Bonjour,
J’ai un virus, enfin , apparemment j’avais un virus sur mon ordinateur qui me redirigeait vers des lien internet et provoquait des blocage de mon système .
J’ai suivie le sujet permettant de tous nettoyer , je poste donc ici tous les rapports dans l’ordre:
Premier rapport fais avec hijackthis :
Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 12:05:58, on 10/09/2008
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.6000.16705)
Boot mode: Normal
Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Lavasoft\Ad-Aware 2007\aawservice.exe
C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
C:\Program Files\Alwil Software\Avast4\ashServ.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\AntiVir PersonalEdition Classic\avguard.exe
C:\Program Files\AntiVir PersonalEdition Classic\sched.exe
C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
C:\Program Files\Bonjour\mDNSResponder.exe
C:\WINDOWS\system32\nvsvc32.exe
C:\WINDOWS\system32\PnkBstrA.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\Tablet.exe
C:\Program Files\Webroot\Spy Sweeper\SpySweeper.exe
C:\WINDOWS\system32\WTablet\TabUserW.exe
C:\WINDOWS\RTHDCPL.EXE
C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
C:\Program Files\Adobe\Adobe Version Cue\ControlPanel\VersionCueTray.exe
C:\WINDOWS\system32\RUNDLL32.EXE
C:\Program Files\AntiVir PersonalEdition Classic\avgnt.exe
C:\WINDOWS\system32\Tablet.exe
C:\Program Files\iTunes\iTunesHelper.exe
C:\Program Files\Java\jre1.6.0_07\bin\jusched.exe
C:\Program Files\Webroot\Spy Sweeper\SpySweeperUI.exe
C:\Program Files\Skype\Phone\Skype.exe
C:\Program Files\Windows Live\Messenger\MsnMsgr.Exe
C:\WINDOWS\system32\ctfmon.exe
C:\program files\steam.exe
C:\WINDOWS\system32\drivers\svchost.exe
C:\Program Files\Adobe\Adobe Acrobat 6.0\Distillr\acrotray.exe
C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
C:\Program Files\iPod\bin\iPodService.exe
C:\Program Files\Skype\Plugin Manager\skypePM.exe
C:\Program Files\Windows Live\Messenger\usnsvc.exe
C:\WINDOWS\system32\wscntfy.exe
C:\Program Files\Safari\Safari.exe
C:\Documents and Settings\poste\Bureau\scan.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = g.msn.fr…
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = go.microsoft.com…
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = go.microsoft.com…
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = go.microsoft.com…
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = go.microsoft.com…
R1 - HKCU\Software\Microsoft\Internet Explorer\SearchURL,(Default) = g.msn.fr…
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
O2 - BHO: Yahoo! Toolbar Helper - {02478D38-C3F9-4EFB-9B51-7695ECA05670} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll
O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_07\bin\ssv.dll
O2 - BHO: (no name) - {7C109800-A5D5-438F-9640-18D17E168B88} - C:\Program Files\NetProject\sbmdl.dll (file missing)
O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)
O2 - BHO: Programme d’aide de l’Assistant de connexion Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: AcroIEToolbarHelper Class - {AE7CD045-E861-484f-8273-0445EE161910} - C:\Program Files\Adobe\Adobe Acrobat 6.0\Acrobat\AcroIEFavClient.dll
O2 - BHO: Windows Live Toolbar Helper - {BDBD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\Windows Live Toolbar\msntb.dll
O3 - Toolbar: Adobe PDF - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files\Adobe\Adobe Acrobat 6.0\Acrobat\AcroIEFavClient.dll
O3 - Toolbar: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll
O3 - Toolbar: Windows Live Toolbar - {BDAD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\Windows Live Toolbar\msntb.dll
O3 - Toolbar: Internet Service - {DB9FBA9D-AB1B-4CC6-9745-F3B549D64E40} - C:\Program Files\NetProject\wamdl.dll (file missing)
O4 - HKLM…\Run: [RTHDCPL] RTHDCPL.EXE
O4 - HKLM…\Run: [Alcmtr] ALCMTR.EXE
O4 - HKLM…\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
O4 - HKLM…\Run: [AdobeVersionCue] “C:\Program Files\Adobe\Adobe Version Cue\ControlPanel\VersionCueTray.exe”
O4 - HKLM…\Run: [NvCplDaemon] “RUNDLL32.EXE” C:\WINDOWS\system32\NvCpl.dll,NvStartup
O4 - HKLM…\Run: [nwiz] “nwiz.exe” /install
O4 - HKLM…\Run: [NvMediaCenter] “RUNDLL32.EXE” C:\WINDOWS\system32\NvMcTray.dll,NvTaskbarInit
O4 - HKLM…\Run: [SetPoint.exe] C:\WINDOWS\SetPoint.exe
O4 - HKLM…\Run: [avgnt] “C:\Program Files\AntiVir PersonalEdition Classic\avgnt.exe” /min
O4 - HKLM…\Run: [amd_dc_opt] “C:\Program Files\AMD\Dual-Core Optimizer\amd_dc_opt.exe”
O4 - HKLM…\Run: [AppleSyncNotifier] “C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleSyncNotifier.exe”
O4 - HKLM…\Run: [QuickTime Task] “C:\Program Files\QuickTime\QTTask.exe” -atboottime
O4 - HKLM…\Run: [iTunesHelper] “C:\Program Files\iTunes\iTunesHelper.exe”
O4 - HKLM…\Run: [SunJavaUpdateSched] “C:\Program Files\Java\jre1.6.0_07\bin\jusched.exe”
O4 - HKLM…\Run: [SpySweeper] C:\Program Files\Webroot\Spy Sweeper\SpySweeperUI.exe /startintray
O4 - HKCU…\Run: [Skype] “C:\Program Files\Skype\Phone\Skype.exe” /nosplash /minimized
O4 - HKCU…\Run: [WOOKIT] “C:\PROGRA~1\Wanadoo\Shell.exe” appLaunchClientZone.shl|DEFAULT=cnx|PARAM=
O4 - HKCU…\Run: [msnmsgr] “C:\Program Files\Windows Live\Messenger\MsnMsgr.Exe” /background
O4 - HKCU…\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU…\Run: [Steam] “c:\program files\steam.exe” -silent
O4 - HKCU…\Run: [SVCHOST.EXE] C:\WINDOWS\system32\drivers\svchost.exe
O4 - HKLM…\Policies\Explorer\Run: [some] C:\Program Files\NetProject\scit.exe
O4 - HKLM…\Policies\Explorer\Run: [start] C:\Program Files\NetProject\sbmntr.exe
O4 - HKUS\S-1-5-19…\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User ‘SERVICE LOCAL’)
O4 - HKUS\S-1-5-20…\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User ‘SERVICE RÉSEAU’)
O4 - HKUS\S-1-5-18…\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User ‘SYSTEM’)
O4 - HKUS.DEFAULT…\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User ‘Default user’)
O4 - Global Startup: Adobe Gamma Loader.lnk = C:\Program Files\Fichiers communs\Adobe\Calibration\Adobe Gamma Loader.exe
O4 - Global Startup: Adobe Reader Speed Launch.lnk = C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe
O4 - Global Startup: Assistant d’Acrobat.lnk = C:\Program Files\Adobe\Adobe Acrobat 6.0\Distillr\acrotray.exe
O8 - Extra context menu item: &Windows Live Search - C:\Program… Files\Windows Live Toolbar\msntb.dll/search.htm
O8 - Extra context menu item: Ouvrir dans un nouvel onglet d’arrière-plan - C:\Program… Files\Windows Live Toolbar\Components\fr-fr\msntabres.dll.mui/229?bb31231b9ec043eeb5f64cf78e488bd7
O8 - Extra context menu item: Ouvrir dans un nouvel onglet de premier plan - C:\Program… Files\Windows Live Toolbar\Components\fr-fr\msntabres.dll.mui/230?bb31231b9ec043eeb5f64cf78e488bd7
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_07\bin\ssv.dll
O9 - Extra ‘Tools’ menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_07\bin\ssv.dll
O9 - Extra button: (no name) - {9034A523-D068-4BE8-A284-9DF278BE776E} - www.iefixgate.com… (file missing)
O9 - Extra ‘Tools’ menuitem: IE Anti-Spyware - {9034A523-D068-4BE8-A284-9DF278BE776E} - www.iefixgate.com… (file missing)
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra ‘Tools’ menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra ‘Tools’ menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O16 - DPF: {5D6F45B3-9043-443D-A792-115447494D24} (UnoCtrl Class) - messenger.zone.msn.com…
O16 - DPF: {C3F79A2B-B9B4-4A66-B012-3EE46475B072} (MessengerStatsClient Class) - messenger.zone.msn.com…
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\FICHIE~1\Skype\SKYPE4~1.DLL
O22 - SharedTaskScheduler: enviva - {f43bfc6c-47cc-4798-8798-a0721b8ed7ab} - C:\WINDOWS\system32\baoohy.dll (file missing)
O23 - Service: Ad-Aware 2007 Service (aawservice) - Lavasoft - C:\Program Files\Lavasoft\Ad-Aware 2007\aawservice.exe
O23 - Service: Adobe LM Service - Adobe Systems - C:\Program Files\Fichiers communs\Adobe Systems Shared\Service\Adobelmsvc.exe
O23 - Service: AdobeVersionCue - Adobe Sytems - C:\Program Files\Adobe\Adobe Version Cue\service\VersionCue.exe
O23 - Service: AntiVir PersonalEdition Classic Scheduler (AntiVirScheduler) - Avira GmbH - C:\Program Files\AntiVir PersonalEdition Classic\sched.exe
O23 - Service: AntiVir PersonalEdition Classic Guard (AntiVirService) - Avira GmbH - C:\Program Files\AntiVir PersonalEdition Classic\avguard.exe
O23 - Service: Apple Mobile Device - Apple Inc. - C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - ALWIL Software - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
O23 - Service: avast! Antivirus - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashServ.exe
O23 - Service: avast! Mail Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
O23 - Service: avast! Web Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
O23 - Service: Service Bonjour (Bonjour Service) - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: Service de l’iPod (iPod Service) - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: Macromedia Licensing Service - Unknown owner - C:\Program Files\Fichiers communs\Macromedia Shared\Service\Macromedia Licensing.exe
O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe
O23 - Service: Performance Monitor - Unknown owner - C:\WINDOWS\perfmon.exe (file missing)
O23 - Service: PnkBstrA - Unknown owner - C:\WINDOWS\system32\PnkBstrA.exe
O23 - Service: TabletService - Wacom Technology, Corp. - C:\WINDOWS\system32\Tablet.exe
O23 - Service: Moteur Webroot Spy Sweeper (WebrootSpySweeperService) - Webroot Software, Inc. - C:\Program Files\Webroot\Spy Sweeper\SpySweeper.exe
–
End of file - 11452 bytes
J’ai ensuite nettoyer avec Ccleaner.
rapport de mon antivirus Antivir et de MBAM fais en mode sans échec ( J’ai également fais une vérification avec Avast mais je n’ai pas le rapport ) :
Antivir:
Avira AntiVir Personal
Report file date: mercredi 10 septembre 2008 00:08
Scanning for 1606493 virus strains and unwanted programs.
Licensed to: Avira AntiVir PersonalEdition Classic
Serial number: 0000149996-ADJIE-0001
Platform: Windows XP
Windows version: (Service Pack 3) [5.1.2600]
Boot mode: Save mode
Username: poste
Computer name: POSTE-137CB2375
Version information:
BUILD.DAT : 8.1.0.331 16934 Bytes 12/08/2008 11:46:00
AVSCAN.EXE : 8.1.4.7 315649 Bytes 02/09/2008 13:38:54
AVSCAN.DLL : 8.1.4.0 40705 Bytes 02/09/2008 13:38:54
LUKE.DLL : 8.1.4.5 164097 Bytes 02/09/2008 13:38:56
LUKERES.DLL : 8.1.4.0 12033 Bytes 02/09/2008 13:38:56
ANTIVIR0.VDF : 6.40.0.0 11030528 Bytes 18/07/2007 10:53:00
ANTIVIR1.VDF : 7.0.5.1 8182784 Bytes 24/06/2008 14:45:41
ANTIVIR2.VDF : 7.0.6.94 2998784 Bytes 31/08/2008 13:38:58
ANTIVIR3.VDF : 7.0.6.136 291840 Bytes 09/09/2008 21:31:31
Engineversion : 8.1.1.28
AEVDF.DLL : 8.1.0.5 102772 Bytes 16/04/2008 15:45:33
AESCRIPT.DLL : 8.1.0.70 319866 Bytes 03/09/2008 15:54:28
AESCN.DLL : 8.1.0.23 119156 Bytes 02/09/2008 13:38:58
AERDL.DLL : 8.1.1.1 397683 Bytes 03/09/2008 15:54:27
AEPACK.DLL : 8.1.2.1 364917 Bytes 02/09/2008 13:38:58
AEOFFICE.DLL : 8.1.0.23 196987 Bytes 03/09/2008 15:54:25
AEHEUR.DLL : 8.1.0.51 1397111 Bytes 03/09/2008 15:54:24
AEHELP.DLL : 8.1.0.15 115063 Bytes 29/05/2008 14:24:25
AEGEN.DLL : 8.1.0.36 315764 Bytes 02/09/2008 13:38:58
AEEMU.DLL : 8.1.0.7 430452 Bytes 02/09/2008 13:38:58
AECORE.DLL : 8.1.1.11 172406 Bytes 03/09/2008 15:54:20
AEBB.DLL : 8.1.0.1 53617 Bytes 02/09/2008 13:38:58
AVWINLL.DLL : 1.0.0.12 15105 Bytes 02/09/2008 13:38:54
AVPREF.DLL : 8.0.2.0 38657 Bytes 02/09/2008 13:38:54
AVREP.DLL : 8.0.0.2 98344 Bytes 02/09/2008 13:38:58
AVREG.DLL : 8.0.0.1 33537 Bytes 02/09/2008 13:38:54
AVARKT.DLL : 1.0.0.23 307457 Bytes 16/04/2008 15:45:29
AVEVTLOG.DLL : 8.0.0.16 119041 Bytes 02/09/2008 13:38:54
SQLITE3.DLL : 3.3.17.1 339968 Bytes 16/04/2008 15:45:32
SMTPLIB.DLL : 1.2.0.23 28929 Bytes 02/09/2008 13:38:57
NETNT.DLL : 8.0.0.1 7937 Bytes 16/04/2008 15:45:31
RCIMAGE.DLL : 8.0.0.51 2371841 Bytes 02/09/2008 13:38:48
RCTEXT.DLL : 8.0.52.0 86273 Bytes 02/09/2008 13:38:49
Configuration settings for the scan:
Jobname…: Local Drives
Configuration file…: C:\Program Files\AntiVir PersonalEdition Classic\alldrives.avp
Logging…: low
Primary action…: interactive
Secondary action…: ignore
Scan master boot sector…: on
Scan boot sector…: on
Boot sectors…: C:, D:, E:,
Process scan…: on
Scan registry…: on
Search for rootkits…: off
Scan all files…: Intelligent file selection
Scan archives…: on
Recursion depth…: 20
Smart extensions…: on
Macro heuristic…: on
File heuristic…: medium
Start of the scan: mercredi 10 septembre 2008 00:08
The scan of running processes will be started
Scan process ‘avscan.exe’ - ‘1’ Module(s) have been scanned
Scan process ‘ctfmon.exe’ - ‘1’ Module(s) have been scanned
Scan process ‘ashSimpl.exe’ - ‘1’ Module(s) have been scanned
Scan process ‘Ad-Aware2007.exe’ - ‘1’ Module(s) have been scanned
Scan process ‘explorer.exe’ - ‘1’ Module(s) have been scanned
Scan process ‘SpySweeper.exe’ - ‘1’ Module(s) have been scanned
Scan process ‘svchost.exe’ - ‘1’ Module(s) have been scanned
Scan process ‘aawservice.exe’ - ‘1’ Module(s) have been scanned
Scan process ‘svchost.exe’ - ‘1’ Module(s) have been scanned
Scan process ‘svchost.exe’ - ‘1’ Module(s) have been scanned
Scan process ‘lsass.exe’ - ‘1’ Module(s) have been scanned
Scan process ‘services.exe’ - ‘1’ Module(s) have been scanned
Scan process ‘winlogon.exe’ - ‘1’ Module(s) have been scanned
Scan process ‘csrss.exe’ - ‘1’ Module(s) have been scanned
Scan process ‘smss.exe’ - ‘1’ Module(s) have been scanned
15 processes with 15 modules were scanned
Starting master boot sector scan:
Master boot sector HD0
[INFO] No virus was found!
Start scanning boot sectors:
Boot sector ‘C:’
[INFO] No virus was found!
Starting to scan the registry.
The registry was scanned ( ‘60’ files ).
Starting the file scan:
Begin scan in ‘C:’
C:\pagefile.sys
[WARNING] The file could not be opened!
Begin scan in ‘D:’
Begin scan in ‘E:’
Search path E:\ could not be opened!
System error [21]: Le périphérique n’est pas prêt.
End of the scan: mercredi 10 septembre 2008 01:55
Used time: 1:46:41 Hour(s)
The scan has been done completely.
12131 Scanning directories
518529 Files were scanned
0 viruses and/or unwanted programs were found
0 Files were classified as suspicious:
0 files were deleted
0 files were repaired
0 files were moved to quarantine
0 files were renamed
1 Files cannot be scanned
518528 Files not concerned
10010 Archives were scanned
1 Warnings
0 Notes
MBAM:
Malwarebytes’ Anti-Malware 1.28
Version de la base de données: 1136
Windows 5.1.2600 Service Pack 3
10/09/2008 14:14:01
mbam-log-2008-09-10 (14-14-01).txt
Type de recherche: Examen complet (C:|)
Eléments examinés: 219111
Temps écoulé: 1 hour(s), 54 minute(s), 23 second(s)
Processus mémoire infecté(s): 0
Module(s) mémoire infecté(s): 0
Clé(s) du Registre infectée(s): 12
Valeur(s) du Registre infectée(s): 6
Elément(s) de données du Registre infecté(s): 2
Dossier(s) infecté(s): 0
Fichier(s) infecté(s): 10
Processus mémoire infecté(s):
(Aucun élément nuisible détecté)
Module(s) mémoire infecté(s):
(Aucun élément nuisible détecté)
Clé(s) du Registre infectée(s):
HKEY_CLASSES_ROOT\CLSID{f43bfc6c-47cc-4798-8798-a0721b8ed7ab} (Trojan.Zlob) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID{7c109800-a5d5-438f-9640-18d17e168b88} (Trojan.Zlob) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID{db9fba9d-ab1b-4cc6-9745-f3b549d64e40} (Trojan.Zlob) -> Quarantined and deleted successfully.
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes{daed9266-8c28-4c1c-8b58-5c66eff1d302} (Search.Hijack) -> Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects{7c109800-a5d5-438f-9640-18d17e168b88} (Trojan.Zlob) -> Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Extensions{9034a523-d068-4be8-a284-9df278be776e} (Trojan.Zlob) -> Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\tdssdata (Trojan.Agent) -> Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\tdss (Trojan.Agent) -> Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\Internet Service (Trojan.Zlob) -> Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\Secure Browsing (Trojan.Zlob) -> Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\Windows Safety Alert (Trojan.Zlob) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\multimediaControls.chl (Trojan.Zlob) -> Quarantined and deleted successfully.
Valeur(s) du Registre infectée(s):
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\svchost.exe (Trojan.Agent) -> Quarantined and deleted successfully.
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\New Windows\Allow*.securewebinfo.com (Trojan.Zlob) -> Quarantined and deleted successfully.
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\New Windows\Allow*.safetyincludes.com (Trojan.Zlob) -> Quarantined and deleted successfully.
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\New Windows\Allow*.securemanaging.com (Trojan.Zlob) -> Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer\Run\some (Trojan.Zlob) -> Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer\Run\start (Trojan.Zlob) -> Quarantined and deleted successfully.
Elément(s) de données du Registre infecté(s):
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Userinit (Malware.Trace) -> Data: c:\windows\system32\ -> Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Userinit (Malware.Trace) -> Data: system32\ -> Quarantined and deleted successfully.
Dossier(s) infecté(s):
(Aucun élément nuisible détecté)
Fichier(s) infecté(s):
C:\WINDOWS\system32\ (Malware.Trace) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\drivers\svchost.exe (Trojan.Agent) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\tdssadw.dll (Trojan.Agent) -> Delete on reboot.
C:\WINDOWS\system32\tdssl.dll (Trojan.Agent) -> Delete on reboot.
C:\WINDOWS\system32\tdssmain.dll (Trojan.Agent) -> Delete on reboot.
C:\WINDOWS\system32\tdssinit.dll (Trojan.Agent) -> Delete on reboot.
C:\WINDOWS\system32\tdsslog.dll (Trojan.Agent) -> Delete on reboot.
C:\WINDOWS\system32\tdssservers.dat (Trojan.Agent) -> Delete on reboot.
C:\WINDOWS\system32\drivers\tdssserv.sys (Trojan.Agent) -> Delete on reboot.
C:\Documents and Settings\poste\Favoris\Online Security Test.url (Rogue.Link) -> Quarantined and deleted successfully.
Suite à ces deux vérifications l’antivirus a été suprimé , en tous cas je n’est plus le probléme .
J’ai refait un test avec hijackthis :
Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 14:19:13, on 10/09/2008
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.6000.16705)
Boot mode: Normal
Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Lavasoft\Ad-Aware 2007\aawservice.exe
C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
C:\Program Files\Alwil Software\Avast4\ashServ.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\AntiVir PersonalEdition Classic\avguard.exe
C:\Program Files\AntiVir PersonalEdition Classic\sched.exe
C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
C:\Program Files\Bonjour\mDNSResponder.exe
C:\WINDOWS\system32\nvsvc32.exe
C:\WINDOWS\system32\PnkBstrA.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\Tablet.exe
C:\Program Files\Webroot\Spy Sweeper\SpySweeper.exe
C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\WTablet\TabUserW.exe
C:\WINDOWS\system32\Tablet.exe
C:\WINDOWS\RTHDCPL.EXE
C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
C:\Program Files\Adobe\Adobe Version Cue\ControlPanel\VersionCueTray.exe
C:\WINDOWS\system32\RUNDLL32.EXE
C:\Program Files\AntiVir PersonalEdition Classic\avgnt.exe
C:\Program Files\iTunes\iTunesHelper.exe
C:\Program Files\Java\jre1.6.0_07\bin\jusched.exe
C:\Program Files\Webroot\Spy Sweeper\SpySweeperUI.exe
C:\Program Files\Skype\Phone\Skype.exe
C:\Program Files\Windows Live\Messenger\MsnMsgr.Exe
C:\WINDOWS\system32\ctfmon.exe
C:\program files\steam.exe
C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe
C:\Program Files\Adobe\Adobe Acrobat 6.0\Distillr\acrotray.exe
C:\WINDOWS\system32\wuauclt.exe
C:\Program Files\iPod\bin\iPodService.exe
C:\WINDOWS\system32\wscntfy.exe
C:\Program Files\Skype\Plugin Manager\skypePM.exe
C:\Program Files\Windows Live\Messenger\usnsvc.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Program Files\Webroot\Spy Sweeper\SSU.EXE
C:\Documents and Settings\poste\Bureau\scan.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = g.msn.fr…
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = go.microsoft.com…
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = go.microsoft.com…
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = go.microsoft.com…
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = go.microsoft.com…
R1 - HKCU\Software\Microsoft\Internet Explorer\SearchURL,(Default) = g.msn.fr…
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
O2 - BHO: Yahoo! Toolbar Helper - {02478D38-C3F9-4EFB-9B51-7695ECA05670} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll
O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_07\bin\ssv.dll
O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)
O2 - BHO: Programme d’aide de l’Assistant de connexion Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: AcroIEToolbarHelper Class - {AE7CD045-E861-484f-8273-0445EE161910} - C:\Program Files\Adobe\Adobe Acrobat 6.0\Acrobat\AcroIEFavClient.dll
O2 - BHO: Windows Live Toolbar Helper - {BDBD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\Windows Live Toolbar\msntb.dll
O3 - Toolbar: Adobe PDF - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files\Adobe\Adobe Acrobat 6.0\Acrobat\AcroIEFavClient.dll
O3 - Toolbar: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll
O3 - Toolbar: Windows Live Toolbar - {BDAD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\Windows Live Toolbar\msntb.dll
O3 - Toolbar: (no name) - {DB9FBA9D-AB1B-4CC6-9745-F3B549D64E40} - (no file)
O4 - HKLM…\Run: [RTHDCPL] RTHDCPL.EXE
O4 - HKLM…\Run: [Alcmtr] ALCMTR.EXE
O4 - HKLM…\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
O4 - HKLM…\Run: [AdobeVersionCue] “C:\Program Files\Adobe\Adobe Version Cue\ControlPanel\VersionCueTray.exe”
O4 - HKLM…\Run: [NvCplDaemon] “RUNDLL32.EXE” C:\WINDOWS\system32\NvCpl.dll,NvStartup
O4 - HKLM…\Run: [nwiz] “nwiz.exe” /install
O4 - HKLM…\Run: [NvMediaCenter] “RUNDLL32.EXE” C:\WINDOWS\system32\NvMcTray.dll,NvTaskbarInit
O4 - HKLM…\Run: [SetPoint.exe] C:\WINDOWS\SetPoint.exe
O4 - HKLM…\Run: [avgnt] “C:\Program Files\AntiVir PersonalEdition Classic\avgnt.exe” /min
O4 - HKLM…\Run: [amd_dc_opt] “C:\Program Files\AMD\Dual-Core Optimizer\amd_dc_opt.exe”
O4 - HKLM…\Run: [AppleSyncNotifier] “C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleSyncNotifier.exe”
O4 - HKLM…\Run: [QuickTime Task] “C:\Program Files\QuickTime\QTTask.exe” -atboottime
O4 - HKLM…\Run: [iTunesHelper] “C:\Program Files\iTunes\iTunesHelper.exe”
O4 - HKLM…\Run: [SunJavaUpdateSched] “C:\Program Files\Java\jre1.6.0_07\bin\jusched.exe”
O4 - HKLM…\Run: [SpySweeper] “C:\Program Files\Webroot\Spy Sweeper\SpySweeperUI.exe” /startintray
O4 - HKCU…\Run: [Skype] “C:\Program Files\Skype\Phone\Skype.exe” /nosplash /minimized
O4 - HKCU…\Run: [WOOKIT] “C:\PROGRA~1\Wanadoo\Shell.exe” appLaunchClientZone.shl|DEFAULT=cnx|PARAM=
O4 - HKCU…\Run: [msnmsgr] “C:\Program Files\Windows Live\Messenger\MsnMsgr.Exe” /background
O4 - HKCU…\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU…\Run: [Steam] “c:\program files\steam.exe” -silent
O4 - HKUS\S-1-5-19…\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User ‘SERVICE LOCAL’)
O4 - HKUS\S-1-5-20…\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User ‘SERVICE RÉSEAU’)
O4 - HKUS\S-1-5-18…\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User ‘SYSTEM’)
O4 - HKUS.DEFAULT…\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User ‘Default user’)
O4 - Global Startup: Adobe Gamma Loader.lnk = C:\Program Files\Fichiers communs\Adobe\Calibration\Adobe Gamma Loader.exe
O4 - Global Startup: Adobe Reader Speed Launch.lnk = C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe
O4 - Global Startup: Assistant d’Acrobat.lnk = C:\Program Files\Adobe\Adobe Acrobat 6.0\Distillr\acrotray.exe
O8 - Extra context menu item: &Windows Live Search - C:\Program… Files\Windows Live Toolbar\msntb.dll/search.htm
O8 - Extra context menu item: Ouvrir dans un nouvel onglet d’arrière-plan - C:\Program… Files\Windows Live Toolbar\Components\fr-fr\msntabres.dll.mui/229?bb31231b9ec043eeb5f64cf78e488bd7
O8 - Extra context menu item: Ouvrir dans un nouvel onglet de premier plan - C:\Program… Files\Windows Live Toolbar\Components\fr-fr\msntabres.dll.mui/230?bb31231b9ec043eeb5f64cf78e488bd7
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_07\bin\ssv.dll
O9 - Extra ‘Tools’ menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_07\bin\ssv.dll
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra ‘Tools’ menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra ‘Tools’ menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O16 - DPF: {5D6F45B3-9043-443D-A792-115447494D24} (UnoCtrl Class) - messenger.zone.msn.com…
O16 - DPF: {C3F79A2B-B9B4-4A66-B012-3EE46475B072} (MessengerStatsClient Class) - messenger.zone.msn.com…
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\FICHIE~1\Skype\SKYPE4~1.DLL
O22 - SharedTaskScheduler: enviva - {f43bfc6c-47cc-4798-8798-a0721b8ed7ab} - (no file)
O23 - Service: Ad-Aware 2007 Service (aawservice) - Lavasoft - C:\Program Files\Lavasoft\Ad-Aware 2007\aawservice.exe
O23 - Service: Adobe LM Service - Adobe Systems - C:\Program Files\Fichiers communs\Adobe Systems Shared\Service\Adobelmsvc.exe
O23 - Service: AdobeVersionCue - Adobe Sytems - C:\Program Files\Adobe\Adobe Version Cue\service\VersionCue.exe
O23 - Service: AntiVir PersonalEdition Classic Scheduler (AntiVirScheduler) - Avira GmbH - C:\Program Files\AntiVir PersonalEdition Classic\sched.exe
O23 - Service: AntiVir PersonalEdition Classic Guard (AntiVirService) - Avira GmbH - C:\Program Files\AntiVir PersonalEdition Classic\avguard.exe
O23 - Service: Apple Mobile Device - Apple Inc. - C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - ALWIL Software - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
O23 - Service: avast! Antivirus - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashServ.exe
O23 - Service: avast! Mail Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
O23 - Service: avast! Web Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
O23 - Service: Service Bonjour (Bonjour Service) - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: Service de l’iPod (iPod Service) - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: Macromedia Licensing Service - Unknown owner - C:\Program Files\Fichiers communs\Macromedia Shared\Service\Macromedia Licensing.exe
O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe
O23 - Service: Performance Monitor - Unknown owner - C:\WINDOWS\perfmon.exe (file missing)
O23 - Service: PnkBstrA - Unknown owner - C:\WINDOWS\system32\PnkBstrA.exe
O23 - Service: TabletService - Wacom Technology, Corp. - C:\WINDOWS\system32\Tablet.exe
O23 - Service: Moteur Webroot Spy Sweeper (WebrootSpySweeperService) - Webroot Software, Inc. - C:\Program Files\Webroot\Spy Sweeper\SpySweeper.exe
–
End of file - 10850 bytes
J’ai ensuite fais un test avec Navilog :
Search Navipromo version 3.6.5 commencé le 10/09/2008 à 14:33:50,32
!!! Attention,ce rapport peut indiquer des fichiers/programmes légitimes!!!
!!! Postez ce rapport sur le forum pour le faire analyser !!!
!!! Ne lancez pas la partie désinfection sans l’avis d’un spécialiste !!!
Outil exécuté depuis C:\Program Files\navilog1
Session actuelle : “poste”
Mise à jour le 22.08.2008 à 17h30 par IL-MAFIOSO
Microsoft Windows XP [version 5.1.2600]
Internet Explorer : 7.0.5730.11
Système de fichiers : NTFS
Recherche executé en mode normal
*** Recherche Programmes installés ***
*** Recherche dossiers dans “C:\WINDOWS” ***
*** Recherche dossiers dans “C:\Program Files” ***
*** Recherche dossiers dans “C:\Documents and Settings\All Users\menudm~1\progra~1” ***
*** Recherche dossiers dans “C:\Documents and Settings\All Users\menudm~1” ***
*** Recherche dossiers dans “c:\docume~1\alluse~1\applic~1” ***
*** Recherche dossiers dans “C:\Documents and Settings\poste\applic~1” ***
*** Recherche dossiers dans “C:\DOCUME~1\ADMINI~1\applic~1” ***
*** Recherche dossiers dans “C:\Documents and Settings\poste\locals~1\applic~1” ***
*** Recherche dossiers dans “C:\DOCUME~1\ADMINI~1\locals~1\applic~1” ***
*** Recherche dossiers dans “C:\Documents and Settings\poste\menudm~1\progra~1” ***
*** Recherche dossiers dans “C:\DOCUME~1\ADMINI~1\menudm~1\progra~1” ***
*** Recherche avec Catchme-rootkit/stealth malware detector par gmer ***
pour + d’infos : www.gmer.net…
*** Recherche avec GenericNaviSearch ***
!!! Tous ces résultats peuvent révéler des fichiers légitimes !!!
!!! A vérifier impérativement avant toute suppression manuelle !!!
-
Recherche dans “C:\WINDOWS\system32” *
-
Recherche dans “C:\Documents and Settings\poste\locals~1\applic~1” *
-
Recherche dans “C:\DOCUME~1\ADMINI~1\locals~1\applic~1” *
*** Recherche fichiers ***
*** Recherche clés spécifiques dans le Registre ***
*** Module de Recherche complémentaire ***
(Recherche fichiers spécifiques)
1)Recherche nouveaux fichiers Instant Access :
2)Recherche Heuristique :
-
Dans “C:\WINDOWS\system32” :
-
Dans “C:\Documents and Settings\poste\locals~1\applic~1” :
-
Dans “C:\DOCUME~1\ADMINI~1\locals~1\applic~1” :
3)Recherche Certificats :
Certificat Egroup absent !
Certificat Electronic-Group absent !
Certificat Montorgueil absent !
Certificat OOO-Favorit absent !
Certificat Sunny-Day-Design-Ltd absent !
4)Recherche fichiers connus :
*** Analyse terminée le 10/09/2008 à 14:46:28,35 ***
Et j’ai enfin fais un test avec lop S&T :
--------------------\ Lop S&D 4.2.4-2 XP/Vista
Microsoft Windows XP Édition familiale ( v5.1.2600 ) Service Pack 3
X86-based PC ( Multiprocessor Free : AMD Athlon™ 64 X2 Dual Core Processor 4200+ )
BIOS : Default System BIOS
USER : poste ( Administrator )
BOOT : Normal boot
Antivirus : avast! antivirus 4.8.1229 [VPS 080909-0] 4.8.1229 (Activated)
“C:\Lop SD” ( MAJ : 08-09-2008|21:40 )
Option : [1] ( 10/09/2008|14:47 )
--------------------\ Listing des dossiers dans APPLIC~1
[06/10/2006|17:39] C:\DOCUME~1\ADMINI~1\APPLIC~1\Microsoft
[09/09/2008|18:09] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Adobe
[09/09/2008|23:31] C:\DOCUME~1\ALLUSE~1\APPLIC~1\AntiVir PersonalEdition Classic
[01/08/2007|14:08] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Apple
[18/03/2007|21:45] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Apple Computer
[06/10/2006|12:28] C:\DOCUME~1\ALLUSE~1\APPLIC~1\CyberLink
[16/09/2007|11:55] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Google
[01/04/2008|19:13] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Lavasoft
[10/10/2006|18:13] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Macromedia
[10/10/2006|18:19] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Macrovision
[10/09/2008|12:07] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Malwarebytes
[02/03/2008|16:13] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Microsoft
[27/11/2006|14:52] C:\DOCUME~1\ALLUSE~1\APPLIC~1\NVIDIA
[31/07/2007|01:53] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Skype
[27/11/2007|20:06] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Sony
[04/09/2008|20:50] C:\DOCUME~1\ALLUSE~1\APPLIC~1\TEMP
[11/04/2008|17:17] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Ubisoft
[08/10/2006|18:00] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Viewpoint
[02/04/2008|00:04] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Webroot
[12/12/2006|15:14] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Windows Genuine Advantage
[08/10/2006|20:27] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Windows Live Toolbar
[02/03/2008|16:13] C:\DOCUME~1\ALLUSE~1\APPLIC~1\WLInstaller
[16/11/2006|15:07] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Yahoo! Companion
[06/10/2006|17:39] C:\DOCUME~1\DEFAUL~1\APPLIC~1\Microsoft
[12/12/2006|15:14] C:\DOCUME~1\LOCALS~1\APPLIC~1\Microsoft
[02/04/2008|00:04] C:\DOCUME~1\LOCALS~1\APPLIC~1\Webroot
[17/03/2008|18:53] C:\DOCUME~1\LOCALS~1\APPLIC~1\WTablet
[06/10/2006|17:39] C:\DOCUME~1\NETWOR~1\APPLIC~1\Microsoft
[02/04/2008|00:11] C:\DOCUME~1\NETWOR~1\APPLIC~1\Webroot
[26/10/2006|19:05] C:\DOCUME~1\poste\APPLIC~1\acccore
[09/09/2008|18:09] C:\DOCUME~1\poste\APPLIC~1\Adobe
[19/12/2007|15:01] C:\DOCUME~1\poste\APPLIC~1\AdobeAUM
[21/09/2007|22:15] C:\DOCUME~1\poste\APPLIC~1\AdobeUM
[16/03/2007|16:22] C:\DOCUME~1\poste\APPLIC~1\Ambient Design
[21/03/2008|17:36] C:\DOCUME~1\poste\APPLIC~1\Apple Computer
[04/02/2008|00:54] C:\DOCUME~1\poste\APPLIC~1\Azureus
[30/03/2007|19:20] C:\DOCUME~1\poste\APPLIC~1\Command & Conquer 3 Les guerres du Tiberium
[22/02/2008|22:32] C:\DOCUME~1\poste\APPLIC~1\CyberLink
[30/11/2006|15:37] C:\DOCUME~1\poste\APPLIC~1\DivX
[22/02/2008|22:31] C:\DOCUME~1\poste\APPLIC~1\dvdcss
[16/09/2007|12:29] C:\DOCUME~1\poste\APPLIC~1\Google
[23/10/2007|00:56] C:\DOCUME~1\poste\APPLIC~1\Help
[06/10/2006|17:45] C:\DOCUME~1\poste\APPLIC~1\Identities
[27/03/2008|22:24] C:\DOCUME~1\poste\APPLIC~1\InstallShield
[10/10/2006|18:19] C:\DOCUME~1\poste\APPLIC~1\Macromedia
[10/09/2008|12:08] C:\DOCUME~1\poste\APPLIC~1\Malwarebytes
[14/11/2006|15:38] C:\DOCUME~1\poste\APPLIC~1\Media Player Classic
[18/03/2007|19:54] C:\DOCUME~1\poste\APPLIC~1\Microsoft
[03/09/2008|18:24] C:\DOCUME~1\poste\APPLIC~1\Mozilla
[09/11/2006|21:11] C:\DOCUME~1\poste\APPLIC~1\PF
[28/05/2008|01:05] C:\DOCUME~1\poste\APPLIC~1\Publish Providers
[08/10/2006|18:08] C:\DOCUME~1\poste\APPLIC~1\Quark
[08/12/2006|20:30] C:\DOCUME~1\poste\APPLIC~1\SecuROM
[10/09/2008|14:18] C:\DOCUME~1\poste\APPLIC~1\Skype
[10/09/2008|14:17] C:\DOCUME~1\poste\APPLIC~1\skypePM
[14/03/2008|17:59] C:\DOCUME~1\poste\APPLIC~1\Sony
[08/10/2006|18:05] C:\DOCUME~1\poste\APPLIC~1\Spybot - Search & Destroy
[15/10/2006|22:16] C:\DOCUME~1\poste\APPLIC~1\Sun
[08/09/2008|13:21] C:\DOCUME~1\poste\APPLIC~1\teamspeak2
[31/03/2007|10:35] C:\DOCUME~1\poste\APPLIC~1\Turbine
[04/11/2007|15:52] C:\DOCUME~1\poste\APPLIC~1\U3
[11/04/2008|17:18] C:\DOCUME~1\poste\APPLIC~1\Ubisoft
[08/10/2006|18:01] C:\DOCUME~1\poste\APPLIC~1\vlc
[02/04/2008|00:04] C:\DOCUME~1\poste\APPLIC~1\Webroot
[10/09/2008|14:16] C:\DOCUME~1\poste\APPLIC~1\WTablet
--------------------\ Tâches planifiées dans C:\WINDOWS\tasks
[03/09/2008 20:01][–a------] C:\WINDOWS\tasks\AppleSoftwareUpdate.job
[08/09/2008 11:51][–a------] C:\WINDOWS\tasks\wrSpySweeperTrialSweep.job
[10/09/2008 14:18][–a------] C:\WINDOWS\tasks\V?rifier les mises
jour de Windows Live Toolbar.job
[10/09/2008 14:15][–ah-----] C:\WINDOWS\tasks\SA.DAT
[05/08/2004 14:00][-r-h-----] C:\WINDOWS\tasks\desktop.ini
--------------------\ Listing des dossiers dans C:\Program Files
[26/11/2006|21:10] C:\Program Files\Adobe
[08/10/2006|20:02] C:\Program Files\Alwil Software
[10/10/2006|18:23] C:\Program Files\Ambient Design
[10/11/2007|16:21] C:\Program Files\AMD
[10/09/2008|12:12] C:\Program Files\AntiVir PersonalEdition Classic
[03/09/2008|17:53] C:\Program Files\appcache
[03/09/2008|20:14] C:\Program Files\Apple Software Update
[03/01/2007|19:03] C:\Program Files\Atari
[10/10/2007|19:17] C:\Program Files\Autodesk
[19/12/2007|19:55] C:\Program Files\AviSynth 2.5
[02/02/2008|17:27] C:\Program Files\Azureus
[09/09/2008|23:40] C:\Program Files\bin
[03/09/2008|19:54] C:\Program Files\Bonjour
[19/03/2007|00:29] C:\Program Files\Codemasters
[14/11/2006|15:32] C:\Program Files\Common Files
[06/10/2006|17:37] C:\Program Files\ComPlus Applications
[07/06/2008|19:40] C:\Program Files\config
[08/10/2006|18:18] C:\Program Files\Curious Labs
[06/10/2006|12:28] C:\Program Files\CyberLink
[02/09/2008|17:18] C:\Program Files\Diablo
[05/09/2008|17:59] C:\Program Files\Diablo II
[05/04/2007|23:51] C:\Program Files\DivX
[10/10/2006|18:09] C:\Program Files\e-on software
[03/12/2007|00:57] C:\Program Files\FairUse Wizard 2
[29/05/2008|22:32] C:\Program Files\Fichiers communs
[20/11/2006|18:30] C:\Program Files\Free
[06/10/2006|12:45] C:\Program Files\Futuremark
[08/10/2006|19:37] C:\Program Files\GameSpy Arcade
[09/09/2008|23:28] C:\Program Files\Google
[09/09/2008|23:40] C:\Program Files\Graphics
[09/09/2008|14:13] C:\Program Files\InstallShield Installation Information
[02/09/2008|18:12] C:\Program Files\Internet Explorer
[03/09/2008|19:58] C:\Program Files\iPod
[03/09/2008|19:59] C:\Program Files\iTunes
[09/09/2008|20:56] C:\Program Files\Java
[01/04/2008|19:12] C:\Program Files\Lavasoft
[07/06/2008|14:40] C:\Program Files\logs
[10/10/2006|18:17] C:\Program Files\Macromedia
[05/01/2007|14:22] C:\Program Files\MadOnion.com
[10/09/2008|12:08] C:\Program Files\Malwarebytes’ Anti-Malware
[30/01/2007|10:50] C:\Program Files\Media Player Classic
[06/09/2008|13:26] C:\Program Files\Messenger
[06/10/2006|17:39] C:\Program Files\microsoft frontpage
[27/11/2007|20:06] C:\Program Files\Microsoft SQL Server
[06/09/2008|13:22] C:\Program Files\Movie Maker
[10/09/2008|14:18] C:\Program Files\Mozilla Firefox
[06/10/2006|17:36] C:\Program Files\MSN
[06/10/2006|17:36] C:\Program Files\MSN Gaming Zone
[10/09/2008|14:46] C:\Program Files\Navilog1
[06/09/2008|13:14] C:\Program Files\NetMeeting
[06/10/2006|17:36] C:\Program Files\Online Services
[06/09/2008|13:14] C:\Program Files\Outlook Express
[21/11/2006|14:42] C:\Program Files\PENDULO Studios
[26/10/2006|19:04] C:\Program Files\PlayLinc
[09/09/2008|23:40] C:\Program Files\Public
[03/09/2008|19:54] C:\Program Files\QuickTime
[09/09/2008|23:40] C:\Program Files\resource
[03/09/2008|19:12] C:\Program Files\Safari
[11/10/2006|15:48] C:\Program Files\SEGA
[06/10/2006|17:38] C:\Program Files\Services en ligne
[07/06/2008|14:39] C:\Program Files\skins
[31/07/2007|01:53] C:\Program Files\Skype
[27/11/2007|20:05] C:\Program Files\Sony
[27/11/2007|20:04] C:\Program Files\Sony Setup
[07/06/2008|14:38] C:\Program Files\Steam
[02/09/2008|15:50] C:\Program Files\SteamApps
[12/03/2008|19:42] C:\Program Files\Tablet
[12/03/2008|19:42] C:\Program Files\Tablette
[11/01/2007|21:32] C:\Program Files\Team 17 Software Ltd
[08/10/2006|18:04] C:\Program Files\Teamspeak2_RC2
[07/01/2007|18:19] C:\Program Files\Telltale Games
[02/02/2008|21:35] C:\Program Files\TimeAdjuster
[11/04/2008|17:07] C:\Program Files\Ubisoft
[27/11/2007|20:07] C:\Program Files\Uninstall Information
[08/10/2006|18:01] C:\Program Files\VideoLAN
[27/11/2007|20:05] C:\Program Files\Vstplugins
[02/04/2008|21:49] C:\Program Files\Wanadoo
[28/03/2008|17:10] C:\Program Files\WAR
[29/05/2008|17:13] C:\Program Files\Warcraft III
[02/04/2008|00:04] C:\Program Files\Webroot
[11/01/2008|01:07] C:\Program Files\WinAVI MP4 Converter
[02/03/2008|16:13] C:\Program Files\Windows Live
[30/11/2007|20:00] C:\Program Files\Windows Live Toolbar
[12/12/2006|15:11] C:\Program Files\Windows Media Connect 2
[06/09/2008|13:14] C:\Program Files\Windows Media Player
[06/09/2008|13:14] C:\Program Files\Windows NT
[06/10/2006|17:38] C:\Program Files\WindowsUpdate
[23/10/2007|00:56] C:\Program Files\WinRAR
[04/09/2008|00:51] C:\Program Files\WMA-MP3.com
[02/09/2008|17:12] C:\Program Files\World of Warcraft
[29/03/2008|16:21] C:\Program Files\WowCartographe
[06/10/2006|17:39] C:\Program Files\xerox
[14/03/2008|17:59] C:\Program Files\Xvid
[14/11/2006|15:32] C:\Program Files\Yahoo!
--------------------\ Listing des dossiers dans C:\Program Files\Fichiers communs
[11/10/2006|21:32] C:\Program Files\Fichiers communs\Adobe
[08/10/2006|18:25] C:\Program Files\Fichiers communs\Adobe Systems Shared
[10/10/2007|19:22] C:\Program Files\Fichiers communs\Alias Shared
[01/08/2007|14:08] C:\Program Files\Fichiers communs\Apple
[10/10/2007|19:21] C:\Program Files\Fichiers communs\Autodesk Shared
[08/01/2007|21:02] C:\Program Files\Fichiers communs\Blizzard Entertainment
[08/10/2006|19:04] C:\Program Files\Fichiers communs\InstallShield
[11/10/2006|20:03] C:\Program Files\Fichiers communs\Java
[10/10/2006|18:18] C:\Program Files\Fichiers communs\Macromedia
[10/10/2006|18:18] C:\Program Files\Fichiers communs\Macromedia Shared
[02/03/2008|16:13] C:\Program Files\Fichiers communs\Microsoft Shared
[06/10/2006|17:37] C:\Program Files\Fichiers communs\MSSoap
[06/10/2006|19:15] C:\Program Files\Fichiers communs\ODBC
[06/10/2006|17:37] C:\Program Files\Fichiers communs\Services
[09/03/2008|12:39] C:\Program Files\Fichiers communs\Skype
[06/10/2006|19:15] C:\Program Files\Fichiers communs\SpeechEngines
[27/03/2008|22:20] C:\Program Files\Fichiers communs\SWF Studio
[09/09/2008|20:56] C:\Program Files\Fichiers communs\Symantec Shared
[06/09/2008|13:14] C:\Program Files\Fichiers communs\System
[02/03/2008|16:13] C:\Program Files\Fichiers communs\WindowsLiveInstaller
[01/04/2008|19:11] C:\Program Files\Fichiers communs\Wise Installation Wizard
--------------------\ Process
( 52 Processes )
… OK !
--------------------\ Recherche avec S_Lop
Aucun fichier / dossier Lop trouvé !
--------------------\ Recherche de Fichiers / Dossiers Lop
Aucun fichier / dossier Lop trouvé !
--------------------\ Verification du Registre
… OK !
--------------------\ Verification du fichier Hosts
Fichier Hosts PROPRE
--------------------\ Recherche de fichiers avec Catchme
catchme 0.3.1353 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, www.gmer.net…
Rootkit scan 2008-09-10 14:49:11
Windows 5.1.2600 Service Pack 3 NTFS
scanning hidden processes …
scanning hidden files …
scan completed successfully
hidden processes: 0
hidden files: 82
--------------------\ Recherche d’autres infections
--------------------\ ROOTKIT !!
Rootkit Tibs ! … [HKLM…\CurrentControlSet\Enum\Root\LEGACY_TDSSSERV]
Rootkit Tibs ! … [HKLM…\CurrentControlSet\Services\tdssserv]
Rootkit Tibs ! … [HKLM…\CurrentControlSet\Enum\Root\tdssserv]
Rootkit Tibs ! … [HKLM…\ControlSet001\Enum\Root\LEGACY_TDSSSERV]
Rootkit Tibs ! … [HKLM…\ControlSet001\Services\tdssserv]
Rootkit Tibs ! … [HKLM…\ControlSet001\Enum\Root\tdssserv]
Rootkit Tibs ! … [HKLM…\ControlSet003\Enum\Root\LEGACY_TDSSSERV]
Rootkit Tibs ! … [HKLM…\ControlSet003\Services\tdssserv]
Rootkit Tibs ! … [HKLM…\ControlSet003\Enum\Root\tdssserv]
--------------------\ Cracks & Keygens …
C:\DOCUME~1\poste\Mes documents\police\Pack Dafont\FONTS !\crackaddict.ttf
C:\DOCUME~1\poste\Mes documents\police\Pack Dafont\FONTS !\crackdr2.ttf
C:\DOCUME~1\poste\Mes documents\police\Pack Dafont\FONTS !\CRACKMAN.TTF
C:\DOCUME~1\poste\Mes documents\police\Pack Dafont\FONTS !\Crack_dendrite.ttf
C:\DOCUME~1\poste\Mes documents\police\Pack Dafont\FONTS !\NEWCRACK.TTF
C:\DOCUME~1\poste\Mes documents\police\Pack Dafont\zip\christmas_on_crack.zip
C:\DOCUME~1\poste\Mes documents\police\Pack Dafont\zip\crackaddict.zip
C:\DOCUME~1\poste\Mes documents\police\Pack Dafont\zip\crackdown.zip
C:\DOCUME~1\poste\Mes documents\police\Pack Dafont\zip\crackman.zip
C:\DOCUME~1\poste\Mes documents\police\Pack Dafont\zip\crack_babies.zip
C:\DOCUME~1\poste\Mes documents\taffSUP\anim 2d\Romain anim\texture\crack.jpg
C:\DOCUME~1\poste\Mes documents\taffSUP\Biblioth?que sonore\SONS\CARTOON & ATHMOS\Horror\16 crack.mp3
C:\DOCUME~1\poste\Mes documents\taffSUP\Biblioth?que sonore\SONS\CARTOON & ATHMOS\Horror\20 porte de bois crack.mp3
C:\DOCUME~1\poste\Mes documents\taffSUP\Biblioth?que sonore\SONS\Delta 101 Digital Sound Effects-Sounds Of Horror\22 - Bones Cracking.mp3
C:\DOCUME~1\poste\Mes documents\taffSUP\Biblioth?que sonore\SONS\Hollywood Edge - Foley Sound Library Cd1-5\Hollywood Edge-Foley Sound Library Cd2 Wood & Glass\41-Wood Cracks Distant; Distant Wood Cracks And Splinters. - Crash Sweetener.mp3
C:\DOCUME~1\poste\Mes documents\taffSUP\Biblioth?que sonore\SONS\Hollywood Edge - Foley Sound Library Cd1-5\Hollywood Edge-Foley Sound Library Cd4 Fights 1\33-Bone Crack 6x.mp3
C:\DOCUME~1\poste\Mes documents\taffSUP\Biblioth?que sonore\SONS\Hollywood Edge - Premiere Edition CD1-20\Hollywood Edge PE_CD 10\81_Two Single Knuckle Cracks.mp3
C:\DOCUME~1\poste\Mes documents\taffSUP\Biblioth?que sonore\SONS\Hollywood Edge - Premiere Edition CD1-20\Hollywood Edge PE_CD 10\82_Tree Cracks And Splinters As It Falls.mp3
C:\DOCUME~1\poste\Mes documents\taffSUP\Biblioth?que sonore\SONS\Hollywood Edge - Premiere Edition CD1-20\Hollywood Edge PE_CD 10\83_Small Piece Of Wood Cracks As It Is Broken.mp3
C:\DOCUME~1\poste\Mes documents\taffSUP\Biblioth?que sonore\SONS\Hollywood Edge - Premiere Edition CD1-20\Hollywood Edge PE_CD 10\85_Medium Piece Of Wood Cracks As It Is Broken.mp3
C:\DOCUME~1\poste\Mes documents\taffSUP\Biblioth?que sonore\SONS\Hollywood Edge - Premiere Edition CD1-20\Hollywood Edge PE_CD 10\87_Bull Whip Crack 01.mp3
C:\DOCUME~1\poste\Mes documents\taffSUP\Biblioth?que sonore\SONS\Hollywood Edge - Premiere Edition CD1-20\Hollywood Edge PE_CD 10\88_Bull Whip Crack 02.mp3
C:\DOCUME~1\poste\Mes documents\taffSUP\Biblioth?que sonore\SONS\Hollywood Edge - Premiere Edition CD1-20\Hollywood Edge PE_CD 10\89_Bull Whip Cracks 03.mp3
C:\DOCUME~1\poste\Mes documents\taffSUP\Biblioth?que sonore\SONS\Hollywood Edge - Premiere Edition CD1-20\Hollywood Edge PE_CD 10\90_Bull Whip Crack 04.mp3
C:\DOCUME~1\poste\Mes documents\taffSUP\Biblioth?que sonore\SONS\Sony - 1,001 Sound FX\Crashes\Wood Crack 01.mp3
C:\DOCUME~1\poste\Mes documents\taffSUP\Biblioth?que sonore\SONS\Sony - 1,001 Sound FX\Crashes\Wood Crack 02.mp3
C:\DOCUME~1\poste\Mes documents\taffSUP\Biblioth?que sonore\SONS\Sony - 1,001 Sound FX\Crashes\Wood Crack 03.mp3
C:\DOCUME~1\poste\Mes documents\taffSUP\Biblioth?que sonore\SONS\Sound Ideas - 20th Century Fox Library Cd1-10\CD4 - Drawbridge-Earthquakes-Electronics-Explosions-Fight Scenes-Fires & Fire Trucks-Football\78-Fire Small Crackling Fire.mp3
C:\DOCUME~1\poste\Mes documents\taffSUP\Biblioth?que sonore\SONS\Sound Ideas - 20th Century Fox Library Cd1-10\CD4 - Drawbridge-Earthquakes-Electronics-Explosions-Fight Scenes-Fires & Fire Trucks-Football\79-Fire Crackling.mp3
C:\DOCUME~1\poste\Mes documents\taffSUP\Biblioth?que sonore\SONS\Sound Ideas - Just Noise cd1-2\SI-Just Noise cd 1\49-Noise 1960s Revere Tabletop Tube Radio-Tape Recorder Crackling Static Noise Processed.mp3
C:\DOCUME~1\poste\Mes documents\taffSUP\Biblioth?que sonore\SONS\Sound Ideas - Just Noise cd1-2\SI-Just Noise cd 2\12-Noise 1980s Scanner Base Unit Crackling Static.mp3
C:\DOCUME~1\poste\Mes documents\taffSUP\Biblioth?que sonore\SONS\Sound Ideas - PowerSurge 2 Cd1-2\Sound Ideas - PowerSurge 2 CD1\19-crush, large cracking crunch.mp3
C:\DOCUME~1\poste\Mes documents\taffSUP\Biblioth?que sonore\SONS\Sound Ideas - PowerSurge 2 Cd1-2\Sound Ideas - PowerSurge 2 CD1\21-crush, long cracking crunch.mp3
C:\DOCUME~1\poste\Mes documents\taffSUP\Biblioth?que sonore\SONS\Sound Ideas - PowerSurge 2 Cd1-2\Sound Ideas - PowerSurge 2 CD1\22-crush, long cracking crunch.mp3
C:\DOCUME~1\poste\Mes documents\taffSUP\Biblioth?que sonore\SONS\Sound Ideas - PowerSurge 2 Cd1-2\Sound Ideas - PowerSurge 2 CD1\23-crush, rhythmic cracking crunch.mp3
C:\DOCUME~1\poste\Mes documents\taffSUP\Biblioth?que sonore\SONS\Sound Ideas - PowerSurge 2 Cd1-2\Sound Ideas - PowerSurge 2 CD1\24-crush, slow, hard crackly crunch.mp3
C:\DOCUME~1\poste\Mes documents\taffSUP\Biblioth?que sonore\SONS\Sound Ideas - Series 6000 Cd1-40\SIS6000_LIB6020 - Household #1\82-1_FOOD EGG CRACK EGG ON BOWL AND OPEN.mp3
C:\DOCUME~1\poste\Mes documents\taffSUP\Biblioth?que sonore\SONS\Sound Ideas - Series 6000 Cd1-40\SIS6000_LIB6032 - Miscellaneous H to S\10-1_HUMAN CRACK KNUCKLE SINGLE CRACK.mp3
C:\DOCUME~1\poste\Mes documents\taffSUP\Biblioth?que sonore\SONS\Sound Ideas - Series 6000 Cd1-40\SIS6000_LIB6037 - Miscellaneous S to Z\91-1_WHIP BULLWHIP SINGLE CRACK.mp3
C:\DOCUME~1\poste\Mes documents\taffSUP\Biblioth?que sonore\SONS\Sound Ideas - The Designer Sound Library Cd1-3\Cd2\59-1 THUNDER PROCESSED THUNDER CRACK.mp3
C:\DOCUME~1\poste\Mes documents\taffSUP\Biblioth?que sonore\SONS\Sound Ideas - Warner Bros Cartoon Collection\Warner Bros - Sound effects - Cd1\89-1 ICE CRACKLING.mp3
C:\DOCUME~1\poste\Mes documents\taffSUP\Biblioth?que sonore\SONS\Sound Ideas - Warner Bros Cartoon Collection\Warner Bros - Sound effects - Cd3\38-1 SEVERAL WHIP SWISHES & CRACKS.mp3
C:\DOCUME~1\poste\Mes documents\taffSUP\Biblioth?que sonore\SONS\Sound Ideas - Warner Bros Cartoon Collection\Warner Bros - Sound effects - Cd4\33-1 FINE CRACKLING SHORT.mp3
C:\DOCUME~1\poste\Mes documents\taffSUP\Biblioth?que sonore\SONS\Sound Ideas - Warner Bros Cartoon Collection\Warner Bros - Sound effects - Cd4\63-1 HARD BODY FALL BONE CRACK.mp3
C:\DOCUME~1\poste\Mes documents\taffSUP\Biblioth?que sonore\SONS\Sound Ideas - Warner Bros Cartoon Collection\Warner Bros - Sound effects - Cd4\89-1 METAL IMPACT & CRACKING.mp3
[F:43][D:6]-> C:\DOCUME~1\poste\LOCALS~1\Temp
[F:15][D:0]-> C:\DOCUME~1\poste\Cookies
[F:127][D:5]-> C:\DOCUME~1\poste\LOCALS~1\TEMPOR~1\content.IE5
1 - “C:\Lop SD\LopR_1.txt” - 10/09/2008|11:50 - Option : [1]
2 - “C:\Lop SD\LopR_2.txt” - 10/09/2008|14:50 - Option : [1]
--------------------\ Fin du rapport a 14:50:18
Voila si vous pouvez me dire ce qu’il en est .
Merci beaucoup de votre aide