Aller au contenu

pippou

Membres
  • Compteur de contenus

    5
  • Inscription

  • Dernière visite

pippou's Achievements

Junior Member

Junior Member (3/12)

0

Réputation sur la communauté

  1. pippou

    Taille fichier zip

    Bonjour à tout le monde, Une, euhh que dis-je, deux question me taraudent : 1° : Après avoir zippé un dossier, je me rends compte que la taille qui s'affiche en dessous de l'icône zip n'est pas la même que lorsque je fais propriétés sur cette icone. C'est une toute petite différence mais je me pose la question. 2° : Pourquoi lorsque l'on supprime un fichier et que l'on vide la corbeille, on peut quand même récupérer ce fichier? En fait, ce qui me semble étrange, c'est que l'espace disque augemente lorsque l'on vide la corbeille et qu'on puisse quand même récupérer le fichier. Merci pour votre aide
  2. Bonjour, Mon pc est de plus en plus lent. Je suis infecté par le cheval de troie Bifrost. J'ai aussi fait différerentes analyses et je vous poste les rapports. Pourriez vous me dire comment éradiquer ces infections? 1. Le rapport SD FIX SDFix: Version 1.183 Run by crack on 19/05/2008 at 20:47 Microsoft Windows XP [version 5.1.2600] Running From: C:\SDFix Checking Services : Restoring Windows Registry Values Restoring Windows Default Hosts File Rebooting Checking Files : No Trojan Files Found Removing Temp Files ADS Check : Final Check : catchme 0.3.1359.2 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net Rootkit scan 2008-05-19 21:06:36 Windows 5.1.2600 Service Pack 2 NTFS scanning hidden processes ... scanning hidden services & system hive ... [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\a347scsi\Config\jdgg40] "ujdew"=hex:20,02,00,00,10,00,e1,69,95,99,bb,0f,f8,78,8f,89,79,1b,8e,a1,68,.. "ljej40"=hex:e9,5b,74,f5,47,24,99,fd,7f,47,99,d5,fc,ec,da,c5,34,e3,f1,78,a9,.. scanning hidden registry entries ... [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{E9F81423-211E-46B6-9AE0-38568BC5CF6F}] "DisplayName"="Alcohol 120%" scanning hidden files ... scan completed successfully hidden processes: 0 hidden services: 0 hidden files: 0 Remaining Services : Authorized Application Key Export: [HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list] "%windir%\\system32\\sessmgr.exe"="%windir%\\system32\\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019" "C:\\Program Files\\Adobe\\Photoshop Elements 4.0\\AdobePhotoshopElementsMediaServer.exe"="C:\\Program Files\\Adobe\\Photoshop Elements 4.0\\AdobePhotoshopElementsMediaServer.exe:*:Disabled:Adobe Photoshop Elements Media Server" "C:\\Program Files\\Fichiers communs\\AOL\\ACS\\AOLacsd.exe"="C:\\Program Files\\Fichiers communs\\AOL\\ACS\\AOLacsd.exe:*:Enabled:AOL" "C:\\Program Files\\Fichiers communs\\AOL\\ACS\\AOLDial.exe"="C:\\Program Files\\Fichiers communs\\AOL\\ACS\\AOLDial.exe:*:Enabled:AOL" "C:\\Program Files\\MSN Messenger\\msnmsgr.exe"="C:\\Program Files\\MSN Messenger\\msnmsgr.exe:*:Enabled:Windows Live Messenger 8.1" "C:\\Program Files\\MSN Messenger\\livecall.exe"="C:\\Program Files\\MSN Messenger\\livecall.exe:*:Enabled:Windows Live Messenger 8.1 (Phone)" "C:\\Program Files\\Fichiers communs\\AOL\\Loader\\aolload.exe"="C:\\Program Files\\Fichiers communs\\AOL\\Loader\\aolload.exe:*:Enabled:AOL Loader" "C:\\Program Files\\FlashGet\\flashget.exe"="C:\\Program Files\\FlashGet\\flashget.exe:*:Enabled:Flashget" "C:\\Program Files\\Skype\\Phone\\Skype.exe"="C:\\Program Files\\Skype\\Phone\\Skype.exe:*:Enabled:Skype" "C:\\Program Files\\VoipDiscount.com\\VoipDiscount\\VoipDiscount.exe"="C:\\Program Files\\VoipDiscount.com\\VoipDiscount\\VoipDiscount.exe:*:Enabled:VoipDiscount" "C:\\Program Files\\SopCast\\SopCast.exe"="C:\\Program Files\\SopCast\\SopCast.exe:*:Enabled:SopCast Main Application" "C:\\Program Files\\LimeWire\\LimeWire.exe"="C:\\Program Files\\LimeWire\\LimeWire.exe:*:Enabled:LimeWire 4.14.8" "C:\\Program Files\\Fichiers communs\\AOL\\1175719182\\ee\\aolsoftware.exe"="C:\\Program Files\\Fichiers communs\\AOL\\1175719182\\ee\\aolsoftware.exe:*:Enabled:AOL Shared Components" "C:\\Program Files\\iTunes\\iTunes.exe"="C:\\Program Files\\iTunes\\iTunes.exe:*:Enabled:iTunes" "C:\\WINDOWS\\Installer\\{B045B608-4A47-4C77-9EAD-06C394503306}\\iTunesIco.exe"="C:\\WINDOWS\\Installer\\{B045B608-4A47-4C77-9EAD-06C394503306}\\iTunesIco.exe:*:Enabled:iTunesIco" "C:\\Program Files\\Azureus\\Azureus.exe"="C:\\Program Files\\Azureus\\Azureus.exe:*:Enabled:Azureus" "C:\\Program Files\\AOL 9.0\\waol.exe"="C:\\Program Files\\AOL 9.0\\waol.exe:*:Enabled:AOL" "C:\\Program Files\\AOL 9.0 VR\\waol.exe"="C:\\Program Files\\AOL 9.0 VR\\waol.exe:*:Enabled:AOL" "C:\\Program Files\\Fichiers communs\\AOL\\TopSpeed\\3.0\\aoltpsd3.exe"="C:\\Program Files\\Fichiers communs\\AOL\\TopSpeed\\3.0\\aoltpsd3.exe:*:Enabled:AOL TopSpeed" "C:\\Program Files\\Fichiers communs\\AOL\\System Information\\sinf.exe"="C:\\Program Files\\Fichiers communs\\AOL\\System Information\\sinf.exe:*:Enabled:AOL System Information" "C:\\Program Files\\Messenger\\msmsgs.exe"="C:\\Program Files\\Messenger\\msmsgs.exe:*:Enabled:Windows Messenger" "C:\\Documents and Settings\\crack\\Application Data\\U3\\000018809A61904A\\0DE4F643-C398-46ec-9339-2362F2311932\\Exec\\Skype.exe"="C:\\Documents and Settings\\crack\\Application Data\\U3\\000018809A61904A\\0DE4F643-C398-46ec-9339-2362F2311932\\Exec\\Skype.exe:*:Enabled:Skype" "C:\\Documents and Settings\\crack\\Bureau\\Phone\\Skype.exe"="C:\\Documents and Settings\\crack\\Bureau\\Phone\\Skype.exe:*:Enabled:Skype" "C:\\Program Files\\Pando Networks\\Pando\\pando.exe"="C:\\Program Files\\Pando Networks\\Pando\\pando.exe:*:Enabled:Pando Application" "C:\\Program Files\\eMule\\emule.exe"="C:\\Program Files\\eMule\\emule.exe:*:Enabled:eMule" "C:\\Program Files\\MessengerDiscovery\\MessengerDiscovery Live.exe"="C:\\Program Files\\MessengerDiscovery\\MessengerDiscovery Live.exe:*:Enabled:MessengerDiscovery Live the Windows Live Messenger addon" "C:\\Program Files\\eMuleSword\\emule.exe"="C:\\Program Files\\eMuleSword\\emule.exe:*:Enabled:eMule" "C:\\Program Files\\Microsoft Office\\Office12\\OUTLOOK.EXE"="C:\\Program Files\\Microsoft Office\\Office12\\OUTLOOK.EXE:*:Enabled:Microsoft Office Outlook" "C:\\Program Files\\F-Secure Internet Security\\backweb\\4476822\\Program\\fspex.exe"="C:\\Program Files\\F-Secure Internet Security\\backweb\\4476822\\Program\\fspex.exe:*:Enabled:F-Secure 2006" [HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list] "%windir%\\system32\\sessmgr.exe"="%windir%\\system32\\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019" "C:\\Program Files\\Fichiers communs\\AOL\\ACS\\AOLacsd.exe"="C:\\Program Files\\Fichiers communs\\AOL\\ACS\\AOLacsd.exe:*:Enabled:AOL" "C:\\Program Files\\Fichiers communs\\AOL\\ACS\\AOLDial.exe"="C:\\Program Files\\Fichiers communs\\AOL\\ACS\\AOLDial.exe:*:Enabled:AOL" "C:\\Program Files\\MSN Messenger\\msnmsgr.exe"="C:\\Program Files\\MSN Messenger\\msnmsgr.exe:*:Enabled:Windows Live Messenger 8.1" "C:\\Program Files\\MSN Messenger\\livecall.exe"="C:\\Program Files\\MSN Messenger\\livecall.exe:*:Enabled:Windows Live Messenger 8.1 (Phone)" "C:\\Program Files\\AOL 9.0\\waol.exe"="C:\\Program Files\\AOL 9.0\\waol.exe:*:Enabled:AOL" "C:\\Program Files\\F-Secure Internet Security\\backweb\\4476822\\Program\\fspex.exe"="C:\\Program Files\\F-Secure Internet Security\\backweb\\4476822\\Program\\fspex.exe:*:Enabled:F-Secure 2006" Remaining Files : File Backups: - C:\SDFix\backups\backups.zip Files with Hidden Attributes : Fri 29 Apr 2005 54,384 A..H. --- "C:\Program Files\AOL 9.0\aolphx.exe" Fri 29 Apr 2005 156,784 A..H. --- "C:\Program Files\AOL 9.0\aoltray.exe" Fri 29 Apr 2005 31,344 A..H. --- "C:\Program Files\AOL 9.0\RBM.exe" Thu 21 Jun 2007 46,384 A..H. --- "C:\Program Files\AOL 9.0 VR\AOLphx.exe" Thu 24 May 2007 54,832 A..H. --- "C:\Program Files\AOL 9.0 VR\AOLphxex.exe" Thu 24 May 2007 33,328 A..H. --- "C:\Program Files\AOL 9.0 VR\rbm.exe" Sun 27 Apr 2008 262,144 A.SH. --- "C:\Program Files\MessengerDiscovery\SpellCHK.exe" Thu 26 Jan 2006 4,126,240 A..H. --- "C:\Program Files\Picasa2\setup.exe" Mon 26 Jan 2004 25,088 A..H. --- "C:\AOL ADSL SpeedTouch\USB\ThomsonFS\start.exe" Mon 8 Dec 2003 36,256 A..H. --- "C:\AOL ADSL SpeedTouch\USB\ThomsonFS\Driver\alca98ln.sys" Mon 8 Dec 2003 3,984 A..H. --- "C:\AOL ADSL SpeedTouch\USB\ThomsonFS\Driver\alcacr95.sys" Mon 8 Dec 2003 3,968 A..H. --- "C:\AOL ADSL SpeedTouch\USB\ThomsonFS\Driver\alcacrnt.sys" Mon 8 Dec 2003 36,256 A..H. --- "C:\AOL ADSL SpeedTouch\USB\ThomsonFS\Driver\alcan5ln.sys" Mon 8 Dec 2003 53,600 A..H. --- "C:\AOL ADSL SpeedTouch\USB\ThomsonFS\Driver\alcan5wn.sys" Mon 8 Dec 2003 70,688 A..H. --- "C:\AOL ADSL SpeedTouch\USB\ThomsonFS\Driver\alcaudsl.sys" Mon 8 Dec 2003 5,952 A..H. --- "C:\AOL ADSL SpeedTouch\USB\ThomsonFS\Driver\alcawh95.sys" Mon 8 Dec 2003 5,280 A..H. --- "C:\AOL ADSL SpeedTouch\USB\ThomsonFS\Driver\alcawhnt.sys" Mon 8 Dec 2003 5,606 A..H. --- "C:\AOL ADSL SpeedTouch\USB\ThomsonFS\Driver\stci.dll" Mon 26 Jan 2004 866,816 A..H. --- "C:\AOL ADSL SpeedTouch\USB\ThomsonFS\Programs\dragdiag.exe" Mon 26 Jan 2004 1,651,200 A..H. --- "C:\AOL ADSL SpeedTouch\USB\ThomsonFS\Programs\stdialup.exe" Mon 26 Jan 2004 38,483 A..H. --- "C:\AOL ADSL SpeedTouch\USB\ThomsonFS\Tools\dm.exe" Mon 26 Jan 2004 29,696 A..H. --- "C:\AOL ADSL SpeedTouch\USB\ThomsonFS\Tools\regutil.exe" Mon 26 Jan 2004 33,287 A..H. --- "C:\AOL ADSL SpeedTouch\USB\ThomsonFS\Tools\scan.exe" Wed 7 May 2008 0 A..H. --- "C:\WINDOWS\SoftwareDistribution\Download\71fa8e4b1f1c72b0e3a5d30a0a049f55\BIT3.tmp" Wed 4 Oct 2006 3,072,000 A..H. --- "C:\Documents and Settings\crack\Application Data\U3\temp\Launchpad Removal.exe" Mon 7 May 2007 5,281,280 A..H. --- "C:\Documents and Settings\Rohff\Mes documents\Docs\Divers2\~WRL0004.tmp" Fri 30 Mar 2007 377,344 A..H. --- "C:\Documents and Settings\Rohff\Mes documents\Docs\Divers2\~WRL0999.tmp" Thu 29 Mar 2007 4,390,400 A..H. --- "C:\Documents and Settings\Rohff\Mes documents\Docs\Divers2\~WRL2121.tmp" Thu 12 Apr 2007 483,840 A..H. --- "C:\Documents and Settings\Rohff\Mes documents\Docs\Sun'Elec\~WRL3320.tmp" Tue 30 Oct 2007 96,072 A..H. --- "C:\Program Files\Fichiers communs\AOL\TopSpeed\3.0\WBUnins.exe" Finished! 2. Le rapport ComboFix ComboFix 08-05-15.3 - crack 2008-05-19 21:16:46.1 - NTFSx86 Microsoft Windows XP Professionnel 5.1.2600.2.1252.1.1036.18.527 [GMT 2:00] Endroit: C:\Documents and Settings\crack\Bureau\ComboFix.exe * Création d'un nouveau point de restauration AVERTISSEMENT - LA CONSOLE DE RÉCUPÉRATION N'EST PAS INSTALLÉE SUR CETTE MACHINE !! . (((((((((((((((((((((((((((((((((((( Autres suppressions )))))))))))))))))))))))))))))))))))))))))))))))) . C:\WINDOWS\Downloaded Program Files\setup.inf C:\WINDOWS\pskt.ini C:\WINDOWS\system32\agrivyxj.exe C:\WINDOWS\system32\ajwdmmvt.ini C:\WINDOWS\system32\ajwvbhru.ini C:\WINDOWS\system32\ekkdqldl.ini C:\WINDOWS\system32\etucdtii.ini C:\WINDOWS\system32\hbbjraan.ini C:\WINDOWS\system32\kotduujt.ini C:\WINDOWS\system32\ligsxisd.exe C:\WINDOWS\system32\mktsiwqw.exe C:\WINDOWS\system32\nwaegehs.ini C:\WINDOWS\system32\obokrpkj.ini C:\WINDOWS\system32\pnvcxroc.exe C:\WINDOWS\system32\rhavhhvw.exe C:\WINDOWS\system32\xIiOYJjl.ini C:\WINDOWS\system32\xIiOYJjl.ini2 . ((((((((((((((((((((((((((((( Fichiers cr‚‚s 2008-04-19 to 2008-05-19 )))))))))))))))))))))))))))))))))))) . 2008-05-19 20:35 . 2008-05-19 20:36 <REP> d-------- C:\WINDOWS\ERUNT 2008-05-19 20:29 . 2008-05-19 21:10 <REP> d-------- C:\SDFix 2008-05-18 22:35 . 2008-05-18 22:35 8,192 --ahs---- C:\WINDOWS\Thumbs.db 2008-05-18 21:05 . 2008-05-18 21:05 117,248 --a------ C:\WINDOWS\system32\tjuudtok.dll 2008-05-18 20:59 . 2008-05-18 20:59 124,928 --a------ C:\WINDOWS\system32\urfmyefa.dll 2008-05-18 20:55 . 2008-05-18 20:59 <REP> d-------- C:\Documents and Settings\crack\Application Data\F-Secure 2008-05-18 20:53 . 2008-05-18 20:53 <REP> d-------- C:\Documents and Settings\crack\Application Data\ispnews 2008-05-18 20:31 . 2005-11-18 17:04 70,896 --a------ C:\WINDOWS\system32\drivers\fsdfw.sys 2008-05-18 20:31 . 2005-11-18 17:04 33,584 --a------ C:\WINDOWS\system32\drivers\fsndis5.sys 2008-05-18 20:30 . 2008-05-18 20:30 <REP> d-------- C:\Documents and Settings\All Users\Application Data\F-Secure 2008-05-18 20:27 . 2008-05-18 20:30 <REP> d-------- C:\Program Files\F-Secure Internet Security 2008-05-18 20:27 . 2008-05-18 20:27 118,842 -r------- C:\WINDOWS\bwUnin-6.3.2.123-4476822L.exe 2008-05-18 19:54 . 2008-05-18 19:54 133,120 --a------ C:\WINDOWS\system32\folqulvd.dll 2008-05-18 19:43 . 2008-05-18 19:43 124,928 --a------ C:\WINDOWS\system32\pescgqfq.dll 2008-05-18 18:24 . 2008-05-18 18:24 <REP> d-------- C:\Program Files\Lavasoft 2008-05-18 18:24 . 2008-05-18 18:24 <REP> d-------- C:\Documents and Settings\All Users\Application Data\Lavasoft 2008-05-18 18:16 . 2008-05-18 18:16 133,120 --a------ C:\WINDOWS\system32\decjhaeh.dll 2008-05-18 18:07 . 2008-05-18 18:08 124,928 --a------ C:\WINDOWS\system32\vkuvedac.dll 2008-05-18 18:06 . 2008-05-18 18:06 57,344 --a------ C:\WINDOWS\system32\jkkJbawv.dll 2008-05-18 17:42 . 2008-05-18 17:42 133,120 --a------ C:\WINDOWS\system32\xisoeqni.dll 2008-05-18 17:30 . 2008-05-18 17:30 124,928 --a------ C:\WINDOWS\system32\trmxsfgb.dll 2008-05-18 16:30 . 2008-05-18 16:30 57,344 --a------ C:\WINDOWS\system32\vtUlKCur.dll 2008-05-18 16:09 . 2008-05-18 16:09 133,120 --a------ C:\WINDOWS\system32\bexeylvj.dll 2008-05-18 16:06 . 2008-05-18 16:06 124,928 --a------ C:\WINDOWS\system32\irluydyk.dll 2008-05-18 16:06 . 2008-05-18 16:06 57,344 --a------ C:\WINDOWS\system32\byXqQKdA.dll 2008-05-18 15:45 . 2008-05-18 15:45 57,344 --a------ C:\WINDOWS\system32\efcYRJDU.dll 2008-05-18 15:22 . 2008-05-18 15:22 133,120 --a------ C:\WINDOWS\system32\xvqowqfj.dll 2008-05-18 15:13 . 2008-05-18 15:13 124,928 --a------ C:\WINDOWS\system32\uekmxdas.dll 2008-05-18 15:13 . 2008-05-19 20:07 109,827 --a------ C:\WINDOWS\BM5796bdc3.xml 2008-05-18 14:50 . 2008-05-18 14:50 57,344 --a------ C:\WINDOWS\system32\yayvTlJB.dll 2008-05-17 19:36 . 2008-05-17 19:36 57,344 --a------ C:\WINDOWS\system32\jkkHXNhg.dll 2008-05-17 16:18 . 2008-05-17 16:18 57,344 --a------ C:\WINDOWS\system32\iifETliH.dll 2008-05-17 15:47 . 2008-05-17 15:47 54,156 --ah----- C:\WINDOWS\QTFont.qfn 2008-05-17 15:47 . 2008-05-17 15:47 1,409 --a------ C:\WINDOWS\QTFont.for 2008-05-17 15:05 . 2008-05-17 15:05 57,344 --a------ C:\WINDOWS\system32\geBsQjGV.dll 2008-05-17 13:03 . 2008-05-17 13:03 57,344 --a------ C:\WINDOWS\system32\qoMeFvTk.dll 2008-05-17 12:58 . 2008-05-17 12:58 371,712 --a------ C:\WINDOWS\system32\ljJYOiIx.dll 2008-05-17 12:56 . 2008-05-17 12:56 57,344 --a------ C:\WINDOWS\system32\rqRHxuvV.dll 2008-05-17 12:53 . 2008-05-17 12:53 57,344 --a------ C:\WINDOWS\system32\fccdeDss.dll 2008-05-14 21:39 . 2008-05-14 21:39 <REP> d-------- C:\Documents and Settings\Luigi\Bluetooth Software 2008-05-14 16:16 . 2008-05-14 16:16 <REP> d-------- C:\Program Files\MSBuild 2008-05-14 16:15 . 2008-05-14 16:15 <REP> d-------- C:\Program Files\Microsoft.NET 2008-05-14 16:11 . 2008-05-15 17:02 <REP> d-------- C:\Documents and Settings\All Users\Application Data\Microsoft Help 2008-05-14 16:06 . 2008-05-14 16:06 <REP> d-------- C:\Program Files\Alcohol Soft 2008-05-14 16:06 . 2004-04-30 09:37 160,640 --a------ C:\WINDOWS\system32\drivers\a347bus.sys 2008-05-14 16:06 . 2004-04-30 09:33 5,248 --a------ C:\WINDOWS\system32\drivers\a347scsi.sys 2008-05-14 14:08 . 2008-05-14 14:08 <REP> d-------- C:\ViViOutput 2008-05-14 14:08 . 2008-05-14 14:08 <REP> d-------- C:\Program Files\ViVi 3GP PSP iPod MP4 Video Converter 2.1 2008-05-13 20:29 . 2008-05-13 20:29 <REP> d-------- C:\Program Files\Windows Live 2008-05-13 20:29 . 2008-05-17 23:46 <REP> d-------- C:\Program Files\MessengerDiscovery 2008-05-06 20:40 . 2008-05-18 20:55 <REP> d-a------ C:\Documents and Settings\All Users\Application Data\TEMP 2008-05-06 20:40 . 2008-05-06 20:40 37,888 --a------ C:\WINDOWS\system32\rar.exe 2008-05-06 20:30 . 2008-05-14 18:56 10 --a------ C:\WINDOWS\popcinfo.dat 2008-05-06 20:09 . 2008-05-06 20:10 <REP> d-------- C:\Program Files\Zuma Deluxe 2008-05-06 19:55 . 2008-05-06 19:55 <REP> d--h----- C:\WINDOWS\PIF 2008-05-06 19:54 . 2008-05-06 19:55 <REP> d--h----- C:\Program Files\Zero G Registry 2008-05-06 19:54 . 2008-05-06 19:57 <REP> d-------- C:\Program Files\MagicDraw UML 2008-05-06 19:54 . 2008-05-06 19:54 <REP> d--h----- C:\Documents and Settings\crack\InstallAnywhere 2008-05-06 12:21 . 2008-05-06 12:21 <REP> d-------- C:\Program Files\Samsung 2008-04-26 13:08 . 2008-04-26 13:08 <REP> d-------- C:\Documents and Settings\Luigi\Application Data\PC Suite 2008-04-24 22:39 . 2008-04-24 22:39 <REP> d-------- C:\Program Files\Notepad++ 2008-04-24 22:39 . 2008-04-24 22:39 <REP> d-------- C:\Documents and Settings\crack\Application Data\Notepad++ 2008-04-23 21:15 . 2008-04-23 21:30 <REP> d-------- C:\Documents and Settings\crack\Application Data\Dev-Cpp 2008-04-23 21:14 . 2008-04-23 21:15 <REP> d-------- C:\Dev-Cpp 2008-04-23 21:00 . 2008-04-23 21:00 <REP> d-------- C:\Program Files\CodeBlocks 2008-04-23 21:00 . 2008-04-23 21:03 <REP> d-------- C:\Documents and Settings\crack\Application Data\codeblocks . (((((((((((((((((((((((((((((((((( Compte-rendu de Find3M )))))))))))))))))))))))))))))))))))))))))))))))) . 2008-05-18 20:38 --------- d-----w C:\Program Files\eMule 2008-05-18 20:24 --------- d-----w C:\Program Files\Rapidshare Unlimited 2008-05-18 16:24 --------- d-----w C:\Program Files\Fichiers communs\Wise Installation Wizard 2008-05-14 14:17 --------- d-----w C:\Program Files\Microsoft Works 2008-05-14 12:11 --------- d-----w C:\Program Files\ViVi MP4 Converter 2.1 2008-05-14 11:58 --------- d-----w C:\Program Files\Canon 2008-05-14 11:57 --------- d--h--w C:\Program Files\InstallShield Installation Information 2008-05-14 11:56 --------- d-----w C:\Program Files\Cain 2008-05-14 11:56 --------- d-----w C:\Program Files\Azureus 2008-05-14 11:55 --------- d-----w C:\Program Files\Fichiers communs\AVSMedia 2008-05-14 11:55 --------- d-----w C:\Program Files\AVS4YOU 2008-05-13 21:03 --------- d-----w C:\Program Files\eMuleSword 2008-05-13 18:29 --------- d-----w C:\Program Files\MSN Messenger 2008-05-06 10:28 --------- d-----w C:\Documents and Settings\crack\Application Data\Samsung 2008-05-05 20:00 --------- d-----w C:\Program Files\WinAVI MP4 Converter 2008-04-22 18:23 --------- d-----w C:\Program Files\Fichiers communs\Real 2008-04-17 17:17 --------- d-----w C:\Documents and Settings\crack\Application Data\LimeWire 2008-04-15 17:04 --------- d-----w C:\Documents and Settings\crack\Application Data\Azureus 2008-04-13 21:19 --------- d-----w C:\Program Files\microsoft frontpage 2008-04-13 21:19 --------- d-----w C:\Documents and Settings\crack\Application Data\Microsoft Web Folders 2008-04-07 19:14 --------- d-----w C:\Program Files\Free iPod Video Converter 2008-04-06 19:20 --------- d-----w C:\Program Files\TubeMaster 2008-04-06 16:48 --------- d-----w C:\Program Files\Pando Networks 2008-04-06 13:16 --------- d-----w C:\Program Files\AOL 9.0 VR 2008-04-06 13:14 --------- d-----w C:\Program Files\Fichiers communs\aolshare 2008-03-29 20:30 --------- d-----w C:\Documents and Settings\crack\Application Data\Skype 2008-03-25 04:51 621,344 ----a-w C:\WINDOWS\system32\mswstr10.dll 2008-03-25 04:51 194,144 ----a-w C:\WINDOWS\system32\msjint40.dll 2008-03-24 12:17 --------- d-----w C:\Documents and Settings\All Users\Application Data\Skype 2008-03-20 08:09 1,845,376 ----a-w C:\WINDOWS\system32\win32k.sys 2008-03-19 22:51 --------- d-----w C:\Documents and Settings\crack\Application Data\DivX 2008-02-21 02:05 524,288 ----a-w C:\WINDOWS\system32\DivXsm.exe 2008-02-21 02:05 3,596,288 ----a-w C:\WINDOWS\system32\qt-dx331.dll 2008-02-21 02:05 200,704 ----a-w C:\WINDOWS\system32\ssldivx.dll 2008-02-21 02:05 129,784 ------w C:\WINDOWS\system32\pxafs.dll 2008-02-21 02:05 120,056 ------w C:\WINDOWS\system32\pxcpyi64.exe 2008-02-21 02:05 118,520 ------w C:\WINDOWS\system32\pxinsi64.exe 2008-02-21 02:05 1,044,480 ----a-w C:\WINDOWS\system32\libdivx.dll 2008-02-21 02:04 823,296 ----a-w C:\WINDOWS\system32\divx_xx0c.dll 2008-02-21 02:04 823,296 ----a-w C:\WINDOWS\system32\divx_xx07.dll 2008-02-21 02:04 81,920 ----a-w C:\WINDOWS\system32\dpl100.dll 2008-02-21 02:04 802,816 ----a-w C:\WINDOWS\system32\divx_xx11.dll 2008-02-21 02:04 682,496 ----a-w C:\WINDOWS\system32\DivX.dll 2008-02-21 02:04 593,920 ----a-w C:\WINDOWS\system32\dpuGUI11.dll 2008-02-21 02:04 57,344 ----a-w C:\WINDOWS\system32\dpv11.dll 2008-02-21 02:04 53,248 ----a-w C:\WINDOWS\system32\dpuGUI10.dll 2008-02-21 02:04 344,064 ----a-w C:\WINDOWS\system32\dpus11.dll 2008-02-21 02:04 294,912 ----a-w C:\WINDOWS\system32\dpu11.dll 2008-02-21 02:04 294,912 ----a-w C:\WINDOWS\system32\dpu10.dll 2008-02-21 02:04 196,608 ----a-w C:\WINDOWS\system32\dtu100.dll 2008-02-21 02:03 156,992 ----a-w C:\WINDOWS\system32\DivXCodecVersionChecker.exe 2008-02-21 02:03 12,288 ----a-w C:\WINDOWS\system32\DivXWMPExtType.dll 2008-02-20 06:51 282,624 ----a-w C:\WINDOWS\system32\gdi32.dll 2008-02-20 05:35 45,568 ----a-w C:\WINDOWS\system32\dnsrslvr.dll 2007-10-31 11:06 1,092 ----a-w C:\Documents and Settings\crack\Application Data\filterclsid.dat . ((((((((((((((((((((((((((((((((( Point de chargement Reg ))))))))))))))))))))))))))))))))))))))))))))))))) . . REGEDIT4 *Note* les ‚l‚ments vides & les ‚l‚ments initiaux l‚gitimes ne sont pas list‚s [HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{69832f8a-7c20-4cf7-b0e1-d8a01a72a40b}] 2008-05-18 19:54 133120 --a------ C:\WINDOWS\system32\folqulvd.dll [HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{AAE49F55-22BB-4F21-A40E-C827092374DA}] 2008-05-17 12:58 371712 --a------ C:\WINDOWS\system32\ljJYOiIx.dll [HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{BD962BAB-F429-460F-805B-B137087AB623}] 2008-05-17 12:53 57344 --a------ C:\WINDOWS\system32\fccdeDss.dll [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "updateMgr"="C:\Program Files\Adobe\Acrobat 7.0\Reader\AdobeUpdateManager.exe" [2006-03-30 16:45 313472] "CTFMON.EXE"="C:\WINDOWS\system32\ctfmon.exe" [2004-08-10 14:00 15360] "msnmsgr"="C:\Program Files\MSN Messenger\msnmsgr.exe" [2007-01-19 12:55 5674352] "AOL Fast Start"="C:\Program Files\AOL 9.0 VR\AOL.exe" [2007-06-21 13:44 50480] "Pando"="C:\Program Files\Pando Networks\Pando\Pando.exe" [2008-04-02 15:22 6112584] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "VAIOCameraUtility"="C:\Program Files\Sony\VAIO Camera Utility\VCUServe.exe" [2005-12-27 13:58 69632] "VAIO Update 2"="C:\Program Files\Sony\VAIO Update 2\VAIOUpdt.exe" [2005-10-11 21:36 151552] "URLLSTCK.exe"="C:\Program Files\Norton Internet Security\UrlLstCk.exe" [ ] "Switcher.exe"="C:\Program Files\Sony\Wireless Switch Setting Utility\Switcher.exe" [2006-02-14 12:11 176128] "SSBkgdUpdate"="C:\Program Files\Fichiers communs\Scansoft Shared\SSBkgdUpdate\SSBkgdupdate.exe" [2003-10-14 11:22 155648] "SpeedTouch USB Diagnostics"="C:\Program Files\Thomson\SpeedTouch USB\Dragdiag.exe" [2004-04-07 09:02 877568] "SonyPowerCfg"="C:\Program Files\Sony\VAIO Power Management\SPMgr.exe" [2006-06-27 18:24 217088] "RealTray"="C:\Program Files\Real\RealPlayer\RealPlay.exe" [ ] "QuickTime Task"="C:\Program Files\QuickTime\QTTask.exe" [2007-06-29 06:24 286720] "PCSuiteTrayApplication"="C:\Program Files\Nokia\Nokia PC Suite 6\LaunchApplication.exe" [2006-11-08 13:27 222208] "PaperPort PTD"="C:\Program Files\ScanSoft\PaperPort\pptd40nt.exe" [2005-02-04 11:04 57393] "NvCplDaemon"="C:\WINDOWS\system32\NvCpl.dll" [2006-05-08 03:50 7561216] "Norton Ghost 10.0"="C:\Program Files\Norton Ghost\Agent\GhostTray.exe" [ ] "Mouse Suite 98 Daemon"="ICO.EXE" [2002-03-14 16:46 45056 C:\WINDOWS\system32\ico.exe] "ISBMgr.exe"="C:\Program Files\Sony\ISB Utility\ISBMgr.exe" [2004-02-20 14:12 32768] "IndexSearch"="C:\Program Files\ScanSoft\PaperPort\IndexSearch.exe" [2005-02-04 11:14 40960] "ehTray"="C:\WINDOWS\ehome\ehtray.exe" [2005-08-05 13:34 64512] "ccApp"="C:\Program Files\Fichiers communs\Symantec Shared\ccApp.exe" [ ] "BCWipeTM Startup"="C:\Program Files\Jetico\BCWipe\BCWipeTM.exe" [ ] "Apoint"="C:\Program Files\Apoint\Apoint.exe" [2004-11-17 13:47 118784] "AOLDialer"="C:\Program Files\Fichiers communs\AOL\ACS\AOLDial.exe" [2007-06-21 12:01 70952] "Acrobat Assistant 7.0"="C:\Program Files\Adobe\Acrobat 7.0\Distillr\Acrotray.exe" [2005-03-03 21:47 483328] "F-Secure Manager"="C:\Program Files\F-Secure Internet Security\Common\FSM32.exe" [2005-10-26 03:51 122929] "F-Secure TNB"="C:\Program Files\F-Secure Internet Security\TNB\TNBUtil.exe" [2005-07-18 16:51 700416] "F-Secure Startup Wizard"="C:\Program Files\F-Secure Internet Security\FSGUI\FSSW.exe" [2005-10-18 10:29 372736] "News Service"="C:\Program Files\F-Secure Internet Security\FSGUI\ispnews.exe" [2005-05-31 14:45 356352] "54a58e5f"="C:\WINDOWS\system32\tjuudtok.dll" [2008-05-18 21:05 117248] "BM5796bdc3"="C:\WINDOWS\system32\urfmyefa.dll" [2008-05-18 20:59 124928] [HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run] "CTFMON.EXE"="C:\WINDOWS\system32\CTFMON.EXE" [2004-08-10 14:00 15360] "PcSync"="C:\Program Files\Nokia\Nokia PC Suite 6\PcSync2.exe" [2006-11-09 17:15 1634304] [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system] "InstallVisualStyle"= C:\WINDOWS\Resources\Themes\Royale\Royale.msstyles "InstallTheme"= C:\WINDOWS\Resources\Themes\Royale.theme [hkey_local_machine\software\microsoft\windows\currentversion\explorer\shellexecutehooks] "{BD962BAB-F429-460F-805B-B137087AB623}"= C:\WINDOWS\system32\fccdeDss.dll [2008-05-17 12:53 57344] [HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\winlogon\notify\fccdeDss] fccdeDss.dll 2008-05-17 12:53 57344 C:\WINDOWS\system32\fccdeDss.dll [HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\winlogon\notify\VESWinlogon] VESWinlogon.dll 2006-03-09 14:51 73728 C:\WINDOWS\system32\VESWinlogon.dll [HKLM\~\startupfolder\C:^Documents and Settings^All Users^Menu Démarrer^Programmes^Démarrage^AOL 9.0 Icône AOL.lnk] path=C:\Documents and Settings\All Users\Menu Démarrer\Programmes\Démarrage\AOL 9.0 Icône AOL.lnk backup=C:\WINDOWS\pss\AOL 9.0 Icône AOL.lnkCommon Startup [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Flashget] C:\Program Files\FlashGet\FlashGet.exe [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\HostManager] --a------ 2006-11-17 15:16 50736 C:\Program Files\Fichiers communs\AOL\1175719182\ee\AOLSoftware.exe [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\iTunesHelper] --a------ 2007-09-26 14:42 267064 C:\Program Files\iTunes\iTunesHelper.exe [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\MFPrintServer_Pro_LL] --a------ 2006-10-11 08:51 73728 C:\Program Files\Companion Suite Pro LL\MFPrintServer.exe [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\MFServices_Pro_LL] --a------ 2006-10-11 16:15 339968 C:\Program Files\Companion Suite Pro LL\MFServices.exe [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\MsnMsgr] --a------ 2007-01-19 12:55 5674352 C:\Program Files\MSN Messenger\msnmsgr.exe [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\VoipDiscount] --a------ 2007-05-31 16:22 7419456 C:\Program Files\VoipDiscount.com\VoipDiscount\VoipDiscount.exe [HKEY_LOCAL_MACHINE\software\microsoft\security center\Monitoring\SymantecAntiVirus] "DisableMonitoring"=dword:00000001 [HKEY_LOCAL_MACHINE\software\microsoft\security center\Monitoring\SymantecFirewall] "DisableMonitoring"=dword:00000001 [HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List] "%windir%\\system32\\sessmgr.exe"= "C:\\Program Files\\Adobe\\Photoshop Elements 4.0\\AdobePhotoshopElementsMediaServer.exe"= "C:\\Program Files\\Fichiers communs\\AOL\\ACS\\AOLacsd.exe"= "C:\\Program Files\\Fichiers communs\\AOL\\ACS\\AOLDial.exe"= "C:\\Program Files\\MSN Messenger\\msnmsgr.exe"= "C:\\Program Files\\MSN Messenger\\livecall.exe"= "C:\\Program Files\\Fichiers communs\\AOL\\Loader\\aolload.exe"= "C:\\Program Files\\VoipDiscount.com\\VoipDiscount\\VoipDiscount.exe"= "C:\\Program Files\\SopCast\\SopCast.exe"= "C:\\Program Files\\LimeWire\\LimeWire.exe"= "C:\\Program Files\\Fichiers communs\\AOL\\1175719182\\ee\\aolsoftware.exe"= "C:\\Program Files\\iTunes\\iTunes.exe"= "C:\\WINDOWS\\Installer\\{B045B608-4A47-4C77-9EAD-06C394503306}\\iTunesIco.exe"= "C:\\Program Files\\AOL 9.0\\waol.exe"= "C:\\Program Files\\AOL 9.0 VR\\waol.exe"= "C:\\Program Files\\Fichiers communs\\AOL\\TopSpeed\\3.0\\aoltpsd3.exe"= "C:\\Program Files\\Fichiers communs\\AOL\\System Information\\sinf.exe"= "C:\\Program Files\\Messenger\\msmsgs.exe"= "C:\\Program Files\\Pando Networks\\Pando\\pando.exe"= "C:\\Program Files\\MessengerDiscovery\\MessengerDiscovery Live.exe"= "C:\\Program Files\\eMuleSword\\emule.exe"= "C:\\Program Files\\Microsoft Office\\Office12\\OUTLOOK.EXE"= "C:\\Program Files\\F-Secure Internet Security\\backweb\\4476822\\Program\\fspex.exe"= [HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\GloballyOpenPorts\List] "57478:TCP"= 57478:TCP:Pando P2P TCP Listening Port "57478:UDP"= 57478:UDP:Pando P2P UDP Listening Port R0 FSFW;F-Secure Firewall Driver;C:\WINDOWS\system32\drivers\fsdfw.sys [2005-11-18 17:04] R1 lfxnt;lfxnt;C:\WINDOWS\system32\drivers\lfxnt.sys [2006-10-11 06:51] R2 BackWeb Plug-in - 4476822;F-Secure 2006;C:\PROGRA~1\F-SECU~1\backweb\4476822\Program\SERVIC~1.EXE [2008-05-18 20:28] R2 F-Secure Filter;F-Secure File System Filter;C:\Program Files\F-Secure Internet Security\Anti-Virus\Win2K\FSfilter.sys [2004-09-10 17:14] R2 F-Secure Gatekeeper;F-Secure Gatekeeper;C:\Program Files\F-Secure Internet Security\Anti-Virus\Win2K\FSgk.sys [2005-02-21 19:49] R2 F-Secure Recognizer;F-Secure File System Recognizer;C:\Program Files\F-Secure Internet Security\Anti-Virus\Win2K\FSrec.sys [2004-06-01 11:03] R2 MSSQL$VAIO_VEDB;MSSQL$VAIO_VEDB;C:\Program Files\Microsoft SQL Server\MSSQL$VAIO_VEDB\Binn\sqlservr.exe [2002-12-17 17:55] R3 alcan5ln;SpeedTouch™ USB ADSL RFC1483 Networking Driver (NDIS);C:\WINDOWS\system32\DRIVERS\alcan5ln.sys [2003-12-08 13:53] R3 SonyImgF;Sony Image Conversion Filter Driver;C:\WINDOWS\system32\DRIVERS\SonyImgF.sys [2006-03-06 11:39] R3 ti21sony;ti21sony;C:\WINDOWS\system32\drivers\ti21sony.sys [2006-02-21 11:32] S3 Image Converter video recording monitor for VAIO Entertainment;Image Converter video recording monitor for VAIO Entertainment;C:\Program Files\Sony\Image Converter 2\IcVzMon.exe [2005-07-14 19:10] S3 LFXACT;Companion Suite Pro LL F@X activities;C:\WINDOWS\system32\Drivers\LFXACT.sys [2006-10-11 06:51] S3 NPF;NetGroup Packet Filter Driver;C:\WINDOWS\system32\drivers\npf.sys [2005-08-02 23:10] S3 NSNDIS5;NSNDIS5 NDIS Protocol Driver;C:\WINDOWS\system32\NSNDIS5.SYS [2004-03-24 04:12] S3 SQLAgent$VAIO_VEDB;SQLAgent$VAIO_VEDB;C:\Program Files\Microsoft SQL Server\MSSQL$VAIO_VEDB\Binn\sqlagent.EXE [2002-12-17 17:23] S3 XMLDIUSB;XML USB Device Interface;C:\WINDOWS\system32\Drivers\XMLDIUSB.sys [2006-10-11 06:50] [HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{261ec8d6-e7bf-11dc-8b54-00038a000015}] \Shell\AutoRun\command - G:\LaunchU3.exe -a [HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{7df70ff0-6ac4-11dc-8aad-00038a000015}] \Shell\AutoRun\command - H:\start.exe \Shell\iledefrance\command - H:\start.exe . Contenu du dossier 'Scheduled Tasks/Tƒches planifi‚es' "2007-09-29 11:21:44 C:\WINDOWS\Tasks\AppleSoftwareUpdate.job" - C:\Program Files\Apple Software Update\SoftwareUpdate.exe . ************************************************************************** catchme 0.3.1361 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net Rootkit scan 2008-05-19 21:26:54 Windows 5.1.2600 Service Pack 2 NTFS Balayage processus cach‚s ... Balayage cach‚ autostart entries ... Balayage des fichiers cach‚s ... Scan termin‚ avec succŠs Les fichiers cach‚s: 0 ************************************************************************** . --------------------- DLLs a charg‚ sous des processus courants --------------------- PROCESS: C:\WINDOWS\system32\winlogon.exe -> C:\WINDOWS\system32\fccdeDss.dll PROCESS: C:\WINDOWS\explorer.exe -> C:\WINDOWS\system32\tjuudtok.dll -> C:\WINDOWS\system32\urfmyefa.dll . ------------------------ Other Running Processes ------------------------ . C:\Program Files\Intel\Wireless\Bin\EvtEng.exe C:\Program Files\Intel\Wireless\Bin\S24EvMon.exe C:\Program Files\Fichiers communs\Symantec Shared\CCPD-LC\symlcsvc.exe C:\Program Files\Lavasoft\Ad-Aware 2007\aawservice.exe C:\Program Files\Adobe\Photoshop Elements 4.0\PhotoshopElementsFileAgent.exe C:\PROGRA~1\FICHIE~1\AOL\ACS\AOLacsd.exe C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe C:\Program Files\WIDCOMM\Bluetooth Software\bin\btwdins.exe C:\WINDOWS\ehome\ehrecvr.exe C:\WINDOWS\ehome\ehSched.exe C:\Program Files\F-Secure Internet Security\Anti-Virus\fsgk32st.exe C:\Program Files\F-Secure Internet Security\backweb\4476822\Program\fspex.exe C:\Program Files\F-Secure Internet Security\Anti-Virus\fsgk32.exe C:\Program Files\F-Secure Internet Security\backweb\4476822\Program\fsbwsys.exe C:\Program Files\F-Secure Internet Security\Anti-Virus\fssm32.exe C:\Program Files\F-Secure Internet Security\Common\FSMA32.EXE C:\WINDOWS\system32\gearsec.exe C:\Program Files\F-Secure Internet Security\Common\FSMB32.EXE C:\Program Files\F-Secure Internet Security\Common\FCH32.EXE C:\WINDOWS\system32\nvsvc32.exe C:\Program Files\Intel\Wireless\Bin\RegSrvc.exe C:\Program Files\F-Secure Internet Security\Common\FAMEH32.EXE C:\Program Files\F-Secure Internet Security\Anti-Virus\fsqh.exe C:\WINDOWS\system32\LFXGDIPO.EXE C:\Program Files\F-Secure Internet Security\Anti-Virus\FSRW.exe C:\Program Files\Sony\VAIO Event Service\VESMgr.exe C:\Program Files\Fichiers communs\Sony Shared\VAIO Entertainment Platform\VCSW\VCSW.exe C:\WINDOWS\wanmpsvc.exe C:\WINDOWS\ehome\mcrdsvc.exe C:\Program Files\Fichiers communs\Sony Shared\VAIO Entertainment Platform\VzCdb\VzCdbSvc.exe C:\Program Files\F-Secure Internet Security\Anti-Virus\FSAV32.exe C:\Program Files\Fichiers communs\Sony Shared\VAIO Entertainment Platform\VzCdb\VzFw.exe C:\WINDOWS\system32\dllhost.exe C:\WINDOWS\system32\wscntfy.exe C:\Program Files\F-Secure Internet Security\FWES\program\fsdfwd.exe C:\Program Files\PC Connectivity Solution\ServiceLayer.exe C:\WINDOWS\ehome\ehmsas.exe C:\WINDOWS\system32\rundll32.exe C:\WINDOWS\system32\rundll32.exe C:\PROGRA~1\F-SECU~1\ANTI-S~1\FSAW.exe C:\Program Files\Apoint\ApntEx.exe C:\Program Files\F-Secure Internet Security\FSGUI\fsguidll.exe C:\Program Files\AOL 9.0 VR\waol.exe C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe C:\Program Files\PC Connectivity Solution\NclBTHandler.exe C:\Program Files\Fichiers communs\AOL\1175719182\ee\services\antiSpywareApp\ver2_0_28_1\AOLSP Scheduler.exe C:\Program Files\MessengerDiscovery\MessengerDiscovery Live.exe C:\Program Files\AOL 9.0 VR\shellmon.exe . ************************************************************************** . Temps d'accomplissement: 2008-05-19 21:33:47 - machine was rebooted ComboFix-quarantined-files.txt 2008-05-19 19:33:37 Pre-Run: 8,783,888,384 octets libres Post-Run: 9,441,959,936 octets libres 361 --- E O F --- 2008-05-15 01:00:42 Est-ce inquiétant? Merci beaucoup
  3. Bonsoir, Est-ce que quelqu'un pourrait me répondre. J'ai l'impression que l'état de mon pc s'empire. Il est de plus en plus lent. De plus j'ai été infecté par le cheval de troie Bifrost. Merci de votre aide
  4. Bonsoir à tous, Je te remercie pour ta réponse Thanos. J'ai fait ce que tu m'as demandé et je te poste les rapports comme convenu : 1. Le rapport SD FIX SDFix: Version 1.183 Run by crack on 19/05/2008 at 20:47 Microsoft Windows XP [version 5.1.2600] Running From: C:\SDFix Checking Services : Restoring Windows Registry Values Restoring Windows Default Hosts File Rebooting Checking Files : No Trojan Files Found Removing Temp Files ADS Check : Final Check : catchme 0.3.1359.2 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net Rootkit scan 2008-05-19 21:06:36 Windows 5.1.2600 Service Pack 2 NTFS scanning hidden processes ... scanning hidden services & system hive ... [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\a347scsi\Config\jdgg40] "ujdew"=hex:20,02,00,00,10,00,e1,69,95,99,bb,0f,f8,78,8f,89,79,1b,8e,a1,68,.. "ljej40"=hex:e9,5b,74,f5,47,24,99,fd,7f,47,99,d5,fc,ec,da,c5,34,e3,f1,78,a9,.. scanning hidden registry entries ... [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{E9F81423-211E-46B6-9AE0-38568BC5CF6F}] "DisplayName"="Alcohol 120%" scanning hidden files ... scan completed successfully hidden processes: 0 hidden services: 0 hidden files: 0 Remaining Services : Authorized Application Key Export: [HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list] "%windir%\\system32\\sessmgr.exe"="%windir%\\system32\\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019" "C:\\Program Files\\Adobe\\Photoshop Elements 4.0\\AdobePhotoshopElementsMediaServer.exe"="C:\\Program Files\\Adobe\\Photoshop Elements 4.0\\AdobePhotoshopElementsMediaServer.exe:*:Disabled:Adobe Photoshop Elements Media Server" "C:\\Program Files\\Fichiers communs\\AOL\\ACS\\AOLacsd.exe"="C:\\Program Files\\Fichiers communs\\AOL\\ACS\\AOLacsd.exe:*:Enabled:AOL" "C:\\Program Files\\Fichiers communs\\AOL\\ACS\\AOLDial.exe"="C:\\Program Files\\Fichiers communs\\AOL\\ACS\\AOLDial.exe:*:Enabled:AOL" "C:\\Program Files\\MSN Messenger\\msnmsgr.exe"="C:\\Program Files\\MSN Messenger\\msnmsgr.exe:*:Enabled:Windows Live Messenger 8.1" "C:\\Program Files\\MSN Messenger\\livecall.exe"="C:\\Program Files\\MSN Messenger\\livecall.exe:*:Enabled:Windows Live Messenger 8.1 (Phone)" "C:\\Program Files\\Fichiers communs\\AOL\\Loader\\aolload.exe"="C:\\Program Files\\Fichiers communs\\AOL\\Loader\\aolload.exe:*:Enabled:AOL Loader" "C:\\Program Files\\FlashGet\\flashget.exe"="C:\\Program Files\\FlashGet\\flashget.exe:*:Enabled:Flashget" "C:\\Program Files\\Skype\\Phone\\Skype.exe"="C:\\Program Files\\Skype\\Phone\\Skype.exe:*:Enabled:Skype" "C:\\Program Files\\VoipDiscount.com\\VoipDiscount\\VoipDiscount.exe"="C:\\Program Files\\VoipDiscount.com\\VoipDiscount\\VoipDiscount.exe:*:Enabled:VoipDiscount" "C:\\Program Files\\SopCast\\SopCast.exe"="C:\\Program Files\\SopCast\\SopCast.exe:*:Enabled:SopCast Main Application" "C:\\Program Files\\LimeWire\\LimeWire.exe"="C:\\Program Files\\LimeWire\\LimeWire.exe:*:Enabled:LimeWire 4.14.8" "C:\\Program Files\\Fichiers communs\\AOL\\1175719182\\ee\\aolsoftware.exe"="C:\\Program Files\\Fichiers communs\\AOL\\1175719182\\ee\\aolsoftware.exe:*:Enabled:AOL Shared Components" "C:\\Program Files\\iTunes\\iTunes.exe"="C:\\Program Files\\iTunes\\iTunes.exe:*:Enabled:iTunes" "C:\\WINDOWS\\Installer\\{B045B608-4A47-4C77-9EAD-06C394503306}\\iTunesIco.exe"="C:\\WINDOWS\\Installer\\{B045B608-4A47-4C77-9EAD-06C394503306}\\iTunesIco.exe:*:Enabled:iTunesIco" "C:\\Program Files\\Azureus\\Azureus.exe"="C:\\Program Files\\Azureus\\Azureus.exe:*:Enabled:Azureus" "C:\\Program Files\\AOL 9.0\\waol.exe"="C:\\Program Files\\AOL 9.0\\waol.exe:*:Enabled:AOL" "C:\\Program Files\\AOL 9.0 VR\\waol.exe"="C:\\Program Files\\AOL 9.0 VR\\waol.exe:*:Enabled:AOL" "C:\\Program Files\\Fichiers communs\\AOL\\TopSpeed\\3.0\\aoltpsd3.exe"="C:\\Program Files\\Fichiers communs\\AOL\\TopSpeed\\3.0\\aoltpsd3.exe:*:Enabled:AOL TopSpeed" "C:\\Program Files\\Fichiers communs\\AOL\\System Information\\sinf.exe"="C:\\Program Files\\Fichiers communs\\AOL\\System Information\\sinf.exe:*:Enabled:AOL System Information" "C:\\Program Files\\Messenger\\msmsgs.exe"="C:\\Program Files\\Messenger\\msmsgs.exe:*:Enabled:Windows Messenger" "C:\\Documents and Settings\\crack\\Application Data\\U3\\000018809A61904A\\0DE4F643-C398-46ec-9339-2362F2311932\\Exec\\Skype.exe"="C:\\Documents and Settings\\crack\\Application Data\\U3\\000018809A61904A\\0DE4F643-C398-46ec-9339-2362F2311932\\Exec\\Skype.exe:*:Enabled:Skype" "C:\\Documents and Settings\\crack\\Bureau\\Phone\\Skype.exe"="C:\\Documents and Settings\\crack\\Bureau\\Phone\\Skype.exe:*:Enabled:Skype" "C:\\Program Files\\Pando Networks\\Pando\\pando.exe"="C:\\Program Files\\Pando Networks\\Pando\\pando.exe:*:Enabled:Pando Application" "C:\\Program Files\\eMule\\emule.exe"="C:\\Program Files\\eMule\\emule.exe:*:Enabled:eMule" "C:\\Program Files\\MessengerDiscovery\\MessengerDiscovery Live.exe"="C:\\Program Files\\MessengerDiscovery\\MessengerDiscovery Live.exe:*:Enabled:MessengerDiscovery Live the Windows Live Messenger addon" "C:\\Program Files\\eMuleSword\\emule.exe"="C:\\Program Files\\eMuleSword\\emule.exe:*:Enabled:eMule" "C:\\Program Files\\Microsoft Office\\Office12\\OUTLOOK.EXE"="C:\\Program Files\\Microsoft Office\\Office12\\OUTLOOK.EXE:*:Enabled:Microsoft Office Outlook" "C:\\Program Files\\F-Secure Internet Security\\backweb\\4476822\\Program\\fspex.exe"="C:\\Program Files\\F-Secure Internet Security\\backweb\\4476822\\Program\\fspex.exe:*:Enabled:F-Secure 2006" [HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list] "%windir%\\system32\\sessmgr.exe"="%windir%\\system32\\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019" "C:\\Program Files\\Fichiers communs\\AOL\\ACS\\AOLacsd.exe"="C:\\Program Files\\Fichiers communs\\AOL\\ACS\\AOLacsd.exe:*:Enabled:AOL" "C:\\Program Files\\Fichiers communs\\AOL\\ACS\\AOLDial.exe"="C:\\Program Files\\Fichiers communs\\AOL\\ACS\\AOLDial.exe:*:Enabled:AOL" "C:\\Program Files\\MSN Messenger\\msnmsgr.exe"="C:\\Program Files\\MSN Messenger\\msnmsgr.exe:*:Enabled:Windows Live Messenger 8.1" "C:\\Program Files\\MSN Messenger\\livecall.exe"="C:\\Program Files\\MSN Messenger\\livecall.exe:*:Enabled:Windows Live Messenger 8.1 (Phone)" "C:\\Program Files\\AOL 9.0\\waol.exe"="C:\\Program Files\\AOL 9.0\\waol.exe:*:Enabled:AOL" "C:\\Program Files\\F-Secure Internet Security\\backweb\\4476822\\Program\\fspex.exe"="C:\\Program Files\\F-Secure Internet Security\\backweb\\4476822\\Program\\fspex.exe:*:Enabled:F-Secure 2006" Remaining Files : File Backups: - C:\SDFix\backups\backups.zip Files with Hidden Attributes : Fri 29 Apr 2005 54,384 A..H. --- "C:\Program Files\AOL 9.0\aolphx.exe" Fri 29 Apr 2005 156,784 A..H. --- "C:\Program Files\AOL 9.0\aoltray.exe" Fri 29 Apr 2005 31,344 A..H. --- "C:\Program Files\AOL 9.0\RBM.exe" Thu 21 Jun 2007 46,384 A..H. --- "C:\Program Files\AOL 9.0 VR\AOLphx.exe" Thu 24 May 2007 54,832 A..H. --- "C:\Program Files\AOL 9.0 VR\AOLphxex.exe" Thu 24 May 2007 33,328 A..H. --- "C:\Program Files\AOL 9.0 VR\rbm.exe" Sun 27 Apr 2008 262,144 A.SH. --- "C:\Program Files\MessengerDiscovery\SpellCHK.exe" Thu 26 Jan 2006 4,126,240 A..H. --- "C:\Program Files\Picasa2\setup.exe" Mon 26 Jan 2004 25,088 A..H. --- "C:\AOL ADSL SpeedTouch\USB\ThomsonFS\start.exe" Mon 8 Dec 2003 36,256 A..H. --- "C:\AOL ADSL SpeedTouch\USB\ThomsonFS\Driver\alca98ln.sys" Mon 8 Dec 2003 3,984 A..H. --- "C:\AOL ADSL SpeedTouch\USB\ThomsonFS\Driver\alcacr95.sys" Mon 8 Dec 2003 3,968 A..H. --- "C:\AOL ADSL SpeedTouch\USB\ThomsonFS\Driver\alcacrnt.sys" Mon 8 Dec 2003 36,256 A..H. --- "C:\AOL ADSL SpeedTouch\USB\ThomsonFS\Driver\alcan5ln.sys" Mon 8 Dec 2003 53,600 A..H. --- "C:\AOL ADSL SpeedTouch\USB\ThomsonFS\Driver\alcan5wn.sys" Mon 8 Dec 2003 70,688 A..H. --- "C:\AOL ADSL SpeedTouch\USB\ThomsonFS\Driver\alcaudsl.sys" Mon 8 Dec 2003 5,952 A..H. --- "C:\AOL ADSL SpeedTouch\USB\ThomsonFS\Driver\alcawh95.sys" Mon 8 Dec 2003 5,280 A..H. --- "C:\AOL ADSL SpeedTouch\USB\ThomsonFS\Driver\alcawhnt.sys" Mon 8 Dec 2003 5,606 A..H. --- "C:\AOL ADSL SpeedTouch\USB\ThomsonFS\Driver\stci.dll" Mon 26 Jan 2004 866,816 A..H. --- "C:\AOL ADSL SpeedTouch\USB\ThomsonFS\Programs\dragdiag.exe" Mon 26 Jan 2004 1,651,200 A..H. --- "C:\AOL ADSL SpeedTouch\USB\ThomsonFS\Programs\stdialup.exe" Mon 26 Jan 2004 38,483 A..H. --- "C:\AOL ADSL SpeedTouch\USB\ThomsonFS\Tools\dm.exe" Mon 26 Jan 2004 29,696 A..H. --- "C:\AOL ADSL SpeedTouch\USB\ThomsonFS\Tools\regutil.exe" Mon 26 Jan 2004 33,287 A..H. --- "C:\AOL ADSL SpeedTouch\USB\ThomsonFS\Tools\scan.exe" Wed 7 May 2008 0 A..H. --- "C:\WINDOWS\SoftwareDistribution\Download\71fa8e4b1f1c72b0e3a5d30a0a049f55\BIT3.tmp" Wed 4 Oct 2006 3,072,000 A..H. --- "C:\Documents and Settings\crack\Application Data\U3\temp\Launchpad Removal.exe" Mon 7 May 2007 5,281,280 A..H. --- "C:\Documents and Settings\Rohff\Mes documents\Docs\Divers2\~WRL0004.tmp" Fri 30 Mar 2007 377,344 A..H. --- "C:\Documents and Settings\Rohff\Mes documents\Docs\Divers2\~WRL0999.tmp" Thu 29 Mar 2007 4,390,400 A..H. --- "C:\Documents and Settings\Rohff\Mes documents\Docs\Divers2\~WRL2121.tmp" Thu 12 Apr 2007 483,840 A..H. --- "C:\Documents and Settings\Rohff\Mes documents\Docs\Sun'Elec\~WRL3320.tmp" Tue 30 Oct 2007 96,072 A..H. --- "C:\Program Files\Fichiers communs\AOL\TopSpeed\3.0\WBUnins.exe" Finished! 2. Le rapport ComboFix ComboFix 08-05-15.3 - crack 2008-05-19 21:16:46.1 - NTFSx86 Microsoft Windows XP Professionnel 5.1.2600.2.1252.1.1036.18.527 [GMT 2:00] Endroit: C:\Documents and Settings\crack\Bureau\ComboFix.exe * Création d'un nouveau point de restauration AVERTISSEMENT - LA CONSOLE DE RÉCUPÉRATION N'EST PAS INSTALLÉE SUR CETTE MACHINE !! . (((((((((((((((((((((((((((((((((((( Autres suppressions )))))))))))))))))))))))))))))))))))))))))))))))) . C:\WINDOWS\Downloaded Program Files\setup.inf C:\WINDOWS\pskt.ini C:\WINDOWS\system32\agrivyxj.exe C:\WINDOWS\system32\ajwdmmvt.ini C:\WINDOWS\system32\ajwvbhru.ini C:\WINDOWS\system32\ekkdqldl.ini C:\WINDOWS\system32\etucdtii.ini C:\WINDOWS\system32\hbbjraan.ini C:\WINDOWS\system32\kotduujt.ini C:\WINDOWS\system32\ligsxisd.exe C:\WINDOWS\system32\mktsiwqw.exe C:\WINDOWS\system32\nwaegehs.ini C:\WINDOWS\system32\obokrpkj.ini C:\WINDOWS\system32\pnvcxroc.exe C:\WINDOWS\system32\rhavhhvw.exe C:\WINDOWS\system32\xIiOYJjl.ini C:\WINDOWS\system32\xIiOYJjl.ini2 . ((((((((((((((((((((((((((((( Fichiers cr‚‚s 2008-04-19 to 2008-05-19 )))))))))))))))))))))))))))))))))))) . 2008-05-19 20:35 . 2008-05-19 20:36 <REP> d-------- C:\WINDOWS\ERUNT 2008-05-19 20:29 . 2008-05-19 21:10 <REP> d-------- C:\SDFix 2008-05-18 22:35 . 2008-05-18 22:35 8,192 --ahs---- C:\WINDOWS\Thumbs.db 2008-05-18 21:05 . 2008-05-18 21:05 117,248 --a------ C:\WINDOWS\system32\tjuudtok.dll 2008-05-18 20:59 . 2008-05-18 20:59 124,928 --a------ C:\WINDOWS\system32\urfmyefa.dll 2008-05-18 20:55 . 2008-05-18 20:59 <REP> d-------- C:\Documents and Settings\crack\Application Data\F-Secure 2008-05-18 20:53 . 2008-05-18 20:53 <REP> d-------- C:\Documents and Settings\crack\Application Data\ispnews 2008-05-18 20:31 . 2005-11-18 17:04 70,896 --a------ C:\WINDOWS\system32\drivers\fsdfw.sys 2008-05-18 20:31 . 2005-11-18 17:04 33,584 --a------ C:\WINDOWS\system32\drivers\fsndis5.sys 2008-05-18 20:30 . 2008-05-18 20:30 <REP> d-------- C:\Documents and Settings\All Users\Application Data\F-Secure 2008-05-18 20:27 . 2008-05-18 20:30 <REP> d-------- C:\Program Files\F-Secure Internet Security 2008-05-18 20:27 . 2008-05-18 20:27 118,842 -r------- C:\WINDOWS\bwUnin-6.3.2.123-4476822L.exe 2008-05-18 19:54 . 2008-05-18 19:54 133,120 --a------ C:\WINDOWS\system32\folqulvd.dll 2008-05-18 19:43 . 2008-05-18 19:43 124,928 --a------ C:\WINDOWS\system32\pescgqfq.dll 2008-05-18 18:24 . 2008-05-18 18:24 <REP> d-------- C:\Program Files\Lavasoft 2008-05-18 18:24 . 2008-05-18 18:24 <REP> d-------- C:\Documents and Settings\All Users\Application Data\Lavasoft 2008-05-18 18:16 . 2008-05-18 18:16 133,120 --a------ C:\WINDOWS\system32\decjhaeh.dll 2008-05-18 18:07 . 2008-05-18 18:08 124,928 --a------ C:\WINDOWS\system32\vkuvedac.dll 2008-05-18 18:06 . 2008-05-18 18:06 57,344 --a------ C:\WINDOWS\system32\jkkJbawv.dll 2008-05-18 17:42 . 2008-05-18 17:42 133,120 --a------ C:\WINDOWS\system32\xisoeqni.dll 2008-05-18 17:30 . 2008-05-18 17:30 124,928 --a------ C:\WINDOWS\system32\trmxsfgb.dll 2008-05-18 16:30 . 2008-05-18 16:30 57,344 --a------ C:\WINDOWS\system32\vtUlKCur.dll 2008-05-18 16:09 . 2008-05-18 16:09 133,120 --a------ C:\WINDOWS\system32\bexeylvj.dll 2008-05-18 16:06 . 2008-05-18 16:06 124,928 --a------ C:\WINDOWS\system32\irluydyk.dll 2008-05-18 16:06 . 2008-05-18 16:06 57,344 --a------ C:\WINDOWS\system32\byXqQKdA.dll 2008-05-18 15:45 . 2008-05-18 15:45 57,344 --a------ C:\WINDOWS\system32\efcYRJDU.dll 2008-05-18 15:22 . 2008-05-18 15:22 133,120 --a------ C:\WINDOWS\system32\xvqowqfj.dll 2008-05-18 15:13 . 2008-05-18 15:13 124,928 --a------ C:\WINDOWS\system32\uekmxdas.dll 2008-05-18 15:13 . 2008-05-19 20:07 109,827 --a------ C:\WINDOWS\BM5796bdc3.xml 2008-05-18 14:50 . 2008-05-18 14:50 57,344 --a------ C:\WINDOWS\system32\yayvTlJB.dll 2008-05-17 19:36 . 2008-05-17 19:36 57,344 --a------ C:\WINDOWS\system32\jkkHXNhg.dll 2008-05-17 16:18 . 2008-05-17 16:18 57,344 --a------ C:\WINDOWS\system32\iifETliH.dll 2008-05-17 15:47 . 2008-05-17 15:47 54,156 --ah----- C:\WINDOWS\QTFont.qfn 2008-05-17 15:47 . 2008-05-17 15:47 1,409 --a------ C:\WINDOWS\QTFont.for 2008-05-17 15:05 . 2008-05-17 15:05 57,344 --a------ C:\WINDOWS\system32\geBsQjGV.dll 2008-05-17 13:03 . 2008-05-17 13:03 57,344 --a------ C:\WINDOWS\system32\qoMeFvTk.dll 2008-05-17 12:58 . 2008-05-17 12:58 371,712 --a------ C:\WINDOWS\system32\ljJYOiIx.dll 2008-05-17 12:56 . 2008-05-17 12:56 57,344 --a------ C:\WINDOWS\system32\rqRHxuvV.dll 2008-05-17 12:53 . 2008-05-17 12:53 57,344 --a------ C:\WINDOWS\system32\fccdeDss.dll 2008-05-14 21:39 . 2008-05-14 21:39 <REP> d-------- C:\Documents and Settings\Luigi\Bluetooth Software 2008-05-14 16:16 . 2008-05-14 16:16 <REP> d-------- C:\Program Files\MSBuild 2008-05-14 16:15 . 2008-05-14 16:15 <REP> d-------- C:\Program Files\Microsoft.NET 2008-05-14 16:11 . 2008-05-15 17:02 <REP> d-------- C:\Documents and Settings\All Users\Application Data\Microsoft Help 2008-05-14 16:06 . 2008-05-14 16:06 <REP> d-------- C:\Program Files\Alcohol Soft 2008-05-14 16:06 . 2004-04-30 09:37 160,640 --a------ C:\WINDOWS\system32\drivers\a347bus.sys 2008-05-14 16:06 . 2004-04-30 09:33 5,248 --a------ C:\WINDOWS\system32\drivers\a347scsi.sys 2008-05-14 14:08 . 2008-05-14 14:08 <REP> d-------- C:\ViViOutput 2008-05-14 14:08 . 2008-05-14 14:08 <REP> d-------- C:\Program Files\ViVi 3GP PSP iPod MP4 Video Converter 2.1 2008-05-13 20:29 . 2008-05-13 20:29 <REP> d-------- C:\Program Files\Windows Live 2008-05-13 20:29 . 2008-05-17 23:46 <REP> d-------- C:\Program Files\MessengerDiscovery 2008-05-06 20:40 . 2008-05-18 20:55 <REP> d-a------ C:\Documents and Settings\All Users\Application Data\TEMP 2008-05-06 20:40 . 2008-05-06 20:40 37,888 --a------ C:\WINDOWS\system32\rar.exe 2008-05-06 20:30 . 2008-05-14 18:56 10 --a------ C:\WINDOWS\popcinfo.dat 2008-05-06 20:09 . 2008-05-06 20:10 <REP> d-------- C:\Program Files\Zuma Deluxe 2008-05-06 19:55 . 2008-05-06 19:55 <REP> d--h----- C:\WINDOWS\PIF 2008-05-06 19:54 . 2008-05-06 19:55 <REP> d--h----- C:\Program Files\Zero G Registry 2008-05-06 19:54 . 2008-05-06 19:57 <REP> d-------- C:\Program Files\MagicDraw UML 2008-05-06 19:54 . 2008-05-06 19:54 <REP> d--h----- C:\Documents and Settings\crack\InstallAnywhere 2008-05-06 12:21 . 2008-05-06 12:21 <REP> d-------- C:\Program Files\Samsung 2008-04-26 13:08 . 2008-04-26 13:08 <REP> d-------- C:\Documents and Settings\Luigi\Application Data\PC Suite 2008-04-24 22:39 . 2008-04-24 22:39 <REP> d-------- C:\Program Files\Notepad++ 2008-04-24 22:39 . 2008-04-24 22:39 <REP> d-------- C:\Documents and Settings\crack\Application Data\Notepad++ 2008-04-23 21:15 . 2008-04-23 21:30 <REP> d-------- C:\Documents and Settings\crack\Application Data\Dev-Cpp 2008-04-23 21:14 . 2008-04-23 21:15 <REP> d-------- C:\Dev-Cpp 2008-04-23 21:00 . 2008-04-23 21:00 <REP> d-------- C:\Program Files\CodeBlocks 2008-04-23 21:00 . 2008-04-23 21:03 <REP> d-------- C:\Documents and Settings\crack\Application Data\codeblocks . (((((((((((((((((((((((((((((((((( Compte-rendu de Find3M )))))))))))))))))))))))))))))))))))))))))))))))) . 2008-05-18 20:38 --------- d-----w C:\Program Files\eMule 2008-05-18 20:24 --------- d-----w C:\Program Files\Rapidshare Unlimited 2008-05-18 16:24 --------- d-----w C:\Program Files\Fichiers communs\Wise Installation Wizard 2008-05-14 14:17 --------- d-----w C:\Program Files\Microsoft Works 2008-05-14 12:11 --------- d-----w C:\Program Files\ViVi MP4 Converter 2.1 2008-05-14 11:58 --------- d-----w C:\Program Files\Canon 2008-05-14 11:57 --------- d--h--w C:\Program Files\InstallShield Installation Information 2008-05-14 11:56 --------- d-----w C:\Program Files\Cain 2008-05-14 11:56 --------- d-----w C:\Program Files\Azureus 2008-05-14 11:55 --------- d-----w C:\Program Files\Fichiers communs\AVSMedia 2008-05-14 11:55 --------- d-----w C:\Program Files\AVS4YOU 2008-05-13 21:03 --------- d-----w C:\Program Files\eMuleSword 2008-05-13 18:29 --------- d-----w C:\Program Files\MSN Messenger 2008-05-06 10:28 --------- d-----w C:\Documents and Settings\crack\Application Data\Samsung 2008-05-05 20:00 --------- d-----w C:\Program Files\WinAVI MP4 Converter 2008-04-22 18:23 --------- d-----w C:\Program Files\Fichiers communs\Real 2008-04-17 17:17 --------- d-----w C:\Documents and Settings\crack\Application Data\LimeWire 2008-04-15 17:04 --------- d-----w C:\Documents and Settings\crack\Application Data\Azureus 2008-04-13 21:19 --------- d-----w C:\Program Files\microsoft frontpage 2008-04-13 21:19 --------- d-----w C:\Documents and Settings\crack\Application Data\Microsoft Web Folders 2008-04-07 19:14 --------- d-----w C:\Program Files\Free iPod Video Converter 2008-04-06 19:20 --------- d-----w C:\Program Files\TubeMaster 2008-04-06 16:48 --------- d-----w C:\Program Files\Pando Networks 2008-04-06 13:16 --------- d-----w C:\Program Files\AOL 9.0 VR 2008-04-06 13:14 --------- d-----w C:\Program Files\Fichiers communs\aolshare 2008-03-29 20:30 --------- d-----w C:\Documents and Settings\crack\Application Data\Skype 2008-03-25 04:51 621,344 ----a-w C:\WINDOWS\system32\mswstr10.dll 2008-03-25 04:51 194,144 ----a-w C:\WINDOWS\system32\msjint40.dll 2008-03-24 12:17 --------- d-----w C:\Documents and Settings\All Users\Application Data\Skype 2008-03-20 08:09 1,845,376 ----a-w C:\WINDOWS\system32\win32k.sys 2008-03-19 22:51 --------- d-----w C:\Documents and Settings\crack\Application Data\DivX 2008-02-21 02:05 524,288 ----a-w C:\WINDOWS\system32\DivXsm.exe 2008-02-21 02:05 3,596,288 ----a-w C:\WINDOWS\system32\qt-dx331.dll 2008-02-21 02:05 200,704 ----a-w C:\WINDOWS\system32\ssldivx.dll 2008-02-21 02:05 129,784 ------w C:\WINDOWS\system32\pxafs.dll 2008-02-21 02:05 120,056 ------w C:\WINDOWS\system32\pxcpyi64.exe 2008-02-21 02:05 118,520 ------w C:\WINDOWS\system32\pxinsi64.exe 2008-02-21 02:05 1,044,480 ----a-w C:\WINDOWS\system32\libdivx.dll 2008-02-21 02:04 823,296 ----a-w C:\WINDOWS\system32\divx_xx0c.dll 2008-02-21 02:04 823,296 ----a-w C:\WINDOWS\system32\divx_xx07.dll 2008-02-21 02:04 81,920 ----a-w C:\WINDOWS\system32\dpl100.dll 2008-02-21 02:04 802,816 ----a-w C:\WINDOWS\system32\divx_xx11.dll 2008-02-21 02:04 682,496 ----a-w C:\WINDOWS\system32\DivX.dll 2008-02-21 02:04 593,920 ----a-w C:\WINDOWS\system32\dpuGUI11.dll 2008-02-21 02:04 57,344 ----a-w C:\WINDOWS\system32\dpv11.dll 2008-02-21 02:04 53,248 ----a-w C:\WINDOWS\system32\dpuGUI10.dll 2008-02-21 02:04 344,064 ----a-w C:\WINDOWS\system32\dpus11.dll 2008-02-21 02:04 294,912 ----a-w C:\WINDOWS\system32\dpu11.dll 2008-02-21 02:04 294,912 ----a-w C:\WINDOWS\system32\dpu10.dll 2008-02-21 02:04 196,608 ----a-w C:\WINDOWS\system32\dtu100.dll 2008-02-21 02:03 156,992 ----a-w C:\WINDOWS\system32\DivXCodecVersionChecker.exe 2008-02-21 02:03 12,288 ----a-w C:\WINDOWS\system32\DivXWMPExtType.dll 2008-02-20 06:51 282,624 ----a-w C:\WINDOWS\system32\gdi32.dll 2008-02-20 05:35 45,568 ----a-w C:\WINDOWS\system32\dnsrslvr.dll 2007-10-31 11:06 1,092 ----a-w C:\Documents and Settings\crack\Application Data\filterclsid.dat . ((((((((((((((((((((((((((((((((( Point de chargement Reg ))))))))))))))))))))))))))))))))))))))))))))))))) . . REGEDIT4 *Note* les ‚l‚ments vides & les ‚l‚ments initiaux l‚gitimes ne sont pas list‚s [HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{69832f8a-7c20-4cf7-b0e1-d8a01a72a40b}] 2008-05-18 19:54 133120 --a------ C:\WINDOWS\system32\folqulvd.dll [HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{AAE49F55-22BB-4F21-A40E-C827092374DA}] 2008-05-17 12:58 371712 --a------ C:\WINDOWS\system32\ljJYOiIx.dll [HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{BD962BAB-F429-460F-805B-B137087AB623}] 2008-05-17 12:53 57344 --a------ C:\WINDOWS\system32\fccdeDss.dll [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "updateMgr"="C:\Program Files\Adobe\Acrobat 7.0\Reader\AdobeUpdateManager.exe" [2006-03-30 16:45 313472] "CTFMON.EXE"="C:\WINDOWS\system32\ctfmon.exe" [2004-08-10 14:00 15360] "msnmsgr"="C:\Program Files\MSN Messenger\msnmsgr.exe" [2007-01-19 12:55 5674352] "AOL Fast Start"="C:\Program Files\AOL 9.0 VR\AOL.exe" [2007-06-21 13:44 50480] "Pando"="C:\Program Files\Pando Networks\Pando\Pando.exe" [2008-04-02 15:22 6112584] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "VAIOCameraUtility"="C:\Program Files\Sony\VAIO Camera Utility\VCUServe.exe" [2005-12-27 13:58 69632] "VAIO Update 2"="C:\Program Files\Sony\VAIO Update 2\VAIOUpdt.exe" [2005-10-11 21:36 151552] "URLLSTCK.exe"="C:\Program Files\Norton Internet Security\UrlLstCk.exe" [ ] "Switcher.exe"="C:\Program Files\Sony\Wireless Switch Setting Utility\Switcher.exe" [2006-02-14 12:11 176128] "SSBkgdUpdate"="C:\Program Files\Fichiers communs\Scansoft Shared\SSBkgdUpdate\SSBkgdupdate.exe" [2003-10-14 11:22 155648] "SpeedTouch USB Diagnostics"="C:\Program Files\Thomson\SpeedTouch USB\Dragdiag.exe" [2004-04-07 09:02 877568] "SonyPowerCfg"="C:\Program Files\Sony\VAIO Power Management\SPMgr.exe" [2006-06-27 18:24 217088] "RealTray"="C:\Program Files\Real\RealPlayer\RealPlay.exe" [ ] "QuickTime Task"="C:\Program Files\QuickTime\QTTask.exe" [2007-06-29 06:24 286720] "PCSuiteTrayApplication"="C:\Program Files\Nokia\Nokia PC Suite 6\LaunchApplication.exe" [2006-11-08 13:27 222208] "PaperPort PTD"="C:\Program Files\ScanSoft\PaperPort\pptd40nt.exe" [2005-02-04 11:04 57393] "NvCplDaemon"="C:\WINDOWS\system32\NvCpl.dll" [2006-05-08 03:50 7561216] "Norton Ghost 10.0"="C:\Program Files\Norton Ghost\Agent\GhostTray.exe" [ ] "Mouse Suite 98 Daemon"="ICO.EXE" [2002-03-14 16:46 45056 C:\WINDOWS\system32\ico.exe] "ISBMgr.exe"="C:\Program Files\Sony\ISB Utility\ISBMgr.exe" [2004-02-20 14:12 32768] "IndexSearch"="C:\Program Files\ScanSoft\PaperPort\IndexSearch.exe" [2005-02-04 11:14 40960] "ehTray"="C:\WINDOWS\ehome\ehtray.exe" [2005-08-05 13:34 64512] "ccApp"="C:\Program Files\Fichiers communs\Symantec Shared\ccApp.exe" [ ] "BCWipeTM Startup"="C:\Program Files\Jetico\BCWipe\BCWipeTM.exe" [ ] "Apoint"="C:\Program Files\Apoint\Apoint.exe" [2004-11-17 13:47 118784] "AOLDialer"="C:\Program Files\Fichiers communs\AOL\ACS\AOLDial.exe" [2007-06-21 12:01 70952] "Acrobat Assistant 7.0"="C:\Program Files\Adobe\Acrobat 7.0\Distillr\Acrotray.exe" [2005-03-03 21:47 483328] "F-Secure Manager"="C:\Program Files\F-Secure Internet Security\Common\FSM32.exe" [2005-10-26 03:51 122929] "F-Secure TNB"="C:\Program Files\F-Secure Internet Security\TNB\TNBUtil.exe" [2005-07-18 16:51 700416] "F-Secure Startup Wizard"="C:\Program Files\F-Secure Internet Security\FSGUI\FSSW.exe" [2005-10-18 10:29 372736] "News Service"="C:\Program Files\F-Secure Internet Security\FSGUI\ispnews.exe" [2005-05-31 14:45 356352] "54a58e5f"="C:\WINDOWS\system32\tjuudtok.dll" [2008-05-18 21:05 117248] "BM5796bdc3"="C:\WINDOWS\system32\urfmyefa.dll" [2008-05-18 20:59 124928] [HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run] "CTFMON.EXE"="C:\WINDOWS\system32\CTFMON.EXE" [2004-08-10 14:00 15360] "PcSync"="C:\Program Files\Nokia\Nokia PC Suite 6\PcSync2.exe" [2006-11-09 17:15 1634304] [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system] "InstallVisualStyle"= C:\WINDOWS\Resources\Themes\Royale\Royale.msstyles "InstallTheme"= C:\WINDOWS\Resources\Themes\Royale.theme [hkey_local_machine\software\microsoft\windows\currentversion\explorer\shellexecutehooks] "{BD962BAB-F429-460F-805B-B137087AB623}"= C:\WINDOWS\system32\fccdeDss.dll [2008-05-17 12:53 57344] [HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\winlogon\notify\fccdeDss] fccdeDss.dll 2008-05-17 12:53 57344 C:\WINDOWS\system32\fccdeDss.dll [HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\winlogon\notify\VESWinlogon] VESWinlogon.dll 2006-03-09 14:51 73728 C:\WINDOWS\system32\VESWinlogon.dll [HKLM\~\startupfolder\C:^Documents and Settings^All Users^Menu Démarrer^Programmes^Démarrage^AOL 9.0 Icône AOL.lnk] path=C:\Documents and Settings\All Users\Menu Démarrer\Programmes\Démarrage\AOL 9.0 Icône AOL.lnk backup=C:\WINDOWS\pss\AOL 9.0 Icône AOL.lnkCommon Startup [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Flashget] C:\Program Files\FlashGet\FlashGet.exe [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\HostManager] --a------ 2006-11-17 15:16 50736 C:\Program Files\Fichiers communs\AOL\1175719182\ee\AOLSoftware.exe [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\iTunesHelper] --a------ 2007-09-26 14:42 267064 C:\Program Files\iTunes\iTunesHelper.exe [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\MFPrintServer_Pro_LL] --a------ 2006-10-11 08:51 73728 C:\Program Files\Companion Suite Pro LL\MFPrintServer.exe [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\MFServices_Pro_LL] --a------ 2006-10-11 16:15 339968 C:\Program Files\Companion Suite Pro LL\MFServices.exe [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\MsnMsgr] --a------ 2007-01-19 12:55 5674352 C:\Program Files\MSN Messenger\msnmsgr.exe [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\VoipDiscount] --a------ 2007-05-31 16:22 7419456 C:\Program Files\VoipDiscount.com\VoipDiscount\VoipDiscount.exe [HKEY_LOCAL_MACHINE\software\microsoft\security center\Monitoring\SymantecAntiVirus] "DisableMonitoring"=dword:00000001 [HKEY_LOCAL_MACHINE\software\microsoft\security center\Monitoring\SymantecFirewall] "DisableMonitoring"=dword:00000001 [HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List] "%windir%\\system32\\sessmgr.exe"= "C:\\Program Files\\Adobe\\Photoshop Elements 4.0\\AdobePhotoshopElementsMediaServer.exe"= "C:\\Program Files\\Fichiers communs\\AOL\\ACS\\AOLacsd.exe"= "C:\\Program Files\\Fichiers communs\\AOL\\ACS\\AOLDial.exe"= "C:\\Program Files\\MSN Messenger\\msnmsgr.exe"= "C:\\Program Files\\MSN Messenger\\livecall.exe"= "C:\\Program Files\\Fichiers communs\\AOL\\Loader\\aolload.exe"= "C:\\Program Files\\VoipDiscount.com\\VoipDiscount\\VoipDiscount.exe"= "C:\\Program Files\\SopCast\\SopCast.exe"= "C:\\Program Files\\LimeWire\\LimeWire.exe"= "C:\\Program Files\\Fichiers communs\\AOL\\1175719182\\ee\\aolsoftware.exe"= "C:\\Program Files\\iTunes\\iTunes.exe"= "C:\\WINDOWS\\Installer\\{B045B608-4A47-4C77-9EAD-06C394503306}\\iTunesIco.exe"= "C:\\Program Files\\AOL 9.0\\waol.exe"= "C:\\Program Files\\AOL 9.0 VR\\waol.exe"= "C:\\Program Files\\Fichiers communs\\AOL\\TopSpeed\\3.0\\aoltpsd3.exe"= "C:\\Program Files\\Fichiers communs\\AOL\\System Information\\sinf.exe"= "C:\\Program Files\\Messenger\\msmsgs.exe"= "C:\\Program Files\\Pando Networks\\Pando\\pando.exe"= "C:\\Program Files\\MessengerDiscovery\\MessengerDiscovery Live.exe"= "C:\\Program Files\\eMuleSword\\emule.exe"= "C:\\Program Files\\Microsoft Office\\Office12\\OUTLOOK.EXE"= "C:\\Program Files\\F-Secure Internet Security\\backweb\\4476822\\Program\\fspex.exe"= [HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\GloballyOpenPorts\List] "57478:TCP"= 57478:TCP:Pando P2P TCP Listening Port "57478:UDP"= 57478:UDP:Pando P2P UDP Listening Port R0 FSFW;F-Secure Firewall Driver;C:\WINDOWS\system32\drivers\fsdfw.sys [2005-11-18 17:04] R1 lfxnt;lfxnt;C:\WINDOWS\system32\drivers\lfxnt.sys [2006-10-11 06:51] R2 BackWeb Plug-in - 4476822;F-Secure 2006;C:\PROGRA~1\F-SECU~1\backweb\4476822\Program\SERVIC~1.EXE [2008-05-18 20:28] R2 F-Secure Filter;F-Secure File System Filter;C:\Program Files\F-Secure Internet Security\Anti-Virus\Win2K\FSfilter.sys [2004-09-10 17:14] R2 F-Secure Gatekeeper;F-Secure Gatekeeper;C:\Program Files\F-Secure Internet Security\Anti-Virus\Win2K\FSgk.sys [2005-02-21 19:49] R2 F-Secure Recognizer;F-Secure File System Recognizer;C:\Program Files\F-Secure Internet Security\Anti-Virus\Win2K\FSrec.sys [2004-06-01 11:03] R2 MSSQL$VAIO_VEDB;MSSQL$VAIO_VEDB;C:\Program Files\Microsoft SQL Server\MSSQL$VAIO_VEDB\Binn\sqlservr.exe [2002-12-17 17:55] R3 alcan5ln;SpeedTouch USB ADSL RFC1483 Networking Driver (NDIS);C:\WINDOWS\system32\DRIVERS\alcan5ln.sys [2003-12-08 13:53] R3 SonyImgF;Sony Image Conversion Filter Driver;C:\WINDOWS\system32\DRIVERS\SonyImgF.sys [2006-03-06 11:39] R3 ti21sony;ti21sony;C:\WINDOWS\system32\drivers\ti21sony.sys [2006-02-21 11:32] S3 Image Converter video recording monitor for VAIO Entertainment;Image Converter video recording monitor for VAIO Entertainment;C:\Program Files\Sony\Image Converter 2\IcVzMon.exe [2005-07-14 19:10] S3 LFXACT;Companion Suite Pro LL F@X activities;C:\WINDOWS\system32\Drivers\LFXACT.sys [2006-10-11 06:51] S3 NPF;NetGroup Packet Filter Driver;C:\WINDOWS\system32\drivers\npf.sys [2005-08-02 23:10] S3 NSNDIS5;NSNDIS5 NDIS Protocol Driver;C:\WINDOWS\system32\NSNDIS5.SYS [2004-03-24 04:12] S3 SQLAgent$VAIO_VEDB;SQLAgent$VAIO_VEDB;C:\Program Files\Microsoft SQL Server\MSSQL$VAIO_VEDB\Binn\sqlagent.EXE [2002-12-17 17:23] S3 XMLDIUSB;XML USB Device Interface;C:\WINDOWS\system32\Drivers\XMLDIUSB.sys [2006-10-11 06:50] [HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{261ec8d6-e7bf-11dc-8b54-00038a000015}] \Shell\AutoRun\command - G:\LaunchU3.exe -a [HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{7df70ff0-6ac4-11dc-8aad-00038a000015}] \Shell\AutoRun\command - H:\start.exe \Shell\iledefrance\command - H:\start.exe . Contenu du dossier 'Scheduled Tasks/Tƒches planifi‚es' "2007-09-29 11:21:44 C:\WINDOWS\Tasks\AppleSoftwareUpdate.job" - C:\Program Files\Apple Software Update\SoftwareUpdate.exe . ************************************************************************** catchme 0.3.1361 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net Rootkit scan 2008-05-19 21:26:54 Windows 5.1.2600 Service Pack 2 NTFS Balayage processus cach‚s ... Balayage cach‚ autostart entries ... Balayage des fichiers cach‚s ... Scan termin‚ avec succŠs Les fichiers cach‚s: 0 ************************************************************************** . --------------------- DLLs a charg‚ sous des processus courants --------------------- PROCESS: C:\WINDOWS\system32\winlogon.exe -> C:\WINDOWS\system32\fccdeDss.dll PROCESS: C:\WINDOWS\explorer.exe -> C:\WINDOWS\system32\tjuudtok.dll -> C:\WINDOWS\system32\urfmyefa.dll . ------------------------ Other Running Processes ------------------------ . C:\Program Files\Intel\Wireless\Bin\EvtEng.exe C:\Program Files\Intel\Wireless\Bin\S24EvMon.exe C:\Program Files\Fichiers communs\Symantec Shared\CCPD-LC\symlcsvc.exe C:\Program Files\Lavasoft\Ad-Aware 2007\aawservice.exe C:\Program Files\Adobe\Photoshop Elements 4.0\PhotoshopElementsFileAgent.exe C:\PROGRA~1\FICHIE~1\AOL\ACS\AOLacsd.exe C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe C:\Program Files\WIDCOMM\Bluetooth Software\bin\btwdins.exe C:\WINDOWS\ehome\ehrecvr.exe C:\WINDOWS\ehome\ehSched.exe C:\Program Files\F-Secure Internet Security\Anti-Virus\fsgk32st.exe C:\Program Files\F-Secure Internet Security\backweb\4476822\Program\fspex.exe C:\Program Files\F-Secure Internet Security\Anti-Virus\fsgk32.exe C:\Program Files\F-Secure Internet Security\backweb\4476822\Program\fsbwsys.exe C:\Program Files\F-Secure Internet Security\Anti-Virus\fssm32.exe C:\Program Files\F-Secure Internet Security\Common\FSMA32.EXE C:\WINDOWS\system32\gearsec.exe C:\Program Files\F-Secure Internet Security\Common\FSMB32.EXE C:\Program Files\F-Secure Internet Security\Common\FCH32.EXE C:\WINDOWS\system32\nvsvc32.exe C:\Program Files\Intel\Wireless\Bin\RegSrvc.exe C:\Program Files\F-Secure Internet Security\Common\FAMEH32.EXE C:\Program Files\F-Secure Internet Security\Anti-Virus\fsqh.exe C:\WINDOWS\system32\LFXGDIPO.EXE C:\Program Files\F-Secure Internet Security\Anti-Virus\FSRW.exe C:\Program Files\Sony\VAIO Event Service\VESMgr.exe C:\Program Files\Fichiers communs\Sony Shared\VAIO Entertainment Platform\VCSW\VCSW.exe C:\WINDOWS\wanmpsvc.exe C:\WINDOWS\ehome\mcrdsvc.exe C:\Program Files\Fichiers communs\Sony Shared\VAIO Entertainment Platform\VzCdb\VzCdbSvc.exe C:\Program Files\F-Secure Internet Security\Anti-Virus\FSAV32.exe C:\Program Files\Fichiers communs\Sony Shared\VAIO Entertainment Platform\VzCdb\VzFw.exe C:\WINDOWS\system32\dllhost.exe C:\WINDOWS\system32\wscntfy.exe C:\Program Files\F-Secure Internet Security\FWES\program\fsdfwd.exe C:\Program Files\PC Connectivity Solution\ServiceLayer.exe C:\WINDOWS\ehome\ehmsas.exe C:\WINDOWS\system32\rundll32.exe C:\WINDOWS\system32\rundll32.exe C:\PROGRA~1\F-SECU~1\ANTI-S~1\FSAW.exe C:\Program Files\Apoint\ApntEx.exe C:\Program Files\F-Secure Internet Security\FSGUI\fsguidll.exe C:\Program Files\AOL 9.0 VR\waol.exe C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe C:\Program Files\PC Connectivity Solution\NclBTHandler.exe C:\Program Files\Fichiers communs\AOL\1175719182\ee\services\antiSpywareApp\ver2_0_28_1\AOLSP Scheduler.exe C:\Program Files\MessengerDiscovery\MessengerDiscovery Live.exe C:\Program Files\AOL 9.0 VR\shellmon.exe . ************************************************************************** . Temps d'accomplissement: 2008-05-19 21:33:47 - machine was rebooted ComboFix-quarantined-files.txt 2008-05-19 19:33:37 Pre-Run: 8,783,888,384 octets libres Post-Run: 9,441,959,936 octets libres 361 --- E O F --- 2008-05-15 01:00:42 Est-ce inquiétant? Merci beaucoup
  5. Bonsoir à tous, Je suis très heureux d'écrire sur ce site internet qui est l'un des plus complets en terme d'informatique. Mais, ( Car il y'a un mais ) comme vous pouvez lire le sujet de mon message, mon ordinateur est infecté. Je vous explique ce que j'ai pu observer ou faire jusqu'à maintenant pour pouvoir arriver à cette conclusion: 1. Je possède Emule: A chaque fois que je me connecte à un serveur, 301 fichiers rar apparaissent dans le dossier Incoming alors que je n'ai rien commencé à télecharger. Je suis à chaque fois obligé de les supprimer. ( C'est qu'elle ne demande pas la permission la mule pour télécharger!!! loool) 2. J'ai téléchargé F-secure. Il a trouvé 307 virus dont 6 ont étés éradiqués. Les 301 autres correspondent aux fichiers rar qui sont contenus dans le dossier Incoming. 3. J'utilise Firefox. Lorsque je recherche quelque chose sur google, la page des résultats ne s'affiche pas. 4 Des fenêtres de plublicités intempestives apparaissent à la fois sur Interne Explorer ( Alors que je ne l'utilise pas) et sur Mozilla Enfin, j'ai le rapport Hijackthis de mon pc. Le voici : Logfile of Trend Micro HijackThis v2.0.2 Scan saved at 22:47:39, on 18/05/2008 Platform: Windows XP SP2 (WinNT 5.01.2600) MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180) Boot mode: Normal Running processes: C:\WINDOWS\System32\smss.exe C:\WINDOWS\system32\winlogon.exe C:\WINDOWS\system32\services.exe C:\WINDOWS\system32\lsass.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\System32\svchost.exe C:\Program Files\Intel\Wireless\Bin\EvtEng.exe C:\Program Files\Intel\Wireless\Bin\S24EvMon.exe C:\Program Files\Fichiers communs\Symantec Shared\CCPD-LC\symlcsvc.exe C:\Program Files\Lavasoft\Ad-Aware 2007\aawservice.exe C:\WINDOWS\system32\spoolsv.exe C:\WINDOWS\Explorer.EXE C:\Program Files\Adobe\Photoshop Elements 4.0\PhotoshopElementsFileAgent.exe C:\PROGRA~1\FICHIE~1\AOL\ACS\AOLacsd.exe C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe C:\PROGRA~1\F-SECU~1\backweb\4476822\Program\SERVIC~1.EXE C:\Program Files\WIDCOMM\Bluetooth Software\bin\btwdins.exe C:\WINDOWS\eHome\ehRecvr.exe C:\WINDOWS\eHome\ehSched.exe C:\Program Files\F-Secure Internet Security\Anti-Virus\fsgk32st.exe C:\Program Files\F-Secure Internet Security\backweb\4476822\Program\fspex.exe C:\Program Files\F-Secure Internet Security\Anti-Virus\FSGK32.EXE C:\Program Files\F-Secure Internet Security\backweb\4476822\program\fsbwsys.exe C:\Program Files\F-Secure Internet Security\Common\FSMA32.EXE C:\Program Files\F-Secure Internet Security\Anti-Virus\fssm32.exe C:\WINDOWS\System32\GEARSec.exe C:\Program Files\F-Secure Internet Security\Common\FSMB32.EXE C:\Program Files\Microsoft SQL Server\MSSQL$VAIO_VEDB\Binn\sqlservr.exe C:\WINDOWS\system32\LFXGDIPO.exe C:\Program Files\F-Secure Internet Security\Common\FCH32.EXE C:\WINDOWS\system32\nvsvc32.exe C:\Program Files\Intel\Wireless\Bin\RegSrvc.exe C:\WINDOWS\system32\svchost.exe C:\Program Files\F-Secure Internet Security\Anti-Virus\fsqh.exe C:\Program Files\F-Secure Internet Security\Common\FAMEH32.EXE C:\Program Files\Sony\VAIO Event Service\VESMgr.exe C:\Program Files\Fichiers communs\Sony Shared\VAIO Entertainment Platform\VCSW\VCSW.exe C:\Program Files\F-Secure Internet Security\Anti-Virus\fsrw.exe C:\WINDOWS\wanmpsvc.exe C:\Program Files\F-Secure Internet Security\Anti-Virus\fsav32.exe C:\Program Files\Fichiers communs\Sony Shared\VAIO Entertainment Platform\VzCdb\VzCdbSvc.exe C:\Program Files\Fichiers communs\Sony Shared\VAIO Entertainment Platform\VzCdb\VzFw.exe C:\Program Files\F-Secure Internet Security\FWES\Program\fsdfwd.exe C:\Program Files\Sony\VAIO Camera Utility\VCUServe.exe C:\Program Files\Sony\VAIO Update 2\VAIOUpdt.exe C:\Program Files\Thomson\SpeedTouch USB\Dragdiag.exe C:\Program Files\Sony\VAIO Power Management\SPMgr.exe C:\Program Files\QuickTime\QTTask.exe C:\WINDOWS\system32\dllhost.exe C:\Program Files\Nokia\Nokia PC Suite 6\LaunchApplication.exe C:\Program Files\ScanSoft\PaperPort\pptd40nt.exe C:\WINDOWS\system32\ICO.EXE C:\Program Files\Sony\ISB Utility\ISBMgr.exe C:\WINDOWS\ehome\ehtray.exe C:\Program Files\Apoint\Apoint.exe C:\Program Files\PC Connectivity Solution\ServiceLayer.exe C:\Program Files\Adobe\Acrobat 7.0\Distillr\Acrotray.exe C:\Program Files\F-Secure Internet Security\Common\FSM32.EXE C:\WINDOWS\eHome\ehmsas.exe C:\Program Files\Apoint\Apntex.exe C:\Program Files\F-Secure Internet Security\FSGUI\ispnews.exe C:\WINDOWS\system32\Rundll32.exe C:\WINDOWS\system32\rundll32.exe C:\PROGRA~1\F-SECU~1\ANTI-S~1\fsaw.exe C:\WINDOWS\system32\ctfmon.exe C:\Program Files\F-Secure Internet Security\FSGUI\fsguidll.exe C:\Program Files\MSN Messenger\msnmsgr.exe C:\Program Files\Fichiers communs\AOL\1175719182\ee\aolsoftware.exe C:\Program Files\Pando Networks\Pando\Pando.exe C:\Program Files\AOL 9.0 VR\waol.exe C:\Program Files\PC Connectivity Solution\NclBTHandler.exe C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe c:\program files\fichiers communs\aol\1175719182\ee\services\antiSpywareApp\ver2_0_28_1\AOLSP Scheduler.exe c:\program files\fichiers communs\aol\1175719182\ee\aolsoftware.exe C:\WINDOWS\System32\svchost.exe C:\Program Files\MessengerDiscovery\MessengerDiscovery Live.exe C:\Program Files\AOL 9.0 VR\shellmon.exe C:\Program Files\Fichiers communs\AOL\Topspeed\3.0\aoltpsd3.exe C:\Program Files\Adobe\Acrobat 7.0\Reader\AcroRd32.exe C:\Documents and Settings\crack\Bureau\HiJackThis.exe R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.club-vaio.com/fr/ R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.club-vaio.com/fr/ R1 - HKCU\Software\Microsoft\Internet Connection Wizard,ShellNext = http://www.club-vaio.com/fr/ R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens R3 - URLSearchHook: AOLTBSearch Class - {EA756889-2338-43DB-8F07-D1CA6FB9C90D} - C:\Program Files\AOL\AOL Toolbar 4.0\aoltb.dll O3 - Toolbar: Easy-WebPrint - {327C2873-E90D-4c37-AA9D-10AC9BABA46C} - C:\Program Files\Canon\Easy-WebPrint\Toolband.dll O3 - Toolbar: AOL Toolbar - {DE9C389F-3316-41A7-809B-AA305ED9D922} - C:\Program Files\AOL\AOL Toolbar 4.0\aoltb.dll O4 - HKLM\..\Run: [VAIOCameraUtility] "C:\Program Files\Sony\VAIO Camera Utility\VCUServe.exe" O4 - HKLM\..\Run: [VAIO Update 2] "C:\Program Files\Sony\VAIO Update 2\VAIOUpdt.exe" /Stationary O4 - HKLM\..\Run: [urlLSTCK.exe] C:\Program Files\Norton Internet Security\UrlLstCk.exe O4 - HKLM\..\Run: [switcher.exe] C:\Program Files\Sony\Wireless Switch Setting Utility\Switcher.exe O4 - HKLM\..\Run: [sSBkgdUpdate] "C:\Program Files\Fichiers communs\Scansoft Shared\SSBkgdUpdate\SSBkgdupdate.exe" -Embedding -boot O4 - HKLM\..\Run: [speedTouch USB Diagnostics] "C:\Program Files\Thomson\SpeedTouch USB\Dragdiag.exe" /icon O4 - HKLM\..\Run: [sonyPowerCfg] "C:\Program Files\Sony\VAIO Power Management\SPMgr.exe" O4 - HKLM\..\Run: [RealTray] C:\Program Files\Real\RealPlayer\RealPlay.exe SYSTEMBOOTHIDEPLAYER O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\QTTask.exe" -atboottime O4 - HKLM\..\Run: [PCSuiteTrayApplication] C:\Program Files\Nokia\Nokia PC Suite 6\LaunchApplication.exe -startup O4 - HKLM\..\Run: [PaperPort PTD] C:\Program Files\ScanSoft\PaperPort\pptd40nt.exe O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup O4 - HKLM\..\Run: [Norton Ghost 10.0] "C:\Program Files\Norton Ghost\Agent\GhostTray.exe" O4 - HKLM\..\Run: [Mouse Suite 98 Daemon] ICO.EXE O4 - HKLM\..\Run: [iSBMgr.exe] C:\Program Files\Sony\ISB Utility\ISBMgr.exe O4 - HKLM\..\Run: [indexSearch] C:\Program Files\ScanSoft\PaperPort\IndexSearch.exe O4 - HKLM\..\Run: [ehTray] C:\WINDOWS\ehome\ehtray.exe O4 - HKLM\..\Run: [ccApp] "C:\Program Files\Fichiers communs\Symantec Shared\ccApp.exe" O4 - HKLM\..\Run: [bCWipeTM Startup] "C:\Program Files\Jetico\BCWipe\BCWipeTM.exe" startup O4 - HKLM\..\Run: [Apoint] C:\Program Files\Apoint\Apoint.exe O4 - HKLM\..\Run: [AOLDialer] C:\Program Files\Fichiers communs\AOL\ACS\AOLDial.exe O4 - HKLM\..\Run: [Acrobat Assistant 7.0] "C:\Program Files\Adobe\Acrobat 7.0\Distillr\Acrotray.exe" O4 - HKLM\..\Run: [F-Secure Manager] "C:\Program Files\F-Secure Internet Security\Common\FSM32.EXE" /splash O4 - HKLM\..\Run: [F-Secure TNB] "C:\Program Files\F-Secure Internet Security\TNB\TNBUtil.exe" /CHECKALL /WAITFORSW O4 - HKLM\..\Run: [F-Secure Startup Wizard] "C:\Program Files\F-Secure Internet Security\FSGUI\FSSW.EXE" /reboot O4 - HKLM\..\Run: [News Service] "C:\Program Files\F-Secure Internet Security\FSGUI\ispnews.exe" O4 - HKLM\..\Run: [54a58e5f] rundll32.exe "C:\WINDOWS\system32\tjuudtok.dll",b O4 - HKLM\..\Run: [bM5796bdc3] Rundll32.exe "C:\WINDOWS\system32\urfmyefa.dll",s O4 - HKCU\..\Run: [updateMgr] "C:\Program Files\Adobe\Acrobat 7.0\Reader\AdobeUpdateManager.exe" AcRdB7_0_9 -reboot 1 O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe O4 - HKCU\..\Run: [msnmsgr] "C:\Program Files\MSN Messenger\msnmsgr.exe" /background O4 - HKCU\..\Run: [AOL Fast Start] "C:\Program Files\AOL 9.0 VR\AOL.EXE" -b O4 - HKCU\..\Run: [Pando] "C:\Program Files\Pando Networks\Pando\Pando.exe" /Minimized O4 - HKCU\..\Policies\Explorer\Run: [Windows Printing Driver] WinSpooler.exe O4 - HKCU\..\Policies\Explorer\Run: [WinUpdating] WinUpdating.exe O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE LOCAL') O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE RÉSEAU') O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM') O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user') O4 - Global Startup: BTTray.lnk = ? O4 - Global Startup: F-Secure 2006.lnk = C:\Program Files\F-Secure Internet Security\backweb\4476822\Program\fspex.exe O4 - Global Startup: Lancement rapide d'Adobe Reader.lnk = C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe O8 - Extra context menu item: &Bloquer cette fenêtre publicitaire - C:\Program Files\F-Secure Internet Security\Anti-Spyware\blockpopups.htm O8 - Extra context menu item: &Recherche AOL Toolbar - c:\program files\aol\aol toolbar 4.0\resources\fr-FR\local\search.html O8 - Extra context menu item: &Traduire à partir de l'anglais - res://C:\Program Files\Google\GoogleToolbar1.dll/cmwordtrans.html O8 - Extra context menu item: Ajouter un site de support RSS à VAIO Information FLOW - C:\Program Files\Sony\VAIO Information FLOW\aiesc.html O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~4\Office12\EXCEL.EXE/3000 O8 - Extra context menu item: Envoyer au périphérique &Bluetooth... - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie_ctx.htm O8 - Extra context menu item: Pages liées - res://C:\Program Files\Google\GoogleToolbar1.dll/cmbacklinks.html O8 - Extra context menu item: Pages similaires - res://C:\Program Files\Google\GoogleToolbar1.dll/cmsimilar.html O8 - Extra context menu item: Recherche &Google - res://C:\Program Files\Google\GoogleToolbar1.dll/cmsearch.html O8 - Extra context menu item: Transfert par Image Converter 2 Plus - C:\Program Files\Sony\Image Converter 2\menu.htm O8 - Extra context menu item: Version de la page actuelle disponible dans le cache Google - res://C:\Program Files\Google\GoogleToolbar1.dll/cmcache.html O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll O9 - Extra button: Protection Internet Explorer - {300DB664-75B5-47c0-8B45-A44ACCF73C00} - C:\Program Files\F-Secure Internet Security\Anti-Spyware\ieshield.dll O9 - Extra 'Tools' menuitem: Protection Internet Explorer... - {300DB664-75B5-47c0-8B45-A44ACCF73C00} - C:\Program Files\F-Secure Internet Security\Anti-Spyware\ieshield.dll O9 - Extra button: AOL Toolbar - {3369AF0D-62E9-4bda-8103-B4C75499B578} - C:\Program Files\AOL\AOL Toolbar 4.0\aoltb.dll O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~4\Office12\REFIEBAR.DLL O9 - Extra button: @btrez.dll,-4015 - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm O9 - Extra 'Tools' menuitem: @btrez.dll,-12650 - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm O9 - Extra button: (no name) - {CD67F990-D8E9-11d2-98FE-00C0F0318AFE} - (no file) O9 - Extra button: FlashGet - {D6E814A0-E0C5-11d4-8D29-0050BA6940E3} - C:\Program Files\FlashGet\FlashGet.exe (file missing) O9 - Extra 'Tools' menuitem: FlashGet - {D6E814A0-E0C5-11d4-8D29-0050BA6940E3} - C:\Program Files\FlashGet\FlashGet.exe (file missing) O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe O14 - IERESET.INF: START_PAGE_URL=http://www.club-vaio.com/fr/ O15 - Trusted Zone: *.sony-europe.com O15 - Trusted Zone: *.sonystyle-europe.com O15 - Trusted Zone: *.vaio-link.com O16 - DPF: {67DABFBF-D0AB-41FA-9C46-CC0F21721616} (DivXBrowserPlugin Object) - http://go.divx.com/plugin/DivXBrowserPlugin.cab O17 - HKLM\System\CCS\Services\Tcpip\..\{75945AA2-41E3-4122-98D3-3C3BA0E7725F}: NameServer = 86.64.145.140 84.103.237.140 O23 - Service: Ad-Aware 2007 Service (aawservice) - Lavasoft - C:\Program Files\Lavasoft\Ad-Aware 2007\aawservice.exe O23 - Service: Adobe Active File Monitor V4 (AdobeActiveFileMonitor4.0) - Unknown owner - C:\Program Files\Adobe\Photoshop Elements 4.0\PhotoshopElementsFileAgent.exe O23 - Service: AOL Connectivity Service (AOL ACS) - AOL LLC - C:\PROGRA~1\FICHIE~1\AOL\ACS\AOLacsd.exe O23 - Service: Apple Mobile Device - Apple, Inc. - C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe O23 - Service: F-Secure 2006 (BackWeb Plug-in - 4476822) - F-Secure Internet Security 2005 - C:\PROGRA~1\F-SECU~1\backweb\4476822\Program\SERVIC~1.EXE O23 - Service: Bluetooth Service (btwdins) - Broadcom Corporation. - C:\Program Files\WIDCOMM\Bluetooth Software\bin\btwdins.exe O23 - Service: Intel® PROSet/Wireless Event Log (EvtEng) - Intel Corporation - C:\Program Files\Intel\Wireless\Bin\EvtEng.exe O23 - Service: FSGKHS (F-Secure Gatekeeper Handler Starter) - F-Secure Corporation - C:\Program Files\F-Secure Internet Security\Anti-Virus\fsgk32st.exe O23 - Service: fsbwsys - F-Secure Corp. - C:\Program Files\F-Secure Internet Security\backweb\4476822\program\fsbwsys.exe O23 - Service: F-Secure Anti-Virus Firewall Daemon (FSDFWD) - F-Secure Corporation - C:\Program Files\F-Secure Internet Security\FWES\Program\fsdfwd.exe O23 - Service: F-Secure Management Agent (FSMA) - F-Secure Corporation - C:\Program Files\F-Secure Internet Security\Common\FSMA32.EXE O23 - Service: GEARSecurity - GEAR Software - C:\WINDOWS\System32\GEARSec.exe O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Fichiers communs\InstallShield\Driver\1150\Intel 32\IDriverT.exe O23 - Service: Image Converter video recording monitor for VAIO Entertainment - Sony Corporation - C:\Program Files\Sony\Image Converter 2\IcVzMon.exe O23 - Service: iPod Service - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe O23 - Service: MSCSPTISRV - Sony Corporation - C:\Program Files\Fichiers communs\Sony Shared\AVLib\MSCSPTISRV.exe O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe O23 - Service: PACSPTISVR - Sony Corporation - C:\Program Files\Fichiers communs\Sony Shared\AVLib\PACSPTISVR.exe O23 - Service: Planificateur LiveUpdate automatique - Unknown owner - C:\Program Files\Symantec\LiveUpdate\ALUSchedulerSvc.exe (file missing) O23 - Service: Intel® PROSet/Wireless Registry Service (RegSrvc) - Intel Corporation - C:\Program Files\Intel\Wireless\Bin\RegSrvc.exe O23 - Service: Remote Packet Capture Protocol v.0 (experimental) (rpcapd) - CACE Technologies - C:\Program Files\WinPcap\rpcapd.exe O23 - Service: Intel® PROSet/Wireless Service (S24EventMonitor) - Intel Corporation - C:\Program Files\Intel\Wireless\Bin\S24EvMon.exe O23 - Service: ServiceLayer - Nokia. - C:\Program Files\PC Connectivity Solution\ServiceLayer.exe O23 - Service: Sony SPTI Service (SPTISRV) - Sony Corporation - C:\Program Files\Fichiers communs\Sony Shared\AVLib\SPTISRV.exe O23 - Service: SonicStage SCSI Service (SSScsiSV) - Sony Corporation - C:\Program Files\Fichiers communs\Sony Shared\AVLib\SSScsiSV.exe O23 - Service: Symantec Core LC - Unknown owner - C:\Program Files\Fichiers communs\Symantec Shared\CCPD-LC\symlcsvc.exe O23 - Service: VAIO Entertainment TV Device Arbitration Service - Sony Corporation - C:\Program Files\Fichiers communs\Sony Shared\VAIO Entertainment Platform\VzCs\VzHardwareResourceManager\VzHardwareResourceManager.exe O23 - Service: VAIO Event Service - Sony Corporation - C:\Program Files\Sony\VAIO Event Service\VESMgr.exe O23 - Service: VAIO Media Integrated Server (VAIOMediaPlatform-IntegratedServer-AppServer) - Sony Corporation - C:\Program Files\Sony\VAIO Media Integrated Server\VMISrv.exe O23 - Service: VAIO Media Integrated Server (HTTP) (VAIOMediaPlatform-IntegratedServer-HTTP) - Sony Corporation - C:\Program Files\Sony\VAIO Media Integrated Server\Platform\SV_Httpd.exe O23 - Service: VAIO Media Integrated Server (UPnP) (VAIOMediaPlatform-IntegratedServer-UPnP) - Sony Corporation - C:\Program Files\Sony\VAIO Media Integrated Server\Platform\UPnPFramework.exe O23 - Service: VAIO Media Gateway Server (VAIOMediaPlatform-Mobile-Gateway) - Sony Corporation - C:\Program Files\Sony\VAIO Media Integrated Server\Platform\VmGateway.exe O23 - Service: VAIO Entertainment UPnP Client Adapter (Vcsw) - Sony Corporation - C:\Program Files\Fichiers communs\Sony Shared\VAIO Entertainment Platform\VCSW\VCSW.exe O23 - Service: VAIO Entertainment Database Service (VzCdbSvc) - Sony Corporation - C:\Program Files\Fichiers communs\Sony Shared\VAIO Entertainment Platform\VzCdb\VzCdbSvc.exe O23 - Service: VAIO Entertainment File Import Service (VzFw) - Sony Corporation - C:\Program Files\Fichiers communs\Sony Shared\VAIO Entertainment Platform\VzCdb\VzFw.exe O23 - Service: WAN Miniport (ATW) Service (WANMiniportService) - America Online, Inc. - C:\WINDOWS\wanmpsvc.exe -- End of file - 17633 bytes Pourriez cous m'aider s'il vous plait?. J'ai peur de devoir formater mon pc alors que je possède des fichiers importants. En vous remerciant
×
×
  • Créer...