Aller au contenu

  • Pas encore inscrit ?

    Pourquoi ne pas vous inscrire ? C'est simple, rapide et gratuit.
    Pour en savoir plus, lisez Les avantages de l'inscription... et la Charte de Zébulon.
    De plus, les messages que vous postez en tant qu'invité restent invisibles tant qu'un modérateur ne les a pas validés. Inscrivez-vous, ce sera un gain de temps pour tout le monde, vous, les helpeurs et les modérateurs ! :wink:

Gros problème avec antivirus

musico

Par musico
dans Analyses et éradication malwares

 Partager

Messages recommandés

musico Member

musico

Posté(e)
Posté(e)

Bonjour,

 

J'ai un gros problème : je n'ai plus l'icone de mon antivirus (Firewall) et si je veux analyser mes dossiers, Firewall ne répond pas.

 

De plus, lorsque je clique sur les icônes du bureau (Ccleaner et Hisjaksis), cela ne répond pas ; j'ai tenté de les télécharger et de les réinstaller : impossible.

 

Pouvez vous m'aider,

 

Avec mes remerciements,

 

Musico

Apollo Devil Member !

Apollo

Posté(e)
Posté(e)

Bonsoir,

 

Outre ces problèmes, as-tu constaté un message comme "Win32 n'est pas une application valide?

 

As-tu accès au mode sans échec? Au panneau de configuration? Au poste de travail?

 

Peux-tu télécharger un antivirus et l'installer?

Essaie ceci: Télécharger Antivir

 

Si l'install est impossible ou si tu as un message d'erreur, il y a des chances que tu aies chopé Bagle.

 

Reviens ici et on s'occupera de ça :P

 

Ne passe aucun outil sans l'accord d'un helper de ce forum stp.

 

@+ tard.

musico Member

musico

Posté(e)
  • Auteur
Posté(e)

Bonsoir

Effectivement j'ai ce message Win 32 n'est pas une application valide.

D'autre j'ai acces au démarrage mode sans échec mais je ne sais pas faire;et enfin j'ai acces au panneau de configuration et au poste de travail mais faut être patient ça rame beaucoup

Apparemment j'ai pu télécharger Antivir

En attente de votre réponse merci beaucoup

musico Member

musico

Posté(e)
  • Auteur
Posté(e)

Re bonsoir

En fait j'ai parlé trops vite

Antivir ne s'installe pas!Il me demande systématiquement de faire un reboot et de le réinstaller mais ça plante toujours au même point!

Merci

 

Re bonsoir

En fait j'ai parlé trops vite

Antivir ne s'installe pas!Il me demande systématiquement de faire un reboot et de le réinstaller mais ça plante toujours au même point!

Merci

Apollo Devil Member !

Apollo

Posté(e)
Posté(e)

Ok , enfin pas pour toi, tu as Bagle!

 

Sois très attentif et lis bien les instructions qui vont suivre, elles doivent être respectées à la lettre.

 

1. Débarrasse-toi de tes cracks pour éviter une réinfection immédiate.

2. Si tu as des supports amovibles (clé usb, disque externe, appareil photo numérique, lecteur mp3) connecte-les avant de débuter l'analyse ci-après et allume-les lecteurs qui doivent l'être.

 

ComboFix ne doit pas être utilisé comme un outil de diagnostic, il ne doit être employé que sur demande expresse d'un conseiller formé à cet outil et sous son contrôle. Cet outil est dangereux!

 

TUTO Officiel

 

Fais un clic droit ICI

  • Dans le menu qui se déroule, choisis "Enregistrer la cible du lien sous" (si tu utilises Firefox) et "Enregistrer la cible sous" (si tu utilises Internet Explorer)
  • Une fenêtre va s'ouvrir: dans le champs Nom du fichier (en bas ), tape ceci > combo-fix --> le tiret est important. <--
  • On va enregistrer ce fichier sur le Bureau: pour cela, sur le panneau de gauche, clique sur le Bureau.
  • Clique enfin sur le bouton Enregistrer en bas de page à droite.
  • Assure toi que tous les programmes sont fermés avant de lancer le fix!
  • Fait un double clique sur combofix.exe.
  • Clique sur Oui au message de Limitation de Garantie qui s'affiche.
  • Il est possible que ton parefeu te demande si tu acceptes ou non l'accès de nircmd.cfexe à la zone sure: accepte!
  • Note: Ne ferme pas la fenêtre qui vient de s'ouvrir , tu te retrouverais avec un bureau vide !
  • Lorsque le scan est terminé, un rapport sera généré : poste en le contenu dans ton prochain message.

 

Si tu perds la connexion après le passage de ComboFix, voici comment la réparer ICI.

 

@ + tard :P

musico Member

musico

Posté(e)
  • Auteur
Posté(e)
Ok , enfin pas pour toi, tu as Bagle!

 

Sois très attentif et lis bien les instructions qui vont suivre, elles doivent être respectées à la lettre.

 

1. Débarrasse-toi de tes cracks pour éviter une réinfection immédiate.

2. Si tu as des supports amovibles (clé usb, disque externe, appareil photo numérique, lecteur mp3) connecte-les avant de débuter l'analyse ci-après et allume-les lecteurs qui doivent l'être.

 

ComboFix ne doit pas être utilisé comme un outil de diagnostic, il ne doit être employé que sur demande expresse d'un conseiller formé à cet outil et sous son contrôle. Cet outil est dangereux!

 

TUTO Officiel

 

Fais un clic droit ICI

  • Dans le menu qui se déroule, choisis "Enregistrer la cible du lien sous" (si tu utilises Firefox) et "Enregistrer la cible sous" (si tu utilises Internet Explorer)
  • Une fenêtre va s'ouvrir: dans le champs Nom du fichier (en bas ), tape ceci > combo-fix --> le tiret est important. <--
  • On va enregistrer ce fichier sur le Bureau: pour cela, sur le panneau de gauche, clique sur le Bureau.
  • Clique enfin sur le bouton Enregistrer en bas de page à droite.
  • Assure toi que tous les programmes sont fermés avant de lancer le fix!
  • Fait un double clique sur combofix.exe.
  • Clique sur Oui au message de Limitation de Garantie qui s'affiche.
  • Il est possible que ton parefeu te demande si tu acceptes ou non l'accès de nircmd.cfexe à la zone sure: accepte!
  • Note: Ne ferme pas la fenêtre qui vient de s'ouvrir , tu te retrouverais avec un bureau vide !
  • Lorsque le scan est terminé, un rapport sera généré : poste en le contenu dans ton prochain message.

 

Si tu perds la connexion après le passage de ComboFix, voici comment la réparer ICI.

 

@ + tard :P

 

 

ComboFix 08-10-24.02 - Admin 2008-10-24 22:39:53.6 - FAT32x86

Microsoft Windows XP Professionnel 5.1.2600.2.1252.1.1036.18.367 [GMT 2:00]

 

AVERTISSEMENT - LA CONSOLE DE RÉCUPÉRATION N'EST PAS INSTALLÉE SUR CETTE MACHINE !!

.

 

(((((((((((((((((((((((((((((((((((( Autres suppressions ))))))))))))))))))))))))))))))))))))))))))))))))

.

 

D:\Documents and Settings\Admin.XPSP2-8246C1C43\Application Data\m

D:\Documents and Settings\Admin.XPSP2-8246C1C43\Application Data\m\data.oct

D:\Documents and Settings\Admin.XPSP2-8246C1C43\Application Data\m\flec006.exe

D:\Documents and Settings\Admin.XPSP2-8246C1C43\Application Data\m\list.oct

D:\Documents and Settings\Admin.XPSP2-8246C1C43\Application Data\m\shared\123_DVD_Converter_4.6.1.6.zip

D:\Documents and Settings\Admin.XPSP2-8246C1C43\Application Data\m\shared\Able Web Editor Demo 1.0.2.zip

D:\Documents and Settings\Admin.XPSP2-8246C1C43\Application Data\m\shared\AblePayments Suite for AbleCommerce 1.5.zip

D:\Documents and Settings\Admin.XPSP2-8246C1C43\Application Data\m\shared\abylon SHAREDDRIVE 6.5.zip

D:\Documents and Settings\Admin.XPSP2-8246C1C43\Application Data\m\shared\ACID Music Studio 7.0a build 157.zip

D:\Documents and Settings\Admin.XPSP2-8246C1C43\Application Data\m\shared\AlphaButton 2.2.1.zip

D:\Documents and Settings\Admin.XPSP2-8246C1C43\Application Data\m\shared\Auto-Mate_Add-in_for_Outlook_1.2.zip

D:\Documents and Settings\Admin.XPSP2-8246C1C43\Application Data\m\shared\Awesome_Cloudscapes_Screen_Saver_1.0.zip

D:\Documents and Settings\Admin.XPSP2-8246C1C43\Application Data\m\shared\Barcode_Prime_Image_Generator_for_Codabar_1.1_Patch.zip

D:\Documents and Settings\Admin.XPSP2-8246C1C43\Application Data\m\shared\Beep 1.0.zip

D:\Documents and Settings\Admin.XPSP2-8246C1C43\Application Data\m\shared\Bibble_Professional_4.90d.zip

D:\Documents and Settings\Admin.XPSP2-8246C1C43\Application Data\m\shared\BirthdayRemember_6.3.zip

D:\Documents and Settings\Admin.XPSP2-8246C1C43\Application Data\m\shared\Blog_Auto_Machine_2.0.zip

D:\Documents and Settings\Admin.XPSP2-8246C1C43\Application Data\m\shared\Commandos_Strike_Force_demo.zip

D:\Documents and Settings\Admin.XPSP2-8246C1C43\Application Data\m\shared\CoolPSettings_3.0g.zip

D:\Documents and Settings\Admin.XPSP2-8246C1C43\Application Data\m\shared\Create_Ringtone_4.93.zip

D:\Documents and Settings\Admin.XPSP2-8246C1C43\Application Data\m\shared\Crossword_Challenge_1.0.zip

D:\Documents and Settings\Admin.XPSP2-8246C1C43\Application Data\m\shared\CVP_optimizer_1.0.6_Patch.zip

D:\Documents and Settings\Admin.XPSP2-8246C1C43\Application Data\m\shared\CZ Print Deleter 1.0 (Crack).zip

D:\Documents and Settings\Admin.XPSP2-8246C1C43\Application Data\m\shared\Dark Nature Screensaver 1.01.zip

D:\Documents and Settings\Admin.XPSP2-8246C1C43\Application Data\m\shared\DesktopPlayer 2.12.zip

D:\Documents and Settings\Admin.XPSP2-8246C1C43\Application Data\m\shared\Digital_Alarm_Clock_2.11.zip

D:\Documents and Settings\Admin.XPSP2-8246C1C43\Application Data\m\shared\Directory Update 1.1 [With Crack].zip

D:\Documents and Settings\Admin.XPSP2-8246C1C43\Application Data\m\shared\Directory_Compare_and_Synchronize_2.5.7.zip

D:\Documents and Settings\Admin.XPSP2-8246C1C43\Application Data\m\shared\Doom_95_demo.zip

D:\Documents and Settings\Admin.XPSP2-8246C1C43\Application Data\m\shared\Dr.Windows_1.04.01.zip

D:\Documents and Settings\Admin.XPSP2-8246C1C43\Application Data\m\shared\Dr_Parse_VIP_1.zip

D:\Documents and Settings\Admin.XPSP2-8246C1C43\Application Data\m\shared\DriverMAGIC_1.1.0.zip

D:\Documents and Settings\Admin.XPSP2-8246C1C43\Application Data\m\shared\Dunnabyte Alarm 2008 3.01.zip

D:\Documents and Settings\Admin.XPSP2-8246C1C43\Application Data\m\shared\DVD_Ripper_to_MPEG_2.2.zip

D:\Documents and Settings\Admin.XPSP2-8246C1C43\Application Data\m\shared\ECalcPad_1.0.zip

D:\Documents and Settings\Admin.XPSP2-8246C1C43\Application Data\m\shared\eDrum_MIDI_Mapper_1.0.zip

D:\Documents and Settings\Admin.XPSP2-8246C1C43\Application Data\m\shared\Email_Control_Center_1.0.zip

D:\Documents and Settings\Admin.XPSP2-8246C1C43\Application Data\m\shared\Envisioneer Express 3.0.zip

D:\Documents and Settings\Admin.XPSP2-8246C1C43\Application Data\m\shared\EquTranslator 2.0.zip

D:\Documents and Settings\Admin.XPSP2-8246C1C43\Application Data\m\shared\Europe_2000.1.zip

D:\Documents and Settings\Admin.XPSP2-8246C1C43\Application Data\m\shared\EZ_Wizard_3.02.zip

D:\Documents and Settings\Admin.XPSP2-8246C1C43\Application Data\m\shared\Fancy Fish 1.0 (With Crack).zip

D:\Documents and Settings\Admin.XPSP2-8246C1C43\Application Data\m\shared\Fast_Recorder_1.0.zip

D:\Documents and Settings\Admin.XPSP2-8246C1C43\Application Data\m\shared\Firearms_Collection_Manager_1.0.25.zip

D:\Documents and Settings\Admin.XPSP2-8246C1C43\Application Data\m\shared\Focus Photoeditor 5.1.1.zip

D:\Documents and Settings\Admin.XPSP2-8246C1C43\Application Data\m\shared\Friend_Blaster_Pro_4.1_Key+Serial.zip

D:\Documents and Settings\Admin.XPSP2-8246C1C43\Application Data\m\shared\FusionCoder 1.0.zip

D:\Documents and Settings\Admin.XPSP2-8246C1C43\Application Data\m\shared\Generic_Game_Engine_1.1.zip

D:\Documents and Settings\Admin.XPSP2-8246C1C43\Application Data\m\shared\Gravit_0.4.2.zip

D:\Documents and Settings\Admin.XPSP2-8246C1C43\Application Data\m\shared\H&H_Korea2Go_Talking_Phrase_Book_3.zip

D:\Documents and Settings\Admin.XPSP2-8246C1C43\Application Data\m\shared\HS_COM_1.1.zip

D:\Documents and Settings\Admin.XPSP2-8246C1C43\Application Data\m\shared\HTML_Markdown_2.1.zip

D:\Documents and Settings\Admin.XPSP2-8246C1C43\Application Data\m\shared\httpZip 3.8.4.zip

D:\Documents and Settings\Admin.XPSP2-8246C1C43\Application Data\m\shared\Hyperball Racing demo.zip

D:\Documents and Settings\Admin.XPSP2-8246C1C43\Application Data\m\shared\i5_iSeries_Solution_Sales_V5R3_Practice_Exam_Questions_1.0.zip

D:\Documents and Settings\Admin.XPSP2-8246C1C43\Application Data\m\shared\Ideal_Browser_Firefox_Edition_2.4.zip

D:\Documents and Settings\Admin.XPSP2-8246C1C43\Application Data\m\shared\IE_Registry_Manager_1.0.zip

D:\Documents and Settings\Admin.XPSP2-8246C1C43\Application Data\m\shared\Ini_Files_Manager_1.0.zip

D:\Documents and Settings\Admin.XPSP2-8246C1C43\Application Data\m\shared\Insult Generator 2.3.zip

D:\Documents and Settings\Admin.XPSP2-8246C1C43\Application Data\m\shared\Internet_Business_Promoter_(IBP)_9.7.1_[serial].zip

D:\Documents and Settings\Admin.XPSP2-8246C1C43\Application Data\m\shared\IPTunnelManager 1.4.zip

D:\Documents and Settings\Admin.XPSP2-8246C1C43\Application Data\m\shared\ISO Commander 1.6 build 043.zip

D:\Documents and Settings\Admin.XPSP2-8246C1C43\Application Data\m\shared\Kaspersky.Antivirus.5.0.388.Personal.Pro.Key.zip

D:\Documents and Settings\Admin.XPSP2-8246C1C43\Application Data\m\shared\Keyboard Extensions 1.0 build 53.zip

D:\Documents and Settings\Admin.XPSP2-8246C1C43\Application Data\m\shared\Life Organizer 1.0.zip

D:\Documents and Settings\Admin.XPSP2-8246C1C43\Application Data\m\shared\LingvoSoft_Talking_Dictionary_2007_Spanish_-_Korean_4.0.22_(Serial).zip

D:\Documents and Settings\Admin.XPSP2-8246C1C43\Application Data\m\shared\LogCleaner 5.8.zip

D:\Documents and Settings\Admin.XPSP2-8246C1C43\Application Data\m\shared\Magic_Calendar_Maker_2.6.zip

D:\Documents and Settings\Admin.XPSP2-8246C1C43\Application Data\m\shared\MailCrawl_1.17.zip

D:\Documents and Settings\Admin.XPSP2-8246C1C43\Application Data\m\shared\MB Free Egyptian Astrology 1.85.zip

D:\Documents and Settings\Admin.XPSP2-8246C1C43\Application Data\m\shared\Memorizer_eXP_5.5_Cracked.zip

D:\Documents and Settings\Admin.XPSP2-8246C1C43\Application Data\m\shared\Mercedes Benz W221 Screensaver 1.zip

D:\Documents and Settings\Admin.XPSP2-8246C1C43\Application Data\m\shared\Military_Sokoban_1.1.zip

D:\Documents and Settings\Admin.XPSP2-8246C1C43\Application Data\m\shared\mNewsCenter_1.zip

D:\Documents and Settings\Admin.XPSP2-8246C1C43\Application Data\m\shared\Movkit_DVD_to_PSP_Ripper_4.0_build_20070318.zip

D:\Documents and Settings\Admin.XPSP2-8246C1C43\Application Data\m\shared\MySQL_Delete_(Remove)_Duplicate_Entries_Software_7.0_Cracked.zip

D:\Documents and Settings\Admin.XPSP2-8246C1C43\Application Data\m\shared\NagMe 1.2.zip

D:\Documents and Settings\Admin.XPSP2-8246C1C43\Application Data\m\shared\NestedQuote Remover 0.7.18.zip

D:\Documents and Settings\Admin.XPSP2-8246C1C43\Application Data\m\shared\Norpath_Elements_Designer_3.2_build_390.zip

D:\Documents and Settings\Admin.XPSP2-8246C1C43\Application Data\m\shared\Novell_GroupWise_Messenger_3.0.zip

D:\Documents and Settings\Admin.XPSP2-8246C1C43\Application Data\m\shared\Okoker RM to AVI DIVX WMV MPEG VCD DVD Converter & Burner 3.7 Cracked.zip

D:\Documents and Settings\Admin.XPSP2-8246C1C43\Application Data\m\shared\PageHelper 1.0.zip

D:\Documents and Settings\Admin.XPSP2-8246C1C43\Application Data\m\shared\PasteItIn 1.2 [Key].zip

D:\Documents and Settings\Admin.XPSP2-8246C1C43\Application Data\m\shared\PDF Vista Workstation Edition 6.0.0.6200.zip

D:\Documents and Settings\Admin.XPSP2-8246C1C43\Application Data\m\shared\PengYou Word Bin 1.2.zip

D:\Documents and Settings\Admin.XPSP2-8246C1C43\Application Data\m\shared\PhotoSelector_1.0.zip

D:\Documents and Settings\Admin.XPSP2-8246C1C43\Application Data\m\shared\PlasticSniffer_1.2.zip

D:\Documents and Settings\Admin.XPSP2-8246C1C43\Application Data\m\shared\Probability Calculator 1.0.zip

D:\Documents and Settings\Admin.XPSP2-8246C1C43\Application Data\m\shared\Program Booster 1.0.7.zip

D:\Documents and Settings\Admin.XPSP2-8246C1C43\Application Data\m\shared\Promosoft Software Submitter 1.2.1 (Crack).zip

D:\Documents and Settings\Admin.XPSP2-8246C1C43\Application Data\m\shared\Protect EXE 0.4a Beta.zip

D:\Documents and Settings\Admin.XPSP2-8246C1C43\Application Data\m\shared\ReadCheck_1.1.zip

D:\Documents and Settings\Admin.XPSP2-8246C1C43\Application Data\m\shared\Receipt_Book_Manager_6.8.4.zip

D:\Documents and Settings\Admin.XPSP2-8246C1C43\Application Data\m\shared\Roman_Numeral_Convertor_1.0.zip

D:\Documents and Settings\Admin.XPSP2-8246C1C43\Application Data\m\shared\Scales and Chords 1.0.zip

D:\Documents and Settings\Admin.XPSP2-8246C1C43\Application Data\m\shared\Scrape_to_PDF_1.0.zip

D:\Documents and Settings\Admin.XPSP2-8246C1C43\Application Data\m\shared\Script Sentry 2.7.1.zip

D:\Documents and Settings\Admin.XPSP2-8246C1C43\Application Data\m\shared\SearchMulti 1.0.zip

D:\Documents and Settings\Admin.XPSP2-8246C1C43\Application Data\m\shared\Security_Department_1.9_Serial.zip

D:\Documents and Settings\Admin.XPSP2-8246C1C43\Application Data\m\shared\Setup_Builder_6.03_[Key+Serial].zip

D:\Documents and Settings\Admin.XPSP2-8246C1C43\Application Data\m\shared\Silentnight Inspector 3.3.19.zip

D:\Documents and Settings\Admin.XPSP2-8246C1C43\Application Data\m\shared\SimW_1.2.zip

D:\Documents and Settings\Admin.XPSP2-8246C1C43\Application Data\m\shared\SmartVersion_1.15_RC_beta.zip

D:\Documents and Settings\Admin.XPSP2-8246C1C43\Application Data\m\shared\Speed DVD Creator 4.0.42.1.zip

D:\Documents and Settings\Admin.XPSP2-8246C1C43\Application Data\m\shared\StorageSafe_1.2.0.1210_(Serial).zip

D:\Documents and Settings\Admin.XPSP2-8246C1C43\Application Data\m\shared\Taango_2.zip

D:\Documents and Settings\Admin.XPSP2-8246C1C43\Application Data\m\shared\TabMail_2.7.18.17_KeyGen.zip

D:\Documents and Settings\Admin.XPSP2-8246C1C43\Application Data\m\shared\Tangram 1.0.zip

D:\Documents and Settings\Admin.XPSP2-8246C1C43\Application Data\m\shared\TCAD for Delphi 2006.zip

D:\Documents and Settings\Admin.XPSP2-8246C1C43\Application Data\m\shared\Texas Hold'em Calculator 2.6.zip

D:\Documents and Settings\Admin.XPSP2-8246C1C43\Application Data\m\shared\The_Gadgetbar_Toolbar_for_Firefox_1.5.0.12.zip

D:\Documents and Settings\Admin.XPSP2-8246C1C43\Application Data\m\shared\The_Sims_2_Mommy's_Lipstick_skin.zip

D:\Documents and Settings\Admin.XPSP2-8246C1C43\Application Data\m\shared\TimeLogger 1.0.2.zip

D:\Documents and Settings\Admin.XPSP2-8246C1C43\Application Data\m\shared\Tiper_1.6.zip

D:\Documents and Settings\Admin.XPSP2-8246C1C43\Application Data\m\shared\Tom_Clancy's_Splinter_Cell_patch_(European)_1.2.zip

D:\Documents and Settings\Admin.XPSP2-8246C1C43\Application Data\m\shared\Travel Dictionary Spanish HPC 2.7.zip

D:\Documents and Settings\Admin.XPSP2-8246C1C43\Application Data\m\shared\TrayIcon_Pro_1.4.127_SR1.zip

D:\Documents and Settings\Admin.XPSP2-8246C1C43\Application Data\m\shared\TremorSkimmer 1.1.zip

D:\Documents and Settings\Admin.XPSP2-8246C1C43\Application Data\m\shared\Unreal_Tournament_2004_DOM_Parallel_map.zip

D:\Documents and Settings\Admin.XPSP2-8246C1C43\Application Data\m\shared\US_and_Counties_Map_Locator_1.0_KeyGen.zip

D:\Documents and Settings\Admin.XPSP2-8246C1C43\Application Data\m\shared\V-NewsTicker_2.1.zip

D:\Documents and Settings\Admin.XPSP2-8246C1C43\Application Data\m\shared\VAlarm_1.0_(Patch).zip

D:\Documents and Settings\Admin.XPSP2-8246C1C43\Application Data\m\shared\Video to WMV Redactor 1.02.zip

D:\Documents and Settings\Admin.XPSP2-8246C1C43\Application Data\m\shared\Vocal_Imitation_1.0.zip

D:\Documents and Settings\Admin.XPSP2-8246C1C43\Application Data\m\shared\VrmlPad 2.1.zip

D:\Documents and Settings\Admin.XPSP2-8246C1C43\Application Data\m\shared\Weather Underground Vista Gadget 1.1.zip

D:\Documents and Settings\Admin.XPSP2-8246C1C43\Application Data\m\shared\WebCollect_Toolbar_1.zip

D:\Documents and Settings\Admin.XPSP2-8246C1C43\Application Data\m\shared\Windows Password Cracker 3.04.zip

D:\Documents and Settings\Admin.XPSP2-8246C1C43\Application Data\m\shared\Wizardbrush_6.7.3.2.zip

D:\Documents and Settings\Admin.XPSP2-8246C1C43\Application Data\m\shared\XBC_Xbox_Connect_5.1.5.293.zip

D:\Documents and Settings\Admin.XPSP2-8246C1C43\Application Data\m\shared\Xilisoft AVI to DVD Converter 3.0.36.0502.zip

D:\Documents and Settings\Admin.XPSP2-8246C1C43\Application Data\m\srvlist.oct

D:\WINDOWS\system32\ban_list.txt

D:\WINDOWS\system32\drivers\downld

D:\WINDOWS\system32\drivers\downld\100140.exe

D:\WINDOWS\system32\drivers\downld\100203.exe

D:\WINDOWS\system32\drivers\downld\100765.exe

D:\WINDOWS\system32\drivers\downld\102218.exe

D:\WINDOWS\system32\drivers\downld\102640.exe

D:\WINDOWS\system32\drivers\downld\105265.exe

D:\WINDOWS\system32\drivers\downld\107562.exe

D:\WINDOWS\system32\drivers\downld\110296.exe

D:\WINDOWS\system32\drivers\downld\111109.exe

D:\WINDOWS\system32\drivers\downld\111640.exe

D:\WINDOWS\system32\drivers\downld\11271953.exe

D:\WINDOWS\system32\drivers\downld\113375.exe

D:\WINDOWS\system32\drivers\downld\11346343.exe

D:\WINDOWS\system32\drivers\downld\11347953.exe

D:\WINDOWS\system32\drivers\downld\11379640.exe

D:\WINDOWS\system32\drivers\downld\11382906.exe

D:\WINDOWS\system32\drivers\downld\113875.exe

D:\WINDOWS\system32\drivers\downld\11401046.exe

D:\WINDOWS\system32\drivers\downld\11420875.exe

D:\WINDOWS\system32\drivers\downld\11424203.exe

D:\WINDOWS\system32\drivers\downld\11476218.exe

D:\WINDOWS\system32\drivers\downld\115125.exe

D:\WINDOWS\system32\drivers\downld\11559671.exe

D:\WINDOWS\system32\drivers\downld\11567968.exe

D:\WINDOWS\system32\drivers\downld\116640.exe

D:\WINDOWS\system32\drivers\downld\117390.exe

D:\WINDOWS\system32\drivers\downld\119265.exe

D:\WINDOWS\system32\drivers\downld\120671.exe

D:\WINDOWS\system32\drivers\downld\122000.exe

D:\WINDOWS\system32\drivers\downld\122187.exe

D:\WINDOWS\system32\drivers\downld\124000.exe

D:\WINDOWS\system32\drivers\downld\124203.exe

D:\WINDOWS\system32\drivers\downld\124687.exe

D:\WINDOWS\system32\drivers\downld\127203.exe

D:\WINDOWS\system32\drivers\downld\145578.exe

D:\WINDOWS\system32\drivers\downld\14812828.exe

D:\WINDOWS\system32\drivers\downld\14816109.exe

D:\WINDOWS\system32\drivers\downld\14821015.exe

D:\WINDOWS\system32\drivers\downld\14822593.exe

D:\WINDOWS\system32\drivers\downld\14832281.exe

D:\WINDOWS\system32\drivers\downld\14834671.exe

D:\WINDOWS\system32\drivers\downld\14835671.exe

D:\WINDOWS\system32\drivers\downld\14853531.exe

D:\WINDOWS\system32\drivers\downld\14854531.exe

D:\WINDOWS\system32\drivers\downld\14857562.exe

D:\WINDOWS\system32\drivers\downld\14872562.exe

D:\WINDOWS\system32\drivers\downld\14872609.exe

D:\WINDOWS\system32\drivers\downld\14875296.exe

D:\WINDOWS\system32\drivers\downld\14912093.exe

D:\WINDOWS\system32\drivers\downld\14926546.exe

D:\WINDOWS\system32\drivers\downld\14947843.exe

D:\WINDOWS\system32\drivers\downld\14952156.exe

D:\WINDOWS\system32\drivers\downld\14955421.exe

D:\WINDOWS\system32\drivers\downld\15005562.exe

D:\WINDOWS\system32\drivers\downld\15012062.exe

D:\WINDOWS\system32\drivers\downld\15021437.exe

D:\WINDOWS\system32\drivers\downld\151390.exe

D:\WINDOWS\system32\drivers\downld\151500.exe

D:\WINDOWS\system32\drivers\downld\15153625.exe

D:\WINDOWS\system32\drivers\downld\15164562.exe

D:\WINDOWS\system32\drivers\downld\153656.exe

D:\WINDOWS\system32\drivers\downld\154484.exe

D:\WINDOWS\system32\drivers\downld\157109.exe

D:\WINDOWS\system32\drivers\downld\159546.exe

D:\WINDOWS\system32\drivers\downld\160500.exe

D:\WINDOWS\system32\drivers\downld\160859.exe

D:\WINDOWS\system32\drivers\downld\162437.exe

D:\WINDOWS\system32\drivers\downld\162984.exe

D:\WINDOWS\system32\drivers\downld\163796.exe

D:\WINDOWS\system32\drivers\downld\164406.exe

D:\WINDOWS\system32\drivers\downld\165250.exe

D:\WINDOWS\system32\drivers\downld\167203.exe

D:\WINDOWS\system32\drivers\downld\167609.exe

D:\WINDOWS\system32\drivers\downld\169187.exe

D:\WINDOWS\system32\drivers\downld\170171.exe

D:\WINDOWS\system32\drivers\downld\171468.exe

D:\WINDOWS\system32\drivers\downld\173828.exe

D:\WINDOWS\system32\drivers\downld\179375.exe

D:\WINDOWS\system32\drivers\downld\190000.exe

D:\WINDOWS\system32\drivers\downld\193031.exe

D:\WINDOWS\system32\drivers\downld\194750.exe

D:\WINDOWS\system32\drivers\downld\198765.exe

D:\WINDOWS\system32\drivers\downld\201031.exe

D:\WINDOWS\system32\drivers\downld\201187.exe

D:\WINDOWS\system32\drivers\downld\203093.exe

D:\WINDOWS\system32\drivers\downld\205015.exe

D:\WINDOWS\system32\drivers\downld\206156.exe

D:\WINDOWS\system32\drivers\downld\207125.exe

D:\WINDOWS\system32\drivers\downld\211921.exe

D:\WINDOWS\system32\drivers\downld\212859.exe

D:\WINDOWS\system32\drivers\downld\213531.exe

D:\WINDOWS\system32\drivers\downld\216812.exe

D:\WINDOWS\system32\drivers\downld\220265.exe

D:\WINDOWS\system32\drivers\downld\220625.exe

D:\WINDOWS\system32\drivers\downld\224890.exe

D:\WINDOWS\system32\drivers\downld\250156.exe

D:\WINDOWS\system32\drivers\downld\254250.exe

D:\WINDOWS\system32\drivers\downld\260953.exe

D:\WINDOWS\system32\drivers\downld\29639484.exe

D:\WINDOWS\system32\drivers\downld\29648031.exe

D:\WINDOWS\system32\drivers\downld\29650062.exe

D:\WINDOWS\system32\drivers\downld\29679703.exe

D:\WINDOWS\system32\drivers\downld\29683468.exe

D:\WINDOWS\system32\drivers\downld\296984.exe

D:\WINDOWS\system32\drivers\downld\29718234.exe

D:\WINDOWS\system32\drivers\downld\29753484.exe

D:\WINDOWS\system32\drivers\downld\29757687.exe

D:\WINDOWS\system32\drivers\downld\29760765.exe

D:\WINDOWS\system32\drivers\downld\29827546.exe

D:\WINDOWS\system32\drivers\downld\299125.exe

D:\WINDOWS\system32\drivers\downld\29960437.exe

D:\WINDOWS\system32\drivers\downld\29974453.exe

D:\WINDOWS\system32\drivers\downld\300765.exe

D:\WINDOWS\system32\drivers\downld\302296.exe

D:\WINDOWS\system32\drivers\downld\303000.exe

D:\WINDOWS\system32\drivers\downld\304359.exe

D:\WINDOWS\system32\drivers\downld\308828.exe

D:\WINDOWS\system32\drivers\downld\309140.exe

D:\WINDOWS\system32\drivers\downld\310375.exe

D:\WINDOWS\system32\drivers\downld\310671.exe

D:\WINDOWS\system32\drivers\downld\313843.exe

D:\WINDOWS\system32\drivers\downld\322343.exe

D:\WINDOWS\system32\drivers\downld\334796.exe

D:\WINDOWS\system32\drivers\downld\343828.exe

D:\WINDOWS\system32\drivers\downld\345312.exe

D:\WINDOWS\system32\drivers\downld\349062.exe

D:\WINDOWS\system32\drivers\downld\352718.exe

D:\WINDOWS\system32\drivers\downld\355234.exe

D:\WINDOWS\system32\drivers\downld\356453.exe

D:\WINDOWS\system32\drivers\downld\357781.exe

D:\WINDOWS\system32\drivers\downld\359750.exe

D:\WINDOWS\system32\drivers\downld\364437.exe

D:\WINDOWS\system32\drivers\downld\366125.exe

D:\WINDOWS\system32\drivers\downld\366250.exe

D:\WINDOWS\system32\drivers\downld\369703.exe

D:\WINDOWS\system32\drivers\downld\371859.exe

D:\WINDOWS\system32\drivers\downld\372078.exe

D:\WINDOWS\system32\drivers\downld\379843.exe

D:\WINDOWS\system32\drivers\downld\460312.exe

D:\WINDOWS\system32\drivers\downld\480203.exe

D:\WINDOWS\system32\drivers\downld\483015.exe

D:\WINDOWS\system32\drivers\downld\55937.exe

D:\WINDOWS\system32\drivers\downld\57687.exe

D:\WINDOWS\system32\drivers\downld\58609.exe

D:\WINDOWS\system32\drivers\downld\60218.exe

D:\WINDOWS\system32\drivers\downld\634359.exe

D:\WINDOWS\system32\drivers\downld\63812.exe

D:\WINDOWS\system32\drivers\downld\643265.exe

D:\WINDOWS\system32\drivers\downld\64703.exe

D:\WINDOWS\system32\drivers\downld\64765.exe

D:\WINDOWS\system32\drivers\downld\66031.exe

D:\WINDOWS\system32\drivers\downld\66437.exe

D:\WINDOWS\system32\drivers\downld\66718.exe

D:\WINDOWS\system32\drivers\downld\69906.exe

D:\WINDOWS\system32\drivers\downld\70812.exe

D:\WINDOWS\system32\drivers\downld\71437.exe

D:\WINDOWS\system32\drivers\downld\72031.exe

D:\WINDOWS\system32\drivers\downld\72062.exe

D:\WINDOWS\system32\drivers\downld\72875.exe

D:\WINDOWS\system32\drivers\downld\75828.exe

D:\WINDOWS\system32\drivers\downld\75937.exe

D:\WINDOWS\system32\drivers\downld\76000.exe

D:\WINDOWS\system32\drivers\downld\76890.exe

D:\WINDOWS\system32\drivers\downld\77500.exe

D:\WINDOWS\system32\drivers\downld\78640.exe

D:\WINDOWS\system32\drivers\downld\79015.exe

D:\WINDOWS\system32\drivers\downld\79093.exe

D:\WINDOWS\system32\drivers\downld\79750.exe

D:\WINDOWS\system32\drivers\downld\80109.exe

D:\WINDOWS\system32\drivers\downld\80640.exe

D:\WINDOWS\system32\drivers\downld\80718.exe

D:\WINDOWS\system32\drivers\downld\82265.exe

D:\WINDOWS\system32\drivers\downld\82375.exe

D:\WINDOWS\system32\drivers\downld\82828.exe

D:\WINDOWS\system32\drivers\downld\83328.exe

D:\WINDOWS\system32\drivers\downld\83890.exe

D:\WINDOWS\system32\drivers\downld\83921.exe

D:\WINDOWS\system32\drivers\downld\84328.exe

D:\WINDOWS\system32\drivers\downld\84703.exe

D:\WINDOWS\system32\drivers\downld\86718.exe

D:\WINDOWS\system32\drivers\downld\87296.exe

D:\WINDOWS\system32\drivers\downld\88937.exe

D:\WINDOWS\system32\drivers\downld\89390.exe

D:\WINDOWS\system32\drivers\downld\89968.exe

D:\WINDOWS\system32\drivers\downld\90500.exe

D:\WINDOWS\system32\drivers\downld\91515.exe

D:\WINDOWS\system32\drivers\downld\92562.exe

D:\WINDOWS\system32\drivers\downld\92843.exe

D:\WINDOWS\system32\drivers\downld\93000.exe

D:\WINDOWS\system32\drivers\downld\93500.exe

D:\WINDOWS\system32\drivers\downld\93687.exe

D:\WINDOWS\system32\drivers\downld\94359.exe

D:\WINDOWS\system32\drivers\downld\94921.exe

D:\WINDOWS\system32\drivers\downld\95000.exe

D:\WINDOWS\system32\drivers\downld\95828.exe

D:\WINDOWS\system32\drivers\downld\95875.exe

D:\WINDOWS\system32\drivers\downld\98296.exe

D:\WINDOWS\system32\drivers\srosa.sys

D:\WINDOWS\system32\drivers\winfilse.exe

D:\WINDOWS\system32\mdelk.exe

D:\WINDOWS\system32\wintems.exe

F:\autorun.inf

F:\nideiect.com

G:\autorun.inf

G:\nideiect.com

 

.

((((((((((((((((((((((((((((((((((((((( Pilotes/Services )))))))))))))))))))))))))))))))))))))))))))))))))

.

 

-------\Service_SROSA

-------\Legacy_SROSA

 

 

((((((((((((((((((((((((((((( Fichiers créés du 2008-09-24 au 2008-10-24 ))))))))))))))))))))))))))))))))))))

.

 

2008-10-24 21:46 . 2008-10-24 21:46 <REP> d--hs---- D:\FOUND.001

2008-10-21 20:00 . 2008-10-21 20:00 <REP> d--hs---- D:\FOUND.000

2008-10-06 22:20 . 2008-10-06 22:20 0 --a------ D:\WINDOWS\nsreg.dat

2008-10-06 21:34 . 2008-10-06 21:34 <REP> d-------- D:\Program Files\SAGEM

2008-10-06 21:33 . 2008-10-06 21:33 <REP> d-------- D:\Program Files\Securitoo

2008-10-05 21:00 . 2008-09-08 23:38 88,576 --a------ D:\WINDOWS\system32\AntiXPVSTFix.exe

2008-10-05 21:00 . 2008-10-01 15:51 87,552 --a------ D:\WINDOWS\system32\VACFix.exe

2008-10-05 21:00 . 2008-09-19 12:26 82,944 --a------ D:\WINDOWS\system32\o4Patch.exe

2008-10-05 21:00 . 2008-05-18 21:40 82,944 --a------ D:\WINDOWS\system32\IEDFix.exe

2008-10-05 21:00 . 2008-09-19 12:26 82,944 --a------ D:\WINDOWS\system32\IEDFix.C.exe

2008-10-05 21:00 . 2008-08-18 12:19 82,432 --a------ D:\WINDOWS\system32\404Fix.exe

2008-10-05 20:59 . 2007-09-06 00:22 289,144 --a------ D:\WINDOWS\system32\VCCLSID.exe

2008-10-05 20:59 . 2006-04-27 17:49 288,417 --a------ D:\WINDOWS\system32\SrchSTS.exe

2008-10-05 20:59 . 2003-06-05 21:13 53,248 --a------ D:\WINDOWS\system32\Process.exe

2008-10-05 20:59 . 2004-07-31 18:50 51,200 --a------ D:\WINDOWS\system32\dumphive.exe

2008-10-05 20:59 . 2007-10-04 00:36 25,600 --a------ D:\WINDOWS\system32\WS2Fix.exe

2008-10-05 20:31 . 2008-10-05 21:00 1,696 --a------ D:\WINDOWS\system32\tmp.reg

2008-10-02 13:07 . 2008-10-02 13:07 116,740 --a------ D:\WINDOWS\system32\msxml71.0ll

2008-09-26 11:31 . 2008-09-26 11:31 8 --a------ D:\Documents and Settings\Admin.XPSP2-8246C1C43\Application Data\usb.dat

 

.

(((((((((((((((((((((((((((((((((( Compte-rendu de Find3M ))))))))))))))))))))))))))))))))))))))))))))))))

.

2008-09-15 15:39 1,846,144 ----a-w D:\WINDOWS\system32\win32k.sys

2008-09-15 15:39 1,846,144 ------w D:\WINDOWS\system32\dllcache\win32k.sys

2008-08-28 10:04 333,056 ----a-w D:\WINDOWS\system32\drivers\srv.sys

2008-08-28 10:04 333,056 ------w D:\WINDOWS\system32\dllcache\srv.sys

2008-08-19 09:30 18,432 ------w D:\WINDOWS\system32\dllcache\iedw.exe

2008-08-14 13:44 2,182,400 ----a-w D:\WINDOWS\system32\ntoskrnl.exe

2008-08-14 13:44 2,182,400 ------w D:\WINDOWS\system32\dllcache\ntoskrnl.exe

2008-08-14 13:44 2,138,112 ------w D:\WINDOWS\system32\dllcache\ntkrnlmp.exe

2008-08-14 13:44 2,059,776 ----a-w D:\WINDOWS\system32\ntkrnlpa.exe

2008-08-14 13:44 2,059,776 ------w D:\WINDOWS\system32\dllcache\ntkrnlpa.exe

2008-08-14 13:44 2,017,792 ------w D:\WINDOWS\system32\dllcache\ntkrpamp.exe

2008-08-14 09:51 138,368 ------w D:\WINDOWS\system32\dllcache\afd.sys

2008-06-01 16:49 44,614 ----a-w D:\Documents and Settings\Admin.XPSP2-8246C1C43\Application Data\mdb.bin

2008-03-18 17:15 3,858,985 ----a-w D:\Program Files\eMule0.48a-Installer.exe

2007-12-23 17:00 18,764,248 ----a-w D:\Program Files\setupfre.exe

2007-11-01 19:49 13,411,824 ----a-w D:\Program Files\Google_Earth_BZXD.exe

.

 

((((((((((((((((((((((((((((((((( Points de chargement Reg ))))))))))))))))))))))))))))))))))))))))))))))))

.

.

*Note* les éléments vides & les éléments initiaux légitimes ne sont pas listés

REGEDIT4

 

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]

"BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}"="D:\Program Files\Fichiers communs\Ahead\Lib\NMBgMonitor.exe" [2007-06-27 152872]

"AnyDVD"="D:\Program Files\SlySoft\AnyDVD\AnyDVDtray.exe" [2008-04-11 2075584]

 

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]

"F-Secure Manager"="D:\Program Files\Orange\AntivirusFirewall\Common\FSM32.EXE" [2008-10-24 176177]

"F-Secure TNB"="D:\Program Files\Orange\AntivirusFirewall\FSGUI\TNBUtil.exe" [2008-10-24 733184]

"QuickTime Task"="D:\Program Files\QuickTime\qttask.exe" [2008-01-31 385024]

"Adobe Reader Speed Launcher"="D:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe" [2008-01-11 39792]

 

D:\Documents and Settings\All Users.WINDOWS\Menu D‚marrer\Programmes\D‚marrage\

Microsoft Recherche acc‚l‚r‚e.lnk - D:\Program Files\Microsoft Office\Office\FINDFAST.EXE [1997-11-19 111376]

D‚marrage d'Office.lnk - D:\Program Files\Microsoft Office\Office\OSA.EXE [1997-11-19 51984]

 

[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\policies\explorer]

"NoSMHelp"= 1 (0x1)

"MemCheckBoxInRunDlg"= 1 (0x1)

"NoSMBalloonTip"= 1 (0x1)

"NoDesktopCleanupWizard"= 1 (0x1)

"NoWelcomeScreen"= 1 (0x1)

"NoAutoUpdate"= 1 (0x1)

 

[HKEY_USERS\.default\software\microsoft\windows\currentversion\policies\explorer]

"NoSMHelp"= 1 (0x1)

"MemCheckBoxInRunDlg"= 1 (0x1)

"NoSMBalloonTip"= 1 (0x1)

"NoDesktopCleanupWizard"= 1 (0x1)

"NoWelcomeScreen"= 1 (0x1)

"NoAutoUpdate"= 1 (0x1)

 

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\beep.sys]

@="beep"

 

[HKEY_LOCAL_MACHINE\software\microsoft\security center]

"AntiVirusOverride"=dword:00000001

"FirewallOverride"=dword:00000001

 

[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile]

"EnableFirewall"= 0 (0x0)

"DisableUnicastResponsesToMulticastBroadcast"= 0 (0x0)

 

[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List]

"%windir%\\system32\\sessmgr.exe"=

"D:\\Program Files\\eMule\\EMULE.EXE"=

"D:\\Program Files\\iTunes\\iTunes.exe"=

 

R3 SOFTXG;YAMAHA XG SoftSynthesizer;D:\WINDOWS\system32\drivers\sxgxgwdm.sys [2002-05-22 966784]

S1 F-Secure HIPS;F-Secure HIPS;D:\Program Files\Orange\AntivirusFirewall\HIPS\fshs.sys [ ]

S3 F-Secure Gatekeeper;F-Secure Gatekeeper;D:\Program Files\Orange\AntivirusFirewall\Anti-Virus\minifilter\fsgk.sys [ ]

S4 F-Secure Filter;F-Secure File System Filter;D:\Program Files\Orange\AntivirusFirewall\Anti-Virus\Win2K\FSfilter.sys [ ]

S4 F-Secure Recognizer;F-Secure File System Recognizer;D:\Program Files\Orange\AntivirusFirewall\Anti-Virus\Win2K\FSrec.sys [ ]

S4 FSFW;F-Secure Firewall Driver;D:\WINDOWS\system32\drivers\fsdfw.sys [ ]

.

Contenu du dossier 'Tâches planifiées'

 

2008-10-03 D:\WINDOWS\Tasks\AppleSoftwareUpdate.job

- D:\Program Files\Apple Software Update\SoftwareUpdate.exe [2007-08-29 14:57]

.

- - - - ORPHELINS SUPPRIMES - - - -

 

ShellExecuteHooks-{9C0ADB68-353A-61DD-ED09-1D8003A611CB} - (no file)

Notify-WgaLogon - (no file)

MSConfigStartUp-WOOKIT - D:\PROGRA~1\WANADOO\Shell.exe

MSConfigStartUp-WOOTASKBARICON - D:\PROGRA~1\WANADOO\GestMaj.exe

MSConfigStartUp-WOOWATCH - D:\PROGRA~1\WANADOO\Watch.exe

 

 

.

------- Examen supplémentaire -------

.

FireFox -: Profile - D:\Documents and Settings\Admin.XPSP2-8246C1C43\Application Data\Mozilla\Firefox\Profiles\hr8abcv1.default\

FireFox -: prefs.js - STARTUP.HOMEPAGE - hxxp://www.orange.fr/

FF -: plugin - D:\Program Files\iTunes\Mozilla Plugins\npitunes.dll

FF -: plugin - D:\Program Files\Yahoo!\Common\npyaxmpb.dll

.

 

**************************************************************************

 

catchme 0.3.1367 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net

Rootkit scan 2008-10-24 22:42:29

Windows 5.1.2600 Service Pack 2 FAT NTAPI

 

Recherche de processus cachés ...

 

Recherche d'éléments en démarrage automatique cachés ...

 

Recherche de fichiers cachés ...

 

Scan terminé avec succès

Fichiers cachés: 0

 

**************************************************************************

 

[HKEY_LOCAL_MACHINE\system\ControlSet001\Services\srosa]

 

.

Heure de fin: 2008-10-24 22:43:40

ComboFix2.txt 2008-06-16 16:40:48

ComboFix-quarantined-files.txt 2008-10-24 20:43:40

 

Avant-CF: 8,552,824,832 octets libres

Après-CF: 8,586,805,248 octets libres

 

475 --- E O F --- 2008-10-16 06:51:48

Apollo Devil Member !

Apollo

Posté(e)
Posté(e)

Je vais te demander de bien vouloir utiliser le bouton "Répondre" qui se trouve entre "Flash" et "Nouveau" stp, ceci afin de ne pas citer chaque fois le post précédent, ce sera plus clair. Merci. :P

 

apu-5-hm057e6bh3h67c4d4b965l93.jpg

musico Member

musico

Posté(e)
  • Auteur
Posté(e)

ComboFix 08-10-24.02 - Admin 2008-10-24 22:39:53.6 - FAT32x86

Microsoft Windows XP Professionnel 5.1.2600.2.1252.1.1036.18.367 [GMT 2:00]

 

AVERTISSEMENT - LA CONSOLE DE RÉCUPÉRATION N'EST PAS INSTALLÉE SUR CETTE MACHINE !!

.

 

(((((((((((((((((((((((((((((((((((( Autres suppressions ))))))))))))))))))))))))))))))))))))))))))))))))

.

 

D:\Documents and Settings\Admin.XPSP2-8246C1C43\Application Data\m

D:\Documents and Settings\Admin.XPSP2-8246C1C43\Application Data\m\data.oct

D:\Documents and Settings\Admin.XPSP2-8246C1C43\Application Data\m\flec006.exe

D:\Documents and Settings\Admin.XPSP2-8246C1C43\Application Data\m\list.oct

D:\Documents and Settings\Admin.XPSP2-8246C1C43\Application Data\m\shared\123_DVD_Converter_4.6.1.6.zip

D:\Documents and Settings\Admin.XPSP2-8246C1C43\Application Data\m\shared\Able Web Editor Demo 1.0.2.zip

D:\Documents and Settings\Admin.XPSP2-8246C1C43\Application Data\m\shared\AblePayments Suite for AbleCommerce 1.5.zip

D:\Documents and Settings\Admin.XPSP2-8246C1C43\Application Data\m\shared\abylon SHAREDDRIVE 6.5.zip

D:\Documents and Settings\Admin.XPSP2-8246C1C43\Application Data\m\shared\ACID Music Studio 7.0a build 157.zip

D:\Documents and Settings\Admin.XPSP2-8246C1C43\Application Data\m\shared\AlphaButton 2.2.1.zip

D:\Documents and Settings\Admin.XPSP2-8246C1C43\Application Data\m\shared\Auto-Mate_Add-in_for_Outlook_1.2.zip

D:\Documents and Settings\Admin.XPSP2-8246C1C43\Application Data\m\shared\Awesome_Cloudscapes_Screen_Saver_1.0.zip

D:\Documents and Settings\Admin.XPSP2-8246C1C43\Application Data\m\shared\Barcode_Prime_Image_Generator_for_Codabar_1.1_Patch.zip

D:\Documents and Settings\Admin.XPSP2-8246C1C43\Application Data\m\shared\Beep 1.0.zip

D:\Documents and Settings\Admin.XPSP2-8246C1C43\Application Data\m\shared\Bibble_Professional_4.90d.zip

D:\Documents and Settings\Admin.XPSP2-8246C1C43\Application Data\m\shared\BirthdayRemember_6.3.zip

D:\Documents and Settings\Admin.XPSP2-8246C1C43\Application Data\m\shared\Blog_Auto_Machine_2.0.zip

D:\Documents and Settings\Admin.XPSP2-8246C1C43\Application Data\m\shared\Commandos_Strike_Force_demo.zip

D:\Documents and Settings\Admin.XPSP2-8246C1C43\Application Data\m\shared\CoolPSettings_3.0g.zip

D:\Documents and Settings\Admin.XPSP2-8246C1C43\Application Data\m\shared\Create_Ringtone_4.93.zip

D:\Documents and Settings\Admin.XPSP2-8246C1C43\Application Data\m\shared\Crossword_Challenge_1.0.zip

D:\Documents and Settings\Admin.XPSP2-8246C1C43\Application Data\m\shared\CVP_optimizer_1.0.6_Patch.zip

D:\Documents and Settings\Admin.XPSP2-8246C1C43\Application Data\m\shared\CZ Print Deleter 1.0 (Crack).zip

D:\Documents and Settings\Admin.XPSP2-8246C1C43\Application Data\m\shared\Dark Nature Screensaver 1.01.zip

D:\Documents and Settings\Admin.XPSP2-8246C1C43\Application Data\m\shared\DesktopPlayer 2.12.zip

D:\Documents and Settings\Admin.XPSP2-8246C1C43\Application Data\m\shared\Digital_Alarm_Clock_2.11.zip

D:\Documents and Settings\Admin.XPSP2-8246C1C43\Application Data\m\shared\Directory Update 1.1 [With Crack].zip

D:\Documents and Settings\Admin.XPSP2-8246C1C43\Application Data\m\shared\Directory_Compare_and_Synchronize_2.5.7.zip

D:\Documents and Settings\Admin.XPSP2-8246C1C43\Application Data\m\shared\Doom_95_demo.zip

D:\Documents and Settings\Admin.XPSP2-8246C1C43\Application Data\m\shared\Dr.Windows_1.04.01.zip

D:\Documents and Settings\Admin.XPSP2-8246C1C43\Application Data\m\shared\Dr_Parse_VIP_1.zip

D:\Documents and Settings\Admin.XPSP2-8246C1C43\Application Data\m\shared\DriverMAGIC_1.1.0.zip

D:\Documents and Settings\Admin.XPSP2-8246C1C43\Application Data\m\shared\Dunnabyte Alarm 2008 3.01.zip

D:\Documents and Settings\Admin.XPSP2-8246C1C43\Application Data\m\shared\DVD_Ripper_to_MPEG_2.2.zip

D:\Documents and Settings\Admin.XPSP2-8246C1C43\Application Data\m\shared\ECalcPad_1.0.zip

D:\Documents and Settings\Admin.XPSP2-8246C1C43\Application Data\m\shared\eDrum_MIDI_Mapper_1.0.zip

D:\Documents and Settings\Admin.XPSP2-8246C1C43\Application Data\m\shared\Email_Control_Center_1.0.zip

D:\Documents and Settings\Admin.XPSP2-8246C1C43\Application Data\m\shared\Envisioneer Express 3.0.zip

D:\Documents and Settings\Admin.XPSP2-8246C1C43\Application Data\m\shared\EquTranslator 2.0.zip

D:\Documents and Settings\Admin.XPSP2-8246C1C43\Application Data\m\shared\Europe_2000.1.zip

D:\Documents and Settings\Admin.XPSP2-8246C1C43\Application Data\m\shared\EZ_Wizard_3.02.zip

D:\Documents and Settings\Admin.XPSP2-8246C1C43\Application Data\m\shared\Fancy Fish 1.0 (With Crack).zip

D:\Documents and Settings\Admin.XPSP2-8246C1C43\Application Data\m\shared\Fast_Recorder_1.0.zip

D:\Documents and Settings\Admin.XPSP2-8246C1C43\Application Data\m\shared\Firearms_Collection_Manager_1.0.25.zip

D:\Documents and Settings\Admin.XPSP2-8246C1C43\Application Data\m\shared\Focus Photoeditor 5.1.1.zip

D:\Documents and Settings\Admin.XPSP2-8246C1C43\Application Data\m\shared\Friend_Blaster_Pro_4.1_Key+Serial.zip

D:\Documents and Settings\Admin.XPSP2-8246C1C43\Application Data\m\shared\FusionCoder 1.0.zip

D:\Documents and Settings\Admin.XPSP2-8246C1C43\Application Data\m\shared\Generic_Game_Engine_1.1.zip

D:\Documents and Settings\Admin.XPSP2-8246C1C43\Application Data\m\shared\Gravit_0.4.2.zip

D:\Documents and Settings\Admin.XPSP2-8246C1C43\Application Data\m\shared\H&H_Korea2Go_Talking_Phrase_Book_3.zip

D:\Documents and Settings\Admin.XPSP2-8246C1C43\Application Data\m\shared\HS_COM_1.1.zip

D:\Documents and Settings\Admin.XPSP2-8246C1C43\Application Data\m\shared\HTML_Markdown_2.1.zip

D:\Documents and Settings\Admin.XPSP2-8246C1C43\Application Data\m\shared\httpZip 3.8.4.zip

D:\Documents and Settings\Admin.XPSP2-8246C1C43\Application Data\m\shared\Hyperball Racing demo.zip

D:\Documents and Settings\Admin.XPSP2-8246C1C43\Application Data\m\shared\i5_iSeries_Solution_Sales_V5R3_Practice_Exam_Questions_1.0.zip

D:\Documents and Settings\Admin.XPSP2-8246C1C43\Application Data\m\shared\Ideal_Browser_Firefox_Edition_2.4.zip

D:\Documents and Settings\Admin.XPSP2-8246C1C43\Application Data\m\shared\IE_Registry_Manager_1.0.zip

D:\Documents and Settings\Admin.XPSP2-8246C1C43\Application Data\m\shared\Ini_Files_Manager_1.0.zip

D:\Documents and Settings\Admin.XPSP2-8246C1C43\Application Data\m\shared\Insult Generator 2.3.zip

D:\Documents and Settings\Admin.XPSP2-8246C1C43\Application Data\m\shared\Internet_Business_Promoter_(IBP)_9.7.1_[serial].zip

D:\Documents and Settings\Admin.XPSP2-8246C1C43\Application Data\m\shared\IPTunnelManager 1.4.zip

D:\Documents and Settings\Admin.XPSP2-8246C1C43\Application Data\m\shared\ISO Commander 1.6 build 043.zip

D:\Documents and Settings\Admin.XPSP2-8246C1C43\Application Data\m\shared\Kaspersky.Antivirus.5.0.388.Personal.Pro.Key.zip

D:\Documents and Settings\Admin.XPSP2-8246C1C43\Application Data\m\shared\Keyboard Extensions 1.0 build 53.zip

D:\Documents and Settings\Admin.XPSP2-8246C1C43\Application Data\m\shared\Life Organizer 1.0.zip

D:\Documents and Settings\Admin.XPSP2-8246C1C43\Application Data\m\shared\LingvoSoft_Talking_Dictionary_2007_Spanish_-_Korean_4.0.22_(Serial).zip

D:\Documents and Settings\Admin.XPSP2-8246C1C43\Application Data\m\shared\LogCleaner 5.8.zip

D:\Documents and Settings\Admin.XPSP2-8246C1C43\Application Data\m\shared\Magic_Calendar_Maker_2.6.zip

D:\Documents and Settings\Admin.XPSP2-8246C1C43\Application Data\m\shared\MailCrawl_1.17.zip

D:\Documents and Settings\Admin.XPSP2-8246C1C43\Application Data\m\shared\MB Free Egyptian Astrology 1.85.zip

D:\Documents and Settings\Admin.XPSP2-8246C1C43\Application Data\m\shared\Memorizer_eXP_5.5_Cracked.zip

D:\Documents and Settings\Admin.XPSP2-8246C1C43\Application Data\m\shared\Mercedes Benz W221 Screensaver 1.zip

D:\Documents and Settings\Admin.XPSP2-8246C1C43\Application Data\m\shared\Military_Sokoban_1.1.zip

D:\Documents and Settings\Admin.XPSP2-8246C1C43\Application Data\m\shared\mNewsCenter_1.zip

D:\Documents and Settings\Admin.XPSP2-8246C1C43\Application Data\m\shared\Movkit_DVD_to_PSP_Ripper_4.0_build_20070318.zip

D:\Documents and Settings\Admin.XPSP2-8246C1C43\Application Data\m\shared\MySQL_Delete_(Remove)_Duplicate_Entries_Software_7.0_Cracked.zip

D:\Documents and Settings\Admin.XPSP2-8246C1C43\Application Data\m\shared\NagMe 1.2.zip

D:\Documents and Settings\Admin.XPSP2-8246C1C43\Application Data\m\shared\NestedQuote Remover 0.7.18.zip

D:\Documents and Settings\Admin.XPSP2-8246C1C43\Application Data\m\shared\Norpath_Elements_Designer_3.2_build_390.zip

D:\Documents and Settings\Admin.XPSP2-8246C1C43\Application Data\m\shared\Novell_GroupWise_Messenger_3.0.zip

D:\Documents and Settings\Admin.XPSP2-8246C1C43\Application Data\m\shared\Okoker RM to AVI DIVX WMV MPEG VCD DVD Converter & Burner 3.7 Cracked.zip

D:\Documents and Settings\Admin.XPSP2-8246C1C43\Application Data\m\shared\PageHelper 1.0.zip

D:\Documents and Settings\Admin.XPSP2-8246C1C43\Application Data\m\shared\PasteItIn 1.2 [Key].zip

D:\Documents and Settings\Admin.XPSP2-8246C1C43\Application Data\m\shared\PDF Vista Workstation Edition 6.0.0.6200.zip

D:\Documents and Settings\Admin.XPSP2-8246C1C43\Application Data\m\shared\PengYou Word Bin 1.2.zip

D:\Documents and Settings\Admin.XPSP2-8246C1C43\Application Data\m\shared\PhotoSelector_1.0.zip

D:\Documents and Settings\Admin.XPSP2-8246C1C43\Application Data\m\shared\PlasticSniffer_1.2.zip

D:\Documents and Settings\Admin.XPSP2-8246C1C43\Application Data\m\shared\Probability Calculator 1.0.zip

D:\Documents and Settings\Admin.XPSP2-8246C1C43\Application Data\m\shared\Program Booster 1.0.7.zip

D:\Documents and Settings\Admin.XPSP2-8246C1C43\Application Data\m\shared\Promosoft Software Submitter 1.2.1 (Crack).zip

D:\Documents and Settings\Admin.XPSP2-8246C1C43\Application Data\m\shared\Protect EXE 0.4a Beta.zip

D:\Documents and Settings\Admin.XPSP2-8246C1C43\Application Data\m\shared\ReadCheck_1.1.zip

D:\Documents and Settings\Admin.XPSP2-8246C1C43\Application Data\m\shared\Receipt_Book_Manager_6.8.4.zip

D:\Documents and Settings\Admin.XPSP2-8246C1C43\Application Data\m\shared\Roman_Numeral_Convertor_1.0.zip

D:\Documents and Settings\Admin.XPSP2-8246C1C43\Application Data\m\shared\Scales and Chords 1.0.zip

D:\Documents and Settings\Admin.XPSP2-8246C1C43\Application Data\m\shared\Scrape_to_PDF_1.0.zip

D:\Documents and Settings\Admin.XPSP2-8246C1C43\Application Data\m\shared\Script Sentry 2.7.1.zip

D:\Documents and Settings\Admin.XPSP2-8246C1C43\Application Data\m\shared\SearchMulti 1.0.zip

D:\Documents and Settings\Admin.XPSP2-8246C1C43\Application Data\m\shared\Security_Department_1.9_Serial.zip

D:\Documents and Settings\Admin.XPSP2-8246C1C43\Application Data\m\shared\Setup_Builder_6.03_[Key+Serial].zip

D:\Documents and Settings\Admin.XPSP2-8246C1C43\Application Data\m\shared\Silentnight Inspector 3.3.19.zip

D:\Documents and Settings\Admin.XPSP2-8246C1C43\Application Data\m\shared\SimW_1.2.zip

D:\Documents and Settings\Admin.XPSP2-8246C1C43\Application Data\m\shared\SmartVersion_1.15_RC_beta.zip

D:\Documents and Settings\Admin.XPSP2-8246C1C43\Application Data\m\shared\Speed DVD Creator 4.0.42.1.zip

D:\Documents and Settings\Admin.XPSP2-8246C1C43\Application Data\m\shared\StorageSafe_1.2.0.1210_(Serial).zip

D:\Documents and Settings\Admin.XPSP2-8246C1C43\Application Data\m\shared\Taango_2.zip

D:\Documents and Settings\Admin.XPSP2-8246C1C43\Application Data\m\shared\TabMail_2.7.18.17_KeyGen.zip

D:\Documents and Settings\Admin.XPSP2-8246C1C43\Application Data\m\shared\Tangram 1.0.zip

D:\Documents and Settings\Admin.XPSP2-8246C1C43\Application Data\m\shared\TCAD for Delphi 2006.zip

D:\Documents and Settings\Admin.XPSP2-8246C1C43\Application Data\m\shared\Texas Hold'em Calculator 2.6.zip

D:\Documents and Settings\Admin.XPSP2-8246C1C43\Application Data\m\shared\The_Gadgetbar_Toolbar_for_Firefox_1.5.0.12.zip

D:\Documents and Settings\Admin.XPSP2-8246C1C43\Application Data\m\shared\The_Sims_2_Mommy's_Lipstick_skin.zip

D:\Documents and Settings\Admin.XPSP2-8246C1C43\Application Data\m\shared\TimeLogger 1.0.2.zip

D:\Documents and Settings\Admin.XPSP2-8246C1C43\Application Data\m\shared\Tiper_1.6.zip

D:\Documents and Settings\Admin.XPSP2-8246C1C43\Application Data\m\shared\Tom_Clancy's_Splinter_Cell_patch_(European)_1.2.zip

D:\Documents and Settings\Admin.XPSP2-8246C1C43\Application Data\m\shared\Travel Dictionary Spanish HPC 2.7.zip

D:\Documents and Settings\Admin.XPSP2-8246C1C43\Application Data\m\shared\TrayIcon_Pro_1.4.127_SR1.zip

D:\Documents and Settings\Admin.XPSP2-8246C1C43\Application Data\m\shared\TremorSkimmer 1.1.zip

D:\Documents and Settings\Admin.XPSP2-8246C1C43\Application Data\m\shared\Unreal_Tournament_2004_DOM_Parallel_map.zip

D:\Documents and Settings\Admin.XPSP2-8246C1C43\Application Data\m\shared\US_and_Counties_Map_Locator_1.0_KeyGen.zip

D:\Documents and Settings\Admin.XPSP2-8246C1C43\Application Data\m\shared\V-NewsTicker_2.1.zip

D:\Documents and Settings\Admin.XPSP2-8246C1C43\Application Data\m\shared\VAlarm_1.0_(Patch).zip

D:\Documents and Settings\Admin.XPSP2-8246C1C43\Application Data\m\shared\Video to WMV Redactor 1.02.zip

D:\Documents and Settings\Admin.XPSP2-8246C1C43\Application Data\m\shared\Vocal_Imitation_1.0.zip

D:\Documents and Settings\Admin.XPSP2-8246C1C43\Application Data\m\shared\VrmlPad 2.1.zip

D:\Documents and Settings\Admin.XPSP2-8246C1C43\Application Data\m\shared\Weather Underground Vista Gadget 1.1.zip

D:\Documents and Settings\Admin.XPSP2-8246C1C43\Application Data\m\shared\WebCollect_Toolbar_1.zip

D:\Documents and Settings\Admin.XPSP2-8246C1C43\Application Data\m\shared\Windows Password Cracker 3.04.zip

D:\Documents and Settings\Admin.XPSP2-8246C1C43\Application Data\m\shared\Wizardbrush_6.7.3.2.zip

D:\Documents and Settings\Admin.XPSP2-8246C1C43\Application Data\m\shared\XBC_Xbox_Connect_5.1.5.293.zip

D:\Documents and Settings\Admin.XPSP2-8246C1C43\Application Data\m\shared\Xilisoft AVI to DVD Converter 3.0.36.0502.zip

D:\Documents and Settings\Admin.XPSP2-8246C1C43\Application Data\m\srvlist.oct

D:\WINDOWS\system32\ban_list.txt

D:\WINDOWS\system32\drivers\downld

D:\WINDOWS\system32\drivers\downld\100140.exe

D:\WINDOWS\system32\drivers\downld\100203.exe

D:\WINDOWS\system32\drivers\downld\100765.exe

D:\WINDOWS\system32\drivers\downld\102218.exe

D:\WINDOWS\system32\drivers\downld\102640.exe

D:\WINDOWS\system32\drivers\downld\105265.exe

D:\WINDOWS\system32\drivers\downld\107562.exe

D:\WINDOWS\system32\drivers\downld\110296.exe

D:\WINDOWS\system32\drivers\downld\111109.exe

D:\WINDOWS\system32\drivers\downld\111640.exe

D:\WINDOWS\system32\drivers\downld\11271953.exe

D:\WINDOWS\system32\drivers\downld\113375.exe

D:\WINDOWS\system32\drivers\downld\11346343.exe

D:\WINDOWS\system32\drivers\downld\11347953.exe

D:\WINDOWS\system32\drivers\downld\11379640.exe

D:\WINDOWS\system32\drivers\downld\11382906.exe

D:\WINDOWS\system32\drivers\downld\113875.exe

D:\WINDOWS\system32\drivers\downld\11401046.exe

D:\WINDOWS\system32\drivers\downld\11420875.exe

D:\WINDOWS\system32\drivers\downld\11424203.exe

D:\WINDOWS\system32\drivers\downld\11476218.exe

D:\WINDOWS\system32\drivers\downld\115125.exe

D:\WINDOWS\system32\drivers\downld\11559671.exe

D:\WINDOWS\system32\drivers\downld\11567968.exe

D:\WINDOWS\system32\drivers\downld\116640.exe

D:\WINDOWS\system32\drivers\downld\117390.exe

D:\WINDOWS\system32\drivers\downld\119265.exe

D:\WINDOWS\system32\drivers\downld\120671.exe

D:\WINDOWS\system32\drivers\downld\122000.exe

D:\WINDOWS\system32\drivers\downld\122187.exe

D:\WINDOWS\system32\drivers\downld\124000.exe

D:\WINDOWS\system32\drivers\downld\124203.exe

D:\WINDOWS\system32\drivers\downld\124687.exe

D:\WINDOWS\system32\drivers\downld\127203.exe

D:\WINDOWS\system32\drivers\downld\145578.exe

D:\WINDOWS\system32\drivers\downld\14812828.exe

D:\WINDOWS\system32\drivers\downld\14816109.exe

D:\WINDOWS\system32\drivers\downld\14821015.exe

D:\WINDOWS\system32\drivers\downld\14822593.exe

D:\WINDOWS\system32\drivers\downld\14832281.exe

D:\WINDOWS\system32\drivers\downld\14834671.exe

D:\WINDOWS\system32\drivers\downld\14835671.exe

D:\WINDOWS\system32\drivers\downld\14853531.exe

D:\WINDOWS\system32\drivers\downld\14854531.exe

D:\WINDOWS\system32\drivers\downld\14857562.exe

D:\WINDOWS\system32\drivers\downld\14872562.exe

D:\WINDOWS\system32\drivers\downld\14872609.exe

D:\WINDOWS\system32\drivers\downld\14875296.exe

D:\WINDOWS\system32\drivers\downld\14912093.exe

D:\WINDOWS\system32\drivers\downld\14926546.exe

D:\WINDOWS\system32\drivers\downld\14947843.exe

D:\WINDOWS\system32\drivers\downld\14952156.exe

D:\WINDOWS\system32\drivers\downld\14955421.exe

D:\WINDOWS\system32\drivers\downld\15005562.exe

D:\WINDOWS\system32\drivers\downld\15012062.exe

D:\WINDOWS\system32\drivers\downld\15021437.exe

D:\WINDOWS\system32\drivers\downld\151390.exe

D:\WINDOWS\system32\drivers\downld\151500.exe

D:\WINDOWS\system32\drivers\downld\15153625.exe

D:\WINDOWS\system32\drivers\downld\15164562.exe

D:\WINDOWS\system32\drivers\downld\153656.exe

D:\WINDOWS\system32\drivers\downld\154484.exe

D:\WINDOWS\system32\drivers\downld\157109.exe

D:\WINDOWS\system32\drivers\downld\159546.exe

D:\WINDOWS\system32\drivers\downld\160500.exe

D:\WINDOWS\system32\drivers\downld\160859.exe

D:\WINDOWS\system32\drivers\downld\162437.exe

D:\WINDOWS\system32\drivers\downld\162984.exe

D:\WINDOWS\system32\drivers\downld\163796.exe

D:\WINDOWS\system32\drivers\downld\164406.exe

D:\WINDOWS\system32\drivers\downld\165250.exe

D:\WINDOWS\system32\drivers\downld\167203.exe

D:\WINDOWS\system32\drivers\downld\167609.exe

D:\WINDOWS\system32\drivers\downld\169187.exe

D:\WINDOWS\system32\drivers\downld\170171.exe

D:\WINDOWS\system32\drivers\downld\171468.exe

D:\WINDOWS\system32\drivers\downld\173828.exe

D:\WINDOWS\system32\drivers\downld\179375.exe

D:\WINDOWS\system32\drivers\downld\190000.exe

D:\WINDOWS\system32\drivers\downld\193031.exe

D:\WINDOWS\system32\drivers\downld\194750.exe

D:\WINDOWS\system32\drivers\downld\198765.exe

D:\WINDOWS\system32\drivers\downld\201031.exe

D:\WINDOWS\system32\drivers\downld\201187.exe

D:\WINDOWS\system32\drivers\downld\203093.exe

D:\WINDOWS\system32\drivers\downld\205015.exe

D:\WINDOWS\system32\drivers\downld\206156.exe

D:\WINDOWS\system32\drivers\downld\207125.exe

D:\WINDOWS\system32\drivers\downld\211921.exe

D:\WINDOWS\system32\drivers\downld\212859.exe

D:\WINDOWS\system32\drivers\downld\213531.exe

D:\WINDOWS\system32\drivers\downld\216812.exe

D:\WINDOWS\system32\drivers\downld\220265.exe

D:\WINDOWS\system32\drivers\downld\220625.exe

D:\WINDOWS\system32\drivers\downld\224890.exe

D:\WINDOWS\system32\drivers\downld\250156.exe

D:\WINDOWS\system32\drivers\downld\254250.exe

D:\WINDOWS\system32\drivers\downld\260953.exe

D:\WINDOWS\system32\drivers\downld\29639484.exe

D:\WINDOWS\system32\drivers\downld\29648031.exe

D:\WINDOWS\system32\drivers\downld\29650062.exe

D:\WINDOWS\system32\drivers\downld\29679703.exe

D:\WINDOWS\system32\drivers\downld\29683468.exe

D:\WINDOWS\system32\drivers\downld\296984.exe

D:\WINDOWS\system32\drivers\downld\29718234.exe

D:\WINDOWS\system32\drivers\downld\29753484.exe

D:\WINDOWS\system32\drivers\downld\29757687.exe

D:\WINDOWS\system32\drivers\downld\29760765.exe

D:\WINDOWS\system32\drivers\downld\29827546.exe

D:\WINDOWS\system32\drivers\downld\299125.exe

D:\WINDOWS\system32\drivers\downld\29960437.exe

D:\WINDOWS\system32\drivers\downld\29974453.exe

D:\WINDOWS\system32\drivers\downld\300765.exe

D:\WINDOWS\system32\drivers\downld\302296.exe

D:\WINDOWS\system32\drivers\downld\303000.exe

D:\WINDOWS\system32\drivers\downld\304359.exe

D:\WINDOWS\system32\drivers\downld\308828.exe

D:\WINDOWS\system32\drivers\downld\309140.exe

D:\WINDOWS\system32\drivers\downld\310375.exe

D:\WINDOWS\system32\drivers\downld\310671.exe

D:\WINDOWS\system32\drivers\downld\313843.exe

D:\WINDOWS\system32\drivers\downld\322343.exe

D:\WINDOWS\system32\drivers\downld\334796.exe

D:\WINDOWS\system32\drivers\downld\343828.exe

D:\WINDOWS\system32\drivers\downld\345312.exe

D:\WINDOWS\system32\drivers\downld\349062.exe

D:\WINDOWS\system32\drivers\downld\352718.exe

D:\WINDOWS\system32\drivers\downld\355234.exe

D:\WINDOWS\system32\drivers\downld\356453.exe

D:\WINDOWS\system32\drivers\downld\357781.exe

D:\WINDOWS\system32\drivers\downld\359750.exe

D:\WINDOWS\system32\drivers\downld\364437.exe

D:\WINDOWS\system32\drivers\downld\366125.exe

D:\WINDOWS\system32\drivers\downld\366250.exe

D:\WINDOWS\system32\drivers\downld\369703.exe

D:\WINDOWS\system32\drivers\downld\371859.exe

D:\WINDOWS\system32\drivers\downld\372078.exe

D:\WINDOWS\system32\drivers\downld\379843.exe

D:\WINDOWS\system32\drivers\downld\460312.exe

D:\WINDOWS\system32\drivers\downld\480203.exe

D:\WINDOWS\system32\drivers\downld\483015.exe

D:\WINDOWS\system32\drivers\downld\55937.exe

D:\WINDOWS\system32\drivers\downld\57687.exe

D:\WINDOWS\system32\drivers\downld\58609.exe

D:\WINDOWS\system32\drivers\downld\60218.exe

D:\WINDOWS\system32\drivers\downld\634359.exe

D:\WINDOWS\system32\drivers\downld\63812.exe

D:\WINDOWS\system32\drivers\downld\643265.exe

D:\WINDOWS\system32\drivers\downld\64703.exe

D:\WINDOWS\system32\drivers\downld\64765.exe

D:\WINDOWS\system32\drivers\downld\66031.exe

D:\WINDOWS\system32\drivers\downld\66437.exe

D:\WINDOWS\system32\drivers\downld\66718.exe

D:\WINDOWS\system32\drivers\downld\69906.exe

D:\WINDOWS\system32\drivers\downld\70812.exe

D:\WINDOWS\system32\drivers\downld\71437.exe

D:\WINDOWS\system32\drivers\downld\72031.exe

D:\WINDOWS\system32\drivers\downld\72062.exe

D:\WINDOWS\system32\drivers\downld\72875.exe

D:\WINDOWS\system32\drivers\downld\75828.exe

D:\WINDOWS\system32\drivers\downld\75937.exe

D:\WINDOWS\system32\drivers\downld\76000.exe

D:\WINDOWS\system32\drivers\downld\76890.exe

D:\WINDOWS\system32\drivers\downld\77500.exe

D:\WINDOWS\system32\drivers\downld\78640.exe

D:\WINDOWS\system32\drivers\downld\79015.exe

D:\WINDOWS\system32\drivers\downld\79093.exe

D:\WINDOWS\system32\drivers\downld\79750.exe

D:\WINDOWS\system32\drivers\downld\80109.exe

D:\WINDOWS\system32\drivers\downld\80640.exe

D:\WINDOWS\system32\drivers\downld\80718.exe

D:\WINDOWS\system32\drivers\downld\82265.exe

D:\WINDOWS\system32\drivers\downld\82375.exe

D:\WINDOWS\system32\drivers\downld\82828.exe

D:\WINDOWS\system32\drivers\downld\83328.exe

D:\WINDOWS\system32\drivers\downld\83890.exe

D:\WINDOWS\system32\drivers\downld\83921.exe

D:\WINDOWS\system32\drivers\downld\84328.exe

D:\WINDOWS\system32\drivers\downld\84703.exe

D:\WINDOWS\system32\drivers\downld\86718.exe

D:\WINDOWS\system32\drivers\downld\87296.exe

D:\WINDOWS\system32\drivers\downld\88937.exe

D:\WINDOWS\system32\drivers\downld\89390.exe

D:\WINDOWS\system32\drivers\downld\89968.exe

D:\WINDOWS\system32\drivers\downld\90500.exe

D:\WINDOWS\system32\drivers\downld\91515.exe

D:\WINDOWS\system32\drivers\downld\92562.exe

D:\WINDOWS\system32\drivers\downld\92843.exe

D:\WINDOWS\system32\drivers\downld\93000.exe

D:\WINDOWS\system32\drivers\downld\93500.exe

D:\WINDOWS\system32\drivers\downld\93687.exe

D:\WINDOWS\system32\drivers\downld\94359.exe

D:\WINDOWS\system32\drivers\downld\94921.exe

D:\WINDOWS\system32\drivers\downld\95000.exe

D:\WINDOWS\system32\drivers\downld\95828.exe

D:\WINDOWS\system32\drivers\downld\95875.exe

D:\WINDOWS\system32\drivers\downld\98296.exe

D:\WINDOWS\system32\drivers\srosa.sys

D:\WINDOWS\system32\drivers\winfilse.exe

D:\WINDOWS\system32\mdelk.exe

D:\WINDOWS\system32\wintems.exe

F:\autorun.inf

F:\nideiect.com

G:\autorun.inf

G:\nideiect.com

 

.

((((((((((((((((((((((((((((((((((((((( Pilotes/Services )))))))))))))))))))))))))))))))))))))))))))))))))

.

 

-------\Service_SROSA

-------\Legacy_SROSA

 

 

((((((((((((((((((((((((((((( Fichiers créés du 2008-09-24 au 2008-10-24 ))))))))))))))))))))))))))))))))))))

.

 

2008-10-24 21:46 . 2008-10-24 21:46 <REP> d--hs---- D:\FOUND.001

2008-10-21 20:00 . 2008-10-21 20:00 <REP> d--hs---- D:\FOUND.000

2008-10-06 22:20 . 2008-10-06 22:20 0 --a------ D:\WINDOWS\nsreg.dat

2008-10-06 21:34 . 2008-10-06 21:34 <REP> d-------- D:\Program Files\SAGEM

2008-10-06 21:33 . 2008-10-06 21:33 <REP> d-------- D:\Program Files\Securitoo

2008-10-05 21:00 . 2008-09-08 23:38 88,576 --a------ D:\WINDOWS\system32\AntiXPVSTFix.exe

2008-10-05 21:00 . 2008-10-01 15:51 87,552 --a------ D:\WINDOWS\system32\VACFix.exe

2008-10-05 21:00 . 2008-09-19 12:26 82,944 --a------ D:\WINDOWS\system32\o4Patch.exe

2008-10-05 21:00 . 2008-05-18 21:40 82,944 --a------ D:\WINDOWS\system32\IEDFix.exe

2008-10-05 21:00 . 2008-09-19 12:26 82,944 --a------ D:\WINDOWS\system32\IEDFix.C.exe

2008-10-05 21:00 . 2008-08-18 12:19 82,432 --a------ D:\WINDOWS\system32\404Fix.exe

2008-10-05 20:59 . 2007-09-06 00:22 289,144 --a------ D:\WINDOWS\system32\VCCLSID.exe

2008-10-05 20:59 . 2006-04-27 17:49 288,417 --a------ D:\WINDOWS\system32\SrchSTS.exe

2008-10-05 20:59 . 2003-06-05 21:13 53,248 --a------ D:\WINDOWS\system32\Process.exe

2008-10-05 20:59 . 2004-07-31 18:50 51,200 --a------ D:\WINDOWS\system32\dumphive.exe

2008-10-05 20:59 . 2007-10-04 00:36 25,600 --a------ D:\WINDOWS\system32\WS2Fix.exe

2008-10-05 20:31 . 2008-10-05 21:00 1,696 --a------ D:\WINDOWS\system32\tmp.reg

2008-10-02 13:07 . 2008-10-02 13:07 116,740 --a------ D:\WINDOWS\system32\msxml71.0ll

2008-09-26 11:31 . 2008-09-26 11:31 8 --a------ D:\Documents and Settings\Admin.XPSP2-8246C1C43\Application Data\usb.dat

 

.

(((((((((((((((((((((((((((((((((( Compte-rendu de Find3M ))))))))))))))))))))))))))))))))))))))))))))))))

.

2008-09-15 15:39 1,846,144 ----a-w D:\WINDOWS\system32\win32k.sys

2008-09-15 15:39 1,846,144 ------w D:\WINDOWS\system32\dllcache\win32k.sys

2008-08-28 10:04 333,056 ----a-w D:\WINDOWS\system32\drivers\srv.sys

2008-08-28 10:04 333,056 ------w D:\WINDOWS\system32\dllcache\srv.sys

2008-08-19 09:30 18,432 ------w D:\WINDOWS\system32\dllcache\iedw.exe

2008-08-14 13:44 2,182,400 ----a-w D:\WINDOWS\system32\ntoskrnl.exe

2008-08-14 13:44 2,182,400 ------w D:\WINDOWS\system32\dllcache\ntoskrnl.exe

2008-08-14 13:44 2,138,112 ------w D:\WINDOWS\system32\dllcache\ntkrnlmp.exe

2008-08-14 13:44 2,059,776 ----a-w D:\WINDOWS\system32\ntkrnlpa.exe

2008-08-14 13:44 2,059,776 ------w D:\WINDOWS\system32\dllcache\ntkrnlpa.exe

2008-08-14 13:44 2,017,792 ------w D:\WINDOWS\system32\dllcache\ntkrpamp.exe

2008-08-14 09:51 138,368 ------w D:\WINDOWS\system32\dllcache\afd.sys

2008-06-01 16:49 44,614 ----a-w D:\Documents and Settings\Admin.XPSP2-8246C1C43\Application Data\mdb.bin

2008-03-18 17:15 3,858,985 ----a-w D:\Program Files\eMule0.48a-Installer.exe

2007-12-23 17:00 18,764,248 ----a-w D:\Program Files\setupfre.exe

2007-11-01 19:49 13,411,824 ----a-w D:\Program Files\Google_Earth_BZXD.exe

.

 

((((((((((((((((((((((((((((((((( Points de chargement Reg ))))))))))))))))))))))))))))))))))))))))))))))))

.

.

*Note* les éléments vides & les éléments initiaux légitimes ne sont pas listés

REGEDIT4

 

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]

"BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}"="D:\Program Files\Fichiers communs\Ahead\Lib\NMBgMonitor.exe" [2007-06-27 152872]

"AnyDVD"="D:\Program Files\SlySoft\AnyDVD\AnyDVDtray.exe" [2008-04-11 2075584]

 

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]

"F-Secure Manager"="D:\Program Files\Orange\AntivirusFirewall\Common\FSM32.EXE" [2008-10-24 176177]

"F-Secure TNB"="D:\Program Files\Orange\AntivirusFirewall\FSGUI\TNBUtil.exe" [2008-10-24 733184]

"QuickTime Task"="D:\Program Files\QuickTime\qttask.exe" [2008-01-31 385024]

"Adobe Reader Speed Launcher"="D:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe" [2008-01-11 39792]

 

D:\Documents and Settings\All Users.WINDOWS\Menu D‚marrer\Programmes\D‚marrage\

Microsoft Recherche acc‚l‚r‚e.lnk - D:\Program Files\Microsoft Office\Office\FINDFAST.EXE [1997-11-19 111376]

D‚marrage d'Office.lnk - D:\Program Files\Microsoft Office\Office\OSA.EXE [1997-11-19 51984]

 

[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\policies\explorer]

"NoSMHelp"= 1 (0x1)

"MemCheckBoxInRunDlg"= 1 (0x1)

"NoSMBalloonTip"= 1 (0x1)

"NoDesktopCleanupWizard"= 1 (0x1)

"NoWelcomeScreen"= 1 (0x1)

"NoAutoUpdate"= 1 (0x1)

 

[HKEY_USERS\.default\software\microsoft\windows\currentversion\policies\explorer]

"NoSMHelp"= 1 (0x1)

"MemCheckBoxInRunDlg"= 1 (0x1)

"NoSMBalloonTip"= 1 (0x1)

"NoDesktopCleanupWizard"= 1 (0x1)

"NoWelcomeScreen"= 1 (0x1)

"NoAutoUpdate"= 1 (0x1)

 

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\beep.sys]

@="beep"

 

[HKEY_LOCAL_MACHINE\software\microsoft\security center]

"AntiVirusOverride"=dword:00000001

"FirewallOverride"=dword:00000001

 

[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile]

"EnableFirewall"= 0 (0x0)

"DisableUnicastResponsesToMulticastBroadcast"= 0 (0x0)

 

[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List]

"%windir%\\system32\\sessmgr.exe"=

"D:\\Program Files\\eMule\\EMULE.EXE"=

"D:\\Program Files\\iTunes\\iTunes.exe"=

 

R3 SOFTXG;YAMAHA XG SoftSynthesizer;D:\WINDOWS\system32\drivers\sxgxgwdm.sys [2002-05-22 966784]

S1 F-Secure HIPS;F-Secure HIPS;D:\Program Files\Orange\AntivirusFirewall\HIPS\fshs.sys [ ]

S3 F-Secure Gatekeeper;F-Secure Gatekeeper;D:\Program Files\Orange\AntivirusFirewall\Anti-Virus\minifilter\fsgk.sys [ ]

S4 F-Secure Filter;F-Secure File System Filter;D:\Program Files\Orange\AntivirusFirewall\Anti-Virus\Win2K\FSfilter.sys [ ]

S4 F-Secure Recognizer;F-Secure File System Recognizer;D:\Program Files\Orange\AntivirusFirewall\Anti-Virus\Win2K\FSrec.sys [ ]

S4 FSFW;F-Secure Firewall Driver;D:\WINDOWS\system32\drivers\fsdfw.sys [ ]

.

Contenu du dossier 'Tâches planifiées'

 

2008-10-03 D:\WINDOWS\Tasks\AppleSoftwareUpdate.job

- D:\Program Files\Apple Software Update\SoftwareUpdate.exe [2007-08-29 14:57]

.

- - - - ORPHELINS SUPPRIMES - - - -

 

ShellExecuteHooks-{9C0ADB68-353A-61DD-ED09-1D8003A611CB} - (no file)

Notify-WgaLogon - (no file)

MSConfigStartUp-WOOKIT - D:\PROGRA~1\WANADOO\Shell.exe

MSConfigStartUp-WOOTASKBARICON - D:\PROGRA~1\WANADOO\GestMaj.exe

MSConfigStartUp-WOOWATCH - D:\PROGRA~1\WANADOO\Watch.exe

 

 

.

------- Examen supplémentaire -------

.

FireFox -: Profile - D:\Documents and Settings\Admin.XPSP2-8246C1C43\Application Data\Mozilla\Firefox\Profiles\hr8abcv1.default\

FireFox -: prefs.js - STARTUP.HOMEPAGE - hxxp://www.orange.fr/

FF -: plugin - D:\Program Files\iTunes\Mozilla Plugins\npitunes.dll

FF -: plugin - D:\Program Files\Yahoo!\Common\npyaxmpb.dll

.

 

**************************************************************************

 

catchme 0.3.1367 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net

Rootkit scan 2008-10-24 22:42:29

Windows 5.1.2600 Service Pack 2 FAT NTAPI

 

Recherche de processus cachés ...

 

Recherche d'éléments en démarrage automatique cachés ...

 

Recherche de fichiers cachés ...

 

Scan terminé avec succès

Fichiers cachés: 0

 

**************************************************************************

 

[HKEY_LOCAL_MACHINE\system\ControlSet001\Services\srosa]

 

.

Heure de fin: 2008-10-24 22:43:40

ComboFix2.txt 2008-06-16 16:40:48

ComboFix-quarantined-files.txt 2008-10-24 20:43:40

 

Avant-CF: 8,552,824,832 octets libres

Après-CF: 8,586,805,248 octets libres

 

475 --- E O F --- 2008-10-16 06:51:48

Apollo Devil Member !

Apollo

Posté(e)
Posté(e)

Re,

 

Belle merde là-dedans!!!

 

Nous allons d'abord installer la Console de Récupération sur ton pc. Cela permettra de réparer ton système au cas ou le pc ne redémarrerait plus suite à la désinfection.

  • Lorsque tu as cliqué sur le lien correspondant à la version de ton Windows, tu seras dirigé sur une page: clique sur le bouton Télécharger afin de récupérer le package d'installation sur ton Bureau: Ne modifie pas le nom du fichier surtout!
     
    >>Windows XP Service Pack 2 (SP2) > Microsoft Windows XP Professionnel SP2
     
    >> Windows XP Service Pack 2 [sP2] >
    Microsoft Windows XP HOME SP2 (Familiale)
     
     
  • Fais un glisser/déposer de ce fichier sur le fichier ComboFix.exe comme sur la capture >
    img-191142280s3.gif
  • Suis les indications à l'écran pour lancer ComboFix et lorsqu'on te le demande, accepte le Contrat de Licence d'Utilisateur Final pour installer la Console de Récupération Microsoft.
  • Lorsque ce sera terminé, un message te disant que la Console a bien été installée apparait, puis un rapport nommé CF_RC.txt va s'afficher: poste le contenu de ce rapport.

 

@+tard :P

musico Member

musico

Posté(e)
  • Auteur
Posté(e)

VOILA LE RAPPORT

ComboFix 08-10-24.02 - Admin 2008-10-24 23:02:46.7 - FAT32x86

Microsoft Windows XP Professionnel 5.1.2600.2.1252.1.1036.18.270 [GMT 2:00]

Lancé depuis: D:\Documents and Settings\Admin.XPSP2-8246C1C43\Bureau\combo-fix.exe

Commutateurs utilisés :: D:\Documents and Settings\Admin.XPSP2-8246C1C43\Bureau\WindowsXP-KB310994-SP2-Pro-BootDisk-FRA.exe

* Un nouveau point de restauration a été créé

.

 

((((((((((((((((((((((((((((( Fichiers créés du 2008-09-24 au 2008-10-24 ))))))))))))))))))))))))))))))))))))

.

 

2008-10-24 21:46 . 2008-10-24 21:46 <REP> d--hs---- D:\FOUND.001

2008-10-21 20:00 . 2008-10-21 20:00 <REP> d--hs---- D:\FOUND.000

2008-10-06 22:20 . 2008-10-06 22:20 0 --a------ D:\WINDOWS\nsreg.dat

2008-10-06 21:34 . 2008-10-06 21:34 <REP> d-------- D:\Program Files\SAGEM

2008-10-06 21:33 . 2008-10-06 21:33 <REP> d-------- D:\Program Files\Securitoo

2008-10-05 21:00 . 2008-09-08 23:38 88,576 --a------ D:\WINDOWS\system32\AntiXPVSTFix.exe

2008-10-05 21:00 . 2008-10-01 15:51 87,552 --a------ D:\WINDOWS\system32\VACFix.exe

2008-10-05 21:00 . 2008-09-19 12:26 82,944 --a------ D:\WINDOWS\system32\o4Patch.exe

2008-10-05 21:00 . 2008-05-18 21:40 82,944 --a------ D:\WINDOWS\system32\IEDFix.exe

2008-10-05 21:00 . 2008-09-19 12:26 82,944 --a------ D:\WINDOWS\system32\IEDFix.C.exe

2008-10-05 21:00 . 2008-08-18 12:19 82,432 --a------ D:\WINDOWS\system32\404Fix.exe

2008-10-05 20:59 . 2007-09-06 00:22 289,144 --a------ D:\WINDOWS\system32\VCCLSID.exe

2008-10-05 20:59 . 2006-04-27 17:49 288,417 --a------ D:\WINDOWS\system32\SrchSTS.exe

2008-10-05 20:59 . 2003-06-05 21:13 53,248 --a------ D:\WINDOWS\system32\Process.exe

2008-10-05 20:59 . 2004-07-31 18:50 51,200 --a------ D:\WINDOWS\system32\dumphive.exe

2008-10-05 20:59 . 2007-10-04 00:36 25,600 --a------ D:\WINDOWS\system32\WS2Fix.exe

2008-10-05 20:31 . 2008-10-05 21:00 1,696 --a------ D:\WINDOWS\system32\tmp.reg

2008-10-02 13:07 . 2008-10-02 13:07 116,740 --a------ D:\WINDOWS\system32\msxml71.0ll

2008-09-26 11:31 . 2008-09-26 11:31 8 --a------ D:\Documents and Settings\Admin.XPSP2-8246C1C43\Application Data\usb.dat

 

.

(((((((((((((((((((((((((((((((((( Compte-rendu de Find3M ))))))))))))))))))))))))))))))))))))))))))))))))

.

2008-09-15 15:39 1,846,144 ----a-w D:\WINDOWS\system32\win32k.sys

2008-09-15 15:39 1,846,144 ------w D:\WINDOWS\system32\dllcache\win32k.sys

2008-08-28 10:04 333,056 ----a-w D:\WINDOWS\system32\drivers\srv.sys

2008-08-28 10:04 333,056 ------w D:\WINDOWS\system32\dllcache\srv.sys

2008-08-19 09:30 18,432 ------w D:\WINDOWS\system32\dllcache\iedw.exe

2008-08-14 13:44 2,182,400 ----a-w D:\WINDOWS\system32\ntoskrnl.exe

2008-08-14 13:44 2,182,400 ------w D:\WINDOWS\system32\dllcache\ntoskrnl.exe

2008-08-14 13:44 2,138,112 ------w D:\WINDOWS\system32\dllcache\ntkrnlmp.exe

2008-08-14 13:44 2,059,776 ----a-w D:\WINDOWS\system32\ntkrnlpa.exe

2008-08-14 13:44 2,059,776 ------w D:\WINDOWS\system32\dllcache\ntkrnlpa.exe

2008-08-14 13:44 2,017,792 ------w D:\WINDOWS\system32\dllcache\ntkrpamp.exe

2008-08-14 09:51 138,368 ------w D:\WINDOWS\system32\dllcache\afd.sys

2008-06-01 16:49 44,614 ----a-w D:\Documents and Settings\Admin.XPSP2-8246C1C43\Application Data\mdb.bin

2008-03-18 17:15 3,858,985 ----a-w D:\Program Files\eMule0.48a-Installer.exe

2007-12-23 17:00 18,764,248 ----a-w D:\Program Files\setupfre.exe

2007-11-01 19:49 13,411,824 ----a-w D:\Program Files\Google_Earth_BZXD.exe

.

 

((((((((((((((((((((((((((((((((( Points de chargement Reg ))))))))))))))))))))))))))))))))))))))))))))))))

.

.

*Note* les éléments vides & les éléments initiaux légitimes ne sont pas listés

REGEDIT4

 

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]

"BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}"="D:\Program Files\Fichiers communs\Ahead\Lib\NMBgMonitor.exe" [2007-06-27 152872]

"AnyDVD"="D:\Program Files\SlySoft\AnyDVD\AnyDVDtray.exe" [2008-04-11 2075584]

 

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]

"F-Secure Manager"="D:\Program Files\Orange\AntivirusFirewall\Common\FSM32.EXE" [2008-10-24 176177]

"F-Secure TNB"="D:\Program Files\Orange\AntivirusFirewall\FSGUI\TNBUtil.exe" [2008-10-24 733184]

"QuickTime Task"="D:\Program Files\QuickTime\qttask.exe" [2008-01-31 385024]

"Adobe Reader Speed Launcher"="D:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe" [2008-01-11 39792]

 

D:\Documents and Settings\All Users.WINDOWS\Menu D‚marrer\Programmes\D‚marrage\

Microsoft Recherche acc‚l‚r‚e.lnk - D:\Program Files\Microsoft Office\Office\FINDFAST.EXE [1997-11-19 111376]

D‚marrage d'Office.lnk - D:\Program Files\Microsoft Office\Office\OSA.EXE [1997-11-19 51984]

 

[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\policies\explorer]

"NoSMHelp"= 1 (0x1)

"MemCheckBoxInRunDlg"= 1 (0x1)

"NoSMBalloonTip"= 1 (0x1)

"NoDesktopCleanupWizard"= 1 (0x1)

"NoWelcomeScreen"= 1 (0x1)

"NoAutoUpdate"= 1 (0x1)

 

[HKEY_USERS\.default\software\microsoft\windows\currentversion\policies\explorer]

"NoSMHelp"= 1 (0x1)

"MemCheckBoxInRunDlg"= 1 (0x1)

"NoSMBalloonTip"= 1 (0x1)

"NoDesktopCleanupWizard"= 1 (0x1)

"NoWelcomeScreen"= 1 (0x1)

"NoAutoUpdate"= 1 (0x1)

 

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\beep.sys]

@="beep"

 

[HKEY_LOCAL_MACHINE\software\microsoft\security center]

"AntiVirusOverride"=dword:00000001

"FirewallOverride"=dword:00000001

 

[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile]

"EnableFirewall"= 0 (0x0)

"DisableUnicastResponsesToMulticastBroadcast"= 0 (0x0)

 

[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List]

"%windir%\\system32\\sessmgr.exe"=

"D:\\Program Files\\eMule\\EMULE.EXE"=

"D:\\Program Files\\iTunes\\iTunes.exe"=

 

R3 SOFTXG;YAMAHA XG SoftSynthesizer;D:\WINDOWS\system32\drivers\sxgxgwdm.sys [2002-05-22 966784]

S1 F-Secure HIPS;F-Secure HIPS;D:\Program Files\Orange\AntivirusFirewall\HIPS\fshs.sys [ ]

S3 F-Secure Gatekeeper;F-Secure Gatekeeper;D:\Program Files\Orange\AntivirusFirewall\Anti-Virus\minifilter\fsgk.sys [ ]

S4 F-Secure Filter;F-Secure File System Filter;D:\Program Files\Orange\AntivirusFirewall\Anti-Virus\Win2K\FSfilter.sys [ ]

S4 F-Secure Recognizer;F-Secure File System Recognizer;D:\Program Files\Orange\AntivirusFirewall\Anti-Virus\Win2K\FSrec.sys [ ]

S4 FSFW;F-Secure Firewall Driver;D:\WINDOWS\system32\drivers\fsdfw.sys [ ]

.

Contenu du dossier 'Tâches planifiées'

 

2008-10-03 D:\WINDOWS\Tasks\AppleSoftwareUpdate.job

- D:\Program Files\Apple Software Update\SoftwareUpdate.exe [2007-08-29 14:57]

.

.

------- Examen supplémentaire -------

.

FireFox -: Profile - D:\Documents and Settings\Admin.XPSP2-8246C1C43\Application Data\Mozilla\Firefox\Profiles\hr8abcv1.default\

FireFox -: prefs.js - STARTUP.HOMEPAGE - hxxp://www.orange.fr/

FF -: plugin - D:\Program Files\iTunes\Mozilla Plugins\npitunes.dll

FF -: plugin - D:\Program Files\Yahoo!\Common\npyaxmpb.dll

.

 

**************************************************************************

 

catchme 0.3.1367 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net

Rootkit scan 2008-10-24 23:04:04

Windows 5.1.2600 Service Pack 2 FAT NTAPI

 

Recherche de processus cachés ...

 

Recherche d'éléments en démarrage automatique cachés ...

 

Recherche de fichiers cachés ...

 

Scan terminé avec succès

Fichiers cachés: 0

 

**************************************************************************

.

Heure de fin: 2008-10-24 23:04:54

ComboFix3.txt 2008-06-16 16:40:48

ComboFix-quarantined-files.txt 2008-10-24 21:04:54

ComboFix2.txt 2008-10-24 20:43:44

 

Avant-CF: 8 541 601 792 octets libres

Après-CF: 8,532,320,256 octets libres

 

WindowsXP-KB310994-SP2-Pro-BootDisk-FRA.exe

[boot loader]

timeout=2

default=multi(0)disk(0)rdisk(0)partition(2)\WINDOWS

[operating systems]

C:\CMDCONS\BOOTSECT.DAT="Microsoft Windows Recovery Console" /cmdcons

multi(0)disk(0)rdisk(0)partition(2)\WINDOWS="Microsoft Windows XP Professionnel" /noexecute=optin /fastdetect

C:\="Microsoft Windows"

 

133 --- E O F --- 2008-10-16 06:51:48

Rejoindre la conversation

Vous pouvez publier maintenant et vous inscrire plus tard. Si vous avez un compte, connectez-vous maintenant pour publier avec votre compte.
Remarque : votre message nécessitera l’approbation d’un modérateur avant de pouvoir être visible.

Invité
Répondre à ce sujet…

×   Collé en tant que texte enrichi.   Coller en tant que texte brut à la place

  Seulement 75 émoticônes maximum sont autorisées.

×   Votre lien a été automatiquement intégré.   Afficher plutôt comme un lien

×   Votre contenu précédent a été rétabli.   Vider l’éditeur

×   Vous ne pouvez pas directement coller des images. Envoyez-les depuis votre ordinateur ou insérez-les depuis une URL.

×
 Partager
Aller sur la liste des sujets

  • En ligne récemment   0 membre est en ligne

    • Aucun utilisateur enregistré regarde cette page.
×
×
  • Créer...