Sujet Précédent Sujet Suivant

Virus ? que dois je faire

Résolu/Fermé
aniece Messages postés 13 Date d'inscription mercredi 29 août 2007 Statut Membre Dernière intervention 27 avril 2009 - 29 août 2007 à 22:40
aniece Messages postés 13 Date d'inscription mercredi 29 août 2007 Statut Membre Dernière intervention 27 avril 2009 - 12 sept. 2007 à 07:50
Bonjour

Je crois que j'ai un virus. Mon antivirus a bugger , j'ai voulu le réinstaller : impossible

de plus , je ne peux plus restaurer mon ordi à une date antérieure, ça me dit "restauration incomplète"

enfin internet explorer plante régulièrement

voici le rapport hijackthis (qui peut m'aider ????)

Logfile of Trend Micro HijackThis v2.0.0 (BETA)
Scan saved at 22:02:15, on 29/08/2007
Platform: Windows XP SP2 (WinNT 5.01.2600)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\Explorer.EXE
C:\PROGRA~1\FICHIE~1\AOL\ACS\AOLacsd.exe
C:\WINDOWS\system32\netdde.exe
C:\WINDOWS\system32\slserv.exe
C:\WINDOWS\System32\snmp.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\dmadmin.exe
C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
C:\Program Files\QuickTime\qttask.exe
C:\Program Files\Hewlett-Packard\Digital Imaging\Unload\hpqcmon.exe
C:\Program Files\LOGICIEL RAJOUTES\MouseWare\system\em_exec.exe
C:\Program Files\Hewlett-Packard\HP Share-to-Web\hpgs2wnd.exe
C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe
C:\Program Files\Java\jre1.6.0_02\bin\jusched.exe
C:\WINDOWS\SOUNDMAN.EXE
C:\Program Files\ScanSoft\OmniPageSE2.0\OpwareSE2.exe
C:\Program Files\Hewlett-Packard\HP Share-to-Web\hpgs2wnf.exe
C:\WINDOWS\system32\ctfmon.exe
C:\WINDOWS\9129837.exe
C:\Program Files\VMN Toolbox\VMNToolbox.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Documents and Settings\Agnès\Favoris\Bureau\scanner.exe.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://webstats.motigo.com/s?tab=1&link=1&id=3247607
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = https://www.msn.com/fr-fr/?ocid=iehp
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.msn.com/fr-fr/?ocid=iehp
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = localhost
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll
O2 - BHO: Secured_eMule toolbar - {1d1b60fd-b21f-4b9a-8a5f-64e8544828d7} - (no file)
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_02\bin\ssv.dll
O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)
O2 - BHO: Windows Live Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O3 - Toolbar: (no name) - {4982D40A-C53B-4615-B15B-B5B5E98D167C} - (no file)
O3 - Toolbar: Easy-WebPrint - {327C2873-E90D-4c37-AA9D-10AC9BABA46C} - C:\Program Files\Canon\Easy-WebPrint\Toolband.dll
O3 - Toolbar: (no name) - {1d1b60fd-b21f-4b9a-8a5f-64e8544828d7} - (no file)
O4 - HKLM\..\Run: [SynTPEnh] C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
O4 - HKLM\..\Run: [Imjpmig8.1] "C:\WINDOWS\IME\imjp8_1\IMJPMIG.EXE" /Spoil /RemAdvDef /Migration32
O4 - HKLM\..\Run: [Logitech Utility] Logi_MwX.Exe
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [CamMonitor] C:\Program Files\Hewlett-Packard\Digital Imaging\\Unload\hpqcmon.exe
O4 - HKLM\..\Run: [Share-to-Web Namespace Daemon] C:\Program Files\Hewlett-Packard\HP Share-to-Web\hpgs2wnd.exe
O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe" -osboot
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre1.6.0_02\bin\jusched.exe"
O4 - HKLM\..\Run: [SoundMan] SOUNDMAN.EXE
O4 - HKLM\..\Run: [OpwareSE2] "C:\Program Files\ScanSoft\OmniPageSE2.0\OpwareSE2.exe"
O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe"
O4 - HKLM\..\Run: [PHIME2002ASync] C:\WINDOWS\system32\IME\TINTLGNT\TINTSETP.EXE /SYNC
O4 - HKLM\..\Run: [gjhzinva] c:\windows\system32\gjhzinva.exe gjhzinva
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [WOOKIT] C:\PROGRA~1\Wanadoo\Shell.exe appLaunchClientZone.shl|PARAM= cnx
O4 - HKCU\..\Run: [ttool] C:\WINDOWS\9129837.exe
O4 - HKCU\..\Run: [Skype] "C:\Program Files\Skype\Phone\Skype.exe" /nosplash /minimized
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE RÉSEAU')
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
O4 - Global Startup: VMN Toolbox.lnk = C:\Program Files\VMN Toolbox\VMNToolbox.exe
O8 - Extra context menu item: Easy-WebPrint Ajouter à la liste d'impressions - res://C:\Program Files\Canon\Easy-WebPrint\Resource.dll/RC_AddToList.html
O8 - Extra context menu item: Easy-WebPrint Impression rapide - res://C:\Program Files\Canon\Easy-WebPrint\Resource.dll/RC_HSPrint.html
O8 - Extra context menu item: Easy-WebPrint Imprimer - res://C:\Program Files\Canon\Easy-WebPrint\Resource.dll/RC_Print.html
O8 - Extra context menu item: Easy-WebPrint Prévisualiser - res://C:\Program Files\Canon\Easy-WebPrint\Resource.dll/RC_Preview.html
O10 - Unknown file in Winsock LSP: c:\windows\system32\nwprovau.dll
O14 - IERESET.INF: START_PAGE_URL=file://C:\APPS\IE\offline\fr.htm
O16 - DPF: {09CC593B-E8A9-4491-927D-A3E33534DDD4} (InstallerObj Class) - http://m6video.m6.fr/1click/install/files/installer2.cab
O16 - DPF: {0EB0E74A-2A76-4AB3-A7FB-9BD8C29F7F75} (CKAVWebScan Object) - https://www.kaspersky.fr/?domain=webscanner.kaspersky.fr
O16 - DPF: {149E45D8-163E-4189-86FC-45022AB2B6C9} (SpinTop DRM Control) - file:///C:/Program%20Files/Mystery%20Case%20Files%20-%20Ravenhearst/Images/stg_drm.ocx
O16 - DPF: {2250C29C-C5E9-4F55-BE4E-01E45A40FCF1} (CMediaMix Object) - http://musicmix.messenger.msn.com/Medialogic.CAB
O16 - DPF: {27527D31-447B-11D5-A46E-0001023B4289} (CoGSManager Class) - http://gamingzone.ubisoft.com/dev/packages/GSManager.cab
O16 - DPF: {2E28242B-A689-11D4-80F2-0040266CBB8D} (KXHCM10 Control) - http://rick.viewnetcam.com/kxhcm10.ocx
O16 - DPF: {55027008-315F-4F45-BBC3-8BE119764741} (Slide Image Uploader Control) - http://www.slide.com/uploader/SlideImageUploader.cab
O16 - DPF: {5D86DDB5-BDF9-441B-9E9E-D4730F4EE499} (BDSCANONLINE Control) - http://www.bitdefender.fr/scan8/oscan8.cab
O16 - DPF: {5ED80217-570B-4DA9-BF44-BE107C0EC166} (Windows Live Safety Center Base Module) - http://cdn.scan.onecare.live.com/resource/download/scanner/wlscbase8300.cab
O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} (MUWebControl Class) - http://update.microsoft.com/...
O16 - DPF: {74D05D43-3236-11D4-BDCD-00C04F9A3B61} (HouseCall Control) - https://www.trendmicro.com/en_us/forHome/products/housecall.html
O16 - DPF: {87BE3784-6977-4E84-AA08-55A96B9CEAC5} (BL_Camera) - http://vegaspaws.viewnetcam.com:50000/cgi-bin/bl_camera.cab
O16 - DPF: {B38870E4-7ECB-40DA-8C6A-595F0A5519FF} (MsnMessengerSetupDownloadControl Class) - http://messenger.msn.com/download/MsnMessengerSetupDownloader.cab
O16 - DPF: {B79A53C0-1DAC-4636-BACE-FD086A7A79BF} (AdSignerLCContrl Class) - https://static.impots.gouv.fr/tdir/static/adpform/AdSignerADP-1.0.cab
O16 - DPF: {CC450D71-CC90-424C-8638-1F2DBAC87A54} (ArmHelper Control) - file:///C:/Program%20Files/Mystery%20Case%20Files%20-%20Ravenhearst/Images/armhelper.ocx
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab
O16 - DPF: {E862C832-3A5F-4CEB-BFAA-167B22010A71} (InfosFinder2.InfosFinder) - http://support.packardbell.com/files/activex/InfosFinder2.CAB
O16 - DPF: {F58E1CEF-A068-4C15-BA5E-587CAF3EE8C6} (MSN Chat Control 4.5) - http://chat.msn.com/controls/msnchat45.cab
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\FICHIE~1\Skype\SKYPE4~1.DLL
O22 - SharedTaskScheduler: Pré-chargeur Browseui - {438755C2-A8BA-11D1-B96B-00A0C90312E1} - C:\WINDOWS\system32\browseui.dll
O22 - SharedTaskScheduler: Démon de cache des catégories de composant - {8C7461EF-2B13-11d2-BE35-3078302C2030} - C:\WINDOWS\system32\browseui.dll
O23 - Service: AOL Connectivity Service (AOL ACS) - America Online, Inc. - C:\PROGRA~1\FICHIE~1\AOL\ACS\AOLacsd.exe
O23 - Service: Service d'administration du Gestionnaire de disque logique (dmadmin) - Unknown owner - C:\WINDOWS\System32\dmadmin.exe
O23 - Service: Journal des événements (Eventlog) - Unknown owner - C:\WINDOWS\system32\services.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Fichiers communs\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: Service COM de gravage de CD IMAPI (ImapiService) - Unknown owner - C:\WINDOWS\system32\imapi.exe
O23 - Service: Macromedia Licensing Service - Unknown owner - C:\Program Files\Fichiers communs\Macromedia Shared\Service\Macromedia Licensing.exe
O23 - Service: Partage de Bureau à distance NetMeeting (mnmsrvc) - Unknown owner - C:\WINDOWS\system32\mnmsrvc.exe
O23 - Service: MySqlInventime - Unknown owner - c:\mysql\bin\mysqld-max-nt.exe (file missing)
O23 - Service: DSDM DDE réseau (NetDDEdsdm) - Unknown owner - C:\WINDOWS\system32\netdde.exe
O23 - Service: Plug-and-Play (PlugPlay) - Unknown owner - C:\WINDOWS\system32\services.exe
O23 - Service: Gestionnaire de session d'aide sur le Bureau à distance (RDSessMgr) - Unknown owner - C:\WINDOWS\system32\sessmgr.exe
O23 - Service: Carte à puce (SCardSvr) - Unknown owner - C:\WINDOWS\System32\SCardSvr.exe
O23 - Service: SmartLinkService (SLService) - - C:\WINDOWS\SYSTEM32\slserv.exe
O23 - Service: Service SNMP (SNMP) - Unknown owner - C:\WINDOWS\System32\snmp.exe
O23 - Service: Journaux et alertes de performance (SysmonLog) - Unknown owner - C:\WINDOWS\system32\smlogsvc.exe
O23 - Service: Cliché instantané de volume (VSS) - Unknown owner - C:\WINDOWS\System32\vssvc.exe
O23 - Service: Carte de performance WMI (WmiApSrv) - Unknown owner - C:\WINDOWS\system32\wbem\wmiapsrv.exe
O23 - Service: Service Partage réseau du Lecteur Windows Media (WMPNetworkSvc) - Unknown owner - C:\Program Files\Windows Media Player\WMPNetwk.exe
O24 - Desktop Component 1: Anfy MADTEXT - C:\Program Files\AnfyTeam\Applet\MADTEXT\preview.html
O24 - Desktop Component 2: Anfy ANSTRETCH - C:\Program Files\AnfyTeam\Applet\ANSTRETCH\preview.html

16 réponses

Réponse 1 / 16
aniece Messages postés 13 Date d'inscription mercredi 29 août 2007 Statut Membre Dernière intervention 27 avril 2009 1
2 sept. 2007 à 09:45
bonjour

j'ai oublié de vous dire que quand je navigue sur internet

antir me dit souvent

a virus or unwanted program was found :

avec
TR/Rootkit.Gen

et

TR/Bagle.Gen.B
1
Réponse 2 / 16
did71 Messages postés 2187 Date d'inscription vendredi 24 mars 2006 Statut Contributeur sécurité Dernière intervention 30 janvier 2010 36
29 août 2007 à 22:48
Bonsoir,

Télécharge Blacklight (de F-Secure), sauvegarde le sur ton Bureau:

https://europe.f-secure.com/exclude/blacklight/index.shtml

Double-clique blbeta.exe et accepte la licence ;clique Scan puis Next

Tu verras une liste de fichiers détectés apparaître. Tu verras également un rapport, sur ton Bureau, nommé fsbl.xxxxxxx.log (les xxxxxxx sont des chiffres).

Copie et colle le contenu de ce rapport dans ta prochaine réponse!

a+
0
Réponse 3 / 16
nasss9
29 août 2007 à 22:50
installe avast antivirus familliale il est gratuit puis analyse ton pc avec et je suis sur qu'avec ça tu trouvera une soluce

si ta besoin de moi envoi moi un message prive a nass9


a+++
0
Réponse 4 / 16
Info Man Messages postés 247 Date d'inscription jeudi 28 juin 2001 Statut Membre Dernière intervention 26 février 2011 137
29 août 2007 à 22:52
Bonsoir Agnès,

Sache tout d'abord que ce rapport Hiijack en dit autant sur l'activité de ton PC que sur la tienne :
Tu t'appelles Agnès, ton ordinateur portable est relié à un scanner HP et une imprimante Canon, et tu utilises iTunes, MSN et Skype grâce à ta LiveBox !

Concernant le virus, essaye des services d'analyse en ligne : https://home.mcafee.com/StaticGenericPage.aspx?page=cookienotsupported&url=%2fdownloads%2ffreescan.aspx%3fculture%3dfr-FR%26ctst%3d1
Tu sauras si tu as un virus (mais il ne sera pas corrigé pour autant).
Tant que tu y es, fais une sauvegarde de tes données. Le virus s'y infiltrera sûrement, mais si tu perds tout, tu pourras toujours récupérer les données après (ton nouvel anti-virus s'occupera du virus sur la sauvegarde).

Bon courage
0

Vous n’avez pas trouvé la réponse que vous recherchez ?

Posez votre question
Réponse 5 / 16
did71 Messages postés 2187 Date d'inscription vendredi 24 mars 2006 Statut Contributeur sécurité Dernière intervention 30 janvier 2010 36
29 août 2007 à 22:54
Bonsoir à tous,

vous pouvez me laisser continuer le sujet et prendre un autre sans réponse!!!!

merci!

a+
0
Réponse 6 / 16
aniece Messages postés 13 Date d'inscription mercredi 29 août 2007 Statut Membre Dernière intervention 27 avril 2009 1
30 août 2007 à 11:29
merci pour votre aide

voici le rapport


08/30/07 09:56:03 [Info]: BlackLight Engine 1.0.64 initialized
08/30/07 09:56:03 [Info]: OS: 5.1 build 2600 (Service Pack 2)
08/30/07 09:56:04 [Note]: 7019 4
08/30/07 09:56:04 [Note]: 7005 0
08/30/07 09:56:08 [Note]: 7006 0
08/30/07 09:56:08 [Note]: 7011 2016
08/30/07 09:56:09 [Note]: 7026 0
08/30/07 09:56:09 [Note]: 7026 0
08/30/07 09:56:09 [Note]: 7024 3
08/30/07 09:56:09 [Info]: Hidden process: C:\windows\system32\gjhzinva.exe
08/30/07 09:56:13 [Note]: FSRAW library version 1.7.1022
08/30/07 09:59:09 [Info]: Hidden file: c:\Program Files\Movie Maker\Shared\Empty.txt
08/30/07 09:59:09 [Note]: 10002 3
08/30/07 09:59:09 [Info]: Hidden file: c:\Program Files\Movie Maker\Shared\Filters.xml
08/30/07 09:59:09 [Note]: 10002 3
08/30/07 09:59:09 [Info]: Hidden file: c:\Program Files\Movie Maker\Shared\news.png
08/30/07 09:59:09 [Note]: 10002 3
08/30/07 09:59:09 [Info]: Hidden file: c:\Program Files\Movie Maker\Shared\paint.png
08/30/07 09:59:09 [Note]: 10002 3
08/30/07 09:59:09 [Info]: Hidden file: c:\Program Files\Movie Maker\Shared\Profiles\Blank.txt
08/30/07 09:59:09 [Note]: 10002 3
08/30/07 09:59:09 [Info]: Hidden file: c:\Program Files\Movie Maker\Shared\Sample1.jpg
08/30/07 09:59:09 [Note]: 10002 3
08/30/07 09:59:09 [Info]: Hidden file: c:\Program Files\Movie Maker\Shared\Sample2.jpg
08/30/07 09:59:09 [Note]: 10002 3
08/30/07 09:59:09 [Note]: 10002 2
08/30/07 09:59:09 [Note]: 10002 2
08/30/07 10:00:22 [Info]: Hidden file: c:\Program Files\Yahoo!\Shared\Graphics\Indigo\border_bot.bmp
08/30/07 10:00:22 [Note]: 10002 3
08/30/07 10:00:22 [Info]: Hidden file: c:\Program Files\Yahoo!\Shared\Graphics\Indigo\border_bot.rgn
08/30/07 10:00:22 [Note]: 10002 3
08/30/07 10:00:22 [Info]: Hidden file: c:\Program Files\Yahoo!\Shared\Graphics\Indigo\border_left.bmp
08/30/07 10:00:22 [Note]: 10002 3
08/30/07 10:00:22 [Info]: Hidden file: c:\Program Files\Yahoo!\Shared\Graphics\Indigo\border_left.rgn
08/30/07 10:00:22 [Note]: 10002 3
08/30/07 10:00:22 [Info]: Hidden file: c:\Program Files\Yahoo!\Shared\Graphics\Indigo\border_right.bmp
08/30/07 10:00:22 [Note]: 10002 3
08/30/07 10:00:22 [Info]: Hidden file: c:\Program Files\Yahoo!\Shared\Graphics\Indigo\border_right.rgn
08/30/07 10:00:22 [Note]: 10002 3
08/30/07 10:00:22 [Info]: Hidden file: c:\Program Files\Yahoo!\Shared\Graphics\Indigo\border_top.bmp
08/30/07 10:00:22 [Note]: 10002 3
08/30/07 10:00:22 [Info]: Hidden file: c:\Program Files\Yahoo!\Shared\Graphics\Indigo\border_top.rgn
08/30/07 10:00:22 [Note]: 10002 3
08/30/07 10:00:22 [Info]: Hidden file: c:\Program Files\Yahoo!\Shared\Graphics\Indigo\button_chevron_down.bmp
08/30/07 10:00:22 [Note]: 10002 3
08/30/07 10:00:22 [Info]: Hidden file: c:\Program Files\Yahoo!\Shared\Graphics\Indigo\button_chevron_up.bmp
08/30/07 10:00:22 [Note]: 10002 3
08/30/07 10:00:22 [Info]: Hidden file: c:\Program Files\Yahoo!\Shared\Graphics\Indigo\capbuttons.bmp
08/30/07 10:00:22 [Note]: 10002 3
08/30/07 10:00:22 [Info]: Hidden file: c:\Program Files\Yahoo!\Shared\Graphics\Indigo\checkbox.bmp
08/30/07 10:00:22 [Note]: 10002 3
08/30/07 10:00:22 [Info]: Hidden file: c:\Program Files\Yahoo!\Shared\Graphics\Indigo\columnheads.bmp
08/30/07 10:00:22 [Note]: 10002 3
08/30/07 10:00:22 [Info]: Hidden file: c:\Program Files\Yahoo!\Shared\Graphics\Indigo\combo_arrow.bmp
08/30/07 10:00:22 [Note]: 10002 3
08/30/07 10:00:22 [Info]: Hidden file: c:\Program Files\Yahoo!\Shared\Graphics\Indigo\games_close.bmp
08/30/07 10:00:22 [Note]: 10002 3
08/30/07 10:00:22 [Info]: Hidden file: c:\Program Files\Yahoo!\Shared\Graphics\Indigo\grabbie.bmp
08/30/07 10:00:22 [Note]: 10002 3
08/30/07 10:00:22 [Info]: Hidden file: c:\Program Files\Yahoo!\Shared\Graphics\Indigo\groupboxedge.bmp
08/30/07 10:00:22 [Note]: 10002 3
08/30/07 10:00:22 [Info]: Hidden file: c:\Program Files\Yahoo!\Shared\Graphics\Indigo\icons_tbar_disabled.bmp
08/30/07 10:00:22 [Note]: 10002 3
08/30/07 10:00:22 [Info]: Hidden file: c:\Program Files\Yahoo!\Shared\Graphics\Indigo\icons_tbar_hot.bmp
08/30/07 10:00:22 [Note]: 10002 3
08/30/07 10:00:22 [Info]: Hidden file: c:\Program Files\Yahoo!\Shared\Graphics\Indigo\icons_tbar_normal.bmp
08/30/07 10:00:22 [Note]: 10002 3
08/30/07 10:00:22 [Info]: Hidden file: c:\Program Files\Yahoo!\Shared\Graphics\Indigo\indigo.xml
08/30/07 10:00:22 [Note]: 10002 3
08/30/07 10:00:22 [Info]: Hidden file: c:\Program Files\Yahoo!\Shared\Graphics\Indigo\menubar.bmp
08/30/07 10:00:22 [Note]: 10002 3
08/30/07 10:00:22 [Info]: Hidden file: c:\Program Files\Yahoo!\Shared\Graphics\Indigo\menubar_states.bmp
08/30/07 10:00:22 [Note]: 10002 3
08/30/07 10:00:22 [Info]: Hidden file: c:\Program Files\Yahoo!\Shared\Graphics\Indigo\menuitem.bmp
08/30/07 10:00:22 [Note]: 10002 3
08/30/07 10:00:22 [Info]: Hidden file: c:\Program Files\Yahoo!\Shared\Graphics\Indigo\menusearchbar.bmp
08/30/07 10:00:22 [Note]: 10002 3
08/30/07 10:00:22 [Info]: Hidden file: c:\Program Files\Yahoo!\Shared\Graphics\Indigo\menu_bg.bmp
08/30/07 10:00:22 [Note]: 10002 3
08/30/07 10:00:22 [Info]: Hidden file: c:\Program Files\Yahoo!\Shared\Graphics\Indigo\menu_scroll.bmp
08/30/07 10:00:22 [Note]: 10002 3
08/30/07 10:00:23 [Info]: Hidden file: c:\Program Files\Yahoo!\Shared\Graphics\Indigo\menu_sep.bmp
08/30/07 10:00:23 [Note]: 10002 3
08/30/07 10:00:23 [Info]: Hidden file: c:\Program Files\Yahoo!\Shared\Graphics\Indigo\mute_states.bmp
08/30/07 10:00:23 [Note]: 10002 3
08/30/07 10:00:23 [Info]: Hidden file: c:\Program Files\Yahoo!\Shared\Graphics\Indigo\photoshare_slider.bmp
08/30/07 10:00:23 [Note]: 10002 3
08/30/07 10:00:23 [Info]: Hidden file: c:\Program Files\Yahoo!\Shared\Graphics\Indigo\photoshare_slider_tray.bmp
08/30/07 10:00:23 [Note]: 10002 3
08/30/07 10:00:23 [Info]: Hidden file: c:\Program Files\Yahoo!\Shared\Graphics\Indigo\preview_indigo.jpg
08/30/07 10:00:23 [Note]: 10002 3
08/30/07 10:00:23 [Info]: Hidden file: c:\Program Files\Yahoo!\Shared\Graphics\Indigo\preview_indigo_intl.jpg
08/30/07 10:00:23 [Note]: 10002 3
08/30/07 10:00:23 [Info]: Hidden file: c:\Program Files\Yahoo!\Shared\Graphics\Indigo\progressbar.bmp
08/30/07 10:00:23 [Note]: 10002 3
08/30/07 10:00:23 [Info]: Hidden file: c:\Program Files\Yahoo!\Shared\Graphics\Indigo\pushbuttons.bmp
08/30/07 10:00:23 [Note]: 10002 3
08/30/07 10:00:23 [Info]: Hidden file: c:\Program Files\Yahoo!\Shared\Graphics\Indigo\radio.bmp
08/30/07 10:00:23 [Note]: 10002 3
08/30/07 10:00:23 [Info]: Hidden file: c:\Program Files\Yahoo!\Shared\Graphics\Indigo\scroll_vbg.bmp
08/30/07 10:00:23 [Note]: 10002 3
08/30/07 10:00:23 [Info]: Hidden file: c:\Program Files\Yahoo!\Shared\Graphics\Indigo\scroll_vhandle.bmp
08/30/07 10:00:23 [Note]: 10002 3
08/30/07 10:00:23 [Info]: Hidden file: c:\Program Files\Yahoo!\Shared\Graphics\Indigo\scroll_buttons.bmp
08/30/07 10:00:23 [Note]: 10002 3
08/30/07 10:00:23 [Info]: Hidden file: c:\Program Files\Yahoo!\Shared\Graphics\Indigo\scroll_griph.bmp
08/30/07 10:00:23 [Note]: 10002 3
08/30/07 10:00:23 [Info]: Hidden file: c:\Program Files\Yahoo!\Shared\Graphics\Indigo\scroll_gripv.bmp
08/30/07 10:00:23 [Note]: 10002 3
08/30/07 10:00:23 [Info]: Hidden file: c:\Program Files\Yahoo!\Shared\Graphics\Indigo\scroll_hbg.bmp
08/30/07 10:00:23 [Note]: 10002 3
08/30/07 10:00:23 [Info]: Hidden file: c:\Program Files\Yahoo!\Shared\Graphics\Indigo\scroll_hhandle.bmp
08/30/07 10:00:23 [Note]: 10002 3
08/30/07 10:00:23 [Info]: Hidden file: c:\Program Files\Yahoo!\Shared\Graphics\Indigo\search_bang.bmp
08/30/07 10:00:23 [Note]: 10002 3
08/30/07 10:00:23 [Info]: Hidden file: c:\Program Files\Yahoo!\Shared\Graphics\Indigo\statusbar.bmp
08/30/07 10:00:23 [Note]: 10002 3
08/30/07 10:00:23 [Info]: Hidden file: c:\Program Files\Yahoo!\Shared\Graphics\Indigo\statusgrabber.bmp
08/30/07 10:00:23 [Note]: 10002 3
08/30/07 10:00:23 [Info]: Hidden file: c:\Program Files\Yahoo!\Shared\Graphics\Indigo\sys_menu.bmp
08/30/07 10:00:23 [Note]: 10002 3
08/30/07 10:00:23 [Info]: Hidden file: c:\Program Files\Yahoo!\Shared\Graphics\Indigo\tabs.bmp
08/30/07 10:00:23 [Note]: 10002 3
08/30/07 10:00:23 [Info]: Hidden file: c:\Program Files\Yahoo!\Shared\Graphics\Indigo\tabs_standard.bmp
08/30/07 10:00:23 [Note]: 10002 3
08/30/07 10:00:23 [Info]: Hidden file: c:\Program Files\Yahoo!\Shared\Graphics\Indigo\tab_border.bmp
08/30/07 10:00:23 [Note]: 10002 3
08/30/07 10:00:23 [Info]: Hidden file: c:\Program Files\Yahoo!\Shared\Graphics\Indigo\tbar_sep.bmp
08/30/07 10:00:23 [Note]: 10002 3
08/30/07 10:00:23 [Info]: Hidden file: c:\Program Files\Yahoo!\Shared\Graphics\Indigo\toolbarbuttons.bmp
08/30/07 10:00:23 [Note]: 10002 3
08/30/07 10:00:23 [Info]: Hidden file: c:\Program Files\Yahoo!\Shared\Graphics\Indigo\tool_border_bot.bmp
08/30/07 10:00:23 [Note]: 10002 3
08/30/07 10:00:23 [Info]: Hidden file: c:\Program Files\Yahoo!\Shared\Graphics\Indigo\tool_border_bot.rgn
08/30/07 10:00:23 [Note]: 10002 3
08/30/07 10:00:23 [Info]: Hidden file: c:\Program Files\Yahoo!\Shared\Graphics\Indigo\tool_border_left.bmp
08/30/07 10:00:23 [Note]: 10002 3
08/30/07 10:00:23 [Info]: Hidden file: c:\Program Files\Yahoo!\Shared\Graphics\Indigo\tool_border_left.rgn
08/30/07 10:00:23 [Note]: 10002 3
08/30/07 10:00:23 [Info]: Hidden file: c:\Program Files\Yahoo!\Shared\Graphics\Indigo\tool_border_right.bmp
08/30/07 10:00:23 [Note]: 10002 3
08/30/07 10:00:23 [Info]: Hidden file: c:\Program Files\Yahoo!\Shared\Graphics\Indigo\tool_border_right.rgn
08/30/07 10:00:23 [Note]: 10002 3
08/30/07 10:00:23 [Info]: Hidden file: c:\Program Files\Yahoo!\Shared\Graphics\Indigo\tool_border_top.bmp
08/30/07 10:00:23 [Note]: 10002 3
08/30/07 10:00:23 [Info]: Hidden file: c:\Program Files\Yahoo!\Shared\Graphics\Indigo\tool_border_top.rgn
08/30/07 10:00:23 [Note]: 10002 3
08/30/07 10:00:23 [Info]: Hidden file: c:\Program Files\Yahoo!\Shared\Graphics\Indigo\tool_capbuttons.bmp
08/30/07 10:00:23 [Note]: 10002 3
08/30/07 10:00:23 [Info]: Hidden file: c:\Program Files\Yahoo!\Shared\Graphics\Indigo\trackbar_thumb_vert.bmp
08/30/07 10:00:23 [Note]: 10002 3
08/30/07 10:00:23 [Info]: Hidden file: c:\Program Files\Yahoo!\Shared\Graphics\Indigo\trackbar_thumb_up.bmp
08/30/07 10:00:23 [Note]: 10002 3
08/30/07 10:00:23 [Info]: Hidden file: c:\Program Files\Yahoo!\Shared\Graphics\Indigo\trackbar_h.bmp
08/30/07 10:00:23 [Note]: 10002 3
08/30/07 10:00:23 [Info]: Hidden file: c:\Program Files\Yahoo!\Shared\Graphics\Indigo\trackbar_thumb_down.bmp
08/30/07 10:00:23 [Note]: 10002 3
08/30/07 10:00:23 [Info]: Hidden file: c:\Program Files\Yahoo!\Shared\Graphics\Indigo\trackbar_thumb_horz.bmp
08/30/07 10:00:23 [Note]: 10002 3
08/30/07 10:00:23 [Info]: Hidden file: c:\Program Files\Yahoo!\Shared\Graphics\Indigo\trackbar_thumb_left.bmp
08/30/07 10:00:23 [Note]: 10002 3
08/30/07 10:00:23 [Info]: Hidden file: c:\Program Files\Yahoo!\Shared\Graphics\Indigo\trackbar_thumb_right.bmp
08/30/07 10:00:23 [Note]: 10002 3
08/30/07 10:00:23 [Info]: Hidden file: c:\Program Files\Yahoo!\Shared\Graphics\Indigo\trackbar_v.bmp
08/30/07 10:00:23 [Note]: 10002 3
08/30/07 10:00:23 [Info]: Hidden file: c:\Program Files\Yahoo!\Shared\Graphics\Indigo\combo.bmp
08/30/07 10:00:23 [Note]: 10002 3
08/30/07 10:00:23 [Info]: Hidden file: c:\Program Files\Yahoo!\Shared\Graphics\Indigo\up_down.bmp
08/30/07 10:00:23 [Note]: 10002 3
08/30/07 10:00:23 [Info]: Hidden file: c:\Program Files\Yahoo!\Shared\Graphics\Indigo\up_down_arrow.bmp
08/30/07 10:00:23 [Note]: 10002 3
08/30/07 10:00:23 [Info]: Hidden file: c:\Program Files\Yahoo!\Shared\Graphics\Indigo\up_down_h.bmp
08/30/07 10:00:23 [Note]: 10002 3
08/30/07 10:00:23 [Info]: Hidden file: c:\Program Files\Yahoo!\Shared\Graphics\Indigo\up_down_h_arrow.bmp
08/30/07 10:00:23 [Note]: 10002 3
08/30/07 10:00:23 [Info]: Hidden file: c:\Program Files\Yahoo!\Shared\Graphics\Indigo\voice_tbar.bmp
08/30/07 10:00:23 [Note]: 10002 3
08/30/07 10:00:23 [Info]: Hidden file: c:\Program Files\Yahoo!\Shared\Graphics\Indigo\voice_tbar_incoming.bmp
08/30/07 10:00:23 [Note]: 10002 3
08/30/07 10:00:23 [Info]: Hidden file: c:\Program Files\Yahoo!\Shared\Graphics\Indigo\voice_callbtn.bmp
08/30/07 10:00:23 [Note]: 10002 3
08/30/07 10:00:23 [Info]: Hidden file: c:\Program Files\Yahoo!\Shared\Graphics\Indigo\voice_ctrls.bmp
08/30/07 10:00:23 [Note]: 10002 3
08/30/07 10:00:23 [Info]: Hidden file: c:\Program Files\Yahoo!\Shared\Graphics\Indigo\voice_lights.bmp
08/30/07 10:00:23 [Note]: 10002 3
08/30/07 10:00:23 [Info]: Hidden file: c:\Program Files\Yahoo!\Shared\Graphics\Indigo\voice_ringer.bmp
08/30/07 10:00:23 [Note]: 10002 3
08/30/07 10:00:23 [Info]: Hidden file: c:\Program Files\Yahoo!\Shared\Graphics\Maverick\border_bot.bmp
08/30/07 10:00:23 [Note]: 10002 3
08/30/07 10:00:23 [Info]: Hidden file: c:\Program Files\Yahoo!\Shared\Graphics\Maverick\border_bot.rgn
08/30/07 10:00:23 [Note]: 10002 3
08/30/07 10:00:23 [Info]: Hidden file: c:\Program Files\Yahoo!\Shared\Graphics\Maverick\border_left.bmp
08/30/07 10:00:23 [Note]: 10002 3
08/30/07 10:00:23 [Info]: Hidden file: c:\Program Files\Yahoo!\Shared\Graphics\Maverick\border_left.rgn
08/30/07 10:00:23 [Note]: 10002 3
08/30/07 10:00:23 [Info]: Hidden file: c:\Program Files\Yahoo!\Shared\Graphics\Maverick\border_right.bmp
08/30/07 10:00:23 [Note]: 10002 3
08/30/07 10:00:23 [Info]: Hidden file: c:\Program Files\Yahoo!\Shared\Graphics\Maverick\border_right.rgn
08/30/07 10:00:23 [Note]: 10002 3
08/30/07 10:00:23 [Info]: Hidden file: c:\Program Files\Yahoo!\Shared\Graphics\Maverick\border_top.bmp
08/30/07 10:00:23 [Note]: 10002 3
08/30/07 10:00:23 [Info]: Hidden file: c:\Program Files\Yahoo!\Shared\Graphics\Maverick\border_top.rgn
08/30/07 10:00:23 [Note]: 10002 3
08/30/07 10:00:23 [Info]: Hidden file: c:\Program Files\Yahoo!\Shared\Graphics\Maverick\button_chevron_down.bmp
08/30/07 10:00:23 [Note]: 10002 3
08/30/07 10:00:23 [Info]: Hidden file: c:\Program Files\Yahoo!\Shared\Graphics\Maverick\button_chevron_up.bmp
08/30/07 10:00:23 [Note]: 10002 3
08/30/07 10:00:23 [Info]: Hidden file: c:\Program Files\Yahoo!\Shared\Graphics\Maverick\capbuttons.bmp
08/30/07 10:00:23 [Note]: 10002 3
08/30/07 10:00:23 [Info]: Hidden file: c:\Program Files\Yahoo!\Shared\Graphics\Maverick\checkbox.bmp
08/30/07 10:00:23 [Note]: 10002 3
08/30/07 10:00:23 [Info]: Hidden file: c:\Program Files\Yahoo!\Shared\Graphics\Maverick\columnheads.bmp
08/30/07 10:00:23 [Note]: 10002 3
08/30/07 10:00:23 [Info]: Hidden file: c:\Program Files\Yahoo!\Shared\Graphics\Maverick\combo_arrow.bmp
08/30/07 10:00:23 [Note]: 10002 3
08/30/07 10:00:23 [Info]: Hidden file: c:\Program Files\Yahoo!\Shared\Graphics\Maverick\games_close.bmp
08/30/07 10:00:23 [Note]: 10002 3
08/30/07 10:00:23 [Info]: Hidden file: c:\Program Files\Yahoo!\Shared\Graphics\Maverick\grabbie.bmp
08/30/07 10:00:23 [Note]: 10002 3
08/30/07 10:00:23 [Info]: Hidden file: c:\Program Files\Yahoo!\Shared\Graphics\Maverick\groupboxedge.bmp
08/30/07 10:00:23 [Note]: 10002 3
08/30/07 10:00:23 [Info]: Hidden file: c:\Program Files\Yahoo!\Shared\Graphics\Maverick\icons_tbar_disabled.bmp
08/30/07 10:00:23 [Note]: 10002 3
08/30/07 10:00:23 [Info]: Hidden file: c:\Program Files\Yahoo!\Shared\Graphics\Maverick\icons_tbar_hot.bmp
08/30/07 10:00:23 [Note]: 10002 3
08/30/07 10:00:23 [Info]: Hidden file: c:\Program Files\Yahoo!\Shared\Graphics\Maverick\icons_tbar_normal.bmp
08/30/07 10:00:23 [Note]: 10002 3
08/30/07 10:00:23 [Info]: Hidden file: c:\Program Files\Yahoo!\Shared\Graphics\Maverick\maverick.xml
08/30/07 10:00:23 [Note]: 10002 3
08/30/07 10:00:23 [Info]: Hidden file: c:\Program Files\Yahoo!\Shared\Graphics\Maverick\menubar.bmp
08/30/07 10:00:23 [Note]: 10002 3
08/30/07 10:00:23 [Info]: Hidden file: c:\Program Files\Yahoo!\Shared\Graphics\Maverick\menubar_states.bmp
08/30/07 10:00:23 [Note]: 10002 3
08/30/07 10:00:23 [Info]: Hidden file: c:\Program Files\Yahoo!\Shared\Graphics\Maverick\menuitem.bmp
08/30/07 10:00:23 [Note]: 10002 3
08/30/07 10:00:23 [Info]: Hidden file: c:\Program Files\Yahoo!\Shared\Graphics\Maverick\menusearchbar.bmp
08/30/07 10:00:23 [Note]: 10002 3
08/30/07 10:00:23 [Info]: Hidden file: c:\Program Files\Yahoo!\Shared\Graphics\Maverick\menu_bg.bmp
08/30/07 10:00:23 [Note]: 10002 3
08/30/07 10:00:23 [Info]: Hidden file: c:\Program Files\Yahoo!\Shared\Graphics\Maverick\menu_scroll.bmp
08/30/07 10:00:23 [Note]: 10002 3
08/30/07 10:00:23 [Info]: Hidden file: c:\Program Files\Yahoo!\Shared\Graphics\Maverick\menu_sep.bmp
08/30/07 10:00:23 [Note]: 10002 3
08/30/07 10:00:23 [Info]: Hidden file: c:\Program Files\Yahoo!\Shared\Graphics\Maverick\photoshare_slider.bmp
08/30/07 10:00:23 [Note]: 10002 3
08/30/07 10:00:23 [Info]: Hidden file: c:\Program Files\Yahoo!\Shared\Graphics\Maverick\photoshare_slider_tray.bmp
08/30/07 10:00:23 [Note]: 10002 3
08/30/07 10:00:23 [Info]: Hidden file: c:\Program Files\Yahoo!\Shared\Graphics\Maverick\preview_mavblue.jpg
08/30/07 10:00:23 [Note]: 10002 3
08/30/07 10:00:23 [Info]: Hidden file: c:\Program Files\Yahoo!\Shared\Graphics\Maverick\preview_mavblue_intl.jpg
08/30/07 10:00:23 [Note]: 10002 3
08/30/07 10:00:23 [Info]: Hidden file: c:\Program Files\Yahoo!\Shared\Graphics\Maverick\progressbar.bmp
08/30/07 10:00:23 [Note]: 10002 3
08/30/07 10:00:23 [Info]: Hidden file: c:\Program Files\Yahoo!\Shared\Graphics\Maverick\pushbuttons.bmp
08/30/07 10:00:23 [Note]: 10002 3
08/30/07 10:00:23 [Info]: Hidden file: c:\Program Files\Yahoo!\Shared\Graphics\Maverick\radio.bmp
08/30/07 10:00:23 [Note]: 10002 3
08/30/07 10:00:23 [Info]: Hidden file: c:\Program Files\Yahoo!\Shared\Graphics\Maverick\scroll_vbg.bmp
08/30/07 10:00:23 [Note]: 10002 3
08/30/07 10:00:23 [Info]: Hidden file: c:\Program Files\Yahoo!\Shared\Graphics\Maverick\scroll_hhandle.bmp
08/30/07 10:00:23 [Note]: 10002 3
08/30/07 10:00:23 [Info]: Hidden file: c:\Program Files\Yahoo!\Shared\Graphics\Maverick\scroll_vhandle.bmp
08/30/07 10:00:23 [Note]: 10002 3
08/30/07 10:00:23 [Info]: Hidden file: c:\Program Files\Yahoo!\Shared\Graphics\Maverick\scroll_griph.bmp
08/30/07 10:00:23 [Note]: 10002 3
08/30/07 10:00:23 [Info]: Hidden file: c:\Program Files\Yahoo!\Shared\Graphics\Maverick\scroll_gripv.bmp
08/30/07 10:00:23 [Note]: 10002 3
08/30/07 10:00:23 [Info]: Hidden file: c:\Program Files\Yahoo!\Shared\Graphics\Maverick\scroll_hbg.bmp
08/30/07 10:00:23 [Note]: 10002 3
08/30/07 10:00:23 [Info]: Hidden file: c:\Program Files\Yahoo!\Shared\Graphics\Maverick\scroll_buttons.bmp
08/30/07 10:00:23 [Note]: 10002 3
08/30/07 10:00:23 [Info]: Hidden file: c:\Program Files\Yahoo!\Shared\Graphics\Maverick\search_bang.bmp
08/30/07 10:00:23 [Note]: 10002 3
08/30/07 10:00:23 [Info]: Hidden file: c:\Program Files\Yahoo!\Shared\Graphics\Maverick\statusbar.bmp
08/30/07 10:00:23 [Note]: 10002 3
08/30/07 10:00:23 [Info]: Hidden file: c:\Program Files\Yahoo!\Shared\Graphics\Maverick\statusgrabber.bmp
08/30/07 10:00:23 [Note]: 10002 3
08/30/07 10:00:23 [Info]: Hidden file: c:\Program Files\Yahoo!\Shared\Graphics\Maverick\sys_menu.bmp
08/30/07 10:00:23 [Note]: 10002 3
08/30/07 10:00:23 [Info]: Hidden file: c:\Program Files\Yahoo!\Shared\Graphics\Maverick\tabs_standard.bmp
08/30/07 10:00:23 [Note]: 10002 3
08/30/07 10:00:23 [Info]: Hidden file: c:\Program Files\Yahoo!\Shared\Graphics\Maverick\tab_border.bmp
08/30/07 10:00:23 [Note]: 10002 3
08/30/07 10:00:23 [Info]: Hidden file: c:\Program Files\Yahoo!\Shared\Graphics\Maverick\tbar_bg.bmp
08/30/07 10:00:23 [Note]: 10002 3
08/30/07 10:00:23 [Info]: Hidden file: c:\Program Files\Yahoo!\Shared\Graphics\Maverick\tbar_sep.bmp
08/30/07 10:00:23 [Note]: 10002 3
08/30/07 10:00:23 [Info]: Hidden file: c:\Program Files\Yahoo!\Shared\Graphics\Maverick\toolbarbuttons.bmp
08/30/07 10:00:23 [Note]: 10002 3
08/30/07 10:00:23 [Info]: Hidden file: c:\Program Files\Yahoo!\Shared\Graphics\Maverick\tool_border_bot.bmp
08/30/07 10:00:23 [Note]: 10002 3
08/30/07 10:00:23 [Info]: Hidden file: c:\Program Files\Yahoo!\Shared\Graphics\Maverick\tool_border_bot.rgn
08/30/07 10:00:23 [Note]: 10002 3
08/30/07 10:00:23 [Info]: Hidden file: c:\Program Files\Yahoo!\Shared\Graphics\Maverick\tool_border_left.bmp
08/30/07 10:00:23 [Note]: 10002 3
08/30/07 10:00:23 [Info]: Hidden file: c:\Program Files\Yahoo!\Shared\Graphics\Maverick\tool_border_left.rgn
08/30/07 10:00:23 [Note]: 10002 3
08/30/07 10:00:23 [Info]: Hidden file: c:\Program Files\Yahoo!\Shared\Graphics\Maverick\tool_border_right.bmp
08/30/07 10:00:23 [Note]: 10002 3
08/30/07 10:00:23 [Info]: Hidden file: c:\Program Files\Yahoo!\Shared\Graphics\Maverick\tool_border_right.rgn
08/30/07 10:00:23 [Note]: 10002 3
08/30/07 10:00:23 [Info]: Hidden file: c:\Program Files\Yahoo!\Shared\Graphics\Maverick\tool_border_top.bmp
08/30/07 10:00:23 [Note]: 10002 3
08/30/07 10:00:23 [Info]: Hidden file: c:\Program Files\Yahoo!\Shared\Graphics\Maverick\tool_border_top.rgn
08/30/07 10:00:23 [Note]: 10002 3
08/30/07 10:00:23 [Info]: Hidden file: c:\Program Files\Yahoo!\Shared\Graphics\Maverick\tool_capbuttons.bmp
08/30/07 10:00:23 [Note]: 10002 3
08/30/07 10:00:23 [Info]: Hidden file: c:\Program Files\Yahoo!\Shared\Graphics\Maverick\trackbar_thumb_vert.bmp
08/30/07 10:00:23 [Note]: 10002 3
08/30/07 10:00:23 [Info]: Hidden file: c:\Program Files\Yahoo!\Shared\Graphics\Maverick\trackbar_thumb_up.bmp
08/30/07 10:00:23 [Note]: 10002 3
08/30/07 10:00:23 [Info]: Hidden file: c:\Program Files\Yahoo!\Shared\Graphics\Maverick\trackbar_h.bmp
08/30/07 10:00:23 [Note]: 10002 3
08/30/07 10:00:23 [Info]: Hidden file: c:\Program Files\Yahoo!\Shared\Graphics\Maverick\trackbar_thumb_down.bmp
08/30/07 10:00:23 [Note]: 10002 3
08/30/07 10:00:23 [Info]: Hidden file: c:\Program Files\Yahoo!\Shared\Graphics\Maverick\trackbar_thumb_horz.bmp
08/30/07 10:00:23 [Note]: 10002 3
08/30/07 10:00:23 [Info]: Hidden file: c:\Program Files\Yahoo!\Shared\Graphics\Maverick\trackbar_thumb_left.bmp
08/30/07 10:00:23 [Note]: 10002 3
08/30/07 10:00:23 [Info]: Hidden file: c:\Program Files\Yahoo!\Shared\Graphics\Maverick\trackbar_thumb_right.bmp
08/30/07 10:00:23 [Note]: 10002 3
08/30/07 10:00:23 [Info]: Hidden file: c:\Program Files\Yahoo!\Shared\Graphics\Maverick\trackbar_v.bmp
08/30/07 10:00:23 [Note]: 10002 3
08/30/07 10:00:23 [Info]: Hidden file: c:\Program Files\Yahoo!\Shared\Graphics\Maverick\combo.bmp
08/30/07 10:00:23 [Note]: 10002 3
08/30/07 10:00:23 [Info]: Hidden file: c:\Program Files\Yahoo!\Shared\Graphics\Maverick\tabs.bmp
08/30/07 10:00:23 [Note]: 10002 3
08/30/07 10:00:23 [Info]: Hidden file: c:\Program Files\Yahoo!\Shared\Graphics\Maverick\up_down.bmp
08/30/07 10:00:23 [Note]: 10002 3
08/30/07 10:00:23 [Info]: Hidden file: c:\Program Files\Yahoo!\Shared\Graphics\Maverick\up_down_arrow.bmp
08/30/07 10:00:23 [Note]: 10002 3
08/30/07 10:00:23 [Info]: Hidden file: c:\Program Files\Yahoo!\Shared\Graphics\Maverick\up_down_h.bmp
08/30/07 10:00:23 [Note]: 10002 3
08/30/07 10:00:23 [Info]: Hidden file: c:\Program Files\Yahoo!\Shared\Graphics\Maverick\up_down_h_arrow.bmp
08/30/07 10:00:23 [Note]: 10002 3
08/30/07 10:00:23 [Info]: Hidden file: c:\Program Files\Yahoo!\Shared\Graphics\Maverick\voice_tbar.bmp
08/30/07 10:00:23 [Note]: 10002 3
08/30/07 10:00:23 [Info]: Hidden file: c:\Program Files\Yahoo!\Shared\Graphics\Maverick\voice_tbar_incoming.bmp
08/30/07 10:00:23 [Note]: 10002 3
08/30/07 10:00:23 [Info]: Hidden file: c:\Program Files\Yahoo!\Shared\Graphics\Maverick\voice_callbtn.bmp
08/30/07 10:00:23 [Note]: 10002 3
08/30/07 10:00:23 [Info]: Hidden file: c:\Program Files\Yahoo!\Shared\Graphics\Maverick\voice_ctrls.bmp
08/30/07 10:00:23 [Note]: 10002 3
08/30/07 10:00:23 [Info]: Hidden file: c:\Program Files\Yahoo!\Shared\Graphics\Maverick\voice_lights.bmp
08/30/07 10:00:23 [Note]: 10002 3
08/30/07 10:00:23 [Info]: Hidden file: c:\Program Files\Yahoo!\Shared\Graphics\Maverick\voice_ringer.bmp
08/30/07 10:00:23 [Note]: 10002 3
08/30/07 10:00:23 [Info]: Hidden file: c:\Program Files\Yahoo!\Shared\Graphics\preview_classic_msgr.jpg
08/30/07 10:00:23 [Note]: 10002 3
08/30/07 10:00:23 [Info]: Hidden file: c:\Program Files\Yahoo!\Shared\YAlertCenter.dll
08/30/07 10:00:23 [Note]: 10002 3
08/30/07 10:00:23 [Info]: Hidden file: c:\Program Files\Yahoo!\Shared\YbSkin2.dll
08/30/07 10:00:23 [Note]: 10002 3
08/30/07 10:00:23 [Info]: Hidden file: c:\Program Files\Yahoo!\Shared\YbSkinSelect.dll
08/30/07 10:00:23 [Note]: 10002 3
08/30/07 10:00:23 [Info]: Hidden file: c:\Program Files\Yahoo!\Shared\YbSkinSelectRes.dll
08/30/07 10:00:23 [Note]: 10002 3
08/30/07 10:00:23 [Note]: 10002 2
08/30/07 10:00:23 [Note]: 10002 2
08/30/07 10:10:33 [Info]: Hidden file: c:\WINDOWS\ime\SHARED\imepaden.hlp
08/30/07 10:10:33 [Note]: 10002 3
08/30/07 10:10:33 [Info]: Hidden file: c:\WINDOWS\ime\SHARED\imepadsm.dll
08/30/07 10:10:33 [Note]: 10002 3
08/30/07 10:10:33 [Info]: Hidden file: c:\WINDOWS\ime\SHARED\imepadsv.exe
08/30/07 10:10:33 [Note]: 10002 3
08/30/07 10:10:33 [Info]: Hidden file: c:\WINDOWS\ime\SHARED\imlang.dll
08/30/07 10:10:33 [Note]: 10002 3
08/30/07 10:10:33 [Info]: Hidden file: c:\WINDOWS\ime\SHARED\RES\PADRS404.DLL
08/30/07 10:10:33 [Note]: 10002 3
08/30/07 10:10:33 [Info]: Hidden file: c:\WINDOWS\ime\SHARED\RES\padrs411.dll
08/30/07 10:10:33 [Note]: 10002 3
08/30/07 10:10:33 [Info]: Hidden file: c:\WINDOWS\ime\SHARED\RES\padrs412.dll
08/30/07 10:10:33 [Note]: 10002 3
08/30/07 10:10:33 [Info]: Hidden file: c:\WINDOWS\ime\SHARED\RES\padrs804.dll
08/30/07 10:10:33 [Note]: 10002 3
08/30/07 10:10:33 [Note]: 10002 2
08/30/07 10:10:33 [Note]: 10002 2
08/30/07 10:10:47 [Note]: 10002 3
08/30/07 10:10:47 [Note]: 10002 3
08/30/07 10:10:47 [Note]: 10002 3
08/30/07 10:10:47 [Note]: 10002 3
08/30/07 10:10:47 [Note]: 10002 3
08/30/07 10:10:47 [Note]: 10002 3
08/30/07 10:10:47 [Note]: 10002 3
08/30/07 10:10:47 [Note]: 10002 3
08/30/07 10:10:47 [Note]: 10002 2
08/30/07 10:10:47 [Note]: 10002 2
08/30/07 10:12:28 [Info]: Hidden file: c:\WINDOWS\system32\gjhzinva.dat
08/30/07 10:12:28 [Note]: 10002 1
08/30/07 10:12:28 [Info]: Hidden file: C:\windows\system32\gjhzinva.exe
08/30/07 10:12:28 [Note]: 10002 1
08/30/07 10:12:28 [Info]: Hidden file: c:\WINDOWS\system32\gjhzinva_nav.dat
08/30/07 10:12:28 [Note]: 10002 1
08/30/07 10:12:28 [Info]: Hidden file: c:\WINDOWS\system32\gjhzinva_navps.dat
08/30/07 10:12:28 [Note]: 10002 1
08/30/07 10:12:50 [Info]: Hidden file: c:\WINDOWS\system32\drivers\hidr.exe
08/30/07 10:12:50 [Note]: 10002 2
08/30/07 10:12:50 [Info]: Hidden file: c:\WINDOWS\system32\drivers\srosa.sys
08/30/07 10:12:50 [Note]: 10002 2
08/30/07 10:15:24 [Note]: 2000 1012
08/30/07 10:49:16 [Note]: 7007 0
0
Réponse 7 / 16
did71 Messages postés 2187 Date d'inscription vendredi 24 mars 2006 Statut Contributeur sécurité Dernière intervention 30 janvier 2010 36
30 août 2007 à 21:28
bonsoir,

télécharge ELIBAGLA sur ton bureau:

http://www.zonavirus.com/datos/archivos/Descargas/Utilidades%20SATINFO/EliBaglA.exe

Double-clic sur Elibagla.exe>laisse la case
"eliminar ficheros automaticamente" coché>clique sur"explorar"
>laisse-le travailler>poste le rapport final qui sera
dans c:\infosat.txt

a+
0
Réponse 8 / 16
aniece Messages postés 13 Date d'inscription mercredi 29 août 2007 Statut Membre Dernière intervention 27 avril 2009 1
30 août 2007 à 22:55
bonjour

voici le rapport pour la suite


Sun Aug 26 14:59:07 2007
EliBagle v10.47 (c)2007 S.G.H. / Satinfo S.L.
----------------------------------------------
Lista de Acciones (por Acción Directa):
Eliminada Carpeta "%WinDir%\exefld"
Restaurada Clave: "SafeBoot\Minimal y Network"

Sun Aug 26 15:00:03 2007
EliBagle v10.47 (c)2007 S.G.H. / Satinfo S.L.
----------------------------------------------
Lista de Acciones (por Acción Directa):

Sun Aug 26 15:00:19 2007
EliBagle v10.47 (c)2007 S.G.H. / Satinfo S.L.
----------------------------------------------
Lista de Acciones (por Exploración):
Explorando Unidad C:\

Tue Aug 28 11:08:16 2007
EliBagle v10.47 (c)2007 S.G.H. / Satinfo S.L.
----------------------------------------------
Lista de Acciones (por Acción Directa):
Eliminada Carpeta "%WinDir%\exefld"
Restaurada Clave: "SafeBoot\Minimal y Network"

Tue Aug 28 11:08:21 2007
EliBagle v10.47 (c)2007 S.G.H. / Satinfo S.L.
----------------------------------------------
Lista de Acciones (por Exploración):
Explorando Unidad C:\

Tue Aug 28 11:17:25 2007
EliBagle v10.47 (c)2007 S.G.H. / Satinfo S.L.
----------------------------------------------
Lista de Acciones (por Exploración):
Explorando Unidad C:\

Thu Aug 30 22:41:13 2007
EliBagle v10.47 (c)2007 S.G.H. / Satinfo S.L.
----------------------------------------------
Lista de Acciones (por Acción Directa):

Thu Aug 30 22:41:46 2007
EliBagle v10.47 (c)2007 S.G.H. / Satinfo S.L.
----------------------------------------------
Lista de Acciones (por Exploración):
Explorando Unidad C:\
0
Réponse 9 / 16
did71 Messages postés 2187 Date d'inscription vendredi 24 mars 2006 Statut Contributeur sécurité Dernière intervention 30 janvier 2010 36
30 août 2007 à 23:51
re,

1. Télécharge The Avenger par Swandog46 sur ton Bureau:

http://www.geekstogo.com/forum/files/file/393-the-avenger-by-swandog46/

Click sur Avenger.zip pour ouvrir le fichier
Extraire avenger.exe sur votre bureau

2. Copie tout le texte en gras ci-dessous : mettre en surbrillance et appuyer sur les touches(Ctrl+C):

drivers to unload:
srosa

Files to delete:
c:\WINDOWS\system32\gjhzinva.dat
C:\windows\system32\gjhzinva.exe
c:\WINDOWS\system32\gjhzinva_nav.dat
c:\WINDOWS\system32\gjhzinva_navps.dat
C:\WINDOWS\system32\drivers\hidr.exe
c:\WINDOWS\system32\drivers\srosa.sys

3. Maintenant, lance The Avenger en cliquant sur son icône du bureau.
Sous "Script file to execute" choisir "Input Script Manually".
Puis clique sur l'icône en forme de loupe qui va ouvrir une nouvelle fenêtre "View/edit script"
Dans cette fenêtre, colle le texte précedemment copié sur le bureau par les touches (Ctrl+V).
Cliquer Done
ensuite clique sur l'icône en forme de Feu Vert pour démarrer l'exécution du script
Réponds "Yes" deux fois quand demandé.

4. The Avenger va automatiquement faire ce qui suit:
Il va Re-démarrer le système.
Pendant le re-démarrage, il apparaitra brièvement une fenêtre de commande de windows noire sur ton bureau, ceci est NORMAL.
Après le re-démarrage, il crée un fichier log qui s'ouvrira, faisant apparaitre les actions exécutées par The Avenger. Ce fichier log se trouve ici : C:\avenger.txt

5. Pour finir copie/colle le contenu du ficher c:\avenger.txt

a+
0
Réponse 10 / 16
aniece Messages postés 13 Date d'inscription mercredi 29 août 2007 Statut Membre Dernière intervention 27 avril 2009 1
31 août 2007 à 10:09
bonjour

j'ai fait les manips, tout à bien fonctionné

voici le rapport

ogfile of The Avenger version 1, by Swandog46
Running from registry key:
\Registry\Machine\System\CurrentControlSet\Services\mmjywkhl

*******************

Script file located at: \??\C:\bifxvxew.txt
Script file opened successfully.

Script file read successfully

Backups directory opened successfully at C:\Avenger

*******************

Beginning to process script file:

Driver srosa unloaded successfully.
File c:\WINDOWS\system32\gjhzinva.dat deleted successfully.
File C:\windows\system32\gjhzinva.exe deleted successfully.
File c:\WINDOWS\system32\gjhzinva_nav.dat deleted successfully.
File c:\WINDOWS\system32\gjhzinva_navps.dat deleted successfully.
File C:\WINDOWS\system32\drivers\hidr.exe deleted successfully.
File c:\WINDOWS\system32\drivers\srosa.sys deleted successfully.

Completed script processing.

*******************

Finished! Terminate.
0
Réponse 11 / 16
did71 Messages postés 2187 Date d'inscription vendredi 24 mars 2006 Statut Contributeur sécurité Dernière intervention 30 janvier 2010 36
31 août 2007 à 21:06
bonsoir,

poste un nouveau rapport blacklight ainsi qu'un nouvel hijackthis!

a+
0
Réponse 12 / 16
aniece Messages postés 13 Date d'inscription mercredi 29 août 2007 Statut Membre Dernière intervention 27 avril 2009 1
1 sept. 2007 à 23:22
bonjour

le nouveau rapport blacklight

09/01/07 23:00:22 [Info]: BlackLight Engine 1.0.64 initialized
09/01/07 23:00:22 [Info]: OS: 5.1 build 2600 (Service Pack 2)
09/01/07 23:00:22 [Note]: 7019 4
09/01/07 23:00:22 [Note]: 7005 0
09/01/07 23:00:25 [Note]: 7006 0
09/01/07 23:00:25 [Note]: 7011 1884
09/01/07 23:00:25 [Note]: 7026 0
09/01/07 23:00:25 [Note]: 7026 0
09/01/07 23:00:27 [Note]: FSRAW library version 1.7.1022
09/01/07 23:20:18 [Note]: 2000 1012
09/01/07 23:21:33 [Note]: 7007 0


ainsi que celui de hijackthis

Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 22:56:54, on 01/09/2007
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.6000.16512)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\AntiVir PersonalEdition Classic\avguard.exe
C:\Program Files\AntiVir PersonalEdition Classic\sched.exe
C:\PROGRA~1\FICHIE~1\AOL\ACS\AOLacsd.exe
C:\WINDOWS\system32\netdde.exe
C:\WINDOWS\system32\slserv.exe
C:\WINDOWS\System32\snmp.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\dmadmin.exe
C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
C:\Program Files\Hewlett-Packard\Digital Imaging\Unload\hpqcmon.exe
C:\Program Files\Hewlett-Packard\HP Share-to-Web\hpgs2wnd.exe
C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe
C:\Program Files\Java\jre1.6.0_02\bin\jusched.exe
C:\Program Files\ScanSoft\OmniPageSE2.0\OpwareSE2.exe
C:\Program Files\AntiVir PersonalEdition Classic\avgnt.exe
C:\Program Files\LOGICIEL RAJOUTES\MouseWare\system\em_exec.exe
C:\Program Files\Hewlett-Packard\HP Share-to-Web\hpgs2wnf.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\VMN Toolbox\VMNToolbox.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\ESTsoft\ALZip\ALZip.exe
C:\Documents and Settings\Agnès\Favoris\Bureau\HiJackThis\HijackThis.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://webstats.motigo.com/s?tab=1&link=1&id=3247607
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = https://www.msn.com/fr-fr/?ocid=iehp
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.msn.com/fr-fr/?ocid=iehp
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = localhost
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll
O2 - BHO: Secured_eMule toolbar - {1d1b60fd-b21f-4b9a-8a5f-64e8544828d7} - (no file)
O2 - BHO: (no name) - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~1\SPYBOT~2\SDHelper.dll
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_02\bin\ssv.dll
O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)
O2 - BHO: Windows Live Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O3 - Toolbar: (no name) - {4982D40A-C53B-4615-B15B-B5B5E98D167C} - (no file)
O3 - Toolbar: Easy-WebPrint - {327C2873-E90D-4c37-AA9D-10AC9BABA46C} - C:\Program Files\Canon\Easy-WebPrint\Toolband.dll
O3 - Toolbar: (no name) - {1d1b60fd-b21f-4b9a-8a5f-64e8544828d7} - (no file)
O4 - HKLM\..\Run: [SynTPEnh] C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
O4 - HKLM\..\Run: [Imjpmig8.1] "C:\WINDOWS\IME\imjp8_1\IMJPMIG.EXE" /Spoil /RemAdvDef /Migration32
O4 - HKLM\..\Run: [Logitech Utility] Logi_MwX.Exe
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [CamMonitor] C:\Program Files\Hewlett-Packard\Digital Imaging\\Unload\hpqcmon.exe
O4 - HKLM\..\Run: [Share-to-Web Namespace Daemon] C:\Program Files\Hewlett-Packard\HP Share-to-Web\hpgs2wnd.exe
O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe" -osboot
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre1.6.0_02\bin\jusched.exe"
O4 - HKLM\..\Run: [SoundMan] SOUNDMAN.EXE
O4 - HKLM\..\Run: [OpwareSE2] "C:\Program Files\ScanSoft\OmniPageSE2.0\OpwareSE2.exe"
O4 - HKLM\..\Run: [PHIME2002ASync] C:\WINDOWS\system32\IME\TINTLGNT\TINTSETP.EXE /SYNC
O4 - HKLM\..\Run: [gjhzinva] c:\windows\system32\gjhzinva.exe gjhzinva
O4 - HKLM\..\Run: [avgnt] "C:\Program Files\AntiVir PersonalEdition Classic\avgnt.exe" /min
O4 - HKLM\..\Run: [ZoneAlarm Client] "C:\Program Files\Zone Labs\ZoneAlarm\zlclient.exe"
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [WOOKIT] C:\PROGRA~1\Wanadoo\Shell.exe appLaunchClientZone.shl|PARAM= cnx
O4 - HKCU\..\Run: [Skype] "C:\Program Files\Skype\Phone\Skype.exe" /nosplash /minimized
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE RÉSEAU')
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
O4 - Global Startup: VMN Toolbox.lnk = C:\Program Files\VMN Toolbox\VMNToolbox.exe
O8 - Extra context menu item: Easy-WebPrint Ajouter à la liste d'impressions - res://C:\Program Files\Canon\Easy-WebPrint\Resource.dll/RC_AddToList.html
O8 - Extra context menu item: Easy-WebPrint Impression rapide - res://C:\Program Files\Canon\Easy-WebPrint\Resource.dll/RC_HSPrint.html
O8 - Extra context menu item: Easy-WebPrint Imprimer - res://C:\Program Files\Canon\Easy-WebPrint\Resource.dll/RC_Print.html
O8 - Extra context menu item: Easy-WebPrint Prévisualiser - res://C:\Program Files\Canon\Easy-WebPrint\Resource.dll/RC_Preview.html
O10 - Unknown file in Winsock LSP: c:\windows\system32\nwprovau.dll
O14 - IERESET.INF: START_PAGE_URL=file://C:\APPS\IE\offline\fr.htm
O16 - DPF: {09CC593B-E8A9-4491-927D-A3E33534DDD4} (InstallerObj Class) - http://m6video.m6.fr/1click/install/files/installer2.cab
O16 - DPF: {0EB0E74A-2A76-4AB3-A7FB-9BD8C29F7F75} (CKAVWebScan Object) - https://www.kaspersky.fr/?domain=webscanner.kaspersky.fr
O16 - DPF: {149E45D8-163E-4189-86FC-45022AB2B6C9} (SpinTop DRM Control) - file:///C:/Program%20Files/Mystery%20Case%20Files%20-%20Ravenhearst/Images/stg_drm.ocx
O16 - DPF: {2250C29C-C5E9-4F55-BE4E-01E45A40FCF1} (CMediaMix Object) - http://musicmix.messenger.msn.com/Medialogic.CAB
O16 - DPF: {27527D31-447B-11D5-A46E-0001023B4289} (CoGSManager Class) - http://gamingzone.ubisoft.com/dev/packages/GSManager.cab
O16 - DPF: {2E28242B-A689-11D4-80F2-0040266CBB8D} (KXHCM10 Control) - http://rick.viewnetcam.com/kxhcm10.ocx
O16 - DPF: {55027008-315F-4F45-BBC3-8BE119764741} (Slide Image Uploader Control) - http://www.slide.com/uploader/SlideImageUploader.cab
O16 - DPF: {5D86DDB5-BDF9-441B-9E9E-D4730F4EE499} (BDSCANONLINE Control) - http://www.bitdefender.fr/scan8/oscan8.cab
O16 - DPF: {5ED80217-570B-4DA9-BF44-BE107C0EC166} (Windows Live Safety Center Base Module) - http://cdn.scan.onecare.live.com/resource/download/scanner/wlscbase8300.cab
O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} (MUWebControl Class) - http://update.microsoft.com/...
O16 - DPF: {74D05D43-3236-11D4-BDCD-00C04F9A3B61} (HouseCall Control) - https://www.trendmicro.com/en_us/forHome/products/housecall.html
O16 - DPF: {87BE3784-6977-4E84-AA08-55A96B9CEAC5} (BL_Camera) - http://vegaspaws.viewnetcam.com:50000/cgi-bin/bl_camera.cab
O16 - DPF: {B38870E4-7ECB-40DA-8C6A-595F0A5519FF} (MsnMessengerSetupDownloadControl Class) - http://messenger.msn.com/download/MsnMessengerSetupDownloader.cab
O16 - DPF: {B79A53C0-1DAC-4636-BACE-FD086A7A79BF} (AdSignerLCContrl Class) - https://static.impots.gouv.fr/tdir/static/adpform/AdSignerADP-1.0.cab
O16 - DPF: {CC450D71-CC90-424C-8638-1F2DBAC87A54} (ArmHelper Control) - file:///C:/Program%20Files/Mystery%20Case%20Files%20-%20Ravenhearst/Images/armhelper.ocx
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab
O16 - DPF: {E862C832-3A5F-4CEB-BFAA-167B22010A71} (InfosFinder2.InfosFinder) - http://support.packardbell.com/files/activex/InfosFinder2.CAB
O16 - DPF: {F58E1CEF-A068-4C15-BA5E-587CAF3EE8C6} (MSN Chat Control 4.5) - http://chat.msn.com/controls/msnchat45.cab
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\FICHIE~1\Skype\SKYPE4~1.DLL
O23 - Service: AntiVir PersonalEdition Classic Scheduler (AntiVirScheduler) - Avira GmbH - C:\Program Files\AntiVir PersonalEdition Classic\sched.exe
O23 - Service: AntiVir PersonalEdition Classic Guard (AntiVirService) - Avira GmbH - C:\Program Files\AntiVir PersonalEdition Classic\avguard.exe
O23 - Service: AOL Connectivity Service (AOL ACS) - America Online, Inc. - C:\PROGRA~1\FICHIE~1\AOL\ACS\AOLacsd.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Fichiers communs\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: Macromedia Licensing Service - Unknown owner - C:\Program Files\Fichiers communs\Macromedia Shared\Service\Macromedia Licensing.exe
O23 - Service: MySqlInventime - Unknown owner - c:\mysql\bin\mysqld-max-nt.exe (file missing)
O23 - Service: SmartLinkService (SLService) - - C:\WINDOWS\SYSTEM32\slserv.exe
O23 - Service: TrueVector Internet Monitor (vsmon) - Zone Labs, LLC - C:\WINDOWS\system32\ZoneLabs\vsmon.exe
O24 - Desktop Component 1: Anfy MADTEXT - C:\Program Files\AnfyTeam\Applet\MADTEXT\preview.html
O24 - Desktop Component 2: Anfy ANSTRETCH - C:\Program Files\AnfyTeam\Applet\ANSTRETCH\preview.html
0
Réponse 13 / 16
did71 Messages postés 2187 Date d'inscription vendredi 24 mars 2006 Statut Contributeur sécurité Dernière intervention 30 janvier 2010 36
3 sept. 2007 à 21:04
Bonsoir,

Télécharge AVG Anti-Spyware:


https://www.avg.com/en-ww/free-antivirus-download


Tu l'installes.
Lance AVG Anti-Spyware et clique sur le bouton Mise à jour. Patiente

Lance AVG Anti-Spyware
Clique sur le bouton Analyse (de la barre d'outils)
Puis sur l'onglets Comment réagir, clique sur Actions recommandées. Sélectionne Quarantaine.
Reviens à l'onglet Analyse. Clique sur Analyse complète du système.
A la fin du scan, choisis l'option " Appliquer toutes les actions " en bas.
Clique sur "Enregistrer le rapport". Ceci génère un rapport en fichier texte qui se trouve dans le dossier Reports du dossier d'AVG Anti-Spyware.

poste le rapport AVG!

a+
0
Réponse 14 / 16
aniece Messages postés 13 Date d'inscription mercredi 29 août 2007 Statut Membre Dernière intervention 27 avril 2009 1
10 sept. 2007 à 10:14
Bonjour

Après avoir installé AVG ANTI SPYWARE qui a détruit des petites choses, je n'ai plus aucun problème.

Aucun anti virus ne me trouve de petites bêtes

mon ordi refonctionne normalement


Merci beaucoup pour votre intervention.

Aniece
0
Réponse 15 / 16
did71 Messages postés 2187 Date d'inscription vendredi 24 mars 2006 Statut Contributeur sécurité Dernière intervention 30 janvier 2010 36
10 sept. 2007 à 21:06
Bonsoir,

content d'avoir pu t'aider et que tout fonctionne à nouveau!

Indique ton sujet comme résolu!

a+

Bon surf
0
Réponse 16 / 16
aniece Messages postés 13 Date d'inscription mercredi 29 août 2007 Statut Membre Dernière intervention 27 avril 2009 1
12 sept. 2007 à 07:50
Bonjour

Je sais maintenant sur quel site j'adresserai mes amis en cas de problème

Encore merci
0

Discussions similaires

Est ce que le site tlauncher est dangereux ?
caribou -
bazfile -

1 réponse
Comment savoir si j'ai attrapé un virus sur mon téléphone ?
Infolock -
bell -

66 réponses
4 virus en raison d’un porno ????
valou -
Bello040420 -

9 réponses
Virus Altruistic
Mael03250 -
MisteryBean -

11 réponses
Supprimer notifications myavids.com sous Android.
Guy72 -
Liline -

7 réponses