pecko14

Merci de me donner un coup de main Falkra. J'ai bien fait tout comme tu m'as dit et voici les rapports générés par RSIT. D'abord le rapport log : Logfile of random's system information tool 1.06 (written by random/random) Run by Pierrot at 2010-05-06 00:34:11 Microsoft Windows XP Édition familiale Service Pack 3 System drive C: has 8 GB (7%) free of 114 GB Total RAM: 510 MB (65% free) Logfile of Trend Micro HijackThis v2.0.2 Scan saved at 00:34:30, on 06/05/2010 Platform: Windows XP SP3 (WinNT 5.01.2600) MSIE: Internet Explorer v8.00 (8.00.6001.18702) Boot mode: Normal Running processes: C:\WINDOWS\System32\smss.exe C:\WINDOWS\system32\winlogon.exe C:\WINDOWS\system32\services.exe C:\WINDOWS\system32\lsass.exe C:\WINDOWS\system32\Ati2evxx.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\System32\svchost.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\Explorer.EXE C:\WINDOWS\system32\spoolsv.exe C:\Program Files\Avira\AntiVir Desktop\sched.exe C:\Program Files\Avira\AntiVir Desktop\avguard.exe C:\Program Files\TOSHIBA\Power Management\CeEPwrSvc.exe C:\Program Files\TOSHIBA\ConfigFree\CFSvcs.exe C:\WINDOWS\system32\DVDRAMSV.exe C:\Program Files\Java\jre6\bin\jqs.exe C:\WINDOWS\system32\svchost.exe C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe C:\Program Files\Apoint2K\Apoint.exe C:\Program Files\TOSHIBA\PadTouch\PadExe.exe C:\Program Files\TOSHIBA\Power Management\CePMTray.exe C:\Program Files\TOSHIBA\E-KEY\CeEKey.exe C:\Program Files\EzButton\EzButton.EXE C:\Program Files\TOSHIBA\TouchPad\TPTray.exe C:\WINDOWS\System32\ZoomingHook.exe C:\Program Files\TOSHIBA\Utilitaire de zoom TOSHIBA\SmoothView.exe C:\Program Files\TOSHIBA\ConfigFree\NDSTray.exe C:\WINDOWS\system32\dla\tfswctrl.exe C:\Program Files\Avira\AntiVir Desktop\avgnt.exe C:\Program Files\TOSHIBA\TOSCDSPD\toscdspd.exe C:\WINDOWS\system32\RAMASST.exe C:\Program Files\Apoint2K\Apntex.exe C:\WINDOWS\system32\wbem\wmiapsrv.exe C:\WINDOWS\System32\svchost.exe C:\Documents and Settings\Pierrot\Bureau\RSIT.exe C:\Program Files\Trend Micro\HijackThis\Pierrot.exe R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.google.fr/ R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157 R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896 R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896 R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://fr.msn.com/ R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Fichiers communs\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll O2 - BHO: DriveLetterAccess - {5CA3D70E-1895-11CF-8E15-001234567890} - C:\WINDOWS\system32\dla\tfswshx.dll O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll O2 - BHO: Java Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll O2 - BHO: JQSIEStartDetectorImpl - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll O4 - HKLM\..\Run: [ATIPTA] C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe O4 - HKLM\..\Run: [Apoint] C:\Program Files\Apoint2K\Apoint.exe O4 - HKLM\..\Run: [PadTouch] "C:\Program Files\TOSHIBA\PadTouch\PadExe.exe O4 - HKLM\..\Run: [CeEPOWER] C:\Program Files\TOSHIBA\Power Management\CePMTray.exe O4 - HKLM\..\Run: [CeEKEY] C:\Program Files\TOSHIBA\E-KEY\CeEKey.exe O4 - HKLM\..\Run: [EzButton] C:\Program Files\EzButton\EzButton.EXE O4 - HKLM\..\Run: [TPNF] C:\Program Files\TOSHIBA\TouchPad\TPTray.exe O4 - HKLM\..\Run: [ZoomingHook] c:\WINDOWS\System32\ZoomingHook.exe O4 - HKLM\..\Run: [smoothView] C:\Program Files\TOSHIBA\Utilitaire de zoom TOSHIBA\SmoothView.exe O4 - HKLM\..\Run: [NDSTray.exe] NDSTray.exe O4 - HKLM\..\Run: [dla] C:\WINDOWS\system32\dla\tfswctrl.exe O4 - HKLM\..\Run: [avgnt] "C:\Program Files\Avira\AntiVir Desktop\avgnt.exe" /min O4 - HKLM\..\Run: [KernelFaultCheck] %systemroot%\system32\dumprep 0 -k O4 - HKCU\..\Run: [TOSCDSPD] C:\Program Files\TOSHIBA\TOSCDSPD\toscdspd.exe O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE LOCAL') O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE RÉSEAU') O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM') O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user') O4 - Global Startup: RAMASST.lnk = C:\WINDOWS\system32\RAMASST.exe O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office10\EXCEL.EXE/3000 O9 - Extra button: Recherche - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\OFFICE11\REFIEBAR.DLL O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\FICHIE~1\Skype\SKYPE4~1.DLL O23 - Service: Avira AntiVir Planificateur (AntiVirSchedulerService) - Avira GmbH - C:\Program Files\Avira\AntiVir Desktop\sched.exe O23 - Service: Avira AntiVir Guard (AntiVirService) - Avira GmbH - C:\Program Files\Avira\AntiVir Desktop\avguard.exe O23 - Service: Ati HotKey Poller - Unknown owner - C:\WINDOWS\system32\Ati2evxx.exe O23 - Service: CeEPwrSvc - COMPAL ELECTRONIC INC. - C:\Program Files\TOSHIBA\Power Management\CeEPwrSvc.exe O23 - Service: ConfigFree Service (CFSvcs) - TOSHIBA CORPORATION - C:\Program Files\TOSHIBA\ConfigFree\CFSvcs.exe O23 - Service: DVD-RAM_Service - Matsushita Electric Industrial Co., Ltd. - C:\WINDOWS\system32\DVDRAMSV.exe O23 - Service: getPlus® Helper - NOS Microsystems Ltd. - C:\Program Files\NOS\bin\getPlus_HelperSvc.exe O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Fichiers communs\InstallShield\Driver\1050\Intel 32\IDriverT.exe O23 - Service: Java Quick Starter (JavaQuickStarterService) - Sun Microsystems, Inc. - C:\Program Files\Java\jre6\bin\jqs.exe -- End of file - 6212 bytes ======Registry dump====== [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}] Adobe PDF Link Helper - C:\Program Files\Fichiers communs\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2009-02-27 75128] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{5CA3D70E-1895-11CF-8E15-001234567890}] DriveLetterAccess - C:\WINDOWS\system32\dla\tfswshx.dll [2004-07-20 118842] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}] Programme d'aide de l'Assistant de connexion Windows Live - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2009-01-22 408448] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}] Java Plug-In 2 SSV Helper - C:\Program Files\Java\jre6\bin\jp2ssv.dll [2009-06-05 41368] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E7E6F031-17CE-4C07-BC86-EABFE594F69C}] JQSIEStartDetectorImpl Class - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll [2009-06-05 73728] [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run] "ATIPTA"=C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe [2004-06-10 339968] "Apoint"=C:\Program Files\Apoint2K\Apoint.exe [2003-10-30 192512] "PadTouch"=C:\Program Files\TOSHIBA\PadTouch\PadExe.exe [2004-02-12 1019904] "CeEPOWER"=C:\Program Files\TOSHIBA\Power Management\CePMTray.exe [2004-08-18 135168] "CeEKEY"=C:\Program Files\TOSHIBA\E-KEY\CeEKey.exe [2004-08-06 643072] "EzButton"=C:\Program Files\EzButton\EzButton.EXE [2004-07-07 712704] "TPNF"=C:\Program Files\TOSHIBA\TouchPad\TPTray.exe [2004-07-28 53248] "ZoomingHook"=c:\WINDOWS\System32\ZoomingHook.exe [2004-07-14 24576] "SmoothView"=C:\Program Files\TOSHIBA\Utilitaire de zoom TOSHIBA\SmoothView.exe [2004-04-30 118784] "NDSTray.exe"=NDSTray.exe [] "dla"=C:\WINDOWS\system32\dla\tfswctrl.exe [2004-07-20 122939] ""= [] "avgnt"=C:\Program Files\Avira\AntiVir Desktop\avgnt.exe [2009-03-02 209153] "KernelFaultCheck"=C:\WINDOWS\system32\dumprep 0 -k [] [HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run] "TOSCDSPD"=C:\Program Files\TOSHIBA\TOSCDSPD\toscdspd.exe [2003-09-15 65536] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe Photo Downloader] C:\Program Files\Adobe\Photoshop Album Edition Découverte\3.0\Apps\apdproxy.exe [] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\iTunesHelper] C:\Program Files\iTunes\iTunesHelper.exe [2009-05-30 292136] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\LogitechVideoRepair] C:\Program Files\Logitech\Video\ISStart.exe [2005-06-08 458752] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\LogitechVideoTray] C:\Program Files\Logitech\Video\LogiTray.exe [2005-06-08 217088] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\msnmsgr] C:\Program Files\Windows Live\Messenger\msnmsgr.exe [2009-02-06 3885408] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\QuickTime Task] C:\Program Files\QuickTime\QTTask.exe [2009-05-26 413696] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Sony Ericsson PC Suite] C:\Program Files\Sony Ericsson\Mobile2\Application Launcher\Application Launcher.exe [2005-10-26 159744] C:\Documents and Settings\All Users\Menu Démarrer\Programmes\Démarrage RAMASST.lnk - C:\WINDOWS\system32\RAMASST.exe [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad] WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\WINDOWS\system32\WPDShServiceObj.dll [2006-10-18 133632] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\nm] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\nm.sys] [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System] "dontdisplaylastusername"=0 "legalnoticecaption"= "legalnoticetext"= "shutdownwithoutlogon"=1 "undockwithoutlogon"=1 [HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer] "NoFind"=0 "NoFolderOptions"=0 "NoRun"=0 "NoDrives"=0 "NoDriveAutoRun"=FFFFFFFF "HonorAutoRunSetting"=1 [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer] "HonorAutoRunSetting"= "NoDriveAutoRun"= "NoDriveTypeAutoRun"= [HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list] "%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019" "%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000" "C:\Program Files\LimeWire\LimeWire.exe"="C:\Program Files\LimeWire\LimeWire.exe:*:Enabled:LimeWire" "C:\Program Files\TVAnts\Tvants.exe"="C:\Program Files\TVAnts\Tvants.exe:*:Enabled:TVAnts" "C:\Program Files\PeerTV\PeerCast.exe"="C:\Program Files\PeerTV\PeerCast.exe:*:Enabled:PeerCast" "C:\Documents and Settings\Pierrot\Local Settings\Temp\WZSE0.TMP\SymNRT.exe"="C:\Documents and Settings\Pierrot\Local Settings\Temp\WZSE0.TMP\SymNRT.exe:*:Enabled:Norton Removal Tool" "C:\Program Files\PPMate\ppmate.exe"="C:\Program Files\PPMate\ppmate.exe:*:Enabled:PPMate" "C:\Program Files\PPMate\ppamnet.exe"="C:\Program Files\PPMate\ppamnet.exe:*:Enabled:PPMate" "C:\Program Files\SopCast\adv\SopAdver.exe"="C:\Program Files\SopCast\adv\SopAdver.exe:*:Enabled:SopCast Adver" "C:\Program Files\SopCast\SopCast.exe"="C:\Program Files\SopCast\SopCast.exe:*:Enabled:SopCast Main Application" "C:\Program Files\uTorrent\uTorrent.exe"="C:\Program Files\uTorrent\uTorrent.exe:*:Enabled:µTorrent" "C:\Program Files\Windows Live\Messenger\msnmsgr.exe"="C:\Program Files\Windows Live\Messenger\msnmsgr.exe:*:Enabled:Windows Live Messenger" "C:\Program Files\TeamViewer\Version4\TeamViewer.exe"="C:\Program Files\TeamViewer\Version4\TeamViewer.exe:*:Enabled:TeamViewer Remote Control Application" "C:\Documents and Settings\Pierrot\Local Settings\Temp\7zS23.tmp\SymNRT.exe"="C:\Documents and Settings\Pierrot\Local Settings\Temp\7zS23.tmp\SymNRT.exe:*:Enabled:Norton Removal Tool" "C:\Program Files\Skype\Phone\Skype.exe"="C:\Program Files\Skype\Phone\Skype.exe:*:Enabled:Skype" "C:\Program Files\iTunes\iTunes.exe"="C:\Program Files\iTunes\iTunes.exe:*:Enabled:iTunes" "D:\eSKernel.exe"="D:\eSKernel.exe:*:Enabled:Bbox assistant d'installation" [HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list] "%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019" "%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000" "C:\Program Files\Windows Live\Messenger\msnmsgr.exe"="C:\Program Files\Windows Live\Messenger\msnmsgr.exe:*:Enabled:Windows Live Messenger" [HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{c4dcc082-c93a-11de-8eff-000e35dd6911}] shell\AutoRun\command - F:\USBAutoRun.exe ======List of files/folders created in the last 1 months====== 2010-05-06 00:34:11 ----D---- C:\rsit 2010-05-04 02:25:44 ----D---- C:\Program Files\Veetle 2010-04-29 18:49:54 ----D---- C:\WINDOWS\Minidump 2010-04-29 15:30:26 ----HDC---- C:\WINDOWS\$NtUninstallKB978262$ 2010-04-29 15:30:10 ----HDC---- C:\WINDOWS\$NtUninstallKB971468$ 2010-04-29 15:29:45 ----HDC---- C:\WINDOWS\$NtUninstallKB979683$ 2010-04-29 15:29:07 ----HDC---- C:\WINDOWS\$NtUninstallKB970430$ 2010-04-29 15:28:51 ----HDC---- C:\WINDOWS\$NtUninstallKB980232$ 2010-04-29 15:28:26 ----HDC---- C:\WINDOWS\$NtUninstallKB955759$ 2010-04-29 15:24:17 ----HDC---- C:\WINDOWS\$NtUninstallKB978037$ 2010-04-29 15:23:39 ----HDC---- C:\WINDOWS\$NtUninstallKB975713$ 2010-04-29 15:23:27 ----HDC---- C:\WINDOWS\$NtUninstallKB978338$ 2010-04-29 15:23:14 ----HDC---- C:\WINDOWS\$NtUninstallKB972270$ 2010-04-29 15:23:00 ----HDC---- C:\WINDOWS\$NtUninstallKB975561$ 2010-04-29 15:22:44 ----HDC---- C:\WINDOWS\$NtUninstallKB975560$ 2010-04-29 15:22:22 ----HDC---- C:\WINDOWS\$NtUninstallKB977816$ 2010-04-29 15:21:02 ----HDC---- C:\WINDOWS\$NtUninstallKB978601$ 2010-04-29 15:18:38 ----HDC---- C:\WINDOWS\$NtUninstallKB971737$ 2010-04-29 15:18:21 ----HDC---- C:\WINDOWS\$NtUninstallKB977914$ 2010-04-29 15:17:13 ----HDC---- C:\WINDOWS\$NtUninstallKB979309$ 2010-04-29 15:16:43 ----HDC---- C:\WINDOWS\$NtUninstallKB978706$ 2010-04-29 15:13:17 ----HDC---- C:\WINDOWS\$NtUninstallKB979306$ 2010-04-28 17:21:13 ----N---- C:\WINDOWS\system32\browserchoice.exe 2010-04-28 12:22:42 ----HDC---- C:\WINDOWS\$NtUninstallKB960859$ 2010-04-28 12:22:31 ----HDC---- C:\WINDOWS\$NtUninstallKB974318$ 2010-04-28 12:22:19 ----HDC---- C:\WINDOWS\$NtUninstallKB969059$ 2010-04-28 12:22:07 ----HDC---- C:\WINDOWS\$NtUninstallKB971657$ 2010-04-28 12:21:57 ----HDC---- C:\WINDOWS\$NtUninstallKB971557$ 2010-04-28 12:21:46 ----HDC---- C:\WINDOWS\$NtUninstallKB974112$ 2010-04-28 12:21:01 ----HDC---- C:\WINDOWS\$NtUninstallKB975025$ 2010-04-28 12:20:50 ----HDC---- C:\WINDOWS\$NtUninstallKB974571$ 2010-04-28 12:20:38 ----HDC---- C:\WINDOWS\$NtUninstallKB974392$ 2010-04-28 12:20:27 ----HDC---- C:\WINDOWS\$NtUninstallKB975467$ 2010-04-28 12:20:10 ----HDC---- C:\WINDOWS\$NtUninstallKB968389$ 2010-04-20 00:10:16 ----HDC---- C:\WINDOWS\$NtUninstallKB973507$ 2010-04-20 00:09:09 ----HDC---- C:\WINDOWS\$NtUninstallKB973904$ 2010-04-20 00:08:16 ----HDC---- C:\WINDOWS\$NtUninstallKB973815$ 2010-04-17 18:34:31 ----D---- C:\Program Files\Techcity 2010-04-15 21:59:21 ----A---- C:\WINDOWS\imsins.BAK 2010-04-15 21:59:14 ----HDC---- C:\WINDOWS\$NtUninstallKB969947$ 2010-04-14 16:02:36 ----A---- C:\WINDOWS\TPTray.INI 2010-04-08 00:44:17 ----A---- C:\WINDOWS\ModemLog_ZTE Proprietary USB Modem.txt 2010-04-08 00:42:17 ----D---- C:\WINDOWS\system32\SupportAppXL 2010-04-08 00:42:11 ----D---- C:\Program Files\Kit Internet Mobile Bouygues Telecom 2010-04-08 00:13:25 ----A---- C:\WINDOWS\ModemLog_TOSHIBA Software Modem.txt ======List of files/folders modified in the last 1 months====== 2010-05-06 00:34:18 ----D---- C:\WINDOWS\Prefetch 2010-05-06 00:22:06 ----D---- C:\Program Files\Mozilla Firefox 2010-05-06 00:20:03 ----D---- C:\WINDOWS\Temp 2010-05-06 00:20:00 ----D---- C:\WINDOWS\system32\CatRoot2 2010-05-04 17:37:49 ----A---- C:\WINDOWS\SchedLgU.Txt 2010-05-04 10:46:34 ----D---- C:\Program Files\Malwarebytes' Anti-Malware 2010-05-04 10:46:31 ----D---- C:\WINDOWS\system32\drivers 2010-05-04 03:16:26 ----D---- C:\Documents and Settings\Pierrot\Application Data\uTorrent 2010-05-04 03:14:16 ----D---- C:\WINDOWS 2010-05-04 03:14:05 ----D---- C:\Program Files\uTorrent 2010-05-04 02:25:44 ----RD---- C:\Program Files 2010-04-29 15:48:03 ----D---- C:\WINDOWS\system32 2010-04-29 15:48:03 ----D---- C:\WINDOWS\AppPatch 2010-04-29 15:48:03 ----D---- C:\Program Files\Microsoft Silverlight 2010-04-29 15:30:33 ----HD---- C:\WINDOWS\inf 2010-04-29 15:30:24 ----HD---- C:\WINDOWS\$hf_mig$ 2010-04-29 15:30:14 ----RSHDC---- C:\WINDOWS\system32\dllcache 2010-04-29 15:29:22 ----D---- C:\WINDOWS\ie8updates 2010-04-29 15:24:05 ----SHD---- C:\WINDOWS\Installer 2010-04-29 15:24:05 ----SHD---- C:\Config.Msi 2010-04-29 15:23:02 ----D---- C:\Program Files\Movie Maker 2010-04-29 15:17:46 ----D---- C:\Program Files\Internet Explorer 2010-04-29 15:12:48 ----D---- C:\WINDOWS\WinSxS 2010-04-28 12:26:50 ----D---- C:\Program Files\HostsXpert 2010-04-27 23:41:33 ----D---- C:\WINDOWS\system32\LogFiles 2010-04-20 00:00:14 ----D---- C:\WINDOWS\Debug 2010-04-17 18:19:54 ----A---- C:\WINDOWS\system32\PerfStringBackup.INI 2010-04-17 18:18:50 ----D---- C:\WINDOWS\security 2010-04-08 00:42:09 ----HD---- C:\Program Files\InstallShield Installation Information 2010-04-07 20:13:05 ----D---- C:\WINDOWS\system32\CatRoot 2010-04-07 19:59:06 ----D---- C:\Program Files\CCleaner ======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)====== R1 avgio;avgio; \??\C:\Program Files\Avira\AntiVir Desktop\avgio.sys [] R1 avipbb;avipbb; C:\WINDOWS\system32\DRIVERS\avipbb.sys [2009-03-30 96104] R1 intelppm;Pilote de processeur Intel; C:\WINDOWS\system32\DRIVERS\intelppm.sys [2008-04-14 40576] R1 meiudf;meiudf; C:\WINDOWS\System32\Drivers\meiudf.sys [2004-08-17 90480] R1 SrvcEKIOMngr;SrvcEKIOMngr; C:\WINDOWS\System32\Drivers\EKIoMngr.sys [2004-07-30 6400] R1 SrvcEPECioctl;SrvcEPECioctl; C:\WINDOWS\System32\Drivers\ECioctl.sys [2004-08-16 5376] R1 SrvcEPIOMngr;SrvcEPIOMngr; C:\WINDOWS\System32\Drivers\EPIoMngr.sys [2004-07-30 6400] R1 SrvcSSIOMngr;SrvcSSIOMngr; C:\WINDOWS\System32\Drivers\SSIoMngr.sys [2004-07-30 6400] R1 SrvcTPIOMngr;SrvcTPIOMngr; C:\WINDOWS\System32\Drivers\TPIoMngr.sys [2004-07-30 6400] R1 sscdbhk5;sscdbhk5; C:\WINDOWS\system32\drivers\sscdbhk5.sys [2004-07-14 5627] R1 ssmdrv;ssmdrv; C:\WINDOWS\system32\DRIVERS\ssmdrv.sys [2009-07-17 28520] R1 ssrtln;ssrtln; C:\WINDOWS\system32\drivers\ssrtln.sys [2004-07-14 23545] R1 Tcpip6;Pilote du protocole IPv6 Microsoft; C:\WINDOWS\system32\DRIVERS\tcpip6.sys [2010-02-11 226880] R2 avgntflt;avgntflt; C:\WINDOWS\system32\DRIVERS\avgntflt.sys [2010-04-20 56816] R2 drvnddm;drvnddm; C:\WINDOWS\system32\drivers\drvnddm.sys [2004-07-14 40448] R2 irda;Protocole IrDA; C:\WINDOWS\system32\DRIVERS\irda.sys [2008-04-13 88192] R2 Netdevio;TOSHIBA Network Device Usermode I/O Protocol; C:\WINDOWS\system32\DRIVERS\netdevio.sys [2003-01-29 12032] R2 tfsnboio;tfsnboio; C:\WINDOWS\system32\dla\tfsnboio.sys [2004-07-20 25723] R2 tfsncofs;tfsncofs; C:\WINDOWS\system32\dla\tfsncofs.sys [2004-07-20 34843] R2 tfsndrct;tfsndrct; C:\WINDOWS\system32\dla\tfsndrct.sys [2004-07-20 4123] R2 tfsndres;tfsndres; C:\WINDOWS\system32\dla\tfsndres.sys [2004-07-20 2271] R2 tfsnifs;tfsnifs; C:\WINDOWS\system32\dla\tfsnifs.sys [2004-07-20 86138] R2 tfsnopio;tfsnopio; C:\WINDOWS\system32\dla\tfsnopio.sys [2004-07-20 14587] R2 tfsnpool;tfsnpool; C:\WINDOWS\system32\dla\tfsnpool.sys [2004-07-20 6363] R2 tfsnudf;tfsnudf; C:\WINDOWS\system32\dla\tfsnudf.sys [2004-07-20 98714] R2 tfsnudfa;tfsnudfa; C:\WINDOWS\system32\dla\tfsnudfa.sys [2004-07-20 100603] R3 AgereSoftModem;TOSHIBA V92 Software Modem; C:\WINDOWS\system32\DRIVERS\AGRSM.sys [2004-02-21 1265388] R3 ALCXSENS;Service for WDM 3D Audio Driver; C:\WINDOWS\system32\drivers\ALCXSENS.SYS [2004-02-24 400384] R3 ALCXWDM;Service for Realtek AC97 Audio (WDM); C:\WINDOWS\system32\drivers\ALCXWDM.SYS [2004-06-21 626204] R3 ApfiltrService;Alps Pointing-device Filter Driver; C:\WINDOWS\system32\DRIVERS\Apfiltr.sys [2004-05-08 101833] R3 ati2mtag;ati2mtag; C:\WINDOWS\system32\DRIVERS\ati2mtag.sys [2004-06-10 746496] R3 CmBatt;Pilote pour Batterie à méthode de contrôle ACPI Microsoft; C:\WINDOWS\system32\DRIVERS\CmBatt.sys [2008-04-13 13952] R3 DKbFltr;Dritek HotKey Keyboard Filter Driver; C:\WINDOWS\System32\Drivers\DKbFltr.sys [2004-01-12 17497] R3 EMSCR;EMSCR; C:\WINDOWS\system32\DRIVERS\EMS7SK.sys [2004-06-25 58240] R3 EPOWER;Compal E-POWER Driver; C:\WINDOWS\System32\Drivers\hkdrv.sys [2004-08-20 4224] R3 ESDCR;ESDCR; C:\WINDOWS\system32\DRIVERS\ESD7SK.sys [2004-07-12 36480] R3 ESMCR;ESMCR; C:\WINDOWS\system32\DRIVERS\ESM7SK.sys [2004-07-12 330624] R3 GEARAspiWDM;GEAR ASPI Filter Driver; C:\WINDOWS\system32\DRIVERS\GEARAspiWDM.sys [2009-03-19 23400] R3 Iviaspi;IVI ASPI Shell; C:\WINDOWS\system32\drivers\iviaspi.sys [2003-09-10 21060] R3 Pfc;Padus ASPI Shell; C:\WINDOWS\system32\drivers\pfc.sys [2003-09-19 10368] R3 Rasirda;Miniport réseau étendu (IrDA); C:\WINDOWS\system32\DRIVERS\rasirda.sys [2001-08-17 19584] R3 SMCIRDA;SMSC IrCC Miniport Device Driver; C:\WINDOWS\system32\DRIVERS\smcirda.sys [2004-06-16 46080] R3 usbehci;Pilote miniport de contrôleur d'hôte amélioré Microsoft USB 2.0; C:\WINDOWS\system32\DRIVERS\usbehci.sys [2008-04-13 30208] R3 usbhub;Concentrateur USB2; C:\WINDOWS\system32\DRIVERS\usbhub.sys [2008-04-13 59520] R3 usbuhci;Pilote miniport de contrôleur hôte universel USB Microsoft; C:\WINDOWS\system32\DRIVERS\usbuhci.sys [2008-04-13 20608] R3 w22n51;Pilote Intel® PRO/Wireless 2200 Adapter; C:\WINDOWS\system32\DRIVERS\w22n51.sys [2004-01-02 1646720] S3 Arp1394;Protocole client ARP 1394; C:\WINDOWS\system32\DRIVERS\arp1394.sys [2008-04-13 60800] S3 CCDECODE;Décodeur sous-titre fermé; C:\WINDOWS\system32\DRIVERS\CCDECODE.sys [2008-04-13 17024] S3 HidUsb;Pilote de classe HID Microsoft; C:\WINDOWS\system32\DRIVERS\hidusb.sys [2008-04-13 10368] S3 LVUSBSta;Logitech USB Monitor Filter; C:\WINDOWS\system32\drivers\lvusbsta.sys [2005-05-27 22016] S3 mouhid;Pilote HID de souris; C:\WINDOWS\system32\DRIVERS\mouhid.sys [2001-08-23 12288] S3 MSTEE;Convertisseur en T/site-à-site de répartition Microsoft; C:\WINDOWS\system32\drivers\MSTEE.sys [2008-04-13 5504] S3 NABTSFEC;Codec NABTS/FEC VBI; C:\WINDOWS\system32\DRIVERS\NABTSFEC.sys [2008-04-13 85248] S3 NdisIP;Connection TV/vidéo Microsoft; C:\WINDOWS\system32\DRIVERS\NdisIP.sys [2008-04-13 10880] S3 NIC1394;Pilote réseau 1394; C:\WINDOWS\system32\DRIVERS\nic1394.sys [2008-04-13 61824] S3 pepifilter;Volume Adapter; C:\WINDOWS\system32\DRIVERS\lv302af.sys [2005-05-27 7136] S3 PID_08A0;QuickCam IM(PID_08A0); C:\WINDOWS\system32\DRIVERS\LV302AV.SYS [2005-05-27 913280] S3 RTL8023;Realtek RTL8139/810x/8169/8110 all in one NDIS NT Driver; C:\WINDOWS\system32\DRIVERS\Rtlnic51.sys [2003-08-13 65280] S3 rtl8139;Pilote NT de carte Realtek PCI Fast Ethernet à base RTL8139(A/B/C); C:\WINDOWS\system32\DRIVERS\RTL8139.SYS [2004-08-04 20992] S3 sdbus;sdbus; C:\WINDOWS\system32\DRIVERS\sdbus.sys [2008-04-13 79232] S3 SLIP;Détrameur décalage BDA; C:\WINDOWS\system32\DRIVERS\SLIP.sys [2008-04-13 11136] S3 streamip;BDA IPSink; C:\WINDOWS\system32\DRIVERS\StreamIP.sys [2008-04-13 15232] S3 tunmp;Pilote de carte miniport Tun Microsoft; C:\WINDOWS\system32\DRIVERS\tunmp.sys [2008-04-13 12288] S3 usbaudio;Pilote USB audio (WDM); C:\WINDOWS\system32\drivers\usbaudio.sys [2008-04-13 60032] S3 usbbus;LGE Mobile Composite USB Device; C:\WINDOWS\system32\DRIVERS\lgusbbus.sys [] S3 usbccgp;Pilote parent générique USB Microsoft; C:\WINDOWS\system32\DRIVERS\usbccgp.sys [2008-04-13 32128] S3 UsbDiag;LGE Mobile USB Serial Port; C:\WINDOWS\system32\DRIVERS\lgusbdiag.sys [] S3 USBModem;LGE Mobile USB Modem; C:\WINDOWS\system32\DRIVERS\lgusbmodem.sys [] S3 USBSTOR;Pilote de stockage de masse USB; C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS [2008-04-13 26368] S3 w200bus;Sony Ericsson W200 driver (WDM); C:\WINDOWS\system32\DRIVERS\w200bus.sys [2006-11-07 61504] S3 w200mdfl;Sony Ericsson W200 USB WMC Modem Filter; C:\WINDOWS\system32\DRIVERS\w200mdfl.sys [2006-11-07 9328] S3 w200mdm;Sony Ericsson W200 USB WMC Modem Driver; C:\WINDOWS\system32\DRIVERS\w200mdm.sys [2006-11-07 97056] S3 w200mgmt;Sony Ericsson W200 USB WMC Device Management Drivers (WDM); C:\WINDOWS\system32\DRIVERS\w200mgmt.sys [2006-11-07 88560] S3 w200obex;Sony Ericsson W200 USB WMC OBEX Interface; C:\WINDOWS\system32\DRIVERS\w200obex.sys [2006-11-07 86368] S3 WpdUsb;WpdUsb; C:\WINDOWS\system32\DRIVERS\wpdusb.sys [2006-10-18 38528] S3 WSTCODEC;Codec Teletext standard; C:\WINDOWS\system32\DRIVERS\WSTCODEC.SYS [2008-04-13 19200] S3 ZTEusbmdm6k;ZTE Proprietary USB Driver; C:\WINDOWS\system32\DRIVERS\ZTEusbmdm6k.sys [2008-08-18 104960] S3 ZTEusbnmea;ZTE NMEA Port; C:\WINDOWS\system32\DRIVERS\ZTEusbnmea.sys [2008-08-18 104960] S3 ZTEusbser6k;ZTE Diagnostic Port; C:\WINDOWS\system32\DRIVERS\ZTEusbser6k.sys [2008-08-18 104960] ======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)====== R2 6to4;Service d'application d'assistance IPv6; C:\WINDOWS\system32\svchost.exe [2008-04-14 14336] R2 AntiVirSchedulerService;Avira AntiVir Planificateur; C:\Program Files\Avira\AntiVir Desktop\sched.exe [2009-07-17 108289] R2 AntiVirService;Avira AntiVir Guard; C:\Program Files\Avira\AntiVir Desktop\avguard.exe [2010-04-20 185089] R2 Ati HotKey Poller;Ati HotKey Poller; C:\WINDOWS\system32\Ati2evxx.exe [2004-06-10 376832] R2 CeEPwrSvc;CeEPwrSvc; C:\Program Files\TOSHIBA\Power Management\CeEPwrSvc.exe [2004-06-23 36960] R2 CFSvcs;ConfigFree Service; C:\Program Files\TOSHIBA\ConfigFree\CFSvcs.exe [2004-06-16 36864] R2 DVD-RAM_Service;DVD-RAM_Service; C:\WINDOWS\system32\DVDRAMSV.exe [2004-08-17 106496] R2 Irmon;Moniteur infrarouge; C:\WINDOWS\system32\svchost.exe [2008-04-14 14336] R2 JavaQuickStarterService;Java Quick Starter; C:\Program Files\Java\jre6\bin\jqs.exe [2009-06-05 152984] R2 WudfSvc;Windows Driver Foundation - User-mode Driver Framework; C:\WINDOWS\system32\svchost.exe [2008-04-14 14336] S3 aspnet_state;Service d'état ASP.NET; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe [2008-07-25 34312] S3 clr_optimization_v2.0.50727_32;.NET Runtime Optimization Service v2.0.50727_X86; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe [2008-07-25 69632] S3 FontCache3.0.0.0;Windows Presentation Foundation Font Cache 3.0.0.0; c:\WINDOWS\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe [2008-07-29 46104] S3 getPlus® Helper;getPlus® Helper; C:\Program Files\NOS\bin\getPlus_HelperSvc.exe [2008-10-06 33752] S3 IDriverT;InstallDriver Table Manager; C:\Program Files\Fichiers communs\InstallShield\Driver\1050\Intel 32\IDriverT.exe [2004-10-22 73728] S3 idsvc;Windows CardSpace; c:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe [2008-07-29 881664] S3 ose;Office Source Engine; C:\Program Files\Fichiers communs\Microsoft Shared\Source Engine\OSE.EXE [2003-07-28 89136] S3 WMPNetworkSvc;Windows Media Player Network Sharing Service; C:\Program Files\Windows Media Player\WMPNetwk.exe [2006-10-18 913408] S4 iPod Service;Service de l’iPod; C:\Program Files\iPod\bin\iPodService.exe [2009-05-30 541992] S4 NetTcpPortSharing;Net.Tcp Port Sharing Service; c:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe [2008-07-29 132096] -----------------EOF----------------- Et maintenant le rapport info : info.txt logfile of random's system information tool 1.06 2010-05-06 00:34:36 ======Uninstall list====== -->C:\WINDOWS\IsUn040c.exe -fC:\WINDOWS\orun32.isu -->C:\WINDOWS\system32\\MSIEXEC.EXE /x {1206EF92-2E83-4859-ACCB-2048C3CB7DA6} -->C:\WINDOWS\system32\\MSIEXEC.EXE /x {9541FED0-327F-4df0-8B96-EF57EF622F19} -->rundll32.exe setupapi.dll,InstallHinfSection DefaultUninstall 132 C:\WINDOWS\INF\PCHealth.inf Adobe Flash Player 10 ActiveX-->C:\WINDOWS\system32\Macromed\Flash\uninstall_activeX.exe Adobe Flash Player 10 Plugin-->C:\WINDOWS\system32\Macromed\Flash\uninstall_plugin.exe Adobe Reader 9.1 - Français-->MsiExec.exe /I{AC76BA86-7AD7-1036-7B44-A91000000001} ALPS Touch Pad Driver-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\engine\6\INTEL3~1\ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{9F72EF8B-AEC9-4CA5-B483-143980AFD6FD}\setup.exe" UNINSTALL Apple Software Update-->MsiExec.exe /I{6956856F-B6B3-4BE0-BA0B-8F495BE32033} Archiveur WinRAR-->C:\Program Files\WinRAR\uninstall.exe ATI - Utilitaire de désinstallation du logiciel-->C:\Program Files\ATI Technologies\UninstallAll\AtiCimUn.exe ATI Control Panel-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\engine\6\INTEL3~1\ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{0BEDBD4E-2D34-47B5-9973-57E62B29307C}\setup.exe" ATI Display Driver-->rundll32 C:\WINDOWS\system32\atiiiexx.dll,_InfEngUnInstallINFFile_RunDLL@16 -force_restart -flags:0x2010001 -inf_class:DISPLAY -clean Avira AntiVir Personal - Free Antivirus-->C:\Program Files\Avira\AntiVir Desktop\setup.exe /REMOVE CCleaner (remove only)-->"C:\Program Files\CCleaner\uninst.exe" Choice Guard-->MsiExec.exe /I{8FFC5648-FAF8-43A3-BC8F-42BA1E275C4E} Complément Microsoft Word pour Microsoft Works Suite-->MsiExec.exe /I{7054ED85-498D-4D20-906F-14646AEC5581} Console TOSHIBA-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{3CF0858D-1AC5-4308-9DE7-AD15288A8BDC}\Setup.exe" -l0x40c Correctif pour Lecteur Windows Media 11 (KB939683)-->"C:\WINDOWS\$NtUninstallKB939683$\spuninst\spuninst.exe" Correctif pour Windows XP (KB952287)-->"C:\WINDOWS\$NtUninstallKB952287$\spuninst\spuninst.exe" Correctif pour Windows XP (KB961118)-->"C:\WINDOWS\$NtUninstallKB961118$\spuninst\spuninst.exe" Correctif pour Windows XP (KB970653-v3)-->"C:\WINDOWS\$NtUninstallKB970653-v3$\spuninst\spuninst.exe" Correctif pour Windows XP (KB976098-v2)-->"C:\WINDOWS\$NtUninstallKB976098-v2$\spuninst\spuninst.exe" Correctif pour Windows XP (KB979306)-->"C:\WINDOWS\$NtUninstallKB979306$\spuninst\spuninst.exe" Defraggler (remove only)-->"C:\Program Files\Defraggler\uninst.exe" Disc2Phone-->MsiExec.exe /I{FFAB5ABB-8AAB-42E2-847F-1743E51E01E9} DivX Player-->C:\Program Files\DivX\DivXPlayerUninstall.exe /PLAYER doPDF 6.2 printer-->"C:\Program Files\Softland\doPDF 6\unins000.exe" Easy Button-->C:\WINDOWS\UnInst32.exe EzButton.UNI filehippo.com Update Checker-->"C:\Program Files\filehippo.com\uninstall.exe" HD Tune 2.55-->"C:\Program Files\HD Tune\unins000.exe" HijackThis 2.0.2-->"C:\Program Files\Trend Micro\HijackThis\HijackThis.exe" /uninstall Hotfix for Microsoft .NET Framework 3.5 SP1 (KB953595)-->C:\WINDOWS\system32\msiexec.exe /package {CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9} /uninstall /qb+ REBOOTPROMPT="" Hotfix for Microsoft .NET Framework 3.5 SP1 (KB958484)-->C:\WINDOWS\system32\msiexec.exe /package {CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9} /uninstall {A7EEA2F2-BFCD-4A54-A575-7B81A786E658} /qb+ REBOOTPROMPT="" Hotfix for Windows Media Format 11 SDK (KB929399)-->"C:\WINDOWS\$NtUninstallKB929399$\spuninst\spuninst.exe" Installation Windows Live-->C:\Program Files\Windows Live\Installer\wlarp.exe Installation Windows Live-->MsiExec.exe /I{7370DF47-B4F9-4279-BFC3-3F09919F720D} InterVideo WinDVD Creator 2-->"C:\Program Files\InstallShield Installation Information\{2FCE4FC5-6930-40E7-A4F1-F862207424EF}\setup.exe" REMOVEALL InterVideo WinDVD for TOSHIBA-->"C:\Program Files\InstallShield Installation Information\{91810AFC-A4F8-4EBA-A5AA-B198BBC81144}\setup.exe" REMOVEALL iTunes-->MsiExec.exe /I{CC5702D7-86E2-45A8-99D7-E8B976ADCC56} Java 6 Update 14-->MsiExec.exe /X{26A24AE4-039D-4CA4-87B4-2F83216014FF} Java 6 Update 7-->MsiExec.exe /I{3248F0A8-6813-11D6-A77B-00B0D0160070} KeePass Password Safe 1.16-->"C:\Program Files\KeePass Password Safe\unins000.exe" Kit Internet Mobile Bouygues Telecom-->"C:\Program Files\InstallShield Installation Information\{93D34EE3-99B3-4DB1-8B0A-0A657466F90D}\setup.exe" -runfromtemp -l0x040c -removeonly LimeWire 5.1.3-->"C:\Program Files\LimeWire\uninstall.exe" Logiciel QuickCam de Logitech-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\PROFES~1\RunTime\09\01\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{C43048A9-742C-4DAD-90D2-E3B53C9DB825}\setup.exe" -l0x40c Macromedia Flash Player-->MsiExec.exe /X{0456ebd7-5f67-4ab6-852e-63781e3f389c} Malwarebytes' Anti-Malware-->"C:\Program Files\Malwarebytes' Anti-Malware\unins000.exe" Microsoft .NET Framework 1.1 French Language Pack-->MsiExec.exe /X{9A394342-4A68-4EBA-85A6-55B559F4E700} Microsoft .NET Framework 1.1 Security Update (KB953297)-->"C:\WINDOWS\Microsoft.NET\Framework\v1.1.4322\Updates\hotfix.exe" "C:\WINDOWS\Microsoft.NET\Framework\v1.1.4322\Updates\M953297\M953297Uninstall.msp" Microsoft .NET Framework 1.1-->msiexec.exe /X {CB2F7EDD-9D1F-43C1-90FC-4F52EAE172A1} Microsoft .NET Framework 1.1-->MsiExec.exe /X{CB2F7EDD-9D1F-43C1-90FC-4F52EAE172A1} Microsoft .NET Framework 2.0 Service Pack 2 Language Pack - FRA-->MsiExec.exe /I{72AD53CC-CCC0-3757-8480-9EE176866A7C} Microsoft .NET Framework 2.0 Service Pack 2-->MsiExec.exe /I{C09FB3CD-3D0C-3F2D-899A-6A1D67F2073F} Microsoft .NET Framework 3.0 Service Pack 2 Language Pack - FRA-->MsiExec.exe /I{0BD83598-C2EF-3343-847B-7D2E84599128} Microsoft .NET Framework 3.0 Service Pack 2-->MsiExec.exe /I{A3051CD0-2F64-3813-A88D-B8DCCDE8F8C7} Microsoft .NET Framework 3.5 Language Pack SP1 - fra-->MsiExec.exe /I{3E31821C-7917-367E-938E-E65FC413EA31} Microsoft .NET Framework 3.5 SP1-->C:\WINDOWS\Microsoft.NET\Framework\v3.5\Microsoft .NET Framework 3.5 SP1\setup.exe Microsoft .NET Framework 3.5 SP1-->MsiExec.exe /I{CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9} Microsoft Compression Client Pack 1.0 for Windows XP-->"C:\WINDOWS\$NtUninstallMSCompPackV1$\spuninst\spuninst.exe" Microsoft Internationalized Domain Names Mitigation APIs-->"C:\WINDOWS\$NtServicePackUninstallIDNMitigationAPIs$\spuninst\spuninst.exe" Microsoft National Language Support Downlevel APIs-->"C:\WINDOWS\$NtServicePackUninstallNLSDownlevelMapping$\spuninst\spuninst.exe" Microsoft Office OneNote 2003-->MsiExec.exe /I{91A1040C-6000-11D3-8CFE-0150048383C9} Microsoft Office XP Professional with FrontPage-->MsiExec.exe /I{90280409-6000-11D3-8CFE-0050048383C9} Microsoft Silverlight-->MsiExec.exe /X{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00} Microsoft User-Mode Driver Framework Feature Pack 1.0-->"C:\WINDOWS\$NtUninstallWudf01000$\spuninst\spuninst.exe" Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053-->MsiExec.exe /X{770657D0-A123-3C07-8E44-1C83EC895118} Microsoft Visual C++ 2005 Redistributable-->MsiExec.exe /X{7299052b-02a4-4627-81f2-1818da5d550d} Microsoft Visual C++ 2008 ATL Update kb973924 - x86 9.0.30729.4148-->MsiExec.exe /X{002D9D5E-29BA-3E6D-9BC4-3D7D6DBC735C} Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17-->MsiExec.exe /X{9A25302D-30C0-39D9-BD6F-21E6EC160475} Microsoft Word 2002-->MsiExec.exe /I{911B040C-6000-11D3-8CFE-0050048383C9} Microsoft Works-->MsiExec.exe /I{E6BAE954-487E-488B-BC4E-2E69E54E8117} Mise à jour critique pour Lecteur Windows Media 11 (KB959772)-->"C:\WINDOWS\$NtUninstallKB959772_WM11$\spuninst\spuninst.exe" Mise à jour de sécurité pour Lecteur Windows Media (KB952069)-->"C:\WINDOWS\$NtUninstallKB952069_WM9$\spuninst\spuninst.exe" Mise à jour de sécurité pour Lecteur Windows Media (KB954155)-->"C:\WINDOWS\$NtUninstallKB954155_WM9$\spuninst\spuninst.exe" Mise à jour de sécurité pour Lecteur Windows Media (KB968816)-->"C:\WINDOWS\$NtUninstallKB968816_WM9$\spuninst\spuninst.exe" Mise à jour de sécurité pour Lecteur Windows Media (KB973540)-->"C:\WINDOWS\$NtUninstallKB973540_WM9$\spuninst\spuninst.exe" Mise à jour de sécurité pour Lecteur Windows Media 11 (KB936782)-->"C:\WINDOWS\$NtUninstallKB936782_WMP11$\spuninst\spuninst.exe" Mise à jour de sécurité pour Lecteur Windows Media 11 (KB954154)-->"C:\WINDOWS\$NtUninstallKB954154_WM11$\spuninst\spuninst.exe" Mise à jour de sécurité pour Step by Step Interactive Training (KB923723)-->"C:\WINDOWS\$NtUninstallKB923723$\spuninst\spuninst.exe" Mise à jour de sécurité pour Windows Internet Explorer 8 (KB969897)-->"C:\WINDOWS\ie8updates\KB969897-IE8\spuninst\spuninst.exe" Mise à jour de sécurité pour Windows Internet Explorer 8 (KB971961)-->"C:\WINDOWS\ie8updates\KB971961-IE8\spuninst\spuninst.exe" Mise à jour de sécurité pour Windows Internet Explorer 8 (KB972260)-->"C:\WINDOWS\ie8updates\KB972260-IE8\spuninst\spuninst.exe" Mise à jour de sécurité pour Windows Internet Explorer 8 (KB974455)-->"C:\WINDOWS\ie8updates\KB974455-IE8\spuninst\spuninst.exe" Mise à jour de sécurité pour Windows Internet Explorer 8 (KB976325)-->"C:\WINDOWS\ie8updates\KB976325-IE8\spuninst\spuninst.exe" Mise à jour de sécurité pour Windows Internet Explorer 8 (KB981332)-->"C:\WINDOWS\ie8updates\KB981332-IE8\spuninst\spuninst.exe" Mise à jour de sécurité pour Windows XP (KB923561)-->"C:\WINDOWS\$NtUninstallKB923561$\spuninst\spuninst.exe" Mise à jour de sécurité pour Windows XP (KB938464)-->"C:\WINDOWS\$NtUninstallKB938464$\spuninst\spuninst.exe" Mise à jour de sécurité pour Windows XP (KB938464-v2)-->"C:\WINDOWS\$NtUninstallKB938464-v2$\spuninst\spuninst.exe" Mise à jour de sécurité pour Windows XP (KB941569)-->"C:\WINDOWS\$NtUninstallKB941569$\spuninst\spuninst.exe" Mise à jour de sécurité pour Windows XP (KB946648)-->"C:\WINDOWS\$NtUninstallKB946648$\spuninst\spuninst.exe" Mise à jour de sécurité pour Windows XP (KB950762)-->"C:\WINDOWS\$NtUninstallKB950762$\spuninst\spuninst.exe" Mise à jour de sécurité pour Windows XP (KB950974)-->"C:\WINDOWS\$NtUninstallKB950974$\spuninst\spuninst.exe" Mise à jour de sécurité pour Windows XP (KB951066)-->"C:\WINDOWS\$NtUninstallKB951066$\spuninst\spuninst.exe" Mise à jour de sécurité pour Windows XP (KB951376-v2)-->"C:\WINDOWS\$NtUninstallKB951376-v2$\spuninst\spuninst.exe" Mise à jour de sécurité pour Windows XP (KB951698)-->"C:\WINDOWS\$NtUninstallKB951698$\spuninst\spuninst.exe" Mise à jour de sécurité pour Windows XP (KB951748)-->"C:\WINDOWS\$NtUninstallKB951748$\spuninst\spuninst.exe" Mise à jour de sécurité pour Windows XP (KB952004)-->"C:\WINDOWS\$NtUninstallKB952004$\spuninst\spuninst.exe" Mise à jour de sécurité pour Windows XP (KB952954)-->"C:\WINDOWS\$NtUninstallKB952954$\spuninst\spuninst.exe" Mise à jour de sécurité pour Windows XP (KB953838)-->"C:\WINDOWS\$NtUninstallKB953838$\spuninst\spuninst.exe" Mise à jour de sécurité pour Windows XP (KB953839)-->"C:\WINDOWS\$NtUninstallKB953839$\spuninst\spuninst.exe" Mise à jour de sécurité pour Windows XP (KB954211)-->"C:\WINDOWS\$NtUninstallKB954211$\spuninst\spuninst.exe" Mise à jour de sécurité pour Windows XP (KB954459)-->"C:\WINDOWS\$NtUninstallKB954459$\spuninst\spuninst.exe" Mise à jour de sécurité pour Windows XP (KB954600)-->"C:\WINDOWS\$NtUninstallKB954600$\spuninst\spuninst.exe" Mise à jour de sécurité pour Windows XP (KB955069)-->"C:\WINDOWS\$NtUninstallKB955069$\spuninst\spuninst.exe" Mise à jour de sécurité pour Windows XP (KB956390)-->"C:\WINDOWS\$NtUninstallKB956390$\spuninst\spuninst.exe" Mise à jour de sécurité pour Windows XP (KB956391)-->"C:\WINDOWS\$NtUninstallKB956391$\spuninst\spuninst.exe" Mise à jour de sécurité pour Windows XP (KB956572)-->"C:\WINDOWS\$NtUninstallKB956572$\spuninst\spuninst.exe" Mise à jour de sécurité pour Windows XP (KB956744)-->"C:\WINDOWS\$NtUninstallKB956744$\spuninst\spuninst.exe" Mise à jour de sécurité pour Windows XP (KB956802)-->"C:\WINDOWS\$NtUninstallKB956802$\spuninst\spuninst.exe" Mise à jour de sécurité pour Windows XP (KB956803)-->"C:\WINDOWS\$NtUninstallKB956803$\spuninst\spuninst.exe" Mise à jour de sécurité pour Windows XP (KB956841)-->"C:\WINDOWS\$NtUninstallKB956841$\spuninst\spuninst.exe" Mise à jour de sécurité pour Windows XP (KB956844)-->"C:\WINDOWS\$NtUninstallKB956844$\spuninst\spuninst.exe" Mise à jour de sécurité pour Windows XP (KB957095)-->"C:\WINDOWS\$NtUninstallKB957095$\spuninst\spuninst.exe" Mise à jour de sécurité pour Windows XP (KB957097)-->"C:\WINDOWS\$NtUninstallKB957097$\spuninst\spuninst.exe" Mise à jour de sécurité pour Windows XP (KB958215)-->"C:\WINDOWS\$NtUninstallKB958215$\spuninst\spuninst.exe" Mise à jour de sécurité pour Windows XP (KB958644)-->"C:\WINDOWS\$NtUninstallKB958644$\spuninst\spuninst.exe" Mise à jour de sécurité pour Windows XP (KB958687)-->"C:\WINDOWS\$NtUninstallKB958687$\spuninst\spuninst.exe" Mise à jour de sécurité pour Windows XP (KB958690)-->"C:\WINDOWS\$NtUninstallKB958690$\spuninst\spuninst.exe" Mise à jour de sécurité pour Windows XP (KB958869)-->"C:\WINDOWS\$NtUninstallKB958869$\spuninst\spuninst.exe" Mise à jour de sécurité pour Windows XP (KB959426)-->"C:\WINDOWS\$NtUninstallKB959426$\spuninst\spuninst.exe" Mise à jour de sécurité pour Windows XP (KB960225)-->"C:\WINDOWS\$NtUninstallKB960225$\spuninst\spuninst.exe" Mise à jour de sécurité pour Windows XP (KB960714)-->"C:\WINDOWS\$NtUninstallKB960714$\spuninst\spuninst.exe" Mise à jour de sécurité pour Windows XP (KB960715)-->"C:\WINDOWS\$NtUninstallKB960715$\spuninst\spuninst.exe" Mise à jour de sécurité pour Windows XP (KB960803)-->"C:\WINDOWS\$NtUninstallKB960803$\spuninst\spuninst.exe" Mise à jour de sécurité pour Windows XP (KB960859)-->"C:\WINDOWS\$NtUninstallKB960859$\spuninst\spuninst.exe" Mise à jour de sécurité pour Windows XP (KB961371)-->"C:\WINDOWS\$NtUninstallKB961371$\spuninst\spuninst.exe" Mise à jour de sécurité pour Windows XP (KB961373)-->"C:\WINDOWS\$NtUninstallKB961373$\spuninst\spuninst.exe" Mise à jour de sécurité pour Windows XP (KB961501)-->"C:\WINDOWS\$NtUninstallKB961501$\spuninst\spuninst.exe" Mise à jour de sécurité pour Windows XP (KB968537)-->"C:\WINDOWS\$NtUninstallKB968537$\spuninst\spuninst.exe" Mise à jour de sécurité pour Windows XP (KB969059)-->"C:\WINDOWS\$NtUninstallKB969059$\spuninst\spuninst.exe" Mise à jour de sécurité pour Windows XP (KB969898)-->"C:\WINDOWS\$NtUninstallKB969898$\spuninst\spuninst.exe" Mise à jour de sécurité pour Windows XP (KB969947)-->"C:\WINDOWS\$NtUninstallKB969947$\spuninst\spuninst.exe" Mise à jour de sécurité pour Windows XP (KB970238)-->"C:\WINDOWS\$NtUninstallKB970238$\spuninst\spuninst.exe" Mise à jour de sécurité pour Windows XP (KB970430)-->"C:\WINDOWS\$NtUninstallKB970430$\spuninst\spuninst.exe" Mise à jour de sécurité pour Windows XP (KB971468)-->"C:\WINDOWS\$NtUninstallKB971468$\spuninst\spuninst.exe" Mise à jour de sécurité pour Windows XP (KB971486)-->"C:\WINDOWS\$NtUninstallKB971486$\spuninst\spuninst.exe" Mise à jour de sécurité pour Windows XP (KB971557)-->"C:\WINDOWS\$NtUninstallKB971557$\spuninst\spuninst.exe" Mise à jour de sécurité pour Windows XP (KB971633)-->"C:\WINDOWS\$NtUninstallKB971633$\spuninst\spuninst.exe" Mise à jour de sécurité pour Windows XP (KB971657)-->"C:\WINDOWS\$NtUninstallKB971657$\spuninst\spuninst.exe" Mise à jour de sécurité pour Windows XP (KB972270)-->"C:\WINDOWS\$NtUninstallKB972270$\spuninst\spuninst.exe" Mise à jour de sécurité pour Windows XP (KB973346)-->"C:\WINDOWS\$NtUninstallKB973346$\spuninst\spuninst.exe" Mise à jour de sécurité pour Windows XP (KB973354)-->"C:\WINDOWS\$NtUninstallKB973354$\spuninst\spuninst.exe" Mise à jour de sécurité pour Windows XP (KB973507)-->"C:\WINDOWS\$NtUninstallKB973507$\spuninst\spuninst.exe" Mise à jour de sécurité pour Windows XP (KB973525)-->"C:\WINDOWS\$NtUninstallKB973525$\spuninst\spuninst.exe" Mise à jour de sécurité pour Windows XP (KB973869)-->"C:\WINDOWS\$NtUninstallKB973869$\spuninst\spuninst.exe" Mise à jour de sécurité pour Windows XP (KB973904)-->"C:\WINDOWS\$NtUninstallKB973904$\spuninst\spuninst.exe" Mise à jour de sécurité pour Windows XP (KB974112)-->"C:\WINDOWS\$NtUninstallKB974112$\spuninst\spuninst.exe" Mise à jour de sécurité pour Windows XP (KB974318)-->"C:\WINDOWS\$NtUninstallKB974318$\spuninst\spuninst.exe" Mise à jour de sécurité pour Windows XP (KB974392)-->"C:\WINDOWS\$NtUninstallKB974392$\spuninst\spuninst.exe" Mise à jour de sécurité pour Windows XP (KB974571)-->"C:\WINDOWS\$NtUninstallKB974571$\spuninst\spuninst.exe" Mise à jour de sécurité pour Windows XP (KB975025)-->"C:\WINDOWS\$NtUninstallKB975025$\spuninst\spuninst.exe" Mise à jour de sécurité pour Windows XP (KB975467)-->"C:\WINDOWS\$NtUninstallKB975467$\spuninst\spuninst.exe" Mise à jour de sécurité pour Windows XP (KB975560)-->"C:\WINDOWS\$NtUninstallKB975560$\spuninst\spuninst.exe" Mise à jour de sécurité pour Windows XP (KB975561)-->"C:\WINDOWS\$NtUninstallKB975561$\spuninst\spuninst.exe" Mise à jour de sécurité pour Windows XP (KB975713)-->"C:\WINDOWS\$NtUninstallKB975713$\spuninst\spuninst.exe" Mise à jour de sécurité pour Windows XP (KB977816)-->"C:\WINDOWS\$NtUninstallKB977816$\spuninst\spuninst.exe" Mise à jour de sécurité pour Windows XP (KB977914)-->"C:\WINDOWS\$NtUninstallKB977914$\spuninst\spuninst.exe" Mise à jour de sécurité pour Windows XP (KB978037)-->"C:\WINDOWS\$NtUninstallKB978037$\spuninst\spuninst.exe" Mise à jour de sécurité pour Windows XP (KB978262)-->"C:\WINDOWS\$NtUninstallKB978262$\spuninst\spuninst.exe" Mise à jour de sécurité pour Windows XP (KB978338)-->"C:\WINDOWS\$NtUninstallKB978338$\spuninst\spuninst.exe" Mise à jour de sécurité pour Windows XP (KB978601)-->"C:\WINDOWS\$NtUninstallKB978601$\spuninst\spuninst.exe" Mise à jour de sécurité pour Windows XP (KB978706)-->"C:\WINDOWS\$NtUninstallKB978706$\spuninst\spuninst.exe" Mise à jour de sécurité pour Windows XP (KB979309)-->"C:\WINDOWS\$NtUninstallKB979309$\spuninst\spuninst.exe" Mise à jour de sécurité pour Windows XP (KB979683)-->"C:\WINDOWS\$NtUninstallKB979683$\spuninst\spuninst.exe" Mise à jour de sécurité pour Windows XP (KB980232)-->"C:\WINDOWS\$NtUninstallKB980232$\spuninst\spuninst.exe" Mise à jour pour Windows Internet Explorer 8 (KB976662)-->"C:\WINDOWS\ie8updates\KB976662-IE8\spuninst\spuninst.exe" Mise à jour pour Windows Internet Explorer 8 (KB976749)-->"C:\WINDOWS\ie8updates\KB976749-IE8\spuninst\spuninst.exe" Mise à jour pour Windows Internet Explorer 8 (KB980182)-->"C:\WINDOWS\ie8updates\KB980182-IE8\spuninst\spuninst.exe" Mise à jour pour Windows XP (KB951072-v2)-->"C:\WINDOWS\$NtUninstallKB951072-v2$\spuninst\spuninst.exe" Mise à jour pour Windows XP (KB951978)-->"C:\WINDOWS\$NtUninstallKB951978$\spuninst\spuninst.exe" Mise à jour pour Windows XP (KB955759)-->"C:\WINDOWS\$NtUninstallKB955759$\spuninst\spuninst.exe" Mise à jour pour Windows XP (KB955839)-->"C:\WINDOWS\$NtUninstallKB955839$\spuninst\spuninst.exe" Mise à jour pour Windows XP (KB961503)-->"C:\WINDOWS\$NtUninstallKB961503$\spuninst\spuninst.exe" Mise à jour pour Windows XP (KB967715)-->"C:\WINDOWS\$NtUninstallKB967715$\spuninst\spuninst.exe" Mise à jour pour Windows XP (KB968389)-->"C:\WINDOWS\$NtUninstallKB968389$\spuninst\spuninst.exe" Mise à jour pour Windows XP (KB971737)-->"C:\WINDOWS\$NtUninstallKB971737$\spuninst\spuninst.exe" Mise à jour pour Windows XP (KB973687)-->"C:\WINDOWS\$NtUninstallKB973687$\spuninst\spuninst.exe" Mise à jour pour Windows XP (KB973815)-->"C:\WINDOWS\$NtUninstallKB973815$\spuninst\spuninst.exe" Module linguistique Microsoft .NET Framework 3.5 SP1- fra-->c:\WINDOWS\Microsoft.NET\Framework\v3.5\Microsoft .NET Framework 3.5 Language Pack SP1 - fra\setup.exe MSN-->C:\Program Files\MSN\MsnInstaller\msninst.exe /Action:ARP MSVCRT-->MsiExec.exe /I{22B775E7-6C42-4FC5-8E10-9A5E3257BD94} MSXML 4.0 SP2 (KB936181)-->MsiExec.exe /I{C04E32E0-0416-434D-AFB9-6969D703A9EF} MSXML 4.0 SP2 (KB954430)-->MsiExec.exe /I{86493ADD-824D-4B8E-BD72-8C5DCDC52A71} MSXML 4.0 SP2 (KB973688)-->MsiExec.exe /I{F662A8E6-F4DC-41A2-901E-8C11F044BDEC} Outil de diagnostic PC TOSHIBA-->C:\WINDOWS\IsUn040c.exe -f"C:\Program Files\TOSHIBA\PCDiag\Uninst.isu" Pilote du DVD-RAM-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{9D765FA6-F2BC-40AF-8145-50808F9BDF4E}\setup.exe" DVD-RAM Driver Programme de gestion Camera de Logitech®-->"C:\Program Files\Fichiers communs\Logitech\QCDRV\BIN\SETUP.EXE" UNINSTALL REMOVEPROMPT QuickTime-->MsiExec.exe /I{C78EAC6F-7A73-452E-8134-DBB2165C5A68} Realtek AC'97 Audio-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\engine\6\INTEL3~1\ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{FB08F381-6533-4108-B7DD-039E11FBC27E}\setup.exe" REMOVE Realtek Fast Ethernet Adapter Driver-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{97AA0C55-AFAD-4126-B21C-F1318FB6DADA}\Setup.exe" -l0x40c REMOVE Recuva (remove only)-->"C:\Program Files\Recuva\uninst.exe" Réducteur de bruit lect. CD/DVD-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{9FE35071-CAB2-4E79-93E7-BFC6A2DC5C5D}\Setup.exe" -l0x40c Revo Uninstaller 1.83-->C:\Program Files\VS Revo Group\Revo Uninstaller\uninst.exe Security Update for CAPICOM (KB931906)-->MsiExec.exe /I{0EFDF2F9-836D-4EB7-A32D-038BD3F1FB2A} Security Update for CAPICOM (KB931906)-->MsiExec.exe /X{0EFDF2F9-836D-4EB7-A32D-038BD3F1FB2A} Segoe UI-->MsiExec.exe /I{A1F66FC9-11EE-4F2F-98C9-16F8D1E69FB7} Sélecteur d'installation de Microsoft Works 2004-->C:\Program Files\Microsoft Works Suite 2004\Setup\Launcher.exe /ARP D:\ Shape Collage-->C:\Program Files\Shape Collage\uninstall.exe Skype™ 4.1-->MsiExec.exe /X{D103C4BA-F905-437A-8049-DB24763BBE36} SMSC IrCC V5.1.3600.5-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\PROFES~1\RunTime\0700\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{F1B8DB67-D30E-4FF9-A85F-3CEE51825AA2}\setup.exe" -l0x40c UNINSTALL Sonic DLA-->MsiExec.exe /I{1206EF92-2E83-4859-ACCB-2048C3CB7DA6} Sonic RecordNow!-->MsiExec.exe /I{9541FED0-327F-4DF0-8B96-EF57EF622F19} Sony Ericsson PC Suite-->MsiExec.exe /I{B56B1487-9A26-4AFD-A1FD-949C40F5F2BC} SopCast 3.0.3-->C:\Program Files\SopCast\uninst.exe SRS WOW XT Plug-In for Windows Media Player for Toshiba version 1.0.2-->C:\PROGRA~1\FICHIE~1\INSTAL~1\Driver\9\INTEL3~1\IDriver.exe /M{68D368EE-F5AC-4402-BD45-B454B5453FE1} TeamViewer 4-->C:\Program Files\TeamViewer\Version4\uninstall.exe TOSHIBA ConfigFree-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\PROFES~1\RunTime\0701\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{BDD83DC9-BEE9-4654-A5DA-CC46C250088D}\setup.exe" -l0x40c UNINSTALL TOSHIBA Software Modem-->Tosmreg -U Touch and Launch-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{3470FBE6-B743-420F-B5CE-0D27FA749C16}\Setup.exe" -l0x40c TVAnts 1.0-->C:\PROGRA~1\TvAnts\UNWISE.EXE C:\PROGRA~1\TvAnts\INSTALL.LOG Unlocker 1.8.7-->C:\Program Files\Unlocker\uninst.exe Update for Microsoft .NET Framework 3.5 SP1 (KB963707)-->C:\WINDOWS\system32\msiexec.exe /package {CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9} /uninstall {B2AE9C82-DC7B-3641-BFC8-87275C4F3607} /qb+ REBOOTPROMPT="" Utilitaire de zoom TOSHIBA-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\engine\6\INTEL3~1\ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{64212898-097F-4F3F-AECA-6D34A7EF82DF}\setup.exe" Utilitaire Economie TOSHIBA-->C:\PROGRA~1\FICHIE~1\INSTAL~1\Driver\7\INTEL3~1\IDriver.exe /M{D674A81F-0216-4523-B6AB-3F18D789798E} /l1036 Utilitaire Hotkey TOSHIBA-->C:\PROGRA~1\FICHIE~1\INSTAL~1\Driver\7\INTEL3~1\IDriver.exe /M{A933190B-9C8E-4E81-B4D4-038D594A1675} /l1036 Utilitaire TouchPad ON/OFF-->C:\PROGRA~1\FICHIE~1\INSTAL~1\Driver\7\INTEL3~1\IDriver.exe /M{7EF2432D-8C52-40C1-962A-1EB0413F25ED} /l1036 Veetle TV 0.9.17-->C:\Program Files\Veetle\UninstallVeetleTV.exe VLC media player 0.9.9-->C:\Program Files\VideoLAN\VLC\uninstall.exe Windows Internet Explorer 8-->"C:\WINDOWS\ie8\spuninst\spuninst.exe" Windows Live Call-->MsiExec.exe /I{82C7B308-0BDD-49D8-8EA5-9CD3A3F9DF41} Windows Live Communications Platform-->MsiExec.exe /I{3B4E636E-9D65-4D67-BA61-189800823F52} Windows Live Messenger-->MsiExec.exe /X{059C042E-796A-4ACC-A81A-ECC2010BB78C} Windows Media Format 11 runtime-->"C:\Program Files\Windows Media Player\wmsetsdk.exe" /UninstallAll Windows Media Format 11 runtime-->"C:\WINDOWS\$NtUninstallWMFDist11$\spuninst\spuninst.exe" Windows Media Player 11-->"C:\Program Files\Windows Media Player\Setup_wm.exe" /Uninstall Windows Media Player 11-->"C:\WINDOWS\$NtUninstallwmp11$\spuninst\spuninst.exe" Windows XP Service Pack 3-->"C:\WINDOWS\$NtServicePackUninstall$\spuninst\spuninst.exe" XML Paper Specification Shared Components Language Pack 1.0-->"C:\WINDOWS\$NtUninstallXPSEPSCLP$\spuninst\spuninst.exe" =====HijackThis Backups===== O4 - Global Startup: Microsoft Office.lnk = C:\Program Files\Microsoft Office\Office10\OSA.EXE [2008-11-14] O4 - HKLM\..\Run: [sSC_UserPrompt] C:\Program Files\Fichiers communs\Symantec Shared\Security Center\UsrPrmpt.exe [2008-11-14] O23 - Service: Service de l’iPod (iPod Service) - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe [2009-01-29] O23 - Service: Service de l’iPod (iPod Service) - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe [2009-02-04] O4 - Startup: Secunia PSI.lnk = C:\Program Files\Secunia\PSI\psi.exe [2009-02-11] O4 - Startup: Secunia PSI.lnk = C:\Program Files\Secunia\PSI\psi.exe [2009-02-28] O4 - Startup: Secunia PSI.lnk = C:\Program Files\Secunia\PSI\psi.exe [2009-03-04] O4 - Startup: Secunia PSI.lnk = C:\Program Files\Secunia\PSI\psi.exe [2009-03-05] O23 - Service: Service de l’iPod (iPod Service) - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe [2009-03-24] O4 - HKCU\..\Run: [DAEMON Tools Lite] "C:\Program Files\DAEMON Tools Lite\daemon.exe" -autorun [2009-03-26] O23 - Service: Service de l’iPod (iPod Service) - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe [2009-04-03] O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe" [2009-04-03] O4 - HKLM\..\Run: [sunJavaUpdateSched] "C:\Program Files\Java\jre6\bin\jusched.exe" [2009-04-07] O2 - BHO: (no name) - {5C255C8A-E604-49b4-9D64-90988571CECB} - (no file) [2009-04-07] O23 - Service: Apple Mobile Device - Apple Inc. - C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe [2009-07-03] O23 - Service: Service Bonjour (Bonjour Service) - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe [2009-07-03] O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe" [2009-07-03] ======Hosts File====== 127.0.0.1 localhost 127.0.0.1 ___id___.c.mystat-in.net 127.0.0.1 0.r.msn.com 127.0.0.1 000-search.net 127.0.0.1 005.free-counter.co.uk 127.0.0.1 006.free-counter.co.uk 127.0.0.1 007.free-counter.co.uk 127.0.0.1 008.free-counter.co.uk 127.0.0.1 00fun.com 127.0.0.1 011707160008.c.mystat-in.net ======Security center information====== AV: AntiVir Desktop ======System event log====== Computer Name: PIERRE-OLIVIER Event Code: 7035 Message: Un contrôle Démarrer a correctement été envoyé au service NLA (Network Location Awareness). Record Number: 5 Source Name: Service Control Manager Time Written: 20091203134707.000000+060 Event Type: Informations User: AUTORITE NT\SYSTEM Computer Name: PIERRE-OLIVIER Event Code: 7036 Message: Le service Compatibilité avec le Changement rapide d'utilisateur est entré dans l'état : en cours d'exécution. Record Number: 4 Source Name: Service Control Manager Time Written: 20091203134707.000000+060 Event Type: Informations User: Computer Name: PIERRE-OLIVIER Event Code: 7035 Message: Un contrôle Démarrer a correctement été envoyé au service Compatibilité avec le Changement rapide d'utilisateur. Record Number: 3 Source Name: Service Control Manager Time Written: 20091203134706.000000+060 Event Type: Informations User: AUTORITE NT\SYSTEM Computer Name: PIERRE-OLIVIER Event Code: 6005 Message: Le service d'Enregistrement d'événement a démarré. Record Number: 2 Source Name: EventLog Time Written: 20091203134652.000000+060 Event Type: Informations User: Computer Name: PIERRE-OLIVIER Event Code: 6009 Message: Microsoft ® Windows ® 5.01. 2600 Service Pack 3 Uniprocessor Free. Record Number: 1 Source Name: EventLog Time Written: 20091203134652.000000+060 Event Type: Informations User: =====Application event log===== Computer Name: PIERRE-OLIVIER Event Code: 4113 Message: AntiVir a détecté dans le fichier C:\Documents and Settings\Pierrot\Bureau\RemoteControl.exe un code suspect avec la désignation 'TR/Drop.Agent.qqj'! Record Number: 452 Source Name: Avira AntiVir Time Written: 20081112183914.000000+060 Event Type: Avertissement User: AUTORITE NT\SYSTEM Computer Name: PIERRE-OLIVIER Event Code: 0 Message: Record Number: 451 Source Name: iPod Service Time Written: 20081112055055.000000+060 Event Type: Informations User: Computer Name: PIERRE-OLIVIER Event Code: 4096 Message: Le service AntiVir a bien démarré! Record Number: 450 Source Name: Avira AntiVir Time Written: 20081112043009.000000+060 Event Type: Informations User: AUTORITE NT\SYSTEM Computer Name: PIERRE-OLIVIER Event Code: 1800 Message: Le service Centre de sécurité Windows a démarré. Record Number: 449 Source Name: SecurityCenter Time Written: 20081112043007.000000+060 Event Type: Informations User: Computer Name: PIERRE-OLIVIER Event Code: 1 Message: Record Number: 448 Source Name: Bonjour Service Time Written: 20081112042946.000000+060 Event Type: Informations User: ======Environment variables====== "ComSpec"=%SystemRoot%\system32\cmd.exe "Path"=%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\System32\Wbem;C:\Program Files\ATI Technologies\ATI Control Panel;C:\Program Files\Fichiers communs\Teleca Shared;C:\Program Files\QuickTime\QTSystem\ "windir"=%SystemRoot% "FP_NO_HOST_CHECK"=NO "OS"=Windows_NT "PROCESSOR_ARCHITECTURE"=x86 "PROCESSOR_LEVEL"=6 "PROCESSOR_IDENTIFIER"=x86 Family 6 Model 13 Stepping 6, GenuineIntel "PROCESSOR_REVISION"=0d06 "NUMBER_OF_PROCESSORS"=1 "PATHEXT"=.COM;.EXE;.BAT;.CMD;.VBS;.VBE;.JS;.JSE;.WSF;.WSH "TEMP"=%SystemRoot%\TEMP "TMP"=%SystemRoot%\TEMP "CLASSPATH"=.;C:\Program Files\Java\jre6\lib\ext\QTJava.zip "QTJAVA"=C:\Program Files\Java\jre6\lib\ext\QTJava.zip -----------------EOF----------------- Voilà, voilà. Bon courage à toi pour déchiffrer tout ça. P.S. : Je sais pas si c'est bien important mais je sais qu'une grande partie de mes logiciels n'est pas à jour puisque je viens tout juste de récupérer mon PC après plusieurs mois d'inactivité, mais je mettrai tout ça à jour plus tard via le logiciel "Update Checker" de FileHippo.

Salut ! J'ai un p'tit soucis avec mon PC... Dés que j'essaie de télécharger quoi que ce soit via µTorrent, un écran d'erreur bleu s'affiche sur mon PC, et celui-ci redémarre immédiatement. Alors je sais que vous allez me dire "ça t'apprendra à utiliser des logiciels de P2P, etc..." et vous avez surement raison, mais il y a certains programmes que je ne peux visionner que de cette façon. Quoi qu'il en soit, suite à ce problème j'ai fait analyser mon système par AntiVir, et celui-ci ne m'a trouvé que 2 Avertissements, à priori rien de bien grave. Je vous poste le log tout de même. Ce qui me parait un peu plus louche c'est que je n'ai pas pu enregistrer le rapport sur mon bureau... Avira AntiVir Personal Date de création du fichier de rapport : mardi 4 mai 2010 03:23 La recherche porte sur 2067653 souches de virus. Détenteur de la licence : Avira AntiVir Personal - FREE Antivirus Numéro de série : 0000149996-ADJIE-0000001 Plateforme : Windows XP Version de Windows : (Service Pack 3) [5.1.2600] Mode Boot : Démarré normalement Identifiant : SYSTEM Nom de l'ordinateur : PIERRE-OLIVIER Informations de version : BUILD.DAT : 9.0.0.75 21698 Bytes 22/01/2010 23:14:00 AVSCAN.EXE : 9.0.3.10 466689 Bytes 19/04/2010 22:02:54 AVSCAN.DLL : 9.0.3.0 49409 Bytes 03/03/2009 09:21:02 LUKE.DLL : 9.0.3.2 209665 Bytes 20/02/2009 10:35:11 LUKERES.DLL : 9.0.2.0 13569 Bytes 03/03/2009 09:21:31 VBASE000.VDF : 7.10.0.0 19875328 Bytes 06/11/2009 22:02:38 VBASE001.VDF : 7.10.1.0 1372672 Bytes 19/11/2009 22:02:39 VBASE002.VDF : 7.10.3.1 3143680 Bytes 20/01/2010 22:02:42 VBASE003.VDF : 7.10.3.75 996864 Bytes 26/01/2010 22:02:43 VBASE004.VDF : 7.10.4.203 1579008 Bytes 05/03/2010 22:02:45 VBASE005.VDF : 7.10.6.82 2494464 Bytes 15/04/2010 22:02:45 VBASE006.VDF : 7.10.6.83 2048 Bytes 15/04/2010 22:02:45 VBASE007.VDF : 7.10.6.84 2048 Bytes 15/04/2010 22:02:45 VBASE008.VDF : 7.10.6.85 2048 Bytes 15/04/2010 22:02:45 VBASE009.VDF : 7.10.6.86 2048 Bytes 15/04/2010 22:02:45 VBASE010.VDF : 7.10.6.87 2048 Bytes 15/04/2010 22:02:45 VBASE011.VDF : 7.10.6.88 2048 Bytes 15/04/2010 22:02:46 VBASE012.VDF : 7.10.6.89 2048 Bytes 15/04/2010 22:02:46 VBASE013.VDF : 7.10.6.90 2048 Bytes 15/04/2010 22:02:46 VBASE014.VDF : 7.10.6.123 126464 Bytes 19/04/2010 22:02:46 VBASE015.VDF : 7.10.6.152 123392 Bytes 21/04/2010 23:28:00 VBASE016.VDF : 7.10.6.178 122880 Bytes 22/04/2010 21:43:56 VBASE017.VDF : 7.10.6.206 120320 Bytes 26/04/2010 21:43:56 VBASE018.VDF : 7.10.6.232 99328 Bytes 28/04/2010 11:54:39 VBASE019.VDF : 7.10.7.2 155648 Bytes 30/04/2010 22:14:22 VBASE020.VDF : 7.10.7.3 2048 Bytes 30/04/2010 22:14:22 VBASE021.VDF : 7.10.7.4 2048 Bytes 30/04/2010 22:14:23 VBASE022.VDF : 7.10.7.5 2048 Bytes 30/04/2010 22:14:23 VBASE023.VDF : 7.10.7.6 2048 Bytes 30/04/2010 22:14:23 VBASE024.VDF : 7.10.7.7 2048 Bytes 30/04/2010 22:14:23 VBASE025.VDF : 7.10.7.8 2048 Bytes 30/04/2010 22:14:23 VBASE026.VDF : 7.10.7.9 2048 Bytes 30/04/2010 22:14:24 VBASE027.VDF : 7.10.7.10 2048 Bytes 30/04/2010 22:14:24 VBASE028.VDF : 7.10.7.11 2048 Bytes 30/04/2010 22:14:24 VBASE029.VDF : 7.10.7.12 2048 Bytes 30/04/2010 22:14:24 VBASE030.VDF : 7.10.7.13 2048 Bytes 30/04/2010 22:14:24 VBASE031.VDF : 7.10.7.22 110592 Bytes 03/05/2010 22:14:03 Version du moteur : 8.2.1.224 AEVDF.DLL : 8.1.2.0 106868 Bytes 27/04/2010 21:43:59 AESCRIPT.DLL : 8.1.3.27 1294714 Bytes 27/04/2010 21:43:59 AESCN.DLL : 8.1.5.0 127347 Bytes 19/04/2010 22:02:52 AESBX.DLL : 8.1.3.1 254324 Bytes 27/04/2010 21:44:00 AERDL.DLL : 8.1.4.6 541043 Bytes 19/04/2010 22:02:52 AEPACK.DLL : 8.2.1.1 426358 Bytes 19/04/2010 22:02:52 AEOFFICE.DLL : 8.1.0.41 201083 Bytes 19/04/2010 22:02:51 AEHEUR.DLL : 8.1.1.24 2613623 Bytes 19/04/2010 22:02:51 AEHELP.DLL : 8.1.11.3 242039 Bytes 19/04/2010 22:02:49 AEGEN.DLL : 8.1.3.7 373106 Bytes 19/04/2010 22:02:49 AEEMU.DLL : 8.1.2.0 393588 Bytes 27/04/2010 21:43:58 AECORE.DLL : 8.1.13.1 188790 Bytes 19/04/2010 22:02:48 AEBB.DLL : 8.1.1.0 53618 Bytes 27/04/2010 21:43:58 AVWINLL.DLL : 9.0.0.3 18177 Bytes 12/12/2008 07:47:30 AVPREF.DLL : 9.0.3.0 44289 Bytes 19/04/2010 22:02:54 AVREP.DLL : 8.0.0.7 159784 Bytes 19/04/2010 22:02:55 AVREG.DLL : 9.0.0.0 36609 Bytes 07/11/2008 14:24:42 AVARKT.DLL : 9.0.0.3 292609 Bytes 24/03/2009 14:05:22 AVEVTLOG.DLL : 9.0.0.7 167169 Bytes 30/01/2009 09:36:37 SQLITE3.DLL : 3.6.1.0 326401 Bytes 28/01/2009 14:03:49 SMTPLIB.DLL : 9.2.0.25 28417 Bytes 02/02/2009 07:20:57 NETNT.DLL : 9.0.0.0 11521 Bytes 07/11/2008 14:40:59 RCIMAGE.DLL : 9.0.0.25 2438913 Bytes 17/07/2009 18:56:07 RCTEXT.DLL : 9.0.73.0 88321 Bytes 19/04/2010 22:02:26 Configuration pour la recherche actuelle : Nom de la tâche...............................: Contrôle intégral du système Fichier de configuration......................: c:\program files\avira\antivir desktop\sysscan.avp Documentation.................................: bas Action principale.............................: interactif Action secondaire.............................: ignorer Recherche sur les secteurs d'amorçage maître..: marche Recherche sur les secteurs d'amorçage.........: marche Secteurs d'amorçage...........................: C:, Recherche dans les programmes actifs..........: marche Recherche en cours sur l'enregistrement.......: marche Recherche de Rootkits.........................: marche Contrôle d'intégrité de fichiers système......: arrêt Fichier mode de recherche.....................: Tous les fichiers Recherche sur les archives....................: marche Limiter la profondeur de récursivité..........: 20 Archive Smart Extensions......................: marche Heuristique de macrovirus.....................: marche Heuristique fichier...........................: moyen Catégories de dangers divergentes.............: +APPL,+GAME,+JOKE,+PCK,+SPR, Début de la recherche : mardi 4 mai 2010 03:23 La recherche d'objets cachés commence. '59917' objets ont été contrôlés, '0' objets cachés ont été trouvés. La recherche sur les processus démarrés commence : Processus de recherche 'avscan.exe' - '1' module(s) sont contrôlés Processus de recherche 'avcenter.exe' - '1' module(s) sont contrôlés Processus de recherche 'svchost.exe' - '1' module(s) sont contrôlés Processus de recherche 'wmiprvse.exe' - '1' module(s) sont contrôlés Processus de recherche 'alg.exe' - '1' module(s) sont contrôlés Processus de recherche 'wmiapsrv.exe' - '1' module(s) sont contrôlés Processus de recherche 'ApntEx.exe' - '1' module(s) sont contrôlés Processus de recherche 'RAMASST.exe' - '1' module(s) sont contrôlés Processus de recherche 'TOSCDSPD.exe' - '1' module(s) sont contrôlés Processus de recherche 'avgnt.exe' - '1' module(s) sont contrôlés Processus de recherche 'tfswctrl.exe' - '1' module(s) sont contrôlés Processus de recherche 'NDSTray.exe' - '1' module(s) sont contrôlés Processus de recherche 'SmoothView.exe' - '1' module(s) sont contrôlés Processus de recherche 'ZoomingHook.exe' - '1' module(s) sont contrôlés Processus de recherche 'TPTray.exe' - '1' module(s) sont contrôlés Processus de recherche 'EzButton.EXE' - '1' module(s) sont contrôlés Processus de recherche 'CeEKey.exe' - '1' module(s) sont contrôlés Processus de recherche 'CePMTray.exe' - '1' module(s) sont contrôlés Processus de recherche 'PadExe.exe' - '1' module(s) sont contrôlés Processus de recherche 'Apoint.exe' - '1' module(s) sont contrôlés Processus de recherche 'atiptaxx.exe' - '1' module(s) sont contrôlés Processus de recherche 'svchost.exe' - '1' module(s) sont contrôlés Processus de recherche 'jqs.exe' - '1' module(s) sont contrôlés Processus de recherche 'DVDRAMSV.exe' - '1' module(s) sont contrôlés Processus de recherche 'CFSvcs.exe' - '1' module(s) sont contrôlés Processus de recherche 'CeEPwrSvc.exe' - '1' module(s) sont contrôlés Processus de recherche 'avguard.exe' - '1' module(s) sont contrôlés Processus de recherche 'svchost.exe' - '1' module(s) sont contrôlés Processus de recherche 'sched.exe' - '1' module(s) sont contrôlés Processus de recherche 'spoolsv.exe' - '1' module(s) sont contrôlés Processus de recherche 'explorer.exe' - '1' module(s) sont contrôlés Processus de recherche 'svchost.exe' - '1' module(s) sont contrôlés Processus de recherche 'svchost.exe' - '1' module(s) sont contrôlés Processus de recherche 'svchost.exe' - '1' module(s) sont contrôlés Processus de recherche 'svchost.exe' - '1' module(s) sont contrôlés Processus de recherche 'svchost.exe' - '1' module(s) sont contrôlés Processus de recherche 'ati2evxx.exe' - '1' module(s) sont contrôlés Processus de recherche 'lsass.exe' - '1' module(s) sont contrôlés Processus de recherche 'services.exe' - '1' module(s) sont contrôlés Processus de recherche 'winlogon.exe' - '1' module(s) sont contrôlés Processus de recherche 'csrss.exe' - '1' module(s) sont contrôlés Processus de recherche 'smss.exe' - '1' module(s) sont contrôlés '42' processus ont été contrôlés avec '42' modules La recherche sur les secteurs d'amorçage maître commence : Secteur d'amorçage maître HD0 [iNFO] Aucun virus trouvé ! La recherche sur les secteurs d'amorçage commence : Secteur d'amorçage 'C:\' [iNFO] Aucun virus trouvé ! La recherche sur les renvois aux fichiers exécutables (registre) commence : Le registre a été contrôlé ( '63' fichiers). La recherche sur les fichiers sélectionnés commence : Recherche débutant dans 'C:\' C:\pagefile.sys [AVERTISSEMENT] Impossible d'ouvrir le fichier ! [REMARQUE] Ce fichier est un fichier système Windows. [REMARQUE] Il est correct que ce fichier ne puisse pas être ouvert pour la recherche. C:\WINDOWS\system32\drivers\sptd.sys [AVERTISSEMENT] Impossible d'ouvrir le fichier ! Fin de la recherche : mardi 4 mai 2010 04:17 Temps nécessaire: 54:05 Minute(s) La recherche a été effectuée intégralement 7424 Les répertoires ont été contrôlés 225894 Des fichiers ont été contrôlés 0 Des virus ou programmes indésirables ont été trouvés 0 Des fichiers ont été classés comme suspects 0 Des fichiers ont été supprimés 0 Des virus ou programmes indésirables ont été réparés 0 Les fichiers ont été déplacés dans la quarantaine 0 Les fichiers ont été renommés 2 Impossible de contrôler des fichiers 225892 Fichiers non infectés 6733 Les archives ont été contrôlées 2 Avertissements 1 Consignes 59917 Des objets ont été contrôlés lors du Rootkitscan 0 Des objets cachés ont été trouvés J'ai aussi fait une analyse via MBAM et là il m'a trouvé 4 malwares. Par contre je ne peux plus cliquer sur l'onglet "rechercher des mises à jour"... Voici le log MBAM : Malwarebytes' Anti-Malware 1.45 www.malwarebytes.org Version de la base de données: 3930 Windows 5.1.2600 Service Pack 3 Internet Explorer 8.0.6001.18702 04/05/2010 15:27:00 mbam-log-2010-05-04 (15-27-00).txt Type d'examen: Examen complet (C:\|) Elément(s) analysé(s): 162662 Temps écoulé: 1 heure(s), 4 minute(s), 42 seconde(s) Processus mémoire infecté(s): 0 Module(s) mémoire infecté(s): 0 Clé(s) du Registre infectée(s): 4 Valeur(s) du Registre infectée(s): 0 Elément(s) de données du Registre infecté(s): 0 Dossier(s) infecté(s): 0 Fichier(s) infecté(s): 0 Processus mémoire infecté(s): (Aucun élément nuisible détecté) Module(s) mémoire infecté(s): (Aucun élément nuisible détecté) Clé(s) du Registre infectée(s): HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\itunes.exe (Security.Hijack) -> Quarantined and deleted successfully. HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\limewire.exe (Security.Hijack) -> Quarantined and deleted successfully. HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\wmplayer.exe (Security.Hijack) -> Quarantined and deleted successfully. HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\firefox.exe (Security.Hijack) -> Quarantined and deleted successfully. Valeur(s) du Registre infectée(s): (Aucun élément nuisible détecté) Elément(s) de données du Registre infecté(s): (Aucun élément nuisible détecté) Dossier(s) infecté(s): (Aucun élément nuisible détecté) Fichier(s) infecté(s): (Aucun élément nuisible détecté) Et pour finir le petit rapport HiJackThis qui va bien, et qui, j'en suis sur, vous parlera plus qu'à moi Logfile of Trend Micro HijackThis v2.0.2 Scan saved at 15:50:16, on 04/05/2010 Platform: Windows XP SP3 (WinNT 5.01.2600) MSIE: Internet Explorer v8.00 (8.00.6001.18702) Boot mode: Normal Running processes: C:\WINDOWS\System32\smss.exe C:\WINDOWS\system32\winlogon.exe C:\WINDOWS\system32\services.exe C:\WINDOWS\system32\lsass.exe C:\WINDOWS\system32\Ati2evxx.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\System32\svchost.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\Explorer.EXE C:\WINDOWS\system32\spoolsv.exe C:\Program Files\Avira\AntiVir Desktop\sched.exe C:\Program Files\Avira\AntiVir Desktop\avguard.exe C:\Program Files\TOSHIBA\Power Management\CeEPwrSvc.exe C:\Program Files\TOSHIBA\ConfigFree\CFSvcs.exe C:\WINDOWS\system32\DVDRAMSV.exe C:\Program Files\Java\jre6\bin\jqs.exe C:\WINDOWS\system32\svchost.exe C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe C:\Program Files\Apoint2K\Apoint.exe C:\Program Files\TOSHIBA\PadTouch\PadExe.exe C:\Program Files\TOSHIBA\Power Management\CePMTray.exe C:\Program Files\TOSHIBA\E-KEY\CeEKey.exe C:\Program Files\EzButton\EzButton.EXE C:\Program Files\TOSHIBA\TouchPad\TPTray.exe C:\WINDOWS\System32\ZoomingHook.exe C:\Program Files\TOSHIBA\Utilitaire de zoom TOSHIBA\SmoothView.exe C:\Program Files\TOSHIBA\ConfigFree\NDSTray.exe C:\WINDOWS\system32\dla\tfswctrl.exe C:\Program Files\Avira\AntiVir Desktop\avgnt.exe C:\Program Files\TOSHIBA\TOSCDSPD\toscdspd.exe C:\WINDOWS\system32\RAMASST.exe C:\Program Files\Apoint2K\Apntex.exe C:\WINDOWS\system32\wbem\wmiapsrv.exe C:\WINDOWS\System32\svchost.exe C:\Program Files\Mozilla Firefox\firefox.exe C:\Program Files\Trend Micro\HijackThis\HijackThis.exe R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.google.fr/ R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157 R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896 R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896 R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://fr.msn.com/ R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Fichiers communs\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll O2 - BHO: DriveLetterAccess - {5CA3D70E-1895-11CF-8E15-001234567890} - C:\WINDOWS\system32\dla\tfswshx.dll O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll O2 - BHO: Java Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll O2 - BHO: JQSIEStartDetectorImpl - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll O4 - HKLM\..\Run: [ATIPTA] C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe O4 - HKLM\..\Run: [Apoint] C:\Program Files\Apoint2K\Apoint.exe O4 - HKLM\..\Run: [PadTouch] "C:\Program Files\TOSHIBA\PadTouch\PadExe.exe O4 - HKLM\..\Run: [CeEPOWER] C:\Program Files\TOSHIBA\Power Management\CePMTray.exe O4 - HKLM\..\Run: [CeEKEY] C:\Program Files\TOSHIBA\E-KEY\CeEKey.exe O4 - HKLM\..\Run: [EzButton] C:\Program Files\EzButton\EzButton.EXE O4 - HKLM\..\Run: [TPNF] C:\Program Files\TOSHIBA\TouchPad\TPTray.exe O4 - HKLM\..\Run: [ZoomingHook] c:\WINDOWS\System32\ZoomingHook.exe O4 - HKLM\..\Run: [smoothView] C:\Program Files\TOSHIBA\Utilitaire de zoom TOSHIBA\SmoothView.exe O4 - HKLM\..\Run: [NDSTray.exe] NDSTray.exe O4 - HKLM\..\Run: [dla] C:\WINDOWS\system32\dla\tfswctrl.exe O4 - HKLM\..\Run: [avgnt] "C:\Program Files\Avira\AntiVir Desktop\avgnt.exe" /min O4 - HKLM\..\Run: [KernelFaultCheck] %systemroot%\system32\dumprep 0 -k O4 - HKLM\..\RunOnce: [Malwarebytes' Anti-Malware] C:\Program Files\Malwarebytes' Anti-Malware\mbamgui.exe /install /silent O4 - HKCU\..\Run: [TOSCDSPD] C:\Program Files\TOSHIBA\TOSCDSPD\toscdspd.exe O4 - HKCU\..\RunOnce: [FlashPlayerUpdate] C:\WINDOWS\system32\Macromed\Flash\NPSWF32_FlashUtil.exe -p O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE LOCAL') O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE RÉSEAU') O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM') O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user') O4 - Global Startup: RAMASST.lnk = C:\WINDOWS\system32\RAMASST.exe O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office10\EXCEL.EXE/3000 O9 - Extra button: Recherche - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\OFFICE11\REFIEBAR.DLL O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\FICHIE~1\Skype\SKYPE4~1.DLL O23 - Service: Avira AntiVir Planificateur (AntiVirSchedulerService) - Avira GmbH - C:\Program Files\Avira\AntiVir Desktop\sched.exe O23 - Service: Avira AntiVir Guard (AntiVirService) - Avira GmbH - C:\Program Files\Avira\AntiVir Desktop\avguard.exe O23 - Service: Ati HotKey Poller - Unknown owner - C:\WINDOWS\system32\Ati2evxx.exe O23 - Service: CeEPwrSvc - COMPAL ELECTRONIC INC. - C:\Program Files\TOSHIBA\Power Management\CeEPwrSvc.exe O23 - Service: ConfigFree Service (CFSvcs) - TOSHIBA CORPORATION - C:\Program Files\TOSHIBA\ConfigFree\CFSvcs.exe O23 - Service: DVD-RAM_Service - Matsushita Electric Industrial Co., Ltd. - C:\WINDOWS\system32\DVDRAMSV.exe O23 - Service: getPlus® Helper - NOS Microsystems Ltd. - C:\Program Files\NOS\bin\getPlus_HelperSvc.exe O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Fichiers communs\InstallShield\Driver\1050\Intel 32\IDriverT.exe O23 - Service: Java Quick Starter (JavaQuickStarterService) - Sun Microsystems, Inc. - C:\Program Files\Java\jre6\bin\jqs.exe -- End of file - 6438 bytes Merci d'avance à vous pour votre aide et tous vos conseils.

Impeccable ca venait de là, merci de ton aide !! @+

Salut, Désolé je me suis planté, mon logiciel n'est pas HpHost mais HostsXpert et il m'a été conseillé par oGu donc je pense qu'il n'y a pas de soucis. J'ai fait ce que tu m'as dit voila le resultat : En esperant que ca t'aide, merci à toi

Bonjour, Merci de vos réponses. Je suis sous XP, et j'utilise le firewall de Windows, les seuls logiciels que je possède et qui seraient susceptibles de bloquer mon accès internet sont AntiVir et HpHost, mais je doute que cela ait quelque chose à voir avec un de ces logiciels. J'ai bien précisé la clé de cryptage lors de ma 1ère tentative de connexion. Je ne vois pas d'où cela peut bien venir... Si quelqu'un a une idée, merci d'avance.

Bonjour à tous ! Je viens de souscrire à l'offre B-box de Bouygues mais le souci c'est qu'il m'est impossible de me connecter à Internet en Wi-Fi ou même via le cable Ethernet à partir de mon PC portable, alors que ma copine n'a elle aucun problème à le faire avec le sien. Mon PC détecte bien le réseau et me signale même que je suis connecté et que la connection est "Excellente", cependant, dés que j'ouvre Firefox ou IE, alors là le message d'erreur habituel s'affiche en me disant qu'il est impossible de se connecter au serveur et tout et tout. Je n'y connais pas grand chose en la matière mais j'ai esayé de fouiler un peu dans tout ça, et lorsque j'essaie de réparer la connection, l'assistant me dit un truc du genre "impossible d'effacer la mémoire cache DNS"... Cela pourrait-il avoir un rapport ? Je ne sais vraiment pas quoi faire et c'est pour ça que votre aide me serait d'un grand secours. Merci d'avance à vous !

Re Apollo! Desole de ne repondre que si tardivement, mais j'ai ete pas mal occupe dernierement. Quoi qu'il en soit, voici le rapport de ComboFix que tu m'as demande. ComboFix 09-09-24.01 - Emilee Seda 09/25/2009 15:49.1.2 - NTFSx86 Microsoft Windows XP Professional 5.1.2600.3.1252.1.1033.18.1022.597 [GMT -4:00] Running from: c:\documents and settings\Emilee Seda\Desktop\bardaf.exe AV: AVG Internet Security *On-access scanning enabled* (Updated) {17DDD097-36FF-435F-9E1B-52D74245D6BF} FW: AVG Firewall *disabled* {8decf618-9569-4340-b34a-d78d28969b66} * Created a new restore point . ((((((((((((((((((((((((((((((((((((((( Other Deletions ))))))))))))))))))))))))))))))))))))))))))))))))) . c:\docume~1\EMILEE~1\LOCALS~1\Temp\clclean.0001.dir.0000\~df394b.tmp c:\documents and settings\All Users\Application Data\ymoco.bat c:\documents and settings\All Users\Documents\izonowa.bat c:\documents and settings\Emilee Seda\Application Data\kujekanys.vbs c:\documents and settings\Emilee Seda\Local Settings\Application Data\qypediqyz.reg c:\documents and settings\Emilee Seda\Local Settings\Temp\clclean.0001.dir.0000\~df394b.tmp c:\program files\Search Enhancer Toolbar c:\windows\Installer\2af7b7.msi c:\windows\jomyhuk.scr c:\windows\kb913800.exe c:\windows\nyliwuqyw.inf c:\windows\ogyfejicoj.reg c:\windows\system32\Data c:\windows\system32\edugyle.bat c:\windows\system32\edyko.inf c:\windows\system32\muzapp.exe c:\windows\system32\tmp.reg . ((((((((((((((((((((((((((((((((((((((( Drivers/Services ))))))))))))))))))))))))))))))))))))))))))))))))) . -------\Legacy_BROWSERCTL -------\Legacy_BROWSERCTLDRV -------\Legacy_NWCWORKSTATION -------\Service_NWCWorkstation -------\Service_SfX ((((((((((((((((((((((((( Files Created from 2009-08-25 to 2009-09-25 ))))))))))))))))))))))))))))))) . 2009-09-22 00:23 . 2009-09-22 00:24 -------- d-----w- c:\program files\Unlocker 2009-09-21 17:23 . 2009-09-21 17:23 -------- dc----w- C:\_OTM 2009-09-21 17:19 . 2009-09-21 17:19 -------- d-----w- c:\program files\VS Revo Group 2009-09-20 15:55 . 2009-09-20 15:55 -------- d-----w- c:\documents and settings\Emilee Seda\Application Data\Malwarebytes 2009-09-20 15:55 . 2009-09-10 18:54 38224 ----a-w- c:\windows\system32\drivers\mbamswissarmy.sys 2009-09-20 15:55 . 2009-09-20 15:55 -------- d-----w- c:\program files\Malwarebytes' Anti-Malware 2009-09-20 15:55 . 2009-09-20 15:55 -------- dc----w- c:\documents and settings\All Users\Application Data\Malwarebytes 2009-09-20 15:55 . 2009-09-10 18:53 19160 ----a-w- c:\windows\system32\drivers\mbam.sys 2009-09-20 15:17 . 2009-09-20 15:52 -------- dc----w- C:\Lop SD 2009-09-19 23:26 . 2009-09-19 23:47 -------- dc----w- C:\ToolBar SD 2009-09-17 18:27 . 2009-09-17 18:27 -------- d-sh--w- c:\documents and settings\NetworkService\IETldCache 2009-09-17 13:42 . 2009-09-17 13:42 -------- d-----w- c:\program files\Microsoft CAPICOM 2.1.0.2 2009-09-16 21:18 . 2009-09-22 03:36 -------- d-----w- c:\documents and settings\Emilee Seda\Tracing 2009-09-16 19:52 . 2008-10-16 18:06 208744 ----a-w- c:\windows\system32\muweb.dll 2009-09-16 19:52 . 2008-10-16 18:06 268648 ----a-w- c:\windows\system32\mucltui.dll 2009-09-16 15:41 . 2009-09-17 13:44 -------- d-----w- c:\program files\Microsoft Silverlight 2009-09-16 15:41 . 2009-08-06 02:48 54752 ----a-w- c:\windows\system32\drivers\fssfltr_tdi.sys 2009-09-16 15:40 . 2009-09-16 15:40 -------- d-----w- c:\program files\Microsoft Sync Framework 2009-09-16 15:39 . 2006-11-29 17:06 3426072 ----a-w- c:\windows\system32\d3dx9_32.dll 2009-09-16 15:39 . 2009-09-16 15:39 -------- d-----w- c:\program files\Microsoft SQL Server Compact Edition 2009-09-16 15:34 . 2009-09-16 15:41 -------- d-----w- c:\program files\Microsoft 2009-09-16 15:34 . 2009-09-16 15:34 -------- d-----w- c:\program files\Windows Live SkyDrive 2009-09-16 14:18 . 2009-09-16 14:18 -------- d-----w- c:\program files\Common Files\Windows Live 2009-09-13 04:10 . 2009-09-13 04:10 -------- d-----w- C:\found.000 2009-09-10 01:57 . 2009-06-21 21:44 153088 ------w- c:\windows\system32\dllcache\triedit.dll . (((((((((((((((((((((((((((((((((((((((( Find3M Report )))))))))))))))))))))))))))))))))))))))))))))))))))) . 2009-09-25 19:42 . 2009-01-04 16:41 -------- d-----w- c:\documents and settings\Emilee Seda\Application Data\StumbleUpon 2009-09-19 23:15 . 2009-08-17 06:22 -------- dc----w- c:\documents and settings\All Users\Application Data\avg8 2009-09-18 16:00 . 2006-09-28 19:15 -------- d-----w- c:\program files\Trend Micro 2009-09-17 13:41 . 2006-09-28 19:20 -------- d-----w- c:\program files\Microsoft Works 2009-09-16 15:41 . 2008-09-12 03:40 -------- d-----w- c:\program files\Windows Live 2009-09-16 15:36 . 2006-10-04 05:18 -------- d-----w- c:\program files\MSN Messenger 2009-09-11 03:43 . 2007-05-11 15:15 664 ----a-w- c:\windows\system32\d3d9caps.dat 2009-08-19 06:28 . 2009-08-19 06:27 -------- d-----w- c:\program files\LimeWire 2009-08-17 06:32 . 2009-08-17 06:25 -------- dc----w- c:\documents and settings\All Users\Application Data\AVG Security Toolbar 2009-08-17 06:26 . 2009-08-17 06:26 -------- dc----w- c:\documents and settings\All Users\Application Data\Downloaded Installations 2009-08-17 06:10 . 2009-08-17 06:10 -------- d-----w- c:\documents and settings\Emilee Seda\Application Data\AVG8 2009-08-17 05:16 . 2009-08-16 17:42 2091 ----a-w- c:\windows\ex1234.dat 2009-08-12 03:22 . 2009-08-12 03:22 -------- d-----w- c:\documents and settings\Emilee Seda\Application Data\MSNInstaller 2009-08-10 22:18 . 2009-08-10 22:17 -------- dc----w- c:\documents and settings\All Users\Application Data\{BFB5F154-9212-46F3-B547-AC6106030A54} 2009-08-09 01:42 . 2009-02-11 18:10 -------- d-----w- c:\program files\eMusic Download Manager 2009-08-09 01:42 . 2009-02-11 18:10 -------- d-----w- c:\documents and settings\Emilee Seda\Application Data\eMusic 2009-08-09 01:41 . 2009-04-14 01:24 -------- d-----w- c:\documents and settings\Emilee Seda\Application Data\FMZilla 2009-08-09 01:36 . 2006-09-28 18:59 -------- d--h--w- c:\program files\InstallShield Installation Information 2009-08-09 01:36 . 2009-03-18 22:49 -------- dc----w- c:\documents and settings\All Users\Application Data\Skype 2009-08-05 09:01 . 2005-08-16 09:18 204800 ----a-w- c:\windows\system32\mswebdvd.dll 2009-07-28 04:50 . 2008-06-16 04:37 -------- d-----w- c:\program files\LIVEUPDATE 2009-07-26 20:44 . 2009-07-26 20:44 48448 ----a-w- c:\windows\system32\sirenacm.dll 2009-07-17 19:01 . 2005-08-16 09:18 58880 ----a-w- c:\windows\system32\atl.dll 2009-07-14 03:43 . 2005-08-16 09:19 286208 ----a-w- c:\windows\system32\wmpdxm.dll 2009-07-10 16:15 . 2009-07-10 16:15 306544 ----a-w- c:\windows\WLXPGSS.SCR 2009-07-03 17:09 . 2005-08-16 09:18 915456 ----a-w- c:\windows\system32\wininet.dll 2008-10-08 04:05 . 2008-10-08 04:05 18301 ----a-w- c:\program files\Common Files\oxibidefez.dat 2008-10-08 04:05 . 2008-10-08 04:05 17151 ----a-w- c:\program files\Common Files\mubameva.exe 2008-10-08 03:28 . 2008-10-08 03:28 19063 ----a-w- c:\program files\Common Files\vulacun.ban 2008-10-08 03:28 . 2008-10-08 03:28 18342 ----a-w- c:\program files\Common Files\biqywacy.dl 2008-10-08 03:28 . 2008-10-08 03:28 15594 ----a-w- c:\program files\Common Files\wovesofeh.bin 2008-10-08 03:28 . 2008-10-08 03:28 14760 ----a-w- c:\program files\Common Files\zipalyn.dat 2008-10-08 03:28 . 2008-10-08 03:28 14039 ----a-w- c:\program files\Common Files\afuz.bin 2008-10-08 03:28 . 2008-10-08 03:28 12470 ----a-w- c:\program files\Common Files\ifajibibav.scr 2008-10-08 03:28 . 2008-10-08 03:28 10759 ----a-w- c:\program files\Common Files\omywijili.com 2008-10-08 03:28 . 2008-10-08 03:28 10644 ----a-w- c:\program files\Common Files\ocyko.bin 2008-10-08 03:21 . 2008-10-08 03:21 16387 ----a-w- c:\program files\Common Files\ecufokuv.dat 2008-10-08 03:21 . 2008-10-08 03:21 11749 ----a-w- c:\program files\Common Files\ygimuryv.dll . ((((((((((((((((((((((((((((((((((((( Reg Loading Points )))))))))))))))))))))))))))))))))))))))))))))))))) . . *Note* empty entries & legit default entries are not shown REGEDIT4 [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "msnmsgr"="c:\program files\Windows Live\Messenger\msnmsgr.exe" [2009-07-26 3883856] "MSMSGS"="c:\program files\Messenger\msmsgs.exe" [2008-04-14 1695232] "swg"="c:\program files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe" [2009-05-16 39408] "SetDefaultMIDI"="MIDIDef.exe" - c:\windows\MIDIDEF.EXE [2004-12-22 24576] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "Broadcom Wireless Manager UI"="c:\windows\system32\WLTRAY.exe" [2005-12-19 1347584] "SynTPEnh"="c:\program files\Synaptics\SynTP\SynTPEnh.exe" [2006-03-08 761947] "ATICCC"="c:\program files\ATI Technologies\ATI.ACE\cli.exe" [2006-01-02 45056] "CTSysVol"="c:\program files\Creative\SBAudigy\Surround Mixer\CTSysVol.exe" [2005-10-31 57344] "UpdReg"="c:\windows\UpdReg.EXE" [2000-05-11 90112] "VoiceCenter"="c:\program files\Creative\VoiceCenter\AndreaVC.exe" [2006-02-16 1118208] "DVDLauncher"="c:\program files\CyberLink\PowerDVD\DVDLauncher.exe" [2005-12-10 49152] "ISUSPM Startup"="c:\program files\Common Files\InstallShield\UpdateService\isuspm.exe" [2005-06-10 249856] "ISUSScheduler"="c:\program files\Common Files\InstallShield\UpdateService\issch.exe" [2005-06-10 81920] "VX3000"="c:\windows\vVX3000.exe" [2006-06-29 707376] "HP Software Update"="c:\program files\HP\HP Software Update\HPWuSchd2.exe" [2007-05-08 54840] "QuickTime Task"="c:\program files\QuickTime\qttask.exe" [2008-09-06 413696] "Malwarebytes Anti-Malware (reboot)"="c:\program files\Malwarebytes' Anti-Malware\mbam.exe" [2009-09-10 1312080] "SigmatelSysTrayApp"="stsystra.exe" - c:\windows\stsystra.exe [2006-03-24 282624] "MBMon"="CTMBHA.DLL" - c:\windows\system32\CTMBHA.DLL [2006-06-29 1355042] [HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\winlogon\notify\WB] 2008-12-15 19:06 30000 ----a-w- c:\program files\Stardock\MyColors\fastload.dll [HKEY_LOCAL_MACHINE\system\currentcontrolset\control\lsa] Authentication Packages REG_MULTI_SZ msv1_0 nwprovau [HKEY_LOCAL_MACHINE\software\microsoft\security center\Monitoring] "DisableMonitoring"=dword:00000001 [HKEY_LOCAL_MACHINE\software\microsoft\security center\Monitoring\SymantecAntiVirus] "DisableMonitoring"=dword:00000001 [HKEY_LOCAL_MACHINE\software\microsoft\security center\Monitoring\SymantecFirewall] "DisableMonitoring"=dword:00000001 [HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List] "%windir%\\system32\\sessmgr.exe"= R2 DockLoginService;Dock Login Service;c:\program files\Dell\DellDock\DockLogin.exe [12/18/2008 2:05 PM 155648] R2 fssfltr;FssFltr;c:\windows\system32\drivers\fssfltr_tdi.sys [9/16/2009 11:41 AM 54752] S3 Avgfwdx;Avgfwdx;c:\windows\system32\DRIVERS\avgfwdx.sys --> c:\windows\system32\DRIVERS\avgfwdx.sys [?] S3 Avgfwfd;AVG network filter service;c:\windows\system32\DRIVERS\avgfwdx.sys --> c:\windows\system32\DRIVERS\avgfwdx.sys [?] S3 fsssvc;Windows Live Family Safety Service;c:\program files\Windows Live\Family Safety\fsssvc.exe [8/5/2009 10:48 PM 704864] S3 StumbleUponUpdateService;StumbleUponUpdateService;c:\program files\StumbleUpon\StumbleUponUpdateService.exe [6/3/2009 4:52 PM 120168] [HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\svchost] QWAVE REG_MULTI_SZ QWAVE [HKEY_LOCAL_MACHINE\software\microsoft\active setup\installed components\>{60B49E34-C7CC-11D0-8953-00A0C90347FF}] "c:\windows\system32\rundll32.exe" "c:\windows\system32\iedkcs32.dll",BrandIEActiveSetup SIGNUP . Contents of the 'Scheduled Tasks' folder 2009-09-17 c:\windows\Tasks\AppleSoftwareUpdate.job - c:\program files\Apple Software Update\SoftwareUpdate.exe [2008-04-11 16:34] . . ------- Supplementary Scan ------- . mWindow Title = IE: Add to Google Photos Screensa&ver - c:\windows\system32\GPhotos.scr/200 IE: E&xport to Microsoft Excel - c:\progra~1\MI1933~1\Office10\EXCEL.EXE/3000 IE: Send to &Bluetooth Device... - c:\program files\WIDCOMM\Bluetooth Software\btsendto_ie_ctx.htm IE: StumbleUpon PhotoBlog It! - StumbleUponIEBar.dll/blogimage FF - ProfilePath - c:\documents and settings\Emilee Seda\Application Data\Mozilla\Firefox\Profiles\w0g5a5me.default\ FF - prefs.js: browser.search.defaulturl - hxxp://www.bing.com/search?FORM=IEFM1&q= FF - prefs.js: browser.search.selectedEngine - Yahoo! Search FF - prefs.js: browser.startup.homepage - hxxp://go.microsoft.com/fwlink/?LinkId=69157 FF - prefs.js: keyword.URL - hxxp://www.bing.com/search?FORM=IEFM1&q= FF - component: c:\program files\Real\RealPlayer\browserrecord\components\nprpbrowserrecordplugin.dll FF - plugin: c:\documents and settings\Emilee Seda\Application Data\Move Networks\plugins\npqmp071500000347.dll FF - plugin: c:\program files\Google\Picasa3\npPicasa3.dll FF - plugin: c:\program files\Java\jre1.5.0_06\bin\NPJava11.dll FF - plugin: c:\program files\Java\jre1.5.0_06\bin\NPJava12.dll FF - plugin: c:\program files\Java\jre1.5.0_06\bin\NPJava13.dll FF - plugin: c:\program files\Java\jre1.5.0_06\bin\NPJava14.dll FF - plugin: c:\program files\Java\jre1.5.0_06\bin\NPJava32.dll FF - plugin: c:\program files\Java\jre1.5.0_06\bin\NPJPI150_06.dll FF - plugin: c:\program files\Java\jre1.5.0_06\bin\NPOJI610.dll FF - plugin: c:\program files\Microsoft\Office Live\npOLW.dll FF - plugin: c:\program files\Mozilla Firefox\plugins\np-mswmp.dll FF - plugin: c:\program files\Mozilla Firefox\plugins\npdbplug.dll FF - plugin: c:\program files\Mozilla Firefox\plugins\npunagi2.dll FF - plugin: c:\program files\Mozilla Firefox\plugins\npvideoegg-loader.dll FF - plugin: c:\program files\Windows Live\Photo Gallery\NPWLPG.dll FF - HiddenExtension: Microsoft .NET Framework Assistant: {20a82645-c095-46ed-80e3-08825760534b} - c:\windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension\ . - - - - ORPHANS REMOVED - - - - URLSearchHooks-{A3BC75A2-1F87-4686-AA43-5347D756017C} - c:\program files\AVG\AVG8\Toolbar\IEToolbar.dll BHO-{A3BC75A2-1F87-4686-AA43-5347D756017C} - c:\program files\AVG\AVG8\Toolbar\IEToolbar.dll Toolbar-{CCC7A320-B3CA-4199-B1A6-9F516DD69829} - c:\program files\AVG\AVG8\Toolbar\IEToolbar.dll Notify-avgrsstarter - avgrsstx.dll ************************************************************************** catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net Rootkit scan 2009-09-25 15:57 Windows 5.1.2600 Service Pack 3 NTFS scanning hidden processes ... scanning hidden autostart entries ... scanning hidden files ... scan completed successfully hidden files: 0 ************************************************************************** . --------------------- LOCKED REGISTRY KEYS --------------------- [HKEY_USERS\S-1-5-21-3086866356-1406979981-3935713811-1006\Software\Microsoft\Windows\CurrentVersion\Explorer\CLSID] @Denied: (Full) (LocalSystem) @SACL= . --------------------- DLLs Loaded Under Running Processes --------------------- - - - - - - - > 'winlogon.exe'(892) c:\windows\system32\Ati2evxx.dll c:\program files\Stardock\MyColors\fastload.dll - - - - - - - > 'explorer.exe'(1676) c:\windows\system32\WININET.dll c:\windows\system32\ieframe.dll c:\program files\Microsoft Office\Office10\msohev.dll c:\windows\system32\webcheck.dll c:\windows\system32\WPDShServiceObj.dll c:\windows\system32\btncopy.dll c:\windows\system32\PortableDeviceTypes.dll c:\windows\system32\PortableDeviceApi.dll . ------------------------ Other Running Processes ------------------------ . c:\windows\system32\ati2evxx.exe c:\windows\system32\BCMWLTRY.EXE c:\program files\Common Files\ArcSoft\Connection Service\Bin\ACService.exe c:\program files\WIDCOMM\Bluetooth Software\bin\btwdins.exe c:\program files\Common Files\Creative Labs Shared\Service\CreativeLicensing.exe c:\windows\system32\CTSVCCDA.EXE c:\windows\ehome\ehrecvr.exe c:\windows\ehome\ehSched.exe c:\program files\Common Files\Microsoft Shared\VS7DEBUG\MDM.EXE c:\windows\system32\ati2evxx.exe c:\windows\system32\HPZipm12.exe c:\windows\ehome\RMSvc.exe c:\program files\Microsoft\Search Enhancement Pack\SeaPort\SeaPort.exe c:\windows\ehome\McrdSvc.exe c:\windows\system32\dllhost.exe c:\windows\system32\rundll32.exe c:\docume~1\EMILEE~1\LOCALS~1\Temp\clclean.0001 c:\program files\Windows Live\Contacts\wlcomm.exe c:\windows\system32\dwwin.exe . ************************************************************************** . Completion time: 2009-09-25 16:03 - machine was rebooted ComboFix-quarantined-files.txt 2009-09-25 20:03 Pre-Run: 12,984,979,456 bytes free Post-Run: 13,070,622,720 bytes free WindowsXP-KB310994-SP2-Pro-BootDisk-ENU.exe [boot loader] timeout=2 default=multi(0)disk(0)rdisk(0)partition(2)\WINDOWS [operating systems] c:\cmdcons\BOOTSECT.DAT="Microsoft Windows Recovery Console" /cmdcons multi(0)disk(0)rdisk(0)partition(2)\WINDOWS="Windows XP Media Center Edition" /noexecute=optin /fastdetect 257 --- E O F --- 2009-09-17 15:11 Bon courage a toi. @+

Il n'y a rien a faire, je n'arrive pas a installer AntiVir sur le PC. L'installation se lance, et une fois presque terminee, la fenetre se ferme et plus rien ne se passe. J'ai meme essaye en mode sans echec mais ca ne fonctionne pas non plus. Et j'ai verifie si AntiVir avait tout de meme ete installe sur le PC, mais il n'y a aucune trace de celui-ci dans le fichier "Program Files". Je ne sais pas quoi faire maintenant...

Re! Voici deja le rapport OTM que tu m'as demande : All processes killed ========== PROCESSES ========== No active process named explorer.exe was found! ========== FILES ========== File/Folder c:\program files\search enhancer toolbar\ncl.dll not found. ========== REGISTRY ========== Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{25875464-7327-417C-8264-902D99CF6FD1}\ deleted successfully. Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{25875464-7327-417C-8264-902D99CF6FD1}\ not found. Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{25875464-7327-417C-8264-902D99CF6FD1}\ deleted successfully. Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{25875464-7327-417C-8264-902D99CF6FD1}\ not found. Registry key HKEY_CLASSES_ROOT\CLSID\{BFB5F154-9212-46F3-B547-AC6106030A54}\ deleted successfully. Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{BFB5F154-9212-46F3-B547-AC6106030A54}\ not found. Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{BFB5F154-9212-46F3-B547-AC6106030A54}\ not found. Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{BFB5F154-9212-46F3-B547-AC6106030A54}\ not found. Registry value HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar\\{BFB5F154-9212-46F3-B547-AC6106030A54} deleted successfully. Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{BFB5F154-9212-46F3-B547-AC6106030A54}\ not found. ========== COMMANDS ========== [EMPTYTEMP] User: Administrator ->Temp folder emptied: 59964 bytes ->Temporary Internet Files folder emptied: 32768 bytes User: All Users User: Application Data User: Default User ->Temp folder emptied: 59964 bytes ->Temporary Internet Files folder emptied: 32768 bytes User: Emilee Seda File delete failed. C:\Documents and Settings\Emilee Seda\Local Settings\Temp\Temporary Internet Files\Content.IE5\CXVFT8I1\MUSIKUK;kr=A;vertexp=05d;kt=K;ko=p;kpid=6;afc=1;kga=-1;k1=alternative;u=pPQQMsbcAYg%7C6;kgg=-1;kcr=us;khd=0;dc_dedup=1;shortform=1;dc_seed=215454529;tile=1;ord=324146538[1]. htm scheduled to be deleted on reboot. File delete failed. C:\Documents and Settings\Emilee Seda\Local Settings\Temp\clclean.0001.dir.0017\~df394b.tmp scheduled to be deleted on reboot. File delete failed. C:\Documents and Settings\Emilee Seda\Local Settings\Temp\clclean.0001.dir.0017\~efe2.tmp scheduled to be deleted on reboot. ->Temp folder emptied: 1179420266 bytes ->Temporary Internet Files folder emptied: 709419233 bytes ->Java cache emptied: 13660349 bytes ->FireFox cache emptied: 94139695 bytes User: LocalService ->Temp folder emptied: 0 bytes File delete failed. C:\Documents and Settings\LocalService\Local Settings\Temporary Internet Files\Content.IE5\index.dat scheduled to be deleted on reboot. ->Temporary Internet Files folder emptied: 2386057 bytes User: NetworkService ->Temp folder emptied: 0 bytes ->Temporary Internet Files folder emptied: 619308 bytes %systemdrive% .tmp files removed: 0 bytes %systemroot% .tmp files removed: 19569 bytes %systemroot%\System32 .tmp files removed: 12184081 bytes File delete failed. C:\WINDOWS\temp\Perflib_Perfdata_bb0.dat scheduled to be deleted on reboot. Windows Temp folder emptied: 127229077 bytes RecycleBin emptied: 569720816 bytes Total Files Cleaned = -1512.51 mb OTM by OldTimer - Version 3.0.0.6 log created on 09212009_132325 Files moved on Reboot... File C:\Documents and Settings\Emilee Seda\Local Settings\Temp\Temporary Internet Files\Content.IE5\CXVFT8I1\MUSIKUK;kr=A;vertexp=05d;kt=K;ko=p;kpid=6;afc=1;kga=-1;k1=alternative;u=pPQQMsbcAYg%7C6;kgg=-1;kcr=us;khd=0;dc_dedup=1;shortform=1;dc_seed=215454529;tile=1;ord=324146538[1]. htm not found! C:\Documents and Settings\Emilee Seda\Local Settings\Temp\clclean.0001.dir.0017\~df394b.tmp moved successfully. C:\Documents and Settings\Emilee Seda\Local Settings\Temp\clclean.0001.dir.0017\~efe2.tmp moved successfully. File C:\WINDOWS\temp\Perflib_Perfdata_bb0.dat not found! Registry entries deleted on Reboot... J'ai encore quelques petites difficultes a installer AntiVir mais je vais reessayer rapidemant et je posterai un rapport une fois l'analyse realisee.

Desole pour le contre temps, j'ai relance MBAM et supprime les malwares. Voici le nouveau rapport. Malwarebytes' Anti-Malware 1.41 Database version: 2825 Windows 5.1.2600 Service Pack 3 (Safe Mode) 9/20/2009 7:58:43 PM mbam-log-2009-09-20 (19-58-43).txt Scan type: Full Scan (C:\|D:\|E:\|F:\|) Objects scanned: 243141 Time elapsed: 2 hour(s), 12 minute(s), 49 second(s) Memory Processes Infected: 0 Memory Modules Infected: 0 Registry Keys Infected: 66 Registry Values Infected: 6 Registry Data Items Infected: 3 Folders Infected: 23 Files Infected: 486 Memory Processes Infected: (No malicious items detected) Memory Modules Infected: (No malicious items detected) Registry Keys Infected: HKEY_CLASSES_ROOT\videoegg.activexloader (Adware.VideoEgg) -> Quarantined and deleted successfully. HKEY_CLASSES_ROOT\CLSID\{168dc258-1455-4e61-8590-9dac2f27b675} (Adware.VideoEgg) -> Quarantined and deleted successfully. HKEY_CLASSES_ROOT\CLSID\{1a8642f1-dc80-4edc-a39d-0fb62a58b455} (Adware.VideoEgg) -> Quarantined and deleted successfully. HKEY_CLASSES_ROOT\CLSID\{3f91eb90-ef62-44ee-a685-fac29af111cd} (Adware.VideoEgg) -> Quarantined and deleted successfully. HKEY_CLASSES_ROOT\CLSID\{5c29c7e4-5321-4cad-be2e-877666bed5df} (Adware.VideoEgg) -> Quarantined and deleted successfully. HKEY_CLASSES_ROOT\CLSID\{83dfb6ee-ab18-41b5-86d4-b544a141d67e} (Adware.VideoEgg) -> Quarantined and deleted successfully. HKEY_CLASSES_ROOT\CLSID\{88d6cf0e-cf70-4c24-bf6e-e4e414bc649c} (Adware.VideoEgg) -> Quarantined and deleted successfully. HKEY_CLASSES_ROOT\CLSID\{8f6a82a2-d7b1-443e-bb9f-f7dc887dd618} (Adware.VideoEgg) -> Quarantined and deleted successfully. HKEY_CLASSES_ROOT\CLSID\{9856e2d8-ffb2-4fe5-8cad-d5ad6a35a804} (Adware.VideoEgg) -> Quarantined and deleted successfully. HKEY_CLASSES_ROOT\CLSID\{a3d06987-c35e-49e4-8fe2-ac67b9fbfb4c} (Adware.VideoEgg) -> Quarantined and deleted successfully. HKEY_CLASSES_ROOT\CLSID\{a58c497b-3ee2-45e7-9594-daca6be2a0d0} (Adware.VideoEgg) -> Quarantined and deleted successfully. HKEY_CLASSES_ROOT\CLSID\{ad0a3058-fd49-4f98-a514-fd055201835e} (Adware.VideoEgg) -> Quarantined and deleted successfully. HKEY_CLASSES_ROOT\CLSID\{ad5915ea-b61a-4dba-b5c8-ef4b2df0a3c7} (Adware.VideoEgg) -> Quarantined and deleted successfully. HKEY_CLASSES_ROOT\CLSID\{af2e62b6-f9e1-4d4f-a10a-9dc8e6dcbcc0} (Adware.VideoEgg) -> Quarantined and deleted successfully. HKEY_CLASSES_ROOT\CLSID\{bb187c0d-6f53-4f3e-9590-98fd3a7364a2} (Adware.VideoEgg) -> Quarantined and deleted successfully. HKEY_CLASSES_ROOT\CLSID\{c5041fd9-4819-4dc4-b20e-c950b5b03d2a} (Adware.VideoEgg) -> Quarantined and deleted successfully. HKEY_CLASSES_ROOT\CLSID\{d17726cc-d4dd-4c4a-9671-471d56e413b5} (Adware.VideoEgg) -> Quarantined and deleted successfully. HKEY_CLASSES_ROOT\CLSID\{db8cce99-59c6-4552-8bfc-058feb38d6ce} (Adware.VideoEgg) -> Quarantined and deleted successfully. HKEY_CLASSES_ROOT\CLSID\{dc3a04ee-cdd7-4407-915c-a5502f97eecd} (Adware.VideoEgg) -> Quarantined and deleted successfully. HKEY_CLASSES_ROOT\CLSID\{e1a63484-a022-4d42-830a-fbd411514440} (Adware.VideoEgg) -> Quarantined and deleted successfully. HKEY_CLASSES_ROOT\CLSID\{e282c728-189d-419e-8ee2-1601f4b39ba5} (Adware.VideoEgg) -> Quarantined and deleted successfully. HKEY_CLASSES_ROOT\videoegg.activexloader.1 (Adware.VideoEgg) -> Quarantined and deleted successfully. HKEY_CLASSES_ROOT\CLSID\{0656a137-b161-cadd-9777-e37a75727e78} (Fake.Dropped.Malware) -> Quarantined and deleted successfully. HKEY_CLASSES_ROOT\CLSID\{0b682cc1-fb40-4006-a5dd-99edd3c9095d} (Fake.Dropped.Malware) -> Quarantined and deleted successfully. HKEY_CLASSES_ROOT\CLSID\{0e1230f8-ea50-42a9-983c-d22abc2eeb4c} (Fake.Dropped.Malware) -> Quarantined and deleted successfully. HKEY_CLASSES_ROOT\CLSID\{54645654-2225-4455-44a1-9f4543d34545} (Fake.Dropped.Malware) -> Quarantined and deleted successfully. HKEY_CLASSES_ROOT\CLSID\{5c7f15e1-f31a-44fd-aa1a-2ec63aaffd3a} (Fake.Dropped.Malware) -> Quarantined and deleted successfully. HKEY_CLASSES_ROOT\CLSID\{9dd4258a-7138-49c4-8d34-587879a5c7a4} (Fake.Dropped.Malware) -> Quarantined and deleted successfully. HKEY_CLASSES_ROOT\CLSID\{b8c0220d-763d-49a4-95f4-61dfdec66ee6} (Fake.Dropped.Malware) -> Quarantined and deleted successfully. HKEY_CLASSES_ROOT\CLSID\{c3bcc488-1ae7-11d4-ab82-0010a4ec2338} (Fake.Dropped.Malware) -> Quarantined and deleted successfully. HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{000000da-0786-4633-87c6-1aa7a4429ef1} (Fake.Dropped.Malware) -> Quarantined and deleted successfully. HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9dd4258a-7138-49c4-8d34-587879a5c7a4} (Fake.Dropped.Malware) -> Quarantined and deleted successfully. HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{b8c0220d-763d-49a4-95f4-61dfdec66ee6} (Fake.Dropped.Malware) -> Quarantined and deleted successfully. HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{c3bcc488-1ae7-11d4-ab82-0010a4ec2338} (Fake.Dropped.Malware) -> Quarantined and deleted successfully. HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{42f2c9ba-614f-47c0-b3e3-ecfd34eed658} (Adware.ISTBar) -> Quarantined and deleted successfully. HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{07b18ea9-a523-4961-b6bb-170de4475cca} (Adware.MyWebSearch) -> Quarantined and deleted successfully. HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{25560540-9571-4d7b-9389-0f166788785a} (Adware.MyWebSearch) -> Quarantined and deleted successfully. HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{3dc201fb-e9c9-499c-a11f-23c360d7c3f8} (Adware.MyWebSearch) -> Quarantined and deleted successfully. HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{9ff05104-b030-46fc-94b8-81276e4e27df} (Adware.MyWebSearch) -> Quarantined and deleted successfully. HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{b499d34e-58ef-4927-ab9f-7af52b2c4c82} (Trojan.FakeAlert) -> Quarantined and deleted successfully. HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{6ca49fdd-4aeb-4f08-a394-c0a1f82caa16} (Trojan.Zlob) -> Quarantined and deleted successfully. HKEY_CURRENT_USER\HOL5_VXIEWER.FULL.1 (Trojan.FakeAlert) -> Quarantined and deleted successfully. HKEY_CURRENT_USER\SOFTWARE\AntiSpywareShield (Rogue.AntiSpywareShield) -> Quarantined and deleted successfully. HKEY_CURRENT_USER\SOFTWARE\Classes\applications\accessdiver.exe (Trojan.FakeAlert) -> Quarantined and deleted successfully. HKEY_CURRENT_USER\SOFTWARE\Classes\hol5_vxiewer.full.1 (Trojan.FakeAlert) -> Quarantined and deleted successfully. HKEY_CURRENT_USER\SOFTWARE\dpcproxy (Fake.Dropped.Malware) -> Quarantined and deleted successfully. HKEY_CURRENT_USER\SOFTWARE\fwbd (Trojan.FakeAlert) -> Quarantined and deleted successfully. HKEY_CURRENT_USER\SOFTWARE\Golden Palace Casino PT (Trojan.DNSChanger) -> Quarantined and deleted successfully. HKEY_CURRENT_USER\SOFTWARE\HolLol (Trojan.FakeAlert) -> Quarantined and deleted successfully. HKEY_CURRENT_USER\SOFTWARE\Inet Delivery (Trojan.FakeAlert) -> Quarantined and deleted successfully. HKEY_CURRENT_USER\SOFTWARE\Invictus (Trojan.FakeAlert) -> Quarantined and deleted successfully. HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\logons (Fake.Dropped.Malware) -> Quarantined and deleted successfully. HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\Golden Palace Casino NEW (Trojan.DNSChanger) -> Quarantined and deleted successfully. HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\Inet Delivery (Trojan.FakeAlert) -> Quarantined and deleted successfully. HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\mslAgent (Trojan.FakeAlert) -> Quarantined and deleted successfully. HKEY_CURRENT_USER\SOFTWARE\mwc (Malware.Trace) -> Quarantined and deleted successfully. HKEY_CURRENT_USER\SOFTWARE\wkey (Malware.Trace) -> Quarantined and deleted successfully. HKEY_CURRENT_USER\System\CurrentControlSet\Services\iTunesMusic (Fake.Dropped.Malware) -> Quarantined and deleted successfully. HKEY_CURRENT_USER\System\CurrentControlSet\Services\rdriv (Fake.Dropped.Malware) -> Quarantined and deleted successfully. HKEY_CURRENT_USER\typelib (Fake.Dropped.Malware) -> Quarantined and deleted successfully. HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\xp_antispyware (Rogue.XPAntiSpyware) -> Quarantined and deleted successfully. HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@videoegg.com/publisher,version=0.2.0 (Adware.VideoEgg) -> Quarantined and deleted successfully. HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@videoegg.com/updater,version=0.2.0 (Adware.VideoEgg) -> Quarantined and deleted successfully. HKEY_LOCAL_MACHINE\SOFTWARE\XP_AntiSpyware (Rogue.XPAntiSpyware) -> Quarantined and deleted successfully. HKEY_LOCAL_MACHINE\System\CurrentControlSet\Services\browserctl (Trojan.Agent) -> Quarantined and deleted successfully. HKEY_LOCAL_MACHINE\System\CurrentControlSet\Services\browserctldrv (Trojan.Agent) -> Quarantined and deleted successfully. Registry Values Infected: HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\Toolbar\{0e1230f8-ea50-42a9-983c-d22abc2eeb4c} (Fake.Dropped.Malware) -> Quarantined and deleted successfully. HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\SharedTaskScheduler\{0656a137-b161-cadd-9777-e37a75727e78} (Fake.Dropped.Malware) -> Quarantined and deleted successfully. HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad\SystemCheck2 (Trojan.Agent) -> Quarantined and deleted successfully. HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SvcHost\browserctl (Trojan.Agent) -> Quarantined and deleted successfully. HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\sysfbtray (Worm.KoobFace) -> Quarantined and deleted successfully. HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\sysmstray (Worm.KoobFace) -> Quarantined and deleted successfully. Registry Data Items Infected: HKEY_CURRENT_USER\SOFTWARE\Microsoft\Security Center\AntiVirusDisableNotify (Disabled.SecurityCenter) -> Bad: (1) Good: (0) -> Quarantined and deleted successfully. HKEY_CURRENT_USER\SOFTWARE\Microsoft\Security Center\FirewallDisableNotify (Disabled.SecurityCenter) -> Bad: (1) Good: (0) -> Quarantined and deleted successfully. HKEY_CURRENT_USER\SOFTWARE\Microsoft\Security Center\UpdatesDisableNotify (Disabled.SecurityCenter) -> Bad: (1) Good: (0) -> Quarantined and deleted successfully. Folders Infected: C:\Documents and Settings\All Users\Application Data\VideoEgg (Adware.VideoEgg) -> Quarantined and deleted successfully. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg (Adware.VideoEgg) -> Quarantined and deleted successfully. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher (Adware.VideoEgg) -> Quarantined and deleted successfully. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\3461 (Adware.VideoEgg) -> Quarantined and deleted successfully. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\3461\resources (Adware.VideoEgg) -> Quarantined and deleted successfully. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\3461\resources\VideoEgg (Adware.VideoEgg) -> Quarantined and deleted successfully. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\3461\resources\VideoEgg\images (Adware.VideoEgg) -> Quarantined and deleted successfully. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\3461\resources\VideoEgg\messages (Adware.VideoEgg) -> Quarantined and deleted successfully. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\4060 (Adware.VideoEgg) -> Quarantined and deleted successfully. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\4060\resources (Adware.VideoEgg) -> Quarantined and deleted successfully. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\4060\resources\VideoEgg (Adware.VideoEgg) -> Quarantined and deleted successfully. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\4060\resources\VideoEgg\images (Adware.VideoEgg) -> Quarantined and deleted successfully. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\4060\resources\VideoEgg\messages (Adware.VideoEgg) -> Quarantined and deleted successfully. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\4152 (Adware.VideoEgg) -> Quarantined and deleted successfully. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\4152\resources (Adware.VideoEgg) -> Quarantined and deleted successfully. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\4152\resources\VideoEgg (Adware.VideoEgg) -> Quarantined and deleted successfully. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\4152\resources\VideoEgg\images (Adware.VideoEgg) -> Quarantined and deleted successfully. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\4152\resources\VideoEgg\messages (Adware.VideoEgg) -> Quarantined and deleted successfully. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Updater (Adware.VideoEgg) -> Quarantined and deleted successfully. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Updater\2663 (Adware.VideoEgg) -> Quarantined and deleted successfully. C:\Program Files\BrowserCtl (Trojan.Agent) -> Quarantined and deleted successfully. C:\WINDOWS\system32\smp (Fake.Dropped.Malware) -> Quarantined and deleted successfully. C:\WINDOWS\mslagent (Adware.EGDAccess) -> Quarantined and deleted successfully. Files Infected: C:\Program Files\VideoEgg\Loader\2663\npvideoegg-loader.dll (Adware.VideoEgg) -> Quarantined and deleted successfully. C:\Documents and Settings\All Users\Application Data\VideoEgg\user.dat (Adware.VideoEgg) -> Quarantined and deleted successfully. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\publisher.ver (Adware.VideoEgg) -> Quarantined and deleted successfully. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\3461\avcodec.dll (Adware.VideoEgg) -> Quarantined and deleted successfully. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\3461\crashRpt.dll (Adware.VideoEgg) -> Quarantined and deleted successfully. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\3461\dataCollection.tmp (Adware.VideoEgg) -> Quarantined and deleted successfully. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\3461\FLVEncoder.dll (Adware.VideoEgg) -> Quarantined and deleted successfully. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\3461\lame_enc.dll (Adware.VideoEgg) -> Quarantined and deleted successfully. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\3461\LevelMeter.ax (Adware.VideoEgg) -> Quarantined and deleted successfully. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\3461\libcurlve.dll (Adware.VideoEgg) -> Quarantined and deleted successfully. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\3461\libpng.dll (Adware.VideoEgg) -> Quarantined and deleted successfully. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\3461\npvideoegg-publisher.dll (Adware.VideoEgg) -> Quarantined and deleted successfully. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\3461\report.log (Adware.VideoEgg) -> Quarantined and deleted successfully. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\3461\VideoEgg_FLVWriter.ax (Adware.VideoEgg) -> Quarantined and deleted successfully. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\3461\zlib.dll (Adware.VideoEgg) -> Quarantined and deleted successfully. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\3461\resources\VideoEgg\images\aol_watermark.png (Adware.VideoEgg) -> Quarantined and deleted successfully. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\3461\resources\VideoEgg\images\audio_combo.png (Adware.VideoEgg) -> Quarantined and deleted successfully. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\3461\resources\VideoEgg\images\audio_source.png (Adware.VideoEgg) -> Quarantined and deleted successfully. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\3461\resources\VideoEgg\images\big_gray_logo.png (Adware.VideoEgg) -> Quarantined and deleted successfully. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\3461\resources\VideoEgg\images\big_logo_cropped.png (Adware.VideoEgg) -> Quarantined and deleted successfully. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\3461\resources\VideoEgg\images\blank_slide.png (Adware.VideoEgg) -> Quarantined and deleted successfully. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\3461\resources\VideoEgg\images\button_browse_down.png (Adware.VideoEgg) -> Quarantined and deleted successfully. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\3461\resources\VideoEgg\images\button_browse_over.png (Adware.VideoEgg) -> Quarantined and deleted successfully. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\3461\resources\VideoEgg\images\button_browse_up.png (Adware.VideoEgg) -> Quarantined and deleted successfully. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\3461\resources\VideoEgg\images\camcorders_title.png (Adware.VideoEgg) -> Quarantined and deleted successfully. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\3461\resources\VideoEgg\images\camcorder_btn_highlighted.png (Adware.VideoEgg) -> Quarantined and deleted successfully. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\3461\resources\VideoEgg\images\camcorder_slide.png (Adware.VideoEgg) -> Quarantined and deleted successfully. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\3461\resources\VideoEgg\images\corners_bottom_left.png (Adware.VideoEgg) -> Quarantined and deleted successfully. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\3461\resources\VideoEgg\images\corners_bottom_left_curve.png (Adware.VideoEgg) -> Quarantined and deleted successfully. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\3461\resources\VideoEgg\images\corners_bottom_right.png (Adware.VideoEgg) -> Quarantined and deleted successfully. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\3461\resources\VideoEgg\images\corners_top_right.png (Adware.VideoEgg) -> Quarantined and deleted successfully. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\3461\resources\VideoEgg\images\done.png (Adware.VideoEgg) -> Quarantined and deleted successfully. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\3461\resources\VideoEgg\images\done_capture.png (Adware.VideoEgg) -> Quarantined and deleted successfully. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\3461\resources\VideoEgg\images\done_capture_down.png (Adware.VideoEgg) -> Quarantined and deleted successfully. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\3461\resources\VideoEgg\images\done_capture_over.png (Adware.VideoEgg) -> Quarantined and deleted successfully. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\3461\resources\VideoEgg\images\done_down.png (Adware.VideoEgg) -> Quarantined and deleted successfully. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\3461\resources\VideoEgg\images\done_over.png (Adware.VideoEgg) -> Quarantined and deleted successfully. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\3461\resources\VideoEgg\images\dropshadow_bottom_left.png (Adware.VideoEgg) -> Quarantined and deleted successfully. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\3461\resources\VideoEgg\images\dropshadow_horiz.png (Adware.VideoEgg) -> Quarantined and deleted successfully. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\3461\resources\VideoEgg\images\dropshadow_vertical.png (Adware.VideoEgg) -> Quarantined and deleted successfully. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\3461\resources\VideoEgg\images\dropzone.png (Adware.VideoEgg) -> Quarantined and deleted successfully. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\3461\resources\VideoEgg\images\dv_fast_forward.png (Adware.VideoEgg) -> Quarantined and deleted successfully. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\3461\resources\VideoEgg\images\dv_pause.png (Adware.VideoEgg) -> Quarantined and deleted successfully. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\3461\resources\VideoEgg\images\dv_play.png (Adware.VideoEgg) -> Quarantined and deleted successfully. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\3461\resources\VideoEgg\images\dv_rewind.png (Adware.VideoEgg) -> Quarantined and deleted successfully. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\3461\resources\VideoEgg\images\dv_stop.png (Adware.VideoEgg) -> Quarantined and deleted successfully. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\3461\resources\VideoEgg\images\email_instructions.png (Adware.VideoEgg) -> Quarantined and deleted successfully. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\3461\resources\VideoEgg\images\email_sent.png (Adware.VideoEgg) -> Quarantined and deleted successfully. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\3461\resources\VideoEgg\images\email_sent_down.png (Adware.VideoEgg) -> Quarantined and deleted successfully. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\3461\resources\VideoEgg\images\email_sent_over.png (Adware.VideoEgg) -> Quarantined and deleted successfully. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\3461\resources\VideoEgg\images\eraser.CUR (Adware.VideoEgg) -> Quarantined and deleted successfully. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\3461\resources\VideoEgg\images\eraser_cursor.png (Adware.VideoEgg) -> Quarantined and deleted successfully. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\3461\resources\VideoEgg\images\file_btn_highlighted.png (Adware.VideoEgg) -> Quarantined and deleted successfully. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\3461\resources\VideoEgg\images\file_slide.png (Adware.VideoEgg) -> Quarantined and deleted successfully. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\3461\resources\VideoEgg\images\help.png (Adware.VideoEgg) -> Quarantined and deleted successfully. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\3461\resources\VideoEgg\images\icon_camcorder.png (Adware.VideoEgg) -> Quarantined and deleted successfully. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\3461\resources\VideoEgg\images\icon_camcorders.png (Adware.VideoEgg) -> Quarantined and deleted successfully. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\3461\resources\VideoEgg\images\icon_camcorder_dark.png (Adware.VideoEgg) -> Quarantined and deleted successfully. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\3461\resources\VideoEgg\images\icon_camcorder_light.png (Adware.VideoEgg) -> Quarantined and deleted successfully. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\3461\resources\VideoEgg\images\icon_ff.png (Adware.VideoEgg) -> Quarantined and deleted successfully. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\3461\resources\VideoEgg\images\icon_file_dark.png (Adware.VideoEgg) -> Quarantined and deleted successfully. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\3461\resources\VideoEgg\images\icon_file_light.png (Adware.VideoEgg) -> Quarantined and deleted successfully. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\3461\resources\VideoEgg\images\icon_pause.png (Adware.VideoEgg) -> Quarantined and deleted successfully. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\3461\resources\VideoEgg\images\icon_phone_dark.png (Adware.VideoEgg) -> Quarantined and deleted successfully. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\3461\resources\VideoEgg\images\icon_phone_light.png (Adware.VideoEgg) -> Quarantined and deleted successfully. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\3461\resources\VideoEgg\images\icon_play.png (Adware.VideoEgg) -> Quarantined and deleted successfully. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\3461\resources\VideoEgg\images\icon_rewind.png (Adware.VideoEgg) -> Quarantined and deleted successfully. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\3461\resources\VideoEgg\images\icon_stop.png (Adware.VideoEgg) -> Quarantined and deleted successfully. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\3461\resources\VideoEgg\images\icon_webcam.png (Adware.VideoEgg) -> Quarantined and deleted successfully. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\3461\resources\VideoEgg\images\icon_webcams.png (Adware.VideoEgg) -> Quarantined and deleted successfully. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\3461\resources\VideoEgg\images\icon_webcam_dark.png (Adware.VideoEgg) -> Quarantined and deleted successfully. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\3461\resources\VideoEgg\images\icon_webcam_light.png (Adware.VideoEgg) -> Quarantined and deleted successfully. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\3461\resources\VideoEgg\images\loading.png (Adware.VideoEgg) -> Quarantined and deleted successfully. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\3461\resources\VideoEgg\images\loading_movie.png (Adware.VideoEgg) -> Quarantined and deleted successfully. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\3461\resources\VideoEgg\images\locating.png (Adware.VideoEgg) -> Quarantined and deleted successfully. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\3461\resources\VideoEgg\images\logo.png (Adware.VideoEgg) -> Quarantined and deleted successfully. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\3461\resources\VideoEgg\images\logo_bottom.png (Adware.VideoEgg) -> Quarantined and deleted successfully. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\3461\resources\VideoEgg\images\logo_middle.png (Adware.VideoEgg) -> Quarantined and deleted successfully. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\3461\resources\VideoEgg\images\logo_top.png (Adware.VideoEgg) -> Quarantined and deleted successfully. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\3461\resources\VideoEgg\images\mobile_btn_highlighted.png (Adware.VideoEgg) -> Quarantined and deleted successfully. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\3461\resources\VideoEgg\images\mobile_slide.png (Adware.VideoEgg) -> Quarantined and deleted successfully. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\3461\resources\VideoEgg\images\mobile_slide_disabled.png (Adware.VideoEgg) -> Quarantined and deleted successfully. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\3461\resources\VideoEgg\images\movie_placeholder.png (Adware.VideoEgg) -> Quarantined and deleted successfully. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\3461\resources\VideoEgg\images\ok.png (Adware.VideoEgg) -> Quarantined and deleted successfully. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\3461\resources\VideoEgg\images\ok_down.png (Adware.VideoEgg) -> Quarantined and deleted successfully. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\3461\resources\VideoEgg\images\ok_over.png (Adware.VideoEgg) -> Quarantined and deleted successfully. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\3461\resources\VideoEgg\images\player_fast_forward.png (Adware.VideoEgg) -> Quarantined and deleted successfully. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\3461\resources\VideoEgg\images\player_fast_forward_disabled.png (Adware.VideoEgg) -> Quarantined and deleted successfully. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\3461\resources\VideoEgg\images\player_fill.png (Adware.VideoEgg) -> Quarantined and deleted successfully. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\3461\resources\VideoEgg\images\player_pause.png (Adware.VideoEgg) -> Quarantined and deleted successfully. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\3461\resources\VideoEgg\images\player_play.png (Adware.VideoEgg) -> Quarantined and deleted successfully. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\3461\resources\VideoEgg\images\player_rewind.png (Adware.VideoEgg) -> Quarantined and deleted successfully. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\3461\resources\VideoEgg\images\player_rewind_disabled.png (Adware.VideoEgg) -> Quarantined and deleted successfully. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\3461\resources\VideoEgg\images\player_rewind_to_start.png (Adware.VideoEgg) -> Quarantined and deleted successfully. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\3461\resources\VideoEgg\images\playhead.png (Adware.VideoEgg) -> Quarantined and deleted successfully. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\3461\resources\VideoEgg\images\powered_by.png (Adware.VideoEgg) -> Quarantined and deleted successfully. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\3461\resources\VideoEgg\images\progress.png (Adware.VideoEgg) -> Quarantined and deleted successfully. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\3461\resources\VideoEgg\images\refresh_list_down.png (Adware.VideoEgg) -> Quarantined and deleted successfully. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\3461\resources\VideoEgg\images\refresh_list_over.png (Adware.VideoEgg) -> Quarantined and deleted successfully. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\3461\resources\VideoEgg\images\refresh_list_up.png (Adware.VideoEgg) -> Quarantined and deleted successfully. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\3461\resources\VideoEgg\images\restart.png (Adware.VideoEgg) -> Quarantined and deleted successfully. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\3461\resources\VideoEgg\images\restart_over.png (Adware.VideoEgg) -> Quarantined and deleted successfully. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\3461\resources\VideoEgg\images\start_capture.png (Adware.VideoEgg) -> Quarantined and deleted successfully. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\3461\resources\VideoEgg\images\start_capture_disabled.png (Adware.VideoEgg) -> Quarantined and deleted successfully. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\3461\resources\VideoEgg\images\start_capture_down.png (Adware.VideoEgg) -> Quarantined and deleted successfully. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\3461\resources\VideoEgg\images\start_capture_over.png (Adware.VideoEgg) -> Quarantined and deleted successfully. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\3461\resources\VideoEgg\images\start_over.png (Adware.VideoEgg) -> Quarantined and deleted successfully. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\3461\resources\VideoEgg\images\start_over_highlight.png (Adware.VideoEgg) -> Quarantined and deleted successfully. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\3461\resources\VideoEgg\images\start_slider.png (Adware.VideoEgg) -> Quarantined and deleted successfully. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\3461\resources\VideoEgg\images\stop_capture.png (Adware.VideoEgg) -> Quarantined and deleted successfully. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\3461\resources\VideoEgg\images\stop_capture_disabled.png (Adware.VideoEgg) -> Quarantined and deleted successfully. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\3461\resources\VideoEgg\images\stop_capture_down.png (Adware.VideoEgg) -> Quarantined and deleted successfully. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\3461\resources\VideoEgg\images\stop_capture_over.png (Adware.VideoEgg) -> Quarantined and deleted successfully. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\3461\resources\VideoEgg\images\stop_slider.png (Adware.VideoEgg) -> Quarantined and deleted successfully. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\3461\resources\VideoEgg\images\tab_slide_deselected.png (Adware.VideoEgg) -> Quarantined and deleted successfully. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\3461\resources\VideoEgg\images\tape_control.png (Adware.VideoEgg) -> Quarantined and deleted successfully. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\3461\resources\VideoEgg\images\text_camcorder.png (Adware.VideoEgg) -> Quarantined and deleted successfully. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\3461\resources\VideoEgg\images\text_camcorder_highlight.png (Adware.VideoEgg) -> Quarantined and deleted successfully. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\3461\resources\VideoEgg\images\text_file.png (Adware.VideoEgg) -> Quarantined and deleted successfully. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\3461\resources\VideoEgg\images\text_file_highlight.png (Adware.VideoEgg) -> Quarantined and deleted successfully. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\3461\resources\VideoEgg\images\text_phone.png (Adware.VideoEgg) -> Quarantined and deleted successfully. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\3461\resources\VideoEgg\images\text_phone_highlight.png (Adware.VideoEgg) -> Quarantined and deleted successfully. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\3461\resources\VideoEgg\images\text_webcam.png (Adware.VideoEgg) -> Quarantined and deleted successfully. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\3461\resources\VideoEgg\images\text_webcam_highlight.png (Adware.VideoEgg) -> Quarantined and deleted successfully. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\3461\resources\VideoEgg\images\title.png (Adware.VideoEgg) -> Quarantined and deleted successfully. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\3461\resources\VideoEgg\images\upload.png (Adware.VideoEgg) -> Quarantined and deleted successfully. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\3461\resources\VideoEgg\images\uploading.png (Adware.VideoEgg) -> Quarantined and deleted successfully. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\3461\resources\VideoEgg\images\uploading_fill.png (Adware.VideoEgg) -> Quarantined and deleted successfully. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\3461\resources\VideoEgg\images\uploading_high.png (Adware.VideoEgg) -> Quarantined and deleted successfully. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\3461\resources\VideoEgg\images\uploading_low.png (Adware.VideoEgg) -> Quarantined and deleted successfully. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\3461\resources\VideoEgg\images\uploading_medium.png (Adware.VideoEgg) -> Quarantined and deleted successfully. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\3461\resources\VideoEgg\images\uploading_thumbnail.png (Adware.VideoEgg) -> Quarantined and deleted successfully. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\3461\resources\VideoEgg\images\upload_down.png (Adware.VideoEgg) -> Quarantined and deleted successfully. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\3461\resources\VideoEgg\images\upload_from.png (Adware.VideoEgg) -> Quarantined and deleted successfully. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\3461\resources\VideoEgg\images\upload_over.png (Adware.VideoEgg) -> Quarantined and deleted successfully. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\3461\resources\VideoEgg\images\volume_gray.png (Adware.VideoEgg) -> Quarantined and deleted successfully. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\3461\resources\VideoEgg\images\volume_green.png (Adware.VideoEgg) -> Quarantined and deleted successfully. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\3461\resources\VideoEgg\images\volume_high.png (Adware.VideoEgg) -> Quarantined and deleted successfully. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\3461\resources\VideoEgg\images\volume_low.png (Adware.VideoEgg) -> Quarantined and deleted successfully. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\3461\resources\VideoEgg\images\volume_orange.png (Adware.VideoEgg) -> Quarantined and deleted successfully. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\3461\resources\VideoEgg\images\volume_red.png (Adware.VideoEgg) -> Quarantined and deleted successfully. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\3461\resources\VideoEgg\images\volume_slider.png (Adware.VideoEgg) -> Quarantined and deleted successfully. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\3461\resources\VideoEgg\images\waiting_for_email.png (Adware.VideoEgg) -> Quarantined and deleted successfully. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\3461\resources\VideoEgg\images\webcams_title.png (Adware.VideoEgg) -> Quarantined and deleted successfully. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\3461\resources\VideoEgg\images\webcam_btn_highlighted.png (Adware.VideoEgg) -> Quarantined and deleted successfully. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\3461\resources\VideoEgg\images\webcam_slide.png (Adware.VideoEgg) -> Quarantined and deleted successfully. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\3461\resources\VideoEgg\messages\messages.en-US.bundle (Adware.VideoEgg) -> Quarantined and deleted successfully. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\4060\avcodec.dll (Adware.VideoEgg) -> Quarantined and deleted successfully. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\4060\crashRpt.dll (Adware.VideoEgg) -> Quarantined and deleted successfully. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\4060\FLVEncoder.dll (Adware.VideoEgg) -> Quarantined and deleted successfully. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\4060\lame_enc.dll (Adware.VideoEgg) -> Quarantined and deleted successfully. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\4060\LevelMeter.ax (Adware.VideoEgg) -> Quarantined and deleted successfully. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\4060\libcurlve.dll (Adware.VideoEgg) -> Quarantined and deleted successfully. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\4060\libpng.dll (Adware.VideoEgg) -> Quarantined and deleted successfully. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\4060\npvideoegg-publisher.dll (Adware.VideoEgg) -> Quarantined and deleted successfully. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\4060\VideoEgg_FLVWriter.ax (Adware.VideoEgg) -> Quarantined and deleted successfully. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\4060\zlib.dll (Adware.VideoEgg) -> Quarantined and deleted successfully. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\4060\resources\VideoEgg\images\aol_watermark.png (Adware.VideoEgg) -> Quarantined and deleted successfully. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\4060\resources\VideoEgg\images\audio_combo.png (Adware.VideoEgg) -> Quarantined and deleted successfully. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\4060\resources\VideoEgg\images\audio_source.png (Adware.VideoEgg) -> Quarantined and deleted successfully. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\4060\resources\VideoEgg\images\big_gray_logo.png (Adware.VideoEgg) -> Quarantined and deleted successfully. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\4060\resources\VideoEgg\images\big_logo_cropped.png (Adware.VideoEgg) -> Quarantined and deleted successfully. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\4060\resources\VideoEgg\images\blank_slide.png (Adware.VideoEgg) -> Quarantined and deleted successfully. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\4060\resources\VideoEgg\images\button_browse_down.png (Adware.VideoEgg) -> Quarantined and deleted successfully. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\4060\resources\VideoEgg\images\button_browse_over.png (Adware.VideoEgg) -> Quarantined and deleted successfully. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\4060\resources\VideoEgg\images\button_browse_up.png (Adware.VideoEgg) -> Quarantined and deleted successfully. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\4060\resources\VideoEgg\images\camcorders_title.png (Adware.VideoEgg) -> Quarantined and deleted successfully. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\4060\resources\VideoEgg\images\camcorder_btn_highlighted.png (Adware.VideoEgg) -> Quarantined and deleted successfully. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\4060\resources\VideoEgg\images\camcorder_slide.png (Adware.VideoEgg) -> Quarantined and deleted successfully. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\4060\resources\VideoEgg\images\corners_bottom_left.png (Adware.VideoEgg) -> Quarantined and deleted successfully. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\4060\resources\VideoEgg\images\corners_bottom_left_curve.png (Adware.VideoEgg) -> Quarantined and deleted successfully. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\4060\resources\VideoEgg\images\corners_bottom_right.png (Adware.VideoEgg) -> Quarantined and deleted successfully. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\4060\resources\VideoEgg\images\corners_top_right.png (Adware.VideoEgg) -> Quarantined and deleted successfully. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\4060\resources\VideoEgg\images\done.png (Adware.VideoEgg) -> Quarantined and deleted successfully. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\4060\resources\VideoEgg\images\done_capture.png (Adware.VideoEgg) -> Quarantined and deleted successfully. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\4060\resources\VideoEgg\images\done_capture_down.png (Adware.VideoEgg) -> Quarantined and deleted successfully. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\4060\resources\VideoEgg\images\done_capture_over.png (Adware.VideoEgg) -> Quarantined and deleted successfully. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\4060\resources\VideoEgg\images\done_down.png (Adware.VideoEgg) -> Quarantined and deleted successfully. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\4060\resources\VideoEgg\images\done_over.png (Adware.VideoEgg) -> Quarantined and deleted successfully. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\4060\resources\VideoEgg\images\dropshadow_bottom_left.png (Adware.VideoEgg) -> Quarantined and deleted successfully. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\4060\resources\VideoEgg\images\dropshadow_horiz.png (Adware.VideoEgg) -> Quarantined and deleted successfully. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\4060\resources\VideoEgg\images\dropshadow_vertical.png (Adware.VideoEgg) -> Quarantined and deleted successfully. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\4060\resources\VideoEgg\images\dropzone.png (Adware.VideoEgg) -> Quarantined and deleted successfully. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\4060\resources\VideoEgg\images\dv_fast_forward.png (Adware.VideoEgg) -> Quarantined and deleted successfully. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\4060\resources\VideoEgg\images\dv_pause.png (Adware.VideoEgg) -> Quarantined and deleted successfully. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\4060\resources\VideoEgg\images\dv_play.png (Adware.VideoEgg) -> Quarantined and deleted successfully. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\4060\resources\VideoEgg\images\dv_rewind.png (Adware.VideoEgg) -> Quarantined and deleted successfully. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\4060\resources\VideoEgg\images\dv_stop.png (Adware.VideoEgg) -> Quarantined and deleted successfully. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\4060\resources\VideoEgg\images\email_instructions.png (Adware.VideoEgg) -> Quarantined and deleted successfully. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\4060\resources\VideoEgg\images\email_sent.png (Adware.VideoEgg) -> Quarantined and deleted successfully. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\4060\resources\VideoEgg\images\email_sent_down.png (Adware.VideoEgg) -> Quarantined and deleted successfully. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\4060\resources\VideoEgg\images\email_sent_over.png (Adware.VideoEgg) -> Quarantined and deleted successfully. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\4060\resources\VideoEgg\images\eraser.CUR (Adware.VideoEgg) -> Quarantined and deleted successfully. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\4060\resources\VideoEgg\images\eraser_cursor.png (Adware.VideoEgg) -> Quarantined and deleted successfully. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\4060\resources\VideoEgg\images\file_btn_highlighted.png (Adware.VideoEgg) -> Quarantined and deleted successfully. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\4060\resources\VideoEgg\images\file_slide.png (Adware.VideoEgg) -> Quarantined and deleted successfully. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\4060\resources\VideoEgg\images\help.png (Adware.VideoEgg) -> Quarantined and deleted successfully. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\4060\resources\VideoEgg\images\icon_camcorder.png (Adware.VideoEgg) -> Quarantined and deleted successfully. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\4060\resources\VideoEgg\images\icon_camcorders.png (Adware.VideoEgg) -> Quarantined and deleted successfully. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\4060\resources\VideoEgg\images\icon_camcorder_dark.png (Adware.VideoEgg) -> Quarantined and deleted successfully. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\4060\resources\VideoEgg\images\icon_camcorder_light.png (Adware.VideoEgg) -> Quarantined and deleted successfully. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\4060\resources\VideoEgg\images\icon_ff.png (Adware.VideoEgg) -> Quarantined and deleted successfully. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\4060\resources\VideoEgg\images\icon_file_dark.png (Adware.VideoEgg) -> Quarantined and deleted successfully. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\4060\resources\VideoEgg\images\icon_file_light.png (Adware.VideoEgg) -> Quarantined and deleted successfully. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\4060\resources\VideoEgg\images\icon_pause.png (Adware.VideoEgg) -> Quarantined and deleted successfully. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\4060\resources\VideoEgg\images\icon_phone_dark.png (Adware.VideoEgg) -> Quarantined and deleted successfully. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\4060\resources\VideoEgg\images\icon_phone_light.png (Adware.VideoEgg) -> Quarantined and deleted successfully. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\4060\resources\VideoEgg\images\icon_play.png (Adware.VideoEgg) -> Quarantined and deleted successfully. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\4060\resources\VideoEgg\images\icon_rewind.png (Adware.VideoEgg) -> Quarantined and deleted successfully. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\4060\resources\VideoEgg\images\icon_stop.png (Adware.VideoEgg) -> Quarantined and deleted successfully. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\4060\resources\VideoEgg\images\icon_webcam.png (Adware.VideoEgg) -> Quarantined and deleted successfully. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\4060\resources\VideoEgg\images\icon_webcams.png (Adware.VideoEgg) -> Quarantined and deleted successfully. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\4060\resources\VideoEgg\images\icon_webcam_dark.png (Adware.VideoEgg) -> Quarantined and deleted successfully. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\4060\resources\VideoEgg\images\icon_webcam_light.png (Adware.VideoEgg) -> Quarantined and deleted successfully. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\4060\resources\VideoEgg\images\loading.png (Adware.VideoEgg) -> Quarantined and deleted successfully. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\4060\resources\VideoEgg\images\loading_movie.png (Adware.VideoEgg) -> Quarantined and deleted successfully. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\4060\resources\VideoEgg\images\locating.png (Adware.VideoEgg) -> Quarantined and deleted successfully. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\4060\resources\VideoEgg\images\logo.png (Adware.VideoEgg) -> Quarantined and deleted successfully. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\4060\resources\VideoEgg\images\logo_bottom.png (Adware.VideoEgg) -> Quarantined and deleted successfully. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\4060\resources\VideoEgg\images\logo_middle.png (Adware.VideoEgg) -> Quarantined and deleted successfully. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\4060\resources\VideoEgg\images\logo_top.png (Adware.VideoEgg) -> Quarantined and deleted successfully. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\4060\resources\VideoEgg\images\mobile_btn_highlighted.png (Adware.VideoEgg) -> Quarantined and deleted successfully. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\4060\resources\VideoEgg\images\mobile_slide.png (Adware.VideoEgg) -> Quarantined and deleted successfully. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\4060\resources\VideoEgg\images\mobile_slide_disabled.png (Adware.VideoEgg) -> Quarantined and deleted successfully. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\4060\resources\VideoEgg\images\movie_placeholder.png (Adware.VideoEgg) -> Quarantined and deleted successfully. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\4060\resources\VideoEgg\images\ok.png (Adware.VideoEgg) -> Quarantined and deleted successfully. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\4060\resources\VideoEgg\images\ok_down.png (Adware.VideoEgg) -> Quarantined and deleted successfully. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\4060\resources\VideoEgg\images\ok_over.png (Adware.VideoEgg) -> Quarantined and deleted successfully. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\4060\resources\VideoEgg\images\player_fast_forward.png (Adware.VideoEgg) -> Quarantined and deleted successfully. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\4060\resources\VideoEgg\images\player_fast_forward_disabled.png (Adware.VideoEgg) -> Quarantined and deleted successfully. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\4060\resources\VideoEgg\images\player_fill.png (Adware.VideoEgg) -> Quarantined and deleted successfully. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\4060\resources\VideoEgg\images\player_pause.png (Adware.VideoEgg) -> Quarantined and deleted successfully. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\4060\resources\VideoEgg\images\player_play.png (Adware.VideoEgg) -> Quarantined and deleted successfully. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\4060\resources\VideoEgg\images\player_rewind.png (Adware.VideoEgg) -> Quarantined and deleted successfully. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\4060\resources\VideoEgg\images\player_rewind_disabled.png (Adware.VideoEgg) -> Quarantined and deleted successfully. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\4060\resources\VideoEgg\images\player_rewind_to_start.png (Adware.VideoEgg) -> Quarantined and deleted successfully. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\4060\resources\VideoEgg\images\playhead.png (Adware.VideoEgg) -> Quarantined and deleted successfully. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\4060\resources\VideoEgg\images\powered_by.png (Adware.VideoEgg) -> Quarantined and deleted successfully. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\4060\resources\VideoEgg\images\progress.png (Adware.VideoEgg) -> Quarantined and deleted successfully. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\4060\resources\VideoEgg\images\refresh_list_down.png (Adware.VideoEgg) -> Quarantined and deleted successfully. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\4060\resources\VideoEgg\images\refresh_list_over.png (Adware.VideoEgg) -> Quarantined and deleted successfully. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\4060\resources\VideoEgg\images\refresh_list_up.png (Adware.VideoEgg) -> Quarantined and deleted successfully. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\4060\resources\VideoEgg\images\restart.png (Adware.VideoEgg) -> Quarantined and deleted successfully. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\4060\resources\VideoEgg\images\restart_over.png (Adware.VideoEgg) -> Quarantined and deleted successfully. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\4060\resources\VideoEgg\images\start_capture.png (Adware.VideoEgg) -> Quarantined and deleted successfully. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\4060\resources\VideoEgg\images\start_capture_disabled.png (Adware.VideoEgg) -> Quarantined and deleted successfully. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\4060\resources\VideoEgg\images\start_capture_down.png (Adware.VideoEgg) -> Quarantined and deleted successfully. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\4060\resources\VideoEgg\images\start_capture_over.png (Adware.VideoEgg) -> Quarantined and deleted successfully. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\4060\resources\VideoEgg\images\start_over.png (Adware.VideoEgg) -> Quarantined and deleted successfully. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\4060\resources\VideoEgg\images\start_over_highlight.png (Adware.VideoEgg) -> Quarantined and deleted successfully. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\4060\resources\VideoEgg\images\start_slider.png (Adware.VideoEgg) -> Quarantined and deleted successfully. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\4060\resources\VideoEgg\images\stop_capture.png (Adware.VideoEgg) -> Quarantined and deleted successfully. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\4060\resources\VideoEgg\images\stop_capture_disabled.png (Adware.VideoEgg) -> Quarantined and deleted successfully. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\4060\resources\VideoEgg\images\stop_capture_down.png (Adware.VideoEgg) -> Quarantined and deleted successfully. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\4060\resources\VideoEgg\images\stop_capture_over.png (Adware.VideoEgg) -> Quarantined and deleted successfully. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\4060\resources\VideoEgg\images\stop_slider.png (Adware.VideoEgg) -> Quarantined and deleted successfully. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\4060\resources\VideoEgg\images\tab_slide_deselected.png (Adware.VideoEgg) -> Quarantined and deleted successfully. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\4060\resources\VideoEgg\images\tape_control.png (Adware.VideoEgg) -> Quarantined and deleted successfully. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\4060\resources\VideoEgg\images\text_camcorder.png (Adware.VideoEgg) -> Quarantined and deleted successfully. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\4060\resources\VideoEgg\images\text_camcorder_highlight.png (Adware.VideoEgg) -> Quarantined and deleted successfully. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\4060\resources\VideoEgg\images\text_file.png (Adware.VideoEgg) -> Quarantined and deleted successfully. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\4060\resources\VideoEgg\images\text_file_highlight.png (Adware.VideoEgg) -> Quarantined and deleted successfully. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\4060\resources\VideoEgg\images\text_phone.png (Adware.VideoEgg) -> Quarantined and deleted successfully. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\4060\resources\VideoEgg\images\text_phone_highlight.png (Adware.VideoEgg) -> Quarantined and deleted successfully. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\4060\resources\VideoEgg\images\text_webcam.png (Adware.VideoEgg) -> Quarantined and deleted successfully. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\4060\resources\VideoEgg\images\text_webcam_highlight.png (Adware.VideoEgg) -> Quarantined and deleted successfully. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\4060\resources\VideoEgg\images\title.png (Adware.VideoEgg) -> Quarantined and deleted successfully. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\4060\resources\VideoEgg\images\upload.png (Adware.VideoEgg) -> Quarantined and deleted successfully. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\4060\resources\VideoEgg\images\uploading.png (Adware.VideoEgg) -> Quarantined and deleted successfully. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\4060\resources\VideoEgg\images\uploading_fill.png (Adware.VideoEgg) -> Quarantined and deleted successfully. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\4060\resources\VideoEgg\images\uploading_high.png (Adware.VideoEgg) -> Quarantined and deleted successfully. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\4060\resources\VideoEgg\images\uploading_low.png (Adware.VideoEgg) -> Quarantined and deleted successfully. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\4060\resources\VideoEgg\images\uploading_medium.png (Adware.VideoEgg) -> Quarantined and deleted successfully. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\4060\resources\VideoEgg\images\uploading_thumbnail.png (Adware.VideoEgg) -> Quarantined and deleted successfully. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\4060\resources\VideoEgg\images\upload_down.png (Adware.VideoEgg) -> Quarantined and deleted successfully. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\4060\resources\VideoEgg\images\upload_from.png (Adware.VideoEgg) -> Quarantined and deleted successfully. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\4060\resources\VideoEgg\images\upload_over.png (Adware.VideoEgg) -> Quarantined and deleted successfully. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\4060\resources\VideoEgg\images\volume_gray.png (Adware.VideoEgg) -> Quarantined and deleted successfully. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\4060\resources\VideoEgg\images\volume_green.png (Adware.VideoEgg) -> Quarantined and deleted successfully. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\4060\resources\VideoEgg\images\volume_high.png (Adware.VideoEgg) -> Quarantined and deleted successfully. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\4060\resources\VideoEgg\images\volume_low.png (Adware.VideoEgg) -> Quarantined and deleted successfully. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\4060\resources\VideoEgg\images\volume_orange.png (Adware.VideoEgg) -> Quarantined and deleted successfully. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\4060\resources\VideoEgg\images\volume_red.png (Adware.VideoEgg) -> Quarantined and deleted successfully. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\4060\resources\VideoEgg\images\volume_slider.png (Adware.VideoEgg) -> Quarantined and deleted successfully. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\4060\resources\VideoEgg\images\waiting_for_email.png (Adware.VideoEgg) -> Quarantined and deleted successfully. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\4060\resources\VideoEgg\images\webcams_title.png (Adware.VideoEgg) -> Quarantined and deleted successfully. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\4060\resources\VideoEgg\images\webcam_btn_highlighted.png (Adware.VideoEgg) -> Quarantined and deleted successfully. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\4060\resources\VideoEgg\images\webcam_slide.png (Adware.VideoEgg) -> Quarantined and deleted successfully. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\4060\resources\VideoEgg\messages\messages.en-US.bundle (Adware.VideoEgg) -> Quarantined and deleted successfully. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\4152\avcodec.dll (Adware.VideoEgg) -> Quarantined and deleted successfully. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\4152\crashRpt.dll (Adware.VideoEgg) -> Quarantined and deleted successfully. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\4152\dbghelp.dll (Adware.VideoEgg) -> Quarantined and deleted successfully. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\4152\FLVEncoder.dll (Adware.VideoEgg) -> Quarantined and deleted successfully. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\4152\lame_enc.dll (Adware.VideoEgg) -> Quarantined and deleted successfully. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\4152\LevelMeter.ax (Adware.VideoEgg) -> Quarantined and deleted successfully. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\4152\libcurlve.dll (Adware.VideoEgg) -> Quarantined and deleted successfully. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\4152\libpng.dll (Adware.VideoEgg) -> Quarantined and deleted successfully. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\4152\npvideoegg-publisher.dll (Adware.VideoEgg) -> Quarantined and deleted successfully. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\4152\VideoEgg_FLVWriter.ax (Adware.VideoEgg) -> Quarantined and deleted successfully. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\4152\zlib.dll (Adware.VideoEgg) -> Quarantined and deleted successfully. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\4152\resources\VideoEgg\images\aol_watermark.png (Adware.VideoEgg) -> Quarantined and deleted successfully. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\4152\resources\VideoEgg\images\audio_combo.png (Adware.VideoEgg) -> Quarantined and deleted successfully. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\4152\resources\VideoEgg\images\audio_source.png (Adware.VideoEgg) -> Quarantined and deleted successfully. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\4152\resources\VideoEgg\images\big_gray_logo.png (Adware.VideoEgg) -> Quarantined and deleted successfully. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\4152\resources\VideoEgg\images\big_logo_cropped.png (Adware.VideoEgg) -> Quarantined and deleted successfully. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\4152\resources\VideoEgg\images\blank_slide.png (Adware.VideoEgg) -> Quarantined and deleted successfully. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\4152\resources\VideoEgg\images\button_browse_down.png (Adware.VideoEgg) -> Quarantined and deleted successfully. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\4152\resources\VideoEgg\images\button_browse_over.png (Adware.VideoEgg) -> Quarantined and deleted successfully. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\4152\resources\VideoEgg\images\button_browse_up.png (Adware.VideoEgg) -> Quarantined and deleted successfully. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\4152\resources\VideoEgg\images\camcorders_title.png (Adware.VideoEgg) -> Quarantined and deleted successfully. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\4152\resources\VideoEgg\images\camcorder_btn_highlighted.png (Adware.VideoEgg) -> Quarantined and deleted successfully. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\4152\resources\VideoEgg\images\camcorder_slide.png (Adware.VideoEgg) -> Quarantined and deleted successfully. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\4152\resources\VideoEgg\images\corners_bottom_left.png (Adware.VideoEgg) -> Quarantined and deleted successfully. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\4152\resources\VideoEgg\images\corners_bottom_left_curve.png (Adware.VideoEgg) -> Quarantined and deleted successfully. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\4152\resources\VideoEgg\images\corners_bottom_right.png (Adware.VideoEgg) -> Quarantined and deleted successfully. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\4152\resources\VideoEgg\images\corners_top_right.png (Adware.VideoEgg) -> Quarantined and deleted successfully. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\4152\resources\VideoEgg\images\done.png (Adware.VideoEgg) -> Quarantined and deleted successfully. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\4152\resources\VideoEgg\images\done_capture.png (Adware.VideoEgg) -> Quarantined and deleted successfully. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\4152\resources\VideoEgg\images\done_capture_down.png (Adware.VideoEgg) -> Quarantined and deleted successfully. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\4152\resources\VideoEgg\images\done_capture_over.png (Adware.VideoEgg) -> Quarantined and deleted successfully. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\4152\resources\VideoEgg\images\done_down.png (Adware.VideoEgg) -> Quarantined and deleted successfully. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\4152\resources\VideoEgg\images\done_over.png (Adware.VideoEgg) -> Quarantined and deleted successfully. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\4152\resources\VideoEgg\images\dropshadow_bottom_left.png (Adware.VideoEgg) -> Quarantined and deleted successfully. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\4152\resources\VideoEgg\images\dropshadow_horiz.png (Adware.VideoEgg) -> Quarantined and deleted successfully. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\4152\resources\VideoEgg\images\dropshadow_vertical.png (Adware.VideoEgg) -> Quarantined and deleted successfully. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\4152\resources\VideoEgg\images\dropzone.png (Adware.VideoEgg) -> Quarantined and deleted successfully. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\4152\resources\VideoEgg\images\dv_fast_forward.png (Adware.VideoEgg) -> Quarantined and deleted successfully. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\4152\resources\VideoEgg\images\dv_pause.png (Adware.VideoEgg) -> Quarantined and deleted successfully. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\4152\resources\VideoEgg\images\dv_play.png (Adware.VideoEgg) -> Quarantined and deleted successfully. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\4152\resources\VideoEgg\images\dv_rewind.png (Adware.VideoEgg) -> Quarantined and deleted successfully. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\4152\resources\VideoEgg\images\dv_stop.png (Adware.VideoEgg) -> Quarantined and deleted successfully. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\4152\resources\VideoEgg\images\email_instructions.png (Adware.VideoEgg) -> Quarantined and deleted successfully. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\4152\resources\VideoEgg\images\email_sent.png (Adware.VideoEgg) -> Quarantined and deleted successfully. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\4152\resources\VideoEgg\images\email_sent_down.png (Adware.VideoEgg) -> Quarantined and deleted successfully. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\4152\resources\VideoEgg\images\email_sent_over.png (Adware.VideoEgg) -> Quarantined and deleted successfully. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\4152\resources\VideoEgg\images\eraser.CUR (Adware.VideoEgg) -> Quarantined and deleted successfully. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\4152\resources\VideoEgg\images\eraser_cursor.png (Adware.VideoEgg) -> Quarantined and deleted successfully. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\4152\resources\VideoEgg\images\file_btn_highlighted.png (Adware.VideoEgg) -> Quarantined and deleted successfully. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\4152\resources\VideoEgg\images\file_slide.png (Adware.VideoEgg) -> Quarantined and deleted successfully. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\4152\resources\VideoEgg\images\help.png (Adware.VideoEgg) -> Quarantined and deleted successfully. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\4152\resources\VideoEgg\images\icon_camcorder.png (Adware.VideoEgg) -> Quarantined and deleted successfully. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\4152\resources\VideoEgg\images\icon_camcorders.png (Adware.VideoEgg) -> Quarantined and deleted successfully. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\4152\resources\VideoEgg\images\icon_camcorder_dark.png (Adware.VideoEgg) -> Quarantined and deleted successfully. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\4152\resources\VideoEgg\images\icon_camcorder_light.png (Adware.VideoEgg) -> Quarantined and deleted successfully. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\4152\resources\VideoEgg\images\icon_ff.png (Adware.VideoEgg) -> Quarantined and deleted successfully. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\4152\resources\VideoEgg\images\icon_file_dark.png (Adware.VideoEgg) -> Quarantined and deleted successfully. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\4152\resources\VideoEgg\images\icon_file_light.png (Adware.VideoEgg) -> Quarantined and deleted successfully. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\4152\resources\VideoEgg\images\icon_pause.png (Adware.VideoEgg) -> Quarantined and deleted successfully. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\4152\resources\VideoEgg\images\icon_phone_dark.png (Adware.VideoEgg) -> Quarantined and deleted successfully. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\4152\resources\VideoEgg\images\icon_phone_light.png (Adware.VideoEgg) -> Quarantined and deleted successfully. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\4152\resources\VideoEgg\images\icon_play.png (Adware.VideoEgg) -> Quarantined and deleted successfully. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\4152\resources\VideoEgg\images\icon_rewind.png (Adware.VideoEgg) -> Quarantined and deleted successfully. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\4152\resources\VideoEgg\images\icon_stop.png (Adware.VideoEgg) -> Quarantined and deleted successfully. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\4152\resources\VideoEgg\images\icon_webcam.png (Adware.VideoEgg) -> Quarantined and deleted successfully. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\4152\resources\VideoEgg\images\icon_webcams.png (Adware.VideoEgg) -> Quarantined and deleted successfully. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\4152\resources\VideoEgg\images\icon_webcam_dark.png (Adware.VideoEgg) -> Quarantined and deleted successfully. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\4152\resources\VideoEgg\images\icon_webcam_light.png (Adware.VideoEgg) -> Quarantined and deleted successfully. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\4152\resources\VideoEgg\images\loading.png (Adware.VideoEgg) -> Quarantined and deleted successfully. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\4152\resources\VideoEgg\images\loading_movie.png (Adware.VideoEgg) -> Quarantined and deleted successfully. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\4152\resources\VideoEgg\images\locating.png (Adware.VideoEgg) -> Quarantined and deleted successfully. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\4152\resources\VideoEgg\images\logo.png (Adware.VideoEgg) -> Quarantined and deleted successfully. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\4152\resources\VideoEgg\images\logo_bottom.png (Adware.VideoEgg) -> Quarantined and deleted successfully. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\4152\resources\VideoEgg\images\logo_middle.png (Adware.VideoEgg) -> Quarantined and deleted successfully. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\4152\resources\VideoEgg\images\logo_top.png (Adware.VideoEgg) -> Quarantined and deleted successfully. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\4152\resources\VideoEgg\images\mobile_btn_highlighted.png (Adware.VideoEgg) -> Quarantined and deleted successfully. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\4152\resources\VideoEgg\images\mobile_slide.png (Adware.VideoEgg) -> Quarantined and deleted successfully. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\4152\resources\VideoEgg\images\mobile_slide_disabled.png (Adware.VideoEgg) -> Quarantined and deleted successfully. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\4152\resources\VideoEgg\images\movie_placeholder.png (Adware.VideoEgg) -> Quarantined and deleted successfully. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\4152\resources\VideoEgg\images\ok.png (Adware.VideoEgg) -> Quarantined and deleted successfully. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\4152\resources\VideoEgg\images\ok_down.png (Adware.VideoEgg) -> Quarantined and deleted successfully. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\4152\resources\VideoEgg\images\ok_over.png (Adware.VideoEgg) -> Quarantined and deleted successfully. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\4152\resources\VideoEgg\images\player_fast_forward.png (Adware.VideoEgg) -> Quarantined and deleted successfully. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\4152\resources\VideoEgg\images\player_fast_forward_disabled.png (Adware.VideoEgg) -> Quarantined and deleted successfully. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\4152\resources\VideoEgg\images\player_fill.png (Adware.VideoEgg) -> Quarantined and deleted successfully. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\4152\resources\VideoEgg\images\player_pause.png (Adware.VideoEgg) -> Quarantined and deleted successfully. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\4152\resources\VideoEgg\images\player_play.png (Adware.VideoEgg) -> Quarantined and deleted successfully. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\4152\resources\VideoEgg\images\player_rewind.png (Adware.VideoEgg) -> Quarantined and deleted successfully. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\4152\resources\VideoEgg\images\player_rewind_disabled.png (Adware.VideoEgg) -> Quarantined and deleted successfully. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\4152\resources\VideoEgg\images\player_rewind_to_start.png (Adware.VideoEgg) -> Quarantined and deleted successfully. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\4152\resources\VideoEgg\images\playhead.png (Adware.VideoEgg) -> Quarantined and deleted successfully. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\4152\resources\VideoEgg\images\powered_by.png (Adware.VideoEgg) -> Quarantined and deleted successfully. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\4152\resources\VideoEgg\images\progress.png (Adware.VideoEgg) -> Quarantined and deleted successfully. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\4152\resources\VideoEgg\images\refresh_list_down.png (Adware.VideoEgg) -> Quarantined and deleted successfully. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\4152\resources\VideoEgg\images\refresh_list_over.png (Adware.VideoEgg) -> Quarantined and deleted successfully. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\4152\resources\VideoEgg\images\refresh_list_up.png (Adware.VideoEgg) -> Quarantined and deleted successfully. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\4152\resources\VideoEgg\images\restart.png (Adware.VideoEgg) -> Quarantined and deleted successfully. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\4152\resources\VideoEgg\images\restart_over.png (Adware.VideoEgg) -> Quarantined and deleted successfully. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\4152\resources\VideoEgg\images\start_capture.png (Adware.VideoEgg) -> Quarantined and deleted successfully. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\4152\resources\VideoEgg\images\start_capture_disabled.png (Adware.VideoEgg) -> Quarantined and deleted successfully. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\4152\resources\VideoEgg\images\start_capture_down.png (Adware.VideoEgg) -> Quarantined and deleted successfully. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\4152\resources\VideoEgg\images\start_capture_over.png (Adware.VideoEgg) -> Quarantined and deleted successfully. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\4152\resources\VideoEgg\images\start_over.png (Adware.VideoEgg) -> Quarantined and deleted successfully. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\4152\resources\VideoEgg\images\start_over_highlight.png (Adware.VideoEgg) -> Quarantined and deleted successfully. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\4152\resources\VideoEgg\images\start_slider.png (Adware.VideoEgg) -> Quarantined and deleted successfully. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\4152\resources\VideoEgg\images\stop_capture.png (Adware.VideoEgg) -> Quarantined and deleted successfully. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\4152\resources\VideoEgg\images\stop_capture_disabled.png (Adware.VideoEgg) -> Quarantined and deleted successfully. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\4152\resources\VideoEgg\images\stop_capture_down.png (Adware.VideoEgg) -> Quarantined and deleted successfully. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\4152\resources\VideoEgg\images\stop_capture_over.png (Adware.VideoEgg) -> Quarantined and deleted successfully. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\4152\resources\VideoEgg\images\stop_slider.png (Adware.VideoEgg) -> Quarantined and deleted successfully. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\4152\resources\VideoEgg\images\tab_slide_deselected.png (Adware.VideoEgg) -> Quarantined and deleted successfully. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\4152\resources\VideoEgg\images\tape_control.png (Adware.VideoEgg) -> Quarantined and deleted successfully. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\4152\resources\VideoEgg\images\text_camcorder.png (Adware.VideoEgg) -> Quarantined and deleted successfully. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\4152\resources\VideoEgg\images\text_camcorder_highlight.png (Adware.VideoEgg) -> Quarantined and deleted successfully. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\4152\resources\VideoEgg\images\text_file.png (Adware.VideoEgg) -> Quarantined and deleted successfully. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\4152\resources\VideoEgg\images\text_file_highlight.png (Adware.VideoEgg) -> Quarantined and deleted successfully. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\4152\resources\VideoEgg\images\text_phone.png (Adware.VideoEgg) -> Quarantined and deleted successfully. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\4152\resources\VideoEgg\images\text_phone_highlight.png (Adware.VideoEgg) -> Quarantined and deleted successfully. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\4152\resources\VideoEgg\images\text_webcam.png (Adware.VideoEgg) -> Quarantined and deleted successfully. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\4152\resources\VideoEgg\images\text_webcam_highlight.png (Adware.VideoEgg) -> Quarantined and deleted successfully. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\4152\resources\VideoEgg\images\title.png (Adware.VideoEgg) -> Quarantined and deleted successfully. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\4152\resources\VideoEgg\images\upload.png (Adware.VideoEgg) -> Quarantined and deleted successfully. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\4152\resources\VideoEgg\images\uploading.png (Adware.VideoEgg) -> Quarantined and deleted successfully. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\4152\resources\VideoEgg\images\uploading_fill.png (Adware.VideoEgg) -> Quarantined and deleted successfully. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\4152\resources\VideoEgg\images\uploading_high.png (Adware.VideoEgg) -> Quarantined and deleted successfully. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\4152\resources\VideoEgg\images\uploading_low.png (Adware.VideoEgg) -> Quarantined and deleted successfully. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\4152\resources\VideoEgg\images\uploading_medium.png (Adware.VideoEgg) -> Quarantined and deleted successfully. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\4152\resources\VideoEgg\images\uploading_thumbnail.png (Adware.VideoEgg) -> Quarantined and deleted successfully. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\4152\resources\VideoEgg\images\upload_down.png (Adware.VideoEgg) -> Quarantined and deleted successfully. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\4152\resources\VideoEgg\images\upload_from.png (Adware.VideoEgg) -> Quarantined and deleted successfully. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\4152\resources\VideoEgg\images\upload_over.png (Adware.VideoEgg) -> Quarantined and deleted successfully. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\4152\resources\VideoEgg\images\volume_gray.png (Adware.VideoEgg) -> Quarantined and deleted successfully. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\4152\resources\VideoEgg\images\volume_green.png (Adware.VideoEgg) -> Quarantined and deleted successfully. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\4152\resources\VideoEgg\images\volume_high.png (Adware.VideoEgg) -> Quarantined and deleted successfully. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\4152\resources\VideoEgg\images\volume_low.png (Adware.VideoEgg) -> Quarantined and deleted successfully. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\4152\resources\VideoEgg\images\volume_orange.png (Adware.VideoEgg) -> Quarantined and deleted successfully. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\4152\resources\VideoEgg\images\volume_red.png (Adware.VideoEgg) -> Quarantined and deleted successfully. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\4152\resources\VideoEgg\images\volume_slider.png (Adware.VideoEgg) -> Quarantined and deleted successfully. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\4152\resources\VideoEgg\images\waiting_for_email.png (Adware.VideoEgg) -> Quarantined and deleted successfully. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\4152\resources\VideoEgg\images\webcams_title.png (Adware.VideoEgg) -> Quarantined and deleted successfully. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\4152\resources\VideoEgg\images\webcam_btn_highlighted.png (Adware.VideoEgg) -> Quarantined and deleted successfully. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\4152\resources\VideoEgg\images\webcam_slide.png (Adware.VideoEgg) -> Quarantined and deleted successfully. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\4152\resources\VideoEgg\messages\messages.en-US.bundle (Adware.VideoEgg) -> Quarantined and deleted successfully. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Updater\updater.ver (Adware.VideoEgg) -> Quarantined and deleted successfully. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Updater\2663\libcurlve.dll (Adware.VideoEgg) -> Quarantined and deleted successfully. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Updater\2663\updater.dll (Adware.VideoEgg) -> Quarantined and deleted successfully. C:\WINDOWS\system32\smp\msrc.exe (Fake.Dropped.Malware) -> Quarantined and deleted successfully. C:\WINDOWS\system32\akttzn.exe (Trojan.Agent) -> Quarantined and deleted successfully. C:\WINDOWS\system32\bdn.com (Trojan.Agent) -> Quarantined and deleted successfully. C:\WINDOWS\system32\bsva-egihsg52.exe (Trojan.Agent) -> Quarantined and deleted successfully. C:\WINDOWS\system32\hxiwlgpm.dat (Trojan.Agent) -> Quarantined and deleted successfully. C:\WINDOWS\system32\hxiwlgpm.exe (Trojan.Agent) -> Quarantined and deleted successfully. C:\WINDOWS\system32\medup020.dll (Trojan.Agent) -> Quarantined and deleted successfully. C:\WINDOWS\system32\msgp.exe (Trojan.Agent) -> Quarantined and deleted successfully. C:\WINDOWS\system32\mssecu.exe (Trojan.Agent) -> Quarantined and deleted successfully. C:\WINDOWS\system32\msvchost.exe (Trojan.Agent) -> Quarantined and deleted successfully. C:\WINDOWS\system32\mtr2.exe (Trojan.Agent) -> Quarantined and deleted successfully. C:\WINDOWS\system32\mwin32.exe (Trojan.Agent) -> Quarantined and deleted successfully. C:\WINDOWS\system32\netode.exe (Trojan.Agent) -> Quarantined and deleted successfully. C:\WINDOWS\system32\newsd32.exe (Trojan.Agent) -> Quarantined and deleted successfully. C:\WINDOWS\system32\ps1.exe (Trojan.Agent) -> Quarantined and deleted successfully. C:\WINDOWS\system32\psof1.exe (Trojan.Agent) -> Quarantined and deleted successfully. C:\WINDOWS\system32\psoft1.exe (Trojan.Agent) -> Quarantined and deleted successfully. C:\WINDOWS\system32\regm64.dll (Trojan.Agent) -> Quarantined and deleted successfully. C:\WINDOWS\system32\Rundl1.exe (Trojan.Agent) -> Quarantined and deleted successfully. C:\WINDOWS\system32\ssvchost.exe (Trojan.Agent) -> Quarantined and deleted successfully. C:\WINDOWS\system32\sysreq.exe (Trojan.Agent) -> Quarantined and deleted successfully. C:\WINDOWS\system32\taack.dat (Trojan.Agent) -> Quarantined and deleted successfully. C:\WINDOWS\system32\taack.exe (Trojan.Agent) -> Quarantined and deleted successfully. C:\WINDOWS\system32\thun.dll (Trojan.Agent) -> Quarantined and deleted successfully. C:\WINDOWS\system32\thun32.dll (Trojan.Agent) -> Quarantined and deleted successfully. C:\WINDOWS\system32\VBIEWER.OCX (Trojan.Agent) -> Quarantined and deleted successfully. C:\WINDOWS\system32\vbsys2.dll (Trojan.Clicker) -> Quarantined and deleted successfully. C:\WINDOWS\system32\Winlogonpc.exe (Trojan.Agent) -> Quarantined and deleted successfully. C:\WINDOWS\system32\winSystem.exe (Trojan.Agent) -> Quarantined and deleted successfully. C:\WINDOWS\system32\WINWGPX.EXE (Trojan.Agent) -> Quarantined and deleted successfully. C:\Documents and Settings\Emilee Seda\delself.bat (Malware.Trace) -> Quarantined and deleted successfully. C:\WINDOWS\0535251103110107106.yux (KoobFace.Trace) -> Quarantined and deleted successfully. C:\WINDOWS\010112010146120114.xe (KoobFace.Trace) -> Quarantined and deleted successfully. C:\WINDOWS\0101120101464950.xe (KoobFace.Trace) -> Quarantined and deleted successfully. C:\WINDOWS\0101120101465653.xe (KoobFace.Trace) -> Quarantined and deleted successfully. C:\WINDOWS\a.bat (Fake.Dropped.Malware) -> Quarantined and deleted successfully. C:\WINDOWS\base64.tmp (Fake.Dropped.Malware) -> Quarantined and deleted successfully. C:\WINDOWS\bdn.com (Trojan.Agent) -> Quarantined and deleted successfully. C:\WINDOWS\ectbbyn.dat (KoobFace.Trace) -> Quarantined and deleted successfully. C:\WINDOWS\FVProtect.exe (Fake.Dropped.Malware) -> Quarantined and deleted successfully. C:\WINDOWS\iTunesMusic.exe (Trojan.Agent) -> Quarantined and deleted successfully. C:\WINDOWS\mmsmark2.dat (KoobFace.Trace) -> Quarantined and deleted successfully. C:\WINDOWS\mssecu.exe (Trojan.Agent) -> Quarantined and deleted successfully. C:\WINDOWS\prxid93ps.dat (Malware.Trace) -> Quarantined and deleted successfully. C:\WINDOWS\userconfig9x.dll (Fake.Dropped.Malware) -> Quarantined and deleted successfully. C:\WINDOWS\winSystem.exe (Fake.Dropped.Malware) -> Quarantined and deleted successfully. C:\WINDOWS\zip1.tmp (Fake.Dropped.Malware) -> Quarantined and deleted successfully. C:\WINDOWS\zip2.tmp (Fake.Dropped.Malware) -> Quarantined and deleted successfully. C:\WINDOWS\zip3.tmp (Fake.Dropped.Malware) -> Quarantined and deleted successfully. C:\WINDOWS\zipped.tmp (Fake.Dropped.Malware) -> Quarantined and deleted successfully. C:\WINDOWS\ex23567.dat (KoobFace.Trace) -> Quarantined and deleted successfully. Et voici un nouveau rapport HJT : Logfile of Trend Micro HijackThis v2.0.2 Scan saved at 20:03:35, on 9/20/2009 Platform: Windows XP SP3 (WinNT 5.01.2600) MSIE: Internet Explorer v8.00 (8.00.6001.18702) Boot mode: Normal Running processes: C:\WINDOWS\System32\smss.exe C:\WINDOWS\system32\winlogon.exe C:\WINDOWS\system32\services.exe C:\WINDOWS\system32\lsass.exe C:\WINDOWS\system32\Ati2evxx.exe C:\WINDOWS\system32\svchost.exe C:\Program Files\Dell\DellDock\DockLogin.exe C:\WINDOWS\System32\svchost.exe C:\WINDOWS\System32\WLTRYSVC.EXE C:\WINDOWS\System32\bcmwltry.exe C:\WINDOWS\system32\spoolsv.exe C:\Program Files\Common Files\ArcSoft\Connection Service\Bin\ACService.exe C:\Program Files\WIDCOMM\Bluetooth Software\bin\btwdins.exe C:\Program Files\Common Files\Creative Labs Shared\Service\CreativeLicensing.exe C:\WINDOWS\system32\CTsvcCDA.exe C:\WINDOWS\eHome\ehRecvr.exe C:\WINDOWS\eHome\ehSched.exe C:\Program Files\Common Files\Microsoft Shared\VS7DEBUG\MDM.EXE C:\WINDOWS\system32\HPZipm12.exe C:\WINDOWS\ehome\RMSvc.exe C:\Program Files\Microsoft\Search Enhancement Pack\SeaPort\SeaPort.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\system32\dllhost.exe C:\Program Files\Stardock\MyColors\wbload.exe C:\WINDOWS\system32\Ati2evxx.exe C:\WINDOWS\Explorer.EXE C:\WINDOWS\system32\WLTRAY.exe C:\WINDOWS\stsystra.exe C:\Program Files\Synaptics\SynTP\SynTPEnh.exe C:\Program Files\ATI Technologies\ATI.ACE\cli.exe C:\Program Files\Creative\SBAudigy\Surround Mixer\CTSysVol.exe C:\WINDOWS\system32\Rundll32.exe C:\Program Files\Creative\VoiceCenter\AndreaVC.exe C:\Program Files\CyberLink\PowerDVD\DVDLauncher.exe C:\DOCUME~1\EMILEE~1\LOCALS~1\Temp\clclean.0001 C:\WINDOWS\vVX3000.exe C:\Program Files\HP\HP Software Update\HPWuSchd2.exe C:\WINDOWS\system32\ctfmon.exe C:\Program Files\Windows Live\Messenger\msnmsgr.exe C:\Program Files\Messenger\msmsgs.exe C:\WINDOWS\system32\wuauclt.exe C:\WINDOWS\system32\wbem\wmiapsrv.exe C:\WINDOWS\system32\wuauclt.exe C:\Program Files\ATI Technologies\ATI.ACE\cli.exe C:\Program Files\Windows Live\Contacts\wlcomm.exe C:\WINDOWS\system32\dwwin.exe C:\Program Files\Trend Micro\HijackThis\HijackThis.exe R1 - HKLM\Software\Microsoft\Internet Explorer\Search,Default_Page_URL = www.google.com/ig/dell?hl=en&client=dell-usuk&channel=us&ibd=0060928 R3 - URLSearchHook: AVG Security Toolbar BHO - {A3BC75A2-1F87-4686-AA43-5347D756017C} - C:\Program Files\AVG\AVG8\Toolbar\IEToolbar.dll R3 - URLSearchHook: (no name) - *{CFBFAE00-17A6-11D0-99CB-00C04FD64497} - (no file) O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll O2 - BHO: StumbleUpon Launcher - {145B29F4-A56B-4b90-BBAC-45784EBEBBB7} - C:\Program Files\StumbleUpon\StumbleUponIEBar.dll O2 - BHO: TBSB02751 - {25875464-7327-417C-8264-902D99CF6FD1} - C:\Program Files\Search Enhancer Toolbar\NCL.dll (file missing) O2 - BHO: RealPlayer Download and Record Plugin for Internet Explorer - {3049C3E9-B461-4BC5-8870-4C09146192CA} - C:\Program Files\Real\RealPlayer\rpbrowserrecordplugin.dll O2 - BHO: WormRadar.com IESiteBlocker.NavFilter - {3CA2F312-6F6E-4B53-A66E-4E65E497C8C0} - (no file) O2 - BHO: (no name) - {5C255C8A-E604-49b4-9D64-90988571CECB} - (no file) O2 - BHO: Search Helper - {6EBF7485-159F-4bff-A14F-B9E3AAC4465B} - C:\Program Files\Microsoft\Search Enhancement Pack\Search Helper\SEPsearchhelperie.dll O2 - BHO: Windows Live Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll O2 - BHO: AVG Security Toolbar BHO - {A3BC75A2-1F87-4686-AA43-5347D756017C} - C:\Program Files\AVG\AVG8\Toolbar\IEToolbar.dll O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files\Google\Google Toolbar\GoogleToolbar.dll O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\5.1.1309.3572\swg.dll O2 - BHO: Google Dictionary Compression sdch - {C84D72FE-E17D-4195-BB24-76C02E2E7C4E} - C:\Program Files\Google\Google Toolbar\Component\fastsearch_A8904FB862BD9564.dll O2 - BHO: Windows Live Toolbar Helper - {E15A8DC0-8516-42A1-81EA-DC94EC1ACF10} - C:\Program Files\Windows Live\Toolbar\wltcore.dll O3 - Toolbar: (no name) - {0BF43445-2F28-4351-9252-17FE6E806AA0} - (no file) O3 - Toolbar: StumbleUpon Toolbar - {5093EB4C-3E93-40AB-9266-B607BA87BDC8} - C:\Program Files\StumbleUpon\StumbleUponIEBar.dll O3 - Toolbar: Search Enhancer Toolbar - {BFB5F154-9212-46F3-B547-AC6106030A54} - C:\Program Files\Search Enhancer Toolbar\NCL.dll (file missing) O3 - Toolbar: AVG Security Toolbar - {CCC7A320-B3CA-4199-B1A6-9F516DD69829} - C:\Program Files\AVG\AVG8\Toolbar\IEToolbar.dll O3 - Toolbar: &Windows Live Toolbar - {21FA44EF-376D-4D53-9B0F-8A89D3229068} - C:\Program Files\Windows Live\Toolbar\wltcore.dll O4 - HKLM\..\Run: [broadcom Wireless Manager UI] C:\WINDOWS\system32\WLTRAY.exe O4 - HKLM\..\Run: [sigmatelSysTrayApp] stsystra.exe O4 - HKLM\..\Run: [synTPEnh] C:\Program Files\Synaptics\SynTP\SynTPEnh.exe O4 - HKLM\..\Run: [ATICCC] "C:\Program Files\ATI Technologies\ATI.ACE\cli.exe" runtime -Delay O4 - HKLM\..\Run: [CTSysVol] C:\Program Files\Creative\SBAudigy\Surround Mixer\CTSysVol.exe /r O4 - HKLM\..\Run: [MBMon] Rundll32 CTMBHA.DLL,MBMon O4 - HKLM\..\Run: [updReg] C:\WINDOWS\UpdReg.EXE O4 - HKLM\..\Run: [VoiceCenter] "C:\Program Files\Creative\VoiceCenter\AndreaVC.exe" /tray O4 - HKLM\..\Run: [DVDLauncher] "C:\Program Files\CyberLink\PowerDVD\DVDLauncher.exe" O4 - HKLM\..\Run: [iSUSPM Startup] "C:\Program Files\Common Files\InstallShield\UpdateService\isuspm.exe" -startup O4 - HKLM\..\Run: [iSUSScheduler] "C:\Program Files\Common Files\InstallShield\UpdateService\issch.exe" -start O4 - HKLM\..\Run: [VX3000] C:\WINDOWS\vVX3000.exe O4 - HKLM\..\Run: [HP Software Update] C:\Program Files\HP\HP Software Update\HPWuSchd2.exe O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime O4 - HKLM\..\Run: [Malwarebytes Anti-Malware (reboot)] "C:\Program Files\Malwarebytes' Anti-Malware\mbam.exe" /runcleanupscript O4 - HKCU\..\Run: [setDefaultMIDI] MIDIDef.exe O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe O4 - HKCU\..\Run: [msnmsgr] "C:\Program Files\Windows Live\Messenger\msnmsgr.exe" /background O4 - HKCU\..\Run: [MSMSGS] "C:\Program Files\Messenger\msmsgs.exe" /background O8 - Extra context menu item: Add to Google Photos Screensa&ver - res://C:\WINDOWS\system32\GPhotos.scr/200 O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~1\MI1933~1\Office10\EXCEL.EXE/3000 O8 - Extra context menu item: Send to &Bluetooth Device... - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie_ctx.htm O8 - Extra context menu item: StumbleUpon PhotoBlog It! - res://StumbleUponIEBar.dll/blogimage O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll O9 - Extra button: Blog This - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll O9 - Extra 'Tools' menuitem: &Blog This in Windows Live Writer - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll O9 - Extra button: Real.com - {CD67F990-D8E9-11d2-98FE-00C0F0318AFE} - C:\WINDOWS\system32\Shdocvw.dll O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe O10 - Unknown file in Winsock LSP: c:\windows\system32\nwprovau.dll O16 - DPF: {0CCA191D-13A6-4E29-B746-314DEE697D83} (Facebook Photo Uploader 5 Control) - http://upload.facebook.com/controls/2008.1...toUploader5.cab O16 - DPF: {8100D56A-5661-482C-BEE8-AFECE305D968} (Facebook Photo Uploader 5 Control) - http://upload.facebook.com/controls/2009.0...oUploader55.cab O18 - Protocol: linkscanner - {F274614C-63F8-47D5-A4D1-FBDDE494F8D1} - (no file) O18 - Filter: x-sdch - {B1759355-3EEC-4C1E-B0F1-B719FE26E377} - C:\Program Files\Google\Google Toolbar\Component\fastsearch_A8904FB862BD9564.dll O20 - Winlogon Notify: avgrsstarter - avgrsstx.dll (file missing) O23 - Service: ArcSoft Connect Daemon (ACDaemon) - ArcSoft Inc. - C:\Program Files\Common Files\ArcSoft\Connection Service\Bin\ACService.exe O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\WINDOWS\system32\Ati2evxx.exe O23 - Service: Bluetooth Service (btwdins) - Broadcom Corporation. - C:\Program Files\WIDCOMM\Bluetooth Software\bin\btwdins.exe O23 - Service: Symantec Lic NetConnect service (CLTNetCnService) - Unknown owner - C:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe (file missing) O23 - Service: Creative Labs Licensing Service - Creative Labs - C:\Program Files\Common Files\Creative Labs Shared\Service\CreativeLicensing.exe O23 - Service: Creative Service for CDROM Access - Creative Technology Ltd - C:\WINDOWS\system32\CTsvcCDA.exe O23 - Service: Dock Login Service (DockLoginService) - Stardock Corporation - C:\Program Files\Dell\DellDock\DockLogin.exe O23 - Service: Google Software Updater (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe O23 - Service: iPod Service - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe O23 - Service: McAfee Framework Service (McAfeeFramework) - Network Associates, Inc. - C:\Program Files\Network Associates\Common Framework\FrameworkService.exe O23 - Service: Pml Driver HPZ12 - HP - C:\WINDOWS\system32\HPZipm12.exe O23 - Service: StumbleUponUpdateService - stumbleupon.com - C:\Program Files\StumbleUpon\StumbleUponUpdateService.exe O23 - Service: Dell Wireless WLAN Tray Service (wltrysvc) - Unknown owner - C:\WINDOWS\System32\WLTRYSVC.EXE O24 - Desktop Component 2: (no name) - http://www.desktopcountdown.com/countdown/...ent=South+Beach -- End of file - 10732 bytes Bon courage a toi!!

Re! Je croyais pourtant que ca avait fonctionne mais vu que le PC ramait, j'ai du fermer MBAM via le gestionnaire de taches. Je vais refaire ca des que possible en mode sans echec cette fois-ci histoire qu'il n'y ait plus de probleme. Je te renvoie un rapport au plus vite. @+

Re Apollo!! J'ai bien fait tout ce que tu m'as demande. Par contre pour Lop S&D j'ai encore du le lancer en mode sans echec car il ne voulait pas fonctionner autrement. Voici donc les rapports que tu m'as demande. 1er rapport LOP : --------------------\\ Lop S&D 4.2.5-0 XP/Vista Microsoft Windows XP Professional ( v5.1.2600 ) Service Pack 3 X86-based PC ( Multiprocessor Free : Intel® Core2 CPU T7200 @ 2.00GHz ) BIOS : Phoenix ROM BIOS PLUS Version 1.10 A08 USER : Emilee Seda ( Administrator ) BOOT : Fail-safe boot Antivirus : AVG Internet Security 8.5 (Activated) Firewall : AVG Firewall 8.5 (Not Activated) C:\ (Local Disk) - NTFS - Total:51 Go (Free:11 Go) D:\ (Local Disk) - NTFS - Total:16 Go (Free:5 Go) E:\ (CD or DVD) F:\ (USB) - FAT32 - Total:3827 Mo (Free:2 Go) "C:\Lop SD" ( MAJ : 19-12-2008|23:40 ) Option : [1] ( Sun 09/20/2009|11:23 ) --------------------\\ Listing folders in APPLIC~1 [09/28/2006|15:05] C:\DOCUME~1\ADMINI~1\APPLIC~1\ATI [09/28/2006|15:24] C:\DOCUME~1\ADMINI~1\APPLIC~1\GTek [08/16/2005|05:50] C:\DOCUME~1\ADMINI~1\APPLIC~1\Identities [09/17/2009|11:10] C:\DOCUME~1\ADMINI~1\APPLIC~1\Microsoft [09/28/2006|15:10] C:\DOCUME~1\ADMINI~1\APPLIC~1\Symantec [10/05/2008|19:27] C:\DOCUME~1\ALLUSE~1\APPLIC~1\{3276BE95_AF08_429F_A64F_CA64CB79BCF6} [05/06/2009|18:46] C:\DOCUME~1\ALLUSE~1\APPLIC~1\{65723BD7-8477-4ADF-8686-B75D0C3C0E4D} [05/07/2009|00:01] C:\DOCUME~1\ALLUSE~1\APPLIC~1\{7AFFC3A8-183F-40D4-A968-735F60EC7C84} [08/10/2009|18:18] C:\DOCUME~1\ALLUSE~1\APPLIC~1\{BFB5F154-9212-46F3-B547-AC6106030A54} [12/17/2008|00:16] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Adobe [02/23/2007|21:12] C:\DOCUME~1\ALLUSE~1\APPLIC~1\AOL [12/14/2006|14:41] C:\DOCUME~1\ALLUSE~1\APPLIC~1\AOL Downloads [12/14/2006|14:50] C:\DOCUME~1\ALLUSE~1\APPLIC~1\AOL OCP [10/21/2007|18:35] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Apple [10/04/2006|11:49] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Apple Computer [12/24/2008|02:25] C:\DOCUME~1\ALLUSE~1\APPLIC~1\ArcSoft [08/17/2009|02:32] C:\DOCUME~1\ALLUSE~1\APPLIC~1\AVG Security Toolbar [09/19/2009|19:15] C:\DOCUME~1\ALLUSE~1\APPLIC~1\avg8 [09/28/2006|15:02] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Creative Labs [05/06/2009|18:46] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Dell [08/17/2009|02:26] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Downloaded Installations [05/15/2009|21:43] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Google [09/28/2006|15:24] C:\DOCUME~1\ALLUSE~1\APPLIC~1\GTek [12/28/2006|16:34] C:\DOCUME~1\ALLUSE~1\APPLIC~1\HotSync [10/17/2006|12:40] C:\DOCUME~1\ALLUSE~1\APPLIC~1\HP [12/02/2008|09:54] C:\DOCUME~1\ALLUSE~1\APPLIC~1\HP Product Assistant [09/28/2006|15:09] C:\DOCUME~1\ALLUSE~1\APPLIC~1\InstallShield [02/11/2009|14:19] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Kaspersky Lab Setup Files [12/24/2008|02:27] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Kodak [12/11/2006|22:31] C:\DOCUME~1\ALLUSE~1\APPLIC~1\McAfee [11/30/2006|20:29] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Messenger Plus! [09/16/2009|11:40] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Microsoft [11/30/2008|19:03] C:\DOCUME~1\ALLUSE~1\APPLIC~1\myitlab [02/14/2008|08:38] C:\DOCUME~1\ALLUSE~1\APPLIC~1\NCH Swift Sound [12/11/2006|22:39] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Network Associates [09/28/2006|15:09] C:\DOCUME~1\ALLUSE~1\APPLIC~1\QuickTime [10/28/2007|23:52] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Rdr hide the extra [08/08/2009|21:36] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Skype [10/26/2007|16:58] C:\DOCUME~1\ALLUSE~1\APPLIC~1\SUPERAntiSpyware.com [12/09/2007|11:39] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Symantec [10/24/2007|09:42] C:\DOCUME~1\ALLUSE~1\APPLIC~1\TEMP [02/06/2007|23:42] C:\DOCUME~1\ALLUSE~1\APPLIC~1\VideoEgg [08/08/2009|21:34] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Viewpoint [10/03/2006|22:24] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Windows Genuine Advantage [10/09/2008|00:45] C:\DOCUME~1\ALLUSE~1\APPLIC~1\zqzmxgdo [03/21/2007|21:45] C:\DOCUME~1\APPLIC~1\APPLIC~1\Microsoft [09/28/2006|15:05] C:\DOCUME~1\DEFAUL~1\APPLIC~1\ATI [09/28/2006|15:24] C:\DOCUME~1\DEFAUL~1\APPLIC~1\Gtek [08/16/2005|05:50] C:\DOCUME~1\DEFAUL~1\APPLIC~1\Identities [08/16/2005|05:30] C:\DOCUME~1\DEFAUL~1\APPLIC~1\Microsoft [09/28/2006|15:10] C:\DOCUME~1\DEFAUL~1\APPLIC~1\Symantec [12/14/2007|01:23] C:\DOCUME~1\EMILEE~1\APPLIC~1\Adobe [01/14/2007|13:45] C:\DOCUME~1\EMILEE~1\APPLIC~1\AdobeUM [02/16/2009|10:58] C:\DOCUME~1\EMILEE~1\APPLIC~1\Amazon [10/05/2006|06:41] C:\DOCUME~1\EMILEE~1\APPLIC~1\Apple Computer [12/24/2008|02:25] C:\DOCUME~1\EMILEE~1\APPLIC~1\ArcSoft [09/28/2006|15:05] C:\DOCUME~1\EMILEE~1\APPLIC~1\ATI [08/17/2009|02:10] C:\DOCUME~1\EMILEE~1\APPLIC~1\AVG8 [03/23/2007|15:12] C:\DOCUME~1\EMILEE~1\APPLIC~1\CyberLink [11/28/2008|19:05] C:\DOCUME~1\EMILEE~1\APPLIC~1\DataCast [05/06/2009|18:51] C:\DOCUME~1\EMILEE~1\APPLIC~1\Dell [04/29/2009|19:05] C:\DOCUME~1\EMILEE~1\APPLIC~1\dvdcss [08/08/2009|21:42] C:\DOCUME~1\EMILEE~1\APPLIC~1\eMusic [08/08/2009|21:41] C:\DOCUME~1\EMILEE~1\APPLIC~1\FMZilla [05/15/2009|21:46] C:\DOCUME~1\EMILEE~1\APPLIC~1\Google [09/28/2006|15:24] C:\DOCUME~1\EMILEE~1\APPLIC~1\Gtek [12/28/2006|16:33] C:\DOCUME~1\EMILEE~1\APPLIC~1\HotSync [10/17/2006|12:45] C:\DOCUME~1\EMILEE~1\APPLIC~1\HP [08/16/2005|05:50] C:\DOCUME~1\EMILEE~1\APPLIC~1\Identities [12/02/2008|09:59] C:\DOCUME~1\EMILEE~1\APPLIC~1\Image Zone Express [11/13/2007|00:25] C:\DOCUME~1\EMILEE~1\APPLIC~1\IrfanView [11/09/2006|22:07] C:\DOCUME~1\EMILEE~1\APPLIC~1\Leadertech [12/09/2007|11:30] C:\DOCUME~1\EMILEE~1\APPLIC~1\Macromedia [07/27/2008|10:01] C:\DOCUME~1\EMILEE~1\APPLIC~1\Microsoft [06/15/2009|09:45] C:\DOCUME~1\EMILEE~1\APPLIC~1\Move Networks [06/07/2009|14:24] C:\DOCUME~1\EMILEE~1\APPLIC~1\Mozilla [08/11/2009|23:22] C:\DOCUME~1\EMILEE~1\APPLIC~1\MSNInstaller [03/21/2007|21:45] C:\DOCUME~1\EMILEE~1\APPLIC~1\MySpace [06/15/2008|19:13] C:\DOCUME~1\EMILEE~1\APPLIC~1\NCH Swift Sound [10/08/2008|23:32] C:\DOCUME~1\EMILEE~1\APPLIC~1\Phone Start [02/12/2008|14:03] C:\DOCUME~1\EMILEE~1\APPLIC~1\Printer Info Cache [03/14/2007|11:01] C:\DOCUME~1\EMILEE~1\APPLIC~1\Real [03/24/2007|13:11] C:\DOCUME~1\EMILEE~1\APPLIC~1\Screenshot Sender [06/15/2008|19:16] C:\DOCUME~1\EMILEE~1\APPLIC~1\Slide [11/09/2006|22:07] C:\DOCUME~1\EMILEE~1\APPLIC~1\Sonic [09/16/2009|10:14] C:\DOCUME~1\EMILEE~1\APPLIC~1\StumbleUpon [10/05/2006|05:52] C:\DOCUME~1\EMILEE~1\APPLIC~1\Sun [06/15/2008|19:13] C:\DOCUME~1\EMILEE~1\APPLIC~1\SUPERAntiSpyware.com [09/28/2006|15:10] C:\DOCUME~1\EMILEE~1\APPLIC~1\Symantec [11/16/2006|22:40] C:\DOCUME~1\EMILEE~1\APPLIC~1\U3 [02/06/2007|23:42] C:\DOCUME~1\EMILEE~1\APPLIC~1\VideoEgg [01/17/2007|08:05] C:\DOCUME~1\EMILEE~1\APPLIC~1\Viewpoint [04/29/2009|18:57] C:\DOCUME~1\EMILEE~1\APPLIC~1\vlc [09/17/2009|11:10] C:\DOCUME~1\LOCALS~1\APPLIC~1\Microsoft [09/17/2009|11:10] C:\DOCUME~1\NETWOR~1\APPLIC~1\Microsoft --------------------\\ Scheduled Tasks located in C:\WINDOWS\Tasks [09/02/2009 01:12][--a------] C:\WINDOWS\tasks\EasyShare Registration Task.job [09/20/2009 10:00][--ah-----] C:\WINDOWS\tasks\B3F05C1893EBC7E0.job [09/17/2009 14:27][--a------] C:\WINDOWS\tasks\AppleSoftwareUpdate.job [09/20/2009 11:19][--ah-----] C:\WINDOWS\tasks\SA.DAT [08/10/2004 06:00][-r-h-c---] C:\WINDOWS\tasks\desktop.ini ( B3F05C1893EBC7E0.job )=( c:\docume~1\emilee~1\applic~1\phones~1\FunkGridHold.exe ) --------------------\\ Listing Folders in C:\Program Files [10/04/2006|12:02] C:\Program Files\360Share Pro [12/17/2008|00:15] C:\Program Files\Adobe [03/09/2007|21:49] C:\Program Files\Adverts [02/16/2009|10:49] C:\Program Files\Amazon [10/04/2006|19:44] C:\Program Files\AOD [10/05/2008|19:39] C:\Program Files\Apple Software Update [01/06/2009|10:54] C:\Program Files\Aqua Dock [12/24/2008|02:24] C:\Program Files\ArcSoft [01/06/2009|10:55] C:\Program Files\a-squared Anti-Malware [01/06/2009|10:55] C:\Program Files\a-squared Free [03/23/2007|14:56] C:\Program Files\ATI Technologies [08/17/2009|02:22] C:\Program Files\AVG [10/09/2008|00:45] C:\Program Files\BAE [01/05/2007|23:20] C:\Program Files\Berlitz [09/28/2006|15:00] C:\Program Files\Broadcom [08/17/2009|08:51] C:\Program Files\BrowserCtl [09/16/2009|10:18] C:\Program Files\Common Files [08/16/2005|05:38] C:\Program Files\ComPlus Applications [09/28/2006|14:57] C:\Program Files\CONEXANT [09/28/2006|15:14] C:\Program Files\Corel Corporation [01/06/2009|11:03] C:\Program Files\Creative [09/28/2006|15:03] C:\Program Files\Creative Installation Information [09/28/2006|15:05] C:\Program Files\CyberLink [05/06/2009|18:46] C:\Program Files\Dell [07/20/2009|23:20] C:\Program Files\Dell Support [03/23/2007|14:25] C:\Program Files\DellConnect [09/28/2006|15:01] C:\Program Files\Digital Line Detect [08/08/2009|21:42] C:\Program Files\eMusic Download Manager [06/15/2008|19:06] C:\Program Files\GemMaster [05/15/2009|21:44] C:\Program Files\Google [10/17/2006|12:38] C:\Program Files\Hewlett-Packard [12/02/2008|09:55] C:\Program Files\HP [08/08/2009|21:36] C:\Program Files\InstallShield Installation Information [08/20/2009|13:12] C:\Program Files\Internet Explorer [02/11/2009|14:33] C:\Program Files\ioazzzc [10/05/2008|19:26] C:\Program Files\iPod [02/22/2007|01:43] C:\Program Files\IrfanView [10/05/2008|19:27] C:\Program Files\iTunes [09/28/2006|14:52] C:\Program Files\Java [09/20/2008|19:44] C:\Program Files\KingsIsle Entertainment [12/24/2008|02:24] C:\Program Files\Kodak [08/19/2009|02:28] C:\Program Files\LimeWire [07/28/2009|00:50] C:\Program Files\LIVEUPDATE [11/28/2008|19:05] C:\Program Files\MarkAny [05/06/2009|18:22] C:\Program Files\Messenger [05/21/2009|21:30] C:\Program Files\Messenger Plus! Live [09/16/2009|11:41] C:\Program Files\Microsoft [03/07/2007|16:48] C:\Program Files\Microsoft ActiveSync [09/17/2009|09:42] C:\Program Files\Microsoft CAPICOM 2.1.0.2 [08/16/2005|05:43] C:\Program Files\microsoft frontpage [03/08/2007|11:49] C:\Program Files\Microsoft Office [10/18/2008|00:51] C:\Program Files\Microsoft Plus! Digital Media Edition [09/28/2006|15:06] C:\Program Files\Microsoft Plus! Photo Story 2 LE [09/17/2009|09:44] C:\Program Files\Microsoft Silverlight [09/28/2006|15:27] C:\Program Files\Microsoft SQL Server [09/16/2009|11:39] C:\Program Files\Microsoft SQL Server Compact Edition [09/16/2009|11:40] C:\Program Files\Microsoft Sync Framework [09/28/2006|15:21] C:\Program Files\Microsoft Visual Studio [09/17/2009|09:41] C:\Program Files\Microsoft Works [09/28/2006|15:01] C:\Program Files\Modem Helper [05/06/2009|16:40] C:\Program Files\Movie Maker [09/20/2009|00:25] C:\Program Files\Mozilla Firefox [05/06/2009|19:21] C:\Program Files\MSBuild [08/11/2009|23:21] C:\Program Files\MSN [08/16/2005|05:37] C:\Program Files\MSN Gaming Zone [09/16/2009|11:36] C:\Program Files\MSN Messenger [11/13/2008|10:32] C:\Program Files\MSXML 4.0 [06/16/2008|00:49] C:\Program Files\MUSICMATCH [03/21/2007|21:45] C:\Program Files\MySpace [02/13/2008|23:53] C:\Program Files\NCH Software [05/06/2009|16:37] C:\Program Files\NetMeeting [12/11/2006|22:39] C:\Program Files\Network Associates [08/16/2005|05:38] C:\Program Files\Online Services [08/14/2009|08:25] C:\Program Files\Outlook Express [06/15/2008|19:09] C:\Program Files\Palm [11/30/2006|20:24] C:\Program Files\Phone Start [03/08/2007|11:55] C:\Program Files\ProfileWatcher [10/05/2008|19:24] C:\Program Files\QuickTime [06/15/2008|19:11] C:\Program Files\Real [05/06/2009|19:21] C:\Program Files\Reference Assemblies [08/16/2005|21:58] C:\Program Files\RGB [11/28/2008|19:05] C:\Program Files\Samsung [01/06/2009|11:00] C:\Program Files\Samurize [09/13/2009|13:03] C:\Program Files\Search Enhancer Toolbar [09/28/2006|14:57] C:\Program Files\Sigmatel [06/15/2008|19:16] C:\Program Files\Slide [10/30/2006|08:55] C:\Program Files\Sonic [01/06/2009|11:00] C:\Program Files\SpywareBlaster [05/07/2009|00:02] C:\Program Files\Stardock [06/11/2009|08:01] C:\Program Files\StumbleUpon [06/15/2008|19:13] C:\Program Files\SUPERAntiSpyware [09/28/2006|14:59] C:\Program Files\Synaptics [09/18/2009|12:00] C:\Program Files\Trend Micro [08/16/2005|05:50] C:\Program Files\Uninstall Information [02/06/2007|23:42] C:\Program Files\VideoEgg [04/29/2009|18:55] C:\Program Files\VideoLAN [09/28/2006|14:55] C:\Program Files\WIDCOMM [09/28/2006|15:11] C:\Program Files\WildTangent [09/16/2009|11:41] C:\Program Files\Windows Live [09/16/2009|11:34] C:\Program Files\Windows Live SkyDrive [05/24/2007|10:03] C:\Program Files\Windows Media Connect 2 [01/06/2009|11:00] C:\Program Files\Windows Media Player [05/06/2009|16:37] C:\Program Files\Windows NT [08/16/2005|05:37] C:\Program Files\Windows Plus [08/16/2005|05:40] C:\Program Files\WindowsUpdate [08/16/2005|05:43] C:\Program Files\xerox --------------------\\ Listing Folders in C:\Program Files\Common Files [12/17/2008|00:15] C:\Program Files\Common Files\Adobe [02/23/2007|21:12] C:\Program Files\Common Files\AOL [01/06/2009|10:52] C:\Program Files\Common Files\Apple [12/24/2008|02:25] C:\Program Files\Common Files\ArcSoft [10/03/2006|23:45] C:\Program Files\Common Files\Cisco Systems [09/28/2006|15:03] C:\Program Files\Common Files\Creative [09/28/2006|15:02] C:\Program Files\Common Files\Creative Labs Shared [09/28/2006|15:22] C:\Program Files\Common Files\DESIGNER [10/17/2006|12:37] C:\Program Files\Common Files\Hewlett-Packard [02/12/2008|14:02] C:\Program Files\Common Files\HP [09/28/2006|15:09] C:\Program Files\Common Files\InstallShield [09/28/2006|14:51] C:\Program Files\Common Files\Java [12/24/2008|02:23] C:\Program Files\Common Files\Kodak [09/16/2009|11:34] C:\Program Files\Common Files\Microsoft Shared [08/16/2005|05:40] C:\Program Files\Common Files\MSSoap [09/28/2006|15:08] C:\Program Files\Common Files\Nullsoft [08/16/2005|05:33] C:\Program Files\Common Files\ODBC [05/15/2009|21:46] C:\Program Files\Common Files\Real [08/16/2005|05:40] C:\Program Files\Common Files\Services [12/10/2006|13:51] C:\Program Files\Common Files\Sonic Shared [08/16/2005|05:33] C:\Program Files\Common Files\SpeechEngines [05/07/2009|00:01] C:\Program Files\Common Files\Stardock [12/09/2007|11:41] C:\Program Files\Common Files\Symantec Shared [05/06/2009|16:37] C:\Program Files\Common Files\System [09/28/2006|15:07] C:\Program Files\Common Files\TiVo Shared [09/16/2009|10:18] C:\Program Files\Common Files\Windows Live [05/15/2009|21:46] C:\Program Files\Common Files\xing shared --------------------\\ Process ( 14 Processes ) ... OK ! --------------------\\ Searching with S_Lop No Lop folder found ! --------------------\\ Searching for Lop Files - Folders C:\DOCUME~1\EMILEE~1\APPLIC~1\phones~1 C:\Program Files\phones~1 C:\Program Files\Adverts C:\DOCUME~1\EMILEE~1\Cookies\emilee_seda@realfoodmedia.advertserve[1].txt C:\DOCUME~1\EMILEE~1\Cookies\emilee_seda@snap9.advertserve[1].txt C:\DOCUME~1\EMILEE~1\Cookies\emilee_seda@advertising.edvisors[1].txt C:\DOCUME~1\EMILEE~1\Cookies\emilee_seda@advertising.healthguru[1].txt C:\DOCUME~1\EMILEE~1\Cookies\emilee_seda@advertising.healthguru[2].txt C:\DOCUME~1\EMILEE~1\Cookies\emilee_seda@advertising.kissthisguy[2].txt C:\DOCUME~1\EMILEE~1\Cookies\emilee_seda@traveladvertising[2].txt C:\DOCUME~1\EMILEE~1\Cookies\emilee_seda@vegaschatter[2].txt C:\WINDOWS\Tasks\B3F05C1893EBC7E0.job --------------------\\ Searching within the Registry [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] ..... OK ! --------------------\\ Checking the Hosts file Hosts file MODIFIED 127.0.0.1 bin.errorprotector.com ## added by CiD 127.0.0.1 br.errorsafe.com ## added by CiD 127.0.0.1 br.winantivirus.com ## added by CiD 127.0.0.1 br.winfixer.com ## added by CiD 127.0.0.1 de.errorsafe.com ## added by CiD 127.0.0.1 de.winantivirus.com ## added by CiD 127.0.0.1 download.cdn.winsoftware.com ## added by CiD 127.0.0.1 download.errorsafe.com ## added by CiD 127.0.0.1 download.systemdoctor.com ## added by CiD 127.0.0.1 download.winantispyware.com ## added by CiD 127.0.0.1 download.windrivecleaner.com ## added by CiD 127.0.0.1 download.winfixer.com ## added by CiD 127.0.0.1 drivecleaner.com ## added by CiD 127.0.0.1 dynamique.drivecleaner.com ## added by CiD 127.0.0.1 errorprotector.com ## added by CiD 127.0.0.1 errorsafe.com ## added by CiD 127.0.0.1 es.winantivirus.com ## added by CiD 127.0.0.1 fr.winantivirus.com ## added by CiD 127.0.0.1 fr.winfixer.com ## added by CiD 127.0.0.1 go.drivecleaner.com ## added by CiD 127.0.0.1 go.errorsafe.com ## added by CiD 127.0.0.1 go.winantispyware.com ## added by CiD 127.0.0.1 go.winantivirus.com ## added by CiD 127.0.0.1 hk.winantivirus.com ## added by CiD 127.0.0.1 instlog.errorsafe.com ## added by CiD 127.0.0.1 instlog.winantivirus.com ## added by CiD 127.0.0.1 jsp.drivecleaner.com ## added by CiD 127.0.0.1 kb.errorsafe.com ## added by CiD 127.0.0.1 kb.winantivirus.com ## added by CiD 127.0.0.1 nl.errorsafe.com ## added by CiD 127.0.0.1 se.errorsafe.com ## added by CiD 127.0.0.1 secure.drivecleaner.com ## added by CiD 127.0.0.1 secure.errorsafe.com ## added by CiD 127.0.0.1 secure.winantispam.com ## added by CiD 127.0.0.1 secure.winantispy.com ## added by CiD 127.0.0.1 secure.winantivirus.com ## added by CiD 127.0.0.1 support.winantivirus.com ## added by CiD 127.0.0.1 ulog.winantivirus.com ## added by CiD 127.0.0.1 utils.errorsafe.com ## added by CiD 127.0.0.1 utils.winantivirus.com ## added by CiD 127.0.0.1 winantispyware.com ## added by CiD 127.0.0.1 winantivirus.com ## added by CiD 127.0.0.1 winfixer.com ## added by CiD 127.0.0.1 www.drivecleaner.com ## added by CiD 127.0.0.1 www.errorprotector.com ## added by CiD 127.0.0.1 www.errorsafe.com ## added by CiD 127.0.0.1 www.systemdoctor.com ## added by CiD 127.0.0.1 www.win-anti-virus-pro.com ## added by CiD 127.0.0.1 www.win-virus-pro.com ## added by CiD 127.0.0.1 www.winantispam.com ## added by CiD 127.0.0.1 www.winantispy.com ## added by CiD 127.0.0.1 www.winantispyware.com ## added by CiD 127.0.0.1 www.winantivirus.com ## added by CiD 127.0.0.1 www.winantiviruspro.com ## added by CiD 127.0.0.1 www.windrivecleaner.com ## added by CiD 127.0.0.1 www.windrivesafe.com ## added by CiD 127.0.0.1 www.winfixer.com ## added by CiD 127.0.0.1 cdn.drivecleaner.com ## added by CiD 127.0.0.1 cdn.errorsafe.com ## added by CiD 127.0.0.1 cdn.winsoftware.com ## added by CiD 127.0.0.1 download.cdn.drivecleaner.com ## added by CiD 127.0.0.1 download.cdn.errorsafe.com ## added by CiD 127.0.0.1 instlog.winfixer.com ## added by CiD 127.0.0.1 trial.updates.winsoftware.com ## added by CiD 127.0.0.1 utils.winfixer.com ## added by CiD 127.0.0.1 winfixer2006.com ## added by CiD 127.0.0.1 winsoftware.com ## added by CiD 127.0.0.1 www.utils.winfixer.com ## added by CiD 127.0.0.1 www.winfixer2006.com ## added by CiD 127.0.0.1 www.winsoftware.com ## added by CiD -> 72 [ 70 ## added by CiD ] --------------------\\ Searching for hidden files with Catchme catchme 0.3.1353 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net Rootkit scan 2009-09-20 11:23:48 Windows 5.1.2600 Service Pack 3 NTFS scanning hidden processes ... scanning hidden files ... scan completed successfully hidden processes: 0 hidden files: 0 --------------------\\ Searching for other infections --------------------\\ KoobFace ! C:\WINDOWS\mmsmark2.dat --------------------\\ Cracks & Keygens .. C:\DOCUME~1\EMILEE~1\Cookies\emilee_seda@cracktwo[1].txt C:\DOCUME~1\EMILEE~1\Cookies\emilee_seda@smackinthecrack[2].txt C:\DOCUME~1\EMILEE~1\Cookies\emilee_seda@smackinthecrack[3].txt C:\DOCUME~1\EMILEE~1\Cookies\emilee_seda@stopacrack[2].txt C:\DOCUME~1\EMILEE~1\Cookies\emilee_seda@www.cracktwo[1].txt C:\DOCUME~1\EMILEE~1\Local Settings\Temp\Cookies\emilee_seda@saynotocrack[1].txt C:\DOCUME~1\EMILEE~1\Local Settings\Temporary Internet Files\Content.IE5\Y3FW4LYU\tyrannosaur_crack[1].png [F:3750][D:176]-> C:\DOCUME~1\EMILEE~1\LOCALS~1\Temp [F:5635][D:0]-> C:\DOCUME~1\EMILEE~1\Cookies [F:18446][D:362]-> C:\DOCUME~1\EMILEE~1\LOCALS~1\TEMPOR~1\content.IE5 1 - "C:\Lop SD\LopR_1.txt" - Sun 09/20/2009|11:29 - Option : [1] --------------------\\ Scan completed at 11:29:37 2eme rapport LOP : --------------------\\ Lop S&D 4.2.5-0 XP/Vista Microsoft Windows XP Professional ( v5.1.2600 ) Service Pack 3 X86-based PC ( Multiprocessor Free : Intel® Core2 CPU T7200 @ 2.00GHz ) BIOS : Phoenix ROM BIOS PLUS Version 1.10 A08 USER : Emilee Seda ( Administrator ) BOOT : Fail-safe boot Antivirus : AVG Internet Security 8.5 (Activated) Firewall : AVG Firewall 8.5 (Not Activated) C:\ (Local Disk) - NTFS - Total:51 Go (Free:11 Go) D:\ (Local Disk) - NTFS - Total:16 Go (Free:5 Go) E:\ (CD or DVD) F:\ (USB) - FAT32 - Total:3827 Mo (Free:2 Go) "C:\Lop SD" ( MAJ : 19-12-2008|23:40 ) Option : [2] ( Sun 09/20/2009|11:50 ) \\\\\\\\\\\\\\\\\\\\\\\\\\\\\\ FIX Deleted! - C:\DOCUME~1\EMILEE~1\Cookies\emilee_seda@realfoodmedia.advertserve[1].txt Deleted! - C:\DOCUME~1\EMILEE~1\Cookies\emilee_seda@snap9.advertserve[1].txt Deleted! - C:\DOCUME~1\EMILEE~1\Cookies\emilee_seda@advertising.edvisors[1].txt Deleted! - C:\DOCUME~1\EMILEE~1\Cookies\emilee_seda@advertising.healthguru[1].txt Deleted! - C:\DOCUME~1\EMILEE~1\Cookies\emilee_seda@advertising.healthguru[2].txt Deleted! - C:\DOCUME~1\EMILEE~1\Cookies\emilee_seda@advertising.kissthisguy[2].txt Deleted! - C:\DOCUME~1\EMILEE~1\Cookies\emilee_seda@traveladvertising[2].txt Deleted! - C:\DOCUME~1\EMILEE~1\Cookies\emilee_seda@vegaschatter[2].txt Deleted! - C:\WINDOWS\Tasks\B3F05C1893EBC7E0.job Deleted! - C:\DOCUME~1\EMILEE~1\APPLIC~1\phones~1 Deleted! - C:\Program Files\phones~1 Deleted! - C:\Program Files\Adverts - [ Hosts file ] .. Restored! \\\\\\\\\\\\\\\\\\\\\\\\\\\\\\ Deleted! - C:\DOCUME~1\EMILEE~1\APPLIC~1\Viewpoint Deleted! - C:\DOCUME~1\ALLUSE~1\APPLIC~1\Viewpoint \\\\\\\\\\\\\\\\\\\\\\\\\\\\\\ --------------------\\ Listing folders in APPLIC~1 [09/28/2006|15:05] C:\DOCUME~1\ADMINI~1\APPLIC~1\ATI [09/28/2006|15:24] C:\DOCUME~1\ADMINI~1\APPLIC~1\GTek [08/16/2005|05:50] C:\DOCUME~1\ADMINI~1\APPLIC~1\Identities [09/17/2009|11:10] C:\DOCUME~1\ADMINI~1\APPLIC~1\Microsoft [09/28/2006|15:10] C:\DOCUME~1\ADMINI~1\APPLIC~1\Symantec [10/05/2008|19:27] C:\DOCUME~1\ALLUSE~1\APPLIC~1\{3276BE95_AF08_429F_A64F_CA64CB79BCF6} [05/06/2009|18:46] C:\DOCUME~1\ALLUSE~1\APPLIC~1\{65723BD7-8477-4ADF-8686-B75D0C3C0E4D} [05/07/2009|00:01] C:\DOCUME~1\ALLUSE~1\APPLIC~1\{7AFFC3A8-183F-40D4-A968-735F60EC7C84} [08/10/2009|18:18] C:\DOCUME~1\ALLUSE~1\APPLIC~1\{BFB5F154-9212-46F3-B547-AC6106030A54} [12/17/2008|00:16] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Adobe [02/23/2007|21:12] C:\DOCUME~1\ALLUSE~1\APPLIC~1\AOL [12/14/2006|14:41] C:\DOCUME~1\ALLUSE~1\APPLIC~1\AOL Downloads [12/14/2006|14:50] C:\DOCUME~1\ALLUSE~1\APPLIC~1\AOL OCP [10/21/2007|18:35] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Apple [10/04/2006|11:49] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Apple Computer [12/24/2008|02:25] C:\DOCUME~1\ALLUSE~1\APPLIC~1\ArcSoft [08/17/2009|02:32] C:\DOCUME~1\ALLUSE~1\APPLIC~1\AVG Security Toolbar [09/19/2009|19:15] C:\DOCUME~1\ALLUSE~1\APPLIC~1\avg8 [09/28/2006|15:02] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Creative Labs [05/06/2009|18:46] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Dell [08/17/2009|02:26] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Downloaded Installations [05/15/2009|21:43] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Google [09/28/2006|15:24] C:\DOCUME~1\ALLUSE~1\APPLIC~1\GTek [12/28/2006|16:34] C:\DOCUME~1\ALLUSE~1\APPLIC~1\HotSync [10/17/2006|12:40] C:\DOCUME~1\ALLUSE~1\APPLIC~1\HP [12/02/2008|09:54] C:\DOCUME~1\ALLUSE~1\APPLIC~1\HP Product Assistant [09/28/2006|15:09] C:\DOCUME~1\ALLUSE~1\APPLIC~1\InstallShield [02/11/2009|14:19] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Kaspersky Lab Setup Files [12/24/2008|02:27] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Kodak [12/11/2006|22:31] C:\DOCUME~1\ALLUSE~1\APPLIC~1\McAfee [11/30/2006|20:29] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Messenger Plus! [09/16/2009|11:40] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Microsoft [11/30/2008|19:03] C:\DOCUME~1\ALLUSE~1\APPLIC~1\myitlab [02/14/2008|08:38] C:\DOCUME~1\ALLUSE~1\APPLIC~1\NCH Swift Sound [12/11/2006|22:39] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Network Associates [09/28/2006|15:09] C:\DOCUME~1\ALLUSE~1\APPLIC~1\QuickTime [10/28/2007|23:52] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Rdr hide the extra [08/08/2009|21:36] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Skype [10/26/2007|16:58] C:\DOCUME~1\ALLUSE~1\APPLIC~1\SUPERAntiSpyware.com [12/09/2007|11:39] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Symantec [10/24/2007|09:42] C:\DOCUME~1\ALLUSE~1\APPLIC~1\TEMP [02/06/2007|23:42] C:\DOCUME~1\ALLUSE~1\APPLIC~1\VideoEgg [10/03/2006|22:24] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Windows Genuine Advantage [10/09/2008|00:45] C:\DOCUME~1\ALLUSE~1\APPLIC~1\zqzmxgdo [03/21/2007|21:45] C:\DOCUME~1\APPLIC~1\APPLIC~1\Microsoft [09/28/2006|15:05] C:\DOCUME~1\DEFAUL~1\APPLIC~1\ATI [09/28/2006|15:24] C:\DOCUME~1\DEFAUL~1\APPLIC~1\Gtek [08/16/2005|05:50] C:\DOCUME~1\DEFAUL~1\APPLIC~1\Identities [08/16/2005|05:30] C:\DOCUME~1\DEFAUL~1\APPLIC~1\Microsoft [09/28/2006|15:10] C:\DOCUME~1\DEFAUL~1\APPLIC~1\Symantec [12/14/2007|01:23] C:\DOCUME~1\EMILEE~1\APPLIC~1\Adobe [01/14/2007|13:45] C:\DOCUME~1\EMILEE~1\APPLIC~1\AdobeUM [02/16/2009|10:58] C:\DOCUME~1\EMILEE~1\APPLIC~1\Amazon [10/05/2006|06:41] C:\DOCUME~1\EMILEE~1\APPLIC~1\Apple Computer [12/24/2008|02:25] C:\DOCUME~1\EMILEE~1\APPLIC~1\ArcSoft [09/28/2006|15:05] C:\DOCUME~1\EMILEE~1\APPLIC~1\ATI [08/17/2009|02:10] C:\DOCUME~1\EMILEE~1\APPLIC~1\AVG8 [03/23/2007|15:12] C:\DOCUME~1\EMILEE~1\APPLIC~1\CyberLink [11/28/2008|19:05] C:\DOCUME~1\EMILEE~1\APPLIC~1\DataCast [05/06/2009|18:51] C:\DOCUME~1\EMILEE~1\APPLIC~1\Dell [04/29/2009|19:05] C:\DOCUME~1\EMILEE~1\APPLIC~1\dvdcss [08/08/2009|21:42] C:\DOCUME~1\EMILEE~1\APPLIC~1\eMusic [08/08/2009|21:41] C:\DOCUME~1\EMILEE~1\APPLIC~1\FMZilla [05/15/2009|21:46] C:\DOCUME~1\EMILEE~1\APPLIC~1\Google [09/28/2006|15:24] C:\DOCUME~1\EMILEE~1\APPLIC~1\Gtek [12/28/2006|16:33] C:\DOCUME~1\EMILEE~1\APPLIC~1\HotSync [10/17/2006|12:45] C:\DOCUME~1\EMILEE~1\APPLIC~1\HP [08/16/2005|05:50] C:\DOCUME~1\EMILEE~1\APPLIC~1\Identities [12/02/2008|09:59] C:\DOCUME~1\EMILEE~1\APPLIC~1\Image Zone Express [11/13/2007|00:25] C:\DOCUME~1\EMILEE~1\APPLIC~1\IrfanView [11/09/2006|22:07] C:\DOCUME~1\EMILEE~1\APPLIC~1\Leadertech [12/09/2007|11:30] C:\DOCUME~1\EMILEE~1\APPLIC~1\Macromedia [07/27/2008|10:01] C:\DOCUME~1\EMILEE~1\APPLIC~1\Microsoft [06/15/2009|09:45] C:\DOCUME~1\EMILEE~1\APPLIC~1\Move Networks [06/07/2009|14:24] C:\DOCUME~1\EMILEE~1\APPLIC~1\Mozilla [08/11/2009|23:22] C:\DOCUME~1\EMILEE~1\APPLIC~1\MSNInstaller [03/21/2007|21:45] C:\DOCUME~1\EMILEE~1\APPLIC~1\MySpace [06/15/2008|19:13] C:\DOCUME~1\EMILEE~1\APPLIC~1\NCH Swift Sound [02/12/2008|14:03] C:\DOCUME~1\EMILEE~1\APPLIC~1\Printer Info Cache [03/14/2007|11:01] C:\DOCUME~1\EMILEE~1\APPLIC~1\Real [03/24/2007|13:11] C:\DOCUME~1\EMILEE~1\APPLIC~1\Screenshot Sender [06/15/2008|19:16] C:\DOCUME~1\EMILEE~1\APPLIC~1\Slide [11/09/2006|22:07] C:\DOCUME~1\EMILEE~1\APPLIC~1\Sonic [09/16/2009|10:14] C:\DOCUME~1\EMILEE~1\APPLIC~1\StumbleUpon [10/05/2006|05:52] C:\DOCUME~1\EMILEE~1\APPLIC~1\Sun [06/15/2008|19:13] C:\DOCUME~1\EMILEE~1\APPLIC~1\SUPERAntiSpyware.com [09/28/2006|15:10] C:\DOCUME~1\EMILEE~1\APPLIC~1\Symantec [11/16/2006|22:40] C:\DOCUME~1\EMILEE~1\APPLIC~1\U3 [02/06/2007|23:42] C:\DOCUME~1\EMILEE~1\APPLIC~1\VideoEgg [04/29/2009|18:57] C:\DOCUME~1\EMILEE~1\APPLIC~1\vlc [09/17/2009|11:10] C:\DOCUME~1\LOCALS~1\APPLIC~1\Microsoft [09/17/2009|11:10] C:\DOCUME~1\NETWOR~1\APPLIC~1\Microsoft --------------------\\ Scheduled Tasks located in C:\WINDOWS\Tasks [09/02/2009 01:12][--a------] C:\WINDOWS\tasks\EasyShare Registration Task.job [09/17/2009 14:27][--a------] C:\WINDOWS\tasks\AppleSoftwareUpdate.job [09/20/2009 11:19][--ah-----] C:\WINDOWS\tasks\SA.DAT [08/10/2004 06:00][-r-h-c---] C:\WINDOWS\tasks\desktop.ini --------------------\\ Listing Folders in C:\Program Files [10/04/2006|12:02] C:\Program Files\360Share Pro [12/17/2008|00:15] C:\Program Files\Adobe [02/16/2009|10:49] C:\Program Files\Amazon [10/04/2006|19:44] C:\Program Files\AOD [10/05/2008|19:39] C:\Program Files\Apple Software Update [01/06/2009|10:54] C:\Program Files\Aqua Dock [12/24/2008|02:24] C:\Program Files\ArcSoft [01/06/2009|10:55] C:\Program Files\a-squared Anti-Malware [01/06/2009|10:55] C:\Program Files\a-squared Free [03/23/2007|14:56] C:\Program Files\ATI Technologies [08/17/2009|02:22] C:\Program Files\AVG [10/09/2008|00:45] C:\Program Files\BAE [01/05/2007|23:20] C:\Program Files\Berlitz [09/28/2006|15:00] C:\Program Files\Broadcom [08/17/2009|08:51] C:\Program Files\BrowserCtl [09/16/2009|10:18] C:\Program Files\Common Files [08/16/2005|05:38] C:\Program Files\ComPlus Applications [09/28/2006|14:57] C:\Program Files\CONEXANT [09/28/2006|15:14] C:\Program Files\Corel Corporation [01/06/2009|11:03] C:\Program Files\Creative [09/28/2006|15:03] C:\Program Files\Creative Installation Information [09/28/2006|15:05] C:\Program Files\CyberLink [05/06/2009|18:46] C:\Program Files\Dell [07/20/2009|23:20] C:\Program Files\Dell Support [03/23/2007|14:25] C:\Program Files\DellConnect [09/28/2006|15:01] C:\Program Files\Digital Line Detect [08/08/2009|21:42] C:\Program Files\eMusic Download Manager [06/15/2008|19:06] C:\Program Files\GemMaster [05/15/2009|21:44] C:\Program Files\Google [10/17/2006|12:38] C:\Program Files\Hewlett-Packard [12/02/2008|09:55] C:\Program Files\HP [08/08/2009|21:36] C:\Program Files\InstallShield Installation Information [08/20/2009|13:12] C:\Program Files\Internet Explorer [02/11/2009|14:33] C:\Program Files\ioazzzc [10/05/2008|19:26] C:\Program Files\iPod [02/22/2007|01:43] C:\Program Files\IrfanView [10/05/2008|19:27] C:\Program Files\iTunes [09/28/2006|14:52] C:\Program Files\Java [09/20/2008|19:44] C:\Program Files\KingsIsle Entertainment [12/24/2008|02:24] C:\Program Files\Kodak [08/19/2009|02:28] C:\Program Files\LimeWire [07/28/2009|00:50] C:\Program Files\LIVEUPDATE [11/28/2008|19:05] C:\Program Files\MarkAny [05/06/2009|18:22] C:\Program Files\Messenger [05/21/2009|21:30] C:\Program Files\Messenger Plus! Live [09/16/2009|11:41] C:\Program Files\Microsoft [03/07/2007|16:48] C:\Program Files\Microsoft ActiveSync [09/17/2009|09:42] C:\Program Files\Microsoft CAPICOM 2.1.0.2 [08/16/2005|05:43] C:\Program Files\microsoft frontpage [03/08/2007|11:49] C:\Program Files\Microsoft Office [10/18/2008|00:51] C:\Program Files\Microsoft Plus! Digital Media Edition [09/28/2006|15:06] C:\Program Files\Microsoft Plus! Photo Story 2 LE [09/17/2009|09:44] C:\Program Files\Microsoft Silverlight [09/28/2006|15:27] C:\Program Files\Microsoft SQL Server [09/16/2009|11:39] C:\Program Files\Microsoft SQL Server Compact Edition [09/16/2009|11:40] C:\Program Files\Microsoft Sync Framework [09/28/2006|15:21] C:\Program Files\Microsoft Visual Studio [09/17/2009|09:41] C:\Program Files\Microsoft Works [09/28/2006|15:01] C:\Program Files\Modem Helper [05/06/2009|16:40] C:\Program Files\Movie Maker [09/20/2009|00:25] C:\Program Files\Mozilla Firefox [05/06/2009|19:21] C:\Program Files\MSBuild [08/11/2009|23:21] C:\Program Files\MSN [08/16/2005|05:37] C:\Program Files\MSN Gaming Zone [09/16/2009|11:36] C:\Program Files\MSN Messenger [11/13/2008|10:32] C:\Program Files\MSXML 4.0 [06/16/2008|00:49] C:\Program Files\MUSICMATCH [03/21/2007|21:45] C:\Program Files\MySpace [02/13/2008|23:53] C:\Program Files\NCH Software [05/06/2009|16:37] C:\Program Files\NetMeeting [12/11/2006|22:39] C:\Program Files\Network Associates [08/16/2005|05:38] C:\Program Files\Online Services [08/14/2009|08:25] C:\Program Files\Outlook Express [06/15/2008|19:09] C:\Program Files\Palm [03/08/2007|11:55] C:\Program Files\ProfileWatcher [10/05/2008|19:24] C:\Program Files\QuickTime [06/15/2008|19:11] C:\Program Files\Real [05/06/2009|19:21] C:\Program Files\Reference Assemblies [08/16/2005|21:58] C:\Program Files\RGB [11/28/2008|19:05] C:\Program Files\Samsung [01/06/2009|11:00] C:\Program Files\Samurize [09/13/2009|13:03] C:\Program Files\Search Enhancer Toolbar [09/28/2006|14:57] C:\Program Files\Sigmatel [06/15/2008|19:16] C:\Program Files\Slide [10/30/2006|08:55] C:\Program Files\Sonic [01/06/2009|11:00] C:\Program Files\SpywareBlaster [05/07/2009|00:02] C:\Program Files\Stardock [06/11/2009|08:01] C:\Program Files\StumbleUpon [06/15/2008|19:13] C:\Program Files\SUPERAntiSpyware [09/28/2006|14:59] C:\Program Files\Synaptics [09/18/2009|12:00] C:\Program Files\Trend Micro [08/16/2005|05:50] C:\Program Files\Uninstall Information [02/06/2007|23:42] C:\Program Files\VideoEgg [04/29/2009|18:55] C:\Program Files\VideoLAN [09/28/2006|14:55] C:\Program Files\WIDCOMM [09/28/2006|15:11] C:\Program Files\WildTangent [09/16/2009|11:41] C:\Program Files\Windows Live [09/16/2009|11:34] C:\Program Files\Windows Live SkyDrive [05/24/2007|10:03] C:\Program Files\Windows Media Connect 2 [01/06/2009|11:00] C:\Program Files\Windows Media Player [05/06/2009|16:37] C:\Program Files\Windows NT [08/16/2005|05:37] C:\Program Files\Windows Plus [08/16/2005|05:40] C:\Program Files\WindowsUpdate [08/16/2005|05:43] C:\Program Files\xerox --------------------\\ Listing Folders in C:\Program Files\Common Files [12/17/2008|00:15] C:\Program Files\Common Files\Adobe [02/23/2007|21:12] C:\Program Files\Common Files\AOL [01/06/2009|10:52] C:\Program Files\Common Files\Apple [12/24/2008|02:25] C:\Program Files\Common Files\ArcSoft [10/03/2006|23:45] C:\Program Files\Common Files\Cisco Systems [09/28/2006|15:03] C:\Program Files\Common Files\Creative [09/28/2006|15:02] C:\Program Files\Common Files\Creative Labs Shared [09/28/2006|15:22] C:\Program Files\Common Files\DESIGNER [10/17/2006|12:37] C:\Program Files\Common Files\Hewlett-Packard [02/12/2008|14:02] C:\Program Files\Common Files\HP [09/28/2006|15:09] C:\Program Files\Common Files\InstallShield [09/28/2006|14:51] C:\Program Files\Common Files\Java [12/24/2008|02:23] C:\Program Files\Common Files\Kodak [09/16/2009|11:34] C:\Program Files\Common Files\Microsoft Shared [08/16/2005|05:40] C:\Program Files\Common Files\MSSoap [09/28/2006|15:08] C:\Program Files\Common Files\Nullsoft [08/16/2005|05:33] C:\Program Files\Common Files\ODBC [05/15/2009|21:46] C:\Program Files\Common Files\Real [08/16/2005|05:40] C:\Program Files\Common Files\Services [12/10/2006|13:51] C:\Program Files\Common Files\Sonic Shared [08/16/2005|05:33] C:\Program Files\Common Files\SpeechEngines [05/07/2009|00:01] C:\Program Files\Common Files\Stardock [12/09/2007|11:41] C:\Program Files\Common Files\Symantec Shared [05/06/2009|16:37] C:\Program Files\Common Files\System [09/28/2006|15:07] C:\Program Files\Common Files\TiVo Shared [09/16/2009|10:18] C:\Program Files\Common Files\Windows Live [05/15/2009|21:46] C:\Program Files\Common Files\xing shared --------------------\\ Process ( 14 Processes ) ... OK ! --------------------\\ Searching with S_Lop No Lop folder found ! --------------------\\ Searching for Lop Files - Folders No Lop folder found ! --------------------\\ Searching within the Registry ..... OK ! --------------------\\ Checking the Hosts file Hosts file CLEAN --------------------\\ Searching for hidden files with Catchme catchme 0.3.1353 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net Rootkit scan 2009-09-20 11:50:59 Windows 5.1.2600 Service Pack 3 NTFS scanning hidden processes ... scanning hidden files ... scan completed successfully hidden processes: 0 hidden files: 0 --------------------\\ Searching for other infections --------------------\\ KoobFace ! C:\WINDOWS\mmsmark2.dat --------------------\\ Cracks & Keygens .. C:\DOCUME~1\EMILEE~1\Cookies\emilee_seda@cracktwo[1].txt C:\DOCUME~1\EMILEE~1\Cookies\emilee_seda@smackinthecrack[2].txt C:\DOCUME~1\EMILEE~1\Cookies\emilee_seda@smackinthecrack[3].txt C:\DOCUME~1\EMILEE~1\Cookies\emilee_seda@stopacrack[2].txt C:\DOCUME~1\EMILEE~1\Cookies\emilee_seda@www.cracktwo[1].txt C:\DOCUME~1\EMILEE~1\Local Settings\Temp\Cookies\emilee_seda@saynotocrack[1].txt C:\DOCUME~1\EMILEE~1\Local Settings\Temporary Internet Files\Content.IE5\Y3FW4LYU\tyrannosaur_crack[1].png [F:3750][D:176]-> C:\DOCUME~1\EMILEE~1\LOCALS~1\Temp [F:5627][D:0]-> C:\DOCUME~1\EMILEE~1\Cookies [F:18446][D:362]-> C:\DOCUME~1\EMILEE~1\LOCALS~1\TEMPOR~1\content.IE5 1 - "C:\Lop SD\LopR_1.txt" - Sun 09/20/2009|11:29 - Option : [1] 2 - "C:\Lop SD\LopR_2.txt" - Sun 09/20/2009|11:52 - Option : [2] --------------------\\ Scan completed at 11:52:40 Rapport MBAM : Malwarebytes' Anti-Malware 1.41 Database version: 2825 Windows 5.1.2600 Service Pack 3 9/20/2009 4:25:32 PM mbam-log-2009-09-20 (16-25-21).txt Scan type: Full Scan (C:\|D:\|E:\|F:\|) Objects scanned: 239507 Time elapsed: 1 hour(s), 5 minute(s), 9 second(s) Memory Processes Infected: 0 Memory Modules Infected: 0 Registry Keys Infected: 66 Registry Values Infected: 6 Registry Data Items Infected: 3 Folders Infected: 23 Files Infected: 486 Memory Processes Infected: (No malicious items detected) Memory Modules Infected: (No malicious items detected) Registry Keys Infected: HKEY_CLASSES_ROOT\videoegg.activexloader (Adware.VideoEgg) -> No action taken. HKEY_CLASSES_ROOT\CLSID\{168dc258-1455-4e61-8590-9dac2f27b675} (Adware.VideoEgg) -> No action taken. HKEY_CLASSES_ROOT\CLSID\{1a8642f1-dc80-4edc-a39d-0fb62a58b455} (Adware.VideoEgg) -> No action taken. HKEY_CLASSES_ROOT\CLSID\{3f91eb90-ef62-44ee-a685-fac29af111cd} (Adware.VideoEgg) -> No action taken. HKEY_CLASSES_ROOT\CLSID\{5c29c7e4-5321-4cad-be2e-877666bed5df} (Adware.VideoEgg) -> No action taken. HKEY_CLASSES_ROOT\CLSID\{83dfb6ee-ab18-41b5-86d4-b544a141d67e} (Adware.VideoEgg) -> No action taken. HKEY_CLASSES_ROOT\CLSID\{88d6cf0e-cf70-4c24-bf6e-e4e414bc649c} (Adware.VideoEgg) -> No action taken. HKEY_CLASSES_ROOT\CLSID\{8f6a82a2-d7b1-443e-bb9f-f7dc887dd618} (Adware.VideoEgg) -> No action taken. HKEY_CLASSES_ROOT\CLSID\{9856e2d8-ffb2-4fe5-8cad-d5ad6a35a804} (Adware.VideoEgg) -> No action taken. HKEY_CLASSES_ROOT\CLSID\{a3d06987-c35e-49e4-8fe2-ac67b9fbfb4c} (Adware.VideoEgg) -> No action taken. HKEY_CLASSES_ROOT\CLSID\{a58c497b-3ee2-45e7-9594-daca6be2a0d0} (Adware.VideoEgg) -> No action taken. HKEY_CLASSES_ROOT\CLSID\{ad0a3058-fd49-4f98-a514-fd055201835e} (Adware.VideoEgg) -> No action taken. HKEY_CLASSES_ROOT\CLSID\{ad5915ea-b61a-4dba-b5c8-ef4b2df0a3c7} (Adware.VideoEgg) -> No action taken. HKEY_CLASSES_ROOT\CLSID\{af2e62b6-f9e1-4d4f-a10a-9dc8e6dcbcc0} (Adware.VideoEgg) -> No action taken. HKEY_CLASSES_ROOT\CLSID\{bb187c0d-6f53-4f3e-9590-98fd3a7364a2} (Adware.VideoEgg) -> No action taken. HKEY_CLASSES_ROOT\CLSID\{c5041fd9-4819-4dc4-b20e-c950b5b03d2a} (Adware.VideoEgg) -> No action taken. HKEY_CLASSES_ROOT\CLSID\{d17726cc-d4dd-4c4a-9671-471d56e413b5} (Adware.VideoEgg) -> No action taken. HKEY_CLASSES_ROOT\CLSID\{db8cce99-59c6-4552-8bfc-058feb38d6ce} (Adware.VideoEgg) -> No action taken. HKEY_CLASSES_ROOT\CLSID\{dc3a04ee-cdd7-4407-915c-a5502f97eecd} (Adware.VideoEgg) -> No action taken. HKEY_CLASSES_ROOT\CLSID\{e1a63484-a022-4d42-830a-fbd411514440} (Adware.VideoEgg) -> No action taken. HKEY_CLASSES_ROOT\CLSID\{e282c728-189d-419e-8ee2-1601f4b39ba5} (Adware.VideoEgg) -> No action taken. HKEY_CLASSES_ROOT\videoegg.activexloader.1 (Adware.VideoEgg) -> No action taken. HKEY_CLASSES_ROOT\CLSID\{0656a137-b161-cadd-9777-e37a75727e78} (Fake.Dropped.Malware) -> No action taken. HKEY_CLASSES_ROOT\CLSID\{0b682cc1-fb40-4006-a5dd-99edd3c9095d} (Fake.Dropped.Malware) -> No action taken. HKEY_CLASSES_ROOT\CLSID\{0e1230f8-ea50-42a9-983c-d22abc2eeb4c} (Fake.Dropped.Malware) -> No action taken. HKEY_CLASSES_ROOT\CLSID\{54645654-2225-4455-44a1-9f4543d34545} (Fake.Dropped.Malware) -> No action taken. HKEY_CLASSES_ROOT\CLSID\{5c7f15e1-f31a-44fd-aa1a-2ec63aaffd3a} (Fake.Dropped.Malware) -> No action taken. HKEY_CLASSES_ROOT\CLSID\{9dd4258a-7138-49c4-8d34-587879a5c7a4} (Fake.Dropped.Malware) -> No action taken. HKEY_CLASSES_ROOT\CLSID\{b8c0220d-763d-49a4-95f4-61dfdec66ee6} (Fake.Dropped.Malware) -> No action taken. HKEY_CLASSES_ROOT\CLSID\{c3bcc488-1ae7-11d4-ab82-0010a4ec2338} (Fake.Dropped.Malware) -> No action taken. HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{000000da-0786-4633-87c6-1aa7a4429ef1} (Fake.Dropped.Malware) -> No action taken. HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9dd4258a-7138-49c4-8d34-587879a5c7a4} (Fake.Dropped.Malware) -> No action taken. HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{b8c0220d-763d-49a4-95f4-61dfdec66ee6} (Fake.Dropped.Malware) -> No action taken. HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{c3bcc488-1ae7-11d4-ab82-0010a4ec2338} (Fake.Dropped.Malware) -> No action taken. HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{42f2c9ba-614f-47c0-b3e3-ecfd34eed658} (Adware.ISTBar) -> No action taken. HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{07b18ea9-a523-4961-b6bb-170de4475cca} (Adware.MyWebSearch) -> No action taken. HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{25560540-9571-4d7b-9389-0f166788785a} (Adware.MyWebSearch) -> No action taken. HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{3dc201fb-e9c9-499c-a11f-23c360d7c3f8} (Adware.MyWebSearch) -> No action taken. HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{9ff05104-b030-46fc-94b8-81276e4e27df} (Adware.MyWebSearch) -> No action taken. HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{b499d34e-58ef-4927-ab9f-7af52b2c4c82} (Trojan.FakeAlert) -> No action taken. HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{6ca49fdd-4aeb-4f08-a394-c0a1f82caa16} (Trojan.Zlob) -> No action taken. HKEY_CURRENT_USER\HOL5_VXIEWER.FULL.1 (Trojan.FakeAlert) -> No action taken. HKEY_CURRENT_USER\SOFTWARE\AntiSpywareShield (Rogue.AntiSpywareShield) -> No action taken. HKEY_CURRENT_USER\SOFTWARE\Classes\applications\accessdiver.exe (Trojan.FakeAlert) -> No action taken. HKEY_CURRENT_USER\SOFTWARE\Classes\hol5_vxiewer.full.1 (Trojan.FakeAlert) -> No action taken. HKEY_CURRENT_USER\SOFTWARE\dpcproxy (Fake.Dropped.Malware) -> No action taken. HKEY_CURRENT_USER\SOFTWARE\fwbd (Trojan.FakeAlert) -> No action taken. HKEY_CURRENT_USER\SOFTWARE\Golden Palace Casino PT (Trojan.DNSChanger) -> No action taken. HKEY_CURRENT_USER\SOFTWARE\HolLol (Trojan.FakeAlert) -> No action taken. HKEY_CURRENT_USER\SOFTWARE\Inet Delivery (Trojan.FakeAlert) -> No action taken. HKEY_CURRENT_USER\SOFTWARE\Invictus (Trojan.FakeAlert) -> No action taken. HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\logons (Fake.Dropped.Malware) -> No action taken. HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\Golden Palace Casino NEW (Trojan.DNSChanger) -> No action taken. HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\Inet Delivery (Trojan.FakeAlert) -> No action taken. HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\mslAgent (Trojan.FakeAlert) -> No action taken. HKEY_CURRENT_USER\SOFTWARE\mwc (Malware.Trace) -> No action taken. HKEY_CURRENT_USER\SOFTWARE\wkey (Malware.Trace) -> No action taken. HKEY_CURRENT_USER\System\CurrentControlSet\Services\iTunesMusic (Fake.Dropped.Malware) -> No action taken. HKEY_CURRENT_USER\System\CurrentControlSet\Services\rdriv (Fake.Dropped.Malware) -> No action taken. HKEY_CURRENT_USER\typelib (Fake.Dropped.Malware) -> No action taken. HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\xp_antispyware (Rogue.XPAntiSpyware) -> No action taken. HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@videoegg.com/publisher,version=0.2.0 (Adware.VideoEgg) -> No action taken. HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@videoegg.com/updater,version=0.2.0 (Adware.VideoEgg) -> No action taken. HKEY_LOCAL_MACHINE\SOFTWARE\XP_AntiSpyware (Rogue.XPAntiSpyware) -> No action taken. HKEY_LOCAL_MACHINE\System\CurrentControlSet\Services\browserctl (Trojan.Agent) -> No action taken. HKEY_LOCAL_MACHINE\System\CurrentControlSet\Services\browserctldrv (Trojan.Agent) -> No action taken. Registry Values Infected: HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\Toolbar\{0e1230f8-ea50-42a9-983c-d22abc2eeb4c} (Fake.Dropped.Malware) -> No action taken. HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\SharedTaskScheduler\{0656a137-b161-cadd-9777-e37a75727e78} (Fake.Dropped.Malware) -> No action taken. HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad\SystemCheck2 (Trojan.Agent) -> No action taken. HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SvcHost\browserctl (Trojan.Agent) -> No action taken. HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\sysfbtray (Worm.KoobFace) -> No action taken. HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\sysmstray (Worm.KoobFace) -> No action taken. Registry Data Items Infected: HKEY_CURRENT_USER\SOFTWARE\Microsoft\Security Center\AntiVirusDisableNotify (Disabled.SecurityCenter) -> Bad: (1) Good: (0) -> No action taken. HKEY_CURRENT_USER\SOFTWARE\Microsoft\Security Center\FirewallDisableNotify (Disabled.SecurityCenter) -> Bad: (1) Good: (0) -> No action taken. HKEY_CURRENT_USER\SOFTWARE\Microsoft\Security Center\UpdatesDisableNotify (Disabled.SecurityCenter) -> Bad: (1) Good: (0) -> No action taken. Folders Infected: C:\Documents and Settings\All Users\Application Data\VideoEgg (Adware.VideoEgg) -> No action taken. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg (Adware.VideoEgg) -> No action taken. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher (Adware.VideoEgg) -> No action taken. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\3461 (Adware.VideoEgg) -> No action taken. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\3461\resources (Adware.VideoEgg) -> No action taken. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\3461\resources\VideoEgg (Adware.VideoEgg) -> No action taken. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\3461\resources\VideoEgg\images (Adware.VideoEgg) -> No action taken. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\3461\resources\VideoEgg\messages (Adware.VideoEgg) -> No action taken. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\4060 (Adware.VideoEgg) -> No action taken. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\4060\resources (Adware.VideoEgg) -> No action taken. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\4060\resources\VideoEgg (Adware.VideoEgg) -> No action taken. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\4060\resources\VideoEgg\images (Adware.VideoEgg) -> No action taken. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\4060\resources\VideoEgg\messages (Adware.VideoEgg) -> No action taken. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\4152 (Adware.VideoEgg) -> No action taken. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\4152\resources (Adware.VideoEgg) -> No action taken. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\4152\resources\VideoEgg (Adware.VideoEgg) -> No action taken. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\4152\resources\VideoEgg\images (Adware.VideoEgg) -> No action taken. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\4152\resources\VideoEgg\messages (Adware.VideoEgg) -> No action taken. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Updater (Adware.VideoEgg) -> No action taken. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Updater\2663 (Adware.VideoEgg) -> No action taken. C:\Program Files\BrowserCtl (Trojan.Agent) -> No action taken. C:\WINDOWS\system32\smp (Fake.Dropped.Malware) -> No action taken. C:\WINDOWS\mslagent (Adware.EGDAccess) -> No action taken. Files Infected: C:\Program Files\VideoEgg\Loader\2663\npvideoegg-loader.dll (Adware.VideoEgg) -> No action taken. C:\Documents and Settings\All Users\Application Data\VideoEgg\user.dat (Adware.VideoEgg) -> No action taken. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\publisher.ver (Adware.VideoEgg) -> No action taken. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\3461\avcodec.dll (Adware.VideoEgg) -> No action taken. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\3461\crashRpt.dll (Adware.VideoEgg) -> No action taken. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\3461\dataCollection.tmp (Adware.VideoEgg) -> No action taken. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\3461\FLVEncoder.dll (Adware.VideoEgg) -> No action taken. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\3461\lame_enc.dll (Adware.VideoEgg) -> No action taken. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\3461\LevelMeter.ax (Adware.VideoEgg) -> No action taken. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\3461\libcurlve.dll (Adware.VideoEgg) -> No action taken. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\3461\libpng.dll (Adware.VideoEgg) -> No action taken. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\3461\npvideoegg-publisher.dll (Adware.VideoEgg) -> No action taken. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\3461\report.log (Adware.VideoEgg) -> No action taken. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\3461\VideoEgg_FLVWriter.ax (Adware.VideoEgg) -> No action taken. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\3461\zlib.dll (Adware.VideoEgg) -> No action taken. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\3461\resources\VideoEgg\images\aol_watermark.png (Adware.VideoEgg) -> No action taken. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\3461\resources\VideoEgg\images\audio_combo.png (Adware.VideoEgg) -> No action taken. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\3461\resources\VideoEgg\images\audio_source.png (Adware.VideoEgg) -> No action taken. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\3461\resources\VideoEgg\images\big_gray_logo.png (Adware.VideoEgg) -> No action taken. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\3461\resources\VideoEgg\images\big_logo_cropped.png (Adware.VideoEgg) -> No action taken. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\3461\resources\VideoEgg\images\blank_slide.png (Adware.VideoEgg) -> No action taken. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\3461\resources\VideoEgg\images\button_browse_down.png (Adware.VideoEgg) -> No action taken. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\3461\resources\VideoEgg\images\button_browse_over.png (Adware.VideoEgg) -> No action taken. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\3461\resources\VideoEgg\images\button_browse_up.png (Adware.VideoEgg) -> No action taken. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\3461\resources\VideoEgg\images\camcorders_title.png (Adware.VideoEgg) -> No action taken. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\3461\resources\VideoEgg\images\camcorder_btn_highlighted.png (Adware.VideoEgg) -> No action taken. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\3461\resources\VideoEgg\images\camcorder_slide.png (Adware.VideoEgg) -> No action taken. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\3461\resources\VideoEgg\images\corners_bottom_left.png (Adware.VideoEgg) -> No action taken. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\3461\resources\VideoEgg\images\corners_bottom_left_curve.png (Adware.VideoEgg) -> No action taken. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\3461\resources\VideoEgg\images\corners_bottom_right.png (Adware.VideoEgg) -> No action taken. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\3461\resources\VideoEgg\images\corners_top_right.png (Adware.VideoEgg) -> No action taken. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\3461\resources\VideoEgg\images\done.png (Adware.VideoEgg) -> No action taken. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\3461\resources\VideoEgg\images\done_capture.png (Adware.VideoEgg) -> No action taken. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\3461\resources\VideoEgg\images\done_capture_down.png (Adware.VideoEgg) -> No action taken. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\3461\resources\VideoEgg\images\done_capture_over.png (Adware.VideoEgg) -> No action taken. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\3461\resources\VideoEgg\images\done_down.png (Adware.VideoEgg) -> No action taken. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\3461\resources\VideoEgg\images\done_over.png (Adware.VideoEgg) -> No action taken. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\3461\resources\VideoEgg\images\dropshadow_bottom_left.png (Adware.VideoEgg) -> No action taken. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\3461\resources\VideoEgg\images\dropshadow_horiz.png (Adware.VideoEgg) -> No action taken. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\3461\resources\VideoEgg\images\dropshadow_vertical.png (Adware.VideoEgg) -> No action taken. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\3461\resources\VideoEgg\images\dropzone.png (Adware.VideoEgg) -> No action taken. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\3461\resources\VideoEgg\images\dv_fast_forward.png (Adware.VideoEgg) -> No action taken. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\3461\resources\VideoEgg\images\dv_pause.png (Adware.VideoEgg) -> No action taken. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\3461\resources\VideoEgg\images\dv_play.png (Adware.VideoEgg) -> No action taken. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\3461\resources\VideoEgg\images\dv_rewind.png (Adware.VideoEgg) -> No action taken. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\3461\resources\VideoEgg\images\dv_stop.png (Adware.VideoEgg) -> No action taken. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\3461\resources\VideoEgg\images\email_instructions.png (Adware.VideoEgg) -> No action taken. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\3461\resources\VideoEgg\images\email_sent.png (Adware.VideoEgg) -> No action taken. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\3461\resources\VideoEgg\images\email_sent_down.png (Adware.VideoEgg) -> No action taken. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\3461\resources\VideoEgg\images\email_sent_over.png (Adware.VideoEgg) -> No action taken. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\3461\resources\VideoEgg\images\eraser.CUR (Adware.VideoEgg) -> No action taken. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\3461\resources\VideoEgg\images\eraser_cursor.png (Adware.VideoEgg) -> No action taken. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\3461\resources\VideoEgg\images\file_btn_highlighted.png (Adware.VideoEgg) -> No action taken. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\3461\resources\VideoEgg\images\file_slide.png (Adware.VideoEgg) -> No action taken. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\3461\resources\VideoEgg\images\help.png (Adware.VideoEgg) -> No action taken. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\3461\resources\VideoEgg\images\icon_camcorder.png (Adware.VideoEgg) -> No action taken. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\3461\resources\VideoEgg\images\icon_camcorders.png (Adware.VideoEgg) -> No action taken. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\3461\resources\VideoEgg\images\icon_camcorder_dark.png (Adware.VideoEgg) -> No action taken. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\3461\resources\VideoEgg\images\icon_camcorder_light.png (Adware.VideoEgg) -> No action taken. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\3461\resources\VideoEgg\images\icon_ff.png (Adware.VideoEgg) -> No action taken. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\3461\resources\VideoEgg\images\icon_file_dark.png (Adware.VideoEgg) -> No action taken. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\3461\resources\VideoEgg\images\icon_file_light.png (Adware.VideoEgg) -> No action taken. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\3461\resources\VideoEgg\images\icon_pause.png (Adware.VideoEgg) -> No action taken. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\3461\resources\VideoEgg\images\icon_phone_dark.png (Adware.VideoEgg) -> No action taken. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\3461\resources\VideoEgg\images\icon_phone_light.png (Adware.VideoEgg) -> No action taken. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\3461\resources\VideoEgg\images\icon_play.png (Adware.VideoEgg) -> No action taken. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\3461\resources\VideoEgg\images\icon_rewind.png (Adware.VideoEgg) -> No action taken. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\3461\resources\VideoEgg\images\icon_stop.png (Adware.VideoEgg) -> No action taken. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\3461\resources\VideoEgg\images\icon_webcam.png (Adware.VideoEgg) -> No action taken. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\3461\resources\VideoEgg\images\icon_webcams.png (Adware.VideoEgg) -> No action taken. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\3461\resources\VideoEgg\images\icon_webcam_dark.png (Adware.VideoEgg) -> No action taken. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\3461\resources\VideoEgg\images\icon_webcam_light.png (Adware.VideoEgg) -> No action taken. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\3461\resources\VideoEgg\images\loading.png (Adware.VideoEgg) -> No action taken. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\3461\resources\VideoEgg\images\loading_movie.png (Adware.VideoEgg) -> No action taken. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\3461\resources\VideoEgg\images\locating.png (Adware.VideoEgg) -> No action taken. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\3461\resources\VideoEgg\images\logo.png (Adware.VideoEgg) -> No action taken. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\3461\resources\VideoEgg\images\logo_bottom.png (Adware.VideoEgg) -> No action taken. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\3461\resources\VideoEgg\images\logo_middle.png (Adware.VideoEgg) -> No action taken. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\3461\resources\VideoEgg\images\logo_top.png (Adware.VideoEgg) -> No action taken. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\3461\resources\VideoEgg\images\mobile_btn_highlighted.png (Adware.VideoEgg) -> No action taken. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\3461\resources\VideoEgg\images\mobile_slide.png (Adware.VideoEgg) -> No action taken. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\3461\resources\VideoEgg\images\mobile_slide_disabled.png (Adware.VideoEgg) -> No action taken. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\3461\resources\VideoEgg\images\movie_placeholder.png (Adware.VideoEgg) -> No action taken. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\3461\resources\VideoEgg\images\ok.png (Adware.VideoEgg) -> No action taken. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\3461\resources\VideoEgg\images\ok_down.png (Adware.VideoEgg) -> No action taken. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\3461\resources\VideoEgg\images\ok_over.png (Adware.VideoEgg) -> No action taken. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\3461\resources\VideoEgg\images\player_fast_forward.png (Adware.VideoEgg) -> No action taken. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\3461\resources\VideoEgg\images\player_fast_forward_disabled.png (Adware.VideoEgg) -> No action taken. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\3461\resources\VideoEgg\images\player_fill.png (Adware.VideoEgg) -> No action taken. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\3461\resources\VideoEgg\images\player_pause.png (Adware.VideoEgg) -> No action taken. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\3461\resources\VideoEgg\images\player_play.png (Adware.VideoEgg) -> No action taken. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\3461\resources\VideoEgg\images\player_rewind.png (Adware.VideoEgg) -> No action taken. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\3461\resources\VideoEgg\images\player_rewind_disabled.png (Adware.VideoEgg) -> No action taken. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\3461\resources\VideoEgg\images\player_rewind_to_start.png (Adware.VideoEgg) -> No action taken. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\3461\resources\VideoEgg\images\playhead.png (Adware.VideoEgg) -> No action taken. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\3461\resources\VideoEgg\images\powered_by.png (Adware.VideoEgg) -> No action taken. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\3461\resources\VideoEgg\images\progress.png (Adware.VideoEgg) -> No action taken. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\3461\resources\VideoEgg\images\refresh_list_down.png (Adware.VideoEgg) -> No action taken. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\3461\resources\VideoEgg\images\refresh_list_over.png (Adware.VideoEgg) -> No action taken. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\3461\resources\VideoEgg\images\refresh_list_up.png (Adware.VideoEgg) -> No action taken. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\3461\resources\VideoEgg\images\restart.png (Adware.VideoEgg) -> No action taken. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\3461\resources\VideoEgg\images\restart_over.png (Adware.VideoEgg) -> No action taken. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\3461\resources\VideoEgg\images\start_capture.png (Adware.VideoEgg) -> No action taken. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\3461\resources\VideoEgg\images\start_capture_disabled.png (Adware.VideoEgg) -> No action taken. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\3461\resources\VideoEgg\images\start_capture_down.png (Adware.VideoEgg) -> No action taken. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\3461\resources\VideoEgg\images\start_capture_over.png (Adware.VideoEgg) -> No action taken. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\3461\resources\VideoEgg\images\start_over.png (Adware.VideoEgg) -> No action taken. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\3461\resources\VideoEgg\images\start_over_highlight.png (Adware.VideoEgg) -> No action taken. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\3461\resources\VideoEgg\images\start_slider.png (Adware.VideoEgg) -> No action taken. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\3461\resources\VideoEgg\images\stop_capture.png (Adware.VideoEgg) -> No action taken. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\3461\resources\VideoEgg\images\stop_capture_disabled.png (Adware.VideoEgg) -> No action taken. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\3461\resources\VideoEgg\images\stop_capture_down.png (Adware.VideoEgg) -> No action taken. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\3461\resources\VideoEgg\images\stop_capture_over.png (Adware.VideoEgg) -> No action taken. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\3461\resources\VideoEgg\images\stop_slider.png (Adware.VideoEgg) -> No action taken. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\3461\resources\VideoEgg\images\tab_slide_deselected.png (Adware.VideoEgg) -> No action taken. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\3461\resources\VideoEgg\images\tape_control.png (Adware.VideoEgg) -> No action taken. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\3461\resources\VideoEgg\images\text_camcorder.png (Adware.VideoEgg) -> No action taken. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\3461\resources\VideoEgg\images\text_camcorder_highlight.png (Adware.VideoEgg) -> No action taken. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\3461\resources\VideoEgg\images\text_file.png (Adware.VideoEgg) -> No action taken. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\3461\resources\VideoEgg\images\text_file_highlight.png (Adware.VideoEgg) -> No action taken. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\3461\resources\VideoEgg\images\text_phone.png (Adware.VideoEgg) -> No action taken. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\3461\resources\VideoEgg\images\text_phone_highlight.png (Adware.VideoEgg) -> No action taken. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\3461\resources\VideoEgg\images\text_webcam.png (Adware.VideoEgg) -> No action taken. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\3461\resources\VideoEgg\images\text_webcam_highlight.png (Adware.VideoEgg) -> No action taken. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\3461\resources\VideoEgg\images\title.png (Adware.VideoEgg) -> No action taken. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\3461\resources\VideoEgg\images\upload.png (Adware.VideoEgg) -> No action taken. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\3461\resources\VideoEgg\images\uploading.png (Adware.VideoEgg) -> No action taken. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\3461\resources\VideoEgg\images\uploading_fill.png (Adware.VideoEgg) -> No action taken. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\3461\resources\VideoEgg\images\uploading_high.png (Adware.VideoEgg) -> No action taken. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\3461\resources\VideoEgg\images\uploading_low.png (Adware.VideoEgg) -> No action taken. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\3461\resources\VideoEgg\images\uploading_medium.png (Adware.VideoEgg) -> No action taken. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\3461\resources\VideoEgg\images\uploading_thumbnail.png (Adware.VideoEgg) -> No action taken. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\3461\resources\VideoEgg\images\upload_down.png (Adware.VideoEgg) -> No action taken. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\3461\resources\VideoEgg\images\upload_from.png (Adware.VideoEgg) -> No action taken. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\3461\resources\VideoEgg\images\upload_over.png (Adware.VideoEgg) -> No action taken. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\3461\resources\VideoEgg\images\volume_gray.png (Adware.VideoEgg) -> No action taken. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\3461\resources\VideoEgg\images\volume_green.png (Adware.VideoEgg) -> No action taken. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\3461\resources\VideoEgg\images\volume_high.png (Adware.VideoEgg) -> No action taken. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\3461\resources\VideoEgg\images\volume_low.png (Adware.VideoEgg) -> No action taken. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\3461\resources\VideoEgg\images\volume_orange.png (Adware.VideoEgg) -> No action taken. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\3461\resources\VideoEgg\images\volume_red.png (Adware.VideoEgg) -> No action taken. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\3461\resources\VideoEgg\images\volume_slider.png (Adware.VideoEgg) -> No action taken. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\3461\resources\VideoEgg\images\waiting_for_email.png (Adware.VideoEgg) -> No action taken. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\3461\resources\VideoEgg\images\webcams_title.png (Adware.VideoEgg) -> No action taken. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\3461\resources\VideoEgg\images\webcam_btn_highlighted.png (Adware.VideoEgg) -> No action taken. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\3461\resources\VideoEgg\images\webcam_slide.png (Adware.VideoEgg) -> No action taken. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\3461\resources\VideoEgg\messages\messages.en-US.bundle (Adware.VideoEgg) -> No action taken. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\4060\avcodec.dll (Adware.VideoEgg) -> No action taken. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\4060\crashRpt.dll (Adware.VideoEgg) -> No action taken. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\4060\FLVEncoder.dll (Adware.VideoEgg) -> No action taken. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\4060\lame_enc.dll (Adware.VideoEgg) -> No action taken. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\4060\LevelMeter.ax (Adware.VideoEgg) -> No action taken. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\4060\libcurlve.dll (Adware.VideoEgg) -> No action taken. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\4060\libpng.dll (Adware.VideoEgg) -> No action taken. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\4060\npvideoegg-publisher.dll (Adware.VideoEgg) -> No action taken. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\4060\VideoEgg_FLVWriter.ax (Adware.VideoEgg) -> No action taken. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\4060\zlib.dll (Adware.VideoEgg) -> No action taken. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\4060\resources\VideoEgg\images\aol_watermark.png (Adware.VideoEgg) -> No action taken. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\4060\resources\VideoEgg\images\audio_combo.png (Adware.VideoEgg) -> No action taken. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\4060\resources\VideoEgg\images\audio_source.png (Adware.VideoEgg) -> No action taken. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\4060\resources\VideoEgg\images\big_gray_logo.png (Adware.VideoEgg) -> No action taken. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\4060\resources\VideoEgg\images\big_logo_cropped.png (Adware.VideoEgg) -> No action taken. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\4060\resources\VideoEgg\images\blank_slide.png (Adware.VideoEgg) -> No action taken. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\4060\resources\VideoEgg\images\button_browse_down.png (Adware.VideoEgg) -> No action taken. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\4060\resources\VideoEgg\images\button_browse_over.png (Adware.VideoEgg) -> No action taken. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\4060\resources\VideoEgg\images\button_browse_up.png (Adware.VideoEgg) -> No action taken. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\4060\resources\VideoEgg\images\camcorders_title.png (Adware.VideoEgg) -> No action taken. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\4060\resources\VideoEgg\images\camcorder_btn_highlighted.png (Adware.VideoEgg) -> No action taken. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\4060\resources\VideoEgg\images\camcorder_slide.png (Adware.VideoEgg) -> No action taken. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\4060\resources\VideoEgg\images\corners_bottom_left.png (Adware.VideoEgg) -> No action taken. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\4060\resources\VideoEgg\images\corners_bottom_left_curve.png (Adware.VideoEgg) -> No action taken. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\4060\resources\VideoEgg\images\corners_bottom_right.png (Adware.VideoEgg) -> No action taken. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\4060\resources\VideoEgg\images\corners_top_right.png (Adware.VideoEgg) -> No action taken. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\4060\resources\VideoEgg\images\done.png (Adware.VideoEgg) -> No action taken. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\4060\resources\VideoEgg\images\done_capture.png (Adware.VideoEgg) -> No action taken. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\4060\resources\VideoEgg\images\done_capture_down.png (Adware.VideoEgg) -> No action taken. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\4060\resources\VideoEgg\images\done_capture_over.png (Adware.VideoEgg) -> No action taken. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\4060\resources\VideoEgg\images\done_down.png (Adware.VideoEgg) -> No action taken. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\4060\resources\VideoEgg\images\done_over.png (Adware.VideoEgg) -> No action taken. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\4060\resources\VideoEgg\images\dropshadow_bottom_left.png (Adware.VideoEgg) -> No action taken. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\4060\resources\VideoEgg\images\dropshadow_horiz.png (Adware.VideoEgg) -> No action taken. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\4060\resources\VideoEgg\images\dropshadow_vertical.png (Adware.VideoEgg) -> No action taken. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\4060\resources\VideoEgg\images\dropzone.png (Adware.VideoEgg) -> No action taken. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\4060\resources\VideoEgg\images\dv_fast_forward.png (Adware.VideoEgg) -> No action taken. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\4060\resources\VideoEgg\images\dv_pause.png (Adware.VideoEgg) -> No action taken. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\4060\resources\VideoEgg\images\dv_play.png (Adware.VideoEgg) -> No action taken. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\4060\resources\VideoEgg\images\dv_rewind.png (Adware.VideoEgg) -> No action taken. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\4060\resources\VideoEgg\images\dv_stop.png (Adware.VideoEgg) -> No action taken. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\4060\resources\VideoEgg\images\email_instructions.png (Adware.VideoEgg) -> No action taken. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\4060\resources\VideoEgg\images\email_sent.png (Adware.VideoEgg) -> No action taken. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\4060\resources\VideoEgg\images\email_sent_down.png (Adware.VideoEgg) -> No action taken. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\4060\resources\VideoEgg\images\email_sent_over.png (Adware.VideoEgg) -> No action taken. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\4060\resources\VideoEgg\images\eraser.CUR (Adware.VideoEgg) -> No action taken. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\4060\resources\VideoEgg\images\eraser_cursor.png (Adware.VideoEgg) -> No action taken. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\4060\resources\VideoEgg\images\file_btn_highlighted.png (Adware.VideoEgg) -> No action taken. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\4060\resources\VideoEgg\images\file_slide.png (Adware.VideoEgg) -> No action taken. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\4060\resources\VideoEgg\images\help.png (Adware.VideoEgg) -> No action taken. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\4060\resources\VideoEgg\images\icon_camcorder.png (Adware.VideoEgg) -> No action taken. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\4060\resources\VideoEgg\images\icon_camcorders.png (Adware.VideoEgg) -> No action taken. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\4060\resources\VideoEgg\images\icon_camcorder_dark.png (Adware.VideoEgg) -> No action taken. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\4060\resources\VideoEgg\images\icon_camcorder_light.png (Adware.VideoEgg) -> No action taken. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\4060\resources\VideoEgg\images\icon_ff.png (Adware.VideoEgg) -> No action taken. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\4060\resources\VideoEgg\images\icon_file_dark.png (Adware.VideoEgg) -> No action taken. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\4060\resources\VideoEgg\images\icon_file_light.png (Adware.VideoEgg) -> No action taken. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\4060\resources\VideoEgg\images\icon_pause.png (Adware.VideoEgg) -> No action taken. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\4060\resources\VideoEgg\images\icon_phone_dark.png (Adware.VideoEgg) -> No action taken. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\4060\resources\VideoEgg\images\icon_phone_light.png (Adware.VideoEgg) -> No action taken. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\4060\resources\VideoEgg\images\icon_play.png (Adware.VideoEgg) -> No action taken. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\4060\resources\VideoEgg\images\icon_rewind.png (Adware.VideoEgg) -> No action taken. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\4060\resources\VideoEgg\images\icon_stop.png (Adware.VideoEgg) -> No action taken. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\4060\resources\VideoEgg\images\icon_webcam.png (Adware.VideoEgg) -> No action taken. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\4060\resources\VideoEgg\images\icon_webcams.png (Adware.VideoEgg) -> No action taken. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\4060\resources\VideoEgg\images\icon_webcam_dark.png (Adware.VideoEgg) -> No action taken. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\4060\resources\VideoEgg\images\icon_webcam_light.png (Adware.VideoEgg) -> No action taken. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\4060\resources\VideoEgg\images\loading.png (Adware.VideoEgg) -> No action taken. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\4060\resources\VideoEgg\images\loading_movie.png (Adware.VideoEgg) -> No action taken. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\4060\resources\VideoEgg\images\locating.png (Adware.VideoEgg) -> No action taken. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\4060\resources\VideoEgg\images\logo.png (Adware.VideoEgg) -> No action taken. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\4060\resources\VideoEgg\images\logo_bottom.png (Adware.VideoEgg) -> No action taken. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\4060\resources\VideoEgg\images\logo_middle.png (Adware.VideoEgg) -> No action taken. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\4060\resources\VideoEgg\images\logo_top.png (Adware.VideoEgg) -> No action taken. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\4060\resources\VideoEgg\images\mobile_btn_highlighted.png (Adware.VideoEgg) -> No action taken. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\4060\resources\VideoEgg\images\mobile_slide.png (Adware.VideoEgg) -> No action taken. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\4060\resources\VideoEgg\images\mobile_slide_disabled.png (Adware.VideoEgg) -> No action taken. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\4060\resources\VideoEgg\images\movie_placeholder.png (Adware.VideoEgg) -> No action taken. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\4060\resources\VideoEgg\images\ok.png (Adware.VideoEgg) -> No action taken. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\4060\resources\VideoEgg\images\ok_down.png (Adware.VideoEgg) -> No action taken. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\4060\resources\VideoEgg\images\ok_over.png (Adware.VideoEgg) -> No action taken. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\4060\resources\VideoEgg\images\player_fast_forward.png (Adware.VideoEgg) -> No action taken. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\4060\resources\VideoEgg\images\player_fast_forward_disabled.png (Adware.VideoEgg) -> No action taken. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\4060\resources\VideoEgg\images\player_fill.png (Adware.VideoEgg) -> No action taken. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\4060\resources\VideoEgg\images\player_pause.png (Adware.VideoEgg) -> No action taken. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\4060\resources\VideoEgg\images\player_play.png (Adware.VideoEgg) -> No action taken. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\4060\resources\VideoEgg\images\player_rewind.png (Adware.VideoEgg) -> No action taken. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\4060\resources\VideoEgg\images\player_rewind_disabled.png (Adware.VideoEgg) -> No action taken. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\4060\resources\VideoEgg\images\player_rewind_to_start.png (Adware.VideoEgg) -> No action taken. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\4060\resources\VideoEgg\images\playhead.png (Adware.VideoEgg) -> No action taken. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\4060\resources\VideoEgg\images\powered_by.png (Adware.VideoEgg) -> No action taken. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\4060\resources\VideoEgg\images\progress.png (Adware.VideoEgg) -> No action taken. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\4060\resources\VideoEgg\images\refresh_list_down.png (Adware.VideoEgg) -> No action taken. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\4060\resources\VideoEgg\images\refresh_list_over.png (Adware.VideoEgg) -> No action taken. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\4060\resources\VideoEgg\images\refresh_list_up.png (Adware.VideoEgg) -> No action taken. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\4060\resources\VideoEgg\images\restart.png (Adware.VideoEgg) -> No action taken. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\4060\resources\VideoEgg\images\restart_over.png (Adware.VideoEgg) -> No action taken. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\4060\resources\VideoEgg\images\start_capture.png (Adware.VideoEgg) -> No action taken. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\4060\resources\VideoEgg\images\start_capture_disabled.png (Adware.VideoEgg) -> No action taken. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\4060\resources\VideoEgg\images\start_capture_down.png (Adware.VideoEgg) -> No action taken. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\4060\resources\VideoEgg\images\start_capture_over.png (Adware.VideoEgg) -> No action taken. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\4060\resources\VideoEgg\images\start_over.png (Adware.VideoEgg) -> No action taken. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\4060\resources\VideoEgg\images\start_over_highlight.png (Adware.VideoEgg) -> No action taken. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\4060\resources\VideoEgg\images\start_slider.png (Adware.VideoEgg) -> No action taken. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\4060\resources\VideoEgg\images\stop_capture.png (Adware.VideoEgg) -> No action taken. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\4060\resources\VideoEgg\images\stop_capture_disabled.png (Adware.VideoEgg) -> No action taken. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\4060\resources\VideoEgg\images\stop_capture_down.png (Adware.VideoEgg) -> No action taken. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\4060\resources\VideoEgg\images\stop_capture_over.png (Adware.VideoEgg) -> No action taken. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\4060\resources\VideoEgg\images\stop_slider.png (Adware.VideoEgg) -> No action taken. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\4060\resources\VideoEgg\images\tab_slide_deselected.png (Adware.VideoEgg) -> No action taken. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\4060\resources\VideoEgg\images\tape_control.png (Adware.VideoEgg) -> No action taken. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\4060\resources\VideoEgg\images\text_camcorder.png (Adware.VideoEgg) -> No action taken. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\4060\resources\VideoEgg\images\text_camcorder_highlight.png (Adware.VideoEgg) -> No action taken. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\4060\resources\VideoEgg\images\text_file.png (Adware.VideoEgg) -> No action taken. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\4060\resources\VideoEgg\images\text_file_highlight.png (Adware.VideoEgg) -> No action taken. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\4060\resources\VideoEgg\images\text_phone.png (Adware.VideoEgg) -> No action taken. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\4060\resources\VideoEgg\images\text_phone_highlight.png (Adware.VideoEgg) -> No action taken. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\4060\resources\VideoEgg\images\text_webcam.png (Adware.VideoEgg) -> No action taken. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\4060\resources\VideoEgg\images\text_webcam_highlight.png (Adware.VideoEgg) -> No action taken. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\4060\resources\VideoEgg\images\title.png (Adware.VideoEgg) -> No action taken. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\4060\resources\VideoEgg\images\upload.png (Adware.VideoEgg) -> No action taken. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\4060\resources\VideoEgg\images\uploading.png (Adware.VideoEgg) -> No action taken. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\4060\resources\VideoEgg\images\uploading_fill.png (Adware.VideoEgg) -> No action taken. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\4060\resources\VideoEgg\images\uploading_high.png (Adware.VideoEgg) -> No action taken. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\4060\resources\VideoEgg\images\uploading_low.png (Adware.VideoEgg) -> No action taken. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\4060\resources\VideoEgg\images\uploading_medium.png (Adware.VideoEgg) -> No action taken. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\4060\resources\VideoEgg\images\uploading_thumbnail.png (Adware.VideoEgg) -> No action taken. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\4060\resources\VideoEgg\images\upload_down.png (Adware.VideoEgg) -> No action taken. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\4060\resources\VideoEgg\images\upload_from.png (Adware.VideoEgg) -> No action taken. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\4060\resources\VideoEgg\images\upload_over.png (Adware.VideoEgg) -> No action taken. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\4060\resources\VideoEgg\images\volume_gray.png (Adware.VideoEgg) -> No action taken. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\4060\resources\VideoEgg\images\volume_green.png (Adware.VideoEgg) -> No action taken. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\4060\resources\VideoEgg\images\volume_high.png (Adware.VideoEgg) -> No action taken. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\4060\resources\VideoEgg\images\volume_low.png (Adware.VideoEgg) -> No action taken. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\4060\resources\VideoEgg\images\volume_orange.png (Adware.VideoEgg) -> No action taken. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\4060\resources\VideoEgg\images\volume_red.png (Adware.VideoEgg) -> No action taken. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\4060\resources\VideoEgg\images\volume_slider.png (Adware.VideoEgg) -> No action taken. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\4060\resources\VideoEgg\images\waiting_for_email.png (Adware.VideoEgg) -> No action taken. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\4060\resources\VideoEgg\images\webcams_title.png (Adware.VideoEgg) -> No action taken. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\4060\resources\VideoEgg\images\webcam_btn_highlighted.png (Adware.VideoEgg) -> No action taken. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\4060\resources\VideoEgg\images\webcam_slide.png (Adware.VideoEgg) -> No action taken. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\4060\resources\VideoEgg\messages\messages.en-US.bundle (Adware.VideoEgg) -> No action taken. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\4152\avcodec.dll (Adware.VideoEgg) -> No action taken. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\4152\crashRpt.dll (Adware.VideoEgg) -> No action taken. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\4152\dbghelp.dll (Adware.VideoEgg) -> No action taken. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\4152\FLVEncoder.dll (Adware.VideoEgg) -> No action taken. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\4152\lame_enc.dll (Adware.VideoEgg) -> No action taken. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\4152\LevelMeter.ax (Adware.VideoEgg) -> No action taken. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\4152\libcurlve.dll (Adware.VideoEgg) -> No action taken. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\4152\libpng.dll (Adware.VideoEgg) -> No action taken. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\4152\npvideoegg-publisher.dll (Adware.VideoEgg) -> No action taken. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\4152\VideoEgg_FLVWriter.ax (Adware.VideoEgg) -> No action taken. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\4152\zlib.dll (Adware.VideoEgg) -> No action taken. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\4152\resources\VideoEgg\images\aol_watermark.png (Adware.VideoEgg) -> No action taken. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\4152\resources\VideoEgg\images\audio_combo.png (Adware.VideoEgg) -> No action taken. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\4152\resources\VideoEgg\images\audio_source.png (Adware.VideoEgg) -> No action taken. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\4152\resources\VideoEgg\images\big_gray_logo.png (Adware.VideoEgg) -> No action taken. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\4152\resources\VideoEgg\images\big_logo_cropped.png (Adware.VideoEgg) -> No action taken. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\4152\resources\VideoEgg\images\blank_slide.png (Adware.VideoEgg) -> No action taken. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\4152\resources\VideoEgg\images\button_browse_down.png (Adware.VideoEgg) -> No action taken. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\4152\resources\VideoEgg\images\button_browse_over.png (Adware.VideoEgg) -> No action taken. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\4152\resources\VideoEgg\images\button_browse_up.png (Adware.VideoEgg) -> No action taken. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\4152\resources\VideoEgg\images\camcorders_title.png (Adware.VideoEgg) -> No action taken. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\4152\resources\VideoEgg\images\camcorder_btn_highlighted.png (Adware.VideoEgg) -> No action taken. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\4152\resources\VideoEgg\images\camcorder_slide.png (Adware.VideoEgg) -> No action taken. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\4152\resources\VideoEgg\images\corners_bottom_left.png (Adware.VideoEgg) -> No action taken. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\4152\resources\VideoEgg\images\corners_bottom_left_curve.png (Adware.VideoEgg) -> No action taken. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\4152\resources\VideoEgg\images\corners_bottom_right.png (Adware.VideoEgg) -> No action taken. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\4152\resources\VideoEgg\images\corners_top_right.png (Adware.VideoEgg) -> No action taken. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\4152\resources\VideoEgg\images\done.png (Adware.VideoEgg) -> No action taken. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\4152\resources\VideoEgg\images\done_capture.png (Adware.VideoEgg) -> No action taken. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\4152\resources\VideoEgg\images\done_capture_down.png (Adware.VideoEgg) -> No action taken. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\4152\resources\VideoEgg\images\done_capture_over.png (Adware.VideoEgg) -> No action taken. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\4152\resources\VideoEgg\images\done_down.png (Adware.VideoEgg) -> No action taken. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\4152\resources\VideoEgg\images\done_over.png (Adware.VideoEgg) -> No action taken. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\4152\resources\VideoEgg\images\dropshadow_bottom_left.png (Adware.VideoEgg) -> No action taken. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\4152\resources\VideoEgg\images\dropshadow_horiz.png (Adware.VideoEgg) -> No action taken. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\4152\resources\VideoEgg\images\dropshadow_vertical.png (Adware.VideoEgg) -> No action taken. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\4152\resources\VideoEgg\images\dropzone.png (Adware.VideoEgg) -> No action taken. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\4152\resources\VideoEgg\images\dv_fast_forward.png (Adware.VideoEgg) -> No action taken. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\4152\resources\VideoEgg\images\dv_pause.png (Adware.VideoEgg) -> No action taken. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\4152\resources\VideoEgg\images\dv_play.png (Adware.VideoEgg) -> No action taken. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\4152\resources\VideoEgg\images\dv_rewind.png (Adware.VideoEgg) -> No action taken. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\4152\resources\VideoEgg\images\dv_stop.png (Adware.VideoEgg) -> No action taken. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\4152\resources\VideoEgg\images\email_instructions.png (Adware.VideoEgg) -> No action taken. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\4152\resources\VideoEgg\images\email_sent.png (Adware.VideoEgg) -> No action taken. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\4152\resources\VideoEgg\images\email_sent_down.png (Adware.VideoEgg) -> No action taken. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\4152\resources\VideoEgg\images\email_sent_over.png (Adware.VideoEgg) -> No action taken. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\4152\resources\VideoEgg\images\eraser.CUR (Adware.VideoEgg) -> No action taken. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\4152\resources\VideoEgg\images\eraser_cursor.png (Adware.VideoEgg) -> No action taken. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\4152\resources\VideoEgg\images\file_btn_highlighted.png (Adware.VideoEgg) -> No action taken. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\4152\resources\VideoEgg\images\file_slide.png (Adware.VideoEgg) -> No action taken. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\4152\resources\VideoEgg\images\help.png (Adware.VideoEgg) -> No action taken. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\4152\resources\VideoEgg\images\icon_camcorder.png (Adware.VideoEgg) -> No action taken. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\4152\resources\VideoEgg\images\icon_camcorders.png (Adware.VideoEgg) -> No action taken. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\4152\resources\VideoEgg\images\icon_camcorder_dark.png (Adware.VideoEgg) -> No action taken. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\4152\resources\VideoEgg\images\icon_camcorder_light.png (Adware.VideoEgg) -> No action taken. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\4152\resources\VideoEgg\images\icon_ff.png (Adware.VideoEgg) -> No action taken. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\4152\resources\VideoEgg\images\icon_file_dark.png (Adware.VideoEgg) -> No action taken. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\4152\resources\VideoEgg\images\icon_file_light.png (Adware.VideoEgg) -> No action taken. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\4152\resources\VideoEgg\images\icon_pause.png (Adware.VideoEgg) -> No action taken. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\4152\resources\VideoEgg\images\icon_phone_dark.png (Adware.VideoEgg) -> No action taken. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\4152\resources\VideoEgg\images\icon_phone_light.png (Adware.VideoEgg) -> No action taken. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\4152\resources\VideoEgg\images\icon_play.png (Adware.VideoEgg) -> No action taken. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\4152\resources\VideoEgg\images\icon_rewind.png (Adware.VideoEgg) -> No action taken. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\4152\resources\VideoEgg\images\icon_stop.png (Adware.VideoEgg) -> No action taken. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\4152\resources\VideoEgg\images\icon_webcam.png (Adware.VideoEgg) -> No action taken. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\4152\resources\VideoEgg\images\icon_webcams.png (Adware.VideoEgg) -> No action taken. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\4152\resources\VideoEgg\images\icon_webcam_dark.png (Adware.VideoEgg) -> No action taken. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\4152\resources\VideoEgg\images\icon_webcam_light.png (Adware.VideoEgg) -> No action taken. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\4152\resources\VideoEgg\images\loading.png (Adware.VideoEgg) -> No action taken. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\4152\resources\VideoEgg\images\loading_movie.png (Adware.VideoEgg) -> No action taken. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\4152\resources\VideoEgg\images\locating.png (Adware.VideoEgg) -> No action taken. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\4152\resources\VideoEgg\images\logo.png (Adware.VideoEgg) -> No action taken. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\4152\resources\VideoEgg\images\logo_bottom.png (Adware.VideoEgg) -> No action taken. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\4152\resources\VideoEgg\images\logo_middle.png (Adware.VideoEgg) -> No action taken. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\4152\resources\VideoEgg\images\logo_top.png (Adware.VideoEgg) -> No action taken. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\4152\resources\VideoEgg\images\mobile_btn_highlighted.png (Adware.VideoEgg) -> No action taken. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\4152\resources\VideoEgg\images\mobile_slide.png (Adware.VideoEgg) -> No action taken. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\4152\resources\VideoEgg\images\mobile_slide_disabled.png (Adware.VideoEgg) -> No action taken. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\4152\resources\VideoEgg\images\movie_placeholder.png (Adware.VideoEgg) -> No action taken. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\4152\resources\VideoEgg\images\ok.png (Adware.VideoEgg) -> No action taken. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\4152\resources\VideoEgg\images\ok_down.png (Adware.VideoEgg) -> No action taken. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\4152\resources\VideoEgg\images\ok_over.png (Adware.VideoEgg) -> No action taken. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\4152\resources\VideoEgg\images\player_fast_forward.png (Adware.VideoEgg) -> No action taken. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\4152\resources\VideoEgg\images\player_fast_forward_disabled.png (Adware.VideoEgg) -> No action taken. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\4152\resources\VideoEgg\images\player_fill.png (Adware.VideoEgg) -> No action taken. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\4152\resources\VideoEgg\images\player_pause.png (Adware.VideoEgg) -> No action taken. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\4152\resources\VideoEgg\images\player_play.png (Adware.VideoEgg) -> No action taken. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\4152\resources\VideoEgg\images\player_rewind.png (Adware.VideoEgg) -> No action taken. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\4152\resources\VideoEgg\images\player_rewind_disabled.png (Adware.VideoEgg) -> No action taken. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\4152\resources\VideoEgg\images\player_rewind_to_start.png (Adware.VideoEgg) -> No action taken. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\4152\resources\VideoEgg\images\playhead.png (Adware.VideoEgg) -> No action taken. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\4152\resources\VideoEgg\images\powered_by.png (Adware.VideoEgg) -> No action taken. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\4152\resources\VideoEgg\images\progress.png (Adware.VideoEgg) -> No action taken. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\4152\resources\VideoEgg\images\refresh_list_down.png (Adware.VideoEgg) -> No action taken. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\4152\resources\VideoEgg\images\refresh_list_over.png (Adware.VideoEgg) -> No action taken. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\4152\resources\VideoEgg\images\refresh_list_up.png (Adware.VideoEgg) -> No action taken. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\4152\resources\VideoEgg\images\restart.png (Adware.VideoEgg) -> No action taken. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\4152\resources\VideoEgg\images\restart_over.png (Adware.VideoEgg) -> No action taken. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\4152\resources\VideoEgg\images\start_capture.png (Adware.VideoEgg) -> No action taken. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\4152\resources\VideoEgg\images\start_capture_disabled.png (Adware.VideoEgg) -> No action taken. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\4152\resources\VideoEgg\images\start_capture_down.png (Adware.VideoEgg) -> No action taken. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\4152\resources\VideoEgg\images\start_capture_over.png (Adware.VideoEgg) -> No action taken. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\4152\resources\VideoEgg\images\start_over.png (Adware.VideoEgg) -> No action taken. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\4152\resources\VideoEgg\images\start_over_highlight.png (Adware.VideoEgg) -> No action taken. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\4152\resources\VideoEgg\images\start_slider.png (Adware.VideoEgg) -> No action taken. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\4152\resources\VideoEgg\images\stop_capture.png (Adware.VideoEgg) -> No action taken. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\4152\resources\VideoEgg\images\stop_capture_disabled.png (Adware.VideoEgg) -> No action taken. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\4152\resources\VideoEgg\images\stop_capture_down.png (Adware.VideoEgg) -> No action taken. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\4152\resources\VideoEgg\images\stop_capture_over.png (Adware.VideoEgg) -> No action taken. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\4152\resources\VideoEgg\images\stop_slider.png (Adware.VideoEgg) -> No action taken. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\4152\resources\VideoEgg\images\tab_slide_deselected.png (Adware.VideoEgg) -> No action taken. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\4152\resources\VideoEgg\images\tape_control.png (Adware.VideoEgg) -> No action taken. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\4152\resources\VideoEgg\images\text_camcorder.png (Adware.VideoEgg) -> No action taken. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\4152\resources\VideoEgg\images\text_camcorder_highlight.png (Adware.VideoEgg) -> No action taken. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\4152\resources\VideoEgg\images\text_file.png (Adware.VideoEgg) -> No action taken. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\4152\resources\VideoEgg\images\text_file_highlight.png (Adware.VideoEgg) -> No action taken. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\4152\resources\VideoEgg\images\text_phone.png (Adware.VideoEgg) -> No action taken. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\4152\resources\VideoEgg\images\text_phone_highlight.png (Adware.VideoEgg) -> No action taken. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\4152\resources\VideoEgg\images\text_webcam.png (Adware.VideoEgg) -> No action taken. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\4152\resources\VideoEgg\images\text_webcam_highlight.png (Adware.VideoEgg) -> No action taken. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\4152\resources\VideoEgg\images\title.png (Adware.VideoEgg) -> No action taken. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\4152\resources\VideoEgg\images\upload.png (Adware.VideoEgg) -> No action taken. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\4152\resources\VideoEgg\images\uploading.png (Adware.VideoEgg) -> No action taken. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\4152\resources\VideoEgg\images\uploading_fill.png (Adware.VideoEgg) -> No action taken. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\4152\resources\VideoEgg\images\uploading_high.png (Adware.VideoEgg) -> No action taken. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\4152\resources\VideoEgg\images\uploading_low.png (Adware.VideoEgg) -> No action taken. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\4152\resources\VideoEgg\images\uploading_medium.png (Adware.VideoEgg) -> No action taken. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\4152\resources\VideoEgg\images\uploading_thumbnail.png (Adware.VideoEgg) -> No action taken. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\4152\resources\VideoEgg\images\upload_down.png (Adware.VideoEgg) -> No action taken. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\4152\resources\VideoEgg\images\upload_from.png (Adware.VideoEgg) -> No action taken. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\4152\resources\VideoEgg\images\upload_over.png (Adware.VideoEgg) -> No action taken. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\4152\resources\VideoEgg\images\volume_gray.png (Adware.VideoEgg) -> No action taken. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\4152\resources\VideoEgg\images\volume_green.png (Adware.VideoEgg) -> No action taken. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\4152\resources\VideoEgg\images\volume_high.png (Adware.VideoEgg) -> No action taken. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\4152\resources\VideoEgg\images\volume_low.png (Adware.VideoEgg) -> No action taken. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\4152\resources\VideoEgg\images\volume_orange.png (Adware.VideoEgg) -> No action taken. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\4152\resources\VideoEgg\images\volume_red.png (Adware.VideoEgg) -> No action taken. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\4152\resources\VideoEgg\images\volume_slider.png (Adware.VideoEgg) -> No action taken. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\4152\resources\VideoEgg\images\waiting_for_email.png (Adware.VideoEgg) -> No action taken. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\4152\resources\VideoEgg\images\webcams_title.png (Adware.VideoEgg) -> No action taken. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\4152\resources\VideoEgg\images\webcam_btn_highlighted.png (Adware.VideoEgg) -> No action taken. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\4152\resources\VideoEgg\images\webcam_slide.png (Adware.VideoEgg) -> No action taken. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Publisher\4152\resources\VideoEgg\messages\messages.en-US.bundle (Adware.VideoEgg) -> No action taken. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Updater\updater.ver (Adware.VideoEgg) -> No action taken. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Updater\2663\libcurlve.dll (Adware.VideoEgg) -> No action taken. C:\Documents and Settings\Emilee Seda\Application Data\VideoEgg\Updater\2663\updater.dll (Adware.VideoEgg) -> No action taken. C:\WINDOWS\system32\smp\msrc.exe (Fake.Dropped.Malware) -> No action taken. C:\WINDOWS\system32\akttzn.exe (Trojan.Agent) -> No action taken. C:\WINDOWS\system32\bdn.com (Trojan.Agent) -> No action taken. C:\WINDOWS\system32\bsva-egihsg52.exe (Trojan.Agent) -> No action taken. C:\WINDOWS\system32\hxiwlgpm.dat (Trojan.Agent) -> No action taken. C:\WINDOWS\system32\hxiwlgpm.exe (Trojan.Agent) -> No action taken. C:\WINDOWS\system32\medup020.dll (Trojan.Agent) -> No action taken. C:\WINDOWS\system32\msgp.exe (Trojan.Agent) -> No action taken. C:\WINDOWS\system32\mssecu.exe (Trojan.Agent) -> No action taken. C:\WINDOWS\system32\msvchost.exe (Trojan.Agent) -> No action taken. C:\WINDOWS\system32\mtr2.exe (Trojan.Agent) -> No action taken. C:\WINDOWS\system32\mwin32.exe (Trojan.Agent) -> No action taken. C:\WINDOWS\system32\netode.exe (Trojan.Agent) -> No action taken. C:\WINDOWS\system32\newsd32.exe (Trojan.Agent) -> No action taken. C:\WINDOWS\system32\ps1.exe (Trojan.Agent) -> No action taken. C:\WINDOWS\system32\psof1.exe (Trojan.Agent) -> No action taken. C:\WINDOWS\system32\psoft1.exe (Trojan.Agent) -> No action taken. C:\WINDOWS\system32\regm64.dll (Trojan.Agent) -> No action taken. C:\WINDOWS\system32\Rundl1.exe (Trojan.Agent) -> No action taken. C:\WINDOWS\system32\ssvchost.exe (Trojan.Agent) -> No action taken. C:\WINDOWS\system32\sysreq.exe (Trojan.Agent) -> No action taken. C:\WINDOWS\system32\taack.dat (Trojan.Agent) -> No action taken. C:\WINDOWS\system32\taack.exe (Trojan.Agent) -> No action taken. C:\WINDOWS\system32\thun.dll (Trojan.Agent) -> No action taken. C:\WINDOWS\system32\thun32.dll (Trojan.Agent) -> No action taken. C:\WINDOWS\system32\VBIEWER.OCX (Trojan.Agent) -> No action taken. C:\WINDOWS\system32\vbsys2.dll (Trojan.Clicker) -> No action taken. C:\WINDOWS\system32\Winlogonpc.exe (Trojan.Agent) -> No action taken. C:\WINDOWS\system32\winSystem.exe (Trojan.Agent) -> No action taken. C:\WINDOWS\system32\WINWGPX.EXE (Trojan.Agent) -> No action taken. C:\Documents and Settings\Emilee Seda\delself.bat (Malware.Trace) -> No action taken. C:\WINDOWS\0535251103110107106.yux (KoobFace.Trace) -> No action taken. C:\WINDOWS\010112010146120114.xe (KoobFace.Trace) -> No action taken. C:\WINDOWS\0101120101464950.xe (KoobFace.Trace) -> No action taken. C:\WINDOWS\0101120101465653.xe (KoobFace.Trace) -> No action taken. C:\WINDOWS\a.bat (Fake.Dropped.Malware) -> No action taken. C:\WINDOWS\base64.tmp (Fake.Dropped.Malware) -> No action taken. C:\WINDOWS\bdn.com (Trojan.Agent) -> No action taken. C:\WINDOWS\ectbbyn.dat (KoobFace.Trace) -> No action taken. C:\WINDOWS\FVProtect.exe (Fake.Dropped.Malware) -> No action taken. C:\WINDOWS\iTunesMusic.exe (Trojan.Agent) -> No action taken. C:\WINDOWS\mmsmark2.dat (KoobFace.Trace) -> No action taken. C:\WINDOWS\mssecu.exe (Trojan.Agent) -> No action taken. C:\WINDOWS\prxid93ps.dat (Malware.Trace) -> No action taken. C:\WINDOWS\userconfig9x.dll (Fake.Dropped.Malware) -> No action taken. C:\WINDOWS\winSystem.exe (Fake.Dropped.Malware) -> No action taken. C:\WINDOWS\zip1.tmp (Fake.Dropped.Malware) -> No action taken. C:\WINDOWS\zip2.tmp (Fake.Dropped.Malware) -> No action taken. C:\WINDOWS\zip3.tmp (Fake.Dropped.Malware) -> No action taken. C:\WINDOWS\zipped.tmp (Fake.Dropped.Malware) -> No action taken. C:\WINDOWS\ex23567.dat (KoobFace.Trace) -> No action taken. Nouveau rapport HJT : Logfile of Trend Micro HijackThis v2.0.2 Scan saved at 16:35:51, on 9/20/2009 Platform: Windows XP SP3 (WinNT 5.01.2600) MSIE: Internet Explorer v8.00 (8.00.6001.18702) Boot mode: Normal Running processes: C:\WINDOWS\System32\smss.exe C:\WINDOWS\system32\winlogon.exe C:\WINDOWS\system32\services.exe C:\WINDOWS\system32\lsass.exe C:\WINDOWS\system32\Ati2evxx.exe C:\WINDOWS\system32\svchost.exe C:\Program Files\Dell\DellDock\DockLogin.exe C:\WINDOWS\System32\svchost.exe C:\WINDOWS\System32\WLTRYSVC.EXE C:\WINDOWS\System32\bcmwltry.exe C:\WINDOWS\system32\spoolsv.exe C:\Program Files\Stardock\MyColors\wbload.exe C:\WINDOWS\system32\Ati2evxx.exe C:\WINDOWS\Explorer.EXE C:\Program Files\Common Files\ArcSoft\Connection Service\Bin\ACService.exe C:\Program Files\WIDCOMM\Bluetooth Software\bin\btwdins.exe C:\Program Files\Common Files\Creative Labs Shared\Service\CreativeLicensing.exe C:\WINDOWS\system32\CTsvcCDA.exe C:\WINDOWS\eHome\ehRecvr.exe C:\WINDOWS\eHome\ehSched.exe C:\Program Files\Common Files\Microsoft Shared\VS7DEBUG\MDM.EXE C:\WINDOWS\system32\WLTRAY.exe C:\WINDOWS\stsystra.exe C:\Program Files\Synaptics\SynTP\SynTPEnh.exe C:\Program Files\ATI Technologies\ATI.ACE\cli.exe C:\Program Files\Creative\SBAudigy\Surround Mixer\CTSysVol.exe C:\WINDOWS\system32\Rundll32.exe C:\Program Files\Creative\VoiceCenter\AndreaVC.exe C:\Program Files\CyberLink\PowerDVD\DVDLauncher.exe C:\WINDOWS\vVX3000.exe C:\Program Files\HP\HP Software Update\HPWuSchd2.exe C:\WINDOWS\system32\ctfmon.exe C:\DOCUME~1\EMILEE~1\LOCALS~1\Temp\clclean.0001 C:\Program Files\Windows Live\Messenger\msnmsgr.exe C:\Program Files\Messenger\msmsgs.exe C:\WINDOWS\ehome\RMSvc.exe C:\Program Files\Microsoft\Search Enhancement Pack\SeaPort\SeaPort.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\system32\dllhost.exe C:\WINDOWS\system32\wuauclt.exe C:\Program Files\Windows Live\Contacts\wlcomm.exe C:\WINDOWS\system32\dwwin.exe C:\WINDOWS\system32\dwwin.exe C:\WINDOWS\system32\dwwin.exe C:\Program Files\Mozilla Firefox\firefox.exe C:\Program Files\Trend Micro\HijackThis\HijackThis.exe R1 - HKLM\Software\Microsoft\Internet Explorer\Search,Default_Page_URL = www.google.com/ig/dell?hl=en&client=dell-usuk&channel=us&ibd=0060928 R3 - URLSearchHook: AVG Security Toolbar BHO - {A3BC75A2-1F87-4686-AA43-5347D756017C} - C:\Program Files\AVG\AVG8\Toolbar\IEToolbar.dll R3 - URLSearchHook: (no name) - *{CFBFAE00-17A6-11D0-99CB-00C04FD64497} - (no file) O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll O2 - BHO: StumbleUpon Launcher - {145B29F4-A56B-4b90-BBAC-45784EBEBBB7} - C:\Program Files\StumbleUpon\StumbleUponIEBar.dll O2 - BHO: TBSB02751 - {25875464-7327-417C-8264-902D99CF6FD1} - C:\Program Files\Search Enhancer Toolbar\NCL.dll (file missing) O2 - BHO: RealPlayer Download and Record Plugin for Internet Explorer - {3049C3E9-B461-4BC5-8870-4C09146192CA} - C:\Program Files\Real\RealPlayer\rpbrowserrecordplugin.dll O2 - BHO: WormRadar.com IESiteBlocker.NavFilter - {3CA2F312-6F6E-4B53-A66E-4E65E497C8C0} - (no file) O2 - BHO: (no name) - {5C255C8A-E604-49b4-9D64-90988571CECB} - (no file) O2 - BHO: Search Helper - {6EBF7485-159F-4bff-A14F-B9E3AAC4465B} - C:\Program Files\Microsoft\Search Enhancement Pack\Search Helper\SEPsearchhelperie.dll O2 - BHO: Windows Live Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll O2 - BHO: AVG Security Toolbar BHO - {A3BC75A2-1F87-4686-AA43-5347D756017C} - C:\Program Files\AVG\AVG8\Toolbar\IEToolbar.dll O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files\Google\Google Toolbar\GoogleToolbar.dll O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\5.1.1309.3572\swg.dll O2 - BHO: Google Dictionary Compression sdch - {C84D72FE-E17D-4195-BB24-76C02E2E7C4E} - C:\Program Files\Google\Google Toolbar\Component\fastsearch_A8904FB862BD9564.dll O2 - BHO: Windows Live Toolbar Helper - {E15A8DC0-8516-42A1-81EA-DC94EC1ACF10} - C:\Program Files\Windows Live\Toolbar\wltcore.dll O3 - Toolbar: (no name) - {0BF43445-2F28-4351-9252-17FE6E806AA0} - (no file) O3 - Toolbar: StumbleUpon Toolbar - {5093EB4C-3E93-40AB-9266-B607BA87BDC8} - C:\Program Files\StumbleUpon\StumbleUponIEBar.dll O3 - Toolbar: Search Enhancer Toolbar - {BFB5F154-9212-46F3-B547-AC6106030A54} - C:\Program Files\Search Enhancer Toolbar\NCL.dll (file missing) O3 - Toolbar: AVG Security Toolbar - {CCC7A320-B3CA-4199-B1A6-9F516DD69829} - C:\Program Files\AVG\AVG8\Toolbar\IEToolbar.dll O3 - Toolbar: &Windows Live Toolbar - {21FA44EF-376D-4D53-9B0F-8A89D3229068} - C:\Program Files\Windows Live\Toolbar\wltcore.dll O4 - HKLM\..\Run: [broadcom Wireless Manager UI] C:\WINDOWS\system32\WLTRAY.exe O4 - HKLM\..\Run: [sigmatelSysTrayApp] stsystra.exe O4 - HKLM\..\Run: [synTPEnh] C:\Program Files\Synaptics\SynTP\SynTPEnh.exe O4 - HKLM\..\Run: [ATICCC] "C:\Program Files\ATI Technologies\ATI.ACE\cli.exe" runtime -Delay O4 - HKLM\..\Run: [CTSysVol] C:\Program Files\Creative\SBAudigy\Surround Mixer\CTSysVol.exe /r O4 - HKLM\..\Run: [MBMon] Rundll32 CTMBHA.DLL,MBMon O4 - HKLM\..\Run: [updReg] C:\WINDOWS\UpdReg.EXE O4 - HKLM\..\Run: [VoiceCenter] "C:\Program Files\Creative\VoiceCenter\AndreaVC.exe" /tray O4 - HKLM\..\Run: [DVDLauncher] "C:\Program Files\CyberLink\PowerDVD\DVDLauncher.exe" O4 - HKLM\..\Run: [iSUSPM Startup] "C:\Program Files\Common Files\InstallShield\UpdateService\isuspm.exe" -startup O4 - HKLM\..\Run: [iSUSScheduler] "C:\Program Files\Common Files\InstallShield\UpdateService\issch.exe" -start O4 - HKLM\..\Run: [VX3000] C:\WINDOWS\vVX3000.exe O4 - HKLM\..\Run: [HP Software Update] C:\Program Files\HP\HP Software Update\HPWuSchd2.exe O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime O4 - HKLM\..\Run: [sysfbtray] C:\windows\freddy58.exe O4 - HKLM\..\Run: [sysmstray] C:\windows\mstre21.exe O4 - HKCU\..\Run: [setDefaultMIDI] MIDIDef.exe O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe O4 - HKCU\..\Run: [msnmsgr] "C:\Program Files\Windows Live\Messenger\msnmsgr.exe" /background O4 - HKCU\..\Run: [MSMSGS] "C:\Program Files\Messenger\msmsgs.exe" /background O8 - Extra context menu item: Add to Google Photos Screensa&ver - res://C:\WINDOWS\system32\GPhotos.scr/200 O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~1\MI1933~1\Office10\EXCEL.EXE/3000 O8 - Extra context menu item: Send to &Bluetooth Device... - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie_ctx.htm O8 - Extra context menu item: StumbleUpon PhotoBlog It! - res://StumbleUponIEBar.dll/blogimage O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll O9 - Extra button: Blog This - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll O9 - Extra 'Tools' menuitem: &Blog This in Windows Live Writer - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll O9 - Extra button: Real.com - {CD67F990-D8E9-11d2-98FE-00C0F0318AFE} - C:\WINDOWS\system32\Shdocvw.dll O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe O10 - Unknown file in Winsock LSP: c:\windows\system32\nwprovau.dll O16 - DPF: {0CCA191D-13A6-4E29-B746-314DEE697D83} (Facebook Photo Uploader 5 Control) - http://upload.facebook.com/controls/2008.1...toUploader5.cab O16 - DPF: {8100D56A-5661-482C-BEE8-AFECE305D968} (Facebook Photo Uploader 5 Control) - http://upload.facebook.com/controls/2009.0...oUploader55.cab O18 - Protocol: linkscanner - {F274614C-63F8-47D5-A4D1-FBDDE494F8D1} - (no file) O18 - Filter: x-sdch - {B1759355-3EEC-4C1E-B0F1-B719FE26E377} - C:\Program Files\Google\Google Toolbar\Component\fastsearch_A8904FB862BD9564.dll O20 - Winlogon Notify: avgrsstarter - avgrsstx.dll (file missing) O23 - Service: ArcSoft Connect Daemon (ACDaemon) - ArcSoft Inc. - C:\Program Files\Common Files\ArcSoft\Connection Service\Bin\ACService.exe O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\WINDOWS\system32\Ati2evxx.exe O23 - Service: Bluetooth Service (btwdins) - Broadcom Corporation. - C:\Program Files\WIDCOMM\Bluetooth Software\bin\btwdins.exe O23 - Service: Symantec Lic NetConnect service (CLTNetCnService) - Unknown owner - C:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe (file missing) O23 - Service: Creative Labs Licensing Service - Creative Labs - C:\Program Files\Common Files\Creative Labs Shared\Service\CreativeLicensing.exe O23 - Service: Creative Service for CDROM Access - Creative Technology Ltd - C:\WINDOWS\system32\CTsvcCDA.exe O23 - Service: Dock Login Service (DockLoginService) - Stardock Corporation - C:\Program Files\Dell\DellDock\DockLogin.exe O23 - Service: Google Software Updater (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe O23 - Service: iPod Service - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe O23 - Service: McAfee Framework Service (McAfeeFramework) - Network Associates, Inc. - C:\Program Files\Network Associates\Common Framework\FrameworkService.exe O23 - Service: Pml Driver HPZ12 - HP - C:\WINDOWS\system32\HPZipm12.exe O23 - Service: StumbleUponUpdateService - stumbleupon.com - C:\Program Files\StumbleUpon\StumbleUponUpdateService.exe O23 - Service: Dell Wireless WLAN Tray Service (wltrysvc) - Unknown owner - C:\WINDOWS\System32\WLTRYSVC.EXE O24 - Desktop Component 2: (no name) - http://www.desktopcountdown.com/countdown/...ent=South+Beach -- End of file - 10663 bytes Voila, j'espere que ca te fait pas trop de boulot d'un coup. @+

Salut Apollo et merci pour ta reponse rapide! Alors tout d'abord, je dois te dire que j'ai du faire tout ce que tu m'as dit en mode sans echec parce que rien ne fonctionnait en mode normal. J'ai desinstalle AVG, mais pas encore installe Avira, je le ferai des que possible. En attendant voici les rapports que tu m'as demande. 1er rapport ToolBarSD : -----------\\ ToolBar S&D 1.2.9 XP/Vista Microsoft Windows XP Professional ( v5.1.2600 ) Service Pack 3 X86-based PC ( Multiprocessor Free : Intel® Core2 CPU T7200 @ 2.00GHz ) BIOS : Phoenix ROM BIOS PLUS Version 1.10 A08 USER : Emilee Seda ( Administrator ) BOOT : Fail-safe boot Antivirus : AVG Internet Security 8.5 (Activated) Firewall : AVG Firewall 8.5 (Not Activated) C:\ (Local Disk) - NTFS - Total:51 Go (Free:9 Go) D:\ (Local Disk) - NTFS - Total:16 Go (Free:5 Go) E:\ (CD or DVD) F:\ (USB) - FAT32 - Total:3827 Mo (Free:0 Go) "C:\ToolBar SD" ( MAJ : 22-08-2009|18:42 ) Option : [1] ( Sat 09/19/2009|19:38 ) -----------\\ Searching for Files - Folders ... C:\DOCUME~1\EMILEE~1\Cookies\emilee_seda@flalottery[2].txt C:\DOCUME~1\EMILEE~1\APPLIC~1\FunWebProducts C:\DOCUME~1\EMILEE~1\APPLIC~1\FunWebProducts\Data C:\DOCUME~1\EMILEE~1\APPLIC~1\FunWebProducts\Data\Emilee Seda C:\DOCUME~1\EMILEE~1\APPLIC~1\FunWebProducts\Data\Emilee Seda\avatar.dat C:\DOCUME~1\EMILEE~1\APPLIC~1\FunWebProducts\Data\Emilee Seda\register.dat -----------\\ Extensions (Emilee Seda) - {20a82645-c095-46ed-80e3-08825760534b} => chrome_user (Emilee Seda) - {AE93811A-5C9A-4d34-8462-F7B864FC4696} => stumbleupon -----------\\ [..\Internet Explorer\Main] [HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main] "Local Page"="C:\\WINDOWS\\system32\\blank.htm" "Start Page"="http://go.microsoft.com/fwlink/?LinkId=69157"'>http://go.microsoft.com/fwlink/?LinkId=69157"'>http://go.microsoft.com/fwlink/?LinkId=69157"'>http://go.microsoft.com/fwlink/?LinkId=69157"'>http://go.microsoft.com/fwlink/?LinkId=69157" "Search Page"="http://www.google.com"'>http://www.google.com" "Search Bar"="http://www.google.com/ie"'>http://www.google.com/ie"'>http://www.google.com/ie"'>http://www.google.com/ie" "Default_Search_URL"="http://www.google.com/ie" "SearchMigratedDefaultURL"="http://www.google.com/search?q={searchTerms}&sourceid=ie7&rls=com.microsoft:en-US&ie=utf8&oe=utf8"'>http://www.google.com/search?q={searchTerms}&sourceid=ie7&rls=com.microsoft:en-US&ie=utf8&oe=utf8" "Url"="http://go.microsoft.com/fwlink/?LinkId=68928"'>http://go.microsoft.com/fwlink/?LinkId=68928" "Url"="http://go.microsoft.com/fwlink/?LinkId=68929"'>http://go.microsoft.com/fwlink/?LinkId=68929" [HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Main] "Default_Page_URL"="http://go.microsoft.com/fwlink/?LinkId=69157" "Default_Search_URL"="http://go.microsoft.com/fwlink/?LinkId=54896"'>http://go.microsoft.com/fwlink/?LinkId=54896"'>http://go.microsoft.com/fwlink/?LinkId=54896"'>http://go.microsoft.com/fwlink/?LinkId=54896" "Search Page"="http://go.microsoft.com/fwlink/?LinkId=54896" "Local Page"="C:\\WINDOWS\\system32\\blank.htm" "Start Page"="http://go.microsoft.com/fwlink/?LinkId=69157" "Home_Page"="http://www.dell.com"'>http://www.dell.com" "Help_Page"="http://support.dell.com"'>http://support.dell.com" --------------------\\ Searching for other infections --------------------\\ KoobFace ! C:\WINDOWS\mmsmark2.dat --------------------\\ Cracks & Keygens .. C:\DOCUME~1\EMILEE~1\Cookies\emilee_seda@cracktwo[1].txt C:\DOCUME~1\EMILEE~1\Cookies\emilee_seda@smackinthecrack[2].txt C:\DOCUME~1\EMILEE~1\Cookies\emilee_seda@smackinthecrack[3].txt C:\DOCUME~1\EMILEE~1\Cookies\emilee_seda@stopacrack[2].txt C:\DOCUME~1\EMILEE~1\Cookies\emilee_seda@www.cracktwo[1].txt C:\DOCUME~1\EMILEE~1\Local Settings\Temp\Cookies\emilee_seda@saynotocrack[1].txt C:\DOCUME~1\EMILEE~1\Local Settings\Temporary Internet Files\Content.IE5\Y3FW4LYU\tyrannosaur_crack[1].png 1 - "C:\ToolBar SD\TB_1.txt" - Sat 09/19/2009|19:43 - Option : [1] -----------\\ Scan completed at 19:43:45.28 2eme rapport ToolBarSD : -----------\\ ToolBar S&D 1.2.9 XP/Vista Microsoft Windows XP Professional ( v5.1.2600 ) Service Pack 3 X86-based PC ( Multiprocessor Free : Intel® Core2 CPU T7200 @ 2.00GHz ) BIOS : Phoenix ROM BIOS PLUS Version 1.10 A08 USER : Emilee Seda ( Administrator ) BOOT : Fail-safe boot Antivirus : AVG Internet Security 8.5 (Activated) Firewall : AVG Firewall 8.5 (Not Activated) C:\ (Local Disk) - NTFS - Total:51 Go (Free:9 Go) D:\ (Local Disk) - NTFS - Total:16 Go (Free:5 Go) E:\ (CD or DVD) "C:\ToolBar SD" ( MAJ : 22-08-2009|18:42 ) Option : [2] ( Sat 09/19/2009|19:46 ) -----------\\ FIX Deleted! - C:\DOCUME~1\EMILEE~1\Cookies\emilee_seda@flalottery[2].txt Deleted! - C:\DOCUME~1\EMILEE~1\APPLIC~1\FunWebProducts\Data Deleted! - C:\DOCUME~1\EMILEE~1\APPLIC~1\FunWebProducts -----------\\ Searching for Files - Folders ... -----------\\ Extensions (Emilee Seda) - {20a82645-c095-46ed-80e3-08825760534b} => chrome_user (Emilee Seda) - {AE93811A-5C9A-4d34-8462-F7B864FC4696} => stumbleupon -----------\\ [..\Internet Explorer\Main] [HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main] "Local Page"="C:\\WINDOWS\\system32\\blank.htm" "Start Page"="http://go.microsoft.com/fwlink/?LinkId=69157" "Search Page"="http://www.google.com" "Search Bar"="http://www.google.com/ie" "Default_Search_URL"="http://www.google.com/ie" "SearchMigratedDefaultURL"="http://www.google.com/search?q={searchTerms}&sourceid=ie7&rls=com.microsoft:en-US&ie=utf8&oe=utf8" "Url"="http://go.microsoft.com/fwlink/?LinkId=68928" "Url"="http://go.microsoft.com/fwlink/?LinkId=68929" [HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Main] "Default_Page_URL"="http://go.microsoft.com/fwlink/?LinkId=69157" "Default_Search_URL"="http://go.microsoft.com/fwlink/?LinkId=54896" "Search Page"="http://go.microsoft.com/fwlink/?LinkId=54896" "Local Page"="C:\\WINDOWS\\system32\\blank.htm" "Start Page"="http://www.msn.com/" "Home_Page"="http://www.dell.com" "Help_Page"="http://support.dell.com" --------------------\\ Searching for other infections --------------------\\ KoobFace ! C:\WINDOWS\mmsmark2.dat --------------------\\ Cracks & Keygens .. C:\DOCUME~1\EMILEE~1\Cookies\emilee_seda@cracktwo[1].txt C:\DOCUME~1\EMILEE~1\Cookies\emilee_seda@smackinthecrack[2].txt C:\DOCUME~1\EMILEE~1\Cookies\emilee_seda@smackinthecrack[3].txt C:\DOCUME~1\EMILEE~1\Cookies\emilee_seda@stopacrack[2].txt C:\DOCUME~1\EMILEE~1\Cookies\emilee_seda@www.cracktwo[1].txt C:\DOCUME~1\EMILEE~1\Local Settings\Temp\Cookies\emilee_seda@saynotocrack[1].txt C:\DOCUME~1\EMILEE~1\Local Settings\Temporary Internet Files\Content.IE5\Y3FW4LYU\tyrannosaur_crack[1].png 1 - "C:\ToolBar SD\TB_1.txt" - Sat 09/19/2009|19:43 - Option : [1] 2 - "C:\ToolBar SD\TB_2.txt" - Sat 09/19/2009|19:47 - Option : [2] -----------\\ Scan completed at 19:47:34.59 1er rapport SmitFraudFix : SmitFraudFix v2.424 Scan done at 19:49:50.90, Sat 09/19/2009 Run from C:\Documents and Settings\Emilee Seda\Desktop\SmitfraudFix OS: Microsoft Windows XP [Version 5.1.2600] - Windows_NT The filesystem type is NTFS Fix run in safe mode ªªªªªªªªªªªªªªªªªªªªªªªª Process C:\WINDOWS\System32\smss.exe C:\WINDOWS\system32\winlogon.exe C:\WINDOWS\system32\services.exe C:\WINDOWS\system32\lsass.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\Explorer.EXE C:\WINDOWS\system32\ctfmon.exe C:\Documents and Settings\Emilee Seda\Desktop\SmitfraudFix\Policies.exe C:\WINDOWS\system32\cmd.exe ªªªªªªªªªªªªªªªªªªªªªªªª hosts ªªªªªªªªªªªªªªªªªªªªªªªª C:\ ªªªªªªªªªªªªªªªªªªªªªªªª C:\WINDOWS ªªªªªªªªªªªªªªªªªªªªªªªª C:\WINDOWS\system ªªªªªªªªªªªªªªªªªªªªªªªª C:\WINDOWS\Web ªªªªªªªªªªªªªªªªªªªªªªªª C:\WINDOWS\system32 ªªªªªªªªªªªªªªªªªªªªªªªª C:\WINDOWS\system32\LogFiles ªªªªªªªªªªªªªªªªªªªªªªªª C:\Documents and Settings\Emilee Seda ªªªªªªªªªªªªªªªªªªªªªªªª C:\DOCUME~1\EMILEE~1\LOCALS~1\Temp ªªªªªªªªªªªªªªªªªªªªªªªª C:\Documents and Settings\Emilee Seda\Application Data C:\Documents and Settings\Emilee Seda\Application Data\Skinux FOUND ! ªªªªªªªªªªªªªªªªªªªªªªªª Start Menu ªªªªªªªªªªªªªªªªªªªªªªªª C:\DOCUME~1\EMILEE~1\FAVORI~1 C:\DOCUME~1\EMILEE~1\FAVORI~1\Online Security Test.url FOUND ! ªªªªªªªªªªªªªªªªªªªªªªªª Desktop ªªªªªªªªªªªªªªªªªªªªªªªª C:\Program Files C:\Program Files\Video Add-on\ FOUND ! ªªªªªªªªªªªªªªªªªªªªªªªª Corrupted keys ªªªªªªªªªªªªªªªªªªªªªªªª Desktop Components [HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Desktop\Components\0] "Source"="C:\\Documents and Settings\\Emilee Seda\\My Documents\\My Pictures\\Spring Break Miami '05\\100_0188.JPG" "SubscribedURL"="C:\\Documents and Settings\\Emilee Seda\\My Documents\\My Pictures\\Spring Break Miami '05\\100_0188.JPG" "FriendlyName"="" [HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Desktop\Components\1] "Source"="About:Home" "SubscribedURL"="About:Home" "FriendlyName"="My Current Home Page" [HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Desktop\Components\2] "Source"="http://www.desktopcountdown.com/countdown/?lang=en&mon=5&day=30&year=2008&hour=0&min=0&sec=0&event=South+Beach"'>http://www.desktopcountdown.com/countdown/?lang=en&mon=5&day=30&year=2008&hour=0&min=0&sec=0&event=South+Beach" "SubscribedURL"="http://www.desktopcountdown.com/countdown/?lang=en&mon=5&day=30&year=2008&hour=0&min=0&sec=0&event=South+Beach" "FriendlyName"="" ªªªªªªªªªªªªªªªªªªªªªªªª o4Patch !!!Attention, following keys are not inevitably infected!!! o4Patch Credits: Malware Analysis & Diagnostic Code: S!Ri ªªªªªªªªªªªªªªªªªªªªªªªª IEDFix !!!Attention, following keys are not inevitably infected!!! IEDFix Credits: Malware Analysis & Diagnostic Code: S!Ri ªªªªªªªªªªªªªªªªªªªªªªªª Agent.OMZ.Fix !!!Attention, following keys are not inevitably infected!!! Agent.OMZ.Fix Credits: Malware Analysis & Diagnostic Code: S!Ri ªªªªªªªªªªªªªªªªªªªªªªªª VACFix !!!Attention, following keys are not inevitably infected!!! VACFix Credits: Malware Analysis & Diagnostic Code: S!Ri ªªªªªªªªªªªªªªªªªªªªªªªª 404Fix !!!Attention, following keys are not inevitably infected!!! 404Fix Credits: Malware Analysis & Diagnostic Code: S!Ri ªªªªªªªªªªªªªªªªªªªªªªªª Sharedtaskscheduler !!!Attention, following keys are not inevitably infected!!! SrchSTS.exe by S!Ri Search SharedTaskScheduler's .dll [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\SharedTaskScheduler] "{eb4c6870-721f-4989-9c90-8cbfa46d0298}"="anomuran" ªªªªªªªªªªªªªªªªªªªªªªªª AppInit_DLLs !!!Attention, following keys are not inevitably infected!!! [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows] "AppInit_DLLs"="karna.dat" "LoadAppInit_DLLs"=dword:00000001 ªªªªªªªªªªªªªªªªªªªªªªªª Winlogon !!!Attention, following keys are not inevitably infected!!! [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon] "Userinit"="C:\\WINDOWS\\system32\\userinit.exe," ªªªªªªªªªªªªªªªªªªªªªªªª RK [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon] "System"="" ªªªªªªªªªªªªªªªªªªªªªªªª DNS HKLM\SYSTEM\CCS\Services\Tcpip\..\{5D793298-D940-48F8-97C0-897957A0AD4D}: DhcpNameServer=93.188.161.105 93.188.166.105 HKLM\SYSTEM\CS1\Services\Tcpip\..\{5D793298-D940-48F8-97C0-897957A0AD4D}: DhcpNameServer=93.188.161.105 93.188.166.105 HKLM\SYSTEM\CCS\Services\Tcpip\Parameters: DhcpNameServer=93.188.161.105 93.188.166.105 HKLM\SYSTEM\CS1\Services\Tcpip\Parameters: DhcpNameServer=93.188.161.105 93.188.166.105 ªªªªªªªªªªªªªªªªªªªªªªªª Scanning for wininet.dll infection ªªªªªªªªªªªªªªªªªªªªªªªª End 2eme rapport SmitFraudFix : SmitFraudFix v2.424 Scan done at 19:53:53.46, Sat 09/19/2009 Run from C:\Documents and Settings\Emilee Seda\Desktop\SmitfraudFix OS: Microsoft Windows XP [Version 5.1.2600] - Windows_NT The filesystem type is NTFS Fix run in safe mode ªªªªªªªªªªªªªªªªªªªªªªªª SharedTaskScheduler Before SmitFraudFix !!!Attention, following keys are not inevitably infected!!! SrchSTS.exe by S!Ri Search SharedTaskScheduler's .dll [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\SharedTaskScheduler] "{eb4c6870-721f-4989-9c90-8cbfa46d0298}"="anomuran" ªªªªªªªªªªªªªªªªªªªªªªªª Killing process ªªªªªªªªªªªªªªªªªªªªªªªª hosts 127.0.0.1 localhost 127.0.0.1 bin.errorprotector.com ## added by CiD 127.0.0.1 br.errorsafe.com ## added by CiD 127.0.0.1 br.winantivirus.com ## added by CiD 127.0.0.1 br.winfixer.com ## added by CiD 127.0.0.1 de.errorsafe.com ## added by CiD 127.0.0.1 de.winantivirus.com ## added by CiD 127.0.0.1 download.cdn.winsoftware.com ## added by CiD 127.0.0.1 download.errorsafe.com ## added by CiD 127.0.0.1 download.systemdoctor.com ## added by CiD ... ªªªªªªªªªªªªªªªªªªªªªªªª VACFix VACFix Credits: Malware Analysis & Diagnostic Code: S!Ri ªªªªªªªªªªªªªªªªªªªªªªªª Winsock2 Fix S!Ri's WS2Fix: LSP not Found. ªªªªªªªªªªªªªªªªªªªªªªªª Generic Renos Fix GenericRenosFix by S!Ri ªªªªªªªªªªªªªªªªªªªªªªªª Deleting infected files C:\Documents and Settings\Emilee Seda\Application Data\Skinux\ Deleted C:\DOCUME~1\EMILEE~1\FAVORI~1\Online Security Test.url Deleted C:\Program Files\Video Add-on\ Deleted ªªªªªªªªªªªªªªªªªªªªªªªª IEDFix IEDFix Credits: Malware Analysis & Diagnostic Code: S!Ri ªªªªªªªªªªªªªªªªªªªªªªªª Agent.OMZ.Fix Agent.OMZ.Fix Credits: Malware Analysis & Diagnostic Code: S!Ri ªªªªªªªªªªªªªªªªªªªªªªªª 404Fix 404Fix Credits: Malware Analysis & Diagnostic Code: S!Ri ªªªªªªªªªªªªªªªªªªªªªªªª RK ªªªªªªªªªªªªªªªªªªªªªªªª DNS HKLM\SYSTEM\CCS\Services\Tcpip\..\{5D793298-D940-48F8-97C0-897957A0AD4D}: DhcpNameServer=93.188.161.105 93.188.166.105 HKLM\SYSTEM\CS1\Services\Tcpip\..\{5D793298-D940-48F8-97C0-897957A0AD4D}: DhcpNameServer=93.188.161.105 93.188.166.105 HKLM\SYSTEM\CCS\Services\Tcpip\Parameters: DhcpNameServer=93.188.161.105 93.188.166.105 HKLM\SYSTEM\CS1\Services\Tcpip\Parameters: DhcpNameServer=93.188.161.105 93.188.166.105 ªªªªªªªªªªªªªªªªªªªªªªªª Deleting Temp Files ªªªªªªªªªªªªªªªªªªªªªªªª Winlogon.System !!!Attention, following keys are not inevitably infected!!! "System"="" ªªªªªªªªªªªªªªªªªªªªªªªª RK.2 ªªªªªªªªªªªªªªªªªªªªªªªª Registry Cleaning Registry Cleaning done. ªªªªªªªªªªªªªªªªªªªªªªªª SharedTaskScheduler After SmitFraudFix !!!Attention, following keys are not inevitably infected!!! SrchSTS.exe by S!Ri Search SharedTaskScheduler's .dll ªªªªªªªªªªªªªªªªªªªªªªªª End Voila! J'imagine que ca te fait beaucoup de boulot, j'te laisse le temps de te pencher la dessus et j'attend de tes nouvelles. Bon courage. @+

Salut a tous! Voila, le PC d'une amie a moi connait depuis peu quelques rates... Certains programmes tels qu'IE, iTunes et bien d'autres, ne daignent plus s'ouvrir ou fonctionner correctement. D'apres ce que je sais, ses problemes ont debute une fois son antivirus (AVG???) expire. Je ne peux pas vous en dire beacoup plus car je n'ai pas vraiment eu le temps d'examiner la bete mais je suis pret a prendre tous vos conseils, et les suivre a la lettre afin d'arranger la situation. J'ai simplement eu le temps d'installer HJT sur son PC et d'en ressortir ce rapport. Logfile of Trend Micro HijackThis v2.0.2 Scan saved at 12:02:29 PM, on 9/18/2009 Platform: Windows XP SP3 (WinNT 5.01.2600) MSIE: Internet Explorer v8.00 (8.00.6001.18702) Boot mode: Normal Running processes: C:\WINDOWS\System32\smss.exe C:\WINDOWS\system32\winlogon.exe C:\WINDOWS\system32\services.exe C:\WINDOWS\system32\lsass.exe C:\WINDOWS\system32\Ati2evxx.exe C:\WINDOWS\system32\svchost.exe C:\Program Files\Dell\DellDock\DockLogin.exe C:\WINDOWS\System32\svchost.exe C:\WINDOWS\System32\WLTRYSVC.EXE C:\WINDOWS\System32\bcmwltry.exe C:\WINDOWS\system32\spoolsv.exe C:\Program Files\Common Files\ArcSoft\Connection Service\Bin\ACService.exe C:\PROGRA~1\AVG\AVG8\avgwdsvc.exe C:\PROGRA~1\AVG\AVG8\avgfws8.exe C:\Program Files\WIDCOMM\Bluetooth Software\bin\btwdins.exe C:\Program Files\Common Files\Creative Labs Shared\Service\CreativeLicensing.exe C:\WINDOWS\system32\CTsvcCDA.exe C:\WINDOWS\eHome\ehRecvr.exe C:\WINDOWS\eHome\ehSched.exe C:\Program Files\Common Files\Microsoft Shared\VS7DEBUG\MDM.EXE C:\WINDOWS\system32\HPZipm12.exe C:\WINDOWS\ehome\RMSvc.exe C:\Program Files\Microsoft\Search Enhancement Pack\SeaPort\SeaPort.exe C:\WINDOWS\system32\svchost.exe C:\Program Files\Stardock\MyColors\wbload.exe C:\WINDOWS\system32\dllhost.exe C:\WINDOWS\system32\Ati2evxx.exe C:\WINDOWS\Explorer.EXE C:\WINDOWS\system32\WLTRAY.exe C:\WINDOWS\stsystra.exe C:\Program Files\Synaptics\SynTP\SynTPEnh.exe C:\Program Files\ATI Technologies\ATI.ACE\cli.exe C:\Program Files\Creative\SBAudigy\Surround Mixer\CTSysVol.exe C:\WINDOWS\system32\Rundll32.exe C:\Program Files\Creative\VoiceCenter\AndreaVC.exe C:\Program Files\CyberLink\PowerDVD\DVDLauncher.exe C:\WINDOWS\vVX3000.exe C:\Program Files\HP\HP Software Update\HPWuSchd2.exe C:\WINDOWS\system32\ctfmon.exe C:\Program Files\Windows Live\Messenger\msnmsgr.exe C:\Program Files\Messenger\msmsgs.exe C:\DOCUME~1\EMILEE~1\LOCALS~1\Temp\clclean.0001 C:\WINDOWS\System32\svchost.exe C:\WINDOWS\system32\wuauclt.exe C:\WINDOWS\system32\wuauclt.exe C:\Program Files\Windows Live\Contacts\wlcomm.exe C:\Program Files\ATI Technologies\ATI.ACE\cli.exe C:\WINDOWS\system32\dwwin.exe C:\WINDOWS\system32\dumprep.exe C:\WINDOWS\system32\dwwin.exe C:\Program Files\Trend Micro\HijackThis\HijackThis.exe R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = www.google.com/ig/dell?hl=en&client=dell-usuk&channel=us&ibd=0060928 R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157 R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157 R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896 R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896 R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157 R1 - HKLM\Software\Microsoft\Internet Explorer\Search,Default_Page_URL = www.google.com/ig/dell?hl=en&client=dell-usuk&channel=us&ibd=0060928 R3 - URLSearchHook: AVG Security Toolbar BHO - {A3BC75A2-1F87-4686-AA43-5347D756017C} - C:\Program Files\AVG\AVG8\Toolbar\IEToolbar.dll R3 - URLSearchHook: (no name) - *{CFBFAE00-17A6-11D0-99CB-00C04FD64497} - (no file) O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll O2 - BHO: StumbleUpon Launcher - {145B29F4-A56B-4b90-BBAC-45784EBEBBB7} - C:\Program Files\StumbleUpon\StumbleUponIEBar.dll O2 - BHO: TBSB02751 - {25875464-7327-417C-8264-902D99CF6FD1} - C:\Program Files\Search Enhancer Toolbar\NCL.dll (file missing) O2 - BHO: RealPlayer Download and Record Plugin for Internet Explorer - {3049C3E9-B461-4BC5-8870-4C09146192CA} - C:\Program Files\Real\RealPlayer\rpbrowserrecordplugin.dll O2 - BHO: WormRadar.com IESiteBlocker.NavFilter - {3CA2F312-6F6E-4B53-A66E-4E65E497C8C0} - C:\Program Files\AVG\AVG8\avgssie.dll O2 - BHO: (no name) - {5C255C8A-E604-49b4-9D64-90988571CECB} - (no file) O2 - BHO: Search Helper - {6EBF7485-159F-4bff-A14F-B9E3AAC4465B} - C:\Program Files\Microsoft\Search Enhancement Pack\Search Helper\SEPsearchhelperie.dll O2 - BHO: Windows Live Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll O2 - BHO: AVG Security Toolbar BHO - {A3BC75A2-1F87-4686-AA43-5347D756017C} - C:\Program Files\AVG\AVG8\Toolbar\IEToolbar.dll O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files\Google\Google Toolbar\GoogleToolbar.dll O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\5.1.1309.3572\swg.dll O2 - BHO: Google Dictionary Compression sdch - {C84D72FE-E17D-4195-BB24-76C02E2E7C4E} - C:\Program Files\Google\Google Toolbar\Component\fastsearch_A8904FB862BD9564.dll O2 - BHO: Windows Live Toolbar Helper - {E15A8DC0-8516-42A1-81EA-DC94EC1ACF10} - C:\Program Files\Windows Live\Toolbar\wltcore.dll O3 - Toolbar: (no name) - {0BF43445-2F28-4351-9252-17FE6E806AA0} - (no file) O3 - Toolbar: Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar.dll O3 - Toolbar: StumbleUpon Toolbar - {5093EB4C-3E93-40AB-9266-B607BA87BDC8} - C:\Program Files\StumbleUpon\StumbleUponIEBar.dll O3 - Toolbar: Search Enhancer Toolbar - {BFB5F154-9212-46F3-B547-AC6106030A54} - C:\Program Files\Search Enhancer Toolbar\NCL.dll (file missing) O3 - Toolbar: AVG Security Toolbar - {CCC7A320-B3CA-4199-B1A6-9F516DD69829} - C:\Program Files\AVG\AVG8\Toolbar\IEToolbar.dll O3 - Toolbar: &Windows Live Toolbar - {21FA44EF-376D-4D53-9B0F-8A89D3229068} - C:\Program Files\Windows Live\Toolbar\wltcore.dll O4 - HKLM\..\Run: [broadcom Wireless Manager UI] C:\WINDOWS\system32\WLTRAY.exe O4 - HKLM\..\Run: [sigmatelSysTrayApp] stsystra.exe O4 - HKLM\..\Run: [synTPEnh] C:\Program Files\Synaptics\SynTP\SynTPEnh.exe O4 - HKLM\..\Run: [ATICCC] "C:\Program Files\ATI Technologies\ATI.ACE\cli.exe" runtime -Delay O4 - HKLM\..\Run: [CTSysVol] C:\Program Files\Creative\SBAudigy\Surround Mixer\CTSysVol.exe /r O4 - HKLM\..\Run: [MBMon] Rundll32 CTMBHA.DLL,MBMon O4 - HKLM\..\Run: [updReg] C:\WINDOWS\UpdReg.EXE O4 - HKLM\..\Run: [VoiceCenter] "C:\Program Files\Creative\VoiceCenter\AndreaVC.exe" /tray O4 - HKLM\..\Run: [DVDLauncher] "C:\Program Files\CyberLink\PowerDVD\DVDLauncher.exe" O4 - HKLM\..\Run: [iSUSPM Startup] "C:\Program Files\Common Files\InstallShield\UpdateService\isuspm.exe" -startup O4 - HKLM\..\Run: [iSUSScheduler] "C:\Program Files\Common Files\InstallShield\UpdateService\issch.exe" -start O4 - HKLM\..\Run: [VX3000] C:\WINDOWS\vVX3000.exe O4 - HKLM\..\Run: [HP Software Update] C:\Program Files\HP\HP Software Update\HPWuSchd2.exe O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime O4 - HKLM\..\Run: [pp] C:\windows\pp11.exe O4 - HKLM\..\Run: [sysfbtray] C:\windows\freddy58.exe O4 - HKLM\..\Run: [sysmstray] C:\windows\mstre21.exe O4 - HKLM\..\Run: [AVG8_TRAY] C:\PROGRA~1\AVG\AVG8\avgtray.exe O4 - HKLM\..\Run: [AVGIDS] "C:\Program Files\AVG\AVG8\IdentityProtection\agent\bin\AVGIDSUI.exe" O4 - HKCU\..\Run: [setDefaultMIDI] MIDIDef.exe O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe O4 - HKCU\..\Run: [msnmsgr] "C:\Program Files\Windows Live\Messenger\msnmsgr.exe" /background O4 - HKCU\..\Run: [MSMSGS] "C:\Program Files\Messenger\msmsgs.exe" /background O8 - Extra context menu item: &Search - http://edits.mywebsearch.com/toolbaredits/...html?p=ZJfox000 O8 - Extra context menu item: Add to Google Photos Screensa&ver - res://C:\WINDOWS\system32\GPhotos.scr/200 O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~1\MI1933~1\Office10\EXCEL.EXE/3000 O8 - Extra context menu item: Send to &Bluetooth Device... - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie_ctx.htm O8 - Extra context menu item: StumbleUpon PhotoBlog It! - res://StumbleUponIEBar.dll/blogimage O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll O9 - Extra button: Blog This - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll O9 - Extra 'Tools' menuitem: &Blog This in Windows Live Writer - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll O9 - Extra button: Real.com - {CD67F990-D8E9-11d2-98FE-00C0F0318AFE} - C:\WINDOWS\system32\Shdocvw.dll O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe O10 - Unknown file in Winsock LSP: c:\windows\system32\nwprovau.dll O16 - DPF: {0CCA191D-13A6-4E29-B746-314DEE697D83} (Facebook Photo Uploader 5 Control) - http://upload.facebook.com/controls/2008.1...toUploader5.cab O16 - DPF: {8100D56A-5661-482C-BEE8-AFECE305D968} (Facebook Photo Uploader 5 Control) - http://upload.facebook.com/controls/2009.0...oUploader55.cab O18 - Protocol: linkscanner - {F274614C-63F8-47D5-A4D1-FBDDE494F8D1} - C:\Program Files\AVG\AVG8\avgpp.dll O18 - Filter: x-sdch - {B1759355-3EEC-4C1E-B0F1-B719FE26E377} - C:\Program Files\Google\Google Toolbar\Component\fastsearch_A8904FB862BD9564.dll O20 - AppInit_DLLs: karna.dat O20 - Winlogon Notify: avgrsstarter - C:\WINDOWS\SYSTEM32\avgrsstx.dll O22 - SharedTaskScheduler: anomuran - {eb4c6870-721f-4989-9c90-8cbfa46d0298} - (no file) O23 - Service: ArcSoft Connect Daemon (ACDaemon) - ArcSoft Inc. - C:\Program Files\Common Files\ArcSoft\Connection Service\Bin\ACService.exe O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\WINDOWS\system32\Ati2evxx.exe O23 - Service: AVG8 E-mail Scanner (avg8emc) - AVG Technologies CZ, s.r.o. - C:\PROGRA~1\AVG\AVG8\avgemc.exe O23 - Service: AVG8 WatchDog (avg8wd) - AVG Technologies CZ, s.r.o. - C:\PROGRA~1\AVG\AVG8\avgwdsvc.exe O23 - Service: AVG8 Firewall (avgfws8) - AVG Technologies CZ, s.r.o. - C:\PROGRA~1\AVG\AVG8\avgfws8.exe O23 - Service: Bluetooth Service (btwdins) - Broadcom Corporation. - C:\Program Files\WIDCOMM\Bluetooth Software\bin\btwdins.exe O23 - Service: Symantec Lic NetConnect service (CLTNetCnService) - Unknown owner - C:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe (file missing) O23 - Service: Creative Labs Licensing Service - Creative Labs - C:\Program Files\Common Files\Creative Labs Shared\Service\CreativeLicensing.exe O23 - Service: Creative Service for CDROM Access - Creative Technology Ltd - C:\WINDOWS\system32\CTsvcCDA.exe O23 - Service: Dock Login Service (DockLoginService) - Stardock Corporation - C:\Program Files\Dell\DellDock\DockLogin.exe O23 - Service: Google Software Updater (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe O23 - Service: iPod Service - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe O23 - Service: McAfee Framework Service (McAfeeFramework) - Network Associates, Inc. - C:\Program Files\Network Associates\Common Framework\FrameworkService.exe O23 - Service: Pml Driver HPZ12 - HP - C:\WINDOWS\system32\HPZipm12.exe O23 - Service: StumbleUponUpdateService - stumbleupon.com - C:\Program Files\StumbleUpon\StumbleUponUpdateService.exe O23 - Service: Dell Wireless WLAN Tray Service (wltrysvc) - Unknown owner - C:\WINDOWS\System32\WLTRYSVC.EXE O24 - Desktop Component 0: (no name) - C:\Documents and Settings\Emilee Seda\My Documents\My Pictures\Spring Break Miami '05\100_0188.JPG O24 - Desktop Component 2: (no name) - http://www.desktopcountdown.com/countdown/...ent=South+Beach -- End of file - 12639 bytes Merci d'avance pour votre aide!!

Mince alors! Mon adaptateur pour brancher le PC sur secteur vient juste de me lâcher!!! Je crois que j'ai la poisse là... Combien ça coûte un truc comme ça?

C'est un Toshiba Satellite... SM30X-142 il me semble.

Ok merci je le désinstalle comme tu me l'as dit donc! @+

Merci de ta réponse TheGhostRider. Je sais que ce n'est pas bon de laisser un PC portable sur secteur avec la batterie, mais je trouvais ça trop contraignant de toujours enlever puis remettre la batterie. Donc si j'en suis là, je suis bien conscient que c'est uniquement de ma faute. Combien coûte en général une batterie? Et en trouverai-je encore une pour un PC qui date d'il y a 4 ans?

Bonjour à tous! Voilà mon souci, mon PC portable se fait vieux (4 ans) mais fonctionne toujours correctement, le seul ennuie c'est que ma batterie n'a plus beaucoup d'autonomie (à peine 1 heure je pense ). Il est vrai que mon PC est constamment allumé et qu'il est toujours branché sur secteur avec la batterie. Je voudrais savoir s'il existe des outils pour pouvoir vérifier l'état de ma batterie? Et aussi, si celle-ci s'avère être HS, quelles sont les solutions qui s'offrent à moi? Merci d'avance à tous pour vos réponses.

Ok merci à toi pour ton aide et tes conseils Appolo. Une dernière petite question... Est-il utile que je garde USBFix maintenant que j'ai nettoyé mon PC et mes clés et qu'ils sont vaccinés? L'outil pourrait-il me resservir plus tard?

Merci Appolo! Donc si j'ai bien compris, mon PC et mes clés USB sont propres et protégés désormais? C'est ça?

Non je n'ai pas d'autre problème. J'ai lancé un scan avec AntiVir et il ne m'a rien trouvé, donc a priori tout va bien. Merci encore de ton aide, j'attends de tes nouvelle demain.

Re Appolo! J'ai bien fait tout ce que tu m'as dit. Alors voici le 1er rapport : ############################## [ UsbFix V3.027 | Scan ] # User : Pierrot (Administrateurs) # PIERRE-OLIVIER # Update on 30/05/09 by Chiquitine29, C_XX & Chimay8 # WebSite : http://pagesperso-orange.fr/NosTools/usbfix.html # Start at: 00:35:22 | 02/06/2009 # Intel® Pentium® M processor 1.60GHz # Microsoft Windows XP Édition familiale (5.1.2600 32-bit) # Service Pack 3 # Internet Explorer 8.0.6001.18702 # Windows Firewall Status : Enabled # AV : Avira AntiVir PersonalEdition Classic 8.0.1.30 [ Enabled | Updated ] # C:\ # Disque fixe local # 111,79 Go (8,96 Go free) # NTFS # D:\ # Disque CD-ROM # E:\ # Disque CD-ROM # F:\ # Disque amovible # 116,88 Mo (114,58 Mo free) [PIERROT] # FAT # G:\ # Disque amovible # 3,74 Go (675,78 Mo free) [PECKO] # FAT32 ############################## [ Processus actifs ] C:\WINDOWS\System32\smss.exe C:\WINDOWS\system32\csrss.exe C:\WINDOWS\system32\winlogon.exe C:\WINDOWS\system32\services.exe C:\WINDOWS\system32\lsass.exe C:\WINDOWS\system32\Ati2evxx.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\System32\svchost.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\Explorer.EXE C:\WINDOWS\system32\spoolsv.exe C:\Program Files\Avira\AntiVir PersonalEdition Classic\sched.exe C:\WINDOWS\system32\svchost.exe C:\Program Files\Avira\AntiVir PersonalEdition Classic\avguard.exe C:\Program Files\TOSHIBA\Power Management\CeEPwrSvc.exe C:\Program Files\TOSHIBA\ConfigFree\CFSvcs.exe C:\WINDOWS\system32\DVDRAMSV.exe C:\Program Files\Java\jre6\bin\jqs.exe C:\WINDOWS\system32\svchost.exe C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe C:\Program Files\Apoint2K\Apoint.exe C:\Program Files\TOSHIBA\PadTouch\PadExe.exe C:\Program Files\TOSHIBA\Power Management\CePMTray.exe C:\Program Files\TOSHIBA\E-KEY\CeEKey.exe C:\Program Files\EzButton\EzButton.EXE C:\Program Files\TOSHIBA\TouchPad\TPTray.exe C:\WINDOWS\System32\ZoomingHook.exe C:\Program Files\TOSHIBA\Utilitaire de zoom TOSHIBA\SmoothView.exe C:\Program Files\TOSHIBA\ConfigFree\NDSTray.exe C:\WINDOWS\system32\dla\tfswctrl.exe C:\Program Files\Avira\AntiVir PersonalEdition Classic\avgnt.exe C:\Program Files\TOSHIBA\TOSCDSPD\toscdspd.exe C:\WINDOWS\system32\RAMASST.exe C:\Program Files\Apoint2K\Apntex.exe C:\WINDOWS\System32\alg.exe C:\WINDOWS\system32\wbem\wmiapsrv.exe C:\WINDOWS\system32\wbem\wmiprvse.exe ################## [ Registre Startup ] HKCU_Main: "Local Page"="C:\\WINDOWS\\system32\\blank.htm" HKCU_Main: "Search Page"="http://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch" HKCU_Main: "Start Page"="http://www.microsoft.com/isapi/redir.dll?prd=ie&pver=6&ar=msnhome" HKLM_logon: "Userinit"="C:\\WINDOWS\\system32\\userinit.exe," HKLM_logon: "DefaultUserName"="Pierrot" HKLM_logon: "AltDefaultUserName"="Pierrot" HKLM_logon: "LegalNoticeCaption"="" HKLM_logon: "LegalNoticeText"="" HKLM_Run: ATIPTA=C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe HKLM_Run: Apoint=C:\Program Files\Apoint2K\Apoint.exe HKLM_Run: PadTouch="C:\Program Files\TOSHIBA\PadTouch\PadExe.exe HKLM_Run: CeEPOWER=C:\Program Files\TOSHIBA\Power Management\CePMTray.exe HKLM_Run: CeEKEY=C:\Program Files\TOSHIBA\E-KEY\CeEKey.exe HKLM_Run: EzButton=C:\Program Files\EzButton\EzButton.EXE HKLM_Run: TPNF=C:\Program Files\TOSHIBA\TouchPad\TPTray.exe HKLM_Run: ZoomingHook=c:\WINDOWS\System32\ZoomingHook.exe HKLM_Run: SmoothView=C:\Program Files\TOSHIBA\Utilitaire de zoom TOSHIBA\SmoothView.exe HKLM_Run: NDSTray.exe=NDSTray.exe HKLM_Run: dla=C:\WINDOWS\system32\dla\tfswctrl.exe HKLM_Run: avgnt="C:\Program Files\Avira\AntiVir PersonalEdition Classic\avgnt.exe" /min HKLM_Run: HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\run\OptionalComponents= HKCU_Run: TOSCDSPD=C:\Program Files\TOSHIBA\TOSCDSPD\toscdspd.exe ################## [ Fichiers # Dossiers infectieux ] Found ! C:\RavMon.exe Found ! F:\.\Recycled\Driveinfo.exe Found ! F:\Recycled\Driveinfo.exe Found ! "F:\.\RECYCLER\RECYCLER" Found ! "F:\RECYCLER\RECYCLER" Found ! G:\copy.exe Found ! G:\RavMon.exe ################## [ Registre # Clés Run infectieuses ] ################## [ Registre # Mountpoints2 ] HKCU\...\Explorer\MountPoints2\{f49f5b0e-eb41-11dd-8e6f-000e35dd6911}\Shell\AutoRun\Command ################## [ Informations # Fichier Suspect ] ################## [ Cracks # Keygens # Serials ] # -> Nothing found ! ################## [ ! Fin du rapport # UsbFix V3.027 ! ] Le rapport obtenu avec l'option 2 : ############################## [ UsbFix V3.027 | Cleaning ] # User : Pierrot (Administrateurs) # PIERRE-OLIVIER # Update on 30/05/09 by Chiquitine29, C_XX & Chimay8 # WebSite : http://pagesperso-orange.fr/NosTools/usbfix.html # Start at: 00:44:07 | 02/06/2009 # Intel® Pentium® M processor 1.60GHz # Microsoft Windows XP Édition familiale (5.1.2600 32-bit) # Service Pack 3 # Internet Explorer 8.0.6001.18702 # Windows Firewall Status : Enabled # AV : Avira AntiVir PersonalEdition Classic 8.0.1.30 [ Enabled | Updated ] # C:\ # Disque fixe local # 111,79 Go (8,96 Go free) # NTFS # D:\ # Disque CD-ROM # E:\ # Disque CD-ROM # F:\ # Disque amovible # 116,88 Mo (114,58 Mo free) [PIERROT] # FAT # G:\ # Disque amovible # 3,74 Go (675,78 Mo free) [PECKO] # FAT32 ############################## [ Processus actifs ] C:\WINDOWS\System32\smss.exe C:\WINDOWS\system32\csrss.exe C:\WINDOWS\system32\winlogon.exe C:\WINDOWS\system32\services.exe C:\WINDOWS\system32\lsass.exe C:\WINDOWS\system32\Ati2evxx.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\System32\svchost.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\system32\logonui.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\system32\userinit.exe C:\WINDOWS\Explorer.EXE C:\WINDOWS\system32\spoolsv.exe C:\Program Files\Avira\AntiVir PersonalEdition Classic\sched.exe C:\WINDOWS\system32\svchost.exe C:\Program Files\Avira\AntiVir PersonalEdition Classic\avguard.exe C:\Program Files\TOSHIBA\Power Management\CeEPwrSvc.exe C:\Program Files\TOSHIBA\ConfigFree\CFSvcs.exe C:\WINDOWS\system32\DVDRAMSV.exe C:\Program Files\Java\jre6\bin\jqs.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\system32\wbem\wmiapsrv.exe C:\WINDOWS\system32\wbem\wmiprvse.exe C:\WINDOWS\System32\alg.exe C:\WINDOWS\system32\wbem\wmiprvse.exe ################## [ Fichiers # Dossiers infectieux ] (!) Not Deleted ! C:\RavMon.exe Deleted ! F:\.\Recycled\Driveinfo.exe Deleted ! "F:\.\RECYCLER\RECYCLER" (!) Not Deleted ! G:\copy.exe (!) Not Deleted ! G:\RavMon.exe ################## [ Registre # Clés Run infectieuses ] ################## [ Registre # Mountpoints2 ] Deleted ! HKCU\...\Explorer\MountPoints2\{f49f5b0e-eb41-11dd-8e6f-000e35dd6911}\Shell\AutoRun\Command ################## [ Listing des fichiers présent ] [20/08/2004 09:16|--a------|0] - C:\AUTOEXEC.BAT [03/10/2008 18:36|-rahs----|216] - C:\BOOT.BAK [18/11/2008 18:08|-rahs----|296] - C:\boot.ini [05/08/2004 12:00|-rahs----|4952] - C:\Bootfont.bin [05/08/2004 12:00|-r-hs----|263488] - C:\cmldr [20/08/2004 09:16|--a------|0] - C:\CONFIG.SYS [20/08/2004 09:16|-rahs----|0] - C:\IO.SYS [20/08/2004 09:16|-rahs----|0] - C:\MSDOS.SYS [05/08/2004 12:00|-rahs----|47564] - C:\NTDETECT.COM [06/10/2008 01:46|-rahs----|252240] - C:\ntldr [?|?|?] - C:\pagefile.sys [17/10/2008 17:00|--a------|236] - C:\sqmdata00.sqm [18/11/2008 02:06|--a------|236] - C:\sqmdata01.sqm [18/11/2008 02:08|--a------|236] - C:\sqmdata02.sqm [07/10/2008 22:25|--a------|236] - C:\sqmdata03.sqm [08/10/2008 14:25|--a------|236] - C:\sqmdata04.sqm [09/10/2008 03:02|--a------|236] - C:\sqmdata05.sqm [09/10/2008 06:24|--a------|236] - C:\sqmdata06.sqm [09/10/2008 14:15|--a------|236] - C:\sqmdata07.sqm [09/10/2008 19:23|--a------|236] - C:\sqmdata08.sqm [10/10/2008 02:29|--a------|236] - C:\sqmdata09.sqm [11/10/2008 03:22|--a------|236] - C:\sqmdata10.sqm [12/10/2008 02:21|--a------|236] - C:\sqmdata11.sqm [12/10/2008 16:38|--a------|236] - C:\sqmdata12.sqm [13/10/2008 02:25|--a------|236] - C:\sqmdata13.sqm [13/10/2008 23:05|--a------|236] - C:\sqmdata14.sqm [14/10/2008 17:01|--a------|236] - C:\sqmdata15.sqm [15/10/2008 02:49|--a------|236] - C:\sqmdata16.sqm [15/10/2008 15:19|--a------|236] - C:\sqmdata17.sqm [16/10/2008 04:26|--a------|236] - C:\sqmdata18.sqm [16/10/2008 05:26|--a------|236] - C:\sqmdata19.sqm [17/10/2008 17:00|--a------|200] - C:\sqmnoopt00.sqm [18/11/2008 02:06|--a------|200] - C:\sqmnoopt01.sqm [18/11/2008 02:08|--a------|200] - C:\sqmnoopt02.sqm [07/10/2008 22:25|--a------|200] - C:\sqmnoopt03.sqm [08/10/2008 14:25|--a------|200] - C:\sqmnoopt04.sqm [09/10/2008 03:02|--a------|200] - C:\sqmnoopt05.sqm [09/10/2008 06:24|--a------|200] - C:\sqmnoopt06.sqm [09/10/2008 14:15|--a------|200] - C:\sqmnoopt07.sqm [09/10/2008 19:23|--a------|200] - C:\sqmnoopt08.sqm [10/10/2008 02:29|--a------|200] - C:\sqmnoopt09.sqm [11/10/2008 03:22|--a------|200] - C:\sqmnoopt10.sqm [12/10/2008 02:21|--a------|200] - C:\sqmnoopt11.sqm [12/10/2008 16:38|--a------|200] - C:\sqmnoopt12.sqm [13/10/2008 02:25|--a------|200] - C:\sqmnoopt13.sqm [13/10/2008 23:05|--a------|200] - C:\sqmnoopt14.sqm [14/10/2008 17:01|--a------|200] - C:\sqmnoopt15.sqm [15/10/2008 02:49|--a------|200] - C:\sqmnoopt16.sqm [15/10/2008 15:19|--a------|200] - C:\sqmnoopt17.sqm [16/10/2008 04:26|--a------|200] - C:\sqmnoopt18.sqm [16/10/2008 05:26|--a------|200] - C:\sqmnoopt19.sqm [24/08/2004 08:54|---h-----|127] - C:\SWSTAMP.TXT [02/06/2009 00:45|--a------|5088] - C:\UsbFix.txt [06/11/2004 01:43|--a------|913408] - F:\KeySafe.exe [18/05/2009 16:31|--a------|642632] - F:\hdtune_255.exe [18/05/2009 16:31|--a------|812344] - F:\HJTInstall.exe [23/10/2007 10:45|-ra------|1336632] - G:\LaunchU3.exe [01/11/2007 16:34|--a------|1699840] - G:\RestoreU3.exe [21/04/2009 02:50|--a------|739066444] - G:\Dieudonn‚ - D‚p“t de bilan.avi [21/04/2009 20:07|--a------|744724480] - G:\DIEUDONNE - Le Divorce De Patrick.avi ################## [ Vaccination ] # C:\autorun.inf ( # Not infected ) -> Folder created by UsbFix. # F:\autorun.inf ( # Not infected ) -> Folder created by UsbFix. # G:\autorun.inf ( # Not infected ) -> Folder created by UsbFix. ################## [ Informations # Fichier Suspect ] ################## [ Cracks # Keygens # Serials ] # -> Nothing found ! ################## [ ! Fin du rapport # UsbFix V3.027 ! ] Et enfin le rapport après vaccination : ############################## [ UsbFix V3.027 | Vaccination ] # User : Pierrot (Administrateurs) # PIERRE-OLIVIER # Update on 30/05/09 by Chiquitine29, C_XX & Chimay8 # WebSite : http://pagesperso-orange.fr/NosTools/usbfix.html # Start at: 00:49:23 | 02/06/2009 # Intel® Pentium® M processor 1.60GHz # Microsoft Windows XP Édition familiale (5.1.2600 32-bit) # Service Pack 3 # Internet Explorer 8.0.6001.18702 # Windows Firewall Status : Enabled # AV : Avira AntiVir PersonalEdition Classic 8.0.1.30 [ Enabled | Updated ] # C:\ # Disque fixe local # 111,79 Go (8,97 Go free) # NTFS # D:\ # Disque CD-ROM # E:\ # Disque CD-ROM # F:\ # Disque amovible # 116,88 Mo (114,61 Mo free) [PIERROT] # FAT # G:\ # Disque amovible # 3,74 Go (676,19 Mo free) [PECKO] # FAT32 ################## [ Vaccination ] # C:\autorun.inf ( # Not infected ) -> Folder created by UsbFix. # F:\autorun.inf ( # Not infected ) -> Folder created by UsbFix. # G:\autorun.inf ( # Not infected ) -> Folder created by UsbFix. ################## [ ! Fin du rapport # UsbFix V3.027 ! ] Par contre, pour ce qui est de la partie vaccination, je ne suis pas convaincu que cela ait bien fonctionné. L'opération s'est effectué en même pas 2 secondes... Est-ce normal? En plus, je ne trouve les dossiers dont tu m'as parlé plus haut dans aucun de mes répertoire? :chaps: Donc ça me paraît louche. Dis moi ce que tu en penses. Merci.

Ok je vais faire tout ça plus tard dans la soirée parce que là j'ai pas le temps du tout. Je voulais juste savoir aussi si je n'ai pas besoin d'effacer quoi que ce soit (sur mon DD et ma clé) en rapport avec le vaccin précédent que j'avais installé?

Salut Appolo et merci de ton aide. J'avais vacciné mon PC et ma clé à l'aide de VaccinUSB mais il y a déjà bien longtemps, donc ça m'étonne que MBAM ne me le détecte que maintenant... De plus les fichiers ne sont apparemment plus présents ni dans le C: ni dans le fichier de quarantaine de MBAM (j'ai dû les supprimer directement sans passer par la quarantaine je pense). Qu'est-ce que je dois donc faire? P.S : j'aimerai bien qu'on vérifie ensuite pour mettre un nouveau vaccin sur ma clé USB et mon PC afin que tout cela soit bien à jour.