Aller au contenu

Nghia

Membres
 Afficher le profil  Afficher son activité

  • Compteur de contenus

    22

  • Inscription

  • Dernière visite

 Type de contenu 

Tout ce qui a été posté par Nghia

  1. Nghia

    Comportement bizarre du clavier

    Nghia a répondu à un(e) sujet de Nghia dans Hardware

    Pour info, j'ai résolu le problème. Il s'agissait du driver du pad synaptics qui était pas bien installé. J'ai ré-installé la dernière version et voila c'est bon
  2. Nghia

    Comportement bizarre du clavier

    Nghia a répondu à un(e) sujet de Nghia dans Hardware

    Ben en fait elle est pas vraiment coincée. Elle réagit juste bizarre. Limite je devrais faire une vidéo si j'ai le temps dans la soirée.
  3. Nghia

    Comportement bizarre du clavier

    Nghia a répondu à un(e) sujet de Nghia dans Hardware

    Merci les gars pour les feedbacks. Je pense pas avoir de virus, je viens de tout réinstallé et j'ai refait des scans. J'ai oublié de dire que c'est un clavier d'ordi portable (Asus S5N) et il est difficile pour mois d'en changer J'ai vérifié les touches CTRL, je ne vois rien de bizarre, elles ont l'air bien. Vraiment étonnant.
  4. Nghia
    Bonjour à tous, Je vous expose ici un problème un peu bizarre avec mon clavier. J'ai formaté et ré-installé mon PC ce WE et tout est nickel rapide. Mais j'ai remarqué une réaction bizarre quand je tape du texte. Je sais pas trop comment expliquer cela, mais des fois quand je tape du texte, le curseur saute dans un autre endroit du paragrahe, des fois, il selectionne un bloc de texte ou des mots... Je n'arrive pas trop à reproduire pourquoi et quand il fait cela, mais j'ai noté que cela arrive souvent avec la touche "t". Une idée? merci de votre aide!
  5. Nghia

    Iexplore.exe qui consume tout le CPU

    Nghia a répondu à un(e) sujet de Nghia dans Software

    Salut Malekal ! Okie good news pour l'infection (ou la non infection). Mais c'est bizarre, je n'ai pas de toolbar. J'utilise IE7 nu. Je vais désactiver le anti phishing pour voir. Merci!
  6. Nghia
    Hello! Je viens voir voir car j'ai un soucis avec mon PC Portable (XP Pro). Depuis quelques jours, Internet Explorer ne répond plus et le process IExplore bouffe tout le CPU (100%). cela arrive aléatoirement au bout de 10 mns comme après plusieurs heures. J'ai fait tourner Avast en mode sans echec, SpyBot, Ad aware SE, CCleaner, a-squared free et CleanUp40 (tous avec les dernières mises à jour). Ils m'ont rien trouvé de grave. J'ai fait tourner Panda Online, rien de trouvé non plus. J'ai essayé Secuser.com, mais il m'indique cette erreur après l'installation du contrôle ActiveX : "HouseCall (Lite version) Copyright © 1998-2000 Trend Micro Inc. Either your browser does not support the object element or an error occurred while downloading the object. Unable to load the HouseCall ActiveX control." La je sèche complet. Je sais pas ou regarder :/ Voici le Rapport DiagHelp : C:\WINDOWS\System32/drivers\STLD.SYS -->22/04/2009 20:24:48 C:\WINDOWS\System32/drivers\aswRdr.sys -->15/01/2007 18:26:08 C:\WINDOWS\System32/drivers\aswTdi.sys -->15/01/2007 18:25:24 C:\WINDOWS\System32/drivers\aswmon.sys -->21/12/2006 00:56:14 C:\WINDOWS\System32/drivers\aswmon2.sys -->21/12/2006 00:56:00 C:\WINDOWS\System32/drivers\aavmker4.sys -->21/12/2006 00:51:58 C:\WINDOWS\System32/drivers\AegisP.sys -->18/11/2006 13:06:52 C:\WINDOWS\System32\wpa.dbl -->23/03/2007 02:45:06 C:\WINDOWS\System32\Uninstall.ico -->22/03/2007 21:25:16 C:\WINDOWS\System32\Help.ico -->22/03/2007 21:25:16 C:\WINDOWS\System32\pavas.ico -->22/03/2007 21:25:14 C:\WINDOWS\System32\CONFIG.NT -->22/03/2007 11:18:58 C:\WINDOWS\System32\FNTCACHE.DAT -->16/03/2007 05:35:38 C:\WINDOWS\System32\LegitCheckControl.dll -->15/03/2007 18:19:28 C:\WINDOWS\System32\WgaTray.exe -->15/03/2007 18:17:20 C:\WINDOWS\System32\WgaLogon.dll -->15/03/2007 18:16:48 C:\WINDOWS\System32\MRT.exe -->07/03/2007 21:36:32 C:\WINDOWS\System32\TZLog.log -->17/02/2007 10:54:08 C:\WINDOWS\System32\PerfStringBackup.INI -->08/02/2007 12:01:10 C:\WINDOWS\System32\perfh00C.dat -->08/02/2007 12:01:10 C:\WINDOWS\System32\perfc00C.dat -->08/02/2007 12:01:10 C:\WINDOWS\System32\perfh009.dat -->08/02/2007 12:01:10 C:\WINDOWS\System32\perfc009.dat -->08/02/2007 12:01:10 C:\WINDOWS\System32\tzchange.exe -->29/01/2007 09:58:06 C:\WINDOWS\System32\hhctrl.ocx -->23/01/2007 20:31:20 C:\WINDOWS\System32\SpOrder.dll -->20/01/2007 06:15:26 C:\WINDOWS\System32\sirenacm.dll -->19/01/2007 12:53:04 C:\WINDOWS\System32\aswBoot.exe -->15/01/2007 18:32:08 C:\WINDOWS\System32\AVASTSS.scr -->15/01/2007 18:23:20 C:\WINDOWS\System32\wininet.dll -->12/01/2007 09:27:42 C:\WINDOWS\System32\webcheck.dll -->12/01/2007 09:27:42 C:\WINDOWS\System32\urlmon.dll -->12/01/2007 09:27:42 C:\WINDOWS.log -->23/03/2007 02:43:52 C:\WINDOWS\wiadebug.log -->23/03/2007 02:43:26 C:\WINDOWS\bootstat.dat -->23/03/2007 02:43:14 C:\WINDOWS\WindowsUpdate.log -->23/03/2007 01:47:50 C:\WINDOWS\pavsig.txt -->22/03/2007 21:26:10 C:\WINDOWS\setupapi.log -->22/03/2007 21:26:02 C:\WINDOWS\ntbtlog.txt -->22/03/2007 19:44:22 C:\WINDOWS\SchedLgU.Txt -->22/03/2007 12:41:38 C:\WINDOWS\bthservsdp.dat -->22/03/2007 12:41:36 C:\WINDOWS\wiaservc.log -->22/03/2007 12:41:36 C:\WINDOWS\win.ini -->22/03/2007 06:30:30 C:\WINDOWS\system.ini -->22/03/2007 06:30:30 C:\WINDOWS\Sti_Trace.log -->22/03/2007 04:32:22 C:\WINDOWS\npnap32.INI -->15/03/2007 12:20:20 C:\WINDOWS\ModemLog_GlobeTrotter 3G+ Modem Interface.txt -->13/02/2007 00:12:06 C:\WINDOWS\twunk_16.exe |07/10/2002 17:17:35 C:\WINDOWS\twunk_32.exe |07/10/2002 17:17:35 C:\WINDOWS\unlite2.exe |07/12/2004 21:46:51 C:\WINDOWS\IsUn040c.exe |17/11/2004 10:16:56 C:\WINDOWS\IsUninst.exe |17/11/2004 10:19:12 C:\WINDOWS\PATCH.EXE |30/04/2005 01:04:58 C:\WINDOWS\runtsckl.exe |24/03/2004 18:22:16 C:\WINDOWS\tsc.exe |30/04/2005 01:06:50 C:\WINDOWS\SynCor.exe |17/11/2004 10:17:41 C:\WINDOWS\bwUnin-6.1.4.68-8876480L.exe |12/05/2005 16:26:20 C:\WINDOWS\unlite.exe |25/12/2004 13:02:27 C:\WINDOWS\bwUnin-7.2.0.137-8876480SL.exe |16/05/2005 15:39:52 C:\WINDOWS\IFinst26.exe |13/07/2006 02:27:17 C:\WINDOWS\sys.exe |09/01/2006 20:37:01 C:\WINDOWS\UninstallFirefox.exe |19/12/2005 23:21:16 C:\WINDOWS\Unin511T.exe |18/11/2006 13:06:16 C:\WINDOWS\bdoscandel.exe |04/03/2005 14:10:36 C:\WINDOWS\slrundll.exe |20/08/2004 00:10:02 C:\WINDOWS\UNWISE.EXE |20/12/2004 17:53:56 C:\WINDOWS\Ctregrun.exe |20/12/2004 17:59:42 C:\WINDOWS\Inst511T.exe |18/11/2006 13:06:16 C:\WINDOWS\twain.dll |07/10/2002 17:17:35 C:\WINDOWS\PalmDevC.dll |22/02/2005 13:47:49 C:\WINDOWS\UNZIP.DLL |30/04/2005 01:04:58 C:\WINDOWS\TMUPDATE.DLL |30/04/2005 01:04:59 C:\WINDOWS\loadhttp.dll |15/10/2002 14:29:40 C:\WINDOWS\patchw32.dll |14/12/2001 13:34:46 C:\WINDOWS\BPMNT.dll |30/04/2005 01:06:50 C:\WINDOWS\vsapi32.dll |30/04/2005 01:06:50 C:\WINDOWS\AuHCcup1.dll |23/07/1999 10:53:20 C:\WINDOWS\SynthCoreA.Dll |17/11/2004 10:17:41 C:\WINDOWS\hcextoutput.dll |30/04/2005 01:06:50 C:\WINDOWS\snymsico.dll |30/12/2003 02:26:40 C:\WINDOWS\esellerateEngine.dll |10/08/2005 15:20:18 C:\WINDOWS\eSellerateControl350.dll |06/06/2003 10:21:56 C:\WINDOWS\twain_32.dll |07/10/2002 17:17:35 C:\WINDOWS\NwtGatewayDLL.dll |20/01/2007 06:19:25 C:\WINDOWS\loader.dll |20/01/2007 06:19:25 C:\WINDOWS\system32\java.exe |04/09/2006 18:07:21 C:\WINDOWS\system32\javaw.exe |04/09/2006 18:07:21 C:\WINDOWS\system32\asuninst.exe |24/01/2006 00:57:17 C:\WINDOWS\system32\append.exe |07/10/2002 17:16:25 C:\WINDOWS\system32\dosx.exe |07/10/2002 17:16:33 C:\WINDOWS\system32\debug.exe |07/10/2002 17:16:31 C:\WINDOWS\system32\dvdplay.exe |23/08/2001 17:47:34 C:\WINDOWS\system32\edlin.exe |07/10/2002 17:16:52 C:\WINDOWS\system32\exe2bin.exe |07/10/2002 17:16:52 C:\WINDOWS\system32\fastopen.exe |07/10/2002 17:16:52 C:\WINDOWS\system32\javaws.exe |04/09/2006 18:07:21 C:\WINDOWS\system32\mem.exe |07/10/2002 17:17:03 C:\WINDOWS\system32\mscdexnt.exe |07/10/2002 17:17:06 C:\WINDOWS\system32\nlsfunc.exe |07/10/2002 17:17:14 C:\WINDOWS\system32\nw16.exe |07/10/2002 17:17:17 C:\WINDOWS\system32\setver.exe |07/10/2002 17:17:27 C:\WINDOWS\system32\share.exe |07/10/2002 17:17:27 C:\WINDOWS\system32\vwipxspx.exe |07/10/2002 17:17:37 C:\WINDOWS\system32\usrmlnka.exe |23/08/2001 17:47:48 C:\WINDOWS\system32\usrprbda.exe |23/08/2001 17:47:48 C:\WINDOWS\system32\usrshuta.exe |23/08/2001 17:47:48 C:\WINDOWS\system32\aswBoot.exe |22/03/2007 11:18:42 C:\WINDOWS\system32\redir.exe |07/10/2002 17:17:23 C:\WINDOWS\system32\DSndUp.exe |17/11/2004 10:17:40 C:\WINDOWS\system32\igfxext.exe |11/12/2003 22:17:32 C:\WINDOWS\system32\CleanUp.exe |17/11/2004 10:17:40 C:\WINDOWS\system32\igfxcfg.exe |11/12/2003 22:17:32 C:\WINDOWS\system32\igfxdiag.exe |11/12/2003 22:17:32 C:\WINDOWS\system32\igfxtray.exe |11/12/2003 22:17:46 C:\WINDOWS\system32\hkcmd.exe |11/12/2003 22:17:28 C:\WINDOWS\system32\AdHocWiz.exe |16/12/2003 16:54:00 C:\WINDOWS\system32\PfWizard.exe |16/12/2003 16:49:26 C:\WINDOWS\system32\SbrngSvc.exe |16/12/2003 16:42:20 C:\WINDOWS\system32\ZCfgSvc.exe |16/12/2003 16:47:42 C:\WINDOWS\system32\1XConfig.exe |16/12/2003 16:43:06 C:\WINDOWS\system32\RegSrvc.exe |16/12/2003 16:41:40 C:\WINDOWS\system32\S24EvMon.exe |16/12/2003 16:42:32 C:\WINDOWS\system32\TPIDITST.exe |28/05/2003 13:55:14 C:\WINDOWS\system32\ASWL2K.exe |01/02/2005 04:44:11 C:\WINDOWS\system32\ASWLSVC.exe |01/02/2005 04:44:11 C:\WINDOWS\system32\slserv.exe |20/08/2004 00:10:02 C:\WINDOWS\system32\slrundll.exe |20/08/2004 00:10:02 C:\WINDOWS\system32\RemSvc.exe |01/02/2005 04:44:11 C:\WINDOWS\system32\Machnm1.exe |20/08/1996 20:37:20 C:\WINDOWS\system32\Mp3cnfg.exe |07/12/2004 18:59:16 C:\WINDOWS\system32\OggDSuninst.exe |13/07/2006 02:27:41 C:\WINDOWS\system32\pxhpinst.exe |07/12/2004 20:18:40 C:\WINDOWS\system32\cfmsg.dll |07/12/2004 21:46:38 C:\WINDOWS\system32\xmlparse.dll |07/12/2004 21:46:38 C:\WINDOWS\system32\hypertrm.dll |17/11/2004 10:11:13 C:\WINDOWS\system32\ZPORT4AS.dll |24/01/2006 00:57:16 C:\WINDOWS\system32\atmfd.dll |07/10/2002 17:16:25 C:\WINDOWS\system32\unrar.dll |16/10/2002 00:54:04 C:\WINDOWS\system32\lfwmf11n.dll |01/05/2003 20:06:38 C:\WINDOWS\system32\vobsub.dll |11/12/2002 10:19:32 C:\WINDOWS\system32\ir32_32.dll |07/10/2002 17:16:59 C:\WINDOWS\system32\Jgmd400.dll |07/10/2002 17:17:00 C:\WINDOWS\system32\Jgsd400.dll |07/10/2002 17:17:00 C:\WINDOWS\system32\lftga11n.dll |01/05/2003 20:06:38 C:\WINDOWS\system32\mdwmdmsp.dll |23/08/2001 17:47:06 C:\WINDOWS\system32\msencode.dll |07/10/2002 17:17:07 C:\WINDOWS\system32\xmltok.dll |07/12/2004 21:46:38 C:\WINDOWS\system32\lftif11n.dll |01/05/2003 20:06:38 C:\WINDOWS\system32\scriptpw.dll |07/10/2002 17:17:25 C:\WINDOWS\system32\slbcsp.dll |07/10/2002 17:17:28 C:\WINDOWS\system32\slbrccsp.dll |07/10/2002 17:17:28 C:\WINDOWS\system32\spnike.dll |23/08/2001 17:47:18 C:\WINDOWS\system32\sprio600.dll |23/08/2001 17:47:18 C:\WINDOWS\system32\sprio800.dll |23/08/2001 17:47:18 C:\WINDOWS\system32\ltfil11n.DLL |01/05/2003 20:06:38 C:\WINDOWS\system32\PCDLIB32.DLL |01/05/2003 20:06:40 C:\WINDOWS\system32\ltimg11n.dll |01/05/2003 20:06:38 C:\WINDOWS\system32\tsd32.dll |07/10/2002 17:17:35 C:\WINDOWS\system32\win87em.dll |07/10/2002 17:17:40 C:\WINDOWS\system32\ltkrn11n.dll |01/05/2003 20:06:38 C:\WINDOWS\system32\BORLNDMM.DLL |17/11/2004 10:20:01 C:\WINDOWS\system32\msssc.dll |17/11/2004 10:17:40 C:\WINDOWS\system32\paqsp.dll |23/08/2001 17:47:16 C:\WINDOWS\system32\usrcntra.dll |23/08/2001 17:47:20 C:\WINDOWS\system32\usrcoina.dll |23/08/2001 17:47:20 C:\WINDOWS\system32\usrdpa.dll |23/08/2001 17:47:20 C:\WINDOWS\system32\usrdtea.dll |23/08/2001 17:47:20 C:\WINDOWS\system32\usrfaxa.dll |23/08/2001 17:47:20 C:\WINDOWS\system32\usrlbva.dll |23/08/2001 17:47:20 C:\WINDOWS\system32\usrrtosa.dll |23/08/2001 17:47:20 C:\WINDOWS\system32\usrsdpia.dll |23/08/2001 17:47:20 C:\WINDOWS\system32\usrsvpia.dll |23/08/2001 17:47:20 C:\WINDOWS\system32\usrv42a.dll |23/08/2001 17:47:20 C:\WINDOWS\system32\usrv80a.dll |23/08/2001 17:47:20 C:\WINDOWS\system32\usrvoica.dll |23/08/2001 17:47:20 C:\WINDOWS\system32\usrvpa.dll |23/08/2001 17:47:20 C:\WINDOWS\system32\CDDBUI.dll |10/05/2005 23:10:12 C:\WINDOWS\system32\lfeps11n.dll |01/05/2003 20:06:38 C:\WINDOWS\system32\divxdec_040c.dll |26/10/2004 23:38:18 C:\WINDOWS\system32\divxdec_0407.dll |26/10/2004 23:38:18 C:\WINDOWS\system32\divxdec_0411.dll |26/10/2004 23:38:18 C:\WINDOWS\system32\Jgpl400.dll |07/10/2002 17:17:00 C:\WINDOWS\system32\compatUI.dll |07/10/2002 17:16:30 C:\WINDOWS\system32\lffax11n.dll |01/05/2003 20:06:38 C:\WINDOWS\system32\lfbmp11n.dll |01/05/2003 20:06:38 C:\WINDOWS\system32\lfpng13n.dll |23/03/2005 14:41:30 C:\WINDOWS\system32\Jgdw400.dll |07/10/2002 17:17:00 C:\WINDOWS\system32\isrdbg32.dll |17/11/2004 10:12:27 C:\WINDOWS\system32\slbiop.dll |07/10/2002 17:17:28 C:\WINDOWS\system32\lfgif11n.dll |01/05/2003 20:06:38 C:\WINDOWS\system32\lfpsd11n.dll |01/05/2003 20:06:38 C:\WINDOWS\system32\LAME_MP3.dll |13/07/2006 02:27:24 C:\WINDOWS\system32\lfpcd11n.dll |01/05/2003 20:06:38 C:\WINDOWS\system32\CFFtp.dll |07/12/2004 21:46:44 C:\WINDOWS\system32\CFRegExp.dll |07/12/2004 21:46:44 C:\WINDOWS\system32\KEYLIB32.dll |15/01/2002 11:56:16 C:\WINDOWS\system32\SKCA32.dll |16/02/2001 12:23:44 C:\WINDOWS\system32\wddx_com.dll |26/05/2005 02:05:39 C:\WINDOWS\system32\s3gnb.dll |20/08/2004 00:09:39 C:\WINDOWS\system32\sbe.dll |07/10/2002 17:17:24 C:\WINDOWS\system32\CFFileProxy.dll |07/12/2004 21:46:44 C:\WINDOWS\system32\ogg.dll |05/10/2002 01:04:17 C:\WINDOWS\system32\lfpcx11n.dll |01/05/2003 20:06:38 C:\WINDOWS\system32\malslib.dll |26/12/2004 13:01:04 C:\WINDOWS\system32\qedwipes.dll |12/12/2002 00:14:32 C:\WINDOWS\system32\psisdecd.dll |17/11/2004 10:18:18 C:\WINDOWS\system32\vorbis.dll |05/10/2002 01:04:24 C:\WINDOWS\system32\ltkrn13n.dll |29/12/2004 02:13:41 C:\WINDOWS\system32\xvidvfw.dll |13/07/2006 02:28:22 C:\WINDOWS\system32\ltfil13n.dll |29/12/2004 02:13:41 C:\WINDOWS\system32\virtear.dll |17/11/2004 10:17:41 C:\WINDOWS\system32\wdmioctl.dll |17/11/2004 10:17:43 C:\WINDOWS\system32\ialmrem.dll |11/12/2003 22:17:30 C:\WINDOWS\system32\ialmgicd.dll |11/12/2003 22:17:28 C:\WINDOWS\system32\ialmgdev.dll |11/12/2003 22:17:28 C:\WINDOWS\system32\igfxexps.dll |11/12/2003 22:17:32 C:\WINDOWS\system32\EqnClass.Dll |17/11/2004 10:07:25 C:\WINDOWS\system32\mdmxsdk.dll |17/10/2003 05:02:52 C:\WINDOWS\system32\spxcoins.dll |17/11/2004 10:07:25 C:\WINDOWS\system32\dgsetup.dll |17/11/2004 10:07:25 C:\WINDOWS\system32\HSFCI007.dll |17/10/2003 05:02:48 C:\WINDOWS\system32\dgrpsetu.dll |17/11/2004 10:07:26 C:\WINDOWS\system32\a3d.dll |17/11/2004 10:17:40 C:\WINDOWS\system32\ltdis13n.dll |29/12/2004 02:13:41 C:\WINDOWS\system32\ltimg13n.dll |29/12/2004 02:13:41 C:\WINDOWS\system32\lfbmp13n.dll |29/12/2004 02:13:41 C:\WINDOWS\system32\xvidcore.dll |13/07/2006 02:28:23 C:\WINDOWS\system32\lfcmp13n.dll |29/12/2004 02:13:42 C:\WINDOWS\system32\ftppro32.dll |07/12/2004 21:46:38 C:\WINDOWS\system32\ltefx13n.dll |29/12/2004 02:13:42 C:\WINDOWS\system32\lfgif13n.dll |29/12/2004 02:13:43 C:\WINDOWS\system32\msdmo.dll |12/12/2002 00:14:32 C:\WINDOWS\system32\hticons.dll |17/11/2004 10:11:13 C:\WINDOWS\system32\avisynth.dll |07/10/2005 18:14:52 C:\WINDOWS\system32\devil.dll |22/02/2004 09:11:09 C:\WINDOWS\system32\nsndis50.dll |24/03/2004 03:49:36 C:\WINDOWS\system32\Audio3d.dll |17/11/2004 10:17:41 C:\WINDOWS\system32\S11thk32.dll |17/11/2004 10:17:41 C:\WINDOWS\system32\SynthCore11Resources.dll |17/11/2004 10:17:41 C:\WINDOWS\system32\Syncor11.dll |17/11/2004 10:17:41 C:\WINDOWS\system32\SMMedia.dll |17/11/2004 10:17:42 C:\WINDOWS\system32\CP3240MT.DLL |17/11/2004 10:20:01 C:\WINDOWS\system32\SynTPAPI.dll |17/11/2004 10:20:32 C:\WINDOWS\system32\SynTPFcs.dll |17/11/2004 10:20:32 C:\WINDOWS\system32\SynCOM.dll |17/11/2004 10:20:32 C:\WINDOWS\system32\SynCtrl.dll |17/11/2004 10:20:32 C:\WINDOWS\system32\igfxres.dll |17/11/2004 10:26:33 C:\WINDOWS\system32\iAlmCoIn_v3691.dll |11/12/2003 22:17:28 C:\WINDOWS\system32\ialmrnt5.dll |11/12/2003 22:17:30 C:\WINDOWS\system32\ialmdnt5.dll |11/12/2003 22:17:28 C:\WINDOWS\system32\ialmdev5.dll |11/12/2003 22:17:28 C:\WINDOWS\system32\ialmdd5.dll |11/12/2003 22:17:28 C:\WINDOWS\system32\oemdspif.dll |11/12/2003 22:17:48 C:\WINDOWS\system32\hccutils.dll |11/12/2003 22:17:26 C:\WINDOWS\system32\igfxsrvc.dll |11/12/2003 22:17:46 C:\WINDOWS\system32\igfxpph.dll |11/12/2003 22:17:40 C:\WINDOWS\system32\igfxeud.dll |11/12/2003 22:17:32 C:\WINDOWS\system32\igfxdgps.dll |11/12/2003 22:17:32 C:\WINDOWS\system32\igfxdev.dll |11/12/2003 22:17:32 C:\WINDOWS\system32\igfxdo.dll |11/12/2003 22:17:32 C:\WINDOWS\system32\igfxhk.dll |11/12/2003 22:17:36 C:\WINDOWS\system32\iccvid.dll |07/10/2002 17:16:57 C:\WINDOWS\system32\igfxress.dll |11/12/2003 22:17:42 C:\WINDOWS\system32\w22NCPA.dll |17/11/2004 10:27:43 C:\WINDOWS\system32\LgNotify.dll |16/12/2003 16:49:34 C:\WINDOWS\system32\Pn802_11.dll |16/12/2003 16:54:40 C:\WINDOWS\system32\PsGuiMgr.dll |16/12/2003 16:47:22 C:\WINDOWS\system32\WLANDLL.dll |16/12/2003 16:48:16 C:\WINDOWS\system32\C1XStngs.dll |16/12/2003 16:44:18 C:\WINDOWS\system32\IntelAE5.dll |26/11/2003 13:21:00 C:\WINDOWS\system32\PfMgrApi.dll |16/12/2003 16:42:14 C:\WINDOWS\system32\PsRegApi.dll |16/12/2003 16:41:52 C:\WINDOWS\system32\S24MUDLL.DLL |16/12/2003 16:42:36 C:\WINDOWS\system32\s24NCfg.dll |13/10/2003 10:44:10 C:\WINDOWS\system32\SMSUnins.dll |13/10/2003 10:47:12 C:\WINDOWS\system32\SbrngAPI.dll |16/12/2003 16:55:20 C:\WINDOWS\system32\WConfig.dll |16/12/2003 16:43:36 C:\WINDOWS\system32\WiFiAdap.dll |16/12/2003 16:42:46 C:\WINDOWS\system32\libeay32.dll |17/04/2003 12:35:00 C:\WINDOWS\system32\ssleay32.dll |17/04/2003 12:35:00 C:\WINDOWS\system32\TPIDI16.DLL |28/05/2003 13:55:12 C:\WINDOWS\system32\TPIDI32.dll |28/05/2003 13:55:12 C:\WINDOWS\system32\ROBOEX32.DLL |13/03/2000 15:55:12 C:\WINDOWS\system32\inetwh32.dll |01/09/1999 11:04:42 C:\WINDOWS\system32\cfssvradmin.dll |07/12/2004 21:46:44 C:\WINDOWS\system32\VuPassword.dll |08/10/2004 02:00:00 C:\WINDOWS\system32\W20MLRES.DLL |01/02/2005 04:27:34 C:\WINDOWS\system32\nv4_disp.dll |20/08/2004 00:09:36 C:\WINDOWS\system32\cfvalidator.dll |07/12/2004 21:46:44 C:\WINDOWS\system32\cximagecrt.dll |26/05/2004 20:39:26 C:\WINDOWS\system32\ABCEncrypt.dll |29/08/2000 07:54:02 C:\WINDOWS\system32\W70MLRES.DLL |01/02/2005 04:27:34 C:\WINDOWS\system32\atmlib.dll |07/10/2002 17:16:25 C:\WINDOWS\system32\amstream.dll |12/12/2002 00:14:32 C:\WINDOWS\system32\slgen.dll |20/08/2004 00:09:41 C:\WINDOWS\system32\slextspk.dll |20/08/2004 00:09:41 C:\WINDOWS\system32\slcoinst.dll |20/08/2004 00:09:41 C:\WINDOWS\system32\mtxparhd.dll |20/08/2004 00:09:35 C:\WINDOWS\system32\ir50_qcx.dll |20/08/2004 00:09:30 C:\WINDOWS\system32\ir50_qc.dll |20/08/2004 00:09:30 C:\WINDOWS\system32\ir50_32.dll |20/08/2004 00:09:30 C:\WINDOWS\system32\ir41_qcx.dll |23/09/2004 15:55:56 C:\WINDOWS\system32\ir41_qc.dll |23/09/2004 15:55:56 C:\WINDOWS\system32\hsfcisp2.dll |20/08/2004 00:09:27 C:\WINDOWS\system32\encdec.dll |07/10/2002 17:16:52 C:\WINDOWS\system32\ativvaxx.dll |20/08/2004 00:09:19 C:\WINDOWS\system32\ativtmxx.dll |20/08/2004 00:09:19 C:\WINDOWS\system32\ati3duag.dll |20/08/2004 00:09:19 C:\WINDOWS\system32\ati3d1ag.dll |20/08/2004 00:09:19 C:\WINDOWS\system32\ati2dvag.dll |20/08/2004 00:09:19 C:\WINDOWS\system32\ati2dvaa.dll |20/08/2004 00:09:19 C:\WINDOWS\system32\ati2cqag.dll |20/08/2004 00:09:19 C:\WINDOWS\system32\SynTPCoI.dll |17/11/2004 10:20:32 C:\WINDOWS\system32\ASUSW32N50.dll |01/02/2005 04:44:10 C:\WINDOWS\system32\SKCL.dll |22/03/2001 22:27:04 C:\WINDOWS\system32\XceedFtp.dll |18/08/2004 10:20:52 C:\WINDOWS\system32\btcss.dll |29/07/2003 16:05:22 C:\WINDOWS\system32\Jgaw400.dll |07/10/2002 17:17:00 C:\WINDOWS\system32\gcmd5query.dll |10/05/2005 01:56:06 C:\WINDOWS\system32\xvid.dll |04/10/2002 07:01:42 C:\WINDOWS\system32\vorbisenc.dll |05/10/2002 01:04:25 C:\WINDOWS\system32\Jgsh400.dll |07/10/2002 17:17:00 C:\WINDOWS\system32\Mpg4c32.dll |07/12/2004 18:59:16 C:\WINDOWS\system32\CddbLangFR.dll |10/05/2005 23:10:12 C:\WINDOWS\system32\CDDBControl.dll |10/05/2005 23:10:12 C:\WINDOWS\system32\DivXc32.dll |07/12/2004 18:59:15 C:\WINDOWS\system32\OggDS.dll |06/10/2002 20:42:57 C:\WINDOWS\system32\px.dll |07/12/2004 20:18:40 C:\WINDOWS\system32\pxmas.dll |07/12/2004 20:18:40 C:\WINDOWS\system32\pxwave.dll |07/12/2004 20:18:40 C:\WINDOWS\system32\vxblock.dll |07/12/2004 20:18:40 C:\WINDOWS\system32\pxdrv.dll |07/12/2004 20:18:40 C:\WINDOWS\system32\HHActiveX.dll |20/03/2002 22:02:00 C:\WINDOWS\system32\TransportIrCOMM.dll |20/03/2002 22:00:20 C:\WINDOWS\system32\TransportIrDA.dll |20/03/2002 22:00:20 C:\WINDOWS\system32\TransportSerial.dll |20/03/2002 22:00:20 C:\WINDOWS\system32\TransportUSB.dll |20/03/2002 22:00:20 C:\WINDOWS\system32\UNACEV2.DLL |21/03/2002 15:39:02 C:\WINDOWS\system32\JGA1500.DLL |19/02/2002 08:29:58 C:\WINDOWS\system32\JGAA500.DLL |19/02/2002 08:29:58 C:\WINDOWS\system32\JGAD500.DLL |19/02/2002 08:29:58 C:\WINDOWS\system32\JGAP500.DLL |19/02/2002 08:29:58 C:\WINDOWS\system32\JGAR500.DLL |19/02/2002 08:29:58 C:\WINDOWS\system32\JGAU500.DLL |19/02/2002 08:29:58 C:\WINDOWS\system32\JGDR500.DLL |19/02/2002 08:29:58 C:\WINDOWS\system32\JGDW500.DLL |19/02/2002 08:29:58 C:\WINDOWS\system32\JGEA500.DLL |19/02/2002 08:29:58 C:\WINDOWS\system32\JGED500.DLL |19/02/2002 08:29:58 C:\WINDOWS\system32\JGEM500.DLL |19/02/2002 08:29:58 C:\WINDOWS\system32\JGFI500.DLL |19/02/2002 08:29:58 C:\WINDOWS\system32\JGFR500.DLL |19/02/2002 08:29:58 C:\WINDOWS\system32\JGFS500.DLL |19/02/2002 08:29:58 C:\WINDOWS\system32\JGGI500.DLL |19/02/2002 08:29:58 C:\WINDOWS\system32\JGI1500.DLL |19/02/2002 08:29:58 C:\WINDOWS\system32\JGI3500.DLL |19/02/2002 08:29:58 C:\WINDOWS\system32\JGI5500.DLL |19/02/2002 08:29:58 C:\WINDOWS\system32\JGID500.DLL |19/02/2002 08:29:58 C:\WINDOWS\system32\JGIP500.DLL |19/02/2002 08:29:58 C:\WINDOWS\system32\JGIQ500.DLL |19/02/2002 08:29:58 C:\WINDOWS\system32\JGIT500.DLL |19/02/2002 08:29:58 C:\WINDOWS\system32\JGM1500.DLL |19/02/2002 08:29:58 C:\WINDOWS\system32\JGMC500.DLL |19/02/2002 08:29:58 C:\WINDOWS\system32\JGME500.DLL |19/02/2002 08:29:58 C:\WINDOWS\system32\JGMI500.DLL |19/02/2002 08:29:58 C:\WINDOWS\system32\JGMP500.DLL |19/02/2002 08:29:58 C:\WINDOWS\system32\JGN1500.DLL |19/02/2002 08:29:58 C:\WINDOWS\system32\JGOS500.DLL |19/02/2002 08:29:58 C:\WINDOWS\system32\JGPD500.DLL |19/02/2002 08:29:58 C:\WINDOWS\system32\JGPL500.DLL |19/02/2002 08:29:58 C:\WINDOWS\system32\JGPP500.DLL |19/02/2002 08:29:58 C:\WINDOWS\system32\JGS1500.DLL |19/02/2002 08:29:58 C:\WINDOWS\system32\JGS3500.DLL |19/02/2002 08:29:58 C:\WINDOWS\system32\JGSN500.DLL |19/02/2002 08:29:58 C:\WINDOWS\system32\JGST500.DLL |19/02/2002 08:29:58 C:\WINDOWS\system32\Deimg603.dll |15/02/2002 08:15:48 C:\WINDOWS\system32\Pscl2STI.dll |15/02/2002 08:15:48 C:\WINDOWS\system32\czs_ui.dll |15/02/2002 08:15:46 C:\WINDOWS\system32\deImg010.dll |15/02/2002 08:15:46 C:\WINDOWS\system32\deImg110.dll |15/02/2002 08:15:46 C:\WINDOWS\system32\deImg404.dll |15/02/2002 08:15:46 C:\WINDOWS\system32\deimg.dll |15/02/2002 08:15:46 C:\WINDOWS\system32\deimg301.dll |15/02/2002 08:15:46 C:\WINDOWS\system32\deimg401.dll |15/02/2002 08:15:46 C:\WINDOWS\system32\deimg602.dll |15/02/2002 08:15:48 C:\WINDOWS\system32\psParse.dll |15/02/2002 08:15:48 C:\WINDOWS\system32\pscAdimg.dll |15/02/2002 08:15:48 C:\WINDOWS\system32\pscCStUI.dll |15/02/2002 08:15:48 C:\WINDOWS\system32\pscCllct.dll |15/02/2002 08:15:48 C:\WINDOWS\system32\pscDcd.dll |15/02/2002 08:15:48 C:\WINDOWS\system32\pscDevUI.dll |15/02/2002 08:15:48 C:\WINDOWS\system32\pscDvlp.dll |15/02/2002 08:15:48 C:\WINDOWS\system32\pscParse.dll |15/02/2002 08:15:48 C:\WINDOWS\system32\pscSetup.dll |15/02/2002 08:15:48 C:\WINDOWS\system32\pscll.dll |15/02/2002 08:15:48 C:\WINDOWS\system32\psdkReg.dll |15/02/2002 08:15:48 C:\WINDOWS\system32\psdkdll.dll |15/02/2002 08:15:48 C:\WINDOWS\system32\ekfpixpsets.dll |20/03/2002 22:01:20 C:\WINDOWS\system32\ekfpixaudio.dll |20/03/2002 22:01:20 C:\WINDOWS\system32\ekfpixguid.dll |20/03/2002 22:01:20 C:\WINDOWS\system32\ekfpixio130.dll |20/03/2002 22:01:20 C:\WINDOWS\system32\ekfpixjpeg.dll |20/03/2002 22:01:20 C:\WINDOWS\system32\DC210.dll |20/03/2002 22:01:20 C:\WINDOWS\system32\DC240.dll |20/03/2002 22:01:20 C:\WINDOWS\system32\DC280.dll |20/03/2002 22:01:20 C:\WINDOWS\system32\F210.dll |20/03/2002 22:01:20 C:\WINDOWS\system32\DC265.dll |20/03/2002 22:01:06 C:\WINDOWS\system32\ekfpixexif.dll |20/03/2002 22:01:08 C:\WINDOWS\system32\lt_common.dll |21/03/2002 13:51:52 C:\WINDOWS\system32\lt_encrypt.dll |21/03/2002 13:51:52 C:\WINDOWS\system32\lt_messagetext.dll |21/03/2002 13:51:52 C:\WINDOWS\system32\lt_meta.dll |21/03/2002 13:51:52 C:\WINDOWS\system32\MrSIDD.dll |21/03/2002 13:51:52 C:\WINDOWS\system32\lt_trans.dll |21/03/2002 13:51:52 C:\WINDOWS\system32\lt_xtrans.dll |21/03/2002 13:51:52 C:\WINDOWS\system32\WB3.dll |03/07/2002 13:03:58 C:\WINDOWS\system32\GEARAspi.dll |19/09/2006 15:43:58 C:\WINDOWS\system32\indounin.dll |27/01/1999 13:39:06 C:\WINDOWS\system32\Iacenc.dll |18/11/1998 15:33:16 C:\WINDOWS\system32\btwpimif.dll |29/07/2003 15:54:22 C:\WINDOWS\system32\bt2k_ins.dll |29/07/2003 15:39:14 C:\WINDOWS\system32\wbtapi.dll |29/07/2003 15:50:00 C:\WINDOWS\system32\btsec.dll |29/07/2003 16:04:20 C:\WINDOWS\system32\CSH.DLL |15/07/2002 15:58:00 C:\WINDOWS\system32\btosif.dll |29/07/2003 15:52:56 C:\WINDOWS\system32\btins.dll |29/07/2003 15:41:26 C:\WINDOWS\system32\btdev.dll |29/07/2003 15:39:44 C:\WINDOWS\system32\lcppn21.dll |14/11/2001 13:56:00 C:\WINDOWS\system32\btsendto.dll |29/07/2003 15:54:54 C:\WINDOWS\system32\Iyvu9_32.dll |13/06/1997 07:56:08 C:\WINDOWS\system32\Npindeo.dll |20/11/1998 13:38:58 C:\WINDOWS\system32\BTNCopy.dll |25/07/2003 18:05:22 C:\WINDOWS\system32\btrez.dll |29/07/2003 15:37:42 C:\WINDOWS\system32\btbigbmp.dll |29/07/2003 15:46:46 C:\WINDOWS\system32\bthcrp.dll |29/07/2003 15:55:30 C:\WINDOWS\system32\bthcrpui.dll |29/07/2003 15:56:06 C:\WINDOWS\system32\btosif_ol.dll |29/07/2003 15:54:02 C:\WINDOWS\system32\btprn2k.dll |29/07/2003 15:56:42 C:\WINDOWS\system32\btrezxp.dll |29/07/2003 15:38:00 C:\WINDOWS\system32\EBPMON3.DLL |09/08/2005 12:42:18 C:\WINDOWS\system32\EBAPI3.DLL |09/08/2005 12:42:18 C:\WINDOWS\system32\ECBTEG.DLL |09/08/2005 12:42:18 C:\WINDOWS\system32\BTXPPanel.dll |29/07/2003 15:47:06 C:\WINDOWS\system32\EBPCHP.DLL |09/08/2005 12:42:18 C:\WINDOWS\system32\btsendto_office.dll |29/07/2003 16:02:22 C:\WINDOWS\system32\BtAudioHelper.dll |29/07/2003 15:47:24 C:\WINDOWS\system32\btsendto_notes.dll |29/07/2003 15:59:56 C:\WINDOWS\system32\BTNeighborhood.dll |29/07/2003 16:12:10 C:\WINDOWS\system32\btosif_notes.dll |29/07/2003 15:53:26 C:\WINDOWS\system32\WidcommSdk.dll |29/07/2003 15:52:14 C:\WINDOWS\system32\BtXpShell.dll |29/07/2003 15:47:16 C:\WINDOWS\system32\btsendto_ie.dll |29/07/2003 16:03:48 C:\WINDOWS\system32\btosif_olx.dll |29/07/2003 15:57:24 C:\WINDOWS\system32\BtWizard.dll |29/07/2003 16:07:20 C:\WINDOWS\system32\btsendto_wab.dll |29/07/2003 16:02:50 C:\WINDOWS\system32\CfShellFtpRds.dll |07/12/2004 21:46:44 C:\WINDOWS\system32\LTDIS11n.dll |01/05/2003 20:06:38 C:\WINDOWS\system32\Ltwvc11n.dll |01/05/2003 20:06:40 C:\WINDOWS\system32\LFCMP11n.DLL |01/05/2003 20:06:38 C:\WINDOWS\system32\Lfpng11n.dll |01/05/2003 20:06:38 C:\WINDOWS\system32\AW32n50.dll |18/11/2006 00:09:20 C:\WINDOWS\system32\W32n50.dll |23/01/2007 18:34:43 C:\WINDOWS\system32\azipcontmn.dll |21/06/2006 22:14:19 C:\WINDOWS\system32\sysfolderazipcnt.dll |21/06/2006 22:14:20 Le volume dans le lecteur C n'a pas de nom. Le numéro de série du volume est 4868-9000 Répertoire de C:\WINDOWS\system32 20/08/2004 00:09 6 144 csrss.exe 1 fichier(s) 6 144 octets 0 Rép(s) 6 876 168 192 octets libres Contenu de Downloaded Program Files Le volume dans le lecteur C n'a pas de nom. Le numéro de série du volume est 4868-9000 Répertoire de C:\WINDOWS\Downloaded Program Files 17/11/2004 10:13 <REP> . 17/11/2004 10:13 <REP> .. 17/11/2004 10:13 65 desktop.ini 14/10/1997 18:52 697 DirectAnimation Java Classes.osd 20/01/2000 15:25 1 162 Microsoft XML Parser for Java.osd 22/08/2003 21:10 226 opuc.inf 19/06/2002 14:11 117 088 PURen-us.dll 08/10/2004 16:01 372 736 MsnPUpld.dll 08/10/2004 16:13 587 MSNPupld.inf 30/12/2004 11:29 267 328 fpu.ocx 30/12/2004 11:29 3 071 fpu.inf 24/03/2004 18:22 435 712 xscan53.ocx 24/03/2004 18:17 1 777 xscan.inf 28/04/2005 17:35 181 848 PlaxoInstall.dll 28/04/2005 17:26 874 PlaxoInstall.inf 10/01/2005 23:00 310 wabctrl.inf 19/04/2005 19:51 153 376 wabctrl.dll 08/07/2005 18:43 504 default.inf 26/11/2001 22:27 899 jinstall-1_3_1_02.inf 14/08/2005 00:26 113 664 MsnMessengerSetupDownloader.ocx 30/06/2005 15:19 227 MsnMessengerSetupDownloader.inf 12/04/2005 14:58 77 824 PhtPkMSN.dll 08/04/2005 11:28 1 367 PhtPkMSN.inf 29/10/2005 14:03 128 192 ImportAx.dll 29/10/2005 14:06 251 ImportAx.inf 25/07/2002 17:05 172 032 isusweb.dll 25/07/2002 17:13 196 608 dwusplay.exe 25/07/2002 17:13 24 576 dwusplay.dll 13/12/2005 22:44 327 408 wlscBase.dll 13/12/2005 22:46 358 wlscBase.inf 18/02/2005 16:22 126 live.ini 09/03/2005 15:43 6 828 scanoptions.tsi 09/03/2005 15:42 6 742 lang.ini 01/03/2005 14:08 53 248 ipsupd.dll 01/03/2005 14:08 118 784 bdupd.dll 07/12/2004 16:07 32 libfn.dll 07/12/2004 16:07 32 bdcore.dll 09/03/2005 15:40 475 136 oscan8.ocx 01/03/2005 11:15 1 246 oscan8.inf 02/03/2006 15:40 1 271 erma.inf 29/05/2003 15:00 160 864 messengerstatsclient.dll 17/03/2006 17:25 1 959 712 ImageUploader3.ocx 17/03/2006 17:24 379 ImageUploader3.inf 28/10/2006 01:59 <REP> CONFLICT.1 27/03/2006 13:00 5 019 swflash.inf 24/10/2006 17:15 367 LegitCheckControl.inf 08/08/2006 11:45 576 kavwebscan.inf 24/08/2006 08:28 141 424 asinst.dll 22/08/2006 09:06 537 asinst.inf 46 fichier(s) 5 513 090 octets Répertoire de C:\WINDOWS\Downloaded Program Files\CONFLICT.1 28/10/2006 01:59 <REP> . 28/10/2006 01:59 <REP> .. 31/08/2006 15:55 187 688 ImportAx.dll 31/08/2006 15:56 236 ImportAx.inf 2 fichier(s) 187 924 octets Total des fichiers listés : 48 fichier(s) 5 701 014 octets 5 Rép(s) 6 876 168 192 octets libres Recherche de rootkit! (Merci S!Ri) Recherche d'infections connues catchme 0.2 W2K/XP/Vista - userland rootkit detector by Gmer, 17 October 2006 http://www.gmer.net scanning hidden processes ... scanning hidden services ... scanning hidden autostart entries ... scanning hidden files ... scan completed successfully hidden processes: 0 hidden services: 0 hidden files: 0 Liste des programmes installes a-squared Free 2.1 AC3Filter (remove only) ACDSee 5.0 PowerPack Ad-Aware SE Personal Adobe Download Manager 2.0 (Supprimer uniquement) Adobe Flash Player 9 ActiveX Adobe Photoshop 7.0 Adobe Reader 7.0.5 - Français ASUS Probe V2.10 ASUS WLAN Card Utilities/Driver ATK0100 ACPI UTILITY avast! Antivirus AviSynth 2.5 Axialis IconWorkshop 6.0 Barre d'outils MSN Search Canon Camera Access Library Canon Camera Support Core Library Canon Camera Window DC_DV 5 for ZoomBrowser EX Canon Camera Window DC_DV 6 for ZoomBrowser EX Canon Camera Window MC 6 for ZoomBrowser EX CANON iMAGE GATEWAY Task for ZoomBrowser EX Canon Internet Library for ZoomBrowser EX Canon RAW Image Task for ZoomBrowser EX Canon RemoteCapture Task for ZoomBrowser EX Canon Utilities Digital Photo Professional 2.2 Canon Utilities EOS Utility Canon Utilities PhotoStitch Canon Utilities ZoomBrowser EX CCleaner (remove only) CleanUp! Correctif pour Windows XP (KB914440) Correctif Windows XP - KB834707 Correctif Windows XP - KB867282 Correctif Windows XP - KB873333 Correctif Windows XP - KB873339 Correctif Windows XP - KB885250 Correctif Windows XP - KB885835 Correctif Windows XP - KB885836 Correctif Windows XP - KB885884 Correctif Windows XP - KB886185 Correctif Windows XP - KB887472 Correctif Windows XP - KB887742 Correctif Windows XP - KB888113 Correctif Windows XP - KB888302 Correctif Windows XP - KB890047 Correctif Windows XP - KB890175 Correctif Windows XP - KB890859 Correctif Windows XP - KB890923 Correctif Windows XP - KB891781 Correctif Windows XP - KB893066 Correctif Windows XP - KB893086 CuteFTP 6 Professional CuteFTP 6 Professional Direct Show Ogg Vorbis Filter (remove only) Disk Cleaner (remove only) Environnement d'exécution Java 2, Standard Edition v1.3.1_02 EPSON Logiciel imprimante Ethernet Disk mini updater package EVEREST Home Edition v2.20 FFMPEG FLV Encoder 1.0.4 FolderSizes 3.6 GXmark HijackThis 2.0.0 Hotfix for Windows Media Format 11 SDK (KB929399) Hotfix for Windows XP (KB909394) Hotfix for Windows XP (KB915865) Hotfix for Windows XP (KB926239) Intel® Extreme Graphics 2 Driver Intel® PROSet for Wireless iPod for Windows 2005-10-12 iPod for Windows 2005-10-12 iPod for Windows 2006-01-10 iPod for Windows 2006-01-10 iPod for Windows 2006-06-28 iPod for Windows 2006-06-28 iTunes j2 Messenger 3.5 J2SE Runtime Environment 5.0 Update 8 Kaspersky On-line Scanner Kaspersky Online Scanner LaCie IP Configurator Lame ACM MP3 Codec Logitech Harmony Remote Client Logitech Harmony Remote Client Microsoft .NET Framework 1.1 Microsoft .NET Framework 1.1 Microsoft .NET Framework 1.1 Hotfix (KB886903) Microsoft .NET Framework 2.0 Microsoft .NET Framework 2.0 Microsoft ActiveSync Microsoft Bootvis Microsoft Compression Client Pack 1.0 for Windows XP Microsoft Internationalized Domain Names Mitigation APIs Microsoft National Language Support Downlevel APIs Microsoft Office Live Meeting 2005 Microsoft Office Professional Edition 2003 Microsoft User-Mode Driver Framework Feature Pack 1.0 Microsoft Windows Media Video 9 VCM mIRC Mise à jour de sécurité pour Lecteur Windows Media (KB911564) Mise à jour de sécurité pour Lecteur Windows Media 10 (KB911565) Mise à jour de sécurité pour Lecteur Windows Media 6.4 (KB925398) Mise à jour de sécurité pour Step by Step Interactive Training (KB898458) Mise à jour de sécurité pour Step by Step Interactive Training (KB923723) Mise à jour de sécurité pour Windows Internet Explorer 7 (KB928090) Mise à jour de sécurité pour Windows Internet Explorer 7 (KB929969) Mise à jour de sécurité pour Windows XP (KB883939) Mise à jour de sécurité pour Windows XP (KB890046) Mise à jour de sécurité pour Windows XP (KB893756) Mise à jour de sécurité pour Windows XP (KB896358) Mise à jour de sécurité pour Windows XP (KB896422) Mise à jour de sécurité pour Windows XP (KB896423) Mise à jour de sécurité pour Windows XP (KB896424) Mise à jour de sécurité pour Windows XP (KB896428) Mise à jour de sécurité pour Windows XP (KB896688) Mise à jour de sécurité pour Windows XP (KB899587) Mise à jour de sécurité pour Windows XP (KB899588) Mise à jour de sécurité pour Windows XP (KB899589) Mise à jour de sécurité pour Windows XP (KB899591) Mise à jour de sécurité pour Windows XP (KB900725) Mise à jour de sécurité pour Windows XP (KB901017) Mise à jour de sécurité pour Windows XP (KB901190) Mise à jour de sécurité pour Windows XP (KB901214) Mise à jour de sécurité pour Windows XP (KB902400) Mise à jour de sécurité pour Windows XP (KB903235) Mise à jour de sécurité pour Windows XP (KB904706) Mise à jour de sécurité pour Windows XP (KB905414) Mise à jour de sécurité pour Windows XP (KB905749) Mise à jour de sécurité pour Windows XP (KB905915) Mise à jour de sécurité pour Windows XP (KB908519) Mise à jour de sécurité pour Windows XP (KB908531) Mise à jour de sécurité pour Windows XP (KB911280) Mise à jour de sécurité pour Windows XP (KB911562) Mise à jour de sécurité pour Windows XP (KB911567) Mise à jour de sécurité pour Windows XP (KB911927) Mise à jour de sécurité pour Windows XP (KB912919) Mise à jour de sécurité pour Windows XP (KB913446) Mise à jour de sécurité pour Windows XP (KB913580) Mise à jour de sécurité pour Windows XP (KB914388) Mise à jour de sécurité pour Windows XP (KB914389) Mise à jour de sécurité pour Windows XP (KB917159) Mise à jour de sécurité pour Windows XP (KB917422) Mise à jour de sécurité pour Windows XP (KB917953) Mise à jour de sécurité pour Windows XP (KB918118) Mise à jour de sécurité pour Windows XP (KB918439) Mise à jour de sécurité pour Windows XP (KB919007) Mise à jour de sécurité pour Windows XP (KB920213) Mise à jour de sécurité pour Windows XP (KB920214) Mise à jour de sécurité pour Windows XP (KB920670) Mise à jour de sécurité pour Windows XP (KB920683) Mise à jour de sécurité pour Windows XP (KB920685) Mise à jour de sécurité pour Windows XP (KB921398) Mise à jour de sécurité pour Windows XP (KB921883) Mise à jour de sécurité pour Windows XP (KB922616) Mise à jour de sécurité pour Windows XP (KB922819) Mise à jour de sécurité pour Windows XP (KB923191) Mise à jour de sécurité pour Windows XP (KB923414) Mise à jour de sécurité pour Windows XP (KB923694) Mise à jour de sécurité pour Windows XP (KB923980) Mise à jour de sécurité pour Windows XP (KB924191) Mise à jour de sécurité pour Windows XP (KB924270) Mise à jour de sécurité pour Windows XP (KB924496) Mise à jour de sécurité pour Windows XP (KB924667) Mise à jour de sécurité pour Windows XP (KB926255) Mise à jour de sécurité pour Windows XP (KB926436) Mise à jour de sécurité pour Windows XP (KB927779) Mise à jour de sécurité pour Windows XP (KB927802) Mise à jour de sécurité pour Windows XP (KB928255) Mise à jour de sécurité pour Windows XP (KB928843) Mise à jour pour Windows XP (KB894391) Mise à jour pour Windows XP (KB896727) Mise à jour pour Windows XP (KB898461) Mise à jour pour Windows XP (KB900485) Mise à jour pour Windows XP (KB904942) Mise à jour pour Windows XP (KB910437) Mise à jour pour Windows XP (KB916595) Mise à jour pour Windows XP (KB920872) Mise à jour pour Windows XP (KB922582) Mise à jour pour Windows XP (KB929338) Mise à jour pour Windows XP (KB931836) Mozilla Firefox (1.5.0.10) MSXML 4.0 SP2 (KB927978) NETGEAR 108 Mbps Wireless PC Card WG511T Network Stumbler 0.4.0 (remove only) Panda ActiveScan Photo Story 3 for Windows Plug-in ma messagerie vocale Orange Pocket Controller-Professional poEdit 1.3.6 Power4 Gear PowerISO QuickTime Riva FLV Encoder 2.0 Security Update for Microsoft .NET Framework 2.0 (KB917283) Security Update pour Microsoft .NET Framework 2.0 (KB922770) SelineNews SoftV92 Data Fax Modem with SmartCP SonicStage SoundMAX Spb Benchmark SpeedFan (remove only) Spybot - Search & Destroy 1.4 Synaptics Pointing Device Driver TCPMP TopStyle Lite (Version 2) TreeSize Free V2.0 VideoLAN VLC media player 0.8.5-freehd VobSub v2.23 (Remove Only) VuPassword Watermark Factory 2 WebFldrs XP WIDCOMM Bluetooth Software Windows Defender Windows Defender Signatures Windows Genuine Advantage Notifications (KB905474) Windows Installer 3.1 (KB893803) Windows Installer 3.1 (KB893803) Windows Internet Explorer 7 Windows Live Messenger Windows Live Safety scanner Windows Live Sign-in Assistant Windows Media Format 11 runtime Windows Media Format 11 runtime Windows Media Player 10 Hotfix - KB894476 Windows Media Player 11 Windows Media Player 11 Windows XP Creativity Fun Packs - Player Blogging Plug-in Windows XP Service Pack 2 WINFLASH V2.11 WinRAR archiver WinZip XviD 1.1 final uninstall XviD Video Codec 04102002-1 (Koepi's build with EPSZ ME) Le volume dans le lecteur C n'a pas de nom. Le numéro de série du volume est 4868-9000 Répertoire de C:\Program Files 17/11/2004 10:07 <REP> . 17/11/2004 10:07 <REP> .. 13/07/2006 02:27 <REP> AC3Filter 07/12/2004 20:24 <REP> ACD Systems 17/11/2004 10:19 <REP> Adobe 12/10/2005 16:26 <REP> Alibaba 26/05/2005 02:05 <REP> Allaire 21/06/2006 22:14 <REP> AlphaZIP 22/03/2007 11:18 <REP> Alwil Software 17/11/2004 10:17 <REP> Analog Devices 13/09/2006 00:03 <REP> Apple Software Update 22/03/2007 03:49 <REP> a-squared Free 17/11/2004 10:19 <REP> ASUS 26/12/2004 13:01 <REP> AvantGo Connect 24/12/2005 00:57 <REP> AviSynth 2.5 08/11/2005 23:28 <REP> Axialis 27/01/2007 22:24 <REP> Azureus 07/12/2004 21:46 <REP> Bradbury 10/02/2007 15:43 <REP> Canon 03/04/2005 11:34 <REP> CardFive 24/01/2006 16:02 <REP> CCleaner 22/03/2007 05:26 <REP> CleanUp! 25/12/2004 13:02 <REP> Common Files 17/11/2004 10:08 <REP> CONEXANT 20/12/2004 17:52 <REP> Creative 09/05/2006 10:14 <REP> DIFX 21/03/2007 00:55 <REP> Disk Cleaner 20/12/2004 22:35 <REP> DivX 28/07/2006 12:26 <REP> Easy Batch Watermark 27/12/2004 10:47 <REP> eMule 09/08/2005 12:42 <REP> EPSON 13/01/2006 11:31 <REP> fabamusic 17/11/2004 10:07 <REP> Fichiers communs 25/01/2007 17:04 <REP> FlashGet 21/01/2005 01:42 <REP> Flickr Uploadr 05/07/2006 02:55 <REP> FLV Encoder 21/03/2007 00:18 <REP> FolderSizes 02/09/2006 19:53 <REP> Gabest 04/01/2006 19:48 <REP> Generic 07/12/2004 20:04 <REP> GlobalSCAPE 09/05/2005 18:43 <REP> Grisoft 17/11/2004 10:23 <REP> Intel 17/11/2004 10:12 <REP> Internet Explorer 07/11/2005 20:27 <REP> iPod 10/11/2006 20:00 <REP> iTunes 01/04/2005 15:00 <REP> j2 Messenger 3.5 21/03/2007 00:02 <REP> JAM Software 04/09/2006 18:06 <REP> Java 21/08/2005 02:57 <REP> JavaSoft 15/06/2006 16:39 <REP> LaCie 15/06/2006 17:03 <REP> LaCieTools 13/07/2006 02:27 <REP> Lame MP3 Codec 04/01/2006 13:53 <REP> Lavalys 06/09/2005 14:24 <REP> Lavasoft 12/05/2005 16:26 <REP> Logitech 07/12/2004 21:46 <REP> Macromedia 17/11/2004 10:11 <REP> Messenger 26/12/2004 13:01 <REP> Microsoft ActiveSync 10/05/2005 01:55 <REP> Microsoft AntiSpyware 14/01/2006 14:23 <REP> Microsoft Bootvis 17/11/2004 10:14 <REP> microsoft frontpage 12/12/2004 00:45 <REP> Microsoft Office 21/09/2005 19:29 <REP> mIRC 17/11/2004 10:12 <REP> Movie Maker 19/12/2005 23:20 <REP> Mozilla Firefox 17/11/2004 10:11 <REP> MSN 17/11/2004 10:11 <REP> MSN Gaming Zone 09/05/2006 10:14 <REP> MSN Messenger 30/07/2005 09:07 <REP> MSN Toolbar Suite 14/11/2006 20:53 <REP> MSXML 4.0 04/09/2006 17:55 <REP> MyFreeTV 18/11/2006 13:06 <REP> NETGEAR 17/11/2004 10:12 <REP> NetMeeting 19/01/2005 02:29 <REP> Network Stumbler 12/12/2004 00:49 <REP> OfficeUpdate11 05/12/2005 23:03 <REP> Omega One 07/12/2004 20:34 <REP> Orange 17/11/2004 10:12 <REP> Outlook Express 11/02/2006 12:27 <REP> Photo Story 3 for Windows 12/05/2005 12:41 <REP> Plaxo 07/12/2006 21:54 <REP> poEdit 06/01/2007 00:06 <REP> PowerISO 10/11/2006 19:57 <REP> QuickTime 05/07/2006 02:42 <REP> Riva 04/09/2006 23:51 <REP> SBSH 27/11/2006 11:29 <REP> SelineNews 17/11/2004 10:11 <REP> Services en ligne 29/07/2006 11:58 <REP> Skype 10/05/2005 23:08 <REP> Sony 10/05/2005 23:12 <REP> Sony Corporation 25/02/2005 23:46 <REP> SOTI 25/02/2005 23:51 <REP> Spb Software House 07/07/2006 00:58 <REP> SpeedFan 19/03/2007 22:19 <REP> Spybot - Search & Destroy 17/11/2004 10:20 <REP> Synaptics 17/11/2004 10:21 <REP> Trend Micro 17/03/2006 15:18 <REP> VideoLAN 19/07/2006 13:02 <REP> Virtools Web Player 3.5 15/02/2005 08:50 <REP> Vodafone 13/01/2006 00:31 <REP> Voice Tracer 10/01/2005 17:35 <REP> VuPassword 17/01/2007 20:02 <REP> Watermark Factory 2 21/05/2005 00:58 <REP> WIDCOMM 06/12/2006 11:16 <REP> Windows Defender 23/01/2006 21:39 <REP> Windows Live Safety Center 18/11/2006 05:04 <REP> Windows Media Connect 2 17/11/2004 10:11 <REP> Windows Media Player 17/11/2004 10:11 <REP> Windows NT 07/12/2004 20:16 <REP> WinRAR 07/12/2004 20:15 <REP> WinZip 07/12/2004 20:05 <REP> WMV9_VCM 17/11/2004 10:14 <REP> xerox 07/12/2004 20:05 <REP> XviD 19/04/2006 19:12 <REP> Yahoo! 0 fichier(s) 0 octets 114 Rép(s) 6 874 955 776 octets libres Le volume dans le lecteur C n'a pas de nom. Le numéro de série du volume est 4868-9000 Répertoire de C:\Program Files\fichiers communs 17/11/2004 10:07 <REP> . 17/11/2004 10:07 <REP> .. 17/11/2004 10:07 <REP> Microsoft Shared 17/11/2004 10:07 <REP> SpeechEngines 17/11/2004 10:07 <REP> ODBC 17/11/2004 10:12 <REP> System 17/11/2004 10:12 <REP> MSSoap 17/11/2004 10:12 <REP> Services 17/11/2004 10:17 <REP> InstallShield 17/11/2004 10:19 <REP> Adobe 07/12/2004 20:24 <REP> ACD Systems 12/12/2004 00:45 <REP> DESIGNER 10/05/2005 23:07 <REP> Sony Shared 12/05/2005 16:32 <REP> Logitech 05/07/2006 02:42 <REP> SWF Studio 04/09/2006 18:05 <REP> Java 10/02/2007 15:42 <REP> Canon 0 fichier(s) 0 octets 17 Rép(s) 6 874 955 776 octets libres Le volume dans le lecteur C n'a pas de nom. Le numéro de série du volume est 4868-9000 Répertoire de C:\Program Files\fichiers communs\Microsoft Shared\Web Folders 06/12/2004 07:36 <REP> . 06/12/2004 07:36 <REP> .. 07/03/2001 09:00 127 033 MSOWS40c.DLL 03/06/1999 14:09 122 937 MSOWS409.DLL 12/12/2004 00:45 <REP> 1036 15/07/2003 06:52 35 896 MSOSV.DLL 12/12/2004 00:45 <REP> 1033 11/07/2003 10:15 1 292 872 MSONSEXT.DLL 11/07/2003 02:25 80 448 PKMWS.DLL 5 fichier(s) 1 659 186 octets 4 Rép(s) 6 874 955 776 octets libres Le volume dans le lecteur C n'a pas de nom. Le numéro de série du volume est 4868-9000 Répertoire de C:\Program Files\common files 25/12/2004 13:02 <REP> . 25/12/2004 13:02 <REP> .. 25/12/2004 13:02 <REP> Microsoft Shared 0 fichier(s) 0 octets 3 Rép(s) 6 874 955 776 octets libres Le volume dans le lecteur C n'a pas de nom. Le numéro de série du volume est 4868-9000 Répertoire de C:\ 11/11/2001 00:00 68 096 diff.exe 27/08/2006 14:10 103 424 grep.exe 24/05/2001 12:59 162 304 UNWISE.EXE 3 fichier(s) 333 824 octets 0 Rép(s) 6 874 955 776 octets libres c:\Documents and Settings\All Users\Application Data\Apple Computer\Installer Cache\iTunes 7.0.2.16\iTunesSetupAdmin.exe c:\Documents and Settings\Nghia Nguyen Dai\Mes documents\putty.exe c:\Documents and Settings\Nghia Nguyen Dai\Mes documents\Business Sojeng\pdafrance\softs de bench\IAScreenShot20EN.exe c:\Documents and Settings\Nghia Nguyen Dai\Mes documents\Business Sojeng\pdafrance\softs de bench\PocketPCMark_ARM_PPC2002.exe c:\Documents and Settings\Nghia Nguyen Dai\Mes documents\Business Sojeng\pdafrance\softs de bench\ssnapsetup.exe c:\Documents and Settings\Nghia Nguyen Dai\Mes documents\Business Sojeng\pdafrance\softs de bench\UpTimeSetup.exe c:\Documents and Settings\Nghia Nguyen Dai\Mes documents\Business Sojeng\pdafrance\softs de bench\spb_benchmark\SpbBenchmark.exe c:\Documents and Settings\Nghia Nguyen Dai\Mes documents\Business Sojeng\pdafrance\softs de bench\spb_benchmark\SpbBenchmark_setup.exe c:\Documents and Settings\Nghia Nguyen Dai\Mes documents\Business Sojeng\pdafrance\Script\pocketforum\14aren\rename.exe c:\Documents and Settings\Nghia Nguyen Dai\Mes documents\j2 Messenger 3.5\J2GPlus.exe-BarState c:\Documents and Settings\Nghia Nguyen Dai\Mes documents\Creativity Fun Packs\Windows Media Player 9 Series\Plug-ins\wmpblog.exe c:\Documents and Settings\Nghia Nguyen Dai\Bureau\putty.exe c:\Documents and Settings\Nghia Nguyen Dai\Bureau\spybotsd14.exe c:\Documents and Settings\Nghia Nguyen Dai\Bureau\Nghia\a2FreeSetup.exe c:\Documents and Settings\Nghia Nguyen Dai\Bureau\Nghia\CleanUp40.exe c:\Documents and Settings\Nghia Nguyen Dai\Bureau\Nghia\HiJackThis_v2.exe c:\Documents and Settings\Nghia Nguyen Dai\Application Data\Microsoft\Installer\{E434580A-2D4A-4433-A81E-4BCAE86AD148}\NewShortcut1.4DA64122_6F1D_4317_BC6A_2B3299881D1B.exe c:\Documents and Settings\Nghia Nguyen Dai\Application Data\Microsoft\Installer\{E434580A-2D4A-4433-A81E-4BCAE86AD148}\NewShortcut3.4DA64122_6F1D_4317_BC6A_2B3299881D1B.exe c:\Documents and Settings\Nghia Nguyen Dai\Application Data\Microsoft\Installer\{E434580A-2D4A-4433-A81E-4BCAE86AD148}\NewShortcut4.4DA64122_6F1D_4317_BC6A_2B3299881D1B.exe c:\Documents and Settings\Nghia Nguyen Dai\Application Data\Microsoft\Installer\{E434580A-2D4A-4433-A81E-4BCAE86AD148}\NewShortcut5.4DA64122_6F1D_4317_BC6A_2B3299881D1B.exe c:\Documents and Settings\Nghia Nguyen Dai\Application Data\Microsoft\Installer\{E434580A-2D4A-4433-A81E-4BCAE86AD148}\NewShortcut6.4DA64122_6F1D_4317_BC6A_2B3299881D1B.exe c:\Documents and Settings\Nghia Nguyen Dai\Application Data\Microsoft\Installer\{FEF5EEC0-7DBE-4318-9D02-9CB3623926EC}\blog.exe c:\Documents and Settings\Nghia Nguyen Dai\Application Data\Microsoft\Installer\{0F9196C6-58B4-445B-B56E-B1200FECC151}\_18be6784.exe c:\Documents and Settings\Nghia Nguyen Dai\Application Data\Microsoft\Installer\{0F9196C6-58B4-445B-B56E-B1200FECC151}\_294823.exe c:\Documents and Settings\Nghia Nguyen Dai\Application Data\Microsoft\Installer\{0F9196C6-58B4-445B-B56E-B1200FECC151}\_2cd672ae.exe c:\Documents and Settings\Nghia Nguyen Dai\Application Data\Microsoft\Installer\{0F9196C6-58B4-445B-B56E-B1200FECC151}\_4ae13d6c.exe c:\Documents and Settings\Nghia Nguyen Dai\Application Data\Microsoft\Installer\{F66B4FBD-D22E-44DE-8CAA-A73BAFF28524}\ARPPRODUCTICON.exe c:\Documents and Settings\Nghia Nguyen Dai\Application Data\Microsoft\Installer\{F66B4FBD-D22E-44DE-8CAA-A73BAFF28524}\NewShortcut2_F66B4FBDD22E44DE8CAAA73BAFF28524.exe c:\Documents and Settings\Nghia Nguyen Dai\Application Data\Adobe\Acrobat\7.0\Updater\Acro-Reader_703_Update.exe c:\Documents and Settings\All Users\Application Data\Microsoft\IdentityCRL\ppcrlconfig.dll c:\Documents and Settings\All Users\Application Data\Microsoft\IdentityCRL\production\ppcrlconfig.dll c:\Documents and Settings\All Users\Application Data\Microsoft\Windows Defender\Definition Updates\Backup\mpengine.dll c:\Documents and Settings\All Users\Application Data\Microsoft\Windows Defender\Definition Updates\Default\MpEngine.dll c:\Documents and Settings\All Users\Application Data\Microsoft\Windows Defender\Definition Updates\{4880EA0E-4029-43B8-A21B-79A4724996BF}\mpengine.dll c:\Documents and Settings\LocalService\Application Data\Microsoft\UPnP Device Host\upnphost\udhisapi.dll c:\Documents and Settings\Nghia Nguyen Dai\Application Data\Microsoft\IdentityCRL\ppcrlconfig.dll c:\Documents and Settings\Nghia Nguyen Dai\Application Data\Microsoft\IdentityCRL\Production\ppcrlconfig.dll c:\Documents and Settings\Nghia Nguyen Dai\Application Data\Microsoft\IdentityCRL\Production\ppcrlui.dll c:\Documents and Settings\Nghia Nguyen Dai\Application Data\Creative\Media Database\JetFileBackup\Expsrv.dll c:\Documents and Settings\Nghia Nguyen Dai\Application Data\Creative\Media Database\JetFileBackup\Msado15.dll c:\Documents and Settings\Nghia Nguyen Dai\Application Data\Creative\Media Database\JetFileBackup\Msadox.dll c:\Documents and Settings\Nghia Nguyen Dai\Application Data\Creative\Media Database\JetFileBackup\Msadrh15.dll c:\Documents and Settings\Nghia Nguyen Dai\Application Data\Creative\Media Database\JetFileBackup\Msjet40.dll c:\Documents and Settings\Nghia Nguyen Dai\Application Data\Creative\Media Database\JetFileBackup\Msjetoledb40.dll c:\Documents and Settings\Nghia Nguyen Dai\Application Data\Creative\Media Database\JetFileBackup\Msjint40.dll c:\Documents and Settings\Nghia Nguyen Dai\Application Data\Creative\Media Database\JetFileBackup\Msjro.dll c:\Documents and Settings\Nghia Nguyen Dai\Application Data\Creative\Media Database\JetFileBackup\Msjter40.dll c:\Documents and Settings\Nghia Nguyen Dai\Application Data\Creative\Media Database\JetFileBackup\Msjtes40.dll c:\Documents and Settings\Nghia Nguyen Dai\Application Data\Creative\Media Database\JetFileBackup\Mswstr10.dll c:\Documents and Settings\Nghia Nguyen Dai\Application Data\Creative\Media Database\JetFileBackup\vbajet32.dll Liste des drivers... < Service Pack 2 3 23 2007 03:01:23.500 < Pilote charg' \WINDOWS\system32\ntoskrnl.exe < Pilote charg' \WINDOWS\system32\hal.dll < Pilote charg' \WINDOWS\system32\KDCOM.DLL < Pilote charg' \WINDOWS\system32\BOOTVID.dll < Pilote charg' ACPI.sys < Pilote charg' \WINDOWS\System32\DRIVERS\WMILIB.SYS < Pilote charg' pci.sys < Pilote charg' isapnp.sys < Pilote charg' ohci1394.sys < Pilote charg' \WINDOWS\System32\DRIVERS\1394BUS.SYS < Pilote charg' compbatt.sys < Pilote charg' \WINDOWS\System32\DRIVERS\BATTC.SYS < Pilote charg' pciide.sys < Pilote charg' \WINDOWS\System32\DRIVERS\PCIIDEX.SYS < Pilote charg' intelide.sys < Pilote charg' pcmcia.sys < Pilote charg' MountMgr.sys < Pilote charg' ftdisk.sys < Pilote charg' dmload.sys < Pilote charg' dmio.sys < Pilote charg' ACPIEC.sys < Pilote charg' \WINDOWS\System32\DRIVERS\OPRGHDLR.SYS < Pilote charg' PartMgr.sys < Pilote charg' VolSnap.sys < Pilote charg' atapi.sys < Pilote charg' disk.sys < Pilote charg' \WINDOWS\System32\DRIVERS\CLASSPNP.SYS < Pilote charg' fltmgr.sys < Pilote charg' sr.sys < Pilote charg' PxHelp20.sys < Pilote charg' Fastfat.sys < Pilote charg' KSecDD.sys < Pilote charg' NDIS.sys < Pilote charg' speedfan.sys < Pilote charg' sbp2port.sys < Pilote charg' rmedia.sys < Pilote charg' Mup.sys < Pilote charg' giveio.sys < Pilote charg' btkrnl.sys < Pilote charg' \SystemRoot\System32\DRIVERS\intelppm.sys < Pilote charg' \SystemRoot\System32\DRIVERS\ialmnt5.sys < Pilote charg' \SystemRoot\System32\DRIVERS\usbuhci.sys < Pilote charg' \SystemRoot\System32\DRIVERS\usbehci.sys < Pilote charg' \SystemRoot\system32\DRIVERS\wg511nd5.sys < Pilote charg' \SystemRoot\System32\DRIVERS\nic1394.sys < Pilote charg' \SystemRoot\System32\DRIVERS\Rtlnic51.sys < Pilote charg' \SystemRoot\System32\DRIVERS\w22n51.sys < Pilote charg' \SystemRoot\System32\DRIVERS\i8042prt.sys < Pilote charg' \SystemRoot\System32\DRIVERS\kbdclass.sys < Pilote charg' \SystemRoot\System32\DRIVERS\SynTP.sys < Pilote charg' \SystemRoot\System32\DRIVERS\mouclass.sys < Pilote charg' \SystemRoot\system32\drivers\smwdm.sys < Pilote charg' \SystemRoot\system32\drivers\aeaudio.sys < Pilote charg' \SystemRoot\System32\DRIVERS\HSFHWICH.sys < Pilote charg' \SystemRoot\System32\DRIVERS\HSF_DP.sys < Pilote charg' \SystemRoot\System32\DRIVERS\HSF_CNXT.sys < Pilote charg' \SystemRoot\System32\Drivers\Modem.SYS < Pilote charg' \SystemRoot\System32\DRIVERS\CmBatt.sys < Pilote charg' \SystemRoot\System32\DRIVERS\ATKACPI.sys < Pilote charg' \SystemRoot\System32\DRIVERS\audstub.sys < Pilote charg' \SystemRoot\System32\DRIVERS\rasl2tp.sys < Pilote charg' \SystemRoot\System32\DRIVERS\ndistapi.sys < Pilote charg' \SystemRoot\System32\DRIVERS\ndiswan.sys < Pilote charg' \SystemRoot\System32\DRIVERS\raspppoe.sys < Pilote charg' \SystemRoot\System32\DRIVERS\raspptp.sys < Pilote charg' \SystemRoot\System32\DRIVERS\msgpc.sys < Pilote charg' \SystemRoot\System32\DRIVERS\psched.sys < Pilote charg' \SystemRoot\System32\DRIVERS\ptilink.sys < Pilote charg' \SystemRoot\System32\DRIVERS\raspti.sys < Pilote charg' \SystemRoot\System32\DRIVERS\rdpdr.sys < Pilote charg' \SystemRoot\System32\DRIVERS\termdd.sys < Pilote charg' \SystemRoot\System32\DRIVERS\swenum.sys < Pilote charg' \SystemRoot\System32\DRIVERS\update.sys < Pilote charg' \SystemRoot\System32\DRIVERS\mssmbios.sys < Pilote charg' \SystemRoot\System32\Drivers\NDProxy.SYS < Le pilote n'a pas 't' charg' \SystemRoot\System32\Drivers\NDProxy.SYS < Pilote charg' \SystemRoot\system32\drivers\ialmkchw.sys < Pilote charg' \SystemRoot\system32\drivers\ialmsbw.sys < Pilote charg' \SystemRoot\System32\DRIVERS\usbhub.sys < Le pilote n'a pas 't' charg' \SystemRoot\System32\Drivers\lbrtfdc.SYS < Le pilote n'a pas 't' charg' \SystemRoot\System32\Drivers\Fdc.SYS < Le pilote n'a pas 't' charg' \SystemRoot\System32\Drivers\Flpydisk.SYS < Le pilote n'a pas 't' charg' \SystemRoot\System32\Drivers\i2omgmt.SYS < Le pilote n'a pas 't' charg' \SystemRoot\system32\DRIVERS\cdrom.sys < Le pilote n'a pas 't' charg' \SystemRoot\System32\Drivers\Changer.SYS < Le pilote n'a pas 't' charg' \SystemRoot\System32\Drivers\Cdaudio.SYS < Pilote charg' \SystemRoot\System32\Drivers\Fs_Rec.SYS < Pilote charg' \SystemRoot\System32\Drivers\Null.SYS < Pilote charg' \SystemRoot\System32\Drivers\Beep.SYS < Pilote charg' \SystemRoot\System32\drivers\vga.sys < Pilote charg' \SystemRoot\System32\Drivers\mnmdd.SYS < Pilote charg' \SystemRoot\System32\DRIVERS\RDPCDD.sys < Pilote charg' \SystemRoot\System32\Drivers\Msfs.SYS < Pilote charg' \SystemRoot\System32\Drivers\Npfs.SYS < Pilote charg' \SystemRoot\System32\DRIVERS\rasacd.sys < Pilote charg' \SystemRoot\System32\DRIVERS\ipsec.sys < Pilote charg' \SystemRoot\System32\DRIVERS\tcpip.sys < Pilote charg' \SystemRoot\System32\Drivers\aswTdi.SYS < Pilote charg' \SystemRoot\System32\DRIVERS\netbt.sys < Pilote charg' \SystemRoot\System32\drivers\afd.sys < Pilote charg' \SystemRoot\System32\DRIVERS\netbios.sys < Le pilote n'a pas 't' charg' \SystemRoot\System32\DRIVERS\processr.sys < Le pilote n'a pas 't' charg' \SystemRoot\System32\Drivers\PCIDump.SYS < Pilote charg' \SystemRoot\System32\Drivers\SCDEmu.SYS < Le pilote n'a pas 't' charg' \SystemRoot\system32\DRIVERS\redbook.sys < Pilote charg' \SystemRoot\System32\DRIVERS\rdbss.sys < Pilote charg' \SystemRoot\System32\DRIVERS\mrxsmb.sys < Le pilote n'a pas 't' charg' \SystemRoot\system32\DRIVERS\imapi.sys < Pilote charg' \SystemRoot\System32\DRIVERS\ipnat.sys < Pilote charg' \SystemRoot\System32\DRIVERS\wanarp.sys < Pilote charg' \SystemRoot\System32\DRIVERS\arp1394.sys < Pilote charg' \SystemRoot\System32\Drivers\Fips.SYS < Pilote charg' \SystemRoot\System32\Drivers\Aavmker4.SYS < Pilote charg' Fastfat.SYS < Le pilote n'a pas 't' charg' \SystemRoot\System32\Drivers\key5usb.sys < Pilote charg' \SystemRoot\system32\DRIVERS\AegisP.sys < Pilote charg' \SystemRoot\System32\DRIVERS\mdc8021x.sys < Pilote charg' \SystemRoot\System32\DRIVERS\s24trans.sys < Pilote charg' \SystemRoot\System32\DRIVERS\ndisuio.sys Et voici HiJackThis : Logfile of Trend Micro HijackThis v2.0.0 (BETA) Scan saved at 02:49:51, on 23/03/2007 Platform: Windows XP SP2 (WinNT 5.01.2600) Boot mode: Normal Running processes: C:\WINDOWS\System32\smss.exe C:\WINDOWS\system32\winlogon.exe C:\WINDOWS\system32\services.exe C:\WINDOWS\system32\lsass.exe C:\WINDOWS\system32\svchost.exe C:\Program Files\Windows Defender\MsMpEng.exe C:\WINDOWS\System32\svchost.exe C:\WINDOWS\System32\S24EvMon.exe C:\WINDOWS\system32\ZCfgSvc.exe C:\WINDOWS\Explorer.EXE C:\WINDOWS\system32\spoolsv.exe C:\WINDOWS\system32\ASWLSVC.exe C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe C:\Program Files\Alwil Software\Avast4\ashServ.exe C:\Program Files\WIDCOMM\Bluetooth Software\bin\btwdins.exe C:\WINDOWS\System32\RegSrvc.exe C:\Program Files\Analog Devices\SoundMAX\SMAgent.exe C:\WINDOWS\System32\svchost.exe C:\Program Files\Canon\CAL\CALMAIN.exe C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe C:\WINDOWS\System32\1XConfig.exe C:\Program Files\Alwil Software\Avast4\ashWebSv.exe C:\WINDOWS\system32\wuauclt.exe C:\Program Files\Windows Defender\MSASCui.exe C:\Program Files\Synaptics\SynTP\SynTPLpr.exe C:\Program Files\Synaptics\SynTP\SynTPEnh.exe C:\WINDOWS\System32\hkcmd.exe C:\WINDOWS\ATK0100\Hcontrol.exe C:\Program Files\ASUS\WLAN Card Utilities\Center.exe C:\Program Files\NETGEAR\WG511SCU\Utility\Gear511.exe C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe C:\WINDOWS\system32\ctfmon.exe C:\Program Files\MSN Messenger\msnmsgr.exe C:\WINDOWS\ATK0100\ATKOSD.exe C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe C:\Documents and Settings\Nghia Nguyen Dai\Bureau\Nghia\HiJackThis_v2.exe R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = http://g.msn.fr/0SEFRFR/SAOS01?FORM=TOOLBR R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://g.msn.fr/0SEFRFR/SAOS01?FORM=TOOLBR R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.pdafrance.com/ R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157 R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896 R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896 R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157 R1 - HKCU\Software\Microsoft\Internet Explorer\SearchURL,(Default) = http://g.msn.fr/0SEFRFR/SAOS01?FORM=TOOLBR R1 - HKCU\Software\Microsoft\Internet Connection Wizard,ShellNext = http://www.asus.com.tw/ R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = localhost R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens O2 - BHO: (no name) - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.5.0_08\bin\ssv.dll O2 - BHO: Windows Live Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll O2 - BHO: Barre d'outils MSN Search Helper - {BDBD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\MSN Toolbar Suite\TB2.05.0000.1105\fr-fr\msntb.dll O3 - Toolbar: Barre d'outils MSN Search - {BDAD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\MSN Toolbar Suite\TB2.05.0000.1105\fr-fr\msntb.dll O3 - Toolbar: (no name) - {E0E899AB-F487-11D5-8D29-0050BA6940E3} - (no file) O4 - HKLM\..\Run: [Windows Defender] "C:\Program Files\Windows Defender\MSASCui.exe" -hide O4 - HKLM\..\Run: [synTPLpr] C:\Program Files\Synaptics\SynTP\SynTPLpr.exe O4 - HKLM\..\Run: [synTPEnh] C:\Program Files\Synaptics\SynTP\SynTPEnh.exe O4 - HKLM\..\Run: [HotKeysCmds] C:\WINDOWS\System32\hkcmd.exe O4 - HKLM\..\Run: [Hcontrol] C:\WINDOWS\ATK0100\Hcontrol.exe O4 - HKLM\..\Run: [Control Center] C:\Program Files\ASUS\WLAN Card Utilities\Center.exe O4 - HKLM\..\Run: [AS00_Gear511] C:\Program Files\NETGEAR\WG511SCU\Utility\Gear511.exe -hide O4 - HKLM\..\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe O4 - HKCU\..\Run: [msnmsgr] "C:\Program Files\MSN Messenger\msnmsgr.exe" /background O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'SERVICE LOCAL') O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'SERVICE RÉSEAU') O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'SYSTEM') O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'Default user') O4 - Global Startup: BTTray.lnk = ? O8 - Extra context menu item: &MSN Search - res://C:\Program Files\MSN Toolbar Suite\TB2.05.0000.1105\fr-fr\msntb.dll/search.htm O8 - Extra context menu item: Ajouter à &Windows Live Favorites - http://favorites.live.com/quickadd.aspx O8 - Extra context menu item: Browster Prefetch On/Off - res://C:\PROGRA~1\BROWSTER\Browster.dll/CustomPrefetchMenu.htm O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office10\EXCEL.EXE/3000 O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~2\OFFICE11\EXCEL.EXE/3000 O8 - Extra context menu item: Ouvrir dans un nouvel onglet d'arrière-plan - res://C:\Program Files\MSN Toolbar Suite\TAB2.05.0000.1105\fr-fr\msntabres.dll/229?db7658d5f1964273987e65e5df418c73 O8 - Extra context menu item: Ouvrir dans un nouvel onglet de premier plan - res://C:\Program Files\MSN Toolbar Suite\TAB2.05.0000.1105\fr-fr\msntabres.dll/230?db7658d5f1964273987e65e5df418c73 O8 - Extra context menu item: Send To &Bluetooth - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie_ctx.htm O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_08\bin\ssv.dll O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_08\bin\ssv.dll O9 - Extra button: Create Mobile Favorite - {2EAF5BB1-070F-11D3-9307-00C04FAE2D4F} - C:\PROGRA~1\MICROS~3\INetRepl.dll O9 - Extra button: (no name) - {2EAF5BB2-070F-11D3-9307-00C04FAE2D4F} - C:\PROGRA~1\MICROS~3\INetRepl.dll O9 - Extra 'Tools' menuitem: Create Mobile Favorite... - {2EAF5BB2-070F-11D3-9307-00C04FAE2D4F} - C:\PROGRA~1\MICROS~3\INetRepl.dll O9 - Extra button: (no name) - {85d1f590-48f4-11d9-9669-0800200c9a66} - %windir%\bdoscandel.exe (file missing) O9 - Extra 'Tools' menuitem: Uninstall BitDefender Online Scanner v8 - {85d1f590-48f4-11d9-9669-0800200c9a66} - %windir%\bdoscandel.exe (file missing) O9 - Extra button: Recherche - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\OFFICE11\REFIEBAR.DLL O9 - Extra button: @btrez.dll,-4015 - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm O9 - Extra 'Tools' menuitem: @btrez.dll,-4017 - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe O14 - IERESET.INF: START_PAGE_URL=http://www.asus.com.tw O15 - Trusted Zone: http://www.artskills.net O15 - Trusted Zone: http://www.sojeng.com O15 - Trusted Zone: http://www.w3sh.com O16 - DPF: {03B39B10-9AB9-4DBB-8189-7F76E0CE5F3F} (FavImport Class) - https://favorites.live.com/cab/ImportAx.cab?v=13,0,0831,02 O16 - DPF: {08BEF711-06DA-48B2-9534-802ECAA2E4F9} (PlxInstall Class) - https://www.plaxo.com/down/latest/PlaxoInstall.cab O16 - DPF: {0EB0E74A-2A76-4AB3-A7FB-9BD8C29F7F75} (CKAVWebScan Object) - http://webscanner.kaspersky.fr/kavwebscan_unicode.cab O16 - DPF: {34260DAF-318A-4B5A-8778-A861CF2108A5} (FavImport Class) - https://favorites.live.com/cab/ImportAx.cab O16 - DPF: {4F1E5B1A-2A80-42CA-8532-2D05CB959537} (MSN Photo Upload Tool) - http://spaces.msn.com//PhotoUpload/MsnPUpld.cab O16 - DPF: {5D86DDB5-BDF9-441B-9E9E-D4730F4EE499} (BDSCANONLINE Control) - http://download.bitdefender.com/resources/scan8/oscan8.cab O16 - DPF: {5ED80217-570B-4DA9-BF44-BE107C0EC166} (Windows Live Safety Center Base Module) - https://scan.safety.live.com/resource/downl...lscbase3401.cab O16 - DPF: {6DB731A3-B074-4118-8B1C-32511C65D836} (FotovistaPhotoUploader.ctrFpu) - http://www.mypixmania.com/fr/fr/tools/activex/fpu.cab O16 - DPF: {74D05D43-3236-11D4-BDCD-00C04F9A3B61} (HouseCall Control) - http://a840.g.akamai.net/7/840/537/2004061...all/xscan53.cab O16 - DPF: {8E0D4DE5-3180-4024-A327-4DFAD1796A8D} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/Messe...nt.cab31267.cab O16 - DPF: {9122D757-5A4F-4768-82C5-B4171D8556A7} (PhotoPickConvert Class) - http://appdirectory.messenger.msn.com/AppD...ap/PhtPkMSN.cab O16 - DPF: {9A9307A0-7DA4-4DAF-B042-5009F29E09E1} (ActiveScan Installer Class) - http://acs.pandasoftware.com/activescan/as5free/asinst.cab O16 - DPF: {A18962F6-E6ED-40B1-97C9-1FB36F38BFA8} (Aurigma Image Uploader 3.5 Control) - http://www.photoways.com/clients/ImageUploader3.cab O16 - DPF: {B38870E4-7ECB-40DA-8C6A-595F0A5519FF} (MsnMessengerSetupDownloadControl Class) - http://messenger.msn.com/download/MsnMesse...pDownloader.cab O16 - DPF: {C852B12E-3F08-4099-AF8E-32FD327B88EA} (msnloader Class) - http://rockstar.messenger.msn.com/rockstar.cab O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/shoc...ash/swflash.cab O18 - Protocol: talkto - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\MSNMES~1\MSGRAP~1.DLL O22 - SharedTaskScheduler: Pré-chargeur Browseui - {438755C2-A8BA-11D1-B96B-00A0C90312E1} - C:\WINDOWS\System32\browseui.dll O22 - SharedTaskScheduler: Démon de cache des catégories de composant - {8C7461EF-2B13-11d2-BE35-3078302C2030} - C:\WINDOWS\System32\browseui.dll O23 - Service: ASWLSVC - Unknown owner - C:\WINDOWS\system32\ASWLSVC.exe O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - Unknown owner - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe O23 - Service: avast! Antivirus - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashServ.exe O23 - Service: avast! Mail Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe O23 - Service: avast! Web Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe O23 - Service: Bluetooth Service (btwdins) - WIDCOMM, Inc. - C:\Program Files\WIDCOMM\Bluetooth Software\bin\btwdins.exe O23 - Service: Canon Camera Access Library 8 (CCALib8) - Canon Inc. - C:\Program Files\Canon\CAL\CALMAIN.exe O23 - Service: Service d'administration du Gestionnaire de disque logique (dmadmin) - Unknown owner - C:\WINDOWS\System32\dmadmin.exe O23 - Service: Journal des événements (Eventlog) - Unknown owner - C:\WINDOWS\system32\services.exe O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Fichiers communs\InstallShield\Driver\11\Intel 32\IDriverT.exe O23 - Service: Service COM de gravage de CD IMAPI (ImapiService) - Unknown owner - C:\WINDOWS\System32\imapi.exe O23 - Service: iPod Service - Apple Computer, Inc. - C:\Program Files\iPod\bin\iPodService.exe O23 - Service: Partage de Bureau à distance NetMeeting (mnmsrvc) - Unknown owner - C:\WINDOWS\System32\mnmsrvc.exe O23 - Service: PACSPTISVR - Unknown owner - C:\Program Files\Fichiers communs\Sony Shared\AVLib\PACSPTISVR.exe (file missing) O23 - Service: Plug-and-Play (PlugPlay) - Unknown owner - C:\WINDOWS\system32\services.exe O23 - Service: Gestionnaire de session d'aide sur le Bureau à distance (RDSessMgr) - Unknown owner - C:\WINDOWS\system32\sessmgr.exe O23 - Service: RegSrvc - Intel Corporation - C:\WINDOWS\System32\RegSrvc.exe O23 - Service: Spectrum24 Event Monitor (S24EventMonitor) - Intel Corporation - C:\WINDOWS\System32\S24EvMon.exe O23 - Service: Carte à puce (SCardSvr) - Unknown owner - C:\WINDOWS\System32\SCardSvr.exe O23 - Service: SoundMAX Agent Service (SoundMAX Agent Service (default)) - Analog Devices, Inc. - C:\Program Files\Analog Devices\SoundMAX\SMAgent.exe O23 - Service: Sony SPTI Service (SPTISRV) - Unknown owner - C:\Program Files\Fichiers communs\Sony Shared\AVLib\SPTISRV.exe (file missing) O23 - Service: Journaux et alertes de performance (SysmonLog) - Unknown owner - C:\WINDOWS\system32\smlogsvc.exe O23 - Service: Cliché instantané de volume (VSS) - Unknown owner - C:\WINDOWS\System32\vssvc.exe O23 - Service: Carte de performance WMI (WmiApSrv) - Unknown owner - C:\WINDOWS\System32\wbem\wmiapsrv.exe -- End of file - 12959 bytes
  7. Nghia
    Hello ! J'ai réussi à isoler un symptôme. Quand je démarre mon PC. Je rentre dans le gestionnaire de tâches. Je stoppe IEXPLORE.EXE. Et la les accents fonctionnent... Je n'ai aucune idée pourquoi?
  8. Nghia
    Bon j'ai tout vidé, nettoyé et le pb persiste. Je crois que la solution va etre de désinstallé les les applis après applis en fonction de l'ancienneté. et formatage si ca marche pas. En tout cas j'aimerais remercier Charles et ce forum qui possède un esprit assez extraordinnaire. Cela fait longtemps que je navigue sur internet, je gère moi meme un forum actif de plusieurs dizaines de milliers de membres (pdafrance.com) et celui de zebulon est surement un des plus conviviales que je connaisse. Bravo!
  9. Nghia
    Merci les gars! Désolé pour le retard dans la réponse, j'étais malade Je vais virer ces trucs outlook et je vous tiens au courant. C'est bizarre aujourd'hui, je sais pas pourquoi (j'ai rien changé), le pb a disparu. Puis j'ai rebooté et boom il est la à nouveau
  10. Nghia
    voici le rapport kapersky ------------------------------------------------------------------------------- KASPERSKY ON-LINE SCANNER REPORT Thursday, January 26, 2006 10:30:20 Operating System: Microsoft Windows XP Professional, Service Pack 2 (Build 2600) Kaspersky On-line Scanner version: 5.0.67.0 Kaspersky Anti-Virus database last update: 26/01/2006 Kaspersky Anti-Virus database records: 173187 ------------------------------------------------------------------------------- Scan Settings: Scan using the following antivirus database: extended Scan Archives: true Scan Mail Bases: true Scan Target - My Computer: C:\ D:\ Scan Statistics: Total number of scanned objects: 103034 Number of viruses found: 15 Number of infected objects: 225 Number of suspicious objects: 8 Duration of the scan process: 17158 sec Infected Object Name - Virus Name C:\Documents and Settings\Nghia Nguyen Dai\Local Settings\Application Data\Microsoft\Outlook\Outlook1.pst/Dossiers personnels/Deleted Items/07 Jan 2006 01:37 from eBay Inc:eBay Inc: urgent security notice.rtf Infected: Trojan-Spy.HTML.Bayfraud.hn C:\Documents and Settings\Nghia Nguyen Dai\Local Settings\Application Data\Microsoft\Outlook\Outlook1.pst/Dossiers personnels/Deleted Items/06 Jan 2006 23:29 from eBay Inc:eBay Inc: Urgent Security Notice.rtf Infected: Trojan-Spy.HTML.Bayfraud.hn C:\Documents and Settings\Nghia Nguyen Dai\Local Settings\Application Data\Microsoft\Outlook\Outlook1.pst/Dossiers personnels/Deleted Items/02 Jan 2006 07:07 from Mail Delivery System:Mail delivery failed.eml/[From "Contact" <contact@pdafrance.com>][Date Mon, 02 Jan 2006 08:06:52 +0100]/UNNAMED/foto3.com Infected: Email-Worm.Win32.Bagle.ah C:\Documents and Settings\Nghia Nguyen Dai\Local Settings\Application Data\Microsoft\Outlook\Outlook1.pst/Dossiers personnels/Deleted Items/02 Jan 2006 07:07 from Mail Delivery System:Mail delivery failed.eml/[From "Contact" <contact@pdafrance.com>][Date Mon, 02 Jan 2006 08:06:52 +0100]/UNNAMED Infected: Email-Worm.Win32.Bagle.ah C:\Documents and Settings\Nghia Nguyen Dai\Local Settings\Application Data\Microsoft\Outlook\Outlook1.pst/Dossiers personnels/Deleted Items/02 Jan 2006 07:07 from Mail Delivery System:Mail delivery failed.eml Infected: Email-Worm.Win32.Bagle.ah C:\Documents and Settings\Nghia Nguyen Dai\Local Settings\Application Data\Microsoft\Outlook\Outlook1.pst/Dossiers personnels/Deleted Items/30 Dec 2005 07:39 from Mail Delivery System:Mail delivery failed.eml/[From "Contact" <contact@pdafrance.com>][Date Fri, 30 Dec 2005 08:38:51 +0100]/UNNAMED/Dog.cpl Infected: Email-Worm.Win32.Bagle.ah C:\Documents and Settings\Nghia Nguyen Dai\Local Settings\Application Data\Microsoft\Outlook\Outlook1.pst/Dossiers personnels/Deleted Items/30 Dec 2005 07:39 from Mail Delivery System:Mail delivery failed.eml/[From "Contact" <contact@pdafrance.com>][Date Fri, 30 Dec 2005 08:38:51 +0100]/UNNAMED Infected: Email-Worm.Win32.Bagle.ah C:\Documents and Settings\Nghia Nguyen Dai\Local Settings\Application Data\Microsoft\Outlook\Outlook1.pst/Dossiers personnels/Deleted Items/30 Dec 2005 07:39 from Mail Delivery System:Mail delivery failed.eml Infected: Email-Worm.Win32.Bagle.ah C:\Documents and Settings\Nghia Nguyen Dai\Local Settings\Application Data\Microsoft\Outlook\Outlook1.pst/Dossiers personnels/Deleted Items/30 Dec 2005 07:11 from Mail Delivery System:Mail delivery failed.eml/[From "Contact" <contact@pdafrance.com>][Date Fri, 30 Dec 2005 08:10:53 +0100]/UNNAMED/foto3.cpl Infected: Email-Worm.Win32.Bagle.ah C:\Documents and Settings\Nghia Nguyen Dai\Local Settings\Application Data\Microsoft\Outlook\Outlook1.pst/Dossiers personnels/Deleted Items/30 Dec 2005 07:11 from Mail Delivery System:Mail delivery failed.eml/[From "Contact" <contact@pdafrance.com>][Date Fri, 30 Dec 2005 08:10:53 +0100]/UNNAMED Infected: Email-Worm.Win32.Bagle.ah C:\Documents and Settings\Nghia Nguyen Dai\Local Settings\Application Data\Microsoft\Outlook\Outlook1.pst/Dossiers personnels/Deleted Items/30 Dec 2005 07:11 from Mail Delivery System:Mail delivery failed.eml Infected: Email-Worm.Win32.Bagle.ah C:\Documents and Settings\Nghia Nguyen Dai\Local Settings\Application Data\Microsoft\Outlook\Outlook1.pst/Dossiers personnels/Deleted Items/29 Dec 2005 11:06 from Mail Delivery System:Mail delivery failed.eml/[From "Contact" <contact@pdafrance.com>][Date Thu, 29 Dec 2005 12:06:21 +0100]/UNNAMED/Garry.cpl Infected: Email-Worm.Win32.Bagle.ah C:\Documents and Settings\Nghia Nguyen Dai\Local Settings\Application Data\Microsoft\Outlook\Outlook1.pst/Dossiers personnels/Deleted Items/29 Dec 2005 11:06 from Mail Delivery System:Mail delivery failed.eml/[From "Contact" <contact@pdafrance.com>][Date Thu, 29 Dec 2005 12:06:21 +0100]/UNNAMED Infected: Email-Worm.Win32.Bagle.ah C:\Documents and Settings\Nghia Nguyen Dai\Local Settings\Application Data\Microsoft\Outlook\Outlook1.pst/Dossiers personnels/Deleted Items/29 Dec 2005 11:06 from Mail Delivery System:Mail delivery failed.eml Infected: Email-Worm.Win32.Bagle.ah C:\Documents and Settings\Nghia Nguyen Dai\Local Settings\Application Data\Microsoft\Outlook\Outlook1.pst/Dossiers personnels/Deleted Items/28 Dec 2005 16:37 from eBay Inc:BANKING MAIL FROM EBAY INC.rtf Infected: Trojan-Spy.HTML.Bayfraud.hn C:\Documents and Settings\Nghia Nguyen Dai\Local Settings\Application Data\Microsoft\Outlook\Outlook1.pst/Dossiers personnels/Deleted Items/28 Dec 2005 14:51 from Mail Delivery System:Mail delivery failed.eml/[From "Contact" <contact@pdafrance.com>][Date Wed, 28 Dec 2005 15:51:24 +0100]/UNNAMED/Fish.cpl Infected: Email-Worm.Win32.Bagle.ah C:\Documents and Settings\Nghia Nguyen Dai\Local Settings\Application Data\Microsoft\Outlook\Outlook1.pst/Dossiers personnels/Deleted Items/28 Dec 2005 14:51 from Mail Delivery System:Mail delivery failed.eml/[From "Contact" <contact@pdafrance.com>][Date Wed, 28 Dec 2005 15:51:24 +0100]/UNNAMED Infected: Email-Worm.Win32.Bagle.ah C:\Documents and Settings\Nghia Nguyen Dai\Local Settings\Application Data\Microsoft\Outlook\Outlook1.pst/Dossiers personnels/Deleted Items/28 Dec 2005 14:51 from Mail Delivery System:Mail delivery failed.eml Infected: Email-Worm.Win32.Bagle.ah C:\Documents and Settings\Nghia Nguyen Dai\Local Settings\Application Data\Microsoft\Outlook\Outlook1.pst/Dossiers personnels/Deleted Items/27 Dec 2005 07:16 from Mail Delivery System:Mail delivery failed.eml/[From "Contact" <contact@pdafrance.com>][Date Tue, 27 Dec 2005 08:15:46 +0100]/UNNAMED/Dog.cpl Infected: Email-Worm.Win32.Bagle.ah C:\Documents and Settings\Nghia Nguyen Dai\Local Settings\Application Data\Microsoft\Outlook\Outlook1.pst/Dossiers personnels/Deleted Items/27 Dec 2005 07:16 from Mail Delivery System:Mail delivery failed.eml/[From "Contact" <contact@pdafrance.com>][Date Tue, 27 Dec 2005 08:15:46 +0100]/UNNAMED Infected: Email-Worm.Win32.Bagle.ah C:\Documents and Settings\Nghia Nguyen Dai\Local Settings\Application Data\Microsoft\Outlook\Outlook1.pst/Dossiers personnels/Deleted Items/27 Dec 2005 07:16 from Mail Delivery System:Mail delivery failed.eml Infected: Email-Worm.Win32.Bagle.ah C:\Documents and Settings\Nghia Nguyen Dai\Local Settings\Application Data\Microsoft\Outlook\Outlook1.pst/Dossiers personnels/Deleted Items/26 Dec 2005 15:05 from Mail Delivery System:Mail delivery failed.eml/[From "Contact" <contact@pdafrance.com>][Date Mon, 26 Dec 2005 16:04:46 +0100]/UNNAMED/Fish.cpl Infected: Email-Worm.Win32.Bagle.ah C:\Documents and Settings\Nghia Nguyen Dai\Local Settings\Application Data\Microsoft\Outlook\Outlook1.pst/Dossiers personnels/Deleted Items/26 Dec 2005 15:05 from Mail Delivery System:Mail delivery failed.eml/[From "Contact" <contact@pdafrance.com>][Date Mon, 26 Dec 2005 16:04:46 +0100]/UNNAMED Infected: Email-Worm.Win32.Bagle.ah C:\Documents and Settings\Nghia Nguyen Dai\Local Settings\Application Data\Microsoft\Outlook\Outlook1.pst/Dossiers personnels/Deleted Items/26 Dec 2005 15:05 from Mail Delivery System:Mail delivery failed.eml Infected: Email-Worm.Win32.Bagle.ah C:\Documents and Settings\Nghia Nguyen Dai\Local Settings\Application Data\Microsoft\Outlook\Outlook1.pst/Dossiers personnels/Deleted Items/26 Dec 2005 07:17 from Mail Delivery System:Mail delivery failed.eml/[From "Contact" <contact@pdafrance.com>][Date Mon, 26 Dec 2005 08:17:08 +0100]/UNNAMED/Cat.scr Infected: Email-Worm.Win32.Bagle.ah C:\Documents and Settings\Nghia Nguyen Dai\Local Settings\Application Data\Microsoft\Outlook\Outlook1.pst/Dossiers personnels/Deleted Items/26 Dec 2005 07:17 from Mail Delivery System:Mail delivery failed.eml/[From "Contact" <contact@pdafrance.com>][Date Mon, 26 Dec 2005 08:17:08 +0100]/UNNAMED Infected: Email-Worm.Win32.Bagle.ah C:\Documents and Settings\Nghia Nguyen Dai\Local Settings\Application Data\Microsoft\Outlook\Outlook1.pst/Dossiers personnels/Deleted Items/26 Dec 2005 07:17 from Mail Delivery System:Mail delivery failed.eml Infected: Email-Worm.Win32.Bagle.ah C:\Documents and Settings\Nghia Nguyen Dai\Local Settings\Application Data\Microsoft\Outlook\Outlook1.pst/Dossiers personnels/Deleted Items/25 Dec 2005 10:34 from Mail Delivery System:Mail delivery failed.eml/[From "Contact" <contact@pdafrance.com>][Date Sun, 25 Dec 2005 11:34:23 +0100]/UNNAMED/Fish.com Infected: Email-Worm.Win32.Bagle.ah C:\Documents and Settings\Nghia Nguyen Dai\Local Settings\Application Data\Microsoft\Outlook\Outlook1.pst/Dossiers personnels/Deleted Items/25 Dec 2005 10:34 from Mail Delivery System:Mail delivery failed.eml/[From "Contact" <contact@pdafrance.com>][Date Sun, 25 Dec 2005 11:34:23 +0100]/UNNAMED Infected: Email-Worm.Win32.Bagle.ah C:\Documents and Settings\Nghia Nguyen Dai\Local Settings\Application Data\Microsoft\Outlook\Outlook1.pst/Dossiers personnels/Deleted Items/25 Dec 2005 10:34 from Mail Delivery System:Mail delivery failed.eml Infected: Email-Worm.Win32.Bagle.ah C:\Documents and Settings\Nghia Nguyen Dai\Local Settings\Application Data\Microsoft\Outlook\Outlook1.pst/Dossiers personnels/Deleted Items/24 Dec 2005 09:24 from Mail Delivery System:Mail delivery failed.eml/[From "Contact" <contact@pdafrance.com>][Date Sat, 24 Dec 2005 10:23:38 +0100]/UNNAMED/foto2.com Infected: Email-Worm.Win32.Bagle.ah C:\Documents and Settings\Nghia Nguyen Dai\Local Settings\Application Data\Microsoft\Outlook\Outlook1.pst/Dossiers personnels/Deleted Items/24 Dec 2005 09:24 from Mail Delivery System:Mail delivery failed.eml/[From "Contact" <contact@pdafrance.com>][Date Sat, 24 Dec 2005 10:23:38 +0100]/UNNAMED Infected: Email-Worm.Win32.Bagle.ah C:\Documents and Settings\Nghia Nguyen Dai\Local Settings\Application Data\Microsoft\Outlook\Outlook1.pst/Dossiers personnels/Deleted Items/24 Dec 2005 09:24 from Mail Delivery System:Mail delivery failed.eml Infected: Email-Worm.Win32.Bagle.ah C:\Documents and Settings\Nghia Nguyen Dai\Local Settings\Application Data\Microsoft\Outlook\Outlook1.pst/Dossiers personnels/Deleted Items/23 Dec 2005 18:13 from Mail Delivery System:Mail delivery failed.eml/[From "Contact" <contact@pdafrance.com>][Date Fri, 23 Dec 2005 19:13:25 +0100]/UNNAMED/Secret.cpl Infected: Email-Worm.Win32.Bagle.ah C:\Documents and Settings\Nghia Nguyen Dai\Local Settings\Application Data\Microsoft\Outlook\Outlook1.pst/Dossiers personnels/Deleted Items/23 Dec 2005 18:13 from Mail Delivery System:Mail delivery failed.eml/[From "Contact" <contact@pdafrance.com>][Date Fri, 23 Dec 2005 19:13:25 +0100]/UNNAMED Infected: Email-Worm.Win32.Bagle.ah C:\Documents and Settings\Nghia Nguyen Dai\Local Settings\Application Data\Microsoft\Outlook\Outlook1.pst/Dossiers personnels/Deleted Items/23 Dec 2005 18:13 from Mail Delivery System:Mail delivery failed.eml Infected: Email-Worm.Win32.Bagle.ah C:\Documents and Settings\Nghia Nguyen Dai\Local Settings\Application Data\Microsoft\Outlook\Outlook1.pst/Dossiers personnels/Deleted Items/23 Dec 2005 07:02 from Mail Delivery System:Mail delivery failed.eml/[From "Contact" <contact@pdafrance.com>][Date Fri, 23 Dec 2005 08:01:44 +0100]/UNNAMED/Secret.exe Infected: Email-Worm.Win32.Bagle.ah C:\Documents and Settings\Nghia Nguyen Dai\Local Settings\Application Data\Microsoft\Outlook\Outlook1.pst/Dossiers personnels/Deleted Items/23 Dec 2005 07:02 from Mail Delivery System:Mail delivery failed.eml/[From "Contact" <contact@pdafrance.com>][Date Fri, 23 Dec 2005 08:01:44 +0100]/UNNAMED Infected: Email-Worm.Win32.Bagle.ah C:\Documents and Settings\Nghia Nguyen Dai\Local Settings\Application Data\Microsoft\Outlook\Outlook1.pst/Dossiers personnels/Deleted Items/23 Dec 2005 07:02 from Mail Delivery System:Mail delivery failed.eml Infected: Email-Worm.Win32.Bagle.ah C:\Documents and Settings\Nghia Nguyen Dai\Local Settings\Application Data\Microsoft\Outlook\Outlook1.pst/Dossiers personnels/Deleted Items/19 Dec 2005 07:05 from Mail Delivery System:Mail delivery failed.eml/[From "Contact" <contact@pdafrance.com>][Date Mon, 19 Dec 2005 08:05:05 +0100]/UNNAMED/Secret.cpl Infected: Email-Worm.Win32.Bagle.ah C:\Documents and Settings\Nghia Nguyen Dai\Local Settings\Application Data\Microsoft\Outlook\Outlook1.pst/Dossiers personnels/Deleted Items/19 Dec 2005 07:05 from Mail Delivery System:Mail delivery failed.eml/[From "Contact" <contact@pdafrance.com>][Date Mon, 19 Dec 2005 08:05:05 +0100]/UNNAMED Infected: Email-Worm.Win32.Bagle.ah C:\Documents and Settings\Nghia Nguyen Dai\Local Settings\Application Data\Microsoft\Outlook\Outlook1.pst/Dossiers personnels/Deleted Items/19 Dec 2005 07:05 from Mail Delivery System:Mail delivery failed.eml Infected: Email-Worm.Win32.Bagle.ah C:\Documents and Settings\Nghia Nguyen Dai\Local Settings\Application Data\Microsoft\Outlook\Outlook1.pst/Dossiers personnels/Deleted Items/17 Dec 2005 07:17 from Mail Delivery System:Mail delivery failed.eml/[From "Contact" <contact@pdafrance.com>][Date Sat, 17 Dec 2005 08:17:40 +0100]/UNNAMED/Garry.scr Infected: Email-Worm.Win32.Bagle.ah C:\Documents and Settings\Nghia Nguyen Dai\Local Settings\Application Data\Microsoft\Outlook\Outlook1.pst/Dossiers personnels/Deleted Items/17 Dec 2005 07:17 from Mail Delivery System:Mail delivery failed.eml/[From "Contact" <contact@pdafrance.com>][Date Sat, 17 Dec 2005 08:17:40 +0100]/UNNAMED Infected: Email-Worm.Win32.Bagle.ah C:\Documents and Settings\Nghia Nguyen Dai\Local Settings\Application Data\Microsoft\Outlook\Outlook1.pst/Dossiers personnels/Deleted Items/17 Dec 2005 07:17 from Mail Delivery System:Mail delivery failed.eml Infected: Email-Worm.Win32.Bagle.ah C:\Documents and Settings\Nghia Nguyen Dai\Local Settings\Application Data\Microsoft\Outlook\Outlook1.pst/Dossiers personnels/Deleted Items/16 Dec 2005 07:14 from Mail Delivery System:Mail delivery failed.eml/[From "Contact" <contact@pdafrance.com>][Date Fri, 16 Dec 2005 08:14:37 +0100]/UNNAMED/Garry.scr Infected: Email-Worm.Win32.Bagle.ah C:\Documents and Settings\Nghia Nguyen Dai\Local Settings\Application Data\Microsoft\Outlook\Outlook1.pst/Dossiers personnels/Deleted Items/16 Dec 2005 07:14 from Mail Delivery System:Mail delivery failed.eml/[From "Contact" <contact@pdafrance.com>][Date Fri, 16 Dec 2005 08:14:37 +0100]/UNNAMED Infected: Email-Worm.Win32.Bagle.ah C:\Documents and Settings\Nghia Nguyen Dai\Local Settings\Application Data\Microsoft\Outlook\Outlook1.pst/Dossiers personnels/Deleted Items/16 Dec 2005 07:14 from Mail Delivery System:Mail delivery failed.eml Infected: Email-Worm.Win32.Bagle.ah C:\Documents and Settings\Nghia Nguyen Dai\Local Settings\Application Data\Microsoft\Outlook\Outlook1.pst/Dossiers personnels/Deleted Items/02 Jan 2006 20:17 from MAILER-DAEMON@mail3.ikoula.com:failure no.eml/[From nghia@capitalemedia.com][Date Tue, 26 Dec 2000 20:33:19 +0100]/UNNAMED/readme.zip/details.txt .pif Infected: Email-Worm.Win32.NetSky.q C:\Documents and Settings\Nghia Nguyen Dai\Local Settings\Application Data\Microsoft\Outlook\Outlook1.pst/Dossiers personnels/Deleted Items/02 Jan 2006 20:17 from MAILER-DAEMON@mail3.ikoula.com:failure no.eml/[From nghia@capitalemedia.com][Date Tue, 26 Dec 2000 20:33:19 +0100]/UNNAMED/readme.zip Infected: Email-Worm.Win32.NetSky.q C:\Documents and Settings\Nghia Nguyen Dai\Local Settings\Application Data\Microsoft\Outlook\Outlook1.pst/Dossiers personnels/Deleted Items/02 Jan 2006 20:17 from MAILER-DAEMON@mail3.ikoula.com:failure no.eml/[From nghia@capitalemedia.com][Date Tue, 26 Dec 2000 20:33:19 +0100]/UNNAMED Infected: Email-Worm.Win32.NetSky.q C:\Documents and Settings\Nghia Nguyen Dai\Local Settings\Application Data\Microsoft\Outlook\Outlook1.pst/Dossiers personnels/Deleted Items/02 Jan 2006 20:17 from MAILER-DAEMON@mail3.ikoula.com:failure no.eml Infected: Email-Worm.Win32.NetSky.q C:\Documents and Settings\Nghia Nguyen Dai\Local Settings\Application Data\Microsoft\Outlook\Outlook1.pst/Dossiers personnels/Deleted Items/02 Jan 2006 09:05 from Mail Delivery System:Mail delivery failed.eml/[From nghia@capitalemedia.com][Date Thu, 29 Dec 2005 07:36:13 UTC]/UNNAMED/UNNAMED/[From nghia@capitalemedia.com][Date Thu, 29 Dec 2005 07:36:13 UTC]/mailtext.zip/File-packed_dataInfo.exe Infected: Email-Worm.Win32.Sober.y C:\Documents and Settings\Nghia Nguyen Dai\Local Settings\Application Data\Microsoft\Outlook\Outlook1.pst/Dossiers personnels/Deleted Items/02 Jan 2006 09:05 from Mail Delivery System:Mail delivery failed.eml/[From nghia@capitalemedia.com][Date Thu, 29 Dec 2005 07:36:13 UTC]/UNNAMED/UNNAMED/[From nghia@capitalemedia.com][Date Thu, 29 Dec 2005 07:36:13 UTC]/mailtext.zip Infected: Email-Worm.Win32.Sober.y C:\Documents and Settings\Nghia Nguyen Dai\Local Settings\Application Data\Microsoft\Outlook\Outlook1.pst/Dossiers personnels/Deleted Items/02 Jan 2006 09:05 from Mail Delivery System:Mail delivery failed.eml/[From nghia@capitalemedia.com][Date Thu, 29 Dec 2005 07:36:13 UTC]/UNNAMED/UNNAMED Infected: Email-Worm.Win32.Sober.y C:\Documents and Settings\Nghia Nguyen Dai\Local Settings\Application Data\Microsoft\Outlook\Outlook1.pst/Dossiers personnels/Deleted Items/02 Jan 2006 09:05 from Mail Delivery System:Mail delivery failed.eml/[From nghia@capitalemedia.com][Date Thu, 29 Dec 2005 07:36:13 UTC]/UNNAMED Infected: Email-Worm.Win32.Sober.y C:\Documents and Settings\Nghia Nguyen Dai\Local Settings\Application Data\Microsoft\Outlook\Outlook1.pst/Dossiers personnels/Deleted Items/02 Jan 2006 09:05 from Mail Delivery System:Mail delivery failed.eml Infected: Email-Worm.Win32.Sober.y C:\Documents and Settings\Nghia Nguyen Dai\Local Settings\Application Data\Microsoft\Outlook\Outlook1.pst/Dossiers personnels/Deleted Items/02 Jan 2006 07:07 from Mail Delivery System:Mail delivery failed.eml/[From "Nghia" <nghia@capitalemedia.com>][Date Mon, 02 Jan 2006 08:06:55 +0100]/UNNAMED/Dog.com Infected: Email-Worm.Win32.Bagle.ah C:\Documents and Settings\Nghia Nguyen Dai\Local Settings\Application Data\Microsoft\Outlook\Outlook1.pst/Dossiers personnels/Deleted Items/02 Jan 2006 07:07 from Mail Delivery System:Mail delivery failed.eml/[From "Nghia" <nghia@capitalemedia.com>][Date Mon, 02 Jan 2006 08:06:55 +0100]/UNNAMED Infected: Email-Worm.Win32.Bagle.ah C:\Documents and Settings\Nghia Nguyen Dai\Local Settings\Application Data\Microsoft\Outlook\Outlook1.pst/Dossiers personnels/Deleted Items/02 Jan 2006 07:07 from Mail Delivery System:Mail delivery failed.eml Infected: Email-Worm.Win32.Bagle.ah C:\Documents and Settings\Nghia Nguyen Dai\Local Settings\Application Data\Microsoft\Outlook\Outlook1.pst/Dossiers personnels/Deleted Items/30 Dec 2005 07:39 from Mail Delivery System:Mail delivery failed.eml/[From "Nghia" <nghia@capitalemedia.com>][Date Fri, 30 Dec 2005 08:38:52 +0100]/UNNAMED/Secret.cpl Infected: Email-Worm.Win32.Bagle.ah C:\Documents and Settings\Nghia Nguyen Dai\Local Settings\Application Data\Microsoft\Outlook\Outlook1.pst/Dossiers personnels/Deleted Items/30 Dec 2005 07:39 from Mail Delivery System:Mail delivery failed.eml/[From "Nghia" <nghia@capitalemedia.com>][Date Fri, 30 Dec 2005 08:38:52 +0100]/UNNAMED Infected: Email-Worm.Win32.Bagle.ah C:\Documents and Settings\Nghia Nguyen Dai\Local Settings\Application Data\Microsoft\Outlook\Outlook1.pst/Dossiers personnels/Deleted Items/30 Dec 2005 07:39 from Mail Delivery System:Mail delivery failed.eml Infected: Email-Worm.Win32.Bagle.ah C:\Documents and Settings\Nghia Nguyen Dai\Local Settings\Application Data\Microsoft\Outlook\Outlook1.pst/Dossiers personnels/Deleted Items/30 Dec 2005 07:11 from Mail Delivery System:Mail delivery failed.eml/[From "Nghia" <nghia@capitalemedia.com>][Date Fri, 30 Dec 2005 08:10:53 +0100]/UNNAMED/Fish.cpl Infected: Email-Worm.Win32.Bagle.ah C:\Documents and Settings\Nghia Nguyen Dai\Local Settings\Application Data\Microsoft\Outlook\Outlook1.pst/Dossiers personnels/Deleted Items/30 Dec 2005 07:11 from Mail Delivery System:Mail delivery failed.eml/[From "Nghia" <nghia@capitalemedia.com>][Date Fri, 30 Dec 2005 08:10:53 +0100]/UNNAMED Infected: Email-Worm.Win32.Bagle.ah C:\Documents and Settings\Nghia Nguyen Dai\Local Settings\Application Data\Microsoft\Outlook\Outlook1.pst/Dossiers personnels/Deleted Items/30 Dec 2005 07:11 from Mail Delivery System:Mail delivery failed.eml Infected: Email-Worm.Win32.Bagle.ah C:\Documents and Settings\Nghia Nguyen Dai\Local Settings\Application Data\Microsoft\Outlook\Outlook1.pst/Dossiers personnels/Deleted Items/29 Dec 2005 11:06 from Mail Delivery System:Mail delivery failed.eml/[From "Nghia" <nghia@capitalemedia.com>][Date Thu, 29 Dec 2005 12:06:23 +0100]/UNNAMED/Garry.cpl Infected: Email-Worm.Win32.Bagle.ah C:\Documents and Settings\Nghia Nguyen Dai\Local Settings\Application Data\Microsoft\Outlook\Outlook1.pst/Dossiers personnels/Deleted Items/29 Dec 2005 11:06 from Mail Delivery System:Mail delivery failed.eml/[From "Nghia" <nghia@capitalemedia.com>][Date Thu, 29 Dec 2005 12:06:23 +0100]/UNNAMED Infected: Email-Worm.Win32.Bagle.ah C:\Documents and Settings\Nghia Nguyen Dai\Local Settings\Application Data\Microsoft\Outlook\Outlook1.pst/Dossiers personnels/Deleted Items/29 Dec 2005 11:06 from Mail Delivery System:Mail delivery failed.eml Infected: Email-Worm.Win32.Bagle.ah C:\Documents and Settings\Nghia Nguyen Dai\Local Settings\Application Data\Microsoft\Outlook\Outlook1.pst/Dossiers personnels/Deleted Items/28 Dec 2005 14:51 to nghia@capitalemedia.com:Mail delivery faile.eml/[From "Nghia" <nghia@capitalemedia.com>][Date Wed, 28 Dec 2005 15:51:27 +0100]/UNNAMED/Garry.cpl Infected: Email-Worm.Win32.Bagle.ah C:\Documents and Settings\Nghia Nguyen Dai\Local Settings\Application Data\Microsoft\Outlook\Outlook1.pst/Dossiers personnels/Deleted Items/28 Dec 2005 14:51 to nghia@capitalemedia.com:Mail delivery faile.eml/[From "Nghia" <nghia@capitalemedia.com>][Date Wed, 28 Dec 2005 15:51:27 +0100]/UNNAMED Infected: Email-Worm.Win32.Bagle.ah C:\Documents and Settings\Nghia Nguyen Dai\Local Settings\Application Data\Microsoft\Outlook\Outlook1.pst/Dossiers personnels/Deleted Items/28 Dec 2005 14:51 to nghia@capitalemedia.com:Mail delivery faile.eml Infected: Email-Worm.Win32.Bagle.ah C:\Documents and Settings\Nghia Nguyen Dai\Local Settings\Application Data\Microsoft\Outlook\Outlook1.pst/Dossiers personnels/Deleted Items/27 Dec 2005 07:15 from Mail Delivery System:Mail delivery failed.eml/[From "Nghia" <nghia@capitalemedia.com>][Date Tue, 27 Dec 2005 08:15:47 +0100]/UNNAMED/Garry.cpl Infected: Email-Worm.Win32.Bagle.ah C:\Documents and Settings\Nghia Nguyen Dai\Local Settings\Application Data\Microsoft\Outlook\Outlook1.pst/Dossiers personnels/Deleted Items/27 Dec 2005 07:15 from Mail Delivery System:Mail delivery failed.eml/[From "Nghia" <nghia@capitalemedia.com>][Date Tue, 27 Dec 2005 08:15:47 +0100]/UNNAMED Infected: Email-Worm.Win32.Bagle.ah C:\Documents and Settings\Nghia Nguyen Dai\Local Settings\Application Data\Microsoft\Outlook\Outlook1.pst/Dossiers personnels/Deleted Items/27 Dec 2005 07:15 from Mail Delivery System:Mail delivery failed.eml Infected: Email-Worm.Win32.Bagle.ah C:\Documents and Settings\Nghia Nguyen Dai\Local Settings\Application Data\Microsoft\Outlook\Outlook1.pst/Dossiers personnels/Deleted Items/26 Dec 2005 15:04 from Mail Delivery System:Mail delivery failed.eml/[From "Nghia" <nghia@capitalemedia.com>][Date Mon, 26 Dec 2005 16:04:48 +0100]/UNNAMED/Cat.cpl Infected: Email-Worm.Win32.Bagle.ah C:\Documents and Settings\Nghia Nguyen Dai\Local Settings\Application Data\Microsoft\Outlook\Outlook1.pst/Dossiers personnels/Deleted Items/26 Dec 2005 15:04 from Mail Delivery System:Mail delivery failed.eml/[From "Nghia" <nghia@capitalemedia.com>][Date Mon, 26 Dec 2005 16:04:48 +0100]/UNNAMED Infected: Email-Worm.Win32.Bagle.ah C:\Documents and Settings\Nghia Nguyen Dai\Local Settings\Application Data\Microsoft\Outlook\Outlook1.pst/Dossiers personnels/Deleted Items/26 Dec 2005 15:04 from Mail Delivery System:Mail delivery failed.eml Infected: Email-Worm.Win32.Bagle.ah C:\Documents and Settings\Nghia Nguyen Dai\Local Settings\Application Data\Microsoft\Outlook\Outlook1.pst/Dossiers personnels/Deleted Items/26 Dec 2005 07:17 from Mail Delivery System:Mail delivery failed.eml/[From "Nghia" <nghia@capitalemedia.com>][Date Mon, 26 Dec 2005 08:17:10 +0100]/UNNAMED/foto3.scr Infected: Email-Worm.Win32.Bagle.ah C:\Documents and Settings\Nghia Nguyen Dai\Local Settings\Application Data\Microsoft\Outlook\Outlook1.pst/Dossiers personnels/Deleted Items/26 Dec 2005 07:17 from Mail Delivery System:Mail delivery failed.eml/[From "Nghia" <nghia@capitalemedia.com>][Date Mon, 26 Dec 2005 08:17:10 +0100]/UNNAMED Infected: Email-Worm.Win32.Bagle.ah C:\Documents and Settings\Nghia Nguyen Dai\Local Settings\Application Data\Microsoft\Outlook\Outlook1.pst/Dossiers personnels/Deleted Items/26 Dec 2005 07:17 from Mail Delivery System:Mail delivery failed.eml Infected: Email-Worm.Win32.Bagle.ah C:\Documents and Settings\Nghia Nguyen Dai\Local Settings\Application Data\Microsoft\Outlook\Outlook1.pst/Dossiers personnels/Deleted Items/25 Dec 2005 10:34 from Mail Delivery System:Mail delivery failed.eml/[From "Nghia" <nghia@capitalemedia.com>][Date Sun, 25 Dec 2005 11:34:26 +0100]/UNNAMED/Dog.com Infected: Email-Worm.Win32.Bagle.ah C:\Documents and Settings\Nghia Nguyen Dai\Local Settings\Application Data\Microsoft\Outlook\Outlook1.pst/Dossiers personnels/Deleted Items/25 Dec 2005 10:34 from Mail Delivery System:Mail delivery failed.eml/[From "Nghia" <nghia@capitalemedia.com>][Date Sun, 25 Dec 2005 11:34:26 +0100]/UNNAMED Infected: Email-Worm.Win32.Bagle.ah C:\Documents and Settings\Nghia Nguyen Dai\Local Settings\Application Data\Microsoft\Outlook\Outlook1.pst/Dossiers personnels/Deleted Items/25 Dec 2005 10:34 from Mail Delivery System:Mail delivery failed.eml Infected: Email-Worm.Win32.Bagle.ah C:\Documents and Settings\Nghia Nguyen Dai\Local Settings\Application Data\Microsoft\Outlook\Outlook1.pst/Dossiers personnels/Deleted Items/24 Dec 2005 09:23 from Mail Delivery System:Mail delivery failed.eml/[From "Nghia" <nghia@capitalemedia.com>][Date Sat, 24 Dec 2005 10:23:38 +0100]/UNNAMED/Dog.com Infected: Email-Worm.Win32.Bagle.ah C:\Documents and Settings\Nghia Nguyen Dai\Local Settings\Application Data\Microsoft\Outlook\Outlook1.pst/Dossiers personnels/Deleted Items/24 Dec 2005 09:23 from Mail Delivery System:Mail delivery failed.eml/[From "Nghia" <nghia@capitalemedia.com>][Date Sat, 24 Dec 2005 10:23:38 +0100]/UNNAMED Infected: Email-Worm.Win32.Bagle.ah C:\Documents and Settings\Nghia Nguyen Dai\Local Settings\Application Data\Microsoft\Outlook\Outlook1.pst/Dossiers personnels/Deleted Items/24 Dec 2005 09:23 from Mail Delivery System:Mail delivery failed.eml Infected: Email-Worm.Win32.Bagle.ah C:\Documents and Settings\Nghia Nguyen Dai\Local Settings\Application Data\Microsoft\Outlook\Outlook1.pst/Dossiers personnels/Deleted Items/23 Dec 2005 18:13 to nghia@capitalemedia.com:Mail delivery faile.eml/[From "Nghia" <nghia@capitalemedia.com>][Date Fri, 23 Dec 2005 19:13:30 +0100]/UNNAMED/Fish.cpl Infected: Email-Worm.Win32.Bagle.ah C:\Documents and Settings\Nghia Nguyen Dai\Local Settings\Application Data\Microsoft\Outlook\Outlook1.pst/Dossiers personnels/Deleted Items/23 Dec 2005 18:13 to nghia@capitalemedia.com:Mail delivery faile.eml/[From "Nghia" <nghia@capitalemedia.com>][Date Fri, 23 Dec 2005 19:13:30 +0100]/UNNAMED Infected: Email-Worm.Win32.Bagle.ah C:\Documents and Settings\Nghia Nguyen Dai\Local Settings\Application Data\Microsoft\Outlook\Outlook1.pst/Dossiers personnels/Deleted Items/23 Dec 2005 18:13 to nghia@capitalemedia.com:Mail delivery faile.eml Infected: Email-Worm.Win32.Bagle.ah C:\Documents and Settings\Nghia Nguyen Dai\Local Settings\Application Data\Microsoft\Outlook\Outlook1.pst/Dossiers personnels/Deleted Items/23 Dec 2005 07:02 from Mail Delivery System:Mail delivery failed.eml/[From "Nghia" <nghia@capitalemedia.com>][Date Fri, 23 Dec 2005 08:01:48 +0100]/UNNAMED/Secret.exe Infected: Email-Worm.Win32.Bagle.ah C:\Documents and Settings\Nghia Nguyen Dai\Local Settings\Application Data\Microsoft\Outlook\Outlook1.pst/Dossiers personnels/Deleted Items/23 Dec 2005 07:02 from Mail Delivery System:Mail delivery failed.eml/[From "Nghia" <nghia@capitalemedia.com>][Date Fri, 23 Dec 2005 08:01:48 +0100]/UNNAMED Infected: Email-Worm.Win32.Bagle.ah C:\Documents and Settings\Nghia Nguyen Dai\Local Settings\Application Data\Microsoft\Outlook\Outlook1.pst/Dossiers personnels/Deleted Items/23 Dec 2005 07:02 from Mail Delivery System:Mail delivery failed.eml Infected: Email-Worm.Win32.Bagle.ah C:\Documents and Settings\Nghia Nguyen Dai\Local Settings\Application Data\Microsoft\Outlook\Outlook1.pst/Dossiers personnels/Deleted Items/19 Dec 2005 07:05 from Mail Delivery System:Mail delivery failed.eml/[From "Nghia" <nghia@capitalemedia.com>][Date Mon, 19 Dec 2005 08:05:05 +0100]/UNNAMED/foto3.cpl Infected: Email-Worm.Win32.Bagle.ah C:\Documents and Settings\Nghia Nguyen Dai\Local Settings\Application Data\Microsoft\Outlook\Outlook1.pst/Dossiers personnels/Deleted Items/19 Dec 2005 07:05 from Mail Delivery System:Mail delivery failed.eml/[From "Nghia" <nghia@capitalemedia.com>][Date Mon, 19 Dec 2005 08:05:05 +0100]/UNNAMED Infected: Email-Worm.Win32.Bagle.ah C:\Documents and Settings\Nghia Nguyen Dai\Local Settings\Application Data\Microsoft\Outlook\Outlook1.pst/Dossiers personnels/Deleted Items/19 Dec 2005 07:05 from Mail Delivery System:Mail delivery failed.eml Infected: Email-Worm.Win32.Bagle.ah C:\Documents and Settings\Nghia Nguyen Dai\Local Settings\Application Data\Microsoft\Outlook\Outlook1.pst/Dossiers personnels/Deleted Items/17 Dec 2005 07:17 from Mail Delivery System:Mail delivery failed.eml/[From "Nghia" <nghia@capitalemedia.com>][Date Sat, 17 Dec 2005 08:17:41 +0100]/UNNAMED/Cat.scr Infected: Email-Worm.Win32.Bagle.ah C:\Documents and Settings\Nghia Nguyen Dai\Local Settings\Application Data\Microsoft\Outlook\Outlook1.pst/Dossiers personnels/Deleted Items/17 Dec 2005 07:17 from Mail Delivery System:Mail delivery failed.eml/[From "Nghia" <nghia@capitalemedia.com>][Date Sat, 17 Dec 2005 08:17:41 +0100]/UNNAMED Infected: Email-Worm.Win32.Bagle.ah C:\Documents and Settings\Nghia Nguyen Dai\Local Settings\Application Data\Microsoft\Outlook\Outlook1.pst/Dossiers personnels/Deleted Items/17 Dec 2005 07:17 from Mail Delivery System:Mail delivery failed.eml Infected: Email-Worm.Win32.Bagle.ah C:\Documents and Settings\Nghia Nguyen Dai\Local Settings\Application Data\Microsoft\Outlook\Outlook1.pst/Dossiers personnels/Deleted Items/16 Dec 2005 07:14 from Mail Delivery System:Mail delivery failed.eml/[From "Nghia" <nghia@capitalemedia.com>][Date Fri, 16 Dec 2005 08:14:39 +0100]/UNNAMED/Secret.scr Infected: Email-Worm.Win32.Bagle.ah C:\Documents and Settings\Nghia Nguyen Dai\Local Settings\Application Data\Microsoft\Outlook\Outlook1.pst/Dossiers personnels/Deleted Items/16 Dec 2005 07:14 from Mail Delivery System:Mail delivery failed.eml/[From "Nghia" <nghia@capitalemedia.com>][Date Fri, 16 Dec 2005 08:14:39 +0100]/UNNAMED Infected: Email-Worm.Win32.Bagle.ah C:\Documents and Settings\Nghia Nguyen Dai\Local Settings\Application Data\Microsoft\Outlook\Outlook1.pst/Dossiers personnels/Deleted Items/16 Dec 2005 07:14 from Mail Delivery System:Mail delivery failed.eml Infected: Email-Worm.Win32.Bagle.ah C:\Documents and Settings\Nghia Nguyen Dai\Local Settings\Application Data\Microsoft\Outlook\Outlook1.pst/Dossiers personnels/Deleted Items/16 Jan 2006 02:17 from eBay Inc:Service Message From eBay.rtf Infected: Trojan-Spy.HTML.Bayfraud.hn C:\Documents and Settings\Nghia Nguyen Dai\Local Settings\Application Data\Microsoft\Outlook\Outlook1.pst/Dossiers personnels/Deleted Items/15 Jan 2006 19:28 from Mail Delivery System:Mail delivery failed.eml/[From "Contact" <contact@pdafrance.com>][Date Sun, 15 Jan 2006 20:28:09 +0100]/UNNAMED/Secret.scr Infected: Email-Worm.Win32.Bagle.ah C:\Documents and Settings\Nghia Nguyen Dai\Local Settings\Application Data\Microsoft\Outlook\Outlook1.pst/Dossiers personnels/Deleted Items/15 Jan 2006 19:28 from Mail Delivery System:Mail delivery failed.eml/[From "Contact" <contact@pdafrance.com>][Date Sun, 15 Jan 2006 20:28:09 +0100]/UNNAMED Infected: Email-Worm.Win32.Bagle.ah C:\Documents and Settings\Nghia Nguyen Dai\Local Settings\Application Data\Microsoft\Outlook\Outlook1.pst/Dossiers personnels/Deleted Items/15 Jan 2006 19:28 from Mail Delivery System:Mail delivery failed.eml Infected: Email-Worm.Win32.Bagle.ah C:\Documents and Settings\Nghia Nguyen Dai\Local Settings\Application Data\Microsoft\Outlook\Outlook1.pst/Dossiers personnels/Deleted Items/15 Jan 2006 14:31 from Mail Delivery System:Mail delivery failed.eml/[From "Contact" <contact@pdafrance.com>][Date Sun, 15 Jan 2006 15:35:44 +0100]/UNNAMED/Garry.cpl Infected: Email-Worm.Win32.Bagle.ah C:\Documents and Settings\Nghia Nguyen Dai\Local Settings\Application Data\Microsoft\Outlook\Outlook1.pst/Dossiers personnels/Deleted Items/15 Jan 2006 14:31 from Mail Delivery System:Mail delivery failed.eml/[From "Contact" <contact@pdafrance.com>][Date Sun, 15 Jan 2006 15:35:44 +0100]/UNNAMED Infected: Email-Worm.Win32.Bagle.ah C:\Documents and Settings\Nghia Nguyen Dai\Local Settings\Application Data\Microsoft\Outlook\Outlook1.pst/Dossiers personnels/Deleted Items/15 Jan 2006 14:31 from Mail Delivery System:Mail delivery failed.eml Infected: Email-Worm.Win32.Bagle.ah C:\Documents and Settings\Nghia Nguyen Dai\Local Settings\Application Data\Microsoft\Outlook\Outlook1.pst/Dossiers personnels/Deleted Items/15 Jan 2006 13:54 from Mail Delivery System:Mail delivery failed.eml/[From "Contact" <contact@pdafrance.com>][Date Sun, 15 Jan 2006 14:59:59 +0100]/UNNAMED/foto2.cpl Infected: Email-Worm.Win32.Bagle.ah C:\Documents and Settings\Nghia Nguyen Dai\Local Settings\Application Data\Microsoft\Outlook\Outlook1.pst/Dossiers personnels/Deleted Items/15 Jan 2006 13:54 from Mail Delivery System:Mail delivery failed.eml/[From "Contact" <contact@pdafrance.com>][Date Sun, 15 Jan 2006 14:59:59 +0100]/UNNAMED Infected: Email-Worm.Win32.Bagle.ah C:\Documents and Settings\Nghia Nguyen Dai\Local Settings\Application Data\Microsoft\Outlook\Outlook1.pst/Dossiers personnels/Deleted Items/15 Jan 2006 13:54 from Mail Delivery System:Mail delivery failed.eml Infected: Email-Worm.Win32.Bagle.ah C:\Documents and Settings\Nghia Nguyen Dai\Local Settings\Application Data\Microsoft\Outlook\Outlook1.pst/Dossiers personnels/Deleted Items/15 Jan 2006 07:14 from Mail Delivery System:Mail delivery failed.eml/[From "Contact" <contact@pdafrance.com>][Date Sun, 15 Jan 2006 08:14:05 +0100]/UNNAMED/Dog.exe Infected: Email-Worm.Win32.Bagle.ah C:\Documents and Settings\Nghia Nguyen Dai\Local Settings\Application Data\Microsoft\Outlook\Outlook1.pst/Dossiers personnels/Deleted Items/15 Jan 2006 07:14 from Mail Delivery System:Mail delivery failed.eml/[From "Contact" <contact@pdafrance.com>][Date Sun, 15 Jan 2006 08:14:05 +0100]/UNNAMED Infected: Email-Worm.Win32.Bagle.ah C:\Documents and Settings\Nghia Nguyen Dai\Local Settings\Application Data\Microsoft\Outlook\Outlook1.pst/Dossiers personnels/Deleted Items/15 Jan 2006 07:14 from Mail Delivery System:Mail delivery failed.eml Infected: Email-Worm.Win32.Bagle.ah C:\Documents and Settings\Nghia Nguyen Dai\Local Settings\Application Data\Microsoft\Outlook\Outlook1.pst/Dossiers personnels/Deleted Items/14 Jan 2006 08:38 from Mail Delivery System:Mail delivery failed.eml/[From "Contact" <contact@pdafrance.com>][Date Sat, 14 Jan 2006 09:37:47 +0100]/UNNAMED/Garry.com Infected: Email-Worm.Win32.Bagle.ah C:\Documents and Settings\Nghia Nguyen Dai\Local Settings\Application Data\Microsoft\Outlook\Outlook1.pst/Dossiers personnels/Deleted Items/14 Jan 2006 08:38 from Mail Delivery System:Mail delivery failed.eml/[From "Contact" <contact@pdafrance.com>][Date Sat, 14 Jan 2006 09:37:47 +0100]/UNNAMED Infected: Email-Worm.Win32.Bagle.ah C:\Documents and Settings\Nghia Nguyen Dai\Local Settings\Application Data\Microsoft\Outlook\Outlook1.pst/Dossiers personnels/Deleted Items/14 Jan 2006 08:38 from Mail Delivery System:Mail delivery failed.eml Infected: Email-Worm.Win32.Bagle.ah C:\Documents and Settings\Nghia Nguyen Dai\Local Settings\Application Data\Microsoft\Outlook\Outlook1.pst/Dossiers personnels/Deleted Items/09 Jan 2006 00:34 from eBay:Urgent Notification From eBay BiIIin.rtf Infected: Trojan-Spy.HTML.Bayfraud.hn C:\Documents and Settings\Nghia Nguyen Dai\Local Settings\Application Data\Microsoft\Outlook\Outlook1.pst/Dossiers personnels/Deleted Items/14 Jan 2006 08:38 from Mail Delivery System:Mail delivery failed.eml/[From "Nghia" <nghia@capitalemedia.com>][Date Sat, 14 Jan 2006 09:37:53 +0100]/UNNAMED/foto2.com Infected: Email-Worm.Win32.Bagle.ah C:\Documents and Settings\Nghia Nguyen Dai\Local Settings\Application Data\Microsoft\Outlook\Outlook1.pst/Dossiers personnels/Deleted Items/14 Jan 2006 08:38 from Mail Delivery System:Mail delivery failed.eml/[From "Nghia" <nghia@capitalemedia.com>][Date Sat, 14 Jan 2006 09:37:53 +0100]/UNNAMED Infected: Email-Worm.Win32.Bagle.ah C:\Documents and Settings\Nghia Nguyen Dai\Local Settings\Application Data\Microsoft\Outlook\Outlook1.pst/Dossiers personnels/Deleted Items/14 Jan 2006 08:38 from Mail Delivery System:Mail delivery failed.eml Infected: Email-Worm.Win32.Bagle.ah C:\Documents and Settings\Nghia Nguyen Dai\Local Settings\Application Data\Microsoft\Outlook\Outlook1.pst/Dossiers personnels/Deleted Items/11 Jan 2006 05:58 from Mail Delivery System:Mail delivery failed.eml/[From nghia@capitalemedia.com][Date Tue, 10 Jan 2006 07:00:35 +0100]/UNNAMED/UNNAMED/html Suspicious: Exploit.HTML.Iframe.FileDownload C:\Documents and Settings\Nghia Nguyen Dai\Local Settings\Application Data\Microsoft\Outlook\Outlook1.pst/Dossiers personnels/Deleted Items/11 Jan 2006 05:58 from Mail Delivery System:Mail delivery failed.eml/[From nghia@capitalemedia.com][Date Tue, 10 Jan 2006 07:00:35 +0100]/UNNAMED/UNNAMED Suspicious: Exploit.HTML.Iframe.FileDownload C:\Documents and Settings\Nghia Nguyen Dai\Local Settings\Application Data\Microsoft\Outlook\Outlook1.pst/Dossiers personnels/Deleted Items/11 Jan 2006 05:58 from Mail Delivery System:Mail delivery failed.eml/[From nghia@capitalemedia.com][Date Tue, 10 Jan 2006 07:00:35 +0100]/UNNAMED/message.scr Infected: Email-Worm.Win32.NetSky.q C:\Documents and Settings\Nghia Nguyen Dai\Local Settings\Application Data\Microsoft\Outlook\Outlook1.pst/Dossiers personnels/Deleted Items/11 Jan 2006 05:58 from Mail Delivery System:Mail delivery failed.eml/[From nghia@capitalemedia.com][Date Tue, 10 Jan 2006 07:00:35 +0100]/UNNAMED Infected: Email-Worm.Win32.NetSky.q C:\Documents and Settings\Nghia Nguyen Dai\Local Settings\Application Data\Microsoft\Outlook\Outlook1.pst/Dossiers personnels/Deleted Items/11 Jan 2006 05:58 from Mail Delivery System:Mail delivery failed.eml Infected: Email-Worm.Win32.NetSky.q C:\Documents and Settings\Nghia Nguyen Dai\Local Settings\Application Data\Microsoft\Outlook\Outlook1.pst/Dossiers personnels/Courrier indésirable/16 Jan 2006 18:50 from MAILER-DAEMON@proxad.net:failure notice.eml/[From pub@pdafrance.com][Date Sun, 15 Jan 2006 19:52:39 +0100]/UNNAMED/data.doc.exe Infected: Email-Worm.Win32.NetSky.q C:\Documents and Settings\Nghia Nguyen Dai\Local Settings\Application Data\Microsoft\Outlook\Outlook1.pst/Dossiers personnels/Courrier indésirable/16 Jan 2006 18:50 from MAILER-DAEMON@proxad.net:failure notice.eml/[From pub@pdafrance.com][Date Sun, 15 Jan 2006 19:52:39 +0100]/UNNAMED Infected: Email-Worm.Win32.NetSky.q C:\Documents and Settings\Nghia Nguyen Dai\Local Settings\Application Data\Microsoft\Outlook\Outlook1.pst/Dossiers personnels/Courrier indésirable/16 Jan 2006 18:50 from MAILER-DAEMON@proxad.net:failure notice.eml Infected: Email-Worm.Win32.NetSky.q C:\Documents and Settings\Nghia Nguyen Dai\Local Settings\Application Data\Microsoft\Outlook\Outlook1.pst/Dossiers personnels/Courrier indésirable/17 Jan 2006 23:00 from Mail Delivery System:Mail delivery failed.eml/[From "Contact" <contact@pdafrance.com>][Date Wed, 18 Jan 2006 00:05:15 +0100]/UNNAMED/Dog.exe Infected: Email-Worm.Win32.Bagle.ah C:\Documents and Settings\Nghia Nguyen Dai\Local Settings\Application Data\Microsoft\Outlook\Outlook1.pst/Dossiers personnels/Courrier indésirable/17 Jan 2006 23:00 from Mail Delivery System:Mail delivery failed.eml/[From "Contact" <contact@pdafrance.com>][Date Wed, 18 Jan 2006 00:05:15 +0100]/UNNAMED Infected: Email-Worm.Win32.Bagle.ah C:\Documents and Settings\Nghia Nguyen Dai\Local Settings\Application Data\Microsoft\Outlook\Outlook1.pst/Dossiers personnels/Courrier indésirable/17 Jan 2006 23:00 from Mail Delivery System:Mail delivery failed.eml Infected: Email-Worm.Win32.Bagle.ah C:\Documents and Settings\Nghia Nguyen Dai\Local Settings\Application Data\Microsoft\Outlook\Outlook1.pst/Dossiers personnels/Courrier indésirable/18 Jan 2006 06:26 from MAILER-DAEMON@proxad.net:failure notice.eml/[From pub@pdafrance.com][Date Tue, 17 Jan 2006 07:29:32 +0100]/UNNAMED/UNNAMED/html Suspicious: Exploit.HTML.Iframe.FileDownload C:\Documents and Settings\Nghia Nguyen Dai\Local Settings\Application Data\Microsoft\Outlook\Outlook1.pst/Dossiers personnels/Courrier indésirable/18 Jan 2006 06:26 from MAILER-DAEMON@proxad.net:failure notice.eml/[From pub@pdafrance.com][Date Tue, 17 Jan 2006 07:29:32 +0100]/UNNAMED/UNNAMED Suspicious: Exploit.HTML.Iframe.FileDownload C:\Documents and Settings\Nghia Nguyen Dai\Local Settings\Application Data\Microsoft\Outlook\Outlook1.pst/Dossiers personnels/Courrier indésirable/18 Jan 2006 06:26 from MAILER-DAEMON@proxad.net:failure notice.eml/[From pub@pdafrance.com][Date Tue, 17 Jan 2006 07:29:32 +0100]/UNNAMED/message.scr Infected: Email-Worm.Win32.NetSky.q C:\Documents and Settings\Nghia Nguyen Dai\Local Settings\Application Data\Microsoft\Outlook\Outlook1.pst/Dossiers personnels/Courrier indésirable/18 Jan 2006 06:26 from MAILER-DAEMON@proxad.net:failure notice.eml/[From pub@pdafrance.com][Date Tue, 17 Jan 2006 07:29:32 +0100]/UNNAMED Infected: Email-Worm.Win32.NetSky.q C:\Documents and Settings\Nghia Nguyen Dai\Local Settings\Application Data\Microsoft\Outlook\Outlook1.pst/Dossiers personnels/Courrier indésirable/18 Jan 2006 06:26 from MAILER-DAEMON@proxad.net:failure notice.eml Infected: Email-Worm.Win32.NetSky.q C:\Documents and Settings\Nghia Nguyen Dai\Local Settings\Application Data\Microsoft\Outlook\Outlook1.pst/Dossiers personnels/Courrier indésirable/18 Jan 2006 10:06 from Mail Delivery System:Mail delivery failed.eml/[From "Contact" <contact@pdafrance.com>][Date Wed, 18 Jan 2006 11:11:36 +0100]/UNNAMED/foto3.com Infected: Email-Worm.Win32.Bagle.ah C:\Documents and Settings\Nghia Nguyen Dai\Local Settings\Application Data\Microsoft\Outlook\Outlook1.pst/Dossiers personnels/Courrier indésirable/18 Jan 2006 10:06 from Mail Delivery System:Mail delivery failed.eml/[From "Contact" <contact@pdafrance.com>][Date Wed, 18 Jan 2006 11:11:36 +0100]/UNNAMED Infected: Email-Worm.Win32.Bagle.ah C:\Documents and Settings\Nghia Nguyen Dai\Local Settings\Application Data\Microsoft\Outlook\Outlook1.pst/Dossiers personnels/Courrier indésirable/18 Jan 2006 10:06 from Mail Delivery System:Mail delivery failed.eml Infected: Email-Worm.Win32.Bagle.ah C:\Documents and Settings\Nghia Nguyen Dai\Local Settings\Application Data\Microsoft\Outlook\Outlook1.pst/Dossiers personnels/Courrier indésirable/21 Jan 2006 15:32 from id30153@gmail.com:Encrypted E-mail/data.zip Infected: Worm.Win32.Feebs.y C:\Documents and Settings\Nghia Nguyen Dai\Local Settings\Application Data\Microsoft\Outlook\Outlook1.pst/Dossiers personnels/Courrier indésirable/23 Jan 2006 18:39 to contact@pdafrance.com:Mail delivery failed:.eml/[From contact@pdafrance.com][Date Mon, 23 Jan 2006 19:38:57 +0100]/UNNAMED/news01.doc Infected: Email-Worm.Win32.NetSky.q C:\Documents and Settings\Nghia Nguyen Dai\Local Settings\Application Data\Microsoft\Outlook\Outlook1.pst/Dossiers personnels/Courrier indésirable/23 Jan 2006 18:39 to contact@pdafrance.com:Mail delivery failed:.eml/[From contact@pdafrance.com][Date Mon, 23 Jan 2006 19:38:57 +0100]/UNNAMED Infected: Email-Worm.Win32.NetSky.q C:\Documents and Settings\Nghia Nguyen Dai\Local Settings\Application Data\Microsoft\Outlook\Outlook1.pst/Dossiers personnels/Courrier indésirable/23 Jan 2006 18:39 to contact@pdafrance.com:Mail delivery failed:.eml Infected: Email-Worm.Win32.NetSky.q C:\Documents and Settings\Nghia Nguyen Dai\Local Settings\Application Data\Microsoft\Outlook\Outlook1.pst/Dossiers personnels/Courrier indésirable/25 Jan 2006 19:22 from Mail Delivery System:Mail delivery failed.eml/[From nghia@capitalemedia.com][Date Wed, 25 Jan 2006 20:22:38 +0100]/UNNAMED/your_document.pif Infected: Email-Worm.Win32.NetSky.d C:\Documents and Settings\Nghia Nguyen Dai\Local Settings\Application Data\Microsoft\Outlook\Outlook1.pst/Dossiers personnels/Courrier indésirable/25 Jan 2006 19:22 from Mail Delivery System:Mail delivery failed.eml/[From nghia@capitalemedia.com][Date Wed, 25 Jan 2006 20:22:38 +0100]/UNNAMED Infected: Email-Worm.Win32.NetSky.d C:\Documents and Settings\Nghia Nguyen Dai\Local Settings\Application Data\Microsoft\Outlook\Outlook1.pst/Dossiers personnels/Courrier indésirable/25 Jan 2006 19:22 from Mail Delivery System:Mail delivery failed.eml Infected: Email-Worm.Win32.NetSky.d C:\Documents and Settings\Nghia Nguyen Dai\Local Settings\Application Data\Microsoft\Outlook\Outlook1.pst/Dossiers personnels/Business/iambic Marketing/MIS/pass/27 Feb 2003 10:06 from Nghia Nguyen Dai:FW: Your FTP Serv-U Regi/ServU25d.zip/Setup.exe/SERV-U32.EXE Infected: not-a-virus:Server-FTP.Win32.Serv-U.25.d C:\Documents and Settings\Nghia Nguyen Dai\Local Settings\Application Data\Microsoft\Outlook\Outlook1.pst/Dossiers personnels/Business/iambic Marketing/MIS/pass/27 Feb 2003 10:06 from Nghia Nguyen Dai:FW: Your FTP Serv-U Regi/ServU25d.zip/Setup.exe Infected: not-a-virus:Server-FTP.Win32.Serv-U.25.d C:\Documents and Settings\Nghia Nguyen Dai\Local Settings\Application Data\Microsoft\Outlook\Outlook1.pst/Dossiers personnels/Business/iambic Marketing/MIS/pass/27 Feb 2003 10:06 from Nghia Nguyen Dai:FW: Your FTP Serv-U Regi/ServU25d.zip Infected: not-a-virus:Server-FTP.Win32.Serv-U.25.d C:\Documents and Settings\Nghia Nguyen Dai\Local Settings\Application Data\Microsoft\Outlook\Outlook1.pst Infected: not-a-virus:Server-FTP.Win32.Serv-U.25.d C:\Documents and Settings\Nghia Nguyen Dai\Mes documents\Business\pdafrance\backup_emails\Outlook1.pst/Dossiers personnels/iambic/MIS/pass/27 Feb 2003 10:06 from Nghia Nguyen Dai:FW: Your FTP Serv-U Regi/ServU25d.zip/Setup.exe/SERV-U32.EXE Infected: not-a-virus:Server-FTP.Win32.Serv-U.25.d C:\Documents and Settings\Nghia Nguyen Dai\Mes documents\Business\pdafrance\backup_emails\Outlook1.pst/Dossiers personnels/iambic/MIS/pass/27 Feb 2003 10:06 from Nghia Nguyen Dai:FW: Your FTP Serv-U Regi/ServU25d.zip/Setup.exe Infected: not-a-virus:Server-FTP.Win32.Serv-U.25.d C:\Documents and Settings\Nghia Nguyen Dai\Mes documents\Business\pdafrance\backup_emails\Outlook1.pst/Dossiers personnels/iambic/MIS/pass/27 Feb 2003 10:06 from Nghia Nguyen Dai:FW: Your FTP Serv-U Regi/ServU25d.zip Infected: not-a-virus:Server-FTP.Win32.Serv-U.25.d C:\Documents and Settings\Nghia Nguyen Dai\Mes documents\Business\pdafrance\backup_emails\Outlook1.pst Infected: not-a-virus:Server-FTP.Win32.Serv-U.25.d C:\Program Files\mIRC\mirc.exe Infected: not-a-virus:Client-IRC.Win32.mIRC.616 D:\download\mirc616.exe/data0001.bin Infected: not-a-virus:Client-IRC.Win32.mIRC.616 D:\download\mirc616.exe Infected: not-a-virus:Client-IRC.Win32.mIRC.616 D:\backup\Outlook1.pst/Dossiers personnels/Deleted Items/26 Aug 2005 15:39 from Pamela/ATT00452.txt/pamela.exe/UNNAMED Infected: Trojan-PSW.Win32.LdPinch.tp D:\backup\Outlook1.pst/Dossiers personnels/Deleted Items/26 Aug 2005 15:39 from Pamela/ATT00452.txt/pamela.exe Infected: Trojan-PSW.Win32.LdPinch.tp D:\backup\Outlook1.pst/Dossiers personnels/Deleted Items/26 Aug 2005 15:39 from Pamela/ATT00452.txt Infected: Trojan-PSW.Win32.LdPinch.tp D:\backup\Outlook1.pst/Dossiers personnels/Courrier indésirable/20 Aug 2005 12:49 to nghia@pdafrance.com:Mail delivery failed: r.eml/[From nghia@pdafrance.com][Date Sat, 20 Aug 2005 15:05:12 +0200]/UNNAMED/your_website.pif Infected: Email-Worm.Win32.NetSky.d D:\backup\Outlook1.pst/Dossiers personnels/Courrier indésirable/20 Aug 2005 12:49 to nghia@pdafrance.com:Mail delivery failed: r.eml/[From nghia@pdafrance.com][Date Sat, 20 Aug 2005 15:05:12 +0200]/UNNAMED Infected: Email-Worm.Win32.NetSky.d D:\backup\Outlook1.pst/Dossiers personnels/Courrier indésirable/20 Aug 2005 12:49 to nghia@pdafrance.com:Mail delivery failed: r.eml Infected: Email-Worm.Win32.NetSky.d D:\backup\Outlook1.pst/Dossiers personnels/Courrier indésirable/20 Aug 2005 12:49 to contact@pdafrance.com:Mail delivery failed:.eml/[From contact@pdafrance.com][Date Sat, 20 Aug 2005 15:05:13 +0200]/UNNAMED/your_details.pif Infected: Email-Worm.Win32.NetSky.d D:\backup\Outlook1.pst/Dossiers personnels/Courrier indésirable/20 Aug 2005 12:49 to contact@pdafrance.com:Mail delivery failed:.eml/[From contact@pdafrance.com][Date Sat, 20 Aug 2005 15:05:13 +0200]/UNNAMED Infected: Email-Worm.Win32.NetSky.d D:\backup\Outlook1.pst/Dossiers personnels/Courrier indésirable/20 Aug 2005 12:49 to contact@pdafrance.com:Mail delivery failed:.eml Infected: Email-Worm.Win32.NetSky.d D:\backup\Outlook1.pst/Dossiers personnels/Courrier indésirable/20 Aug 2005 17:16 to pub@pdafrance.com:Mail delivery failed: ret.eml/[From "Pub" <pub@pdafrance.com>][Date Sat, 20 Aug 2005 19:16:14 +0100]/UNNAMED/Cat.exe Infected: Email-Worm.Win32.Bagle.ai D:\backup\Outlook1.pst/Dossiers personnels/Courrier indésirable/20 Aug 2005 17:16 to pub@pdafrance.com:Mail delivery failed: ret.eml/[From "Pub" <pub@pdafrance.com>][Date Sat, 20 Aug 2005 19:16:14 +0100]/UNNAMED Infected: Email-Worm.Win32.Bagle.ai D:\backup\Outlook1.pst/Dossiers personnels/Courrier indésirable/20 Aug 2005 17:16 to pub@pdafrance.com:Mail delivery failed: ret.eml Infected: Email-Worm.Win32.Bagle.ai D:\backup\Outlook1.pst/Dossiers personnels/Courrier indésirable/20 Aug 2005 17:17 to contact@pdafrance.com:Mail delivery failed:.eml/[From "Contact" <contact@pdafrance.com>][Date Sat, 20 Aug 2005 19:16:13 +0100]/UNNAMED/Doll.exe Infected: Email-Worm.Win32.Bagle.ai D:\backup\Outlook1.pst/Dossiers personnels/Courrier indésirable/20 Aug 2005 17:17 to contact@pdafrance.com:Mail delivery failed:.eml/[From "Contact" <contact@pdafrance.com>][Date Sat, 20 Aug 2005 19:16:13 +0100]/UNNAMED Infected: Email-Worm.Win32.Bagle.ai D:\backup\Outlook1.pst/Dossiers personnels/Courrier indésirable/20 Aug 2005 17:17 to contact@pdafrance.com:Mail delivery failed:.eml Infected: Email-Worm.Win32.Bagle.ai D:\backup\Outlook1.pst/Dossiers personnels/Courrier indésirable/21 Aug 2005 14:17 to contact@pdafrance.com:Protect your eBay acc.rtf Infected: Trojan-Spy.HTML.Bayfraud.hn D:\backup\Outlook1.pst/Dossiers personnels/Courrier indésirable/22 Aug 2005 08:01 to pub@pdafrance.com:Mail delivery failed: ret.eml/[From pub@pdafrance.com][Date Mon, 22 Aug 2005 10:01:47 +0200]/UNNAMED/creditcard_death.scr Infected: Email-Worm.Win32.NetSky.c D:\backup\Outlook1.pst/Dossiers personnels/Courrier indésirable/22 Aug 2005 08:01 to pub@pdafrance.com:Mail delivery failed: ret.eml/[From pub@pdafrance.com][Date Mon, 22 Aug 2005 10:01:47 +0200]/UNNAMED Infected: Email-Worm.Win32.NetSky.c D:\backup\Outlook1.pst/Dossiers personnels/Courrier indésirable/22 Aug 2005 08:01 to pub@pdafrance.com:Mail delivery failed: ret.eml Infected: Email-Worm.Win32.NetSky.c D:\backup\Outlook1.pst/Dossiers personnels/Courrier indésirable/23 Aug 2005 10:51 from Mail Delivery System:Mail delivery failed.eml/[From leo@capitalemedia.com][Date Tue, 23 Aug 2005 12:51:28 +0200]/UNNAMED/document.pif Infected: Net-Worm.Win32.Mytob.x D:\backup\Outlook1.pst/Dossiers personnels/Courrier indésirable/23 Aug 2005 10:51 from Mail Delivery System:Mail delivery failed.eml/[From leo@capitalemedia.com][Date Tue, 23 Aug 2005 12:51:28 +0200]/UNNAMED Infected: Net-Worm.Win32.Mytob.x D:\backup\Outlook1.pst/Dossiers personnels/Courrier indésirable/23 Aug 2005 10:51 from Mail Delivery System:Mail delivery failed.eml Infected: Net-Worm.Win32.Mytob.x D:\backup\Outlook1.pst/Dossiers personnels/Courrier indésirable/23 Aug 2005 12:56 to nghia@capitalemedia.com:Important Notice Fr.rtf Infected: Trojan-Spy.HTML.Bayfraud.hn D:\backup\Outlook1.pst/Dossiers personnels/Courrier indésirable/23 Aug 2005 17:27 from Mail Delivery System:Mail delivery failed.eml/[From noreply@capitalemedia.com][Date Tue, 23 Aug 2005 19:27:12 +0100]/UNNAMED/Info.pif Infected: Email-Worm.Win32.Bagle.n D:\backup\Outlook1.pst/Dossiers personnels/Courrier indésirable/23 Aug 2005 17:27 from Mail Delivery System:Mail delivery failed.eml/[From noreply@capitalemedia.com][Date Tue, 23 Aug 2005 19:27:12 +0100]/UNNAMED Infected: Email-Worm.Win32.Bagle.n D:\backup\Outlook1.pst/Dossiers personnels/Courrier indésirable/23 Aug 2005 17:27 from Mail Delivery System:Mail delivery failed.eml Infected: Email-Worm.Win32.Bagle.n D:\backup\Outlook1.pst/Dossiers personnels/Courrier indésirable/23 Aug 2005 17:27 from Mail Delivery System:Mail delivery failed.eml/[From contact@pdafrance.com][Date Tue, 23 Aug 2005 19:27:12 +0100]/UNNAMED/TextDocument.pif Infected: Email-Worm.Win32.Bagle.n D:\backup\Outlook1.pst/Dossiers personnels/Courrier indésirable/23 Aug 2005 17:27 from Mail Delivery System:Mail delivery failed.eml/[From contact@pdafrance.com][Date Tue, 23 Aug 2005 19:27:12 +0100]/UNNAMED Infected: Email-Worm.Win32.Bagle.n D:\backup\Outlook1.pst/Dossiers personnels/Courrier indésirable/23 Aug 2005 17:27 from Mail Delivery System:Mail delivery failed.eml Infected: Email-Worm.Win32.Bagle.n D:\backup\Outlook1.pst/Dossiers personnels/Courrier indésirable/24 Aug 2005 07:30 to pub@pdafrance.com:Mail delivery failed: ret.eml/[From pub@pdafrance.com][Date Wed, 24 Aug 2005 09:30:28 +0200]/UNNAMED/unfolds.scr Infected: Email-Worm.Win32.NetSky.c D:\backup\Outlook1.pst/Dossiers personnels/Courrier indésirable/24 Aug 2005 07:30 to pub@pdafrance.com:Mail delivery failed: ret.eml/[From pub@pdafrance.com][Date Wed, 24 Aug 2005 09:30:28 +0200]/UNNAMED Infected: Email-Worm.Win32.NetSky.c D:\backup\Outlook1.pst/Dossiers personnels/Courrier indésirable/24 Aug 2005 07:30 to pub@pdafrance.com:Mail delivery failed: ret.eml Infected: Email-Worm.Win32.NetSky.c D:\backup\Outlook1.pst/Dossiers personnels/Courrier indésirable/24 Aug 2005 18:17 from Mail Delivery System:Mail delivery failed.eml/[From contact@pdafrance.com][Date Wed, 24 Aug 2005 20:32:52 +0200]/UNNAMED/your_picture.pif Infected: Email-Worm.Win32.NetSky.d D:\backup\Outlook1.pst/Dossiers personnels/Courrier indésirable/24 Aug 2005 18:17 from Mail Delivery System:Mail delivery failed.eml/[From contact@pdafrance.com][Date Wed, 24 Aug 2005 20:32:52 +0200]/UNNAMED Infected: Email-Worm.Win32.NetSky.d D:\backup\Outlook1.pst/Dossiers personnels/Courrier indésirable/24 Aug 2005 18:17 from Mail Delivery System:Mail delivery failed.eml Infected: Email-Worm.Win32.NetSky.d D:\backup\Outlook1.pst/Dossiers personnels/Courrier indésirable/25 Aug 2005 08:49 to contact@pdafrance.com:Mail delivery failed:.eml/[From contact@pdafrance.com][Date Thu, 25 Aug 2005 10:58:09 +0200]/UNNAMED/your_document.pif Infected: Email-Worm.Win32.NetSky.d D:\backup\Outlook1.pst/Dossiers personnels/Courrier indésirable/25 Aug 2005 08:49 to contact@pdafrance.com:Mail delivery failed:.eml/[From contact@pdafrance.com][Date Thu, 25 Aug 2005 10:58:09 +0200]/UNNAMED Infected: Email-Worm.Win32.NetSky.d D:\backup\Outlook1.pst/Dossiers personnels/Courrier indésirable/25 Aug 2005 08:49 to contact@pdafrance.com:Mail delivery failed:.eml Infected: Email-Worm.Win32.NetSky.d D:\backup\Outlook1.pst/Dossiers personnels/Courrier indésirable/26 Aug 2005 06:27 from MAILER-DAEMON@ns20106.ovh.net:failure not.eml/[From contact@pdafrance.com][Date Fri, 26 Aug 2005 08:27:13 +0200]/UNNAMED/yours.zip/yours.exe Infected: Email-Worm.Win32.NetSky.c D:\backup\Outlook1.pst/Dossiers personnels/Courrier indésirable/26 Aug 2005 06:27 from MAILER-DAEMON@ns20106.ovh.net:failure not.eml/[From contact@pdafrance.com][Date Fri, 26 Aug 2005 08:27:13 +0200]/UNNAMED/yours.zip Infected: Email-Worm.Win32.N
  11. Nghia
    Charles, J'ai fait tourner le logiciel AntiSpy et j'ai trouvé ce process : igfxtray.exe http://www.commentcamarche.net/processus/igfxtray-exe.php3 Apparemment ca pourrait etre un trojan ou un driver de ma carte graphique intel. Comment savoir si il est légitime?
  12. Nghia
    J'ai pas compris cette phrase. De quel dossier parles tu? Sinon voici le rapport RegSearch : ; Strings excluded from search: ; (None) ; Search in: ; Registry Keys Registry Values Registry Data ; HKEY_LOCAL_MACHINE HKEY_USERS [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{8B85-0045902B43879}] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{8B85-0047905B4387P}] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Syncmgr\SchedSync\CLOCHETTE_Nghia Nguyen Dai\{07BF04CD-C05B-4437-96E1-7D9412A88A84}_CLOCHETTE_Nghia Nguyen Dai] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Syncmgr\SchedSync\CLOCHETTE_Nghia Nguyen Dai\{07BF04CD-C05B-4437-96E1-7D9412A88A84}_CLOCHETTE_Nghia Nguyen Dai\Connexion réseau] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Syncmgr\SchedSync\CLOCHETTE_Nghia Nguyen Dai\{07BF04CD-C05B-4437-96E1-7D9412A88A84}_CLOCHETTE_Nghia Nguyen Dai\Connexion réseau\{7FC0B86E-5FA7-11D1-BC7C-00C04FD929DB}] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Syncmgr\SchedSync\CLOCHETTE_Nghia Nguyen Dai\{07BF04CD-C05B-4437-96E1-7D9412A88A84}_CLOCHETTE_Nghia Nguyen Dai\Connexion réseau\{7FC0B86E-5FA7-11D1-BC7C-00C04FD929DB}\{7F9F8FD2-CC87-01C4-0000-00004045800F}] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Syncmgr\SchedSync\CLOCHETTE_Nghia Nguyen Dai\{7337EA73-C33F-43A6-AF2D-92BD817BC487}_CLOCHETTE_Nghia Nguyen Dai] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Syncmgr\SchedSync\CLOCHETTE_Nghia Nguyen Dai\{7337EA73-C33F-43A6-AF2D-92BD817BC487}_CLOCHETTE_Nghia Nguyen Dai\Connexion réseau] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Syncmgr\SchedSync\CLOCHETTE_Nghia Nguyen Dai\{7337EA73-C33F-43A6-AF2D-92BD817BC487}_CLOCHETTE_Nghia Nguyen Dai\Connexion réseau\{7FC0B86E-5FA7-11D1-BC7C-00C04FD929DB}] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Syncmgr\SchedSync\CLOCHETTE_Nghia Nguyen Dai\{7337EA73-C33F-43A6-AF2D-92BD817BC487}_CLOCHETTE_Nghia Nguyen Dai\Connexion réseau\{7FC0B86E-5FA7-11D1-BC7C-00C04FD929DB}\{7F9F8FD2-CC87-01C4-0000-00004045800F}] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Syncmgr\SchedSync\CLOCHETTE_Nghia Nguyen Dai\{9BA245D5-A1A5-453E-A3F6-166FC7404E2D}_CLOCHETTE_Nghia Nguyen Dai] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Syncmgr\SchedSync\CLOCHETTE_Nghia Nguyen Dai\{9BA245D5-A1A5-453E-A3F6-166FC7404E2D}_CLOCHETTE_Nghia Nguyen Dai\Connexion réseau] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Syncmgr\SchedSync\CLOCHETTE_Nghia Nguyen Dai\{9BA245D5-A1A5-453E-A3F6-166FC7404E2D}_CLOCHETTE_Nghia Nguyen Dai\Connexion réseau\{7FC0B86E-5FA7-11D1-BC7C-00C04FD929DB}] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Syncmgr\SchedSync\CLOCHETTE_Nghia Nguyen Dai\{9BA245D5-A1A5-453E-A3F6-166FC7404E2D}_CLOCHETTE_Nghia Nguyen Dai\Connexion réseau\{7FC0B86E-5FA7-11D1-BC7C-00C04FD929DB}\{7F9F8FD2-CC87-01C4-0000-00004045800F}] [HKEY_USERS\S-1-5-21-2423269839-974919690-2416811934-1004\Software\Microsoft\Active Setup\Installed Components\{8B85-0045902B43879}] [HKEY_USERS\S-1-5-21-2423269839-974919690-2416811934-1004\Software\Microsoft\Active Setup\Installed Components\{8B85-0047905B4387P}] ; End Of The Log... Okie chef! Je n'ai pas ce répertoire. En fait, j'avais fait une manip pour que le temp de IE se vide automatiquement. Sur un site d'optimisation, je me souviens plus trop.
  13. Nghia
    wow merci Charles de ton aide. Je n'arrive peut ^^etre pas à corriger mon pb, mais en tout cas, j'apprendre des trucs voici le premier rapport : File: jasched.exe Status: INFECTED/MALWARE MD5 8254aaeecf299c5e5df3fb6bf700d5a5 Packers detected: PE_PATCH Scanner results AntiVir Found nothing ArcaVir Found Heur.W32 Avast Found nothing AVG Antivirus Found nothing BitDefender Found nothing ClamAV Found nothing Dr.Web Found nothing F-Prot Antivirus Found nothing Fortinet Found nothing Kaspersky Anti-Virus Found nothing NOD32 Found nothing Norman Virus Control Found nothing UNA Found nothing VBA32 Found nothing Et voici le second : This is a report processed by VirusTotal on 01/26/2006 at 03:42:34 (CET) after scanning the file "jasched.exe" file. Antivirus Version Update Result AntiVir 6.33.0.77 01.25.2006 no virus found Avast 4.6.695.0 01.25.2006 no virus found AVG 718 01.25.2006 no virus found Avira 6.33.0.77 01.25.2006 no virus found BitDefender 7.2 01.26.2006 no virus found CAT-QuickHeal 8.00 01.25.2006 (Suspicious) - DNAScan ClamAV devel-20051123 01.26.2006 no virus found DrWeb 4.33 01.25.2006 no virus found eTrust-InoculateIT 23.71.60 01.25.2006 no virus found eTrust-Vet 12.4.2056 01.25.2006 no virus found Ewido 3.5 01.25.2006 no virus found Fortinet 2.54.0.0 01.26.2006 suspicious F-Prot 3.16c 01.25.2006 no virus found Ikarus 0.2.59.0 01.25.2006 no virus found Kaspersky 4.0.2.24 01.25.2006 no virus found McAfee 4682 01.25.2006 no virus found NOD32v2 1.1380 01.25.2006 no virus found Norman 5.70.10 01.25.2006 no virus found Panda 9.0.0.4 01.25.2006 Suspicious file Sophos 4.01.0 01.25.2006 no virus found Symantec 8.0 01.26.2006 no virus found TheHacker 5.9.3.081 01.26.2006 no virus found UNA 1.83 01.25.2006 no virus found VBA32 3.10.5 01.25.2006 no virus found pour le second uinit.exe File: uinit.exe Status: INFECTED/MALWARE MD5 97ca96be9e69083a404b34812410bcdc Packers detected: UPACK Scanner results AntiVir Found nothing ArcaVir Found nothing Avast Found nothing AVG Antivirus Found nothing BitDefender Found BehavesLike:Win32.ExplorerHijack (probable variant) ClamAV Found nothing Dr.Web Found BACKDOOR.Trojan (probable variant) F-Prot Antivirus Found nothing Fortinet Found nothing Kaspersky Anti-Virus Found Backdoor.Win32.Banito.ay NOD32 Found a variant of Win32/Banito Norman Virus Control Found nothing UNA Found nothing VBA32 Found Backdoor.Delf.105 (probable variant) Et avec l'autre outil : This is a report processed by VirusTotal on 01/26/2006 at 03:46:36 (CET) after scanning the file "uinit.exe" file. Antivirus Version Update Result AntiVir 6.33.0.77 01.25.2006 no virus found Avast 4.6.695.0 01.25.2006 no virus found AVG 718 01.25.2006 no virus found Avira 6.33.0.77 01.25.2006 no virus found BitDefender 7.2 01.26.2006 BehavesLike:Win32.ExplorerHijack CAT-QuickHeal 8.00 01.25.2006 (Suspicious) - DNAScan ClamAV devel-20051123 01.26.2006 no virus found DrWeb 4.33 01.25.2006 BACKDOOR.Trojan eTrust-InoculateIT 23.71.60 01.25.2006 no virus found eTrust-Vet 12.4.2056 01.25.2006 no virus found Ewido 3.5 01.25.2006 no virus found Fortinet 2.54.0.0 01.26.2006 suspicious F-Prot 3.16c 01.25.2006 no virus found Ikarus 0.2.59.0 01.25.2006 no virus found Kaspersky 4.0.2.24 01.25.2006 Backdoor.Win32.Banito.ay McAfee 4682 01.25.2006 New Malware.n NOD32v2 1.1380 01.25.2006 a variant of Win32/Banito Norman 5.70.10 01.25.2006 no virus found Panda 9.0.0.4 01.25.2006 Suspicious file Sophos 4.01.0 01.25.2006 no virus found Symantec 8.0 01.26.2006 no virus found TheHacker 5.9.3.081 01.26.2006 no virus found UNA 1.83 01.25.2006 no virus found VBA32 3.10.5 01.25.2006 suspected of Backdoor.Delf.105
  14. Nghia
    j'ai en plus fait tourner l'utilitaire symantec contre Bugwear... Rien de trouvé. http://securityresponse.symantec.com/avcen...moval.tool.html
  15. Nghia
    J'ai suivi toutes les étapes. Mais le sacré double circonflexe est toujours présent : ^^
  16. Nghia
    Merci Boris de ton aide. Apparemment je n'ai rien installé qui possède les m^^emes caractéristiques.. Mais je vais faire le tour... Comment peut on voir les derniers softs installés par date?
  17. Nghia
    bon voici le log de Hijackthis: StartupList report, 24/01/2006, 15:58:56 StartupList version: 1.52.2 Started from : D:\download\HijackThis.EXE Detected: Windows XP SP2 (WinNT 5.01.2600) Detected: Internet Explorer v6.00 SP2 (6.00.2900.2180) * Using default options * Including empty and uninteresting sections * Showing rarely important sections ================================================== Running processes: C:\WINDOWS\System32\smss.exe C:\WINDOWS\system32\winlogon.exe C:\WINDOWS\system32\services.exe C:\WINDOWS\system32\lsass.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\System32\svchost.exe C:\WINDOWS\System32\S24EvMon.exe C:\WINDOWS\system32\ZCfgSvc.exe C:\WINDOWS\Explorer.EXE C:\WINDOWS\system32\spoolsv.exe C:\WINDOWS\system32\ASWLSVC.exe C:\PROGRA~1\Grisoft\AVGFRE~1\avgamsvr.exe C:\PROGRA~1\Grisoft\AVGFRE~1\avgupsvc.exe C:\Program Files\WIDCOMM\Bluetooth Software\bin\btwdins.exe C:\Program Files\ewido anti-malware\ewidoctrl.exe C:\WINDOWS\System32\RegSrvc.exe C:\Program Files\Analog Devices\SoundMAX\SMAgent.exe C:\WINDOWS\System32\svchost.exe C:\WINDOWS\ATK0100\Hcontrol.exe C:\WINDOWS\System32\igfxtray.exe C:\WINDOWS\System32\hkcmd.exe C:\Program Files\Synaptics\SynTP\SynTPLpr.exe C:\Program Files\Synaptics\SynTP\SynTPEnh.exe C:\PROGRA~1\Grisoft\AVGFRE~1\avgcc.exe C:\WINDOWS\system32\LVCOMSX.EXE C:\WINDOWS\system32\rundll32.exe C:\Program Files\Nokia\Nokia PC Suite 6\LaunchApplication.exe C:\Program Files\Fichiers communs\PCSuite\DataLayer\DataLayer.exe C:\Program Files\QuickTime\qttask.exe C:\Program Files\Picasa2\PicasaMediaDetector.exe C:\Program Files\Messenger Plus! 3\MsgPlus.exe C:\Program Files\Logitech\Video\LogiTray.exe C:\Program Files\Microsoft AntiSpyware\gcasDtServ.exe C:\PROGRA~1\FICHIE~1\PCSuite\Services\SERVIC~1.EXE C:\Program Files\iTunes\iTunesHelper.exe C:\Program Files\Internet Explorer\iexplore.exe C:\Program Files\ASUS\WLAN Card Utilities\Center.exe C:\WINDOWS\System32\1XConfig.exe C:\Program Files\Messenger\msmsgs.exe C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\E_AICN03.EXE C:\PROGRA~1\MSNMES~1\msnmsgr.exe C:\Program Files\Microsoft ActiveSync\wcescomm.exe C:\Program Files\TaskSwitchXP\TaskSwitchXP.exe C:\Program Files\iPod\bin\iPodService.exe C:\PROGRA~1\MICROS~3\rapimgr.exe C:\Program Files\Plaxo\2.6.2.7\PlaxoHelper.exe C:\Program Files\Logitech\Video\FxSvr2.exe C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe C:\WINDOWS\ATK0100\ATKOSD.exe C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe C:\Program Files\InterVideo\Common\Bin\WinCinemaMgr.exe C:\WINDOWS\system32\NOTEPAD.EXE C:\WINDOWS\system32\NOTEPAD.EXE C:\WINDOWS\system32\wuauclt.exe C:\Program Files\Internet Explorer\iexplore.exe D:\download\HijackThis.exe -------------------------------------------------- Listing of startup folders: Shell folders Startup: [C:\Documents and Settings\Nghia Nguyen Dai\Menu Démarrer\Programmes\Démarrage] FavoriteSync.lnk = C:\Program Files\FavoriteSync\FavoriteSync.exe Shell folders AltStartup: *Folder not found* User shell folders Startup: *Folder not found* User shell folders AltStartup: *Folder not found* Shell folders Common Startup: [C:\Documents and Settings\All Users\Menu Démarrer\Programmes\Démarrage] BTTray.lnk = ? Windows Desktop Search.lnk = C:\Program Files\MSN Toolbar Suite\DS\02.05.0001.1119\fr-fr\bin\WindowsSearch.exe Lancement rapide d'Adobe Reader.lnk = C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe InterVideo WinCinema Manager.lnk = C:\Program Files\InterVideo\Common\Bin\WinCinemaMgr.exe Shell folders Common AltStartup: *Folder not found* User shell folders Common Startup: *Folder not found* User shell folders Alternate Common Startup: *Folder not found* -------------------------------------------------- Checking Windows NT UserInit: [HKLM\Software\Microsoft\Windows NT\CurrentVersion\Winlogon] UserInit = C:\WINDOWS\system32\userinit.exe, [HKLM\Software\Microsoft\Windows\CurrentVersion\Winlogon] *Registry key not found* [HKCU\Software\Microsoft\Windows NT\CurrentVersion\Winlogon] *Registry value not found* [HKCU\Software\Microsoft\Windows\CurrentVersion\Winlogon] *Registry key not found* -------------------------------------------------- Autorun entries from Registry: HKLM\Software\Microsoft\Windows\CurrentVersion\Run Hcontrol = C:\WINDOWS\ATK0100\Hcontrol.exe IgfxTray = C:\WINDOWS\System32\igfxtray.exe HotKeysCmds = C:\WINDOWS\System32\hkcmd.exe SynTPLpr = C:\Program Files\Synaptics\SynTP\SynTPLpr.exe SynTPEnh = C:\Program Files\Synaptics\SynTP\SynTPEnh.exe PRONoMgr.exe = c:\Program Files\Intel\PROSetWireless\NCS\PROSet\PRONoMgr.exe AVG7_CC = C:\PROGRA~1\Grisoft\AVGFRE~1\avgcc.exe /STARTUP gcasServ = "C:\Program Files\Microsoft AntiSpyware\gcasServ.exe" LVCOMSX = C:\WINDOWS\system32\LVCOMSX.EXE BluetoothAuthenticationAgent = rundll32.exe bthprops.cpl,,BluetoothAuthenticationAgent PCSuiteTrayApplication = C:\Program Files\Nokia\Nokia PC Suite 6\LaunchApplication.exe -onlytray DataLayer = C:\Program Files\Fichiers communs\PCSuite\DataLayer\DataLayer.exe QuickTime Task = "C:\Program Files\QuickTime\qttask.exe" -atboottime WinampAgent = C:\Program Files\Winamp\winampa.exe VideoraiPodConverter = C:\Program Files\VideoraiPodConverter\VideoraConverter.exe -t Picasa Media Detector = C:\Program Files\Picasa2\PicasaMediaDetector.exe MessengerPlus3 = "C:\Program Files\Messenger Plus! 3\MsgPlus.exe" LogitechVideoTray = C:\Program Files\Logitech\Video\LogiTray.exe LogitechVideoRepair = C:\Program Files\Logitech\Video\ISStart.exe JavaShedulerUpdate = jasched.exe iTunesHelper = "C:\Program Files\iTunes\iTunesHelper.exe" Control Center = C:\Program Files\ASUS\WLAN Card Utilities\Center.exe -------------------------------------------------- Autorun entries from Registry: HKLM\Software\Microsoft\Windows\CurrentVersion\RunOnce *No values found* -------------------------------------------------- Autorun entries from Registry: HKLM\Software\Microsoft\Windows\CurrentVersion\RunOnceEx *No values found* -------------------------------------------------- Autorun entries from Registry: HKLM\Software\Microsoft\Windows\CurrentVersion\RunServices *Registry key not found* -------------------------------------------------- Autorun entries from Registry: HKLM\Software\Microsoft\Windows\CurrentVersion\RunServicesOnce *Registry key not found* -------------------------------------------------- Autorun entries from Registry: HKCU\Software\Microsoft\Windows\CurrentVersion\Run MSMSGS = "C:\Program Files\Messenger\msmsgs.exe" /background EPSON Stylus COLOR 480SXU = C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\E_AICN03.EXE /P25 "EPSON Stylus COLOR 480SXU" /O6 "USB001" /M "Stylus COLOR 480SXU" msnmsgr = "C:\PROGRA~1\MSNMES~1\msnmsgr.exe" /background H/PC Connection Agent = "C:\Program Files\Microsoft ActiveSync\wcescomm.exe" updateMgr = C:\Program Files\Adobe\Acrobat 7.0\Reader\AdobeUpdateManager.exe AcRdB0_0_0 -reboot 1 TaskSwitchXP = C:\Program Files\TaskSwitchXP\TaskSwitchXP.exe PlaxoUpdate = C:\Program Files\Plaxo\2.6.2.7\PlaxoHelper.exe -a PcSync = C:\Program Files\Nokia\Nokia PC Suite 6\PcSync2.exe /NoDialog LogitechSoftwareUpdate = "C:\Program Files\Logitech\Video\ManifestEngine.exe" boot LDM = C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe -------------------------------------------------- Autorun entries from Registry: HKCU\Software\Microsoft\Windows\CurrentVersion\RunOnce *No values found* -------------------------------------------------- Autorun entries from Registry: HKCU\Software\Microsoft\Windows\CurrentVersion\RunOnceEx *Registry key not found* -------------------------------------------------- Autorun entries from Registry: HKCU\Software\Microsoft\Windows\CurrentVersion\RunServices *Registry key not found* -------------------------------------------------- Autorun entries from Registry: HKCU\Software\Microsoft\Windows\CurrentVersion\RunServicesOnce *Registry key not found* -------------------------------------------------- Autorun entries from Registry: HKLM\Software\Microsoft\Windows NT\CurrentVersion\Run *Registry key not found* -------------------------------------------------- Autorun entries from Registry: HKCU\Software\Microsoft\Windows NT\CurrentVersion\Run *Registry key not found* -------------------------------------------------- Autorun entries in Registry subkeys of: HKLM\Software\Microsoft\Windows\CurrentVersion\Run [OptionalComponents] *No values found* -------------------------------------------------- Autorun entries in Registry subkeys of: HKLM\Software\Microsoft\Windows\CurrentVersion\RunOnce *No subkeys found* -------------------------------------------------- Autorun entries in Registry subkeys of: HKLM\Software\Microsoft\Windows\CurrentVersion\RunOnceEx *No subkeys found* -------------------------------------------------- Autorun entries in Registry subkeys of: HKLM\Software\Microsoft\Windows\CurrentVersion\RunServices *Registry key not found* -------------------------------------------------- Autorun entries in Registry subkeys of: HKLM\Software\Microsoft\Windows\CurrentVersion\RunServicesOnce *Registry key not found* -------------------------------------------------- Autorun entries in Registry subkeys of: HKCU\Software\Microsoft\Windows\CurrentVersion\Run *No subkeys found* -------------------------------------------------- Autorun entries in Registry subkeys of: HKCU\Software\Microsoft\Windows\CurrentVersion\RunOnce *No subkeys found* -------------------------------------------------- Autorun entries in Registry subkeys of: HKCU\Software\Microsoft\Windows\CurrentVersion\RunOnceEx *Registry key not found* -------------------------------------------------- Autorun entries in Registry subkeys of: HKCU\Software\Microsoft\Windows\CurrentVersion\RunServices *Registry key not found* -------------------------------------------------- Autorun entries in Registry subkeys of: HKCU\Software\Microsoft\Windows\CurrentVersion\RunServicesOnce *Registry key not found* -------------------------------------------------- Autorun entries in Registry subkeys of: HKLM\Software\Microsoft\Windows NT\CurrentVersion\Run *Registry key not found* -------------------------------------------------- Autorun entries in Registry subkeys of: HKCU\Software\Microsoft\Windows NT\CurrentVersion\Run *Registry key not found* -------------------------------------------------- File association entry for .EXE: HKEY_CLASSES_ROOT\exefile\shell\open\command (Default) = "%1" %* -------------------------------------------------- File association entry for .COM: HKEY_CLASSES_ROOT\comfile\shell\open\command (Default) = "%1" %* -------------------------------------------------- File association entry for .BAT: HKEY_CLASSES_ROOT\batfile\shell\open\command (Default) = "%1" %* -------------------------------------------------- File association entry for .PIF: HKEY_CLASSES_ROOT\piffile\shell\open\command (Default) = "%1" %* -------------------------------------------------- File association entry for .SCR: HKEY_CLASSES_ROOT\scrfile\shell\open\command (Default) = "%1" /S -------------------------------------------------- File association entry for .HTA: HKEY_CLASSES_ROOT\htafile\shell\open\command (Default) = C:\WINDOWS\System32\mshta.exe "%1" %* -------------------------------------------------- File association entry for .TXT: HKEY_CLASSES_ROOT\txtfile\shell\open\command (Default) = %SystemRoot%\system32\NOTEPAD.EXE %1 -------------------------------------------------- Enumerating Active Setup stub paths: HKLM\Software\Microsoft\Active Setup\Installed Components (* = disabled by HKCU twin) [>{22d6f312-b0f6-11d0-94ab-0080c74c7e95}] StubPath = C:\WINDOWS\inf\unregmp2.exe /ShowWMP [>{26923b43-4d38-484f-9b9e-de460746276c}] * StubPath = %systemroot%\system32\shmgrate.exe OCInstallUserConfigIE [>{881dd1c5-3dcf-431b-b061-f3f88e8be88a}] * StubPath = %systemroot%\system32\shmgrate.exe OCInstallUserConfigOE [{2C7339CF-2B09-4501-B3F3-F3508C9228ED}] * StubPath = %SystemRoot%\system32\regsvr32.exe /s /n /i:/UserInstall %SystemRoot%\system32\themeui.dll [{44BBA840-CC51-11CF-AAFA-00AA00B6015C}] * StubPath = "%ProgramFiles%\Outlook Express\setup50.exe" /APP:OE /CALLER:WINNT /user /install [{44BBA842-CC51-11CF-AAFA-00AA00B6015B}] * StubPath = rundll32.exe advpack.dll,LaunchINFSection C:\WINDOWS\INF\msnetmtg.inf,NetMtg.Install.PerUser.NT [{5945c046-1e7d-11d1-bc44-00c04fd912be}] * StubPath = rundll32.exe advpack.dll,LaunchINFSection C:\WINDOWS\INF\msmsgs.inf,BLC.QuietInstall.PerUser [{6BF52A52-394A-11d3-B153-00C04F79FAA6}] * StubPath = rundll32.exe advpack.dll,LaunchINFSection C:\WINDOWS\INF\wmp.inf,PerUserStub [{7790769C-0471-11d2-AF11-00C04FA35D02}] * StubPath = "%ProgramFiles%\Outlook Express\setup50.exe" /APP:WAB /CALLER:WINNT /user /install [{89820200-ECBD-11cf-8B85-00AA005B4340}] * StubPath = regsvr32.exe /s /n /i:U shell32.dll [{89820200-ECBD-11cf-8B85-00AA005B4383}] * StubPath = %SystemRoot%\system32\ie4uinit.exe [{89B4C1CD-B018-4511-B0A1-5476DBF70820}] * StubPath = C:\WINDOWS\system32\Rundll32.exe C:\WINDOWS\system32\mscories.dll,Install [{8B85-0045902B43879}] * StubPath = C:\WINDOWS\uinit.exe [{8B85-0047905B4387P}] * StubPath = C:\WINDOWS\ieuinit.exe [{9B71D88C-C598-4935-C5D1-43AA4DB90836}] StubPath = C:\WINDOWS\system32\jasched.exe s -------------------------------------------------- Enumerating ICQ Agent Autostart apps: HKCU\Software\Mirabilis\ICQ\Agent\Apps *Registry key not found* -------------------------------------------------- Load/Run keys from C:\WINDOWS\WIN.INI: load=*INI section not found* run=*INI section not found* Load/Run keys from Registry: HKLM\..\Windows NT\CurrentVersion\WinLogon: load=*Registry value not found* HKLM\..\Windows NT\CurrentVersion\WinLogon: run=*Registry value not found* HKLM\..\Windows\CurrentVersion\WinLogon: load=*Registry key not found* HKLM\..\Windows\CurrentVersion\WinLogon: run=*Registry key not found* HKCU\..\Windows NT\CurrentVersion\WinLogon: load=*Registry value not found* HKCU\..\Windows NT\CurrentVersion\WinLogon: run=*Registry value not found* HKCU\..\Windows\CurrentVersion\WinLogon: load=*Registry key not found* HKCU\..\Windows\CurrentVersion\WinLogon: run=*Registry key not found* HKCU\..\Windows NT\CurrentVersion\Windows: load= HKCU\..\Windows NT\CurrentVersion\Windows: run=*Registry value not found* HKLM\..\Windows NT\CurrentVersion\Windows: load=*Registry value not found* HKLM\..\Windows NT\CurrentVersion\Windows: run=*Registry value not found* HKLM\..\Windows NT\CurrentVersion\Windows: AppInit_DLLs=MsgPlusLoader.dll -------------------------------------------------- Shell & screensaver key from C:\WINDOWS\SYSTEM.INI: Shell=*INI section not found* SCRNSAVE.EXE=*INI section not found* drivers=*INI section not found* Shell & screensaver key from Registry: Shell=Explorer.exe SCRNSAVE.EXE=*Registry value not found* drivers=*Registry value not found* Policies Shell key: HKCU\..\Policies: Shell=*Registry value not found* HKLM\..\Policies: Shell=*Registry value not found* -------------------------------------------------- Checking for EXPLORER.EXE instances: C:\WINDOWS\Explorer.exe: PRESENT! C:\Explorer.exe: not present C:\WINDOWS\Explorer\Explorer.exe: not present C:\WINDOWS\System\Explorer.exe: not present C:\WINDOWS\System32\Explorer.exe: not present C:\WINDOWS\Command\Explorer.exe: not present C:\WINDOWS\Fonts\Explorer.exe: not present -------------------------------------------------- Checking for superhidden extensions: .lnk: HIDDEN! (arrow overlay: yes) .pif: HIDDEN! (arrow overlay: yes) .exe: not hidden .com: not hidden .bat: not hidden .hta: not hidden .scr: not hidden .shs: HIDDEN! .shb: HIDDEN! .vbs: not hidden .vbe: not hidden .wsh: not hidden .scf: HIDDEN! (arrow overlay: NO!) .url: HIDDEN! (arrow overlay: yes) .js: not hidden .jse: not hidden -------------------------------------------------- Verifying REGEDIT.EXE integrity: - Regedit.exe found in C:\WINDOWS - .reg open command is normal (regedit.exe %1) - Regedit.exe has no CompanyName property! It is either missing or named something else. - Regedit.exe has no OriginalFilename property! It is either missing or named something else. - Regedit.exe has no FileDescription property! It is either missing or named something else. Registry check failed! -------------------------------------------------- Enumerating Browser Helper Objects: (no name) - C:\Program Files\MSN Toolbar Suite\TB\02.05.0000.1105\fr-fr\msntb.dll - {BDBD1DAD-C946-4A17-ADC1-64B5B4FF55D0} -------------------------------------------------- Enumerating Task Scheduler jobs: {7337EA73-C33F-43A6-AF2D-92BD817BC487}_CLOCHETTE_Nghia Nguyen Dai.job {9BA245D5-A1A5-453E-A3F6-166FC7404E2D}_CLOCHETTE_Nghia Nguyen Dai.job {07BF04CD-C05B-4437-96E1-7D9412A88A84}_CLOCHETTE_Nghia Nguyen Dai.job -------------------------------------------------- Enumerating Download Program Files: [DirectAnimation Java Classes] CODEBASE = file://C:\WINDOWS\Java\classes\dajava.cab OSD = C:\WINDOWS\Downloaded Program Files\DirectAnimation Java Classes.osd [Microsoft XML Parser for Java] CODEBASE = file://C:\WINDOWS\Java\classes\xmldso.cab OSD = C:\WINDOWS\Downloaded Program Files\Microsoft XML Parser for Java.osd [PlxInstall Class] InProcServer32 = C:\WINDOWS\Downloaded Program Files\PlaxoInstall.dll CODEBASE = https://www.plaxo.com/down/latest/PlaxoInstall.cab [Windows Genuine Advantage Validation Tool] InProcServer32 = C:\WINDOWS\system32\LegitCheckControl.DLL CODEBASE = http://go.microsoft.com/fwlink/?linkid=36467&clcid=0x409 [FavImport Class] InProcServer32 = C:\WINDOWS\Downloaded Program Files\ImportAx.dll CODEBASE = https://favorites.live.com/cab/ImportAx.cab [Office Update Installation Engine] InProcServer32 = C:\WINDOWS\opuc.dll CODEBASE = http://office.microsoft.com/officeupdate/content/opuc.cab [MSN Photo Upload Tool] InProcServer32 = C:\WINDOWS\Downloaded Program Files\MsnPUpld.dll CODEBASE = http://spaces.msn.com//PhotoUpload/MsnPUpld.cab [bDSCANONLINE Control] InProcServer32 = C:\WINDOWS\DOWNLO~1\oscan8.ocx CODEBASE = http://download.bitdefender.com/resources/scan8/oscan8.cab [Windows Live Safety Center Base Module] InProcServer32 = C:\WINDOWS\Downloaded Program Files\wlscBase.dll CODEBASE = https://scan.safety.live.com/resource/downl...lscbase3401.cab [FotovistaPhotoUploader.ctrFpu] InProcServer32 = C:\WINDOWS\Downloaded Program Files\fpu.ocx CODEBASE = http://www.mypixmania.com/fr/fr/tools/activex/fpu.cab [HouseCall Control] InProcServer32 = C:\WINDOWS\DOWNLO~1\xscan53.ocx CODEBASE = http://a840.g.akamai.net/7/840/537/2004061...all/xscan53.cab [Java Plug-in 1.3.1_02] InProcServer32 = C:\Program Files\JavaSoft\JRE\1.3.1_02\bin\npjava131_02.dll CODEBASE = http://java.sun.com/products/plugin/autodl..._3_1_02-win.cab [PhotoPickConvert Class] InProcServer32 = C:\WINDOWS\Downloaded Program Files\PhtPkMSN.dll CODEBASE = http://appdirectory.messenger.msn.com/AppD...ap/PhtPkMSN.cab [ActiveScan Installer Class] InProcServer32 = C:\WINDOWS\Downloaded Program Files\asinst.dll CODEBASE = http://acs.pandasoftware.com/activescan/as5free/asinst.cab [Aurigma Image Uploader 3.5 Control] InProcServer32 = C:\WINDOWS\Downloaded Program Files\ImageUploader3.ocx CODEBASE = http://www.photoways.com/clients/ImageUploader3.cab [MsnMessengerSetupDownloadControl Class] InProcServer32 = C:\WINDOWS\Downloaded Program Files\MsnMessengerSetupDownloader.ocx CODEBASE = http://messenger.msn.com/download/MsnMesse...pDownloader.cab [msnloader Class] InProcServer32 = C:\WINDOWS\system32\rockstar.dll CODEBASE = http://rockstar.messenger.msn.com/rockstar.cab [Java Plug-in 1.3.1_02] InProcServer32 = C:\Program Files\JavaSoft\JRE\1.3.1_02\bin\npjava131_02.dll CODEBASE = http://java.sun.com/products/plugin/1.3.1/...-131_02-win.cab [shockwave Flash Object] InProcServer32 = C:\WINDOWS\system32\Macromed\Flash\Flash8.ocx CODEBASE = http://download.macromedia.com/pub/shockwa...ash/swflash.cab -------------------------------------------------- Enumerating Winsock LSP files: NameSpace #1: C:\WINDOWS\System32\mswsock.dll NameSpace #2: C:\WINDOWS\System32\winrnr.dll NameSpace #3: C:\WINDOWS\System32\mswsock.dll NameSpace #4: C:\WINDOWS\system32\wshbth.dll Protocol #1: C:\WINDOWS\system32\mswsock.dll Protocol #2: C:\WINDOWS\system32\mswsock.dll Protocol #3: C:\WINDOWS\system32\mswsock.dll Protocol #4: C:\WINDOWS\system32\rsvpsp.dll Protocol #5: C:\WINDOWS\system32\rsvpsp.dll Protocol #6: C:\WINDOWS\system32\mswsock.dll Protocol #7: C:\WINDOWS\system32\mswsock.dll Protocol #8: C:\WINDOWS\system32\mswsock.dll Protocol #9: C:\WINDOWS\system32\mswsock.dll Protocol #10: C:\WINDOWS\system32\mswsock.dll Protocol #11: C:\WINDOWS\system32\mswsock.dll Protocol #12: C:\WINDOWS\system32\mswsock.dll Protocol #13: C:\WINDOWS\system32\mswsock.dll Protocol #14: C:\WINDOWS\system32\mswsock.dll Protocol #15: C:\WINDOWS\system32\mswsock.dll Protocol #16: C:\WINDOWS\system32\mswsock.dll Protocol #17: C:\WINDOWS\system32\mswsock.dll Protocol #18: C:\WINDOWS\system32\mswsock.dll Protocol #19: C:\WINDOWS\system32\mswsock.dll Protocol #20: C:\WINDOWS\system32\mswsock.dll Protocol #21: C:\WINDOWS\system32\mswsock.dll Protocol #22: C:\WINDOWS\system32\mswsock.dll Protocol #23: C:\WINDOWS\system32\mswsock.dll Protocol #24: C:\WINDOWS\system32\mswsock.dll Protocol #25: C:\WINDOWS\system32\mswsock.dll Protocol #26: C:\WINDOWS\system32\mswsock.dll Protocol #27: C:\WINDOWS\system32\mswsock.dll Protocol #28: C:\WINDOWS\system32\mswsock.dll Protocol #29: C:\WINDOWS\system32\mswsock.dll Protocol #30: C:\WINDOWS\system32\mswsock.dll Protocol #31: C:\WINDOWS\system32\mswsock.dll Protocol #32: C:\WINDOWS\system32\mswsock.dll Protocol #33: C:\WINDOWS\system32\mswsock.dll Protocol #34: C:\WINDOWS\system32\mswsock.dll -------------------------------------------------- Enumerating Windows NT/2000/XP services Pilote ACPI Microsoft: System32\DRIVERS\ACPI.sys (system) Pilote de contrôleur intégré Microsoft: System32\DRIVERS\ACPIEC.sys (system) aeaudio: system32\drivers\aeaudio.sys (manual start) Suppresseur d'écho acoustique (Noyau Microsoft): system32\drivers\aec.sys (manual start) Environnement de prise en charge de réseau AFD: \SystemRoot\System32\drivers\afd.sys (system) Avertissement: %SystemRoot%\System32\svchost.exe -k LocalService (disabled) Service de la passerelle de la couche Application: %SystemRoot%\System32\alg.exe (manual start) Gestion d'applications: %SystemRoot%\system32\svchost.exe -k netsvcs (manual start) Protocole client ARP 1394: System32\DRIVERS\arp1394.sys (manual start) ASP.NET State Service: %SystemRoot%\Microsoft.NET\Framework\v1.1.4322\aspnet_state.exe (manual start) ASWLSVC: C:\WINDOWS\system32\ASWLSVC.exe (autostart) Pilote de média asynchrone RAS: System32\DRIVERS\asyncmac.sys (manual start) Contrôleur de disque dur IDE/ESDI standard: System32\DRIVERS\atapi.sys (system) Protocole client ATM ARP: System32\DRIVERS\atmarpc.sys (manual start) Audio Windows: %SystemRoot%\System32\svchost.exe -k netsvcs (autostart) Pilote audio Stub: System32\DRIVERS\audstub.sys (manual start) AVG7 Alert Manager Server: C:\PROGRA~1\Grisoft\AVGFRE~1\avgamsvr.exe (autostart) AVG7 Kernel: \SystemRoot\System32\Drivers\avg7core.sys (system) AVG7 Wrap Driver: \SystemRoot\System32\Drivers\avg7rsw.sys (system) AVG7 Rezident Driver: \SystemRoot\System32\Drivers\avg7rsxp.sys (system) AVG7 Update Service: C:\PROGRA~1\Grisoft\AVGFRE~1\avgupsvc.exe (autostart) Service de transfert intelligent en arrière-plan: %SystemRoot%\System32\svchost.exe -k netsvcs (autostart) Explorateur d'ordinateur: %SystemRoot%\System32\svchost.exe -k netsvcs (autostart) Pilote de bloc de demande Bluetooth: system32\DRIVERS\BthEnum.sys (manual start) Pilote de communications modem Bluetooth: system32\DRIVERS\bthmodem.sys (manual start) Périphérique Bluetooth (réseau personnel): system32\DRIVERS\bthpan.sys (manual start) Pilote de port Bluetooth: System32\Drivers\BTHport.sys (manual start) Bluetooth Support Service: %SystemRoot%\system32\svchost.exe -k bthsvcs (autostart) Pilote USB radio Bluetooth: System32\Drivers\BTHUSB.sys (manual start) Bluetooth Protocol Stack: system32\drivers\btkrnl.sys (system) Bluetooth Serial Driver: \??\C:\WINDOWS\system32\drivers\btserial.sys (autostart) Bluetooth Port Client Driver: \??\C:\WINDOWS\system32\drivers\btslbcsp.sys (autostart) Bluetooth Service: C:\Program Files\WIDCOMM\Bluetooth Software\bin\btwdins.exe (autostart) Décodeur sous-titre fermé: system32\DRIVERS\CCDECODE.sys (manual start) Pilote de CD-ROM: system32\DRIVERS\cdrom.sys (system) Service d'indexation: %SystemRoot%\system32\cisvc.exe (manual start) Gestionnaire de l'Album: %SystemRoot%\system32\clipsrv.exe (disabled) Pilote d'adaptateur secteur Microsoft: System32\DRIVERS\CmBatt.sys (manual start) Pilote de batterie composite Microsoft: System32\DRIVERS\compbatt.sys (system) Application système COM+: C:\WINDOWS\System32\dllhost.exe /Processid:{02D4B3F1-FD88-11D1-960D-00805FC79235} (manual start) Services de cryptographie: %SystemRoot%\system32\svchost.exe -k netsvcs (autostart) Lanceur de processus serveur DCOM: %SystemRoot%\system32\svchost -k DcomLaunch (autostart) Client DHCP: %SystemRoot%\System32\svchost.exe -k netsvcs (autostart) Pilote de disque: System32\DRIVERS\disk.sys (system) Service d'administration du Gestionnaire de disque logique: %SystemRoot%\System32\dmadmin.exe /com (manual start) dmboot: System32\drivers\dmboot.sys (disabled) Pilote de Gestionnaire de disque logique: System32\drivers\dmio.sys (system) dmload: System32\drivers\dmload.sys (system) Gestionnaire de disque logique: %SystemRoot%\System32\svchost.exe -k netsvcs (autostart) Synthétiseur DLS du noyau Microsoft: system32\drivers\DMusic.sys (manual start) Client DNS: %SystemRoot%\System32\svchost.exe -k NetworkService (autostart) Filtre de décodeur DRM (Noyau Microsoft): system32\drivers\drmkaud.sys (manual start) Service de rapport d'erreurs: %SystemRoot%\System32\svchost.exe -k netsvcs (autostart) Journal des événements: %SystemRoot%\system32\services.exe (autostart) Système d'événements de COM+: C:\WINDOWS\System32\svchost.exe -k netsvcs (manual start) ewido security suite control: C:\Program Files\ewido anti-malware\ewidoctrl.exe (autostart) Compatibilité avec le Changement rapide d'utilisateur: %SystemRoot%\System32\svchost.exe -k netsvcs (manual start) FltMgr: system32\drivers\fltmgr.sys (system) Pilote du Gestionnaire de volume: System32\DRIVERS\ftdisk.sys (system) G3G C USB Modem: system32\DRIVERS\g3gcumdm.sys (manual start) G3G C USB Serial: system32\DRIVERS\g3gcuser.sys (manual start) GEARAspiWDM: System32\Drivers\GEARAspiWDM.sys (manual start) Classificateur de paquets générique: System32\DRIVERS\msgpc.sys (manual start) Pilote processeur Intel GV3: System32\DRIVERS\gv3.sys (manual start) Aide et support: %SystemRoot%\System32\svchost.exe -k netsvcs (autostart) Accès du périphérique d'interface utilisateur: %SystemRoot%\System32\svchost.exe -k netsvcs (disabled) Pilote de classe HID Microsoft: system32\DRIVERS\hidusb.sys (manual start) HSFHWICH: System32\DRIVERS\HSFHWICH.sys (manual start) HSF_DP: System32\DRIVERS\HSF_DP.sys (manual start) HTTP: System32\Drivers\HTTP.sys (manual start) HTTP SSL: %SystemRoot%\System32\svchost.exe -k HTTPFilter (manual start) Pilote pour clavier i8042 et souris sur port PS/2: System32\DRIVERS\i8042prt.sys (system) ialm: System32\DRIVERS\ialmnt5.sys (manual start) InstallDriver Table Manager: "C:\Program Files\Fichiers communs\InstallShield\Driver\11\Intel 32\IDriverT.exe" (manual start) Pilote de filtre de gravure CD: system32\DRIVERS\imapi.sys (system) Service COM de gravage de CD IMAPI: C:\WINDOWS\System32\imapi.exe (manual start) IntelIde: System32\DRIVERS\intelide.sys (system) Pilote de processeur Intel: System32\DRIVERS\intelppm.sys (system) Pilote du pare-feu Windows IPv6: system32\drivers\ip6fw.sys (manual start) Pilote de filtre de trafic IP: System32\DRIVERS\ipfltdrv.sys (manual start) Pilote de tunnelage IP dans IP: System32\DRIVERS\ipinip.sys (manual start) Traducteur d'adresses réseau IP: System32\DRIVERS\ipnat.sys (manual start) iPodService: C:\Program Files\iPod\bin\iPodService.exe (manual start) Pilote IPSEC: System32\DRIVERS\ipsec.sys (system) Service énumérateur IR: System32\DRIVERS\irenum.sys (manual start) Pilote de bus Plug-and-Play ISA/EISA: System32\DRIVERS\isapnp.sys (system) Pilote de la classe Clavier: System32\DRIVERS\kbdclass.sys (system) KeyFive USB Reader: System32\Drivers\key5usb.sys (autostart) Mélangeur audio Wave de noyau Microsoft: system32\drivers\kmixer.sys (manual start) Serveur: %SystemRoot%\System32\svchost.exe -k netsvcs (autostart) Station de travail: %SystemRoot%\System32\svchost.exe -k netsvcs (autostart) Assistance TCP/IP NetBIOS: %SystemRoot%\System32\svchost.exe -k LocalService (autostart) AEGIS Protocol (IEEE 802.1x) v2.2.1.0: System32\DRIVERS\mdc8021x.sys (autostart) mdmxsdk: System32\DRIVERS\mdmxsdk.sys (autostart) Affichage des messages: %SystemRoot%\System32\svchost.exe -k netsvcs (disabled) Partage de Bureau à distance NetMeeting: C:\WINDOWS\System32\mnmsrvc.exe (manual start) Pilote de la classe Souris: System32\DRIVERS\mouclass.sys (system) Pilote HID de souris: System32\DRIVERS\mouhid.sys (manual start) Redirecteur client WebDav: System32\DRIVERS\mrxdav.sys (manual start) MRXSMB: System32\DRIVERS\mrxsmb.sys (system) Distributed Transaction Coordinator: C:\WINDOWS\System32\msdtc.exe (manual start) Windows Installer: C:\WINDOWS\system32\msiexec.exe /V (manual start) Proxy de service de répartition Microsoft: system32\drivers\MSKSSRV.sys (manual start) Proxy d'horloge de répartition Microsoft: system32\drivers\MSPCLOCK.sys (manual start) Proxy de gestion de qualité de répartition Microsoft: system32\drivers\MSPQM.sys (manual start) Pilote BIOS de gestion de systèmes Microsoft: System32\DRIVERS\mssmbios.sys (manual start) Convertisseur en T/site-à-site de répartition Microsoft: system32\drivers\MSTEE.sys (manual start) ATK0100 ACPI UTILITY: System32\DRIVERS\ATKACPI.sys (manual start) N5 Print Device: \??\C:\WINDOWS\system32\Drivers\n5lpt.sys (autostart) Codec NABTS/FEC VBI: system32\DRIVERS\NABTSFEC.sys (manual start) Connection TV/vidéo Microsoft: system32\DRIVERS\NdisIP.sys (manual start) Pilote TAPI NDIS d'accès distant: System32\DRIVERS\ndistapi.sys (manual start) NDIS mode utilisateur E/S Protocole: System32\DRIVERS\ndisuio.sys (manual start) Pilote réseau étendu NDIS d'accès distant: System32\DRIVERS\ndiswan.sys (manual start) Interface NetBIOS: System32\DRIVERS\netbios.sys (system) NetBIOS sur TCP/IP: System32\DRIVERS\netbt.sys (system) DDE réseau: %SystemRoot%\system32\netdde.exe (disabled) DSDM DDE réseau: %SystemRoot%\system32\netdde.exe (disabled) Ouverture de session réseau: %SystemRoot%\System32\lsass.exe (manual start) Connexions réseau: %SystemRoot%\System32\svchost.exe -k netsvcs (manual start) Pilote réseau 1394: System32\DRIVERS\nic1394.sys (manual start) NLA (Network Location Awareness): %SystemRoot%\System32\svchost.exe -k netsvcs (manual start) Nokia USB Generic: system32\drivers\nmwcdc.sys (manual start) Nokia USB Modem: system32\drivers\nmwcdcm.sys (manual start) Nokia USB Phone Parent: system32\drivers\nmwcd.sys (manual start) NSNDIS5 NDIS Protocol Driver: \??\C:\WINDOWS\system32\NSNDIS5.SYS (manual start) Fournisseur de la prise en charge de sécurité LM NT: %SystemRoot%\System32\lsass.exe (manual start) Stockage amovible: %SystemRoot%\system32\svchost.exe -k netsvcs (manual start) Pilote de filtre de trafic IPX: System32\DRIVERS\nwlnkflt.sys (manual start) Pilote de transfert de trafic IPX: System32\DRIVERS\nwlnkfwd.sys (manual start) Contrôleurs hôte IEEE 1394 compatible OHCI: System32\DRIVERS\ohci1394.sys (system) Office Source Engine: "C:\Program Files\Fichiers communs\Microsoft Shared\Source Engine\OSE.EXE" (manual start) PACSPTISVR: "C:\Program Files\Fichiers communs\Sony Shared\AVLib\PACSPTISVR.exe" (manual start) PalmUSBD: system32\drivers\PalmUSBD.sys (manual start) Pilote de bus PCI: System32\DRIVERS\pci.sys (system) PCIIde: System32\DRIVERS\pciide.sys (system) Pcmcia: System32\DRIVERS\pcmcia.sys (system) Logitech QuickCam Pro 3000(PID_08B0): system32\DRIVERS\CamDrL21.sys (manual start) Plug-and-Play: %SystemRoot%\system32\services.exe (autostart) Services IPSEC: %SystemRoot%\System32\lsass.exe (autostart) Miniport réseau étendu (PPTP): System32\DRIVERS\raspptp.sys (manual start) Pilote processeur: System32\DRIVERS\processr.sys (system) Emplacement protégé: %SystemRoot%\system32\lsass.exe (autostart) Planificateur de paquets QoS: System32\DRIVERS\psched.sys (manual start) Pilote de liaison parallèle directe: System32\DRIVERS\ptilink.sys (manual start) PxHelp20: System32\DRIVERS\PxHelp20.sys (system) Pilote de connexion automatique d'accès distant: System32\DRIVERS\rasacd.sys (system) Gestionnaire de connexion automatique d'accès distant: %SystemRoot%\System32\svchost.exe -k netsvcs (manual start) Miniport réseau étendu (L2TP): System32\DRIVERS\rasl2tp.sys (manual start) Gestionnaire de connexions d'accès distant: %SystemRoot%\System32\svchost.exe -k netsvcs (manual start) Pilote PPPOE d'accès à distance: System32\DRIVERS\raspppoe.sys (manual start) Parallèle direct: System32\DRIVERS\raspti.sys (manual start) Rdbss: System32\DRIVERS\rdbss.sys (system) RDPCDD: System32\DRIVERS\RDPCDD.sys (system) Pilote de redirecteur de périphérique Terminal Server: System32\DRIVERS\rdpdr.sys (manual start) Gestionnaire de session d'aide sur le Bureau à distance: C:\WINDOWS\system32\sessmgr.exe (manual start) Pilote de filtre de lecture digitale de CD audio: system32\DRIVERS\redbook.sys (system) RegSrvc: C:\WINDOWS\System32\RegSrvc.exe (autostart) Routage et accès distant: %SystemRoot%\System32\svchost.exe -k netsvcs (disabled) Accès à distance au Registre: %SystemRoot%\system32\svchost.exe -k LocalService (autostart) Périphérique Bluetooth (TDI protocole RFCOMM): system32\DRIVERS\rfcomm.sys (manual start) Ricoh MediaCard Driver: System32\DRIVERS\rmedia.sys (system) Localisateur d'appels de procédure distante (RPC): %SystemRoot%\System32\locator.exe (manual start) Appel de procédure distante (RPC): %SystemRoot%\system32\svchost -k rpcss (autostart) QoS RSVP: %SystemRoot%\System32\rsvp.exe (manual start) Realtek RTL8139/810x/8169/8110 all in one NDIS NT Driver: System32\DRIVERS\Rtlnic51.sys (manual start) Spectrum24 Event Monitor: C:\WINDOWS\System32\S24EvMon.exe (autostart) WLAN Transport: System32\DRIVERS\s24trans.sys (autostart) Gestionnaire de comptes de sécurité: %SystemRoot%\system32\lsass.exe (autostart) Pilote de bus de transport/protocole SBP-2: System32\DRIVERS\sbp2port.sys (system) Carte à puce: %SystemRoot%\System32\SCardSvr.exe (manual start) Planificateur de tâches: %SystemRoot%\System32\svchost.exe -k netsvcs (autostart) Secdrv: System32\DRIVERS\secdrv.sys (manual start) Connexion secondaire: %SystemRoot%\System32\svchost.exe -k netsvcs (autostart) Notification d'événement système: %SystemRoot%\system32\svchost.exe -k netsvcs (autostart) Lecteur de disquettes haute densité: System32\DRIVERS\sfloppy.sys (manual start) Pare-feu Windows / Partage de connexion Internet: %SystemRoot%\System32\svchost.exe -k netsvcs (autostart) Détection matériel noyau: %SystemRoot%\System32\svchost.exe -k netsvcs (autostart) Détrameur décalage BDA: system32\DRIVERS\SLIP.sys (manual start) smwdm: system32\drivers\smwdm.sys (manual start) SoundMAX Agent Service: C:\Program Files\Analog Devices\SoundMAX\SMAgent.exe (autostart) Splitter audio du noyau Microsoft: system32\drivers\splitter.sys (manual start) Spouleur d'impression: %SystemRoot%\system32\spoolsv.exe (autostart) Sony SPTI Service: "C:\Program Files\Fichiers communs\Sony Shared\AVLib\SPTISRV.exe" (manual start) Pilote de filtre de restauration système: System32\DRIVERS\sr.sys (system) Service de restauration système: %SystemRoot%\System32\svchost.exe -k netsvcs (autostart) Srv: System32\DRIVERS\srv.sys (manual start) Service de découvertes SSDP: %SystemRoot%\System32\svchost.exe -k LocalService (manual start) Acquisition d'image Windows (WIA): %SystemRoot%\System32\svchost.exe -k imgsvc (autostart) BDA IPSink: system32\DRIVERS\StreamIP.sys (manual start) Pilote de bus logiciel: System32\DRIVERS\swenum.sys (manual start) Synthétiseur de table de sons GC noyau Microsoft: system32\drivers\swmidi.sys (manual start) MS Software Shadow Copy Provider: C:\WINDOWS\System32\dllhost.exe /Processid:{90A0E0D2-BDBC-434C-B253-27BA2BA457B1} (manual start) Synaptics TouchPad Driver: System32\DRIVERS\SynTP.sys (manual start) Périphérique audio système du noyau Microsoft: system32\drivers\sysaudio.sys (manual start) Journaux et alertes de performance: %SystemRoot%\system32\smlogsvc.exe (manual start) Téléphonie: %SystemRoot%\System32\svchost.exe -k netsvcs (manual start) Pilote du protocole TCP/IP: System32\DRIVERS\tcpip.sys (system) Pilote de périphérique terminal: System32\DRIVERS\termdd.sys (system) Services Terminal Server: %SystemRoot%\System32\svchost -k DComLaunch (manual start) Thèmes: %SystemRoot%\System32\svchost.exe -k netsvcs (autostart) Telnet: C:\WINDOWS\System32\tlntsvr.exe (disabled) Client de suivi de lien distribué: %SystemRoot%\system32\svchost.exe -k netsvcs (autostart) Windows User Mode Driver Framework: C:\WINDOWS\System32\wdfmgr.exe (autostart) Pilote de mise à jour microcode: System32\DRIVERS\update.sys (manual start) Hôte de périphérique universel Plug-and-Play: %SystemRoot%\System32\svchost.exe -k LocalService (manual start) Onduleur: %SystemRoot%\System32\ups.exe (manual start) Pilote USB audio (WDM): system32\drivers\usbaudio.sys (manual start) Pilote parent générique USB Microsoft: system32\DRIVERS\usbccgp.sys (manual start) Pilote miniport de contrôleur hôte amélioré USB 2.0 Microsoft: System32\DRIVERS\usbehci.sys (manual start) Concentrateur USB2: System32\DRIVERS\usbhub.sys (manual start) Pilote miniport de contrôleur hôte ouvert USB Microsoft: system32\DRIVERS\usbohci.sys (manual start) Classe d'imprimantes USB Microsoft: system32\DRIVERS\usbprint.sys (manual start) Pilote de stockage de masse USB: System32\DRIVERS\USBSTOR.SYS (manual start) Pilote miniport de contrôleur hôte universel USB Microsoft: System32\DRIVERS\usbuhci.sys (manual start) USB RNDIS Adapter: system32\DRIVERS\usb8023x.sys (manual start) Messenger Sharing USN Journal Reader service: %SystemRoot%\System32\svchost.exe -k usnsvc (manual start) Carte vidéo VGA.: \SystemRoot\System32\drivers\vga.sys (system) Cliché instantané de volume: %SystemRoot%\System32\vssvc.exe (manual start) Pilote Intel® PRO/Wireless 2200 Adapter: System32\DRIVERS\w22n51.sys (manual start) Horloge Windows: %SystemRoot%\System32\svchost.exe -k netsvcs (autostart) Pilote ARP IP d'accès distant: System32\DRIVERS\wanarp.sys (manual start) Windows CE USB Serial Host Driver: system32\DRIVERS\wceusbsh.sys (manual start) Pilote WINMM de compatibilité audio WDM Microsoft: system32\drivers\wdmaud.sys (manual start) WebClient: %SystemRoot%\System32\svchost.exe -k LocalService (autostart) winachsf: System32\DRIVERS\HSF_CNXT.sys (manual start) Infrastructure de gestion Windows: %systemroot%\system32\svchost.exe -k netsvcs (autostart) Portable Media Serial Number Service: %SystemRoot%\System32\svchost.exe -k netsvcs (manual start) Extensions du pilote WMI: %SystemRoot%\System32\svchost.exe -k netsvcs (manual start) Carte de performance WMI: C:\WINDOWS\System32\wbem\wmiapsrv.exe (manual start) WpdUsb: System32\Drivers\wpdusb.sys (manual start) Centre de sécurité: %SystemRoot%\System32\svchost.exe -k netsvcs (autostart) Codec Teletext standard: system32\DRIVERS\WSTCODEC.SYS (manual start) Mises à jour automatiques: %systemroot%\system32\svchost.exe -k netsvcs (autostart) Configuration automatique sans fil: %SystemRoot%\System32\svchost.exe -k netsvcs (autostart) Service d'approvisionnement réseau: %SystemRoot%\System32\svchost.exe -k netsvcs (manual start) Intel® Graphics Platform (SoftBIOS) Driver: system32\drivers\ialmsbw.sys (manual start) Intel® Graphics Chipset (KCH) Driver: system32\drivers\ialmkchw.sys (manual start) -------------------------------------------------- Enumerating Windows NT logon/logoff scripts: *No scripts set to run* Windows NT checkdisk command: BootExecute = autocheck autochk * Windows NT 'Wininit.ini': PendingFileRenameOperations: *Registry value not found* -------------------------------------------------- Enumerating ShellServiceObjectDelayLoad items: PostBootReminder: C:\WINDOWS\system32\SHELL32.dll CDBurn: C:\WINDOWS\system32\SHELL32.dll WebCheck: C:\WINDOWS\System32\webcheck.dll SysTray: C:\WINDOWS\System32\stobject.dll -------------------------------------------------- Autorun entries from Registry: HKCU\Software\Microsoft\Windows\CurrentVersion\policies\Explorer\Run *Registry key not found* -------------------------------------------------- Autorun entries from Registry: HKLM\Software\Microsoft\Windows\CurrentVersion\policies\Explorer\Run *Registry key not found* -------------------------------------------------- End of report, 43 352 bytes Report generated in 0,485 seconds Command line options: /verbose - to add additional info on each section /complete - to include empty sections and unsuspicious data /full - to include several rarely-important sections /force9x - to include Win9x-only startups even if running on WinNT /forcent - to include WinNT-only startups even if running on Win9x /forceall - to include all Win9x and WinNT startups, regardless of platform /history - to list version history only Et voici celui de Ewido : --------------------------------------------------------- ewido anti-malware - Rapport de scan --------------------------------------------------------- + Créé le: 15:34:00, 24/01/2006 + Somme de contrôle: E00DC017 + Résultats du scan: C:\WINDOWS\ieuinit.exe -> Backdoor.Agent.lo : Nettoyer et sauvegarder C:\Documents and Settings\Nghia Nguyen Dai\Local Settings\Temp\Temporary Internet Files\Content.IE5\GPYJST23\mm[1].js -> Spyware.Chitika : Nettoyer et sauvegarder C:\Documents and Settings\Nghia Nguyen Dai\Local Settings\Temp\Cookies\nghia nguyen dai@adtech[1].txt -> Spyware.Cookie.Adtech : Nettoyer et sauvegarder C:\Documents and Settings\Nghia Nguyen Dai\Local Settings\Temp\Cookies\nghia nguyen dai@ad1.clickhype[1].txt -> Spyware.Cookie.Clickhype : Nettoyer et sauvegarder C:\Documents and Settings\Nghia Nguyen Dai\Local Settings\Temp\Cookies\nghia nguyen dai@2o7[1].txt -> Spyware.Cookie.2o7 : Nettoyer et sauvegarder C:\Documents and Settings\Nghia Nguyen Dai\Local Settings\Temp\Cookies\nghia nguyen dai@www.smartadserver[1].txt -> Spyware.Cookie.Smartadserver : Nettoyer et sauvegarder C:\Documents and Settings\Nghia Nguyen Dai\Local Settings\Temp\Cookies\nghia nguyen dai@z1.adserver[2].txt -> Spyware.Cookie.Adserver : Nettoyer et sauvegarder C:\Documents and Settings\Nghia Nguyen Dai\Local Settings\Temp\Cookies\nghia nguyen dai@trafficmp[1].txt -> Spyware.Cookie.Trafficmp : Nettoyer et sauvegarder C:\Documents and Settings\Nghia Nguyen Dai\Local Settings\Temp\Cookies\nghia nguyen dai@rotator.adjuggler[1].txt -> Spyware.Cookie.Adjuggler : Nettoyer et sauvegarder C:\Documents and Settings\Nghia Nguyen Dai\Local Settings\Temp\Cookies\nghia nguyen dai@overture[1].txt -> Spyware.Cookie.Overture : Nettoyer et sauvegarder C:\Documents and Settings\Nghia Nguyen Dai\Local Settings\Temp\Cookies\nghia nguyen dai@serving-sys[1].txt -> Spyware.Cookie.Serving-sys : Nettoyer et sauvegarder C:\Documents and Settings\Nghia Nguyen Dai\Local Settings\Temp\Cookies\nghia nguyen dai@as-eu.falkag[2].txt -> Spyware.Cookie.Falkag : Nettoyer et sauvegarder C:\Documents and Settings\Nghia Nguyen Dai\Local Settings\Temp\Cookies\nghia nguyen dai@estat[1].txt -> Spyware.Cookie.Estat : Nettoyer et sauvegarder C:\Documents and Settings\Nghia Nguyen Dai\Local Settings\Temp\Cookies\nghia nguyen dai@qksrv[1].txt -> Spyware.Cookie.Qksrv : Nettoyer et sauvegarder C:\Documents and Settings\Nghia Nguyen Dai\Local Settings\Temp\Cookies\nghia nguyen dai@as-us.falkag[1].txt -> Spyware.Cookie.Falkag : Nettoyer et sauvegarder C:\Documents and Settings\Nghia Nguyen Dai\Local Settings\Temp\Cookies\nghia nguyen dai@ad.yieldmanager[2].txt -> Spyware.Cookie.Yieldmanager : Nettoyer et sauvegarder C:\Documents and Settings\Nghia Nguyen Dai\Local Settings\Temp\Cookies\nghia nguyen dai@tribalfusion[1].txt -> Spyware.Cookie.Tribalfusion : Nettoyer et sauvegarder C:\Documents and Settings\Nghia Nguyen Dai\Local Settings\Temp\Cookies\nghia nguyen dai@fl01.ct2.comclick[2].txt -> Spyware.Cookie.Comclick : Nettoyer et sauvegarder C:\Documents and Settings\Nghia Nguyen Dai\Local Settings\Temp\Cookies\nghia nguyen dai@sel.as-eu.falkag[1].txt -> Spyware.Cookie.Falkag : Nettoyer et sauvegarder C:\Documents and Settings\Nghia Nguyen Dai\Local Settings\Temp\Cookies\nghia nguyen dai@tribalfusion[2].txt -> Spyware.Cookie.Tribalfusion : Nettoyer et sauvegarder C:\Documents and Settings\Nghia Nguyen Dai\Local Settings\Temp\Cookies\nghia nguyen dai@weborama[1].txt -> Spyware.Cookie.Weborama : Nettoyer et sauvegarder C:\Documents and Settings\Nghia Nguyen Dai\Local Settings\Temp\Cookies\nghia nguyen dai@bluestreak[2].txt -> Spyware.Cookie.Bluestreak : Nettoyer et sauvegarder C:\Documents and Settings\Nghia Nguyen Dai\Local Settings\Temp\Cookies\nghia nguyen dai@statcounter[1].txt -> Spyware.Cookie.Statcounter : Nettoyer et sauvegarder C:\Documents and Settings\Nghia Nguyen Dai\Local Settings\Temp\Cookies\nghia nguyen dai@ads.pointroll[2].txt -> Spyware.Cookie.Pointroll : Nettoyer et sauvegarder C:\Documents and Settings\Nghia Nguyen Dai\Local Settings\Temp\Cookies\nghia nguyen dai@questionmarket[2].txt -> Spyware.Cookie.Questionmarket : Nettoyer et sauvegarder C:\Documents and Settings\Nghia Nguyen Dai\Local Settings\Temp\Cookies\nghia nguyen dai@content.overture[1].txt -> Spyware.Cookie.Overture : Nettoyer et sauvegarder C:\Documents and Settings\Nghia Nguyen Dai\Local Settings\Temp\Cookies\nghia nguyen dai@bidtool.overture[1].txt -> Spyware.Cookie.Overture : Nettoyer et sauvegarder C:\Documents and Settings\Nghia Nguyen Dai\Local Settings\Temp\Cookies\nghia nguyen dai@tradedoubler[3].txt -> Spyware.Cookie.Tradedoubler : Nettoyer et sauvegarder C:\Documents and Settings\Nghia Nguyen Dai\Local Settings\Temp\Cookies\nghia nguyen dai@as-us.falkag[2].txt -> Spyware.Cookie.Falkag : Nettoyer et sauvegarder C:\Documents and Settings\Nghia Nguyen Dai\Local Settings\Temp\Cookies\nghia nguyen dai@msninvite.112.2o7[1].txt -> Spyware.Cookie.2o7 : Nettoyer et sauvegarder C:\Documents and Settings\Nghia Nguyen Dai\Local Settings\Temp\Cookies\nghia nguyen dai@estat[2].txt -> Spyware.Cookie.Estat : Nettoyer et sauvegarder C:\Documents and Settings\Nghia Nguyen Dai\Local Settings\Temp\Cookies\nghia nguyen dai@ford.112.2o7[1].txt -> Spyware.Cookie.2o7 : Nettoyer et sauvegarder C:\Documents and Settings\Nghia Nguyen Dai\Local Settings\Temp\Cookies\nghia nguyen dai@adtech[3].txt -> Spyware.Cookie.Adtech : Nettoyer et sauvegarder C:\Documents and Settings\Nghia Nguyen Dai\Local Settings\Temp\Cookies\nghia nguyen dai@ad.yieldmanager[1].txt -> Spyware.Cookie.Yieldmanager : Nettoyer et sauvegarder C:\Documents and Settings\Nghia Nguyen Dai\Local Settings\Temp\Cookies\nghia nguyen dai@112.2o7[1].txt -> Spyware.Cookie.2o7 : Nettoyer et sauvegarder C:\Documents and Settings\Nghia Nguyen Dai\Local Settings\Temp\Cookies\nghia nguyen dai@serving-sys[3].txt -> Spyware.Cookie.Serving-sys : Nettoyer et sauvegarder C:\Documents and Settings\Nghia Nguyen Dai\Local Settings\Temp\Cookies\nghia nguyen dai@rotator.adjuggler[2].txt -> Spyware.Cookie.Adjuggler : Nettoyer et sauvegarder C:\Documents and Settings\Nghia Nguyen Dai\Local Settings\Temp\Cookies\nghia nguyen dai@casalemedia[1].txt -> Spyware.Cookie.Casalemedia : Nettoyer et sauvegarder C:\Documents and Settings\Nghia Nguyen Dai\Local Settings\Temp\Cookies\nghia nguyen dai@msnportal.112.2o7[1].txt -> Spyware.Cookie.2o7 : Nettoyer et sauvegarder C:\Documents and Settings\Nghia Nguyen Dai\Local Settings\Temp\Cookies\nghia nguyen dai@weborama[2].txt -> Spyware.Cookie.Weborama : Nettoyer et sauvegarder C:\Documents and Settings\Nghia Nguyen Dai\Local Settings\Temp\Cookies\nghia nguyen dai@tradedoubler[1].txt -> Spyware.Cookie.Tradedoubler : Nettoyer et sauvegarder C:\Documents and Settings\Nghia Nguyen Dai\Local Settings\Temp\Cookies\nghia nguyen dai@247realmedia[2].txt -> Spyware.Cookie.247realmedia : Nettoyer et sauvegarder C:\Documents and Settings\Nghia Nguyen Dai\Local Settings\Temp\Cookies\nghia nguyen dai@questionmarket[1].txt -> Spyware.Cookie.Questionmarket : Nettoyer et sauvegarder C:\Documents and Settings\Nghia Nguyen Dai\Local Settings\Temp\Cookies\nghia nguyen dai@2o7[2].txt -> Spyware.Cookie.2o7 : Nettoyer et sauvegarder C:\Documents and Settings\Nghia Nguyen Dai\Local Settings\Temp\Cookies\nghia nguyen dai@bluestreak[1].txt -> Spyware.Cookie.Bluestreak : Nettoyer et sauvegarder C:\Documents and Settings\Nghia Nguyen Dai\Local Settings\Temp\Cookies\nghia nguyen dai@statcounter[3].txt -> Spyware.Cookie.Statcounter : Nettoyer et sauvegarder C:\Documents and Settings\Nghia Nguyen Dai\Local Settings\Temp\Cookies\nghia nguyen dai@ads.pointroll[1].txt -> Spyware.Cookie.Pointroll : Nettoyer et sauvegarder C:\Documents and Settings\Nghia Nguyen Dai\Local Settings\Temp\Cookies\nghia nguyen dai@server.iad.liveperson[2].txt -> Spyware.Cookie.Liveperson : Nettoyer et sauvegarder C:\Documents and Settings\Nghia Nguyen Dai\Local Settings\Temp\Cookies\nghia nguyen dai@www.smartadserver[3].txt -> Spyware.Cookie.Smartadserver : Nettoyer et sauvegarder C:\Documents and Settings\Nghia Nguyen Dai\Local Settings\Temp\Cookies\nghia nguyen dai@as1.falkag[2].txt -> Spyware.Cookie.Falkag : Nettoyer et
  18. Nghia
    je comprend pas, j'ai téléchargé : EasyCleaner de Toni Helenius mais quand je clique dessus, rien ne se passe... J'ai installé ewido
  19. Nghia
    Oui j'ai toujours ce problème. J'ai supprimé le sys.exe et vidé la corbeille + redémarrage . Ca n'a rien changé. Note que le problème apparait aussi avec le Clavier Visuel de Microsoft. Je vais maintenant suivre ta procédure et je te dis. Merci encore de ton aide!
  20. Nghia
    Apparemment j'avais pas mal de merdes, dont un adware : Incident Statut Analyse Adware:adware/wintools No Désinfecté C:\sys.exe Spyware:Cookie/Adtech No Désinfecté C:\Documents and Settings\Nghia Nguyen Dai\Local Settings\Temp\Cookies\nghia nguyen dai@adtech[1].txt Spyware:Cookie/2o7.net No Désinfecté C:\Documents and Settings\Nghia Nguyen Dai\Local Settings\Temp\Cookies\nghia nguyen dai@2o7[1].txt Spyware:Cookie/Belnk No Désinfecté C:\Documents and Settings\Nghia Nguyen Dai\Local Settings\Temp\Cookies\nghia nguyen dai@belnk[1].txt Spyware:Cookie/Adserver No Désinfecté C:\Documents and Settings\Nghia Nguyen Dai\Local Settings\Temp\Cookies\nghia nguyen dai@z1.adserver[2].txt Spyware:Cookie/web-stat No Désinfecté C:\Documents and Settings\Nghia Nguyen Dai\Local Settings\Temp\Cookies\nghia nguyen dai@www.web-stat[2].txt Spyware:Cookie/Belnk No Désinfecté C:\Documents and Settings\Nghia Nguyen Dai\Local Settings\Temp\Cookies\nghia nguyen dai@dist.belnk[2].txt Spyware:Cookie/Searchportal No Désinfecté C:\Documents and Settings\Nghia Nguyen Dai\Local Settings\Temp\Cookies\nghia nguyen dai@searchportal.information[2].txt Spyware:Cookie/Traffic Marketplace No Désinfecté C:\Documents and Settings\Nghia Nguyen Dai\Local Settings\Temp\Cookies\nghia nguyen dai@trafficmp[1].txt Spyware:Cookie/Overture No Désinfecté C:\Documents and Settings\Nghia Nguyen Dai\Local Settings\Temp\Cookies\nghia nguyen dai@overture[1].txt Spyware:Cookie/Cgi-bin No Désinfecté C:\Documents and Settings\Nghia Nguyen Dai\Local Settings\Temp\Cookies\nghia nguyen dai@cgi-bin[2].txt Spyware:Cookie/Toplist No Désinfecté C:\Documents and Settings\Nghia Nguyen Dai\Local Settings\Temp\Cookies\nghia nguyen dai@toplist[1].txt Spyware:Cookie/Serving-sys No Désinfecté C:\Documents and Settings\Nghia Nguyen Dai\Local Settings\Temp\Cookies\nghia nguyen dai@serving-sys[1].txt Spyware:Cookie/did-it No Désinfecté C:\Documents and Settings\Nghia Nguyen Dai\Local Settings\Temp\Cookies\nghia nguyen dai@did-it[1].txt Spyware:Cookie/Falkag No Désinfecté C:\Documents and Settings\Nghia Nguyen Dai\Local Settings\Temp\Cookies\nghia nguyen dai@as-eu.falkag[2].txt Spyware:Cookie/Maxserving No Désinfecté C:\Documents and Settings\Nghia Nguyen Dai\Local Settings\Temp\Cookies\nghia nguyen dai@maxserving[2].txt Spyware:Cookie/Zedo No Désinfecté C:\Documents and Settings\Nghia Nguyen Dai\Local Settings\Temp\Cookies\nghia nguyen dai@zedo[2].txt Spyware:Cookie/QkSrv No Désinfecté C:\Documents and Settings\Nghia Nguyen Dai\Local Settings\Temp\Cookies\nghia nguyen dai@qksrv[1].txt Spyware:Cookie/Azjmp No Désinfecté C:\Documents and Settings\Nghia Nguyen Dai\Local Settings\Temp\Cookies\nghia nguyen dai@azjmp[2].txt Spyware:Cookie/Falkag No Désinfecté C:\Documents and Settings\Nghia Nguyen Dai\Local Settings\Temp\Cookies\nghia nguyen dai@as-us.falkag[1].txt Spyware:Cookie/YieldManager No Désinfecté C:\Documents and Settings\Nghia Nguyen Dai\Local Settings\Temp\Cookies\nghia nguyen dai@ad.yieldmanager[2].txt Spyware:Cookie/Tribalfusion No Désinfecté C:\Documents and Settings\Nghia Nguyen Dai\Local Settings\Temp\Cookies\nghia nguyen dai@tribalfusion[1].txt Spyware:Cookie/Comclick No Désinfecté C:\Documents and Settings\Nghia Nguyen Dai\Local Settings\Temp\Cookies\nghia nguyen dai@fl01.ct2.comclick[2].txt Spyware:Cookie/Falkag No Désinfecté C:\Documents and Settings\Nghia Nguyen Dai\Local Settings\Temp\Cookies\nghia nguyen dai@sel.as-eu.falkag[1].txt Spyware:Cookie/Tribalfusion No Désinfecté C:\Documents and Settings\Nghia Nguyen Dai\Local Settings\Temp\Cookies\nghia nguyen dai@tribalfusion[2].txt Spyware:Cookie/Weborama No Désinfecté C:\Documents and Settings\Nghia Nguyen Dai\Local Settings\Temp\Cookies\nghia nguyen dai@weborama[1].txt Spyware:Cookie/Yadro No Désinfecté C:\Documents and Settings\Nghia Nguyen Dai\Local Settings\Temp\Cookies\nghia nguyen dai@yadro[2].txt Spyware:Cookie/Bluestreak No Désinfecté C:\Documents and Settings\Nghia Nguyen Dai\Local Settings\Temp\Cookies\nghia nguyen dai@bluestreak[2].txt Spyware:Cookie/Humanclick No Désinfecté C:\Documents and Settings\Nghia Nguyen Dai\Local Settings\Temp\Cookies\nghia nguyen dai@hc2.humanclick[1].txt Spyware:Cookie/Apmebf No Désinfecté C:\Documents and Settings\Nghia Nguyen Dai\Local Settings\Temp\Cookies\nghia nguyen dai@apmebf[1].txt Spyware:Cookie/Xiti No Désinfecté C:\Documents and Settings\Nghia Nguyen Dai\Local Settings\Temp\Cookies\nghia nguyen dai@xiti[2].txt Spyware:Cookie/RealMedia No Désinfecté C:\Documents and Settings\Nghia Nguyen Dai\Local Settings\Temp\Cookies\nghia nguyen dai@realmedia[2].txt Spyware:Cookie/Statcounter No Désinfecté C:\Documents and Settings\Nghia Nguyen Dai\Local Settings\Temp\Cookies\nghia nguyen dai@statcounter[1].txt Spyware:Cookie/PointRoll No Désinfecté C:\Documents and Settings\Nghia Nguyen Dai\Local Settings\Temp\Cookies\nghia nguyen dai@ads.pointroll[2].txt Spyware:Cookie/QuestionMarket No Désinfecté C:\Documents and Settings\Nghia Nguyen Dai\Local Settings\Temp\Cookies\nghia nguyen dai@questionmarket[2].txt Spyware:Cookie/Tradedoubler No Désinfecté C:\Documents and Settings\Nghia Nguyen Dai\Local Settings\Temp\Cookies\nghia nguyen dai@tradedoubler[3].txt Spyware:Cookie/Falkag No Désinfecté C:\Documents and Settings\Nghia Nguyen Dai\Local Settings\Temp\Cookies\nghia nguyen dai@as-us.falkag[2].txt Spyware:Cookie/Adtech No Désinfecté C:\Documents and Settings\Nghia Nguyen Dai\Local Settings\Temp\Cookies\nghia nguyen dai@adtech[3].txt Spyware:Cookie/YieldManager No Désinfecté C:\Documents and Settings\Nghia Nguyen Dai\Local Settings\Temp\Cookies\nghia nguyen dai@ad.yieldmanager[1].txt Spyware:Cookie/2o7.net No Désinfecté C:\Documents and Settings\Nghia Nguyen Dai\Local Settings\Temp\Cookies\nghia nguyen dai@112.2o7[1].txt Spyware:Cookie/Serving-sys No Désinfecté C:\Documents and Settings\Nghia Nguyen Dai\Local Settings\Temp\Cookies\nghia nguyen dai@serving-sys[3].txt Spyware:Cookie/Casalemedia No Désinfecté C:\Documents and Settings\Nghia Nguyen Dai\Local Settings\Temp\Cookies\nghia nguyen dai@casalemedia[1].txt Spyware:Cookie/Weborama No Désinfecté C:\Documents and Settings\Nghia Nguyen Dai\Local Settings\Temp\Cookies\nghia nguyen dai@weborama[2].txt Spyware:Cookie/Tradedoubler No Désinfecté C:\Documents and Settings\Nghia Nguyen Dai\Local Settings\Temp\Cookies\nghia nguyen dai@tradedoubler[1].txt Spyware:Cookie/24/7 Realmedia No Désinfecté C:\Documents and Settings\Nghia Nguyen Dai\Local Settings\Temp\Cookies\nghia nguyen dai@247realmedia[2].txt Spyware:Cookie/QuestionMarket No Désinfecté C:\Documents and Settings\Nghia Nguyen Dai\Local Settings\Temp\Cookies\nghia nguyen dai@questionmarket[1].txt Spyware:Cookie/Belnk No Désinfecté C:\Documents and Settings\Nghia Nguyen Dai\Local Settings\Temp\Cookies\nghia nguyen dai@belnk[2].txt Spyware:Cookie/Belnk No Désinfecté C:\Documents and Settings\Nghia Nguyen Dai\Local Settings\Temp\Cookies\nghia nguyen dai@dist.belnk[3].txt Spyware:Cookie/2o7.net No Désinfecté C:\Documents and Settings\Nghia Nguyen Dai\Local Settings\Temp\Cookies\nghia nguyen dai@2o7[2].txt Spyware:Cookie/Bluestreak No Désinfecté C:\Documents and Settings\Nghia Nguyen Dai\Local Settings\Temp\Cookies\nghia nguyen dai@bluestreak[1].txt Spyware:Cookie/fe.lea.lycos No Désinfecté C:\Documents and Settings\Nghia Nguyen Dai\Local Settings\Temp\Cookies\nghia nguyen dai@fe.lea.lycos[1].txt Spyware:Cookie/Statcounter No Désinfecté C:\Documents and Settings\Nghia Nguyen Dai\Local Settings\Temp\Cookies\nghia nguyen dai@statcounter[3].txt Spyware:Cookie/PointRoll No Désinfecté C:\Documents and Settings\Nghia Nguyen Dai\Local Settings\Temp\Cookies\nghia nguyen dai@ads.pointroll[1].txt Spyware:Cookie/fe.lea.lycos No Désinfecté C:\Documents and Settings\Nghia Nguyen Dai\Local Settings\Temp\Cookies\nghia nguyen dai@fe.lea.lycos[2].txt Spyware:Cookie/Server.iad.Liveperson No Désinfecté C:\Documents and Settings\Nghia Nguyen Dai\Local Settings\Temp\Cookies\nghia nguyen dai@server.iad.liveperson[2].txt Spyware:Cookie/Falkag No Désinfecté C:\Documents and Settings\Nghia Nguyen Dai\Local Settings\Temp\Cookies\nghia nguyen dai@as1.falkag[2].txt Spyware:Cookie/Xiti No Désinfecté C:\Documents and Settings\Nghia Nguyen Dai\Local Settings\Temp\Cookies\nghia nguyen dai@xiti[1].txt Virus:W32/Bagle.pwdzip Désinfecté Dossiers personnels\Deleted Items\Re:\Garry.zip Virus:W32/Bagle.pwdzip Désinfecté Dossiers personnels\Deleted Items\Re:\Dog.zip Virus:W32/Bagle.pwdzip Désinfecté Dossiers personnels\Deleted Items\Re:\Secret.zip Virus:W32/Bagle.pwdzip Désinfecté Dossiers personnels\Deleted Items\Re:\foto2.zip Virus:W32/Bagle.pwdzip Désinfecté Dossiers personnels\Deleted Items\Re:\Cat.zip Virus:W32/Bagle.pwdzip Désinfecté Dossiers personnels\Deleted Items\Re:\Secret.zip Virus:W32/Bagle.pwdzip Désinfecté Dossiers personnels\Deleted Items\Re:\Cat.zip Virus:W32/Bagle.pwdzip Désinfecté Dossiers personnels\Deleted Items\Re:\foto3.zip Virus:W32/Bagle.pwdzip Désinfecté Dossiers personnels\Deleted Items\Re:\Doll.zip Virus:W32/Bagle.pwdzip Désinfecté Dossiers personnels\Deleted Items\Re:\foto3.zip Virus:W32/Bagle.pwdzip Désinfecté Dossiers personnels\Deleted Items\Re:\Secret.zip Virus:W32/Bagle.pwdzip Désinfecté Dossiers personnels\Deleted Items\Incoming message\Document.zip Virus:W32/Bagle.pwdzip Désinfecté Dossiers personnels\Deleted Items\Re:\foto2.zip Virus:W32/Bagle.pwdzip Désinfecté Dossiers personnels\Deleted Items\Re:\Fish.zip Virus:W32/Bagle.pwdzip Désinfecté Dossiers personnels\Deleted Items\Re:\Doll.zip Outil indésirable:Application/ServUBased.A No Désinfecté Dossiers personnels\Business\iambic Marketing\MIS\pass\FW: Your FTP Serv-U Registration Key(s)\ServU25d.zip[sERV-U32.EXE] Virus:W97M/AntiMarc.A Désinfecté Dossiers personnels\Business\BizDev\Capitale Media\Marketing\Old projects\entreprises\TR: PARTIE I : LE CADRE DE L'ETUDE\Synthèse.doc Virus:W97M/AntiMarc.A Désinfecté Dossiers personnels\Business\BizDev\Capitale Media\Marketing\Old projects\entreprises\TR: PARTIE I : LE CADRE DE L'ETUDE\Questionnaire RM Final.doc Virus:W32/Netsky.C.worm Désinfecté Dossiers personnels\Business\BizDev\Capitale Media\Marketing\Old projects\MobilePromos\unsub\hello\intimate stuff.zip[intimate stuff.htm.pif] Virus:W32/Bagle.pwdzip Désinfecté Dossiers personnels\Business\BizDev\Capitale Media\Marketing\Old projects\MobilePromos\unsub\E-mail account security warning.\Information.zip Virus:W32/Netsky.C.worm Désinfecté Dossiers personnels\Business\BizDev\Capitale Media\Marketing\Old projects\MobilePromos\unsub\Re: <5664ddff?$??§2>\portmoney.zip[portmoney.txt.exe] Virus:W32/Mytob.MI.worm Désinfecté Dossiers personnels\Boîte de réception\Your password has been updated\cydyfdt.zip[cydyfdt.txt .pif] Virus:W32/Bagle.pwdzip Désinfecté Dossiers personnels\Courrier indésirable\Re:\Doll.zip Outil indésirable:Application/ServUBased.A No Désinfecté Dossiers personnels\iambic\MIS\pass\FW: Your FTP Serv-U Registration Key(s)\ServU25d.zip[sERV-U32.EXE] Virus:W97M/AntiMarc.A Désinfecté Dossiers personnels\iambic\Pascal\entreprises\TR: PARTIE I : LE CADRE DE L'ETUDE\Synthèse.doc Virus:W97M/AntiMarc.A Désinfecté Dossiers personnels\iambic\Pascal\entreprises\TR: PARTIE I : LE CADRE DE L'ETUDE\Questionnaire RM Final.doc Virus:W97M/AntiMarc.A Désinfecté Dossiers personnels\iambic\Pascal\entreprises\FW: Evaluation de Projet\1_page de garde.doc Virus:W97M/AntiMarc.A Désinfecté Dossiers personnels\iambic\Pascal\entreprises\FW: Evaluation de Projet\PARTIE I.doc Virus:W97M/AntiMarc.A Désinfecté Dossiers personnels\iambic\Pascal\entreprises\FW: Evaluation de Projet\PARTIE II.doc Virus:W97M/AntiMarc.A Désinfecté Dossiers personnels\iambic\Pascal\entreprises\FW: Evaluation de Projet\PARTIE III.doc Virus:W97M/AntiMarc.A Désinfecté Dossiers personnels\iambic\Pascal\entreprises\FW: Evaluation de Projet\Questionnaire Evaluation de Projet.doc Spyware:Cookie/Weborama No Désinfecté C:\Documents and Settings\Nghia Nguyen Dai\Cookies\nghia nguyen dai@weborama[2].txt Spyware:Cookie/Xiti No Désinfecté C:\Documents and Settings\Nghia Nguyen Dai\Cookies\nghia nguyen dai@xiti[5].txt Spyware:Cookie/go No Désinfecté C:\Documents and Settings\Nghia Nguyen Dai\Cookies\nghia nguyen dai@go[3].txt Spyware:Cookie/2o7.net No Désinfecté C:\Documents and Settings\Nghia Nguyen Dai\Cookies\nghia nguyen dai@112.2o7[2].txt Spyware:Cookie/Comclick No Désinfecté C:\Documents and Settings\Nghia Nguyen Dai\Cookies\nghia nguyen dai@fl01.ct2.comclick[5].txt Spyware:Cookie/Xiti No Désinfecté C:\Documents and Settings\Nghia Nguyen Dai\Cookies\nghia nguyen dai@xiti[2].txt Spyware:Cookie/2o7.net No Désinfecté C:\Documents and Settings\Nghia Nguyen Dai\Cookies\nghia nguyen dai@2o7[5].txt Spyware:Cookie/go No Désinfecté C:\Documents and Settings\Nghia Nguyen Dai\Cookies\nghia nguyen dai@go[2].txt Spyware:Cookie/Adtech No Désinfecté C:\Documents and Settings\Nghia Nguyen Dai\Cookies\nghia nguyen dai@adtech[3].txt Spyware:Cookie/Cgi-bin No Désinfecté C:\Documents and Settings\Nghia Nguyen Dai\Cookies\nghia nguyen dai@cgi-bin[4].txt Spyware:Cookie/Com.com No Désinfecté C:\Documents and Settings\Nghia Nguyen Dai\Cookies\nghia nguyen dai@com[4].txt Spyware:Cookie/QuestionMarket No Désinfecté C:\Documents and Settings\Nghia Nguyen Dai\Cookies\nghia nguyen dai@questionmarket[3].txt Spyware:Cookie/Zedo No Désinfecté C:\Documents and Settings\Nghia Nguyen Dai\Cookies\nghia nguyen dai@zedo[3].txt Spyware:Cookie/YieldManager No Désinfecté C:\Documents and Settings\Nghia Nguyen Dai\Cookies\nghia nguyen dai@ad.yieldmanager[2].txt Spyware:Cookie/did-it No Désinfecté C:\Documents and Settings\Nghia Nguyen Dai\Cookies\nghia nguyen dai@did-it[2].txt Spyware:Cookie/Com.com No Désinfecté C:\Documents and Settings\Nghia Nguyen Dai\Cookies\nghia nguyen dai@com[2].txt Spyware:Cookie/Toplist No Désinfecté C:\Documents and Settings\Nghia Nguyen Dai\Cookies\nghia nguyen dai@toplist[3].txt Spyware:Cookie/Tribalfusion No Désinfecté C:\Documents and Settings\Nghia Nguyen Dai\Cookies\nghia nguyen dai@tribalfusion[5].txt Spyware:Cookie/Tradedoubler No Désinfecté C:\Documents and Settings\Nghia Nguyen Dai\Cookies\nghia nguyen dai@tradedoubler[5].txt Spyware:Cookie/Weborama No Désinfecté C:\Documents and Settings\Nghia Nguyen Dai\Cookies\nghia nguyen dai@weborama[5].txt Spyware:Cookie/did-it No Désinfecté C:\Documents and Settings\Nghia Nguyen Dai\Cookies\nghia nguyen dai@did-it[1].txt Spyware:Cookie/Server.iad.Liveperson No Désinfecté C:\Documents and Settings\Nghia Nguyen Dai\Cookies\nghia nguyen dai@server.iad.liveperson[1].txt Spyware:Cookie/2o7.net No Désinfecté C:\Documents and Settings\Nghia Nguyen Dai\Cookies\nghia nguyen dai@112.2o7[4].txt Spyware:Cookie/Yadro No Désinfecté C:\Documents and Settings\Nghia Nguyen Dai\Cookies\nghia nguyen dai@yadro[3].txt Spyware:Cookie/DomainSponsor No Désinfecté C:\Documents and Settings\Nghia Nguyen Dai\Cookies\nghia nguyen dai@landing.domainsponsor[1].txt Spyware:Cookie/Belnk No Désinfecté C:\Documents and Settings\Nghia Nguyen Dai\Cookies\nghia nguyen dai@belnk[1].txt Spyware:Cookie/Falkag No Désinfecté C:\Documents and Settings\Nghia Nguyen Dai\Cookies\nghia nguyen dai@as1.falkag[5].txt Spyware:Cookie/Belnk No Désinfecté C:\Documents and Settings\Nghia Nguyen Dai\Cookies\nghia nguyen dai@dist.belnk[6].txt Spyware:Cookie/BurstNet No Désinfecté C:\Documents and Settings\Nghia Nguyen Dai\Cookies\nghia nguyen dai@burstnet[1].txt Spyware:Cookie/Toplist No Désinfecté C:\Documents and Settings\Nghia Nguyen Dai\Cookies\nghia nguyen dai@toplist[1].txt Spyware:Cookie/FastClick No Désinfecté C:\Documents and Settings\Nghia Nguyen Dai\Cookies\nghia nguyen dai@fastclick[5].txt Spyware:Cookie/Casalemedia No Désinfecté C:\Documents and Settings\Nghia Nguyen Dai\Cookies\nghia nguyen dai@casalemedia[5].txt Spyware:Cookie/Statcounter No Désinfecté C:\Documents and Settings\Nghia Nguyen Dai\Cookies\nghia nguyen dai@statcounter[3].txt Spyware:Cookie/Bluestreak No Désinfecté C:\Documents and Settings\Nghia Nguyen Dai\Cookies\nghia nguyen dai@bluestreak[2].txt Spyware:Cookie/24/7 Realmedia No Désinfecté C:\Documents and Settings\Nghia Nguyen Dai\Cookies\nghia nguyen dai@247realmedia[3].txt Spyware:Cookie/Belnk No Désinfecté C:\Documents and Settings\Nghia Nguyen Dai\Cookies\nghia nguyen dai@dist.belnk[2].txt Spyware:Cookie/BurstNet No Désinfecté C:\Documents and Settings\Nghia Nguyen Dai\Cookies\nghia nguyen dai@burstnet[2].txt Spyware:Cookie/Falkag No Désinfecté C:\Documents and Settings\Nghia Nguyen Dai\Cookies\nghia nguyen dai@as1.falkag[2].txt Spyware:Cookie/Qsrch No Désinfecté C:\Documents and Settings\Nghia Nguyen Dai\Cookies\nghia nguyen dai@qsrch[1].txt Spyware:Cookie/Belnk No Désinfecté C:\Documents and Settings\Nghia Nguyen Dai\Cookies\nghia nguyen dai@dist.belnk[3].txt Spyware:Cookie/Casalemedia No Désinfecté C:\Documents and Settings\Nghia Nguyen Dai\Cookies\nghia nguyen dai@casalemedia[2].txt Spyware:Cookie/RealMedia No Désinfecté C:\Documents and Settings\Nghia Nguyen Dai\Cookies\nghia nguyen dai@realmedia[1].txt Spyware:Cookie/Yadro No Désinfecté C:\Documents and Settings\Nghia Nguyen Dai\Cookies\nghia nguyen dai@yadro[1].txt Spyware:Cookie/SpywareStormer No Désinfecté C:\Documents and Settings\Nghia Nguyen Dai\Cookies\nghia nguyen dai@spywarestormer[1].txt Spyware:Cookie/BurstNet No Désinfecté C:\Documents and Settings\Nghia Nguyen Dai\Cookies\nghia nguyen dai@burstnet[4].txt Spyware:Cookie/Bluestreak No Désinfecté C:\Documents and Settings\Nghia Nguyen Dai\Cookies\nghia nguyen dai@bluestreak[1].txt Spyware:Cookie/24/7 Realmedia No Désinfecté C:\Documents and Settings\Nghia Nguyen Dai\Cookies\nghia nguyen dai@247realmedia[2].txt Spyware:Cookie/Tribalfusion No Désinfecté C:\Documents and Settings\Nghia Nguyen Dai\Cookies\nghia nguyen dai@tribalfusion[2].txt Spyware:Cookie/Toplist No Désinfecté C:\Documents and Settings\Nghia Nguyen Dai\Cookies\nghia nguyen dai@toplist[2].txt Spyware:Cookie/CentrPort No Désinfecté C:\Documents and Settings\Nghia Nguyen Dai\Cookies\nghia nguyen dai@centrport[1].txt Spyware:Cookie/2o7.net No Désinfecté C:\Documents and Settings\Nghia Nguyen Dai\Cookies\nghia nguyen dai@2o7[1].txt Spyware:Cookie/Tradedoubler No Désinfecté C:\Documents and Settings\Nghia Nguyen Dai\Cookies\nghia nguyen dai@tradedoubler[2].txt Spyware:Cookie/Adrevolver No Désinfecté C:\Documents and Settings\Nghia Nguyen Dai\Cookies\nghia nguyen dai@adrevolver[2].txt Spyware:Cookie/Screensavers No Désinfecté C:\Documents and Settings\Nghia Nguyen Dai\Cookies\nghia nguyen dai@i.screensavers[2].txt Spyware:Cookie/Clicktracks No Désinfecté C:\Documents and Settings\Nghia Nguyen Dai\Cookies\nghia nguyen dai@stats1.clicktracks[2].txt Spyware:Cookie/Serving-sys No Désinfecté C:\Documents and Settings\Nghia Nguyen Dai\Cookies\nghia nguyen dai@serving-sys[1].txt Spyware:Cookie/2o7.net No Désinfecté C:\Documents and Settings\Nghia Nguyen Dai\Cookies\nghia nguyen dai@112.2o7[3].txt Spyware:Cookie/Adserver No Désinfecté C:\Documents and Settings\Nghia Nguyen Dai\Cookies\nghia nguyen dai@z1.adserver[1].txt Spyware:Cookie/fe.lea.lycos No Désinfecté C:\Documents and Settings\Nghia Nguyen Dai\Cookies\nghia nguyen dai@fe.lea.lycos[1].txt Spyware:Cookie/Target No Désinfecté C:\Documents and Settings\Nghia Nguyen Dai\Cookies\nghia nguyen dai@target[2].txt Spyware:Cookie/Tradedoubler No Désinfecté C:\Documents and Settings\Nghia Nguyen Dai\Cookies\nghia nguyen dai@tradedoubler[3].txt Spyware:Cookie/Seeq No Désinfecté C:\Documents and Settings\Nghia Nguyen Dai\Cookies\nghia nguyen dai@www48.seeq[1].txt Spyware:Cookie/360i No Désinfecté C:\Documents and Settings\Nghia Nguyen Dai\Cookies\nghia nguyen dai@ct.360i[1].txt Spyware:Cookie/FastClick No Désinfecté C:\Documents and Settings\Nghia Nguyen Dai\Cookies\nghia nguyen dai@fastclick[2].txt Spyware:Cookie/adstat No Désinfecté C:\Documents and Settings\Nghia Nguyen Dai\Cookies\nghia nguyen dai@ad.stat.4u[1].txt Spyware:Cookie/Adrevolver No Désinfecté C:\Documents and Settings\Nghia Nguyen Dai\Cookies\nghia nguyen dai@adrevolver[3].txt Spyware:Cookie/WUpd No Désinfecté C:\Documents and Settings\Nghia Nguyen Dai\Cookies\nghia nguyen dai@revenue[1].txt Spyware:Cookie/Searchportal No Désinfecté C:\Documents and Settings\Nghia Nguyen Dai\Cookies\nghia nguyen dai@searchportal.information[2].txt Spyware:Cookie/Adtech No Désinfecté C:\Documents and Settings\Nghia Nguyen Dai\Cookies\nghia nguyen dai@adtech[2].txt Spyware:Cookie/WinFixer No Désinfecté C:\Documents and Settings\Nghia Nguyen Dai\Cookies\nghia nguyen dai@winfixer[2].txt Spyware:Cookie/SpyLog No Désinfecté C:\Documents and Settings\Nghia Nguyen Dai\Cookies\nghia nguyen dai@spylog[1].txt Spyware:Cookie/Statcounter No Désinfecté C:\Documents and Settings\Nghia Nguyen Dai\Cookies\nghia nguyen dai@statcounter[1].txt Spyware:Cookie/Zedo No Désinfecté C:\Documents and Settings\Nghia Nguyen Dai\Cookies\nghia nguyen dai@zedo[2].txt Spyware:Cookie/Xiti No Désinfecté C:\Documents and Settings\Nghia Nguyen Dai\Cookies\nghia nguyen dai@xiti[3].txt Spyware:Cookie/Banner No Désinfecté C:\Documents and Settings\Nghia Nguyen Dai\Cookies\nghia nguyen dai@banner[1].txt Spyware:Cookie/YieldManager No Désinfecté C:\Documents and Settings\Nghia Nguyen Dai\Cookies\nghia nguyen dai@ad.yieldmanager[1].txt Spyware:Cookie/Comclick No Désinfecté C:\Documents and Settings
  21. Nghia
    Salut Charles, Jsuis en train de le faire
  22. Nghia
    Bonjour à tous, Je vous expose ici un problème qui m'est survenu récemment. J'ai un problème avec la touche accent circonflexe de mon laptop. Quand je tape dessus, j'en ai deux! J'ai parcouru différents forums dont celui ci et apparemment il s'agirait d'un virus KeyLogger. J'ai fait un scan AVG Viruscan, Avast Cleaner, MS OneCare Center, ... aucun virus trouvé et le problème persiste. Voici le log de HiJack This : Logfile of HijackThis v1.99.1 Scan saved at 00:50:15, on 24/01/2006 Platform: Windows XP SP2 (WinNT 5.01.2600) MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180) Running processes: C:\WINDOWS\System32\smss.exe C:\WINDOWS\system32\winlogon.exe C:\WINDOWS\system32\services.exe C:\WINDOWS\system32\lsass.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\System32\svchost.exe C:\WINDOWS\System32\S24EvMon.exe C:\WINDOWS\system32\ZCfgSvc.exe C:\WINDOWS\Explorer.EXE C:\Program Files\Internet Explorer\iexplore.exe C:\WINDOWS\system32\spoolsv.exe C:\WINDOWS\ATK0100\Hcontrol.exe C:\WINDOWS\System32\igfxtray.exe C:\WINDOWS\System32\hkcmd.exe C:\Program Files\Synaptics\SynTP\SynTPLpr.exe C:\Program Files\Synaptics\SynTP\SynTPEnh.exe C:\PROGRA~1\Grisoft\AVGFRE~1\avgcc.exe C:\WINDOWS\system32\LVCOMSX.EXE C:\WINDOWS\system32\rundll32.exe C:\Program Files\Nokia\Nokia PC Suite 6\LaunchApplication.exe C:\Program Files\Fichiers communs\PCSuite\DataLayer\DataLayer.exe C:\Program Files\QuickTime\qttask.exe C:\Program Files\Messenger\msmsgs.exe C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\E_AICN03.EXE C:\PROGRA~1\MSNMES~1\msnmsgr.exe C:\Program Files\Microsoft ActiveSync\wcescomm.exe C:\Program Files\Plaxo\2.6.2.7\PlaxoHelper.exe C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe C:\PROGRA~1\FICHIE~1\PCSuite\Services\SERVIC~1.EXE C:\PROGRA~1\MICROS~3\rapimgr.exe C:\PROGRA~1\Grisoft\AVGFRE~1\avgamsvr.exe C:\PROGRA~1\Grisoft\AVGFRE~1\avgupsvc.exe C:\Program Files\WIDCOMM\Bluetooth Software\bin\btwdins.exe C:\WINDOWS\System32\RegSrvc.exe C:\Program Files\Analog Devices\SoundMAX\SMAgent.exe C:\Program Files\Microsoft AntiSpyware\gcasDtServ.exe C:\WINDOWS\System32\svchost.exe C:\Program Files\Internet Explorer\iexplore.exe C:\WINDOWS\System32\1XConfig.exe C:\WINDOWS\ATK0100\ATKOSD.exe C:\Program Files\Internet Explorer\iexplore.exe C:\Program Files\Internet Explorer\iexplore.exe D:\download\HijackThis.exe R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = http://g.msn.fr/0SEFRFR/SAOS01?FORM=TOOLBR R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://g.msn.fr/0SEFRFR/SAOS01?FORM=TOOLBR R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.pdafrance.com/ R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.pdafrance.com/ R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.pdafrance.com/ R1 - HKCU\Software\Microsoft\Internet Explorer\SearchURL,(Default) = http://g.msn.fr/0SEFRFR/SAOS01?FORM=TOOLBR R1 - HKCU\Software\Microsoft\Internet Connection Wizard,ShellNext = http://www.asus.com.tw/ R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = localhost R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens O2 - BHO: Barre d'outils MSN Search Helper - {BDBD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\MSN Toolbar Suite\TB\02.05.0000.1105\fr-fr\msntb.dll O3 - Toolbar: Barre d'outils MSN Search - {BDAD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\MSN Toolbar Suite\TB\02.05.0000.1105\fr-fr\msntb.dll O3 - Toolbar: PDAfrance.com toolbar - {9060e54a-3afa-4c51-9a89-4e57dc2558fd} - C:\Program Files\PDAfrance.com\tbPDAf.dll O4 - HKLM\..\Run: [Hcontrol] C:\WINDOWS\ATK0100\Hcontrol.exe O4 - HKLM\..\Run: [igfxTray] C:\WINDOWS\System32\igfxtray.exe O4 - HKLM\..\Run: [HotKeysCmds] C:\WINDOWS\System32\hkcmd.exe O4 - HKLM\..\Run: [synTPLpr] C:\Program Files\Synaptics\SynTP\SynTPLpr.exe O4 - HKLM\..\Run: [synTPEnh] C:\Program Files\Synaptics\SynTP\SynTPEnh.exe O4 - HKLM\..\Run: [PRONoMgr.exe] c:\Program Files\Intel\PROSetWireless\NCS\PROSet\PRONoMgr.exe O4 - HKLM\..\Run: [AVG7_CC] C:\PROGRA~1\Grisoft\AVGFRE~1\avgcc.exe /STARTUP O4 - HKLM\..\Run: [gcasServ] "C:\Program Files\Microsoft AntiSpyware\gcasServ.exe" O4 - HKLM\..\Run: [LVCOMSX] C:\WINDOWS\system32\LVCOMSX.EXE O4 - HKLM\..\Run: [bluetoothAuthenticationAgent] rundll32.exe bthprops.cpl,,BluetoothAuthenticationAgent O4 - HKLM\..\Run: [PCSuiteTrayApplication] C:\Program Files\Nokia\Nokia PC Suite 6\LaunchApplication.exe -onlytray O4 - HKLM\..\Run: [DataLayer] C:\Program Files\Fichiers communs\PCSuite\DataLayer\DataLayer.exe O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime O4 - HKLM\..\Run: [MSConfig] C:\WINDOWS\PCHealth\HelpCtr\Binaries\MSConfig.exe /auto O4 - HKCU\..\Run: [MSMSGS] "C:\Program Files\Messenger\msmsgs.exe" /background O4 - HKCU\..\Run: [EPSON Stylus COLOR 480SXU] C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\E_AICN03.EXE /P25 "EPSON Stylus COLOR 480SXU" /O6 "USB001" /M "Stylus COLOR 480SXU" O4 - HKCU\..\Run: [msnmsgr] "C:\PROGRA~1\MSNMES~1\msnmsgr.exe" /background O4 - HKCU\..\Run: [H/PC Connection Agent] "C:\Program Files\Microsoft ActiveSync\wcescomm.exe" O4 - Global Startup: BTTray.lnk = ? O8 - Extra context menu item: &MSN Search - res://C:\Program Files\MSN Toolbar Suite\TB\02.05.0000.1105\fr-fr\msntb.dll/search.htm O8 - Extra context menu item: Add to &Windows Live Favorites - http://favorites.live.com/quickadd.aspx O8 - Extra context menu item: Browster Prefetch On/Off - res://C:\PROGRA~1\BROWSTER\Browster.dll/CustomPrefetchMenu.htm O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office10\EXCEL.EXE/3000 O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~2\OFFICE11\EXCEL.EXE/3000 O8 - Extra context menu item: Ouvrir dans un nouvel onglet d'arrière-plan - res://C:\Program Files\MSN Toolbar Suite\TAB\02.05.0000.1105\fr-fr\msntabres.dll/229?db7658d5f1964273987e65e5df418c73 O8 - Extra context menu item: Ouvrir dans un nouvel onglet de premier plan - res://C:\Program Files\MSN Toolbar Suite\TAB\02.05.0000.1105\fr-fr\msntabres.dll/230?db7658d5f1964273987e65e5df418c73 O8 - Extra context menu item: Send To &Bluetooth - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie_ctx.htm O8 - Extra context menu item: Subscribe in NewsGator - c:\progra~1\newsga~1\addref.htm O9 - Extra button: Create Mobile Favorite - {2EAF5BB1-070F-11D3-9307-00C04FAE2D4F} - C:\PROGRA~1\MICROS~3\INetRepl.dll O9 - Extra button: (no name) - {2EAF5BB2-070F-11D3-9307-00C04FAE2D4F} - C:\PROGRA~1\MICROS~3\INetRepl.dll O9 - Extra 'Tools' menuitem: Create Mobile Favorite... - {2EAF5BB2-070F-11D3-9307-00C04FAE2D4F} - C:\PROGRA~1\MICROS~3\INetRepl.dll O9 - Extra button: Subscribe in NewsGator - {82B02F23-47B5-4e6c-8A75-8E0527D73989} - C:\Program Files\NewsGator\NGIEExt.dll O9 - Extra button: (no name) - {85d1f590-48f4-11d9-9669-0800200c9a66} - %windir%\bdoscandel.exe (file missing) O9 - Extra 'Tools' menuitem: Uninstall BitDefender Online Scanner v8 - {85d1f590-48f4-11d9-9669-0800200c9a66} - %windir%\bdoscandel.exe (file missing) O9 - Extra button: Recherche - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\OFFICE11\REFIEBAR.DLL O9 - Extra button: @btrez.dll,-4015 - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm O9 - Extra 'Tools' menuitem: @btrez.dll,-4017 - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe O14 - IERESET.INF: START_PAGE_URL=http://www.asus.com.tw O16 - DPF: {08BEF711-06DA-48B2-9534-802ECAA2E4F9} (PlxInstall Class) - https://www.plaxo.com/down/latest/PlaxoInstall.cab O16 - DPF: {17492023-C23A-453E-A040-C7C580BBF700} (Windows Genuine Advantage Validation Tool) - http://go.microsoft.com/fwlink/?linkid=36467&clcid=0x409 O16 - DPF: {34260DAF-318A-4B5A-8778-A861CF2108A5} (FavImport Class) - https://favorites.live.com/cab/ImportAx.cab O16 - DPF: {4F1E5B1A-2A80-42CA-8532-2D05CB959537} (MSN Photo Upload Tool) - http://spaces.msn.com//PhotoUpload/MsnPUpld.cab O16 - DPF: {5D86DDB5-BDF9-441B-9E9E-D4730F4EE499} (BDSCANONLINE Control) - http://download.bitdefender.com/resources/scan8/oscan8.cab O16 - DPF: {5ED80217-570B-4DA9-BF44-BE107C0EC166} (Windows Live Safety Center Base Module) - https://scan.safety.live.com/resource/downl...lscbase3401.cab O16 - DPF: {6DB731A3-B074-4118-8B1C-32511C65D836} (FotovistaPhotoUploader.ctrFpu) - http://www.mypixmania.com/fr/fr/tools/activex/fpu.cab O16 - DPF: {74D05D43-3236-11D4-BDCD-00C04F9A3B61} (HouseCall Control) - http://a840.g.akamai.net/7/840/537/2004061...all/xscan53.cab O16 - DPF: {9122D757-5A4F-4768-82C5-B4171D8556A7} (PhotoPickConvert Class) - http://appdirectory.messenger.msn.com/AppD...ap/PhtPkMSN.cab O16 - DPF: {A18962F6-E6ED-40B1-97C9-1FB36F38BFA8} (Aurigma Image Uploader 3.5 Control) - http://www.photoways.com/clients/ImageUploader3.cab O16 - DPF: {B38870E4-7ECB-40DA-8C6A-595F0A5519FF} (MsnMessengerSetupDownloadControl Class) - http://messenger.msn.com/download/MsnMesse...pDownloader.cab O16 - DPF: {C852B12E-3F08-4099-AF8E-32FD327B88EA} (msnloader Class) - http://rockstar.messenger.msn.com/rockstar.cab O18 - Protocol: bw+0 - {7979A3FB-6795-4429-B087-0C06209783B7} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw+0s - {7979A3FB-6795-4429-B087-0C06209783B7} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw-0 - {7979A3FB-6795-4429-B087-0C06209783B7} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw-0s - {7979A3FB-6795-4429-B087-0C06209783B7} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw00 - {7979A3FB-6795-4429-B087-0C06209783B7} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw00s - {7979A3FB-6795-4429-B087-0C06209783B7} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw10 - {7979A3FB-6795-4429-B087-0C06209783B7} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw10s - {7979A3FB-6795-4429-B087-0C06209783B7} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw20 - {7979A3FB-6795-4429-B087-0C06209783B7} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw20s - {7979A3FB-6795-4429-B087-0C06209783B7} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw30 - {7979A3FB-6795-4429-B087-0C06209783B7} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw30s - {7979A3FB-6795-4429-B087-0C06209783B7} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw40 - {7979A3FB-6795-4429-B087-0C06209783B7} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw40s - {7979A3FB-6795-4429-B087-0C06209783B7} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw50 - {7979A3FB-6795-4429-B087-0C06209783B7} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw50s - {7979A3FB-6795-4429-B087-0C06209783B7} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw60 - {7979A3FB-6795-4429-B087-0C06209783B7} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw60s - {7979A3FB-6795-4429-B087-0C06209783B7} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw70 - {7979A3FB-6795-4429-B087-0C06209783B7} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw70s - {7979A3FB-6795-4429-B087-0C06209783B7} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw80 - {7979A3FB-6795-4429-B087-0C06209783B7} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw80s - {7979A3FB-6795-4429-B087-0C06209783B7} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw90 - {7979A3FB-6795-4429-B087-0C06209783B7} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw90s - {7979A3FB-6795-4429-B087-0C06209783B7} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwa0 - {7979A3FB-6795-4429-B087-0C06209783B7} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwa0s - {7979A3FB-6795-4429-B087-0C06209783B7} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwb0 - {7979A3FB-6795-4429-B087-0C06209783B7} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwb0s - {7979A3FB-6795-4429-B087-0C06209783B7} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwc0 - {7979A3FB-6795-4429-B087-0C06209783B7} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwc0s - {7979A3FB-6795-4429-B087-0C06209783B7} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwd0 - {7979A3FB-6795-4429-B087-0C06209783B7} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwd0s - {7979A3FB-6795-4429-B087-0C06209783B7} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwe0 - {7979A3FB-6795-4429-B087-0C06209783B7} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwe0s - {7979A3FB-6795-4429-B087-0C06209783B7} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwf0 - {7979A3FB-6795-4429-B087-0C06209783B7} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwf0s - {7979A3FB-6795-4429-B087-0C06209783B7} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwfile-8876480 - {9462A756-7B47-47BC-8C80-C34B9B80B32B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\GAPlugProtocol-8876480.dll O18 - Protocol: bwg0 - {7979A3FB-6795-4429-B087-0C06209783B7} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwg0s - {7979A3FB-6795-4429-B087-0C06209783B7} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwh0 - {7979A3FB-6795-4429-B087-0C06209783B7} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwh0s - {7979A3FB-6795-4429-B087-0C06209783B7} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwi0 - {7979A3FB-6795-4429-B087-0C06209783B7} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwi0s - {7979A3FB-6795-4429-B087-0C06209783B7} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwj0 - {7979A3FB-6795-4429-B087-0C06209783B7} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwj0s - {7979A3FB-6795-4429-B087-0C06209783B7} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwk0 - {7979A3FB-6795-4429-B087-0C06209783B7} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwk0s - {7979A3FB-6795-4429-B087-0C06209783B7} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwl0 - {7979A3FB-6795-4429-B087-0C06209783B7} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwl0s - {7979A3FB-6795-4429-B087-0C06209783B7} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwm0 - {7979A3FB-6795-4429-B087-0C06209783B7} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwm0s - {7979A3FB-6795-4429-B087-0C06209783B7} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwn0 - {7979A3FB-6795-4429-B087-0C06209783B7} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwn0s - {7979A3FB-6795-4429-B087-0C06209783B7} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwo0 - {7979A3FB-6795-4429-B087-0C06209783B7} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwo0s - {7979A3FB-6795-4429-B087-0C06209783B7} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwp0 - {7979A3FB-6795-4429-B087-0C06209783B7} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwp0s - {7979A3FB-6795-4429-B087-0C06209783B7} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwq0 - {7979A3FB-6795-4429-B087-0C06209783B7} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwq0s - {7979A3FB-6795-4429-B087-0C06209783B7} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwr0 - {7979A3FB-6795-4429-B087-0C06209783B7} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwr0s - {7979A3FB-6795-4429-B087-0C06209783B7} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bws0 - {7979A3FB-6795-4429-B087-0C06209783B7} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bws0s - {7979A3FB-6795-4429-B087-0C06209783B7} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwt0 - {7979A3FB-6795-4429-B087-0C06209783B7} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwt0s - {7979A3FB-6795-4429-B087-0C06209783B7} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwu0 - {7979A3FB-6795-4429-B087-0C06209783B7} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwu0s - {7979A3FB-6795-4429-B087-0C06209783B7} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwv0 - {7979A3FB-6795-4429-B087-0C06209783B7} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwv0s - {7979A3FB-6795-4429-B087-0C06209783B7} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bww0 - {7979A3FB-6795-4429-B087-0C06209783B7} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bww0s - {7979A3FB-6795-4429-B087-0C06209783B7} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwx0 - {7979A3FB-6795-4429-B087-0C06209783B7} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwx0s - {7979A3FB-6795-4429-B087-0C06209783B7} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwy0 - {7979A3FB-6795-4429-B087-0C06209783B7} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwy0s - {7979A3FB-6795-4429-B087-0C06209783B7} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwz0 - {7979A3FB-6795-4429-B087-0C06209783B7} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwz0s - {7979A3FB-6795-4429-B087-0C06209783B7} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - "C:\PROGRA~1\MSNMES~1\msgrapp.dll" (file missing) O18 - Protocol: offline-8876480 - {7979A3FB-6795-4429-B087-0C06209783B7} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: talkto - {828030A1-22C1-4009-854F-8E305202313F} - "C:\PROGRA~1\MSNMES~1\msgrapp.dll" (file missing) O20 - AppInit_DLLs: MsgPlusLoader.dll O20 - Winlogon Notify: igfxcui - C:\WINDOWS\SYSTEM32\igfxsrvc.dll O20 - Winlogon Notify: Sebring - c:\WINDOWS\System32\LgNotify.dll O23 - Service: AVG7 Alert Manager Server (Avg7Alrt) - GRISOFT, s.r.o. - C:\PROGRA~1\Grisoft\AVGFRE~1\avgamsvr.exe O23 - Service: AVG7 Update Service (Avg7UpdSvc) - GRISOFT, s.r.o. - C:\PROGRA~1\Grisoft\AVGFRE~1\avgupsvc.exe O23 - Service: Bluetooth Service (btwdins) - WIDCOMM, Inc. - C:\Program Files\WIDCOMM\Bluetooth Software\bin\btwdins.exe O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Fichiers communs\InstallShield\Driver\11\Intel 32\IDriverT.exe O23 - Service: iPodService - Apple Computer, Inc. - C:\Program Files\iPod\bin\iPodService.exe O23 - Service: RegSrvc - Intel Corporation - C:\WINDOWS\System32\RegSrvc.exe O23 - Service: Spectrum24 Event Monitor (S24EventMonitor) - Intel Corporation - C:\WINDOWS\System32\S24EvMon.exe O23 - Service: SoundMAX Agent Service (SoundMAX Agent Service (default)) - Analog Devices, Inc. - C:\Program Files\Analog Devices\SoundMAX\SMAgent.exe Est ce que vous avez des idées? :s
×
×
  • Créer...