W32.Myzor.F@yf -- encore lui !!

yannus75 · le 22 octobre 2006

bonjour à tous;

help !!! moi aussi j'ai cette satanée page d'acceuil et le W32.Myzor.F@yf !!!

voici mon rapport HijackThis :

Logfile of HijackThis v1.99.1

Scan saved at 23:02:05, on 22/10/2006

Platform: Windows XP SP1 (WinNT 5.01.2600)

MSIE: Internet Explorer v6.00 SP1 (6.00.2800.1106)

Running processes:

C:\WINDOWS\System32\smss.exe

C:\WINDOWS\system32\winlogon.exe

C:\WINDOWS\system32\services.exe

C:\WINDOWS\system32\lsass.exe

C:\WINDOWS\system32\svchost.exe

C:\WINDOWS\Explorer.EXE

C:\Program Files\Microsoft Office\OFFICE11\WINWORD.EXE

C:\Program Files\Fichiers communs\Ahead\lib\NMBgMonitor.exe

C:\Program Files\HijackThis\HijackThis.exe

R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = localhost

R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens

R3 - URLSearchHook: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - (no file)

O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll

O2 - BHO: (no name) - {202a961f-23ae-42b1-9505-ffe3c818d717} - C:\Program Files\MediaCodec\isaddon.dll

O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll

O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar3.dll

O3 - Toolbar: &Radio - {8E718888-423F-11D2-876E-00A0C9082467} - C:\WINDOWS\System32\msdxm.ocx

O3 - Toolbar: Protection Bar - {479fd0cf-5be9-4c63-8cda-b6d371c67bd5} - C:\Program Files\MediaCodec\iesplugin.dll

O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar3.dll

O4 - HKLM\..\Run: [NVIDIA nTune] "C:\Program Files\NVIDIA Corporation\nTune\\nTune.exe" clear

O4 - HKLM\..\Run: [NeroFilterCheck] C:\WINDOWS\System32\NeroCheck.exe

O4 - HKLM\..\Run: [HPDJ Taskbar Utility] C:\WINDOWS\System32\spool\drivers\w32x86\3\hpztsb08.exe

O4 - HKLM\..\Run: [HP Software Update] C:\Program Files\Hewlett-Packard\HP Software Update\HPWuSchd.exe

O4 - HKLM\..\Run: [DeviceDiscovery] C:\Program Files\Hewlett-Packard\Digital Imaging\bin\hpotdd01.exe

O4 - HKLM\..\Run: [ulead AutoDetector] C:\Program Files\Ulead Systems\Ulead Photo Explorer 8.0 SE Basic2\Monitor.exe

O4 - HKLM\..\Run: [Controleur de calendrier pour Ulead Photo Express] C:\Program Files\Ulead Systems\Ulead Photo Express 5 SE2\calcheck.exe

O4 - HKLM\..\Run: [sunJavaUpdateSched] C:\Program Files\Java\jre1.5.0_06\bin\jusched.exe

O4 - HKLM\..\Run: [WinFastDTV] C:\Program Files\WinFast\WFDTV\DTVSchdl.exe

O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\System32\NvCpl.dll,NvStartup

O4 - HKLM\..\Run: [nwiz] nwiz.exe /install

O4 - HKLM\..\Run: [soundMan] SOUNDMAN.EXE

O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\WINDOWS\System32\NvMcTray.dll,NvTaskbarInit

O4 - HKLM\..\Run: [KAVPersonal50] "C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus Personal\kav.exe" /minimize

O4 - HKLM\..\Run: [Zone Labs Client] "C:\Program Files\Zone Labs\ZoneAlarm\zlclient.exe"

O4 - HKLM\..\Run: [!AVG Anti-Spyware] "C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\avgas.exe" /minimized

O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\ctfmon.exe

O4 - HKCU\..\Run: [bgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}] "C:\Program Files\Fichiers communs\Ahead\lib\NMBgMonitor.exe"

O4 - HKCU\..\Run: [MsnMsgr] "C:\Program Files\MSN Messenger\MsnMsgr.Exe" /background

O4 - HKCU\..\Run: [LDM] C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe

O4 - HKCU\..\Run: [Yahoo! Pager] "C:\PROGRA~1\Yahoo!\MESSEN~1\YAHOOM~1.EXE" -quiet

O4 - HKCU\..\Run: [updateMgr] C:\Program Files\Adobe\Acrobat 7.0\Reader\AdobeUpdateManager.exe AcRdB7_0_5

O4 - HKCU\..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\1.0.720.3640\GoogleToolbarNotifier.exe

O4 - Startup: WlanUtility.lnk = C:\Program Files\MicroStar\WLANUtility\WlanUtility.exe

O4 - Global Startup: Adobe Reader Speed Launch.lnk = C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe

O4 - Global Startup: Logitech Desktop Messenger.lnk = C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LDMConf.exe

O4 - Global Startup: WinZip Quick Pick.lnk = C:\Program Files\WinZip\WZQKPICK.EXE

O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~2\OFFICE11\EXCEL.EXE/3000

O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll

O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll

O9 - Extra button: Recherche - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\OFFICE11\REFIEBAR.DLL

O16 - DPF: Interface Chat Voila - http://chat7.x-echo.com/version6/Applet/vchatsign.cab

O16 - DPF: {09F1ADAC-76D8-4D0F-99A5-5C907DADB988} - http://fr.systemdoctor.com/download/2006/c...eInstall_fr.cab

O16 - DPF: {0EB0E74A-2A76-4AB3-A7FB-9BD8C29F7F75} (CKAVWebScan Object) - http://www.kaspersky.com/kos/eng/partner/d...can_unicode.cab

O16 - DPF: {30528230-99f7-4bb4-88d8-fa1d4f56a2ab} (YInstStarter Class) - C:\Program Files\Yahoo!\Common\yinsthelper.dll

O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) - http://update.microsoft.com/windowsupdate/...b?1139088094418

O16 - DPF: {B38870E4-7ECB-40DA-8C6A-595F0A5519FF} (MsnMessengerSetupDownloadControl Class) - http://messenger.msn.com/download/MsnMesse...pDownloader.cab

O18 - Protocol: bw+0 - {8AB45E66-6631-49CE-B15E-4E1400061CB1} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll

O18 - Protocol: bw+0s - {8AB45E66-6631-49CE-B15E-4E1400061CB1} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll

O18 - Protocol: bw-0 - {8AB45E66-6631-49CE-B15E-4E1400061CB1} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll

O18 - Protocol: bw-0s - {8AB45E66-6631-49CE-B15E-4E1400061CB1} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll

O18 - Protocol: bw00 - {8AB45E66-6631-49CE-B15E-4E1400061CB1} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll

O18 - Protocol: bw00s - {8AB45E66-6631-49CE-B15E-4E1400061CB1} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll

O18 - Protocol: bw10 - {8AB45E66-6631-49CE-B15E-4E1400061CB1} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll

O18 - Protocol: bw10s - {8AB45E66-6631-49CE-B15E-4E1400061CB1} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll

O18 - Protocol: bw20 - {8AB45E66-6631-49CE-B15E-4E1400061CB1} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll

O18 - Protocol: bw20s - {8AB45E66-6631-49CE-B15E-4E1400061CB1} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll

O18 - Protocol: bw30 - {8AB45E66-6631-49CE-B15E-4E1400061CB1} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll

O18 - Protocol: bw30s - {8AB45E66-6631-49CE-B15E-4E1400061CB1} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll

O18 - Protocol: bw40 - {8AB45E66-6631-49CE-B15E-4E1400061CB1} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll

O18 - Protocol: bw40s - {8AB45E66-6631-49CE-B15E-4E1400061CB1} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll

O18 - Protocol: bw50 - {8AB45E66-6631-49CE-B15E-4E1400061CB1} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll

O18 - Protocol: bw50s - {8AB45E66-6631-49CE-B15E-4E1400061CB1} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll

O18 - Protocol: bw60 - {8AB45E66-6631-49CE-B15E-4E1400061CB1} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll

O18 - Protocol: bw60s - {8AB45E66-6631-49CE-B15E-4E1400061CB1} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll

O18 - Protocol: bw70 - {8AB45E66-6631-49CE-B15E-4E1400061CB1} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll

O18 - Protocol: bw70s - {8AB45E66-6631-49CE-B15E-4E1400061CB1} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll

O18 - Protocol: bw80 - {8AB45E66-6631-49CE-B15E-4E1400061CB1} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll

O18 - Protocol: bw80s - {8AB45E66-6631-49CE-B15E-4E1400061CB1} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll

O18 - Protocol: bw90 - {8AB45E66-6631-49CE-B15E-4E1400061CB1} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll

O18 - Protocol: bw90s - {8AB45E66-6631-49CE-B15E-4E1400061CB1} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll

O18 - Protocol: bwa0 - {8AB45E66-6631-49CE-B15E-4E1400061CB1} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll

O18 - Protocol: bwa0s - {8AB45E66-6631-49CE-B15E-4E1400061CB1} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll

O18 - Protocol: bwb0 - {8AB45E66-6631-49CE-B15E-4E1400061CB1} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll

O18 - Protocol: bwb0s - {8AB45E66-6631-49CE-B15E-4E1400061CB1} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll

O18 - Protocol: bwc0 - {8AB45E66-6631-49CE-B15E-4E1400061CB1} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll

O18 - Protocol: bwc0s - {8AB45E66-6631-49CE-B15E-4E1400061CB1} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll

O18 - Protocol: bwd0 - {8AB45E66-6631-49CE-B15E-4E1400061CB1} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll

O18 - Protocol: bwd0s - {8AB45E66-6631-49CE-B15E-4E1400061CB1} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll

O18 - Protocol: bwe0 - {8AB45E66-6631-49CE-B15E-4E1400061CB1} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll

O18 - Protocol: bwe0s - {8AB45E66-6631-49CE-B15E-4E1400061CB1} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll

O18 - Protocol: bwf0 - {8AB45E66-6631-49CE-B15E-4E1400061CB1} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll

O18 - Protocol: bwf0s - {8AB45E66-6631-49CE-B15E-4E1400061CB1} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll

O18 - Protocol: bwfile-8876480 - {9462A756-7B47-47BC-8C80-C34B9B80B32B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\GAPlugProtocol-8876480.dll

O18 - Protocol: bwg0 - {8AB45E66-6631-49CE-B15E-4E1400061CB1} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll

O18 - Protocol: bwg0s - {8AB45E66-6631-49CE-B15E-4E1400061CB1} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll

O18 - Protocol: bwh0 - {8AB45E66-6631-49CE-B15E-4E1400061CB1} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll

O18 - Protocol: bwh0s - {8AB45E66-6631-49CE-B15E-4E1400061CB1} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll

O18 - Protocol: bwi0 - {8AB45E66-6631-49CE-B15E-4E1400061CB1} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll

O18 - Protocol: bwi0s - {8AB45E66-6631-49CE-B15E-4E1400061CB1} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll

O18 - Protocol: bwj0 - {8AB45E66-6631-49CE-B15E-4E1400061CB1} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll

O18 - Protocol: bwj0s - {8AB45E66-6631-49CE-B15E-4E1400061CB1} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll

O18 - Protocol: bwk0 - {8AB45E66-6631-49CE-B15E-4E1400061CB1} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll

O18 - Protocol: bwk0s - {8AB45E66-6631-49CE-B15E-4E1400061CB1} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll

O18 - Protocol: bwl0 - {8AB45E66-6631-49CE-B15E-4E1400061CB1} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll

O18 - Protocol: bwl0s - {8AB45E66-6631-49CE-B15E-4E1400061CB1} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll

O18 - Protocol: bwm0 - {8AB45E66-6631-49CE-B15E-4E1400061CB1} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll

O18 - Protocol: bwm0s - {8AB45E66-6631-49CE-B15E-4E1400061CB1} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll

O18 - Protocol: bwn0 - {8AB45E66-6631-49CE-B15E-4E1400061CB1} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll

O18 - Protocol: bwn0s - {8AB45E66-6631-49CE-B15E-4E1400061CB1} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll

O18 - Protocol: bwo0 - {8AB45E66-6631-49CE-B15E-4E1400061CB1} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll

O18 - Protocol: bwo0s - {8AB45E66-6631-49CE-B15E-4E1400061CB1} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll

O18 - Protocol: bwp0 - {8AB45E66-6631-49CE-B15E-4E1400061CB1} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll

O18 - Protocol: bwp0s - {8AB45E66-6631-49CE-B15E-4E1400061CB1} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll

O18 - Protocol: bwq0 - {8AB45E66-6631-49CE-B15E-4E1400061CB1} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll

O18 - Protocol: bwq0s - {8AB45E66-6631-49CE-B15E-4E1400061CB1} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll

O18 - Protocol: bwr0 - {8AB45E66-6631-49CE-B15E-4E1400061CB1} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll

O18 - Protocol: bwr0s - {8AB45E66-6631-49CE-B15E-4E1400061CB1} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll

O18 - Protocol: bws0 - {8AB45E66-6631-49CE-B15E-4E1400061CB1} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll

O18 - Protocol: bws0s - {8AB45E66-6631-49CE-B15E-4E1400061CB1} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll

O18 - Protocol: bwt0 - {8AB45E66-6631-49CE-B15E-4E1400061CB1} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll

O18 - Protocol: bwt0s - {8AB45E66-6631-49CE-B15E-4E1400061CB1} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll

O18 - Protocol: bwu0 - {8AB45E66-6631-49CE-B15E-4E1400061CB1} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll

O18 - Protocol: bwu0s - {8AB45E66-6631-49CE-B15E-4E1400061CB1} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll

O18 - Protocol: bwv0 - {8AB45E66-6631-49CE-B15E-4E1400061CB1} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll

O18 - Protocol: bwv0s - {8AB45E66-6631-49CE-B15E-4E1400061CB1} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll

O18 - Protocol: bww0 - {8AB45E66-6631-49CE-B15E-4E1400061CB1} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll

O18 - Protocol: bww0s - {8AB45E66-6631-49CE-B15E-4E1400061CB1} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll

O18 - Protocol: bwx0 - {8AB45E66-6631-49CE-B15E-4E1400061CB1} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll

O18 - Protocol: bwx0s - {8AB45E66-6631-49CE-B15E-4E1400061CB1} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll

O18 - Protocol: bwy0 - {8AB45E66-6631-49CE-B15E-4E1400061CB1} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll

O18 - Protocol: bwy0s - {8AB45E66-6631-49CE-B15E-4E1400061CB1} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll

O18 - Protocol: bwz0 - {8AB45E66-6631-49CE-B15E-4E1400061CB1} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll

O18 - Protocol: bwz0s - {8AB45E66-6631-49CE-B15E-4E1400061CB1} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll

O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - "C:\PROGRA~1\MSNMES~1\msgrapp.dll" (file missing)

O18 - Protocol: offline-8876480 - {8AB45E66-6631-49CE-B15E-4E1400061CB1} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll

O21 - SSODL: horologium - {7be183d2-a42d-4915-bf60-ec86fbf002cf} - C:\WINDOWS\System32\httge.dll (file missing)

O23 - Service: AVG Anti-Spyware Guard - Anti-Malware Development a.s. - C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe

O23 - Service: kavsvc - Kaspersky Lab - C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus Personal\kavsvc.exe

O23 - Service: MSI_WLAN_Service - Unknown owner - C:\Program Files\MicroStar\WLANUtility\WLAN_Service.exe

O23 - Service: WinFast® Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\System32\nvsvc32.exe

O23 - Service: Ulead Burning Helper (UleadBurningHelper) - Ulead Systems, Inc. - C:\Program Files\Fichiers communs\Ulead Systems\DVD\ULCDRSvr.exe

O23 - Service: TrueVector Internet Monitor (vsmon) - Zone Labs, LLC - C:\WINDOWS\system32\ZoneLabs\vsmon.exe

et mon scan Kaspersky :

KASPERSKY ONLINE SCANNER REPORT

Sunday, October 22, 2006 10:38:04 PM

Operating System: Microsoft Windows XP Professional, Service Pack 1 (Build 2600)

Kaspersky Online Scanner version: 5.0.83.0

Kaspersky Anti-Virus database last update: 22/10/2006

Kaspersky Anti-Virus database records: 220443

Scan Settings

Scan using the following antivirus database standard

Scan Archives true

Scan Mail Bases true

Scan Target My Computer

A:\

C:\

D:\

E:\

Scan Statistics

Total number of scanned objects 145321

Number of viruses found 3

Number of infected objects 39 / 0

Number of suspicious objects 0

Duration of the scan process 01:11:41

Infected Object Name Virus Name Last Action

C:\Documents and Settings\All Users\Application Data\Microsoft\Dr Watson\user.dmp Object is locked skipped

C:\Documents and Settings\All Users.WINDOWS\Application Data\Kaspersky Anti-Virus Personal\5.0\Backup\BackupMng.i0000 Object is locked skipped

C:\Documents and Settings\All Users.WINDOWS\Application Data\Kaspersky Anti-Virus Personal\5.0\Backup\BackupMng.i0001 Object is locked skipped

C:\Documents and Settings\All Users.WINDOWS\Application Data\Kaspersky Anti-Virus Personal\5.0\Backup\BackupMng.i0100 Object is locked skipped

C:\Documents and Settings\All Users.WINDOWS\Application Data\Kaspersky Anti-Virus Personal\5.0\Backup\BackupMng.i0101 Object is locked skipped

C:\Documents and Settings\All Users.WINDOWS\Application Data\Kaspersky Anti-Virus Personal\5.0\Backup\BackupMng.i0200 Object is locked skipped

C:\Documents and Settings\All Users.WINDOWS\Application Data\Kaspersky Anti-Virus Personal\5.0\Backup\BackupMng.i0201 Object is locked skipped

C:\Documents and Settings\All Users.WINDOWS\Application Data\Kaspersky Anti-Virus Personal\5.0\Backup\BackupMng.i0300 Object is locked skipped

C:\Documents and Settings\All Users.WINDOWS\Application Data\Kaspersky Anti-Virus Personal\5.0\Backup\BackupMng.i0301 Object is locked skipped

C:\Documents and Settings\All Users.WINDOWS\Application Data\Kaspersky Anti-Virus Personal\5.0\Backup\BackupMng.reph Object is locked skipped

C:\Documents and Settings\All Users.WINDOWS\Application Data\Kaspersky Anti-Virus Personal\5.0\Backup\BackupMng.repi Object is locked skipped

C:\Documents and Settings\All Users.WINDOWS\Application Data\Kaspersky Anti-Virus Personal\5.0\Backup\BackupMng.rept Object is locked skipped

C:\Documents and Settings\All Users.WINDOWS\Application Data\Kaspersky Anti-Virus Personal\5.0\Quarantine\QMng.i0000 Object is locked skipped

C:\Documents and Settings\All Users.WINDOWS\Application Data\Kaspersky Anti-Virus Personal\5.0\Quarantine\QMng.i0001 Object is locked skipped

C:\Documents and Settings\All Users.WINDOWS\Application Data\Kaspersky Anti-Virus Personal\5.0\Quarantine\QMng.i0100 Object is locked skipped

C:\Documents and Settings\All Users.WINDOWS\Application Data\Kaspersky Anti-Virus Personal\5.0\Quarantine\QMng.i0101 Object is locked skipped

C:\Documents and Settings\All Users.WINDOWS\Application Data\Kaspersky Anti-Virus Personal\5.0\Quarantine\QMng.i0200 Object is locked skipped

C:\Documents and Settings\All Users.WINDOWS\Application Data\Kaspersky Anti-Virus Personal\5.0\Quarantine\QMng.i0201 Object is locked skipped

C:\Documents and Settings\All Users.WINDOWS\Application Data\Kaspersky Anti-Virus Personal\5.0\Quarantine\QMng.i0300 Object is locked skipped

C:\Documents and Settings\All Users.WINDOWS\Application Data\Kaspersky Anti-Virus Personal\5.0\Quarantine\QMng.i0301 Object is locked skipped

C:\Documents and Settings\All Users.WINDOWS\Application Data\Kaspersky Anti-Virus Personal\5.0\Quarantine\QMng.reph Object is locked skipped

C:\Documents and Settings\All Users.WINDOWS\Application Data\Kaspersky Anti-Virus Personal\5.0\Quarantine\QMng.repi Object is locked skipped

C:\Documents and Settings\All Users.WINDOWS\Application Data\Kaspersky Anti-Virus Personal\5.0\Quarantine\QMng.rept Object is locked skipped

C:\Documents and Settings\All Users.WINDOWS\Application Data\Kaspersky Anti-Virus Personal\5.0\Reports\RptMng.i0000 Object is locked skipped

C:\Documents and Settings\All Users.WINDOWS\Application Data\Kaspersky Anti-Virus Personal\5.0\Reports\RptMng.i0001 Object is locked skipped

C:\Documents and Settings\All Users.WINDOWS\Application Data\Kaspersky Anti-Virus Personal\5.0\Reports\RptMng.i0100 Object is locked skipped

C:\Documents and Settings\All Users.WINDOWS\Application Data\Kaspersky Anti-Virus Personal\5.0\Reports\RptMng.i0101 Object is locked skipped

C:\Documents and Settings\All Users.WINDOWS\Application Data\Kaspersky Anti-Virus Personal\5.0\Reports\RptMng.i0200 Object is locked skipped

C:\Documents and Settings\All Users.WINDOWS\Application Data\Kaspersky Anti-Virus Personal\5.0\Reports\RptMng.i0201 Object is locked skipped

C:\Documents and Settings\All Users.WINDOWS\Application Data\Kaspersky Anti-Virus Personal\5.0\Reports\RptMng.reph Object is locked skipped

C:\Documents and Settings\All Users.WINDOWS\Application Data\Kaspersky Anti-Virus Personal\5.0\Reports\RptMng.repi Object is locked skipped

C:\Documents and Settings\All Users.WINDOWS\Application Data\Kaspersky Anti-Virus Personal\5.0\Reports\RptMng.rept Object is locked skipped

C:\Documents and Settings\All Users.WINDOWS\Application Data\Kaspersky Anti-Virus Personal\5.0\Reports\{9AF1F726-4E39-4904-B856-44C38C6D309A}.i0200 Object is locked skipped

C:\Documents and Settings\All Users.WINDOWS\Application Data\Kaspersky Anti-Virus Personal\5.0\Reports\{9AF1F726-4E39-4904-B856-44C38C6D309A}.reph Object is locked skipped

C:\Documents and Settings\All Users.WINDOWS\Application Data\Kaspersky Anti-Virus Personal\5.0\Reports\{9AF1F726-4E39-4904-B856-44C38C6D309A}.repi Object is locked skipped

C:\Documents and Settings\All Users.WINDOWS\Application Data\Kaspersky Anti-Virus Personal\5.0\Reports\{9AF1F726-4E39-4904-B856-44C38C6D309A}.rept Object is locked skipped

C:\Documents and Settings\All Users.WINDOWS\Application Data\Kaspersky Anti-Virus Personal\5.0\Reports\{F2715511-D570-4305-8DF3-B85120DFC648}.i0200 Object is locked skipped

C:\Documents and Settings\All Users.WINDOWS\Application Data\Kaspersky Anti-Virus Personal\5.0\Reports\{F2715511-D570-4305-8DF3-B85120DFC648}.i0201 Object is locked skipped

C:\Documents and Settings\All Users.WINDOWS\Application Data\Kaspersky Anti-Virus Personal\5.0\Reports\{F2715511-D570-4305-8DF3-B85120DFC648}.reph Object is locked skipped

C:\Documents and Settings\All Users.WINDOWS\Application Data\Kaspersky Anti-Virus Personal\5.0\Reports\{F2715511-D570-4305-8DF3-B85120DFC648}.repi Object is locked skipped

C:\Documents and Settings\All Users.WINDOWS\Application Data\Kaspersky Anti-Virus Personal\5.0\Reports\{F2715511-D570-4305-8DF3-B85120DFC648}.rept Object is locked skipped

C:\Documents and Settings\All Users.WINDOWS\Application Data\Microsoft\Dr Watson\user.dmp Object is locked skipped

C:\Documents and Settings\All Users.WINDOWS\Application Data\Microsoft\Network\Downloader\qmgr0.dat Object is locked skipped

C:\Documents and Settings\All Users.WINDOWS\Application Data\Microsoft\Network\Downloader\qmgr1.dat Object is locked skipped

C:\Documents and Settings\LocalService.AUTORITE NT.000\Cookies\index.dat Object is locked skipped

C:\Documents and Settings\LocalService.AUTORITE NT.000\Local Settings\Application Data\Microsoft\Windows\UsrClass.dat Object is locked skipped

C:\Documents and Settings\LocalService.AUTORITE NT.000\Local Settings\Application Data\Microsoft\Windows\UsrClass.dat.LOG Object is locked skipped

C:\Documents and Settings\LocalService.AUTORITE NT.000\Local Settings\Historique\History.IE5\index.dat Object is locked skipped

C:\Documents and Settings\LocalService.AUTORITE NT.000\Local Settings\Temporary Internet Files\Content.IE5\index.dat Object is locked skipped

C:\Documents and Settings\LocalService.AUTORITE NT.000\NTUSER.DAT Object is locked skipped

C:\Documents and Settings\LocalService.AUTORITE NT.000\ntuser.dat.LOG Object is locked skipped

C:\Documents and Settings\NetworkService.AUTORITE NT.000\Local Settings\Application Data\Microsoft\Windows\UsrClass.dat Object is locked skipped

C:\Documents and Settings\NetworkService.AUTORITE NT.000\Local Settings\Application Data\Microsoft\Windows\UsrClass.dat.LOG Object is locked skipped

C:\Documents and Settings\NetworkService.AUTORITE NT.000\NTUSER.DAT Object is locked skipped

C:\Documents and Settings\NetworkService.AUTORITE NT.000\ntuser.dat.LOG Object is locked skipped

C:\Documents and Settings\Y-Ph\Application Data\Adobe\Acrobat\7.0\AdobeCMapFnt07.lst Object is locked skipped

C:\Documents and Settings\Y-Ph\Application Data\Adobe\Acrobat\7.0\AdobeSysFnt07.lst Object is locked skipped

C:\Documents and Settings\Y-Ph\Application Data\Adobe\Acrobat\7.0\Collab\RSS Object is locked skipped

C:\Documents and Settings\Y-Ph\Application Data\Adobe\Acrobat\7.0\JavaScripts\glob.settings.js Object is locked skipped

C:\Documents and Settings\Y-Ph\Application Data\Adobe\Acrobat\7.0\Updater\udlog.txt Object is locked skipped

C:\Documents and Settings\Y-Ph\Application Data\Adobe\Acrobat\7.0\Updater\udstore.js Object is locked skipped

C:\Documents and Settings\Y-Ph\Application Data\Adobe\Acrobat\7.0\UserCache.bin Object is locked skipped

C:\Documents and Settings\Y-Ph\Application Data\desktop.ini Object is locked skipped

C:\Documents and Settings\Y-Ph\Application Data\Microsoft\HTML Help\hh.dat Object is locked skipped

C:\Documents and Settings\Y-Ph\Application Data\Microsoft\Internet Explorer\brndlog.bak Object is locked skipped

C:\Documents and Settings\Y-Ph\Application Data\Microsoft\Internet Explorer\brndlog.txt Object is locked skipped

C:\Documents and Settings\Y-Ph\Application Data\Microsoft\Internet Explorer\Desktop.htt Object is locked skipped

C:\Documents and Settings\Y-Ph\Application Data\Microsoft\Internet Explorer\Quick Launch\Bureau.scf Object is locked skipped

C:\Documents and Settings\Y-Ph\Application Data\Microsoft\Internet Explorer\Quick Launch\desktop.ini Object is locked skipped

C:\Documents and Settings\Y-Ph\Application Data\Microsoft\Internet Explorer\Quick Launch\Démarrer Internet Explorer.lnk Object is locked skipped

C:\Documents and Settings\Y-Ph\Application Data\Microsoft\Internet Explorer\Quick Launch\Lecteur Windows Media.lnk Object is locked skipped

C:\Documents and Settings\Y-Ph\Application Data\Microsoft\Protect\CREDHIST Object is locked skipped

C:\Documents and Settings\Y-Ph\Application Data\Microsoft\Protect\S-1-5-21-790525478-343818398-725345543-1003\eac65319-bcee-4037-ab05-3bcc2f30e5e0 Object is locked skipped

C:\Documents and Settings\Y-Ph\Application Data\Microsoft\Protect\S-1-5-21-790525478-343818398-725345543-1003\Preferred Object is locked skipped

C:\Documents and Settings\Y-Ph\Application Data\Microsoft\Windows\Themes\Custom.theme Object is locked skipped

C:\Documents and Settings\Y-Ph\Bureau\NVnTune_UG.pdf Object is locked skipped

C:\Documents and Settings\Y-Ph\Cookies\index.dat Object is locked skipped

C:\Documents and Settings\Y-Ph\Favoris\Desktop.ini Object is locked skipped

C:\Documents and Settings\Y-Ph\Favoris\Guide des stations de radio.url Object is locked skipped

C:\Documents and Settings\Y-Ph\Favoris\Liens\Hotmail.url Object is locked skipped

C:\Documents and Settings\Y-Ph\Favoris\Liens\Personnaliser les liens.url Object is locked skipped

C:\Documents and Settings\Y-Ph\Favoris\Liens\Windows Media.url Object is locked skipped

C:\Documents and Settings\Y-Ph\Favoris\Liens\Windows.url Object is locked skipped

C:\Documents and Settings\Y-Ph\Favoris\MSN.com.url Object is locked skipped

C:\Documents and Settings\Y-Ph\Local Settings\Application Data\Adobe\Acrobat\7.0\Cache\AcroFnt07.lst Object is locked skipped

C:\Documents and Settings\Y-Ph\Local Settings\Application Data\Adobe\Color\ACECache4.lst Object is locked skipped

C:\Documents and Settings\Y-Ph\Local Settings\Application Data\IconCache.db Object is locked skipped

C:\Documents and Settings\Y-Ph\Local Settings\Application Data\Microsoft\Internet Explorer\MSIMGSIZ.DAT Object is locked skipped

C:\Documents and Settings\Y-Ph\Local Settings\Application Data\Microsoft\Media Player\CurrentDatabase_59R.wmdb Object is locked skipped

C:\Documents and Settings\Y-Ph\Local Settings\Application Data\Microsoft\Windows\UsrClass.dat Object is locked skipped

C:\Documents and Settings\Y-Ph\Local Settings\Application Data\Microsoft\Windows\UsrClass.dat.LOG Object is locked skipped

C:\Documents and Settings\Y-Ph\Local Settings\Application Data\Microsoft\Windows Media\9.0\WMSDKNS.DTD Object is locked skipped

C:\Documents and Settings\Y-Ph\Local Settings\Application Data\Microsoft\Windows Media\9.0\WMSDKNS.XML Object is locked skipped

C:\Documents and Settings\Y-Ph\Local Settings\desktop.ini Object is locked skipped

C:\Documents and Settings\Y-Ph\Local Settings\Historique\desktop.ini Object is locked skipped

C:\Documents and Settings\Y-Ph\Local Settings\Historique\History.IE5\desktop.ini Object is locked skipped

C:\Documents and Settings\Y-Ph\Local Settings\Historique\History.IE5\index.dat Object is locked skipped

C:\Documents and Settings\Y-Ph\Local Settings\Temp\a006d.mst Object is locked skipped

C:\Documents and Settings\Y-Ph\Local Settings\Temp\DLL_{FEDA56C4-82F3-46DD-8B50-FC592BBE1C0D}.ini Object is locked skipped

C:\Documents and Settings\Y-Ph\Local Settings\Temp\HPZchk000.log Object is locked skipped

C:\Documents and Settings\Y-Ph\Local Settings\Temp\hpzglue00.log Object is locked skipped

C:\Documents and Settings\Y-Ph\Local Settings\Temp\hpzscrub00.log Object is locked skipped

C:\Documents and Settings\Y-Ph\Local Settings\Temp\IEC177.tmp Object is locked skipped

C:\Documents and Settings\Y-Ph\Local Settings\Temp\Microsoft Office 2003 Setup(0001).txt Object is locked skipped

C:\Documents and Settings\Y-Ph\Local Settings\Temp\Microsoft Office 2003 Setup(0001)_Task(0001).txt Object is locked skipped

C:\Documents and Settings\Y-Ph\Local Settings\Temp\Norton Internet Security 1-26-2006 0h5m23s.log Object is locked skipped

C:\Documents and Settings\Y-Ph\Local Settings\Temp\Norton Internet Security 1-28-2006 13h20m10s.log Object is locked skipped

C:\Documents and Settings\Y-Ph\Local Settings\Temp\Norton Internet Security 1-28-2006 13h34m13s.log Object is locked skipped

C:\Documents and Settings\Y-Ph\Local Settings\Temp\Norton Internet Security 1-28-2006 13h39m24s.log Object is locked skipped

C:\Documents and Settings\Y-Ph\Local Settings\Temp\Norton Internet Security 1-28-2006 13h46m14s.log Object is locked skipped

C:\Documents and Settings\Y-Ph\Local Settings\Temp\offcln11.log Object is locked skipped

C:\Documents and Settings\Y-Ph\Local Settings\Temp\PreScan.log Object is locked skipped

C:\Documents and Settings\Y-Ph\Local Settings\Temp\Set1.tmp Object is locked skipped

C:\Documents and Settings\Y-Ph\Local Settings\Temp\SymSetup.ini Object is locked skipped

C:\Documents and Settings\Y-Ph\Local Settings\Temp\~A.tmp Object is locked skipped

C:\Documents and Settings\Y-Ph\Local Settings\Temp\~DFA5C8.tmp Object is locked skipped

C:\Documents and Settings\Y-Ph\Local Settings\Temporary Internet Files\Content.IE5\1SKD76LA\CAFXNVGN.HTM Object is locked skipped

C:\Documents and Settings\Y-Ph\Local Settings\Temporary Internet Files\Content.IE5\1SKD76LA\coUA[1].css Object is locked skipped

C:\Documents and Settings\Y-Ph\Local Settings\Temporary Internet Files\Content.IE5\1SKD76LA\desktop.ini Object is locked skipped

C:\Documents and Settings\Y-Ph\Local Settings\Temporary Internet Files\Content.IE5\1SKD76LA\HHWRAPPER[1].htm Object is locked skipped

C:\Documents and Settings\Y-Ph\Local Settings\Temporary Internet Files\Content.IE5\1SKD76LA\MiniNavBar[1].htm Object is locked skipped

C:\Documents and Settings\Y-Ph\Local Settings\Temporary Internet Files\Content.IE5\1SKD76LA\NavBar[1].htm Object is locked skipped

C:\Documents and Settings\Y-Ph\Local Settings\Temporary Internet Files\Content.IE5\1SKD76LA\note[1].gif Object is locked skipped

C:\Documents and Settings\Y-Ph\Local Settings\Temporary Internet Files\Content.IE5\1SKD76LA\shared[1].css Object is locked skipped

C:\Documents and Settings\Y-Ph\Local Settings\Temporary Internet Files\Content.IE5\1SKD76LA\shared[2].css Object is locked skipped

C:\Documents and Settings\Y-Ph\Local Settings\Temporary Internet Files\Content.IE5\C0XY7VLJ\blank[1].htm Object is locked skipped

C:\Documents and Settings\Y-Ph\Local Settings\Temporary Internet Files\Content.IE5\C0XY7VLJ\Context[1].htm Object is locked skipped

C:\Documents and Settings\Y-Ph\Local Settings\Temporary Internet Files\Content.IE5\C0XY7VLJ\defaultsettings[1].xml Object is locked skipped

C:\Documents and Settings\Y-Ph\Local Settings\Temporary Internet Files\Content.IE5\C0XY7VLJ\desktop.ini Object is locked skipped

C:\Documents and Settings\Y-Ph\Local Settings\Temporary Internet Files\Content.IE5\C0XY7VLJ\reusable[1].xml Object is locked skipped

C:\Documents and Settings\Y-Ph\Local Settings\Temporary Internet Files\Content.IE5\desktop.ini Object is locked skipped

C:\Documents and Settings\Y-Ph\Local Settings\Temporary Internet Files\Content.IE5\DFAC377C\Behaviors[1].css Object is locked skipped

C:\Documents and Settings\Y-Ph\Local Settings\Temporary Internet Files\Content.IE5\DFAC377C\Common[1].js Object is locked skipped

C:\Documents and Settings\Y-Ph\Local Settings\Temporary Internet Files\Content.IE5\DFAC377C\coUAprint[1].css Object is locked skipped

C:\Documents and Settings\Y-Ph\Local Settings\Temporary Internet Files\Content.IE5\DFAC377C\desktop.ini Object is locked skipped

C:\Documents and Settings\Y-Ph\Local Settings\Temporary Internet Files\Content.IE5\DFAC377C\firstpage[1].htm Object is locked skipped

C:\Documents and Settings\Y-Ph\Local Settings\Temporary Internet Files\Content.IE5\DFAC377C\MiniNavBar[1].xml Object is locked skipped

C:\Documents and Settings\Y-Ph\Local Settings\Temporary Internet Files\Content.IE5\DFAC377C\shared[1].css Object is locked skipped

C:\Documents and Settings\Y-Ph\Local Settings\Temporary Internet Files\Content.IE5\DFAC377C\shared[2].css Object is locked skipped

C:\Documents and Settings\Y-Ph\Local Settings\Temporary Internet Files\Content.IE5\DFAC377C\shared[3].css Object is locked skipped

C:\Documents and Settings\Y-Ph\Local Settings\Temporary Internet Files\Content.IE5\DFAC377C\shortcutCold[1].gif Object is locked skipped

C:\Documents and Settings\Y-Ph\Local Settings\Temporary Internet Files\Content.IE5\EBA51NUE\alttext[1].xml Object is locked skipped

C:\Documents and Settings\Y-Ph\Local Settings\Temporary Internet Files\Content.IE5\EBA51NUE\Common[1].js Object is locked skipped

C:\Documents and Settings\Y-Ph\Local Settings\Temporary Internet Files\Content.IE5\EBA51NUE\desktop.ini Object is locked skipped

C:\Documents and Settings\Y-Ph\Local Settings\Temporary Internet Files\Content.IE5\EBA51NUE\NavBar[1].xml Object is locked skipped

C:\Documents and Settings\Y-Ph\Local Settings\Temporary Internet Files\Content.IE5\EBA51NUE\shared[1].css Object is locked skipped

C:\Documents and Settings\Y-Ph\Local Settings\Temporary Internet Files\Content.IE5\EBA51NUE\shared[1].js Object is locked skipped

C:\Documents and Settings\Y-Ph\Local Settings\Temporary Internet Files\Content.IE5\EBA51NUE\shortcutHot[1].gif Object is locked skipped

C:\Documents and Settings\Y-Ph\Local Settings\Temporary Internet Files\Content.IE5\EBA51NUE\Uabrand[1].gif Object is locked skipped

C:\Documents and Settings\Y-Ph\Local Settings\Temporary Internet Files\Content.IE5\index.dat Object is locked skipped

C:\Documents and Settings\Y-Ph\Local Settings\Temporary Internet Files\desktop.ini Object is locked skipped

C:\Documents and Settings\Y-Ph\Menu Démarrer\desktop.ini Object is locked skipped

C:\Documents and Settings\Y-Ph\Menu Démarrer\Programmes\Accessoires\Accessibilité\Clavier visuel.lnk Object is locked skipped

C:\Documents and Settings\Y-Ph\Menu Démarrer\Programmes\Accessoires\Accessibilité\desktop.ini Object is locked skipped

C:\Documents and Settings\Y-Ph\Menu Démarrer\Programmes\Accessoires\Accessibilité\Gestionnaire d'utilitaires.lnk Object is locked skipped

C:\Documents and Settings\Y-Ph\Menu Démarrer\Programmes\Accessoires\Accessibilité\Loupe.lnk Object is locked skipped

C:\Documents and Settings\Y-Ph\Menu Démarrer\Programmes\Accessoires\Assistant Compatibilité des programmes.lnk Object is locked skipped

C:\Documents and Settings\Y-Ph\Menu Démarrer\Programmes\Accessoires\Bloc-notes.lnk Object is locked skipped

C:\Documents and Settings\Y-Ph\Menu Démarrer\Programmes\Accessoires\Carnet d'adresses.lnk Object is locked skipped

C:\Documents and Settings\Y-Ph\Menu Démarrer\Programmes\Accessoires\desktop.ini Object is locked skipped

C:\Documents and Settings\Y-Ph\Menu Démarrer\Programmes\Accessoires\Divertissement\desktop.ini Object is locked skipped

C:\Documents and Settings\Y-Ph\Menu Démarrer\Programmes\Accessoires\Divertissement\Lecteur Windows Media.lnk Object is locked skipped

C:\Documents and Settings\Y-Ph\Menu Démarrer\Programmes\Accessoires\Explorateur Windows.lnk Object is locked skipped

C:\Documents and Settings\Y-Ph\Menu Démarrer\Programmes\Accessoires\Invite de commandes.lnk Object is locked skipped

C:\Documents and Settings\Y-Ph\Menu Démarrer\Programmes\Accessoires\Synchroniser.lnk Object is locked skipped

C:\Documents and Settings\Y-Ph\Menu Démarrer\Programmes\Accessoires\Visite guidée de Windows XP.lnk Object is locked skipped

C:\Documents and Settings\Y-Ph\Menu Démarrer\Programmes\Assistance à distance.lnk Object is locked skipped

C:\Documents and Settings\Y-Ph\Menu Démarrer\Programmes\desktop.ini Object is locked skipped

C:\Documents and Settings\Y-Ph\Menu Démarrer\Programmes\Démarrage\desktop.ini Object is locked skipped

C:\Documents and Settings\Y-Ph\Menu Démarrer\Programmes\Internet Explorer.lnk Object is locked skipped

C:\Documents and Settings\Y-Ph\Menu Démarrer\Programmes\Lecteur Windows Media.lnk Object is locked skipped

C:\Documents and Settings\Y-Ph\Menu Démarrer\Programmes\Outlook Express.lnk Object is locked skipped

C:\Documents and Settings\Y-Ph\Mes documents\desktop.ini Object is locked skipped

C:\Documents and Settings\Y-Ph\Mes documents\Ma musique\Desktop.ini Object is locked skipped

C:\Documents and Settings\Y-Ph\Mes documents\Ma musique\Échantillons de musique.lnk Object is locked skipped

C:\Documents and Settings\Y-Ph\Mes documents\Mes images\Desktop.ini Object is locked skipped

C:\Documents and Settings\Y-Ph\Mes documents\Mes images\Échantillons d'images.lnk Object is locked skipped

C:\Documents and Settings\Y-Ph\Modèles\amipro.sam Object is locked skipped

C:\Documents and Settings\Y-Ph\Modèles\excel.xls Object is locked skipped

C:\Documents and Settings\Y-Ph\Modèles\excel4.xls Object is locked skipped

C:\Documents and Settings\Y-Ph\Modèles\lotus.wk4 Object is locked skipped

C:\Documents and Settings\Y-Ph\Modèles\powerpnt.ppt Object is locked skipped

C:\Documents and Settings\Y-Ph\Modèles\presenta.shw Object is locked skipped

C:\Documents and Settings\Y-Ph\Modèles\quattro.wb2 Object is locked skipped

C:\Documents and Settings\Y-Ph\Modèles\sndrec.wav Object is locked skipped

C:\Documents and Settings\Y-Ph\Modèles\winword.doc Object is locked skipped

C:\Documents and Settings\Y-Ph\Modèles\winword2.doc Object is locked skipped

C:\Documents and Settings\Y-Ph\Modèles\wordpfct.wpd Object is locked skipped

C:\Documents and Settings\Y-Ph\Modèles\wordpfct.wpg Object is locked skipped

C:\Documents and Settings\Y-Ph\NTUSER.DAT Object is locked skipped

C:\Documents and Settings\Y-Ph\ntuser.dat.LOG Object is locked skipped

C:\Documents and Settings\Y-Ph\ntuser.ini Object is locked skipped

C:\Documents and Settings\Y-Ph\Recent\Desktop.ini Object is locked skipped

C:\Documents and Settings\Y-Ph\Recent\Lecteur CD.lnk Object is locked skipped

C:\Documents and Settings\Y-Ph\Recent\NORTON KEY-GENERATORS.lnk Object is locked skipped

C:\Documents and Settings\Y-Ph\Recent\NORTON INTERNET SECURITY 2005 Activation du programme Lisez-.lnk Object is locked skipped

C:\Documents and Settings\Y-Ph\Recent\Norton Keygen Installation Instructions IMPORTANT.lnk Object is locked skipped

C:\Documents and Settings\Y-Ph\Recent\nTune.lnk Object is locked skipped

C:\Documents and Settings\Y-Ph\Recent\NVnTune_UG.lnk Object is locked skipped

C:\Documents and Settings\Y-Ph\SendTo\Bureau (créer un raccourci).DeskLink Object is locked skipped

C:\Documents and Settings\Y-Ph\SendTo\desktop.ini Object is locked skipped

C:\Documents and Settings\Y-Ph\SendTo\Destinataire.MAPIMail Object is locked skipped

C:\Documents and Settings\Y-Ph\SendTo\Dossier compressé.ZFSendToTarget Object is locked skipped

C:\Documents and Settings\Y-Ph\SendTo\Mes documents.mydocs Object is locked skipped

C:\Documents and Settings\Y-Ph\UserData\67INO3M9\oXMLStore[1].xml Object is locked skipped

C:\Documents and Settings\Yann-Philippe\Bureau\Utilitaires\medcodec.exe/stream/data0006 Infected: Trojan-Downloader.Win32.Zlob.aou skipped

C:\Documents and Settings\Yann-Philippe\Bureau\Utilitaires\medcodec.exe/stream Infected: Trojan-Downloader.Win32.Zlob.aou skipped

C:\Documents and Settings\Yann-Philippe\Bureau\Utilitaires\medcodec.exe NSIS: infected - 2 skipped

C:\Documents and Settings\Yann-Philippe\Bureau\Utilitaires\medcodec.exe UPX: infected - 2 skipped

C:\Documents and Settings\Yann-Philippe\Cookies\index.dat Object is locked skipped

C:\Documents and Settings\Yann-Philippe\Local Settings\Application Data\Microsoft\Windows\UsrClass.dat Object is locked skipped

C:\Documents and Settings\Yann-Philippe\Local Settings\Application Data\Microsoft\Windows\UsrClass.dat.LOG Object is locked skipped

C:\Documents and Settings\Yann-Philippe\Local Settings\Historique\History.IE5\index.dat Object is locked skipped

C:\Documents and Settings\Yann-Philippe\Local Settings\Temp\hpotdd000.log Object is locked skipped

C:\Documents and Settings\Yann-Philippe\Local Settings\Temporary Internet Files\Content.IE5\index.dat Object is locked skipped

C:\Documents and Settings\Yann-Philippe\NTUSER.DAT Object is locked skipped

C:\Documents and Settings\Yann-Philippe\ntuser.dat.LOG Object is locked skipped

C:\Program Files\Logitech\Desktop Messenger\8876480\Users\Yann-Philippe\Data\BWDocMap.pht Object is locked skipped

C:\Program Files\Logitech\Desktop Messenger\8876480\Users\Yann-Philippe\Data\BWInfopakMap.pht Object is locked skipped

C:\Program Files\Logitech\Desktop Messenger\8876480\Users\Yann-Philippe\Data\chandir.dat Object is locked skipped

C:\Program Files\Logitech\Desktop Messenger\8876480\Users\Yann-Philippe\Data\chandir.idx Object is locked skipped

C:\Program Files\Logitech\Desktop Messenger\8876480\Users\Yann-Philippe\Data\chn.dat Object is locked skipped

C:\Program Files\Logitech\Desktop Messenger\8876480\Users\Yann-Philippe\Data\chn.idx Object is locked skipped

C:\Program Files\Logitech\Desktop Messenger\8876480\Users\Yann-Philippe\Data\D0000000.FCS Object is locked skipped

C:\Program Files\Logitech\Desktop Messenger\8876480\Users\Yann-Philippe\Data\inuse.txt Object is locked skipped

C:\Program Files\Logitech\Desktop Messenger\8876480\Users\Yann-Philippe\Data\L0000005.FCS Object is locked skipped

C:\Program Files\Logitech\Desktop Messenger\8876480\Users\Yann-Philippe\Data\main.log Object is locked skipped

C:\Program Files\Logitech\Desktop Messenger\8876480\Users\Yann-Philippe\Data\prs.dat Object is locked skipped

C:\Program Files\Logitech\Desktop Messenger\8876480\Users\Yann-Philippe\Data\prs.idx Object is locked skipped

C:\Program Files\Logitech\Desktop Messenger\8876480\Users\Yann-Philippe\Data\prs_die.dat Object is locked skipped

C:\Program Files\Logitech\Desktop Messenger\8876480\Users\Yann-Philippe\Data\prs_die.idx Object is locked skipped

C:\Program Files\Logitech\Desktop Messenger\8876480\Users\Yann-Philippe\Data\prs_dnd.dat Object is locked skipped

C:\Program Files\Logitech\Desktop Messenger\8876480\Users\Yann-Philippe\Data\prs_dnd.idx Object is locked skipped

C:\Program Files\Logitech\Desktop Messenger\8876480\Users\Yann-Philippe\Data\prs_ext.dat Object is locked skipped

C:\Program Files\Logitech\Desktop Messenger\8876480\Users\Yann-Philippe\Data\prs_ext.idx Object is locked skipped

C:\Program Files\Logitech\Desktop Messenger\8876480\Users\Yann-Philippe\Data\prs_rcv.dat Object is locked skipped

C:\Program Files\Logitech\Desktop Messenger\8876480\Users\Yann-Philippe\Data\prs_rcv.idx Object is locked skipped

C:\Program Files\Logitech\Desktop Messenger\8876480\Users\Yann-Philippe\Data\storydb.dat Object is locked skipped

C:\Program Files\Logitech\Desktop Messenger\8876480\Users\Yann-Philippe\Data\storydb.idx Object is locked skipped

C:\Program Files\MediaCodec\iesuninst.exe Infected: Trojan-Downloader.Win32.Zlob.aoy skipped

C:\Program Files\MediaCodec\pmuninst.exe Infected: Trojan-Downloader.Win32.Zlob.aoy skipped

C:\System Volume Information\_restore{62BE731A-0631-48C0-B1A9-FDA2D88A9017}\RP56\A0193488.exe/stream/data0006 Infected: Trojan-Downloader.Win32.Zlob.aou skipped

C:\System Volume Information\_restore{62BE731A-0631-48C0-B1A9-FDA2D88A9017}\RP56\A0193488.exe/stream Infected: Trojan-Downloader.Win32.Zlob.aou skipped

C:\System Volume Information\_restore{62BE731A-0631-48C0-B1A9-FDA2D88A9017}\RP56\A0193488.exe NSIS: infected - 2 skipped

C:\System Volume Information\_restore{62BE731A-0631-48C0-B1A9-FDA2D88A9017}\RP56\A0193488.exe UPX: infected - 2 skipped

C:\System Volume Information\_restore{62BE731A-0631-48C0-B1A9-FDA2D88A9017}\RP56\A0193950.exe Infected: Trojan-Downloader.Win32.Zlob.aoy skipped

C:\System Volume Information\_restore{62BE731A-0631-48C0-B1A9-FDA2D88A9017}\RP56\A0193953.exe Infected: Trojan-Downloader.Win32.Zlob.aoy skipped

C:\System Volume Information\_restore{62BE731A-0631-48C0-B1A9-FDA2D88A9017}\RP56\A0203738.exe Infected: Trojan-Downloader.Win32.Zlob.aoy skipped

C:\System Volume Information\_restore{62BE731A-0631-48C0-B1A9-FDA2D88A9017}\RP56\A0203742.exe Infected: Trojan-Downloader.Win32.Zlob.aoy skipped

C:\System Volume Information\_restore{62BE731A-0631-48C0-B1A9-FDA2D88A9017}\RP56\A0203743.exe Infected: Trojan-Downloader.Win32.Zlob.aoy skipped

C:\System Volume Information\_restore{62BE731A-0631-48C0-B1A9-FDA2D88A9017}\RP57\A0207792.exe Infected: Trojan-Downloader.Win32.Zlob.aoy skipped

C:\System Volume Information\_restore{62BE731A-0631-48C0-B1A9-FDA2D88A9017}\RP57\A0208122.exe Infected: Trojan-Downloader.Win32.Zlob.aoy skipped

C:\System Volume Information\_restore{62BE73

le 23 octobre 2006

Bonjour yannus75, Soit le bienvenue

As tu suivi cette procédure avant de faire ce log Hijackthis ?

http://forum.zebulon.fr/index.php?showtopic=83986

Cela dit dans la mesure ou tu as fait un scan en ligne probablement complété par d'autre scan (AVG présent dans le rapport) on devrait pouvoir s'en passer.

- On va , si tu le veux bien, faire un scan complémentaire

- Télécharge smitfraudfix (S!Ri) http://siri.urz.free.fr/Fix/SmitfraudFix.zip

* Décompresse le sur ton bureau

* lance smitfraudfix.cmd et choisis l'option 1 et Entrée

/!\ ne touches surtout pas aux autres options pour le moment /!\

* Un rapport sera généré sauvegarde le

*Quitte smitfraudfix

Note:

process.exe est détecté par certains antivirus comme étant un virus ce qui bien evidement n'est pas le cas mais un utilitaire destiné à mettre fin à des processus.

- Post ce rapport Smitfraudfix dans ta prochaine réponse

Bonne journée

Modifié le 23 octobre 2006 par Laurent_62

yannus75 · le 23 octobre 2006

Merci pour ta prompte réponse.

Voici le rapport SmitFraudFix :

SmitFraudFix v2.58

Rapport fait à 23:37:16,59, 23/10/2006

Executé à partir de C:\Documents and Settings\Yann-Philippe\Bureau\Utilitaires\SmitfraudFix

OS: Microsoft Windows XP [version 5.1.2600] - Windows_NT

Fix executé en mode normal

»»»»»»»»»»»»»»»»»»»»»»»» C:\

»»»»»»»»»»»»»»»»»»»»»»»» C:\WINDOWS

»»»»»»»»»»»»»»»»»»»»»»»» C:\WINDOWS\system

»»»»»»»»»»»»»»»»»»»»»»»» C:\WINDOWS\Web

»»»»»»»»»»»»»»»»»»»»»»»» C:\WINDOWS\system32

»»»»»»»»»»»»»»»»»»»»»»»» C:\Documents and Settings\Yann-Philippe\Application Data

»»»»»»»»»»»»»»»»»»»»»»»» Menu Démarrer

»»»»»»»»»»»»»»»»»»»»»»»» C:\DOCUME~1\YANN-P~1\Favoris

»»»»»»»»»»»»»»»»»»»»»»»» Bureau

»»»»»»»»»»»»»»»»»»»»»»»» C:\Program Files

»»»»»»»»»»»»»»»»»»»»»»»» Clés corrompues

»»»»»»»»»»»»»»»»»»»»»»»» Eléments du bureau

»»»»»»»»»»»»»»»»»»»»»»»» Sharedtaskscheduler

!!!Attention, les clés qui suivent ne sont pas forcément infectées!!!

SrchSTS.exe by S!Ri

Search SharedTaskScheduler's .dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\SharedTaskScheduler]

"{7be183d2-a42d-4915-bf60-ec86fbf002cf}"="horologium"

[HKEY_CLASSES_ROOT\CLSID\{7be183d2-a42d-4915-bf60-ec86fbf002cf}\InProcServer32]

@="C:\WINDOWS\System32\httge.dll"

[HKEY_LOCAL_MACHINE\Software\Classes\CLSID\{7be183d2-a42d-4915-bf60-ec86fbf002cf}\InProcServer32]

@="C:\WINDOWS\System32\httge.dll"

»»»»»»»»»»»»»»»»»»»»»»»» Recherche infection wininet.dll

»»»»»»»»»»»»»»»»»»»»»»»» Fin

Merci pour ton aide !!

le 24 octobre 2006

Bonjour,

Voici donc ce que l'on va faire, si tu as la moindre question n'hesites pas à la poser

- Télécharge ATF-Cleaner (Attribune) : http://www.atribune.org/ccount/click.php?id=1

-- Met le sur ton bureau

- Télécharge jv16-powertools (Jouni Vuorio) http://telechargement.zebulon.fr/201-jv16-powertools.html

-- Met le sur ton bureau egalement

Un tuto http://www.zebulon.fr/articles/base-de-registre-3.php

- Redémarre ton PC en mode sans échec Impératif !!!

Au démarrage de l'ordinateur "tapotte" la touche F8 ou F5 de ton clavier jusqu'à ce que les options de démarrage apparaissent.

A l'aide des touches de ton clavier descend jusque Mode sans echec puis valide par la touche [entrée]

- Relance smitfraudfix.cmd

Sélectionner 2 pour supprimer les fichiers responsables de l'infection.

A la question Voulez-vous nettoyer le registre ? répondre O (oui) afin de débloquer le fond d'écran

et supprimer les clés de démarrage automatique de l'infection.

Le fix déterminera si le fichier wininet.dll est infecté.

A la question Corriger le fichier infecté ? répondre O (oui) pour remplacer le fichier corrompu.

A la fin du scan, sauvegarder le rapport (Fichier/Enregistrer sous...) sur le Bureau.

N.B.: Cette étape élimine les fichiers infectieux détectés à l'étape #1

Attention : l'option 2 de l'outil supprime le fond d'écran !

Panneaux de configruation >> ajout / suppression de programmes

recherche et désinstalle si présent

MediaCodec

- Relances Hijackthis (do a system scan only)

-- Coche les cases correspondants à ces lignes (si présentes)

O2 - BHO: (no name) - {202a961f-23ae-42b1-9505-ffe3c818d717} - C:\Program Files\MediaCodec\isaddon.dll

O3 - Toolbar: Protection Bar - {479fd0cf-5be9-4c63-8cda-b6d371c67bd5} - C:\Program Files\MediaCodec\iesplugin.dll

O16 - DPF: {09F1ADAC-76D8-4D0F-99A5-5C907DADB988} - http://fr.systemdoctor.com/download/2006/c...eInstall_fr.cab

O21 - SSODL: horologium - {7be183d2-a42d-4915-bf60-ec86fbf002cf} - C:\WINDOWS\System32\httge.dll (file missing)

*Clique sur Fix checked

Quitte Hijackthis

- Recherche et supprime ce dossier

C:\Program Files\MediaCodec

- Recherche et supprime ce fichier

C:\Documents and Settings\Yann-Philippe\Bureau\Utilitaires\medcodec.exe

Lance ATF-Cleaner[/b] :

Sous l'onglet Main, choisis : Select All

Clique sur le bouton Empty Selected

Si tu utilises le navigateur Firefox : Clique Firefox au haut et choisis : Select All

Clique le bouton Empty Selected

NOTE : Si tu veux conserver tes mots de passe sauvegardés, clique No à l'invite.

Si tu utilises le navigateur Opera : Clique Opera au haut et choisis : Select All

Clique le bouton Empty Selected

NOTE : Si tu veux conserver tes mots de passe sauvegardés, clique No à l'invite.

Clique Exit, du menu prinicipal, afin de fermer le programme.

- Lance jv16-powertools

* Clique à gauche sur Preferences ensuite sur Language choisis French(français) clique Ok et Ok

* Cliques sur Outil registre en haut sur Outils - Nettoyeur de registre

* Cliques sur Continuer et Démarrer

* Le scan fini clique en haut sur Sélectionner - Sélection spéciale et Eléments qui peuvent être supprimés sans riques

* Cliques en bas sur Supprimer puis Fermer

* quitte Jv16

- Redémarre en mode normal

- Refais un scan sur Kaspersky afin de voir ou on en est

- Post ce rapport Kapersky ainsi qu'un nouveau log Hijackthis s'il te plait.

Bonne journée

ps: Il restera la restauration systeme à traiter mais nous le ferons à la fin une fois que le problème sera résolu et que tout pourra être considéré comme OK.

Modifié le 24 octobre 2006 par Laurent_62

yannus75 · le 25 octobre 2006

Merci pour ton aide; je n'ai déjà plus la page d'acceuil automatique isecurity !

Voila mon rapport Kaskersky:

-------------------------------------------------------------------------------

KASPERSKY ON-LINE SCANNER REPORT

Thursday, October 26, 2006 1:10:32 AM

Système d'exploitation : Microsoft Windows XP Professional, Service Pack 1 (Build 2600)

Kaspersky On-line Scanner version : 5.0.83.0

Dernière mise à jour de la base antivirus Kaspersky : 25/10/2006

Enregistrements dans la base antivirus Kaspersky : 221522

-------------------------------------------------------------------------------

Paramètres d'analyse:

Analyser avec la base antivirus suivante: standard

Analyser les archives: vrai

Analyser les bases de messagerie: vrai

Cible de l'analyse - Poste de travail:

A:\

C:\

D:\

E:\

Statistiques de l'analyse:

Total d'objets analysés: 129184

Nombre de virus trouvés: 4

Nombre d'objets infectés: 89 / 0

Nombre d'objets suspects: 0

Durée de l'analyse: 01:14:06

Nom de l'objet infecté / Nom du virus / Dernière action

C:\Documents and Settings\All Users\Application Data\Microsoft\Dr Watson\user.dmp L'objet est verrouillé ignoré

C:\Documents and Settings\All Users.WINDOWS\Application Data\Kaspersky Anti-Virus Personal\5.0\Backup\BackupMng.i0000 L'objet est verrouillé ignoré

C:\Documents and Settings\All Users.WINDOWS\Application Data\Kaspersky Anti-Virus Personal\5.0\Backup\BackupMng.i0001 L'objet est verrouillé ignoré

C:\Documents and Settings\All Users.WINDOWS\Application Data\Kaspersky Anti-Virus Personal\5.0\Backup\BackupMng.i0100 L'objet est verrouillé ignoré

C:\Documents and Settings\All Users.WINDOWS\Application Data\Kaspersky Anti-Virus Personal\5.0\Backup\BackupMng.i0101 L'objet est verrouillé ignoré

C:\Documents and Settings\All Users.WINDOWS\Application Data\Kaspersky Anti-Virus Personal\5.0\Backup\BackupMng.i0200 L'objet est verrouillé ignoré

C:\Documents and Settings\All Users.WINDOWS\Application Data\Kaspersky Anti-Virus Personal\5.0\Backup\BackupMng.i0201 L'objet est verrouillé ignoré

C:\Documents and Settings\All Users.WINDOWS\Application Data\Kaspersky Anti-Virus Personal\5.0\Backup\BackupMng.i0300 L'objet est verrouillé ignoré

C:\Documents and Settings\All Users.WINDOWS\Application Data\Kaspersky Anti-Virus Personal\5.0\Backup\BackupMng.i0301 L'objet est verrouillé ignoré

C:\Documents and Settings\All Users.WINDOWS\Application Data\Kaspersky Anti-Virus Personal\5.0\Backup\BackupMng.reph L'objet est verrouillé ignoré

C:\Documents and Settings\All Users.WINDOWS\Application Data\Kaspersky Anti-Virus Personal\5.0\Backup\BackupMng.repi L'objet est verrouillé ignoré

C:\Documents and Settings\All Users.WINDOWS\Application Data\Kaspersky Anti-Virus Personal\5.0\Backup\BackupMng.rept L'objet est verrouillé ignoré

C:\Documents and Settings\All Users.WINDOWS\Application Data\Kaspersky Anti-Virus Personal\5.0\Quarantine\QMng.i0000 L'objet est verrouillé ignoré

C:\Documents and Settings\All Users.WINDOWS\Application Data\Kaspersky Anti-Virus Personal\5.0\Quarantine\QMng.i0001 L'objet est verrouillé ignoré

C:\Documents and Settings\All Users.WINDOWS\Application Data\Kaspersky Anti-Virus Personal\5.0\Quarantine\QMng.i0100 L'objet est verrouillé ignoré

C:\Documents and Settings\All Users.WINDOWS\Application Data\Kaspersky Anti-Virus Personal\5.0\Quarantine\QMng.i0101 L'objet est verrouillé ignoré

C:\Documents and Settings\All Users.WINDOWS\Application Data\Kaspersky Anti-Virus Personal\5.0\Quarantine\QMng.i0200 L'objet est verrouillé ignoré

C:\Documents and Settings\All Users.WINDOWS\Application Data\Kaspersky Anti-Virus Personal\5.0\Quarantine\QMng.i0201 L'objet est verrouillé ignoré

C:\Documents and Settings\All Users.WINDOWS\Application Data\Kaspersky Anti-Virus Personal\5.0\Quarantine\QMng.i0300 L'objet est verrouillé ignoré

C:\Documents and Settings\All Users.WINDOWS\Application Data\Kaspersky Anti-Virus Personal\5.0\Quarantine\QMng.i0301 L'objet est verrouillé ignoré

C:\Documents and Settings\All Users.WINDOWS\Application Data\Kaspersky Anti-Virus Personal\5.0\Quarantine\QMng.reph L'objet est verrouillé ignoré

C:\Documents and Settings\All Users.WINDOWS\Application Data\Kaspersky Anti-Virus Personal\5.0\Quarantine\QMng.repi L'objet est verrouillé ignoré

C:\Documents and Settings\All Users.WINDOWS\Application Data\Kaspersky Anti-Virus Personal\5.0\Quarantine\QMng.rept L'objet est verrouillé ignoré

C:\Documents and Settings\All Users.WINDOWS\Application Data\Kaspersky Anti-Virus Personal\5.0\Reports\RptMng.i0000 L'objet est verrouillé ignoré

C:\Documents and Settings\All Users.WINDOWS\Application Data\Kaspersky Anti-Virus Personal\5.0\Reports\RptMng.i0001 L'objet est verrouillé ignoré

C:\Documents and Settings\All Users.WINDOWS\Application Data\Kaspersky Anti-Virus Personal\5.0\Reports\RptMng.i0100 L'objet est verrouillé ignoré

C:\Documents and Settings\All Users.WINDOWS\Application Data\Kaspersky Anti-Virus Personal\5.0\Reports\RptMng.i0101 L'objet est verrouillé ignoré

C:\Documents and Settings\All Users.WINDOWS\Application Data\Kaspersky Anti-Virus Personal\5.0\Reports\RptMng.i0200 L'objet est verrouillé ignoré

C:\Documents and Settings\All Users.WINDOWS\Application Data\Kaspersky Anti-Virus Personal\5.0\Reports\RptMng.i0201 L'objet est verrouillé ignoré

C:\Documents and Settings\All Users.WINDOWS\Application Data\Kaspersky Anti-Virus Personal\5.0\Reports\RptMng.reph L'objet est verrouillé ignoré

C:\Documents and Settings\All Users.WINDOWS\Application Data\Kaspersky Anti-Virus Personal\5.0\Reports\RptMng.repi L'objet est verrouillé ignoré

C:\Documents and Settings\All Users.WINDOWS\Application Data\Kaspersky Anti-Virus Personal\5.0\Reports\RptMng.rept L'objet est verrouillé ignoré

C:\Documents and Settings\All Users.WINDOWS\Application Data\Microsoft\Dr Watson\user.dmp L'objet est verrouillé ignoré

C:\Documents and Settings\All Users.WINDOWS\Application Data\Microsoft\Network\Downloader\qmgr0.dat L'objet est verrouillé ignoré

C:\Documents and Settings\All Users.WINDOWS\Application Data\Microsoft\Network\Downloader\qmgr1.dat L'objet est verrouillé ignoré

C:\Documents and Settings\LocalService.AUTORITE NT.000\Cookies\index.dat L'objet est verrouillé ignoré

C:\Documents and Settings\LocalService.AUTORITE NT.000\Local Settings\Application Data\Microsoft\Windows\UsrClass.dat L'objet est verrouillé ignoré

C:\Documents and Settings\LocalService.AUTORITE NT.000\Local Settings\Application Data\Microsoft\Windows\UsrClass.dat.LOG L'objet est verrouillé ignoré

C:\Documents and Settings\LocalService.AUTORITE NT.000\Local Settings\Historique\History.IE5\index.dat L'objet est verrouillé ignoré

C:\Documents and Settings\LocalService.AUTORITE NT.000\Local Settings\Temporary Internet Files\Content.IE5\index.dat L'objet est verrouillé ignoré

C:\Documents and Settings\LocalService.AUTORITE NT.000\NTUSER.DAT L'objet est verrouillé ignoré

C:\Documents and Settings\LocalService.AUTORITE NT.000\ntuser.dat.LOG L'objet est verrouillé ignoré

C:\Documents and Settings\NetworkService.AUTORITE NT.000\Local Settings\Application Data\Microsoft\Windows\UsrClass.dat L'objet est verrouillé ignoré

C:\Documents and Settings\NetworkService.AUTORITE NT.000\Local Settings\Application Data\Microsoft\Windows\UsrClass.dat.LOG L'objet est verrouillé ignoré

C:\Documents and Settings\NetworkService.AUTORITE NT.000\NTUSER.DAT L'objet est verrouillé ignoré

C:\Documents and Settings\NetworkService.AUTORITE NT.000\ntuser.dat.LOG L'objet est verrouillé ignoré

C:\Documents and Settings\Y-Ph\Application Data\Adobe\Acrobat\7.0\AdobeCMapFnt07.lst L'objet est verrouillé ignoré

C:\Documents and Settings\Y-Ph\Application Data\Adobe\Acrobat\7.0\AdobeSysFnt07.lst L'objet est verrouillé ignoré

C:\Documents and Settings\Y-Ph\Application Data\Adobe\Acrobat\7.0\Collab\RSS L'objet est verrouillé ignoré

C:\Documents and Settings\Y-Ph\Application Data\Adobe\Acrobat\7.0\JavaScripts\glob.settings.js L'objet est verrouillé ignoré

C:\Documents and Settings\Y-Ph\Application Data\Adobe\Acrobat\7.0\Updater\udlog.txt L'objet est verrouillé ignoré

C:\Documents and Settings\Y-Ph\Application Data\Adobe\Acrobat\7.0\Updater\udstore.js L'objet est verrouillé ignoré

C:\Documents and Settings\Y-Ph\Application Data\Adobe\Acrobat\7.0\UserCache.bin L'objet est verrouillé ignoré

C:\Documents and Settings\Y-Ph\Application Data\desktop.ini L'objet est verrouillé ignoré

C:\Documents and Settings\Y-Ph\Application Data\Microsoft\HTML Help\hh.dat L'objet est verrouillé ignoré

C:\Documents and Settings\Y-Ph\Application Data\Microsoft\Internet Explorer\brndlog.bak L'objet est verrouillé ignoré

C:\Documents and Settings\Y-Ph\Application Data\Microsoft\Internet Explorer\brndlog.txt L'objet est verrouillé ignoré

C:\Documents and Settings\Y-Ph\Application Data\Microsoft\Internet Explorer\Desktop.htt L'objet est verrouillé ignoré

C:\Documents and Settings\Y-Ph\Application Data\Microsoft\Internet Explorer\Quick Launch\Bureau.scf L'objet est verrouillé ignoré

C:\Documents and Settings\Y-Ph\Application Data\Microsoft\Internet Explorer\Quick Launch\desktop.ini L'objet est verrouillé ignoré

C:\Documents and Settings\Y-Ph\Application Data\Microsoft\Internet Explorer\Quick Launch\Démarrer Internet Explorer.lnk L'objet est verrouillé ignoré

C:\Documents and Settings\Y-Ph\Application Data\Microsoft\Internet Explorer\Quick Launch\Lecteur Windows Media.lnk L'objet est verrouillé ignoré

C:\Documents and Settings\Y-Ph\Application Data\Microsoft\Protect\CREDHIST L'objet est verrouillé ignoré

C:\Documents and Settings\Y-Ph\Application Data\Microsoft\Protect\S-1-5-21-790525478-343818398-725345543-1003\eac65319-bcee-4037-ab05-3bcc2f30e5e0 L'objet est verrouillé ignoré

C:\Documents and Settings\Y-Ph\Application Data\Microsoft\Protect\S-1-5-21-790525478-343818398-725345543-1003\Preferred L'objet est verrouillé ignoré

C:\Documents and Settings\Y-Ph\Application Data\Microsoft\Windows\Themes\Custom.theme L'objet est verrouillé ignoré

C:\Documents and Settings\Y-Ph\Bureau\NVnTune_UG.pdf L'objet est verrouillé ignoré

C:\Documents and Settings\Y-Ph\Cookies\index.dat L'objet est verrouillé ignoré

C:\Documents and Settings\Y-Ph\Favoris\Desktop.ini L'objet est verrouillé ignoré

C:\Documents and Settings\Y-Ph\Favoris\Guide des stations de radio.url L'objet est verrouillé ignoré

C:\Documents and Settings\Y-Ph\Favoris\Liens\Hotmail.url L'objet est verrouillé ignoré

C:\Documents and Settings\Y-Ph\Favoris\Liens\Personnaliser les liens.url L'objet est verrouillé ignoré

C:\Documents and Settings\Y-Ph\Favoris\Liens\Windows Media.url L'objet est verrouillé ignoré

C:\Documents and Settings\Y-Ph\Favoris\Liens\Windows.url L'objet est verrouillé ignoré

C:\Documents and Settings\Y-Ph\Favoris\MSN.com.url L'objet est verrouillé ignoré

C:\Documents and Settings\Y-Ph\Local Settings\Application Data\Adobe\Acrobat\7.0\Cache\AcroFnt07.lst L'objet est verrouillé ignoré

C:\Documents and Settings\Y-Ph\Local Settings\Application Data\Adobe\Color\ACECache4.lst L'objet est verrouillé ignoré

C:\Documents and Settings\Y-Ph\Local Settings\Application Data\IconCache.db L'objet est verrouillé ignoré

C:\Documents and Settings\Y-Ph\Local Settings\Application Data\Microsoft\Internet Explorer\MSIMGSIZ.DAT L'objet est verrouillé ignoré

C:\Documents and Settings\Y-Ph\Local Settings\Application Data\Microsoft\Media Player\CurrentDatabase_59R.wmdb L'objet est verrouillé ignoré

C:\Documents and Settings\Y-Ph\Local Settings\Application Data\Microsoft\Windows\UsrClass.dat L'objet est verrouillé ignoré

C:\Documents and Settings\Y-Ph\Local Settings\Application Data\Microsoft\Windows\UsrClass.dat.LOG L'objet est verrouillé ignoré

C:\Documents and Settings\Y-Ph\Local Settings\Application Data\Microsoft\Windows Media\9.0\WMSDKNS.DTD L'objet est verrouillé ignoré

C:\Documents and Settings\Y-Ph\Local Settings\Application Data\Microsoft\Windows Media\9.0\WMSDKNS.XML L'objet est verrouillé ignoré

C:\Documents and Settings\Y-Ph\Local Settings\desktop.ini L'objet est verrouillé ignoré

C:\Documents and Settings\Y-Ph\Local Settings\Historique\desktop.ini L'objet est verrouillé ignoré

C:\Documents and Settings\Y-Ph\Local Settings\Historique\History.IE5\desktop.ini L'objet est verrouillé ignoré

C:\Documents and Settings\Y-Ph\Local Settings\Historique\History.IE5\index.dat L'objet est verrouillé ignoré

C:\Documents and Settings\Y-Ph\Local Settings\Temp\a006d.mst L'objet est verrouillé ignoré

C:\Documents and Settings\Y-Ph\Local Settings\Temp\DLL_{FEDA56C4-82F3-46DD-8B50-FC592BBE1C0D}.ini L'objet est verrouillé ignoré

C:\Documents and Settings\Y-Ph\Local Settings\Temp\HPZchk000.log L'objet est verrouillé ignoré

C:\Documents and Settings\Y-Ph\Local Settings\Temp\hpzglue00.log L'objet est verrouillé ignoré

C:\Documents and Settings\Y-Ph\Local Settings\Temp\hpzscrub00.log L'objet est verrouillé ignoré

C:\Documents and Settings\Y-Ph\Local Settings\Temp\IEC177.tmp L'objet est verrouillé ignoré

C:\Documents and Settings\Y-Ph\Local Settings\Temp\Microsoft Office 2003 Setup(0001).txt L'objet est verrouillé ignoré

C:\Documents and Settings\Y-Ph\Local Settings\Temp\Microsoft Office 2003 Setup(0001)_Task(0001).txt L'objet est verrouillé ignoré

C:\Documents and Settings\Y-Ph\Local Settings\Temp\Norton Internet Security 1-26-2006 0h5m23s.log L'objet est verrouillé ignoré

C:\Documents and Settings\Y-Ph\Local Settings\Temp\Norton Internet Security 1-28-2006 13h20m10s.log L'objet est verrouillé ignoré

C:\Documents and Settings\Y-Ph\Local Settings\Temp\Norton Internet Security 1-28-2006 13h34m13s.log L'objet est verrouillé ignoré

C:\Documents and Settings\Y-Ph\Local Settings\Temp\Norton Internet Security 1-28-2006 13h39m24s.log L'objet est verrouillé ignoré

C:\Documents and Settings\Y-Ph\Local Settings\Temp\Norton Internet Security 1-28-2006 13h46m14s.log L'objet est verrouillé ignoré

C:\Documents and Settings\Y-Ph\Local Settings\Temp\offcln11.log L'objet est verrouillé ignoré

C:\Documents and Settings\Y-Ph\Local Settings\Temp\PreScan.log L'objet est verrouillé ignoré

C:\Documents and Settings\Y-Ph\Local Settings\Temp\Set1.tmp L'objet est verrouillé ignoré

C:\Documents and Settings\Y-Ph\Local Settings\Temp\SymSetup.ini L'objet est verrouillé ignoré

C:\Documents and Settings\Y-Ph\Local Settings\Temp\~A.tmp L'objet est verrouillé ignoré

C:\Documents and Settings\Y-Ph\Local Settings\Temp\~DFA5C8.tmp L'objet est verrouillé ignoré

C:\Documents and Settings\Y-Ph\Local Settings\Temporary Internet Files\Content.IE5\1SKD76LA\CAFXNVGN.HTM L'objet est verrouillé ignoré

C:\Documents and Settings\Y-Ph\Local Settings\Temporary Internet Files\Content.IE5\1SKD76LA\coUA[1].css L'objet est verrouillé ignoré

C:\Documents and Settings\Y-Ph\Local Settings\Temporary Internet Files\Content.IE5\1SKD76LA\desktop.ini L'objet est verrouillé ignoré

C:\Documents and Settings\Y-Ph\Local Settings\Temporary Internet Files\Content.IE5\1SKD76LA\HHWRAPPER[1].htm L'objet est verrouillé ignoré

C:\Documents and Settings\Y-Ph\Local Settings\Temporary Internet Files\Content.IE5\1SKD76LA\MiniNavBar[1].htm L'objet est verrouillé ignoré

C:\Documents and Settings\Y-Ph\Local Settings\Temporary Internet Files\Content.IE5\1SKD76LA\NavBar[1].htm L'objet est verrouillé ignoré

C:\Documents and Settings\Y-Ph\Local Settings\Temporary Internet Files\Content.IE5\1SKD76LA\note[1].gif L'objet est verrouillé ignoré

C:\Documents and Settings\Y-Ph\Local Settings\Temporary Internet Files\Content.IE5\1SKD76LA\shared[1].css L'objet est verrouillé ignoré

C:\Documents and Settings\Y-Ph\Local Settings\Temporary Internet Files\Content.IE5\1SKD76LA\shared[2].css L'objet est verrouillé ignoré

C:\Documents and Settings\Y-Ph\Local Settings\Temporary Internet Files\Content.IE5\C0XY7VLJ\blank[1].htm L'objet est verrouillé ignoré

C:\Documents and Settings\Y-Ph\Local Settings\Temporary Internet Files\Content.IE5\C0XY7VLJ\Context[1].htm L'objet est verrouillé ignoré

C:\Documents and Settings\Y-Ph\Local Settings\Temporary Internet Files\Content.IE5\C0XY7VLJ\defaultsettings[1].xml L'objet est verrouillé ignoré

C:\Documents and Settings\Y-Ph\Local Settings\Temporary Internet Files\Content.IE5\C0XY7VLJ\desktop.ini L'objet est verrouillé ignoré

C:\Documents and Settings\Y-Ph\Local Settings\Temporary Internet Files\Content.IE5\C0XY7VLJ\reusable[1].xml L'objet est verrouillé ignoré

C:\Documents and Settings\Y-Ph\Local Settings\Temporary Internet Files\Content.IE5\desktop.ini L'objet est verrouillé ignoré

C:\Documents and Settings\Y-Ph\Local Settings\Temporary Internet Files\Content.IE5\DFAC377C\Behaviors[1].css L'objet est verrouillé ignoré

C:\Documents and Settings\Y-Ph\Local Settings\Temporary Internet Files\Content.IE5\DFAC377C\Common[1].js L'objet est verrouillé ignoré

C:\Documents and Settings\Y-Ph\Local Settings\Temporary Internet Files\Content.IE5\DFAC377C\coUAprint[1].css L'objet est verrouillé ignoré

C:\Documents and Settings\Y-Ph\Local Settings\Temporary Internet Files\Content.IE5\DFAC377C\desktop.ini L'objet est verrouillé ignoré

C:\Documents and Settings\Y-Ph\Local Settings\Temporary Internet Files\Content.IE5\DFAC377C\firstpage[1].htm L'objet est verrouillé ignoré

C:\Documents and Settings\Y-Ph\Local Settings\Temporary Internet Files\Content.IE5\DFAC377C\MiniNavBar[1].xml L'objet est verrouillé ignoré

C:\Documents and Settings\Y-Ph\Local Settings\Temporary Internet Files\Content.IE5\DFAC377C\shared[1].css L'objet est verrouillé ignoré

C:\Documents and Settings\Y-Ph\Local Settings\Temporary Internet Files\Content.IE5\DFAC377C\shared[2].css L'objet est verrouillé ignoré

C:\Documents and Settings\Y-Ph\Local Settings\Temporary Internet Files\Content.IE5\DFAC377C\shared[3].css L'objet est verrouillé ignoré

C:\Documents and Settings\Y-Ph\Local Settings\Temporary Internet Files\Content.IE5\DFAC377C\shortcutCold[1].gif L'objet est verrouillé ignoré

C:\Documents and Settings\Y-Ph\Local Settings\Temporary Internet Files\Content.IE5\EBA51NUE\alttext[1].xml L'objet est verrouillé ignoré

C:\Documents and Settings\Y-Ph\Local Settings\Temporary Internet Files\Content.IE5\EBA51NUE\Common[1].js L'objet est verrouillé ignoré

C:\Documents and Settings\Y-Ph\Local Settings\Temporary Internet Files\Content.IE5\EBA51NUE\desktop.ini L'objet est verrouillé ignoré

C:\Documents and Settings\Y-Ph\Local Settings\Temporary Internet Files\Content.IE5\EBA51NUE\NavBar[1].xml L'objet est verrouillé ignoré

C:\Documents and Settings\Y-Ph\Local Settings\Temporary Internet Files\Content.IE5\EBA51NUE\shared[1].css L'objet est verrouillé ignoré

C:\Documents and Settings\Y-Ph\Local Settings\Temporary Internet Files\Content.IE5\EBA51NUE\shared[1].js L'objet est verrouillé ignoré

C:\Documents and Settings\Y-Ph\Local Settings\Temporary Internet Files\Content.IE5\EBA51NUE\shortcutHot[1].gif L'objet est verrouillé ignoré

C:\Documents and Settings\Y-Ph\Local Settings\Temporary Internet Files\Content.IE5\EBA51NUE\Uabrand[1].gif L'objet est verrouillé ignoré

C:\Documents and Settings\Y-Ph\Local Settings\Temporary Internet Files\Content.IE5\index.dat L'objet est verrouillé ignoré

C:\Documents and Settings\Y-Ph\Local Settings\Temporary Internet Files\desktop.ini L'objet est verrouillé ignoré

C:\Documents and Settings\Y-Ph\Menu Démarrer\desktop.ini L'objet est verrouillé ignoré

C:\Documents and Settings\Y-Ph\Menu Démarrer\Programmes\Accessoires\Accessibilité\Clavier visuel.lnk L'objet est verrouillé ignoré

C:\Documents and Settings\Y-Ph\Menu Démarrer\Programmes\Accessoires\Accessibilité\desktop.ini L'objet est verrouillé ignoré

C:\Documents and Settings\Y-Ph\Menu Démarrer\Programmes\Accessoires\Accessibilité\Gestionnaire d'utilitaires.lnk L'objet est verrouillé ignoré

C:\Documents and Settings\Y-Ph\Menu Démarrer\Programmes\Accessoires\Accessibilité\Loupe.lnk L'objet est verrouillé ignoré

C:\Documents and Settings\Y-Ph\Menu Démarrer\Programmes\Accessoires\Assistant Compatibilité des programmes.lnk L'objet est verrouillé ignoré

C:\Documents and Settings\Y-Ph\Menu Démarrer\Programmes\Accessoires\Bloc-notes.lnk L'objet est verrouillé ignoré

C:\Documents and Settings\Y-Ph\Menu Démarrer\Programmes\Accessoires\Carnet d'adresses.lnk L'objet est verrouillé ignoré

C:\Documents and Settings\Y-Ph\Menu Démarrer\Programmes\Accessoires\desktop.ini L'objet est verrouillé ignoré

C:\Documents and Settings\Y-Ph\Menu Démarrer\Programmes\Accessoires\Divertissement\desktop.ini L'objet est verrouillé ignoré

C:\Documents and Settings\Y-Ph\Menu Démarrer\Programmes\Accessoires\Divertissement\Lecteur Windows Media.lnk L'objet est verrouillé ignoré

C:\Documents and Settings\Y-Ph\Menu Démarrer\Programmes\Accessoires\Explorateur Windows.lnk L'objet est verrouillé ignoré

C:\Documents and Settings\Y-Ph\Menu Démarrer\Programmes\Accessoires\Invite de commandes.lnk L'objet est verrouillé ignoré

C:\Documents and Settings\Y-Ph\Menu Démarrer\Programmes\Accessoires\Synchroniser.lnk L'objet est verrouillé ignoré

C:\Documents and Settings\Y-Ph\Menu Démarrer\Programmes\Accessoires\Visite guidée de Windows XP.lnk L'objet est verrouillé ignoré

C:\Documents and Settings\Y-Ph\Menu Démarrer\Programmes\Assistance à distance.lnk L'objet est verrouillé ignoré

C:\Documents and Settings\Y-Ph\Menu Démarrer\Programmes\desktop.ini L'objet est verrouillé ignoré

C:\Documents and Settings\Y-Ph\Menu Démarrer\Programmes\Démarrage\desktop.ini L'objet est verrouillé ignoré

C:\Documents and Settings\Y-Ph\Menu Démarrer\Programmes\Internet Explorer.lnk L'objet est verrouillé ignoré

C:\Documents and Settings\Y-Ph\Menu Démarrer\Programmes\Lecteur Windows Media.lnk L'objet est verrouillé ignoré

C:\Documents and Settings\Y-Ph\Menu Démarrer\Programmes\Outlook Express.lnk L'objet est verrouillé ignoré

C:\Documents and Settings\Y-Ph\Mes documents\desktop.ini L'objet est verrouillé ignoré

C:\Documents and Settings\Y-Ph\Mes documents\Ma musique\Desktop.ini L'objet est verrouillé ignoré

C:\Documents and Settings\Y-Ph\Mes documents\Ma musique\Échantillons de musique.lnk L'objet est verrouillé ignoré

C:\Documents and Settings\Y-Ph\Mes documents\Mes images\Desktop.ini L'objet est verrouillé ignoré

C:\Documents and Settings\Y-Ph\Mes documents\Mes images\Échantillons d'images.lnk L'objet est verrouillé ignoré

C:\Documents and Settings\Y-Ph\Modèles\amipro.sam L'objet est verrouillé ignoré

C:\Documents and Settings\Y-Ph\Modèles\excel.xls L'objet est verrouillé ignoré

C:\Documents and Settings\Y-Ph\Modèles\excel4.xls L'objet est verrouillé ignoré

C:\Documents and Settings\Y-Ph\Modèles\lotus.wk4 L'objet est verrouillé ignoré

C:\Documents and Settings\Y-Ph\Modèles\powerpnt.ppt L'objet est verrouillé ignoré

C:\Documents and Settings\Y-Ph\Modèles\presenta.shw L'objet est verrouillé ignoré

C:\Documents and Settings\Y-Ph\Modèles\quattro.wb2 L'objet est verrouillé ignoré

C:\Documents and Settings\Y-Ph\Modèles\sndrec.wav L'objet est verrouillé ignoré

C:\Documents and Settings\Y-Ph\Modèles\winword.doc L'objet est verrouillé ignoré

C:\Documents and Settings\Y-Ph\Modèles\winword2.doc L'objet est verrouillé ignoré

C:\Documents and Settings\Y-Ph\Modèles\wordpfct.wpd L'objet est verrouillé ignoré

C:\Documents and Settings\Y-Ph\Modèles\wordpfct.wpg L'objet est verrouillé ignoré

C:\Documents and Settings\Y-Ph\NTUSER.DAT L'objet est verrouillé ignoré

C:\Documents and Settings\Y-Ph\ntuser.dat.LOG L'objet est verrouillé ignoré

C:\Documents and Settings\Y-Ph\ntuser.ini L'objet est verrouillé ignoré

C:\Documents and Settings\Y-Ph\Recent\Desktop.ini L'objet est verrouillé ignoré

C:\Documents and Settings\Y-Ph\Recent\Lecteur CD.lnk L'objet est verrouillé ignoré

C:\Documents and Settings\Y-Ph\Recent\NORTON KEY-GENERATORS.lnk L'objet est verrouillé ignoré

C:\Documents and Settings\Y-Ph\Recent\NORTON INTERNET SECURITY 2005 Activation du programme Lisez-.lnk L'objet est verrouillé ignoré

C:\Documents and Settings\Y-Ph\Recent\Norton Keygen Installation Instructions IMPORTANT.lnk L'objet est verrouillé ignoré

C:\Documents and Settings\Y-Ph\Recent\nTune.lnk L'objet est verrouillé ignoré

C:\Documents and Settings\Y-Ph\Recent\NVnTune_UG.lnk L'objet est verrouillé ignoré

C:\Documents and Settings\Y-Ph\SendTo\Bureau (créer un raccourci).DeskLink L'objet est verrouillé ignoré

C:\Documents and Settings\Y-Ph\SendTo\desktop.ini L'objet est verrouillé ignoré

C:\Documents and Settings\Y-Ph\SendTo\Destinataire.MAPIMail L'objet est verrouillé ignoré

C:\Documents and Settings\Y-Ph\SendTo\Dossier compressé.ZFSendToTarget L'objet est verrouillé ignoré

C:\Documents and Settings\Y-Ph\SendTo\Mes documents.mydocs L'objet est verrouillé ignoré

C:\Documents and Settings\Y-Ph\UserData\67INO3M9\oXMLStore[1].xml L'objet est verrouillé ignoré

C:\Documents and Settings\Yann-Philippe\Application Data\Microsoft\Modèles\Normal.dot L'objet est verrouillé ignoré

C:\Documents and Settings\Yann-Philippe\Bureau\aide.doc L'objet est verrouillé ignoré

C:\Documents and Settings\Yann-Philippe\Cookies\index.dat L'objet est verrouillé ignoré

C:\Documents and Settings\Yann-Philippe\Local Settings\Application Data\Microsoft\Windows\UsrClass.dat L'objet est verrouillé ignoré

C:\Documents and Settings\Yann-Philippe\Local Settings\Application Data\Microsoft\Windows\UsrClass.dat.LOG L'objet est verrouillé ignoré

C:\Documents and Settings\Yann-Philippe\Local Settings\Historique\History.IE5\index.dat L'objet est verrouillé ignoré

C:\Documents and Settings\Yann-Philippe\Local Settings\Historique\History.IE5\MSHist012006102520061026\index.dat L'objet est verrouillé ignoré

C:\Documents and Settings\Yann-Philippe\Local Settings\Temp\hpotdd001.log L'objet est verrouillé ignoré

C:\Documents and Settings\Yann-Philippe\Local Settings\Temporary Internet Files\Content.IE5\index.dat L'objet est verrouillé ignoré

C:\Documents and Settings\Yann-Philippe\NTUSER.DAT L'objet est verrouillé ignoré

C:\Documents and Settings\Yann-Philippe\ntuser.dat.LOG L'objet est verrouillé ignoré

C:\Program Files\HijackThis\backups\backup-20061024-133132-927.dll Infecté : Trojan-Downloader.Win32.Zlob.arw ignoré

C:\Program Files\Logitech\Desktop Messenger\8876480\Users\Yann-Philippe\Data\BWDocMap.pht L'objet est verrouillé ignoré

C:\Program Files\Logitech\Desktop Messenger\8876480\Users\Yann-Philippe\Data\BWInfopakMap.pht L'objet est verrouillé ignoré

C:\Program Files\Logitech\Desktop Messenger\8876480\Users\Yann-Philippe\Data\chandir.dat L'objet est verrouillé ignoré

C:\Program Files\Logitech\Desktop Messenger\8876480\Users\Yann-Philippe\Data\chandir.idx L'objet est verrouillé ignoré

C:\Program Files\Logitech\Desktop Messenger\8876480\Users\Yann-Philippe\Data\chn.dat L'objet est verrouillé ignoré

C:\Program Files\Logitech\Desktop Messenger\8876480\Users\Yann-Philippe\Data\chn.idx L'objet est verrouillé ignoré

C:\Program Files\Logitech\Desktop Messenger\8876480\Users\Yann-Philippe\Data\D0000000.FCS L'objet est verrouillé ignoré

C:\Program Files\Logitech\Desktop Messenger\8876480\Users\Yann-Philippe\Data\inuse.txt L'objet est verrouillé ignoré

C:\Program Files\Logitech\Desktop Messenger\8876480\Users\Yann-Philippe\Data\L0000005.FCS L'objet est verrouillé ignoré

C:\Program Files\Logitech\Desktop Messenger\8876480\Users\Yann-Philippe\Data\main.log L'objet est verrouillé ignoré

C:\Program Files\Logitech\Desktop Messenger\8876480\Users\Yann-Philippe\Data\prs.dat L'objet est verrouillé ignoré

C:\Program Files\Logitech\Desktop Messenger\8876480\Users\Yann-Philippe\Data\prs.idx L'objet est verrouillé ignoré

C:\Program Files\Logitech\Desktop Messenger\8876480\Users\Yann-Philippe\Data\prs_die.dat L'objet est verrouillé ignoré

C:\Program Files\Logitech\Desktop Messenger\8876480\Users\Yann-Philippe\Data\prs_die.idx L'objet est verrouillé ignoré

C:\Program Files\Logitech\Desktop Messenger\8876480\Users\Yann-Philippe\Data\prs_dnd.dat L'objet est verrouillé ignoré

C:\Program Files\Logitech\Desktop Messenger\8876480\Users\Yann-Philippe\Data\prs_dnd.idx L'objet est verrouillé ignoré

C:\Program Files\Logitech\Desktop Messenger\8876480\Users\Yann-Philippe\Data\prs_ext.dat L'objet est verrouillé ignoré

C:\Program Files\Logitech\Desktop Messenger\8876480\Users\Yann-Philippe\Data\prs_ext.idx L'objet est verrouillé ignoré

C:\Program Files\Logitech\Desktop Messenger\8876480\Users\Yann-Philippe\Data\prs_rcv.dat L'objet est verrouillé ignoré

C:\Program Files\Logitech\Desktop Messenger\8876480\Users\Yann-Philippe\Data\prs_rcv.idx L'objet est verrouillé ignoré

C:\Program Files\Logitech\Desktop Messenger\8876480\Users\Yann-Philippe\Data\storydb.dat L'objet est verrouillé ignoré

C:\Program Files\Logitech\Desktop Messenger\8876480\Users\Yann-Philippe\Data\storydb.idx L'objet est verrouillé ignoré

C:\System Volume Information\_restore{62BE731A-0631-48C0-B1A9-FDA2D88A9017}\RP56\A0191001.dll Infecté : Trojan-Downloader.Win32.Zlob.arw ignoré

C:\System Volume Information\_restore{62BE731A-0631-48C0-B1A9-FDA2D88A9017}\RP56\A0191003.exe Infecté : Trojan-Downloader.Win32.Zlob.arw ignoré

C:\System Volume Information\_restore{62BE731A-0631-48C0-B1A9-FDA2D88A9017}\RP56\A0191104.exe Infecté : Trojan-Downloader.Win32.Zlob.arw ignoré

C:\System Volume Information\_restore{62BE731A-0631-48C0-B1A9-FDA2D88A9017}\RP56\A0193488.exe/stream/data0006 Infecté : Trojan-Downloader.Win32.Zlob.aou ignoré

C:\System Volume Information\_restore{62BE731A-0631-48C0-B1A9-FDA2D88A9017}\RP56\A0193488.exe/stream Infecté : Trojan-Downloader.Win32.Zlob.aou ignoré

C:\System Volume Information\_restore{62BE731A-0631-48C0-B1A9-FDA2D88A9017}\RP56\A0193488.exe NSIS: infecté - 2 ignoré

C:\System Volume Information\_restore{62BE731A-0631-48C0-B1A9-FDA2D88A9017}\RP56\A0193488.exe UPX: infecté - 2 ignoré

C:\System Volume Information\_restore{62BE731A-0631-48C0-B1A9-FDA2D88A9017}\RP56\A0200431.dll Infecté : Trojan-Downloader.Win32.Zlob.arw ignoré

C:\System Volume Information\_restore{62BE731A-0631-48C0-B1A9-FDA2D88A9017}\RP56\A0203739.exe Infecté : Trojan-Downloader.Win32.Zlob.arw ignoré

C:\System Volume Information\_restore{62BE731A-0631-48C0-B1A9-FDA2D88A9017}\RP56\A0203740.exe Infecté : Trojan-Downloader.Win32.Zlob.arw ignoré

C:\System Volume Information\_restore{62BE731A-0631-48C0-B1A9-FDA2D88A9017}\RP57\A0207789.exe Infecté : Trojan-Downloader.Win32.Zlob.arw ignoré

C:\System Volume Information\_restore{62BE731A-0631-48C0-B1A9-FDA2D88A9017}\RP57\A0207792.exe Infecté : Trojan-Downloader.Win32.Zlob.aoy ignoré

C:\System Volume Information\_restore{62BE731A-0631-48C0-B1A9-FDA2D88A9017}\RP57\A0208121.exe Infecté : Trojan-Downloader.Win32.Zlob.arw ignoré

C:\System Volume Information\_restore{62BE731A-0631-48C0-B1A9-FDA2D88A9017}\RP57\A0208240.exe Infecté : Trojan-Downloader.Win32.Zlob.arw ignoré

C:\System Volume Information\_restore{62BE731A-0631-48C0-B1A9-FDA2D88A9017}\RP57\A0208242.dll Infecté : Trojan-Downloader.Win32.Zlob.arw ignoré

C:\System Volume Information\_restore{62BE731A-0631-48C0-B1A9-FDA2D88A9017}\RP57\A0208245.exe Infecté : Trojan-Downloader.Win32.Zlob.arw ignoré

C:\System Volume Information\_restore{62BE731A-0631-48C0-B1A9-FDA2D88A9017}\RP57\A0208251.exe Infecté : Trojan-Downloader.Win32.Zlob.aoy ignoré

C:\System Volume Information\_restore{62BE731A-0631-48C0-B1A9-FDA2D88A9017}\RP57\A0208564.dll Infecté : Trojan-Downloader.Win32.Zlob.arw ignoré

C:\System Volume Information\_restore{62BE731A-0631-48C0-B1A9-FDA2D88A9017}\RP57\A0208565.exe Infecté : Trojan-Downloader.Win32.Zlob.aoy ignoré

C:\System Volume Information\_restore{62BE731A-0631-48C0-B1A9-FDA2D88A9017}\RP57\A0208566.exe Infecté : Trojan-Downloader.Win32.Zlob.arw ignoré

C:\System Volume Information\_restore{62BE731A-0631-48C0-B1A9-FDA2D88A9017}\RP57\A0208940.exe Infecté : Trojan-Downloader.Win32.Zlob.arw ignoré

C:\System Volume Information\_restore{62BE731A-0631-48C0-B1A9-FDA2D88A9017}\RP57\A0209279.exe Infecté : Trojan-Downloader.Win32.Zlob.arw ignoré

C:\System Volume Information\_restore{62BE731A-0631-48C0-B1A9-FDA2D88A9017}\RP57\A0209280.exe Infecté : Trojan-Downloader.Win32.Zlob.aoy ignoré

C:\System Volume Information\_restore{62BE731A-0631-48C0-B1A9-FDA2D88A9017}\RP57\A0209310.dll Infecté : Trojan-Downloader.Win32.Zlob.arw ignoré

C:\System Volume Information\_restore{62BE731A-0631-48C0-B1A9-FDA2D88A9017}\RP57\A0209363.exe Infecté : Trojan-Downloader.Win32.Zlob.arw ignoré

C:\System Volume Information\_restore{62BE731A-0631-48C0-B1A9-FDA2D88A9017}\RP57\A0209586.dll Infecté : Trojan-Downloader.Win32.Zlob.arw ignoré

C:\System Volume Information\_restore{62BE731A-0631-48C0-B1A9-FDA2D88A9017}\RP57\A0209587.exe Infecté : Trojan-Downloader.Win32.Zlob.aoy ignoré

C:\System Volume Information\_restore{62BE731A-0631-48C0-B1A9-FDA2D88A9017}\RP57\A0209591.exe Infecté : Trojan-Downloader.Win32.Zlob.arw ignoré

C:\System Volume Information\_restore{62BE731A-0631-48C0-B1A9-FDA2D88A9017}\RP57\A0209667.exe Infecté : Trojan-Downloader.Win32.Zlob.arw ignoré

C:\System Volume Information\_restore{62BE731A-0631-48C0-B1A9-FDA2D88A9017}\RP57\A0209743.dll Infecté : Trojan-Downloader.Win32.Zlob.arw ignoré

C:\System Volume Information\_restore{62BE731A-0631-48C0-B1A9-FDA2D88A9017}\RP57\A0209744.exe Infecté : Trojan-Downloader.Win32.Zlob.aoy ignoré

C:\System Volume Information\_restore{62BE731A-0631-48C0-B1A9-FDA2D88A9017}\RP57\A0209745.exe Infecté : Trojan-Downloader.Win32.Zlob.arw ignoré

C:\System Volume Information\_restore{62BE731A-0631-48C0-B1A9-FDA2D88A9017}\RP57\A0210404.dll Infecté : Trojan-Downloader.Win32.Zlob.arw ignoré

C:\System Volume Information\_restore{62BE731A-0631-48C0-B1A9-FDA2D88A9017}\RP57\A0210405.exe Infecté : Trojan-Downloader.Win32.Zlob.arw ignoré

C:\System Volume Information\_restore{62BE731A-0631-48C0-B1A9-FDA2D88A9017}\RP57\A0210406.exe Infecté : Trojan-Downloader.Win32.Zlob.aoy ignoré

C:\System Volume Information\_restore{62BE731A-0631-48C0-B1A9-FDA2D88A9017}\RP57\A0210601.exe Infecté : Trojan-Downloader.Win32.Zlob.arw ignoré

C:\System Volume Information\_restore{62BE731A-0631-48C0-B1A9-FDA2D88A9017}\RP58\A0210648.dll Infecté : Trojan-Downloader.Win32.Zlob.arw ignoré

C:\System Volume Information\_restore{62BE731A-0631-48C0-B1A9-FDA2D88A9017}\RP58\A0210649.exe Infecté : Trojan-Downloader.Win32.Zlob.aoy ignoré

C:\System Volume Information\_restore{62BE731A-0631-48C0-B1A9-FDA2D88A9017}\RP58\A0210650.exe Infecté : Trojan-Downloader.Win32.Zlob.arw ignoré

C:\System Volume Information\_restore{62BE731A-0631-48C0-B1A9-FDA2D88A9017}\RP58\A0211041.dll Infecté : Trojan-Downloader.Win32.Zlob.arw ignoré

C:\System Volume Information\_restore{62BE731A-0631-48C0-B1A9-FDA2D88A9017}\RP58\A0211042.exe Infecté : Trojan-Downloader.Win32.Zlob.arw ignoré

C:\System Volume Information\_restore{62BE731A-0631-48C0-B1A9-FDA2D88A9017}\RP58\A0211057.exe Infecté : Trojan-Downloader.Win32.Zlob.aoy ignoré

C:\System Volume Information\_restore{62BE731A-0631-48C0-B1A9-FDA2D88A9017}\RP58\A0211138.exe Infecté : Trojan-Downloader.Win32.Zlob.arw ignoré

C:\System Volume Information\_restore{62BE731A-0631-48C0-B1A9-FDA2D88A9017}\RP58\A0212307.dll Infecté : Trojan-Downloader.Win32.Zlob.arw ignoré

C:\System Volume Information\_restore{62BE731A-0631-48C0-B1A9-FDA2D88A9017}\RP58\A0212308.exe Infecté : Trojan-Downloader.Win32.Zlob.aoy ignoré

C:\System Volume Information\_restore{62BE731A-0631-48C0-B1A9-FDA2D88A9017}\RP58\A0212309.exe Infecté : Trojan-Downloader.Win32.Zlob.arw ignoré

C:\System Volume Information\_restore{62BE731A-0631-48C0-B1A9-FDA2D88A9017}\RP58\A0213308.dll Infecté : Trojan-Downloader.Win32.Zlob.arw ignoré

C:\System Volume Information\_restore{62BE731A-0631-48C0-B1A9-FDA2D88A9017}\RP58\A0213309.exe Infecté : Trojan-Downloader.Win32.Zlob.aoy ignoré

C:\System Volume Information\_restore{62BE731A-0631-48C0-B1A9-FDA2D88A9017}\RP58\A0213310.exe Infecté : Trojan-Downloader.Win32.Zlob.arw ignoré

C:\System Volume Information\_restore{62BE731A-0631-48C0-B1A9-FDA2D88A9017}\RP58\A0213636.exe Infecté : Trojan-Downloader.Win32.Zlob.arw ignoré

C:\System Volume Information\_restore{62BE731A-0631-48C0-B1A9-FDA2D88A9017}\RP58\A0213743.exe/stream/data0006 Infecté : Trojan-Downloader.Win32.Zlob.aou ignoré

C:\System Volume Information\_restore{62BE731A-0631-48C0-B1A9-FDA2D88A9017}\RP58\A0213743.exe/stream Infecté : Trojan-Downloader.Win32.Zlob.aou ignoré

C:\System Volume Information\_restore{62BE731A-0631-48C0-B1A9-FDA2D88A9017}\RP58\A0213743.exe NSIS: infecté - 2 ignoré

C:\System Volume Information\_restore{62BE731A-0631-48C0-B1A9-FDA2D88A9017}\RP58\A0213743.exe UPX: infecté - 2 ignoré

C:\System Volume Information\_restore{62BE731A-0631-48C0-B1A9-FDA2D88A9017}\RP58\A0214782.exe Infecté : Trojan-Downloader.Win32.Zlob.zk ignoré

C:\System Volume Information\_restore{62BE731A-0631-48C0-B1A9-FDA2D88A9017}\RP58\A0215129.dll Infecté : Trojan-Downloader.Win32.Zlob.arw ignoré

C:\System Volume Information\_restore{62BE731A-0631-48C0-B1A9-FDA2D88A9017}\RP58\A0215131.exe Infecté : Trojan-Downloader.Win32.Zlob.arw ignoré

C:\System Volume Information\_restore{62BE731A-0631-48C0-B1A9-FDA2D88A9017}\RP58\A0215282.exe Infecté : Trojan-Downloader.Win32.Zlob.arw ignoré

C:\System Volume Information\_restore{62BE731A-0631-48C0-B1A9-FDA2D88A9017}\RP59\A0215548.exe Infecté : Trojan-Downloader.Win32.Zlob.arw ignoré

C:\System Volume Information\_restore{62BE731A-0631-48C0-B1A9-FDA2D88A9017}\RP59\A0215550.dll Infecté : Trojan-Downloader.Win32.Zlob.arw ignoré

C:\System Volume Information\_restore{62BE731A-0631-48C0-B1A9-FDA2D88A9017}\RP59\A0215554.exe Infecté : Trojan-Downloader.Win32.Zlob.arw ignoré

C:\System Volume Information\_restore{62BE731A-0631-48C0-B1A9-FDA2D88A9017}\RP59\A0216123.exe Infecté : Trojan-Downloader.Win32.Zlob.arw ignoré

C:\System Volume Information\_restore{62BE731A-0631-48C0-B1A9-FDA2D88A9017}\RP59\A0216125.dll Infecté : Trojan-Downloader.Win32.Zlob.arw ignoré

C:\System Volume Information\_restore{62BE731A-0631-48C0-B1A9-FDA2D88A9017}\RP59\A0216128.exe Infecté : Trojan-Downloader.Win32.Zlob.arw ignoré

C:\System Volume Information\_restore{62BE731A-0631-48C0-B1A9-FDA2D88A9017}\RP59\A0216255.dll Infecté : Trojan-Downloader.Win32.Zlob.arw ignoré

C:\System Volume Information\_restore{62BE731A-0631-48C0-B1A9-FDA2D88A9017}\RP59\A0216256.exe Infecté : Trojan-Downloader.Win32.Zlob.arw ignoré

C:\System Volume Information\_restore{62BE731A-0631-48C0-B1A9-FDA2D88A9017}\RP59\A0216527.exe Infecté : Trojan-Downloader.Win32.Zlob.arw ignoré

C:\System Volume Information\_restore{62BE731A-0631-48C0-B1A9-FDA2D88A9017}\RP59\A0216669.dll Infecté : Trojan-Downloader.Win32.Zlob.arw ignoré

C:\System Volume Information\_restore{62BE731A-0631-48C0-B1A9-FDA2D88A9017}\RP59\A0216670.exe Infecté : Trojan-Downloader.Win32.Zlob.arw ignoré

C:\System Volume Information\_restore{62BE731A-0631-48C0-B1A9-FDA2D88A9017}\RP59\A0217029.exe Infecté : Trojan-Downloader.Win32.Zlob.arw ignoré

C:\System Volume Information\_restore{62BE731A-0631-48C0-B1A9-FDA2D88A9017}\RP59\A0217458.dll Infecté : Trojan-Downloader.Win32.Zlob.arw ignoré

C:\System Volume Information\_restore{62BE731A-0631-48C0-B1A9-FDA2D88A9017}\RP59\A0217459.exe Infecté : Trojan-Downloader.Win32.Zlob.arw ignoré

C:\System Volume Information\_restore{62BE731A-0631-48C0-B1A9-FDA2D88A9017}\RP59\A0217581.dll Infecté : Trojan-Downloader.Win32.Zlob.arw ignoré

C:\System Volume Information\_restore{62BE731A-0631-48C0-B1A9-FDA2D88A9017}\RP59\A0217582.exe Infecté : Trojan-Downloader.Win32.Zlob.arw ignoré

C:\System Volume Information\_restore{62BE731A-0631-48C0-B1A9-FDA2D88A9017}\RP59\A0217765.exe Infecté : Trojan-Downloader.Win32.Zlob.arw ignoré

C:\System Volume Information\_restore{62BE731A-0631-48C0-B1A9-FDA2D88A9017}\RP59\A0218353.exe Infecté : Trojan-Downloader.Win32.Zlob.arw ignoré

C:\System Volume Information\_restore{62BE731A-0631-48C0-B1A9-FDA2D88A9017}\RP59\A0218355.dll Infecté : Trojan-Downloader.Win32.Zlob.arw ignoré

C:\System Volume Information\_restore{62BE731A-0631-48C0-B1A9-FDA2D88A9017}\RP59\A0218359.exe Infecté : Trojan-Downloader.Win32.Zlob.arw ignoré

C:\System Volume Information\_restore{62BE731A-0631-48C0-B1A9-FDA2D88A9017}\RP59\A0218520.exe Infecté : Trojan-Downloader.Win32.Zlob.arw ignoré

C:\System Volume Information\_restore{62BE731A-0631-48C0-B1A9-FDA2D88A9017}\RP59\A0218522.dll Infecté : Trojan-Downloader.Win32.Zlob.arw ignoré

C:\System Volume Information\_restore{62BE731A-0631-48C0-B1A9-FDA2D88A9017}\RP59\A0218526.exe Infecté : Trojan-Downloader.Win32.Zlob.arw ignoré

C:\System Volume Information\_restore{62BE731A-0631-48C0-B1A9-FDA2D88A9017}\RP59\A0219761.dll Infecté : Trojan-Downloader.Win32.Zlob.arw ignoré

C:\System Volume Information\_restore{62BE731A-0631-48C0-B1A9-FDA2D88A9017}\RP59\A0219762.exe/stream/data0006 Infecté : Trojan-Downloader.Win32.Zlob.aou ignoré

C:\System Volume Information\_restore{62BE731A-0631-48C0-B1A9-FDA2D88A9017}\RP59\A0219762.exe/stream Infecté : Trojan-Downloader.Win32.Zlob.aou ignoré

C:\System Volume Information\_restore{62BE731A-0631-48C0-B1A9-FDA2D88A9017}\RP59\A0219762.exe NSIS: infecté - 2 ignoré

C:\System Volume Information\_restore{62BE731A-0631-48C0-B1A9-FDA2D88A9017}\RP59\A0219762.exe UPX: infecté - 2 ignoré

C:\System Volume Information\_restore{62BE731A-0631-48C0-B1A9-FDA2D88A9017}\RP59\A0219766.exe Infecté : Trojan-Downloader.Win32.Zlob.arw ignoré

C:\System Volume Information\_restore{62BE731A-0631-48C0-B1A9-FDA2D88A9017}\RP59\A0219767.exe Infecté : Trojan-Downloader.Win32.Zlob.arw ignoré

C:\WINDOWS\Debug\oakley.log L'objet est verrouillé ignoré

C:\WINDOWS\Debug\PASSWD.LOG L'objet est verrouillé ignoré

C:\WINDOWS\Internet Logs\fwdbglog.txt L'objet est verrouillé ignoré

C:\WINDOWS\Internet Logs\fwpktlog.txt L'objet est verrouillé ignoré

C:\WINDOWS\Internet Logs\IAMDB.RDB L'objet est verrouillé ignoré

C:\WINDOWS\Internet Logs\tvDebug.log L'objet est verrouillé ignoré

C:\WINDOWS\Internet Logs\YANN-KHJB7GQSXV.ldb L'objet est verrouillé ignoré

C:\WINDOWS\SchedLgU.Txt L'objet est verrouillé ignoré

C:\WINDOWS\Sti_Trace.log L'objet est verrouillé ignoré

C:\WINDOWS\system32\config\AppEvent.Evt L'objet est verrouillé ignoré

C:\WINDOWS\system32\config\default L'objet est verrouillé ignoré

C:\WINDOWS\system32\config\default.LOG L'objet est verrouillé ignoré

C:\WINDOWS\system32\config\SAM L'objet est verrouillé ignoré

C:\WINDOWS\system32\config\SAM.LOG L'objet est verrouillé ignoré

C:\WINDOWS\system32\config\SecEvent.Evt L'objet est verrouillé ignoré

C:\WINDOWS\system32\config\SECURITY L'objet est verrouillé ignoré

C:\WINDOWS\system32\config\SECURITY.LOG L'objet est verrouillé ignoré

C:\WINDOWS\system32\config\software L'objet est verrouillé ignoré

C:\WINDOWS\system32\config\software.LOG L'objet est verrouillé ignoré

C:\WINDOWS\system32\config\SysEvent.Evt L'objet est verrouillé ignoré

C:\WINDOWS\system32\config\system L'objet est verrouillé ignoré

C:\WINDOWS\system32\config\system.LOG L'objet est verrouillé ignoré

C:\WINDOWS\system32\h323log.txt L'objet est verrouillé ignoré

C:\WINDOWS\system32\wbem\Repository\FS\INDEX.BTR L'objet est verrouillé ignoré

C:\WINDOWS\system32\wbem\Repository\FS\OBJECTS.DATA L'objet est verrouillé ignoré

C:\WINDOWS\Temp\ZLT01eaf.TMP L'objet est verrouillé ignoré

C:\WINDOWS\Temp\ZLT01eb9.TMP L'objet est verrouillé ignoré

C:\WINDOWS\wiadebug.log L'objet est verrouillé ignoré

C:\WINDOWS\wiaservc.log L'objet est verrouillé ignoré

Analyse terminée.

et mon hijackthis :

Logfile of HijackThis v1.99.1

Scan saved at 01:11:14, on 26/10/2006

Platform: Windows XP SP1 (WinNT 5.01.2600)

MSIE: Internet Explorer v6.00 SP1 (6.00.2800.1106)

Running processes:

C:\WINDOWS\System32\smss.exe

C:\WINDOWS\system32\winlogon.exe

C:\WINDOWS\system32\services.exe

C:\WINDOWS\system32\lsass.exe

C:\WINDOWS\system32\svchost.exe

C:\WINDOWS\System32\svchost.exe

C:\WINDOWS\system32\spoolsv.exe

C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe

C:\Program Files\Fichiers communs\Microsoft Shared\VS7DEBUG\MDM.EXE

C:\WINDOWS\System32\nvsvc32.exe

C:\WINDOWS\System32\svchost.exe

C:\Program Files\Fichiers communs\Ulead Systems\DVD\ULCDRSvr.exe

C:\WINDOWS\system32\ZoneLabs\vsmon.exe

C:\WINDOWS\Explorer.EXE

C:\WINDOWS\System32\spool\drivers\w32x86\3\hpztsb08.exe

C:\Program Files\Hewlett-Packard\HP Software Update\HPWuSchd.exe

C:\Program Files\Hewlett-Packard\Digital Imaging\bin\hpotdd01.exe

C:\Program Files\Ulead Systems\Ulead Photo Explorer 8.0 SE Basic2\Monitor.exe

C:\Program Files\Ulead Systems\Ulead Photo Express 5 SE2\calcheck.exe

C:\Program Files\Java\jre1.5.0_06\bin\jusched.exe

C:\Program Files\WinFast\WFDTV\DTVSchdl.exe

C:\WINDOWS\System32\rundll32.exe

C:\WINDOWS\SOUNDMAN.EXE

C:\WINDOWS\System32\RUNDLL32.EXE

C:\Program Files\Zone Labs\ZoneAlarm\zlclient.exe

C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\avgas.exe

C:\WINDOWS\System32\ctfmon.exe

C:\Program Files\Fichiers communs\Ahead\lib\NMBgMonitor.exe

C:\Program Files\MSN Messenger\MsnMsgr.Exe

C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe

C:\PROGRA~1\Yahoo!\MESSEN~1\ymsgr_tray.exe

C:\Program Files\WinZip\WZQKPICK.EXE

C:\Program Files\MicroStar\WLANUtility\WlanUtility.exe

C:\Program Files\MicroStar\WLANUtility\WLAN_Service.exe

C:\Program Files\Internet Explorer\IEXPLORE.EXE

C:\Program Files\Google\GoogleToolbarNotifier\1.2.908.5008\GoogleToolbarNotifier.exe

C:\Program Files\Internet Explorer\IEXPLORE.EXE

C:\Program Files\HijackThis\HijackThis.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.google.fr/