Sujet Précédent Sujet Suivant

Win 32 invalide

Résolu/Fermé
cedd974 Messages postés 74 Date d'inscription mardi 29 avril 2008 Statut Membre Dernière intervention 15 septembre 2010 - 5 déc. 2008 à 09:55
sKe69 Messages postés 21360 Date d'inscription samedi 15 mars 2008 Statut Contributeur sécurité Dernière intervention 30 décembre 2012 - 12 déc. 2008 à 11:26
Bonjour,
voilat suite a un téléchargement j'ai beaucoup de probléme mon anti -virus avast a arrétè de fonctionné en me disant qu'un programme éssaie de changé mon script .

J'éssaie les scan en ligne impossible , je demarre windows defender sa me dit " n'est pas une application valide win 32" j'éssaie de démarré hijach tis mais sa bloque et je suis obligé de redémarré.

MAlgré mes recherches sur le site j'ai pas de réponce.
voila merci d'avance pour votre aide et si le probléme a déjà était posé dsl
A voir également:

46 réponses

Réponse 1 / 46
sKe69 Messages postés 21360 Date d'inscription samedi 15 mars 2008 Statut Contributeur sécurité Dernière intervention 30 décembre 2012 463
5 déc. 2008 à 18:50
Et n'oublie pas !
-> toujours : clique droit / " exécuter entends qu'administrateur " pour lancer un outil ! ... ;)
1
Réponse 2 / 46
sKe69 Messages postés 21360 Date d'inscription samedi 15 mars 2008 Statut Contributeur sécurité Dernière intervention 30 décembre 2012 463
5 déc. 2008 à 10:01
Salut,

1-IMPORTANT :
je rappelle que bagle est amené par un crack et qu'il se relance dès que tu te sers de celui ci; même si tu ne sers pas, il peut se relancer de lui même au démarrage de ton PC . En claire :
Essaye surtout de te rappeler si récemment tu n'as pas cliquer sur un "patch" ou un "keygen" pour installer un logiciel, un jeu cracké ou avoir une version complète d'un soft , et qu'il ne se soit rien passé de particulier ... C'est la que les bagles s'infiltrent ! Si tu retrouves ce crack en particulier ,scratch tout ( le crack, le soft ou encore les zip concernés). Si tu ne te rappelles plus trop , je te conseille fortement de supprimer tous les cracks qui sont sur ton PC ... ;)


2-Télécharge FindyKill de Chiquitine29 :

http://sd-1.archive-host.com/membres/up/116615172019703188/FindyKill.exe

->Enregistre le sur ton bureau et pas ailleurs !

!! Déconnecte toi et ferme toutes applications en cours !!

( Si ton anti-virus s'affolle au moment de l'enregistrement ou de l'utilisation de l'outil , ignore l'alerte ...)

-> Clique sur "FindyKill.exe" pour lancer l'installe de l'outil . Ne touche surtout pas aux paramètres d'installation.


Notes importantes :
* si tu as le prg Elibagla sur ton PC , supprime le ( risque de conflit entre les deux outils ) .

--> Double clique sur le raccourci " FindyKill " qui est sur ton bureau .
( sur la 1er fenêtre , tapes f puis [entrèe] pour la version en français ).

-->choisis l'option 1 ( recherche ) . Puis laisse travailler l'outil sans rien toucher ...

Une fois terminé, poste le rapport FindyKill.txt qui est généré ...

( Note : le rapport est sauvegardé à la racine du disque -> C:\FindyKill.txt )

PS : "Process.exe", une composante de l'outil, est détecté par certains antivirus (AntiVir, Dr.Web, Kaspersky Anti-Virus) comme étant un RiskTool.
Il ne s'agit pas d'un virus, mais d'un utilitaire destiné à mettre fin à des processus.
Mis entre de mauvaises mains, cet utilitaire pourrait arrêter des logiciels de sécurité (Antivirus, Firewall...) d'où l'alerte émise par ces antivirus.


Tuto : https://www.malekal.com/tutorial-findykill/


0
Réponse 3 / 46
cedd974 Messages postés 74 Date d'inscription mardi 29 avril 2008 Statut Membre Dernière intervention 15 septembre 2010 4
5 déc. 2008 à 11:34
Tient voila le rapport :



----------------- FindyKill V4.706 ------------------

* User : cedd - PC-DE-CEDD
* Emplacement : C:\Program Files\FindyKill
* Outils Mis a jours le 27/11/08 par Chiquitine29
* Recherche effectuée à 14:28:10 le 05/12/2008
* Windows Vista - Internet Explorer 7.0.6001.18000

((((((((((((((((( *** Recherche *** ))))))))))))))))))


--------------- [ Processus actifs ] ----------------


C:\Windows\System32\smss.exe
C:\Windows\system32\csrss.exe
C:\Windows\system32\csrss.exe
C:\Windows\system32\wininit.exe
C:\Windows\system32\services.exe
C:\Windows\system32\lsass.exe
C:\Windows\system32\lsm.exe
C:\Windows\system32\winlogon.exe
C:\Windows\system32\svchost.exe
C:\Windows\system32\svchost.exe
C:\Windows\system32\Ati2evxx.exe
C:\Windows\System32\svchost.exe
C:\Windows\System32\svchost.exe
C:\Windows\system32\svchost.exe
C:\Windows\system32\SLsvc.exe
C:\Windows\system32\svchost.exe
C:\Program Files\Thomson\ST330\service\st330service.exe
C:\Windows\system32\Ati2evxx.exe
C:\Windows\system32\svchost.exe
C:\Windows\System32\spoolsv.exe
C:\Windows\system32\svchost.exe
C:\Program Files\Acer Arcade Live\Acer HomeMedia Connect\Kernel\DMS\CLMSServer.exe
C:\Acer\Empowering Technology\ePerformance\MemCheck.exe
C:\Acer\Empowering Technology\eDataSecurity\eDSService.exe
C:\Program Files\Common Files\LightScribe\LSSrvc.exe
C:\Windows\system32\svchost.exe
C:\Program Files\CyberLink\Shared Files\RichVideo.exe
C:\Windows\system32\svchost.exe
C:\Windows\System32\svchost.exe
C:\Windows\system32\SearchIndexer.exe
C:\Acer\Empowering Technology\eRecovery\eRecoveryService.exe
C:\Windows\system32\WUDFHost.exe
C:\Windows\system32\iashost.exe
C:\Windows\system32\wbem\wmiprvse.exe
C:\Windows\system32\Dwm.exe
C:\Windows\system32\taskeng.exe
C:\Windows\RtHDVCpl.exe
C:\Acer\Empowering Technology\eDataSecurity\eDSloader.exe
C:\Program Files\Alcatel\SpeedTouch USB\dragdiag.exe
C:\Program Files\Thomson\ST330\diagnostics\diagnostics.exe
C:\Program Files\Microsoft IntelliPoint\ipoint.exe
C:\Program Files\Windows Sidebar\sidebar.exe
C:\Windows\system32\wbem\unsecapp.exe
C:\Program Files\Windows Sidebar\sidebar.exe
C:\Windows\ehome\ehtray.exe
C:\Program Files\Siber Systems\AI RoboForm\robotaskbaricon.exe
C:\Program Files\Windows Media Player\wmpnscfg.exe
C:\Program Files\Acer Arcade Live\Acer HomeMedia Connect\Kernel\DMS\PCMMediaSharing.exe
C:\Program Files\Windows Media Player\wmpnetwk.exe
C:\Windows\ehome\ehmsas.exe
C:\Windows\system32\svchost.exe
C:\Program Files\Windows Live\Messenger\usnsvc.exe
C:\Windows\system32\conime.exe
C:\Windows\Explorer.EXE
C:\Windows\System32\mobsync.exe
C:\Windows\system32\SearchProtocolHost.exe
C:\Windows\system32\SearchFilterHost.exe
C:\Program Files\Windows Media Player\wmplayer.exe

--------------- [ Fichiers/Dossiers infectieux ] ----------------


»»»» Presence des fichiers dans C:


»»»» Presence des fichiers dans C:\Windows


»»»» Presence des fichiers dans C:\Windows\Prefetch


»»»» Presence des fichiers dans C:\Windows\system32


»»»» Presence des fichiers dans C:\Windows\system32\drivers

Found ! [05/12/2008 08:28] - C:\Windows\system32\drivers\srosa.sys
Found ! [05/12/2008 10:04] - C:\Windows\system32\drivers\srosa2.sys
Found ! [01/10/2004 07:08] - C:\Windows\system32\drivers\winfilse.exe
Found ! [05/12/2008 08:30] - "C:\Windows\system32\drivers\downld"
Found ! [05/12/2008 08:30] - C:\Windows\system32\drivers\downld\109195551.exe
Found ! [05/12/2008 08:30] - C:\Windows\system32\drivers\downld\109221447.exe
Found ! [05/12/2008 08:30] - C:\Windows\system32\drivers\downld\109225098.exe
Found ! [05/12/2008 08:30] - C:\Windows\system32\drivers\downld\109324112.exe
Found ! [05/12/2008 08:30] - C:\Windows\system32\drivers\downld\109394094.exe
Found ! [05/12/2008 08:30] - C:\Windows\system32\drivers\downld\109400349.exe
Found ! [05/12/2008 08:30] - C:\Windows\system32\drivers\downld\109408992.exe
Found ! [05/12/2008 08:30] - C:\Windows\system32\drivers\downld\109464169.exe
Found ! [05/12/2008 08:30] - C:\Windows\system32\drivers\downld\109508177.exe
Found ! [05/12/2008 08:30] - C:\Windows\system32\drivers\downld\14945020.exe
Found ! [05/12/2008 08:30] - C:\Windows\system32\drivers\downld\14968295.exe
Found ! [05/12/2008 08:30] - C:\Windows\system32\drivers\downld\14970604.exe
Found ! [05/12/2008 08:30] - C:\Windows\system32\drivers\downld\15066545.exe
Found ! [05/12/2008 08:30] - C:\Windows\system32\drivers\downld\15131254.exe
Found ! [05/12/2008 08:30] - C:\Windows\system32\drivers\downld\15135934.exe
Found ! [05/12/2008 08:30] - C:\Windows\system32\drivers\downld\15144280.exe
Found ! [05/12/2008 08:30] - C:\Windows\system32\drivers\downld\15199099.exe
Found ! [05/12/2008 08:30] - C:\Windows\system32\drivers\downld\15234043.exe
Found ! [05/12/2008 08:30] - C:\Windows\system32\drivers\downld\170072.exe
Found ! [05/12/2008 08:30] - C:\Windows\system32\drivers\downld\182224.exe
Found ! [05/12/2008 08:30] - C:\Windows\system32\drivers\downld\184315.exe
Found ! [05/12/2008 08:30] - C:\Windows\system32\drivers\downld\187918.exe
Found ! [05/12/2008 08:30] - C:\Windows\system32\drivers\downld\190570.exe
Found ! [05/12/2008 08:30] - C:\Windows\system32\drivers\downld\241910.exe
Found ! [05/12/2008 08:30] - C:\Windows\system32\drivers\downld\287041.exe
Found ! [05/12/2008 08:30] - C:\Windows\system32\drivers\downld\352328.exe
Found ! [05/12/2008 08:30] - C:\Windows\system32\drivers\downld\356680.exe
Found ! [05/12/2008 08:30] - C:\Windows\system32\drivers\downld\367725.exe
Found ! [05/12/2008 08:30] - C:\Windows\system32\drivers\downld\414245.exe
Found ! [05/12/2008 08:30] - C:\Windows\system32\drivers\downld\46017533.exe
Found ! [05/12/2008 08:30] - C:\Windows\system32\drivers\downld\46040029.exe
Found ! [05/12/2008 08:30] - C:\Windows\system32\drivers\downld\46042181.exe
Found ! [05/12/2008 08:30] - C:\Windows\system32\drivers\downld\46113583.exe
Found ! [05/12/2008 08:30] - C:\Windows\system32\drivers\downld\46192754.exe
Found ! [05/12/2008 08:30] - C:\Windows\system32\drivers\downld\46196763.exe
Found ! [05/12/2008 08:30] - C:\Windows\system32\drivers\downld\46207230.exe
Found ! [05/12/2008 08:30] - C:\Windows\system32\drivers\downld\46264795.exe
Found ! [05/12/2008 08:30] - C:\Windows\system32\drivers\downld\46292672.exe
Found ! [05/12/2008 08:30] - C:\Windows\system32\drivers\downld\482838.exe
Found ! [05/12/2008 08:30] - C:\Windows\system32\drivers\downld\60731891.exe
Found ! [05/12/2008 08:30] - C:\Windows\system32\drivers\downld\60755104.exe
Found ! [05/12/2008 08:30] - C:\Windows\system32\drivers\downld\60757787.exe
Found ! [05/12/2008 08:30] - C:\Windows\system32\drivers\downld\60787131.exe
Found ! [05/12/2008 08:30] - C:\Windows\system32\drivers\downld\60843338.exe
Found ! [05/12/2008 08:30] - C:\Windows\system32\drivers\downld\60907251.exe
Found ! [05/12/2008 08:30] - C:\Windows\system32\drivers\downld\60913382.exe
Found ! [05/12/2008 08:30] - C:\Windows\system32\drivers\downld\60921292.exe
Found ! [05/12/2008 08:30] - C:\Windows\system32\drivers\downld\60975517.exe
Found ! [05/12/2008 08:30] - C:\Windows\system32\drivers\downld\61019089.exe
Found ! [05/12/2008 08:30] - C:\Windows\system32\drivers\downld\75452831.exe
Found ! [05/12/2008 08:30] - C:\Windows\system32\drivers\downld\75478384.exe
Found ! [05/12/2008 08:30] - C:\Windows\system32\drivers\downld\75483891.exe
Found ! [05/12/2008 08:30] - C:\Windows\system32\drivers\downld\75564216.exe
Found ! [05/12/2008 08:30] - C:\Windows\system32\drivers\downld\75637724.exe
Found ! [05/12/2008 08:30] - C:\Windows\system32\drivers\downld\75645212.exe
Found ! [05/12/2008 08:30] - C:\Windows\system32\drivers\downld\75656241.exe
Found ! [05/12/2008 08:30] - C:\Windows\system32\drivers\downld\75715366.exe
Found ! [05/12/2008 08:30] - C:\Windows\system32\drivers\downld\75750247.exe
Found ! [05/12/2008 08:30] - C:\Windows\system32\drivers\downld\94412444.exe
Found ! [05/12/2008 08:30] - C:\Windows\system32\drivers\downld\94479431.exe
Found ! [05/12/2008 08:30] - C:\Windows\system32\drivers\downld\94482738.exe
Found ! [05/12/2008 08:30] - C:\Windows\system32\drivers\downld\94563484.exe
Found ! [05/12/2008 08:30] - C:\Windows\system32\drivers\downld\94623233.exe
Found ! [05/12/2008 08:30] - C:\Windows\system32\drivers\downld\94627835.exe
Found ! [05/12/2008 08:30] - C:\Windows\system32\drivers\downld\946442.exe
Found ! [05/12/2008 08:30] - C:\Windows\system32\drivers\downld\94659581.exe
Found ! [05/12/2008 08:30] - C:\Windows\system32\drivers\downld\94705258.exe
Found ! [05/12/2008 08:30] - C:\Windows\system32\drivers\downld\94734493.exe
Found ! [05/12/2008 08:30] - C:\Windows\system32\drivers\downld\966769.exe
Found ! [05/12/2008 08:30] - C:\Windows\system32\drivers\downld\969031.exe

»»»» Presence des fichiers dans C:\Users\cedd\AppData\Roaming


»»»» Presence des fichiers dans C:\Users\cedd\AppData\Local\Temp


»»»» Presence des fichiers dans C:\Users\cedd\Local Settings\Temporary Internet Files\Content.IE5

Found ! [26/10/2008 14:43] - C:\Users\cedd\Music\Lil Jon & the East Side Boyz\Kings of Crunk (Explicit Retai\AlbumArt_{05EA33E2-D701-4096-B648-DAF1C52E8D4E}_Large.jpg
Found ! [26/10/2008 14:42] - C:\Users\cedd\Music\Lil Jon & the East Side Boyz\Kings of Crunk (Explicit Retai\AlbumArt_{05EA33E2-D701-4096-B648-DAF1C52E8D4E}_Small.jpg

--------------- [ Registre / Startup ] ----------------

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\run]

Sidebar=C:\Program Files\Windows Sidebar\sidebar.exe /autoRun
Acer Tour Reminder=C:\Acer\AcerTour\Reminder.exe
ehTray.exe=C:\Windows\ehome\ehTray.exe
msnmsgr="C:\Program Files\Windows Live\Messenger\msnmsgr.exe" /background
RoboForm="C:\Program Files\Siber Systems\AI RoboForm\RoboTaskBarIcon.exe"
WMPNSCFG=C:\Program Files\Windows Media Player\WMPNSCFG.exe
SpybotSD TeaTimer=C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\run]

RtHDVCpl=RtHDVCpl.exe
Acer Empowering Technology Monitor=C:\Acer\Empowering Technology\SysMonitor.exe
eDataSecurity Loader=C:\Acer\Empowering Technology\eDataSecurity\eDSloader.exe
WarReg_PopUp=C:\Acer\WR_PopUp\WarReg_PopUp.exe
Acer Tour Reminder=C:\Acer\AcerTour\Reminder.exe
SpeedTouch USB Diagnostics="C:\Program Files\Alcatel\SpeedTouch USB\Dragdiag.exe" /icon
diagnostics="C:\Program Files\Thomson\ST330\diagnostics\diagnostics.exe" /icon -l:fr
IntelliPoint="C:\Program Files\Microsoft IntelliPoint\ipoint.exe"
Adobe Reader Speed Launcher="C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe"
SunJavaUpdateSched="C:\Program Files\Java\jre6\bin\jusched.exe"
SpywareTerminator="C:\Program Files\Spyware Terminator\SpywareTerminatorShield.exe"
avast!=C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\run\OptionalComponents=
<NO NAME>=
HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\run\OptionalComponents\IMAIL=
Installed=1
<NO NAME>=
HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\run\OptionalComponents\MAPI=
NoChange=1
Installed=1
<NO NAME>=
HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\run\OptionalComponents\MSFS=
Installed=1
<NO NAME>=

[HKEY_CURRENT_USER\software\local appwizard-generated applications\Browse]
[HKEY_CURRENT_USER\software\local appwizard-generated applications\install_patch]
[HKEY_CURRENT_USER\software\local appwizard-generated applications\NTI WaveEditor]
[HKEY_CURRENT_USER\software\local appwizard-generated applications\playplus]
[HKEY_CURRENT_USER\software\local appwizard-generated applications\Reminder]
[HKEY_CURRENT_USER\software\local appwizard-generated applications\SkyTel]
[HKEY_CURRENT_USER\software\local appwizard-generated applications\vscap]
[HKEY_CURRENT_USER\software\local appwizard-generated applications\winfilse]

--------------- [ Registre / Clés infectieuses ] ----------------


Found ! - HKEY_USERS\S-1-5-21-881487021-2558403990-3707160938-1000\Software\Local AppWizard-Generated Applications\install_patch
Found ! - HKEY_USERS\S-1-5-21-881487021-2558403990-3707160938-1000\Software\Local AppWizard-Generated Applications\winfilse
Found ! - HKEY_USERS\S-1-5-21-881487021-2558403990-3707160938-1000\Software\bisoft
Found ! - HKEY_CURRENT_USER\Software\Local AppWizard-Generated Applications\install_patch
Found ! - HKEY_CURRENT_USER\Software\Local AppWizard-Generated Applications\winfilse
Found ! - HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\srosa
Found ! - HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Services\srosa
Found ! - HKEY_LOCAL_MACHINE\SYSTEM\ControlSet003\Services\srosa
Found ! - HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_SROSA
Found ! - HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Enum\Root\LEGACY_SROSA
Found ! - HKEY_LOCAL_MACHINE\SYSTEM\ControlSet003\Enum\Root\LEGACY_SROSA
Found ! - HKEY_CURRENT_USER\Software\bisoft
Found ! - HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_SK9OU0S
Found ! - HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Enum\Root\LEGACY_SK9OU0S
Found ! - HKEY_LOCAL_MACHINE\SYSTEM\ControlSet003\Enum\Root\LEGACY_SK9OU0S
Found ! - HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\sK9Ou0s
Found ! - HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Services\sK9Ou0s
Found ! - HKEY_LOCAL_MACHINE\SYSTEM\ControlSet003\Services\sK9Ou0s

--------------- [ Etat / Services ] ----------------



+- Services : [ Auto=2 / Demande=3 / Désactivé=4 ]

/!\ Ndisuio - Type de démarrage = 4

EapHost - Type de démarrage = 3

Wlansvc - Type de démarrage = 3

SharedAccess - Type de démarrage = 2

wuauserv - Type de démarrage = 2

wscsvc - Type de démarrage = 2

/!\ WinDefend - Type de démarrage = 4



--------------- [ Recherche dans supports amovibles] ----------------


+- Informations :

C: - Lecteur fixe
D: - Lecteur fixe

+- presence des fichiers :



--------------- [ Registre / Mountpoint2 ] ----------------


-> Not found !


------------------- ! Fin du rapport ! --------------------
0
Réponse 4 / 46
sKe69 Messages postés 21360 Date d'inscription samedi 15 mars 2008 Statut Contributeur sécurité Dernière intervention 30 décembre 2012 463
5 déc. 2008 à 11:39
la suite :


1- Important :
Branche toutes tes unités externes au PC ( DD externes , clé USB , lecteur mp3, ect...) mais sans les ouvrir !
Tu les retireras après la manipe ...


2- ! Ferme toutes applications en cours !

Relance FindyKill :

-> choisis cette fois-ci l'option 2 .

/!\ ton PC va redémarrer de lui même , c'est normal !... Laisse travailler l'outil jusqu' à l'apparition du message :
"nettoyage terminé" .

Note : lors du message d'avertissement , clique sur " Ok " .

--> ensuite poste le nouveau rapport FindyKill.txt qui est généré et attends la suite ...

( Note : le rapport est sauvegardé à la racine du disque -> C:\FindyKill.txt )


PS : Si le Bureau ne réapparait pas, presse Ctrl + Alt + Suppr , Onglet "Fichier"-> "Nouvelle tâche":
tape explorer.exe et valide .


une fois ce rapport posté ( et pas avant ! ) , fais ceci :


========================


3- Télécharge et installe le logiciel HijackThis :

ici HijackThis
ou ici http://www.trendsecure.com/portal/en-US/_download/HJTInstall.exe
ou ici https://www.clubic.com/telecharger-fiche17891-hijackthis.html

* Clique sur le setup pour lancer l'installe : laisse toi guider et ne modifie pas les paramètres d'installation .
A la fin de l'installe , le prg ce lance automatiquement : ferme le en cliquant sur la croix rouge .
Au final, tu dois avoir un raccourci sur ton bureau et aussi un cheminement comme :
"C:\ program files\Trend Micro\HijackThis\HijackThis.exe " .

tuto pour utilisation :
Regarde ici, c'est parfaitement expliqué en images (merci balltrap34),
http://perso.orange.fr/rginformatique/section%20virus/demohijack.htm
( Ne fixe encore AUCUNE ligne, cela pourrait empêcher ton PC de fonctionner correctement )

* !! Déconnecte toi et ferme toutes tes applications en cours !!

Clique sur le raccourci du bureau pour lancer le prg :
fais un scan HijackThis en cliquant sur : "Do a system scan and save a logfile"

---> Poste le rapport généré pour analyse ...

0

Vous n’avez pas trouvé la réponse que vous recherchez ?

Posez votre question
Réponse 5 / 46
cedd974 Messages postés 74 Date d'inscription mardi 29 avril 2008 Statut Membre Dernière intervention 15 septembre 2010 4
5 déc. 2008 à 11:55
suite rapport :



----------------- FindyKill V4.706 ------------------

* User : cedd - PC-DE-CEDD
* executed from : C:\Program Files\FindyKill
* Update on 27/11/08 par Chiquitine29
* Start at 14:50:29 the 05/12/2008
* Windows Vista - Internet Explorer 7.0.6001.18000


((((((((((((((( *** deleting *** ))))))))))))))))))


--------------- [ Active Processes ] ----------------


C:\Windows\System32\smss.exe
C:\Windows\system32\csrss.exe
C:\Windows\system32\wininit.exe
C:\Windows\system32\csrss.exe
C:\Windows\system32\services.exe
C:\Windows\system32\lsass.exe
C:\Windows\system32\lsm.exe
C:\Windows\system32\winlogon.exe
C:\Windows\system32\svchost.exe
C:\Windows\system32\svchost.exe
C:\Windows\system32\LogonUI.exe
C:\Windows\system32\Ati2evxx.exe
C:\Windows\System32\svchost.exe
C:\Windows\System32\svchost.exe
C:\Windows\system32\svchost.exe
C:\Windows\system32\SLsvc.exe
C:\Windows\system32\svchost.exe
C:\Program Files\Thomson\ST330\service\st330service.exe
C:\Windows\system32\Ati2evxx.exe
C:\Windows\system32\msinfo32.exe
C:\Windows\system32\svchost.exe
C:\Windows\System32\spoolsv.exe
C:\Windows\system32\svchost.exe
C:\Program Files\Acer Arcade Live\Acer HomeMedia Connect\Kernel\DMS\CLMSServer.exe
C:\Acer\Empowering Technology\ePerformance\MemCheck.exe
C:\Acer\Empowering Technology\eDataSecurity\eDSService.exe
C:\Program Files\Common Files\LightScribe\LSSrvc.exe
C:\Windows\system32\svchost.exe
C:\Windows\system32\svchost.exe
C:\Program Files\CyberLink\Shared Files\RichVideo.exe
C:\Windows\system32\svchost.exe
C:\Windows\System32\svchost.exe
C:\Windows\system32\SearchIndexer.exe
C:\Acer\Empowering Technology\eRecovery\eRecoveryService.exe
C:\Windows\system32\WUDFHost.exe
C:\Windows\system32\iashost.exe
C:\Windows\system32\wbem\wmiprvse.exe
C:\Windows\System32\alg.exe
C:\Windows\system32\wbem\wmiprvse.exe
C:\Windows\system32\taskeng.exe
\\?\C:\Windows\system32\wbem\WMIADAP.EXE
C:\Windows\system32\DllHost.exe
C:\Windows\system32\userinit.exe
C:\Windows\system32\Dwm.exe
C:\Windows\system32\taskeng.exe
C:\Windows\system32\runonce.exe
C:\Windows\system32\conime.exe

--------------- [ Infected files / folders ] ----------------


»»»» Supression files in C:


»»»» Supression files in C:\Windows


»»»» Supression files in C:\Windows\Prefetch


»»»» Supression files in C:\Windows\system32


»»»» Supression files in C:\Windows\system32\drivers

Deleted ! - C:\Windows\system32\drivers\srosa.sys
Deleted ! - C:\Windows\system32\drivers\srosa2.sys
Deleted ! - C:\Windows\system32\drivers\winfilse.exe
Deleted ! - C:\Windows\system32\drivers\downld\109195551.exe
Deleted ! - C:\Windows\system32\drivers\downld\109221447.exe
Deleted ! - C:\Windows\system32\drivers\downld\109225098.exe
Deleted ! - C:\Windows\system32\drivers\downld\109324112.exe
Deleted ! - C:\Windows\system32\drivers\downld\109394094.exe
Deleted ! - C:\Windows\system32\drivers\downld\109400349.exe
Deleted ! - C:\Windows\system32\drivers\downld\109408992.exe
Deleted ! - C:\Windows\system32\drivers\downld\109464169.exe
Deleted ! - C:\Windows\system32\drivers\downld\109508177.exe
Deleted ! - C:\Windows\system32\drivers\downld\14945020.exe
Deleted ! - C:\Windows\system32\drivers\downld\14968295.exe
Deleted ! - C:\Windows\system32\drivers\downld\14970604.exe
Deleted ! - C:\Windows\system32\drivers\downld\15066545.exe
Deleted ! - C:\Windows\system32\drivers\downld\15131254.exe
Deleted ! - C:\Windows\system32\drivers\downld\15135934.exe
Deleted ! - C:\Windows\system32\drivers\downld\15144280.exe
Deleted ! - C:\Windows\system32\drivers\downld\15199099.exe
Deleted ! - C:\Windows\system32\drivers\downld\15234043.exe
Deleted ! - C:\Windows\system32\drivers\downld\170072.exe
Deleted ! - C:\Windows\system32\drivers\downld\182224.exe
Deleted ! - C:\Windows\system32\drivers\downld\184315.exe
Deleted ! - C:\Windows\system32\drivers\downld\187918.exe
Deleted ! - C:\Windows\system32\drivers\downld\190570.exe
Deleted ! - C:\Windows\system32\drivers\downld\241910.exe
Deleted ! - C:\Windows\system32\drivers\downld\287041.exe
Deleted ! - C:\Windows\system32\drivers\downld\352328.exe
Deleted ! - C:\Windows\system32\drivers\downld\356680.exe
Deleted ! - C:\Windows\system32\drivers\downld\367725.exe
Deleted ! - C:\Windows\system32\drivers\downld\414245.exe
Deleted ! - C:\Windows\system32\drivers\downld\46017533.exe
Deleted ! - C:\Windows\system32\drivers\downld\46040029.exe
Deleted ! - C:\Windows\system32\drivers\downld\46042181.exe
Deleted ! - C:\Windows\system32\drivers\downld\46113583.exe
Deleted ! - C:\Windows\system32\drivers\downld\46192754.exe
Deleted ! - C:\Windows\system32\drivers\downld\46196763.exe
Deleted ! - C:\Windows\system32\drivers\downld\46207230.exe
Deleted ! - C:\Windows\system32\drivers\downld\46264795.exe
Deleted ! - C:\Windows\system32\drivers\downld\46292672.exe
Deleted ! - C:\Windows\system32\drivers\downld\482838.exe
Deleted ! - C:\Windows\system32\drivers\downld\60731891.exe
Deleted ! - C:\Windows\system32\drivers\downld\60755104.exe
Deleted ! - C:\Windows\system32\drivers\downld\60757787.exe
Deleted ! - C:\Windows\system32\drivers\downld\60787131.exe
Deleted ! - C:\Windows\system32\drivers\downld\60843338.exe
Deleted ! - C:\Windows\system32\drivers\downld\60907251.exe
Deleted ! - C:\Windows\system32\drivers\downld\60913382.exe
Deleted ! - C:\Windows\system32\drivers\downld\60921292.exe
Deleted ! - C:\Windows\system32\drivers\downld\60975517.exe
Deleted ! - C:\Windows\system32\drivers\downld\61019089.exe
Deleted ! - C:\Windows\system32\drivers\downld\75452831.exe
Deleted ! - C:\Windows\system32\drivers\downld\75478384.exe
Deleted ! - C:\Windows\system32\drivers\downld\75483891.exe
Deleted ! - C:\Windows\system32\drivers\downld\75564216.exe
Deleted ! - C:\Windows\system32\drivers\downld\75637724.exe
Deleted ! - C:\Windows\system32\drivers\downld\75645212.exe
Deleted ! - C:\Windows\system32\drivers\downld\75656241.exe
Deleted ! - C:\Windows\system32\drivers\downld\75715366.exe
Deleted ! - C:\Windows\system32\drivers\downld\75750247.exe
Deleted ! - C:\Windows\system32\drivers\downld\94412444.exe
Deleted ! - C:\Windows\system32\drivers\downld\94479431.exe
Deleted ! - C:\Windows\system32\drivers\downld\94482738.exe
Deleted ! - C:\Windows\system32\drivers\downld\94563484.exe
Deleted ! - C:\Windows\system32\drivers\downld\94623233.exe
Deleted ! - C:\Windows\system32\drivers\downld\94627835.exe
Deleted ! - C:\Windows\system32\drivers\downld\946442.exe
Deleted ! - C:\Windows\system32\drivers\downld\94659581.exe
Deleted ! - C:\Windows\system32\drivers\downld\94705258.exe
Deleted ! - C:\Windows\system32\drivers\downld\94734493.exe
Deleted ! - C:\Windows\system32\drivers\downld\966769.exe
Deleted ! - C:\Windows\system32\drivers\downld\969031.exe
Deleted ! - "C:\Windows\system32\drivers\downld"

»»»» Supression files in C:\Users\cedd\AppData\Roaming


»»»» Supression files in C:\Users\cedd\AppData\Local\Temp


»»»» Supression files in C:\Users\cedd\Local Settings\Temporary Internet Files\Content.IE5

Deleted ! - C:\Users\cedd\Music\Lil Jon & the East Side Boyz\Kings of Crunk (Explicit Retai\AlbumArt_{05EA33E2-D701-4096-B648-DAF1C52E8D4E}_Large.jpg
Deleted ! - C:\Users\cedd\Music\Lil Jon & the East Side Boyz\Kings of Crunk (Explicit Retai\AlbumArt_{05EA33E2-D701-4096-B648-DAF1C52E8D4E}_Small.jpg

--------------- [ Registry / Infected keys ] ----------------

Deleted ! - HKEY_LOCAL_MACHINE\SYSTEM\ControlSet003\Services\srosa
Deleted ! - HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_SROSA
Deleted ! - HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Enum\Root\LEGACY_SROSA
Deleted ! - HKEY_LOCAL_MACHINE\SYSTEM\ControlSet003\Enum\Root\LEGACY_SROSA
Deleted ! - HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_SK9OU0S
Deleted ! - HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Enum\Root\LEGACY_SK9OU0S
Deleted ! - HKEY_LOCAL_MACHINE\SYSTEM\ControlSet003\Enum\Root\LEGACY_SK9OU0S
Deleted ! - HKEY_USERS\S-1-5-21-881487021-2558403990-3707160938-1000\Software\Local AppWizard-Generated Applications\install_patch
Deleted ! - HKEY_USERS\S-1-5-21-881487021-2558403990-3707160938-1000\Software\Local AppWizard-Generated Applications\winfilse

--------------- [ States / Restarting of services ] ----------------



+- Services : [ Auto=2 / Request=3 / Disable=4 ]

Ndisuio - Type of startup = 3

EapHost - Type of startup = 2

Wlansvc - Type of startup = 2

SharedAccess - Type of startup = 2

wuauserv - Type of startup = 2

wscsvc - Type of startup = 2

WinDefend - Type of startup = 2


--------------- [ Cleaning removable drives ] ----------------

+- Informations :

C: - Lecteur fixe
D: - Lecteur fixe
J: - Lecteur amovible
L: - Lecteur amovible

+- deleting files :


--------------- [ Registry / Mountpoint2 ] ----------------


-> Not found !


--------------- [ Searching Cracks / Keygen ] ----------------

C:\Users\cedd\Desktop\projetC‚dric\Crack
C:\Users\cedd\Desktop\projetC‚dric\Crack\keygen.exe
C:\Users\cedd\Desktop\projetC‚dric\Crack\Long term serial.txt
C:\Users\cedd\Desktop\projetCédric\Avast AntiVirus PRO Edition 4.8.1169\Keygen.exe
C:\Users\cedd\Downloads\eMule\Incoming\Atomix Virtual DJ 3.2 + crack + 38 skins + 109 effects + 123 samples
C:\Users\cedd\Downloads\eMule\Incoming\Atomix Virtual DJ 3.2 + crack + 38 skins + 109 effects + 123 samples\Atomix Virtual DJ 3.2 + crack + 38 skins + 109 effects + 123 samples
C:\Users\cedd\Downloads\eMule\Incoming\Atomix Virtual DJ 3.2 + crack + 38 skins + 109 effects + 123 samples\Atomix Virtual DJ 3.2 + crack + 38 skins + 109 effects + 123 samples\CD VDJTimeCode
C:\Users\cedd\Downloads\eMule\Incoming\Atomix Virtual DJ 3.2 + crack + 38 skins + 109 effects + 123 samples\Atomix Virtual DJ 3.2 + crack + 38 skins + 109 effects + 123 samples\Effects
C:\Users\cedd\Downloads\eMule\Incoming\Atomix Virtual DJ 3.2 + crack + 38 skins + 109 effects + 123 samples\Atomix Virtual DJ 3.2 + crack + 38 skins + 109 effects + 123 samples\install_virtualdj_v3.2.exe
C:\Users\cedd\Downloads\eMule\Incoming\Atomix Virtual DJ 3.2 + crack + 38 skins + 109 effects + 123 samples\Atomix Virtual DJ 3.2 + crack + 38 skins + 109 effects + 123 samples\Samples
C:\Users\cedd\Downloads\eMule\Incoming\Atomix Virtual DJ 3.2 + crack + 38 skins + 109 effects + 123 samples\Atomix Virtual DJ 3.2 + crack + 38 skins + 109 effects + 123 samples\Skins
C:\Users\cedd\Downloads\eMule\Incoming\Atomix Virtual DJ 3.2 + crack + 38 skins + 109 effects + 123 samples\Atomix Virtual DJ 3.2 + crack + 38 skins + 109 effects + 123 samples\virtualdj.exe
C:\Users\cedd\Downloads\eMule\Incoming\Atomix Virtual DJ 3.2 + crack + 38 skins + 109 effects + 123 samples\Atomix Virtual DJ 3.2 + crack + 38 skins + 109 effects + 123 samples\CD VDJTimeCode\VDJTimeCode.mp3
C:\Users\cedd\Downloads\eMule\Incoming\Atomix Virtual DJ 3.2 + crack + 38 skins + 109 effects + 123 samples\Atomix Virtual DJ 3.2 + crack + 38 skins + 109 effects + 123 samples\Effects\1 cut per beat.dll
C:\Users\cedd\Downloads\eMule\Incoming\Atomix Virtual DJ 3.2 + crack + 38 skins + 109 effects + 123 samples\Atomix Virtual DJ 3.2 + crack + 38 skins + 109 effects + 123 samples\Effects\16 cuts per beat.dll
C:\Users\cedd\Downloads\eMule\Incoming\Atomix Virtual DJ 3.2 + crack + 38 skins + 109 effects + 123 samples\Atomix Virtual DJ 3.2 + crack + 38 skins + 109 effects + 123 samples\Effects\2 cuts per beat.dll
C:\Users\cedd\Downloads\eMule\Incoming\Atomix Virtual DJ 3.2 + crack + 38 skins + 109 effects + 123 samples\Atomix Virtual DJ 3.2 + crack + 38 skins + 109 effects + 123 samples\Effects\3 cuts per beat.dll
C:\Users\cedd\Downloads\eMule\Incoming\Atomix Virtual DJ 3.2 + crack + 38 skins + 109 effects + 123 samples\Atomix Virtual DJ 3.2 + crack + 38 skins + 109 effects + 123 samples\Effects\32 cuts per beat.dll
C:\Users\cedd\Downloads\eMule\Incoming\Atomix Virtual DJ 3.2 + crack + 38 skins + 109 effects + 123 samples\Atomix Virtual DJ 3.2 + crack + 38 skins + 109 effects + 123 samples\Effects\4 cuts per beat.dll
C:\Users\cedd\Downloads\eMule\Incoming\Atomix Virtual DJ 3.2 + crack + 38 skins + 109 effects + 123 samples\Atomix Virtual DJ 3.2 + crack + 38 skins + 109 effects + 123 samples\Effects\6 cuts per beat.dll
C:\Users\cedd\Downloads\eMule\Incoming\Atomix Virtual DJ 3.2 + crack + 38 skins + 109 effects + 123 samples\Atomix Virtual DJ 3.2 + crack + 38 skins + 109 effects + 123 samples\Effects\8 cuts per beat.dll
C:\Users\cedd\Downloads\eMule\Incoming\Atomix Virtual DJ 3.2 + crack + 38 skins + 109 effects + 123 samples\Atomix Virtual DJ 3.2 + crack + 38 skins + 109 effects + 123 samples\Effects\Adjustable AutoWah.dll
C:\Users\cedd\Downloads\eMule\Incoming\Atomix Virtual DJ 3.2 + crack + 38 skins + 109 effects + 123 samples\Atomix Virtual DJ 3.2 + crack + 38 skins + 109 effects + 123 samples\Effects\Adjustable Compressor.dll
C:\Users\cedd\Downloads\eMule\Incoming\Atomix Virtual DJ 3.2 + crack + 38 skins + 109 effects + 123 samples\Atomix Virtual DJ 3.2 + crack + 38 skins + 109 effects + 123 samples\Effects\Adjustable Linear Sawtooth Flanger.dll
C:\Users\cedd\Downloads\eMule\Incoming\Atomix Virtual DJ 3.2 + crack + 38 skins + 109 effects + 123 samples\Atomix Virtual DJ 3.2 + crack + 38 skins + 109 effects + 123 samples\Effects\Adjustable Phaser.dll
C:\Users\cedd\Downloads\eMule\Incoming\Atomix Virtual DJ 3.2 + crack + 38 skins + 109 effects + 123 samples\Atomix Virtual DJ 3.2 + crack + 38 skins + 109 effects + 123 samples\Effects\AutoCut.dll
C:\Users\cedd\Downloads\eMule\Incoming\Atomix Virtual DJ 3.2 + crack + 38 skins + 109 effects + 123 samples\Atomix Virtual DJ 3.2 + crack + 38 skins + 109 effects + 123 samples\Effects\AutoWah.dll
C:\Users\cedd\Downloads\eMule\Incoming\Atomix Virtual DJ 3.2 + crack + 38 skins + 109 effects + 123 samples\Atomix Virtual DJ 3.2 + crack + 38 skins + 109 effects + 123 samples\Effects\AutoWah2.dll
C:\Users\cedd\Downloads\eMule\Incoming\Atomix Virtual DJ 3.2 + crack + 38 skins + 109 effects + 123 samples\Atomix Virtual DJ 3.2 + crack + 38 skins + 109 effects + 123 samples\Effects\backspin.dll
C:\Users\cedd\Downloads\eMule\Incoming\Atomix Virtual DJ 3.2 + crack + 38 skins + 109 effects + 123 samples\Atomix Virtual DJ 3.2 + crack + 38 skins + 109 effects + 123 samples\Effects\balance.dll
C:\Users\cedd\Downloads\eMule\Incoming\Atomix Virtual DJ 3.2 + crack + 38 skins + 109 effects + 123 samples\Atomix Virtual DJ 3.2 + crack + 38 skins + 109 effects + 123 samples\Effects\Beat break.dll
C:\Users\cedd\Downloads\eMule\Incoming\Atomix Virtual DJ 3.2 + crack + 38 skins + 109 effects + 123 samples\Atomix Virtual DJ 3.2 + crack + 38 skins + 109 effects + 123 samples\Effects\BeatRepeat.dll
C:\Users\cedd\Downloads\eMule\Incoming\Atomix Virtual DJ 3.2 + crack + 38 skins + 109 effects + 123 samples\Atomix Virtual DJ 3.2 + crack + 38 skins + 109 effects + 123 samples\Effects\Brake Beat.dll
C:\Users\cedd\Downloads\eMule\Incoming\Atomix Virtual DJ 3.2 + crack + 38 skins + 109 effects + 123 samples\Atomix Virtual DJ 3.2 + crack + 38 skins + 109 effects + 123 samples\Effects\brake.dll
C:\Users\cedd\Downloads\eMule\Incoming\Atomix Virtual DJ 3.2 + crack + 38 skins + 109 effects + 123 samples\Atomix Virtual DJ 3.2 + crack + 38 skins + 109 effects + 123 samples\Effects\Brake2.dll
C:\Users\cedd\Downloads\eMule\Incoming\Atomix Virtual DJ 3.2 + crack + 38 skins + 109 effects + 123 samples\Atomix Virtual DJ 3.2 + crack + 38 skins + 109 effects + 123 samples\Effects\BrakeAndSwirlUp.dll
C:\Users\cedd\Downloads\eMule\Incoming\Atomix Virtual DJ 3.2 + crack + 38 skins + 109 effects + 123 samples\Atomix Virtual DJ 3.2 + crack + 38 skins + 109 effects + 123 samples\Effects\Classic Phaser.dll
C:\Users\cedd\Downloads\eMule\Incoming\Atomix Virtual DJ 3.2 + crack + 38 skins + 109 effects + 123 samples\Atomix Virtual DJ 3.2 + crack + 38 skins + 109 effects + 123 samples\Effects\Classic Series License Agreement.pdf
C:\Users\cedd\Downloads\eMule\Incoming\Atomix Virtual DJ 3.2 + crack + 38 skins + 109 effects + 123 samples\Atomix Virtual DJ 3.2 + crack + 38 skins + 109 effects + 123 samples\Effects\Compressor_1.dll
C:\Users\cedd\Downloads\eMule\Incoming\Atomix Virtual DJ 3.2 + crack + 38 skins + 109 effects + 123 samples\Atomix Virtual DJ 3.2 + crack + 38 skins + 109 effects + 123 samples\Effects\Compressor_2.dll
C:\Users\cedd\Downloads\eMule\Incoming\Atomix Virtual DJ 3.2 + crack + 38 skins + 109 effects + 123 samples\Atomix Virtual DJ 3.2 + crack + 38 skins + 109 effects + 123 samples\Effects\Cut.dll
C:\Users\cedd\Downloads\eMule\Incoming\Atomix Virtual DJ 3.2 + crack + 38 skins + 109 effects + 123 samples\Atomix Virtual DJ 3.2 + crack + 38 skins + 109 effects + 123 samples\Effects\cut2.dll
C:\Users\cedd\Downloads\eMule\Incoming\Atomix Virtual DJ 3.2 + crack + 38 skins + 109 effects + 123 samples\Atomix Virtual DJ 3.2 + crack + 38 skins + 109 effects + 123 samples\Effects\cutfx.dll
C:\Users\cedd\Downloads\eMule\Incoming\Atomix Virtual DJ 3.2 + crack + 38 skins + 109 effects + 123 samples\Atomix Virtual DJ 3.2 + crack + 38 skins + 109 effects + 123 samples\Effects\cutoff_w_slider.dll
C:\Users\cedd\Downloads\eMule\Incoming\Atomix Virtual DJ 3.2 + crack + 38 skins + 109 effects + 123 samples\Atomix Virtual DJ 3.2 + crack + 38 skins + 109 effects + 123 samples\Effects\Devil_Chorus.dll
C:\Users\cedd\Downloads\eMule\Incoming\Atomix Virtual DJ 3.2 + crack + 38 skins + 109 effects + 123 samples\Atomix Virtual DJ 3.2 + crack + 38 skins + 109 effects + 123 samples\Effects\DFV Flanger.dll
C:\Users\cedd\Downloads\eMule\Incoming\Atomix Virtual DJ 3.2 + crack + 38 skins + 109 effects + 123 samples\Atomix Virtual DJ 3.2 + crack + 38 skins + 109 effects + 123 samples\Effects\Distort.dll
C:\Users\cedd\Downloads\eMule\Incoming\Atomix Virtual DJ 3.2 + crack + 38 skins + 109 effects + 123 samples\Atomix Virtual DJ 3.2 + crack + 38 skins + 109 effects + 123 samples\Effects\DJCorpse_Flanger.dll
C:\Users\cedd\Downloads\eMule\Incoming\Atomix Virtual DJ 3.2 + crack + 38 skins + 109 effects + 123 samples\Atomix Virtual DJ 3.2 + crack + 38 skins + 109 effects + 123 samples\Effects\Echo.dll
C:\Users\cedd\Downloads\eMule\Incoming\Atomix Virtual DJ 3.2 + crack + 38 skins + 109 effects + 123 samples\Atomix Virtual DJ 3.2 + crack + 38 skins + 109 effects + 123 samples\Effects\Expander.dll
C:\Users\cedd\Downloads\eMule\Incoming\Atomix Virtual DJ 3.2 + crack + 38 skins + 109 effects + 123 samples\Atomix Virtual DJ 3.2 + crack + 38 skins + 109 effects + 123 samples\Effects\Filters.dll
C:\Users\cedd\Downloads\eMule\Incoming\Atomix Virtual DJ 3.2 + crack + 38 skins + 109 effects + 123 samples\Atomix Virtual DJ 3.2 + crack + 38 skins + 109 effects + 123 samples\Effects\flanger.dll
C:\Users\cedd\Downloads\eMule\Incoming\Atomix Virtual DJ 3.2 + crack + 38 skins + 109 effects + 123 samples\Atomix Virtual DJ 3.2 + crack + 38 skins + 109 effects + 123 samples\Effects\Flanger2.dll
C:\Users\cedd\Downloads\eMule\Incoming\Atomix Virtual DJ 3.2 + crack + 38 skins + 109 effects + 123 samples\Atomix Virtual DJ 3.2 + crack + 38 skins + 109 effects + 123 samples\Effects\Flanger_Lite.dll
C:\Users\cedd\Downloads\eMule\Incoming\Atomix Virtual DJ 3.2 + crack + 38 skins + 109 effects + 123 samples\Atomix Virtual DJ 3.2 + crack + 38 skins + 109 effects + 123 samples\Effects\flanger_lite_8x.dll
C:\Users\cedd\Downloads\eMule\Incoming\Atomix Virtual DJ 3.2 + crack + 38 skins + 109 effects + 123 samples\Atomix Virtual DJ 3.2 + crack + 38 skins + 109 effects + 123 samples\Effects\Flanging_Chorus.dll
C:\Users\cedd\Downloads\eMule\Incoming\Atomix Virtual DJ 3.2 + crack + 38 skins + 109 effects + 123 samples\Atomix Virtual DJ 3.2 + crack + 38 skins + 109 effects + 123 samples\Effects\Flippin Doubles.dll
C:\Users\cedd\Downloads\eMule\Incoming\Atomix Virtual DJ 3.2 + crack + 38 skins + 109 effects + 123 samples\Atomix Virtual DJ 3.2 + crack + 38 skins + 109 effects + 123 samples\Effects\FlippinDouble.dll
C:\Users\cedd\Downloads\eMule\Incoming\Atomix Virtual DJ 3.2 + crack + 38 skins + 109 effects + 123 samples\Atomix Virtual DJ 3.2 + crack + 38 skins + 109 effects + 123 samples\Effects\FlippinDoubles.dll
C:\Users\cedd\Downloads\eMule\Incoming\Atomix Virtual DJ 3.2 + crack + 38 skins + 109 effects + 123 samples\Atomix Virtual DJ 3.2 + crack + 38 skins + 109 effects + 123 samples\Effects\Full_Reverse.dll
C:\Users\cedd\Downloads\eMule\Incoming\Atomix Virtual DJ 3.2 + crack + 38 skins + 109 effects + 123 samples\Atomix Virtual DJ 3.2 + crack + 38 skins + 109 effects + 123 samples\Effects\Funny flanger v2.dll
C:\Users\cedd\Downloads\eMule\Incoming\Atomix Virtual DJ 3.2 + crack + 38 skins + 109 effects + 123 samples\Atomix Virtual DJ 3.2 + crack + 38 skins + 109 effects + 123 samples\Effects\Hallway Echo.dll
C:\Users\cedd\Downloads\eMule\Incoming\Atomix Virtual DJ 3.2 + crack + 38 skins + 109 effects + 123 samples\Atomix Virtual DJ 3.2 + crack + 38 skins + 109 effects + 123 samples\Effects\Heavy Echo.dll
C:\Users\cedd\Downloads\eMule\Incoming\Atomix Virtual DJ 3.2 + crack + 38 skins + 109 effects + 123 samples\Atomix Virtual DJ 3.2 + crack + 38 skins + 109 effects + 123 samples\Effects\HighPass.dll
C:\Users\cedd\Downloads\eMule\Incoming\Atomix Virtual DJ 3.2 + crack + 38 skins + 109 effects + 123 samples\Atomix Virtual DJ 3.2 + crack + 38 skins + 109 effects + 123 samples\Effects\highpass_w_slider.dll
C:\Users\cedd\Downloads\eMule\Incoming\Atomix Virtual DJ 3.2 + crack + 38 skins + 109 effects + 123 samples\Atomix Virtual DJ 3.2 + crack + 38 skins + 109 effects + 123 samples\Effects\JN-cut.dll
C:\Users\cedd\Downloads\eMule\Incoming\Atomix Virtual DJ 3.2 + crack + 38 skins + 109 effects + 123 samples\Atomix Virtual DJ 3.2 + crack + 38 skins + 109 effects + 123 samples\Effects\karaoke.dll
C:\Users\cedd\Downloads\eMule\Incoming\Atomix Virtual DJ 3.2 + crack + 38 skins + 109 effects + 123 samples\Atomix Virtual DJ 3.2 + crack + 38 skins + 109 effects + 123 samples\Effects\karlette.dll
C:\Users\cedd\Downloads\eMule\Incoming\Atomix Virtual DJ 3.2 + crack + 38 skins + 109 effects + 123 samples\Atomix Virtual DJ 3.2 + crack + 38 skins + 109 effects + 123 samples\Effects\LFO.dll
C:\Users\cedd\Downloads\eMule\Incoming\Atomix Virtual DJ 3.2 + crack + 38 skins + 109 effects + 123 samples\Atomix Virtual DJ 3.2 + crack + 38 skins + 109 effects + 123 samples\Effects\LFO_att.dll
C:\Users\cedd\Downloads\eMule\Incoming\Atomix Virtual DJ 3.2 + crack + 38 skins + 109 effects + 123 samples\Atomix Virtual DJ 3.2 + crack + 38 skins + 109 effects + 123 samples\Effects\LFO_bmh.dll
C:\Users\cedd\Downloads\eMule\Incoming\Atomix Virtual DJ 3.2 + crack + 38 skins + 109 effects + 123 samples\Atomix Virtual DJ 3.2 + crack + 38 skins + 109 effects + 123 samples\Effects\Limiter.dll
C:\Users\cedd\Downloads\eMule\Incoming\Atomix Virtual DJ 3.2 + crack + 38 skins + 109 effects + 123 samples\Atomix Virtual DJ 3.2 + crack + 38 skins + 109 effects + 123 samples\Effects\LongFlanger.dll
C:\Users\cedd\Downloads\eMule\Incoming\Atomix Virtual DJ 3.2 + crack + 38 skins + 109 effects + 123 samples\Atomix Virtual DJ 3.2 + crack + 38 skins + 109 effects + 123 samples\Effects\loop back.dll
C:\Users\cedd\Downloads\eMule\Incoming\Atomix Virtual DJ 3.2 + crack + 38 skins + 109 effects + 123 samples\Atomix Virtual DJ 3.2 + crack + 38 skins + 109 effects + 123 samples\Effects\LowPass.dll
C:\Users\cedd\Downloads\eMule\Incoming\Atomix Virtual DJ 3.2 + crack + 38 skins + 109 effects + 123 samples\Atomix Virtual DJ 3.2 + crack + 38 skins + 109 effects + 123 samples\Effects\Matrix v1[1].1.dll
C:\Users\cedd\Downloads\eMule\Incoming\Atomix Virtual DJ 3.2 + crack + 38 skins + 109 effects + 123 samples\Atomix Virtual DJ 3.2 + crack + 38 skins + 109 effects + 123 samples\Effects\metal.dll
C:\Users\cedd\Downloads\eMule\Incoming\Atomix Virtual DJ 3.2 + crack + 38 skins + 109 effects + 123 samples\Atomix Virtual DJ 3.2 + crack + 38 skins + 109 effects + 123 samples\Effects\MetalSweep.dll
C:\Users\cedd\Downloads\eMule\Incoming\Atomix Virtual DJ 3.2 + crack + 38 skins + 109 effects + 123 samples\Atomix Virtual DJ 3.2 + crack + 38 skins + 109 effects + 123 samples\Effects\Mic_CTRL v1[1].2.dll
C:\Users\cedd\Downloads\eMule\Incoming\Atomix Virtual DJ 3.2 + crack + 38 skins + 109 effects + 123 samples\Atomix Virtual DJ 3.2 + crack + 38 skins + 109 effects + 123 samples\Effects\noise.pcm
C:\Users\cedd\Downloads\eMule\Incoming\Atomix Virtual DJ 3.2 + crack + 38 skins + 109 effects + 123 samples\Atomix Virtual DJ 3.2 + crack + 38 skins + 109 effects + 123 samples\Effects\NorthPole.dll
C:\Users\cedd\Downloads\eMule\Incoming\Atomix Virtual DJ 3.2 + crack + 38 skins + 109 effects + 123 samples\Atomix Virtual DJ 3.2 + crack + 38 skins + 109 effects + 123 samples\Effects\overloop.dll
C:\Users\cedd\Downloads\eMule\Incoming\Atomix Virtual DJ 3.2 + crack + 38 skins + 109 effects + 123 samples\Atomix Virtual DJ 3.2 + crack + 38 skins + 109 effects + 123 samples\Effects\pan flanger.dll
C:\Users\cedd\Downloads\eMule\Incoming\Atomix Virtual DJ 3.2 + crack + 38 skins + 109 effects + 123 samples\Atomix Virtual DJ 3.2 + crack + 38 skins + 109 effects + 123 samples\Effects\Pan.dll
C:\Users\cedd\Downloads\eMule\Incoming\Atomix Virtual DJ 3.2 + crack + 38 skins + 109 effects + 123 samples\Atomix Virtual DJ 3.2 + crack + 38 skins + 109 effects + 123 samples\Effects\panfx.dll
C:\Users\cedd\Downloads\eMule\Incoming\Atomix Virtual DJ 3.2 + crack + 38 skins + 109 effects + 123 samples\Atomix Virtual DJ 3.2 + crack + 38 skins + 109 effects + 123 samples\Effects\panv2.dll
C:\Users\cedd\Downloads\eMule\Incoming\Atomix Virtual DJ 3.2 + crack + 38 skins + 109 effects + 123 samples\Atomix Virtual DJ 3.2 + crack + 38 skins + 109 effects + 123 samples\Effects\pan_volumefix.dll
C:\Users\cedd\Downloads\eMule\Incoming\Atomix Virtual DJ 3.2 + crack + 38 skins + 109 effects + 123 samples\Atomix Virtual DJ 3.2 + crack + 38 skins + 109 effects + 123 samples\Effects\plug in VST.txt
C:\Users\cedd\Downloads\eMule\Incoming\Atomix Virtual DJ 3.2 + crack + 38 skins + 109 effects + 123 samples\Atomix Virtual DJ 3.2 + crack + 38 skins + 109 effects + 123 samples\Effects\plug_in.xml
C:\Users\cedd\Downloads\eMule\Incoming\Atomix Virtual DJ 3.2 + crack + 38 skins + 109 effects + 123 samples\Atomix Virtual DJ 3.2 + crack + 38 skins + 109 effects + 123 samples\Effects\PsychoEcho.dll
C:\Users\cedd\Downloads\eMule\Incoming\Atomix Virtual DJ 3.2 + crack + 38 skins + 109 effects + 123 samples\Atomix Virtual DJ 3.2 + crack + 38 skins + 109 effects + 123 samples\Effects\QuadriPhonic Flanger.dll
C:\Users\cedd\Downloads\eMule\Incoming\Atomix Virtual DJ 3.2 + crack + 38 skins + 109 effects + 123 samples\Atomix Virtual DJ 3.2 + crack + 38 skins + 109 effects + 123 samples\Effects\Read me first.pdf
C:\Users\cedd\Downloads\eMule\Incoming\Atomix Virtual DJ 3.2 + crack + 38 skins + 109 effects + 123 samples\Atomix Virtual DJ 3.2 + crack + 38 skins + 109 effects + 123 samples\Effects\Repeat song.dll
C:\Users\cedd\Downloads\eMule\Incoming\Atomix Virtual DJ 3.2 + crack + 38 skins + 109 effects + 123 samples\Atomix Virtual DJ 3.2 + crack + 38 skins + 109 effects + 123 samples\Effects\Repeat%20song.dll
C:\Users\cedd\Downloads\eMule\Incoming\Atomix Virtual DJ 3.2 + crack + 38 skins + 109 effects + 123 samples\Atomix Virtual DJ 3.2 + crack + 38 skins + 109 effects + 123 samples\Effects\Repeat.dll
C:\Users\cedd\Downloads\eMule\Incoming\Atomix Virtual DJ 3.2 + crack + 38 skins + 109 effects + 123 samples\Atomix Virtual DJ 3.2 + crack + 38 skins + 109 effects + 123 samples\Effects\Repeat20song.dll
C:\Users\cedd\Downloads\eMule\Incoming\Atomix Virtual DJ 3.2 + crack + 38 skins + 109 effects + 123 samples\Atomix Virtual DJ 3.2 + crack + 38 skins + 109 effects + 123 samples\Effects\Reverb.dll
C:\Users\cedd\Downloads\eMule\Incoming\Atomix Virtual DJ 3.2 + crack + 38 skins + 109 effects + 123 samples\Atomix Virtual DJ 3.2 + crack + 38 skins + 109 effects + 123 samples\Effects\reverse.dll
C:\Users\cedd\Downloads\eMule\Incoming\Atomix Virtual DJ 3.2 + crack + 38 skins + 109 effects + 123 samples\Atomix Virtual DJ 3.2 + crack + 38 skins + 109 effects + 123 samples\Effects\reverse2.dll
C:\Users\cedd\Downloads\eMule\Incoming\Atomix Virtual DJ 3.2 + crack + 38 skins + 109 effects + 123 samples\Atomix Virtual DJ 3.2 + crack + 38 skins + 109 effects + 123 samples\Effects\Sampler.dll
C:\Users\cedd\Downloads\eMule\Incoming\Atomix Virtual DJ 3.2 + crack + 38 skins + 109 effects + 123 samples\Atomix Virtual DJ 3.2 + crack + 38 skins + 109 effects + 123 samples\Effects\Scicht.dll
C:\Users\cedd\Downloads\eMule\Incoming\Atomix Virtual DJ 3.2 + crack + 38 skins + 109 effects + 123 samples\Atomix Virtual DJ 3.2 + crack + 38 skins + 109 effects + 123 samples\Effects\Scrambler.dll
C:\Users\cedd\Downloads\eMule\Incoming\Atomix Virtual DJ 3.2 + crack + 38 skins + 109 effects + 123 samples\Atomix Virtual DJ 3.2 + crack + 38 skins + 109 effects + 123 samples\Effects\ScratchRoutine01.dll
C:\Users\cedd\Downloads\eMule\Incoming\Atomix Virtual DJ 3.2 + crack + 38 skins + 109 effects + 123 samples\Atomix Virtual DJ 3.2 + crack + 38 skins + 109 effects + 123 samples\Effects\Scribble Scratch Beta.dll
C:\Users\cedd\Downloads\eMule\Incoming\Atomix Virtual DJ 3.2 + crack + 38 skins + 109 effects + 123 samples\Atomix Virtual DJ 3.2 + crack + 38 skins + 109 effects + 123 samples\Effects\slideloop.dll
C:\Users\cedd\Downloads\eMule\Incoming\Atomix Virtual DJ 3.2 + crack + 38 skins + 109 effects + 123 samples\Atomix Virtual DJ 3.2 + crack + 38 skins + 109 effects + 123 samples\Effects\SmartRepeat.dll
C:\Users\cedd\Downloads\eMule\Incoming\Atomix Virtual DJ 3.2 + crack + 38 skins + 109 effects + 123 samples\Atomix Virtual DJ 3.2 + crack + 38 skins + 109 effects + 123 samples\Effects\Stabs Scratch Beta.dll
C:\Users\cedd\Downloads\eMule\Incoming\Atomix Virtual DJ 3.2 + crack + 38 skins + 109 effects + 123 samples\Atomix Virtual DJ 3.2 + crack + 38 skins + 109 effects + 123 samples\Effects\TK Filter V2.dll
C:\Users\cedd\Downloads\eMule\Incoming\Atomix Virtual DJ 3.2 + crack + 38 skins + 109 effects + 123 samples\Atomix Virtual DJ 3.2 + crack + 38 skins + 109 effects + 123 samples\Effects\Tremolo.dll
C:\Users\cedd\Downloads\eMule\Incoming\Atomix Virtual DJ 3.2 + crack + 38 skins + 109 effects + 123 samples\Atomix Virtual DJ 3.2 + crack + 38 skins + 109 effects + 123 samples\Effects\TTS.dll
C:\Users\cedd\Downloads\eMule\Incoming\Atomix Virtual DJ 3.2 + crack + 38 skins + 109 effects + 123 samples\Atomix Virtual DJ 3.2 + crack + 38 skins + 109 effects + 123 samples\Effects\Turntable Brake.dll
C:\Users\cedd\Downloads\eMule\Incoming\Atomix Virtual DJ 3.2 + crack + 38 skins + 109 effects + 123 samples\Atomix Virtual DJ 3.2 + crack + 38 skins + 109 effects + 123 samples\Effects\Tv Effect.dll
C:\Users\cedd\Downloads\eMule\Incoming\Atomix Virtual DJ 3.2 + crack + 38 skins + 109 effects + 123 samples\Atomix Virtual DJ 3.2 + crack + 38 skins + 109 effects + 123 samples\Effects\varloop.dll
C:\Users\cedd\Downloads\eMule\Incoming\Atomix Virtual DJ 3.2 + crack + 38 skins + 109 effects + 123 samples\Atomix Virtual DJ 3.2 + crack + 38 skins + 109 effects + 123 samples\Effects\Vinyl.dll
C:\Users\cedd\Downloads\eMule\Incoming\Atomix Virtual DJ 3.2 + crack + 38 skins + 109 effects + 123 samples\Atomix Virtual DJ 3.2 + crack + 38 skins + 109 effects + 123 samples\Effects\Virtualdj slideloop.dll
C:\Users\cedd\Downloads\eMule\Incoming\Atomix Virtual DJ 3.2 + crack + 38 skins + 109 effects + 123 samples\Atomix Virtual DJ 3.2 + crack + 38 skins + 109 effects + 123 samples\Effects\Virtualdj varloop.dll
C:\Users\cedd\Downloads\eMule\Incoming\Atomix Virtual DJ 3.2 + crack + 38 skins + 109 effects + 123 samples\Atomix Virtual DJ 3.2 + crack + 38 skins + 109 effects + 123 samples\Effects\Vocal Remover.dll
C:\Users\cedd\Downloads\eMule\Incoming\Atomix Virtual DJ 3.2 + crack + 38 skins + 109 effects + 123 samples\Atomix Virtual DJ 3.2 + crack + 38 skins + 109 effects + 123 samples\Effects\vocals+.dll
C:\Users\cedd\Downloads\eMule\Incoming\Atomix Virtual DJ 3.2 + crack + 38 skins + 109 effects + 123 samples\Atomix Virtual DJ 3.2 + crack + 38 skins + 109 effects + 123 samples\Effects\vocals.dll
C:\Users\cedd\Downloads\eMule\Incoming\Atomix Virtual DJ 3.2 + crack + 38 skins + 109 effects + 123 samples\Atomix Virtual DJ 3.2 + crack + 38 skins + 109 effects + 123 samples\Effects\WaterSweep.dll
C:\Users\cedd\Downloads\eMule\Incoming\Atomix Virtual DJ 3.2 + crack + 38 skins + 109 effects + 123 samples\Atomix Virtual DJ 3.2 + crack + 38 skins + 109 effects + 123 samples\Effects\_PsycBpmCorrector.dll
C:\Users\cedd\Downloads\eMule\Incoming\Atomix Virtual DJ 3.2 + crack + 38 skins + 109 effects + 123 samples\Atomix Virtual DJ 3.2 + crack + 38 skins + 109 effects + 123 samples\Effects\_PsycOverLoop.dll
C:\Users\cedd\Downloads\eMule\Incoming\Atomix Virtual DJ 3.2 + crack + 38 skins + 109 effects + 123 samples\Atomix Virtual DJ 3.2 + crack + 38 skins + 109 effects + 123 samples\Samples\(Sound Effects) DJ Tools - Ambulance Passing With Siren.mp3
C:\Users\cedd\Downloads\eMule\Incoming\Atomix Virtual DJ 3.2 + crack + 38 skins + 109 effects + 123 samples\Atomix Virtual DJ 3.2 + crack + 38 skins + 109 effects + 123 samples\Samples\03 Now that love has gone [extract].mp3
C:\Users\cedd\Downloads\eMule\Incoming\Atomix Virtual DJ 3.2 + crack + 38 skins + 109 effects + 123 samples\Atomix Virtual DJ 3.2 + crack + 38 skins + 109 effects + 123 samples\Samples\20 Fingers - Short Dick Man.vdj
C:\Users\cedd\Downloads\eMule\Incoming\Atomix Virtual DJ 3.2 + crack + 38 skins + 109 effects + 123 samples\Atomix Virtual DJ 3.2 + crack + 38 skins + 109 effects + 123 samples\Samples\alarma submarino.wav
C:\Users\cedd\Downloads\eMule\Incoming\Atomix Virtual DJ 3.2 + crack + 38 skins + 109 effects + 123 samples\Atomix Virtual DJ 3.2 + crack + 38 skins + 109 effects + 123 samples\Samples\AlbumArtSmall.jpg
C:\Users\cedd\Downloads\eMule\Incoming\Atomix Virtual DJ 3.2 + crack + 38 skins + 109 effects + 123 samples\Atomix Virtual DJ 3.2 + crack + 38 skins + 109 effects + 123 samples\Samples\AlbumArt_{DC823FBA-8DFF-475C-AF65-35DAC7880E1E}_Large.jpg
C:\Users\cedd\Downloads\eMule\Incoming\Atomix Virtual DJ 3.2 + crack + 38 skins + 109 effects + 123 samples\Atomix Virtual DJ 3.2 + crack + 38 skins + 109 effects + 123 samples\Samples\AlbumArt_{DC823FBA-8DFF-475C-AF65-35DAC7880E1E}_Small.jpg
C:\Users\cedd\Downloads\eMule\Incoming\Atomix Virtual DJ 3.2 + crack + 38 skins + 109 effects + 123 samples\Atomix Virtual DJ 3.2 + crack + 38 skins + 109 effects + 123 samples\Samples\alert.wav
C:\Users\cedd\Downloads\eMule\Incoming\Atomix Virtual DJ 3.2 + crack + 38 skins + 109 effects + 123 samples\Atomix Virtual DJ 3.2 + crack + 38 skins + 109 effects + 123 samples\Samples\alors les jeunes ca va.vdj
C:\Users\cedd\Downloads\eMule\Incoming\Atomix Virtual DJ 3.2 + crack + 38 skins + 109 effects + 123 samples\Atomix Virtual DJ 3.2 + crack + 38 skins + 109 effects + 123 samples\Samples\aplauso corto.wav
C:\Users\cedd\Downloads\eMule\Incoming\Atomix Virtual DJ 3.2 + crack + 38 skins + 109 effects + 123 samples\Atomix Virtual DJ 3.2 + crack + 38 skins + 109 effects + 123 samples\Samples\aplauso largo.wav
C:\Users\cedd\Downloads\eMule\Incoming\Atomix Virtual DJ 3.2 + crack + 38 skins + 109 effects + 123 samples\Atomix Virtual DJ 3.2 + crack + 38 skins + 109 effects + 123 samples\Samples\around the world (8).vdj
C:\Users\cedd\Downloads\eMule\Incoming\Atomix Virtual DJ 3.2 + crack + 38 skins + 109 effects + 123 samples\Atomix Virtual DJ 3.2 + crack + 38 skins + 109 effects + 123 samples\Samples\Arriba progressiva.vdj
C:\Users\cedd\Downloads\eMule\Incoming\Atomix Virtual DJ 3.2 + crack + 38 skins + 109 effects + 123 samples\Atomix Virtual DJ 3.2 + crack + 38 skins + 109 effects + 123 samples\Samples\bad touch.vdj
C:\Users\cedd\Downloads\eMule\Incoming\Atomix Virtual DJ 3.2 + crack + 38 skins + 109 effects + 123 samples\Atomix Virtual DJ 3.2 + crack + 38 skins + 109 effects + 123 samples\Samples\basic theme voice + snare.vdj
C:\Users\cedd\Downloads\eMule\Incoming\Atomix Virtual DJ 3.2 + crack + 38 skins + 109 effects + 123 samples\Atomix Virtual DJ 3.2 + crack + 38 skins + 109 effects + 123 samples\Samples\bel amour.vdj
C:\Users\cedd\Downloads\eMule\Incoming\Atomix Virtual DJ 3.2 + crack + 38 skins + 109 effects + 123 samples\Atomix Virtual DJ 3.2 + crack + 38 skins + 109 effects + 123 samples\Samples\bell.wav
C:\Users\cedd\Downloads\eMule\Incoming\Atomix Virtual DJ 3.2 + crack + 38 skins + 109 effects + 123 samples\Atomix Virtual DJ 3.2 + crack + 38 skins + 109 effects + 123 samples\Samples\beso.wav
C:\Users\cedd\Downloads\eMule\Incoming\Atomix Virtual DJ 3.2 + crack + 38 skins + 109 effects + 123 samples\Atomix Virtual DJ 3.2 + crack + 38 skins + 109 effects + 123 samples\Samples\Bongo safri duo.vdj
C:\Users\cedd\Downloads\eMule\Incoming\Atomix Virtual DJ 3.2 + crack + 38 skins + 109 effects + 123 samples\Atomix Virtual DJ 3.2 + crack + 38 skins + 109 effects + 123 samples\Samples\bounce loop.vdj
C:\Users\cedd\Downloads\eMule\Incoming\Atomix Virtual DJ 3.2 + crack + 38 skins + 109 effects + 123 samples\Atomix Virtual DJ 3.2 + crack + 38 skins + 109 effects + 123 samples\Samples\can't get no sleep.vdj
C:\Users\cedd\Downloads\eMule\Incoming\Atomix Virtual DJ 3.2 + crack + 38 skins + 109 effects + 123 samples\Atomix Virtual DJ 3.2 + crack + 38 skins + 109 effects + 123 samples\Samples\clap.wav
C:\Users\cedd\Downloads\eMule\Incoming\Atomix Virtual DJ 3.2 + crack + 38 skins + 109 effects + 123 samples\Atomix Virtual DJ 3.2 + crack + 38 skins + 109 effects + 123 samples\Samples\clubland 121.vdj
C:\Users\cedd\Downloads\eMule\Incoming\Atomix Virtual DJ 3.2 + crack + 38 skins + 109 effects + 123 samples\Atomix Virtual DJ 3.2 + crack + 38 skins + 109 effects + 123 samples\Samples\comida de culo.wav
C:\Users\cedd\Downloads\eMule\Incoming\Atomix Virtual DJ 3.2 + crack + 38 skins + 109 effects + 123 samples\Atomix Virtual DJ 3.2 + crack + 38 skins + 109 effects + 123 samples\Samples\confusion.vdj
C:\Users\cedd\Downloads\eMule\Incoming\Atomix Virtual DJ 3.2 + crack + 38 skins + 109 effects + 123 samples\Atomix Virtual DJ 3.2 + crack + 38 skins + 109 effects + 123 samples\Samples\copyright.txt
C:\Users\cedd\Downloads\eMule\Incoming\Atomix Virtual DJ 3.2 + crack + 38 skins + 109 effects + 123 samples\Atomix Virtual DJ 3.2 + crack + 38 skins + 109 effects + 123 samples\Samples\cotton eyed joe.vdj
C:\Users\cedd\Downloads\eMule\Incoming\Atomix Virtual DJ 3.2 + crack + 38 skins + 109 effects + 123 samples\Atomix Virtual DJ 3.2 + crack + 38 skins + 109 effects + 123 samples\Samples\coucher avec moi.vdj
C:\Users\cedd\Downloads\eMule\Incoming\Atomix Virtual DJ 3.2 + crack + 38 skins + 109 effects + 123 samples\Atomix Virtual DJ 3.2 + crack + 38 skins + 109 effects + 123 samples\Samples\desktop.ini
C:\Users\cedd\Downloads\eMule\Incoming\Atomix Virtual DJ 3.2 + crack + 38 skins + 109 effects + 123 samples\Atomix Virtual DJ 3.2 + crack + 38 skins + 109 effects + 123 samples\Samples\disco rallado.wav
C:\Users\cedd\Downloads\eMule\Incoming\Atomix Virtual DJ 3.2 + crack + 38 skins + 109 effects + 123 samples\Atomix Virtual DJ 3.2 + crack + 38 skins + 109 effects + 123 samples\Samples\DJ intro jingle.vdj
C:\Users\cedd\Downloads\eMule\Incoming\Atomix Virtual DJ 3.2 + crack + 38 skins + 109 effects + 123 samples\Atomix Virtual DJ 3.2 + crack + 38 skins + 109 effects + 123 samples\Samples\DJ Seb MLMP - Born To Disco [extract].mp3
C:\Users\cedd\Downloads\eMule\Incoming\Atomix Virtual DJ 3.2 + crack + 38 skins + 109 effects + 123 samples\Atomix Virtual DJ 3.2 + crack + 38 skins + 109 effects + 123 samples\Samples\DJ Tools - Ladies & Gentlemen... I'm Your DJ.mp3
C:\Users\cedd\Downloads\eMule\Incoming\Atomix Virtual DJ 3.2 + crack + 38 skins + 109 effects + 123 samples\Atomix Virtual DJ 3.2 + crack + 38 skins + 109 effects + 123 samples\Samples\doo wap.vdj
C:\Users\cedd\Downloads\eMule\Incoming\Atomix Virtual DJ 3.2 + crack + 38 skins + 109 effects + 123 samples\Atomix Virtual DJ 3.2 + crack + 38 skins + 109 effects + 123 samples\Samples\Electric A.mp3
C:\Users\cedd\Downloads\eMule\Incoming\Atomix Virtual DJ 3.2 + crack + 38 skins + 109 effects + 123 samples\Atomix Virtual DJ 3.2 + crack + 38 skins + 109 effects + 123 samples\Samples\everybody have fun tonight.vdj
C:\Users\cedd\Downloads\eMule\Incoming\Atomix Virtual DJ 3.2 + crack + 38 skins + 109 effects + 123 samples\Atomix Virtual DJ 3.2 + crack + 38 skins + 109 effects + 123 samples\Samples\everybody say hou.vdj
C:\Users\cedd\Downloads\eMule\Incoming\Atomix Virtual DJ 3.2 + crack + 38 skins + 109 effects + 123 samples\Atomix Virtual DJ 3.2 + crack + 38 skins + 109 effects + 123 samples\Samples\explode.wav
C:\Users\cedd\Downloads\eMule\Incoming\Atomix Virtual DJ 3.2 + crack + 38 skins + 109 effects + 123 samples\Atomix Virtual DJ 3.2 + crack + 38 skins + 109 effects + 123 samples\Samples\eye of the tiger.vdj
C:\Users\cedd\Downloads\eMule\Incoming\Atomix Virtual DJ 3.2 + crack + 38 skins + 109 effects + 123 samples\Atomix Virtual DJ 3.2 + crack + 38 skins + 109 effects + 123 samples\Samples\Fiesta.vdj
C:\Users\cedd\Downloads\eMule\Incoming\Atomix Virtual DJ 3.2 + crack + 38 skins + 109 effects + 123 samples\Atomix Virtual DJ 3.2 + crack + 38 skins + 109 effects + 123 samples\Samples\floorfilla.vdj
C:\Users\cedd\Downloads\eMule\Incoming\Atomix Virtual DJ 3.2 + crack + 38 skins + 109 effects + 123 samples\Atomix Virtual DJ 3.2 + crack + 38 skins + 109 effects + 123 samples\Samples\Fly with me (12).vdj
C:\Users\cedd\Downloads\eMule\Incoming\Atomix Virtual DJ 3.2 + crack + 38 skins + 109 effects + 123 samples\Atomix Virtual DJ 3.2 + crack + 38 skins + 109 effects + 123 samples\Samples\Folder.jpg
C:\Users\cedd\Downloads\eMule\Incoming\Atomix Virtual DJ 3.2 + crack + 38 skins + 109 effects + 123 samples\Atomix Virtual DJ 3.2 + crack + 38 skins + 109 effects + 123 samples\Samples\follow me.vdj
C:\Users\cedd\Downloads\eMule\Incoming\Atomix Virtual DJ 3.2 + crack + 38 skins + 109 effects + 123 samples\Atomix Virtual DJ 3.2 + crack + 38 skins + 109 effects + 123 samples\Samples\FX BONGA.MP3
C:\Users\cedd\Downloads\eMule\Incoming\Atomix Virtual DJ 3.2 + crack + 38 skins + 109 effects + 123 samples\Atomix Virtual DJ 3.2 + crack + 38 skins + 109 effects + 123 samples\Samples\Gala - Freed From Desire (129).vdj
C:\Users\cedd\Downloads\eMule\Incoming\Atomix Virtual DJ 3.2 + crack + 38 skins + 109 effects + 123 samples\Atomix Virtual DJ 3.2 + crack + 38 skins + 109 effects + 123 samples\Samples\gato.wav
C:\Users\cedd\Downloads\eMule\Incoming\Atomix Virtual DJ 3.2 + crack + 38 skins + 109 effects + 123 samples\Atomix Virtual DJ 3.2 + crack + 38 skins + 109 effects + 123 samples\Samples\get busy loop.vdj
C:\Users\cedd\Downloads\eMule\Incoming\Atomix Virtual DJ 3.2 + crack + 38 skins + 109 effects + 123 samples\Atomix Virtual DJ 3.2 + crack + 38 skins + 109 effects + 123 samples\Samples\get low loop.vdj
C:\Users\cedd\Downloads\eMule\Incoming\Atomix Virtual DJ 3.2 + crack + 38 skins + 109 effects + 123 samples\Atomix Virtual DJ 3.2 + crack + 38 skins + 109 effects + 123 samples\Samples\Get more free sound effects on www.a1freesoundeffects.com.url
C:\Users\cedd\Downloads\eMule\Incoming\Atomix Virtual DJ 3.2 + crack + 38 skins + 109 effects + 123 samples\Atomix Virtual DJ 3.2 + crack + 38 skins + 109 effects + 123 samples\Samples\giddy laugh.wav
C:\Users\cedd\Downloads\eMule\Incoming\Atomix Virtual DJ 3.2 + crack + 38 skins + 109 effects + 123 samples\Atomix Virtual DJ 3.2 + crack + 38 skins + 109 effects + 123 samples\Samples\good times 125.vdj
C:\Users\cedd\Downloads\eMule\Incoming\Atomix Virtual DJ 3.2 + crack + 38 skins + 109 effects + 123 samples\Atomix Virtual DJ 3.2 + crack + 38 skins + 109 effects + 123 samples\Samples\gran portazo.wav
C:\Users\cedd\Downloads\eMule\Incoming\Atomix Virtual DJ 3.2 + crack + 38 skins + 109 effects + 123 samples\Atomix Virtual DJ 3.2 + crack + 38 skins + 109 effects + 123 samples\Samples\grito hombre.wav
C:\Users\cedd\Downloads\eMule\Incoming\Atomix Virtual DJ 3.2 + crack + 38 skins + 109 effects + 123 samples\Atomix Virtual DJ 3.2 + crack + 38 skins + 109 effects + 123 samples\Samples\gym tonic.vdj
C:\Users\cedd\Downloads\eMule\Incoming\Atomix Virtual DJ 3.2 + crack + 38 skins + 109 effects + 123 samples\Atomix Virtual DJ 3.2 + crack + 38 skins + 109 effects + 123 samples\Samples\hayou ho you (4).vdj
C:\Users\cedd\Downloads\eMule\Incoming\Atomix Virtual DJ 3.2 + crack + 38 skins + 109 effects + 123 samples\Atomix Virtual DJ 3.2 + crack + 38 skins + 109 effects + 123 samples\Samples\horn.wav
C:\Users\cedd\Downloads\eMule\Incoming\Atomix Virtual DJ 3.2 + crack + 38 skins + 109 effects + 123 samples\Atomix Virtual DJ 3.2 + crack + 38 skins + 109 effects + 123 samples\Samples\how much is the fish.vdj
C:\Users\cedd\Downloads\eMule\Incoming\Atomix Virtual DJ 3.2 + crack + 38 skins + 109 effects + 123 samples\Atomix Virtual DJ 3.2 + crack + 38 skins + 109 effects + 123 samples\Samples\I can feel it.vdj
C:\Users\cedd\Downloads\eMule\Incoming\Atomix Virtual DJ 3.2 + crack + 38 skins + 109 effects + 123 samples\Atomix Virtual DJ 3.2 + crack + 38 skins + 109 effects + 123 samples\Samples\I have a dream.vdj
C:\Users\cedd\Downloads\eMule\Incoming\Atomix Virtual DJ 3.2 + crack + 38 skins + 109 effects + 123 samples\Atomix Virtual DJ 3.2 + crack + 38 skins + 109 effects + 123 samples\Samples\insomnia.vdj
C:\Users\cedd\Downloads\eMule\Incoming\Atomix Virtual DJ 3.2 + crack + 38 skins + 109 effects + 123 samples\Atomix Virtual DJ 3.2 + crack + 38 skins + 109 effects + 123 samples\Samples\jxcore.vdj
C:\Users\cedd\Downloads\eMule\Incoming\Atomix Virtual DJ 3.2 + crack + 38 skins + 109 effects + 123 samples\Atomix Virtual DJ 3.2 + crack + 38 skins + 109 effects + 123 samples\Samples\ladrido.wav
C:\Users\cedd\Downloads\eMule\Incoming\Atomix Virtual DJ 3.2 + crack + 38 skins + 109 effects + 123 samples\Atomix Virtual DJ 3.2 + crack + 38 skins + 109 effects + 123 samples\Samples\latin lover (16).vdj
C:\Users\cedd\Downloads\eMule\Incoming\Atomix Virtual DJ 3.2 + crack + 38 skins + 109 effects + 123 samples\Atomix Virtual DJ 3.2 + crack + 38 skins + 109 effects + 123 samples\Samples\laugh.wav
C:\Users\cedd\Downloads\eMule\Incoming\Atomix Virtual DJ 3.2 + crack + 38 skins + 109 effects + 123 samples\Atomix Virtual DJ 3.2 + crack + 38 skins + 109 effects + 123 samples\Samples\les hommes c'est pas des mecs bien.vdj
C:\Users\cedd\Downloads\eMule\Incoming\Atomix Virtual DJ 3.2 + crack + 38 skins + 109 effects + 123 samples\Atomix Virtual DJ 3.2 + crack + 38 skins + 109 effects + 123 samples\Samples\Les nuits sans soleil(16).vdj
C:\Users\cedd\Downloads\eMule\Incoming\Atomix Virtual DJ 3.2 + crack + 38 skins + 109 effects + 123 samples\Atomix Virtual DJ 3.2 + crack + 38 skins + 109 effects + 123 samples\Samples\like it like that.vdj
C:\Users\cedd\Downloads\eMule\Incoming\Atomix Virtual DJ 3.2 + crack + 38 skins + 109 effects + 123 samples\Atomix Virtual DJ 3.2 + crack + 38 skins + 109 effects + 123 samples\Samples\LOOP 140 ELECTRO 05.MP3
C:\Users\cedd\Downloads\eMule\Incoming\Atomix Virtual DJ 3.2 + crack + 38 skins + 109 effects + 123 samples\Atomix Virtual DJ 3.2 + crack + 38 skins + 109 effects + 123 samples\Samples\loose yourself loop.vdj
C:\Users\cedd\Downloads\eMule\Incoming\Atomix Virtual DJ 3.2 + crack + 38 skins + 109 effects + 123 samples\Atomix Virtual DJ 3.2 + crack + 38 skins + 109 effects + 123 samples\Samples\love parade.vdj
C:\Users\cedd\Downloads\eMule\Incoming\Atomix Virtual DJ 3.2 + crack + 38 skins + 109 effects + 123 samples\Atomix Virtual DJ 3.2 + crack + 38 skins + 109 effects + 123 samples\Samples\mama say mama sa mama cousa (4).vdj
C:\Users\cedd\Downloads\eMule\Incoming\Atomix Virtual DJ 3.2 + crack + 38 skins + 109 effects + 123 samples\Atomix Virtual DJ 3.2 + crack + 38 skins + 109 effects + 123 samples\Samples\maya hii maya hou maya ho ho.vdj
C:\Users\cedd\Downloads\eMule\Incoming\Atomix Virtual DJ 3.2 + crack + 38 skins + 109 effects + 123 samples\Atomix Virtual DJ 3.2 + crack + 38 skins + 109 effects + 123 samples\Samples\miamy sound 116.vdj
C:\Users\cedd\Downloads\eMule\Incoming\Atomix Virtual DJ 3.2 + crack + 38 skins + 109 effects + 123 samples\Atomix Virtual DJ 3.2 + crack + 38 skins + 109 effects + 123 samples\Samples\no matter what you do.vdj
C:\Users\cedd\Downloads\eMule\Incoming\Atomix Virtual DJ 3.2 + crack + 38 skins + 109 effects + 123 samples\Atomix Virtual DJ 3.2 + crack + 38 skins + 109 effects + 123 samples\Samples\No matter who do you do (16).vdj
C:\Users\cedd\Downloads\eMule\Incoming\Atomix Virtual DJ 3.2 + crack + 38 skins + 109 effects + 123 samples\Atomix Virtual DJ 3.2 + crack + 38 skins + 109 effects + 123 samples\Samples\one more time.vdj
C:\Users\cedd\Downloads\eMule\Incoming\Atomix Virtual DJ 3.2 + crack + 38 skins + 109 effects + 123 samples\Atomix Virtual DJ 3.2 + crack + 38 skins + 109 effects + 123 samples\Samples\oveja.wav
C:\Users\cedd\Downloads\eMule\Incoming\Atomix Virtual DJ 3.2 + crack + 38 skins + 109 effects + 123 samples\Atomix Virtual DJ 3.2 + crack + 38 skins + 109 effects + 123 samples\Samples\panjabi loop.vdj
C:\Users\cedd\Downloads\eMule\Incoming\Atomix Virtual DJ 3.2 + crack + 38 skins + 109 effects + 123 samples\Atomix Virtual DJ 3.2 + crack + 38 skins + 109 effects + 123 samples\Samples\Peaches And Cream.vdj
C:\Users\cedd\Downloads\eMule\Incoming\Atomix Virtual DJ 3.2 + crack + 38 skins + 109 effects + 123 samples\Atomix Virtual DJ 3.2 + crack + 38 skins + 109 effects + 123 samples\Samples\Peche A.mp3
C:\Users\cedd\Downloads\eMule\Incoming\Atomix Virtual DJ 3.2 + crack + 38 skins + 109 effects + 123 samples\Atomix Virtual DJ 3.2 + crack + 38 skins + 109 effects + 123 samples\Samples\pedo.wav
C:\Users\cedd\Downloads\eMule\Incoming\Atomix Virtual DJ 3.2 + crack + 38 skins + 109 effects + 123 samples\Atomix Virtual DJ 3.2 + crack + 38 skins + 109 effects + 123 samples\Samples\pills - rock me (130).vdj
C:\Users\cedd\Downloads\eMule\Incoming\Atomix Virtual DJ 3.2 + crack + 38 skins + 109 effects + 123 samples\Atomix Virtual DJ 3.2 + crack + 38 skins + 109 effects + 123 samples\Samples\pump it up.vdj
C:\Users\cedd\Downloads\eMule\Incoming\Atomix Virtual DJ 3.2 + crack + 38 skins + 109 effects + 123 samples\Atomix Virtual DJ 3.2 + crack + 38 skins + 109 effects + 123 samples\Samples\pump up the volume.vdj
C:\Users\cedd\Downloads\eMule\Incoming\Atomix Virtual DJ 3.2 + crack + 38 skins + 109 effects + 123 samples\Atomix Virtual DJ 3.2 + crack + 38 skins + 109 effects + 123 samples\Samples\push.vdj
C:\Users\cedd\Downloads\eMule\Incoming\Atomix Virtual DJ 3.2 + crack + 38 skins + 109 effects + 123 samples\Atomix Virtual DJ 3.2 + crack + 38 skins + 109 effects + 123 samples\Samples\Put your hands up, get on the floor (summerjam sample).vdj
C:\Users\cedd\Downloads\eMule\Incoming\Atomix Virtual DJ 3.2 + crack + 38 skins + 109 effects + 123 samples\Atomix Virtual DJ 3.2 + crack + 38 skins + 109 effects + 123 samples\Samples\put your hands up.vdj
C:\Users\cedd\Downloads\eMule\Incoming\Atomix Virtual DJ 3.2 + crack + 38 skins + 109 effects + 123 samples\Atomix Virtual DJ 3.2 + crack + 38 skins + 109 effects + 123 samples\Samples\rebuzno.wav
C:\Users\cedd\Downloads\eMule\Incoming\Atomix Virtual DJ 3.2 + crack + 38 skins + 109 effects + 123 samples\Atomix Virtual DJ 3.2 + crack + 38 skins + 109 effects + 123 samples\Samples\risa hombre.wav
C:\Users\cedd\Downloads\eMule\Incoming\Atomix Virtual DJ 3.2 + crack + 38 skins + 109 effects + 123 samples\Atomix Virtual DJ 3.2 + crack + 38 skins + 109 effects + 123 samples\Samples\risa mujer.wav
C:\Users\cedd\Downloads\eMule\Incoming\Atomix Virtual DJ 3.2 + crack + 38 skins + 109 effects + 123 samples\Atomix Virtual DJ 3.2 + crack + 38 skins + 109 effects + 123 samples\Samples\Rock steady.vdj
C:\Users\cedd\Downloads\eMule\Incoming\Atomix Virtual DJ 3.2 + crack + 38 skins + 109 effects + 123 samples\Atomix Virtual DJ 3.2 + crack + 38 skins + 109 effects + 123 samples\Samples\ronquido.wav
C:\Users\cedd\Downloads\eMule\Incoming\Atomix Virtual DJ 3.2 + crack + 38 skins + 109 effects + 123 samples\Atomix Virtual DJ 3.2 + crack + 38 skins + 109 effects + 123 samples\Samples\Satisfaction BASS LINE.vdj
C:\Users\cedd\Downloads\eMule\Incoming\Atomix Virtual DJ 3.2 + crack + 38 skins + 109 effects + 123 samples\Atomix Virtual DJ 3.2 + crack + 38 skins + 109 effects + 123 samples\Samples\satisfaction.vdj
C:\Users\cedd\Downloads\eMule\Incoming\Atomix Virtual DJ 3.2 + crack + 38 skins + 109 effects + 123 samples\Atomix Virtual DJ 3.2 + crack + 38 skins + 109 effects + 123 samples\Samples\sax 125.vdj
C:\Users\cedd\Downloads\eMule\Incoming\Atomix Virtual DJ 3.2 + crack + 38 skins + 109 effects + 123 samples\Atomix Virtual DJ 3.2 + crack + 38 skins + 109 effects + 123 samples\Samples\saxo.vdj
C:\Users\cedd\Downloads\eMule\Incoming\Atomix Virtual DJ 3.2 + crack + 38 skins + 109 effects + 123 samples\Atomix Virtual DJ 3.2 + crack + 38 skins + 109 effects + 123 samples\Samples\scooter maria.vdj
C:\Users\cedd\Downloads\eMule\Incoming\Atomix Virtual DJ 3.2 + crack + 38 skins + 109 effects + 123 samples\Atomix Virtual DJ 3.2 + crack + 38 skins + 109 effects + 123 samples\Samples\Scrathing ahh yeah (119[1].9 BMP).vdj
C:\Users\cedd\Downloads\eMule\Incoming\Atomix Virtual DJ 3.2 + crack + 38 skins + 109 effects + 123 samples\Atomix Virtual DJ 3.2 + crack + 38 skins + 109 effects + 123 samples\Samples\scream.wav
C:\Users\cedd\Downloads\eMule\Incoming\Atomix Virtual DJ 3.2 + crack + 38 skins + 109 effects + 123 samples\Atomix Virtual DJ 3.2 + crack + 38 skins + 109 effects + 123 samples\Samples\sex any time any where right now (16).vdj
C:\Users\cedd\Downloads\eMule\Incoming\Atomix Virtual DJ 3.2 + crack + 38 skins + 109 effects + 123 samples\Atomix Virtual DJ 3.2 + crack + 38 skins + 109 effects + 123 samples\Samples\shake your body don't stop loop.vdj
C:\Users\cedd\Downloads\eMule\Incoming\Atomix Virtual DJ 3.2 + crack + 38 skins + 109 effects + 123 samples\Atomix Virtual DJ 3.2 + crack + 38 skins + 109 effects + 123 samples\Samples\shiny disco.vdj
C:\Users\cedd\Downloads\eMule\Incoming\Atomix Virtual DJ 3.2 + crack + 38 skins + 109 effects + 123 samples\Atomix Virtual DJ 3.2 + crack + 38 skins + 109 effects + 123 samples\Samples\siren.mp3
C:\Users\cedd\Downloads\eMule\Incoming\Atomix Virtual DJ 3.2 + crack + 38 skins + 109 effects + 123 samples\Atomix Virtual DJ 3.2 + crack + 38 skins + 109 effects + 123 samples\Samples\siren.vdj
C:\Users\cedd\Downloads\eMule\Incoming\Atomix Virtual DJ 3.2 + crack + 38 skins + 109 effects + 123 samples\Atomix Virtual DJ 3.2 + crack + 38 skins + 109 effects + 123 samples\Samples\siren.wav
C:\Users\cedd\Downloads\eMule\Incoming\Atomix Virtual DJ 3.2 + crack + 38 skins + 109 effects + 123 samples\Atomix Virtual DJ 3.2 + crack + 38 skins + 109 effects + 123 samples\Samples\sirena.wav
C:\Users\cedd\Downloads\eMule\Incoming\Atomix Virtual DJ 3.2 + crack + 38 skins + 109 effects + 123 samples\Atomix Virtual DJ 3.2 + crack + 38 skins + 109 effects + 123 samples\Samples\star trek.wav
C:\Users\cedd\Downloads\eMule\Incoming\Atomix Virtual DJ 3.2 + crack + 38 skins + 109 effects + 123 samples\Atomix Virtual DJ 3.2 + crack + 38 skins + 109 effects + 123 samples\Samples\stardust 124.vdj
C:\Users\cedd\Downloads\eMule\Incoming\Atomix Virtual DJ 3.2 + crack + 38 skins + 109 effects + 123 samples\Atomix Virtual DJ 3.2 + crack + 38 skins + 109 effects + 123 samples\Samples\Stay.vdj
C:\Users\cedd\Downloads\eMule\Incoming\Atomix Virtual DJ 3.2 + crack + 38 skins + 109 effects + 123 samples\Atomix Virtual DJ 3.2 + crack + 38 skins + 109 effects + 123 samples\Samples\storm.vdj
C:\Users\cedd\Downloads\eMule\Incoming\Atomix Virtual DJ 3.2 + crack + 38 skins + 109 effects + 123 samples\Atomix Virtual DJ 3.2 + crack + 38 skins + 109 effects + 123 samples\Samples\syndicate of law.vdj
C:\Users\cedd\Downloads\eMule\Incoming\Atomix Virtual DJ 3.2 + crack + 38 skins + 109 effects + 123 samples\Atomix Virtual DJ 3.2 + crack + 38 skins + 109 effects + 123 samples\Samples\tailfeather remix intro loop.vdj
C:\Users\cedd\Downloads\eMule\Incoming\Atomix Virtual DJ 3.2 + crack + 38 skins + 109 effects + 123 samples\Atomix Virtual DJ 3.2 + crack + 38 skins + 109 effects + 123 samples\Samples\tarzan.wav
C:\Users\cedd\Downloads\eMule\Incoming\Atomix Virtual DJ 3.2 + crack + 38 skins + 109 effects + 123 samples\Atomix Virtual DJ 3.2 + crack + 38 skins + 109 effects + 123 samples\Samples\the dj calling me (8).vdj
C:\Users\cedd\Downloads\eMule\Incoming\Atomix Virtual DJ 3.2 + crack + 38 skins + 109 effects + 123 samples\Atomix Virtual DJ 3.2 + crack + 38 skins + 109 effects + 123 samples\Samples\This is one DJ you dont wanna fuck with!.vdj
C:\Users\cedd\Downloads\eMule\Incoming\Atomix Virtual DJ 3.2 + crack + 38 skins + 109 effects + 123 samples\Atomix Virtual DJ 3.2 + crack + 38 skins + 109 effects + 123 samples\Samples\this this this.vdj
C:\Users\cedd\Downloads\eMule\Incoming\Atomix Virtual DJ 3.2 + crack + 38 skins + 109 effects + 123 samples\Atomix Virtual DJ 3.2 + crack + 38 skins + 109 effects + 123 samples\Samples\tipsy loop.vdj
C:\Users\cedd\Downloads\eMule\Incoming\Atomix Virtual DJ 3.2 + crack + 38 skins + 109 effects + 123 samples\Atomix Virtual DJ 3.2 + crack + 38 skins + 109 effects + 123 samples\Samples\to late (4).vdj
C:\Users\cedd\Downloads\eMule\Incoming\Atomix Virtual DJ 3.2 + crack + 38 skins + 109 effects + 123 samples\Atomix Virtual DJ 3.2 + crack + 38 skins + 109 effects + 123 samples\Samples\toilet.wav
C:\Users\cedd\Downloads\eMule\Incoming\Atomix Virtual DJ 3.2 + crack + 38 skins + 109 effects + 123 samples\Atomix Virtual DJ 3.2 + crack + 38 skins + 109 effects + 123 samples\Samples\up and down.vdj
C:\Users\cedd\Downloads\eMule\Incoming\Atomix Virtual DJ 3.2 + crack + 38 skins + 109 effects + 123 samples\Atomix Virtual DJ 3.2 + crack + 38 skins + 109 effects + 123 samples\Samples\we were we will rock you[1]...singin'!!.vdj
C:\Users\cedd\Downloads\eMule\Incoming\Atomix Virtual DJ 3.2 + crack + 38 skins + 109 effects + 123 samples\Atomix Virtual DJ 3.2 + crack + 38 skins + 109 effects + 123 samples\Samples\whistle wolf.wav
C:\Users\cedd\Downloads\eMule\Incoming\Atomix Virtual DJ 3.2 + crack + 38 skins + 109 effects + 123 samples\Atomix Virtual DJ 3.2 + crack + 38 skins + 109 effects + 123 samples\Samples\whistle.wav
C:\Users\cedd\Downloads\eMule\Incoming\Atomix Virtual DJ 3.2 + crack + 38 skins + 109 effects + 123 samples\Atomix Virtual DJ 3.2 + crack + 38 skins + 109 effects + 123 samples\Samples\Wooshe A.mp3
C:\Users\cedd\Downloads\eMule\Incoming\Atomix Virtual DJ 3.2 + crack + 38 skins + 109 effects + 123 samples\Atomix Virtual DJ 3.2 + crack + 38 skins + 109 effects + 123 samples\Samples\Wooshe B.mp3
C:\Users\cedd\Downloads\eMule\Incoming\Atomix Virtual DJ 3.2 + crack + 38 skins + 109 effects + 123 samples\Atomix Virtual DJ 3.2 + crack + 38 skins + 109 effects + 123 samples\Samples\yeah loop.vdj
C:\Users\cedd\Downloads\eMule\Incoming\Atomix Virtual DJ 3.2 + crack + 38 skins + 109 effects + 123 samples\Atomix Virtual DJ 3.2 + crack + 38 skins + 109 effects + 123 samples\Samples\zumba ‚ tchik and tchak.vdj
C:\Users\cedd\Downloads\eMule\Incoming\Atomix Virtual DJ 3.2 + crack + 38 skins + 109 effects + 123 samples\Atomix Virtual DJ 3.2 + crack + 38 skins + 109 effects + 123 samples\Skins\@2[3].xx_Pioneer-700_COLOUR.zip
C:\Users\cedd\Downloads\eMule\Incoming\Atomix Virtual DJ 3.2 + crack + 38 skins + 109 effects + 123 samples\Atomix Virtual DJ 3.2 + crack + 38 skins + 109 effects + 123 samples\Skins\A-Trakt.zip
C:\Users\cedd\Downloads\eMule\Incoming\Atomix Virtual DJ 3.2 + crack + 38 skins + 109 effects + 123 samples\Atomix Virtual DJ 3.2 + crack + 38 skins + 109 effects + 123 samples\Skins\Always.zip
C:\Users\cedd\Downloads\eMule\Incoming\Atomix Virtual DJ 3.2 + crack + 38 skins + 109 effects + 123 samples\Atomix Virtual DJ 3.2 + crack + 38 skins + 109 effects + 123 samples\Skins\ATOMIX-FR 1[1].1.zip
C:\Users\cedd\Downloads\eMule\Incoming\Atomix Virtual DJ 3.2 + crack + 38 skins + 109 effects + 123 samples\Atomix Virtual DJ 3.2 + crack + 38 skins + 109 effects + 123 samples\Skins\Atomix.zip
C:\Users\cedd\Downloads\eMule\Incoming\Atomix Virtual DJ 3.2 + crack + 38 skins + 109 effects + 123 samples\Atomix Virtual DJ 3.2 + crack + 38 skins + 109 effects + 123 samples\Skins\BOANERGES V 1[1].1.zip
C:\Users\cedd\Downloads\eMule\Incoming\Atomix Virtual DJ 3.2 + crack + 38 skins + 109 effects + 123 samples\Atomix Virtual DJ 3.2 + crack + 38 skins + 109 effects + 123 samples\Skins\Boanerges.zip
C:\Users\cedd\Downloads\eMule\Incoming\Atomix Virtual DJ 3.2 + crack + 38 skins + 109 effects + 123 samples\Atomix Virtual DJ 3.2 + crack + 38 skins + 109 effects + 123 samples\Skins\CDJ100S - By Paky_&_Snake + font for skin.zip
C:\Users\cedd\Downloads\eMule\Incoming\Atomix Virtual DJ 3.2 + crack + 38 skins + 109 effects + 123 samples\Atomix Virtual DJ 3.2 + crack + 38 skins + 109 effects + 123 samples\Skins\CDJ100S - By Paky_&_Snake_V2+font_skin.zip
C:\Users\cedd\Downloads\eMule\Incoming\Atomix Virtual DJ 3.2 + crack + 38 skins + 109 effects + 123 samples\Atomix Virtual DJ 3.2 + crack + 38 skins + 109 effects + 123 samples\Skins\Darkfun V2[1].01.zip
C:\Users\cedd\Downloads\eMule\Incoming\Atomix Virtual DJ 3.2 + crack + 38 skins + 109 effects + 123 samples\Atomix Virtual DJ 3.2 + crack + 38 skins + 109 effects + 123 samples\Skins\Darkfun.zip
C:\Users\cedd\Downloads\eMule\Incoming\Atomix Virtual DJ 3.2 + crack + 38 skins + 109 effects + 123 samples\Atomix Virtual DJ 3.2 + crack + 38 skins + 109 effects + 123 samples\Skins\D
0
Réponse 6 / 46
sKe69 Messages postés 21360 Date d'inscription samedi 15 mars 2008 Statut Contributeur sécurité Dernière intervention 30 décembre 2012 463
5 déc. 2008 à 12:02
Heureusement que je t'ai dis de virer tous tes cracks ! Sinon qu'est-ce que ce serait ... ^^"
0
Réponse 7 / 46
cedd974 Messages postés 74 Date d'inscription mardi 29 avril 2008 Statut Membre Dernière intervention 15 septembre 2010 4
5 déc. 2008 à 12:08
mdrr désolé il faut que je recommence ou pas ?

Voila le rapport de hijack:

Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 15:04:14, on 05/12/2008
Platform: Windows Vista SP1 (WinNT 6.00.1905)
MSIE: Internet Explorer v7.00 (7.00.6001.18000)
Boot mode: Normal

Running processes:
C:\Windows\system32\Dwm.exe
C:\Windows\system32\taskeng.exe
C:\Windows\system32\conime.exe
C:\Windows\explorer.exe
C:\Program Files\Acer Arcade Live\Acer HomeMedia Connect\Kernel\DMS\PCMMediaSharing.exe
C:\Windows\system32\wbem\unsecapp.exe
C:\Windows\system32\wuauclt.exe
C:\Program Files\Trend Micro\HijackThis\HijackThis.exe
C:\Windows\System32\mobsync.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://fr.rd.yahoo.com/customize/ycomp/defaults/sp/*https://fr.yahoo.com/
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://moteur.chat-land.org/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = https://fr.yahoo.com/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = https://fr.yahoo.com/
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R1 - HKCU\Software\Microsoft\Internet Explorer\SearchURL,(Default) = http://fr.rd.yahoo.com/customize/ycomp/defaults/su/*https://fr.yahoo.com/
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page =
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
R3 - URLSearchHook: Yahoo! Toolbar avec bloqueur de fenêtres pop-up - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - (no file)
O1 - Hosts: ::1 localhost
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: (no name) - {1CB20BF0-BBAE-40A7-93F4-6435FF3D0411} - C:\PROGRA~1\Crawler\Toolbar\ctbr.dll
O2 - BHO: (no name) - {1E8A6170-7264-4D0F-BEAE-D42A53123C75} - c:\Program Files\Common Files\Symantec Shared\coShared\Browser\1.0\NppBho.dll
O2 - BHO: (no name) - {53707962-6F74-2D53-2644-206D7942484F} - C:\Program Files\Spybot - Search & Destroy\SDHelper.dll
O2 - BHO: RoboForm - {724d43a9-0d85-11d4-9908-00400523e39a} - C:\Program Files\Siber Systems\AI RoboForm\roboform.dll
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre6\bin\ssv.dll
O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)
O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll
O3 - Toolbar: Show Norton Toolbar - {90222687-F593-4738-B738-FBEE9C7B26DF} - c:\Program Files\Common Files\Symantec Shared\coShared\Browser\1.0\UIBHO.dll
O3 - Toolbar: Acer eDataSecurity Management - {5CBE3B7C-1E47-477e-A7DD-396DB0476E29} - C:\Windows\system32\eDStoolbar.dll
O3 - Toolbar: &Crawler Toolbar - {4B3803EA-5230-4DC3-A7FC-33638F3D3542} - C:\PROGRA~1\Crawler\Toolbar\ctbr.dll
O3 - Toolbar: &RoboForm - {724d43a0-0d85-11d4-9908-00400523e39a} - C:\Program Files\Siber Systems\AI RoboForm\roboform.dll
O4 - HKLM\..\Run: [RtHDVCpl] RtHDVCpl.exe
O4 - HKLM\..\Run: [Acer Empowering Technology Monitor] C:\Acer\Empowering Technology\SysMonitor.exe
O4 - HKLM\..\Run: [eDataSecurity Loader] C:\Acer\Empowering Technology\eDataSecurity\eDSloader.exe
O4 - HKLM\..\Run: [WarReg_PopUp] C:\Acer\WR_PopUp\WarReg_PopUp.exe
O4 - HKLM\..\Run: [Acer Tour Reminder] C:\Acer\AcerTour\Reminder.exe
O4 - HKLM\..\Run: [SpeedTouch USB Diagnostics] "C:\Program Files\Alcatel\SpeedTouch USB\Dragdiag.exe" /icon
O4 - HKLM\..\Run: [diagnostics] "C:\Program Files\Thomson\ST330\diagnostics\diagnostics.exe" /icon -l:fr
O4 - HKLM\..\Run: [IntelliPoint] "C:\Program Files\Microsoft IntelliPoint\ipoint.exe"
O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe"
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre6\bin\jusched.exe"
O4 - HKLM\..\Run: [SpywareTerminator] "C:\Program Files\Spyware Terminator\SpywareTerminatorShield.exe"
O4 - HKLM\..\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
O4 - HKCU\..\Run: [Sidebar] C:\Program Files\Windows Sidebar\sidebar.exe /autoRun
O4 - HKCU\..\Run: [Acer Tour Reminder] C:\Acer\AcerTour\Reminder.exe
O4 - HKCU\..\Run: [ehTray.exe] C:\Windows\ehome\ehTray.exe
O4 - HKCU\..\Run: [msnmsgr] "C:\Program Files\Windows Live\Messenger\msnmsgr.exe" /background
O4 - HKCU\..\Run: [RoboForm] "C:\Program Files\Siber Systems\AI RoboForm\RoboTaskBarIcon.exe"
O4 - HKCU\..\Run: [WMPNSCFG] C:\Program Files\Windows Media Player\WMPNSCFG.exe
O4 - HKCU\..\Run: [SpybotSD TeaTimer] C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-19\..\Run: [WindowsWelcomeCenter] rundll32.exe oobefldr.dll,ShowWelcomeCenter (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'SERVICE RÉSEAU')
O4 - HKUS\S-1-5-18\..\Run: [] (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [] (User 'Default user')
O4 - Global Startup: PCM Media Sharing.lnk = C:\Program Files\Acer Arcade Live\Acer HomeMedia Connect\Kernel\DMS\PCMMediaSharing.exe
O8 - Extra context menu item: Barre RoboForm - file://C:\Program Files\Siber Systems\AI RoboForm\RoboFormComShowToolbar.html
O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office12\EXCEL.EXE/3000
O8 - Extra context menu item: Enregistrer le formulaire - file://C:\Program Files\Siber Systems\AI RoboForm\RoboFormComSavePass.html
O8 - Extra context menu item: Personnaliser le menu - file://C:\Program Files\Siber Systems\AI RoboForm\RoboFormComCustomizeIEMenu.html
O8 - Extra context menu item: Remplir le formulaire - file://C:\Program Files\Siber Systems\AI RoboForm\RoboFormComFillForms.html
O9 - Extra button: Envoyer à OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~2\Office12\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: &Envoyer à OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~2\Office12\ONBttnIE.dll
O9 - Extra button: Remplir - {320AF880-6646-11D3-ABEE-C5DBF3571F46} - file://C:\Program Files\Siber Systems\AI RoboForm\RoboFormComFillForms.html
O9 - Extra 'Tools' menuitem: Remplir le formulaire - {320AF880-6646-11D3-ABEE-C5DBF3571F46} - file://C:\Program Files\Siber Systems\AI RoboForm\RoboFormComFillForms.html
O9 - Extra button: Enregistrer - {320AF880-6646-11D3-ABEE-C5DBF3571F49} - file://C:\Program Files\Siber Systems\AI RoboForm\RoboFormComSavePass.html
O9 - Extra 'Tools' menuitem: Enregistrer le formulaire - {320AF880-6646-11D3-ABEE-C5DBF3571F49} - file://C:\Program Files\Siber Systems\AI RoboForm\RoboFormComSavePass.html
O9 - Extra button: Barre RoboForm - {724d43aa-0d85-11d4-9908-00400523e39a} - file://C:\Program Files\Siber Systems\AI RoboForm\RoboFormComShowToolbar.html
O9 - Extra 'Tools' menuitem: Barre RoboForm - {724d43aa-0d85-11d4-9908-00400523e39a} - file://C:\Program Files\Siber Systems\AI RoboForm\RoboFormComShowToolbar.html
O9 - Extra button: (no name) - {85d1f590-48f4-11d9-9669-0800200c9a66} - C:\Windows\bdoscandel.exe (file missing)
O9 - Extra 'Tools' menuitem: Uninstall BitDefender Online Scanner v8 - {85d1f590-48f4-11d9-9669-0800200c9a66} - C:\Windows\bdoscandel.exe (file missing)
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\Office12\REFIEBAR.DLL
O13 - Gopher Prefix:
O18 - Protocol: tbr - {4D25FB7A-8902-4291-960E-9ADA051CFBBF} - C:\PROGRA~1\Crawler\Toolbar\ctbr.dll
O23 - Service: Acer HomeMedia Connect Service - CyberLink - C:\Program Files\Acer Arcade Live\Acer HomeMedia Connect\Kernel\DMS\CLMSServer.exe
O23 - Service: ePerformance Service (AcerMemUsageCheckService) - Unknown owner - C:\Acer\Empowering Technology\ePerformance\MemCheck.exe
O23 - Service: Ati External Event Utility - ATI Technologies Inc. - C:\Windows\system32\Ati2evxx.exe
O23 - Service: Symantec Lic NetConnect service (CLTNetCnService) - Symantec Corporation - c:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe
O23 - Service: COM Host (comHost) - Symantec Corporation - c:\Program Files\Common Files\Symantec Shared\VAScanner\comHost.exe
O23 - Service: eDSService.exe (eDataSecurity Service) - HiTRSUT - C:\Acer\Empowering Technology\eDataSecurity\eDSService.exe
O23 - Service: eRecovery Service (eRecoveryService) - Acer Inc. - C:\Acer\Empowering Technology\eRecovery\eRecoveryService.exe
O23 - Service: Validation de mot de passe Symantec IS (ISPwdSvc) - Symantec Corporation - c:\Program Files\Norton Internet Security\isPwdSvc.exe
O23 - Service: LightScribeService Direct Disc Labeling Service (LightScribeService) - Hewlett-Packard Company - C:\Program Files\Common Files\LightScribe\LSSrvc.exe
O23 - Service: LiveUpdate - Symantec Corporation - C:\PROGRA~1\Symantec\LIVEUP~1\LUCOMS~1.EXE
O23 - Service: LiveUpdate Notice Service Ex (LiveUpdate Notice Ex) - Symantec Corporation - c:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe
O23 - Service: LiveUpdate Notice Service - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\PIF\{B8E1DD85-8582-4c61-B58F-2F227FCA9A08}\PIFSvc.exe
O23 - Service: Ma-Config Service (maconfservice) - CybelSoft - C:\Program Files\ma-config.com\maconfservice.exe
O23 - Service: Cyberlink RichVideo Service(CRVS) (RichVideo) - Unknown owner - C:\Program Files\CyberLink\Shared Files\RichVideo.exe
O23 - Service: Spyware Terminator Realtime Shield Service (sp_rssrv) - Crawler.com - C:\Program Files\Spyware Terminator\sp_rsser.exe
O23 - Service: SpeedTouch 330 Manager (st330service) - THOMSON Telecom Belgium - C:\Program Files/Thomson/ST330/service/st330service.exe
O23 - Service: Symantec AppCore Service (SymAppCore) - Symantec Corporation - c:\Program Files\Common Files\Symantec Shared\AppCore\AppSvc32.exe
O23 - Service: @%SystemRoot%\System32\TuneUpDefragService.exe,-1 (TuneUp.Defrag) - TuneUp Software GmbH - C:\Windows\System32\TuneUpDefragService.exe
O23 - Service: Marvell Yukon Service (yksvc) - Unknown owner - RUNDLL32.EXE (file missing)
0
Réponse 8 / 46
sKe69 Messages postés 21360 Date d'inscription samedi 15 mars 2008 Statut Contributeur sécurité Dernière intervention 30 décembre 2012 463
5 déc. 2008 à 12:16
Bien ...

d'autres infections en plus ....


dans l'ordre :

1- Télécharge : - CCleaner
https://www.pcastuces.com/logitheque/ccleaner.htm
Ce logiciel va permettre de supprimer tous les fichiers temporaires et de corriger ton registre .
Lors de l'installation:
-choisis bien "francais" en langue .
-avant de cliquer sur le bouton "installer", décoche toutes les "options supplémentaires" sauf les 2 premières.


Un tuto ( aide ):
http://perso.orange.fr/jesses/Docs/Logiciels/CCleaner.htm

---> Utilisation:
! déconnecte toi et ferme toutes applications en cours !
* va dans "nettoyeur" : fais -analyse- puis -nettoyage-
* va dans "registre" : fais -chercher les erreurs- et -réparer toutes les erreurs-
( plusieurs fois jusqu'à ce qu'il n'y est plus d'erreur ) .

( CCleaner : soft à garder sur son PC , super utile pour de bons nettoyages ... )



2- Important :
Désactive le "tea timer" de Spybot S&D en t'aidant de ce tuto animé (merci Balltrap ;) ) :
http://perso.orange.fr/rginformatique/section%20virus/demo%20spybot.htm
( sur la 1er image , clique sur "tea timer" pour lancer l'animation ).

En effet , il risque de géner dans le bon déroulement des outils de désinfections ...

Tu le réactiveras une fois qu'on aura finis de désinfecter ( et pas avant ! ) .
Attention , à ce moment là, Spybot te demandera des modifs de registres :
tu les accepteras toutes ! ...



une fois ceci fais ( et pas avant ! ) , enchaine avec la suite :


3- Télécharge ToolBar S&D ( de Eric_71/Team IDN ) sur ton bureau :
https://77b4795d-a-62cb3a1a-s-sites.googlegroups.com/site/eric71mespages/ToolBarSD.exe?attachauth=ANoY7cqJWPphpudyTqv7TRo5RQ3nm_Sx8JluVMO59X5E9cyE3j3LqKlmStIqiDqJdIgMJLi7MXn2nKVajQfoWuVvZZ2wIx_vkqO4k4P0K9jh-ra9jaKPXdZcoaVF2UqJZNH8ubL_42uIwh6f35xJ2GJMuzddVj2Qth1DgZ839lxEIFGkgWz3TdfvNMy-YtxfA3gqBUrj4U4LFeAPiWr3ClmjIP0t_Xs5PQ%3D%3D&attredirects=2

( Tuto : https://sites.google.com/site/toolbarsd/aideenimages )

!! Déconnecte toi et ferme toutes tes applications en cours le temps de la manipe !!

* Double-clique sur ToolBar SD.exe pour lancer l'outil et laisse toi guider ...
--> Tapes sur 2 ( option " nettoyage " ) puis tape sur [Entrée].

Le nettoyage commence .
! ne touche à rien lors de la suppression !

Un rapport sera généré à la fin du processus : poste son contenu dans ta prochaine réponse
accompagné d'un nouveau rapport hijackthis pour analyse ...

( le rapport est en outre sauvegardé ici -> C:\TB.txt )




0
Réponse 9 / 46
cedd974 Messages postés 74 Date d'inscription mardi 29 avril 2008 Statut Membre Dernière intervention 15 septembre 2010 4
5 déc. 2008 à 12:45
-----------\\ ToolBar S&D 1.2.6 XP/Vista

Microsoft® Windows Vista™ Édition Familiale Premium ( v6.0.6001 ) Service Pack 1
X86-based PC ( Multiprocessor Free : AMD Athlon(tm) 64 X2 Dual Core Processor 4000+ )
BIOS : Phoenix - AwardBIOS v6.00PG
USER : cedd ( Not Administrator ! )
BOOT : Normal boot
Antivirus : Norton Internet Security 2007 (Not Activated)
Firewall : Norton Internet Security 2007 (Not Activated)
C:\ (Local Disk) - NTFS - Total:69 Go (Free:19 Go)
D:\ (Local Disk) - NTFS - Total:69 Go (Free:14 Go)
E:\ (CD or DVD)
F:\ (USB)
G:\ (USB)
H:\ (USB)
I:\ (USB)
J:\ (USB) - FAT32 - Total:3773 Mo (Free:3 Go)
K:\ (CD or DVD)
L:\ (USB) - FAT - Total:1 Mo (Free:0 Go)

"C:\ToolBar SD" ( MAJ : 04-12-2008|20:40 )
Option : [2] ( 05/12/2008|15:37 )

-----------\\ SUPPRESSION

Supprime! - C:\PROGRA~2\MICROS~1\Windows\STARTM~1\Programs\Crawler Toolbar
Supprime! - C:\Program Files\Crawler\Toolbar
Supprime! - C:\Program Files\GamesBar\Localization-French.ini
Supprime! - C:\Program Files\Crawler
Supprime! - C:\Program Files\GamesBar

-----------\\ Recherche de Fichiers / Dossiers ...


-----------\\ [..\Internet Explorer\Main]

[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
"Start Page"="http://moteur.chat-land.org/"
"SEARCH PAGE"="http://fr.rd.yahoo.com/customize/ycomp/defaults/sp/*https://fr.yahoo.com/"
"SearchMigratedDefaultURL"="https://search.yahoo.com/web{searchTerms}&ei=utf-8&fr=b1ie7"
"Url"="https://www.msn.com/fr-fr/actualite/"

[HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Main]
"Start Page"="https://www.msn.com/fr-fr/"
"Default_Page_URL"="https://fr.yahoo.com/"
"Default_Search_URL"="https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF"
"Search Page"="https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF"


--------------------\\ Recherche d'autres infections

--------------------\\ ROOTKIT !!

Rootkit Bagle ! .. [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Enum\Root\LEGACY_SROSA]
Rootkit Bagle ! .. [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet003\Enum\Root\LEGACY_SROSA]
Rootkit Bagle ! .. [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_SROSA]

--------------------\\ Cracks & Keygens ..

C:\Users\cedd\Desktop\projetC‚dric\Crack
C:\Users\cedd\Desktop\projetC‚dric\Crack\keygen.exe
C:\Users\cedd\Desktop\projetC‚dric\Crack\Long term serial.txt
C:\Users\cedd\Desktop\projetCédric\Avast AntiVirus PRO Edition 4.8.1169\Keygen.exe
C:\Users\cedd\Downloads\eMule\Incoming\Atomix Virtual DJ 3.2 + crack + 38 skins + 109 effects + 123 samples
C:\Users\cedd\Downloads\eMule\Incoming\Atomix Virtual DJ 3.2 + crack + 38 skins + 109 effects + 123 samples\Atomix Virtual DJ 3.2 + crack + 38 skins + 109 effects + 123 samples
C:\Users\cedd\Downloads\eMule\Incoming\Atomix Virtual DJ 3.2 + crack + 38 skins + 109 effects + 123 samples\Atomix Virtual DJ 3.2 + crack + 38 skins + 109 effects + 123 samples\Samples
C:\Users\cedd\Downloads\eMule\Incoming\Atomix Virtual DJ 3.2 + crack + 38 skins + 109 effects + 123 samples\Atomix Virtual DJ 3.2 + crack + 38 skins + 109 effects + 123 samples\Samples\desktop.ini



1 - "C:\ToolBar SD\TB_1.txt" - 05/12/2008|15:38 - Option : [2]

-----------\\ Fin du rapport a 15:38:16,50




hijack


Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 15:39:23, on 05/12/2008
Platform: Windows Vista SP1 (WinNT 6.00.1905)
MSIE: Internet Explorer v7.00 (7.00.6001.18000)
Boot mode: Normal

Running processes:
C:\Windows\system32\Dwm.exe
C:\Windows\system32\taskeng.exe
C:\Windows\system32\conime.exe
C:\Windows\explorer.exe
C:\Program Files\Acer Arcade Live\Acer HomeMedia Connect\Kernel\DMS\PCMMediaSharing.exe
C:\Windows\system32\wbem\unsecapp.exe
C:\Windows\system32\wuauclt.exe
C:\Windows\System32\mobsync.exe
C:\Windows\system32\NOTEPAD.EXE
C:\Program Files\Trend Micro\HijackThis\HijackThis.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://fr.rd.yahoo.com/customize/ycomp/defaults/sp/*https://fr.yahoo.com/
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://moteur.chat-land.org/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = https://fr.yahoo.com/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R1 - HKCU\Software\Microsoft\Internet Explorer\SearchURL,(Default) = http://fr.rd.yahoo.com/customize/ycomp/defaults/su/*https://fr.yahoo.com/
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page =
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
R3 - URLSearchHook: Yahoo! Toolbar avec bloqueur de fenêtres pop-up - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - (no file)
O1 - Hosts: ::1 localhost
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: (no name) - {1E8A6170-7264-4D0F-BEAE-D42A53123C75} - c:\Program Files\Common Files\Symantec Shared\coShared\Browser\1.0\NppBho.dll
O2 - BHO: (no name) - {53707962-6F74-2D53-2644-206D7942484F} - C:\Program Files\Spybot - Search & Destroy\SDHelper.dll
O2 - BHO: RoboForm - {724d43a9-0d85-11d4-9908-00400523e39a} - C:\Program Files\Siber Systems\AI RoboForm\roboform.dll
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre6\bin\ssv.dll
O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)
O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll
O3 - Toolbar: Show Norton Toolbar - {90222687-F593-4738-B738-FBEE9C7B26DF} - c:\Program Files\Common Files\Symantec Shared\coShared\Browser\1.0\UIBHO.dll
O3 - Toolbar: Acer eDataSecurity Management - {5CBE3B7C-1E47-477e-A7DD-396DB0476E29} - C:\Windows\system32\eDStoolbar.dll
O3 - Toolbar: &RoboForm - {724d43a0-0d85-11d4-9908-00400523e39a} - C:\Program Files\Siber Systems\AI RoboForm\roboform.dll
O4 - HKLM\..\Run: [RtHDVCpl] RtHDVCpl.exe
O4 - HKLM\..\Run: [Acer Empowering Technology Monitor] C:\Acer\Empowering Technology\SysMonitor.exe
O4 - HKLM\..\Run: [eDataSecurity Loader] C:\Acer\Empowering Technology\eDataSecurity\eDSloader.exe
O4 - HKLM\..\Run: [WarReg_PopUp] C:\Acer\WR_PopUp\WarReg_PopUp.exe
O4 - HKLM\..\Run: [Acer Tour Reminder] C:\Acer\AcerTour\Reminder.exe
O4 - HKLM\..\Run: [SpeedTouch USB Diagnostics] "C:\Program Files\Alcatel\SpeedTouch USB\Dragdiag.exe" /icon
O4 - HKLM\..\Run: [diagnostics] "C:\Program Files\Thomson\ST330\diagnostics\diagnostics.exe" /icon -l:fr
O4 - HKLM\..\Run: [IntelliPoint] "C:\Program Files\Microsoft IntelliPoint\ipoint.exe"
O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe"
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre6\bin\jusched.exe"
O4 - HKLM\..\Run: [SpywareTerminator] "C:\Program Files\Spyware Terminator\SpywareTerminatorShield.exe"
O4 - HKLM\..\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
O4 - HKCU\..\Run: [Sidebar] C:\Program Files\Windows Sidebar\sidebar.exe /autoRun
O4 - HKCU\..\Run: [Acer Tour Reminder] C:\Acer\AcerTour\Reminder.exe
O4 - HKCU\..\Run: [ehTray.exe] C:\Windows\ehome\ehTray.exe
O4 - HKCU\..\Run: [msnmsgr] "C:\Program Files\Windows Live\Messenger\msnmsgr.exe" /background
O4 - HKCU\..\Run: [RoboForm] "C:\Program Files\Siber Systems\AI RoboForm\RoboTaskBarIcon.exe"
O4 - HKCU\..\Run: [WMPNSCFG] C:\Program Files\Windows Media Player\WMPNSCFG.exe
O4 - HKCU\..\Run: [SpybotSD TeaTimer] C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-19\..\Run: [WindowsWelcomeCenter] rundll32.exe oobefldr.dll,ShowWelcomeCenter (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'SERVICE RÉSEAU')
O4 - HKUS\S-1-5-18\..\Run: [] (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [] (User 'Default user')
O4 - Global Startup: PCM Media Sharing.lnk = C:\Program Files\Acer Arcade Live\Acer HomeMedia Connect\Kernel\DMS\PCMMediaSharing.exe
O8 - Extra context menu item: Barre RoboForm - file://C:\Program Files\Siber Systems\AI RoboForm\RoboFormComShowToolbar.html
O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office12\EXCEL.EXE/3000
O8 - Extra context menu item: Enregistrer le formulaire - file://C:\Program Files\Siber Systems\AI RoboForm\RoboFormComSavePass.html
O8 - Extra context menu item: Personnaliser le menu - file://C:\Program Files\Siber Systems\AI RoboForm\RoboFormComCustomizeIEMenu.html
O8 - Extra context menu item: Remplir le formulaire - file://C:\Program Files\Siber Systems\AI RoboForm\RoboFormComFillForms.html
O9 - Extra button: Envoyer à OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~2\Office12\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: &Envoyer à OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~2\Office12\ONBttnIE.dll
O9 - Extra button: Remplir - {320AF880-6646-11D3-ABEE-C5DBF3571F46} - file://C:\Program Files\Siber Systems\AI RoboForm\RoboFormComFillForms.html
O9 - Extra 'Tools' menuitem: Remplir le formulaire - {320AF880-6646-11D3-ABEE-C5DBF3571F46} - file://C:\Program Files\Siber Systems\AI RoboForm\RoboFormComFillForms.html
O9 - Extra button: Enregistrer - {320AF880-6646-11D3-ABEE-C5DBF3571F49} - file://C:\Program Files\Siber Systems\AI RoboForm\RoboFormComSavePass.html
O9 - Extra 'Tools' menuitem: Enregistrer le formulaire - {320AF880-6646-11D3-ABEE-C5DBF3571F49} - file://C:\Program Files\Siber Systems\AI RoboForm\RoboFormComSavePass.html
O9 - Extra button: Barre RoboForm - {724d43aa-0d85-11d4-9908-00400523e39a} - file://C:\Program Files\Siber Systems\AI RoboForm\RoboFormComShowToolbar.html
O9 - Extra 'Tools' menuitem: Barre RoboForm - {724d43aa-0d85-11d4-9908-00400523e39a} - file://C:\Program Files\Siber Systems\AI RoboForm\RoboFormComShowToolbar.html
O9 - Extra button: (no name) - {85d1f590-48f4-11d9-9669-0800200c9a66} - C:\Windows\bdoscandel.exe (file missing)
O9 - Extra 'Tools' menuitem: Uninstall BitDefender Online Scanner v8 - {85d1f590-48f4-11d9-9669-0800200c9a66} - C:\Windows\bdoscandel.exe (file missing)
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\Office12\REFIEBAR.DLL
O9 - Extra button: (no name) - cmdmapping - (no file) (HKCU)
O13 - Gopher Prefix:
O23 - Service: Acer HomeMedia Connect Service - CyberLink - C:\Program Files\Acer Arcade Live\Acer HomeMedia Connect\Kernel\DMS\CLMSServer.exe
O23 - Service: ePerformance Service (AcerMemUsageCheckService) - Unknown owner - C:\Acer\Empowering Technology\ePerformance\MemCheck.exe
O23 - Service: Ati External Event Utility - ATI Technologies Inc. - C:\Windows\system32\Ati2evxx.exe
O23 - Service: Symantec Lic NetConnect service (CLTNetCnService) - Symantec Corporation - c:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe
O23 - Service: COM Host (comHost) - Symantec Corporation - c:\Program Files\Common Files\Symantec Shared\VAScanner\comHost.exe
O23 - Service: eDSService.exe (eDataSecurity Service) - HiTRSUT - C:\Acer\Empowering Technology\eDataSecurity\eDSService.exe
O23 - Service: eRecovery Service (eRecoveryService) - Acer Inc. - C:\Acer\Empowering Technology\eRecovery\eRecoveryService.exe
O23 - Service: Validation de mot de passe Symantec IS (ISPwdSvc) - Symantec Corporation - c:\Program Files\Norton Internet Security\isPwdSvc.exe
O23 - Service: LightScribeService Direct Disc Labeling Service (LightScribeService) - Hewlett-Packard Company - C:\Program Files\Common Files\LightScribe\LSSrvc.exe
O23 - Service: LiveUpdate - Symantec Corporation - C:\PROGRA~1\Symantec\LIVEUP~1\LUCOMS~1.EXE
O23 - Service: LiveUpdate Notice Service Ex (LiveUpdate Notice Ex) - Symantec Corporation - c:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe
O23 - Service: LiveUpdate Notice Service - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\PIF\{B8E1DD85-8582-4c61-B58F-2F227FCA9A08}\PIFSvc.exe
O23 - Service: Ma-Config Service (maconfservice) - CybelSoft - C:\Program Files\ma-config.com\maconfservice.exe
O23 - Service: Cyberlink RichVideo Service(CRVS) (RichVideo) - Unknown owner - C:\Program Files\CyberLink\Shared Files\RichVideo.exe
O23 - Service: Spyware Terminator Realtime Shield Service (sp_rssrv) - Crawler.com - C:\Program Files\Spyware Terminator\sp_rsser.exe
O23 - Service: SpeedTouch 330 Manager (st330service) - THOMSON Telecom Belgium - C:\Program Files/Thomson/ST330/service/st330service.exe
O23 - Service: Symantec AppCore Service (SymAppCore) - Symantec Corporation - c:\Program Files\Common Files\Symantec Shared\AppCore\AppSvc32.exe
O23 - Service: @%SystemRoot%\System32\TuneUpDefragService.exe,-1 (TuneUp.Defrag) - TuneUp Software GmbH - C:\Windows\System32\TuneUpDefragService.exe
O23 - Service: Marvell Yukon Service (yksvc) - Unknown owner - RUNDLL32.EXE (file missing)
0
Réponse 10 / 46
cedd974 Messages postés 74 Date d'inscription mardi 29 avril 2008 Statut Membre Dernière intervention 15 septembre 2010 4
5 déc. 2008 à 12:46
J'airais jamais cru que mon pc était aussi infecté pourtant j'avais Avast .
0
Réponse 11 / 46
sKe69 Messages postés 21360 Date d'inscription samedi 15 mars 2008 Statut Contributeur sécurité Dernière intervention 30 décembre 2012 463
5 déc. 2008 à 13:01
Tu n'as toujours pas désactivé le "tea timer" de Spybot .... FAIS LE !


-> Important :
Désactive le "tea timer" de Spybot S&D en t'aidant de ce tuto animé (merci Balltrap ;) ) :
http://perso.orange.fr/rginformatique/section%20virus/demo%20spybot.htm
( sur la 1er image , clique sur "tea timer" pour lancer l'animation ).

En effet , il risque de géner dans le bon déroulement des outils de désinfections ...

Tu le réactiveras une fois qu'on aura finis de désinfecter ( et pas avant ! ) .
Attention , à ce moment là, Spybot te demandera des modifs de registres :
tu les accepteras toutes ! ...



une fois fais , repostes un nouvel hijackthis de contrôle stp ....
0
Réponse 12 / 46
cedd974 Messages postés 74 Date d'inscription mardi 29 avril 2008 Statut Membre Dernière intervention 15 septembre 2010 4
5 déc. 2008 à 13:16
Merci désolé si quelque fois je fait mon boulet lol

Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 15:39:23, on 05/12/2008
Platform: Windows Vista SP1 (WinNT 6.00.1905)
MSIE: Internet Explorer v7.00 (7.00.6001.18000)
Boot mode: Normal

Running processes:
C:\Windows\system32\Dwm.exe
C:\Windows\system32\taskeng.exe
C:\Windows\system32\conime.exe
C:\Windows\explorer.exe
C:\Program Files\Acer Arcade Live\Acer HomeMedia Connect\Kernel\DMS\PCMMediaSharing.exe
C:\Windows\system32\wbem\unsecapp.exe
C:\Windows\system32\wuauclt.exe
C:\Windows\System32\mobsync.exe
C:\Windows\system32\NOTEPAD.EXE
C:\Program Files\Trend Micro\HijackThis\HijackThis.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://fr.rd.yahoo.com/customize/ycomp/defaults/sp/*https://fr.yahoo.com/
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://moteur.chat-land.org/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = https://fr.yahoo.com/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R1 - HKCU\Software\Microsoft\Internet Explorer\SearchURL,(Default) = http://fr.rd.yahoo.com/customize/ycomp/defaults/su/*https://fr.yahoo.com/
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page =
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
R3 - URLSearchHook: Yahoo! Toolbar avec bloqueur de fenêtres pop-up - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - (no file)
O1 - Hosts: ::1 localhost
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: (no name) - {1E8A6170-7264-4D0F-BEAE-D42A53123C75} - c:\Program Files\Common Files\Symantec Shared\coShared\Browser\1.0\NppBho.dll
O2 - BHO: (no name) - {53707962-6F74-2D53-2644-206D7942484F} - C:\Program Files\Spybot - Search & Destroy\SDHelper.dll
O2 - BHO: RoboForm - {724d43a9-0d85-11d4-9908-00400523e39a} - C:\Program Files\Siber Systems\AI RoboForm\roboform.dll
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre6\bin\ssv.dll
O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)
O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll
O3 - Toolbar: Show Norton Toolbar - {90222687-F593-4738-B738-FBEE9C7B26DF} - c:\Program Files\Common Files\Symantec Shared\coShared\Browser\1.0\UIBHO.dll
O3 - Toolbar: Acer eDataSecurity Management - {5CBE3B7C-1E47-477e-A7DD-396DB0476E29} - C:\Windows\system32\eDStoolbar.dll
O3 - Toolbar: &RoboForm - {724d43a0-0d85-11d4-9908-00400523e39a} - C:\Program Files\Siber Systems\AI RoboForm\roboform.dll
O4 - HKLM\..\Run: [RtHDVCpl] RtHDVCpl.exe
O4 - HKLM\..\Run: [Acer Empowering Technology Monitor] C:\Acer\Empowering Technology\SysMonitor.exe
O4 - HKLM\..\Run: [eDataSecurity Loader] C:\Acer\Empowering Technology\eDataSecurity\eDSloader.exe
O4 - HKLM\..\Run: [WarReg_PopUp] C:\Acer\WR_PopUp\WarReg_PopUp.exe
O4 - HKLM\..\Run: [Acer Tour Reminder] C:\Acer\AcerTour\Reminder.exe
O4 - HKLM\..\Run: [SpeedTouch USB Diagnostics] "C:\Program Files\Alcatel\SpeedTouch USB\Dragdiag.exe" /icon
O4 - HKLM\..\Run: [diagnostics] "C:\Program Files\Thomson\ST330\diagnostics\diagnostics.exe" /icon -l:fr
O4 - HKLM\..\Run: [IntelliPoint] "C:\Program Files\Microsoft IntelliPoint\ipoint.exe"
O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe"
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre6\bin\jusched.exe"
O4 - HKLM\..\Run: [SpywareTerminator] "C:\Program Files\Spyware Terminator\SpywareTerminatorShield.exe"
O4 - HKLM\..\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
O4 - HKCU\..\Run: [Sidebar] C:\Program Files\Windows Sidebar\sidebar.exe /autoRun
O4 - HKCU\..\Run: [Acer Tour Reminder] C:\Acer\AcerTour\Reminder.exe
O4 - HKCU\..\Run: [ehTray.exe] C:\Windows\ehome\ehTray.exe
O4 - HKCU\..\Run: [msnmsgr] "C:\Program Files\Windows Live\Messenger\msnmsgr.exe" /background
O4 - HKCU\..\Run: [RoboForm] "C:\Program Files\Siber Systems\AI RoboForm\RoboTaskBarIcon.exe"
O4 - HKCU\..\Run: [WMPNSCFG] C:\Program Files\Windows Media Player\WMPNSCFG.exe
O4 - HKCU\..\Run: [SpybotSD TeaTimer] C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-19\..\Run: [WindowsWelcomeCenter] rundll32.exe oobefldr.dll,ShowWelcomeCenter (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'SERVICE RÉSEAU')
O4 - HKUS\S-1-5-18\..\Run: [] (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [] (User 'Default user')
O4 - Global Startup: PCM Media Sharing.lnk = C:\Program Files\Acer Arcade Live\Acer HomeMedia Connect\Kernel\DMS\PCMMediaSharing.exe
O8 - Extra context menu item: Barre RoboForm - file://C:\Program Files\Siber Systems\AI RoboForm\RoboFormComShowToolbar.html
O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office12\EXCEL.EXE/3000
O8 - Extra context menu item: Enregistrer le formulaire - file://C:\Program Files\Siber Systems\AI RoboForm\RoboFormComSavePass.html
O8 - Extra context menu item: Personnaliser le menu - file://C:\Program Files\Siber Systems\AI RoboForm\RoboFormComCustomizeIEMenu.html
O8 - Extra context menu item: Remplir le formulaire - file://C:\Program Files\Siber Systems\AI RoboForm\RoboFormComFillForms.html
O9 - Extra button: Envoyer à OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~2\Office12\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: &Envoyer à OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~2\Office12\ONBttnIE.dll
O9 - Extra button: Remplir - {320AF880-6646-11D3-ABEE-C5DBF3571F46} - file://C:\Program Files\Siber Systems\AI RoboForm\RoboFormComFillForms.html
O9 - Extra 'Tools' menuitem: Remplir le formulaire - {320AF880-6646-11D3-ABEE-C5DBF3571F46} - file://C:\Program Files\Siber Systems\AI RoboForm\RoboFormComFillForms.html
O9 - Extra button: Enregistrer - {320AF880-6646-11D3-ABEE-C5DBF3571F49} - file://C:\Program Files\Siber Systems\AI RoboForm\RoboFormComSavePass.html
O9 - Extra 'Tools' menuitem: Enregistrer le formulaire - {320AF880-6646-11D3-ABEE-C5DBF3571F49} - file://C:\Program Files\Siber Systems\AI RoboForm\RoboFormComSavePass.html
O9 - Extra button: Barre RoboForm - {724d43aa-0d85-11d4-9908-00400523e39a} - file://C:\Program Files\Siber Systems\AI RoboForm\RoboFormComShowToolbar.html
O9 - Extra 'Tools' menuitem: Barre RoboForm - {724d43aa-0d85-11d4-9908-00400523e39a} - file://C:\Program Files\Siber Systems\AI RoboForm\RoboFormComShowToolbar.html
O9 - Extra button: (no name) - {85d1f590-48f4-11d9-9669-0800200c9a66} - C:\Windows\bdoscandel.exe (file missing)
O9 - Extra 'Tools' menuitem: Uninstall BitDefender Online Scanner v8 - {85d1f590-48f4-11d9-9669-0800200c9a66} - C:\Windows\bdoscandel.exe (file missing)
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\Office12\REFIEBAR.DLL
O9 - Extra button: (no name) - cmdmapping - (no file) (HKCU)
O13 - Gopher Prefix:
O23 - Service: Acer HomeMedia Connect Service - CyberLink - C:\Program Files\Acer Arcade Live\Acer HomeMedia Connect\Kernel\DMS\CLMSServer.exe
O23 - Service: ePerformance Service (AcerMemUsageCheckService) - Unknown owner - C:\Acer\Empowering Technology\ePerformance\MemCheck.exe
O23 - Service: Ati External Event Utility - ATI Technologies Inc. - C:\Windows\system32\Ati2evxx.exe
O23 - Service: Symantec Lic NetConnect service (CLTNetCnService) - Symantec Corporation - c:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe
O23 - Service: COM Host (comHost) - Symantec Corporation - c:\Program Files\Common Files\Symantec Shared\VAScanner\comHost.exe
O23 - Service: eDSService.exe (eDataSecurity Service) - HiTRSUT - C:\Acer\Empowering Technology\eDataSecurity\eDSService.exe
O23 - Service: eRecovery Service (eRecoveryService) - Acer Inc. - C:\Acer\Empowering Technology\eRecovery\eRecoveryService.exe
O23 - Service: Validation de mot de passe Symantec IS (ISPwdSvc) - Symantec Corporation - c:\Program Files\Norton Internet Security\isPwdSvc.exe
O23 - Service: LightScribeService Direct Disc Labeling Service (LightScribeService) - Hewlett-Packard Company - C:\Program Files\Common Files\LightScribe\LSSrvc.exe
O23 - Service: LiveUpdate - Symantec Corporation - C:\PROGRA~1\Symantec\LIVEUP~1\LUCOMS~1.EXE
O23 - Service: LiveUpdate Notice Service Ex (LiveUpdate Notice Ex) - Symantec Corporation - c:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe
O23 - Service: LiveUpdate Notice Service - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\PIF\{B8E1DD85-8582-4c61-B58F-2F227FCA9A08}\PIFSvc.exe
O23 - Service: Ma-Config Service (maconfservice) - CybelSoft - C:\Program Files\ma-config.com\maconfservice.exe
O23 - Service: Cyberlink RichVideo Service(CRVS) (RichVideo) - Unknown owner - C:\Program Files\CyberLink\Shared Files\RichVideo.exe
O23 - Service: Spyware Terminator Realtime Shield Service (sp_rssrv) - Crawler.com - C:\Program Files\Spyware Terminator\sp_rsser.exe
O23 - Service: SpeedTouch 330 Manager (st330service) - THOMSON Telecom Belgium - C:\Program Files/Thomson/ST330/service/st330service.exe
O23 - Service: Symantec AppCore Service (SymAppCore) - Symantec Corporation - c:\Program Files\Common Files\Symantec Shared\AppCore\AppSvc32.exe
O23 - Service: @%SystemRoot%\System32\TuneUpDefragService.exe,-1 (TuneUp.Defrag) - TuneUp Software GmbH - C:\Windows\System32\TuneUpDefragService.exe
O23 - Service: Marvell Yukon Service (yksvc) - Unknown owner - RUNDLL32.EXE (file missing)
0
Réponse 13 / 46
cedd974 Messages postés 74 Date d'inscription mardi 29 avril 2008 Statut Membre Dernière intervention 15 septembre 2010 4
5 déc. 2008 à 13:23
bon j'ai refait toute les analyses pour etre plus sur :


-----------\\ ToolBar S&D 1.2.6 XP/Vista

Microsoft® Windows Vista™ Édition Familiale Premium ( v6.0.6001 ) Service Pack 1
X86-based PC ( Multiprocessor Free : AMD Athlon(tm) 64 X2 Dual Core Processor 4000+ )
BIOS : Phoenix - AwardBIOS v6.00PG
USER : cedd ( Not Administrator ! )
BOOT : Normal boot
Antivirus : Norton Internet Security 2007 (Not Activated)
Firewall : Norton Internet Security 2007 (Not Activated)
C:\ (Local Disk) - NTFS - Total:69 Go (Free:19 Go)
D:\ (Local Disk) - NTFS - Total:69 Go (Free:14 Go)
E:\ (CD or DVD)
F:\ (USB)
G:\ (USB)
H:\ (USB)
I:\ (USB)
J:\ (USB) - FAT32 - Total:3773 Mo (Free:3 Go)
K:\ (CD or DVD)
L:\ (USB) - FAT - Total:1 Mo (Free:0 Go)

"C:\ToolBar SD" ( MAJ : 04-12-2008|20:40 )
Option : [2] ( 05/12/2008|16:17 )

-----------\\ Recherche de Fichiers / Dossiers ...


-----------\\ [..\Internet Explorer\Main]

[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
"Start Page"="http://moteur.chat-land.org/"
"SEARCH PAGE"="http://fr.rd.yahoo.com/customize/ycomp/defaults/sp/*https://fr.yahoo.com/"
"SearchMigratedDefaultURL"="https://search.yahoo.com/web{searchTerms}&ei=utf-8&fr=b1ie7"
"Url"="https://www.msn.com/fr-fr/actualite/"

[HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Main]
"Start Page"="https://www.msn.com/fr-fr/"
"Default_Page_URL"="https://fr.yahoo.com/"
"Default_Search_URL"="https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF"
"Search Page"="https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF"


--------------------\\ Recherche d'autres infections

--------------------\\ ROOTKIT !!

Rootkit Bagle ! .. [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Enum\Root\LEGACY_SROSA]
Rootkit Bagle ! .. [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet003\Enum\Root\LEGACY_SROSA]
Rootkit Bagle ! .. [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_SROSA]

--------------------\\ Cracks & Keygens ..

C:\Users\cedd\Desktop\projetC‚dric\Crack
C:\Users\cedd\Desktop\projetC‚dric\Crack\keygen.exe
C:\Users\cedd\Desktop\projetC‚dric\Crack\Long term serial.txt
C:\Users\cedd\Desktop\projetCédric\Avast AntiVirus PRO Edition 4.8.1169\Keygen.exe
C:\Users\cedd\Downloads\eMule\Incoming\Atomix Virtual DJ 3.2 + crack + 38 skins + 109 effects + 123 samples
C:\Users\cedd\Downloads\eMule\Incoming\Atomix Virtual DJ 3.2 + crack + 38 skins + 109 effects + 123 samples\Atomix Virtual DJ 3.2 + crack + 38 skins + 109 effects + 123 samples
C:\Users\cedd\Downloads\eMule\Incoming\Atomix Virtual DJ 3.2 + crack + 38 skins + 109 effects + 123 samples\Atomix Virtual DJ 3.2 + crack + 38 skins + 109 effects + 123 samples\Samples
C:\Users\cedd\Downloads\eMule\Incoming\Atomix Virtual DJ 3.2 + crack + 38 skins + 109 effects + 123 samples\Atomix Virtual DJ 3.2 + crack + 38 skins + 109 effects + 123 samples\Samples\desktop.ini



1 - "C:\ToolBar SD\TB_1.txt" - 05/12/2008|15:38 - Option : [2]
2 - "C:\ToolBar SD\TB_2.txt" - 05/12/2008|16:18 - Option : [2]

-----------\\ Fin du rapport a 16:18:13,63








Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 15:39:23, on 05/12/2008
Platform: Windows Vista SP1 (WinNT 6.00.1905)
MSIE: Internet Explorer v7.00 (7.00.6001.18000)
Boot mode: Normal

Running processes:
C:\Windows\system32\Dwm.exe
C:\Windows\system32\taskeng.exe
C:\Windows\system32\conime.exe
C:\Windows\explorer.exe
C:\Program Files\Acer Arcade Live\Acer HomeMedia Connect\Kernel\DMS\PCMMediaSharing.exe
C:\Windows\system32\wbem\unsecapp.exe
C:\Windows\system32\wuauclt.exe
C:\Windows\System32\mobsync.exe
C:\Windows\system32\NOTEPAD.EXE
C:\Program Files\Trend Micro\HijackThis\HijackThis.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://fr.rd.yahoo.com/customize/ycomp/defaults/sp/*https://fr.yahoo.com/
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://moteur.chat-land.org/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = https://fr.yahoo.com/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R1 - HKCU\Software\Microsoft\Internet Explorer\SearchURL,(Default) = http://fr.rd.yahoo.com/customize/ycomp/defaults/su/*https://fr.yahoo.com/
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page =
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
R3 - URLSearchHook: Yahoo! Toolbar avec bloqueur de fenêtres pop-up - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - (no file)
O1 - Hosts: ::1 localhost
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: (no name) - {1E8A6170-7264-4D0F-BEAE-D42A53123C75} - c:\Program Files\Common Files\Symantec Shared\coShared\Browser\1.0\NppBho.dll
O2 - BHO: (no name) - {53707962-6F74-2D53-2644-206D7942484F} - C:\Program Files\Spybot - Search & Destroy\SDHelper.dll
O2 - BHO: RoboForm - {724d43a9-0d85-11d4-9908-00400523e39a} - C:\Program Files\Siber Systems\AI RoboForm\roboform.dll
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre6\bin\ssv.dll
O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)
O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll
O3 - Toolbar: Show Norton Toolbar - {90222687-F593-4738-B738-FBEE9C7B26DF} - c:\Program Files\Common Files\Symantec Shared\coShared\Browser\1.0\UIBHO.dll
O3 - Toolbar: Acer eDataSecurity Management - {5CBE3B7C-1E47-477e-A7DD-396DB0476E29} - C:\Windows\system32\eDStoolbar.dll
O3 - Toolbar: &RoboForm - {724d43a0-0d85-11d4-9908-00400523e39a} - C:\Program Files\Siber Systems\AI RoboForm\roboform.dll
O4 - HKLM\..\Run: [RtHDVCpl] RtHDVCpl.exe
O4 - HKLM\..\Run: [Acer Empowering Technology Monitor] C:\Acer\Empowering Technology\SysMonitor.exe
O4 - HKLM\..\Run: [eDataSecurity Loader] C:\Acer\Empowering Technology\eDataSecurity\eDSloader.exe
O4 - HKLM\..\Run: [WarReg_PopUp] C:\Acer\WR_PopUp\WarReg_PopUp.exe
O4 - HKLM\..\Run: [Acer Tour Reminder] C:\Acer\AcerTour\Reminder.exe
O4 - HKLM\..\Run: [SpeedTouch USB Diagnostics] "C:\Program Files\Alcatel\SpeedTouch USB\Dragdiag.exe" /icon
O4 - HKLM\..\Run: [diagnostics] "C:\Program Files\Thomson\ST330\diagnostics\diagnostics.exe" /icon -l:fr
O4 - HKLM\..\Run: [IntelliPoint] "C:\Program Files\Microsoft IntelliPoint\ipoint.exe"
O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe"
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre6\bin\jusched.exe"
O4 - HKLM\..\Run: [SpywareTerminator] "C:\Program Files\Spyware Terminator\SpywareTerminatorShield.exe"
O4 - HKLM\..\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
O4 - HKCU\..\Run: [Sidebar] C:\Program Files\Windows Sidebar\sidebar.exe /autoRun
O4 - HKCU\..\Run: [Acer Tour Reminder] C:\Acer\AcerTour\Reminder.exe
O4 - HKCU\..\Run: [ehTray.exe] C:\Windows\ehome\ehTray.exe
O4 - HKCU\..\Run: [msnmsgr] "C:\Program Files\Windows Live\Messenger\msnmsgr.exe" /background
O4 - HKCU\..\Run: [RoboForm] "C:\Program Files\Siber Systems\AI RoboForm\RoboTaskBarIcon.exe"
O4 - HKCU\..\Run: [WMPNSCFG] C:\Program Files\Windows Media Player\WMPNSCFG.exe
O4 - HKCU\..\Run: [SpybotSD TeaTimer] C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-19\..\Run: [WindowsWelcomeCenter] rundll32.exe oobefldr.dll,ShowWelcomeCenter (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'SERVICE RÉSEAU')
O4 - HKUS\S-1-5-18\..\Run: [] (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [] (User 'Default user')
O4 - Global Startup: PCM Media Sharing.lnk = C:\Program Files\Acer Arcade Live\Acer HomeMedia Connect\Kernel\DMS\PCMMediaSharing.exe
O8 - Extra context menu item: Barre RoboForm - file://C:\Program Files\Siber Systems\AI RoboForm\RoboFormComShowToolbar.html
O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office12\EXCEL.EXE/3000
O8 - Extra context menu item: Enregistrer le formulaire - file://C:\Program Files\Siber Systems\AI RoboForm\RoboFormComSavePass.html
O8 - Extra context menu item: Personnaliser le menu - file://C:\Program Files\Siber Systems\AI RoboForm\RoboFormComCustomizeIEMenu.html
O8 - Extra context menu item: Remplir le formulaire - file://C:\Program Files\Siber Systems\AI RoboForm\RoboFormComFillForms.html
O9 - Extra button: Envoyer à OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~2\Office12\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: &Envoyer à OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~2\Office12\ONBttnIE.dll
O9 - Extra button: Remplir - {320AF880-6646-11D3-ABEE-C5DBF3571F46} - file://C:\Program Files\Siber Systems\AI RoboForm\RoboFormComFillForms.html
O9 - Extra 'Tools' menuitem: Remplir le formulaire - {320AF880-6646-11D3-ABEE-C5DBF3571F46} - file://C:\Program Files\Siber Systems\AI RoboForm\RoboFormComFillForms.html
O9 - Extra button: Enregistrer - {320AF880-6646-11D3-ABEE-C5DBF3571F49} - file://C:\Program Files\Siber Systems\AI RoboForm\RoboFormComSavePass.html
O9 - Extra 'Tools' menuitem: Enregistrer le formulaire - {320AF880-6646-11D3-ABEE-C5DBF3571F49} - file://C:\Program Files\Siber Systems\AI RoboForm\RoboFormComSavePass.html
O9 - Extra button: Barre RoboForm - {724d43aa-0d85-11d4-9908-00400523e39a} - file://C:\Program Files\Siber Systems\AI RoboForm\RoboFormComShowToolbar.html
O9 - Extra 'Tools' menuitem: Barre RoboForm - {724d43aa-0d85-11d4-9908-00400523e39a} - file://C:\Program Files\Siber Systems\AI RoboForm\RoboFormComShowToolbar.html
O9 - Extra button: (no name) - {85d1f590-48f4-11d9-9669-0800200c9a66} - C:\Windows\bdoscandel.exe (file missing)
O9 - Extra 'Tools' menuitem: Uninstall BitDefender Online Scanner v8 - {85d1f590-48f4-11d9-9669-0800200c9a66} - C:\Windows\bdoscandel.exe (file missing)
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\Office12\REFIEBAR.DLL
O9 - Extra button: (no name) - cmdmapping - (no file) (HKCU)
O13 - Gopher Prefix:
O23 - Service: Acer HomeMedia Connect Service - CyberLink - C:\Program Files\Acer Arcade Live\Acer HomeMedia Connect\Kernel\DMS\CLMSServer.exe
O23 - Service: ePerformance Service (AcerMemUsageCheckService) - Unknown owner - C:\Acer\Empowering Technology\ePerformance\MemCheck.exe
O23 - Service: Ati External Event Utility - ATI Technologies Inc. - C:\Windows\system32\Ati2evxx.exe
O23 - Service: Symantec Lic NetConnect service (CLTNetCnService) - Symantec Corporation - c:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe
O23 - Service: COM Host (comHost) - Symantec Corporation - c:\Program Files\Common Files\Symantec Shared\VAScanner\comHost.exe
O23 - Service: eDSService.exe (eDataSecurity Service) - HiTRSUT - C:\Acer\Empowering Technology\eDataSecurity\eDSService.exe
O23 - Service: eRecovery Service (eRecoveryService) - Acer Inc. - C:\Acer\Empowering Technology\eRecovery\eRecoveryService.exe
O23 - Service: Validation de mot de passe Symantec IS (ISPwdSvc) - Symantec Corporation - c:\Program Files\Norton Internet Security\isPwdSvc.exe
O23 - Service: LightScribeService Direct Disc Labeling Service (LightScribeService) - Hewlett-Packard Company - C:\Program Files\Common Files\LightScribe\LSSrvc.exe
O23 - Service: LiveUpdate - Symantec Corporation - C:\PROGRA~1\Symantec\LIVEUP~1\LUCOMS~1.EXE
O23 - Service: LiveUpdate Notice Service Ex (LiveUpdate Notice Ex) - Symantec Corporation - c:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe
O23 - Service: LiveUpdate Notice Service - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\PIF\{B8E1DD85-8582-4c61-B58F-2F227FCA9A08}\PIFSvc.exe
O23 - Service: Ma-Config Service (maconfservice) - CybelSoft - C:\Program Files\ma-config.com\maconfservice.exe
O23 - Service: Cyberlink RichVideo Service(CRVS) (RichVideo) - Unknown owner - C:\Program Files\CyberLink\Shared Files\RichVideo.exe
O23 - Service: Spyware Terminator Realtime Shield Service (sp_rssrv) - Crawler.com - C:\Program Files\Spyware Terminator\sp_rsser.exe
O23 - Service: SpeedTouch 330 Manager (st330service) - THOMSON Telecom Belgium - C:\Program Files/Thomson/ST330/service/st330service.exe
O23 - Service: Symantec AppCore Service (SymAppCore) - Symantec Corporation - c:\Program Files\Common Files\Symantec Shared\AppCore\AppSvc32.exe
O23 - Service: @%SystemRoot%\System32\TuneUpDefragService.exe,-1 (TuneUp.Defrag) - TuneUp Software GmbH - C:\Windows\System32\TuneUpDefragService.exe
O23 - Service: Marvell Yukon Service (yksvc) - Unknown owner - RUNDLL32.EXE (file missing)
0
Réponse 14 / 46
sKe69 Messages postés 21360 Date d'inscription samedi 15 mars 2008 Statut Contributeur sécurité Dernière intervention 30 décembre 2012 463
5 déc. 2008 à 13:38
re, tu me postes à chaque fois le même rapport hijackthis !!!


refais un scan Hijackthis et postes moi le NOUVEAU rapport obtenu pour analyse ....

0
Réponse 15 / 46
cedd974 Messages postés 74 Date d'inscription mardi 29 avril 2008 Statut Membre Dernière intervention 15 septembre 2010 4
5 déc. 2008 à 13:42
Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 15:39:23, on 05/12/2008
Platform: Windows Vista SP1 (WinNT 6.00.1905)
MSIE: Internet Explorer v7.00 (7.00.6001.18000)
Boot mode: Normal

Running processes:
C:\Windows\system32\Dwm.exe
C:\Windows\system32\taskeng.exe
C:\Windows\system32\conime.exe
C:\Windows\explorer.exe
C:\Program Files\Acer Arcade Live\Acer HomeMedia Connect\Kernel\DMS\PCMMediaSharing.exe
C:\Windows\system32\wbem\unsecapp.exe
C:\Windows\system32\wuauclt.exe
C:\Windows\System32\mobsync.exe
C:\Windows\system32\NOTEPAD.EXE
C:\Program Files\Trend Micro\HijackThis\HijackThis.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://fr.rd.yahoo.com/customize/ycomp/defaults/sp/*https://fr.yahoo.com/
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://moteur.chat-land.org/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = https://fr.yahoo.com/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R1 - HKCU\Software\Microsoft\Internet Explorer\SearchURL,(Default) = http://fr.rd.yahoo.com/customize/ycomp/defaults/su/*https://fr.yahoo.com/
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page =
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
R3 - URLSearchHook: Yahoo! Toolbar avec bloqueur de fenêtres pop-up - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - (no file)
O1 - Hosts: ::1 localhost
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: (no name) - {1E8A6170-7264-4D0F-BEAE-D42A53123C75} - c:\Program Files\Common Files\Symantec Shared\coShared\Browser\1.0\NppBho.dll
O2 - BHO: (no name) - {53707962-6F74-2D53-2644-206D7942484F} - C:\Program Files\Spybot - Search & Destroy\SDHelper.dll
O2 - BHO: RoboForm - {724d43a9-0d85-11d4-9908-00400523e39a} - C:\Program Files\Siber Systems\AI RoboForm\roboform.dll
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre6\bin\ssv.dll
O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)
O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll
O3 - Toolbar: Show Norton Toolbar - {90222687-F593-4738-B738-FBEE9C7B26DF} - c:\Program Files\Common Files\Symantec Shared\coShared\Browser\1.0\UIBHO.dll
O3 - Toolbar: Acer eDataSecurity Management - {5CBE3B7C-1E47-477e-A7DD-396DB0476E29} - C:\Windows\system32\eDStoolbar.dll
O3 - Toolbar: &RoboForm - {724d43a0-0d85-11d4-9908-00400523e39a} - C:\Program Files\Siber Systems\AI RoboForm\roboform.dll
O4 - HKLM\..\Run: [RtHDVCpl] RtHDVCpl.exe
O4 - HKLM\..\Run: [Acer Empowering Technology Monitor] C:\Acer\Empowering Technology\SysMonitor.exe
O4 - HKLM\..\Run: [eDataSecurity Loader] C:\Acer\Empowering Technology\eDataSecurity\eDSloader.exe
O4 - HKLM\..\Run: [WarReg_PopUp] C:\Acer\WR_PopUp\WarReg_PopUp.exe
O4 - HKLM\..\Run: [Acer Tour Reminder] C:\Acer\AcerTour\Reminder.exe
O4 - HKLM\..\Run: [SpeedTouch USB Diagnostics] "C:\Program Files\Alcatel\SpeedTouch USB\Dragdiag.exe" /icon
O4 - HKLM\..\Run: [diagnostics] "C:\Program Files\Thomson\ST330\diagnostics\diagnostics.exe" /icon -l:fr
O4 - HKLM\..\Run: [IntelliPoint] "C:\Program Files\Microsoft IntelliPoint\ipoint.exe"
O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe"
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre6\bin\jusched.exe"
O4 - HKLM\..\Run: [SpywareTerminator] "C:\Program Files\Spyware Terminator\SpywareTerminatorShield.exe"
O4 - HKLM\..\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
O4 - HKCU\..\Run: [Sidebar] C:\Program Files\Windows Sidebar\sidebar.exe /autoRun
O4 - HKCU\..\Run: [Acer Tour Reminder] C:\Acer\AcerTour\Reminder.exe
O4 - HKCU\..\Run: [ehTray.exe] C:\Windows\ehome\ehTray.exe
O4 - HKCU\..\Run: [msnmsgr] "C:\Program Files\Windows Live\Messenger\msnmsgr.exe" /background
O4 - HKCU\..\Run: [RoboForm] "C:\Program Files\Siber Systems\AI RoboForm\RoboTaskBarIcon.exe"
O4 - HKCU\..\Run: [WMPNSCFG] C:\Program Files\Windows Media Player\WMPNSCFG.exe
O4 - HKCU\..\Run: [SpybotSD TeaTimer] C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-19\..\Run: [WindowsWelcomeCenter] rundll32.exe oobefldr.dll,ShowWelcomeCenter (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'SERVICE RÉSEAU')
O4 - HKUS\S-1-5-18\..\Run: [] (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [] (User 'Default user')
O4 - Global Startup: PCM Media Sharing.lnk = C:\Program Files\Acer Arcade Live\Acer HomeMedia Connect\Kernel\DMS\PCMMediaSharing.exe
O8 - Extra context menu item: Barre RoboForm - file://C:\Program Files\Siber Systems\AI RoboForm\RoboFormComShowToolbar.html
O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office12\EXCEL.EXE/3000
O8 - Extra context menu item: Enregistrer le formulaire - file://C:\Program Files\Siber Systems\AI RoboForm\RoboFormComSavePass.html
O8 - Extra context menu item: Personnaliser le menu - file://C:\Program Files\Siber Systems\AI RoboForm\RoboFormComCustomizeIEMenu.html
O8 - Extra context menu item: Remplir le formulaire - file://C:\Program Files\Siber Systems\AI RoboForm\RoboFormComFillForms.html
O9 - Extra button: Envoyer à OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~2\Office12\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: &Envoyer à OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~2\Office12\ONBttnIE.dll
O9 - Extra button: Remplir - {320AF880-6646-11D3-ABEE-C5DBF3571F46} - file://C:\Program Files\Siber Systems\AI RoboForm\RoboFormComFillForms.html
O9 - Extra 'Tools' menuitem: Remplir le formulaire - {320AF880-6646-11D3-ABEE-C5DBF3571F46} - file://C:\Program Files\Siber Systems\AI RoboForm\RoboFormComFillForms.html
O9 - Extra button: Enregistrer - {320AF880-6646-11D3-ABEE-C5DBF3571F49} - file://C:\Program Files\Siber Systems\AI RoboForm\RoboFormComSavePass.html
O9 - Extra 'Tools' menuitem: Enregistrer le formulaire - {320AF880-6646-11D3-ABEE-C5DBF3571F49} - file://C:\Program Files\Siber Systems\AI RoboForm\RoboFormComSavePass.html
O9 - Extra button: Barre RoboForm - {724d43aa-0d85-11d4-9908-00400523e39a} - file://C:\Program Files\Siber Systems\AI RoboForm\RoboFormComShowToolbar.html
O9 - Extra 'Tools' menuitem: Barre RoboForm - {724d43aa-0d85-11d4-9908-00400523e39a} - file://C:\Program Files\Siber Systems\AI RoboForm\RoboFormComShowToolbar.html
O9 - Extra button: (no name) - {85d1f590-48f4-11d9-9669-0800200c9a66} - C:\Windows\bdoscandel.exe (file missing)
O9 - Extra 'Tools' menuitem: Uninstall BitDefender Online Scanner v8 - {85d1f590-48f4-11d9-9669-0800200c9a66} - C:\Windows\bdoscandel.exe (file missing)
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\Office12\REFIEBAR.DLL
O9 - Extra button: (no name) - cmdmapping - (no file) (HKCU)
O13 - Gopher Prefix:
O23 - Service: Acer HomeMedia Connect Service - CyberLink - C:\Program Files\Acer Arcade Live\Acer HomeMedia Connect\Kernel\DMS\CLMSServer.exe
O23 - Service: ePerformance Service (AcerMemUsageCheckService) - Unknown owner - C:\Acer\Empowering Technology\ePerformance\MemCheck.exe
O23 - Service: Ati External Event Utility - ATI Technologies Inc. - C:\Windows\system32\Ati2evxx.exe
O23 - Service: Symantec Lic NetConnect service (CLTNetCnService) - Symantec Corporation - c:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe
O23 - Service: COM Host (comHost) - Symantec Corporation - c:\Program Files\Common Files\Symantec Shared\VAScanner\comHost.exe
O23 - Service: eDSService.exe (eDataSecurity Service) - HiTRSUT - C:\Acer\Empowering Technology\eDataSecurity\eDSService.exe
O23 - Service: eRecovery Service (eRecoveryService) - Acer Inc. - C:\Acer\Empowering Technology\eRecovery\eRecoveryService.exe
O23 - Service: Validation de mot de passe Symantec IS (ISPwdSvc) - Symantec Corporation - c:\Program Files\Norton Internet Security\isPwdSvc.exe
O23 - Service: LightScribeService Direct Disc Labeling Service (LightScribeService) - Hewlett-Packard Company - C:\Program Files\Common Files\LightScribe\LSSrvc.exe
O23 - Service: LiveUpdate - Symantec Corporation - C:\PROGRA~1\Symantec\LIVEUP~1\LUCOMS~1.EXE
O23 - Service: LiveUpdate Notice Service Ex (LiveUpdate Notice Ex) - Symantec Corporation - c:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe
O23 - Service: LiveUpdate Notice Service - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\PIF\{B8E1DD85-8582-4c61-B58F-2F227FCA9A08}\PIFSvc.exe
O23 - Service: Ma-Config Service (maconfservice) - CybelSoft - C:\Program Files\ma-config.com\maconfservice.exe
O23 - Service: Cyberlink RichVideo Service(CRVS) (RichVideo) - Unknown owner - C:\Program Files\CyberLink\Shared Files\RichVideo.exe
O23 - Service: Spyware Terminator Realtime Shield Service (sp_rssrv) - Crawler.com - C:\Program Files\Spyware Terminator\sp_rsser.exe
O23 - Service: SpeedTouch 330 Manager (st330service) - THOMSON Telecom Belgium - C:\Program Files/Thomson/ST330/service/st330service.exe
O23 - Service: Symantec AppCore Service (SymAppCore) - Symantec Corporation - c:\Program Files\Common Files\Symantec Shared\AppCore\AppSvc32.exe
O23 - Service: @%SystemRoot%\System32\TuneUpDefragService.exe,-1 (TuneUp.Defrag) - TuneUp Software GmbH - C:\Windows\System32\TuneUpDefragService.exe
O23 - Service: Marvell Yukon Service (yksvc) - Unknown owner - RUNDLL32.EXE (file missing)
0
Réponse 16 / 46
sKe69 Messages postés 21360 Date d'inscription samedi 15 mars 2008 Statut Contributeur sécurité Dernière intervention 30 décembre 2012 463
5 déc. 2008 à 14:37
Dis moi .... tu le fais exprès ???


Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 15:39:23, on 05/12/2008
Platform: Windows Vista SP1 (WinNT 6.00.1905)
MSIE: Internet Explorer v7.00 (7.00.6001.18000)
Boot mode: Normal

C'est 4 fois le même rapport que tu me postes .... -_-

UN NOUVEAU RAPPORT .... tu refais un scan hijackthis , un fois le scan terminé , le rapport s'affiche : tu copies/colles le contenu ici .... merci
0
Réponse 17 / 46
cedd974 Messages postés 74 Date d'inscription mardi 29 avril 2008 Statut Membre Dernière intervention 15 septembre 2010 4
5 déc. 2008 à 14:48
Non j'ai refait le scan pourtant et entre temps j'ai téléchargé et scan avec anti-ver gdata.

Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 15:39:23, on 05/12/2008
Platform: Windows Vista SP1 (WinNT 6.00.1905)
MSIE: Internet Explorer v7.00 (7.00.6001.18000)
Boot mode: Normal

Running processes:
C:\Windows\system32\Dwm.exe
C:\Windows\system32\taskeng.exe
C:\Windows\system32\conime.exe
C:\Windows\explorer.exe
C:\Program Files\Acer Arcade Live\Acer HomeMedia Connect\Kernel\DMS\PCMMediaSharing.exe
C:\Windows\system32\wbem\unsecapp.exe
C:\Windows\system32\wuauclt.exe
C:\Windows\System32\mobsync.exe
C:\Windows\system32\NOTEPAD.EXE
C:\Program Files\Trend Micro\HijackThis\HijackThis.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://fr.rd.yahoo.com/customize/ycomp/defaults/sp/*https://fr.yahoo.com/
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://moteur.chat-land.org/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = https://fr.yahoo.com/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R1 - HKCU\Software\Microsoft\Internet Explorer\SearchURL,(Default) = http://fr.rd.yahoo.com/customize/ycomp/defaults/su/*https://fr.yahoo.com/
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page =
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
R3 - URLSearchHook: Yahoo! Toolbar avec bloqueur de fenêtres pop-up - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - (no file)
O1 - Hosts: ::1 localhost
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: (no name) - {1E8A6170-7264-4D0F-BEAE-D42A53123C75} - c:\Program Files\Common Files\Symantec Shared\coShared\Browser\1.0\NppBho.dll
O2 - BHO: (no name) - {53707962-6F74-2D53-2644-206D7942484F} - C:\Program Files\Spybot - Search & Destroy\SDHelper.dll
O2 - BHO: RoboForm - {724d43a9-0d85-11d4-9908-00400523e39a} - C:\Program Files\Siber Systems\AI RoboForm\roboform.dll
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre6\bin\ssv.dll
O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)
O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll
O3 - Toolbar: Show Norton Toolbar - {90222687-F593-4738-B738-FBEE9C7B26DF} - c:\Program Files\Common Files\Symantec Shared\coShared\Browser\1.0\UIBHO.dll
O3 - Toolbar: Acer eDataSecurity Management - {5CBE3B7C-1E47-477e-A7DD-396DB0476E29} - C:\Windows\system32\eDStoolbar.dll
O3 - Toolbar: &RoboForm - {724d43a0-0d85-11d4-9908-00400523e39a} - C:\Program Files\Siber Systems\AI RoboForm\roboform.dll
O4 - HKLM\..\Run: [RtHDVCpl] RtHDVCpl.exe
O4 - HKLM\..\Run: [Acer Empowering Technology Monitor] C:\Acer\Empowering Technology\SysMonitor.exe
O4 - HKLM\..\Run: [eDataSecurity Loader] C:\Acer\Empowering Technology\eDataSecurity\eDSloader.exe
O4 - HKLM\..\Run: [WarReg_PopUp] C:\Acer\WR_PopUp\WarReg_PopUp.exe
O4 - HKLM\..\Run: [Acer Tour Reminder] C:\Acer\AcerTour\Reminder.exe
O4 - HKLM\..\Run: [SpeedTouch USB Diagnostics] "C:\Program Files\Alcatel\SpeedTouch USB\Dragdiag.exe" /icon
O4 - HKLM\..\Run: [diagnostics] "C:\Program Files\Thomson\ST330\diagnostics\diagnostics.exe" /icon -l:fr
O4 - HKLM\..\Run: [IntelliPoint] "C:\Program Files\Microsoft IntelliPoint\ipoint.exe"
O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe"
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre6\bin\jusched.exe"
O4 - HKLM\..\Run: [SpywareTerminator] "C:\Program Files\Spyware Terminator\SpywareTerminatorShield.exe"
O4 - HKLM\..\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
O4 - HKCU\..\Run: [Sidebar] C:\Program Files\Windows Sidebar\sidebar.exe /autoRun
O4 - HKCU\..\Run: [Acer Tour Reminder] C:\Acer\AcerTour\Reminder.exe
O4 - HKCU\..\Run: [ehTray.exe] C:\Windows\ehome\ehTray.exe
O4 - HKCU\..\Run: [msnmsgr] "C:\Program Files\Windows Live\Messenger\msnmsgr.exe" /background
O4 - HKCU\..\Run: [RoboForm] "C:\Program Files\Siber Systems\AI RoboForm\RoboTaskBarIcon.exe"
O4 - HKCU\..\Run: [WMPNSCFG] C:\Program Files\Windows Media Player\WMPNSCFG.exe
O4 - HKCU\..\Run: [SpybotSD TeaTimer] C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-19\..\Run: [WindowsWelcomeCenter] rundll32.exe oobefldr.dll,ShowWelcomeCenter (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'SERVICE RÉSEAU')
O4 - HKUS\S-1-5-18\..\Run: [] (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [] (User 'Default user')
O4 - Global Startup: PCM Media Sharing.lnk = C:\Program Files\Acer Arcade Live\Acer HomeMedia Connect\Kernel\DMS\PCMMediaSharing.exe
O8 - Extra context menu item: Barre RoboForm - file://C:\Program Files\Siber Systems\AI RoboForm\RoboFormComShowToolbar.html
O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office12\EXCEL.EXE/3000
O8 - Extra context menu item: Enregistrer le formulaire - file://C:\Program Files\Siber Systems\AI RoboForm\RoboFormComSavePass.html
O8 - Extra context menu item: Personnaliser le menu - file://C:\Program Files\Siber Systems\AI RoboForm\RoboFormComCustomizeIEMenu.html
O8 - Extra context menu item: Remplir le formulaire - file://C:\Program Files\Siber Systems\AI RoboForm\RoboFormComFillForms.html
O9 - Extra button: Envoyer à OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~2\Office12\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: &Envoyer à OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~2\Office12\ONBttnIE.dll
O9 - Extra button: Remplir - {320AF880-6646-11D3-ABEE-C5DBF3571F46} - file://C:\Program Files\Siber Systems\AI RoboForm\RoboFormComFillForms.html
O9 - Extra 'Tools' menuitem: Remplir le formulaire - {320AF880-6646-11D3-ABEE-C5DBF3571F46} - file://C:\Program Files\Siber Systems\AI RoboForm\RoboFormComFillForms.html
O9 - Extra button: Enregistrer - {320AF880-6646-11D3-ABEE-C5DBF3571F49} - file://C:\Program Files\Siber Systems\AI RoboForm\RoboFormComSavePass.html
O9 - Extra 'Tools' menuitem: Enregistrer le formulaire - {320AF880-6646-11D3-ABEE-C5DBF3571F49} - file://C:\Program Files\Siber Systems\AI RoboForm\RoboFormComSavePass.html
O9 - Extra button: Barre RoboForm - {724d43aa-0d85-11d4-9908-00400523e39a} - file://C:\Program Files\Siber Systems\AI RoboForm\RoboFormComShowToolbar.html
O9 - Extra 'Tools' menuitem: Barre RoboForm - {724d43aa-0d85-11d4-9908-00400523e39a} - file://C:\Program Files\Siber Systems\AI RoboForm\RoboFormComShowToolbar.html
O9 - Extra button: (no name) - {85d1f590-48f4-11d9-9669-0800200c9a66} - C:\Windows\bdoscandel.exe (file missing)
O9 - Extra 'Tools' menuitem: Uninstall BitDefender Online Scanner v8 - {85d1f590-48f4-11d9-9669-0800200c9a66} - C:\Windows\bdoscandel.exe (file missing)
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\Office12\REFIEBAR.DLL
O9 - Extra button: (no name) - cmdmapping - (no file) (HKCU)
O13 - Gopher Prefix:
O23 - Service: Acer HomeMedia Connect Service - CyberLink - C:\Program Files\Acer Arcade Live\Acer HomeMedia Connect\Kernel\DMS\CLMSServer.exe
O23 - Service: ePerformance Service (AcerMemUsageCheckService) - Unknown owner - C:\Acer\Empowering Technology\ePerformance\MemCheck.exe
O23 - Service: Ati External Event Utility - ATI Technologies Inc. - C:\Windows\system32\Ati2evxx.exe
O23 - Service: Symantec Lic NetConnect service (CLTNetCnService) - Symantec Corporation - c:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe
O23 - Service: COM Host (comHost) - Symantec Corporation - c:\Program Files\Common Files\Symantec Shared\VAScanner\comHost.exe
O23 - Service: eDSService.exe (eDataSecurity Service) - HiTRSUT - C:\Acer\Empowering Technology\eDataSecurity\eDSService.exe
O23 - Service: eRecovery Service (eRecoveryService) - Acer Inc. - C:\Acer\Empowering Technology\eRecovery\eRecoveryService.exe
O23 - Service: Validation de mot de passe Symantec IS (ISPwdSvc) - Symantec Corporation - c:\Program Files\Norton Internet Security\isPwdSvc.exe
O23 - Service: LightScribeService Direct Disc Labeling Service (LightScribeService) - Hewlett-Packard Company - C:\Program Files\Common Files\LightScribe\LSSrvc.exe
O23 - Service: LiveUpdate - Symantec Corporation - C:\PROGRA~1\Symantec\LIVEUP~1\LUCOMS~1.EXE
O23 - Service: LiveUpdate Notice Service Ex (LiveUpdate Notice Ex) - Symantec Corporation - c:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe
O23 - Service: LiveUpdate Notice Service - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\PIF\{B8E1DD85-8582-4c61-B58F-2F227FCA9A08}\PIFSvc.exe
O23 - Service: Ma-Config Service (maconfservice) - CybelSoft - C:\Program Files\ma-config.com\maconfservice.exe
O23 - Service: Cyberlink RichVideo Service(CRVS) (RichVideo) - Unknown owner - C:\Program Files\CyberLink\Shared Files\RichVideo.exe
O23 - Service: Spyware Terminator Realtime Shield Service (sp_rssrv) - Crawler.com - C:\Program Files\Spyware Terminator\sp_rsser.exe
O23 - Service: SpeedTouch 330 Manager (st330service) - THOMSON Telecom Belgium - C:\Program Files/Thomson/ST330/service/st330service.exe
O23 - Service: Symantec AppCore Service (SymAppCore) - Symantec Corporation - c:\Program Files\Common Files\Symantec Shared\AppCore\AppSvc32.exe
O23 - Service: @%SystemRoot%\System32\TuneUpDefragService.exe,-1 (TuneUp.Defrag) - TuneUp Software GmbH - C:\Windows\System32\TuneUpDefragService.exe
O23 - Service: Marvell Yukon Service (yksvc) - Unknown owner - RUNDLL32.EXE (file missing)
0
Réponse 18 / 46
cedd974 Messages postés 74 Date d'inscription mardi 29 avril 2008 Statut Membre Dernière intervention 15 septembre 2010 4
5 déc. 2008 à 14:52
Attend je comprend pas a chaque fois il me donne le même rapport !!!
0
Réponse 19 / 46
cedd974 Messages postés 74 Date d'inscription mardi 29 avril 2008 Statut Membre Dernière intervention 15 septembre 2010 4
5 déc. 2008 à 15:33
Bon j'ai désinstallé avast et installé antivir qui ma trouvé sa "TR/Dldr.Bagle.agx"
0
Réponse 20 / 46
sKe69 Messages postés 21360 Date d'inscription samedi 15 mars 2008 Statut Contributeur sécurité Dernière intervention 30 décembre 2012 463
5 déc. 2008 à 16:06
Ecoute, fais ce qui suit dans l'ordre :



1- protocole à suivre pour Windows Vista :

*Désactiver le contrôle des comptes utilisateurs ou UAC (le réactiver seulement à la fin de la désinfection) :

Aller dans "démarrer" puis "panneau de configuration" :
--->Sur la droite de la fenêtre , cliques sur " affichage classique "
--->Double-Cliquer sur l'icône "Comptes d'utilisateurs"
--->Cliquer ensuite sur "Activer ou désactiver le contrôle ..." .
--->Décocher la case "utlisiser le contrôle ..." et cliquer sur OK .
Puis redémarrer le PC quand il le vous saura demandé ...

Tuto : https://forum.malekal.com/viewtopic.php?f=59&t=6517


* Important :
Pour installer ou pour lancer les outils, que tu utiliseras au court de la désinfection, fais toujours ainsi :
clique DROIT ( sur le setup d'installe ou l'outil ) -> choisis " Exécuter entant qu'administrateur " .
Fais ce-ci systématiquement ! ...


une fois ceci fait et pris en compte , commence par ce qui suit :



2- Télécharge OTMoveIt3 (de Old_Timer) sur ton Bureau.

http://oldtimer.geekstogo.com/OTMoveIt3.exe

! Déconnecte toi et ferme toutes tes applications en cours !

Double clique sur "OTMoveIt3.exe" pour ouvrir le prg .
Puis copie ce qui se trouve en citation ci-dessous, 


:Processes
explorer.exe

:Services

:Reg

:Files
C:\Users\cedd\Desktop\projetCédric\Avast AntiVirus PRO Edition 4.8.1169\Keygen.exe
C:\Users\cedd\Desktop\projetCédric\Crack
C:\Users\cedd\Downloads\eMule\Incoming\Atomix Virtual DJ 3.2 + crack + 38 skins + 109 effects + 123 samples

:Commands
[start explorer]



et colle le dans le cadre de gauche de OTMoveIt3 :
Paste Instructions for items to be moved.
(ne touche à rien d'autre !)

-> clique sur MoveIt! pour lancer la suppression.
-> laisse travailler l'outil ...

( Note : ton bureau va disparaitre puis réapparaitre, c'est normal .)

-> une fois finis , un petite fenêtre s'ouvre : clique sur " Yes " .

Ton PC va redémarrer de lui même ...

-->Poste le contenu du rapport qui se trouve dans le dossier "C:\_OTMoveIt\MovedFiles"
( " xxxx2008_xxxxxx.log " où les "x" correspondent au jour et à l'heure de l'utilisation ).



3- Télécharge Random's System Information Tool (RSIT) de random/random et enregistre l'exécutable sur ton Bureau.

-> http://images.malwareremoval.com/random/RSIT.exe

! Ferme bien toutes tes applications en cours !

Double-clique sur " RSIT.exe " pour le lancer .

-> Une première fenêtre s'ouvre avec en titre : " Disclaimer of warranty " .

* Devant l'option "List files/folders created ..." , tu choisis : 2 months

* clique ensuite sur " Continue " pour lancer l'analyse ...


( Note : Si la dernière version de HijackThis n'est pas détectée sur ton PC, RSIT le téléchargera et te demandera d'accepter la licence.)


-> laisse faire le scan et ne touche pas au PC ...


Lorsque l'analyse sera terminée, deux fichiers texte s'ouvriront (probablement avec le bloc-note).

Poste le contenu de " log.txt " (c'est celui qui apparait à l'écran), ainsi que de " info.txt " (que tu verras dans la barre des tâches), pour analyse et attends la suite ...

Important : poste un rapport, puis l'autre dans la réponse suivante ... si tu essaies de poster les deux en même temps,
cela risque d'être trop long pour le forum ...
Et si "log.txt" seul, ne passe pas non plus , fais le en 2 fois ... merci ...

( Note : les rapports seront en outre sauvegardés dans ce dossier -> C:\rsit )

0

Discussions similaires

Atlas pro
Ouzo -
bazfile -

1 réponse
Code CAPTCHA toujours incorrect
Utilisateur anonyme -
sebso37 -

8 réponses
Problème invalide captcha
idirhicham -
pistouri -

7 réponses
comment trouver l'url de IPTV ?
Metler -
Papounet17000 -

1 réponse
nom utilisateur invalide
tournesol13 -
tournesol13 -

3 réponses