Sujet Précédent Sujet Suivant

Help hijackthis

pasky2000 -  
ep44 Messages postés 7432 Statut Contributeur -
Bonjour,
un peu d'aide pour mon rapport hi jaques
merci d'avance pascal

Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 20:00:42, on 13/08/2008
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\atwtusb.exe
C:\Program Files\iTunes\iTunesHelper.exe
C:\Program Files\Fichiers communs\InstallShield\UpdateService\issch.exe
C:\WINDOWS\System32\M-AudioTaskBarIcon.exe
C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe
C:\Program Files\COMODO\SafeSurf\cssurf.exe
C:\Program Files\COMODO\Firewall\cfp.exe
C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
C:\Program Files\COMODO\Firewall\cmdagent.exe
C:\Program Files\Executive Software\Diskeeper\DkService.exe
C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
C:\Program Files\M-Audio\Conectiv\MAUSBCVInst.exe
C:\Program Files\M-Audio\M-Audio Series II MIDI\MA_CMIDI_Inst.exe
C:\WINDOWS\system32\nvsvc32.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\iPod\bin\iPodService.exe
C:\WINDOWS\system32\wuauclt.exe
C:\Program Files\Trend Micro\HijackThis\HijackThis.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.comodo.com/search/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = https://www.msn.com/fr-fr/?ocid=iehp
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\WINDOWS\PCHealth\HelpCtr\System\panels\blank.htm
R1 - HKCU\Software\Microsoft\Internet Connection Wizard,ShellNext = https://www.sfr.fr/offres-numericable.html
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = 127.0.0.1
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
R3 - URLSearchHook: (no name) - {0579B4B6-0293-4d73-B02D-5EBB0BA0F0A2} - C:\Program Files\AskSBar\SrchAstt\1.bin\A2SRCHAS.DLL
O2 - BHO: Ask Search Assistant BHO - {0579B4B1-0293-4d73-B02D-5EBB0BA0F0A2} - C:\Program Files\AskSBar\SrchAstt\1.bin\A2SRCHAS.DLL
O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 5.0\Reader\ActiveX\AcroIEHelper.ocx
O2 - BHO: (no name) - {53707962-6F74-2D53-2644-206D7942484F} - C:\Program Files\Spybot - Search & Destroy\SDHelper.dll
O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)
O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\2.1.1119.1736\swg.dll
O2 - BHO: Ask Toolbar BHO - {F0D4B231-DA4B-4daf-81E4-DFEE4931A4AA} - C:\Program Files\AskSBar\bar\1.bin\ASKSBAR.DLL
O3 - Toolbar: Veoh Browser Plug-in - {D0943516-5076-4020-A3B5-AEFAF26AB263} - C:\Program Files\Veoh Networks\Veoh\Plugins\reg\VeohToolbar.dll
O3 - Toolbar: Ask Toolbar - {F0D4B239-DA4B-4daf-81E4-DFEE4931A4AA} - C:\Program Files\AskSBar\bar\1.bin\ASKSBAR.DLL
O4 - HKLM\..\Run: [Zone Labs Client] C:\Program Files\Zone Labs\ZoneAlarm\zlclient.exe
O4 - HKLM\..\Run: [AVG7_CC] C:\PROGRA~1\Grisoft\AVGFRE~1\avgcc.exe /STARTUP
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [atwtusb] atwtusb.exe beta
O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe"
O4 - HKLM\..\Run: [ISUSPM Startup] "C:\Program Files\Fichiers communs\InstallShield\UpdateService\isuspm.exe" -startup
O4 - HKLM\..\Run: [ISUSScheduler] "C:\Program Files\Fichiers communs\InstallShield\UpdateService\issch.exe" -start
O4 - HKLM\..\Run: [M-Audio Taskbar Icon] C:\WINDOWS\System32\M-AudioTaskBarIcon.exe
O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe" -osboot
O4 - HKLM\..\Run: [COMODO SafeSurf] "C:\Program Files\COMODO\SafeSurf\cssurf.exe" -s
O4 - HKLM\..\Run: [COMODO Firewall Pro] "C:\Program Files\COMODO\Firewall\cfp.exe" -h
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-19\..\Run: [AVG7_Run] C:\PROGRA~1\Grisoft\AVGFRE~1\avgw.exe /RUNONCE (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'SERVICE RÉSEAU')
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'Default user')
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_04\bin\npjpi150_04.dll
O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_04\bin\npjpi150_04.dll
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\WINDOWS\System32\shdocvw.dll
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\WINDOWS\System32\shdocvw.dll
O10 - Unknown file in Winsock LSP: c:\windows\system32\nwprovau.dll
O16 - DPF: {4F1E5B1A-2A80-42CA-8532-2D05CB959537} (MSN Photo Upload Tool) - http://gfx1.hotmail.com/mail/w2/resources/MSNPUpld.cab
O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) - http://www.update.microsoft.com/...
O20 - AppInit_DLLs: C:\WINDOWS\system32\guard32.dll C:\WINDOWS\system32\cssdll32.dll
O23 - Service: Adobe LM Service - Unknown owner - C:\Program Files\Fichiers communs\Adobe Systems Shared\Service\Adobelmsvc.exe
O23 - Service: Apple Mobile Device - Apple, Inc. - C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
O23 - Service: AVG E-mail Scanner (AVGEMS) - GRISOFT, s.r.o. - C:\PROGRA~1\Grisoft\AVGFRE~1\avgemc.exe
O23 - Service: COMODO Firewall Pro Helper Service (cmdAgent) - Unknown owner - C:\Program Files\COMODO\Firewall\cmdagent.exe
O23 - Service: Diskeeper - Executive Software International, Inc. - C:\Program Files\Executive Software\Diskeeper\DkService.exe
O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Fichiers communs\InstallShield\Driver\1150\Intel 32\IDriverT.exe
O23 - Service: Service de l'iPod (iPod Service) - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: M-Audio Conectiv Installer (MAudioConectivService) - Avid Technology, Inc. - C:\Program Files\M-Audio\Conectiv\MAUSBCVInst.exe
O23 - Service: M-Audio Series II MIDI Installer (MA_CMIDI_InstallerService) - Unknown owner - C:\Program Files\M-Audio\M-Audio Series II MIDI\MA_CMIDI_Inst.exe
O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe
O23 - Service: Pml Driver HPZ12 - HP - C:\WINDOWS\system32\HPZipm12.exe
O23 - Service: Remote Packet Capture Protocol v.0 (experimental) (rpcapd) - CACE Technologies - C:\Program Files\WinPcap\rpcapd.exe
O23 - Service: ServiceLayer - Nokia. - C:\Program Files\PC Connectivity Solution\ServiceLayer.exe
O23 - Service: TrueVector Internet Monitor (vsmon) - Zone Labs, LLC - C:\WINDOWS\system32\ZoneLabs\vsmon.exe
A voir également:

9 réponses

Réponse 1 / 9
ep44 Messages postés 7432 Statut Contributeur 3
 
Bonsoir et bienvenue sur CCM

Ne t'inquiète pas je vais te guider et t'aider à désinfecter ton PC.

pour commencer
Télécharge ToolBar-S&D ( Merci à Eric_71, Angeldark, Sham_Rock et XmichouX )
https://77b4795d-a-62cb3a1a-s-sites.googlegroups.com/site/eric71mespages/ToolBarSD.exe?attachauth=ANoY7cqJWPphpudyTqv7TRo5RQ3nm_Sx8JluVMO59X5E9cyE3j3LqKlmStIqiDqJdIgMJLi7MXn2nKVajQfoWuVvZZ2wIx_vkqO4k4P0K9jh-ra9jaKPXdZcoaVF2UqJZNH8ubL_42uIwh6f35xJ2GJMuzddVj2Qth1DgZ839lxEIFGkgWz3TdfvNMy-YtxfA3gqBUrj4U4LFeAPiWr3ClmjIP0t_Xs5PQ%3D%3D&attredirects=2

* Double-clique sur ToolBar-SD afin de lancer l'installation, un raccourci sera ajouté sur le Bureau.
* Double-clique dessus pour démarrer l'outil; choisis la langue.
* Sous Vista, faire un clic droit et "Exécuter en tant qu'administrateur" (Elévation des privilèges), puis -> Continuer.
* Tape 1 puis sur la touche [Entrée] afin de lancer la recherche.
* Patiente jusqu'à la fin de la recherche.
* À la fin du scan, le rapport s'ouvrira dans le Bloc-notes.
* Poste ce rapport, par copier/coller, dans ta prochaine réponse.
* Le rapport se trouve également sous : C:\TB.txt

** Aide en images
https://sites.google.com/site/toolbarsd/aideenimages

ensuite
Télécharge DiagHelp.zip sur ton bureau http://www.malekal.com/download/DiagHelp.zip
==> Ne double-clic pas dessus !! Fais un clic droit sur le fichier et extraire tout
==> Un nouveau dossier chercher va être créé DiagHelp
==> Ouvre le et double-clic sur go.cmd (le .cmd peut ne pas apparaître)
==> Une fenêtre va s'ouvrir, choisis l'option 1
==> L'analyse va commencer, ceci peut durer quelques minutes, laisse faire et appuie sur une touche quand on te le demande
==> Copie/colle le contenu du bloc-note qui s'ouvre, pour cela :
==> Dans le bloc-note, cliquez sur le menu Edition / Selectionner tout
==> A nouveau menu Edition / copier
==> Dans un nouveau message ici, faire un clic droit / coller
@+

0
Réponse 2 / 9
pasky2000
 
-----------\\ ToolBar S&D 1.0.9 XP/Vista

[ Windows XP (NT 5.1) Build 2600, Service Pack 2 ]
[ USER : pascal ] [ "C:\Toolbar SD" ] [ Selection : 1 ]
[ 14/08/2008 | 13:46:54,65 ] [ PC : PASCAL-VZ0FE7XW ]
[ MAJ : 13-08-2008 | 14:08 ]

-----------\\ Recherche de Fichiers / Dossiers ...

C:\Program Files\AskSBar
C:\Program Files\AskSBar\bar
C:\Program Files\AskSBar\SrchAstt
C:\DOCUME~1\pascal\APPLIC~1\WhenU
C:\DOCUME~1\pascal\APPLIC~1\WhenU\dtStore.dat
C:\Program Files\Fichiers communs\WhenU
C:\Program Files\Fichiers communs\WhenU\DTAdapter.exe
C:\Program Files\Fichiers communs\WhenU\DTPlugin.dll
C:\WINDOWS\iun6002.exe
C:\Program Files\MSN Messenger\riched20.dll
\...\{635abd67-4fe9-1b23-4f01-e679fa7484c1} - (ytoolbar)

-----------\\ Extensions

(pascal) - {635abd67-4fe9-1b23-4f01-e679fa7484c1} => ytoolbar
(pascal) - {a6ca9b3b-5e52-4f47-85d8-cca35bb57596} => sage
(pascal) - {d9284e50-81fc-11da-a72b-0800200c9a66} => yoono
(pascal) - {d9284e50-81fc-11da-a72b-0800200c9a66} => sidebar

-----------\\ [..\Internet Explorer\Main]

[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
"Start Page"="https://www.comodo.com/search/"
"Search Page"="http://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch"

[HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Main]
"Default_Page_URL"="https://www.msn.com/fr-fr/?ocid=iehp"
"Default_Search_URL"="https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF"
"Search Page"="https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF"
"Start Page"="http://www.microsoft.com/isapi/redir.dll?prd={SUB_PRD}&clcid={SUB_CLSID}&pver={SUB_PVER}&ar=home"

--------------------\\ Recherche d'autres infections

--------------------\\ Cracks & Keygens ..

C:\DOCUME~1\pascal\Bureau\dossier dossier dossier\dossierdossier\Nouveau dossier\[Pc App Ita] - DVD Decrypter - AnyDVD - CloneDVD - CopyToDVD - DVD2One - DVD Shrink\AnyDVD\Crack
C:\DOCUME~1\pascal\Bureau\dossier dossier dossier\dossierdossier\Nouveau dossier\[Pc App Ita] - DVD Decrypter - AnyDVD - CloneDVD - CopyToDVD - DVD2One - DVD Shrink\AnyDVD\Crack\AnyDVD.exe
C:\DOCUME~1\pascal\Bureau\dossier dossier dossier\dossierdossier\Nouveau dossier\[Pc App Ita] - DVD Decrypter - AnyDVD - CloneDVD - CopyToDVD - DVD2One - DVD Shrink\AnyDVD\Crack\hgo-dfix.exe
C:\DOCUME~1\pascal\Bureau\dossier dossier dossier\dossierdossier\Nouveau dossier\[Pc App Ita] - DVD Decrypter - AnyDVD - CloneDVD - CopyToDVD - DVD2One - DVD Shrink\AnyDVD\Crack\Istruzioni.txt
C:\DOCUME~1\pascal\Bureau\dossier dossier dossier\dossierdossier\Nouveau dossier\[Pc App Ita] - DVD Decrypter - AnyDVD - CloneDVD - CopyToDVD - DVD2One - DVD Shrink\CloneDVD\KeyGen.exe
C:\DOCUME~1\pascal\Bureau\dossier dossier dossier\dossierdossier\Nouveau dossier\[Pc App Ita] - DVD Decrypter - AnyDVD - CloneDVD - CopyToDVD - DVD2One - DVD Shrink\CopyToDVD\KeyGenerator.exe
C:\DOCUME~1\pascal\Bureau\dossier dossier dossier\dossierdossier\Symbian\WebGate.Advanced.Call.Manager.v2.00.S60.SymbianOS7.Incl.Keygen.Patch-BiNPDA
C:\DOCUME~1\pascal\Bureau\dossier dossier dossier\dossierdossier\Symbian\FTP Arkillo Pack-n-5- Aplicaciones Symbians S60-S70-S80\UltraMP3[1][1].V1.46.S60.with.Keygen.rar
C:\DOCUME~1\pascal\Bureau\dossier dossier dossier\dossierdossier\Symbian\FTP Arkillo Pack-n-5- Aplicaciones Symbians S60-S70-S80\UltraMP3[1][1].V1.46.S60.with.Keygen.rar.rar
C:\DOCUME~1\pascal\Bureau\dossier dossier dossier\dossierdossier\Symbian\SymbianOS, 80 MB appz & gamez, 2006.02.24\Augmentra.ViewRanger.Lake.District.Edition.v1.0.209.S60.SymbianOS7.incl.Keygen-HSpda
C:\DOCUME~1\pascal\Bureau\dossier dossier dossier\dossierdossier\Symbian\SymbianOS, 80 MB appz & gamez, 2006.02.24\Augmentra.ViewRanger.North.Wales.Edition.v1.0.211.S60.SymbianOS7.incl.Keygen-HSpda
C:\DOCUME~1\pascal\Bureau\dossier dossier dossier\dossierdossier\Symbian\SymbianOS, 80 MB appz & gamez, 2006.02.24\Augmentra.ViewRanger.Peak.District.Edition.v1.0.211.S60.SymbianOS7.incl.Keygen-HSpda
C:\DOCUME~1\pascal\Bureau\dossier dossier dossier\dossierdossier\Symbian\SymbianOS, 80 MB appz & gamez, 2006.02.24\Augmentra.ViewRanger.Lake.District.Edition.v1.0.209.S60.SymbianOS7.incl.Keygen-HSpda\file_id.diz
C:\DOCUME~1\pascal\Bureau\dossier dossier dossier\dossierdossier\Symbian\SymbianOS, 80 MB appz & gamez, 2006.02.24\Augmentra.ViewRanger.Lake.District.Edition.v1.0.209.S60.SymbianOS7.incl.Keygen-HSpda\hs-ps154.zip
C:\DOCUME~1\pascal\Bureau\dossier dossier dossier\dossierdossier\Symbian\SymbianOS, 80 MB appz & gamez, 2006.02.24\Augmentra.ViewRanger.Lake.District.Edition.v1.0.209.S60.SymbianOS7.incl.Keygen-HSpda\hs.nfo
C:\DOCUME~1\pascal\Bureau\dossier dossier dossier\dossierdossier\Symbian\SymbianOS, 80 MB appz & gamez, 2006.02.24\Augmentra.ViewRanger.North.Wales.Edition.v1.0.211.S60.SymbianOS7.incl.Keygen-HSpda\file_id.diz
C:\DOCUME~1\pascal\Bureau\dossier dossier dossier\dossierdossier\Symbian\SymbianOS, 80 MB appz & gamez, 2006.02.24\Augmentra.ViewRanger.North.Wales.Edition.v1.0.211.S60.SymbianOS7.incl.Keygen-HSpda\hs-ps155.zip
C:\DOCUME~1\pascal\Bureau\dossier dossier dossier\dossierdossier\Symbian\SymbianOS, 80 MB appz & gamez, 2006.02.24\Augmentra.ViewRanger.North.Wales.Edition.v1.0.211.S60.SymbianOS7.incl.Keygen-HSpda\hs.nfo
C:\DOCUME~1\pascal\Bureau\dossier dossier dossier\dossierdossier\Symbian\SymbianOS, 80 MB appz & gamez, 2006.02.24\Augmentra.ViewRanger.Peak.District.Edition.v1.0.211.S60.SymbianOS7.incl.Keygen-HSpda\file_id.diz
C:\DOCUME~1\pascal\Bureau\dossier dossier dossier\dossierdossier\Symbian\SymbianOS, 80 MB appz & gamez, 2006.02.24\Augmentra.ViewRanger.Peak.District.Edition.v1.0.211.S60.SymbianOS7.incl.Keygen-HSpda\hs-ps156.zip
C:\DOCUME~1\pascal\Bureau\dossier dossier dossier\dossierdossier\Symbian\SymbianOS, 80 MB appz & gamez, 2006.02.24\Augmentra.ViewRanger.Peak.District.Edition.v1.0.211.S60.SymbianOS7.incl.Keygen-HSpda\hs.nfo
C:\DOCUME~1\pascal\Bureau\dossier dossier dossier\dossierdossier\Symbian\WebGate.Advanced.Call.Manager.v2.00.S60.SymbianOS7.Incl.Keygen.Patch-BiNPDA\binpda.nfo
C:\DOCUME~1\pascal\Bureau\dossier dossier dossier\dossierdossier\Symbian\WebGate.Advanced.Call.Manager.v2.00.S60.SymbianOS7.Incl.Keygen.Patch-BiNPDA\file_id.diz
C:\DOCUME~1\pascal\Bureau\dossier dossier dossier\dossierdossier\Symbian\WebGate.Advanced.Call.Manager.v2.00.S60.SymbianOS7.Incl.Keygen.Patch-BiNPDA\WebGate.Advanced.Call.Manager.v2.00.S60.SymbianOS7.Incl.Keygen.Patch-BiNPDA.sis
C:\DOCUME~1\pascal\Mes documents\Ableton\Library\Presets\Audio Effects\Vinyl Distortion\Crack.adv
C:\DOCUME~1\pascal\Mes documents\copie bureau\5star\5star.Audio.Studio.v1.4.9.125.Multilingual.WinALL.Incl.Keygen-ViRiLiTY
C:\DOCUME~1\pascal\Mes documents\copie bureau\5star\5star.Audio.Studio.v1.4.9.125.Multilingual.WinALL.Incl.Keygen-ViRiLiTY.rar
C:\DOCUME~1\pascal\Mes documents\copie bureau\5star\5star.Audio.Studio.v1.4.9.125.Multilingual.WinALL.Incl.Keygen-ViRiLiTY\++GoldEsel - visit us for more brandnew stuff++.url
C:\DOCUME~1\pascal\Mes documents\copie bureau\5star\5star.Audio.Studio.v1.4.9.125.Multilingual.WinALL.Incl.Keygen-ViRiLiTY\++Wichtig - Lesen - readme - www.goldesel.6x.to++.txt
C:\DOCUME~1\pascal\Mes documents\copie bureau\5star\5star.Audio.Studio.v1.4.9.125.Multilingual.WinALL.Incl.Keygen-ViRiLiTY\5star-as.exe
C:\DOCUME~1\pascal\Mes documents\copie bureau\5star\5star.Audio.Studio.v1.4.9.125.Multilingual.WinALL.Incl.Keygen-ViRiLiTY\GEAR.jpg
C:\DOCUME~1\pascal\Mes documents\copie bureau\5star\5star.Audio.Studio.v1.4.9.125.Multilingual.WinALL.Incl.Keygen-ViRiLiTY\keygen.exe
C:\DOCUME~1\pascal\Mes documents\copie bureau\5star\5star.Audio.Studio.v1.4.9.125.Multilingual.WinALL.Incl.Keygen-ViRiLiTY\virility.nfo
C:\DOCUME~1\pascal\Mes documents\copie bureau\bat\Crack
C:\DOCUME~1\pascal\Mes documents\copie bureau\Copie de 5star\5star.Audio.Studio.v1.4.9.125.Multilingual.WinALL.Incl.Keygen-ViRiLiTY
C:\DOCUME~1\pascal\Mes documents\copie bureau\Copie de 5star\5star.Audio.Studio.v1.4.9.125.Multilingual.WinALL.Incl.Keygen-ViRiLiTY.rar
C:\DOCUME~1\pascal\Mes documents\copie bureau\Copie de 5star\5star.Audio.Studio.v1.4.9.125.Multilingual.WinALL.Incl.Keygen-ViRiLiTY\++GoldEsel - visit us for more brandnew stuff++.url
C:\DOCUME~1\pascal\Mes documents\copie bureau\Copie de 5star\5star.Audio.Studio.v1.4.9.125.Multilingual.WinALL.Incl.Keygen-ViRiLiTY\++Wichtig - Lesen - readme - www.goldesel.6x.to++.txt
C:\DOCUME~1\pascal\Mes documents\copie bureau\Copie de 5star\5star.Audio.Studio.v1.4.9.125.Multilingual.WinALL.Incl.Keygen-ViRiLiTY\5star-as.exe
C:\DOCUME~1\pascal\Mes documents\copie bureau\Copie de 5star\5star.Audio.Studio.v1.4.9.125.Multilingual.WinALL.Incl.Keygen-ViRiLiTY\GEAR.jpg
C:\DOCUME~1\pascal\Mes documents\copie bureau\Copie de 5star\5star.Audio.Studio.v1.4.9.125.Multilingual.WinALL.Incl.Keygen-ViRiLiTY\keygen.exe
C:\DOCUME~1\pascal\Mes documents\copie bureau\Copie de 5star\5star.Audio.Studio.v1.4.9.125.Multilingual.WinALL.Incl.Keygen-ViRiLiTY\virility.nfo
C:\DOCUME~1\pascal\Mes documents\copie bureau\kay bat\Battlefield.2.Keygen-ViTALiTY
C:\DOCUME~1\pascal\Mes documents\copie bureau\kay bat\Battlefield.2.Keygen-ViTALiTY.ShadowCast.rar
C:\DOCUME~1\pascal\Mes documents\copie bureau\kay bat\Battlefield.2.Keygen-ViTALiTY\vitality.nfo
C:\DOCUME~1\pascal\Mes documents\copie bureau\kay bat\Battlefield.2.Keygen-ViTALiTY\vtl-bf2k.rar
C:\DOCUME~1\pascal\Mes documents\copie bureau\kay bat\Battlefield.2.Keygen-ViTALiTY\vtl-bf2k.sfv
C:\DOCUME~1\pascal\Mes documents\copie bureau\Nouveau dossier (2)\Crack.zip
C:\DOCUME~1\pascal\Mes documents\movie\dvd2one\keygen.exe
C:\DOCUME~1\pascal\Mes documents\new today\sex & drugs & rock & roll\15 dance of the crackpots.mp3
C:\DOCUME~1\pascal\Mes documents\telechargement\real monitor\Keygen
C:\DOCUME~1\pascal\Mes documents\telechargement\real monitor\Real Spy Monitor v2.71 Incl Keygen.rar
C:\DOCUME~1\pascal\Mes documents\telechargement\real monitor\Keygen\Keymaker.exe

-----------\\ Fin du rapport a 13:49:49,81

DiagHelp version v1.4 - http://www.malekal.com
excute le 14/08/2008 à 13:55:02,79

Liste des derniers fichies modifies/crees dans windir\system32 et prefetch
C:\WINDOWS\prefetch\Layout.ini -->13/08/2008 17:15:19
C:\WINDOWS\prefetch\NTOSBOOT-B00DFAAD.pf -->13/08/2008 03:55:36

C:\WINDOWS\System32\drivers\inspect.sys -->13/08/2008 15:23:53
C:\WINDOWS\System32\drivers\cmdhlp.sys -->13/08/2008 15:23:53
C:\WINDOWS\System32\drivers\cmdguard.sys -->13/08/2008 15:23:53
C:\WINDOWS\System32\drivers\mbamswissarmy.sys -->30/07/2008 20:07:56
C:\WINDOWS\System32\drivers\mbam.sys -->30/07/2008 20:07:52
C:\WINDOWS\System32\drivers\secdrv.sys -->17/02/2008 07:46:07
C:\WINDOWS\System32\drivers\avgclean.sys -->21/12/2007 13:55:51

C:\WINDOWS\System32\nvapps.xml -->14/08/2008 13:44:27
C:\WINDOWS\System32\wpa.dbl -->13/08/2008 20:58:17
C:\WINDOWS\System32\cssdll32.dll -->13/08/2008 15:24:14
C:\WINDOWS\System32\guard32.dll -->13/08/2008 15:23:53
C:\WINDOWS\System32\vsconfig.xml -->12/08/2008 15:36:34
C:\WINDOWS\System32\PerfStringBackup.INI -->30/03/2008 17:33:18
C:\WINDOWS\System32\perfh00C.dat -->30/03/2008 17:33:18
C:\WINDOWS\System32\perfh009.dat -->30/03/2008 17:33:18
C:\WINDOWS\System32\perfc00C.dat -->30/03/2008 17:33:18
C:\WINDOWS\System32\perfc009.dat -->30/03/2008 17:33:18
C:\WINDOWS\System32\LegitCheckControl.dll -->20/03/2008 18:06:36
C:\WINDOWS\System32\spmsg.dll -->20/03/2008 14:41:20
C:\WINDOWS\System32\FNTCACHE.DAT -->31/12/2007 14:35:53
C:\WINDOWS\System32\ssldivx.dll -->30/11/2007 00:30:16
C:\WINDOWS\System32\libdivx.dll -->30/11/2007 00:30:16
C:\WINDOWS\System32\sirenacm.dll -->18/10/2007 11:31:46
C:\WINDOWS\System32\myokent.dll -->23/09/2007 18:18:50
C:\WINDOWS\System32\realspy.lnk -->13/09/2007 06:45:20
C:\WINDOWS\System32\initdebug.nfo -->20/08/2007 18:05:00
C:\WINDOWS\System32\wuaucpl.cpl.mui -->30/07/2007 20:20:06
C:\WINDOWS\System32\wuapi.dll.mui -->30/07/2007 20:19:52
C:\WINDOWS\System32\wuweb.dll -->30/07/2007 20:19:46
C:\WINDOWS\System32\wuaueng.dll -->30/07/2007 20:19:42
C:\WINDOWS\System32\wuapi.dll -->30/07/2007 20:19:36
C:\WINDOWS\System32\wucltui.dll -->30/07/2007 20:19:32

C:\WINDOWS\KB952954.log -->14/08/2008 13:50:16
C:\WINDOWS\KB950974.log -->14/08/2008 13:50:11
C:\WINDOWS\WindowsUpdate.log -->14/08/2008 13:50:03
C:\WINDOWS\KB951698.log -->14/08/2008 13:50:02
C:\WINDOWS\KB951072-v2.log -->14/08/2008 13:49:57
C:\WINDOWS\KB951748.log -->14/08/2008 13:49:52
C:\WINDOWS\KB950749.log -->14/08/2008 13:49:43
C:\WINDOWS\KB944338-v2.log -->14/08/2008 13:49:23
C:\WINDOWS\wiadebug.log -->14/08/2008 13:44:56
C:\WINDOWS\0.log -->14/08/2008 13:44:56
C:\WINDOWS\wiaservc.log -->14/08/2008 13:44:53
C:\WINDOWS\QTFont.qfn -->14/08/2008 13:44:29
C:\WINDOWS\bootstat.dat -->14/08/2008 13:44:19
C:\WINDOWS\SchedLgU.Txt -->13/08/2008 21:14:56
C:\WINDOWS\svcpack.log -->13/08/2008 21:01:36

winlogon.exe
Verified: Signed
svchost.exe
Verified: Signed
ws2_32.dll
Verified: Signed
user32.dll
Verified: Signed
tcpip.sys
Verified: Signed
ndis.sys
Verified: Signed
null.sys
Verified: Signed

ListDLLs v2.25 - DLL lister for Win9x/NT
Copyright (C) 1997-2004 Mark Russinovich
Sysinternals - www.sysinternals.com

------------------------------------------------------------------------------
explorer.exe pid: 1844
Command line: C:\WINDOWS\Explorer.EXE

Base Size Version Path
0x10000000 0x23000 3.00.0023.0357 C:\WINDOWS\system32\guard32.dll
0x00830000 0x3d000 1.00.0000.0007 C:\WINDOWS\system32\cssdll32.dll
0x00a30000 0xd000 1.75.0000.0053 C:\WINDOWS\system32\myokent.dll
0x76f80000 0x7f000 2001.12.4414.0258 C:\WINDOWS\system32\CLBCATQ.DLL
0x77000000 0xd4000 2001.12.4414.0258 C:\WINDOWS\system32\COMRes.dll
0x00fc0000 0x21000 7.03.0002.0006 C:\Program Files\iTunes\iTunesMiniPlayer.dll
0x01110000 0xe000 7.03.0002.0002 C:\Program Files\iTunes\iTunesMiniPlayer.Resources\fr.lproj\iTunesMiniPlayerLocalized.dll
0x01140000 0x23000 7.03.0002.0006 C:\Program Files\iTunes\iTunesMiniPlayer.Resources\iTunesMiniPlayer.dll
0x76ac0000 0x11000 3.05.2284.0000 C:\WINDOWS\system32\ATL.DLL
0x745e0000 0x2c6000 3.01.4000.2435 C:\WINDOWS\system32\msi.dll
0x00e10000 0xf000 1.01.0000.0001 C:\Program Files\AskSBar\SrchAstt\1.bin\A2SRCHAS.DLL
0x00fb0000 0x8000 1.00.0000.0001 C:\Program Files\Adobe\Acrobat 5.0\Reader\ActiveX\AcroIEHelper.ocx
0x02cd0000 0xd5000 1.04.0000.0000 C:\Program Files\Spybot - Search & Destroy\SDHelper.dll
0x01ba0000 0x41000 2.03.0000.0011 C:\Program Files\AskSBar\bar\1.bin\ASKSBAR.DLL
0x5c2e0000 0x51000 8.00.0000.9064 C:\Program Files\OpenOffice.org 2.0\program\shlxthdl.dll
0x60b30000 0x18000 8.00.0000.9054 C:\Program Files\OpenOffice.org 2.0\program\uwinapi.dll
0x7c340000 0x56000 7.10.3052.0004 C:\Program Files\OpenOffice.org 2.0\program\MSVCR71.dll
0x62410000 0x8e000 4.05.2003.0120 C:\Program Files\OpenOffice.org 2.0\program\stlport_vc7145.dll
0x7c3a0000 0x7b000 7.10.3077.0000 C:\Program Files\OpenOffice.org 2.0\program\MSVCP71.dll
0x01bf0000 0x1c000 7.00.0000.0000 C:\Program Files\Adobe\Acrobat 7.0\ActiveX\PDFShell.dll
0x086c0000 0x244000 10.00.0000.3646 C:\WINDOWS\system32\wmvcore.dll
0x070d0000 0x3b000 10.00.0000.3646 C:\WINDOWS\system32\WMASF.DLL
0x03b60000 0x67c000 6.14.0010.7730 C:\WINDOWS\system32\nvcpl.dll
0x74bf0000 0x2c000 4.02.5406.0000 C:\WINDOWS\system32\OLEACC.dll
0x76010000 0x65000 6.02.3104.0000 C:\WINDOWS\system32\MSVCP60.dll
0x039e0000 0x42000 6.14.0010.7730 C:\WINDOWS\system32\NVRSFR.DLL
0x041e0000 0x73000 6.14.0010.10521 C:\WINDOWS\system32\nvshell.dll
0x042d0000 0x9b000 6.85.0089.0005 C:\Program Files\Nokia\Nokia PC Suite 6\phonebrowser.dll
0x04370000 0xb3000 6.85.0107.0006 C:\Program Files\Nokia\Nokia PC Suite 6\PCSCM.dll
0x7c420000 0x87000 8.00.50727.0762 C:\WINDOWS\WinSxS\x86_Microsoft.VC80.CRT_1fc8b3b9a1e18e3b_8.0.50727.762_x-ww_6b128700\MSVCP80.dll
0x78130000 0x9b000 8.00.50727.0762 C:\WINDOWS\WinSxS\x86_Microsoft.VC80.CRT_1fc8b3b9a1e18e3b_8.0.50727.762_x-ww_6b128700\MSVCR80.dll
0x04560000 0xc000 6.85.0059.0000 C:\Program Files\Nokia\Nokia PC Suite 6\Lang\PhoneBrowser_fre.nlr
0x04580000 0x87000 6.85.0017.0000 C:\Program Files\Nokia\Nokia PC Suite 6\Resource\PhoneBrowser_Nokia.ngr
0x04610000 0x2b000 C:\Program Files\WinRAR\rarext.dll
0x038d0000 0x12000 1.01.0000.0000 C:\Program Files\Malwarebytes' Anti-Malware\mbamext.dll
0x621a0000 0x10000 7.05.0000.0409 C:\Program Files\Grisoft\AVG Free\avgse.dll

ListDLLs v2.25 - DLL lister for Win9x/NT
Copyright (C) 1997-2004 Mark Russinovich
Sysinternals - www.sysinternals.com

------------------------------------------------------------------------------
winlogon.exe pid: 848
Command line: winlogon.exe

Base Size Version Path
0x01000000 0x81000 \??\C:\WINDOWS\system32\winlogon.exe
0x10000000 0x23000 3.00.0023.0357 C:\WINDOWS\system32\guard32.dll
0x00490000 0x3d000 1.00.0000.0007 C:\WINDOWS\system32\cssdll32.dll
0x74730000 0x3d000 3.525.1117.0000 C:\WINDOWS\system32\ODBC32.dll
0x20000000 0x18000 3.525.1117.0000 C:\WINDOWS\system32\odbcint.dll
0x011b0000 0xd000 1.75.0000.0053 C:\WINDOWS\system32\myokent.dll
0x77000000 0xd4000 2001.12.4414.0258 C:\WINDOWS\system32\COMRes.dll
0x76f80000 0x7f000 2001.12.4414.0258 C:\WINDOWS\system32\CLBCATQ.DLL

Le volume dans le lecteur C n'a pas de nom.
Le numéro de série du volume est 5C58-9DC2

Répertoire de C:\WINDOWS\system32

19/08/2004 16:09 6 144 csrss.exe
1 fichier(s) 6 144 octets
0 Rép(s) 11 050 471 424 octets libres

Contenu de Downloaded Program Files
Le volume dans le lecteur C n'a pas de nom.
Le numéro de série du volume est 5C58-9DC2

Répertoire de C:\WINDOWS\Downloaded Program Files

17/01/2008 17:43 <REP> .
17/01/2008 17:43 <REP> ..
30/07/2005 00:25 65 desktop.ini
25/07/2002 17:13 24 576 dwusplay.dll
25/07/2002 17:13 196 608 dwusplay.exe
11/08/2005 15:30 417 792 isusweb.dll
20/01/2000 15:25 1 162 Microsoft XML Parser for Java.osd
20/06/2006 16:44 379 704 MsnPUpld.dll
19/06/2006 15:40 393 MsnPUpld.inf
20/06/2006 16:44 117 560 PURen-us.dll
31/05/2002 09:20 117 328 purfr-fr.dll
15/10/2004 07:59 110 592 PURfr-xx.dll
27/03/2006 13:00 5 019 swflash.inf
30/07/2007 20:24 293 wuweb.inf
12 fichier(s) 1 371 092 octets

Total des fichiers listés :
12 fichier(s) 1 371 092 octets
2 Rép(s) 11 050 467 328 octets libres

Recherche de rootkit! (Merci S!Ri)

Recherche d'infections connues

Export des clefs sensibles..

Liste des fichiers en exception sur le pare-feu XP SP2

"%windir%\\system32\\sessmgr.exe"="%windir%\\system32\\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"%windir%\\system32\\ccapp.exe"="%windir%\\system32\\ccapp.exe:*:Enabled:System Process"
"C:\\WINDOWS\\system32\\svchost.exe"="C:\\WINDOWS\\system32\\svchost.exe:*:Enabled:Microsoft Update"
"C:\\Program Files\\Grisoft\\AVG Free\\avginet.exe"="C:\\Program Files\\Grisoft\\AVG Free\\avginet.exe:*:Enabled:avginet.exe"
"C:\\Program Files\\Grisoft\\AVG Free\\avgemc.exe"="C:\\Program Files\\Grisoft\\AVG Free\\avgemc.exe:*:Enabled:avgemc.exe"
"C:\\Program Files\\BitTorrent\\bittorrent.exe"="C:\\Program Files\\BitTorrent\\bittorrent.exe:*:Enabled:BitTorrent"
"C:\\Program Files\\iTunes\\iTunes.exe"="C:\\Program Files\\iTunes\\iTunes.exe:*:Enabled:iTunes"
"C:\\Program Files\\Joost\\xulrunner\\tvprunner.exe"="C:\\Program Files\\Joost\\xulrunner\\tvprunner.exe:*:Enabled:tvprunner"
"C:\\Program Files\\Windows Live\\Messenger\\msnmsgr.exe"="C:\\Program Files\\Windows Live\\Messenger\\msnmsgr.exe:*:Enabled:Windows Live Messenger"
"C:\\Program Files\\Windows Live\\Messenger\\livecall.exe"="C:\\Program Files\\Windows Live\\Messenger\\livecall.exe:*:Enabled:Windows Live Messenger (Phone)"

"%windir%\\system32\\sessmgr.exe"="%windir%\\system32\\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"C:\\Program Files\\Windows Live\\Messenger\\msnmsgr.exe"="C:\\Program Files\\Windows Live\\Messenger\\msnmsgr.exe:*:Enabled:Windows Live Messenger"
"C:\\Program Files\\Windows Live\\Messenger\\livecall.exe"="C:\\Program Files\\Windows Live\\Messenger\\livecall.exe:*:Enabled:Windows Live Messenger (Phone)"

Export de la clef SharedTaskScheduler

[SharedTaskScheduler]
"{438755C2-A8BA-11D1-B96B-00A0C90312E1}"="Pré-chargeur Browseui"
"{8C7461EF-2B13-11d2-BE35-3078302C2030}"="Démon de cache des catégories de composant"

exports des policies
REGEDIT4

[system]
"dontdisplaylastusername"=dword:00000000
"legalnoticecaption"=""
"legalnoticetext"=""
"shutdownwithoutlogon"=dword:00000001
"undockwithoutlogon"=dword:00000001
"DisableRegistryTools"=dword:00000000
"HideLegacyLogonScripts"=dword:00000000
"HideLogoffScripts"=dword:00000000
"RunLogonScriptSync"=dword:00000001
"RunStartupScriptSync"=dword:00000000
"HideStartupScripts"=dword:00000000

Export des clefs sensibles..
Rechercher adresses sensibles dans le fichier HOSTS...
catchme 0.3.1351 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2008-08-14 13:57:37
Windows 5.1.2600 Service Pack 2 NTFS

detected NTDLL code modification:
ZwClose

scanning hidden services & system hive ...

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\sptd\Cfg]
"s0"=dword:141ce95a
"s1"=dword:17eeeab5
"s2"=dword:f2112c64
"h0"=dword:00000001

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4]
"p0"="C:\Program Files\DAEMON Tools\"
"h0"=dword:00000000
"khjeh"=hex:fd,84,33,dc,50,36,c4,23,20,bb,64,b4,d8,0f,96,97,7f,13,b0,17,2b,..

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4\00000001]
"a0"=hex:20,01,00,00,9a,99,94,81,13,5b,99,1f,7e,87,6b,fa,aa,81,83,bf,9c,..
"khjeh"=hex:e7,83,95,f9,f4,4e,39,d6,06,87,86,2c,51,49,99,c7,60,7b,1d,5f,4d,..

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4\00000001\0Jf40]
"khjeh"=hex:d3,87,56,e9,10,98,e2,05,09,be,35,22,e8,56,a8,b5,e1,c2,e5,26,70,..
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet003\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4]
"p0"="C:\Program Files\DAEMON Tools\"
"h0"=dword:00000000
"khjeh"=hex:fd,84,33,dc,50,36,c4,23,20,bb,64,b4,d8,0f,96,97,7f,13,b0,17,2b,..

[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet003\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4\00000001]
"a0"=hex:20,01,00,00,9a,99,94,81,13,5b,99,1f,7e,87,6b,fa,aa,81,83,bf,9c,..
"khjeh"=hex:e7,83,95,f9,f4,4e,39,d6,06,87,86,2c,51,49,99,c7,60,7b,1d,5f,4d,..

[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet003\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4\00000001\0Jf40]
"khjeh"=hex:d3,87,56,e9,10,98,e2,05,09,be,35,22,e8,56,a8,b5,e1,c2,e5,26,70,..

scanning hidden registry entries ...

scanning hidden files ...

scan completed successfully
hidden services: 0
hidden files: 0

KProcCheck Version 0.2-beta1 Proof-of-Concept by SIG^2 (www.security.org.sg)

Process list by traversal of KiWaitListHead

4 - System
204 - cfp.exe
420 - AppleMobileDevi
444 - cmdagent.exe
504 - DkService.exe
536 - GoogleUpdaterSe
824 - csrss.exe
848 - winlogon.exe
900 - services.exe
912 - lsass.exe
980 - msnmsgr.exe
1084 - svchost.exe
1152 - svchost.exe
1248 - svchost.exe
1412 - svchost.exe
1748 - firefox.exe
1844 - explorer.exe
2004 - iTunesHelper.ex
2488 - cmd.exe
2548 - iPodService.exe
3056 - alg.exe
3484 - usnsvc.exe
3608 - iexplore.exe

Total number of processes = 23
NOTE: Under WinXP, this will not show all processes.

KProcCheck Version 0.2-beta1 Proof-of-Concept by SIG^2 (www.security.org.sg)

Driver/Module list by traversal of PsLoadedModuleList

804D7000 - \WINDOWS\system32\ntoskrnl.exe
80701000 - \WINDOWS\system32\hal.dll
F7D2E000 - \WINDOWS\system32\KDCOM.DLL
F7C3E000 - \WINDOWS\system32\BOOTVID.dll
F773D000 - sptd.sys
F7D30000 - \WINDOWS\System32\Drivers\WMILIB.SYS
F7725000 - \WINDOWS\System32\Drivers\SPTD4637.SYS
F76F6000 - ACPI.sys
F76E5000 - pci.sys
F782E000 - isapnp.sys
F783E000 - ohci1394.sys
F784E000 - \WINDOWS\System32\DRIVERS\1394BUS.SYS
F7DF6000 - pciide.sys
F7AAE000 - \WINDOWS\System32\DRIVERS\PCIIDEX.SYS
F785E000 - MountMgr.sys
F76C6000 - ftdisk.sys
F7AB6000 - PartMgr.sys
F786E000 - VolSnap.sys
F76AE000 - atapi.sys
F787E000 - disk.sys
F788E000 - \WINDOWS\System32\DRIVERS\CLASSPNP.SYS
F768F000 - fltmgr.sys
F767D000 - sr.sys
F789E000 - PxHelp20.sys
F7666000 - KSecDD.sys
F75D9000 - Ntfs.sys
F75C7000 - inspect.sys
F759A000 - \WINDOWS\System32\DRIVERS\NDIS.SYS
F7ABE000 - \WINDOWS\System32\DRIVERS\TDI.SYS
F7D32000 - speedfan.sys
F78AE000 - sbp2port.sys
F757F000 - Mup.sys
F7DF7000 - giveio.sys
F78DE000 - \SystemRoot\System32\DRIVERS\nic1394.sys
F791E000 - \SystemRoot\System32\DRIVERS\intelppm.sys
F6DDD000 - \SystemRoot\System32\DRIVERS\nv4_mini.sys
F6DC9000 - \SystemRoot\System32\DRIVERS\VIDEOPRT.SYS
F6DA5000 - \SystemRoot\System32\DRIVERS\HDAudBus.sys
F7B26000 - \SystemRoot\System32\DRIVERS\usbuhci.sys
F6D82000 - \SystemRoot\System32\DRIVERS\USBPORT.SYS
F7B2E000 - \SystemRoot\System32\DRIVERS\usbehci.sys
F6D3A000 - \SystemRoot\system32\DRIVERS\delta.sys
F6D16000 - \SystemRoot\system32\DRIVERS\portcls.sys
F793E000 - \SystemRoot\system32\DRIVERS\drmk.sys
F6CF3000 - \SystemRoot\system32\DRIVERS\ks.sys
F79BE000 - \SystemRoot\System32\DRIVERS\fetnd5b.sys
F7B46000 - \SystemRoot\System32\DRIVERS\fdc.sys
F6CE2000 - \SystemRoot\System32\DRIVERS\serial.sys
F7D02000 - \SystemRoot\System32\DRIVERS\serenum.sys
F6CCE000 - \SystemRoot\System32\DRIVERS\parport.sys
F79CE000 - \SystemRoot\System32\DRIVERS\i8042prt.sys
F7B4E000 - \SystemRoot\System32\DRIVERS\mouclass.sys
F7B56000 - \SystemRoot\System32\DRIVERS\kbdclass.sys
F79DE000 - \SystemRoot\System32\DRIVERS\imapi.sys
F79EE000 - \SystemRoot\System32\DRIVERS\cdrom.sys
F79FE000 - \SystemRoot\System32\DRIVERS\redbook.sys
F7B5E000 - \SystemRoot\System32\Drivers\GEARAspiWDM.sys
F6C6A000 - \SystemRoot\System32\Drivers\dtscsi.sys
F6C52000 - \SystemRoot\System32\Drivers\SCSIPORT.SYS
F7F1B000 - \SystemRoot\System32\DRIVERS\audstub.sys
F78EE000 - \SystemRoot\System32\DRIVERS\rasl2tp.sys
F7D26000 - \SystemRoot\System32\DRIVERS\ndistapi.sys
F6C3B000 - \SystemRoot\System32\DRIVERS\ndiswan.sys
F71EA000 - \SystemRoot\System32\DRIVERS\raspppoe.sys
F71DA000 - \SystemRoot\System32\DRIVERS\raspptp.sys
F6C2A000 - \SystemRoot\System32\DRIVERS\psched.sys
F71CA000 - \SystemRoot\System32\DRIVERS\msgpc.sys
F7B76000 - \SystemRoot\System32\DRIVERS\ptilink.sys
F7B7E000 - \SystemRoot\System32\DRIVERS\raspti.sys
F71BA000 - \SystemRoot\System32\DRIVERS\termdd.sys
F7DD0000 - \SystemRoot\System32\DRIVERS\swenum.sys
F6BF6000 - \SystemRoot\System32\DRIVERS\update.sys
F755B000 - \SystemRoot\System32\DRIVERS\mssmbios.sys
F71AA000 - \SystemRoot\System32\Drivers\NDProxy.SYS
F59BC000 - \SystemRoot\system32\drivers\cmudax.sys
F717A000 - \SystemRoot\System32\DRIVERS\usbhub.sys
F7DEA000 - \SystemRoot\System32\DRIVERS\USBD.SYS
F7BDE000 - \SystemRoot\System32\DRIVERS\flpydisk.sys
F59A8000 - \SystemRoot\System32\DRIVERS\cmdguard.sys
F7D46000 - \SystemRoot\System32\Drivers\Fs_Rec.SYS
F7ED7000 - \SystemRoot\System32\Drivers\Null.SYS
F7D48000 - \SystemRoot\System32\Drivers\Beep.SYS
F7ED8000 - \SystemRoot\system32\drivers\avgclean.sys
F7BF6000 - \SystemRoot\system32\DRIVERS\HIDPARSE.SYS
F7BFE000 - \SystemRoot\System32\drivers\vga.sys
F7D4C000 - \SystemRoot\System32\Drivers\mnmdd.SYS
F7D4E000 - \SystemRoot\System32\DRIVERS\RDPCDD.sys
F7C06000 - \SystemRoot\System32\Drivers\Msfs.SYS
F7C0E000 - \SystemRoot\System32\Drivers\Npfs.SYS
F7D16000 - \SystemRoot\System32\DRIVERS\rasacd.sys
F5975000 - \SystemRoot\System32\DRIVERS\ipsec.sys
F591D000 - \SystemRoot\System32\DRIVERS\tcpip.sys
F7C1E000 - \SystemRoot\System32\DRIVERS\cmdhlp.sys
F58D4000 - \SystemRoot\System32\DRIVERS\ipnat.sys
F795E000 - \SystemRoot\System32\DRIVERS\wanarp.sys
F58AC000 - \SystemRoot\System32\DRIVERS\netbt.sys
F5853000 - \SystemRoot\System32\vsdatant.sys
F796E000 - \SystemRoot\System32\DRIVERS\arp1394.sys
F5831000 - \SystemRoot\System32\drivers\afd.sys
F797E000 - \SystemRoot\System32\DRIVERS\netbios.sys
F5765000 - \SystemRoot\System32\DRIVERS\rdbss.sys
F79AE000 - \??\C:\WINDOWS\system32\drivers\oreans32.sys
F7523000 - \SystemRoot\system32\ckldrv.sys
F56CE000 - \SystemRoot\System32\DRIVERS\mrxsmb.sys
F792E000 - \SystemRoot\System32\Drivers\Fips.SYS
F56AB000 - \SystemRoot\System32\Drivers\Fastfat.SYS
F7108000 - \??\C:\WINDOWS\system32\Drivers\USBCRFT.SYS
F7ACE000 - \SystemRoot\System32\DRIVERS\USBSTOR.SYS
F7A2E000 - \SystemRoot\System32\Drivers\Cdfs.SYS
F5693000 - \SystemRoot\System32\Drivers\dump_atapi.sys
F7D8C000 - \SystemRoot\System32\Drivers\dump_WMILIB.SYS
BF800000 - \SystemRoot\System32\win32k.sys
F7B36000 - \SystemRoot\System32\watchdog.sys
F590D000 - \SystemRoot\System32\drivers\Dxapi.sys
BF9C1000 - \SystemRoot\System32\drivers\dxg.sys
F7EFD000 - \SystemRoot\System32\drivers\dxgthk.sys
BF9D3000 - \SystemRoot\System32\nv4_disp.dll
BACF8000 - \SystemRoot\System32\DRIVERS\ndisuio.sys
B9AA3000 - \SystemRoot\system32\drivers\wdmaud.sys
BABD8000 - \SystemRoot\system32\drivers\sysaudio.sys
BFFA0000 - \SystemRoot\System32\ATMFD.DLL
B8D1C000 - \SystemRoot\System32\DRIVERS\mrxdav.sys
F7D5C000 - \SystemRoot\System32\Drivers\ParVdm.SYS
B8388000 - \SystemRoot\System32\DRIVERS\srv.sys
B8427000 - \SystemRoot\System32\DRIVERS\secdrv.sys
B7C6E000 - \SystemRoot\System32\Drivers\HTTP.sys
F7E8F000 - \SystemRoot\System32\DRIVERS\KProcCheck.sys

Total number of drivers = 127

Liste des programmes installes

[webwiz] - webcam via ftp
1200-V2 WIRELESS SCROLL TABLET
5star Audio Studio
A0 DK1 v1.2
Ableton Live v6.0.7
ACE Mega CoDecS Pack
Ad-Aware SE Personal
Adobe Acrobat 5.0
Adobe Flash Player 9 ActiveX
Adobe Flash Player ActiveX
Adobe Photoshop CS
Adobe Reader 7.0 - Français
Adobe SVG Viewer 3.0
AKAI professional Plugins Pack v1.01-OxYGeN
AlertInfo
Anarchy Effects VST v1.3
Antares Kantos v1.0
Antares Tube v1.0
Any Video Converter 1.0
Apple Mobile Device Support
Apple Software Update
Archiveur WinRAR
ARP2600 V
Arturia Arp2600 V v1.0
Arturia Minimoog V v1.0
Ask Toolbar
Assistant de connexion Windows Live
Atomic Clock Sync
Attack on Pearl Harbor Demo
Audacity 1.2.6
AutoUpdate
AVG Free Edition
BitRoll version 1.0
BitTorrent 5.0.2
C-Media High Definition Audio Driver
CCleaner (remove only)
CDex extraction audio
ClickImpôts plus 2007 2007.2.524
Comanche 4
COMODO Firewall Pro
COMODO SafeSurf
Conectiv
Correctif Windows XP - KB887472
CS-80V beta4
CyberIpod iPodManager 1.0.0.3
daHornet Version 1.34
Delta
Disc2Phone
Diskeeper Professional Edition
DivX
DivX Content Uploader
DivX Player
DivX Web Player
DSP Shoutcast 1.9
DVD Decrypter (Remove Only)
DVD2one 1.30
DVD2one V2.0.6
EasyCleaner
Emagic EVP73 VSTi v1.0
eMule
Enigma
EVEREST Home Edition v2.20
EZdrummer
EZXCocktail
FileZilla (remove only)
FruityLoops v3.4
GForce - impOSCar
GMedia Music impOSCar VSTi v1.0.0.1
Google Earth
GRM Tools VST v1.0
Guitar Pro 5.0
hp psc 2100 series
IKEA HomePlanner Kitchen
IL-2 Sturmovik: Forgotten Battles
IL-2 Sturmovik: Forgotten Battles
IL-2 Sturmovik: Forgotten Battles AEP
IL-2 Sturmovik: Forgotten Battles AEP
IrfanView (remove only)
iTunes
J'apprends la guitare
J2SE Runtime Environment 5.0 Update 4
Joost (tm) 0.12.0
Lecteur Windows Media 10
Linplug RM IV v4.1.1
Live 4.0.1
Live 5.2
Logiciel QuickCam de Logitech
M-Audio Series II MIDI
Ma-Config.com
MachFive
Macromedia Dreamweaver 8
Macromedia Extension Manager
Malwarebytes' Anti-Malware
Medion Flash XL 2.0
Micro Application - Architecte Studio 2006
Microsoft .NET Framework 1.1
Microsoft .NET Framework 1.1
Microsoft .NET Framework 2.0
Microsoft .NET Framework 2.0
MIDI Yoke
Mise à jour pour Windows XP (KB898461)
Mon Assistant Internet
Mozilla (1.7.13)
Mozilla Firefox (3.0.1)
Mozilla Thunderbird (1.0.7)
MSVC80_x86
Multimedia Keyboard Driver Ver1.0 (KB-0108)
Native Instruments Absynth 4
Native Instruments B4 v1.11
Native Instruments B4 v2.0.0.7
Native Instruments FM7 VSTi DXI RTAS v1.1.3.4
Native Instruments Massive v1.0.1.008 VSTi DXi RTAS
Native Instruments Pro-53 v3.02
Native.Instruments Battery v3.0.1.005 VSTi DXi RTAS
Native.Instruments.Kontakt.v2.0.2.007
Nero Media Player
Nero OEM
NeroVision Express 2
NetMeter 0.9.9.9 (beta 2)
NetPeeker 2.83
No-IP.com DUC (remove only)
Nokia Connectivity Cable Driver
Nokia PC Suite
Nokia PC Suite
Nord Modular G2 Demo v1.40
NVIDIA Drivers
OpenOffice.org 2.0
Outil de mise à jour Google
Package de pilotes Windows - Nokia Modem (08/03/2007 6.84.0.2)
Package de pilotes Windows - Nokia Modem (10/12/2007 3.6)
PC Connectivity Solution
Photo et imagerie HP 2.0 - All-in-One
Photo et imagerie HP 2.0 - All-in-One Pilote
Photo et imagerie HP 2.0 - hp psc 2100 series
Phrogram
Piano Méthode Interactive
Port Detective
Programme de gestion Camera de Logitech®
Quick Zip 4.60.013
QuickPar 0.9
QuickTime
Real Spy Monitor 2.71
RealPlayer
ReBirth RB-338 2.01
Registry First Aid
Rob Papen Albino 3
Rob Papen Predator V1.01b release
RSS Xpress 2.5.159
SAMSUNG Mobile USB Modem 1.0 Software
Samsung PC Studio
Samsung PC Studio
Samsung PC Studio 3 USB Driver Installer
Satsuki Decoder Pack
SHOUTcast DNAS (remove only)
SiSoftware Sandra Lite 2005.SR3 (Win64/32/CE)
Sonicbytes Gat'R 1.1
Sony Ericsson PC Suite
Sony Sound Forge 8.0d
SoulSeek Client 156c
SpeedFan (remove only)
SpeedSoft Virtual Sampler
Spybot - Search & Destroy 1.4
StationRipper 2.33C
Super Winspy v3.0
tagtraum industries beaTunes 1.1.5
TomTom HOME
Torq 1.0 (build 004 -- Thu Aug 24 2006)
TribalWeb.net
TVUPlayer 2.3.0.0
ubi.com
VeohTV BETA
VeohTV BETA
Voxengo Vintage Modulator VST 1.3
Waves Mercury Complete VST DX RTAS v1.01
WebFldrs XP
Winamp (remove only)
Windows Genuine Advantage v1.3.0254.0
Windows Genuine Advantage Validation Tool (KB892130)
Windows Genuine Advantage Validation Tool (KB892130)
Windows Installer 3.1 (KB893803)
Windows Live installer
Windows Live Messenger
Windows Media Format Runtime
Windows XP Service Pack 2
WinPcap 3.1
Winwatch 2.41 2.41
WiziWYG XP
ZoneAlarm

Le volume dans le lecteur C n'a pas de nom.
Le numéro de série du volume est 5C58-9DC2

Répertoire de C:\Program Files

13/08/2008 15:24 <REP> .
13/08/2008 15:24 <REP> ..
19/07/2006 02:19 <REP> [webwiz]
12/07/2007 22:16 <REP> Ableton
30/07/2005 01:08 <REP> ACE Mega CoDecS Pack
25/05/2007 14:15 <REP> Adobe
06/09/2005 18:41 <REP> Ahead
15/07/2006 08:05 <REP> AlertInfo
09/07/2007 18:51 <REP> Antares
01/12/2006 04:28 <REP> Any Video Converter
05/09/2007 07:20 <REP> Apple Software Update
21/03/2006 19:22 <REP> arcDev Noise Industries
23/03/2006 15:57 <REP> Arturia
13/08/2008 15:24 <REP> AskSBar
14/11/2005 15:42 <REP> Atomic Clock Sync
04/02/2008 18:41 <REP> Attack on Pearl Harbor Demo
06/10/2007 16:53 <REP> Audacity
24/11/2006 02:31 <REP> BitRoll
03/12/2006 16:50 <REP> BitTorrent
12/12/2005 19:22 <REP> Cam-X
01/12/2006 16:58 <REP> CCleaner
12/12/2005 19:28 <REP> CDex_150
01/03/2006 16:43 <REP> Clavia
30/05/2007 21:07 <REP> ClickImpots plus 2007
13/08/2007 06:06 <REP> Common Files
13/08/2008 15:24 <REP> COMODO
30/07/2005 00:24 <REP> ComPlus Applications
11/03/2008 18:20 <REP> cw5
04/09/2007 19:45 <REP> CyberIPod.com
13/08/2008 17:45 <REP> DAEMON Tools
28/11/2006 08:06 <REP> Dictionnaire
12/03/2008 20:37 <REP> DIFX
01/03/2006 03:30 <REP> Digidesign
28/02/2006 02:50 <REP> DigitalSoundPlanet
25/05/2007 14:15 <REP> directx
06/03/2008 21:24 <REP> Disc2Phone
31/12/2007 01:38 <REP> DivX
03/12/2006 17:13 <REP> DVD Decrypter
12/03/2007 18:03 <REP> DVD2one
27/03/2006 23:43 <REP> DVD2one V2
24/05/2007 13:48 <REP> Elaborate Bytes
13/08/2008 03:22 <REP> eMule
13/08/2006 15:56 <REP> Engelmann Media
12/08/2005 19:05 <REP> Executive Software
13/08/2008 14:20 <REP> Fichiers communs
10/04/2006 18:53 <REP> FileZilla
21/11/2005 06:40 <REP> Fire International
29/09/2007 18:58 <REP> FruityLoops 3.4
12/12/2005 19:21 <REP> Fx Audio Conveter
06/08/2007 19:22 <REP> GameSpy Arcade
06/08/2007 19:19 <REP> GForce
30/04/2008 03:17 <REP> Google
13/10/2006 14:51 <REP> Grisoft
31/12/2007 14:56 <REP> Guitar Pro 5
11/12/2006 08:08 <REP> HammerSnipe PowerTool
07/07/2007 18:54 <REP> hardwaredetection
26/03/2007 18:39 <REP> Hewlett-Packard
05/05/2006 00:36 <REP> ICQLite
05/05/2006 00:20 <REP> ICQToolbar
30/07/2005 00:35 <REP> Intel
30/07/2005 00:50 <REP> Internet Explorer
05/09/2007 07:25 <REP> iPod
28/01/2007 18:53 <REP> IrfanView
05/09/2007 07:25 <REP> iTunes
04/08/2005 16:37 <REP> Java
07/09/2007 05:40 <REP> Joost
14/02/2008 15:58 <REP> Lavalys
30/07/2005 01:32 <REP> Lavasoft
07/08/2005 22:38 <REP> Logitech
04/03/2007 23:43 <REP> M3 GAME Manager
23/03/2006 16:44 <REP> MachFive Files
12/12/2005 00:13 <REP> Macromedia
13/08/2008 15:20 <REP> Malwarebytes' Anti-Malware
09/04/2008 16:25 <REP> M-Audio
01/02/2006 02:39 <REP> M-Audio Delta
30/07/2005 16:14 <REP> Messenger
27/05/2006 19:03 <REP> Micro Application
30/07/2005 00:26 <REP> microsoft frontpage
30/07/2005 01:20 <REP> Motive
30/07/2005 00:50 <REP> Movie Maker
30/07/2005 01:12 <REP> Mozilla
14/08/2008 13:58 <REP> Mozilla Firefox
15/12/2005 19:43 <REP> Mozilla Thunderbird
28/04/2006 19:32 <REP> mozilla.org
30/07/2005 00:23 <REP> MSN
30/07/2005 00:23 <REP> MSN Gaming Zone
17/06/2008 05:32 <REP> MSN Messenger
25/05/2007 14:16 <REP> Musicalis
13/08/2007 06:49 <REP> Native Instruments
30/07/2005 00:49 <REP> NetMeeting
17/10/2006 11:45 <REP> NetMeter
05/12/2006 17:25 <REP> NetPeeker
12/12/2005 14:34 <REP> No-IP
12/03/2008 20:36 <REP> Nokia
07/07/2006 05:28 <REP> NovaLogic
30/07/2005 01:20 <REP> Numericable
26/11/2006 07:20 <REP> OpenOffice.org 2.0
30/07/2005 00:49 <REP> Outlook Express
12/03/2008 20:36 <REP> PC Connectivity Solution
13/02/2008 16:58 <REP> Port Detective
14/11/2000 03:21 1 355 776 PortScan.exe
09/07/2007 18:07 <REP> Praxisoft
06/10/2006 17:03 <REP> QuickPar
05/09/2007 07:24 <REP> QuickTime
01/03/2006 08:28 <REP> QuickZip4
11/10/2007 02:23 <REP> Rapid Evolution
13/08/2006 06:02 <REP> Ratajik Software
31/07/2005 16:31 <REP> Real
17/07/2006 12:15 <REP> RFA
17/07/2006 20:45 <REP> RFA Platinum
28/11/2006 16:00 <REP> RSS Xpress
13/05/2006 20:43 <REP> Samsung
20/03/2007 03:34 <REP> Satsuki Decoder Pack
30/07/2005 00:23 <REP> Services en ligne
23/03/2006 16:45 2 595 setuplog.txt
12/12/2005 14:17 <REP> SHOUTcast
24/11/2005 14:00 <REP> SiSoftware
17/10/2006 11:55 <REP> Snort
13/10/2006 14:30 <REP> Softwin
24/11/2005 14:29 <REP> Sony
22/11/2007 22:16 <REP> Sony Ericsson
24/11/2005 15:16 <REP> Sony Setup
07/08/2008 22:09 <REP> Soulseek
21/08/2007 17:32 <REP> SpeedFan
13/04/2006 20:13 <REP> Spybot - Search & Destroy
01/03/2006 03:58 <REP> Steinberg
10/12/2007 14:10 <REP> tagtraum industries
07/01/2007 08:40 <REP> The Phrogram Company
25/04/2008 15:11 <REP> TomTom DesktopSuite
26/04/2008 18:57 <REP> TomTom HOME
30/07/2005 01:36 <REP> ToniArts
26/09/2007 04:22 <REP> Toontrack
13/08/2008 14:54 <REP> Trend Micro
23/11/2006 17:05 <REP> TribalWeb.net
24/01/2007 21:32 <REP> TurnTool
07/01/2007 06:22 <REP> TVUPlayer
09/02/2008 17:04 <REP> Ubi Soft
09/02/2008 17:04 <REP> ubi.com
23/03/2006 16:45 3 972 uninstal.log
15/01/2008 02:33 <REP> Veoh Networks
27/04/2008 02:21 <REP> Waves
28/11/2006 16:00 <REP> Winamp
17/06/2008 05:32 <REP> Windows Live
23/09/2005 11:28 <REP> Windows Media Player
30/07/2005 00:49 <REP> Windows NT
17/10/2006 11:57 <REP> WinPcap
01/03/2006 03:51 <REP> WinRAR
31/07/2005 19:57 <REP> Winspy
28/01/2007 16:15 <REP> winwat
30/07/2005 00:26 <REP> xerox
06/08/2007 19:23 <REP> Yahoo!
30/07/2005 00:58 <REP> Zone Labs
3 fichier(s) 1 362 343 octets
149 Rép(s) 11 047 522 304 octets libres
Le volume dans le lecteur C n'a pas de nom.
Le numéro de série du volume est 5C58-9DC2

Répertoire de C:\Program Files\fichiers communs

13/08/2008 14:20 <REP> .
13/08/2008 14:20 <REP> ..
25/05/2007 14:15 <REP> Adobe
02/08/2005 18:58 <REP> Adobe Systems Shared
06/09/2005 18:39 <REP> Ahead
05/09/2007 07:20 <REP> Apple
05/04/2006 18:12 <REP> AVSMedia
28/02/2006 04:25 <REP> Digidesign
11/12/2006 07:04 <REP> HammerTap
26/03/2007 18:40 <REP> Hewlett-Packard
19/07/2007 17:03 <REP> InstallShield
04/08/2005 16:36 <REP> Java
07/08/2005 22:38 <REP> Logitech
12/12/2005 00:14 <REP> Macromedia
17/06/2008 05:32 <REP> Microsoft Shared
28/04/2006 19:32 <REP> mozilla.org
30/07/2005 00:24 <REP> MSSoap
13/08/2007 06:49 <REP> Native Instruments
12/03/2008 20:37 <REP> Nokia
30/07/2005 00:41 <REP> ODBC
12/03/2008 20:36 <REP> PCSuite
09/02/2008 17:04 <REP> PocketSoft
08/05/2006 18:39 <REP> Real
30/07/2005 00:24 <REP> Services
22/10/2006 03:22 <REP> Softwin
12/03/2008 20:22 <REP> Sony Ericsson Shared
30/07/2005 00:41 <REP> SpeechEngines
30/07/2005 00:50 <REP> System
12/03/2008 20:23 <REP> Teleca Shared
02/06/2006 19:09 <REP> WhenU
21/11/2006 15:19 <REP> Wise Installation Wizard
08/05/2006 18:39 <REP> xing shared
0 fichier(s) 0 octets
32 Rép(s) 11 047 526 400 octets libres
Le volume dans le lecteur C n'a pas de nom.
Le numéro de série du volume est 5C58-9DC2

Répertoire de C:\Program Files\fichiers communs\Microsoft Shared\Web Folders

30/07/2005 00:29 <REP> .
30/07/2005 00:29 <REP> ..
18/05/2001 17:57 561 209 MSONSEXT.DLL
03/06/1999 14:09 122 937 MSOWS409.DLL
07/03/2001 09:00 127 033 MSOWS40c.DLL
3 fichier(s) 811 179 octets
2 Rép(s) 11 047 526 400 octets libres
Le volume dans le lecteur C n'a pas de nom.
Le numéro de série du volume est 5C58-9DC2

Répertoire de C:\Program Files\common files

13/08/2007 06:06 <REP> .
13/08/2007 06:06 <REP> ..
13/08/2007 06:06 <REP> Digidesign
30/07/2005 01:21 <REP> Motive
0 fichier(s) 0 octets
4 Rép(s) 11 047 526 400 octets libres
Le volume dans le lecteur C n'a pas de nom.
Le numéro de série du volume est 5C58-9DC2

Répertoire de C:\

19/03/2007 17:04 0 svcipa.exe
24/05/2001 12:59 162 304 UNWISE.EXE
2 fichier(s) 162 304 octets
0 Rép(s) 11 047 526 400 octets libres

c:\Documents and Settings\All Users\Application Data\Apple Computer\Installer Cache\iTunes 7.3.2.6\iTunesSetupAdmin.exe
c:\Documents and Settings\All Users\Application Data\Installations\{29466F9C-7C6A-419C-B301-F440FAF78760}\Nokia_PC_Suite_rel_6_85_14_1_fre_web.exe
c:\Documents and Settings\All Users\Application Data\Installations\{29466F9C-7C6A-419C-B301-F440FAF78760}\Installer\CommonCustomActions\UninstCCD.exe
c:\Documents and Settings\All Users\Application Data\Installations\{29466F9C-7C6A-419C-B301-F440FAF78760}\Installer\CommonCustomActions\UninstPCS.exe
c:\Documents and Settings\All Users\Application Data\Installations\{29466F9C-7C6A-419C-B301-F440FAF78760}\Installer\CommonCustomActions\UninstPCSFEMsi.exe
c:\Documents and Settings\All Users\Application Data\Installations\{29466F9C-7C6A-419C-B301-F440FAF78760}\Packages\Nokia_PC_Suite\CustomActions\NSU_Inst_fix.exe
c:\Documents and Settings\LocalService\Application Data\16flaw\corn book sect.exe
c:\Documents and Settings\pascal\Application Data\16flaw\corn book sect.exe
c:\Documents and Settings\pascal\Application Data\Macromedia\Flash Player\www.macromedia.com\bin\fpupdatepl\fpupdatepl.exe
c:\Documents and Settings\pascal\Application Data\Microsoft\Installer\{147567F0-8575-4BE0-B5B3-62706C67FA5A}\ARPPRODUCTICON.exe
c:\Documents and Settings\pascal\Application Data\Microsoft\Installer\{43E8D9E7-AFC9-4BA3-8106-B95E02B87AB7}\ARPPRODUCTICON.exe
c:\Documents and Settings\pascal\Application Data\Mozilla\Firefox\Profiles\4jfqdmp7.default\extensions\{bb628310-0ab7-11db-9cd8-0800200c9a66}\setupmconfig.exe
c:\Documents and Settings\pascal\Application Data\Real\Update\setup\schedule.exe
c:\Documents and Settings\pascal\Application Data\Real\Update\setup\setup.exe
c:\Documents and Settings\pascal\Application Data\Real\Update\setup\data~0\firefoxgoogletoolbarsetup.exe
c:\Documents and Settings\pascal\Application Data\Real\Update\setup\data~0\RealPlayer11GOLD.exe
c:\Documents and Settings\pascal\Application Data\Real\Update\setup\data~0\GOOGLE_TOOLBAR\googletoolbarinstaller.exe
c:\Documents and Settings\pascal\Bureau\dossier dossier dossier\procexp.exe
c:\Documents and Settings\pascal\Bureau\dossier dossier dossier\dossierdossier\Nouveau dossier\[Pc App Ita] - DVD Decrypter - AnyDVD - CloneDVD - CopyToDVD - DVD2One - DVD Shrink\AnyDVD\AnyDVD 2.1.0.9.exe
c:\Documents and Settings\pascal\Bureau\dossier dossier dossier\dossierdossier\Nouveau dossier\[Pc App Ita] - DVD Decrypter - AnyDVD - CloneDVD - CopyToDVD - DVD2One - DVD Shrink\AnyDVD\Crack\AnyDVD.exe
c:\Documents and Settings\pascal\Bureau\dossier dossier dossier\dossierdossier\Nouveau dossier\[Pc App Ita] - DVD Decrypter - AnyDVD - CloneDVD - CopyToDVD - DVD2One - DVD Shrink\AnyDVD\Crack\hgo-dfix.exe
c:\Documents and Settings\pascal\Bureau\dossier dossier dossier\dossierdossier\Nouveau dossier\[Pc App Ita] - DVD Decrypter - AnyDVD - CloneDVD - CopyToDVD - DVD2One - DVD Shrink\CloneDVD\CloneDVD 1.3.11.2.exe
c:\Documents and Settings\pascal\Bureau\dossier dossier dossier\dossierdossier\Nouveau dossier\[Pc App Ita] - DVD Decrypter - AnyDVD - CloneDVD - CopyToDVD - DVD2One - DVD Shrink\CloneDVD\KeyGen.exe
c:\Documents and Settings\pascal\Bureau\dossier dossier dossier\dossierdossier\Nouveau dossier\[Pc App Ita] - DVD Decrypter - AnyDVD - CloneDVD - CopyToDVD - DVD2One - DVD Shrink\CopyToDVD\CopyToDVD 2.4.9.252.exe
c:\Documents and Settings\pascal\Bureau\dossier dossier dossier\dossierdossier\Nouveau dossier\[Pc App Ita] - DVD Decrypter - AnyDVD - CloneDVD - CopyToDVD - DVD2One - DVD Shrink\CopyToDVD\KeyGenerator.exe
c:\Documents and Settings\pascal\Bureau\dossier dossier dossier\dossierdossier\Nouveau dossier\[Pc App Ita] - DVD Decrypter - AnyDVD - CloneDVD - CopyToDVD - DVD2One - DVD Shrink\DVD Decrypter\DVD Decrypter 3.1.7.0.exe
c:\Documents and Settings\pascal\Bureau\dossier dossier dossier\dossierdossier\Nouveau dossier\[Pc App Ita] - DVD Decrypter - AnyDVD - CloneDVD - CopyToDVD - DVD2One - DVD Shrink\DVD Shrink\DVD Shrink 2.3 Italian.exe
c:\Documents and Settings\pascal\Bureau\dossier dossier dossier\dossierdossier\Nouveau dossier\[Pc App Ita] - DVD Decrypter - AnyDVD - CloneDVD - CopyToDVD - DVD2One - DVD Shrink\DVD2One\DVD2One 1.3.0.exe
c:\Documents and Settings\pascal\Bureau\dossier dossier dossier\dossierdossier\OpenOffice.org 2.0 Installation Files\instmsia.exe
c:\Documents and Settings\pascal\Bureau\dossier dossier dossier\dossierdossier\OpenOffice.org 2.0 Installation Files\instmsiw.exe
c:\Documents and Settings\pascal\Bureau\dossier dossier dossier\dossierdossier\OpenOffice.org 2.0 Installation Files\setup.exe
c:\Documents and Settings\pascal\Bureau\Nouveau dossier\DGen.exe
c:\Documents and Settings\pascal\Bureau\Nouveau dossier\NGen.exe
c:\Documents and Settings\pascal\Bureau\Nouveau dossier\Patch Il-2 Ace 201.exe
c:\Documents and Settings\pascal\Local Settings\Temporary Internet Files\Content.IE5\ILG7Q925\ToolBarSD[1].exe
c:\Documents and Settings\pascal\Mes documents\copie bureau\5star\5star.Audio.Studio.v1.4.9.125.Multilingual.WinALL.Incl.Keygen-ViRiLiTY\5star-as.exe
c:\Documents and Settings\pascal\Mes documents\copie bureau\5star\5star.Audio.Studio.v1.4.9.125.Multilingual.WinALL.Incl.Keygen-ViRiLiTY\keygen.exe
c:\Documents and Settings\pascal\Mes documents\copie bureau\bat\Autorun.exe
c:\Documents and Settings\pascal\Mes documents\copie bureau\bat\setup.exe
c:\Documents and Settings\pascal\Mes documents\copie bureau\bat\BFMC\BFMC.exe
c:\Documents and Settings\pascal\Mes documents\copie bureau\bat\directx\dxsetup.exe
c:\Documents and Settings\pascal\Mes documents\copie bureau\bat\nvidia_driver\77.30_winxp_international.exe
c:\Documents and Settings\pascal\Mes documents\copie bureau\bat\Redist\ArcadeInstallBATTLEFIELD2_20.EXE
c:\Documents and Settings\pascal\Mes documents\copie bureau\bat\Support\Battlefield 2_code.exe
c:\Documents and Settings\pascal\Mes documents\copie bureau\bat\Support\EasyInfo.exe
c:\Documents and Settings\pascal\Mes documents\copie bureau\bat\Support\EReg.exe
c:\Documents and Settings\pascal\Mes documents\copie bureau\Copie de 5star\5star.Audio.Studio.v1.4.9.125.Multilingual.WinALL.Incl.Keygen-ViRiLiTY\5star-as.exe
c:\Documents and Settings\pascal\Mes documents\copie bureau\Copie de 5star\5star.Audio.Studio.v1.4.9.125.Multilingual.WinALL.Incl.Keygen-ViRiLiTY\keygen.exe
c:\Documents and Settings\pascal\Mes documents\copie bureau\Copie de bat\Autorun.exe
c:\Documents and Settings\pascal\Mes documents\copie bureau\h-gmosca\tnl.exe
c:\Documents and Settings\pascal\Mes documents\copie bureau\OpenOffice.org 2.0 Installation Files\instmsia.exe
c:\Documents and Settings\pascal\Mes documents\copie bureau\OpenOffice.org 2.0 Installation Files\instmsiw.exe
c:\Documents and Settings\pascal\Mes documents\copie bureau\OpenOffice.org 2.0 Installation Files\setup.exe
c:\Documents and Settings\pascal\Mes documents\copie bureau\quickpar\QuickPar-0.9.1.0-FRA.exe
c:\Documents and Settings\pascal\Mes documents\copie bureau\reg first aids\rfaset-platinum-est5_0_0.exe
c:\Documents and Settings\pascal\Mes documents\copie bureau\serveur ftp&dns\Setup.exe
c:\Documents and Settings\pascal\Mes documents\copie bureau\station ripper\StationRipperInst.exe
c:\Documents and Settings\pascal\Mes documents\movie\clins d oeil msn\w&madder.exe
c:\Documents and Settings\pascal\Mes documents\movie\dvd2one\.DVD2one V2.0.0 + KeyR.exe
c:\Documents and Settings\pascal\Mes documents\movie\dvd2one\dvd2one.exe
c:\Documents and Settings\pascal\Mes documents\movie\dvd2one\keygen.exe
c:\Documents and Settings\pascal\Mes documents\movie\live6\Ableton.Live.v6.0.7-AiR\setup.exe
c:\Documents and Settings\pascal\Mes documents\My Phrogram Files\1) Step-by-Step Tutorial\bin\002 Sprite Display.exe
c:\Documents and Settings\pascal\Mes documents\My Phrogram Files\1) Step-by-Step Tutorial\bin\003 Screen Locations.exe
c:\Documents and Settings\pascal\Mes documents\My Phrogram Files\1) Step-by-Step Tutorial\bin\004 Sprite Animations.exe
c:\Documents and Settings\pascal\Mes documents\My Phrogram Files\1) Step-by-Step Tutorial\bin\005 Bouncing Sprite.exe
c:\Documents and Settings\pascal\Mes documents\My Phrogram Files\2) KPL Language Examples\bin\AligningDecimals.exe
c:\Documents and Settings\pascal\Mes documents\My Phrogram Files\2) KPL Language Examples\bin\Arrays.exe
c:\Documents and Settings\pascal\Mes documents\My Phrogram Files\2) KPL Language Examples\bin\If-Then-Else.exe
c:\Documents and Settings\pascal\Mes documents\My Phrogram Files\4) Class Library Learning Examples\Colors\bin\ColorComparison.exe
c:\Documents and Settings\pascal\Mes documents\My Phrogram Files\Converted KPLv1.1 Programs\bin\V2Snurkel.exe
c:\Documents and Settings\pascal\Mes documents\My Phrogram Files\Digital Art\bin\Worms.exe
c:\Documents and Settings\pascal\Mes documents\My Phrogram Files\Games and Toys (2D)\bin\KPlong3D.exe
c:\Documents and Settings\pascal\Mes documents\telechargement\AD-Endorphin2-inst.exe
c:\Documents and Settings\pascal\Mes documents\telechargement\ANOCPS.EXE
c:\Documents and Settings\pascal\Mes documents\telechargement\arcDev.Mainliner.X2.v1.0.exe
c:\Documents and Settings\pascal\Mes documents\telechargement\attack_on_pearl_harbor_demo_jouable_1_amerique_du_nord_37053.exe
c:\Documents and Settings\pascal\Mes documents\telechargement\audacity-win-1.2.6.exe
c:\Documents and Settings\pascal\Mes documents\telechargement\avg71free_408a815.exe
c:\Documents and Settings\pascal\Mes documents\telechargement\beaTunes.exe
c:\Documents and Settings\pascal\Mes documents\telechargement\bitdefender_free_v8.exe
c:\Documents and Settings\pascal\Mes documents\telechargement\CFP_Setup_3.0.25.378_XP_Vista_x32.exe
c:\Documents and Settings\pascal\Mes documents\telechargement\ciim.exe
c:\Documents and Settings\pascal\Mes documents\telechargement\Conectiv_WDM_5.10.00.5088.exe
c:\Documents and Settings\pascal\Mes documents\telechargement\cw_setup.exe
c:\Documents and Settings\pascal\Mes documents\telechargement\daHornet-full.exe
c:\Documents and Settings\pascal\Mes documents\telechargement\directx_directx_9.0c_-_mise_a_jour_juin_2007_francais_10906.exe
c:\Documents and Settings\pascal\Mes documents\telechargement\ELIBAGLA.ØAØIBØØH.EXE
c:\Documents and Settings\pascal\Mes documents\telechargement\e
0
Réponse 3 / 9
ep44 Messages postés 7432 Statut Contributeur 3
 
Bonsoir

En effet plusieurs infections

commence par supprimer tout tes cracks infectés
-
-------------------\\ Cracks & Keygens ..

C:\DOCUME~1\pascal\Bureau\dossier dossier dossier\dossierdossier\Nouveau dossier\[Pc App Ita] - DVD Decrypter - AnyDVD - CloneDVD - CopyToDVD - DVD2One - DVD Shrink\AnyDVD\Crack
C:\DOCUME~1\pascal\Bureau\dossier dossier dossier\dossierdossier\Nouveau dossier\[Pc App Ita] - DVD Decrypter - AnyDVD - CloneDVD - CopyToDVD - DVD2One - DVD Shrink\AnyDVD\Crack\AnyDVD.exe
C:\DOCUME~1\pascal\Bureau\dossier dossier dossier\dossierdossier\Nouveau dossier\[Pc App Ita] - DVD Decrypter - AnyDVD - CloneDVD - CopyToDVD - DVD2One - DVD Shrink\AnyDVD\Crack\hgo-dfix.exe
C:\DOCUME~1\pascal\Bureau\dossier dossier dossier\dossierdossier\Nouveau dossier\[Pc App Ita] - DVD Decrypter - AnyDVD - CloneDVD - CopyToDVD - DVD2One - DVD Shrink\AnyDVD\Crack\Istruzioni.txt
C:\DOCUME~1\pascal\Bureau\dossier dossier dossier\dossierdossier\Nouveau dossier\[Pc App Ita] - DVD Decrypter - AnyDVD - CloneDVD - CopyToDVD - DVD2One - DVD Shrink\CloneDVD\KeyGen.exe
C:\DOCUME~1\pascal\Bureau\dossier dossier dossier\dossierdossier\Nouveau dossier\[Pc App Ita] - DVD Decrypter - AnyDVD - CloneDVD - CopyToDVD - DVD2One - DVD Shrink\CopyToDVD\KeyGenerator.exe
C:\DOCUME~1\pascal\Bureau\dossier dossier dossier\dossierdossier\Symbian\WebGate.Advanced.Call.Manager.v2.00.S60.SymbianOS7.Incl.Keygen.Patch-BiNPDA
C:\DOCUME~1\pascal\Bureau\dossier dossier dossier\dossierdossier\Symbian\FTP Arkillo Pack-n-5- Aplicaciones Symbians S60-S70-S80\UltraMP3[1][1].V1.46.S60.with.Keygen.rar
C:\DOCUME~1\pascal\Bureau\dossier dossier dossier\dossierdossier\Symbian\FTP Arkillo Pack-n-5- Aplicaciones Symbians S60-S70-S80\UltraMP3[1][1].V1.46.S60.with.Keygen.rar.rar
C:\DOCUME~1\pascal\Bureau\dossier dossier dossier\dossierdossier\Symbian\SymbianOS, 80 MB appz & gamez, 2006.02.24\Augmentra.ViewRanger.Lake.District.Edition.v1.0.209.S60.SymbianOS7.incl.Keygen-HSpda
C:\DOCUME~1\pascal\Bureau\dossier dossier dossier\dossierdossier\Symbian\SymbianOS, 80 MB appz & gamez, 2006.02.24\Augmentra.ViewRanger.North.Wales.Edition.v1.0.211.S60.SymbianOS7.incl.Keygen-HSpda
C:\DOCUME~1\pascal\Bureau\dossier dossier dossier\dossierdossier\Symbian\SymbianOS, 80 MB appz & gamez, 2006.02.24\Augmentra.ViewRanger.Peak.District.Edition.v1.0.211.S60.SymbianOS7.incl.Keygen-HSpda
C:\DOCUME~1\pascal\Bureau\dossier dossier dossier\dossierdossier\Symbian\SymbianOS, 80 MB appz & gamez, 2006.02.24\Augmentra.ViewRanger.Lake.District.Edition.v1.0.209.S60.SymbianOS7.incl.Keygen-HSpda\file_id.diz
C:\DOCUME~1\pascal\Bureau\dossier dossier dossier\dossierdossier\Symbian\SymbianOS, 80 MB appz & gamez, 2006.02.24\Augmentra.ViewRanger.Lake.District.Edition.v1.0.209.S60.SymbianOS7.incl.Keygen-HSpda\hs-ps154.zip
C:\DOCUME~1\pascal\Bureau\dossier dossier dossier\dossierdossier\Symbian\SymbianOS, 80 MB appz & gamez, 2006.02.24\Augmentra.ViewRanger.Lake.District.Edition.v1.0.209.S60.SymbianOS7.incl.Keygen-HSpda\hs.nfo
C:\DOCUME~1\pascal\Bureau\dossier dossier dossier\dossierdossier\Symbian\SymbianOS, 80 MB appz & gamez, 2006.02.24\Augmentra.ViewRanger.North.Wales.Edition.v1.0.211.S60.SymbianOS7.incl.Keygen-HSpda\file_id.diz
C:\DOCUME~1\pascal\Bureau\dossier dossier dossier\dossierdossier\Symbian\SymbianOS, 80 MB appz & gamez, 2006.02.24\Augmentra.ViewRanger.North.Wales.Edition.v1.0.211.S60.SymbianOS7.incl.Keygen-HSpda\hs-ps155.zip
C:\DOCUME~1\pascal\Bureau\dossier dossier dossier\dossierdossier\Symbian\SymbianOS, 80 MB appz & gamez, 2006.02.24\Augmentra.ViewRanger.North.Wales.Edition.v1.0.211.S60.SymbianOS7.incl.Keygen-HSpda\hs.nfo
C:\DOCUME~1\pascal\Bureau\dossier dossier dossier\dossierdossier\Symbian\SymbianOS, 80 MB appz & gamez, 2006.02.24\Augmentra.ViewRanger.Peak.District.Edition.v1.0.211.S60.SymbianOS7.incl.Keygen-HSpda\file_id.diz
C:\DOCUME~1\pascal\Bureau\dossier dossier dossier\dossierdossier\Symbian\SymbianOS, 80 MB appz & gamez, 2006.02.24\Augmentra.ViewRanger.Peak.District.Edition.v1.0.211.S60.SymbianOS7.incl.Keygen-HSpda\hs-ps156.zip
C:\DOCUME~1\pascal\Bureau\dossier dossier dossier\dossierdossier\Symbian\SymbianOS, 80 MB appz & gamez, 2006.02.24\Augmentra.ViewRanger.Peak.District.Edition.v1.0.211.S60.SymbianOS7.incl.Keygen-HSpda\hs.nfo
C:\DOCUME~1\pascal\Bureau\dossier dossier dossier\dossierdossier\Symbian\WebGate.Advanced.Call.Manager.v2.00.S60.SymbianOS7.Incl.Keygen.Patch-BiNPDA\binpda.nfo
C:\DOCUME~1\pascal\Bureau\dossier dossier dossier\dossierdossier\Symbian\WebGate.Advanced.Call.Manager.v2.00.S60.SymbianOS7.Incl.Keygen.Patch-BiNPDA\file_id.diz
C:\DOCUME~1\pascal\Bureau\dossier dossier dossier\dossierdossier\Symbian\WebGate.Advanced.Call.Manager.v2.00.S60.SymbianOS7.Incl.Keygen.Patch-BiNPDA\WebGate.Advanced.Call.Manager.v2.00.S60.SymbianOS7.Incl.Keygen.Patch-BiNPDA.sis
C:\DOCUME~1\pascal\Mes documents\Ableton\Library\Presets\Audio Effects\Vinyl Distortion\Crack.adv
C:\DOCUME~1\pascal\Mes documents\copie bureau\5star\5star.Audio.Studio.v1.4.9.125.Multilingual.WinALL.Incl.Keygen-ViRiLiTY
C:\DOCUME~1\pascal\Mes documents\copie bureau\5star\5star.Audio.Studio.v1.4.9.125.Multilingual.WinALL.Incl.Keygen-ViRiLiTY.rar
C:\DOCUME~1\pascal\Mes documents\copie bureau\5star\5star.Audio.Studio.v1.4.9.125.Multilingual.WinALL.Incl.Keygen-ViRiLiTY\++GoldEsel - visit us for more brandnew stuff++.url
C:\DOCUME~1\pascal\Mes documents\copie bureau\5star\5star.Audio.Studio.v1.4.9.125.Multilingual.WinALL.Incl.Keygen-ViRiLiTY\++Wichtig - Lesen - readme - www.goldesel.6x.to++.txt
C:\DOCUME~1\pascal\Mes documents\copie bureau\5star\5star.Audio.Studio.v1.4.9.125.Multilingual.WinALL.Incl.Keygen-ViRiLiTY\5star-as.exe
C:\DOCUME~1\pascal\Mes documents\copie bureau\5star\5star.Audio.Studio.v1.4.9.125.Multilingual.WinALL.Incl.Keygen-ViRiLiTY\GEAR.jpg
C:\DOCUME~1\pascal\Mes documents\copie bureau\5star\5star.Audio.Studio.v1.4.9.125.Multilingual.WinALL.Incl.Keygen-ViRiLiTY\keygen.exe
C:\DOCUME~1\pascal\Mes documents\copie bureau\5star\5star.Audio.Studio.v1.4.9.125.Multilingual.WinALL.Incl.Keygen-ViRiLiTY\virility.nfo
C:\DOCUME~1\pascal\Mes documents\copie bureau\bat\Crack
C:\DOCUME~1\pascal\Mes documents\copie bureau\Copie de 5star\5star.Audio.Studio.v1.4.9.125.Multilingual.WinALL.Incl.Keygen-ViRiLiTY
C:\DOCUME~1\pascal\Mes documents\copie bureau\Copie de 5star\5star.Audio.Studio.v1.4.9.125.Multilingual.WinALL.Incl.Keygen-ViRiLiTY.rar
C:\DOCUME~1\pascal\Mes documents\copie bureau\Copie de 5star\5star.Audio.Studio.v1.4.9.125.Multilingual.WinALL.Incl.Keygen-ViRiLiTY\++GoldEsel - visit us for more brandnew stuff++.url
C:\DOCUME~1\pascal\Mes documents\copie bureau\Copie de 5star\5star.Audio.Studio.v1.4.9.125.Multilingual.WinALL.Incl.Keygen-ViRiLiTY\++Wichtig - Lesen - readme - www.goldesel.6x.to++.txt
C:\DOCUME~1\pascal\Mes documents\copie bureau\Copie de 5star\5star.Audio.Studio.v1.4.9.125.Multilingual.WinALL.Incl.Keygen-ViRiLiTY\5star-as.exe
C:\DOCUME~1\pascal\Mes documents\copie bureau\Copie de 5star\5star.Audio.Studio.v1.4.9.125.Multilingual.WinALL.Incl.Keygen-ViRiLiTY\GEAR.jpg
C:\DOCUME~1\pascal\Mes documents\copie bureau\Copie de 5star\5star.Audio.Studio.v1.4.9.125.Multilingual.WinALL.Incl.Keygen-ViRiLiTY\keygen.exe
C:\DOCUME~1\pascal\Mes documents\copie bureau\Copie de 5star\5star.Audio.Studio.v1.4.9.125.Multilingual.WinALL.Incl.Keygen-ViRiLiTY\virility.nfo
C:\DOCUME~1\pascal\Mes documents\copie bureau\kay bat\Battlefield.2.Keygen-ViTALiTY
C:\DOCUME~1\pascal\Mes documents\copie bureau\kay bat\Battlefield.2.Keygen-ViTALiTY.ShadowCast.rar
C:\DOCUME~1\pascal\Mes documents\copie bureau\kay bat\Battlefield.2.Keygen-ViTALiTY\vitality.nfo
C:\DOCUME~1\pascal\Mes documents\copie bureau\kay bat\Battlefield.2.Keygen-ViTALiTY\vtl-bf2k.rar
C:\DOCUME~1\pascal\Mes documents\copie bureau\kay bat\Battlefield.2.Keygen-ViTALiTY\vtl-bf2k.sfv
C:\DOCUME~1\pascal\Mes documents\copie bureau\Nouveau dossier (2)\Crack.zip
C:\DOCUME~1\pascal\Mes documents\movie\dvd2one\keygen.exe
C:\DOCUME~1\pascal\Mes documents\new today\sex & drugs & rock & roll\15 dance of the crackpots.mp3
C:\DOCUME~1\pascal\Mes documents\telechargement\real monitor\Keygen
C:\DOCUME~1\pascal\Mes documents\telechargement\real monitor\Real Spy Monitor v2.71 Incl Keygen.rar
C:\DOCUME~1\pascal\Mes documents\telechargement\real monitor\Keygen\Keymaker.exe


Ensuite relance ToolBar-S&D en option 2 et poste le rapport

ensuite
Télécharge LOP S&D d'Eric71 ici https://sites.google.com/site/eric71mespages/lop.sd.exe

Double-clique dessus pour lancer l'installation.
Puis double-clique sur le raccourci Lop S&D présent sur ton Bureau.
Séléctionne la langue souhaitée , puis choisis l'Option 1 ( Recherche )
Patiente jusqu'à la fin du scan.
Poste le rapport généré (situé aussi ici C:\lopR.txt )

( Si le Bureau ne réapparaît pas, lance le gestionnaire des tâches en cliquant sur Ctrl + Alt + Suppr , puis Onglet Fichier , Nouvelle tâche , tape explorer.exe et valide )

et pour finir Télécharge sur le Bureau http://siri.urz.free.fr/Fix/SmitfraudFix.exe
=> Double clic sur SmitfraudFix.zip
=> Extraire tout
=> Double clic sur SmitfraudFix
=> Double Clic sur SmitfraudFix.cmd
=> Choisir Option 1
=> poste le rapport
@+

0
Réponse 4 / 9
pasky2000
 
mon internet se deconnecte au bout de 10 minutes et je ne peux desactiver le firewall windows

--------------------\\ Lop S&D 4.2.2-9 XP/Vista

[ Windows XP (NT 5.1) Build 2600, Service Pack 2 ]
[ USER : pascal ] [ "C:\Lop SD" ] [ Selection : 1 ]
[ 15/08/2008 | 19:57:35 ] [ PC : PASCAL-VZ0FE7XW (Proc:x86) ]
[ MAJ : 13-08-2008 | 21:02 ]

--------------------\\ Listing des dossiers dans APPLIC~1

[01/02/2006|02:50] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Ableton
[11/06/2008|00:36] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Adobe
[06/09/2005|18:39] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Ahead
[05/09/2007|07:20] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Apple
[28/11/2006|20:46] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Apple Computer
[04/06/2007|13:21] C:\DOCUME~1\ALLUSE~1\APPLIC~1\avg7
[13/08/2008|18:54] C:\DOCUME~1\ALLUSE~1\APPLIC~1\comodo
[30/07/2005|00:40] C:\DOCUME~1\ALLUSE~1\APPLIC~1\desktop.ini
[15/08/2008|19:28] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Google Updater
[13/10/2006|14:51] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Grisoft
[26/03/2007|18:41] C:\DOCUME~1\ALLUSE~1\APPLIC~1\hpzinstall.log
[12/03/2008|20:34] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Installations
[19/07/2007|17:03] C:\DOCUME~1\ALLUSE~1\APPLIC~1\InstallShield
[07/04/2007|08:57] C:\DOCUME~1\ALLUSE~1\APPLIC~1\loudacidmetaup
[12/12/2005|00:13] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Macromedia
[02/08/2005|18:58] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Macrovision
[13/08/2008|15:20] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Malwarebytes
[17/02/2006|18:06] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Microsoft
[25/05/2006|18:52] C:\DOCUME~1\ALLUSE~1\APPLIC~1\nView_Profiles
[03/11/2006|16:21] C:\DOCUME~1\ALLUSE~1\APPLIC~1\PC Suite
[20/07/2007|02:19] C:\DOCUME~1\ALLUSE~1\APPLIC~1\QTSBandwidthCache
[25/05/2006|18:25] C:\DOCUME~1\ALLUSE~1\APPLIC~1\River Past G3
[07/01/2007|08:41] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Shared Phrogram Files
[22/11/2007|22:16] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Sony Ericsson
[05/12/2006|17:49] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Spybot - Search & Destroy
[22/11/2007|22:16] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Teleca
[15/05/2007|03:10] C:\DOCUME~1\ALLUSE~1\APPLIC~1\TEMP
[26/04/2008|15:31] C:\DOCUME~1\ALLUSE~1\APPLIC~1\TomTom
[03/09/2005|18:39] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Windows Genuine Advantage
[17/06/2008|05:31] C:\DOCUME~1\ALLUSE~1\APPLIC~1\WLInstaller

[30/07/2005|00:40] C:\DOCUME~1\DEFAUL~1\APPLIC~1\desktop.ini
[30/07/2005|00:25] C:\DOCUME~1\DEFAUL~1\APPLIC~1\Microsoft

[04/12/2006|18:03] C:\DOCUME~1\LOCALS~1\APPLIC~1\16flaw
[12/08/2008|00:00] C:\DOCUME~1\LOCALS~1\APPLIC~1\AVG7
[07/09/2006|08:18] C:\DOCUME~1\LOCALS~1\APPLIC~1\Macromedia
[26/04/2008|16:16] C:\DOCUME~1\LOCALS~1\APPLIC~1\Microsoft

[13/10/2006|14:50] C:\DOCUME~1\NETWOR~1\APPLIC~1\Microsoft

[07/04/2007|08:57] C:\DOCUME~1\pascal\APPLIC~1\16flaw
[12/07/2007|22:16] C:\DOCUME~1\pascal\APPLIC~1\Ableton
[11/06/2008|00:36] C:\DOCUME~1\pascal\APPLIC~1\Adobe
[16/09/2005|01:42] C:\DOCUME~1\pascal\APPLIC~1\AdobeUM
[06/09/2005|18:46] C:\DOCUME~1\pascal\APPLIC~1\Ahead
[15/07/2006|08:19] C:\DOCUME~1\pascal\APPLIC~1\AlertInfo
[23/01/2008|17:39] C:\DOCUME~1\pascal\APPLIC~1\Apple Computer
[18/08/2007|18:03] C:\DOCUME~1\pascal\APPLIC~1\AVG7
[24/11/2006|02:31] C:\DOCUME~1\pascal\APPLIC~1\BitRoll
[09/12/2006|16:22] C:\DOCUME~1\pascal\APPLIC~1\BitTorrent
[13/04/2006|21:02] C:\DOCUME~1\pascal\APPLIC~1\Block Checker
[23/10/2006|17:50] C:\DOCUME~1\pascal\APPLIC~1\Bull
[23/11/2005|19:33] C:\DOCUME~1\pascal\APPLIC~1\Checkflow
[01/03/2006|16:52] C:\DOCUME~1\pascal\APPLIC~1\Clavia
[13/08/2008|15:23] C:\DOCUME~1\pascal\APPLIC~1\Comodo
[21/11/2006|19:53] C:\DOCUME~1\pascal\APPLIC~1\Datalayer
[30/07/2005|00:40] C:\DOCUME~1\pascal\APPLIC~1\desktop.ini
[13/08/2006|15:59] C:\DOCUME~1\pascal\APPLIC~1\Engelmann Media
[30/09/2005|20:29] C:\DOCUME~1\pascal\APPLIC~1\Google
[08/07/2007|13:40] C:\DOCUME~1\pascal\APPLIC~1\gtk-2.0
[30/05/2007|21:08] C:\DOCUME~1\pascal\APPLIC~1\HARVEST S.A
[06/01/2006|20:04] C:\DOCUME~1\pascal\APPLIC~1\Help
[26/03/2007|18:42] C:\DOCUME~1\pascal\APPLIC~1\Hewlett-Packard
[30/07/2005|00:29] C:\DOCUME~1\pascal\APPLIC~1\Identities
[28/11/2006|06:11] C:\DOCUME~1\pascal\APPLIC~1\IM-Names
[26/04/2008|15:30] C:\DOCUME~1\pascal\APPLIC~1\InstallShield
[25/05/2007|14:15] C:\DOCUME~1\pascal\APPLIC~1\InterTrust
[07/09/2007|18:26] C:\DOCUME~1\pascal\APPLIC~1\Joost
[23/09/2005|12:04] C:\DOCUME~1\pascal\APPLIC~1\Kana Solution
[30/07/2005|01:32] C:\DOCUME~1\pascal\APPLIC~1\Lavasoft
[12/08/2005|19:05] C:\DOCUME~1\pascal\APPLIC~1\Leadertech
[12/12/2005|00:28] C:\DOCUME~1\pascal\APPLIC~1\Macromedia
[13/08/2008|15:20] C:\DOCUME~1\pascal\APPLIC~1\Malwarebytes
[09/04/2008|16:31] C:\DOCUME~1\pascal\APPLIC~1\M-Audio
[20/03/2007|03:35] C:\DOCUME~1\pascal\APPLIC~1\Media Player Classic
[16/06/2007|19:12] C:\DOCUME~1\pascal\APPLIC~1\Microsoft
[26/10/2005|00:27] C:\DOCUME~1\pascal\APPLIC~1\Motive
[03/07/2008|15:10] C:\DOCUME~1\pascal\APPLIC~1\Mozilla
[05/08/2005|18:10] C:\DOCUME~1\pascal\APPLIC~1\MSNInstaller
[04/04/2008|05:54] C:\DOCUME~1\pascal\APPLIC~1\NMM-MetaData.db
[13/03/2008|17:01] C:\DOCUME~1\pascal\APPLIC~1\Nokia
[18/07/2008|20:00] C:\DOCUME~1\pascal\APPLIC~1\OpenOffice.org2
[17/03/2008|17:47] C:\DOCUME~1\pascal\APPLIC~1\PC Suite
[24/11/2005|14:32] C:\DOCUME~1\pascal\APPLIC~1\Publish Providers
[11/08/2008|21:09] C:\DOCUME~1\pascal\APPLIC~1\QuickZip45.ini
[25/04/2008|18:31] C:\DOCUME~1\pascal\APPLIC~1\Real
[08/08/2005|04:23] C:\DOCUME~1\pascal\APPLIC~1\River Past G3
[13/05/2006|20:49] C:\DOCUME~1\pascal\APPLIC~1\Samsung
[19/04/2006|21:50] C:\DOCUME~1\pascal\APPLIC~1\Sony
[22/11/2007|22:20] C:\DOCUME~1\pascal\APPLIC~1\Sony Ericsson
[04/08/2005|16:38] C:\DOCUME~1\pascal\APPLIC~1\Sun
[28/04/2006|19:33] C:\DOCUME~1\pascal\APPLIC~1\Talkback
[22/11/2007|23:36] C:\DOCUME~1\pascal\APPLIC~1\Teleca
[15/12/2005|19:43] C:\DOCUME~1\pascal\APPLIC~1\Thunderbird
[09/02/2008|17:04] C:\DOCUME~1\pascal\APPLIC~1\ubi.com
[27/04/2008|02:22] C:\DOCUME~1\pascal\APPLIC~1\Waves
[27/04/2008|02:21] C:\DOCUME~1\pascal\APPLIC~1\Waves Audio
[27/04/2008|02:29] C:\DOCUME~1\pascal\APPLIC~1\Waves Preferences
[02/06/2006|19:09] C:\DOCUME~1\pascal\APPLIC~1\WhenU

--------------------\\ Tâches planifiées dans C:\WINDOWS\tasks

[11/08/2008 22:36][--a------] C:\WINDOWS\tasks\AppleSoftwareUpdate.job
[26/06/2007 23:29][--a------] C:\WINDOWS\tasks\FRU Task #Hewlett-Packard#hp psc 2100 series#1174927304.job
[15/08/2008 19:53][--ah-----] C:\WINDOWS\tasks\SA.DAT
[24/04/2003 14:00][-r-h-----] C:\WINDOWS\tasks\desktop.ini

--------------------\\ Listing des dossiers dans C:\Program Files

[19/07/2006|02:19] C:\Program Files\[webwiz]
[12/07/2007|22:16] C:\Program Files\Ableton
[30/07/2005|01:08] C:\Program Files\ACE Mega CoDecS Pack
[25/05/2007|14:15] C:\Program Files\Adobe
[06/09/2005|18:41] C:\Program Files\Ahead
[15/07/2006|08:05] C:\Program Files\AlertInfo
[09/07/2007|18:51] C:\Program Files\Antares
[01/12/2006|04:28] C:\Program Files\Any Video Converter
[05/09/2007|07:20] C:\Program Files\Apple Software Update
[21/03/2006|19:22] C:\Program Files\arcDev Noise Industries
[23/03/2006|15:57] C:\Program Files\Arturia
[13/08/2008|15:24] C:\Program Files\AskSBar
[14/11/2005|15:42] C:\Program Files\Atomic Clock Sync
[04/02/2008|18:41] C:\Program Files\Attack on Pearl Harbor Demo
[06/10/2007|16:53] C:\Program Files\Audacity
[24/11/2006|02:31] C:\Program Files\BitRoll
[03/12/2006|16:50] C:\Program Files\BitTorrent
[12/12/2005|19:22] C:\Program Files\Cam-X
[01/12/2006|16:58] C:\Program Files\CCleaner
[12/12/2005|19:28] C:\Program Files\CDex_150
[01/03/2006|16:43] C:\Program Files\Clavia
[30/05/2007|21:07] C:\Program Files\ClickImpots plus 2007
[13/08/2007|06:06] C:\Program Files\Common Files
[13/08/2008|15:24] C:\Program Files\COMODO
[30/07/2005|00:24] C:\Program Files\ComPlus Applications
[11/03/2008|18:20] C:\Program Files\cw5
[04/09/2007|19:45] C:\Program Files\CyberIPod.com
[13/08/2008|17:45] C:\Program Files\DAEMON Tools
[28/11/2006|08:06] C:\Program Files\Dictionnaire
[12/03/2008|20:37] C:\Program Files\DIFX
[01/03/2006|03:30] C:\Program Files\Digidesign
[28/02/2006|02:50] C:\Program Files\DigitalSoundPlanet
[25/05/2007|14:15] C:\Program Files\directx
[06/03/2008|21:24] C:\Program Files\Disc2Phone
[31/12/2007|01:38] C:\Program Files\DivX
[03/12/2006|17:13] C:\Program Files\DVD Decrypter
[12/03/2007|18:03] C:\Program Files\DVD2one
[27/03/2006|23:43] C:\Program Files\DVD2one V2
[24/05/2007|13:48] C:\Program Files\Elaborate Bytes
[13/08/2008|03:22] C:\Program Files\eMule
[13/08/2006|15:56] C:\Program Files\Engelmann Media
[12/08/2005|19:05] C:\Program Files\Executive Software
[13/08/2008|14:20] C:\Program Files\Fichiers communs
[10/04/2006|18:53] C:\Program Files\FileZilla
[21/11/2005|06:40] C:\Program Files\Fire International
[29/09/2007|18:58] C:\Program Files\FruityLoops 3.4
[12/12/2005|19:21] C:\Program Files\Fx Audio Conveter
[06/08/2007|19:22] C:\Program Files\GameSpy Arcade
[06/08/2007|19:19] C:\Program Files\GForce
[30/04/2008|03:17] C:\Program Files\Google
[13/10/2006|14:51] C:\Program Files\Grisoft
[31/12/2007|14:56] C:\Program Files\Guitar Pro 5
[11/12/2006|08:08] C:\Program Files\HammerSnipe PowerTool
[07/07/2007|18:54] C:\Program Files\hardwaredetection
[26/03/2007|18:39] C:\Program Files\Hewlett-Packard
[05/05/2006|00:36] C:\Program Files\ICQLite
[05/05/2006|00:20] C:\Program Files\ICQToolbar
[26/04/2008|15:30] C:\Program Files\InstallShield Installation Information
[30/07/2005|00:35] C:\Program Files\Intel
[30/07/2005|00:50] C:\Program Files\Internet Explorer
[05/09/2007|07:25] C:\Program Files\iPod
[28/01/2007|18:53] C:\Program Files\IrfanView
[05/09/2007|07:25] C:\Program Files\iTunes
[04/08/2005|16:37] C:\Program Files\Java
[07/09/2007|05:40] C:\Program Files\Joost
[14/02/2008|15:58] C:\Program Files\Lavalys
[30/07/2005|01:32] C:\Program Files\Lavasoft
[07/08/2005|22:38] C:\Program Files\Logitech
[04/03/2007|23:43] C:\Program Files\M3 GAME Manager
[23/03/2006|16:44] C:\Program Files\MachFive Files
[12/12/2005|00:13] C:\Program Files\Macromedia
[13/08/2008|15:20] C:\Program Files\Malwarebytes' Anti-Malware
[09/04/2008|16:25] C:\Program Files\M-Audio
[01/02/2006|02:39] C:\Program Files\M-Audio Delta
[14/08/2008|15:10] C:\Program Files\Messenger
[27/05/2006|19:03] C:\Program Files\Micro Application
[14/08/2008|15:10] C:\Program Files\Microsoft CAPICOM 2.1.0.2
[30/07/2005|00:26] C:\Program Files\microsoft frontpage
[30/07/2005|01:20] C:\Program Files\Motive
[30/07/2005|00:50] C:\Program Files\Movie Maker
[30/07/2005|01:12] C:\Program Files\Mozilla
[15/08/2008|19:27] C:\Program Files\Mozilla Firefox
[15/12/2005|19:43] C:\Program Files\Mozilla Thunderbird
[28/04/2006|19:32] C:\Program Files\mozilla.org
[30/07/2005|00:23] C:\Program Files\MSN
[30/07/2005|00:23] C:\Program Files\MSN Gaming Zone
[17/06/2008|05:32] C:\Program Files\MSN Messenger
[14/08/2008|15:07] C:\Program Files\MSXML 4.0
[25/05/2007|14:16] C:\Program Files\Musicalis
[13/08/2007|06:49] C:\Program Files\Native Instruments
[30/07/2005|00:49] C:\Program Files\NetMeeting
[17/10/2006|11:45] C:\Program Files\NetMeter
[05/12/2006|17:25] C:\Program Files\NetPeeker
[12/12/2005|14:34] C:\Program Files\No-IP
[12/03/2008|20:36] C:\Program Files\Nokia
[07/07/2006|05:28] C:\Program Files\NovaLogic
[30/07/2005|01:20] C:\Program Files\Numericable
[26/11/2006|07:20] C:\Program Files\OpenOffice.org 2.0
[30/07/2005|00:49] C:\Program Files\Outlook Express
[12/03/2008|20:36] C:\Program Files\PC Connectivity Solution
[13/02/2008|16:58] C:\Program Files\Port Detective
[14/11/2000|03:21] C:\Program Files\PortScan.exe
[09/07/2007|18:07] C:\Program Files\Praxisoft
[06/10/2006|17:03] C:\Program Files\QuickPar
[05/09/2007|07:24] C:\Program Files\QuickTime
[01/03/2006|08:28] C:\Program Files\QuickZip4
[11/10/2007|02:23] C:\Program Files\Rapid Evolution
[13/08/2006|06:02] C:\Program Files\Ratajik Software
[31/07/2005|16:31] C:\Program Files\Real
[13/08/2008|17:45] C:\Program Files\Real Spy Monitor
[17/07/2006|12:15] C:\Program Files\RFA
[17/07/2006|20:45] C:\Program Files\RFA Platinum
[28/11/2006|16:00] C:\Program Files\RSS Xpress
[13/05/2006|20:43] C:\Program Files\Samsung
[20/03/2007|03:34] C:\Program Files\Satsuki Decoder Pack
[30/07/2005|00:23] C:\Program Files\Services en ligne
[23/03/2006|16:45] C:\Program Files\setuplog.txt
[12/12/2005|14:17] C:\Program Files\SHOUTcast
[24/11/2005|14:00] C:\Program Files\SiSoftware
[17/10/2006|11:55] C:\Program Files\Snort
[13/10/2006|14:30] C:\Program Files\Softwin
[24/11/2005|14:29] C:\Program Files\Sony
[22/11/2007|22:16] C:\Program Files\Sony Ericsson
[24/11/2005|15:16] C:\Program Files\Sony Setup
[07/08/2008|22:09] C:\Program Files\Soulseek
[21/08/2007|17:32] C:\Program Files\SpeedFan
[13/04/2006|20:13] C:\Program Files\Spybot - Search & Destroy
[01/03/2006|03:58] C:\Program Files\Steinberg
[10/12/2007|14:10] C:\Program Files\tagtraum industries
[07/01/2007|08:40] C:\Program Files\The Phrogram Company
[25/04/2008|15:11] C:\Program Files\TomTom DesktopSuite
[26/04/2008|18:57] C:\Program Files\TomTom HOME
[30/07/2005|01:36] C:\Program Files\ToniArts
[26/09/2007|04:22] C:\Program Files\Toontrack
[13/08/2008|21:11] C:\Program Files\Trend Micro
[23/11/2006|17:05] C:\Program Files\TribalWeb.net
[24/01/2007|21:32] C:\Program Files\TurnTool
[07/01/2007|06:22] C:\Program Files\TVUPlayer
[09/02/2008|17:04] C:\Program Files\Ubi Soft
[09/02/2008|17:04] C:\Program Files\ubi.com
[23/03/2006|16:45] C:\Program Files\uninstal.log
[25/05/2007|14:17] C:\Program Files\Uninstall Information
[15/01/2008|02:33] C:\Program Files\Veoh Networks
[27/04/2008|02:21] C:\Program Files\Waves
[28/11/2006|16:00] C:\Program Files\Winamp
[17/06/2008|05:32] C:\Program Files\Windows Live
[23/09/2005|11:28] C:\Program Files\Windows Media Player
[30/07/2005|00:49] C:\Program Files\Windows NT
[30/07/2005|00:23] C:\Program Files\WindowsUpdate
[17/10/2006|11:57] C:\Program Files\WinPcap
[01/03/2006|03:51] C:\Program Files\WinRAR
[31/07/2005|19:57] C:\Program Files\Winspy
[28/01/2007|16:15] C:\Program Files\winwat
[30/07/2005|00:26] C:\Program Files\xerox
[06/08/2007|19:23] C:\Program Files\Yahoo!
[30/07/2005|00:58] C:\Program Files\Zone Labs

--------------------\\ Listing des dossiers dans C:\Program Files\Fichiers communs

[25/05/2007|14:15] C:\Program Files\Fichiers communs\Adobe
[02/08/2005|18:58] C:\Program Files\Fichiers communs\Adobe Systems Shared
[06/09/2005|18:39] C:\Program Files\Fichiers communs\Ahead
[05/09/2007|07:20] C:\Program Files\Fichiers communs\Apple
[05/04/2006|18:12] C:\Program Files\Fichiers communs\AVSMedia
[28/02/2006|04:25] C:\Program Files\Fichiers communs\Digidesign
[11/12/2006|07:04] C:\Program Files\Fichiers communs\HammerTap
[26/03/2007|18:40] C:\Program Files\Fichiers communs\Hewlett-Packard
[19/07/2007|17:03] C:\Program Files\Fichiers communs\InstallShield
[04/08/2005|16:36] C:\Program Files\Fichiers communs\Java
[07/08/2005|22:38] C:\Program Files\Fichiers communs\Logitech
[12/12/2005|00:14] C:\Program Files\Fichiers communs\Macromedia
[17/06/2008|05:32] C:\Program Files\Fichiers communs\Microsoft Shared
[28/04/2006|19:32] C:\Program Files\Fichiers communs\mozilla.org
[30/07/2005|00:24] C:\Program Files\Fichiers communs\MSSoap
[13/08/2007|06:49] C:\Program Files\Fichiers communs\Native Instruments
[12/03/2008|20:37] C:\Program Files\Fichiers communs\Nokia
[30/07/2005|00:41] C:\Program Files\Fichiers communs\ODBC
[12/03/2008|20:36] C:\Program Files\Fichiers communs\PCSuite
[09/02/2008|17:04] C:\Program Files\Fichiers communs\PocketSoft
[08/05/2006|18:39] C:\Program Files\Fichiers communs\Real
[30/07/2005|00:24] C:\Program Files\Fichiers communs\Services
[22/10/2006|03:22] C:\Program Files\Fichiers communs\Softwin
[12/03/2008|20:22] C:\Program Files\Fichiers communs\Sony Ericsson Shared
[30/07/2005|00:41] C:\Program Files\Fichiers communs\SpeechEngines
[30/07/2005|00:50] C:\Program Files\Fichiers communs\System
[12/03/2008|20:23] C:\Program Files\Fichiers communs\Teleca Shared
[02/06/2006|19:09] C:\Program Files\Fichiers communs\WhenU
[17/06/2008|05:32] C:\Program Files\Fichiers communs\WindowsLiveInstaller
[21/11/2006|15:19] C:\Program Files\Fichiers communs\Wise Installation Wizard
[08/05/2006|18:39] C:\Program Files\Fichiers communs\xing shared

--------------------\\ Process

( 39 Processus )

iexplore.exe ~ [PID:4052] ~ [Threads:26]

--------------------\\ Recherche avec S_Lop

Aucun fichier / dossier Lop trouvé !

--------------------\\ Recherche de Fichiers / Dossiers Lop

C:\DOCUME~1\pascal\APPLIC~1\BitRoll
C:\DOCUME~1\pascal\APPLIC~1\BitRoll\Data
C:\Program Files\BitRoll
C:\Program Files\BitRoll\BitRoll.exe
C:\Program Files\BitRoll\SkinCrafter.dll
C:\Program Files\BitRoll\Skins
C:\Program Files\BitRoll\Support
C:\Program Files\BitRoll\TorrentManager.dll
C:\Program Files\BitRoll\unins000.dat
C:\Program Files\BitRoll\unins000.exe
C:\Program Files\BitRoll\ZM

--------------------\\ Verification du Registre

..... OK !

--------------------\\ Verification du fichier Hosts

Fichier Hosts PROPRE

--------------------\\ Recherche de fichiers avec Catchme

catchme 0.3.1353 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2008-08-15 20:01:48
Windows 5.1.2600 Service Pack 2 NTFS
detected NTDLL code modification:
ZwClose
scanning hidden processes ...
scanning hidden files ...
disk error: C:\WINDOWS\System32\
please note that you need administrator rights to perform deep scan

--------------------\\ Recherche d'autres infections

--------------------\\ Cracks & Keygens ..

C:\DOCUME~1\pascal\Mes documents\Ableton\Library\Presets\Audio Effects\Vinyl Distortion\Crack.adv
C:\DOCUME~1\pascal\Mes documents\new today\sex & drugs & rock & roll\15 dance of the crackpots.mp3

[F:5][D:1]-> C:\DOCUME~1\pascal\LOCALS~1\Temp
[F:28][D:0]-> C:\DOCUME~1\pascal\Cookies
[F:318][D:32]-> C:\DOCUME~1\pascal\LOCALS~1\TEMPOR~1\content.IE5

--------------------\\ Fin du rapport a 20:03:30,32

SmitFraudFix v2.337

Rapport fait à 20:14:04,18, 15/08/2008
Executé à partir de C:\Documents and Settings\pascal\Bureau\SmitfraudFix
OS: Microsoft Windows XP [version 5.1.2600] - Windows_NT
Le type du système de fichiers est NTFS
Fix executé en mode normal

»»»»»»»»»»»»»»»»»»»»»»»» Process

C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
C:\Program Files\COMODO\Firewall\cmdagent.exe
C:\Program Files\Executive Software\Diskeeper\DkService.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
C:\Program Files\M-Audio\Conectiv\MAUSBCVInst.exe
C:\Program Files\M-Audio\M-Audio Series II MIDI\MA_CMIDI_Inst.exe
C:\WINDOWS\system32\nvsvc32.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\atwtusb.exe
C:\Program Files\iTunes\iTunesHelper.exe
C:\Program Files\Fichiers communs\InstallShield\UpdateService\issch.exe
C:\WINDOWS\System32\M-AudioTaskBarIcon.exe
C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe
C:\Program Files\COMODO\SafeSurf\cssurf.exe
C:\Program Files\iPod\bin\iPodService.exe
C:\WINDOWS\system32\wuauclt.exe
C:\Program Files\Windows Live\Messenger\msnmsgr.exe
C:\WINDOWS\system32\wuauclt.exe
C:\Program Files\Windows Live\Messenger\usnsvc.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WLLoginProxy.exe
C:\WINDOWS\system32\cmd.exe

»»»»»»»»»»»»»»»»»»»»»»»» hosts

»»»»»»»»»»»»»»»»»»»»»»»» C:\

»»»»»»»»»»»»»»»»»»»»»»»» C:\WINDOWS

»»»»»»»»»»»»»»»»»»»»»»»» C:\WINDOWS\system

»»»»»»»»»»»»»»»»»»»»»»»» C:\WINDOWS\Web

»»»»»»»»»»»»»»»»»»»»»»»» C:\WINDOWS\system32

»»»»»»»»»»»»»»»»»»»»»»»» C:\Documents and Settings\pascal

»»»»»»»»»»»»»»»»»»»»»»»» C:\Documents and Settings\pascal\Application Data

»»»»»»»»»»»»»»»»»»»»»»»» Menu Démarrer

»»»»»»»»»»»»»»»»»»»»»»»» C:\DOCUME~1\pascal\Favoris

»»»»»»»»»»»»»»»»»»»»»»»» Bureau

»»»»»»»»»»»»»»»»»»»»»»»» C:\Program Files

»»»»»»»»»»»»»»»»»»»»»»»» Clés corrompues

»»»»»»»»»»»»»»»»»»»»»»»» Eléments du bureau

[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Desktop\Components\0]
"Source"="About:Home"
"SubscribedURL"="About:Home"
"FriendlyName"="Ma page d'accueil"

»»»»»»»»»»»»»»»»»»»»»»»» IEDFix
!!!Attention, les clés qui suivent ne sont pas forcément infectées!!!

IEDFix
Credits: Malware Analysis & Diagnostic
Code: S!Ri

»»»»»»»»»»»»»»»»»»»»»»»» VACFix
!!!Attention, les clés qui suivent ne sont pas forcément infectées!!!

VACFix
Credits: Malware Analysis & Diagnostic
Code: S!Ri

»»»»»»»»»»»»»»»»»»»»»»»» 404Fix
!!!Attention, les clés qui suivent ne sont pas forcément infectées!!!

404Fix
Credits: Malware Analysis & Diagnostic
Code: S!Ri

»»»»»»»»»»»»»»»»»»»»»»»» Sharedtaskscheduler
!!!Attention, les clés qui suivent ne sont pas forcément infectées!!!

SrchSTS.exe by S!Ri
Search SharedTaskScheduler's .dll

»»»»»»»»»»»»»»»»»»»»»»»» AppInit_DLLs
!!!Attention, les clés qui suivent ne sont pas forcément infectées!!!

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows]
"AppInit_DLLs"=" C:\\WINDOWS\\system32\\guard32.dll C:\\WINDOWS\\system32\\cssdll32.dll"
"LoadAppInit_DLLs"=dword:00000001

»»»»»»»»»»»»»»»»»»»»»»»» Winlogon
!!!Attention, les clés qui suivent ne sont pas forcément infectées!!!

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon]
"Userinit"="C:\\WINDOWS\\system32\\userinit.exe,"
"System"=""

»»»»»»»»»»»»»»»»»»»»»»»» RK

»»»»»»»»»»»»»»»»»»»»»»»» DNS

»»»»»»»»»»»»»»»»»»»»»»»» Recherche infection wininet.dll

»»»»»»»»»»»»»»»»»»»»»»»» Fin
0

Vous n’avez pas trouvé la réponse que vous recherchez ?

Posez votre question
Réponse 5 / 9
ep44 Messages postés 7432 Statut Contributeur 3
 
Bonsoir

relance smitfraudfix en option 2 et poste le rapport et fait de même pour Lop S&D et poste le rapport
0
Réponse 6 / 9
pasky2000
 
--------------------\\ Lop S&D 4.2.2-9 XP/Vista

[ Windows XP (NT 5.1) Build 2600, Service Pack 2 ]
[ USER : pascal ] [ "C:\Lop SD" ] [ Selection : 2 ]
[ 17/08/2008 | 15:24:13 ] [ PC : PASCAL-VZ0FE7XW (Proc:x86) ]
[ MAJ : 13-08-2008 | 21:02 ]

\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\ SUPPRESSION

Echec ! - C:\DOCUME~1\pascal\APPLIC~1\BitRoll\Data
Supprime! - C:\Program Files\BitRoll\BitRoll.exe
Supprime! - C:\Program Files\BitRoll\SkinCrafter.dll
Supprime! - C:\Program Files\BitRoll\Skins
Supprime! - C:\Program Files\BitRoll\Support
Supprime! - C:\Program Files\BitRoll\TorrentManager.dll
Supprime! - C:\Program Files\BitRoll\unins000.dat
Supprime! - C:\Program Files\BitRoll\unins000.exe
Supprime! - C:\Program Files\BitRoll\ZM
Supprime! - C:\DOCUME~1\pascal\APPLIC~1\BitRoll
Supprime! - C:\Program Files\BitRoll

\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\

Supprime! - C:\DOCUME~1\pascal\APPLIC~1\WhenU

\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\

--------------------\\ Listing des dossiers dans APPLIC~1

[01/02/2006|02:50] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Ableton
[11/06/2008|00:36] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Adobe
[06/09/2005|18:39] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Ahead
[05/09/2007|07:20] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Apple
[28/11/2006|20:46] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Apple Computer
[04/06/2007|13:21] C:\DOCUME~1\ALLUSE~1\APPLIC~1\avg7
[13/08/2008|18:54] C:\DOCUME~1\ALLUSE~1\APPLIC~1\comodo
[30/07/2005|00:40] C:\DOCUME~1\ALLUSE~1\APPLIC~1\desktop.ini
[16/08/2008|20:28] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Google Updater
[13/10/2006|14:51] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Grisoft
[26/03/2007|18:41] C:\DOCUME~1\ALLUSE~1\APPLIC~1\hpzinstall.log
[12/03/2008|20:34] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Installations
[19/07/2007|17:03] C:\DOCUME~1\ALLUSE~1\APPLIC~1\InstallShield
[07/04/2007|08:57] C:\DOCUME~1\ALLUSE~1\APPLIC~1\loudacidmetaup
[12/12/2005|00:13] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Macromedia
[02/08/2005|18:58] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Macrovision
[13/08/2008|15:20] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Malwarebytes
[17/02/2006|18:06] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Microsoft
[25/05/2006|18:52] C:\DOCUME~1\ALLUSE~1\APPLIC~1\nView_Profiles
[03/11/2006|16:21] C:\DOCUME~1\ALLUSE~1\APPLIC~1\PC Suite
[20/07/2007|02:19] C:\DOCUME~1\ALLUSE~1\APPLIC~1\QTSBandwidthCache
[25/05/2006|18:25] C:\DOCUME~1\ALLUSE~1\APPLIC~1\River Past G3
[07/01/2007|08:41] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Shared Phrogram Files
[22/11/2007|22:16] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Sony Ericsson
[05/12/2006|17:49] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Spybot - Search & Destroy
[22/11/2007|22:16] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Teleca
[15/05/2007|03:10] C:\DOCUME~1\ALLUSE~1\APPLIC~1\TEMP
[26/04/2008|15:31] C:\DOCUME~1\ALLUSE~1\APPLIC~1\TomTom
[03/09/2005|18:39] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Windows Genuine Advantage
[17/06/2008|05:31] C:\DOCUME~1\ALLUSE~1\APPLIC~1\WLInstaller

[30/07/2005|00:40] C:\DOCUME~1\DEFAUL~1\APPLIC~1\desktop.ini
[30/07/2005|00:25] C:\DOCUME~1\DEFAUL~1\APPLIC~1\Microsoft

[04/12/2006|18:03] C:\DOCUME~1\LOCALS~1\APPLIC~1\16flaw
[12/08/2008|00:00] C:\DOCUME~1\LOCALS~1\APPLIC~1\AVG7
[07/09/2006|08:18] C:\DOCUME~1\LOCALS~1\APPLIC~1\Macromedia
[26/04/2008|16:16] C:\DOCUME~1\LOCALS~1\APPLIC~1\Microsoft

[13/10/2006|14:50] C:\DOCUME~1\NETWOR~1\APPLIC~1\Microsoft

[07/04/2007|08:57] C:\DOCUME~1\pascal\APPLIC~1\16flaw
[12/07/2007|22:16] C:\DOCUME~1\pascal\APPLIC~1\Ableton
[11/06/2008|00:36] C:\DOCUME~1\pascal\APPLIC~1\Adobe
[16/09/2005|01:42] C:\DOCUME~1\pascal\APPLIC~1\AdobeUM
[06/09/2005|18:46] C:\DOCUME~1\pascal\APPLIC~1\Ahead
[15/07/2006|08:19] C:\DOCUME~1\pascal\APPLIC~1\AlertInfo
[23/01/2008|17:39] C:\DOCUME~1\pascal\APPLIC~1\Apple Computer
[18/08/2007|18:03] C:\DOCUME~1\pascal\APPLIC~1\AVG7
[09/12/2006|16:22] C:\DOCUME~1\pascal\APPLIC~1\BitTorrent
[13/04/2006|21:02] C:\DOCUME~1\pascal\APPLIC~1\Block Checker
[23/10/2006|17:50] C:\DOCUME~1\pascal\APPLIC~1\Bull
[23/11/2005|19:33] C:\DOCUME~1\pascal\APPLIC~1\Checkflow
[01/03/2006|16:52] C:\DOCUME~1\pascal\APPLIC~1\Clavia
[13/08/2008|15:23] C:\DOCUME~1\pascal\APPLIC~1\Comodo
[21/11/2006|19:53] C:\DOCUME~1\pascal\APPLIC~1\Datalayer
[30/07/2005|00:40] C:\DOCUME~1\pascal\APPLIC~1\desktop.ini
[13/08/2006|15:59] C:\DOCUME~1\pascal\APPLIC~1\Engelmann Media
[30/09/2005|20:29] C:\DOCUME~1\pascal\APPLIC~1\Google
[08/07/2007|13:40] C:\DOCUME~1\pascal\APPLIC~1\gtk-2.0
[30/05/2007|21:08] C:\DOCUME~1\pascal\APPLIC~1\HARVEST S.A
[06/01/2006|20:04] C:\DOCUME~1\pascal\APPLIC~1\Help
[26/03/2007|18:42] C:\DOCUME~1\pascal\APPLIC~1\Hewlett-Packard
[30/07/2005|00:29] C:\DOCUME~1\pascal\APPLIC~1\Identities
[28/11/2006|06:11] C:\DOCUME~1\pascal\APPLIC~1\IM-Names
[26/04/2008|15:30] C:\DOCUME~1\pascal\APPLIC~1\InstallShield
[25/05/2007|14:15] C:\DOCUME~1\pascal\APPLIC~1\InterTrust
[07/09/2007|18:26] C:\DOCUME~1\pascal\APPLIC~1\Joost
[23/09/2005|12:04] C:\DOCUME~1\pascal\APPLIC~1\Kana Solution
[30/07/2005|01:32] C:\DOCUME~1\pascal\APPLIC~1\Lavasoft
[12/08/2005|19:05] C:\DOCUME~1\pascal\APPLIC~1\Leadertech
[12/12/2005|00:28] C:\DOCUME~1\pascal\APPLIC~1\Macromedia
[13/08/2008|15:20] C:\DOCUME~1\pascal\APPLIC~1\Malwarebytes
[09/04/2008|16:31] C:\DOCUME~1\pascal\APPLIC~1\M-Audio
[20/03/2007|03:35] C:\DOCUME~1\pascal\APPLIC~1\Media Player Classic
[16/06/2007|19:12] C:\DOCUME~1\pascal\APPLIC~1\Microsoft
[26/10/2005|00:27] C:\DOCUME~1\pascal\APPLIC~1\Motive
[03/07/2008|15:10] C:\DOCUME~1\pascal\APPLIC~1\Mozilla
[05/08/2005|18:10] C:\DOCUME~1\pascal\APPLIC~1\MSNInstaller
[04/04/2008|05:54] C:\DOCUME~1\pascal\APPLIC~1\NMM-MetaData.db
[13/03/2008|17:01] C:\DOCUME~1\pascal\APPLIC~1\Nokia
[18/07/2008|20:00] C:\DOCUME~1\pascal\APPLIC~1\OpenOffice.org2
[17/03/2008|17:47] C:\DOCUME~1\pascal\APPLIC~1\PC Suite
[24/11/2005|14:32] C:\DOCUME~1\pascal\APPLIC~1\Publish Providers
[11/08/2008|21:09] C:\DOCUME~1\pascal\APPLIC~1\QuickZip45.ini
[25/04/2008|18:31] C:\DOCUME~1\pascal\APPLIC~1\Real
[08/08/2005|04:23] C:\DOCUME~1\pascal\APPLIC~1\River Past G3
[13/05/2006|20:49] C:\DOCUME~1\pascal\APPLIC~1\Samsung
[19/04/2006|21:50] C:\DOCUME~1\pascal\APPLIC~1\Sony
[22/11/2007|22:20] C:\DOCUME~1\pascal\APPLIC~1\Sony Ericsson
[04/08/2005|16:38] C:\DOCUME~1\pascal\APPLIC~1\Sun
[28/04/2006|19:33] C:\DOCUME~1\pascal\APPLIC~1\Talkback
[22/11/2007|23:36] C:\DOCUME~1\pascal\APPLIC~1\Teleca
[15/12/2005|19:43] C:\DOCUME~1\pascal\APPLIC~1\Thunderbird
[09/02/2008|17:04] C:\DOCUME~1\pascal\APPLIC~1\ubi.com
[27/04/2008|02:22] C:\DOCUME~1\pascal\APPLIC~1\Waves
[27/04/2008|02:21] C:\DOCUME~1\pascal\APPLIC~1\Waves Audio
[27/04/2008|02:29] C:\DOCUME~1\pascal\APPLIC~1\Waves Preferences

--------------------\\ Tâches planifiées dans C:\WINDOWS\tasks

[11/08/2008 22:36][--a------] C:\WINDOWS\tasks\AppleSoftwareUpdate.job
[26/06/2007 23:29][--a------] C:\WINDOWS\tasks\FRU Task #Hewlett-Packard#hp psc 2100 series#1174927304.job
[17/08/2008 15:16][--ah-----] C:\WINDOWS\tasks\SA.DAT
[24/04/2003 14:00][-r-h-----] C:\WINDOWS\tasks\desktop.ini

--------------------\\ Listing des dossiers dans C:\Program Files

[19/07/2006|02:19] C:\Program Files\[webwiz]
[12/07/2007|22:16] C:\Program Files\Ableton
[30/07/2005|01:08] C:\Program Files\ACE Mega CoDecS Pack
[25/05/2007|14:15] C:\Program Files\Adobe
[06/09/2005|18:41] C:\Program Files\Ahead
[15/07/2006|08:05] C:\Program Files\AlertInfo
[09/07/2007|18:51] C:\Program Files\Antares
[01/12/2006|04:28] C:\Program Files\Any Video Converter
[05/09/2007|07:20] C:\Program Files\Apple Software Update
[21/03/2006|19:22] C:\Program Files\arcDev Noise Industries
[23/03/2006|15:57] C:\Program Files\Arturia
[13/08/2008|15:24] C:\Program Files\AskSBar
[14/11/2005|15:42] C:\Program Files\Atomic Clock Sync
[04/02/2008|18:41] C:\Program Files\Attack on Pearl Harbor Demo
[06/10/2007|16:53] C:\Program Files\Audacity
[03/12/2006|16:50] C:\Program Files\BitTorrent
[12/12/2005|19:22] C:\Program Files\Cam-X
[01/12/2006|16:58] C:\Program Files\CCleaner
[12/12/2005|19:28] C:\Program Files\CDex_150
[01/03/2006|16:43] C:\Program Files\Clavia
[30/05/2007|21:07] C:\Program Files\ClickImpots plus 2007
[13/08/2007|06:06] C:\Program Files\Common Files
[13/08/2008|15:24] C:\Program Files\COMODO
[30/07/2005|00:24] C:\Program Files\ComPlus Applications
[11/03/2008|18:20] C:\Program Files\cw5
[04/09/2007|19:45] C:\Program Files\CyberIPod.com
[13/08/2008|17:45] C:\Program Files\DAEMON Tools
[28/11/2006|08:06] C:\Program Files\Dictionnaire
[12/03/2008|20:37] C:\Program Files\DIFX
[01/03/2006|03:30] C:\Program Files\Digidesign
[28/02/2006|02:50] C:\Program Files\DigitalSoundPlanet
[25/05/2007|14:15] C:\Program Files\directx
[06/03/2008|21:24] C:\Program Files\Disc2Phone
[31/12/2007|01:38] C:\Program Files\DivX
[03/12/2006|17:13] C:\Program Files\DVD Decrypter
[12/03/2007|18:03] C:\Program Files\DVD2one
[27/03/2006|23:43] C:\Program Files\DVD2one V2
[24/05/2007|13:48] C:\Program Files\Elaborate Bytes
[13/08/2008|03:22] C:\Program Files\eMule
[13/08/2006|15:56] C:\Program Files\Engelmann Media
[12/08/2005|19:05] C:\Program Files\Executive Software
[13/08/2008|14:20] C:\Program Files\Fichiers communs
[10/04/2006|18:53] C:\Program Files\FileZilla
[21/11/2005|06:40] C:\Program Files\Fire International
[29/09/2007|18:58] C:\Program Files\FruityLoops 3.4
[12/12/2005|19:21] C:\Program Files\Fx Audio Conveter
[06/08/2007|19:22] C:\Program Files\GameSpy Arcade
[06/08/2007|19:19] C:\Program Files\GForce
[30/04/2008|03:17] C:\Program Files\Google
[13/10/2006|14:51] C:\Program Files\Grisoft
[31/12/2007|14:56] C:\Program Files\Guitar Pro 5
[11/12/2006|08:08] C:\Program Files\HammerSnipe PowerTool
[07/07/2007|18:54] C:\Program Files\hardwaredetection
[26/03/2007|18:39] C:\Program Files\Hewlett-Packard
[05/05/2006|00:36] C:\Program Files\ICQLite
[05/05/2006|00:20] C:\Program Files\ICQToolbar
[26/04/2008|15:30] C:\Program Files\InstallShield Installation Information
[30/07/2005|00:35] C:\Program Files\Intel
[30/07/2005|00:50] C:\Program Files\Internet Explorer
[05/09/2007|07:25] C:\Program Files\iPod
[28/01/2007|18:53] C:\Program Files\IrfanView
[05/09/2007|07:25] C:\Program Files\iTunes
[04/08/2005|16:37] C:\Program Files\Java
[07/09/2007|05:40] C:\Program Files\Joost
[14/02/2008|15:58] C:\Program Files\Lavalys
[30/07/2005|01:32] C:\Program Files\Lavasoft
[07/08/2005|22:38] C:\Program Files\Logitech
[04/03/2007|23:43] C:\Program Files\M3 GAME Manager
[23/03/2006|16:44] C:\Program Files\MachFive Files
[12/12/2005|00:13] C:\Program Files\Macromedia
[13/08/2008|15:20] C:\Program Files\Malwarebytes' Anti-Malware
[09/04/2008|16:25] C:\Program Files\M-Audio
[01/02/2006|02:39] C:\Program Files\M-Audio Delta
[14/08/2008|15:10] C:\Program Files\Messenger
[27/05/2006|19:03] C:\Program Files\Micro Application
[14/08/2008|15:10] C:\Program Files\Microsoft CAPICOM 2.1.0.2
[30/07/2005|00:26] C:\Program Files\microsoft frontpage
[30/07/2005|01:20] C:\Program Files\Motive
[30/07/2005|00:50] C:\Program Files\Movie Maker
[30/07/2005|01:12] C:\Program Files\Mozilla
[16/08/2008|20:48] C:\Program Files\Mozilla Firefox
[15/12/2005|19:43] C:\Program Files\Mozilla Thunderbird
[28/04/2006|19:32] C:\Program Files\mozilla.org
[30/07/2005|00:23] C:\Program Files\MSN
[30/07/2005|00:23] C:\Program Files\MSN Gaming Zone
[17/06/2008|05:32] C:\Program Files\MSN Messenger
[14/08/2008|15:07] C:\Program Files\MSXML 4.0
[25/05/2007|14:16] C:\Program Files\Musicalis
[13/08/2007|06:49] C:\Program Files\Native Instruments
[30/07/2005|00:49] C:\Program Files\NetMeeting
[17/10/2006|11:45] C:\Program Files\NetMeter
[05/12/2006|17:25] C:\Program Files\NetPeeker
[12/12/2005|14:34] C:\Program Files\No-IP
[12/03/2008|20:36] C:\Program Files\Nokia
[07/07/2006|05:28] C:\Program Files\NovaLogic
[30/07/2005|01:20] C:\Program Files\Numericable
[26/11/2006|07:20] C:\Program Files\OpenOffice.org 2.0
[30/07/2005|00:49] C:\Program Files\Outlook Express
[12/03/2008|20:36] C:\Program Files\PC Connectivity Solution
[13/02/2008|16:58] C:\Program Files\Port Detective
[14/11/2000|03:21] C:\Program Files\PortScan.exe
[09/07/2007|18:07] C:\Program Files\Praxisoft
[06/10/2006|17:03] C:\Program Files\QuickPar
[05/09/2007|07:24] C:\Program Files\QuickTime
[01/03/2006|08:28] C:\Program Files\QuickZip4
[11/10/2007|02:23] C:\Program Files\Rapid Evolution
[13/08/2006|06:02] C:\Program Files\Ratajik Software
[31/07/2005|16:31] C:\Program Files\Real
[13/08/2008|17:45] C:\Program Files\Real Spy Monitor
[17/07/2006|12:15] C:\Program Files\RFA
[17/07/2006|20:45] C:\Program Files\RFA Platinum
[28/11/2006|16:00] C:\Program Files\RSS Xpress
[13/05/2006|20:43] C:\Program Files\Samsung
[20/03/2007|03:34] C:\Program Files\Satsuki Decoder Pack
[30/07/2005|00:23] C:\Program Files\Services en ligne
[23/03/2006|16:45] C:\Program Files\setuplog.txt
[12/12/2005|14:17] C:\Program Files\SHOUTcast
[24/11/2005|14:00] C:\Program Files\SiSoftware
[17/10/2006|11:55] C:\Program Files\Snort
[13/10/2006|14:30] C:\Program Files\Softwin
[24/11/2005|14:29] C:\Program Files\Sony
[22/11/2007|22:16] C:\Program Files\Sony Ericsson
[24/11/2005|15:16] C:\Program Files\Sony Setup
[07/08/2008|22:09] C:\Program Files\Soulseek
[21/08/2007|17:32] C:\Program Files\SpeedFan
[13/04/2006|20:13] C:\Program Files\Spybot - Search & Destroy
[01/03/2006|03:58] C:\Program Files\Steinberg
[10/12/2007|14:10] C:\Program Files\tagtraum industries
[07/01/2007|08:40] C:\Program Files\The Phrogram Company
[25/04/2008|15:11] C:\Program Files\TomTom DesktopSuite
[26/04/2008|18:57] C:\Program Files\TomTom HOME
[30/07/2005|01:36] C:\Program Files\ToniArts
[26/09/2007|04:22] C:\Program Files\Toontrack
[13/08/2008|21:11] C:\Program Files\Trend Micro
[23/11/2006|17:05] C:\Program Files\TribalWeb.net
[24/01/2007|21:32] C:\Program Files\TurnTool
[07/01/2007|06:22] C:\Program Files\TVUPlayer
[09/02/2008|17:04] C:\Program Files\Ubi Soft
[09/02/2008|17:04] C:\Program Files\ubi.com
[23/03/2006|16:45] C:\Program Files\uninstal.log
[25/05/2007|14:17] C:\Program Files\Uninstall Information
[15/01/2008|02:33] C:\Program Files\Veoh Networks
[27/04/2008|02:21] C:\Program Files\Waves
[28/11/2006|16:00] C:\Program Files\Winamp
[17/06/2008|05:32] C:\Program Files\Windows Live
[23/09/2005|11:28] C:\Program Files\Windows Media Player
[30/07/2005|00:49] C:\Program Files\Windows NT
[30/07/2005|00:23] C:\Program Files\WindowsUpdate
[17/10/2006|11:57] C:\Program Files\WinPcap
[01/03/2006|03:51] C:\Program Files\WinRAR
[31/07/2005|19:57] C:\Program Files\Winspy
[28/01/2007|16:15] C:\Program Files\winwat
[30/07/2005|00:26] C:\Program Files\xerox
[06/08/2007|19:23] C:\Program Files\Yahoo!
[30/07/2005|00:58] C:\Program Files\Zone Labs

--------------------\\ Listing des dossiers dans C:\Program Files\Fichiers communs

[25/05/2007|14:15] C:\Program Files\Fichiers communs\Adobe
[02/08/2005|18:58] C:\Program Files\Fichiers communs\Adobe Systems Shared
[06/09/2005|18:39] C:\Program Files\Fichiers communs\Ahead
[05/09/2007|07:20] C:\Program Files\Fichiers communs\Apple
[05/04/2006|18:12] C:\Program Files\Fichiers communs\AVSMedia
[28/02/2006|04:25] C:\Program Files\Fichiers communs\Digidesign
[11/12/2006|07:04] C:\Program Files\Fichiers communs\HammerTap
[26/03/2007|18:40] C:\Program Files\Fichiers communs\Hewlett-Packard
[19/07/2007|17:03] C:\Program Files\Fichiers communs\InstallShield
[04/08/2005|16:36] C:\Program Files\Fichiers communs\Java
[07/08/2005|22:38] C:\Program Files\Fichiers communs\Logitech
[12/12/2005|00:14] C:\Program Files\Fichiers communs\Macromedia
[17/06/2008|05:32] C:\Program Files\Fichiers communs\Microsoft Shared
[28/04/2006|19:32] C:\Program Files\Fichiers communs\mozilla.org
[30/07/2005|00:24] C:\Program Files\Fichiers communs\MSSoap
[13/08/2007|06:49] C:\Program Files\Fichiers communs\Native Instruments
[12/03/2008|20:37] C:\Program Files\Fichiers communs\Nokia
[30/07/2005|00:41] C:\Program Files\Fichiers communs\ODBC
[12/03/2008|20:36] C:\Program Files\Fichiers communs\PCSuite
[09/02/2008|17:04] C:\Program Files\Fichiers communs\PocketSoft
[08/05/2006|18:39] C:\Program Files\Fichiers communs\Real
[30/07/2005|00:24] C:\Program Files\Fichiers communs\Services
[22/10/2006|03:22] C:\Program Files\Fichiers communs\Softwin
[12/03/2008|20:22] C:\Program Files\Fichiers communs\Sony Ericsson Shared
[30/07/2005|00:41] C:\Program Files\Fichiers communs\SpeechEngines
[30/07/2005|00:50] C:\Program Files\Fichiers communs\System
[12/03/2008|20:23] C:\Program Files\Fichiers communs\Teleca Shared
[02/06/2006|19:09] C:\Program Files\Fichiers communs\WhenU
[17/06/2008|05:32] C:\Program Files\Fichiers communs\WindowsLiveInstaller
[21/11/2006|15:19] C:\Program Files\Fichiers communs\Wise Installation Wizard
[08/05/2006|18:39] C:\Program Files\Fichiers communs\xing shared

--------------------\\ Process

( 36 Processus )

... OK !

--------------------\\ Recherche avec S_Lop

Aucun fichier / dossier Lop trouvé !

--------------------\\ Recherche de Fichiers / Dossiers Lop

Aucun fichier / dossier Lop trouvé !

--------------------\\ Verification du Registre

..... OK !

--------------------\\ Verification du fichier Hosts

Fichier Hosts PROPRE

--------------------\\ Recherche de fichiers avec Catchme

catchme 0.3.1353 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2008-08-17 15:26:14
Windows 5.1.2600 Service Pack 2 NTFS
detected NTDLL code modification:
ZwClose
scanning hidden processes ...
scanning hidden files ...
disk error: C:\WINDOWS\System32\
please note that you need administrator rights to perform deep scan

--------------------\\ Recherche d'autres infections

--------------------\\ Cracks & Keygens ..

C:\DOCUME~1\pascal\Mes documents\Ableton\Library\Presets\Audio Effects\Vinyl Distortion\Crack.adv
C:\DOCUME~1\pascal\Mes documents\new today\sex & drugs & rock & roll\15 dance of the crackpots.mp3

[F:1][D:1]-> C:\DOCUME~1\pascal\LOCALS~1\Temp
[F:29][D:0]-> C:\DOCUME~1\pascal\Cookies
[F:44][D:32]-> C:\DOCUME~1\pascal\LOCALS~1\TEMPOR~1\content.IE5

--------------------\\ Fin du rapport a 15:27:13,90

SmitFraudFix v2.337

Rapport fait à 15:19:18,90, 17/08/2008
Executé à partir de C:\Documents and Settings\pascal\Bureau\SmitfraudFix
OS: Microsoft Windows XP [version 5.1.2600] - Windows_NT
Le type du système de fichiers est NTFS
Fix executé en mode normal

»»»»»»»»»»»»»»»»»»»»»»»» SharedTaskScheduler Avant SmitFraudFix
!!!Attention, les clés qui suivent ne sont pas forcément infectées!!!

SrchSTS.exe by S!Ri
Search SharedTaskScheduler's .dll

»»»»»»»»»»»»»»»»»»»»»»»» Arret des processus

»»»»»»»»»»»»»»»»»»»»»»»» hosts

127.0.0.1 localhost

»»»»»»»»»»»»»»»»»»»»»»»» VACFix

VACFix
Credits: Malware Analysis & Diagnostic
Code: S!Ri

»»»»»»»»»»»»»»»»»»»»»»»» Winsock2 Fix

S!Ri's WS2Fix: LSP not Found.

»»»»»»»»»»»»»»»»»»»»»»»» Generic Renos Fix

GenericRenosFix by S!Ri

»»»»»»»»»»»»»»»»»»»»»»»» Suppression des fichiers infectés

»»»»»»»»»»»»»»»»»»»»»»»» IEDFix

IEDFix
Credits: Malware Analysis & Diagnostic
Code: S!Ri

»»»»»»»»»»»»»»»»»»»»»»»» 404Fix

404Fix
Credits: Malware Analysis & Diagnostic
Code: S!Ri

»»»»»»»»»»»»»»»»»»»»»»»» RK

»»»»»»»»»»»»»»»»»»»»»»»» DNS

HKLM\SYSTEM\CS3\Services\Tcpip\..\{8D248883-F31C-4FFA-953B-1552771617BC}: DhcpNameServer=89.2.0.1 89.2.0.2
HKLM\SYSTEM\CS3\Services\Tcpip\Parameters: DhcpNameServer=89.2.0.1 89.2.0.2

»»»»»»»»»»»»»»»»»»»»»»»» Suppression Fichiers Temporaires

»»»»»»»»»»»»»»»»»»»»»»»» Winlogon.System
!!!Attention, les clés qui suivent ne sont pas forcément infectées!!!

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon]
"System"=""

»»»»»»»»»»»»»»»»»»»»»»»» Nettoyage du registre

Nettoyage terminé.

»»»»»»»»»»»»»»»»»»»»»»»» SharedTaskScheduler Après SmitFraudFix
!!!Attention, les clés qui suivent ne sont pas forcément infectées!!!

SrchSTS.exe by S!Ri
Search SharedTaskScheduler's .dll

»»»»»»»»»»»»»»»»»»»»»»»» Fin
0
Réponse 7 / 9
ep44 Messages postés 7432 Statut Contributeur 3
 
bonjour

as tu supprimer tes crack comme demandé ?

Télécharge OTMoveIt (de OldTimer) sur ton Bureau.
http://download.bleepingcomputer.com/oldtimer/OTMoveIt2.exe
clic double sur OTMoveIt.exe pour le lancer.
copie la liste qui se trouve en citation ci-dessous,
et colle-la dans le cadre de gauche de OTMoveIt :
Paste List of Files/Folders to be moved.

C:\DOCUME~1\pascal\Mes documents\Ableton\Library\Presets\Audio Effects\Vinyl Distortion\Crack.adv
C:\DOCUME~1\pascal\Mes documents\new today\sex & drugs & rock & roll\15 dance of the crackpots.mp3
EmptyTemp

clique sur MoveIt! pour lancer la suppression.
le résultat apparaîtra dans le cadre Results.
clique sur Exit pour fermer.
poste le rapport situé dans C:\_OTMoveIt\MovedFiles.

il te sera peut-être demandé de faire redémarrer le PC pour achever la suppression.

0
Réponse 8 / 9
pasky2000
 
ce n'est pas des mauvais fichier c'est just car il y a ecrit crack dedans
un c'est une chanson
l'autre c'st pour enlever les cracquements audio des vynils

la le soucie que j'ai c'est que je n'ai ma connection internet que 10 min
et que je n'arrive pas a desactive le firewall windows
merci encore de me consacre de ton temps
0
Réponse 9 / 9
ep44 Messages postés 7432 Statut Contributeur 3
 
il ressorte comme infectieux tout comme tout les cracks que je t'ai dit de supprimer
maintenant à toi de voir !
0

Discussions similaires

Analyse des logs hijackthis
philnoug -
nayas13 -

35 réponses
spywar
stephane74 -
stephane74 -

4 réponses
Processus et démarrage
baptcollot -
baptcollot -

4 réponses
Analyse logs hijackthis
embêté -
Utilisateur anonyme -

21 réponses
rapport Hijackthis
kawito33 -
kawito33 -

87 réponses