Sujet Précédent Sujet Suivant

Virus smiley.fr

Résolu/Fermé
candyred Messages postés 13 Date d'inscription lundi 26 décembre 2005 Statut Membre Dernière intervention 26 décembre 2006 - 30 mai 2006 à 22:21
 july - 28 sept. 2007 à 14:20
bonjour a tous !
je voulais juste vous dire de pas aller sur le site de smiley pour msn -il ya un virus :-(( voila le lien http://www.smileys-fr.com/ sur tout ne pas clicer !!!! au début ya pas de problème mais c'est lendemain que le site se bloque et vous avez une page noir (avec une bestiole )
Ps . je n'ose pas arreter mon ordi de peur que il démarre plus -je ne sais pas comment supprimer ce virus :-(((
@+

15 réponses

Réponse 1 / 15
^^Marie^^ Messages postés 113929 Date d'inscription mardi 6 septembre 2005 Statut Membre Dernière intervention 28 août 2020 3 274
31 mai 2006 à 09:39
Salut,

Avec un peu de recherches sur les Astuces CCM :::::

internet-recapitulatif-msn


SMILEYS - ÉMOTICÔNES (Merci Séb08)
%5BMSN%5D-Les-smileys-msn-ani...

• Créer des émoticônes et smileys
https://1map.com/fr/astwindscom

• Enregistrez les émoticônes des autres
https://www.01net.com/actualites/

• Créer des gifs animés - Logiciels :
- UnFREEz 2.1 : https://www.clubic.com/telecharger-fiche10567-unfreez.html
- GIF Movie Gear 4.0 : https://www.clubic.com/telecharger-fiche9831-gif-movie-gear.html
- Animagic Gif Animator 1.22 : https://www.clubic.com/telecharger-fiche9573-animagic-gif-animator.html
- Easy GIF Animator : https://www.01net.com/404/
- Alchemy GIF Animator : https://www.01net.com/404/
- Artful GIF Animator : https://www.01net.com/404/
- Ams Gif : https://www.01net.com/404/

• [Smileys] blog impressionnant :
-smileys-blog-impressionnant
gif-anim%E9s-sur-mon-blog-mar...



A++
1
Utilisateur anonyme
31 mai 2006 à 10:15
Bonjur !

Mias Candyred demande de l'aide aussi pour se débarasser de son virus...
0
Réponse 2 / 15
Utilisateur anonyme
30 mai 2006 à 23:43
UP !

Considérant que ce message peut servir d'avertissement aux fans d'émoticônes sur MSN, je me permets de le remonter en attendant qu'un pro puisse répondre à Candyred.
0
Réponse 3 / 15
^^Marie^^ Messages postés 113929 Date d'inscription mardi 6 septembre 2005 Statut Membre Dernière intervention 28 août 2020 3 274
31 mai 2006 à 10:25
hello candyred

fais tout ceci ds l ordre

3/ - Ewido (download)- gratuit même après 14 jours d’essai
http://perso.wanadoo.fr/entraide-hijackthis/Ewido/
Copie/COLLE le rapport généré sur ce forum
Pour certaines versions de Windows antérieures à XP, Ewido peut ne pas être compatible
Dans ce cas, il te faudra utiliser a-squared free et demander une clef pour son usage gratuit
https://www.emsisoft.com/fr/

4/ - Ccleaner : ( nettoyeur de registre, cookies+temps+tempos+prefetch+historique+etc..)
Télécharge ici :
https://www.ccleaner.com/ccleaner/download
Tutorial ici:
https://www.vulgarisation-informatique.com/nettoyer-windows-ccleaner.php

6/ - Scan online avec BitDefender (fonctionne uniquement sous Internet Explorer en acceptant l’ activX)
https://assiste.com/404_La_page_demandee_n_existe_pas.php
http://www.bitdefender.fr/scan8/ie.html
Copie/COLLE le rapport entier

7/ - Hijackthis - Outil de diagnostic et réparation
lire démo
http://pageperso.aol.fr/balltrap34/Hijenr.gif
http://pageperso.aol.fr/balltrap34/demohijack.htm
Télécharge version française ici
http://telechargement.zebulon.fr/160-patch-francais-pour-hijackthis-1991.html


Bon courage
A++




0
Réponse 4 / 15
candyred Messages postés 13 Date d'inscription lundi 26 décembre 2005 Statut Membre Dernière intervention 26 décembre 2006
31 mai 2006 à 14:07
salut a tous
deja un grand merci pour votre aide ;-)) je instaler evido -voila le raport + Résultats du scan:

C:\Documents and Settings\karolina\Cookies\karolina@247realmedia[1].txt -> TrackingCookie.247realmedia : Nettoyer et sauvegarder
C:\Documents and Settings\karolina\Cookies\karolina@2o7[1].txt -> TrackingCookie.2o7 : Nettoyer et sauvegarder
C:\Documents and Settings\karolina\Cookies\karolina@ad.adocean[1].txt -> TrackingCookie.Adocean : Nettoyer et sauvegarder
C:\Documents and Settings\karolina\Cookies\karolina@ad.yieldmanager[2].txt -> TrackingCookie.Yieldmanager : Nettoyer et sauvegarder
C:\Documents and Settings\karolina\Cookies\karolina@adopt.euroclick[1].txt -> TrackingCookie.Euroclick : Nettoyer et sauvegarder
C:\Documents and Settings\karolina\Cookies\karolina@ads.pointroll[2].txt -> TrackingCookie.Pointroll : Nettoyer et sauvegarder
C:\Documents and Settings\karolina\Cookies\karolina@adtech[2].txt -> TrackingCookie.Adtech : Nettoyer et sauvegarder
C:\Documents and Settings\karolina\Cookies\karolina@advertising[2].txt -> TrackingCookie.Advertising : Nettoyer et sauvegarder
C:\Documents and Settings\karolina\Cookies\karolina@as-eu.falkag[2].txt -> TrackingCookie.Falkag : Nettoyer et sauvegarder
C:\Documents and Settings\karolina\Cookies\karolina@as-us.falkag[2].txt -> TrackingCookie.Falkag : Nettoyer et sauvegarder
C:\Documents and Settings\karolina\Cookies\karolina@as1.falkag[2].txt -> TrackingCookie.Falkag : Nettoyer et sauvegarder
C:\Documents and Settings\karolina\Cookies\karolina@atdmt[2].txt -> TrackingCookie.Atdmt : Nettoyer et sauvegarder
C:\Documents and Settings\karolina\Cookies\karolina@bluestreak[2].txt -> TrackingCookie.Bluestreak : Nettoyer et sauvegarder
C:\Documents and Settings\karolina\Cookies\karolina@boonty.122.2o7[1].txt -> TrackingCookie.2o7 : Nettoyer et sauvegarder
C:\Documents and Settings\karolina\Cookies\karolina@casalemedia[1].txt -> TrackingCookie.Casalemedia : Nettoyer et sauvegarder
C:\Documents and Settings\karolina\Cookies\karolina@com[1].txt -> TrackingCookie.Com : Nettoyer et sauvegarder
C:\Documents and Settings\karolina\Cookies\karolina@data.coremetrics[1].txt -> TrackingCookie.Coremetrics : Nettoyer et sauvegarder
C:\Documents and Settings\karolina\Cookies\karolina@doubleclick[1].txt -> TrackingCookie.Doubleclick : Nettoyer et sauvegarder
C:\Documents and Settings\karolina\Cookies\karolina@e-2dj6wflokmc5wgp.stats.esomniture[2].txt -> TrackingCookie.Esomniture : Nettoyer et sauvegarder
C:\Documents and Settings\karolina\Cookies\karolina@e-2dj6wflowmazodq.stats.esomniture[2].txt -> TrackingCookie.Esomniture : Nettoyer et sauvegarder
C:\Documents and Settings\karolina\Cookies\karolina@edge.ru4[1].txt -> TrackingCookie.Ru4 : Nettoyer et sauvegarder
C:\Documents and Settings\karolina\Cookies\karolina@ehg-lexmark.hitbox[1].txt -> TrackingCookie.Hitbox : Nettoyer et sauvegarder
C:\Documents and Settings\karolina\Cookies\karolina@ehg-nestlebebe.hitbox[1].txt -> TrackingCookie.Hitbox : Nettoyer et sauvegarder
C:\Documents and Settings\karolina\Cookies\karolina@ehg-nestlefr.hitbox[1].txt -> TrackingCookie.Hitbox : Nettoyer et sauvegarder
C:\Documents and Settings\karolina\Cookies\karolina@ehg-wsseurope.hitbox[1].txt -> TrackingCookie.Hitbox : Nettoyer et sauvegarder
C:\Documents and Settings\karolina\Cookies\karolina@estat[1].txt -> TrackingCookie.Estat : Nettoyer et sauvegarder
C:\Documents and Settings\karolina\Cookies\karolina@fastclick[2].txt -> TrackingCookie.Fastclick : Nettoyer et sauvegarder
C:\Documents and Settings\karolina\Cookies\karolina@fl01.ct2.comclick[1].txt -> TrackingCookie.Comclick : Nettoyer et sauvegarder
C:\Documents and Settings\karolina\Cookies\karolina@gde.adocean[1].txt -> TrackingCookie.Adocean : Nettoyer et sauvegarder
C:\Documents and Settings\karolina\Cookies\karolina@h.starware[2].txt -> TrackingCookie.Starware : Nettoyer et sauvegarder
C:\Documents and Settings\karolina\Cookies\karolina@hitbox[2].txt -> TrackingCookie.Hitbox : Nettoyer et sauvegarder
C:\Documents and Settings\karolina\Cookies\karolina@idg.adocean[1].txt -> TrackingCookie.Adocean : Nettoyer et sauvegarder
C:\Documents and Settings\karolina\Cookies\karolina@mediaplex[1].txt -> TrackingCookie.Mediaplex : Nettoyer et sauvegarder
C:\Documents and Settings\karolina\Cookies\karolina@msninvite.112.2o7[1].txt -> TrackingCookie.2o7 : Nettoyer et sauvegarder
C:\Documents and Settings\karolina\Cookies\karolina@msnportal.112.2o7[1].txt -> TrackingCookie.2o7 : Nettoyer et sauvegarder
C:\Documents and Settings\karolina\Cookies\karolina@msnuk.122.2o7[1].txt -> TrackingCookie.2o7 : Nettoyer et sauvegarder
C:\Documents and Settings\karolina\Cookies\karolina@my.adocean[2].txt -> TrackingCookie.Adocean : Nettoyer et sauvegarder
C:\Documents and Settings\karolina\Cookies\karolina@overture[1].txt -> TrackingCookie.Overture : Nettoyer et sauvegarder
C:\Documents and Settings\karolina\Cookies\karolina@pinnaclesystems.122.2o7[1].txt -> TrackingCookie.2o7 : Nettoyer et sauvegarder
C:\Documents and Settings\karolina\Cookies\karolina@promo.casinotropez[1].txt -> TrackingCookie.Casinotropez : Nettoyer et sauvegarder
C:\Documents and Settings\karolina\Cookies\karolina@redcats.122.2o7[1].txt -> TrackingCookie.2o7 : Nettoyer et sauvegarder
C:\Documents and Settings\karolina\Cookies\karolina@rotator.adjuggler[2].txt -> TrackingCookie.Adjuggler : Nettoyer et sauvegarder
C:\Documents and Settings\karolina\Cookies\karolina@server.iad.liveperson[2].txt -> TrackingCookie.Liveperson : Nettoyer et sauvegarder
C:\Documents and Settings\karolina\Cookies\karolina@serving-sys[2].txt -> TrackingCookie.Serving-sys : Nettoyer et sauvegarder
C:\Documents and Settings\karolina\Cookies\karolina@smartadserver[2].txt -> TrackingCookie.Smartadserver : Nettoyer et sauvegarder
C:\Documents and Settings\karolina\Cookies\karolina@stat.onestat[2].txt -> TrackingCookie.Onestat : Nettoyer et sauvegarder
C:\Documents and Settings\karolina\Cookies\karolina@statcounter[2].txt -> TrackingCookie.Statcounter : Nettoyer et sauvegarder
C:\Documents and Settings\karolina\Cookies\karolina@statse.webtrendslive[2].txt -> TrackingCookie.Webtrendslive : Nettoyer et sauvegarder
C:\Documents and Settings\karolina\Cookies\karolina@tacoda[1].txt -> TrackingCookie.Tacoda : Nettoyer et sauvegarder
C:\Documents and Settings\karolina\Cookies\karolina@tradedoubler[2].txt -> TrackingCookie.Tradedoubler : Nettoyer et sauvegarder
C:\Documents and Settings\karolina\Cookies\karolina@tribalfusion[1].txt -> TrackingCookie.Tribalfusion : Nettoyer et sauvegarder
C:\Documents and Settings\karolina\Cookies\karolina@valueclick[2].txt -> TrackingCookie.Valueclick : Nettoyer et sauvegarder
C:\Documents and Settings\karolina\Cookies\karolina@weborama[2].txt -> TrackingCookie.Weborama : Nettoyer et sauvegarder
C:\Documents and Settings\karolina\Cookies\karolina@wreport.weborama[1].txt -> TrackingCookie.Weborama : Nettoyer et sauvegarder
C:\Documents and Settings\karolina\Cookies\karolina@www.smartadserver[2].txt -> TrackingCookie.Smartadserver : Nettoyer et sauvegarder
C:\Documents and Settings\karolina\Cookies\karolina@www.starware[1].txt -> TrackingCookie.Starware : Nettoyer et sauvegarder
C:\Documents and Settings\karolina\Cookies\karolina@zedo[2].txt -> TrackingCookie.Zedo : Nettoyer et sauvegarder
C:\Documents and Settings\karolina\Local Settings\Temp\Cookies\karolina@247realmedia[1].txt -> TrackingCookie.247realmedia : Nettoyer et sauvegarder
C:\Documents and Settings\karolina\Local Settings\Temp\Cookies\karolina@ad.adocean[1].txt -> TrackingCookie.Adocean : Nettoyer et sauvegarder
C:\Documents and Settings\karolina\Local Settings\Temp\Cookies\karolina@advertising[1].txt -> TrackingCookie.Advertising : Nettoyer et sauvegarder
C:\Documents and Settings\karolina\Local Settings\Temp\Cookies\karolina@atdmt[2].txt -> TrackingCookie.Atdmt : Nettoyer et sauvegarder
C:\Documents and Settings\karolina\Local Settings\Temp\Cookies\karolina@bluestreak[2].txt -> TrackingCookie.Bluestreak : Nettoyer et sauvegarder
C:\Documents and Settings\karolina\Local Settings\Temp\Cookies\karolina@casalemedia[2].txt -> TrackingCookie.Casalemedia : Nettoyer et sauvegarder
C:\Documents and Settings\karolina\Local Settings\Temp\Cookies\karolina@com[2].txt -> TrackingCookie.Com : Nettoyer et sauvegarder
C:\Documents and Settings\karolina\Local Settings\Temp\Cookies\karolina@data1.perf.overture[1].txt -> TrackingCookie.Overture : Nettoyer et sauvegarder
C:\Documents and Settings\karolina\Local Settings\Temp\Cookies\karolina@doubleclick[1].txt -> TrackingCookie.Doubleclick : Nettoyer et sauvegarder
C:\Documents and Settings\karolina\Local Settings\Temp\Cookies\karolina@ehg-hasbro.hitbox[2].txt -> TrackingCookie.Hitbox : Nettoyer et sauvegarder
C:\Documents and Settings\karolina\Local Settings\Temp\Cookies\karolina@estat[1].txt -> TrackingCookie.Estat : Nettoyer et sauvegarder
C:\Documents and Settings\karolina\Local Settings\Temp\Cookies\karolina@fastclick[1].txt -> TrackingCookie.Fastclick : Nettoyer et sauvegarder
C:\Documents and Settings\karolina\Local Settings\Temp\Cookies\karolina@findwhat[1].txt -> TrackingCookie.Findwhat : Nettoyer et sauvegarder
C:\Documents and Settings\karolina\Local Settings\Temp\Cookies\karolina@fl01.ct2.comclick[1].txt -> TrackingCookie.Comclick : Nettoyer et sauvegarder
C:\Documents and Settings\karolina\Local Settings\Temp\Cookies\karolina@gde.adocean[2].txt -> TrackingCookie.Adocean : Nettoyer et sauvegarder
C:\Documents and Settings\karolina\Local Settings\Temp\Cookies\karolina@hitbox[2].txt -> TrackingCookie.Hitbox : Nettoyer et sauvegarder
C:\Documents and Settings\karolina\Local Settings\Temp\Cookies\karolina@mediaplex[1].txt -> TrackingCookie.Mediaplex : Nettoyer et sauvegarder
C:\Documents and Settings\karolina\Local Settings\Temp\Cookies\karolina@my.adocean[2].txt -> TrackingCookie.Adocean : Nettoyer et sauvegarder
C:\Documents and Settings\karolina\Local Settings\Temp\Cookies\karolina@perf.overture[1].txt -> TrackingCookie.Overture : Nettoyer et sauvegarder
C:\Documents and Settings\karolina\Local Settings\Temp\Cookies\karolina@serving-sys[1].txt -> TrackingCookie.Serving-sys : Nettoyer et sauvegarder
C:\Documents and Settings\karolina\Local Settings\Temp\Cookies\karolina@statcounter[1].txt -> TrackingCookie.Statcounter : Nettoyer et sauvegarder
C:\Documents and Settings\karolina\Local Settings\Temp\Cookies\karolina@statse.webtrendslive[1].txt -> TrackingCookie.Webtrendslive : Nettoyer et sauvegarder
C:\Documents and Settings\karolina\Local Settings\Temp\Cookies\karolina@tradedoubler[2].txt -> TrackingCookie.Tradedoubler : Nettoyer et sauvegarder
C:\Documents and Settings\karolina\Local Settings\Temp\Cookies\karolina@valueclick[1].txt -> TrackingCookie.Valueclick : Nettoyer et sauvegarder
C:\Documents and Settings\karolina\Local Settings\Temp\Cookies\karolina@weborama[2].txt -> TrackingCookie.Weborama : Nettoyer et sauvegarder
C:\Documents and Settings\karolina\Local Settings\Temp\Cookies\karolina@www.smartadserver[1].txt -> TrackingCookie.Smartadserver : Nettoyer et sauvegarder
C:\Documents and Settings\karolina\Local Settings\Temp\Cookies\karolina@z1.adserver[1].txt -> TrackingCookie.Adserver : Nettoyer et sauvegarder
C:\Documents and Settings\thierry\Bureau\karolina\Mes documents\autocrash98.zip/autocrash98.exe -> Not-A-Virus.BadJoke.Win32.FakeReboot.a : Nettoyer et sauvegarder
C:\Documents and Settings\thierry\Cookies\thierry@247realmedia[1].txt -> TrackingCookie.247realmedia : Nettoyer et sauvegarder
C:\Documents and Settings\thierry\Cookies\thierry@2o7[2].txt -> TrackingCookie.2o7 : Nettoyer et sauvegarder
C:\Documents and Settings\thierry\Cookies\thierry@atdmt[1].txt -> TrackingCookie.Atdmt : Nettoyer et sauvegarder
C:\Documents and Settings\thierry\Cookies\thierry@bluestreak[2].txt -> TrackingCookie.Bluestreak : Nettoyer et sauvegarder
C:\Documents and Settings\thierry\Cookies\thierry@doubleclick[1].txt -> TrackingCookie.Doubleclick : Nettoyer et sauvegarder
C:\Documents and Settings\thierry\Cookies\thierry@estat[1].txt -> TrackingCookie.Estat : Nettoyer et sauvegarder
C:\Documents and Settings\thierry\Cookies\thierry@fl01.ct2.comclick[2].txt -> TrackingCookie.Comclick : Nettoyer et sauvegarder
C:\Documents and Settings\thierry\Cookies\thierry@msnportal.112.2o7[1].txt -> TrackingCookie.2o7 : Nettoyer et sauvegarder
C:\Documents and Settings\thierry\Cookies\thierry@tradedoubler[1].txt -> TrackingCookie.Tradedoubler : Nettoyer et sauvegarder
C:\Documents and Settings\thierry\Cookies\thierry@weborama[1].txt -> TrackingCookie.Weborama : Nettoyer et sauvegarder
C:\Documents and Settings\thierry\Cookies\thierry@www.smartadserver[2].txt -> TrackingCookie.Smartadserver : Nettoyer et sauvegarder
C:\Documents and Settings\thierry\Local Settings\Temporary Internet Files\Content.IE5\EDR0X4ZE\bag[1].htm -> Not-A-Virus.Exploit.JS.CVE20051790.j : Nettoyer et sauvegarder


::Fin du rapport
0

Vous n’avez pas trouvé la réponse que vous recherchez ?

Posez votre question
Réponse 5 / 15
^^Marie^^ Messages postés 113929 Date d'inscription mardi 6 septembre 2005 Statut Membre Dernière intervention 28 août 2020 3 274
31 mai 2006 à 15:32
Re,

Reste plus qu'à faire le 4/ et copier/coller les rapports du 6/ et 7/

A++
0
Réponse 6 / 15
candyred Messages postés 13 Date d'inscription lundi 26 décembre 2005 Statut Membre Dernière intervention 26 décembre 2006
31 mai 2006 à 16:33
voila le resultat de ccleaner NETTOYAGE COMPLET - (2457.710 secs)
------------------------------------------------------------------------------------------
158.0MB supprimés.
------------------------------------------------------------------------------------------

Détails des fichiers à effacer
------------------------------------------------------------------------------------------
Fichiers Temporaires d'Internet Explorer (fichiers 8379) 115.8MB
Cookie:thierry@msn-astuce.forumactif.com/(&H100001) 267 bytes
Cookie:thierry@login.live.com/(&H100001) 274 bytes
Cookie:thierry@estat.com/(&H100001) 80 bytes
Cookie:thierry@hit.gemius.pl/(&H100001) 189 bytes
Cookie:thierry@cybermonitor.com/(&H100001) 88 bytes
Cookie:thierry@msn.fr/(&H100001) 428 bytes
Cookie:thierry@weborama.fr/(&H100001) 75 bytes
Cookie:thierry@kadoparty.com/(&H100001) 281 bytes
Cookie:thierry@traffweb1.biz/dl/(&H100001) 75 bytes
Cookie:thierry@msn.be/(&H100001) 82 bytes
Cookie:thierry@serviceswitching.metaservices.microsoft.com/serviceswitching/(&H100001) 151 bytes
Cookie:thierry@www.sur-la-toile.com/(&H100001) 180 bytes
Cookie:thierry@of.pl/(&H100001) 67 bytes
Cookie:thierry@connextra.com/(&H100001) 280 bytes
Cookie:thierry@gigasmiley.com/(&H100001) 291 bytes
Cookie:thierry@www.koreus.com/(&H100001) 95 bytes
Cookie:thierry@msnportal.112.2o7.net/(&H100001) 118 bytes
Cookie:thierry@pixelmonde.fr/(&H100001) 177 bytes
Cookie:thierry@247realmedia.com/(&H100001) 553 bytes
Cookie:thierry@hotmail.msn.com/(&H100001) 71 bytes
Cookie:thierry@prizee.com/(&H100001) 449 bytes
Cookie:thierry@onet.pl/(&H100001) 737 bytes
Cookie:thierry@proximus.be/(&H100001) 571 bytes
Cookie:thierry@click-fr.com/(&H100001) 350 bytes
Cookie:thierry@ccleaner.com/(&H100001) 398 bytes
Cookie:thierry@fl01.ct2.comclick.com/(&H100001) 384 bytes
Cookie:thierry@advertstream.com/(&H100001) 540 bytes
Cookie:thierry@google.com/(&H100001) 136 bytes
Cookie:thierry@www.toutgratuit.fr/(&H100001) 80 bytes
Cookie:thierry@popularscreensavers.com/(&H100001) 364 bytes
Cookie:thierry@tribalfusion.com/(&H100001) 87 bytes
Cookie:thierry@microsoft.com/(&H100001) 614 bytes
Cookie:thierry@msntrucastuce.free.fr/(&H100001) 401 bytes
Cookie:thierry@yourmedia.com/(&H100001) 93 bytes
Cookie:thierry@xiti.com/(&H100001) 99 bytes
Cookie:thierry@action.metaffiliation.com/(&H100001) 295 bytes
Cookie:thierry@cpack.msnplus.co.kr/(&H100001) 157 bytes
Cookie:thierry@forum.doctissimo.fr/(&H100001) 416 bytes
Cookie:thierry@2o7.net/(&H100001) 125 bytes
Cookie:thierry@doctissimo.fr/(&H100001) 630 bytes
Cookie:thierry@www.quoverbis.com/(&H100001) 115 bytes
Cookie:thierry@doubleclick.net/(&H100001) 82 bytes
Cookie:thierry@adidm.idmnet.pl/(&H100001) 100 bytes
Cookie:thierry@msn.com/(&H100001) 565 bytes
Cookie:thierry@m.webtrends.com/(&H100001) 181 bytes
Cookie:thierry@bluestreak.com/(&H100001) 851 bytes
Cookie:thierry@stats.candy-red.com/(&H100001) 116 bytes
Cookie:thierry@www.msn.com/(&H100001) 544 bytes
Cookie:thierry@www.commentcamarche.net/(&H100001) 196 bytes
Cookie:thierry@metriweb.be/(&H100001) 92 bytes
Cookie:thierry@espace.netavenir.com/diffusion/(&H100001) 404 bytes
Cookie:thierry@adv.surinter.net/(&H100001) 322 bytes
Cookie:thierry@tradedoubler.com/(&H100001) 257 bytes
Cookie:thierry@trafiz.net/(&H100001) 508 bytes
Cookie:thierry@mypersonalexpression.com/(&H100001) 377 bytes
Cookie:thierry@mywebsearch.com/(&H100001) 1.04KB
Cookie:thierry@www.promobenef.com/(&H100001) 467 bytes
Cookie:thierry@google.fr/(&H100001) 130 bytes
Cookie:thierry@search.msn.be/(&H100001) 418 bytes
Cookie:thierry@live.com/(&H100001) 395 bytes
Cookie:thierry@messenger.msn.com/(&H100001) 96 bytes
Cookie:thierry@marieclaire.fr/(&H100001) 166 bytes
Cookie:thierry@www.cibleclick.com/(&H100001) 127 bytes
Cookie:thierry@idregie.com/(&H100001) 152 bytes
Cookie:thierry@edt02.net/(&H100001) 683 bytes
Cookie:thierry@www.smartadserver.com/(&H100001) 383 bytes
Cookie:thierry@www.fr.msn.be/(&H100001) 71 bytes
Cookie:thierry@atdmt.com/(&H100001) 94 bytes
Cookie:thierry@fr.msn.be/(&H100001) 104 bytes
Cookie:thierry@www.smiliz.org/(&H100001) 280 bytes
Cookie:thierry@adopt.hbmediapro.com/(&H100001) 461 bytes
Cookie:thierry@tracking.publicidees.com/(&H100001) 141 bytes
Marqué pour l'effacement: C:\Documents and Settings\thierry\Local Settings\Temporary Internet Files\Content.IE5\index.dat
Marqué pour l'effacement: C:\Documents and Settings\thierry\Cookies\index.dat
Poubelle vidée (6 fichiers) 0.46MB
C:\WINDOWS\TEMP\apub2 442 bytes
C:\WINDOWS\TEMP\apub3 442 bytes
C:\WINDOWS\TEMP\CamServr.log 1.40KB
C:\WINDOWS\TEMP\CamWizrd.log 12.48KB
C:\WINDOWS\TEMP\CDROMUTL.DLL 48.00KB
C:\WINDOWS\TEMP\DELPREVV.DLL 26.00KB
C:\WINDOWS\TEMP\DELPREVV.INI 681 bytes
C:\WINDOWS\TEMP\DRIOSD32.DLL 24.00KB
C:\WINDOWS\TEMP\DVHOOKKD.VXD 24.15KB
C:\WINDOWS\TEMP\HELP\HELP.HTM 6.46KB
C:\WINDOWS\TEMP\IadHide5.dll 24.04KB
C:\WINDOWS\TEMP\Instmed.log 359 bytes
C:\WINDOWS\TEMP\InstVid.log 444 bytes
C:\WINDOWS\TEMP\iufsav.log 1.26KB
C:\WINDOWS\TEMP\JET112C.tmp 0 bytes
C:\WINDOWS\TEMP\JET1160.tmp 0 bytes
C:\WINDOWS\TEMP\JET1B53.tmp 0 bytes
C:\WINDOWS\TEMP\JET2D16.tmp 0 bytes
C:\WINDOWS\TEMP\JET42A1.tmp 0 bytes
C:\WINDOWS\TEMP\JET507C.tmp 0 bytes
C:\WINDOWS\TEMP\JET7039.tmp 0 bytes
C:\WINDOWS\TEMP\JET784C.tmp 0 bytes
C:\WINDOWS\TEMP\JET7D1F.tmp 0 bytes
C:\WINDOWS\TEMP\JET8E45.tmp 0 bytes
C:\WINDOWS\TEMP\JET9598.tmp 0 bytes
C:\WINDOWS\TEMP\JETA169.tmp 0 bytes
C:\WINDOWS\TEMP\JETA75B.tmp 0 bytes
C:\WINDOWS\TEMP\JETA855.tmp 0 bytes
C:\WINDOWS\TEMP\JETA911.tmp 0 bytes
C:\WINDOWS\TEMP\JETAE60.tmp 0 bytes
C:\WINDOWS\TEMP\JETB3AB.tmp 0 bytes
C:\WINDOWS\TEMP\JETB4DF.tmp 0 bytes
C:\WINDOWS\TEMP\JETBE59.tmp 0 bytes
C:\WINDOWS\TEMP\JETCE7B.tmp 0 bytes
C:\WINDOWS\TEMP\JETCF32.tmp 0 bytes
C:\WINDOWS\TEMP\JETD1F6.tmp 0 bytes
C:\WINDOWS\TEMP\JETD570.tmp 0 bytes
C:\WINDOWS\TEMP\JETDB5C.tmp 0 bytes
C:\WINDOWS\TEMP\JETDD0F.tmp 0 bytes
C:\WINDOWS\TEMP\JETE07C.tmp 0 bytes
C:\WINDOWS\TEMP\JETE8D4.tmp 0 bytes
C:\WINDOWS\TEMP\JETEBE6.tmp 0 bytes
C:\WINDOWS\TEMP\JETEEB5.tmp 0 bytes
C:\WINDOWS\TEMP\JETEF22.tmp 0 bytes
C:\WINDOWS\TEMP\JETF85A.tmp 0 bytes
C:\WINDOWS\TEMP\JETFEFC.tmp 0 bytes
C:\WINDOWS\TEMP\JETFF20.tmp 0 bytes
C:\WINDOWS\TEMP\KBFILTR.SYS 10.50KB
C:\WINDOWS\TEMP\KBOSDCTL.EXE 0.10MB
C:\WINDOWS\TEMP\KCODEMSG.EXE 52.00KB
C:\WINDOWS\TEMP\KEYCCNT.DLL 52.00KB
C:\WINDOWS\TEMP\Mediakey 47 bytes
C:\WINDOWS\TEMP\Mediakey.cat 0 bytes
C:\WINDOWS\TEMP\Mediakey.exe 72.00KB
C:\WINDOWS\TEMP\Mediakey.inf 21.26KB
C:\WINDOWS\TEMP\Mediakey.uni 47 bytes
C:\WINDOWS\TEMP\MFC30.DLL 0.31MB
C:\WINDOWS\TEMP\mpasbase.vdm 1.54MB
C:\WINDOWS\TEMP\mpasdlta.vdm 0.11MB
C:\WINDOWS\TEMP\MpCmdRun.log 18.75KB
C:\WINDOWS\TEMP\MpEngine.dll 2.49MB
C:\WINDOWS\TEMP\MpSigStub.log 7.41KB
C:\WINDOWS\TEMP\OSDCTRL.DLL 60.00KB
C:\WINDOWS\TEMP\OSDRC\EJECT.BMP 186 bytes
C:\WINDOWS\TEMP\OSDRC\MUTE.BMP 334 bytes
C:\WINDOWS\TEMP\OSDRC\NEXT.BMP 326 bytes
C:\WINDOWS\TEMP\OSDRC\PLAY.BMP 238 bytes
C:\WINDOWS\TEMP\OSDRC\PREV.BMP 326 bytes
C:\WINDOWS\TEMP\OSDRC\STOP.BMP 238 bytes
C:\WINDOWS\TEMP\Perflib_Perfdata_13c.dat 16.00KB
C:\WINDOWS\TEMP\Perflib_Perfdata_15c.dat 16.00KB
C:\WINDOWS\TEMP\Perflib_Perfdata_200.dat 16.00KB
C:\WINDOWS\TEMP\Perflib_Perfdata_230.dat 16.00KB
C:\WINDOWS\TEMP\Perflib_Perfdata_2bc.dat 16.00KB
C:\WINDOWS\TEMP\Perflib_Perfdata_3d4.dat 16.00KB
C:\WINDOWS\TEMP\Perflib_Perfdata_520.dat 16.00KB
C:\WINDOWS\TEMP\Perflib_Perfdata_53c.dat 16.00KB
C:\WINDOWS\TEMP\Perflib_Perfdata_544.dat 16.00KB
C:\WINDOWS\TEMP\Perflib_Perfdata_54c.dat 16.00KB
C:\WINDOWS\TEMP\Perflib_Perfdata_554.dat 16.00KB
C:\WINDOWS\TEMP\Perflib_Perfdata_558.dat 16.00KB
C:\WINDOWS\TEMP\Perflib_Perfdata_55c.dat 16.00KB
C:\WINDOWS\TEMP\Perflib_Perfdata_570.dat 16.00KB
C:\WINDOWS\TEMP\Perflib_Perfdata_580.dat 16.00KB
C:\WINDOWS\TEMP\Perflib_Perfdata_588.dat 16.00KB
C:\WINDOWS\TEMP\Perflib_Perfdata_59c.dat 16.00KB
C:\WINDOWS\TEMP\Perflib_Perfdata_5a8.dat 16.00KB
C:\WINDOWS\TEMP\Perflib_Perfdata_620.dat 16.00KB
C:\WINDOWS\TEMP\Perflib_Perfdata_628.dat 16.00KB
C:\WINDOWS\TEMP\Perflib_Perfdata_674.dat 16.00KB
C:\WINDOWS\TEMP\Perflib_Perfdata_688.dat 16.00KB
C:\WINDOWS\TEMP\Perflib_Perfdata_694.dat 16.00KB
C:\WINDOWS\TEMP\Perflib_Perfdata_73c.dat 16.00KB
C:\WINDOWS\TEMP\Perflib_Perfdata_740.dat 16.00KB
C:\WINDOWS\TEMP\Perflib_Perfdata_748.dat 16.00KB
C:\WINDOWS\TEMP\Perflib_Perfdata_77c.dat 16.00KB
C:\WINDOWS\TEMP\Perflib_Perfdata_788.dat 16.00KB
C:\WINDOWS\TEMP\Perflib_Perfdata_7a0.dat 16.00KB
C:\WINDOWS\TEMP\Perflib_Perfdata_7a8.dat 16.00KB
C:\WINDOWS\TEMP\Perflib_Perfdata_7ac.dat 16.00KB
C:\WINDOWS\TEMP\Perflib_Perfdata_7c4.dat 16.00KB
C:\WINDOWS\TEMP\Perflib_Perfdata_7e4.dat 16.00KB
C:\WINDOWS\TEMP\Perflib_Perfdata_7f0.dat 16.00KB
C:\WINDOWS\TEMP\Perflib_Perfdata_7f4.dat 16.00KB
C:\WINDOWS\TEMP\Perflib_Perfdata_a4.dat 16.00KB
C:\WINDOWS\TEMP\Perflib_Perfdata_ac.dat 16.00KB
C:\WINDOWS\TEMP\Perflib_Perfdata_dc.dat 16.00KB
C:\WINDOWS\TEMP\README.TXT 31 bytes
C:\WINDOWS\TEMP\RMDEVICE.EXE 34.02KB
C:\WINDOWS\TEMP\rtdrvmon.exe 40.00KB
C:\WINDOWS\TEMP\SETUP.EXE 0.10MB
C:\WINDOWS\TEMP\SETUPDEV.DLL 48.00KB
C:\WINDOWS\TEMP\SETUPDEV.INI 230 bytes
C:\WINDOWS\TEMP\SZREGUPF.DLL 56.00KB
C:\WINDOWS\TEMP\UNINST32.EXE 60.00KB
C:\WINDOWS\TEMP\UNINST32.INI 577 bytes
C:\WINDOWS\TEMP\WND2FILE.DLL 52.00KB
C:\WINDOWS\TEMP\_ISTMP0.DIR\CTL3D32.DLL 26.50KB
C:\WINDOWS\TEMP\_ISTMP0.DIR\CTL3D32S.DLL 26.00KB
C:\WINDOWS\TEMP\_ISTMP0.DIR\uninst.728 4.00KB
C:\WINDOWS\TEMP\_ISTMP0.DIR\_isres.dll 0.10MB
C:\WINDOWS\TEMP\_ISTMP0.DIR\_SETUP.LIB 0.33MB
C:\DOCUME~1\thierry\LOCALS~1\Temp\337.tmp 0.37MB
C:\DOCUME~1\thierry\LOCALS~1\Temp\380.tmp 0.37MB
C:\DOCUME~1\thierry\LOCALS~1\Temp\39C.tmp 0.14MB
C:\DOCUME~1\thierry\LOCALS~1\Temp\3B1.tmp 0.65MB
C:\DOCUME~1\thierry\LOCALS~1\Temp\432.tmp 0.20MB
C:\DOCUME~1\thierry\LOCALS~1\Temp\459.tmp 0.27MB
C:\DOCUME~1\thierry\LOCALS~1\Temp\48C.tmp 0.40MB
C:\DOCUME~1\thierry\LOCALS~1\Temp\4D2.tmp 0.42MB
C:\DOCUME~1\thierry\LOCALS~1\Temp\51B.tmp 0.28MB
C:\DOCUME~1\thierry\LOCALS~1\Temp\54E.tmp 0.35MB
C:\DOCUME~1\thierry\LOCALS~1\Temp\control.xml 717 bytes
C:\DOCUME~1\thierry\LOCALS~1\Temp\IMT1DE.xml 1.98KB
C:\DOCUME~1\thierry\LOCALS~1\Temp\IMT1DF.xml 426 bytes
C:\DOCUME~1\thierry\LOCALS~1\Temp\IMT1E0.xml 1.98KB
C:\DOCUME~1\thierry\LOCALS~1\Temp\IMT1E1.xml 426 bytes
C:\DOCUME~1\thierry\LOCALS~1\Temp\IMT596.xml 1.98KB
C:\DOCUME~1\thierry\LOCALS~1\Temp\IMT597.xml 426 bytes
C:\DOCUME~1\thierry\LOCALS~1\Temp\IMT598.xml 0.77MB
C:\DOCUME~1\thierry\LOCALS~1\Temp\IMT83.xml 1.98KB
C:\DOCUME~1\thierry\LOCALS~1\Temp\IMT84.xml 426 bytes
C:\DOCUME~1\thierry\LOCALS~1\Temp\java_install_reg.log 832 bytes
C:\DOCUME~1\thierry\LOCALS~1\Temp\jusched.log 1.20KB
C:\DOCUME~1\thierry\LOCALS~1\Temp\LVCOMSX.LOG 10.54KB
C:\DOCUME~1\thierry\LOCALS~1\Temp\ram8.ram 53 bytes
C:\DOCUME~1\thierry\LOCALS~1\Temp\rtdrvmon.exe 40.00KB
C:\DOCUME~1\thierry\LOCALS~1\Temp\TFR102.tmp 24.35KB
C:\DOCUME~1\thierry\LOCALS~1\Temp\TFR106.tmp 22.98KB
C:\DOCUME~1\thierry\LOCALS~1\Temp\TFR10E.tmp 12.88KB
C:\DOCUME~1\thierry\LOCALS~1\Temp\TFR11.tmp 59.37KB
C:\DOCUME~1\thierry\LOCALS~1\Temp\TFR111.tmp 50.20KB
C:\DOCUME~1\thierry\LOCALS~1\Temp\TFR116.tmp 81.72KB
C:\DOCUME~1\thierry\LOCALS~1\Temp\TFR11A.tmp 19.63KB
C:\DOCUME~1\thierry\LOCALS~1\Temp\TFR11D.tmp 63.84KB
C:\DOCUME~1\thierry\LOCALS~1\Temp\TFR122.tmp 62.87KB
C:\DOCUME~1\thierry\LOCALS~1\Temp\TFR123.tmp 94.37KB
C:\DOCUME~1\thierry\LOCALS~1\Temp\TFR127.tmp 44.94KB
C:\DOCUME~1\thierry\LOCALS~1\Temp\TFR128.tmp 15.80KB
C:\DOCUME~1\thierry\LOCALS~1\Temp\TFR12A.tmp 25.63KB
C:\DOCUME~1\thierry\LOCALS~1\Temp\TFR12C.tmp 46.35KB
C:\DOCUME~1\thierry\LOCALS~1\Temp\TFR12D.tmp 39.99KB
C:\DOCUME~1\thierry\LOCALS~1\Temp\TFR12F.tmp 66.40KB
C:\DOCUME~1\thierry\LOCALS~1\Temp\TFR132.tmp 48.05KB
C:\DOCUME~1\thierry\LOCALS~1\Temp\TFR136.tmp 61.28KB
C:\DOCUME~1\thierry\LOCALS~1\Temp\TFR14.tmp 49.73KB
C:\DOCUME~1\thierry\LOCALS~1\Temp\TFR14D.tmp 23.05KB
C:\DOCUME~1\thierry\LOCALS~1\Temp\TFR14F.tmp 46.58KB
C:\DOCUME~1\thierry\LOCALS~1\Temp\TFR16D.tmp 89.48KB
C:\DOCUME~1\thierry\LOCALS~1\Temp\TFR16F.tmp 65.71KB
C:\DOCUME~1\thierry\LOCALS~1\Temp\TFR172.tmp 38.76KB
C:\DOCUME~1\thierry\LOCALS~1\Temp\TFR174.tmp 60.75KB
C:\DOCUME~1\thierry\LOCALS~1\Temp\TFR178.tmp 43.80KB
C:\DOCUME~1\thierry\LOCALS~1\Temp\TFR19.tmp 62.87KB
C:\DOCUME~1\thierry\LOCALS~1\Temp\TFR1BA.tmp 12.93KB
C:\DOCUME~1\thierry\LOCALS~1\Temp\TFR1D.tmp 24.35KB
C:\DOCUME~1\thierry\LOCALS~1\Temp\TFR1D7.tmp 68.71KB
C:\DOCUME~1\thierry\LOCALS~1\Temp\TFR1D8.tmp 19.83KB
C:\DOCUME~1\thierry\LOCALS~1\Temp\TFR1DC.tmp 44.92KB
C:\DOCUME~1\thierry\LOCALS~1\Temp\TFR1E.tmp 44.94KB
C:\DOCUME~1\thierry\LOCALS~1\Temp\TFR1E3.tmp 0.17MB
C:\DOCUME~1\thierry\LOCALS~1\Temp\TFR1E5.tmp 28.29KB
C:\DOCUME~1\thierry\LOCALS~1\Temp\TFR1E8.tmp 27.95KB
C:\DOCUME~1\thierry\LOCALS~1\Temp\TFR1E9.tmp 14.95KB
C:\DOCUME~1\thierry\LOCALS~1\Temp\TFR1ED.tmp 35.42KB
C:\DOCUME~1\thierry\LOCALS~1\Temp\TFR1F6.tmp 46.52KB
C:\DOCUME~1\thierry\LOCALS~1\Temp\TFR1F9.tmp 45.22KB
C:\DOCUME~1\thierry\LOCALS~1\Temp\TFR1FC.tmp 15.50KB
C:\DOCUME~1\thierry\LOCALS~1\Temp\TFR1FE.tmp 27.35KB
C:\DOCUME~1\thierry\LOCALS~1\Temp\TFR201.tmp 94.43KB
C:\DOCUME~1\thierry\LOCALS~1\Temp\TFR20B.tmp 39.49KB
C:\DOCUME~1\thierry\LOCALS~1\Temp\TFR20C.tmp 45.89KB
C:\DOCUME~1\thierry\LOCALS~1\Temp\TFR211.tmp 30.01KB
C:\DOCUME~1\thierry\LOCALS~1\Temp\TFR214.tmp 17.08KB
C:\DOCUME~1\thierry\LOCALS~1\Temp\TFR218.tmp 12.93KB
C:\DOCUME~1\thierry\LOCALS~1\Temp\TFR21F.tmp 0.15MB
C:\DOCUME~1\thierry\LOCALS~1\Temp\TFR22.tmp 15.80KB
C:\DOCUME~1\thierry\LOCALS~1\Temp\TFR221.tmp 54.25KB
C:\DOCUME~1\thierry\LOCALS~1\Temp\TFR23.tmp 25.63KB
C:\DOCUME~1\thierry\LOCALS~1\Temp\TFR230.tmp 91.85KB
C:\DOCUME~1\thierry\LOCALS~1\Temp\TFR24.tmp 12.93KB
C:\DOCUME~1\thierry\LOCALS~1\Temp\TFR272.tmp 8.06KB
C:\DOCUME~1\thierry\LOCALS~1\Temp\TFR28.tmp 24.80KB
C:\DOCUME~1\thierry\LOCALS~1\Temp\TFR289.tmp 15.06KB
C:\DOCUME~1\thierry\LOCALS~1\Temp\TFR28D.tmp 48.45KB
C:\DOCUME~1\thierry\LOCALS~1\Temp\TFR28E.tmp 24.80KB
C:\DOCUME~1\thierry\LOCALS~1\Temp\TFR29.tmp 39.99KB
C:\DOCUME~1\thierry\LOCALS~1\Temp\TFR292.tmp 12.20KB
C:\DOCUME~1\thierry\LOCALS~1\Temp\TFR2E.tmp 66.40KB
C:\DOCUME~1\thierry\LOCALS~1\Temp\TFR2F5.tmp 38.20KB
C:\DOCUME~1\thierry\LOCALS~1\Temp\TFR2F6.tmp 49.73KB
C:\DOCUME~1\thierry\LOCALS~1\Temp\TFR2FD.tmp 11.26KB
C:\DOCUME~1\thierry\LOCALS~1\Temp\TFR30.tmp 48.05KB
C:\DOCUME~1\thierry\LOCALS~1\Temp\TFR301.tmp 59.37KB
C:\DOCUME~1\thierry\LOCALS~1\Temp\TFR304.tmp 28.18KB
C:\DOCUME~1\thierry\LOCALS~1\Temp\TFR306.tmp 0.14MB
C:\DOCUME~1\thierry\LOCALS~1\Temp\TFR30C.tmp 16.88KB
C:\DOCUME~1\thierry\LOCALS~1\Temp\TFR311.tmp 20.06KB
C:\DOCUME~1\thierry\LOCALS~1\Temp\TFR312.tmp 13.48KB
C:\DOCUME~1\thierry\LOCALS~1\Temp\TFR316.tmp 21.38KB
C:\DOCUME~1\thierry\LOCALS~1\Temp\TFR31D.tmp 24.35KB
C:\DOCUME~1\thierry\LOCALS~1\Temp\TFR321.tmp 22.98KB
C:\DOCUME~1\thierry\LOCALS~1\Temp\TFR324.tmp 12.88KB
C:\DOCUME~1\thierry\LOCALS~1\Temp\TFR34.tmp 61.28KB
C:\DOCUME~1\thierry\LOCALS~1\Temp\TFR3A.tmp 65.98KB
C:\DOCUME~1\thierry\LOCALS~1\Temp\TFR3E.tmp 20.63KB
C:\DOCUME~1\thierry\LOCALS~1\Temp\TFR42.tmp 22.88KB
C:\DOCUME~1\thierry\LOCALS~1\Temp\TFR45.tmp 22.72KB
C:\DOCUME~1\thierry\LOCALS~1\Temp\TFR4A.tmp 9.99KB
C:\DOCUME~1\thierry\LOCALS~1\Temp\TFR4D.tmp 34.74KB
C:\DOCUME~1\thierry\LOCALS~1\Temp\TFR4F.tmp 31.45KB
C:\DOCUME~1\thierry\LOCALS~1\Temp\TFR53.tmp 27.13KB
C:\DOCUME~1\thierry\LOCALS~1\Temp\TFR58.tmp 23.05KB
C:\DOCUME~1\thierry\LOCALS~1\Temp\TFR5E.tmp 46.58KB
C:\DOCUME~1\thierry\LOCALS~1\Temp\TFR5F.tmp 27.13KB
C:\DOCUME~1\thierry\LOCALS~1\Temp\TFR60.tmp 31.45KB
C:\DOCUME~1\thierry\LOCALS~1\Temp\TFR62.tmp 89.48KB
C:\DOCUME~1\thierry\LOCALS~1\Temp\TFR63.tmp 65.71KB
C:\DOCUME~1\thierry\LOCALS~1\Temp\TFR64.tmp 34.74KB
C:\DOCUME~1\thierry\LOCALS~1\Temp\TFR67.tmp 38.76KB
C:\DOCUME~1\thierry\LOCALS~1\Temp\TFR69.tmp 9.99KB
C:\DOCUME~1\thierry\LOCALS~1\Temp\TFR6B.tmp 60.75KB
C:\DOCUME~1\thierry\LOCALS~1\Temp\TFR6D.tmp 22.72KB
C:\DOCUME~1\thierry\LOCALS~1\Temp\TFR6F.tmp 43.80KB
C:\DOCUME~1\thierry\LOCALS~1\Temp\TFR73.tmp 22.88KB
C:\DOCUME~1\thierry\LOCALS~1\Temp\TFR76.tmp 68.71KB
C:\DOCUME~1\thierry\LOCALS~1\Temp\TFR77.tmp 20.63KB
C:\DOCUME~1\thierry\LOCALS~1\Temp\TFR78.tmp 65.98KB
C:\DOCUME~1\thierry\LOCALS~1\Temp\TFR7A.tmp 19.83KB
C:\DOCUME~1\thierry\LOCALS~1\Temp\TFR7B.tmp 44.92KB
C:\DOCUME~1\thierry\LOCALS~1\Temp\TFR82.tmp 0.17MB
C:\DOCUME~1\thierry\LOCALS~1\Temp\TFR83.tmp 28.29KB
C:\DOCUME~1\thierry\LOCALS~1\Temp\TFR87.tmp 27.95KB
C:\DOCUME~1\thierry\LOCALS~1\Temp\TFR8E.tmp 14.95KB
C:\DOCUME~1\thierry\LOCALS~1\Temp\TFR92.tmp 35.42KB
C:\DOCUME~1\thierry\LOCALS~1\Temp\TFR96.tmp 46.52KB
C:\DOCUME~1\thierry\LOCALS~1\Temp\TFR9A.tmp 45.22KB
C:\DOCUME~1\thierry\LOCALS~1\Temp\TFR9B.tmp 15.50KB
C:\DOCUME~1\thierry\LOCALS~1\Temp\TFR9F.tmp 27.35KB
C:\DOCUME~1\thierry\LOCALS~1\Temp\TFRA3.tmp 94.43KB
C:\DOCUME~1\thierry\LOCALS~1\Temp\TFRAA.tmp 39.49KB
C:\DOCUME~1\thierry\LOCALS~1\Temp\TFRAB.tmp 45.89KB
C:\DOCUME~1\thierry\LOCALS~1\Temp\TFRB1.tmp 13.02KB
C:\DOCUME~1\thierry\LOCALS~1\Temp\TFRB2.tmp 30.01KB
C:\DOCUME~1\thierry\LOCALS~1\Temp\TFRB5.tmp 17.08KB
C:\DOCUME~1\thierry\LOCALS~1\Temp\TFRB7.tmp 12.93KB
C:\DOCUME~1\thierry\LOCALS~1\Temp\TFRBB.tmp 0.15MB
C:\DOCUME~1\thierry\LOCALS~1\Temp\TFRBD.tmp 54.25KB
C:\DOCUME~1\thierry\LOCALS~1\Temp\TFRC.tmp 63.84KB
C:\DOCUME~1\thierry\LOCALS~1\Temp\TFRC3.tmp 91.85KB
C:\DOCUME~1\thierry\LOCALS~1\Temp\TFRCA.tmp 8.06KB
C:\DOCUME~1\thierry\LOCALS~1\Temp\TFRCD.tmp 15.06KB
C:\DOCUME~1\thierry\LOCALS~1\Temp\TFRD.tmp 68.71KB
C:\DOCUME~1\thierry\LOCALS~1\Temp\TFRD2.tmp 48.45KB
C:\DOCUME~1\thierry\LOCALS~1\Temp\TFRD3.tmp 24.80KB
C:\DOCUME~1\thierry\LOCALS~1\Temp\TFRDA.tmp 12.20KB
C:\DOCUME~1\thierry\LOCALS~1\Temp\TFRDD.tmp 38.20KB
C:\DOCUME~1\thierry\LOCALS~1\Temp\TFRE2.tmp 49.73KB
C:\DOCUME~1\thierry\LOCALS~1\Temp\TFRE6.tmp 11.26KB
C:\DOCUME~1\thierry\LOCALS~1\Temp\TFRE7.tmp 59.37KB
C:\DOCUME~1\thierry\LOCALS~1\Temp\TFREE.tmp 28.18KB
C:\DOCUME~1\thierry\LOCALS~1\Temp\TFREF.tmp 0.14MB
C:\DOCUME~1\thierry\LOCALS~1\Temp\TFRF3.tmp 16.88KB
C:\DOCUME~1\thierry\LOCALS~1\Temp\TFRF8.tmp 20.06KB
C:\DOCUME~1\thierry\LOCALS~1\Temp\TFRFE.tmp 13.48KB
C:\DOCUME~1\thierry\LOCALS~1\Temp\TFRFF.tmp 21.38KB
C:\DOCUME~1\thierry\LOCALS~1\Temp\VGX255.tmp 40.57KB
C:\DOCUME~1\thierry\LOCALS~1\Temp\VGX256.tmp 286 bytes
C:\DOCUME~1\thierry\LOCALS~1\Temp\VGX257.tmp 2.59KB
C:\DOCUME~1\thierry\LOCALS~1\Temp\VGX258.tmp 26.47KB
C:\DOCUME~1\thierry\LOCALS~1\Temp\VGX264.tmp 40.57KB
C:\DOCUME~1\thierry\LOCALS~1\Temp\VGX265.tmp 286 bytes
C:\DOCUME~1\thierry\LOCALS~1\Temp\~DF637D.tmp 32.00KB
C:\DOCUME~1\thierry\LOCALS~1\Temp\~DF8432.tmp 96.00KB
C:\DOCUME~1\thierry\LOCALS~1\Temp\~DFAA7C.tmp 32.00KB
C:\DOCUME~1\thierry\LOCALS~1\Temp\~DFC8D.tmp 16.00KB
C:\WINDOWS\MiniDump\Mini122905-01.dmp 88.00KB
C:\WINDOWS\MiniDump\Mini122905-02.dmp 88.00KB
C:\WINDOWS\system32\wbem\Logs\FrameWork.log 778 bytes
C:\WINDOWS\system32\wbem\Logs\mofcomp.log 27.12KB
C:\WINDOWS\system32\wbem\Logs\replog.log 695 bytes
C:\WINDOWS\system32\wbem\Logs\setup.log 13.78KB
C:\WINDOWS\system32\wbem\Logs\wbemcore.log 427 bytes
C:\WINDOWS\system32\wbem\Logs\wbemess.log 18.10KB
C:\WINDOWS\system32\wbem\Logs\wmiadap.log 5.98KB
C:\WINDOWS\system32\wbem\Logs\wmiprov.log 15.99KB
C:\WINDOWS\system32\wbem\Logs\wbemess.lo_ 64.03KB
C:\WINDOWS\0.log 0 bytes
C:\WINDOWS\cmsetacl.log 546 bytes
C:\WINDOWS\COM+.log 3.02KB
C:\WINDOWS\comsetup.log 0.21MB
C:\WINDOWS\DAASINST.LOG 2.15KB
C:\WINDOWS\daasunin.LOG 569 bytes
C:\WINDOWS\DHCPUPG.LOG 178 bytes
C:\WINDOWS\DtcInstall.log 373 bytes
C:\WINDOWS\FaxSetup.log 0.50MB
C:\WINDOWS\FSASWINS.LOG 13.47KB
C:\WINDOWS\FSASWSIN.log 26.77KB
C:\WINDOWS\FSASWUNI.LOG 1.95KB
C:\WINDOWS\FSAVCSIN.LOG 7.83KB
C:\WINDOWS\FSAVINST.LOG 65.09KB
C:\WINDOWS\fsavunin.log 59.49KB
C:\WINDOWS\fsbwinst.log 14.75KB
C:\WINDOWS\FSDEPH.log 0.13MB
C:\WINDOWS\fsdginst.log 3.97KB
C:\WINDOWS\fsdgunst.log 2.43KB
C:\WINDOWS\FSGUIINS.LOG 458 bytes
C:\WINDOWS\FSISU.log 5.01MB
C:\WINDOWS\fsiuupd.log 14.28KB
C:\WINDOWS\fsmainst.log 31.26KB
C:\WINDOWS\fsmaunin.log 5.79KB
C:\WINDOWS\FSPROD.log 0.27MB
C:\WINDOWS\FSPRODRM.LOG 2.39KB
C:\WINDOWS\fsrif.log 7.51KB
C:\WINDOWS\FSSETUP.log 1.70MB
C:\WINDOWS\FSSFM.log 2.83MB
C:\WINDOWS\fssgpex.LOG 0.36MB
C:\WINDOWS\FSSGSUP.LOG 10.64KB
C:\WINDOWS\FSSYSUPD.LOG 9.74KB
C:\WINDOWS\fstnbins.LOG 498 bytes
C:\WINDOWS\fwesinst.log 44.02KB
C:\WINDOWS\HELPINST.LOG 697 bytes
C:\WINDOWS\iis6.log 78.53KB
C:\WINDOWS\imsins.log 1.34KB
C:\WINDOWS\KB873339.log 61.12KB
C:\WINDOWS\KB885250.log 66.14KB
C:\WINDOWS\KB885835.log 67.09KB
C:\WINDOWS\KB885836.log 64.56KB
C:\WINDOWS\KB886185.log 25.61KB
C:\WINDOWS\KB887472.log 30.91KB
C:\WINDOWS\KB887742.log 61.56KB
C:\WINDOWS\KB888113.log 61.24KB
C:\WINDOWS\KB888302.log 37.79KB
C:\WINDOWS\KB890046.log 43.01KB
C:\WINDOWS\KB890859.log 33.03KB
C:\WINDOWS\KB891781.log 54.19KB
C:\WINDOWS\KB893066.log 21.27KB
C:\WINDOWS\KB893756.log 66.74KB
C:\WINDOWS\KB893803v2.log 13.82KB
C:\WINDOWS\KB894391.log 32.97KB
C:\WINDOWS\KB896358.log 62.75KB
C:\WINDOWS\KB896422.log 67.22KB
C:\WINDOWS\KB896423.log 62.11KB
C:\WINDOWS\KB896424.log 67.16KB
C:\WINDOWS\KB896428.log 32.97KB
C:\WINDOWS\KB898461.log 6.84KB
C:\WINDOWS\KB899587.log 68.95KB
C:\WINDOWS\KB899591.log 66.73KB
C:\WINDOWS\KB900485.log 11.00KB
C:\WINDOWS\KB900725.log 41.14KB
C:\WINDOWS\KB901017.log 66.10KB
C:\WINDOWS\KB901214.log 39.84KB
C:\WINDOWS\KB902400.log 59.90KB
C:\WINDOWS\KB904706.log 34.90KB
C:\WINDOWS\KB905414.log 41.70KB
C:\WINDOWS\KB905749.log 35.45KB
C:\WINDOWS\KB905915.log 34.25KB
C:\WINDOWS\KB908519.log 24.10KB
C:\WINDOWS\KB908531.log 34.70KB
C:\WINDOWS\KB910437.log 52.08KB
C:\WINDOWS\KB911562.log 32.29KB
C:\WINDOWS\KB911564.log 31.80KB
C:\WINDOWS\KB911565.log 17.70KB
C:\WINDOWS\KB911567.log 15.76KB
C:\WINDOWS\KB911927.log 44.04KB
C:\WINDOWS\KB912812.log 33.20KB
C:\WINDOWS\KB912919.log 27.60KB
C:\WINDOWS\KB913446.log 15.14KB
C:\WINDOWS\KB913580.log 11.86KB
C:\WINDOWS\msgsocm.log 26.67KB
C:\WINDOWS\NEWSINST.LOG 4.13KB
C:\WINDOWS\ntdtcsetup.log 0.12MB
C:\WINDOWS\ocgen.log 0.26MB
C:\WINDOWS\ocmsn.log 29.10KB
C:\WINDOWS\Q-Klez.log 2.57KB
C:\WINDOWS\regopt.log 5.76KB
C:\WINDOWS\RunSetup.log 0.50MB
C:\WINDOWS\sessmgr.setup.log 3.03KB
C:\WINDOWS\setupact.log 61.20KB
C:\WINDOWS\setupapi.log 0.55MB
C:\WINDOWS\setuperr.log 0 bytes
C:\WINDOWS\spupdsvc.log 1.79KB
C:\WINDOWS\tsoc.log 0.20MB
C:\WINDOWS\updspapi.log 39.68KB
C:\WINDOWS\WGA.log 6.43KB
C:\WINDOWS\WINNT32.LOG 11.81KB
C:\WINDOWS\wmsetup.log 78.18KB
C:\WINDOWS\wmsetup10.log 461 bytes
C:\WINDOWS\wsdu.log 25.91KB
C:\WINDOWS\imsins.BAK 1.34KB
C:\WINDOWS\IE4 Error Log.txt 1.05KB
C:\WINDOWS\OEWABLog.txt 2.02KB
C:\WINDOWS\setuplog.txt 0.62MB
C:\Documents and Settings\All Users\Application Data\Microsoft\Dr Watson\drwtsn32.log 7.43MB
C:\Documents and Settings\All Users\Application Data\Microsoft\Dr Watson\user.dmp 41.67KB
C:\WINDOWS\Debug\blastcln.log 858 bytes
C:\WINDOWS\Debug\mrt.log 3.59KB
C:\WINDOWS\Debug\NetSetup.LOG 3.12KB
C:\WINDOWS\security\logs\backup.log 3.84KB
C:\WINDOWS\security\logs\SceRoot.log 1.82KB
C:\WINDOWS\security\logs\scesetup.log 1.24MB
C:\WINDOWS\security\logs\scecomp.old 32.28KB
C:\Documents and Settings\thierry\Application Data\Real\RealPlayer\realplayer.ste 0 bytes
C:\Documents and Settings\thierry\Application Data\Macromedia\Flash Player\#SharedObjects\X6BKXMG5\fr.prizee.com\swf\gardien.fr.swf\gardien_prefs.sol 73 bytes
C:\Documents and Settings\thierry\Application Data\Macromedia\Flash Player\#SharedObjects\X6BKXMG5\serv043.fr.prizee.com\swf\aquabulle.xx.swf\PXMLSocket.sol 44 bytes
C:\Documents and Settings\thierry\Application Data\Macromedia\Flash Player\#SharedObjects\X6BKXMG5\serv043.fr.prizee.com\swf\archekoulapic.fr.swf\#Koulapic2\opt.sol 145 bytes
C:\Documents and Settings\thierry\Application Data\Macromedia\Flash Player\#SharedObjects\X6BKXMG5\serv046.fr.prizee.com\swf\aquabulle.xx.swf\PXMLSocket.sol 44 bytes
C:\Documents and Settings\thierry\Application Data\Macromedia\Flash Player\#SharedObjects\X6BKXMG5\serv046.fr.prizee.com\swf\archekoulapic.fr.swf\#Koulapic2\opt.sol 145 bytes
C:\Documents and Settings\thierry\Application Data\Macromedia\Flash Player\#SharedObjects\X6BKXMG5\serv111.fr.prizee.com\swf\aquabulle.xx.swf\PXMLSocket.sol 44 bytes
C:\Documents and Settings\thierry\Application Data\Macromedia\Flash Player\#SharedObjects\X6BKXMG5\serv111.fr.prizee.com\swf\archekoulapic.fr.swf\#Koulapic2\opt.sol 145 bytes
C:\Documents and Settings\thierry\Application Data\Macromedia\Flash Player\macromedia.com\support\flashplayer\sys\#fr.prizee.com\settings.sol 83 bytes
C:\Documents and Settings\thierry\Application Data\Macromedia\Flash Player\macromedia.com\support\flashplayer\sys\#serv043.fr.prizee.com\settings.sol 91 bytes
C:\Documents and Settings\thierry\Application Data\Macromedia\Flash Player\macromedia.com\support\flashplayer\sys\#serv046.fr.prizee.com\settings.sol 91 bytes
C:\Documents and Settings\thierry\Application Data\Macromedia\Flash Player\macromedia.com\support\flashplayer\sys\#serv111.fr.prizee.com\settings.sol 91 bytes
C:\Documents and Settings\thierry\Application Data\Macromedia\Flash Player\macromedia.com\support\flashplayer\sys\settings.sol 454 bytes
C:\Program Files\Ewido Anti-Malware\logfile.txt 984 bytes
------------------------------------------------------------------------------------------
0
Réponse 7 / 15
candyred Messages postés 13 Date d'inscription lundi 26 décembre 2005 Statut Membre Dernière intervention 26 décembre 2006
31 mai 2006 à 20:33
le resultat de scan bitdefender
Scanned File
Status

C:\Documents and Settings\thierry\Bureau\karolina\Mes documents\buttons.zip=>Buttons.exe
Infected with: Joke.Buttons

C:\Documents and Settings\thierry\Bureau\karolina\Mes documents\buttons.zip=>Buttons.exe
Disinfection failed

C:\Documents and Settings\thierry\Bureau\karolina\Mes documents\buttons.zip=>Buttons.exe
Deleted

C:\Documents and Settings\thierry\Bureau\karolina\Mes documents\buttons.zip
Updated
0
Réponse 8 / 15
candyred Messages postés 13 Date d'inscription lundi 26 décembre 2005 Statut Membre Dernière intervention 26 décembre 2006
31 mai 2006 à 22:35
et en fin le dernier :
Logfile of HijackThis v1.99.1
Scan saved at 10:37:55 PM, on 5/31/2006
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\csrss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Windows Defender\MsMpEng.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\LEXBCES.EXE
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\system32\LEXPPS.EXE
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\RunDll32.exe
C:\Program Files\CyberLink\PowerDVD\PDVDServ.exe
C:\Program Files\Microsoft IntelliPoint\point32.exe
C:\Program Files\Java\jre1.5.0_06\bin\jusched.exe
C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
C:\Program Files\Adobe\Photoshop Album Starter Edition\3.0\Apps\apdproxy.exe
C:\WINDOWS\system32\LVCOMSX.EXE
C:\Program Files\Logitech\Video\LogiTray.exe
C:\Program Files\AxBx\VirusKeeper 2006 Pro Evaluation\VirusKeeper.exe
C:\Program Files\Windows Defender\MSASCui.exe
C:\Program Files\Lexmark X1100 Series\lxbkbmgr.exe
C:\Program Files\Sound Clips for MSN Messenger\SoundClips.exe
C:\PROGRA~1\MYWEBS~1\bar\3.bin\mwsoemon.exe
C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe
C:\Program Files\Messenger\msmsgs.exe
C:\Program Files\MSN Messenger\msnmsgr.exe
C:\Program Files\Lexmark X1100 Series\lxbkbmon.exe
C:\WINDOWS\system32\ctfmon.exe
C:\WINDOWS\system32\sistray.exe
C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
C:\Program Files\Alwil Software\Avast4\ashServ.exe
C:\Program Files\Logitech\Video\FxSvr2.exe
C:\Program Files\Spyware Doctor\sdhelp.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
C:\WINDOWS\System32\alg.exe
C:\Program Files\ewido anti-malware\ewidoguard.exe
C:\Program Files\ewido anti-malware\ewidoctrl.exe
C:\WINDOWS\system32\rsvp.exe
C:\Program Files\Windows Media Player\wmplayer.exe
C:\Program Files\Skype\Phone\Skype.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Hijackthis Version Française\VERSION TRADUITE ORIGINALE.EXE

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.google.be/?gws_rd=ssl
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
R3 - URLSearchHook: (no name) - {00A6FAF6-072E-44cf-8957-5838F569A31D} - C:\Program Files\MyWebSearch\SrchAstt\3.bin\MWSSRCAS.DLL
O2 - BHO: MyWebSearch Search Assistant BHO - {00A6FAF1-072E-44cf-8957-5838F569A31D} - C:\Program Files\MyWebSearch\SrchAstt\3.bin\MWSSRCAS.DLL
O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll
O2 - BHO: mwsBar BHO - {07B18EA1-A523-4961-B6BB-170DE4475CCA} - C:\Program Files\MyWebSearch\bar\3.bin\MWSBAR.DLL
O2 - BHO: PCTools Site Guard - {5C8B2A36-3DB1-42A4-A3CB-D426709BBFEB} - C:\PROGRA~1\SPYWAR~1\tools\iesdsg.dll
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll
O2 - BHO: ST - {9394EDE7-C8B5-483E-8773-474BF36AF6E4} - C:\Program Files\MSN Apps\ST\01.03.0000.1005\en-xu\stmain.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar1.dll
O2 - BHO: PCTools Browser Monitor - {B56A7D7D-6927-48C8-A975-17DF180C71AC} - C:\PROGRA~1\SPYWAR~1\tools\iesdpb.dll
O2 - BHO: MSNToolBandBHO - {BDBD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\MSN Apps\MSN Toolbar\01.02.5000.1021\fr-be\msntb.dll
O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar1.dll
O3 - Toolbar: Yahoo! Toolbar avec bloqueur de fenêtres pop-up - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll
O3 - Toolbar: MSN - {BDAD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\MSN Apps\MSN Toolbar\01.02.5000.1021\fr-be\msntb.dll
O4 - HKLM\..\Run: [SiSPower] Rundll32.exe SiSPower.dll,ModeAgent
O4 - HKLM\..\Run: [Cmaudio] RunDll32 cmicnfg.cpl,CMICtrlWnd
O4 - HKLM\..\Run: [NeroFilterCheck] C:\WINDOWS\system32\NeroCheck.exe
O4 - HKLM\..\Run: [RemoteControl] "C:\Program Files\CyberLink\PowerDVD\PDVDServ.exe"
O4 - HKLM\..\Run: [IntelliPoint] "C:\Program Files\Microsoft IntelliPoint\point32.exe"
O4 - HKLM\..\Run: [SunJavaUpdateSched] C:\Program Files\Java\jre1.5.0_06\bin\jusched.exe
O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe" -osboot
O4 - HKLM\..\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
O4 - HKLM\..\Run: [Adobe Photo Downloader] "C:\Program Files\Adobe\Photoshop Album Starter Edition\3.0\Apps\apdproxy.exe"
O4 - HKLM\..\Run: [LVCOMSX] C:\WINDOWS\system32\LVCOMSX.EXE
O4 - HKLM\..\Run: [LogitechVideoRepair] C:\Program Files\Logitech\Video\ISStart.exe
O4 - HKLM\..\Run: [LogitechVideoTray] C:\Program Files\Logitech\Video\LogiTray.exe
O4 - HKLM\..\Run: [VirusKeeper] C:\Program Files\AxBx\VirusKeeper 2006 Pro Evaluation\VirusKeeper.exe
O4 - HKLM\..\Run: [Windows Defender] "C:\Program Files\Windows Defender\MSASCui.exe" -hide
O4 - HKLM\..\Run: [Lexmark X1100 Series] "C:\Program Files\Lexmark X1100 Series\lxbkbmgr.exe"
O4 - HKLM\..\Run: [SoundClips] C:\Program Files\Sound Clips for MSN Messenger\SoundClips.exe
O4 - HKLM\..\Run: [My Web Search Bar] rundll32 C:\PROGRA~1\MYWEBS~1\bar\3.bin\MWSBAR.DLL,S
O4 - HKLM\..\Run: [MyWebSearch Email Plugin] C:\PROGRA~1\MYWEBS~1\bar\3.bin\mwsoemon.exe
O4 - HKCU\..\Run: [LDM] C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe
O4 - HKCU\..\Run: [MSMSGS] "C:\Program Files\Messenger\msmsgs.exe" /background
O4 - HKCU\..\Run: [msnmsgr] "C:\Program Files\MSN Messenger\msnmsgr.exe" /background
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [Skype] "C:\Program Files\Skype\Phone\Skype.exe" /nosplash /minimized
O4 - Global Startup: Adobe Reader Speed Launch.lnk = C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe
O4 - Global Startup: Logitech Desktop Messenger.lnk = C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LDMConf.exe
O4 - Global Startup: Utility Tray.lnk = C:\WINDOWS\system32\sistray.exe
O8 - Extra context menu item: &Search - http://edits.mywebsearch.com/toolbaredits/menusearch.jhtml?p=ZN
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll
O9 - Extra button: Spyware Doctor - {2D663D1A-8670-49D9-A1A5-4C56B4E14E84} - C:\PROGRA~1\SPYWAR~1\tools\iesdpb.dll
O9 - Extra button: (no name) - {85d1f590-48f4-11d9-9669-0800200c9a66} - %windir%\bdoscandel.exe (file missing)
O9 - Extra 'Tools' menuitem: Uninstall BitDefender Online Scanner v8 - {85d1f590-48f4-11d9-9669-0800200c9a66} - %windir%\bdoscandel.exe (file missing)
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O16 - DPF: {09C21411-B9A2-4DE6-8416-4E3B58577BE0} (France Telecom MDM ActiveX Control) - http://minitelweb.minitel.com/imin_data/ocx/MDM.cab
O16 - DPF: {17492023-C23A-453E-A040-C7C580BBF700} (Windows Genuine Advantage Validation Tool) - http://download.microsoft.com/download/E/5/6/E5611B10-0D6D-4117-8430-A67417AA88CD/LegitCheckControl.cab
O16 - DPF: {2917297F-F02B-4B9D-81DF-494B6333150B} (Minesweeper Flags Class) - http://messenger.zone.msn.com/binary/MineSweeper.cab31267.cab
O16 - DPF: {30528230-99F7-4BB4-88D8-FA1D4F56A2AB} (YInstStarter Class) - http://us.dl1.yimg.com/download.yahoo.com/dl/installs/yinst20040510.cab
O16 - DPF: {4F1E5B1A-2A80-42CA-8532-2D05CB959537} (MSN Photo Upload Tool) - http://by110fd.bay110.hotmail.msn.com/resources/MsnPUpld.cab
O16 - DPF: {5D86DDB5-BDF9-441B-9E9E-D4730F4EE499} (BDSCANONLINE Control) - http://download.bitdefender.com/resources/scan8/oscan8.cab
O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) - http://update.microsoft.com/windowsupdate/v6/V5Controls/en/x86/client/wuweb_site....
O16 - DPF: {867E13F2-7F31-44FB-AC97-CD38E0DC46EF} (HardwareDetection Control) - http://drivers1.free.fr/hardwaredetection.cab
O16 - DPF: {8E0D4DE5-3180-4024-A327-4DFAD1796A8D} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsClient.cab31267.cab
O16 - DPF: {A9FD89D6-C839-11D3-B0FE-0050044B8FE9} (OBInstallRunner Control) - http://www.opinionbar.com/download/resources/OBInstallCabinet.CAB
O16 - DPF: {B38870E4-7ECB-40DA-8C6A-595F0A5519FF} (MsnMessengerSetupDownloadControl Class) - http://messenger.msn.com/download/MsnMessengerSetupDownloader.cab
O16 - DPF: {BFF1950D-B1B4-4AE8-B842-B2CCF06D9A1B} (Zylom Games Player) - http://game04.zylom.com/activex/zylomgamesplayer.cab
O16 - DPF: {F6BF0D00-0B2A-4A75-BF7B-F385591623AF} (Solitaire Showdown Class) - http://messenger.zone.msn.com/binary/SolitaireShowdown.cab31267.cab
O18 - Protocol: bw+0 - {ABD7B57F-C5B2-4CF9-B0DC-0882BE5CE3DE} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw+0s - {ABD7B57F-C5B2-4CF9-B0DC-0882BE5CE3DE} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw-0 - {ABD7B57F-C5B2-4CF9-B0DC-0882BE5CE3DE} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw-0s - {ABD7B57F-C5B2-4CF9-B0DC-0882BE5CE3DE} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw00 - {ABD7B57F-C5B2-4CF9-B0DC-0882BE5CE3DE} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw00s - {ABD7B57F-C5B2-4CF9-B0DC-0882BE5CE3DE} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw10 - {ABD7B57F-C5B2-4CF9-B0DC-0882BE5CE3DE} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw10s - {ABD7B57F-C5B2-4CF9-B0DC-0882BE5CE3DE} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw20 - {ABD7B57F-C5B2-4CF9-B0DC-0882BE5CE3DE} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw20s - {ABD7B57F-C5B2-4CF9-B0DC-0882BE5CE3DE} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw30 - {ABD7B57F-C5B2-4CF9-B0DC-0882BE5CE3DE} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw30s - {ABD7B57F-C5B2-4CF9-B0DC-0882BE5CE3DE} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw40 - {ABD7B57F-C5B2-4CF9-B0DC-0882BE5CE3DE} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw40s - {ABD7B57F-C5B2-4CF9-B0DC-0882BE5CE3DE} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw50 - {ABD7B57F-C5B2-4CF9-B0DC-0882BE5CE3DE} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw50s - {ABD7B57F-C5B2-4CF9-B0DC-0882BE5CE3DE} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw60 - {ABD7B57F-C5B2-4CF9-B0DC-0882BE5CE3DE} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw60s - {ABD7B57F-C5B2-4CF9-B0DC-0882BE5CE3DE} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw70 - {ABD7B57F-C5B2-4CF9-B0DC-0882BE5CE3DE} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw70s - {ABD7B57F-C5B2-4CF9-B0DC-0882BE5CE3DE} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw80 - {ABD7B57F-C5B2-4CF9-B0DC-0882BE5CE3DE} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw80s - {ABD7B57F-C5B2-4CF9-B0DC-0882BE5CE3DE} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw90 - {ABD7B57F-C5B2-4CF9-B0DC-0882BE5CE3DE} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw90s - {ABD7B57F-C5B2-4CF9-B0DC-0882BE5CE3DE} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwa0 - {ABD7B57F-C5B2-4CF9-B0DC-0882BE5CE3DE} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwa0s - {ABD7B57F-C5B2-4CF9-B0DC-0882BE5CE3DE} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwb0 - {ABD7B57F-C5B2-4CF9-B0DC-0882BE5CE3DE} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwb0s - {ABD7B57F-C5B2-4CF9-B0DC-0882BE5CE3DE} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwc0 - {ABD7B57F-C5B2-4CF9-B0DC-0882BE5CE3DE} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwc0s - {ABD7B57F-C5B2-4CF9-B0DC-0882BE5CE3DE} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwd0 - {ABD7B57F-C5B2-4CF9-B0DC-0882BE5CE3DE} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwd0s - {ABD7B57F-C5B2-4CF9-B0DC-0882BE5CE3DE} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwe0 - {ABD7B57F-C5B2-4CF9-B0DC-0882BE5CE3DE} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwe0s - {ABD7B57F-C5B2-4CF9-B0DC-0882BE5CE3DE} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwf0 - {ABD7B57F-C5B2-4CF9-B0DC-0882BE5CE3DE} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwf0s - {ABD7B57F-C5B2-4CF9-B0DC-0882BE5CE3DE} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwfile-8876480 - {9462A756-7B47-47BC-8C80-C34B9B80B32B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\GAPlugProtocol-8876480.dll
O18 - Protocol: bwg0 - {ABD7B57F-C5B2-4CF9-B0DC-0882BE5CE3DE} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwg0s - {ABD7B57F-C5B2-4CF9-B0DC-0882BE5CE3DE} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwh0 - {ABD7B57F-C5B2-4CF9-B0DC-0882BE5CE3DE} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwh0s - {ABD7B57F-C5B2-4CF9-B0DC-0882BE5CE3DE} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwi0 - {ABD7B57F-C5B2-4CF9-B0DC-0882BE5CE3DE} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwi0s - {ABD7B57F-C5B2-4CF9-B0DC-0882BE5CE3DE} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwj0 - {ABD7B57F-C5B2-4CF9-B0DC-0882BE5CE3DE} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwj0s - {ABD7B57F-C5B2-4CF9-B0DC-0882BE5CE3DE} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwk0 - {ABD7B57F-C5B2-4CF9-B0DC-0882BE5CE3DE} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwk0s - {ABD7B57F-C5B2-4CF9-B0DC-0882BE5CE3DE} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwl0 - {ABD7B57F-C5B2-4CF9-B0DC-0882BE5CE3DE} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwl0s - {ABD7B57F-C5B2-4CF9-B0DC-0882BE5CE3DE} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwm0 - {ABD7B57F-C5B2-4CF9-B0DC-0882BE5CE3DE} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwm0s - {ABD7B57F-C5B2-4CF9-B0DC-0882BE5CE3DE} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwn0 - {ABD7B57F-C5B2-4CF9-B0DC-0882BE5CE3DE} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwn0s - {ABD7B57F-C5B2-4CF9-B0DC-0882BE5CE3DE} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwo0 - {ABD7B57F-C5B2-4CF9-B0DC-0882BE5CE3DE} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwo0s - {ABD7B57F-C5B2-4CF9-B0DC-0882BE5CE3DE} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwp0 - {ABD7B57F-C5B2-4CF9-B0DC-0882BE5CE3DE} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwp0s - {ABD7B57F-C5B2-4CF9-B0DC-0882BE5CE3DE} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwq0 - {ABD7B57F-C5B2-4CF9-B0DC-0882BE5CE3DE} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwq0s - {ABD7B57F-C5B2-4CF9-B0DC-0882BE5CE3DE} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwr0 - {ABD7B57F-C5B2-4CF9-B0DC-0882BE5CE3DE} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwr0s - {ABD7B57F-C5B2-4CF9-B0DC-0882BE5CE3DE} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bws0 - {ABD7B57F-C5B2-4CF9-B0DC-0882BE5CE3DE} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bws0s - {ABD7B57F-C5B2-4CF9-B0DC-0882BE5CE3DE} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwt0 - {ABD7B57F-C5B2-4CF9-B0DC-0882BE5CE3DE} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwt0s - {ABD7B57F-C5B2-4CF9-B0DC-0882BE5CE3DE} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwu0 - {ABD7B57F-C5B2-4CF9-B0DC-0882BE5CE3DE} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwu0s - {ABD7B57F-C5B2-4CF9-B0DC-0882BE5CE3DE} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwv0 - {ABD7B57F-C5B2-4CF9-B0DC-0882BE5CE3DE} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwv0s - {ABD7B57F-C5B2-4CF9-B0DC-0882BE5CE3DE} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bww0 - {ABD7B57F-C5B2-4CF9-B0DC-0882BE5CE3DE} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bww0s - {ABD7B57F-C5B2-4CF9-B0DC-0882BE5CE3DE} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwx0 - {ABD7B57F-C5B2-4CF9-B0DC-0882BE5CE3DE} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwx0s - {ABD7B57F-C5B2-4CF9-B0DC-0882BE5CE3DE} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwy0 - {ABD7B57F-C5B2-4CF9-B0DC-0882BE5CE3DE} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwy0s - {ABD7B57F-C5B2-4CF9-B0DC-0882BE5CE3DE} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwz0 - {ABD7B57F-C5B2-4CF9-B0DC-0882BE5CE3DE} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwz0s - {ABD7B57F-C5B2-4CF9-B0DC-0882BE5CE3DE} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - "C:\PROGRA~1\MSNMES~1\msgrapp.dll" (file missing)
O18 - Protocol: offline-8876480 - {ABD7B57F-C5B2-4CF9-B0DC-0882BE5CE3DE} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - Unknown owner - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
O23 - Service: avast! Antivirus - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashServ.exe
O23 - Service: avast! Mail Scanner - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe" /service (file missing)
O23 - Service: avast! Web Scanner - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe" /service (file missing)
O23 - Service: ewido security suite control - ewido networks - C:\Program Files\ewido anti-malware\ewidoctrl.exe
O23 - Service: ewido security suite guard - ewido networks - C:\Program Files\ewido anti-malware\ewidoguard.exe
O23 - Service: LexBce Server (LexBceS) - Lexmark International, Inc. - C:\WINDOWS\system32\LEXBCES.EXE
O23 - Service: PC Tools Spyware Doctor (SDhelper) - PC Tools Research Pty Ltd - C:\Program Files\Spyware Doctor\sdhelp.exe
0
Réponse 9 / 15
candyred Messages postés 13 Date d'inscription lundi 26 décembre 2005 Statut Membre Dernière intervention 26 décembre 2006
31 mai 2006 à 22:49
salut c'est encore moi - voila apres le scan du dernier "truc" je ne sais pas quoi fair -je le choix entre scan , fixer objet et info sur l'objet -pffff je suis nul en informatique -en attendent je touche a rien je vais attendr la reponce de pro (oui ce de vous que je parle ;-)) -
0
Réponse 10 / 15
^^Marie^^ Messages postés 113929 Date d'inscription mardi 6 septembre 2005 Statut Membre Dernière intervention 28 août 2020 3 274
31 mai 2006 à 22:53


Re,


Relance Hijack cliques sur "do a scan only" coches ces ligne et "fix checked"

(demo « fixer les lignes ») :
(http://pageperso.aol.fr/balltrap34/demohijack.htm)


R3 - URLSearchHook: (no name) - {00A6FAF6-072E-44cf-8957-5838F569A31D} - C:\Program Files\MyWebSearch\SrchAstt\3.bin\MWSSRCAS.DLL

O2 - BHO: MyWebSearch Search Assistant BHO - {00A6FAF1-072E-44cf-8957-5838F569A31D} - C:\Program Files\MyWebSearch\SrchAstt\3.bin\MWSSRCAS.DLL

O2 - BHO: mwsBar BHO - {07B18EA1-A523-4961-B6BB-170DE4475CCA} - C:\Program Files\MyWebSearch\bar\3.bin\MWSBAR.DLL
O2 - BHO: ST - {9394EDE7-C8B5-483E-8773-474BF36AF6E4} - C:\Program Files\MSN Apps\ST\01.03.0000.1005\en-xu\stmain.dll
O4 - HKLM\..\Run: [MyWebSearch Email Plugin] C:\PROGRA~1\MYWEBS~1\bar\3.bin\mwsoemon.exe
O8 - Extra context menu item: &Search - http://edits.mywebsearch.com/toolbaredits/menusearch.jhtml?p=ZN

O16 - DPF: {09C21411-B9A2-4DE6-8416-4E3B58577BE0} (France Telecom MDM ActiveX Control) - http://minitelweb.minitel.com/imin_data/ocx/MDM.cab
O16 - DPF: {17492023-C23A-453E-A040-C7C580BBF700} (Windows Genuine Advantage Validation Tool) - http://download.microsoft.com/download/E/5/6/E5611B10-0D6D-4117-8430-A67417AA88CD/LegitCheckControl.cab
O16 - DPF: {2917297F-F02B-4B9D-81DF-494B6333150B} (Minesweeper Flags Class) - http://messenger.zone.msn.com/binary/MineSweeper.cab31267.cab
O16 - DPF: {30528230-99F7-4BB4-88D8-FA1D4F56A2AB} (YInstStarter Class) - http://us.dl1.yimg.com/download.yahoo.com/dl/installs/yinst20040510.cab
O16 - DPF: {4F1E5B1A-2A80-42CA-8532-2D05CB959537} (MSN Photo Upload Tool) - http://by110fd.bay110.hotmail.msn.com/resources/MsnPUpld.cab
O16 - DPF: {5D86DDB5-BDF9-441B-9E9E-D4730F4EE499} (BDSCANONLINE Control) - http://download.bitdefender.com/resources/scan8/oscan8.cab
O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) - http://update.microsoft.com/windowsupdate/v6/V5Controls/en/x86/client/wuweb_site....
O16 - DPF: {867E13F2-7F31-44FB-AC97-CD38E0DC46EF} (HardwareDetection Control) - http://drivers1.free.fr/hardwaredetection.cab
O16 - DPF: {8E0D4DE5-3180-4024-A327-4DFAD1796A8D} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsClient.cab31267.cab
O16 - DPF: {A9FD89D6-C839-11D3-B0FE-0050044B8FE9} (OBInstallRunner Control) - http://www.opinionbar.com/download/resources/OBInstallCabinet.CAB
O16 - DPF: {B38870E4-7ECB-40DA-8C6A-595F0A5519FF} (MsnMessengerSetupDownloadControl Class) - http://messenger.msn.com/download/MsnMessengerSetupDownloader.cab
O16 - DPF: {BFF1950D-B1B4-4AE8-B842-B2CCF06D9A1B} (Zylom Games Player) - http://game04.zylom.com/activex/zylomgamesplayer.cab
O16 - DPF: {F6BF0D00-0B2A-4A75-BF7B-F385591623AF} (Solitaire Showdown Class) - http://messenger.zone.msn.com/binary/SolitaireShowdown.cab31267.cab
O18 - Protocol: bw+0 - {ABD7B57F-C5B2-4CF9-B0DC-0882BE5CE3DE} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw+0s - {ABD7B57F-C5B2-4CF9-B0DC-0882BE5CE3DE} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw-0 - {ABD7B57F-C5B2-4CF9-B0DC-0882BE5CE3DE} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw-0s - {ABD7B57F-C5B2-4CF9-B0DC-0882BE5CE3DE} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw00 - {ABD7B57F-C5B2-4CF9-B0DC-0882BE5CE3DE} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw00s - {ABD7B57F-C5B2-4CF9-B0DC-0882BE5CE3DE} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw10 - {ABD7B57F-C5B2-4CF9-B0DC-0882BE5CE3DE} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw10s - {ABD7B57F-C5B2-4CF9-B0DC-0882BE5CE3DE} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw20 - {ABD7B57F-C5B2-4CF9-B0DC-0882BE5CE3DE} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw20s - {ABD7B57F-C5B2-4CF9-B0DC-0882BE5CE3DE} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw30 - {ABD7B57F-C5B2-4CF9-B0DC-0882BE5CE3DE} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw30s - {ABD7B57F-C5B2-4CF9-B0DC-0882BE5CE3DE} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw40 - {ABD7B57F-C5B2-4CF9-B0DC-0882BE5CE3DE} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw40s - {ABD7B57F-C5B2-4CF9-B0DC-0882BE5CE3DE} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw50 - {ABD7B57F-C5B2-4CF9-B0DC-0882BE5CE3DE} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw50s - {ABD7B57F-C5B2-4CF9-B0DC-0882BE5CE3DE} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw60 - {ABD7B57F-C5B2-4CF9-B0DC-0882BE5CE3DE} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw60s - {ABD7B57F-C5B2-4CF9-B0DC-0882BE5CE3DE} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw70 - {ABD7B57F-C5B2-4CF9-B0DC-0882BE5CE3DE} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw70s - {ABD7B57F-C5B2-4CF9-B0DC-0882BE5CE3DE} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw80 - {ABD7B57F-C5B2-4CF9-B0DC-0882BE5CE3DE} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw80s - {ABD7B57F-C5B2-4CF9-B0DC-0882BE5CE3DE} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw90 - {ABD7B57F-C5B2-4CF9-B0DC-0882BE5CE3DE} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw90s - {ABD7B57F-C5B2-4CF9-B0DC-0882BE5CE3DE} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwa0 - {ABD7B57F-C5B2-4CF9-B0DC-0882BE5CE3DE} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwa0s - {ABD7B57F-C5B2-4CF9-B0DC-0882BE5CE3DE} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwb0 - {ABD7B57F-C5B2-4CF9-B0DC-0882BE5CE3DE} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwb0s - {ABD7B57F-C5B2-4CF9-B0DC-0882BE5CE3DE} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwc0 - {ABD7B57F-C5B2-4CF9-B0DC-0882BE5CE3DE} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwc0s - {ABD7B57F-C5B2-4CF9-B0DC-0882BE5CE3DE} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwd0 - {ABD7B57F-C5B2-4CF9-B0DC-0882BE5CE3DE} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwd0s - {ABD7B57F-C5B2-4CF9-B0DC-0882BE5CE3DE} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwe0 - {ABD7B57F-C5B2-4CF9-B0DC-0882BE5CE3DE} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwe0s - {ABD7B57F-C5B2-4CF9-B0DC-0882BE5CE3DE} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwf0 - {ABD7B57F-C5B2-4CF9-B0DC-0882BE5CE3DE} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwf0s - {ABD7B57F-C5B2-4CF9-B0DC-0882BE5CE3DE} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwfile-8876480 - {9462A756-7B47-47BC-8C80-C34B9B80B32B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\GAPlugProtocol-8876480.dll
O18 - Protocol: bwg0 - {ABD7B57F-C5B2-4CF9-B0DC-0882BE5CE3DE} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwg0s - {ABD7B57F-C5B2-4CF9-B0DC-0882BE5CE3DE} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwh0 - {ABD7B57F-C5B2-4CF9-B0DC-0882BE5CE3DE} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwh0s - {ABD7B57F-C5B2-4CF9-B0DC-0882BE5CE3DE} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwi0 - {ABD7B57F-C5B2-4CF9-B0DC-0882BE5CE3DE} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwi0s - {ABD7B57F-C5B2-4CF9-B0DC-0882BE5CE3DE} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwj0 - {ABD7B57F-C5B2-4CF9-B0DC-0882BE5CE3DE} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwj0s - {ABD7B57F-C5B2-4CF9-B0DC-0882BE5CE3DE} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwk0 - {ABD7B57F-C5B2-4CF9-B0DC-0882BE5CE3DE} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwk0s - {ABD7B57F-C5B2-4CF9-B0DC-0882BE5CE3DE} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwl0 - {ABD7B57F-C5B2-4CF9-B0DC-0882BE5CE3DE} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwl0s - {ABD7B57F-C5B2-4CF9-B0DC-0882BE5CE3DE} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwm0 - {ABD7B57F-C5B2-4CF9-B0DC-0882BE5CE3DE} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwm0s - {ABD7B57F-C5B2-4CF9-B0DC-0882BE5CE3DE} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwn0 - {ABD7B57F-C5B2-4CF9-B0DC-0882BE5CE3DE} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwn0s - {ABD7B57F-C5B2-4CF9-B0DC-0882BE5CE3DE} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwo0 - {ABD7B57F-C5B2-4CF9-B0DC-0882BE5CE3DE} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwo0s - {ABD7B57F-C5B2-4CF9-B0DC-0882BE5CE3DE} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwp0 - {ABD7B57F-C5B2-4CF9-B0DC-0882BE5CE3DE} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwp0s - {ABD7B57F-C5B2-4CF9-B0DC-0882BE5CE3DE} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwq0 - {ABD7B57F-C5B2-4CF9-B0DC-0882BE5CE3DE} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwq0s - {ABD7B57F-C5B2-4CF9-B0DC-0882BE5CE3DE} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwr0 - {ABD7B57F-C5B2-4CF9-B0DC-0882BE5CE3DE} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwr0s - {ABD7B57F-C5B2-4CF9-B0DC-0882BE5CE3DE} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bws0 - {ABD7B57F-C5B2-4CF9-B0DC-0882BE5CE3DE} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bws0s - {ABD7B57F-C5B2-4CF9-B0DC-0882BE5CE3DE} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwt0 - {ABD7B57F-C5B2-4CF9-B0DC-0882BE5CE3DE} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwt0s - {ABD7B57F-C5B2-4CF9-B0DC-0882BE5CE3DE} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwu0 - {ABD7B57F-C5B2-4CF9-B0DC-0882BE5CE3DE} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwu0s - {ABD7B57F-C5B2-4CF9-B0DC-0882BE5CE3DE} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwv0 - {ABD7B57F-C5B2-4CF9-B0DC-0882BE5CE3DE} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwv0s - {ABD7B57F-C5B2-4CF9-B0DC-0882BE5CE3DE} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bww0 - {ABD7B57F-C5B2-4CF9-B0DC-0882BE5CE3DE} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bww0s - {ABD7B57F-C5B2-4CF9-B0DC-0882BE5CE3DE} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwx0 - {ABD7B57F-C5B2-4CF9-B0DC-0882BE5CE3DE} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwx0s - {ABD7B57F-C5B2-4CF9-B0DC-0882BE5CE3DE} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwy0 - {ABD7B57F-C5B2-4CF9-B0DC-0882BE5CE3DE} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwy0s - {ABD7B57F-C5B2-4CF9-B0DC-0882BE5CE3DE} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwz0 - {ABD7B57F-C5B2-4CF9-B0DC-0882BE5CE3DE} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwz0s - {ABD7B57F-C5B2-4CF9-B0DC-0882BE5CE3DE} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: offline-8876480 - {ABD7B57F-C5B2-4CF9-B0DC-0882BE5CE3DE} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll


refais un HT


A++

0
Réponse 11 / 15
candyred Messages postés 13 Date d'inscription lundi 26 décembre 2005 Statut Membre Dernière intervention 26 décembre 2006
31 mai 2006 à 23:29
merci pour ta reponce si rapide ;-))) voila le resultat
Logfile of HijackThis v1.99.1
Scan saved at 11:31:14 PM, on 5/31/2006
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\csrss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Windows Defender\MsMpEng.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\LEXBCES.EXE
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\system32\LEXPPS.EXE
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\RunDll32.exe
C:\Program Files\CyberLink\PowerDVD\PDVDServ.exe
C:\Program Files\Microsoft IntelliPoint\point32.exe
C:\Program Files\Java\jre1.5.0_06\bin\jusched.exe
C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
C:\Program Files\Adobe\Photoshop Album Starter Edition\3.0\Apps\apdproxy.exe
C:\WINDOWS\system32\LVCOMSX.EXE
C:\Program Files\Logitech\Video\LogiTray.exe
C:\Program Files\AxBx\VirusKeeper 2006 Pro Evaluation\VirusKeeper.exe
C:\Program Files\Windows Defender\MSASCui.exe
C:\Program Files\Lexmark X1100 Series\lxbkbmgr.exe
C:\Program Files\Sound Clips for MSN Messenger\SoundClips.exe
C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe
C:\Program Files\Messenger\msmsgs.exe
C:\Program Files\MSN Messenger\msnmsgr.exe
C:\Program Files\Lexmark X1100 Series\lxbkbmon.exe
C:\WINDOWS\system32\ctfmon.exe
C:\WINDOWS\system32\sistray.exe
C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
C:\Program Files\Alwil Software\Avast4\ashServ.exe
C:\Program Files\Logitech\Video\FxSvr2.exe
C:\Program Files\Spyware Doctor\sdhelp.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
C:\WINDOWS\System32\alg.exe
C:\Program Files\ewido anti-malware\ewidoguard.exe
C:\Program Files\ewido anti-malware\ewidoctrl.exe
C:\WINDOWS\system32\rsvp.exe
C:\Program Files\Windows Media Player\wmplayer.exe
C:\Program Files\Skype\Phone\Skype.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Hijackthis Version Française\VERSION TRADUITE ORIGINALE.EXE

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.google.be/?gws_rd=ssl
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll
O2 - BHO: PCTools Site Guard - {5C8B2A36-3DB1-42A4-A3CB-D426709BBFEB} - C:\PROGRA~1\SPYWAR~1\tools\iesdsg.dll
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar1.dll
O2 - BHO: PCTools Browser Monitor - {B56A7D7D-6927-48C8-A975-17DF180C71AC} - C:\PROGRA~1\SPYWAR~1\tools\iesdpb.dll
O2 - BHO: MSNToolBandBHO - {BDBD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\MSN Apps\MSN Toolbar\01.02.5000.1021\fr-be\msntb.dll
O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar1.dll
O3 - Toolbar: Yahoo! Toolbar avec bloqueur de fenêtres pop-up - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll
O3 - Toolbar: MSN - {BDAD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\MSN Apps\MSN Toolbar\01.02.5000.1021\fr-be\msntb.dll
O4 - HKLM\..\Run: [SiSPower] Rundll32.exe SiSPower.dll,ModeAgent
O4 - HKLM\..\Run: [Cmaudio] RunDll32 cmicnfg.cpl,CMICtrlWnd
O4 - HKLM\..\Run: [NeroFilterCheck] C:\WINDOWS\system32\NeroCheck.exe
O4 - HKLM\..\Run: [RemoteControl] "C:\Program Files\CyberLink\PowerDVD\PDVDServ.exe"
O4 - HKLM\..\Run: [IntelliPoint] "C:\Program Files\Microsoft IntelliPoint\point32.exe"
O4 - HKLM\..\Run: [SunJavaUpdateSched] C:\Program Files\Java\jre1.5.0_06\bin\jusched.exe
O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe" -osboot
O4 - HKLM\..\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
O4 - HKLM\..\Run: [Adobe Photo Downloader] "C:\Program Files\Adobe\Photoshop Album Starter Edition\3.0\Apps\apdproxy.exe"
O4 - HKLM\..\Run: [LVCOMSX] C:\WINDOWS\system32\LVCOMSX.EXE
O4 - HKLM\..\Run: [LogitechVideoRepair] C:\Program Files\Logitech\Video\ISStart.exe
O4 - HKLM\..\Run: [LogitechVideoTray] C:\Program Files\Logitech\Video\LogiTray.exe
O4 - HKLM\..\Run: [VirusKeeper] C:\Program Files\AxBx\VirusKeeper 2006 Pro Evaluation\VirusKeeper.exe
O4 - HKLM\..\Run: [Windows Defender] "C:\Program Files\Windows Defender\MSASCui.exe" -hide
O4 - HKLM\..\Run: [Lexmark X1100 Series] "C:\Program Files\Lexmark X1100 Series\lxbkbmgr.exe"
O4 - HKLM\..\Run: [SoundClips] C:\Program Files\Sound Clips for MSN Messenger\SoundClips.exe
O4 - HKLM\..\Run: [My Web Search Bar] rundll32 C:\PROGRA~1\MYWEBS~1\bar\3.bin\MWSBAR.DLL,S
O4 - HKCU\..\Run: [LDM] C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe
O4 - HKCU\..\Run: [MSMSGS] "C:\Program Files\Messenger\msmsgs.exe" /background
O4 - HKCU\..\Run: [msnmsgr] "C:\Program Files\MSN Messenger\msnmsgr.exe" /background
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [Skype] "C:\Program Files\Skype\Phone\Skype.exe" /nosplash /minimized
O4 - Global Startup: Adobe Reader Speed Launch.lnk = C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe
O4 - Global Startup: Logitech Desktop Messenger.lnk = C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LDMConf.exe
O4 - Global Startup: Utility Tray.lnk = C:\WINDOWS\system32\sistray.exe
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll
O9 - Extra button: Spyware Doctor - {2D663D1A-8670-49D9-A1A5-4C56B4E14E84} - C:\PROGRA~1\SPYWAR~1\tools\iesdpb.dll
O9 - Extra button: (no name) - {85d1f590-48f4-11d9-9669-0800200c9a66} - %windir%\bdoscandel.exe (file missing)
O9 - Extra 'Tools' menuitem: Uninstall BitDefender Online Scanner v8 - {85d1f590-48f4-11d9-9669-0800200c9a66} - %windir%\bdoscandel.exe (file missing)
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O18 - Protocol: bw-0 - {ABD7B57F-C5B2-4CF9-B0DC-0882BE5CE3DE} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw-0s - {ABD7B57F-C5B2-4CF9-B0DC-0882BE5CE3DE} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - Unknown owner - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
O23 - Service: avast! Antivirus - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashServ.exe
O23 - Service: avast! Mail Scanner - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe" /service (file missing)
O23 - Service: avast! Web Scanner - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe" /service (file missing)
O23 - Service: ewido security suite control - ewido networks - C:\Program Files\ewido anti-malware\ewidoctrl.exe
O23 - Service: ewido security suite guard - ewido networks - C:\Program Files\ewido anti-malware\ewidoguard.exe
O23 - Service: LexBce Server (LexBceS) - Lexmark International, Inc. - C:\WINDOWS\system32\LEXBCES.EXE
O23 - Service: PC Tools Spyware Doctor (SDhelper) - PC Tools Research Pty Ltd - C:\Program Files\Spyware Doctor\sdhelp.exe
0
Réponse 12 / 15
^^Marie^^ Messages postés 113929 Date d'inscription mardi 6 septembre 2005 Statut Membre Dernière intervention 28 août 2020 3 274
1 juin 2006 à 00:59
Re,

Cela donne quoi tes soucis, maintenant
A++
0
Réponse 13 / 15
candyred Messages postés 13 Date d'inscription lundi 26 décembre 2005 Statut Membre Dernière intervention 26 décembre 2006
1 juin 2006 à 09:46
je croit que tout est ok -en tout cas mes progremmes se bloque plus :-))
--^^Marie^^ merci beaucoup de ton aide gros bisous et merci encore

@+
0
Réponse 14 / 15
^^Marie^^ Messages postés 113929 Date d'inscription mardi 6 septembre 2005 Statut Membre Dernière intervention 28 août 2020 3 274
1 juin 2006 à 09:48
OK, bonne route et reviens quand tu veux
A++
0
Réponse 15 / 15
july
28 sept. 2007 à 14:20
bonjour,
moi j'ai plein de fichiers textes de ec type dans mon dossier, tous le même jour à la même heure...
Cookie:seb@msn.fr/
Cookie:seb@weborama.fr/
Cookie:seb@yahoo.com
Cookie:seb@live.com
Cookie:seb@msn.com
Cookie:seb@p.live.com
Cookie:seb@login.live.com
Cookie:seb@atdmt.com
Cookie:seb@rad.msn.com
etc...

du coup je soupçonne mon ami d'avoir plein d'adresses mail, vu qu'il efface l'historique d'internet à chaque fois je pensais avoir découvert qu'il avait d'autres adresses sur des sites de rencobtre (j'en ai vu dans les cookies).
alors, à quoi correspondent ces fichiers? ça veut dire qu'il chate sur msn en cachette ?
merci pour votre réponse.

PS : vu qu'il efface systématiquement ses traces dès qu'il navique sur mozilla firefox, ai-je un autre moyen de voir ses traces ? j'ai ses soupçons car une fos il a oublié d'effacer les cookies, sinon je ne suis pas parano.
0

Discussions similaires

Est ce que le site tlauncher est dangereux ?
caribou -
bazfile -

1 réponse
Comment savoir si j'ai attrapé un virus sur mon téléphone ?
Infolock -
bell -

66 réponses
4 virus en raison d’un porno ????
valou -
Bello040420 -

9 réponses
Virus Altruistic
Mael03250 -
MisteryBean -

11 réponses
Supprimer notifications myavids.com sous Android.
Guy72 -
Liline -

7 réponses