Juste pour info,
je suis en mode sans échec avec option réseau
et les deux trucs que j'ai téléchargé ne génère pas d'icône sur le bureau
List'em by g3n-h@ckm@n 1.0.5.3
Thx to Chiquitine29.....
User : anne-so (Administrateurs) # ANNE-SOPHIE
Update on 09/11/2009 by g3n-h@ckm@n ::::: 20.30
Start at: 14:45:05 | 10/11/2009
Contact : g3n-h@ckm@n sur CCM
Genuine Intel(R) CPU T2080 @ 1.73GHz
Microsoft Windows XP Professionnel (5.1.2600 32-bit) # Service Pack 2
Internet Explorer 6.0.2900.2180
Windows Firewall Status : Enabled
AV : avast! antivirus 4.8.1356 [VPS 091023-0] 4.8.1356 [ Enabled | (!) Outdated ]
C:\ -> Disque fixe local | 74,53 Go (53,71 Go free) | NTFS
D:\ -> Disque CD-ROM
E:\ -> Disque amovible | 3,78 Go (2,37 Go free) [CLÉ NANOU] | FAT32
¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤ Processus en cours
C:\WINDOWS\System32\smss.exe 404
C:\WINDOWS\system32\csrss.exe 464
C:\WINDOWS\system32\winlogon.exe 488
C:\WINDOWS\system32\services.exe 532
C:\WINDOWS\system32\lsass.exe 544
C:\WINDOWS\system32\svchost.exe 704
C:\WINDOWS\system32\svchost.exe 748
C:\WINDOWS\system32\svchost.exe 840
C:\WINDOWS\system32\svchost.exe 864
C:\WINDOWS\system32\svchost.exe 916
C:\WINDOWS\system32\cmd.exe 1852
C:\WINDOWS\explorer.exe 2028
C:\WINDOWS\system32\notepad.exe 1836
C:\Program Files\Mozilla Firefox\firefox.exe 1804
C:\Program Files\Alwil Software\Avast4\ashSimpl.exe 2040
C:\WINDOWS\system32\ctfmon.exe 1992
C:\Documents and Settings\anne-so\Mes documents\Téléchargements\List_Killem.exe 1032
C:\WINDOWS\system32\cmd.exe 968
C:\WINDOWS\system32\wbem\wmiprvse.exe 1416
C:\Documents and Settings\anne-so\Local Settings\Temp\7C.tmp\pv.exe 356
======================
Cles de demarrage "Run"
======================
Windows Registry Editor Version 5.00
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"="C:\\WINDOWS\\system32\\ctfmon.exe"
"LtMoh"="C:\\Program Files\\ltmoh\\Ltmoh.exe"
"TOSCDSPD"="C:\\Program Files\\TOSHIBA\\TOSCDSPD\\toscdspd.exe"
"ccleaner"="\"C:\\Program Files\\CCleaner\\CCleaner.exe\" /AUTO"
"Sony Ericsson PC Suite"="\"C:\\Program Files\\Sony Ericsson\\Sony Ericsson PC Suite\\SEPCSuite.exe\" /systray /nologon"
"AnumanLive"="C:\\Documents and Settings\\anne-so\\Application Data\\Anuman Interactive\\AnumanLive\\AnumanLive.exe"
"msnmsgr"="\"C:\\Program Files\\Windows Live\\Messenger\\msnmsgr.exe\" /background"
Windows Registry Editor Version 5.00
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"igfxtray"="C:\\WINDOWS\\system32\\igfxtray.exe"
"igfxhkcmd"="C:\\WINDOWS\\system32\\hkcmd.exe"
"igfxpers"="C:\\WINDOWS\\system32\\igfxpers.exe"
"RTHDCPL"="RTHDCPL.EXE"
"Alcmtr"="ALCMTR.EXE"
"CeEKEY"="C:\\Program Files\\TOSHIBA\\E-KEY\\CeEKey.exe"
@=""
"HWSetup"="C:\\Program Files\\TOSHIBA\\TOSHIBA Applet\\HWSetup.exe hwSetUP"
"SVPWUTIL"="C:\\Program Files\\Toshiba\\Windows Utilities\\SVPWUTIL.exe SVPwUTIL"
"TPNF"="C:\\Program Files\\TOSHIBA\\TouchPad\\TPTray.exe"
"TCtryIOHook"="TCtrlIOHook.exe"
"TFncKy"="TFncKy.exe"
"TDispVol"="TDispVol.exe"
"TPSMain"="TPSMain.exe"
"Zooming"="ZoomingHook.exe"
"SmoothView"="C:\\Program Files\\TOSHIBA\\Utilitaire de zoom TOSHIBA\\SmoothView.exe"
"NDSTray.exe"="NDSTray.exe"
"DDWMon"="C:\\Program Files\\TOSHIBA\\TOSHIBA Direct Disc Writer\\\\ddwmon.exe"
"topi"="C:\\Program Files\\TOSHIBA\\Toshiba Online Product Information\\topi.exe -startup"
"Apoint"="C:\\Program Files\\Apoint2K\\Apoint.exe"
"Camera Assistant Software"="\"C:\\Program Files\\Camera Assistant Software for Toshiba\\traybar.exe\""
"QuickTime Task"="\"C:\\Program Files\\QuickTime\\QTTask.exe\" -atboottime"
"Symantec PIF AlertEng"="\"C:\\Program Files\\Fichiers communs\\Symantec Shared\\PIF\\{B8E1DD85-8582-4c61-B58F-2F227FCA9A08}\\PIFSvc.exe\" /a /m \"C:\\Program Files\\Fichiers communs\\Symantec Shared\\PIF\\{B8E1DD85-8582-4c61-B58F-2F227FCA9A08}\\AlertEng.dll\""
"KernelFaultCheck"=hex(2):25,00,73,00,79,00,73,00,74,00,65,00,6d,00,72,00,6f,\
00,6f,00,74,00,25,00,5c,00,73,00,79,00,73,00,74,00,65,00,6d,00,33,00,32,00,\
5c,00,64,00,75,00,6d,00,70,00,72,00,65,00,70,00,20,00,30,00,20,00,2d,00,6b,\
00,00,00
"avast!"="C:\\PROGRA~1\\ALWILS~1\\Avast4\\ashDisp.exe"
=====================
cles additionnelles
=====================
Windows Registry Editor Version 5.00
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"dontdisplaylastusername"=dword:00000000
"legalnoticecaption"=""
"legalnoticetext"=""
"shutdownwithoutlogon"=dword:00000001
"undockwithoutlogon"=dword:00000001
===============
Windows Registry Editor Version 5.00
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\System]
===============
===============
===============
Windows Registry Editor Version 5.00
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
"PostBootReminder"="{7849596a-48ea-486e-8937-a2a3009f31a9}"
"CDBurn"="{fbeb8a05-beee-4442-804e-409d6c4515e9}"
"WebCheck"="{E6FB5E20-DE35-11CF-9C87-00AA005127ED}"
"SysTray"="{35CEC8A3-2BE6-11D2-8773-92E220524153}"
"WPDShServiceObj"="{AAA288BA-9A4C-45B0-95D7-94D524869DB5}"
======
BHO :
======
Windows Registry Editor Version 5.00
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{06849E9F-C8D7-4D59-B87D-784B7D6BE0B3}]
@=""
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{5C255C8A-E604-49b4-9D64-90988571CECB}]
@=""
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
"NoExplorer"=dword:00000001
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
==========================
=========================
Environnement variables :
=========================
ALLUSERSPROFILE=C:\Documents and Settings\All Users
APPDATA=C:\DOCUME~1\anne-so\APPLIC~1
Cache=C:\DOCUME~1\anne-so\LOCALS~1\TEMPOR~1
call=fichier appelé
CD Burning=C:\DOCUME~1\anne-so\LOCALS~1\APPLIC~1\MICROS~2\CDBURN~1
choix=1
ChoixMenu=2
CLASSPATH=.;C:\Program Files\Java\jre1.6.0\lib\ext\QTJava.zip
CLIENTNAME=Console
Common Administrative Tools=C:\DOCUME~1\ALLUSE~1\MENUDM~1\PROGRA~1\OUTILS~1
Common AppData=C:\DOCUME~1\ALLUSE~1\APPLIC~1
Common Desktop=C:\DOCUME~1\ALLUSE~1\Bureau
Common Documents=C:\DOCUME~1\ALLUSE~1\DOCUME~1
Common Favorites=C:\DOCUME~1\ALLUSE~1\Favoris
Common Music=C:\DOCUME~1\ALLUSE~1\DOCUME~1\MAMUSI~1
Common Pictures=C:\DOCUME~1\ALLUSE~1\DOCUME~1\MESIMA~1
Common Programs=C:\DOCUME~1\ALLUSE~1\MENUDM~1\PROGRA~1
Common Start Menu=C:\DOCUME~1\ALLUSE~1\MENUDM~1
Common Startup=C:\DOCUME~1\ALLUSE~1\MENUDM~1\PROGRA~1\DMARRA~1
Common Templates=C:\DOCUME~1\ALLUSE~1\MODLES~1
Common Video=C:\DOCUME~1\ALLUSE~1\DOCUME~1\MESVID~1
CommonProgramFiles=C:\Program Files\Fichiers communs
COMPUTERNAME=ANNE-SOPHIE
ComSpec=C:\WINDOWS\system32\cmd.exe
contrib=Merci pour votre contribution .
Cookies=C:\DOCUME~1\anne-so\Cookies
created=Dossier créé par UsbFix.
Del=Supprimé !
Desktop=C:\DOCUME~1\anne-so\Bureau
envoi=Veuillez envoyer le fichier :
est absent=est absent .....
etat=Etat / Services / Informations
Favorites=C:\DOCUME~1\anne-so\Favoris
Fdc=# Affichage des fichiers cachés restauré !
FdcNotOk=Affichage des fichiers cachés non fonctionnel !
FdcOK=# Affichage des fichiers cachés : OK
File=Fichier
findurapport=! Fin du rapport # UsbFix V6.050 !
fixname=UsbFix
fixvers=V6.050
Folder=Dossier
Fonts=C:\WINDOWS\Fonts
found=Présent !
FP_NO_HOST_CHECK=NO
History=C:\DOCUME~1\anne-so\LOCALS~1\HISTOR~1
HOMEDRIVE=C:
HOMEPATH=\Documents and Settings\anne-so
idioma=F
Key=Cle :
listdos=Listing des dossiers présents
listfich=Listing des fichiers présents
Local AppData=C:\DOCUME~1\anne-so\LOCALS~1\APPLIC~1
LOGONSERVER=\\ANNE-SOPHIE
menu1=1 # Recherche .
menu2=2 # Suppression .
menu3=3 # Vacciner .
menu4=4 # Listing .
menu5=5 # Desinstaller .
menu6=Q # Quitter .
merci= Merci d'avoir utilis‚ UsbFix.
merci2=Merci .
Misskey=Clé manquante
MOZ_CRASHREPORTER_DATA_DIRECTORY=C:\Documents and Settings\anne-so\Application Data\Mozilla\Firefox\Crash Reports
MOZ_CRASHREPORTER_RESTART_ARG_0=C:\Program Files\Mozilla Firefox\firefox.exe
MOZ_CRASHREPORTER_STRINGS_OVERRIDE=C:\Program Files\Mozilla Firefox\crashreporter-override.ini
Mse=# Mode sans echec restauré !
MseNotOK=Mode sans echec non fonctionnel !
MseOK=# Mode sans echec : OK
My Music=C:\DOCUME~1\anne-so\MESDOC~1\MAMUSI~1
My Pictures=C:\DOCUME~1\anne-so\MESDOC~1\MESIMA~1
NetHood=C:\DOCUME~1\anne-so\VOISIN~1
NoDel=Non supprimé !
notfound=Absent !
NUMBER_OF_PROCESSORS=2
OS=Windows_NT
OSVER=0
other=Autres suppression
ou=Le rapport est ici : C:\UsbFix.txt
Path=C:\Program Files\Mozilla Firefox;C:\WINDOWS\system32;C:\WINDOWS;C:\WINDOWS\System32\Wbem;C:\Program Files\Microsoft SQL Server\90\Tools\binn\;C:\Program Files\QuickTime\QTSystem\
PATHEXT=.COM;.EXE;.BAT;.CMD;.VBS;.VBE;.JS;.JSE;.WSF;.WSH
Personal=C:\DOCUME~1\anne-so\MESDOC~1
PrintHood=C:\DOCUME~1\anne-so\VOISIN~2
proc=Processus actifs
proc1=Registre Startup
proc2=Fichiers # Dossiers infectieux
proc3=Registre # Clés Run infectieuses
proc4=Registre # Mountpoints2
proc5=Listing des fichiers présent
proc6=Vaccination
proc7=UsbFix V6.050 # UsbScript
proc8=Cracks # Keygens # Serials
proc9=Informations # Fichier Suspect
PROCESSOR_ARCHITECTURE=x86
PROCESSOR_IDENTIFIER=x86 Family 6 Model 14 Stepping 12, GenuineIntel
PROCESSOR_LEVEL=6
PROCESSOR_REVISION=0e0c
Processus=Processus
ProgramFiles=C:\Program Files
Programs=C:\DOCUME~1\anne-so\MENUDM~1\PROGRA~1
PROMPT=$P$G
QTJAVA=C:\Program Files\Java\jre1.6.0\lib\ext\QTJava.zip
Rapport=C:\UsbFix.txt
reboot=UsbFix, redemarrage en cours...
Recent=C:\DOCUME~1\anne-so\Recent
rech=Recherche :
Reference=Références de comparaison MD5 :
reinstaller=Veuillez reinstaller
SAFEBOOT_OPTION=NETWORK
SendTo=C:\DOCUME~1\anne-so\SendTo
SESSIONNAME=Console
Start Menu=C:\DOCUME~1\anne-so\MENUDM~1
Startup=C:\DOCUME~1\anne-so\MENUDM~1\PROGRA~1\DMARRA~1
step1=UsbFix s'apprete a demarrer....
step2=Nettoyage des fichiers temporaires ...
step3=Etat de la machine ...
Suspect=Suspect
SysDir=C:\WINDOWS\system32
SystemDrive=C:
SystemRoot=C:\WINDOWS
tazbam=C:\Documents and Settings
TEMP=C:\DOCUME~1\anne-so\LOCALS~1\Temp
Templates=C:\DOCUME~1\anne-so\MODLES~1
TMP=C:\DOCUME~1\anne-so\LOCALS~1\Temp
ToFindA=Adjust Time|AmericanOnLine|Antenna2Net|BrowseAllUsers|CD Burner|Crack_GoogleEarthPro|Disk Defragmenter|FaxSend|FloppyDiskPartion|GoogleToolbarNotifier|HP_LaserJetAllInOneConfig|IDE Conector P2P|InstallMSN11Ar|InstallMSN11En|JetAudio dump|Lock Folder|LockWindowsPartition|Make Windows Original|MakeUrOwnFamilyTree|Microsoft MSN|Microsoft Windows Network|msjavx86|NokiaN73Tools|PanasonicDVD_DigitalCam|RadioTV|Recycle Bin|RecycleBinProtect|ShowDesktop|Sony Erikson DigitalCam|Win98compatibleXP|Windows Keys Secrets|WindowsXp StartMenu Settings|WinrRarSerialInstall
ToFindB=backup|documents_backup|imp_data|MyDocuments|office_crack|passwords|serials|source|windows|windows_secrets
USERDOMAIN=ANNE-SOPHIE
USERNAME=anne-so
USERPROFILE=C:\Documents and Settings\anne-so
wait=Veuillez patienter.
windir=C:\WINDOWS
¤¤¤¤¤¤¤¤¤¤ Fichiers et dossiers presents :
¤¤¤¤¤¤¤¤¤¤ Clés de registre Presentes :
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\Setup.exe"
¤¤¤¤¤¤¤¤¤¤ C:\WINDOWS\Prefetch :
ADOBECOLLABSYNC.EXE-26E90E96.pf
AGENTSVR.EXE-002E45AB.pf
ALG.EXE-0F138680.pf
ALUSCHEDULERSVC.EXE-07C29CF3.pf
APNTEX.EXE-2C02AAE6.pf
ASHMAISV.EXE-12E27032.pf
ASHWEBSV.EXE-0548EF0A.pf
ASPNET_REGIIS.EXE-009D6E80.pf
AUPDATE.EXE-2253CB60.pf
CANAL+ CANALSAT A LA DEMANDE.-1C04A992.pf
CEC_MAIN.EXE-3605F430.pf
CLWIREG.EXE-13AB6B05.pf
CONTROL.EXE-013DBFB5.pf
CUISINE.EXE-29A1516C.pf
DBTRANSFER.EXE-14F98084.pf
DEFRAG.EXE-273F131E.pf
DFRGNTFS.EXE-269967DF.pf
DLLHOST.EXE-5353C76C.pf
DOTNETFX.EXE-1C4F1842.pf
DOTNETFX35CLIENTSETUP.EXE-3A9EA674.pf
DOTNETFX35SETUP.EXE-00CA4AE5.pf
DOTNETFX35SETUP.EXE-37205877.pf
DOTNETFX35_X86.EXE-2AF130B4.pf
DUMPREP.EXE-1B46F901.pf
DW20.EXE-0F7C73AD.pf
DWTRIG20.EXE-1B5A890A.pf
DWWIN.EXE-30875ADC.pf
EXCEL.EXE-34CB65E9.pf
EXPLORER.EXE-082F38A9.pf
FIREFOX.EXE-28641590.pf
HOTFIX.EXE-252D4387.pf
IGFXSRVC.EXE-2FB63FE8.pf
INSTALL.EXE-1DC2630A.pf
IS-J3S04.TMP-1983B2B5.pf
JAVAW.EXE-3128CFE2.pf
LAUNCHER.EXE-00DDA8E3.pf
Layout.ini
LODCTR.EXE-1009C3B4.pf
LOGONUI.EXE-0AF22957.pf
LUCALLBACKPROXY.EXE-19ED7806.pf
LUCOMS~1.EXE-02DB5950.pf
MAHJONGLAUNCHER.EXE-2D9BD7F9.pf
MARIO FOREVER.EXE-2362924A.pf
MOFCOMP.EXE-01718E95.pf
MONALBUMPHOTO.EXE-0E2F4B05.pf
MONALBUMPHOTO_SETUP.EXE-20822E36.pf
MSCORSVW.EXE-1BF30400.pf
MSDTC.EXE-0E6E4AF7.pf
MSIEXEC.EXE-2F8A8CAE.pf
MSNMSGR.EXE-030AB647.pf
NGEN.EXE-38021CCC.pf
NTOSBOOT-B00DFAAD.pf
OFFLB.EXE-23F1475F.pf
ONENOTEM.EXE-157A39AC.pf
ORANGE CONNECT.EXE-274C3D65.pf
POWERPNT.EXE-364EC56A.pf
READER_SL.EXE-1A438403.pf
REG.EXE-0D2A95F7.pf
REGSVCS.EXE-11A17120.pf
REGSVR32.EXE-25EEFE2F.pf
REGTLIBV12.EXE-0E2FA54B.pf
RUNDLL32.EXE-12EA0855.pf
RUNDLL32.EXE-1333BECF.pf
RUNDLL32.EXE-14D2F85D.pf
RUNDLL32.EXE-166D946D.pf
RUNDLL32.EXE-19B3AED6.pf
RUNDLL32.EXE-1D78020C.pf
RUNDLL32.EXE-22313C1A.pf
RUNDLL32.EXE-258ACB66.pf
RUNDLL32.EXE-2642C880.pf
RUNDLL32.EXE-28A8D572.pf
RUNDLL32.EXE-2F231A78.pf
RUNDLL32.EXE-3D97474F.pf
RUNDLL32.EXE-3F43AD4F.pf
RUNDLL32.EXE-451FC2C0.pf
RUNDLL32.EXE-48046D09.pf
RUNDLL32.EXE-49417C0A.pf
RUNDLL32.EXE-4B08016A.pf
SETHC.EXE-0D6CE1BC.pf
SETUP.EXE-0CE26C1C.pf
SETUP.EXE-0FC13978.pf
SETUP.EXE-1067953A.pf
SETUP.EXE-13D48A2E.pf
SETUP.EXE-1817366C.pf
SNDVOL32.EXE-383480B7.pf
SPUPDSVC.EXE-21B36524.pf
SQLEXPR_FRA.EXE-0AB1A8FD.pf
SQLSERVER2005EXPRESSSP3-KB955-32CDF07C.pf
SQLSERVR.EXE-2DE82A9C.pf
SQLWRITER.EXE-0050A6DE.pf
SSAUTORN.EXE-1A07839B.pf
SVCHOST.EXE-3530F672.pf
SYMLCSV1.EXE-061FA0A0.pf
TODDSRV.EXE-35354B5F.pf
TOSBTSRV.EXE-01466C9D.pf
TRAYBAR.EXE-1359A43B.pf
UNREGMP2.EXE-07CACB61.pf
UPDATE.EXE-00747F15.pf
UPDATE.EXE-02EB1841.pf
UPDATE.EXE-09C8B0B5.pf
UPDATE.EXE-0D7D9B27.pf
UPDATE.EXE-0E41BB1A.pf
UPDATE.EXE-1673E9BB.pf
UPDATE.EXE-1755C6D8.pf
UPDATE.EXE-1ABB222C.pf
UPDATE.EXE-1F8642FC.pf
UPDATE.EXE-2114C9A0.pf
UPDATE.EXE-221861A6.pf
UPDATE.EXE-2703BD71.pf
UPDATE.EXE-277D4118.pf
UPDATE.EXE-2BCBA6B3.pf
UPDATE.EXE-2DB3EE5C.pf
UPDATE.EXE-37CDA2FA.pf
UTORRENT.EXE-3888D1B0.pf
VERCLSID.EXE-3667BD89.pf
WGANOTIFYPACKAGEINNER.EXE-24665926.pf
WGASETUP.EXE-06420E92.pf
WIC_X86_ENU.EXE-00B1E7CC.pf
WINDOWSINSTALLER.EXE-01BAB30D.pf
WINDOWSXP-KB905474-FRA-X86.EX-296B25E8.pf
WINWORD.EXE-07381162.pf
WLCOMM.EXE-04AE9009.pf
WMIADAP.EXE-2DF425B2.pf
WMIPRVSE.EXE-28F301A9.pf
WMPLAYER.EXE-18DDEF9C.pf
WMPLAYER.EXE-18DDEF9D.pf
WMPLAYER.EXE-18DDEFA0.pf
WMPLAYER.EXE-18DDEFA1.pf
WMPLAYER.EXE-18DDEFA2.pf
WUAUCLT.EXE-399A8E72.pf
¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤( EOF )¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤
Après?
Application win 32
