, lance le nettoyage.
* Ensuite, choisis Registre, puis Chercher des erreurs. Une fois terminé, répare toutes les erreurs tant de fois qu il en trouve a l analyse
* Veille a ce que dans les options le reglage soit au demarrage de windows et réglé sur "effacement securisé" 35 passes (guttman)
__________________________________________________

Attention : ne pas toucher au PC pendant qu'il travaille !

▶ Nettoyage et Défragmentation de tes Disques

*Nettoyage :

Clic droit sur "poste de travail"(ordinateur pour vista) ==>"ouvrir" ==>clic droit sur le disque C ==>Propriétés ==>onglet "Général"
Cliques sur le bouton "nettoyage de disque", OK
tu le fais pour chacun de tes disques
________________________________________________

*Vérifications des erreurs :

Clic droit sur "poste de travail"(ordinateur pour vista) ==>"ouvrir" ==>clic droit sur le disque C ==>Propriétés ==>onglet "Outil"
"Vérifier maintenant", une boîte s'ouvre, cocher les cases :
-réparer automatiquement les erreurs...
-rechercher et tenter une récupération...

--->Démarrer, ok
Note : s'il te dis de redémarrer ton Pc pour le faire , tu redémarres et tu laisses faire, cela prend un peu de temps c'est normal
tu le fais pour chacun de tes disques
________________________________________________

ensuite toujours dans le même onglet tu choisis :

*Défragmentation :
"défragmenter maintenant", OK
une boîte s'ouvre, tu sélectionnes le disque à défragmenter, et tu cliques sur "analyser", puis après l'analyse, "défragmenter" . OK
tu le fais pour chacun de tes disques
_______________________________________________

Note : si tu as un utilitaire pour défragmenter , utilises le à la place

pour ce faire Defraggler est proposé
_________________________________________________

▶ Peux-tu vérifier ta Console Java ? :

et installer la nouvelle version si besoin est (dans ce cas désinstalle avant l'ancienne version).

voici pour desinstaller :

JavaRa

Décompresse le fichier sur le Bureau (Clic droit > Extraire tout).
* Double-clique (clic droit "en tant qu'administrateur" pour Vista) sur le répertoire JavaRa.
* Puis double-clique sur le fichier JavaRa.exe (le exe peut ne pas s'afficher).
* Choisis Français puis clique sur Select.
* Clique sur Recherche de mises à jour.
* Sélectionne Mettre à jour via jucheck.exe puis clique sur Rechercher.
* Autorise le processus à se connecter s'il le demande, clique sur Installer et suis les instructions d'installation qui prennent quelques minutes.
* L'installation est terminée, reviens à l'écran de JavaRa et clique sur Effacer les anciennes versions.
* Clique sur Oui pour confirmer. Laisse travailler et clique ensuite sur OK, puis une deuxième fois sur OK.
* Un rapport va s'ouvrir. Poste-le dans ta prochaine réponse.
* Ferme l'application.

Note : le rapport se trouve aussi dans C:\ sous le nom JavaRa.log.

_________________________________________________

▶ Mets à jour Adobe Reader si ce n'est pas le cas (désinstalle avant la version antérieure)
__________________________________________________

▶ Je te conseille si tu n en as pas , afin de mieux securiser ton pc , d'installer un parefeu :

Online armor ou KERIO ou JETICO ou ZONE ALARM (mettre que le parefeu gratuit) ou COMODO

https://www.commentcamarche.net/telecharger/securite/16545-online-armor-personal-firewall/
https://www.01net.com/telecharger/windows/Securite/firewall/fiches/39911.html
https://forum.pcastuces.com/sujet.asp?f=25&s=35606
https://www.clubic.com/telecharger-fiche11071-sunbelt-personal-firewall-ex-kerio.html
https://manuelsdaide.com/contact/
http://www.open-files.com/forum/index.php?showtopic=29277
https://www.commentcamarche.net/telecharger/securite/24863-zonealarm/
___________________________________________________

▶ Tu peux aussi vider ta corbeille,quoi que Ccleaner le fasse tout seul
_____________________________________________________

▶ Si nous avons utilisé MalwareByte's Anti-Malware , vide sa quarantaine :

* Lance le programme puis clique sur <Quarantaine>.
* Sélectionne tous les éléments puis clique sur <supprimer>.
* Quitte le programme.
______________________________________________________

▶ si tu as installé Antivir :

Configuration
________________________________________________________

▶ Idem pour ton antivirus : vide sa quarantaine si ce n'est pas déjà fait
______________________________________________________

▶ Désactive et réactive la restauration de système, pour cela : suis les instructions du lien :

Lien XP

Lien Vista

▶ Sitôt fait , recrées un point de restoration dit "sain" pour parer à quelques eventuels problêmes dans le futur
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~

Quelques conseils et recommandations pour l'avenir :

▶ Passe un coup de MalwareByte's Anti-Malware de temps en temps (1 fois par semaine , suivant l'utilisation que tu fais de ton PC.
▶ Utilise aussi tes autres logiciels de protection (scannes antivirus, antispywares...). N'oublie pas de faire les mises à jour avant de les utiliser.
* Pense aussi à faire une défragmentation de tes disques durs de temps en temps (garde suffisamment d'espace sur C:\ (1/3 de libre pour être à l'aise))
_____________

▶ Pour bien protéger ton PC :
[1 seul Antivirus] + [1 seul Pare feu] + [Un bon Antispyware] + [Mises à Jour récentes Windows et Logiciels de Protection] + [Utilisation de Firefox -ou autres- (Internet Explorer présente des failles de sécurité qui mettent longtemps avant d'être corrigées mais il faut absolument le conserver pour les mises à jour Windows et Windows live Messenger)]

Je te conseille d'installer cette extension pour Firefox pour securiser ton surf : WOT
Je te conseille d'installer cette extension pour Internet Explorer pour securiser ton surf : WOT

PS : En fait la meilleure des protections c'est toi même : ce que tu fais avec ton PC : où tu surfes, télécharges...ect....
Les virus utilisent les failles de ton PC pour infecter un système

▶ dans le souhait de vouloir desinstaller un antivirus au profit d'un autre , voici quelques liens :

Desinstaller Avast
Desinstaller BitDefender
Desinstaller Norton
Desinstaller Kaspersky
Desinstaller AVG

ou tout en un :

Désinstallation Antivirus , Parefeu , Antispyware
_____________

▶ Si tu as Vista n'oublie pas de réactiver le controle des comptes des utilisateurs(UAC)
___________

▶ Si tu as Spybot S&D et que nous avons desactive le "Tea-timer" tu peux le réactiver
___________

▶ si nous avons affiché les fichiers cachés , n'oublies pas de les remettre en attribut "caché"

▶ Clique sur le menu Demarrer /Panneau de configuration/Options des dossiers/ puis dans l'onglet Affichage
* - Décoche Afficher les fichiers et dossiers cachés
* - coche Masquer les extensions des fichiers dont le type est connu
* - coche Masquer les fichiers protégés du système d'exploitation (recommandé)

▶ clique sur Appliquer, puis OK.
____________

Voila,

Bonne lecture, à bientot , une fois tout ceci fait,

tu peux mettre le topic en resolu

Bonne continuation et surtout , prudence et bon surf :)

Rmat

Bonjour,
j'ai effectué toutes les dernières manipulations dont les rapports sont les suivants :

pour toolcleaner2 :

[ Rapport ToolsCleaner version 2.3.11 (par A.Rothstein & dj QUIOU) ]

--> Recherche:

C:\Combofix.txt: trouvé !
C:\UsbFix.txt: trouvé !
C:\Qoobox: trouvé !
C:\UsbFix: trouvé !
C:\Rsit: trouvé !
C:\Ad-remover: trouvé !
C:\Documents and Settings\Administrateur\Bureau\catchme.log: trouvé !
C:\Documents and Settings\All Users\Menu Démarrer\Programmes\Windows Trust\Registre\HijackThis.lnk: trouvé !
C:\Documents and Settings\HelpAssistant\Bureau\catchme.log: trouvé !
C:\Program Files\trend micro\HijackThis.exe: trouvé !
C:\Program Files\trend micro\hijackthis.log: trouvé !
C:\Qoobox\Quarantine\catchme.log: trouvé !
C:\UsbFix\UsbFix_Upload_Me\UsbFix.txt: trouvé !

Corbeille vidée!
Fichiers temporaires nettoyés !
---------------------------------
--> Suppression:
C:\Documents and Settings\All Users\Menu Démarrer\Programmes\Windows Trust\Registre\HijackThis.lnk: supprimé !
C:\Program Files\trend micro\HijackThis.exe: supprimé !
C:\Combofix.txt: supprimé !
C:\UsbFix.txt: supprimé !
C:\Documents and Settings\Administrateur\Bureau\catchme.log: supprimé !
C:\Documents and Settings\HelpAssistant\Bureau\catchme.log: supprimé !
C:\Program Files\trend micro\hijackthis.log: supprimé !
C:\Qoobox\Quarantine\catchme.log: supprimé !
C:\UsbFix\UsbFix_Upload_Me\UsbFix.txt: supprimé !
C:\Qoobox: supprimé !
C:\UsbFix: supprimé !
C:\Rsit: supprimé !
C:\Ad-remover: supprimé !

__________________________________________________________________________________________

pour JavaRa :

JavaRa 1.15 Removal Log.

Report follows after line.

------------------------------------

The JavaRa removal process was started on Sun Feb 07 21:54:20 2010

Found and removed: C:\Program Files\Java\jre1.6.0_04

Found and removed: C:\Program Files\Java\jre1.6.0_06

Found and removed: C:\Documents and Settings\Administrateur\Application Data\Sun\Java\jre1.6.0_04

Found and removed: C:\Documents and Settings\Administrateur\Application Data\Sun\Java\jre1.6.0_06

Found and removed: SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0004-ABCDEFFEDCBA}

Found and removed: SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0006-ABCDEFFEDCBA}

Found and removed: SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0004-ABCDEFFEDCBB}

Found and removed: SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0006-ABCDEFFEDCBB}

Found and removed: SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0004-ABCDEFFEDCBC}

Found and removed: SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0006-ABCDEFFEDCBC}

Found and removed: SOFTWARE\Classes\Installer\Features\8A0F842331866D117AB7000B0D610004

Found and removed: SOFTWARE\Classes\Installer\Features\8A0F842331866D117AB7000B0D610006

Found and removed: SOFTWARE\Classes\Installer\Products\8A0F842331866D117AB7000B0D610004

Found and removed: SOFTWARE\Classes\Installer\Products\8A0F842331866D117AB7000B0D610006

Found and removed: SOFTWARE\Classes\Installer\UpgradeCodes\7A0F842331866D117AB7000B0D610004

Found and removed: SOFTWARE\Classes\Installer\UpgradeCodes\7A0F842331866D117AB7000B0D610006

Found and removed: SOFTWARE\Classes\JavaPlugin.160_04

Found and removed: SOFTWARE\Classes\JavaPlugin.160_06

Found and removed: SOFTWARE\JavaSoft\Java Plug-in\1.6.0_04

Found and removed: SOFTWARE\JavaSoft\Java Plug-in\1.6.0_06

Found and removed: SOFTWARE\JavaSoft\Java Runtime Environment\1.6.0_04

Found and removed: SOFTWARE\JavaSoft\Java Runtime Environment\1.6.0_06

Found and removed: SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UpgradeCodes\7A0F842331866D117AB7000B0D610004

Found and removed: SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UpgradeCodes\7A0F842331866D117AB7000B0D610006

Found and removed: SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\ACBB9B2318A96D117A58000B0D610004

Found and removed: SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\ACBB9B2318A96D117A58000B0D610006

Found and removed: SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\8A0F842331866D117AB7000B0D610004

Found and removed: SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\8A0F842331866D117AB7000B0D610006

Found and removed: SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{3248F0A8-6813-11D6-A77B-00B0D0160040}

Found and removed: SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{3248F0A8-6813-11D6-A77B-00B0D0160060}

Found and removed: Software\Classes\JavaPlugin.160_04

Found and removed: Software\Classes\JavaPlugin.160_06

Found and removed: Software\Classes\CLSID\{CAFEEFAC-0013-0000-0003-ABCDEFFEDCBA}

Found and removed: Software\Classes\CLSID\{CAFEEFAC-0013-0000-0004-ABCDEFFEDCBA}

Found and removed: Software\Classes\CLSID\{CAFEEFAC-0013-0000-0005-ABCDEFFEDCBA}

Found and removed: SOFTWARE\JavaSoft\Java Web Start\1.0.1

Found and removed: SOFTWARE\JavaSoft\Java Web Start\1.0.1_02

Found and removed: SOFTWARE\JavaSoft\Java Web Start\1.0.1_03

Found and removed: SOFTWARE\JavaSoft\Java Web Start\1.0.1_04

Found and removed: SOFTWARE\JavaSoft\Java Web Start\1.2

Found and removed: SOFTWARE\JavaSoft\Java Web Start\1.2.0_01

Found and removed: SOFTWARE\JavaSoft\Java Web Start\1.6.0_04

Found and removed: SOFTWARE\JavaSoft\Java Web Start\1.6.0_06

Found and removed: Software\JavaSoft\Java2D\1.6.0_04

Found and removed: Software\JavaSoft\Java2D\1.6.0_06

Found and removed: Software\JavaSoft\Java Runtime Environment\1.6.0_06

Found and removed: Software\Classes\CLSID\{CAFEEFAC-0013-0001-0000-ABCDEFFEDCBA}

Found and removed: Software\Classes\CLSID\{CAFEEFAC-0013-0001-0001-ABCDEFFEDCBA}

Found and removed: Software\Classes\CLSID\{CAFEEFAC-0013-0001-0001-ABCDEFFEDCBB}

Found and removed: Software\Classes\CLSID\{CAFEEFAC-0013-0001-0002-ABCDEFFEDCBA}

Found and removed: Software\Classes\CLSID\{CAFEEFAC-0013-0001-0002-ABCDEFFEDCBB}

Found and removed: Software\Classes\CLSID\{CAFEEFAC-0013-0001-0003-ABCDEFFEDCBA}

Found and removed: Software\Classes\CLSID\{CAFEEFAC-0013-0001-0003-ABCDEFFEDCBB}

Found and removed: Software\Classes\CLSID\{CAFEEFAC-0013-0001-0004-ABCDEFFEDCBA}

Found and removed: Software\Classes\CLSID\{CAFEEFAC-0013-0001-0004-ABCDEFFEDCBB}

Found and removed: Software\Classes\CLSID\{CAFEEFAC-0013-0001-0005-ABCDEFFEDCBA}

Found and removed: Software\Classes\CLSID\{CAFEEFAC-0013-0001-0005-ABCDEFFEDCBB}

Found and removed: Software\Classes\CLSID\{CAFEEFAC-0013-0001-0006-ABCDEFFEDCBA}

Found and removed: Software\Classes\CLSID\{CAFEEFAC-0013-0001-0006-ABCDEFFEDCBB}

Found and removed: Software\Classes\CLSID\{CAFEEFAC-0013-0001-0007-ABCDEFFEDCBA}

Found and removed: Software\Classes\CLSID\{CAFEEFAC-0013-0001-0007-ABCDEFFEDCBB}

Found and removed: Software\Classes\CLSID\{CAFEEFAC-0013-0001-0008-ABCDEFFEDCBA}

Found and removed: Software\Classes\CLSID\{CAFEEFAC-0013-0001-0008-ABCDEFFEDCBB}

Found and removed: Software\Classes\CLSID\{CAFEEFAC-0013-0001-0009-ABCDEFFEDCBA}

Found and removed: Software\Classes\CLSID\{CAFEEFAC-0013-0001-0009-ABCDEFFEDCBB}

Found and removed: Software\Classes\CLSID\{CAFEEFAC-0013-0001-0010-ABCDEFFEDCBA}

Found and removed: Software\Classes\CLSID\{CAFEEFAC-0013-0001-0010-ABCDEFFEDCBB}

Found and removed: Software\Classes\CLSID\{CAFEEFAC-0013-0001-0011-ABCDEFFEDCBA}

Found and removed: Software\Classes\CLSID\{CAFEEFAC-0013-0001-0011-ABCDEFFEDCBB}

Found and removed: Software\Classes\CLSID\{CAFEEFAC-0013-0001-0012-ABCDEFFEDCBA}

Found and removed: Software\Classes\CLSID\{CAFEEFAC-0013-0001-0012-ABCDEFFEDCBB}

Found and removed: Software\Classes\CLSID\{CAFEEFAC-0013-0001-0013-ABCDEFFEDCBA}

Found and removed: Software\Classes\CLSID\{CAFEEFAC-0013-0001-0013-ABCDEFFEDCBB}

Found and removed: Software\Classes\CLSID\{CAFEEFAC-0013-0001-0014-ABCDEFFEDCBA}

Found and removed: Software\Classes\CLSID\{CAFEEFAC-0013-0001-0014-ABCDEFFEDCBB}

Found and removed: Software\Classes\CLSID\{CAFEEFAC-0013-0001-0015-ABCDEFFEDCBA}

Found and removed: Software\Classes\CLSID\{CAFEEFAC-0013-0001-0015-ABCDEFFEDCBB}

Found and removed: Software\Classes\CLSID\{CAFEEFAC-0013-0001-0016-ABCDEFFEDCBA}

Found and removed: Software\Classes\CLSID\{CAFEEFAC-0013-0001-0016-ABCDEFFEDCBB}

Found and removed: Software\Classes\CLSID\{CAFEEFAC-0013-0001-0017-ABCDEFFEDCBA}

Found and removed: Software\Classes\CLSID\{CAFEEFAC-0013-0001-0017-ABCDEFFEDCBB}

Found and removed: Software\Classes\CLSID\{CAFEEFAC-0013-0001-0018-ABCDEFFEDCBA}

Found and removed: Software\Classes\CLSID\{CAFEEFAC-0013-0001-0018-ABCDEFFEDCBB}

Found and removed: Software\Classes\CLSID\{CAFEEFAC-0013-0001-0019-ABCDEFFEDCBA}

Found and removed: Software\Classes\CLSID\{CAFEEFAC-0013-0001-0019-ABCDEFFEDCBB}

Found and removed: Software\Classes\CLSID\{CAFEEFAC-0013-0001-0020-ABCDEFFEDCBA}

Found and removed: Software\Classes\CLSID\{CAFEEFAC-0013-0001-0020-ABCDEFFEDCBB}

Found and removed: Software\Classes\CLSID\{CAFEEFAC-0013-0001-0021-ABCDEFFEDCBA}

Found and removed: Software\Classes\CLSID\{CAFEEFAC-0013-0001-0021-ABCDEFFEDCBB}

Found and removed: Software\Classes\CLSID\{CAFEEFAC-0013-0001-0022-ABCDEFFEDCBA}

Found and removed: Software\Classes\CLSID\{CAFEEFAC-0013-0001-0022-ABCDEFFEDCBB}

Found and removed: Software\Classes\CLSID\{CAFEEFAC-0013-0001-0023-ABCDEFFEDCBA}

Found and removed: Software\Classes\CLSID\{CAFEEFAC-0013-0001-0023-ABCDEFFEDCBB}

Found and removed: Software\Classes\CLSID\{CAFEEFAC-0013-0001-0024-ABCDEFFEDCBA}

Found and removed: Software\Classes\CLSID\{CAFEEFAC-0013-0001-0024-ABCDEFFEDCBB}

Found and removed: Software\Classes\CLSID\{CAFEEFAC-0013-0001-0025-ABCDEFFEDCBA}

Found and removed: Software\Classes\CLSID\{CAFEEFAC-0013-0001-0025-ABCDEFFEDCBB}

Found and removed: Software\Classes\CLSID\{CAFEEFAC-0013-0001-0026-ABCDEFFEDCBA}

Found and removed: Software\Classes\CLSID\{CAFEEFAC-0013-0001-0026-ABCDEFFEDCBB}

Found and removed: Software\Classes\CLSID\{CAFEEFAC-0013-0001-0027-ABCDEFFEDCBA}

Found and removed: Software\Classes\CLSID\{CAFEEFAC-0013-0001-0027-ABCDEFFEDCBB}

Found and removed: Software\Classes\CLSID\{CAFEEFAC-0013-0001-0028-ABCDEFFEDCBA}

Found and removed: Software\Classes\CLSID\{CAFEEFAC-0013-0001-0028-ABCDEFFEDCBB}

Found and removed: Software\Classes\CLSID\{CAFEEFAC-0013-0001-0029-ABCDEFFEDCBA}

Found and removed: Software\Classes\CLSID\{CAFEEFAC-0013-0001-0029-ABCDEFFEDCBB}

Found and removed: Software\Classes\CLSID\{CAFEEFAC-0013-0001-0030-ABCDEFFEDCBA}

Found and removed: Software\Classes\CLSID\{CAFEEFAC-0013-0001-0030-ABCDEFFEDCBB}

Found and removed: SOFTWARE\Microsoft\Active Setup\Installed Components\{08B0E5C0-4FCB-11CF-AAA5-00401C608500}

Found and removed: SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\Folders\\C:\Program Files\Java\jre1.6.0_04\

Found and removed: SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\Folders\\C:\Program Files\Java\jre1.6.0_06\

Found and removed: SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\Folders\\C:\Program Files\Java\jre1.6.0_04\bin\

Found and removed: SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\Folders\\C:\Program Files\Java\jre1.6.0_06\bin\

------------------------------------

Finished reporting.

__________________________________________________________________________________________

et pour les installation des mises à jour de windows ca me fait la même chose qu'avant c'est dire que j'ai des mises à jour qui n'ont pas pu être insallées qui sont les suivantes :

Notification Windows Genuine Advantage (KB905474)
Mise à jour pour Windows XP (KB955759)
Mise à jour pour Windows XP (KB976098)
Mise à jour pour Windows XP (KB970430)
Mise à jour de sécurité pour Windows XP (KB958869)
Mise à jour de sécurité pour Microsoft .NET Framework version 2.0 Service Pack 2 pour Windows 2000, Windows Server 2003 et Windows XP (KB974417)
Mise à jour de sécurité pour Windows XP (KB960859)
Mise à jour de sécurité cumulative pour Internet Explorer 8 pour Windows XP (KB978207)

que dois-je faire?

Rmat > Rmat

et oui,
j'ai oublié de vous demander est ce que je peut supprimer les logiciels qui on servir à la desinfection?
(comme list kill'em, otl, javara ainsi que les fichiers .zip et les différents rapports)

Réponse 16 / 18

Utilisateur anonyme

telecharge :

http://djlizard.net/software/Dial-a-fix-v0.60.0.24.zip

clic droit / extraire ......

rentre dans le dossier créé , puis clic sur la roue dentée bleue

configure comme ceci :

http://www.cijoint.fr/cjlink.php?file=cj200911/cij0k6B9OU.jpg

puis clique sur "GO"

et vois si tes mises a jour s installent !

Rmat

Bonjour,
j'ai fait ce que vous m'avez dit,
puis j'ai relancé les mises à jours et il y a toujours echec lors de l'installation
(j'ai 17 mise à jour à installer)
est ce normal?

Réponse 17 / 18

Utilisateur anonyme

salut non

quel modele de "windows installer" as-tu ?

Rmat

Salut,
ba à la c'est un windows trust 2.5
(d'ou le fait qu'il n'y avait pas le point d'interrogation bleu dans le menu démarrer)
donc c'est un windows XP professionnel, version 2002, SP3, v.5857 modifié
sur lequel j'ai fais quelques mise à jour qui ont fonctionné
donc maintenant quand j'allume mon PC ce n'est plus marque "windows trust" mais "windows XP"

Réponse 18 / 18

Utilisateur anonyme

salut

illegitime il me semble .....

Discussions similaires

Impossible d'afficher le rapport de tableau croisé dynamique sur un rapport

écrire un rapport de travail

impossible d'afficher le tableau dynamique sur un rapport existant

Problém affichage du tableau croisé dynamique

Theme de rapport de stage option comptabilité

Rapport RSIT

18 réponses

Votre réponse

Discussions similaires

Newsletters