cloporty

Un oubli, Je pense que bit defender reste resident et place de nombreux suspects en quarantaine. Peut-etre cette info est utile ??? Je le desactiverai à la prochaine etape et ferai le scan en sans echec. @+

Bonjour Bruce Me revoila apres qques jours. Bonne année d'abord. Voila mon dernier rapport Kaspersky bien long et sans rien de nouveau. Je pense qu'il me faudrait supprimer manuellement en sans échec plusieurs fichiers sans doute ?? J'attends tes conseils avisés. Mon rapport ------------------------------------------------------------------------------- KASPERSKY ON-LINE SCANNER REPORT Wednesday, January 03, 2007 9:27:58 PM Système d'exploitation : Microsoft Windows XP Professional, Service Pack 2 (Build 2600) Kaspersky On-line Scanner version : 5.0.83.0 Dernière mise à jour de la base antivirus Kaspersky : 2/01/2007 Enregistrements dans la base antivirus Kaspersky : 241285 ------------------------------------------------------------------------------- Paramètres d'analyse: Analyser avec la base antivirus suivante: standard Analyser les archives: vrai Analyser les bases de messagerie: vrai Cible de l'analyse - Poste de travail: C:\ D:\ E:\ F:\ K:\ Statistiques de l'analyse: Total d'objets analysés: 737142 Nombre de virus trouvés: 5 Nombre d'objets infectés: 8 / 0 Nombre d'objets suspects: 4 Durée de l'analyse: 24:56:32 Nom de l'objet infecté / Nom du virus / Dernière action C:\Documents and Settings\All Users\Application Data\Microsoft\Dr Watson\user.dmp L'objet est verrouillé ignoré C:\Documents and Settings\LocalService\Local Settings\Temporary Internet Files\Content.IE5\D36C2DPC\1[1].exe.mwt Infecté : Backdoor.Win32.SdBot.aad ignoré C:\Documents and Settings\Yves Cathala\Application Data\Opera\Opera 8.02 BitTorrent beta\mail\store\account0\2004-10.mbs/[From "Your Soulmate" <5612@5480.uniproclaimer.com>][Date Fri, 01 Oct 2004 07:36:35]/html/[From "Quick Pay Advance" <9577@8296.unitransaction.com>][Date Fri, 01 Oct 2004 09:07:04]/html/[From from PC-frank.org (rafaillac.net1.nerim.net [213.41.155.202]) by mwinf0208.wanadoo.fr (SMTP Server) with SMTP id A795B200029A for <cathala.yves@wanadoo.fr>; Fri, 1 Oct 2004 10:28:52 +0200 (CEST)][Date Fri, 01 Oct 2004 11:26:52 +0200]/text Suspect : Email-Worm.Win32.Bagle.mail ignoré C:\Documents and Settings\Yves Cathala\Application Data\Opera\Opera 8.02 BitTorrent beta\mail\store\account0\2004-10.mbs/[From "Your Soulmate" <5612@5480.uniproclaimer.com>][Date Fri, 01 Oct 2004 07:36:35]/html/[From "Quick Pay Advance" <9577@8296.unitransaction.com>][Date Fri, 01 Oct 2004 09:07:04]/html Suspect : Email-Worm.Win32.Bagle.mail ignoré C:\Documents and Settings\Yves Cathala\Application Data\Opera\Opera 8.02 BitTorrent beta\mail\store\account0\2004-10.mbs/[From "Your Soulmate" <5612@5480.uniproclaimer.com>][Date Fri, 01 Oct 2004 07:36:35]/html Suspect : Email-Worm.Win32.Bagle.mail ignoré C:\Documents and Settings\Yves Cathala\Application Data\Opera\Opera 8.02 BitTorrent beta\mail\store\account0\2004-10.mbs Mail Berkeley mbox: suspect - 3 ignoré C:\Documents and Settings\Yves Cathala\Mes documents\FinePrint files\Forms\FPLIMIT4.FP L'objet est verrouillé ignoré C:\Documents and Settings\Yves Cathala\Mes documents\FinePrint files\Forms\invoice.fp L'objet est verrouillé ignoré C:\Documents and Settings\Yves Cathala\Mes documents\FinePrint files\Forms\letterhead.fp L'objet est verrouillé ignoré C:\Program Files\KeeBoo\Users\users.dat L'objet est verrouillé ignoré C:\System Volume Information\MountPointManagerRemoteDatabase L'objet est verrouillé ignoré C:\wbis\Windows\Prefetch\ASPNET_REGIIS.EXE-38397C30.pf L'objet est verrouillé ignoré C:\wbis\Windows\Prefetch\AUPDATE.EXE-2253CB60.pf L'objet est verrouillé ignoré C:\wbis\Windows\Prefetch\CNMSM2V.EXE-03D1377C.pf L'objet est verrouillé ignoré C:\wbis\Windows\Prefetch\CSC.EXE-1113BFA6.pf L'objet est verrouillé ignoré C:\wbis\Windows\Prefetch\CVTRES.EXE-13DEB540.pf L'objet est verrouillé ignoré C:\wbis\Windows\Prefetch\DIVX PLAYER.EXE-2B5FB89F.pf L'objet est verrouillé ignoré C:\wbis\Windows\Prefetch\DIVXPRO52XP2K.EXE-2523DAED.pf L'objet est verrouillé ignoré C:\wbis\Windows\Prefetch\DLLHOST.EXE-1ECB6754.pf L'objet est verrouillé ignoré C:\wbis\Windows\Prefetch\DOTNETFX.EXE-3AA8C78A.pf L'objet est verrouillé ignoré C:\wbis\Windows\Prefetch\DRWTSN32.EXE-2B4B52AC.pf L'objet est verrouillé ignoré C:\wbis\Windows\Prefetch\DUMPREP.EXE-1B46F901.pf L'objet est verrouillé ignoré C:\wbis\Windows\Prefetch\DVDX.EXE-2E0D39F2.pf L'objet est verrouillé ignoré C:\wbis\Windows\Prefetch\DWWIN.EXE-30875ADC.pf L'objet est verrouillé ignoré C:\wbis\Windows\Prefetch\EPROMPTER.EXE-0AE1CC3E.pf L'objet est verrouillé ignoré C:\wbis\Windows\Prefetch\EUDORA.EXE-2B7E1377.pf L'objet est verrouillé ignoré C:\wbis\Windows\Prefetch\EXPLODER.EXE-33BC1B55.pf L'objet est verrouillé ignoré C:\wbis\Windows\Prefetch\EXPLORER.EXE-082F38A9.pf L'objet est verrouillé ignoré C:\wbis\Windows\Prefetch\HELPSVC.EXE-2878DDA2.pf L'objet est verrouillé ignoré C:\wbis\Windows\Prefetch\IDRIVER.EXE-05125BED.pf L'objet est verrouillé ignoré C:\wbis\Windows\Prefetch\IMAPI.EXE-0BF740A4.pf L'objet est verrouillé ignoré C:\wbis\Windows\Prefetch\INSTALL.EXE-37A4BD63.pf L'objet est verrouillé ignoré C:\wbis\Windows\Prefetch\IRALRSHL.EXE-16597FEC.pf L'objet est verrouillé ignoré C:\wbis\Windows\Prefetch\ISUN040C.EXE-0F3FB94D.pf L'objet est verrouillé ignoré C:\wbis\Windows\Prefetch\Layout.ini L'objet est verrouillé ignoré C:\wbis\Windows\Prefetch\LODCTR.EXE-1009C3B4.pf L'objet est verrouillé ignoré C:\wbis\Windows\Prefetch\LOGONUI.EXE-0AF22957.pf L'objet est verrouillé ignoré C:\wbis\Windows\Prefetch\LUCOMS~1.EXE-02DB5950.pf L'objet est verrouillé ignoré C:\wbis\Windows\Prefetch\LUSETUP.EXE-07BEFAD5.pf L'objet est verrouillé ignoré C:\wbis\Windows\Prefetch\MEUHMEUHTV.EXE-2DBD2B17.pf L'objet est verrouillé ignoré C:\wbis\Windows\Prefetch\MIGPOLWIN.EXE-1EFB7D70.pf L'objet est verrouillé ignoré C:\wbis\Windows\Prefetch\MOFCOMP.EXE-01718E95.pf L'objet est verrouillé ignoré C:\wbis\Windows\Prefetch\MSDTC.EXE-0E6E4AF7.pf L'objet est verrouillé ignoré C:\wbis\Windows\Prefetch\MSI22.TMP-0DC995C5.pf L'objet est verrouillé ignoré C:\wbis\Windows\Prefetch\MSI27.TMP-30011CCA.pf L'objet est verrouillé ignoré C:\wbis\Windows\Prefetch\MSI44.TMP-2B32C848.pf L'objet est verrouillé ignoré C:\wbis\Windows\Prefetch\MSI80.TMP-23852748.pf L'objet est verrouillé ignoré C:\wbis\Windows\Prefetch\MSIEXEC.EXE-2F8A8CAE.pf L'objet est verrouillé ignoré C:\wbis\Windows\Prefetch\NAVW32.EXE-286920DF.pf L'objet est verrouillé ignoré C:\wbis\Windows\Prefetch\NDETECT.EXE-16E64095.pf L'objet est verrouillé ignoré C:\wbis\Windows\Prefetch\NGEN.EXE-171CDCC6.pf L'objet est verrouillé ignoré C:\wbis\Windows\Prefetch\NMAIN.EXE-34D44D63.pf L'objet est verrouillé ignoré C:\wbis\Windows\Prefetch\NTOSBOOT-B00DFAAD.pf L'objet est verrouillé ignoré C:\wbis\Windows\Prefetch\OPERA.EXE-1141097F.pf L'objet est verrouillé ignoré C:\wbis\Windows\Prefetch\OPSCAN.EXE-20B6A0BA.pf L'objet est verrouillé ignoré C:\wbis\Windows\Prefetch\PMAGIC.EXE-1E1E65B9.pf L'objet est verrouillé ignoré C:\wbis\Windows\Prefetch\PMAGICNT.EXE-3A3F50C0.pf L'objet est verrouillé ignoré C:\wbis\Windows\Prefetch\POWERQUEST.DRIVE.IMAGE.V7.0.F-023EC54F.pf L'objet est verrouillé ignoré C:\wbis\Windows\Prefetch\POWERQUEST.DRIVE.IMAGE.V7.0.F-09735A82.pf L'objet est verrouillé ignoré C:\wbis\Windows\Prefetch\POWERQUEST.DRIVE.IMAGE.V7.0.F-21A6A2B4.pf L'objet est verrouillé ignoré C:\wbis\Windows\Prefetch\PQIBROWSER.EXE-0896C6BF.pf L'objet est verrouillé ignoré C:\wbis\Windows\Prefetch\PQV2ISECURITY.EXE-2B744D4D.pf L'objet est verrouillé ignoré C:\wbis\Windows\Prefetch\PQV2ISVC.EXE-182CBE09.pf L'objet est verrouillé ignoré C:\wbis\Windows\Prefetch\REGEDIT.EXE-1B606482.pf L'objet est verrouillé ignoré C:\wbis\Windows\Prefetch\REGSVCS.EXE-077D24C2.pf L'objet est verrouillé ignoré C:\wbis\Windows\Prefetch\REGSVR32.EXE-25EEFE2F.pf L'objet est verrouillé ignoré C:\wbis\Windows\Prefetch\REGTLIB.EXE-0CCB81E6.pf L'objet est verrouillé ignoré C:\wbis\Windows\Prefetch\RUNDLL32.EXE-171BE046.pf L'objet est verrouillé ignoré C:\wbis\Windows\Prefetch\RUNDLL32.EXE-1810C9B7.pf L'objet est verrouillé ignoré C:\wbis\Windows\Prefetch\RUNDLL32.EXE-268BFF96.pf L'objet est verrouillé ignoré C:\wbis\Windows\Prefetch\RUNDLL32.EXE-2EC3C756.pf L'objet est verrouillé ignoré C:\wbis\Windows\Prefetch\RUNDLL32.EXE-451FC2C0.pf L'objet est verrouillé ignoré C:\wbis\Windows\Prefetch\RUNDLL32.EXE-466B175F.pf L'objet est verrouillé ignoré C:\wbis\Windows\Prefetch\RUNONCE.EXE-2803F297.pf L'objet est verrouillé ignoré C:\wbis\Windows\Prefetch\SETUP.EXE-393E66AE.pf L'objet est verrouillé ignoré C:\wbis\Windows\Prefetch\SNDVOL32.EXE-383480B7.pf L'objet est verrouillé ignoré C:\wbis\Windows\Prefetch\SPOOLSV.EXE-282F76A7.pf L'objet est verrouillé ignoré C:\wbis\Windows\Prefetch\TASKMGR.EXE-20256C55.pf L'objet est verrouillé ignoré C:\wbis\Windows\Prefetch\TOTALCMD.EXE-2FAE42CE.pf L'objet est verrouillé ignoré C:\wbis\Windows\Prefetch\TRIALSTARTER180DAY.EXE-10D4C9C9.pf L'objet est verrouillé ignoré C:\wbis\Windows\Prefetch\V2ICONSOLE.EXE-05998F52.pf L'objet est verrouillé ignoré C:\wbis\Windows\Prefetch\WEBSHOTS.SCR-06866ABC.pf L'objet est verrouillé ignoré C:\wbis\Windows\Prefetch\WHEREISIT.EXE-00D9E726.pf L'objet est verrouillé ignoré C:\wbis\Windows\Prefetch\WINDVD.EXE-1D1E48A6.pf L'objet est verrouillé ignoré C:\wbis\Windows\Prefetch\WINWORD.EXE-29F5CB89.pf L'objet est verrouillé ignoré C:\wbis\Windows\Prefetch\WMIADAP.EXE-2DF425B2.pf L'objet est verrouillé ignoré C:\wbis\Windows\Prefetch\WMIPRVSE.EXE-28F301A9.pf L'objet est verrouillé ignoré C:\wbis\Windows\Prefetch\WMPLAYER.EXE-18DDEF9C.pf L'objet est verrouillé ignoré C:\wbis\Windows\Prefetch\WUAUCLT.EXE-399A8E72.pf L'objet est verrouillé ignoré C:\wbis\Windows\Prefetch\_INS0432._MP-2C5EC704.pf L'objet est verrouillé ignoré C:\Windows\$NtUninstallKB829558$\dao360.dll L'objet est verrouillé ignoré C:\Windows\$NtUninstallKB829558$\expsrv.dll L'objet est verrouillé ignoré C:\Windows\$NtUninstallKB829558$\msexch40.dll L'objet est verrouillé ignoré C:\Windows\$NtUninstallKB829558$\msexcl40.dll L'objet est verrouillé ignoré C:\Windows\$NtUninstallKB829558$\msjet40.dll L'objet est verrouillé ignoré C:\Windows\$NtUninstallKB829558$\msjetoledb40.dll L'objet est verrouillé ignoré C:\Windows\$NtUninstallKB829558$\msjint40.dll L'objet est verrouillé ignoré C:\Windows\$NtUninstallKB829558$\msjter40.dll L'objet est verrouillé ignoré C:\Windows\$NtUninstallKB829558$\msjtes40.dll L'objet est verrouillé ignoré C:\Windows\$NtUninstallKB829558$\msltus40.dll L'objet est verrouillé ignoré C:\Windows\$NtUninstallKB829558$\mspbde40.dll L'objet est verrouillé ignoré C:\Windows\$NtUninstallKB829558$\msrd2x40.dll L'objet est verrouillé ignoré C:\Windows\$NtUninstallKB829558$\msrd3x40.dll L'objet est verrouillé ignoré C:\Windows\$NtUninstallKB829558$\msrepl40.dll L'objet est verrouillé ignoré C:\Windows\$NtUninstallKB829558$\mstext40.dll L'objet est verrouillé ignoré C:\Windows\$NtUninstallKB829558$\mswdat10.dll L'objet est verrouillé ignoré C:\Windows\$NtUninstallKB829558$\mswstr10.dll L'objet est verrouillé ignoré C:\Windows\$NtUninstallKB829558$\msxbde40.dll L'objet est verrouillé ignoré C:\Windows\$NtUninstallKB829558$\vbajet32.dll L'objet est verrouillé ignoré C:\Windows\Prefetch\layout.ini L'objet est verrouillé ignoré C:\Windowsbase\$NtUninstallKB835732$\callcont.dll L'objet est verrouillé ignoré C:\Windowsbase\$NtUninstallKB835732$\cmdevtgprov.dll L'objet est verrouillé ignoré C:\Windowsbase\$NtUninstallKB835732$\evtgprov.dll L'objet est verrouillé ignoré C:\Windowsbase\$NtUninstallKB835732$\gdi32.dll L'objet est verrouillé ignoré C:\Windowsbase\$NtUninstallKB835732$\h323.tsp L'objet est verrouillé ignoré C:\Windowsbase\$NtUninstallKB835732$\h323msp.dll L'objet est verrouillé ignoré C:\Windowsbase\$NtUninstallKB835732$\helpctr.exe L'objet est verrouillé ignoré C:\Windowsbase\$NtUninstallKB835732$\ipnathlp.dll L'objet est verrouillé ignoré C:\Windowsbase\$NtUninstallKB835732$\lsasrv.dll L'objet est verrouillé ignoré C:\Windowsbase\$NtUninstallKB835732$\mf3216.dll L'objet est verrouillé ignoré C:\Windowsbase\$NtUninstallKB835732$\msasn1.dll L'objet est verrouillé ignoré C:\Windowsbase\$NtUninstallKB835732$\msgina.dll L'objet est verrouillé ignoré C:\Windowsbase\$NtUninstallKB835732$\mst120.dll L'objet est verrouillé ignoré C:\Windowsbase\$NtUninstallKB835732$\netapi32.dll L'objet est verrouillé ignoré C:\Windowsbase\$NtUninstallKB835732$\nmcom.dll L'objet est verrouillé ignoré C:\Windowsbase\$NtUninstallKB835732$\rtcdll.dll L'objet est verrouillé ignoré C:\Windowsbase\$NtUninstallKB835732$\schannel.dll L'objet est verrouillé ignoré C:\ztho6.exe L'objet est verrouillé ignoré D:\Documents and Settings\Administrateur.TITANIUM\Application Data\$_hpcst$.hpc L'objet est verrouillé ignoré D:\Documents and Settings\Administrateur.TITANIUM\Cookies\index.dat L'objet est verrouillé ignoré D:\Documents and Settings\Administrateur.TITANIUM\Local Settings\Application Data\Microsoft\Windows\UsrClass.dat L'objet est verrouillé ignoré D:\Documents and Settings\Administrateur.TITANIUM\Local Settings\Application Data\Microsoft\Windows\UsrClass.dat.LOG L'objet est verrouillé ignoré D:\Documents and Settings\Administrateur.TITANIUM\Local Settings\Historique\History.IE5\index.dat L'objet est verrouillé ignoré D:\Documents and Settings\Administrateur.TITANIUM\Local Settings\Temp\WCESLog.log L'objet est verrouillé ignoré D:\Documents and Settings\Administrateur.TITANIUM\Local Settings\Temporary Internet Files\Content.IE5\index.dat L'objet est verrouillé ignoré D:\Documents and Settings\Administrateur.TITANIUM\NTUSER.DAT L'objet est verrouillé ignoré D:\Documents and Settings\Administrateur.TITANIUM\ntuser.dat.LOG L'objet est verrouillé ignoré D:\Documents and Settings\LocalService.AUTORITE NT.001\Cookies\index.dat L'objet est verrouillé ignoré D:\Documents and Settings\LocalService.AUTORITE NT.001\Local Settings\Application Data\Microsoft\Windows\UsrClass.dat L'objet est verrouillé ignoré D:\Documents and Settings\LocalService.AUTORITE NT.001\Local Settings\Application Data\Microsoft\Windows\UsrClass.dat.LOG L'objet est verrouillé ignoré D:\Documents and Settings\LocalService.AUTORITE NT.001\Local Settings\Historique\History.IE5\index.dat L'objet est verrouillé ignoré D:\Documents and Settings\LocalService.AUTORITE NT.001\Local Settings\Temporary Internet Files\Content.IE5\index.dat L'objet est verrouillé ignoré D:\Documents and Settings\LocalService.AUTORITE NT.001\NTUSER.DAT L'objet est verrouillé ignoré D:\Documents and Settings\LocalService.AUTORITE NT.001\ntuser.dat.LOG L'objet est verrouillé ignoré D:\Documents and Settings\NetworkService.AUTORITE NT.001\Local Settings\Application Data\Microsoft\Windows\UsrClass.dat L'objet est verrouillé ignoré D:\Documents and Settings\NetworkService.AUTORITE NT.001\Local Settings\Application Data\Microsoft\Windows\UsrClass.dat.LOG L'objet est verrouillé ignoré D:\Documents and Settings\NetworkService.AUTORITE NT.001\NTUSER.DAT L'objet est verrouillé ignoré D:\Documents and Settings\NetworkService.AUTORITE NT.001\ntuser.dat.LOG L'objet est verrouillé ignoré D:\Downloads 2006\Torrents\Lphant\phatnotes.standard.edition.4.5.build.4.345.0211.ppc.©racked-tsrh.zip/phatnotes.exe Infecté : Trojan.Win32.Agent.acw ignoré D:\Downloads 2006\Torrents\Lphant\phatnotes.standard.edition.4.5.build.4.345.0211.ppc.©racked-tsrh.zip ZIP: infecté - 1 ignoré D:\Downloads 2006\Torrents\Lphant\STOIK_Smart_Resizer_v1.0_Incl_(k)ey-UCF.zip/keygen.exe Infecté : Trojan.Win32.Agent.acw ignoré D:\Downloads 2006\Torrents\Lphant\STOIK_Smart_Resizer_v1.0_Incl_(k)ey-UCF.zip ZIP: infecté - 1 ignoré D:\Inetpub\catalog.wci\00000002.ps1 L'objet est verrouillé ignoré D:\Inetpub\catalog.wci\00000002.ps2 L'objet est verrouillé ignoré D:\Inetpub\catalog.wci\00010005.ci L'objet est verrouillé ignoré D:\Inetpub\catalog.wci\cicat.fid L'objet est verrouillé ignoré D:\Inetpub\catalog.wci\cicat.hsh L'objet est verrouillé ignoré D:\Inetpub\catalog.wci\CiCL0001.000 L'objet est verrouillé ignoré D:\Inetpub\catalog.wci\CiP10000.000 L'objet est verrouillé ignoré D:\Inetpub\catalog.wci\CiP20000.000 L'objet est verrouillé ignoré D:\Inetpub\catalog.wci\CiPT0000.000 L'objet est verrouillé ignoré D:\Inetpub\catalog.wci\CiSL0001.000 L'objet est verrouillé ignoré D:\Inetpub\catalog.wci\CiSP0000.000 L'objet est verrouillé ignoré D:\Inetpub\catalog.wci\CiST0000.000 L'objet est verrouillé ignoré D:\Inetpub\catalog.wci\CiVP0000.000 L'objet est verrouillé ignoré D:\Inetpub\catalog.wci\INDEX.000 L'objet est verrouillé ignoré D:\Inetpub\catalog.wci\propstor.bk1 L'objet est verrouillé ignoré D:\Inetpub\catalog.wci\propstor.bk2 L'objet est verrouillé ignoré D:\System Volume Information\MountPointManagerRemoteDatabase L'objet est verrouillé ignoré D:\Windows\Debug\PASSWD.LOG L'objet est verrouillé ignoré D:\Windows\system32\config\default L'objet est verrouillé ignoré D:\Windows\system32\config\default.LOG L'objet est verrouillé ignoré D:\Windows\system32\config\SAM L'objet est verrouillé ignoré D:\Windows\system32\config\SAM.LOG L'objet est verrouillé ignoré D:\Windows\system32\config\SECURITY L'objet est verrouillé ignoré D:\Windows\system32\config\SECURITY.LOG L'objet est verrouillé ignoré D:\Windows\system32\config\software L'objet est verrouillé ignoré D:\Windows\system32\config\software.LOG L'objet est verrouillé ignoré D:\Windows\system32\config\system L'objet est verrouillé ignoré D:\Windows\system32\config\system.LOG L'objet est verrouillé ignoré D:\Windows\system32\drivers\atapi.sys L'objet est verrouillé ignoré D:\Windows\system32\wbem\Repository\FS\INDEX.BTR L'objet est verrouillé ignoré D:\Windows\system32\wbem\Repository\FS\INDEX.MAP L'objet est verrouillé ignoré D:\Windows\system32\wbem\Repository\FS\MAPPING.VER L'objet est verrouillé ignoré D:\Windows\system32\wbem\Repository\FS\MAPPING1.MAP L'objet est verrouillé ignoré D:\Windows\system32\wbem\Repository\FS\MAPPING2.MAP L'objet est verrouillé ignoré D:\Windows\system32\wbem\Repository\FS\OBJECTS.DATA L'objet est verrouillé ignoré D:\Windows\system32\wbem\Repository\FS\OBJECTS.MAP L'objet est verrouillé ignoré F:\Documents and Settings\Administrateur.TITANIUM\Application Data\Mozilla\Firefox\Profiles\bsacck9e.default\Cache\2BB09C82d01/keygen.exe Infecté : Trojan-Downloader.Win32.Small.ebj ignoré F:\Documents and Settings\Administrateur.TITANIUM\Application Data\Mozilla\Firefox\Profiles\bsacck9e.default\Cache\2BB09C82d01/crack.exe Infecté : Trojan.Win32.Agent.vg ignoré F:\Documents and Settings\Administrateur.TITANIUM\Application Data\Mozilla\Firefox\Profiles\bsacck9e.default\Cache\2BB09C82d01 RAR: infecté - 2 ignoré F:\Program Files\Fichiers communs\Microsoft Shared\Web Folders\ibm00001.dll L'objet est verrouillé ignoré F:\Program Files\VSAdd-in\VSAdd-in.dll L'objet est verrouillé ignoré F:\System Volume Information\catalog.wci\00000002.ps1 L'objet est verrouillé ignoré F:\System Volume Information\catalog.wci\00000002.ps2 L'objet est verrouillé ignoré F:\System Volume Information\catalog.wci\00010018.ci L'objet est verrouillé ignoré F:\System Volume Information\catalog.wci\cicat.fid L'objet est verrouillé ignoré F:\System Volume Information\catalog.wci\cicat.hsh L'objet est verrouillé ignoré F:\System Volume Information\catalog.wci\CiCL0001.000 L'objet est verrouillé ignoré F:\System Volume Information\catalog.wci\CiP10000.000 L'objet est verrouillé ignoré F:\System Volume Information\catalog.wci\CiP20000.000 L'objet est verrouillé ignoré F:\System Volume Information\catalog.wci\CiPT0000.000 L'objet est verrouillé ignoré F:\System Volume Information\catalog.wci\CiSL0001.000 L'objet est verrouillé ignoré F:\System Volume Information\catalog.wci\CiSP0000.000 L'objet est verrouillé ignoré F:\System Volume Information\catalog.wci\CiST0000.000 L'objet est verrouillé ignoré F:\System Volume Information\catalog.wci\CiVP0000.000 L'objet est verrouillé ignoré F:\System Volume Information\catalog.wci\INDEX.000 L'objet est verrouillé ignoré F:\System Volume Information\catalog.wci\propstor.bk1 L'objet est verrouillé ignoré F:\System Volume Information\catalog.wci\propstor.bk2 L'objet est verrouillé ignoré F:\System Volume Information\MountPointManagerRemoteDatabase L'objet est verrouillé ignoré F:\WINDOWS\system32\dovuuxpa.dll L'objet est verrouillé ignoré F:\WINDOWS\system32\gxlcbcdr.exe L'objet est verrouillé ignoré F:\WINDOWS\system32\udrafpmc.dll L'objet est verrouillé ignoré Analyse terminée. @+

Bonjour Bruce, J'ai nettoyé les fhichiers indiqués sauf ceux du dossier lphant car plusieurs sont bons. Je n'ai pas le temps de faire le scan kaspersky car je m'absente jusqu'à mardi et le pc va "hiberner". Je ferai le scan à mon retour, je posterai le rapport et j'espère que tu pourras poursuivre le travail de "remise à niveau" commencé... Bonnes fêtes et bonne année. Merci de ton boulot. @+

re, J'ai suivi les consignes pas à pas sauf le point 5 car ces dossiers contiennent de tout et je ne peux les supprimer en bloc... Pour le reste c'est OK sauf pour le scan. ATTENTION ! J'ai un pb de scan en ligne avec KASPERSKY : depuis hier la page d'accueil à changé et le lien vers le scan ne fonctionne pas (du moins chez moi..) As-tu une autre solution avec un autre anti-virus ou autre ?? Merci d'avance. @+

voila le contenu de look.txt ! REG.EXE VERSION 3.0 HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Session Manager\Environment ComSpec REG_EXPAND_SZ %SystemRoot%\system32\cmd.exe Path REG_EXPAND_SZ %SystemRoot%\system32;%SystemRoot%;%SystemRoot%\System32\Wbem;F:\Program Files\Microsoft SQL Server\90\Tools\binn\;D:\Program Files\QuickTime\QTSystem\ windir REG_EXPAND_SZ %SystemRoot% FP_NO_HOST_CHECK REG_SZ NO OS REG_SZ Windows_NT PROCESSOR_ARCHITECTURE REG_SZ x86 PROCESSOR_LEVEL REG_SZ 6 PROCESSOR_IDENTIFIER REG_SZ x86 Family 6 Model 11 Stepping 1, GenuineIntel PROCESSOR_REVISION REG_SZ 0b01 NUMBER_OF_PROCESSORS REG_SZ 1 PATHEXT REG_SZ .COM;.EXE;.BAT;.CMD;.VBS;.VBE;.JS;.JSE;.WSF;.WSH TEMP REG_EXPAND_SZ %SystemRoot%\TEMP TMP REG_EXPAND_SZ %SystemRoot%\TEMP DEVMGR_SHOW_DETAILS REG_SZ 1 VS80COMNTOOLS REG_SZ C:\Program Files\Microsoft Visual Studio 8\Common7\Tools\ CLASSPATH REG_EXPAND_SZ F:\Program Files\Java\j2re1.4.2_05\lib\ext\QTJava.zip QTJAVA REG_EXPAND_SZ F:\Program Files\Java\j2re1.4.2_05\lib\ext\QTJava.zip @+

RE, Petit pb : quand je lance Combofix la fenêtre DOS se ferme immédiatement et c'est tout... Faut-il une version windows, ou Dos en sans echec ? Merci d'avance

Bonjour, Voila mon dernier scan avec quelques résidus... scan KASPERSKY ON-LINE SCANNER REPORT Wednesday, December 27, 2006 9:11:18 AM Système d'exploitation : Microsoft Windows XP Professional, Service Pack 2 (Build 2600) Kaspersky On-line Scanner version : 5.0.83.0 Dernière mise à jour de la base antivirus Kaspersky : 26/12/2006 Enregistrements dans la base antivirus Kaspersky : 240099 Paramètres d'analyse Analyser avec la base antivirus suivante standard Analyser les archives vrai Analyser les bases de messagerie vrai Cible de l'analyse Poste de travail C:\ D:\ E:\ F:\ K:\ Statistiques de l'analyse Total d'objets analysés 740874 Nombre de virus trouvés 19 Nombre d'objets infectés 52 / 0 Nombre d'objets suspects 4 Durée de l'analyse 15:38:34 Nom de l'objet infecté Nom du virus Dernière action C:\docc.exe Infecté : Trojan.Win32.Zapchast.cp ignoré C:\Documents and Settings\All Users\Application Data\Microsoft\Dr Watson\user.dmp L'objet est verrouillé ignoré C:\Documents and Settings\LocalService\Local Settings\Temporary Internet Files\Content.IE5\D36C2DPC\1[1].exe.mwt Infecté : Backdoor.Win32.SdBot.aad ignoré C:\Documents and Settings\Yves Cathala\Application Data\Opera\Opera 8.02 BitTorrent beta\mail\store\account0\2004-10.mbs/[From "Your Soulmate" <5612@5480.uniproclaimer.com>][Date Fri, 01 Oct 2004 07:36:35]/html/[From "Quick Pay Advance" <9577@8296.unitransaction.com>][Date Fri, 01 Oct 2004 09:07:04]/html/[From from PC-frank.org (rafaillac.net1.nerim.net [213.41.155.202]) by mwinf0208.wanadoo.fr (SMTP Server) with SMTP id A795B200029A for ; Fri, 1 Oct 2004 10:28:52 +0200 (CEST)][Date Fri, 01 Oct 2004 11:26:52 +0200]/text Suspect : Email-Worm.Win32.Bagle.mail ignoré C:\Documents and Settings\Yves Cathala\Application Data\Opera\Opera 8.02 BitTorrent beta\mail\store\account0\2004-10.mbs/[From "Your Soulmate" <5612@5480.uniproclaimer.com>][Date Fri, 01 Oct 2004 07:36:35]/html/[From "Quick Pay Advance" <9577@8296.unitransaction.com>][Date Fri, 01 Oct 2004 09:07:04]/html Suspect : Email-Worm.Win32.Bagle.mail ignoré C:\Documents and Settings\Yves Cathala\Application Data\Opera\Opera 8.02 BitTorrent beta\mail\store\account0\2004-10.mbs/[From "Your Soulmate" <5612@5480.uniproclaimer.com>][Date Fri, 01 Oct 2004 07:36:35]/html Suspect : Email-Worm.Win32.Bagle.mail ignoré C:\Documents and Settings\Yves Cathala\Application Data\Opera\Opera 8.02 BitTorrent beta\mail\store\account0\2004-10.mbs Mail Berkeley mbox: suspect - 3 ignoré C:\Documents and Settings\Yves Cathala\Mes documents\FinePrint files\Forms\FPLIMIT4.FP L'objet est verrouillé ignoré C:\Documents and Settings\Yves Cathala\Mes documents\FinePrint files\Forms\invoice.fp L'objet est verrouillé ignoré C:\Documents and Settings\Yves Cathala\Mes documents\FinePrint files\Forms\letterhead.fp L'objet est verrouillé ignoré C:\Program Files\ACD Systems\ACDSee\7.0\Patch fr.exe.mwt/setup.zip/2 Infecté : Backdoor.Win32.Lil.a ignoré C:\Program Files\ACD Systems\ACDSee\7.0\Patch fr.exe.mwt/setup.zip Infecté : Backdoor.Win32.Lil.a ignoré C:\Program Files\ACD Systems\ACDSee\7.0\Patch fr.exe.mwt SEA: infecté - 2 ignoré C:\Program Files\KeeBoo\Users\users.dat L'objet est verrouillé ignoré C:\qnmbvrw.exe Infecté : Trojan.Win32.Zapchast.cp ignoré C:\qomdjjy.exe Infecté : Trojan-Downloader.Win32.Small.ctf ignoré C:\System Volume Information\MountPointManagerRemoteDatabase L'objet est verrouillé ignoré C:\tlkx.exe Infecté : Trojan.Win32.Zapchast.cp ignoré C:\wbis\Windows\Prefetch\ASPNET_REGIIS.EXE-38397C30.pf L'objet est verrouillé ignoré C:\wbis\Windows\Prefetch\AUPDATE.EXE-2253CB60.pf L'objet est verrouillé ignoré C:\wbis\Windows\Prefetch\CNMSM2V.EXE-03D1377C.pf L'objet est verrouillé ignoré C:\wbis\Windows\Prefetch\CSC.EXE-1113BFA6.pf L'objet est verrouillé ignoré C:\wbis\Windows\Prefetch\CVTRES.EXE-13DEB540.pf L'objet est verrouillé ignoré C:\wbis\Windows\Prefetch\DIVX PLAYER.EXE-2B5FB89F.pf L'objet est verrouillé ignoré C:\wbis\Windows\Prefetch\DIVXPRO52XP2K.EXE-2523DAED.pf L'objet est verrouillé ignoré C:\wbis\Windows\Prefetch\DLLHOST.EXE-1ECB6754.pf L'objet est verrouillé ignoré C:\wbis\Windows\Prefetch\DOTNETFX.EXE-3AA8C78A.pf L'objet est verrouillé ignoré C:\wbis\Windows\Prefetch\DRWTSN32.EXE-2B4B52AC.pf L'objet est verrouillé ignoré C:\wbis\Windows\Prefetch\DUMPREP.EXE-1B46F901.pf L'objet est verrouillé ignoré C:\wbis\Windows\Prefetch\DVDX.EXE-2E0D39F2.pf L'objet est verrouillé ignoré C:\wbis\Windows\Prefetch\DWWIN.EXE-30875ADC.pf L'objet est verrouillé ignoré C:\wbis\Windows\Prefetch\EPROMPTER.EXE-0AE1CC3E.pf L'objet est verrouillé ignoré C:\wbis\Windows\Prefetch\EUDORA.EXE-2B7E1377.pf L'objet est verrouillé ignoré C:\wbis\Windows\Prefetch\EXPLODER.EXE-33BC1B55.pf L'objet est verrouillé ignoré C:\wbis\Windows\Prefetch\EXPLORER.EXE-082F38A9.pf L'objet est verrouillé ignoré C:\wbis\Windows\Prefetch\HELPSVC.EXE-2878DDA2.pf L'objet est verrouillé ignoré C:\wbis\Windows\Prefetch\IDRIVER.EXE-05125BED.pf L'objet est verrouillé ignoré C:\wbis\Windows\Prefetch\IMAPI.EXE-0BF740A4.pf L'objet est verrouillé ignoré C:\wbis\Windows\Prefetch\INSTALL.EXE-37A4BD63.pf L'objet est verrouillé ignoré C:\wbis\Windows\Prefetch\IRALRSHL.EXE-16597FEC.pf L'objet est verrouillé ignoré C:\wbis\Windows\Prefetch\ISUN040C.EXE-0F3FB94D.pf L'objet est verrouillé ignoré C:\wbis\Windows\Prefetch\Layout.ini L'objet est verrouillé ignoré C:\wbis\Windows\Prefetch\LODCTR.EXE-1009C3B4.pf L'objet est verrouillé ignoré C:\wbis\Windows\Prefetch\LOGONUI.EXE-0AF22957.pf L'objet est verrouillé ignoré C:\wbis\Windows\Prefetch\LUCOMS~1.EXE-02DB5950.pf L'objet est verrouillé ignoré C:\wbis\Windows\Prefetch\LUSETUP.EXE-07BEFAD5.pf L'objet est verrouillé ignoré C:\wbis\Windows\Prefetch\MEUHMEUHTV.EXE-2DBD2B17.pf L'objet est verrouillé ignoré C:\wbis\Windows\Prefetch\MIGPOLWIN.EXE-1EFB7D70.pf L'objet est verrouillé ignoré C:\wbis\Windows\Prefetch\MOFCOMP.EXE-01718E95.pf L'objet est verrouillé ignoré C:\wbis\Windows\Prefetch\MSDTC.EXE-0E6E4AF7.pf L'objet est verrouillé ignoré C:\wbis\Windows\Prefetch\MSI22.TMP-0DC995C5.pf L'objet est verrouillé ignoré C:\wbis\Windows\Prefetch\MSI27.TMP-30011CCA.pf L'objet est verrouillé ignoré C:\wbis\Windows\Prefetch\MSI44.TMP-2B32C848.pf L'objet est verrouillé ignoré C:\wbis\Windows\Prefetch\MSI80.TMP-23852748.pf L'objet est verrouillé ignoré C:\wbis\Windows\Prefetch\MSIEXEC.EXE-2F8A8CAE.pf L'objet est verrouillé ignoré C:\wbis\Windows\Prefetch\NAVW32.EXE-286920DF.pf L'objet est verrouillé ignoré C:\wbis\Windows\Prefetch\NDETECT.EXE-16E64095.pf L'objet est verrouillé ignoré C:\wbis\Windows\Prefetch\NGEN.EXE-171CDCC6.pf L'objet est verrouillé ignoré C:\wbis\Windows\Prefetch\NMAIN.EXE-34D44D63.pf L'objet est verrouillé ignoré C:\wbis\Windows\Prefetch\NTOSBOOT-B00DFAAD.pf L'objet est verrouillé ignoré C:\wbis\Windows\Prefetch\OPERA.EXE-1141097F.pf L'objet est verrouillé ignoré C:\wbis\Windows\Prefetch\OPSCAN.EXE-20B6A0BA.pf L'objet est verrouillé ignoré C:\wbis\Windows\Prefetch\PMAGIC.EXE-1E1E65B9.pf L'objet est verrouillé ignoré C:\wbis\Windows\Prefetch\PMAGICNT.EXE-3A3F50C0.pf L'objet est verrouillé ignoré C:\wbis\Windows\Prefetch\POWERQUEST.DRIVE.IMAGE.V7.0.F-023EC54F.pf L'objet est verrouillé ignoré C:\wbis\Windows\Prefetch\POWERQUEST.DRIVE.IMAGE.V7.0.F-09735A82.pf L'objet est verrouillé ignoré C:\wbis\Windows\Prefetch\POWERQUEST.DRIVE.IMAGE.V7.0.F-21A6A2B4.pf L'objet est verrouillé ignoré C:\wbis\Windows\Prefetch\PQIBROWSER.EXE-0896C6BF.pf L'objet est verrouillé ignoré C:\wbis\Windows\Prefetch\PQV2ISECURITY.EXE-2B744D4D.pf L'objet est verrouillé ignoré C:\wbis\Windows\Prefetch\PQV2ISVC.EXE-182CBE09.pf L'objet est verrouillé ignoré C:\wbis\Windows\Prefetch\REGEDIT.EXE-1B606482.pf L'objet est verrouillé ignoré C:\wbis\Windows\Prefetch\REGSVCS.EXE-077D24C2.pf L'objet est verrouillé ignoré C:\wbis\Windows\Prefetch\REGSVR32.EXE-25EEFE2F.pf L'objet est verrouillé ignoré C:\wbis\Windows\Prefetch\REGTLIB.EXE-0CCB81E6.pf L'objet est verrouillé ignoré C:\wbis\Windows\Prefetch\RUNDLL32.EXE-171BE046.pf L'objet est verrouillé ignoré C:\wbis\Windows\Prefetch\RUNDLL32.EXE-1810C9B7.pf L'objet est verrouillé ignoré C:\wbis\Windows\Prefetch\RUNDLL32.EXE-268BFF96.pf L'objet est verrouillé ignoré C:\wbis\Windows\Prefetch\RUNDLL32.EXE-2EC3C756.pf L'objet est verrouillé ignoré C:\wbis\Windows\Prefetch\RUNDLL32.EXE-451FC2C0.pf L'objet est verrouillé ignoré C:\wbis\Windows\Prefetch\RUNDLL32.EXE-466B175F.pf L'objet est verrouillé ignoré C:\wbis\Windows\Prefetch\RUNONCE.EXE-2803F297.pf L'objet est verrouillé ignoré C:\wbis\Windows\Prefetch\SETUP.EXE-393E66AE.pf L'objet est verrouillé ignoré C:\wbis\Windows\Prefetch\SNDVOL32.EXE-383480B7.pf L'objet est verrouillé ignoré C:\wbis\Windows\Prefetch\SPOOLSV.EXE-282F76A7.pf L'objet est verrouillé ignoré C:\wbis\Windows\Prefetch\TASKMGR.EXE-20256C55.pf L'objet est verrouillé ignoré C:\wbis\Windows\Prefetch\TOTALCMD.EXE-2FAE42CE.pf L'objet est verrouillé ignoré C:\wbis\Windows\Prefetch\TRIALSTARTER180DAY.EXE-10D4C9C9.pf L'objet est verrouillé ignoré C:\wbis\Windows\Prefetch\V2ICONSOLE.EXE-05998F52.pf L'objet est verrouillé ignoré C:\wbis\Windows\Prefetch\WEBSHOTS.SCR-06866ABC.pf L'objet est verrouillé ignoré C:\wbis\Windows\Prefetch\WHEREISIT.EXE-00D9E726.pf L'objet est verrouillé ignoré C:\wbis\Windows\Prefetch\WINDVD.EXE-1D1E48A6.pf L'objet est verrouillé ignoré C:\wbis\Windows\Prefetch\WINWORD.EXE-29F5CB89.pf L'objet est verrouillé ignoré C:\wbis\Windows\Prefetch\WMIADAP.EXE-2DF425B2.pf L'objet est verrouillé ignoré C:\wbis\Windows\Prefetch\WMIPRVSE.EXE-28F301A9.pf L'objet est verrouillé ignoré C:\wbis\Windows\Prefetch\WMPLAYER.EXE-18DDEF9C.pf L'objet est verrouillé ignoré C:\wbis\Windows\Prefetch\WUAUCLT.EXE-399A8E72.pf L'objet est verrouillé ignoré C:\wbis\Windows\Prefetch\_INS0432._MP-2C5EC704.pf L'objet est verrouillé ignoré C:\Windows\$NtUninstallKB829558$\dao360.dll L'objet est verrouillé ignoré C:\Windows\$NtUninstallKB829558$\expsrv.dll L'objet est verrouillé ignoré C:\Windows\$NtUninstallKB829558$\msexch40.dll L'objet est verrouillé ignoré C:\Windows\$NtUninstallKB829558$\msexcl40.dll L'objet est verrouillé ignoré C:\Windows\$NtUninstallKB829558$\msjet40.dll L'objet est verrouillé ignoré C:\Windows\$NtUninstallKB829558$\msjetoledb40.dll L'objet est verrouillé ignoré C:\Windows\$NtUninstallKB829558$\msjint40.dll L'objet est verrouillé ignoré C:\Windows\$NtUninstallKB829558$\msjter40.dll L'objet est verrouillé ignoré C:\Windows\$NtUninstallKB829558$\msjtes40.dll L'objet est verrouillé ignoré C:\Windows\$NtUninstallKB829558$\msltus40.dll L'objet est verrouillé ignoré C:\Windows\$NtUninstallKB829558$\mspbde40.dll L'objet est verrouillé ignoré C:\Windows\$NtUninstallKB829558$\msrd2x40.dll L'objet est verrouillé ignoré C:\Windows\$NtUninstallKB829558$\msrd3x40.dll L'objet est verrouillé ignoré C:\Windows\$NtUninstallKB829558$\msrepl40.dll L'objet est verrouillé ignoré C:\Windows\$NtUninstallKB829558$\mstext40.dll L'objet est verrouillé ignoré C:\Windows\$NtUninstallKB829558$\mswdat10.dll L'objet est verrouillé ignoré C:\Windows\$NtUninstallKB829558$\mswstr10.dll L'objet est verrouillé ignoré C:\Windows\$NtUninstallKB829558$\msxbde40.dll L'objet est verrouillé ignoré C:\Windows\$NtUninstallKB829558$\vbajet32.dll L'objet est verrouillé ignoré C:\Windows\alg.exe Infecté : Backdoor.Win32.SdBot.bbh ignoré C:\Windows\config.exe.mwt Infecté : Backdoor.Win32.SdBot.aad ignoré C:\Windows\lsass.exe.mwt Infecté : Backdoor.Win32.SdBot.aad ignoré C:\Windows\Prefetch\layout.ini L'objet est verrouillé ignoré C:\Windows\services.exe.mwt Infecté : Backdoor.Win32.SdBot.aad ignoré C:\Windows\svchost.exe.mwt Infecté : Backdoor.Win32.SdBot.aad ignoré C:\Windows\Temp\eraseme_81236.exe.mwt Infecté : Backdoor.Win32.SdBot.aad ignoré C:\Windows\wdfmgrr.exe.mwt Infecté : Backdoor.Win32.SdBot.aad ignoré C:\Windowsbase\$NtUninstallKB835732$\callcont.dll L'objet est verrouillé ignoré C:\Windowsbase\$NtUninstallKB835732$\cmdevtgprov.dll L'objet est verrouillé ignoré C:\Windowsbase\$NtUninstallKB835732$\evtgprov.dll L'objet est verrouillé ignoré C:\Windowsbase\$NtUninstallKB835732$\gdi32.dll L'objet est verrouillé ignoré C:\Windowsbase\$NtUninstallKB835732$\h323.tsp L'objet est verrouillé ignoré C:\Windowsbase\$NtUninstallKB835732$\h323msp.dll L'objet est verrouillé ignoré C:\Windowsbase\$NtUninstallKB835732$\helpctr.exe L'objet est verrouillé ignoré C:\Windowsbase\$NtUninstallKB835732$\ipnathlp.dll L'objet est verrouillé ignoré C:\Windowsbase\$NtUninstallKB835732$\lsasrv.dll L'objet est verrouillé ignoré C:\Windowsbase\$NtUninstallKB835732$\mf3216.dll L'objet est verrouillé ignoré C:\Windowsbase\$NtUninstallKB835732$\msasn1.dll L'objet est verrouillé ignoré C:\Windowsbase\$NtUninstallKB835732$\msgina.dll L'objet est verrouillé ignoré C:\Windowsbase\$NtUninstallKB835732$\mst120.dll L'objet est verrouillé ignoré C:\Windowsbase\$NtUninstallKB835732$\netapi32.dll L'objet est verrouillé ignoré C:\Windowsbase\$NtUninstallKB835732$\nmcom.dll L'objet est verrouillé ignoré C:\Windowsbase\$NtUninstallKB835732$\rtcdll.dll L'objet est verrouillé ignoré C:\Windowsbase\$NtUninstallKB835732$\schannel.dll L'objet est verrouillé ignoré D:\Documents and Settings\Administrateur.TITANIUM\Application Data\$_hpcst$.hpc L'objet est verrouillé ignoré D:\Documents and Settings\Administrateur.TITANIUM\Cookies\index.dat L'objet est verrouillé ignoré D:\Documents and Settings\Administrateur.TITANIUM\Local Settings\Application Data\Microsoft\Windows\UsrClass.dat L'objet est verrouillé ignoré D:\Documents and Settings\Administrateur.TITANIUM\Local Settings\Application Data\Microsoft\Windows\UsrClass.dat.LOG L'objet est verrouillé ignoré D:\Documents and Settings\Administrateur.TITANIUM\Local Settings\Historique\History.IE5\index.dat L'objet est verrouillé ignoré D:\Documents and Settings\Administrateur.TITANIUM\Local Settings\Temp\WCESLog.log L'objet est verrouillé ignoré D:\Documents and Settings\Administrateur.TITANIUM\Local Settings\Temporary Internet Files\Content.IE5\index.dat L'objet est verrouillé ignoré D:\Documents and Settings\Administrateur.TITANIUM\NTUSER.DAT L'objet est verrouillé ignoré D:\Documents and Settings\Administrateur.TITANIUM\ntuser.dat.LOG L'objet est verrouillé ignoré D:\Documents and Settings\LocalService.AUTORITE NT.001\Cookies\index.dat L'objet est verrouillé ignoré D:\Documents and Settings\LocalService.AUTORITE NT.001\Local Settings\Application Data\Microsoft\Windows\UsrClass.dat L'objet est verrouillé ignoré D:\Documents and Settings\LocalService.AUTORITE NT.001\Local Settings\Application Data\Microsoft\Windows\UsrClass.dat.LOG L'objet est verrouillé ignoré D:\Documents and Settings\LocalService.AUTORITE NT.001\Local Settings\Historique\History.IE5\index.dat L'objet est verrouillé ignoré D:\Documents and Settings\LocalService.AUTORITE NT.001\Local Settings\Temporary Internet Files\Content.IE5\index.dat L'objet est verrouillé ignoré D:\Documents and Settings\LocalService.AUTORITE NT.001\NTUSER.DAT L'objet est verrouillé ignoré D:\Documents and Settings\LocalService.AUTORITE NT.001\ntuser.dat.LOG L'objet est verrouillé ignoré D:\Documents and Settings\NetworkService.AUTORITE NT.001\Local Settings\Application Data\Microsoft\Windows\UsrClass.dat L'objet est verrouillé ignoré D:\Documents and Settings\NetworkService.AUTORITE NT.001\Local Settings\Application Data\Microsoft\Windows\UsrClass.dat.LOG L'objet est verrouillé ignoré D:\Documents and Settings\NetworkService.AUTORITE NT.001\NTUSER.DAT L'objet est verrouillé ignoré D:\Documents and Settings\NetworkService.AUTORITE NT.001\ntuser.dat.LOG L'objet est verrouillé ignoré D:\Downloads 2005\ABC-win32-v2.6.9.exe/stream/data0007 Infecté : Trojan.Win32.Agent.ba ignoré D:\Downloads 2005\ABC-win32-v2.6.9.exe/stream Infecté : Trojan.Win32.Agent.ba ignoré D:\Downloads 2005\ABC-win32-v2.6.9.exe NSIS: infecté - 2 ignoré D:\Downloads 2005\WarezP2P.exe/stream/data0030 Infecté : Trojan-Downloader.Win32.Small.apc ignoré D:\Downloads 2005\WarezP2P.exe/stream Infecté : Trojan-Downloader.Win32.Small.apc ignoré D:\Downloads 2005\WarezP2P.exe NSIS: infecté - 2 ignoré D:\Downloads 2006\keygen.exe Infecté : Trojan-Downloader.Win32.Small.ebj ignoré D:\Downloads 2006\Torrents\Lphant\phatnotes.standard.edition.4.5.build.4.345.0211.ppc.©racked-tsrh.zip/phatnotes.exe Infecté : Trojan.Win32.Agent.acw ignoré D:\Downloads 2006\Torrents\Lphant\phatnotes.standard.edition.4.5.build.4.345.0211.ppc.©racked-tsrh.zip ZIP: infecté - 1 ignoré D:\Downloads 2006\Torrents\Lphant\STOIK_Smart_Resizer_v1.0_Incl_(k)ey-UCF.zip/keygen.exe Infecté : Trojan.Win32.Agent.acw ignoré D:\Downloads 2006\Torrents\Lphant\STOIK_Smart_Resizer_v1.0_Incl_(k)ey-UCF.zip ZIP: infecté - 1 ignoré D:\Inetpub\catalog.wci\00000002.ps1 L'objet est verrouillé ignoré D:\Inetpub\catalog.wci\00000002.ps2 L'objet est verrouillé ignoré D:\Inetpub\catalog.wci\00010004.ci L'objet est verrouillé ignoré D:\Inetpub\catalog.wci\cicat.fid L'objet est verrouillé ignoré D:\Inetpub\catalog.wci\cicat.hsh L'objet est verrouillé ignoré D:\Inetpub\catalog.wci\CiCL0001.000 L'objet est verrouillé ignoré D:\Inetpub\catalog.wci\CiP10000.000 L'objet est verrouillé ignoré D:\Inetpub\catalog.wci\CiP20000.000 L'objet est verrouillé ignoré D:\Inetpub\catalog.wci\CiPT0000.000 L'objet est verrouillé ignoré D:\Inetpub\catalog.wci\CiSL0001.000 L'objet est verrouillé ignoré D:\Inetpub\catalog.wci\CiSP0000.000 L'objet est verrouillé ignoré D:\Inetpub\catalog.wci\CiST0000.000 L'objet est verrouillé ignoré D:\Inetpub\catalog.wci\CiVP0000.000 L'objet est verrouillé ignoré D:\Inetpub\catalog.wci\INDEX.000 L'objet est verrouillé ignoré D:\Inetpub\catalog.wci\propstor.bk1 L'objet est verrouillé ignoré D:\Inetpub\catalog.wci\propstor.bk2 L'objet est verrouillé ignoré D:\System Volume Information\MountPointManagerRemoteDatabase L'objet est verrouillé ignoré D:\Windows\Debug\PASSWD.LOG L'objet est verrouillé ignoré D:\Windows\system32\CatRoot2\edb.log L'objet est verrouillé ignoré D:\Windows\system32\CatRoot2\tmp.edb L'objet est verrouillé ignoré D:\Windows\system32\config\default L'objet est verrouillé ignoré D:\Windows\system32\config\default.LOG L'objet est verrouillé ignoré D:\Windows\system32\config\SAM L'objet est verrouillé ignoré D:\Windows\system32\config\SAM.LOG L'objet est verrouillé ignoré D:\Windows\system32\config\SECURITY L'objet est verrouillé ignoré D:\Windows\system32\config\SECURITY.LOG L'objet est verrouillé ignoré D:\Windows\system32\config\software L'objet est verrouillé ignoré D:\Windows\system32\config\software.LOG L'objet est verrouillé ignoré D:\Windows\system32\config\system L'objet est verrouillé ignoré D:\Windows\system32\config\system.LOG L'objet est verrouillé ignoré D:\Windows\system32\drivers\atapi.sys L'objet est verrouillé ignoré D:\Windows\system32\wbem\Repository\FS\INDEX.BTR L'objet est verrouillé ignoré D:\Windows\system32\wbem\Repository\FS\INDEX.MAP L'objet est verrouillé ignoré D:\Windows\system32\wbem\Repository\FS\MAPPING.VER L'objet est verrouillé ignoré D:\Windows\system32\wbem\Repository\FS\MAPPING1.MAP L'objet est verrouillé ignoré D:\Windows\system32\wbem\Repository\FS\MAPPING2.MAP L'objet est verrouillé ignoré D:\Windows\system32\wbem\Repository\FS\OBJECTS.DATA L'objet est verrouillé ignoré D:\Windows\system32\wbem\Repository\FS\OBJECTS.MAP L'objet est verrouillé ignoré F:\Documents and Settings\Administrateur.TITANIUM\Application Data\Mozilla\Firefox\Profiles\bsacck9e.default\Cache\2BB09C82d01/keygen.exe Infecté : Trojan-Downloader.Win32.Small.ebj ignoré F:\Documents and Settings\Administrateur.TITANIUM\Application Data\Mozilla\Firefox\Profiles\bsacck9e.default\Cache\2BB09C82d01/crack.exe Infecté : Trojan.Win32.Agent.vg ignoré F:\Documents and Settings\Administrateur.TITANIUM\Application Data\Mozilla\Firefox\Profiles\bsacck9e.default\Cache\2BB09C82d01 RAR: infecté - 2 ignoré F:\Documents and Settings\Administrateur.TITANIUM\Local Settings\Temp\b122.exe/stream/data0002/stream/data0004 Infecté : Trojan-Downloader.Win32.Small.ece ignoré F:\Documents and Settings\Administrateur.TITANIUM\Local Settings\Temp\b122.exe/stream/data0002/stream Infecté : Trojan-Downloader.Win32.Small.ece ignoré F:\Documents and Settings\Administrateur.TITANIUM\Local Settings\Temp\b122.exe/stream/data0002 Infecté : Trojan-Downloader.Win32.Small.ece ignoré F:\Documents and Settings\Administrateur.TITANIUM\Local Settings\Temp\b122.exe/stream Infecté : Trojan-Downloader.Win32.Small.ece ignoré F:\Documents and Settings\Administrateur.TITANIUM\Local Settings\Temp\b122.exe NSIS: infecté - 4 ignoré F:\Documents and Settings\Administrateur.TITANIUM\Local Settings\Temporary Internet Files\Content.IE5\0LUFKDIN\122[1].net/stream/data0002/stream/data0004 Infecté : Trojan-Downloader.Win32.Small.ece ignoré F:\Documents and Settings\Administrateur.TITANIUM\Local Settings\Temporary Internet Files\Content.IE5\0LUFKDIN\122[1].net/stream/data0002/stream Infecté : Trojan-Downloader.Win32.Small.ece ignoré F:\Documents and Settings\Administrateur.TITANIUM\Local Settings\Temporary Internet Files\Content.IE5\0LUFKDIN\122[1].net/stream/data0002 Infecté : Trojan-Downloader.Win32.Small.ece ignoré F:\Documents and Settings\Administrateur.TITANIUM\Local Settings\Temporary Internet Files\Content.IE5\0LUFKDIN\122[1].net/stream Infecté : Trojan-Downloader.Win32.Small.ece ignoré F:\Documents and Settings\Administrateur.TITANIUM\Local Settings\Temporary Internet Files\Content.IE5\0LUFKDIN\122[1].net NSIS: infecté - 4 ignoré F:\Documents and Settings\Administrateur.TITANIUM\Local Settings\Temporary Internet Files\Content.IE5\CT23KXEF\srvvmb[1].exe.mwt Infecté : Packed.Win32.Klone.g ignoré F:\Documents and Settings\Administrateur.TITANIUM\Local Settings\Temporary Internet Files\Content.IE5\WDA3056N\116[1].net/stream/data0002/data0002 Infecté : Trojan-Downloader.Win32.PurityScan.dy ignoré F:\Documents and Settings\Administrateur.TITANIUM\Local Settings\Temporary Internet Files\Content.IE5\WDA3056N\116[1].net/stream/data0002 Infecté : Trojan-Downloader.Win32.PurityScan.dy ignoré F:\Documents and Settings\Administrateur.TITANIUM\Local Settings\Temporary Internet Files\Content.IE5\WDA3056N\116[1].net/stream Infecté : Trojan-Downloader.Win32.PurityScan.dy ignoré F:\Documents and Settings\Administrateur.TITANIUM\Local Settings\Temporary Internet Files\Content.IE5\WDA3056N\116[1].net NSIS: infecté - 3 ignoré F:\Documents and Settings\Administrateur.TITANIUM\Local Settings\Temporary Internet Files\Content.IE5\WDA3056N\wlzip32[1].exe Infecté : Trojan-Downloader.Win32.Agent.bca ignoré F:\Program Files\Fichiers communs\Yazzle1122OinAdmin.exe Infecté : Trojan-Downloader.Win32.PurityScan.dy ignoré F:\Program Files\ipwins\Services.dll Infecté : Trojan-Downloader.Win32.Small.ece ignoré F:\System Volume Information\catalog.wci\00000002.ps1 L'objet est verrouillé ignoré F:\System Volume Information\catalog.wci\00000002.ps2 L'objet est verrouillé ignoré F:\System Volume Information\catalog.wci\00010015.ci L'objet est verrouillé ignoré F:\System Volume Information\catalog.wci\cicat.fid L'objet est verrouillé ignoré F:\System Volume Information\catalog.wci\cicat.hsh L'objet est verrouillé ignoré F:\System Volume Information\catalog.wci\CiCL0001.000 L'objet est verrouillé ignoré F:\System Volume Information\catalog.wci\CiP10000.000 L'objet est verrouillé ignoré F:\System Volume Information\catalog.wci\CiP20000.000 L'objet est verrouillé ignoré F:\System Volume Information\catalog.wci\CiPT0000.000 L'objet est verrouillé ignoré F:\System Volume Information\catalog.wci\CiSL0001.000 L'objet est verrouillé ignoré F:\System Volume Information\catalog.wci\CiSP0000.000 L'objet est verrouillé ignoré F:\System Volume Information\catalog.wci\CiST0000.000 L'objet est verrouillé ignoré F:\System Volume Information\catalog.wci\CiVP0000.000 L'objet est verrouillé ignoré F:\System Volume Information\catalog.wci\INDEX.000 L'objet est verrouillé ignoré F:\System Volume Information\catalog.wci\propstor.bk1 L'objet est verrouillé ignoré F:\System Volume Information\catalog.wci\propstor.bk2 L'objet est verrouillé ignoré F:\System Volume Information\MountPointManagerRemoteDatabase L'objet est verrouillé ignoré F:\WINDOWS\system32\drvnut.dll Infecté : not-virus:Hoax.Win32.Renos.gi ignoré F:\WINDOWS\system32\msasvc.exe Infecté : Trojan-PSW.Win32.Sinowal.bh ignoré F:\WINDOWS\system32\winyop32.dll.mwt Infecté : Packed.Win32.Klone.v ignoré F:\WINDOWS\system32\xkldygcp.dll Infecté : Trojan.Win32.BHO.g ignoré F:\WINDOWS\Temp\win31.tmp.exe.mwt Infecté : Packed.Win32.Klone.g ignoré Analyse terminée. Merci @+

Bonjour, Voila aprés un long scan le résultat.. Je vais vider la quarantaine de Norton que j'ai oublié. N'en tient pas compte. Merci encore Rapport de scan File C:\Documents and Settings\LocalService\Local Settings\Temporary Internet Files\Content.IE5\D36C2DPC\1[1].exe infected by "Backdoor.Win32.SdBot.aad" Virus. Action Taken: File Renamed. File C:\Documents and Settings\LocalService\Local Settings\Temporary Internet Files\Content.IE5\D36C2DPC\Browser[1].exe infected by "Trojan.Win32.Dialer.qy" Virus. Action Taken: File Deleted. File C:\Documents and Settings\LocalService\Local Settings\Temporary Internet Files\Content.IE5\D36C2DPC\mousepad11[1].exe infected by "Trojan-Clicker.Win32.VB.mo" Virus. Action Taken: File Deleted. File C:\Documents and Settings\LocalService\Local Settings\Temporary Internet Files\Content.IE5\L5MOWPF3\Browser[1].exe infected by "Trojan.Win32.Dialer.qy" Virus. Action Taken: File Deleted. File C:\Documents and Settings\Yves Cathala\Application Data\Microsoft\Office\Récent\ActualitTs Y. Cathala.doc.lnk infected by "BkCln.Unknown" Virus. Action Taken: File Renamed. File C:\Documents and Settings\Yves Cathala\Favoris\Infos .NET du Mercredi 3 mars 2004 ¤ Dotnet-News.com Toutes les dernières actus .NET ( ASP.NET, VB.NET, C#, J#, ADO.NET, WebFor.url infected by "BkCln.Unknown" Virus. Action Taken: File Renamed. File C:\Documents and Settings\Yves Cathala\Favoris\Software 2.0 narzedzia · programy · sieci.url infected by "BkCln.Unknown" Virus. Action Taken: File Renamed. File C:\e2j5h7t5e4y7.exe infected by "Trojan.Win32.Dialer.qy" Virus. Action Taken: File Deleted. File C:\En-cours\BacPro\PremBPro\Balmette Sophie\STOCK N¦1.xls infected by "BkCln.Unknown" Virus. Action Taken: File Renamed. File C:\En-cours\BacPro\PremBPro\Fustier Julien\TquipFRED.jpg infected by "BkCln.Unknown" Virus. Action Taken: File Renamed. File C:\Graphics\Images\IdentitTEliane.jpg infected by "BkCln.Unknown" Virus. Action Taken: File Renamed. File C:\Graphics\Images\IdentitTEliane2.jpg infected by "BkCln.Unknown" Virus. Action Taken: File Renamed. File C:\Graphics\Images\IdentitTYves.jpg infected by "BkCln.Unknown" Virus. Action Taken: File Renamed. File C:\Graphics\Images\IdentitTYves2.jpg infected by "BkCln.Unknown" Virus. Action Taken: File Renamed. File C:\Graphics\Images\Novembre 2001\ortDTcemre.jpg infected by "BkCln.Unknown" Virus. Action Taken: File Renamed. File C:\Graphics\Paint Shop Pro 7.02 Fr\Cadres\Bleu marine mTtallique.pfr infected by "BkCln.Unknown" Virus. Action Taken: File Renamed. File C:\Graphics\Paint Shop Pro 7.02 Fr\Cadres\DorT classique.pfr infected by "BkCln.Unknown" Virus. Action Taken: File Renamed. File C:\Graphics\Paint Shop Pro 7.02 Fr\Formes\FlFches 3D.jsl infected by "BkCln.Unknown" Virus. Action Taken: File Renamed. File C:\Graphics\Paint Shop Pro 7.02 Fr\Masques\CarrTs.msk infected by "BkCln.Unknown" Virus. Action Taken: File Renamed. File C:\Graphics\Paint Shop Pro 7.02 Fr\Motifs\AgglomTrT.bmp infected by "BkCln.Unknown" Virus. Action Taken: File Renamed. File C:\Graphics\Paint Shop Pro 7.02 Fr\Motifs\Bois flottT.bmp infected by "BkCln.Unknown" Virus. Action Taken: File Renamed. File C:\Graphics\Paint Shop Pro 7.02 Fr\Motifs\Bois teintT.bmp infected by "BkCln.Unknown" Virus. Action Taken: File Renamed. File C:\Graphics\Paint Shop Pro 7.02 Fr\Motifs\Emeraude craquelTe.bmp infected by "BkCln.Unknown" Virus. Action Taken: File Renamed. File C:\Graphics\Paint Shop Pro 7.02 Fr\Motifs\Flot dorT.bmp infected by "BkCln.Unknown" Virus. Action Taken: File Renamed. File C:\Graphics\Paint Shop Pro 7.02 Fr\Motifs\GranulositT fine.bmp infected by "BkCln.Unknown" Virus. Action Taken: File Renamed. File C:\Graphics\Paint Shop Pro 7.02 Fr\Motifs\Graviers cimentTs.bmp infected by "BkCln.Unknown" Virus. Action Taken: File Renamed. File C:\Graphics\Paint Shop Pro 7.02 Fr\Motifs\Grotte bleutTe.bmp infected by "BkCln.Unknown" Virus. Action Taken: File Renamed. File C:\Graphics\Paint Shop Pro 7.02 Fr\Motifs\Plastique froissT.bmp infected by "BkCln.Unknown" Virus. Action Taken: File Renamed. File C:\Graphics\Paint Shop Pro 7.02 Fr\Motifs\Tampon a rTcurer.bmp infected by "BkCln.Unknown" Virus. Action Taken: File Renamed. File C:\Graphics\Paint Shop Pro 7.02 Fr\Palettes\Camaneu de bleu.pal infected by "BkCln.Unknown" Virus. Action Taken: File Renamed. File C:\Graphics\Paint Shop Pro 7.02 Fr\Palettes\OcTan.pal infected by "BkCln.Unknown" Virus. Action Taken: File Renamed. File C:\Graphics\Paint Shop Pro 7.02 Fr\Palettes\PTtales de rose.pal infected by "BkCln.Unknown" Virus. Action Taken: File Renamed. File C:\Graphics\Paint Shop Pro 7.02 Fr\Palettes\STcuritT.pal infected by "BkCln.Unknown" Virus. Action Taken: File Renamed. File C:\Graphics\Paint Shop Pro 7.02 Fr\Textures\CarrTs.bmp infected by "BkCln.Unknown" Virus. Action Taken: File Renamed. File C:\Graphics\Paint Shop Pro 7.02 Fr\Textures\Ciment craquelT.bmp infected by "BkCln.Unknown" Virus. Action Taken: File Renamed. File C:\Graphics\Paint Shop Pro 7.02 Fr\Textures\OcTan.bmp infected by "BkCln.Unknown" Virus. Action Taken: File Renamed. File C:\Graphics\Paint Shop Pro 7.02 Fr\Textures\Papier froissT 2.bmp infected by "BkCln.Unknown" Virus. Action Taken: File Renamed. File C:\Graphics\Paint Shop Pro 7.02 Fr\Textures\Papier froissT.bmp infected by "BkCln.Unknown" Virus. Action Taken: File Renamed. File C:\Graphics\Paint Shop Pro 7.02 Fr\Textures\Papier Tpais.bmp infected by "BkCln.Unknown" Virus. Action Taken: File Renamed. File C:\Graphics\Paint Shop Pro 7.02 Fr\Textures\SphFres.bmp infected by "BkCln.Unknown" Virus. Action Taken: File Renamed. File C:\Graphics\Paint Shop Pro 7.02 Fr\Tubes\Fleurs printaniFres.tub infected by "BkCln.Unknown" Virus. Action Taken: File Renamed. File C:\Graphics\Paint Shop Pro 7.02 Fr\Tubes\LTgumes.tub infected by "BkCln.Unknown" Virus. Action Taken: File Renamed. File C:\Graphics\Paint Shop Pro 7.02 Fr\Tubes\NTon vert.tub infected by "BkCln.Unknown" Virus. Action Taken: File Renamed. File C:\j1hvbo6.exe infected by "Trojan.Win32.Dialer.qy" Virus. Action Taken: File Deleted. File C:\jeghy1h.exe infected by "Trojan.Win32.Dialer.qy" Virus. Action Taken: File Deleted. File C:\jeghy1ho6.exe infected by "Trojan.Win32.Dialer.qy" Virus. Action Taken: File Deleted. File C:\p7q3y3y36g3.exe infected by "Trojan.Win32.Dialer.qy" Virus. Action Taken: File Deleted. File C:\Program Files\ACD Systems\ACDSee\7.0\Patch fr.exe infected by "Backdoor.Win32.Lil.a" Virus. Action Taken: File Renamed. File C:\Program Files\Norton SystemWorks\Norton AntiVirus\Quarantine\00B33293.htm infected by "Exploit.HTML.Mht" Virus. Action Taken: File Renamed. File C:\Program Files\Norton SystemWorks\Norton AntiVirus\Quarantine\01504C99 infected by "Backdoor.Win32.Ruledor.c" Virus. Action Taken: File Renamed. File C:\Program Files\Norton SystemWorks\Norton AntiVirus\Quarantine\01857F9D infected by "Email-Worm.Win32.Bagle.z" Virus. Action Taken: File Deleted. File C:\Program Files\Norton SystemWorks\Norton AntiVirus\Quarantine\02A62017.EXE infected by "Backdoor.Win32.Rbot.gen" Virus. Action Taken: File Renamed. File C:\Program Files\Norton SystemWorks\Norton AntiVirus\Quarantine\04670A1F infected by "Email-Worm.Win32.Bagle.z" Virus. Action Taken: File Deleted. File C:\Program Files\Norton SystemWorks\Norton AntiVirus\Quarantine\06384B02 infected by "Email-Worm.Win32.Bagle.z" Virus. Action Taken: File Deleted. File C:\Program Files\Norton SystemWorks\Norton AntiVirus\Quarantine\06FC2C57 infected by "Email-Worm.Win32.Bagle.z" Virus. Action Taken: File Deleted. File C:\Program Files\Norton SystemWorks\Norton AntiVirus\Quarantine\0732750C infected by "Email-Worm.Win32.Bagle.z" Virus. Action Taken: File Deleted. File C:\Program Files\Norton SystemWorks\Norton AntiVirus\Quarantine\09142048 infected by "Trojan-Downloader.Win32.IstBar.gen" Virus. Action Taken: File Deleted. File C:\Program Files\Norton SystemWorks\Norton AntiVirus\Quarantine\09F30317 tagged as not-a-virus:AdWare.Win32.PurityScan.a. No Action Taken. File C:\Program Files\Norton SystemWorks\Norton AntiVirus\Quarantine\0A4A26B5 infected by "Email-Worm.Win32.Bagle.z" Virus. Action Taken: File Deleted. File C:\Program Files\Norton SystemWorks\Norton AntiVirus\Quarantine\0C141C89 infected by "Trojan-Downloader.Win32.IstBar.gen" Virus. Action Taken: File Deleted. File C:\Program Files\Norton SystemWorks\Norton AntiVirus\Quarantine\0C952C2E infected by "Email-Worm.Win32.Bagle.z" Virus. Action Taken: File Deleted. File C:\Program Files\Norton SystemWorks\Norton AntiVirus\Quarantine\10373403 tagged as not-a-virus:AdWare.Win32.BiSpy.n. No Action Taken. File C:\Program Files\Norton SystemWorks\Norton AntiVirus\Quarantine\108A4635.htm infected by "Exploit.HTML.Mht" Virus. Action Taken: File Renamed. File C:\Program Files\Norton SystemWorks\Norton AntiVirus\Quarantine\10B4168D infected by "Email-Worm.Win32.Bagle.at" Virus. Action Taken: File Deleted. File C:\Program Files\Norton SystemWorks\Norton AntiVirus\Quarantine\1107683C.exe infected by "Trojan.Win32.StartPage.oz" Virus. Action Taken: File Deleted. File C:\Program Files\Norton SystemWorks\Norton AntiVirus\Quarantine\14A45C47 infected by "Trojan-Dropper.Win32.Delf.z" Virus. Action Taken: File Deleted. File C:\Program Files\Norton SystemWorks\Norton AntiVirus\Quarantine\15714856 infected by "Trojan.Win32.Revop.c" Virus. Action Taken: File Deleted. File C:\Program Files\Norton SystemWorks\Norton AntiVirus\Quarantine\15F436CE infected by "Email-Worm.Win32.Bagle.z" Virus. Action Taken: File Deleted. File C:\Program Files\Norton SystemWorks\Norton AntiVirus\Quarantine\161337E3.htm infected by "Exploit.HTML.Mht" Virus. Action Taken: File Renamed. File C:\Program Files\Norton SystemWorks\Norton AntiVirus\Quarantine\19173519 infected by "Email-Worm.Win32.Bagle.z" Virus. Action Taken: File Deleted. File C:\Program Files\Norton SystemWorks\Norton AntiVirus\Quarantine\1D503322 infected by "Email-Worm.Win32.Bagle.z" Virus. Action Taken: File Deleted. File C:\Program Files\Norton SystemWorks\Norton AntiVirus\Quarantine\1E2A54E0 infected by "Email-Worm.Win32.Bagle.at" Virus. Action Taken: File Deleted. File C:\Program Files\Norton SystemWorks\Norton AntiVirus\Quarantine\1E7857FB infected by "Trojan-Dropper.Win32.Delf.z" Virus. Action Taken: File Deleted. File C:\Program Files\Norton SystemWorks\Norton AntiVirus\Quarantine\1F4619A8 infected by "Email-Worm.Win32.Bagle.at" Virus. Action Taken: File Deleted. File C:\Program Files\Norton SystemWorks\Norton AntiVirus\Quarantine\1F800D67 infected by "Email-Worm.Win32.Bagle.at" Virus. Action Taken: File Deleted. File C:\Program Files\Norton SystemWorks\Norton AntiVirus\Quarantine\20061D3B infected by "Email-Worm.Win32.NetSky.ac" Virus. Action Taken: File Deleted. File C:\Program Files\Norton SystemWorks\Norton AntiVirus\Quarantine\200D1ACD infected by "Email-Worm.Win32.Bagle.at" Virus. Action Taken: File Deleted. File C:\Program Files\Norton SystemWorks\Norton AntiVirus\Quarantine\211F3806 infected by "Email-Worm.Win32.NetSky.ac" Virus. Action Taken: File Deleted. File C:\Program Files\Norton SystemWorks\Norton AntiVirus\Quarantine\21295F94 infected by "Email-Worm.Win32.Bagle.at" Virus. Action Taken: File Deleted. File C:\Program Files\Norton SystemWorks\Norton AntiVirus\Quarantine\213B5825 infected by "Email-Worm.Win32.Bagle.z" Virus. Action Taken: File Deleted. File C:\Program Files\Norton SystemWorks\Norton AntiVirus\Quarantine\218611E6 tagged as not-a-virus:Porn-Dialer.Win32.Star. No Action Taken. File C:\Program Files\Norton SystemWorks\Norton AntiVirus\Quarantine\22D9610A infected by "Email-Worm.Win32.Bagle.z" Virus. Action Taken: File Deleted. File C:\Program Files\Norton SystemWorks\Norton AntiVirus\Quarantine\23341486 infected by "Trojan-Spy.Win32.Briss.j" Virus. Action Taken: File Deleted. File C:\Program Files\Norton SystemWorks\Norton AntiVirus\Quarantine\239B0A8E infected by "Trojan-Downloader.Win32.Dyfuca.da" Virus. Action Taken: File Deleted. File C:\Program Files\Norton SystemWorks\Norton AntiVirus\Quarantine\24560C7C infected by "Email-Worm.Win32.NetSky.ac" Virus. Action Taken: File Deleted. File C:\Program Files\Norton SystemWorks\Norton AntiVirus\Quarantine\248E2542 infected by "Email-Worm.Win32.Bagle.gen" Virus. Action Taken: File Deleted. File C:\Program Files\Norton SystemWorks\Norton AntiVirus\Quarantine\26FE3C2F infected by "Email-Worm.Win32.NetSky.ac" Virus. Action Taken: File Deleted. File C:\Program Files\Norton SystemWorks\Norton AntiVirus\Quarantine\276B4799.htm infected by "Exploit.HTML.Mht" Virus. Action Taken: File Renamed. File C:\Program Files\Norton SystemWorks\Norton AntiVirus\Quarantine\27770A0E infected by "Email-Worm.Win32.NetSky.ac" Virus. Action Taken: File Deleted. File C:\Program Files\Norton SystemWorks\Norton AntiVirus\Quarantine\2896197A.htm infected by "Exploit.HTML.Mht" Virus. Action Taken: File Renamed. File C:\Program Files\Norton SystemWorks\Norton AntiVirus\Quarantine\29C6363E infected by "Backdoor.Win32.Bifrose.w" Virus. Action Taken: File Renamed. File C:\Program Files\Norton SystemWorks\Norton AntiVirus\Quarantine\29DF3A64 infected by "Email-Worm.Win32.NetSky.ac" Virus. Action Taken: File Deleted. File C:\Program Files\Norton SystemWorks\Norton AntiVirus\Quarantine\2C914053 infected by "Trojan-Downloader.Win32.Dyfuca.de" Virus. Action Taken: File Deleted. File C:\Program Files\Norton SystemWorks\Norton AntiVirus\Quarantine\2CCF422D infected by "Email-Worm.Win32.NetSky.ac" Virus. Action Taken: File Deleted. File C:\Program Files\Norton SystemWorks\Norton AntiVirus\Quarantine\2DAF0712 infected by "Email-Worm.Win32.Bagle.z" Virus. Action Taken: File Deleted. File C:\Program Files\Norton SystemWorks\Norton AntiVirus\Quarantine\2EAE6FAE infected by "Email-Worm.Win32.NetSky.ac" Virus. Action Taken: File Deleted. File C:\Program Files\Norton SystemWorks\Norton AntiVirus\Quarantine\2F2B468C infected by "Exploit.HTML.CodeBaseExec" Virus. Action Taken: File Renamed. File C:\Program Files\Norton SystemWorks\Norton AntiVirus\Quarantine\2FC34CF6.htm infected by "Exploit.HTML.CodeBaseExec" Virus. Action Taken: File Renamed. File C:\Program Files\Norton SystemWorks\Norton AntiVirus\Quarantine\31FD3F5E infected by "Backdoor.Win32.Rbot.gen" Virus. Action Taken: File Renamed. File C:\Program Files\Norton SystemWorks\Norton AntiVirus\Quarantine\33986FC1 infected by "Trojan-Downloader.Win32.IstBar.gen" Virus. Action Taken: File Deleted. File C:\Program Files\Norton SystemWorks\Norton AntiVirus\Quarantine\357F0E59.htm infected by "Exploit.HTML.CodeBaseExec" Virus. Action Taken: File Renamed. File C:\Program Files\Norton SystemWorks\Norton AntiVirus\Quarantine\36A63693 infected by "Email-Worm.Win32.Bagle.z" Virus. Action Taken: File Deleted. File C:\Program Files\Norton SystemWorks\Norton AntiVirus\Quarantine\37F57AA4 infected by "Exploit.HTML.CodeBaseExec" Virus. Action Taken: File Renamed. File C:\Program Files\Norton SystemWorks\Norton AntiVirus\Quarantine\37F924A0 infected by "Exploit.HTML.CodeBaseExec" Virus. Action Taken: File Renamed. File C:\Program Files\Norton SystemWorks\Norton AntiVirus\Quarantine\383C6585.htm infected by "Exploit.HTML.Mht" Virus. Action Taken: File Renamed. File C:\Program Files\Norton SystemWorks\Norton AntiVirus\Quarantine\38E91452 infected by "Trojan-Clicker.Win32.Delf.r" Virus. Action Taken: File Deleted. File C:\Program Files\Norton SystemWorks\Norton AntiVirus\Quarantine\38EC3E4E infected by "Trojan-Spy.Win32.Briss.c" Virus. Action Taken: File Deleted. File C:\Program Files\Norton SystemWorks\Norton AntiVirus\Quarantine\38F21247 infected by "Trojan-Downloader.Win32.Dyfuca.cr" Virus. Action Taken: File Deleted. File C:\Program Files\Norton SystemWorks\Norton AntiVirus\Quarantine\38F63C43 infected by "Trojan.Win32.Revop.c" Virus. Action Taken: File Deleted. File C:\Program Files\Norton SystemWorks\Norton AntiVirus\Quarantine\38F96640 infected by "Trojan-Spy.Win32.Briss.h" Virus. Action Taken: File Deleted. File C:\Program Files\Norton SystemWorks\Norton AntiVirus\Quarantine\38FC103C infected by "Trojan-Spy.Win32.Briss.h" Virus. Action Taken: File Deleted. File C:\Program Files\Norton SystemWorks\Norton AntiVirus\Quarantine\39036435 infected by "Trojan-Downloader.Win32.Dyfuca.de" Virus. Action Taken: File Deleted. File C:\Program Files\Norton SystemWorks\Norton AntiVirus\Quarantine\39060E31 infected by "Trojan-Dropper.Win32.Delf.z" Virus. Action Taken: File Deleted. File C:\Program Files\Norton SystemWorks\Norton AntiVirus\Quarantine\3909382E infected by "Trojan-Downloader.Win32.IstBar.gq" Virus. Action Taken: File Deleted. File C:\Program Files\Norton SystemWorks\Norton AntiVirus\Quarantine\390D622A infected by "Trojan-Downloader.Win32.IstBar.gen" Virus. Action Taken: File Deleted. File C:\Program Files\Norton SystemWorks\Norton AntiVirus\Quarantine\39100C27 infected by "Trojan-Downloader.Win32.IstBar.fr" Virus. Action Taken: File Deleted. File C:\Program Files\Norton SystemWorks\Norton AntiVirus\Quarantine\39133623 infected by "Trojan-Spy.Win32.Briss.k" Virus. Action Taken: File Deleted. File C:\Program Files\Norton SystemWorks\Norton AntiVirus\Quarantine\391A0A1C infected by "Trojan-Downloader.Win32.Dyfuca.gen" Virus. Action Taken: File Deleted. File C:\Program Files\Norton SystemWorks\Norton AntiVirus\Quarantine\391D3418 infected by "Trojan-Downloader.Win32.Dyfuca.da" Virus. Action Taken: File Deleted. File C:\Program Files\Norton SystemWorks\Norton AntiVirus\Quarantine\39205E15 infected by "Trojan-Downloader.Win32.Agent.ae" Virus. Action Taken: File Deleted. File C:\Program Files\Norton SystemWorks\Norton AntiVirus\Quarantine\392A5C0A tagged as not-a-virus:AdWare.Win32.PowerScan.b. No Action Taken. File C:\Program Files\Norton SystemWorks\Norton AntiVirus\Quarantine\392D0606 tagged as not-a-virus:AdWare.Win32.PowerScan.b. No Action Taken. File C:\Program Files\Norton SystemWorks\Norton AntiVirus\Quarantine\39303003 infected by "Exploit.HTML.CodeBaseExec" Virus. Action Taken: File Renamed. File C:\Program Files\Norton SystemWorks\Norton AntiVirus\Quarantine\393459FF infected by "Exploit.HTML.CodeBaseExec" Virus. Action Taken: File Renamed. File C:\Program Files\Norton SystemWorks\Norton AntiVirus\Quarantine\393A2DF8 infected by "Trojan-Downloader.Win32.IstBar.gen" Virus. Action Taken: File Deleted. File C:\Program Files\Norton SystemWorks\Norton AntiVirus\Quarantine\393E57F4 infected by "Trojan-Downloader.Win32.Small.yw" Virus. Action Taken: File Deleted. File C:\Program Files\Norton SystemWorks\Norton AntiVirus\Quarantine\394101F1 tagged as not-a-virus:AdWare.Win32.WinAD. No Action Taken. File C:\Program Files\Norton SystemWorks\Norton AntiVirus\Quarantine\39442BED tagged as not-a-virus:AdWare.Win32.WinAD. No Action Taken. File C:\Program Files\Norton SystemWorks\Norton AntiVirus\Quarantine\394755E9 infected by "Trojan-Downloader.Win32.Dyfuca.dt" Virus. Action Taken: File Deleted. File C:\Program Files\Norton SystemWorks\Norton AntiVirus\Quarantine\395E6469 infected by "Backdoor.Win32.Ruledor.c" Virus. Action Taken: File Renamed. File C:\Program Files\Norton SystemWorks\Norton AntiVirus\Quarantine\39F23A0F infected by "Email-Worm.Win32.Bagle.at" Virus. Action Taken: File Deleted. File C:\Program Files\Norton SystemWorks\Norton AntiVirus\Quarantine\3A5E1941 infected by "Email-Worm.Win32.NetSky.ac" Virus. Action Taken: File Deleted. File C:\Program Files\Norton SystemWorks\Norton AntiVirus\Quarantine\3B217892 infected by "Trojan-Downloader.Win32.IstBar.dh" Virus. Action Taken: File Deleted. File C:\Program Files\Norton SystemWorks\Norton AntiVirus\Quarantine\3B943843 infected by "Email-Worm.Win32.Bagle.at" Virus. Action Taken: File Deleted. File C:\Program Files\Norton SystemWorks\Norton AntiVirus\Quarantine\3F4C044B.part infected by "P2P-Worm.Win32.Backterra.d" Virus. Action Taken: File Deleted. File C:\Program Files\Norton SystemWorks\Norton AntiVirus\Quarantine\434C4249 tagged as not-a-virus:AdWare.Win32.180Solutions. No Action Taken. File C:\Program Files\Norton SystemWorks\Norton AntiVirus\Quarantine\463E4A2F infected by "Email-Worm.Win32.NetSky.ac" Virus. Action Taken: File Deleted. File C:\Program Files\Norton SystemWorks\Norton AntiVirus\Quarantine\46A36A17 infected by "Email-Worm.Win32.Bagle.z" Virus. Action Taken: File Deleted. File C:\Program Files\Norton SystemWorks\Norton AntiVirus\Quarantine\47182A99 infected by "Backdoor.Win32.Ruledor.c" Virus. Action Taken: File Renamed. File C:\Program Files\Norton SystemWorks\Norton AntiVirus\Quarantine\486014BB infected by "P2P-Worm.Win32.Reur.b" Virus. Action Taken: File Deleted. File C:\Program Files\Norton SystemWorks\Norton AntiVirus\Quarantine\4B6C5CBD infected by "Trojan-Downloader.Win32.Esepor.ab" Virus. Action Taken: File Deleted. File C:\Program Files\Norton SystemWorks\Norton AntiVirus\Quarantine\4C53170E.htm infected by "Exploit.HTML.Mht" Virus. Action Taken: File Renamed. File C:\Program Files\Norton SystemWorks\Norton AntiVirus\Quarantine\4D6E78F9.htm infected by "Exploit.HTML.Mht" Virus. Action Taken: File Renamed. File C:\Program Files\Norton SystemWorks\Norton AntiVirus\Quarantine\4EDC7E48 infected by "Trojan-Downloader.Win32.Esepor.aa" Virus. Action Taken: File Deleted. File C:\Program Files\Norton SystemWorks\Norton AntiVirus\Quarantine\4F42744F tagged as not-a-virus:AdWare.Win32.BiSpy.n. No Action Taken. File C:\Program Files\Norton SystemWorks\Norton AntiVirus\Quarantine\4FA86A57 infected by "Trojan-Downloader.Win32.Dyfuca.cr" Virus. Action Taken: File Deleted. File C:\Program Files\Norton SystemWorks\Norton AntiVirus\Quarantine\4FE251EA infected by "Email-Worm.Win32.Bagle.z" Virus. Action Taken: File Deleted. File C:\Program Files\Norton SystemWorks\Norton AntiVirus\Quarantine\50200511 infected by "Exploit.HTML.CodeBaseExec" Virus. Action Taken: File Renamed. File C:\Program Files\Norton SystemWorks\Norton AntiVirus\Quarantine\510C5CD5 infected by "Email-Worm.Win32.Bagle.gen" Virus. Action Taken: File Deleted. File C:\Program Files\Norton SystemWorks\Norton AntiVirus\Quarantine\512523F1 infected by "Exploit.HTML.CodeBaseExec" Virus. Action Taken: File Renamed. File C:\Program Files\Norton SystemWorks\Norton AntiVirus\Quarantine\518036CC infected by "Email-Worm.Win32.Bagle.z" Virus. Action Taken: File Deleted. File C:\Program Files\Norton SystemWorks\Norton AntiVirus\Quarantine\528C2EB9 infected by "Exploit.HTML.CodeBaseExec" Virus. Action Taken: File Renamed. File C:\Program Files\Norton SystemWorks\Norton AntiVirus\Quarantine\52A86697 tagged as not-a-virus:AdWare.Win32.ClearSearch. No Action Taken. File C:\Program Files\Norton SystemWorks\Norton AntiVirus\Quarantine\530D7417 infected by "Email-Worm.Win32.NetSky.ac" Virus. Action Taken: File Deleted. File C:\Program Files\Norton SystemWorks\Norton AntiVirus\Quarantine\5366410D tagged as not-a-virus:AdWare.Win32.AdBox.a. No Action Taken. File C:\Program Files\Norton SystemWorks\Norton AntiVirus\Quarantine\536C1505 infected by "Trojan-Downloader.Win32.Dyfuca.cr" Virus. Action Taken: File Deleted. File C:\Program Files\Norton SystemWorks\Norton AntiVirus\Quarantine\53703F02 infected by "Trojan-Downloader.Win32.Dyfuca.cr" Virus. Action Taken: File Deleted. File C:\Program Files\Norton SystemWorks\Norton AntiVirus\Quarantine\537368FE tagged as not-a-virus:AdWare.Win32.VirtualBouncer.d. No Action Taken. File C:\Program Files\Norton SystemWorks\Norton AntiVirus\Quarantine\537612FB tagged as not-a-virus:AdWare.Win32.VirtualBouncer.d. No Action Taken. File C:\Program Files\Norton SystemWorks\Norton AntiVirus\Quarantine\53793CF7 infected by "Backdoor.Win32.Ruledor.c" Virus. Action Taken: File Renamed. File C:\Program Files\Norton SystemWorks\Norton AntiVirus\Quarantine\538010F0 tagged as not-a-virus:AdWare.Win32.ClearSearch. No Action Taken. File C:\Program Files\Norton SystemWorks\Norton AntiVirus\Quarantine\538A0EE5 infected by "Trojan-Downloader.Win32.IstBar.gen" Virus. Action Taken: File Deleted. File C:\Program Files\Norton SystemWorks\Norton AntiVirus\Quarantine\539062DE infected by "Trojan.Win32.SecondThought.c" Virus. Action Taken: File Deleted. File C:\Program Files\Norton SystemWorks\Norton AntiVirus\Quarantine\539736D7 infected by "Trojan-Downloader.Win32.IstBar.gen" Virus. Action Taken: File Deleted. File C:\Program Files\Norton SystemWorks\Norton AntiVirus\Quarantine\539A60D3 infected by "Trojan-Downloader.Win32.IstBar.ga" Virus. Action Taken: File Deleted. File C:\Program Files\Norton SystemWorks\Norton AntiVirus\Quarantine\53AA32C1 infected by "Trojan-Downloader.Win32.Dyfuca.gen" Virus. Action Taken: File Deleted. File C:\Program Files\Norton SystemWorks\Norton AntiVirus\Quarantine\53AE5CBE infected by "Trojan-Downloader.Win32.Dyfuca.da" Virus. Action Taken: File Deleted. File C:\Program Files\Norton SystemWorks\Norton AntiVirus\Quarantine\53B106BA tagged as not-a-virus:AdWare.Win32.PowerScan.b. No Action Taken. File C:\Program Files\Norton SystemWorks\Norton AntiVirus\Quarantine\53B430B6 infected by "Exploit.HTML.CodeBaseExec" Virus. Action Taken: File Renamed. File C:\Program Files\Norton SystemWorks\Norton AntiVirus\Quarantine\53B75AB3 tagged as not-a-virus:AdWare.Win32.NewDotNet. No Action Taken. File C:\Program Files\Norton SystemWorks\Norton AntiVirus\Quarantine\53BB04AF tagged as not-a-virus:AdWare.Win32.180Solutions. No Action Taken. File C:\Program Files\Norton SystemWorks\Norton AntiVirus\Quarantine\53BE2EAC tagged as not-a-virus:AdWare.Win32.Casino.b. No Action Taken. File C:\Program Files\Norton SystemWorks\Norton AntiVirus\Quarantine\53C158A8 tagged as not-a-virus:AdWare.Win32.SideFind. No Action Taken. File C:\Program Files\Norton SystemWorks\Norton AntiVirus\Quarantine\53C502A4 tagged as not-a-virus:AdWare.Win32.SideFind. No Action Taken. File C:\Program Files\Norton SystemWorks\Norton AntiVirus\Quarantine\53CE009A infected by "Trojan-Downloader.Win32.IstBar.gen" Virus. Action Taken: File Deleted. File C:\Program Files\Norton SystemWorks\Norton AntiVirus\Quarantine\53D22A96 infected by "Trojan-Spy.Win32.Briss.j" Virus. Action Taken: File Deleted. File C:\Program Files\Norton SystemWorks\Norton AntiVirus\Quarantine\53D55492 tagged as not-a-virus:AdWare.Win32.GigatechSuperBar. No Action Taken. File C:\Program Files\Norton SystemWorks\Norton AntiVirus\Quarantine\53D87E8F infected by "Trojan-Downloader.Win32.Dyfuca.dc" Virus. Action Taken: File Deleted. File C:\Program Files\Norton SystemWorks\Norton AntiVirus\Quarantine\541E1F5A.htm infected by "Exploit.HTML.Mht" Virus. Action Taken: File Renamed. File C:\Program Files\Norton SystemWorks\Norton AntiVirus\Quarantine\55030B49 infected by "Trojan.Win32.Revop.c" Virus. Action Taken: File Deleted. File C:\Program Files\Norton SystemWorks\Norton AntiVirus\Quarantine\56524613 infected by "Backdoor.Win32.Bifrose.w" Virus. Action Taken: File Renamed. File C:\Program Files\Norton SystemWorks\Norton AntiVirus\Quarantine\56557010 infected by "Backdoor.Win32.Bifrose.w" Virus. Action Taken: File Renamed. File C:\Program Files\Norton SystemWorks\Norton AntiVirus\Quarantine\5A41318A infected by "Email-Worm.Win32.Bagle.bw" Virus. Action Taken: File Deleted. File C:\Program Files\Norton SystemWorks\Norton AntiVirus\Quarantine\5AD3304E infected by "Trojan-Downloader.Win32.Dyfuca.da" Virus. Action Taken: File Deleted. File C:\Program Files\Norton SystemWorks\Norton AntiVirus\Quarantine\5B392655 tagged as not-a-virus:AdWare.Win32.WinAD.a. No Action Taken. File C:\Program Files\Norton SystemWorks\Norton AntiVirus\Quarantine\5BEE382F.htm infected by "Exploit.HTML.Mht" Virus. Action Taken: File Renamed. File C:\Program Files\Norton SystemWorks\Norton AntiVirus\Quarantine\5D6C3687 tagged as not-a-virus:Porn-Dialer.Win32.Star. No Action Taken. File C:\Program Files\Norton SystemWorks\Norton AntiVirus\Quarantine\5DCE541F.htm infected by "Exploit.HTML.Mht" Virus. Action Taken: File Renamed. File C:\Program Files\Norton SystemWorks\Norton AntiVirus\Quarantine\5DF77BF2 infected by "Trojan-Dropper.Win32.Mudrop.w" Virus. Action Taken: File Deleted. File C:\Program Files\Norton SystemWorks\Norton AntiVirus\Quarantine\5E1475D2 infected by "Trojan-Dropper.Win32.Mudrop.w" Virus. Action Taken: File Deleted. File C:\Program Files\Norton SystemWorks\Norton AntiVirus\Quarantine\5E997F40.class infected by "Exploit.Java.ByteVerify" Virus. Action Taken: File Renamed. File C:\Program Files\Norton SystemWorks\Norton AntiVirus\Quarantine\5F166AB6 infected by "Trojan-Dropper.Win32.Mudrop.w" Virus. Action Taken: File Deleted. File C:\Program Files\Norton SystemWorks\Norton AntiVirus\Quarantine\5F360E7D.htm infected by "Exploit.HTML.Mht" Virus. Action Taken: File Renamed. File C:\Program Files\Norton SystemWorks\Norton AntiVirus\Quarantine\5FE639D2.class infected by "Exploit.Java.ByteVerify" Virus. Action Taken: File Renamed. File C:\Program Files\Norton SystemWorks\Norton AntiVirus\Quarantine\618213F6.htm infected by "Exploit.HTML.Mht" Virus. Action Taken: File Renamed. File C:\Program Files\Norton SystemWorks\Norton AntiVirus\Quarantine\61D74ED1 infected by "Email-Worm.Win32.Bagle.z" Virus. Action Taken: File Deleted. File C:\Program Files\Norton SystemWorks\Norton AntiVirus\Quarantine\62A60D5E infected by "Trojan-Downloader.Win32.INService.i" Virus. Action Taken: File Deleted. File C:\Program Files\Norton SystemWorks\Norton AntiVirus\Quarantine\63E94FE0 infected by "Email-Worm.Win32.Bagle.z" Virus. Action Taken: File Deleted. File C:\Program Files\Norton SystemWorks\Norton AntiVirus\Quarantine\66C757F8 infected by "Email-Worm.Win32.Bagle.bc" Virus. Action Taken: File Deleted. File C:\Program Files\Norton SystemWorks\Norton AntiVirus\Quarantine\68FD7285 infected by "Trojan-Downloader.Win32.Small.yw" Virus. Action Taken: File Deleted. File C:\Program Files\Norton SystemWorks\Norton AntiVirus\Quarantine\6963688D tagged as not-a-virus:AdWare.Win32.PowerScan.b. No Action Taken. File C:\Program Files\Norton SystemWorks\Norton AntiVirus\Quarantine\6A9846D7 infected by "Email-Worm.Win32.Bagle.z" Virus. Action Taken: File Deleted. File C:\Program Files\Norton SystemWorks\Norton AntiVirus\Quarantine\6BC87B51 infected by "Backdoor.Win32.Bifrose.w" Virus. Action Taken: File Renamed. File C:\Program Files\Norton SystemWorks\Norton AntiVirus\Quarantine\71382CD9.htm infected by "Exploit.HTML.Mht" Virus. Action Taken: File Renamed. File C:\Program Files\Norton SystemWorks\Norton AntiVirus\Quarantine\725A1E53 infected by "Trojan-Dropper.Win32.Delf.z" Virus. Action Taken: File Deleted. File C:\Program Files\Norton SystemWorks\Norton AntiVirus\Quarantine\729C616C infected by "Email-Worm.Win32.Bagle.at" Virus. Action Taken: File Deleted. File C:\Program Files\Norton SystemWorks\Norton AntiVirus\Quarantine\72A0463D infected by "Trojan-Downloader.Win32.Small.mt" Virus. Action Taken: File Deleted. File C:\Program Files\Norton SystemWorks\Norton AntiVirus\Quarantine\732D7E20.htm infected by "Exploit.HTML.Mht" Virus. Action Taken: File Renamed. File C:\Program Files\Norton SystemWorks\Norton AntiVirus\Quarantine\73E75754.htm infected by "Exploit.HTML.Mht" Virus. Action Taken: File Renamed. File C:\Program Files\Norton SystemWorks\Norton AntiVirus\Quarantine\7452771C infected by "Trojan.Win32.Hatu" Virus. Action Taken: File Deleted. File C:\Program Files\Norton SystemWorks\Norton AntiVirus\Quarantine\74643C0F infected by "Email-Worm.Win32.Bagle.z" Virus. Action Taken: File Deleted. File C:\Program Files\Norton SystemWorks\Norton AntiVirus\Quarantine\74F3248B tagged as not-a-virus:AdWare.Win32.NewDotNet. No Action Taken. File C:\Program Files\Norton SystemWorks\Norton AntiVirus\Quarantine\755D1F0E infected by "Backdoor.Win32.Bifrose.w" Virus. Action Taken: File Renamed. File C:\Program Files\Norton SystemWorks\Norton AntiVirus\Quarantine\793B028F infected by "Trojan-Spy.Win32.Briss.j" Virus. Action Taken: File Deleted. File C:\Program Files\Norton SystemWorks\Norton AntiVirus\Quarantine\79624888 infected by "Trojan-Dropper.Win32.Mudrop.w" Virus. Action Taken: File Deleted. File C:\Program Files\Norton SystemWorks\Norton AntiVirus\Quarantine\7AD73E10 tagged as not-a-virus:AdWare.Win32.SideFind. No Action Taken. File C:\Program Files\Norton SystemWorks\Norton AntiVirus\Quarantine\7C8F2CC1 infected by "Email-Worm.Win32.Bagle.z" Virus. Action Taken: File Deleted. File C:\Program Files\Norton SystemWorks\Norton AntiVirus\Quarantine\7D84644A infected by "Exploit.HTML.CodeBaseExec" Virus. Action Taken: File Renamed. File C:\Program Files\Norton SystemWorks\Norton AntiVirus\Quarantine\7DEA5A51 infected by "Trojan-Downloader.Win32.IstBar.dh" Virus. Action Taken: File Deleted. File C:\Program Files\Norton SystemWorks\Norton AntiVirus\Quarantine\7EF523D5 infected by "Email-Worm.Win32.Bagle.z" Virus. Action Taken: File Deleted. File C:\Program Files\Norton SystemWorks\Norton AntiVirus\Quarantine\7F904858.EXE infected by "Backdoor.Win32.Lil.a" Virus. Action Taken: File Renamed. File C:\Program Files\Norton SystemWorks\Norton AntiVirus\Quarantine\7FD66FF2.htm infected by "Exploit.HTML.CodeBaseExec" Virus. Action Taken: File Renamed. File C:\Program Files\RealVNC\VNC4\vncconfig.exe tagged as not-a-virus:RemoteAdmin.Win32.WinVNC.4. No Action Taken. File C:\Program Files\RealVNC\VNC4\vncviewer.exe tagged as not-a-virus:RemoteAdmin.Win32.WinVNC.4. No Action Taken. File C:\Program Files\RealVNC\VNC4\winvnc4.exe tagged as not-a-virus:RemoteAdmin.Win32.WinVNC.4. No Action Taken. File C:\Program Files\RealVNC\VNC4\wm_hooks.dll tagged as not-a-virus:RemoteAdmin.Win32.WinVNC.4. No Action Taken. File C:\qlcojek.exe infected by "Trojan-Dropper.Win32.Agent.azs" Virus. Action Taken: File Deleted. File C:\RECYCLER\NPROTECT\00000546. infected by "BkCln.Unknown" Virus. Action Taken: File Renamed. File C:\RECYCLER\NPROTECT\00000553. infected by "BkCln.Unknown" Virus. Action Taken: File Renamed. File C:\RECYCLER\NPROTECT\00000554. infected by "BkCln.Unknown" Virus. Action Taken: File Renamed. File C:\RECYCLER\NPROTECT\00008970. infected by "BkCln.Unknown" Virus. Action Taken: File Renamed. File C:\RECYCLER\NPROTECT\00009045. infected by "BkCln.Unknown" Virus. Action Taken: File Renamed. File C:\RECYCLER\NPROTECT\00014643. infected by "BkCln.Unknown" Virus. Action Taken: File Renamed. File C:\RECYCLER\NPROTECT\00043823. infected by "BkCln.Unknown" Virus. Action Taken: File Renamed. File C:\sukqx.exe infected by "Trojan-PSW.Win32.Sinowal.bh" Virus. Action Taken: File Deleted. File C:\WebMaster\Mail5\ATTACH\dmTducation.pif infected by "BkCln.Unknown" Virus. Action Taken: File Deleted. File C:\WebMaster\Mail5\ATTACH\document.zip infected by "Email-Worm.Win32.Warezov.dn" Virus. Action Taken: File Deleted. File C:\WebMaster\Mail5\ATTACH\Edito Brochure CollFges LycTes 2002.doc infected by "BkCln.Unknown" Virus. Action Taken: File Renamed. File C:\WebMaster\Mail5\ATTACH\Projet FOte.doc infected by "BkCln.Unknown" Virus. Action Taken: File Renamed. File C:\WebMaster\Mail5\Embedded\criss.gif infected by "Trojan-Spy.HTML.Bankfraud.qb" Virus. Action Taken: File Deleted. File C:\WebMaster\Mail5\Embedded\decryption.gif infected by "Trojan-Spy.HTML.Bankfraud.qb" Virus. Action Taken: File Deleted. File C:\WebMaster\Mail5\Embedded\puke.GIF infected by "Trojan-Spy.HTML.Bayfraud.in" Virus. Action Taken: File Deleted. File C:\Windows\config.exe infected by "Backdoor.Win32.SdBot.aad" Virus. Action Taken: File Renamed. File C:\Windows\javaiein.exe tagged as not-a-virus:AdWare.Win32.WinAD.b. No Action Taken. File C:\Windows\lsass.exe infected by "Backdoor.Win32.SdBot.aad" Virus. Action Taken: File Renamed. File C:\Windows\services.exe infected by "Backdoor.Win32.SdBot.aad" Virus. Action Taken: File Renamed. File C:\Windows\svchost.exe infected by "Backdoor.Win32.SdBot.aad" Virus. Action Taken: File Renamed. File C:\Windows\system32\i infected by "Trojan-Downloader.BAT.Ftp.ab" Virus. Action Taken: File Deleted. File C:\Windows\system32\n infected by "Trojan-Downloader.BAT.Ftp.ab" Virus. Action Taken: File Deleted. File C:\Windows\Temp\eraseme_81236.exe infected by "Backdoor.Win32.SdBot.aad" Virus. Action Taken: File Renamed. File C:\Windows\wdfmgrr.exe infected by "Backdoor.Win32.SdBot.aad" Virus. Action Taken: File Renamed. File C:\Windowsbis\javaiein.exe tagged as not-a-virus:AdWare.Win32.WinAD.b. No Action Taken. File C:\y6c2k7n7z2v8.exe infected by "Trojan.Win32.Dialer.qy" Virus. Action Taken: File Deleted. File C:\ztho6.exe tagged as not-a-virus:Dialer.Win32.PlayGames.l. No Action Taken. File D:\Downloads 2005\2findmp3setup.exe tagged as not-a-virus:Server-Proxy.Win32.MarketScore.k. No Action Taken. File D:\Downloads 2005\ABC-win32-v2.6.9.exe tagged as not-a-virus:AdWare.Win32.WinAD.b. No Action Taken. File D:\Downloads 2005\WarezP2P-1.exe tagged as not-a-virus:AdWare.Win32.HyperBar. No Action Taken. File D:\Downloads 2005\WarezP2P.exe tagged as not-a-virus:AdWare.Win32.HyperBar.b. No Action Taken. File D:\Downloads 2006\Torrents\Lphant\Windows Vista All Versions Activation 21.11.06.exe infected by "Trojan-PSW.Win32.LdPinch.aze" Virus. Action Taken: File Deleted. File D:\Emule\Incoming\MobiTV for Pocket PC.zip infected by "Trojan-Clicker.Win32.Agent.ie" Virus. Action Taken: File Deleted. File D:\Musiques\Roberto Alagna - Massenet - Werther - Pourquoi me rTveiller.mp3 infected by "BkCln.Unknown" Virus. Action Taken: File Renamed. File D:\Program Files\BullsEye Network\Uninstall.exe tagged as not-a-virus:AdWare.Win32.BargainBuddy.y. No Action Taken. File D:\Program Files\eMule\Incoming\vnc-3.3.7-x86_win32.exe tagged as not-a-virus:RemoteAdmin.Win32.WinVNC-based.c. No Action Taken. File D:\Program Files\eXact\exacttoolbar00066.dll tagged as not-a-virus:AdWare.Win32.Exact.b. No Action Taken. File D:\Program Files\eXact\exactupdate00136.exe tagged as not-a-virus:AdWare.Win32.Exact.a. No Action Taken. File D:\Program Files\Fichiers communs\Hyperbar\Hyperbar.dll tagged as not-a-virus:AdWare.Win32.HyperBar. No Action Taken. File D:\Program Files\Fichiers communs\Hyperbar\HyperbarSS1.dll tagged as not-a-virus:AdWare.Win32.HyperBar. No Action Taken. File D:\Program Files\Fichiers communs\Hyperbar\HyperbarSS2.dll tagged as not-a-virus:AdWare.Win32.HyperBar. No Action Taken. File D:\Program Files\KaZaA Speedup\SuperBarInstaller.exe tagged as not-a-virus:AdWare.Win32.GigatechSuperBar. No Action Taken. File D:\Program Files\MyWay\myBar\1.bin\MY2NS.EXE tagged as not-a-virus:AdWare.Win32.MyWay.b. No Action Taken. File D:\Program Files\MyWay\myBar\1.bin\MYBAR.DLL tagged as not-a-virus:AdWare.Win32.MyWay.x. No Action Taken. File D:\Program Files\MyWay\SrchAstt\1.bin\MYSRCHAS.DLL tagged as not-a-virus:AdWare.Win32.MyWay.c. No Action Taken. File D:\Program Files\NewDotNet\newdotnet5_20.dll tagged as not-a-virus:AdWare.Win32.NewDotNet.c. No Action Taken. File D:\Program Files\RealVNC\VNC4\vncconfig.exe tagged as not-a-virus:RemoteAdmin.Win32.WinVNC.4. No Action Taken. File D:\Program Files\RealVNC\VNC4\vncviewer.exe tagged as not-a-virus:RemoteAdmin.Win32.WinVNC.4. No Action Taken. File D:\Program Files\RealVNC\VNC4\winvnc4.exe tagged as not-a-virus:RemoteAdmin.Win32.WinVNC.4. No Action Taken. File D:\Program Files\RealVNC\VNC4\wm_hooks.dll tagged as not-a-virus:RemoteAdmin.Win32.WinVNC.4. No Action Taken. File D:\Webmaster\WebMaster\Mail5\ATTACH\dmTducation.pif infected by "BkCln.Unknown" Virus. Action Taken: File Deleted. File D:\Webmaster\WebMaster\Mail5\ATTACH\Edito Brochure CollFges LycTes 2002.doc infected by "BkCln.Unknown" Virus. Action Taken: File Renamed. File D:\Webmaster\WebMaster\Mail5\ATTACH\Projet FOte.doc infected by "BkCln.Unknown" Virus. Action Taken: File Renamed. File D:\Webmaster\WebMaster\Mail5\Embedded\decryption.gif infected by "Trojan-Spy.HTML.Bankfraud.qb" Virus. Action Taken: File Deleted. File D:\Webmaster\WebMaster\Mail5\Embedded\puke.GIF infected by "Trojan-Spy.HTML.Bayfraud.in" Virus. Action Taken: File Deleted. File F:\Documents and Settings\Administrateur.TITANIUM\Application Data\Opera\Opera 9\profile\cache4\opr31CPJ.htm infected by "Trojan-Clicker.HTML.Agent.a" Virus. Action Taken: File Deleted. File F:\Documents and Settings\Administrateur.TITANIUM\Local Settings\Temp\b122.exe tagged as not-a-virus:AdWare.Win32.Maxifiles.aa. No Action Taken. File F:\Documents and Settings\Administrateur.TITANIUM\Local Settings\Temp\b130.exe tagged as not-a-virus:AdWare.Win32.Softomate.u. No Action Taken. File F:\Documents and Settings\Administrateur.TITANIUM\Local Settings\Temporary Internet Files\Content.IE5\0LUFKDIN\122[1].net tagged as not-a-virus:AdWare.Win32.Maxifiles.aa. No Action Taken. File F:\Documents and Settings\Administrateur.TITANIUM\Local Settings\Temporary Internet Files\Content.IE5\0LUFKDIN\130[1].net tagged as not-a-virus:AdWare.Win32.Softomate.u. No Action Taken. File F:\Documents and Settings\Administrateur.TITANIUM\Local Settings\Temporary Internet Files\Content.IE5\CT23KXEF\srvvmb[1].exe infected by "Packed.Win32.Klone.g" Virus. Action Taken: File Renamed. File F:\Documents and Settings\Administrateur.TITANIUM\Local Settings\Temporary Internet Files\Content.IE5\O9UVCXIB\antzom[1].exe infected by "Trojan-Dropper.Win32.Agent.azn" Virus. Action Taken: File Deleted. File F:\Documents and Settings\Administrateur.TITANIUM\Local Settings\Temporary Internet Files\Content.IE5\O9UVCXIB\srvdao[1].exe infected by "Trojan.Win32.Dialer.qs" Virus. Action Taken: File Deleted. File F:\Documents and Settings\Administrateur.TITANIUM\Local Settings\Temporary Internet Files\Content.IE5\WDA3056N\116[1].net tagged as not-a-virus:AdWare.Win32.Softomate.u. No Action Taken. File F:\Program Files\DAEMON Tools SearchBar\Uninst.exe tagged as not-a-virus:AdWare.Win32.SaveNow.az. No Action Taken. File F:\Program Files\eXact\exacttoolbar00066.dll tagged as not-a-virus:AdWare.Win32.Exact.b. No Action Taken. File F:\Program Files\eXact\exactupdate00136.exe tagged as not-a-virus:AdWare.Win32.Exact.a. No Action Taken. File F:\Program Files\ipwins\ipwins.exe tagged as not-a-virus:AdWare.Win32.Maxifiles.aa. No Action Taken. File F:\Program Files\KaZaA Speedup\SuperBarInstaller.exe tagged as not-a-virus:AdWare.Win32.GigatechSuperBar. No Action Taken. File F:\Program Files\MyWay\myBar\1.bin\MY2NS.EXE tagged as not-a-virus:AdWare.Win32.MyWay.b. No Action Taken. File F:\Program Files\MyWay\myBar\1.bin\MYBAR.DLL tagged as not-a-virus:AdWare.Win32.MyWay.x. No Action Taken. File F:\Program Files\MyWay\SrchAstt\1.bin\MYSRCHAS.DLL tagged as not-a-virus:AdWare.Win32.MyWay.c. No Action Taken. File F:\Program Files\RealVNC\VNC4\vncconfig.exe tagged as not-a-virus:RemoteAdmin.Win32.WinVNC.4. No Action Taken. File F:\Program Files\RealVNC\VNC4\vncviewer.exe tagged as not-a-virus:RemoteAdmin.Win32.WinVNC.4. No Action Taken. File F:\Program Files\RealVNC\VNC4\winvnc4.exe tagged as not-a-virus:RemoteAdmin.Win32.WinVNC.4. No Action Taken. File F:\Program Files\RealVNC\VNC4\wm_hooks.dll tagged as not-a-virus:RemoteAdmin.Win32.WinVNC.4. No Action Taken. File F:\WINDOWS\system32\cool.exe infected by "Trojan.Win32.Dialer.qs" Virus. Action Taken: File Deleted. File F:\WINDOWS\system32\jtoihoep.dll infected by "Trojan-Spy.Win32.VBStat.h" Virus. Action Taken: File Deleted. File F:\WINDOWS\system32\winyop32.dll infected by "PECompact" Virus. Action Taken: File Renamed. File F:\WINDOWS\Temp\idd30.tmp.exe tagged as not-a-virus:Porn-Dialer.Win32.Agent.z. No Action Taken. File F:\WINDOWS\Temp\idd32.tmp.exe tagged as not-a-virus:Porn-Dialer.Win32.Agent.z. No Action Taken. File F:\WINDOWS\Temp\idd47.tmp.exe tagged as not-a-virus:Porn-Dialer.Win32.Agent.z. No Action Taken. File F:\WINDOWS\Temp\win31.tmp.exe infected by "Packed.Win32.Klone.g" Virus. Action Taken: File Renamed. Enfin la fin... @+

Bonjour, Mon analyse virus a été fort longue et bien fournie Voici enfin le rapport KASPERSKY ON-LINE SCANNER REPORT Monday, December 25, 2006 9:27:33 AM Système d'exploitation : Microsoft Windows XP Professional, Service Pack 2 (Build 2600) Kaspersky On-line Scanner version : 5.0.83.0 Dernière mise à jour de la base antivirus Kaspersky : 23/12/2006 Enregistrements dans la base antivirus Kaspersky : 239682 Paramètres d'analyse Analyser avec la base antivirus suivante standard Analyser les archives vrai Analyser les bases de messagerie vrai Cible de l'analyse Poste de travail C:\ D:\ F:\ K:\ Statistiques de l'analyse Total d'objets analysés 740658 Nombre de virus trouvés 75 Nombre d'objets infectés 218 / 0 Nombre d'objets suspects 19 Durée de l'analyse 33:20:41 Nom de l'objet infecté Nom du virus Dernière action C:\dlvkpgg.exe L'objet est verrouillé ignoré C:\docc.exe L'objet est verrouillé ignoré C:\Documents and Settings\All Users\Application Data\Microsoft\Dr Watson\user.dmp L'objet est verrouillé ignoré C:\Documents and Settings\LocalService\Local Settings\Temporary Internet Files\Content.IE5\D36C2DPC\1[1].exe L'objet est verrouillé ignoré C:\Documents and Settings\LocalService\Local Settings\Temporary Internet Files\Content.IE5\D36C2DPC\Browser[1].exe L'objet est verrouillé ignoré C:\Documents and Settings\LocalService\Local Settings\Temporary Internet Files\Content.IE5\D36C2DPC\mousepad11[1].exe Infecté : Trojan-Clicker.Win32.VB.mo ignoré C:\Documents and Settings\LocalService\Local Settings\Temporary Internet Files\Content.IE5\L5MOWPF3\Browser[1].exe L'objet est verrouillé ignoré C:\Documents and Settings\Yves Cathala\Application Data\Opera\Opera 8.02 BitTorrent beta\mail\store\account0\2004-10.mbs/[From "Your Soulmate" <5612@5480.uniproclaimer.com>][Date Fri, 01 Oct 2004 07:36:35]/html/[From "Quick Pay Advance" <9577@8296.unitransaction.com>][Date Fri, 01 Oct 2004 09:07:04]/html/[From from PC-frank.org (rafaillac.net1.nerim.net [213.41.155.202]) by mwinf0208.wanadoo.fr (SMTP Server) with SMTP id A795B200029A for ; Fri, 1 Oct 2004 10:28:52 +0200 (CEST)][Date Fri, 01 Oct 2004 11:26:52 +0200]/text Suspect : Email-Worm.Win32.Bagle.mail ignoré C:\Documents and Settings\Yves Cathala\Application Data\Opera\Opera 8.02 BitTorrent beta\mail\store\account0\2004-10.mbs/[From "Your Soulmate" <5612@5480.uniproclaimer.com>][Date Fri, 01 Oct 2004 07:36:35]/html/[From "Quick Pay Advance" <9577@8296.unitransaction.com>][Date Fri, 01 Oct 2004 09:07:04]/html Suspect : Email-Worm.Win32.Bagle.mail ignoré C:\Documents and Settings\Yves Cathala\Application Data\Opera\Opera 8.02 BitTorrent beta\mail\store\account0\2004-10.mbs/[From "Your Soulmate" <5612@5480.uniproclaimer.com>][Date Fri, 01 Oct 2004 07:36:35]/html Suspect : Email-Worm.Win32.Bagle.mail ignoré C:\Documents and Settings\Yves Cathala\Application Data\Opera\Opera 8.02 BitTorrent beta\mail\store\account0\2004-10.mbs Mail Berkeley mbox: suspect - 3 ignoré C:\Documents and Settings\Yves Cathala\Mes documents\FinePrint files\Forms\FPLIMIT4.FP L'objet est verrouillé ignoré C:\Documents and Settings\Yves Cathala\Mes documents\FinePrint files\Forms\invoice.fp L'objet est verrouillé ignoré C:\Documents and Settings\Yves Cathala\Mes documents\FinePrint files\Forms\letterhead.fp L'objet est verrouillé ignoré C:\e2j5h7t5e4y7.exe L'objet est verrouillé ignoré C:\j1hvbo6.exe Infecté : Trojan.Win32.Dialer.qy ignoré C:\jeghy1h.exe Infecté : Trojan.Win32.Dialer.qy ignoré C:\jeghy1ho6.exe Infecté : Trojan.Win32.Dialer.qy ignoré C:\p7q3y3y36g3.exe Infecté : Trojan.Win32.Dialer.qy ignoré C:\Program Files\ACD Systems\ACDSee\7.0\Patch fr.exe/setup.zip/2 Infecté : Backdoor.Win32.Lil.a ignoré C:\Program Files\ACD Systems\ACDSee\7.0\Patch fr.exe/setup.zip Infecté : Backdoor.Win32.Lil.a ignoré C:\Program Files\ACD Systems\ACDSee\7.0\Patch fr.exe SEA: infecté - 2 ignoré C:\Program Files\KeeBoo\Users\users.dat L'objet est verrouillé ignoré C:\Program Files\Norton SystemWorks\Norton AntiVirus\Quarantine\00B33293.htm Infecté : Exploit.HTML.Mht ignoré C:\Program Files\Norton SystemWorks\Norton AntiVirus\Quarantine\01504C99 Infecté : Backdoor.Win32.Ruledor.c ignoré C:\Program Files\Norton SystemWorks\Norton AntiVirus\Quarantine\01857F9D Infecté : Email-Worm.Win32.Bagle.z ignoré C:\Program Files\Norton SystemWorks\Norton AntiVirus\Quarantine\02A62017.EXE Infecté : Backdoor.Win32.Rbot.gen ignoré C:\Program Files\Norton SystemWorks\Norton AntiVirus\Quarantine\04670A1F Infecté : Email-Worm.Win32.Bagle.z ignoré C:\Program Files\Norton SystemWorks\Norton AntiVirus\Quarantine\06384B02 Infecté : Email-Worm.Win32.Bagle.z ignoré C:\Program Files\Norton SystemWorks\Norton AntiVirus\Quarantine\06FC2C57 Infecté : Email-Worm.Win32.Bagle.z ignoré C:\Program Files\Norton SystemWorks\Norton AntiVirus\Quarantine\0732750C Infecté : Email-Worm.Win32.Bagle.z ignoré C:\Program Files\Norton SystemWorks\Norton AntiVirus\Quarantine\09142048 Infecté : Trojan-Downloader.Win32.IstBar.gen ignoré C:\Program Files\Norton SystemWorks\Norton AntiVirus\Quarantine\0A4A26B5 Infecté : Email-Worm.Win32.Bagle.z ignoré C:\Program Files\Norton SystemWorks\Norton AntiVirus\Quarantine\0C141C89 Infecté : Trojan-Downloader.Win32.IstBar.gen ignoré C:\Program Files\Norton SystemWorks\Norton AntiVirus\Quarantine\0C952C2E Infecté : Email-Worm.Win32.Bagle.z ignoré C:\Program Files\Norton SystemWorks\Norton AntiVirus\Quarantine\108A4635.htm Suspect : Exploit.HTML.Mht ignoré C:\Program Files\Norton SystemWorks\Norton AntiVirus\Quarantine\10B4168D Infecté : Email-Worm.Win32.Bagle.at ignoré C:\Program Files\Norton SystemWorks\Norton AntiVirus\Quarantine\1107683C.exe Infecté : Trojan.Win32.StartPage.oz ignoré C:\Program Files\Norton SystemWorks\Norton AntiVirus\Quarantine\14A45C47 Infecté : Trojan-Dropper.Win32.Delf.z ignoré C:\Program Files\Norton SystemWorks\Norton AntiVirus\Quarantine\15714856 Infecté : Trojan.Win32.Revop.c ignoré C:\Program Files\Norton SystemWorks\Norton AntiVirus\Quarantine\15F436CE Infecté : Email-Worm.Win32.Bagle.z ignoré C:\Program Files\Norton SystemWorks\Norton AntiVirus\Quarantine\161337E3.htm Suspect : Exploit.HTML.Mht ignoré C:\Program Files\Norton SystemWorks\Norton AntiVirus\Quarantine\19173519 Infecté : Email-Worm.Win32.Bagle.z ignoré C:\Program Files\Norton SystemWorks\Norton AntiVirus\Quarantine\1D503322 Infecté : Email-Worm.Win32.Bagle.z ignoré C:\Program Files\Norton SystemWorks\Norton AntiVirus\Quarantine\1E2A54E0 Infecté : Email-Worm.Win32.Bagle.at ignoré C:\Program Files\Norton SystemWorks\Norton AntiVirus\Quarantine\1E7857FB Infecté : Trojan-Dropper.Win32.Delf.z ignoré C:\Program Files\Norton SystemWorks\Norton AntiVirus\Quarantine\1F4619A8 Infecté : Email-Worm.Win32.Bagle.at ignoré C:\Program Files\Norton SystemWorks\Norton AntiVirus\Quarantine\1F800D67 Infecté : Email-Worm.Win32.Bagle.at ignoré C:\Program Files\Norton SystemWorks\Norton AntiVirus\Quarantine\20061D3B Infecté : Email-Worm.Win32.NetSky.ac ignoré C:\Program Files\Norton SystemWorks\Norton AntiVirus\Quarantine\200D1ACD Infecté : Email-Worm.Win32.Bagle.at ignoré C:\Program Files\Norton SystemWorks\Norton AntiVirus\Quarantine\211F3806 Infecté : Email-Worm.Win32.NetSky.ac ignoré C:\Program Files\Norton SystemWorks\Norton AntiVirus\Quarantine\21295F94 Infecté : Email-Worm.Win32.Bagle.at ignoré C:\Program Files\Norton SystemWorks\Norton AntiVirus\Quarantine\213B5825 Infecté : Email-Worm.Win32.Bagle.z ignoré C:\Program Files\Norton SystemWorks\Norton AntiVirus\Quarantine\22D9610A Infecté : Email-Worm.Win32.Bagle.z ignoré C:\Program Files\Norton SystemWorks\Norton AntiVirus\Quarantine\23341486 Infecté : Trojan-Spy.Win32.Briss.j ignoré C:\Program Files\Norton SystemWorks\Norton AntiVirus\Quarantine\239B0A8E Infecté : Trojan-Downloader.Win32.Dyfuca.da ignoré C:\Program Files\Norton SystemWorks\Norton AntiVirus\Quarantine\24560C7C Infecté : Email-Worm.Win32.NetSky.ac ignoré C:\Program Files\Norton SystemWorks\Norton AntiVirus\Quarantine\248E2542 Infecté : Email-Worm.Win32.Bagle.gen ignoré C:\Program Files\Norton SystemWorks\Norton AntiVirus\Quarantine\26FE3C2F Infecté : Email-Worm.Win32.NetSky.ac ignoré C:\Program Files\Norton SystemWorks\Norton AntiVirus\Quarantine\276B4799.htm Suspect : Exploit.HTML.Mht ignoré C:\Program Files\Norton SystemWorks\Norton AntiVirus\Quarantine\27770A0E Infecté : Email-Worm.Win32.NetSky.ac ignoré C:\Program Files\Norton SystemWorks\Norton AntiVirus\Quarantine\2896197A.htm Suspect : Exploit.HTML.Mht ignoré C:\Program Files\Norton SystemWorks\Norton AntiVirus\Quarantine\29C6363E Infecté : Backdoor.Win32.Bifrose.w ignoré C:\Program Files\Norton SystemWorks\Norton AntiVirus\Quarantine\29DF3A64 Infecté : Email-Worm.Win32.NetSky.ac ignoré C:\Program Files\Norton SystemWorks\Norton AntiVirus\Quarantine\2C914053 Infecté : Trojan-Downloader.Win32.Dyfuca.de ignoré C:\Program Files\Norton SystemWorks\Norton AntiVirus\Quarantine\2CCF422D Infecté : Email-Worm.Win32.NetSky.ac ignoré C:\Program Files\Norton SystemWorks\Norton AntiVirus\Quarantine\2DAF0712 Infecté : Email-Worm.Win32.Bagle.z ignoré C:\Program Files\Norton SystemWorks\Norton AntiVirus\Quarantine\2EAE6FAE Infecté : Email-Worm.Win32.NetSky.ac ignoré C:\Program Files\Norton SystemWorks\Norton AntiVirus\Quarantine\2F2B468C Infecté : Exploit.HTML.CodeBaseExec ignoré C:\Program Files\Norton SystemWorks\Norton AntiVirus\Quarantine\2FC34CF6.htm Suspect : Exploit.HTML.CodeBaseExec ignoré C:\Program Files\Norton SystemWorks\Norton AntiVirus\Quarantine\31FD3F5E Infecté : Backdoor.Win32.Rbot.gen ignoré C:\Program Files\Norton SystemWorks\Norton AntiVirus\Quarantine\33986FC1 Infecté : Trojan-Downloader.Win32.IstBar.gen ignoré C:\Program Files\Norton SystemWorks\Norton AntiVirus\Quarantine\357F0E59.htm Suspect : Exploit.HTML.CodeBaseExec ignoré C:\Program Files\Norton SystemWorks\Norton AntiVirus\Quarantine\36A63693 Infecté : Email-Worm.Win32.Bagle.z ignoré C:\Program Files\Norton SystemWorks\Norton AntiVirus\Quarantine\37F57AA4 Infecté : Exploit.HTML.CodeBaseExec ignoré C:\Program Files\Norton SystemWorks\Norton AntiVirus\Quarantine\37F924A0 Infecté : Exploit.HTML.CodeBaseExec ignoré C:\Program Files\Norton SystemWorks\Norton AntiVirus\Quarantine\383C6585.htm Suspect : Exploit.HTML.Mht ignoré C:\Program Files\Norton SystemWorks\Norton AntiVirus\Quarantine\38E91452 Infecté : Trojan-Clicker.Win32.Delf.r ignoré C:\Program Files\Norton SystemWorks\Norton AntiVirus\Quarantine\38EC3E4E Infecté : Trojan-Spy.Win32.Briss.c ignoré C:\Program Files\Norton SystemWorks\Norton AntiVirus\Quarantine\38F21247 Infecté : Trojan-Downloader.Win32.Dyfuca.cr ignoré C:\Program Files\Norton SystemWorks\Norton AntiVirus\Quarantine\38F63C43 Infecté : Trojan.Win32.Revop.c ignoré C:\Program Files\Norton SystemWorks\Norton AntiVirus\Quarantine\38F96640 Infecté : Trojan-Spy.Win32.Briss.h ignoré C:\Program Files\Norton SystemWorks\Norton AntiVirus\Quarantine\38FC103C Infecté : Trojan-Spy.Win32.Briss.h ignoré C:\Program Files\Norton SystemWorks\Norton AntiVirus\Quarantine\39036435 Infecté : Trojan-Downloader.Win32.Dyfuca.de ignoré C:\Program Files\Norton SystemWorks\Norton AntiVirus\Quarantine\39060E31 Infecté : Trojan-Dropper.Win32.Delf.z ignoré C:\Program Files\Norton SystemWorks\Norton AntiVirus\Quarantine\3909382E Infecté : Trojan-Downloader.Win32.IstBar.gq ignoré C:\Program Files\Norton SystemWorks\Norton AntiVirus\Quarantine\390D622A Infecté : Trojan-Downloader.Win32.IstBar.gen ignoré C:\Program Files\Norton SystemWorks\Norton AntiVirus\Quarantine\39100C27 Infecté : Trojan-Downloader.Win32.IstBar.fr ignoré C:\Program Files\Norton SystemWorks\Norton AntiVirus\Quarantine\39133623 Infecté : Trojan-Spy.Win32.Briss.k ignoré C:\Program Files\Norton SystemWorks\Norton AntiVirus\Quarantine\391A0A1C Infecté : Trojan-Downloader.Win32.Dyfuca.gen ignoré C:\Program Files\Norton SystemWorks\Norton AntiVirus\Quarantine\391D3418 Infecté : Trojan-Downloader.Win32.Dyfuca.da ignoré C:\Program Files\Norton SystemWorks\Norton AntiVirus\Quarantine\39205E15 Infecté : Trojan-Downloader.Win32.Agent.ae ignoré C:\Program Files\Norton SystemWorks\Norton AntiVirus\Quarantine\39303003 Infecté : Exploit.HTML.CodeBaseExec ignoré C:\Program Files\Norton SystemWorks\Norton AntiVirus\Quarantine\393459FF Infecté : Exploit.HTML.CodeBaseExec ignoré C:\Program Files\Norton SystemWorks\Norton AntiVirus\Quarantine\393A2DF8 Infecté : Trojan-Downloader.Win32.IstBar.gen ignoré C:\Program Files\Norton SystemWorks\Norton AntiVirus\Quarantine\393E57F4 Infecté : Trojan-Downloader.Win32.Small.yw ignoré C:\Program Files\Norton SystemWorks\Norton AntiVirus\Quarantine\394755E9 Infecté : Trojan-Downloader.Win32.Dyfuca.dt ignoré C:\Program Files\Norton SystemWorks\Norton AntiVirus\Quarantine\395E6469 Infecté : Backdoor.Win32.Ruledor.c ignoré C:\Program Files\Norton SystemWorks\Norton AntiVirus\Quarantine\39F23A0F Infecté : Email-Worm.Win32.Bagle.at ignoré C:\Program Files\Norton SystemWorks\Norton AntiVirus\Quarantine\3A5E1941 Infecté : Email-Worm.Win32.NetSky.ac ignoré C:\Program Files\Norton SystemWorks\Norton AntiVirus\Quarantine\3B217892 Infecté : Trojan-Downloader.Win32.IstBar.dh ignoré C:\Program Files\Norton SystemWorks\Norton AntiVirus\Quarantine\3B943843 Infecté : Email-Worm.Win32.Bagle.at ignoré C:\Program Files\Norton SystemWorks\Norton AntiVirus\Quarantine\3F4C044B.part Infecté : P2P-Worm.Win32.Backterra.d ignoré C:\Program Files\Norton SystemWorks\Norton AntiVirus\Quarantine\463E4A2F Infecté : Email-Worm.Win32.NetSky.ac ignoré C:\Program Files\Norton SystemWorks\Norton AntiVirus\Quarantine\46A36A17 Infecté : Email-Worm.Win32.Bagle.z ignoré C:\Program Files\Norton SystemWorks\Norton AntiVirus\Quarantine\47182A99 Infecté : Backdoor.Win32.Ruledor.c ignoré C:\Program Files\Norton SystemWorks\Norton AntiVirus\Quarantine\486014BB Infecté : P2P-Worm.Win32.Reur.b ignoré C:\Program Files\Norton SystemWorks\Norton AntiVirus\Quarantine\4B6C5CBD Infecté : Trojan-Downloader.Win32.Esepor.ab ignoré C:\Program Files\Norton SystemWorks\Norton AntiVirus\Quarantine\4C53170E.htm Infecté : Exploit.HTML.Mht ignoré C:\Program Files\Norton SystemWorks\Norton AntiVirus\Quarantine\4D6E78F9.htm Infecté : Exploit.HTML.Mht ignoré C:\Program Files\Norton SystemWorks\Norton AntiVirus\Quarantine\4EDC7E48 Infecté : Trojan-Downloader.Win32.Esepor.aa ignoré C:\Program Files\Norton SystemWorks\Norton AntiVirus\Quarantine\4FA86A57 Infecté : Trojan-Downloader.Win32.Dyfuca.cr ignoré C:\Program Files\Norton SystemWorks\Norton AntiVirus\Quarantine\4FE251EA Infecté : Email-Worm.Win32.Bagle.z ignoré C:\Program Files\Norton SystemWorks\Norton AntiVirus\Quarantine\50200511 Suspect : Exploit.HTML.CodeBaseExec ignoré C:\Program Files\Norton SystemWorks\Norton AntiVirus\Quarantine\510C5CD5 Infecté : Email-Worm.Win32.Bagle.gen ignoré C:\Program Files\Norton SystemWorks\Norton AntiVirus\Quarantine\512523F1 Suspect : Exploit.HTML.CodeBaseExec ignoré C:\Program Files\Norton SystemWorks\Norton AntiVirus\Quarantine\518036CC Infecté : Email-Worm.Win32.Bagle.z ignoré C:\Program Files\Norton SystemWorks\Norton AntiVirus\Quarantine\528C2EB9 Infecté : Exploit.HTML.CodeBaseExec ignoré C:\Program Files\Norton SystemWorks\Norton AntiVirus\Quarantine\530D7417 Infecté : Email-Worm.Win32.NetSky.ac ignoré C:\Program Files\Norton SystemWorks\Norton AntiVirus\Quarantine\536C1505 Infecté : Trojan-Downloader.Win32.Dyfuca.cr ignoré C:\Program Files\Norton SystemWorks\Norton AntiVirus\Quarantine\53703F02 Infecté : Trojan-Downloader.Win32.Dyfuca.cr ignoré C:\Program Files\Norton SystemWorks\Norton AntiVirus\Quarantine\53793CF7 Infecté : Backdoor.Win32.Ruledor.c ignoré C:\Program Files\Norton SystemWorks\Norton AntiVirus\Quarantine\538A0EE5 Infecté : Trojan-Downloader.Win32.IstBar.gen ignoré C:\Program Files\Norton SystemWorks\Norton AntiVirus\Quarantine\539062DE Infecté : Trojan.Win32.SecondThought.c ignoré C:\Program Files\Norton SystemWorks\Norton AntiVirus\Quarantine\539736D7 Infecté : Trojan-Downloader.Win32.IstBar.gen ignoré C:\Program Files\Norton SystemWorks\Norton AntiVirus\Quarantine\539A60D3 Infecté : Trojan-Downloader.Win32.IstBar.ga ignoré C:\Program Files\Norton SystemWorks\Norton AntiVirus\Quarantine\53AA32C1 Infecté : Trojan-Downloader.Win32.Dyfuca.gen ignoré C:\Program Files\Norton SystemWorks\Norton AntiVirus\Quarantine\53AE5CBE Infecté : Trojan-Downloader.Win32.Dyfuca.da ignoré C:\Program Files\Norton SystemWorks\Norton AntiVirus\Quarantine\53B430B6 Infecté : Exploit.HTML.CodeBaseExec ignoré C:\Program Files\Norton SystemWorks\Norton AntiVirus\Quarantine\53CE009A Infecté : Trojan-Downloader.Win32.IstBar.gen ignoré C:\Program Files\Norton SystemWorks\Norton AntiVirus\Quarantine\53D22A96 Infecté : Trojan-Spy.Win32.Briss.j ignoré C:\Program Files\Norton SystemWorks\Norton AntiVirus\Quarantine\53D87E8F Infecté : Trojan-Downloader.Win32.Dyfuca.dc ignoré C:\Program Files\Norton SystemWorks\Norton AntiVirus\Quarantine\541E1F5A.htm Infecté : Exploit.HTML.Mht ignoré C:\Program Files\Norton SystemWorks\Norton AntiVirus\Quarantine\55030B49 Infecté : Trojan.Win32.Revop.c ignoré C:\Program Files\Norton SystemWorks\Norton AntiVirus\Quarantine\56524613 Infecté : Backdoor.Win32.Bifrose.w ignoré C:\Program Files\Norton SystemWorks\Norton AntiVirus\Quarantine\56557010 Infecté : Backdoor.Win32.Bifrose.w ignoré C:\Program Files\Norton SystemWorks\Norton AntiVirus\Quarantine\5A41318A Infecté : Email-Worm.Win32.Bagle.bw ignoré C:\Program Files\Norton SystemWorks\Norton AntiVirus\Quarantine\5AD3304E Infecté : Trojan-Downloader.Win32.Dyfuca.da ignoré C:\Program Files\Norton SystemWorks\Norton AntiVirus\Quarantine\5BEE382F.htm Infecté : Exploit.HTML.Mht ignoré C:\Program Files\Norton SystemWorks\Norton AntiVirus\Quarantine\5DCE541F.htm Infecté : Exploit.HTML.Mht ignoré C:\Program Files\Norton SystemWorks\Norton AntiVirus\Quarantine\5DF77BF2 Infecté : Trojan-Dropper.Win32.Mudrop.w ignoré C:\Program Files\Norton SystemWorks\Norton AntiVirus\Quarantine\5E1475D2 Infecté : Trojan-Dropper.Win32.Mudrop.w ignoré C:\Program Files\Norton SystemWorks\Norton AntiVirus\Quarantine\5E997F40.class Infecté : Exploit.Java.ByteVerify ignoré C:\Program Files\Norton SystemWorks\Norton AntiVirus\Quarantine\5F166AB6 Infecté : Trojan-Dropper.Win32.Mudrop.w ignoré C:\Program Files\Norton SystemWorks\Norton AntiVirus\Quarantine\5F360E7D.htm Suspect : Exploit.HTML.Mht ignoré C:\Program Files\Norton SystemWorks\Norton AntiVirus\Quarantine\5FE639D2.class Infecté : Exploit.Java.ByteVerify ignoré C:\Program Files\Norton SystemWorks\Norton AntiVirus\Quarantine\618213F6.htm Suspect : Exploit.HTML.Mht ignoré C:\Program Files\Norton SystemWorks\Norton AntiVirus\Quarantine\61D74ED1 Infecté : Email-Worm.Win32.Bagle.z ignoré C:\Program Files\Norton SystemWorks\Norton AntiVirus\Quarantine\62A60D5E Infecté : Trojan-Downloader.Win32.INService.i ignoré C:\Program Files\Norton SystemWorks\Norton AntiVirus\Quarantine\63E94FE0 Infecté : Email-Worm.Win32.Bagle.z ignoré C:\Program Files\Norton SystemWorks\Norton AntiVirus\Quarantine\66C757F8 Infecté : Email-Worm.Win32.Bagle.bc ignoré C:\Program Files\Norton SystemWorks\Norton AntiVirus\Quarantine\68FD7285 Infecté : Trojan-Downloader.Win32.Small.yw ignoré C:\Program Files\Norton SystemWorks\Norton AntiVirus\Quarantine\6A9846D7 Infecté : Email-Worm.Win32.Bagle.z ignoré C:\Program Files\Norton SystemWorks\Norton AntiVirus\Quarantine\6BC87B51 Infecté : Backdoor.Win32.Bifrose.w ignoré C:\Program Files\Norton SystemWorks\Norton AntiVirus\Quarantine\71382CD9.htm Suspect : Exploit.HTML.Mht ignoré C:\Program Files\Norton SystemWorks\Norton AntiVirus\Quarantine\725A1E53 Infecté : Trojan-Dropper.Win32.Delf.z ignoré C:\Program Files\Norton SystemWorks\Norton AntiVirus\Quarantine\729C616C Infecté : Email-Worm.Win32.Bagle.at ignoré C:\Program Files\Norton SystemWorks\Norton AntiVirus\Quarantine\72A0463D Infecté : Trojan-Downloader.Win32.Small.mt ignoré C:\Program Files\Norton SystemWorks\Norton AntiVirus\Quarantine\732D7E20.htm Suspect : Exploit.HTML.Mht ignoré C:\Program Files\Norton SystemWorks\Norton AntiVirus\Quarantine\73E75754.htm Suspect : Exploit.HTML.Mht ignoré C:\Program Files\Norton SystemWorks\Norton AntiVirus\Quarantine\7452771C/CryptFF//zenworks.exe Infecté : Trojan.Win32.Hatu ignoré C:\Program Files\Norton SystemWorks\Norton AntiVirus\Quarantine\7452771C/CryptFF//ihateyou.exe Infecté : Trojan.Win32.Hatu ignoré C:\Program Files\Norton SystemWorks\Norton AntiVirus\Quarantine\7452771C/CryptFF Infecté : Trojan.Win32.Hatu ignoré C:\Program Files\Norton SystemWorks\Norton AntiVirus\Quarantine\7452771C CabSFX: infecté - 3 ignoré C:\Program Files\Norton SystemWorks\Norton AntiVirus\Quarantine\7452771C CryptFF: infecté - 3 ignoré C:\Program Files\Norton SystemWorks\Norton AntiVirus\Quarantine\74643C0F Infecté : Email-Worm.Win32.Bagle.z ignoré C:\Program Files\Norton SystemWorks\Norton AntiVirus\Quarantine\755D1F0E Infecté : Backdoor.Win32.Bifrose.w ignoré C:\Program Files\Norton SystemWorks\Norton AntiVirus\Quarantine\793B028F Infecté : Trojan-Spy.Win32.Briss.j ignoré C:\Program Files\Norton SystemWorks\Norton AntiVirus\Quarantine\79624888 Infecté : Trojan-Dropper.Win32.Mudrop.w ignoré C:\Program Files\Norton SystemWorks\Norton AntiVirus\Quarantine\7C8F2CC1 Infecté : Email-Worm.Win32.Bagle.z ignoré C:\Program Files\Norton SystemWorks\Norton AntiVirus\Quarantine\7D84644A Infecté : Exploit.HTML.CodeBaseExec ignoré C:\Program Files\Norton SystemWorks\Norton AntiVirus\Quarantine\7DEA5A51 Infecté : Trojan-Downloader.Win32.IstBar.dh ignoré C:\Program Files\Norton SystemWorks\Norton AntiVirus\Quarantine\7EF523D5 Infecté : Email-Worm.Win32.Bagle.z ignoré C:\Program Files\Norton SystemWorks\Norton AntiVirus\Quarantine\7F904858.EXE Infecté : Backdoor.Win32.Lil.a ignoré C:\Program Files\Norton SystemWorks\Norton AntiVirus\Quarantine\7FD66FF2.htm Suspect : Exploit.HTML.CodeBaseExec ignoré C:\qlcojek.exe Infecté : Trojan-Dropper.Win32.Agent.azs ignoré C:\qnmbvrw.exe Infecté : Trojan.Win32.Zapchast.cp ignoré C:\qomdjjy.exe Infecté : Trojan-Downloader.Win32.Small.ctf ignoré C:\sukqx.exe Infecté : Trojan-PSW.Win32.Sinowal.bh ignoré C:\System Volume Information\MountPointManagerRemoteDatabase L'objet est verrouillé ignoré C:\tlkx.exe Infecté : Trojan.Win32.Zapchast.cp ignoré C:\wbis\Windows\Prefetch\ASPNET_REGIIS.EXE-38397C30.pf L'objet est verrouillé ignoré C:\wbis\Windows\Prefetch\AUPDATE.EXE-2253CB60.pf L'objet est verrouillé ignoré C:\wbis\Windows\Prefetch\CNMSM2V.EXE-03D1377C.pf L'objet est verrouillé ignoré C:\wbis\Windows\Prefetch\CSC.EXE-1113BFA6.pf L'objet est verrouillé ignoré C:\wbis\Windows\Prefetch\CVTRES.EXE-13DEB540.pf L'objet est verrouillé ignoré C:\wbis\Windows\Prefetch\DIVX PLAYER.EXE-2B5FB89F.pf L'objet est verrouillé ignoré C:\wbis\Windows\Prefetch\DIVXPRO52XP2K.EXE-2523DAED.pf L'objet est verrouillé ignoré C:\wbis\Windows\Prefetch\DLLHOST.EXE-1ECB6754.pf L'objet est verrouillé ignoré C:\wbis\Windows\Prefetch\DOTNETFX.EXE-3AA8C78A.pf L'objet est verrouillé ignoré C:\wbis\Windows\Prefetch\DRWTSN32.EXE-2B4B52AC.pf L'objet est verrouillé ignoré C:\wbis\Windows\Prefetch\DUMPREP.EXE-1B46F901.pf L'objet est verrouillé ignoré C:\wbis\Windows\Prefetch\DVDX.EXE-2E0D39F2.pf L'objet est verrouillé ignoré C:\wbis\Windows\Prefetch\DWWIN.EXE-30875ADC.pf L'objet est verrouillé ignoré C:\wbis\Windows\Prefetch\EPROMPTER.EXE-0AE1CC3E.pf L'objet est verrouillé ignoré C:\wbis\Windows\Prefetch\EUDORA.EXE-2B7E1377.pf L'objet est verrouillé ignoré C:\wbis\Windows\Prefetch\EXPLODER.EXE-33BC1B55.pf L'objet est verrouillé ignoré C:\wbis\Windows\Prefetch\EXPLORER.EXE-082F38A9.pf L'objet est verrouillé ignoré C:\wbis\Windows\Prefetch\HELPSVC.EXE-2878DDA2.pf L'objet est verrouillé ignoré C:\wbis\Windows\Prefetch\IDRIVER.EXE-05125BED.pf L'objet est verrouillé ignoré C:\wbis\Windows\Prefetch\IMAPI.EXE-0BF740A4.pf L'objet est verrouillé ignoré C:\wbis\Windows\Prefetch\INSTALL.EXE-37A4BD63.pf L'objet est verrouillé ignoré C:\wbis\Windows\Prefetch\IRALRSHL.EXE-16597FEC.pf L'objet est verrouillé ignoré C:\wbis\Windows\Prefetch\ISUN040C.EXE-0F3FB94D.pf L'objet est verrouillé ignoré C:\wbis\Windows\Prefetch\Layout.ini L'objet est verrouillé ignoré C:\wbis\Windows\Prefetch\LODCTR.EXE-1009C3B4.pf L'objet est verrouillé ignoré C:\wbis\Windows\Prefetch\LOGONUI.EXE-0AF22957.pf L'objet est verrouillé ignoré C:\wbis\Windows\Prefetch\LUCOMS~1.EXE-02DB5950.pf L'objet est verrouillé ignoré C:\wbis\Windows\Prefetch\LUSETUP.EXE-07BEFAD5.pf L'objet est verrouillé ignoré C:\wbis\Windows\Prefetch\MEUHMEUHTV.EXE-2DBD2B17.pf L'objet est verrouillé ignoré C:\wbis\Windows\Prefetch\MIGPOLWIN.EXE-1EFB7D70.pf L'objet est verrouillé ignoré C:\wbis\Windows\Prefetch\MOFCOMP.EXE-01718E95.pf L'objet est verrouillé ignoré C:\wbis\Windows\Prefetch\MSDTC.EXE-0E6E4AF7.pf L'objet est verrouillé ignoré C:\wbis\Windows\Prefetch\MSI22.TMP-0DC995C5.pf L'objet est verrouillé ignoré C:\wbis\Windows\Prefetch\MSI27.TMP-30011CCA.pf L'objet est verrouillé ignoré C:\wbis\Windows\Prefetch\MSI44.TMP-2B32C848.pf L'objet est verrouillé ignoré C:\wbis\Windows\Prefetch\MSI80.TMP-23852748.pf L'objet est verrouillé ignoré C:\wbis\Windows\Prefetch\MSIEXEC.EXE-2F8A8CAE.pf L'objet est verrouillé ignoré C:\wbis\Windows\Prefetch\NAVW32.EXE-286920DF.pf L'objet est verrouillé ignoré C:\wbis\Windows\Prefetch\NDETECT.EXE-16E64095.pf L'objet est verrouillé ignoré C:\wbis\Windows\Prefetch\NGEN.EXE-171CDCC6.pf L'objet est verrouillé ignoré C:\wbis\Windows\Prefetch\NMAIN.EXE-34D44D63.pf L'objet est verrouillé ignoré C:\wbis\Windows\Prefetch\NTOSBOOT-B00DFAAD.pf L'objet est verrouillé ignoré C:\wbis\Windows\Prefetch\OPERA.EXE-1141097F.pf L'objet est verrouillé ignoré C:\wbis\Windows\Prefetch\OPSCAN.EXE-20B6A0BA.pf L'objet est verrouillé ignoré C:\wbis\Windows\Prefetch\PMAGIC.EXE-1E1E65B9.pf L'objet est verrouillé ignoré C:\wbis\Windows\Prefetch\PMAGICNT.EXE-3A3F50C0.pf L'objet est verrouillé ignoré C:\wbis\Windows\Prefetch\POWERQUEST.DRIVE.IMAGE.V7.0.F-023EC54F.pf L'objet est verrouillé ignoré C:\wbis\Windows\Prefetch\POWERQUEST.DRIVE.IMAGE.V7.0.F-09735A82.pf L'objet est verrouillé ignoré C:\wbis\Windows\Prefetch\POWERQUEST.DRIVE.IMAGE.V7.0.F-21A6A2B4.pf L'objet est verrouillé ignoré C:\wbis\Windows\Prefetch\PQIBROWSER.EXE-0896C6BF.pf L'objet est verrouillé ignoré C:\wbis\Windows\Prefetch\PQV2ISECURITY.EXE-2B744D4D.pf L'objet est verrouillé ignoré C:\wbis\Windows\Prefetch\PQV2ISVC.EXE-182CBE09.pf L'objet est verrouillé ignoré C:\wbis\Windows\Prefetch\REGEDIT.EXE-1B606482.pf L'objet est verrouillé ignoré C:\wbis\Windows\Prefetch\REGSVCS.EXE-077D24C2.pf L'objet est verrouillé ignoré C:\wbis\Windows\Prefetch\REGSVR32.EXE-25EEFE2F.pf L'objet est verrouillé ignoré C:\wbis\Windows\Prefetch\REGTLIB.EXE-0CCB81E6.pf L'objet est verrouillé ignoré C:\wbis\Windows\Prefetch\RUNDLL32.EXE-171BE046.pf L'objet est verrouillé ignoré C:\wbis\Windows\Prefetch\RUNDLL32.EXE-1810C9B7.pf L'objet est verrouillé ignoré C:\wbis\Windows\Prefetch\RUNDLL32.EXE-268BFF96.pf L'objet est verrouillé ignoré C:\wbis\Windows\Prefetch\RUNDLL32.EXE-2EC3C756.pf L'objet est verrouillé ignoré C:\wbis\Windows\Prefetch\RUNDLL32.EXE-451FC2C0.pf L'objet est verrouillé ignoré C:\wbis\Windows\Prefetch\RUNDLL32.EXE-466B175F.pf L'objet est verrouillé ignoré C:\wbis\Windows\Prefetch\RUNONCE.EXE-2803F297.pf L'objet est verrouillé ignoré C:\wbis\Windows\Prefetch\SETUP.EXE-393E66AE.pf L'objet est verrouillé ignoré C:\wbis\Windows\Prefetch\SNDVOL32.EXE-383480B7.pf L'objet est verrouillé ignoré C:\wbis\Windows\Prefetch\SPOOLSV.EXE-282F76A7.pf L'objet est verrouillé ignoré C:\wbis\Windows\Prefetch\TASKMGR.EXE-20256C55.pf L'objet est verrouillé ignoré C:\wbis\Windows\Prefetch\TOTALCMD.EXE-2FAE42CE.pf L'objet est verrouillé ignoré C:\wbis\Windows\Prefetch\TRIALSTARTER180DAY.EXE-10D4C9C9.pf L'objet est verrouillé ignoré C:\wbis\Windows\Prefetch\V2ICONSOLE.EXE-05998F52.pf L'objet est verrouillé ignoré C:\wbis\Windows\Prefetch\WEBSHOTS.SCR-06866ABC.pf L'objet est verrouillé ignoré C:\wbis\Windows\Prefetch\WHEREISIT.EXE-00D9E726.pf L'objet est verrouillé ignoré C:\wbis\Windows\Prefetch\WINDVD.EXE-1D1E48A6.pf L'objet est verrouillé ignoré C:\wbis\Windows\Prefetch\WINWORD.EXE-29F5CB89.pf L'objet est verrouillé ignoré C:\wbis\Windows\Prefetch\WMIADAP.EXE-2DF425B2.pf L'objet est verrouillé ignoré C:\wbis\Windows\Prefetch\WMIPRVSE.EXE-28F301A9.pf L'objet est verrouillé ignoré C:\wbis\Windows\Prefetch\WMPLAYER.EXE-18DDEF9C.pf L'objet est verrouillé ignoré C:\wbis\Windows\Prefetch\WUAUCLT.EXE-399A8E72.pf L'objet est verrouillé ignoré C:\wbis\Windows\Prefetch\_INS0432._MP-2C5EC704.pf L'objet est verrouillé ignoré C:\WebMaster\Mail5\ATTACH\document.zip/document.log.bat Infecté : Email-Worm.Win32.Warezov.dn ignoré C:\WebMaster\Mail5\ATTACH\document.zip ZIP: infecté - 1 ignoré C:\WebMaster\Mail5\Embedded\criss.gif Infecté : Trojan-Spy.HTML.Bankfraud.qb ignoré C:\WebMaster\Mail5\Embedded\decryption.gif Infecté : Trojan-Spy.HTML.Bankfraud.qb ignoré C:\WebMaster\Mail5\Embedded\puke.GIF Infecté : Trojan-Spy.HTML.Bayfraud.in ignoré C:\Windows\$NtUninstallKB829558$\dao360.dll L'objet est verrouillé ignoré C:\Windows\$NtUninstallKB829558$\expsrv.dll L'objet est verrouillé ignoré C:\Windows\$NtUninstallKB829558$\msexch40.dll L'objet est verrouillé ignoré C:\Windows\$NtUninstallKB829558$\msexcl40.dll L'objet est verrouillé ignoré C:\Windows\$NtUninstallKB829558$\msjet40.dll L'objet est verrouillé ignoré C:\Windows\$NtUninstallKB829558$\msjetoledb40.dll L'objet est verrouillé ignoré C:\Windows\$NtUninstallKB829558$\msjint40.dll L'objet est verrouillé ignoré C:\Windows\$NtUninstallKB829558$\msjter40.dll L'objet est verrouillé ignoré C:\Windows\$NtUninstallKB829558$\msjtes40.dll L'objet est verrouillé ignoré C:\Windows\$NtUninstallKB829558$\msltus40.dll L'objet est verrouillé ignoré C:\Windows\$NtUninstallKB829558$\mspbde40.dll L'objet est verrouillé ignoré C:\Windows\$NtUninstallKB829558$\msrd2x40.dll L'objet est verrouillé ignoré C:\Windows\$NtUninstallKB829558$\msrd3x40.dll L'objet est verrouillé ignoré C:\Windows\$NtUninstallKB829558$\msrepl40.dll L'objet est verrouillé ignoré C:\Windows\$NtUninstallKB829558$\mstext40.dll L'objet est verrouillé ignoré C:\Windows\$NtUninstallKB829558$\mswdat10.dll L'objet est verrouillé ignoré C:\Windows\$NtUninstallKB829558$\mswstr10.dll L'objet est verrouillé ignoré C:\Windows\$NtUninstallKB829558$\msxbde40.dll L'objet est verrouillé ignoré C:\Windows\$NtUninstallKB829558$\vbajet32.dll L'objet est verrouillé ignoré C:\Windows\alg.exe Infecté : Backdoor.Win32.SdBot.bbh ignoré C:\Windows\config.exe Infecté : Backdoor.Win32.SdBot.aad ignoré C:\Windows\lsass.exe Infecté : Backdoor.Win32.SdBot.aad ignoré C:\Windows\Prefetch\layout.ini L'objet est verrouillé ignoré C:\Windows\services.exe Infecté : Backdoor.Win32.SdBot.aad ignoré C:\Windows\svchost.exe Infecté : Backdoor.Win32.SdBot.aad ignoré C:\Windows\system32\i Infecté : Trojan-Downloader.BAT.Ftp.ab ignoré C:\Windows\system32\n Infecté : Trojan-Downloader.BAT.Ftp.ab ignoré C:\Windows\Temp\eraseme_81236.exe Infecté : Backdoor.Win32.SdBot.aad ignoré C:\Windows\wdfmgrr.exe Infecté : Backdoor.Win32.SdBot.aad ignoré C:\Windowsbase\$NtUninstallKB835732$\callcont.dll L'objet est verrouillé ignoré C:\Windowsbase\$NtUninstallKB835732$\cmdevtgprov.dll L'objet est verrouillé ignoré C:\Windowsbase\$NtUninstallKB835732$\evtgprov.dll L'objet est verrouillé ignoré C:\Windowsbase\$NtUninstallKB835732$\gdi32.dll L'objet est verrouillé ignoré C:\Windowsbase\$NtUninstallKB835732$\h323.tsp L'objet est verrouillé ignoré C:\Windowsbase\$NtUninstallKB835732$\h323msp.dll L'objet est verrouillé ignoré C:\Windowsbase\$NtUninstallKB835732$\helpctr.exe L'objet est verrouillé ignoré C:\Windowsbase\$NtUninstallKB835732$\ipnathlp.dll L'objet est verrouillé ignoré C:\Windowsbase\$NtUninstallKB835732$\lsasrv.dll L'objet est verrouillé ignoré C:\Windowsbase\$NtUninstallKB835732$\mf3216.dll L'objet est verrouillé ignoré C:\Windowsbase\$NtUninstallKB835732$\msasn1.dll L'objet est verrouillé ignoré C:\Windowsbase\$NtUninstallKB835732$\msgina.dll L'objet est verrouillé ignoré C:\Windowsbase\$NtUninstallKB835732$\mst120.dll L'objet est verrouillé ignoré C:\Windowsbase\$NtUninstallKB835732$\netapi32.dll L'objet est verrouillé ignoré C:\Windowsbase\$NtUninstallKB835732$\nmcom.dll L'objet est verrouillé ignoré C:\Windowsbase\$NtUninstallKB835732$\rtcdll.dll L'objet est verrouillé ignoré C:\Windowsbase\$NtUninstallKB835732$\schannel.dll L'objet est verrouillé ignoré C:\y6c2k7n7z2v8.exe Infecté : Trojan.Win32.Dialer.qy ignoré D:\Documents and Settings\Administrateur.TITANIUM\Application Data\$_hpcst$.hpc L'objet est verrouillé ignoré D:\Documents and Settings\Administrateur.TITANIUM\Application Data\Mozilla\Firefox\Profiles\b1soeguq.default\Cache\5D9F8A03d01 L'objet est verrouillé ignoré D:\Documents and Settings\Administrateur.TITANIUM\Application Data\Mozilla\Firefox\Profiles\b1soeguq.default\Cache\CCD69E5Ad01 L'objet est verrouillé ignoré D:\Documents and Settings\Administrateur.TITANIUM\Application Data\Mozilla\Firefox\Profiles\b1soeguq.default\Cache\_CACHE_001_ L'objet est verrouillé ignoré D:\Documents and Settings\Administrateur.TITANIUM\Application Data\Mozilla\Firefox\Profiles\b1soeguq.default\Cache\_CACHE_002_ L'objet est verrouillé ignoré D:\Documents and Settings\Administrateur.TITANIUM\Application Data\Mozilla\Firefox\Profiles\b1soeguq.default\Cache\_CACHE_003_ L'objet est verrouillé ignoré D:\Documents and Settings\Administrateur.TITANIUM\Application Data\Mozilla\Firefox\Profiles\b1soeguq.default\Cache\_CACHE_MAP_ L'objet est verrouillé ignoré D:\Documents and Settings\Administrateur.TITANIUM\Application Data\Mozilla\Firefox\Profiles\b1soeguq.default\cert8.db L'objet est verrouillé ignoré D:\Documents and Settings\Administrateur.TITANIUM\Application Data\Mozilla\Firefox\Profiles\b1soeguq.default\formhistory.dat L'objet est verrouillé ignoré D:\Documents and Settings\Administrateur.TITANIUM\Application Data\Mozilla\Firefox\Profiles\b1soeguq.default\history.dat L'objet est verrouillé ignoré D:\Documents and Settings\Administrateur.TITANIUM\Application Data\Mozilla\Firefox\Profiles\b1soeguq.default\key3.db L'objet est verrouillé ignoré D:\Documents and Settings\Administrateur.TITANIUM\Application Data\Mozilla\Firefox\Profiles\b1soeguq.default\parent.lock L'objet est verrouillé ignoré D:\Documents and Settings\Administrateur.TITANIUM\Cookies\index.dat L'objet est verrouillé ignoré D:\Documents and Settings\Administrateur.TITANIUM\Local Settings\Application Data\Microsoft\Windows\UsrClass.dat L'objet est verrouillé ignoré D:\Documents and Settings\Administrateur.TITANIUM\Local Settings\Application Data\Microsoft\Windows\UsrClass.dat.LOG L'objet est verrouillé ignoré D:\Documents and Settings\Administrateur.TITANIUM\Local Settings\Historique\History.IE5\index.dat L'objet est verrouillé ignoré D:\Documents and Settings\Administrateur.TITANIUM\Local Settings\Temp\flaB.tmp L'objet est verrouillé ignoré D:\Documents and Settings\Administrateur.TITANIUM\Local Settings\Temp\WCESLog.log L'objet est verrouillé ignoré D:\Documents and Settings\Administrateur.TITANIUM\Local Settings\Temp\~DFA80B.tmp L'objet est verrouillé ignoré D:\Documents and Settings\Administrateur.TITANIUM\Local Settings\Temporary Internet Files\Content.IE5\index.dat L'objet est verrouillé ignoré D:\Documents and Settings\Administrateur.TITANIUM\NTUSER.DAT L'objet est verrouillé ignoré D:\Documents and Settings\Administrateur.TITANIUM\ntuser.dat.LOG L'objet est verrouillé ignoré D:\Documents and Settings\LocalService.AUTORITE NT.001\Cookies\index.dat L'objet est verrouillé ignoré D:\Documents and Settings\LocalService.AUTORITE NT.001\Local Settings\Application Data\Microsoft\Windows\UsrClass.dat L'objet est verrouillé ignoré D:\Documents and Settings\LocalService.AUTORITE NT.001\Local Settings\Application Data\Microsoft\Windows\UsrClass.dat.LOG L'objet est verrouillé ignoré D:\Documents and Settings\LocalService.AUTORITE NT.001\Local Settings\Historique\History.IE5\index.dat L'objet est verrouillé ignoré D:\Documents and Settings\LocalService.AUTORITE NT.001\Local Settings\Temporary Internet Files\Content.IE5\index.dat L'objet est verrouillé ignoré D:\Documents and Settings\LocalService.AUTORITE NT.001\NTUSER.DAT L'objet est verrouillé ignoré D:\Documents and Settings\LocalService.AUTORITE NT.001\ntuser.dat.LOG L'objet est verrouillé ignoré D:\Documents and Settings\NetworkService.AUTORITE NT.001\Local Settings\Application Data\Microsoft\Windows\UsrClass.dat L'objet est verrouillé ignoré D:\Documents and Settings\NetworkService.AUTORITE NT.001\Local Settings\Application Data\Microsoft\Windows\UsrClass.dat.LOG L'objet est verrouillé ignoré D:\Documents and Settings\NetworkService.AUTORITE NT.001\NTUSER.DAT L'objet est verrouillé ignoré D:\Documents and Settings\NetworkService.AUTORITE NT.001\ntuser.dat.LOG L'objet est verrouillé ignoré D:\Downloads 2005\ABC-win32-v2.6.9.exe/stream/data0007 Infecté : Trojan.Win32.Agent.ba ignoré D:\Downloads 2005\ABC-win32-v2.6.9.exe/stream Infecté : Trojan.Win32.Agent.ba ignoré D:\Downloads 2005\ABC-win32-v2.6.9.exe NSIS: infecté - 2 ignoré D:\Downloads 2005\WarezP2P.exe/stream/data0030 Infecté : Trojan-Downloader.Win32.Small.apc ignoré D:\Downloads 2005\WarezP2P.exe/stream Infecté : Trojan-Downloader.Win32.Small.apc ignoré D:\Downloads 2005\WarezP2P.exe NSIS: infecté - 2 ignoré D:\Downloads 2006\keygen.exe Infecté : Trojan-Downloader.Win32.Small.ebj ignoré D:\Downloads 2006\Torrents\Lphant\phatnotes.standard.edition.4.5.build.4.345.0211.ppc.©racked-tsrh.zip/phatnotes.exe Infecté : Trojan.Win32.Agent.acw ignoré D:\Downloads 2006\Torrents\Lphant\phatnotes.standard.edition.4.5.build.4.345.0211.ppc.©racked-tsrh.zip ZIP: infecté - 1 ignoré D:\Downloads 2006\Torrents\Lphant\STOIK_Smart_Resizer_v1.0_Incl_(k)ey-UCF.zip/keygen.exe Infecté : Trojan.Win32.Agent.acw ignoré D:\Downloads 2006\Torrents\Lphant\STOIK_Smart_Resizer_v1.0_Incl_(k)ey-UCF.zip ZIP: infecté - 1 ignoré D:\Downloads 2006\Torrents\Lphant\Windows Vista All Versions Activation 21.11.06.exe Infecté : Trojan-PSW.Win32.LdPinch.aze ignoré D:\Downloads 2006\Torrents\Tweak-XP.Pro.v4.0.7.incl.patch-BetaMaster.rar/Tweak-XP Pro v4.0.7 Full Version.exe/tweak-xp.exe Infecté : Backdoor.Win32.Rbot.bry ignoré D:\Downloads 2006\Torrents\Tweak-XP.Pro.v4.0.7.incl.patch-BetaMaster.rar/Tweak-XP Pro v4.0.7 Full Version.exe Infecté : Backdoor.Win32.Rbot.bry ignoré D:\Downloads 2006\Torrents\Tweak-XP.Pro.v4.0.7.incl.patch-BetaMaster.rar/txp4trial.exe/tweak-xp.exe Infecté : Backdoor.Win32.Rbot.bry ignoré D:\Downloads 2006\Torrents\Tweak-XP.Pro.v4.0.7.incl.patch-BetaMaster.rar/txp4trial.exe Infecté : Backdoor.Win32.Rbot.bry ignoré D:\Downloads 2006\Torrents\Tweak-XP.Pro.v4.0.7.incl.patch-BetaMaster.rar RAR: infecté - 4 ignoré D:\Emule\Incoming\MobiTV for Pocket PC.zip/MobiTV for Pocket PC.exe Infecté : Trojan-Clicker.Win32.Agent.ie ignoré D:\Emule\Incoming\MobiTV for Pocket PC.zip ZIP: infecté - 1 ignoré D:\Inetpub\catalog.wci\00000002.ps1 L'objet est verrouillé ignoré D:\Inetpub\catalog.wci\00000002.ps2 L'objet est verrouillé ignoré D:\Inetpub\catalog.wci\00010004.ci L'objet est verrouillé ignoré D:\Inetpub\catalog.wci\cicat.fid L'objet est verrouillé ignoré D:\Inetpub\catalog.wci\cicat.hsh L'objet est verrouillé ignoré D:\Inetpub\catalog.wci\CiCL0001.000 L'objet est verrouillé ignoré D:\Inetpub\catalog.wci\CiP10000.000 L'objet est verrouillé ignoré D:\Inetpub\catalog.wci\CiP20000.000 L'objet est verrouillé ignoré D:\Inetpub\catalog.wci\CiPT0000.000 L'objet est verrouillé ignoré D:\Inetpub\catalog.wci\CiSL0001.000 L'objet est verrouillé ignoré D:\Inetpub\catalog.wci\CiSP0000.000 L'objet est verrouillé ignoré D:\Inetpub\catalog.wci\CiST0000.000 L'objet est verrouillé ignoré D:\Inetpub\catalog.wci\CiVP0000.000 L'objet est verrouillé ignoré D:\Inetpub\catalog.wci\INDEX.000 L'objet est verrouillé ignoré D:\Inetpub\catalog.wci\propstor.bk1 L'objet est verrouillé ignoré D:\Inetpub\catalog.wci\propstor.bk2 L'objet est verrouillé ignoré D:\System Volume Information\MountPointManagerRemoteDatabase L'objet est verrouillé ignoré D:\Webmaster\WebMaster\Mail5\Embedded\decryption.gif Infecté : Trojan-Spy.HTML.Bankfraud.qb ignoré D:\Webmaster\WebMaster\Mail5\Embedded\puke.GIF Infecté : Trojan-Spy.HTML.Bayfraud.in ignoré D:\Windows\Debug\PASSWD.LOG L'objet est verrouillé ignoré D:\Windows\system32\CatRoot2\edb.log L'objet est verrouillé ignoré D:\Windows\system32\CatRoot2\tmp.edb L'objet est verrouillé ignoré D:\Windows\system32\config\default L'objet est verrouillé ignoré D:\Windows\system32\config\default.LOG L'objet est verrouillé ignoré D:\Windows\system32\config\SAM L'objet est verrouillé ignoré D:\Windows\system32\config\SAM.LOG L'objet est verrouillé ignoré D:\Windows\system32\config\SECURITY L'objet est verrouillé ignoré D:\Windows\system32\config\SECURITY.LOG L'objet est verrouillé ignoré D:\Windows\system32\config\software L'objet est verrouillé ignoré D:\Windows\system32\config\software.LOG L'objet est verrouillé ignoré D:\Windows\system32\config\system L'objet est verrouillé ignoré D:\Windows\system32\config\system.LOG L'objet est verrouillé ignoré D:\Windows\system32\drivers\atapi.sys L'objet est verrouillé ignoré D:\Windows\system32\wbem\Repository\FS\INDEX.BTR L'objet est verrouillé ignoré D:\Windows\system32\wbem\Repository\FS\INDEX.MAP L'objet est verrouillé ignoré D:\Windows\system32\wbem\Repository\FS\MAPPING.VER L'objet est verrouillé ignoré D:\Windows\system32\wbem\Repository\FS\MAPPING1.MAP L'objet est verrouillé ignoré D:\Windows\system32\wbem\Repository\FS\MAPPING2.MAP L'objet est verrouillé ignoré D:\Windows\system32\wbem\Repository\FS\OBJECTS.DATA L'objet est verrouillé ignoré D:\Windows\system32\wbem\Repository\FS\OBJECTS.MAP L'objet est verrouillé ignoré F:\Documents and Settings\Administrateur.TITANIUM\Application Data\Mozilla\Firefox\Profiles\bsacck9e.default\Cache\2BB09C82d01/keygen.exe Infecté : Trojan-Downloader.Win32.Small.ebj ignoré F:\Documents and Settings\Administrateur.TITANIUM\Application Data\Mozilla\Firefox\Profiles\bsacck9e.default\Cache\2BB09C82d01/crack.exe Infecté : Trojan.Win32.Agent.vg ignoré F:\Documents and Settings\Administrateur.TITANIUM\Application Data\Mozilla\Firefox\Profiles\bsacck9e.default\Cache\2BB09C82d01 RAR: infecté - 2 ignoré F:\Documents and Settings\Administrateur.TITANIUM\Application Data\Opera\Opera 9\profile\cache4\opr31CPJ.htm/packed Infecté : Trojan-Clicker.HTML.Agent.a ignoré F:\Documents and Settings\Administrateur.TITANIUM\Application Data\Opera\Opera 9\profile\cache4\opr31CPJ.htm GZIP: infecté - 1 ignoré F:\Documents and Settings\Administrateur.TITANIUM\Local Settings\Temp\b122.exe/stream/data0002/stream/data0004 Infecté : Trojan-Downloader.Win32.Small.ece ignoré F:\Documents and Settings\Administrateur.TITANIUM\Local Settings\Temp\b122.exe/stream/data0002/stream Infecté : Trojan-Downloader.Win32.Small.ece ignoré F:\Documents and Settings\Administrateur.TITANIUM\Local Settings\Temp\b122.exe/stream/data0002 Infecté : Trojan-Downloader.Win32.Small.ece ignoré F:\Documents and Settings\Administrateur.TITANIUM\Local Settings\Temp\b122.exe/stream Infecté : Trojan-Downloader.Win32.Small.ece ignoré F:\Documents and Settings\Administrateur.TITANIUM\Local Settings\Temp\b122.exe NSIS: infecté - 4 ignoré F:\Documents and Settings\Administrateur.TITANIUM\Local Settings\Temporary Internet Files\Content.IE5\0LUFKDIN\122[1].net/stream/data0002/stream/data0004 Infecté : Trojan-Downloader.Win32.Small.ece ignoré F:\Documents and Settings\Administrateur.TITANIUM\Local Settings\Temporary Internet Files\Content.IE5\0LUFKDIN\122[1].net/stream/data0002/stream Infecté : Trojan-Downloader.Win32.Small.ece ignoré F:\Documents and Settings\Administrateur.TITANIUM\Local Settings\Temporary Internet Files\Content.IE5\0LUFKDIN\122[1].net/stream/data0002 Infecté : Trojan-Downloader.Win32.Small.ece ignoré F:\Documents and Settings\Administrateur.TITANIUM\Local Settings\Temporary Internet Files\Content.IE5\0LUFKDIN\122[1].net/stream Infecté : Trojan-Downloader.Win32.Small.ece ignoré F:\Documents and Settings\Administrateur.TITANIUM\Local Settings\Temporary Internet Files\Content.IE5\0LUFKDIN\122[1].net NSIS: infecté - 4 ignoré F:\Documents and Settings\Administrateur.TITANIUM\Local Settings\Temporary Internet Files\Content.IE5\CT23KXEF\srvvmb[1].exe Infecté : Packed.Win32.Klone.g ignoré F:\Documents and Settings\Administrateur.TITANIUM\Local Settings\Temporary Internet Files\Content.IE5\O9UVCXIB\antzom[1].exe Infecté : Trojan-Dropper.Win32.Agent.azn ignoré F:\Documents and Settings\Administrateur.TITANIUM\Local Settings\Temporary Internet Files\Content.IE5\O9UVCXIB\srvdao[1].exe Infecté : Trojan.Win32.Dialer.qs ignoré F:\Documents and Settings\Administrateur.TITANIUM\Local Settings\Temporary Internet Files\Content.IE5\WDA3056N\116[1].net/stream/data0002/data0002 Infecté : Trojan-Downloader.Win32.PurityScan.dy ignoré F:\Documents and Settings\Administrateur.TITANIUM\Local Settings\Temporary Internet Files\Content.IE5\WDA3056N\116[1].net/stream/data0002 Infecté : Trojan-Downloader.Win32.PurityScan.dy ignoré F:\Documents and Settings\Administrateur.TITANIUM\Local Settings\Temporary Internet Files\Content.IE5\WDA3056N\116[1].net/stream Infecté : Trojan-Downloader.Win32.PurityScan.dy ignoré F:\Documents and Settings\Administrateur.TITANIUM\Local Settings\Temporary Internet Files\Content.IE5\WDA3056N\116[1].net NSIS: infecté - 3 ignoré F:\Documents and Settings\Administrateur.TITANIUM\Local Settings\Temporary Internet Files\Content.IE5\WDA3056N\wlzip32[1].exe Infecté : Trojan-Downloader.Win32.Agent.bca ignoré F:\Program Files\Fichiers communs\Yazzle1122OinAdmin.exe Infecté : Trojan-Downloader.Win32.PurityScan.dy ignoré F:\Program Files\ipwins\Services.dll Infecté : Trojan-Downloader.Win32.Small.ece ignoré F:\System Volume Information\catalog.wci\00000002.ps1 L'objet est verrouillé ignoré F:\System Volume Information\catalog.wci\00000002.ps2 L'objet est verrouillé ignoré F:\System Volume Information\catalog.wci\00010009.ci L'objet est verrouillé ignoré F:\System Volume Information\catalog.wci\cicat.fid L'objet est verrouillé ignoré F:\System Volume Information\catalog.wci\cicat.hsh L'objet est verrouillé ignoré F:\System Volume Information\catalog.wci\CiCL0001.000 L'objet est verrouillé ignoré F:\System Volume Information\catalog.wci\CiP10000.000 L'objet est verrouillé ignoré F:\System Volume Information\catalog.wci\CiP20000.000 L'objet est verrouillé ignoré F:\System Volume Information\catalog.wci\CiPT0000.000 L'objet est verrouillé ignoré F:\System Volume Information\catalog.wci\CiSL0001.000 L'objet est verrouillé ignoré F:\System Volume Information\catalog.wci\CiSP0000.000 L'objet est verrouillé ignoré F:\System Volume Information\catalog.wci\CiST0000.000 L'objet est verrouillé ignoré F:\System Volume Information\catalog.wci\CiVP0000.000 L'objet est verrouillé ignoré F:\System Volume Information\catalog.wci\INDEX.000 L'objet est verrouillé ignoré F:\System Volume Information\catalog.wci\propstor.bk1 L'objet est verrouillé ignoré F:\System Volume Information\catalog.wci\propstor.bk2 L'objet est verrouillé ignoré F:\System Volume Information\MountPointManagerRemoteDatabase L'objet est verrouillé ignoré F:\WINDOWS\system32\cool.exe Infecté : Trojan.Win32.Dialer.qs ignoré F:\WINDOWS\system32\drvnut.dll Infecté : not-virus:Hoax.Win32.Renos.gi ignoré F:\WINDOWS\system32\jtoihoep.dll Infecté : Trojan-Spy.Win32.VBStat.h ignoré F:\WINDOWS\system32\msasvc.exe Infecté : Trojan-PSW.Win32.Sinowal.bh ignoré F:\WINDOWS\system32\winyop32.dll Infecté : Packed.Win32.Klone.v ignoré F:\WINDOWS\system32\xkldygcp.dll Infecté : Trojan.Win32.BHO.g ignoré F:\WINDOWS\Temp\win31.tmp.exe Infecté : Packed.Win32.Klone.g ignoré Analyse terminée. Merci @+

voici le rapport Hijackthis Logfile of HijackThis v1.99.1 Scan saved at 21:09:48, on 23/12/2006 Platform: Windows XP SP2 (WinNT 5.01.2600) MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180) Running processes: D:\WINDOWS\System32\smss.exe D:\WINDOWS\system32\winlogon.exe D:\WINDOWS\system32\services.exe D:\WINDOWS\system32\lsass.exe D:\WINDOWS\system32\svchost.exe D:\WINDOWS\system32\spoolsv.exe F:\Program Files\AntiVir PersonalEdition Classic\sched.exe F:\Program Files\AntiVir PersonalEdition Classic\avguard.exe D:\WINDOWS\system32\cisvc.exe F:\WINDOWS\system32\svchost.exe D:\WINDOWS\system32\inetsrv\inetinfo.exe D:\WINDOWS\Explorer.EXE F:\Program Files\Microsoft ActiveSync\wcescomm.exe F:\PROGRA~1\MICROS~2\rapimgr.exe D:\WINDOWS\System32\svchost.exe D:\WINDOWS\system32\vsjitdebugger.exe D:\WINDOWS\system32\vsjitdebugger.exe D:\WINDOWS\system32\svchost.exe D:\Program Files\Total Commander 7.0 B1\TOTALCMD.EXE D:\Program Files\HijackThis\HijackThis.exe R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page = R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - F:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll O2 - BHO: Solid Converter PDF - {259F616C-A300-44F5-B04A-ED001A26C85C} - D:\Program Files\SolidDocuments\SolidConverterPDF\SCPDF\ExploreExtPDF.dll O2 - BHO: FlpLauncher Class - {4401FDC3-7996-4774-8D2B-C1AE9CD6CC25} - F:\Program Files\E-Book Systems\FlipAlbum 6 Pro\FpLaunch.dll O2 - BHO: PCTools Site Guard - {5C8B2A36-3DB1-42A4-A3CB-D426709BBFEB} - F:\PROGRA~1\Spyware Doctor\tools\iesdsg.dll O2 - BHO: IeCatch2 Class - {A5366673-E8CA-11D3-9CD9-0090271D075B} - F:\PROGRA~1\FlashGet\jccatch.dll O2 - BHO: PCTools Browser Monitor - {B56A7D7D-6927-48C8-A975-17DF180C71AC} - F:\PROGRA~1\Spyware Doctor\tools\iesdpb.dll O3 - Toolbar: &Radio - {8E718888-423F-11D2-876E-00A0C9082467} - F:\WINDOWS\system32\msdxm.ocx O3 - Toolbar: FlashGet Bar - {E0E899AB-F487-11D5-8D29-0050BA6940E3} - F:\PROGRA~1\FlashGet\fgiebar.dll O3 - Toolbar: Yahoo! Toolbar avec bloqueur de fenêtres pop-up - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - F:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll O3 - Toolbar: Solid Converter PDF - {259F616C-A300-44F5-B04A-ED001A26C85C} - D:\Program Files\SolidDocuments\SolidConverterPDF\SCPDF\ExploreExtPDF.dll O4 - HKLM\..\Run: [MSConfig] F:\WINDOWS\PCHealth\HelpCtr\Binaries\MSConfig.exe /auto O4 - HKCU\..\Run: [H/PC Connection Agent] "F:\Program Files\Microsoft ActiveSync\wcescomm.exe" O8 - Extra context menu item: E&xport to Microsoft Excel - res://D:\PROGRA~1\Microsoft Office 07\Office12\EXCEL.EXE/3000 O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://F:\PROGRA~1\MI1933~1\OFFICE11\EXCEL.EXE/3000 O8 - Extra context menu item: Tout télécharger avec FlashGet - F:\Program Files\FlashGet\jc_all.htm O8 - Extra context menu item: Télécharger avec FlashGet - F:\Program Files\FlashGet\jc_link.htm O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - F:\Program Files\Java\j2re1.4.2_05\bin\npjpi142_05.dll O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - F:\Program Files\Java\j2re1.4.2_05\bin\npjpi142_05.dll O9 - Extra button: Spyware Doctor - {2D663D1A-8670-49D9-A1A5-4C56B4E14E84} - F:\PROGRA~1\Spyware Doctor\tools\iesdpb.dll O9 - Extra button: Create Mobile Favorite - {2EAF5BB1-070F-11D3-9307-00C04FAE2D4F} - F:\PROGRA~1\MICROS~2\INetRepl.dll O9 - Extra button: (no name) - {2EAF5BB2-070F-11D3-9307-00C04FAE2D4F} - F:\PROGRA~1\MICROS~2\INetRepl.dll O9 - Extra 'Tools' menuitem: Créer un favori mobile... - {2EAF5BB2-070F-11D3-9307-00C04FAE2D4F} - F:\PROGRA~1\MICROS~2\INetRepl.dll O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - D:\PROGRA~1\Microsoft Office 07\Office12\REFIEBAR.DLL O9 - Extra button: Organise-notes - {9455301C-CF6B-11D3-A266-00C04F689C50} - F:\Program Files\Fichiers communs\Microsoft Shared\Reference 2001\EROProj.dll O9 - Extra button: FlashGet - {D6E814A0-E0C5-11d4-8D29-0050BA6940E3} - F:\PROGRA~1\FlashGet\flashget.exe O9 - Extra 'Tools' menuitem: &FlashGet - {D6E814A0-E0C5-11d4-8D29-0050BA6940E3} - F:\PROGRA~1\FlashGet\flashget.exe O9 - Extra button: (no name) - SolidConverterPDF - (no file) (HKCU) O16 - DPF: {9A9307A0-7DA4-4DAF-B042-5009F29E09E1} (ActiveScan Installer Class) - http://acs.pandasoftware.com/activescan/as5free/asinst.cab O17 - HKLM\System\CCS\Services\Tcpip\..\{9E5C2A19-4BBC-4691-9A1E-5C611E477E57}: NameServer = 192.168.1.1 O18 - Protocol: ms-help - {314111C7-A502-11D2-BBCA-00C04F8EC294} - F:\Program Files\Fichiers communs\Microsoft Shared\Help\hxds.dll O18 - Filter hijack: text/xml - {807563E5-5146-11D5-A672-00B0D022E945} - F:\Program Files\Fichiers communs\Microsoft Shared\OFFICE12\MSOXMLMF.DLL O23 - Service: AntiVir PersonalEdition Classic Scheduler (AntiVirScheduler) - Avira GmbH - F:\Program Files\AntiVir PersonalEdition Classic\sched.exe O23 - Service: AntiVir PersonalEdition Classic Guard (AntiVirService) - AVIRA GmbH - F:\Program Files\AntiVir PersonalEdition Classic\avguard.exe O23 - Service: SQL Server (SQLEXPRESS) (MSSQL$SQLEXPRESS) - Unknown owner - F:\Program Files\Microsoft SQL Server\MSSQL.1\MSSQL\Binn\sqlservr.exe" -sSQLEXPRESS (file missing) O23 - Service: SQL Server VSS Writer (SQLWriter) - Unknown owner - F:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe (file missing) Merci @+

Bonjour, J'ai fait les manip comme demandé. Voici les rapports: 1. regkey.txt REGEDIT4 [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\services] "windllrun"=dword:00000002 "SDhelper"=dword:00000003 "ose"=dword:00000003 "odserv"=dword:00000003 "ccPwdSvc"=dword:00000003 "UleadBurningHelper"=dword:00000002 "Symantec Core LC"=dword:00000003 "svcWRSSSDK"=dword:00000002 "st330service"=dword:00000002 "ScReadSpool"=dword:00000002 "Norton Ghost"=dword:00000002 "GEARSecurity"=dword:00000002 "ccSetMgr"=dword:00000002 "ccEvtMgr"=dword:00000002 "ADSLAutoconnect"=dword:00000002 "RemoteRegistry"=dword:00000002 "IDriverT"=dword:00000003 "ewido anti-spyware 4.0 guard"=dword:00000002 "TapiSrv"=dword:00000003 "Themes"=dword:00000002 "NtmsSvc"=dword:00000003 "srservice"=dword:00000002 "ERSvc"=dword:00000002 "WmdmPmSN"=dword:00000003 "W3SVC"=dword:00000002 "mnmsrvc"=dword:00000003 "UPS"=dword:00000003 "Nla"=dword:00000003 "Irmon"=dword:00000002 "SysmonLog"=dword:00000003 "Eventlog"=dword:00000002 "RDSessMgr"=dword:00000003 "NtLmSsp"=dword:00000003 "seclogon"=dword:00000002 "FastUserSwitchingCompatibility"=dword:00000003 "SCardSvr"=dword:00000003 "BlueSoleil Hid Service"=dword:00000002 "helpsvc"=dword:00000002 "stisvc"=dword:00000002 "DirectQytl"=dword:00000002 "W32Time"=dword:00000002 "Schedule"=dword:00000002 "SwPrv"=dword:00000003 "MSDTC"=dword:00000003 [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupfolder] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupfolder\D:^Documents and Settings^Administrateur.TITANIUM^Menu Démarrer^Programmes^Démarrage^MemTurbo.lnk] "path"="D:\\Documents and Settings\\Administrateur.TITANIUM\\Menu Démarrer\\Programmes\\Démarrage\\MemTurbo.lnk" "backup"="D:\\WINDOWS\\pss\\MemTurbo.lnkStartup" "location"="Startup" "command"="F:\\PROGRA~1\\MemTurbo\\memturbo.exe /starthidden" "item"="MemTurbo" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupfolder\D:^Documents and Settings^Administrateur.TITANIUM^Menu Démarrer^Programmes^Démarrage^RC.lnk] "path"="D:\\Documents and Settings\\Administrateur.TITANIUM\\Menu Démarrer\\Programmes\\Démarrage\\RC.lnk" "backup"="D:\\WINDOWS\\pss\\RC.lnkStartup" "location"="Startup" "command"="F:\\PROGRA~1\\C&E\\DTV\\RC.exe " "item"="RC" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupfolder\D:^Documents and Settings^Administrateur.TITANIUM^Menu Démarrer^Programmes^Démarrage^Webshots.lnk] "path"="D:\\Documents and Settings\\Administrateur.TITANIUM\\Menu Démarrer\\Programmes\\Démarrage\\Webshots.lnk" "backup"="D:\\WINDOWS\\pss\\Webshots.lnkStartup" "location"="Startup" "command"="D:\\PROGRA~1\\Webshots\\Launcher.exe /t" "item"="Webshots" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupfolder\D:^Documents and Settings^All Users.WINDOWS^Menu Démarrer^Programmes^Démarrage^Lancement rapide d'Adobe Reader.lnk] "path"="D:\\Documents and Settings\\All Users.WINDOWS\\Menu Démarrer\\Programmes\\Démarrage\\Lancement rapide d'Adobe Reader.lnk" "backup"="D:\\WINDOWS\\pss\\Lancement rapide d'Adobe Reader.lnkCommon Startup" "location"="Common Startup" "command"="F:\\PROGRA~1\\Adobe\\Acrobat 7.0\\Reader\\reader_sl.exe " "item"="Lancement rapide d'Adobe Reader" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupfolder\D:^WINDOWS^NR^BlueSoleil.lnk] "path"="D:\\WINDOWS\\NR\\BlueSoleil.lnk" "backup"="D:\\WINDOWS\\pss\\BlueSoleil.lnkCommon Startup" "location"="Common Startup" "command"="F:\\PROGRA~1\\IVT Corporation\\BlueSoleil\\BlueSoleil.exe " "item"="BlueSoleil" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupfolder\D:^WINDOWS^NR^msvb32.dll] "backup"="D:\\WINDOWS\\pss\\msvb32.dllCommon Startup" "location"="Common Startup" "item"="msvb32" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupfolder\D:^WINDOWS^NR^server.exe] "backup"="D:\\WINDOWS\\pss\\server.exeCommon Startup" "location"="Common Startup" "item"="server" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupfolder\D:^WINDOWS^NR^TMMonitor.lnk] "path"="D:\\WINDOWS\\NR\\TMMonitor.lnk" "backup"="D:\\WINDOWS\\pss\\TMMonitor.lnkCommon Startup" "location"="Common Startup" "command"="D:\\PROGRA~1\\ArcSoft\\TotalMedia 2\\TMMonitor.exe " "item"="TMMonitor" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\AnySync Technology] "key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run" "item"="XCPCMenu" "hkey"="HKLM" "command"="F:\\Program Files\\Fichiers communs\\XCPCMenu.exe" "inimapping"="0" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\AnySync Technology - PocketPC] "key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run" "item"="AutoDetect" "hkey"="HKLM" "command"="F:\\Program Files\\Fichiers communs\\XCPCSync\\Translators\\PocketPC\\AutoDetect.exe" "inimapping"="0" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\atr.exe] "key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run" "item"="" "hkey"="HKLM" "command"="" "inimapping"="0" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\avgnt] "key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run" "item"="avgnt" "hkey"="HKLM" "command"="\"F:\\Program Files\\AntiVir PersonalEdition Classic\\avgnt.exe\" /min" "inimapping"="0" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\BluetoothAuthenticationAgent] "key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run" "item"="rundll32" "hkey"="HKLM" "command"="rundll32.exe bthprops.cpl,,BluetoothAuthenticationAgent" "inimapping"="0" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\ccApp] "key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run" "item"="ccApp" "hkey"="HKLM" "command"="\"F:\\Program Files\\Fichiers communs\\Symantec Shared\\ccApp.exe\"" "inimapping"="0" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\Corel Photo Downloader] "key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run" "item"="Corel Photo Downloader" "hkey"="HKLM" "command"="F:\\Program Files\\Corel\\Corel Snapfire\\Corel Photo Downloader.exe" "inimapping"="0" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\ctfmon.exe] "key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run" "item"="ctfmon" "hkey"="HKCU" "command"="D:\\WINDOWS\\system32\\ctfmon.exe" "inimapping"="0" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\CursorXP] "key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run" "item"="CursorXP" "hkey"="HKCU" "command"="F:\\Program Files\\CursorXP\\CursorXP.exe" "inimapping"="0" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\DadApp] "key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run" "item"="dadapp" "hkey"="HKLM" "command"="F:\\Program Files\\DELL\\AccessDirect\\dadapp.exe" "inimapping"="0" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\FinePrint Dispatcher v5] "key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run" "item"="fpdisp5a" "hkey"="HKLM" "command"="\"D:\\WINDOWS\\System32\\spool\\DRIVERS\\W32X86\\3\\fpdisp5a.exe\" /source=HKLM" "inimapping"="0" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\Gestionnaire Antidote.exe] "key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run" "item"="Gestionnaire Antidote" "hkey"="HKCU" "command"="D:\\PROGRA~1\\Druide\\Antidote\\Gestionnaire Antidote.exe" "inimapping"="0" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\H/PC Connection Agent] "key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run" "item"="wcescomm" "hkey"="HKCU" "command"="\"F:\\Program Files\\Microsoft ActiveSync\\wcescomm.exe\"" "inimapping"="0" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\ioloDelayModule] "key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run" "item"="delay" "hkey"="HKLM" "command"="d:\\Program Files\\iolo\\System Mechanic Professional 6\\delay.exe" "inimapping"="0" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\Mobipocket Reader Notifications] "key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run" "item"="readernotify" "hkey"="HKCU" "command"="D:\\Program Files\\Mobipocket.com\\Mobipocket Reader\\readernotify.exe" "inimapping"="0" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\MsnMsgr] "key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run" "item"="MsnMsgr" "hkey"="HKCU" "command"="\"F:\\Program Files\\MSN Messenger\\MsnMsgr.Exe\" /background" "inimapping"="0" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\msvb32] "key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run" "item"="server" "hkey"="HKCU" "inimapping"="0" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\NeroFilterCheck] "key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run" "item"="NeroCheck" "hkey"="HKLM" "command"="F:\\WINDOWS\\system32\\NeroCheck.exe" "inimapping"="0" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\Norton Ghost 10.0] "key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run" "item"="GhostTray" "hkey"="HKLM" "command"="\"F:\\Program Files\\Norton Ghost\\Agent\\GhostTray.exe\"" "inimapping"="0" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\NotebookHardwareControl] "key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run" "item"="nhc" "hkey"="HKLM" "command"="\"D:\\Program Files\\Notebook Hardware Control\\nhc.exe\" -quiet" "inimapping"="0" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\QuickTime Task] "key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run" "item"="qttask" "hkey"="HKLM" "command"="\"D:\\Program Files\\QuickTime\\qttask.exe\" -atboottime" "inimapping"="0" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\RegClean Expert Scheduler] "key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run" "item"="RCHelper" "hkey"="HKCU" "command"="\"F:\\Program Files\\Registry Clean Expert\\RCHelper.exe\" /startup" "inimapping"="0" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\rundllwindows] "key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run" "item"="dllrun32" "hkey"="HKLM" "inimapping"="0" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\Skype] "key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run" "item"="Skype" "hkey"="HKCU" "command"="\"F:\\Program Files\\Skype\\Phone\\Skype.exe\" /nosplash /minimized" "inimapping"="0" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\SMSystemAnalyzer] "key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run" "item"="SMSystemAnalyzer" "hkey"="HKCU" "command"="\"d:\\Program Files\\iolo\\System Mechanic Professional 6\\SMSystemAnalyzer.exe\"" "inimapping"="0" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\SpeedTouch USB Diagnostics] "key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run" "item"="Dragdiag" "hkey"="HKLM" "command"="\"F:\\Program Files\\Thomson\\SpeedTouch USB\\Dragdiag.exe\" /icon" "inimapping"="0" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\Start RF Wireless Mouse] "key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run" "item"="cm20" "hkey"="HKLM" "command"="F:\\Program Files\\RF Wireless Mouse\\cm20.exe" "inimapping"="0" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\SunJavaUpdateSched] "key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run" "item"="jusched" "hkey"="HKLM" "command"="F:\\Program Files\\Java\\j2re1.4.2_05\\bin\\jusched.exe" "inimapping"="0" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\UltraMon] "key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run" "item"="UltraMon" "hkey"="HKLM" "command"="\"F:\\Program Files\\UltraMon\\UltraMon.exe\" /auto" "inimapping"="0" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\Uniblue Quick Access] "key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run" "item"="qaccess" "hkey"="HKCU" "command"="\"F:\\Program Files\\Utilitaires XP\\ProcessLibrary\\qaccess.exe\" /startup" "inimapping"="0" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\updateMgr] "key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run" "item"="AdobeUpdateManager" "hkey"="HKCU" "command"="\"F:\\Program Files\\Adobe\\Acrobat 7.0\\Reader\\AdobeUpdateManager.exe\" AcRdB7_0_8 -reboot 1" "inimapping"="0" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\vdlDeamon] "key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run" "item"="Vidal" "hkey"="HKLM" "command"="F:\\Program Files\\Vidal\\Communs\\Vidal.exe" "inimapping"="0" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\WhenUSearch] "key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run" "item"="Search" "hkey"="HKLM" "command"="\"F:\\Program Files\\DAEMON Tools SearchBar\\Search.exe\"" "inimapping"="0" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\WhenUSearchWHSE] "key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run" "item"="whse" "hkey"="HKLM" "command"="\"F:\\Program Files\\DAEMON Tools SearchBar\\whse.exe\"" "inimapping"="0" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\WinFast Schedule] "key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run" "item"="WFWIZ" "hkey"="HKLM" "command"="F:\\Program Files\\WinFast\\WFDTV\\WFWIZ.exe" "inimapping"="0" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\WinFastDTV] "key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run" "item"="DTVSchdl" "hkey"="HKLM" "command"="F:\\Program Files\\WinFast\\WFDTV\\DTVSchdl.exe" "inimapping"="0" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\worldtime.exe] "key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run" "item"="worldtime" "hkey"="HKCU" "command"="D:\\PROGRA~1\\AnyTime Deluxe\\worldtime.exe nosplash" "inimapping"="0" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\Zinio DLM] "key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run" "item"="ZinioDeliveryManager" "hkey"="HKCU" "command"="F:\\Program Files\\Zinio\\ZinioDeliveryManager.exe /autostart" "inimapping"="0" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\state] "system.ini"=dword:00000000 "win.ini"=dword:00000000 "bootini"=dword:00000000 "services"=dword:00000002 "startup"=dword:00000002 2. AVG --------------------------------------------------------- ewido anti-spyware - Scan Report --------------------------------------------------------- + Created at: 10:34:34 23/12/2006 + Scan result: D:\Windows\system32\__delete_on_reboot__p_u_s_h_o_w_8_8_._d_l_l_ -> Adware.AdvertMen : Cleaned with backup (quarantined). [212] D:\WINDOWS\system32\pushow88.dll -> Adware.AdvertMen : Error during cleaning. D:\Documents and Settings\Administrateur.TITANIUM\Menu Démarrer\Programmes\WhenU -> Adware.SaveNow : Cleaned with backup (quarantined). D:\Documents and Settings\Administrateur.TITANIUM\Menu Démarrer\Programmes\WhenU\Customer Support.lnk -> Adware.SaveNow : Cleaned with backup (quarantined). D:\Documents and Settings\Administrateur.TITANIUM\Menu Démarrer\Programmes\WhenU\Learn More About WhenU Save.url -> Adware.SaveNow : Cleaned with backup (quarantined). D:\Documents and Settings\Administrateur.TITANIUM\Menu Démarrer\Programmes\WhenU\Learn More About WhenU SaveNow.url -> Adware.SaveNow : Cleaned with backup (quarantined). D:\Documents and Settings\Administrateur.TITANIUM\Menu Démarrer\Programmes\WhenU\Uninstall Instructions.lnk -> Adware.SaveNow : Cleaned with backup (quarantined). D:\Documents and Settings\Administrateur.TITANIUM\Menu Démarrer\Programmes\WhenU\WhenU.com Website.url -> Adware.SaveNow : Cleaned with backup (quarantined). F:\Program Files\Save -> Adware.SaveNow : Cleaned with backup (quarantined). F:\Program Files\Save\ACM.dll -> Adware.SaveNow : Cleaned with backup (quarantined). F:\Program Files\Save\Save.exe -> Adware.SaveNow : Cleaned with backup (quarantined). F:\Program Files\Save\SaveUninst.exe -> Adware.SaveNow : Cleaned with backup (quarantined). F:\Program Files\Save\ffext.mod -> Adware.SaveNow : Cleaned with backup (quarantined). F:\Program Files\Save\save.db -> Adware.SaveNow : Cleaned with backup (quarantined). F:\Program Files\Save\save.htm -> Adware.SaveNow : Cleaned with backup (quarantined). F:\Program Files\Save\store.db -> Adware.SaveNow : Cleaned with backup (quarantined). F:\Program Files\WhenUSearch -> Adware.SaveNow : Cleaned with backup (quarantined). F:\Program Files\WhenUSearch\Content -> Adware.SaveNow : Cleaned with backup (quarantined). F:\Program Files\WhenUSearch\Content\images -> Adware.SaveNow : Cleaned with backup (quarantined). F:\Program Files\WhenUSearch\Content\images\90_wtext_sm.gif -> Adware.SaveNow : Cleaned with backup (quarantined). F:\Program Files\WhenUSearch\Content\images\91_wtext.gif -> Adware.SaveNow : Cleaned with backup (quarantined). F:\Program Files\WhenUSearch\Content\images\91_wtext_sm.gif -> Adware.SaveNow : Cleaned with backup (quarantined). F:\Program Files\WhenUSearch\Content\images\92_wtext.gif -> Adware.SaveNow : Cleaned with backup (quarantined). F:\Program Files\WhenUSearch\Content\images\92_wtext_sm.gif -> Adware.SaveNow : Cleaned with backup (quarantined). HKLM\SOFTWARE\Classes\WUSE.1 -> Adware.SaveNow : Cleaned with backup (quarantined). HKLM\SOFTWARE\Classes\WUSN.1 -> Adware.SaveNow : Cleaned with backup (quarantined). HKLM\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\WhenUSave -> Adware.SaveNow : Cleaned with backup (quarantined). HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\SaveNow -> Adware.SaveNow : Cleaned with backup (quarantined). HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\WhenUSearch -> Adware.SaveNow : Cleaned with backup (quarantined). HKLM\SOFTWARE\WhenUSave -> Adware.SaveNow : Cleaned with backup (quarantined). HKLM\SOFTWARE\WhenUSave\Partners -> Adware.SaveNow : Cleaned with backup (quarantined). HKLM\SOFTWARE\WhenUSave\Partners\WUSV -> Adware.SaveNow : Cleaned with backup (quarantined). HKLM\SOFTWARE\WhenUSearch -> Adware.SaveNow : Cleaned with backup (quarantined). HKLM\SOFTWARE\WhenUSearch\Partners -> Adware.SaveNow : Cleaned with backup (quarantined). HKLM\SOFTWARE\WhenUSearch\Partners\desktop -> Adware.SaveNow : Cleaned with backup (quarantined). HKLM\SOFTWARE\WhenUSearch\WHSE -> Adware.SaveNow : Cleaned with backup (quarantined). D:\Documents and Settings\Administrateur.TITANIUM\Menu Démarrer\Programmes\WhenUSearch -> Adware.WhenU : Cleaned with backup (quarantined). D:\Documents and Settings\Administrateur.TITANIUM\Menu Démarrer\Programmes\WhenUSearch\WhenUSearch Desktop Toolbar.lnk -> Adware.WhenU : Cleaned with backup (quarantined). C:\Documents and Settings\LocalService\Local Settings\Temporary Internet Files\Content.IE5\M30E9X6L\adult1[1].exe -> Dialer.PlayGames.l : Cleaned with backup (quarantined). C:\d2k8q8z8f3o9.exe -> Dialer.PlayGames.l : Cleaned with backup (quarantined). C:\i4b4b3a2w2e9.exe -> Dialer.PlayGames.l : Cleaned with backup (quarantined). C:\jw1ho346.exe -> Dialer.PlayGames.l : Cleaned with backup (quarantined). C:\jw1ho6.exe -> Dialer.PlayGames.l : Cleaned with backup (quarantined). C:\jw221ho6.exe -> Dialer.PlayGames.l : Cleaned with backup (quarantined). C:\n2l3m1v7t7f7.exe -> Dialer.PlayGames.l : Cleaned with backup (quarantined). :mozilla.132:F:\Documents and Settings\Administrateur.TITANIUM\Application Data\Mozilla\Firefox\Profiles\bsacck9e.default\cookies.txt -> TrackingCookie.247realmedia : Cleaned with backup (quarantined). :mozilla.133:F:\Documents and Settings\Administrateur.TITANIUM\Application Data\Mozilla\Firefox\Profiles\bsacck9e.default\cookies.txt -> TrackingCookie.247realmedia : Cleaned with backup (quarantined). :mozilla.134:F:\Documents and Settings\Administrateur.TITANIUM\Application Data\Mozilla\Firefox\Profiles\bsacck9e.default\cookies.txt -> TrackingCookie.247realmedia : Cleaned with backup (quarantined). :mozilla.53:C:\Documents and Settings\Yves Cathala\Application Data\Mozilla\Firefox\Profiles\default.kvs\cookies.txt -> TrackingCookie.247realmedia : Cleaned with backup (quarantined). :mozilla.54:C:\Documents and Settings\Yves Cathala\Application Data\Mozilla\Firefox\Profiles\default.kvs\cookies.txt -> TrackingCookie.247realmedia : Cleaned with backup (quarantined). :mozilla.125:C:\Documents and Settings\Yves Cathala\Application Data\Mozilla\Firefox\Profiles\default.kvs\cookies.txt -> TrackingCookie.2o7 : Cleaned with backup (quarantined). :mozilla.7:F:\Documents and Settings\Administrateur.TITANIUM\Application Data\Mozilla\Firefox\Profiles\bsacck9e.default\cookies.txt -> TrackingCookie.2o7 : Cleaned with backup (quarantined). :mozilla.100:C:\Documents and Settings\Yves Cathala\Application Data\Mozilla\Firefox\Profiles\default.kvs\cookies.txt -> TrackingCookie.Adbrite : Cleaned with backup (quarantined). :mozilla.100:D:\Documents and Settings\Administrateur.TITANIUM\Application Data\Mozilla\Firefox\Profiles\b1soeguq.default\cookies.txt -> TrackingCookie.Adbrite : Cleaned with backup (quarantined). :mozilla.101:C:\Documents and Settings\Yves Cathala\Application Data\Mozilla\Firefox\Profiles\default.kvs\cookies.txt -> TrackingCookie.Adbrite : Cleaned with backup (quarantined). :mozilla.115:D:\Documents and Settings\Administrateur.TITANIUM\Application Data\Mozilla\Firefox\Profiles\b1soeguq.default\cookies.txt -> TrackingCookie.Adbrite : Cleaned with backup (quarantined). :mozilla.27:F:\Documents and Settings\Administrateur.TITANIUM\Application Data\Mozilla\Firefox\Profiles\bsacck9e.default\cookies.txt -> TrackingCookie.Adbrite : Cleaned with backup (quarantined). :mozilla.28:F:\Documents and Settings\Administrateur.TITANIUM\Application Data\Mozilla\Firefox\Profiles\bsacck9e.default\cookies.txt -> TrackingCookie.Adbrite : Cleaned with backup (quarantined). :mozilla.29:F:\Documents and Settings\Administrateur.TITANIUM\Application Data\Mozilla\Firefox\Profiles\bsacck9e.default\cookies.txt -> TrackingCookie.Adbrite : Cleaned with backup (quarantined). :mozilla.445:D:\Documents and Settings\Administrateur.TITANIUM\Application Data\Mozilla\Firefox\Profiles\b1soeguq.default\cookies.txt -> TrackingCookie.Adbrite : Cleaned with backup (quarantined). :mozilla.670:D:\Documents and Settings\Administrateur.TITANIUM\Application Data\Mozilla\Firefox\Profiles\b1soeguq.default\cookies.txt -> TrackingCookie.Adbrite : Cleaned with backup (quarantined). :mozilla.691:D:\Documents and Settings\Administrateur.TITANIUM\Application Data\Mozilla\Firefox\Profiles\b1soeguq.default\cookies.txt -> TrackingCookie.Adbrite : Cleaned with backup (quarantined). :mozilla.98:D:\Documents and Settings\Administrateur.TITANIUM\Application Data\Mozilla\Firefox\Profiles\b1soeguq.default\cookies.txt -> TrackingCookie.Adbrite : Cleaned with backup (quarantined). :mozilla.99:D:\Documents and Settings\Administrateur.TITANIUM\Application Data\Mozilla\Firefox\Profiles\b1soeguq.default\cookies.txt -> TrackingCookie.Adbrite : Cleaned with backup (quarantined). :mozilla.41:F:\Documents and Settings\Administrateur.TITANIUM\Application Data\Mozilla\Firefox\Profiles\bsacck9e.default\cookies.txt -> TrackingCookie.Adtech : Cleaned with backup (quarantined). :mozilla.43:F:\Documents and Settings\Administrateur.TITANIUM\Application Data\Mozilla\Firefox\Profiles\bsacck9e.default\cookies.txt -> TrackingCookie.Adtech : Cleaned with backup (quarantined). :mozilla.71:C:\Documents and Settings\Yves Cathala\Application Data\Mozilla\Firefox\Profiles\default.kvs\cookies.txt -> TrackingCookie.Adtech : Cleaned with backup (quarantined). :mozilla.72:C:\Documents and Settings\Yves Cathala\Application Data\Mozilla\Firefox\Profiles\default.kvs\cookies.txt -> TrackingCookie.Adtech : Cleaned with backup (quarantined). :mozilla.158:C:\Documents and Settings\Yves Cathala\Application Data\Mozilla\Firefox\Profiles\default.kvs\cookies.txt -> TrackingCookie.Advertising : Cleaned with backup (quarantined). :mozilla.159:C:\Documents and Settings\Yves Cathala\Application Data\Mozilla\Firefox\Profiles\default.kvs\cookies.txt -> TrackingCookie.Advertising : Cleaned with backup (quarantined). :mozilla.160:C:\Documents and Settings\Yves Cathala\Application Data\Mozilla\Firefox\Profiles\default.kvs\cookies.txt -> TrackingCookie.Advertising : Cleaned with backup (quarantined). :mozilla.130:C:\Documents and Settings\Yves Cathala\Application Data\Mozilla\Firefox\Profiles\default.kvs\cookies.txt -> TrackingCookie.Atdmt : Cleaned with backup (quarantined). :mozilla.59:C:\Documents and Settings\Yves Cathala\Application Data\Mozilla\Firefox\Profiles\default.kvs\cookies.txt -> TrackingCookie.Bluestreak : Cleaned with backup (quarantined). :mozilla.92:F:\Documents and Settings\Administrateur.TITANIUM\Application Data\Mozilla\Firefox\Profiles\bsacck9e.default\cookies.txt -> TrackingCookie.Bluestreak : Cleaned with backup (quarantined). :mozilla.117:F:\Documents and Settings\Administrateur.TITANIUM\Application Data\Mozilla\Firefox\Profiles\bsacck9e.default\cookies.txt -> TrackingCookie.Burstnet : Cleaned with backup (quarantined). :mozilla.118:F:\Documents and Settings\Administrateur.TITANIUM\Application Data\Mozilla\Firefox\Profiles\bsacck9e.default\cookies.txt -> TrackingCookie.Burstnet : Cleaned with backup (quarantined). :mozilla.325:D:\Documents and Settings\Administrateur.TITANIUM\Application Data\Mozilla\Firefox\Profiles\b1soeguq.default\cookies.txt -> TrackingCookie.Burstnet : Cleaned with backup (quarantined). :mozilla.326:D:\Documents and Settings\Administrateur.TITANIUM\Application Data\Mozilla\Firefox\Profiles\b1soeguq.default\cookies.txt -> TrackingCookie.Burstnet : Cleaned with backup (quarantined). D:\Documents and Settings\Administrateur.TITANIUM\Cookies\administrateur@burstnet[2].txt -> TrackingCookie.Burstnet : Cleaned with backup (quarantined). D:\Documents and Settings\Administrateur.TITANIUM\Cookies\administrateur@www.burstnet[1].txt -> TrackingCookie.Burstnet : Cleaned with backup (quarantined). :mozilla.108:F:\Documents and Settings\Administrateur.TITANIUM\Application Data\Mozilla\Firefox\Profiles\bsacck9e.default\cookies.txt -> TrackingCookie.Casalemedia : Cleaned with backup (quarantined). :mozilla.109:F:\Documents and Settings\Administrateur.TITANIUM\Application Data\Mozilla\Firefox\Profiles\bsacck9e.default\cookies.txt -> TrackingCookie.Casalemedia : Cleaned with backup (quarantined). :mozilla.110:F:\Documents and Settings\Administrateur.TITANIUM\Application Data\Mozilla\Firefox\Profiles\bsacck9e.default\cookies.txt -> TrackingCookie.Casalemedia : Cleaned with backup (quarantined). :mozilla.112:F:\Documents and Settings\Administrateur.TITANIUM\Application Data\Mozilla\Firefox\Profiles\bsacck9e.default\cookies.txt -> TrackingCookie.Casalemedia : Cleaned with backup (quarantined). :mozilla.471:D:\Documents and Settings\Administrateur.TITANIUM\Application Data\Mozilla\Firefox\Profiles\b1soeguq.default\cookies.txt -> TrackingCookie.Casalemedia : Cleaned with backup (quarantined). C:\Documents and Settings\Yves Cathala\Cookies\yves cathala@casalemedia[2].txt -> TrackingCookie.Casalemedia : Cleaned with backup (quarantined). :mozilla.723:D:\Documents and Settings\Administrateur.TITANIUM\Application Data\Mozilla\Firefox\Profiles\b1soeguq.default\cookies.txt -> TrackingCookie.Clickhype : Cleaned with backup (quarantined). :mozilla.139:D:\Documents and Settings\Administrateur.TITANIUM\Application Data\Mozilla\Firefox\Profiles\b1soeguq.default\cookies.txt -> TrackingCookie.Com : Cleaned with backup (quarantined). D:\Documents and Settings\Administrateur.TITANIUM\Cookies\administrateur@com[1].txt -> TrackingCookie.Com : Cleaned with backup (quarantined). :mozilla.126:F:\Documents and Settings\Administrateur.TITANIUM\Application Data\Mozilla\Firefox\Profiles\bsacck9e.default\cookies.txt -> TrackingCookie.Comclick : Cleaned with backup (quarantined). :mozilla.127:F:\Documents and Settings\Administrateur.TITANIUM\Application Data\Mozilla\Firefox\Profiles\bsacck9e.default\cookies.txt -> TrackingCookie.Comclick : Cleaned with backup (quarantined). :mozilla.128:F:\Documents and Settings\Administrateur.TITANIUM\Application Data\Mozilla\Firefox\Profiles\bsacck9e.default\cookies.txt -> TrackingCookie.Comclick : Cleaned with backup (quarantined). :mozilla.184:C:\Documents and Settings\Yves Cathala\Application Data\Mozilla\Firefox\Profiles\default.kvs\cookies.txt -> TrackingCookie.Comclick : Cleaned with backup (quarantined). :mozilla.185:C:\Documents and Settings\Yves Cathala\Application Data\Mozilla\Firefox\Profiles\default.kvs\cookies.txt -> TrackingCookie.Comclick : Cleaned with backup (quarantined). :mozilla.186:C:\Documents and Settings\Yves Cathala\Application Data\Mozilla\Firefox\Profiles\default.kvs\cookies.txt -> TrackingCookie.Comclick : Cleaned with backup (quarantined). :mozilla.183:C:\Documents and Settings\Yves Cathala\Application Data\Mozilla\Firefox\Profiles\default.kvs\cookies.txt -> TrackingCookie.Dbbsrv : Cleaned with backup (quarantined). :mozilla.49:C:\Documents and Settings\Yves Cathala\Application Data\Mozilla\Firefox\Profiles\default.kvs\cookies.txt -> TrackingCookie.Doubleclick : Cleaned with backup (quarantined). :mozilla.60:F:\Documents and Settings\Administrateur.TITANIUM\Application Data\Mozilla\Firefox\Profiles\bsacck9e.default\cookies.txt -> TrackingCookie.Doubleclick : Cleaned with backup (quarantined). :mozilla.164:C:\Documents and Settings\Yves Cathala\Application Data\Mozilla\Firefox\Profiles\default.kvs\cookies.txt -> TrackingCookie.Estat : Cleaned with backup (quarantined). :mozilla.74:D:\Documents and Settings\Administrateur.TITANIUM\Application Data\Mozilla\Firefox\Profiles\b1soeguq.default\cookies.txt -> TrackingCookie.Estat : Cleaned with backup (quarantined). :mozilla.555:D:\Documents and Settings\Administrateur.TITANIUM\Application Data\Mozilla\Firefox\Profiles\b1soeguq.default\cookies.txt -> TrackingCookie.Falkag : Cleaned with backup (quarantined). :mozilla.106:F:\Documents and Settings\Administrateur.TITANIUM\Application Data\Mozilla\Firefox\Profiles\bsacck9e.default\cookies.txt -> TrackingCookie.Fastclick : Cleaned with backup (quarantined). C:\Documents and Settings\Yves Cathala\Cookies\yves cathala@fastclick[1].txt -> TrackingCookie.Fastclick : Cleaned with backup (quarantined). :mozilla.226:D:\Documents and Settings\Administrateur.TITANIUM\Application Data\Mozilla\Firefox\Profiles\b1soeguq.default\cookies.txt -> TrackingCookie.Googleadservices : Cleaned with backup (quarantined). :mozilla.231:D:\Documents and Settings\Administrateur.TITANIUM\Application Data\Mozilla\Firefox\Profiles\b1soeguq.default\cookies.txt -> TrackingCookie.Googleadservices : Cleaned with backup (quarantined). :mozilla.113:F:\Documents and Settings\Administrateur.TITANIUM\Application Data\Mozilla\Firefox\Profiles\bsacck9e.default\cookies.txt -> TrackingCookie.Hitbox : Cleaned with backup (quarantined). :mozilla.114:F:\Documents and Settings\Administrateur.TITANIUM\Application Data\Mozilla\Firefox\Profiles\bsacck9e.default\cookies.txt -> TrackingCookie.Hitbox : Cleaned with backup (quarantined). :mozilla.310:D:\Documents and Settings\Administrateur.TITANIUM\Application Data\Mozilla\Firefox\Profiles\b1soeguq.default\cookies.txt -> TrackingCookie.Hypertracker : Cleaned with backup (quarantined). :mozilla.601:D:\Documents and Settings\Administrateur.TITANIUM\Application Data\Mozilla\Firefox\Profiles\b1soeguq.default\cookies.txt -> TrackingCookie.Liveperson : Cleaned with backup (quarantined). :mozilla.602:D:\Documents and Settings\Administrateur.TITANIUM\Application Data\Mozilla\Firefox\Profiles\b1soeguq.default\cookies.txt -> TrackingCookie.Liveperson : Cleaned with backup (quarantined). :mozilla.603:D:\Documents and Settings\Administrateur.TITANIUM\Application Data\Mozilla\Firefox\Profiles\b1soeguq.default\cookies.txt -> TrackingCookie.Liveperson : Cleaned with backup (quarantined). :mozilla.73:C:\Documents and Settings\Yves Cathala\Application Data\Mozilla\Firefox\Profiles\default.kvs\cookies.txt -> TrackingCookie.Mediaplex : Cleaned with backup (quarantined). :mozilla.94:F:\Documents and Settings\Administrateur.TITANIUM\Application Data\Mozilla\Firefox\Profiles\bsacck9e.default\cookies.txt -> TrackingCookie.Mediaplex : Cleaned with backup (quarantined). :mozilla.436:D:\Documents and Settings\Administrateur.TITANIUM\Application Data\Mozilla\Firefox\Profiles\b1soeguq.default\cookies.txt -> TrackingCookie.Onestat : Cleaned with backup (quarantined). :mozilla.437:D:\Documents and Settings\Administrateur.TITANIUM\Application Data\Mozilla\Firefox\Profiles\b1soeguq.default\cookies.txt -> TrackingCookie.Onestat : Cleaned with backup (quarantined). :mozilla.166:D:\Documents and Settings\Administrateur.TITANIUM\Application Data\Mozilla\Firefox\Profiles\b1soeguq.default\cookies.txt -> TrackingCookie.Reliablestats : Cleaned with backup (quarantined). :mozilla.167:D:\Documents and Settings\Administrateur.TITANIUM\Application Data\Mozilla\Firefox\Profiles\b1soeguq.default\cookies.txt -> TrackingCookie.Reliablestats : Cleaned with backup (quarantined). :mozilla.168:D:\Documents and Settings\Administrateur.TITANIUM\Application Data\Mozilla\Firefox\Profiles\b1soeguq.default\cookies.txt -> TrackingCookie.Reliablestats : Cleaned with backup (quarantined). :mozilla.169:D:\Documents and Settings\Administrateur.TITANIUM\Application Data\Mozilla\Firefox\Profiles\b1soeguq.default\cookies.txt -> TrackingCookie.Reliablestats : Cleaned with backup (quarantined). :mozilla.170:D:\Documents and Settings\Administrateur.TITANIUM\Application Data\Mozilla\Firefox\Profiles\b1soeguq.default\cookies.txt -> TrackingCookie.Reliablestats : Cleaned with backup (quarantined). :mozilla.171:D:\Documents and Settings\Administrateur.TITANIUM\Application Data\Mozilla\Firefox\Profiles\b1soeguq.default\cookies.txt -> TrackingCookie.Reliablestats : Cleaned with backup (quarantined). :mozilla.172:D:\Documents and Settings\Administrateur.TITANIUM\Application Data\Mozilla\Firefox\Profiles\b1soeguq.default\cookies.txt -> TrackingCookie.Reliablestats : Cleaned with backup (quarantined). :mozilla.173:D:\Documents and Settings\Administrateur.TITANIUM\Application Data\Mozilla\Firefox\Profiles\b1soeguq.default\cookies.txt -> TrackingCookie.Reliablestats : Cleaned with backup (quarantined). :mozilla.174:D:\Documents and Settings\Administrateur.TITANIUM\Application Data\Mozilla\Firefox\Profiles\b1soeguq.default\cookies.txt -> TrackingCookie.Reliablestats : Cleaned with backup (quarantined). :mozilla.175:D:\Documents and Settings\Administrateur.TITANIUM\Application Data\Mozilla\Firefox\Profiles\b1soeguq.default\cookies.txt -> TrackingCookie.Reliablestats : Cleaned with backup (quarantined). :mozilla.176:D:\Documents and Settings\Administrateur.TITANIUM\Application Data\Mozilla\Firefox\Profiles\b1soeguq.default\cookies.txt -> TrackingCookie.Reliablestats : Cleaned with backup (quarantined). C:\Documents and Settings\Yves Cathala\Cookies\yves cathala@stats1.reliablestats[1].txt -> TrackingCookie.Reliablestats : Cleaned with backup (quarantined). D:\Documents and Settings\Administrateur.TITANIUM\Cookies\administrateur@stats1.reliablestats[1].txt -> TrackingCookie.Reliablestats : Cleaned with backup (quarantined). :mozilla.472:D:\Documents and Settings\Administrateur.TITANIUM\Application Data\Mozilla\Firefox\Profiles\b1soeguq.default\cookies.txt -> TrackingCookie.Revenue : Cleaned with backup (quarantined). :mozilla.50:F:\Documents and Settings\Administrateur.TITANIUM\Application Data\Mozilla\Firefox\Profiles\bsacck9e.default\cookies.txt -> TrackingCookie.Revenue : Cleaned with backup (quarantined). :mozilla.66:D:\Documents and Settings\Administrateur.TITANIUM\Application Data\Mozilla\Firefox\Profiles\b1soeguq.default\cookies.txt -> TrackingCookie.Serving-sys : Cleaned with backup (quarantined). :mozilla.67:D:\Documents and Settings\Administrateur.TITANIUM\Application Data\Mozilla\Firefox\Profiles\b1soeguq.default\cookies.txt -> TrackingCookie.Serving-sys : Cleaned with backup (quarantined). :mozilla.68:D:\Documents and Settings\Administrateur.TITANIUM\Application Data\Mozilla\Firefox\Profiles\b1soeguq.default\cookies.txt -> TrackingCookie.Serving-sys : Cleaned with backup (quarantined). :mozilla.69:D:\Documents and Settings\Administrateur.TITANIUM\Application Data\Mozilla\Firefox\Profiles\b1soeguq.default\cookies.txt -> TrackingCookie.Serving-sys : Cleaned with backup (quarantined). :mozilla.70:D:\Documents and Settings\Administrateur.TITANIUM\Application Data\Mozilla\Firefox\Profiles\b1soeguq.default\cookies.txt -> TrackingCookie.Serving-sys : Cleaned with backup (quarantined). :mozilla.75:D:\Documents and Settings\Administrateur.TITANIUM\Application Data\Mozilla\Firefox\Profiles\b1soeguq.default\cookies.txt -> TrackingCookie.Serving-sys : Cleaned with backup (quarantined). :mozilla.92:C:\Documents and Settings\Yves Cathala\Application Data\Mozilla\Firefox\Profiles\default.kvs\cookies.txt -> TrackingCookie.Serving-sys : Cleaned with backup (quarantined). :mozilla.93:C:\Documents and Settings\Yves Cathala\Application Data\Mozilla\Firefox\Profiles\default.kvs\cookies.txt -> TrackingCookie.Serving-sys : Cleaned with backup (quarantined). :mozilla.94:C:\Documents and Settings\Yves Cathala\Application Data\Mozilla\Firefox\Profiles\default.kvs\cookies.txt -> TrackingCookie.Serving-sys : Cleaned with backup (quarantined). :mozilla.95:C:\Documents and Settings\Yves Cathala\Application Data\Mozilla\Firefox\Profiles\default.kvs\cookies.txt -> TrackingCookie.Serving-sys : Cleaned with backup (quarantined). :mozilla.96:C:\Documents and Settings\Yves Cathala\Application Data\Mozilla\Firefox\Profiles\default.kvs\cookies.txt -> TrackingCookie.Serving-sys : Cleaned with backup (quarantined). :mozilla.97:C:\Documents and Settings\Yves Cathala\Application Data\Mozilla\Firefox\Profiles\default.kvs\cookies.txt -> TrackingCookie.Serving-sys : Cleaned with backup (quarantined). :mozilla.393:D:\Documents and Settings\Administrateur.TITANIUM\Application Data\Mozilla\Firefox\Profiles\b1soeguq.default\cookies.txt -> TrackingCookie.Sitestat : Cleaned with backup (quarantined). :mozilla.394:D:\Documents and Settings\Administrateur.TITANIUM\Application Data\Mozilla\Firefox\Profiles\b1soeguq.default\cookies.txt -> TrackingCookie.Sitestat : Cleaned with backup (quarantined). :mozilla.539:D:\Documents and Settings\Administrateur.TITANIUM\Application Data\Mozilla\Firefox\Profiles\b1soeguq.default\cookies.txt -> TrackingCookie.Sitestat : Cleaned with backup (quarantined). :mozilla.540:D:\Documents and Settings\Administrateur.TITANIUM\Application Data\Mozilla\Firefox\Profiles\b1soeguq.default\cookies.txt -> TrackingCookie.Sitestat : Cleaned with backup (quarantined). :mozilla.593:D:\Documents and Settings\Administrateur.TITANIUM\Application Data\Mozilla\Firefox\Profiles\b1soeguq.default\cookies.txt -> TrackingCookie.Sitestat : Cleaned with backup (quarantined). :mozilla.595:D:\Documents and Settings\Administrateur.TITANIUM\Application Data\Mozilla\Firefox\Profiles\b1soeguq.default\cookies.txt -> TrackingCookie.Sitestat : Cleaned with backup (quarantined). :mozilla.127:C:\Documents and Settings\Yves Cathala\Application Data\Mozilla\Firefox\Profiles\default.kvs\cookies.txt -> TrackingCookie.Smartadserver : Cleaned with backup (quarantined). :mozilla.128:C:\Documents and Settings\Yves Cathala\Application Data\Mozilla\Firefox\Profiles\default.kvs\cookies.txt -> TrackingCookie.Smartadserver : Cleaned with backup (quarantined). :mozilla.129:C:\Documents and Settings\Yves Cathala\Application Data\Mozilla\Firefox\Profiles\default.kvs\cookies.txt -> TrackingCookie.Smartadserver : Cleaned with backup (quarantined). :mozilla.87:F:\Documents and Settings\Administrateur.TITANIUM\Application Data\Mozilla\Firefox\Profiles\bsacck9e.default\cookies.txt -> TrackingCookie.Smartadserver : Cleaned with backup (quarantined). :mozilla.88:F:\Documents and Settings\Administrateur.TITANIUM\Application Data\Mozilla\Firefox\Profiles\bsacck9e.default\cookies.txt -> TrackingCookie.Smartadserver : Cleaned with backup (quarantined). :mozilla.89:F:\Documents and Settings\Administrateur.TITANIUM\Application Data\Mozilla\Firefox\Profiles\bsacck9e.default\cookies.txt -> TrackingCookie.Smartadserver : Cleaned with backup (quarantined). :mozilla.118:C:\Documents and Settings\Yves Cathala\Application Data\Mozilla\Firefox\Profiles\default.kvs\cookies.txt -> TrackingCookie.Statcounter : Cleaned with backup (quarantined). :mozilla.119:C:\Documents and Settings\Yves Cathala\Application Data\Mozilla\Firefox\Profiles\default.kvs\cookies.txt -> TrackingCookie.Statcounter : Cleaned with backup (quarantined). :mozilla.87:D:\Documents and Settings\Administrateur.TITANIUM\Application Data\Mozilla\Firefox\Profiles\b1soeguq.default\cookies.txt -> TrackingCookie.Statcounter : Cleaned with backup (quarantined). :mozilla.91:D:\Documents and Settings\Administrateur.TITANIUM\Application Data\Mozilla\Firefox\Profiles\b1soeguq.default\cookies.txt -> TrackingCookie.Statcounter : Cleaned with backup (quarantined). :mozilla.92:D:\Documents and Settings\Administrateur.TITANIUM\Application Data\Mozilla\Firefox\Profiles\b1soeguq.default\cookies.txt -> TrackingCookie.Statcounter : Cleaned with backup (quarantined). :mozilla.93:D:\Documents and Settings\Administrateur.TITANIUM\Application Data\Mozilla\Firefox\Profiles\b1soeguq.default\cookies.txt -> TrackingCookie.Statcounter : Cleaned with backup (quarantined). :mozilla.94:D:\Documents and Settings\Administrateur.TITANIUM\Application Data\Mozilla\Firefox\Profiles\b1soeguq.default\cookies.txt -> TrackingCookie.Statcounter : Cleaned with backup (quarantined). :mozilla.96:D:\Documents and Settings\Administrateur.TITANIUM\Application Data\Mozilla\Firefox\Profiles\b1soeguq.default\cookies.txt -> TrackingCookie.Statcounter : Cleaned with backup (quarantined). :mozilla.97:D:\Documents and Settings\Administrateur.TITANIUM\Application Data\Mozilla\Firefox\Profiles\b1soeguq.default\cookies.txt -> TrackingCookie.Statcounter : Cleaned with backup (quarantined). C:\Documents and Settings\Yves Cathala\Cookies\yves cathala@statcounter[2].txt -> TrackingCookie.Statcounter : Cleaned with backup (quarantined). D:\Documents and Settings\Administrateur.TITANIUM\Cookies\administrateur@statcounter[1].txt -> TrackingCookie.Statcounter : Cleaned with backup (quarantined). :mozilla.327:D:\Documents and Settings\Administrateur.TITANIUM\Application Data\Mozilla\Firefox\Profiles\b1soeguq.default\cookies.txt -> TrackingCookie.Tacoda : Cleaned with backup (quarantined). :mozilla.328:D:\Documents and Settings\Administrateur.TITANIUM\Application Data\Mozilla\Firefox\Profiles\b1soeguq.default\cookies.txt -> TrackingCookie.Tacoda : Cleaned with backup (quarantined). D:\Documents and Settings\Administrateur.TITANIUM\Cookies\administrateur@tacoda[2].txt -> TrackingCookie.Tacoda : Cleaned with backup (quarantined). :mozilla.52:C:\Documents and Settings\Yves Cathala\Application Data\Mozilla\Firefox\Profiles\default.kvs\cookies.txt -> TrackingCookie.Tradedoubler : Cleaned with backup (quarantined). :mozilla.52:F:\Documents and Settings\Administrateur.TITANIUM\Application Data\Mozilla\Firefox\Profiles\bsacck9e.default\cookies.txt -> TrackingCookie.Tradedoubler : Cleaned with backup (quarantined). C:\Documents and Settings\Yves Cathala\Cookies\yves cathala@tradedoubler[2].txt -> TrackingCookie.Tradedoubler : Cleaned with backup (quarantined). :mozilla.21:F:\Documents and Settings\Administrateur.TITANIUM\Application Data\Mozilla\Firefox\Profiles\bsacck9e.default\cookies.txt -> TrackingCookie.Tribalfusion : Cleaned with backup (quarantined). :mozilla.48:C:\Documents and Settings\Yves Cathala\Application Data\Mozilla\Firefox\Profiles\default.kvs\cookies.txt -> TrackingCookie.Weborama : Cleaned with backup (quarantined). :mozilla.83:D:\Documents and Settings\Administrateur.TITANIUM\Application Data\Mozilla\Firefox\Profiles\b1soeguq.default\cookies.txt -> TrackingCookie.Weborama : Cleaned with backup (quarantined). :mozilla.84:D:\Documents and Settings\Administrateur.TITANIUM\Application Data\Mozilla\Firefox\Profiles\b1soeguq.default\cookies.txt -> TrackingCookie.Weborama : Cleaned with backup (quarantined). :mozilla.85:D:\Documents and Settings\Administrateur.TITANIUM\Application Data\Mozilla\Firefox\Profiles\b1soeguq.default\cookies.txt -> TrackingCookie.Weborama : Cleaned with backup (quarantined). :mozilla.95:F:\Documents and Settings\Administrateur.TITANIUM\Application Data\Mozilla\Firefox\Profiles\bsacck9e.default\cookies.txt -> TrackingCookie.Weborama : Cleaned with backup (quarantined). D:\Documents and Settings\Administrateur.TITANIUM\Cookies\administrateur@weborama[1].txt -> TrackingCookie.Weborama : Cleaned with backup (quarantined). :mozilla.64:C:\Documents and Settings\Yves Cathala\Application Data\Mozilla\Firefox\Profiles\default.kvs\cookies.txt -> TrackingCookie.Webtrendslive : Cleaned with backup (quarantined). :mozilla.36:F:\Documents and Settings\Administrateur.TITANIUM\Application Data\Mozilla\Firefox\Profiles\bsacck9e.default\cookies.txt -> TrackingCookie.Yadro : Cleaned with backup (quarantined). :mozilla.653:D:\Documents and Settings\Administrateur.TITANIUM\Application Data\Mozilla\Firefox\Profiles\b1soeguq.default\cookies.txt -> TrackingCookie.Yadro : Cleaned with backup (quarantined). :mozilla.103:C:\

Bonjour, J'ai toujours des erreurs avec un service sychost qui renvoie au debogueur systematiquement souvent des le demarrage de windows. Voici mon rapport Hijackthis Quelqu'un peut-il m'aider ? Merci Logfile of HijackThis v1.99.1 Scan saved at 14:29:12, on 22/12/2006 Platform: Windows XP SP2 (WinNT 5.01.2600) MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180) Running processes: D:\WINDOWS\System32\smss.exe D:\WINDOWS\system32\winlogon.exe D:\WINDOWS\system32\services.exe D:\WINDOWS\system32\lsass.exe D:\WINDOWS\system32\svchost.exe D:\WINDOWS\system32\spoolsv.exe F:\Program Files\AntiVir PersonalEdition Classic\sched.exe D:\WINDOWS\system32\cisvc.exe D:\WINDOWS\Prefetch\IEXPLORE.EXE F:\WINDOWS\system32\svchost.exe D:\WINDOWS\system32\inetsrv\inetinfo.exe D:\WINDOWS\Explorer.EXE F:\Program Files\Microsoft ActiveSync\wcescomm.exe F:\PROGRA~1\MICROS~2\rapimgr.exe D:\WINDOWS\System32\svchost.exe D:\Program Files\Total Commander 7.0 B1\TOTALCMD.EXE D:\WINDOWS\system32\svchost.exe D:\WINDOWS\system32\cidaemon.exe D:\WINDOWS\system32\cidaemon.exe D:\Program Files\HijackThis\HijackThis.exe R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page = R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - F:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll O2 - BHO: Solid Converter PDF - {259F616C-A300-44F5-B04A-ED001A26C85C} - D:\Program Files\SolidDocuments\SolidConverterPDF\SCPDF\ExploreExtPDF.dll O2 - BHO: FlpLauncher Class - {4401FDC3-7996-4774-8D2B-C1AE9CD6CC25} - F:\Program Files\E-Book Systems\FlipAlbum 6 Pro\FpLaunch.dll O2 - BHO: PCTools Site Guard - {5C8B2A36-3DB1-42A4-A3CB-D426709BBFEB} - F:\PROGRA~1\Spyware Doctor\tools\iesdsg.dll O2 - BHO: IeCatch2 Class - {A5366673-E8CA-11D3-9CD9-0090271D075B} - F:\PROGRA~1\FlashGet\jccatch.dll O2 - BHO: PCTools Browser Monitor - {B56A7D7D-6927-48C8-A975-17DF180C71AC} - F:\PROGRA~1\Spyware Doctor\tools\iesdpb.dll O2 - BHO: WhenUSearch Helper - {BA2325ED-F9EB-4830-8FCE-0BC35B16969B} - F:\Program Files\DAEMON Tools SearchBar\search.dll O3 - Toolbar: &Radio - {8E718888-423F-11D2-876E-00A0C9082467} - F:\WINDOWS\system32\msdxm.ocx O3 - Toolbar: FlashGet Bar - {E0E899AB-F487-11D5-8D29-0050BA6940E3} - F:\PROGRA~1\FlashGet\fgiebar.dll O3 - Toolbar: Yahoo! Toolbar avec bloqueur de fenêtres pop-up - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - F:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll O3 - Toolbar: Solid Converter PDF - {259F616C-A300-44F5-B04A-ED001A26C85C} - D:\Program Files\SolidDocuments\SolidConverterPDF\SCPDF\ExploreExtPDF.dll O4 - HKLM\..\Run: [MSConfig] F:\WINDOWS\PCHealth\HelpCtr\Binaries\MSConfig.exe /auto O4 - HKCU\..\Run: [H/PC Connection Agent] "F:\Program Files\Microsoft ActiveSync\wcescomm.exe" O8 - Extra context menu item: E&xport to Microsoft Excel - res://D:\PROGRA~1\Microsoft Office 07\Office12\EXCEL.EXE/3000 O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://F:\PROGRA~1\MI1933~1\OFFICE11\EXCEL.EXE/3000 O8 - Extra context menu item: Tout télécharger avec FlashGet - F:\Program Files\FlashGet\jc_all.htm O8 - Extra context menu item: Télécharger avec FlashGet - F:\Program Files\FlashGet\jc_link.htm O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - F:\Program Files\Java\j2re1.4.2_05\bin\npjpi142_05.dll O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - F:\Program Files\Java\j2re1.4.2_05\bin\npjpi142_05.dll O9 - Extra button: Spyware Doctor - {2D663D1A-8670-49D9-A1A5-4C56B4E14E84} - F:\PROGRA~1\Spyware Doctor\tools\iesdpb.dll O9 - Extra button: Create Mobile Favorite - {2EAF5BB1-070F-11D3-9307-00C04FAE2D4F} - F:\PROGRA~1\MICROS~2\INetRepl.dll O9 - Extra button: (no name) - {2EAF5BB2-070F-11D3-9307-00C04FAE2D4F} - F:\PROGRA~1\MICROS~2\INetRepl.dll O9 - Extra 'Tools' menuitem: Créer un favori mobile... - {2EAF5BB2-070F-11D3-9307-00C04FAE2D4F} - F:\PROGRA~1\MICROS~2\INetRepl.dll O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - D:\PROGRA~1\Microsoft Office 07\Office12\REFIEBAR.DLL O9 - Extra button: Organise-notes - {9455301C-CF6B-11D3-A266-00C04F689C50} - F:\Program Files\Fichiers communs\Microsoft Shared\Reference 2001\EROProj.dll O9 - Extra button: FlashGet - {D6E814A0-E0C5-11d4-8D29-0050BA6940E3} - F:\PROGRA~1\FlashGet\flashget.exe O9 - Extra 'Tools' menuitem: &FlashGet - {D6E814A0-E0C5-11d4-8D29-0050BA6940E3} - F:\PROGRA~1\FlashGet\flashget.exe O9 - Extra button: (no name) - SolidConverterPDF - (no file) (HKCU) O16 - DPF: {9A9307A0-7DA4-4DAF-B042-5009F29E09E1} (ActiveScan Installer Class) - http://acs.pandasoftware.com/activescan/as5free/asinst.cab O17 - HKLM\System\CCS\Services\Tcpip\..\{9E5C2A19-4BBC-4691-9A1E-5C611E477E57}: NameServer = 192.168.1.1 O18 - Protocol: ms-help - {314111C7-A502-11D2-BBCA-00C04F8EC294} - F:\Program Files\Fichiers communs\Microsoft Shared\Help\hxds.dll O18 - Filter hijack: text/xml - {807563E5-5146-11D5-A672-00B0D022E945} - F:\Program Files\Fichiers communs\Microsoft Shared\OFFICE12\MSOXMLMF.DLL O20 - AppInit_DLLs: pushow88.dll O23 - Service: AntiVir PersonalEdition Classic Scheduler (AntiVirScheduler) - Avira GmbH - F:\Program Files\AntiVir PersonalEdition Classic\sched.exe O23 - Service: AntiVir PersonalEdition Classic Guard (AntiVirService) - AVIRA GmbH - F:\Program Files\AntiVir PersonalEdition Classic\avguard.exe O23 - Service: DirectX Service (DirectQytl) - Unknown owner - d:\windows\system32\directx.exe O23 - Service: SQL Server (SQLEXPRESS) (MSSQL$SQLEXPRESS) - Unknown owner - F:\Program Files\Microsoft SQL Server\MSSQL.1\MSSQL\Binn\sqlservr.exe" -sSQLEXPRESS (file missing) O23 - Service: SQL Server VSS Writer (SQLWriter) - Unknown owner - F:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe (file missing)

Tout semble OK !! Il faudra que je surveille bien plus qu'avant car j'ai recolte pas mal de saletes. Quoiqu'il en soit bravo et merci pour ton aide et ton efficacite ainsi que pour tout les participants de Zebulon qui font du tres bon boulot. A+

Excuse, je viens de voir ton dernier post trop tard. Dois-je refaire les manips indiquees ? J'attends. A+

Voila mon nouveau rapport Hijackthis C'est bon ? Merci Logfile of HijackThis v1.99.1 Scan saved at 18:32:59, on 21/04/2006 Platform: Windows XP SP1 (WinNT 5.01.2600) MSIE: Internet Explorer v6.00 SP1 (6.00.2800.1106) Running processes: C:\WINDOWS\System32\smss.exe C:\WINDOWS\system32\winlogon.exe C:\WINDOWS\system32\services.exe C:\WINDOWS\system32\lsass.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\System32\svchost.exe C:\WINDOWS\system32\spoolsv.exe C:\Program Files\AntiVir PersonalEdition Classic\sched.exe C:\Program Files\AntiVir PersonalEdition Classic\avguard.exe C:\Program Files\WIDCOMM\Bluetooth Software\bin\btwdins.exe C:\Program Files\ewido anti-malware\ewidoctrl.exe C:\WINDOWS\System32\inetsrv\inetinfo.exe C:\PROGRA~1\NORTON~1\NORTON~2\NPROTECT.EXE C:\WINDOWS\System32\nvsvc32.exe C:\WINDOWS\System32\svchost.exe C:\Program Files\z2 Remote2PC\R2PCServ.exe C:\WINDOWS\Explorer.EXE C:\Program Files\AntiVir PersonalEdition Classic\avgnt.exe C:\Program Files\z2 Remote2PC\R2PCSH.exe C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\fpdisp5a.exe C:\Program Files\Microsoft ActiveSync\WCESCOMM.EXE C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe C:\Program Files\Sensiva Pro\Sensiva.exe C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe C:\Program Files\AudioSphere\Audio.exe C:\WebMaster\Divers\ePrompter\ePrompter.exe E:\Program Files\MemTurbo\memturbo.exe c:\Program Files\HijackThis\HijackThis.exe R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = http://home.microsoft. R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = about: R1 - HKCU\Software\Microsoft\Internet Explorer\Search,SearchAssistant = about:blank R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant = R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens O3 - Toolbar: Norton AntiVirus - {42CDD1BF-3FFB-4238-8AD1-7859DF00B1D6} - C:\Program Files\Norton SystemWorks\Norton Antivirus\NavShExt.dll O3 - Toolbar: SnagIt - {8FF5E183-ABDE-46EB-B09E-D2AAB95CABE3} - C:\Program Files\TechSmith\SnagIt 7\SnagItIEAddin.dll O3 - Toolbar: &Liquid Surf - {B9F633F6-EA44-45F4-91EB-FABFC65A0634} - C:\Program Files\LiquidSurf\sybil.dll O3 - Toolbar: Copernic Agent - {F2E259E8-0FC8-438C-A6E0-342DD80FA53E} - C:\WebMaster\Copernic Agent\CopernicAgentExt.dll O3 - Toolbar: &Radio - {8E718888-423F-11D2-876E-00A0C9082467} - C:\WINDOWS\System32\msdxm.ocx O3 - Toolbar: Adobe PDF - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll O4 - HKLM\..\Run: [ipNetwork] C:\Program Files\Network\ipnetwork.exe O4 - HKLM\..\Run: [avgnt] "C:\Program Files\AntiVir PersonalEdition Classic\avgnt.exe" /min O4 - HKLM\..\Run: [z2 R2PC Server Helper] "C:\Program Files\z2 Remote2PC\R2PCSH.exe" O4 - HKLM\..\Run: [FinePrint Dispatcher v5] C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\fpdisp5a.exe O4 - HKLM\..\Run: [MSConfig] C:\WINDOWS\PCHealth\HelpCtr\Binaries\MSConfig.exe /auto O4 - HKLM\..\RunServices: [WIN USB 2.0] usbsystem.exe O4 - HKLM\..\RunServices: [schedulingAgent] C:\WINDOWS\System32\mstask.exe O4 - HKCU\..\Run: [H/PC Connection Agent] "C:\Program Files\Microsoft ActiveSync\WCESCOMM.EXE" O4 - HKCU\..\Run: [spybotSD TeaTimer] C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe O4 - HKCU\..\Run: [sensiva] "C:\Program Files\Sensiva Pro\Sensiva.exe" O4 - Startup: Audiosphere.lnk = C:\Program Files\AudioSphere\Audio.exe O4 - Startup: Eprompter.lnk = C:\WebMaster\Divers\ePrompter\ePrompter.exe O4 - Startup: MemTurbo.lnk = E:\Program Files\MemTurbo\memturbo.exe O4 - Global Startup: BTTray.lnk = ? O8 - Extra context menu item: &Point&&Go - C:\Program Files\Fichiers communs\Expert System\PGPlatform\PGPlatform.htm O8 - Extra context menu item: Convert link target to Adobe PDF - res://C:\Program Files\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll/AcroIECapture.html O8 - Extra context menu item: Convert link target to existing PDF - res://C:\Program Files\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll/AcroIEAppend.html O8 - Extra context menu item: Convert selected links to Adobe PDF - res://C:\Program Files\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll/AcroIECaptureSelLinks.html O8 - Extra context menu item: Convert selected links to existing PDF - res://C:\Program Files\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll/AcroIEAppendSelLinks.html O8 - Extra context menu item: Convert selection to Adobe PDF - res://C:\Program Files\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll/AcroIECapture.html O8 - Extra context menu item: Convert selection to existing PDF - res://C:\Program Files\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll/AcroIEAppend.html O8 - Extra context menu item: Convert to Adobe PDF - res://C:\Program Files\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll/AcroIECapture.html O8 - Extra context menu item: Convert to existing PDF - res://C:\Program Files\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll/AcroIEAppend.html O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office10\EXCEL.EXE/3000 O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~2\OFFICE11\EXCEL.EXE/3000 O8 - Extra context menu item: Easy-WebPrint Ajouter à la liste d'impressions - res://C:\Program Files\Canon\Easy-WebPrint\Resource.dll/RC_AddToList.html O8 - Extra context menu item: Easy-WebPrint Impression rapide - res://C:\Program Files\Canon\Easy-WebPrint\Resource.dll/RC_HSPrint.html O8 - Extra context menu item: Easy-WebPrint Imprimer - res://C:\Program Files\Canon\Easy-WebPrint\Resource.dll/RC_Print.html O8 - Extra context menu item: Easy-WebPrint Prévisualiser - res://C:\Program Files\Canon\Easy-WebPrint\Resource.dll/RC_Preview.html O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\WINDOWS\System32\msjava.dll O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\WINDOWS\System32\msjava.dll O9 - Extra button: (no name) - {193B17B0-7C9F-4D5B-AEAB-8D3605EFC084} - C:\WEBMAS~1\COPERN~1\COPERN~1.EXE O9 - Extra 'Tools' menuitem: Démarrer Copernic Agent - {193B17B0-7C9F-4D5B-AEAB-8D3605EFC084} - C:\WEBMAS~1\COPERN~1\COPERN~1.EXE O9 - Extra button: Create Mobile Favorite - {2EAF5BB1-070F-11D3-9307-00C04FAE2D4F} - C:\Program Files\Microsoft ActiveSync\inetrepl.dll O9 - Extra button: (no name) - {2EAF5BB2-070F-11D3-9307-00C04FAE2D4F} - C:\Program Files\Microsoft ActiveSync\inetrepl.dll O9 - Extra 'Tools' menuitem: Create Mobile Favorite... - {2EAF5BB2-070F-11D3-9307-00C04FAE2D4F} - C:\Program Files\Microsoft ActiveSync\inetrepl.dll O9 - Extra button: Copernic Agent - {688DC797-DC11-46A7-9F1B-445F4F58CE6E} - C:\WEBMAS~1\COPERN~1\COPERN~1.EXE O9 - Extra button: Recherche - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\OFFICE11\REFIEBAR.DLL O17 - HKLM\System\CCS\Services\Tcpip\..\{38084775-25BF-48A2-9F1D-B66B98AD4BD7}: NameServer = 192.168.1.1 O18 - Protocol: ms-help - {314111C7-A502-11D2-BBCA-00C04F8EC294} - C:\Program Files\Fichiers communs\Microsoft Shared\Help\hxds.dll O23 - Service: AntiVir PersonalEdition Classic Scheduler (AntiVirScheduler) - Avira GmbH - C:\Program Files\AntiVir PersonalEdition Classic\sched.exe O23 - Service: AntiVir PersonalEdition Classic Guard (AntiVirService) - AVIRA GmbH - C:\Program Files\AntiVir PersonalEdition Classic\avguard.exe O23 - Service: Bluetooth Service (btwdins) - Unknown owner - C:\Program Files\WIDCOMM\Bluetooth Software\bin\btwdins.exe O23 - Service: ewido security suite control - ewido networks - C:\Program Files\ewido anti-malware\ewidoctrl.exe O23 - Service: Norton Unerase Protection (NProtectService) - Symantec Corporation - C:\PROGRA~1\NORTON~1\NORTON~2\NPROTECT.EXE O23 - Service: NVIDIA Driver Helper Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\System32\nvsvc32.exe O23 - Service: ScriptBlocking Service (SBService) - Symantec Corporation - C:\PROGRA~1\FICHIE~1\SYMANT~1\SCRIPT~1\SBServ.exe O23 - Service: z2 Remote2PC Server (z2 R2PC Server) - Unknown owner - C:\Program Files\z2 Remote2PC\R2PCServ.exe" -service (file missing) A+

re, Je devais être mal reveillé Voici le log Hijackthis Logfile of HijackThis v1.99.1 Scan saved at 07:13:12, on 20/04/2006 Platform: Windows XP SP1 (WinNT 5.01.2600) MSIE: Internet Explorer v6.00 SP1 (6.00.2800.1106) Running processes: C:\WINDOWS\System32\smss.exe C:\WINDOWS\system32\winlogon.exe C:\WINDOWS\system32\services.exe C:\WINDOWS\system32\lsass.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\System32\svchost.exe C:\WINDOWS\system32\spoolsv.exe C:\Program Files\AntiVir PersonalEdition Classic\sched.exe C:\Program Files\AntiVir PersonalEdition Classic\avguard.exe C:\Program Files\WIDCOMM\Bluetooth Software\bin\btwdins.exe C:\Program Files\ewido anti-malware\ewidoctrl.exe C:\WINDOWS\Explorer.EXE C:\WINDOWS\System32\inetsrv\inetinfo.exe C:\PROGRA~1\NORTON~1\NORTON~2\NPROTECT.EXE C:\WINDOWS\System32\nvsvc32.exe C:\WINDOWS\System32\svchost.exe C:\Program Files\z2 Remote2PC\R2PCServ.exe C:\Program Files\AntiVir PersonalEdition Classic\avgnt.exe C:\Program Files\z2 Remote2PC\R2PCSH.exe C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\fpdisp5a.exe C:\Program Files\Microsoft ActiveSync\WCESCOMM.EXE C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe C:\Program Files\AudioSphere\Audio.exe C:\WebMaster\Divers\ePrompter\ePrompter.exe E:\Program Files\MemTurbo\memturbo.exe E:\Program Files\Total Commander 6.54\TOTALCMD.EXE E:\Program Files\Total Commander 6.54\TOTALCMD.EXE c:\WebMaster\Opera 9\Opera.exe c:\Program Files\HijackThis\HijackThis.exe R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = http://home.microsoft. R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = about: R1 - HKCU\Software\Microsoft\Internet Explorer\Search,SearchAssistant = about:blank R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant = R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens O3 - Toolbar: Norton AntiVirus - {42CDD1BF-3FFB-4238-8AD1-7859DF00B1D6} - C:\Program Files\Norton SystemWorks\Norton Antivirus\NavShExt.dll O3 - Toolbar: SnagIt - {8FF5E183-ABDE-46EB-B09E-D2AAB95CABE3} - C:\Program Files\TechSmith\SnagIt 7\SnagItIEAddin.dll O3 - Toolbar: &Liquid Surf - {B9F633F6-EA44-45F4-91EB-FABFC65A0634} - C:\Program Files\LiquidSurf\sybil.dll O3 - Toolbar: Copernic Agent - {F2E259E8-0FC8-438C-A6E0-342DD80FA53E} - C:\WebMaster\Copernic Agent\CopernicAgentExt.dll O3 - Toolbar: &Radio - {8E718888-423F-11D2-876E-00A0C9082467} - C:\WINDOWS\System32\msdxm.ocx O3 - Toolbar: Adobe PDF - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll O4 - HKLM\..\Run: [ipNetwork] C:\Program Files\Network\ipnetwork.exe O4 - HKLM\..\Run: [avgnt] "C:\Program Files\AntiVir PersonalEdition Classic\avgnt.exe" /min O4 - HKLM\..\Run: [z2 R2PC Server Helper] "C:\Program Files\z2 Remote2PC\R2PCSH.exe" O4 - HKLM\..\Run: [FinePrint Dispatcher v5] C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\fpdisp5a.exe O4 - HKLM\..\Run: [MSConfig] C:\WINDOWS\PCHealth\HelpCtr\Binaries\MSConfig.exe /auto O4 - HKLM\..\RunServices: [WIN USB 2.0] usbsystem.exe O4 - HKLM\..\RunServices: [schedulingAgent] C:\WINDOWS\System32\mstask.exe O4 - HKCU\..\Run: [H/PC Connection Agent] "C:\Program Files\Microsoft ActiveSync\WCESCOMM.EXE" O4 - HKCU\..\Run: [spybotSD TeaTimer] C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe O4 - Startup: Audiosphere.lnk = C:\Program Files\AudioSphere\Audio.exe O4 - Startup: Eprompter.lnk = C:\WebMaster\Divers\ePrompter\ePrompter.exe O4 - Startup: MemTurbo.lnk = E:\Program Files\MemTurbo\memturbo.exe O4 - Global Startup: BTTray.lnk = ? O8 - Extra context menu item: &Point&&Go - C:\Program Files\Fichiers communs\Expert System\PGPlatform\PGPlatform.htm O8 - Extra context menu item: Chercher avec Copernic Agent - C:\WebMaster\Copernic Agent\Web\SearchExt.htm O8 - Extra context menu item: Convert link target to Adobe PDF - res://C:\Program Files\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll/AcroIECapture.html O8 - Extra context menu item: Convert link target to existing PDF - res://C:\Program Files\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll/AcroIEAppend.html O8 - Extra context menu item: Convert selected links to Adobe PDF - res://C:\Program Files\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll/AcroIECaptureSelLinks.html O8 - Extra context menu item: Convert selected links to existing PDF - res://C:\Program Files\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll/AcroIEAppendSelLinks.html O8 - Extra context menu item: Convert selection to Adobe PDF - res://C:\Program Files\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll/AcroIECapture.html O8 - Extra context menu item: Convert selection to existing PDF - res://C:\Program Files\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll/AcroIEAppend.html O8 - Extra context menu item: Convert to Adobe PDF - res://C:\Program Files\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll/AcroIECapture.html O8 - Extra context menu item: Convert to existing PDF - res://C:\Program Files\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll/AcroIEAppend.html O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office10\EXCEL.EXE/3000 O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~2\OFFICE11\EXCEL.EXE/3000 O8 - Extra context menu item: Easy-WebPrint Ajouter à la liste d'impressions - res://C:\Program Files\Canon\Easy-WebPrint\Resource.dll/RC_AddToList.html O8 - Extra context menu item: Easy-WebPrint Impression rapide - res://C:\Program Files\Canon\Easy-WebPrint\Resource.dll/RC_HSPrint.html O8 - Extra context menu item: Easy-WebPrint Imprimer - res://C:\Program Files\Canon\Easy-WebPrint\Resource.dll/RC_Print.html O8 - Extra context menu item: Easy-WebPrint Prévisualiser - res://C:\Program Files\Canon\Easy-WebPrint\Resource.dll/RC_Preview.html O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\WINDOWS\System32\msjava.dll O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\WINDOWS\System32\msjava.dll O9 - Extra button: SideFind - {10E42047-DEB9-4535-A118-B3F6EC39B807} - C:\Program Files\SideFind\sidefind.dll (file missing) O9 - Extra button: (no name) - {193B17B0-7C9F-4D5B-AEAB-8D3605EFC084} - C:\WEBMAS~1\COPERN~1\COPERN~1.EXE O9 - Extra 'Tools' menuitem: Démarrer Copernic Agent - {193B17B0-7C9F-4D5B-AEAB-8D3605EFC084} - C:\WEBMAS~1\COPERN~1\COPERN~1.EXE O9 - Extra button: Create Mobile Favorite - {2EAF5BB1-070F-11D3-9307-00C04FAE2D4F} - C:\Program Files\Microsoft ActiveSync\inetrepl.dll O9 - Extra button: (no name) - {2EAF5BB2-070F-11D3-9307-00C04FAE2D4F} - C:\Program Files\Microsoft ActiveSync\inetrepl.dll O9 - Extra 'Tools' menuitem: Create Mobile Favorite... - {2EAF5BB2-070F-11D3-9307-00C04FAE2D4F} - C:\Program Files\Microsoft ActiveSync\inetrepl.dll O9 - Extra button: Copernic Agent - {688DC797-DC11-46A7-9F1B-445F4F58CE6E} - C:\WEBMAS~1\COPERN~1\COPERN~1.EXE O9 - Extra button: Recherche - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\OFFICE11\REFIEBAR.DLL O17 - HKLM\System\CCS\Services\Tcpip\..\{38084775-25BF-48A2-9F1D-B66B98AD4BD7}: NameServer = 192.168.1.1 O18 - Protocol: ms-help - {314111C7-A502-11D2-BBCA-00C04F8EC294} - C:\Program Files\Fichiers communs\Microsoft Shared\Help\hxds.dll O18 - Filter: text/html - {4F7681E5-6CAF-478D-9CB8-4CA593BEE7FB} - (no file) O23 - Service: Adobe LM Service - Adobe Systems - C:\Program Files\Fichiers communs\Adobe Systems Shared\Service\Adobelmsvc.exe O23 - Service: AntiVir PersonalEdition Classic Scheduler (AntiVirScheduler) - Avira GmbH - C:\Program Files\AntiVir PersonalEdition Classic\sched.exe O23 - Service: AntiVir PersonalEdition Classic Guard (AntiVirService) - AVIRA GmbH - C:\Program Files\AntiVir PersonalEdition Classic\avguard.exe O23 - Service: Bluetooth Service (btwdins) - Unknown owner - C:\Program Files\WIDCOMM\Bluetooth Software\bin\btwdins.exe O23 - Service: ewido security suite control - ewido networks - C:\Program Files\ewido anti-malware\ewidoctrl.exe O23 - Service: Norton Unerase Protection (NProtectService) - Symantec Corporation - C:\PROGRA~1\NORTON~1\NORTON~2\NPROTECT.EXE O23 - Service: NVIDIA Driver Helper Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\System32\nvsvc32.exe O23 - Service: ScriptBlocking Service (SBService) - Symantec Corporation - C:\PROGRA~1\FICHIE~1\SYMANT~1\SCRIPT~1\SBServ.exe O23 - Service: z2 Remote2PC Server (z2 R2PC Server) - Unknown owner - C:\Program Files\z2 Remote2PC\R2PCServ.exe" -service (file missing) Merci

Voila. En fait voici les rapports d'ewido et d'hijackthis Pour jotti je n'ai plus de fichier ipnetwork dana Program Files donc pas de rapport. Merci Ewido : --------------------------------------------------------- ewido anti-malware - Rapport de scan --------------------------------------------------------- + Créé le: 06:54:50, 20/04/2006 + Somme de contrôle: 949E62A5 + Résultats du scan: HKLM\SOFTWARE\Avenue Media -> Adware.InternetOptimizer : Nettoyer et sauvegarder HKLM\SOFTWARE\Avenue Media\Internet Optimizer -> Adware.InternetOptimizer : Nettoyer et sauvegarder HKLM\SOFTWARE\Avenue Media\Internet Optimizer\Browser Helper -> Adware.InternetOptimizer : Nettoyer et sauvegarder HKLM\SOFTWARE\Avenue Media\Internet Optimizer\Browser Helper\cf1 -> Adware.InternetOptimizer : Nettoyer et sauvegarder HKLM\SOFTWARE\Classes\BrowserHelperObject.BAHelper -> Adware.SideFind : Nettoyer et sauvegarder HKLM\SOFTWARE\Classes\BrowserHelperObject.BAHelper\CLSID -> Adware.SideFind : Nettoyer et sauvegarder HKLM\SOFTWARE\Classes\BrowserHelperObject.BAHelper\CurVer -> Adware.SideFind : Nettoyer et sauvegarder HKLM\SOFTWARE\Classes\BrowserHelperObject.BAHelper.1 -> Adware.SideFind : Nettoyer et sauvegarder HKLM\SOFTWARE\Classes\ClientAX.ClientInstaller -> Adware.180Solutions : Nettoyer et sauvegarder HKLM\SOFTWARE\Classes\ClientAX.ClientInstaller\CLSID -> Adware.180Solutions : Nettoyer et sauvegarder HKLM\SOFTWARE\Classes\ClientAX.ClientInstaller\CurVer -> Adware.180Solutions : Nettoyer et sauvegarder HKLM\SOFTWARE\Classes\ClientAX.ClientInstaller.1 -> Adware.180Solutions : Nettoyer et sauvegarder HKLM\SOFTWARE\Classes\ClientAX.RequiredComponent -> Adware.Zango : Nettoyer et sauvegarder HKLM\SOFTWARE\Classes\ClientAX.RequiredComponent\CLSID -> Adware.Zango : Nettoyer et sauvegarder HKLM\SOFTWARE\Classes\ClientAX.RequiredComponent\CurVer -> Adware.Zango : Nettoyer et sauvegarder HKLM\SOFTWARE\Classes\ClientAX.RequiredComponent.1 -> Adware.Zango : Nettoyer et sauvegarder HKLM\SOFTWARE\Classes\CLSID\{6001CDF7-6F45-471b-A203-0225615E35A7} -> Adware.Generic : Nettoyer et sauvegarder HKLM\SOFTWARE\Classes\CLSID\{85E517D1-1B6B-4662-AF6E-4B9738091DCC} -> Adware.FastSearch : Nettoyer et sauvegarder HKLM\SOFTWARE\Classes\DyFuCA_BH.BHObj -> Adware.MoneyTree : Nettoyer et sauvegarder HKLM\SOFTWARE\Classes\DyFuCA_BH.BHObj\CLSID -> Adware.MoneyTree : Nettoyer et sauvegarder HKLM\SOFTWARE\Classes\DyFuCA_BH.BHObj\CurVer -> Adware.MoneyTree : Nettoyer et sauvegarder HKLM\SOFTWARE\Classes\DyFuCA_BH.BHObj.1 -> Adware.MoneyTree : Nettoyer et sauvegarder HKLM\SOFTWARE\Classes\DyFuCA_BH.SinkObj -> Adware.MoneyTree : Nettoyer et sauvegarder HKLM\SOFTWARE\Classes\DyFuCA_BH.SinkObj\CLSID -> Adware.MoneyTree : Nettoyer et sauvegarder HKLM\SOFTWARE\Classes\DyFuCA_BH.SinkObj\CurVer -> Adware.MoneyTree : Nettoyer et sauvegarder HKLM\SOFTWARE\Classes\DyFuCA_BH.SinkObj.1 -> Adware.MoneyTree : Nettoyer et sauvegarder HKLM\SOFTWARE\Classes\ISTactivex.Installer -> Adware.ISTBar : Nettoyer et sauvegarder HKLM\SOFTWARE\Classes\ISTactivex.Installer\CLSID -> Adware.ISTBar : Nettoyer et sauvegarder HKLM\SOFTWARE\Classes\ISTactivex.Installer\CurVer -> Adware.ISTBar : Nettoyer et sauvegarder HKLM\SOFTWARE\Classes\ISTactivex.Installer.2 -> Adware.ISTBar : Nettoyer et sauvegarder HKLM\SOFTWARE\Classes\ISTactivex.Installer.2\CLSID -> Adware.ISTBar : Nettoyer et sauvegarder HKLM\SOFTWARE\Classes\SideFind.Finder -> Adware.SideFind : Nettoyer et sauvegarder HKLM\SOFTWARE\Classes\SideFind.Finder\CLSID -> Adware.SideFind : Nettoyer et sauvegarder HKLM\SOFTWARE\Classes\SideFind.Finder\CurVer -> Adware.SideFind : Nettoyer et sauvegarder HKLM\SOFTWARE\Classes\SideFind.Finder.1 -> Adware.SideFind : Nettoyer et sauvegarder HKLM\SOFTWARE\Classes\VacPro.internazionale_ver4 -> Dialer.Generic : Nettoyer et sauvegarder HKLM\SOFTWARE\Classes\VacPro.internazionale_ver4\Clsid -> Dialer.Generic : Nettoyer et sauvegarder HKLM\SOFTWARE\Classes\WhIeHelperObj.WhIeHelperObj -> Adware.WebHancer : Nettoyer et sauvegarder HKLM\SOFTWARE\Classes\WhIeHelperObj.WhIeHelperObj\CurVer -> Adware.WebHancer : Nettoyer et sauvegarder HKLM\SOFTWARE\Classes\WhIeHelperObj.WhIeHelperObj.1 -> Adware.WebHancer : Nettoyer et sauvegarder HKLM\SOFTWARE\IST -> Adware.ISTBar : Nettoyer et sauvegarder HKLM\SOFTWARE\Microsoft\SideFind -> Adware.SideFind : Nettoyer et sauvegarder HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App Management\ARPCache\ISTbarISTbar -> Adware.HotBar : Nettoyer et sauvegarder HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\ModuleUsage\C:/WINDOWS/Downloaded Program Files/ISTactivex.dll -> Adware.ISTBar : Nettoyer et sauvegarder HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\70tovmto -> Adware.SAHA : Nettoyer et sauvegarder HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\DyFuCA -> Adware.MoneyTree : Nettoyer et sauvegarder HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\Internet Optimizer -> Adware.InternetOptimizer : Nettoyer et sauvegarder HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\Kapabout -> Adware.InternetOptimizer : Nettoyer et sauvegarder HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\media-motor -> Adware.MediaMotor : Nettoyer et sauvegarder HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\SideFind -> Adware.SideFind : Nettoyer et sauvegarder HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\webHancer Agent -> Adware.WebHancer : Nettoyer et sauvegarder HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\zango -> Adware.Zango : Nettoyer et sauvegarder HKLM\SOFTWARE\Policies\Avenue Media -> Adware.InternetOptimizer : Nettoyer et sauvegarder HKLM\SOFTWARE\PowerScan -> Adware.PowerScan : Nettoyer et sauvegarder HKLM\SOFTWARE\SideFind -> Adware.SideFind : Nettoyer et sauvegarder HKLM\SOFTWARE\SideFind\History -> Adware.SideFind : Nettoyer et sauvegarder HKLM\SOFTWARE\TMKSoft -> Adware.CoolWebSearch : Nettoyer et sauvegarder HKLM\SOFTWARE\webhancer -> Adware.WebHancer : Nettoyer et sauvegarder HKLM\SOFTWARE\webhancer\CC -> Adware.WebHancer : Nettoyer et sauvegarder HKLM\SOFTWARE\webhancer\ESO -> Adware.WebHancer : Nettoyer et sauvegarder HKLM\SOFTWARE\zango -> Adware.Zango : Nettoyer et sauvegarder HKU\.DEFAULT\Software\Avenue Media -> Adware.InternetOptimizer : Nettoyer et sauvegarder HKU\.DEFAULT\Software\DNS -> Adware.Shorty : Nettoyer et sauvegarder HKU\.DEFAULT\Software\Policies\Avenue Media -> Adware.InternetOptimizer : Nettoyer et sauvegarder HKU\S-1-5-21-1078081533-152049171-1343024091-1003\Software\Avenue Media -> Adware.InternetOptimizer : Nettoyer et sauvegarder HKU\S-1-5-21-1078081533-152049171-1343024091-1003\Software\IST -> Adware.ISTBar : Nettoyer et sauvegarder HKU\S-1-5-21-1078081533-152049171-1343024091-1003\Software\Policies\Avenue Media -> Adware.InternetOptimizer : Nettoyer et sauvegarder HKU\S-1-5-21-1078081533-152049171-1343024091-1003\Software\zango -> Adware.Zango : Nettoyer et sauvegarder HKU\S-1-5-21-1078081533-152049171-1343024091-1003\Software\_rtneg -> Adware.Begin2Search : Nettoyer et sauvegarder HKU\S-1-5-18\Software\Avenue Media -> Adware.InternetOptimizer : Nettoyer et sauvegarder HKU\S-1-5-18\Software\DNS -> Adware.Shorty : Nettoyer et sauvegarder HKU\S-1-5-18\Software\Policies\Avenue Media -> Adware.InternetOptimizer : Nettoyer et sauvegarder [656] C:\Program Files\webHancer\Programs\webhdll.dll -> Adware.WebHancer : Nettoyer et sauvegarder C:\ac2_0010.exe -> Downloader.Small.cpu : Nettoyer et sauvegarder C:\Documents and Settings\LocalService\Cookies\system@ad.yieldmanager[2].txt -> TrackingCookie.Yieldmanager : Nettoyer et sauvegarder C:\Documents and Settings\LocalService\Cookies\system@adtech[2].txt -> TrackingCookie.Adtech : Nettoyer et sauvegarder C:\Documents and Settings\LocalService\Cookies\system@banner.clubdicecasino[2].txt -> TrackingCookie.Clubdicecasino : Nettoyer et sauvegarder C:\Documents and Settings\LocalService\Cookies\system@banners.searchingbooth[1].txt -> TrackingCookie.Searchingbooth : Nettoyer et sauvegarder C:\Documents and Settings\LocalService\Cookies\system@bluestreak[1].txt -> TrackingCookie.Bluestreak : Nettoyer et sauvegarder C:\Documents and Settings\LocalService\Cookies\system@clubdicecasino[1].txt -> TrackingCookie.Clubdicecasino : Nettoyer et sauvegarder C:\Documents and Settings\LocalService\Cookies\system@cpvfeed[1].txt -> TrackingCookie.Cpvfeed : Nettoyer et sauvegarder C:\Documents and Settings\LocalService\Cookies\system@fastclick[1].txt -> TrackingCookie.Fastclick : Nettoyer et sauvegarder C:\Documents and Settings\LocalService\Cookies\system@install.bestoffersnetworks[2].txt -> TrackingCookie.Bestoffersnetworks : Nettoyer et sauvegarder C:\Documents and Settings\LocalService\Cookies\system@media.top-banners[1].txt -> TrackingCookie.Top-banners : Nettoyer et sauvegarder C:\Documents and Settings\LocalService\Cookies\system@opodo.122.2o7[1].txt -> TrackingCookie.2o7 : Nettoyer et sauvegarder C:\Documents and Settings\LocalService\Cookies\system@revenue[2].txt -> TrackingCookie.Revenue : Nettoyer et sauvegarder C:\Documents and Settings\LocalService\Cookies\system@statcounter[2].txt -> TrackingCookie.Statcounter : Nettoyer et sauvegarder C:\Documents and Settings\LocalService\Cookies\system@stats.adbrite[1].txt -> TrackingCookie.Adbrite : Nettoyer et sauvegarder C:\Documents and Settings\LocalService\Cookies\system@stats1.reliablestats[1].txt -> TrackingCookie.Reliablestats : Nettoyer et sauvegarder C:\Documents and Settings\LocalService\Cookies\system@tradedoubler[2].txt -> TrackingCookie.Tradedoubler : Nettoyer et sauvegarder C:\Documents and Settings\LocalService\Cookies\system@trafficmp[1].txt -> TrackingCookie.Trafficmp : Nettoyer et sauvegarder C:\Documents and Settings\LocalService\Cookies\system@www.smartadserver[1].txt -> TrackingCookie.Smartadserver : Nettoyer et sauvegarder C:\Documents and Settings\LocalService\Cookies\system@zedo[1].txt -> TrackingCookie.Zedo : Nettoyer et sauvegarder C:\Documents and Settings\LocalService\Local Settings\Temporary Internet Files\Content.IE5\D36C2DPC\113[1].avi -> Adware.Maxifiles : Nettoyer et sauvegarder C:\Documents and Settings\LocalService\Local Settings\Temporary Internet Files\Content.IE5\D36C2DPC\ac2[1].txt -> Downloader.Agent.ahv : Nettoyer et sauvegarder C:\Documents and Settings\LocalService\Local Settings\Temporary Internet Files\Content.IE5\D36C2DPC\das[1].exe -> Backdoor.SdBot.xd : Nettoyer et sauvegarder C:\Documents and Settings\LocalService\Local Settings\Temporary Internet Files\Content.IE5\D36C2DPC\drsmartload45a[1].exe -> Downloader.Adload.an : Nettoyer et sauvegarder C:\Documents and Settings\LocalService\Local Settings\Temporary Internet Files\Content.IE5\D36C2DPC\Installer[1].exe -> Adware.Look2Me : Nettoyer et sauvegarder C:\Documents and Settings\LocalService\Local Settings\Temporary Internet Files\Content.IE5\D36C2DPC\keyboard11[1].exe -> Backdoor.VB.ary : Nettoyer et sauvegarder C:\Documents and Settings\LocalService\Local Settings\Temporary Internet Files\Content.IE5\D36C2DPC\newname12[1].exe -> Downloader.VB.aaf : Nettoyer et sauvegarder C:\Documents and Settings\LocalService\Local Settings\Temporary Internet Files\Content.IE5\M30E9X6L\mousepad12[1].exe -> Hijacker.VB.mo : Nettoyer et sauvegarder C:\Documents and Settings\LocalService\Local Settings\Temporary Internet Files\Content.IE5\M30E9X6L\newname11[1].exe -> Downloader.Adload.ae : Nettoyer et sauvegarder C:\Documents and Settings\LocalService\Local Settings\Temporary Internet Files\Content.IE5\PD2ICNC1\ac2_0010[1].exe -> Downloader.Small.cpu : Nettoyer et sauvegarder C:\Documents and Settings\LocalService\Local Settings\Temporary Internet Files\Content.IE5\PD2ICNC1\ErrorSafeScannerInstall_fr[1].exe -> Not-A-Virus.Downloader.Win32.WinFixer.d : Nettoyer et sauvegarder C:\Documents and Settings\LocalService\Local Settings\Temporary Internet Files\Content.IE5\PD2ICNC1\gimmysmileys[1].exe -> Adware.180Solutions : Nettoyer et sauvegarder C:\Documents and Settings\LocalService\Local Settings\Temporary Internet Files\Content.IE5\PD2ICNC1\keyboard12[1].exe -> Downloader.VB.abd : Nettoyer et sauvegarder :mozilla.12:C:\Documents and Settings\Yves Cathala\Application Data\Mozilla\Firefox\Profiles\default.kvs\cookies-1.txt -> TrackingCookie.Overture : Nettoyer et sauvegarder :mozilla.13:C:\Documents and Settings\Yves Cathala\Application Data\Mozilla\Firefox\Profiles\default.kvs\cookies-1.txt -> TrackingCookie.Smartadserver : Nettoyer et sauvegarder :mozilla.14:C:\Documents and Settings\Yves Cathala\Application Data\Mozilla\Firefox\Profiles\default.kvs\cookies-1.txt -> TrackingCookie.Smartadserver : Nettoyer et sauvegarder :mozilla.15:C:\Documents and Settings\Yves Cathala\Application Data\Mozilla\Firefox\Profiles\default.kvs\cookies-1.txt -> TrackingCookie.Smartadserver : Nettoyer et sauvegarder :mozilla.41:C:\Documents and Settings\Yves Cathala\Application Data\Mozilla\Firefox\Profiles\default.kvs\cookies-1.txt -> TrackingCookie.Yieldmanager : Nettoyer et sauvegarder :mozilla.42:C:\Documents and Settings\Yves Cathala\Application Data\Mozilla\Firefox\Profiles\default.kvs\cookies-1.txt -> TrackingCookie.Yieldmanager : Nettoyer et sauvegarder :mozilla.43:C:\Documents and Settings\Yves Cathala\Application Data\Mozilla\Firefox\Profiles\default.kvs\cookies-1.txt -> TrackingCookie.Yieldmanager : Nettoyer et sauvegarder :mozilla.45:C:\Documents and Settings\Yves Cathala\Application Data\Mozilla\Firefox\Profiles\default.kvs\cookies-1.txt -> TrackingCookie.Yieldmanager : Nettoyer et sauvegarder :mozilla.46:C:\Documents and Settings\Yves Cathala\Application Data\Mozilla\Firefox\Profiles\default.kvs\cookies-1.txt -> TrackingCookie.Yieldmanager : Nettoyer et sauvegarder :mozilla.47:C:\Documents and Settings\Yves Cathala\Application Data\Mozilla\Firefox\Profiles\default.kvs\cookies-1.txt -> TrackingCookie.Yieldmanager : Nettoyer et sauvegarder :mozilla.50:C:\Documents and Settings\Yves Cathala\Application Data\Mozilla\Firefox\Profiles\default.kvs\cookies-1.txt -> TrackingCookie.Estat : Nettoyer et sauvegarder :mozilla.54:C:\Documents and Settings\Yves Cathala\Application Data\Mozilla\Firefox\Profiles\default.kvs\cookies-1.txt -> TrackingCookie.Yieldmanager : Nettoyer et sauvegarder :mozilla.116:C:\Documents and Settings\Yves Cathala\Application Data\Mozilla\Firefox\Profiles\default.kvs\cookies-1.txt -> TrackingCookie.Hitbox : Nettoyer et sauvegarder :mozilla.117:C:\Documents and Settings\Yves Cathala\Application Data\Mozilla\Firefox\Profiles\default.kvs\cookies-1.txt -> TrackingCookie.Hitbox : Nettoyer et sauvegarder :mozilla.118:C:\Documents and Settings\Yves Cathala\Application Data\Mozilla\Firefox\Profiles\default.kvs\cookies-1.txt -> TrackingCookie.Hitbox : Nettoyer et sauvegarder :mozilla.129:C:\Documents and Settings\Yves Cathala\Application Data\Mozilla\Firefox\Profiles\default.kvs\cookies-1.txt -> TrackingCookie.Bluestreak : Nettoyer et sauvegarder :mozilla.130:C:\Documents and Settings\Yves Cathala\Application Data\Mozilla\Firefox\Profiles\default.kvs\cookies-1.txt -> TrackingCookie.Tradedoubler : Nettoyer et sauvegarder :mozilla.131:C:\Documents and Settings\Yves Cathala\Application Data\Mozilla\Firefox\Profiles\default.kvs\cookies-1.txt -> TrackingCookie.Tradedoubler : Nettoyer et sauvegarder :mozilla.132:C:\Documents and Settings\Yves Cathala\Application Data\Mozilla\Firefox\Profiles\default.kvs\cookies-1.txt -> TrackingCookie.Tradedoubler : Nettoyer et sauvegarder :mozilla.133:C:\Documents and Settings\Yves Cathala\Application Data\Mozilla\Firefox\Profiles\default.kvs\cookies-1.txt -> TrackingCookie.Tradedoubler : Nettoyer et sauvegarder :mozilla.139:C:\Documents and Settings\Yves Cathala\Application Data\Mozilla\Firefox\Profiles\default.kvs\cookies-1.txt -> TrackingCookie.Weborama : Nettoyer et sauvegarder :mozilla.140:C:\Documents and Settings\Yves Cathala\Application Data\Mozilla\Firefox\Profiles\default.kvs\cookies-1.txt -> TrackingCookie.Weborama : Nettoyer et sauvegarder :mozilla.145:C:\Documents and Settings\Yves Cathala\Application Data\Mozilla\Firefox\Profiles\default.kvs\cookies-1.txt -> TrackingCookie.Doubleclick : Nettoyer et sauvegarder :mozilla.164:C:\Documents and Settings\Yves Cathala\Application Data\Mozilla\Firefox\Profiles\default.kvs\cookies-1.txt -> TrackingCookie.Atdmt : Nettoyer et sauvegarder :mozilla.169:C:\Documents and Settings\Yves Cathala\Application Data\Mozilla\Firefox\Profiles\default.kvs\cookies-1.txt -> TrackingCookie.Zedo : Nettoyer et sauvegarder :mozilla.181:C:\Documents and Settings\Yves Cathala\Application Data\Mozilla\Firefox\Profiles\default.kvs\cookies-1.txt -> TrackingCookie.Mediaplex : Nettoyer et sauvegarder :mozilla.186:C:\Documents and Settings\Yves Cathala\Application Data\Mozilla\Firefox\Profiles\default.kvs\cookies-1.txt -> TrackingCookie.Serving-sys : Nettoyer et sauvegarder :mozilla.188:C:\Documents and Settings\Yves Cathala\Application Data\Mozilla\Firefox\Profiles\default.kvs\cookies-1.txt -> TrackingCookie.Serving-sys : Nettoyer et sauvegarder :mozilla.189:C:\Documents and Settings\Yves Cathala\Application Data\Mozilla\Firefox\Profiles\default.kvs\cookies-1.txt -> TrackingCookie.Serving-sys : Nettoyer et sauvegarder :mozilla.190:C:\Documents and Settings\Yves Cathala\Application Data\Mozilla\Firefox\Profiles\default.kvs\cookies-1.txt -> TrackingCookie.Serving-sys : Nettoyer et sauvegarder :mozilla.191:C:\Documents and Settings\Yves Cathala\Application Data\Mozilla\Firefox\Profiles\default.kvs\cookies-1.txt -> TrackingCookie.Serving-sys : Nettoyer et sauvegarder :mozilla.208:C:\Documents and Settings\Yves Cathala\Application Data\Mozilla\Firefox\Profiles\default.kvs\cookies-1.txt -> TrackingCookie.2o7 : Nettoyer et sauvegarder :mozilla.209:C:\Documents and Settings\Yves Cathala\Application Data\Mozilla\Firefox\Profiles\default.kvs\cookies-1.txt -> TrackingCookie.2o7 : Nettoyer et sauvegarder :mozilla.210:C:\Documents and Settings\Yves Cathala\Application Data\Mozilla\Firefox\Profiles\default.kvs\cookies-1.txt -> TrackingCookie.2o7 : Nettoyer et sauvegarder :mozilla.211:C:\Documents and Settings\Yves Cathala\Application Data\Mozilla\Firefox\Profiles\default.kvs\cookies-1.txt -> TrackingCookie.2o7 : Nettoyer et sauvegarder :mozilla.212:C:\Documents and Settings\Yves Cathala\Application Data\Mozilla\Firefox\Profiles\default.kvs\cookies-1.txt -> TrackingCookie.2o7 : Nettoyer et sauvegarder :mozilla.213:C:\Documents and Settings\Yves Cathala\Application Data\Mozilla\Firefox\Profiles\default.kvs\cookies-1.txt -> TrackingCookie.2o7 : Nettoyer et sauvegarder :mozilla.214:C:\Documents and Settings\Yves Cathala\Application Data\Mozilla\Firefox\Profiles\default.kvs\cookies-1.txt -> TrackingCookie.2o7 : Nettoyer et sauvegarder :mozilla.215:C:\Documents and Settings\Yves Cathala\Application Data\Mozilla\Firefox\Profiles\default.kvs\cookies-1.txt -> TrackingCookie.2o7 : Nettoyer et sauvegarder :mozilla.216:C:\Documents and Settings\Yves Cathala\Application Data\Mozilla\Firefox\Profiles\default.kvs\cookies-1.txt -> TrackingCookie.2o7 : Nettoyer et sauvegarder :mozilla.226:C:\Documents and Settings\Yves Cathala\Application Data\Mozilla\Firefox\Profiles\default.kvs\cookies-1.txt -> TrackingCookie.Adtech : Nettoyer et sauvegarder :mozilla.227:C:\Documents and Settings\Yves Cathala\Application Data\Mozilla\Firefox\Profiles\default.kvs\cookies-1.txt -> TrackingCookie.Adtech : Nettoyer et sauvegarder :mozilla.228:C:\Documents and Settings\Yves Cathala\Application Data\Mozilla\Firefox\Profiles\default.kvs\cookies-1.txt -> TrackingCookie.Adocean : Nettoyer et sauvegarder :mozilla.230:C:\Documents and Settings\Yves Cathala\Application Data\Mozilla\Firefox\Profiles\default.kvs\cookies-1.txt -> TrackingCookie.Adocean : Nettoyer et sauvegarder :mozilla.256:C:\Documents and Settings\Yves Cathala\Application Data\Mozilla\Firefox\Profiles\default.kvs\cookies-1.txt -> TrackingCookie.247realmedia : Nettoyer et sauvegarder :mozilla.261:C:\Documents and Settings\Yves Cathala\Application Data\Mozilla\Firefox\Profiles\default.kvs\cookies-1.txt -> TrackingCookie.Valueclick : Nettoyer et sauvegarder :mozilla.262:C:\Documents and Settings\Yves Cathala\Application Data\Mozilla\Firefox\Profiles\default.kvs\cookies-1.txt -> TrackingCookie.Valueclick : Nettoyer et sauvegarder :mozilla.283:C:\Documents and Settings\Yves Cathala\Application Data\Mozilla\Firefox\Profiles\default.kvs\cookies-1.txt -> TrackingCookie.Falkag : Nettoyer et sauvegarder :mozilla.284:C:\Documents and Settings\Yves Cathala\Application Data\Mozilla\Firefox\Profiles\default.kvs\cookies-1.txt -> TrackingCookie.Tribalfusion : Nettoyer et sauvegarder :mozilla.289:C:\Documents and Settings\Yves Cathala\Application Data\Mozilla\Firefox\Profiles\default.kvs\cookies-1.txt -> TrackingCookie.Yadro : Nettoyer et sauvegarder :mozilla.301:C:\Documents and Settings\Yves Cathala\Application Data\Mozilla\Firefox\Profiles\default.kvs\cookies-1.txt -> TrackingCookie.Com : Nettoyer et sauvegarder :mozilla.302:C:\Documents and Settings\Yves Cathala\Application Data\Mozilla\Firefox\Profiles\default.kvs\cookies-1.txt -> TrackingCookie.Com : Nettoyer et sauvegarder :mozilla.309:C:\Documents and Settings\Yves Cathala\Application Data\Mozilla\Firefox\Profiles\default.kvs\cookies-1.txt -> TrackingCookie.Targetnet : Nettoyer et sauvegarder :mozilla.310:C:\Documents and Settings\Yves Cathala\Application Data\Mozilla\Firefox\Profiles\default.kvs\cookies-1.txt -> TrackingCookie.Targetnet : Nettoyer et sauvegarder :mozilla.315:C:\Documents and Settings\Yves Cathala\Application Data\Mozilla\Firefox\Profiles\default.kvs\cookies-1.txt -> TrackingCookie.Fastclick : Nettoyer et sauvegarder :mozilla.316:C:\Documents and Settings\Yves Cathala\Application Data\Mozilla\Firefox\Profiles\default.kvs\cookies-1.txt -> TrackingCookie.Advertising : Nettoyer et sauvegarder :mozilla.317:C:\Documents and Settings\Yves Cathala\Application Data\Mozilla\Firefox\Profiles\default.kvs\cookies-1.txt -> TrackingCookie.Advertising : Nettoyer et sauvegarder :mozilla.318:C:\Documents and Settings\Yves Cathala\Application Data\Mozilla\Firefox\Profiles\default.kvs\cookies-1.txt -> TrackingCookie.Advertising : Nettoyer et sauvegarder :mozilla.319:C:\Documents and Settings\Yves Cathala\Application Data\Mozilla\Firefox\Profiles\default.kvs\cookies-1.txt -> TrackingCookie.Advertising : Nettoyer et sauvegarder :mozilla.322:C:\Documents and Settings\Yves Cathala\Application Data\Mozilla\Firefox\Profiles\default.kvs\cookies-1.txt -> TrackingCookie.Clickhype : Nettoyer et sauvegarder :mozilla.323:C:\Documents and Settings\Yves Cathala\Application Data\Mozilla\Firefox\Profiles\default.kvs\cookies-1.txt -> TrackingCookie.Casalemedia : Nettoyer et sauvegarder :mozilla.346:C:\Documents and Settings\Yves Cathala\Application Data\Mozilla\Firefox\Profiles\default.kvs\cookies-1.txt -> TrackingCookie.Statcounter : Nettoyer et sauvegarder :mozilla.347:C:\Documents and Settings\Yves Cathala\Application Data\Mozilla\Firefox\Profiles\default.kvs\cookies-1.txt -> TrackingCookie.Statcounter : Nettoyer et sauvegarder :mozilla.364:C:\Documents and Settings\Yves Cathala\Application Data\Mozilla\Firefox\Profiles\default.kvs\cookies-1.txt -> TrackingCookie.Burstnet : Nettoyer et sauvegarder :mozilla.369:C:\Documents and Settings\Yves Cathala\Application Data\Mozilla\Firefox\Profiles\default.kvs\cookies-1.txt -> TrackingCookie.Spylog : Nettoyer et sauvegarder :mozilla.373:C:\Documents and Settings\Yves Cathala\Application Data\Mozilla\Firefox\Profiles\default.kvs\cookies-1.txt -> TrackingCookie.Hitbox : Nettoyer et sauvegarder :mozilla.386:C:\Documents and Settings\Yves Cathala\Application Data\Mozilla\Firefox\Profiles\default.kvs\cookies-1.txt -> TrackingCookie.Comclick : Nettoyer et sauvegarder :mozilla.387:C:\Documents and Settings\Yves Cathala\Application Data\Mozilla\Firefox\Profiles\default.kvs\cookies-1.txt -> TrackingCookie.Comclick : Nettoyer et sauvegarder :mozilla.388:C:\Documents and Settings\Yves Cathala\Application Data\Mozilla\Firefox\Profiles\default.kvs\cookies-1.txt -> TrackingCookie.Comclick : Nettoyer et sauvegarder :mozilla.417:C:\Documents and Settings\Yves Cathala\Application Data\Mozilla\Firefox\Profiles\default.kvs\cookies-1.txt -> TrackingCookie.Sexcounter : Nettoyer et sauvegarder :mozilla.418:C:\Documents and Settings\Yves Cathala\Application Data\Mozilla\Firefox\Profiles\default.kvs\cookies-1.txt -> TrackingCookie.Sexcounter : Nettoyer et sauvegarder :mozilla.421:C:\Documents and Settings\Yves Cathala\Application Data\Mozilla\Firefox\Profiles\default.kvs\cookies-1.txt -> TrackingCookie.Sitestat : Nettoyer et sauvegarder :mozilla.436:C:\Documents and Settings\Yves Cathala\Application Data\Mozilla\Firefox\Profiles\default.kvs\cookies-1.txt -> TrackingCookie.Adserver : Nettoyer et sauvegarder :mozilla.437:C:\Documents and Settings\Yves Cathala\Application Data\Mozilla\Firefox\Profiles\default.kvs\cookies-1.txt -> TrackingCookie.Adserver : Nettoyer et sauvegarder :mozilla.446:C:\Documents and Settings\Yves Cathala\Application Data\Mozilla\Firefox\Profiles\default.kvs\cookies-1.txt -> TrackingCookie.Webtrendslive : Nettoyer et sauvegarder :mozilla.452:C:\Documents and Settings\Yves Cathala\Application Data\Mozilla\Firefox\Profiles\default.kvs\cookies-1.txt -> TrackingCookie.Hitbox : Nettoyer et sauvegarder :mozilla.454:C:\Documents and Settings\Yves Cathala\Application Data\Mozilla\Firefox\Profiles\default.kvs\cookies-1.txt -> TrackingCookie.Hitbox : Nettoyer et sauvegarder :mozilla.455:C:\Documents and Settings\Yves Cathala\Application Data\Mozilla\Firefox\Profiles\default.kvs\cookies-1.txt -> TrackingCookie.Hitbox : Nettoyer et sauvegarder :mozilla.470:C:\Documents and Settings\Yves Cathala\Application Data\Mozilla\Firefox\Profiles\default.kvs\cookies-1.txt -> TrackingCookie.Hitbox : Nettoyer et sauvegarder :mozilla.499:C:\Documents and Settings\Yves Cathala\Application Data\Mozilla\Firefox\Profiles\default.kvs\cookies-1.txt -> TrackingCookie.Webtrendslive : Nettoyer et sauvegarder :mozilla.502:C:\Documents and Settings\Yves Cathala\Application Data\Mozilla\Firefox\Profiles\default.kvs\cookies-1.txt -> TrackingCookie.Webtrendslive : Nettoyer et sauvegarder :mozilla.516:C:\Documents and Settings\Yves Cathala\Application Data\Mozilla\Firefox\Profiles\default.kvs\cookies-1.txt -> TrackingCookie.Trafficmp : Nettoyer et sauvegarder :mozilla.517:C:\Documents and Settings\Yves Cathala\Application Data\Mozilla\Firefox\Profiles\default.kvs\cookies-1.txt -> TrackingCookie.Webtrendslive : Nettoyer et sauvegarder :mozilla.519:C:\Documents and Settings\Yves Cathala\Application Data\Mozilla\Firefox\Profiles\default.kvs\cookies-1.txt -> TrackingCookie.Questionmarket : Nettoyer et sauvegarder :mozilla.543:C:\Documents and Settings\Yves Cathala\Application Data\Mozilla\Firefox\Profiles\default.kvs\cookies-1.txt -> TrackingCookie.Adition : Nettoyer et sauvegarder :mozilla.544:C:\Documents and Settings\Yves Cathala\Application Data\Mozilla\Firefox\Profiles\default.kvs\cookies-1.txt -> TrackingCookie.Adition : Nettoyer et sauvegarder :mozilla.545:C:\Documents and Settings\Yves Cathala\Application Data\Mozilla\Firefox\Profiles\default.kvs\cookies-1.txt -> TrackingCookie.Hitbox : Nettoyer et sauvegarder :mozilla.551:C:\Documents and Settings\Yves Cathala\Application Data\Mozilla\Firefox\Profiles\default.kvs\cookies-1.txt -> TrackingCookie.Realcastmedia : Nettoyer et sauvegarder :mozilla.7:C:\Documents and Settings\Yves Cathala\Application Data\Mozilla\Profiles\default\j7usn6xj.slt\cookies.txt -> TrackingCookie.Weborama : Nettoyer et sauvegarder :mozilla.19:C:\Documents and Settings\Yves Cathala\Application Data\Mozilla\Profiles\default\j7usn6xj.slt\cookies.txt -> TrackingCookie.Smartadserver : Nettoyer et sauvegarder :mozilla.23:C:\Documents and Settings\Yves Cathala\Application Data\Mozilla\Profiles\default\j7usn6xj.slt\cookies.txt -> TrackingCookie.Valueclick : Nettoyer et sauvegarder C:\Documents and Settings\Yves Cathala\Bureau\l2mfix\backup.zip/dlls/agctres.dll -> Adware.Look2Me : Nettoyer et sauvegarder C:\Documents and Settings\Yves Cathala\Bureau\l2mfix\backup.zip/dlls/fpnq0355e.dll -> Adware.Look2Me : Nettoyer et sauvegarder C:\Documents and Settings\Yves Cathala\Bureau\l2mfix\backup.zip/dlls/fpro0393e.dll -> Adware.Look2Me : Nettoyer et sauvegarder C:\Documents and Settings\Yves Cathala\Bureau\l2mfix\backup.zip/dlls/hfwsched.dll -> Adware.Look2Me : Nettoyer et sauvegarder C:\Documents and Settings\Yves Cathala\Bureau\l2mfix\backup.zip/dlls/ieign32.dll -> Adware.Look2Me : Nettoyer et sauvegarder C:\Documents and Settings\Yves Cathala\Bureau\l2mfix\backup.zip/dlls/mv6ol9j31.dll -> Adware.Look2Me : Nettoyer et sauvegarder C:\Documents and Settings\Yves Cathala\Bureau\l2mfix\backup.zip/dlls/ucrsvpia.dll -> Adware.Look2Me : Nettoyer et sauvegarder C:\Documents and Settings\Yves Cathala\Bureau\l2mfix\dlls\agctres.dll -> Adware.Look2Me : Nettoyer et sauvegarder C:\Documents and Settings\Yves Cathala\Bureau\l2mfix\dlls\fpnq0355e.dll -> Adware.Look2Me : Nettoyer et sauvegarder C:\Documents and Settings\Yves Cathala\Bureau\l2mfix\dlls\fpro0393e.dll -> Adware.Look2Me : Nettoyer et sauvegarder C:\Documents and Settings\Yves Cathala\Bureau\l2mfix\dlls\hfwsched.dll -> Adware.Look2Me : Nettoyer et sauvegarder C:\Documents and Settings\Yves Cathala\Bureau\l2mfix\dlls\ieign32.dll -> Adware.Look2Me : Nettoyer et sauvegarder C:\Documents and Settings\Yves Cathala\Bureau\l2mfix\dlls\mv6ol9j31.dll -> Adware.Look2Me : Nettoyer et sauvegarder C:\Documents and Settings\Yves Cathala\Bureau\l2mfix\dlls\ucrsvpia.dll -> Adware.Look2Me : Nettoyer et sauvegarder C:\Documents and Settings\Yves Cathala\Local Settings\Temporary Internet Files\Content.IE5\1R4U9DLN\AppWrap[1].exe -> Adware.Zestyfind : Nettoyer et sauvegarder C:\Documents and Settings\Yves Cathala\Local Settings\Temporary Internet Files\Content.IE5\1R4U9DLN\ErrorSafeScannerInstallFR[1].cab/UERSV_0001_N68M0602NetInstaller.exe -> Not-A-Virus.Downloader.Win32.WinFixer.d : Nettoyer et sauvegarder C:\Documents and Settings\Yves Cathala\Local Settings\Temporary Internet Files\Content.IE5\L5YLJ33V\AppWrap[1].exe -> Adware.AdURL : Nettoyer et sauvegarder C:\Documents and Settings\Yves Cathala\Menu Démarrer\Programmes\Power Scan -> Adware.PowerScan : Nettoyer et sauvegarder C:\Documents and Settings\Yves Cathala\Menu Démarrer\Programmes\Power Scan\Power Scan.lnk -> Adware.PowerScan : Nettoyer et sauvegarder C:\Downloads 2005\toolbar.exe/toolbar.dll -> Adware.Astabar : Nettoyer et sauvegarder C:\Downloads 2005\Torrents\Registry Mechanic 6.0 with Keygen\keygen.exe -> Adware.WinAD : Nettoyer et sauvegarder C:\Downloads 2005\Torrents\System Mechanic 7 with keygen\keygen.exe -> Adware.WinAD : Nettoyer et sauvegarder C:\drsmartload45a.exe -> Downloader.Adload.an : Nettoyer et sauvegarder C:\geck171.exe -> Backdoor.SdBot.xd : Nettoyer et sauvegarder C:\Installer.exe -> Adware.Look2Me : Nettoyer et sauvegarder C:\Program Files\Fichiers communs\fzmw\fzmwd\fzmwc.dll -> Adware.TargetServer : Nettoyer et sauvegarder C:\Program Files\Fichiers communs\Windows\services32.exe -> Adware.Maxifiles : Nettoyer et sauvegarder C:\Program Files\Internet Optimizer -> Adware.InternetOptimizer : Nettoyer et sauvegarder C:\Program Files\ISTsvc -> Adware.ISTBar : Nettoyer et sauvegarder C:\Program Files\LapLink Everywhere\SSTSync.dll -> Trojan.Delf.or : Nettoyer et sauvegarder C:\Program Files\MediaGateway\MediaGateway.exe -> Adware.WinAD : Nettoyer et sauvegarder C:\Program Files\MediaGateway\Updater.exe -> Adware.WinAD : Nettoyer et sauvegarder C:\Program Files\Network\ipnetwork.exe -> Adware.Maxifiles : Nettoyer et sauvegarder C:\Program Files\Network Monitor\netmon.exe -> Not-A-Virus.Monitor.Win32.NetMon.a : Nettoyer et sauvegarder C:\Program Files\Pocket DVD Wizard\Pocket Dvd Wizard 2005 Key.exe -> Adware.HotSearchBar : Nettoyer et sauvegarder C:\Program Files\Power Scan -> Adware.PowerScan : Nettoyer et sauvegarder C:\Program Files\SideFind -> Adware.SideFind : Nettoyer et sauvegarder C:\Program Files\SideFind\sfexd001 -> Adware.SideFind : Nettoyer et sauvegarder C:\Program Files\SideFind\update -> Adware.SideFind : Nettoyer et sauvegarder C:\Program Files\webHancer\Programs\webhdll.dll -> Adware.WebHancer : Nettoyer et sauvegarder C:\Program Files\webHancer\Programs\whagent.exe -> Adware.WebHancer : Nettoyer et sauvegarder C:\Program Files\webHancer\Programs\whiehlpr.dll -> Adware.WebHancer : Nettoyer et sauvegarder C:\Program Files\webHancer\Programs\whsurvey.exe -> Adware.WebHancer : Nettoyer et sauvegarder C:\Program Files\whInstall -> Adware.Webhancer : Nettoyer et sauvegarder C:\Program Files\whInstall\license.txt -> Adware.Webhancer : Nettoyer et sauvegarder C:\Program Files\whInstall\readme.txt -> Adware.Webhancer : Nettoyer et sauvegarder C:\Program Files\whInstall\whAgent.ini -> Adware.Webhancer : Nettoyer et sauvegarder C:\Temp\sahagent-cdt1003.exe -> Adware.Sahat : Nettoyer et sauvegarder C:\Windows\csrss.exe -> Backdoor.SdBot.xd : Nettoyer et sauvegarder C:\Windows\DH.dll -> Hijacker.Small.jf : Nettoyer et sauvegarder C:\Windows\Downloaded Program Files\ClientAX.dll -> Adware.180Solutions : Nettoyer et sauvegarder C:\Windows\icont.exe -> Adware.AdURL : Nettoyer et sauvegarder C:\Windows\iconu.exe -> Adware.Zestyfind : Nettoyer et sauvegarder C:\Windows\keyboard11.exe -> Backdoor.VB.ary : Nettoyer et sauvegarder C:\Windows\keyboard12.exe -> Downloader.VB.abd : Nettoyer et sauvegarder C:\Windows\MediaGateway.exe -> Adware.WinAD : Nettoyer et sauvegarder C:\Windows\mousepad11.exe -> Hijacker.VB.mo : Nettoyer et sauvegarder C:\Windows\mousepad12.exe -> Hijacker.VB.mo : Nettoyer et sauvegarder C:\Windows\msvieie.exe -> Trojan.Agent.ba : Nettoyer et sauvegarder C:\Windows\newname11.exe -> Downloader.Adload.ae : Nettoyer et sauvegarder C:\Windows\newname12.exe -> Downloader.VB.aaf : Nettoyer et sauvegarder C:\Windows\red.exe -> Adware.180Solutions : Nettoyer et sauvegarder C:\Windows\system32\70tovmto.ini -> Adware.Sahat : Nettoyer et sauvegarder C:\Windows\system32\ad.html -> Hijacker.Agent.e : Nettoyer et sauvegarder C:\Windows\system32\fbarinstall.exe -> Adware.FSBar : Nettoyer et sauvegarder C:\Windows\system32\fbaruninst.exe -> Adware.FSBar : Nettoyer et sauvegarder C:\Windows\system32\w0043a4c.dll -> Downloader.Agent.ahv : Nettoyer et sauvegarder C:\Windows\Temp\bw2.com -> Adware.AdURL : Nettoyer et sauvegarder C:\Windows\WXZlcyBDYXRoYWxh\asappsrv.dll -> Adware.CommAd : Nettoyer et sauvegarder C:\Windows\WXZlcyBDYXRoYWxh\command.exe -> Adware.CommAd : Nettoyer et sauvegarder C:\Windowsbis\Downloaded Program Files\WEBInstaller.dll -> Adware.Sahat : Nettoyer et sauvegarder C:\Windowsbis\msvieie.exe -> Trojan.Agent.ba : Nettoyer et sauvegarder C:\Windowsbis\nsdb\hosts -> Trojan.Qhost.ae : Nettoyer et sauvegarder C:\Windowsbis\system32\70tovmto.ini -> Adware.Sahat : Nettoyer et sauvegarder C:\Windowsbis\system32\fbarinstall.exe -> Adware.FSBar : Nettoyer et sauvegarder C:\Windowsbis\system32\fbaruninst.exe -> Adware.FSBar : Nettoyer et sauvegarder C:\Windowsbis\system32\fsearchbar.dll -> Adware.FSBar : Nettoyer et sauvegarder C:\Windowsbis\system32bis\70tovmto.ini -> Adware.Sahat : Nettoyer et sauvegarder C:\Windowsbis\system32bis\fbarinstall.exe -> Adware.FSBar : Nettoyer et sauvegarder C:\Windowsbis\system32bis\fbaruninst.exe -> Adware.FSBar : Nettoyer et sauvegarder C:\Windowsbis\system32bis\fsearchbar.dll -> Adware.FSBar : Nettoyer et sauvegarder E:\Documents and Settings\Administrateur.CYCASOFT-260E61\Cookies\administrateur@www.smartadserver[2].txt -> TrackingCookie.Smartadserver : Nettoyer et sauvegarder E:\Documents and Settings\Administrateur.TITANIUM\Cookies\administrateur@doubleclick[1].txt -> TrackingCookie.Doubleclick : Nettoyer et sauvegarder E:\Documents and Settings\LocalService\Cookies\service local@www.lop[2].txt -> TrackingCookie.Lop : Nettoyer et sauvegarder :mozilla.9:E:\Documents and Settings\Yves Cathala\Application Data\Mozilla\Profiles\default\ehbsvsp2.slt\cookies.txt -> TrackingCookie.Tradedoubler : Nettoyer et sauvegarder :mozilla.11:E:\Documents and Settings\Yves Cathala\Application Data\Mozilla\Profiles\default\ehbsvsp2.slt\cookies.txt -> TrackingCookie.Comclick : Nettoyer et sauvegarder :mozilla.12:E:\Documents and Settings\Yves Cathala\Application Data\Mozilla\Profiles\default\ehbsvsp2.slt\cookies.txt -> TrackingCookie.Comclick : Nettoyer et sauvegarder :mozilla.13:E:\Documents and Settings\Yves Cathala\Application Data\Mozilla\Profiles\default\ehbsvsp2.slt\cookies.txt -> TrackingCookie.Doubleclick : Nettoyer et sauvegarder :mozilla.16:E:\Documents and Settings\Yves Cathala\Application Data\Mozilla\Profiles\default\ehbsvsp2.slt\cookies.txt -> TrackingCookie.Valueclick : Nettoyer et sauvegarder :mozilla.17:E:\Documents and Settings\Yves Cathala\Application Data\Mozilla\Profiles\default\ehbsvsp2.slt\cookies.txt -> TrackingCookie.Advertising : Nettoyer et sauvegarder :mozilla.18:E:\Documents and Settings\Yves Cathala\Application Data\Mozilla\Profiles\default\ehbsvsp2.slt\cookies.txt -> TrackingCookie.Advertising : Nettoyer et sauvegarder :mozilla.19:E:\Documents and Settings\Yves Cathala\Application Data\Mozilla\Profiles\default\ehbsvsp2.slt\cookies.txt -> TrackingCookie.Advertising : Nettoyer et sauvegarder :mozilla.20:E:\Documents and Settings\Yves Cathala\Application Data\Mozilla\Profiles\default\ehbsvsp2.slt\cookies.txt -> TrackingCookie.Advertising : Nettoyer et sauvegarder :mozilla.21:E:\Documents and Settings\Yves Cathala\Application Data\Mozilla\Profiles\default\ehbsvsp2.slt\cookies.txt -> TrackingCookie.Advertising : Nettoyer et sauvegarder :mozilla.22:E:\Documents and Settings\Yves Cathala\Application Data\Mozilla\Profiles\default\ehbsvsp2.slt\cookies.txt -> TrackingCookie.Valueclick : Nettoyer et sauvegarder :mozilla.23:E:\Documents and Settings\Yves Cathala\Application Data\Mozilla\Profiles\default\ehbsvsp2.slt\cookies.txt -> TrackingCookie.Advertising : Nettoyer et sauvegarder :mozilla.25:E:\Documents and Settings\Yves Cathala\Application Data\Mozilla\Profiles\default\ehbsvsp2.slt\cookies.txt -> TrackingCookie.Bluestreak : Nettoyer et sauvegarder :mozilla.29:E:\Documents and Settings\Yves Cathala\Application Data\Mozilla\Profiles\default\ehbsvsp2.slt\cookies.txt -> TrackingCookie.Hitbox : Nettoyer et sauvegarder :mozilla.30:E:\Documents and Settings\Yves Cathala\Application Data\Mozilla\Profiles\default\ehbsvsp2.slt\cookies.txt -> TrackingCookie.Hitbox : Nettoyer et sauvegarder :mozilla.35:E:\Documents and Settings\Yves Cathala\Application Data\Mozilla\Profiles\default\ehbsvsp2.slt\cookies.txt -> TrackingCookie.Weborama : Nettoyer et sauvegarder :mozilla.36:E:\Documents and Settings\Yves Cathala\Application Data\Mozilla\Profiles\default\ehbsvsp2.slt\cookies.txt -> TrackingCookie.Weborama : Nettoyer et sauvegarder :mozilla.37:E:\Documents and Settings\Yves Cathala\Application Data\Mozilla\Profiles\default\ehbsvsp2.slt\cookies.txt -> TrackingCookie.Weborama : Nettoyer et sauvegarder :mozilla.38:E:\Documents and Settings\Yves Cathala\Application Data\Mozilla\Profiles\default\ehbsvsp2.slt\cookies.txt -> TrackingCookie.Estat : Nettoyer et sauvegarder :mozilla.57:E:\Documents and Settings\Yves Cathala\Application Data\Mozilla\Profiles\default\ehbsvsp2.slt\cookies.txt -> TrackingCookie.Mediaplex : Nettoyer et sauvegarder :mozilla.58:E:\Documents and Settings\Yves Cathala\Application Data\Mozilla\Profiles\default\ehbsvsp2.slt\cookies.txt -> TrackingCookie.Mediaplex : Nettoyer et sauvegarder :mozilla.69:E:\Documents and Settings\Yves Cathala\Application Data\Mozilla\Profiles\default\ehbsvsp2.slt\cookies.txt -> TrackingCookie.Trafficmp : Nettoyer et sauvegarder :mozilla.70:E:\Documents and Settings\Yves Cathala\Application Data\Mozilla\Profiles\default\ehbsvsp2.slt\cookies.txt -> TrackingCookie.Trafficmp : Nettoyer et sauvegarder :mozilla.71:E:\Documents and Settings\Yves Cathala\Application Data\Mozilla\Profiles\default\ehbsvsp2.slt\cookies.txt -> TrackingCookie.Trafficmp : Nettoyer et sauvegarder :mozilla.72:E:\Documents and Settings\Yves Cathala\Application Data\Mozilla\Profiles\default\ehbsvsp2.slt\cookies.txt -> TrackingCookie.Trafficmp : Nettoyer et sauvegarder :mozilla.73:E:\Documents and Settings\Yves Cathala\Application Data\Mozilla\Profiles\default\ehbsvsp2.slt\cookies.txt -> TrackingCookie.Trafficmp : Nettoyer et sauvegarder :mozilla.74:E:\Documents and Settings\Yves Cathala\Application Data\Mozilla\Profiles\default\ehbsvsp2.slt\cookies.txt -> TrackingCookie.Trafficmp : Nettoyer et sauvegarder :mozilla.75:E:\Documents and Settings\Yves Cathala\Application Data\Mozilla\Profiles\default\ehbsvsp2.slt\cookies.txt -> TrackingCookie.Trafficmp : Nettoyer et sauvegarder :mozilla.76:E:\Documents and Settings\Yves Cathala\Application Data\Mozilla\Profiles\default\ehbsvsp2.slt\cookies.txt -> TrackingCookie.Trafficmp : Nettoyer et sauvegarder :mozilla.80:E:\Documents and Settings\Yves Cathala\Application Data\Mozilla\Profiles\default\ehbsvsp2.slt\cookies.txt -> TrackingCookie.Tribalfusion : Nettoyer et sauvegarder :mozilla.94:E:\Documents and Settings\Yves Cathala\Application Data\Mozilla\Profiles\default\ehbsvsp2.slt\cookies.txt -> TrackingCookie.Realmedia : Nettoyer et sauvegarder :mozilla.95:E:\Documents and Settings\Yves Cathala\Application Data\Mozilla\Profiles\default\ehbsvsp2.slt\cookies.txt -> TrackingCookie.Adtech : Nettoyer et sauvegarder :mozilla.96:E:\Documents and Settings\Yves Cathala\Application Data\Mozilla\Profiles\default\ehbsvsp2.slt\cookies.txt -> TrackingCookie.Adtech : Nettoyer et sauvegarder :mozilla.125:E:\Documents and Settings\Yves Cathala\Application Data\Mozilla\Profiles\default\ehbsvsp2.slt\cookies.txt -> TrackingCookie.Com : Nettoyer et sauvegarder :mozilla.126:E:\Documents and Settings\Yves Cathala\Application Data\Mozilla\Profiles\default\ehbsvsp2.slt\cookies.txt -> TrackingCookie.Com : Nettoyer et sauvegarder :mozilla.127:E:\Documents and Settings\Yves Cathala\Application Data\Mozilla\Profiles\default\ehbsvsp2.slt\cookies.txt -> TrackingCookie.Com : Nettoyer et sauvegarder :mozilla.133:E:\Documents and Settings\Yves Cathala\Application Data\Mozilla\Profiles\default\ehbsvsp2.slt\cookies.txt -> TrackingCookie.Bfast : Nettoyer et sauvegarder :mozilla.140:E:\Documents and Settings\Yves Cathala\Application Data\Mozilla\Profiles\default\ehbsvsp2.slt\cookies.txt -> TrackingCookie.Goldenpalace : Nettoyer et sauvegarder :mozilla.142:E:\Documents and Settings\Yves Cathala\Application Data\Mozilla\Profiles\default\ehbsvsp2.slt\cookies.txt -> TrackingCookie.Goldenpalace : Nettoyer et sauvegarder :mozilla.143:E:\Documents and Settings\Yves Cathala\Application Data\Mozilla\Profiles\default\ehbsvsp2.slt\cookies.txt -> TrackingCookie.Qksrv : Nettoyer et sauvegarder :mozilla.144:E:\Documents and Settings\Yves Cathala\Application Data\Mozilla\Profiles\default\ehbsvsp2.slt\cookies.txt -> TrackingCookie.Qksrv : Nettoyer et sauvegarder :mozilla.145:E:\Documents and Settings\Yves Cathala\Application Data\Mozilla\Profiles\default\ehbsvsp2.slt\cookies.txt -> TrackingCookie.Qksrv : Nettoyer et sauvegarder :mozilla.146:E:\Documents and Settings\Yves Cathala\Application Data\Mozilla\Profiles\default\ehbsvsp2.slt\cookies.txt -> TrackingCookie.Qksrv : Nettoyer et sauvegarder :mozilla.151:E:\Documents and Settings\Yves Cathala\Application Data\Mozilla\Profiles\default\ehbsvsp2.slt\cookies.txt -> TrackingCookie.Hitbox : Nettoyer et sauvegarder :mozilla.154:E:\Documents and Settings\Yves Cathala\Application Data\Mozilla\Profiles\default\ehbsvsp2.slt\cookies.txt -> TrackingCookie.Atdmt : Nettoyer et sauvegarder :mozilla.155:E:\Documents and Settings\Yves Cathala\Application Data\Mozilla\Profiles\default\ehbsvsp2.slt\cookies.txt -> TrackingCookie.Webtrendslive : Nettoyer et sauvegarder :mozilla.156:E:\Documents and Settings\Yves Cathala\Application Data\Mozilla\Profiles\default\ehbsvsp2.slt\cookies.txt -> TrackingCookie.Webtrendslive : Nettoyer et sauvegarder :mozilla.158:E:\Documents and Settings\Yves Cathala\Application Data\Mozilla\Profiles\default\ehbsvsp2.slt\cookies.txt -> TrackingCookie.Fastclick : Nettoyer et sauvegarder :mozilla.190:E:\Documents and Settings\Yves Cathala\Application Data\Mozilla\Profiles\default\ehbsvsp2.slt\cookies.txt -> TrackingCookie.Hitslink : Nettoyer et sauvegarder :mozilla.191:E:\Documents and Settings\Yves Cathala\Application Data\Mozilla\Profiles\default\ehbsvsp2.slt\cookies.txt -> TrackingCookie.Hitslink : Nettoyer et sauvegarder :mozilla.192:E:\Documents and Settings\Yves Cathala\Application Data\Mozilla\Profiles\default\ehbsvsp2.slt\cookies.txt -> TrackingCookie.Hitslink : Nettoyer et sauvegarder :mozilla.193:E:\Documents and Settings\Yves Cathala\Application Data\Mozilla\Profiles\default\ehbsvsp2.slt\cookies.txt -> TrackingCookie.Hitslink : Nettoyer et sauvegarder :mozilla.209:E:\Documents and Settings\Yves Cathala\Application Data\Mozilla\Profiles\default\ehbsvsp2.slt\cookies.txt -> TrackingCookie.Dbbsrv : Nettoyer et sauvegarder :mozilla.210:E:\Documents and Settings\Yves Cathala\Application Data\Mozilla\Profiles\default\ehbsvsp2.slt\cookies.txt -> TrackingCookie.Dbbsrv : Nettoyer et sauvegarder :mozilla.217:E:\Documents and Settings\Yves Cathala\Application Data\Mozilla\Profiles\default\ehbsvsp2.slt\cookies.txt -> TrackingCookie.Hitbox : Nettoyer et sauvegarder :mozilla.218:E:\Documents and Settings\Yves Cathala\Application Data\Mozilla\Profiles\default\ehbsvsp2.slt\cookies.txt -> TrackingCookie.Hitbox : Nettoyer et sauvegarder :mozilla.219:E:\Documents and Settings\Yves Cathala\Application Data\Mozilla\Profiles\default\ehbsvsp2.slt\cookies.txt -> TrackingCookie.Hitbox : Nettoyer et sauvegarder :mozilla.220:E:\Documents and Settings\Yves Cathala\Application Data\Mozilla\Profiles\default\ehbsvsp2.slt\cookies.txt -> TrackingCookie.Hitbox : Nettoyer et sauvegarder :mozilla.224:E:\Documents and Settings\Yves Cathala\Application Data\Mozilla\Profiles\default\ehbsvsp2.slt\cookies.txt -> TrackingCookie.Valuead : Nettoyer et sauvegarder :mozilla.225:E:\Documents and Settings\Yves Cathala\Application Data\Mozilla\Profiles\default\ehbsvsp2.slt\cookies.txt -> TrackingCookie.Hotlog : Nettoyer et sauvegarder :mozilla.229:E:\Documents and Settings\Yves Cathala\Application Data\Mozilla\Profiles\default\ehbsvsp2.slt\cookies.txt -> TrackingCookie.Smartadserver : Nettoyer et sauvegarder :mozilla.230:E:\Documents and Settings\Yves Cathala\Application Data\Mozilla\Profiles\default\ehbsvsp2.slt\cookies.txt -> TrackingCookie.Smartadserver : Nettoyer et sauvegarder :mozilla.231:E:\Documents and Settings\Yves Cathala\Application Data\Mozilla\Profiles\default\ehbsvsp2.slt\cookies.txt -> TrackingCookie.Smartadserver : Nettoyer et sauvegarder :mozilla.232:E:\Documents and Settings\Yves Cathala\Application Data\Mozilla\Profiles\default\ehbsvsp2.slt\cookies.txt -> TrackingCookie.Overture : Nettoyer et sauvegarder :mozilla.237:E:\Documents and Settings\Yves Cathala\Application Data\Mozilla\Profiles\default\ehbsvsp2.slt\cookies.txt -> TrackingCookie.Webtrendslive : Nettoyer et sauvegarder :mozilla.240:E:\Documents and Settings\Yves Cathala\Application Data\Mozilla\Profiles\default\ehbsvsp2.slt\cookies.txt -> TrackingCookie.Webtrendslive : Nettoyer et sauvegarder :mozilla.251:E:\Documents and Settings\Yves Cathala\Application Data\Mozilla\Profiles\default\ehbsvsp2.slt\cookies.txt -> TrackingCookie.Valuead : Nettoyer et sauvegarder :mozilla.271:E:\Documents and Settings\Yves Cathala\Application Data\Mozilla\Profiles\default\ehbsvsp2.slt\cookies.txt -> TrackingCookie.2o7 : Nettoyer et sauvegarder :mozilla.272:E:\Documents and Settings\Yves Cathala\Application Data\Mozilla\Profiles\default\ehbsvsp2.slt\cookies.txt -> TrackingCookie.2o7 : Nettoyer et sauvegarder E:\Documents and Settings\Yves Cathala\Cookies\yves cathala@7search[1].txt -> TrackingCookie.7search : Nettoyer et sauvegarder E:\Documents and Settings\Yves Cathala\Cookies\yves cathala@ad-flow[1].txt -> TrackingCookie.Ad-flow : Nettoyer et sauvegarder E:\Documents and Settings\Yves Cathala\Cookies\yves cathala@ad-flow[2].txt -> TrackingCookie.Ad-flow : Nettoyer et sauvegarder E:\Documents and Settings\Yves Cathala\Cookies\yves cathala@addynamix[1].txt -> TrackingCookie.Addynamix : Nettoyer et sauvegarder E:\Documents and Settings\Yves Cathala\Cookies\yves cathala@adnetintads.valuead[1].txt -> TrackingCookie.Valuead : Nettoyer et sauvegarder E:\Documents and Settings\Yves Cathala\Cookies\yves cathala@ads.180solutions[1].txt -> TrackingCookie.180solutions : Nettoyer et sauvegarder E:\Documents and Settings\Yves Cathala\Cookies\yves cathala@ads.specificpop[1].txt -> TrackingCookie.Specificpop : Nettoyer et sauvegarder E:\Documents and Settings\Yves Cathala\Cookies\yves cathala@ads.valuead[1].txt -> TrackingCookie.Valuead : Nettoyer et sauvegarder E:\Documents and Settings\Yves Cathala\Cookies\yves cathala@adserv.internetfuel[1].txt -> TrackingCookie.Internetfuel : Nettoyer et sauvegarder E:\Documents and Settings\Yves Cathala\Cookies\yves cathala@adserv.internetfuel[2].txt -> TrackingCookie.Internetfuel : Nettoyer et sauvegarder E:\Documents and Settings\Yves Cathala\Cookies\yves cathala@adserv.internetfuel[3].txt -> TrackingCookie.Internetfuel : Nettoyer et sauvegarder E:\Documents and Settings\Yves Cathala\Cookies\yves cathala@adserv.internetfuel[4].txt -> TrackingCookie.Internetfuel : Nettoyer et sauvegarder E:\Documents and Settings\Yves Cathala\Cookies\yves cathala@adtech[2].txt -> TrackingCookie.Adtech : Nettoyer et sauvegarder E:\Documents and Settings\Yves Cathala\Cookies\yves cathala@advertising[1].txt -> TrackingCookie.Advertising : Nettoyer et sauvegarder E:\Documents and Settings\Yves Cathala\Cookies\yves cathala@advertising[2].txt -> TrackingCookie.Advertising : Nettoyer et sauvegarder E:\Documents and Settings\Yves Cathala\Cookies\yves cathala@advertising[3].txt -> TrackingCookie.Advertising : Nettoyer et sauvegarder E:\Documents and Settings\Yves Cathala\Cookies\yves cathala@advertising[4].txt -> TrackingCookie.Advertising : Nettoyer et sauvegarder E:\Documents and Settings\Yves Cathala\Cookies\yves cathala@advertising[6].txt -> TrackingCookie.Advertising : Nettoyer et sauvegarder E:\Documents and Settings\Yves Cathala\Cookies\yves cathala@advertising[7].txt -> TrackingCookie.Advertising : Nettoyer et sauvegarder E:\Documents and Settings\Yves Cathala\Cookies\yves cathala@as1.falkag[2].txt -> TrackingCookie.Falkag : Nettoyer et sauvegarder E:\Documents and Settings\Yves Cathala\Cookies\yves cathala@as1.falkag[3].txt -> TrackingCookie.Falkag : Nettoyer et sauvegarder E:\Documents and Settings\Yves Cathala\Cookies\yves cathala@atdmt[2].txt -> TrackingCookie.Atdmt : Nettoyer et sauvegarder E:\Documents and Settings\Yves Cathala\Cookies\yves cathala@banserv.internetfuel[2].txt -> TrackingCookie.Internetfuel : Nettoyer et sauvegarder E:\Documents and Settings\Yves Cathala\Cookies\yves cathala@bfast[1].txt -> TrackingCookie.Bfast : Nettoyer et sauvegarder E:\Documents and Settings\Yves Cathala\Cookies\yves cathala@bins.lop[1].txt -> TrackingCookie.Lop : Nettoyer et sauvegarder E:\Documents and Settings\Yves Cathala\Cookies\yves cathala@bins.thko[1].txt -> TrackingCookie.Thko : Nettoyer et sauvegarder E:\Documents and Settings\Yves Cathala\Cookies\yves cathala@bis.180solutions[2].txt -> TrackingCookie.180solutions : Nettoyer et sauvegarder E:\Documents and Settings\Yves Cathala\Cookies\yves cathala@bis.180solutions[3].txt -> TrackingCookie.180solutions

Le scan Ewido est long et demain je bosse tot. Je vais le laisser tourner et je te posterai les rapports au lever demain matin. Je serai en ligne demain apres-midi. Merci d'avance.

Help !! J'en suis à l'etape 6 et j'ai un doute pour les fichiers à supprimer avec LSP-Fix 4 fichiers : mswsock.dll de base pour le TCP/IP winmr.dll de base pour NTDS Webbhdll.dll a effacer pour WebHancer ??? rsvpsp.dll A EFFACER OU NON ? Merci d'avance.

Voila d'abord le log de L2mfix L2mfix 032106 Creating Account. La commande s'est termin‚e correctement. Adding Administrative privleges. Checking for L2MFix account(0=no 1=yes): 1 Granting SeDebugPrivilege to L2MFIX ... successful Running From: C:\WINDOWS\system32 Killing Processes! Command Line Process Viewer/Killer/Suspender for Windows NT/2000/XP V2.03 Copyright© 2002-2003 Craig.Peacock@beyondlogic.org Killing PID 900 'smss.exe' Killing PID 900 'smss.exe' Command Line Process Viewer/Killer/Suspender for Windows NT/2000/XP V2.03 Copyright© 2002-2003 Craig.Peacock@beyondlogic.org Killing PID 1108 'winlogon.exe' Killing PID 1108 'winlogon.exe' Killing PID 1108 'winlogon.exe' Command Line Process Viewer/Killer/Suspender for Windows NT/2000/XP V2.03 Copyright© 2002-2003 Craig.Peacock@beyondlogic.org Killing PID 472 'explorer.exe' Killing PID 472 'explorer.exe' Killing PID 472 'explorer.exe' Command Line Process Viewer/Killer/Suspender for Windows NT/2000/XP V2.03 Copyright© 2002-2003 Craig.Peacock@beyondlogic.org Killing PID 1952 'rundll32.exe' Restoring Sedebugprivilege: Granting SeDebugPrivilege to Administrateurs ... successful Scanning First Pass. Please Wait! First Pass Completed Second Pass Scanning Second pass Completed! 1 fichier(s) copi‚(s). 1 fichier(s) copi‚(s). 1 fichier(s) copi‚(s). 1 fichier(s) copi‚(s). 1 fichier(s) copi‚(s). 1 fichier(s) copi‚(s). 1 fichier(s) copi‚(s). Deleting: C:\WINDOWS\system32\agctres.dll Successfully Deleted: C:\WINDOWS\system32\agctres.dll Deleting: C:\WINDOWS\system32\fpnq0355e.dll Successfully Deleted: C:\WINDOWS\system32\fpnq0355e.dll Deleting: C:\WINDOWS\system32\fpro0393e.dll Successfully Deleted: C:\WINDOWS\system32\fpro0393e.dll Deleting: C:\WINDOWS\system32\hfwsched.dll Successfully Deleted: C:\WINDOWS\system32\hfwsched.dll Deleting: C:\WINDOWS\system32\ieign32.dll Successfully Deleted: C:\WINDOWS\system32\ieign32.dll Deleting: C:\WINDOWS\system32\mv6ol9j31.dll Successfully Deleted: C:\WINDOWS\system32\mv6ol9j31.dll Deleting: C:\WINDOWS\system32\ucrsvpia.dll Successfully Deleted: C:\WINDOWS\system32\ucrsvpia.dll msg11?.dll 0 fichier(s) copi‚(s). Restoring Windows Update Certificates.: The following Is the Current Export of the Winlogon notify key: **************************************************************************** Windows Registry Editor Version 5.00 [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify] [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\crypt32chain] "Asynchronous"=dword:00000000 "Impersonate"=dword:00000000 "DllName"=hex(2):63,00,72,00,79,00,70,00,74,00,33,00,32,00,2e,00,64,00,6c,00,\ 6c,00,00,00 "Logoff"="ChainWlxLogoffEvent" [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\cryptnet] "Asynchronous"=dword:00000000 "Impersonate"=dword:00000000 "DllName"=hex(2):63,00,72,00,79,00,70,00,74,00,6e,00,65,00,74,00,2e,00,64,00,\ 6c,00,6c,00,00,00 "Logoff"="CryptnetWlxLogoffEvent" [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\cscdll] "DLLName"="cscdll.dll" "Logon"="WinlogonLogonEvent" "Logoff"="WinlogonLogoffEvent" "ScreenSaver"="WinlogonScreenSaverEvent" "Startup"="WinlogonStartupEvent" "Shutdown"="WinlogonShutdownEvent" "StartShell"="WinlogonStartShellEvent" "Impersonate"=dword:00000000 "Asynchronous"=dword:00000001 [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\ScCertProp] "DLLName"="wlnotify.dll" "Logon"="SCardStartCertProp" "Logoff"="SCardStopCertProp" "Lock"="SCardSuspendCertProp" "Unlock"="SCardResumeCertProp" "Enabled"=dword:00000001 "Impersonate"=dword:00000001 "Asynchronous"=dword:00000001 [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\Schedule] "Asynchronous"=dword:00000000 "DllName"=hex(2):77,00,6c,00,6e,00,6f,00,74,00,69,00,66,00,79,00,2e,00,64,00,\ 6c,00,6c,00,00,00 "Impersonate"=dword:00000000 "StartShell"="SchedStartShell" "Logoff"="SchedEventLogOff" [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\sclgntfy] "Logoff"="WLEventLogoff" "Impersonate"=dword:00000000 "Asynchronous"=dword:00000001 "DllName"=hex(2):73,00,63,00,6c,00,67,00,6e,00,74,00,66,00,79,00,2e,00,64,00,\ 6c,00,6c,00,00,00 [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\SensLogn] "DLLName"="WlNotify.dll" "Lock"="SensLockEvent" "Logon"="SensLogonEvent" "Logoff"="SensLogoffEvent" "Safe"=dword:00000001 "MaxWait"=dword:00000258 "StartScreenSaver"="SensStartScreenSaverEvent" "StopScreenSaver"="SensStopScreenSaverEvent" "Startup"="SensStartupEvent" "Shutdown"="SensShutdownEvent" "StartShell"="SensStartShellEvent" "PostShell"="SensPostShellEvent" "Disconnect"="SensDisconnectEvent" "Reconnect"="SensReconnectEvent" "Unlock"="SensUnlockEvent" "Impersonate"=dword:00000001 "Asynchronous"=dword:00000001 [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\termsrv] "Asynchronous"=dword:00000000 "DllName"=hex(2):77,00,6c,00,6e,00,6f,00,74,00,69,00,66,00,79,00,2e,00,64,00,\ 6c,00,6c,00,00,00 "Impersonate"=dword:00000000 "Logoff"="TSEventLogoff" "Logon"="TSEventLogon" "PostShell"="TSEventPostShell" "Shutdown"="TSEventShutdown" "StartShell"="TSEventStartShell" "Startup"="TSEventStartup" "MaxWait"=dword:00000258 "Reconnect"="TSEventReconnect" "Disconnect"="TSEventDisconnect" [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\Themes] "Asynchronous"=dword:00000000 "DllName"="C:\\WINDOWS\\system32\\fpro0393e.dll" "Impersonate"=dword:00000000 "Logon"="WinLogon" "Logoff"="WinLogoff" "Shutdown"="WinShutdown" [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\wlballoon] "DLLName"="wlnotify.dll" "Logon"="RegisterTicketExpiredNotificationEvent" "Logoff"="UnregisterTicketExpiredNotificationEvent" "Impersonate"=dword:00000001 "Asynchronous"=dword:00000001 The following are the files found: **************************************************************************** C:\WINDOWS\system32\agctres.dll C:\WINDOWS\system32\fpnq0355e.dll C:\WINDOWS\system32\fpro0393e.dll C:\WINDOWS\system32\hfwsched.dll C:\WINDOWS\system32\ieign32.dll C:\WINDOWS\system32\mv6ol9j31.dll C:\WINDOWS\system32\ucrsvpia.dll Registry Entries that were Deleted: Please verify that the listing looks ok. If there was something deleted wrongly there are backups in the backreg folder. **************************************************************************** Windows Registry Editor Version 5.00 [HKEY_CLASSES_ROOT\CLSID\{0D0E8722-99F1-4298-A6C5-4A5962D00A96}] @="" "IDEx"="ADDR" [HKEY_CLASSES_ROOT\CLSID\{0D0E8722-99F1-4298-A6C5-4A5962D00A96}\Implemented Categories] @="" [HKEY_CLASSES_ROOT\CLSID\{0D0E8722-99F1-4298-A6C5-4A5962D00A96}\Implemented Categories\{00021492-0000-0000-C000-000000000046}] @="" [HKEY_CLASSES_ROOT\CLSID\{0D0E8722-99F1-4298-A6C5-4A5962D00A96}\InprocServer32] @="C:\\WINDOWS\\system32\\Ixcinerator.dll" "ThreadingModel"="Apartment" Windows Registry Editor Version 5.00 [HKEY_CLASSES_ROOT\CLSID\{84496282-7C79-45A0-A288-02099D8A9064}] @="" [HKEY_CLASSES_ROOT\CLSID\{84496282-7C79-45A0-A288-02099D8A9064}\Implemented Categories] @="" [HKEY_CLASSES_ROOT\CLSID\{84496282-7C79-45A0-A288-02099D8A9064}\Implemented Categories\{00021492-0000-0000-C000-000000000046}] @="" [HKEY_CLASSES_ROOT\CLSID\{84496282-7C79-45A0-A288-02099D8A9064}\InprocServer32] @="C:\\WINDOWS\\system32\\hfwsched.dll" "ThreadingModel"="Apartment" REGEDIT4 [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved] "{0D0E8722-99F1-4298-A6C5-4A5962D00A96}"=- "{84496282-7C79-45A0-A288-02099D8A9064}"=- [-HKEY_CLASSES_ROOT\CLSID\{0D0E8722-99F1-4298-A6C5-4A5962D00A96}] [-HKEY_CLASSES_ROOT\CLSID\{84496282-7C79-45A0-A288-02099D8A9064}] REGEDIT4 [-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\User Agent\Post Platform] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\User Agent\Post Platform] "SV1"="" **************************************************************************** Desktop.ini Contents: **************************************************************************** **************************************************************************** Checking for L2MFix account(0=no 1=yes): 0 Zipping up files for submission: adding: dlls/agctres.dll (164 bytes security) (deflated 5%) adding: dlls/fpnq0355e.dll (164 bytes security) (deflated 5%) adding: dlls/fpro0393e.dll (164 bytes security) (deflated 5%) adding: dlls/hfwsched.dll (164 bytes security) (deflated 5%) adding: dlls/ieign32.dll (164 bytes security) (deflated 4%) adding: dlls/mv6ol9j31.dll (164 bytes security) (deflated 5%) adding: dlls/ucrsvpia.dll (164 bytes security) (deflated 4%) adding: backregs/0D0E8722-99F1-4298-A6C5-4A5962D00A96.reg (188 bytes security) (deflated 69%) adding: backregs/84496282-7C79-45A0-A288-02099D8A9064.reg (188 bytes security) (deflated 70%) adding: backregs/notibac.reg (164 bytes security) (deflated 87%) adding: backregs/shell.reg (164 bytes security) (deflated 73%) Ensuite le rapport Hijackthis Logfile of HijackThis v1.99.1 Scan saved at 20:25:38, on 19/04/2006 Platform: Windows XP SP1 (WinNT 5.01.2600) MSIE: Internet Explorer v6.00 SP1 (6.00.2800.1106) Running processes: C:\WINDOWS\System32\smss.exe C:\WINDOWS\system32\winlogon.exe C:\WINDOWS\system32\services.exe C:\WINDOWS\system32\lsass.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\System32\svchost.exe C:\WINDOWS\system32\spoolsv.exe C:\Program Files\AntiVir PersonalEdition Classic\sched.exe C:\Program Files\AntiVir PersonalEdition Classic\avguard.exe C:\Program Files\WIDCOMM\Bluetooth Software\bin\btwdins.exe C:\WINDOWS\System32\inetsrv\inetinfo.exe C:\PROGRA~1\NORTON~1\NORTON~2\NPROTECT.EXE C:\WINDOWS\System32\nvsvc32.exe C:\WINDOWS\System32\svchost.exe C:\Program Files\z2 Remote2PC\R2PCServ.exe C:\WINDOWS\Explorer.EXE C:\Program Files\Network\ipnetwork.exe C:\Program Files\AntiVir PersonalEdition Classic\avgnt.exe C:\Program Files\z2 Remote2PC\R2PCSH.exe C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\fpdisp5a.exe C:\Program Files\Microsoft ActiveSync\WCESCOMM.EXE C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe C:\Program Files\AudioSphere\Audio.exe C:\WebMaster\Divers\ePrompter\ePrompter.exe E:\Program Files\MemTurbo\memturbo.exe C:\WINDOWS\system32\NOTEPAD.EXE E:\Program Files\Total Commander 6.54\TOTALCMD.EXE c:\WebMaster\Opera 9\Opera.exe c:\Program Files\HijackThis\HijackThis.exe R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = http://home.microsoft. R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = about: R1 - HKCU\Software\Microsoft\Internet Explorer\Search,SearchAssistant = about:blank R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant = http://searchbar.findthewebsiteyouneed.com R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *new-search.net*;*x-google.net* R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens R3 - URLSearchHook: (no name) - _{CFBFAE00-17A6-11D0-99CB-00C04FD64497} - (no file) R3 - URLSearchHook: (no name) - _{CC8C8F4F-F2E8-404B-A43D-5CC57876A008} - (no file) O1 - Hosts file is located at: C:\WINDOWS\nsdb\hosts O1 - Hosts: 82.179.166.192 new-search.net O1 - Hosts: 82.179.166.190 x-google.net O3 - Toolbar: Norton AntiVirus - {42CDD1BF-3FFB-4238-8AD1-7859DF00B1D6} - C:\Program Files\Norton SystemWorks\Norton Antivirus\NavShExt.dll O3 - Toolbar: SnagIt - {8FF5E183-ABDE-46EB-B09E-D2AAB95CABE3} - C:\Program Files\TechSmith\SnagIt 7\SnagItIEAddin.dll O3 - Toolbar: &Liquid Surf - {B9F633F6-EA44-45F4-91EB-FABFC65A0634} - C:\Program Files\LiquidSurf\sybil.dll O3 - Toolbar: Copernic Agent - {F2E259E8-0FC8-438C-A6E0-342DD80FA53E} - C:\WebMaster\Copernic Agent\CopernicAgentExt.dll O3 - Toolbar: Fast Search - {85E517D1-1B6B-4662-AF6E-4B9738091DCC} - C:\WINDOWS\System32\fsearchbar.dll O3 - Toolbar: &Radio - {8E718888-423F-11D2-876E-00A0C9082467} - C:\WINDOWS\System32\msdxm.ocx O3 - Toolbar: Adobe PDF - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll O3 - Toolbar: Zango Toolbar - {EA0D26BD-9029-431A-86E0-83152D67828A} - C:\Program Files\Zango Programs\Zango Toolbar\ZangoTB.dll O3 - Toolbar: Toolbar888 - {77FBF9B8-1D37-4FF2-9CED-192D8E3ABA6F} - C:\Program Files\Toolbar888\ToolBar888.dll O4 - HKLM\..\Run: [WIN USB 2.0] usbsystem.exe O4 - HKLM\..\Run: [ipNetwork] C:\Program Files\Network\ipnetwork.exe O4 - HKLM\..\Run: [avgnt] "C:\Program Files\AntiVir PersonalEdition Classic\avgnt.exe" /min O4 - HKLM\..\Run: [z2 R2PC Server Helper] "C:\Program Files\z2 Remote2PC\R2PCSH.exe" O4 - HKLM\..\Run: [FinePrint Dispatcher v5] C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\fpdisp5a.exe O4 - HKLM\..\Run: [MSConfig] C:\WINDOWS\PCHealth\HelpCtr\Binaries\MSConfig.exe /auto O4 - HKLM\..\RunServices: [WIN USB 2.0] usbsystem.exe O4 - HKLM\..\RunServices: [schedulingAgent] C:\WINDOWS\System32\mstask.exe O4 - HKCU\..\Run: [H/PC Connection Agent] "C:\Program Files\Microsoft ActiveSync\WCESCOMM.EXE" O4 - HKCU\..\Run: [spybotSD TeaTimer] C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe O4 - Startup: Audiosphere.lnk = C:\Program Files\AudioSphere\Audio.exe O4 - Startup: Eprompter.lnk = C:\WebMaster\Divers\ePrompter\ePrompter.exe O4 - Startup: MemTurbo.lnk = E:\Program Files\MemTurbo\memturbo.exe O4 - Global Startup: BTTray.lnk = ? O8 - Extra context menu item: &Point&&Go - C:\Program Files\Fichiers communs\Expert System\PGPlatform\PGPlatform.htm O8 - Extra context menu item: Chercher avec Copernic Agent - C:\WebMaster\Copernic Agent\Web\SearchExt.htm O8 - Extra context menu item: Convert link target to Adobe PDF - res://C:\Program Files\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll/AcroIECapture.html O8 - Extra context menu item: Convert link target to existing PDF - res://C:\Program Files\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll/AcroIEAppend.html O8 - Extra context menu item: Convert selected links to Adobe PDF - res://C:\Program Files\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll/AcroIECaptureSelLinks.html O8 - Extra context menu item: Convert selected links to existing PDF - res://C:\Program Files\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll/AcroIEAppendSelLinks.html O8 - Extra context menu item: Convert selection to Adobe PDF - res://C:\Program Files\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll/AcroIECapture.html O8 - Extra context menu item: Convert selection to existing PDF - res://C:\Program Files\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll/AcroIEAppend.html O8 - Extra context menu item: Convert to Adobe PDF - res://C:\Program Files\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll/AcroIECapture.html O8 - Extra context menu item: Convert to existing PDF - res://C:\Program Files\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll/AcroIEAppend.html O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office10\EXCEL.EXE/3000 O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~2\OFFICE11\EXCEL.EXE/3000 O8 - Extra context menu item: Easy-WebPrint Ajouter à la liste d'impressions - res://C:\Program Files\Canon\Easy-WebPrint\Resource.dll/RC_AddToList.html O8 - Extra context menu item: Easy-WebPrint Impression rapide - res://C:\Program Files\Canon\Easy-WebPrint\Resource.dll/RC_HSPrint.html O8 - Extra context menu item: Easy-WebPrint Imprimer - res://C:\Program Files\Canon\Easy-WebPrint\Resource.dll/RC_Print.html O8 - Extra context menu item: Easy-WebPrint Prévisualiser - res://C:\Program Files\Canon\Easy-WebPrint\Resource.dll/RC_Preview.html O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\WINDOWS\System32\msjava.dll O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\WINDOWS\System32\msjava.dll O9 - Extra button: SideFind - {10E42047-DEB9-4535-A118-B3F6EC39B807} - C:\Program Files\SideFind\sidefind.dll (file missing) O9 - Extra button: (no name) - {193B17B0-7C9F-4D5B-AEAB-8D3605EFC084} - C:\WEBMAS~1\COPERN~1\COPERN~1.EXE O9 - Extra 'Tools' menuitem: Démarrer Copernic Agent - {193B17B0-7C9F-4D5B-AEAB-8D3605EFC084} - C:\WEBMAS~1\COPERN~1\COPERN~1.EXE O9 - Extra button: Create Mobile Favorite - {2EAF5BB1-070F-11D3-9307-00C04FAE2D4F} - C:\Program Files\Microsoft ActiveSync\inetrepl.dll O9 - Extra button: (no name) - {2EAF5BB2-070F-11D3-9307-00C04FAE2D4F} - C:\Program Files\Microsoft ActiveSync\inetrepl.dll O9 - Extra 'Tools' menuitem: Create Mobile Favorite... - {2EAF5BB2-070F-11D3-9307-00C04FAE2D4F} - C:\Program Files\Microsoft ActiveSync\inetrepl.dll O9 - Extra button: Copernic Agent - {688DC797-DC11-46A7-9F1B-445F4F58CE6E} - C:\WEBMAS~1\COPERN~1\COPERN~1.EXE O9 - Extra button: Recherche - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\OFFICE11\REFIEBAR.DLL O9 - Extra button: Related - {c95fe080-8f5d-11d2-a20b-00aa003c157a} - C:\WINDOWS\web\related.htm O9 - Extra 'Tools' menuitem: Show &Related Links - {c95fe080-8f5d-11d2-a20b-00aa003c157a} - C:\WINDOWS\web\related.htm O10 - Hijacked Internet access by WebHancer O10 - Hijacked Internet access by WebHancer O10 - Hijacked Internet access by WebHancer O15 - Trusted Zone: *.media-motor.net O15 - Trusted Zone: *.musicmatch.com O15 - Trusted Zone: *.popuppers.com O15 - Trusted Zone: *.musicmatch.com (HKLM) O16 - DPF: {00000000-0000-0000-0000-000020030000} - http://www.advnt01.com/dialer/france_nos.exe O16 - DPF: {00000000-0000-0000-0000-000020040000} - http://207.234.185.217/ABoxInst_int4.exe O16 - DPF: {386A771C-E96A-421F-8BA7-32F1B706892F} (Installer Class) - http://www.xxxtoolbar.com/ist/softwares/v4.0/0006_cracks.cab O16 - DPF: {4418DD4D-7265-4C32-BC0A-3FDB3C2DA938} (Protecter Class) - http://www.xxxtoolbar.com/ist/softwares/v3...ect_regular.cab O16 - DPF: {9E98E84C-79E1-49C3-82EB-798FCD552EFB} (VacPro.internazionale_ver4) - http://advnt01.com/dialer/internazionale_ver4.CAB O17 - HKLM\System\CCS\Services\Tcpip\..\{38084775-25BF-48A2-9F1D-B66B98AD4BD7}: NameServer = 192.168.1.1 O18 - Protocol: ms-help - {314111C7-A502-11D2-BBCA-00C04F8EC294} - C:\Program Files\Fichiers communs\Microsoft Shared\Help\hxds.dll O18 - Filter: text/html - {4F7681E5-6CAF-478D-9CB8-4CA593BEE7FB} - (no file) O20 - Winlogon Notify: Themes - C:\WINDOWS\system32\fpro0393e.dll (file missing) O23 - Service: Adobe LM Service - Adobe Systems - C:\Program Files\Fichiers communs\Adobe Systems Shared\Service\Adobelmsvc.exe O23 - Service: AntiVir PersonalEdition Classic Scheduler (AntiVirScheduler) - Avira GmbH - C:\Program Files\AntiVir PersonalEdition Classic\sched.exe O23 - Service: AntiVir PersonalEdition Classic Guard (AntiVirService) - AVIRA GmbH - C:\Program Files\AntiVir PersonalEdition Classic\avguard.exe O23 - Service: Bluetooth Service (btwdins) - Unknown owner - C:\Program Files\WIDCOMM\Bluetooth Software\bin\btwdins.exe O23 - Service: Norton Unerase Protection (NProtectService) - Symantec Corporation - C:\PROGRA~1\NORTON~1\NORTON~2\NPROTECT.EXE O23 - Service: NVIDIA Driver Helper Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\System32\nvsvc32.exe O23 - Service: ScriptBlocking Service (SBService) - Symantec Corporation - C:\PROGRA~1\FICHIE~1\SYMANT~1\SCRIPT~1\SBServ.exe O23 - Service: z2 Remote2PC Server (z2 R2PC Server) - Unknown owner - C:\Program Files\z2 Remote2PC\R2PCServ.exe" -service (file missing) Merci

Moi aussi je vais manger pour prendre des forces.. Bon App. Je fais ce que tu demandes ensuite et poste le rapport. Merci

Sorry... J'ai oublié le log que voici. L2MFIX find log 032106 These are the registry keys present ********************************************************************************** Winlogon/notify: Windows Registry Editor Version 5.00 [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify] [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\crypt32chain] "Asynchronous"=dword:00000000 "Impersonate"=dword:00000000 "DllName"=hex(2):63,00,72,00,79,00,70,00,74,00,33,00,32,00,2e,00,64,00,6c,00,\ 6c,00,00,00 "Logoff"="ChainWlxLogoffEvent" [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\cryptnet] "Asynchronous"=dword:00000000 "Impersonate"=dword:00000000 "DllName"=hex(2):63,00,72,00,79,00,70,00,74,00,6e,00,65,00,74,00,2e,00,64,00,\ 6c,00,6c,00,00,00 "Logoff"="CryptnetWlxLogoffEvent" [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\cscdll] "DLLName"="cscdll.dll" "Logon"="WinlogonLogonEvent" "Logoff"="WinlogonLogoffEvent" "ScreenSaver"="WinlogonScreenSaverEvent" "Startup"="WinlogonStartupEvent" "Shutdown"="WinlogonShutdownEvent" "StartShell"="WinlogonStartShellEvent" "Impersonate"=dword:00000000 "Asynchronous"=dword:00000001 [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\ScCertProp] "DLLName"="wlnotify.dll" "Logon"="SCardStartCertProp" "Logoff"="SCardStopCertProp" "Lock"="SCardSuspendCertProp" "Unlock"="SCardResumeCertProp" "Enabled"=dword:00000001 "Impersonate"=dword:00000001 "Asynchronous"=dword:00000001 [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\Schedule] "Asynchronous"=dword:00000000 "DllName"=hex(2):77,00,6c,00,6e,00,6f,00,74,00,69,00,66,00,79,00,2e,00,64,00,\ 6c,00,6c,00,00,00 "Impersonate"=dword:00000000 "StartShell"="SchedStartShell" "Logoff"="SchedEventLogOff" [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\sclgntfy] "Logoff"="WLEventLogoff" "Impersonate"=dword:00000000 "Asynchronous"=dword:00000001 "DllName"=hex(2):73,00,63,00,6c,00,67,00,6e,00,74,00,66,00,79,00,2e,00,64,00,\ 6c,00,6c,00,00,00 [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\SensLogn] "DLLName"="WlNotify.dll" "Lock"="SensLockEvent" "Logon"="SensLogonEvent" "Logoff"="SensLogoffEvent" "Safe"=dword:00000001 "MaxWait"=dword:00000258 "StartScreenSaver"="SensStartScreenSaverEvent" "StopScreenSaver"="SensStopScreenSaverEvent" "Startup"="SensStartupEvent" "Shutdown"="SensShutdownEvent" "StartShell"="SensStartShellEvent" "PostShell"="SensPostShellEvent" "Disconnect"="SensDisconnectEvent" "Reconnect"="SensReconnectEvent" "Unlock"="SensUnlockEvent" "Impersonate"=dword:00000001 "Asynchronous"=dword:00000001 [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\termsrv] "Asynchronous"=dword:00000000 "DllName"=hex(2):77,00,6c,00,6e,00,6f,00,74,00,69,00,66,00,79,00,2e,00,64,00,\ 6c,00,6c,00,00,00 "Impersonate"=dword:00000000 "Logoff"="TSEventLogoff" "Logon"="TSEventLogon" "PostShell"="TSEventPostShell" "Shutdown"="TSEventShutdown" "StartShell"="TSEventStartShell" "Startup"="TSEventStartup" "MaxWait"=dword:00000258 "Reconnect"="TSEventReconnect" "Disconnect"="TSEventDisconnect" [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\Themes] "Asynchronous"=dword:00000000 "DllName"="C:\\WINDOWS\\system32\\fpro0393e.dll" "Impersonate"=dword:00000000 "Logon"="WinLogon" "Logoff"="WinLogoff" "Shutdown"="WinShutdown" [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\wlballoon] "DLLName"="wlnotify.dll" "Logon"="RegisterTicketExpiredNotificationEvent" "Logoff"="UnregisterTicketExpiredNotificationEvent" "Impersonate"=dword:00000001 "Asynchronous"=dword:00000001 ********************************************************************************** useragent: Windows Registry Editor Version 5.00 [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\User Agent\Post Platform] "{CCC9F9A7-44C1-BCA5-CA74-2F99303B862F}"="" ********************************************************************************** Shell Extension key: Windows Registry Editor Version 5.00 [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved] "{00022613-0000-0000-C000-000000000046}"="Feuille de propri‚t‚s du fichier multim‚dia" "{176d6597-26d3-11d1-b350-080036a75b03}"="Gestion de scanneur ICM" "{1F2E5C40-9550-11CE-99D2-00AA006E086C}"="Page de s‚curit‚ NTFS" "{3EA48300-8CF6-101B-84FB-666CCB9BCD32}"="Page des propri‚t‚s de OLE DocFile" "{40dd6e20-7c17-11ce-a804-00aa003ca9f6}"="Extensions de l'environnement pour le partage" "{41E300E0-78B6-11ce-849B-444553540000}"="PlusPack CPL Extension" "{42071712-76d4-11d1-8b24-00a0c9068ff3}"="Extension Affichage Carte du Panneau de configuration" "{42071713-76d4-11d1-8b24-00a0c9068ff3}"="Extension Affichage ?cran du Panneau de configuration" "{42071714-76d4-11d1-8b24-00a0c9068ff3}"="Extension Affichage Panorama du Panneau de configuration" "{4E40F770-369C-11d0-8922-00A024AB2DBB}"="Page de s‚curit‚ DS" "{513D916F-2A8E-4F51-AEAB-0CBC76FB1AF8}"="Page de compatibilit‚" "{56117100-C0CD-101B-81E2-00AA004AE837}"="Gestionnaire de donn‚es endommag‚es de l'environnement" "{59099400-57FF-11CE-BD94-0020AF85B590}"="Extension copie de disquette" "{59be4990-f85c-11ce-aff7-00aa003ca9f6}"="Extensions de l'environnement pour les objets r‚seau de Microsoft Windows" "{5DB2625A-54DF-11D0-B6C4-0800091AA605}"="Gestion d'‚cran ICM" "{675F097E-4C4D-11D0-B6C1-0800091AA605}"="Gestion d'imprimante ICM" "{764BF0E1-F219-11ce-972D-00AA00A14F56}"="Extensions de l'environnement de compression de fichiers" "{77597368-7b15-11d0-a0c2-080036af3f03}"="Extension de l'environnement d'imprimante Web" "{7988B573-EC89-11cf-9C00-00AA00A14F56}"="Disk Quota UI" "{853FE2B1-B769-11d0-9C4E-00C04FB6C6FA}"="Menu contextuel de cryptage" "{85BBD920-42A0-1069-A2E4-08002B30309D}"="Porte-documents" "{88895560-9AA2-1069-930E-00AA0030EBC8}"="Extension ic“ne HyperTerminal" "{BD84B380-8CA2-1069-AB1D-08000948F534}"="Fonts" "{DBCE2480-C732-101B-BE72-BA78E9AD5B27}"="Profil ICC" "{F37C5810-4D3F-11d0-B4BF-00AA00BBB723}"="Page de s‚curit‚ des imprimantes" "{f81e9010-6ea4-11ce-a7ff-00aa003ca9f6}"="Extensions de l'environnement pour le partage" "{f92e8c40-3d33-11d2-b1aa-080036a75b03}"="Display TroubleShoot CPL Extension" "{7444C717-39BF-11D1-8CD9-00C04FC29D45}"="Extension de cryptographie PKO" "{7444C719-39BF-11D1-8CD9-00C04FC29D45}"="Extension de cryptographie Sign" "{7007ACC7-3202-11D1-AAD2-00805FC1270E}"="Connexions r‚seau" "{992CFFA0-F557-101A-88EC-00DD010CCC48}"="Connexions r‚seau" "{E211B736-43FD-11D1-9EFB-0000F8757FCD}"="&Scanneurs et appareils photo" "{FB0C9C8A-6C50-11D1-9F1D-0000F8757FCD}"="&Scanneurs et appareils photo" "{905667aa-acd6-11d2-8080-00805f6596d2}"="&Scanneurs et appareils photo" "{3F953603-1008-4f6e-A73A-04AAC7A992F1}"="&Scanneurs et appareils photo" "{83bbcbf3-b28a-4919-a5aa-73027445d672}"="&Scanneurs et appareils photo" "{F0152790-D56E-4445-850E-4F3117DB740C}"="Remote Sessions CPL Extension" "{5F327514-6C5E-4d60-8F16-D07FA08A78ED}"="Extension de la page de propri‚t‚s de mise … jour automatique" "{60254CA5-953B-11CF-8C96-00AA00B8708C}"="Extensions de l'interpr‚teur de commandes pour l'environnement d'ex‚cution de scripts Windows" "{2206CDB2-19C1-11D1-89E0-00C04FD7A829}"="Microsoft ??? ???" "{DD2110F0-9EEF-11cf-8D8E-00AA0060F5BF}"="Tasks Folder Icon Handler" "{797F1E90-9EDD-11cf-8D8E-00AA0060F5BF}"="Tasks Folder Shell Extension" "{D6277990-4C6A-11CF-8D87-00AA0060F5BF}"="Tƒches planifi‚es" "{0DF44EAA-FF21-4412-828E-260A8728E7F1}"="Barre des tƒches et menu D‚marrer" "{2559a1f0-21d7-11d4-bdaf-00c04f60b9f0}"="Rechercher" "{2559a1f1-21d7-11d4-bdaf-00c04f60b9f0}"="Aide et support" "{2559a1f2-21d7-11d4-bdaf-00c04f60b9f0}"="Aide et support" "{2559a1f3-21d7-11d4-bdaf-00c04f60b9f0}"="Ex‚cuter..." "{2559a1f4-21d7-11d4-bdaf-00c04f60b9f0}"="Internet" "{2559a1f5-21d7-11d4-bdaf-00c04f60b9f0}"="Courrier ‚lectronique" "{D20EA4E1-3957-11d2-A40B-0C5020524152}"="Polices" "{D20EA4E1-3957-11d2-A40B-0C5020524153}"="Outils d'administration" "{875CB1A1-0F29-45de-A1AE-CFB4950D0B78}"="Audio Media Properties Handler" "{40C3D757-D6E4-4b49-BB41-0E5BBEA28817}"="Video Media Properties Handler" "{E4B29F9D-D390-480b-92FD-7DDB47101D71}"="Wav Properties Handler" "{87D62D94-71B3-4b9a-9489-5FE6850DC73E}"="Avi Properties Handler" "{A6FD9E45-6E44-43f9-8644-08598F5A74D9}"="Midi Properties Handler" "{c5a40261-cd64-4ccf-84cb-c394da41d590}"="Video Thumbnail Extractor" "{5E6AB780-7743-11CF-A12B-00AA004AE837}"="Barre d'outils Internet Microsoft" "{22BF0C20-6DA7-11D0-B373-00A0C9034938}"="?tat du t‚l‚chargement" "{91EA3F8B-C99B-11d0-9815-00C04FD91972}"="Dossier Bureau ‚tendu" "{6413BA2C-B461-11d1-A18A-080036B11A03}"="Dossier du shell augment‚" "{F61FFEC1-754F-11d0-80CA-00AA005B4383}"="BandProxy" "{7BA4C742-9E81-11CF-99D3-00AA004AE837}"="Bande du navigateur Microsoft" "{30D02401-6A81-11d0-8274-00C04FD5AE38}"="Bande de recherche" "{32683183-48a0-441b-a342-7c2a440a9478}"="Media Band" "{169A0691-8DF9-11d1-A1C4-00C04FD75D13}"="Volet int‚gr‚ de recherche" "{07798131-AF23-11d1-9111-00A0C98BA67D}"="Recherche Web" "{AF4F6510-F982-11d0-8595-00AA004CD6D8}"="Utilitaire des options de l'arborescence du Registre" "{01E04581-4EEE-11d0-BFE9-00AA005B4383}"="&Adresse" "{A08C11D2-A228-11d0-825B-00AA005B4383}"="BoŒte d'entr‚e de l'adresse" "{00BB2763-6A77-11D0-A535-00C04FD7D062}"="Saisie semi-automatique Microsoft" "{7376D660-C583-11d0-A3A5-00C04FD706EC}"="TridentImageExtractor" "{6756A641-DE71-11d0-831B-00AA005B4383}"="Liste de saisie semi-automatique MRU" "{6935DB93-21E8-4ccc-BEB9-9FE3C77A297A}"="Liste de saisie semi-automatique personnalis‚e MRU" "{7e653215-fa25-46bd-a339-34a2790f3cb7}"="Accessible" "{acf35015-526e-4230-9596-becbe19f0ac9}"="Barre de progrŠs auto-ouvrante" "{E0E11A09-5CB8-4B6C-8332-E00720A168F2}"="Analyseur de la barre d'adresses" "{00BB2764-6A77-11D0-A535-00C04FD7D062}"="Liste de saisie semi-automatique de l'historique Microsoft" "{03C036F1-A186-11D0-824A-00AA005B4383}"="Liste de saisie semi-automatique du dossier Shell Microsoft" "{00BB2765-6A77-11D0-A535-00C04FD7D062}"="Conteneur de la liste de saisie semi-automatique multiple Microsoft" "{ECD4FC4E-521C-11D0-B792-00A0C90312E1}"="Menu Site de bandes" "{3CCF8A41-5C85-11d0-9796-00AA00B90ADF}"="Shell DeskBarApp" "{ECD4FC4C-521C-11D0-B792-00A0C90312E1}"="Barre du Bureau" "{ECD4FC4D-521C-11D0-B792-00A0C90312E1}"="Shell Rebar BandSite" "{DD313E04-FEFF-11d1-8ECD-0000F87A470C}"="Assistance utilisateur" "{EF8AD2D1-AE36-11D1-B2D2-006097DF8C11}"="ParamŠtres du dossier global" "{EFA24E61-B078-11d0-89E4-00C04FC9E26E}"="Favorites Band" "{0A89A860-D7B1-11CE-8350-444553540000}"="Shell Automation Inproc Service" "{E7E4BC40-E76A-11CE-A9BB-00AA004AE837}"="Shell DocObject Viewer" "{A5E46E3A-8849-11D1-9D8C-00C04FC99D61}"="Microsoft Browser Architecture" "{FBF23B40-E3F0-101B-8488-00AA003E56F8}"="InternetShortcut" "{3C374A40-BAE4-11CF-BF7D-00AA006946EE}"="Microsoft Url History Service" "{FF393560-C2A7-11CF-BFF4-444553540000}"="Historique" "{7BD29E00-76C1-11CF-9DD0-00A0C9034933}"="Temporary Internet Files" "{7BD29E01-76C1-11CF-9DD0-00A0C9034933}"="Temporary Internet Files" "{CFBFAE00-17A6-11D0-99CB-00C04FD64497}"="Microsoft Url Search Hook" "{A2B0DD40-CC59-11d0-A3A5-00C04FD706EC}"="Image de d‚marrage de la Suite IE4" "{67EA19A0-CCEF-11d0-8024-00C04FD75D13}"="CDF Extension Copy Hook" "{131A6951-7F78-11D0-A979-00C04FD705A2}"="ISFBand OC" "{9461b922-3c5a-11d2-bf8b-00c04fb93661}"="Search Assistant OC" "{3DC7A020-0ACD-11CF-A9BB-00AA004AE837}"="Internet" "{871C5380-42A0-1069-A2EA-08002B30309D}"="Internet Name Space" "{EFA24E64-B078-11d0-89E4-00C04FC9E26E}"="Explorer Band" "{9E56BE60-C50F-11CF-9A2C-00A0C90A90CE}"="Sendmail service" "{9E56BE61-C50F-11CF-9A2C-00A0C90A90CE}"="Sendmail service" "{88C6C381-2E85-11D0-94DE-444553540000}"="Dossier ActiveX Cache" "{E6FB5E20-DE35-11CF-9C87-00AA005127ED}"="WebCheck" "{ABBE31D0-6DAE-11D0-BECA-00C04FD940BE}"="Subscription Mgr" "{F5175861-2688-11d0-9C5E-00AA00A45957}"="Dossier Inscription" "{08165EA0-E946-11CF-9C87-00AA005127ED}"="WebCheckWebCrawler" "{E3A8BDE6-ABCE-11d0-BC4B-00C04FD929DB}"="WebCheckChannelAgent" "{E8BB6DC0-6B4E-11d0-92DB-00A0C90C2BD7}"="TrayAgent" "{7D559C10-9FE9-11d0-93F7-00AA0059CE02}"="Code Download Agent" "{E6CC6978-6B6E-11D0-BECA-00C04FD940BE}"="ConnectionAgent" "{D8BD2030-6FC9-11D0-864F-00AA006809D9}"="PostAgent" "{7FC0B86E-5FA7-11d1-BC7C-00C04FD929DB}"="WebCheck SyncMgr Handler" "{352EC2B7-8B9A-11D1-B8AE-006008059382}"="Gestionnaire d'applications d'environnement" "{0B124F8F-91F0-11D1-B8B5-006008059382}"="?num‚rateur d'applications install‚es" "{CFCCC7A0-A282-11D1-9082-006008059382}"="Publication d'application Darwin" "{e84fda7c-1d6a-45f6-b725-cb260c236066}"="Shell Image Verbs" "{66e4e4fb-f385-4dd0-8d74-a2efd1bc6178}"="Shell Image Data Factory" "{3F30C968-480A-4C6C-862D-EFC0897BB84B}"="Extracteur de miniatures de fichier + GDI" "{9DBD2C50-62AD-11d0-B806-00C04FD706EC}"="Gestionnaire de miniatures - Informations de r‚sum‚ (DOCFILES)" "{EAB841A0-9550-11cf-8C16-00805F1408F3}"="Extracteur de miniatures HTML" "{eb9b1153-3b57-4e68-959a-a3266bc3d7fe}"="Shell Image Property Handler" "{CC6EEFFB-43F6-46c5-9619-51D571967F7D}"="Assistant Publication de sites Web" "{add36aa8-751a-4579-a266-d66f5202ccbb}"="Commande d'impressions via le Web" "{6b33163c-76a5-4b6c-bf21-45de9cd503a1}"="Objet Assistant de publication Shell" "{58f1f272-9240-4f51-b6d4-fd63d1618591}"="Assistant Obtenir une identit‚ Passport" "{7A9D77BD-5403-11d2-8785-2E0420524153}"="Comptes d'utilisateurs" "{BD472F60-27FA-11cf-B8B4-444553540000}"="Compressed (zipped) Folder Right Drag Handler" "{888DCA60-FC0A-11CF-8F0F-00C04FD7D062}"="Compressed (zipped) Folder SendTo Target" "{f39a0dc0-9cc8-11d0-a599-00c04fd64433}"="Fichier de chaŒne" "{f3aa0dc0-9cc8-11d0-a599-00c04fd64434}"="Raccourci de chaŒne" "{f3ba0dc0-9cc8-11d0-a599-00c04fd64435}"="Channel Handler Object" "{f3da0dc0-9cc8-11d0-a599-00c04fd64437}"="Channel Menu" "{f3ea0dc0-9cc8-11d0-a599-00c04fd64438}"="Channel Properties" "{63da6ec0-2e98-11cf-8d82-444553540000}"="FTP Folders Webview" "{883373C3-BF89-11D1-BE35-080036B11A03}"="Microsoft DocProp Shell Ext" "{A9CF0EAE-901A-4739-A481-E35B73E47F6D}"="Microsoft DocProp Inplace Edit Box Control" "{8EE97210-FD1F-4B19-91DA-67914005F020}"="Microsoft DocProp Inplace ML Edit Box Control" "{0EEA25CC-4362-4A12-850B-86EE61B0D3EB}"="Microsoft DocProp Inplace Droplist Combo Control" "{6A205B57-2567-4A2C-B881-F787FAB579A3}"="Microsoft DocProp Inplace Calendar Control" "{28F8A4AC-BBB3-4D9B-B177-82BFC914FA33}"="Microsoft DocProp Inplace Time Control" "{8A23E65E-31C2-11d0-891C-00A024AB2DBB}"="Directory Query UI" "{9E51E0D0-6E0F-11d2-9601-00C04FA31A86}"="Shell properties for a DS object" "{163FDC20-2ABC-11d0-88F0-00A024AB2DBB}"="Directory Object Find" "{F020E586-5264-11d1-A532-0000F8757D7E}"="Directory Start/Search Find" "{0D45D530-764B-11d0-A1CA-00AA00C16E65}"="Directory Property UI" "{62AE1F9A-126A-11D0-A14B-0800361B1103}"="Directory Context Menu Verbs" "{ECF03A33-103D-11d2-854D-006008059367}"="MyDocs Copy Hook" "{ECF03A32-103D-11d2-854D-006008059367}"="MyDocs Drop Target" "{4a7ded0a-ad25-11d0-98a8-0800361b1103}"="MyDocs Properties" "{750fdf0e-2a26-11d1-a3ea-080036587f03}"="Offline Files Menu" "{10CFC467-4392-11d2-8DB4-00C04FA31A66}"="Offline Files Folder Options" "{AFDB1F70-2A4C-11d2-9039-00C04F8EEB3E}"="Dossier Fichiers hors connexion" "{143A62C8-C33B-11D1-84FE-00C04FA34A14}"="Microsoft Agent Character Property Sheet Handler" "{ECCDF543-45CC-11CE-B9BF-0080C87CDBA6}"="DfsShell" "{60fd46de-f830-4894-a628-6fa81bc0190d}"="%DESC_PublishDropTarget%" "{7A80E4A8-8005-11D2-BCF8-00C04F72C717}"="MMC Icon Handler" "{0CD7A5C0-9F37-11CE-AE65-08002B2E1262}"=".CAB file viewer" "{32714800-2E5F-11d0-8B85-00AA0044F941}"="Des &personnes..." "{8DD448E6-C188-4aed-AF92-44956194EB1F}"="Windows Media Player Play as Playlist Context Menu Handler" "{CE3FB1D1-02AE-4a5f-A6E9-D9F1B4073E6C}"="Windows Media Player Burn Audio CD Context Menu Handler" "{F1B9284F-E9DC-4e68-9D7E-42362A59F0FD}"="Windows Media Player Add to Playlist Context Menu Handler" "{BDEADF00-C265-11D0-BCED-00A0C90AB50F}"="Web Folders" "{42042206-2D85-11D3-8CFF-005004838597}"="Microsoft Office HTML Icon Handler" "{1CDB2949-8F65-4355-8456-263E7C208A5D}"="Explorateur de Bureau" "{1E9B04FB-F9E5-4718-997B-B8DA88302A47}"="Desktop Explorer Menu" "{604C5810-D0CC-11D2-955F-00C04F79ED8A}"="CIEL SA In-File System" "{EDB0E980-90BD-11D4-8599-0008C7D3B6F8}"="Eudora's Shell Extension" "{1D2680C9-0E2A-469d-B787-065558BC7D43}"="Fusion Cache" "{8FF5E183-ABDE-46EB-B09E-D2AAB95CABE3}"="SnagIt" "Zinio Shell Extension"="{AC0B5D2E-B691-4E12-A4F9-CA88492579A2}" "Zinio Magazine Column Provider"="{A9AACA72-1C51-4F84-804D-90EDBA0D58F4}" "Zinio Shell Extension UI Object"="{091D66CD-24B7-4210-A790-78463B1B3D7A}" "{AC0B5D2E-B691-4E12-A4F9-CA88492579A2}"="Zinio Shell Extension" "{A9AACA72-1C51-4F84-804D-90EDBA0D58F4}"="Zinio Magazine Column Provider" "{091D66CD-24B7-4210-A790-78463B1B3D7A}"="Zinio Shell Extension UI Object" "{5a61f7a0-cde1-11cf-9113-00aa00425c62}"="IIS Shell Extension" "{ED65AB21-B24F-11d3-BA80-00C0CA16AA37}"="Mobile" "{ED65AB22-B24F-11d3-BA80-00C0CA16AA37}"="Mobile ContextMenuHandler" "{ED65AB23-B24F-11d3-BA80-00C0CA16AA37}"="Mobile PropertySheetHandler" "{AB314ECE-27C9-4703-8891-38914A228711}"="Liquid Surf Explore Hook" "{CC1DC91A-F90E-4906-B40E-FA1811DE4EFF}"="Liquid Surf View" "{B9F633F6-EA44-45F4-91EB-FABFC65A0634}"="&Liquid Surf" "{FED7043D-346A-414D-ACD7-550D052499A7}"="dBpowerAMP Music Converter 1" "{2C49B5D0-ACE7-4D17-9DF0-A254A6C5A0C5}"="dBpowerAMP Music Converter" "{00020D75-0000-0000-C000-000000000046}"="Microsoft Office Outlook Desktop Icon Handler" "{0006F045-0000-0000-C000-000000000046}"="Microsoft Office Outlook Custom Icon Handler" "{E0D79304-84BE-11CE-9641-444553540000}"="WinZip" "{E0D79305-84BE-11CE-9641-444553540000}"="WinZip" "{E0D79306-84BE-11CE-9641-444553540000}"="WinZip" "{E0D79307-84BE-11CE-9641-444553540000}"="WinZip" "{32020A01-506E-484D-A2A8-BE3CF17601C3}"="AlcoholShellEx" @="" "{6af09ec9-b429-11d4-a1fb-0090960218cb}"="My Bluetooth Places" "{F0CB00CD-5A07-4D91-97F5-A8C92CDA93E4}"="Shell Extensions for RealOne Player" "{640167b4-59b0-47a6-b335-a6b3c0695aea}"="Portable Media Devices" "{cc86590a-b60a-48e6-996b-41d25ed39a1e}"="Portable Media Devices Menu" "{D25B2CAB-8A9A-4517-A9B2-CB5F68A5A802}"="Adobe.Acrobat.ContextMenu" "{8D1636FD-CA49-4B4E-90E4-0A20E03A15E8}"="jetAudio" "{472083B0-C522-11CF-8763-00608CC02F24}"="avast" "{B9E1D2CB-CCFF-4AA6-9579-D7A4754030EF}"="iTunes" "{D9F81151-62CA-4858-B45E-82B3EC41A549}"="RExpCtxU" "{B327765E-D724-4347-8B16-78AE18552FC3}"="NeroDigitalIconHandler" "{7F1CF152-04F8-453A-B34C-E609530A9DC8}"="NeroDigitalPropSheetHandler" "{967B2D40-8B7D-4127-9049-61EA0C2C6DCE}"="PowerISO" "{0D0E8722-99F1-4298-A6C5-4A5962D00A96}"="" "{84496282-7C79-45A0-A288-02099D8A9064}"="" "{45AC2688-0253-4ED8-97DE-B5370FA7D48A}"="Shell Extension for Malware scanning" ********************************************************************************** HKEY ROOT CLASSIDS: Windows Registry Editor Version 5.00 [HKEY_CLASSES_ROOT\CLSID\{0D0E8722-99F1-4298-A6C5-4A5962D00A96}] @="" "IDEx"="ADDR" [HKEY_CLASSES_ROOT\CLSID\{0D0E8722-99F1-4298-A6C5-4A5962D00A96}\Implemented Categories] @="" [HKEY_CLASSES_ROOT\CLSID\{0D0E8722-99F1-4298-A6C5-4A5962D00A96}\Implemented Categories\{00021492-0000-0000-C000-000000000046}] @="" [HKEY_CLASSES_ROOT\CLSID\{0D0E8722-99F1-4298-A6C5-4A5962D00A96}\InprocServer32] @="C:\\WINDOWS\\system32\\Ixcinerator.dll" "ThreadingModel"="Apartment" Windows Registry Editor Version 5.00 [HKEY_CLASSES_ROOT\CLSID\{84496282-7C79-45A0-A288-02099D8A9064}] @="" [HKEY_CLASSES_ROOT\CLSID\{84496282-7C79-45A0-A288-02099D8A9064}\Implemented Categories] @="" [HKEY_CLASSES_ROOT\CLSID\{84496282-7C79-45A0-A288-02099D8A9064}\Implemented Categories\{00021492-0000-0000-C000-000000000046}] @="" [HKEY_CLASSES_ROOT\CLSID\{84496282-7C79-45A0-A288-02099D8A9064}\InprocServer32] @="C:\\WINDOWS\\system32\\hfwsched.dll" "ThreadingModel"="Apartment" ********************************************************************************** Files Found are not all bad files: C:\WINDOWS\SYSTEM32\ agctres.dll Tue 18 Apr 2006 16:31:10 ..S.R 235 287 229,77 K atmtd.dll Sat 15 Apr 2006 22:35:20 A.... 687 592 671,48 K bassmod.dll Wed 22 Feb 2006 19:24:46 A.... 34 308 33,50 K fpnq03~1.dll Wed 19 Apr 2006 17:20:50 ..S.R 235 718 230,19 K fpro03~1.dll Wed 19 Apr 2006 8:02:26 ..S.R 235 718 230,19 K haspvdd.dll Wed 25 Jan 2006 23:09:58 A.... 6 656 6,50 K hfwsched.dll Wed 19 Apr 2006 17:22:40 ..S.R 235 718 230,19 K ieign32.dll Tue 18 Apr 2006 14:18:18 ..S.R 234 272 228,78 K incine~1.dll Thu 2 Feb 2006 19:57:34 A.... 1 211 904 1,15 M mv6ol9~1.dll Tue 18 Apr 2006 20:54:18 ..S.R 235 287 229,77 K ucrsvpia.dll Mon 17 Apr 2006 21:15:08 ..... 234 272 228,78 K w0043a4c.dll Tue 18 Apr 2006 14:20:32 A.... 51 712 50,50 K 12 items found: 12 files (6 H/S), 0 directories. Total of file sizes: 3 638 444 bytes 3,47 M Locate .tmp files: C:\WINDOWS\SYSTEM32\ perfst~1.tmp Tue 4 Apr 2006 20:35:28 A.... 3 644 3,56 K 1 item found: 1 file, 0 directories. Total of file sizes: 3 644 bytes 3,56 K ********************************************************************************** Directory Listing of system files: Le volume dans le lecteur C s'appelle Win XP Le num‚ro de s‚rie du volume est 3843-B327 R‚pertoire de C:\WINDOWS\System32 19/04/2006 17:22 235ÿ718 hfwsched.dll 19/04/2006 17:20 235ÿ718 fpnq0355e.dll 19/04/2006 08:02 235ÿ718 fpro0393e.dll 18/04/2006 20:54 235ÿ287 mv6ol9j31.dll 18/04/2006 16:38 <REP> dllcache 18/04/2006 16:31 235ÿ287 agctres.dll 18/04/2006 14:18 234ÿ272 ieign32.dll 03/01/2006 08:20 <REP> Microsoft 27/03/2005 10:43 56 3593F6646A.sys 19/03/2005 22:47 56 23C2189600.sys 19/12/2004 20:01 5 AuxDrv32_g.dlx 13/12/2004 13:02 125 SftGrd.cfg 05/04/2001 19:43 94ÿ208 msstkprp.dll 21/11/2000 05:46 6ÿ656 stdftfr.dll 30/09/1999 19:21 166ÿ672 mstext35.dll 09/09/1999 22:06 168ÿ720 msltus35.dll 09/09/1999 22:06 252ÿ688 msexcl35.dll 07/06/1999 18:59 250ÿ128 mspdox35.dll 25/04/1999 17:00 287ÿ504 Msxbse35.dll 17 fichier(s) 2ÿ638ÿ818 octets 2 R‚p(s) 5ÿ032ÿ484ÿ864 octets libres Merci

Merci de ta reponse rapide. Voici ce que donne le rapport de L2mfix apres les manips indiquees...

Bonjour, J'ai notamment des pbs de connexion intempestive au site amaena.com et j'ai suivi la procedure que vous indiquez. Etant demuni je vous envoie le rapport HijackThis en vous remerciant de votre aide (j'ai laisse de nombreux residents y compris Antivir en fonctionnement...) Logfile of HijackThis v1.99.1 Scan saved at 17:39:22, on 19/04/2006 Platform: Windows XP SP1 (WinNT 5.01.2600) MSIE: Internet Explorer v6.00 SP1 (6.00.2800.1106) Running processes: C:\WINDOWS\System32\smss.exe C:\WINDOWS\system32\winlogon.exe C:\WINDOWS\system32\services.exe C:\WINDOWS\system32\lsass.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\System32\svchost.exe C:\WINDOWS\system32\spoolsv.exe C:\WINDOWS\system32\rundll32.exe C:\Program Files\AntiVir PersonalEdition Classic\sched.exe C:\Program Files\AntiVir PersonalEdition Classic\avguard.exe C:\Program Files\WIDCOMM\Bluetooth Software\bin\btwdins.exe C:\WINDOWS\System32\inetsrv\inetinfo.exe C:\WINDOWS\Explorer.EXE C:\PROGRA~1\NORTON~1\NORTON~2\NPROTECT.EXE C:\WINDOWS\System32\nvsvc32.exe C:\WINDOWS\System32\svchost.exe C:\Program Files\z2 Remote2PC\R2PCServ.exe C:\Program Files\Network\ipnetwork.exe C:\Program Files\AntiVir PersonalEdition Classic\avgnt.exe C:\Program Files\z2 Remote2PC\R2PCSH.exe C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\fpdisp5a.exe C:\Program Files\Microsoft ActiveSync\WCESCOMM.EXE C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe C:\Program Files\AudioSphere\Audio.exe C:\WebMaster\Divers\ePrompter\ePrompter.exe E:\Program Files\MemTurbo\memturbo.exe E:\Program Files\Total Commander 6.54\TOTALCMD.EXE c:\Program Files\HijackThis\HijackThis.exe R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = http://home.microsoft. R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = about: R1 - HKCU\Software\Microsoft\Internet Explorer\Search,SearchAssistant = about:blank R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant = http://searchbar.findthewebsiteyouneed.com R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *new-search.net*;*x-google.net* R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens R3 - URLSearchHook: (no name) - _{CFBFAE00-17A6-11D0-99CB-00C04FD64497} - (no file) R3 - URLSearchHook: (no name) - _{CC8C8F4F-F2E8-404B-A43D-5CC57876A008} - (no file) O1 - Hosts file is located at: C:\WINDOWS\nsdb\hosts O1 - Hosts: 82.179.166.192 new-search.net O1 - Hosts: 82.179.166.190 x-google.net O3 - Toolbar: Norton AntiVirus - {42CDD1BF-3FFB-4238-8AD1-7859DF00B1D6} - C:\Program Files\Norton SystemWorks\Norton Antivirus\NavShExt.dll O3 - Toolbar: SnagIt - {8FF5E183-ABDE-46EB-B09E-D2AAB95CABE3} - C:\Program Files\TechSmith\SnagIt 7\SnagItIEAddin.dll O3 - Toolbar: &Liquid Surf - {B9F633F6-EA44-45F4-91EB-FABFC65A0634} - C:\Program Files\LiquidSurf\sybil.dll O3 - Toolbar: Copernic Agent - {F2E259E8-0FC8-438C-A6E0-342DD80FA53E} - C:\WebMaster\Copernic Agent\CopernicAgentExt.dll O3 - Toolbar: Fast Search - {85E517D1-1B6B-4662-AF6E-4B9738091DCC} - C:\WINDOWS\System32\fsearchbar.dll O3 - Toolbar: &Radio - {8E718888-423F-11D2-876E-00A0C9082467} - C:\WINDOWS\System32\msdxm.ocx O3 - Toolbar: Adobe PDF - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll O3 - Toolbar: Zango Toolbar - {EA0D26BD-9029-431A-86E0-83152D67828A} - C:\Program Files\Zango Programs\Zango Toolbar\ZangoTB.dll O3 - Toolbar: Toolbar888 - {77FBF9B8-1D37-4FF2-9CED-192D8E3ABA6F} - C:\Program Files\Toolbar888\ToolBar888.dll O4 - HKLM\..\Run: [WIN USB 2.0] usbsystem.exe O4 - HKLM\..\Run: [ipNetwork] C:\Program Files\Network\ipnetwork.exe O4 - HKLM\..\Run: [avgnt] "C:\Program Files\AntiVir PersonalEdition Classic\avgnt.exe" /min O4 - HKLM\..\Run: [z2 R2PC Server Helper] "C:\Program Files\z2 Remote2PC\R2PCSH.exe" O4 - HKLM\..\Run: [FinePrint Dispatcher v5] C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\fpdisp5a.exe O4 - HKLM\..\Run: [MSConfig] C:\WINDOWS\PCHealth\HelpCtr\Binaries\MSConfig.exe /auto O4 - HKLM\..\RunServices: [WIN USB 2.0] usbsystem.exe O4 - HKLM\..\RunServices: [schedulingAgent] C:\WINDOWS\System32\mstask.exe O4 - HKCU\..\Run: [H/PC Connection Agent] "C:\Program Files\Microsoft ActiveSync\WCESCOMM.EXE" O4 - HKCU\..\Run: [spybotSD TeaTimer] C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe O4 - Startup: Audiosphere.lnk = C:\Program Files\AudioSphere\Audio.exe O4 - Startup: Eprompter.lnk = C:\WebMaster\Divers\ePrompter\ePrompter.exe O4 - Startup: MemTurbo.lnk = E:\Program Files\MemTurbo\memturbo.exe O4 - Global Startup: BTTray.lnk = ? O8 - Extra context menu item: &Point&&Go - C:\Program Files\Fichiers communs\Expert System\PGPlatform\PGPlatform.htm O8 - Extra context menu item: Chercher avec Copernic Agent - C:\WebMaster\Copernic Agent\Web\SearchExt.htm O8 - Extra context menu item: Convert link target to Adobe PDF - res://C:\Program Files\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll/AcroIECapture.html O8 - Extra context menu item: Convert link target to existing PDF - res://C:\Program Files\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll/AcroIEAppend.html O8 - Extra context menu item: Convert selected links to Adobe PDF - res://C:\Program Files\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll/AcroIECaptureSelLinks.html O8 - Extra context menu item: Convert selected links to existing PDF - res://C:\Program Files\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll/AcroIEAppendSelLinks.html O8 - Extra context menu item: Convert selection to Adobe PDF - res://C:\Program Files\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll/AcroIECapture.html O8 - Extra context menu item: Convert selection to existing PDF - res://C:\Program Files\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll/AcroIEAppend.html O8 - Extra context menu item: Convert to Adobe PDF - res://C:\Program Files\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll/AcroIECapture.html O8 - Extra context menu item: Convert to existing PDF - res://C:\Program Files\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll/AcroIEAppend.html O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office10\EXCEL.EXE/3000 O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~2\OFFICE11\EXCEL.EXE/3000 O8 - Extra context menu item: Easy-WebPrint Ajouter à la liste d'impressions - res://C:\Program Files\Canon\Easy-WebPrint\Resource.dll/RC_AddToList.html O8 - Extra context menu item: Easy-WebPrint Impression rapide - res://C:\Program Files\Canon\Easy-WebPrint\Resource.dll/RC_HSPrint.html O8 - Extra context menu item: Easy-WebPrint Imprimer - res://C:\Program Files\Canon\Easy-WebPrint\Resource.dll/RC_Print.html O8 - Extra context menu item: Easy-WebPrint Prévisualiser - res://C:\Program Files\Canon\Easy-WebPrint\Resource.dll/RC_Preview.html O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\WINDOWS\System32\msjava.dll O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\WINDOWS\System32\msjava.dll O9 - Extra button: SideFind - {10E42047-DEB9-4535-A118-B3F6EC39B807} - C:\Program Files\SideFind\sidefind.dll (file missing) O9 - Extra button: (no name) - {193B17B0-7C9F-4D5B-AEAB-8D3605EFC084} - C:\WEBMAS~1\COPERN~1\COPERN~1.EXE O9 - Extra 'Tools' menuitem: Démarrer Copernic Agent - {193B17B0-7C9F-4D5B-AEAB-8D3605EFC084} - C:\WEBMAS~1\COPERN~1\COPERN~1.EXE O9 - Extra button: Create Mobile Favorite - {2EAF5BB1-070F-11D3-9307-00C04FAE2D4F} - C:\Program Files\Microsoft ActiveSync\inetrepl.dll O9 - Extra button: (no name) - {2EAF5BB2-070F-11D3-9307-00C04FAE2D4F} - C:\Program Files\Microsoft ActiveSync\inetrepl.dll O9 - Extra 'Tools' menuitem: Create Mobile Favorite... - {2EAF5BB2-070F-11D3-9307-00C04FAE2D4F} - C:\Program Files\Microsoft ActiveSync\inetrepl.dll O9 - Extra button: Copernic Agent - {688DC797-DC11-46A7-9F1B-445F4F58CE6E} - C:\WEBMAS~1\COPERN~1\COPERN~1.EXE O9 - Extra button: Recherche - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\OFFICE11\REFIEBAR.DLL O9 - Extra button: Related - {c95fe080-8f5d-11d2-a20b-00aa003c157a} - C:\WINDOWS\web\related.htm O9 - Extra 'Tools' menuitem: Show &Related Links - {c95fe080-8f5d-11d2-a20b-00aa003c157a} - C:\WINDOWS\web\related.htm O10 - Hijacked Internet access by WebHancer O10 - Hijacked Internet access by WebHancer O10 - Hijacked Internet access by WebHancer O15 - Trusted Zone: *.media-motor.net O15 - Trusted Zone: *.musicmatch.com O15 - Trusted Zone: *.popuppers.com O15 - Trusted Zone: *.musicmatch.com (HKLM) O16 - DPF: {00000000-0000-0000-0000-000020030000} - http://www.advnt01.com/dialer/france_nos.exe O16 - DPF: {00000000-0000-0000-0000-000020040000} - http://207.234.185.217/ABoxInst_int4.exe O16 - DPF: {386A771C-E96A-421F-8BA7-32F1B706892F} (Installer Class) - http://www.xxxtoolbar.com/ist/softwares/v4.0/0006_cracks.cab O16 - DPF: {4418DD4D-7265-4C32-BC0A-3FDB3C2DA938} (Protecter Class) - http://www.xxxtoolbar.com/ist/softwares/v3...ect_regular.cab O16 - DPF: {9E98E84C-79E1-49C3-82EB-798FCD552EFB} (VacPro.internazionale_ver4) - http://advnt01.com/dialer/internazionale_ver4.CAB O17 - HKLM\System\CCS\Services\Tcpip\..\{38084775-25BF-48A2-9F1D-B66B98AD4BD7}: NameServer = 192.168.1.1 O18 - Protocol: ms-help - {314111C7-A502-11D2-BBCA-00C04F8EC294} - C:\Program Files\Fichiers communs\Microsoft Shared\Help\hxds.dll O18 - Filter: text/html - {4F7681E5-6CAF-478D-9CB8-4CA593BEE7FB} - (no file) O20 - Winlogon Notify: Themes - C:\WINDOWS\system32\fpro0393e.dll O23 - Service: AntiVir PersonalEdition Classic Scheduler (AntiVirScheduler) - Avira GmbH - C:\Program Files\AntiVir PersonalEdition Classic\sched.exe O23 - Service: AntiVir PersonalEdition Classic Guard (AntiVirService) - AVIRA GmbH - C:\Program Files\AntiVir PersonalEdition Classic\avguard.exe O23 - Service: Bluetooth Service (btwdins) - Unknown owner - C:\Program Files\WIDCOMM\Bluetooth Software\bin\btwdins.exe O23 - Service: Norton Unerase Protection (NProtectService) - Symantec Corporation - C:\PROGRA~1\NORTON~1\NORTON~2\NPROTECT.EXE O23 - Service: NVIDIA Driver Helper Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\System32\nvsvc32.exe O23 - Service: ScriptBlocking Service (SBService) - Symantec Corporation - C:\PROGRA~1\FICHIE~1\SYMANT~1\SCRIPT~1\SBServ.exe O23 - Service: z2 Remote2PC Server (z2 R2PC Server) - Unknown owner - C:\Program Files\z2 Remote2PC\R2PCServ.exe" -service (file missing) Merci