Sujet Précédent Sujet Suivant

Probleme winupgro

Résolu/Fermé
toychris Messages postés 10 Date d'inscription mardi 21 septembre 2010 Statut Membre Dernière intervention 25 mai 2012 - 22 sept. 2010 à 12:19
 Utilisateur anonyme - 22 sept. 2010 à 22:43
Bonjour,



Suite a des problemes de conection :

nettoyage avec ccleaner : ok

avast scan au demarage : pas de virus
bitdefender en ligne : pas de virus
malwarebytes a jour mode sans echec : pas infection
findykill :################## | Eléments infectieux |

C:\Windows\prefetch\WINUPGRO.EXE-3A2FD0C8.pf

################## | Registre |

[HKCU\Software\Classes\ed2k]
[HKCR\ed2k]
[HKCU\Software\Microsoft\Windows\CurrentVersion\Run] "eMuleAutoStart"
[HKU\S-1-5-21-659606825-3296223450-992134187-1000\Software\Microsoft\Windows\CurrentVersion\Run] "eMuleAutoStart"

supression du prefecth sauf layout.init
netoyage avec findykill : toujours winupgro
combofix => toujours winupgro
List-kill'em = toujours winupgro

eliblaga 14.06 impossible a telecharger : il demande un code par mobile et je n'est pas de portable.

Un specialiste charitable pourait peut etre m'aider ?
ci-joint rapport hijackthis

Merci d'avance : je reste en ligne

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 11:41:23, on 22/09/2010
Platform: Windows 7 (WinNT 6.00.3504)
MSIE: Internet Explorer v8.00 (8.00.7600.16385)
Boot mode: Normal

Running processes:
C:\Windows\system32\taskhost.exe
C:\Windows\system32\Dwm.exe
C:\Windows\Explorer.EXE
C:\Program Files\eMule\emule.exe
C:\Windows\System32\mobsync.exe
C:\Windows\system32\wuauclt.exe
C:\Users\Base\Desktop\HiJackThis.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.bpbfc.banquepopulaire.fr/portailinternet/Pages/default.aspx
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = https://www.msn.com/fr-fr/?ocid=iehp
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.msn.com/fr-fr/?ocid=iehp
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyServer = 173.193.219.187:3128
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
R3 - URLSearchHook: Search Class - {08C06D61-F1F3-4799-86F8-BE1A89362C85} - C:\Program Files\Orange\Connexion Internet Orange\SearchURLHook\SearchPageURL.dll
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: RealPlayer Download and Record Plugin for Internet Explorer - {3049C3E9-B461-4BC5-8870-4C09146192CA} - C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\IE\rpbrowserrecordplugin.dll
O2 - BHO: Search Helper - {6EBF7485-159F-4bff-A14F-B9E3AAC4465B} - C:\Program Files\Microsoft\Search Enhancement Pack\Search Helper\SEPsearchhelperie.dll
O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live ID - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll
O2 - BHO: Windows Live Toolbar Helper - {E15A8DC0-8516-42A1-81EA-DC94EC1ACF10} - C:\Program Files\Windows Live\Toolbar\wltcore.dll
O3 - Toolbar: DAEMON Tools Toolbar - {32099AAC-C132-4136-9E9A-4E364A424E17} - C:\Program Files\DAEMON Tools Toolbar\DTToolbar.dll
O3 - Toolbar: &Windows Live Toolbar - {21FA44EF-376D-4D53-9B0F-8A89D3229068} - C:\Program Files\Windows Live\Toolbar\wltcore.dll
O4 - HKCU\..\Run: [eMuleAutoStart] C:\Program Files\eMule\emule.exe -AutoStart
O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office12\EXCEL.EXE/3000
O8 - Extra context menu item: Envoyer au périphérique &Bluetooth... - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm
O8 - Extra context menu item: Envoyer l'&image au périphérique Bluetooth... - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie_ctx.htm
O9 - Extra button: Ajout Direct - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra 'Tools' menuitem: &Ajout Direct dans Windows Live Writer - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra button: @C:\Windows\WindowsMobile\INetRepl.dll,-222 - {2EAF5BB1-070F-11D3-9307-00C04FAE2D4F} - C:\Windows\WindowsMobile\INetRepl.dll
O9 - Extra button: (no name) - {2EAF5BB2-070F-11D3-9307-00C04FAE2D4F} - C:\Windows\WindowsMobile\INetRepl.dll
O9 - Extra 'Tools' menuitem: @C:\Windows\WindowsMobile\INetRepl.dll,-223 - {2EAF5BB2-070F-11D3-9307-00C04FAE2D4F} - C:\Windows\WindowsMobile\INetRepl.dll
O9 - Extra button: (no name) - {85d1f590-48f4-11d9-9669-0800200c9a66} - C:\Windows\bdoscandel.exe
O9 - Extra 'Tools' menuitem: Uninstall BitDefender Online Scanner - {85d1f590-48f4-11d9-9669-0800200c9a66} - C:\Windows\bdoscandel.exe
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\Office12\REFIEBAR.DLL
O9 - Extra button: @C:\Program Files\WIDCOMM\Bluetooth Software\btrez.dll,-4015 - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm
O9 - Extra 'Tools' menuitem: @C:\Program Files\WIDCOMM\Bluetooth Software\btrez.dll,-12650 - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm
O10 - Unknown file in Winsock LSP: c:\program files\common files\microsoft shared\windows live\wlidnsp.dll
O10 - Unknown file in Winsock LSP: c:\program files\common files\microsoft shared\windows live\wlidnsp.dll
O15 - Trusted Zone: http://download.bitdefender.com
O15 - Trusted Zone: https://www.bitdefender.fr/
O15 - Trusted Zone: https://www.bitdefender.fr/
O15 - Trusted Zone: http://www.inoculer.com
O16 - DPF: {5D86DDB5-BDF9-441B-9E9E-D4730F4EE499} (BDSCANONLINE Control) - http://download.bitdefender.com/resources/scanner/sources/fr/scan8/oscan8.cab
O16 - DPF: {80DD2229-B8E4-4C77-B72F-F22972D723EA} (AvxScanOnline Control) - http://www.inoculer.com/antivirus/Msie/bitdefender.cab
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL
O22 - SharedTaskScheduler: Windows DreamScene - {E31004D1-A431-41B8-826F-E902F9D95C81} - C:\Windows\System32\DreamScene.dll
O23 - Service: @%SystemRoot%\system32\aelupsvc.dll,-1 (AeLookupSvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: Akamai NetSession Interface (Akamai) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe
O23 - Service: @%systemroot%\system32\appidsvc.dll,-100 (AppIDSvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%systemroot%\system32\appinfo.dll,-100 (Appinfo) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @appmgmts.dll,-3250 (AppMgmt) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\audiosrv.dll,-204 (AudioEndpointBuilder) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\audiosrv.dll,-200 (Audiosrv) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\AxInstSV.dll,-103 (AxInstSV) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\bdesvc.dll,-100 (BDESVC) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\bfe.dll,-1001 (BFE) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\qmgr.dll,-1000 (BITS) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%systemroot%\system32\browser.dll,-100 (Browser) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\System32\bthserv.dll,-101 (bthserv) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: Bluetooth Service (btwdins) - Broadcom Corporation. - C:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe
O23 - Service: @%SystemRoot%\System32\certprop.dll,-11 (CertPropSvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\cryptsvc.dll,-1001 (CryptSvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%systemroot%\system32\cscsvc.dll,-200 (CscService) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @oleres.dll,-5012 (DcomLaunch) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\defragsvc.dll,-101 (defragsvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\dhcpcore.dll,-100 (Dhcp) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\System32\dnsapi.dll,-101 (Dnscache) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%systemroot%\system32\dot3svc.dll,-1102 (dot3svc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%systemroot%\system32\dps.dll,-500 (DPS) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%systemroot%\system32\eapsvc.dll,-1 (EapHost) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\ehome\ehrecvr.exe,-101 (ehRecvr) - Unknown owner - C:\Windows\ehome\ehRecvr.exe
O23 - Service: @%SystemRoot%\ehome\ehsched.exe,-101 (ehSched) - Unknown owner - C:\Windows\ehome\ehsched.exe
O23 - Service: @%SystemRoot%\system32\wevtsvc.dll,-200 (eventlog) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @comres.dll,-2450 (EventSystem) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%systemroot%\system32\fdPHost.dll,-100 (fdPHost) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%systemroot%\system32\fdrespub.dll,-100 (FDResPub) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: FLEXnet Licensing Service - Acresso Software Inc. - C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
O23 - Service: @%systemroot%\system32\FntCache.dll,-100 (FontCache) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: France Telecom Routing Table Service (FTRTSVC) - Unknown owner - C:\PROGRA~1\COMMON~1\France Telecom\Shared Modules\FTRTSVC\0\FTRTSVC.exe
O23 - Service: @gpapi.dll,-112 (gpsvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: Service Google Update (gupdate) (gupdate) - Unknown owner - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: LogMeIn Hamachi 2.0 Tunneling Engine (Hamachi2Svc) - LogMeIn Inc. - C:\Program Files\LogMeIn Hamachi\hamachi-2.exe
O23 - Service: @%SystemRoot%\System32\hidserv.dll,-101 (hidserv) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\kmsvc.dll,-6 (hkmsvc) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\System32\ListSvc.dll,-100 (HomeGroupListener) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\System32\provsvc.dll,-100 (HomeGroupProvider) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\1150\Intel 32\IDriverT.exe
O23 - Service: @%SystemRoot%\system32\ikeext.dll,-501 (IKEEXT) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%systemroot%\system32\IPBusEnum.dll,-102 (IPBusEnum) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\iphlpsvc.dll,-500 (iphlpsvc) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @comres.dll,-2946 (KtmRm) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%systemroot%\system32\srvsvc.dll,-100 (LanmanServer) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%systemroot%\system32\wkssvc.dll,-100 (LanmanWorkstation) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\lltdres.dll,-1 (lltdsvc) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\lmhsvc.dll,-101 (lmhosts) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: Process Monitor (LVPrcSrv) - Logitech Inc. - C:\Program Files\Common Files\LogiShrd\LVMVFM\LVPrcSrv.exe
O23 - Service: Ma-Config Service (maconfservice) - Unknown owner - C:\Program Files\ma-config.com\maconfservice.exe
O23 - Service: MBAMService - Malwarebytes Corporation - C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe
O23 - Service: @%systemroot%\system32\mmcss.dll,-100 (MMCSS) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\FirewallAPI.dll,-23090 (MpsSvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe
O23 - Service: @%SystemRoot%\system32\iscsidsc.dll,-5000 (MSiSCSI) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\msimsg.dll,-27 (msiserver) - Unknown owner - C:\Windows\system32\msiexec.exe
O23 - Service: @%SystemRoot%\system32\qagentrt.dll,-6 (napagent) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\netman.dll,-109 (Netman) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\netprofm.dll,-202 (netprofm) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\System32\nlasvc.dll,-1 (NlaSvc) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\nsisvc.dll,-200 (nsi) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: NVIDIA Display Driver Service (nvsvc) - NVIDIA Corporation - C:\Windows\system32\nvvsvc.exe
O23 - Service: O&O Defrag - O&O Software GmbH - C:\Program Files\OO Software\Defrag\oodag.exe
O23 - Service: @%SystemRoot%\system32\pnrpsvc.dll,-8004 (p2pimsvc) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\p2psvc.dll,-8006 (p2psvc) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\pcasvc.dll,-1 (PcaSvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\peerdistsvc.dll,-9000 (PeerDistSvc) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%systemroot%\system32\pla.dll,-500 (pla) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\umpnpmgr.dll,-100 (PlugPlay) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\pnrpauto.dll,-8002 (PNRPAutoReg) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\pnrpsvc.dll,-8000 (PNRPsvc) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\System32\polstore.dll,-5010 (PolicyAgent) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\umpo.dll,-100 (Power) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%systemroot%\system32\profsvc.dll,-300 (ProfSvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\qwave.dll,-1 (QWAVE) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%windir%\WindowsMobile\rapimgr.dll,-104 (RapiMgr) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%Systemroot%\system32\rasauto.dll,-200 (RasAuto) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%Systemroot%\system32\rasmans.dll,-200 (RasMan) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: Remote Packet Capture Protocol v.0 (experimental) (rpcapd) - CACE Technologies - C:\Program Files\WinPcap\rpcapd.exe
O23 - Service: @%windir%\system32\RpcEpMap.dll,-1001 (RpcEptMapper) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe
O23 - Service: @oleres.dll,-5010 (RpcSs) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\System32\SCardSvr.dll,-1 (SCardSvr) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\schedsvc.dll,-100 (Schedule) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\System32\certprop.dll,-13 (SCPolicySvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\sdrsvc.dll,-107 (SDRSVC) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\seclogon.dll,-7001 (seclogon) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\Sens.dll,-200 (SENS) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\System32\sensrsvc.dll,-1000 (SensrSvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\System32\SessEnv.dll,-1026 (SessionEnv) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\ipnathlp.dll,-106 (SharedAccess) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\System32\shsvcs.dll,-12288 (ShellHWDetection) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe
O23 - Service: @%SystemRoot%\system32\sppuinotify.dll,-103 (sppuinotify) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%systemroot%\system32\ssdpsrv.dll,-100 (SSDPSRV) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\sstpsvc.dll,-200 (SstpSvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: NVIDIA Stereoscopic 3D Driver Service (Stereo Service) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
O23 - Service: @%SystemRoot%\system32\wiaservc.dll,-9 (StiSvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: SwitchBoard - Adobe Systems Incorporated - C:\Program Files\Common Files\Adobe\SwitchBoard\SwitchBoard.exe
O23 - Service: @%SystemRoot%\System32\swprv.dll,-103 (swprv) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\sysmain.dll,-1000 (SysMain) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\TabSvc.dll,-100 (TabletInputService) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\tapisrv.dll,-10100 (TapiSrv) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\tbssvc.dll,-100 (TBS) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\System32\termsrv.dll,-268 (TermService) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\System32\themeservice.dll,-8192 (Themes) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%systemroot%\system32\mmcss.dll,-102 (THREADORDER) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\trkwks.dll,-1 (TrkWks) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\servicing\TrustedInstaller.exe,-100 (TrustedInstaller) - Unknown owner - C:\Windows\servicing\TrustedInstaller.exe
O23 - Service: @C:\Program Files\TuneUp Utilities 2010\TuneUpDefragService.exe,-1 (TuneUp.Defrag) - TuneUp Software - C:\Program Files\TuneUp Utilities 2010\TuneUpDefragService.exe
O23 - Service: TuneUp Utilities Service (TuneUp.UtilitiesSvc) - TuneUp Software - C:\Program Files\TuneUp Utilities 2010\TuneUpUtilitiesService32.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe
O23 - Service: @%SystemRoot%\system32\umrdp.dll,-1000 (UmRdpService) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%systemroot%\system32\upnphost.dll,-213 (upnphost) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\dwm.exe,-2000 (UxSms) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\System32\uxtuneup.dll,-4096 (UxTuneUp) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe
O23 - Service: @%SystemRoot%\system32\w32time.dll,-200 (W32Time) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe
O23 - Service: @%systemroot%\system32\wbiosrvc.dll,-100 (WbioSrvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%windir%\WindowsMobile\wcescomm.dll,-40079 (WcesComm) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\wcncsvc.dll,-3 (wcncsvc) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\WcsPlugInService.dll,-200 (WcsPlugInService) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%systemroot%\system32\wdi.dll,-502 (WdiServiceHost) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%systemroot%\system32\wdi.dll,-500 (WdiSystemHost) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%systemroot%\system32\webclnt.dll,-100 (WebClient) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\wecsvc.dll,-200 (Wecsvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\System32\wercplsupport.dll,-101 (wercplsupport) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\System32\wersvc.dll,-100 (WerSvc) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%ProgramFiles%\Windows Defender\MsMpRes.dll,-103 (WinDefend) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\winhttp.dll,-100 (WinHttpAutoProxySvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%Systemroot%\system32\wbem\wmisvc.dll,-205 (Winmgmt) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%Systemroot%\system32\wsmsvc.dll,-101 (WinRM) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\System32\wlansvc.dll,-257 (Wlansvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files\Windows Media Player\wmpnetwk.exe
O23 - Service: @%SystemRoot%\system32\wpcsvc.dll,-100 (WPCSvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\wpdbusenum.dll,-100 (WPDBusEnum) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\System32\wscsvc.dll,-200 (wscsvc) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%systemroot%\system32\wuaueng.dll,-105 (wuauserv) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\wudfsvc.dll,-1000 (wudfsvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\System32\wwansvc.dll,-257 (WwanSvc) - Unknown owner - C:\Windows\system32\svchost.exe

15 réponses

Réponse 1 / 15
Utilisateur anonyme
Modifié par gen-hackman le 22/09/2010 à 12:22
salut fournis ton rrapport de list_kill'em stp ainsi que le nettoyage de findykill
¤¤¤¤¤¤?G3?-?@¢??@?(TM)©®?¤¤¤¤¤¤
0
Réponse 2 / 15
toychris Messages postés 10 Date d'inscription mardi 21 septembre 2010 Statut Membre Dernière intervention 25 mai 2012
22 sept. 2010 à 12:23
ok
0
Réponse 3 / 15
toychris Messages postés 10 Date d'inscription mardi 21 septembre 2010 Statut Membre Dernière intervention 25 mai 2012
22 sept. 2010 à 12:24
############################## | FindyKill V5.050 |

# User : Base (Utilisateurs) # BASE-PC
# Update on 03/09/2010 by El Desaparecido
# Start at: 12:23:43 | 22/09/2010
# Website : http://pagesperso-orange.fr/NosTools/index.html
# Contact : FindyKill.Contact@gmail.com

# Intel(R) Core(TM)2 Quad CPU Q6600 @ 2.40GHz
# Microsoft Windows 7 Édition Intégrale (6.1.7600 32-bit) #
# Internet Explorer 8.0.7600.16385
# Windows Firewall Status : Disabled

# A:\ # Lecteur de disquettes 3 ½ pouces
# C:\ # Disque fixe local # 76,33 Go (13,01 Go free) [Window 7] # NTFS
# G:\ # Disque CD-ROM
# I:\ # Disque fixe local # 72,72 Go (26,25 Go free) [Telechargement] # NTFS

################## | Eléments infectieux |

C:\Windows\prefetch\WINUPGRO.EXE-3A2FD0C8.pf

################## | Registre |

[HKCU\Software\Classes\ed2k]
[HKCR\ed2k]
[HKCU\Software\Microsoft\Windows\CurrentVersion\Run] "eMuleAutoStart"
[HKU\S-1-5-21-659606825-3296223450-992134187-1000\Software\Microsoft\Windows\CurrentVersion\Run] "eMuleAutoStart"

################## | Etat |

# Affichage des fichiers cachés : OK

# Mode sans echec : OK

# Uac : OK

# Ndisuio -> Start = 3 ( Good = 3 | Bad = 4 )
# EapHost -> Start = 3 ( Good = 2 | Bad = 4 )
# Wlansvc -> Start = 2 ( Good = 2 | Bad = 4 )
# SharedAccess -> Start = 2 ( Good = 2 | Bad = 4 )
# windefend -> Start = 2 ( Good = 2 | Bad = 4 )
# wuauserv -> Start = 2 ( Good = 2 | Bad = 4 )
# wscsvc -> Start = 2 ( Good = 2 | Bad = 4 )

################## | ! Fin du rapport # FindyKill V5.050 ! |
0
Réponse 4 / 15
Utilisateur anonyme
22 sept. 2010 à 12:25
non ca c est le rapport de recherche de findykill !
0

Vous n’avez pas trouvé la réponse que vous recherchez ?

Posez votre question
Réponse 5 / 15
toychris Messages postés 10 Date d'inscription mardi 21 septembre 2010 Statut Membre Dernière intervention 25 mai 2012
22 sept. 2010 à 12:27
ok , je refais et merci de ton interet.
0
Réponse 6 / 15
toychris Messages postés 10 Date d'inscription mardi 21 septembre 2010 Statut Membre Dernière intervention 25 mai 2012
22 sept. 2010 à 13:16
############################## | FindyKill V5.050 |

# User : Base (Utilisateurs) # BASE-PC
# Update on 03/09/2010 by El Desaparecido
# Start at: 12:48:43 | 22/09/2010
# Website : http://pagesperso-orange.fr/NosTools/index.html
# Contact : FindyKill.Contact@gmail.com

# Intel(R) Core(TM)2 Quad CPU Q6600 @ 2.40GHz
# Microsoft Windows 7 Édition Intégrale (6.1.7600 32-bit) #
# Internet Explorer 8.0.7600.16385
# Windows Firewall Status : Disabled

# A:\ # Lecteur de disquettes 3 ½ pouces
# C:\ # Disque fixe local # 76,33 Go (13 Go free) [Window 7] # NTFS
# G:\ # Disque CD-ROM
# I:\ # Disque fixe local # 72,72 Go (26,25 Go free) [Telechargement] # NTFS
# K:\ # Disque amovible # 979,97 Mo (948,15 Mo free) # FAT32

################## | Eléments infectieux |

Supprimé ! C:\Windows\prefetch\WINUPGRO.EXE-3A2FD0C8.pf

################## | CRC32 ... |


################## | Registre |

Supprimé ! [HKCU\Software\Classes\ed2k]
Supprimé ! [HKCR\ed2k]
Supprimé ! [HKCU\Software\Microsoft\Windows\CurrentVersion\Run] "eMuleAutoStart"

################## | Etat |

# Mode sans echec : OK


# Affichage des fichiers cachés : OK

# Uac : OK

# Ndisuio -> Start = 3 ( Good = 3 | Bad = 4 )
# EapHost -> Start = 2 ( Good = 2 | Bad = 4 )
# Wlansvc -> Start = 2 ( Good = 2 | Bad = 4 )
# SharedAccess -> Start = 2 ( Good = 2 | Bad = 4 )
# windefend -> Start = 2 ( Good = 2 | Bad = 4 )
# wuauserv -> Start = 2 ( Good = 2 | Bad = 4 )
# wscsvc -> Start = 2 ( Good = 2 | Bad = 4 )

################## | Fichiers corrompus |

... OK !

################## | Upload |

Veuillez envoyer le fichier : C:\FindyKill_Upload_Me_Base-PC.zip : https://www.ionos.fr/?affiliate_id=77097
Merci pour votre contribution .

################## | ! Fin du rapport # FindyKill V5.050 ! |

voila
0
Réponse 7 / 15
Utilisateur anonyme
22 sept. 2010 à 13:40
bien j aimerais lire le rapport de list_kill'em egalement comme demandé plus haut

desinstalle findykill
0
Réponse 8 / 15
toychris Messages postés 10 Date d'inscription mardi 21 septembre 2010 Statut Membre Dernière intervention 25 mai 2012
22 sept. 2010 à 13:59
j'ai deja lancé list_kill sans desinstaller findykill
c'est grave ?
il en est a 85% : j'arrete ?
merci
0
Réponse 9 / 15
Utilisateur anonyme
22 sept. 2010 à 14:00
non tu peux le desinstaller ensuite laisse finir
0
Réponse 10 / 15
toychris Messages postés 10 Date d'inscription mardi 21 septembre 2010 Statut Membre Dernière intervention 25 mai 2012
22 sept. 2010 à 14:15
Je viens de remarquer que vous etes l'auteur de ce programme...

Felicitation !


¤¤¤¤¤¤¤¤¤¤ Kill'em by g3n-h@ckm@n 2.1.0.7 ¤¤¤¤¤¤¤¤¤¤


¤¤¤¤¤¤¤¤¤¤ Files/folders :

Quarantined & Deleted !! : C:\ProgramData\mtbjfghn.xbe
Quarantined & Deleted !! : C:\Program Files\DAEMON Tools Toolbar
Quarantined & Deleted !! : C:\Program Files\WinPCap

Quarantined & Deleted !! : C:\Users\Base\AppData\Local\GDIPFONTCACHEV1.DAT
Quarantined & Deleted !! : C:\Users\Base\LOCAL Settings\Temp\~gu-ver.dat
Quarantined & Deleted !! : C:\Users\Base\LOCAL Settings\Temp\catchme.dll
Deleted !! : C:\$Recycle.bin\S-1-5-21-659606825-3296223450-992134187-1000\$I0108FM.pf
Deleted !! : C:\$Recycle.bin\S-1-5-21-659606825-3296223450-992134187-1000\$I07RZCB.pf
Deleted !! : C:\$Recycle.bin\S-1-5-21-659606825-3296223450-992134187-1000\$I0ZGKPZ.pf
Deleted !! : C:\$Recycle.bin\S-1-5-21-659606825-3296223450-992134187-1000\$I12ACL9.pf
Deleted !! : C:\$Recycle.bin\S-1-5-21-659606825-3296223450-992134187-1000\$I1BUA73.pf
Deleted !! : C:\$Recycle.bin\S-1-5-21-659606825-3296223450-992134187-1000\$I1E7F06.pf
Deleted !! : C:\$Recycle.bin\S-1-5-21-659606825-3296223450-992134187-1000\$I1G6MG9.pf
Deleted !! : C:\$Recycle.bin\S-1-5-21-659606825-3296223450-992134187-1000\$I20PUEO.pf
Deleted !! : C:\$Recycle.bin\S-1-5-21-659606825-3296223450-992134187-1000\$I21W27N
Deleted !! : C:\$Recycle.bin\S-1-5-21-659606825-3296223450-992134187-1000\$I2J3GRO.pf
Deleted !! : C:\$Recycle.bin\S-1-5-21-659606825-3296223450-992134187-1000\$I2V2OMD.log
Deleted !! : C:\$Recycle.bin\S-1-5-21-659606825-3296223450-992134187-1000\$I3AD6YP.bin
Deleted !! : C:\$Recycle.bin\S-1-5-21-659606825-3296223450-992134187-1000\$I3BJFMU.pf
Deleted !! : C:\$Recycle.bin\S-1-5-21-659606825-3296223450-992134187-1000\$I40K2D1.pf
Deleted !! : C:\$Recycle.bin\S-1-5-21-659606825-3296223450-992134187-1000\$I46KDPH.pf
Deleted !! : C:\$Recycle.bin\S-1-5-21-659606825-3296223450-992134187-1000\$I487LJH.pf
Deleted !! : C:\$Recycle.bin\S-1-5-21-659606825-3296223450-992134187-1000\$I4GDL62.pf
Deleted !! : C:\$Recycle.bin\S-1-5-21-659606825-3296223450-992134187-1000\$I4YVWSG.pf
Deleted !! : C:\$Recycle.bin\S-1-5-21-659606825-3296223450-992134187-1000\$I4ZEYCW.pf
Deleted !! : C:\$Recycle.bin\S-1-5-21-659606825-3296223450-992134187-1000\$I53T0P7.pf
Deleted !! : C:\$Recycle.bin\S-1-5-21-659606825-3296223450-992134187-1000\$I55JM2B.pf
Deleted !! : C:\$Recycle.bin\S-1-5-21-659606825-3296223450-992134187-1000\$I5632PA.pf
Deleted !! : C:\$Recycle.bin\S-1-5-21-659606825-3296223450-992134187-1000\$I56MG6I.pf
Deleted !! : C:\$Recycle.bin\S-1-5-21-659606825-3296223450-992134187-1000\$I5P3JDE.pf
Deleted !! : C:\$Recycle.bin\S-1-5-21-659606825-3296223450-992134187-1000\$I62CL44.pf
Deleted !! : C:\$Recycle.bin\S-1-5-21-659606825-3296223450-992134187-1000\$I66S3N4.pf
Deleted !! : C:\$Recycle.bin\S-1-5-21-659606825-3296223450-992134187-1000\$I6AL5YN.pf
Deleted !! : C:\$Recycle.bin\S-1-5-21-659606825-3296223450-992134187-1000\$I6EX5HM.pf
Deleted !! : C:\$Recycle.bin\S-1-5-21-659606825-3296223450-992134187-1000\$I6LJ08S.pf
Deleted !! : C:\$Recycle.bin\S-1-5-21-659606825-3296223450-992134187-1000\$I6LWQDA.pf
Deleted !! : C:\$Recycle.bin\S-1-5-21-659606825-3296223450-992134187-1000\$I6U8KOM.pf
Deleted !! : C:\$Recycle.bin\S-1-5-21-659606825-3296223450-992134187-1000\$I72AEMX.db
Deleted !! : C:\$Recycle.bin\S-1-5-21-659606825-3296223450-992134187-1000\$I72LPR9.pf
Deleted !! : C:\$Recycle.bin\S-1-5-21-659606825-3296223450-992134187-1000\$I78138K.pf
Deleted !! : C:\$Recycle.bin\S-1-5-21-659606825-3296223450-992134187-1000\$I7B6Z3Q
Deleted !! : C:\$Recycle.bin\S-1-5-21-659606825-3296223450-992134187-1000\$I7KT0L9.pf
Deleted !! : C:\$Recycle.bin\S-1-5-21-659606825-3296223450-992134187-1000\$I7KYPK2.db
Deleted !! : C:\$Recycle.bin\S-1-5-21-659606825-3296223450-992134187-1000\$I7QKK0L.db
Deleted !! : C:\$Recycle.bin\S-1-5-21-659606825-3296223450-992134187-1000\$I8CZC29.pf
Deleted !! : C:\$Recycle.bin\S-1-5-21-659606825-3296223450-992134187-1000\$I8MLT3D.pf
Deleted !! : C:\$Recycle.bin\S-1-5-21-659606825-3296223450-992134187-1000\$I8NVH0L.pf
Deleted !! : C:\$Recycle.bin\S-1-5-21-659606825-3296223450-992134187-1000\$I8OKSC6.pf
Deleted !! : C:\$Recycle.bin\S-1-5-21-659606825-3296223450-992134187-1000\$I8XSDGM.pf
Deleted !! : C:\$Recycle.bin\S-1-5-21-659606825-3296223450-992134187-1000\$I94H1RN.pf
Deleted !! : C:\$Recycle.bin\S-1-5-21-659606825-3296223450-992134187-1000\$I9J5ZVG.pf
Deleted !! : C:\$Recycle.bin\S-1-5-21-659606825-3296223450-992134187-1000\$I9TQ3NM.pf
Deleted !! : C:\$Recycle.bin\S-1-5-21-659606825-3296223450-992134187-1000\$I9XBJ3Y.pf
Deleted !! : C:\$Recycle.bin\S-1-5-21-659606825-3296223450-992134187-1000\$IA7AY4T.pf
Deleted !! : C:\$Recycle.bin\S-1-5-21-659606825-3296223450-992134187-1000\$IAD4BS4.pf
Deleted !! : C:\$Recycle.bin\S-1-5-21-659606825-3296223450-992134187-1000\$IAFFQPV.pf
Deleted !! : C:\$Recycle.bin\S-1-5-21-659606825-3296223450-992134187-1000\$IB27JN2.pf
Deleted !! : C:\$Recycle.bin\S-1-5-21-659606825-3296223450-992134187-1000\$IB28HD5.pf
Deleted !! : C:\$Recycle.bin\S-1-5-21-659606825-3296223450-992134187-1000\$IB9I7FO.pf
Deleted !! : C:\$Recycle.bin\S-1-5-21-659606825-3296223450-992134187-1000\$IBNAG1E.pf
Deleted !! : C:\$Recycle.bin\S-1-5-21-659606825-3296223450-992134187-1000\$IBQKUBQ.pf
Deleted !! : C:\$Recycle.bin\S-1-5-21-659606825-3296223450-992134187-1000\$IBV1DK8.pf
Deleted !! : C:\$Recycle.bin\S-1-5-21-659606825-3296223450-992134187-1000\$IBWKLU7.pf
Deleted !! : C:\$Recycle.bin\S-1-5-21-659606825-3296223450-992134187-1000\$IBY3I6G.pf
Deleted !! : C:\$Recycle.bin\S-1-5-21-659606825-3296223450-992134187-1000\$IC2UTNJ.pf
Deleted !! : C:\$Recycle.bin\S-1-5-21-659606825-3296223450-992134187-1000\$ICMYM04.pf
Deleted !! : C:\$Recycle.bin\S-1-5-21-659606825-3296223450-992134187-1000\$ICVXWTR.pf
Deleted !! : C:\$Recycle.bin\S-1-5-21-659606825-3296223450-992134187-1000\$ID30YFH.db
Deleted !! : C:\$Recycle.bin\S-1-5-21-659606825-3296223450-992134187-1000\$ID342P1.pf
Deleted !! : C:\$Recycle.bin\S-1-5-21-659606825-3296223450-992134187-1000\$IDNTM0F.pf
Deleted !! : C:\$Recycle.bin\S-1-5-21-659606825-3296223450-992134187-1000\$IDY80YU.pf
Deleted !! : C:\$Recycle.bin\S-1-5-21-659606825-3296223450-992134187-1000\$IE00R39.pf
Deleted !! : C:\$Recycle.bin\S-1-5-21-659606825-3296223450-992134187-1000\$IE63XPI.pf
Deleted !! : C:\$Recycle.bin\S-1-5-21-659606825-3296223450-992134187-1000\$IEVZJ2Y.db
Deleted !! : C:\$Recycle.bin\S-1-5-21-659606825-3296223450-992134187-1000\$IFE0TE4.pf
Deleted !! : C:\$Recycle.bin\S-1-5-21-659606825-3296223450-992134187-1000\$IG5XE01.pf
Deleted !! : C:\$Recycle.bin\S-1-5-21-659606825-3296223450-992134187-1000\$IGCI34L.pf
Deleted !! : C:\$Recycle.bin\S-1-5-21-659606825-3296223450-992134187-1000\$IGTA7X4.pf
Deleted !! : C:\$Recycle.bin\S-1-5-21-659606825-3296223450-992134187-1000\$IHC8FCC.pf
Deleted !! : C:\$Recycle.bin\S-1-5-21-659606825-3296223450-992134187-1000\$IHCOK40.pf
Deleted !! : C:\$Recycle.bin\S-1-5-21-659606825-3296223450-992134187-1000\$IHF2PZY.pf
Deleted !! : C:\$Recycle.bin\S-1-5-21-659606825-3296223450-992134187-1000\$IHIU1VP.pf
Deleted !! : C:\$Recycle.bin\S-1-5-21-659606825-3296223450-992134187-1000\$IHPWJDF.pf
Deleted !! : C:\$Recycle.bin\S-1-5-21-659606825-3296223450-992134187-1000\$IIFA299.pf
Deleted !! : C:\$Recycle.bin\S-1-5-21-659606825-3296223450-992134187-1000\$IILMYXM.pf
Deleted !! : C:\$Recycle.bin\S-1-5-21-659606825-3296223450-992134187-1000\$IIP61O6.pf
Deleted !! : C:\$Recycle.bin\S-1-5-21-659606825-3296223450-992134187-1000\$IITYUJW.pf
Deleted !! : C:\$Recycle.bin\S-1-5-21-659606825-3296223450-992134187-1000\$IJ3J9FB.pf
Deleted !! : C:\$Recycle.bin\S-1-5-21-659606825-3296223450-992134187-1000\$IJL1WOW.pf
Deleted !! : C:\$Recycle.bin\S-1-5-21-659606825-3296223450-992134187-1000\$IJQ21ML.pf
Deleted !! : C:\$Recycle.bin\S-1-5-21-659606825-3296223450-992134187-1000\$IJXOP6F.pf
Deleted !! : C:\$Recycle.bin\S-1-5-21-659606825-3296223450-992134187-1000\$IK0GN4B.pf
Deleted !! : C:\$Recycle.bin\S-1-5-21-659606825-3296223450-992134187-1000\$IK0WQ0I.pf
Deleted !! : C:\$Recycle.bin\S-1-5-21-659606825-3296223450-992134187-1000\$IK4WU6D.pf
Deleted !! : C:\$Recycle.bin\S-1-5-21-659606825-3296223450-992134187-1000\$IKEISHF.pf
Deleted !! : C:\$Recycle.bin\S-1-5-21-659606825-3296223450-992134187-1000\$IKFRAJG.pf
Deleted !! : C:\$Recycle.bin\S-1-5-21-659606825-3296223450-992134187-1000\$IKPVI08.pf
Deleted !! : C:\$Recycle.bin\S-1-5-21-659606825-3296223450-992134187-1000\$IKSCDCP.db
Deleted !! : C:\$Recycle.bin\S-1-5-21-659606825-3296223450-992134187-1000\$IKUFG50.pf
Deleted !! : C:\$Recycle.bin\S-1-5-21-659606825-3296223450-992134187-1000\$ILC5D7B.pf
Deleted !! : C:\$Recycle.bin\S-1-5-21-659606825-3296223450-992134187-1000\$ILI2YWY.pf
Deleted !! : C:\$Recycle.bin\S-1-5-21-659606825-3296223450-992134187-1000\$ILN3FBF.pf
Deleted !! : C:\$Recycle.bin\S-1-5-21-659606825-3296223450-992134187-1000\$IM0MGYK.pf
Deleted !! : C:\$Recycle.bin\S-1-5-21-659606825-3296223450-992134187-1000\$IM2I1SC.pf
Deleted !! : C:\$Recycle.bin\S-1-5-21-659606825-3296223450-992134187-1000\$IMM4FE6.pf
Deleted !! : C:\$Recycle.bin\S-1-5-21-659606825-3296223450-992134187-1000\$IMV0CE2.pf
Deleted !! : C:\$Recycle.bin\S-1-5-21-659606825-3296223450-992134187-1000\$IMVN5BJ.pf
Deleted !! : C:\$Recycle.bin\S-1-5-21-659606825-3296223450-992134187-1000\$IN4457V.txt
Deleted !! : C:\$Recycle.bin\S-1-5-21-659606825-3296223450-992134187-1000\$IN50WJL.pf
Deleted !! : C:\$Recycle.bin\S-1-5-21-659606825-3296223450-992134187-1000\$INSIH0O.pf
Deleted !! : C:\$Recycle.bin\S-1-5-21-659606825-3296223450-992134187-1000\$INSV2K9.pf
Deleted !! : C:\$Recycle.bin\S-1-5-21-659606825-3296223450-992134187-1000\$IO2BDPI.bin
Deleted !! : C:\$Recycle.bin\S-1-5-21-659606825-3296223450-992134187-1000\$IOTU4E5.pf
Deleted !! : C:\$Recycle.bin\S-1-5-21-659606825-3296223450-992134187-1000\$IOY517I.pf
Deleted !! : C:\$Recycle.bin\S-1-5-21-659606825-3296223450-992134187-1000\$IPBAN5A.pf
Deleted !! : C:\$Recycle.bin\S-1-5-21-659606825-3296223450-992134187-1000\$IPVC2MA.pf
Deleted !! : C:\$Recycle.bin\S-1-5-21-659606825-3296223450-992134187-1000\$IPWIKQD.pf
Deleted !! : C:\$Recycle.bin\S-1-5-21-659606825-3296223450-992134187-1000\$IPZVGYV.pf
Deleted !! : C:\$Recycle.bin\S-1-5-21-659606825-3296223450-992134187-1000\$IQACBZ3.pf
Deleted !! : C:\$Recycle.bin\S-1-5-21-659606825-3296223450-992134187-1000\$IQEA1GO.pf
Deleted !! : C:\$Recycle.bin\S-1-5-21-659606825-3296223450-992134187-1000\$IQG7VVD.pf
Deleted !! : C:\$Recycle.bin\S-1-5-21-659606825-3296223450-992134187-1000\$IQIZ08O.pf
Deleted !! : C:\$Recycle.bin\S-1-5-21-659606825-3296223450-992134187-1000\$IQNJU1G.pf
Deleted !! : C:\$Recycle.bin\S-1-5-21-659606825-3296223450-992134187-1000\$IQQAI83.pf
Deleted !! : C:\$Recycle.bin\S-1-5-21-659606825-3296223450-992134187-1000\$IQSB1QT.pf
Deleted !! : C:\$Recycle.bin\S-1-5-21-659606825-3296223450-992134187-1000\$IR5IRB6.db
Deleted !! : C:\$Recycle.bin\S-1-5-21-659606825-3296223450-992134187-1000\$IR6ZORD.pf
Deleted !! : C:\$Recycle.bin\S-1-5-21-659606825-3296223450-992134187-1000\$IRDA858.pf
Deleted !! : C:\$Recycle.bin\S-1-5-21-659606825-3296223450-992134187-1000\$IRGGAM5.pf
Deleted !! : C:\$Recycle.bin\S-1-5-21-659606825-3296223450-992134187-1000\$IROTL6N.pf
Deleted !! : C:\$Recycle.bin\S-1-5-21-659606825-3296223450-992134187-1000\$IRTN0O3.pf
Deleted !! : C:\$Recycle.bin\S-1-5-21-659606825-3296223450-992134187-1000\$IRVD5HH.pf
Deleted !! : C:\$Recycle.bin\S-1-5-21-659606825-3296223450-992134187-1000\$IRWNW18.pf
Deleted !! : C:\$Recycle.bin\S-1-5-21-659606825-3296223450-992134187-1000\$IS0B51B.pf
Deleted !! : C:\$Recycle.bin\S-1-5-21-659606825-3296223450-992134187-1000\$ISAP2WQ.pf
Deleted !! : C:\$Recycle.bin\S-1-5-21-659606825-3296223450-992134187-1000\$ISGKHIG.pf
Deleted !! : C:\$Recycle.bin\S-1-5-21-659606825-3296223450-992134187-1000\$ISNN3L7.pf
Deleted !! : C:\$Recycle.bin\S-1-5-21-659606825-3296223450-992134187-1000\$ISQSXXD.db
Deleted !! : C:\$Recycle.bin\S-1-5-21-659606825-3296223450-992134187-1000\$ISZBLLQ.pf
Deleted !! : C:\$Recycle.bin\S-1-5-21-659606825-3296223450-992134187-1000\$IT42BWB.db
Deleted !! : C:\$Recycle.bin\S-1-5-21-659606825-3296223450-992134187-1000\$ITDTCQB.db
Deleted !! : C:\$Recycle.bin\S-1-5-21-659606825-3296223450-992134187-1000\$ITII6ET.pf
Deleted !! : C:\$Recycle.bin\S-1-5-21-659606825-3296223450-992134187-1000\$ITUVQLY.db
Deleted !! : C:\$Recycle.bin\S-1-5-21-659606825-3296223450-992134187-1000\$IUD4GVX.pf
Deleted !! : C:\$Recycle.bin\S-1-5-21-659606825-3296223450-992134187-1000\$IUN5FZ1.pf
Deleted !! : C:\$Recycle.bin\S-1-5-21-659606825-3296223450-992134187-1000\$IUOI9MS.db
Deleted !! : C:\$Recycle.bin\S-1-5-21-659606825-3296223450-992134187-1000\$IUZIZSJ.pf
Deleted !! : C:\$Recycle.bin\S-1-5-21-659606825-3296223450-992134187-1000\$IVDQ1NI.pf
Deleted !! : C:\$Recycle.bin\S-1-5-21-659606825-3296223450-992134187-1000\$IVQMUZ8.pf
Deleted !! : C:\$Recycle.bin\S-1-5-21-659606825-3296223450-992134187-1000\$IVYU821.pf
Deleted !! : C:\$Recycle.bin\S-1-5-21-659606825-3296223450-992134187-1000\$IW7SXDR.pf
Deleted !! : C:\$Recycle.bin\S-1-5-21-659606825-3296223450-992134187-1000\$IWFRWH7.pf
Deleted !! : C:\$Recycle.bin\S-1-5-21-659606825-3296223450-992134187-1000\$IXCP9OG.pf
Deleted !! : C:\$Recycle.bin\S-1-5-21-659606825-3296223450-992134187-1000\$IXDVHMX.pf
Deleted !! : C:\$Recycle.bin\S-1-5-21-659606825-3296223450-992134187-1000\$IXI41GI.pf
Deleted !! : C:\$Recycle.bin\S-1-5-21-659606825-3296223450-992134187-1000\$IXKLMTK.pf
Deleted !! : C:\$Recycle.bin\S-1-5-21-659606825-3296223450-992134187-1000\$IXNHWH9.pf
Deleted !! : C:\$Recycle.bin\S-1-5-21-659606825-3296223450-992134187-1000\$IXRXIDH.pf
Deleted !! : C:\$Recycle.bin\S-1-5-21-659606825-3296223450-992134187-1000\$IXTMX5Z.pf
Deleted !! : C:\$Recycle.bin\S-1-5-21-659606825-3296223450-992134187-1000\$IYOO20G.pf
Deleted !! : C:\$Recycle.bin\S-1-5-21-659606825-3296223450-992134187-1000\$IYZF776.pf
Deleted !! : C:\$Recycle.bin\S-1-5-21-659606825-3296223450-992134187-1000\$IZBD6IZ.pf
Deleted !! : C:\$Recycle.bin\S-1-5-21-659606825-3296223450-992134187-1000\$R0108FM.pf
Deleted !! : C:\$Recycle.bin\S-1-5-21-659606825-3296223450-992134187-1000\$R07RZCB.pf
Deleted !! : C:\$Recycle.bin\S-1-5-21-659606825-3296223450-992134187-1000\$R0ZGKPZ.pf
Deleted !! : C:\$Recycle.bin\S-1-5-21-659606825-3296223450-992134187-1000\$R12ACL9.pf
Deleted !! : C:\$Recycle.bin\S-1-5-21-659606825-3296223450-992134187-1000\$R1BUA73.pf
Deleted !! : C:\$Recycle.bin\S-1-5-21-659606825-3296223450-992134187-1000\$R1E7F06.pf
Deleted !! : C:\$Recycle.bin\S-1-5-21-659606825-3296223450-992134187-1000\$R1G6MG9.pf
Deleted !! : C:\$Recycle.bin\S-1-5-21-659606825-3296223450-992134187-1000\$R20PUEO.pf
Deleted !! : C:\$Recycle.bin\S-1-5-21-659606825-3296223450-992134187-1000\$R2J3GRO.pf
Deleted !! : C:\$Recycle.bin\S-1-5-21-659606825-3296223450-992134187-1000\$R2V2OMD.log
Deleted !! : C:\$Recycle.bin\S-1-5-21-659606825-3296223450-992134187-1000\$R3AD6YP.bin
Deleted !! : C:\$Recycle.bin\S-1-5-21-659606825-3296223450-992134187-1000\$R3BJFMU.pf
Deleted !! : C:\$Recycle.bin\S-1-5-21-659606825-3296223450-992134187-1000\$R40K2D1.pf
Deleted !! : C:\$Recycle.bin\S-1-5-21-659606825-3296223450-992134187-1000\$R46KDPH.pf
Deleted !! : C:\$Recycle.bin\S-1-5-21-659606825-3296223450-992134187-1000\$R487LJH.pf
Deleted !! : C:\$Recycle.bin\S-1-5-21-659606825-3296223450-992134187-1000\$R4GDL62.pf
Deleted !! : C:\$Recycle.bin\S-1-5-21-659606825-3296223450-992134187-1000\$R4YVWSG.pf
Deleted !! : C:\$Recycle.bin\S-1-5-21-659606825-3296223450-992134187-1000\$R4ZEYCW.pf
Deleted !! : C:\$Recycle.bin\S-1-5-21-659606825-3296223450-992134187-1000\$R53T0P7.pf
Deleted !! : C:\$Recycle.bin\S-1-5-21-659606825-3296223450-992134187-1000\$R55JM2B.pf
Deleted !! : C:\$Recycle.bin\S-1-5-21-659606825-3296223450-992134187-1000\$R5632PA.pf
Deleted !! : C:\$Recycle.bin\S-1-5-21-659606825-3296223450-992134187-1000\$R56MG6I.pf
Deleted !! : C:\$Recycle.bin\S-1-5-21-659606825-3296223450-992134187-1000\$R5P3JDE.pf
Deleted !! : C:\$Recycle.bin\S-1-5-21-659606825-3296223450-992134187-1000\$R62CL44.pf
Deleted !! : C:\$Recycle.bin\S-1-5-21-659606825-3296223450-992134187-1000\$R66S3N4.pf
Deleted !! : C:\$Recycle.bin\S-1-5-21-659606825-3296223450-992134187-1000\$R6AL5YN.pf
Deleted !! : C:\$Recycle.bin\S-1-5-21-659606825-3296223450-992134187-1000\$R6EX5HM.pf
Deleted !! : C:\$Recycle.bin\S-1-5-21-659606825-3296223450-992134187-1000\$R6LJ08S.pf
Deleted !! : C:\$Recycle.bin\S-1-5-21-659606825-3296223450-992134187-1000\$R6LWQDA.pf
Deleted !! : C:\$Recycle.bin\S-1-5-21-659606825-3296223450-992134187-1000\$R6U8KOM.pf
Deleted !! : C:\$Recycle.bin\S-1-5-21-659606825-3296223450-992134187-1000\$R72AEMX.db
Deleted !! : C:\$Recycle.bin\S-1-5-21-659606825-3296223450-992134187-1000\$R72LPR9.pf
Deleted !! : C:\$Recycle.bin\S-1-5-21-659606825-3296223450-992134187-1000\$R78138K.pf
Deleted !! : C:\$Recycle.bin\S-1-5-21-659606825-3296223450-992134187-1000\$R7KT0L9.pf
Deleted !! : C:\$Recycle.bin\S-1-5-21-659606825-3296223450-992134187-1000\$R7KYPK2.db
Deleted !! : C:\$Recycle.bin\S-1-5-21-659606825-3296223450-992134187-1000\$R7QKK0L.db
Deleted !! : C:\$Recycle.bin\S-1-5-21-659606825-3296223450-992134187-1000\$R8CZC29.pf
Deleted !! : C:\$Recycle.bin\S-1-5-21-659606825-3296223450-992134187-1000\$R8MLT3D.pf
Deleted !! : C:\$Recycle.bin\S-1-5-21-659606825-3296223450-992134187-1000\$R8NVH0L.pf
Deleted !! : C:\$Recycle.bin\S-1-5-21-659606825-3296223450-992134187-1000\$R8OKSC6.pf
Deleted !! : C:\$Recycle.bin\S-1-5-21-659606825-3296223450-992134187-1000\$R8XSDGM.pf
Deleted !! : C:\$Recycle.bin\S-1-5-21-659606825-3296223450-992134187-1000\$R94H1RN.pf
Deleted !! : C:\$Recycle.bin\S-1-5-21-659606825-3296223450-992134187-1000\$R9J5ZVG.pf
Deleted !! : C:\$Recycle.bin\S-1-5-21-659606825-3296223450-992134187-1000\$R9TQ3NM.pf
Deleted !! : C:\$Recycle.bin\S-1-5-21-659606825-3296223450-992134187-1000\$R9XBJ3Y.pf
Deleted !! : C:\$Recycle.bin\S-1-5-21-659606825-3296223450-992134187-1000\$RA7AY4T.pf
Deleted !! : C:\$Recycle.bin\S-1-5-21-659606825-3296223450-992134187-1000\$RAD4BS4.pf
Deleted !! : C:\$Recycle.bin\S-1-5-21-659606825-3296223450-992134187-1000\$RAFFQPV.pf
Deleted !! : C:\$Recycle.bin\S-1-5-21-659606825-3296223450-992134187-1000\$RB27JN2.pf
Deleted !! : C:\$Recycle.bin\S-1-5-21-659606825-3296223450-992134187-1000\$RB28HD5.pf
Deleted !! : C:\$Recycle.bin\S-1-5-21-659606825-3296223450-992134187-1000\$RB9I7FO.pf
Deleted !! : C:\$Recycle.bin\S-1-5-21-659606825-3296223450-992134187-1000\$RBNAG1E.pf
Deleted !! : C:\$Recycle.bin\S-1-5-21-659606825-3296223450-992134187-1000\$RBQKUBQ.pf
Deleted !! : C:\$Recycle.bin\S-1-5-21-659606825-3296223450-992134187-1000\$RBV1DK8.pf
Deleted !! : C:\$Recycle.bin\S-1-5-21-659606825-3296223450-992134187-1000\$RBWKLU7.pf
Deleted !! : C:\$Recycle.bin\S-1-5-21-659606825-3296223450-992134187-1000\$RBY3I6G.pf
Deleted !! : C:\$Recycle.bin\S-1-5-21-659606825-3296223450-992134187-1000\$RC2UTNJ.pf
Deleted !! : C:\$Recycle.bin\S-1-5-21-659606825-3296223450-992134187-1000\$RCMYM04.pf
Deleted !! : C:\$Recycle.bin\S-1-5-21-659606825-3296223450-992134187-1000\$RCVXWTR.pf
Deleted !! : C:\$Recycle.bin\S-1-5-21-659606825-3296223450-992134187-1000\$RD30YFH.db
Deleted !! : C:\$Recycle.bin\S-1-5-21-659606825-3296223450-992134187-1000\$RD342P1.pf
Deleted !! : C:\$Recycle.bin\S-1-5-21-659606825-3296223450-992134187-1000\$RDNTM0F.pf
Deleted !! : C:\$Recycle.bin\S-1-5-21-659606825-3296223450-992134187-1000\$RDY80YU.pf
Deleted !! : C:\$Recycle.bin\S-1-5-21-659606825-3296223450-992134187-1000\$RE00R39.pf
Deleted !! : C:\$Recycle.bin\S-1-5-21-659606825-3296223450-992134187-1000\$RE63XPI.pf
Deleted !! : C:\$Recycle.bin\S-1-5-21-659606825-3296223450-992134187-1000\$REVZJ2Y.db
Deleted !! : C:\$Recycle.bin\S-1-5-21-659606825-3296223450-992134187-1000\$RFE0TE4.pf
Deleted !! : C:\$Recycle.bin\S-1-5-21-659606825-3296223450-992134187-1000\$RG5XE01.pf
Deleted !! : C:\$Recycle.bin\S-1-5-21-659606825-3296223450-992134187-1000\$RGCI34L.pf
Deleted !! : C:\$Recycle.bin\S-1-5-21-659606825-3296223450-992134187-1000\$RGTA7X4.pf
Deleted !! : C:\$Recycle.bin\S-1-5-21-659606825-3296223450-992134187-1000\$RHC8FCC.pf
Deleted !! : C:\$Recycle.bin\S-1-5-21-659606825-3296223450-992134187-1000\$RHCOK40.pf
Deleted !! : C:\$Recycle.bin\S-1-5-21-659606825-3296223450-992134187-1000\$RHF2PZY.pf
Deleted !! : C:\$Recycle.bin\S-1-5-21-659606825-3296223450-992134187-1000\$RHIU1VP.pf
Deleted !! : C:\$Recycle.bin\S-1-5-21-659606825-3296223450-992134187-1000\$RHPWJDF.pf
Deleted !! : C:\$Recycle.bin\S-1-5-21-659606825-3296223450-992134187-1000\$RIFA299.pf
Deleted !! : C:\$Recycle.bin\S-1-5-21-659606825-3296223450-992134187-1000\$RILMYXM.pf
Deleted !! : C:\$Recycle.bin\S-1-5-21-659606825-3296223450-992134187-1000\$RIP61O6.pf
Deleted !! : C:\$Recycle.bin\S-1-5-21-659606825-3296223450-992134187-1000\$RITYUJW.pf
Deleted !! : C:\$Recycle.bin\S-1-5-21-659606825-3296223450-992134187-1000\$RJ3J9FB.pf
Deleted !! : C:\$Recycle.bin\S-1-5-21-659606825-3296223450-992134187-1000\$RJL1WOW.pf
Deleted !! : C:\$Recycle.bin\S-1-5-21-659606825-3296223450-992134187-1000\$RJQ21ML.pf
Deleted !! : C:\$Recycle.bin\S-1-5-21-659606825-3296223450-992134187-1000\$RJXOP6F.pf
Deleted !! : C:\$Recycle.bin\S-1-5-21-659606825-3296223450-992134187-1000\$RK0GN4B.pf
Deleted !! : C:\$Recycle.bin\S-1-5-21-659606825-3296223450-992134187-1000\$RK0WQ0I.pf
Deleted !! : C:\$Recycle.bin\S-1-5-21-659606825-3296223450-992134187-1000\$RK4WU6D.pf
Deleted !! : C:\$Recycle.bin\S-1-5-21-659606825-3296223450-992134187-1000\$RKEISHF.pf
Deleted !! : C:\$Recycle.bin\S-1-5-21-659606825-3296223450-992134187-1000\$RKFRAJG.pf
Deleted !! : C:\$Recycle.bin\S-1-5-21-659606825-3296223450-992134187-1000\$RKPVI08.pf
Deleted !! : C:\$Recycle.bin\S-1-5-21-659606825-3296223450-992134187-1000\$RKSCDCP.db
Deleted !! : C:\$Recycle.bin\S-1-5-21-659606825-3296223450-992134187-1000\$RKUFG50.pf
Deleted !! : C:\$Recycle.bin\S-1-5-21-659606825-3296223450-992134187-1000\$RLC5D7B.pf
Deleted !! : C:\$Recycle.bin\S-1-5-21-659606825-3296223450-992134187-1000\$RLI2YWY.pf
Deleted !! : C:\$Recycle.bin\S-1-5-21-659606825-3296223450-992134187-1000\$RLN3FBF.pf
Deleted !! : C:\$Recycle.bin\S-1-5-21-659606825-3296223450-992134187-1000\$RM0MGYK.pf
Deleted !! : C:\$Recycle.bin\S-1-5-21-659606825-3296223450-992134187-1000\$RM2I1SC.pf
Deleted !! : C:\$Recycle.bin\S-1-5-21-659606825-3296223450-992134187-1000\$RMM4FE6.pf
Deleted !! : C:\$Recycle.bin\S-1-5-21-659606825-3296223450-992134187-1000\$RMV0CE2.pf
Deleted !! : C:\$Recycle.bin\S-1-5-21-659606825-3296223450-992134187-1000\$RMVN5BJ.pf
Deleted !! : C:\$Recycle.bin\S-1-5-21-659606825-3296223450-992134187-1000\$RN4457V.txt
Deleted !! : C:\$Recycle.bin\S-1-5-21-659606825-3296223450-992134187-1000\$RN50WJL.pf
Deleted !! : C:\$Recycle.bin\S-1-5-21-659606825-3296223450-992134187-1000\$RNSIH0O.pf
Deleted !! : C:\$Recycle.bin\S-1-5-21-659606825-3296223450-992134187-1000\$RNSV2K9.pf
Deleted !! : C:\$Recycle.bin\S-1-5-21-659606825-3296223450-992134187-1000\$RO2BDPI.bin
Deleted !! : C:\$Recycle.bin\S-1-5-21-659606825-3296223450-992134187-1000\$ROTU4E5.pf
Deleted !! : C:\$Recycle.bin\S-1-5-21-659606825-3296223450-992134187-1000\$ROY517I.pf
Deleted !! : C:\$Recycle.bin\S-1-5-21-659606825-3296223450-992134187-1000\$RPBAN5A.pf
Deleted !! : C:\$Recycle.bin\S-1-5-21-659606825-3296223450-992134187-1000\$RPVC2MA.pf
Deleted !! : C:\$Recycle.bin\S-1-5-21-659606825-3296223450-992134187-1000\$RPWIKQD.pf
Deleted !! : C:\$Recycle.bin\S-1-5-21-659606825-3296223450-992134187-1000\$RPZVGYV.pf
Deleted !! : C:\$Recycle.bin\S-1-5-21-659606825-3296223450-992134187-1000\$RQACBZ3.pf
Deleted !! : C:\$Recycle.bin\S-1-5-21-659606825-3296223450-992134187-1000\$RQEA1GO.pf
Deleted !! : C:\$Recycle.bin\S-1-5-21-659606825-3296223450-992134187-1000\$RQG7VVD.pf
Deleted !! : C:\$Recycle.bin\S-1-5-21-659606825-3296223450-992134187-1000\$RQIZ08O.pf
Deleted !! : C:\$Recycle.bin\S-1-5-21-659606825-3296223450-992134187-1000\$RQNJU1G.pf
Deleted !! : C:\$Recycle.bin\S-1-5-21-659606825-3296223450-992134187-1000\$RQQAI83.pf
Deleted !! : C:\$Recycle.bin\S-1-5-21-659606825-3296223450-992134187-1000\$RQSB1QT.pf
Deleted !! : C:\$Recycle.bin\S-1-5-21-659606825-3296223450-992134187-1000\$RR5IRB6.db
Deleted !! : C:\$Recycle.bin\S-1-5-21-659606825-3296223450-992134187-1000\$RR6ZORD.pf
Deleted !! : C:\$Recycle.bin\S-1-5-21-659606825-3296223450-992134187-1000\$RRDA858.pf
Deleted !! : C:\$Recycle.bin\S-1-5-21-659606825-3296223450-992134187-1000\$RRGGAM5.pf
Deleted !! : C:\$Recycle.bin\S-1-5-21-659606825-3296223450-992134187-1000\$RROTL6N.pf
Deleted !! : C:\$Recycle.bin\S-1-5-21-659606825-3296223450-992134187-1000\$RRTN0O3.pf
Deleted !! : C:\$Recycle.bin\S-1-5-21-659606825-3296223450-992134187-1000\$RRVD5HH.pf
Deleted !! : C:\$Recycle.bin\S-1-5-21-659606825-3296223450-992134187-1000\$RRWNW18.pf
Deleted !! : C:\$Recycle.bin\S-1-5-21-659606825-3296223450-992134187-1000\$RS0B51B.pf
Deleted !! : C:\$Recycle.bin\S-1-5-21-659606825-3296223450-992134187-1000\$RSAP2WQ.pf
Deleted !! : C:\$Recycle.bin\S-1-5-21-659606825-3296223450-992134187-1000\$RSGKHIG.pf
Deleted !! : C:\$Recycle.bin\S-1-5-21-659606825-3296223450-992134187-1000\$RSNN3L7.pf
Deleted !! : C:\$Recycle.bin\S-1-5-21-659606825-3296223450-992134187-1000\$RSQSXXD.db
Deleted !! : C:\$Recycle.bin\S-1-5-21-659606825-3296223450-992134187-1000\$RSZBLLQ.pf
Deleted !! : C:\$Recycle.bin\S-1-5-21-659606825-3296223450-992134187-1000\$RT42BWB.db
Deleted !! : C:\$Recycle.bin\S-1-5-21-659606825-3296223450-992134187-1000\$RTDTCQB.db
Deleted !! : C:\$Recycle.bin\S-1-5-21-659606825-3296223450-992134187-1000\$RTII6ET.pf
Deleted !! : C:\$Recycle.bin\S-1-5-21-659606825-3296223450-992134187-1000\$RTUVQLY.db
Deleted !! : C:\$Recycle.bin\S-1-5-21-659606825-3296223450-992134187-1000\$RUD4GVX.pf
Deleted !! : C:\$Recycle.bin\S-1-5-21-659606825-3296223450-992134187-1000\$RUN5FZ1.pf
Deleted !! : C:\$Recycle.bin\S-1-5-21-659606825-3296223450-992134187-1000\$RUOI9MS.db
Deleted !! : C:\$Recycle.bin\S-1-5-21-659606825-3296223450-992134187-1000\$RUZIZSJ.pf
Deleted !! : C:\$Recycle.bin\S-1-5-21-659606825-3296223450-992134187-1000\$RVDQ1NI.pf
Deleted !! : C:\$Recycle.bin\S-1-5-21-659606825-3296223450-992134187-1000\$RVQMUZ8.pf
Deleted !! : C:\$Recycle.bin\S-1-5-21-659606825-3296223450-992134187-1000\$RVYU821.pf
Deleted !! : C:\$Recycle.bin\S-1-5-21-659606825-3296223450-992134187-1000\$RW7SXDR.pf
Deleted !! : C:\$Recycle.bin\S-1-5-21-659606825-3296223450-992134187-1000\$RWFRWH7.pf
Deleted !! : C:\$Recycle.bin\S-1-5-21-659606825-3296223450-992134187-1000\$RXCP9OG.pf
Deleted !! : C:\$Recycle.bin\S-1-5-21-659606825-3296223450-992134187-1000\$RXDVHMX.pf
Deleted !! : C:\$Recycle.bin\S-1-5-21-659606825-3296223450-992134187-1000\$RXI41GI.pf
Deleted !! : C:\$Recycle.bin\S-1-5-21-659606825-3296223450-992134187-1000\$RXKLMTK.pf
Deleted !! : C:\$Recycle.bin\S-1-5-21-659606825-3296223450-992134187-1000\$RXNHWH9.pf
Deleted !! : C:\$Recycle.bin\S-1-5-21-659606825-3296223450-992134187-1000\$RXRXIDH.pf
Deleted !! : C:\$Recycle.bin\S-1-5-21-659606825-3296223450-992134187-1000\$RXTMX5Z.pf
Deleted !! : C:\$Recycle.bin\S-1-5-21-659606825-3296223450-992134187-1000\$RYOO20G.pf
Deleted !! : C:\$Recycle.bin\S-1-5-21-659606825-3296223450-992134187-1000\$RYZF776.pf
Deleted !! : C:\$Recycle.bin\S-1-5-21-659606825-3296223450-992134187-1000\$RZBD6IZ.pf

¤¤¤¤¤¤¤¤¤¤ Hosts ¤¤¤¤¤¤¤¤¤¤

127.0.0.1 localhost

¤¤¤¤¤¤¤¤¤¤ Registry ¤¤¤¤¤¤¤¤¤¤

Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar : {32099AAC-C132-4136-9E9A-4E364A424E17}
Deleted : HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer : NoDrives
Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer : NoDrives
Deleted : HKCR\CLSID\{248dd896-bb45-11cf-9abc-0080c7e7b78d}
Deleted : HKCR\CLSID\{248dd897-bb45-11cf-9abc-0080c7e7b78d}
Deleted : HKCR\Interface\{248dd892-bb45-11cf-9abc-0080c7e7b78d}
Deleted : HKCR\Interface\{248dd893-bb45-11cf-9abc-0080c7e7b78d}
Deleted : HKCR\TypeLib\{248dd890-bb45-11cf-9abc-0080c7e7b78d}
Deleted : HKLM\Software\Classes\Interface\{DB885111-F39F-4D88-9EE5-C88460B6DF7B}
Deleted : HKLM\SYSTEM\CurrentControlSet\Services\NPF
Deleted : HKLM\SYSTEM\ControlSet002\Services\NPF

¤¤¤¤¤¤¤¤¤¤ Internet Explorer ¤¤¤¤¤¤¤¤¤¤

[HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Main]
Start Page = https://www.msn.com/fr-fr/?ocid=iehp
Local Page = C:\WINDOWS\system32\blank.htm
Default_Search_URL = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
Default_Page_URL = https://www.msn.com/fr-fr/?ocid=iehp
Search Page = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF

[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
Start Page = https://www.google.com/?gws_rd=ssl
Local Page = C:\WINDOWS\system32\blank.htm
Search Page = http://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch

¤¤¤¤¤¤¤¤¤¤ Security Center ¤¤¤¤¤¤¤¤¤¤

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
cval = 1 ()
FirewallDisableNotify = 0 (0x0)
AntiVirusDisableNotify = 0 (0x0)
UpdatesDisableNotify = 0 (0x0)
FirstRunDisabled = 1 ()
AntiVirusOverride = 0 (0x0)
FirewallOverride = 0 (0x0)

¤¤¤¤¤¤¤¤¤¤ Services ¤¤¤¤¤¤¤¤¤¤

Ndisuio : Start = 3
EapHost : Start = 2
Wlansvc : Start = 2
SharedAccess : Start = 2
windefend : Start = 2
wuauserv : Start = 2
wscsvc : Start = 2

¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤
Disk Cleaned
anti-ver blaster : OK
Prefetch cleaned
¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤

FEATURE_BROWSER_EMULATION | svchost :
====================================


Stealth MBR rootkit/Mebroot/Sinowal detector 0.3.7 by Gmer, http://www.gmer.net

device: opened successfully
user: MBR read successfully
kernel: MBR read successfully
user & kernel MBR OK
PE file found in sector at 0x012A1885F !




¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤ ( EOF ) ¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤
0
Réponse 11 / 15
Utilisateur anonyme
22 sept. 2010 à 15:56
Télécharge MBRCheck sur ton Bureau.

* Désactive tes programmes de sécurité avant de lancer le scan. (antispyware/antivirus)
* Double clique sur le fichier pour lancer le programme. (Note: Si tu utilises Vista/7, fais un clic droit sur le fichier puis choisir Exécuter en tant qu'administrateur).
* Une fenêtre va s'ouvrir sur ton Bureau: Patiente une dizaine de secondes pour permettre à l'outil de compléter l'analyse.
* Si un code de démarrage inconnu est détecté, des options s'afficheront
* Si c'est le cas, appuie alors sur la touche N puis [Entrée] deux fois.
* Si rien de particulier n'est détecté, presse juste sur la touche [Entrée]
* Un fichier texte nommé MBRCheck_mois/jour/année/_heure.minutes.secondes devrait apparaitre sur ton Bureau.
* Poste stp son contenu dans ton prochain message.
0
Réponse 12 / 15
toychris Messages postés 10 Date d'inscription mardi 21 septembre 2010 Statut Membre Dernière intervention 25 mai 2012
22 sept. 2010 à 16:57
MBRCheck, version 1.2.3
(c) 2010, AD

Command-line:
Windows Version: Windows 7 Ultimate Edition
Windows Information: (build 7600), 32-bit
Base Board Manufacturer: ASUSTeK Computer INC.
BIOS Manufacturer: American Megatrends Inc.
System Manufacturer: System manufacturer
System Product Name: System Product Name
Logical Drives Mask: 0x00000145

Kernel Drivers (total 159):
0x82E04000 \SystemRoot\system32\ntkrnlpa.exe
0x83214000 \SystemRoot\system32\halmacpi.dll
0x80BA4000 \SystemRoot\system32\kdcom.dll
0x8BA05000 \SystemRoot\system32\mcupdate_GenuineIntel.dll
0x8BA7D000 \SystemRoot\system32\PSHED.dll
0x8BA8E000 \SystemRoot\system32\BOOTVID.dll
0x8BA96000 \SystemRoot\system32\CLFS.SYS
0x8BAD8000 \SystemRoot\system32\CI.dll
0x8BB83000 \SystemRoot\system32\drivers\Wdf01000.sys
0x8BC0D000 \SystemRoot\system32\drivers\WDFLDR.SYS
0x8BC1B000 \SystemRoot\system32\DRIVERS\ACPI.sys
0x8BC63000 \SystemRoot\system32\DRIVERS\WMILIB.SYS
0x8BC6C000 \SystemRoot\system32\DRIVERS\msisadrv.sys
0x8BC74000 \SystemRoot\system32\DRIVERS\vdrvroot.sys
0x8BC7F000 \SystemRoot\system32\DRIVERS\pci.sys
0x8BCA9000 \SystemRoot\System32\drivers\partmgr.sys
0x8BCBA000 \SystemRoot\system32\DRIVERS\volmgr.sys
0x8BCCA000 \SystemRoot\System32\drivers\volmgrx.sys
0x8BD15000 \SystemRoot\system32\DRIVERS\intelide.sys
0x8BD1C000 \SystemRoot\system32\DRIVERS\PCIIDEX.SYS
0x8BD2A000 \SystemRoot\System32\drivers\mountmgr.sys
0x8BD40000 \SystemRoot\system32\DRIVERS\atapi.sys
0x8BD49000 \SystemRoot\system32\DRIVERS\ataport.SYS
0x8BD6C000 \SystemRoot\system32\DRIVERS\amdxata.sys
0x8BD75000 \SystemRoot\system32\drivers\fltmgr.sys
0x8BDA9000 \SystemRoot\system32\drivers\fileinfo.sys
0x8BE22000 \SystemRoot\System32\Drivers\Ntfs.sys
0x8BF51000 \SystemRoot\System32\Drivers\msrpc.sys
0x8BF7C000 \SystemRoot\System32\Drivers\ksecdd.sys
0x8BF8F000 \SystemRoot\System32\Drivers\cng.sys
0x8BFEC000 \SystemRoot\System32\drivers\pcw.sys
0x8BE00000 \SystemRoot\System32\Drivers\Fs_Rec.sys
0x8C003000 \SystemRoot\system32\drivers\ndis.sys
0x8C0BA000 \SystemRoot\system32\drivers\NETIO.SYS
0x8C0F8000 \SystemRoot\System32\Drivers\ksecpkg.sys
0x8C227000 \SystemRoot\System32\drivers\tcpip.sys
0x8C370000 \SystemRoot\System32\drivers\fwpkclnt.sys
0x8C3A1000 \SystemRoot\system32\DRIVERS\vmstorfl.sys
0x8C3AA000 \SystemRoot\system32\DRIVERS\volsnap.sys
0x8C3E9000 \SystemRoot\System32\Drivers\spldr.sys
0x8C3F1000 \SystemRoot\system32\speedfan.sys
0x8C11D000 \SystemRoot\System32\drivers\rdyboost.sys
0x8C200000 \SystemRoot\System32\Drivers\mup.sys
0x8C210000 \SystemRoot\System32\drivers\hwpolicy.sys
0x8C218000 \SystemRoot\system32\giveio.sys
0x8C14A000 \SystemRoot\System32\DRIVERS\fvevol.sys
0x8C17C000 \SystemRoot\system32\DRIVERS\disk.sys
0x8C18D000 \SystemRoot\system32\DRIVERS\CLASSPNP.SYS
0x8C1CC000 \SystemRoot\system32\DRIVERS\cdrom.sys
0x8C1EB000 \SystemRoot\System32\Drivers\Null.SYS
0x8C1F2000 \SystemRoot\System32\Drivers\Beep.SYS
0x8BE09000 \SystemRoot\System32\drivers\vga.sys
0x8BDBA000 \SystemRoot\System32\drivers\VIDEOPRT.SYS
0x8BE15000 \SystemRoot\System32\drivers\watchdog.sys
0x8BDDB000 \SystemRoot\System32\DRIVERS\RDPCDD.sys
0x8BDE3000 \SystemRoot\system32\drivers\rdpencdd.sys
0x8BDEB000 \SystemRoot\system32\drivers\rdprefmp.sys
0x8BDF3000 \SystemRoot\System32\Drivers\Msfs.SYS
0x9101E000 \SystemRoot\System32\Drivers\Npfs.SYS
0x9102C000 \SystemRoot\system32\DRIVERS\tdx.sys
0x91043000 \SystemRoot\system32\DRIVERS\TDI.SYS
0x9104E000 \SystemRoot\system32\drivers\afd.sys
0x910A8000 \SystemRoot\System32\DRIVERS\netbt.sys
0x910DA000 \SystemRoot\system32\DRIVERS\wfplwf.sys
0x910E1000 \SystemRoot\system32\DRIVERS\pacer.sys
0x91100000 \SystemRoot\system32\DRIVERS\netbios.sys
0x9110E000 \SystemRoot\system32\DRIVERS\serial.sys
0x91128000 \SystemRoot\system32\DRIVERS\wanarp.sys
0x9113B000 \SystemRoot\system32\DRIVERS\termdd.sys
0x9114B000 \SystemRoot\system32\DRIVERS\rdbss.sys
0x9118C000 \SystemRoot\system32\drivers\nsiproxy.sys
0x91196000 \SystemRoot\system32\DRIVERS\mssmbios.sys
0x911A0000 \SystemRoot\System32\drivers\discache.sys
0x91626000 \SystemRoot\system32\drivers\csc.sys
0x9168A000 \SystemRoot\System32\Drivers\dfsc.sys
0x916A2000 \SystemRoot\system32\DRIVERS\blbdrive.sys
0x916B0000 \SystemRoot\system32\DRIVERS\tunnel.sys
0x916D1000 \SystemRoot\system32\DRIVERS\intelppm.sys
0x92208000 \SystemRoot\system32\DRIVERS\nvlddmkm.sys
0x92D10000 \SystemRoot\system32\DRIVERS\nvBridge.kmd
0x92D12000 \SystemRoot\System32\drivers\dxgkrnl.sys
0x916E3000 \SystemRoot\System32\drivers\dxgmms1.sys
0x92DC9000 \SystemRoot\system32\DRIVERS\HDAudBus.sys
0x92DE8000 \SystemRoot\system32\DRIVERS\l160x86.sys
0x9171C000 \SystemRoot\system32\DRIVERS\usbuhci.sys
0x91727000 \SystemRoot\system32\DRIVERS\USBPORT.SYS
0x91772000 \SystemRoot\system32\DRIVERS\usbehci.sys
0x91781000 \SystemRoot\system32\DRIVERS\serenum.sys
0x9178B000 \SystemRoot\system32\DRIVERS\fdc.sys
0x91796000 \SystemRoot\system32\DRIVERS\parport.sys
0x917AE000 \SystemRoot\system32\DRIVERS\i8042prt.sys
0x917C6000 \SystemRoot\system32\DRIVERS\kbdclass.sys
0x92DF9000 \SystemRoot\system32\DRIVERS\ASACPI.sys
0x917D3000 \SystemRoot\system32\DRIVERS\CompositeBus.sys
0x917E0000 \SystemRoot\system32\drivers\ScreamingBAudio.sys
0x911AC000 \SystemRoot\system32\drivers\portcls.sys
0x91600000 \SystemRoot\system32\drivers\drmk.sys
0x91C33000 \SystemRoot\system32\drivers\ks.sys
0x91C67000 \SystemRoot\system32\DRIVERS\vcsvad.sys
0x91C6C000 \SystemRoot\system32\DRIVERS\AgileVpn.sys
0x91C7E000 \SystemRoot\system32\DRIVERS\rasl2tp.sys
0x91C96000 \SystemRoot\system32\DRIVERS\ndistapi.sys
0x91CA1000 \SystemRoot\system32\DRIVERS\ndiswan.sys
0x91CC3000 \SystemRoot\system32\DRIVERS\raspppoe.sys
0x91CDB000 \SystemRoot\system32\DRIVERS\raspptp.sys
0x91CF2000 \SystemRoot\system32\DRIVERS\rassstp.sys
0x91D09000 \SystemRoot\system32\DRIVERS\hamachi.sys
0x91D0E000 \SystemRoot\system32\DRIVERS\rdpbus.sys
0x91D18000 \SystemRoot\system32\DRIVERS\mouclass.sys
0x91D25000 \SystemRoot\system32\DRIVERS\swenum.sys
0x91D27000 \SystemRoot\system32\DRIVERS\umbus.sys
0x91D35000 \SystemRoot\system32\DRIVERS\usbhub.sys
0x91D79000 \SystemRoot\system32\DRIVERS\flpydisk.sys
0x91D83000 \SystemRoot\System32\Drivers\NDProxy.SYS
0x91D94000 \SystemRoot\system32\drivers\HdAudio.sys
0x9320E000 \SystemRoot\system32\DRIVERS\sis163u.sys
0x93243000 \SystemRoot\system32\DRIVERS\USBD.SYS
0x93245000 \SystemRoot\System32\Drivers\crashdmp.sys
0x93252000 \SystemRoot\System32\Drivers\dump_dumpata.sys
0x9325D000 \SystemRoot\system32\DRIVERS\hidusb.sys
0x93268000 \SystemRoot\system32\DRIVERS\HIDCLASS.SYS
0x9327B000 \SystemRoot\system32\DRIVERS\HIDPARSE.SYS
0x93282000 \SystemRoot\System32\Drivers\dump_atapi.sys
0x9328B000 \SystemRoot\System32\Drivers\dump_dumpfve.sys
0x9329C000 \SystemRoot\system32\DRIVERS\mouhid.sys
0x932A7000 \SystemRoot\system32\DRIVERS\point32k.sys
0x98560000 \SystemRoot\System32\win32k.sys
0x932C9000 \SystemRoot\System32\drivers\Dxapi.sys
0x932D3000 \SystemRoot\system32\DRIVERS\monitor.sys
0x987C0000 \SystemRoot\System32\TSDDD.dll
0x98400000 \SystemRoot\System32\cdd.dll
0x98420000 \SystemRoot\System32\ATMFD.DLL
0x932DE000 \SystemRoot\system32\drivers\luafv.sys
0x932F9000 \SystemRoot\system32\drivers\WudfPf.sys
0x93313000 \SystemRoot\system32\DRIVERS\lltdio.sys
0x93323000 \SystemRoot\system32\DRIVERS\nwifi.sys
0x93369000 \SystemRoot\system32\DRIVERS\ndisuio.sys
0x93379000 \SystemRoot\system32\DRIVERS\rspndr.sys
0x9C803000 \SystemRoot\system32\drivers\HTTP.sys
0x9C888000 \SystemRoot\System32\Drivers\fastfat.SYS
0x9C8B2000 \SystemRoot\system32\DRIVERS\bowser.sys
0x9C8CB000 \SystemRoot\System32\drivers\mpsdrv.sys
0x9C8DD000 \SystemRoot\system32\DRIVERS\mrxsmb.sys
0x9C900000 \SystemRoot\system32\DRIVERS\mrxsmb10.sys
0x9C93B000 \SystemRoot\system32\DRIVERS\mrxsmb20.sys
0x9C956000 \SystemRoot\system32\DRIVERS\parvdm.sys
0x9C95D000 \SystemRoot\system32\drivers\peauth.sys
0x9C9F4000 \SystemRoot\System32\Drivers\secdrv.SYS
0x9338C000 \SystemRoot\System32\DRIVERS\srvnet.sys
0x933AD000 \SystemRoot\System32\drivers\tcpipreg.sys
0xA062C000 \SystemRoot\System32\DRIVERS\srv2.sys
0xA067B000 \SystemRoot\System32\DRIVERS\srv.sys
0xA06CC000 \SystemRoot\system32\DRIVERS\LVPr2Mon.sys
0xA06D1000 \??\C:\Program Files\TuneUp Utilities 2010\TuneUpUtilitiesDriver32.sys
0xA06F3000 \??\C:\Windows\system32\drivers\mbam.sys
0xA06F7000 \??\C:\Users\Base\AppData\Local\Temp\mbr.sys
0x76F00000 \Windows\System32\ntdll.dll
0x47CF0000 \Windows\System32\smss.exe
0x77140000 \Windows\System32\apisetschema.dll

Processes (total 50):
0 System Idle Process
4 System
280 C:\Windows\System32\smss.exe
380 csrss.exe
448 C:\Windows\System32\wininit.exe
460 csrss.exe
508 C:\Windows\System32\services.exe
524 C:\Windows\System32\lsass.exe
532 C:\Windows\System32\lsm.exe
604 C:\Windows\System32\winlogon.exe
688 C:\Windows\System32\svchost.exe
756 C:\Windows\System32\nvvsvc.exe
796 C:\Windows\System32\svchost.exe
880 C:\Windows\System32\svchost.exe
936 C:\Windows\System32\svchost.exe
980 C:\Windows\System32\svchost.exe
1108 C:\Windows\System32\svchost.exe
1212 C:\Windows\System32\nvvsvc.exe
1292 C:\Windows\System32\svchost.exe
1468 C:\Windows\System32\spoolsv.exe
1516 C:\Windows\System32\svchost.exe
1600 C:\Windows\System32\svchost.exe
1632 C:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe
1696 C:\PROGRA~1\COMMON~1\France Telecom\Shared Modules\FTRTSVC\0\FTRTSVC.exe
1808 C:\Windows\System32\taskhost.exe
1848 C:\Program Files\LogMeIn Hamachi\hamachi-2.exe
1948 C:\Program Files\Common Files\logishrd\LVMVFM\LVPrcSrv.exe
2024 C:\Program Files\OO Software\Defrag\oodag.exe
1872 C:\Windows\System32\dwm.exe
1368 C:\Windows\explorer.exe
1068 C:\Program Files\Microsoft\Search Enhancement Pack\SeaPort\SeaPort.exe
2104 C:\Program Files\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
2268 C:\Program Files\Common Files\microsoft shared\Windows Live\WLIDSVC.EXE
2740 C:\Windows\System32\svchost.exe
2812 C:\Windows\System32\svchost.exe
2868 C:\Program Files\Common Files\microsoft shared\Windows Live\WLIDSVCM.EXE
3640 C:\Windows\System32\rundll32.exe
7232 C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe
7876 C:\Windows\System32\svchost.exe
6460 C:\Windows\System32\svchost.exe
4560 C:\Program Files\Windows Media Player\wmpnetwk.exe
4220 C:\Windows\System32\wuauclt.exe
6648 C:\Windows\System32\mobsync.exe
5432 C:\Windows\System32\audiodg.exe
6324 MpCmdRun.exe
5316 C:\Users\Base\Desktop\MBRCheck.exe
964 C:\Windows\System32\conhost.exe
3216 C:\Windows\System32\dllhost.exe
4956 C:\Windows\System32\taskeng.exe
4068 C:\Users\Base\AppData\Local\Google\Update\GoogleUpdate.exe

\\.\C: --> \\.\PhysicalDrive0 at offset 0x00000000'00007e00 (NTFS)
\\.\I: --> \\.\PhysicalDrive0 at offset 0x00000013'15000000 (NTFS)

PhysicalDrive0 Model Number: SAMSUNGHD160JJ, Rev: ZM100-41

Size Device Name MBR Status
--------------------------------------------
149 GB \\.\PhysicalDrive0 Windows 7 MBR code detected
SHA1: 4379A3D43019B46FA357F7DD6A53B45A3CA8FB79


Done!
0
Réponse 13 / 15
Utilisateur anonyme
22 sept. 2010 à 22:17
tu ne dois plus avoir de soucis je pense................
0
Réponse 14 / 15
toychris Messages postés 10 Date d'inscription mardi 21 septembre 2010 Statut Membre Dernière intervention 25 mai 2012
22 sept. 2010 à 22:38
effectivement, ma connection refonctionne convenablement;

En vous remerciant pour votre aide.

Mes respectueuses salutations
0
Réponse 15 / 15
Utilisateur anonyme
22 sept. 2010 à 22:43
Imprime ces instructions car il faudra fermer toutes les fenêtres et applications lors de l'installation et de l'analyse.



▶ Télécharge ici :

Malwarebytes

ou :

Malwarebytes

▶ Installe le ( choisis bien "francais" ; ne modifie pas les paramètres d'installe ) et mets le à jour .

(NB : Si tu as un message d'erreur t'indiquant qu'il te manque "COMCTL32.OCX" lors de l'installe, alors télécharge le ici : COMCTL32.OCX

▶ Potasses le Tuto pour te familiariser avec le prg :


( cela dit, il est très simple d'utilisation ).

relance malwarebytes en suivant scrupuleusement ces consignes :

! Déconnecte toi et ferme toutes applications en cours !

▶ Lance Malwarebyte's .

Fais un examen dit "Complet" .

▶ Laisse le programme travailler ( et ne rien faire d'autre avec le PC durant le scan ).
▶ à la fin tu cliques sur "résultat" .
Vérifie que tous les objets infectés soient validés, puis clique sur " suppression " .

Note : si il faut redémarrer ton PC pour finir le nettoyage, fais le !


Poste le rapport sauvegardé après la suppression des objets infectés (dans l'onglet "rapport/log"de Malwarebytes, le dernier en date)

0