Rapport HijackThis (ralentissement et crash)

[ka-limero]

Bonjour

 

J'ai des ralentissements, et parfois des crash des navigateurs que j'utilise: mozilla, google chrome

 

j'ai fais des scan Kaspersky internet secur 2011, et depuis les sites Nod32 et BitDefender,

j'ai passé un coup de Ccleaner, le problème persiste.

 

Pouvez vous voir s'il y a des anomalies sur dans rapport, merci :

 

ComboFix 10-11-07.03 - Sax 07/11/2010 12:25:55.5.4 - x86

Microsoft® Windows Vista™ Édition Familiale Premium 6.0.6002.2.1252.33.1036.18.3069.1779 [GMT 1:00]

Lancé depuis: l:\document\telechargment2\ComboFix.exe

SP: Windows Defender *enabled* (Updated) {D68DDC3A-831F-4FAE-9E44-DA132C1ACF46}

.

 

((((((((((((((((((((((((((((( Fichiers créés du 2010-10-07 au 2010-11-07 ))))))))))))))))))))))))))))))))))))

.

 

2010-11-07 11:32 . 2010-11-07 11:32 -------- d-----w- c:\users\Tib\AppData\Local\temp

2010-11-07 11:32 . 2010-11-07 11:32 -------- d-----w- c:\users\TEMP\AppData\Local\temp

2010-11-07 11:32 . 2010-11-07 11:32 -------- d-----w- c:\users\Mcx1\AppData\Local\temp

2010-11-07 11:32 . 2010-11-07 11:32 -------- d-----w- c:\users\Invité\AppData\Local\temp

2010-11-07 11:32 . 2010-11-07 11:32 -------- d-----w- c:\users\freenet\AppData\Local\temp

2010-11-07 11:32 . 2010-11-07 11:32 -------- d-----w- c:\users\Default\AppData\Local\temp

2010-11-07 11:32 . 2010-11-07 11:32 -------- d-----w- c:\users\Administrateur\AppData\Local\temp

2010-11-05 08:18 . 2010-10-07 23:21 6146896 ----a-w- c:\programdata\Microsoft\Windows Defender\Definition Updates\{628E6E1D-4BC5-4ABB-B078-C190E5B3E2A9}\mpengine.dll

2010-10-27 05:34 . 2010-08-26 16:34 1696256 ----a-w- c:\windows\system32\gameux.dll

2010-10-27 05:34 . 2010-08-26 16:33 28672 ----a-w- c:\windows\system32\Apphlpdm.dll

2010-10-27 05:34 . 2010-08-26 14:23 4240384 ----a-w- c:\windows\system32\GameUXLegacyGDFs.dll

2010-10-22 05:34 . 2010-10-22 05:34 94040 ----a-w- c:\program files\Common Files\Windows Live\.cache\c2ba75781cb71aa19\DSETUP.dll

2010-10-22 05:34 . 2010-10-22 05:34 525656 ----a-w- c:\program files\Common Files\Windows Live\.cache\c2ba75781cb71aa19\DXSETUP.exe

2010-10-22 05:34 . 2010-10-22 05:34 1691480 ----a-w- c:\program files\Common Files\Windows Live\.cache\c2ba75781cb71aa19\dsetup32.dll

2010-10-22 05:34 . 2010-10-22 05:34 94040 ----a-w- c:\program files\Common Files\Windows Live\.cache\c0d01a381cb71aa18\DSETUP.dll

2010-10-22 05:34 . 2010-10-22 05:34 525656 ----a-w- c:\program files\Common Files\Windows Live\.cache\c0d01a381cb71aa18\DXSETUP.exe

2010-10-22 05:34 . 2010-10-22 05:34 1691480 ----a-w- c:\program files\Common Files\Windows Live\.cache\c0d01a381cb71aa18\dsetup32.dll

2010-10-22 05:33 . 2010-11-07 08:03 -------- d-----w- c:\users\Sax\AppData\Local\Windows Live

2010-10-22 05:31 . 2009-08-04 08:02 754688 ----a-w- c:\windows\system32\webservices.dll

2010-10-21 22:12 . 2010-10-21 22:12 -------- d-----w- c:\users\Sax\AppData\Local\Cooliris

2010-10-20 10:24 . 2010-10-20 10:24 -------- d-----w- c:\users\Sax\AppData\Local\AskToolbar

2010-10-19 07:07 . 2010-09-13 13:56 8147456 ----a-w- c:\windows\system32\wmploc.DLL

2010-10-19 07:07 . 2010-09-13 13:56 168960 ----a-w- c:\program files\Windows Media Player\wmplayer.exe

2010-10-19 07:06 . 2010-09-06 16:20 125952 ----a-w- c:\windows\system32\srvsvc.dll

2010-10-19 07:06 . 2010-09-06 16:19 17920 ----a-w- c:\windows\system32\netevent.dll

2010-10-19 07:06 . 2010-09-06 13:45 304128 ----a-w- c:\windows\system32\drivers\srv.sys

2010-10-19 07:06 . 2010-09-06 13:45 145408 ----a-w- c:\windows\system32\drivers\srv2.sys

2010-10-19 07:06 . 2010-09-06 13:45 102400 ----a-w- c:\windows\system32\drivers\srvnet.sys

2010-10-19 07:06 . 2010-08-10 15:53 274944 ----a-w- c:\windows\system32\schannel.dll

2010-10-19 07:03 . 2010-08-31 15:46 954752 ----a-w- c:\windows\system32\mfc40.dll

2010-10-19 07:03 . 2010-08-31 15:46 954288 ----a-w- c:\windows\system32\mfc40u.dll

2010-10-19 07:03 . 2010-08-31 13:27 2038272 ----a-w- c:\windows\system32\win32k.sys

2010-10-19 07:03 . 2010-05-04 19:13 231424 ----a-w- c:\windows\system32\msshsq.dll

2010-10-19 07:03 . 2010-08-20 16:05 867328 ----a-w- c:\windows\system32\wmpmde.dll

2010-10-19 07:02 . 2010-08-31 15:44 531968 ----a-w- c:\windows\system32\comctl32.dll

2010-10-16 09:24 . 2010-10-16 11:18 -------- d-----w- c:\users\Sax\AppData\Roaming\IDM

2010-10-16 00:48 . 2010-10-16 00:48 -------- d-----w- c:\program files\CodeGazer

2010-10-15 16:14 . 2010-10-15 16:14 -------- d-----w- c:\program files\Switcher

2010-10-13 14:28 . 2010-10-13 14:28 -------- d-----w- c:\users\Tib\AppData\Roaming\OpenOffice.org

 

.

(((((((((((((((((((((((((((((((((( Compte-rendu de Find3M ))))))))))))))))))))))))))))))))))))))))))))))))

.

2010-10-19 09:41 . 2009-10-03 00:15 222080 ------w- c:\windows\system32\MpSigStub.exe

2010-10-16 00:53 . 2009-09-11 07:11 615424 ----a-w- c:\windows\system32\themeui.dll

2010-09-22 22:47 . 2010-09-22 22:47 49016 ----a-w- c:\windows\system32\sirenacm.dll

2010-09-15 02:50 . 2010-04-28 08:27 472808 ----a-w- c:\windows\system32\deployJava1.dll

2010-08-26 16:33 . 2010-10-27 05:34 173056 ----a-w- c:\windows\apppatch\AcXtrnal.dll

2010-08-26 16:33 . 2010-10-27 05:34 542720 ----a-w- c:\windows\apppatch\AcLayers.dll

2010-08-26 16:33 . 2010-10-27 05:34 458752 ----a-w- c:\windows\apppatch\AcSpecfc.dll

2010-08-26 16:33 . 2010-10-27 05:34 2159616 ----a-w- c:\windows\apppatch\AcGenral.dll

2010-08-17 14:11 . 2010-09-15 06:49 128000 ----a-w- c:\windows\system32\spoolsv.exe

2010-08-12 04:07 . 2009-10-10 16:19 126448 ------w- c:\windows\system32\pxinsi64.exe

2010-08-12 04:07 . 2009-10-10 16:19 123888 ------w- c:\windows\system32\pxcpyi64.exe

2010-08-12 04:07 . 2009-10-10 16:19 133616 ------w- c:\windows\system32\pxafs.dll

2010-08-12 04:07 . 2007-11-14 02:00 45648 ------w- c:\windows\system32\drivers\pxhelp20.sys

2010-05-02 15:57 . 2010-05-02 15:56 644 ----a-w- c:\program files\mpc5.reg

2010-05-02 15:57 . 2010-05-02 15:56 218 ----a-w- c:\program files\mpc6.reg

2010-05-02 15:57 . 2010-05-02 15:56 1636 ----a-w- c:\program files\mpc7.reg

2010-05-02 15:57 . 2010-05-02 15:56 816 ----a-w- c:\program files\ffdssetts.reg

2010-05-02 15:57 . 2010-05-02 15:56 680 ----a-w- c:\program files\mpc2.reg

2010-05-02 15:57 . 2010-05-02 15:56 226 ----a-w- c:\program files\mpc3.reg

2010-05-02 15:57 . 2010-05-02 15:56 218 ----a-w- c:\program files\mpc1.reg

2010-05-02 15:57 . 2010-05-02 15:56 1406 ----a-w- c:\program files\ffdsasetts.reg

2010-07-23 08:34 . 2009-11-21 08:47 119808 ----a-w- c:\program files\mozilla firefox\components\GoogleDesktopMozilla.dll

.

 

------- Sigcheck -------

 

[-] 2010-10-16 . 690D53BD10A804BB6D0A772D1C0E6907 . 247296 . . [6.0.6000.16386] . . c:\windows\System32\shsvcs.dll

[7] 2009-04-11 . C818C44C201898399BF999BB6B35D4E3 . 247296 . . [6.0.6000.16386] . . c:\windows\winsxs\x86_microsoft-windows-shsvcs_31bf3856ad364e35_6.0.6002.18005_none_cf1bd6361a0f622e\shsvcs.dll

[7] 2008-01-19 . 27F10F348E508243F6254846F8370D0D . 247296 . . [6.0.6000.16386] . . c:\windows\winsxs\x86_microsoft-windows-shsvcs_31bf3856ad364e35_6.0.6001.18000_none_cd305d2a1ced96e2\shsvcs.dll

[7] 2006-11-02 . B264DFA21677728613267FE63802B332 . 245248 . . [6.0.6000.16386] . . c:\windows\winsxs\x86_microsoft-windows-shsvcs_31bf3856ad364e35_6.0.6000.16386_none_caf99b2e2002860e\shsvcs.dll

.

((((((((((((((((((((((((((((((((( Points de chargement Reg ))))))))))))))))))))))))))))))))))))))))))))))))

.

.

*Note* les éléments vides & les éléments initiaux légitimes ne sont pas listés

REGEDIT4

 

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{D4027C7F-154A-4066-A1AD-4243D8127440}]

2010-02-04 14:50 1197448 ----a-w- c:\program files\Ask.com\GenericAskToolbar.dll

 

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]

"{D4027C7F-154A-4066-A1AD-4243D8127440}"= "c:\program files\Ask.com\GenericAskToolbar.dll" [2010-02-04 1197448]

 

[HKEY_CLASSES_ROOT\clsid\{d4027c7f-154a-4066-a1ad-4243d8127440}]

[HKEY_CLASSES_ROOT\GenericAskToolbar.ToolbarWnd.1]

[HKEY_CLASSES_ROOT\TypeLib\{2996F0E7-292B-4CAE-893F-47B8B1C05B56}]

[HKEY_CLASSES_ROOT\GenericAskToolbar.ToolbarWnd]

 

[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Toolbar\Webbrowser]

"{D4027C7F-154A-4066-A1AD-4243D8127440}"= "c:\program files\Ask.com\GenericAskToolbar.dll" [2010-02-04 1197448]

 

[HKEY_CLASSES_ROOT\clsid\{d4027c7f-154a-4066-a1ad-4243d8127440}]

[HKEY_CLASSES_ROOT\GenericAskToolbar.ToolbarWnd.1]

[HKEY_CLASSES_ROOT\TypeLib\{2996F0E7-292B-4CAE-893F-47B8B1C05B56}]

[HKEY_CLASSES_ROOT\GenericAskToolbar.ToolbarWnd]

 

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ShedkoBadges_1]

@="{01702EF5-1B33-487F-995F-6FA23F1D6652}"

[HKEY_CLASSES_ROOT\CLSID\{01702EF5-1B33-487F-995F-6FA23F1D6652}]

 

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ShedkoBadges_10]

@="{10702EF5-1B33-487F-995F-6FA23F1D6652}"

[HKEY_CLASSES_ROOT\CLSID\{10702EF5-1B33-487F-995F-6FA23F1D6652}]

 

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ShedkoBadges_2]

@="{02702EF5-1B33-487F-995F-6FA23F1D6652}"

[HKEY_CLASSES_ROOT\CLSID\{02702EF5-1B33-487F-995F-6FA23F1D6652}]

 

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ShedkoBadges_3]

@="{03702EF5-1B33-487F-995F-6FA23F1D6652}"

[HKEY_CLASSES_ROOT\CLSID\{03702EF5-1B33-487F-995F-6FA23F1D6652}]

 

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ShedkoBadges_4]

@="{04702EF5-1B33-487F-995F-6FA23F1D6652}"

[HKEY_CLASSES_ROOT\CLSID\{04702EF5-1B33-487F-995F-6FA23F1D6652}]

 

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ShedkoBadges_5]

@="{05702EF5-1B33-487F-995F-6FA23F1D6652}"

[HKEY_CLASSES_ROOT\CLSID\{05702EF5-1B33-487F-995F-6FA23F1D6652}]

 

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ShedkoBadges_6]

@="{06702EF5-1B33-487F-995F-6FA23F1D6652}"

[HKEY_CLASSES_ROOT\CLSID\{06702EF5-1B33-487F-995F-6FA23F1D6652}]

 

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ShedkoBadges_7]

@="{07702EF5-1B33-487F-995F-6FA23F1D6652}"

[HKEY_CLASSES_ROOT\CLSID\{07702EF5-1B33-487F-995F-6FA23F1D6652}]

 

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ShedkoBadges_8]

@="{08702EF5-1B33-487F-995F-6FA23F1D6652}"

[HKEY_CLASSES_ROOT\CLSID\{08702EF5-1B33-487F-995F-6FA23F1D6652}]

 

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ShedkoBadges_9]

@="{09702EF5-1B33-487F-995F-6FA23F1D6652}"

[HKEY_CLASSES_ROOT\CLSID\{09702EF5-1B33-487F-995F-6FA23F1D6652}]

 

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]

"WindowsWelcomeCenter"="oobefldr.dll" [2009-04-11 2153472]

"DellSupportCenter"="c:\program files\Dell Support Center\bin\sprtcmd.exe" [2009-05-21 206064]

"BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}"="c:\program files\Common Files\Nero\Lib\NMBgMonitor.exe" [2007-09-20 202024]

"Netlog Music Tool"="c:\program files\Netlog Music Tool\NetlogMusicTool.exe" [2009-06-24 1728456]

"ehTray.exe"="c:\windows\ehome\ehTray.exe" [2008-01-19 125952]

"Google Update"="c:\users\Sax\AppData\Local\Google\Update\GoogleUpdate.exe" [2010-01-26 135664]

"msnmsgr"="c:\program files\Windows Live\Messenger\msnmsgr.exe" [2010-09-22 4240760]

"WMPNSCFG"="c:\program files\Windows Media Player\WMPNSCFG.exe" [2008-01-19 202240]

 

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]

"RtHDVCpl"="RtHDVCpl.exe" [2007-05-11 4452352]

"StartCCC"="c:\program files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" [2006-11-10 90112]

"Google Desktop Search"="c:\program files\Google\Google Desktop Search\GoogleDesktop.exe" [2010-07-23 30192]

"dscactivate"="c:\program files\Dell Support Center\gs_agent\custom\dsca.exe" [2008-03-11 16384]

"DellSupportCenter"="c:\program files\Dell Support Center\bin\sprtcmd.exe" [2009-05-21 206064]

"NeroFilterCheck"="c:\program files\Common Files\Nero\Lib\NeroCheck.exe" [2007-03-01 153136]

"NBKeyScan"="c:\program files\Nero\Nero8\Nero BackItUp\NBKeyScan.exe" [2007-09-20 1836328]

"Windows Mobile Device Center"="c:\windows\WindowsMobile\wmdc.exe" [2007-05-31 648072]

"CloneCDTray"="c:\program files\SlySoft\CloneCD\CloneCDTray.exe" [2009-01-29 57344]

"Adobe Photo Downloader"="c:\program files\Adobe\Photoshop Elements 6.0\apdproxy.exe" [2007-09-10 67488]

"iTunesHelper"="c:\program files\iTunes\iTunesHelper.exe" [2010-02-15 141608]

"UnlockerAssistant"="c:\program files\Unlocker\UnlockerAssistant.exe" [2009-10-26 15872]

"AVP"="c:\program files\Kaspersky Lab\Kaspersky Internet Security 2011\avp.exe" [2010-09-14 352976]

"SunJavaUpdateSched"="c:\program files\Common Files\Java\Java Update\jusched.exe" [2010-05-14 248552]

"TkBellExe"="c:\program files\Common Files\Real\Update_OB\realsched.exe" [2010-08-29 202256]

"DivXUpdate"="c:\program files\DivX\DivX Update\DivXUpdate.exe" [2010-09-01 1164584]

"Adobe Reader Speed Launcher"="c:\program files\Adobe\Reader 9.0\Reader\Reader_sl.exe" [2010-09-23 35760]

"Adobe ARM"="c:\program files\Common Files\Adobe\ARM\1.0\AdobeARM.exe" [2010-09-20 932288]

 

c:\users\Tib\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\

OpenOffice.org 3.2.lnk - c:\program files\OpenOffice.org 3\program\quickstart.exe [2010-5-20 1195008]

 

c:\users\Sax\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\

Outil de notification Live Search.lnk - c:\users\Sax\AppData\Roaming\Microsoft\Live Search\Notification-LiveSearch.exe [2008-12-18 143360]

 

c:\programdata\Microsoft\Windows\Start Menu\Programs\Startup\

WinZip Quick Pick.lnk - c:\program files\WinZip\WZQKPICK.EXE [2007-6-6 394856]

 

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]

"EnableUIADesktopToggle"= 0 (0x0)

 

[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\windows]

"AppInit_DLLs"=c:\progra~1\Google\GOOGLE~2\GoogleDesktopNetwork3.dll c:\progra~1\KASPER~1\KASPER~1\mzvkbd3.dll

 

[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\drivers32]

"aux"=wdmaud.drv

 

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\WinDefend]

@="Service"

 

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\eMuleAutoStart]

2008-08-02 13:52 5484544 ----a-w- c:\program files\eMule\emule.exe

 

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Google Update]

2010-01-26 16:15 135664 ----atw- c:\users\Sax\AppData\Local\Google\Update\GoogleUpdate.exe

 

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\MsnMsgr]

2010-09-22 22:47 4240760 ----a-w- c:\program files\Windows Live\Messenger\msnmsgr.exe

 

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\VPbubble]

2008-08-25 09:30 239120 ----a-w- c:\program files\Nosibay\VPbubble\Launcher.exe

 

[HKEY_LOCAL_MACHINE\software\microsoft\security center\Monitoring\KasperskyAntiVirus]

"DisableMonitoring"=dword:00000001

 

[HKEY_LOCAL_MACHINE\software\microsoft\security center\Monitoring\McAfeeAntiSpyware]

"DisableMonitoring"=dword:00000001

 

[HKEY_LOCAL_MACHINE\software\microsoft\security center\Svc]

"AntiVirusOverride"=dword:00000001

 

R2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;c:\windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-03-18 130384]

R3 GoogleDesktopManager-051210-111108;Google Desktop Manager 5.9.1005.12335;c:\program files\Google\Google Desktop Search\GoogleDesktop.exe [2010-07-23 30192]

R3 wacmoumonitor;Wacom Mode Helper;c:\windows\system32\DRIVERS\wacmoumonitor.sys [2008-10-06 15656]

R3 WPFFontCache_v0400;Cache de police de Windows Presentation Foundation 4.0.0.0;c:\windows\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe [2010-03-18 753504]

S1 kl2;kl2;c:\windows\system32\DRIVERS\kl2.sys [2010-06-09 11352]

S1 KLIM6;Kaspersky Anti-Virus NDIS 6 Filter;c:\windows\system32\DRIVERS\klim6.sys [2010-04-22 22104]

S2 NPF;NetGroup Packet Filter Driver;c:\windows\system32\drivers\npf.sys [2009-10-20 50704]

S2 TabletServicePen;TabletServicePen;c:\windows\system32\Pen_Tablet.exe [2008-12-11 2749736]

S3 klmouflt;Kaspersky Lab KLMOUFLT;c:\windows\system32\DRIVERS\klmouflt.sys [2009-11-02 19984]

 

 

[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\svchost]

WindowsMobile REG_MULTI_SZ wcescomm rapimgr

LocalServiceRestricted REG_MULTI_SZ WcesComm RapiMgr

LocalServiceAndNoImpersonation REG_MULTI_SZ FontCache

.

Contenu du dossier 'Tâches planifiées'

 

2010-11-06 c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-527785819-3466132717-2700656992-1000Core.job

- c:\users\Sax\AppData\Local\Google\Update\GoogleUpdate.exe [2010-01-26 16:15]

 

2010-11-07 c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-527785819-3466132717-2700656992-1000UA.job

- c:\users\Sax\AppData\Local\Google\Update\GoogleUpdate.exe [2010-01-26 16:15]

.

.

------- Examen supplémentaire -------

.

mStart Page = about:blank

uInternet Settings,ProxyOverride = *.local

IE: &Télécharger avec NetTransport - c:\program files\Xi\NetTransport 2\NTAddLink.html

IE: Add to Google Photos Screensa&ver - c:\windows\system32\GPhotos.scr/200

IE: Ajouter à l'Anti-bannière - c:\program files\Kaspersky Lab\Kaspersky Internet Security 2011\ie_banner_deny.htm

IE: Tout t&élécharger avec NetTransport - c:\program files\Xi\NetTransport 2\NTAddList.html

TCP: {7C7F0920-689B-43E1-88C2-0622986547D6} = 212.27.40.240,212.27.40.241

FF - ProfilePath - c:\users\Sax\AppData\Roaming\Mozilla\Firefox\Profiles\shhywqv3.Utilisateur par défaut\

FF - prefs.js: browser.startup.homepage - hxxp://google.fr

FF - component: c:\program files\Mozilla Firefox\extensions\KavAntiBanner@Kaspersky.ru\components\abhelperxpcom.dll

FF - component: c:\program files\Mozilla Firefox\extensions\linkfilter@kaspersky.ru\components\kavlinkfilter.dll

FF - component: c:\programdata\Real\RealPlayer\BrowserRecordPlugin\Firefox\Ext\components\nprpffbrowserrecordext.dll

FF - component: c:\users\Sax\AppData\Roaming\Mozilla\Firefox\Profiles\shhywqv3.Utilisateur par défaut\extensions\{e001c731-5e37-4538-a5cb-8168736a2360}\components\qscanff.dll

FF - component: c:\users\Sax\AppData\Roaming\Mozilla\Firefox\Profiles\shhywqv3.Utilisateur par défaut\extensions\piclens@cooliris.com\components\coolirisstub.dll

FF - HiddenExtension: Microsoft .NET Framework Assistant: {20a82645-c095-46ed-80e3-08825760534b} - c:\windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension\

 

---- PARAMETRES FIREFOX ----

c:\program files\Mozilla Firefox\greprefs\all.js - pref("network.IDN.whitelist.xn--mgbaam7a8h", true);

c:\program files\Mozilla Firefox\greprefs\all.js - pref("network.IDN.whitelist.xn--fiqz9s", true); // Traditional

c:\program files\Mozilla Firefox\greprefs\all.js - pref("network.IDN.whitelist.xn--fiqs8s", true); // Simplified

c:\program files\Mozilla Firefox\greprefs\all.js - pref("network.IDN.whitelist.xn--j6w193g", true);

c:\program files\Mozilla Firefox\greprefs\all.js - pref("network.IDN.whitelist.xn--mgberp4a5d4ar", true);

c:\program files\Mozilla Firefox\greprefs\all.js - pref("network.IDN.whitelist.xn--mgberp4a5d4a87g", true);

c:\program files\Mozilla Firefox\greprefs\all.js - pref("network.IDN.whitelist.xn--mgbqly7c0a67fbc", true);

c:\program files\Mozilla Firefox\greprefs\all.js - pref("network.IDN.whitelist.xn--mgbqly7cvafr", true);

c:\program files\Mozilla Firefox\greprefs\all.js - pref("network.IDN.whitelist.xn--kpry57d", true); // Traditional

c:\program files\Mozilla Firefox\greprefs\all.js - pref("network.IDN.whitelist.xn--kprw13d", true); // Simplified

c:\program files\Mozilla Firefox\defaults\pref\firefox.js - pref("dom.ipc.plugins.enabled", false);

.

 

**************************************************************************

 

catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, GMER - Rootkit Detector and Remover

Rootkit scan 2010-11-07 12:32

Windows 6.0.6002 Service Pack 2 NTFS

 

Recherche de processus cachés ...

 

Recherche d'éléments en démarrage automatique cachés ...

 

Recherche de fichiers cachés ...

 

Scan terminé avec succès

Fichiers cachés: 0

 

**************************************************************************

.

--------------------- DLLs chargées dans les processus actifs ---------------------

 

- - - - - - - > 'Explorer.exe'(5940)

c:\windows\RESOUR~1\Themes\BADGES~1.0\BADGES~1.DLL

c:\windows\System32\NLSLexicons000c.dll

.

Heure de fin: 2010-11-07 12:34:43

ComboFix-quarantined-files.txt 2010-11-07 11:34

ComboFix2.txt 2010-11-07 11:21

ComboFix3.txt 2008-10-19 16:04

 

Avant-CF: 17 084 264 448 octets libres

Après-CF: 16 997 617 664 octets libres

 

Current=8 Default=8 Failed=30 LastKnownGood=16 Sets=1,2,3,4,5,6,7,8,9,10,11,12,13,14,15,16,30

- - End Of File - - 0BD839E39EA1617385FE48820E8D0A65

[bleuet]

Salut,

 

j'ai passé un coup de Ccleaner, le problème persiste.

CCleaner n'est pas un anti-malware. Il nettoie les temps et dans ce sens vide ces dossiers où les véroles aiment bien élire domicile.

 

Ask.com\GenericAskToolbar.dll

-> pas bon

c:\program files\eMule\emule.exe

-> source d'infection(s)

As-tu possibilité d'un rapport HijackThis ?

[ka-limero]

Comment je fais pour me débarrasser de :Ask.com\GenericAskToolbar.dll et c:\program files\eMule\emule.exe

emule faut juste le désinstaller et le supprimer ?

 

re:As-tu possibilité d'un rapport HijackThis ?

 

j'ai pas compris, c'est pas un rapport ce que j'ai donné ?

[bleuet]

Pour Emule, suppression par ajout/suppression de programmes.

 

HijackThis >

TrendSecure | Téléchargement de TrendMicro™ HijackThis™

 

en version exécutable pour faire un point.

 

Option "do a system scan and save a logfile" à copier/coller le rapport qui s'ouvre sur le bureau avec le bloc notes hijackthis.log

 

 

[ka-limero]

merci

 

j'ai eu cette première fenêtre, j'ai cliqué sur oui,

 

après j'ai eu celle ci:

 

je sais pas si c'est bon

sinon voici le rapport:

 

Logfile of Trend Micro HijackThis v2.0.2

Scan saved at 17:14:44, on 07/11/2010

Platform: Windows Vista SP2 (WinNT 6.00.1906)

MSIE: Internet Explorer v8.00 (8.00.6001.18975)

Boot mode: Normal

 

Running processes:

C:\Windows\system32\Dwm.exe

C:\Windows\system32\taskeng.exe

C:\Windows\SYSTEM32\WISPTIS.EXE

C:\Program Files\Common Files\microsoft shared\ink\TabTip.exe

C:\Windows\Explorer.EXE

C:\Windows\RtHDVCpl.exe

C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe

C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\MOM.EXE

C:\Program Files\Dell Support Center\bin\sprtcmd.exe

C:\Windows\WindowsMobile\wmdc.exe

C:\Program Files\SlySoft\CloneCD\CloneCDTray.exe

C:\Program Files\iTunes\iTunesHelper.exe

C:\Program Files\Unlocker\UnlockerAssistant.exe

C:\Windows\system32\WTablet\Pen_TabletUser.exe

C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2011\avp.exe

C:\Program Files\Common Files\Java\Java Update\jusched.exe

C:\Program Files\Common Files\Real\Update_OB\realsched.exe

C:\Program Files\DivX\DivX Update\DivXUpdate.exe

C:\Program Files\Common Files\Nero\Lib\NMBgMonitor.exe

C:\Program Files\Netlog Music Tool\NetlogMusicTool.exe

C:\Windows\ehome\ehtray.exe

C:\Users\Sax\AppData\Local\Google\Update\1.2.183.39\GoogleCrashHandler.exe

C:\Program Files\Common Files\Nero\Lib\NMIndexStoreSvr.exe

C:\Program Files\Windows Media Player\wmpnscfg.exe

C:\Windows\ehome\ehmsas.exe

C:\Program Files\WinZip\WZQKPICK.EXE

C:\Users\Sax\AppData\Roaming\Microsoft\Live Search\Notification-LiveSearch.exe

C:\Users\Sax\AppData\Roaming\Microsoft\Live Search\Mise-a-jour-LiveSearch.exe

C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CCC.exe

C:\Windows\system32\wbem\unsecapp.exe

C:\Program Files\Common Files\Microsoft Shared\Ink\InputPersonalization.exe

C:\Windows\system32\taskeng.exe

C:\Windows\System32\mobsync.exe

L:\Document\telechargment2\HiJackThis.exe

 

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = MSN : Hotmail, Messenger, Bing, Actualité et Sport

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = MSN : Hotmail, Messenger, Bing, Actualité et Sport

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = Bing

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = Bing

R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank

R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local

R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =

O2 - BHO: (no name) - {02478D38-C3F9-4efb-9B51-7695ECA05670} - (no file)

O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll

O2 - BHO: RealPlayer Download and Record Plugin for Internet Explorer - {3049C3E9-B461-4BC5-8870-4C09146192CA} - C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\IE\rpbrowserrecordplugin.dll

O2 - BHO: IEVkbdBHO - {59273AB4-E7D3-40F9-A1A8-6FA9CCA1862C} - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2011\ievkbd.dll

O2 - BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll

O2 - BHO: Easy Photo Print - {9421DD08-935F-4701-A9CA-22DF90AC4EA6} - C:\Program Files\Epson Software\Easy Photo Print\EPTBL.dll

O2 - BHO: NTIECatcher Class - {C56CB6B0-0D96-11D6-8C65-B2868B609932} - C:\Program Files\Xi\NetTransport 2\NTIEHelper.dll

O2 - BHO: CBrowserHelperObject Object - {CA6319C0-31B7-401E-A518-A07C3DB8F777} - C:\Program Files\Dell\BAE\BAE.dll

O2 - BHO: Ask Toolbar BHO - {D4027C7F-154A-4066-A1AD-4243D8127440} - C:\Program Files\Ask.com\GenericAskToolbar.dll

O2 - BHO: Java Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll

O2 - BHO: link filter bho - {E33CF602-D945-461A-83F0-819F76A199F8} - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2011\klwtbbho.dll

O3 - Toolbar: Easy Photo Print - {9421DD08-935F-4701-A9CA-22DF90AC4EA6} - C:\Program Files\Epson Software\Easy Photo Print\EPTBL.dll

O3 - Toolbar: Ask Toolbar - {D4027C7F-154A-4066-A1AD-4243D8127440} - C:\Program Files\Ask.com\GenericAskToolbar.dll

O4 - HKLM\..\Run: [RtHDVCpl] RtHDVCpl.exe

O4 - HKLM\..\Run: [startCCC] "C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe"

O4 - HKLM\..\Run: [Google Desktop Search] "C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe" /startup

O4 - HKLM\..\Run: [dscactivate] "C:\Program Files\Dell Support Center\gs_agent\custom\dsca.exe"

O4 - HKLM\..\Run: [DellSupportCenter] "C:\Program Files\Dell Support Center\bin\sprtcmd.exe" /P DellSupportCenter

O4 - HKLM\..\Run: [NeroFilterCheck] C:\Program Files\Common Files\Nero\Lib\NeroCheck.exe

O4 - HKLM\..\Run: [NBKeyScan] "C:\Program Files\Nero\Nero8\Nero BackItUp\NBKeyScan.exe"

O4 - HKLM\..\Run: [Windows Mobile Device Center] %windir%\WindowsMobile\wmdc.exe

O4 - HKLM\..\Run: [CloneCDTray] "C:\Program Files\SlySoft\CloneCD\CloneCDTray.exe" /s

O4 - HKLM\..\Run: [Adobe Photo Downloader] "C:\Program Files\Adobe\Photoshop Elements 6.0\apdproxy.exe"

O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe"

O4 - HKLM\..\Run: [unlockerAssistant] "C:\Program Files\Unlocker\UnlockerAssistant.exe"

O4 - HKLM\..\Run: [AVP] "C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2011\avp.exe"

O4 - HKLM\..\Run: [sunJavaUpdateSched] "C:\Program Files\Common Files\Java\Java Update\jusched.exe"

O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Common Files\Real\Update_OB\realsched.exe" -osboot

O4 - HKLM\..\Run: [DivXUpdate] "C:\Program Files\DivX\DivX Update\DivXUpdate.exe" /CHECKNOW

O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe"

O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe"

O4 - HKCU\..\Run: [WindowsWelcomeCenter] rundll32.exe oobefldr.dll,ShowWelcomeCenter

O4 - HKCU\..\Run: [DellSupportCenter] "C:\Program Files\Dell Support Center\bin\sprtcmd.exe" /P DellSupportCenter

O4 - HKCU\..\Run: [bgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}] "C:\Program Files\Common Files\Nero\Lib\NMBgMonitor.exe"

O4 - HKCU\..\Run: [Netlog Music Tool] "C:\Program Files\Netlog Music Tool\NetlogMusicTool.exe"

O4 - HKCU\..\Run: [ehTray.exe] C:\Windows\ehome\ehTray.exe

O4 - HKCU\..\Run: [Google Update] "C:\Users\Sax\AppData\Local\Google\Update\GoogleUpdate.exe" /c

O4 - HKCU\..\Run: [msnmsgr] "C:\Program Files\Windows Live\Messenger\msnmsgr.exe" /background

O4 - HKCU\..\Run: [WMPNSCFG] C:\Program Files\Windows Media Player\WMPNSCFG.exe

O4 - Startup: Outil de notification Live Search.lnk = C:\Users\Sax\AppData\Roaming\Microsoft\Live Search\Notification-LiveSearch.exe

O4 - Global Startup: WinZip Quick Pick.lnk = C:\Program Files\WinZip\WZQKPICK.EXE

O8 - Extra context menu item: &Télécharger avec NetTransport - C:\Program Files\Xi\NetTransport 2\NTAddLink.html

O8 - Extra context menu item: Add to Google Photos Screensa&ver - res://C:\Windows\system32\GPhotos.scr/200

O8 - Extra context menu item: Ajouter à l'Anti-bannière - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2011\ie_banner_deny.htm

O8 - Extra context menu item: Tout t&élécharger avec NetTransport - C:\Program Files\Xi\NetTransport 2\NTAddList.html

O9 - Extra button: @C:\Program Files\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1004 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll

O9 - Extra 'Tools' menuitem: @C:\Program Files\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1003 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll

O9 - Extra button: @C:\Windows\WindowsMobile\INetRepl.dll,-222 - {2EAF5BB1-070F-11D3-9307-00C04FAE2D4F} - C:\Windows\WindowsMobile\INetRepl.dll

O9 - Extra button: (no name) - {2EAF5BB2-070F-11D3-9307-00C04FAE2D4F} - C:\Windows\WindowsMobile\INetRepl.dll

O9 - Extra 'Tools' menuitem: @C:\Windows\WindowsMobile\INetRepl.dll,-223 - {2EAF5BB2-070F-11D3-9307-00C04FAE2D4F} - C:\Windows\WindowsMobile\INetRepl.dll

O9 - Extra button: Clavier &virtuel - {4248FE82-7FCB-46AC-B270-339F08212110} - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2011\klwtbbho.dll

O9 - Extra button: Analyse des &liens - {CCF151D8-D089-449F-A5A4-D9909053F20F} - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2011\klwtbbho.dll

O16 - DPF: {30528230-99f7-4bb4-88d8-fa1d4f56a2ab} (YInstStarter Class) - C:\Program Files\Yahoo!\Common\yinsthelper.dll

O17 - HKLM\System\CCS\Services\Tcpip\..\{7C7F0920-689B-43E1-88C2-0622986547D6}: NameServer = 212.27.40.240,212.27.40.241

O20 - AppInit_DLLs: C:\PROGRA~1\Google\GOOGLE~2\GoogleDesktopNetwork3.dll C:\PROGRA~1\KASPER~1\KASPER~1\mzvkbd3.dll

O23 - Service: Adobe Active File Monitor V6 (AdobeActiveFileMonitor6.0) - Unknown owner - C:\Program Files\Adobe\Photoshop Elements 6.0\PhotoshopElementsFileAgent.exe

O23 - Service: Apple Mobile Device - Apple Inc. - C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe

O23 - Service: Ati External Event Utility - ATI Technologies Inc. - C:\Windows\system32\Ati2evxx.exe

O23 - Service: Kaspersky Anti-Virus Service (AVP) - Kaspersky Lab ZAO - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2011\avp.exe

O23 - Service: Service Bonjour (Bonjour Service) - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe

O23 - Service: FLEXnet Licensing Service - Macrovision Europe Ltd. - C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe

O23 - Service: Google Desktop Manager 5.9.1005.12335 (GoogleDesktopManager-051210-111108) - Google - C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe

O23 - Service: Google Software Updater (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe

O23 - Service: Service de l’iPod (iPod Service) - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe

O23 - Service: Nero BackItUp Scheduler 3 - Nero AG - C:\Program Files\Nero\Nero8\Nero BackItUp\NBService.exe

O23 - Service: NMIndexingService - Nero AG - C:\Program Files\Common Files\Nero\Lib\NMIndexingService.exe

O23 - Service: Remote Packet Capture Protocol v.0 (experimental) (rpcapd) - CACE Technologies, Inc. - C:\Program Files\WinPcap\rpcapd.exe

O23 - Service: SupportSoft Sprocket Service (dellsupportcenter) (sprtsvc_dellsupportcenter) - SupportSoft, Inc. - C:\Program Files\Dell Support Center\bin\sprtsvc.exe

O23 - Service: stllssvr - MicroVision Development, Inc. - C:\Program Files\Common Files\SureThing Shared\stllssvr.exe

O23 - Service: TabletServicePen - Wacom Technology, Corp. - C:\Windows\system32\Pen_Tablet.exe

 

--

End of file - 10979 bytes

Modifié le 7 novembre 2010 par ka-limero

[bleuet]

PC infecté par Ask Toolbar.

 

O2 - BHO: Ask Toolbar BHO - {D4027C7F-154A-4066-A1AD-4243D8127440} - C:\Program Files\Ask.com\GenericAskToolbar.dll

O3 - Toolbar: Ask Toolbar - {D4027C7F-154A-4066-A1AD-4243D8127440} - C:\Program Files\Ask.com\GenericAskToolbar.dll

 

Tu peux suivre les tutos et applications >

Desinstaller la ASK Toolbar

 

propositions 1 et 3. AD REMOVER nettoiera.

 

[ka-limero]

merci beaucoup bleuet

Je te tiens au courant pour voir la suite.

[ka-limero]

le problème est toujours présent, voici mon dernier rapport ToolBarSD :

 

 

-----------\\ ToolBar S&D 1.2.9 XP/Vista

 

Microsoft® Windows Vista™ Édition Familiale Premium ( v6.0.6002 ) Service Pack 2

X86-based PC ( Multiprocessor Free : Intel® Core2 Quad CPU Q6600 @ 2.40GHz )

BIOS : Phoenix - AwardBIOS v6.00PG

USER : Sax ( Not Administrator ! )

BOOT : Normal boot

C:\ (Local Disk) - NTFS - Total:455 Go (Free:17 Go)

D:\ (Local Disk) - NTFS - Total:9 Go (Free:5 Go)

E:\ (CD or DVD)

F:\ (USB)

G:\ (USB)

H:\ (USB)

I:\ (USB)

J:\ (Local Disk) - NTFS - Total:465 Go (Free:214 Go)

K:\ (USB)

L:\ (Local Disk) - NTFS - Total:931 Go (Free:316 Go)

 

"C:\ToolBar SD" ( MAJ : 22-08-2009|18:42 )

Option : [2] ( 07/11/2010|21:01 )

 

[ UAC => 1 ]

 

-----------\\ Recherche de Fichiers / Dossiers ...

 

 

-----------\\ [..\Internet Explorer\Main]

 

[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]

"Local Page"="C:\\Windows\\system32\\blank.htm"

"Start Page"="http://fr.msn.com/"

"Default_search_url"="http://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch"'>http://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch"'>http://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch"

"Default_page_url"="http://www.microsoft.com/isapi/redir.dll?prd=ie&pver=6&ar=msnhome"

"Search bar"="http://go.microsoft.com/fwlink/?LinkId=54896"'>http://go.microsoft.com/fwlink/?linkid=54896"

"Url"="http://go.microsoft.com/fwlink/?LinkId=75720"

 

[HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Main]

"Start Page"="http://www.msn.com/"

"Default_Page_URL"="http://go.microsoft.com/fwlink/?LinkId=54896"

"Default_Search_URL"="http://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch"

"Search Page"="http://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch"

"Local Page"="C:\\Windows\\System32\\blank.htm"

"Search bar"="http://search.msn.com/spbasic.htm"

 

 

--------------------\\ Recherche d'autres infections

 

--------------------\\ Cracks & Keygens ..

 

C:\Users\Sax\Desktop\a mettre sur bureau\flv, mp3\capture\cl‚ usb\photoshop\photoshop CS3 Fr by Movi.com\Crack

C:\Users\Sax\Desktop\a mettre sur bureau\flv, mp3\capture\cl‚ usb\photoshop\photoshop CS3 Fr by Movi.com\Crack\Photoshop.exe

C:\Users\Sax\Documents\photoshop\photoshop CS3 Fr by Movi\Crack

C:\Users\Sax\Documents\photoshop\photoshop CS3 Fr by Movi\Crack\Photoshop.exe

C:\Users\Sax\dwhelper\F F vid of cracking my T o C.flv

 

 

[ UAC => 1 ]

 

 

1 - "C:\ToolBar SD\TB_1.txt" - 07/11/2010|21:02 - Option : [2]

 

-----------\\ Fin du rapport a 21:02:19,16

Modifié le 7 novembre 2010 par ka-limero

[bleuet]

Tu as passé Ad Remover en nettoyage en suivant le tuto ?

Si rien n'y fait --> forum éradication

[ka-limero]

Oui, et je viens de supprimer les fichiers manuellement,

apparemment je n'ai plus de problème.

 

C'est ok alors ?