Sujet Précédent Sujet Suivant

Windows has detected a spyware infection+ CID

Résolu
Blackbeard78 Messages postés 19 Statut Membre -  
jlpjlp Messages postés 52399 Statut Contributeur sécurité -
Bonjour,
j'aimerais avoir votre aide concernant deux problèmes que j'ai avec mon pc.
Tout d'abord j'ai une bulle "windows antivirus has detected a spyware infection...".
Et secondement j'ai des fenêtres CID internet explorer qui s'ouvre de façon intempestive.
J'ai fait une analyse avec avast et spybot mais rien y fait.
J'ai vu que des problèmes similaires ont été résolus et j'aimerais que vous me guidiez pour les éliminer.
Merci.
A voir également:

31 réponses

Précédent
  • 1
  • 2
Réponse 21 / 31
jlpjlp Messages postés 52399 Statut Contributeur sécurité 5 040
 
RECOLLE UN NOUVEAU RAPPORT COMBOFIX
0
Réponse 22 / 31
Blackbeard78 Messages postés 19 Statut Membre
 
Voici le rapport Combofix:
ComboFix 08-05-15.3 - Compaq_Propriétaire 2008-05-18 20:25:40.2 - NTFSx86
Endroit: C:\Documents and Settings\Compaq_Propriétaire\Bureau\ComboFix.exe
.

(((((((((((((((((((((((((((((((((((( Autres suppressions ))))))))))))))))))))))))))))))))))))))))))))))))
.
.
---- Previous Run -------
.
C:\Documents and Settings\Compaq_Propriétaire\Local Settings\Application Data\baidu
C:\Documents and Settings\Compaq_Propriétaire\new.txt
C:\Program Files\baidu
C:\Program Files\cnnic
C:\Program Files\cnnic\Cdn\cdnacs.dat
C:\Program Files\cnnic\Cdn\cdnbl.dat
C:\Program Files\cnnic\Cdn\cdncol.dll
C:\Program Files\cnnic\Cdn\cdndet.dat
C:\Program Files\cnnic\Cdn\cdndisp.dat
C:\Program Files\cnnic\Cdn\cdnforie.dll
C:\Program Files\cnnic\Cdn\cdnhint.dat
C:\Program Files\cnnic\Cdn\cdnprev.dat
C:\Program Files\cnnic\Cdn\cdnprh.dll
C:\Program Files\cnnic\Cdn\cdnrepl.dat
C:\Program Files\cnnic\Cdn\cdnrereg.dat
C:\Program Files\cnnic\Cdn\cdnswp.exe
C:\Program Files\cnnic\Cdn\cdntran.dat
C:\Program Files\cnnic\Cdn\cdnuc.exe
C:\Program Files\cnnic\Cdn\cdnunins.exe
C:\Program Files\cnnic\Cdn\cdnvers.dat
C:\Program Files\cnnic\Cdn\imadom.dat
C:\Program Files\cnnic\Cdn\Images\enter.ico
C:\Program Files\cnnic\Cdn\Images\news.ico
C:\Program Files\cnnic\Cdn\Images\popup.bmp
C:\Program Files\cnnic\Cdn\Images\soft.ico
C:\Program Files\cnnic\Cdn\rbtnhtm.cab
C:\Program Files\cnnic\Cdn\spkw.dat
C:\Program Files\cnnic\Cdn\src.dat
C:\Program Files\cnnic\Cdn\Update\cdnacs.dat
C:\Program Files\cnnic\Cdn\Update\cdnbl.dat
C:\Program Files\cnnic\Cdn\Update\cdncol.dll
C:\Program Files\cnnic\Cdn\Update\cdncrc.dat
C:\Program Files\cnnic\Cdn\Update\cdndet.dat
C:\Program Files\cnnic\Cdn\Update\cdndisp.dat
C:\Program Files\cnnic\Cdn\Update\cdnforie.dll
C:\Program Files\cnnic\Cdn\Update\cdnhint.dat
C:\Program Files\cnnic\Cdn\Update\cdnprev.dat
C:\Program Files\cnnic\Cdn\Update\cdnprh.dll
C:\Program Files\cnnic\Cdn\Update\cdnprot.dat
C:\Program Files\cnnic\Cdn\Update\cdnswp.exe
C:\Program Files\cnnic\Cdn\Update\cdntran.dat
C:\Program Files\cnnic\Cdn\Update\cdnuc.exe
C:\Program Files\cnnic\Cdn\Update\cdnunins.exe
C:\Program Files\cnnic\Cdn\Update\cdnvers.dat
C:\Program Files\cnnic\Cdn\Update\enter.ico
C:\Program Files\cnnic\Cdn\Update\imadom.dat
C:\Program Files\cnnic\Cdn\Update\news.ico
C:\Program Files\cnnic\Cdn\Update\popup.bmp
C:\Program Files\cnnic\Cdn\Update\rbtnhtm.cab
C:\Program Files\cnnic\Cdn\Update\soft.ico
C:\Program Files\cnnic\Cdn\Update\spkw.dat
C:\Program Files\koowo
C:\Program Files\koowo\Lyric\conf.ini
C:\Program Files\koowo\Lyric\config\gbk-big5.txt
C:\Program Files\koowo\Lyric\config\RealMiniConfig.ini
C:\Program Files\koowo\Lyric\config\SongLrc.txt
C:\Program Files\koowo\Lyric\config\StringConfig.ini
C:\Program Files\koowo\Lyric\config\StringConfigBig5.ini
C:\Program Files\koowo\Lyric\config\tag.dat
C:\Program Files\koowo\Lyric\config\taginfo.dat
C:\Program Files\koowo\Lyric\config\WinampMainConfig.ini
C:\Program Files\koowo\Lyric\config\WinampMainConfigModern.ini
C:\Program Files\koowo\Lyric\config\WinampMiniConfig.ini
C:\Program Files\koowo\Lyric\config\WinampMiniConfigModern.ini
C:\Program Files\koowo\Lyric\config\WMPMiniConfig.ini
C:\Program Files\koowo\Lyric\dotag.exe
C:\Program Files\koowo\Lyric\dump.ax
C:\Program Files\koowo\Lyric\face\hand-close.cur
C:\Program Files\koowo\Lyric\face\hand-open.cur
C:\Program Files\koowo\Lyric\face\kwc.img
C:\Program Files\koowo\Lyric\face\real\bk.bmp
C:\Program Files\koowo\Lyric\face\real\close-hover.bmp
C:\Program Files\koowo\Lyric\face\real\close-normal.bmp
C:\Program Files\koowo\Lyric\face\real\close-pressed.bmp
C:\Program Files\koowo\Lyric\face\real\full-hover.bmp
C:\Program Files\koowo\Lyric\face\real\full-normal.bmp
C:\Program Files\koowo\Lyric\face\real\full-pressed.bmp
C:\Program Files\koowo\Lyric\face\real\mini-hover.bmp
C:\Program Files\koowo\Lyric\face\real\mini-normal.bmp
C:\Program Files\koowo\Lyric\face\real\mini-pressed.bmp
C:\Program Files\koowo\Lyric\face\real\pause-hover.bmp
C:\Program Files\koowo\Lyric\face\real\pause-normal.bmp
C:\Program Files\koowo\Lyric\face\real\pause-pressed.bmp
C:\Program Files\koowo\Lyric\face\real\play-hover-y.bmp
C:\Program Files\koowo\Lyric\face\real\play-hover.bmp
C:\Program Files\koowo\Lyric\face\real\play-normal-y.bmp
C:\Program Files\koowo\Lyric\face\real\play-normal.bmp
C:\Program Files\koowo\Lyric\face\real\play-pressed.bmp
C:\Program Files\koowo\Lyric\face\real\stop-disable.bmp
C:\Program Files\koowo\Lyric\face\real\stop-hover.bmp
C:\Program Files\koowo\Lyric\face\real\stop-normal.bmp
C:\Program Files\koowo\Lyric\face\real\stop-pressed.bmp
C:\Program Files\koowo\Lyric\face\real\Thumbs.db
C:\Program Files\koowo\Lyric\face\svr.img
C:\Program Files\koowo\Lyric\face\winamp\classic\bk.bmp
C:\Program Files\koowo\Lyric\face\winamp\classic\bk_color.bmp
C:\Program Files\koowo\Lyric\face\winamp\classic\close-pressed.bmp
C:\Program Files\koowo\Lyric\face\winamp\classic\close.bmp
C:\Program Files\koowo\Lyric\face\winamp\classic\ctrlscreen-normal.bmp
C:\Program Files\koowo\Lyric\face\winamp\classic\ctrlscreen-pressed.bmp
C:\Program Files\koowo\Lyric\face\winamp\classic\down-middle.bmp
C:\Program Files\koowo\Lyric\face\winamp\classic\hand-close.ico
C:\Program Files\koowo\Lyric\face\winamp\classic\hand-open.ico
C:\Program Files\koowo\Lyric\face\winamp\classic\last-normal.bmp
C:\Program Files\koowo\Lyric\face\winamp\classic\last-pressed.bmp
C:\Program Files\koowo\Lyric\face\winamp\classic\left-down.bmp
C:\Program Files\koowo\Lyric\face\winamp\classic\left-middle.bmp
C:\Program Files\koowo\Lyric\face\winamp\classic\left-top.bmp
C:\Program Files\koowo\Lyric\face\winamp\classic\logo-lyrics.bmp
C:\Program Files\koowo\Lyric\face\winamp\classic\mini-normal.bmp
C:\Program Files\koowo\Lyric\face\winamp\classic\mini-pressed.bmp
C:\Program Files\koowo\Lyric\face\winamp\classic\next-normal.bmp
C:\Program Files\koowo\Lyric\face\winamp\classic\next-pressed.bmp
C:\Program Files\koowo\Lyric\face\winamp\classic\pause-normal.bmp
C:\Program Files\koowo\Lyric\face\winamp\classic\pause-pressed.bmp
C:\Program Files\koowo\Lyric\face\winamp\classic\play-normal.bmp
C:\Program Files\koowo\Lyric\face\winamp\classic\play-pressed.bmp
C:\Program Files\koowo\Lyric\face\winamp\classic\resize.bmp
C:\Program Files\koowo\Lyric\face\winamp\classic\right-down.bmp
C:\Program Files\koowo\Lyric\face\winamp\classic\right-middle.bmp
C:\Program Files\koowo\Lyric\face\winamp\classic\right-top.bmp
C:\Program Files\koowo\Lyric\face\winamp\classic\stop-normal.bmp
C:\Program Files\koowo\Lyric\face\winamp\classic\stop-pressed.bmp
C:\Program Files\koowo\Lyric\face\winamp\classic\Thumbs.db
C:\Program Files\koowo\Lyric\face\winamp\classic\top-middle.bmp
C:\Program Files\koowo\Lyric\face\winamp\modern\bk.bmp
C:\Program Files\koowo\Lyric\face\winamp\modern\bk_color.bmp
C:\Program Files\koowo\Lyric\face\winamp\modern\close-pressed.bmp
C:\Program Files\koowo\Lyric\face\winamp\modern\close.bmp
C:\Program Files\koowo\Lyric\face\winamp\modern\ctrlscreen-normal.bmp
C:\Program Files\koowo\Lyric\face\winamp\modern\ctrlscreen-pressed.bmp
C:\Program Files\koowo\Lyric\face\winamp\modern\down-middle.bmp
C:\Program Files\koowo\Lyric\face\winamp\modern\hand-close.ico
C:\Program Files\koowo\Lyric\face\winamp\modern\hand-open.ico
C:\Program Files\koowo\Lyric\face\winamp\modern\last-hover.bmp
C:\Program Files\koowo\Lyric\face\winamp\modern\last-normal.bmp
C:\Program Files\koowo\Lyric\face\winamp\modern\last-pressed.bmp
C:\Program Files\koowo\Lyric\face\winamp\modern\left-down.bmp
C:\Program Files\koowo\Lyric\face\winamp\modern\left-middle.bmp
C:\Program Files\koowo\Lyric\face\winamp\modern\left-top.bmp
C:\Program Files\koowo\Lyric\face\winamp\modern\logo-lyrics.bmp
C:\Program Files\koowo\Lyric\face\winamp\modern\mini-normal.bmp
C:\Program Files\koowo\Lyric\face\winamp\modern\mini-pressed.bmp
C:\Program Files\koowo\Lyric\face\winamp\modern\mini.bmp
C:\Program Files\koowo\Lyric\face\winamp\modern\next-hover.bmp
C:\Program Files\koowo\Lyric\face\winamp\modern\next-normal.bmp
C:\Program Files\koowo\Lyric\face\winamp\modern\next-pressed.bmp
C:\Program Files\koowo\Lyric\face\winamp\modern\pause-hover.bmp
C:\Program Files\koowo\Lyric\face\winamp\modern\pause-normal.bmp
C:\Program Files\koowo\Lyric\face\winamp\modern\pause-pressed.bmp
C:\Program Files\koowo\Lyric\face\winamp\modern\play-hover.bmp
C:\Program Files\koowo\Lyric\face\winamp\modern\play-normal.bmp
C:\Program Files\koowo\Lyric\face\winamp\modern\play-pressed.bmp
C:\Program Files\koowo\Lyric\face\winamp\modern\resize.bmp
C:\Program Files\koowo\Lyric\face\winamp\modern\right-down.bmp
C:\Program Files\koowo\Lyric\face\winamp\modern\right-middle.bmp
C:\Program Files\koowo\Lyric\face\winamp\modern\right-top.bmp
C:\Program Files\koowo\Lyric\face\winamp\modern\stop-hover.bmp
C:\Program Files\koowo\Lyric\face\winamp\modern\stop-normal.bmp
C:\Program Files\koowo\Lyric\face\winamp\modern\stop-pressed.bmp
C:\Program Files\koowo\Lyric\face\winamp\modern\switch.bmp
C:\Program Files\koowo\Lyric\face\winamp\modern\Thumbs.db
C:\Program Files\koowo\Lyric\face\winamp\modern\top-middle.bmp
C:\Program Files\koowo\Lyric\face\wmp\bk.bmp
C:\Program Files\koowo\Lyric\face\wmp\bk2.bmp
C:\Program Files\koowo\Lyric\face\wmp\close.bmp
C:\Program Files\koowo\Lyric\face\wmp\full-screen.bmp
C:\Program Files\koowo\Lyric\face\wmp\last-disable.bmp
C:\Program Files\koowo\Lyric\face\wmp\last-hover.bmp
C:\Program Files\koowo\Lyric\face\wmp\last-normal.bmp
C:\Program Files\koowo\Lyric\face\wmp\last-pressed.bmp
C:\Program Files\koowo\Lyric\face\wmp\mini.bmp
C:\Program Files\koowo\Lyric\face\wmp\next-disable.bmp
C:\Program Files\koowo\Lyric\face\wmp\next-hover.bmp
C:\Program Files\koowo\Lyric\face\wmp\next-normal.bmp
C:\Program Files\koowo\Lyric\face\wmp\next-pressed.bmp
C:\Program Files\koowo\Lyric\face\wmp\pause-hover.bmp
C:\Program Files\koowo\Lyric\face\wmp\pause-normal.bmp
C:\Program Files\koowo\Lyric\face\wmp\pause-pressed.bmp
C:\Program Files\koowo\Lyric\face\wmp\play-hover.bmp
C:\Program Files\koowo\Lyric\face\wmp\play-normal.bmp
C:\Program Files\koowo\Lyric\face\wmp\play-pressed.bmp
C:\Program Files\koowo\Lyric\face\wmp\stop-disable.bmp
C:\Program Files\koowo\Lyric\face\wmp\stop-normal.bmp
C:\Program Files\koowo\Lyric\face\wmp\stop-pressed.bmp
C:\Program Files\koowo\Lyric\face\wmp\switch.bmp
C:\Program Files\koowo\Lyric\fp.tmp
C:\Program Files\koowo\Lyric\gen_WMP.dll
C:\Program Files\koowo\Lyric\KWLyric_wmp.dll
C:\Program Files\koowo\Lyric\log\act.log
C:\Program Files\koowo\Lyric\lyric\Justin Timberlake - SexyBack.lrc
C:\Program Files\koowo\Lyric\lyric\readme.txt
C:\Program Files\koowo\Lyric\recoEngine.exe
C:\Program Files\koowo\Lyric\RMSplt.ax
C:\Program Files\koowo\Lyric\update\KUpdate.exe
C:\Program Files\koowo\Lyric\update\newup_silent.zip
C:\Program Files\koowo\Lyric\update\Update.dll
C:\WINDOWS\photos.zip
C:\WINDOWS\system32\cdnprot.dat
C:\WINDOWS\system32\ihxdqtgx.dll
C:\WINDOWS\system32\lylk.dat
C:\WINDOWS\system32\plugin.ini
C:\WINDOWS\system32\webflag.ocx
C:\WINDOWS\system32\winmmt32.dll
C:\WINDOWS\system32\yJTELkkj.ini
C:\WINDOWS\system32\yJTELkkj.ini2

.
((((((((((((((((((((((((((((((((((((((( Drivers/Services )))))))))))))))))))))))))))))))))))))))))))))))))
.

-------\Legacy_BDGUARD
-------\Service_cdnprot
-------\Service_poof

((((((((((((((((((((((((((((( Fichiers créés 2008-04-18 to 2008-05-18 ))))))))))))))))))))))))))))))))))))
.

2008-05-18 20:24 . 2008-05-18 20:24 268 --ah----- C:\sqmdata08.sqm
2008-05-18 20:24 . 2008-05-18 20:24 244 --ah----- C:\sqmnoopt08.sqm
2008-05-18 18:49 . 2008-05-18 18:49 268 --ah----- C:\sqmdata07.sqm
2008-05-18 18:49 . 2008-05-18 18:49 244 --ah----- C:\sqmnoopt07.sqm
2008-05-18 18:03 . 2008-05-18 18:06 <REP> d-------- C:\WINDOWS\LastGood
2008-05-18 18:03 . 2007-07-30 19:19 271,224 --a------ C:\WINDOWS\system32\mucltui.dll
2008-05-18 18:03 . 2007-07-30 19:19 207,736 --a------ C:\WINDOWS\system32\muweb.dll
2008-05-18 18:03 . 2007-07-30 19:18 30,072 --a------ C:\WINDOWS\system32\mucltui.dll.mui
2008-05-18 16:19 . 2008-05-18 16:19 280 --ah----- C:\sqmdata06.sqm
2008-05-18 16:19 . 2008-05-18 16:19 244 --ah----- C:\sqmnoopt06.sqm
2008-05-18 15:05 . 2008-05-18 15:05 268 --ah----- C:\sqmdata05.sqm
2008-05-18 15:05 . 2008-05-18 15:05 244 --ah----- C:\sqmnoopt05.sqm
2008-05-18 14:11 . 2008-05-18 14:11 268 --ah----- C:\sqmdata04.sqm
2008-05-18 14:11 . 2008-05-18 14:11 244 --ah----- C:\sqmnoopt04.sqm
2008-05-18 13:56 . 2008-05-18 13:56 268 --ah----- C:\sqmdata03.sqm
2008-05-18 13:56 . 2008-05-18 13:56 244 --ah----- C:\sqmnoopt03.sqm
2008-05-18 12:54 . 2008-05-18 12:54 268 --ah----- C:\sqmdata02.sqm
2008-05-18 12:54 . 2008-05-18 12:54 244 --ah----- C:\sqmnoopt02.sqm
2008-05-18 12:14 . 2008-03-01 14:58 6,066,176 -----c--- C:\WINDOWS\system32\dllcache\ieframe.dll
2008-05-18 12:14 . 2007-04-17 11:32 2,455,488 -----c--- C:\WINDOWS\system32\dllcache\ieapfltr.dat
2008-05-18 12:14 . 2007-03-08 07:10 1,048,576 -----c--- C:\WINDOWS\system32\dllcache\ieframe.dll.mui
2008-05-18 12:14 . 2008-03-01 14:58 459,264 -----c--- C:\WINDOWS\system32\dllcache\msfeeds.dll
2008-05-18 12:14 . 2008-03-01 14:58 383,488 -----c--- C:\WINDOWS\system32\dllcache\ieapfltr.dll
2008-05-18 12:14 . 2008-03-01 14:58 267,776 -----c--- C:\WINDOWS\system32\dllcache\iertutil.dll
2008-05-18 12:14 . 2008-03-01 14:58 63,488 -----c--- C:\WINDOWS\system32\dllcache\icardie.dll
2008-05-18 12:14 . 2008-03-01 14:58 52,224 -----c--- C:\WINDOWS\system32\dllcache\msfeedsbs.dll
2008-05-18 12:14 . 2008-02-22 12:00 13,824 -----c--- C:\WINDOWS\system32\dllcache\ieudinit.exe
2008-05-18 12:13 . 2008-05-18 12:15 <REP> d-------- C:\WINDOWS\system32\fr-fr
2008-05-18 02:32 . 2008-05-18 02:32 268 --ah----- C:\sqmdata01.sqm
2008-05-18 02:32 . 2008-05-18 02:32 244 --ah----- C:\sqmnoopt01.sqm
2008-05-18 02:17 . 2008-05-18 02:17 268 --ah----- C:\sqmdata00.sqm
2008-05-18 02:17 . 2008-05-18 02:17 244 --ah----- C:\sqmnoopt00.sqm
2008-05-18 00:44 . 2008-05-18 00:44 <REP> d----c--- C:\WINDOWS\system32\DRVSTORE
2008-05-17 21:42 . 2007-02-28 18:02 2,182,400 -----c--- C:\WINDOWS\system32\dllcache\ntoskrnl.exe
2008-05-17 21:42 . 2007-02-28 18:02 2,138,112 -----c--- C:\WINDOWS\system32\dllcache\ntkrnlmp.exe
2008-05-17 21:42 . 2007-02-28 18:02 2,059,648 -----c--- C:\WINDOWS\system32\dllcache\ntkrnlpa.exe
2008-05-17 21:42 . 2007-02-28 18:02 2,017,792 -----c--- C:\WINDOWS\system32\dllcache\ntkrpamp.exe
2008-05-17 18:11 . 2008-05-17 18:11 <REP> d-------- C:\Documents and Settings\Compaq_Propriétaire\Application Data\Malwarebytes
2008-05-17 18:10 . 2008-05-18 02:12 <REP> d-------- C:\Program Files\Malwarebytes' Anti-Malware
2008-05-17 18:10 . 2008-05-17 18:10 <REP> d-------- C:\Documents and Settings\All Users\Application Data\Malwarebytes
2008-05-17 18:10 . 2008-05-05 20:46 27,048 --a------ C:\WINDOWS\system32\drivers\mbamcatchme.sys
2008-05-17 18:10 . 2008-05-05 20:46 15,864 --a------ C:\WINDOWS\system32\drivers\mbam.sys
2008-05-17 12:49 . 2008-05-17 12:49 56 --ah----- C:\WINDOWS\system32\ezsidmv.dat
2008-05-17 12:31 . 2008-05-17 13:26 <REP> d-------- C:\Documents and Settings\Compaq_Propriétaire\Application Data\GrabIt
2008-05-17 12:13 . 2006-10-04 16:06 1,197,294 --a--c--- C:\WINDOWS\system32\dllcache\SET1BF.tmp
2008-05-17 12:04 . 2008-05-17 12:04 <REP> d-------- C:\WINDOWS\system32\LogFiles
2008-05-17 12:04 . 2008-05-17 12:06 <REP> d-------- C:\WINDOWS\system32\drivers\UMDF
2008-05-17 12:00 . 2006-05-05 11:41 453,120 -----c--- C:\WINDOWS\system32\dllcache\mrxsmb.sys
2008-05-17 11:02 . 2006-09-25 17:58 23,856 --a------ C:\WINDOWS\system32\spupdsvc.exe
2008-05-17 10:54 . 2008-05-17 10:54 <REP> d-------- C:\Documents and Settings\Administrateur.NOM-47D5A5B94AD
2008-05-17 08:45 . 2004-06-02 10:54 7,406 --a------ C:\WINDOWS\system32\doc.ico
2008-05-17 08:35 . 2008-05-18 13:09 <REP> dr-hsc--- C:\WINDOWS\system32\dllcache
2008-05-17 08:35 . 2008-05-17 08:42 <REP> dr------- C:\WINDOWS\system32\config\systemprofile\Menu Démarrer
2008-05-17 01:29 . 2004-08-03 23:10 85,376 --a------ C:\WINDOWS\system32\drivers\NABTSFEC.sys
2008-05-17 01:29 . 2004-08-03 23:10 85,376 --a--c--- C:\WINDOWS\system32\dllcache\nabtsfec.sys
2008-05-17 01:29 . 2004-08-03 23:10 17,024 --a------ C:\WINDOWS\system32\drivers\CCDECODE.sys
2008-05-17 01:29 . 2004-08-03 23:10 17,024 --a--c--- C:\WINDOWS\system32\dllcache\ccdecode.sys
2008-05-17 01:28 . 2004-08-04 00:55 91,648 --a------ C:\WINDOWS\system32\kswdmcap.ax
2008-05-17 01:28 . 2004-08-04 00:55 91,648 --a--c--- C:\WINDOWS\system32\dllcache\kswdmcap.ax
2008-05-17 01:28 . 2004-08-04 00:55 61,952 --a------ C:\WINDOWS\system32\kstvtune.ax
2008-05-17 01:28 . 2004-08-04 00:55 61,952 --a--c--- C:\WINDOWS\system32\dllcache\kstvtune.ax
2008-05-17 01:28 . 2004-08-04 00:54 54,784 --a------ C:\WINDOWS\system32\vfwwdm32.dll
2008-05-17 01:28 . 2004-08-04 00:54 54,784 --a--c--- C:\WINDOWS\system32\dllcache\vfwwdm32.dll
2008-05-17 01:28 . 2004-08-04 00:55 43,008 --a------ C:\WINDOWS\system32\ksxbar.ax
2008-05-17 01:28 . 2004-08-04 00:55 43,008 --a--c--- C:\WINDOWS\system32\dllcache\ksxbar.ax
2008-05-17 01:28 . 2004-08-04 00:55 28,672 --a------ C:\WINDOWS\system32\vidcap.ax
2008-05-17 01:28 . 2004-08-04 00:55 28,672 --a--c--- C:\WINDOWS\system32\dllcache\vidcap.ax
2008-05-17 01:20 . 2006-06-07 10:34 10,305,280 --a------ C:\WINDOWS\system32\drivers\snp2sxp.sys
2008-05-17 01:20 . 2005-11-23 13:55 53,248 --a------ C:\WINDOWS\system32\csnp2std.dll
2008-05-17 01:20 . 2006-04-27 20:43 24,832 --a------ C:\WINDOWS\system32\drivers\sncamd.sys
2008-05-17 01:20 . 2006-06-01 11:26 20,480 --a------ C:\WINDOWS\FixCamera.exe
2008-05-17 01:13 . 2006-08-01 15:02 49,152 --a------ C:\WINDOWS\system32\ChCfg.exe
2008-05-17 01:12 . 2008-05-17 01:12 <REP> d-------- C:\Program Files\Realtek AC97
2008-05-17 01:12 . 2006-12-08 15:20 10,528,768 --a------ C:\WINDOWS\system32\RTLCPL.exe
2008-05-17 01:12 . 2007-04-16 15:28 577,536 --a------ C:\WINDOWS\soundman.exe
2008-05-17 01:12 . 2006-07-31 11:19 315,392 --a------ C:\WINDOWS\alcupd.exe
2008-05-17 01:12 . 2006-07-31 11:27 217,088 --a------ C:\WINDOWS\Alcrmv.exe
2008-05-17 01:12 . 2006-10-18 02:53 147,456 --a------ C:\WINDOWS\system32\RtlCPAPI.dll
2008-05-17 01:12 . 2002-02-05 13:54 141,016 --a------ C:\WINDOWS\system32\alsndmgr.wav
2008-05-17 01:06 . 2008-05-17 01:06 <REP> d-------- C:\Program Files\ma-config.com
2008-05-17 01:06 . 2008-05-17 01:07 <REP> d-------- C:\Documents and Settings\All Users\Application Data\ma-config.com
2008-05-17 00:58 . 2004-08-05 05:00 1,783,864 --a------ C:\WINDOWS\system32\WINPY.MB
2008-05-17 00:57 . 2004-08-05 05:00 189,986 --a--c--- C:\WINDOWS\system32\dllcache\c_1361.nls
2008-05-17 00:56 . 2004-08-05 05:00 811,064 --a------ C:\WINDOWS\system32\imjp81k.dll
2008-05-17 00:55 . 2004-08-03 23:15 60,800 --a------ C:\WINDOWS\system32\drivers\sysaudio.sys
2008-05-17 00:54 . 2004-08-04 00:55 130,048 --a------ C:\WINDOWS\system32\ksproxy.ax
2008-05-17 00:54 . 2004-08-04 00:55 130,048 --a--c--- C:\WINDOWS\system32\dllcache\ksproxy.ax
2008-05-17 00:54 . 2004-08-03 23:10 61,056 --a------ C:\WINDOWS\system32\drivers\ohci1394.sys
2008-05-17 00:54 . 2004-08-03 23:08 60,288 --a------ C:\WINDOWS\system32\drivers\drmk.sys
2008-05-17 00:54 . 2004-08-03 23:08 60,288 --a--c--- C:\WINDOWS\system32\dllcache\drmk.sys
2008-05-17 00:54 . 2004-08-03 23:10 53,248 --a------ C:\WINDOWS\system32\drivers\1394bus.sys
2008-05-17 00:54 . 2001-08-17 21:46 6,400 --a------ C:\WINDOWS\system32\drivers\enum1394.sys
2008-05-17 00:54 . 2004-08-04 00:54 4,096 --a------ C:\WINDOWS\system32\ksuser.dll
2008-05-17 00:54 . 2004-08-04 00:54 4,096 --a--c--- C:\WINDOWS\system32\dllcache\ksuser.dll
2008-05-17 00:31 . 2008-05-17 00:31 <REP> d-------- C:\WINDOWS\WinRAR
2008-05-17 00:25 . 2006-04-13 03:04 49,664 -ra------ C:\WINDOWS\system32\drivers\HPZid412.sys
2008-05-17 00:25 . 2006-04-13 03:04 16,496 -ra------ C:\WINDOWS\system32\drivers\HPZipr12.sys
2008-05-17 00:24 . 2006-04-13 03:04 282,624 -ra------ C:\WINDOWS\system32\HPZc3212.dll
2008-05-17 00:24 . 2006-01-04 11:12 77,824 -ra------ C:\WINDOWS\system32\HPZIDS01.dll
2008-05-17 00:24 . 2006-04-10 14:03 38,400 --a------ C:\WINDOWS\system32\hpz3l054.dll
2008-05-17 00:24 . 2006-04-13 03:04 21,568 -ra------ C:\WINDOWS\system32\drivers\HPZius12.sys
2008-05-17 00:23 . 2006-04-13 03:02 827,392 -ra------ C:\WINDOWS\system32\hpotiop2.dll
2008-05-17 00:23 . 2006-04-13 03:02 659,456 -ra------ C:\WINDOWS\system32\hpowiax2.dll
2008-05-17 00:23 . 2006-04-13 03:02 254,026 -ra------ C:\WINDOWS\system32\hpovst09.dll
2008-05-17 00:23 . 2004-08-03 22:58 15,104 --a------ C:\WINDOWS\system32\drivers\usbscan.sys
2008-05-17 00:23 . 2004-08-03 22:58 15,104 --a--c--- C:\WINDOWS\system32\dllcache\usbscan.sys
2008-05-17 00:07 . 2004-08-05 12:00 221,184 --a------ C:\WINDOWS\system32\wmpns.dll
2008-05-17 00:07 . 2008-05-17 00:07 3,966 -rahs---- C:\WINDOWS\system32\drivers\HP_PP123AA-ABF SR1207FR FR440_YC_Pres_QCZB441_E44FRheREF2_4_IKelut_SASUSTek Computer INC._V2.02_B3.11_T040902_W2_L40C_M960_J80_7AMD_8Sempron 2800+_92_111063044_N11063065_P_Z11C1048C_K_A11063059_U11063038_G11067205.MRK
2008-05-17 00:06 . 2004-01-02 02:04 <REP> d-------- C:\Documents and Settings\Compaq_Propriétaire\WINDOWS
2008-05-17 00:06 . 2004-01-02 02:04 <REP> d-------- C:\Documents and Settings\Compaq_Propriétaire\WINDOWS
2008-05-17 00:06 . 2004-01-02 00:45 <REP> d--h----- C:\Documents and Settings\Compaq_Propriétaire\Voisinage réseau
2008-05-17 00:06 . 2004-01-02 00:45 <REP> d--h----- C:\Documents and Settings\Compaq_Propriétaire\Voisinage réseau
2008-05-17 00:06 . 2004-01-02 00:45 <REP> d--h----- C:\Documents and Settings\Compaq_Propriétaire\Voisinage d'impression
2008-05-17 00:06 . 2004-01-02 00:45 <REP> d--h----- C:\Documents and Settings\Compaq_Propriétaire\Voisinage d'impression
2008-05-17 00:06 . 2008-05-17 00:21 <REP> d--h----- C:\Documents and Settings\Compaq_Propriétaire\Modèles
2008-05-17 00:06 . 2008-05-17 00:21 <REP> d--h----- C:\Documents and Settings\Compaq_Propriétaire\Modèles
2008-05-17 00:06 . 2008-05-18 15:09 <REP> dr------- C:\Documents and Settings\Compaq_Propriétaire\Mes documents
2008-05-17 00:06 . 2008-05-18 15:09 <REP> dr------- C:\Documents and Settings\Compaq_Propriétaire\Mes documents
2008-05-17 00:06 . 2008-05-17 00:30 <REP> dr------- C:\Documents and Settings\Compaq_Propriétaire\Menu Démarrer
2008-05-17 00:06 . 2008-05-17 00:30 <REP> dr------- C:\Documents and Settings\Compaq_Propriétaire\Menu Démarrer
2008-05-17 00:06 . 2008-05-17 00:19 <REP> dr------- C:\Documents and Settings\Compaq_Propriétaire\Favoris
2008-05-17 00:06 . 2008-05-17 00:19 <REP> dr------- C:\Documents and Settings\Compaq_Propriétaire\Favoris
2008-05-17 00:06 . 2008-05-18 14:03 <REP> d-------- C:\Documents and Settings\Compaq_Propriétaire\Bureau
2008-05-17 00:06 . 2008-05-18 14:03 <REP> d-------- C:\Documents and Settings\Compaq_Propriétaire\Bureau
2008-05-17 00:06 . 2004-01-01 22:38 <REP> d-------- C:\Documents and Settings\Compaq_Propriétaire\Application Data\Symantec

.
(((((((((((((((((((((((((((((((((( Compte-rendu de Find3M ))))))))))))))))))))))))))))))))))))))))))))))))
.
2008-05-18 18:24 --------- d-----w C:\Documents and Settings\Compaq_Propriétaire\Application Data\Skype
2008-05-18 14:04 --------- d-----w C:\Documents and Settings\Compaq_Propriétaire\Application Data\skypePM
2008-05-18 13:13 --------- d-----w C:\Program Files\Messenger Plus! Live
2008-05-18 12:12 --------- d-----w C:\Documents and Settings\Compaq_Propriétaire\Application Data\DMCache
2008-05-18 10:11 --------- d-----w C:\Program Files\adslTV
2008-05-18 10:08 --------- d-----w C:\Documents and Settings\Compaq_Propriétaire\Application Data\vlc
2008-05-18 00:17 --------- d-----w C:\Program Files\mIRC
2008-05-17 23:21 --------- d-----w C:\Program Files\Windows Live
2008-05-17 19:45 --------- d-----w C:\Documents and Settings\All Users\Application Data\WLInstaller
2008-05-17 10:23 --------- d-----w C:\Program Files\Fichiers communs\Skype
2008-05-17 09:56 --------- d--h--w C:\Program Files\InstallShield Installation Information
2008-05-17 09:52 --------- d-----w C:\Documents and Settings\All Users\Application Data\Symantec
2008-05-17 09:51 --------- d-----w C:\Program Files\Fichiers communs\Symantec Shared
2008-05-17 09:50 --------- d-----w C:\Program Files\Winamp
2008-05-17 09:48 --------- d-----w C:\Program Files\PPLive
2008-05-17 09:47 --------- d-----w C:\Program Files\Nowcom
2008-05-17 09:46 --------- d-----w C:\Program Files\K-Lite Codec Pack
2008-05-16 23:20 --------- d-----w C:\Program Files\Fichiers communs\snp2std
2008-05-16 23:03 --------- d-----w C:\Program Files\The KMPlayer FR
2008-05-16 22:20 --------- d-----w C:\Program Files\Easy Internet signup
2008-05-16 20:50 --------- d-----w C:\Program Files\Freenet
2008-05-16 20:43 --------- d-----w C:\Program Files\Steam
2008-05-13 20:14 --------- d-----w C:\Documents and Settings\Compaq_Propriétaire\Application Data\uTorrent
2008-05-11 11:41 --------- d-----w C:\Documents and Settings\Compaq_Propriétaire\Application Data\U3
2008-05-11 10:20 --------- d-----w C:\Program Files\eMule
2008-05-08 13:17 --------- d-----w C:\Program Files\Windows Live Safety Center
2008-05-06 23:10 --------- d-----w C:\Documents and Settings\Compaq_Propriétaire\Application Data\AdobeUM
2008-04-29 18:11 --------- d-----w C:\Documents and Settings\Compaq_Propriétaire\Application Data\Storelogokay
2008-04-29 13:15 --------- d-----w C:\Documents and Settings\Compaq_Propriétaire\Application Data\IDM
2008-04-28 09:31 --------- d-----w C:\Program Files\FlashGet
2008-04-19 15:22 --------- d-----w C:\Program Files\TVAnts
2008-04-18 16:50 --------- d-----w C:\Documents and Settings\Compaq_Propriétaire\Application Data\Image Zone Express
2008-04-13 08:19 --------- d-----w C:\Program Files\TVUPlayer
2008-04-13 08:19 --------- d-----w C:\Documents and Settings\All Users\Application Data\TVU Networks
2008-04-13 08:14 --------- d-----w C:\Program Files\SopCast
2008-04-01 13:27 --------- d-----w C:\Program Files\ppStream
2008-03-25 04:51 621,344 ----a-w C:\WINDOWS\system32\mswstr10.dll
2008-03-25 04:51 194,144 ----a-w C:\WINDOWS\system32\msjint40.dll
2008-03-21 08:37 --------- d-----w C:\Program Files\Free
2008-03-20 08:09 1,845,376 ----a-w C:\WINDOWS\system32\win32k.sys
2008-03-01 12:58 826,368 ----a-w C:\WINDOWS\system32\wininet.dll
2008-02-20 06:51 282,624 ----a-w C:\WINDOWS\system32\gdi32.dll
2008-02-20 05:35 45,568 ----a-w C:\WINDOWS\system32\dnsrslvr.dll
2007-11-22 16:16 32 ----a-w C:\Documents and Settings\All Users\Application Data\ezsid.dat
2007-03-01 14:52 25,766,528 ----a-w C:\Program Files\freeBrowser_0.9_2007-01-15.zip
2007-02-19 20:09 54 ----a-w C:\Program Files\delir.gio
2006-11-08 20:41 1,280 ----a-w C:\Program Files\SolidWorksswxJRNL.BAK
2005-05-28 18:40 774,144 ----a-w C:\Program Files\RngInterstitial.dll
2004-06-18 09:05 45,056 ----a-w C:\WINDOWS\inf\Slntinst.exe
2003-08-22 09:09 45,056 ----a-w C:\WINDOWS\inf\slntinst_staticW2k.exe
1998-08-24 10:09 10,000 ----a-w C:\WINDOWS\inf\unregpn.exe
2007-06-17 10:14 2,735,104 ----a-w C:\Program Files\mozilla firefox\plugins\libvlc.dll
2005-08-15 20:25 0 --sha-w C:\WINDOWS\SMINST\HPCD.sys
.

((((((((((((((((((((((((((((( snapshot@2008-05-18_13.43.03.62 )))))))))))))))))))))))))))))))))))))))))
.
- 2008-05-18 00:49:59 1,257,472 ----a-w C:\WINDOWS\assembly\GAC\System.Web\1.0.5000.0__b03f5f7f11d50a3a\System.Web.dll
+ 2008-05-18 11:57:55 1,265,664 ----a-w C:\WINDOWS\assembly\GAC\System.Web\1.0.5000.0__b03f5f7f11d50a3a\System.Web.dll
- 2008-05-18 00:50:01 1,224,704 ----a-w C:\WINDOWS\assembly\GAC\System\1.0.5000.0__b77a5c561934e089\System.dll
+ 2008-05-18 11:57:56 1,232,896 ----a-w C:\WINDOWS\assembly\GAC\System\1.0.5000.0__b77a5c561934e089\System.dll
+ 2008-05-18 11:58:12 61,440 ----a-w C:\WINDOWS\assembly\NativeImages1_v1.1.4322\CustomMarshalers\1.0.5000.0__b03f5f7f11d50a3a_06cd8018\CustomMarshalers.dll
+ 2008-05-18 12:03:59 3,391,488 ----a-w C:\WINDOWS\assembly\NativeImages1_v1.1.4322\mscorlib\1.0.5000.0__b77a5c561934e089_d940c3d5\mscorlib.dll
+ 2008-05-18 12:03:50 1,466,368 ----a-w C:\WINDOWS\assembly\NativeImages1_v1.1.4322\System.Design\1.0.5000.0__b03f5f7f11d50a3a_29d41f6b\System.Design.dll
+ 2008-05-18 12:02:53 90,112 ----a-w C:\WINDOWS\assembly\NativeImages1_v1.1.4322\System.Drawing.Design\1.0.5000.0__b03f5f7f11d50a3a_8e3d272c\System.Drawing.Design.dll
+ 2008-05-18 12:03:54 835,584 ----a-w C:\WINDOWS\assembly\NativeImages1_v1.1.4322\System.Drawing\1.0.5000.0__b03f5f7f11d50a3a_3de09af6\System.Drawing.dll
+ 2008-05-18 12:03:15 3,018,752 ----a-w C:\WINDOWS\assembly\NativeImages1_v1.1.4322\System.Windows.Forms\1.0.5000.0__b77a5c561934e089_1c03201b\System.Windows.Forms.dll
+ 2008-05-18 12:03:28 2,088,960 ----a-w C:\WINDOWS\assembly\NativeImages1_v1.1.4322\System.Xml\1.0.5000.0__b77a5c561934e089_c7e6b88f\System.Xml.dll
+ 2008-05-18 11:58:07 1,966,080 ----a-w C:\WINDOWS\assembly\NativeImages1_v1.1.4322\System\1.0.5000.0__b77a5c561934e089_72ee05f4\System.dll
+ 2008-05-18 12:04:30 20,480 ----a-w C:\WINDOWS\assembly\NativeImages1_v1.1.4322\vjscor\1.0.5000.0__b03f5f7f11d50a3a_55db2c51\vjscor.dll
+ 2008-05-18 12:04:04 69,632 ----a-w C:\WINDOWS\assembly\NativeImages1_v1.1.4322\VJSharpCodeProvider\7.0.5000.0__b03f5f7f11d50a3a_f014a621\VJSharpCodeProvider.dll
+ 2008-05-18 12:04:29 4,464,640 ----a-w C:\WINDOWS\assembly\NativeImages1_v1.1.4322\vjslib\1.0.5000.0__b03f5f7f11d50a3a_9c70820e\vjslib.dll
+ 2008-05-18 12:04:12 32,768 ----a-w C:\WINDOWS\assembly\NativeImages1_v1.1.4322\vjslibcw\1.0.5000.0__b03f5f7f11d50a3a_8b424161\vjslibcw.dll
+ 2008-05-18 12:04:09 10,240 ----a-w C:\WINDOWS\assembly\NativeImages1_v1.1.4322\VJSWfcBrowserStubLib\1.0.5000.0__b03f5f7f11d50a3a_d57e8645\VJSWfcBrowserStubLib.dll
- 2008-05-18 11:09:15 2,048 --s-a-w C:\WINDOWS\bootstat.dat
+ 2008-05-18 12:12:20 2,048 --s-a-w C:\WINDOWS\bootstat.dat
+ 2008-05-18 12:10:15 18,718 ----a-r C:\WINDOWS\Installer\{BFD080F6-3BF0-40E1-9507-9CA969C35870}\ARPPRODUCTICON.exe
+ 2008-05-18 12:10:15 18,718 ----a-r C:\WINDOWS\Installer\{BFD080F6-3BF0-40E1-9507-9CA969C35870}\NewShortcut1_E659E0EE10E649B7869660F38D0EB174.exe
+ 2008-05-18 12:10:15 18,718 ----a-r C:\WINDOWS\Installer\{BFD080F6-3BF0-40E1-9507-9CA969C35870}\NewShortcut2_8315396A5EA1419DBEC4978284BDF556.exe
- 2004-07-14 23:49:16 258,048 ----a-w C:\WINDOWS\Microsoft.NET\Framework\v1.1.4322\aspnet_isapi.dll
+ 2007-04-13 19:30:52 258,048 ----a-w C:\WINDOWS\Microsoft.NET\Framework\v1.1.4322\aspnet_isapi.dll
- 2004-07-14 23:49:22 32,768 ----a-w C:\WINDOWS\Microsoft.NET\Framework\v1.1.4322\aspnet_wp.exe
+ 2007-04-13 19:30:52 32,768 ----a-w C:\WINDOWS\Microsoft.NET\Framework\v1.1.4322\aspnet_wp.exe
- 2004-07-14 22:32:22 81,920 ----a-w C:\WINDOWS\Microsoft.NET\Framework\v1.1.4322\CORPerfMonExt.dll
+ 2007-04-13 18:57:52 81,920 ----a-w C:\WINDOWS\Microsoft.NET\Framework\v1.1.4322\CORPerfMonExt.dll
- 2003-02-21 01:09:14 86,016 ----a-w C:\WINDOWS\Microsoft.NET\Framework\v1.1.4322\mscorie.dll
+ 2007-04-13 18:57:58 86,016 ----a-w C:\WINDOWS\Microsoft.NET\Framework\v1.1.4322\mscorie.dll
- 2004-07-14 22:25:06 315,392 ----a-w C:\WINDOWS\Microsoft.NET\Framework\v1.1.4322\mscorjit.dll
+ 2007-04-13 18:56:30 315,392 ----a-w C:\WINDOWS\Microsoft.NET\Framework\v1.1.4322\mscorjit.dll
- 2004-07-14 22:33:04 102,400 ----a-w C:\WINDOWS\Microsoft.NET\Framework\v1.1.4322\mscorld.dll
+ 2007-04-13 18:58:00 102,400 ----a-w C:\WINDOWS\Microsoft.NET\Framework\v1.1.4322\mscorld.dll
- 2004-07-15 12:29:02 2,138,112 ----a-w C:\WINDOWS\Microsoft.NET\Framework\v1.1.4322\mscorlib.dll
+ 2007-04-13 18:50:46 2,142,208 ----a-w C:\WINDOWS\Microsoft.NET\Framework\v1.1.4322\mscorlib.dll
- 2003-02-21 01:09:18 77,824 ----a-w C:\WINDOWS\Microsoft.NET\Framework\v1.1.4322\mscorsn.dll
+ 2007-04-13 18:58:02 77,824 ----a-w C:\WINDOWS\Microsoft.NET\Framework\v1.1.4322\mscorsn.dll
- 2004-07-14 22:26:52 2,510,848 ----a-w C:\WINDOWS\Microsoft.NET\Framework\v1.1.4322\mscorsvr.dll
+ 2007-04-13 18:57:00 2,523,136 ----a-w C:\WINDOWS\Microsoft.NET\Framework\v1.1.4322\mscorsvr.dll
- 2004-07-14 22:28:34 2,502,656 ----a-w C:\WINDOWS\Microsoft.NET\Framework\v1.1.4322\mscorwks.dll
+ 2007-04-13 18:57:28 2,514,944 ----a-w C:\WINDOWS\Microsoft.NET\Framework\v1.1.4322\mscorwks.dll
+ 2004-07-14 23:49:16 258,048 ----a-w C:\WINDOWS\Microsoft.NET\Framework\v1.1.4322\SHADOW3596\_aspnet_isapi.dll
+ 2004-07-14 22:32:22 81,920 ----a-w C:\WINDOWS\Microsoft.NET\Framework\v1.1.4322\SHADOW3596\_CORPerfMonExt.dll
+ 2004-07-14 22:24:30 282,624 ----a-w C:\WINDOWS\Microsoft.NET\Framework\v1.1.4322\SHADOW3596\_fusion.dll
+ 2004-07-14 22:25:06 315,392 ----a-w C:\WINDOWS\Microsoft.NET\Framework\v1.1.4322\SHADOW3596\_mscorjit.dll
+ 2004-07-15 12:29:02 2,138,112 ----a-w C:\WINDOWS\Microsoft.NET\Framework\v1.1.4322\SHADOW3596\_mscorlib.dll
+ 2003-02-21 01:09:18 77,824 ----a-w C:\WINDOWS\Microsoft.NET\Framework\v1.1.4322\SHADOW3596\_mscorsn.dll
+ 2004-07-14 22:26:52 2,510,848 ----a-w C:\WINDOWS\Microsoft.NET\Framework\v1.1.4322\SHADOW3596\_mscorsvr.dll
+ 2004-07-14 22:28:34 2,502,656 ----a-w C:\WINDOWS\Microsoft.NET\Framework\v1.1.4322\SHADOW3596\_mscorwks.dll
+ 2003-02-21 10:42:22 348,160 ----a-w C:\WINDOWS\Microsoft.NET\Framework\v1.1.4322\SHADOW3596\_msvcr71.dll
+ 2004-07-14 22:34:50 94,208 ----a-w C:\WINDOWS\Microsoft.NET\Framework\v1.1.4322\SHADOW3596\_PerfCounter.dll
- 2004-07-15 12:31:16 1,224,704 ----a-w C:\WINDOWS\Microsoft.NET\Framework\v1.1.4322\System.dll
+ 2007-04-13 19:35:38 1,232,896 ----a-w C:\WINDOWS\Microsoft.NET\Framework\v1.1.4322\System.dll
- 2004-07-15 12:29:00 1,257,472 ----a-w C:\WINDOWS\Microsoft.NET\Framework\v1.1.4322\System.Web.dll
+ 2007-04-13 19:35:46 1,265,664 ----a-w C:\WINDOWS\Microsoft.NET\Framework\v1.1.4322\System.Web.dll
- 2008-03-29 17:45:49 1,146,232 ----a-w C:\WINDOWS\system32\aswBoot.exe
+ 2008-05-15 23:24:43 1,152,888 ----a-w C:\WINDOWS\system32\aswBoot.exe
- 2008-03-29 17:23:22 95,608 ----a-w C:\WINDOWS\system32\AvastSS.scr
+ 2008-05-15 23:12:36 95,608 ----a-w C:\WINDOWS\system32\AvastSS.scr
- 2008-03-29 17:26:52 26,944 ----a-w C:\WINDOWS\system32\drivers\aavmker4.sys
+ 2008-05-15 23:13:26 26,944 ----a-w C:\WINDOWS\system32\drivers\aavmker4.sys
- 2008-03-29 17:35:49 20,560 ----a-w C:\WINDOWS\system32\drivers\aswFsBlk.sys
+ 2008-05-15 23:16:06 20,560 ----a-w C:\WINDOWS\system32\drivers\aswFsBlk.sys
- 2008-03-29 17:35:21 94,544 ----a-w C:\WINDOWS\system32\drivers\aswmon2.sys
+ 2008-05-15 23:18:33 94,416 ----a-w C:\WINDOWS\system32\drivers\aswmon2.sys
- 2008-03-29 17:29:08 23,152 ----a-w C:\WINDOWS\system32\drivers\aswRdr.sys
+ 2008-05-15 23:15:29 23,152 ----a-w C:\WINDOWS\system32\drivers\aswRdr.sys
- 2008-03-29 17:31:34 75,856 ----a-w C:\WINDOWS\system32\drivers\aswSP.sys
+ 2008-05-15 23:20:32 78,416 ----a-w C:\WINDOWS\system32\drivers\aswSP.sys
- 2008-03-29 17:27:33 42,912 ----a-w C:\WINDOWS\system32\drivers\aswTdi.sys
+ 2008-05-15 23:14:11 42,912 ----a-w C:\WINDOWS\system32\drivers\aswTdi.sys
+ 2007-04-26 08:21:30 302,000 ----a-w C:\WINDOWS\system32\drivers\fwdrv.sys
+ 2007-04-26 08:21:34 72,624 ----a-w C:\WINDOWS\system32\drivers\khips.sys
+ 2003-03-18 19:12:12 1,047,552 ----a-w C:\WINDOWS\system32\mfc71u.dll
- 2004-07-14 22:24:50 155,648 ----a-w C:\WINDOWS\system32\mscoree.dll
+ 2006-12-22 10:28:14 271,360 ----a-w C:\WINDOWS\system32\mscoree.dll
+ 2006-12-22 11:02:36 6,144 ----a-w C:\WINDOWS\system32\mui\[u]0/u409\mscorees.dll
+ 2008-05-18 12:12:34 16,384 ----atw C:\WINDOWS\Temp\Perflib_Perfdata_638.dat
.
-- Snapshot reset to current date --
.
((((((((((((((((((((((((((((((((( Point de chargement Reg )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
REGEDIT4
*Note* les éléments vides & les éléments initiaux légitimes ne sont pas listés

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{C9F11894-EA6C-40B5-8F42-18F285521030}]
C:\WINDOWS\system32\jkkLETJy.dll

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"IDMan"="C:\Program Files\Internet Download Manager\IDMan.exe" [2008-05-17 00:43 2594224]
"Skype"="C:\Program Files\Skype\Phone\Skype.exe" [2008-04-23 17:45 22058792]
"MsnMsgr"="C:\Program Files\Windows Live\Messenger\MsnMsgr.exe" [2007-10-18 12:34 5724184]
"BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}"="C:\Program Files\Fichiers communs\Ahead\Lib\NMBgMonitor.exe" [2006-11-16 20:04 139264]

C:\Documents and Settings\All Users\Menu D‚marrer\Programmes\D‚marrage\
HP Digital Imaging Monitor.lnk - C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe [2006-02-19 05:21:22 288472]
Lancement rapide d'Adobe Reader.lnk - C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe [2005-09-23 23:05:26 29696]

[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\winlogon\notify\yayyYQiG]
yayyYQiG.dll

[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile]
"EnableFirewall"= 0 (0x0)

[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List]
"%windir%\\system32\\sessmgr.exe"=
"C:\\Program Files\\mIRC\\mirc.exe"=
"C:\\Program Files\\Windows Live\\Messenger\\msnmsgr.exe"=
"C:\\Program Files\\Windows Live\\Messenger\\livecall.exe"=
"C:\\Program Files\\Skype\\Phone\\Skype.exe"=

R1 aswSP;avast! Self Protection;C:\WINDOWS\system32\drivers\aswSP.sys [2008-05-16 01:20]
R1 fwdrv;Firewall Driver;C:\WINDOWS\system32\drivers\fwdrv.sys [2007-04-26 10:21]
R1 khips;Kerio HIPS Driver;C:\WINDOWS\system32\drivers\khips.sys [2007-04-26 10:21]
R2 aswFsBlk;aswFsBlk;C:\WINDOWS\system32\DRIVERS\aswFsBlk.sys [2008-05-16 01:16]
R2 SPF4;Sunbelt Personal Firewall 4;"C:\Program Files\Sunbelt Software\Personal Firewall\kpf4ss.exe" [2007-04-26 10:21]
R3 SNP2STD;USB2.0 PC Camera (SNP2STD);C:\WINDOWS\system32\DRIVERS\snp2sxp.sys [2006-06-07 10:34]
R3 usbscan;Pilote de scanneur USB;C:\WINDOWS\system32\DRIVERS\usbscan.sys [2004-08-03 22:58]
R3 USBSTOR;Pilote de stockage de masse USB;C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS [2004-08-03 23:08]
S3 maconfservice;maconfservice;"C:\Program Files\ma-config.com\maconfservice.exe" [2008-05-14 16:40]

*Newly Created Service* - FWDRV
*Newly Created Service* - KHIPS
*Newly Created Service* - SPF4
*Newly Created Service* - USNJSVC
.
Contenu du dossier 'Scheduled Tasks/Tâches planifiées'
"2008-05-14 15:20:10 C:\WINDOWS\Tasks\AppleSoftwareUpdate.job"
- C:\Program Files\Apple Software Update\SoftwareUpdate.exe
"2008-05-16 22:20:18 C:\WINDOWS\Tasks\Connexion facile à Internet.job"
- C:\Program Files\Easy Internet signup\HPSdpApp.exe
"2008-05-18 18:33:00 C:\WINDOWS\Tasks\Vérifier les mises à jour de Windows Live Toolbar.job"
- C:\Program Files\Windows Live Toolbar\MSNTBUP.EXE
.
**************************************************************************

catchme 0.3.1361 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2008-05-18 20:34:43
Windows 5.1.2600 Service Pack 2 NTFS

Balayage processus cachés ...

Balayage caché autostart entries ...

Balayage des fichiers cachés ...

**************************************************************************
.
Temps d'accomplissement: 2008-05-18 20:44:09
ComboFix-quarantined-files.txt 2008-05-18 18:42:56

Pre-Run: 3,966,013,440 octets libres
Post-Run: 3,954,233,344 octets libres

548 --- E O F --- 2008-05-18 11:58:02
0
Réponse 23 / 31
jlpjlp Messages postés 52399 Statut Contributeur sécurité 5 040
 
colle le rapport d'un scan en ligne
avec un des suivants:

bitdefender en ligne :
http://www.bitdefender.fr/scan_fr/scan8/ie.html

Panda en ligne :
http://pandasoftware.fr

Kaspersky en ligne
https://www.kaspersky.fr/?domain=webscanner.kaspersky.fr
0
Réponse 24 / 31
Blackbeard78 Messages postés 19 Statut Membre
 
fichiers infectés (analyse avec bitdefender):
C:\Documents and Settings\Compaq_Propriétaire\Mes documents\Downloads\Programs\ppmate-2.3.1.69%20by%20Myp2p.eu.exe=>(NSIS o)=>lzma_solid_nsis0043

Détecté avec: Adware.Adhelper.CJ

C:\Documents and Settings\Compaq_Propriétaire\Mes documents\Downloads\Programs\ppmate-2.3.1.69%20by%20Myp2p.eu.exe=>(NSIS o)=>lzma_solid_nsis0043

Supprimé

C:\Documents and Settings\Compaq_Propriétaire\Mes documents\Downloads\Programs\ppmate-2.3.1.69%20by%20Myp2p.eu.exe=>(NSIS o)

Echec de la mise à jour

C:\Documents and Settings\Compaq_Propriétaire\Mes documents\Downloads\Programs\ppmate_1.7.3.33.exe

Infecté par: Trojan.Generic.228901

C:\Documents and Settings\Compaq_Propriétaire\Mes documents\Downloads\Programs\ppmate_1.7.3.33.exe

Supprimé

C:\Documents and Settings\Compaq_Propriétaire\Mes documents\Downloads\Programs\setup_2.exe

Infecté par: Trojan.Generic.228901

C:\Documents and Settings\Compaq_Propriétaire\Mes documents\Downloads\Programs\setup_2.exe

Supprimé

C:\Documents and Settings\Compaq_Propriétaire\Mes documents\Downloads\Programs\SystemDoctor2006FreeInstall_fr.exe

Infecté par: Trojan.Downloader.Winfixer.L

C:\Documents and Settings\Compaq_Propriétaire\Mes documents\Downloads\Programs\SystemDoctor2006FreeInstall_fr.exe

Supprimé

C:\Program Files\mIRC\Wbs-Script [1.28c]\Wbs-Script\dlls\nHTMLn.dll

Détecté avec: Application.Irc.Flood.Tool.E

C:\Program Files\mIRC\Wbs-Script [1.28c]\Wbs-Script\dlls\nHTMLn.dll

Echec de la désinfection

C:\Program Files\mIRC\Wbs-Script [1.28c]\Wbs-Script\dlls\nHTMLn.dll

Supprimé

C:\Program Files\mIRC\Wbs-Script [1.28c]\Wbs-Script\dlls\Zprocess.dll

Détecté avec: Application.Wndmanage.B

C:\Program Files\mIRC\Wbs-Script [1.28c]\Wbs-Script\dlls\Zprocess.dll

Echec de la désinfection

C:\Program Files\mIRC\Wbs-Script [1.28c]\Wbs-Script\dlls\Zprocess.dll

Supprimé

C:\Program Files\mIRC\Wbs-Script [1.28c]\Wbs-Script\dlls\Zwnd.dll

Infecté par: VirTool.Mirc.Hider

C:\Program Files\mIRC\Wbs-Script [1.28c]\Wbs-Script\dlls\Zwnd.dll

Supprimé

C:\System Volume Information\_restore{88F0EC16-5093-454D-BD2D-4DD02919E000}\RP10\A0001159.ini

Infecté par: Trojan.Vundo.DVS

C:\System Volume Information\_restore{88F0EC16-5093-454D-BD2D-4DD02919E000}\RP10\A0001159.ini

Echec de la désinfection

C:\System Volume Information\_restore{88F0EC16-5093-454D-BD2D-4DD02919E000}\RP10\A0001159.ini

Supprimé

C:\System Volume Information\_restore{88F0EC16-5093-454D-BD2D-4DD02919E000}\RP10\A0001212.dll

Infecté par: Trojan.Vundo.EMM

C:\System Volume Information\_restore{88F0EC16-5093-454D-BD2D-4DD02919E000}\RP10\A0001212.dll

Supprimé

C:\System Volume Information\_restore{88F0EC16-5093-454D-BD2D-4DD02919E000}\RP22\A0006050.dll

Infecté par: Trojan.Vundo.EML

C:\System Volume Information\_restore{88F0EC16-5093-454D-BD2D-4DD02919E000}\RP22\A0006050.dll

Supprimé

C:\System Volume Information\_restore{88F0EC16-5093-454D-BD2D-4DD02919E000}\RP22\A0006051.ini

Infecté par: Trojan.Vundo.DVS

C:\System Volume Information\_restore{88F0EC16-5093-454D-BD2D-4DD02919E000}\RP22\A0006051.ini

Echec de la désinfection

C:\System Volume Information\_restore{88F0EC16-5093-454D-BD2D-4DD02919E000}\RP22\A0006051.ini

Supprimé

C:\System Volume Information\_restore{88F0EC16-5093-454D-BD2D-4DD02919E000}\RP24\A0006630.exe

Infecté par: Trojan.Generic.228901

C:\System Volume Information\_restore{88F0EC16-5093-454D-BD2D-4DD02919E000}\RP24\A0006630.exe

Supprimé

C:\System Volume Information\_restore{88F0EC16-5093-454D-BD2D-4DD02919E000}\RP24\A0006631.exe

Infecté par: Trojan.Generic.228901

C:\System Volume Information\_restore{88F0EC16-5093-454D-BD2D-4DD02919E000}\RP24\A0006631.exe

Supprimé

C:\System Volume Information\_restore{88F0EC16-5093-454D-BD2D-4DD02919E000}\RP24\A0006632.exe

Infecté par: Trojan.Downloader.Winfixer.L

C:\System Volume Information\_restore{88F0EC16-5093-454D-BD2D-4DD02919E000}\RP24\A0006632.exe

Supprimé

C:\System Volume Information\_restore{88F0EC16-5093-454D-BD2D-4DD02919E000}\RP24\A0006635.dll

Détecté avec: Application.Irc.Flood.Tool.E

C:\System Volume Information\_restore{88F0EC16-5093-454D-BD2D-4DD02919E000}\RP24\A0006635.dll

Echec de la désinfection

C:\System Volume Information\_restore{88F0EC16-5093-454D-BD2D-4DD02919E000}\RP24\A0006635.dll

Supprimé

C:\System Volume Information\_restore{88F0EC16-5093-454D-BD2D-4DD02919E000}\RP24\A0006636.dll

Détecté avec: Application.Wndmanage.B

C:\System Volume Information\_restore{88F0EC16-5093-454D-BD2D-4DD02919E000}\RP24\A0006636.dll

Echec de la désinfection

C:\System Volume Information\_restore{88F0EC16-5093-454D-BD2D-4DD02919E000}\RP24\A0006636.dll

Supprimé

C:\System Volume Information\_restore{88F0EC16-5093-454D-BD2D-4DD02919E000}\RP24\A0006637.dll

Infecté par: VirTool.Mirc.Hider

C:\System Volume Information\_restore{88F0EC16-5093-454D-BD2D-4DD02919E000}\RP24\A0006637.dll

Supprimé

C:\System Volume Information\_restore{88F0EC16-5093-454D-BD2D-4DD02919E000}\RP4\A0000561.ini

Infecté par: Trojan.Vundo.DVS

C:\System Volume Information\_restore{88F0EC16-5093-454D-BD2D-4DD02919E000}\RP4\A0000561.ini

Echec de la désinfection

C:\System Volume Information\_restore{88F0EC16-5093-454D-BD2D-4DD02919E000}\RP4\A0000561.ini

Supprimé

C:\System Volume Information\_restore{88F0EC16-5093-454D-BD2D-4DD02919E000}\RP5\A0000562.ini

Infecté par: Trojan.Vundo.DVS

C:\System Volume Information\_restore{88F0EC16-5093-454D-BD2D-4DD02919E000}\RP5\A0000562.ini

Echec de la désinfection

C:\System Volume Information\_restore{88F0EC16-5093-454D-BD2D-4DD02919E000}\RP5\A0000562.ini

Supprimé

C:\System Volume Information\_restore{88F0EC16-5093-454D-BD2D-4DD02919E000}\RP6\A0000767.ini

Infecté par: Trojan.Vundo.DVS

C:\System Volume Information\_restore{88F0EC16-5093-454D-BD2D-4DD02919E000}\RP6\A0000767.ini

Echec de la désinfection

C:\System Volume Information\_restore{88F0EC16-5093-454D-BD2D-4DD02919E000}\RP6\A0000767.ini

Supprimé

C:\System Volume Information\_restore{88F0EC16-5093-454D-BD2D-4DD02919E000}\RP7\A0000776.ini

Infecté par: Trojan.Vundo.DVS

C:\System Volume Information\_restore{88F0EC16-5093-454D-BD2D-4DD02919E000}\RP7\A0000776.ini

Echec de la désinfection

C:\System Volume Information\_restore{88F0EC16-5093-454D-BD2D-4DD02919E000}\RP7\A0000776.ini

Supprimé

C:\System Volume Information\_restore{88F0EC16-5093-454D-BD2D-4DD02919E000}\RP8\A0000893.ini

Infecté par: Trojan.Vundo.DVS

C:\System Volume Information\_restore{88F0EC16-5093-454D-BD2D-4DD02919E000}\RP8\A0000893.ini

Echec de la désinfection

C:\System Volume Information\_restore{88F0EC16-5093-454D-BD2D-4DD02919E000}\RP8\A0000893.ini

Supprimé

C:\System Volume Information\_restore{88F0EC16-5093-454D-BD2D-4DD02919E000}\RP9\A0000951.ini

Infecté par: Trojan.Vundo.DVS

C:\System Volume Information\_restore{88F0EC16-5093-454D-BD2D-4DD02919E000}\RP9\A0000951.ini

Echec de la désinfection

C:\System Volume Information\_restore{88F0EC16-5093-454D-BD2D-4DD02919E000}\RP9\A0000951.ini

Supprimé

C:\System Volume Information\_restore{88F0EC16-5093-454D-BD2D-4DD02919E000}\RP9\A0000995.ini

Infecté par: Trojan.Vundo.DVS

C:\System Volume Information\_restore{88F0EC16-5093-454D-BD2D-4DD02919E000}\RP9\A0000995.ini

Echec de la désinfection

C:\System Volume Information\_restore{88F0EC16-5093-454D-BD2D-4DD02919E000}\RP9\A0000995.ini

Supprimé

C:\System Volume Information\_restore{88F0EC16-5093-454D-BD2D-4DD02919E000}\RP9\A0000999.ini

Infecté par: Trojan.Vundo.DVS

C:\System Volume Information\_restore{88F0EC16-5093-454D-BD2D-4DD02919E000}\RP9\A0000999.ini

Echec de la désinfection

C:\System Volume Information\_restore{88F0EC16-5093-454D-BD2D-4DD02919E000}\RP9\A0000999.ini

Supprimé

C:\WINDOWS\FixCamera.exe

Détecté avec: Spyware.479

C:\WINDOWS\FixCamera.exe

Echec de la désinfection

C:\WINDOWS\FixCamera.exe

Echec de la suppression

H:\Musique\mp3 music\kazaalite_202_b1\first stage\kazaa_lite_202_english.exe=>(Instyler o)=>(Instyler Module 13)

Détecté avec: Application.Topsearch.B

H:\Musique\mp3 music\kazaalite_202_b1\first stage\kazaa_lite_202_english.exe=>(Instyler o)=>(Instyler Module 13)

Echec de la désinfection

H:\Musique\mp3 music\kazaalite_202_b1\first stage\kazaa_lite_202_english.exe=>(Instyler o)=>(Instyler Module 13)

Supprimé

H:\Musique\mp3 music\kazaalite_202_b1\first stage\kazaa_lite_202_english.exe=>(Instyler o)

Echec de la mise à jour
0

Vous n’avez pas trouvé la réponse que vous recherchez ?

Posez votre question
Réponse 25 / 31
jlpjlp Messages postés 52399 Statut Contributeur sécurité 5 040
 
vire le ficheirs system doctor si present (c'est un espion)

C:\Documents and Settings\Compaq_Propriétaire\Mes documents\Downloads\Programs\SystemDoctor2006FreeInstall_fr.exe

_________________

télécharge OTMoveIt
http://download.bleepingcomputer.com/oldtimer/OTMoveIt2.exe (de Old_Timer) sur ton Bureau. Ou sur https://www.luanagames.com/index.fr.html
double-clique sur OTMoveIt.exe pour le lancer.
copie la liste qui se trouve en citation ci-dessous,
et colle-la dans le cadre de gauche de OTMoveIt :Paste List of Files/Folders to be moved.

Citation :

C:\Documents and Settings\Compaq_Propriétaire\Local Settings\Application Data\baidu
C:\Documents and Settings\Compaq_Propriétaire\new.txt
C:\Program Files\baidu
C:\Program Files\cnnic
C:\Program Files\cnnic\Cdn\cdnacs.dat
C:\Program Files\cnnic\Cdn\cdnbl.dat
C:\Program Files\cnnic\Cdn\cdncol.dll
C:\Program Files\cnnic\Cdn\cdndet.dat
C:\Program Files\cnnic\Cdn\cdndisp.dat
C:\Program Files\cnnic\Cdn\cdnforie.dll
C:\Program Files\cnnic\Cdn\cdnhint.dat
C:\Program Files\cnnic\Cdn\cdnprev.dat
C:\Program Files\cnnic\Cdn\cdnprh.dll
C:\Program Files\cnnic\Cdn\cdnrepl.dat
C:\Program Files\cnnic\Cdn\cdnrereg.dat
C:\Program Files\cnnic\Cdn\cdnswp.exe
C:\Program Files\cnnic\Cdn\cdntran.dat
C:\Program Files\cnnic\Cdn\cdnuc.exe
C:\Program Files\cnnic\Cdn\cdnunins.exe
C:\Program Files\cnnic\Cdn\cdnvers.dat
C:\Program Files\cnnic\Cdn\imadom.dat
C:\Program Files\cnnic\Cdn\Images\enter.ico
C:\Program Files\cnnic\Cdn\Images\news.ico
C:\Program Files\cnnic\Cdn\Images\popup.bmp
C:\Program Files\cnnic\Cdn\Images\soft.ico
C:\Program Files\cnnic\Cdn\rbtnhtm.cab
C:\Program Files\cnnic\Cdn\spkw.dat
C:\Program Files\cnnic\Cdn\src.dat
C:\Program Files\cnnic\Cdn\Update\cdnacs.dat
C:\Program Files\cnnic\Cdn\Update\cdnbl.dat
C:\Program Files\cnnic\Cdn\Update\cdncol.dll
C:\Program Files\cnnic\Cdn\Update\cdncrc.dat
C:\Program Files\cnnic\Cdn\Update\cdndet.dat
C:\Program Files\cnnic\Cdn\Update\cdndisp.dat
C:\Program Files\cnnic\Cdn\Update\cdnforie.dll
C:\Program Files\cnnic\Cdn\Update\cdnhint.dat
C:\Program Files\cnnic\Cdn\Update\cdnprev.dat
C:\Program Files\cnnic\Cdn\Update\cdnprh.dll
C:\Program Files\cnnic\Cdn\Update\cdnprot.dat
C:\Program Files\cnnic\Cdn\Update\cdnswp.exe
C:\Program Files\cnnic\Cdn\Update\cdntran.dat
C:\Program Files\cnnic\Cdn\Update\cdnuc.exe
C:\Program Files\cnnic\Cdn\Update\cdnunins.exe
C:\Program Files\cnnic\Cdn\Update\cdnvers.dat
C:\Program Files\cnnic\Cdn\Update\enter.ico
C:\Program Files\cnnic\Cdn\Update\imadom.dat
C:\Program Files\cnnic\Cdn\Update\news.ico
C:\Program Files\cnnic\Cdn\Update\popup.bmp
C:\Program Files\cnnic\Cdn\Update\rbtnhtm.cab
C:\Program Files\cnnic\Cdn\Update\soft.ico
C:\Program Files\cnnic\Cdn\Update\spkw.dat
C:\Program Files\koowo
C:\Program Files\koowo\Lyric\conf.ini
C:\Program Files\koowo\Lyric\config\gbk-big5.txt
C:\Program Files\koowo\Lyric\config\RealMiniConfig.ini
C:\Program Files\koowo\Lyric\config\SongLrc.txt
C:\Program Files\koowo\Lyric\config\StringConfig.ini
C:\Program Files\koowo\Lyric\config\StringConfigBig5.ini
C:\Program Files\koowo\Lyric\config\tag.dat
C:\Program Files\koowo\Lyric\config\taginfo.dat
C:\Program Files\koowo\Lyric\config\WinampMainConfig.ini
C:\Program Files\koowo\Lyric\config\WinampMainConfigModern.ini
C:\Program Files\koowo\Lyric\config\WinampMiniConfig.ini
C:\Program Files\koowo\Lyric\config\WinampMiniConfigModern.ini
C:\Program Files\koowo\Lyric\config\WMPMiniConfig.ini
C:\Program Files\koowo\Lyric\dotag.exe
C:\Program Files\koowo\Lyric\dump.ax
C:\Program Files\koowo\Lyric\face\hand-close.cur
C:\Program Files\koowo\Lyric\face\hand-open.cur
C:\Program Files\koowo\Lyric\face\kwc.img
C:\Program Files\koowo\Lyric\face\real\bk.bmp
C:\Program Files\koowo\Lyric\face\real\close-hover.bmp
C:\Program Files\koowo\Lyric\face\real\close-normal.bmp
C:\Program Files\koowo\Lyric\face\real\close-pressed.bmp
C:\Program Files\koowo\Lyric\face\real\full-hover.bmp
C:\Program Files\koowo\Lyric\face\real\full-normal.bmp
C:\Program Files\koowo\Lyric\face\real\full-pressed.bmp
C:\Program Files\koowo\Lyric\face\real\mini-hover.bmp
C:\Program Files\koowo\Lyric\face\real\mini-normal.bmp
C:\Program Files\koowo\Lyric\face\real\mini-pressed.bmp
C:\Program Files\koowo\Lyric\face\real\pause-hover.bmp
C:\Program Files\koowo\Lyric\face\real\pause-normal.bmp
C:\Program Files\koowo\Lyric\face\real\pause-pressed.bmp
C:\Program Files\koowo\Lyric\face\real\play-hover-y.bmp
C:\Program Files\koowo\Lyric\face\real\play-hover.bmp
C:\Program Files\koowo\Lyric\face\real\play-normal-y.bmp
C:\Program Files\koowo\Lyric\face\real\play-normal.bmp
C:\Program Files\koowo\Lyric\face\real\play-pressed.bmp
C:\Program Files\koowo\Lyric\face\real\stop-disable.bmp
C:\Program Files\koowo\Lyric\face\real\stop-hover.bmp
C:\Program Files\koowo\Lyric\face\real\stop-normal.bmp
C:\Program Files\koowo\Lyric\face\real\stop-pressed.bmp
C:\Program Files\koowo\Lyric\face\real\Thumbs.db
C:\Program Files\koowo\Lyric\face\svr.img
C:\Program Files\koowo\Lyric\face\winamp\classic\bk.bmp
C:\Program Files\koowo\Lyric\face\winamp\classic\bk_color.bmp
C:\Program Files\koowo\Lyric\face\winamp\classic\close-pressed.bmp
C:\Program Files\koowo\Lyric\face\winamp\classic\close.bmp
C:\Program Files\koowo\Lyric\face\winamp\classic\ctrlscreen-normal.bmp
C:\Program Files\koowo\Lyric\face\winamp\classic\ctrlscreen-pressed.bmp
C:\Program Files\koowo\Lyric\face\winamp\classic\down-middle.bmp
C:\Program Files\koowo\Lyric\face\winamp\classic\hand-close.ico
C:\Program Files\koowo\Lyric\face\winamp\classic\hand-open.ico
C:\Program Files\koowo\Lyric\face\winamp\classic\last-normal.bmp
C:\Program Files\koowo\Lyric\face\winamp\classic\last-pressed.bmp
C:\Program Files\koowo\Lyric\face\winamp\classic\left-down.bmp
C:\Program Files\koowo\Lyric\face\winamp\classic\left-middle.bmp
C:\Program Files\koowo\Lyric\face\winamp\classic\left-top.bmp
C:\Program Files\koowo\Lyric\face\winamp\classic\logo-lyrics.bmp
C:\Program Files\koowo\Lyric\face\winamp\classic\mini-normal.bmp
C:\Program Files\koowo\Lyric\face\winamp\classic\mini-pressed.bmp
C:\Program Files\koowo\Lyric\face\winamp\classic\next-normal.bmp
C:\Program Files\koowo\Lyric\face\winamp\classic\next-pressed.bmp
C:\Program Files\koowo\Lyric\face\winamp\classic\pause-normal.bmp
C:\Program Files\koowo\Lyric\face\winamp\classic\pause-pressed.bmp
C:\Program Files\koowo\Lyric\face\winamp\classic\play-normal.bmp
C:\Program Files\koowo\Lyric\face\winamp\classic\play-pressed.bmp
C:\Program Files\koowo\Lyric\face\winamp\classic\resize.bmp
C:\Program Files\koowo\Lyric\face\winamp\classic\right-down.bmp
C:\Program Files\koowo\Lyric\face\winamp\classic\right-middle.bmp
C:\Program Files\koowo\Lyric\face\winamp\classic\right-top.bmp
C:\Program Files\koowo\Lyric\face\winamp\classic\stop-normal.bmp
C:\Program Files\koowo\Lyric\face\winamp\classic\stop-pressed.bmp
C:\Program Files\koowo\Lyric\face\winamp\classic\Thumbs.db
C:\Program Files\koowo\Lyric\face\winamp\classic\top-middle.bmp
C:\Program Files\koowo\Lyric\face\winamp\modern\bk.bmp
C:\Program Files\koowo\Lyric\face\winamp\modern\bk_color.bmp
C:\Program Files\koowo\Lyric\face\winamp\modern\close-pressed.bmp
C:\Program Files\koowo\Lyric\face\winamp\modern\close.bmp
C:\Program Files\koowo\Lyric\face\winamp\modern\ctrlscreen-normal.bmp
C:\Program Files\koowo\Lyric\face\winamp\modern\ctrlscreen-pressed.bmp
C:\Program Files\koowo\Lyric\face\winamp\modern\down-middle.bmp
C:\Program Files\koowo\Lyric\face\winamp\modern\hand-close.ico
C:\Program Files\koowo\Lyric\face\winamp\modern\hand-open.ico
C:\Program Files\koowo\Lyric\face\winamp\modern\last-hover.bmp
C:\Program Files\koowo\Lyric\face\winamp\modern\last-normal.bmp
C:\Program Files\koowo\Lyric\face\winamp\modern\last-pressed.bmp
C:\Program Files\koowo\Lyric\face\winamp\modern\left-down.bmp
C:\Program Files\koowo\Lyric\face\winamp\modern\left-middle.bmp
C:\Program Files\koowo\Lyric\face\winamp\modern\left-top.bmp
C:\Program Files\koowo\Lyric\face\winamp\modern\logo-lyrics.bmp
C:\Program Files\koowo\Lyric\face\winamp\modern\mini-normal.bmp
C:\Program Files\koowo\Lyric\face\winamp\modern\mini-pressed.bmp
C:\Program Files\koowo\Lyric\face\winamp\modern\mini.bmp
C:\Program Files\koowo\Lyric\face\winamp\modern\next-hover.bmp
C:\Program Files\koowo\Lyric\face\winamp\modern\next-normal.bmp
C:\Program Files\koowo\Lyric\face\winamp\modern\next-pressed.bmp
C:\Program Files\koowo\Lyric\face\winamp\modern\pause-hover.bmp
C:\Program Files\koowo\Lyric\face\winamp\modern\pause-normal.bmp
C:\Program Files\koowo\Lyric\face\winamp\modern\pause-pressed.bmp
C:\Program Files\koowo\Lyric\face\winamp\modern\play-hover.bmp
C:\Program Files\koowo\Lyric\face\winamp\modern\play-normal.bmp
C:\Program Files\koowo\Lyric\face\winamp\modern\play-pressed.bmp
C:\Program Files\koowo\Lyric\face\winamp\modern\resize.bmp
C:\Program Files\koowo\Lyric\face\winamp\modern\right-down.bmp
C:\Program Files\koowo\Lyric\face\winamp\modern\right-middle.bmp
C:\Program Files\koowo\Lyric\face\winamp\modern\right-top.bmp
C:\Program Files\koowo\Lyric\face\winamp\modern\stop-hover.bmp
C:\Program Files\koowo\Lyric\face\winamp\modern\stop-normal.bmp
C:\Program Files\koowo\Lyric\face\winamp\modern\stop-pressed.bmp
C:\Program Files\koowo\Lyric\face\winamp\modern\switch.bmp
C:\Program Files\koowo\Lyric\face\winamp\modern\Thumbs.db
C:\Program Files\koowo\Lyric\face\winamp\modern\top-middle.bmp
C:\Program Files\koowo\Lyric\face\wmp\bk.bmp
C:\Program Files\koowo\Lyric\face\wmp\bk2.bmp
C:\Program Files\koowo\Lyric\face\wmp\close.bmp
C:\Program Files\koowo\Lyric\face\wmp\full-screen.bmp
C:\Program Files\koowo\Lyric\face\wmp\last-disable.bmp
C:\Program Files\koowo\Lyric\face\wmp\last-hover.bmp
C:\Program Files\koowo\Lyric\face\wmp\last-normal.bmp
C:\Program Files\koowo\Lyric\face\wmp\last-pressed.bmp
C:\Program Files\koowo\Lyric\face\wmp\mini.bmp
C:\Program Files\koowo\Lyric\face\wmp\next-disable.bmp
C:\Program Files\koowo\Lyric\face\wmp\next-hover.bmp
C:\Program Files\koowo\Lyric\face\wmp\next-normal.bmp
C:\Program Files\koowo\Lyric\face\wmp\next-pressed.bmp
C:\Program Files\koowo\Lyric\face\wmp\pause-hover.bmp
C:\Program Files\koowo\Lyric\face\wmp\pause-normal.bmp
C:\Program Files\koowo\Lyric\face\wmp\pause-pressed.bmp
C:\Program Files\koowo\Lyric\face\wmp\play-hover.bmp
C:\Program Files\koowo\Lyric\face\wmp\play-normal.bmp
C:\Program Files\koowo\Lyric\face\wmp\play-pressed.bmp
C:\Program Files\koowo\Lyric\face\wmp\stop-disable.bmp
C:\Program Files\koowo\Lyric\face\wmp\stop-normal.bmp
C:\Program Files\koowo\Lyric\face\wmp\stop-pressed.bmp
C:\Program Files\koowo\Lyric\face\wmp\switch.bmp
C:\Program Files\koowo\Lyric\fp.tmp
C:\Program Files\koowo\Lyric\gen_WMP.dll
C:\Program Files\koowo\Lyric\KWLyric_wmp.dll
C:\Program Files\koowo\Lyric\log\act.log
C:\Program Files\koowo\Lyric\lyric\Justin Timberlake - SexyBack.lrc
C:\Program Files\koowo\Lyric\lyric\readme.txt
C:\Program Files\koowo\Lyric\recoEngine.exe
C:\Program Files\koowo\Lyric\RMSplt.ax
C:\Program Files\koowo\Lyric\update\KUpdate.exe
C:\Program Files\koowo\Lyric\update\newup_silent.zip
C:\Program Files\koowo\Lyric\update\Update.dll
C:\WINDOWS\photos.zip
C:\WINDOWS\system32\cdnprot.dat
C:\WINDOWS\system32\ihxdqtgx.dll
C:\WINDOWS\system32\lylk.dat
C:\WINDOWS\system32\plugin.ini
C:\WINDOWS\system32\webflag.ocx
C:\WINDOWS\system32\winmmt32.dll
C:\WINDOWS\system32\yJTELkkj.ini
C:\WINDOWS\system32\yJTELkkj.ini2
C:\Documents and Settings\Compaq_Propriétaire\Mes documents\Downloads\Programs\ppmate-2.3.1.69%20by%20Myp2p.eu.exe
C:\Documents and Settings\Compaq_Propriétaire\Mes documents\Downloads\Programs\ppmate_1.7.3.33.exe
C:\Documents and Settings\Compaq_Propriétaire\Mes documents\Downloads\Programs\setup_2.exe
C:\Documents and Settings\Compaq_Propriétaire\Mes documents\Downloads\Programs\setup_2.exe
C:\Documents and Settings\Compaq_Propriétaire\Mes documents\Downloads\Programs\SystemDoctor2006FreeInstall_fr.exe
C:\Program Files\mIRC\Wbs-Script [1.28c]\Wbs-Script\dlls\nHTMLn.dll
C:\Program Files\mIRC\Wbs-Script [1.28c]\Wbs-Script\dlls\Zprocess.dll
C:\Program Files\mIRC\Wbs-Script [1.28c]\Wbs-Script\dlls\Zwnd.dll
C:\WINDOWS\FixCamera.exe
H:\Musique\mp3 music\kazaalite_202_b1\first stage\kazaa_lite_202_english.exe

clique sur MoveIt! pour lancer la suppression.
le résultat apparaitra dans le cadre "Results".
clique sur Exit pour fermer.
poste le rapport situé dans C:\_OTMoveIt\MovedFiles.

il te sera peut-être demander de redémarrer le pc pour achever la suppression.si c'est le cas accepte par Yes.

__________________
vire ce qui est dans MOVED FILES en allant dans POSTE DE TRAVAIl puis C puis OTMOVIT
___________________

Télécharge MSNFix de Laurent
http://sosvirus.changelog.fr/MSNFix.zip

Décompresse-le et double clic sur le fichier MSNFix.bat.
- Exécute l'option R.
--Si l'infection est détectée, exécute l'option N
- Sauvegarde ce rapport puis fais un copier/coller de ce rapport sur le forum.

Note :
Si une erreur de suppression est détectée un message s'affichera demandant de redémarrer l'ordinateur afin de terminer les opérations. Dans ce cas il suffit de redémarrer l'ordinateur en mode normal
Sauvegarder et fermer le rapport pour que Windows termine de se lancer normalement.

envoyer le fichier [b] C:\DOCUME~1\florian\Bureau\Upload_Me.zip /b sur http://upload.changelog.fr pour faire evoluer msnfix

_______________________
0
Réponse 26 / 31
Blackbeard78 Messages postés 19 Statut Membre
 
Le fichier system doctor n'était pas présent.Voilà le rapport MoveIt:
File/Folder C:\Documents and Settings\Compaq_Propriétaire\Local Settings\Application Data\baidu not found.
File/Folder C:\Documents and Settings\Compaq_Propriétaire\new.txt not found.
File/Folder C:\Program Files\baidu not found.
File/Folder C:\Program Files\cnnic not found.
File/Folder C:\Program Files\cnnic\Cdn\cdnacs.dat not found.
File/Folder C:\Program Files\cnnic\Cdn\cdnbl.dat not found.
File/Folder C:\Program Files\cnnic\Cdn\cdncol.dll not found.
File/Folder C:\Program Files\cnnic\Cdn\cdndet.dat not found.
File/Folder C:\Program Files\cnnic\Cdn\cdndisp.dat not found.
File/Folder C:\Program Files\cnnic\Cdn\cdnforie.dll not found.
File/Folder C:\Program Files\cnnic\Cdn\cdnhint.dat not found.
File/Folder C:\Program Files\cnnic\Cdn\cdnprev.dat not found.
File/Folder C:\Program Files\cnnic\Cdn\cdnprh.dll not found.
File/Folder C:\Program Files\cnnic\Cdn\cdnrepl.dat not found.
File/Folder C:\Program Files\cnnic\Cdn\cdnrereg.dat not found.
File/Folder C:\Program Files\cnnic\Cdn\cdnswp.exe not found.
File/Folder C:\Program Files\cnnic\Cdn\cdntran.dat not found.
File/Folder C:\Program Files\cnnic\Cdn\cdnuc.exe not found.
File/Folder C:\Program Files\cnnic\Cdn\cdnunins.exe not found.
File/Folder C:\Program Files\cnnic\Cdn\cdnvers.dat not found.
File/Folder C:\Program Files\cnnic\Cdn\imadom.dat not found.
File/Folder C:\Program Files\cnnic\Cdn\Images\enter.ico not found.
File/Folder C:\Program Files\cnnic\Cdn\Images\news.ico not found.
File/Folder C:\Program Files\cnnic\Cdn\Images\popup.bmp not found.
File/Folder C:\Program Files\cnnic\Cdn\Images\soft.ico not found.
File/Folder C:\Program Files\cnnic\Cdn\rbtnhtm.cab not found.
File/Folder C:\Program Files\cnnic\Cdn\spkw.dat not found.
File/Folder C:\Program Files\cnnic\Cdn\src.dat not found.
File/Folder C:\Program Files\cnnic\Cdn\Update\cdnacs.dat not found.
File/Folder C:\Program Files\cnnic\Cdn\Update\cdnbl.dat not found.
File/Folder C:\Program Files\cnnic\Cdn\Update\cdncol.dll not found.
File/Folder C:\Program Files\cnnic\Cdn\Update\cdncrc.dat not found.
File/Folder C:\Program Files\cnnic\Cdn\Update\cdndet.dat not found.
File/Folder C:\Program Files\cnnic\Cdn\Update\cdndisp.dat not found.
File/Folder C:\Program Files\cnnic\Cdn\Update\cdnforie.dll not found.
File/Folder C:\Program Files\cnnic\Cdn\Update\cdnhint.dat not found.
File/Folder C:\Program Files\cnnic\Cdn\Update\cdnprev.dat not found.
File/Folder C:\Program Files\cnnic\Cdn\Update\cdnprh.dll not found.
File/Folder C:\Program Files\cnnic\Cdn\Update\cdnprot.dat not found.
File/Folder C:\Program Files\cnnic\Cdn\Update\cdnswp.exe not found.
File/Folder C:\Program Files\cnnic\Cdn\Update\cdntran.dat not found.
File/Folder C:\Program Files\cnnic\Cdn\Update\cdnuc.exe not found.
File/Folder C:\Program Files\cnnic\Cdn\Update\cdnunins.exe not found.
File/Folder C:\Program Files\cnnic\Cdn\Update\cdnvers.dat not found.
File/Folder C:\Program Files\cnnic\Cdn\Update\enter.ico not found.
File/Folder C:\Program Files\cnnic\Cdn\Update\imadom.dat not found.
File/Folder C:\Program Files\cnnic\Cdn\Update\news.ico not found.
File/Folder C:\Program Files\cnnic\Cdn\Update\popup.bmp not found.
File/Folder C:\Program Files\cnnic\Cdn\Update\rbtnhtm.cab not found.
File/Folder C:\Program Files\cnnic\Cdn\Update\soft.ico not found.
File/Folder C:\Program Files\cnnic\Cdn\Update\spkw.dat not found.
File/Folder C:\Program Files\koowo not found.
File/Folder C:\Program Files\koowo\Lyric\conf.ini not found.
File/Folder C:\Program Files\koowo\Lyric\config\gbk-big5.txt not found.
File/Folder C:\Program Files\koowo\Lyric\config\RealMiniConfig.ini not found.
File/Folder C:\Program Files\koowo\Lyric\config\SongLrc.txt not found.
File/Folder C:\Program Files\koowo\Lyric\config\StringConfig.ini not found.
File/Folder C:\Program Files\koowo\Lyric\config\StringConfigBig5.ini not found.
File/Folder C:\Program Files\koowo\Lyric\config\tag.dat not found.
File/Folder C:\Program Files\koowo\Lyric\config\taginfo.dat not found.
File/Folder C:\Program Files\koowo\Lyric\config\WinampMainConfig.ini not found.
File/Folder C:\Program Files\koowo\Lyric\config\WinampMainConfigModern.ini not found.
File/Folder C:\Program Files\koowo\Lyric\config\WinampMiniConfig.ini not found.
File/Folder C:\Program Files\koowo\Lyric\config\WinampMiniConfigModern.ini not found.
File/Folder C:\Program Files\koowo\Lyric\config\WMPMiniConfig.ini not found.
File/Folder C:\Program Files\koowo\Lyric\dotag.exe not found.
File/Folder C:\Program Files\koowo\Lyric\dump.ax not found.
File/Folder C:\Program Files\koowo\Lyric\face\hand-close.cur not found.
File/Folder C:\Program Files\koowo\Lyric\face\hand-open.cur not found.
File/Folder C:\Program Files\koowo\Lyric\face\kwc.img not found.
File/Folder C:\Program Files\koowo\Lyric\face\real\bk.bmp not found.
File/Folder C:\Program Files\koowo\Lyric\face\real\close-hover.bmp not found.
File/Folder C:\Program Files\koowo\Lyric\face\real\close-normal.bmp not found.
File/Folder C:\Program Files\koowo\Lyric\face\real\close-pressed.bmp not found.
File/Folder C:\Program Files\koowo\Lyric\face\real\full-hover.bmp not found.
File/Folder C:\Program Files\koowo\Lyric\face\real\full-normal.bmp not found.
File/Folder C:\Program Files\koowo\Lyric\face\real\full-pressed.bmp not found.
File/Folder C:\Program Files\koowo\Lyric\face\real\mini-hover.bmp not found.
File/Folder C:\Program Files\koowo\Lyric\face\real\mini-normal.bmp not found.
File/Folder C:\Program Files\koowo\Lyric\face\real\mini-pressed.bmp not found.
File/Folder C:\Program Files\koowo\Lyric\face\real\pause-hover.bmp not found.
File/Folder C:\Program Files\koowo\Lyric\face\real\pause-normal.bmp not found.
File/Folder C:\Program Files\koowo\Lyric\face\real\pause-pressed.bmp not found.
File/Folder C:\Program Files\koowo\Lyric\face\real\play-hover-y.bmp not found.
File/Folder C:\Program Files\koowo\Lyric\face\real\play-hover.bmp not found.
File/Folder C:\Program Files\koowo\Lyric\face\real\play-normal-y.bmp not found.
File/Folder C:\Program Files\koowo\Lyric\face\real\play-normal.bmp not found.
File/Folder C:\Program Files\koowo\Lyric\face\real\play-pressed.bmp not found.
File/Folder C:\Program Files\koowo\Lyric\face\real\stop-disable.bmp not found.
File/Folder C:\Program Files\koowo\Lyric\face\real\stop-hover.bmp not found.
File/Folder C:\Program Files\koowo\Lyric\face\real\stop-normal.bmp not found.
File/Folder C:\Program Files\koowo\Lyric\face\real\stop-pressed.bmp not found.
File/Folder C:\Program Files\koowo\Lyric\face\real\Thumbs.db not found.
File/Folder C:\Program Files\koowo\Lyric\face\svr.img not found.
File/Folder C:\Program Files\koowo\Lyric\face\winamp\classic\bk.bmp not found.
File/Folder C:\Program Files\koowo\Lyric\face\winamp\classic\bk_color.bmp not found.
File/Folder C:\Program Files\koowo\Lyric\face\winamp\classic\close-pressed.bmp not found.
File/Folder C:\Program Files\koowo\Lyric\face\winamp\classic\close.bmp not found.
File/Folder C:\Program Files\koowo\Lyric\face\winamp\classic\ctrlscreen-normal.bmp not found.
File/Folder C:\Program Files\koowo\Lyric\face\winamp\classic\ctrlscreen-pressed.bmp not found.
File/Folder C:\Program Files\koowo\Lyric\face\winamp\classic\down-middle.bmp not found.
File/Folder C:\Program Files\koowo\Lyric\face\winamp\classic\hand-close.ico not found.
File/Folder C:\Program Files\koowo\Lyric\face\winamp\classic\hand-open.ico not found.
File/Folder C:\Program Files\koowo\Lyric\face\winamp\classic\last-normal.bmp not found.
File/Folder C:\Program Files\koowo\Lyric\face\winamp\classic\last-pressed.bmp not found.
File/Folder C:\Program Files\koowo\Lyric\face\winamp\classic\left-down.bmp not found.
File/Folder C:\Program Files\koowo\Lyric\face\winamp\classic\left-middle.bmp not found.
File/Folder C:\Program Files\koowo\Lyric\face\winamp\classic\left-top.bmp not found.
File/Folder C:\Program Files\koowo\Lyric\face\winamp\classic\logo-lyrics.bmp not found.
File/Folder C:\Program Files\koowo\Lyric\face\winamp\classic\mini-normal.bmp not found.
File/Folder C:\Program Files\koowo\Lyric\face\winamp\classic\mini-pressed.bmp not found.
File/Folder C:\Program Files\koowo\Lyric\face\winamp\classic\next-normal.bmp not found.
File/Folder C:\Program Files\koowo\Lyric\face\winamp\classic\next-pressed.bmp not found.
File/Folder C:\Program Files\koowo\Lyric\face\winamp\classic\pause-normal.bmp not found.
File/Folder C:\Program Files\koowo\Lyric\face\winamp\classic\pause-pressed.bmp not found.
File/Folder C:\Program Files\koowo\Lyric\face\winamp\classic\play-normal.bmp not found.
File/Folder C:\Program Files\koowo\Lyric\face\winamp\classic\play-pressed.bmp not found.
File/Folder C:\Program Files\koowo\Lyric\face\winamp\classic\resize.bmp not found.
File/Folder C:\Program Files\koowo\Lyric\face\winamp\classic\right-down.bmp not found.
File/Folder C:\Program Files\koowo\Lyric\face\winamp\classic\right-middle.bmp not found.
File/Folder C:\Program Files\koowo\Lyric\face\winamp\classic\right-top.bmp not found.
File/Folder C:\Program Files\koowo\Lyric\face\winamp\classic\stop-normal.bmp not found.
File/Folder C:\Program Files\koowo\Lyric\face\winamp\classic\stop-pressed.bmp not found.
File/Folder C:\Program Files\koowo\Lyric\face\winamp\classic\Thumbs.db not found.
File/Folder C:\Program Files\koowo\Lyric\face\winamp\classic\top-middle.bmp not found.
File/Folder C:\Program Files\koowo\Lyric\face\winamp\modern\bk.bmp not found.
File/Folder C:\Program Files\koowo\Lyric\face\winamp\modern\bk_color.bmp not found.
File/Folder C:\Program Files\koowo\Lyric\face\winamp\modern\close-pressed.bmp not found.
File/Folder C:\Program Files\koowo\Lyric\face\winamp\modern\close.bmp not found.
File/Folder C:\Program Files\koowo\Lyric\face\winamp\modern\ctrlscreen-normal.bmp not found.
File/Folder C:\Program Files\koowo\Lyric\face\winamp\modern\ctrlscreen-pressed.bmp not found.
File/Folder C:\Program Files\koowo\Lyric\face\winamp\modern\down-middle.bmp not found.
File/Folder C:\Program Files\koowo\Lyric\face\winamp\modern\hand-close.ico not found.
File/Folder C:\Program Files\koowo\Lyric\face\winamp\modern\hand-open.ico not found.
File/Folder C:\Program Files\koowo\Lyric\face\winamp\modern\last-hover.bmp not found.
File/Folder C:\Program Files\koowo\Lyric\face\winamp\modern\last-normal.bmp not found.
File/Folder C:\Program Files\koowo\Lyric\face\winamp\modern\last-pressed.bmp not found.
File/Folder C:\Program Files\koowo\Lyric\face\winamp\modern\left-down.bmp not found.
File/Folder C:\Program Files\koowo\Lyric\face\winamp\modern\left-middle.bmp not found.
File/Folder C:\Program Files\koowo\Lyric\face\winamp\modern\left-top.bmp not found.
File/Folder C:\Program Files\koowo\Lyric\face\winamp\modern\logo-lyrics.bmp not found.
File/Folder C:\Program Files\koowo\Lyric\face\winamp\modern\mini-normal.bmp not found.
File/Folder C:\Program Files\koowo\Lyric\face\winamp\modern\mini-pressed.bmp not found.
File/Folder C:\Program Files\koowo\Lyric\face\winamp\modern\mini.bmp not found.
File/Folder C:\Program Files\koowo\Lyric\face\winamp\modern\next-hover.bmp not found.
File/Folder C:\Program Files\koowo\Lyric\face\winamp\modern\next-normal.bmp not found.
File/Folder C:\Program Files\koowo\Lyric\face\winamp\modern\next-pressed.bmp not found.
File/Folder C:\Program Files\koowo\Lyric\face\winamp\modern\pause-hover.bmp not found.
File/Folder C:\Program Files\koowo\Lyric\face\winamp\modern\pause-normal.bmp not found.
File/Folder C:\Program Files\koowo\Lyric\face\winamp\modern\pause-pressed.bmp not found.
File/Folder C:\Program Files\koowo\Lyric\face\winamp\modern\play-hover.bmp not found.
File/Folder C:\Program Files\koowo\Lyric\face\winamp\modern\play-normal.bmp not found.
File/Folder C:\Program Files\koowo\Lyric\face\winamp\modern\play-pressed.bmp not found.
File/Folder C:\Program Files\koowo\Lyric\face\winamp\modern\resize.bmp not found.
File/Folder C:\Program Files\koowo\Lyric\face\winamp\modern\right-down.bmp not found.
File/Folder C:\Program Files\koowo\Lyric\face\winamp\modern\right-middle.bmp not found.
File/Folder C:\Program Files\koowo\Lyric\face\winamp\modern\right-top.bmp not found.
File/Folder C:\Program Files\koowo\Lyric\face\winamp\modern\stop-hover.bmp not found.
File/Folder C:\Program Files\koowo\Lyric\face\winamp\modern\stop-normal.bmp not found.
File/Folder C:\Program Files\koowo\Lyric\face\winamp\modern\stop-pressed.bmp not found.
File/Folder C:\Program Files\koowo\Lyric\face\winamp\modern\switch.bmp not found.
File/Folder C:\Program Files\koowo\Lyric\face\winamp\modern\Thumbs.db not found.
File/Folder C:\Program Files\koowo\Lyric\face\winamp\modern\top-middle.bmp not found.
File/Folder C:\Program Files\koowo\Lyric\face\wmp\bk.bmp not found.
File/Folder C:\Program Files\koowo\Lyric\face\wmp\bk2.bmp not found.
File/Folder C:\Program Files\koowo\Lyric\face\wmp\close.bmp not found.
File/Folder C:\Program Files\koowo\Lyric\face\wmp\full-screen.bmp not found.
File/Folder C:\Program Files\koowo\Lyric\face\wmp\last-disable.bmp not found.
File/Folder C:\Program Files\koowo\Lyric\face\wmp\last-hover.bmp not found.
File/Folder C:\Program Files\koowo\Lyric\face\wmp\last-normal.bmp not found.
File/Folder C:\Program Files\koowo\Lyric\face\wmp\last-pressed.bmp not found.
File/Folder C:\Program Files\koowo\Lyric\face\wmp\mini.bmp not found.
File/Folder C:\Program Files\koowo\Lyric\face\wmp\next-disable.bmp not found.
File/Folder C:\Program Files\koowo\Lyric\face\wmp\next-hover.bmp not found.
File/Folder C:\Program Files\koowo\Lyric\face\wmp\next-normal.bmp not found.
File/Folder C:\Program Files\koowo\Lyric\face\wmp\next-pressed.bmp not found.
File/Folder C:\Program Files\koowo\Lyric\face\wmp\pause-hover.bmp not found.
File/Folder C:\Program Files\koowo\Lyric\face\wmp\pause-normal.bmp not found.
File/Folder C:\Program Files\koowo\Lyric\face\wmp\pause-pressed.bmp not found.
File/Folder C:\Program Files\koowo\Lyric\face\wmp\play-hover.bmp not found.
File/Folder C:\Program Files\koowo\Lyric\face\wmp\play-normal.bmp not found.
File/Folder C:\Program Files\koowo\Lyric\face\wmp\play-pressed.bmp not found.
File/Folder C:\Program Files\koowo\Lyric\face\wmp\stop-disable.bmp not found.
File/Folder C:\Program Files\koowo\Lyric\face\wmp\stop-normal.bmp not found.
File/Folder C:\Program Files\koowo\Lyric\face\wmp\stop-pressed.bmp not found.
File/Folder C:\Program Files\koowo\Lyric\face\wmp\switch.bmp not found.
File/Folder C:\Program Files\koowo\Lyric\fp.tmp not found.
File/Folder C:\Program Files\koowo\Lyric\gen_WMP.dll not found.
File/Folder C:\Program Files\koowo\Lyric\KWLyric_wmp.dll not found.
File/Folder C:\Program Files\koowo\Lyric\log\act.log not found.
File/Folder C:\Program Files\koowo\Lyric\lyric\Justin Timberlake - SexyBack.lrc not found.
File/Folder C:\Program Files\koowo\Lyric\lyric\readme.txt not found.
File/Folder C:\Program Files\koowo\Lyric\recoEngine.exe not found.
File/Folder C:\Program Files\koowo\Lyric\RMSplt.ax not found.
File/Folder C:\Program Files\koowo\Lyric\update\KUpdate.exe not found.
File/Folder C:\Program Files\koowo\Lyric\update\newup_silent.zip not found.
File/Folder C:\Program Files\koowo\Lyric\update\Update.dll not found.
File/Folder C:\WINDOWS\photos.zip not found.
File/Folder C:\WINDOWS\system32\cdnprot.dat not found.
File/Folder C:\WINDOWS\system32\ihxdqtgx.dll not found.
File/Folder C:\WINDOWS\system32\lylk.dat not found.
File/Folder C:\WINDOWS\system32\plugin.ini not found.
File/Folder C:\WINDOWS\system32\webflag.ocx not found.
File/Folder C:\WINDOWS\system32\winmmt32.dll not found.
File/Folder C:\WINDOWS\system32\yJTELkkj.ini not found.
File/Folder C:\WINDOWS\system32\yJTELkkj.ini2 not found.
< C:\Documents and Settings\Compaq_Propriétaire\Mes documents\Downloads\Programs\ppmate-2.3.1.69%20by%20Myp2p.eu.exe >
C:\Documents and Settings\Compaq_Propriétaire\Mes documents\Downloads\Programs\ppmate-2.3.1.69%20by%20Myp2p.eu.exe moved successfully.
File/Folder C:\Documents and Settings\Compaq_Propriétaire\Mes documents\Downloads\Programs\ppmate_1.7.3.33.exe not found.
File/Folder C:\Documents and Settings\Compaq_Propriétaire\Mes documents\Downloads\Programs\setup_2.exe not found.
File/Folder C:\Documents and Settings\Compaq_Propriétaire\Mes documents\Downloads\Programs\setup_2.exe not found.
File/Folder C:\Documents and Settings\Compaq_Propriétaire\Mes documents\Downloads\Programs\SystemDoctor2006FreeInstall_fr.exe not found.
< C:\Program Files\mIRC\Wbs-Script [1.28c]\Wbs-Script\dlls\nHTMLn.dll >
File/Folder C:\Program Files\mIRC\Wbs-Script [1.28c]\Wbs-Script\dlls\nHTMLn.dll not found.
< C:\Program Files\mIRC\Wbs-Script [1.28c]\Wbs-Script\dlls\Zprocess.dll >
File/Folder C:\Program Files\mIRC\Wbs-Script [1.28c]\Wbs-Script\dlls\Zprocess.dll not found.
< C:\Program Files\mIRC\Wbs-Script [1.28c]\Wbs-Script\dlls\Zwnd.dll >
File/Folder C:\Program Files\mIRC\Wbs-Script [1.28c]\Wbs-Script\dlls\Zwnd.dll not found.
File/Folder C:\WINDOWS\FixCamera.exe not found.
H:\Musique\mp3 music\kazaalite_202_b1\first stage\kazaa_lite_202_english.exe moved successfully.

OTMoveIt2 by OldTimer - Version 1.0.4.2 log created on 05192008_125142
0
Réponse 27 / 31
jlpjlp Messages postés 52399 Statut Contributeur sécurité 5 040
 
Télécharge MSNFix de Laurent
http://sosvirus.changelog.fr/MSNFix.zip

Décompresse-le et double clic sur le fichier MSNFix.bat.
- Exécute l'option R.
--Si l'infection est détectée, exécute l'option N
- Sauvegarde ce rapport puis fais un copier/coller de ce rapport sur le forum.

Note :
Si une erreur de suppression est détectée un message s'affichera demandant de redémarrer l'ordinateur afin de terminer les opérations. Dans ce cas il suffit de redémarrer l'ordinateur en mode normal
Sauvegarder et fermer le rapport pour que Windows termine de se lancer normalement.

envoyer le fichier [b] C:\DOCUME~1\florian\Bureau\Upload_Me.zip /b sur http://upload.changelog.fr pour faire evoluer msnfix

_______________________

si tout c'est bien passé désactive la restauration système pour purger les virus qui seraient dedans

puis redemarre ton ordi
puis réactive là :

https://www.informatruc.com

_______________________

encore des problemes????????,
0
Réponse 28 / 31
Blackbeard78 Messages postés 19 Statut Membre
 
rapport msnfix:
MSNFix 1.717

C:\Documents and Settings\Compaq_Propri‚taire\Bureau\MSNFix
Fix exécuté le 19/05/2008 - 12:58:22,78 By Compaq_Propri‚taire
mode normal

************************ Recherche les fichiers présents

... C:\autorun.inf
... C:\Autorun.inf
... C:\Documents and Settings\Compaq_Propri‚taire\??????.exe
... C:\Documents and Settings\Compaq_Propri‚taire\????????.exe

************************ Recherche les dossiers présents

Aucun dossier trouvé

************************ Suppression des fichiers

.. OK ... C:\autorun.inf
.. OK ... C:\Autorun.inf
.. OK ... C:\Documents and Settings\Compaq_Propri‚taire\??????.exe
.. OK ... C:\Documents and Settings\Compaq_Propri‚taire\????????.exe

************************ Nettoyage du registre

Les fichiers encore présents seront supprimés au prochain redémarrage

Aucun Fichier trouvé

************************ Fichiers suspects

/!\ ces fichiers nécessitent un avis expérimenté avant toute intervention

[C:\DOCUME~1\COMPAQ~1\LOCALS~1\Temp\eb2e6n8u.zip] 6859C962884A344AA230B0D89FCB5C05

[color=#FF0000][b]==>/b/color SVP merci d'envoyer le fichier [b] C:\DOCUME~1\COMPAQ~1\Bureau\Upload_Me.zip /b sur http://upload.changelog.fr

Les fichiers et clés de registre supprimés ont été sauvegardés dans le fichier 19052008_13112212.zip

************************ HKLM\...\Winlogon\Userinit

Userinit = C:\WINDOWS\system32\userinit.exe,

Important : http://msnfix.changelog.fr/index.php/2008/05/18/32-alerte

------------------------------------------------------------------------
Auteur : !aur3n7 Contact: https://www.ionos.fr/
------------------------------------------------------------------------

--------------------------------------------- END ---------------------------------------------
0
Réponse 29 / 31
jlpjlp Messages postés 52399 Statut Contributeur sécurité 5 040
 
si tout c'est bien passé désactive la restauration système pour purger les virus qui seraient dedans

puis redemarre ton ordi
puis réactive là :

https://www.informatruc.com

_______________________

télécharge OTMoveIt
http://download.bleepingcomputer.com/oldtimer/OTMoveIt2.exe (de Old_Timer) sur ton Bureau. Ou sur https://www.luanagames.com/index.fr.html
double-clique sur OTMoveIt.exe pour le lancer.
copie la liste qui se trouve en citation ci-dessous,
et colle-la dans le cadre de gauche de OTMoveIt :Paste List of Files/Folders to be moved.

Citation :
C:\DOCUME~1\COMPAQ~1\LOCALS~1\Temp\eb2e6n8u.zip

clique sur MoveIt! pour lancer la suppression.
le résultat apparaitra dans le cadre "Results".
clique sur Exit pour fermer.
poste le rapport situé dans C:\_OTMoveIt\MovedFiles.

il te sera peut-être demander de redémarrer le pc pour achever la suppression.si c'est le cas accepte par Yes.

______________

vire ce qui est dans MOVED FILES en allant dans poste de travail puis C puis otmovitr
______________

encore des problemes????????,
0
Réponse 30 / 31
Blackbeard78 Messages postés 19 Statut Membre
 
Apparemment plus de problème.Merci beucoup pour ton aide.
rapport MoveIt:
C:\DOCUME~1\COMPAQ~1\LOCALS~1\Temp\eb2e6n8u.zip moved successfully.

OTMoveIt2 by OldTimer - Version 1.0.4.2 log created on 05192008_180122

P.S: je place ce topic dans la catégorie "problème résolu"
0
Réponse 31 / 31
jlpjlp Messages postés 52399 Statut Contributeur sécurité 5 040
 
utilise tools cleaner pour virer ce que je t'ai fais utiliser

bonne suite:

Télécharge ToolsCleaner sur ton bureau.
--> https://www.commentcamarche.net/telecharger/ 34055291 toolsclean(...)
# Clique sur Recherche et laisse le scan agir ...
# Clique sur Suppression pour finaliser.
# Tu peux, si tu le souhaites, te servir des Options facultatives.
# Clique sur Quitter pour obtenir le rapport.
# Poste le rapport (TCleaner.txt) qui se trouve à la racine de ton disque dur (C:\).

ps : pas besoin de m´envoyer le rapport si tout a ete supprimer ;-)
0