Y en a tellement que je sais pas comment

Utilisateur anonyme -  
 Utilisateur anonyme -
Rundll disparu ! (à quoi ça sert ?)
Avast installé
Ewido installé
Spyboat installé : il nettoie mais tout se réinstalle ,
adaware, hijackthis également installé ! j'ai de plus en plus de difficultés pour aller sur le net. Je dois sans cesse redémarrer !
coolwww. searchn et
Freeprod qui s’incruste à chaque démarrage et change ma page de démarrage sur Explorer
Un window security WIN FIXER qui lui aussi s’impose sous forme « d’USB Device » alors que j’ai rien demandé, ou alors j’ai raté une étape ! « Windows security center SP2Update » est détecté par Spyboat ! 22 Problèmes détectés
L’Avast qui clignote comme un arbre de noël, en m’annonçant des virus, des adware, des trojan contre lesquels il ne peut rien faire puisque la mise en quarantaine ne marche pas !
J’ai entre autres :
W32 Trojan-gen (UPX)
Win32:Trojano-2873 [Trj]
Win32:Tsupdate-J [Trj]

BREF JE CRAQUE !!!!
Maintenant, mon écran devient tout blanc puis plus rien !
Que faire docteur ?
Merci pour votre aide rapide

de plus, je considère ces attaques comme de véritables violations de domicile. D'un point de vue juridique, peut on porter plainte ? j'en ai marre ! avez vous des avis à ce sujet ?

ArchiveData(auto-quarantine- 2006-02-23 11-24-20.bckp)
Referencefile : SE1R92 14.02.2006
======================================================

WINDOWS
»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»
obj[0]=RegData : .DEFAULT\software\microsoft\windows\currentversion\policies\system "DisableTaskMgr"
obj[1]=RegData : S-1-5-18\software\microsoft\windows\currentversion\policies\system "DisableTaskMgr"
obj[2]=RegData : .DEFAULT\software\microsoft\windows\currentversion\policies\system "DisableRegistryTools"
obj[3]=RegData : S-1-5-18\software\microsoft\windows\currentversion\policies\system "DisableRegistryTools"

UCMORE
»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»
obj[4]=Process : C:\Program Files\TheSearchAccelerator\UCMTSAIE.dll
obj[5]=Folder : C:\Program Files\TheSearchAccelerator
obj[9]=File : C:\Program Files\TheSearchAccelerator\__delete_on_reboot__UCMTSAIE.dll
obj[10]=File : C:\System Volume Information\_restore{2C5222C6-E63B-40AA-B68E-A3061DAC1380}\RP61\A0017214.dll
obj[11]=File : C:\System Volume Information\_restore{2C5222C6-E63B-40AA-B68E-A3061DAC1380}\RP61\A0017217.dll
obj[12]=File : C:\System Volume Information\_restore{2C5222C6-E63B-40AA-B68E-A3061DAC1380}\RP61\A0017219.exe
obj[13]=File : C:\System Volume Information\_restore{2C5222C6-E63B-40AA-B68E-A3061DAC1380}\RP64\A0027336.exe
obj[14]=File : C:\System Volume Information\_restore{2C5222C6-E63B-40AA-B68E-A3061DAC1380}\RP64\A0027340.dll

ADWARE.FREEPROD TOOLBAR
»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»
obj[6]=RegValue : software\microsoft\windows\currentversion\internet settings "GlobalUserOffline"
obj[7]=Folder : C:\Program Files\Fichiers communs\InetGet
obj[8]=Folder : C:\Program Files\Fichiers communs\Download
obj[15]=File : C:\Documents and Settings\LocalService\Local Settings\Temporary Internet Files\Content.IE5\0R7CYC6M\launcher[1].exe
obj[16]=File : C:\Documents and Settings\LocalService\Local Settings\Temporary Internet Files\Content.IE5\QBA147WT\launcher[1].exe
obj[17]=File : C:\mc-110-12-0000228.exe
obj[18]=File : C:\Program Files\Fichiers communs\Download\mc-110-12-0000228.exe
obj[19]=File : C:\System Volume Information\_restore{2C5222C6-E63B-40AA-B68E-A3061DAC1380}\RP61\A0019260.exe

Logfile of HijackThis v1.99.1
Scan saved at 09:57:39, on 25/02/2006
Platform: Windows XP (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 (6.00.2600.0000)

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Creative\Shared Files\CAMTRAY.EXE
C:\windows\winsysban11.exe
C:\WINDOWS\System32\ctfmon.exe
C:\Program Files\Messenger\msmsgs.exe
C:\Program Files\MSN Messenger\MsnMsgr.Exe
C:\Program Files\WinZip\WZQKPICK.EXE
C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
C:\Program Files\Alwil Software\Avast4\ashServ.exe
C:\Program Files\ewido anti-malware\ewidoctrl.exe
C:\WINDOWS\system32\hal.exe
C:\WINDOWS\nvidGUIv.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
C:\WINDOWS\System32\update32.exe
C:\Documents and Settings\zebulon\Bureau\HijackThis.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.wanadoo.fr/
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
R3 - URLSearchHook: (no name) - {F27E6D61-84A7-FC27-869D-A30FD7E240C5} - (no file)
O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll
O2 - BHO: (no name) - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O2 - BHO: RieMon Class - {70F6A776-579A-4C95-BA88-134253907752} - C:\WINDOWS\System32\irsmgeht.dll
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll
O2 - BHO: ADOUsefulNet Object - {7CB093AC-11DF-46D5-9343-CE4BD90C159C} - C:\WINDOWS\System32\jkhhi.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar2.dll
O2 - BHO: (no name) - {EA32FB3B-21C9-42cc-B8EF-01A9B28EDB0D} - C:\WINDOWS\system32\ddcca.dll
O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar2.dll
O3 - Toolbar: UCmore XP - The Search Accelerator - {44BE0690-5429-47f0-85BB-3FFD8020233E} - C:\Program Files\TheSearchAccelerator\UCMTSAIE.dll
O4 - HKLM\..\Run: [Creative WebCam Tray] C:\Program Files\Creative\Shared Files\CAMTRAY.EXE
O4 - HKLM\..\Run: [winsysupd] C:\windows\winsysupd11.exe
O4 - HKLM\..\Run: [gimmygames] C:\windows\gimmygames11.exe
O4 - HKLM\..\Run: [MediaGateway] C:\Program Files\MediaGateway\MediaGateway.exe
O4 - HKLM\..\Run: [NeroFilterCheck] C:\WINDOWS\system32\NeroCheck.exe
O4 - HKLM\..\Run: [winsysban] C:\windows\winsysban11.exe
O4 - HKLM\..\Run: [Windows update adbpro] update32.exe
O4 - HKLM\..\RunServices: [Microsoft Update] wuamkp.exe
O4 - HKLM\..\RunServices: [Windows update adbpro] update32.exe
O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\ctfmon.exe
O4 - HKCU\..\Run: [Microsoft Update] msconfg.exe
O4 - HKCU\..\Run: [MSMSGS] "C:\Program Files\Messenger\msmsgs.exe" /background
O4 - HKCU\..\Run: [wzom] C:\PROGRA~1\FICHIE~1\wzom\wzomm.exe
O4 - HKCU\..\Run: [Ilru] "C:\Program Files\srho\dset.exe" -vt yazb
O4 - HKCU\..\Run: [Hcatpn] C:\WINDOWS\System32\??rvices.exe
O4 - HKCU\..\Run: [MsnMsgr] "C:\Program Files\MSN Messenger\MsnMsgr.Exe" /background
O4 - HKCU\..\Run: [irssyncd] C:\WINDOWS\System32\irssyncd.exe
O4 - HKCU\..\Run: [Error Safe] "C:\Program Files\Error Safe Free\ers.exe" /scan
O4 - Startup: Zeno.lnk = C:\WINDOWS\system32\swinqsap.exe
O4 - Startup: Z_Start.lnk = C:\WINDOWS\ZIFI002.exe
O4 - Global Startup: Lancement rapide d'Adobe Reader.lnk = C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe
O4 - Global Startup: WinZip Quick Pick.lnk = C:\Program Files\WinZip\WZQKPICK.EXE
O8 - Extra context menu item: &Traduire à partir de l'anglais - res://C:\Program Files\Google\GoogleToolbar2.dll/cmwordtrans.html
O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~2\OFFICE11\EXCEL.EXE/3000
O8 - Extra context menu item: Pages liées - res://C:\Program Files\Google\GoogleToolbar2.dll/cmbacklinks.html
O8 - Extra context menu item: Pages similaires - res://C:\Program Files\Google\GoogleToolbar2.dll/cmsimilar.html
O8 - Extra context menu item: Recherche &Google - res://C:\Program Files\Google\GoogleToolbar2.dll/cmsearch.html
O8 - Extra context menu item: Version de la page actuelle disponible dans le cache Google - res://C:\Program Files\Google\GoogleToolbar2.dll/cmcache.html
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll
O9 - Extra button: Recherche - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\OFFICE11\REFIEBAR.DLL
O15 - Trusted Zone: http://click.getmirar.com (HKLM)
O15 - Trusted Zone: http://click.mirarsearch.com (HKLM)
O15 - Trusted Zone: http://redirect.mirarsearch.com (HKLM)
O16 - DPF: {8FCDF9D9-A28B-480F-8C3D-581F119A8AB8} - http://static.zangocash.com/cab/Zango/ie/bridge-c32.cab
O16 - DPF: {9AC54695-69A4-46F1-BE10-10C74F9520D5} - http://cabs.elitemediagroup.net/cabs/mediaview.cab
O16 - DPF: {B38870E4-7ECB-40DA-8C6A-595F0A5519FF} (MsnMessengerSetupDownloadControl Class) - http://messenger.msn.com/download/MsnMessengerSetupDownloader.cab
O16 - DPF: {BFF1950D-B1B4-4AE8-B842-B2CCF06D9A1B} (Zylom Games Player) - http://game06.zylom.servicesalacarte.wanadoo.fr/activex/zylomgamesplayer.cab
O16 - DPF: {F919FBD3-A96B-4679-AF26-F551439BB5FD} - http://fr.errorsafe.com/pages/scanner_fr/ErrorSafeScannerInstallFR.cab
O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - "C:\PROGRA~1\MSNMES~1\msgrapp.dll" (file missing)
O18 - Filter: text/html - {2F6E85DC-8D2D-4896-8A4F-7DF8A7B1749D} - C:\PROGRA~1\Jalmp\jalmp.dll
O20 - Winlogon Notify: ddcca - C:\WINDOWS\SYSTEM32\ddcca.dll
O20 - Winlogon Notify: jkhhi - C:\WINDOWS\System32\jkhhi.dll
O20 - Winlogon Notify: RunOnceEx - C:\WINDOWS\system32\vsscript.dll (file missing)
O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - Unknown owner - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
O23 - Service: ATIintergrated - Unknown owner - C:\WINDOWS\atigraphics.exe (file missing)
O23 - Service: avast! Antivirus - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashServ.exe
O23 - Service: avast! Mail Scanner - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe" /service (file missing)
O23 - Service: avast! Web Scanner - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe" /service (file missing)
O23 - Service: ewido security suite control - ewido networks - C:\Program Files\ewido anti-malware\ewidoctrl.exe
O23 - Service: fwnet64 (fwnet) - Unknown owner - C:\WINDOWS\fwnet64.exe (file missing)
O23 - Service: inetdns (InetDns) (inetdns) - Unknown owner - C:\WINDOWS\system32\inetdns.exe (file missing)
O23 - Service: Microsoft Dynamic Network (MDNetwork) - Unknown owner - C:\WINDOWS\system32\MDN.exe (file missing)
O23 - Service: mswmf32 - Unknown owner - C:\WINDOWS\mswmf32.exe (file missing)
O23 - Service: netconf32 - Unknown owner - C:\WINDOWS\netconf32.exe (file missing)
O23 - Service: nvidGUIv (nvidGUIv2) - Unknown owner - C:\WINDOWS\nvidGUIv.exe
O23 - Service: Win32Sr - Unknown owner - C:\WINDOWS\win32ssr.exe (file missing)

NETTOYAGE COMPLET - (11,970 secs)
------------------------------------------------------------------------------------------
5,67MB supprimés.

Détails des fichiers à effacer
------------------------------------------------------------------------------------------
Fichiers Temporaires d'Internet Explorer (fichiers 1) 67 bytes
C:\Documents and Settings\zebulon\Cookies\zebulon@202.67.220[2].txt 174 bytes
C:\Documents and Settings\zebulon\Cookies\zebulon@62.4.84[2].txt 161 bytes
C:\Documents and Settings\zebulon\Cookies\zebulon@ad.yieldmanager[1].txt 95 bytes
C:\Documents and Settings\zebulon\Cookies\zebulon@advertising[1].txt 90 bytes
C:\Documents and Settings\zebulon\Cookies\zebulon@cpvfeed[1].txt 129 bytes
C:\Documents and Settings\zebulon\Cookies\zebulon@doubleclick[1].txt 83 bytes
C:\Documents and Settings\zebulon\Cookies\zebulon@google[1].txt 129 bytes
C:\Documents and Settings\zebulon\Cookies\zebulon@iapref.wanadoo[1].txt 96 bytes
C:\Documents and Settings\zebulon\Cookies\zebulon@stats1.reliablestats[1].txt 898 bytes
C:\Documents and Settings\zebulon\Cookies\zebulon@wanadoo[1].txt 80 bytes
C:\Documents and Settings\zebulon\Cookies\zebulon@www.wanadoo[2].txt 78 bytes
C:\Documents and Settings\zebulon\Cookies\zebulon@www.winantiviruspro[1].txt 243 bytes
C:\Documents and Settings\zebulon\Cookies\zebulon@yourmedia[1].txt 93 bytes
C:\Documents and Settings\zebulon\Cookies\zebulon@zylom.servicesalacarte.wanadoo[2].txt 220 bytes
C:\Documents and Settings\zebulon\Cookies\zebulon@zylom[2].txt 170 bytes
Marqué pour l'effacement: C:\Documents and Settings\zebulon\Local Settings\Temporary Internet Files\Content.IE5\index.dat
Marqué pour l'effacement: C:\Documents and Settings\zebulon\Cookies\index.dat
Poubelle vidée (2 fichiers) 1,82MB
C:\WINDOWS\TEMP\adv.exe 5,06KB
C:\WINDOWS\TEMP\id.id 65 bytes
C:\WINDOWS\TEMP\JETBB12.tmp 0 bytes
C:\WINDOWS\TEMP\JETBD64.tmp 0 bytes
C:\WINDOWS\TEMP\JETCC87.tmp 0 bytes
C:\WINDOWS\TEMP\JETDAA0.tmp 0 bytes
C:\WINDOWS\TEMP\JETE658.tmp 0 bytes
C:\WINDOWS\TEMP\JETEB1B.tmp 0 bytes
C:\WINDOWS\TEMP\mc-110-12-0000248.exe 47,95KB
C:\WINDOWS\TEMP\nsj6.tmp\InetLoad.dll 17,00KB
C:\WINDOWS\TEMP\nsj6.tmp\Processes.dll 35,50KB
C:\WINDOWS\TEMP\nsj6.tmp\System.dll 10,00KB
C:\WINDOWS\TEMP\nsm4.tmp\InetLoad.dll 17,00KB
C:\WINDOWS\TEMP\nsm4.tmp\System.dll 10,00KB
C:\WINDOWS\TEMP\nsm5.tmp\InetLoad.dll 17,00KB
C:\WINDOWS\TEMP\nsm5.tmp\System.dll 10,00KB
C:\WINDOWS\TEMP\nsy7.tmp\InetLoad.dll 17,00KB
C:\WINDOWS\TEMP\nsy7.tmp\Processes.dll 35,50KB
C:\WINDOWS\TEMP\nsy7.tmp\System.dll 10,00KB
C:\WINDOWS\TEMP\Perflib_Perfdata_178.dat 16,00KB
C:\WINDOWS\TEMP\Perflib_Perfdata_600.dat 16,00KB
C:\WINDOWS\TEMP\Perflib_Perfdata_640.dat 16,00KB
C:\WINDOWS\TEMP\Perflib_Perfdata_6e4.dat 16,00KB
C:\WINDOWS\TEMP\Perflib_Perfdata_6f0.dat 16,00KB
C:\WINDOWS\TEMP\removalfile.bat 43 bytes
C:\DOCUME~1\zebulon\LOCALS~1\Temp\GLB7.tmp 70,00KB
C:\DOCUME~1\zebulon\LOCALS~1\Temp\GLC8.tmp 0,16MB
C:\DOCUME~1\zebulon\LOCALS~1\Temp\GLFC.tmp 10,50KB
C:\DOCUME~1\zebulon\LOCALS~1\Temp\GLIE.tmp 6,41KB
C:\DOCUME~1\zebulon\LOCALS~1\Temp\GLK9.tmp 30,50KB
C:\DOCUME~1\zebulon\LOCALS~1\Temp\Historique\History.IE5\desktop.ini 113 bytes
C:\DOCUME~1\zebulon\LOCALS~1\Temp\id.id 65 bytes
C:\DOCUME~1\zebulon\LOCALS~1\Temp\java_install_reg.log 2,84KB
C:\DOCUME~1\zebulon\LOCALS~1\Temp\Temporary Internet Files\Content.IE5\85QNCTMF\desktop.ini 67 bytes
C:\DOCUME~1\zebulon\LOCALS~1\Temp\Temporary Internet Files\Content.IE5\CCCKYZ6O\desktop.ini 67 bytes
C:\DOCUME~1\zebulon\LOCALS~1\Temp\Temporary Internet Files\Content.IE5\desktop.ini 67 bytes
C:\DOCUME~1\zebulon\LOCALS~1\Temp\Temporary Internet Files\Content.IE5\GZAJFNTO\desktop.ini 67 bytes
C:\DOCUME~1\zebulon\LOCALS~1\Temp\Temporary Internet Files\Content.IE5\GZPMOXD1\desktop.ini 67 bytes
C:\DOCUME~1\zebulon\LOCALS~1\Temp\~DF7611.tmp 16,00KB
C:\DOCUME~1\zebulon\LOCALS~1\Temp\~DF9EA7.tmp 512 bytes
C:\WINDOWS\system32\wbem\Logs\wbemess.log 34,28KB
C:\WINDOWS\system32\wbem\Logs\WinMgmt.log 216 bytes
C:\WINDOWS\system32\wbem\Logs\wmiprov.log 1,99KB
C:\WINDOWS\system32\wbem\Logs\wbemess.lo_ 64,11KB
C:\WINDOWS\0.log 0 bytes
C:\Documents and Settings\All Users\Application Data\Microsoft\Dr Watson\drwtsn32.log 0,18MB
C:\Documents and Settings\All Users\Application Data\Microsoft\Dr Watson\user.dmp 52,92KB
C:\WINDOWS\Debug\NetSetup.LOG 264 bytes
C:\WINDOWS\Debug\UserMode\userenv.log 34,40KB
C:\Documents and Settings\zebulon\Application Data\Macromedia\Flash Player\macromedia.com\support\flashplayer\sys\settings.sol 348 bytes
C:\Documents and Settings\All Users\Application Data\Spybot - Search & Destroy\Logs\Checks.060223-1128.log 191 bytes
C:\Documents and Settings\All Users\Application Data\Spybot - Search & Destroy\Logs\Checks.060224-1914.log 2,05KB
C:\Documents and Settings\All Users\Application Data\Spybot - Search & Destroy\Logs\Checks.060224-1936- 5,23KB
C:\Documents and Settings\All Users\Application Data\Spybot - Search & Destroy\Logs\Checks.060224-1936.txt 5,28KB
C:\Documents and Settings\All Users\Application Data\Spybot - Search & Destroy\Statistics.ini 807 bytes
C:\Documents and Settings\zebulon\Application Data\Lavasoft\Ad-Aware\Logs\Ad-Aware log2006-02-23 11-11-22.txt 23,06KB
C:\Documents and Settings\zebulon\Application Data\Lavasoft\Ad-Aware\Logs\Ad-Aware log2006-02-24 19-27-22.txt 39,96KB
C:\Documents and Settings\zebulon\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\0.class-8f4a53b-35dedde4.class 1,07KB
C:\Documents and Settings\zebulon\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\0.class-8f4a53b-35dedde4.idx 250 bytes
C:\Documents and Settings\zebulon\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\1.class-3ddae07c-5e47268b.class 512 bytes
C:\Documents and Settings\zebulon\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\1.class-3ddae07c-5e47268b.idx 249 bytes
C:\Documents and Settings\zebulon\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\arrow.gif-452fe9a0-5213f567.gif 178 bytes
C:\Documents and Settings\zebulon\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\arrow.gif-452fe9a0-5213f567.idx 308 bytes
C:\Documents and Settings\zebulon\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\arrows.jpg-5a67863-6e7516eb.idx 313 bytes
C:\Documents and Settings\zebulon\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\arrows.jpg-5a67863-6e7516eb.jpg 1,40KB
C:\Documents and Settings\zebulon\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\atomobuck.gif-45ceeb50-7798213a.gif 1,92KB
C:\Documents and Settings\zebulon\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\atomobuck.gif-45ceeb50-7798213a.idx 313 bytes
C:\Documents and Settings\zebulon\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\back.jpg-528ea52b-73ca7371.idx 316 bytes
C:\Documents and Settings\zebulon\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\back.jpg-528ea52b-73ca7371.jpg 27,60KB
C:\Documents and Settings\zebulon\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\background.jpg-209868e9-6106ce69.idx 324 bytes
C:\Documents and Settings\zebulon\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\background.jpg-209868e9-6106ce69.jpg 41,27KB
C:\Documents and Settings\zebulon\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\bag.gif-da0945f-22aa7d24.gif 1,61KB
C:\Documents and Settings\zebulon\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\bag.gif-da0945f-22aa7d24.idx 307 bytes
C:\Documents and Settings\zebulon\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\baghit.au-47a45f84-6e26a2ca.au 2,30KB
C:\Documents and Settings\zebulon\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\baghit.au-47a45f84-6e26a2ca.idx 311 bytes
C:\Documents and Settings\zebulon\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\bagslots.gif-71b403b2-5ccbbee0.gif 4,25KB
C:\Documents and Settings\zebulon\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\bagslots.gif-71b403b2-5ccbbee0.idx 312 bytes
C:\Documents and Settings\zebulon\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\beep.au-340b89c-7a951ac5.au 1,00KB
C:\Documents and Settings\zebulon\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\beep.au-340b89c-7a951ac5.idx 244 bytes
C:\Documents and Settings\zebulon\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\bg.jpg-29825114-602b666e.idx 307 bytes
C:\Documents and Settings\zebulon\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\bg.jpg-29825114-602b666e.jpg 40,31KB
C:\Documents and Settings\zebulon\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\bg.jpg-e1f5210-1f51f5e3.idx 307 bytes
C:\Documents and Settings\zebulon\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\bg.jpg-e1f5210-1f51f5e3.jpg 40,31KB
C:\Documents and Settings\zebulon\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\bigmoney.au-661260ef-698b3998.au 8,17KB
C:\Documents and Settings\zebulon\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\bigmoney.au-661260ef-698b3998.idx 313 bytes
C:\Documents and Settings\zebulon\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\blank.au-4bd23b71-13276f19.au 1,60KB
C:\Documents and Settings\zebulon\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\blank.au-4bd23b71-13276f19.idx 310 bytes
C:\Documents and Settings\zebulon\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\bonusdrop.au-2ab21d77-3a68b736.au 5,38KB
C:\Documents and Settings\zebulon\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\bonusdrop.au-2ab21d77-3a68b736.idx 314 bytes
C:\Documents and Settings\zebulon\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\bullet.gif-50299266-71d68aa6.gif 829 bytes
C:\Documents and Settings\zebulon\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\bullet.gif-50299266-71d68aa6.idx 318 bytes
C:\Documents and Settings\zebulon\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\bullet.gif-5770f068-25f22cc9.gif 829 bytes
C:\Documents and Settings\zebulon\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\bullet.gif-5770f068-25f22cc9.idx 315 bytes
C:\Documents and Settings\zebulon\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\bullet.gif-72d3ef6c-52e22f4d.gif 829 bytes
C:\Documents and Settings\zebulon\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\bullet.gif-72d3ef6c-52e22f4d.idx 315 bytes
C:\Documents and Settings\zebulon\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\buttonclick.au-48b3cfaf-24d773f4.au 1,17KB
C:\Documents and Settings\zebulon\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\buttonclick.au-48b3cfaf-24d773f4.idx 316 bytes
C:\Documents and Settings\zebulon\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\buttonclick.au-75856226-2ccc1764.au 326 bytes
C:\Documents and Settings\zebulon\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\buttonclick.au-75856226-2ccc1764.idx 317 bytes
C:\Documents and Settings\zebulon\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\buttons_.gif-2b126930-125fdf2a.gif 3,63KB
C:\Documents and Settings\zebulon\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\buttons_.gif-2b126930-125fdf2a.idx 311 bytes
C:\Documents and Settings\zebulon\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\buttons_.gif-faf6a2c-2105c8b1.gif 3,63KB
C:\Documents and Settings\zebulon\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\buttons_.gif-faf6a2c-2105c8b1.idx 311 bytes
C:\Documents and Settings\zebulon\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\button_clear.gif-b9c6b1e-7ff4e1d4.gif 4,98KB
C:\Documents and Settings\zebulon\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\button_clear.gif-b9c6b1e-7ff4e1d4.idx 324 bytes
C:\Documents and Settings\zebulon\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\button_godeluxe.jpg-39f0c98d-2a3f647f.idx 330 bytes
C:\Documents and Settings\zebulon\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\button_godeluxe.jpg-39f0c98d-2a3f647f.jpg 13,40KB
C:\Documents and Settings\zebulon\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\button_godeluxe.jpg-47a161ff-2ea98743.idx 327 bytes
C:\Documents and Settings\zebulon\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\button_godeluxe.jpg-47a161ff-2ea98743.jpg 13,40KB
C:\Documents and Settings\zebulon\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\button_godeluxe.jpg-63046103-7ee4d7bd.idx 327 bytes
C:\Documents and Settings\zebulon\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\button_godeluxe.jpg-63046103-7ee4d7bd.jpg 13,40KB
C:\Documents and Settings\zebulon\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\button_ok.jpg-5235fde-37e319a6.idx 327 bytes
C:\Documents and Settings\zebulon\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\button_ok.jpg-5235fde-37e319a6.jpg 12,62KB
C:\Documents and Settings\zebulon\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\button_ok.jpg-5c0fc868-3e7e6f31.idx 330 bytes
C:\Documents and Settings\zebulon\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\button_ok.jpg-5c0fc868-3e7e6f31.jpg 12,62KB
C:\Documents and Settings\zebulon\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\button_ok.jpg-69c060da-31d62801.idx 327 bytes
C:\Documents and Settings\zebulon\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\button_ok.jpg-69c060da-31d62801.jpg 12,62KB
C:\Documents and Settings\zebulon\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\button_pause.gif-8ccde47-1a733144.gif 4,69KB
C:\Documents and Settings\zebulon\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\button_pause.gif-8ccde47-1a733144.idx 324 bytes
C:\Documents and Settings\zebulon\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\button_shuffle.gif-20ba6e8a-59ee11a9.gif 5,07KB
C:\Documents and Settings\zebulon\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\button_shuffle.gif-20ba6e8a-59ee11a9.idx 326 bytes
C:\Documents and Settings\zebulon\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\button_sound.gif-7224567e-40d347f6.gif 2,64KB
C:\Documents and Settings\zebulon\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\button_sound.gif-7224567e-40d347f6.idx 318 bytes
C:\Documents and Settings\zebulon\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\button_submit.gif-15138caf-7203aa2a.gif 6,95KB
C:\Documents and Settings\zebulon\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\button_submit.gif-15138caf-7203aa2a.idx 325 bytes
C:\Documents and Settings\zebulon\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\clearcoinhelp.gif-3fc08d54-1501a52e.gif 1,07KB
C:\Documents and Settings\zebulon\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\clearcoinhelp.gif-3fc08d54-1501a52e.idx 323 bytes
C:\Documents and Settings\zebulon\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\clearcoins.au-68d67d7a-2a640407.au 4,06KB
C:\Documents and Settings\zebulon\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\clearcoins.au-68d67d7a-2a640407.idx 315 bytes
C:\Documents and Settings\zebulon\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\clearcoins2.au-eab2ae8-4978eccd.au 4,97KB
C:\Documents and Settings\zebulon\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\clearcoins2.au-eab2ae8-4978eccd.idx 316 bytes
C:\Documents and Settings\zebulon\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\clearcoins3.au-eab9f47-49a5f993.au 10,16KB
C:\Documents and Settings\zebulon\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\clearcoins3.au-eab9f47-49a5f993.idx 317 bytes
C:\Documents and Settings\zebulon\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\clickhere.gif-56e8e72d-3a4265b8.gif 605 bytes
C:\Documents and Settings\zebulon\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\clickhere.gif-56e8e72d-3a4265b8.idx 318 bytes
C:\Documents and Settings\zebulon\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\coinanim.gif-62772227-40db9e0f.gif 2,29KB
C:\Documents and Settings\zebulon\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\coinanim.gif-62772227-40db9e0f.idx 312 bytes
C:\Documents and Settings\zebulon\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\coinexplosion.gif-80d3ebb-2a9f4e08.gif 2,42KB
C:\Documents and Settings\zebulon\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\coinexplosion.gif-80d3ebb-2a9f4e08.idx 317 bytes
C:\Documents and Settings\zebulon\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\coins.gif-580ff519-53df9b7f.gif 3,12KB
C:\Documents and Settings\zebulon\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\coins.gif-580ff519-53df9b7f.idx 309 bytes
C:\Documents and Settings\zebulon\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\combination.au-36cbaabf-51eb2833.au 2,16KB
C:\Documents and Settings\zebulon\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\combination.au-36cbaabf-51eb2833.idx 315 bytes
C:\Documents and Settings\zebulon\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\combination.au-522ea9c3-55b74cdb.au 2,16KB
C:\Documents and Settings\zebulon\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\combination.au-522ea9c3-55b74cdb.idx 315 bytes
C:\Documents and Settings\zebulon\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\correct.au-5e1d2cd2-62daa837.au 3,29KB
C:\Documents and Settings\zebulon\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\correct.au-5e1d2cd2-62daa837.idx 314 bytes
C:\Documents and Settings\zebulon\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\countdown.gif-800b348-51575be1.gif 751 bytes
C:\Documents and Settings\zebulon\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\countdown.gif-800b348-51575be1.idx 312 bytes
C:\Documents and Settings\zebulon\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\dail_big.gif-d5b9fdd-63cf024e.gif 301 bytes
C:\Documents and Settings\zebulon\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\dail_big.gif-d5b9fdd-63cf024e.idx 313 bytes
C:\Documents and Settings\zebulon\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\dail_small.gif-1c855224-43067478.gif 173 bytes
C:\Documents and Settings\zebulon\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\dail_small.gif-1c855224-43067478.idx 315 bytes
C:\Documents and Settings\zebulon\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\deselect.au-48d79c89-67f53f28.au 291 bytes
C:\Documents and Settings\zebulon\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\deselect.au-48d79c89-67f53f28.idx 311 bytes
C:\Documents and Settings\zebulon\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\deselect.au-643a9b8d-432b8d2d.au 291 bytes
C:\Documents and Settings\zebulon\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\deselect.au-643a9b8d-432b8d2d.idx 311 bytes
C:\Documents and Settings\zebulon\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\dialog.gif-1ddf4b2-3681912b.gif 21,55KB
C:\Documents and Settings\zebulon\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\dialog.gif-1ddf4b2-3681912b.idx 317 bytes
C:\Documents and Settings\zebulon\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\dialog.gif-5f3397ac-6ee9f0e2.gif 18,96KB
C:\Documents and Settings\zebulon\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\dialog.gif-5f3397ac-6ee9f0e2.idx 320 bytes
C:\Documents and Settings\zebulon\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\dialog.gif-667af5ae-6f8022b8.gif 21,55KB
C:\Documents and Settings\zebulon\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\dialog.gif-667af5ae-6f8022b8.idx 317 bytes
C:\Documents and Settings\zebulon\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\door.jpg-60a12287-2a3a488a.idx 311 bytes
C:\Documents and Settings\zebulon\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\door.jpg-60a12287-2a3a488a.jpg 8,72KB
C:\Documents and Settings\zebulon\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\dualcoinbar.jpg-6c5bf85a-7104d70e.idx 316 bytes
C:\Documents and Settings\zebulon\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\dualcoinbar.jpg-6c5bf85a-7104d70e.jpg 2,25KB
C:\Documents and Settings\zebulon\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\dummy.au-23f8a2d4-70d4ac66.au 35 bytes
C:\Documents and Settings\zebulon\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\dummy.au-23f8a2d4-70d4ac66.idx 310 bytes
C:\Documents and Settings\zebulon\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\dummy.au-4339b946-2245e1c9.au 1,98KB
C:\Documents and Settings\zebulon\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\dummy.au-4339b946-2245e1c9.idx 309 bytes
C:\Documents and Settings\zebulon\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\dummy.au-5e9cb84a-5ba8ff40.au 1,98KB
C:\Documents and Settings\zebulon\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\dummy.au-5e9cb84a-5ba8ff40.idx 309 bytes
C:\Documents and Settings\zebulon\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\elements.gif-3b7fdb33-32f880e4.gif 18,98KB
C:\Documents and Settings\zebulon\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\elements.gif-3b7fdb33-32f880e4.idx 315 bytes
C:\Documents and Settings\zebulon\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\error.au-75c85974-3f4f9c07.au 1,55KB
C:\Documents and Settings\zebulon\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\error.au-75c85974-3f4f9c07.idx 312 bytes
C:\Documents and Settings\zebulon\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\excellent.au-7430e3cf-533d76eb.au 5,29KB
C:\Documents and Settings\zebulon\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\excellent.au-7430e3cf-533d76eb.idx 314 bytes
C:\Documents and Settings\zebulon\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\explode.au-3c922204-45359dd5.au 5,41KB
C:\Documents and Settings\zebulon\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\explode.au-3c922204-45359dd5.idx 312 bytes
C:\Documents and Settings\zebulon\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\fire.gif-776564f2-727c44a9.gif 1,70KB
C:\Documents and Settings\zebulon\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\fire.gif-776564f2-727c44a9.idx 310 bytes
C:\Documents and Settings\zebulon\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\flasher.gif-98ea1f4-40e4db0f.gif 763 bytes
C:\Documents and Settings\zebulon\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\flasher.gif-98ea1f4-40e4db0f.idx 310 bytes
C:\Documents and Settings\zebulon\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\gameover.au-13f8afe4-31958508.au 7,68KB
C:\Documents and Settings\zebulon\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\gameover.au-13f8afe4-31958508.idx 312 bytes
C:\Documents and Settings\zebulon\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\gameover.au-74731f29-207ce3ab.au 6,71KB
C:\Documents and Settings\zebulon\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\gameover.au-74731f29-207ce3ab.idx 313 bytes
C:\Documents and Settings\zebulon\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\gameover.au-7895b0e0-6f722b54.au 7,68KB
C:\Documents and Settings\zebulon\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\gameover.au-7895b0e0-6f722b54.idx 312 bytes
C:\Documents and Settings\zebulon\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\gameover.gif-466f2fcb-12279f58.gif 2,29KB
C:\Documents and Settings\zebulon\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\gameover.gif-466f2fcb-12279f58.idx 312 bytes
C:\Documents and Settings\zebulon\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\gameovertone.au-622b30f7-1494db86.au 9,48KB
C:\Documents and Settings\zebulon\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\gameovertone.au-622b30f7-1494db86.idx 317 bytes
C:\Documents and Settings\zebulon\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\go.au-3b005e87-68b4578f.au 4,09KB
C:\Documents and Settings\zebulon\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\go.au-3b005e87-68b4578f.idx 307 bytes
C:\Documents and Settings\zebulon\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\goodjob.au-57bb80a5-4c95e3b2.au 5,40KB
C:\Documents and Settings\zebulon\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\goodjob.au-57bb80a5-4c95e3b2.idx 312 bytes
C:\Documents and Settings\zebulon\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\gotbag.au-484873-28a92c74.au 4,82KB
C:\Documents and Settings\zebulon\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\gotbag.au-484873-28a92c74.idx 311 bytes
C:\Documents and Settings\zebulon\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\greenbagflash.gif-236ec082-484a3353.gif 638 bytes
C:\Documents and Settings\zebulon\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\greenbagflash.gif-236ec082-484a3353.idx 316 bytes
C:\Documents and Settings\zebulon\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\helpsound.gif-200d5105-5cebe9bf.gif 417 bytes
C:\Documents and Settings\zebulon\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\helpsound.gif-200d5105-5cebe9bf.idx 312 bytes
C:\Documents and Settings\zebulon\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\hint.au-3e5cac7f-256b53d7.au 1,03KB
C:\Documents and Settings\zebulon\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\hint.au-3e5cac7f-256b53d7.idx 308 bytes
C:\Documents and Settings\zebulon\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\hint.au-59bfab83-57dc7ed2.au 1,03KB
C:\Documents and Settings\zebulon\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\hint.au-59bfab83-57dc7ed2.idx 308 bytes
C:\Documents and Settings\zebulon\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\hint.jpg-2f26adb4-1b129dbe.idx 314 bytes
C:\Documents and Settings\zebulon\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\hint.jpg-2f26adb4-1b129dbe.jpg 3,98KB
C:\Documents and Settings\zebulon\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\hint.jpg-4a89acb8-4d484aaa.idx 314 bytes
C:\Documents and Settings\zebulon\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\hint.jpg-4a89acb8-4d484aaa.jpg 3,98KB
C:\Documents and Settings\zebulon\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\hottile.au-64669721-443bd081.au 5,25KB
C:\Documents and Settings\zebulon\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\hottile.au-64669721-443bd081.idx 314 bytes
C:\Documents and Settings\zebulon\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\images.jpg-5cce10f9-745970b1.idx 321 bytes
C:\Documents and Settings\zebulon\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\images.jpg-5cce10f9-745970b1.jpg 52,10KB
C:\Documents and Settings\zebulon\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\images.jpg-64156efb-44c70ced.idx 318 bytes
C:\Documents and Settings\zebulon\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\images.jpg-64156efb-44c70ced.jpg 50,07KB
C:\Documents and Settings\zebulon\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\images.jpg-7f786dff-236a46ef.idx 318 bytes
C:\Documents and Settings\zebulon\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\images.jpg-7f786dff-236a46ef.jpg 50,07KB
C:\Documents and Settings\zebulon\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\incredible.au-3550ba8a-1bfed4f3.au 7,14KB
C:\Documents and Settings\zebulon\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\incredible.au-3550ba8a-1bfed4f3.idx 315 bytes
C:\Documents and Settings\zebulon\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\interbottom.gif-8cd61de-63e25a24.gif 1,85KB
C:\Documents and Settings\zebulon\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\interbottom.gif-8cd61de-63e25a24.idx 315 bytes
C:\Documents and Settings\zebulon\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\interdollar.gif-73879fef-20db112b.gif 174 bytes
C:\Documents and Settings\zebulon\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\interdollar.gif-73879fef-20db112b.idx 314 bytes
C:\Documents and Settings\zebulon\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\interscreen1.gif-f5ab3ee-2e323947.gif 11,70KB
C:\Documents and Settings\zebulon\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\interscreen1.gif-f5ab3ee-2e323947.idx 317 bytes
C:\Documents and Settings\zebulon\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\interscreen2.gif-7b7bfa91-6ea1b256.gif 9,75KB
C:\Documents and Settings\zebulon\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\interscreen2.gif-7b7bfa91-6ea1b256.idx 322 bytes
C:\Documents and Settings\zebulon\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\interscreen3.gif-7b8a1212-2dc6fef2.gif 11,20KB
C:\Documents and Settings\zebulon\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\interscreen3.gif-7b8a1212-2dc6fef2.idx 323 bytes
C:\Documents and Settings\zebulon\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\intertext.gif-4342813e-3b70905f.gif 3,20KB
C:\Documents and Settings\zebulon\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\intertext.gif-4342813e-3b70905f.idx 319 bytes
C:\Documents and Settings\zebulon\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\intertitle.gif-3af81e41-10a26dc9.gif 8,67KB
C:\Documents and Settings\zebulon\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\intertitle.gif-3af81e41-10a26dc9.idx 314 bytes
C:\Documents and Settings\zebulon\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\landscape.gif-3b44b8c7-207863b7.gif 944 bytes
C:\Documents and Settings\zebulon\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\landscape.gif-3b44b8c7-207863b7.idx 314 bytes
C:\Documents and Settings\zebulon\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\letterclick.au-26322b1a-2f94fc5b.au 326 bytes
C:\Documents and Settings\zebulon\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\letterclick.au-26322b1a-2f94fc5b.idx 317 bytes
C:\Documents and Settings\zebulon\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\levelfont.gif-3a9301ea-3a763ee9.gif 86 bytes
C:\Documents and Settings\zebulon\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\levelfont.gif-3a9301ea-3a763ee9.idx 311 bytes
C:\Documents and Settings\zebulon\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\levelup.au-62517106-3bd2245a.au 4,29KB
C:\Documents and Settings\zebulon\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\levelup.au-62517106-3bd2245a.idx 312 bytes
C:\Documents and Settings\zebulon\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\levelup.gif-66500d14-52e1b7ac.gif 1,54KB
C:\Documents and Settings\zebulon\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\levelup.gif-66500d14-52e1b7ac.idx 317 bytes
C:\Documents and Settings\zebulon\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\levelupsound.au-231e84df-77139b13.au 5,00KB
C:\Documents and Settings\zebulon\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\levelupsound.au-231e84df-77139b13.idx 317 bytes
C:\Documents and Settings\zebulon\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\loading_small.jpg-4eb46ded-3dd7f66b.idx 319 bytes
C:\Documents and Settings\zebulon\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\loading_small.jpg-4eb46ded-3dd7f66b.jpg 919 bytes
C:\Documents and Settings\zebulon\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\loading_small_.gif-507e2d7-799fc4b8.gif 219 bytes
C:\Documents and Settings\zebulon\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\loading_small_.gif-507e2d7-799fc4b8.idx 319 bytes
C:\Documents and Settings\zebulon\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\logo.au-1bcdc2db-777cfa83.au 21,87KB
C:\Documents and Settings\zebulon\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\logo.au-1bcdc2db-777cfa83.idx 309 bytes
C:\Documents and Settings\zebulon\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\logo.au-3730c1df-34d8c776.au 21,87KB
C:\Documents and Settings\zebulon\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\logo.au-3730c1df-34d8c776.idx 309 bytes
C:\Documents and Settings\zebulon\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\logo.au-708a6ad9-1e3a07d8.au 21,87KB
C:\Documents and Settings\zebulon\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\logo.au-708a6ad9-1e3a07d8.idx 312 bytes
C:\Documents and Settings\zebulon\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\logo.gif-11d971e7-52e406b8.gif 10,60KB
C:\Documents and Settings\zebulon\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\logo.gif-11d971e7-52e406b8.idx 311 bytes
C:\Documents and Settings\zebulon\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\logo.gif-311a8859-71a4c495.gif 10,60KB
C:\Documents and Settings\zebulon\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\logo.gif-311a8859-71a4c495.idx 308 bytes
C:\Documents and Settings\zebulon\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\logo.gif-4c7d875d-3f1fc5dd.gif 10,60KB
C:\Documents and Settings\zebulon\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\logo.gif-4c7d875d-3f1fc5dd.idx 308 bytes
C:\Documents and Settings\zebulon\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\lt.gif-538368f9-52f67089.gif 2,59KB
C:\Documents and Settings\zebulon\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\lt.gif-538368f9-52f67089.idx 272 bytes
C:\Documents and Settings\zebulon\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\menubox.gif-190909e3-1203db30.gif 766 bytes
C:\Documents and Settings\zebulon\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\menubox.gif-190909e3-1203db30.idx 310 bytes
C:\Documents and Settings\zebulon\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\menubuttons.gif-92f7837-23ce689b.gif 2,03KB
C:\Documents and Settings\zebulon\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\menubuttons.gif-92f7837-23ce689b.idx 321 bytes
C:\Documents and Settings\zebulon\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\menugreyboxes.gif-7621ea70-20c90622.gif 2,50KB
C:\Documents and Settings\zebulon\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\menugreyboxes.gif-7621ea70-20c90622.idx 323 bytes
C:\Documents and Settings\zebulon\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\menuicons.gif-52089932-3f170af9.gif 7,02KB
C:\Documents and Settings\zebulon\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\menuicons.gif-52089932-3f170af9.idx 313 bytes
C:\Documents and Settings\zebulon\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\menuonlyin.gif-6cf9f0d7-5b7cdefb.gif 540 bytes
C:\Documents and Settings\zebulon\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\menuonlyin.gif-6cf9f0d7-5b7cdefb.idx 319 bytes
C:\Documents and Settings\zebulon\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\menutext.gif-6c1c8033-5ae5dda5.gif 4,28KB
C:\Documents and Settings\zebulon\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\menutext.gif-6c1c8033-5ae5dda5.idx 318 bytes
C:\Documents and Settings\zebulon\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\menutop.gif-7418dc0b-7819bb7f.gif 1,11KB
C:\Documents and Settings\zebulon\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\menutop.gif-7418dc0b-7819bb7f.idx 317 bytes
C:\Documents and Settings\zebulon\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\mouthstripper.gif-12bd4fe3-578dd62c.gif 2,94KB
C:\Documents and Settings\zebulon\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\mouthstripper.gif-12bd4fe3-578dd62c.idx 317 bytes
C:\Documents and Settings\zebulon\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\moveup.au-69ebd043-33898f9d.au 4,89KB
C:\Documents and Settings\zebulon\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\moveup.au-69ebd043-33898f9d.idx 311 bytes
C:\Documents and Settings\zebulon\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\newgameover.gif-4e385e5b-6e1d72f7.gif 1,37KB
C:\Documents and Settings\zebulon\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\newgameover.gif-4e385e5b-6e1d72f7.idx 321 bytes
C:\Documents and Settings\zebulon\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\newgamepressed.gif-5ca4eb7-79382f47.gif 2,56KB
C:\Documents and Settings\zebulon\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\newgamepressed.gif-5ca4eb7-79382f47.idx 324 bytes
C:\Documents and Settings\zebulon\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\nextlevel.au-10e32add-1a09321c.au 4,21KB
C:\Documents and Settings\zebulon\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\nextlevel.au-10e32add-1a09321c.idx 313 bytes
C:\Documents and Settings\zebulon\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\nextlevel.au-2c4629e1-1f91c07f.au 4,21KB
C:\Documents and Settings\zebulon\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\nextlevel.au-2c4629e1-1f91c07f.idx 313 bytes
C:\Documents and Settings\zebulon\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\one.au-f6d47df-2a161e64.au 2,54KB
C:\Documents and Settings\zebulon\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\one.au-f6d47df-2a161e64.idx 308 bytes
C:\Documents and Settings\zebulon\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\piecehit.au-383a3caa-323ff128.au 1,04KB
C:\Documents and Settings\zebulon\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\piecehit.au-383a3caa-323ff128.idx 313 bytes
C:\Documents and Settings\zebulon\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\PreloadingApplet.class-19632399-75d26a70.class 238 bytes
C:\Documents and Settings\zebulon\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\PreloadingApplet.class-19632399-75d26a70.idx 356 bytes
C:\Documents and Settings\zebulon\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\progress.gif-7645169-217b61e2.gif 524 bytes
C:\Documents and Settings\zebulon\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\progress.gif-7645169-217b61e2.idx 313 bytes
C:\Documents and Settings\zebulon\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\progress_blip_opponent.gif-14c1395-3c6043fb.gif 282 bytes
C:\Documents and Settings\zebulon\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\progress_blip_opponent.gif-14c1395-3c6043fb.idx 327 bytes
C:\Documents and Settings\zebulon\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\progress_blip_player.gif-103dc019-306c1ed0.gif 281 bytes
C:\Documents and Settings\zebulon\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\progress_blip_player.gif-103dc019-306c1ed0.idx 325 bytes
C:\Documents and Settings\zebulon\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\select.au-6efa16ea-6e03a800.au 468 bytes
C:\Documents and Settings\zebulon\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\select.au-6efa16ea-6e03a800.idx 309 bytes
C:\Documents and Settings\zebulon\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\select.au-a5d15ee-7edd4b3f.au 468 bytes
C:\Documents and Settings\zebulon\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\select.au-a5d15ee-7edd4b3f.idx 309 bytes
C:\Documents and Settings\zebulon\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\shuffle.au-5c0d759-4aaba396.au 2,37KB
C:\Documents and Settings\zebulon\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\shuffle.au-5c0d759-4aaba396.idx 311 bytes
C:\Documents and Settings\zebulon\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\shuffle.au-6a5dd855-648b765a.au 2,37KB
C:\Documents and Settings\zebulon\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\shuffle.au-6a5dd855-648b765a.idx 311 bytes
C:\Documents and Settings\zebulon\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\shuffle.jpg-11d73586-27526ad6.idx 317 bytes
C:\Documents and Settings\zebulon\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\shuffle.jpg-11d73586-27526ad6.jpg 4,26KB
C:\Documents and Settings\zebulon\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\shuffle.jpg-76743682-181aefee.idx 317 bytes
C:\Documents and Settings\zebulon\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\shuffle.jpg-76743682-181aefee.jpg 4,26KB
C:\Documents and Settings\zebulon\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\skillbuttons.gif-11b3b795-1e188cb9.gif 590 bytes
C:\Documents and Settings\zebulon\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\skillbuttons.gif-11b3b795-1e188cb9.idx 315 bytes
C:\Documents and Settings\zebulon\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\sparkle.gif-2c5db9ed-11a9eaa7.gif 385 bytes
C:\Documents and Settings\zebulon\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\sparkle.gif-2c5db9ed-11a9eaa7.idx 310 bytes
C:\Documents and Settings\zebulon\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\splash.jpg-2efadec0-4af8f8f0.idx 314 bytes
C:\Documents and Settings\zebulon\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\splash.jpg-2efadec0-4af8f8f0.jpg 51,57KB
C:\Documents and Settings\zebulon\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\splash.jpg-457de732-4a9e5e16.idx 311 bytes
C:\Documents and Settings\zebulon\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\splash.jpg-457de732-4a9e5e16.jpg 59,71KB
C:\Documents and Settings\zebulon\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\splash.jpg-60e0e636-387fd9c8.idx 311 bytes
C:\Documents and Settings\zebulon\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\splash.jpg-60e0e636-387fd9c8.jpg 59,71KB
C:\Documents and Settings\zebulon\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\splash_button.gif-666cda96-3319c3cb.gif 6,11KB
C:\Documents and Settings\zebulon\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\splash_button.gif-666cda96-3319c3cb.idx 319 bytes
C:\Documents and Settings\zebulon\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\splash_button.gif-6db43898-6448a91e.gif 4,61KB
C:\Documents and Settings\zebulon\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\splash_button.gif-6db43898-6448a91e.idx 316 bytes
C:\Documents and Settings\zebulon\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\splash_button.gif-917379c-3c3fcd39.gif 4,61KB
C:\Documents and Settings\zebulon\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\splash_button.gif-917379c-3c3fcd39.idx 316 bytes
C:\Documents and Settings\zebulon\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\three.au-628f4ae7-5f24782a.au 3,39KB
C:\Documents and Settings\zebulon\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\three.au-628f4ae7-5f24782a.idx 310 bytes
C:\Documents and Settings\zebulon\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\tile.gif-1b78c56a-22c31070.gif 1,63KB
C:\Documents and Settings\zebulon\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\tile.gif-1b78c56a-22c31070.idx 310 bytes
C:\Documents and Settings\zebulon\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\tiles_western_30x38.jpg-5a3e6e24-5a724ca8.idx 324 bytes
C:\Documents and Settings\zebulon\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\tiles_western_30x38.jpg-5a3e6e24-5a724ca8.jpg 21,04KB
C:\Documents and Settings\zebulon\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\tiles_western_30x38.jpg-75a16d28-73c09e4e.idx 324 bytes
C:\Documents and Settings\zebulon\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\tiles_western_30x38.jpg-75a16d28-73c09e4e.jpg 21,04KB
C:\Documents and Settings\zebulon\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\tile_30x38.jpg-4422855a-1ab8192a.idx 313 bytes
C:\Documents and Settings\zebulon\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\tile_30x38.jpg-4422855a-1ab8192a.jpg 927 bytes
C:\Documents and Settings\zebulon\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\tile_30x38.jpg-5f85845e-2163a4ef.idx 313 bytes
C:\Documents and Settings\zebulon\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\tile_30x38.jpg-5f85845e-2163a4ef.jpg 927 bytes
C:\Documents and Settings\zebulon\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\tile_30x38_.gif-1f76273e-6480f0ea.gif 142 bytes
C:\Documents and Settings\zebulon\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\tile_30x38_.gif-1f76273e-6480f0ea.idx 313 bytes
C:\Documents and Settings\zebulon\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\tile_30x38_.gif-3ad92642-2f852e35.gif 142 bytes
C:\Documents and Settings\zebulon\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\tile_30x38_.gif-3ad92642-2f852e35.idx 313 bytes
C:\Documents and Settings\zebulon\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\tile_glow.gif-6c3850a-46128e38.gif 88 bytes
C:\Documents and Settings\zebulon\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\tile_glow.gif-6c3850a-46128e38.idx 313 bytes
C:\Documents and Settings\zebulon\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\tile_hot.gif-46f27ef8-59c1c8c6.gif 1,81KB
C:\Documents and Settings\zebulon\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\tile_hot.gif-46f27ef8-59c1c8c6.idx 314 bytes
C:\Documents and Settings\zebulon\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\timebar.jpg-5602acd1-19a939a8.idx 311 bytes
C:\Documents and Settings\zebulon\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\timebar.jpg-5602acd1-19a939a8.jpg 4,15KB
C:\Documents and Settings\zebulon\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\timebar.jpg-7165abd5-1d126213.idx 311 bytes
C:\Documents and Settings\zebulon\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\timebar.jpg-7165abd5-1d126213.jpg 4,15KB
C:\Documents and Settings\zebulon\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\timebar_.gif-499aeea7-62fbb186.gif 1,48KB
C:\Documents and Settings\zebulon\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\timebar_.gif-499aeea7-62fbb186.idx 311 bytes
C:\Documents and Settings\zebulon\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\timebar_.gif-64fdedab-76bfeb13.gif 1,48KB
C:\Documents and Settings\zebulon\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\timebar_.gif-64fdedab-76bfeb13.idx 311 bytes
C:\Documents and Settings\zebulon\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\timetick.au-1caf183c-51fc2506.au 810 bytes
C:\Documents and Settings\zebulon\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\timetick.au-1caf183c-51fc2506.idx 311 bytes
C:\Documents and Settings\zebulon\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\timetick.au-38121740-42853033.au 810 bytes
C:\Documents and Settings\zebulon\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\timetick.au-38121740-42853033.idx 311 bytes
C:\Documents and Settings\zebulon\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\tone1.au-4defe3e6-7fd89e5a.au 3,58KB
C:\Documents and Settings\zebulon\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\tone1.au-4defe3e6-7fd89e5a.idx 310 bytes
C:\Documents and Settings\zebulon\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\tone2.au-4df05845-2244fbd6.au 3,80KB
C:\Documents and Settings\zebulon\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\tone2.au-4df05845-2244fbd6.idx 310 bytes
C:\Documents and Settings\zebulon\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\tone3.au-4df0cca4-1045a2e0.au 3,64KB
C:\Documents and Settings\zebulon\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\tone3.au-4df0cca4-1045a2e0.idx 310 bytes
C:\Documents and Settings\zebulon\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\tone4.au-4df14103-1e1a94ad.au 3,58KB
C:\Documents and Settings\zebulon\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\tone4.au-4df14103-1e1a94ad.idx 310 bytes
C:\Documents and Settings\zebulon\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\tone5.au-4df1b562-6fee5743.au 3,87KB
C:\Documents and Settings\zebulon\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\tone5.au-4df1b562-6fee5743.idx 310 bytes
C:\Documents and Settings\zebulon\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\train.au-6ea13974-7aff6854.au 8,08KB
C:\Documents and Settings\zebulon\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\train.au-6ea13974-7aff6854.idx 312 bytes
C:\Documents and Settings\zebulon\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\trainstart.au-2b2b8fca-500e3830.au 12,89KB
C:\Documents and Settings\zebulon\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\trainstart.au-2b2b8fca-500e3830.idx 318 bytes
C:\Documents and Settings\zebulon\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\trainstop.au-698e5832-2e976347.au 14,70KB
C:\Documents and Settings\zebulon\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\trainstop.au-698e5832-2e976347.idx 317 bytes
C:\Documents and Settings\zebulon\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\train_bar_comp.gif-30e84ace-7528aaee.gif 128 bytes
C:\Documents and Settings\zebulon\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\train_bar_comp.gif-30e84ace-7528aaee.idx 319 bytes
C:\Documents and Settings\zebulon\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\train_bar_player.gif-71c262e0-11579216.gif 188 bytes
C:\Documents and Settings\zebulon\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\train_bar_player.gif-71c262e0-11579216.idx 321 bytes
C:\Documents and Settings\zebulon\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\train_big_comp.gif-58e60481-2e2f537b.gif 1,48KB
C:\Documents and Settings\zebulon\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\train_big_comp.gif-58e60481-2e2f537b.idx 320 bytes
C:\Documents and Settings\zebulon\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\train_big_player.gif-11387bd3-1f9c203f.gif 2,49KB
C:\Documents and Settings\zebulon\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\train_big_player.gif-11387bd3-1f9c203f.idx 322 bytes
C:\Documents and Settings\zebulon\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\train_loud.au-7e690d9b-12b4458d.au 8,08KB
C:\Documents and Settings\zebulon\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\train_loud.au-7e690d9b-12b4458d.idx 317 bytes
C:\Documents and Settings\zebulon\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\fil

28 réponses

  • 1
  • 2
Résumé de la discussion

Une machine Windows est infestée par plusieurs malwares et trojans, avec des symptômes tels que la disparition de Rundll, des redémarrages répétés et des alertes virus intermittentes signalées par Avast.
Plusieurs outils de sécurité ont été employés (Avast, Ewido, Spybot, Ad-Aware et HijackThis) pour nettoyer le système, mais des composants malveillants et des redirections persistent dans les paramètres et les démarrages.
Le rapport liste de nombreuses entrées de registre, services et fichiers suspectés, ainsi que des modifications de page d'accueil et des programmes qui se lancent au démarrage.
D'autres aspects juridiques sont évoqués, notamment la possibilité de porter plainte pour intrusion et violation de domicile numérique, en parallèle des mesures de sécurité et de nettoyage mises en œuvre.

Généré automatiquement par IA
sur la base des meilleures réponses
  1. aranjuez31 Messages postés 8161 Date d'inscription   Statut Contributeur 354
     
    bjr
    ben ya du boulot
    tu vas faire 2 choses préliminaires

    1/
    telech, install , scan avec
    ewido (dowload)
    http://www.ewido.net/fr/download/
    2/
    scan online avec
    http://www.bitdefender.fr/bd/site/search.php#

    et COLLE les 2 rapports,stp
    0
    1. Utilisateur anonyme
       
      Bonjour ,
      J'ai fait comme tu m'as dit, mais ça a pris beaucoup de temps car mon pc rame, rame, rame !!
      voici donc les deux rapports comme tu me l'as demandé :

      ---------------------------------------------------------
      ewido anti-malware - Rapport de scan
      ---------------------------------------------------------

      + Créé le: 10:27:42, 26/02/2006
      + Somme de contrôle: DE8DD4B8

      + Résultats du scan:

      HKLM\SOFTWARE\Classes\CLSID\{EA32FB3B-21C9-42cc-B8EF-01A9B28EDB0D} -> Adware.Virtumonde : Nettoyer et sauvegarder
      HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{EA32FB3B-21C9-42cc-B8EF-01A9B28EDB0D} -> Adware.Virtumonde : Nettoyer et sauvegarder
      C:\Program Files\Softwin\BitDefender9\Quarantine\update32.exe -> Backdoor.Rbot.aie : Nettoyer et sauvegarder
      C:\ucmoreiex.exe/UCMTSAIE.DLL -> Adware.Ucmore : Nettoyer et sauvegarder
      C:\ucmoreiex.exe/IUCMORE.DLL -> Adware.Ucmore : Nettoyer et sauvegarder
      C:\WINDOWS\nvidGUIv.exe -> Backdoor.SdBot.aad : Nettoyer et sauvegarder
      C:\WINDOWS\system32\jkhhh.dll -> Adware.Virtumonde : Nettoyer et sauvegarder
      C:\WINDOWS\Temp\tmp5f -> Backdoor.SdBot.aad : Nettoyer et sauvegarder
      C:\WINDOWS\Temp\tmp62 -> Backdoor.SdBot.aad : Nettoyer et sauvegarder
      C:\WINDOWS\Temp\tmp66 -> Backdoor.SdBot.aad : Nettoyer et sauvegarder


      ::Fin du rapport
      ArchiveData(auto-quarantine- 2006-02-23 11-24-20.bckp)
      Referencefile : SE1R92 14.02.2006
      ======================================================

      WINDOWS
      »»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»
      obj[0]=RegData : .DEFAULT\software\microsoft\windows\currentversion\policies\system "DisableTaskMgr"
      obj[1]=RegData : S-1-5-18\software\microsoft\windows\currentversion\policies\system "DisableTaskMgr"
      obj[2]=RegData : .DEFAULT\software\microsoft\windows\currentversion\policies\system "DisableRegistryTools"
      obj[3]=RegData : S-1-5-18\software\microsoft\windows\currentversion\policies\system "DisableRegistryTools"

      UCMORE
      »»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»
      obj[4]=Process : C:\Program Files\TheSearchAccelerator\UCMTSAIE.dll
      obj[5]=Folder : C:\Program Files\TheSearchAccelerator
      obj[9]=File : C:\Program Files\TheSearchAccelerator\__delete_on_reboot__UCMTSAIE.dll
      obj[10]=File : C:\System Volume Information\_restore{2C5222C6-E63B-40AA-B68E-A3061DAC1380}\RP61\A0017214.dll
      obj[11]=File : C:\System Volume Information\_restore{2C5222C6-E63B-40AA-B68E-A3061DAC1380}\RP61\A0017217.dll
      obj[12]=File : C:\System Volume Information\_restore{2C5222C6-E63B-40AA-B68E-A3061DAC1380}\RP61\A0017219.exe
      obj[13]=File : C:\System Volume Information\_restore{2C5222C6-E63B-40AA-B68E-A3061DAC1380}\RP64\A0027336.exe
      obj[14]=File : C:\System Volume Information\_restore{2C5222C6-E63B-40AA-B68E-A3061DAC1380}\RP64\A0027340.dll

      ADWARE.FREEPROD TOOLBAR
      »»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»
      obj[6]=RegValue : software\microsoft\windows\currentversion\internet settings "GlobalUserOffline"
      obj[7]=Folder : C:\Program Files\Fichiers communs\InetGet
      obj[8]=Folder : C:\Program Files\Fichiers communs\Download
      obj[15]=File : C:\Documents and Settings\LocalService\Local Settings\Temporary Internet Files\Content.IE5\0R7CYC6M\launcher[1].exe
      obj[16]=File : C:\Documents and Settings\LocalService\Local Settings\Temporary Internet Files\Content.IE5\QBA147WT\launcher[1].exe
      obj[17]=File : C:\mc-110-12-0000228.exe
      obj[18]=File : C:\Program Files\Fichiers communs\Download\mc-110-12-0000228.exe
      obj[19]=File : C:\System Volume Information\_restore{2C5222C6-E63B-40AA-B68E-A3061DAC1380}\RP61\A0019260.exe



      Logfile of HijackThis v1.99.1
      Scan saved at 09:57:39, on 25/02/2006
      Platform: Windows XP (WinNT 5.01.2600)
      MSIE: Internet Explorer v6.00 (6.00.2600.0000)

      Running processes:
      C:\WINDOWS\System32\smss.exe
      C:\WINDOWS\system32\winlogon.exe
      C:\WINDOWS\system32\services.exe
      C:\WINDOWS\system32\lsass.exe
      C:\WINDOWS\system32\svchost.exe
      C:\WINDOWS\System32\svchost.exe
      C:\WINDOWS\Explorer.EXE
      C:\WINDOWS\system32\spoolsv.exe
      C:\Program Files\Creative\Shared Files\CAMTRAY.EXE
      C:\windows\winsysban11.exe
      C:\WINDOWS\System32\ctfmon.exe
      C:\Program Files\Messenger\msmsgs.exe
      C:\Program Files\MSN Messenger\MsnMsgr.Exe
      C:\Program Files\WinZip\WZQKPICK.EXE
      C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
      C:\Program Files\Alwil Software\Avast4\ashServ.exe
      C:\Program Files\ewido anti-malware\ewidoctrl.exe
      C:\WINDOWS\system32\hal.exe
      C:\WINDOWS\nvidGUIv.exe
      C:\WINDOWS\System32\svchost.exe
      C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
      C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
      C:\WINDOWS\System32\update32.exe
      C:\Documents and Settings\zebulon\Bureau\HijackThis.exe

      R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.wanadoo.fr/
      R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
      R3 - URLSearchHook: (no name) - {F27E6D61-84A7-FC27-869D-A30FD7E240C5} - (no file)
      O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll
      O2 - BHO: (no name) - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
      O2 - BHO: RieMon Class - {70F6A776-579A-4C95-BA88-134253907752} - C:\WINDOWS\System32\irsmgeht.dll
      O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll
      O2 - BHO: ADOUsefulNet Object - {7CB093AC-11DF-46D5-9343-CE4BD90C159C} - C:\WINDOWS\System32\jkhhi.dll
      O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar2.dll
      O2 - BHO: (no name) - {EA32FB3B-21C9-42cc-B8EF-01A9B28EDB0D} - C:\WINDOWS\system32\ddcca.dll
      O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar2.dll
      O3 - Toolbar: UCmore XP - The Search Accelerator - {44BE0690-5429-47f0-85BB-3FFD8020233E} - C:\Program Files\TheSearchAccelerator\UCMTSAIE.dll
      O4 - HKLM\..\Run: [Creative WebCam Tray] C:\Program Files\Creative\Shared Files\CAMTRAY.EXE
      O4 - HKLM\..\Run: [winsysupd] C:\windows\winsysupd11.exe
      O4 - HKLM\..\Run: [gimmygames] C:\windows\gimmygames11.exe
      O4 - HKLM\..\Run: [MediaGateway] C:\Program Files\MediaGateway\MediaGateway.exe
      O4 - HKLM\..\Run: [NeroFilterCheck] C:\WINDOWS\system32\NeroCheck.exe
      O4 - HKLM\..\Run: [winsysban] C:\windows\winsysban11.exe
      O4 - HKLM\..\Run: [Windows update adbpro] update32.exe
      O4 - HKLM\..\RunServices: [Microsoft Update] wuamkp.exe
      O4 - HKLM\..\RunServices: [Windows update adbpro] update32.exe
      O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\ctfmon.exe
      O4 - HKCU\..\Run: [Microsoft Update] msconfg.exe
      O4 - HKCU\..\Run: [MSMSGS] "C:\Program Files\Messenger\msmsgs.exe" /background
      O4 - HKCU\..\Run: [wzom] C:\PROGRA~1\FICHIE~1\wzom\wzomm.exe
      O4 - HKCU\..\Run: [Ilru] "C:\Program Files\srho\dset.exe" -vt yazb
      O4 - HKCU\..\Run: [Hcatpn] C:\WINDOWS\System32\??rvices.exe
      O4 - HKCU\..\Run: [MsnMsgr] "C:\Program Files\MSN Messenger\MsnMsgr.Exe" /background
      O4 - HKCU\..\Run: [irssyncd] C:\WINDOWS\System32\irssyncd.exe
      O4 - HKCU\..\Run: [Error Safe] "C:\Program Files\Error Safe Free\ers.exe" /scan
      O4 - Startup: Zeno.lnk = C:\WINDOWS\system32\swinqsap.exe
      O4 - Startup: Z_Start.lnk = C:\WINDOWS\ZIFI002.exe
      O4 - Global Startup: Lancement rapide d'Adobe Reader.lnk = C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe
      O4 - Global Startup: WinZip Quick Pick.lnk = C:\Program Files\WinZip\WZQKPICK.EXE
      O8 - Extra context menu item: &Traduire à partir de l'anglais - res://C:\Program Files\Google\GoogleToolbar2.dll/cmwordtrans.html
      O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~2\OFFICE11\EXCEL.EXE/3000
      O8 - Extra context menu item: Pages liées - res://C:\Program Files\Google\GoogleToolbar2.dll/cmbacklinks.html
      O8 - Extra context menu item: Pages similaires - res://C:\Program Files\Google\GoogleToolbar2.dll/cmsimilar.html
      O8 - Extra context menu item: Recherche &Google - res://C:\Program Files\Google\GoogleToolbar2.dll/cmsearch.html
      O8 - Extra context menu item: Version de la page actuelle disponible dans le cache Google - res://C:\Program Files\Google\GoogleToolbar2.dll/cmcache.html
      O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll
      O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll
      O9 - Extra button: Recherche - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\OFFICE11\REFIEBAR.DLL
      O15 - Trusted Zone: http://click.getmirar.com (HKLM)
      O15 - Trusted Zone: http://click.mirarsearch.com (HKLM)
      O15 - Trusted Zone: http://redirect.mirarsearch.com (HKLM)
      O16 - DPF: {8FCDF9D9-A28B-480F-8C3D-581F119A8AB8} - http://static.zangocash.com/cab/Zango/ie/bridge-c32.cab
      O16 - DPF: {9AC54695-69A4-46F1-BE10-10C74F9520D5} - http://cabs.elitemediagroup.net/cabs/mediaview.cab
      O16 - DPF: {B38870E4-7ECB-40DA-8C6A-595F0A5519FF} (MsnMessengerSetupDownloadControl Class) - http://messenger.msn.com/download/MsnMessengerSetupDownloader.cab
      O16 - DPF: {BFF1950D-B1B4-4AE8-B842-B2CCF06D9A1B} (Zylom Games Player) - http://game06.zylom.servicesalacarte.wanadoo.fr/activex/zylomgamesplayer.cab
      O16 - DPF: {F919FBD3-A96B-4679-AF26-F551439BB5FD} - http://fr.errorsafe.com/pages/scanner_fr/ErrorSafeScannerInstallFR.cab
      O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - "C:\PROGRA~1\MSNMES~1\msgrapp.dll" (file missing)
      O18 - Filter: text/html - {2F6E85DC-8D2D-4896-8A4F-7DF8A7B1749D} - C:\PROGRA~1\Jalmp\jalmp.dll
      O20 - Winlogon Notify: ddcca - C:\WINDOWS\SYSTEM32\ddcca.dll
      O20 - Winlogon Notify: jkhhi - C:\WINDOWS\System32\jkhhi.dll
      O20 - Winlogon Notify: RunOnceEx - C:\WINDOWS\system32\vsscript.dll (file missing)
      O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - Unknown owner - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
      O23 - Service: ATIintergrated - Unknown owner - C:\WINDOWS\atigraphics.exe (file missing)
      O23 - Service: avast! Antivirus - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashServ.exe
      O23 - Service: avast! Mail Scanner - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe" /service (file missing)
      O23 - Service: avast! Web Scanner - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe" /service (file missing)
      O23 - Service: ewido security suite control - ewido networks - C:\Program Files\ewido anti-malware\ewidoctrl.exe
      O23 - Service: fwnet64 (fwnet) - Unknown owner - C:\WINDOWS\fwnet64.exe (file missing)
      O23 - Service: inetdns (InetDns) (inetdns) - Unknown owner - C:\WINDOWS\system32\inetdns.exe (file missing)
      O23 - Service: Microsoft Dynamic Network (MDNetwork) - Unknown owner - C:\WINDOWS\system32\MDN.exe (file missing)
      O23 - Service: mswmf32 - Unknown owner - C:\WINDOWS\mswmf32.exe (file missing)
      O23 - Service: netconf32 - Unknown owner - C:\WINDOWS\netconf32.exe (file missing)
      O23 - Service: nvidGUIv (nvidGUIv2) - Unknown owner - C:\WINDOWS\nvidGUIv.exe
      O23 - Service: Win32Sr - Unknown owner - C:\WINDOWS\win32ssr.exe (file missing)



      NETTOYAGE COMPLET - (11,970 secs)
      ------------------------------------------------------------------------------------------
      5,67MB supprimés.


      Détails des fichiers à effacer
      ------------------------------------------------------------------------------------------
      Fichiers Temporaires d'Internet Explorer (fichiers 1) 67 bytes
      C:\Documents and Settings\zebulon\Cookies\zebulon@202.67.220[2].txt 174 bytes
      C:\Documents and Settings\zebulon\Cookies\zebulon@62.4.84[2].txt 161 bytes
      C:\Documents and Settings\zebulon\Cookies\zebulon@ad.yieldmanager[1].txt 95 bytes
      C:\Documents and Settings\zebulon\Cookies\zebulon@advertising[1].txt 90 bytes
      C:\Documents and Settings\zebulon\Cookies\zebulon@cpvfeed[1].txt 129 bytes
      C:\Documents and Settings\zebulon\Cookies\zebulon@doubleclick[1].txt 83 bytes
      C:\Documents and Settings\zebulon\Cookies\zebulon@google[1].txt 129 bytes
      C:\Documents and Settings\zebulon\Cookies\zebulon@iapref.wanadoo[1].txt 96 bytes
      C:\Documents and Settings\zebulon\Cookies\zebulon@stats1.reliablestats[1].txt 898 bytes
      C:\Documents and Settings\zebulon\Cookies\zebulon@wanadoo[1].txt 80 bytes
      C:\Documents and Settings\zebulon\Cookies\zebulon@www.wanadoo[2].txt 78 bytes
      C:\Documents and Settings\zebulon\Cookies\zebulon@www.winantiviruspro[1].txt 243 bytes
      C:\Documents and Settings\zebulon\Cookies\zebulon@yourmedia[1].txt 93 bytes
      C:\Documents and Settings\zebulon\Cookies\zebulon@zylom.servicesalacarte.wanadoo[2].txt 220 bytes
      C:\Documents and Settings\zebulon\Cookies\zebulon@zylom[2].txt 170 bytes
      Marqué pour l'effacement: C:\Documents and Settings\zebulon\Local Settings\Temporary Internet Files\Content.IE5\index.dat
      Marqué pour l'effacement: C:\Documents and Settings\zebulon\Cookies\index.dat
      Poubelle vidée (2 fichiers) 1,82MB
      C:\WINDOWS\TEMP\adv.exe 5,06KB
      C:\WINDOWS\TEMP\id.id 65 bytes
      C:\WINDOWS\TEMP\JETBB12.tmp 0 bytes
      C:\WINDOWS\TEMP\JETBD64.tmp 0 bytes
      C:\WINDOWS\TEMP\JETCC87.tmp 0 bytes
      C:\WINDOWS\TEMP\JETDAA0.tmp 0 bytes
      C:\WINDOWS\TEMP\JETE658.tmp 0 bytes
      C:\WINDOWS\TEMP\JETEB1B.tmp 0 bytes
      C:\WINDOWS\TEMP\mc-110-12-0000248.exe 47,95KB
      C:\WINDOWS\TEMP\nsj6.tmp\InetLoad.dll 17,00KB
      C:\WINDOWS\TEMP\nsj6.tmp\Processes.dll 35,50KB
      C:\WINDOWS\TEMP\nsj6.tmp\System.dll 10,00KB
      C:\WINDOWS\TEMP\nsm4.tmp\InetLoad.dll 17,00KB
      C:\WINDOWS\TEMP\nsm4.tmp\System.dll 10,00KB
      C:\WINDOWS\TEMP\nsm5.tmp\InetLoad.dll 17,00KB
      C:\WINDOWS\TEMP\nsm5.tmp\System.dll 10,00KB
      C:\WINDOWS\TEMP\nsy7.tmp\InetLoad.dll 17,00KB
      C:\WINDOWS\TEMP\nsy7.tmp\Processes.dll 35,50KB
      C:\WINDOWS\TEMP\nsy7.tmp\System.dll 10,00KB
      C:\WINDOWS\TEMP\Perflib_Perfdata_178.dat 16,00KB
      C:\WINDOWS\TEMP\Perflib_Perfdata_600.dat 16,00KB
      C:\WINDOWS\TEMP\Perflib_Perfdata_640.dat 16,00KB
      C:\WINDOWS\TEMP\Perflib_Perfdata_6e4.dat 16,00KB
      C:\WINDOWS\TEMP\Perflib_Perfdata_6f0.dat 16,00KB
      C:\WINDOWS\TEMP\removalfile.bat 43 bytes
      C:\DOCUME~1\zebulon\LOCALS~1\Temp\GLB7.tmp 70,00KB
      C:\DOCUME~1\zebulon\LOCALS~1\Temp\GLC8.tmp 0,16MB
      C:\DOCUME~1\zebulon\LOCALS~1\Temp\GLFC.tmp 10,50KB
      C:\DOCUME~1\zebulon\LOCALS~1\Temp\GLIE.tmp 6,41KB
      C:\DOCUME~1\zebulon\LOCALS~1\Temp\GLK9.tmp 30,50KB
      C:\DOCUME~1\zebulon\LOCALS~1\Temp\Historique\History.IE5\desktop.ini 113 bytes
      C:\DOCUME~1\zebulon\LOCALS~1\Temp\id.id 65 bytes
      C:\DOCUME~1\zebulon\LOCALS~1\Temp\java_install_reg.log 2,84KB
      C:\DOCUME~1\zebulon\LOCALS~1\Temp\Temporary Internet Files\Content.IE5\85QNCTMF\desktop.ini 67 bytes
      C:\DOCUME~1\zebulon\LOCALS~1\Temp\Temporary Internet Files\Content.IE5\CCCKYZ6O\desktop.ini 67 bytes
      C:\DOCUME~1\zebulon\LOCALS~1\Temp\Temporary Internet Files\Content.IE5\desktop.ini 67 bytes
      C:\DOCUME~1\zebulon\LOCALS~1\Temp\Temporary Internet Files\Content.IE5\GZAJFNTO\desktop.ini 67 bytes
      C:\DOCUME~1\zebulon\LOCALS~1\Temp\Temporary Internet Files\Content.IE5\GZPMOXD1\desktop.ini 67 bytes
      C:\DOCUME~1\zebulon\LOCALS~1\Temp\~DF7611.tmp 16,00KB
      C:\DOCUME~1\zebulon\LOCALS~1\Temp\~DF9EA7.tmp 512 bytes
      C:\WINDOWS\system32\wbem\Logs\wbemess.log 34,28KB
      C:\WINDOWS\system32\wbem\Logs\WinMgmt.log 216 bytes
      C:\WINDOWS\system32\wbem\Logs\wmiprov.log 1,99KB
      C:\WINDOWS\system32\wbem\Logs\wbemess.lo_ 64,11KB
      C:\WINDOWS\0.log 0 bytes
      C:\Documents and Settings\All Users\Application Data\Microsoft\Dr Watson\drwtsn32.log 0,18MB
      C:\Documents and Settings\All Users\Application Data\Microsoft\Dr Watson\user.dmp 52,92KB
      C:\WINDOWS\Debug\NetSetup.LOG 264 bytes
      C:\WINDOWS\Debug\UserMode\userenv.log 34,40KB
      C:\Documents and Settings\zebulon\Application Data\Macromedia\Flash Player\macromedia.com\support\flashplayer\sys\settings.sol 348 bytes
      C:\Documents and Settings\All Users\Application Data\Spybot - Search & Destroy\Logs\Checks.060223-1128.log 191 bytes
      C:\Documents and Settings\All Users\Application Data\Spybot - Search & Destroy\Logs\Checks.060224-1914.log 2,05KB
      C:\Documents and Settings\All Users\Application Data\Spybot - Search & Destroy\Logs\Checks.060224-1936- 5,23KB
      C:\Documents and Settings\All Users\Application Data\Spybot - Search & Destroy\Logs\Checks.060224-1936.txt 5,28KB
      C:\Documents and Settings\All Users\Application Data\Spybot - Search & Destroy\Statistics.ini 807 bytes
      C:\Documents and Settings\zebulon\Application Data\Lavasoft\Ad-Aware\Logs\Ad-Aware log2006-02-23 11-11-22.txt 23,06KB
      C:\Documents and Settings\zebulon\Application Data\Lavasoft\Ad-Aware\Logs\Ad-Aware log2006-02-24 19-27-22.txt 39,96KB
      C:\Documents and Settings\zebulon\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\0.class-8f4a53b-35dedde4.class 1,07KB
      C:\Documents and Settings\zebulon\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\0.class-8f4a53b-35dedde4.idx 250 bytes
      C:\Documents and Settings\zebulon\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\1.class-3ddae07c-5e47268b.class 512 bytes
      C:\Documents and Settings\zebulon\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\1.class-3ddae07c-5e47268b.idx 249 bytes
      C:\Documents and Settings\zebulon\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\arrow.gif-452fe9a0-5213f567.gif 178 bytes
      C:\Documents and Settings\zebulon\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\arrow.gif-452fe9a0-5213f567.idx 308 bytes
      C:\Documents and Settings\zebulon\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\arrows.jpg-5a67863-6e7516eb.idx 313 bytes
      C:\Documents and Settings\zebulon\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\arrows.jpg-5a67863-6e7516eb.jpg 1,40KB
      C:\Documents and Settings\zebulon\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\atomobuck.gif-45ceeb50-7798213a.gif 1,92KB
      C:\Documents and Settings\zebulon\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\atomobuck.gif-45ceeb50-7798213a.idx 313 bytes
      C:\Documents and Settings\zebulon\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\back.jpg-528ea52b-73ca7371.idx 316 bytes
      C:\Documents and Settings\zebulon\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\back.jpg-528ea52b-73ca7371.jpg 27,60KB
      C:\Documents and Settings\zebulon\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\background.jpg-209868e9-6106ce69.idx 324 bytes
      C:\Documents and Settings\zebulon\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\background.jpg-209868e9-6106ce69.jpg 41,27KB
      C:\Documents and Settings\zebulon\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\bag.gif-da0945f-22aa7d24.gif 1,61KB
      C:\Documents and Settings\zebulon\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\bag.gif-da0945f-22aa7d24.idx 307 bytes
      C:\Documents and Settings\zebulon\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\baghit.au-47a45f84-6e26a2ca.au 2,30KB
      C:\Documents and Settings\zebulon\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\baghit.au-47a45f84-6e26a2ca.idx 311 bytes
      C:\Documents and Settings\zebulon\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\bagslots.gif-71b403b2-5ccbbee0.gif 4,25KB
      C:\Documents and Settings\zebulon\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\bagslots.gif-71b403b2-5ccbbee0.idx 312 bytes
      C:\Documents and Settings\zebulon\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\beep.au-340b89c-7a951ac5.au 1,00KB
      C:\Documents and Settings\zebulon\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\beep.au-340b89c-7a951ac5.idx 244 bytes
      C:\Documents and Settings\zebulon\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\bg.jpg-29825114-602b666e.idx 307 bytes
      C:\Documents and Settings\zebulon\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\bg.jpg-29825114-602b666e.jpg 40,31KB
      C:\Documents and Settings\zebulon\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\bg.jpg-e1f5210-1f51f5e3.idx 307 bytes
      C:\Documents and Settings\zebulon\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\bg.jpg-e1f5210-1f51f5e3.jpg 40,31KB
      C:\Documents and Settings\zebulon\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\bigmoney.au-661260ef-698b3998.au 8,17KB
      C:\Documents and Settings\zebulon\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\bigmoney.au-661260ef-698b3998.idx 313 bytes
      C:\Documents and Settings\zebulon\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\blank.au-4bd23b71-13276f19.au 1,60KB
      C:\Documents and Settings\zebulon\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\blank.au-4bd23b71-13276f19.idx 310 bytes
      C:\Documents and Settings\zebulon\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\bonusdrop.au-2ab21d77-3a68b736.au 5,38KB
      C:\Documents and Settings\zebulon\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\bonusdrop.au-2ab21d77-3a68b736.idx 314 bytes
      C:\Documents and Settings\zebulon\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\bullet.gif-50299266-71d68aa6.gif 829 bytes
      C:\Documents and Settings\zebulon\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\bullet.gif-50299266-71d68aa6.idx 318 bytes
      C:\Documents and Settings\zebulon\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\bullet.gif-5770f068-25f22cc9.gif 829 bytes
      C:\Documents and Settings\zebulon\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\bullet.gif-5770f068-25f22cc9.idx 315 bytes
      C:\Documents and Settings\zebulon\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\bullet.gif-72d3ef6c-52e22f4d.gif 829 bytes
      C:\Documents and Settings\zebulon\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\bullet.gif-72d3ef6c-52e22f4d.idx 315 bytes
      C:\Documents and Settings\zebulon\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\buttonclick.au-48b3cfaf-24d773f4.au 1,17KB
      C:\Documents and Settings\zebulon\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\buttonclick.au-48b3cfaf-24d773f4.idx 316 bytes
      C:\Documents and Settings\zebulon\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\buttonclick.au-75856226-2ccc1764.au 326 bytes
      C:\Documents and Settings\zebulon\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\buttonclick.au-75856226-2ccc1764.idx 317 bytes
      C:\Documents and Settings\zebulon\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\buttons_.gif-2b126930-125fdf2a.gif 3,63KB
      C:\Documents and Settings\zebulon\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\buttons_.gif-2b126930-125fdf2a.idx 311 bytes
      C:\Documents and Settings\zebulon\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\buttons_.gif-faf6a2c-2105c8b1.gif 3,63KB
      C:\Documents and Settings\zebulon\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\buttons_.gif-faf6a2c-2105c8b1.idx 311 bytes
      C:\Documents and Settings\zebulon\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\button_clear.gif-b9c6b1e-7ff4e1d4.gif 4,98KB
      C:\Documents and Settings\zebulon\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\button_clear.gif-b9c6b1e-7ff4e1d4.idx 324 bytes
      C:\Documents and Settings\zebulon\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\button_godeluxe.jpg-39f0c98d-2a3f647f.idx 330 bytes
      C:\Documents and Settings\zebulon\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\button_godeluxe.jpg-39f0c98d-2a3f647f.jpg 13,40KB
      C:\Documents and Settings\zebulon\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\button_godeluxe.jpg-47a161ff-2ea98743.idx 327 bytes
      C:\Documents and Settings\zebulon\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\button_godeluxe.jpg-47a161ff-2ea98743.jpg 13,40KB
      C:\Documents and Settings\zebulon\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\button_godeluxe.jpg-63046103-7ee4d7bd.idx 327 bytes
      C:\Documents and Settings\zebulon\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\button_godeluxe.jpg-63046103-7ee4d7bd.jpg 13,40KB
      C:\Documents and Settings\zebulon\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\button_ok.jpg-5235fde-37e319a6.idx 327 bytes
      C:\Documents and Settings\zebulon\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\button_ok.jpg-5235fde-37e319a6.jpg 12,62KB
      C:\Documents and Settings\zebulon\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\button_ok.jpg-5c0fc868-3e7e6f31.idx 330 bytes
      C:\Documents and Settings\zebulon\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\button_ok.jpg-5c0fc868-3e7e6f31.jpg 12,62KB
      C:\Documents and Settings\zebulon\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\button_ok.jpg-69c060da-31d62801.idx 327 bytes
      C:\Documents and Settings\zebulon\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\button_ok.jpg-69c060da-31d62801.jpg 12,62KB
      C:\Documents and Settings\zebulon\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\button_pause.gif-8ccde47-1a733144.gif 4,69KB
      C:\Documents and Settings\zebulon\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\button_pause.gif-8ccde47-1a733144.idx 324 bytes
      C:\Documents and Settings\zebulon\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\button_shuffle.gif-20ba6e8a-59ee11a9.gif 5,07KB
      C:\Documents and Settings\zebulon\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\button_shuffle.gif-20ba6e8a-59ee11a9.idx 326 bytes
      C:\Documents and Settings\zebulon\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\button_sound.gif-7224567e-40d347f6.gif 2,64KB
      C:\Documents and Settings\zebulon\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\button_sound.gif-7224567e-40d347f6.idx 318 bytes
      C:\Documents and Settings\zebulon\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\button_submit.gif-15138caf-7203aa2a.gif 6,95KB
      C:\Documents and Settings\zebulon\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\button_submit.gif-15138caf-7203aa2a.idx 325 bytes
      C:\Documents and Settings\zebulon\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\clearcoinhelp.gif-3fc08d54-1501a52e.gif 1,07KB
      C:\Documents and Settings\zebulon\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\clearcoinhelp.gif-3fc08d54-1501a52e.idx 323 bytes
      C:\Documents and Settings\zebulon\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\clearcoins.au-68d67d7a-2a640407.au 4,06KB
      C:\Documents and Settings\zebulon\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\clearcoins.au-68d67d7a-2a640407.idx 315 bytes
      C:\Documents and Settings\zebulon\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\clearcoins2.au-eab2ae8-4978eccd.au 4,97KB
      C:\Documents and Settings\zebulon\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\clearcoins2.au-eab2ae8-4978eccd.idx 316 bytes
      C:\Documents and Settings\zebulon\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\clearcoins3.au-eab9f47-49a5f993.au 10,16KB
      C:\Documents and Settings\zebulon\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\clearcoins3.au-eab9f47-49a5f993.idx 317 bytes
      C:\Documents and Settings\zebulon\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\clickhere.gif-56e8e72d-3a4265b8.gif 605 bytes
      C:\Documents and Settings\zebulon\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\clickhere.gif-56e8e72d-3a4265b8.idx 318 bytes
      C:\Documents and Settings\zebulon\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\coinanim.gif-62772227-40db9e0f.gif 2,29KB
      C:\Documents and Settings\zebulon\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\coinanim.gif-62772227-40db9e0f.idx 312 bytes
      C:\Documents and Settings\zebulon\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\coinexplosion.gif-80d3ebb-2a9f4e08.gif 2,42KB
      C:\Documents and Settings\zebulon\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\coinexplosion.gif-80d3ebb-2a9f4e08.idx 317 bytes
      C:\Documents and Settings\zebulon\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\coins.gif-580ff519-53df9b7f.gif 3,12KB
      C:\Documents and Settings\zebulon\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\coins.gif-580ff519-53df9b7f.idx 309 bytes
      C:\Documents and Settings\zebulon\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\combination.au-36cbaabf-51eb2833.au 2,16KB
      C:\Documents and Settings\zebulon\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\combination.au-36cbaabf-51eb2833.idx 315 bytes
      C:\Documents and Settings\zebulon\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\combination.au-522ea9c3-55b74cdb.au 2,16KB
      C:\Documents and Settings\zebulon\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\combination.au-522ea9c3-55b74cdb.idx 315 bytes
      C:\Documents and Settings\zebulon\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\correct.au-5e1d2cd2-62daa837.au 3,29KB
      C:\Documents and Settings\zebulon\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\correct.au-5e1d2cd2-62daa837.idx 314 bytes
      C:\Documents and Settings\zebulon\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\countdown.gif-800b348-51575be1.gif 751 bytes
      C:\Documents and Settings\zebulon\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\countdown.gif-800b348-51575be1.idx 312 bytes
      C:\Documents and Settings\zebulon\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\dail_big.gif-d5b9fdd-63cf024e.gif 301 bytes
      C:\Documents and Settings\zebulon\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\dail_big.gif-d5b9fdd-63cf024e.idx 313 bytes
      C:\Documents and Settings\zebulon\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\dail_small.gif-1c855224-43067478.gif 173 bytes
      C:\Documents and Settings\zebulon\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\dail_small.gif-1c855224-43067478.idx 315 bytes
      C:\Documents and Settings\zebulon\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\deselect.au-48d79c89-67f53f28.au 291 bytes
      C:\Documents and Settings\zebulon\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\deselect.au-48d79c89-67f53f28.idx 311 bytes
      C:\Documents and Settings\zebulon\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\deselect.au-643a9b8d-432b8d2d.au 291 bytes
      C:\Documents and Settings\zebulon\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\deselect.au-643a9b8d-432b8d2d.idx 311 bytes
      C:\Documents and Settings\zebulon\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\dialog.gif-1ddf4b2-3681912b.gif 21,55KB
      C:\Documents and Settings\zebulon\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\dialog.gif-1ddf4b2-3681912b.idx 317 bytes
      C:\Documents and Settings\zebulon\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\dialog.gif-5f3397ac-6ee9f0e2.gif 18,96KB
      C:\Documents and Settings\zebulon\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\dialog.gif-5f3397ac-6ee9f0e2.idx 320 bytes
      C:\Documents and Settings\zebulon\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\dialog.gif-667af5ae-6f8022b8.gif 21,55KB
      C:\Documents and Settings\zebulon\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\dialog.gif-667af5ae-6f8022b8.idx 317 bytes
      C:\Documents and Settings\zebulon\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\door.jpg-60a12287-2a3a488a.idx 311 bytes
      C:\Documents and Settings\zebulon\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\door.jpg-60a12287-2a3a488a.jpg 8,72KB
      C:\Documents and Settings\zebulon\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\dualcoinbar.jpg-6c5bf85a-7104d70e.idx 316 bytes
      C:\Documents and Settings\zebulon\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\dualcoinbar.jpg-6c5bf85a-7104d70e.jpg 2,25KB
      C:\Documents and Settings\zebulon\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\dummy.au-23f8a2d4-70d4ac66.au 35 bytes
      C:\Documents and Settings\zebulon\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\dummy.au-23f8a2d4-70d4ac66.idx 310 bytes
      C:\Documents and Settings\zebulon\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\dummy.au-4339b946-2245e1c9.au 1,98KB
      C:\Documents and Settings\zebulon\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\dummy.au-4339b946-2245e1c9.idx 309 bytes
      C:\Documents and Settings\zebulon\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\dummy.au-5e9cb84a-5ba8ff40.au 1,98KB
      C:\Documents and Settings\zebulon\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\dummy.au-5e9cb84a-5ba8ff40.idx 309 bytes
      C:\Documents and Settings\zebulon\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\elements.gif-3b7fdb33-32f880e4.gif 18,98KB
      C:\Documents and Settings\zebulon\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\elements.gif-3b7fdb33-32f880e4.idx 315 bytes
      C:\Documents and Settings\zebulon\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\error.au-75c85974-3f4f9c07.au 1,55KB
      C:\Documents and Settings\zebulon\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\error.au-75c85974-3f4f9c07.idx 312 bytes
      C:\Documents and Settings\zebulon\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\excellent.au-7430e3cf-533d76eb.au 5,29KB
      C:\Documents and Settings\zebulon\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\excellent.au-7430e3cf-533d76eb.idx 314 bytes
      C:\Documents and Settings\zebulon\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\explode.au-3c922204-45359dd5.au 5,41KB
      C:\Documents and Settings\zebulon\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\explode.au-3c922204-45359dd5.idx 312 bytes
      C:\Documents and Settings\zebulon\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\fire.gif-776564f2-727c44a9.gif 1,70KB
      C:\Documents and Settings\zebulon\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\fire.gif-776564f2-727c44a9.idx 310 bytes
      C:\Documents and Settings\zebulon\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\flasher.gif-98ea1f4-40e4db0f.gif 763 bytes
      C:\Documents and Settings\zebulon\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\flasher.gif-98ea1f4-40e4db0f.idx 310 bytes
      C:\Documents and Settings\zebulon\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\gameover.au-13f8afe4-31958508.au 7,68KB
      C:\Documents and Settings\zebulon\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\gameover.au-13f8afe4-31958508.idx 312 bytes
      C:\Documents and Settings\zebulon\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\gameover.au-74731f29-207ce3ab.au 6,71KB
      C:\Documents and Settings\zebulon\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\gameover.au-74731f29-207ce3ab.idx 313 bytes
      C:\Documents and Settings\zebulon\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\gameover.au-7895b0e0-6f722b54.au 7,68KB
      C:\Documents and Settings\zebulon\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\gameover.au-7895b0e0-6f722b54.idx 312 bytes
      C:\Documents and Settings\zebulon\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\gameover.gif-466f2fcb-12279f58.gif 2,29KB
      C:\Documents and Settings\zebulon\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\gameover.gif-466f2fcb-12279f58.idx 312 bytes
      C:\Documents and Settings\zebulon\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\gameovertone.au-622b30f7-1494db86.au 9,48KB
      C:\Documents and Settings\zebulon\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\gameovertone.au-622b30f7-1494db86.idx 317 bytes
      C:\Documents and Settings\zebulon\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\go.au-3b005e87-68b4578f.au 4,09KB
      C:\Documents and Settings\zebulon\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\go.au-3b005e87-68b4578f.idx 307 bytes
      C:\Documents and Settings\zebulon\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\goodjob.au-57bb80a5-4c95e3b2.au 5,40KB
      C:\Documents and Settings\zebulon\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\goodjob.au-57bb80a5-4c95e3b2.idx 312 bytes
      C:\Documents and Settings\zebulon\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\gotbag.au-484873-28a92c74.au 4,82KB
      C:\Documents and Settings\zebulon\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\gotbag.au-484873-28a92c74.idx 311 bytes
      C:\Documents and Settings\zebulon\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\greenbagflash.gif-236ec082-484a3353.gif 638 bytes
      C:\Documents and Settings\zebulon\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\greenbagflash.gif-236ec082-484a3353.idx 316 bytes
      C:\Documents and Settings\zebulon\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\helpsound.gif-200d5105-5cebe9bf.gif 417 bytes
      C:\Documents and Settings\zebulon\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\helpsound.gif-200d5105-5cebe9bf.idx 312 bytes
      C:\Documents and Settings\zebulon\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\hint.au-3e5cac7f-256b53d7.au 1,03KB
      C:\Documents and Settings\zebulon\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\hint.au-3e5cac7f-256b53d7.idx 308 bytes
      C:\Documents and Settings\zebulon\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\hint.au-59bfab83-57dc7ed2.au 1,03KB
      C:\Documents and Settings\zebulon\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\hint.au-59bfab83-57dc7ed2.idx 308 bytes
      C:\Documents and Settings\zebulon\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\hint.jpg-2f26adb4-1b129dbe.idx 314 bytes
      C:\Documents and Settings\zebulon\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\hint.jpg-2f26adb4-1b129dbe.jpg 3,98KB
      C:\Documents and Settings\zebulon\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\hint.jpg-4a89acb8-4d484aaa.idx 314 bytes
      C:\Documents and Settings\zebulon\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\hint.jpg-4a89acb8-4d484aaa.jpg 3,98KB
      C:\Documents and Settings\zebulon\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\hottile.au-64669721-443bd081.au 5,25KB
      C:\Documents and Settings\zebulon\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\hottile.au-64669721-443bd081.idx 314 bytes
      C:\Documents and Settings\zebulon\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\images.jpg-5cce10f9-745970b1.idx 321 bytes
      C:\Documents and Settings\zebulon\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\images.jpg-5cce10f9-745970b1.jpg 52,10KB
      C:\Documents and Settings\zebulon\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\images.jpg-64156efb-44c70ced.idx 318 bytes
      C:\Documents and Settings\zebulon\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\images.jpg-64156efb-44c70ced.jpg 50,07KB
      C:\Documents and Settings\zebulon\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\images.jpg-7f786dff-236a46ef.idx 318 bytes
      C:\Documents and Settings\zebulon\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\images.jpg-7f786dff-236a46ef.jpg 50,07KB
      C:\Documents and Settings\zebulon\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\incredible.au-3550ba8a-1bfed4f3.au 7,14KB
      C:\Documents and Settings\zebulon\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\incredible.au-3550ba8a-1bfed4f3.idx 315 bytes
      C:\Documents and Settings\zebulon\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\interbottom.gif-8cd61de-63e25a24.gif 1,85KB
      C:\Documents and Settings\zebulon\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\interbottom.gif-8cd61de-63e25a24.idx 315 bytes
      C:\Documents and Settings\zebulon\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\interdollar.gif-73879fef-20db112b.gif 174 bytes
      C:\Documents and Settings\zebulon\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\interdollar.gif-73879fef-20db112b.idx 314 bytes
      C:\Documents and Settings\zebulon\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\interscreen1.gif-f5ab3ee-2e323947.gif 11,70KB
      C:\Documents and Settings\zebulon\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\interscreen1.gif-f5ab3ee-2e323947.idx 317 bytes
      C:\Documents and Settings\zebulon\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\interscreen2.gif-7b7bfa91-6ea1b256.gif 9,75KB
      C:\Documents and Settings\zebulon\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\interscreen2.gif-7b7bfa91-6ea1b256.idx 322 bytes
      C:\Documents and Settings\zebulon\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\interscreen3.gif-7b8a1212-2dc6fef2.gif 11,20KB
      C:\Documents and Settings\zebulon\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\interscreen3.gif-7b8a1212-2dc6fef2.idx 323 bytes
      C:\Documents and Settings\zebulon\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\intertext.gif-4342813e-3b70905f.gif 3,20KB
      C:\Documents and Settings\zebulon\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\intertext.gif-4342813e-3b70905f.idx 319 bytes
      C:\Documents and Settings\zebulon\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\intertitle.gif-3af81e41-10a26dc9.gif 8,67KB
      C:\Documents and Settings\zebulon\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\intertitle.gif-3af81e41-10a26dc9.idx 314 bytes
      C:\Documents and Settings\zebulon\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\landscape.gif-3b44b8c7-207863b7.gif 944 bytes
      C:\Documents and Settings\zebulon\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\landscape.gif-3b44b8c7-207863b7.idx 314 bytes
      C:\Documents and Settings\zebulon\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\letterclick.au-26322b1a-2f94fc5b.au 326 bytes
      C:\Documents and Settings\zebulon\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\letterclick.au-26322b1a-2f94fc5b.idx 317 bytes
      C:\Documents and Settings\zebulon\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\levelfont.gif-3a9301ea-3a763ee9.gif 86 bytes
      C:\Documents and Settings\zebulon\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\levelfont.gif-3a9301ea-3a763ee9.idx 311 bytes
      C:\Documents and Settings\zebulon\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\levelup.au-62517106-3bd2245a.au 4,29KB
      C:\Documents and Settings\zebulon\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\levelup.au-62517106-3bd2245a.idx 312 bytes
      C:\Documents and Settings\zebulon\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\levelup.gif-66500d14-52e1b7ac.gif 1,54KB
      C:\Documents and Settings\zebulon\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\levelup.gif-66500d14-52e1b7ac.idx 317 bytes
      C:\Documents and Settings\zebulon\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\levelupsound.au-231e84df-77139b13.au 5,00KB
      C:\Documents and Settings\zebulon\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\levelupsound.au-231e84df-77139b13.idx 317 bytes
      C:\Documents and Settings\zebulon\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\loading_small.jpg-4eb46ded-3dd7f66b.idx 319 bytes
      C:\Documents and Settings\zebulon\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\loading_small.jpg-4eb46ded-3dd7f66b.jpg 919 bytes
      C:\Documents and Settings\zebulon\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\loading_small_.gif-507e2d7-799fc4b8.gif 219 bytes
      C:\Documents and Settings\zebulon\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\loading_small_.gif-507e2d7-799fc4b8.idx 319 bytes
      C:\Documents and Settings\zebulon\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\logo.au-1bcdc2db-777cfa83.au 21,87KB
      C:\Documents and Settings\zebulon\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\logo.au-1bcdc2db-777cfa83.idx 309 bytes
      C:\Documents and Settings\zebulon\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\logo.au-3730c1df-34d8c776.au 21,87KB
      C:\Documents and Settings\zebulon\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\logo.au-3730c1df-34d8c776.idx 309 bytes
      C:\Documents and Settings\zebulon\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\logo.au-708a6ad9-1e3a07d8.au 21,87KB
      C:\Documents and Settings\zebulon\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\logo.au-708a6ad9-1e3a07d8.idx 312 bytes
      C:\Documents and Settings\zebulon\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\logo.gif-11d971e7-52e406b8.gif 10,60KB
      C:\Documents and Settings\zebulon\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\logo.gif-11d971e7-52e406b8.idx 311 bytes
      C:\Documents and Settings\zebulon\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\logo.gif-311a8859-71a4c495.gif 10,60KB
      C:\Documents and Settings\zebulon\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\logo.gif-311a8859-71a4c495.idx 308 bytes
      C:\Documents and Settings\zebulon\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\logo.gif-4c7d875d-3f1fc5dd.gif 10,60KB
      C:\Documents and Settings\zebulon\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\logo.gif-4c7d875d-3f1fc5dd.idx 308 bytes
      C:\Documents and Settings\zebulon\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\lt.gif-538368f9-52f67089.gif 2,59KB
      C:\Documents and Settings\zebulon\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\lt.gif-538368f9-52f67089.idx 272 bytes
      C:\Documents and Settings\zebulon\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\menubox.gif-190909e3-1203db30.gif 766 bytes
      C:\Documents and Settings\zebulon\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\menubox.gif-190909e3-1203db30.idx 310 bytes
      C:\Documents and Settings\zebulon\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\menubuttons.gif-92f7837-23ce689b.gif 2,03KB
      C:\Documents and Settings\zebulon\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\menubuttons.gif-92f7837-23ce689b.idx 321 bytes
      C:\Documents and Settings\zebulon\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\menugreyboxes.gif-7621ea70-20c90622.gif 2,50KB
      C:\Documents and Settings\zebulon\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\menugreyboxes.gif-7621ea70-20c90622.idx 323 bytes
      C:\Documents and Settings\zebulon\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\menuicons.gif-52089932-3f170af9.gif 7,02KB
      C:\Documents and Settings\zebulon\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\menuicons.gif-52089932-3f170af9.idx 313 bytes
      C:\Documents and Settings\zebulon\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\menuonlyin.gif-6cf9f0d7-5b7cdefb.gif 540 bytes
      C:\Documents and Settings\zebulon\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\menuonlyin.gif-6cf9f0d7-5b7cdefb.idx 319 bytes
      C:\Documents and Settings\zebulon\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\menutext.gif-6c1c8033-5ae5dda5.gif 4,28KB
      C:\Documents and Settings\zebulon\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\menutext.gif-6c1c8033-5ae5dda5.idx 318 bytes
      C:\Documents and Settings\zebulon\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\menutop.gif-7418dc0b-7819bb7f.gif 1,11KB
      C:\Documents and Settings\zebulon\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\menutop.gif-7418dc0b-7819bb7f.idx 317 bytes
      C:\Documents and Settings\zebulon\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\mouthstripper.gif-12bd4fe3-578dd62c.gif 2,94KB
      C:\Documents and Settings\zebulon\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\mouthstripper.gif-12bd4fe3-578dd62c.idx 317 bytes
      C:\Documents and Settings\zebulon\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\moveup.au-69ebd043-33898f9d.au 4,89KB
      C:\Documents and Settings\zebulon\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\moveup.au-69ebd043-33898f9d.idx 311 bytes
      C:\Documents and Settings\zebulon\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\newgameover.gif-4e385e5b-6e1d72f7.gif 1,37KB
      C:\Documents and Settings\zebulon\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\newgameover.gif-4e385e5b-6e1d72f7.idx 321 bytes
      C:\Documents and Settings\zebulon\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\newgamepressed.gif-5ca4eb7-79382f47.gif 2,56KB
      C:\Documents and Settings\zebulon\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\newgamepressed.gif-5ca4eb7-79382f47.idx 324 bytes
      C:\Documents and Settings\zebulon\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\nextlevel.au-10e32add-1a09321c.au 4,21KB
      C:\Documents and Settings\zebulon\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\nextlevel.au-10e32add-1a09321c.idx 313 bytes
      C:\Documents and Settings\zebulon\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\nextlevel.au-2c4629e1-1f91c07f.au 4,21KB
      C:\Documents and Settings\zebulon\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\nextlevel.au-2c4629e1-1f91c07f.idx 313 bytes
      C:\Documents and Settings\zebulon\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\one.au-f6d47df-2a161e64.au 2,54KB
      C:\Documents and Settings\zebulon\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\one.au-f6d47df-2a161e64.idx 308 bytes
      C:\Documents and Settings\zebulon\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\piecehit.au-383a3caa-323ff128.au 1,04KB
      C:\Documents and Settings\zebulon\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\piecehit.au-383a3caa-323ff128.idx 313 bytes
      C:\Documents and Settings\zebulon\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\PreloadingApplet.class-19632399-75d26a70.class 238 bytes
      C:\Documents and Settings\zebulon\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\PreloadingApplet.class-19632399-75d26a70.idx 356 bytes
      C:\Documents and Settings\zebulon\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\progress.gif-7645169-217b61e2.gif 524 bytes
      C:\Documents and Settings\zebulon\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\progress.gif-7645169-217b61e2.idx 313 bytes
      C:\Documents and Settings\zebulon\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\progress_blip_opponent.gif-14c1395-3c6043fb.gif 282 bytes
      C:\Documents and Settings\zebulon\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\progress_blip_opponent.gif-14c1395-3c6043fb.idx 327 bytes
      C:\Documents and Settings\zebulon\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\progress_blip_player.gif-103dc019-306c1ed0.gif 281 bytes
      C:\Documents and Settings\zebulon\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\progress_blip_player.gif-103dc019-306c1ed0.idx 325 bytes
      C:\Documents and Settings\zebulon\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\select.au-6efa16ea-6e03a800.au 468 bytes
      C:\Documents and Settings\zebulon\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\select.au-6efa16ea-6e03a800.idx 309 bytes
      C:\Documents and Settings\zebulon\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\select.au-a5d15ee-7edd4b3f.au 468 bytes
      C:\Documents and Settings\zebulon\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\select.au-a5d15ee-7edd4b3f.idx 309 bytes
      C:\Documents and Settings\zebulon\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\shuffle.au-5c0d759-4aaba396.au 2,37KB
      C:\Documents and Settings\zebulon\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\shuffle.au-5c0d759-4aaba396.idx 311 bytes
      C:\Documents and Settings\zebulon\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\shuffle.au-6a5dd855-648b765a.au 2,37KB
      C:\Documents and Settings\zebulon\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\shuffle.au-6a5dd855-648b765a.idx 311 bytes
      C:\Documents and Settings\zebulon\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\shuffle.jpg-11d73586-27526ad6.idx 317 bytes
      C:\Documents and Settings\zebulon\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\shuffle.jpg-11d73586-27526ad6.jpg 4,26KB
      C:\Documents and Settings\zebulon\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\shuffle.jpg-76743682-181aefee.idx 317 bytes
      C:\Documents and Settings\zebulon\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\shuffle.jpg-76743682-181aefee.jpg 4,26KB
      C:\Documents and Settings\zebulon\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\skillbuttons.gif-11b3b795-1e188cb9.gif 590 bytes
      C:\Documents and Settings\zebulon\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\skillbuttons.gif-11b3b795-1e188cb9.idx 315 bytes
      C:\Documents and Settings\zebulon\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\sparkle.gif-2c5db9ed-11a9eaa7.gif 385 bytes
      C:\Documents and Settings\zebulon\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\sparkle.gif-2c5db9ed-11a9eaa7.idx 310 bytes
      C:\Documents and Settings\zebulon\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\splash.jpg-2efadec0-4af8f8f0.idx 314 bytes
      C:\Documents and Settings\zebulon\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\splash.jpg-2efadec0-4af8f8f0.jpg 51,57KB
      C:\Documents and Settings\zebulon\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\splash.jpg-457de732-4a9e5e16.idx 311 bytes
      C:\Documents and Settings\zebulon\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\splash.jpg-457de732-4a9e5e16.jpg 59,71KB
      C:\Documents and Settings\zebulon\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\splash.jpg-60e0e636-387fd9c8.idx 311 bytes
      C:\Documents and Settings\zebulon\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\splash.jpg-60e0e636-387fd9c8.jpg 59,71KB
      C:\Documents and Settings\zebulon\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\splash_button.gif-666cda96-3319c3cb.gif 6,11KB
      C:\Documents and Settings\zebulon\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\splash_button.gif-666cda96-3319c3cb.idx 319 bytes
      C:\Documents and Settings\zebulon\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\splash_button.gif-6db43898-6448a91e.gif 4,61KB
      C:\Documents and Settings\zebulon\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\splash_button.gif-6db43898-6448a91e.idx 316 bytes
      C:\Documents and Settings\zebulon\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\splash_button.gif-917379c-3c3fcd39.gif 4,61KB
      C:\Documents and Settings\zebulon\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\splash_button.gif-917379c-3c3fcd39.idx 316 bytes
      C:\Documents and Settings\zebulon\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\three.au-628f4ae7-5f24782a.au 3,39KB
      C:\Documents and Settings\zebulon\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\three.au-628f4ae7-5f24782a.idx 310 bytes
      C:\Documents and Settings\zebulon\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\tile.gif-1b78c56a-22c31070.gif 1,63KB
      C:\Documents and Settings\zebulon\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\tile.gif-1b78c56a-22c31070.idx 310 bytes
      C:\Documents and Settings\zebulon\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\tiles_western_30x38.jpg-5a3e6e24-5a724ca8.idx 324 bytes
      C:\Documents and Settings\zebulon\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\tiles_western_30x38.jpg-5a3e6e24-5a724ca8.jpg 21,04KB
      C:\Documents and Settings\zebulon\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\tiles_western_30x38.jpg-75a16d28-73c09e4e.idx 324 bytes
      C:\Documents and Settings\zebulon\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\tiles_western_30x38.jpg-75a16d28-73c09e4e.jpg 21,04KB
      C:\Documents and Settings\zebulon\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\tile_30x38.jpg-4422855a-1ab8192a.idx 313 bytes
      C:\Documents and Settings\zebulon\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\tile_30x38.jpg-4422855a-1ab8192a.jpg 927 bytes
      C:\Documents and Settings\zebulon\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\tile_30x38.jpg-5f85845e-2163a4ef.idx 313 bytes
      C:\Documents and Settings\zebulon\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\tile_30x38.jpg-5f85845e-2163a4ef.jpg 927 bytes
      C:\Documents and Settings\zebulon\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\tile_30x38_.gif-1f76273e-6480f0ea.gif 142 bytes
      C:\Documents and Settings\zebulon\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\tile_30x38_.gif-1f76273e-6480f0ea.idx 313 bytes
      C:\Documents and Settings\zebulon\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\tile_30x38_.gif-3ad92642-2f852e35.gif 142 bytes
      C:\Documents and Settings\zebulon\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\tile_30x38_.gif-3ad92642-2f852e35.idx 313 bytes
      C:\Documents and Settings\zebulon\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\tile_glow.gif-6c3850a-46128e38.gif 88 bytes
      C:\Documents and Settings\zebulon\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\tile_glow.gif-6c3850a-46128e38.idx 313 bytes
      C:\Documents and Settings\zebulon\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\tile_hot.gif-46f27ef8-59c1c8c6.gif 1,81KB
      C:\Documents and Settings\zebulon\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\tile_hot.gif-46f27ef8-59c1c8c6.idx 314 bytes
      C:\Documents and Settings\zebulon\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\timebar.jpg-5602acd1-19a939a8.idx 311 bytes
      C:\Documents and Settings\zebulon\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\timebar.jpg-5602acd1-19a939a8.jpg 4,15KB
      C:\Documents and Settings\zebulon\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\timebar.jpg-7165abd5-1d126213.idx 311 bytes
      C:\Documents and Settings\zebulon\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\timebar.jpg-7165abd5-1d126213.jpg 4,15KB
      C:\Documents and Settings\zebulon\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\timebar_.gif-499aeea7-62fbb186.gif 1,48KB
      C:\Documents and Settings\zebulon\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\timebar_.gif-499aeea7-62fbb186.idx 311 bytes
      C:\Documents and Settings\zebulon\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\timebar_.gif-64fdedab-76bfeb13.gif 1,48KB
      C:\Documents and Settings\zebulon\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\timebar_.gif-64fdedab-76bfeb13.idx 311 bytes
      C:\Documents and Settings\zebulon\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\timetick.au-1caf183c-51fc2506.au 810 bytes
      C:\Documents and Settings\zebulon\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\timetick.au-1caf183c-51fc2506.idx 311 bytes
      C:\Documents and Settings\zebulon\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\timetick.au-38121740-42853033.au 810 bytes
      C:\Documents and Settings\zebulon\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\timetick.au-38121740-42853033.idx 311 bytes
      C:\Documents and Settings\zebulon\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\tone1.au-4defe3e6-7fd89e5a.au 3,58KB
      C:\Documents and Settings\zebulon\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\tone1.au-4defe3e6-7fd89e5a.idx 310 bytes
      C:\Documents and Settings\zebulon\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\tone2.au-4df05845-2244fbd6.au 3,80KB
      C:\Documents and Settings\zebulon\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\tone2.au-4df05845-2244fbd6.idx 310 bytes
      C:\Documents and Settings\zebulon\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\tone3.au-4df0cca4-1045a2e0.au 3,64KB
      C:\Documents and Settings\zebulon\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\tone3.au-4df0cca4-1045a2e0.idx 310 bytes
      C:\Documents and Settings\zebulon\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\tone4.au-4df14103-1e1a94ad.au 3,58KB
      C:\Documents and Settings\zebulon\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\tone4.au-4df14103-1e1a94ad.idx 310 bytes
      C:\Documents and Settings\zebulon\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\tone5.au-4df1b562-6fee5743.au 3,87KB
      C:\Documents and Settings\zebulon\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\tone5.au-4df1b562-6fee5743.idx 310 bytes
      C:\Documents and Settings\zebulon\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\train.au-6ea13974-7aff6854.au 8,08KB
      C:\Documents and Settings\zebulon\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\train.au-6ea13974-7aff6854.idx 312 bytes
      C:\Documents and Settings\zebulon\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\trainstart.au-2b2b8fca-500e3830.au 12,89KB
      C:\Documents and Settings\zebulon\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\trainstart.au-2b2b8fca-500e3830.idx 318 bytes
      C:\Documents and Settings\zebulon\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\trainstop.au-698e5832-2e976347.au 14,70KB
      C:\Documents and Settings\zebulon\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\trainstop.au-698e5832-2e976347.idx 317 bytes
      C:\Documents and Settings\zebulon\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\train_bar_comp.gif-30e84ace-7528aaee.gif 128 bytes
      C:\Documents and Settings\zebulon\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\train_bar_comp.gif-30e84ace-7528aaee.idx 319 bytes
      C:\Documents and Settings\zebulon\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\train_bar_player.gif-71c262e0-11579216.gif 188 bytes
      C:\Documents and Settings\zebulon\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\train_bar_player.gif-71c262e0-11579216.idx 321 bytes
      C:\Documents and Settings\zebulon\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\train_big_comp.gif-58e60481-2e2f537b.gif 1,48KB
      C:\Documents and Settings\zebulon\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\train_big_comp.gif-58e60481-2e2f537b.idx 320 bytes
      C:\Documents and Settings\zebulon\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\train_big_player.gif-11387bd3-1f9c203f.gif 2,49KB
      C:\Documents and Settings\zebulon\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\train_big_player.gif-11387bd3-1f9c203f.idx 322 bytes
      C:\Documents and Settings\zebulon\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\train_loud.au-7e690d9b-12b4458d.au 8,08KB
      C:\Documents and Settings\zebulon\App
      0
      1. boulepate > Utilisateur anonyme
         
        Salut,

        comme te la sugeré Aranjuez, scannes ton pc avec cet anti-virus en ligne et colle le rapport ici en entier stp!

        http://www.bitdefender.com/scan8/ie.html

        dès que tu as mit ici le rapport du scan anti-virus mets un nouveau rapport hijackthis

        A++
        0
  2. Utilisateur anonyme
     
    Bonjour
    Voici enfin, comme demandé les différents résultats des scans : hijackthis, bitdefender et ewido !
    Il me faut près de 24 heures pour terminer un scan. je rame comme un champion olympique, et j'en ai marre !
    merci de m'aider à me débarrasser de ces bêbêtes que sont les virus et autres espions !!

    Logfile of HijackThis v1.99.1
    Scan saved at 09:20:12, on 02/03/2006
    Platform: Windows XP (WinNT 5.01.2600)
    MSIE: Internet Explorer v6.00 (6.00.2600.0000)

    Running processes:
    C:\WINDOWS\System32\smss.exe
    C:\WINDOWS\system32\winlogon.exe
    C:\WINDOWS\system32\services.exe
    C:\WINDOWS\system32\lsass.exe
    C:\WINDOWS\system32\svchost.exe
    C:\WINDOWS\System32\svchost.exe
    C:\WINDOWS\Explorer.EXE
    C:\WINDOWS\system32\spoolsv.exe
    C:\Program Files\Creative\Shared Files\CAMTRAY.EXE
    C:\winsysban11.exe
    C:\Program Files\Softwin\BitDefender9\bdmcon.exe
    C:\Program Files\Softwin\BitDefender9\bdnagent.exe
    C:\Program Files\Softwin\BitDefender9\bdswitch.exe
    C:\Program Files\Adobe\Photoshop Album Edition Découverte\3.0\Apps\apdproxy.exe
    C:\WINDOWS\System32\ctfmon.exe
    C:\Program Files\Messenger\msmsgs.exe
    C:\Program Files\MSN Messenger\MsnMsgr.Exe
    C:\Program Files\Skype\Phone\Skype.exe
    C:\Program Files\WinZip\WZQKPICK.EXE
    C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
    C:\Program Files\Alwil Software\Avast4\ashServ.exe
    C:\Program Files\ewido anti-malware\ewidoctrl.exe
    C:\WINDOWS\system32\hal.exe
    C:\WINDOWS\System32\svchost.exe
    C:\Program Files\Fichiers communs\Softwin\BitDefender Communicator\xcommsvr.exe
    C:\Program Files\Fichiers communs\Softwin\BitDefender Scan Server\bdss.exe
    C:\Program Files\Fichiers communs\Softwin\BitDefender Update Service\livesrv.exe
    C:\Program Files\Softwin\BitDefender9\vsserv.exe
    C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
    C:\WINDOWS\system32\cmd.exe
    C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
    C:\Program Files\Internet Explorer\iexplore.exe
    C:\Program Files\Internet Explorer\iexplore.exe
    C:\Program Files\Internet Explorer\iexplore.exe
    C:\Documents and Settings\zebulon\Bureau\HijackThis.exe
    C:\Program Files\Fichiers communs\Softwin\BitDefender Update Service\upgrepl.exe

    R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://searchbar.findthewebsiteyouneed.com
    R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = http://searchbar.findthewebsiteyouneed.com
    R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://searchbar.findthewebsiteyouneed.com
    R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.findthewebsiteyouneed.com
    R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://searchbar.findthewebsiteyouneed.com
    R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant = http://searchbar.findthewebsiteyouneed.com
    R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
    R3 - URLSearchHook: (no name) - {F27E6D61-84A7-FC27-869D-A30FD7E240C5} - (no file)
    O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll
    O2 - BHO: (no name) - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
    O2 - BHO: (no name) - {6001CDF7-6F45-471b-A203-0225615E35A7} - C:\WINDOWS\DH.dll
    O2 - BHO: RieMon Class - {70F6A776-579A-4C95-BA88-134253907752} - C:\WINDOWS\System32\irsmgeht.dll
    O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll
    O2 - BHO: ADOUsefulNet Object - {7CB093AC-11DF-46D5-9343-CE4BD90C159C} - C:\WINDOWS\System32\jkhhi.dll
    O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar3.dll
    O2 - BHO: (no name) - {EA32FB3B-21C9-42cc-B8EF-01A9B28EDB0D} - C:\WINDOWS\system32\ddcca.dll
    O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar3.dll
    O3 - Toolbar: UCmore XP - The Search Accelerator - {44BE0690-5429-47f0-85BB-3FFD8020233E} - C:\Program Files\TheSearchAccelerator\UCMTSAIE.dll
    O4 - HKLM\..\Run: [Creative WebCam Tray] C:\Program Files\Creative\Shared Files\CAMTRAY.EXE
    O4 - HKLM\..\Run: [winsysupd] C:\\winsysupd12.exe
    O4 - HKLM\..\Run: [gimmygames] C:\windows\gimmygames11.exe
    O4 - HKLM\..\Run: [NeroFilterCheck] C:\WINDOWS\system32\NeroCheck.exe
    O4 - HKLM\..\Run: [winsysban] C:\\winsysban11.exe
    O4 - HKLM\..\Run: [Windows update adbpro] update32.exe
    O4 - HKLM\..\Run: [BDMCon]
    0
  3. Utilisateur anonyme
     
    Bonjour
    Voici enfin, comme demandé les différents résultats des scans : hijackthis, bitdefender et ewido !
    Il me faut près de 24 heures pour terminer un scan. je rame comme un champion olympique, et j'en ai marre !
    merci de m'aider à me débarrasser de ces bêbêtes que sont les virus et autres espions !!

    Logfile of HijackThis v1.99.1
    Scan saved at 09:20:12, on 02/03/2006
    Platform: Windows XP (WinNT 5.01.2600)
    MSIE: Internet Explorer v6.00 (6.00.2600.0000)

    Running processes:
    C:\WINDOWS\System32\smss.exe
    C:\WINDOWS\system32\winlogon.exe
    C:\WINDOWS\system32\services.exe
    C:\WINDOWS\system32\lsass.exe
    C:\WINDOWS\system32\svchost.exe
    C:\WINDOWS\System32\svchost.exe
    C:\WINDOWS\Explorer.EXE
    C:\WINDOWS\system32\spoolsv.exe
    C:\Program Files\Creative\Shared Files\CAMTRAY.EXE
    C:\winsysban11.exe
    C:\Program Files\Softwin\BitDefender9\bdmcon.exe
    C:\Program Files\Softwin\BitDefender9\bdnagent.exe
    C:\Program Files\Softwin\BitDefender9\bdswitch.exe
    C:\Program Files\Adobe\Photoshop Album Edition Découverte\3.0\Apps\apdproxy.exe
    C:\WINDOWS\System32\ctfmon.exe
    C:\Program Files\Messenger\msmsgs.exe
    C:\Program Files\MSN Messenger\MsnMsgr.Exe
    C:\Program Files\Skype\Phone\Skype.exe
    C:\Program Files\WinZip\WZQKPICK.EXE
    C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
    C:\Program Files\Alwil Software\Avast4\ashServ.exe
    C:\Program Files\ewido anti-malware\ewidoctrl.exe
    C:\WINDOWS\system32\hal.exe
    C:\WINDOWS\System32\svchost.exe
    C:\Program Files\Fichiers communs\Softwin\BitDefender Communicator\xcommsvr.exe
    C:\Program Files\Fichiers communs\Softwin\BitDefender Scan Server\bdss.exe
    C:\Program Files\Fichiers communs\Softwin\BitDefender Update Service\livesrv.exe
    C:\Program Files\Softwin\BitDefender9\vsserv.exe
    C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
    C:\WINDOWS\system32\cmd.exe
    C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
    C:\Program Files\Internet Explorer\iexplore.exe
    C:\Program Files\Internet Explorer\iexplore.exe
    C:\Program Files\Internet Explorer\iexplore.exe
    C:\Documents and Settings\zebulon\Bureau\HijackThis.exe
    C:\Program Files\Fichiers communs\Softwin\BitDefender Update Service\upgrepl.exe

    R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://searchbar.findthewebsiteyouneed.com
    R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = http://searchbar.findthewebsiteyouneed.com
    R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://searchbar.findthewebsiteyouneed.com
    R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.findthewebsiteyouneed.com
    R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://searchbar.findthewebsiteyouneed.com
    R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant = http://searchbar.findthewebsiteyouneed.com
    R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
    R3 - URLSearchHook: (no name) - {F27E6D61-84A7-FC27-869D-A30FD7E240C5} - (no file)
    O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll
    O2 - BHO: (no name) - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
    O2 - BHO: (no name) - {6001CDF7-6F45-471b-A203-0225615E35A7} - C:\WINDOWS\DH.dll
    O2 - BHO: RieMon Class - {70F6A776-579A-4C95-BA88-134253907752} - C:\WINDOWS\System32\irsmgeht.dll
    O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll
    O2 - BHO: ADOUsefulNet Object - {7CB093AC-11DF-46D5-9343-CE4BD90C159C} - C:\WINDOWS\System32\jkhhi.dll
    O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar3.dll
    O2 - BHO: (no name) - {EA32FB3B-21C9-42cc-B8EF-01A9B28EDB0D} - C:\WINDOWS\system32\ddcca.dll
    O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar3.dll
    O3 - Toolbar: UCmore XP - The Search Accelerator - {44BE0690-5429-47f0-85BB-3FFD8020233E} - C:\Program Files\TheSearchAccelerator\UCMTSAIE.dll
    O4 - HKLM\..\Run: [Creative WebCam Tray] C:\Program Files\Creative\Shared Files\CAMTRAY.EXE
    O4 - HKLM\..\Run: [winsysupd] C:\\winsysupd12.exe
    O4 - HKLM\..\Run: [gimmygames] C:\windows\gimmygames11.exe
    O4 - HKLM\..\Run: [NeroFilterCheck] C:\WINDOWS\system32\NeroCheck.exe
    O4 - HKLM\..\Run: [winsysban] C:\\winsysban11.exe
    O4 - HKLM\..\Run: [Windows update adbpro] update32.exe
    O4 - HKLM\..\Run: [BDMCon] "C:\Program Files\Softwin\BitDefender9\bdmcon.exe"
    O4 - HKLM\..\Run: [BDNewsAgent] "C:\Program Files\Softwin\BitDefender9\bdnagent.exe"
    O4 - HKLM\..\Run: [BDSwitchAgent] "C:\Program Files\Softwin\BitDefender9\bdswitch.exe"
    O4 - HKLM\..\Run: [Adobe Photo Downloader] "C:\Program Files\Adobe\Photoshop Album Edition Découverte\3.0\Apps\apdproxy.exe"
    O4 - HKLM\..\RunServices: [Microsoft Update] wuamkp.exe
    O4 - HKLM\..\RunServices: [Windows update adbpro] update32.exe
    O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\ctfmon.exe
    O4 - HKCU\..\Run: [Microsoft Update] msconfg.exe
    O4 - HKCU\..\Run: [MSMSGS] "C:\Program Files\Messenger\msmsgs.exe" /background
    O4 - HKCU\..\Run: [Hcatpn] C:\WINDOWS\System32\??rvices.exe
    O4 - HKCU\..\Run: [MsnMsgr] "C:\Program Files\MSN Messenger\MsnMsgr.Exe" /background
    O4 - HKCU\..\Run: [Skype] "C:\Program Files\Skype\Phone\Skype.exe" /nosplash /minimized
    O4 - Global Startup: Lancement rapide d'Adobe Reader.lnk = C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe
    O4 - Global Startup: WinZip Quick Pick.lnk = C:\Program Files\WinZip\WZQKPICK.EXE
    O8 - Extra context menu item: &Traduire à partir de l'anglais - res://c:\program files\google\GoogleToolbar3.dll/cmwordtrans.html
    O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~2\OFFICE11\EXCEL.EXE/3000
    O8 - Extra context menu item: Pages liées - res://c:\program files\google\GoogleToolbar3.dll/cmbacklinks.html
    O8 - Extra context menu item: Pages similaires - res://c:\program files\google\GoogleToolbar3.dll/cmsimilar.html
    O8 - Extra context menu item: Recherche &Google - res://c:\program files\google\GoogleToolbar3.dll/cmsearch.html
    O8 - Extra context menu item: Version de la page actuelle disponible dans le cache Google - res://c:\program files\google\GoogleToolbar3.dll/cmcache.html
    O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll
    O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll
    O9 - Extra button: Recherche - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\OFFICE11\REFIEBAR.DLL
    O15 - Trusted Zone: http://click.getmirar.com (HKLM)
    O15 - Trusted Zone: http://click.mirarsearch.com (HKLM)
    O15 - Trusted Zone: http://redirect.mirarsearch.com (HKLM)
    O16 - DPF: {8FCDF9D9-A28B-480F-8C3D-581F119A8AB8} - http://static.zangocash.com/cab/Zango/ie/bridge-c32.cab
    O16 - DPF: {9A9307A0-7DA4-4DAF-B042-5009F29E09E1} (ActiveScan Installer Class) - http://acs.pandasoftware.com/activescan/as5free/asinst.cab
    O16 - DPF: {9AC54695-69A4-46F1-BE10-10C74F9520D5} - http://cabs.elitemediagroup.net/cabs/mediaview.cab
    O16 - DPF: {B38870E4-7ECB-40DA-8C6A-595F0A5519FF} (MsnMessengerSetupDownloadControl Class) - http://messenger.msn.com/download/MsnMessengerSetupDownloader.cab
    O16 - DPF: {BFF1950D-B1B4-4AE8-B842-B2CCF06D9A1B} (Zylom Games Player) - http://game06.zylom.servicesalacarte.wanadoo.fr/activex/zylomgamesplayer.cab
    O16 - DPF: {F919FBD3-A96B-4679-AF26-F551439BB5FD} - http://fr.errorsafe.com/pages/scanner_fr/ErrorSafeScannerInstallFR.cab
    O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - "C:\PROGRA~1\MSNMES~1\msgrapp.dll" (file missing)
    O18 - Filter: text/html - {2F6E85DC-8D2D-4896-8A4F-7DF8A7B1749D} - C:\PROGRA~1\Jalmp\jalmp.dll
    O20 - Winlogon Notify: ddcca - C:\WINDOWS\SYSTEM32\ddcca.dll
    O20 - Winlogon Notify: jkhhi - C:\WINDOWS\System32\jkhhi.dll
    O20 - Winlogon Notify: RunOnceEx - C:\WINDOWS\system32\vsscript.dll (file missing)
    O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - Unknown owner - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
    O23 - Service: ATIintergrated - Unknown owner - C:\WINDOWS\atigraphics.exe (file missing)
    O23 - Service: avast! Antivirus - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashServ.exe
    O23 - Service: avast! Mail Scanner - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe" /service (file missing)
    O23 - Service: avast! Web Scanner - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe" /service (file missing)
    O23 - Service: BitDefender Scan Server (bdss) - Unknown owner - C:\Program Files\Fichiers communs\Softwin\BitDefender Scan Server\bdss.exe" /service (file missing)
    O23 - Service: ewido security suite control - ewido networks - C:\Program Files\ewido anti-malware\ewidoctrl.exe
    O23 - Service: fwnet64 (fwnet) - Unknown owner - C:\WINDOWS\fwnet64.exe (file missing)
    O23 - Service: inetdns (InetDns) (inetdns) - Unknown owner - C:\WINDOWS\system32\inetdns.exe (file missing)
    O23 - Service: BitDefender Desktop Update Service (LIVESRV) - Unknown owner - C:\Program Files\Fichiers communs\Softwin\BitDefender Update Service\livesrv.exe" /service (file missing)
    O23 - Service: Microsoft Dynamic Network (MDNetwork) - Unknown owner - C:\WINDOWS\system32\MDN.exe (file missing)
    O23 - Service: mswmf32 - Unknown owner - C:\WINDOWS\mswmf32.exe (file missing)
    O23 - Service: netconf32 - Unknown owner - C:\WINDOWS\netconf32.exe (file missing)
    O23 - Service: nvidGUIv (nvidGUIv2) - Unknown owner - C:\WINDOWS\nvidGUIv.exe (file missing)
    O23 - Service: BitDefender Virus Shield (VSSERV) - Unknown owner - C:\Program Files\Softwin\BitDefender9\vsserv.exe" /service (file missing)
    O23 - Service: Win32Sr - Unknown owner - C:\WINDOWS\win32ssr.exe (file missing)
    O23 - Service: BitDefender Communicator (XCOMM) - Unknown owner - C:\Program Files\Fichiers communs\Softwin\BitDefender Communicator\xcommsvr.exe" /service (file missing)

    ---------------------------------------------------------
    ewido anti-malware - Rapport de scan
    ---------------------------------------------------------

    + Créé le: 08:31:09, 02/03/2006
    + Somme de contrôle: 8441C0A

    + Résultats du scan:

    HKLM\SOFTWARE\Classes\CLSID\{EA32FB3B-21C9-42cc-B8EF-01A9B28EDB0D} -> Adware.Virtumonde : Nettoyer et sauvegarder
    HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{EA32FB3B-21C9-42cc-B8EF-01A9B28EDB0D} -> Adware.Virtumonde : Nettoyer et sauvegarder
    C:\Documents and Settings\zebulon\Cookies\zebulon@ad.yieldmanager[3].txt -> TrackingCookie.Yieldmanager : Nettoyer et sauvegarder
    C:\Documents and Settings\zebulon\Cookies\zebulon@cpvfeed[1].txt -> TrackingCookie.Cpvfeed : Nettoyer et sauvegarder
    C:\Documents and Settings\zebulon\Cookies\zebulon@stats1.reliablestats[1].txt -> TrackingCookie.Reliablestats : Nettoyer et sauvegarder
    C:\Documents and Settings\zebulon\Cookies\zebulon@web2.realtracker[2].txt -> TrackingCookie.Realtracker : Nettoyer et sauvegarder
    C:\Documents and Settings\zebulon\Cookies\zebulon@www.smartadserver[1].txt -> TrackingCookie.Smartadserver : Nettoyer et sauvegarder
    C:\Documents and Settings\zebulon\Cookies\zebulon@zedo[1].txt -> TrackingCookie.Zedo : Nettoyer et sauvegarder
    C:\Program Files\Softwin\BitDefender9\Quarantine\tmp22 -> Backdoor.Rbot.aie : Nettoyer et sauvegarder
    C:\Program Files\Softwin\BitDefender9\Quarantine\tmp4c -> Backdoor.Rbot.aie : Nettoyer et sauvegarder
    C:\WINDOWS\Temp\tmp47e -> Backdoor.Rbot.aie : Nettoyer et sauvegarder
    C:\WINDOWS\Temp\tmp47f -> Backdoor.Rbot.aie : Nettoyer et sauvegarder
    C:\WINDOWS\Temp\tmp480 -> Backdoor.Rbot.aie : Nettoyer et sauvegarder
    C:\WINDOWS\Temp\tmp483 -> Backdoor.Rbot.aie : Nettoyer et sauvegarder
    C:\WINDOWS\Temp\tmp486 -> Backdoor.Rbot.aie : Nettoyer et sauvegarder
    C:\WINDOWS\Temp\tmp48a -> Backdoor.Rbot.aie : Nettoyer et sauvegarder
    C:\WINDOWS\Temp\tmp48b -> Backdoor.Rbot.aie : Nettoyer et sauvegarder
    C:\WINDOWS\Temp\tmp48c -> Backdoor.Rbot.aie : Nettoyer et sauvegarder
    C:\WINDOWS\Temp\tmp48d -> Backdoor.Rbot.aie : Nettoyer et sauvegarder
    C:\WINDOWS\Temp\tmp48e -> Backdoor.Rbot.aie : Nettoyer et sauvegarder
    C:\WINDOWS\Temp\tmp490 -> Backdoor.Rbot.aie : Nettoyer et sauvegarder
    C:\WINDOWS\Temp\tmp491 -> Backdoor.Rbot.aie : Nettoyer et sauvegarder
    C:\WINDOWS\Temp\tmp492 -> Backdoor.Rbot.aie : Nettoyer et sauvegarder
    C:\WINDOWS\Temp\tmp493 -> Backdoor.Rbot.aie : Nettoyer et sauvegarder
    C:\WINDOWS\Temp\tmp495 -> Backdoor.Rbot.aie : Nettoyer et sauvegarder
    C:\WINDOWS\Temp\tmp496 -> Backdoor.Rbot.aie : Nettoyer et sauvegarder
    C:\WINDOWS\Temp\tmp497 -> Backdoor.Rbot.aie : Nettoyer et sauvegarder
    C:\WINDOWS\Temp\tmp499 -> Backdoor.Rbot.aie : Nettoyer et sauvegarder
    C:\WINDOWS\Temp\tmp49a -> Backdoor.Rbot.aie : Nettoyer et sauvegarder
    C:\WINDOWS\Temp\tmp49b -> Backdoor.Rbot.aie : Nettoyer et sauvegarder
    C:\WINDOWS\Temp\tmp49c -> Backdoor.Rbot.aie : Nettoyer et sauvegarder
    C:\WINDOWS\Temp\tmp49e -> Backdoor.Rbot.aie : Nettoyer et sauvegarder
    C:\WINDOWS\Temp\tmp4a4 -> Backdoor.Rbot.aie : Nettoyer et sauvegarder
    C:\WINDOWS\Temp\tmp4a5 -> Backdoor.Rbot.aie : Nettoyer et sauvegarder
    C:\WINDOWS\Temp\tmp4a6 -> Backdoor.Rbot.aie : Nettoyer et sauvegarder
    C:\WINDOWS\Temp\tmp4a8 -> Backdoor.Rbot.aie : Nettoyer et sauvegarder
    C:\WINDOWS\Temp\tmp4a9 -> Backdoor.Rbot.aie : Nettoyer et sauvegarder
    C:\WINDOWS\Temp\tmp4aa -> Backdoor.Rbot.aie : Nettoyer et sauvegarder
    C:\WINDOWS\Temp\tmp4ae -> Backdoor.Rbot.aie : Nettoyer et sauvegarder
    C:\WINDOWS\Temp\tmp4af -> Backdoor.Rbot.aie : Nettoyer et sauvegarder
    C:\WINDOWS\Temp\tmp4b1 -> Backdoor.Rbot.aie : Nettoyer et sauvegarder
    C:\WINDOWS\Temp\tmp4b2 -> Backdoor.Rbot.aie : Nettoyer et sauvegarder
    C:\WINDOWS\Temp\tmp4b3 -> Backdoor.Rbot.aie : Nettoyer et sauvegarder
    C:\WINDOWS\Temp\tmp4b7 -> Backdoor.Rbot.aie : Nettoyer et sauvegarder
    C:\WINDOWS\Temp\tmp4ba -> Backdoor.Rbot.aie : Nettoyer et sauvegarder
    C:\WINDOWS\Temp\tmp4bb -> Backdoor.Rbot.aie : Nettoyer et sauvegarder
    C:\WINDOWS\Temp\tmp4bc -> Backdoor.Rbot.aie : Nettoyer et sauvegarder
    C:\WINDOWS\Temp\tmp4be -> Backdoor.Rbot.aie : Nettoyer et sauvegarder
    C:\WINDOWS\Temp\tmp4c1 -> Backdoor.Rbot.aie : Nettoyer et sauvegarder
    C:\WINDOWS\Temp\tmp4c2 -> Backdoor.Rbot.aie : Nettoyer et sauvegarder
    C:\WINDOWS\Temp\tmp4c3 -> Backdoor.Rbot.aie : Nettoyer et sauvegarder
    C:\WINDOWS\Temp\tmp4c4 -> Backdoor.Rbot.aie : Nettoyer et sauvegarder
    C:\WINDOWS\Temp\tmp4c6 -> Backdoor.Rbot.aie : Nettoyer et sauvegarder
    C:\WINDOWS\Temp\tmp4c7 -> Backdoor.Rbot.aie : Nettoyer et sauvegarder
    C:\WINDOWS\Temp\tmp4f4 -> Backdoor.Rbot.aie : Nettoyer et sauvegarder
    C:\WINDOWS\Temp\tmp4f5 -> Backdoor.Rbot.aie : Nettoyer et sauvegarder
    C:\WINDOWS\Temp\tmp4fa -> Backdoor.Rbot.aie : Nettoyer et sauvegarder
    C:\WINDOWS\Temp\tmp4fc -> Backdoor.Rbot.aie : Nettoyer et sauvegarder
    C:\WINDOWS\Temp\tmp577 -> Backdoor.Rbot.aie : Nettoyer et sauvegarder
    C:\WINDOWS\Temp\tmp578 -> Backdoor.Rbot.aie : Nettoyer et sauvegarder
    C:\WINDOWS\Temp\tmp579 -> Backdoor.Rbot.aie : Nettoyer et sauvegarder
    C:\WINDOWS\Temp\tmp57b -> Backdoor.Rbot.aie : Nettoyer et sauvegarder
    C:\WINDOWS\Temp\tmp57f -> Backdoor.Rbot.aie : Nettoyer et sauvegarder
    C:\WINDOWS\Temp\tmp580 -> Backdoor.Rbot.aie : Nettoyer et sauvegarder
    C:\WINDOWS\Temp\tmp581 -> Backdoor.Rbot.aie : Nettoyer et sauvegarder
    C:\WINDOWS\Temp\tmp583 -> Backdoor.Rbot.aie : Nettoyer et sauvegarder
    C:\WINDOWS\Temp\tmp584 -> Backdoor.Rbot.aie : Nettoyer et sauvegarder
    C:\WINDOWS\Temp\tmp58a -> Backdoor.Rbot.aie : Nettoyer et sauvegarder
    C:\WINDOWS\Temp\tmp58f -> Backdoor.Rbot.aie : Nettoyer et sauvegarder
    C:\WINDOWS\Temp\tmp598 -> Backdoor.Rbot.aie : Nettoyer et sauvegarder
    C:\WINDOWS\Temp\tmp59c -> Backdoor.Rbot.aie : Nettoyer et sauvegarder
    C:\WINDOWS\Temp\tmp59e -> Backdoor.Rbot.aie : Nettoyer et sauvegarder
    C:\WINDOWS\Temp\tmp59f -> Backdoor.Rbot.aie : Nettoyer et sauvegarder
    C:\WINDOWS\Temp\tmp5a2 -> Backdoor.Rbot.aie : Nettoyer et sauvegarder

    ::Fin du rapport

    //-----------------------------------------------------------------
    //
    // Product: BitDefender 9 Standard
    // Version: 9.0
    //
    // Créé le: 28/02/2006 01:08:52
    //
    //-----------------------------------------------------------------

    Statistiques

    Chemin cible: C:\
    D:\
    G:\
    Dossiers : 1571
    Fichiers : 334737
    Archives : 1453
    Fichiers empaquetés : 45552
    Virus trouvés : 7
    Fichiers infectés : 175
    Alertes : 0
    Fichiers suspects : 9
    Fichiers désinfectés : 0
    Fichiers effacés : 3
    Fichiers copiés : 1
    Fichiers déplacés : 146
    Fichiers renommés : 0
    Erreurs I/O : 56
    Temps d'analyse := 17:34:30
    Fichiers/seconde :5

    Définitions virus : 273778
    Plugins d'analyse : 13
    Plugins archives : 39
    Plug-ins décompression : 4
    Plug-ins messagerie : 6
    Plug-ins système : 1

    Options d'analyse

    Détection
    [X] Analyser le secteur de boot
    [X] Analyser les archives
    [X] Analyser les fichiers en paquets
    [X] Analyser la messagerie

    Masque fichiers
    [ ] Programmes
    [X] Tous les fichiers
    [ ] Extensions définies par l'utilisateur:
    [ ] Exclure les extensions: ;

    Action

    Objets infectés
    [ ] Ignorer
    [X] Désinfecter
    [ ] Effacer
    [ ] Copier
    [ ] Déplacer dans le dossier infectés
    [ ] Renommer
    [ ] Demander l'action

    Seconde action
    [ ] Ignorer
    [ ] Effacer
    [ ] Copier
    [X] Déplacer dans le dossier infectés
    [ ] Renommer
    [ ] Demander l'action

    Options d'analyse
    [X] Activer les alertes
    [X] Activer l'heuristique
    [ ] Afficher tous les fichiers dans le journal
    [X] Fichier journal : C:\Program Files\Softwin\BitDefender9\Logs\vscan_1141085332.log

    Sommaire :

    C:\docs.exe=>(NSIS o)=>lzma_nsis0001 Suspect avec: BehavesLike:Trojan.Downloader
    C:\docs.exe=>(NSIS o)=>lzma_nsis0001 Copie impossible
    C:\docs.exe=>(NSIS o)=>lzma_nsis0003 Infecté avec: BehavesLike:Win32.ExplorerHijack
    C:\docs.exe=>(NSIS o)=>lzma_nsis0004 Infecté avec: Trojan.Downloader.Agent.FE
    C:\docs.exe=>(NSIS o)=>lzma_nsis0004 Désinfection impossible
    C:\docs.exe=>(NSIS o)=>lzma_nsis0004 Déplacement impossible
    C:\Documents and Settings\LocalService\Local Settings\Temporary Internet Files\Content.IE5\P8ISKLDW\lewl[1].exe=>(NSIS o)=>lzma_nsis0001 Suspect avec: BehavesLike:Trojan.Downloader
    C:\Documents and Settings\LocalService\Local Settings\Temporary Internet Files\Content.IE5\P8ISKLDW\lewl[1].exe=>(NSIS o)=>lzma_nsis0001 Copie impossible
    C:\Documents and Settings\LocalService\Local Settings\Temporary Internet Files\Content.IE5\P8ISKLDW\lewl[1].exe=>(NSIS o)=>lzma_nsis0002 Suspect avec: BehavesLike:Trojan.Downloader
    C:\Documents and Settings\LocalService\Local Settings\Temporary Internet Files\Content.IE5\P8ISKLDW\lewl[1].exe=>(NSIS o)=>lzma_nsis0002 Copie impossible
    C:\Documents and Settings\LocalService\Local Settings\Temporary Internet Files\Content.IE5\P8ISKLDW\lewl[1].exe=>(NSIS o)=>lzma_nsis0004 Infecté avec: BehavesLike:Win32.ExplorerHijack
    C:\Documents and Settings\LocalService\Local Settings\Temporary Internet Files\Content.IE5\P8ISKLDW\lewl[1].exe=>(NSIS o)=>lzma_nsis0005 Infecté avec: Trojan.Downloader.Agent.FE
    C:\Documents and Settings\LocalService\Local Settings\Temporary Internet Files\Content.IE5\P8ISKLDW\lewl[1].exe=>(NSIS o)=>lzma_nsis0005 Désinfection impossible
    C:\Documents and Settings\LocalService\Local Settings\Temporary Internet Files\Content.IE5\P8ISKLDW\lewl[1].exe=>(NSIS o)=>lzma_nsis0005 Déplacement impossible
    C:\Documents and Settings\LocalService\Local Settings\Temporary Internet Files\Content.IE5\P8ISKLDW\lewl[2].exe=>(NSIS o)=>lzma_nsis0001 Suspect avec: BehavesLike:Trojan.Downloader
    C:\Documents and Settings\LocalService\Local Settings\Temporary Internet Files\Content.IE5\P8ISKLDW\lewl[2].exe=>(NSIS o)=>lzma_nsis0001 Copie impossible
    C:\Documents and Settings\LocalService\Local Settings\Temporary Internet Files\Content.IE5\P8ISKLDW\lewl[2].exe=>(NSIS o)=>lzma_nsis0002 Suspect avec: BehavesLike:Trojan.Downloader
    C:\Documents and Settings\LocalService\Local Settings\Temporary Internet Files\Content.IE5\P8ISKLDW\lewl[2].exe=>(NSIS o)=>lzma_nsis0002 Copie impossible
    C:\Documents and Settings\LocalService\Local Settings\Temporary Internet Files\Content.IE5\P8ISKLDW\lewl[2].exe=>(NSIS o)=>lzma_nsis0004 Infecté avec: BehavesLike:Win32.ExplorerHijack
    C:\Documents and Settings\LocalService\Local Settings\Temporary Internet Files\Content.IE5\P8ISKLDW\lewl[2].exe=>(NSIS o)=>lzma_nsis0005 Infecté avec: Trojan.Downloader.Agent.FE
    C:\Documents and Settings\LocalService\Local Settings\Temporary Internet Files\Content.IE5\P8ISKLDW\lewl[2].exe=>(NSIS o)=>lzma_nsis0005 Désinfection impossible
    C:\Documents and Settings\LocalService\Local Settings\Temporary Internet Files\Content.IE5\P8ISKLDW\lewl[2].exe=>(NSIS o)=>lzma_nsis0005 Déplacement impossible
    C:\Documents and Settings\LocalService\Local Settings\Temporary Internet Files\Content.IE5\P8ISKLDW\lewl[4].exe=>(NSIS o)=>lzma_nsis0001 Suspect avec: BehavesLike:Trojan.Downloader
    C:\Documents and Settings\LocalService\Local Settings\Temporary Internet Files\Content.IE5\P8ISKLDW\lewl[4].exe=>(NSIS o)=>lzma_nsis0001 Copie impossible
    C:\Documents and Settings\LocalService\Local Settings\Temporary Internet Files\Content.IE5\P8ISKLDW\lewl[4].exe=>(NSIS o)=>lzma_nsis0003 Infecté avec: BehavesLike:Win32.ExplorerHijack
    C:\Documents and Settings\LocalService\Local Settings\Temporary Internet Files\Content.IE5\P8ISKLDW\lewl[4].exe=>(NSIS o)=>lzma_nsis0004 Infecté avec: Trojan.Downloader.Agent.FE
    C:\Documents and Settings\LocalService\Local Settings\Temporary Internet Files\Content.IE5\P8ISKLDW\lewl[4].exe=>(NSIS o)=>lzma_nsis0004 Désinfection impossible
    C:\Documents and Settings\LocalService\Local Settings\Temporary Internet Files\Content.IE5\P8ISKLDW\lewl[4].exe=>(NSIS o)=>lzma_nsis0004 Déplacement impossible
    C:\Documents and Settings\LocalService\Local Settings\Temporary Internet Files\Content.IE5\QBA147WT\ad7[1].exe=>(NSIS o)=>lzma_nsis0001 Suspect avec: BehavesLike:Trojan.Downloader
    C:\Documents and Settings\LocalService\Local Settings\Temporary Internet Files\Content.IE5\QBA147WT\ad7[1].exe=>(NSIS o)=>lzma_nsis0001 Copie impossible
    C:\Documents and Settings\LocalService\Local Settings\Temporary Internet Files\Content.IE5\QBA147WT\ad7[1].exe=>(NSIS o)=>lzma_nsis0003 Infecté avec: BehavesLike:Win32.ExplorerHijack
    C:\Documents and Settings\LocalService\Local Settings\Temporary Internet Files\Content.IE5\QBA147WT\ad7[1].exe=>(NSIS o)=>lzma_nsis0004 Infecté avec: Trojan.Downloader.Agent.FE
    C:\Documents and Settings\LocalService\Local Settings\Temporary Internet Files\Content.IE5\QBA147WT\ad7[1].exe=>(NSIS o)=>lzma_nsis0004 Désinfection impossible
    C:\Documents and Settings\LocalService\Local Settings\Temporary Internet Files\Content.IE5\QBA147WT\ad7[1].exe=>(NSIS o)=>lzma_nsis0004 Déplacement impossible
    C:\Documents and Settings\LocalService\Local Settings\Temporary Internet Files\Content.IE5\QBA147WT\lewl[2].exe=>(NSIS o)=>lzma_nsis0001 Suspect avec: BehavesLike:Trojan.Downloader
    C:\Documents and Settings\LocalService\Local Settings\Temporary Internet Files\Content.IE5\QBA147WT\lewl[2].exe=>(NSIS o)=>lzma_nsis0001 Copie impossible
    C:\Documents and Settings\LocalService\Local Settings\Temporary Internet Files\Content.IE5\QBA147WT\lewl[2].exe=>(NSIS o)=>lzma_nsis0003 Infecté avec: BehavesLike:Win32.ExplorerHijack
    C:\Documents and Settings\LocalService\Local Settings\Temporary Internet Files\Content.IE5\QBA147WT\lewl[2].exe=>(NSIS o)=>lzma_nsis0004 Infecté avec: Trojan.Downloader.Agent.FE
    C:\Documents and Settings\LocalService\Local Settings\Temporary Internet Files\Content.IE5\QBA147WT\lewl[2].exe=>(NSIS o)=>lzma_nsis0004 Désinfection impossible
    C:\Documents and Settings\LocalService\Local Settings\Temporary Internet Files\Content.IE5\QBA147WT\lewl[2].exe=>(NSIS o)=>lzma_nsis0004 Déplacement impossible
    C:\Documents and Settings\zebulon\Local Settings\Temporary Internet Files\Content.IE5\4S1EUEF9\mc-110-12-0000228[1].exe Infecté avec: Trojan.Downloader.Agent.FE
    C:\Documents and Settings\zebulon\Local Settings\Temporary Internet Files\Content.IE5\4S1EUEF9\mc-110-12-0000228[1].exe Désinfection impossible
    C:\Documents and Settings\zebulon\Local Settings\Temporary Internet Files\Content.IE5\4S1EUEF9\mc-110-12-0000228[1].exe Déplacé
    C:\Documents and Settings\zebulon\Local Settings\Temporary Internet Files\Content.IE5\LJI6O7C2\DR21206[1].exe Infecté avec: Dropped:Trojan.Clicker.Small.G
    C:\Documents and Settings\zebulon\Local Settings\Temporary Internet Files\Content.IE5\LJI6O7C2\DR21206[1].exe Deplacement échoué: La quarantaine est pleine
    C:\DR21206.exe Infecté avec: Dropped:Trojan.Clicker.Small.G
    C:\DR21206.exe Deplacement échoué: La quarantaine est pleine
    C:\mc-110-12-0000228.exe Infecté avec: Trojan.Downloader.Agent.FE
    C:\mc-110-12-0000228.exe Désinfection impossible
    C:\mc-110-12-0000228.exe Déplacé
    C:\WINDOWS\Temp\adv.exe Suspect avec: BehavesLike:Trojan.Downloader
    C:\WINDOWS\Temp\adv.exe Impossible de copier: La quarantaine est pleine
    C:\WINDOWS\Temp\mc-110-12-0000248.exe Infecté avec: Trojan.Downloader.Agent.FE
    C:\WINDOWS\Temp\mc-110-12-0000248.exe Désinfection impossible
    C:\WINDOWS\Temp\tmp0 Infecté avec: Trojan.Downloader.Agent.FE
    C:\WINDOWS\Temp\tmp0 Désinfection impossible
    C:\WINDOWS\Temp\tmp0 Deplacement échoué: La quarantaine est pleine
    C:\WINDOWS\Temp\tmp1 Infecté avec: Trojan.Downloader.Agent.FE
    C:\WINDOWS\Temp\tmp1 Désinfection impossible
    C:\WINDOWS\Temp\tmp1 Déplacé
    C:\WINDOWS\Temp\tmp11b Infecté avec: Backdoor.Rbot.AIE
    C:\WINDOWS\Temp\tmp11b Désinfection impossible
    C:\WINDOWS\Temp\tmp11c Infecté avec: Backdoor.Rbot.AIE
    C:\WINDOWS\Temp\tmp11c Désinfection impossible
    C:\WINDOWS\Temp\tmp11c Deplacement échoué: La quarantaine est pleine
    C:\WINDOWS\Temp\tmp11d Infecté avec: Backdoor.Rbot.AIE
    C:\WINDOWS\Temp\tmp11d Désinfection impossible
    C:\WINDOWS\Temp\tmp11d Déplacé
    C:\WINDOWS\Temp\tmp11e Infecté avec: Backdoor.Rbot.AIE
    C:\WINDOWS\Temp\tmp11e Désinfection impossible
    C:\WINDOWS\Temp\tmp11f Infecté avec: Backdoor.Rbot.AIE
    C:\WINDOWS\Temp\tmp11f Désinfection impossible
    C:\WINDOWS\Temp\tmp11f Deplacement échoué: La quarantaine est pleine
    C:\WINDOWS\Temp\tmp12 Infecté avec: Trojan.Downloader.Agent.FE
    C:\WINDOWS\Temp\tmp12 Désinfection impossible
    C:\WINDOWS\Temp\tmp120 Infecté avec: Backdoor.Rbot.AIE
    C:\WINDOWS\Temp\tmp120 Désinfection impossible
    C:\WINDOWS\Temp\tmp120 Déplacé
    C:\WINDOWS\Temp\tmp121 Infecté avec: Backdoor.Rbot.AIE
    C:\WINDOWS\Temp\tmp121 Désinfection impossible
    C:\WINDOWS\Temp\tmp121 Déplacé
    C:\WINDOWS\Temp\tmp122 Infecté avec: Backdoor.Rbot.AIE
    C:\WINDOWS\Temp\tmp122 Désinfection impossible
    C:\WINDOWS\Temp\tmp126 Infecté avec: Backdoor.Rbot.AIE
    C:\WINDOWS\Temp\tmp126 Désinfection impossible
    C:\WINDOWS\Temp\tmp126 Déplacé
    C:\WINDOWS\Temp\tmp132 Infecté avec: Backdoor.SDBot.6E3B3E65
    C:\WINDOWS\Temp\tmp132 Effacé
    C:\WINDOWS\Temp\tmp137 Infecté avec: Backdoor.SDBot.6E3B3E65
    C:\WINDOWS\Temp\tmp137 Effacé
    C:\WINDOWS\Temp\tmp14d Infecté avec: Backdoor.SDBot.6E3B3E65
    C:\WINDOWS\Temp\tmp14d Effacé
    C:\WINDOWS\Temp\tmp16 Infecté avec: Trojan.Downloader.Agent.FE
    C:\WINDOWS\Temp\tmp16 Désinfection impossible
    C:\WINDOWS\Temp\tmp16 Déplacé
    C:\WINDOWS\Temp\tmp17 Infecté avec: Trojan.Downloader.Agent.FE
    C:\WINDOWS\Temp\tmp17 Désinfection impossible
    C:\WINDOWS\Temp\tmp17 Déplacé
    C:\WINDOWS\Temp\tmp18 Infecté avec: Trojan.Downloader.Agent.FE
    C:\WINDOWS\Temp\tmp18 Désinfection impossible
    C:\WINDOWS\Temp\tmp18 Deplacement échoué: La quarantaine est pleine
    C:\WINDOWS\Temp\tmp19 Infecté avec: Trojan.Downloader.Agent.FE
    C:\WINDOWS\Temp\tmp19 Désinfection impossible
    C:\WINDOWS\Temp\tmp19 Déplacé
    C:\WINDOWS\Temp\tmp1c Infecté avec: Trojan.Downloader.Agent.FE
    C:\WINDOWS\Temp\tmp1c Désinfection impossible
    C:\WINDOWS\Temp\tmp1c Déplacé
    C:\WINDOWS\Temp\tmp2 Infecté avec: Trojan.Downloader.Agent.FE
    C:\WINDOWS\Temp\tmp2 Désinfection impossible
    C:\WINDOWS\Temp\tmp2 Deplacement échoué: La quarantaine est pleine
    C:\WINDOWS\Temp\tmp20 Infecté avec: Dropped:Trojan.Clicker.Small.G
    C:\WINDOWS\Temp\tmp20 Deplacement échoué: La quarantaine est pleine
    C:\WINDOWS\Temp\tmp22 Infecté avec: Dropped:Trojan.Clicker.Small.G
    C:\WINDOWS\Temp\tmp23 Infecté avec: Dropped:Trojan.Clicker.Small.G
    C:\WINDOWS\Temp\tmp23 Deplacement échoué: La quarantaine est pleine
    C:\WINDOWS\Temp\tmp24 Infecté avec: Dropped:Trojan.Clicker.Small.G
    C:\WINDOWS\Temp\tmp24 Deplacement échoué: La quarantaine est pleine
    C:\WINDOWS\Temp\tmp25 Infecté avec: Dropped:Trojan.Clicker.Small.G
    C:\WINDOWS\Temp\tmp25 Déplacé
    C:\WINDOWS\Temp\tmp26 Infecté avec: Dropped:Trojan.Clicker.Small.G
    C:\WINDOWS\Temp\tmp26 Déplacé
    C:\WINDOWS\Temp\tmp2a Infecté avec: Trojan.Downloader.Agent.FE
    C:\WINDOWS\Temp\tmp2a Désinfection impossible
    C:\WINDOWS\Temp\tmp2a Déplacé
    C:\WINDOWS\Temp\tmp2d Infecté avec: Trojan.Downloader.Agent.FE
    C:\WINDOWS\Temp\tmp2d Désinfection impossible
    C:\WINDOWS\Temp\tmp2d Deplacement échoué: La quarantaine est pleine
    C:\WINDOWS\Temp\tmp2e Infecté avec: Trojan.Downloader.Agent.FE
    C:\WINDOWS\Temp\tmp2e Désinfection impossible
    C:\WINDOWS\Temp\tmp2e Deplacement échoué: La quarantaine est pleine
    C:\WINDOWS\Temp\tmp2f Infecté avec: Trojan.Downloader.Agent.FE
    C:\WINDOWS\Temp\tmp2f Désinfection impossible
    C:\WINDOWS\Temp\tmp2f Deplacement échoué: La quarantaine est pleine
    C:\WINDOWS\Temp\tmp32 Infecté avec: Trojan.Downloader.Agent.FE
    C:\WINDOWS\Temp\tmp32 Désinfection impossible
    C:\WINDOWS\Temp\tmp32 Déplacé
    C:\WINDOWS\Temp\tmp34 Infecté avec: Trojan.Downloader.Agent.FE
    C:\WINDOWS\Temp\tmp34 Désinfection impossible
    C:\WINDOWS\Temp\tmp34 Déplacé
    C:\WINDOWS\Temp\tmp35 Infecté avec: Trojan.Downloader.Agent.FE
    C:\WINDOWS\Temp\tmp35 Désinfection impossible
    C:\WINDOWS\Temp\tmp35 Déplacé
    C:\WINDOWS\Temp\tmp36 Infecté avec: Trojan.Downloader.Agent.FE
    C:\WINDOWS\Temp\tmp36 Désinfection impossible
    C:\WINDOWS\Temp\tmp36 Deplacement échoué: La quarantaine est pleine
    C:\WINDOWS\Temp\tmp37 Infecté avec: Trojan.Downloader.Agent.FE
    C:\WINDOWS\Temp\tmp37 Désinfection impossible
    C:\WINDOWS\Temp\tmp37 Déplacé
    C:\WINDOWS\Temp\tmp3b Infecté avec: Trojan.Downloader.Agent.FE
    C:\WINDOWS\Temp\tmp3b Désinfection impossible
    C:\WINDOWS\Temp\tmp3c Infecté avec: Trojan.Downloader.Agent.FE
    C:\WINDOWS\Temp\tmp3c Désinfection impossible
    C:\WINDOWS\Temp\tmp3c Deplacement échoué: La quarantaine est pleine
    C:\WINDOWS\Temp\tmp3d Infecté avec: Trojan.Downloader.Agent.FE
    C:\WINDOWS\Temp\tmp3d Désinfection impossible
    C:\WINDOWS\Temp\tmp3d Deplacement échoué: La quarantaine est pleine
    C:\WINDOWS\Temp\tmp3e Infecté avec: Trojan.Downloader.Agent.FE
    C:\WINDOWS\Temp\tmp3e Désinfection impossible
    C:\WINDOWS\Temp\tmp3e Déplacé
    C:\WINDOWS\Temp\tmp3f Infecté avec: Trojan.Downloader.Agent.FE
    C:\WINDOWS\Temp\tmp3f Désinfection impossible
    C:\WINDOWS\Temp\tmp3f Déplacé
    C:\WINDOWS\Temp\tmp4 Infecté avec: Trojan.Downloader.Agent.FE
    C:\WINDOWS\Temp\tmp4 Désinfection impossible
    C:\WINDOWS\Temp\tmp4 Deplacement échoué: La quarantaine est pleine
    C:\WINDOWS\Temp\tmp40 Infecté avec: Trojan.Downloader.Agent.FE
    C:\WINDOWS\Temp\tmp40 Désinfection impossible
    C:\WINDOWS\Temp\tmp40 Déplacé
    C:\WINDOWS\Temp\tmp41 Infecté avec: Trojan.Downloader.Agent.FE
    C:\WINDOWS\Temp\tmp41 Désinfection impossible
    C:\WINDOWS\Temp\tmp41 Deplacement échoué: La quarantaine est pleine
    C:\WINDOWS\Temp\tmp42 Infecté avec: Dropped:Trojan.Clicker.Small.G
    C:\WINDOWS\Temp\tmp42 Deplacement échoué: La quarantaine est pleine
    C:\WINDOWS\Temp\tmp43 Infecté avec: Trojan.Downloader.Agent.FE
    C:\WINDOWS\Temp\tmp43 Désinfection impossible
    C:\WINDOWS\Temp\tmp43 Déplacé
    C:\WINDOWS\Temp\tmp44 Infecté avec: Trojan.Downloader.Agent.FE
    C:\WINDOWS\Temp\tmp44 Désinfection impossible
    C:\WINDOWS\Temp\tmp44 Déplacé
    C:\WINDOWS\Temp\tmp45 Infecté avec: Trojan.Downloader.Agent.FE
    C:\WINDOWS\Temp\tmp45 Désinfection impossible
    C:\WINDOWS\Temp\tmp45 Déplacé
    C:\WINDOWS\Temp\tmp4a Infecté avec: Dropped:Trojan.Clicker.Small.G
    C:\WINDOWS\Temp\tmp4a Deplacement échoué: La quarantaine est pleine
    C:\WINDOWS\Temp\tmp4c Infecté avec: Dropped:Trojan.Clicker.Small.G
    C:\WINDOWS\Temp\tmp4d Infecté avec: Trojan.Downloader.Agent.FE
    C:\WINDOWS\Temp\tmp4d Désinfection impossible
    C:\WINDOWS\Temp\tmp4d Deplacement échoué: La quarantaine est pleine
    C:\WINDOWS\Temp\tmp4e Infecté avec: Trojan.Downloader.Agent.FE
    C:\WINDOWS\Temp\tmp4e Désinfection impossible
    C:\WINDOWS\Temp\tmp4e Déplacé
    C:\WINDOWS\Temp\tmp4f Infecté avec: Dropped:Trojan.Clicker.Small.G
    C:\WINDOWS\Temp\tmp4f Deplacement échoué: La quarantaine est pleine
    C:\WINDOWS\Temp\tmp50 Infecté avec: Trojan.Downloader.Agent.FE
    C:\WINDOWS\Temp\tmp50 Désinfection impossible
    C:\WINDOWS\Temp\tmp50 Deplacement échoué: La quarantaine est pleine
    C:\WINDOWS\Temp\tmp52 Infecté avec: Dropped:Trojan.Clicker.Small.G
    C:\WINDOWS\Temp\tmp52 Déplacé
    C:\WINDOWS\Temp\tmp54 Infecté avec: Dropped:Trojan.Clicker.Small.G
    C:\WINDOWS\Temp\tmp54 Déplacé
    C:\WINDOWS\Temp\tmp56 Infecté avec: Dropped:Trojan.Clicker.Small.G
    C:\WINDOWS\Temp\tmp56 Déplacé
    C:\WINDOWS\Temp\tmp57 Infecté avec: Dropped:Trojan.Clicker.Small.G
    C:\WINDOWS\Temp\tmp58 Infecté avec: Dropped:Trojan.Clicker.Small.G
    C:\WINDOWS\Temp\tmp58 Deplacement échoué: La quarantaine est pleine
    C:\WINDOWS\Temp\tmp59 Infecté avec: Dropped:Trojan.Clicker.Small.G
    C:\WINDOWS\Temp\tmp59 Déplacé
    C:\WINDOWS\Temp\tmp5a Infecté avec: Dropped:Trojan.Clicker.Small.G
    C:\WINDOWS\Temp\tmp5a Deplacement échoué: La quarantaine est pleine
    C:\WINDOWS\Temp\tmp6 Infecté avec: Trojan.Downloader.Agent.FE
    C:\WINDOWS\Temp\tmp6 Désinfection impossible
    C:\WINDOWS\Temp\tmp6 Deplacement échoué: La quarantaine est pleine
    C:\WINDOWS\Temp\tmp62 Infecté avec: Dropped:Trojan.Clicker.Small.G
    C:\WINDOWS\Temp\tmp62 Deplacement échoué: La quarantaine est pleine
    C:\WINDOWS\Temp\tmp63 Infecté avec: Trojan.Downloader.Agent.FE
    C:\WINDOWS\Temp\tmp63 Désinfection impossible
    C:\WINDOWS\Temp\tmp63 Deplacement échoué: La quarantaine est pleine
    C:\WINDOWS\Temp\tmp64 Infecté avec: Trojan.Downloader.Agent.FE
    C:\WINDOWS\Temp\tmp64 Désinfection impossible
    C:\WINDOWS\Temp\tmp64 Déplacé
    C:\WINDOWS\Temp\tmp65 Infecté avec: Dropped:Trojan.Clicker.Small.G
    C:\WINDOWS\Temp\tmp65 Deplacement échoué: La quarantaine est pleine
    C:\WINDOWS\Temp\tmp66 Infecté avec: Trojan.Downloader.Agent.FE
    C:\WINDOWS\Temp\tmp66 Désinfection impossible
    C:\WINDOWS\Temp\tmp66 Deplacement échoué: La quarantaine est pleine
    C:\WINDOWS\Temp\tmp67 Infecté avec: Trojan.Downloader.Agent.FE
    C:\WINDOWS\Temp\tmp67 Désinfection impossible
    C:\WINDOWS\Temp\tmp67 Déplacé
    C:\WINDOWS\Temp\tmp6a Infecté avec: Dropped:Trojan.Clicker.Small.G
    C:\WINDOWS\Temp\tmp6a Deplacement échoué: La quarantaine est pleine
    C:\WINDOWS\Temp\tmp6b Infecté avec: Trojan.Downloader.Agent.FE
    C:\WINDOWS\Temp\tmp6b Désinfection impossible
    C:\WINDOWS\Temp\tmp6b Déplacé
    C:\WINDOWS\Temp\tmp6c Infecté avec: Dropped:Trojan.Clicker.Small.G
    C:\WINDOWS\Temp\tmp6c Deplacement échoué: La quarantaine est pleine
    C:\WINDOWS\Temp\tmp6e Infecté avec: Dropped:Trojan.Clicker.Small.G
    C:\WINDOWS\Temp\tmp6e Déplacé
    C:\WINDOWS\Temp\tmp6f Infecté avec: Dropped:Trojan.Clicker.Small.G
    C:\WINDOWS\Temp\tmp6f Deplacement échoué: La quarantaine est pleine
    C:\WINDOWS\Temp\tmp70 Infecté avec: Dropped:Trojan.Clicker.Small.G
    C:\WINDOWS\Temp\tmp70 Deplacement échoué: La quarantaine est pleine
    C:\WINDOWS\Temp\tmp71 Infecté avec: Dropped:Trojan.Clicker.Small.G
    C:\WINDOWS\Temp\tmp71 Deplacement échoué: La quarantaine est pleine
    C:\WINDOWS\Temp\tmp73 Infecté avec: Dropped:Trojan.Clicker.Small.G
    C:\WINDOWS\Temp\tmp73 Déplacé
    C:\WINDOWS\Temp\tmp75 Infecté avec: Dropped:Trojan.Clicker.Small.G
    C:\WINDOWS\Temp\tmp75 Deplacement échoué: La quarantaine est pleine
    C:\WINDOWS\Temp\tmp76 Infecté avec: Dropped:Trojan.Clicker.Small.G
    C:\WINDOWS\Temp\tmp76 Deplacement échoué: La quarantaine est pleine
    C:\WINDOWS\Temp\tmp77 Infecté avec: Dropped:Trojan.Clicker.Small.G
    C:\WINDOWS\Temp\tmp77 Déplacé
    C:\WINDOWS\Temp\tmp7a Infecté avec: Dropped:Trojan.Clicker.Small.G
    C:\WINDOWS\Temp\tmp7a Deplacement échoué: La quarantaine est pleine
    C:\WINDOWS\Temp\tmp7b Infecté avec: Dropped:Trojan.Clicker.Small.G
    C:\WINDOWS\Temp\tmp7b Deplacement échoué: La quarantaine est pleine
    C:\WINDOWS\Temp\tmp7c Infecté avec: Dropped:Trojan.Clicker.Small.G
    C:\WINDOWS\Temp\tmp7c Déplacé
    C:\WINDOWS\Temp\tmp7e Infecté avec: Backdoor.SDbot.ALL
    C:\WINDOWS\Temp\tmp7e Désinfection impossible
    C:\WINDOWS\Temp\tmp7e Deplacement échoué: La quarantaine est pleine
    C:\WINDOWS\Temp\tmp8 Infecté avec: Trojan.Downloader.Agent.FE
    C:\WINDOWS\Temp\tmp8 Désinfection impossible
    C:\WINDOWS\Temp\tmp8 Déplacé
    C:\WINDOWS\Temp\tmp81 Infecté avec: Dropped:Trojan.Clicker.Small.G
    C:\WINDOWS\Temp\tmp81 Déplacé
    C:\WINDOWS\Temp\tmp84 Infecté avec: Dropped:Trojan.Clicker.Small.G
    C:\WINDOWS\Temp\tmp84 Deplacement échoué: La quarantaine est pleine
    C:\WINDOWS\Temp\tmp87 Infecté avec: Trojan.Downloader.Agent.FE
    C:\WINDOWS\Temp\tmp87 Désinfection impossible
    C:\WINDOWS\Temp\tmp87 Déplacé
    C:\WINDOWS\Temp\tmp88 Infecté avec: Trojan.Downloader.Agent.FE
    C:\WINDOWS\Temp\tmp88 Désinfection impossible
    C:\WINDOWS\Temp\tmp88 Deplacement échoué: La quarantaine est pleine
    C:\WINDOWS\Temp\tmp8a Infecté avec: Trojan.Downloader.Agent.FE
    C:\WINDOWS\Temp\tmp8a Désinfection impossible
    C:\WINDOWS\Temp\tmp8a Deplacement échoué: La quarantaine est pleine
    C:\WINDOWS\Temp\tmp8c Infecté avec: Trojan.Downloader.Agent.FE
    C:\WINDOWS\Temp\tmp8c Désinfection impossible
    C:\WINDOWS\Temp\tmp8c Deplacement échoué: La quarantaine est pleine
    C:\WINDOWS\Temp\tmp8d Infecté avec: Trojan.Downloader.Agent.FE
    C:\WINDOWS\Temp\tmp8d Désinfection impossible
    C:\WINDOWS\Temp\tmp8d Déplacé
    C:\WINDOWS\Temp\tmp8e Infecté avec: Trojan.Downloader.Agent.FE
    C:\WINDOWS\Temp\tmp8e Désinfection impossible
    C:\WINDOWS\Temp\tmp8e Déplacé
    C:\WINDOWS\Temp\tmp8f Infecté avec: Trojan.Downloader.Agent.FE
    C:\WINDOWS\Temp\tmp8f Désinfection impossible
    C:\WINDOWS\Temp\tmp8f Déplacé
    C:\WINDOWS\Temp\tmp9 Infecté avec: Trojan.Downloader.Agent.FE
    C:\WINDOWS\Temp\tmp9 Désinfection impossible
    C:\WINDOWS\Temp\tmp9 Deplacement échoué: La quarantaine est pleine
    C:\WINDOWS\Temp\tmp91 Infecté avec: Trojan.Downloader.Agent.FE
    C:\WINDOWS\Temp\tmp91 Désinfection impossible
    C:\WINDOWS\Temp\tmp91 Deplacement échoué: La quarantaine est pleine
    C:\WINDOWS\Temp\tmp92 Infecté avec: Trojan.Downloader.Agent.FE
    C:\WINDOWS\Temp\tmp92 Désinfection impossible
    C:\WINDOWS\Temp\tmp92 Deplacement échoué: La quarantaine est pleine
    C:\WINDOWS\Temp\tmp93 Infecté avec: Trojan.Downloader.Agent.FE
    C:\WINDOWS\Temp\tmp93 Désinfection impossible
    C:\WINDOWS\Temp\tmp93 Deplacement échoué: La quarantaine est pleine
    C:\WINDOWS\Temp\tmp94 Infecté avec: Trojan.Downloader.Agent.FE
    C:\WINDOWS\Temp\tmp94 Désinfection impossible
    C:\WINDOWS\Temp\tmp94 Déplacé
    C:\WINDOWS\Temp\tmp95 Infecté avec: Trojan.Downloader.Agent.FE
    C:\WINDOWS\Temp\tmp95 Désinfection impossible
    C:\WINDOWS\Temp\tmp95 Deplacement échoué: La quarantaine est pleine
    C:\WINDOWS\Temp\tmp96 Infecté avec: Trojan.Downloader.Agent.FE
    C:\WINDOWS\Temp\tmp96 Désinfection impossible
    C:\WINDOWS\Temp\tmp96 Deplacement échoué: La quarantaine est pleine
    C:\WINDOWS\Temp\tmp97 Infecté avec: Trojan.Downloader.Agent.FE
    C:\WINDOWS\Temp\tmp97 Désinfection impossible
    C:\WINDOWS\Temp\tmp97 Deplacement échoué: La quarantaine est pleine
    C:\WINDOWS\Temp\tmp98 Infecté avec: Trojan.Downloader.Agent.FE
    C:\WINDOWS\Temp\tmp98 Désinfection impossible
    C:\WINDOWS\Temp\tmp98 Deplacement échoué: La quarantaine est pleine
    C:\WINDOWS\Temp\tmp9b Infecté avec: Trojan.Downloader.Agent.FE
    C:\WINDOWS\Temp\tmp9b Désinfection impossible
    C:\WINDOWS\Temp\tmp9b Déplacé
    C:\WINDOWS\Temp\tmp9c Infecté avec: Trojan.Downloader.Agent.FE
    C:\WINDOWS\Temp\tmp9c Désinfection impossible
    C:\WINDOWS\Temp\tmp9c Déplacé
    C:\WINDOWS\Temp\tmp9e Infecté avec: Trojan.Downloader.Agent.FE
    C:\WINDOWS\Temp\tmp9e Désinfection impossible
    C:\WINDOWS\Temp\tmp9e Déplacé
    C:\WINDOWS\Temp\tmp9f Infecté avec: Trojan.Downloader.Agent.FE
    C:\WINDOWS\Temp\tmp9f Désinfection impossible
    C:\WINDOWS\Temp\tmp9f Deplacement échoué: La quarantaine est pleine
    C:\WINDOWS\Temp\tmpa Infecté avec: Trojan.Downloader.Agent.FE
    C:\WINDOWS\Temp\tmpa Désinfection impossible
    C:\WINDOWS\Temp\tmpa Déplacé
    C:\WINDOWS\Temp\tmpa0 Infecté avec: Trojan.Downloader.Agent.FE
    C:\WINDOWS\Temp\tmpa0 Désinfection impossible
    C:\WINDOWS\Temp\tmpa0 Déplacé
    C:\WINDOWS\Temp\tmpa1 Infecté avec: Trojan.Downloader.Agent.FE
    C:\WINDOWS\Temp\tmpa1 Désinfection impossible
    C:\WINDOWS\Temp\tmpa1 Déplacé
    C:\WINDOWS\Temp\tmpa3 Infecté avec: Trojan.Downloader.Agent.FE
    C:\WINDOWS\Temp\tmpa3 Désinfection impossible
    C:\WINDOWS\Temp\tmpa3 Déplacé
    C:\WINDOWS\Temp\tmpa4 Infecté avec: Trojan.Downloader.Agent.FE
    C:\WINDOWS\Temp\tmpa4 Désinfection impossible
    C:\WINDOWS\Temp\tmpa4 Deplacement échoué: La quarantaine est pleine
    C:\WINDOWS\Temp\tmpa5 Infecté avec: Trojan.Downloader.Agent.FE
    C:\WINDOWS\Temp\tmpa5 Désinfection impossible
    C:\WINDOWS\Temp\tmpa8 Infecté avec: Trojan.Downloader.Agent.FE
    C:\WINDOWS\Temp\tmpa8 Désinfection impossible
    C:\WINDOWS\Temp\tmpa8 Deplacement échoué: La quarantaine est pleine
    C:\WINDOWS\Temp\tmpac Infecté avec: Trojan.Downloader.Agent.FE
    C:\WINDOWS\Temp\tmpac Désinfection impossible
    C:\WINDOWS\Temp\tmpac Déplacé
    C:\WINDOWS\Temp\tmpad Infecté avec: Trojan.Downloader.Agent.FE
    C:\WINDOWS\Temp\tmpad Désinfection impossible
    C:\WINDOWS\Temp\tmpad Déplacé
    C:\WINDOWS\Temp\tmpae Infecté avec: Trojan.Downloader.Agent.FE
    C:\WINDOWS\Temp\tmpae Désinfection impossible
    C:\WINDOWS\Temp\tmpae Déplacé
    C:\WINDOWS\Temp\tmpaf Infecté avec: Backdoor.Rbot.AIE
    C:\WINDOWS\Temp\tmpaf Désinfection impossible
    C:\WINDOWS\Temp\tmpb Infecté avec: Trojan.Downloader.Agent.FE
    C:\WINDOWS\Temp\tmpb Désinfection impossible
    C:\WINDOWS\Temp\tmpb Deplacement échoué: La quarantaine est pleine
    C:\WINDOWS\Temp\tmpb0 Infecté avec: Backdoor.Rbot.AIE
    C:\WINDOWS\Temp\tmpb0 Désinfection impossible
    C:\WINDOWS\Temp\tmpb0 Deplacement échoué: La quarantaine est pleine
    C:\WINDOWS\Temp\tmpb2 Infecté avec: Backdoor.Rbot.AIE
    C:\WINDOWS\Temp\tmpb2 Désinfection impossible
    C:\WINDOWS\Temp\tmpb2 Déplacé
    C:\WINDOWS\Temp\tmpb3 Infecté avec: Backdoor.Rbot.AIE
    C:\WINDOWS\Temp\tmpb3 Désinfection impossible
    C:\WINDOWS\Temp\tmpb3 Deplacement échoué: La quarantaine est pleine
    C:\WINDOWS\Temp\tmpb5 Infecté avec: Backdoor.Rbot.AIE
    C:\WINDOWS\Temp\tmpb5 Désinfection impossible
    C:\WINDOWS\Temp\tmpb5 Déplacé
    C:\WINDOWS\Temp\tmpb6 Infecté avec: Backdoor.Rbot.AIE
    C:\WINDOWS\Temp\tmpb6 Désinfection impossible
    C:\WINDOWS\Temp\tmpb6 Déplacé
    C:\WINDOWS\Temp\tmpb8 Infecté avec: Backdoor.Rbot.AIE
    C:\WINDOWS\Temp\tmpb8 Désinfection impossible
    C:\WINDOWS\Temp\tmpb8 Déplacé
    C:\WINDOWS\Temp\tmpb9 Infecté avec: Backdoor.Rbot.AIE
    C:\WINDOWS\Temp\tmpb9 Désinfection impossible
    C:\WINDOWS\Temp\tmpb9 Deplacement échoué: La quarantaine est pleine
    C:\WINDOWS\Temp\tmpba Infecté avec: Backdoor.Rbot.AIE
    C:\WINDOWS\Temp\tmpba Désinfection impossible
    C:\WINDOWS\Temp\tmpba Déplacé
    C:\WINDOWS\Temp\tmpbc Infecté avec: Backdoor.Rbot.AIE
    C:\WINDOWS\Temp\tmpbc Désinfection impossible
    C:\WINDOWS\Temp\tmpbc Déplacé
    C:\WINDOWS\Temp\tmpc Infecté avec: Trojan.Downloader.Agent.FE
    C:\WINDOWS\Temp\tmpc Désinfection impossible
    C:\WINDOWS\Temp\tmpc2 Infecté avec: Backdoor.Rbot.AIE
    C:\WINDOWS\Temp\tmpc2 Désinfection impossible
    C:\WINDOWS\Temp\tmpc2 Déplacé
    C:\WINDOWS\Temp\tmpc3 Infecté avec: Backdoor.Rbot.AIE
    C:\WINDOWS\Temp\tmpc3 Désinfection impossible
    C:\WINDOWS\Temp\tmpc3 Déplacé
    C:\WINDOWS\Temp\tmpc4 Infecté avec: Backdoor.Rbot.AIE
    C:\WINDOWS\Temp\tmpc4 Désinfection impossible
    C:\WINDOWS\Temp\tmpc4 Déplacé
    C:\WINDOWS\Temp\tmpc5 Infecté avec: Backdoor.Rbot.AIE
    C:\WINDOWS\Temp\tmpc5 Désinfection impossible
    C:\WINDOWS\Temp\tmpc5 Déplacé
    C:\WINDOWS\Temp\tmpc6 Infecté avec: Backdoor.Rbot.AIE
    C:\WINDOWS\Temp\tmpc6 Désinfection impossible
    C:\WINDOWS\Temp\tmpc6 Deplacement échoué: La quarantaine est pleine
    C:\WINDOWS\Temp\tmpc8 Infecté avec: Backdoor.Rbot.AIE
    C:\WINDOWS\Temp\tmpc8 Désinfection impossible
    C:\WINDOWS\Temp\tmpc8 Déplacé
    C:\WINDOWS\Temp\tmpca Infecté avec: Backdoor.Rbot.AIE
    C:\WINDOWS\Temp\tmpca Désinfection impossible
    C:\WINDOWS\Temp\tmpca Deplacement échoué: La quarantaine est pleine
    C:\WINDOWS\Temp\tmpcc Infecté avec: Backdoor.Rbot.AIE
    C:\WINDOWS\Temp\tmpcc Désinfection impossible
    C:\WINDOWS\Temp\tmpcc Deplacement échoué: La quarantaine est pleine
    C:\WINDOWS\Temp\tmpcd Infecté avec: Backdoor.Rbot.AIE
    C:\WINDOWS\Temp\tmpcd Désinfection impossible
    C:\WINDOWS\Temp\tmpcd Déplacé
    C:\WINDOWS\Temp\tmpd Infecté avec: Trojan.Downloader.Agent.FE
    C:\WINDOWS\Temp\tmpd Désinfection impossible
    C:\WINDOWS\Temp\tmpd Deplacement échoué: La quarantaine est pleine
    C:\WINDOWS\Temp\tmpd0 Infecté avec: Backdoor.Rbot.AIE
    C:\WINDOWS\Temp\tmpd0 Désinfection impossible
    C:\WINDOWS\Temp\tmpd0 Deplacement échoué: La quarantaine est pleine
    C:\WINDOWS\Temp\tmpd3 Infecté avec: Trojan.Downloader.Agent.FE
    C:\WINDOWS\Temp\tmpd3 Désinfection impossible
    C:\WINDOWS\Temp\tmpd3 Déplacé
    C:\WINDOWS\Temp\tmpd4 Infecté avec: Trojan.Downloader.Agent.FE
    C:\WINDOWS\Temp\tmpd4 Désinfection impossible
    C:\WINDOWS\Temp\tmpd4 Deplacement échoué: La quarantaine est pleine
    C:\WINDOWS\Temp\tmpd5 Infecté avec: Backdoor.Rbot.AIE
    C:\WINDOWS\Temp\tmpd5 Désinfection impossible
    C:\WINDOWS\Temp\tmpd9 Infecté avec: Trojan.Downloader.Agent.FE
    C:\WINDOWS\Temp\tmpd9 Désinfection impossible
    C:\WINDOWS\Temp\tmpd9 Deplacement échoué: La quarantaine est pleine
    C:\WINDOWS\Temp\tmpdb Infecté avec: Backdoor.Rbot.AIE
    C:\WINDOWS\Temp\tmpdb Désinfection impossible
    C:\WINDOWS\Temp\tmpdb Déplacé
    C:\WINDOWS\Temp\tmpe0 Infecté avec: Backdoor.Rbot.AIE
    C:\WINDOWS\Temp\tmpe0 Désinfection impossible
    C:\WINDOWS\Temp\tmpe0 Deplacement échoué: La quarantaine est pleine
    C:\WINDOWS\Temp\tmpe1 Infecté avec: Backdoor.Rbot.AIE
    C:\WINDOWS\Temp\tmpe1 Désinfection impossible
    C:\WINDOWS\Temp\tmpe1 Déplacé
    C:\WINDOWS\Temp\tmpe4 Infecté avec: Backdoor.Rbot.AIE
    C:\WINDOWS\Temp\tmpe4 Désinfection impossible
    C:\WINDOWS\Temp\tmpe4 Déplacé
    C:\WINDOWS\Temp\tmpe7 Infecté avec: Backdoor.Rbot.AIE
    C:\WINDOWS\Temp\tmpe7 Désinfection impossible
    C:\WINDOWS\Temp\tmpe7 Déplacé
    C:\WINDOWS\Temp\tmpe8 Infecté avec: Backdoor.Rbot.AIE
    C:\WINDOWS\Temp\tmpe8 Désinfection impossible
    C:\WINDOWS\Temp\tmpe8 Deplacement échoué: La quarantaine est pleine
    C:\WINDOWS\Temp\tmpe9 Infecté avec: Backdoor.Rbot.AIE
    C:\WINDOWS\Temp\tmpe9 Désinfection impossible
    C:\WINDOWS\Temp\tmpe9 Déplacé
    C:\WINDOWS\Temp\tmpea Infecté avec: Backdoor.Rbot.AIE
    C:\WINDOWS\Temp\tmpea Désinfection impossible
    C:\WINDOWS\Temp\tmpea Déplacé
    C:\WINDOWS\Temp\tmpec Infecté avec: Backdoor.Rbot.AIE
    C:\WINDOWS\Temp\tmpec Désinfection impossible
    C:\WINDOWS\Temp\tmped Infecté avec: Backdoor.Rbot.AIE
    C:\WINDOWS\Temp\tmped Désinfection impossible
    C:\WINDOWS\Temp\tmped Deplacement échoué: La quarantaine est pleine
    C:\WINDOWS\Temp\tmpf0 Infecté avec: Backdoor.Rbot.AIE
    C:\WINDOWS\Temp\tmpf0 Désinfection impossible
    C:\WINDOWS\Temp\tmpf0 Deplacement échoué: La quarantaine est pleine
    C:\WINDOWS\Temp\tmpf1 Infecté avec: Backdoor.Rbot.AIE
    C:\WINDOWS\Temp\tmpf1 Désinfection impossible
    C:\WINDOWS\Temp\tmpf1 Deplacement échoué: La quarantaine est pleine
    C:\WINDOWS\Temp\tmpf4 Infecté avec: Backdoor.Rbot.AIE
    C:\WINDOWS\Temp\tmpf4 Désinfection impossible
    C:\WINDOWS\Temp\tmpf4 Déplacé
    C:\WINDOWS\Temp\tmpf5 Infecté avec: Backdoor.Rbot.AIE
    C:\WINDOWS\Temp\tmpf5 Désinfection impossible
    C:\WINDOWS\Temp\tmpf5 Déplacé
    C:\WINDOWS\winsysupd10.exe Infecté avec: Trojan.Agent.DW
    C:\WINDOWS\winsysupd10.exe Désinfection impossible
    C:\WINDOWS\winsysupd10.exe Deplacement échoué: La quarantaine est pleine

    Il me semble que j'ai beaucoup d'anti tout et j'ai peur qu'ils n'entrent en conflit :
    avast, ewido, bitdefender, hijackthis, spybot, cc cleaner
    trop d'antivirus ne tueraient-ils pas l'antivirus ???
    merci de votre aide
    à très bientôt j'espère

    J AI RENVOYE LE TOUT CAR JE CROIS QU'UNE PARTIE MANQUAIT AU RAPPORT
    0
  4. aranjuez31 Messages postés 8161 Date d'inscription   Statut Contributeur 354
     
    hello
    ""Il me semble que j'ai beaucoup d'anti tout et j'ai peur qu'ils n'entrent en conflit :
    avast, ewido, bitdefender, hijackthis, spybot, cc cleaner
    trop d'antivirus ne tueraient-ils pas l'antivirus ??? ""

    ne t'en fais pas on va mettre de l'ordre

    ne confonds pas:
    ewido: anti trojan/malware
    ccleaner: nettoyeur de registres et cookies/fichiers tempos
    avast : antivirus comme bitdefender

    ya du boulot, je procéde par touches

    1/ fais ceci
    cleanup40 (nettoyeur de cookies+temps+tempos+prefetch+historique+etc..)
    http://pageperso.aol.fr/balltrap34/democleanup.htm
    ¤Télécharger CleanUp40 (qui élimine les fichiers temporaires) sur ce lien : http://pageperso.aol.fr/Balltrap34/CleanUp40.exe

    2/ procéde à une défragmentation pour gagner de la vitesse

    3/ ouvre hijac et fixe ces lignes comme ceci
    (http://pageperso.aol.fr/balltrap34/demohijack.htm)

    O15 - Trusted Zone: http://click.getmirar.com (HKLM)
    O15 - Trusted Zone: http://click.mirarsearch.com (HKLM)
    O15 - Trusted Zone: http://redirect.mirarsearch.com (HKLM)
    +
    O16 - DPF: {8FCDF9D9-A28B-480F-8C3D-581F119A8AB8} - http://static.zangocash.com/cab/Zango/ie/bridge-c32.cab
    O16 - DPF: {9A9307A0-7DA4-4DAF-B042-5009F29E09E1} (ActiveScan Installer Class) - http://acs.pandasoftware.com/activescan/as5free/asinst.cab
    O16 - DPF: {9AC54695-69A4-46F1-BE10-10C74F9520D5} - http://cabs.elitemediagroup.net/cabs/mediaview.cab
    O16 - DPF: {B38870E4-7ECB-40DA-8C6A-595F0A5519FF} (MsnMessengerSetupDownloadControl Class) - http://messenger.msn.com/download/MsnMessengerSetupDownloader.cab

    je continue dans un autre message
    je vais déplacer ton log par commodité de lecture
    O16 - DPF: {BFF1950D-B1B4-4AE8-B842-B2CCF06D9A1B} (Zylom Games Player) - http://game06.zylom.servicesalacarte.wanadoo.fr/activex/zylomgamesplayer.cab
    O16 - DPF: {F919FBD3-A96B-4679-AF26-F551439BB5FD} - http://fr.errorsafe.com/pages/scanner_fr/ErrorSafeScannerInstallFR.cab

    0
  5. Vous n’avez pas trouvé la réponse que vous recherchez ?

    Posez votre question
  6. aranjuez31 Messages postés 8161 Date d'inscription   Statut Contributeur 354
     
    re
    déplament de l'hijack

    Logfile of HijackThis v1.99.1
    Scan saved at 09:20:12, on 02/03/2006
    Platform: Windows XP (WinNT 5.01.2600)
    MSIE: Internet Explorer v6.00 (6.00.2600.0000)

    Running processes:
    C:\WINDOWS\System32\smss.exe
    C:\WINDOWS\system32\winlogon.exe
    C:\WINDOWS\system32\services.exe
    C:\WINDOWS\system32\lsass.exe
    C:\WINDOWS\system32\svchost.exe
    C:\WINDOWS\System32\svchost.exe
    C:\WINDOWS\Explorer.EXE
    C:\WINDOWS\system32\spoolsv.exe
    C:\Program Files\Creative\Shared Files\CAMTRAY.EXE
    C:\winsysban11.exe
    C:\Program Files\Softwin\BitDefender9\bdmcon.exe
    C:\Program Files\Softwin\BitDefender9\bdnagent.exe
    C:\Program Files\Softwin\BitDefender9\bdswitch.exe
    C:\Program Files\Adobe\Photoshop Album Edition Découverte\3.0\Apps\apdproxy.exe
    C:\WINDOWS\System32\ctfmon.exe
    C:\Program Files\Messenger\msmsgs.exe
    C:\Program Files\MSN Messenger\MsnMsgr.Exe
    C:\Program Files\Skype\Phone\Skype.exe
    C:\Program Files\WinZip\WZQKPICK.EXE
    C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
    C:\Program Files\Alwil Software\Avast4\ashServ.exe
    C:\Program Files\ewido anti-malware\ewidoctrl.exe
    C:\WINDOWS\system32\hal.exe
    C:\WINDOWS\System32\svchost.exe
    C:\Program Files\Fichiers communs\Softwin\BitDefender Communicator\xcommsvr.exe
    C:\Program Files\Fichiers communs\Softwin\BitDefender Scan Server\bdss.exe
    C:\Program Files\Fichiers communs\Softwin\BitDefender Update Service\livesrv.exe
    C:\Program Files\Softwin\BitDefender9\vsserv.exe
    C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
    C:\WINDOWS\system32\cmd.exe
    C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
    C:\Program Files\Internet Explorer\iexplore.exe
    C:\Program Files\Internet Explorer\iexplore.exe
    C:\Program Files\Internet Explorer\iexplore.exe
    C:\Documents and Settings\zebulon\Bureau\HijackThis.exe
    C:\Program Files\Fichiers communs\Softwin\BitDefender Update Service\upgrepl.exe

    R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://searchbar.findthewebsiteyouneed.com
    R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = http://searchbar.findthewebsiteyouneed.com
    R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://searchbar.findthewebsiteyouneed.com
    R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.findthewebsiteyouneed.com
    R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://searchbar.findthewebsiteyouneed.com
    R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant = http://searchbar.findthewebsiteyouneed.com
    R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
    R3 - URLSearchHook: (no name) - {F27E6D61-84A7-FC27-869D-A30FD7E240C5} - (no file)
    O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll
    O2 - BHO: (no name) - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
    O2 - BHO: (no name) - {6001CDF7-6F45-471b-A203-0225615E35A7} - C:\WINDOWS\DH.dll
    O2 - BHO: RieMon Class - {70F6A776-579A-4C95-BA88-134253907752} - C:\WINDOWS\System32\irsmgeht.dll
    O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll
    O2 - BHO: ADOUsefulNet Object - {7CB093AC-11DF-46D5-9343-CE4BD90C159C} - C:\WINDOWS\System32\jkhhi.dll
    O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar3.dll
    O2 - BHO: (no name) - {EA32FB3B-21C9-42cc-B8EF-01A9B28EDB0D} - C:\WINDOWS\system32\ddcca.dll
    O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar3.dll
    O3 - Toolbar: UCmore XP - The Search Accelerator - {44BE0690-5429-47f0-85BB-3FFD8020233E} - C:\Program Files\TheSearchAccelerator\UCMTSAIE.dll
    O4 - HKLM\..\Run: [Creative WebCam Tray] C:\Program Files\Creative\Shared Files\CAMTRAY.EXE
    O4 - HKLM\..\Run: [winsysupd] C:\\winsysupd12.exe
    O4 - HKLM\..\Run: [gimmygames] C:\windows\gimmygames11.exe
    O4 - HKLM\..\Run: [NeroFilterCheck] C:\WINDOWS\system32\NeroCheck.exe
    O4 - HKLM\..\Run: [winsysban] C:\\winsysban11.exe
    O4 - HKLM\..\Run: [Windows update adbpro] update32.exe
    O4 - HKLM\..\Run: [BDMCon] "C:\Program Files\Softwin\BitDefender9\bdmcon.exe"
    O4 - HKLM\..\Run: [BDNewsAgent] "C:\Program Files\Softwin\BitDefender9\bdnagent.exe"
    O4 - HKLM\..\Run: [BDSwitchAgent] "C:\Program Files\Softwin\BitDefender9\bdswitch.exe"
    O4 - HKLM\..\Run: [Adobe Photo Downloader] "C:\Program Files\Adobe\Photoshop Album Edition Découverte\3.0\Apps\apdproxy.exe"
    O4 - HKLM\..\RunServices: [Microsoft Update] wuamkp.exe
    O4 - HKLM\..\RunServices: [Windows update adbpro] update32.exe
    O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\ctfmon.exe
    O4 - HKCU\..\Run: [Microsoft Update] msconfg.exe
    O4 - HKCU\..\Run: [MSMSGS] "C:\Program Files\Messenger\msmsgs.exe" /background
    O4 - HKCU\..\Run: [Hcatpn] C:\WINDOWS\System32\??rvices.exe
    O4 - HKCU\..\Run: [MsnMsgr] "C:\Program Files\MSN Messenger\MsnMsgr.Exe" /background
    O4 - HKCU\..\Run: [Skype] "C:\Program Files\Skype\Phone\Skype.exe" /nosplash /minimized
    O4 - Global Startup: Lancement rapide d'Adobe Reader.lnk = C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe
    O4 - Global Startup: WinZip Quick Pick.lnk = C:\Program Files\WinZip\WZQKPICK.EXE
    O8 - Extra context menu item: &Traduire à partir de l'anglais - res://c:\program files\google\GoogleToolbar3.dll/cmwordtrans.html
    O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~2\OFFICE11\EXCEL.EXE/3000
    O8 - Extra context menu item: Pages liées - res://c:\program files\google\GoogleToolbar3.dll/cmbacklinks.html
    O8 - Extra context menu item: Pages similaires - res://c:\program files\google\GoogleToolbar3.dll/cmsimilar.html
    O8 - Extra context menu item: Recherche &Google - res://c:\program files\google\GoogleToolbar3.dll/cmsearch.html
    O8 - Extra context menu item: Version de la page actuelle disponible dans le cache Google - res://c:\program files\google\GoogleToolbar3.dll/cmcache.html
    O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll
    O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll
    O9 - Extra button: Recherche - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\OFFICE11\REFIEBAR.DLL
    O15 - Trusted Zone: http://click.getmirar.com (HKLM)
    O15 - Trusted Zone: http://click.mirarsearch.com (HKLM)
    O15 - Trusted Zone: http://redirect.mirarsearch.com (HKLM)
    O16 - DPF: {8FCDF9D9-A28B-480F-8C3D-581F119A8AB8} - http://static.zangocash.com/cab/Zango/ie/bridge-c32.cab
    O16 - DPF: {9A9307A0-7DA4-4DAF-B042-5009F29E09E1} (ActiveScan Installer Class) - http://acs.pandasoftware.com/activescan/as5free/asinst.cab
    O16 - DPF: {9AC54695-69A4-46F1-BE10-10C74F9520D5} - http://cabs.elitemediagroup.net/cabs/mediaview.cab
    O16 - DPF: {B38870E4-7ECB-40DA-8C6A-595F0A5519FF} (MsnMessengerSetupDownloadControl Class) - http://messenger.msn.com/download/MsnMessengerSetupDownloader.cab
    O16 - DPF: {BFF1950D-B1B4-4AE8-B842-B2CCF06D9A1B} (Zylom Games Player) - http://game06.zylom.servicesalacarte.wanadoo.fr/activex/zylomgamesplayer.cab
    O16 - DPF: {F919FBD3-A96B-4679-AF26-F551439BB5FD} - http://fr.errorsafe.com/pages/scanner_fr/ErrorSafeScannerInstallFR.cab
    O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - "C:\PROGRA~1\MSNMES~1\msgrapp.dll" (file missing)
    O18 - Filter: text/html - {2F6E85DC-8D2D-4896-8A4F-7DF8A7B1749D} - C:\PROGRA~1\Jalmp\jalmp.dll
    O20 - Winlogon Notify: ddcca - C:\WINDOWS\SYSTEM32\ddcca.dll
    O20 - Winlogon Notify: jkhhi - C:\WINDOWS\System32\jkhhi.dll
    O20 - Winlogon Notify: RunOnceEx - C:\WINDOWS\system32\vsscript.dll (file missing)
    O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - Unknown owner - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
    O23 - Service: ATIintergrated - Unknown owner - C:\WINDOWS\atigraphics.exe (file missing)
    O23 - Service: avast! Antivirus - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashServ.exe
    O23 - Service: avast! Mail Scanner - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe" /service (file missing)
    O23 - Service: avast! Web Scanner - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe" /service (file missing)
    O23 - Service: BitDefender Scan Server (bdss) - Unknown owner - C:\Program Files\Fichiers communs\Softwin\BitDefender Scan Server\bdss.exe" /service (file missing)
    O23 - Service: ewido security suite control - ewido networks - C:\Program Files\ewido anti-malware\ewidoctrl.exe
    O23 - Service: fwnet64 (fwnet) - Unknown owner - C:\WINDOWS\fwnet64.exe (file missing)
    O23 - Service: inetdns (InetDns) (inetdns) - Unknown owner - C:\WINDOWS\system32\inetdns.exe (file missing)
    O23 - Service: BitDefender Desktop Update Service (LIVESRV) - Unknown owner - C:\Program Files\Fichiers communs\Softwin\BitDefender Update Service\livesrv.exe" /service (file missing)
    O23 - Service: Microsoft Dynamic Network (MDNetwork) - Unknown owner - C:\WINDOWS\system32\MDN.exe (file missing)
    O23 - Service: mswmf32 - Unknown owner - C:\WINDOWS\mswmf32.exe (file missing)
    O23 - Service: netconf32 - Unknown owner - C:\WINDOWS\netconf32.exe (file missing)
    O23 - Service: nvidGUIv (nvidGUIv2) - Unknown owner - C:\WINDOWS\nvidGUIv.exe (file missing)
    O23 - Service: BitDefender Virus Shield (VSSERV) - Unknown owner - C:\Program Files\Softwin\BitDefender9\vsserv.exe" /service (file missing)
    O23 - Service: Win32Sr - Unknown owner - C:\WINDOWS\win32ssr.exe (file missing)
    O23 - Service: BitDefender Communicator (XCOMM) - Unknown owner - C:\Program Files\Fichiers communs\Softwin\BitDefender Communicator\xcommsvr.exe" /service (file missing)

    0
  7. aranjuez31 Messages postés 8161 Date d'inscription   Statut Contributeur 354
     
    re
    fixe aussi ces lignes

    R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://searchbar.findthewebsiteyouneed.com
    R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = http://searchbar.findthewebsiteyouneed.com
    R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://searchbar.findthewebsiteyouneed.com
    R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.findthewebsiteyouneed.com
    R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://searchbar.findthewebsiteyouneed.com
    R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant = http://searchbar.findthewebsiteyouneed.com
    +
    O2 - BHO: (no name) - {6001CDF7-6F45-471b-A203-0225615E35A7} - C:\WINDOWS\DH.dll
    O2 - BHO: RieMon Class - {70F6A776-579A-4C95-BA88-134253907752} - C:\WINDOWS\System32\irsmgeht.dll
    O2 - BHO: (no name) - {EA32FB3B-21C9-42cc-B8EF-01A9B28EDB0D} - C:\WINDOWS\system32\ddcca.dll
    +
    O3 - Toolbar: UCmore XP - The Search Accelerator - {44BE0690-5429-47f0-85BB-3FFD8020233E} - C:\Program Files\TheSearchAccelerator\UCMTSAIE.dll
    +
    O4 - HKCU\..\Run: [Microsoft Update] msconfg.exe

    ce n est pas fini
    ya des 023 à traiter aussi
    prochain message

    0
  8. aranjuez31 Messages postés 8161 Date d'inscription   Statut Contributeur 354
     
    re
    concernant les 023

    demar+exécuter+ tape services.msc+ok

    dans le déroulant tu cherches
    Win32Sr
    fwnet64 (fwnet)
    inetdns (InetDns
    netconf32
    et tu désactives ces programmes
    ~~~~~~
    on va supprimer un anivirus car effectivement deux font que plus personne ne fait son boulot
    on mettra un pare-feu de qualité aprés

    demar+panneau config+ajout/suppression
    desinstalle bitdefender
    ~~~~~~~
    remets-moi ensuite un nouvel hijac que je puisse y voir plus clair

    ce ne sera pas fini pour autant, car t'as chargé vraiment bcp
    0
    1. Utilisateur anonyme
       
      bien, alors j'ai fait comme tu m'as indiqué, sauf que je n'ai pu désactiver les msc.
      ci dessous le rapport hijackthis
      je n'ai pas encore désinstallé bitdefender. (de peur de faire une connerie !!)
      Merci pour ton aide,
      c'est très formateur, meme si je ne comprends pas tout !!
      merci
      à bientôt !!

      Logfile of HijackThis v1.99.1
      Scan saved at 23:21:54, on 02/03/2006
      Platform: Windows XP (WinNT 5.01.2600)
      MSIE: Internet Explorer v6.00 (6.00.2600.0000)

      Running processes:
      C:\WINDOWS\System32\smss.exe
      C:\WINDOWS\system32\winlogon.exe
      C:\WINDOWS\system32\services.exe
      C:\WINDOWS\system32\lsass.exe
      C:\WINDOWS\system32\svchost.exe
      C:\WINDOWS\System32\svchost.exe
      C:\WINDOWS\Explorer.EXE
      C:\WINDOWS\system32\spoolsv.exe
      C:\Program Files\Creative\Shared Files\CAMTRAY.EXE
      C:\Program Files\Softwin\BitDefender9\bdnagent.exe
      C:\Program Files\Softwin\BitDefender9\bdswitch.exe
      C:\Program Files\Adobe\Photoshop Album Edition Découverte\3.0\Apps\apdproxy.exe
      C:\mousepad.exe
      C:\WINDOWS\System32\ctfmon.exe
      C:\Program Files\Messenger\msmsgs.exe
      C:\Program Files\MSN Messenger\MsnMsgr.Exe
      C:\Program Files\Skype\Phone\Skype.exe
      C:\Program Files\WinZip\WZQKPICK.EXE
      C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
      C:\Program Files\Alwil Software\Avast4\ashServ.exe
      C:\Program Files\ewido anti-malware\ewidoctrl.exe
      C:\WINDOWS\system32\hal.exe
      C:\WINDOWS\System32\svchost.exe
      C:\Program Files\Fichiers communs\Softwin\BitDefender Communicator\xcommsvr.exe
      C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
      C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
      C:\WINDOWS\system32\cmd.exe
      C:\Program Files\Fichiers communs\Softwin\BitDefender Update Service\livesrv.exe
      C:\Program Files\Fichiers communs\Softwin\BitDefender Scan Server\bdss.exe
      C:\Program Files\Softwin\BitDefender9\vsserv.exe
      c:\program files\softwin\bitdefender9\bdmcon.exe
      C:\Documents and Settings\zebulon\Bureau\HijackThis.exe
      C:\WINDOWS\system32\sol.exe

      R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
      R3 - URLSearchHook: (no name) - {F27E6D61-84A7-FC27-869D-A30FD7E240C5} - (no file)
      O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll
      O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll
      O2 - BHO: ADOUsefulNet Object - {7CB093AC-11DF-46D5-9343-CE4BD90C159C} - C:\WINDOWS\System32\jkhhi.dll
      O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar3.dll
      O2 - BHO: (no name) - {EA32FB3B-21C9-42cc-B8EF-01A9B28EDB0D} - C:\WINDOWS\system32\ddcca.dll
      O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar3.dll
      O4 - HKLM\..\Run: [Creative WebCam Tray] C:\Program Files\Creative\Shared Files\CAMTRAY.EXE
      O4 - HKLM\..\Run: [NeroFilterCheck] C:\WINDOWS\system32\NeroCheck.exe
      O4 - HKLM\..\Run: [Windows update adbpro] update32.exe
      O4 - HKLM\..\Run: [BDMCon] "C:\Program Files\Softwin\BitDefender9\bdmcon.exe"
      O4 - HKLM\..\Run: [BDNewsAgent] "c:\program files\softwin\bitdefender9\bdnagent.exe"
      O4 - HKLM\..\Run: [BDSwitchAgent] "c:\program files\softwin\bitdefender9\bdswitch.exe"
      O4 - HKLM\..\Run: [Adobe Photo Downloader] "C:\Program Files\Adobe\Photoshop Album Edition Découverte\3.0\Apps\apdproxy.exe"
      O4 - HKLM\..\Run: [keyboard] C:\\keyboard.exe
      O4 - HKLM\..\Run: [mousepad] C:\\mousepad.exe
      O4 - HKLM\..\Run: [gimmysmileys] C:\\gimmysmileys.exe
      O4 - HKLM\..\RunServices: [Microsoft Update] wuamkp.exe
      O4 - HKLM\..\RunServices: [Windows update adbpro] update32.exe
      O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\ctfmon.exe
      O4 - HKCU\..\Run: [MSMSGS] "C:\Program Files\Messenger\msmsgs.exe" /background
      O4 - HKCU\..\Run: [Hcatpn] C:\WINDOWS\System32\??rvices.exe
      O4 - HKCU\..\Run: [MsnMsgr] "C:\Program Files\MSN Messenger\MsnMsgr.Exe" /background
      O4 - HKCU\..\Run: [Skype] "C:\Program Files\Skype\Phone\Skype.exe" /nosplash /minimized
      O4 - Global Startup: Lancement rapide d'Adobe Reader.lnk = C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe
      O4 - Global Startup: WinZip Quick Pick.lnk = C:\Program Files\WinZip\WZQKPICK.EXE
      O8 - Extra context menu item: &Traduire à partir de l'anglais - res://c:\program files\google\GoogleToolbar3.dll/cmwordtrans.html
      O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~2\OFFICE11\EXCEL.EXE/3000
      O8 - Extra context menu item: Pages liées - res://c:\program files\google\GoogleToolbar3.dll/cmbacklinks.html
      O8 - Extra context menu item: Pages similaires - res://c:\program files\google\GoogleToolbar3.dll/cmsimilar.html
      O8 - Extra context menu item: Recherche &Google - res://c:\program files\google\GoogleToolbar3.dll/cmsearch.html
      O8 - Extra context menu item: Version de la page actuelle disponible dans le cache Google - res://c:\program files\google\GoogleToolbar3.dll/cmcache.html
      O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll
      O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll
      O9 - Extra button: Recherche - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\OFFICE11\REFIEBAR.DLL
      O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - "C:\PROGRA~1\MSNMES~1\msgrapp.dll" (file missing)
      O18 - Filter: text/html - {2F6E85DC-8D2D-4896-8A4F-7DF8A7B1749D} - C:\PROGRA~1\Jalmp\jalmp.dll
      O20 - Winlogon Notify: ddcca - C:\WINDOWS\SYSTEM32\ddcca.dll
      O20 - Winlogon Notify: jkhhi - C:\WINDOWS\System32\jkhhi.dll
      O20 - Winlogon Notify: RunOnceEx - C:\WINDOWS\system32\vsscript.dll (file missing)
      O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - Unknown owner - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
      O23 - Service: ATIintergrated - Unknown owner - C:\WINDOWS\atigraphics.exe (file missing)
      O23 - Service: avast! Antivirus - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashServ.exe
      O23 - Service: avast! Mail Scanner - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe" /service (file missing)
      O23 - Service: avast! Web Scanner - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe" /service (file missing)
      O23 - Service: BitDefender Scan Server (bdss) - Unknown owner - C:\Program Files\Fichiers communs\Softwin\BitDefender Scan Server\bdss.exe" /service (file missing)
      O23 - Service: ewido security suite control - ewido networks - C:\Program Files\ewido anti-malware\ewidoctrl.exe
      O23 - Service: fwnet64 (fwnet) - Unknown owner - C:\WINDOWS\fwnet64.exe (file missing)
      O23 - Service: inetdns (InetDns) (inetdns) - Unknown owner - C:\WINDOWS\system32\inetdns.exe (file missing)
      O23 - Service: BitDefender Desktop Update Service (LIVESRV) - Unknown owner - C:\Program Files\Fichiers communs\Softwin\BitDefender Update Service\livesrv.exe" /service (file missing)
      O23 - Service: Microsoft Dynamic Network (MDNetwork) - Unknown owner - C:\WINDOWS\system32\MDN.exe (file missing)
      O23 - Service: mswmf32 - Unknown owner - C:\WINDOWS\mswmf32.exe (file missing)
      O23 - Service: netconf32 - Unknown owner - C:\WINDOWS\netconf32.exe (file missing)
      O23 - Service: nvidGUIv (nvidGUIv2) - Unknown owner - C:\WINDOWS\nvidGUIv.exe (file missing)
      O23 - Service: BitDefender Virus Shield (VSSERV) - Unknown owner - C:\Program Files\Softwin\BitDefender9\vsserv.exe" /service (file missing)
      O23 - Service: Win32Sr - Unknown owner - C:\WINDOWS\win32ssr.exe (file missing)
      O23 - Service: BitDefender Communicator (XCOMM) - Unknown owner - C:\Program Files\Fichiers communs\Softwin\BitDefender Communicator\xcommsvr.exe" /service (file missing)



      Connais tu ce proverbe arabe qui dit que les plus belles dattes sont en haut du palmier !!
      0
  9. Utilisateur anonyme
     
    peux tu me dire ce qu'est WinFixer qui veut toujours s'installer dans mon PC ?
    merci
    à +
    0
  10. aranjuez31 Messages postés 8161 Date d'inscription   Statut Contributeur 354
     
    "Connais tu ce proverbe arabe ......."
    oui
    ~~~~~~~
    "je n'ai pas encore désinstallé bitdefender. (de peur de faire une connerie !!)"
    il te faut faire un choix, car avoir 2 antivirus se contrarient et le boulot n'est fait qu 'à moitié , cf le résultat....
    alors avast ou bitdefender ?
    ai un faible pour Avast car moins lourd pour l ordi et cependant de bonne qualité et gratuit en plus
    ~~~~~~~~~~~~
    ""c'est très formateur, meme si je ne comprends pas tout !!""
    tu peux t'informer ici
    http://www.zebulon.fr/articles/analyse-rapports-hijack-this-1.php
    ~~~~~~~~~
    as-tu vidé la quarantaine de bitdefender ?
    si non, fais le
    ai besoin d'un nouveau rapprt pour savoir si on a avancé
    donc nouveau scan
    c est long certes, mais t'étais pleine comme une vache.....
    mais avant je vois que certaines choses du post 8 n'ont pas pu être
    réussies
    ~~~~~~~~~~
    donc boulot en core
    tu as semble-t-il une infection du type lop.com
    si tu as téléchargé msn3, il faut le désinstaller d'abord, on réinstallera ensuite

    Installer L2mfix là (nettoie ligne O20 de Hijackthis)
    http://users.skynet.be/BernieClub/tools.html
    1. extraire le fichier sur le bureau
    2. désactiver l'antivirus (car process est détecté faussement comme virus malware par certains antivirus)
    3. lancer l2mfix.bat et sélectionner l'option #1 et faire Enter pour faire apparaître le log (cela prend qqs minutes)
    4. Copie le log et colle sur un FORUM approprié pour une aide (par ex CMC sécurité/virus)
    attendre que je lise avant de continuer

    5. Fermes toutes tes fenêtres windows
    6. Relances l2mfix.bat et sélectionne l'option #2
    7. l'ordi va redémarrer automatiquement sinon le faire manuellement
    8. Recopie le log et colle-le à nouveau sur un FORUM approprié pour une aide
    0
  11. Utilisateur anonyme
     
    merci pour ces directives
    je les fais demain car je suis creveée
    à +*
    bonne nuit
    0
  12. aranjuez31 Messages postés 8161 Date d'inscription   Statut Contributeur 354
     
    have a nice night
    j'vais pas tarder non plus
    0
  13. Utilisateur anonyme
     
    Bonjour,
    Voici les rapports du jour : j'ai l'impression de donner la météo !!
    tout d'abord le l2M :
    Setting Directory
    C:\Documents and Settings\zebulon\Bureau\l2mfix
    System Rebooted!

    Running From:
    C:\Documents and Settings\zebulon\Bureau\l2mfix

    killing explorer and rundll32.exe

    Command Line Process Viewer/Killer/Suspender for Windows NT/2000/XP V2.03
    Copyright(C) 2002-2003 Craig.Peacock@beyondlogic.org
    Killing PID 1192 'explorer.exe'
    Killing PID 1192 'explorer.exe'
    Killing PID 1192 'explorer.exe'
    Killing PID 1192 'explorer.exe'
    Killing PID 1192 'explorer.exe'
    Killing PID 1192 'explorer.exe'
    Killing PID 1192 'explorer.exe'
    Killing PID 1192 'explorer.exe'
    Killing PID 1192 'explorer.exe'
    Killing PID 1192 'explorer.exe'
    Killing PID 1192 'explorer.exe'
    Killing PID 1192 'explorer.exe'
    Killing PID 1192 'explorer.exe'
    Killing PID 1192 'explorer.exe'
    Killing PID 1192 'explorer.exe'
    Killing PID 1192 'explorer.exe'
    Killing PID 1192 'explorer.exe'
    Killing PID 1192 'explorer.exe'
    Killing PID 1192 'explorer.exe'
    Killing PID 1192 'explorer.exe'
    Killing PID 1192 'explorer.exe'
    Killing PID 1192 'explorer.exe'
    Killing PID 1192 'explorer.exe'
    Killing PID 1192 'explorer.exe'
    Killing PID 1192 'explorer.exe'
    Killing PID 1192 'explorer.exe'
    Killing PID 1192 'explorer.exe'
    Killing PID 1192 'explorer.exe'
    Killing PID 1192 'explorer.exe'
    Killing PID 1192 'explorer.exe'
    Killing PID 1192 'explorer.exe'
    Killing PID 1192 'explorer.exe'

    Command Line Process Viewer/Killer/Suspender for Windows NT/2000/XP V2.03
    Copyright(C) 2002-2003 Craig.Peacock@beyondlogic.org
    Error, Cannot find a process with an image name of rundll32.exe

    Scanning First Pass. Please Wait!

    Setting Directory
    C:\Documents and Settings\zebulon\Bureau\l2mfix
    System Rebooted!

    Running From:
    C:\Documents and Settings\zebulon\Bureau\l2mfix

    killing explorer and rundll32.exe

    Command Line Process Viewer/Killer/Suspender for Windows NT/2000/XP V2.03
    Copyright(C) 2002-2003 Craig.Peacock@beyondlogic.org
    Killing PID 1172 'explorer.exe'
    Killing PID 1172 'explorer.exe'
    Killing PID 1172 'explorer.exe'
    Killing PID 1172 'explorer.exe'
    Killing PID 1172 'explorer.exe'
    Killing PID 1172 'explorer.exe'
    Killing PID 1172 'explorer.exe'
    Killing PID 1172 'explorer.exe'
    Killing PID 1172 'explorer.exe'
    Killing PID 1172 'explorer.exe'
    Killing PID 1172 'explorer.exe'
    Killing PID 1172 'explorer.exe'
    Killing PID 1172 'explorer.exe'
    Killing PID 1172 'explorer.exe'
    Killing PID 1172 'explorer.exe'
    Killing PID 1172 'explorer.exe'
    Killing PID 1172 'explorer.exe'
    Killing PID 1172 'explorer.exe'
    Killing PID 1172 'explorer.exe'
    Killing PID 1172 'explorer.exe'
    Killing PID 1172 'explorer.exe'
    Killing PID 1172 'explorer.exe'
    Killing PID 1172 'explorer.exe'
    Killing PID 1172 'explorer.exe'
    Killing PID 1172 'explorer.exe'
    Killing PID 1172 'explorer.exe'
    Killing PID 1172 'explorer.exe'
    Killing PID 1172 'explorer.exe'
    Killing PID 1172 'explorer.exe'
    Killing PID 1172 'explorer.exe'
    Killing PID 1172 'explorer.exe'
    Killing PID 1172 'explorer.exe'
    Killing PID 1172 'explorer.exe'
    Killing PID 1172 'explorer.exe'
    Killing PID 1172 'explorer.exe'
    Killing PID 1172 'explorer.exe'
    Killing PID 1172 'explorer.exe'
    Killing PID 1172 'explorer.exe'
    Killing PID 1172 'explorer.exe'
    Killing PID 1172 'explorer.exe'
    Killing PID 1172 'explorer.exe'
    Killing PID 1172 'explorer.exe'

    Command Line Process Viewer/Killer/Suspender for Windows NT/2000/XP V2.03
    Copyright(C) 2002-2003 Craig.Peacock@beyondlogic.org
    Error, Cannot find a process with an image name of rundll32.exe

    Scanning First Pass. Please Wait!

    First Pass Completed

    Second Pass Scanning

    Second pass Completed!

    Zipping up files for submission:
    adding: clear.reg (164 bytes security) (deflated 2%)
    adding: lo2.txt (164 bytes security) (deflated 88%)
    adding: readme.txt (164 bytes security) (deflated 52%)
    adding: test.txt (164 bytes security) (stored 0%)
    adding: test2.txt (164 bytes security) (stored 0%)
    adding: test3.txt (164 bytes security) (stored 0%)
    adding: test5.txt (164 bytes security) (stored 0%)

    Restoring Registry Permissions:

    RegDACL 5.1 - Permissions Manager for Registry keys for Windows NT 4 and above
    Copyright (c) 1999-2001 Frank Heyne Software (http://www.heysoft.de)
    This program is Freeware, use it on your own risk!

    Revoking access for predefined group "Administrators"
    Inherited ACE can not be revoked here!
    Inherited ACE can not be revoked here!
    Warning (option /rga:(ci)) - There is no ACE to remove!

    Registry permissions set too:

    RegDACL 5.1 - Permissions Manager for Registry keys for Windows NT 4 and above
    Copyright (c) 1999-2001 Frank Heyne Software (http://www.heysoft.de)
    This program is Freeware, use it on your own risk!

    Access Control List for Registry key HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify:
    (ID-NI) ALLOW Read BUILTIN\Utilisateurs
    (ID-IO) ALLOW Read BUILTIN\Utilisateurs
    (ID-NI) ALLOW Read BUILTIN\Utilisateurs avec pouvoir
    (ID-IO) ALLOW Read BUILTIN\Utilisateurs avec pouvoir
    (ID-NI) ALLOW Full access BUILTIN\Administrateurs
    (ID-IO) ALLOW Full access BUILTIN\Administrateurs
    (ID-NI) ALLOW Full access AUTORITE NT\SYSTEM
    (ID-IO) ALLOW Full access AUTORITE NT\SYSTEM
    (ID-IO) ALLOW Full access CREATEUR PROPRIETAIRE

    Restoring Sedebugprivilege:

    Granting SeDebugPrivilege to Administrators ... failed (GetAccountSid(Administrators)=1332

    Restoring Windows Update Certificates.:

    The following Is the Current Export of the Winlogon notify key:
    ****************************************************************************
    Windows Registry Editor Version 5.00

    [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify]

    [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\crypt32chain]
    "Asynchronous"=dword:00000000
    "Impersonate"=dword:00000000
    "DllName"=hex(2):63,00,72,00,79,00,70,00,74,00,33,00,32,00,2e,00,64,00,6c,00,\
    6c,00,00,00
    "Logoff"="ChainWlxLogoffEvent"

    [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\cryptnet]
    "Asynchronous"=dword:00000000
    "Impersonate"=dword:00000000
    "DllName"=hex(2):63,00,72,00,79,00,70,00,74,00,6e,00,65,00,74,00,2e,00,64,00,\
    6c,00,6c,00,00,00
    "Logoff"="CryptnetWlxLogoffEvent"

    [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\cscdll]
    "DLLName"="cscdll.dll"
    "Logon"="WinlogonLogonEvent"
    "Logoff"="WinlogonLogoffEvent"
    "ScreenSaver"="WinlogonScreenSaverEvent"
    "Startup"="WinlogonStartupEvent"
    "Shutdown"="WinlogonShutdownEvent"
    "StartShell"="WinlogonStartShellEvent"
    "Impersonate"=dword:00000000
    "Asynchronous"=dword:00000001

    [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\ddcca]
    "Asynchronous"=dword:00000001
    "DllName"="ddcca.dll"
    "Impersonate"=dword:00000000
    "Logon"="Logon"
    "Logoff"="Logoff"

    [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\jkhhi]
    "Asynchronous"=dword:00000001
    "DllName"="C:\\WINDOWS\\System32\\jkhhi.dll"
    "Impersonate"=dword:00000000
    "Startup"="SysLogon"
    "Logoff"="SysLogoff"

    [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\RunOnceEx]
    "Asynchronous"=dword:00000000
    "DllName"="C:\\WINDOWS\\system32\\vsscript.dll"
    "Impersonate"=dword:00000000
    "Logon"="WinLogon"
    "Logoff"="WinLogoff"
    "Shutdown"="WinShutdown"

    [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\ScCertProp]
    "DLLName"="wlnotify.dll"
    "Logon"="SCardStartCertProp"
    "Logoff"="SCardStopCertProp"
    "Lock"="SCardSuspendCertProp"
    "Unlock"="SCardResumeCertProp"
    "Enabled"=dword:00000001
    "Impersonate"=dword:00000001
    "Asynchronous"=dword:00000001

    [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\Schedule]
    "Asynchronous"=dword:00000000
    "DllName"=hex(2):77,00,6c,00,6e,00,6f,00,74,00,69,00,66,00,79,00,2e,00,64,00,\
    6c,00,6c,00,00,00
    "Impersonate"=dword:00000000
    "StartShell"="SchedStartShell"
    "Logoff"="SchedEventLogOff"

    [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\sclgntfy]
    "Logoff"="WLEventLogoff"
    "Impersonate"=dword:00000000
    "Asynchronous"=dword:00000001
    "DllName"=hex(2):73,00,63,00,6c,00,67,00,6e,00,74,00,66,00,79,00,2e,00,64,00,\
    6c,00,6c,00,00,00

    [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\SensLogn]
    "DLLName"="WlNotify.dll"
    "Lock"="SensLockEvent"
    "Logon"="SensLogonEvent"
    "Logoff"="SensLogoffEvent"
    "Safe"=dword:00000001
    "MaxWait"=dword:00000258
    "StartScreenSaver"="SensStartScreenSaverEvent"
    "StopScreenSaver"="SensStopScreenSaverEvent"
    "Startup"="SensStartupEvent"
    "Shutdown"="SensShutdownEvent"
    "StartShell"="SensStartShellEvent"
    "PostShell"="SensPostShellEvent"
    "Disconnect"="SensDisconnectEvent"
    "Reconnect"="SensReconnectEvent"
    "Unlock"="SensUnlockEvent"
    "Impersonate"=dword:00000001
    "Asynchronous"=dword:00000001

    [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\termsrv]
    "Asynchronous"=dword:00000000
    "DllName"=hex(2):77,00,6c,00,6e,00,6f,00,74,00,69,00,66,00,79,00,2e,00,64,00,\
    6c,00,6c,00,00,00
    "Impersonate"=dword:00000000
    "Logoff"="TSEventLogoff"
    "Logon"="TSEventLogon"
    "PostShell"="TSEventPostShell"
    "Shutdown"="TSEventShutdown"
    "StartShell"="TSEventStartShell"
    "Startup"="TSEventStartup"
    "MaxWait"=dword:00000258
    "Reconnect"="TSEventReconnect"
    "Disconnect"="TSEventDisconnect"

    [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\wlballoon]
    "DLLName"="wlnotify.dll"
    "Logon"="RegisterTicketExpiredNotificationEvent"
    "Logoff"="UnregisterTicketExpiredNotificationEvent"
    "Impersonate"=dword:00000001
    "Asynchronous"=dword:00000001

    The following are the files found:
    ****************************************************************************

    Registry Entries that were Deleted:
    Please verify that the listing looks ok.
    If there was something deleted wrongly there are backups in the backreg folder.
    ****************************************************************************
    REGEDIT4

    [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved]
    REGEDIT4

    [-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\User Agent\Post Platform]
    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\User Agent\Post Platform]
    ****************************************************************************
    Desktop.ini Contents:
    ****************************************************************************
    ****************************************************************************

    vient ensuite le dernier tube de Hijackthis !! :
    Logfile of HijackThis v1.99.1
    Scan saved at 00:16:03, on 04/03/2006
    Platform: Windows XP (WinNT 5.01.2600)
    MSIE: Internet Explorer v6.00 (6.00.2600.0000)

    Running processes:
    C:\WINDOWS\System32\smss.exe
    C:\WINDOWS\system32\winlogon.exe
    C:\WINDOWS\system32\services.exe
    C:\WINDOWS\system32\lsass.exe
    C:\WINDOWS\system32\svchost.exe
    C:\WINDOWS\System32\svchost.exe
    C:\WINDOWS\Explorer.EXE
    C:\WINDOWS\system32\spoolsv.exe
    C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
    C:\WINDOWS\atigraphics.exe
    C:\Program Files\Creative\Shared Files\CAMTRAY.EXE
    C:\Program Files\Softwin\BitDefender9\bdnagent.exe
    C:\Program Files\Softwin\BitDefender9\bdswitch.exe
    C:\Program Files\Adobe\Photoshop Album Edition Découverte\3.0\Apps\apdproxy.exe
    C:\mousepad.exe
    C:\WINDOWS\System32\ctfmon.exe
    C:\Program Files\Messenger\msmsgs.exe
    C:\Program Files\Skype\Phone\Skype.exe
    C:\Program Files\WinZip\WZQKPICK.EXE
    C:\Program Files\Alwil Software\Avast4\ashServ.exe
    C:\Program Files\ewido anti-malware\ewidoctrl.exe
    C:\WINDOWS\system32\hal.exe
    C:\WINDOWS\System32\svchost.exe
    C:\Program Files\Fichiers communs\Softwin\BitDefender Communicator\xcommsvr.exe
    C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
    C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
    C:\WINDOWS\system32\cmd.exe
    C:\Program Files\Fichiers communs\Softwin\BitDefender Update Service\livesrv.exe
    C:\Program Files\Fichiers communs\Softwin\BitDefender Scan Server\bdss.exe
    C:\Program Files\Softwin\BitDefender9\vsserv.exe
    c:\program files\softwin\bitdefender9\bdmcon.exe
    C:\Program Files\Internet Explorer\iexplore.exe
    C:\Documents and Settings\zebulon\Bureau\HijackThis.exe
    C:\WINDOWS\system32\spider.exe

    R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://searchbar.findthewebsiteyouneed.com
    R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = http://searchbar.findthewebsiteyouneed.com
    R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://searchbar.findthewebsiteyouneed.com
    R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.findthewebsiteyouneed.com
    R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://searchbar.findthewebsiteyouneed.com
    R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant = http://searchbar.findthewebsiteyouneed.com
    R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
    R3 - URLSearchHook: (no name) - {F27E6D61-84A7-FC27-869D-A30FD7E240C5} - (no file)
    O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll
    O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll
    O2 - BHO: ADOUsefulNet Object - {7CB093AC-11DF-46D5-9343-CE4BD90C159C} - C:\WINDOWS\System32\jkhhi.dll
    O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar3.dll
    O2 - BHO: (no name) - {EA32FB3B-21C9-42cc-B8EF-01A9B28EDB0D} - C:\WINDOWS\system32\ddcca.dll
    O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar3.dll
    O4 - HKLM\..\Run: [Creative WebCam Tray] C:\Program Files\Creative\Shared Files\CAMTRAY.EXE
    O4 - HKLM\..\Run: [NeroFilterCheck] C:\WINDOWS\system32\NeroCheck.exe
    O4 - HKLM\..\Run: [Windows update adbpro] update32.exe
    O4 - HKLM\..\Run: [BDMCon] "C:\Program Files\Softwin\BitDefender9\bdmcon.exe"
    O4 - HKLM\..\Run: [BDNewsAgent] "c:\program files\softwin\bitdefender9\bdnagent.exe"
    O4 - HKLM\..\Run: [BDSwitchAgent] "c:\program files\softwin\bitdefender9\bdswitch.exe"
    O4 - HKLM\..\Run: [Adobe Photo Downloader] "C:\Program Files\Adobe\Photoshop Album Edition Découverte\3.0\Apps\apdproxy.exe"
    O4 - HKLM\..\Run: [keyboard] C:\\keyboard.exe
    O4 - HKLM\..\Run: [mousepad] C:\\mousepad.exe
    O4 - HKLM\..\Run: [gimmysmileys] C:\\gimmysmileys.exe
    O4 - HKLM\..\RunServices: [Microsoft Update] wuamkp.exe
    O4 - HKLM\..\RunServices: [Windows update adbpro] update32.exe
    O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\ctfmon.exe
    O4 - HKCU\..\Run: [MSMSGS] "C:\Program Files\Messenger\msmsgs.exe" /background
    O4 - HKCU\..\Run: [MsnMsgr] "C:\Program Files\MSN Messenger\MsnMsgr.Exe" /background
    O4 - HKCU\..\Run: [Skype] "C:\Program Files\Skype\Phone\Skype.exe" /nosplash /minimized
    O4 - Global Startup: Lancement rapide d'Adobe Reader.lnk = C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe
    O4 - Global Startup: WinZip Quick Pick.lnk = C:\Program Files\WinZip\WZQKPICK.EXE
    O8 - Extra context menu item: &Traduire à partir de l'anglais - res://c:\program files\google\GoogleToolbar3.dll/cmwordtrans.html
    O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~2\OFFICE11\EXCEL.EXE/3000
    O8 - Extra context menu item: Pages liées - res://c:\program files\google\GoogleToolbar3.dll/cmbacklinks.html
    O8 - Extra context menu item: Pages similaires - res://c:\program files\google\GoogleToolbar3.dll/cmsimilar.html
    O8 - Extra context menu item: Recherche &Google - res://c:\program files\google\GoogleToolbar3.dll/cmsearch.html
    O8 - Extra context menu item: Version de la page actuelle disponible dans le cache Google - res://c:\program files\google\GoogleToolbar3.dll/cmcache.html
    O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll
    O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll
    O9 - Extra button: Recherche - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\OFFICE11\REFIEBAR.DLL
    O18 - Filter: text/html - {2F6E85DC-8D2D-4896-8A4F-7DF8A7B1749D} - C:\PROGRA~1\Jalmp\jalmp.dll
    O20 - Winlogon Notify: ddcca - C:\WINDOWS\SYSTEM32\ddcca.dll
    O20 - Winlogon Notify: jkhhi - C:\WINDOWS\System32\jkhhi.dll
    O20 - Winlogon Notify: RunOnceEx - C:\WINDOWS\system32\vsscript.dll (file missing)
    O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - Unknown owner - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
    O23 - Service: ATIintergrated - Unknown owner - C:\WINDOWS\atigraphics.exe
    O23 - Service: avast! Antivirus - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashServ.exe
    O23 - Service: avast! Mail Scanner - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe" /service (file missing)
    O23 - Service: avast! Web Scanner - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe" /service (file missing)
    O23 - Service: BitDefender Scan Server (bdss) - Unknown owner - C:\Program Files\Fichiers communs\Softwin\BitDefender Scan Server\bdss.exe" /service (file missing)
    O23 - Service: ewido security suite control - ewido networks - C:\Program Files\ewido anti-malware\ewidoctrl.exe
    O23 - Service: fwnet64 (fwnet) - Unknown owner - C:\WINDOWS\fwnet64.exe (file missing)
    O23 - Service: inetdns (InetDns) (inetdns) - Unknown owner - C:\WINDOWS\system32\inetdns.exe (file missing)
    O23 - Service: BitDefender Desktop Update Service (LIVESRV) - Unknown owner - C:\Program Files\Fichiers communs\Softwin\BitDefender Update Service\livesrv.exe" /service (file missing)
    O23 - Service: Microsoft Dynamic Network (MDNetwork) - Unknown owner - C:\WINDOWS\system32\MDN.exe (file missing)
    O23 - Service: mswmf32 - Unknown owner - C:\WINDOWS\mswmf32.exe (file missing)
    O23 - Service: netconf32 - Unknown owner - C:\WINDOWS\netconf32.exe (file missing)
    O23 - Service: nvidGUIv (nvidGUIv2) - Unknown owner - C:\WINDOWS\nvidGUIv.exe (file missing)
    O23 - Service: BitDefender Virus Shield (VSSERV) - Unknown owner - C:\Program Files\Softwin\BitDefender9\vsserv.exe" /service (file missing)
    O23 - Service: Win32Sr - Unknown owner - C:\WINDOWS\win32ssr.exe (file missing)
    O23 - Service: BitDefender Communicator (XCOMM) - Unknown owner - C:\Program Files\Fichiers communs\Softwin\BitDefender Communicator\xcommsvr.exe" /service (file missing)

    Question :
    Ne vaut il mieux pas réinstaller mon PC ?
    Qulle est le pack idéal en matière de protection ?
    merci de ton aide !
    A bientôt avec la recette miracle j'espère
    0
  14. aranjuez31 Messages postés 8161 Date d'inscription   Statut Contributeur 354
     
    bsr

    Question :
    Ne vaut il mieux pas réinstaller mon PC ?
    patience ! tant que ton pc fonctionne, pas de soluce ultime à envisager, hélas ça prends du tps parfois
    Qulle est le pack idéal en matière de protection ?
    1 seul antivrus de qualité+1 seul pare-feu de qualité+Spybot+A-aware+Ewido+CCleaner ou RegCleaner+CleanUp40
    mais la sécurité 100% n existe pas
    elle passe entre ton siége et ton clavier
    c est à toi de ne pas fréquenter certains lieux de "perdition" telsle warez, le p2p, le Q, ne pas ouvrir courriels d inconnus, ne pas répondre à sollicitation du type winfixer (véritable arnaque

    télécharge les progr que tu n'as pas et fais tous fonctionner (tu me COLLERAS en particulier celui d'Ewido
    s'il te manque des tutoriaux pour comprendre, tu me ddes)
    1/ - Ad-Aware (gratuit) :
    http://telecharger.01net.com/windows/Internet/internet_utlitaire/fiches/11643.html
    Le patch en Français pour Ad-Aware (gratuit) :
    http://telecharger.01net.com/windows/Internet/internet_utlitaire/fiches/25543.html

    2/ - Spybot (gratuit) :
    http://telecharger.01net.com/windows/Internet/internet_utlitaire/fiches/26157.html

    3/ - ewido (dowload)
    http://www.ewido.net/fr/download/

    4/ - regcleaner ( nettoyeur de registre)
    http://www.01net.com/windows/Utilitaire/nettoyeurs_et_installeurs/fiches/4894.html

    5/ - et cleanup40 (nettoyeur de cookies+temps+tempos+prefetch+historique+etc..)
    http://pageperso.aol.fr/balltrap34/democleanup.htm
    ¤Télécharger CleanUp40 (qui élimine les fichiers temporaires) sur ce lien : http://pageperso.aol.fr/Balltrap34/CleanUp40.exe
    ===========
    Télécharger ceci (merci a S!RI pour ce petit programme) :
    http://siri.urz.free.fr/Fix/SmitfraudFix.zip
    L'exécuter, puis double-cliquer sur Smitfraudfix.cmd
    Choisir l’option 1, il va générer un rapport
    Copier-coller ce dernier dans un message sur le forum.
    En image :
    http://siri.urz.free.fr/Fix/SmitfraudFix.php

    Démarre en mode sans échec :
    Pour cela, tu tapotes la touche F8 dès le début de l’allumage du PC sans t’arrêter
    Une fenêtre va s’ouvrir tu te déplaces avec les flèches du clavier sur démarrer en mode sans échec puis tape entrée.
    Une fois sur le bureau s’il n’y a pas toutes les couleurs et autres c’est normal !
    (Si F8 ne marche pas utilise la touche F5).

    Relance le programme Smitfraud,
    Cette fois choisit l’option 2, répond oui a tous ;
    Sauvegarde le rapport, redémarre en mode normal, copie-colle le rapport sauvegardé sur le forum.
    ============
    scan online (sous IE, accepte activX) avec
    http://www.bitdefender.fr/bd/site/search.php#

    COLLE moi rapport entier
    n'oublie pas celui d'Ewido
    ++++++++
    me remettre un hijack aprés avoir fait tout cela ds l ordre

    eheh bon dimanche

    0
  15. Utilisateur anonyme
     
    coucou, me revoilou avec toujours + de pbs
    Alors tu trouveras tout ce que tu m'as demandé, sauf que je n'arrive pas à dézipper le process.exe de smitfraudfix
    j'ai essayé de désactiver bit defender, et avast, mais sans grand succés. De + j'ai très peur, si je le fais, d'être envahie de tas de cochoneries.
    depuis ce matin j'ai SPYSHERIFF non stop, ça me rend chèvre !
    au fur et à mesure que je checke et supprime, tout revient ! ras le bol !
    merci de m'aider Aranjuez 31
    à bientôt avec la solution finale ???
    Explique moi, svp, comment je fais pour aller au bout de la manip
    et encore merci pour ton aide
    0
  16. Utilisateur anonyme
     
    Ad-Aware SE Build 1.06r1
    Logfile Created on:lundi 6 mars 2006 00:55:45
    Created with Ad-Aware SE Personal, free for private use.
    Using definitions file:SE1R94 28.02.2006
    »»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»

    References detected during the scan:
    »»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»
    Adware.Freeprod Toolbar(TAC index:3):136 total references
    MRU List(TAC index:0):13 total references
    Other(TAC index:5):3 total references
    Possible Browser Hijack attempt(TAC index:3):6 total references
    Tracking Cookie(TAC index:3):5 total references
    UCmore(TAC index:3):3 total references
    Windows(TAC index:3):4 total references
    WindUpdates(TAC index:8):3 total references
    »»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»

    Ad-Aware SE Settings
    ===========================
    Set : Search for negligible risk entries
    Set : Safe mode (always request confirmation)
    Set : Scan active processes
    Set : Scan registry
    Set : Deep-scan registry
    Set : Scan my IE Favorites for banned URLs
    Set : Scan within archives
    Set : Scan my Hosts file

    Extended Ad-Aware SE Settings
    ===========================
    Set : Unload recognized processes & modules during scan
    Set : Scan registry for all users instead of current user only
    Set : Always try to unload modules before deletion
    Set : During removal, unload Explorer and IE if necessary
    Set : Let Windows remove files in use at next reboot
    Set : Delete quarantined objects after restoring
    Set : Include basic Ad-Aware settings in log file
    Set : Include additional Ad-Aware settings in log file
    Set : Include reference summary in log file
    Set : Include alternate data stream details in log file
    Set : Play sound at scan completion if scan locates critical objects

    06/03/2006 00:55:45 - Scan started. (Full System Scan)

    MRU List Object Recognized!
    Location: : C:\Documents and Settings\zebulon\recent
    Description :

    MRU List Object Recognized!
    Location: : S-1-5-21-1957994488-562591055-682003330-1003\software\google\navclient\1.1\history
    Description :

    MRU List Object Recognized!
    Location: : software\microsoft\directdraw\mostrecentapplication
    Description :

    MRU List Object Recognized!
    Location: : S-1-5-21-1957994488-562591055-682003330-1003\software\microsoft\internet explorer
    Description :

    MRU List Object Recognized!
    Location: : S-1-5-21-1957994488-562591055-682003330-1003\software\microsoft\internet explorer\typedurls
    Description :

    MRU List Object Recognized!
    Location: : S-1-5-21-1957994488-562591055-682003330-1003\software\microsoft\mediaplayer\medialibraryui
    Description :

    MRU List Object Recognized!
    Location: : S-1-5-21-1957994488-562591055-682003330-1003\software\microsoft\mediaplayer\preferences
    Description :

    MRU List Object Recognized!
    Location: : S-1-5-21-1957994488-562591055-682003330-1003\software\microsoft\mediaplayer\preferences
    Description :

    MRU List Object Recognized!
    Location: : S-1-5-21-1957994488-562591055-682003330-1003\software\microsoft\search assistant\acmru
    Description :

    MRU List Object Recognized!
    Location: : S-1-5-21-1957994488-562591055-682003330-1003\software\microsoft\windows\currentversion\explorer\comdlg32\lastvisitedmru
    Description :

    MRU List Object Recognized!
    Location: : S-1-5-21-1957994488-562591055-682003330-1003\software\microsoft\windows\currentversion\explorer\comdlg32\opensavemru
    Description :

    MRU List Object Recognized!
    Location: : S-1-5-21-1957994488-562591055-682003330-1003\software\microsoft\windows\currentversion\explorer\recentdocs
    Description :

    MRU List Object Recognized!
    Location: : S-1-5-21-1957994488-562591055-682003330-1003\software\microsoft\windows media\wmsdk\general
    Description :

    Listing running processes
    »»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»

    #:1 [smss.exe]
    FilePath : \SystemRoot\System32\
    ProcessID : 432
    ThreadCreationTime : 05/03/2006 23:54:06
    BasePriority : Normal

    #:2 [csrss.exe]
    FilePath : \??\C:\WINDOWS\system32\
    ProcessID : 488
    ThreadCreationTime : 05/03/2006 23:54:08
    BasePriority : Normal

    #:3 [winlogon.exe]
    FilePath : \??\C:\WINDOWS\system32\
    ProcessID : 512
    ThreadCreationTime : 05/03/2006 23:54:10
    BasePriority : High

    #:4 [services.exe]
    FilePath : C:\WINDOWS\system32\
    ProcessID : 556
    ThreadCreationTime : 05/03/2006 23:54:11
    BasePriority : Normal
    FileVersion : 5.1.2600.0 (xpclient.010817-1148)
    ProductVersion : 5.1.2600.0
    ProductName : Système d'exploitation Microsoft® Windows®
    CompanyName : Microsoft Corporation
    FileDescription : Applications Services et Contrôleur
    InternalName : services.exe
    LegalCopyright : © Microsoft Corporation. Tous droits réservés.
    OriginalFilename : services.exe

    #:5 [lsass.exe]
    FilePath : C:\WINDOWS\system32\
    ProcessID : 568
    ThreadCreationTime : 05/03/2006 23:54:11
    BasePriority : Normal
    FileVersion : 5.1.2600.0 (xpclient.010817-1148)
    ProductVersion : 5.1.2600.0
    ProductName : Microsoft® Windows® Operating System
    CompanyName : Microsoft Corporation
    FileDescription : LSA Shell (Export Version)
    InternalName : lsass.exe
    LegalCopyright : © Microsoft Corporation. All rights reserved.
    OriginalFilename : lsass.exe

    #:6 [svchost.exe]
    FilePath : C:\WINDOWS\system32\
    ProcessID : 748
    ThreadCreationTime : 05/03/2006 23:54:12
    BasePriority : Normal
    FileVersion : 5.1.2600.0 (xpclient.010817-1148)
    ProductVersion : 5.1.2600.0
    ProductName : Microsoft® Windows® Operating System
    CompanyName : Microsoft Corporation
    FileDescription : Generic Host Process for Win32 Services
    InternalName : svchost.exe
    LegalCopyright : © Microsoft Corporation. All rights reserved.
    OriginalFilename : svchost.exe

    #:7 [svchost.exe]
    FilePath : C:\WINDOWS\System32\
    ProcessID : 800
    ThreadCreationTime : 05/03/2006 23:54:12
    BasePriority : Normal
    FileVersion : 5.1.2600.0 (xpclient.010817-1148)
    ProductVersion : 5.1.2600.0
    ProductName : Microsoft® Windows® Operating System
    CompanyName : Microsoft Corporation
    FileDescription : Generic Host Process for Win32 Services
    InternalName : svchost.exe
    LegalCopyright : © Microsoft Corporation. All rights reserved.
    OriginalFilename : svchost.exe

    #:8 [svchost.exe]
    FilePath : C:\WINDOWS\System32\
    ProcessID : 864
    ThreadCreationTime : 05/03/2006 23:54:13
    BasePriority : Normal
    FileVersion : 5.1.2600.0 (xpclient.010817-1148)
    ProductVersion : 5.1.2600.0
    ProductName : Microsoft® Windows® Operating System
    CompanyName : Microsoft Corporation
    FileDescription : Generic Host Process for Win32 Services
    InternalName : svchost.exe
    LegalCopyright : © Microsoft Corporation. All rights reserved.
    OriginalFilename : svchost.exe

    #:9 [svchost.exe]
    FilePath : C:\WINDOWS\System32\
    ProcessID : 896
    ThreadCreationTime : 05/03/2006 23:54:13
    BasePriority : Normal
    FileVersion : 5.1.2600.0 (xpclient.010817-1148)
    ProductVersion : 5.1.2600.0
    ProductName : Microsoft® Windows® Operating System
    CompanyName : Microsoft Corporation
    FileDescription : Generic Host Process for Win32 Services
    InternalName : svchost.exe
    LegalCopyright : © Microsoft Corporation. All rights reserved.
    OriginalFilename : svchost.exe

    #:10 [explorer.exe]
    FilePath : C:\WINDOWS\
    ProcessID : 1224
    ThreadCreationTime : 05/03/2006 23:54:19
    BasePriority : Normal
    FileVersion : 6.00.2600.0000 (xpclient.010817-1148)
    ProductVersion : 6.00.2600.0000
    ProductName : Système d'exploitation Microsoft® Windows®
    CompanyName : Microsoft Corporation
    FileDescription : Explorateur Windows
    InternalName : explorer
    LegalCopyright : © Microsoft Corporation. Tous droits réservés.
    OriginalFilename : EXPLORER.EXE

    #:11 [spoolsv.exe]
    FilePath : C:\WINDOWS\system32\
    ProcessID : 1260
    ThreadCreationTime : 05/03/2006 23:54:20
    BasePriority : Normal
    FileVersion : 5.1.2600.0 (XPClient.010817-1148)
    ProductVersion : 5.1.2600.0
    ProductName : Microsoft® Windows® Operating System
    CompanyName : Microsoft Corporation
    FileDescription : Spooler SubSystem App
    InternalName : spoolsv.exe
    LegalCopyright : © Microsoft Corporation. All rights reserved.
    OriginalFilename : spoolsv.exe

    #:12 [aswupdsv.exe]
    FilePath : C:\Program Files\Alwil Software\Avast4\
    ProcessID : 1508
    ThreadCreationTime : 05/03/2006 23:54:29
    BasePriority : Normal

    #:13 [atigraphics.exe]
    FilePath : C:\WINDOWS\
    ProcessID : 1536
    ThreadCreationTime : 05/03/2006 23:54:30
    BasePriority : Normal

    #:14 [ashserv.exe]
    FilePath : C:\Program Files\Alwil Software\Avast4\
    ProcessID : 1564
    ThreadCreationTime : 05/03/2006 23:54:31
    BasePriority : High
    FileVersion : 4, 6, 753, 0
    ProductVersion : 4, 6, 0, 0
    ProductName : avast! Antivirus
    FileDescription : avast! antivirus service
    InternalName : aswServ
    LegalCopyright : Copyright (c) 2006 ALWIL Software
    OriginalFilename : aswServ.exe

    #:15 [ewidoctrl.exe]
    FilePath : C:\Program Files\ewido anti-malware\
    ProcessID : 1636
    ThreadCreationTime : 05/03/2006 23:54:32
    BasePriority : Normal
    FileVersion : 3, 0, 0, 1
    ProductVersion : 3, 0, 0, 1
    ProductName : ewido control
    CompanyName : ewido networks
    FileDescription : ewido control
    InternalName : ewido control
    LegalCopyright : Copyright © 2004
    OriginalFilename : ewidoctrl.exe

    #:16 [hal.exe]
    FilePath : C:\WINDOWS\system32\
    ProcessID : 1648
    ThreadCreationTime : 05/03/2006 23:54:33
    BasePriority : Normal
    FileVersion : 5, 1 2600, 0 (windows client)
    ProductVersion : 5, 1, 2600, 0
    ProductName : Microsoft® Windows® Operating System
    CompanyName : Microsoft Corporation
    InternalName : hal
    LegalCopyright : Copyright © 2005
    OriginalFilename : hal.exe

    #:17 [camtray.exe]
    FilePath : C:\Program Files\Creative\Shared Files\
    ProcessID : 1700
    ThreadCreationTime : 05/03/2006 23:54:34
    BasePriority : Normal
    FileVersion : 3.50.08
    ProductVersion : 3.50
    ProductName : Creative Cam Detector
    CompanyName : Creative Technology Ltd
    FileDescription : Creative Camera Launcher Application
    InternalName : Creative Camera Launcher Application
    LegalCopyright : Copyright (c) Creative Technology Ltd., 2002-2004. All rights reserved.
    OriginalFilename : CamTray.EXE

    #:18 [bdmcon.exe]
    FilePath : C:\Program Files\Softwin\BitDefender9\
    ProcessID : 1720
    ThreadCreationTime : 05/03/2006 23:54:34
    BasePriority : Normal
    FileVersion : 9, 0, 0, 4
    ProductVersion : 9, 0, 0, 4
    ProductName : BitDefender 9
    CompanyName : SOFTWIN S.R.L.
    FileDescription : BitDefender Management Console
    InternalName : Management Console
    LegalCopyright : © 2005 SOFTWIN S.R.L.
    OriginalFilename : bdmcon.exe

    #:19 [bdnagent.exe]
    FilePath : C:\program files\softwin\bitdefender9\
    ProcessID : 1732
    ThreadCreationTime : 05/03/2006 23:54:34
    BasePriority : Normal
    FileVersion : 1, 0, 0, 1
    ProductVersion : 0, 0, 0, 0
    ProductName : BitDefender News Agent
    CompanyName : SOFTWIN S.R.L
    FileDescription : BitDefender News Agent
    InternalName : News Agent
    LegalCopyright : © 2005 SOFTWIN S.R.L.
    OriginalFilename : BDNewsAgent.exe

    #:20 [bdswitch.exe]
    FilePath : C:\program files\softwin\bitdefender9\
    ProcessID : 1740
    ThreadCreationTime : 05/03/2006 23:54:34
    BasePriority : Normal

    #:21 [apdproxy.exe]
    FilePath : C:\Program Files\Adobe\Photoshop Album Edition Découverte\3.0\Apps\
    ProcessID : 1748
    ThreadCreationTime : 05/03/2006 23:54:34
    BasePriority : Normal

    #:22 [mousepad.exe]
    FilePath : C:\
    ProcessID : 1764
    ThreadCreationTime : 05/03/2006 23:54:34
    BasePriority : Normal
    FileVersion : 1.00.0028
    ProductVersion : 1.00.0028
    ProductName : Project1
    CompanyName : ÄÂÃÌÀ
    InternalName : Project1
    OriginalFilename : Project1.exe

    #:23 [ctfmon.exe]
    FilePath : C:\WINDOWS\System32\
    ProcessID : 1784
    ThreadCreationTime : 05/03/2006 23:54:35
    BasePriority : Normal
    FileVersion : 5.1.2600.0 (xpclient.010817-1148)
    ProductVersion : 5.1.2600.0
    ProductName : Microsoft® Windows® Operating System
    CompanyName : Microsoft Corporation
    FileDescription : CTF Loader
    InternalName : CTFMON
    LegalCopyright : © Microsoft Corporation. All rights reserved.
    OriginalFilename : CTFMON.EXE

    #:24 [msmsgs.exe]
    FilePath : C:\Program Files\Messenger\
    ProcessID : 1792
    ThreadCreationTime : 05/03/2006 23:54:35
    BasePriority : Normal
    FileVersion : 4.0.0155
    ProductVersion : Version 4.0
    ProductName : Messenger
    CompanyName : Microsoft Corporation
    FileDescription : Messenger Client
    InternalName : msmsgs
    LegalCopyright : Copyright (c) Microsoft Corporation 1997-2001
    LegalTrademarks : Microsoft(R) is a registered trademark of Microsoft Corporation in the U.S. and/or other countries.
    OriginalFilename : msmsgs.exe

    #:25 [skype.exe]
    FilePath : C:\Program Files\Skype\Phone\
    ProcessID : 1800
    ThreadCreationTime : 05/03/2006 23:54:35
    BasePriority : Normal

    #:26 [wzqkpick.exe]
    FilePath : C:\Program Files\WinZip\
    ProcessID : 1816
    ThreadCreationTime : 05/03/2006 23:54:35
    BasePriority : Normal
    FileVersion : 1.0 (32-bit)
    ProductVersion : 9.0 (6224f)
    ProductName : WinZip
    CompanyName : WinZip Computing, Inc.
    FileDescription : WinZip Executable
    InternalName : WZQKPICK.EXE
    LegalCopyright : Copyright (c) WinZip Computing, Inc. 1991-2004 - All Rights Reserved
    LegalTrademarks : WinZip is a registered trademark of WinZip Computing, Inc
    OriginalFilename : WZQKPICK.EXE
    Comments : StringFileInfo: French

    #:27 [svchost.exe]
    FilePath : C:\WINDOWS\System32\
    ProcessID : 400
    ThreadCreationTime : 05/03/2006 23:54:51
    BasePriority : Normal
    FileVersion : 5.1.2600.0 (xpclient.010817-1148)
    ProductVersion : 5.1.2600.0
    ProductName : Microsoft® Windows® Operating System
    CompanyName : Microsoft Corporation
    FileDescription : Generic Host Process for Win32 Services
    InternalName : svchost.exe
    LegalCopyright : © Microsoft Corporation. All rights reserved.
    OriginalFilename : svchost.exe

    #:28 [xcommsvr.exe]
    FilePath : C:\Program Files\Fichiers communs\Softwin\BitDefender Communicator\
    ProcessID : 636
    ThreadCreationTime : 05/03/2006 23:54:54
    BasePriority : Normal
    FileVersion : 1, 8, 11, 0
    ProductVersion : 1, 8, 11, 0
    ProductName : Softwin BitDefender Communicator Server
    CompanyName : Softwin
    FileDescription : BitDefender Communicator Server
    InternalName : XCOMMSVR
    LegalCopyright : Copyright © 2003-2004 Softwin
    OriginalFilename : xcommsvr.exe
    Comments : Manages communication between BitDefender components

    #:29 [ad-aware.exe]
    FilePath : C:\Program Files\Lavasoft\Ad-Aware SE Personal\
    ProcessID : 852
    ThreadCreationTime : 05/03/2006 23:54:55
    BasePriority : Normal
    FileVersion : 6.2.0.236
    ProductVersion : SE 106
    ProductName : Lavasoft Ad-Aware SE
    CompanyName : Lavasoft Sweden
    FileDescription : Ad-Aware SE Core application
    InternalName : Ad-Aware.exe
    LegalCopyright : Copyright © Lavasoft AB Sweden
    OriginalFilename : Ad-Aware.exe
    Comments : All Rights Reserved

    #:30 [livesrv.exe]
    FilePath : C:\Program Files\Fichiers communs\Softwin\BitDefender Update Service\
    ProcessID : 1024
    ThreadCreationTime : 05/03/2006 23:54:55
    BasePriority : Normal
    FileVersion : 9, 0, 0, 2
    ProductVersion : 9, 0, 0, 0
    ProductName : BitDefender 9
    CompanyName : SOFTWIN S.R.L.
    FileDescription : BitDefender Security Service
    InternalName : LiveSrv
    LegalCopyright : © 2005 SOFTWIN S.R.L.
    OriginalFilename : livesrv.exe

    #:31 [bdss.exe]
    FilePath : C:\Program Files\Fichiers communs\Softwin\BitDefender Scan Server\
    ProcessID : 1644
    ThreadCreationTime : 05/03/2006 23:54:56
    BasePriority : Normal

    #:32 [vsserv.exe]
    FilePath : C:\Program Files\Softwin\BitDefender9\
    ProcessID : 2544
    ThreadCreationTime : 05/03/2006 23:55:16
    BasePriority : Normal
    FileVersion : 9, 0, 0, 11
    ProductVersion : 9, 0, 0, 11
    ProductName : BitDefender 9
    CompanyName : SOFTWIN S.R.L.
    FileDescription : BitDefender Security Service
    InternalName : VSServ
    LegalCopyright : © 2005 SOFTWIN S.R.L.
    OriginalFilename : vsserv.exe

    #:33 [ashmaisv.exe]
    FilePath : C:\Program Files\Alwil Software\Avast4\
    ProcessID : 2724
    ThreadCreationTime : 05/03/2006 23:55:29
    BasePriority : Normal

    #:34 [ashwebsv.exe]
    FilePath : C:\Program Files\Alwil Software\Avast4\
    ProcessID : 2756
    ThreadCreationTime : 05/03/2006 23:55:32
    BasePriority : Normal

    #:35 [cmd.exe]
    FilePath : C:\WINDOWS\system32\
    ProcessID : 2812
    ThreadCreationTime : 05/03/2006 23:55:36
    BasePriority : Normal
    FileVersion : 5.1.2600.0 (xpclient.010817-1148)
    ProductVersion : 5.1.2600.0
    ProductName : Système d'exploitation Microsoft® Windows®
    CompanyName : Microsoft Corporation
    FileDescription : Interpréteur de commandes Windows
    InternalName : cmd
    LegalCopyright : © Microsoft Corporation. Tous droits réservés.
    OriginalFilename : Cmd.Exe

    Memory scan result:
    »»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»
    New critical objects: 0
    Objects found so far: 13

    Started registry scan
    »»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»

    WindUpdates Object Recognized!
    Type : Regkey
    Data :
    TAC Rating : 8
    Category : Malware
    Comment :
    Rootkey : HKEY_CLASSES_ROOT
    Object : appid\{d28cd14c-50be-4cfa-951e-b37f25da3472}

    UCmore Object Recognized!
    Type : RegValue
    Data :
    TAC Rating : 3
    Category : Data Miner
    Comment : "{44BE0690-5429-47f0-85BB-3FFD8020233E}"
    Rootkey : HKEY_USERS
    Object : S-1-5-21-1957994488-562591055-682003330-1003\software\microsoft\internet explorer\toolbar
    Value : {44BE0690-5429-47f0-85BB-3FFD8020233E}

    Windows Object Recognized!
    Type : RegData
    Data :
    TAC Rating : 3
    Category : Vulnerability
    Comment :
    Rootkey : HKEY_USERS
    Object : .DEFAULT\software\microsoft\windows\currentversion\policies\system
    Value : DisableTaskMgr
    Data :

    Windows Object Recognized!
    Type : RegData
    Data :
    TAC Rating : 3
    Category : Vulnerability
    Comment :
    Rootkey : HKEY_USERS
    Object : S-1-5-18\software\microsoft\windows\currentversion\policies\system
    Value : DisableTaskMgr
    Data :

    Windows Object Recognized!
    Type : RegData
    Data :
    TAC Rating : 3
    Category : Vulnerability
    Comment :
    Rootkey : HKEY_USERS
    Object : .DEFAULT\software\microsoft\windows\currentversion\policies\system
    Value : DisableRegistryTools
    Data :

    Windows Object Recognized!
    Type : RegData
    Data :
    TAC Rating : 3
    Category : Vulnerability
    Comment :
    Rootkey : HKEY_USERS
    Object : S-1-5-18\software\microsoft\windows\currentversion\policies\system
    Value : DisableRegistryTools
    Data :

    Registry Scan result:
    »»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»
    New critical objects: 6
    Objects found so far: 19

    Started deep registry scan
    »»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»
    Possible Browser Hijack attempt : Software\Microsoft\Internet Explorer\MainSearch Page.findthewebsiteyouneed.com

    Possible Browser Hijack attempt Object Recognized!
    Type : RegData
    Data : "http://searchbar.findthewebsiteyouneed.com"
    TAC Rating : 3
    Category : Vulnerability
    Comment : Possible Browser Hijack attempt
    Rootkey : HKEY_LOCAL_MACHINE
    Object : Software\Microsoft\Internet Explorer\Main
    Value : Search Page
    Data : "http://searchbar.findthewebsiteyouneed.com"
    Possible Browser Hijack attempt : Software\Microsoft\Internet Explorer\SearchSearchAssistant.findthewebsiteyouneed.com

    Possible Browser Hijack attempt Object Recognized!
    Type : RegData
    Data : "http://searchbar.findthewebsiteyouneed.com"
    TAC Rating : 3
    Category : Vulnerability
    Comment : Possible Browser Hijack attempt
    Rootkey : HKEY_LOCAL_MACHINE
    Object : Software\Microsoft\Internet Explorer\Search
    Value : SearchAssistant
    Data : "http://searchbar.findthewebsiteyouneed.com"
    Possible Browser Hijack attempt : S-1-5-21-1957994488-562591055-682003330-1003\Software\Microsoft\Internet Explorer\MainSearch Page.findthewebsiteyouneed.com

    Possible Browser Hijack attempt Object Recognized!
    Type : RegData
    Data : "http://searchbar.findthewebsiteyouneed.com"
    TAC Rating : 3
    Category : Vulnerability
    Comment : Possible Browser Hijack attempt
    Rootkey : HKEY_USERS
    Object : S-1-5-21-1957994488-562591055-682003330-1003\Software\Microsoft\Internet Explorer\Main
    Value : Search Page
    Data : "http://searchbar.findthewebsiteyouneed.com"
    Possible Browser Hijack attempt : S-1-5-21-1957994488-562591055-682003330-1003\Software\Microsoft\Internet Explorer\MainStart Page.findthewebsiteyouneed.com

    Possible Browser Hijack attempt Object Recognized!
    Type : RegData
    Data : "http://www.findthewebsiteyouneed.com"
    TAC Rating : 3
    Category : Vulnerability
    Comment : Possible Browser Hijack attempt
    Rootkey : HKEY_USERS
    Object : S-1-5-21-1957994488-562591055-682003330-1003\Software\Microsoft\Internet Explorer\Main
    Value : Start Page
    Data : "http://www.findthewebsiteyouneed.com"
    Possible Browser Hijack attempt : S-1-5-21-1957994488-562591055-682003330-1003\Software\Microsoft\Internet Explorer\MainSearch Bar.findthewebsiteyouneed.com

    Possible Browser Hijack attempt Object Recognized!
    Type : RegData
    Data : "http://searchbar.findthewebsiteyouneed.com"
    TAC Rating : 3
    Category : Vulnerability
    Comment : Possible Browser Hijack attempt
    Rootkey : HKEY_USERS
    Object : S-1-5-21-1957994488-562591055-682003330-1003\Software\Microsoft\Internet Explorer\Main
    Value : Search Bar
    Data : "http://searchbar.findthewebsiteyouneed.com"
    Possible Browser Hijack attempt : S-1-5-21-1957994488-562591055-682003330-1003\Software\Microsoft\Internet Explorer\MainDefault_Search_URL.findthewebsiteyouneed.com

    Possible Browser Hijack attempt Object Recognized!
    Type : RegData
    Data : "http://searchbar.findthewebsiteyouneed.com"
    TAC Rating : 3
    Category : Vulnerability
    Comment : Possible Browser Hijack attempt
    Rootkey : HKEY_USERS
    Object : S-1-5-21-1957994488-562591055-682003330-1003\Software\Microsoft\Internet Explorer\Main
    Value : Default_Search_URL
    Data : "http://searchbar.findthewebsiteyouneed.com"

    Deep registry scan result:
    »»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»
    New critical objects: 6
    Objects found so far: 25

    Started Tracking Cookie scan
    »»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»

    Tracking Cookie Object Recognized!
    Type : IECache Entry
    Data : zebulon@weborama[2].txt
    TAC Rating : 3
    Category : Data Miner
    Comment : Hits:1
    Value : Cookie:zebulon@weborama.fr/
    Expires : 06/03/2006 00:43:14
    LastSync : Hits:1
    UseCount : 0
    Hits : 1

    Tracking Cookie Object Recognized!
    Type : IECache Entry
    Data : zebulon@doubleclick[2].txt
    TAC Rating : 3
    Category : Data Miner
    Comment : Hits:1
    Value : Cookie:zebulon@doubleclick.net/
    Expires : 06/03/2006 00:27:24
    LastSync : Hits:1
    UseCount : 0
    Hits : 1

    Tracking Cookie Object Recognized!
    Type : IECache Entry
    Data : zebulon@wreport.weborama[2].txt
    TAC Rating : 3
    Category : Data Miner
    Comment : Hits:1
    Value : Cookie:zebulon@wreport.weborama.fr/
    Expires : 07/05/2006 00:13:14
    LastSync : Hits:1
    UseCount : 0
    Hits : 1

    Tracking Cookie Object Recognized!
    Type : IECache Entry
    Data : zebulon@www.smartadserver[2].txt
    TAC Rating : 3
    Category : Data Miner
    Comment : Hits:3
    Value : Cookie:zebulon@www.smartadserver.com/
    Expires : 01/03/2026 00:44:28
    LastSync : Hits:3
    UseCount : 0
    Hits : 3

    Tracking Cookie Object Recognized!
    Type : IECache Entry
    Data : zebulon@estat[1].txt
    TAC Rating : 3
    Category : Data Miner
    Comment : Hits:1
    Value : Cookie:zebulon@estat.com/
    Expires : 02/03/2016 23:14:04
    LastSync : Hits:1
    UseCount : 0
    Hits : 1

    Tracking cookie scan result:
    »»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»
    New critical objects: 5
    Objects found so far: 30

    Deep scanning and examining files (C:)
    »»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»

    Adware.Freeprod Toolbar Object Recognized!
    Type : File
    Data : mc-110-12-0000244.exe
    TAC Rating : 3
    Category : Adware
    Comment :
    Object : C:\Documents and Settings\zebulon\Local Settings\Temp\

    Adware.Freeprod Toolbar Object Recognized!
    Type : File
    Data : mc-110-12-0000248.exe
    TAC Rating : 3
    Category : Adware
    Comment :
    Object : C:\Program Files\Softwin\BitDefender9\Quarantine\

    Adware.Freeprod Toolbar Object Recognized!
    Type : File
    Data : tmp1b
    TAC Rating : 3
    Category : Adware
    Comment :
    Object : C:\Program Files\Softwin\BitDefender9\Quarantine\

    Adware.Freeprod Toolbar Object Recognized!
    Type : File
    Data : tmp21
    TAC Rating : 3
    Category : Adware
    Comment :
    Object : C:\Program Files\Softwin\BitDefender9\Quarantine\

    Adware.Freeprod Toolbar Object Recognized!
    Type : File
    Data : tmp2a
    TAC Rating : 3
    Category : Adware
    Comment :
    Object : C:\Program Files\Softwin\BitDefender9\Quarantine\

    Adware.Freeprod Toolbar Object Recognized!
    Type : File
    Data : tmp2d
    TAC Rating : 3
    Category : Adware
    Comment :
    Object : C:\Program Files\Softwin\BitDefender9\Quarantine\

    Adware.Freeprod Toolbar Object Recognized!
    Type : File
    Data : tmp2e
    TAC Rating : 3
    Category : Adware
    Comment :
    Object : C:\Program Files\Softwin\BitDefender9\Quarantine\

    Adware.Freeprod Toolbar Object Recognized!
    Type : File
    Data : tmp36
    TAC Rating : 3
    Category : Adware
    Comment :
    Object : C:\Program Files\Softwin\BitDefender9\Quarantine\

    Adware.Freeprod Toolbar Object Recognized!
    Type : File
    Data : tmp3c
    TAC Rating : 3
    Category : Adware
    Comment :
    Object : C:\Program Files\Softwin\BitDefender9\Quarantine\

    Adware.Freeprod Toolbar Object Recognized!
    Type : File
    Data : tmp3d
    TAC Rating : 3
    Category : Adware
    Comment :
    Object : C:\Program Files\Softwin\BitDefender9\Quarantine\

    Adware.Freeprod Toolbar Object Recognized!
    Type : File
    Data : tmp3e
    TAC Rating : 3
    Category : Adware
    Comment :
    Object : C:\Program Files\Softwin\BitDefender9\Quarantine\

    Adware.Freeprod Toolbar Object Recognized!
    Type : File
    Data : tmp3f
    TAC Rating : 3
    Category : Adware
    Comment :
    Object : C:\Program Files\Softwin\BitDefender9\Quarantine\

    Adware.Freeprod Toolbar Object Recognized!
    Type : File
    Data : tmp41
    TAC Rating : 3
    Category : Adware
    Comment :
    Object : C:\Program Files\Softwin\BitDefender9\Quarantine\

    Adware.Freeprod Toolbar Object Recognized!
    Type : File
    Data : tmp6
    TAC Rating : 3
    Category : Adware
    Comment :
    Object : C:\Program Files\Softwin\BitDefender9\Quarantine\

    Adware.Freeprod Toolbar Object Recognized!
    Type : File
    Data : tmp63
    TAC Rating : 3
    Category : Adware
    Comment :
    Object : C:\Program Files\Softwin\BitDefender9\Quarantine\

    Adware.Freeprod Toolbar Object Recognized!
    Type : File
    Data : tmp81
    TAC Rating : 3
    Category : Adware
    Comment :
    Object : C:\Program Files\Softwin\BitDefender9\Quarantine\

    Adware.Freeprod Toolbar Object Recognized!
    Type : File
    Data : tmp88
    TAC Rating : 3
    Category : Adware
    Comment :
    Object : C:\Program Files\Softwin\BitDefender9\Quarantine\

    Adware.Freeprod Toolbar Object Recognized!
    Type : File
    Data : tmp8c
    TAC Rating : 3
    Category : Adware
    Comment :
    Object : C:\Program Files\Softwin\BitDefender9\Quarantine\

    Adware.Freeprod Toolbar Object Recognized!
    Type : File
    Data : tmp9
    TAC Rating : 3
    Category : Adware
    Comment :
    Object : C:\Program Files\Softwin\BitDefender9\Quarantine\

    Adware.Freeprod Toolbar Object Recognized!
    Type : File
    Data : tmp91
    TAC Rating : 3
    Category : Adware
    Comment :
    Object : C:\Program Files\Softwin\BitDefender9\Quarantine\

    Adware.Freeprod Toolbar Object Recognized!
    Type : File
    Data : tmp92
    TAC Rating : 3
    Category : Adware
    Comment :
    Object : C:\Program Files\Softwin\BitDefender9\Quarantine\

    Adware.Freeprod Toolbar Object Recognized!
    Type : File
    Data : tmp95
    TAC Rating : 3
    Category : Adware
    Comment :
    Object : C:\Program Files\Softwin\BitDefender9\Quarantine\

    Adware.Freeprod Toolbar Object Recognized!
    Type : File
    Data : tmp98
    TAC Rating : 3
    Category : Adware
    Comment :
    Object : C:\Program Files\Softwin\BitDefender9\Quarantine\

    Adware.Freeprod Toolbar Object Recognized!
    Type : File
    Data : tmp9c
    TAC Rating : 3
    Category : Adware
    Comment :
    Object : C:\Program Files\Softwin\BitDefender9\Quarantine\

    Adware.Freeprod Toolbar Object Recognized!
    Type : File
    Data : tmp9f
    TAC Rating : 3
    Category : Adware
    Comment :
    Object : C:\Program Files\Softwin\BitDefender9\Quarantine\

    Adware.Freeprod Toolbar Object Recognized!
    Type : File
    Data : tmpa3
    TAC Rating : 3
    Category : Adware
    Comment :
    Object : C:\Program Files\Softwin\BitDefender9\Quarantine\

    Adware.Freeprod Toolbar Object Recognized!
    Type : File
    Data : tmpa4
    TAC Rating : 3
    Category : Adware
    Comment :
    Object : C:\Program Files\Softwin\BitDefender9\Quarantine\

    Adware.Freeprod Toolbar Object Recognized!
    Type : File
    Data : tmpa7
    TAC Rating : 3
    Category : Adware
    Comment :
    Object : C:\Program Files\Softwin\BitDefender9\Quarantine\

    Adware.Freeprod Toolbar Object Recognized!
    Type : File
    Data : tmpa8
    TAC Rating : 3
    Category : Adware
    Comment :
    Object : C:\Program Files\Softwin\BitDefender9\Quarantine\

    Adware.Freeprod Toolbar Object Recognized!
    Type : File
    Data : tmpb
    TAC Rating : 3
    Category : Adware
    Comment :
    Object : C:\Program Files\Softwin\BitDefender9\Quarantine\

    Adware.Freeprod Toolbar Object Recognized!
    Type : File
    Data : tmpc0
    TAC Rating : 3
    Category : Adware
    Comment :
    Object : C:\Program Files\Softwin\BitDefender9\Quarantine\

    Adware.Freeprod Toolbar Object Recognized!
    Type : File
    Data : tmpd4
    TAC Rating : 3
    Category : Adware
    Comment :
    Object : C:\Program Files\Softwin\BitDefender9\Quarantine\

    Adware.Freeprod Toolbar Object Recognized!
    Type : File
    Data : tmpe7
    TAC Rating : 3
    Category : Adware
    Comment :
    Object : C:\Program Files\Softwin\BitDefender9\Quarantine\

    Adware.Freeprod Toolbar Object Recognized!
    Type : File
    Data : tmpe9
    TAC Rating : 3
    Category : Adware
    Comment :
    Object : C:\Program Files\Softwin\BitDefender9\Quarantine\

    UCmore Object Recognized!
    Type : File
    Data : ucmoreiex.exe
    TAC Rating : 3
    Category : Data Miner
    Comment :
    Object : C:\

    Adware.Freeprod Toolbar Object Recognized!
    Type : File
    Data : mc-110-12-0000248.exe
    TAC Rating : 3
    Category : Adware
    Comment :
    Object : C:\WINDOWS\Temp\

    Adware.Freeprod Toolbar Object Recognized!
    Type : File
    Data : tmp105
    TAC Rating : 3
    Category : Adware
    Comment :
    Object : C:\WINDOWS\Temp\

    Adware.Freeprod Toolbar Object Recognized!
    Type : File
    Data : tmp117
    TAC Rating : 3
    Category : Adware
    Comment :
    Object : C:\WINDOWS\Temp\

    Adware.Freeprod Toolbar Object Recognized!
    Type : File
    Data : tmp125
    TAC Rating : 3
    Category : Adware
    Comment :
    Object : C:\WINDOWS\Temp\

    Adware.Freeprod Toolbar Object Recognized!
    Type : File
    Data : tmp126
    TAC Rating : 3
    Category : Adware
    Comment :
    Object : C:\WINDOWS\Temp\

    Adware.Freeprod Toolbar Object Recognized!
    Type : File
    Data : tmp132
    TAC Rating : 3
    Category : Adware
    Comment :
    Object : C:\WINDOWS\Temp\

    Adware.Freeprod Toolbar Object Recognized!
    Type : File
    Data : tmp13b
    TAC Rating : 3
    Category : Adware
    Comment :
    Object : C:\WINDOWS\Temp\

    Adware.Freeprod Toolbar Object Recognized!
    Type : File
    Data : tmp13f
    TAC Rating : 3
    Category : Adware
    Comment :
    Object : C:\WINDOWS\Temp\

    Adware.Freeprod Toolbar Object Recognized!
    Type : File
    Data : tmp18b
    TAC Rating : 3
    Category : Adware
    Comment :
    Object : C:\WINDOWS\Temp\

    Adware.Freeprod Toolbar Object Recognized!
    Type : File
    Data : tmp18c
    TAC Rating : 3
    Category : Adware
    Comment :
    Object : C:\WINDOWS\Temp\

    Adware.Freeprod Toolbar Object Recognized!
    Type : File
    Data : tmp18e
    TAC Rating : 3
    Category : Adware
    Comment :
    Object : C:\WINDOWS\Temp\

    Adware.Freeprod Toolbar Object Recognized!
    Type : File
    Data : tmp18f
    TAC Rating : 3
    Category : Adware
    Comment :
    Object : C:\WINDOWS\Temp\

    Adware.Freeprod Toolbar Object Recognized!
    Type : File
    Data : tmp190
    TAC Rating : 3
    Category : Adware
    Comment :
    Object : C:\WINDOWS\Temp\

    Adware.Freeprod Toolbar Object Recognized!
    Type : File
    Data : tmp191
    TAC Rating : 3
    Category : Adware
    Comment :
    Object : C:\WINDOWS\Temp\

    Adware.Freeprod Toolbar Object Recognized!
    Type : File
    Data : tmp193
    TAC Rating : 3
    Category : Adware
    Comment :
    Object : C:\WINDOWS\Temp\

    Adware.Freeprod Toolbar Object Recognized!
    Type : File
    Data : tmp196
    TAC Rating : 3
    Category : Adware
    Comment :
    Object : C:\WINDOWS\Temp\

    Adware.Freeprod Toolbar Object Recognized!
    Type : File
    Data : tmp197
    TAC Rating : 3
    Category : Adware
    Comment :
    Object : C:\WINDOWS\Temp\

    Adware.Freeprod Toolbar Object Recognized!
    Type : File
    Data : tmp198
    TAC Rating : 3
    Category : Adware
    Comment :
    Object : C:\WINDOWS\Temp\

    Adware.Freeprod Toolbar Object Recognized!
    Type : File
    Data : tmp19a
    TAC Rating : 3
    Category : Adware
    Comment :
    Object : C:\WINDOWS\Temp\

    Adware.Freeprod Toolbar Object Recognized!
    Type : File
    Data : tmp19b
    TAC Rating : 3
    Category : Adware
    Comment :
    Object : C:\WINDOWS\Temp\

    Adware.Freeprod Toolbar Object Recognized!
    Type : File
    Data : tmp19c
    TAC Rating : 3
    Category : Adware
    Comment :
    Object : C:\WINDOWS\Temp\

    Adware.Freeprod Toolbar Object Recognized!
    Type : File
    Data : tmp19d
    TAC Rating : 3
    Category : Adware
    Comment :
    Object : C:\WINDOWS\Temp\

    Adware.Freeprod Toolbar Object Recognized!
    Type : File
    Data : tmp19f
    TAC Rating : 3
    Category : Adware
    Comment :
    Object : C:\WINDOWS\Temp\

    Adware.Freeprod Toolbar Object Recognized!
    Type : File
    Data : tmp1a1
    TAC Rating : 3
    Category : Adware
    Comment :
    Object : C:\WINDOWS\Temp\

    Adware.Freeprod Toolbar Object Recognized!
    Type : File
    Data : tmp1a2
    TAC Rating : 3
    Category : Adware
    Comment :
    Object : C:\WINDOWS\Temp\

    Adware.Freeprod Toolbar Object Recognized!
    Type : File
    Data : tmp1a6
    TAC Rating : 3
    Category : Adware
    Comment :
    Object : C:\WINDOWS\Temp\

    Adware.Freeprod Toolbar Object Recognized!
    Type : File
    Data : tmp1a7
    TAC Rating : 3
    Category : Adware
    Comment :
    Object : C:\WINDOWS\Temp\

    Adware.Freeprod Toolbar Object Recognized!
    Type : File
    Data : tmp1a8
    TAC Rating : 3
    Category : Adware
    Comment :
    Object : C:\WINDOWS\Temp\

    Adware.Freeprod Toolbar Object Recognized!
    Type : File
    Data : tmp1a9
    TAC Rating : 3
    Category : Adware
    Comment :
    Object : C:\WINDOWS\Temp\

    Adware.Freeprod Toolbar Object Recognized!
    Type : File
    Data : tmp1c
    TAC Rating : 3
    Category : Adware
    Comment :
    Object : C:\WINDOWS\Temp\

    Adware.Freeprod Toolbar Object Recognized!
    Type : File
    Data : tmp1d
    TAC Rating : 3
    Category : Adware
    Comment :
    Object : C:\WINDOWS\Temp\

    Adware.Freeprod Toolbar Object Recognized!
    Type : File
    Data : tmp1e
    TAC Rating : 3
    Category : Adware
    Comment :
    Object : C:\WINDOWS\Temp\

    Adware.Freeprod Toolbar Object Recognized!
    Type : File
    Data : tmp1f
    TAC Rating : 3
    Category : Adware
    Comment :
    Object : C:\WINDOWS\Temp\

    Adware.Freeprod Toolbar Object Recognized!
    Type : File
    Data : tmp2
    TAC Rating : 3
    Category : Adware
    Comment :
    Object : C:\WINDOWS\Temp\

    Adware.Freeprod Toolbar Object Recognized!
    Type : File
    Data : tmp25
    TAC Rating : 3
    Category : Adware
    Comment :
    Object : C:\WINDOWS\Temp\

    Adware.Freeprod Toolbar Object Recognized!
    Type : File
    Data : tmp29
    TAC Rating : 3
    Category : Adware
    Comment :
    Object : C:\WINDOWS\Temp\

    Adware.Freeprod Toolbar Object Recognized!
    Type : File
    Data : tmp2a
    TAC Rating : 3
    Category : Adware
    Comment :
    Object : C:\WINDOWS\Temp\

    Adware.Freeprod Toolbar Object Recognized!
    Type : File
    Data : tmp2c
    TAC Rating : 3
    Category : Adware
    Comment :
    Object : C:\WINDOWS\Temp\

    Adware.Freeprod Toolbar Object Recognized!
    Type : File
    Data : tmp390
    TAC Rating : 3
    Category : Adware
    Comment :
    Object : C:\WINDOWS\Temp\

    Adware.Freeprod Toolbar Object Recognized!
    Type : File
    Data : tmp391
    TAC Rating : 3
    Category : Adware
    Comment :
    Object : C:\WINDOWS\Temp\

    Adware.Freeprod Toolbar Object Recognized!
    Type : File
    Data : tmp392
    TAC Rating : 3
    Category : Adware
    Comment :
    Object : C:\WINDOWS\Temp\

    Adware.Freeprod Toolbar Object Recognized!
    Type : File
    Data : tmp396
    TAC Rating : 3
    Category : Adware
    Comment :
    Object : C:\WINDOWS\Temp\

    Adware.Freeprod Toolbar Object Recognized!
    Type : File
    Data : tmp397
    TAC Rating : 3
    Category : Adware
    Comment :
    Object : C:\WINDOWS\Temp\

    Adware.Freeprod Toolbar Object Recognized!
    Type : File
    Data : tmp39e
    TAC Rating : 3
    Category : Adware
    Comment :
    Object : C:\WINDOWS\Temp\

    Adware.Freeprod Toolbar Object Recognized!
    Type : File
    Data : tmp3a0
    TAC Rating : 3
    Category : Adware
    Comment :
    Object : C:\WINDOWS\Temp\

    Adware.Freeprod Toolbar Object Recognized!
    Type : File
    Data : tmp3a1
    TAC Rating : 3
    Category : Adware
    Comment :
    Object : C:\WINDOWS\Temp\

    Adware.Freeprod Toolbar Object Recognized!
    Type : File
    Data : tmp3a4
    TAC Rating : 3
    Category : Adware
    Comment :
    Object : C:\WINDOWS\Temp\

    Adware.Freeprod Toolbar Object Recognized!
    Type : File
    Data : tmp3a6
    TAC Rating : 3
    Category : Adware
    Comment :
    Object : C:\WINDOWS\Temp\

    Adware.Freeprod Toolbar Object Recognized!
    Type : File
    Data : tmp3a7
    TAC Rating : 3
    Category : Adware
    Comment :
    Object : C:\WINDOWS\Temp\

    Adware.Freeprod Toolbar Object Recognized!
    Type : File
    Data : tmp3a8
    TAC Rating : 3
    Category : Adware
    Comment :
    Object : C:\WINDOWS\Temp\

    Adware.Freeprod Toolbar Object Recognized!
    Type : File
    Data : tmp3ab
    TAC Rating : 3
    Category : Adware
    Comment :
    Object : C:\WINDOWS\Temp\

    Adware.Freeprod Toolbar Object Recognized!
    Type : File
    Data : tmp3ac
    TAC Rating : 3
    Category : Adware
    Comment :
    Object : C:\WINDOWS\Temp\

    Adware.Freeprod Toolbar Object Recognized!
    Type : File
    Data : tmp3ad
    TAC Rating : 3
    Category : Adware
    Comment :
    Object : C:\WINDOWS\Temp\

    Adware.Freeprod Toolbar Object Recognized!
    Type : File
    Data : tmp3af
    TAC Rating : 3
    Category : Adware
    Comment :
    Object : C:\WINDOWS\Temp\

    Adware.Freeprod Toolbar Object Recognized!
    Type : File
    Data : tmp3b0
    TAC Rating : 3
    Category : Adware
    Comment :
    Object : C:\WINDOWS\Temp\

    Adware.Freeprod Toolbar Object Recognized!
    Type : File
    Data : tmp3b2
    TAC Rating : 3
    Category : Adware
    Comment :
    Object : C:\WINDOWS\Temp\

    Adware.Freeprod Toolbar Object Recognized!
    Type : File
    Data : tmp3b3
    TAC Rating : 3
    Category : Adware
    Comment :
    Object : C:\WINDOWS\Temp\

    Adware.Freeprod Toolbar Object Recognized!
    Type : File
    Data : tmp3b4
    TAC Rating : 3
    Category : Adware
    Comment :
    Object : C:\WINDOWS\Temp\

    Adware.Freeprod Toolbar Object Recognized!
    Type : File
    Data : tmp3b5
    TAC Rating : 3
    Category : Adware
    Comment :
    Object : C:\WINDOWS\Temp\

    Adware.Freeprod Toolbar Object Recognized!
    Type : File
    Data : tmp3b8
    TAC Rating : 3
    Category : Adware
    Comment :
    Object : C:\WINDOWS\Temp\

    Adware.Freeprod Toolbar Object Recognized!
    Type : File
    Data : tmp3b9
    TAC Rating : 3
    Category : Adware
    Comment :
    Object : C:\WINDOWS\Temp\

    Adware.Freeprod Toolbar Object Recognized!
    Type : File
    Data : tmp4
    TAC Rating : 3
    Category : Adware
    Comment :
    Object : C:\WINDOWS\Temp\

    Adware.Freeprod Toolbar Object Recognized!
    Type : File
    Data : tmp4c
    TAC Rating : 3
    Category : Adware
    Comment :
    Object : C:\WINDOWS\Temp\

    Adware.Freeprod Toolbar Object Recognized!
    Type : File
    Data : tmp4d
    TAC Rating : 3
    Category : Adware
    Comment :
    Object : C:\WINDOWS\Temp\

    Adware.Freeprod Toolbar Object Recognized!
    Type : File
    Data : tmp4e
    TAC Rating : 3
    Category : Adware
    Comment :
    Object : C:\WINDOWS\Temp\

    Adware.Freeprod Toolbar Object Recognized!
    Type : File
    Data : tmp4f
    TAC Rating : 3
    Category : Adware
    Comment :
    Object : C:\WINDOWS\Temp\

    Adware.Freeprod Toolbar Object Recognized!
    Type : File
    Data : tmp50
    TAC Rating : 3
    Category : Adware
    Comment :
    Object : C:\WINDOWS\Temp\

    Adware.Freeprod Toolbar Object Recognized!
    Type : File
    Data : tmp51
    TAC Rating : 3
    Category : Adware
    Comment :
    Object : C:\WINDOWS\Temp\

    Adware.Freeprod Toolbar Object Recognized!
    Type : File
    Data : tmp53
    TAC Rating : 3
    Category : Adware
    Comment :
    Object : C:\WINDOWS\Temp\

    Adware.Freeprod Toolbar Object Recognized!
    Type : File
    Data : tmp55
    TAC Rating : 3
    Category : Adware
    Comment :
    Object : C:\WINDOWS\Temp\

    Adware.Freeprod Toolbar Object Recognized!
    Type : File
    Data : tmp59
    TAC Rating : 3
    Category : Adware
    Comment :
    Object : C:\WINDOWS\Temp\

    Adware.Freeprod Toolbar Object Recognized!
    Type : File
    Data : tmp5d
    TAC Rating : 3
    Category : Adware
    Comment :
    Object : C:\WINDOWS\Temp\

    Adware.Freeprod Toolbar Object Recognized!
    Type : File
    Data : tmp5f
    TAC Rating : 3
    Category : Adware
    Comment :
    Object : C:\WINDOWS\Temp\

    Adware.Freeprod Toolbar Object Recognized!
    Type : File
    Data : tmp6
    TAC Rating : 3
    Category : Adware
    Comment :
    Object : C:\WINDOWS\Temp\

    Adware.Freeprod Toolbar Object Recognized!
    Type : File
    Data : tmp6c
    TAC Rating : 3
    Category : Adware
    Comment :
    Object : C:\WINDOWS\Temp\

    Adware.Freeprod Toolbar Object Recognized!
    Type : File
    Data : tmp73
    TAC Rating : 3
    Category : Adware
    Comment :
    Object : C:\WINDOWS\Temp\

    Adware.Freeprod Toolbar Object Recognized!
    Type : File
    Data : tmp74
    TAC Rating : 3
    Category : Adware
    Comment :
    Object : C:\WINDOWS\Temp\

    Adware.Freeprod Toolbar Object Recognized!
    Type : File
    Data : tmp8
    TAC Rating : 3
    Category : Adware
    Comment :
    Object : C:\WINDOWS\Temp\

    Adware.Freeprod Toolbar Object Recognized!
    Type : File
    Data : tmpac
    TAC Rating : 3
    Category : Adware
    Comment :
    Object : C:\WINDOWS\Temp\

    Adware.Freeprod Toolbar Object Recognized!
    Type : File
    Data : tmpb2
    TAC Rating : 3
    Category : Adware
    0
  17. aranjuez31 Messages postés 8161 Date d'inscription   Statut Contributeur 354
     
    'soir
    que c est indigeste à lire ceci

    vide quarantaine d'ad-aware via le cadenas
    vide " " de ton bitdef9

    aimerais avoir le résultat du online de bit (pas de bitdef9)
    http://www.bitdefender.fr/bd/site/search.php#
    ==================
    avoir 2 antivirus se résume à ce qu aucun des deux ne bosse vraiment
    alors fais ton choix
    qu on avance un peu
    qu on aie plus de conflits sans arrêt
    ============
    quand tu es hors net il est évident que tu peux désactiver
    ========================
    j ai besoin de conna^tre ts tes programmes pour y mettre bon ordre une fois pour toute
    pour se faire tu fais ceci
    ouvre hijack

    clic open the misc tools + clic open uninstall mananger + clic save list +enregistre fichier + copie/colle rapport généré ici
    0
  18. Utilisateur anonyme
     
    Bonjour Aranjuez
    Je comprends ton énervement, il n’est probablement pas à l’égal du mien.
    Ce qui est parfois difficile quand on est un peu novice comme moi, c’est qu’on a peur de faire des conneries, de supprimer des fichiers système, etc etc Et pourtant je suis méfiante : depuis plusieurs jours je subis les assauts de Winfixer et de Spysheriff, que naturellement je ne peux faire disparaître !!
    Une question devant tant de disponibilité : es tu employé par le site ou fais tu cela par passion ?
    Dans les deux cas merci de cet outil !
    Je reste avec ma question non résolue d’extraction de smitfraudfix que je ne peux démarrer car il m’indique toujours de décompresser le process.exe, que je fais mais qui ne donne rien !!
    Pourquoi sans arrêt, je supprime et les fichiers reviennent m’empoisonner !!
    Concernant l’antivirus : pourquoi certains sont ils payants et d’autres gratuits ? Avast est-il aussi performant que Bit Defender ? à qui faire confiance ?

    J’ai plein d’autres questions mais j’en garde pour plus tard !! lol
    ---------------------------------------------------------
    ewido anti-malware - Rapport de scan
    ---------------------------------------------------------

    + Créé le: 07:54:22, 09/03/2006
    + Somme de contrôle: 6DC6922A

    + Résultats du scan:

    HKLM\SOFTWARE\Classes\CLSID\{EA32FB3B-21C9-42cc-B8EF-01A9B28EDB0D} -> Adware.Virtumonde : Nettoyer et sauvegarder
    HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{EA32FB3B-21C9-42cc-B8EF-01A9B28EDB0D} -> Adware.Virtumonde : Nettoyer et sauvegarder
    [2664] C:\WINDOWS\tool2.exe -> Not-A-Virus.Hoax.Win32.Renos.al : Nettoyer et sauvegarder
    [3480] C:\mousepad1.exe -> Hijacker.VB.li : Nettoyer et sauvegarder
    C:\Documents and Settings\LocalService\Local Settings\Temporary Internet Files\Content.IE5\0L6V01AF\1000mails[1].exe -> Logger.Small.ak : Nettoyer et sauvegarder
    C:\Documents and Settings\LocalService\Local Settings\Temporary Internet Files\Content.IE5\0L6V01AF\paytime[1].txt -> Hijacker.StartPage.adi : Nettoyer et sauvegarder
    C:\Documents and Settings\LocalService\Local Settings\Temporary Internet Files\Content.IE5\0L6V01AF\toolbar[1].txt -> Downloader.Adload.t : Nettoyer et sauvegarder
    C:\Documents and Settings\LocalService\Local Settings\Temporary Internet Files\Content.IE5\45ULMB8R\drsmartload[2].exe -> Downloader.VB.ya : Nettoyer et sauvegarder
    C:\Documents and Settings\LocalService\Local Settings\Temporary Internet Files\Content.IE5\45ULMB8R\tool2[1].txt -> Not-A-Virus.Hoax.Win32.Renos.al : Nettoyer et sauvegarder
    C:\Documents and Settings\LocalService\Local Settings\Temporary Internet Files\Content.IE5\IKC33J8D\drsmartload[1].exe -> Downloader.VB.ya : Nettoyer et sauvegarder
    C:\Documents and Settings\LocalService\Local Settings\Temporary Internet Files\Content.IE5\IKC33J8D\l[1].exe -> Downloader.Agent.afl : Nettoyer et sauvegarder
    C:\Documents and Settings\LocalService\Local Settings\Temporary Internet Files\Content.IE5\IKC33J8D\ms1[1].txt -> Downloader.Tiny.al : Nettoyer et sauvegarder
    C:\Documents and Settings\LocalService\Local Settings\Temporary Internet Files\Content.IE5\VDVOXTMD\paytime[1].txt -> Hijacker.StartPage.adi : Nettoyer et sauvegarder
    C:\drsmartload1.exe -> Downloader.VB.ya : Nettoyer et sauvegarder
    C:\gimmygames10a.exe -> Downloader.VB.xl : Nettoyer et sauvegarder
    C:\gimmygames11.exe -> Downloader.Adload.u : Nettoyer et sauvegarder
    C:\gimmysmileys.exe -> Downloader.VB.xu : Nettoyer et sauvegarder
    C:\keyboard.exe -> Downloader.VB.xv : Nettoyer et sauvegarder
    C:\mousepad.exe -> Hijacker.VB.li : Nettoyer et sauvegarder
    C:\mousepad1.exe -> Hijacker.VB.li : Nettoyer et sauvegarder
    C:\Program Files\Softwin\BitDefender9\Quarantine\eraseme_86770.exe -> Backdoor.SdBot.anp : Nettoyer et sauvegarder
    C:\Program Files\Softwin\BitDefender9\Quarantine\inetdns.exe -> Backdoor.SdBot.anp : Nettoyer et sauvegarder
    C:\Program Files\Softwin\BitDefender9\Quarantine\tmp13 -> Downloader.Adload.v : Nettoyer et sauvegarder
    C:\Program Files\Softwin\BitDefender9\Quarantine\tmp1c -> Downloader.Adload.v : Nettoyer et sauvegarder
    C:\Program Files\Softwin\BitDefender9\Quarantine\tmp2b -> Downloader.Adload.v : Nettoyer et sauvegarder
    C:\Program Files\Softwin\BitDefender9\Quarantine\tmp2c -> Downloader.Adload.v : Nettoyer et sauvegarder
    C:\Program Files\Softwin\BitDefender9\Quarantine\tmp31 -> Downloader.Adload.v : Nettoyer et sauvegarder
    C:\Program Files\Softwin\BitDefender9\Quarantine\tmp33 -> Downloader.Adload.v : Nettoyer et sauvegarder
    C:\Program Files\Softwin\BitDefender9\Quarantine\tmp58 -> Downloader.Adload.v : Nettoyer et sauvegarder
    C:\Program Files\Softwin\BitDefender9\Quarantine\tmp5a -> Downloader.Adload.v : Nettoyer et sauvegarder
    C:\Program Files\Softwin\BitDefender9\Quarantine\tmp5c -> Downloader.Adload.v : Nettoyer et sauvegarder
    C:\Program Files\Softwin\BitDefender9\Quarantine\tmp5e -> Downloader.Adload.v : Nettoyer et sauvegarder
    C:\Program Files\Softwin\BitDefender9\Quarantine\tmp5f -> Downloader.Adload.v : Nettoyer et sauvegarder
    C:\Program Files\Softwin\BitDefender9\Quarantine\tmp66 -> Downloader.Adload.v : Nettoyer et sauvegarder
    C:\Program Files\Softwin\BitDefender9\Quarantine\tmp6e -> Downloader.Adload.v : Nettoyer et sauvegarder
    C:\Program Files\Softwin\BitDefender9\Quarantine\tmp73 -> Downloader.Adload.v : Nettoyer et sauvegarder
    C:\Program Files\Softwin\BitDefender9\Quarantine\tmp77 -> Downloader.Adload.v : Nettoyer et sauvegarder
    C:\Program Files\Softwin\BitDefender9\Quarantine\tmp7d -> Downloader.Adload.v : Nettoyer et sauvegarder
    C:\Program Files\Softwin\BitDefender9\Quarantine\tmp93 -> Downloader.Adload.v : Nettoyer et sauvegarder
    C:\Program Files\Softwin\BitDefender9\Quarantine\tmp96 -> Downloader.Adload.v : Nettoyer et sauvegarder
    C:\Program Files\Softwin\BitDefender9\Quarantine\tmp97 -> Downloader.Adload.v : Nettoyer et sauvegarder
    C:\Program Files\Softwin\BitDefender9\Quarantine\tmp9b -> Downloader.Adload.v : Nettoyer et sauvegarder
    C:\Program Files\Softwin\BitDefender9\Quarantine\tmpa -> Downloader.Adload.v : Nettoyer et sauvegarder
    C:\Program Files\Softwin\BitDefender9\Quarantine\tmpaf -> Downloader.Adload.v : Nettoyer et sauvegarder
    C:\Program Files\Softwin\BitDefender9\Quarantine\tmpb5 -> Downloader.Adload.v : Nettoyer et sauvegarder
    C:\Program Files\Softwin\BitDefender9\Quarantine\tmpb7 -> Downloader.Adload.v : Nettoyer et sauvegarder
    C:\Program Files\Softwin\BitDefender9\Quarantine\tmpb8 -> Downloader.Adload.v : Nettoyer et sauvegarder
    C:\Program Files\Softwin\BitDefender9\Quarantine\tmpbd -> Downloader.Adload.v : Nettoyer et sauvegarder
    C:\Program Files\Softwin\BitDefender9\Quarantine\tmpc8 -> Downloader.Adload.v : Nettoyer et sauvegarder
    C:\Program Files\Softwin\BitDefender9\Quarantine\tmpcf -> Downloader.Adload.v : Nettoyer et sauvegarder
    C:\Program Files\Softwin\BitDefender9\Quarantine\tmpd2 -> Downloader.Adload.v : Nettoyer et sauvegarder
    C:\Program Files\Softwin\BitDefender9\Quarantine\tmpd8 -> Downloader.Adload.v : Nettoyer et sauvegarder
    C:\Program Files\Softwin\BitDefender9\Quarantine\tmpd9 -> Downloader.Adload.v : Nettoyer et sauvegarder
    C:\Program Files\Softwin\BitDefender9\Quarantine\tmpdc -> Downloader.Adload.v : Nettoyer et sauvegarder
    C:\Program Files\Softwin\BitDefender9\Quarantine\tmpdf -> Downloader.Adload.v : Nettoyer et sauvegarder
    C:\Program Files\Softwin\BitDefender9\Quarantine\tmpe -> Downloader.Adload.v : Nettoyer et sauvegarder
    C:\Program Files\Softwin\BitDefender9\Quarantine\tmpe6 -> Downloader.Adload.v : Nettoyer et sauvegarder
    C:\Program Files\Softwin\BitDefender9\Quarantine\tmpea -> Downloader.Adload.v : Nettoyer et sauvegarder
    C:\Program Files\Softwin\BitDefender9\Quarantine\tmpee -> Downloader.Adload.v : Nettoyer et sauvegarder
    C:\Program Files\Softwin\BitDefender9\Quarantine\tmpf1 -> Downloader.Adload.v : Nettoyer et sauvegarder
    C:\Program Files\Softwin\BitDefender9\Quarantine\tmpf2 -> Downloader.Adload.v : Nettoyer et sauvegarder
    C:\Program Files\Softwin\BitDefender9\Quarantine\tmpfc -> Downloader.Adload.v : Nettoyer et sauvegarder
    C:\Program Files\Softwin\BitDefender9\Quarantine\winsysupd10.exe -> Downloader.VB.wg : Nettoyer et sauvegarder
    C:\Program Files\Softwin\BitDefender9\Quarantine\winsysupd11.exe -> Trojan.VB.ajo : Nettoyer et sauvegarder
    C:\WINDOWS\gimmygames11.exe -> Downloader.Adload.u : Nettoyer et sauvegarder
    C:\WINDOWS\system32\comsyslog.exe -> Backdoor.SdBot.anx : Nettoyer et sauvegarder
    C:\WINDOWS\system32\nse1C.dll -> Adware.EZula : Nettoyer et sauvegarder
    C:\WINDOWS\system32\nsw6.dll -> Adware.EZula : Nettoyer et sauvegarder
    C:\WINDOWS\system32\nsz17.dll -> Adware.EZula : Nettoyer et sauvegarder
    C:\WINDOWS\Temp\11.tmp -> Downloader.Small.cme : Nettoyer et sauvegarder
    C:\WINDOWS\Temp\13.tmp -> Logger.Small.ak : Nettoyer et sauvegarder
    C:\WINDOWS\Temp\tmp10 -> Trojan.VB.ajo : Nettoyer et sauvegarder
    C:\WINDOWS\Temp\tmp12 -> Trojan.VB.ajo : Nettoyer et sauvegarder
    C:\WINDOWS\Temp\tmp13 -> Trojan.VB.ajo : Nettoyer et sauvegarder
    C:\WINDOWS\Temp\tmp16 -> Downloader.Adload.t : Nettoyer et sauvegarder
    C:\WINDOWS\Temp\tmp1a -> Downloader.Adload.t : Nettoyer et sauvegarder
    C:\WINDOWS\Temp\tmp1b -> Downloader.Adload.t : Nettoyer et sauvegarder
    C:\WINDOWS\Temp\tmp1d -> Downloader.Adload.t : Nettoyer et sauvegarder
    C:\WINDOWS\Temp\tmp1e -> Downloader.Adload.t : Nettoyer et sauvegarder
    C:\WINDOWS\Temp\tmp1f -> Downloader.Adload.t : Nettoyer et sauvegarder
    C:\WINDOWS\Temp\tmp20 -> Downloader.Adload.t : Nettoyer et sauvegarder
    C:\WINDOWS\Temp\tmp24 -> Downloader.Adload.t : Nettoyer et sauvegarder
    C:\WINDOWS\Temp\tmp27 -> Downloader.Adload.t : Nettoyer et sauvegarder
    C:\WINDOWS\Temp\tmp28 -> Downloader.Adload.t : Nettoyer et sauvegarder
    C:\WINDOWS\Temp\tmp29 -> Downloader.Adload.t : Nettoyer et sauvegarder
    C:\WINDOWS\Temp\tmp2b -> Downloader.Adload.t : Nettoyer et sauvegarder
    C:\WINDOWS\Temp\tmp2d -> Downloader.Adload.t : Nettoyer et sauvegarder
    C:\WINDOWS\Temp\tmp30 -> Hijacker.StartPage.adi : Nettoyer et sauvegarder
    C:\WINDOWS\Temp\tmp31 -> Hijacker.StartPage.adi : Nettoyer et sauvegarder
    C:\WINDOWS\Temp\tmp35/UCMTSAIE.DLL -> Adware.Ucmore : Nettoyer et sauvegarder
    C:\WINDOWS\Temp\tmp35/IUCMORE.DLL -> Adware.Ucmore : Nettoyer et sauvegarder
    C:\WINDOWS\Temp\tmp37/UCMTSAIE.DLL -> Adware.Ucmore : Nettoyer et sauvegarder
    C:\WINDOWS\Temp\tmp37/IUCMORE.DLL -> Adware.Ucmore : Nettoyer et sauvegarder
    C:\WINDOWS\Temp\tmp38 -> Hijacker.StartPage.adi : Nettoyer et sauvegarder
    C:\WINDOWS\Temp\tmp3a/UCMTSAIE.DLL -> Adware.Ucmore : Nettoyer et sauvegarder
    C:\WINDOWS\Temp\tmp3a/IUCMORE.DLL -> Adware.Ucmore : Nettoyer et sauvegarder
    C:\WINDOWS\Temp\tmp3b -> Hijacker.StartPage.adi : Nettoyer et sauvegarder
    C:\WINDOWS\Temp\tmp3f -> Hijacker.StartPage.adi : Nettoyer et sauvegarder
    C:\WINDOWS\Temp\tmpc1 -> Downloader.Adload.t : Nettoyer et sauvegarder
    C:\WINDOWS\Temp\tmpd -> Trojan.VB.ajo : Nettoyer et sauvegarder
    C:\WINDOWS\Temp\tmpf -> Trojan.VB.ajo : Nettoyer et sauvegarder
    C:\WINDOWS\tool2.exe -> Not-A-Virus.Hoax.Win32.Renos.al : Nettoyer et sauvegarder
    C:\WINDOWS\toolbar.exe -> Downloader.Adload.t : Nettoyer et sauvegarder
    C:\WINDOWS\winsysban11.exe -> Hijacker.VB.li : Nettoyer et sauvegarder
    C:\WINDOWS\winsysupd11.exe -> Trojan.VB.ajo : Nettoyer et sauvegarder
    C:\winsysban11.exe -> Hijacker.VB.li : Nettoyer et sauvegarder
    C:\winsysban12.exe -> Hijacker.VB.li : Nettoyer et sauvegarder

    ::Fin du rapport

    BitDefender Online Scanner
    Rapport d'analyse généré à: Thu, Mar 09, 2006 - 10:32:37

    Voie d'analyse: A:\;C:\;D:\;E:\;F:\;G:\;

    Statistiques
    Temps 01:50:05
    Fichiers 338658
    Directoires 1611
    Secteurs de boot 4
    Archives 1650
    Paquets programmes 45727

    Résultats
    Virus identifiés 23
    Fichiers infectés 134
    Fichiers suspects 5
    Avertissements 0
    Désinfectés 0
    Fichiers effacés 138

    Info sur les moteurs
    Définition virus 300810
    Version des moteurs AVCORE v1.0 (build 2292) (i386) (Mar 3 2005 11:57:29)
    Analyse des plugins 13
    Archive des plugins 39
    Unpack des plugins 4
    E-mail plugins 6
    Système plugins 1

    Paramètres d'analyse
    Première action Désinfecté
    Seconde Action Supprimé
    Heuristique Oui
    Acceptez les avertissements Oui
    Extensions analysées *;
    Excludez les extensions
    Analyse d'emails Oui
    Analyse des Archives Oui
    Analyser paquets programmes Oui
    Analyse des fichiers Oui
    Analyse de boot Oui

    Fichier analysé Statut
    C:\Documents and Settings\LocalService\Local Settings\Temporary Internet Files\Content.IE5\0L6V01AF\tool4[1].txt Infecté par: Trojan.Proxy.Wopla.C
    C:\Documents and Settings\LocalService\Local Settings\Temporary Internet Files\Content.IE5\0L6V01AF\tool4[1].txt Echec de la désinfection
    C:\Documents and Settings\LocalService\Local Settings\Temporary Internet Files\Content.IE5\0L6V01AF\tool4[1].txt Supprimé
    C:\Documents and Settings\LocalService\Local Settings\Temporary Internet Files\Content.IE5\0L6V01AF\toolbar[1].txt Infecté par: Trojan.Downloader.Adload.U
    C:\Documents and Settings\LocalService\Local Settings\Temporary Internet Files\Content.IE5\0L6V01AF\toolbar[1].txt Echec de la désinfection
    C:\Documents and Settings\LocalService\Local Settings\Temporary Internet Files\Content.IE5\0L6V01AF\toolbar[1].txt Supprimé
    C:\Documents and Settings\LocalService\Local Settings\Temporary Internet Files\Content.IE5\45ULMB8R\hosts[1].txt Infecté par: Trojan.Qhosts.HE
    C:\Documents and Settings\LocalService\Local Settings\Temporary Internet Files\Content.IE5\45ULMB8R\hosts[1].txt Supprimé
    C:\Documents and Settings\LocalService\Local Settings\Temporary Internet Files\Content.IE5\45ULMB8R\tool1[1].txt Infecté par: Trojan.ProcKill.DJ
    C:\Documents and Settings\LocalService\Local Settings\Temporary Internet Files\Content.IE5\45ULMB8R\tool1[1].txt Echec de la désinfection
    C:\Documents and Settings\LocalService\Local Settings\Temporary Internet Files\Content.IE5\45ULMB8R\tool1[1].txt Supprimé
    C:\Documents and Settings\LocalService\Local Settings\Temporary Internet Files\Content.IE5\45ULMB8R\tool3[1].txt Suspecté de: Trojan.Downloader.Small.LK
    C:\Documents and Settings\LocalService\Local Settings\Temporary Internet Files\Content.IE5\45ULMB8R\tool3[1].txt Echec de la désinfection
    C:\Documents and Settings\LocalService\Local Settings\Temporary Internet Files\Content.IE5\45ULMB8R\tool3[1].txt Supprimé
    C:\Documents and Settings\LocalService\Local Settings\Temporary Internet Files\Content.IE5\IKC33J8D\launcher[1].exe Infecté par: Trojan.Downloader.NSIS.Agent.P
    C:\Documents and Settings\LocalService\Local Settings\Temporary Internet Files\Content.IE5\IKC33J8D\launcher[1].exe Supprimé
    C:\Documents and Settings\LocalService\Local Settings\Temporary Internet Files\Content.IE5\IKC33J8D\ms1[1].txt Infecté par: Trojan.Downloader.Tiny.AL
    C:\Documents and Settings\LocalService\Local Settings\Temporary Internet Files\Content.IE5\IKC33J8D\ms1[1].txt Supprimé
    C:\Documents and Settings\LocalService\Local Settings\Temporary Internet Files\Content.IE5\IKC33J8D\paytime[1].txt Infecté par: Trojan.StartPage.EJ
    C:\Documents and Settings\LocalService\Local Settings\Temporary Internet Files\Content.IE5\IKC33J8D\paytime[1].txt Echec de la désinfection
    C:\Documents and Settings\LocalService\Local Settings\Temporary Internet Files\Content.IE5\IKC33J8D\paytime[1].txt Supprimé
    C:\Documents and Settings\LocalService\Local Settings\Temporary Internet Files\Content.IE5\IKC33J8D\secure32[1].htm Infecté par: Trojan.SpySheriff.C
    C:\Documents and Settings\LocalService\Local Settings\Temporary Internet Files\Content.IE5\IKC33J8D\secure32[1].htm Echec de la désinfection
    C:\Documents and Settings\LocalService\Local Settings\Temporary Internet Files\Content.IE5\IKC33J8D\secure32[1].htm Supprimé
    C:\Documents and Settings\LocalService\Local Settings\Temporary Internet Files\Content.IE5\VDVOXTMD\tool5[1].txt Infecté par: Trojan.ProcKill.DJ
    C:\Documents and Settings\LocalService\Local Settings\Temporary Internet Files\Content.IE5\VDVOXTMD\tool5[1].txt Echec de la désinfection
    C:\Documents and Settings\LocalService\Local Settings\Temporary Internet Files\Content.IE5\VDVOXTMD\tool5[1].txt Supprimé
    C:\Program Files\ewido anti-malware\Quarantine\fil6A.tmp=>(gzip) Infecté par: Trojan.Proxy.Daemonize.BX.Downloader
    C:\Program Files\ewido anti-malware\Quarantine\fil6A.tmp=>(gzip) Echec de la désinfection
    C:\Program Files\ewido anti-malware\Quarantine\fil6A.tmp=>(gzip) Supprimé
    C:\Program Files\ewido anti-malware\Quarantine\fil6A.tmp Echec de la mise à jour
    C:\Program Files\Softwin\BitDefender9\Quarantine\adv.exe Infecté par: Trojan.Downloader.Small.BCD
    C:\Program Files\Softwin\BitDefender9\Quarantine\adv.exe Echec de la désinfection
    C:\Program Files\Softwin\BitDefender9\Quarantine\adv.exe Supprimé
    C:\Program Files\Softwin\BitDefender9\Quarantine\dcom_14.dll Infecté par: Trojan.Downloader.Agent.AFL
    C:\Program Files\Softwin\BitDefender9\Quarantine\dcom_14.dll Echec de la désinfection
    C:\Program Files\Softwin\BitDefender9\Quarantine\dcom_14.dll Supprimé
    C:\Program Files\Softwin\BitDefender9\Quarantine\DR21206[1].exe Infecté par: Trojan.Clicker.Small.G
    C:\Program Files\Softwin\BitDefender9\Quarantine\DR21206[1].exe Echec de la désinfection
    C:\Program Files\Softwin\BitDefender9\Quarantine\DR21206[1].exe Supprimé
    C:\Program Files\Softwin\BitDefender9\Quarantine\mc-110-12-0000228.exe Infecté par: Trojan.Downloader.Agent.FE
    C:\Program Files\Softwin\BitDefender9\Quarantine\mc-110-12-0000228.exe Echec de la désinfection
    C:\Program Files\Softwin\BitDefender9\Quarantine\mc-110-12-0000228.exe Supprimé
    C:\Program Files\Softwin\BitDefender9\Quarantine\mc-110-12-0000248.exe Infecté par: Trojan.Downloader.Agent.FE
    C:\Program Files\Softwin\BitDefender9\Quarantine\mc-110-12-0000248.exe Echec de la désinfection
    C:\Program Files\Softwin\BitDefender9\Quarantine\mc-110-12-0000248.exe Supprimé
    C:\Program Files\Softwin\BitDefender9\Quarantine\tmp0 Infecté par: Trojan.Clicker.Small.G
    C:\Program Files\Softwin\BitDefender9\Quarantine\tmp0 Echec de la désinfection
    C:\Program Files\Softwin\BitDefender9\Quarantine\tmp0 Supprimé
    C:\Program Files\Softwin\BitDefender9\Quarantine\tmp17 Infecté par: Trojan.Downloader.Agent.FE
    C:\Program Files\Softwin\BitDefender9\Quarantine\tmp17 Echec de la désinfection
    C:\Program Files\Softwin\BitDefender9\Quarantine\tmp17 Supprimé
    C:\Program Files\Softwin\BitDefender9\Quarantine\tmp1b Infecté par: Trojan.Downloader.Agent.FE
    C:\Program Files\Softwin\BitDefender9\Quarantine\tmp1b Echec de la désinfection
    C:\Program Files\Softwin\BitDefender9\Quarantine\tmp1b Supprimé
    C:\Program Files\Softwin\BitDefender9\Quarantine\tmp2 Infecté par: Trojan.Downloader.Agent.FE
    C:\Program Files\Softwin\BitDefender9\Quarantine\tmp2 Echec de la désinfection
    C:\Program Files\Softwin\BitDefender9\Quarantine\tmp2 Supprimé
    C:\Program Files\Softwin\BitDefender9\Quarantine\tmp21 Infecté par: Trojan.Downloader.Agent.FE
    C:\Program Files\Softwin\BitDefender9\Quarantine\tmp21 Echec de la désinfection
    C:\Program Files\Softwin\BitDefender9\Quarantine\tmp21 Supprimé
    C:\Program Files\Softwin\BitDefender9\Quarantine\tmp24 Infecté par: Trojan.Clicker.Small.G
    C:\Program Files\Softwin\BitDefender9\Quarantine\tmp24 Echec de la désinfection
    C:\Program Files\Softwin\BitDefender9\Quarantine\tmp24 Supprimé
    C:\Program Files\Softwin\BitDefender9\Quarantine\tmp2a Infecté par: Trojan.Downloader.Agent.FE
    C:\Program Files\Softwin\BitDefender9\Quarantine\tmp2a Echec de la désinfection
    C:\Program Files\Softwin\BitDefender9\Quarantine\tmp2a Supprimé
    C:\Program Files\Softwin\BitDefender9\Quarantine\tmp2d Infecté par: Trojan.Downloader.Agent.FE
    C:\Program Files\Softwin\BitDefender9\Quarantine\tmp2d Echec de la désinfection
    C:\Program Files\Softwin\BitDefender9\Quarantine\tmp2d Supprimé
    C:\Program Files\Softwin\BitDefender9\Quarantine\tmp2e Infecté par: Trojan.Downloader.Agent.FE
    C:\Program Files\Softwin\BitDefender9\Quarantine\tmp2e Echec de la désinfection
    C:\Program Files\Softwin\BitDefender9\Quarantine\tmp2e Supprimé
    C:\Program Files\Softwin\BitDefender9\Quarantine\tmp36 Infecté par: Trojan.Downloader.Agent.FE
    C:\Program Files\Softwin\BitDefender9\Quarantine\tmp36 Echec de la désinfection
    C:\Program Files\Softwin\BitDefender9\Quarantine\tmp36 Supprimé
    C:\Program Files\Softwin\BitDefender9\Quarantine\tmp3c Infecté par: Trojan.Downloader.Agent.FE
    C:\Program Files\Softwin\BitDefender9\Quarantine\tmp3c Echec de la désinfection
    C:\Program Files\Softwin\BitDefender9\Quarantine\tmp3c Supprimé
    C:\Program Files\Softwin\BitDefender9\Quarantine\tmp3d Infecté par: Trojan.Downloader.Agent.FE
    C:\Program Files\Softwin\BitDefender9\Quarantine\tmp3d Echec de la désinfection
    C:\Program Files\Softwin\BitDefender9\Quarantine\tmp3d Supprimé
    C:\Program Files\Softwin\BitDefender9\Quarantine\tmp3e Infecté par: Trojan.Downloader.Agent.FE
    C:\Program Files\Softwin\BitDefender9\Quarantine\tmp3e Echec de la désinfection
    C:\Program Files\Softwin\BitDefender9\Quarantine\tmp3e Supprimé
    C:\Program Files\Softwin\BitDefender9\Quarantine\tmp3f Infecté par: Trojan.Downloader.Agent.FE
    C:\Program Files\Softwin\BitDefender9\Quarantine\tmp3f Echec de la désinfection
    C:\Program Files\Softwin\BitDefender9\Quarantine\tmp3f Supprimé
    C:\Program Files\Softwin\BitDefender9\Quarantine\tmp4 Infecté par: Trojan.Clicker.Small.G
    C:\Program Files\Softwin\BitDefender9\Quarantine\tmp4 Echec de la désinfection
    C:\Program Files\Softwin\BitDefender9\Quarantine\tmp4 Supprimé
    C:\Program Files\Softwin\BitDefender9\Quarantine\tmp41 Infecté par: Trojan.Downloader.Agent.FE
    C:\Program Files\Softwin\BitDefender9\Quarantine\tmp41 Echec de la désinfection
    C:\Program Files\Softwin\BitDefender9\Quarantine\tmp41 Supprimé
    C:\Program Files\Softwin\BitDefender9\Quarantine\tmp42 Infecté par: Trojan.Clicker.Small.G
    C:\Program Files\Softwin\BitDefender9\Quarantine\tmp42 Echec de la désinfection
    C:\Program Files\Softwin\BitDefender9\Quarantine\tmp42 Supprimé
    C:\Program Files\Softwin\BitDefender9\Quarantine\tmp45 Infecté par: Trojan.Clicker.Small.G
    C:\Program Files\Softwin\BitDefender9\Quarantine\tmp45 Echec de la désinfection
    C:\Program Files\Softwin\BitDefender9\Quarantine\tmp45 Supprimé
    C:\Program Files\Softwin\BitDefender9\Quarantine\tmp48 Infecté par: Trojan.Clicker.Small.G
    C:\Program Files\Softwin\BitDefender9\Quarantine\tmp48 Echec de la désinfection
    C:\Program Files\Softwin\BitDefender9\Quarantine\tmp48 Supprimé
    C:\Program Files\Softwin\BitDefender9\Quarantine\tmp4c Infecté par: Trojan.Clicker.Small.G
    C:\Program Files\Softwin\BitDefender9\Quarantine\tmp4c Echec de la désinfection
    C:\Program Files\Softwin\BitDefender9\Quarantine\tmp4c Supprimé
    C:\Program Files\Softwin\BitDefender9\Quarantine\tmp4d Infecté par: Trojan.Clicker.Small.G
    C:\Program Files\Softwin\BitDefender9\Quarantine\tmp4d Echec de la désinfection
    C:\Program Files\Softwin\BitDefender9\Quarantine\tmp4d Supprimé
    C:\Program Files\Softwin\BitDefender9\Quarantine\tmp5 Infecté par: Trojan.Clicker.Small.G
    C:\Program Files\Softwin\BitDefender9\Quarantine\tmp5 Echec de la désinfection
    C:\Program Files\Softwin\BitDefender9\Quarantine\tmp5 Supprimé
    C:\Program Files\Softwin\BitDefender9\Quarantine\tmp50 Infecté par: Trojan.Clicker.Small.G
    C:\Program Files\Softwin\BitDefender9\Quarantine\tmp50 Echec de la désinfection
    C:\Program Files\Softwin\BitDefender9\Quarantine\tmp50 Supprimé
    C:\Program Files\Softwin\BitDefender9\Quarantine\tmp53 Infecté par: Trojan.Clicker.Small.G
    C:\Program Files\Softwin\BitDefender9\Quarantine\tmp53 Echec de la désinfection
    C:\Program Files\Softwin\BitDefender9\Quarantine\tmp53 Supprimé
    C:\Program Files\Softwin\BitDefender9\Quarantine\tmp6 Infecté par: Trojan.Downloader.Agent.FE
    C:\Program Files\Softwin\BitDefender9\Quarantine\tmp6 Echec de la désinfection
    C:\Program Files\Softwin\BitDefender9\Quarantine\tmp6 Supprimé
    C:\Program Files\Softwin\BitDefender9\Quarantine\tmp62 Infecté par: Trojan.Clicker.Small.G
    C:\Program Files\Softwin\BitDefender9\Quarantine\tmp62 Echec de la désinfection
    C:\Program Files\Softwin\BitDefender9\Quarantine\tmp62 Supprimé
    C:\Program Files\Softwin\BitDefender9\Quarantine\tmp63 Infecté par: Trojan.Downloader.Agent.FE
    C:\Program Files\Softwin\BitDefender9\Quarantine\tmp63 Echec de la désinfection
    C:\Program Files\Softwin\BitDefender9\Quarantine\tmp63 Supprimé
    C:\Program Files\Softwin\BitDefender9\Quarantine\tmp65 Infecté par: Trojan.Clicker.Small.G
    C:\Program Files\Softwin\BitDefender9\Quarantine\tmp65 Echec de la désinfection
    C:\Program Files\Softwin\BitDefender9\Quarantine\tmp65 Supprimé
    C:\Program Files\Softwin\BitDefender9\Quarantine\tmp6a Infecté par: Trojan.Clicker.Small.G
    C:\Program Files\Softwin\BitDefender9\Quarantine\tmp6a Echec de la désinfection
    C:\Program Files\Softwin\BitDefender9\Quarantine\tmp6a Supprimé
    C:\Program Files\Softwin\BitDefender9\Quarantine\tmp6c Infecté par: Trojan.Clicker.Small.G
    C:\Program Files\Softwin\BitDefender9\Quarantine\tmp6c Echec de la désinfection
    C:\Program Files\Softwin\BitDefender9\Quarantine\tmp6c Supprimé
    C:\Program Files\Softwin\BitDefender9\Quarantine\tmp6f Infecté par: Trojan.Clicker.Small.G
    C:\Program Files\Softwin\BitDefender9\Quarantine\tmp6f Echec de la désinfection
    C:\Program Files\Softwin\BitDefender9\Quarantine\tmp6f Supprimé
    C:\Program Files\Softwin\BitDefender9\Quarantine\tmp71 Infecté par: Trojan.Clicker.Small.G
    C:\Program Files\Softwin\BitDefender9\Quarantine\tmp71 Echec de la désinfection
    C:\Program Files\Softwin\BitDefender9\Quarantine\tmp71 Supprimé
    C:\Program Files\Softwin\BitDefender9\Quarantine\tmp7a Infecté par: Trojan.Clicker.Small.G
    C:\Program Files\Softwin\BitDefender9\Quarantine\tmp7a Echec de la désinfection
    C:\Program Files\Softwin\BitDefender9\Quarantine\tmp7a Supprimé
    C:\Program Files\Softwin\BitDefender9\Quarantine\tmp7b Infecté par: Trojan.Clicker.Small.G
    C:\Program Files\Softwin\BitDefender9\Quarantine\tmp7b Echec de la désinfection
    C:\Program Files\Softwin\BitDefender9\Quarantine\tmp7b Supprimé
    C:\Program Files\Softwin\BitDefender9\Quarantine\tmp7e Infecté par: Trojan.Downloader.Agent.FE
    C:\Program Files\Softwin\BitDefender9\Quarantine\tmp7e Echec de la désinfection
    C:\Program Files\Softwin\BitDefender9\Quarantine\tmp7e Supprimé
    C:\Program Files\Softwin\BitDefender9\Quarantine\tmp81 Infecté par: Trojan.Downloader.Agent.FE
    C:\Program Files\Softwin\BitDefender9\Quarantine\tmp81 Echec de la désinfection
    C:\Program Files\Softwin\BitDefender9\Quarantine\tmp81 Supprimé
    C:\Program Files\Softwin\BitDefender9\Quarantine\tmp84 Infecté par: Trojan.Clicker.Small.G
    C:\Program Files\Softwin\BitDefender9\Quarantine\tmp84 Echec de la désinfection
    C:\Program Files\Softwin\BitDefender9\Quarantine\tmp84 Supprimé
    C:\Program Files\Softwin\BitDefender9\Quarantine\tmp88 Infecté par: Trojan.Downloader.Agent.FE
    C:\Program Files\Softwin\BitDefender9\Quarantine\tmp88 Echec de la désinfection
    C:\Program Files\Softwin\BitDefender9\Quarantine\tmp88 Supprimé
    C:\Program Files\Softwin\BitDefender9\Quarantine\tmp8c Infecté par: Trojan.Downloader.Agent.FE
    C:\Program Files\Softwin\BitDefender9\Quarantine\tmp8c Echec de la désinfection
    C:\Program Files\Softwin\BitDefender9\Quarantine\tmp8c Supprimé
    C:\Program Files\Softwin\BitDefender9\Quarantine\tmp9 Infecté par: Trojan.Downloader.Agent.FE
    C:\Program Files\Softwin\BitDefender9\Quarantine\tmp9 Echec de la désinfection
    C:\Program Files\Softwin\BitDefender9\Quarantine\tmp9 Supprimé
    C:\Program Files\Softwin\BitDefender9\Quarantine\tmp91 Infecté par: Trojan.Downloader.Agent.FE
    C:\Program Files\Softwin\BitDefender9\Quarantine\tmp91 Echec de la désinfection
    C:\Program Files\Softwin\BitDefender9\Quarantine\tmp91 Supprimé
    C:\Program Files\Softwin\BitDefender9\Quarantine\tmp92 Infecté par: Trojan.Downloader.Agent.FE
    C:\Program Files\Softwin\BitDefender9\Quarantine\tmp92 Echec de la désinfection
    C:\Program Files\Softwin\BitDefender9\Quarantine\tmp92 Supprimé
    C:\Program Files\Softwin\BitDefender9\Quarantine\tmp95 Infecté par: Trojan.Downloader.Agent.FE
    C:\Program Files\Softwin\BitDefender9\Quarantine\tmp95 Echec de la désinfection
    C:\Program Files\Softwin\BitDefender9\Quarantine\tmp95 Supprimé
    C:\Program Files\Softwin\BitDefender9\Quarantine\tmp98 Infecté par: Trojan.Downloader.Agent.FE
    C:\Program Files\Softwin\BitDefender9\Quarantine\tmp98 Echec de la désinfection
    C:\Program Files\Softwin\BitDefender9\Quarantine\tmp98 Supprimé
    C:\Program Files\Softwin\BitDefender9\Quarantine\tmp9c Infecté par: Trojan.Downloader.Agent.FE
    C:\Program Files\Softwin\BitDefender9\Quarantine\tmp9c Echec de la désinfection
    C:\Program Files\Softwin\BitDefender9\Quarantine\tmp9c Supprimé
    C:\Program Files\Softwin\BitDefender9\Quarantine\tmp9f Infecté par: Trojan.Downloader.Agent.FE
    C:\Program Files\Softwin\BitDefender9\Quarantine\tmp9f Echec de la désinfection
    C:\Program Files\Softwin\BitDefender9\Quarantine\tmp9f Supprimé
    C:\Program Files\Softwin\BitDefender9\Quarantine\tmpa3 Infecté par: Trojan.Downloader.Agent.FE
    C:\Program Files\Softwin\BitDefender9\Quarantine\tmpa3 Echec de la désinfection
    C:\Program Files\Softwin\BitDefender9\Quarantine\tmpa3 Supprimé
    C:\Program Files\Softwin\BitDefender9\Quarantine\tmpa4 Infecté par: Trojan.Downloader.Agent.FE
    C:\Program Files\Softwin\BitDefender9\Quarantine\tmpa4 Echec de la désinfection
    C:\Program Files\Softwin\BitDefender9\Quarantine\tmpa4 Supprimé
    C:\Program Files\Softwin\BitDefender9\Quarantine\tmpa7 Infecté par: Trojan.Downloader.Agent.FE
    C:\Program Files\Softwin\BitDefender9\Quarantine\tmpa7 Echec de la désinfection
    C:\Program Files\Softwin\BitDefender9\Quarantine\tmpa7 Supprimé
    C:\Program Files\Softwin\BitDefender9\Quarantine\tmpa8 Infecté par: Trojan.Downloader.Agent.FE
    C:\Program Files\Softwin\BitDefender9\Quarantine\tmpa8 Echec de la désinfection
    C:\Program Files\Softwin\BitDefender9\Quarantine\tmpa8 Supprimé
    C:\Program Files\Softwin\BitDefender9\Quarantine\tmpb Infecté par: Trojan.Downloader.Agent.FE
    C:\Program Files\Softwin\BitDefender9\Quarantine\tmpb Echec de la désinfection
    C:\Program Files\Softwin\BitDefender9\Quarantine\tmpb Supprimé
    C:\Program Files\Softwin\BitDefender9\Quarantine\tmpc0 Infecté par: Trojan.Downloader.Agent.FE
    C:\Program Files\Softwin\BitDefender9\Quarantine\tmpc0 Echec de la désinfection
    C:\Program Files\Softwin\BitDefender9\Quarantine\tmpc0 Supprimé
    C:\Program Files\Softwin\BitDefender9\Quarantine\tmpd4 Infecté par: Trojan.Downloader.Agent.FE
    C:\Program Files\Softwin\BitDefender9\Quarantine\tmpd4 Echec de la désinfection
    C:\Program Files\Softwin\BitDefender9\Quarantine\tmpd4 Supprimé
    C:\Program Files\Softwin\BitDefender9\Quarantine\tmpe7 Infecté par: Trojan.Downloader.Agent.FE
    C:\Program Files\Softwin\BitDefender9\Quarantine\tmpe7 Echec de la désinfection
    C:\Program Files\Softwin\BitDefender9\Quarantine\tmpe7 Supprimé
    C:\Program Files\Softwin\BitDefender9\Quarantine\tmpe9 Infecté par: Trojan.Downloader.Agent.FE
    C:\Program Files\Softwin\BitDefender9\Quarantine\tmpe9 Echec de la désinfection
    C:\Program Files\Softwin\BitDefender9\Quarantine\tmpe9 Supprimé
    C:\secure32.html Infecté par: Trojan.SpySheriff.C
    C:\secure32.html Echec de la désinfection
    C:\secure32.html Supprimé
    C:\System Volume Information\_restore{2C5222C6-E63B-40AA-B68E-A3061DAC1380}\RP76\A0042817.exe Infecté par: Trojan.Downloader.NSIS.Agent.P
    C:\System Volume Information\_restore{2C5222C6-E63B-40AA-B68E-A3061DAC1380}\RP76\A0042817.exe Supprimé
    C:\System Volume Information\_restore{2C5222C6-E63B-40AA-B68E-A3061DAC1380}\RP77\A0042866.exe Infecté par: Backdoor.SDBot.98B13285
    C:\System Volume Information\_restore{2C5222C6-E63B-40AA-B68E-A3061DAC1380}\RP77\A0042866.exe Supprimé
    C:\System Volume Information\_restore{2C5222C6-E63B-40AA-B68E-A3061DAC1380}\RP77\A0042867.exe Infecté par: Backdoor.SDBot.98B13285
    C:\System Volume Information\_restore{2C5222C6-E63B-40AA-B68E-A3061DAC1380}\RP77\A0042867.exe Supprimé
    C:\System Volume Information\_restore{2C5222C6-E63B-40AA-B68E-A3061DAC1380}\RP77\A0043838.exe Infecté par: Backdoor.SDBot.0DF5BAB0
    C:\System Volume Information\_restore{2C5222C6-E63B-40AA-B68E-A3061DAC1380}\RP77\A0043838.exe Supprimé
    C:\System Volume Information\_restore{2C5222C6-E63B-40AA-B68E-A3061DAC1380}\RP77\A0043839.exe Infecté par: Backdoor.SDBot.98B13285
    C:\System Volume Information\_restore{2C5222C6-E63B-40AA-B68E-A3061DAC1380}\RP77\A0043839.exe Supprimé
    C:\System Volume Information\_restore{2C5222C6-E63B-40AA-B68E-A3061DAC1380}\RP78\A0044891.exe Infecté par: Trojan.Downloader.Adload.U
    C:\System Volume Information\_restore{2C5222C6-E63B-40AA-B68E-A3061DAC1380}\RP78\A0044891.exe Echec de la désinfection
    C:\System Volume Information\_restore{2C5222C6-E63B-40AA-B68E-A3061DAC1380}\RP78\A0044891.exe Supprimé
    C:\System Volume Information\_restore{2C5222C6-E63B-40AA-B68E-A3061DAC1380}\RP78\A0044894.exe Suspecté de: Trojan.Downloader.Small.LK
    C:\System Volume Information\_restore{2C5222C6-E63B-40AA-B68E-A3061DAC1380}\RP78\A0044894.exe Echec de la désinfection
    C:\System Volume Information\_restore{2C5222C6-E63B-40AA-B68E-A3061DAC1380}\RP78\A0044894.exe Supprimé
    C:\System Volume Information\_restore{2C5222C6-E63B-40AA-B68E-A3061DAC1380}\RP78\A0044911.exe Infecté par: Backdoor.SDBot.98B13285
    C:\System Volume Information\_restore{2C5222C6-E63B-40AA-B68E-A3061DAC1380}\RP78\A0044911.exe Supprimé
    C:\System Volume Information\_restore{2C5222C6-E63B-40AA-B68E-A3061DAC1380}\RP78\A0044912.exe Infecté par: Trojan.StartPage.EJ
    C:\System Volume Information\_restore{2C5222C6-E63B-40AA-B68E-A3061DAC1380}\RP78\A0044912.exe Echec de la désinfection
    C:\System Volume Information\_restore{2C5222C6-E63B-40AA-B68E-A3061DAC1380}\RP78\A0044912.exe Supprimé
    C:\System Volume Information\_restore{2C5222C6-E63B-40AA-B68E-A3061DAC1380}\RP80\A0045173.exe Infecté par: Trojan.Proxy.Daemonize.BX
    C:\System Volume Information\_restore{2C5222C6-E63B-40AA-B68E-A3061DAC1380}\RP80\A0045173.exe Supprimé
    C:\System Volume Information\_restore{2C5222C6-E63B-40AA-B68E-A3061DAC1380}\RP80\A0045233.exe Infecté par: Trojan.Downloader.Adload.U
    C:\System Volume Information\_restore{2C5222C6-E63B-40AA-B68E-A3061DAC1380}\RP80\A0045233.exe Echec de la désinfection
    C:\System Volume Information\_restore{2C5222C6-E63B-40AA-B68E-A3061DAC1380}\RP80\A0045233.exe Supprimé
    C:\System Volume Information\_restore{2C5222C6-E63B-40AA-B68E-A3061DAC1380}\RP80\A0045241.exe Suspecté de: Trojan.Downloader.Small.LK
    C:\System Volume Information\_restore{2C5222C6-E63B-40AA-B68E-A3061DAC1380}\RP80\A0045241.exe Echec de la désinfection
    C:\System Volume Information\_restore{2C5222C6-E63B-40AA-B68E-A3061DAC1380}\RP80\A0045241.exe Supprimé
    C:\System Volume Information\_restore{2C5222C6-E63B-40AA-B68E-A3061DAC1380}\RP80\A0045244.exe Infecté par: Trojan.Downloader.Tiny.AL
    C:\System Volume Information\_restore{2C5222C6-E63B-40AA-B68E-A3061DAC1380}\RP80\A0045244.exe Supprimé
    C:\System Volume Information\_restore{2C5222C6-E63B-40AA-B68E-A3061DAC1380}\RP80\A0047204.exe Infecté par: Trojan.StartPage.EJ
    C:\System Volume Information\_restore{2C5222C6-E63B-40AA-B68E-A3061DAC1380}\RP80\A0047204.exe Echec de la désinfection
    C:\System Volume Information\_restore{2C5222C6-E63B-40AA-B68E-A3061DAC1380}\RP80\A0047204.exe Supprimé
    C:\System Volume Information\_restore{2C5222C6-E63B-40AA-B68E-A3061DAC1380}\RP80\A0047205.exe Infecté par: Trojan.Downloader.Adload.U
    C:\System Volume Information\_restore{2C5222C6-E63B-40AA-B68E-A3061DAC1380}\RP80\A0047205.exe Echec de la désinfection
    C:\System Volume Information\_restore{2C5222C6-E63B-40AA-B68E-A3061DAC1380}\RP80\A0047205.exe Supprimé
    C:\System Volume Information\_restore{2C5222C6-E63B-40AA-B68E-A3061DAC1380}\RP80\A0047208.exe Suspecté de: Trojan.Downloader.Small.LK
    C:\System Volume Information\_restore{2C5222C6-E63B-40AA-B68E-A3061DAC1380}\RP80\A0047208.exe Echec de la désinfection
    C:\System Volume Information\_restore{2C5222C6-E63B-40AA-B68E-A3061DAC1380}\RP80\A0047208.exe Supprimé
    C:\System Volume Information\_restore{2C5222C6-E63B-40AA-B68E-A3061DAC1380}\RP80\A0047238.exe Infecté par: Trojan.Downloader.Tiny.AL
    C:\System Volume Information\_restore{2C5222C6-E63B-40AA-B68E-A3061DAC1380}\RP80\A0047238.exe Supprimé
    C:\System Volume Information\_restore{2C5222C6-E63B-40AA-B68E-A3061DAC1380}\RP80\A0047280.exe Infecté par: Trojan.StartPage.EJ
    C:\System Volume Information\_restore{2C5222C6-E63B-40AA-B68E-A3061DAC1380}\RP80\A0047280.exe Echec de la désinfection
    C:\System Volume Information\_restore{2C5222C6-E63B-40AA-B68E-A3061DAC1380}\RP80\A0047280.exe Supprimé
    C:\System Volume Information\_restore{2C5222C6-E63B-40AA-B68E-A3061DAC1380}\RP80\A0047308.exe Infecté par: Backdoor.SDbot.ALL
    C:\System Volume Information\_restore{2C5222C6-E63B-40AA-B68E-A3061DAC1380}\RP80\A0047308.exe Echec de la désinfection
    C:\System Volume Information\_restore{2C5222C6-E63B-40AA-B68E-A3061DAC1380}\RP80\A0047308.exe Supprimé
    C:\System Volume Information\_restore{2C5222C6-E63B-40AA-B68E-A3061DAC1380}\RP80\A0047309.exe Infecté par: Backdoor.SDbot.ALL
    C:\System Volume Information\_restore{2C5222C6-E63B-40AA-B68E-A3061DAC1380}\RP80\A0047309.exe Echec de la désinfection
    C:\System Volume Information\_restore{2C5222C6-E63B-40AA-B68E-A3061DAC1380}\RP80\A0047309.exe Supprimé
    C:\System Volume Information\_restore{2C5222C6-E63B-40AA-B68E-A3061DAC1380}\RP80\A0047310.exe Infecté par: Trojan.Agent.DW
    C:\System Volume Information\_restore{2C5222C6-E63B-40AA-B68E-A3061DAC1380}\RP80\A0047310.exe Echec de la désinfection
    C:\System Volume Information\_restore{2C5222C6-E63B-40AA-B68E-A3061DAC1380}\RP80\A0047310.exe Supprimé
    C:\System Volume Information\_restore{2C5222C6-E63B-40AA-B68E-A3061DAC1380}\RP80\A0047311.exe Infecté par: Trojan.Downloader.VB.EO
    C:\System Volume Information\_restore{2C5222C6-E63B-40AA-B68E-A3061DAC1380}\RP80\A0047311.exe Echec de la désinfection
    C:\System Volume Information\_restore{2C5222C6-E63B-40AA-B68E-A3061DAC1380}\RP80\A0047311.exe Supprimé
    C:\System Volume Information\_restore{2C5222C6-E63B-40AA-B68E-A3061DAC1380}\RP80\A0047317.exe Infecté par: Trojan.Downloader.Adload.U
    C:\System Volume Information\_restore{2C5222C6-E63B-40AA-B68E-A3061DAC1380}\RP80\A0047317.exe Echec de la désinfection
    C:\System Volume Information\_restore{2C5222C6-E63B-40AA-B68E-A3061DAC1380}\RP80\A0047317.exe Supprimé
    C:\System Volume Information\_restore{2C5222C6-E63B-40AA-B68E-A3061DAC1380}\RP80\A0047319.exe Infecté par: Trojan.Downloader.VB.EO
    C:\System Volume Information\_restore{2C5222C6-E63B-40AA-B68E-A3061DAC1380}\RP80\A0047319.exe Echec de la désinfection
    C:\System Volume Information\_restore{2C5222C6-E63B-40AA-B68E-A3061DAC1380}\RP80\A0047319.exe Supprimé
    C:\System Volume Information\_restore{2C5222C6-E63B-40AA-B68E-A3061DAC1380}\RP80\A0047322.exe Infecté par: Trojan.Downloader.Agent.FE
    C:\System Volume Information\_restore{2C5222C6-E63B-40AA-B68E-A3061DAC1380}\RP80\A0047322.exe Echec de la désinfection
    C:\System Volume Information\_restore{2C5222C6-E63B-40AA-B68E-A3061DAC1380}\RP80\A0047322.exe Supprimé
    C:\System Volume Information\_restore{2C5222C6-E63B-40AA-B68E-A3061DAC1380}\RP80\A0047392.exe Infecté par: Trojan.Downloader.Small.BCD
    C:\System Volume Information\_restore{2C5222C6-E63B-40AA-B68E-A3061DAC1380}\RP80\A0047392.exe Echec de la désinfection
    C:\System Volume Information\_restore{2C5222C6-E63B-40AA-B68E-A3061DAC1380}\RP80\A0047392.exe Supprimé
    C:\System Volume Information\_restore{2C5222C6-E63B-40AA-B68E-A3061DAC1380}\RP80\A0047393.dll Infecté par: Trojan.Downloader.Agent.AFL
    C:\System Volume Information\_restore{2C5222C6-E63B-40AA-B68E-A3061DAC1380}\RP80\A0047393.dll Echec de la désinfection
    C:\System Volume Information\_restore{2C5222C6-E63B-40AA-B68E-A3061DAC1380}\RP80\A0047393.dll Supprimé
    C:\System Volume Information\_restore{2C5222C6-E63B-40AA-B68E-A3061DAC1380}\RP80\A0047394.exe Infecté par: Trojan.Clicker.Small.G
    C:\System Volume Information\_restore{2C5222C6-E63B-40AA-B68E-A3061DAC1380}\RP80\A0047394.exe Echec de la désinfection
    C:\System Volume Information\_restore{2C5222C6-E63B-40AA-B68E-A3061DAC1380}\RP80\A0047394.exe Supprimé
    C:\System Volume Information\_restore{2C5222C6-E63B-40AA-B68E-A3061DAC1380}\RP80\A0047395.exe Infecté par: Trojan.Downloader.Agent.FE
    C:\System Volume Information\_restore{2C5222C6-E63B-40AA-B68E-A3061DAC1380}\RP80\A0047395.exe Echec de la désinfection
    C:\System Volume Information\_restore{2C5222C6-E63B-40AA-B68E-A3061DAC1380}\RP80\A0047395.exe Supprimé
    C:\System Volume Information\_restore{2C5222C6-E63B-40AA-B68E-A3061DAC1380}\RP80\A0047396.exe Infecté par: Trojan.Downloader.Agent.FE
    C:\System Volume Information\_restore{2C5222C6-E63B-40AA-B68E-A3061DAC1380}\RP80\A0047396.exe Echec de la désinfection
    C:\System Volume Information\_restore{2C5222C6-E63B-40AA-B68E-A3061DAC1380}\RP80\A0047396.exe Supprimé
    C:\WINDOWS\hosts Infecté par: Trojan.Qhosts.HE
    C:\WINDOWS\hosts Supprimé
    C:\WINDOWS\ms1.exe Infecté par: Trojan.Downloader.Tiny.AL
    C:\WINDOWS\ms1.exe Supprimé
    C:\WINDOWS\secure32.html Infecté par: Trojan.SpySheriff.C
    C:\WINDOWS\secure32.html Echec de la désinfection
    C:\WINDOWS\secure32.html Supprimé
    C:\WINDOWS\system32\i Infecté par: Backdoor.BotGet.FtpB.Gen
    C:\WINDOWS\system32\i Supprimé
    C:\WINDOWS\system32\mspostsp.exe Infecté par: Trojan.Proxy.Raser.C
    C:\WINDOWS\system32\mspostsp.exe Echec de la désinfection
    C:\WINDOWS\system32\mspostsp.exe Supprimé
    C:\WINDOWS\system32\paytime.exe Infecté par: Trojan.StartPage.EJ
    C:\WINDOWS\system32\paytime.exe Echec de la désinfection
    C:\WINDOWS\system32\paytime.exe Echec de la suppression
    C:\WINDOWS\system32\wcimgr32.dll Infecté par: Win32.Sality.G@mm
    C:\WINDOWS\system32\wcimgr32.dll Echec de la désinfection
    C:\WINDOWS\system32\wcimgr32.dll Supprimé
    C:\WINDOWS\Temp\adv.exe Infecté par: Trojan.Downloader.Small.BCD
    C:\WINDOWS\Temp\adv.exe Echec de la désinfection
    C:\WINDOWS\Temp\adv.exe Supprimé
    C:\WINDOWS\Temp\mc-110-12-0000248.exe Infecté par: Trojan.Downloader.Agent.FE
    C:\WINDOWS\Temp\mc-110-12-0000248.exe Echec de la désinfection
    C:\WINDOWS\Temp\mc-110-12-0000248.exe Supprimé
    C:\WINDOWS\Temp\tmp120 Infecté par: Trojan.SpySheriff.C
    C:\WINDOWS\Temp\tmp120 Echec de la désinfection
    C:\WINDOWS\Temp\tmp120 Supprimé
    C:\WINDOWS\Temp\tmp19c Infecté par: Trojan.SpySheriff.C
    C:\WINDOWS\Temp\tmp19c Echec de la désinfection
    C:\WINDOWS\Temp\tmp19c Supprimé
    C:\WINDOWS\Temp\tmp233 Infecté par: Trojan.SpySheriff.C
    C:\WINDOWS\Temp\tmp233 Echec de la désinfection
    C:\WINDOWS\Temp\tmp233 Supprimé
    C:\WINDOWS\Temp\tmp251 Infecté par: Trojan.SpySheriff.C
    C:\WINDOWS\Temp\tmp251 Echec de la désinfection
    C:\WINDOWS\Temp\tmp251 Supprimé
    C:\WINDOWS\Temp\tmp36b Infecté par: Trojan.SpySheriff.C
    C:\WINDOWS\Temp\tmp36b Echec de la désinfection
    C:\WINDOWS\Temp\tmp36b Supprimé
    C:\WINDOWS\Temp\tmp3cd Infecté par: Trojan.SpySheriff.C
    C:\WINDOWS\Temp\tmp3cd Echec de la désinfection
    C:\WINDOWS\Temp\tmp3cd Supprimé
    C:\WINDOWS\Temp\tmp3d4 Infecté par: Trojan.SpySheriff.C
    C:\WINDOWS\Temp\tmp3d4 Echec de la désinfection
    C:\WINDOWS\Temp\tmp3d4 Supprimé
    C:\WINDOWS\Temp\tmp42c Infecté par: Trojan.SpySheriff.C
    C:\WINDOWS\Temp\tmp42c Echec de la désinfection
    C:\WINDOWS\Temp\tmp42c Supprimé
    C:\WINDOWS\Temp\tmp437 Infecté par: Trojan.SpySheriff.C
    C:\WINDOWS\Temp\tmp437 Echec de la désinfection
    C:\WINDOWS\Temp\tmp437 Supprimé
    C:\WINDOWS\Temp\tmp438 Infecté par: Trojan.SpySheriff.C
    C:\WINDOWS\Temp\tmp438 Echec de la désinfection
    C:\WINDOWS\Temp\tmp438 Supprimé
    C:\WINDOWS\Temp\tmp442 Infecté par: Trojan.SpySheriff.C
    C:\WINDOWS\Temp\tmp442 Echec de la désinfection
    C:\WINDOWS\Temp\tmp442 Supprimé
    C:\WINDOWS\Temp\tmp443 Infecté par: Trojan.SpySheriff.C
    C:\WINDOWS\Temp\tmp443 Echec de la désinfection
    C:\WINDOWS\Temp\tmp443 Supprimé
    C:\WINDOWS\Temp\tmp448 Infecté par: Trojan.SpySheriff.C
    C:\WINDOWS\Temp\tmp448 Echec de la désinfection
    C:\WINDOWS\Temp\tmp448 Supprimé
    C:\WINDOWS\Temp\tmp449 Infecté par: Trojan.SpySheriff.C
    C:\WINDOWS\Temp\tmp449 Echec de la désinfection
    C:\WINDOWS\Temp\tmp449 Supprimé
    C:\WINDOWS\Temp\tmp44b Infecté par: Trojan.SpySheriff.C
    C:\WINDOWS\Temp\tmp44b Echec de la désinfection
    C:\WINDOWS\Temp\tmp44b Supprimé
    C:\WINDOWS\Temp\tmp44c Infecté par: Trojan.SpySheriff.C
    C:\WINDOWS\Temp\tmp44c Echec de la désinfection
    C:\WINDOWS\Temp\tmp44c Supprimé
    C:\WINDOWS\Temp\tmp44d Infecté par: Trojan.SpySheriff.C
    C:\WINDOWS\Temp\tmp44d Echec de la désinfection
    C:\WINDOWS\Temp\tmp44d Supprimé
    C:\WINDOWS\Temp\tmp44f Infecté par: Trojan.SpySheriff.C
    C:\WINDOWS\Temp\tmp44f Echec de la désinfection
    C:\WINDOWS\Temp\tmp44f Supprimé
    C:\WINDOWS\Temp\tmp454 Infecté par: Trojan.SpySheriff.C
    C:\WINDOWS\Temp\tmp454 Echec de la désinfection
    C:\WINDOWS\Temp\tmp454 Supprimé
    C:\WINDOWS\Temp\tmp455 Infecté par: Trojan.SpySheriff.C
    C:\WINDOWS\Temp\tmp455 Echec de la désinfection
    C:\WINDOWS\Temp\tmp455 Supprimé
    C:\WINDOWS\Temp\tmp4ac Infecté par: Trojan.SpySheriff.C
    C:\WINDOWS\Temp\tmp4ac Echec de la désinfection
    C:\WINDOWS\Temp\tmp4ac Supprimé
    C:\WINDOWS\Temp\tmp4bc Infecté par: Trojan.SpySheriff.C
    C:\WINDOWS\Temp\tmp4bc Echec de la désinfection
    C:\WINDOWS\Temp\tmp4bc Supprimé
    C:\WINDOWS\Temp\tmp4e4 Infecté par: Trojan.SpySheriff.C
    C:\WINDOWS\Temp\tmp4e4 Echec de la désinfection
    C:\WINDOWS\Temp\tmp4e4 Supprimé
    C:\WINDOWS\Temp\tmp4ed Infecté par: Trojan.SpySheriff.C
    C:\WINDOWS\Temp\tmp4ed Echec de la désinfection
    C:\WINDOWS\Temp\tmp4ed Supprimé
    C:\WINDOWS\Temp\tmp55e Infecté par: Trojan.SpySheriff.C
    C:\WINDOWS\Temp\tmp55e Echec de la désinfection
    C:\WINDOWS\Temp\tmp55e Supprimé
    C:\WINDOWS\Temp\~dfte14.tmp Infecté par: Trojan.Proxy.C
    C:\WINDOWS\Temp\~dfte14.tmp Echec de la désinfection
    C:\WINDOWS\Temp\~dfte14.tmp Supprimé
    C:\WINDOWS\tool3.exe Suspecté de: Trojan.Downloader.Small.LK
    C:\WINDOWS\tool3.exe Echec de la désinfection
    C:\WINDOWS\tool3.exe Supprimé
    C:\WINDOWS\toolbar.exe Infecté par: Trojan.Downloader.Adload.U
    C:\WINDOWS\toolbar.exe Echec de la désinfection
    C:\WINDOWS\toolbar.exe Supprimé
    0
  19. aranjuez31 Messages postés 8161 Date d'inscription   Statut Contributeur 354
     
    hello m'dam

    je râle surtout pcq je n arrive pas à enrayer les invasions de ttes sortes

    lis en entier cette longue & excellente de seb, tu y trouveras nbre de rép à tes questions

    antivir
    meilleurs payants : bit defender & kaspresky, mais prennent bcp de ressources sur l ordi
    meilleur gratos : avast , plus léger

    pourquoi des gratuits et des payants ? rép: pourquoi des filles font fpayer et d autres non , elles peuvent être auusi belles et aussi compétentes , les unes comme les autres

    mon intervention ? passionnelle et bénévole surtout avec un cas comme le tien, un véritable combat personnel contre ces envahisseurs - je-me souviens d une lutte qui dura prés de 200 posts

    il te faut vider la quarantaine de bitdefender qui est pleine de me...

    pour ce qui est dans temps, tempos etc....
    ceci
    cleanup40 (nettoyeur de cookies+temps+tempos+prefetch+historique+etc..)
    http://pageperso.aol.fr/balltrap34/democleanup.htm
    ¤Télécharger CleanUp40 (qui élimine les fichiers temporaires) sur ce lien : http://pageperso.aol.fr/Balltrap34/CleanUp40.exe

    faire ceci aussi
    regcleaner ( nettoyeur de registre)
    http://www.01net.com/windows/Utilitaire/nettoyeurs_et_installeurs/fiches/4894.html
    son tuto
    http://www.softastuces.com/tuto/maint/regcleaner/index.php

    pour smitfraud, le désinstaller complétement et le remettre à/p d ici
    http://www.softastuces.com/tuto/maint/regcleaner/index.php

    faire ceci aussi
    telecharge VirtumundoBegone :
    http://www.bleepingcomputer.com/forums/topic18610.html
    redemarre en mode sans echec (redemarrage +tappot sans arret sur F8 desque l'ordi s'allume)
    double clike sur VirtumundoBeGone.exe et laisse le faire le travail
    mettre un hijack en suivant

    0
  20. aranjuez31 Messages postés 8161 Date d'inscription   Statut Contributeur 354
     
    re m'dam

    regarde dans ajout/suppr si tu ne trouves pas Winfixer
    si oui tu désinstalles
    ==============
    n oublie pas de me montrer le contenu des tes progr en faisant ceci
    ouvre hijack
    clic open the misc tools
    + clic open uninstall mananger
    + clic save list +enregistre fichier
    + copie/colle rapport généré ici
    0
    1. Gérard DUMONT Messages postés 5 Statut Membre
       
      Bonjour, Plutôt impressionnant ton problème ! Où en es-tu aujourd'hui ? Dans des cas comme le tien, n'est-ce pas plus efficace de faire tout nettoyer et de réinstaller ? Bon courage et merci pour ta réponse. GD
      0
      1. Utilisateur anonyme > Gérard DUMONT Messages postés 5 Statut Membre
         
        Bonjour
        Avant tout merci pour l'aide apportée sur ce forum pour me débarrasser de ces vilaines bebêtes !!
        Il faut dire que j'étais gâtée !! De plus, alors que j'avais presque terminé mon nettoyage, mon fils repasse derrière et rechope plein d'autres virus et autres espions !!!
        Donc en désespoir de cause, et comme tu le suggères, j'ai tout réinstallé avec, en attendant mieux, bit defender en version d'essai.
        Maintenant, se repose le problème : quelle est la meilleures protection globale, sachant que 80 euros pour un logiciel me semble un peu cher !!!
        merci de me donner la meilleure configuration pour prendre le relais de cette version d'essai !
        Un grand merci tout particulier à Aranjuez31 qui a eu beaucoup de patience !!
        0
  21. aranjuez31 Messages postés 8161 Date d'inscription   Statut Contributeur 354
     
    hello mame

    1/pas besoin de débourser un liard

    kerio pare-feu gratuit de bonne qualité
    http://www.clubic.com/telecharger-fiche11071-kerio-personal-firewall.html
    son tuto
    http://kerio.probb.fr/forum1-Configurer-Kerio-version-gratuite.htm

    avast antivirus gratuit de trés bonne facture
    http://www.clubic.com/telecharger-fiche11113-avast-.html
    son tuto
    http://www.tutopat.com/viewtopic.php?p=20828

    2/ avoir qques utilitaires de désinfection
    Spybot+Ad-aware+Ewido, c est une bonne triplette

    3/avoir 2 autres utilitaires
    - 1 nettoyeur de registre
    http://www.clubic.com/telecharger-fiche10573-regcleaner.html
    son tuto
    http://www.softastuces.com/tuto/maint/regcleaner/index.php
    - 1 nettoyeur touche-à-tout
    cleanup40 (nettoyeur de cookies+temps+tempos+prefetch+historique+etc..)
    http://pageperso.aol.fr/balltrap34/democleanup.htm
    ¤Télécharger CleanUp40 (qui élimine les fichiers temporaires) sur ce lien : http://pageperso.aol.fr/Balltrap34/CleanUp40.exe

    4/ pour le fils
    - ne pas aller sur réseau P2P (kazaa, shaeraza, torrent, et j en passe.....la gratuité est rénumérée par l infection en moins de 5 mn), sur sites warez,sur sites de Q - aucun systeme ne protége de cette intrusion
    ne pas ouvrir de courriels de provenance inconnue

    5/ la protection 100% n existe pas , donc inutile de payer pour ne rien avoir

    d autres éclaircissements
    lire
    http://sebsauvage.net/safehex.html
    http://assiste.free.fr/index.html
    0
    1. madamecolombo
       
      Salut m'sieur
      merci pour ces tuyaux
      question (je t'ai dit que j'en ai plein!!!!!)
      Je viens d'ouvrir Word et Bit defender me demande de connecter word à un ordi externe !!! qu'est ce ?
      en fait dès que je vais sur la session, Bit de demande mon autorisation pour des connexions avec des tas de trucs avec des noms barbares !! dont on sait pas ce que c'est !! ami ? ennemi ? indispensable pour accéder à la page ? etc... voilà et
      à +
      M'ame Colombo
      0
  • 1
  • 2