Aller au contenu

velomania49

Membres
 Afficher le profil  Afficher son activité

  • Compteur de contenus

    36

  • Inscription

  • Dernière visite

À propos de velomania49

  • Date de naissance 09/05/1984

Contact Methods

  • Website URL
    http://www.unioncyclistecholet49.com
  • ICQ
    0

Profile Information

  • Sexe
    Male
  • Localisation
    Cholet

velomania49's Achievements

Member

Member (4/12)

0

Réputation sur la communauté

  1. velomania49
    Bonjour, En espérant poster au bon endroit...j'aurai voulu en savoir un peu plus sur l'extension .mmap J'ai trouver dans un dossier, laissé par un collègue qui n'est plus dans notre service, deux fichiers .mmap et je ne sais pas comment il est possible de les ouvrir. D'avance merci.
  2. velomania49
    Bonjour Bruce, merci pour tout, le pc va bien mieux et google earth est désinstallé. @ bientôt (enfin pas trop bientôt j'espère )
  3. velomania49
    Bonsoir Bruce, dsl ça fait longtemps, j'ai pris quelques jours de vacances avant de commencer le boulot mais bon il a pas fait beau ! mais bon c'est toujours du repos. Sinon pour en revenir à google earth voici le rapport de Regsearch : REGEDIT4 ; Registry Search by Bobbi Flekman © 2005 ; Version: 1.0.2.4 ; Results at 30/06/2007 01:14:51 for strings: ; 'google earth' ; Strings excluded from search: ; (None) ; Search in: ; Registry Keys Registry Values Registry Data ; HKEY_LOCAL_MACHINE HKEY_USERS [HKEY_LOCAL_MACHINE\SOFTWARE\ATI Technologies\CDS\Software] "ProgramItem0115"="[Google Earth] (0x00000000)" [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\.eta] @="Google Earth.etafile" [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\.kml] @="Google Earth.kmlfile" [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\.kmz] @="Google Earth.kmzfile" [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Google Earth.etafile] [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Google Earth.etafile] @="Google Earth ETA" [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Google Earth.etafile\shell] [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Google Earth.etafile\shell\open] [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Google Earth.etafile\shell\open\command] [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Google Earth.etafile\shell\open\command] @="d:\\Google\\Google Earth\\googleearth.exe \"%1\"" [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Google Earth.kmlfile] [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Google Earth.kmlfile] @="Google Earth KML" [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Google Earth.kmlfile\DefaultIcon] [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Google Earth.kmlfile\DefaultIcon] @="d:\\Google\\Google Earth\\kml_file.ico" [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Google Earth.kmlfile\shell] [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Google Earth.kmlfile\shell\open] [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Google Earth.kmlfile\shell\open\command] [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Google Earth.kmlfile\shell\open\command] @="d:\\Google\\Google Earth\\googleearth.exe \"%1\"" [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Google Earth.kmzfile] [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Google Earth.kmzfile] @="Google Earth KMZ" [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Google Earth.kmzfile\DefaultIcon] [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Google Earth.kmzfile\DefaultIcon] @="d:\\Google\\Google Earth\\kmz_file.ico" [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Google Earth.kmzfile\shell] [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Google Earth.kmzfile\shell\open] [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Google Earth.kmzfile\shell\open\command] [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Google Earth.kmzfile\shell\open\command] @="d:\\Google\\Google Earth\\googleearth.exe \"%1\"" [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\TypeLib\{3476FAB2-687F-4EA6-9AC2-88D72DC7D7FC}\1.0\win32] @="d:\\Google\\Google Earth\\GoogleEarth.exe" [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\TypeLib\{3476FAB2-687F-4EA6-9AC2-88D72DC7D7FC}\1.0\HELPDIR] @="d:\\Google\\Google Earth\\" [HKEY_LOCAL_MACHINE\SOFTWARE\Google\Google Earth] [HKEY_LOCAL_MACHINE\SOFTWARE\Google\Google Earth\3.0.0548] [HKEY_LOCAL_MACHINE\SOFTWARE\Google\Google Earth Plus] [HKEY_LOCAL_MACHINE\SOFTWARE\Google\Google Earth Plus] "InstallDir"="d:\\Google\\Google Earth" [HKEY_LOCAL_MACHINE\SOFTWARE\Google\Google Earth Plus] "InstallRoot"="d:\\Google\\Google Earth" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\SharedDLLs] "d:\\Google\\Google Earth\\res\\american-flag.png"=dword:00000001 [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\SharedDLLs] "d:\\Google\\Google Earth\\res\\arrow.png"=dword:00000001 [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\SharedDLLs] "d:\\Google\\Google Earth\\res\\asian-flag.png"=dword:00000001 [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\SharedDLLs] "d:\\Google\\Google Earth\\res\\auto-service.png"=dword:00000001 [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\SharedDLLs] "d:\\Google\\Google Earth\\res\\auto.png"=dword:00000001 [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\SharedDLLs] "d:\\Google\\Google Earth\\res\\bang.png"=dword:00000001 [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\SharedDLLs] "d:\\Google\\Google Earth\\res\\bars.png"=dword:00000001 [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\SharedDLLs] "d:\\Google\\Google Earth\\res\\building.png"=dword:00000001 [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\SharedDLLs] "d:\\Google\\Google Earth\\res\\coffee_house_16.png"=dword:00000001 [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\SharedDLLs] "d:\\Google\\Google Earth\\res\\crosshair.png"=dword:00000001 [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\SharedDLLs] "d:\\Google\\Google Earth\\res\\dining.png"=dword:00000001 [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\SharedDLLs] "d:\\Google\\Google Earth\\res\\dining_16.png"=dword:00000001 [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\SharedDLLs] "d:\\Google\\Google Earth\\res\\dot.png"=dword:00000001 [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\SharedDLLs] "d:\\Google\\Google Earth\\res\\fast-food.png"=dword:00000001 [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\SharedDLLs] "d:\\Google\\Google Earth\\res\\four-dollars.png"=dword:00000001 [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\SharedDLLs] "d:\\Google\\Google Earth\\res\\french-flag.png"=dword:00000001 [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\SharedDLLs] "d:\\Google\\Google Earth\\res\\hand.png"=dword:00000001 [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\SharedDLLs] "d:\\Google\\Google Earth\\res\\highway_16.png"=dword:00000001 [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\SharedDLLs] "d:\\Google\\Google Earth\\res\\high_res_places.png"=dword:00000001 [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\SharedDLLs] "d:\\Google\\Google Earth\\res\\italian-flag.png"=dword:00000001 [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\SharedDLLs] "d:\\Google\\Google Earth\\res\\large_traffic_count_16.png"=dword:00000001 [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\SharedDLLs] "d:\\Google\\Google Earth\\res\\loading.png"=dword:00000001 [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\SharedDLLs] "d:\\Google\\Google Earth\\res\\metacarta.png"=dword:00000001 [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\SharedDLLs] "d:\\Google\\Google Earth\\res\\metacartahl.png"=dword:00000001 [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\SharedDLLs] "d:\\Google\\Google Earth\\res\\mexican-flag.png"=dword:00000001 [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\SharedDLLs] "d:\\Google\\Google Earth\\res\\misc-dining.png"=dword:00000001 [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\SharedDLLs] "d:\\Google\\Google Earth\\res\\note.png"=dword:00000001 [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\SharedDLLs] "d:\\Google\\Google Earth\\res\\notfound.png"=dword:00000001 [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\SharedDLLs] "d:\\Google\\Google Earth\\res\\one-dollar.png"=dword:00000001 [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\SharedDLLs] "d:\\Google\\Google Earth\\res\\overviewframe.png"=dword:00000001 [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\SharedDLLs] "d:\\Google\\Google Earth\\res\\palette-2.png"=dword:00000001 [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\SharedDLLs] "d:\\Google\\Google Earth\\res\\palette-3.png"=dword:00000001 [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\SharedDLLs] "d:\\Google\\Google Earth\\res\\palette-4.png"=dword:00000001 [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\SharedDLLs] "d:\\Google\\Google Earth\\res\\palette-5.png"=dword:00000001 [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\SharedDLLs] "d:\\Google\\Google Earth\\res\\parks.png"=dword:00000001 [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\SharedDLLs] "d:\\Google\\Google Earth\\res\\premium_lock.png"=dword:00000001 [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\SharedDLLs] "d:\\Google\\Google Earth\\res\\premium_locked.png"=dword:00000001 [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\SharedDLLs] "d:\\Google\\Google Earth\\res\\premium_star.png"=dword:00000001 [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\SharedDLLs] "d:\\Google\\Google Earth\\res\\recreation.png"=dword:00000001 [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\SharedDLLs] "d:\\Google\\Google Earth\\res\\school_16.png"=dword:00000001 [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\SharedDLLs] "d:\\Google\\Google Earth\\res\\search.png"=dword:00000001 [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\SharedDLLs] "d:\\Google\\Google Earth\\res\\streamed_layer.png"=dword:00000001 [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\SharedDLLs] "d:\\Google\\Google Earth\\res\\streamed_layers.png"=dword:00000001 [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\SharedDLLs] "d:\\Google\\Google Earth\\res\\terrain_16.png"=dword:00000001 [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\SharedDLLs] "d:\\Google\\Google Earth\\res\\three-dollars.png"=dword:00000001 [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\SharedDLLs] "d:\\Google\\Google Earth\\res\\transportation.png"=dword:00000001 [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\SharedDLLs] "d:\\Google\\Google Earth\\res\\two-dollars.png"=dword:00000001 [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\SharedDLLs] "d:\\Google\\Google Earth\\res\\webcam_16.png"=dword:00000001 [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{3DE5E7D4-7B88-403C-A3FD-2017A8240C5B}] "InstallLocation"="d:\\Google\\Google Earth" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{3DE5E7D4-7B88-403C-A3FD-2017A8240C5B}] "DisplayName"="Google Earth" [HKEY_USERS\S-1-5-21-602162358-651377827-839522115-1003\Software\Google\Google Earth Plus] [HKEY_USERS\S-1-5-21-602162358-651377827-839522115-1003\Software\Google\Google Earth Plus] "InstallDir"="d:\\Google\\Google Earth" [HKEY_USERS\S-1-5-21-602162358-651377827-839522115-1003\Software\Google\Google Earth Plus] "InstallRoot"="d:\\Google\\Google Earth" [HKEY_USERS\S-1-5-21-602162358-651377827-839522115-1003\Software\Google\Google Earth Plus\autoupdate] [HKEY_USERS\S-1-5-21-602162358-651377827-839522115-1003\Software\Google\Google Earth Plus\autoupdate] "AppPath"="D:/Google/Google Earth" [HKEY_USERS\S-1-5-21-602162358-651377827-839522115-1003\Software\Google\Google Earth Plus\autoupdate] "AvailableDescription"="Suggested: A new version of Google Earth is available." [HKEY_USERS\S-1-5-21-602162358-651377827-839522115-1003\Software\Google\Google Earth Plus\Layer] [HKEY_USERS\S-1-5-21-602162358-651377827-839522115-1003\Software\Google\Google Earth Plus\Render] [HKEY_USERS\S-1-5-21-602162358-651377827-839522115-1003\Software\Microsoft\Windows\CurrentVersion\Explorer\MenuOrder\Start Menu\Programs\Google Earth] [HKEY_USERS\S-1-5-21-602162358-651377827-839522115-1003\Software\Microsoft\Windows\CurrentVersion\Explorer\MenuOrder\Start Menu2\Programs\Google Earth] [HKEY_USERS\S-1-5-21-602162358-651377827-839522115-1003\Software\Microsoft\Windows\ShellNoRoam\MUICache] "D:\\Google\\Google Earth\\GoogleEarth.exe"="Google Earth" ; End Of The Log... @ bientôt
  4. velomania49
    Bonjour Bruce, merci pour tout, le pc va bien mieux ! il t'en remercie Par contre, j'aurai quand même quelques questions si ça ne te dérange pas. Il y a quelques temps j'avais installé google earth et je n'arrive pas à le désinstaller (il n'a jamais fonctionner!). Si tu sais comment faire je veux bien encore de ton aide..Pour info j'ai essayé par panneau de configuration/ajout-suppression de fichiers Et sinon je voulais savoir si je supprimais tout ce que tu m'avais fait telecharger (fsbl, combofix,vundofix..) et AVG ? je fais quoi vu que j'ai déjà antivir ? Je pense que ce sera tout encore merci pour tout. A bientôt.
  5. velomania49
    Bonsoir Bruce, Statistiques de l'analyse Total d'objets analysés 117039 Nombre de virus trouvés 0 Nombre d'objets infectés 0 / 0 Nombre d'objets suspects 0 Durée de l'analyse 04:24:26 Nom de l'objet infecté Nom du virus Dernière action C:\Documents and Settings\All Users\Application Data\AOL\ACS\1.0\ph L'objet est verrouillé ignoré C:\Documents and Settings\All Users\Application Data\AOL\ACS\1.0\variable L'objet est verrouillé ignoré C:\Documents and Settings\All Users\Application Data\AOL\C_AOL 9.0a\idb\APP10395.LST L'objet est verrouillé ignoré C:\Documents and Settings\All Users\Application Data\AOL\C_AOL 9.0a\idb\APP10434.LST L'objet est verrouillé ignoré C:\Documents and Settings\All Users\Application Data\AOL\C_AOL 9.0a\idb\APP10706.LST L'objet est verrouillé ignoré C:\Documents and Settings\All Users\Application Data\AOL\C_AOL 9.0a\idb\Apps.Lst L'objet est verrouillé ignoré C:\Documents and Settings\All Users\Application Data\AOL\C_AOL 9.0a\idb\Diction.lst L'objet est verrouillé ignoré C:\Documents and Settings\All Users\Application Data\AOL\C_AOL 9.0a\idb\main.idx L'objet est verrouillé ignoré C:\Documents and Settings\All Users\Application Data\AOL\C_AOL 9.0a\idb\sap.dat L'objet est verrouillé ignoré C:\Documents and Settings\All Users\Application Data\AOL\C_AOL 9.0a\idb\spool.lst L'objet est verrouillé ignoré C:\Documents and Settings\All Users\Application Data\AOL\C_AOL 9.0a\idb\STYLE.LST L'objet est verrouillé ignoré C:\Documents and Settings\All Users\Application Data\AOL\C_AOL 9.0a\idb\sysnews.lst L'objet est verrouillé ignoré C:\Documents and Settings\All Users\Application Data\AOL\C_AOL 9.0a\idb\Toolbar.lst L'objet est verrouillé ignoré C:\Documents and Settings\All Users\Application Data\AOL\C_AOL 9.0a\organize\CACHE\toxs02 L'objet est verrouillé ignoré C:\Documents and Settings\All Users\Application Data\AOL\C_AOL 9.0a\organize\toxs51 L'objet est verrouillé ignoré C:\Documents and Settings\All Users\Application Data\AOL\C_AOL 9.0a\organize\toxs51.abi L'objet est verrouillé ignoré C:\Documents and Settings\All Users\Application Data\AOL\C_AOL 9.0a\organize\toxs51.aby L'objet est verrouillé ignoré C:\Documents and Settings\All Users\Application Data\AOL\C_AOL 9.0a\ShopAssist\DataStore\global\clientcache.adb L'objet est verrouillé ignoré C:\Documents and Settings\All Users\Application Data\AOL\C_AOL 9.0a\ShopAssist\DataStore\users\Toxs51.adb L'objet est verrouillé ignoré C:\Documents and Settings\All Users\Application Data\AOL\storage\cache.db L'objet est verrouillé ignoré C:\Documents and Settings\All Users\Application Data\AOL\storage\server.lock L'objet est verrouillé ignoré C:\Documents and Settings\All Users\Application Data\AOL\storage\stderr.txt L'objet est verrouillé ignoré C:\Documents and Settings\All Users\Application Data\AOL\storage\stdout.txt L'objet est verrouillé ignoré C:\Documents and Settings\All Users\Application Data\AOL\UserProfiles\All Users\cls\common.cls L'objet est verrouillé ignoré C:\Documents and Settings\All Users\Application Data\Microsoft\Crypto\DSS\MachineKeys\26701bc73c9147e75f5f55364213bb57_d07f5960-d9e9-4327-bb6c-3ab18b697de7 L'objet est verrouillé ignoré C:\Documents and Settings\All Users\Application Data\Microsoft\Crypto\RSA\MachineKeys\791576950ebfab18ffae65fe78f04804_d07f5960-d9e9-4327-bb6c-3ab18b697de7 L'objet est verrouillé ignoré C:\Documents and Settings\All Users\Application Data\Microsoft\Crypto\RSA\MachineKeys\a3450d5efcdf268e2a3c06fa33fb4045_d07f5960-d9e9-4327-bb6c-3ab18b697de7 L'objet est verrouillé ignoré C:\Documents and Settings\All Users\Application Data\Microsoft\Network\Downloader\qmgr0.dat L'objet est verrouillé ignoré C:\Documents and Settings\All Users\Application Data\Microsoft\Network\Downloader\qmgr1.dat L'objet est verrouillé ignoré C:\Documents and Settings\Guillaume\Cookies\index.dat L'objet est verrouillé ignoré C:\Documents and Settings\Guillaume\Local Settings\Application Data\AOL\UserProfiles\All Users\cls\common.cls L'objet est verrouillé ignoré C:\Documents and Settings\Guillaume\Local Settings\Application Data\Microsoft\Messenger\[email protected]\SharingMetadata\infected.dat L'objet est verrouillé ignoré C:\Documents and Settings\Guillaume\Local Settings\Application Data\Microsoft\Messenger\[email protected]\SharingMetadata\Logs\Dfsr.log L'objet est verrouillé ignoré C:\Documents and Settings\Guillaume\Local Settings\Application Data\Microsoft\Messenger\[email protected]\SharingMetadata\pending.dat L'objet est verrouillé ignoré C:\Documents and Settings\Guillaume\Local Settings\Application Data\Microsoft\Messenger\[email protected]\SharingMetadata\Working\database_568C_8FBD_8C8F_95E1\dfsr.db L'objet est verrouillé ignoré C:\Documents and Settings\Guillaume\Local Settings\Application Data\Microsoft\Messenger\[email protected]\SharingMetadata\Working\database_568C_8FBD_8C8F_95E1\fsr.log L'objet est verrouillé ignoré C:\Documents and Settings\Guillaume\Local Settings\Application Data\Microsoft\Messenger\[email protected]\SharingMetadata\Working\database_568C_8FBD_8C8F_95E1\fsrtmp.log L'objet est verrouillé ignoré C:\Documents and Settings\Guillaume\Local Settings\Application Data\Microsoft\Messenger\[email protected]\SharingMetadata\Working\database_568C_8FBD_8C8F_95E1\tmp.edb L'objet est verrouillé ignoré C:\Documents and Settings\Guillaume\Local Settings\Application Data\Microsoft\Windows\UsrClass.dat L'objet est verrouillé ignoré C:\Documents and Settings\Guillaume\Local Settings\Application Data\Microsoft\Windows\UsrClass.dat.LOG L'objet est verrouillé ignoré C:\Documents and Settings\Guillaume\Local Settings\Application Data\Microsoft\Windows Live Contacts\[email protected]\real\members.stg L'objet est verrouillé ignoré C:\Documents and Settings\Guillaume\Local Settings\Application Data\Microsoft\Windows Live Contacts\[email protected]\shadow\members.stg L'objet est verrouillé ignoré C:\Documents and Settings\Guillaume\Local Settings\Historique\History.IE5\index.dat L'objet est verrouillé ignoré C:\Documents and Settings\Guillaume\Local Settings\Historique\History.IE5\MSHist012007061820070625\index.dat L'objet est verrouillé ignoré C:\Documents and Settings\Guillaume\Local Settings\Historique\History.IE5\MSHist012007062520070626\index.dat L'objet est verrouillé ignoré C:\Documents and Settings\Guillaume\Local Settings\Temp\hpodvd09.log L'objet est verrouillé ignoré C:\Documents and Settings\Guillaume\Local Settings\Temp\~DFC6E8.tmp L'objet est verrouillé ignoré C:\Documents and Settings\Guillaume\Local Settings\Temp\~DFC6F4.tmp L'objet est verrouillé ignoré C:\Documents and Settings\Guillaume\Local Settings\Temp\~DFF100.tmp L'objet est verrouillé ignoré C:\Documents and Settings\Guillaume\Local Settings\Temp\~DFF220.tmp L'objet est verrouillé ignoré C:\Documents and Settings\Guillaume\Local Settings\Temporary Internet Files\Content.IE5\index.dat L'objet est verrouillé ignoré C:\Documents and Settings\Guillaume\NTUSER.DAT L'objet est verrouillé ignoré C:\Documents and Settings\Guillaume\ntuser.dat.LOG L'objet est verrouillé ignoré C:\Documents and Settings\LocalService\Cookies\index.dat L'objet est verrouillé ignoré C:\Documents and Settings\LocalService\Local Settings\Application Data\Microsoft\Windows\UsrClass.dat L'objet est verrouillé ignoré C:\Documents and Settings\LocalService\Local Settings\Application Data\Microsoft\Windows\UsrClass.dat.LOG L'objet est verrouillé ignoré C:\Documents and Settings\LocalService\Local Settings\Historique\History.IE5\index.dat L'objet est verrouillé ignoré C:\Documents and Settings\LocalService\Local Settings\Temporary Internet Files\Content.IE5\index.dat L'objet est verrouillé ignoré C:\Documents and Settings\LocalService\NTUSER.DAT L'objet est verrouillé ignoré C:\Documents and Settings\LocalService\ntuser.dat.LOG L'objet est verrouillé ignoré C:\Documents and Settings\NetworkService\Cookies\index.dat L'objet est verrouillé ignoré C:\Documents and Settings\NetworkService\Local Settings\Application Data\Microsoft\Windows\UsrClass.dat L'objet est verrouillé ignoré C:\Documents and Settings\NetworkService\Local Settings\Application Data\Microsoft\Windows\UsrClass.dat.LOG L'objet est verrouillé ignoré C:\Documents and Settings\NetworkService\Local Settings\Historique\History.IE5\index.dat L'objet est verrouillé ignoré C:\Documents and Settings\NetworkService\Local Settings\Temporary Internet Files\Content.IE5\index.dat L'objet est verrouillé ignoré C:\Documents and Settings\NetworkService\NTUSER.DAT L'objet est verrouillé ignoré C:\Documents and Settings\NetworkService\ntuser.dat.LOG L'objet est verrouillé ignoré C:\System Volume Information\MountPointManagerRemoteDatabase L'objet est verrouillé ignoré C:\WINDOWS\Debug\PASSWD.LOG L'objet est verrouillé ignoré C:\WINDOWS\SchedLgU.Txt L'objet est verrouillé ignoré C:\WINDOWS\SoftwareDistribution\ReportingEvents.log L'objet est verrouillé ignoré C:\WINDOWS\Sti_Trace.log L'objet est verrouillé ignoré C:\WINDOWS\system32\CatRoot2\edb.log L'objet est verrouillé ignoré C:\WINDOWS\system32\CatRoot2\tmp.edb L'objet est verrouillé ignoré C:\WINDOWS\system32\config\ACEEvent.evt L'objet est verrouillé ignoré C:\WINDOWS\system32\config\AppEvent.Evt L'objet est verrouillé ignoré C:\WINDOWS\system32\config\default L'objet est verrouillé ignoré C:\WINDOWS\system32\config\default.LOG L'objet est verrouillé ignoré C:\WINDOWS\system32\config\SAM L'objet est verrouillé ignoré C:\WINDOWS\system32\config\SAM.LOG L'objet est verrouillé ignoré C:\WINDOWS\system32\config\SecEvent.Evt L'objet est verrouillé ignoré C:\WINDOWS\system32\config\SECURITY L'objet est verrouillé ignoré C:\WINDOWS\system32\config\SECURITY.LOG L'objet est verrouillé ignoré C:\WINDOWS\system32\config\software L'objet est verrouillé ignoré C:\WINDOWS\system32\config\software.LOG L'objet est verrouillé ignoré C:\WINDOWS\system32\config\SysEvent.Evt L'objet est verrouillé ignoré C:\WINDOWS\system32\config\system L'objet est verrouillé ignoré C:\WINDOWS\system32\config\system.LOG L'objet est verrouillé ignoré C:\WINDOWS\system32\h323log.txt L'objet est verrouillé ignoré C:\WINDOWS\system32\wbem\Repository\FS\INDEX.BTR L'objet est verrouillé ignoré C:\WINDOWS\system32\wbem\Repository\FS\INDEX.MAP L'objet est verrouillé ignoré C:\WINDOWS\system32\wbem\Repository\FS\MAPPING.VER L'objet est verrouillé ignoré C:\WINDOWS\system32\wbem\Repository\FS\MAPPING1.MAP L'objet est verrouillé ignoré C:\WINDOWS\system32\wbem\Repository\FS\MAPPING2.MAP L'objet est verrouillé ignoré C:\WINDOWS\system32\wbem\Repository\FS\OBJECTS.DATA L'objet est verrouillé ignoré C:\WINDOWS\system32\wbem\Repository\FS\OBJECTS.MAP L'objet est verrouillé ignoré C:\WINDOWS\wiadebug.log L'objet est verrouillé ignoré C:\WINDOWS\wiaservc.log L'objet est verrouillé ignoré C:\WINDOWS\WindowsUpdate.log L'objet est verrouillé ignoré D:\System Volume Information\MountPointManagerRemoteDatabase L'objet est verrouillé ignoré Analyse terminée.
  6. velomania49
    bonjour Bruce tout c'est passé sans problème. Il y'a juste le fait que Ultimate Fixer n'était pas présent dans ajout/suppression de programmes et je n'ai pas pu supprimé : C:\WINDOWS\system32\ mqz.dll<== le fichier je ne l'ai pas trouvé ! et les autres fichiers que j'ai supprimé, je vide la corbeille ?? Donc sinon pour le reste pas de soucis...enfin merci avg pour tout ce qu'il a trouvé comme infections !!! voici les rapports : --------------------------------------------------------- AVG Anti-Spyware - Rapport d'analyse --------------------------------------------------------- + Créé à: 22:45:56 22/06/2007 + Résultat de l'analyse: HKU\S-1-5-21-602162358-651377827-839522115-1003\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{819A7027-6EEA-44B4-49C1-52F6992DCD01} -> Adware.CoolWebSearch : Nettoyé et sauvegardé (mise en quarantaine). C:\Program Files\HijackThis\backups\backup-20070622-212344-829.dll -> Adware.PurityScan : Nettoyé et sauvegardé (mise en quarantaine). C:\QooBox\Quarantine\C\WINDOWS\ASEMBL~1\cѕrss.exe.vir -> Adware.PurityScan : Nettoyé et sauvegardé (mise en quarantaine). C:\Documents and Settings\Maman\Application Data\Microsoft\Internet Explorer\Quick Launch\Start UltimateFixer 2007.lnk -> Adware.RogueSuspect : Nettoyé et sauvegardé (mise en quarantaine). C:\Program Files\SpyFighterPro -> Adware.RogueSuspect : Nettoyé et sauvegardé (mise en quarantaine). C:\Program Files\SpyFighterPro\200508.sf -> Adware.RogueSuspect : Nettoyé et sauvegardé (mise en quarantaine). C:\Program Files\SpyFighterPro\ABetterInternet.dll -> Adware.RogueSuspect : Nettoyé et sauvegardé (mise en quarantaine). C:\Program Files\SpyFighterPro\AdWare.dll -> Adware.RogueSuspect : Nettoyé et sauvegardé (mise en quarantaine). C:\Program Files\SpyFighterPro\AdwareDatabase.dll -> Adware.RogueSuspect : Nettoyé et sauvegardé (mise en quarantaine). C:\Program Files\SpyFighterPro\AutoUpdate.exe -> Adware.RogueSuspect : Nettoyé et sauvegardé (mise en quarantaine). C:\Program Files\SpyFighterPro\CoolWebSearch.dll -> Adware.RogueSuspect : Nettoyé et sauvegardé (mise en quarantaine). C:\Program Files\SpyFighterPro\Dialers.dll -> Adware.RogueSuspect : Nettoyé et sauvegardé (mise en quarantaine). C:\Program Files\SpyFighterPro\History.dll -> Adware.RogueSuspect : Nettoyé et sauvegardé (mise en quarantaine). C:\Program Files\SpyFighterPro\InstantAccessDialer.dll -> Adware.RogueSuspect : Nettoyé et sauvegardé (mise en quarantaine). C:\Program Files\SpyFighterPro\LogRecorder.exe -> Adware.RogueSuspect : Nettoyé et sauvegardé (mise en quarantaine). C:\Program Files\SpyFighterPro\MirarToolbar.dll -> Adware.RogueSuspect : Nettoyé et sauvegardé (mise en quarantaine). C:\Program Files\SpyFighterPro\MySearchBar.dll -> Adware.RogueSuspect : Nettoyé et sauvegardé (mise en quarantaine). C:\Program Files\SpyFighterPro\SFReader.dll -> Adware.RogueSuspect : Nettoyé et sauvegardé (mise en quarantaine). C:\Program Files\SpyFighterPro\SearchCentrix.dll -> Adware.RogueSuspect : Nettoyé et sauvegardé (mise en quarantaine). C:\Program Files\SpyFighterPro\SetupCustomActions.exe -> Adware.RogueSuspect : Nettoyé et sauvegardé (mise en quarantaine). C:\Program Files\SpyFighterPro\SingleAdWare1.dll -> Adware.RogueSuspect : Nettoyé et sauvegardé (mise en quarantaine). C:\Program Files\SpyFighterPro\SinglePlugins2.dll -> Adware.RogueSuspect : Nettoyé et sauvegardé (mise en quarantaine). C:\Program Files\SpyFighterPro\SpyFighter.exe -> Adware.RogueSuspect : Nettoyé et sauvegardé (mise en quarantaine). C:\Program Files\SpyFighterPro\WasherPlugins.dll -> Adware.RogueSuspect : Nettoyé et sauvegardé (mise en quarantaine). C:\Program Files\SpyFighterPro\WebSearchToolbar.dll -> Adware.RogueSuspect : Nettoyé et sauvegardé (mise en quarantaine). C:\Program Files\SpyFighterPro\code.dat -> Adware.RogueSuspect : Nettoyé et sauvegardé (mise en quarantaine). C:\Program Files\SpyFighterPro\database.sf -> Adware.RogueSuspect : Nettoyé et sauvegardé (mise en quarantaine). C:\Program Files\SpyFighterPro\license.rtf -> Adware.RogueSuspect : Nettoyé et sauvegardé (mise en quarantaine). C:\Program Files\SpyFighterPro\zoo.dat -> Adware.RogueSuspect : Nettoyé et sauvegardé (mise en quarantaine). C:\Program Files\SpyFighterPro\zoo.idx -> Adware.RogueSuspect : Nettoyé et sauvegardé (mise en quarantaine). HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{7BA3B75C-5601-4A6F-986C-47FEF17E8416} -> Adware.RogueSuspect : Nettoyé et sauvegardé (mise en quarantaine). HKLM\SOFTWARE\SpyFighter -> Adware.RogueSuspect : Nettoyé et sauvegardé (mise en quarantaine). HKLM\SOFTWARE\SpyFighter\Settings -> Adware.RogueSuspect : Nettoyé et sauvegardé (mise en quarantaine). C:\VundoFix Backups\efccaaw.dll.bad -> Adware.Virtumonde : Nettoyé et sauvegardé (mise en quarantaine). C:\VundoFix Backups\xxyaaxu.dll.bad -> Adware.Virtumonde : Nettoyé et sauvegardé (mise en quarantaine). C:\WINDOWS\Temp\win84A.tmp.exe -> Downloader.Alphabet : Nettoyé et sauvegardé (mise en quarantaine). C:\QooBox\Quarantine\C\Program Files\Fichiers communs\Yazzle1162OinAdmin.exe.vir -> Downloader.PurityScan.eg : Nettoyé et sauvegardé (mise en quarantaine). C:\WINDOWS\Temp\win87E.tmp.exe -> Downloader.PurityScan.eg : Nettoyé et sauvegardé (mise en quarantaine). C:\Documents and Settings\Guillaume\Cookies\guillaume@247realmedia[2].txt -> TrackingCookie.247realmedia : Nettoyé. C:\Documents and Settings\Guillaume\Cookies\guillaume@2o7[1].txt -> TrackingCookie.2o7 : Nettoyé. C:\Documents and Settings\Guillaume\Cookies\[email protected][2].txt -> TrackingCookie.2o7 : Nettoyé. C:\Documents and Settings\Guillaume\Cookies\[email protected][1].txt -> TrackingCookie.2o7 : Nettoyé. C:\Documents and Settings\Guillaume\Cookies\[email protected][1].txt -> TrackingCookie.2o7 : Nettoyé. C:\Documents and Settings\Guillaume\Cookies\[email protected][1].txt -> TrackingCookie.2o7 : Nettoyé. C:\Documents and Settings\Maman\Cookies\[email protected][1].txt -> TrackingCookie.2o7 : Nettoyé. C:\Documents and Settings\Guillaume\Cookies\[email protected][1].txt -> TrackingCookie.Abcsearch : Nettoyé. C:\Documents and Settings\Guillaume\Cookies\[email protected][2].txt -> TrackingCookie.Adbrite : Nettoyé. C:\Documents and Settings\Guillaume\Cookies\[email protected][1].txt -> TrackingCookie.Adbrite : Nettoyé. C:\Documents and Settings\Guillaume\Cookies\[email protected][1].txt -> TrackingCookie.Adbrite : Nettoyé. C:\Documents and Settings\Guillaume\Cookies\guillaume@adbrite[1].txt -> TrackingCookie.Adbrite : Nettoyé. C:\Documents and Settings\Guillaume\Cookies\[email protected][2].txt -> TrackingCookie.Adbrite : Nettoyé. C:\Documents and Settings\Guillaume\Cookies\[email protected][1].txt -> TrackingCookie.Addynamix : Nettoyé. C:\Documents and Settings\Guillaume\Cookies\guillaume@adengage[1].txt -> TrackingCookie.Adengage : Nettoyé. C:\Documents and Settings\Nicolas\Cookies\[email protected][2].txt -> TrackingCookie.Admarketplace : Nettoyé. C:\Documents and Settings\Guillaume\Cookies\guillaume@adtech[2].txt -> TrackingCookie.Adtech : Nettoyé. C:\Documents and Settings\Guillaume\Cookies\guillaume@advertising[2].txt -> TrackingCookie.Advertising : Nettoyé. C:\Documents and Settings\Guillaume\Cookies\guillaume@atdmt[2].txt -> TrackingCookie.Atdmt : Nettoyé. C:\Documents and Settings\Guillaume\Cookies\guillaume@bluestreak[1].txt -> TrackingCookie.Bluestreak : Nettoyé. C:\Documents and Settings\Maman\Cookies\maman@bluestreak[2].txt -> TrackingCookie.Bluestreak : Nettoyé. C:\Documents and Settings\Guillaume\Cookies\guillaume@clickbank[1].txt -> TrackingCookie.Clickbank : Nettoyé. C:\Documents and Settings\Maman\Cookies\maman@clickbank[1].txt -> TrackingCookie.Clickbank : Nettoyé. C:\Documents and Settings\Guillaume\Cookies\[email protected][1].txt -> TrackingCookie.Clickhype : Nettoyé. C:\Documents and Settings\Guillaume\Cookies\[email protected][1].txt -> TrackingCookie.Comclick : Nettoyé. C:\Documents and Settings\Guillaume\Cookies\guillaume@cpvfeed[2].txt -> TrackingCookie.Cpvfeed : Nettoyé. C:\Documents and Settings\Nicolas\Cookies\nicolas@cpvfeed[1].txt -> TrackingCookie.Cpvfeed : Nettoyé. :mozilla.361:C:\Documents and Settings\Nicolas\Application Data\Mozilla\Firefox\Profiles\pnva4dhz.default\cookies.txt -> TrackingCookie.Dealtime : Nettoyé. C:\Documents and Settings\Nicolas\Cookies\[email protected][1].txt -> TrackingCookie.Dealtime : Nettoyé. C:\Documents and Settings\Guillaume\Cookies\guillaume@doubleclick[1].txt -> TrackingCookie.Doubleclick : Nettoyé. C:\Documents and Settings\Maman\Cookies\maman@doubleclick[1].txt -> TrackingCookie.Doubleclick : Nettoyé. :mozilla.702:C:\Documents and Settings\Nicolas\Application Data\Mozilla\Firefox\Profiles\pnva4dhz.default\cookies.txt -> TrackingCookie.Enhance : Nettoyé. C:\Documents and Settings\Guillaume\Cookies\guillaume@enhance[2].txt -> TrackingCookie.Enhance : Nettoyé. C:\Documents and Settings\Nicolas\Cookies\[email protected][1].txt -> TrackingCookie.Enhance : Nettoyé. C:\Documents and Settings\Guillaume\Cookies\guillaume@estat[1].txt -> TrackingCookie.Estat : Nettoyé. C:\Documents and Settings\Guillaume\Cookies\guillaume@fastclick[2].txt -> TrackingCookie.Fastclick : Nettoyé. C:\Documents and Settings\Guillaume\Cookies\guillaume@findwhat[1].txt -> TrackingCookie.Findwhat : Nettoyé. :mozilla.690:C:\Documents and Settings\Nicolas\Application Data\Mozilla\Firefox\Profiles\pnva4dhz.default\cookies.txt -> TrackingCookie.Goclick : Nettoyé. :mozilla.691:C:\Documents and Settings\Nicolas\Application Data\Mozilla\Firefox\Profiles\pnva4dhz.default\cookies.txt -> TrackingCookie.Goclick : Nettoyé. C:\Documents and Settings\Guillaume\Cookies\guillaume@goclick[2].txt -> TrackingCookie.Goclick : Nettoyé. C:\Documents and Settings\Nicolas\Cookies\[email protected][2].txt -> TrackingCookie.Goclick : Nettoyé. C:\Documents and Settings\Guillaume\Cookies\[email protected][2].txt -> TrackingCookie.Goldenpalace : Nettoyé. C:\Documents and Settings\Guillaume\Cookies\guillaume@goldenpalace[1].txt -> TrackingCookie.Goldenpalace : Nettoyé. :mozilla.695:C:\Documents and Settings\Nicolas\Application Data\Mozilla\Firefox\Profiles\pnva4dhz.default\cookies.txt -> TrackingCookie.Imrworldwide : Nettoyé. :mozilla.696:C:\Documents and Settings\Nicolas\Application Data\Mozilla\Firefox\Profiles\pnva4dhz.default\cookies.txt -> TrackingCookie.Imrworldwide : Nettoyé. C:\Documents and Settings\Guillaume\Cookies\[email protected][1].txt -> TrackingCookie.Information : Nettoyé. C:\Documents and Settings\Nicolas\Cookies\[email protected][1].txt -> TrackingCookie.Information : Nettoyé. C:\Documents and Settings\Guillaume\Cookies\[email protected][2].txt -> TrackingCookie.Live : Nettoyé. C:\Documents and Settings\Guillaume\Cookies\[email protected][1].txt -> TrackingCookie.Liveperson : Nettoyé. C:\Documents and Settings\Guillaume\Cookies\guillaume@mediaplex[1].txt -> TrackingCookie.Mediaplex : Nettoyé. C:\Documents and Settings\Maman\Cookies\maman@mediaplex[1].txt -> TrackingCookie.Mediaplex : Nettoyé. :mozilla.343:C:\Documents and Settings\Nicolas\Application Data\Mozilla\Firefox\Profiles\pnva4dhz.default\cookies.txt -> TrackingCookie.Msn : Nettoyé. C:\Documents and Settings\Nicolas\Cookies\[email protected][3].txt -> TrackingCookie.Msn : Nettoyé. C:\Documents and Settings\Guillaume\Cookies\guillaume@overture[2].txt -> TrackingCookie.Overture : Nettoyé. :mozilla.744:C:\Documents and Settings\Nicolas\Application Data\Mozilla\Firefox\Profiles\pnva4dhz.default\cookies.txt -> TrackingCookie.Planetactive : Nettoyé. C:\Documents and Settings\Nicolas\Cookies\[email protected][1].txt -> TrackingCookie.Planetactive : Nettoyé. C:\Documents and Settings\Guillaume\Cookies\guillaume@questionmarket[1].txt -> TrackingCookie.Questionmarket : Nettoyé. C:\Documents and Settings\Guillaume\Cookies\guillaume@realmedia[1].txt -> TrackingCookie.Realmedia : Nettoyé. C:\Documents and Settings\Nicolas.GUILLAUME\Cookies\nicolas@realmedia[1].txt -> TrackingCookie.Realmedia : Nettoyé. C:\Documents and Settings\Nicolas\Cookies\nicolas@realmedia[2].txt -> TrackingCookie.Realmedia : Nettoyé. C:\Documents and Settings\Guillaume\Cookies\[email protected][2].txt -> TrackingCookie.Reliablestats : Nettoyé. C:\Documents and Settings\Guillaume\Cookies\[email protected][3].txt -> TrackingCookie.Reliablestats : Nettoyé. C:\Documents and Settings\Maman\Cookies\[email protected][2].txt -> TrackingCookie.Reliablestats : Nettoyé. C:\Documents and Settings\Nicolas.GUILLAUME\Cookies\[email protected][2].txt -> TrackingCookie.Reliablestats : Nettoyé. C:\Documents and Settings\Nicolas\Cookies\[email protected][2].txt -> TrackingCookie.Reliablestats : Nettoyé. C:\Documents and Settings\Nicolas\Cookies\nicolas@revsci[2].txt -> TrackingCookie.Revsci : Nettoyé. C:\Documents and Settings\Guillaume\Cookies\[email protected][1].txt -> TrackingCookie.Serving-sys : Nettoyé. C:\Documents and Settings\Guillaume\Cookies\guillaume@serving-sys[1].txt -> TrackingCookie.Serving-sys : Nettoyé. C:\Documents and Settings\Guillaume\Cookies\[email protected][2].txt -> TrackingCookie.Sexcounter : Nettoyé. C:\Documents and Settings\Guillaume\Cookies\[email protected][1].txt -> TrackingCookie.Sextracker : Nettoyé. C:\Documents and Settings\Guillaume\Cookies\guillaume@sextracker[1].txt -> TrackingCookie.Sextracker : Nettoyé. C:\Documents and Settings\Guillaume\Cookies\[email protected][1].txt -> TrackingCookie.Smartadserver : Nettoyé. C:\Documents and Settings\Maman\Cookies\[email protected][1].txt -> TrackingCookie.Smartadserver : Nettoyé. C:\Documents and Settings\Guillaume\Cookies\guillaume@statcounter[1].txt -> TrackingCookie.Statcounter : Nettoyé. C:\Documents and Settings\Nicolas\Cookies\nicolas@tacoda[2].txt -> TrackingCookie.Tacoda : Nettoyé. :mozilla.216:C:\Documents and Settings\Nicolas\Application Data\Mozilla\Firefox\Profiles\pnva4dhz.default\cookies.txt -> TrackingCookie.Toplist : Nettoyé. C:\Documents and Settings\Guillaume\Cookies\guillaume@toplist[1].txt -> TrackingCookie.Toplist : Nettoyé. C:\Documents and Settings\Maman\Cookies\maman@toplist[1].txt -> TrackingCookie.Toplist : Nettoyé. C:\Documents and Settings\Nicolas\Cookies\nicolas@toplist[2].txt -> TrackingCookie.Toplist : Nettoyé. C:\Documents and Settings\Guillaume\Cookies\[email protected][2].txt -> TrackingCookie.Tracking101 : Nettoyé. C:\Documents and Settings\Guillaume\Cookies\guillaume@tradedoubler[2].txt -> TrackingCookie.Tradedoubler : Nettoyé. C:\Documents and Settings\Maman\Cookies\maman@tradedoubler[1].txt -> TrackingCookie.Tradedoubler : Nettoyé. C:\Documents and Settings\Guillaume\Cookies\guillaume@weborama[1].txt -> TrackingCookie.Weborama : Nettoyé. C:\Documents and Settings\Maman\Cookies\maman@weborama[1].txt -> TrackingCookie.Weborama : Nettoyé. C:\Documents and Settings\Administrateur\Cookies\[email protected][2].txt -> TrackingCookie.Webtrends : Nettoyé. C:\Documents and Settings\Guillaume\Cookies\[email protected][2].txt -> TrackingCookie.Webtrends : Nettoyé. C:\Documents and Settings\Guillaume\Local Settings\Temp\Cookies\[email protected][2].txt -> TrackingCookie.Webtrends : Nettoyé. C:\Documents and Settings\Maman\Cookies\[email protected][2].txt -> TrackingCookie.Webtrends : Nettoyé. C:\Documents and Settings\Nicolas\Cookies\[email protected][2].txt -> TrackingCookie.Webtrends : Nettoyé. :mozilla.43:C:\Documents and Settings\Nicolas\Application Data\Mozilla\Firefox\Profiles\pnva4dhz.default\cookies.txt -> TrackingCookie.Yadro : Nettoyé. C:\Documents and Settings\Nicolas\Cookies\nicolas@yadro[2].txt -> TrackingCookie.Yadro : Nettoyé. C:\Documents and Settings\Guillaume\Cookies\[email protected][1].txt -> TrackingCookie.Yieldmanager : Nettoyé. C:\Documents and Settings\Guillaume\Cookies\guillaume@zedo[1].txt -> TrackingCookie.Zedo : Nettoyé. C:\Documents and Settings\Maman\Cookies\[email protected][1].txt -> TrackingCookie.Zedo : Nettoyé. C:\Documents and Settings\Maman\Cookies\maman@zedo[1].txt -> TrackingCookie.Zedo : Nettoyé. C:\Documents and Settings\Nicolas\Cookies\nicolas@zedo[1].txt -> TrackingCookie.Zedo : Nettoyé. C:\WINDOWS\Temp\mst862.tmp -> Trojan.Agent.qt : Nettoyé et sauvegardé (mise en quarantaine). C:\RECYCLER\S-1-5-21-602162358-651377827-839522115-1003\Dc4.exe -> Trojan.Small : Nettoyé et sauvegardé (mise en quarantaine). Fin du rapport Logfile of HijackThis v1.99.1 Scan saved at 14:42:41, on 23/06/2007 Platform: Windows XP SP2 (WinNT 5.01.2600) MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180) Running processes: C:\WINDOWS\System32\smss.exe C:\WINDOWS\system32\winlogon.exe C:\WINDOWS\system32\services.exe C:\WINDOWS\system32\lsass.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\System32\svchost.exe C:\WINDOWS\system32\spoolsv.exe C:\Program Files\AntiVir PersonalEdition Classic\avguard.exe C:\Program Files\AntiVir PersonalEdition Classic\sched.exe C:\PROGRA~1\FICHIE~1\AOL\ACS\AOLacsd.exe d:\AVG Anti-Spyware 7.5\guard.exe C:\WINDOWS\System32\svchost.exe C:\WINDOWS\wanmpsvc.exe C:\WINDOWS\Explorer.EXE C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe D:\Program Files\QuickTime\qttask.exe C:\WINDOWS\System32\svchost.exe C:\WINDOWS\system32\wuauclt.exe C:\Program Files\Fichiers communs\AOL\ACS\AOLDial.exe D:\HP\HP Software Update\HPWuSchd2.exe C:\Program Files\Fichiers communs\AOL\1132969887\ee\AOLSoftware.exe D:\Thomson\SpeedTouch USB\Dragdiag.exe C:\Program Files\Java\jre1.6.0_01\bin\jusched.exe C:\Program Files\AntiVir PersonalEdition Classic\avgnt.exe D:\AVG Anti-Spyware 7.5\avgas.exe C:\Program Files\Fichiers communs\Ahead\Lib\NMBgMonitor.exe C:\Program Files\Google\GoogleToolbarNotifier\1.2.1128.5462\GoogleToolbarNotifier.exe D:\HP\Digital Imaging\bin\hpqtra08.exe D:\TooX\Groom\GroomAgent.exe C:\WINDOWS\system32\wuauclt.exe c:\program files\fichiers communs\aol\1132969887\ee\aolsoftware.exe D:\HP\Digital Imaging\bin\hpqSTE08.exe C:\Program Files\AOL 9.0a\waol.exe C:\Program Files\AOL 9.0a\shellmon.exe C:\Program Files\Fichiers communs\Aol\aoltpspd.exe C:\Program Files\HijackThis\velomania49.exe R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.unioncyclistecholet49.com/ O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_01\bin\ssv.dll O2 - BHO: Windows Live Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar4.dll O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar4.dll O4 - HKLM\..\Run: [Cmaudio] RunDll32 cmicnfg.cpl,CMICtrlWnd O4 - HKLM\..\Run: [ATICCC] "C:\Program Files\ATI Technologies\ATI.ACE\cli.exe" runtime -Delay O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe" -osboot O4 - HKLM\..\Run: [QuickTime Task] "D:\Program Files\QuickTime\qttask.exe" -atboottime O4 - HKLM\..\Run: [AOLDialer] C:\Program Files\Fichiers communs\AOL\ACS\AOLDial.exe O4 - HKLM\..\Run: [HP Software Update] D:\HP\HP Software Update\HPWuSchd2.exe O4 - HKLM\..\Run: [HostManager] C:\Program Files\Fichiers communs\AOL\1132969887\ee\AOLSoftware.exe O4 - HKLM\..\Run: [speedTouch USB Diagnostics] "d:\Thomson\SpeedTouch USB\Dragdiag.exe" /icon O4 - HKLM\..\Run: [sunJavaUpdateSched] "C:\Program Files\Java\jre1.6.0_01\bin\jusched.exe" O4 - HKLM\..\Run: [avgnt] "C:\Program Files\AntiVir PersonalEdition Classic\avgnt.exe" /min O4 - HKLM\..\Run: [!AVG Anti-Spyware] "d:\AVG Anti-Spyware 7.5\avgas.exe" /minimized O4 - HKCU\..\Run: [bgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}] "C:\Program Files\Fichiers communs\Ahead\Lib\NMBgMonitor.exe" O4 - HKCU\..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\1.2.1128.5462\GoogleToolbarNotifier.exe O4 - Startup: Groom Agent.lnk = D:\TooX\Groom\GroomAgent.exe O4 - Global Startup: HP Digital Imaging Monitor.lnk = D:\HP\Digital Imaging\bin\hpqtra08.exe O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_01\bin\ssv.dll O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_01\bin\ssv.dll O16 - DPF: Fortune Bingo by pogo - http://game1.pogo.com/applet-6.7.4.35/supe...bingo-fr_FR.cab O16 - DPF: Squelchies by pogo - http://game1.pogo.com/applet-6.7.4.35/sque...chies-fr_FR.cab O16 - DPF: Yahoo! Poker - http://download.games.yahoo.com/games/clients/y/pt3_x.cab O16 - DPF: Yahoo! Pool 2 - http://download2.games.yahoo.com/games/clients/y/poti_x.cab O16 - DPF: {00B71CFB-6864-4346-A978-C0A14556272C} (Checkers Class) - http://messenger.zone.msn.com/binary/msgrchkr.cab31267.cab O16 - DPF: {2917297F-F02B-4B9D-81DF-494B6333150B} (Minesweeper Flags Class) - http://messenger.zone.msn.com/binary/MineS...er.cab31267.cab O16 - DPF: {5D6F45B3-9043-443D-A792-115447494D24} (UnoCtrl Class) - http://messenger.zone.msn.com/FR-FR/a-UNO1/GAME_UNO1.cab O16 - DPF: {867E13F2-7F31-44FB-AC97-CD38E0DC46EF} (HardwareDetection Control) - http://drivers1.free.fr/telecharger.php?id=2&version= O16 - DPF: {8E0D4DE5-3180-4024-A327-4DFAD1796A8D} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/Messe...nt.cab31267.cab O16 - DPF: {C3F79A2B-B9B4-4A66-B012-3EE46475B072} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/Messe...nt.cab56907.cab O16 - DPF: {F5A7706B-B9C0-4C89-A715-7A0C6B05DD48} (Minesweeper Flags Class) - http://messenger.zone.msn.com/binary/MineS...er.cab56986.cab O18 - Protocol: livecall - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\MSNMES~1\MSGRAP~1.DLL O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\MSNMES~1\MSGRAP~1.DLL O20 - Winlogon Notify: WgaLogon - C:\WINDOWS\SYSTEM32\WgaLogon.dll O23 - Service: AntiVir PersonalEdition Classic Scheduler (AntiVirScheduler) - Avira GmbH - C:\Program Files\AntiVir PersonalEdition Classic\sched.exe O23 - Service: AntiVir PersonalEdition Classic Guard (AntiVirService) - Avira GmbH - C:\Program Files\AntiVir PersonalEdition Classic\avguard.exe O23 - Service: AOL Connectivity Service (AOL ACS) - AOL LLC - C:\PROGRA~1\FICHIE~1\AOL\ACS\AOLacsd.exe O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\WINDOWS\system32\Ati2evxx.exe O23 - Service: ATI Smart - Unknown owner - C:\WINDOWS\system32\ati2sgag.exe O23 - Service: AVG Anti-Spyware Guard - GRISOFT s.r.o. - d:\AVG Anti-Spyware 7.5\guard.exe O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe O23 - Service: Pml Driver HPZ12 - HP - C:\WINDOWS\system32\HPZipm12.exe O23 - Service: WAN Miniport (ATW) Service (WANMiniportService) - America Online, Inc. - C:\WINDOWS\wanmpsvc.exe @ plus tard bon we
  7. velomania49
    Bonsoir, dsl j'étais parti depuis hier soir, examen oblige. Voici le rapport Hijackthis (et encore merci pour tout) Logfile of HijackThis v1.99.1 Scan saved at 19:48:27, on 22/06/2007 Platform: Windows XP SP2 (WinNT 5.01.2600) MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180) Running processes: C:\WINDOWS\System32\smss.exe C:\WINDOWS\system32\winlogon.exe C:\WINDOWS\system32\services.exe C:\WINDOWS\system32\lsass.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\System32\svchost.exe C:\WINDOWS\system32\spoolsv.exe C:\Program Files\AntiVir PersonalEdition Classic\avguard.exe C:\Program Files\AntiVir PersonalEdition Classic\sched.exe C:\PROGRA~1\FICHIE~1\AOL\ACS\AOLacsd.exe C:\WINDOWS\System32\svchost.exe C:\WINDOWS\wanmpsvc.exe C:\WINDOWS\Explorer.EXE C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe D:\Program Files\QuickTime\qttask.exe D:\HP\HP Software Update\HPWuSchd2.exe C:\Program Files\Fichiers communs\AOL\1132969887\ee\AOLSoftware.exe D:\Thomson\SpeedTouch USB\Dragdiag.exe C:\Program Files\Java\jre1.6.0_01\bin\jusched.exe C:\Program Files\AntiVir PersonalEdition Classic\avgnt.exe C:\Program Files\Fichiers communs\Ahead\Lib\NMBgMonitor.exe C:\Program Files\Google\GoogleToolbarNotifier\1.2.1128.5462\GoogleToolbarNotifier.exe C:\Program Files\Fichiers communs\Real\Update_OB\RealOneMessageCenter.exe D:\HP\Digital Imaging\bin\hpqtra08.exe D:\TooX\Groom\GroomAgent.exe C:\WINDOWS\System32\svchost.exe c:\program files\fichiers communs\aol\1132969887\ee\aolsoftware.exe D:\HP\Digital Imaging\bin\hpqSTE08.exe C:\Program Files\AOL 9.0a\waol.exe C:\Program Files\AOL 9.0a\shellmon.exe C:\Program Files\Fichiers communs\Aol\aoltpspd.exe C:\Program Files\MSN Messenger\msnmsgr.exe C:\WINDOWS\system32\svchost.exe C:\Program Files\HijackThis\velomania49.exe R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.unioncyclistecholet49.com/ O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_01\bin\ssv.dll O2 - BHO: Windows Live Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar4.dll O2 - BHO: (no name) - {B0033C15-D5F1-882C-8C78-88ADAB9720C0} - C:\WINDOWS\system32\mqz.dll O2 - BHO: (no name) - {B9F8003D-7ED9-42A6-B4E8-D68338F03E13} - C:\WINDOWS\system32\ddcyx.dll (file missing) O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar4.dll O4 - HKLM\..\Run: [Cmaudio] RunDll32 cmicnfg.cpl,CMICtrlWnd O4 - HKLM\..\Run: [ATICCC] "C:\Program Files\ATI Technologies\ATI.ACE\cli.exe" runtime -Delay O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe" -osboot O4 - HKLM\..\Run: [QuickTime Task] "D:\Program Files\QuickTime\qttask.exe" -atboottime O4 - HKLM\..\Run: [AOLDialer] C:\Program Files\Fichiers communs\AOL\ACS\AOLDial.exe O4 - HKLM\..\Run: [HP Software Update] D:\HP\HP Software Update\HPWuSchd2.exe O4 - HKLM\..\Run: [HostManager] C:\Program Files\Fichiers communs\AOL\1132969887\ee\AOLSoftware.exe O4 - HKLM\..\Run: [speedTouch USB Diagnostics] "d:\Thomson\SpeedTouch USB\Dragdiag.exe" /icon O4 - HKLM\..\Run: [sunJavaUpdateSched] "C:\Program Files\Java\jre1.6.0_01\bin\jusched.exe" O4 - HKLM\..\Run: [ultimate Fixer] "C:\Program Files\Ultimate Fixer\UltimateFixer.exe" hide O4 - HKLM\..\Run: [avgnt] "C:\Program Files\AntiVir PersonalEdition Classic\avgnt.exe" /min O4 - HKCU\..\Run: [bgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}] "C:\Program Files\Fichiers communs\Ahead\Lib\NMBgMonitor.exe" O4 - HKCU\..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\1.2.1128.5462\GoogleToolbarNotifier.exe O4 - HKCU\..\Run: [Lrwr] "C:\WINDOWS\FNTS~1\chkntfs.exe" -vt yazb O4 - HKCU\..\Run: [Kuhk] C:\WINDOWS\a?sembly\c?rss.exe O4 - Startup: Groom Agent.lnk = D:\TooX\Groom\GroomAgent.exe O4 - Global Startup: HP Digital Imaging Monitor.lnk = D:\HP\Digital Imaging\bin\hpqtra08.exe O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_01\bin\ssv.dll O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_01\bin\ssv.dll O16 - DPF: Fortune Bingo by pogo - http://game1.pogo.com/applet-6.7.4.35/supe...bingo-fr_FR.cab O16 - DPF: Squelchies by pogo - http://game1.pogo.com/applet-6.7.4.35/sque...chies-fr_FR.cab O16 - DPF: Yahoo! Poker - http://download.games.yahoo.com/games/clients/y/pt3_x.cab O16 - DPF: Yahoo! Pool 2 - http://download2.games.yahoo.com/games/clients/y/poti_x.cab O16 - DPF: {00B71CFB-6864-4346-A978-C0A14556272C} (Checkers Class) - http://messenger.zone.msn.com/binary/msgrchkr.cab31267.cab O16 - DPF: {2917297F-F02B-4B9D-81DF-494B6333150B} (Minesweeper Flags Class) - http://messenger.zone.msn.com/binary/MineS...er.cab31267.cab O16 - DPF: {5D6F45B3-9043-443D-A792-115447494D24} (UnoCtrl Class) - http://messenger.zone.msn.com/FR-FR/a-UNO1/GAME_UNO1.cab O16 - DPF: {867E13F2-7F31-44FB-AC97-CD38E0DC46EF} (HardwareDetection Control) - http://drivers1.free.fr/telecharger.php?id=2&version= O16 - DPF: {8E0D4DE5-3180-4024-A327-4DFAD1796A8D} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/Messe...nt.cab31267.cab O16 - DPF: {C3F79A2B-B9B4-4A66-B012-3EE46475B072} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/Messe...nt.cab56907.cab O16 - DPF: {F5A7706B-B9C0-4C89-A715-7A0C6B05DD48} (Minesweeper Flags Class) - http://messenger.zone.msn.com/binary/MineS...er.cab56986.cab O17 - HKLM\System\CCS\Services\Tcpip\..\{00716CC3-D0AD-43CF-957B-B622604CCF66}: NameServer = 205.188.146.145 O17 - HKLM\System\CS1\Services\Tcpip\..\{00716CC3-D0AD-43CF-957B-B622604CCF66}: NameServer = 205.188.146.145 O18 - Protocol: livecall - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\MSNMES~1\MSGRAP~1.DLL O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\MSNMES~1\MSGRAP~1.DLL O20 - Winlogon Notify: WgaLogon - C:\WINDOWS\SYSTEM32\WgaLogon.dll O20 - Winlogon Notify: winhab32 - winhab32.dll (file missing) O20 - Winlogon Notify: X - X (file missing) O20 - Winlogon Notify: ¸hp - ¸hp (file missing) O23 - Service: AntiVir PersonalEdition Classic Scheduler (AntiVirScheduler) - Avira GmbH - C:\Program Files\AntiVir PersonalEdition Classic\sched.exe O23 - Service: AntiVir PersonalEdition Classic Guard (AntiVirService) - Avira GmbH - C:\Program Files\AntiVir PersonalEdition Classic\avguard.exe O23 - Service: AOL Connectivity Service (AOL ACS) - AOL LLC - C:\PROGRA~1\FICHIE~1\AOL\ACS\AOLacsd.exe O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\WINDOWS\system32\Ati2evxx.exe O23 - Service: ATI Smart - Unknown owner - C:\WINDOWS\system32\ati2sgag.exe O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe O23 - Service: Pml Driver HPZ12 - HP - C:\WINDOWS\system32\HPZipm12.exe O23 - Service: WAN Miniport (ATW) Service (WANMiniportService) - America Online, Inc. - C:\WINDOWS\wanmpsvc.exe
  8. velomania49
    Re, STATUS: FINISHEDComplete scanning result of "se57mdfl.sys", received in VirusTotal at 06.21.2007, 10:33:11 (CET). Antivirus Version Update Result AhnLab-V3 2007.6.21.1 06.21.2007 no virus found AntiVir 7.4.0.34 06.21.2007 no virus found Authentium 4.93.8 06.21.2007 no virus found Avast 4.7.997.0 06.20.2007 no virus found AVG 7.5.0.467 06.20.2007 no virus found BitDefender 7.2 06.21.2007 no virus found CAT-QuickHeal 9.00 06.21.2007 no virus found ClamAV devel-20070416 06.21.2007 no virus found DrWeb 4.33 06.21.2007 no virus found eSafe 7.0.15.0 06.20.2007 no virus found eTrust-Vet 30.8.3730 06.20.2007 no virus found Ewido 4.0 06.20.2007 no virus found FileAdvisor 1 06.21.2007 no virus found Fortinet 2.91.0.0 06.21.2007 no virus found F-Prot 4.3.2.48 06.21.2007 no virus found F-Secure 6.70.13030.0 06.20.2007 no virus found Ikarus T3.1.1.8 06.21.2007 no virus found Kaspersky 4.0.2.24 06.21.2007 no virus found McAfee 5057 06.20.2007 no virus found Microsoft 1.2607 06.21.2007 no virus found NOD32v2 2342 06.21.2007 no virus found Norman 5.80.02 06.20.2007 no virus found Panda 9.0.0.4 06.20.2007 no virus found Prevx1 V2 06.21.2007 no virus found Sophos 4.18.0 06.21.2007 no virus found Sunbelt 2.2.907.0 06.16.2007 no virus found Symantec 10 06.21.2007 no virus found TheHacker 6.1.6.136 06.20.2007 no virus found VBA32 3.12.0.2 06.20.2007 no virus found VirusBuster 4.3.23:9 06.20.2007 no virus found Webwasher-Gateway 6.0.1 06.21.2007 no virus found Aditional Information File size: 9360 bytes MD5: 3a2c74928527379335e23e38c6e9d03c SHA1: 681cee7f74a994d061ba2837d32da74f693cb466 STATUS: FINISHEDComplete scanning result of "DDCA4E3A44.dll", received in VirusTotal at 06.21.2007, 10:51:13 (CET). Antivirus Version Update Result AhnLab-V3 2007.6.21.1 06.21.2007 no virus found AntiVir 7.4.0.34 06.21.2007 no virus found Authentium 4.93.8 06.21.2007 no virus found Avast 4.7.997.0 06.20.2007 no virus found AVG 7.5.0.467 06.20.2007 no virus found BitDefender 7.2 06.21.2007 no virus found CAT-QuickHeal 9.00 06.21.2007 no virus found ClamAV devel-20070416 06.21.2007 no virus found DrWeb 4.33 06.21.2007 no virus found eSafe 7.0.15.0 06.20.2007 no virus found eTrust-Vet 30.8.3731 06.21.2007 no virus found Ewido 4.0 06.20.2007 no virus found FileAdvisor 1 06.21.2007 no virus found Fortinet 2.91.0.0 06.21.2007 no virus found F-Prot 4.3.2.48 06.21.2007 no virus found F-Secure 6.70.13030.0 06.20.2007 no virus found Ikarus T3.1.1.8 06.21.2007 no virus found Kaspersky 4.0.2.24 06.21.2007 no virus found McAfee 5057 06.20.2007 no virus found Microsoft 1.2607 06.21.2007 no virus found NOD32v2 2342 06.21.2007 no virus found Norman 5.80.02 06.20.2007 no virus found Panda 9.0.0.4 06.20.2007 no virus found Prevx1 V2 06.21.2007 no virus found Sophos 4.18.0 06.21.2007 no virus found Sunbelt 2.2.907.0 06.16.2007 no virus found Symantec 10 06.21.2007 no virus found TheHacker 6.1.6.136 06.20.2007 no virus found VBA32 3.12.0.2 06.20.2007 no virus found VirusBuster 4.3.23:9 06.20.2007 no virus found Webwasher-Gateway 6.0.1 06.21.2007 no virus found Aditional Information File size: 80 bytes MD5: 3b31a7f166ff4f6c349fbc415bfe2808 SHA1: fcccc9c0bcdf5837120ac7f2f3a76974f8db764e
  9. velomania49
    Bonjour Bruce, voici le rapport des 2 fichiers : File: se57mdfl.sys Status: OK(Note: this file has been scanned before. Therefore, this file's scan results will not be stored in the database) MD5: 3a2c74928527379335e23e38c6e9d03c Packers detected: - Bit9 reports: File not found Scanner results Scan taken on 20 Jun 2007 22:06:38 (GMT) A-Squared Found nothing AntiVir Found nothing ArcaVir Found nothing Avast Found nothing AVG Antivirus Found nothing BitDefender Found nothing ClamAV Found nothing Dr.Web Found nothing F-Prot Antivirus Found nothing F-Secure Anti-Virus Found nothing Fortinet Found nothing Kaspersky Anti-Virus Found nothing NOD32 Found nothing Norman Virus Control Found nothing Panda Antivirus Found nothing Rising Antivirus Found nothing VirusBuster Found nothing VBA32 Found nothing File: DDCA4E3A44.dll Status: INCONCLUSIVE (scan still in progress) MD5: 3b31a7f166ff4f6c349fbc415bfe2808 Packers detected: Analyzing... Bit9 reports: File not found Scanner results Scan taken on 20 Jun 2007 22:09:59 (GMT) A-Squared Found nothing AntiVir Found nothing ArcaVir Found nothing Avast Found nothing AVG Antivirus Found nothing BitDefender Found nothing ClamAV Found nothing Dr.Web Found nothing F-Prot Antivirus Found nothing F-Secure Anti-Virus Found nothing Fortinet Found nothing Kaspersky Anti-Virus Found nothing NOD32 Found nothing Norman Virus Control Found nothing Panda Antivirus Found nothing Rising Antivirus Found nothing VirusBuster Found nothing VBA32 Found nothing @ plus tard.
  10. velomania49
    Bonsoir Bruce, voilà les résultats, je pense que tu voulais tout... File: wcpisvsu.exe Status: OK(Note: this file has been scanned before. Therefore, this file's scan results will not be stored in the database) MD5: 4f3dd0ffb3e41c5f74b5b0d8c1f10bb5 Packers detected: - Bit9 reports: No threat detected (more info) Scanner results Scan taken on 20 Jun 2007 17:51:20 (GMT) A-Squared Found nothing AntiVir Found nothing ArcaVir Found nothing Avast Found nothing AVG Antivirus Found nothing BitDefender Found nothing ClamAV Found nothing Dr.Web Found nothing F-Prot Antivirus Found nothing F-Secure Anti-Virus Found nothing Fortinet Found nothing Kaspersky Anti-Virus Found nothing NOD32 Found nothing Norman Virus Control Found nothing Panda Antivirus Found nothing Rising Antivirus Found nothing VirusBuster Found nothing VBA32 Found nothing File: mevqvvvb1.exe Status: INFECTED/MALWARE MD5: c8f1f9080a6c27987fde47d920d7aa25 Packers detected: PE_PATCH.UPX, UPX Bit9 reports: File not found Scanner results Scan taken on 20 Jun 2007 17:57:49 (GMT) A-Squared Found nothing AntiVir Found nothing ArcaVir Found nothing Avast Found nothing AVG Antivirus Found nothing BitDefender Found nothing ClamAV Found nothing Dr.Web Found nothing F-Prot Antivirus Found Possibly a new variant of W32/SelfStarterInternetTrojan!Maximus F-Secure Anti-Virus Found nothing Fortinet Found nothing Kaspersky Anti-Virus Found nothing NOD32 Found probably a variant of Win32/Adware.UltimateDefender application (probable variant) Norman Virus Control Found nothing Panda Antivirus Found nothing Rising Antivirus Found nothing VirusBuster Found nothing VBA32 Found nothing File: se57mdfl.sys Status: INCONCLUSIVE (scan still in progress) MD5: 3a2c74928527379335e23e38c6e9d03c Packers detected: Analyzing... Bit9 reports: File not found Scanner results Scan taken on 20 Jun 2007 18:04:45 (GMT) A-Squared Found nothing AntiVir Found nothing ArcaVir Found nothing Avast Found nothing AVG Antivirus Found nothing BitDefender Found nothing ClamAV Found nothing Dr.Web Found nothing F-Prot Antivirus Found nothing F-Secure Anti-Virus Found nothing Fortinet Found nothing Kaspersky Anti-Virus Found nothing NOD32 Found nothing Norman Virus Control Found nothing Panda Antivirus Found nothing Rising Antivirus Found nothing VirusBuster Found nothing VBA32 Found nothing File: vjljaw3o.sys Status: OK MD5: 755fd3492a8125f124fe75dd0baeebcf Packers detected: - Bit9 reports: File not found Scanner results Scan taken on 20 Jun 2007 18:08:31 (GMT) A-Squared Found nothing AntiVir Found nothing ArcaVir Found nothing Avast Found nothing AVG Antivirus Found nothing BitDefender Found nothing ClamAV Found nothing Dr.Web Found nothing F-Prot Antivirus Found nothing F-Secure Anti-Virus Found nothing Fortinet Found nothing Kaspersky Anti-Virus Found nothing NOD32 Found nothing Norman Virus Control Found nothing Panda Antivirus Found nothing Rising Antivirus Found nothing VirusBuster Found nothing VBA32 Found nothing File: DDCA4E3A44.dll Status: INCONCLUSIVE (scan still in progress) MD5: 3b31a7f166ff4f6c349fbc415bfe2808 Packers detected: Analyzing... Bit9 reports: File not found Scanner results Scan taken on 20 Jun 2007 18:11:45 (GMT) A-Squared Found nothing AntiVir Found nothing ArcaVir Found nothing Avast Found nothing AVG Antivirus Found nothing BitDefender Found nothing ClamAV Found nothing Dr.Web Found nothing F-Prot Antivirus Found nothing F-Secure Anti-Virus Found nothing Fortinet Found nothing Kaspersky Anti-Virus Found nothing NOD32 Found nothing Norman Virus Control Found nothing Panda Antivirus Found nothing Rising Antivirus Found nothing VirusBuster Found nothing VBA32 Found nothing File: 23D69F2708.sys Status: OK MD5: 6bbd0737b00b2ac9b4046f1caf4a9230 Packers detected: - Bit9 reports: File not found Scanner results Scan taken on 20 Jun 2007 18:15:34 (GMT) A-Squared Found nothing AntiVir Found nothing ArcaVir Found nothing Avast Found nothing AVG Antivirus Found nothing BitDefender Found nothing ClamAV Found nothing Dr.Web Found nothing F-Prot Antivirus Found nothing F-Secure Anti-Virus Found nothing Fortinet Found nothing Kaspersky Anti-Virus Found nothing NOD32 Found nothing Norman Virus Control Found nothing Panda Antivirus Found nothing Rising Antivirus Found nothing VirusBuster Found nothing VBA32 Found nothing
  11. velomania49
    Bonjour, ah ça doit être ce rapport, dsl je ne l'avais pas vu hier ComboFix 07-06-18.2 - C:\Documents and Settings\Guillaume\Bureau\ComboFix.exe "Guillaume" - 2007-06-19 18:39:19 - Service Pack 2 NTFS ADS removed - svchost.exe: deleted 68 bytes in 1 streams. ((((((((((((((((((((((((((((((((((((((( Other Deletions ))))))))))))))))))))))))))))))))))))))))))))))))) C:\DOCUME~1\GUILLA~1\MESDOC~1.\dobe~1 C:\DOCUME~1\Nicolas\APPLIC~1\Install.dat C:\Program Files\Fichiers communs\Yazzle1162OinAdmin.exe C:\Program Files\Fichiers communs\Yazzle1162OinUninstaller.exe C:\Program Files\outerinfo C:\Program Files\outerinfo\Terms.rtf C:\WINDOWS\asembl~1 C:\WINDOWS\asembl~1\c?rss.exe C:\WINDOWS\fnts~1 ((((((((((((((((((((((((( Files Created from 2007-05-19 to 2007-06-19 ))))))))))))))))))))))))))))))) 2007-06-19 18:38 49,152 --a------ C:\WINDOWS\nircmd.exe 2007-06-19 15:29 <REP> d-------- C:\WINDOWS\LastGood 2007-06-19 14:23 <REP> d-------- C:\VundoFix Backups 2007-06-18 19:03 53,248 --a------ C:\WINDOWS\system32\Process.exe 2007-06-18 19:03 <REP> d-------- C:\Program Files\Navilog1 2007-06-18 18:09 60,928 --a------ C:\WINDOWS\system32\mqz.dll 2007-06-18 18:09 2 --a------ C:\WINDOWS\system32\wcpisvsu.exe 2007-06-18 12:28 <REP> d-------- C:\DOCUME~1\ALLUSE~1\APPLIC~1\AntiVir PersonalEdition Classic 2007-06-16 17:53 99,072 --a------ C:\mevqvvvb1.exe 2007-06-16 17:53 94,976 --a------ C:\mevqvvvb3.exe 2007-06-16 17:53 100,096 --a------ C:\mevqvvvb2.exe 2007-06-11 13:12 <REP> d-------- C:\DOCUME~1\GUILLA~1\APPLIC~1\Ultimate Fixer 2007-06-11 09:31 <REP> d-------- C:\Program Files\Ultimate Fixer 2007-06-11 09:31 <REP> d-------- C:\DOCUME~1\Maman\APPLIC~1\Ultimate Fixer 2007-06-02 20:25 <REP> d-------- C:\DOCUME~1\GUILLA~1\APPLIC~1\Apple Computer 2007-05-29 13:51 88,624 -ra------ C:\WINDOWS\system32\drivers\se57mgmt.sys 2007-05-29 13:49 97,088 -ra------ C:\WINDOWS\system32\drivers\se57mdm.sys 2007-05-29 13:49 9,360 -ra------ C:\WINDOWS\system32\drivers\se57mdfl.sys 2007-05-29 13:49 61,536 -ra------ C:\WINDOWS\system32\drivers\se57bus.sys 2007-05-29 13:49 6,240 -ra------ C:\WINDOWS\system32\drivers\se57cmnt.sys 2007-05-29 13:49 6,240 -ra------ C:\WINDOWS\system32\drivers\se57cm.sys 2007-05-29 13:49 5,872 -ra------ C:\WINDOWS\system32\drivers\se57whnt.sys 2007-05-29 13:49 5,872 -ra------ C:\WINDOWS\system32\drivers\se57wh.sys (((((((((((((((((((((((((((((((((((((((( Find3M Report )))))))))))))))))))))))))))))))))))))))))))))))))))) 2007-06-19 13:54:15 -------- d-----w C:\DOCUME~1\GUILLA~1\APPLIC~1\Image Zone Express 2007-06-19 13:29:41 -------- d-----w C:\Program Files\Windows Live Safety Center 2007-06-17 20:46:47 1,324 ----a-w C:\WINDOWS\system32\d3d9caps.dat 2007-05-19 22:53:04 76,144 ----a-w C:\WINDOWS\system32\perfc00C.dat 2007-05-19 22:53:04 470,828 ----a-w C:\WINDOWS\system32\perfh00C.dat 2007-05-17 21:25:53 -------- d-----w C:\Program Files\DivX 2007-05-16 15:13:53 683,520 ----a-w C:\WINDOWS\system32\inetcomm.dll 2007-05-13 13:23:45 -------- d-----w C:\DOCUME~1\GUILLA~1\APPLIC~1\Sony 2007-05-13 13:16:09 -------- d-----w C:\Program Files\Sony 2007-05-13 13:09:57 -------- d-----w C:\Program Files\Apple Software Update 2007-05-09 10:09:10 -------- d-----w C:\Program Files\ErrorKiller 2007-05-08 09:37:09 -------- d-----w C:\Program Files\Ludiclub 2007-04-25 14:22:35 144,896 ----a-w C:\WINDOWS\system32\schannel.dll 2007-04-18 16:14:18 2,854,400 ----a-w C:\WINDOWS\system32\msi.dll 2007-04-12 19:08:35 1,056 --sha-w C:\vjljaw3o.sys 2007-04-06 21:58:57 80 --sh--r C:\WINDOWS\system32\DDCA4E3A44.dll 2004-10-08 17:46:47 56 --sh--r C:\WINDOWS\system32\23D69F2708.sys ((((((((((((((((((((((((((((((((((((( Reg Loading Points )))))))))))))))))))))))))))))))))))))))))))))))))) *Note* empty entries & legit default entries are not shown [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects] {761497BB-D6F0-462C-B6EB-D4DAF1D92D43}=C:\Program Files\Java\jre1.6.0_01\bin\ssv.dll [2007-03-14 03:43] {9030D464-4C02-4ABF-8ECC-5164760863C6}=C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2006-04-17 13:32] {AA58ED58-01DD-4d91-8333-CF10577473F7}=c:\program files\google\googletoolbar4.dll [2007-01-20 00:56] {B0033C15-D5F1-882C-8C78-88ADAB9720C0}=C:\WINDOWS\system32\mqz.dll [2007-05-21 15:59] {B9F8003D-7ED9-42A6-B4E8-D68338F03E13}=C:\WINDOWS\system32\ddcyx.dll [] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "Cmaudio"="cmicnfg.cpl" [] "ATICCC"="C:\Program Files\ATI Technologies\ATI.ACE\cli.exe" [2006-01-02 17:41] "TkBellExe"="C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe" [2005-08-23 14:12] "QuickTime Task"="D:\Program Files\QuickTime\qttask.exe" [2006-09-01 15:57] "AOLDialer"="C:\Program Files\Fichiers communs\AOL\ACS\AOLDial.exe" [2006-11-17 13:41] "HP Software Update"="D:\HP\HP Software Update\HPWuSchd2.exe" [2005-05-12 00:12] "HostManager"="C:\Program Files\Fichiers communs\AOL\1132969887\ee\AOLSoftware.exe" [2006-11-17 15:16] "SpeedTouch USB Diagnostics"="d:\Thomson\SpeedTouch USB\Dragdiag.exe" [2004-04-07 08:02] "SunJavaUpdateSched"="C:\Program Files\Java\jre1.6.0_01\bin\jusched.exe" [2007-03-14 03:43] "Ultimate Fixer"="C:\Program Files\Ultimate Fixer\UltimateFixer.exe" [] "avgnt"="C:\Program Files\AntiVir PersonalEdition Classic\avgnt.exe" [2007-04-02 10:35] [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}"="C:\Program Files\Fichiers communs\Ahead\Lib\NMBgMonitor.exe" [2006-04-21 17:03] "swg"="C:\Program Files\Google\GoogleToolbarNotifier\1.2.1128.5462\GoogleToolbarNotifier.exe" [2007-01-27 12:11] "Lrwr"="C:\WINDOWS\FNTS~1\chkntfs.exe" [] "Kuhk"="C:\WINDOWS\a?sembly\c?rss.exe" [] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks] "{35B2861B-2B26-4691-9FF0-09083722C736}"="C:\WINDOWS\system32\RadExe.dll" [2004-10-01 21:34] "{54D9498B-CF93-414F-8984-8CE7FDE0D391}"="d:\ewido\security suite\shellhook.dll" [2004-09-30 14:21] [HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\winlogon\notify\winhab32] winhab32.dll [HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\winlogon\notify\X] X [HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\winlogon\notify\¸hp] ¸hp [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Documents and Settings^All Users^Menu Démarrer^Programmes^Démarrage^Adobe Gamma Loader.lnk] backup=C:\WINDOWS\pss\Adobe Gamma Loader.lnkCommon Startup [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Documents and Settings^All Users^Menu Démarrer^Programmes^Démarrage^AOL 9.0 Icône AOL.lnk] backup=C:\WINDOWS\pss\AOL 9.0 Icône AOL.lnkCommon Startup [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Documents and Settings^All Users^Menu Démarrer^Programmes^Démarrage^AOL Compagnon.lnk] backup=C:\WINDOWS\pss\AOL Compagnon.lnkCommon Startup [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Documents and Settings^All Users^Menu Démarrer^Programmes^Démarrage^HP Digital Imaging Monitor.lnk] backup=C:\WINDOWS\pss\HP Digital Imaging Monitor.lnkCommon Startup [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Documents and Settings^All Users^Menu Démarrer^Programmes^Démarrage^Kodak software updater.lnk] backup=C:\WINDOWS\pss\Kodak software updater.lnkCommon Startup [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Documents and Settings^All Users^Menu Démarrer^Programmes^Démarrage^Logiciel Kodak EasyShare.lnk] backup=C:\WINDOWS\pss\Logiciel Kodak EasyShare.lnkCommon Startup [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Documents and Settings^All Users^Menu Démarrer^Programmes^Démarrage^NkbMonitor.exe.lnk] backup=C:\WINDOWS\pss\NkbMonitor.exe.lnkCommon Startup [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\AOLDialer] C:\Program Files\Fichiers communs\AOL\ACS\AOLDial.exe [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\AtiPTA] atiptaxx.exe [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\errorkiller] "C:\Program Files\errorkiller\errorkiller.exe" -boot [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\HostManager] C:\Program Files\Fichiers communs\AOL\1132969887\ee\AOLHostManager.exe [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\HP Software Update] D:\HP\HP Software Update\HPWuSchd2.exe [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\mmtask] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\MSMSGS] "C:\Program Files\Messenger\msmsgs.exe" /background [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\MultiRes] C:\Program Files\MultiRes\MultiRes.exe [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NeroFilterCheck] C:\Program Files\Fichiers communs\Ahead\Lib\NeroCheck.exe [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SiSUSBRG] C:\WINDOWS\SiSUSBrg.exe [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SpeedTouch USB Diagnostics] "d:\Thomson\SpeedTouch USB\Dragdiag.exe" /icon [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\TkBellExe] "C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe" -osboot [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\services] "AOLService"=2 (0x2) "AOL ACS"=2 (0x2) "RadClock"=2 (0x2) "C-DillaCdaC11BA"=2 (0x2) "ATI Smart"=2 (0x2) "Ati HotKey Poller"=2 (0x2) [HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\svchost] Usnsvc usnsvc [HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{6f633d86-1bb5-11da-9a0d-0090d0f3ae71}] AutoRun\command- C:\WINDOWS\system32\RunDLL32.EXE Shell32.DLL,ShellExec_RunDLL Boot.exe e Open\command- Boot.exe e [HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{9d87febe-d858-11db-9de8-0090d0f3ae71}] AutoRun\command- F:\InstallTomTomHOME.exe *Newly Created Service* - ATWPKT2 Contents of the 'Scheduled Tasks' folder 2007-06-19 17:00:05 C:\WINDOWS\tasks\AA5447139377C3B7.job 2007-06-08 13:30:00 C:\WINDOWS\tasks\AppleSoftwareUpdate.job ************************************************************************** catchme 0.3.721 W2K/XP/Vista - userland rootkit detector by Gmer, http://www.gmer.net Rootkit scan 2007-06-19 18:58:26 Windows 5.1.2600 Service Pack 2 NTFS scanning hidden processes ... scanning hidden autostart entries ... scanning hidden files ... ************************************************************************** Completion time: 2007-06-19 19:01:42 C:\ComboFix-quarantined-files.txt ... 2007-06-19 19:01 --- E O F ---
  12. velomania49
  13. velomania49
    bonjour, merci pour ton aide, je vois déjà les effets Alors voici le rapport de Vundofix: VundoFix V6.5.1 Checking Java version... Scan started at 14:23:18 19/06/2007 Listing files found while scanning.... C:\windows\system32\bcsujdfc.dll C:\windows\system32\bmuipqjq.ini C:\windows\system32\byafguiq.ini C:\windows\system32\cfdjuscb.ini C:\WINDOWS\system32\ddcyx.dll C:\WINDOWS\system32\efccaaw.dll C:\windows\system32\ilnmp.ini C:\WINDOWS\system32\iqxmxmfl.dll C:\windows\system32\ktorhgir.ini C:\windows\system32\lfmxmxqi.ini C:\windows\system32\pmnli.dll C:\windows\system32\pqajuuox.dll C:\windows\system32\qiugfayb.dll C:\windows\system32\qjqpiumb.dll C:\windows\system32\qnmgsvox.dll C:\windows\system32\righrotk.dll C:\WINDOWS\system32\taveqbec.dll C:\windows\system32\vefkkmjy.dll C:\WINDOWS\system32\vktqnxxo.dll C:\windows\system32\xbdmijyy.ini C:\windows\system32\xouujaqp.ini C:\windows\system32\xovsgmnq.ini C:\windows\system32\xxyaaxu.dll C:\WINDOWS\system32\xycdd.bak1 C:\WINDOWS\system32\xycdd.bak2 C:\windows\system32\xycdd.ini C:\windows\system32\xycdd.ini2 C:\windows\system32\xycdd.tmp C:\windows\system32\yyjimdbx.dll Beginning removal... Attempting to delete C:\windows\system32\bcsujdfc.dll C:\windows\system32\bcsujdfc.dll Has been deleted! Attempting to delete C:\windows\system32\bmuipqjq.ini C:\windows\system32\bmuipqjq.ini Has been deleted! Attempting to delete C:\windows\system32\byafguiq.ini C:\windows\system32\byafguiq.ini Has been deleted! Attempting to delete C:\windows\system32\cfdjuscb.ini C:\windows\system32\cfdjuscb.ini Has been deleted! Attempting to delete C:\WINDOWS\system32\ddcyx.dll C:\WINDOWS\system32\ddcyx.dll Has been deleted! Attempting to delete C:\WINDOWS\system32\efccaaw.dll C:\WINDOWS\system32\efccaaw.dll Could not be deleted. Attempting to delete C:\windows\system32\ilnmp.ini C:\windows\system32\ilnmp.ini Has been deleted! Attempting to delete C:\WINDOWS\system32\iqxmxmfl.dll C:\WINDOWS\system32\iqxmxmfl.dll Could not be deleted. Attempting to delete C:\windows\system32\ktorhgir.ini C:\windows\system32\ktorhgir.ini Has been deleted! Attempting to delete C:\windows\system32\lfmxmxqi.ini C:\windows\system32\lfmxmxqi.ini Has been deleted! Attempting to delete C:\windows\system32\pmnli.dll C:\windows\system32\pmnli.dll Has been deleted! Attempting to delete C:\windows\system32\pqajuuox.dll C:\windows\system32\pqajuuox.dll Has been deleted! Attempting to delete C:\windows\system32\qiugfayb.dll C:\windows\system32\qiugfayb.dll Has been deleted! Attempting to delete C:\windows\system32\qjqpiumb.dll C:\windows\system32\qjqpiumb.dll Has been deleted! Attempting to delete C:\windows\system32\qnmgsvox.dll C:\windows\system32\qnmgsvox.dll Has been deleted! Attempting to delete C:\windows\system32\righrotk.dll C:\windows\system32\righrotk.dll Has been deleted! Attempting to delete C:\WINDOWS\system32\taveqbec.dll C:\WINDOWS\system32\taveqbec.dll Has been deleted! Attempting to delete C:\windows\system32\vefkkmjy.dll C:\windows\system32\vefkkmjy.dll Has been deleted! Attempting to delete C:\windows\system32\xbdmijyy.ini C:\windows\system32\xbdmijyy.ini Has been deleted! Attempting to delete C:\windows\system32\xouujaqp.ini C:\windows\system32\xouujaqp.ini Has been deleted! Attempting to delete C:\windows\system32\xovsgmnq.ini C:\windows\system32\xovsgmnq.ini Has been deleted! Attempting to delete C:\windows\system32\xxyaaxu.dll C:\windows\system32\xxyaaxu.dll Has been deleted! Attempting to delete C:\WINDOWS\system32\xycdd.bak1 C:\WINDOWS\system32\xycdd.bak1 Has been deleted! Attempting to delete C:\WINDOWS\system32\xycdd.bak2 C:\WINDOWS\system32\xycdd.bak2 Has been deleted! Attempting to delete C:\windows\system32\xycdd.ini C:\windows\system32\xycdd.ini Has been deleted! Attempting to delete C:\windows\system32\xycdd.ini2 C:\windows\system32\xycdd.ini2 Has been deleted! Attempting to delete C:\windows\system32\xycdd.tmp C:\windows\system32\xycdd.tmp Has been deleted! Attempting to delete C:\windows\system32\yyjimdbx.dll C:\windows\system32\yyjimdbx.dll Has been deleted! Performing Repairs to the registry. Done! VundoFix V6.5.1 Checking Java version... Scan started at 14:44:41 19/06/2007 Listing files found while scanning.... C:\windows\system32\iqxmxmfl.dll Beginning removal... Attempting to delete C:\windows\system32\iqxmxmfl.dll C:\windows\system32\iqxmxmfl.dll Has been deleted! Performing Repairs to the registry. Done! et celui de Hijackthis (euh...renommé en velomani49, pourquoi au fait?) Logfile of HijackThis v1.99.1 Scan saved at 14:59:43, on 19/06/2007 Platform: Windows XP SP2 (WinNT 5.01.2600) MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180) Running processes: C:\WINDOWS\System32\smss.exe C:\WINDOWS\system32\winlogon.exe C:\WINDOWS\system32\services.exe C:\WINDOWS\system32\lsass.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\System32\svchost.exe C:\WINDOWS\system32\spoolsv.exe C:\Program Files\AntiVir PersonalEdition Classic\avguard.exe C:\WINDOWS\Explorer.EXE C:\Program Files\AntiVir PersonalEdition Classic\sched.exe C:\PROGRA~1\FICHIE~1\AOL\ACS\AOLacsd.exe C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe D:\Program Files\QuickTime\qttask.exe C:\WINDOWS\System32\svchost.exe C:\Program Files\Fichiers communs\AOL\ACS\AOLDial.exe D:\HP\HP Software Update\HPWuSchd2.exe C:\Program Files\Fichiers communs\AOL\1132969887\ee\AOLSoftware.exe D:\Thomson\SpeedTouch USB\Dragdiag.exe C:\Program Files\Java\jre1.6.0_01\bin\jusched.exe C:\Program Files\AntiVir PersonalEdition Classic\avgnt.exe C:\Program Files\Fichiers communs\Ahead\Lib\NMBgMonitor.exe C:\Program Files\Google\GoogleToolbarNotifier\1.2.1128.5462\GoogleToolbarNotifier.exe C:\WINDOWS\wanmpsvc.exe C:\WINDOWS\a?sembly\c?rss.exe D:\HP\Digital Imaging\bin\hpqtra08.exe D:\TooX\Groom\GroomAgent.exe c:\program files\fichiers communs\aol\1132969887\ee\aolsoftware.exe D:\HP\Digital Imaging\bin\hpqSTE08.exe C:\WINDOWS\System32\svchost.exe C:\WINDOWS\system32\wuauclt.exe C:\Program Files\AOL 9.0a\waol.exe C:\Program Files\AOL 9.0a\shellmon.exe C:\Program Files\Fichiers communs\Aol\aoltpspd.exe C:\Program Files\MSN Messenger\msnmsgr.exe C:\WINDOWS\system32\svchost.exe C:\Program Files\HijackThis\velomania49.exe R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.unioncyclistecholet49.com/ O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_01\bin\ssv.dll O2 - BHO: Windows Live Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar4.dll O2 - BHO: (no name) - {B0033C15-D5F1-882C-8C78-88ADAB9720C0} - C:\WINDOWS\system32\mqz.dll O2 - BHO: (no name) - {B9F8003D-7ED9-42A6-B4E8-D68338F03E13} - C:\WINDOWS\system32\ddcyx.dll (file missing) O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar4.dll O4 - HKLM\..\Run: [Cmaudio] RunDll32 cmicnfg.cpl,CMICtrlWnd O4 - HKLM\..\Run: [ATICCC] "C:\Program Files\ATI Technologies\ATI.ACE\cli.exe" runtime -Delay O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe" -osboot O4 - HKLM\..\Run: [QuickTime Task] "D:\Program Files\QuickTime\qttask.exe" -atboottime O4 - HKLM\..\Run: [AOLDialer] C:\Program Files\Fichiers communs\AOL\ACS\AOLDial.exe O4 - HKLM\..\Run: [HP Software Update] D:\HP\HP Software Update\HPWuSchd2.exe O4 - HKLM\..\Run: [HostManager] C:\Program Files\Fichiers communs\AOL\1132969887\ee\AOLSoftware.exe O4 - HKLM\..\Run: [speedTouch USB Diagnostics] "d:\Thomson\SpeedTouch USB\Dragdiag.exe" /icon O4 - HKLM\..\Run: [sunJavaUpdateSched] "C:\Program Files\Java\jre1.6.0_01\bin\jusched.exe" O4 - HKLM\..\Run: [avp] C:\WINDOWS\avp.exe O4 - HKLM\..\Run: [smgr] smgr.exe O4 - HKLM\..\Run: [ultimate Fixer] "C:\Program Files\Ultimate Fixer\UltimateFixer.exe" hide O4 - HKLM\..\Run: [avgnt] "C:\Program Files\AntiVir PersonalEdition Classic\avgnt.exe" /min O4 - HKCU\..\Run: [bgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}] "C:\Program Files\Fichiers communs\Ahead\Lib\NMBgMonitor.exe" O4 - HKCU\..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\1.2.1128.5462\GoogleToolbarNotifier.exe O4 - HKCU\..\Run: [Lrwr] "C:\WINDOWS\FNTS~1\chkntfs.exe" -vt yazb O4 - HKCU\..\Run: [Kuhk] C:\WINDOWS\a?sembly\c?rss.exe O4 - Startup: Groom Agent.lnk = D:\TooX\Groom\GroomAgent.exe O4 - Global Startup: HP Digital Imaging Monitor.lnk = D:\HP\Digital Imaging\bin\hpqtra08.exe O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_01\bin\ssv.dll O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_01\bin\ssv.dll O16 - DPF: Fortune Bingo by pogo - http://game1.pogo.com/applet-6.7.4.35/supe...bingo-fr_FR.cab O16 - DPF: Squelchies by pogo - http://game1.pogo.com/applet-6.7.4.35/sque...chies-fr_FR.cab O16 - DPF: Yahoo! Poker - http://download.games.yahoo.com/games/clients/y/pt3_x.cab O16 - DPF: Yahoo! Pool 2 - http://download2.games.yahoo.com/games/clients/y/poti_x.cab O16 - DPF: {00B71CFB-6864-4346-A978-C0A14556272C} (Checkers Class) - http://messenger.zone.msn.com/binary/msgrchkr.cab31267.cab O16 - DPF: {2917297F-F02B-4B9D-81DF-494B6333150B} (Minesweeper Flags Class) - http://messenger.zone.msn.com/binary/MineS...er.cab31267.cab O16 - DPF: {5D6F45B3-9043-443D-A792-115447494D24} (UnoCtrl Class) - http://messenger.zone.msn.com/FR-FR/a-UNO1/GAME_UNO1.cab O16 - DPF: {867E13F2-7F31-44FB-AC97-CD38E0DC46EF} (HardwareDetection Control) - http://drivers1.free.fr/telecharger.php?id=2&version= O16 - DPF: {8E0D4DE5-3180-4024-A327-4DFAD1796A8D} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/Messe...nt.cab31267.cab O16 - DPF: {C3F79A2B-B9B4-4A66-B012-3EE46475B072} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/Messe...nt.cab56907.cab O16 - DPF: {F5A7706B-B9C0-4C89-A715-7A0C6B05DD48} (Minesweeper Flags Class) - http://messenger.zone.msn.com/binary/MineS...er.cab56986.cab O17 - HKLM\System\CCS\Services\Tcpip\..\{00716CC3-D0AD-43CF-957B-B622604CCF66}: NameServer = 205.188.146.145 O17 - HKLM\System\CS1\Services\Tcpip\..\{00716CC3-D0AD-43CF-957B-B622604CCF66}: NameServer = 205.188.146.145 O18 - Protocol: livecall - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\MSNMES~1\MSGRAP~1.DLL O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\MSNMES~1\MSGRAP~1.DLL O20 - Winlogon Notify: instcat - instcat.dll (file missing) O20 - Winlogon Notify: WgaLogon - C:\WINDOWS\SYSTEM32\WgaLogon.dll O20 - Winlogon Notify: winhab32 - winhab32.dll (file missing) O20 - Winlogon Notify: X - X (file missing) O20 - Winlogon Notify: ¸hp - ¸hp (file missing) O23 - Service: AntiVir PersonalEdition Classic Scheduler (AntiVirScheduler) - Avira GmbH - C:\Program Files\AntiVir PersonalEdition Classic\sched.exe O23 - Service: AntiVir PersonalEdition Classic Guard (AntiVirService) - Avira GmbH - C:\Program Files\AntiVir PersonalEdition Classic\avguard.exe O23 - Service: AOL Connectivity Service (AOL ACS) - AOL LLC - C:\PROGRA~1\FICHIE~1\AOL\ACS\AOLacsd.exe O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\WINDOWS\system32\Ati2evxx.exe O23 - Service: ATI Smart - Unknown owner - C:\WINDOWS\system32\ati2sgag.exe O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe O23 - Service: Pml Driver HPZ12 - HP - C:\WINDOWS\system32\HPZipm12.exe O23 - Service: WAN Miniport (ATW) Service (WANMiniportService) - America Online, Inc. - C:\WINDOWS\wanmpsvc.exe
  14. velomania49
    Bonsoir Bruce lee. Alors j'ai bien fait ce que tu m'as dit : donc voici le 1er rapport fsbl : 06/18/07 18:44:05 [info]: BlackLight Engine 1.0.61 initialized 06/18/07 18:44:05 [info]: OS: 5.1 build 2600 (Service Pack 2) 06/18/07 18:44:06 [Note]: 7019 4 06/18/07 18:44:06 [Note]: 7005 0 06/18/07 18:44:09 [Note]: 7006 0 06/18/07 18:44:09 [Note]: 7011 3772 06/18/07 18:44:10 [Note]: 7026 0 06/18/07 18:44:10 [Note]: 7026 0 06/18/07 18:44:53 [Note]: FSRAW library version 1.7.1021 06/18/07 19:01:04 [Note]: 7007 0 et le 2nd fixnavi : Search Navipromo version 2.0.3 commencé le 18/06/2007 à 19:04:19,17 !!! Attention,ce rapport peut indiquer des fichiers/programmes légitimes!!! !!! Poster ce rapport sur le forum pour le faire analyser !!! !!! Ne pas lancer la partie désinfection sans l'avis d'un spécialiste !!! Fix lancé depuis C:\Program Files\navilog1 Mise a jour le 08.06.2007 a 17h00 by IL-MAFIOSO Executé en mode normal *** Recherche Programmes installes *** *** Recherche dossiers dans C:\WINDOWS *** *** Recherche dossiers dans C:\Program Files *** *** Recherche dossiers dans C:\Documents and Settings\All Users\Application Data *** *** Recherche dossiers dans C:\Documents and Settings\Guillaume\Application Data *** *** Recherche avec BlackLight Engine/F-secure *** BlackLight Engine est un produit de F-secure, pour + d'infos : http://www.f-secure.com/blacklight/blacklight_help.html F-SECURE BLACKLIGHT ROOTKIT ELIMINATOR ====================================== Copyright 2005-2006 F-Secure Corporation. All rights reserved. This is a beta version. It will expire on 1st of April, 2007. Version information: 2.2.1061. [+] Started on 06/18/07 at 19:04:23. [+] Initializing ... [+] Starting scan, press Ctrl-C to abort. [+] Scanning for hidden items .................................................................................................. [+] Scan complete. [+] Summary: 0 hidden item(s) found, 0 scheduled for renaming. [+] Exited on 06/18/07 at 19:15:12 (return code = 0). *** Recherche fichiers *** *** Recherche cles registre *** Recherche dans [HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\SharedDLLs] Recherche dans [HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\ModuleUsage] Recherche Clé Magic Control *** Module de Recherche complémentaire *** (Recherche fichiers spécifiques) 1)Recherche fichiers connus: C:\WINDOWS\system32\xycdd.ini2 trouvé ! infection Vundo possible non traité par cet outil ! C:\WINDOWS\system32\xycdd.bak1 trouvé ! infection Vundo possible non traité par cet outil ! C:\WINDOWS\system32\xycdd.bak2 trouvé ! infection Vundo possible non traité par cet outil ! 2)Recherche Heuristique : * ** *** **** ***** ****** ******* ******** *** Analyse Terminé le 18/06/2007 à 19:15:58,98 *** Merci d'avance. Par contre je ne pourrai répondre que demain dans l'après midi...et oui rattrapage demain matin :s Bonne soirée
  15. velomania49
    Bonjour, je crois que là je suis bien infecté! depuis la semaine dernière, j'ai des pages IE qui s'ouvrent, le pc ralenti...J'ai fais l'analyse préliminaire mais j'ai rien pu faire en mode sans echecs, il n'a jamais voulu se lancer! alors je l'ai fais hors connexion internet. Voici le rapport, merci d'avance : Logfile of HijackThis v1.99.1 Scan saved at 17:07:43, on 18/06/2007 Platform: Windows XP SP2 (WinNT 5.01.2600) MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180) Running processes: C:\WINDOWS\System32\smss.exe C:\WINDOWS\system32\winlogon.exe C:\WINDOWS\system32\services.exe C:\WINDOWS\system32\lsass.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\System32\svchost.exe C:\WINDOWS\system32\spoolsv.exe C:\Program Files\AntiVir PersonalEdition Classic\avguard.exe C:\WINDOWS\Explorer.EXE C:\Program Files\AntiVir PersonalEdition Classic\sched.exe C:\PROGRA~1\FICHIE~1\AOL\ACS\AOLacsd.exe C:\WINDOWS\System32\svchost.exe C:\WINDOWS\wanmpsvc.exe C:\WINDOWS\System32\svchost.exe C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe D:\Program Files\QuickTime\qttask.exe D:\HP\HP Software Update\HPWuSchd2.exe C:\Program Files\Fichiers communs\AOL\1132969887\ee\aolsoftware.exe D:\Thomson\SpeedTouch USB\Dragdiag.exe C:\Program Files\Java\jre1.6.0_01\bin\jusched.exe c:\program files\fichiers communs\aol\1132969887\ee\aolsoftware.exe C:\Program Files\AntiVir PersonalEdition Classic\avgnt.exe C:\Program Files\Fichiers communs\Ahead\Lib\NMBgMonitor.exe C:\Program Files\Google\GoogleToolbarNotifier\1.2.1128.5462\GoogleToolbarNotifier.exe D:\HP\Digital Imaging\bin\hpqtra08.exe D:\TooX\Groom\GroomAgent.exe D:\HP\Digital Imaging\bin\hpqSTE08.exe C:\Program Files\Internet Explorer\iexplore.exe C:\Program Files\Internet Explorer\iexplore.exe C:\Program Files\Internet Explorer\iexplore.exe C:\WINDOWS\system32\NOTEPAD.EXE C:\Program Files\HijackThis\HijackThis.exe R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.unioncyclistecholet49.com/ O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar4.dll O4 - HKLM\..\Run: [Cmaudio] RunDll32 cmicnfg.cpl,CMICtrlWnd O4 - HKLM\..\Run: [ATICCC] "C:\Program Files\ATI Technologies\ATI.ACE\cli.exe" runtime -Delay O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe" -osboot O4 - HKLM\..\Run: [QuickTime Task] "D:\Program Files\QuickTime\qttask.exe" -atboottime O4 - HKLM\..\Run: [AOLDialer] C:\Program Files\Fichiers communs\AOL\ACS\AOLDial.exe O4 - HKLM\..\Run: [HP Software Update] D:\HP\HP Software Update\HPWuSchd2.exe O4 - HKLM\..\Run: [HostManager] C:\Program Files\Fichiers communs\AOL\1132969887\ee\AOLSoftware.exe O4 - HKLM\..\Run: [speedTouch USB Diagnostics] "d:\Thomson\SpeedTouch USB\Dragdiag.exe" /icon O4 - HKLM\..\Run: [sunJavaUpdateSched] "C:\Program Files\Java\jre1.6.0_01\bin\jusched.exe" O4 - HKLM\..\Run: [avp] C:\WINDOWS\avp.exe O4 - HKLM\..\Run: [smgr] smgr.exe O4 - HKLM\..\Run: [ultimate Fixer] "C:\Program Files\Ultimate Fixer\UltimateFixer.exe" hide O4 - HKLM\..\Run: [avgnt] "C:\Program Files\AntiVir PersonalEdition Classic\avgnt.exe" /min O4 - HKCU\..\Run: [bgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}] "C:\Program Files\Fichiers communs\Ahead\Lib\NMBgMonitor.exe" O4 - HKCU\..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\1.2.1128.5462\GoogleToolbarNotifier.exe O4 - Startup: Groom Agent.lnk = D:\TooX\Groom\GroomAgent.exe O4 - Global Startup: HP Digital Imaging Monitor.lnk = D:\HP\Digital Imaging\bin\hpqtra08.exe O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_01\bin\ssv.dll O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_01\bin\ssv.dll O16 - DPF: Fortune Bingo by pogo - http://game1.pogo.com/applet-6.7.4.35/supe...bingo-fr_FR.cab O16 - DPF: Squelchies by pogo - http://game1.pogo.com/applet-6.7.4.35/sque...chies-fr_FR.cab O16 - DPF: Yahoo! Poker - http://download.games.yahoo.com/games/clients/y/pt3_x.cab O16 - DPF: Yahoo! Pool 2 - http://download2.games.yahoo.com/games/clients/y/poti_x.cab O16 - DPF: {00B71CFB-6864-4346-A978-C0A14556272C} (Checkers Class) - http://messenger.zone.msn.com/binary/msgrchkr.cab31267.cab O16 - DPF: {2917297F-F02B-4B9D-81DF-494B6333150B} (Minesweeper Flags Class) - http://messenger.zone.msn.com/binary/MineS...er.cab31267.cab O16 - DPF: {5D6F45B3-9043-443D-A792-115447494D24} (UnoCtrl Class) - http://messenger.zone.msn.com/FR-FR/a-UNO1/GAME_UNO1.cab O16 - DPF: {867E13F2-7F31-44FB-AC97-CD38E0DC46EF} (HardwareDetection Control) - http://drivers1.free.fr/telecharger.php?id=2&version= O16 - DPF: {8E0D4DE5-3180-4024-A327-4DFAD1796A8D} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/Messe...nt.cab31267.cab O16 - DPF: {C3F79A2B-B9B4-4A66-B012-3EE46475B072} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/Messe...nt.cab56907.cab O16 - DPF: {F5A7706B-B9C0-4C89-A715-7A0C6B05DD48} (Minesweeper Flags Class) - http://messenger.zone.msn.com/binary/MineS...er.cab56986.cab O18 - Protocol: livecall - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\MSNMES~1\MSGRAP~1.DLL O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\MSNMES~1\MSGRAP~1.DLL O23 - Service: AntiVir PersonalEdition Classic Scheduler (AntiVirScheduler) - Avira GmbH - C:\Program Files\AntiVir PersonalEdition Classic\sched.exe O23 - Service: AntiVir PersonalEdition Classic Guard (AntiVirService) - Avira GmbH - C:\Program Files\AntiVir PersonalEdition Classic\avguard.exe O23 - Service: AOL Connectivity Service (AOL ACS) - AOL LLC - C:\PROGRA~1\FICHIE~1\AOL\ACS\AOLacsd.exe O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\WINDOWS\system32\Ati2evxx.exe O23 - Service: ATI Smart - Unknown owner - C:\WINDOWS\system32\ati2sgag.exe O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe O23 - Service: Pml Driver HPZ12 - HP - C:\WINDOWS\system32\HPZipm12.exe O23 - Service: WAN Miniport (ATW) Service (WANMiniportService) - America Online, Inc. - C:\WINDOWS\wanmpsvc.exe
×
×
  • Créer...