* User : f.gibassier - DA44-ODA
* Emplacement : C:\Program Files\FindyKill
* Outils Mis a jours le 10/12/08 par Chiquitine29
* Recherche effectuée à 16:06:06 le 16/12/2008
* Windows XP - Internet Explorer 7.0.5730.13
Found ! - HKEY_USERS\S-1-5-21-91566976-433109859-1244687768-1565\Software\Local AppWizard-Generated Applications\hldrrr
Found ! - HKEY_USERS\S-1-5-21-91566976-433109859-1244687768-1565\Software\Local AppWizard-Generated Applications\nideiect
Found ! - HKEY_USERS\S-1-5-21-91566976-433109859-1244687768-1565\Software\FirstRRRun
Found ! - HKEY_CURRENT_USER\Software\Local AppWizard-Generated Applications\hldrrr
Found ! - HKEY_CURRENT_USER\Software\Local AppWizard-Generated Applications\nideiect
Found ! - HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\srosa
Found ! - HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Services\srosa
Found ! - HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Services\srosa
Found ! - HKEY_LOCAL_MACHINE\SYSTEM\ControlSet003\Services\srosa
Found ! - HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Enum\Root\LEGACY_SROSA
Found ! - HKEY_CURRENT_USER\Software\FirstRRRun
Found ! - HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{171539f0-b150-11dd-a9bd-00192125a63f}\Shell\AutoRun\command
Found ! - HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{171539f0-b150-11dd-a9bd-00192125a63f}\Shell\explore\Command
Found ! - HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{171539f0-b150-11dd-a9bd-00192125a63f}\Shell\open\Command
Found ! - HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{34b788b5-ca78-11dd-a9ff-00192125a63f}\Shell\AutoRun\command
Found ! - HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{34b788b5-ca78-11dd-a9ff-00192125a63f}\Shell\explore\Command
Found ! - HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{34b788b5-ca78-11dd-a9ff-00192125a63f}\Shell\open\Command
Found ! - HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{52661036-9c26-11dd-a9ac-00192125a63f}\Shell\AutoRun\command
Found ! - HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{52661036-9c26-11dd-a9ac-00192125a63f}\Shell\explore\Command
Found ! - HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{52661036-9c26-11dd-a9ac-00192125a63f}\Shell\open\Command
Found ! - HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{5266104c-9c26-11dd-a9ac-00192125a63f}\Shell\AutoRun\command
Found ! - HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{5266104c-9c26-11dd-a9ac-00192125a63f}\Shell\explore\Command
Found ! - HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{5266104c-9c26-11dd-a9ac-00192125a63f}\Shell\open\Command
Found ! - HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{545af526-b473-11dd-a9c3-00192125a63f}\Shell\AutoRun\command
Found ! - HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{545af526-b473-11dd-a9c3-00192125a63f}\Shell\explore\Command
Found ! - HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{545af526-b473-11dd-a9c3-00192125a63f}\Shell\open\Command
Found ! - HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{6a4b7327-a0c6-11dd-a9b1-00192125a63f}\Shell\AutoRun\command
Found ! - HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{6a4b7327-a0c6-11dd-a9b1-00192125a63f}\Shell\explore\Command
Found ! - HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{6a4b7327-a0c6-11dd-a9b1-00192125a63f}\Shell\open\Command
Found ! - HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{8308ce8c-c50b-11dd-a9e2-00192125a63f}\Shell\AutoRun\command
Found ! - HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{8308ce8c-c50b-11dd-a9e2-00192125a63f}\Shell\explore\Command
Found ! - HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{8308ce8c-c50b-11dd-a9e2-00192125a63f}\Shell\open\Command
Found ! - HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{84ef0552-c81f-11dd-a9fe-00192125a63f}\Shell\AutoRun\command
Found ! - HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{84ef0552-c81f-11dd-a9fe-00192125a63f}\Shell\explore\Command
Found ! - HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{84ef0552-c81f-11dd-a9fe-00192125a63f}\Shell\open\Command
------------------- ! Fin du rapport ! --------------------
anthony5151
Messages postés10573Date d'inscriptionvendredi 27 juin 2008StatutContributeur sécuritéDernière intervention 2 mars 2015790 16 déc. 2008 à 16:16
Bonjour,
Ton ordinateur est infecté par Bagle, qui s'attrape par le téléchargement de cracks (ou par la simple visite d'un site de cracks). C'est un important vecteur d'infection : https://forum.malekal.com/viewtopic.php?f=33&t=893 Commence par supprimer tous tes cracks et keygens pourris.
Ensuite, branche toutes tes sources de données externes à ton PC, (clé USB, disque dur externe, lecteurs mp3 etc...) sans les ouvrir
--> Relance FindyKill
--> Cette fois, choisis l'option 2 (Suppression) au menu principal
Il y aura 2 redémarrages, laisse travailler l'outil jusqu'à l'apparition du message "nettoyage effectué" !
--> Ensuite poste le rapport C:/FindyKill.txt (il est sauvegardé à la racine du disque dur)