bonjours a tout , je suis nouveau ici : j'ai besoins de votre aide pour analyser un log de toolbar s&d qui me parait etrange : je suis infecter par 2 toolbar mais je ne les vois pas sur le rapport ...
pouvez-vous m'aider ?
merci a vous .
----------\\ ToolBar S&D 1.2.9 XP/Vista
Microsoft Windows XP Professionnel ( v5.1.2600 ) Service Pack 3
X86-based PC ( Multiprocessor Free : Intel(R) Core(TM)2 CPU 6320 @ 1.86GHz )
BIOS : Phoenix ROM BIOS PLUS Version 1.10 2.5.3
USER : DIDOU ( Administrator )
BOOT : Normal boot
Antivirus : avast! antivirus 4.8.1368 [VPS 100419-1] 4.8.1368 (Not Activated)
C:\ (Local Disk) - NTFS - Total:48 Go (Free:7 Go)
D:\ (Local Disk) - NTFS - Total:97 Go (Free:86 Go)
E:\ (Local Disk) - NTFS - Total:319 Go (Free:290 Go)
F:\ (USB)
G:\ (USB)
H:\ (USB)
I:\ (USB)
J:\ (Local Disk) - NTFS - Total:698 Go (Free:89 Go)
K:\ (CD or DVD)
L:\ (CD or DVD)
N:\ (CD or DVD)
S:\ (Local Disk) - NTFS - Total:443 Go (Free:74 Go)
T:\ (CD or DVD)
U:\ (Local Disk) - NTFS - Total:488 Go (Free:207 Go)
"C:\ToolBar SD" ( MAJ : 22-08-2009|18:42 )
Option : [1] ( 19/04/2010|23:16 )
-----------\\ Recherche de Fichiers / Dossiers ...
-----------\\ Extensions
(DIDOU) - {0538E3E3-7E9B-4d49-8831-A227C80A7AD3} => forecastfox
(DIDOU) - {0b457cAA-602d-484a-8fe7-c1d894a011ba} => fireshot
(DIDOU) - {1018e4d6-728f-4b20-ad56-37578a4de76b} => content
(DIDOU) - {4BBDD651-70CF-4821-84F8-2B918CF89CA3} => febe
(DIDOU) - {53A03D43-5363-4669-8190-99061B2DEBA5} => scrapbook
(DIDOU) - {5546F97E-11A5-46b0-9082-32AD74AAA920} => informenter
(DIDOU) - {5C46D283-ABDE-4dce-B83C-08881401921C} => googleshortcuts
(DIDOU) - {64161300-e22b-11db-8314-0800200c9a66} => speeddial
(DIDOU) - {73a6fe31-595d-460b-a920-fcc0f8843232} => noscript
(DIDOU) - {7ac33471-3a05-4c41-aa86-794868e86b16} => proxytoolbar
(DIDOU) - {81BF1D23-5F17-408D-AC6B-BD6DF7CAF670} => imacros
(DIDOU) - {88ce39f5-1e54-477c-809d-93d411720f0c} => subtile
(DIDOU) - {89506680-e3f4-484c-a2c0-ed711d481eda} => showcase
(DIDOU) - {9D7B21FA-0991-472C-8F8E-2CD6CC1CB7BC} => libertyguard
(DIDOU) - {a0d7ccb3-214d-498b-b4aa-0e8fda9a7bf7} => wot
(DIDOU) - {a7c6cf7f-112c-4500-a7ea-39801a327e5f} => fireftp
(DIDOU) - {ada4b710-8346-4b82-8199-5de2b400a6ae} => reminderfox
(DIDOU) - {b9db16a4-6edc-47ec-a1f4-b86292ed211d} => dwhelper
(DIDOU) - {d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d} => adblockplus
(DIDOU) - {d5ea4520-61a1-11da-8cd6-0800200c9a66} => quickproxy
(DIDOU) - {dc572301-7619-498c-a57d-39143191b318} => tabmixplus
(DIDOU) - {e0204bd5-9d31-402b-a99d-a6aa8ffebdca} => chrome.manifest
(DIDOU) - {ef62e1ce-d2a4-4cdd-b7ec-92b120366b66} => foxlingo
(DIDOU) - {FBF6D7FB-F305-4445-BB3D-FEF66579A033} => multibmtoolbar
(DIDOU) - {011f9246-da13-4555-9998-6e4805bd533f} => whitesmoke_tools
(DIDOU) - {0538E3E3-7E9B-4d49-8831-A227C80A7AD3} => forecastfox
(DIDOU) - {0b457cAA-602d-484a-8fe7-c1d894a011ba} => fireshot
(DIDOU) - {1018e4d6-728f-4b20-ad56-37578a4de76b} => content
(DIDOU) - {20a82645-c095-46ed-80e3-08825760534b} => chrome_user
(DIDOU) - {3EC9C995-8072-4fc0-953E-4F30620D17F3} => weatherbug
(DIDOU) - {4093c4de-454a-4329-8aff-c6b0b123c386} => httpfox
(DIDOU) - {4BBDD651-70CF-4821-84F8-2B918CF89CA3} => febe
(DIDOU) - {5546F97E-11A5-46b0-9082-32AD74AAA920} => informenter
(DIDOU) - {73a6fe31-595d-460b-a920-fcc0f8843232} => noscript
(DIDOU) - {81BF1D23-5F17-408D-AC6B-BD6DF7CAF670} => imacros
(DIDOU) - {88ce39f5-1e54-477c-809d-93d411720f0c} => subtile
(DIDOU) - {89506680-e3f4-484c-a2c0-ed711d481eda} => showcase
(DIDOU) - {a0d7ccb3-214d-498b-b4aa-0e8fda9a7bf7} => wot
(DIDOU) - {a7c6cf7f-112c-4500-a7ea-39801a327e5f} => fireftp
(DIDOU) - {b9db16a4-6edc-47ec-a1f4-b86292ed211d} => dwhelper
(DIDOU) - {c07d1a49-9894-49ff-a594-38960ede8fb9} => updatescan
(DIDOU) - {c45c406e-ab73-11d8-be73-000a95be3b12} => webdeveloper
(DIDOU) - {CE6E6E3B-84DD-4cac-9F63-8D2AE4F30A4B} => cooliris
(DIDOU) - {d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d} => adblockplus
(DIDOU) - {D2A6A719-7CBC-4594-85FD-C36AD881424F} => blueorganizer
(DIDOU) - {d5ea4520-61a1-11da-8cd6-0800200c9a66} => quickproxy
(DIDOU) - {dc572301-7619-498c-a57d-39143191b318} => tabmixplus
(DIDOU) - {e0204bd5-9d31-402b-a99d-a6aa8ffebdca} => chrome.manifest
(DIDOU) - {ef4e370e-d9f0-4e00-b93e-a4f274cfdd5a} => foxtab
(DIDOU) - {0b457cAA-602d-484a-8fe7-c1d894a011ba} => fireshot
(DIDOU) - {4BBDD651-70CF-4821-84F8-2B918CF89CA3} => febe
(DIDOU) - {53A03D43-5363-4669-8190-99061B2DEBA5} => scrapbook
(DIDOU) - {6AC85730-7D0F-4de0-B3FA-21142DD85326} => colorzilla
(DIDOU) - {73a6fe31-595d-460b-a920-fcc0f8843232} => noscript
(DIDOU) - {7ac33471-3a05-4c41-aa86-794868e86b16} => proxytoolbar
(DIDOU) - {81BF1D23-5F17-408D-AC6B-BD6DF7CAF670} => imacros
(DIDOU) - {89506680-e3f4-484c-a2c0-ed711d481eda} => showcase
(DIDOU) - {9AA46F4F-4DC7-4c06-97AF-5035170634FE} => imtranslator
(DIDOU) - {9c51bd27-6ed8-4000-a2bf-36cb95c0c947} => tamperdata
(DIDOU) - {a0d7ccb3-214d-498b-b4aa-0e8fda9a7bf7} => wot
(DIDOU) - {a7c6cf7f-112c-4500-a7ea-39801a327e5f} => fireftp
(DIDOU) - {CE6E6E3B-84DD-4cac-9F63-8D2AE4F30A4B} => cooliris
(DIDOU) - {d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d} => adblockplus
(DIDOU) - {d5ea4520-61a1-11da-8cd6-0800200c9a66} => quickproxy
(DIDOU) - {e0204bd5-9d31-402b-a99d-a6aa8ffebdca} => chrome.manifest
(DIDOU) - {ef62e1ce-d2a4-4cdd-b7ec-92b120366b66} => foxlingo
(DIDOU) - {847b3a00-7ab1-11d4-8f02-006008948af5} => enigmail
(DIDOU) - {d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d} => adblockplus
(DIDOU) - {7ac33471-3a05-4c41-aa86-794868e86b16} => proxytoolbar
(DIDOU) - {9AA46F4F-4DC7-4c06-97AF-5035170634FE} => imtranslator
(DIDOU) - {9D7B21FA-0991-472C-8F8E-2CD6CC1CB7BC} => libertyguard
(DIDOU) - {b9db16a4-6edc-47ec-a1f4-b86292ed211d} => dwhelper
(DIDOU) - {4BBDD651-70CF-4821-84F8-2B918CF89CA3} => febe
-----------\\ [..\Internet Explorer\Main]
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
"Start Page"="http://google.com/"
"Search Page"="http://www.google.com"
"Search Bar"="http://www.google.com/ie"
"Default_Search_URL"="http://www.google.com/ie"
[HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Main]
"Default_Page_URL"="http://go.microsoft.com/fwlink/?LinkId=69157"
"Default_Search_URL"="http://go.microsoft.com/fwlink/?LinkId=54896"
"Search Page"="http://go.microsoft.com/fwlink/?LinkId=54896"
"Start Page"="http://go.microsoft.com/fwlink/?LinkId=69157"
"Search Bar"="http://ie.search.msn.com/{SUB_RFC1766}/srchasst/srchasst.htm"
--------------------\\ Recherche d'autres infections
--------------------\\ Cracks & Keygens ..
C:\DOCUME~1\DIDOU\Mes documents\Mes fichiers restaur's\Restauration 1\Bitcomet\Adobe Premiere Pro 2 + Activateur + Crack - Francais By NAIN
C:\DOCUME~1\DIDOU\Mes documents\Mes fichiers restaur's\Restauration 1\Bitcomet\Adobe Premiere Pro v2.0 + Crack [App][MULTI][www.zonatorrent.com]
C:\DOCUME~1\DIDOU\Mes documents\Mes fichiers restaur's\Restauration 1\Bitcomet\Adobe Premiere Pro 2 + Activateur + Crack - Francais By NAIN\adobe premiere pro 2.0 (Francais)
C:\DOCUME~1\DIDOU\Mes documents\Mes fichiers restaur's\Restauration 1\Bitcomet\Adobe Premiere Pro 2 + Activateur + Crack - Francais By NAIN\adobe premiere pro 2.0 (Francais)\adobe premiere pro 2.0 (Francais)
C:\DOCUME~1\DIDOU\Mes documents\Mes fichiers restaur's\Restauration 1\Bitcomet\Adobe Premiere Pro 2 + Activateur + Crack - Francais By NAIN\adobe premiere pro 2.0 (Francais)\adobe premiere pro 2.0 (Francais)\Adobe Premiere Pro
C:\DOCUME~1\DIDOU\Mes documents\Mes fichiers restaur's\Restauration 1\Bitcomet\Adobe Premiere Pro 2 + Activateur + Crack - Francais By NAIN\adobe premiere pro 2.0 (Francais)\adobe premiere pro 2.0 (Francais)\Adobe Premiere Pro\Data1
C:\DOCUME~1\DIDOU\Mes documents\Mes fichiers restaur's\Restauration 1\Bitcomet\Adobe Premiere Pro 2 + Activateur + Crack - Francais By NAIN\adobe premiere pro 2.0 (Francais)\adobe premiere pro 2.0 (Francais)\Adobe Premiere Pro\Data1\premiere.cer
C:\DOCUME~1\DIDOU\Mes documents\Mes fichiers restaur's\Restauration 1\Bitcomet\Adobe Premiere Pro v2.0 + Crack [App][MULTI][www.zonatorrent.com]\Adobe Premiere Pro v2.0 + Crack [App][MULTI][www.zonatorrent.com]
C:\DOCUME~1\DIDOU\Mes documents\Mes fichiers restaur's\Restauration 1\Bitcomet\Adobe Premiere Pro v2.0 + Crack [App][MULTI][www.zonatorrent.com]\Adobe Premiere Pro v2.0 + Crack [App][MULTI][www.zonatorrent.com]\commonfilesinstaller
C:\DOCUME~1\DIDOU\Mes documents\Mes fichiers restaur's\Restauration 1\Bitcomet\Adobe Premiere Pro v2.0 + Crack [App][MULTI][www.zonatorrent.com]\Adobe Premiere Pro v2.0 + Crack [App][MULTI][www.zonatorrent.com]\commonfilesinstaller\Data1
1 - "C:\ToolBar SD\TB_1.txt" - 19/04/2010|23:17 - Option : [1]
-----------\\ Fin du rapport a 23:17:02,98