et voilou :
-----------\\ ToolBar S&D 1.2.2 XP/Vista
"C:\ToolBar SD" ( MAJ : 04-10-2008|21:00 )
Option : [1] ( 08/10/2005|20:22 )
-----------\\ Recherche de Fichiers / Dossiers ...
C:\Program Files\PCHealthCenter
C:\Program Files\PCHealthCenter\0.gif
C:\Program Files\PCHealthCenter\1.gif
C:\Program Files\PCHealthCenter\1.ico
C:\Program Files\PCHealthCenter\2.gif
C:\Program Files\PCHealthCenter\2.ico
C:\Program Files\PCHealthCenter\3.exe
C:\Program Files\PCHealthCenter\3.gif
C:\Program Files\PCHealthCenter\4.exe
C:\Program Files\PCHealthCenter\5.exe
C:\Program Files\PCHealthCenter\7.exe
C:\Program Files\PCHealthCenter\sc.html
C:\DOCUME~1\COMPAQ~1\LOCALS~1\Temp\mcf43.tmp
C:\DOCUME~1\COMPAQ~1\LOCALS~1\Temp\nsi4C.tmp
-----------\\ Extensions
(Compaq_Propri‚taire) - {0b38152b-1b20-484d-a11f-5e04a9b0661f} => winamptoolbar
(Compaq_Propri‚taire) - {1010c266-a959-401f-84c6-a23f8ea3cf61} => ifox-smaragd-0.95.1-fx
(Compaq_Propri‚taire) - {1392b8d2-5c05-419f-a8f6-b9f15a596612} => freecorder
(Compaq_Propri‚taire) - {26bf010a-c934-4f38-868d-e8419d9e82ff} => doodle-plastik
(Compaq_Propri‚taire) - {463F6CA5-EE3C-4be1-B7E6-7FEE11953374} => foxytunes
(Compaq_Propri‚taire) - {D2A6A719-7CBC-4594-85FD-C36AD881424F} => blueorganizer
(Compaq_Propri‚taire) - {e8cba685-830c-1283-6314-a6ae605cc8be} => outlook_2003_green-2.0.1-fx
(Compaq_Propri‚taire) - {00523230-1628-11d9-9669-0800200c9a66} => worldweather
(Compaq_Propri‚taire) - {1A2D0EC4-75F5-4c91-89C4-3656F6E44B68} => imagezoom
(Compaq_Propri‚taire) - {84850033-8F7A-462e-A311-BF1001B28FD5} => addresscontext
(Compaq_Propri‚taire) - {cf3b5651-d280-49db-8df2-ff4d1c2fd47c} => accountex
-----------\\ [..\Internet Explorer\Main]
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
"Local Page"="C:\\WINDOWS\\system32\\blank.htm"
"Start Page"="http://www.microsoft.com/isapi/redir.dll?prd=ie&pver=6&ar=msnhome"
"Search Page"="http://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch"
"Default_Search_URL"="http://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch"
[HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Main]
"Default_Page_URL"="http://go.microsoft.com/fwlink/?LinkId=69157"
"Default_Search_URL"="http://go.microsoft.com/fwlink/?LinkId=54896"
"Search Page"="http://go.microsoft.com/fwlink/?LinkId=54896"
"Start Page"="http://go.microsoft.com/fwlink/?LinkId=69157"
--------------------\\ Recherche d'autres infections
C:\Program Files\MailSkinner
C:\Program Files\MailSkinner\Thumbs.db
C:\Program Files\SudoPlanet
C:\Program Files\SudoPlanet\SudoPlanet.dll
C:\Program Files\SudoPlanet\SudoPlanet.exe
C:\Program Files\SudoPlanet\SudoPlanet.url
C:\Program Files\SudoPlanet\uninst.exe
C:\Program Files\SudoPlanet\updates
C:\WINDOWS\Pack.epk
C:\WINDOWS\System32\awilors.dat
C:\WINDOWS\System32\awilors.exe
C:\WINDOWS\System32\awilors_nav.dat
C:\WINDOWS\System32\awilors_navps.dat
C:\WINDOWS\System32\udeswcpn.dat
C:\WINDOWS\System32\udeswcpn_nav.dat
C:\WINDOWS\System32\udeswcpn_navps.dat
[b]==> EGDACCESS <==/b
C:\WINDOWS\system32\eddfOXyb.ini
C:\WINDOWS\system32\eddfOXyb.ini2
[b]==> VUNDO <==/b
--------------------\\ ROOTKIT !!
Rootkit Tibs ! .. [HKLM\..\CurrentControlSet\Enum\Root\LEGACY_TDSSSERV]
Rootkit Tibs ! .. [HKLM\..\CurrentControlSet\Enum\Root\tdssserv]
Rootkit Tibs ! .. [HKLM\..\ControlSet001\Enum\Root\LEGACY_TDSSSERV]
Rootkit Tibs ! .. [HKLM\..\ControlSet001\Enum\Root\tdssserv]
Rootkit Tibs ! .. [HKLM\..\ControlSet002\Enum\Root\LEGACY_TDSSSERV]
Rootkit Tibs ! .. [HKLM\..\ControlSet002\Enum\Root\tdssserv]
Rootkit Tibs ! .. [HKLM\..\ControlSet003\Enum\Root\LEGACY_TDSSSERV]
Rootkit Tibs ! .. [HKLM\..\ControlSet003\Enum\Root\tdssserv]
Trojan ! .. C:\WINDOWS\system32\drivers\tdssserv.sys
Trojan ! .. C:\WINDOWS\system32\tdssservers.dat
Trojan ! .. C:\WINDOWS\system32\tdssserf.dll
Trojan ! .. C:\WINDOWS\system32\tdssmain.dll
Trojan ! .. C:\WINDOWS\system32\tdssinit.dll
Trojan ! .. C:\WINDOWS\system32\tdssadw.dll
Trojan ! .. C:\WINDOWS\system32\tdsslog.dll
Trojan ! .. C:\WINDOWS\system32\tdssl.dll
1 - "C:\ToolBar SD\TB_1.txt" - 08/10/2005|20:32 - Option : [1]
-----------\\ Fin du rapport a 20:32:14,78
