Sujet Précédent Sujet Suivant

Rapport navilog1

Fermé
clm14 Messages postés 13 Date d'inscription lundi 14 décembre 2009 Statut Membre Dernière intervention 15 décembre 2009 - 14 déc. 2009 à 20:22
moment de grace Messages postés 29042 Date d'inscription samedi 6 décembre 2008 Statut Contributeur sécurité Dernière intervention 18 juillet 2013 - 15 déc. 2009 à 20:46
Bonjour, voila j'ai fais le tour du forum pour mon problème avec les fenêtres pop-up ! donc j'ai télécharger navilog1 et j'ai fais la première étape ! Donc je voulais savoir si je pouvais poster mon rapport et si quelqu'un pouvais m'aider^a le décoder ! merci d'avance :)

25 réponses

  • 1
  • 2
Réponse 1 / 25
clm14 Messages postés 13 Date d'inscription lundi 14 décembre 2009 Statut Membre Dernière intervention 15 décembre 2009 1
15 déc. 2009 à 00:32
Rapport Malwarebytes' :

Malwarebytes' Anti-Malware 1.42
Version de la base de données: 3360
Windows 5.1.2600 Service Pack 3
Internet Explorer 7.0.5730.13

15/12/2009 00:25:29
mbam-log-2009-12-15 (00-25-29).txt

Type de recherche: Examen complet (C:\|)
Eléments examinés: 183325
Temps écoulé: 58 minute(s), 45 second(s)

Processus mémoire infecté(s): 0
Module(s) mémoire infecté(s): 13
Clé(s) du Registre infectée(s): 54
Valeur(s) du Registre infectée(s): 5
Elément(s) de données du Registre infecté(s): 0
Dossier(s) infecté(s): 44
Fichier(s) infecté(s): 449

Processus mémoire infecté(s):
(Aucun élément nuisible détecté)

Module(s) mémoire infecté(s):
C:\Program Files\Content Management Wizard\1.1.0.1820\CMWIE.dll (Adware.Agent) -> Delete on reboot.
C:\Program Files\Customized Platform Advancer\3.1.0.1540\CPAIEAddOn.dll (Adware.Agent) -> Delete on reboot.
C:\Program Files\Web Search Operator\3.1.0.1800\WSO.dll (Adware.Agent) -> Delete on reboot.
C:\Program Files\Textual Content Provider\1.1.0.1380\TCPIE.dll (Adware.Agent) -> Delete on reboot.
C:\Program Files\Automated Content Enhancer\4.1.0.5050\ACEIEAddOn.dll (Adware.Agent) -> Delete on reboot.
C:\Program Files\Web Search Operator\3.1.0.1800\WSOCommon.dll (Adware.Agent) -> Delete on reboot.
C:\Program Files\Web Search Operator\3.1.0.1800\FF\components\WSOFFAddOn.dll (Adware.Agent) -> Delete on reboot.
C:\Program Files\Automated Content Enhancer\4.1.0.5050\ACECommon.dll (Adware.Agent) -> Delete on reboot.
C:\Program Files\Automated Content Enhancer\4.1.0.5050\ACEIEAddOnSubL.dll (Adware.Agent) -> Delete on reboot.
C:\Program Files\Automated Content Enhancer\4.1.0.5050\FF\components\ACEFFAddOn.dll (Adware.Agent) -> Delete on reboot.
C:\Program Files\Customized Platform Advancer\3.1.0.1540\CPACommon.dll (Adware.Agent) -> Delete on reboot.
C:\Program Files\Customized Platform Advancer\3.1.0.1540\CPAIEAddOnSubL.dll (Adware.Agent) -> Delete on reboot.
C:\Program Files\Customized Platform Advancer\3.1.0.1540\FF\components\CPAFFAddOn.dll (Adware.Agent) -> Delete on reboot.

Clé(s) du Registre infectée(s):
HKEY_CLASSES_ROOT\explorerbar.cmw (Adware.Agent) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\TypeLib\{f5b8c69c-9b45-4a6a-9380-df225c546ae7} (Adware.Agent) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\Interface\{629cd6c2-e4c5-4554-aeb8-12e4e2cd40ff} (Adware.Agent) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{b72681c0-a222-4b21-a0e2-53a5a5ca3d41} (Adware.Agent) -> Quarantined and deleted successfully.
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{b72681c0-a222-4b21-a0e2-53a5a5ca3d41} (Adware.Agent) -> Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{b72681c0-a222-4b21-a0e2-53a5a5ca3d41} (Adware.Agent) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\explorerbar.cmw.1 (Adware.Agent) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\explorerbar.funexplorer (Adware.Agent) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\TypeLib\{ac5ab953-ed25-4f9c-87f0-b086b0178ffa} (Adware.Agent) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\Interface\{6160f76a-1992-4b17-a32d-0c706d159105} (Adware.Agent) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{42c7c39f-3128-4a17-bdb7-91c46032b5b9} (Adware.Agent) -> Quarantined and deleted successfully.
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{42c7c39f-3128-4a17-bdb7-91c46032b5b9} (Adware.Agent) -> Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{42c7c39f-3128-4a17-bdb7-91c46032b5b9} (Adware.Agent) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\explorerbar.funexplorer.1 (Adware.Agent) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\explorerbar.funredirector (Adware.Agent) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\TypeLib\{883dfc00-8a21-411d-956c-73a4e4b7d16f} (Adware.Agent) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\Interface\{480098c6-f6ad-4c61-9b5c-2bae228a34d1} (Adware.Agent) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{eb4a577d-bcad-4b1c-8af2-9a74b8dd3431} (Adware.Agent) -> Quarantined and deleted successfully.
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{eb4a577d-bcad-4b1c-8af2-9a74b8dd3431} (Adware.Agent) -> Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{eb4a577d-bcad-4b1c-8af2-9a74b8dd3431} (Adware.Agent) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\explorerbar.funredirector.1 (Adware.Agent) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\explorerbar.tcp (Adware.Agent) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\TypeLib\{2a743834-05f4-4ed4-8a1c-41332b10ac0c} (Adware.Agent) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\Interface\{1081d532-7de4-40bd-b912-388fa6b27c78} (Adware.Agent) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{cac89ff9-34a9-4431-8cfe-292a47f843bc} (Adware.Agent) -> Quarantined and deleted successfully.
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Explorer\Bars\{cac89ff9-34a9-4431-8cfe-292a47f843bc} (Adware.Agent) -> Quarantined and deleted successfully.
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{cac89ff9-34a9-4431-8cfe-292a47f843bc} (Adware.Agent) -> Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{cac89ff9-34a9-4431-8cfe-292a47f843bc} (Adware.Agent) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\explorerbar.tcp.1 (Adware.Agent) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{1d74e9dd-8987-448b-b2cb-67fff2b8a932} (Adware.Agent) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\TypeLib\{565dd573-549e-4da9-8cd7-6ae3df25339a} (Adware.Agent) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\Interface\{877f3eab-4462-44df-8475-6064eafd7fbf} (Adware.Agent) -> Quarantined and deleted successfully.
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{1d74e9dd-8987-448b-b2cb-67fff2b8a932} (Adware.Agent) -> Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{1d74e9dd-8987-448b-b2cb-67fff2b8a932} (Adware.Agent) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{3de88beb-f271-484a-ba71-01d30f439f0c} (Adware.DoubleD) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{50ad41d2-b1f0-47cc-9ea7-395355eaeebd} (Adware.DoubleD) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{8ceb185e-81a5-46d3-bc20-c555d605afbd} (Adware.DoubleD) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{a72522ba-9ff3-4c83-abc6-9b476728a396} (Adware.DoubleD) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{c5762628-ae15-4ca6-96c4-b00dd17f3419} (Adware.DoubleD) -> Quarantined and deleted successfully.
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Explorer\Bars\{b72681c0-a222-4b21-a0e2-53a5a5ca3d411} (Adware.DoubleD) -> Quarantined and deleted successfully.
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{d45817b8-3ead-4d1d-8fca-ec63a8e35de2} (Adware.DoubleD) -> Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\Setup.exe (Adware.DoubleD) -> Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\kwinzysrch (Adware.Agent) -> Quarantined and deleted successfully.
HKEY_CURRENT_USER\{D45817B8-3EAD-4d1d-8FCA-EC63A8E35DE2} (Adware.DoubleD) -> Quarantined and deleted successfully.
HKEY_CURRENT_USER\SOFTWARE\Web Search Operator (Adware.DoubleD) -> Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\AppDataLow\SOFTWARE\Internet Today (Adware.DoubleD) -> Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Automated Content Enhancer (Adware.DoubleD) -> Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Customized Platform Advancer (Adware.DoubleD) -> Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Web Search Operator (Adware.DoubleD) -> Quarantined and deleted successfully.
HKEY_CURRENT_USER\SOFTWARE\Automated Content Enhancer (Adware.DoubleD) -> Quarantined and deleted successfully.
HKEY_CURRENT_USER\SOFTWARE\Customized Platform Advancer (Adware.DoubleD) -> Quarantined and deleted successfully.
HKEY_CURRENT_USER\SOFTWARE\Media Access Startup (Adware.DoubleD) -> Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\EoRezo (Rogue.Eorezo) -> Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Media Access Startup (Adware.DoubleD) -> Quarantined and deleted successfully.

Valeur(s) du Registre infectée(s):
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\Toolbar\WebBrowser\{d45817b8-3ead-4d1d-8fca-ec63a8e35de2} (Adware.DoubleD) -> Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Mozilla\Firefox\Extensions\{8141440e-08f0-4339-9959-5c31c6a69f23} (Adware.DoubleD) -> Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Mozilla\Firefox\Extensions\{e63605fc-d583-4c81-867f-9457bdb3ea1b} (Adware.DoubleD) -> Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Mozilla\Firefox\Extensions\{e889f097-b0be-471b-89ad-b86b6f04b506} (Adware.DoubleD) -> Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\internet today task (Adware.Agent) -> Quarantined and deleted successfully.

Elément(s) de données du Registre infecté(s):
(Aucun élément nuisible détecté)

Dossier(s) infecté(s):
C:\Documents and Settings\All Users\Application Data\Kwinzy (Adware.Kwinzy) -> Quarantined and deleted successfully.
C:\Documents and Settings\Mimi\Local Settings\Temporary Internet Files\{D45817B8-3EAD-4d1d-8FCA-EC63A8E35DE2} (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Mimi\Local Settings\Temporary Internet Files\{D45817B8-3EAD-4d1d-8FCA-EC63A8E35DE2}\Data (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Mimi\Local Settings\Temporary Internet Files\{D45817B8-3EAD-4d1d-8FCA-EC63A8E35DE2}\TDF (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Mimi\Local Settings\Temporary Internet Files\{D45817B8-3EAD-4d1d-8FCA-EC63A8E35DE2}\TDF\Data (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Mimi\Local Settings\Temporary Internet Files\{D45817B8-3EAD-4d1d-8FCA-EC63A8E35DE2}\TDF\Icons (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Mimi\Local Settings\Temporary Internet Files\{D45817B8-3EAD-4d1d-8FCA-EC63A8E35DE2}\TDF\Skins (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Mimi\Local Settings\Temp\cmw\newSetup (Adware.Agent) -> Quarantined and deleted successfully.
C:\Program Files\Web Search Operator (Adware.Agent) -> Delete on reboot.
C:\Program Files\Web Search Operator\3.1.0.1800 (Adware.Agent) -> Delete on reboot.
C:\Program Files\Web Search Operator\3.1.0.1800\Data (Adware.Agent) -> Quarantined and deleted successfully.
C:\Program Files\Web Search Operator\3.1.0.1800\FF (Adware.Agent) -> Delete on reboot.
C:\Program Files\Web Search Operator\3.1.0.1800\FF\chrome (Adware.Agent) -> Delete on reboot.
C:\Program Files\Web Search Operator\3.1.0.1800\FF\chrome\content (Adware.Agent) -> Quarantined and deleted successfully.
C:\Program Files\Web Search Operator\3.1.0.1800\FF\components (Adware.Agent) -> Delete on reboot.
C:\Program Files\Textual Content Provider (Adware.Agent) -> Quarantined and deleted successfully.
C:\Program Files\Textual Content Provider\1.1.0.1380 (Adware.Agent) -> Quarantined and deleted successfully.
C:\Program Files\Textual Content Provider\1.1.0.1380\data (Adware.Agent) -> Quarantined and deleted successfully.
C:\Program Files\Automated Content Enhancer\4.1.0.5050 (Adware.Agent) -> Delete on reboot.
C:\Program Files\Automated Content Enhancer\4.1.0.5050\Data (Adware.Agent) -> Quarantined and deleted successfully.
C:\Program Files\Automated Content Enhancer\4.1.0.5050\FF (Adware.Agent) -> Delete on reboot.
C:\Program Files\Automated Content Enhancer\4.1.0.5050\FF\chrome (Adware.Agent) -> Delete on reboot.
C:\Program Files\Automated Content Enhancer\4.1.0.5050\FF\chrome\content (Adware.Agent) -> Quarantined and deleted successfully.
C:\Program Files\Automated Content Enhancer\4.1.0.5050\FF\components (Adware.Agent) -> Delete on reboot.
C:\Program Files\Content Management Wizard\1.1.0.1820 (Adware.Agent) -> Quarantined and deleted successfully.
C:\Program Files\Automated Content Enhancer (Adware.Agent) -> Delete on reboot.
C:\Program Files\Customized Platform Advancer (Adware.Agent) -> Delete on reboot.
C:\Program Files\Customized Platform Advancer\3.1.0.1540 (Adware.Agent) -> Delete on reboot.
C:\Program Files\Customized Platform Advancer\3.1.0.1540\Data (Adware.Agent) -> Quarantined and deleted successfully.
C:\Program Files\Customized Platform Advancer\3.1.0.1540\FF (Adware.Agent) -> Delete on reboot.
C:\Program Files\Customized Platform Advancer\3.1.0.1540\FF\chrome (Adware.Agent) -> Delete on reboot.
C:\Program Files\Customized Platform Advancer\3.1.0.1540\FF\chrome\content (Adware.Agent) -> Quarantined and deleted successfully.
C:\Program Files\Customized Platform Advancer\3.1.0.1540\FF\components (Adware.Agent) -> Delete on reboot.
C:\Program Files\Content Management Wizard (Adware.Agent) -> Quarantined and deleted successfully.
C:\Program Files\HottieStar Toolbar (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Mimi\Local Settings\Application Data\Automated Content Enhancer (Adware.DoubleD) -> Delete on reboot.
C:\Documents and Settings\Mimi\Local Settings\Application Data\Automated Content Enhancer\4.1.0.5050 (Adware.DoubleD) -> Delete on reboot.
C:\Documents and Settings\Mimi\Local Settings\Application Data\Customized Platform Advancer (Adware.DoubleD) -> Delete on reboot.
C:\Documents and Settings\Mimi\Local Settings\Application Data\Customized Platform Advancer\3.1.0.1540 (Adware.DoubleD) -> Delete on reboot.
C:\Documents and Settings\Mimi\Local Settings\Application Data\HottieStar Toolbar (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Mimi\Local Settings\Application Data\Textual Content Provider (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Mimi\Local Settings\Application Data\Textual Content Provider\Data (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Mimi\Local Settings\Application Data\Web Search Operator (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Mimi\Local Settings\Application Data\Web Search Operator\3.1.0.1800 (Adware.DoubleD) -> Quarantined and deleted successfully.

Fichier(s) infecté(s):
C:\Program Files\Content Management Wizard\1.1.0.1820\CMWIE.dll (Adware.Agent) -> Quarantined and deleted successfully.
C:\Program Files\Customized Platform Advancer\3.1.0.1540\CPAIEAddOn.dll (Adware.Agent) -> Quarantined and deleted successfully.
C:\Program Files\Web Search Operator\3.1.0.1800\WSO.dll (Adware.Agent) -> Quarantined and deleted successfully.
C:\Program Files\Textual Content Provider\1.1.0.1380\TCPIE.dll (Adware.Agent) -> Quarantined and deleted successfully.
C:\Program Files\Automated Content Enhancer\4.1.0.5050\ACEIEAddOn.dll (Adware.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\Mimi\Local Settings\Temporary Internet Files\{D45817B8-3EAD-4d1d-8FCA-EC63A8E35DE2}\productinfo.dll (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Mimi\Local Settings\Temporary Internet Files\{D45817B8-3EAD-4d1d-8FCA-EC63A8E35DE2}\Setup.exe (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Program Files\EoRezo\EoEngine.exe (Rogue.Eorezo) -> Quarantined and deleted successfully.
C:\Program Files\EoRezo\EoAdv\EoAdv.dll (Rogue.Eorezo) -> Quarantined and deleted successfully.
C:\Program Files\KwinzySrch\uninstall.exe (Adware.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\Mimi\Local Settings\Temporary Internet Files\{D45817B8-3EAD-4d1d-8FCA-EC63A8E35DE2}\bg.jpg (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Mimi\Local Settings\Temporary Internet Files\{D45817B8-3EAD-4d1d-8FCA-EC63A8E35DE2}\CurrentVersion.xml (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Mimi\Local Settings\Temporary Internet Files\{D45817B8-3EAD-4d1d-8FCA-EC63A8E35DE2}\ExtractZipFile.zip (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Mimi\Local Settings\Temporary Internet Files\{D45817B8-3EAD-4d1d-8FCA-EC63A8E35DE2}\icon.ico (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Mimi\Local Settings\Temporary Internet Files\{D45817B8-3EAD-4d1d-8FCA-EC63A8E35DE2}\tdf.dat (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Mimi\Local Settings\Temporary Internet Files\{D45817B8-3EAD-4d1d-8FCA-EC63A8E35DE2}\tdf.zip (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Mimi\Local Settings\Temporary Internet Files\{D45817B8-3EAD-4d1d-8FCA-EC63A8E35DE2}\Data\ProductInfo.mx (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Mimi\Local Settings\Temporary Internet Files\{D45817B8-3EAD-4d1d-8FCA-EC63A8E35DE2}\TDF\Data\Module_Logo.mx (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Mimi\Local Settings\Temporary Internet Files\{D45817B8-3EAD-4d1d-8FCA-EC63A8E35DE2}\TDF\Data\Module_Option.mx (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Mimi\Local Settings\Temporary Internet Files\{D45817B8-3EAD-4d1d-8FCA-EC63A8E35DE2}\TDF\Data\Module_RSS.mx (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Mimi\Local Settings\Temporary Internet Files\{D45817B8-3EAD-4d1d-8FCA-EC63A8E35DE2}\TDF\Data\Module_Search.mx (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Mimi\Local Settings\Temporary Internet Files\{D45817B8-3EAD-4d1d-8FCA-EC63A8E35DE2}\TDF\Data\Module_Smiley_Config.mx (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Mimi\Local Settings\Temporary Internet Files\{D45817B8-3EAD-4d1d-8FCA-EC63A8E35DE2}\TDF\Data\Module_WebDropdown_01.mx (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Mimi\Local Settings\Temporary Internet Files\{D45817B8-3EAD-4d1d-8FCA-EC63A8E35DE2}\TDF\Data\Module_WebDropdown_02.mx (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Mimi\Local Settings\Temporary Internet Files\{D45817B8-3EAD-4d1d-8FCA-EC63A8E35DE2}\TDF\Data\Module_WebDropdown_03.mx (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Mimi\Local Settings\Temporary Internet Files\{D45817B8-3EAD-4d1d-8FCA-EC63A8E35DE2}\TDF\Data\Module_WebDropdown_04.mx (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Mimi\Local Settings\Temporary Internet Files\{D45817B8-3EAD-4d1d-8FCA-EC63A8E35DE2}\TDF\Data\Module_WebDropdown_05.mx (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Mimi\Local Settings\Temporary Internet Files\{D45817B8-3EAD-4d1d-8FCA-EC63A8E35DE2}\TDF\Data\Module_WebDropdown_06.mx (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Mimi\Local Settings\Temporary Internet Files\{D45817B8-3EAD-4d1d-8FCA-EC63A8E35DE2}\TDF\Data\pixel.mx (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Mimi\Local Settings\Temporary Internet Files\{D45817B8-3EAD-4d1d-8FCA-EC63A8E35DE2}\TDF\Data\ProductInfo.mx (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Mimi\Local Settings\Temporary Internet Files\{D45817B8-3EAD-4d1d-8FCA-EC63A8E35DE2}\TDF\Data\profile.mx (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Mimi\Local Settings\Temporary Internet Files\{D45817B8-3EAD-4d1d-8FCA-EC63A8E35DE2}\TDF\Data\SearchEngineList.mx (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Mimi\Local Settings\Temporary Internet Files\{D45817B8-3EAD-4d1d-8FCA-EC63A8E35DE2}\TDF\Data\tbcore.mx (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Mimi\Local Settings\Temporary Internet Files\{D45817B8-3EAD-4d1d-8FCA-EC63A8E35DE2}\TDF\Data\ToolbarLayout.mx (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Mimi\Local Settings\Temporary Internet Files\{D45817B8-3EAD-4d1d-8FCA-EC63A8E35DE2}\TDF\Data\UpdateCentre.mx (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Mimi\Local Settings\Temporary Internet Files\{D45817B8-3EAD-4d1d-8FCA-EC63A8E35DE2}\TDF\Data\UpdateCentreBk.mx (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Mimi\Local Settings\Temporary Internet Files\{D45817B8-3EAD-4d1d-8FCA-EC63A8E35DE2}\TDF\Icons\About.mg (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Mimi\Local Settings\Temporary Internet Files\{D45817B8-3EAD-4d1d-8FCA-EC63A8E35DE2}\TDF\Icons\Component_ComboBox.mg (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Mimi\Local Settings\Temporary Internet Files\{D45817B8-3EAD-4d1d-8FCA-EC63A8E35DE2}\TDF\Icons\Module_Logo.mg (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Mimi\Local Settings\Temporary Internet Files\{D45817B8-3EAD-4d1d-8FCA-EC63A8E35DE2}\TDF\Icons\Module_Option.mg (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Mimi\Local Settings\Temporary Internet Files\{D45817B8-3EAD-4d1d-8FCA-EC63A8E35DE2}\TDF\Icons\Module_Option_Menu.mg (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Mimi\Local Settings\Temporary Internet Files\{D45817B8-3EAD-4d1d-8FCA-EC63A8E35DE2}\TDF\Icons\Module_RSS.mg (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Mimi\Local Settings\Temporary Internet Files\{D45817B8-3EAD-4d1d-8FCA-EC63A8E35DE2}\TDF\Icons\Module_RSS.png (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Mimi\Local Settings\Temporary Internet Files\{D45817B8-3EAD-4d1d-8FCA-EC63A8E35DE2}\TDF\Icons\Module_RSS_Menu.mg (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Mimi\Local Settings\Temporary Internet Files\{D45817B8-3EAD-4d1d-8FCA-EC63A8E35DE2}\TDF\Icons\Module_RSS_Menu.png (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Mimi\Local Settings\Temporary Internet Files\{D45817B8-3EAD-4d1d-8FCA-EC63A8E35DE2}\TDF\Icons\Module_Search.mg (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Mimi\Local Settings\Temporary Internet Files\{D45817B8-3EAD-4d1d-8FCA-EC63A8E35DE2}\TDF\Icons\Module_WebDropdown_01.mg (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Mimi\Local Settings\Temporary Internet Files\{D45817B8-3EAD-4d1d-8FCA-EC63A8E35DE2}\TDF\Icons\Module_WebDropdown_01.png (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Mimi\Local Settings\Temporary Internet Files\{D45817B8-3EAD-4d1d-8FCA-EC63A8E35DE2}\TDF\Icons\Module_WebDropdown_02.mg (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Mimi\Local Settings\Temporary Internet Files\{D45817B8-3EAD-4d1d-8FCA-EC63A8E35DE2}\TDF\Icons\Module_WebDropdown_02.png (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Mimi\Local Settings\Temporary Internet Files\{D45817B8-3EAD-4d1d-8FCA-EC63A8E35DE2}\TDF\Icons\Module_WebDropdown_03.mg (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Mimi\Local Settings\Temporary Internet Files\{D45817B8-3EAD-4d1d-8FCA-EC63A8E35DE2}\TDF\Icons\Module_WebDropdown_03.png (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Mimi\Local Settings\Temporary Internet Files\{D45817B8-3EAD-4d1d-8FCA-EC63A8E35DE2}\TDF\Icons\Module_WebDropdown_04.mg (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Mimi\Local Settings\Temporary Internet Files\{D45817B8-3EAD-4d1d-8FCA-EC63A8E35DE2}\TDF\Icons\Module_WebDropdown_04.png (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Mimi\Local Settings\Temporary Internet Files\{D45817B8-3EAD-4d1d-8FCA-EC63A8E35DE2}\TDF\Icons\Module_WebDropdown_05.mg (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Mimi\Local Settings\Temporary Internet Files\{D45817B8-3EAD-4d1d-8FCA-EC63A8E35DE2}\TDF\Icons\Module_WebDropdown_05.png (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Mimi\Local Settings\Temporary Internet Files\{D45817B8-3EAD-4d1d-8FCA-EC63A8E35DE2}\TDF\Icons\Module_WebDropdown_06.mg (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Mimi\Local Settings\Temporary Internet Files\{D45817B8-3EAD-4d1d-8FCA-EC63A8E35DE2}\TDF\Icons\Module_WebDropdown_06.png (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Mimi\Local Settings\Temporary Internet Files\{D45817B8-3EAD-4d1d-8FCA-EC63A8E35DE2}\TDF\Skins\myskin1.skf (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Mimi\Local Settings\Temporary Internet Files\{D45817B8-3EAD-4d1d-8FCA-EC63A8E35DE2}\TDF\Skins\myskin2.skf (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Mimi\Local Settings\Temporary Internet Files\{D45817B8-3EAD-4d1d-8FCA-EC63A8E35DE2}\TDF\Skins\myskin3.skf (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Mimi\Local Settings\Temporary Internet Files\{D45817B8-3EAD-4d1d-8FCA-EC63A8E35DE2}\TDF\Skins\myskin4.skf (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Program Files\Web Search Operator\3.1.0.1800\unins000.dat (Adware.Agent) -> Quarantined and deleted successfully.
C:\Program Files\Web Search Operator\3.1.0.1800\unins000.exe (Adware.Agent) -> Quarantined and deleted successfully.
C:\Program Files\Web Search Operator\3.1.0.1800\WSOCommon.dll (Adware.Agent) -> Delete on reboot.
C:\Program Files\Web Search Operator\3.1.0.1800\wsopx.exe (Adware.Agent) -> Quarantined and deleted successfully.
C:\Program Files\Web Search Operator\3.1.0.1800\Data\config.md (Adware.Agent) -> Quarantined and deleted successfully.
C:\Program Files\Web Search Operator\3.1.0.1800\FF\chrome.manifest (Adware.Agent) -> Quarantined and deleted successfully.
C:\Program Files\Web Search Operator\3.1.0.1800\FF\install.rdf (Adware.Agent) -> Quarantined and deleted successfully.
C:\Program Files\Web Search Operator\3.1.0.1800\FF\chrome\WSOAddOn.jar (Adware.Agent) -> Delete on reboot.
C:\Program Files\Web Search Operator\3.1.0.1800\FF\chrome\content\WSOAddOn.js (Adware.Agent) -> Quarantined and deleted successfully.
C:\Program Files\Web Search Operator\3.1.0.1800\FF\chrome\content\WSOAddOn.xul (Adware.Agent) -> Quarantined and deleted successfully.
C:\Program Files\Web Search Operator\3.1.0.1800\FF\components\WSOFFAddOn.dll (Adware.Agent) -> Delete on reboot.
C:\Program Files\Web Search Operator\3.1.0.1800\FF\components\WSOFFAddOn.xpt (Adware.Agent) -> Quarantined and deleted successfully.
C:\Program Files\Web Search Operator\3.1.0.1800\FF\components\WSOFFHelperComponent.js (Adware.Agent) -> Quarantined and deleted successfully.
C:\Program Files\Textual Content Provider\1.1.0.1380\tcppx.exe (Adware.Agent) -> Quarantined and deleted successfully.
C:\Program Files\Textual Content Provider\1.1.0.1380\unins000.dat (Adware.Agent) -> Quarantined and deleted successfully.
C:\Program Files\Textual Content Provider\1.1.0.1380\unins000.exe (Adware.Agent) -> Quarantined and deleted successfully.
C:\Program Files\Textual Content Provider\1.1.0.1380\data\pxtmpdata.mx (Adware.Agent) -> Quarantined and deleted successfully.
C:\Program Files\Textual Content Provider\1.1.0.1380\data\TP_Config.mx (Adware.Agent) -> Quarantined and deleted successfully.
C:\Program Files\Textual Content Provider\1.1.0.1380\data\TP_Data.mx (Adware.Agent) -> Quarantined and deleted successfully.
C:\Program Files\Textual Content Provider\1.1.0.1380\data\TP_DomainExcludeList.mx (Adware.Agent) -> Quarantined and deleted successfully.
C:\Program Files\Automated Content Enhancer\4.1.0.5050\ACECommon.dll (Adware.Agent) -> Delete on reboot.
C:\Program Files\Automated Content Enhancer\4.1.0.5050\ACEIEAddOnSub.dll (Adware.Agent) -> Quarantined and deleted successfully.
C:\Program Files\Automated Content Enhancer\4.1.0.5050\ACEIEAddOnSubL.dll (Adware.Agent) -> Quarantined and deleted successfully.
C:\Program Files\Automated Content Enhancer\4.1.0.5050\acepx.exe (Adware.Agent) -> Quarantined and deleted successfully.
C:\Program Files\Automated Content Enhancer\4.1.0.5050\unins000.dat (Adware.Agent) -> Quarantined and deleted successfully.
C:\Program Files\Automated Content Enhancer\4.1.0.5050\unins000.exe (Adware.Agent) -> Quarantined and deleted successfully.
C:\Program Files\Automated Content Enhancer\4.1.0.5050\Data\config.md (Adware.Agent) -> Quarantined and deleted successfully.
C:\Program Files\Automated Content Enhancer\4.1.0.5050\FF\chrome.manifest (Adware.Agent) -> Quarantined and deleted successfully.
C:\Program Files\Automated Content Enhancer\4.1.0.5050\FF\install.rdf (Adware.Agent) -> Quarantined and deleted successfully.
C:\Program Files\Automated Content Enhancer\4.1.0.5050\FF\chrome\ACEAddOn.jar (Adware.Agent) -> Delete on reboot.
C:\Program Files\Automated Content Enhancer\4.1.0.5050\FF\chrome\content\ACEAddOn.js (Adware.Agent) -> Quarantined and deleted successfully.
C:\Program Files\Automated Content Enhancer\4.1.0.5050\FF\chrome\content\ACEAddOn.xul (Adware.Agent) -> Quarantined and deleted successfully.
C:\Program Files\Automated Content Enhancer\4.1.0.5050\FF\components\ACEFFAddOn.dll (Adware.Agent) -> Delete on reboot.
C:\Program Files\Automated Content Enhancer\4.1.0.5050\FF\components\ACEFFAddOn.xpt (Adware.Agent) -> Quarantined and deleted successfully.
C:\Program Files\Automated Content Enhancer\4.1.0.5050\FF\components\ACEFFHelperComponent.js (Adware.Agent) -> Quarantined and deleted successfully.
C:\Program Files\Content Management Wizard\1.1.0.1820\cmwpx.exe (Adware.Agent) -> Quarantined and deleted successfully.
C:\Program Files\Content Management Wizard\1.1.0.1820\cmwsh.dll (Adware.Agent) -> Quarantined and deleted successfully.
C:\Program Files\Content Management Wizard\1.1.0.1820\config.mx (Adware.Agent) -> Quarantined and deleted successfully.
C:\Program Files\Content Management Wizard\1.1.0.1820\data.mx (Adware.Agent) -> Quarantined and deleted successfully.
C:\Program Files\Content Management Wizard\1.1.0.1820\exclude.mx (Adware.Agent) -> Quarantined and deleted successfully.
C:\Program Files\Content Management Wizard\1.1.0.1820\MatchingData.zd5 (Adware.Agent) -> Quarantined and deleted successfully.
C:\Program Files\Content Management Wizard\1.1.0.1820\pxtmpdata.mx (Adware.Agent) -> Quarantined and deleted successfully.
C:\Program Files\Content Management Wizard\1.1.0.1820\unins000.dat (Adware.Agent) -> Quarantined and deleted successfully.
C:\Program Files\Content Management Wizard\1.1.0.1820\unins000.exe (Adware.Agent) -> Quarantined and deleted successfully.
C:\Program Files\Customized Platform Advancer\3.1.0.1540\CPACommon.dll (Adware.Agent) -> Delete on reboot.
C:\Program Files\Customized Platform Advancer\3.1.0.1540\CPAHelper.exe (Adware.Agent) -> Quarantined and deleted successfully.
C:\Program Files\Customized Platform Advancer\3.1.0.1540\CPAIEAddOnSub.dll (Adware.Agent) -> Quarantined and deleted successfully.
C:\Program Files\Customized Platform Advancer\3.1.0.1540\CPAIEAddOnSubL.dll (Adware.Agent) -> Quarantined and deleted successfully.
C:\Program Files\Customized Platform Advancer\3.1.0.1540\unins000.dat (Adware.Agent) -> Quarantined and deleted successfully.
C:\Program Files\Customized Platform Advancer\3.1.0.1540\unins000.exe (Adware.Agent) -> Quarantined and deleted successfully.
C:\Program Files\Customized Platform Advancer\3.1.0.1540\Data\config.md (Adware.Agent) -> Quarantined and deleted successfully.
C:\Program Files\Customized Platform Advancer\3.1.0.1540\FF\chrome.manifest (Adware.Agent) -> Quarantined and deleted successfully.
C:\Program Files\Customized Platform Advancer\3.1.0.1540\FF\install.rdf (Adware.Agent) -> Quarantined and deleted successfully.
C:\Program Files\Customized Platform Advancer\3.1.0.1540\FF\chrome\CPAAddOn.jar (Adware.Agent) -> Delete on reboot.
C:\Program Files\Customized Platform Advancer\3.1.0.1540\FF\chrome\content\CPAAddOn.js (Adware.Agent) -> Quarantined and deleted successfully.
C:\Program Files\Customized Platform Advancer\3.1.0.1540\FF\chrome\content\CPAAddOn.xul (Adware.Agent) -> Quarantined and deleted successfully.
C:\Program Files\Customized Platform Advancer\3.1.0.1540\FF\components\CPAFFAddOn.dll (Adware.Agent) -> Delete on reboot.
C:\Program Files\Customized Platform Advancer\3.1.0.1540\FF\components\CPAFFAddOn.xpt (Adware.Agent) -> Quarantined and deleted successfully.
C:\Program Files\Customized Platform Advancer\3.1.0.1540\FF\components\CPAFFHelperComponent.js (Adware.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\Mimi\Local Settings\Application Data\Automated Content Enhancer\4.1.0.5050\config.md (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Mimi\Local Settings\Application Data\Automated Content Enhancer\4.1.0.5050\ipdata.md (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Mimi\Local Settings\Application Data\Automated Content Enhancer\4.1.0.5050\NP_20091125-133307.682.log (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Mimi\Local Settings\Application Data\Automated Content Enhancer\4.1.0.5050\NP_20091125-133409.141.log (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Mimi\Local Settings\Application Data\Automated Content Enhancer\4.1.0.5050\NP_20091125-133949.520.log (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Mimi\Local Settings\Application Data\Automated Content Enhancer\4.1.0.5050\NP_20091125-180007.606.log (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Mimi\Local Settings\Application Data\Automated Content Enhancer\4.1.0.5050\NP_20091125-182140.659.log (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Mimi\Local Settings\Application Data\Automated Content Enhancer\4.1.0.5050\NP_20091125-202754.337.log (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Mimi\Local Settings\Application Data\Automated Content Enhancer\4.1.0.5050\NP_20091125-203628.847.log (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Mimi\Local Settings\Application Data\Automated Content Enhancer\4.1.0.5050\NP_20091125-203650.548.log (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Mimi\Local Settings\Application Data\Automated Content Enhancer\4.1.0.5050\NP_20091125-203658.860.log (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Mimi\Local Settings\Application Data\Automated Content Enhancer\4.1.0.5050\NP_20091125-214507.889.log (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Mimi\Local Settings\Application Data\Automated Content Enhancer\4.1.0.5050\NP_20091126-081617.145.log (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Mimi\Local Settings\Application Data\Automated Content Enhancer\4.1.0.5050\NP_20091126-084114.358.log (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Mimi\Local Settings\Application Data\Automated Content Enhancer\4.1.0.5050\NP_20091126-084612.076.log (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Mimi\Local Settings\Application Data\Automated Content Enhancer\4.1.0.5050\NP_20091126-093038.670.log (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Mimi\Local Settings\Application Data\Automated Content Enhancer\4.1.0.5050\NP_20091126-112857.102.log (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Mimi\Local Settings\Application Data\Automated Content Enhancer\4.1.0.5050\NP_20091126-172007.258.log (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Mimi\Local Settings\Application Data\Automated Content Enhancer\4.1.0.5050\NP_20091126-175523.892.log (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Mimi\Local Settings\Application Data\Automated Content Enhancer\4.1.0.5050\NP_20091126-175948.152.log (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Mimi\Local Settings\Application Data\Automated Content Enhancer\4.1.0.5050\NP_20091126-180949.056.log (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Mimi\Local Settings\Application Data\Automated Content Enhancer\4.1.0.5050\NP_20091126-182545.868.log (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Mimi\Local Settings\Application Data\Automated Content Enhancer\4.1.0.5050\NP_20091126-191323.066.log (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Mimi\Local Settings\Application Data\Automated Content Enhancer\4.1.0.5050\NP_20091127-125505.963.log (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Mimi\Local Settings\Application Data\Automated Content Enhancer\4.1.0.5050\NP_20091127-133050.577.log (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Mimi\Local Settings\Application Data\Automated Content Enhancer\4.1.0.5050\NP_20091127-173105.024.log (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Mimi\Local Settings\Application Data\Automated Content Enhancer\4.1.0.5050\NP_20091127-234548.263.log (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Mimi\Local Settings\Application Data\Automated Content Enhancer\4.1.0.5050\NP_20091128-111724.537.log (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Mimi\Local Settings\Application Data\Automated Content Enhancer\4.1.0.5050\NP_20091128-132550.928.log (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Mimi\Local Settings\Application Data\Automated Content Enhancer\4.1.0.5050\NP_20091128-160419.361.log (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Mimi\Local Settings\Application Data\Automated Content Enhancer\4.1.0.5050\NP_20091128-193000.495.log (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Mimi\Local Settings\Application Data\Automated Content Enhancer\4.1.0.5050\NP_20091128-201002.309.log (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Mimi\Local Settings\Application Data\Automated Content Enhancer\4.1.0.5050\NP_20091128-205706.280.log (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Mimi\Local Settings\Application Data\Automated Content Enhancer\4.1.0.5050\NP_20091129-055353.228.log (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Mimi\Local Settings\Application Data\Automated Content Enhancer\4.1.0.5050\NP_20091129-213046.280.log (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Mimi\Local Settings\Application Data\Automated Content Enhancer\4.1.0.5050\NP_20091130-000830.719.log (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Mimi\Local Settings\Application Data\Automated Content Enhancer\4.1.0.5050\NP_20091130-014304.388.log (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Mimi\Local Settings\Application Data\Automated Content Enhancer\4.1.0.5050\NP_20091130-021833.129.log (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Mimi\Local Settings\Application Data\Automated Content Enhancer\4.1.0.5050\NP_20091130-133239.158.log (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Mimi\Local Settings\Application Data\Automated Content Enhancer\4.1.0.5050\NP_20091201-125740.751.log (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Mimi\Local Settings\Application Data\Automated Content Enhancer\4.1.0.5050\NP_20091201-170838.473.log (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Mimi\Local Settings\Application Data\Automated Content Enhancer\4.1.0.5050\NP_20091201-171112.985.log (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Mimi\Local Settings\Application Data\Automated Content Enhancer\4.1.0.5050\NP_20091201-171750.326.log (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Mimi\Local Settings\Application Data\Automated Content Enhancer\4.1.0.5050\NP_20091201-180629.163.log (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Mimi\Local Settings\Application Data\Automated Content Enhancer\4.1.0.5050\NP_20091201-180826.492.log (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Mimi\Local Settings\Application Data\Automated Content Enhancer\4.1.0.5050\NP_20091201-210846.410.log (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Mimi\Local Settings\Application Data\Automated Content Enhancer\4.1.0.5050\NP_20091202-105835.905.log (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Mimi\Local Settings\Application Data\Automated Content Enhancer\4.1.0.5050\NP_20091202-110756.401.log (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Mimi\Local Settings\Application Data\Automated Content Enhancer\4.1.0.5050\NP_20091202-112448.606.log (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Mimi\Local Settings\Application Data\Automated Content Enhancer\4.1.0.5050\NP_20091202-134002.243.log (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Mimi\Local Settings\Application Data\Automated Content Enhancer\4.1.0.5050\NP_20091202-182312.584.log (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Mimi\Local Settings\Application Data\Automated Content Enhancer\4.1.0.5050\NP_20091202-185221.058.log (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Mimi\Local Settings\Application Data\Automated Content Enhancer\4.1.0.5050\NP_20091202-213915.288.log (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Mimi\Local Settings\Application Data\Automated Content Enhancer\4.1.0.5050\NP_20091202-220816.081.log (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Mimi\Local Settings\Application Data\Automated Content Enhancer\4.1.0.5050\NP_20091202-222016.327.log (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Mimi\Local Settings\Application Data\Automated Content Enhancer\4.1.0.5050\NP_20091203-101059.815.log (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Mimi\Local Settings\Application Data\Automated Content Enhancer\4.1.0.5050\NP_20091203-101909.730.log (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Mimi\Local Settings\Application Data\Automated Content Enhancer\4.1.0.5050\NP_20091203-102943.551.log (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Mimi\Local Settings\Application Data\Automated Content Enhancer\4.1.0.5050\NP_20091203-103815.077.log (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Mimi\Local Settings\Application Data\Automated Content Enhancer\4.1.0.5050\NP_20091203-210918.238.log (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Mimi\Local Settings\Application Data\Automated Content Enhancer\4.1.0.5050\NP_20091204-100243.184.log (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Mimi\Local Settings\Application Data\Automated Content Enhancer\4.1.0.5050\NP_20091204-102125.518.log (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Mimi\Local Settings\Application Data\Automated Content Enhancer\4.1.0.5050\NP_20091204-102732.536.log (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Mimi\Local Settings\Application Data\Automated Content Enhancer\4.1.0.5050\NP_20091204-104041.370.log (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Mimi\Local Settings\Application Data\Automated Content Enhancer\4.1.0.5050\NP_20091204-114718.728.log (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Mimi\Local Settings\Application Data\Automated Content Enhancer\4.1.0.5050\NP_20091204-115200.273.log (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Mimi\Local Settings\Application Data\Automated Content Enhancer\4.1.0.5050\NP_20091204-115711.691.log (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Mimi\Local Settings\Application Data\Automated Content Enhancer\4.1.0.5050\NP_20091204-124652.907.log (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Mimi\Local Settings\Application Data\Automated Content Enhancer\4.1.0.5050\NP_20091204-152824.427.log (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Mimi\Local Settings\Application Data\Automated Content Enhancer\4.1.0.5050\NP_20091204-160001.864.log (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Mimi\Local Settings\Application Data\Automated Content Enhancer\4.1.0.5050\NP_20091204-162351.981.log (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Mimi\Local Settings\Application Data\Automated Content Enhancer\4.1.0.5050\NP_20091204-162353.433.log (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Mimi\Local Settings\Application Data\Automated Content Enhancer\4.1.0.5050\NP_20091206-181536.685.log (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Mimi\Local Settings\Application Data\Automated Content Enhancer\4.1.0.5050\NP_20091206-181856.943.log (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Mimi\Local Settings\Application Data\Automated Content Enhancer\4.1.0.5050\NP_20091206-201236.820.log (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Mimi\Local Settings\Application Data\Automated Content Enhancer\4.1.0.5050\NP_20091206-221929.558.log (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Mimi\Local Settings\Application Data\Automated Content Enhancer\4.1.0.5050\NP_20091207-084005.054.log (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Mimi\Local Settings\Application Data\Automated Content Enhancer\4.1.0.5050\NP_20091207-101200.965.log (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Mimi\Local Settings\Application Data\Automated Content Enhancer\4.1.0.5050\NP_20091207-104533.048.log (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Mimi\Local Settings\Application Data\Automated Content Enhancer\4.1.0.5050\NP_20091207-105704.453.log (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Mimi\Local Settings\Application Data\Automated Content Enhancer\4.1.0.5050\NP_20091207-113005.531.log (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Mimi\Local Settings\Application Data\Automated Content Enhancer\4.1.0.5050\NP_20091207-121849.065.log (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Mimi\Local Settings\Application Data\Automated Content Enhancer\4.1.0.5050\NP_20091207-121935.101.log (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Mimi\Local Settings\Application Data\Automated Content Enhancer\4.1.0.5050\NP_20091207-122603.019.log (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Mimi\Local Settings\Application Data\Automated Content Enhancer\4.1.0.5050\NP_20091207-152442.573.log (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Mimi\Local Settings\Application Data\Automated Content Enhancer\4.1.0.5050\NP_20091208-090752.681.log (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Mimi\Local Settings\Application Data\Automated Content Enhancer\4.1.0.5050\NP_20091208-105148.433.log (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Mimi\Local Settings\Application Data\Automated Content Enhancer\4.1.0.5050\NP_20091208-140342.119.log (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Mimi\Local Settings\Application Data\Automated Content Enhancer\4.1.0.5050\NP_20091208-173155.053.log (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Mimi\Local Settings\Application Data\Automated Content Enhancer\4.1.0.5050\NP_20091208-173826.115.log (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Mimi\Local Settings\Application Data\Automated Content Enhancer\4.1.0.5050\NP_20091208-204006.352.log (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Mimi\Local Settings\Application Data\Automated Content Enhancer\4.1.0.5050\NP_20091208-211350.492.log (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Mimi\Local Settings\Application Data\Automated Content Enhancer\4.1.0.5050\NP_20091208-223904.644.log (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Mimi\Local Settings\Application Data\Automated Content Enhancer\4.1.0.5050\NP_20091209-105905.098.log (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Mimi\Local Settings\Application Data\Automated Content Enhancer\4.1.0.5050\NP_20091209-115904.238.log (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Mimi\Local Settings\Application Data\Automated Content Enhancer\4.1.0.5050\NP_20091209-115910.918.log (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Mimi\Local Settings\Application Data\Automated Content Enhancer\4.1.0.5050\NP_20091209-115919.981.log (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Mimi\Local Settings\Application Data\Automated Content Enhancer\4.1.0.5050\NP_20091209-120105.873.log (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Mimi\Local Settings\Application Data\Automated Content Enhancer\4.1.0.5050\NP_20091209-120108.356.log (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Mimi\Local Settings\Application Data\Automated Content Enhancer\4.1.0.5050\NP_20091209-120919.012.log (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Mimi\Local Settings\Application Data\Automated Content Enhancer\4.1.0.5050\NP_20091209-130901.884.log (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Mimi\Local Settings\Application Data\Automated Content Enhancer\4.1.0.5050\NP_20091209-135720.792.log (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Mimi\Local Settings\Application Data\Automated Content Enhancer\4.1.0.5050\NP_20091209-152210.691.log (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Mimi\Local Settings\Application Data\Automated Content Enhancer\4.1.0.5050\NP_20091209-180240.869.log (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Mimi\Local Settings\Application Data\Automated Content Enhancer\4.1.0.5050\NP_20091209-180810.763.log (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Mimi\Local Settings\Application Data\Automated Content Enhancer\4.1.0.5050\NP_20091209-194658.897.log (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Mimi\Local Settings\Application Data\Automated Content Enhancer\4.1.0.5050\NP_20091209-210031.392.log (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Mimi\Local Settings\Application Data\Automated Content Enhancer\4.1.0.5050\NP_20091210-082755.434.log (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Mimi\Local Settings\Application Data\Automated Content Enhancer\4.1.0.5050\NP_20091210-104144.200.log (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Mimi\Local Settings\Application Data\Automated Content Enhancer\4.1.0.5050\NP_20091210-104734.207.log (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Mimi\Local Settings\Application Data\Automated Content Enhancer\4.1.0.5050\NP_20091210-114236.121.log (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Mimi\Local Settings\Application Data\Automated Content Enhancer\4.1.0.5050\NP_20091210-123000.712.log (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Mimi\Local Settings\Application Data\Automated Content Enhancer\4.1.0.5050\NP_20091210-132218.594.log (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Mimi\Local Settings\Application Data\Automated Content Enhancer\4.1.0.5050\NP_20091210-132308.315.log (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Mimi\Local Settings\Application Data\Automated Content Enhancer\4.1.0.5050\NP_20091210-135731.592.log (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Mimi\Local Settings\Application Data\Automated Content Enhancer\4.1.0.5050\NP_20091210-162553.512.log (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Mimi\Local Settings\Application Data\Automated Content Enhancer\4.1.0.5050\NP_20091210-165328.452.log (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Mimi\Local Settings\Application Data\Automated Content Enhancer\4.1.0.5050\NP_20091210-185424.065.log (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Mimi\Local Settings\Application Data\Automated Content Enhancer\4.1.0.5050\NP_20091210-222823.968.log (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Mimi\Local Settings\Application Data\Automated Content Enhancer\4.1.0.5050\NP_20091210-224716.186.log (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Mimi\Local Settings\Application Data\Automated Content Enhancer\4.1.0.5050\NP_20091210-225027.361.log (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Mimi\Local Settings\Application Data\Automated Content Enhancer\4.1.0.5050\NP_20091210-232008.071.log (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Mimi\Local Settings\Application Data\Automated Content Enhancer\4.1.0.5050\NP_20091211-004357.422.log (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Mimi\Local Settings\Application Data\Automated Content Enhancer\4.1.0.5050\NP_20091211-073227.688.log (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Mimi\Local Settings\Application Data\Automated Content Enhancer\4.1.0.5050\NP_20091211-092656.042.log (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Mimi\Local Settings\Application Data\Automated Content Enhancer\4.1.0.5050\NP_20091211-102000.300.log (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Mimi\Local Settings\Application Data\Automated Content Enhancer\4.1.0.5050\NP_20091211-152434.948.log (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Mimi\Local Settings\Application Data\Automated Content Enhancer\4.1.0.5050\NP_20091211-152656.051.log (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Mimi\Local Settings\Application Data\Automated Content Enhancer\4.1.0.5050\NP_20091211-153059.982.log (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Mimi\Local Settings\Application Data\Automated Content Enhancer\4.1.0.5050\NP_20091211-155315.152.log (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Mimi\Local Settings\Application Data\Automated Content Enhancer\4.1.0.5050\NP_20091211-161153.980.log (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Mimi\Local Settings\Application Data\Automated Content Enhancer\4.1.0.5050\NP_20091211-164454.168.log (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Mimi\Local Settings\Application Data\Automated Content Enhancer\4.1.0.5050\NP_20091211-164455.790.log (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Mimi\Local Settings\Application Data\Automated Content Enhancer\4.1.0.5050\NP_20091211-164741.919.log (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Mimi\Local Settings\Application Data\Automated Content Enhancer\4.1.0.5050\NP_20091211-174544.527.log (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Mimi\Local Settings\Application Data\Automated Content Enhancer\4.1.0.5050\NP_20091211-195219.287.log (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Mimi\Local Settings\Application Data\Automated Content Enhancer\4.1.0.5050\NP_20091212-062023.475.log (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Mimi\Local Settings\Application Data\Automated Content Enhancer\4.1.0.5050\NP_20091212-112206.320.log (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Mimi\Local Settings\Application Data\Automated Content Enhancer\4.1.0.5050\NP_20091212-112906.534.log (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Mimi\Local Settings\Application Data\Automated Content Enhancer\4.1.0.5050\NP_20091212-112927.675.log (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Mimi\Local Settings\Application Data\Automated Content Enhancer\4.1.0.5050\NP_20091212-113519.203.log (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Mimi\Local Settings\Application Data\Automated Content Enhancer\4.1.0.5050\NP_20091212-113527.074.log (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Mimi\Local Settings\Application Data\Automated Content Enhancer\4.1.0.5050\NP_20091212-205316.324.log (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Mimi\Local Settings\Application Data\Automated Content Enhancer\4.1.0.5050\NP_20091213-025241.711.log (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Mimi\Local Settings\Application Data\Automated Content Enhancer\4.1.0.5050\NP_20091213-093139.824.log (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Mimi\Local Settings\Application Data\Automated Content Enhancer\4.1.0.5050\NP_20091213-121042.195.log (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Mimi\Local Settings\Application Data\Automated Content Enhancer\4.1.0.5050\NP_20091213-132017.118.log (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Mimi\Local Settings\Application Data\Automated Content Enhancer\4.1.0.5050\NP_
1
Réponse 2 / 25
jorginho67 Messages postés 14716 Date d'inscription mardi 11 septembre 2007 Statut Contributeur sécurité Dernière intervention 11 février 2011 1 169
15 déc. 2009 à 01:32
Impressionnant...

Et le rapport n'est pas au complet...

1
Réponse 3 / 25
moment de grace Messages postés 29042 Date d'inscription samedi 6 décembre 2008 Statut Contributeur sécurité Dernière intervention 18 juillet 2013 2 272
15 déc. 2009 à 20:46
oh oh

ce n'est pas fini


1) il me manque le Rapport Malwarebytes' complet

peux tu me le poster
ou si il est trop long utilises ce lien http://www.cijoint.fr/ en suiva,t les indications
cela créera un lien que tu postes ici

2) redémarre le pc et confirmes moi que tu l'as fait

1
Réponse 4 / 25
moment de grace Messages postés 29042 Date d'inscription samedi 6 décembre 2008 Statut Contributeur sécurité Dernière intervention 18 juillet 2013 2 272
14 déc. 2009 à 20:25
edit...
0

Vous n’avez pas trouvé la réponse que vous recherchez ?

Posez votre question
Réponse 5 / 25
Utilisateur anonyme
14 déc. 2009 à 20:26
Bonsoir clm14,

Postes ton rapport stp ...

a+
0
Réponse 6 / 25
clm14 Messages postés 13 Date d'inscription lundi 14 décembre 2009 Statut Membre Dernière intervention 15 décembre 2009 1
14 déc. 2009 à 20:29
désoler je l'ais enregistrer mais je sais plus ou :/ ! je le retrouve et je poste sa ! désoler !
0
Réponse 7 / 25
clm14 Messages postés 13 Date d'inscription lundi 14 décembre 2009 Statut Membre Dernière intervention 15 décembre 2009 1
14 déc. 2009 à 20:34
Voila ,

Fix Navipromo version 4.0.5 commencé le 14/12/2009 20:32:29,36

!!! Attention,ce rapport peut indiquer des fichiers/programmes légitimes!!!
!!! Postez ce rapport sur le forum pour le faire analyser !!!

Outil exécuté depuis C:\Program Files\navilog1

Mise à jour le 10.11.2009 à 18h00 par IL-MAFIOSO

Microsoft Windows XP Édition familiale ( v5.1.2600 ) Service Pack 3
X86-based PC ( Uniprocessor Free : AMD Athlon(tm) XP 3000+ )
BIOS : Phoenix - AwardBIOS v6.00PG
USER : Mimi ( Administrator )
BOOT : Normal boot

Antivirus : AVG Anti-Virus Free 9.0 (Activated)


C:\ (Local Disk) - NTFS - Total:153 Go (Free:137 Go)
D:\ (CD or DVD)
E:\ (CD or DVD)


Recherche executée en mode normal


[b]Aucune Infection Navipromo/Egdaccess trouvée[/b]


C:\WINDOWS\system32\aadgh.ini2 trouvé ! Infection Vundo possible non traitée par cet outil !
C:\WINDOWS\system32\adeeg.ini2 trouvé ! Infection Vundo possible non traitée par cet outil !
C:\WINDOWS\system32\bbdgh.ini2 trouvé ! Infection Vundo possible non traitée par cet outil !
C:\WINDOWS\system32\bcdgh.ini2 trouvé ! Infection Vundo possible non traitée par cet outil !
C:\WINDOWS\system32\ccbeg.ini2 trouvé ! Infection Vundo possible non traitée par cet outil !
C:\WINDOWS\system32\cehkj.ini2 trouvé ! Infection Vundo possible non traitée par cet outil !
C:\WINDOWS\system32\cfiii.ini2 trouvé ! Infection Vundo possible non traitée par cet outil !
C:\WINDOWS\system32\ddfii.ini2 trouvé ! Infection Vundo possible non traitée par cet outil !
C:\WINDOWS\system32\ehkmp.ini2 trouvé ! Infection Vundo possible non traitée par cet outil !
C:\WINDOWS\system32\ggfii.ini2 trouvé ! Infection Vundo possible non traitée par cet outil !
C:\WINDOWS\system32\hjjlm.ini2 trouvé ! Infection Vundo possible non traitée par cet outil !
C:\WINDOWS\system32\hjkmp.ini2 trouvé ! Infection Vundo possible non traitée par cet outil !
C:\WINDOWS\system32\ihjlm.ini2 trouvé ! Infection Vundo possible non traitée par cet outil !
C:\WINDOWS\system32\knqru.ini2 trouvé ! Infection Vundo possible non traitée par cet outil !
C:\WINDOWS\system32\lkllm.ini2 trouvé ! Infection Vundo possible non traitée par cet outil !
C:\WINDOWS\system32\lmnnn.ini2 trouvé ! Infection Vundo possible non traitée par cet outil !
C:\WINDOWS\system32\oqpoq.ini2 trouvé ! Infection Vundo possible non traitée par cet outil !
C:\WINDOWS\system32\pqqru.ini2 trouvé ! Infection Vundo possible non traitée par cet outil !
C:\WINDOWS\system32\psvut.ini2 trouvé ! Infection Vundo possible non traitée par cet outil !
C:\WINDOWS\system32\qqqss.ini2 trouvé ! Infection Vundo possible non traitée par cet outil !
C:\WINDOWS\system32\qrsut.ini2 trouvé ! Infection Vundo possible non traitée par cet outil !
C:\WINDOWS\system32\srsut.ini2 trouvé ! Infection Vundo possible non traitée par cet outil !
C:\WINDOWS\system32\stsut.ini2 trouvé ! Infection Vundo possible non traitée par cet outil !
C:\WINDOWS\system32\tvyay.ini2 trouvé ! Infection Vundo possible non traitée par cet outil !
C:\WINDOWS\system32\utsut.ini2 trouvé ! Infection Vundo possible non traitée par cet outil !
C:\WINDOWS\system32\uwyay.ini2 trouvé ! Infection Vundo possible non traitée par cet outil !
C:\WINDOWS\system32\uxbeg.ini2 trouvé ! Infection Vundo possible non traitée par cet outil !
C:\WINDOWS\system32\vvutv.ini2 trouvé ! Infection Vundo possible non traitée par cet outil !
C:\WINDOWS\system32\vwadd.ini2 trouvé ! Infection Vundo possible non traitée par cet outil !
C:\WINDOWS\system32\vxxbc.ini2 trouvé ! Infection Vundo possible non traitée par cet outil !
C:\WINDOWS\system32\vyabc.ini2 trouvé ! Infection Vundo possible non traitée par cet outil !
C:\WINDOWS\system32\yacfe.ini2 trouvé ! Infection Vundo possible non traitée par cet outil !
C:\WINDOWS\system32\yxadd.ini2 trouvé ! Infection Vundo possible non traitée par cet outil !

C:\WINDOWS\Tasks\A8D9AD6891CA222C.job trouvé ! Infection Lop possible non traitée par cet outil !
*** Scan terminé 14/12/2009 20:32:52,97 ***
0
Réponse 8 / 25
Utilisateur anonyme
14 déc. 2009 à 20:35
Edité...

A toi la main Moment de grace....

a+
0
Réponse 9 / 25
moment de grace Messages postés 29042 Date d'inscription samedi 6 décembre 2008 Statut Contributeur sécurité Dernière intervention 18 juillet 2013 2 272
14 déc. 2009 à 20:38
salut arche9

alors je reviens...

(sourire)

clm14

Téléchargez Lop S&D.exe sur le Bueau

https://77b4795d-a-62cb3a1a-s-sites.googlegroups.com/site/eric71mespages/LopSD.exe?attachauth=ANoY7co3ntqUavpZ3q1BG-h4pc13vqDZmhcNeEPChtsyrgAykRbhE8bZzhk979EfQD4AgwtQUHCaQ7ZQwNYMo3_0kA8htAspckDJtu2K5t6J9z6dLW4fpZyH4FpFL1tVMBZ8H-KnN7afZ5vt-WxZRpnynk-a0XmV_Y0C0q6DxGEDKie1TnPT7gFoZnoCnspzBmbW6ZzxA4fNr3oEDlbelNZON-LjF8nOmQ%3D%3D&attredirects=2
Certaines infections bloquent les telechargements d' outils de desinfection utilisez ce lien alternatif:
http://ww38.toofiles.com/fr/oip/documents/exe/yop4.html

Lop S&D est détecté par certains antivirus : il ne s'agit pas d'un virus (faux positif), mais d'un utilitaire destiné à mettre fin à des processus. Dans le cas d'une alerte de la part de votre antivirus, veuillez désactiver votre antivirus pendant la procédure

* Double-cliquez dessus pour lancer l'installation
* Puis double-cliquez sur le raccourci Lop S&D présent sur le Bureau
* Séléctionnez la langue souhaitée, puis choisir l'option 1 (Recherche)
* Patientez jusqu'à la fin du scan
* Postez le rapport généré sur un forum(C:\lopR.txt)

0
Réponse 10 / 25
Utilisateur anonyme
14 déc. 2009 à 20:42 
Salut arche9


==> archet9 stp ...!!!!

sourire itou ....
a+
0
Réponse 11 / 25
clm14 Messages postés 13 Date d'inscription lundi 14 décembre 2009 Statut Membre Dernière intervention 15 décembre 2009 1
14 déc. 2009 à 22:11
re moment de grace voila ,

--------------------\\ Lop S&D 4.2.5-0 XP/Vista

Microsoft Windows XP Édition familiale ( v5.1.2600 ) Service Pack 3
X86-based PC ( Uniprocessor Free : AMD Athlon(tm) XP 3000+ )
BIOS : Phoenix - AwardBIOS v6.00PG
USER : Mimi ( Administrator )
BOOT : Normal boot
Antivirus : AVG Anti-Virus Free 9.0 (Activated)
C:\ (Local Disk) - NTFS - Total:153 Go (Free:137 Go)
D:\ (CD or DVD)
E:\ (CD or DVD)

"C:\Lop SD" ( MAJ : 19-12-2008|23:40 )
Option : [1] ( 14/12/2009|22:07 )

--------------------\\ Listing des dossiers dans APPLIC~1

[09/09/2008|12:56] C:\DOCUME~1\ADMINI~1\APPLIC~1\Adobe
[09/09/2008|12:56] C:\DOCUME~1\ADMINI~1\APPLIC~1\Macromedia
[06/03/2007|18:17] C:\DOCUME~1\ADMINI~1\APPLIC~1\Microsoft
[09/09/2008|12:55] C:\DOCUME~1\ADMINI~1\APPLIC~1\Mozilla

[09/12/2009|11:54] C:\DOCUME~1\ADMINI~1.MR-\APPLIC~1\Microsoft
[09/09/2008|20:52] C:\DOCUME~1\ADMINI~1.MR-\APPLIC~1\Mozilla

[24/11/2009|19:20] C:\DOCUME~1\ALLUSE~1\APPLIC~1\{7B6BA59A-FB0E-4499-8536-A7420338BF3B}
[25/05/2007|11:28] C:\DOCUME~1\ALLUSE~1\APPLIC~1\acid dog bash tick
[09/12/2009|11:59] C:\DOCUME~1\ALLUSE~1\APPLIC~1\AVG Security Toolbar
[09/12/2009|11:55] C:\DOCUME~1\ALLUSE~1\APPLIC~1\avg9
[07/03/2007|15:59] C:\DOCUME~1\ALLUSE~1\APPLIC~1\CyberLink
[06/10/2008|18:48] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Fighters
[27/04/2009|17:30] C:\DOCUME~1\ALLUSE~1\APPLIC~1\F-Secure
[20/03/2009|16:35] C:\DOCUME~1\ALLUSE~1\APPLIC~1\fssg
[07/03/2007|17:04] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Google
[30/03/2008|18:18] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Grisoft
[19/06/2009|05:51] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Kwinzy
[24/11/2009|13:12] C:\DOCUME~1\ALLUSE~1\APPLIC~1\KwinzySrch
[11/09/2008|08:33] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Logishrd
[14/05/2008|09:52] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Logitech
[01/01/2009|14:11] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Malwarebytes
[14/04/2009|11:42] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Microsoft
[05/03/2009|01:28] C:\DOCUME~1\ALLUSE~1\APPLIC~1\MSN6
[25/11/2009|01:24] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Norton
[24/11/2009|12:11] C:\DOCUME~1\ALLUSE~1\APPLIC~1\NortonInstaller
[10/04/2008|22:26] C:\DOCUME~1\ALLUSE~1\APPLIC~1\pixelStorm
[07/03/2007|16:33] C:\DOCUME~1\ALLUSE~1\APPLIC~1\QuickTime
[24/11/2009|12:14] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Symantec
[06/10/2008|18:49] C:\DOCUME~1\ALLUSE~1\APPLIC~1\TEMP
[29/09/2008|18:40] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Trymedia
[06/03/2007|19:58] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Windows Genuine Advantage
[29/03/2007|20:30] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Windows Live Toolbar
[28/08/2008|17:40] C:\DOCUME~1\ALLUSE~1\APPLIC~1\wmp

[06/03/2007|18:17] C:\DOCUME~1\DEFAUL~1\APPLIC~1\Microsoft

[28/03/2008|09:31] C:\DOCUME~1\gaelle\APPLIC~1\Mozilla

[30/03/2008|19:14] C:\DOCUME~1\LOCALS~1\APPLIC~1\Help
0
Réponse 12 / 25
moment de grace Messages postés 29042 Date d'inscription samedi 6 décembre 2008 Statut Contributeur sécurité Dernière intervention 18 juillet 2013 2 272
14 déc. 2009 à 22:23
ok dans l'ordre

1) relances Lop S&D option 2 suppression+ hosts

postes ici le rapport

2) • Télécharge Random's System Information Tool (RSIT) de Random/Random.

http://images.malwareremoval.com/random/RSIT.exe

• Enregistre le sur ton Bureau.

• Double clique sur RSIT.exe pour lancer l'outil.

• Clique sur "Continue" à l'écran Disclaimer.

• Si l'outil HijackThis n'est pas présent ou non détecté sur l'ordinateur, RSIT le téléchargera (autorise l'accès dans ton pare-feu s'il te le demande)

et tu devras accepter la licence.

• Une fois le scan terminé, deux rapports vont apparaître : poste les dans deux messages séparés stp

Les rapports se trouvent à cet endroit:
C:\rsit\info.txt
C:\rsit\log.txt



0
Réponse 13 / 25
clm14 Messages postés 13 Date d'inscription lundi 14 décembre 2009 Statut Membre Dernière intervention 15 décembre 2009 1
14 déc. 2009 à 22:28
Voila, le 1er

info.txt logfile of random's system information tool 1.06 2009-12-14 22:27:30

======Uninstall list======

-->rundll32.exe setupapi.dll,InstallHinfSection DefaultUninstall 132 C:\WINDOWS\INF\PCHealth.inf
Adobe Flash Player 10 ActiveX-->C:\WINDOWS\system32\Macromed\Flash\uninstall_activeX.exe
Adobe Flash Player 10 Plugin-->C:\WINDOWS\system32\Macromed\Flash\uninstall_plugin.exe
Adobe Shockwave Player 11-->C:\WINDOWS\system32\adobe\SHOCKW~1\UNWISE.EXE C:\WINDOWS\system32\Adobe\SHOCKW~1\Install.log
Archiveur WinRAR-->C:\Program Files\WinRAR\uninstall.exe
Assistant de connexion Windows Live-->MsiExec.exe /I{DCE8CD14-FBF5-4464-B9A4-E18E473546C7}
AVG Free 9.0-->C:\Program Files\AVG\AVG9\setup.exe /UNINSTALL
Barre d'outils Outlook de Windows Live (Windows Live Toolbar)-->MsiExec.exe /X{6E15BEDF-7EB5-4010-998E-B430DB4EFE45}
Bloqueur de fenêtres pop-up (Windows Live Toolbar)-->MsiExec.exe /X{A425C250-A0E1-4D78-B1C1-A5CBC7385E7C}
C-Media WDM Audio Driver-->C:\WINDOWS\system32\cmirmdrv.exe
Correctif pour Lecteur Windows Media 11 (KB939683)-->"C:\WINDOWS\$NtUninstallKB939683$\spuninst\spuninst.exe"
Correctif pour Windows Internet Explorer 7 (KB947864)-->"C:\WINDOWS\ie7updates\KB947864-IE7\spuninst\spuninst.exe"
Correctif pour Windows XP (KB952287)-->"C:\WINDOWS\$NtUninstallKB952287$\spuninst\spuninst.exe"
Correctif pour Windows XP (KB961118)-->"C:\WINDOWS\$NtUninstallKB961118$\spuninst\spuninst.exe"
Correctif pour Windows XP (KB970653-v3)-->"C:\WINDOWS\$NtUninstallKB970653-v3$\spuninst\spuninst.exe"
Correctif pour Windows XP (KB976098-v2)-->"C:\WINDOWS\$NtUninstallKB976098-v2$\spuninst\spuninst.exe"
Détecteur de flux Windows Live Toolbar (Windows Live Toolbar)-->MsiExec.exe /X{EFFCB0F1-CFEC-48D4-B793-EBFCAE852976}
eoEngine 7.0-->"C:\Program Files\EoRezo\unins000.exe"
Extension de Windows Live Toolbar (Windows Live Toolbar)-->MsiExec.exe /X{0CA6047C-D28B-4295-834A-07C52BA20C2D}
Galerie de photos Windows Live-->MsiExec.exe /X{B131E59D-202C-43C6-84C9-68F0C37541F1}
Google Toolbar for Internet Explorer-->regsvr32 /u /s "c:\program files\google\googletoolbar2.dll"
HijackThis 2.0.2-->"C:\Program Files\trend micro\HijackThis.exe" /uninstall
Hotfix for Microsoft .NET Framework 3.5 SP1 (KB953595)-->C:\WINDOWS\system32\msiexec.exe /package {CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9} /uninstall /qb+ REBOOTPROMPT=""
Hotfix for Microsoft .NET Framework 3.5 SP1 (KB958484)-->C:\WINDOWS\system32\msiexec.exe /package {CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9} /uninstall {A7EEA2F2-BFCD-4A54-A575-7B81A786E658} /qb+ REBOOTPROMPT=""
Hotfix for Windows Media Format 11 SDK (KB929399)-->"C:\WINDOWS\$NtUninstallKB929399$\spuninst\spuninst.exe"
Installation Windows Live-->C:\Program Files\Windows Live\Installer\wlarp.exe
Installation Windows Live-->MsiExec.exe /I{46ABBC54-1872-4AA3-95E2-F2C063A63F31}
J2SE Runtime Environment 5.0 Update 11-->MsiExec.exe /I{3248F0A8-6813-11D6-A77B-00B0D0150110}
Java(TM) 6 Update 17-->MsiExec.exe /X{26A24AE4-039D-4CA4-87B4-2F83216013FF}
Java(TM) 6 Update 3-->MsiExec.exe /I{3248F0A8-6813-11D6-A77B-00B0D0160030}
Junk Mail filter update-->MsiExec.exe /I{E2DFE069-083E-4631-9B6C-43C48E991DE5}
Kwinzy 1.0 build 143-->C:\Program Files\KwinzySrch\uninstall.exe
Lecteur Windows Media 11-->"C:\Program Files\Windows Media Player\Setup_wm.exe" /Uninstall
Macromedia Flash Player 8-->C:\WINDOWS\system32\Macromed\Flash\UninstFl.exe
Menus intelligents (Windows Live Toolbar)-->MsiExec.exe /X{0CC70FEF-5068-4CD5-B4DE-86FFD98EC929}
Microsoft .NET Framework 1.1 Security Update (KB953297)-->"C:\WINDOWS\Microsoft.NET\Framework\v1.1.4322\Updates\hotfix.exe" "C:\WINDOWS\Microsoft.NET\Framework\v1.1.4322\Updates\M953297\M953297Uninstall.msp"
Microsoft .NET Framework 1.1-->msiexec.exe /X {CB2F7EDD-9D1F-43C1-90FC-4F52EAE172A1}
Microsoft .NET Framework 1.1-->MsiExec.exe /X{CB2F7EDD-9D1F-43C1-90FC-4F52EAE172A1}
Microsoft .NET Framework 2.0 Service Pack 2-->MsiExec.exe /I{C09FB3CD-3D0C-3F2D-899A-6A1D67F2073F}
Microsoft .NET Framework 3.0 Service Pack 2-->MsiExec.exe /I{A3051CD0-2F64-3813-A88D-B8DCCDE8F8C7}
Microsoft .NET Framework 3.5 SP1-->C:\WINDOWS\Microsoft.NET\Framework\v3.5\Microsoft .NET Framework 3.5 SP1\setup.exe
Microsoft .NET Framework 3.5 SP1-->MsiExec.exe /I{CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9}
Microsoft Choice Guard-->MsiExec.exe /X{F0E12BBA-AD66-4022-A453-A1C8A0C4D570}
Microsoft Compression Client Pack 1.0 for Windows XP-->"C:\WINDOWS\$NtUninstallMSCompPackV1$\spuninst\spuninst.exe"
Microsoft Internationalized Domain Names Mitigation APIs-->"C:\WINDOWS\$NtServicePackUninstallIDNMitigationAPIs$\spuninst\spuninst.exe"
Microsoft National Language Support Downlevel APIs-->"C:\WINDOWS\$NtServicePackUninstallNLSDownlevelMapping$\spuninst\spuninst.exe"
Microsoft Office Live Add-in 1.3-->MsiExec.exe /I{57F0ED40-8F11-41AA-B926-4A66D0D1A9CC}
Microsoft Office Outlook Connector-->MsiExec.exe /I{95120000-0122-040C-0000-0000000FF1CE}
Microsoft Office Professional Edition 2003-->MsiExec.exe /I{9011040C-6000-11D3-8CFE-0150048383C9}
Microsoft Search Enhancement Pack-->MsiExec.exe /X{4CBA3D4C-8F51-4D60-B27E-F6B641C571E7}
Microsoft Silverlight-->MsiExec.exe /X{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}
Microsoft SQL Server 2005 Compact Edition [ENU]-->MsiExec.exe /I{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}
Microsoft Sync Framework Runtime Native v1.0 (x86)-->MsiExec.exe /I{8A74E887-8F0F-4017-AF53-CBA42211AAA5}
Microsoft Sync Framework Services Native v1.0 (x86)-->MsiExec.exe /I{BD64AF4A-8C80-4152-AD77-FCDDF05208AB}
Microsoft User-Mode Driver Framework Feature Pack 1.0-->"C:\WINDOWS\$NtUninstallWudf01000$\spuninst\spuninst.exe"
Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053-->MsiExec.exe /X{770657D0-A123-3C07-8E44-1C83EC895118}
Microsoft Visual C++ 2005 Redistributable-->MsiExec.exe /X{837b34e3-7c30-493c-8f6a-2b0f04e2912c}
Microsoft Visual C++ 2008 ATL Update kb973924 - x86 9.0.30729.4148-->MsiExec.exe /X{002D9D5E-29BA-3E6D-9BC4-3D7D6DBC735C}
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17-->MsiExec.exe /X{9A25302D-30C0-39D9-BD6F-21E6EC160475}
Mise à jour critique pour Lecteur Windows Media 11 (KB959772)-->"C:\WINDOWS\$NtUninstallKB959772_WM11$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Lecteur Windows Media (KB952069)-->"C:\WINDOWS\$NtUninstallKB952069_WM9$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Lecteur Windows Media (KB954155)-->"C:\WINDOWS\$NtUninstallKB954155_WM9$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Lecteur Windows Media (KB968816)-->"C:\WINDOWS\$NtUninstallKB968816_WM9$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Lecteur Windows Media (KB973540)-->"C:\WINDOWS\$NtUninstallKB973540_WM9$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Lecteur Windows Media 11 (KB936782)-->"C:\WINDOWS\$NtUninstallKB936782_WMP11$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Lecteur Windows Media 11 (KB954154)-->"C:\WINDOWS\$NtUninstallKB954154_WM11$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Lecteur Windows Media 8 (KB917734)-->"C:\WINDOWS\$NtUninstallKB917734_WMP8$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Lecteur Windows Media 9 (KB917734)-->"C:\WINDOWS\$NtUninstallKB917734_WMP9$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows Internet Explorer 7 (KB928090)-->"C:\WINDOWS\ie7updates\KB928090-IE7\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows Internet Explorer 7 (KB931768)-->"C:\WINDOWS\ie7updates\KB931768-IE7\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows Internet Explorer 7 (KB933566)-->"C:\WINDOWS\ie7updates\KB933566-IE7\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows Internet Explorer 7 (KB937143)-->"C:\WINDOWS\ie7updates\KB937143-IE7\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows Internet Explorer 7 (KB938127)-->"C:\WINDOWS\ie7updates\KB938127-IE7\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows Internet Explorer 7 (KB939653)-->"C:\WINDOWS\ie7updates\KB939653-IE7\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows Internet Explorer 7 (KB942615)-->"C:\WINDOWS\ie7updates\KB942615-IE7\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows Internet Explorer 7 (KB944533)-->"C:\WINDOWS\ie7updates\KB944533-IE7\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows Internet Explorer 7 (KB950759)-->"C:\WINDOWS\ie7updates\KB950759-IE7\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows Internet Explorer 7 (KB953838)-->"C:\WINDOWS\ie7updates\KB953838-IE7\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows Internet Explorer 7 (KB956390)-->"C:\WINDOWS\ie7updates\KB956390-IE7\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows Internet Explorer 7 (KB958215)-->"C:\WINDOWS\ie7updates\KB958215-IE7\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows Internet Explorer 7 (KB960714)-->"C:\WINDOWS\ie7updates\KB960714-IE7\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows Internet Explorer 7 (KB961260)-->"C:\WINDOWS\ie7updates\KB961260-IE7\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows Internet Explorer 7 (KB963027)-->"C:\WINDOWS\ie7updates\KB963027-IE7\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows Internet Explorer 7 (KB969897)-->"C:\WINDOWS\ie7updates\KB969897-IE7\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows Internet Explorer 7 (KB972260)-->"C:\WINDOWS\ie7updates\KB972260-IE7\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows Internet Explorer 7 (KB974455)-->"C:\WINDOWS\ie7updates\KB974455-IE7\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows Internet Explorer 7 (KB976325)-->"C:\WINDOWS\ie7updates\KB976325-IE7\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB923561)-->"C:\WINDOWS\$NtUninstallKB923561$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB938464)-->"C:\WINDOWS\$NtUninstallKB938464$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB938464-v2)-->"C:\WINDOWS\$NtUninstallKB938464-v2$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB941569)-->"C:\WINDOWS\$NtUninstallKB941569$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB946648)-->"C:\WINDOWS\$NtUninstallKB946648$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB950760)-->"C:\WINDOWS\$NtUninstallKB950760$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB950762)-->"C:\WINDOWS\$NtUninstallKB950762$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB950974)-->"C:\WINDOWS\$NtUninstallKB950974$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB951066)-->"C:\WINDOWS\$NtUninstallKB951066$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB951376)-->"C:\WINDOWS\$NtUninstallKB951376$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB951376-v2)-->"C:\WINDOWS\$NtUninstallKB951376-v2$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB951698)-->"C:\WINDOWS\$NtUninstallKB951698$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB951748)-->"C:\WINDOWS\$NtUninstallKB951748$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB952004)-->"C:\WINDOWS\$NtUninstallKB952004$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB952954)-->"C:\WINDOWS\$NtUninstallKB952954$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB953839)-->"C:\WINDOWS\$NtUninstallKB953839$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB954211)-->"C:\WINDOWS\$NtUninstallKB954211$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB954459)-->"C:\WINDOWS\$NtUninstallKB954459$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB954600)-->"C:\WINDOWS\$NtUninstallKB954600$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB955069)-->"C:\WINDOWS\$NtUninstallKB955069$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB956391)-->"C:\WINDOWS\$NtUninstallKB956391$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB956572)-->"C:\WINDOWS\$NtUninstallKB956572$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB956744)-->"C:\WINDOWS\$NtUninstallKB956744$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB956802)-->"C:\WINDOWS\$NtUninstallKB956802$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB956803)-->"C:\WINDOWS\$NtUninstallKB956803$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB956841)-->"C:\WINDOWS\$NtUninstallKB956841$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB956844)-->"C:\WINDOWS\$NtUninstallKB956844$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB957095)-->"C:\WINDOWS\$NtUninstallKB957095$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB957097)-->"C:\WINDOWS\$NtUninstallKB957097$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB958644)-->"C:\WINDOWS\$NtUninstallKB958644$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB958687)-->"C:\WINDOWS\$NtUninstallKB958687$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB958690)-->"C:\WINDOWS\$NtUninstallKB958690$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB958869)-->"C:\WINDOWS\$NtUninstallKB958869$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB959426)-->"C:\WINDOWS\$NtUninstallKB959426$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB960225)-->"C:\WINDOWS\$NtUninstallKB960225$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB960715)-->"C:\WINDOWS\$NtUninstallKB960715$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB960803)-->"C:\WINDOWS\$NtUninstallKB960803$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB960859)-->"C:\WINDOWS\$NtUninstallKB960859$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB961371)-->"C:\WINDOWS\$NtUninstallKB961371$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB961373)-->"C:\WINDOWS\$NtUninstallKB961373$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB961501)-->"C:\WINDOWS\$NtUninstallKB961501$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB968537)-->"C:\WINDOWS\$NtUninstallKB968537$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB969059)-->"C:\WINDOWS\$NtUninstallKB969059$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB969898)-->"C:\WINDOWS\$NtUninstallKB969898$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB969947)-->"C:\WINDOWS\$NtUninstallKB969947$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB970238)-->"C:\WINDOWS\$NtUninstallKB970238$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB970430)-->"C:\WINDOWS\$NtUninstallKB970430$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB971486)-->"C:\WINDOWS\$NtUninstallKB971486$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB971557)-->"C:\WINDOWS\$NtUninstallKB971557$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB971633)-->"C:\WINDOWS\$NtUninstallKB971633$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB971657)-->"C:\WINDOWS\$NtUninstallKB971657$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB971961)-->"C:\WINDOWS\$NtUninstallKB971961$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB973346)-->"C:\WINDOWS\$NtUninstallKB973346$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB973354)-->"C:\WINDOWS\$NtUninstallKB973354$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB973507)-->"C:\WINDOWS\$NtUninstallKB973507$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB973525)-->"C:\WINDOWS\$NtUninstallKB973525$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB973869)-->"C:\WINDOWS\$NtUninstallKB973869$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB973904)-->"C:\WINDOWS\$NtUninstallKB973904$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB974112)-->"C:\WINDOWS\$NtUninstallKB974112$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB974318)-->"C:\WINDOWS\$NtUninstallKB974318$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB974392)-->"C:\WINDOWS\$NtUninstallKB974392$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB974571)-->"C:\WINDOWS\$NtUninstallKB974571$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB975025)-->"C:\WINDOWS\$NtUninstallKB975025$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB975467)-->"C:\WINDOWS\$NtUninstallKB975467$\spuninst\spuninst.exe"
Mise à jour pour Windows Internet Explorer 7 (KB976749)-->"C:\WINDOWS\ie7updates\KB976749-IE7\spuninst\spuninst.exe"
Mise à jour pour Windows XP (KB951072-v2)-->"C:\WINDOWS\$NtUninstallKB951072-v2$\spuninst\spuninst.exe"
Mise à jour pour Windows XP (KB951978)-->"C:\WINDOWS\$NtUninstallKB951978$\spuninst\spuninst.exe"
Mise à jour pour Windows XP (KB955839)-->"C:\WINDOWS\$NtUninstallKB955839$\spuninst\spuninst.exe"
Mise à jour pour Windows XP (KB961503)-->"C:\WINDOWS\$NtUninstallKB961503$\spuninst\spuninst.exe"
Mise à jour pour Windows XP (KB967715)-->"C:\WINDOWS\$NtUninstallKB967715$\spuninst\spuninst.exe"
Mise à jour pour Windows XP (KB968389)-->"C:\WINDOWS\$NtUninstallKB968389$\spuninst\spuninst.exe"
Mise à jour pour Windows XP (KB971737)-->"C:\WINDOWS\$NtUninstallKB971737$\spuninst\spuninst.exe"
Mise à jour pour Windows XP (KB973687)-->"C:\WINDOWS\$NtUninstallKB973687$\spuninst\spuninst.exe"
Mise à jour pour Windows XP (KB973815)-->"C:\WINDOWS\$NtUninstallKB973815$\spuninst\spuninst.exe"
Mozilla Firefox (3.0.15)-->C:\Program Files\Mozilla Firefox\uninstall\helper.exe
MSI Star Cam 370i-->C:\Program Files\InstallShield Installation Information\{ECD03DA7-5952-406A-8156-5F0C93618D1F}\setup.exe -runfromtemp -l0x040c -removeonly
MSVCRT-->MsiExec.exe /I{22B775E7-6C42-4FC5-8E10-9A5E3257BD94}
MSXML 4.0 SP2 (KB927978)-->MsiExec.exe /I{37477865-A3F1-4772-AD43-AAFC6BCFF99F}
MSXML 4.0 SP2 (KB954430)-->MsiExec.exe /I{86493ADD-824D-4B8E-BD72-8C5DCDC52A71}
MSXML 4.0 SP2 (KB973688)-->MsiExec.exe /I{F662A8E6-F4DC-41A2-901E-8C11F044BDEC}
OneCare Advisor (Windows Live Toolbar)-->MsiExec.exe /X{6D7F8D4B-D1A4-402A-973E-31E90940E585}
Outil de téléchargement Windows Live-->MsiExec.exe /I{205C6BDD-7B73-42DE-8505-9A093F35A238}
PowerDVD-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{6811CAA0-BF12-11D4-9EA1-0050BAE317E1}\Setup.exe" -uninstall
QuickTime-->C:\WINDOWS\unvise32qt.exe C:\WINDOWS\system32\QuickTime\Uninstall.log
Realtek AC'97 Audio-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\engine\6\INTEL3~1\ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{FB08F381-6533-4108-B7DD-039E11FBC27E}\setup.exe" REMOVE
Security Update for CAPICOM (KB931906)-->MsiExec.exe /I{0EFDF2F9-836D-4EB7-A32D-038BD3F1FB2A}
Security Update for CAPICOM (KB931906)-->MsiExec.exe /X{0EFDF2F9-836D-4EB7-A32D-038BD3F1FB2A}
Segoe UI-->MsiExec.exe /I{A1F66FC9-11EE-4F2F-98C9-16F8D1E69FB7}
SFR - Kit de connexion-->C:\Program Files\SFR\Kit\uninstall.exe
Update for Microsoft .NET Framework 3.5 SP1 (KB963707)-->C:\WINDOWS\system32\msiexec.exe /package {CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9} /uninstall {B2AE9C82-DC7B-3641-BFC8-87275C4F3607} /qb+ REBOOTPROMPT=""
VLC media player 0.9.8a-->C:\Program Files\VideoLAN\VLC\uninstall.exe
Windows Live Call-->MsiExec.exe /I{82C7B308-0BDD-49D8-8EA5-9CD3A3F9DF41}
Windows Live Communications Platform-->MsiExec.exe /I{3B4E636E-9D65-4D67-BA61-189800823F52}
Windows Live Contrôle parental-->MsiExec.exe /X{D5D81435-B8DE-4CAF-867F-7998F2B92CFC}
Windows Live Favorites pour Windows Live Toolbar-->MsiExec.exe /X{786C4AD1-DCBA-49A6-B0EF-B317A344BD66}
Windows Live FolderShare-->MsiExec.exe /X{2075CB0A-D26F-4DAA-B424-5079296B43BA}
Windows Live Mail-->MsiExec.exe /I{5DD76286-9BE7-4894-A990-E905E91AC818}
Windows Live Messenger-->MsiExec.exe /X{770F1BEC-2871-4E70-B837-FB8525FFA3B1}
Windows Live Toolbar-->MsiExec.exe /X{F7D27C70-90F5-49B9-B188-0A133C0CE353}
Windows Live Writer-->MsiExec.exe /X{4634B21A-CC07-4396-890C-2B8168661FEA}
Windows Media Format 11 runtime-->"C:\Program Files\Windows Media Player\wmsetsdk.exe" /UninstallAll
Windows Media Format 11 runtime-->"C:\WINDOWS\$NtUninstallWMFDist11$\spuninst\spuninst.exe"
Windows Media Player 11-->"C:\WINDOWS\$NtUninstallwmp11$\spuninst\spuninst.exe"
Windows XP Service Pack 3-->"C:\WINDOWS\$NtServicePackUninstall$\spuninst\spuninst.exe"

Hosts File Missing
======Security center information======

AV: AVG Anti-Virus Free

======System event log======

Computer Name: MR-IQ0OE14E0D1M
Event Code: 7036
Message: Le service Office Source Engine est entré dans l'état : en cours d'exécution.

Record Number: 13115
Source Name: Service Control Manager
Time Written: 20091124123455.000000+060
Event Type: Informations
User:

Computer Name: MR-IQ0OE14E0D1M
Event Code: 7035
Message: Un contrôle Démarrer a correctement été envoyé au service Office Source Engine.

Record Number: 13114
Source Name: Service Control Manager
Time Written: 20091124123455.000000+060
Event Type: Informations
User: MR-IQ0OE14E0D1M\Mimi

Computer Name: MR-IQ0OE14E0D1M
Event Code: 7035
Message: Un contrôle Démarrer a correctement été envoyé au service Symantec Eraser Control driver.

Record Number: 13113
Source Name: Service Control Manager
Time Written: 20091124123041.000000+060
Event Type: Informations
User: AUTORITE NT\SYSTEM

Computer Name: MR-IQ0OE14E0D1M
Event Code: 7035
Message: Un contrôle Démarrer a correctement été envoyé au service Symantec Real Time Storage Protection.

Record Number: 13112
Source Name: Service Control Manager
Time Written: 20091124122134.000000+060
Event Type: Informations
User: AUTORITE NT\SYSTEM

Computer Name: MR-IQ0OE14E0D1M
Event Code: 2003
Message:
Record Number: 13111
Source Name: SRTSP
Time Written: 20091124122131.000000+060
Event Type: Informations
User:

=====Application event log=====

Computer Name: MR-IQ0OE14E0D1M
Event Code: 101
Message: msnmsgr (2440) Le moteur de base de données est arrêté.

Record Number: 28975
Source Name: ESENT
Time Written: 20090330171429.000000+120
Event Type: Informations
User:

Computer Name: MR-IQ0OE14E0D1M
Event Code: 103
Message: msnmsgr (2440) \\.\C:\Documents and Settings\Mimi\Local Settings\Application Data\Microsoft\Messenger\tamour72@hotmail.fr\SharingMetadata\Working\database_9C40_3146_4031_2902\dfsr.db: Le moteur de base de données a arrêté une instance (0).

Record Number: 28974
Source Name: ESENT
Time Written: 20090330171429.000000+120
Event Type: Informations
User:

Computer Name: MR-IQ0OE14E0D1M
Event Code: 102
Message: msnmsgr (2440) \\.\C:\Documents and Settings\Mimi\Local Settings\Application Data\Microsoft\Messenger\tamour72@hotmail.fr\SharingMetadata\Working\database_9C40_3146_4031_2902\dfsr.db: Le moteur de base de données a démarré une nouvelle instance (0).

Record Number: 28973
Source Name: ESENT
Time Written: 20090330165027.000000+120
Event Type: Informations
User:

Computer Name: MR-IQ0OE14E0D1M
Event Code: 100
Message: msnmsgr (2440) Le moteur de base de données 5.01.2600.5512 est démarré.

Record Number: 28972
Source Name: ESENT
Time Written: 20090330165027.000000+120
Event Type: Informations
User:

Computer Name: MR-IQ0OE14E0D1M
Event Code: 12001
Message:
Record Number: 28971
Source Name: usnjsvc
Time Written: 20090330165024.000000+120
Event Type:
User:

======Environment variables======

"ComSpec"=%SystemRoot%\system32\cmd.exe
"Path"=%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\System32\Wbem;C:\Program Files\Samsung\Samsung PC Studio 3\
"windir"=%SystemRoot%
"OS"=Windows_NT
"PROCESSOR_ARCHITECTURE"=x86
"PROCESSOR_LEVEL"=6
"PROCESSOR_IDENTIFIER"=x86 Family 6 Model 10 Stepping 0, AuthenticAMD
"PROCESSOR_REVISION"=0a00
"NUMBER_OF_PROCESSORS"=1
"PATHEXT"=.COM;.EXE;.BAT;.CMD;.VBS;.VBE;.JS;.JSE;.WSF;.WSH
"TEMP"=%SystemRoot%\TEMP
"TMP"=%SystemRoot%\TEMP
"FP_NO_HOST_CHECK"=NO

-----------------EOF-----------------
0
Réponse 14 / 25
clm14 Messages postés 13 Date d'inscription lundi 14 décembre 2009 Statut Membre Dernière intervention 15 décembre 2009 1
14 déc. 2009 à 22:30
Voila le second ,

Logfile of random's system information tool 1.06 (written by random/random)
Run by Mimi at 2009-12-14 22:25:52
Microsoft Windows XP Édition familiale Service Pack 3
System drive C: has 141 GB (90%) free of 157 GB
Total RAM: 511 MB (18% free)

Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 22:27:21, on 14/12/2009
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.6000.16945)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\AVG\AVG9\avgchsvx.exe
C:\Program Files\AVG\AVG9\avgrsx.exe
C:\Program Files\AVG\AVG9\avgcsrvx.exe
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\AVG\AVG9\avgwdsvc.exe
C:\Program Files\Java\jre6\bin\jqs.exe
C:\Program Files\Microsoft\Search Enhancement Pack\SeaPort\SeaPort.exe
C:\Program Files\AVG\AVG9\avgnsx.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\System32\wbem\wmiapsrv.exe
C:\Program Files\QuickTime\qttask.exe
C:\WINDOWS\vsnpstd3.exe
C:\Program Files\Java\jre6\bin\jusched.exe
C:\PROGRA~1\AVG\AVG9\avgtray.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
C:\Program Files\Windows Live\Messenger\msnmsgr.exe
C:\Program Files\Windows Live\Contacts\wlcomm.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\WINDOWS\system32\cmd.exe
C:\Documents and Settings\Mimi\Bureau\RSIT.exe
C:\Program Files\trend micro\Mimi.exe
C:\Lop SD\catchme.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.theprizeday.com/today.php
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.yoower.com/
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R1 - HKCU\Software\Microsoft\Internet Explorer\SearchURL,(Default) = http://g.msn.fr/0SEFRFR/SAOS01?FORM=TOOLBR
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
R3 - URLSearchHook: AVG Security Toolbar BHO - {A3BC75A2-1F87-4686-AA43-5347D756017C} - C:\Program Files\AVG\AVG9\Toolbar\IEToolbar.dll
O2 - BHO: Automated Content Enhancer - {1D74E9DD-8987-448b-B2CB-67FFF2B8A932} - C:\Program Files\Automated Content Enhancer\4.1.0.5050\ACEIEAddOn.dll
O2 - BHO: WormRadar.com IESiteBlocker.NavFilter - {3CA2F312-6F6E-4B53-A66E-4E65E497C8C0} - C:\Program Files\AVG\AVG9\avgssie.dll
O2 - BHO: Customized Platform Advancer - {42C7C39F-3128-4a17-BDB7-91C46032B5B9} - C:\Program Files\Customized Platform Advancer\3.1.0.1540\CPAIEAddOn.dll
O2 - BHO: (no name) - {5C255C8A-E604-49b4-9D64-90988571CECB} - (no file)
O2 - BHO: EoRezoBHO - {64F56FC1-1272-44CD-BA6E-39723696E350} - C:\PROGRA~1\EoRezo\EoAdv\EOREZO~1.DLL
O2 - BHO: Search Helper - {6EBF7485-159F-4bff-A14F-B9E3AAC4465B} - C:\Program Files\Microsoft\Search Enhancement Pack\Search Helper\SEPsearchhelperie.dll
O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: AVG Security Toolbar BHO - {A3BC75A2-1F87-4686-AA43-5347D756017C} - C:\Program Files\AVG\AVG9\Toolbar\IEToolbar.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar2.dll
O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\5.4.4525.1752\swg.dll
O2 - BHO: Content Management Wizard - {B72681C0-A222-4b21-A0E2-53A5A5CA3D41} - C:\Program Files\Content Management Wizard\1.1.0.1820\CMWIE.dll
O2 - BHO: TCP - {CAC89FF9-34A9-4431-8CFE-292A47F843BC} - C:\Program Files\Textual Content Provider\1.1.0.1380\TCPIE.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll
O2 - BHO: Windows Live Toolbar Helper - {E15A8DC0-8516-42A1-81EA-DC94EC1ACF10} - C:\Program Files\Windows Live\Toolbar\wltcore.dll
O2 - BHO: JQSIEStartDetectorImpl - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll
O2 - BHO: Web Search Operator - {EB4A577D-BCAD-4b1c-8AF2-9A74B8DD3431} - C:\Program Files\Web Search Operator\3.1.0.1800\wso.dll
O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar2.dll
O3 - Toolbar: &Windows Live Toolbar - {21FA44EF-376D-4D53-9B0F-8A89D3229068} - C:\Program Files\Windows Live\Toolbar\wltcore.dll
O3 - Toolbar: (no name) - {66886C4D-B307-4ECA-A228-52CA9B9851A4} - (no file)
O3 - Toolbar: AVG Security Toolbar - {CCC7A320-B3CA-4199-B1A6-9F516DD69829} - C:\Program Files\AVG\AVG9\Toolbar\IEToolbar.dll
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [snpstd3] C:\WINDOWS\vsnpstd3.exe
O4 - HKLM\..\Run: [Internet Today Task] "C:\Program Files\Internet Today\1.1.0.1090\InternetToday.exe"
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre6\bin\jusched.exe"
O4 - HKLM\..\Run: [AVG9_TRAY] C:\PROGRA~1\AVG\AVG9\avgtray.exe
O4 - HKCU\..\Run: [WOOKIT] C:\PROGRA~1\Wanadoo\Shell.exe appLaunchClientZone.shl|PARAM= cnx
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [swg] "C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe"
O4 - HKCU\..\Run: [ares] "C:\Program Files\Ares\Ares.exe" -h
O4 - HKCU\..\Run: [msnmsgr] "C:\Program Files\Windows Live\Messenger\msnmsgr.exe" /background
O4 - HKCU\..\Run: [updateMgr] "C:\Program Files\Adobe\Acrobat 7.0\Reader\AdobeUpdateManager.exe" AcRdB7_0_9 -reboot 1
O4 - HKCU\..\Run: [TomTomHOME.exe] "C:\Program Files\TomTom HOME 2\TomTomHOMERunner.exe"
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'SERVICE RÉSEAU')
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'Default user')
O8 - Extra context menu item: Add to Windows &Live Favorites - http://favorites.live.com/quickadd.aspx
O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~2\OFFICE11\EXCEL.EXE/3000
O9 - Extra button: Ajout Direct - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra 'Tools' menuitem: &Ajout Direct dans Windows Live Writer - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra button: (no name) - {53F6FCCD-9E22-4d71-86EA-6E43136192AB} - (no file)
O9 - Extra button: (no name) - {925DAB62-F9AC-4221-806A-057BFB1014AA} - (no file)
O9 - Extra button: Recherche - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\OFFICE11\REFIEBAR.DLL
O9 - Extra button: PartyPoker.com - {B7FE5D70-9AA2-40F1-9C6B-12A255F085E1} - C:\Program Files\PartyGaming\PartyPoker\RunApp.exe (file missing)
O9 - Extra 'Tools' menuitem: PartyPoker.com - {B7FE5D70-9AA2-40F1-9C6B-12A255F085E1} - C:\Program Files\PartyGaming\PartyPoker\RunApp.exe (file missing)
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O16 - DPF: {2250C29C-C5E9-4F55-BE4E-01E45A40FCF1} (CMediaMix Object) - http://musicmix.messenger.msn.com/Medialogic.CAB
O16 - DPF: {5D6F45B3-9043-443D-A792-115447494D24} (UnoCtrl Class) - http://messenger.zone.msn.com/FR-FR/a-UNO1/GAME_UNO1.cab
O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) - http://update.microsoft.com/...
O16 - DPF: {B8BE5E93-A60C-4D26-A2DC-220313175592} (MSN Games - Installer) - http://messenger.zone.msn.com/binary/ZIntro.cab56649.cab
O16 - DPF: {BD393C14-72AD-4790-A095-76522973D6B8} (CBreakshotControl Class) - http://messenger.zone.msn.com/binary/Bankshot.cab57213.cab
O16 - DPF: {C3F79A2B-B9B4-4A66-B012-3EE46475B072} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsPAClient.cab56907.cab
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab
O18 - Protocol: linkscanner - {F274614C-63F8-47D5-A4D1-FBDDE494F8D1} - C:\Program Files\AVG\AVG9\avgpp.dll
O20 - Winlogon Notify: avgrsstarter - C:\WINDOWS\SYSTEM32\avgrsstx.dll
O23 - Service: Ares Chatroom server (AresChatServer) - Unknown owner - C:\Program Files\Ares\chatServer.exe (file missing)
O23 - Service: AVG Anti-Spyware Guard - GRISOFT s.r.o. - C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe
O23 - Service: AVG Free WatchDog (avg9wd) - AVG Technologies CZ, s.r.o. - C:\Program Files\AVG\AVG9\avgwdsvc.exe
O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Fichiers communs\InstallShield\Driver\1150\Intel 32\IDriverT.exe
O23 - Service: Java Quick Starter (JavaQuickStarterService) - Sun Microsystems, Inc. - C:\Program Files\Java\jre6\bin\jqs.exe
0
Réponse 15 / 25
moment de grace Messages postés 29042 Date d'inscription samedi 6 décembre 2008 Statut Contributeur sécurité Dernière intervention 18 juillet 2013 2 272
14 déc. 2009 à 22:36
as tu fais Lop S&D option 2 ?

0
Réponse 16 / 25
clm14 Messages postés 13 Date d'inscription lundi 14 décembre 2009 Statut Membre Dernière intervention 15 décembre 2009 1
14 déc. 2009 à 22:37
Oui tiens voila le rapport ;

--------------------\\ Lop S&D 4.2.5-0 XP/Vista

Microsoft Windows XP Édition familiale ( v5.1.2600 ) Service Pack 3
X86-based PC ( Uniprocessor Free : AMD Athlon(tm) XP 3000+ )
BIOS : Phoenix - AwardBIOS v6.00PG
USER : Mimi ( Administrator )
BOOT : Normal boot
Antivirus : AVG Anti-Virus Free 9.0 (Activated)
C:\ (Local Disk) - NTFS - Total:153 Go (Free:137 Go)
D:\ (CD or DVD)
E:\ (CD or DVD)

"C:\Lop SD" ( MAJ : 19-12-2008|23:40 )
Option : [2] ( 14/12/2009|22:25 )


\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\ SUPPRESSION

Supprime! - C:\DOCUME~1\Mimi\APPLIC~1\BitDownload\Data
Supprime! - C:\DOCUME~1\ALLUSE~1\MENUDM~1\PROGRA~1\BitDownload\BitDownload.lnk
Supprime! - C:\DOCUME~1\ALLUSE~1\MENUDM~1\PROGRA~1\BitDownload\Uninstall BitDownload.lnk
Supprime! - C:\Program Files\BitTorrent Fastest Tool\INSTALL.LOG
Supprime! - C:\DOCUME~1\Mimi\Cookies\mimi@advertstream[1].txt
Supprime! - C:\DOCUME~1\Mimi\Cookies\mimi@d2.advertserve[1].txt
Supprime! - C:\DOCUME~1\Mimi\Cookies\mimi@adultfriendfinder[2].txt
Supprime! - C:\DOCUME~1\Mimi\Cookies\mimi@ads.adultadvertising[2].txt
Supprime! - C:\DOCUME~1\Mimi\Cookies\mimi@advertising[1].txt
Supprime! - C:\DOCUME~1\Mimi\Cookies\mimi@ero-advertising[2].txt
Supprime! - C:\DOCUME~1\Mimi\Cookies\mimi@bigpoint[2].txt
Supprime! - C:\DOCUME~1\Mimi\Cookies\mimi@fr.seafight.bigpoint[2].txt
Supprime! - C:\DOCUME~1\Mimi\Cookies\mimi@fr.pacificpoker[1].txt
Supprime! - C:\DOCUME~1\Mimi\Cookies\mimi@pacificpoker[1].txt
Supprime! - C:\DOCUME~1\Mimi\Cookies\mimi@888[2].txt
Supprime! - C:\WINDOWS\Tasks\A8D9AD6891CA222C.job
Supprime! - C:\DOCUME~1\Mimi\APPLIC~1\spammo~1
Supprime! - C:\Program Files\spammo~1
Supprime! - C:\DOCUME~1\Mimi\APPLIC~1\Bitdownload
Supprime! - C:\DOCUME~1\ALLUSE~1\MENUDM~1\PROGRA~1\BitDownload
Supprime! - C:\Program Files\BitTorrent Fastest Tool

\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\


--------------------\\ Listing des dossiers dans APPLIC~1

[09/09/2008|12:56] C:\DOCUME~1\ADMINI~1\APPLIC~1\Adobe
[09/09/2008|12:56] C:\DOCUME~1\ADMINI~1\APPLIC~1\Macromedia
[06/03/2007|18:17] C:\DOCUME~1\ADMINI~1\APPLIC~1\Microsoft
[09/09/2008|12:55] C:\DOCUME~1\ADMINI~1\APPLIC~1\Mozilla

[09/12/2009|11:54] C:\DOCUME~1\ADMINI~1.MR-\APPLIC~1\Microsoft
[09/09/2008|20:52] C:\DOCUME~1\ADMINI~1.MR-\APPLIC~1\Mozilla

[24/11/2009|19:20] C:\DOCUME~1\ALLUSE~1\APPLIC~1\{7B6BA59A-FB0E-4499-8536-A7420338BF3B}
[25/05/2007|11:28] C:\DOCUME~1\ALLUSE~1\APPLIC~1\acid dog bash tick
[09/12/2009|11:59] C:\DOCUME~1\ALLUSE~1\APPLIC~1\AVG Security Toolbar
[09/12/2009|11:55] C:\DOCUME~1\ALLUSE~1\APPLIC~1\avg9
[07/03/2007|15:59] C:\DOCUME~1\ALLUSE~1\APPLIC~1\CyberLink
[06/10/2008|18:48] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Fighters
[27/04/2009|17:30] C:\DOCUME~1\ALLUSE~1\APPLIC~1\F-Secure
[20/03/2009|16:35] C:\DOCUME~1\ALLUSE~1\APPLIC~1\fssg
[07/03/2007|17:04] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Google
[30/03/2008|18:18] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Grisoft
[19/06/2009|05:51] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Kwinzy
[24/11/2009|13:12] C:\DOCUME~1\ALLUSE~1\APPLIC~1\KwinzySrch
[11/09/2008|08:33] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Logishrd
[14/05/2008|09:52] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Logitech
[01/01/2009|14:11] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Malwarebytes
[14/04/2009|11:42] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Microsoft
[05/03/2009|01:28] C:\DOCUME~1\ALLUSE~1\APPLIC~1\MSN6
[25/11/2009|01:24] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Norton
[24/11/2009|12:11] C:\DOCUME~1\ALLUSE~1\APPLIC~1\NortonInstaller
[10/04/2008|22:26] C:\DOCUME~1\ALLUSE~1\APPLIC~1\pixelStorm
[07/03/2007|16:33] C:\DOCUME~1\ALLUSE~1\APPLIC~1\QuickTime
[24/11/2009|12:14] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Symantec
[06/10/2008|18:49] C:\DOCUME~1\ALLUSE~1\APPLIC~1\TEMP
[29/09/2008|18:40] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Trymedia
[06/03/2007|19:58] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Windows Genuine Advantage
[29/03/2007|20:30] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Windows Live Toolbar
[28/08/2008|17:40] C:\DOCUME~1\ALLUSE~1\APPLIC~1\wmp

[06/03/2007|18:17] C:\DOCUME~1\DEFAUL~1\APPLIC~1\Microsoft

[28/03/2008|09:31] C:\DOCUME~1\gaelle\APPLIC~1\Mozilla

[30/03/2008|19:14] C:\DOCUME~1\LOCALS~1\APPLIC~1\Help
[09/12/2009|11:54] C:\DOCUME~1\LOCALS~1\APPLIC~1\Microsoft
[26/05/2009|21:10] C:\DOCUME~1\LOCALS~1\APPLIC~1\Mozilla

[30/12/2008|18:35] C:\DOCUME~1\Mimi\APPLIC~1\Adobe
[19/07/2008|11:41] C:\DOCUME~1\Mimi\APPLIC~1\AdobeUM
[11/02/2008|20:14] C:\DOCUME~1\Mimi\APPLIC~1\Ahead
[17/02/2008|18:00] C:\DOCUME~1\Mimi\APPLIC~1\ConvertTemp
[26/05/2009|21:04] C:\DOCUME~1\Mimi\APPLIC~1\Digsby
[17/05/2009|12:26] C:\DOCUME~1\Mimi\APPLIC~1\DivX
[12/11/2009|08:28] C:\DOCUME~1\Mimi\APPLIC~1\dvdcss
[14/12/2009|19:05] C:\DOCUME~1\Mimi\APPLIC~1\EoRezo
[20/03/2009|16:46] C:\DOCUME~1\Mimi\APPLIC~1\F-Secure
[07/03/2007|17:00] C:\DOCUME~1\Mimi\APPLIC~1\Google
[30/03/2008|18:19] C:\DOCUME~1\Mimi\APPLIC~1\Grisoft
[08/03/2007|18:48] C:\DOCUME~1\Mimi\APPLIC~1\Help
[05/03/2009|02:22] C:\DOCUME~1\Mimi\APPLIC~1\Icone
[06/03/2007|18:22] C:\DOCUME~1\Mimi\APPLIC~1\Identities
[06/04/2008|18:46] C:\DOCUME~1\Mimi\APPLIC~1\InstallShield
[30/09/2008|09:09] C:\DOCUME~1\Mimi\APPLIC~1\ItsLabel
[15/10/2008|16:07] C:\DOCUME~1\Mimi\APPLIC~1\LimeWire
[20/02/2008|21:19] C:\DOCUME~1\Mimi\APPLIC~1\Macromedia
[01/01/2009|14:11] C:\DOCUME~1\Mimi\APPLIC~1\Malwarebytes
[26/05/2009|21:00] C:\DOCUME~1\Mimi\APPLIC~1\Microsoft
[27/08/2008|10:54] C:\DOCUME~1\Mimi\APPLIC~1\Mozilla
[06/03/2009|01:08] C:\DOCUME~1\Mimi\APPLIC~1\MSN6
[12/07/2009|20:59] C:\DOCUME~1\Mimi\APPLIC~1\Python-Eggs
[17/01/2009|19:39] C:\DOCUME~1\Mimi\APPLIC~1\Samsung
[07/03/2007|17:00] C:\DOCUME~1\Mimi\APPLIC~1\Sun
[07/03/2007|16:02] C:\DOCUME~1\Mimi\APPLIC~1\Symantec
[08/03/2007|20:56] C:\DOCUME~1\Mimi\APPLIC~1\Teleca
[23/05/2008|11:43] C:\DOCUME~1\Mimi\APPLIC~1\Temporary
[16/04/2009|13:30] C:\DOCUME~1\Mimi\APPLIC~1\TomTom
[21/05/2008|13:06] C:\DOCUME~1\Mimi\APPLIC~1\TransRender
[18/01/2009|01:29] C:\DOCUME~1\Mimi\APPLIC~1\vlc

[09/12/2009|11:54] C:\DOCUME~1\NETWOR~1\APPLIC~1\Microsoft

--------------------\\ Tâches planifiées dans C:\WINDOWS\tasks

[14/12/2009 20:01][--a------] C:\WINDOWS\tasks\PCConfidential.job
[14/12/2009 15:00][--a------] C:\WINDOWS\tasks\Nettoyage de disque.job
[14/12/2009 20:01][--ah-----] C:\WINDOWS\tasks\SA.DAT
[24/04/2003 13:00][-r-h-----] C:\WINDOWS\tasks\desktop.ini

--------------------\\ Listing des dossiers dans C:\Program Files

[07/03/2007|16:36] C:\Program Files\Adobe
[24/06/2009|19:11] C:\Program Files\Ahead
[30/03/2008|20:25] C:\Program Files\Alwil Software
[25/11/2009|13:33] C:\Program Files\Automated Content Enhancer
[09/12/2009|11:55] C:\Program Files\AVG
[07/03/2007|17:40] C:\Program Files\AvRack
[06/03/2007|18:15] C:\Program Files\ComPlus Applications
[25/11/2009|13:33] C:\Program Files\Content Management Wizard
[25/11/2009|13:33] C:\Program Files\Customized Platform Advancer
[07/03/2007|15:59] C:\Program Files\CyberLink
[24/11/2009|11:51] C:\Program Files\DivX
[29/09/2008|21:55] C:\Program Files\EoRezo
[24/11/2009|11:55] C:\Program Files\Fichiers communs
[08/11/2008|12:30] C:\Program Files\Fighters
[26/05/2009|21:02] C:\Program Files\Free Offers from Freeze.com
[07/03/2007|17:04] C:\Program Files\Google
[30/03/2008|18:18] C:\Program Files\Grisoft
[25/11/2009|13:39] C:\Program Files\HottieStar Toolbar
[05/03/2009|17:18] C:\Program Files\InstallShield Installation Information
[17/11/2009|09:09] C:\Program Files\InterActual
[10/12/2009|10:47] C:\Program Files\Internet Explorer
[20/03/2008|14:16] C:\Program Files\Inventel
[04/12/2009|16:05] C:\Program Files\Java
[24/11/2009|14:09] C:\Program Files\KwinzySrch
[12/10/2008|13:15] C:\Program Files\Messenger
[14/04/2009|11:37] C:\Program Files\Microsoft
[14/05/2008|18:07] C:\Program Files\Microsoft CAPICOM 2.1.0.2
[06/03/2007|18:18] C:\Program Files\microsoft frontpage
[08/03/2007|20:16] C:\Program Files\Microsoft Office
[28/11/2009|16:08] C:\Program Files\Microsoft Office Outlook Connector
[29/11/2009|20:48] C:\Program Files\Microsoft Silverlight
[14/04/2009|11:40] C:\Program Files\Microsoft SQL Server Compact Edition
[14/04/2009|11:42] C:\Program Files\Microsoft Sync Framework
[08/03/2007|20:17] C:\Program Files\Microsoft.NET
[12/10/2008|12:49] C:\Program Files\Movie Maker
[14/12/2009|20:33] C:\Program Files\Mozilla Firefox
[10/08/2009|23:36] C:\Program Files\MSBuild
[05/03/2009|01:28] C:\Program Files\MSN
[06/03/2007|18:15] C:\Program Files\MSN Gaming Zone
[09/03/2007|08:25] C:\Program Files\MSXML 4.0
[14/12/2009|20:32] C:\Program Files\Navilog1
[12/10/2008|12:35] C:\Program Files\NetMeeting
[14/08/2009|14:15] C:\Program Files\Outlook Express
[27/04/2009|17:33] C:\Program Files\Pack Securite
[23/06/2009|08:33] C:\Program Files\PartyGaming
[11/11/2009|00:52] C:\Program Files\PCFriendly
[07/03/2007|16:34] C:\Program Files\QuickTime
[07/03/2007|17:40] C:\Program Files\Realtek Sound Manager
[10/08/2009|23:36] C:\Program Files\Reference Assemblies
[17/01/2009|19:14] C:\Program Files\Samsung
[20/03/2008|14:55] C:\Program Files\Securitoo
[06/03/2007|18:17] C:\Program Files\Services en ligne
[04/12/2009|16:28] C:\Program Files\SFR
[28/10/2008|14:03] C:\Program Files\Switlle
[25/11/2009|00:17] C:\Program Files\Symantec
[25/11/2009|13:33] C:\Program Files\Textual Content Provider
[06/03/2007|18:22] C:\Program Files\Uninstall Information
[15/12/2008|00:00] C:\Program Files\VideoLAN
[06/03/2009|17:40] C:\Program Files\Wanadoo
[25/11/2009|13:32] C:\Program Files\Web Search Operator
[28/11/2009|16:07] C:\Program Files\Windows Live
[29/11/2007|22:57] C:\Program Files\Windows Live Favorites
[14/04/2009|11:37] C:\Program Files\Windows Live SkyDrive
[14/04/2009|11:42] C:\Program Files\Windows Live Toolbar
[06/03/2007|22:00] C:\Program Files\Windows Media Connect 2
[12/10/2008|12:35] C:\Program Files\Windows Media Player
[12/10/2008|12:35] C:\Program Files\Windows NT
[06/03/2007|19:32] C:\Program Files\WindowsUpdate
[26/05/2009|21:11] C:\Program Files\Winferno
[07/03/2007|17:29] C:\Program Files\WinRAR
[06/03/2007|18:18] C:\Program Files\xerox

--------------------\\ Listing des dossiers dans C:\Program Files\Fichiers communs

[07/03/2007|16:30] C:\Program Files\Fichiers communs\Adobe
[24/06/2009|19:10] C:\Program Files\Fichiers communs\Ahead
[08/03/2007|20:16] C:\Program Files\Fichiers communs\DESIGNER
[14/02/2008|23:10] C:\Program Files\Fichiers communs\InstallShield
[07/03/2007|16:57] C:\Program Files\Fichiers communs\Java
[11/09/2008|08:33] C:\Program Files\Fichiers communs\logishrd
[26/05/2009|20:11] C:\Program Files\Fichiers communs\Microsoft Shared
[06/03/2007|18:16] C:\Program Files\Fichiers communs\MSSoap
[06/03/2007|18:11] C:\Program Files\Fichiers communs\ODBC
[06/03/2007|18:16] C:\Program Files\Fichiers communs\Services
[06/04/2008|18:47] C:\Program Files\Fichiers communs\snpstd3
[06/03/2007|18:11] C:\Program Files\Fichiers communs\SpeechEngines
[25/11/2009|00:17] C:\Program Files\Fichiers communs\Symantec Shared
[28/11/2009|16:08] C:\Program Files\Fichiers communs\System
[28/10/2008|14:15] C:\Program Files\Fichiers communs\Teleca Shared
[14/04/2009|11:26] C:\Program Files\Fichiers communs\Windows Live

--------------------\\ Process

( 37 Processes )

... OK !

--------------------\\ Recherche avec S_Lop

Aucun fichier / dossier Lop trouvé !

--------------------\\ Recherche de Fichiers / Dossiers Lop

Aucun fichier / dossier Lop trouvé !

--------------------\\ Verification du Registre

..... OK !

--------------------\\ Verification du fichier Hosts

Fichier Hosts PROPRE


--------------------\\ Recherche de fichiers avec Catchme

catchme 0.3.1353 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2009-12-14 22:27:15
Windows 5.1.2600 Service Pack 3 NTFS
scanning hidden processes ...
scanning hidden files ...
scan completed successfully
hidden processes: 0
hidden files: 552

--------------------\\ Recherche d'autres infections

C:\WINDOWS\system32\aadgh.ini
C:\WINDOWS\system32\aadgh.ini2
C:\WINDOWS\system32\adeeg.ini
C:\WINDOWS\system32\adeeg.ini2
C:\WINDOWS\system32\bbdgh.ini
C:\WINDOWS\system32\bbdgh.ini2
C:\WINDOWS\system32\bcdgh.ini
C:\WINDOWS\system32\bcdgh.ini2
C:\WINDOWS\system32\ccbeg.ini
C:\WINDOWS\system32\ccbeg.ini2
C:\WINDOWS\system32\cehkj.ini
C:\WINDOWS\system32\cehkj.ini2
C:\WINDOWS\system32\cfiii.ini
C:\WINDOWS\system32\cfiii.ini2
C:\WINDOWS\system32\ddfii.ini
C:\WINDOWS\system32\ddfii.ini2
C:\WINDOWS\system32\ehkmp.ini
C:\WINDOWS\system32\ehkmp.ini2
C:\WINDOWS\system32\ggfii.ini
C:\WINDOWS\system32\ggfii.ini2
C:\WINDOWS\system32\hjjlm.ini
C:\WINDOWS\system32\hjjlm.ini2
C:\WINDOWS\system32\hjkmp.ini
C:\WINDOWS\system32\hjkmp.ini2
C:\WINDOWS\system32\ihjlm.ini
C:\WINDOWS\system32\ihjlm.ini2
C:\WINDOWS\system32\knqru.ini
C:\WINDOWS\system32\knqru.ini2
C:\WINDOWS\system32\lkllm.ini
C:\WINDOWS\system32\lkllm.ini2
C:\WINDOWS\system32\lmnnn.ini
C:\WINDOWS\system32\lmnnn.ini2
C:\WINDOWS\system32\oqpoq.ini
C:\WINDOWS\system32\oqpoq.ini2
C:\WINDOWS\system32\pqqru.ini
C:\WINDOWS\system32\pqqru.ini2
C:\WINDOWS\system32\psvut.ini
C:\WINDOWS\system32\psvut.ini2
C:\WINDOWS\system32\qqqss.ini
C:\WINDOWS\system32\qqqss.ini2
C:\WINDOWS\system32\qrsut.ini
C:\WINDOWS\system32\qrsut.ini2
C:\WINDOWS\system32\srsut.ini
C:\WINDOWS\system32\srsut.ini2
C:\WINDOWS\system32\stsut.ini
C:\WINDOWS\system32\stsut.ini2
C:\WINDOWS\system32\tvyay.ini
C:\WINDOWS\system32\tvyay.ini2
C:\WINDOWS\system32\utsut.ini
C:\WINDOWS\system32\utsut.ini2
C:\WINDOWS\system32\uwyay.ini
C:\WINDOWS\system32\uwyay.ini2
C:\WINDOWS\system32\uxbeg.ini
C:\WINDOWS\system32\uxbeg.ini2
C:\WINDOWS\system32\vvutv.ini
C:\WINDOWS\system32\vvutv.ini2
C:\WINDOWS\system32\vwadd.ini
C:\WINDOWS\system32\vwadd.ini2
C:\WINDOWS\system32\vxxbc.ini
C:\WINDOWS\system32\vxxbc.ini2
C:\WINDOWS\system32\vyabc.ini
C:\WINDOWS\system32\vyabc.ini2
C:\WINDOWS\system32\yacfe.ini
C:\WINDOWS\system32\yacfe.ini2
C:\WINDOWS\system32\yxadd.ini
C:\WINDOWS\system32\yxadd.ini2
[b]==> VUNDO <==/b



[F:15][D:4]-> C:\DOCUME~1\Mimi\LOCALS~1\Temp
[F:299][D:0]-> C:\DOCUME~1\Mimi\Cookies
[F:9139][D:12]-> C:\DOCUME~1\Mimi\LOCALS~1\TEMPOR~1\content.IE5

1 - "C:\Lop SD\LopR_1.txt" - 14/12/2009|22:10 - Option : [1]
2 - "C:\Lop SD\LopR_2.txt" - 14/12/2009|22:30 - Option : [2]

--------------------\\ Fin du rapport a 22:30:02
0
Réponse 17 / 25
moment de grace Messages postés 29042 Date d'inscription samedi 6 décembre 2008 Statut Contributeur sécurité Dernière intervention 18 juillet 2013 2 272
14 déc. 2009 à 22:47
tu as vraiment de tout comme saletés.... infection par support usb

Téléchargez USBFIX de Chiquitine29, C_xx

http://pagesperso-orange.fr/NosTools/Chiquitine29/UsbFix.exe
ou
https://www.ionos.fr/?affiliate_id=77097

/!\ Utilisateur de vista et windows 7 :
ne pas oublier de désactiver Le contrôle des comptes utilisateurs
https://www.commentcamarche.net/faq/8343-vista-desactiver-l-uac

/!\ Branche tes sources de données externes à ton PC, (clé USB, disque dur externe, etc...) susceptible d'avoir été infectées sans les ouvrir

• Double clic sur le raccourci UsbFix présent sur le bureau .

• Choisir l'option 1 (Recherche)
(d’autres options disponibles, voir le tutoriel).
• Laissez travailler l'outil.

• Ensuite postez le rapport UsbFix.txt qui apparaîtra.

• Note : Le rapport UsbFix.txt est sauvegardé a la racine du disque. ( C:\UsbFix.txt )

( CTRL+A Pour tout sélectionner , CTRL+C pour copier et CTRL+V pour coller )

• Note : "Process.exe", une composante de l'outil, est détecté par certains antivirus (AntiVir, Dr.Web, Kaspersky Anti-Virus) comme étant un RiskTool.
Il ne s'agit pas d'un virus, mais d'un utilitaire destiné à mettre fin à des processus.
Mis entre de mauvaises mains, cet utilitaire pourrait arrêter des logiciels de sécurité (Antivirus, Firewall...) d'où l'alerte émise par ces antivirus.


• Tuto : http://pagesperso-orange.fr/NosTools/usbfix.html




0
Réponse 18 / 25
clm14 Messages postés 13 Date d'inscription lundi 14 décembre 2009 Statut Membre Dernière intervention 15 décembre 2009 1
14 déc. 2009 à 23:00
Voila ;


############################## | UsbFix V6.063 |

User : Mimi (Administrateurs) # MR-IQ0OE14E0D1M
Update on 14/12/2009 by Chiquitine29, C_XX & Chimay8
Start at: 22:53:54 | 14/12/2009
Website : http://pagesperso-orange.fr/NosTools/index.html
Contact : FindyKill.Contact@gmail.com

AMD Athlon(tm) XP 3000+
Microsoft Windows XP Édition familiale (5.1.2600 32-bit) # Service Pack 3
Internet Explorer 7.0.5730.13
Windows Firewall Status : Enabled
AV : AVG Anti-Virus Free 9.0 [ Enabled | Updated ]

C:\ -> Disque fixe local # 153,38 Go (137,9 Go free) # NTFS
D:\ -> Disque CD-ROM
E:\ -> Disque CD-ROM

############################## | Processus actifs |

C:\WINDOWS\System32\smss.exe 476
C:\WINDOWS\system32\csrss.exe 532
C:\WINDOWS\system32\winlogon.exe 556
C:\WINDOWS\system32\services.exe 600
C:\WINDOWS\system32\lsass.exe 612
C:\WINDOWS\system32\svchost.exe 760
C:\WINDOWS\system32\svchost.exe 820
C:\WINDOWS\System32\svchost.exe 888
C:\WINDOWS\system32\svchost.exe 924
C:\Program Files\AVG\AVG9\avgchsvx.exe 972
C:\Program Files\AVG\AVG9\avgrsx.exe 980
C:\Program Files\AVG\AVG9\avgcsrvx.exe 1124
C:\WINDOWS\System32\svchost.exe 1196
C:\WINDOWS\System32\svchost.exe 1280
C:\WINDOWS\system32\spoolsv.exe 1616
C:\WINDOWS\Explorer.EXE 1668
C:\WINDOWS\System32\svchost.exe 1144
C:\Program Files\AVG\AVG9\avgwdsvc.exe 1740
C:\Program Files\Java\jre6\bin\jqs.exe 1892
C:\Program Files\Microsoft\Search Enhancement Pack\SeaPort\SeaPort.exe 1988
C:\Program Files\AVG\AVG9\avgnsx.exe 372
C:\WINDOWS\System32\svchost.exe 468
C:\WINDOWS\System32\wbem\wmiapsrv.exe 2248
C:\WINDOWS\System32\alg.exe 2272
C:\Program Files\QuickTime\qttask.exe 3676
C:\WINDOWS\vsnpstd3.exe 3684
C:\Program Files\Java\jre6\bin\jusched.exe 3712
C:\PROGRA~1\AVG\AVG9\avgtray.exe 3748
C:\WINDOWS\system32\ctfmon.exe 3832
C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe 3876
C:\Program Files\Windows Live\Messenger\msnmsgr.exe 3888
C:\Program Files\Windows Live\Contacts\wlcomm.exe 2360
C:\Program Files\Mozilla Firefox\firefox.exe 3708
C:\WINDOWS\system32\wbem\wmiprvse.exe 3240

################## | Fichiers # Dossiers infectieux |


################## | Registre # Clés infectieuses |


################## | Registre # Mountpoints2 |

HKCU\..\..\Explorer\MountPoints2\{3a9f7ab0-e221-11dc-b2ec-000e2ee7c821}
Shell\Auto\command =F:\fun.xls.exe
Shell\AutoRun\command =C:\WINDOWS\system32\RunDLL32.EXE Shell32.DLL,ShellExec_RunDLL fun.xls.exe

HKCU\..\..\Explorer\MountPoints2\{733202b1-de4b-11dc-b2d8-000e2ee7c821}
Shell\Auto\command =AdobeR.exe e
Shell\AutoRun\command =C:\WINDOWS\system32\RunDLL32.EXE Shell32.DLL,ShellExec_RunDLL AdobeR.exe e

################## | Cracks / Keygens / Serials |


################## | ! Fin du rapport # UsbFix V6.063 ! |
0
Réponse 19 / 25
moment de grace Messages postés 29042 Date d'inscription samedi 6 décembre 2008 Statut Contributeur sécurité Dernière intervention 18 juillet 2013 2 272
14 déc. 2009 à 23:05
dans cet ordre

1) ● Relance UsbFix

● Dans le menu principale cette fois choisit l'option2

Le menu démarrer et les icônes vont à nouveau disparaître.. c'est normal.

Si un message te demande de redémarrer l'ordinateur fais le ...

● Au redémarrage, le fix se relance... laisses l'opération s'effectuer.

● Le bloc note s'ouvre avec un rapport, envoies le dans la prochaine réponse

...........................................

2)
Téléchargez MalwareByte's Anti-Malware
https://www.majorgeeks.com/files/details/malwarebytes_anti_malware.html

. Sur la page cliques sur Télécharger Malwarebyte's Anti-Malware
. Enregistres le sur le bureau
. Double cliques sur le fichier téléchargé pour lancer le processus d'installation.
. Dans l'onglet "mise à jour", cliques sur le bouton Recherche de mise à jour
. Si le pare-feu demande l'autorisation de se connecter pour malwarebytes, accepte
. Une fois la mise à jour terminé
. Rend-toi dans l'onglet, Recherche
. Sélectionnes Exécuter un examen complet
. Cliques sur Rechercher
. Le scan démarre.
. A la fin de l'analyse, un message s'affiche : L'examen s'est terminé normalement. Cliquez sur 'Afficher les résultats' pour afficher tous les objets trouvés.
. Cliques sur Ok pour poursuivre.
. Si des malwares ont été détectés, clique sur Afficher les résultats
. Sélectionnes tout (ou laisses cochés) et cliques sur Supprimer la sélection Malwarebytes va détruire les fichiers et clés de registre et en mettre une copie dans la quarantaine.
. Malwarebytes va ouvrir le bloc-notes et y copier le rapport d'analyse.
. Rends toi dans l'onglet rapport/log
. Tu cliques dessus pour l'afficher, une fois affiché
. Tu cliques sur edition en haut du boc notes, et puis sur sélectionner tous
. Tu recliques sur edition et puis sur copier et tu reviens sur le forum et dans ta réponse
. tu cliques droit dans le cadre de la reponse et coller


Si tu as besoin d'aide regarde ces tutoriels :
Aide: https://www.malekal.com/tutoriel-malwarebyte-anti-malware/
http://www.infos-du-net.com/forum/278396-11-tuto-malwarebytes-anti-malware-mbam

............................................................

3) refaire un nouveau RSIT et poster le rapport log




0
Réponse 20 / 25
clm14 Messages postés 13 Date d'inscription lundi 14 décembre 2009 Statut Membre Dernière intervention 15 décembre 2009 1
14 déc. 2009 à 23:20
● Le bloc note s'ouvre avec un rapport, envoies le dans la prochaine réponse ==> non sa me demande d'envoyer un fichier ( C:_document~1 ...) ! est-ce normal ?
0

Discussions similaires

Impossible d'afficher le rapport de tableau croisé dynamique sur un rapport
Utilisateur anonyme -
TomH. -

13 réponses
écrire un rapport de travail
asi -
REGINALD -

3 réponses
impossible d'afficher le tableau dynamique sur un rapport existant
Pierre -
Adrien71 -

3 réponses
1fichier.com et bloqueur de pub
anthea1309 -
Patoche12 -

60 réponses
Probleme bogue
Ines -
Pimmer -

1 réponse