Sujet Précédent Sujet Suivant

Application win32 non valide

leyoyo Messages postés 11 Statut Membre -  
leyoyo Messages postés 11 Statut Membre -
Bonjour,
Pour essayer de faire simple ,je suis loin mais tres loin d etre un as de l informatique mais je vais faire des efforts pour etre le plus clair possible dans mes explications .
je n ai plus d antivirus (avast gratuit) et aucun autre ne fonctionne !chaque fois le meme message win 32 !
Est ce que queq un pourrait me donner un petit coup de pate svp!
et merci d avance .

15 réponses

Réponse 1 / 15
Utilisateur anonyme
 
Hi,

Télécharges- FindyKill de Chiquitine29 :

FindyKill de Chiquitine29

->-Enregistres le sur ton bureau et pas ailleurs !

-!! Déconnectes toi et fermes toute applications en cours !!

( Si ton anti-virus s'affolle au moment de l'enregistrement ou de l'utilisation de l'outil , ignore l'alerte ...)

-> Cliques sur "-FindyKill.exe" pour lancer l'installe de l'outil . Ne touche surtout pas aux paramètres d'installation.

-Notes importantes :
* si tu as le prg Elibagla sur ton PC , supprimes le ( risque de conflit entre les deux outils ) .

--> Double cliques sur le raccourci " FindyKill " qui est sur ton bureau .

-->choisis l'option 1 ( recherche ) . Puis laisses travailler l'outil sans rien toucher ...

Une fois terminé, postes le rapport FindyKill.txt qui est généré ...

( Note : le rapport est sauvegardé à la racine du disque -> C:\FindyKill.txt )
Alut.
1
Réponse 2 / 15
rorkaii Messages postés 594 Statut Membre 60
 
Alors:
Desinstalle bien tout tes antivirus, recherche un antivirus performant et utilise firefox et t'auras (presque) jamais de virus.
0
Réponse 3 / 15
leyoyo Messages postés 11 Statut Membre
 
merci pour ton aide , je pense que tu as du voir le rapport d erreur !
que dois je faire ensuite ? aie aie aie c est la cata ?
0
Réponse 4 / 15
Utilisateur anonyme
 
Hi,

poste le a la suite de ce message.

Alut.

PS:demande la suppression de tes deux autres topics.
0

Vous n’avez pas trouvé la réponse que vous recherchez ?

Posez votre question
Réponse 5 / 15
leyoyo Messages postés 11 Statut Membre
 
----------------- FindyKill V4.705 ------------------

* User : LIONEL - YOUR-783C5440E4
* Emplacement : C:\Program Files\FindyKill
* Outils Mis a jours le 17/11/08 par Chiquitine29
* Recherche effectuée à 22:09:03 le 18/11/2008
* Windows XP - Internet Explorer 7.0.5730.11

((((((((((((((((( *** Recherche *** ))))))))))))))))))

--------------- [ Processus actifs ] ----------------

C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\csrss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Messenger\msmsgs.exe
C:\Apps\ActivBoard\nhksrv.exe
C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
C:\Program Files\Fichiers communs\Microsoft Shared\VS7Debug\mdm.exe
C:\WINDOWS\system32\nvsvc32.exe
C:\WINDOWS\system32\slserv.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Virtual CD v4 SDK\system\vcssecs.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Program Files\Internet Explorer\IEXPLORE.EXE
C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WLLoginProxy.exe

--------------- [ Fichiers/Dossiers infectieux ] ----------------

»»»» Presence des fichiers dans C:

»»»» Presence des fichiers dans C:\WINDOWS

»»»» Presence des fichiers dans C:\WINDOWS\Prefetch

Found ! - C:\WINDOWS\prefetch\121984.EXE-0353A38D.pf
Found ! - C:\WINDOWS\prefetch\145937.EXE-08A74B52.pf
Found ! - C:\WINDOWS\prefetch\14718687.EXE-13F55C0A.pf
Found ! - C:\WINDOWS\prefetch\14749125.EXE-2AA11423.pf
Found ! - C:\WINDOWS\prefetch\14754296.EXE-35949EB6.pf
Found ! - C:\WINDOWS\prefetch\14936796.EXE-3443D937.pf
Found ! - C:\WINDOWS\prefetch\14975218.EXE-0B32B5F0.pf
Found ! - C:\WINDOWS\prefetch\14999843.EXE-0281F17D.pf
Found ! - C:\WINDOWS\prefetch\15008375.EXE-15EC1228.pf
Found ! - C:\WINDOWS\prefetch\151109.EXE-379E1EDB.pf
Found ! - C:\WINDOWS\prefetch\163125.EXE-3AD35902.pf
Found ! - C:\WINDOWS\prefetch\173125.EXE-3A5CED69.pf
Found ! - C:\WINDOWS\prefetch\175625.EXE-2AAA1B1A.pf
Found ! - C:\WINDOWS\prefetch\181734.EXE-0550EEC4.pf
Found ! - C:\WINDOWS\prefetch\184625.EXE-3685F637.pf
Found ! - C:\WINDOWS\prefetch\197781.EXE-248DB134.pf
Found ! - C:\WINDOWS\prefetch\232859.EXE-07D336E7.pf
Found ! - C:\WINDOWS\prefetch\238500.EXE-194CA607.pf
Found ! - C:\WINDOWS\prefetch\291468.EXE-027D0E62.pf
Found ! - C:\WINDOWS\prefetch\29335093.EXE-34C71793.pf
Found ! - C:\WINDOWS\prefetch\29342562.EXE-30A7179C.pf
Found ! - C:\WINDOWS\prefetch\29355171.EXE-2A6C8AAD.pf
Found ! - C:\WINDOWS\prefetch\299187.EXE-36C67628.pf
Found ! - C:\WINDOWS\prefetch\309234.EXE-05DDE6E8.pf
Found ! - C:\WINDOWS\prefetch\43932921.EXE-2257919D.pf
Found ! - C:\WINDOWS\prefetch\43935156.EXE-1DAA64A8.pf
Found ! - C:\WINDOWS\prefetch\43961140.EXE-21138BC8.pf
Found ! - C:\WINDOWS\prefetch\43971828.EXE-050AF498.pf
Found ! - C:\WINDOWS\prefetch\43975718.EXE-333BDFD0.pf
Found ! - C:\WINDOWS\prefetch\43990375.EXE-1FD2C434.pf
Found ! - C:\WINDOWS\prefetch\58500890.EXE-2D9AB52F.pf
Found ! - C:\WINDOWS\prefetch\58541125.EXE-2F6F9DDE.pf
Found ! - C:\WINDOWS\prefetch\87594359.EXE-28516557.pf
Found ! - C:\WINDOWS\prefetch\87630578.EXE-01DDAF29.pf
Found ! - C:\WINDOWS\prefetch\87650312.EXE-00B6D825.pf
Found ! - C:\WINDOWS\prefetch\FLEC006.EXE-16145AC5.pf
Found ! - C:\WINDOWS\prefetch\MDELK.EXE-0EF461CE.pf
Found ! - C:\WINDOWS\prefetch\WINTEMS.EXE-377E42D4.pf

»»»» Presence des fichiers dans C:\WINDOWS\system32

Found ! [18/11/2008 18:09] - C:\WINDOWS\system32\mdelk.exe
Found ! [18/11/2008 18:09] - C:\WINDOWS\system32\wintems.exe
Found ! [18/11/2008 21:12] - C:\WINDOWS\system32\ban_list.txt

»»»» Presence des fichiers dans C:\WINDOWS\system32\drivers

Found ! [18/11/2008 14:02] - C:\WINDOWS\system32\drivers\srosa.sys
Found ! [18/11/2008 14:02] - C:\WINDOWS\system32\drivers\srosa2.sys
Found ! [14/07/2006 04:08] - C:\WINDOWS\system32\drivers\winfilse.exe
Found ! [18/11/2008 18:11] - "C:\WINDOWS\system32\drivers\downld"
Found ! [18/11/2008 18:11] - C:\WINDOWS\system32\drivers\downld\133203.exe
Found ! [18/11/2008 18:11] - C:\WINDOWS\system32\drivers\downld\136093.exe
Found ! [18/11/2008 18:11] - C:\WINDOWS\system32\drivers\downld\14936796.exe
Found ! [18/11/2008 18:11] - C:\WINDOWS\system32\drivers\downld\14962375.exe
Found ! [18/11/2008 18:11] - C:\WINDOWS\system32\drivers\downld\14963796.exe
Found ! [18/11/2008 18:11] - C:\WINDOWS\system32\drivers\downld\14975218.exe
Found ! [18/11/2008 18:11] - C:\WINDOWS\system32\drivers\downld\14999843.exe
Found ! [18/11/2008 18:11] - C:\WINDOWS\system32\drivers\downld\15003046.exe
Found ! [18/11/2008 18:11] - C:\WINDOWS\system32\drivers\downld\15013343.exe
Found ! [18/11/2008 18:11] - C:\WINDOWS\system32\drivers\downld\15115125.exe
Found ! [18/11/2008 18:11] - C:\WINDOWS\system32\drivers\downld\15128250.exe
Found ! [18/11/2008 18:11] - C:\WINDOWS\system32\drivers\downld\173125.exe
Found ! [18/11/2008 18:11] - C:\WINDOWS\system32\drivers\downld\177250.exe
Found ! [18/11/2008 18:11] - C:\WINDOWS\system32\drivers\downld\187953.exe
Found ! [18/11/2008 18:11] - C:\WINDOWS\system32\drivers\downld\238500.exe
Found ! [18/11/2008 18:11] - C:\WINDOWS\system32\drivers\downld\238734.exe
Found ! [18/11/2008 18:11] - C:\WINDOWS\system32\drivers\downld\253843.exe
Found ! [18/11/2008 18:11] - C:\WINDOWS\system32\drivers\downld\257875.exe
Found ! [18/11/2008 18:11] - C:\WINDOWS\system32\drivers\downld\289000.exe
Found ! [18/11/2008 18:11] - C:\WINDOWS\system32\drivers\downld\291468.exe
Found ! [18/11/2008 18:11] - C:\WINDOWS\system32\drivers\downld\299187.exe
Found ! [18/11/2008 18:11] - C:\WINDOWS\system32\drivers\downld\309234.exe
Found ! [18/11/2008 18:11] - C:\WINDOWS\system32\drivers\downld\314343.exe
Found ! [18/11/2008 18:11] - C:\WINDOWS\system32\drivers\downld\322578.exe
Found ! [18/11/2008 18:11] - C:\WINDOWS\system32\drivers\downld\357765.exe
Found ! [18/11/2008 18:11] - C:\WINDOWS\system32\drivers\downld\438390.exe
Found ! [18/11/2008 18:11] - C:\WINDOWS\system32\drivers\downld\453078.exe

»»»» Presence des fichiers dans C:\Documents and Settings\LIONEL\Application Data

Found ! [18/11/2008 18:09] - "C:\Documents and Settings\LIONEL\Application Data\m\flec006.exe"
Found ! [18/11/2008 18:09] - "C:\Documents and Settings\LIONEL\Application Data\m\list.oct"
Found ! [18/11/2008 18:09] - "C:\Documents and Settings\LIONEL\Application Data\m\data.oct"
Found ! [18/11/2008 18:10] - "C:\Documents and Settings\LIONEL\Application Data\m\srvlist.oct"
Found ! [18/11/2008 18:12] - "C:\Documents and Settings\LIONEL\Application Data\m\shared"
Found ! [18/11/2008 12:34] - "C:\Documents and Settings\LIONEL\Application Data\m"

»»»» Presence des fichiers dans C:\DOCUME~1\LIONEL\LOCALS~1\Temp

»»»» Presence des fichiers dans C:\Documents and Settings\LIONEL\Local Settings\Temporary Internet Files\Content.IE5

Found ! [06/12/2005 13:05] - C:\Documents and Settings\LIONEL\Application Data\yahoo!\ymailphotos\lionelcandy\yphotos\d6e7\cb64re2.jpg
Found ! [15/11/2008 21:46] - C:\Documents and Settings\LIONEL\Local Settings\Temporary Internet Files\Content.IE5\KBLU7TIO\b64[1].jpg
Found ! [16/11/2008 09:56] - C:\Documents and Settings\LIONEL\Local Settings\Temporary Internet Files\Content.IE5\KBLU7TIO\b64[2].jpg
Found ! [16/11/2008 12:54] - C:\Documents and Settings\LIONEL\Local Settings\Temporary Internet Files\Content.IE5\KBLU7TIO\b64[3].jpg
Found ! [17/11/2008 23:35] - C:\Documents and Settings\LIONEL\Local Settings\Temporary Internet Files\Content.IE5\KBLU7TIO\b64[4].jpg
Found ! [18/11/2008 12:17] - C:\Documents and Settings\LIONEL\Local Settings\Temporary Internet Files\Content.IE5\KBLU7TIO\b64[5].jpg
Found ! [18/11/2008 14:04] - C:\Documents and Settings\LIONEL\Local Settings\Temporary Internet Files\Content.IE5\KBLU7TIO\b64[6].jpg
Found ! [16/11/2008 12:53] - C:\Documents and Settings\LIONEL\Local Settings\Temporary Internet Files\Content.IE5\KBLU7TIO\b64_1[1].jpg
Found ! [18/11/2008 11:42] - C:\Documents and Settings\LIONEL\Local Settings\Temporary Internet Files\Content.IE5\KBLU7TIO\b64_1[2].jpg
Found ! [18/11/2008 18:08] - C:\Documents and Settings\LIONEL\Local Settings\Temporary Internet Files\Content.IE5\KBLU7TIO\b64_1[3].jpg
Found ! [18/11/2008 03:38] - C:\Documents and Settings\LIONEL\Local Settings\Temporary Internet Files\Content.IE5\KBLU7TIO\b64_2[10].jpg
Found ! [18/11/2008 12:34] - C:\Documents and Settings\LIONEL\Local Settings\Temporary Internet Files\Content.IE5\KBLU7TIO\b64_2[11].jpg
Found ! [15/11/2008 21:46] - C:\Documents and Settings\LIONEL\Local Settings\Temporary Internet Files\Content.IE5\KBLU7TIO\b64_2[1].jpg
Found ! [16/11/2008 09:56] - C:\Documents and Settings\LIONEL\Local Settings\Temporary Internet Files\Content.IE5\KBLU7TIO\b64_2[2].jpg
Found ! [16/11/2008 12:41] - C:\Documents and Settings\LIONEL\Local Settings\Temporary Internet Files\Content.IE5\KBLU7TIO\b64_2[3].jpg
Found ! [16/11/2008 18:35] - C:\Documents and Settings\LIONEL\Local Settings\Temporary Internet Files\Content.IE5\KBLU7TIO\b64_2[4].jpg
Found ! [17/11/2008 00:34] - C:\Documents and Settings\LIONEL\Local Settings\Temporary Internet Files\Content.IE5\KBLU7TIO\b64_2[5].jpg
Found ! [17/11/2008 04:36] - C:\Documents and Settings\LIONEL\Local Settings\Temporary Internet Files\Content.IE5\KBLU7TIO\b64_2[6].jpg
Found ! [17/11/2008 07:15] - C:\Documents and Settings\LIONEL\Local Settings\Temporary Internet Files\Content.IE5\KBLU7TIO\b64_2[7].jpg
Found ! [17/11/2008 19:31] - C:\Documents and Settings\LIONEL\Local Settings\Temporary Internet Files\Content.IE5\KBLU7TIO\b64_2[8].jpg
Found ! [17/11/2008 23:34] - C:\Documents and Settings\LIONEL\Local Settings\Temporary Internet Files\Content.IE5\KBLU7TIO\b64_2[9].jpg
Found ! [15/11/2008 22:01] - C:\Documents and Settings\LIONEL\Local Settings\Temporary Internet Files\Content.IE5\KBLU7TIO\b64_3[2].jpg
Found ! [15/11/2008 22:41] - C:\Documents and Settings\LIONEL\Local Settings\Temporary Internet Files\Content.IE5\KBLU7TIO\b64_3[3].jpg
Found ! [17/11/2008 15:28] - C:\Documents and Settings\LIONEL\Local Settings\Temporary Internet Files\Content.IE5\KBLU7TIO\b64_3[4].jpg
Found ! [17/11/2008 15:28] - C:\Documents and Settings\LIONEL\Local Settings\Temporary Internet Files\Content.IE5\KBLU7TIO\b64_3[5].jpg
Found ! [15/11/2008 22:15] - C:\Documents and Settings\LIONEL\Local Settings\Temporary Internet Files\Content.IE5\KBLU7TIO\mxd[1].jpg
Found ! [16/11/2008 12:54] - C:\Documents and Settings\LIONEL\Local Settings\Temporary Internet Files\Content.IE5\KBLU7TIO\mxd[2].jpg
Found ! [16/11/2008 16:54] - C:\Documents and Settings\LIONEL\Local Settings\Temporary Internet Files\Content.IE5\KBLU7TIO\mxd[3].jpg
Found ! [18/11/2008 12:34] - C:\Documents and Settings\LIONEL\Local Settings\Temporary Internet Files\Content.IE5\KBLU7TIO\mxd[4].jpg
Found ! [15/11/2008 22:16] - C:\Documents and Settings\LIONEL\Local Settings\Temporary Internet Files\Content.IE5\NF83MM90\b64[1].jpg
Found ! [16/11/2008 17:39] - C:\Documents and Settings\LIONEL\Local Settings\Temporary Internet Files\Content.IE5\NF83MM90\b64[2].jpg
Found ! [18/11/2008 12:33] - C:\Documents and Settings\LIONEL\Local Settings\Temporary Internet Files\Content.IE5\NF83MM90\b64[3].jpg
Found ! [16/11/2008 17:12] - C:\Documents and Settings\LIONEL\Local Settings\Temporary Internet Files\Content.IE5\NF83MM90\b64_1[1].jpg
Found ! [15/11/2008 22:01] - C:\Documents and Settings\LIONEL\Local Settings\Temporary Internet Files\Content.IE5\NF83MM90\b64_2[1].jpg
Found ! [16/11/2008 12:53] - C:\Documents and Settings\LIONEL\Local Settings\Temporary Internet Files\Content.IE5\NF83MM90\b64_2[2].jpg
Found ! [16/11/2008 15:06] - C:\Documents and Settings\LIONEL\Local Settings\Temporary Internet Files\Content.IE5\NF83MM90\b64_2[3].jpg
Found ! [17/11/2008 15:28] - C:\Documents and Settings\LIONEL\Local Settings\Temporary Internet Files\Content.IE5\NF83MM90\b64_2[4].jpg
Found ! [18/11/2008 12:17] - C:\Documents and Settings\LIONEL\Local Settings\Temporary Internet Files\Content.IE5\NF83MM90\b64_2[5].jpg
Found ! [18/11/2008 18:09] - C:\Documents and Settings\LIONEL\Local Settings\Temporary Internet Files\Content.IE5\NF83MM90\b64_2[6].jpg
Found ! [18/11/2008 18:09] - C:\Documents and Settings\LIONEL\Local Settings\Temporary Internet Files\Content.IE5\NF83MM90\b64_3[10].jpg
Found ! [15/11/2008 21:46] - C:\Documents and Settings\LIONEL\Local Settings\Temporary Internet Files\Content.IE5\NF83MM90\b64_3[1].jpg
Found ! [16/11/2008 09:56] - C:\Documents and Settings\LIONEL\Local Settings\Temporary Internet Files\Content.IE5\NF83MM90\b64_3[2].jpg
Found ! [16/11/2008 12:41] - C:\Documents and Settings\LIONEL\Local Settings\Temporary Internet Files\Content.IE5\NF83MM90\b64_3[3].jpg
Found ! [16/11/2008 12:54] - C:\Documents and Settings\LIONEL\Local Settings\Temporary Internet Files\Content.IE5\NF83MM90\b64_3[4].jpg
Found ! [16/11/2008 19:38] - C:\Documents and Settings\LIONEL\Local Settings\Temporary Internet Files\Content.IE5\NF83MM90\b64_3[5].jpg
Found ! [17/11/2008 04:36] - C:\Documents and Settings\LIONEL\Local Settings\Temporary Internet Files\Content.IE5\NF83MM90\b64_3[6].jpg
Found ! [17/11/2008 11:25] - C:\Documents and Settings\LIONEL\Local Settings\Temporary Internet Files\Content.IE5\NF83MM90\b64_3[7].jpg
Found ! [17/11/2008 07:15] - C:\Documents and Settings\LIONEL\Local Settings\Temporary Internet Files\Content.IE5\NF83MM90\b64_3[8].jpg
Found ! [18/11/2008 14:04] - C:\Documents and Settings\LIONEL\Local Settings\Temporary Internet Files\Content.IE5\NF83MM90\b64_3[9].jpg
Found ! [18/11/2008 18:09] - C:\Documents and Settings\LIONEL\Local Settings\Temporary Internet Files\Content.IE5\NF83MM90\mxd[1].jpg
Found ! [16/11/2008 12:42] - C:\Documents and Settings\LIONEL\Local Settings\Temporary Internet Files\Content.IE5\OS3E80XP\b64[1].jpg
Found ! [18/11/2008 11:43] - C:\Documents and Settings\LIONEL\Local Settings\Temporary Internet Files\Content.IE5\OS3E80XP\b64[2].jpg
Found ! [15/11/2008 20:06] - C:\Documents and Settings\LIONEL\Local Settings\Temporary Internet Files\Content.IE5\OS3E80XP\b64_1[1].jpg
Found ! [15/11/2008 22:15] - C:\Documents and Settings\LIONEL\Local Settings\Temporary Internet Files\Content.IE5\OS3E80XP\b64_1[2].jpg
Found ! [16/11/2008 18:19] - C:\Documents and Settings\LIONEL\Local Settings\Temporary Internet Files\Content.IE5\OS3E80XP\b64_1[3].jpg
Found ! [18/11/2008 12:17] - C:\Documents and Settings\LIONEL\Local Settings\Temporary Internet Files\Content.IE5\OS3E80XP\b64_1[4].jpg
Found ! [16/11/2008 12:42] - C:\Documents and Settings\LIONEL\Local Settings\Temporary Internet Files\Content.IE5\OS3E80XP\b64_2[1].jpg
Found ! [16/11/2008 17:40] - C:\Documents and Settings\LIONEL\Local Settings\Temporary Internet Files\Content.IE5\OS3E80XP\b64_2[2].jpg
Found ! [18/11/2008 11:43] - C:\Documents and Settings\LIONEL\Local Settings\Temporary Internet Files\Content.IE5\OS3E80XP\b64_2[3].jpg
Found ! [15/11/2008 20:06] - C:\Documents and Settings\LIONEL\Local Settings\Temporary Internet Files\Content.IE5\OS3E80XP\b64_3[1].jpg
Found ! [15/11/2008 22:16] - C:\Documents and Settings\LIONEL\Local Settings\Temporary Internet Files\Content.IE5\OS3E80XP\b64_3[2].jpg
Found ! [16/11/2008 12:54] - C:\Documents and Settings\LIONEL\Local Settings\Temporary Internet Files\Content.IE5\OS3E80XP\b64_3[3].jpg
Found ! [16/11/2008 18:35] - C:\Documents and Settings\LIONEL\Local Settings\Temporary Internet Files\Content.IE5\OS3E80XP\b64_3[4].jpg
Found ! [18/11/2008 03:37] - C:\Documents and Settings\LIONEL\Local Settings\Temporary Internet Files\Content.IE5\OS3E80XP\b64_3[5].jpg
Found ! [18/11/2008 12:17] - C:\Documents and Settings\LIONEL\Local Settings\Temporary Internet Files\Content.IE5\OS3E80XP\b64_3[6].jpg
Found ! [18/11/2008 14:04] - C:\Documents and Settings\LIONEL\Local Settings\Temporary Internet Files\Content.IE5\OS3E80XP\b64_3[7].jpg
Found ! [15/11/2008 21:46] - C:\Documents and Settings\LIONEL\Local Settings\Temporary Internet Files\Content.IE5\OS3E80XP\mxd[1].jpg
Found ! [16/11/2008 17:13] - C:\Documents and Settings\LIONEL\Local Settings\Temporary Internet Files\Content.IE5\OS3E80XP\mxd[2].jpg
Found ! [15/11/2008 22:01] - C:\Documents and Settings\LIONEL\Local Settings\Temporary Internet Files\Content.IE5\U9Y7M77H\b64[1].jpg
Found ! [15/11/2008 22:41] - C:\Documents and Settings\LIONEL\Local Settings\Temporary Internet Files\Content.IE5\U9Y7M77H\b64[2].jpg
Found ! [16/11/2008 17:13] - C:\Documents and Settings\LIONEL\Local Settings\Temporary Internet Files\Content.IE5\U9Y7M77H\b64[3].jpg
Found ! [17/11/2008 07:15] - C:\Documents and Settings\LIONEL\Local Settings\Temporary Internet Files\Content.IE5\U9Y7M77H\b64[4].jpg
Found ! [17/11/2008 11:25] - C:\Documents and Settings\LIONEL\Local Settings\Temporary Internet Files\Content.IE5\U9Y7M77H\b64[5].jpg
Found ! [15/11/2008 22:00] - C:\Documents and Settings\LIONEL\Local Settings\Temporary Internet Files\Content.IE5\U9Y7M77H\b64_1[1].jpg
Found ! [15/11/2008 22:40] - C:\Documents and Settings\LIONEL\Local Settings\Temporary Internet Files\Content.IE5\U9Y7M77H\b64_1[2].jpg
Found ! [16/11/2008 15:05] - C:\Documents and Settings\LIONEL\Local Settings\Temporary Internet Files\Content.IE5\U9Y7M77H\b64_1[3].jpg
Found ! [16/11/2008 17:39] - C:\Documents and Settings\LIONEL\Local Settings\Temporary Internet Files\Content.IE5\U9Y7M77H\b64_1[4].jpg
Found ! [17/11/2008 04:36] - C:\Documents and Settings\LIONEL\Local Settings\Temporary Internet Files\Content.IE5\U9Y7M77H\b64_1[5].jpg
Found ! [17/11/2008 15:27] - C:\Documents and Settings\LIONEL\Local Settings\Temporary Internet Files\Content.IE5\U9Y7M77H\b64_1[6].jpg
Found ! [17/11/2008 23:34] - C:\Documents and Settings\LIONEL\Local Settings\Temporary Internet Files\Content.IE5\U9Y7M77H\b64_1[7].jpg
Found ! [15/11/2008 20:07] - C:\Documents and Settings\LIONEL\Local Settings\Temporary Internet Files\Content.IE5\U9Y7M77H\b64_2[1].jpg
Found ! [15/11/2008 21:45] - C:\Documents and Settings\LIONEL\Local Settings\Temporary Internet Files\Content.IE5\U9Y7M77H\b64_2[2].jpg
Found ! [16/11/2008 16:53] - C:\Documents and Settings\LIONEL\Local Settings\Temporary Internet Files\Content.IE5\U9Y7M77H\b64_2[3].jpg
Found ! [18/11/2008 03:37] - C:\Documents and Settings\LIONEL\Local Settings\Temporary Internet Files\Content.IE5\U9Y7M77H\b64_2[4].jpg
Found ! [18/11/2008 14:03] - C:\Documents and Settings\LIONEL\Local Settings\Temporary Internet Files\Content.IE5\U9Y7M77H\b64_2[5].jpg
Found ! [15/11/2008 20:06] - C:\Documents and Settings\LIONEL\Local Settings\Temporary Internet Files\Content.IE5\U9Y7M77H\b64_3[1].jpg
Found ! [15/11/2008 22:16] - C:\Documents and Settings\LIONEL\Local Settings\Temporary Internet Files\Content.IE5\U9Y7M77H\b64_3[2].jpg
Found ! [16/11/2008 17:13] - C:\Documents and Settings\LIONEL\Local Settings\Temporary Internet Files\Content.IE5\U9Y7M77H\b64_3[3].jpg
Found ! [16/11/2008 17:39] - C:\Documents and Settings\LIONEL\Local Settings\Temporary Internet Files\Content.IE5\U9Y7M77H\b64_3[4].jpg
Found ! [17/11/2008 19:31] - C:\Documents and Settings\LIONEL\Local Settings\Temporary Internet Files\Content.IE5\U9Y7M77H\b64_3[5].jpg
Found ! [15/11/2008 22:41] - C:\Documents and Settings\LIONEL\Local Settings\Temporary Internet Files\Content.IE5\U9Y7M77H\mxd[1].jpg
Found ! [16/11/2008 09:56] - C:\Documents and Settings\LIONEL\Local Settings\Temporary Internet Files\Content.IE5\U9Y7M77H\mxd[2].jpg
Found ! [16/11/2008 23:44] - C:\Documents and Settings\LIONEL\Local Settings\Temporary Internet Files\Content.IE5\U9Y7M77H\mxd[3].jpg
Found ! [15/01/2006 08:53] - C:\Documents and Settings\LIONEL\Mes documents\Ma musique\AlbumArt_{EDA2CAA6-ADB3-473C-B642-08A098C80DEA}_Large.jpg
Found ! [15/01/2006 08:53] - C:\Documents and Settings\LIONEL\Mes documents\Ma musique\AlbumArt_{EDA2CAA6-ADB3-473C-B642-08A098C80DEA}_Small.jpg

--------------- [ Registre / Startup ] ----------------

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\run]

ctfmon.exe=C:\WINDOWS\system32\ctfmon.exe
swg=C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
MSMSGS="C:\Program Files\Messenger\msmsgs.exe" /background
SpybotSD TeaTimer=C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\run]

NvCplDaemon=RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup
TkBellExe="C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe" -osboot
QuickTime Task="C:\Program Files\QuickTime\qttask.exe" -atboottime
SunJavaUpdateSched="C:\Program Files\JavaSoft\JRE\1.1\bin\jusched.exe"
avast!=C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\run\OptionalComponents=
<NO NAME>=
HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\run\OptionalComponents\IMAIL=
Installed=1
<NO NAME>=
HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\run\OptionalComponents\MAPI=
NoChange=1
Installed=1
<NO NAME>=
HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\run\OptionalComponents\MSFS=
Installed=1
<NO NAME>=

--------------- [ Registre / Clés infectieuses ] ----------------

Found ! - HKEY_USERS\S-1-5-21-3376078148-97400744-4212676017-1007\Software\Local AppWizard-Generated Applications\winfilse
Found ! - HKEY_USERS\S-1-5-21-3376078148-97400744-4212676017-1007\Software\bisoft
Found ! - HKEY_USERS\S-1-5-21-3376078148-97400744-4212676017-1007\Software\DateTime4
Found ! - HKEY_USERS\S-1-5-21-3376078148-97400744-4212676017-1007\Software\FFC
Found ! - HKEY_USERS\S-1-5-21-3376078148-97400744-4212676017-1007\Software\FirtR
Found ! - HKEY_USERS\S-1-5-21-3376078148-97400744-4212676017-1007\Software\MuleAppData
Found ! - HKEY_CURRENT_USER\Software\Local AppWizard-Generated Applications\winfilse
Found ! - HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\srosa
Found ! - HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Services\srosa
Found ! - HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Services\srosa
Found ! - HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_SROSA
Found ! - HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Enum\Root\LEGACY_SROSA
Found ! - HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Enum\Root\LEGACY_SROSA
Found ! - HKEY_CURRENT_USER\Software\bisoft
Found ! - HKEY_CURRENT_USER\Software\DateTime4
Found ! - HKEY_CURRENT_USER\Software\FirtR
Found ! - HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_SK9OU0S
Found ! - HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Enum\Root\LEGACY_SK9OU0S
Found ! - HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Enum\Root\LEGACY_SK9OU0S
Found ! - HKEY_LOCAL_MACHINE\SYSTEM\ControlSet004\Enum\Root\LEGACY_SK9OU0S
Found ! - HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\sK9Ou0s
Found ! - HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Services\sK9Ou0s
Found ! - HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Services\sK9Ou0s
Found ! - HKEY_LOCAL_MACHINE\SYSTEM\ControlSet004\Services\sK9Ou0s

--------------- [ Etat / Services ] ----------------

Clé manquante : HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot

- sans echec non fonctionnel !!

Clé manquante : HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal

- sans echec non fonctionnel !!

Clé manquante : HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network

- sans echec non fonctionnel !!

+- Services : [ Auto=2 / Demande=3 / Désactivé=4 ]

/!\ Ndisuio - Type de démarrage = 4

/!\ Ip6Fw - Type de démarrage = 4

/!\ SharedAccess - Type de démarrage = 4

/!\ wuauserv - Type de démarrage = 4

/!\ wscsvc - Type de démarrage = 4

--------------- [ Recherche dans supports amovibles] ----------------

+- Informations :

C: - Lecteur fixe

+- presence des fichiers :

--------------- [ Registre / Mountpoint2 ] ----------------

-> Not found !

------------------- ! Fin du rapport ! --------------------
0
Réponse 6 / 15
Utilisateur anonyme
 
Hi,

--> Branche tes disques amovibles à ton PC (clefs USB, disque dur externe, etc...) sans les ouvrir

--> Double-clique sur le raccourci FindyKill sur ton bureau

--> Au menu principal, choisis l'option 2 (Suppression)

/!\ Il y aura 2 redémarrages, laisse travailler l'outil jusqu'à l'apparition du message "nettoyage effectué" /!\

--> Ensuite, poste le rapport FindyKill.txt

Note : le rapport FindyKill.txt est sauvegardé à la racine du disque.

Ensuite tu fait un hijackthis:

télécharge hijackthis
-> enregistre la cible sous .... "le bureau"

-> Fais un double-clic sur "HJTInstall.exe" afin de lancer l'installation

-> Clique sur Install ensuite sur "I Accept"

-> Clique sur" Do a scan system and save log file"

-> Le bloc-notes s'ouvrira, fais un copier-coller de tout son contenu ici dans ta prochaine réponse

->Tuto hijackthis(Merci à Balltrap34)

Alut.
0
Réponse 7 / 15
leyoyo Messages postés 11 Statut Membre
 
voici le rapport !!!

Ca à l air de prendre forme c est cool! merci!

----------------- FindyKill V4.705 ------------------

* User : LIONEL - YOUR-783C5440E4
* executed from : C:\Program Files\FindyKill
* Update on 17/11/08 par Chiquitine29
* Start at 23:19:49 the 18/11/2008
* Windows XP - Internet Explorer 7.0.5730.11

((((((((((((((( *** deleting *** ))))))))))))))))))

--------------- [ Active Processes ] ----------------

C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\csrss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\logonui.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\system32\userinit.exe

--------------- [ Infected files / folders ] ----------------

»»»» Supression files in C:

»»»» Supression files in C:\WINDOWS

»»»» Supression files in C:\WINDOWS\Prefetch

Deleted ! - C:\WINDOWS\prefetch\121984.EXE-0353A38D.pf
Deleted ! - C:\WINDOWS\prefetch\145937.EXE-08A74B52.pf
Deleted ! - C:\WINDOWS\prefetch\14718687.EXE-13F55C0A.pf
Deleted ! - C:\WINDOWS\prefetch\14749125.EXE-2AA11423.pf
Deleted ! - C:\WINDOWS\prefetch\14754296.EXE-35949EB6.pf
Deleted ! - C:\WINDOWS\prefetch\14936796.EXE-3443D937.pf
Deleted ! - C:\WINDOWS\prefetch\14975218.EXE-0B32B5F0.pf
Deleted ! - C:\WINDOWS\prefetch\14999843.EXE-0281F17D.pf
Deleted ! - C:\WINDOWS\prefetch\15008375.EXE-15EC1228.pf
Deleted ! - C:\WINDOWS\prefetch\151109.EXE-379E1EDB.pf
Deleted ! - C:\WINDOWS\prefetch\163125.EXE-3AD35902.pf
Deleted ! - C:\WINDOWS\prefetch\173125.EXE-3A5CED69.pf
Deleted ! - C:\WINDOWS\prefetch\175625.EXE-2AAA1B1A.pf
Deleted ! - C:\WINDOWS\prefetch\181734.EXE-0550EEC4.pf
Deleted ! - C:\WINDOWS\prefetch\184625.EXE-3685F637.pf
Deleted ! - C:\WINDOWS\prefetch\197781.EXE-248DB134.pf
Deleted ! - C:\WINDOWS\prefetch\232859.EXE-07D336E7.pf
Deleted ! - C:\WINDOWS\prefetch\238500.EXE-194CA607.pf
Deleted ! - C:\WINDOWS\prefetch\291468.EXE-027D0E62.pf
Deleted ! - C:\WINDOWS\prefetch\29335093.EXE-34C71793.pf
Deleted ! - C:\WINDOWS\prefetch\29342562.EXE-30A7179C.pf
Deleted ! - C:\WINDOWS\prefetch\29355171.EXE-2A6C8AAD.pf
Deleted ! - C:\WINDOWS\prefetch\29592953.EXE-1D63B2C8.pf
Deleted ! - C:\WINDOWS\prefetch\29626156.EXE-1286ABAA.pf
Deleted ! - C:\WINDOWS\prefetch\29639890.EXE-227AB713.pf
Deleted ! - C:\WINDOWS\prefetch\299187.EXE-36C67628.pf
Deleted ! - C:\WINDOWS\prefetch\309234.EXE-05DDE6E8.pf
Deleted ! - C:\WINDOWS\prefetch\43932921.EXE-2257919D.pf
Deleted ! - C:\WINDOWS\prefetch\43935156.EXE-1DAA64A8.pf
Deleted ! - C:\WINDOWS\prefetch\43961140.EXE-21138BC8.pf
Deleted ! - C:\WINDOWS\prefetch\43971828.EXE-050AF498.pf
Deleted ! - C:\WINDOWS\prefetch\43975718.EXE-333BDFD0.pf
Deleted ! - C:\WINDOWS\prefetch\43990375.EXE-1FD2C434.pf
Deleted ! - C:\WINDOWS\prefetch\58500890.EXE-2D9AB52F.pf
Deleted ! - C:\WINDOWS\prefetch\58541125.EXE-2F6F9DDE.pf
Deleted ! - C:\WINDOWS\prefetch\87594359.EXE-28516557.pf
Deleted ! - C:\WINDOWS\prefetch\87630578.EXE-01DDAF29.pf
Deleted ! - C:\WINDOWS\prefetch\87650312.EXE-00B6D825.pf
Deleted ! - C:\WINDOWS\prefetch\FLEC006.EXE-16145AC5.pf
Deleted ! - C:\WINDOWS\prefetch\MDELK.EXE-0EF461CE.pf
Deleted ! - C:\WINDOWS\prefetch\WINTEMS.EXE-377E42D4.pf

»»»» Supression files in C:\WINDOWS\system32

Deleted ! - C:\WINDOWS\system32\mdelk.exe
Deleted ! - C:\WINDOWS\system32\wintems.exe
Deleted ! - C:\WINDOWS\system32\ban_list.txt

»»»» Supression files in C:\WINDOWS\system32\drivers

Deleted ! - C:\WINDOWS\system32\drivers\srosa.sys
Deleted ! - C:\WINDOWS\system32\drivers\srosa2.sys
Deleted ! - C:\WINDOWS\system32\drivers\winfilse.exe
Deleted ! - C:\WINDOWS\system32\drivers\downld\133203.exe
Deleted ! - C:\WINDOWS\system32\drivers\downld\136093.exe
Deleted ! - C:\WINDOWS\system32\drivers\downld\14936796.exe
Deleted ! - C:\WINDOWS\system32\drivers\downld\14962375.exe
Deleted ! - C:\WINDOWS\system32\drivers\downld\14963796.exe
Deleted ! - C:\WINDOWS\system32\drivers\downld\14975218.exe
Deleted ! - C:\WINDOWS\system32\drivers\downld\14999843.exe
Deleted ! - C:\WINDOWS\system32\drivers\downld\15003046.exe
Deleted ! - C:\WINDOWS\system32\drivers\downld\15013343.exe
Deleted ! - C:\WINDOWS\system32\drivers\downld\15115125.exe
Deleted ! - C:\WINDOWS\system32\drivers\downld\15128250.exe
Deleted ! - C:\WINDOWS\system32\drivers\downld\173125.exe
Deleted ! - C:\WINDOWS\system32\drivers\downld\177250.exe
Deleted ! - C:\WINDOWS\system32\drivers\downld\187953.exe
Deleted ! - C:\WINDOWS\system32\drivers\downld\238500.exe
Deleted ! - C:\WINDOWS\system32\drivers\downld\238734.exe
Deleted ! - C:\WINDOWS\system32\drivers\downld\253843.exe
Deleted ! - C:\WINDOWS\system32\drivers\downld\257875.exe
Deleted ! - C:\WINDOWS\system32\drivers\downld\289000.exe
Deleted ! - C:\WINDOWS\system32\drivers\downld\291468.exe
Deleted ! - C:\WINDOWS\system32\drivers\downld\29592953.exe
Deleted ! - C:\WINDOWS\system32\drivers\downld\29604984.exe
Deleted ! - C:\WINDOWS\system32\drivers\downld\29606875.exe
Deleted ! - C:\WINDOWS\system32\drivers\downld\29626156.exe
Deleted ! - C:\WINDOWS\system32\drivers\downld\29639890.exe
Deleted ! - C:\WINDOWS\system32\drivers\downld\29645703.exe
Deleted ! - C:\WINDOWS\system32\drivers\downld\29655656.exe
Deleted ! - C:\WINDOWS\system32\drivers\downld\29747234.exe
Deleted ! - C:\WINDOWS\system32\drivers\downld\29773734.exe
Deleted ! - C:\WINDOWS\system32\drivers\downld\299187.exe
Deleted ! - C:\WINDOWS\system32\drivers\downld\309234.exe
Deleted ! - C:\WINDOWS\system32\drivers\downld\314343.exe
Deleted ! - C:\WINDOWS\system32\drivers\downld\322578.exe
Deleted ! - C:\WINDOWS\system32\drivers\downld\357765.exe
Deleted ! - C:\WINDOWS\system32\drivers\downld\438390.exe
Deleted ! - C:\WINDOWS\system32\drivers\downld\453078.exe
Deleted ! - "C:\WINDOWS\system32\drivers\downld"

»»»» Supression files in C:\Documents and Settings\LIONEL\Application Data

Deleted ! - "C:\Documents and Settings\LIONEL\Application Data\m\flec006.exe"
Deleted ! - "C:\Documents and Settings\LIONEL\Application Data\m\list.oct"
Deleted ! - "C:\Documents and Settings\LIONEL\Application Data\m\data.oct"
Deleted ! - "C:\Documents and Settings\LIONEL\Application Data\m\srvlist.oct"
Deleted ! - C:\Documents and Settings\LIONEL\Application Data\m\shared\3DS_Import_for_IntelliCAD_1.0.zip
Deleted ! - C:\Documents and Settings\LIONEL\Application Data\m\shared\3D_Cube_Saver_Gold_1.18_(With_Crack).zip
Deleted ! - C:\Documents and Settings\LIONEL\Application Data\m\shared\A00-201_Practice_Exam_Testing_Engine_Software_1.0.zip
Deleted ! - C:\Documents and Settings\LIONEL\Application Data\m\shared\A1 SpeechTRON 1.0.zip
Deleted ! - C:\Documents and Settings\LIONEL\Application Data\m\shared\ActionItems Pro 2.5.3.zip
Deleted ! - C:\Documents and Settings\LIONEL\Application Data\m\shared\Ad-Sweeper 1.2.zip
Deleted ! - C:\Documents and Settings\LIONEL\Application Data\m\shared\ADG Panorama Tools 5.2.0.10.zip
Deleted ! - C:\Documents and Settings\LIONEL\Application Data\m\shared\All_To_WMA_Converter_Pro_1.0_(Key+Serial).zip
Deleted ! - C:\Documents and Settings\LIONEL\Application Data\m\shared\Audioblast 1.6.3.zip
Deleted ! - C:\Documents and Settings\LIONEL\Application Data\m\shared\AudioGizmo_Ringtone_Creator_2.0.5_[Key+Serial].zip
Deleted ! - C:\Documents and Settings\LIONEL\Application Data\m\shared\AutoHit 1.0.4.zip
Deleted ! - C:\Documents and Settings\LIONEL\Application Data\m\shared\avast.Anti-virus.Home+Pro.Edition.4.7.826.=en+ru=free+pro=.updated-fixed.06-2006.zip
Deleted ! - C:\Documents and Settings\LIONEL\Application Data\m\shared\AVG_Cracked_by_LeftLink.zip
Deleted ! - C:\Documents and Settings\LIONEL\Application Data\m\shared\Balloon_Tooltips_.NET_2.0_Cracked.zip
Deleted ! - C:\Documents and Settings\LIONEL\Application Data\m\shared\Barcode_Prime_Image_Generator_for_UPCA_UPCE_1.1_[Crack].zip
Deleted ! - C:\Documents and Settings\LIONEL\Application Data\m\shared\Beneton Movie GIF 1.1.2.zip
Deleted ! - C:\Documents and Settings\LIONEL\Application Data\m\shared\BeTrapped_1.0.zip
Deleted ! - C:\Documents and Settings\LIONEL\Application Data\m\shared\BillPower_5.71.zip
Deleted ! - C:\Documents and Settings\LIONEL\Application Data\m\shared\Bricks'n'Tiles 1.5.2.zip
Deleted ! - C:\Documents and Settings\LIONEL\Application Data\m\shared\BuddyPIM_1.24.zip
Deleted ! - C:\Documents and Settings\LIONEL\Application Data\m\shared\Butterfly_Dance_1.zip
Deleted ! - C:\Documents and Settings\LIONEL\Application Data\m\shared\Can_I_Carry_1.5.zip
Deleted ! - C:\Documents and Settings\LIONEL\Application Data\m\shared\CD Audio MP3 Converter 2.8.zip
Deleted ! - C:\Documents and Settings\LIONEL\Application Data\m\shared\CD-Lock_1.0.zip
Deleted ! - C:\Documents and Settings\LIONEL\Application Data\m\shared\China2Go PhraseBook Lite (SH3) 2.0.zip
Deleted ! - C:\Documents and Settings\LIONEL\Application Data\m\shared\Chinwag IRC 1.01.zip
Deleted ! - C:\Documents and Settings\LIONEL\Application Data\m\shared\CompuApps DriveWizard 3.15.zip
Deleted ! - C:\Documents and Settings\LIONEL\Application Data\m\shared\CVS filter 1.56.zip
Deleted ! - C:\Documents and Settings\LIONEL\Application Data\m\shared\Cypher_1.0.zip
Deleted ! - C:\Documents and Settings\LIONEL\Application Data\m\shared\DataForm.NET 3.3.7777.zip
Deleted ! - C:\Documents and Settings\LIONEL\Application Data\m\shared\DE Decompiler 2.0.zip
Deleted ! - C:\Documents and Settings\LIONEL\Application Data\m\shared\Design_and_Implementing_Database_with_Microsoft_SQL_Server_2000_Enterprise_Edition_8.00.05.zip
Deleted ! - C:\Documents and Settings\LIONEL\Application Data\m\shared\Dive Time 2.6.140.zip
Deleted ! - C:\Documents and Settings\LIONEL\Application Data\m\shared\Doc2html_pro+_1.6_[KeyGen].zip
Deleted ! - C:\Documents and Settings\LIONEL\Application Data\m\shared\Do_It_1.00R.zip
Deleted ! - C:\Documents and Settings\LIONEL\Application Data\m\shared\DT_SecuriKey_0.0.6.zip
Deleted ! - C:\Documents and Settings\LIONEL\Application Data\m\shared\E-Card_DIY_5.95_Christmas.zip
Deleted ! - C:\Documents and Settings\LIONEL\Application Data\m\shared\easy Web Save 1.0.0.1039 Cracked.zip
Deleted ! - C:\Documents and Settings\LIONEL\Application Data\m\shared\Easy_Proxy_1.02.zip
Deleted ! - C:\Documents and Settings\LIONEL\Application Data\m\shared\Easy_Schedule_Maker_2.00.zip
Deleted ! - C:\Documents and Settings\LIONEL\Application Data\m\shared\eIQ Professional Suite 4.0.07.zip
Deleted ! - C:\Documents and Settings\LIONEL\Application Data\m\shared\Electronic_Greeting_Card_Construction_Set_2.0a_Patch_20.zip
Deleted ! - C:\Documents and Settings\LIONEL\Application Data\m\shared\Eluent Tools 1.90.zip
Deleted ! - C:\Documents and Settings\LIONEL\Application Data\m\shared\EmailDatabase_40.9.zip
Deleted ! - C:\Documents and Settings\LIONEL\Application Data\m\shared\ENT Server (Desktop Edition) 1.4.21 [KeyGen].zip
Deleted ! - C:\Documents and Settings\LIONEL\Application Data\m\shared\EnumIPs 1.0.zip
Deleted ! - C:\Documents and Settings\LIONEL\Application Data\m\shared\Events_notification_plugin_2.5.0.8.zip
Deleted ! - C:\Documents and Settings\LIONEL\Application Data\m\shared\Evidence_Begone_1.0_Key+Serial.zip
Deleted ! - C:\Documents and Settings\LIONEL\Application Data\m\shared\File Backup 1.0.zip
Deleted ! - C:\Documents and Settings\LIONEL\Application Data\m\shared\Flajector_2.1_(Key+Serial).zip
Deleted ! - C:\Documents and Settings\LIONEL\Application Data\m\shared\Flobo_Free_Anti_Spyware_Clean_1.5.zip
Deleted ! - C:\Documents and Settings\LIONEL\Application Data\m\shared\FreeSMTP.Net 1.0.zip
Deleted ! - C:\Documents and Settings\LIONEL\Application Data\m\shared\GhostSurf_Platinum_2007_KeyGen.zip
Deleted ! - C:\Documents and Settings\LIONEL\Application Data\m\shared\Ghost_in_the_Shell_2_Innocence_Screensaver.zip
Deleted ! - C:\Documents and Settings\LIONEL\Application Data\m\shared\Gogo DVD To PSP Converter 1.3.8.zip
Deleted ! - C:\Documents and Settings\LIONEL\Application Data\m\shared\GoPOP_1.0_(Cracked).zip
Deleted ! - C:\Documents and Settings\LIONEL\Application Data\m\shared\GPSMap 2.11.zip
Deleted ! - C:\Documents and Settings\LIONEL\Application Data\m\shared\Hi5_Friend_Adder_Bot_1.zip
Deleted ! - C:\Documents and Settings\LIONEL\Application Data\m\shared\HyperGold Screen Saver 1.5.zip
Deleted ! - C:\Documents and Settings\LIONEL\Application Data\m\shared\ImagePackIT 1.0.6.30357.zip
Deleted ! - C:\Documents and Settings\LIONEL\Application Data\m\shared\ImagePlus_1.zip
Deleted ! - C:\Documents and Settings\LIONEL\Application Data\m\shared\InstaColl 0.9.5630.40.zip
Deleted ! - C:\Documents and Settings\LIONEL\Application Data\m\shared\ISOchecker 1.10.zip
Deleted ! - C:\Documents and Settings\LIONEL\Application Data\m\shared\Karen's Autorun.inf Editor 1.4.zip
Deleted ! - C:\Documents and Settings\LIONEL\Application Data\m\shared\Kaspersky(†?­†úï‘-î†Y§)‘o?†©O‘ïKey†?S‡Tó†îô‡©ñ.zip
Deleted ! - C:\Documents and Settings\LIONEL\Application Data\m\shared\Kaspersky.Anti-Virus6.0.0.300R.Incl-Key.updated-fixed.07-2006.zip
Deleted ! - C:\Documents and Settings\LIONEL\Application Data\m\shared\Kotation 1.1.zip
Deleted ! - C:\Documents and Settings\LIONEL\Application Data\m\shared\Kumpadyz 1.0.zip
Deleted ! - C:\Documents and Settings\LIONEL\Application Data\m\shared\Little_RGB_Color_Picker_2.0.zip
Deleted ! - C:\Documents and Settings\LIONEL\Application Data\m\shared\Market_System_Analyzer_2.0_[Serial].zip
Deleted ! - C:\Documents and Settings\LIONEL\Application Data\m\shared\MAXA_Security_Tools_Lite_1.1.6.zip
Deleted ! - C:\Documents and Settings\LIONEL\Application Data\m\shared\Meeting Pal 1.40.zip
Deleted ! - C:\Documents and Settings\LIONEL\Application Data\m\shared\Metaspec C# Parser Library 2.0.0.108.zip
Deleted ! - C:\Documents and Settings\LIONEL\Application Data\m\shared\Metro Traffic Watch
Deleted ! - C:\Documents and Settings\LIONEL\Application Data\m\shared\Mp3Decode 1.0.zip
Deleted ! - C:\Documents and Settings\LIONEL\Application Data\m\shared\Mp3Decode_1.0.zip
Deleted ! - C:\Documents and Settings\LIONEL\Application Data\m\shared\Mp3_File_Editor_Plus_v5.11_[Key+Serial].zip
Deleted ! - C:\Documents and Settings\LIONEL\Application Data\m\shared\MpegProperties_1.0.zip
Deleted ! - C:\Documents and Settings\LIONEL\Application Data\m\shared\MTN - Movie Thumbnailer 0.56.zip
Deleted ! - C:\Documents and Settings\LIONEL\Application Data\m\shared\my.eraser 2.0.2 [With Crack].zip
Deleted ! - C:\Documents and Settings\LIONEL\Application Data\m\shared\myFiles_1.05.zip
Deleted ! - C:\Documents and Settings\LIONEL\Application Data\m\shared\mySI 1.0.1.zip
Deleted ! - C:\Documents and Settings\LIONEL\Application Data\m\shared\My_Graphics_Card_1.0.zip
Deleted ! - C:\Documents and Settings\LIONEL\Application Data\m\shared\Nagios_Desktop_sign_1.0.zip
Deleted ! - C:\Documents and Settings\LIONEL\Application Data\m\shared\NetRix_Component_1.1.zip
Deleted ! - C:\Documents and Settings\LIONEL\Application Data\m\shared\NOD32 2.70.26 Standard German by M0rpheuss.zip
Deleted ! - C:\Documents and Settings\LIONEL\Application Data\m\shared\nscrypt_1.5.zip
Deleted ! - C:\Documents and Settings\LIONEL\Application Data\m\shared\PDF Filler Pilot 1.32.zip
Deleted ! - C:\Documents and Settings\LIONEL\Application Data\m\shared\PIaB 1.0.zip
Deleted ! - C:\Documents and Settings\LIONEL\Application Data\m\shared\Pixel_Tracker_1.0.zip
Deleted ! - C:\Documents and Settings\LIONEL\Application Data\m\shared\Polyphonic_Ringtone_Converter_1.30.zip
Deleted ! - C:\Documents and Settings\LIONEL\Application Data\m\shared\Potolook Outlook Plugin 4.1.zip
Deleted ! - C:\Documents and Settings\LIONEL\Application Data\m\shared\Power_of_Appeals_5.65_Cracked.zip
Deleted ! - C:\Documents and Settings\LIONEL\Application Data\m\shared\ProTow Management XTR 7.21.zip
Deleted ! - C:\Documents and Settings\LIONEL\Application Data\m\shared\Radar In Motion 1.1.zip
Deleted ! - C:\Documents and Settings\LIONEL\Application Data\m\shared\Random Cartoons 1.0.0.0.zip
Deleted ! - C:\Documents and Settings\LIONEL\Application Data\m\shared\Real_Estate_Follow_Up_Software_(REFUS)_1.zip
Deleted ! - C:\Documents and Settings\LIONEL\Application Data\m\shared\Sales Cycle Manager (Palm) 2.0.zip
Deleted ! - C:\Documents and Settings\LIONEL\Application Data\m\shared\ShopClock 2.3.68.zip
Deleted ! - C:\Documents and Settings\LIONEL\Application Data\m\shared\SJCall_0.3.0.2.zip
Deleted ! - C:\Documents and Settings\LIONEL\Application Data\m\shared\SP Image2Icon 1.0.zip
Deleted ! - C:\Documents and Settings\LIONEL\Application Data\m\shared\Space_Flight_3D_Screensaver_1.4_[Cracked].zip
Deleted ! - C:\Documents and Settings\LIONEL\Application Data\m\shared\SQL7Print_7.14.73_[Key].zip
Deleted ! - C:\Documents and Settings\LIONEL\Application Data\m\shared\TableReport 2.0.zip
Deleted ! - C:\Documents and Settings\LIONEL\Application Data\m\shared\The Armor of the Magi (The Elder Scrolls III Morrowind).zip
Deleted ! - C:\Documents and Settings\LIONEL\Application Data\m\shared\The_Alldrinks_List_1.0.zip
Deleted ! - C:\Documents and Settings\LIONEL\Application Data\m\shared\ThinkCascade 1.0.zip
Deleted ! - C:\Documents and Settings\LIONEL\Application Data\m\shared\TIFF Merger Deluxe 1.2.6.zip
Deleted ! - C:\Documents and Settings\LIONEL\Application Data\m\shared\Total Fax 8.0.zip
Deleted ! - C:\Documents and Settings\LIONEL\Application Data\m\shared\Traffic_Jammer_Deluxe_1.05.zip
Deleted ! - C:\Documents and Settings\LIONEL\Application Data\m\shared\uCertify_PrepKit_for_test_70-210_12.7.05.zip
Deleted ! - C:\Documents and Settings\LIONEL\Application Data\m\shared\Unreal_Tournament_2003_-_Railgunner_skin.zip
Deleted ! - C:\Documents and Settings\LIONEL\Application Data\m\shared\Unreal_Tournament_2004_Friday_voice_pack.zip
Deleted ! - C:\Documents and Settings\LIONEL\Application Data\m\shared\USMProLib 1.0.zip
Deleted ! - C:\Documents and Settings\LIONEL\Application Data\m\shared\VariCAD_2007_2.01.zip
Deleted ! - C:\Documents and Settings\LIONEL\Application Data\m\shared\VAS_Free_System_Tools_1.0.1.zip
Deleted ! - C:\Documents and Settings\LIONEL\Application Data\m\shared\VClipboard 1.0.zip
Deleted ! - C:\Documents and Settings\LIONEL\Application Data\m\shared\Vehicle_Loan_Calculator_1.0.zip
Deleted ! - C:\Documents and Settings\LIONEL\Application Data\m\shared\VKPlayer 1.0.zip
Deleted ! - C:\Documents and Settings\LIONEL\Application Data\m\shared\VTrain_(Vocabulary_Trainer)_5.1_Build_105.zip
Deleted ! - C:\Documents and Settings\LIONEL\Application Data\m\shared\Warcraft_III_-_Assassins_Quest_Prologue.zip
Deleted ! - C:\Documents and Settings\LIONEL\Application Data\m\shared\Washington Traffic 1.0.4.zip
Deleted ! - C:\Documents and Settings\LIONEL\Application Data\m\shared\Washington_Post_Reader_1.7.zip
Deleted ! - C:\Documents and Settings\LIONEL\Application Data\m\shared\Watermark_Master_1.1.7.zip
Deleted ! - C:\Documents and Settings\LIONEL\Application Data\m\shared\WebWarper_Internet_Optimizer_2.51_(Key+Serial).zip
Deleted ! - C:\Documents and Settings\LIONEL\Application Data\m\shared\X-CashBox_2.3_[Crack].zip
Deleted ! - C:\Documents and Settings\LIONEL\Application Data\m\shared\Xilisoft DVD Audio Ripper 4.0.74.0419 Serial.zip
Deleted ! - C:\Documents and Settings\LIONEL\Application Data\m\shared\Xin Editor 0.4.1.zip
Deleted ! - C:\Documents and Settings\LIONEL\Application Data\m\shared\Yahoo Companion Toolbar 1.zip
Deleted ! - "C:\Documents and Settings\LIONEL\Application Data\m\shared"
Deleted ! - "C:\Documents and Settings\LIONEL\Application Data\m"

»»»» Supression files in C:\DOCUME~1\LIONEL\LOCALS~1\Temp

»»»» Supression files in C:\Documents and Settings\LIONEL\Local Settings\Temporary Internet Files\Content.IE5

Deleted ! - C:\Documents and Settings\LIONEL\Application Data\yahoo!\ymailphotos\lionelcandy\yphotos\d6e7\cb64re2.jpg
Deleted ! - C:\Documents and Settings\LIONEL\Local Settings\Temporary Internet Files\Content.IE5\KBLU7TIO\b64[1].jpg
Deleted ! - C:\Documents and Settings\LIONEL\Local Settings\Temporary Internet Files\Content.IE5\KBLU7TIO\b64[2].jpg
Deleted ! - C:\Documents and Settings\LIONEL\Local Settings\Temporary Internet Files\Content.IE5\KBLU7TIO\b64[3].jpg
Deleted ! - C:\Documents and Settings\LIONEL\Local Settings\Temporary Internet Files\Content.IE5\KBLU7TIO\b64[4].jpg
Deleted ! - C:\Documents and Settings\LIONEL\Local Settings\Temporary Internet Files\Content.IE5\KBLU7TIO\b64[5].jpg
Deleted ! - C:\Documents and Settings\LIONEL\Local Settings\Temporary Internet Files\Content.IE5\KBLU7TIO\b64[6].jpg
Deleted ! - C:\Documents and Settings\LIONEL\Local Settings\Temporary Internet Files\Content.IE5\KBLU7TIO\b64_1[1].jpg
Deleted ! - C:\Documents and Settings\LIONEL\Local Settings\Temporary Internet Files\Content.IE5\KBLU7TIO\b64_1[2].jpg
Deleted ! - C:\Documents and Settings\LIONEL\Local Settings\Temporary Internet Files\Content.IE5\KBLU7TIO\b64_1[3].jpg
Deleted ! - C:\Documents and Settings\LIONEL\Local Settings\Temporary Internet Files\Content.IE5\KBLU7TIO\b64_1[4].jpg
Deleted ! - C:\Documents and Settings\LIONEL\Local Settings\Temporary Internet Files\Content.IE5\KBLU7TIO\b64_2[10].jpg
Deleted ! - C:\Documents and Settings\LIONEL\Local Settings\Temporary Internet Files\Content.IE5\KBLU7TIO\b64_2[11].jpg
Deleted ! - C:\Documents and Settings\LIONEL\Local Settings\Temporary Internet Files\Content.IE5\KBLU7TIO\b64_2[1].jpg
Deleted ! - C:\Documents and Settings\LIONEL\Local Settings\Temporary Internet Files\Content.IE5\KBLU7TIO\b64_2[2].jpg
Deleted ! - C:\Documents and Settings\LIONEL\Local Settings\Temporary Internet Files\Content.IE5\KBLU7TIO\b64_2[3].jpg
Deleted ! - C:\Documents and Settings\LIONEL\Local Settings\Temporary Internet Files\Content.IE5\KBLU7TIO\b64_2[4].jpg
Deleted ! - C:\Documents and Settings\LIONEL\Local Settings\Temporary Internet Files\Content.IE5\KBLU7TIO\b64_2[5].jpg
Deleted ! - C:\Documents and Settings\LIONEL\Local Settings\Temporary Internet Files\Content.IE5\KBLU7TIO\b64_2[6].jpg
Deleted ! - C:\Documents and Settings\LIONEL\Local Settings\Temporary Internet Files\Content.IE5\KBLU7TIO\b64_2[7].jpg
Deleted ! - C:\Documents and Settings\LIONEL\Local Settings\Temporary Internet Files\Content.IE5\KBLU7TIO\b64_2[8].jpg
Deleted ! - C:\Documents and Settings\LIONEL\Local Settings\Temporary Internet Files\Content.IE5\KBLU7TIO\b64_2[9].jpg
Deleted ! - C:\Documents and Settings\LIONEL\Local Settings\Temporary Internet Files\Content.IE5\KBLU7TIO\b64_3[2].jpg
Deleted ! - C:\Documents and Settings\LIONEL\Local Settings\Temporary Internet Files\Content.IE5\KBLU7TIO\b64_3[3].jpg
Deleted ! - C:\Documents and Settings\LIONEL\Local Settings\Temporary Internet Files\Content.IE5\KBLU7TIO\b64_3[4].jpg
Deleted ! - C:\Documents and Settings\LIONEL\Local Settings\Temporary Internet Files\Content.IE5\KBLU7TIO\b64_3[5].jpg
Deleted ! - C:\Documents and Settings\LIONEL\Local Settings\Temporary Internet Files\Content.IE5\KBLU7TIO\mxd[1].jpg
Deleted ! - C:\Documents and Settings\LIONEL\Local Settings\Temporary Internet Files\Content.IE5\KBLU7TIO\mxd[2].jpg
Deleted ! - C:\Documents and Settings\LIONEL\Local Settings\Temporary Internet Files\Content.IE5\KBLU7TIO\mxd[3].jpg
Deleted ! - C:\Documents and Settings\LIONEL\Local Settings\Temporary Internet Files\Content.IE5\KBLU7TIO\mxd[4].jpg
Deleted ! - C:\Documents and Settings\LIONEL\Local Settings\Temporary Internet Files\Content.IE5\NF83MM90\b64[1].jpg
Deleted ! - C:\Documents and Settings\LIONEL\Local Settings\Temporary Internet Files\Content.IE5\NF83MM90\b64[2].jpg
Deleted ! - C:\Documents and Settings\LIONEL\Local Settings\Temporary Internet Files\Content.IE5\NF83MM90\b64[3].jpg
Deleted ! - C:\Documents and Settings\LIONEL\Local Settings\Temporary Internet Files\Content.IE5\NF83MM90\b64_1[1].jpg
Deleted ! - C:\Documents and Settings\LIONEL\Local Settings\Temporary Internet Files\Content.IE5\NF83MM90\b64_2[1].jpg
Deleted ! - C:\Documents and Settings\LIONEL\Local Settings\Temporary Internet Files\Content.IE5\NF83MM90\b64_2[2].jpg
Deleted ! - C:\Documents and Settings\LIONEL\Local Settings\Temporary Internet Files\Content.IE5\NF83MM90\b64_2[3].jpg
Deleted ! - C:\Documents and Settings\LIONEL\Local Settings\Temporary Internet Files\Content.IE5\NF83MM90\b64_2[4].jpg
Deleted ! - C:\Documents and Settings\LIONEL\Local Settings\Temporary Internet Files\Content.IE5\NF83MM90\b64_2[5].jpg
Deleted ! - C:\Documents and Settings\LIONEL\Local Settings\Temporary Internet Files\Content.IE5\NF83MM90\b64_2[6].jpg
Deleted ! - C:\Documents and Settings\LIONEL\Local Settings\Temporary Internet Files\Content.IE5\NF83MM90\b64_2[7].jpg
Deleted ! - C:\Documents and Settings\LIONEL\Local Settings\Temporary Internet Files\Content.IE5\NF83MM90\b64_3[10].jpg
Deleted ! - C:\Documents and Settings\LIONEL\Local Settings\Temporary Internet Files\Content.IE5\NF83MM90\b64_3[1].jpg
Deleted ! - C:\Documents and Settings\LIONEL\Local Settings\Temporary Internet Files\Content.IE5\NF83MM90\b64_3[2].jpg
Deleted ! - C:\Documents and Settings\LIONEL\Local Settings\Temporary Internet Files\Content.IE5\NF83MM90\b64_3[3].jpg
Deleted ! - C:\Documents and Settings\LIONEL\Local Settings\Temporary Internet Files\Content.IE5\NF83MM90\b64_3[4].jpg
Deleted ! - C:\Documents and Settings\LIONEL\Local Settings\Temporary Internet Files\Content.IE5\NF83MM90\b64_3[5].jpg
Deleted ! - C:\Documents and Settings\LIONEL\Local Settings\Temporary Internet Files\Content.IE5\NF83MM90\b64_3[6].jpg
Deleted ! - C:\Documents and Settings\LIONEL\Local Settings\Temporary Internet Files\Content.IE5\NF83MM90\b64_3[7].jpg
Deleted ! - C:\Documents and Settings\LIONEL\Local Settings\Temporary Internet Files\Content.IE5\NF83MM90\b64_3[8].jpg
Deleted ! - C:\Documents and Settings\LIONEL\Local Settings\Temporary Internet Files\Content.IE5\NF83MM90\b64_3[9].jpg
Deleted ! - C:\Documents and Settings\LIONEL\Local Settings\Temporary Internet Files\Content.IE5\NF83MM90\mxd[1].jpg
Deleted ! - C:\Documents and Settings\LIONEL\Local Settings\Temporary Internet Files\Content.IE5\OS3E80XP\b64[1].jpg
Deleted ! - C:\Documents and Settings\LIONEL\Local Settings\Temporary Internet Files\Content.IE5\OS3E80XP\b64[2].jpg
Deleted ! - C:\Documents and Settings\LIONEL\Local Settings\Temporary Internet Files\Content.IE5\OS3E80XP\b64[3].jpg
Deleted ! - C:\Documents and Settings\LIONEL\Local Settings\Temporary Internet Files\Content.IE5\OS3E80XP\b64_1[1].jpg
Deleted ! - C:\Documents and Settings\LIONEL\Local Settings\Temporary Internet Files\Content.IE5\OS3E80XP\b64_1[2].jpg
Deleted ! - C:\Documents and Settings\LIONEL\Local Settings\Temporary Internet Files\Content.IE5\OS3E80XP\b64_1[3].jpg
Deleted ! - C:\Documents and Settings\LIONEL\Local Settings\Temporary Internet Files\Content.IE5\OS3E80XP\b64_1[4].jpg
Deleted ! - C:\Documents and Settings\LIONEL\Local Settings\Temporary Internet Files\Content.IE5\OS3E80XP\b64_2[1].jpg
Deleted ! - C:\Documents and Settings\LIONEL\Local Settings\Temporary Internet Files\Content.IE5\OS3E80XP\b64_2[2].jpg
Deleted ! - C:\Documents and Settings\LIONEL\Local Settings\Temporary Internet Files\Content.IE5\OS3E80XP\b64_2[3].jpg
Deleted ! - C:\Documents and Settings\LIONEL\Local Settings\Temporary Internet Files\Content.IE5\OS3E80XP\b64_3[1].jpg
Deleted ! - C:\Documents and Settings\LIONEL\Local Settings\Temporary Internet Files\Content.IE5\OS3E80XP\b64_3[2].jpg
Deleted ! - C:\Documents and Settings\LIONEL\Local Settings\Temporary Internet Files\Content.IE5\OS3E80XP\b64_3[3].jpg
Deleted ! - C:\Documents and Settings\LIONEL\Local Settings\Temporary Internet Files\Content.IE5\OS3E80XP\b64_3[4].jpg
Deleted ! - C:\Documents and Settings\LIONEL\Local Settings\Temporary Internet Files\Content.IE5\OS3E80XP\b64_3[5].jpg
Deleted ! - C:\Documents and Settings\LIONEL\Local Settings\Temporary Internet Files\Content.IE5\OS3E80XP\b64_3[6].jpg
Deleted ! - C:\Documents and Settings\LIONEL\Local Settings\Temporary Internet Files\Content.IE5\OS3E80XP\b64_3[7].jpg
Deleted ! - C:\Documents and Settings\LIONEL\Local Settings\Temporary Internet Files\Content.IE5\OS3E80XP\mxd[1].jpg
Deleted ! - C:\Documents and Settings\LIONEL\Local Settings\Temporary Internet Files\Content.IE5\OS3E80XP\mxd[2].jpg
Deleted ! - C:\Documents and Settings\LIONEL\Local Settings\Temporary Internet Files\Content.IE5\U9Y7M77H\b64[1].jpg
Deleted ! - C:\Documents and Settings\LIONEL\Local Settings\Temporary Internet Files\Content.IE5\U9Y7M77H\b64[2].jpg
Deleted ! - C:\Documents and Settings\LIONEL\Local Settings\Temporary Internet Files\Content.IE5\U9Y7M77H\b64[3].jpg
Deleted ! - C:\Documents and Settings\LIONEL\Local Settings\Temporary Internet Files\Content.IE5\U9Y7M77H\b64[4].jpg
Deleted ! - C:\Documents and Settings\LIONEL\Local Settings\Temporary Internet Files\Content.IE5\U9Y7M77H\b64[5].jpg
Deleted ! - C:\Documents and Settings\LIONEL\Local Settings\Temporary Internet Files\Content.IE5\U9Y7M77H\b64_1[1].jpg
Deleted ! - C:\Documents and Settings\LIONEL\Local Settings\Temporary Internet Files\Content.IE5\U9Y7M77H\b64_1[2].jpg
Deleted ! - C:\Documents and Settings\LIONEL\Local Settings\Temporary Internet Files\Content.IE5\U9Y7M77H\b64_1[3].jpg
Deleted ! - C:\Documents and Settings\LIONEL\Local Settings\Temporary Internet Files\Content.IE5\U9Y7M77H\b64_1[4].jpg
Deleted ! - C:\Documents and Settings\LIONEL\Local Settings\Temporary Internet Files\Content.IE5\U9Y7M77H\b64_1[5].jpg
Deleted ! - C:\Documents and Settings\LIONEL\Local Settings\Temporary Internet Files\Content.IE5\U9Y7M77H\b64_1[6].jpg
Deleted ! - C:\Documents and Settings\LIONEL\Local Settings\Temporary Internet Files\Content.IE5\U9Y7M77H\b64_1[7].jpg
Deleted ! - C:\Documents and Settings\LIONEL\Local Settings\Temporary Internet Files\Content.IE5\U9Y7M77H\b64_2[1].jpg
Deleted ! - C:\Documents and Settings\LIONEL\Local Settings\Temporary Internet Files\Content.IE5\U9Y7M77H\b64_2[2].jpg
Deleted ! - C:\Documents and Settings\LIONEL\Local Settings\Temporary Internet Files\Content.IE5\U9Y7M77H\b64_2[3].jpg
Deleted ! - C:\Documents and Settings\LIONEL\Local Settings\Temporary Internet Files\Content.IE5\U9Y7M77H\b64_2[4].jpg
Deleted ! - C:\Documents and Settings\LIONEL\Local Settings\Temporary Internet Files\Content.IE5\U9Y7M77H\b64_2[5].jpg
Deleted ! - C:\Documents and Settings\LIONEL\Local Settings\Temporary Internet Files\Content.IE5\U9Y7M77H\b64_3[1].jpg
Deleted ! - C:\Documents and Settings\LIONEL\Local Settings\Temporary Internet Files\Content.IE5\U9Y7M77H\b64_3[2].jpg
Deleted ! - C:\Documents and Settings\LIONEL\Local Settings\Temporary Internet Files\Content.IE5\U9Y7M77H\b64_3[3].jpg
Deleted ! - C:\Documents and Settings\LIONEL\Local Settings\Temporary Internet Files\Content.IE5\U9Y7M77H\b64_3[4].jpg
Deleted ! - C:\Documents and Settings\LIONEL\Local Settings\Temporary Internet Files\Content.IE5\U9Y7M77H\b64_3[5].jpg
Deleted ! - C:\Documents and Settings\LIONEL\Local Settings\Temporary Internet Files\Content.IE5\U9Y7M77H\b64_3[6].jpg
Deleted ! - C:\Documents and Settings\LIONEL\Local Settings\Temporary Internet Files\Content.IE5\U9Y7M77H\mxd[1].jpg
Deleted ! - C:\Documents and Settings\LIONEL\Local Settings\Temporary Internet Files\Content.IE5\U9Y7M77H\mxd[2].jpg
Deleted ! - C:\Documents and Settings\LIONEL\Local Settings\Temporary Internet Files\Content.IE5\U9Y7M77H\mxd[3].jpg
Deleted ! - C:\Documents and Settings\LIONEL\Mes documents\Ma musique\AlbumArt_{EDA2CAA6-ADB3-473C-B642-08A098C80DEA}_Large.jpg
Deleted ! - C:\Documents and Settings\LIONEL\Mes documents\Ma musique\AlbumArt_{EDA2CAA6-ADB3-473C-B642-08A098C80DEA}_Small.jpg

--------------- [ Registry / Infected keys ] ----------------

Deleted ! - HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_SROSA
Deleted ! - HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Enum\Root\LEGACY_SROSA
Deleted ! - HKEY_CURRENT_CONFIG\System\CurrentControlSet\Enum\ROOT\LEGACY_SROSA
Deleted ! - HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_SK9OU0S
Deleted ! - HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Enum\Root\LEGACY_SK9OU0S
Deleted ! - HKEY_LOCAL_MACHINE\SYSTEM\ControlSet004\Enum\Root\LEGACY_SK9OU0S
Deleted ! - HKEY_USERS\S-1-5-21-3376078148-97400744-4212676017-1007\Software\Local AppWizard-Generated Applications\winfilse

--------------- [ States / Restarting of services ] ----------------

+- Safe boot mode restored !

+- Services : [ Auto=2 / Request=3 / Disable=4 ]

Ndisuio - Type of startup = 3

Ip6Fw - Type of startup = 2

SharedAccess - Type of startup = 2

wuauserv - Type of startup = 2

wscsvc - Type of startup = 2

--------------- [ Cleaning removable drives ] ----------------

+- Informations :

C: - Lecteur fixe

+- deleting files :

--------------- [ Registry / Mountpoint2 ] ----------------

-> Not found !

--------------- [ Searching Cracks / Keygen ] ----------------

C:\Documents and Settings\LIONEL\Mes documents\batterie\crack.nfo
C:\Documents and Settings\LIONEL\Mes documents\Ma musique\Blues\Calvin Russel\Calvin Russel - This is my life - 02 - Crack in time.mp3
C:\Documents and Settings\LIONEL\Mes documents\Ma musique\Blues\Calvin Russel\Calvin Russel\Calvin Russel - This is my life - 02 - Crack in time.mp3

---------------- ! End of report ! ------------------
0
Réponse 8 / 15
leyoyo Messages postés 11 Statut Membre
 
voilà!Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 23:34:30, on 18/11/2008
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.6000.16735)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Apps\ActivBoard\nhksrv.exe
C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
C:\Program Files\Fichiers communs\Microsoft Shared\VS7Debug\mdm.exe
C:\WINDOWS\system32\nvsvc32.exe
C:\WINDOWS\system32\slserv.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Virtual CD v4 SDK\system\vcssecs.exe
C:\WINDOWS\system32\wscntfy.exe
C:\WINDOWS\explorer.exe
C:\WINDOWS\system32\ctfmon.exe
C:\WINDOWS\system32\wuauclt.exe
C:\WINDOWS\system32\notepad.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Program Files\Trend Micro\HijackThis\HijackThis.exe
C:\WINDOWS\SoftwareDistribution\Download\405ae8e48aa46e265982686e1678047b\update\update.exe
C:\WINDOWS\system32\wuauclt.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = https://www.msn.com/fr-fr
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = https://www.msn.com/fr-fr
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.msn.com/fr-fr
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Window Title = Windows Internet Explorer optimisé pour MSN
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
R3 - URLSearchHook: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn0\yt.dll
O2 - BHO: Yahoo! Toolbar Helper - {02478D38-C3F9-4EFB-9B51-7695ECA05670} - C:\Program Files\Yahoo!\Companion\Installs\cpn0\yt.dll
O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Fichiers communs\Adobe\Acrobat\ActiveX\AcroIEHelper.dll
O2 - BHO: RealPlayer Download and Record Plugin for Internet Explorer - {3049C3E9-B461-4BC5-8870-4C09146192CA} - C:\Program Files\Real\RealPlayer\rpbrowserrecordplugin.dll
O2 - BHO: Spybot-S&D IE Protection - {53707962-6F74-2D53-2644-206D7942484F} - C:\Program Files\Spybot - Search & Destroy\SDHelper.dll
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\JavaSoft\JRE\1.1\bin\ssv.dll (file missing)
O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar1.dll
O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\4.1.805.4472\swg.dll
O2 - BHO: Windows Live Toolbar Helper - {BDBD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\Windows Live Toolbar\msntb.dll
O2 - BHO: (no name) - {FDD3B846-8D59-4ffb-8758-209B6AD74ACC} - C:\Program Files\Microsoft Money\System\mnyviewer.dll
O3 - Toolbar: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn0\yt.dll
O3 - Toolbar: Windows Live Toolbar - {BDAD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\Windows Live Toolbar\msntb.dll
O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar1.dll
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe" -osboot
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\JavaSoft\JRE\1.1\bin\jusched.exe"
O4 - HKLM\..\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
O4 - HKCU\..\Run: [MSMSGS] "C:\Program Files\Messenger\msmsgs.exe" /background
O4 - HKCU\..\Run: [SpybotSD TeaTimer] C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'Default user')
O8 - Extra context menu item: &Windows Live Search - res://C:\Program Files\Windows Live Toolbar\msntb.dll/search.htm
O9 - Extra button: Packard Bell - {1D49B7D4-524D-4ac9-BC34-B4822CAE4BB1} - C:\Apps\IECustom\script.htm
O9 - Extra button: Messenger - {4528BBE0-4E08-11D5-AD55-00010333D0AD} - C:\PROGRA~1\Yahoo!\Common\yhexbmesfr.dll
O9 - Extra 'Tools' menuitem: Yahoo! Messenger - {4528BBE0-4E08-11D5-AD55-00010333D0AD} - C:\PROGRA~1\Yahoo!\Common\yhexbmesfr.dll
O9 - Extra button: (no name) - {CD67F990-D8E9-11d2-98FE-00C0F0318AFE} - (no file)
O9 - Extra button: (no name) - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\Program Files\Spybot - Search & Destroy\SDHelper.dll
O9 - Extra 'Tools' menuitem: Spybot - Search && Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\Program Files\Spybot - Search & Destroy\SDHelper.dll
O9 - Extra button: MoneySide - {E023F504-0C5A-4750-A1E7-A9046DEA8A21} - C:\Program Files\Microsoft Money\System\mnyviewer.dll
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - ALWIL Software - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
O23 - Service: avast! Antivirus - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashServ.exe
O23 - Service: avast! Mail Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
O23 - Service: avast! Web Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: Netropa NHK Server (nhksrv) - Unknown owner - C:\Apps\ActivBoard\nhksrv.exe
O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe
O23 - Service: SmartLinkService (SLService) - Smart Link - C:\WINDOWS\SYSTEM32\slserv.exe
O23 - Service: Virtual CD v4 Security service (SDK - Version) (VCSSecS) - H+H Software GmbH - C:\Program Files\Virtual CD v4 SDK\system\vcssecs.exe
0
Réponse 9 / 15
Utilisateur anonyme
 
Hi,

-Télécharge et installe MalwareByte's Anti-Malware
Malwarebyte

- Mets le à jour

---
- Double clique sur le raccourci de MalwareByte's Anti-Malware qui est sur le bureau.
- Sélectionne Exécuter un examen complet si ce n'est pas déjà fait
- clique sur Rechercher

- Une fois le scan terminé, une fenêtre s'ouvre, clique sur sur Ok

- Si MalwareByte's n'a rien détecté, clique sur Ok Un rapport va apparaître ferme-le.

- Si MalwareByte's a détecté des infections, clique sur Afficher les résultats ensuite sur Supprimer la sélection

- Enregistre le rapport sur ton Bureau comme cela il sera plus facile à retrouver, poste ensuite ce rapport.

Note : Si MalwareByte's a besoin de redémarrer pour terminer la suppression, accepte en cliquant sur Ok

Alut.
0
Réponse 10 / 15
leyoyo Messages postés 11 Statut Membre
 
Hello Drhouse,

voici le post du dernier rapport de Malwarebytes' Anti-Malware.
Merci de ton aide .
que reste t il à faire ?

Malwarebytes' Anti-Malware 1.30
Version de la base de données: 1410
Windows 5.1.2600 Service Pack 2

19/11/2008 07:19:20
mbam-log-2008-11-19 (07-19-20).txt

Type de recherche: Examen complet (C:\|)
Eléments examinés: 94266
Temps écoulé: 3 hour(s), 44 minute(s), 50 second(s)

Processus mémoire infecté(s): 0
Module(s) mémoire infecté(s): 0
Clé(s) du Registre infectée(s): 0
Valeur(s) du Registre infectée(s): 0
Elément(s) de données du Registre infecté(s): 0
Dossier(s) infecté(s): 0
Fichier(s) infecté(s): 2

Processus mémoire infecté(s):
(Aucun élément nuisible détecté)

Module(s) mémoire infecté(s):
(Aucun élément nuisible détecté)

Clé(s) du Registre infectée(s):
(Aucun élément nuisible détecté)

Valeur(s) du Registre infectée(s):
(Aucun élément nuisible détecté)

Elément(s) de données du Registre infecté(s):
(Aucun élément nuisible détecté)

Dossier(s) infecté(s):
(Aucun élément nuisible détecté)

Fichier(s) infecté(s):
C:\System Volume Information\_restore{A51C5CDE-3710-45ED-AEAF-4DBEE7E77752}\RP1263\A0179281.sys (Trojan.Downloader) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{A51C5CDE-3710-45ED-AEAF-4DBEE7E77752}\RP1264\A0179360.sys (Trojan.Downloader) -> Quarantined and deleted successfully.
0
Réponse 11 / 15
Utilisateur anonyme
 
Hi;

Refait un hijackthis.

Alut.
0
Réponse 12 / 15
leyoyo Messages postés 11 Statut Membre
 
Dois je selectionner fixe checked?

Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 10:35:39, on 20/11/2008
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.6000.16735)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\spoolsv.exe
C:\Apps\ActivBoard\nhksrv.exe
C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
C:\Program Files\Fichiers communs\Microsoft Shared\VS7Debug\mdm.exe
C:\WINDOWS\system32\nvsvc32.exe
C:\WINDOWS\system32\ctfmon.exe
C:\WINDOWS\system32\slserv.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Virtual CD v4 SDK\system\vcssecs.exe
C:\Program Files\Messenger\msmsgs.exe
C:\WINDOWS\system32\wscntfy.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Program Files\Malwarebytes' Anti-Malware\mbam.exe
C:\WINDOWS\system32\NOTEPAD.EXE
C:\WINDOWS\system32\wuauclt.exe
C:\Program Files\Trend Micro\HijackThis\HijackThis.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://fr.msn.com/
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://fr.msn.com/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.msn.com/fr-fr
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Window Title = Windows Internet Explorer optimisé pour MSN
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
R3 - URLSearchHook: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn0\yt.dll
O2 - BHO: Yahoo! Toolbar Helper - {02478D38-C3F9-4EFB-9B51-7695ECA05670} - C:\Program Files\Yahoo!\Companion\Installs\cpn0\yt.dll
O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Fichiers communs\Adobe\Acrobat\ActiveX\AcroIEHelper.dll
O2 - BHO: RealPlayer Download and Record Plugin for Internet Explorer - {3049C3E9-B461-4BC5-8870-4C09146192CA} - C:\Program Files\Real\RealPlayer\rpbrowserrecordplugin.dll
O2 - BHO: Spybot-S&D IE Protection - {53707962-6F74-2D53-2644-206D7942484F} - C:\Program Files\Spybot - Search & Destroy\SDHelper.dll
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\JavaSoft\JRE\1.1\bin\ssv.dll (file missing)
O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar1.dll
O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\4.1.805.4472\swg.dll
O2 - BHO: Windows Live Toolbar Helper - {BDBD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\Windows Live Toolbar\msntb.dll
O2 - BHO: (no name) - {FDD3B846-8D59-4ffb-8758-209B6AD74ACC} - C:\Program Files\Microsoft Money\System\mnyviewer.dll
O3 - Toolbar: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn0\yt.dll
O3 - Toolbar: Windows Live Toolbar - {BDAD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\Windows Live Toolbar\msntb.dll
O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar1.dll
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe" -osboot
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\JavaSoft\JRE\1.1\bin\jusched.exe"
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
O4 - HKCU\..\Run: [MSMSGS] "C:\Program Files\Messenger\msmsgs.exe" /background
O4 - HKCU\..\Run: [SpybotSD TeaTimer] C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'Default user')
O8 - Extra context menu item: &Windows Live Search - res://C:\Program Files\Windows Live Toolbar\msntb.dll/search.htm
O9 - Extra button: Packard Bell - {1D49B7D4-524D-4ac9-BC34-B4822CAE4BB1} - C:\Apps\IECustom\script.htm
O9 - Extra button: Messenger - {4528BBE0-4E08-11D5-AD55-00010333D0AD} - C:\PROGRA~1\Yahoo!\Common\yhexbmesfr.dll
O9 - Extra 'Tools' menuitem: Yahoo! Messenger - {4528BBE0-4E08-11D5-AD55-00010333D0AD} - C:\PROGRA~1\Yahoo!\Common\yhexbmesfr.dll
O9 - Extra button: (no name) - {CD67F990-D8E9-11d2-98FE-00C0F0318AFE} - (no file)
O9 - Extra button: (no name) - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\Program Files\Spybot - Search & Destroy\SDHelper.dll
O9 - Extra 'Tools' menuitem: Spybot - Search && Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\Program Files\Spybot - Search & Destroy\SDHelper.dll
O9 - Extra button: MoneySide - {E023F504-0C5A-4750-A1E7-A9046DEA8A21} - C:\Program Files\Microsoft Money\System\mnyviewer.dll
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: Netropa NHK Server (nhksrv) - Unknown owner - C:\Apps\ActivBoard\nhksrv.exe
O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe
O23 - Service: SmartLinkService (SLService) - Smart Link - C:\WINDOWS\SYSTEM32\slserv.exe
O23 - Service: Virtual CD v4 Security service (SDK - Version) (VCSSecS) - H+H Software GmbH - C:\Program Files\Virtual CD v4 SDK\system\vcssecs.exe
0
Réponse 13 / 15
Utilisateur anonyme
 
Hi,

Relance hijack et clique sur "Do a system scan only"

Ensuite recherche ces lignes et coches les cases

O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\JavaSoft\JRE\1.1\bin\ssv.dll (file missing)

O9 - Extra button: (no name) - {CD67F990-D8E9-11d2-98FE-00C0F0318AFE} - (no file)

Ensuite clique sur "Fix checked"
=*=*=*=*=*=*=*=*=*=*=*=*=*=*=*=*=*=*=*=*=*=*=*=*=*=*=*=*=*=*=*=*=*=*=*=*=*=*=*=*=
Télécharge toolscleaner sur ton Bureau :

toolscleaner

* Double-clique sur ToolsCleaner2.exe et laisse le travailler
* Clique sur Recherche et laisse le scan se terminer.
* Clique sur Suppression pour finaliser.
* Tu peux, si tu le souhaites, te servir des Options facultatives.
* Clique sur Quitter, pour que le rapport puisse se créer.
* Le rapport (TCleaner.txt) se trouve à la racine de votre disque dur (C:\)...colle le dans ta réponse

Désactive et réactive la Restauration du système :

1 Dans la barre des tâches de Windows, clique sur Démarrer.

2 Clique avec le bouton droit de la souris sur Poste de travail puis clique sur Propriétés.

3 Dans l'onglet Restauration du système, coche "Désactiver la Restauration du système"

4 Clique sur Appliquer.

5 Ensuite décoche "Désactiver la restauration du systeme"

6 clique sur appliquer puis ok

7 vas créer un point de restauration dans accessoires----outils systeme----restauration du systeme.

Alut.
0
Réponse 14 / 15
leyoyo Messages postés 11 Statut Membre
 
[ Rapport ToolsCleaner version 2.2.6 (par A.Rothstein & dj QUIOU) ]

-->- Recherche:

C:\FindyKill.txt: trouvé !
C:\avenger: trouvé !
C:\Documents and Settings\All Users\Menu Démarrer\Programmes\HijackThis: trouvé !
C:\Documents and Settings\All Users\Menu Démarrer\Programmes\HijackThis\HijackThis.lnk: trouvé !
C:\Documents and Settings\LIONEL\Bureau\HijackThis.lnk: trouvé !
C:\Documents and Settings\LIONEL\Bureau\DiagHelp.zip: trouvé !
C:\Documents and Settings\LIONEL\Bureau\HJTInstall.exe: trouvé !
C:\Documents and Settings\LIONEL\Bureau\DiagHelp: trouvé !
C:\Documents and Settings\LIONEL\Bureau\DiagHelp\DiagHelp: trouvé !
C:\Documents and Settings\LIONEL\Menu Démarrer\Programmes\FindyKill: trouvé !
C:\Program Files\FindyKill: trouvé !
C:\Program Files\Trend Micro\HijackThis: trouvé !
C:\Program Files\Trend Micro\HijackThis\HijackThis.exe: trouvé !
C:\Program Files\Trend Micro\HijackThis\hijackthis.log: trouvé !
C:\WINDOWS\msnfix.txt: trouvé !

---------------------------------
-->- Suppression:

C:\Documents and Settings\All Users\Menu Démarrer\Programmes\HijackThis\HijackThis.lnk: supprimé !
C:\Documents and Settings\LIONEL\Bureau\HijackThis.lnk: supprimé !
C:\Documents and Settings\LIONEL\Bureau\DiagHelp.zip: supprimé !
C:\Documents and Settings\LIONEL\Bureau\HJTInstall.exe: supprimé !
C:\Program Files\Trend Micro\HijackThis\HijackThis.exe: supprimé !
C:\FindyKill.txt: supprimé !
C:\Program Files\Trend Micro\HijackThis\hijackthis.log: supprimé !
C:\WINDOWS\msnfix.txt: supprimé !
C:\avenger: supprimé !
C:\Documents and Settings\All Users\Menu Démarrer\Programmes\HijackThis: supprimé !
C:\Documents and Settings\LIONEL\Bureau\DiagHelp: supprimé !
C:\Documents and Settings\LIONEL\Menu Démarrer\Programmes\FindyKill: supprimé !
C:\Program Files\FindyKill: supprimé !
C:\Program Files\Trend Micro\HijackThis: supprimé !

Point de restauration crée !
Corbeille vidée!
Fichiers temporaires nettoyés !
0
Réponse 15 / 15
leyoyo Messages postés 11 Statut Membre
 
voilà le point de restauration a été crée!
Qu en pense l expert ?
0