bjrs je suis infecté par un trojan horst gen sous Windows XP Internet Explorer 6.0 je ne sais pas comment faire pour m'en debarasser si quelqu'un connait la solution ? merci d'avance

Virus infecté par trojan horst gen

Réponse 1 / 21

green day Messages postés 26371 Date d'inscription vendredi 30 septembre 2005 Statut Modérateur, Contributeur sécurité Dernière intervention 27 décembre 2019 2 162
28 déc. 2006 à 20:59

Salut

Télécharge ceci :

Lien : hijackthis

Démo : http://pageperso.aol.fr/balltrap34/demohijack.htm

Choisir l'option "do a scan and a logfile", et faire un copier/coller du rapport ainsi générer sur le forum.

++

bagot1
28 déc. 2006 à 21:32

je te remercie pour ton aide j'ai fait se que tu m'a dit voila se qui m'est sortie dans le bloc note

Logfile of HijackThis v1.99.1
Scan saved at 21:29:13, on 28/12/2006
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Fichiers communs\Symantec Shared\ccSetMgr.exe
C:\Program Files\Fichiers communs\Symantec Shared\SPBBC\SPBBCSvc.exe
C:\Program Files\Fichiers communs\Symantec Shared\ccEvtMgr.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\AntiVir PersonalEdition Classic\sched.exe
C:\Program Files\AntiVir PersonalEdition Classic\avguard.exe
C:\Program Files\Norton AntiVirus\navapsvc.exe
C:\Program Files\Symantec\LiveUpdate\ALUSchedulerSvc.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\svchost.exe
C:\windows\system\hpsysdrv.exe
C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe
C:\Program Files\iTunes\iTunesHelper.exe
C:\WINDOWS\ALCXMNTR.EXE
C:\Program Files\HP\HP Software Update\HPwuSchd2.exe
C:\WINDOWS\VM303_STI.EXE
C:\Program Files\QuickTime\qttask.exe
C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\E_FATIADE.EXE
C:\Program Files\MessengerPlus! 3\MsgPlus.exe
C:\Program Files\Java\jre1.5.0_09\bin\jusched.exe
C:\HP\KBD\KBD.EXE
C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe
C:\Program Files\Fichiers communs\Symantec Shared\ccApp.exe
C:\Program Files\Messenger\msmsgs.exe
C:\Program Files\eMule\emule.exe
C:\Program Files\MSN Messenger\msnmsgr.exe
C:\Program Files\Ulead Systems\Ulead Photo Express 4.0 SE\CalCheck.exe
C:\Program Files\Fichiers communs\Microsoft Shared\Works Shared\WkCalRem.exe
C:\Program Files\iPod\bin\iPodService.exe
C:\Program Files\AntiVir PersonalEdition Classic\avgnt.exe
C:\WINDOWS\system32\wuauclt.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Adobe\Acrobat 7.0\Reader\AcroRd32Info.exe
C:\DOCUME~1\COMPAQ~1\LOCALS~1\Temp\Répertoire temporaire 1 pour hijackthis.zip\HijackThis.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Window Title = Alice ADSL
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll
O2 - BHO: RXResultTracker Class - {59879FA4-4790-461c-A1CC-4EC4DE4CA483} - C:\Program Files\RXToolBar\sfcont.dll (file missing)
O2 - BHO: EoRezoBHO - {64F56FC1-1272-44CD-BA6E-39723696E350} - C:\PROGRA~1\eoRezo\EoAdv\EOREZO~1.DLL (file missing)
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.5.0_09\bin\ssv.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar1.dll
O2 - BHO: NAV Helper - {BDF3E430-B101-42AD-A544-FADC6B084872} - C:\Program Files\Norton AntiVirus\NavShExt.dll
O2 - BHO: EpsonToolBandKicker Class - {E99421FB-68DD-40F0-B4AC-B7027CAE2F1A} - C:\Program Files\EPSON\EPSON Web-To-Page\EPSON Web-To-Page.dll
O3 - Toolbar: EPSON Web-To-Page - {EE5D279F-081B-4404-994D-C6B60AAEBA6D} - C:\Program Files\EPSON\EPSON Web-To-Page\EPSON Web-To-Page.dll
O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar1.dll
O3 - Toolbar: Norton AntiVirus - {42CDD1BF-3FFB-4238-8AD1-7859DF00B1D6} - C:\Program Files\Norton AntiVirus\NavShExt.dll
O4 - HKLM\..\Run: [hpsysdrv] c:\windows\system\hpsysdrv.exe
O4 - HKLM\..\Run: [ATIPTA] C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe
O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe"
O4 - HKLM\..\Run: [Recguard] C:\WINDOWS\SMINST\RECGUARD.EXE
O4 - HKLM\..\Run: [AlcxMonitor] ALCXMNTR.EXE
O4 - HKLM\..\Run: [HP Software Update] C:\Program Files\HP\HP Software Update\HPwuSchd2.exe
O4 - HKLM\..\Run: [BigDog303] C:\WINDOWS\VM303_STI.EXE VIMICRO USB PC Camera (ZC0301PLH)
O4 - HKLM\..\Run: [SemanticInsight] C:\Program Files\RXToolBar\Semantic Insight\SemanticInsight.exe
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [BDSwitchAgent] "C:\PROGRA~1\Softwin\BITDEF~1\bdswitch.exe"
O4 - HKLM\..\Run: [EPSON Stylus DX4800 Series] C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\E_FATIADE.EXE /P26 "EPSON Stylus DX4800 Series" /O6 "USB001" /M "Stylus DX4800"
O4 - HKLM\..\Run: [.nvsvc] C:\WINDOWS\system\smss.exe /w
O4 - HKLM\..\Run: [MessengerPlus3] "C:\Program Files\MessengerPlus! 3\MsgPlus.exe"
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre1.5.0_09\bin\jusched.exe"
O4 - HKLM\..\Run: [NeroFilterCheck] C:\WINDOWS\system32\NeroCheck.exe
O4 - HKLM\..\Run: [avgnt] "C:\Program Files\AntiVir PersonalEdition Classic\avgnt.exe" /min
O4 - HKLM\..\Run: [KBD] C:\HP\KBD\KBD.EXE
O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe" -osboot
O4 - HKLM\..\Run: [ccApp] "C:\Program Files\Fichiers communs\Symantec Shared\ccApp.exe"
O4 - HKLM\..\Run: [Symantec NetDriver Monitor] C:\PROGRA~1\SYMNET~1\SNDMon.exe /Consumer
O4 - HKCU\..\Run: [MSMSGS] "C:\Program Files\Messenger\msmsgs.exe" /background
O4 - HKCU\..\Run: [MessengerPlus3] "C:\Program Files\MessengerPlus! 3\MsgPlus.exe" /WinStart
O4 - HKCU\..\Run: [msnmsgr] "C:\Program Files\MSN Messenger\msnmsgr.exe" /background
O4 - HKCU\..\Run: [eMuleAutoStart] C:\Program Files\eMule\emule.exe -AutoStart
O4 - Startup: wkcalrem.LNK = C:\Program Files\Fichiers communs\Microsoft Shared\Works Shared\WkCalRem.exe
O4 - Global Startup: Contrôleur de calendrier Ulead.lnk = C:\Program Files\Ulead Systems\Ulead Photo Express 4.0 SE\CalCheck.exe
O4 - Global Startup: Lancement rapide d'Adobe Reader.lnk = C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe
O8 - Extra context menu item: &Search - http://kt.bar.need2find.com/KT/menusearch.html?p=KT
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_09\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_09\bin\ssv.dll
O9 - Extra button: Aide à la connexion - {E2D4D26B-0180-43a4-B05F-462D6D54C789} - C:\WINDOWS\PCHEALTH\HELPCTR\Vendors\CN=Hewlett-Packard,L=Cupertino,S=Ca,C=US\IEButton\support.htm
O9 - Extra 'Tools' menuitem: Aide à la connexion - {E2D4D26B-0180-43a4-B05F-462D6D54C789} - C:\WINDOWS\PCHEALTH\HELPCTR\Vendors\CN=Hewlett-Packard,L=Cupertino,S=Ca,C=US\IEButton\support.htm
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O16 - DPF: {31B7EB4E-8B4B-11D1-A789-00A0CC6651A8} (Cult3D ActiveX Player) - https://www.cult3d.com/
O16 - DPF: {8E0D4DE5-3180-4024-A327-4DFAD1796A8D} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsClient.cab31267.cab
O16 - DPF: {AB86CE53-AC9F-449F-9399-D8ABCA09EC09} (Get_ActiveX Control) - https://h17000.www1.hp.com/ewfrf-JAVA/Secure/HPGetDownloadManager.ocx
O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - "C:\PROGRA~1\MSNMES~1\msgrapp.dll" (file missing)
O18 - Filter: text/html - {2AB289AE-4B90-4281-B2AE-1F4BB034B647} - C:\Program Files\RXToolBar\sfcont.dll
O23 - Service: AntiVir PersonalEdition Classic Scheduler (AntiVirScheduler) - Avira GmbH - C:\Program Files\AntiVir PersonalEdition Classic\sched.exe
O23 - Service: AntiVir PersonalEdition Classic Guard (AntiVirService) - AVIRA GmbH - C:\Program Files\AntiVir PersonalEdition Classic\avguard.exe
O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\WINDOWS\system32\Ati2evxx.exe
O23 - Service: Symantec Event Manager (ccEvtMgr) - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\ccEvtMgr.exe
O23 - Service: Symantec Password Validation (ccPwdSvc) - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\ccPwdSvc.exe
O23 - Service: Symantec Settings Manager (ccSetMgr) - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\ccSetMgr.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Fichiers communs\InstallShield\Driver\1050\Intel 32\IDriverT.exe
O23 - Service: iPod Service (iPodService) - Apple Computer, Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: LiveUpdate - Symantec Corporation - C:\PROGRA~1\Symantec\LIVEUP~1\LUCOMS~2.EXE
O23 - Service: Service Norton AntiVirus Auto-Protect (navapsvc) - Symantec Corporation - C:\Program Files\Norton AntiVirus\navapsvc.exe
O23 - Service: Planificateur LiveUpdate automatique - Symantec Corporation - C:\Program Files\Symantec\LiveUpdate\ALUSchedulerSvc.exe
O23 - Service: SAVScan - Symantec Corporation - C:\Program Files\Norton AntiVirus\SAVScan.exe
O23 - Service: ScriptBlocking Service (SBService) - Symantec Corporation - C:\PROGRA~1\FICHIE~1\SYMANT~1\SCRIPT~1\SBServ.exe
O23 - Service: Symantec Network Drivers Service (SNDSrvc) - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\SNDSrvc.exe
O23 - Service: Symantec SPBBCSvc (SPBBCSvc) - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\SPBBC\SPBBCSvc.exe

Réponse 2 / 21

green day Messages postés 26371 Date d'inscription vendredi 30 septembre 2005 Statut Modérateur, Contributeur sécurité Dernière intervention 27 décembre 2019 2 162
28 déc. 2006 à 21:39

ok,

Télécharge SDFix sur ton bureau

http://downloads.andymanchesta.com/RemovalTools/SDFix.exe

Double clique sur SDFix.exe et choisis Install pour l'extraire dans un dossier dédié sur le Bureau.
Redémarre ton ordinateur en mode sans échec
Ouvre le dossier SDFix qui vient d'être créé sur le Bureau et double clique sur RunThis.bat pour lancer le script.
Appuie sur Y pour commencer le processus de nettoyage.
Il va supprimer les services et les entrées du Registre de certains trojans trouvés puis te demandera d'appuyer sur une touche pour redémarrer.
Appuie sur une touche pour redémarrer le PC.
Ton système sera plus long pour redémarrer qu'à l'accoutumée car l'outil va continuer à s'exécuter et supprimer des fichiers.
Après le chargement du Bureau, l'outil terminera son travail et affichera Finished.
Appuie sur une touche pour finir l'exécution du script et charger les icônes de ton Bureau.
Les icônes du Bureau affichées, le rapport SDFix s'ouvrira à l'écran et s'enregistrera aussi dans le dossier SDFix sous le nom Report.txt.
Enfin, copie/colle le contenu du fichier Report.txt dans ta prochaine réponse sur le forum, avec un nouveau log Hijackthis !

++

bagot1
28 déc. 2006 à 22:14

ok j'ai telechargé sur le bureau quand je clic dessu il me demande de l'executer je le fait et il me sort sa dans le bloc note

The SDFix Folder has been extracted to %systemdrive% - Please run from that location.

(%systemdrive% = drive that contains the Windows directory - typically 'C:\SDFix')

Please open the SDFix folder in Safe Mode then double click the RunThis.bat
file to start the fixtool. If run in Normal Mode, options to download and
run Anti-Virus command line scanners (Sophos & asquared) are displayed.

est ce normal

Réponse 3 / 21

green day Messages postés 26371 Date d'inscription vendredi 30 septembre 2005 Statut Modérateur, Contributeur sécurité Dernière intervention 27 décembre 2019 2 162
28 déc. 2006 à 22:22

as tu decompressé le fichier ???

++

bagot1
29 déc. 2006 à 08:15

j'a mis sdfix dans winrar et je l'ai extré sur le bureau . dans le dossier j'ai maintenant 2 sous dossier :1) runthis et sdfix readme est ce que c'est bon ? je te remercie pour ton aide. des que je rentre du travail je m'en occupe bonne journée. peu tu me dire aussi comment on redemare sans echec?

Réponse 4 / 21

green day Messages postés 26371 Date d'inscription vendredi 30 septembre 2005 Statut Modérateur, Contributeur sécurité Dernière intervention 27 décembre 2019 2 162
29 déc. 2006 à 13:51

Salut

ok,

# Démarre en mode sans échec :
Pour cela, tu tapotes la touche F8 dès le début de l’allumage du pc sans t’arrêter
Une fenêtre va s’ouvrir tu te déplaces avec les flèches du clavier sur démarrer en mode sans échec puis tape entrée.
Une fois sur le bureau s’il n’y a pas toutes les couleurs et autres c’est normal !
(Si F8 ne marche pas utilise la touche F5).

++

bagot1
29 déc. 2006 à 16:29

j'ai fais comme tu m'as dit voila le rapport mais quand je ralume le pc j'ai toujours une detection du meme virus?

SDFix: Version 1.52
****************

29/12/2006 - 16:17:42,67

Microsoft Windows XP [version 5.1.2600]

Running From: C:\DOCUME~1\COMPAQ~1\Bureau\SDFix

Stage One - Safe Mode

Checking Services...

Service Name:

File Path:

Starting Registry Repairs...

Restoring Default Hosts File...

Stage One Complete

Rebooting...

Stage Two - Normal Mode

Checking For Malware:
--------------------

C:\DOCUME~1\COMPAQ~1\LOCALS~1\TEMP\74EXMO~2.EXE
C:\DOCUME~1\COMPAQ~1\LOCALS~1\TEMP\87EXMO~1.EXE

Backing Up and Removing any Files Found...

Alternate Stream Check:

C:\WINDOWS\system32
No streams found.
Final Check:

Remaining Services:
------------------

Authorized Application Key Export:

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List]
"%windir%\\system32\\sessmgr.exe"="%windir%\\system32\\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"C:\\Program Files\\iTunes\\iTunes.exe"="C:\\Program Files\\iTunes\\iTunes.exe:*:Enabled:iTunes"
"C:\\Program Files\\AOL 9.0\\waol.exe"="C:\\Program Files\\AOL 9.0\\waol.exe:*:Enabled:AOL France"
"C:\\Program Files\\Fichiers communs\\AOL\\ACS\\AOLDial.exe"="C:\\Program Files\\Fichiers communs\\AOL\\ACS\\AOLDial.exe:*:Enabled:AOL"
"C:\\Program Files\\Fichiers communs\\AOL\\ACS\\AOLacsd.exe"="C:\\Program Files\\Fichiers communs\\AOL\\ACS\\AOLacsd.exe:*:Enabled:AOL"
"C:\\Program Files\\Messenger\\msmsgs.exe"="C:\\Program Files\\Messenger\\msmsgs.exe:*:Enabled:Windows Messenger"
"C:\\Documents and Settings\\Compaq_Propriétaire\\Local Settings\\Temp\\ImInstaller\\IncrediMail\\incredimail_install[1].exe"="C:\\Documents and Settings\\Compaq_Propriétaire\\Local Settings\\Temp\\ImInstaller\\IncrediMail\\incredimail_install[1].exe:*:Enabled:IncrediMail Installer"
"C:\\Program Files\\Kazaa\\kazaa.exe"="C:\\Program Files\\Kazaa\\kazaa.exe:*:Enabled:Kazaa Media Desktop"
"C:\\Program Files\\MSN Messenger\\msnmsgr.exe"="C:\\Program Files\\MSN Messenger\\msnmsgr.exe:*:Enabled:MSN Messenger 7.5"
"C:\\WINDOWS\\system32\\svchost.exe"="C:\\WINDOWS\\system32\\svchost.exe:*:Enabled:Microsoft Update"
"C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\5exinjs.p.exe"="C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\5exinjs.p.exe:*:Enabled:Microsoft Update"
"C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\47exinjs.p.exe"="C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\47exinjs.p.exe:*:Enabled:Microsoft Update"
"C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\39exinjs.p.exe"="C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\39exinjs.p.exe:*:Enabled:Microsoft Update"
"C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\55exinjs.p.exe"="C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\55exinjs.p.exe:*:Enabled:Microsoft Update"
"C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\56exinjs.p.exe"="C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\56exinjs.p.exe:*:Enabled:Microsoft Update"
"C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\35exinjs.p.exe"="C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\35exinjs.p.exe:*:Enabled:Microsoft Update"
"C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\53exinjs.p.exe"="C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\53exinjs.p.exe:*:Enabled:Microsoft Update"
"C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\86exinjs.p.exe"="C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\86exinjs.p.exe:*:Enabled:Microsoft Update"
"C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\13exinjs.p.exe"="C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\13exinjs.p.exe:*:Enabled:Microsoft Update"
"C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\8exinjs.p.exe"="C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\8exinjs.p.exe:*:Enabled:Microsoft Update"
"C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\18exinjs.p.exe"="C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\18exinjs.p.exe:*:Enabled:Microsoft Update"
"C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\97exinjs.p.exe"="C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\97exinjs.p.exe:*:Enabled:Microsoft Update"
"C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\93exinjs.p.exe"="C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\93exinjs.p.exe:*:Enabled:Microsoft Update"
"C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\52exinjs.p.exe"="C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\52exinjs.p.exe:*:Enabled:Microsoft Update"
"C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\38exinjs.p.exe"="C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\38exinjs.p.exe:*:Enabled:Microsoft Update"
"C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\68exinjs.p.exe"="C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\68exinjs.p.exe:*:Enabled:Microsoft Update"
"C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\12exinjs.p.exe"="C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\12exinjs.p.exe:*:Enabled:Microsoft Update"
"C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\0exinjs.p.exe"="C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\0exinjs.p.exe:*:Enabled:Microsoft Update"
"C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\88exinjs.p.exe"="C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\88exinjs.p.exe:*:Enabled:Microsoft Update"
"C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\24exinjs.p.exe"="C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\24exinjs.p.exe:*:Enabled:Microsoft Update"
"C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\81exinjs.p.exe"="C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\81exinjs.p.exe:*:Enabled:Microsoft Update"
"C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\60exinjs.p.exe"="C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\60exinjs.p.exe:*:Enabled:Microsoft Update"
"C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\75exinjs.p.exe"="C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\75exinjs.p.exe:*:Enabled:Microsoft Update"
"C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\27exinjs.p.exe"="C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\27exinjs.p.exe:*:Enabled:Microsoft Update"
"C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\67exinjs.p.exe"="C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\67exinjs.p.exe:*:Enabled:Microsoft Update"
"C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\98exinjs.p.exe"="C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\98exinjs.p.exe:*:Enabled:Microsoft Update"
"C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\51exinjs.p.exe"="C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\51exinjs.p.exe:*:Enabled:Microsoft Update"
"C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\62exinjs.p.exe"="C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\62exinjs.p.exe:*:Enabled:Microsoft Update"
"C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\57exinjs.p.exe"="C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\57exinjs.p.exe:*:Enabled:Microsoft Update"
"C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\63exinjs.p.exe"="C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\63exinjs.p.exe:*:Enabled:Microsoft Update"
"C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\34exinjs.p.exe"="C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\34exinjs.p.exe:*:Enabled:Microsoft Update"
"C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\3exinjs.p.exe"="C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\3exinjs.p.exe:*:Enabled:Microsoft Update"
"C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\96exmodul32f.a.exe"="C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\96exmodul32f.a.exe:*:Enabled:Microsoft Update"
"C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\20exinjs.q.exe"="C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\20exinjs.q.exe:*:Enabled:Microsoft Update"
"C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\12exinjs.q.exe"="C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\12exinjs.q.exe:*:Enabled:Microsoft Update"
"C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\49exinjs.q.exe"="C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\49exinjs.q.exe:*:Enabled:Microsoft Update"
"C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\54exinjs.q.exe"="C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\54exinjs.q.exe:*:Enabled:Microsoft Update"
"C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\84exinjs.q.exe"="C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\84exinjs.q.exe:*:Enabled:Microsoft Update"
"C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\11exinjs.q.exe"="C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\11exinjs.q.exe:*:Enabled:Microsoft Update"
"C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\39exinjs.q.exe"="C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\39exinjs.q.exe:*:Enabled:Microsoft Update"
"C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\45exinjs.q.exe"="C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\45exinjs.q.exe:*:Enabled:Microsoft Update"
"C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\9exinjs.q.exe"="C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\9exinjs.q.exe:*:Enabled:Microsoft Update"
"C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\1exinjs.q.exe"="C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\1exinjs.q.exe:*:Enabled:Microsoft Update"
"C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\21exinjs.q.exe"="C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\21exinjs.q.exe:*:Enabled:Microsoft Update"
"C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\61exinjs.q.exe"="C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\61exinjs.q.exe:*:Enabled:Microsoft Update"
"C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\68exinjs.q.exe"="C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\68exinjs.q.exe:*:Enabled:Microsoft Update"
"C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\7exinjs.q.exe"="C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\7exinjs.q.exe:*:Enabled:Microsoft Update"
"C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\50exinjs.q.exe"="C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\50exinjs.q.exe:*:Enabled:Microsoft Update"
"C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\94exinjs.q.exe"="C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\94exinjs.q.exe:*:Enabled:Microsoft Update"
"C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\26exinjs.q.exe"="C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\26exinjs.q.exe:*:Enabled:Microsoft Update"
"C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\41exinjs.q.exe"="C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\41exinjs.q.exe:*:Enabled:Microsoft Update"
"C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\52exinjs.q.exe"="C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\52exinjs.q.exe:*:Enabled:Microsoft Update"
"C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\38exinjs.q.exe"="C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\38exinjs.q.exe:*:Enabled:Microsoft Update"
"C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\67exinjs.q.exe"="C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\67exinjs.q.exe:*:Enabled:Microsoft Update"
"C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\19exinjs.q.exe"="C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\19exinjs.q.exe:*:Enabled:Microsoft Update"
"C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\30exinjs.q.exe"="C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\30exinjs.q.exe:*:Enabled:Microsoft Update"
"C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\14exinjs.q.exe"="C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\14exinjs.q.exe:*:Enabled:Microsoft Update"
"C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\88exinjs.q.exe"="C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\88exinjs.q.exe:*:Enabled:Microsoft Update"
"C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\32exinjs.q.exe"="C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\32exinjs.q.exe:*:Enabled:Microsoft Update"
"C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\6exinjs.q.exe"="C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\6exinjs.q.exe:*:Enabled:Microsoft Update"
"C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\8exinjs.q.exe"="C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\8exinjs.q.exe:*:Enabled:Microsoft Update"
"C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\60exinjs.q.exe"="C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\60exinjs.q.exe:*:Enabled:Microsoft Update"
"C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\53exinjs.q.exe"="C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\53exinjs.q.exe:*:Enabled:Microsoft Update"
"C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\42exinjs.q.exe"="C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\42exinjs.q.exe:*:Enabled:Microsoft Update"
"C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\82exinjs.q.exe"="C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\82exinjs.q.exe:*:Enabled:Microsoft Update"
"C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\96exinjs.q.exe"="C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\96exinjs.q.exe:*:Enabled:Microsoft Update"
"C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\3exinjs.q.exe"="C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\3exinjs.q.exe:*:Enabled:Microsoft Update"
"C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\18exinjs.q.exe"="C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\18exinjs.q.exe:*:Enabled:Microsoft Update"
"C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\37exinjs.q.exe"="C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\37exinjs.q.exe:*:Enabled:Microsoft Update"
"C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\73exinjs.q.exe"="C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\73exinjs.q.exe:*:Enabled:Microsoft Update"
"C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\24exinjs.q.exe"="C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\24exinjs.q.exe:*:Enabled:Microsoft Update"
"C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\95exinjs.q.exe"="C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\95exinjs.q.exe:*:Enabled:Microsoft Update"
"C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\97exinjs.q.exe"="C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\97exinjs.q.exe:*:Enabled:Microsoft Update"
"C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\0exinjs.q.exe"="C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\0exinjs.q.exe:*:Enabled:Microsoft Update"
"C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\15exinjs.q.exe"="C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\15exinjs.q.exe:*:Enabled:Microsoft Update"
"C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\79exinjs.q.exe"="C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\79exinjs.q.exe:*:Enabled:Microsoft Update"
"C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\58exinjs.q.exe"="C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\58exinjs.q.exe:*:Enabled:Microsoft Update"
"C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\83exinjs.q.exe"="C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\83exinjs.q.exe:*:Enabled:Microsoft Update"
"C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\25exinjs.q.exe"="C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\25exinjs.q.exe:*:Enabled:Microsoft Update"
"C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\64exinjs.q.exe"="C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\64exinjs.q.exe:*:Enabled:Microsoft Update"
"C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\59exinjs.q.exe"="C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\59exinjs.q.exe:*:Enabled:Microsoft Update"
"C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\35exinjs.q.exe"="C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\35exinjs.q.exe:*:Enabled:Microsoft Update"
"C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\44exinjs.q.exe"="C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\44exinjs.q.exe:*:Enabled:Microsoft Update"
"C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\23exinjs.q.exe"="C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\23exinjs.q.exe:*:Enabled:Microsoft Update"
"C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\4exinjs.q.exe"="C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\4exinjs.q.exe:*:Enabled:Microsoft Update"
"C:\\Program Files\\eMule\\emule.exe"="C:\\Program Files\\eMule\\emule.exe:*:Enabled:eMule"
"C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\56exinjs.q.exe"="C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\56exinjs.q.exe:*:Enabled:Microsoft Update"
"C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\90exinjs.r.exe"="C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\90exinjs.r.exe:*:Enabled:Microsoft Update"
"C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\77exinjs.r.exe"="C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\77exinjs.r.exe:*:Enabled:Microsoft Update"
"C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\92exinjs.r.exe"="C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\92exinjs.r.exe:*:Enabled:Microsoft Update"
"C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\56exinjs.r.exe"="C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\56exinjs.r.exe:*:Enabled:Microsoft Update"
"C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\18exinjs.r.exe"="C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\18exinjs.r.exe:*:Enabled:Microsoft Update"
"C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\76exinjs.r.exe"="C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\76exinjs.r.exe:*:Enabled:Microsoft Update"
"C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\21exinjs.r.exe"="C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\21exinjs.r.exe:*:Enabled:Microsoft Update"
"C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\13exinjs.r.exe"="C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\13exinjs.r.exe:*:Enabled:Microsoft Update"
"C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\9exinjs.r.exe"="C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\9exinjs.r.exe:*:Enabled:Microsoft Update"
"C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\79exinjs.r.exe"="C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\79exinjs.r.exe:*:Enabled:Microsoft Update"
"C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\40exinjs.r.exe"="C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\40exinjs.r.exe:*:Enabled:Microsoft Update"
"C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\44exinjs.r.exe"="C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\44exinjs.r.exe:*:Enabled:Microsoft Update"
"C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\6exinjs.r.exe"="C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\6exinjs.r.exe:*:Enabled:Microsoft Update"
"C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\87exinjs.r.exe"="C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\87exinjs.r.exe:*:Enabled:Microsoft Update"
"C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\84exinjs.r.exe"="C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\84exinjs.r.exe:*:Enabled:Microsoft Update"
"C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\26exinjs.r.exe"="C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\26exinjs.r.exe:*:Enabled:Microsoft Update"
"C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\10exinjs.r.exe"="C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\10exinjs.r.exe:*:Enabled:Microsoft Update"
"C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\7exinjs.r.exe"="C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\7exinjs.r.exe:*:Enabled:Microsoft Update"
"C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\29exinjs.r.exe"="C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\29exinjs.r.exe:*:Enabled:Microsoft Update"
"C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\19exinjs.r.exe"="C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\19exinjs.r.exe:*:Enabled:Microsoft Update"
"C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\38exinjs.r.exe"="C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\38exinjs.r.exe:*:Enabled:Microsoft Update"
"C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\53exinjs.r.exe"="C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\53exinjs.r.exe:*:Enabled:Microsoft Update"
"C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\99exinjs.r.exe"="C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\99exinjs.r.exe:*:Enabled:Microsoft Update"
"C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\2exinjs.r.exe"="C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\2exinjs.r.exe:*:Enabled:Microsoft Update"
"C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\52exinjs.r.exe"="C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\52exinjs.r.exe:*:Enabled:Microsoft Update"
"C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\37exinjs.r.exe"="C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\37exinjs.r.exe:*:Enabled:Microsoft Update"
"C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\66exinjs.r.exe"="C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\66exinjs.r.exe:*:Enabled:Microsoft Update"
"C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\72exinjs.r.exe"="C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\72exinjs.r.exe:*:Enabled:Microsoft Update"
"C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\5exinjs.r.exe"="C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\5exinjs.r.exe:*:Enabled:Microsoft Update"
"C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\60exinjs.r.exe"="C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\60exinjs.r.exe:*:Enabled:Microsoft Update"
"C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\43exinjs.s.exe"="C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\43exinjs.s.exe:*:Enabled:Microsoft Update"
"C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\97exinjs.s.exe"="C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\97exinjs.s.exe:*:Enabled:Microsoft Update"
"C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\26exinjs.s.exe"="C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\26exinjs.s.exe:*:Enabled:Microsoft Update"
"C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\30exinjs.s.exe"="C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\30exinjs.s.exe:*:Enabled:Microsoft Update"
"C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\59exinjs.s.exe"="C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\59exinjs.s.exe:*:Enabled:Microsoft Update"
"C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\85exinjs.s.exe"="C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\85exinjs.s.exe:*:Enabled:Microsoft Update"
"C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\28exinjs.s.exe"="C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\28exinjs.s.exe:*:Enabled:Microsoft Update"
"C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\25exinjs.s.exe"="C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\25exinjs.s.exe:*:Enabled:Microsoft Update"
"C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\55exinjs.s.exe"="C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\55exinjs.s.exe:*:Enabled:Microsoft Update"
"C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\27exinjs.s.exe"="C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\27exinjs.s.exe:*:Enabled:Microsoft Update"
"C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\94exinjs.t.exe"="C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\94exinjs.t.exe:*:Enabled:Microsoft Update"
"C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\2exinjs.t.exe"="C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\2exinjs.t.exe:*:Enabled:Microsoft Update"
"C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\53exinjs.t.exe"="C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\53exinjs.t.exe:*:Enabled:Microsoft Update"
"C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\88exmodul32f.i.exe"="C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\88exmodul32f.i.exe:*:Enabled:Microsoft Update"
"C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\74exinjs.t.exe"="C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\74exinjs.t.exe:*:Enabled:Microsoft Update"
"C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\62exinjs.t.exe"="C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\62exinjs.t.exe:*:Enabled:Microsoft Update"
"C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\10exinjs.t.exe"="C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\10exinjs.t.exe:*:Enabled:Microsoft Update"
"C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\58exmodul32f.i.exe"="C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\58exmodul32f.i.exe:*:Enabled:Microsoft Update"
"C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\0exinjs.t.exe"="C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\0exinjs.t.exe:*:Enabled:Microsoft Update"
"C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\84exinjs.t.exe"="C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\84exinjs.t.exe:*:Enabled:Microsoft Update"
"C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\10exmodul32f.i.exe"="C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\10exmodul32f.i.exe:*:Enabled:Microsoft Update"
"C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\86exmodul32f.i.exe"="C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\86exmodul32f.i.exe:*:Enabled:Microsoft Update"
"C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\39exinjs.t.exe"="C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\39exinjs.t.exe:*:Enabled:Microsoft Update"
"C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\27exmodul32f.i.exe"="C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\27exmodul32f.i.exe:*:Enabled:Microsoft Update"
"C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\96exinjs.t.exe"="C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\96exinjs.t.exe:*:Enabled:Microsoft Update"
"C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\4exmodul32f.i.exe"="C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\4exmodul32f.i.exe:*:Enabled:Microsoft Update"
"C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\82exinjs.t.exe"="C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\82exinjs.t.exe:*:Enabled:Microsoft Update"
"C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\91exmodul32f.i.exe"="C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\91exmodul32f.i.exe:*:Enabled:Microsoft Update"
"C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\34exinjs.t.exe"="C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\34exinjs.t.exe:*:Enabled:Microsoft Update"
"C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\52exinjs.t.exe"="C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\52exinjs.t.exe:*:Enabled:Microsoft Update"
"C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\89exinjs.t.exe"="C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\89exinjs.t.exe:*:Enabled:Microsoft Update"
"C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\38exinjs.t.exe"="C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\38exinjs.t.exe:*:Enabled:Microsoft Update"
"C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\20exinjs.t.exe"="C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\20exinjs.t.exe:*:Enabled:Microsoft Update"
"C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\5exinjs.t.exe"="C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\5exinjs.t.exe:*:Enabled:Microsoft Update"
"C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\53exmodul32f.i.exe"="C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\53exmodul32f.i.exe:*:Enabled:Microsoft Update"
"C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\61exinjs.t.exe"="C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\61exinjs.t.exe:*:Enabled:Microsoft Update"
"C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\26exinjs.t.exe"="C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\26exinjs.t.exe:*:Enabled:Microsoft Update"
"C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\71exinjs.t.exe"="C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\71exinjs.t.exe:*:Enabled:Microsoft Update"
"C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\55exinjs.t.exe"="C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\55exinjs.t.exe:*:Enabled:Microsoft Update"
"C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\65exmodul32f.i.exe"="C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\65exmodul32f.i.exe:*:Enabled:Microsoft Update"
"C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\58exinjs.t.exe"="C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\58exinjs.t.exe:*:Enabled:Microsoft Update"
"C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\78exmodul32f.i.exe"="C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\78exmodul32f.i.exe:*:Enabled:Microsoft Update"
"C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\16exinjs.t.exe"="C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\16exinjs.t.exe:*:Enabled:Microsoft Update"
"C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\28exinjs.t.exe"="C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\28exinjs.t.exe:*:Enabled:Microsoft Update"
"C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\15exmodul32f.i.exe"="C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\15exmodul32f.i.exe:*:Enabled:Microsoft Update"
"C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\19exinjs.t.exe"="C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\19exinjs.t.exe:*:Enabled:Microsoft Update"
"C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\7exinjs.t.exe"="C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\7exinjs.t.exe:*:Enabled:Microsoft Update"
"C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\11exinjs.t.exe"="C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\11exinjs.t.exe:*:Enabled:Microsoft Update"
"C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\17exinjs.t.exe"="C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\17exinjs.t.exe:*:Enabled:Microsoft Update"
"C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\51exinjs.t.exe"="C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\51exinjs.t.exe:*:Enabled:Microsoft Update"
"C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\68exinjs.t.exe"="C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\68exinjs.t.exe:*:Enabled:Microsoft Update"
"C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\36exinjs.t.exe"="C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\36exinjs.t.exe:*:Enabled:Microsoft Update"
"C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\69exinjs.t.exe"="C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\69exinjs.t.exe:*:Enabled:Microsoft Update"
"C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\65exinjs.u.exe"="C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\65exinjs.u.exe:*:Enabled:Microsoft Update"
"C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\41exinjs.u.exe"="C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\41exinjs.u.exe:*:Enabled:Microsoft Update"
"C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\12exinjs.u.exe"="C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\12exinjs.u.exe:*:Enabled:Microsoft Update"
"C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\21exinjs.u.exe"="C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\21exinjs.u.exe:*:Enabled:Microsoft Update"
"C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\61exmodul32f.k.exe"="C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\61exmodul32f.k.exe:*:Enabled:Microsoft Update"
"C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\38exinjs.u.exe"="C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\38exinjs.u.exe:*:Enabled:Microsoft Update"
"C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\17exinjs.u.exe"="C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\17exinjs.u.exe:*:Enabled:Microsoft Update"
"C:\\WINDOWS\\system32\\dpvsetup.exe"="C:\\WINDOWS\\system32\\dpvsetup.exe:*:Enabled:Microsoft DirectPlay Voice Test"
"C:\\WINDOWS\\system32\\rundll32.exe"="C:\\WINDOWS\\system32\\rundll32.exe:*:Enabled:Exécuter une DLL en tant qu'application"
"C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\64exmodul32f.m.exe"="C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\64exmodul32f.m.exe:*:Enabled:Microsoft Update"
"C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\3exmodul32f.m.exe"="C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\3exmodul32f.m.exe:*:Enabled:Microsoft Update"
"C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\14exmodul32f.m.exe"="C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\14exmodul32f.m.exe:*:Enabled:Microsoft Update"
"C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\47exmodul32f.m.exe"="C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\47exmodul32f.m.exe:*:Enabled:Microsoft Update"
"C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\16exmodul32f.m.exe"="C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\16exmodul32f.m.exe:*:Enabled:Microsoft Update"
"C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\91exmodul32f.m.exe"="C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\91exmodul32f.m.exe:*:Enabled:Microsoft Update"
"C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\2exmodul32f.m.exe"="C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\2exmodul32f.m.exe:*:Enabled:Microsoft Update"
"C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\48exmodul32f.m.exe"="C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\48exmodul32f.m.exe:*:Enabled:Microsoft Update"
"C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\4exmodul32f.m.exe"="C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\4exmodul32f.m.exe:*:Enabled:Microsoft Update"
"C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\24exmodul32f.m.exe"="C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\24exmodul32f.m.exe:*:Enabled:Microsoft Update"
"C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\75exmodul32f.m.exe"="C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\75exmodul32f.m.exe:*:Enabled:Microsoft Update"
"C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\26exmodul32f.m.exe"="C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\26exmodul32f.m.exe:*:Enabled:Microsoft Update"
"C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\8exmodul32f.m.exe"="C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\8exmodul32f.m.exe:*:Enabled:Microsoft Update"
"C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\8exinjs.v.exe"="C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\8exinjs.v.exe:*:Enabled:Microsoft Update"
"C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\96exmodul32f.m.exe"="C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\96exmodul32f.m.exe:*:Enabled:Microsoft Update"
"C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\27exmodul32f.m.exe"="C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\27exmodul32f.m.exe:*:Enabled:Microsoft Update"
"C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\57exmodul32f.m.exe"="C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\57exmodul32f.m.exe:*:Enabled:Microsoft Update"
"C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\80exmodul32f.m.exe"="C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\80exmodul32f.m.exe:*:Enabled:Microsoft Update"
"C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\87exmodul32f.m.exe"="C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\87exmodul32f.m.exe:*:Enabled:Microsoft Update"
"C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\55exmodul32f.m.exe"="C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\55exmodul32f.m.exe:*:Enabled:Microsoft Update"
"C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\79exmodul32f.m.exe"="C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\79exmodul32f.m.exe:*:Enabled:Microsoft Update"
"C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\41exmodul32f.m.exe"="C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\41exmodul32f.m.exe:*:Enabled:Microsoft Update"
"C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\88exmodul32f.m.exe"="C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\88exmodul32f.m.exe:*:Enabled:Microsoft Update"
"C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\19exmodul32f.m.exe"="C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\19exmodul32f.m.exe:*:Enabled:Microsoft Update"
"C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\65exmodul32f.m.exe"="C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\65exmodul32f.m.exe:*:Enabled:Microsoft Update"
"C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\11exmodul32f.m.exe"="C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\11exmodul32f.m.exe:*:Enabled:Microsoft Update"
"C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\7exinjs.v.exe"="C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\7exinjs.v.exe:*:Enabled:Microsoft Update"
"C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\22exmodul32f.m.exe"="C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\22exmodul32f.m.exe:*:Enabled:Microsoft Update"
"C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\60exmodul32f.n.exe"="C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\60exmodul32f.n.exe:*:Enabled:Microsoft Update"
"C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\55exmodul32f.n.exe"="C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\55exmodul32f.n.exe:*:Enabled:Microsoft Update"
"C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\83exmodul32f.n.exe"="C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\83exmodul32f.n.exe:*:Enabled:Microsoft Update"
"C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\9exmodul32f.n.exe"="C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\9exmodul32f.n.exe:*:Enabled:Microsoft Update"
"C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\51exmodul32f.n.exe"="C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\51exmodul32f.n.exe:*:Enabled:Microsoft Update"
"C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\39exmodul32f.n.exe"="C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\39exmodul32f.n.exe:*:Enabled:Microsoft Update"
"C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\42exmodul32f.n.exe"="C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\42exmodul32f.n.exe:*:Enabled:Microsoft Update"
"C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\43exmodul32f.n.exe"="C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\43exmodul32f.n.exe:*:Enabled:Microsoft Update"
"C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\47exmodul32f.n.exe"="C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\47exmodul32f.n.exe:*:Enabled:Microsoft Update"
"C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\80exmodul32f.n.exe"="C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\80exmodul32f.n.exe:*:Enabled:Microsoft Update"
"C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\84exmodul32f.n.exe"="C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\84exmodul32f.n.exe:*:Enabled:Microsoft Update"
"C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\34exmodul32f.n.exe"="C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\34exmodul32f.n.exe:*:Enabled:Microsoft Update"
"C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\85exmodul32f.n.exe"="C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\85exmodul32f.n.exe:*:Enabled:Microsoft Update"
"C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\71exmodul32f.n.exe"="C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\71exmodul32f.n.exe:*:Enabled:Microsoft Update"
"C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\81exmodul32f.n.exe"="C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\81exmodul32f.n.exe:*:Enabled:Microsoft Update"
"C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\32exmodul32f.n.exe"="C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\32exmodul32f.n.exe:*:Enabled:Microsoft Update"
"C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\13exmodul32f.n.exe"="C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\13exmodul32f.n.exe:*:Enabled:Microsoft Update"
"C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\12exmodul32f.n.exe"="C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\12exmodul32f.n.exe:*:Enabled:Microsoft Update"
"C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\95exmodul32f.n.exe"="C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\95exmodul32f.n.exe:*:Enabled:Microsoft Update"

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\AuthorizedApplications\List]
"%windir%\\system32\\sessmgr.exe"="%windir%\\system32\\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"%ProgramFiles%\\iTunes\\iTunes.exe"="%ProgramFiles%\\iTunes\\iTunes.exe:*:enabled:iTunes"
"C:\\Program Files\\Fichiers communs\\AOL\\ACS\\AOLacsd.exe"="C:\\Program Files\\Fichiers communs\\AOL\\ACS\\AOLacsd.exe:*:Enabled:AOL"
"C:\\Program Files\\Fichiers communs\\AOL\\ACS\\AOLDial.exe"="C:\\Program Files\\Fichiers communs\\AOL\\ACS\\AOLDial.exe:*:Enabled:AOL"
"C:\\Program Files\\MSN Messenger\\msnmsgr.exe"="C:\\Program Files\\MSN Messenger\\msnmsgr.exe:*:Enabled:MSN Messenger 7.5"

Remaining Files:
---------------

Backups Folder: - C:\DOCUME~1\COMPAQ~1\Bureau\SDFix\backups\backups.zip

Checking for files with Hidden Attributes:

C:\Documents and Settings\Compaq_Propri‚taire\Local Settings\Temp\~rnsetup\pncrt.dll
C:\WINDOWS\system32\cdplayer.exe.manifest
C:\WINDOWS\system32\logonui.exe.manifest
C:\hiberfil.sys
C:\IO.SYS
C:\MSDOS.SYS
C:\pagefile.sys
C:\Program Files\InterActual\InterActual Player\iti4.tmp

FINISHED!

Réponse 5 / 21

green day Messages postés 26371 Date d'inscription vendredi 30 septembre 2005 Statut Modérateur, Contributeur sécurité Dernière intervention 27 décembre 2019 2 162
30 déc. 2006 à 00:04

Salut

où est ce qu'il te le detecte ???

poste un nouveau hiack stp

++

bagot1
30 déc. 2006 à 07:49

bjrs green day je te remercie pour ton aide je pense qu'il me le detecte dans c:windows et autre fichier et quand je les suprimes et ke je redemarre le pc ils reviennent

voila le nv hiack

A+

Logfile of HijackThis v1.99.1
Scan saved at 07:45:05, on 30/12/2006
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Fichiers communs\Symantec Shared\ccSetMgr.exe
C:\Program Files\Fichiers communs\Symantec Shared\SPBBC\SPBBCSvc.exe
C:\Program Files\Fichiers communs\Symantec Shared\ccEvtMgr.exe
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\AntiVir PersonalEdition Classic\sched.exe
C:\Program Files\Norton AntiVirus\navapsvc.exe
C:\Program Files\Symantec\LiveUpdate\ALUSchedulerSvc.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\wscntfy.exe
C:\windows\system\hpsysdrv.exe
C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe
C:\Program Files\iTunes\iTunesHelper.exe
C:\WINDOWS\ALCXMNTR.EXE
C:\Program Files\HP\HP Software Update\HPwuSchd2.exe
C:\WINDOWS\VM303_STI.EXE
C:\Program Files\iPod\bin\iPodService.exe
C:\WINDOWS\system32\wuauclt.exe
C:\Program Files\QuickTime\qttask.exe
C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\E_FATIADE.EXE
C:\Program Files\MessengerPlus! 3\MsgPlus.exe
C:\Program Files\Java\jre1.5.0_09\bin\jusched.exe
C:\HP\KBD\KBD.EXE
C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe
C:\Program Files\Fichiers communs\Symantec Shared\ccApp.exe
C:\Program Files\Messenger\msmsgs.exe
C:\Program Files\eMule\emule.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Ulead Systems\Ulead Photo Express 4.0 SE\CalCheck.exe
C:\Program Files\Fichiers communs\Microsoft Shared\Works Shared\WkCalRem.exe
C:\Program Files\AntiVir PersonalEdition Classic\avguard.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\DOCUME~1\COMPAQ~1\LOCALS~1\Temp\Répertoire temporaire 2 pour hijackthis.zip\HijackThis.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Window Title = Alice ADSL
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll
O2 - BHO: RXResultTracker Class - {59879FA4-4790-461c-A1CC-4EC4DE4CA483} - C:\Program Files\RXToolBar\sfcont.dll (file missing)
O2 - BHO: EoRezoBHO - {64F56FC1-1272-44CD-BA6E-39723696E350} - C:\PROGRA~1\eoRezo\EoAdv\EOREZO~1.DLL (file missing)
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.5.0_09\bin\ssv.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar1.dll
O2 - BHO: NAV Helper - {BDF3E430-B101-42AD-A544-FADC6B084872} - C:\Program Files\Norton AntiVirus\NavShExt.dll
O2 - BHO: EpsonToolBandKicker Class - {E99421FB-68DD-40F0-B4AC-B7027CAE2F1A} - C:\Program Files\EPSON\EPSON Web-To-Page\EPSON Web-To-Page.dll
O3 - Toolbar: EPSON Web-To-Page - {EE5D279F-081B-4404-994D-C6B60AAEBA6D} - C:\Program Files\EPSON\EPSON Web-To-Page\EPSON Web-To-Page.dll
O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar1.dll
O3 - Toolbar: Norton AntiVirus - {42CDD1BF-3FFB-4238-8AD1-7859DF00B1D6} - C:\Program Files\Norton AntiVirus\NavShExt.dll
O4 - HKLM\..\Run: [hpsysdrv] c:\windows\system\hpsysdrv.exe
O4 - HKLM\..\Run: [ATIPTA] C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe
O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe"
O4 - HKLM\..\Run: [Recguard] C:\WINDOWS\SMINST\RECGUARD.EXE
O4 - HKLM\..\Run: [AlcxMonitor] ALCXMNTR.EXE
O4 - HKLM\..\Run: [HP Software Update] C:\Program Files\HP\HP Software Update\HPwuSchd2.exe
O4 - HKLM\..\Run: [BigDog303] C:\WINDOWS\VM303_STI.EXE VIMICRO USB PC Camera (ZC0301PLH)
O4 - HKLM\..\Run: [SemanticInsight] C:\Program Files\RXToolBar\Semantic Insight\SemanticInsight.exe
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [BDSwitchAgent] "C:\PROGRA~1\Softwin\BITDEF~1\bdswitch.exe"
O4 - HKLM\..\Run: [EPSON Stylus DX4800 Series] C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\E_FATIADE.EXE /P26 "EPSON Stylus DX4800 Series" /O6 "USB001" /M "Stylus DX4800"
O4 - HKLM\..\Run: [MessengerPlus3] "C:\Program Files\MessengerPlus! 3\MsgPlus.exe"
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre1.5.0_09\bin\jusched.exe"
O4 - HKLM\..\Run: [NeroFilterCheck] C:\WINDOWS\system32\NeroCheck.exe
O4 - HKLM\..\Run: [avgnt] "C:\Program Files\AntiVir PersonalEdition Classic\avgnt.exe" /min
O4 - HKLM\..\Run: [KBD] C:\HP\KBD\KBD.EXE
O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe" -osboot
O4 - HKLM\..\Run: [ccApp] "C:\Program Files\Fichiers communs\Symantec Shared\ccApp.exe"
O4 - HKLM\..\Run: [Symantec NetDriver Monitor] C:\PROGRA~1\SYMNET~1\SNDMon.exe /Consumer
O4 - HKCU\..\Run: [MSMSGS] "C:\Program Files\Messenger\msmsgs.exe" /background
O4 - HKCU\..\Run: [MessengerPlus3] "C:\Program Files\MessengerPlus! 3\MsgPlus.exe" /WinStart
O4 - HKCU\..\Run: [eMuleAutoStart] C:\Program Files\eMule\emule.exe -AutoStart
O4 - HKCU\..\Run: [msnmsgr] "C:\Program Files\MSN Messenger\msnmsgr.exe" /background
O4 - Startup: wkcalrem.LNK = C:\Program Files\Fichiers communs\Microsoft Shared\Works Shared\WkCalRem.exe
O4 - Global Startup: Contrôleur de calendrier Ulead.lnk = C:\Program Files\Ulead Systems\Ulead Photo Express 4.0 SE\CalCheck.exe
O4 - Global Startup: Lancement rapide d'Adobe Reader.lnk = C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe
O8 - Extra context menu item: &Search - http://kt.bar.need2find.com/KT/menusearch.html?p=KT
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_09\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_09\bin\ssv.dll
O9 - Extra button: Aide à la connexion - {E2D4D26B-0180-43a4-B05F-462D6D54C789} - C:\WINDOWS\PCHEALTH\HELPCTR\Vendors\CN=Hewlett-Packard,L=Cupertino,S=Ca,C=US\IEButton\support.htm
O9 - Extra 'Tools' menuitem: Aide à la connexion - {E2D4D26B-0180-43a4-B05F-462D6D54C789} - C:\WINDOWS\PCHEALTH\HELPCTR\Vendors\CN=Hewlett-Packard,L=Cupertino,S=Ca,C=US\IEButton\support.htm
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O16 - DPF: {31B7EB4E-8B4B-11D1-A789-00A0CC6651A8} (Cult3D ActiveX Player) - https://www.cult3d.com/
O16 - DPF: {8E0D4DE5-3180-4024-A327-4DFAD1796A8D} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsClient.cab31267.cab
O16 - DPF: {AB86CE53-AC9F-449F-9399-D8ABCA09EC09} (Get_ActiveX Control) - https://h17000.www1.hp.com/ewfrf-JAVA/Secure/HPGetDownloadManager.ocx
O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - "C:\PROGRA~1\MSNMES~1\msgrapp.dll" (file missing)
O18 - Filter: text/html - {2AB289AE-4B90-4281-B2AE-1F4BB034B647} - C:\Program Files\RXToolBar\sfcont.dll
O23 - Service: AntiVir PersonalEdition Classic Scheduler (AntiVirScheduler) - Avira GmbH - C:\Program Files\AntiVir PersonalEdition Classic\sched.exe
O23 - Service: AntiVir PersonalEdition Classic Guard (AntiVirService) - AVIRA GmbH - C:\Program Files\AntiVir PersonalEdition Classic\avguard.exe
O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\WINDOWS\system32\Ati2evxx.exe
O23 - Service: Symantec Event Manager (ccEvtMgr) - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\ccEvtMgr.exe
O23 - Service: Symantec Password Validation (ccPwdSvc) - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\ccPwdSvc.exe
O23 - Service: Symantec Settings Manager (ccSetMgr) - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\ccSetMgr.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Fichiers communs\InstallShield\Driver\1050\Intel 32\IDriverT.exe
O23 - Service: iPod Service (iPodService) - Apple Computer, Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: LiveUpdate - Symantec Corporation - C:\PROGRA~1\Symantec\LIVEUP~1\LUCOMS~2.EXE
O23 - Service: Service Norton AntiVirus Auto-Protect (navapsvc) - Symantec Corporation - C:\Program Files\Norton AntiVirus\navapsvc.exe
O23 - Service: Planificateur LiveUpdate automatique - Symantec Corporation - C:\Program Files\Symantec\LiveUpdate\ALUSchedulerSvc.exe
O23 - Service: SAVScan - Symantec Corporation - C:\Program Files\Norton AntiVirus\SAVScan.exe
O23 - Service: ScriptBlocking Service (SBService) - Symantec Corporation - C:\PROGRA~1\FICHIE~1\SYMANT~1\SCRIPT~1\SBServ.exe
O23 - Service: Symantec Network Drivers Service (SNDSrvc) - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\SNDSrvc.exe
O23 - Service: Symantec SPBBCSvc (SPBBCSvc) - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\SPBBC\SPBBCSvc.exe

^^Marie^^ Messages postés 113901 Date d'inscription mardi 6 septembre 2005 Statut Membre Dernière intervention 28 août 2020 3 275 > bagot1
30 déc. 2006 à 09:49

SAlut

ça c'est le sponsor de msn plus (adware) :
O4 - HKCU\..\Run: [MessengerPlus3] "C:\Program Files\MessengerPlus! 3\MsgPlus.exe" /WinStart

Tu vas dans ajout/supp des programmes, tu fais ""réparer"" sur msn+ et tu refuses les sponsors===> que des merdouilles

Dis toi bien qu'avec LaMule==> tu chopes des merdouilles aussi..........

Tu l'as acheté Norton ??? car il est lourd et passoire....

bagot1 > ^^Marie^^ Messages postés 113901 Date d'inscription mardi 6 septembre 2005 Statut Membre Dernière intervention 28 août 2020
30 déc. 2006 à 18:14

bjrs marie

merci pour ton aide
qd je vais ds ajout et sup des ^programe, il ne me propose pas de reparer msn+, je n'ai pu qu'enlever les sponsors et ce que c'est sa qui me donne des virus?

pour ta reponse non je ne l'ai pas acheté norton et en plus c'est une grosse ........
pour les anti virus je ne sais pas le quel prendre il y en a tellement

merci a+

^^Marie^^ Messages postés 113901 Date d'inscription mardi 6 septembre 2005 Statut Membre Dernière intervention 28 août 2020 3 275 > bagot1
30 déc. 2006 à 18:20

Re,

OUi, MSN+ est une grosse merde avec les sponsors......

Pour Norton vire le, il est assez pénible à désinstaller
https://forum.zebulon.fr/index.php?act=ST&f=38&t=57795

=============

antivirus gratuits
télécharger la version gratuite de Avast
Vous pouvez télécharger Avast sur le site suivant
https://www.avast.com/free-antivirus-download
Tuto ->
http://forum.telecharger.01net.com/forum/high-tech/PRODUITS/Questions-techniques/questions-avast-sujet_176199_1.htm

et tu rajoutes un pare-feu

télécharger la version gratuite de Kerio (avec Avast => moins de conflits)
https://www.clubic.com/telecharger-fiche11071-sunbelt-personal-firewall-ex-kerio.html

Tuto =>
https://www.vulgarisation-informatique.com/kerio.php
Site de Kerio
https://kerio.probb.fr/

========================

Une fois que tu as fait tout ça
Fais ce qui suit pour vérifier s'il ne reste pas des traces de Norton
F - Hijackthis - Outil de diagnostic et réparation
lire démo
http://pageperso.aol.fr/balltrap34/Hijenr.gif
http://pageperso.aol.fr/balltrap34/demohijack.htm
Télécharge version française ici
http://telechargement.zebulon.fr/160-patch-francais-pour-hijackthis-1991.html
Copie/colle le rapport

Bon courage

A++

babot1 > ^^Marie^^ Messages postés 113901 Date d'inscription mardi 6 septembre 2005 Statut Membre Dernière intervention 28 août 2020
31 déc. 2006 à 10:23

salut.

voilà le dernier rapport avec avast j'ai réussi facilement a sup norton

Logfile of HijackThis v1.99.1
Scan saved at 10:07:17, on 31/12/2006
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\Program Files\Alwil Software\Avast4\ashServ.exe
C:\WINDOWS\Explorer.EXE
C:\windows\system\hpsysdrv.exe
C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe
C:\Program Files\iTunes\iTunesHelper.exe
C:\WINDOWS\ALCXMNTR.EXE
C:\Program Files\HP\HP Software Update\HPwuSchd2.exe
C:\WINDOWS\VM303_STI.EXE
C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\E_FATIADE.EXE
C:\Program Files\MessengerPlus! 3\MsgPlus.exe
C:\Program Files\Java\jre1.5.0_09\bin\jusched.exe
C:\HP\KBD\KBD.EXE
C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe
C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
C:\Program Files\Messenger\msmsgs.exe
C:\Program Files\eMule\emule.exe
C:\Program Files\Ulead Systems\Ulead Photo Express 4.0 SE\CalCheck.exe
C:\Program Files\Fichiers communs\Microsoft Shared\Works Shared\WkCalRem.exe
C:\Program Files\Symantec\LiveUpdate\ALUSchedulerSvc.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\iPod\bin\iPodService.exe
C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\wuauclt.exe
C:\WINDOWS\system32\wscntfy.exe
C:\DOCUME~1\COMPAQ~1\LOCALS~1\Temp\Répertoire temporaire 3 pour hijackthis.zip\HijackThis.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Window Title = Alice ADSL
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll
O2 - BHO: RXResultTracker Class - {59879FA4-4790-461c-A1CC-4EC4DE4CA483} - C:\Program Files\RXToolBar\sfcont.dll (file missing)
O2 - BHO: EoRezoBHO - {64F56FC1-1272-44CD-BA6E-39723696E350} - C:\PROGRA~1\eoRezo\EoAdv\EOREZO~1.DLL (file missing)
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.5.0_09\bin\ssv.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar1.dll
O2 - BHO: EpsonToolBandKicker Class - {E99421FB-68DD-40F0-B4AC-B7027CAE2F1A} - C:\Program Files\EPSON\EPSON Web-To-Page\EPSON Web-To-Page.dll
O3 - Toolbar: EPSON Web-To-Page - {EE5D279F-081B-4404-994D-C6B60AAEBA6D} - C:\Program Files\EPSON\EPSON Web-To-Page\EPSON Web-To-Page.dll
O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar1.dll
O4 - HKLM\..\Run: [hpsysdrv] c:\windows\system\hpsysdrv.exe
O4 - HKLM\..\Run: [ATIPTA] C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe
O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe"
O4 - HKLM\..\Run: [Recguard] C:\WINDOWS\SMINST\RECGUARD.EXE
O4 - HKLM\..\Run: [AlcxMonitor] ALCXMNTR.EXE
O4 - HKLM\..\Run: [HP Software Update] C:\Program Files\HP\HP Software Update\HPwuSchd2.exe
O4 - HKLM\..\Run: [BigDog303] C:\WINDOWS\VM303_STI.EXE VIMICRO USB PC Camera (ZC0301PLH)
O4 - HKLM\..\Run: [SemanticInsight] C:\Program Files\RXToolBar\Semantic Insight\SemanticInsight.exe
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [BDSwitchAgent] "C:\PROGRA~1\Softwin\BITDEF~1\bdswitch.exe"
O4 - HKLM\..\Run: [EPSON Stylus DX4800 Series] C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\E_FATIADE.EXE /P26 "EPSON Stylus DX4800 Series" /O6 "USB001" /M "Stylus DX4800"
O4 - HKLM\..\Run: [MessengerPlus3] "C:\Program Files\MessengerPlus! 3\MsgPlus.exe"
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre1.5.0_09\bin\jusched.exe"
O4 - HKLM\..\Run: [NeroFilterCheck] C:\WINDOWS\system32\NeroCheck.exe
O4 - HKLM\..\Run: [KBD] C:\HP\KBD\KBD.EXE
O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe" -osboot
O4 - HKLM\..\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
O4 - HKCU\..\Run: [MSMSGS] "C:\Program Files\Messenger\msmsgs.exe" /background
O4 - HKCU\..\Run: [MessengerPlus3] "C:\Program Files\MessengerPlus! 3\MsgPlus.exe" /WinStart
O4 - HKCU\..\Run: [eMuleAutoStart] C:\Program Files\eMule\emule.exe -AutoStart
O4 - HKCU\..\Run: [msnmsgr] "C:\Program Files\MSN Messenger\msnmsgr.exe" /background
O4 - Startup: wkcalrem.LNK = C:\Program Files\Fichiers communs\Microsoft Shared\Works Shared\WkCalRem.exe
O4 - Global Startup: Contrôleur de calendrier Ulead.lnk = C:\Program Files\Ulead Systems\Ulead Photo Express 4.0 SE\CalCheck.exe
O4 - Global Startup: Lancement rapide d'Adobe Reader.lnk = C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe
O8 - Extra context menu item: &Search - http://kt.bar.need2find.com/KT/menusearch.html?p=KT
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_09\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_09\bin\ssv.dll
O9 - Extra button: Aide à la connexion - {E2D4D26B-0180-43a4-B05F-462D6D54C789} - C:\WINDOWS\PCHEALTH\HELPCTR\Vendors\CN=Hewlett-Packard,L=Cupertino,S=Ca,C=US\IEButton\support.htm
O9 - Extra 'Tools' menuitem: Aide à la connexion - {E2D4D26B-0180-43a4-B05F-462D6D54C789} - C:\WINDOWS\PCHEALTH\HELPCTR\Vendors\CN=Hewlett-Packard,L=Cupertino,S=Ca,C=US\IEButton\support.htm
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O16 - DPF: {31B7EB4E-8B4B-11D1-A789-00A0CC6651A8} (Cult3D ActiveX Player) - https://www.cult3d.com/
O16 - DPF: {8E0D4DE5-3180-4024-A327-4DFAD1796A8D} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsClient.cab31267.cab
O16 - DPF: {AB86CE53-AC9F-449F-9399-D8ABCA09EC09} (Get_ActiveX Control) - https://h17000.www1.hp.com/ewfrf-JAVA/Secure/HPGetDownloadManager.ocx
O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - "C:\PROGRA~1\MSNMES~1\msgrapp.dll" (file missing)
O18 - Filter: text/html - {2AB289AE-4B90-4281-B2AE-1F4BB034B647} - C:\Program Files\RXToolBar\sfcont.dll
O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - Unknown owner - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\WINDOWS\system32\Ati2evxx.exe
O23 - Service: avast! Antivirus - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashServ.exe
O23 - Service: avast! Mail Scanner - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe" /service (file missing)
O23 - Service: avast! Web Scanner - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe" /service (file missing)
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Fichiers communs\InstallShield\Driver\1050\Intel 32\IDriverT.exe
O23 - Service: iPod Service (iPodService) - Apple Computer, Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: LiveUpdate - Symantec Corporation - C:\PROGRA~1\Symantec\LIVEUP~1\LUCOMS~2.EXE
O23 - Service: Planificateur LiveUpdate automatique - Symantec Corporation - C:\Program Files\Symantec\LiveUpdate\ALUSchedulerSvc.exe

merci a+

Réponse 6 / 21

bagot1
1 janv. 2007 à 20:56

SmitFraudFix v2.132

Rapport fait à 20:44:49,62, 01/01/2007
Executé à partir de C:\Documents and Settings\Compaq_Propri‚taire\Bureau\SmitfraudFix
OS: Microsoft Windows XP [version 5.1.2600] - Windows_NT
Le type du système de fichiers est NTFS
Fix executé en mode normal

»»»»»»»»»»»»»»»»»»»»»»»» C:\

»»»»»»»»»»»»»»»»»»»»»»»» C:\WINDOWS

»»»»»»»»»»»»»»»»»»»»»»»» C:\WINDOWS\system

»»»»»»»»»»»»»»»»»»»»»»»» C:\WINDOWS\Web

»»»»»»»»»»»»»»»»»»»»»»»» C:\WINDOWS\system32

»»»»»»»»»»»»»»»»»»»»»»»» C:\WINDOWS\system32\LogFiles

»»»»»»»»»»»»»»»»»»»»»»»» C:\Documents and Settings\Compaq_Propri‚taire

»»»»»»»»»»»»»»»»»»»»»»»» C:\Documents and Settings\Compaq_Propri‚taire\Application Data

»»»»»»»»»»»»»»»»»»»»»»»» Menu Démarrer

»»»»»»»»»»»»»»»»»»»»»»»» C:\DOCUME~1\COMPAQ~1\Favoris

»»»»»»»»»»»»»»»»»»»»»»»» Bureau

»»»»»»»»»»»»»»»»»»»»»»»» C:\Program Files

»»»»»»»»»»»»»»»»»»»»»»»» Clés corrompues

»»»»»»»»»»»»»»»»»»»»»»»» Eléments du bureau

[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Desktop\Components\0]
"Source"="About:Home"
"SubscribedURL"="About:Home"
"FriendlyName"="Ma page d'accueil"

»»»»»»»»»»»»»»»»»»»»»»»» Sharedtaskscheduler
!!!Attention, les clés qui suivent ne sont pas forcément infectées!!!

SrchSTS.exe by S!Ri
Search SharedTaskScheduler's .dll

»»»»»»»»»»»»»»»»»»»»»»»» AppInit_DLLs
!!!Attention, les clés qui suivent ne sont pas forcément infectées!!!

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows]
"AppInit_DLLs"=""

»»»»»»»»»»»»»»»»»»»»»»»» Winlogon.System
!!!Attention, les clés qui suivent ne sont pas forcément infectées!!!

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon]
"System"=""

»»»»»»»»»»»»»»»»»»»»»»»» pe386-msguard-lzx32

»»»»»»»»»»»»»»»»»»»»»»»» Recherche infection wininet.dll

»»»»»»»»»»»»»»»»»»»»»»»» Fin

Réponse 7 / 21

green day Messages postés 26371 Date d'inscription vendredi 30 septembre 2005 Statut Modérateur, Contributeur sécurité Dernière intervention 27 décembre 2019 2 162
1 janv. 2007 à 20:57

Salut

si tu ne le trouve pas, c'est que ça doit être ok je pense

poste un nouveau hijackthis stp

++

bagot1
1 janv. 2007 à 21:36

voila le nv hijackthis
et je viens de faire le mode ss echeque avec smithfraudfix

Logfile of HijackThis v1.99.1
Scan saved at 21:29:57, on 01/01/2007
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\Explorer.EXE
C:\windows\system\hpsysdrv.exe
C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe
C:\Program Files\iTunes\iTunesHelper.exe
C:\WINDOWS\ALCXMNTR.EXE
C:\WINDOWS\VM303_STI.EXE
C:\Program Files\QuickTime\qttask.exe
C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\E_FATIADE.EXE
C:\Program Files\MessengerPlus! 3\MsgPlus.exe
C:\HP\KBD\KBD.EXE
C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe
C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
C:\Program Files\Messenger\msmsgs.exe
C:\Program Files\eMule\emule.exe
C:\Program Files\Ulead Systems\Ulead Photo Express 4.0 SE\CalCheck.exe
C:\Program Files\Fichiers communs\Microsoft Shared\Works Shared\WkCalRem.exe
C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
C:\Program Files\Alwil Software\Avast4\ashServ.exe
C:\Program Files\Sunbelt Software\Personal Firewall\kpf4ss.exe
C:\Program Files\MSN Messenger\msnmsgr.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Sunbelt Software\Personal Firewall\kpf4gui.exe
C:\Program Files\iPod\bin\iPodService.exe
C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
C:\Program Files\Sunbelt Software\Personal Firewall\kpf4gui.exe
C:\WINDOWS\system32\wuauclt.exe
C:\WINDOWS\system32\wuauclt.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\DOCUME~1\COMPAQ~1\LOCALS~1\Temp\Répertoire temporaire 5 pour hijackthis.zip\HijackThis.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Window Title = Alice ADSL
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
O2 - BHO: RXResultTracker Class - {59879FA4-4790-461c-A1CC-4EC4DE4CA483} - C:\Program Files\RXToolBar\sfcont.dll (file missing)
O2 - BHO: EoRezoBHO - {64F56FC1-1272-44CD-BA6E-39723696E350} - C:\PROGRA~1\eoRezo\EoAdv\EOREZO~1.DLL (file missing)
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar1.dll
O2 - BHO: EpsonToolBandKicker Class - {E99421FB-68DD-40F0-B4AC-B7027CAE2F1A} - C:\Program Files\EPSON\EPSON Web-To-Page\EPSON Web-To-Page.dll
O3 - Toolbar: EPSON Web-To-Page - {EE5D279F-081B-4404-994D-C6B60AAEBA6D} - C:\Program Files\EPSON\EPSON Web-To-Page\EPSON Web-To-Page.dll
O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar1.dll
O4 - HKLM\..\Run: [hpsysdrv] c:\windows\system\hpsysdrv.exe
O4 - HKLM\..\Run: [ATIPTA] C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe
O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe"
O4 - HKLM\..\Run: [Recguard] C:\WINDOWS\SMINST\RECGUARD.EXE
O4 - HKLM\..\Run: [AlcxMonitor] ALCXMNTR.EXE
O4 - HKLM\..\Run: [BigDog303] C:\WINDOWS\VM303_STI.EXE VIMICRO USB PC Camera (ZC0301PLH)
O4 - HKLM\..\Run: [SemanticInsight] C:\Program Files\RXToolBar\Semantic Insight\SemanticInsight.exe
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [BDSwitchAgent] "C:\PROGRA~1\Softwin\BITDEF~1\bdswitch.exe"
O4 - HKLM\..\Run: [EPSON Stylus DX4800 Series] C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\E_FATIADE.EXE /P26 "EPSON Stylus DX4800 Series" /O6 "USB001" /M "Stylus DX4800"
O4 - HKLM\..\Run: [MessengerPlus3] "C:\Program Files\MessengerPlus! 3\MsgPlus.exe"
O4 - HKLM\..\Run: [NeroFilterCheck] C:\WINDOWS\system32\NeroCheck.exe
O4 - HKLM\..\Run: [KBD] C:\HP\KBD\KBD.EXE
O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe" -osboot
O4 - HKLM\..\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
O4 - HKCU\..\Run: [MSMSGS] "C:\Program Files\Messenger\msmsgs.exe" /background
O4 - HKCU\..\Run: [MessengerPlus3] "C:\Program Files\MessengerPlus! 3\MsgPlus.exe" /WinStart
O4 - HKCU\..\Run: [eMuleAutoStart] C:\Program Files\eMule\emule.exe -AutoStart
O4 - HKCU\..\Run: [msnmsgr] "C:\Program Files\MSN Messenger\msnmsgr.exe" /background
O4 - Startup: wkcalrem.LNK = C:\Program Files\Fichiers communs\Microsoft Shared\Works Shared\WkCalRem.exe
O4 - Global Startup: Contrôleur de calendrier Ulead.lnk = C:\Program Files\Ulead Systems\Ulead Photo Express 4.0 SE\CalCheck.exe
O4 - Global Startup: Lancement rapide d'Adobe Reader.lnk = C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe
O8 - Extra context menu item: &Search - http://kt.bar.need2find.com/KT/menusearch.html?p=KT
O9 - Extra button: Aide à la connexion - {E2D4D26B-0180-43a4-B05F-462D6D54C789} - C:\WINDOWS\PCHEALTH\HELPCTR\Vendors\CN=Hewlett-Packard,L=Cupertino,S=Ca,C=US\IEButton\support.htm
O9 - Extra 'Tools' menuitem: Aide à la connexion - {E2D4D26B-0180-43a4-B05F-462D6D54C789} - C:\WINDOWS\PCHEALTH\HELPCTR\Vendors\CN=Hewlett-Packard,L=Cupertino,S=Ca,C=US\IEButton\support.htm
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O16 - DPF: {31B7EB4E-8B4B-11D1-A789-00A0CC6651A8} (Cult3D ActiveX Player) - https://www.cult3d.com/
O16 - DPF: {8E0D4DE5-3180-4024-A327-4DFAD1796A8D} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsClient.cab31267.cab
O16 - DPF: {AB86CE53-AC9F-449F-9399-D8ABCA09EC09} (Get_ActiveX Control) - https://h17000.www1.hp.com/ewfrf-JAVA/Secure/HPGetDownloadManager.ocx
O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - "C:\PROGRA~1\MSNMES~1\msgrapp.dll" (file missing)
O18 - Filter: text/html - {2AB289AE-4B90-4281-B2AE-1F4BB034B647} - C:\Program Files\RXToolBar\sfcont.dll
O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - Unknown owner - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\WINDOWS\system32\Ati2evxx.exe
O23 - Service: avast! Antivirus - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashServ.exe
O23 - Service: avast! Mail Scanner - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe" /service (file missing)
O23 - Service: avast! Web Scanner - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe" /service (file missing)
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Fichiers communs\InstallShield\Driver\1050\Intel 32\IDriverT.exe
O23 - Service: iPod Service (iPodService) - Apple Computer, Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: Sunbelt Kerio Personal Firewall 4 (KPF4) - Sunbelt Software - C:\Program Files\Sunbelt Software\Personal Firewall\kpf4ss.exe

merci a de suite j'espere

Réponse 8 / 21

green day Messages postés 26371 Date d'inscription vendredi 30 septembre 2005 Statut Modérateur, Contributeur sécurité Dernière intervention 27 décembre 2019 2 162
1 janv. 2007 à 21:49

ok,

as tu installeé bitdefender ???

cherche et supprime le fichier en gras :

C:\Program Files\RXToolBar\Semantic Insight\SemanticInsight.exe

ainsi que le programme du même nom !

ensuite fais le 1/ et 2/ de ce lien stp :

virus methode preliminaire de desinfection version fr

@+

On peut aussi bâtir quelque chose de beau avec les pierres qui entravent le chemin (J.W.VON GOETHE
)

bagot1
1 janv. 2007 à 22:06

j'ai sup rxtoolbar ds demarrer, poste de travail et presario c: et la j'ai sup le fichier mais il y a aussi google toolbar il faut ke je le sup aussi ?

non je n'ai pas bitdefender mais avast ke l'on m'a conseillé

Réponse 9 / 21

green day Messages postés 26371 Date d'inscription vendredi 30 septembre 2005 Statut Modérateur, Contributeur sécurité Dernière intervention 27 décembre 2019 2 162
1 janv. 2007 à 22:21

laisse google tolbar ...

pour l'autre : tu vas dans

demarrer < poste de travail < disque local (C:/) < dossier pogram files < et la tu supprime le dossier : RXToolBar

++

bagot1
2 janv. 2007 à 17:27

voila le rapport de bitdefender est ce que je suis tjr infecté? que dois je faire maintenant merci

BitDefender Online Scanner

Scan report generated at: Tue, Jan 02, 2007 - 16:57:10

Scan path: C:\;D:\;E:\;F:\;G:\;H:\;I:\;

Statistics

Time
00:48:32

Files
307134

Folders
4732

Boot Sectors
3

Archives
14079

Packed Files
26614

Results

Identified Viruses
20

Infected Files
363

Suspect Files
0

Warnings
0

Disinfected
0

Deleted Files
725

Engines Info

Virus Definitions
363631

Engine build
AVCORE v1.0 (build 2371) (i386) (Dec 13 2006 11:16:42)

Scan plugins
14

Archive plugins
38

Unpack plugins
6

E-mail plugins
6

System plugins
1

Scan Settings

First Action
Disinfect

Second Action
Delete

Heuristics
Yes

Enable Warnings
Yes

Scanned Extensions
*;

Exclude Extensions

Scan Emails
Yes

Scan Archives
Yes

Scan Packed
Yes

Scan Files
Yes

Scan Boot
Yes

Scanned File
Status

C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP280\A0053661.exe
Infected with: DeepScan:Generic.Horst.C6BC0AD7

C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP280\A0053661.exe
Disinfection failed

C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP280\A0053661.exe
Deleted

C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059749.exe=>(Quarantine-2)
Infected with: Trojan.FirewallBypass.C

C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059749.exe=>(Quarantine-2)
Disinfection failed

C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059749.exe=>(Quarantine-2)
Deleted

C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059750.exe=>(Quarantine-2)
Infected with: Trojan.Medbod.B

C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059750.exe=>(Quarantine-2)
Disinfection failed

C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059750.exe=>(Quarantine-2)
Deleted

C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059751.exe=>(Quarantine-2)
Infected with: Trojan.Proxy.Horst.PZ

C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059751.exe=>(Quarantine-2)
Deleted

C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059752.exe=>(Quarantine-2)
Infected with: Trojan.Proxy.Horst.EK

C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059752.exe=>(Quarantine-2)
Disinfection failed

C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059752.exe=>(Quarantine-2)
Deleted

C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059753.exe=>(Quarantine-2)
Infected with: Trojan.Proxy.Horst.EG

C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059753.exe=>(Quarantine-2)
Disinfection failed

C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059753.exe=>(Quarantine-2)
Deleted

C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059754.exe=>(Quarantine-2)
Infected with: Generic.Spammer.01A1559E

C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059754.exe=>(Quarantine-2)
Disinfection failed

C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059754.exe=>(Quarantine-2)
Deleted

C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059755.exe=>(Quarantine-2)
Infected with: DeepScan:Generic.Horst.C6BC0AD7

C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059755.exe=>(Quarantine-2)
Disinfection failed

C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059755.exe=>(Quarantine-2)
Deleted

C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059756.exe=>(Quarantine-2)
Infected with: Generic.Spammer.DC9B7131

C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059756.exe=>(Quarantine-2)
Disinfection failed

C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059756.exe=>(Quarantine-2)
Deleted

C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059757.exe=>(Quarantine-2)
Infected with: Trojan.Spammer.Horst.DZ

C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059757.exe=>(Quarantine-2)
Disinfection failed

C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059757.exe=>(Quarantine-2)
Deleted

C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059758.exe=>(Quarantine-2)
Infected with: Trojan.Medbod.B

C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059758.exe=>(Quarantine-2)
Disinfection failed

C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059758.exe=>(Quarantine-2)
Deleted

C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059759.exe=>(Quarantine-2)
Infected with: Trojan.Proxy.Horst.EK

C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059759.exe=>(Quarantine-2)
Disinfection failed

C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059759.exe=>(Quarantine-2)
Deleted

C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059760.exe=>(Quarantine-2)
Infected with: Trojan.Proxy.Horst.EG

C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059760.exe=>(Quarantine-2)
Disinfection failed

C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059760.exe=>(Quarantine-2)
Deleted

C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059761.exe=>(Quarantine-2)
Infected with: Trojan.Spammer.Horst.DZ

C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059761.exe=>(Quarantine-2)
Disinfection failed

C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059761.exe=>(Quarantine-2)
Deleted

C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059762.exe=>(Quarantine-2)
Infected with: Generic.Spammer.1BB9BB43

C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059762.exe=>(Quarantine-2)
Disinfection failed

C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059762.exe=>(Quarantine-2)
Deleted

C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059763.exe=>(Quarantine-2)
Infected with: Trojan.Spammer.Horst.DZ

C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059763.exe=>(Quarantine-2)
Disinfection failed

C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059763.exe=>(Quarantine-2)
Deleted

C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059764.exe=>(Quarantine-2)
Infected with: Trojan.FirewallBypass.C

C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059764.exe=>(Quarantine-2)
Disinfection failed

C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059764.exe=>(Quarantine-2)
Deleted

C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059765.exe=>(Quarantine-2)
Infected with: Trojan.Proxy.Horst.EK

C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059765.exe=>(Quarantine-2)
Disinfection failed

C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059765.exe=>(Quarantine-2)
Deleted

C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059766.exe=>(Quarantine-2)
Infected with: Trojan.Medbod.B

C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059766.exe=>(Quarantine-2)
Disinfection failed

C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059766.exe=>(Quarantine-2)
Deleted

C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059767.exe=>(Quarantine-2)
Infected with: Trojan.Spammer.Inj.A

C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059767.exe=>(Quarantine-2)
Disinfection failed

C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059767.exe=>(Quarantine-2)
Deleted

C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059768.exe=>(Quarantine-2)
Infected with: Trojan.Medbod.B

C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059768.exe=>(Quarantine-2)
Disinfection failed

C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059768.exe=>(Quarantine-2)
Deleted

C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059769.exe=>(Quarantine-2)
Infected with: Trojan.Proxy.Horst.EG

C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059769.exe=>(Quarantine-2)
Disinfection failed

C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059769.exe=>(Quarantine-2)
Deleted

C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059770.exe=>(Quarantine-2)
Infected with: Trojan.Proxy.Horst.EG

C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059770.exe=>(Quarantine-2)
Disinfection failed

C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059770.exe=>(Quarantine-2)
Deleted

C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059771.exe=>(Quarantine-2)
Infected with: Generic.Spammer.DC9B7131

C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059771.exe=>(Quarantine-2)
Disinfection failed

C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059771.exe=>(Quarantine-2)
Deleted

C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059772.exe=>(Quarantine-2)
Infected with: Trojan.Medbod.B

C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059772.exe=>(Quarantine-2)
Disinfection failed

C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059772.exe=>(Quarantine-2)
Deleted

C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059773.exe=>(Quarantine-2)
Infected with: Trojan.Proxy.AF

C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059773.exe=>(Quarantine-2)
Disinfection failed

C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059773.exe=>(Quarantine-2)
Deleted

C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059774.exe=>(Quarantine-2)
Infected with: Trojan.Spammer.Inj.A

C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059774.exe=>(Quarantine-2)
Disinfection failed

C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059774.exe=>(Quarantine-2)
Deleted

C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059775.exe=>(Quarantine-2)
Infected with: Trojan.Proxy.Horst.EH

C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059775.exe=>(Quarantine-2)
Disinfection failed

C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059775.exe=>(Quarantine-2)
Deleted

C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059776.exe=>(Quarantine-2)
Infected with: Trojan.FirewallBypass.C

C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059776.exe=>(Quarantine-2)
Disinfection failed

C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059776.exe=>(Quarantine-2)
Deleted

C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059777.exe=>(Quarantine-2)
Infected with: Trojan.Proxy.AF

C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059777.exe=>(Quarantine-2)
Disinfection failed

C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059777.exe=>(Quarantine-2)
Deleted

C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059778.exe=>(Quarantine-2)
Infected with: Trojan.Proxy.Horst.EG

C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059778.exe=>(Quarantine-2)
Disinfection failed

C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059778.exe=>(Quarantine-2)
Deleted

C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059779.exe=>(Quarantine-2)
Infected with: Trojan.Proxy.Horst.EG

C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059779.exe=>(Quarantine-2)
Disinfection failed

C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059779.exe=>(Quarantine-2)
Deleted

C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059780.exe=>(Quarantine-2)
Infected with: Trojan.Spammer.Horst.DZ

C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059780.exe=>(Quarantine-2)
Disinfection failed

C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059780.exe=>(Quarantine-2)
Deleted

C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059781.exe=>(Quarantine-2)
Infected with: Generic.Spammer.1BB9BB43

C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059781.exe=>(Quarantine-2)
Disinfection failed

C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059781.exe=>(Quarantine-2)
Deleted

C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059782.exe=>(Quarantine-2)
Infected with: Trojan.Spammer.Inj.A

C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059782.exe=>(Quarantine-2)
Disinfection failed

C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059782.exe=>(Quarantine-2)
Deleted

C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059783.exe=>(Quarantine-2)
Infected with: Generic.Spammer.DC9B7131

C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059783.exe=>(Quarantine-2)
Disinfection failed

C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059783.exe=>(Quarantine-2)
Deleted

C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059784.exe=>(Quarantine-2)
Infected with: Trojan.FirewallBypass.C

C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059784.exe=>(Quarantine-2)
Disinfection failed

C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059784.exe=>(Quarantine-2)
Deleted

C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059785.exe=>(Quarantine-2)
Infected with: Trojan.Spammer.Horst.DZ

C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059785.exe=>(Quarantine-2)
Disinfection failed

C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059785.exe=>(Quarantine-2)
Deleted

C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059786.exe=>(Quarantine-2)
Infected with: Generic.Spammer.4B3F2287

C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059786.exe=>(Quarantine-2)
Disinfection failed

C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059786.exe=>(Quarantine-2)
Deleted

C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059787.exe=>(Quarantine-2)
Infected with: Trojan.Proxy.Horst.EG

C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059787.exe=>(Quarantine-2)
Disinfection failed

C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059787.exe=>(Quarantine-2)
Deleted

C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059788.exe=>(Quarantine-2)
Infected with: Generic.Spammer.DC9B7131

C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059788.exe=>(Quarantine-2)
Disinfection failed

C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059788.exe=>(Quarantine-2)
Deleted

C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059789.exe=>(Quarantine-2)
Infected with: Generic.Spammer.DC9B7131

C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059789.exe=>(Quarantine-2)
Disinfection failed

C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059789.exe=>(Quarantine-2)
Deleted

C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059790.exe=>(Quarantine-2)
Infected with: Trojan.Spammer.Inj.A

C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059790.exe=>(Quarantine-2)
Disinfection failed

C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059790.exe=>(Quarantine-2)
Deleted

C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059791.exe=>(Quarantine-2)
Infected with: Generic.Spammer.4B3F2287

C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059791.exe=>(Quarantine-2)
Disinfection failed

C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059791.exe=>(Quarantine-2)
Deleted

C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059792.exe=>(Quarantine-2)
Infected with: Trojan.Proxy.Horst.EG

C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059792.exe=>(Quarantine-2)
Disinfection failed

C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059792.exe=>(Quarantine-2)
Deleted

C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059793.exe=>(Quarantine-2)
Infected with: Trojan.Spammer.Horst.DZ

C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059793.exe=>(Quarantine-2)
Disinfection failed

C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059793.exe=>(Quarantine-2)
Deleted

C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059794.exe=>(Quarantine-2)
Infected with: Trojan.Proxy.Horst.EG

C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059794.exe=>(Quarantine-2)
Disinfection failed

C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059794.exe=>(Quarantine-2)
Deleted

C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059795.exe=>(Quarantine-2)
Infected with: Trojan.Medbod.B

C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059795.exe=>(Quarantine-2)
Disinfection failed

C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059795.exe=>(Quarantine-2)
Deleted

C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059796.exe=>(Quarantine-2)
Infected with: Trojan.Proxy.Horst.EG

C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059796.exe=>(Quarantine-2)
Disinfection failed

C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059796.exe=>(Quarantine-2)
Deleted

C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059797.exe=>(Quarantine-2)
Infected with: Trojan.Proxy.Horst.CW

C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059797.exe=>(Quarantine-2)
Disinfection failed

C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059797.exe=>(Quarantine-2)
Deleted

C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059798.exe=>(Quarantine-2)
Infected with: Trojan.Medbod.B

C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059798.exe=>(Quarantine-2)
Disinfection failed

C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059798.exe=>(Quarantine-2)
Deleted

C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059799.exe=>(Quarantine-2)
Infected with: Trojan.Proxy.Horst.EG

C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059799.exe=>(Quarantine-2)
Disinfection failed

C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059799.exe=>(Quarantine-2)
Deleted

C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059800.exe=>(Quarantine-2)
Infected with: Trojan.FirewallBypass.C

C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059800.exe=>(Quarantine-2)
Disinfection failed

C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059800.exe=>(Quarantine-2)
Deleted

C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059801.exe=>(Quarantine-2)
Infected with: Trojan.Proxy.Horst.EH

C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059801.exe=>(Quarantine-2)
Disinfection failed

C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059801.exe=>(Quarantine-2)
Deleted

C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059802.exe=>(Quarantine-2)
Infected with: Trojan.Proxy.Horst.EK

C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059802.exe=>(Quarantine-2)
Disinfection failed

C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059802.exe=>(Quarantine-2)
Deleted

C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059803.exe=>(Quarantine-2)
Infected with: Trojan.Proxy.Horst.EG

C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059803.exe=>(Quarantine-2)
Disinfection failed

C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059803.exe=>(Quarantine-2)
Deleted

C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059804.exe=>(Quarantine-2)
Infected with: Trojan.Horst.JE

C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059804.exe=>(Quarantine-2)
Disinfection failed

C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059804.exe=>(Quarantine-2)
Deleted

C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059805.exe=>(Quarantine-2)
Infected with: Trojan.FirewallBypass.C

C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059805.exe=>(Quarantine-2)
Disinfection failed

C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059805.exe=>(Quarantine-2)
Deleted

C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059806.exe=>(Quarantine-2)
Infected with: Generic.Spammer.DC9B7131

C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059806.exe=>(Quarantine-2)
Disinfection failed

C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059806.exe=>(Quarantine-2)
Deleted

C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059807.exe=>(Quarantine-2)
Infected with: Trojan.Proxy.AF

C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059807.exe=>(Quarantine-2)
Disinfection failed

C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059807.exe=>(Quarantine-2)
Deleted

C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059808.exe=>(Quarantine-2)
Infected with: Trojan.Proxy.Horst.EK

C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059808.exe=>(Quarantine-2)
Disinfection failed

C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059808.exe=>(Quarantine-2)
Deleted

C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059809.exe=>(Quarantine-2)
Infected with: Trojan.Medbod.B

C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059809.exe=>(Quarantine-2)
Disinfection failed

C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059809.exe=>(Quarantine-2)
Deleted

C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059810.exe=>(Quarantine-2)
Infected with: Generic.Spammer.1BB9BB43

C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059810.exe=>(Quarantine-2)
Disinfection failed

C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059810.exe=>(Quarantine-2)
Deleted

C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059811.exe=>(Quarantine-2)
Infected with: Trojan.Proxy.AF

C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059811.exe=>(Quarantine-2)
Disinfection failed

C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059811.exe=>(Quarantine-2)
Deleted

C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059812.exe=>(Quarantine-2)
Infected with: Trojan.Proxy.Horst.EH

C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059812.exe=>(Quarantine-2)
Disinfection failed

C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059812.exe=>(Quarantine-2)
Deleted

C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059813.exe=>(Quarantine-2)
Infected with: Trojan.Spammer.Inj.A

C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059813.exe=>(Quarantine-2)
Disinfection failed

C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059813.exe=>(Quarantine-2)
Deleted

C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059814.exe=>(Quarantine-2)
Infected with: Trojan.Spammer.Inj.A

C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059814.exe=>(Quarantine-2)
Disinfection failed

C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059814.exe=>(Quarantine-2)
Deleted

C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059815.exe=>(Quarantine-2)
Infected with: Trojan.Proxy.Horst.CW

C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059815.exe=>(Quarantine-2)
Disinfection failed

C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059815.exe=>(Quarantine-2)
Deleted

C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059816.exe=>(Quarantine-2)
Infected with: Trojan.Medbod.B

C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059816.exe=>(Quarantine-2)
Disinfection failed

C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059816.exe=>(Quarantine-2)
Deleted

C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059817.exe=>(Quarantine-2)
Infected with: Trojan.Proxy.AF

C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059817.exe=>(Quarantine-2)
Disinfection failed

C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059817.exe=>(Quarantine-2)
Deleted

C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059818.exe=>(Quarantine-2)
Infected with: Trojan.Proxy.Horst.EK

C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059818.exe=>(Quarantine-2)
Disinfection failed

C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059818.exe=>(Quarantine-2)
Deleted

C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059819.exe=>(Quarantine-2)
Infected with: Trojan.Proxy.Horst.EH

C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059819.exe=>(Quarantine-2)
Disinfection failed

C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059819.exe=>(Quarantine-2)
Deleted

C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059820.exe=>(Quarantine-2)
Infected with: Trojan.Proxy.Horst.CW

C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059820.exe=>(Quarantine-2)
Disinfection failed

C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059820.exe=>(Quarantine-2)
Deleted

C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059821.exe=>(Quarantine-2)
Infected with: Trojan.Spammer.Horst.DZ

C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059821.exe=>(Quarantine-2)
Disinfection failed

C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059821.exe=>(Quarantine-2)
Deleted

C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059822.exe=>(Quarantine-2)
Infected with: Generic.Spammer.199295AF

C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059822.exe=>(Quarantine-2)
Disinfection failed

C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059822.exe=>(Quarantine-2)
Deleted

C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059823.exe=>(Quarantine-2)
Infected with: Generic.Spammer.DC9B7131

C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059823.exe=>(Quarantine-2)
Disinfection failed

C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059823.exe=>(Quarantine-2)
Deleted

C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059824.exe=>(Quarantine-2)
Infected with: Trojan.Proxy.Horst.PZ

C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059824.exe=>(Quarantine-2)
Deleted

C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059825.exe=>(Quarantine-2)
Infected with: Trojan.Spammer.Inj.A

C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059825.exe=>(Quarantine-2)
Disinfection failed

C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059825.exe=>(Quarantine-2)
Deleted

C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059826.exe=>(Quarantine-2)
Infected with: Trojan.Proxy.Horst.CW

C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059826.exe=>(Quarantine-2)
Disinfection failed

C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059826.exe=>(Quarantine-2)
Deleted

C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059827.exe=>(Quarantine-2)
Infected with: Trojan.FirewallBypass.C

C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059827.exe=>(Quarantine-2)
Disinfection failed

C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059827.exe=>(Quarantine-2)
Deleted

C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059828.exe=>(Quarantine-2)
Infected with: Trojan.Proxy.Horst.EG

C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059828.exe=>(Quarantine-2)
Disinfection failed

C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059828.exe=>(Quarantine-2)
Deleted

C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059829.exe=>(Quarantine-2)
Infected with: Trojan.Spammer.Inj.A

C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059829.exe=>(Quarantine-2)
Disinfection failed

C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059829.exe=>(Quarantine-2)
Deleted

C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059830.exe=>(Quarantine-2)
Infected with: Trojan.Proxy.Horst.EG

C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059830.exe=>(Quarantine-2)
Disinfection failed

C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059830.exe=>(Quarantine-2)
Deleted

C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059831.exe=>(Quarantine-2)
Infected with: Trojan.Proxy.Horst.CW

C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059831.exe=>(Quarantine-2)
Disinfection failed

C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059831.exe=>(Quarantine-2)
Deleted

C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059832.exe=>(Quarantine-2)
Infected with: Trojan.Proxy.AF

C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059832.exe=>(Quarantine-2)
Disinfection failed

C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059832.exe=>(Quarantine-2)
Deleted

C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059833.exe=>(Quarantine-2)
Infected with: Trojan.Spammer.Inj.A

C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059833.exe=>(Quarantine-2)
Disinfection failed

C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059833.exe=>(Quarantine-2)
Deleted

C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059834.exe=>(Quarantine-2)
Infected with: Trojan.FirewallBypass.C

C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059834.exe=>(Quarantine-2)
Disinfection failed

C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059834.exe=>(Quarantine-2)
Deleted

C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059835.exe=>(Quarantine-2)
Infected with: Trojan.Proxy.Horst.CW

C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059835.exe=>(Quarantine-2)
Disinfection failed

C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059835.exe=>(Quarantine-2)
Deleted

C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059836.exe=>(Quarantine-2)
Infected with: Trojan.Proxy.Horst.EG

C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059836.exe=>(Quarantine-2)
Disinfection failed

C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059836.exe=>(Quarantine-2)
Deleted

C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059837.exe=>(Quarantine-2)
Infected with: Trojan.Proxy.AF

C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059837.exe=>(Quarantine-2)
Disinfection failed

C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059837.exe=>(Quarantine-2)
Deleted

C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059838.exe=>(Quarantine-2)
Infected with: Trojan.Spammer.Inj.A

C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059838.exe=>(Quarantine-2)
Disinfection failed

C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059838.exe=>(Quarantine-2)
Deleted

C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059839.exe=>(Quarantine-2)
Infected with: Trojan.FirewallBypass.C

C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059839.exe=>(Quarantine-2)
Disinfection failed

C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059839.exe=>(Quarantine-2)
Deleted

C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059840.exe=>(Quarantine-2)
Infected with: Trojan.Proxy.Horst.CW

C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059840.exe=>(Quarantine-2)
Disinfection failed

C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059840.exe=>(Quarantine-2)
Deleted

C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059841.exe=>(Quarantine-2)
Infected with: Trojan.Proxy.Horst.EG

C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059841.exe=>(Quarantine-2)
Disinfection failed

C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059841.exe=>(Quarantine-2)
Deleted

C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059842.exe=>(Quarantine-2)
Infected with: Generic.Spammer.01A1559E

C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059842.exe=>(Quarantine-2)
Disinfection failed

C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059842.exe=>(Quarantine-2)
Deleted

C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059843.exe=>(Quarantine-2)
Infected with: Generic.Spammer.DC9B7131

C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059843.exe=>(Quarantine-2)
Disinfection failed

C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059843.exe=>(Quarantine-2)
Deleted

C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059844.exe=>(Quarantine-2)
Infected with: Trojan.Proxy.AF

C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059844.exe=>(Quarantine-2)
Disinfection failed

C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059844.exe=>(Quarantine-2)
Deleted

C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059845.exe=>(Quarantine-2)
Infected with: Trojan.Proxy.Horst.EK

C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059845.exe=>(Quarantine-2)
Disinfection failed

C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059845.exe=>(Quarantine-2)
Deleted

C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059846.exe=>(Quarantine-2)
Infected with: Trojan.Proxy.Horst.EG

C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059846.exe=>(Quarantine-2)
Disinfection failed

C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059846.exe=>(Quarantine-2)
Deleted

C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059847.exe=>(Quarantine-2)
Infected with: Trojan.Proxy.Horst.EG

C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059847.exe=>(Quarantine-2)
Disinfection failed

C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059847.exe=>(Quarantine-2)
Deleted

C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059848.exe=>(Quarantine-2)
Infected with: Trojan.Spammer.Horst.DZ

C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059848.exe=>(Quarantine-2)
Disinfection failed

C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059848.exe=>(Quarantine-2)
Deleted

C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059849.exe=>(Quarantine-2)
Infected with: Trojan.Proxy.Horst.EG

C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059849.exe=>(Quarantine-2)
Disinfection failed

C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059849.exe=>(Quarantine-2)
Deleted

C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059850.exe=>(Quarantine-2)
Infected with: Trojan.Proxy.AF

C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059850.exe=>(Quarantine-2)
Disinfection failed

C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059850.exe=>(Quarantine-2)
Deleted

C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059851.exe=>(Quarantine-2)
Infected with: Trojan.Proxy.Horst.CW

C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059851.exe=>(Quarantine-2)
Disinfection failed

C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059851.exe=>(Quarantine-2)
Deleted

C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059852.exe=>(Quarantine-2)
Infected with: Trojan.FirewallBypass.C

C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059852.exe=>(Quarantine-2)
Disinfection failed

C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059852.exe=>(Quarantine-2)
Deleted

C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059853.exe=>(Quarantine-2)
Infected with: Generic.Spammer.DC9B7131

C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059853.exe=>(Quarantine-2)
Disinfection failed

C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059853.exe=>(Quarantine-2)
Deleted

C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059854.exe=>(Quarantine-2)
Infected with: Trojan.Proxy.Horst.EH

C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059854.exe=>(Quarantine-2)
Disinfection failed

C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059854.exe=>(Quarantine-2)
Deleted

C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059855.exe=>(Quarantine-2)
Infected with: Trojan.Proxy.Horst.EG

C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059855.exe=>(Quarantine-2)
Disinfection failed

C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059855.exe=>(Quarantine-2)
Deleted

C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059856.exe=>(Quarantine-2)
Infected with: Trojan.Horst.JE

C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059856.exe=>(Quarantine-2)
Disinfection failed

C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059856.exe=>(Quarantine-2)
Deleted

C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059857.exe=>(Quarantine-2)
Infected with: Generic.Spammer.1BB9BB43

C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059857.exe=>(Quarantine-2)
Disinfection failed

C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059857.exe=>(Quarantine-2)
Deleted

C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059858.exe=>(Quarantine-2)
Infected with: Trojan.FirewallBypass.C

C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059858.exe=>(Quarantine-2)
Disinfection failed

C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059858.exe=>(Quarantine-2)
Deleted

C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059859.exe=>(Quarantine-2)
Infected with: Trojan.Proxy.Horst.CW

C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059859.exe=>(Quarantine-2)
Disinfection failed

C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059859.exe=>(Quarantine-2)
Deleted

C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059860.exe=>(Quarantine-2)
Infected with: Trojan.Spammer.Inj.A

C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059860.exe=>(Quarantine-2)
Disinfection failed

C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059860.exe=>(Quarantine-2)
Deleted

C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059861.exe=>(Quarantine-2)
Infected with: Trojan.FirewallBypass.C

C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059861.exe=>(Quarantine-2)
Disinfection failed

C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059861.exe=>(Quarantine-2)
Deleted

C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059862.exe=>(Quarantine-2)
Infected with: Trojan.Proxy.Horst.EG

C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059862.exe=>(Quarantine-2)
Disinfection failed

C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059862.exe=>(Quarantine-2)
Deleted

C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059863.exe=>(Quarantine-2)
Infected with: Trojan.Proxy.AF

C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059863.exe=>(Quarantine-2)
Disinfection failed

C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059863.exe=>(Quarantine-2)
Deleted

C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059864.exe=>(Quarantine-2)
Infected with: Trojan.Spammer.Inj.A

C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059864.exe=>(Quarantine-2)
Disinfection failed

C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059864.exe=>(Quarantine-2)
Deleted

C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059865.exe=>(Quarantine-2)
Infected with: Trojan.Spammer.Inj.A

C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059865.exe=>(Quarantine-2)
Disinfection failed

C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059865.exe=>(Quarantine-2)
Deleted

C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059866.exe=>(Quarantine-2)
Infected with: Trojan.Proxy.Horst.EH

C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059866.exe=>(Quarantine-2)
Disinfection failed

C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059866.exe=>(Quarantine-2)
Deleted

C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059867.exe=>(Quarantine-2)
Infected with: Trojan.Proxy.Horst.EG

C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059867.exe=>(Quarantine-2)
Disinfection failed

C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059867.exe=>(Quarantine-2)
Deleted

C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059868.exe=>(Quarantine-2)
Infected with: Trojan.Proxy.Horst.PZ

C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059868.exe=>(Quarantine-2)
Deleted

C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059869.exe=>(Quarantine-2)
Infected with: Trojan.FirewallBypass.C

C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059869.exe=>(Quarantine-2)
Disinfection failed

C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059869.exe=>(Quarantine-2)
Deleted

C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059870.exe=>(Quarantine-2)
Infected with: Trojan.Spammer.Horst.DZ

C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059870.exe=>(Quarantine-2)
Disinfection failed

C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059870.exe=>(Quarantine-2)
Deleted

C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059871.exe=>(Quarantine-2)
Infected with: Trojan.Medbod.B

C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059871.exe=>(Quarantine-2)
Disinfection failed

C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059871.exe=>(Quarantine-2)
Deleted

C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059872.exe=>(Quarantine-2)
Infected with: Trojan.Proxy.Horst.CW

C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059872.exe=>(Quarantine-2)
Disinfection failed

C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059872.exe=>(Quarantine-2)
Deleted

C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059873.exe=>(Quarantine-2)
Infected with: Trojan.Proxy.Horst.CW

C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059873.exe=>(Quarantine-2)
Disinfection failed

C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059873.exe=>(Quarantine-2)
Deleted

C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059874.exe=>(Quarantine-2)
Infected with: Trojan.Spammer.Horst.DZ

C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059874.exe=>(Quarantine-2)
Disinfection failed

C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059874.exe=>(Quarantine-2)
Deleted

C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059875.exe=>(Quarantine-2)
Infected with: Trojan.Medbod.B

C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059875.exe=>(Quarantine-2)
Disinfection failed

C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059875.exe=>(Quarantine-2)
Deleted

C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059876.exe=>(Quarantine-2)
Infected with: Trojan.Medbod.B

C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059876.exe=>(Quarantine-2)
Disinfection failed

C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059876.exe=>(Quarantine-2)
Deleted

C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059877.exe=>(Quarantine-2)
Infected with: Generic.Spammer.DC9B7131

C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059877.exe=>(Quarantine-2)
Disinfection failed

C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059877.exe=>(Quarantine-2)
Deleted

C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059878.exe=>(Quarantine-2)
Infected with: Generic.Spammer.1BB9BB43

C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059878.exe=>(Quarantine-2)
Disinfection failed

C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059878.exe=>(Quarantine-2)
Deleted

C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059879.exe=>(Quarantine-2)
Infected with: Trojan.Proxy.Horst.EG

C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059879.exe=>(Quarantine-2)
Disinfection failed

C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059879.exe=>(Quarantine-2)
Deleted

C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059880.exe=>(Quarantine-2)
Infected with: Trojan.Proxy.Horst.EG

C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059880.exe=>(Quarantine-2)
Disinfection failed

C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059880.exe=>(Quarantine-2)
Deleted

C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059881.exe=>(Quarantine-2)
Infected with: Trojan.Proxy.Horst.CW

C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059881.exe=>(Quarantine-2)
Disinfection failed

C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059881.exe=>(Quarantine-2)
Deleted

C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059882.exe=>(Quarantine-2)
Infected with: Trojan.Spammer.Horst.DZ

C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059882.exe=>(Quarantine-2)
Disinfection failed

C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059882.exe=>(Quarantine-2)
Deleted

C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059883.exe=>(Quarantine-2)
Infected with: Trojan.Medbod.B

C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059883.exe=>(Quarantine-2)
Disinfection failed

C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059883.exe=>(Quarantine-2)
Deleted

C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059884.exe=>(Quarantine-2)
Infected with: Generic.Spammer.DC9B7131

C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059884.exe=>(Quarantine-2)
Disinfection failed

C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059884.exe=>(Quarantine-2)
Deleted

C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059885.exe=>(Quarantine-2)
Infected with: Trojan.Spammer.Inj.A

C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059885.exe=>(Quarantine-2)
Disinfection failed

C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059885.exe=>(Quarantine-2)
Deleted

C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059886.exe=>(Quarantine-2)
Infected with: Trojan.Proxy.Horst.EG

C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059886.exe=>(Quarantine-2)
Disinfection failed

C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059886.exe=>(Quarantine-2)
Deleted

C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059887.exe=>(Quarantine-2)
Infected with: Trojan.Proxy.Horst.EG

C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059887.exe=>(Quarantine-2)
Disinfection f

Réponse 10 / 21

bagot1
2 janv. 2007 à 17:29

et un nv hijackthis

Logfile of HijackThis v1.99.1
Scan saved at 17:24:58, on 02/01/2007
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
C:\Program Files\Alwil Software\Avast4\ashServ.exe
C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe
C:\Program Files\Sunbelt Software\Personal Firewall\kpf4ss.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Sunbelt Software\Personal Firewall\kpf4gui.exe
C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\Sunbelt Software\Personal Firewall\kpf4gui.exe
C:\windows\system\hpsysdrv.exe
C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe
C:\Program Files\iTunes\iTunesHelper.exe
C:\WINDOWS\ALCXMNTR.EXE
C:\Program Files\iPod\bin\iPodService.exe
C:\WINDOWS\VM303_STI.EXE
C:\Program Files\QuickTime\qttask.exe
C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\E_FATIADE.EXE
C:\Program Files\MessengerPlus! 3\MsgPlus.exe
C:\HP\KBD\KBD.EXE
C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe
C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\avgas.exe
C:\Program Files\Messenger\msmsgs.exe
C:\Program Files\eMule\emule.exe
C:\Program Files\Ulead Systems\Ulead Photo Express 4.0 SE\CalCheck.exe
C:\Program Files\Fichiers communs\Microsoft Shared\Works Shared\WkCalRem.exe
C:\Program Files\MSN Messenger\msnmsgr.exe
C:\WINDOWS\system32\wuauclt.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Hijackthis Version Française\VERSION TRADUITE ORIGINALE.EXE

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Window Title = Alice ADSL
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
O2 - BHO: EoRezoBHO - {64F56FC1-1272-44CD-BA6E-39723696E350} - C:\PROGRA~1\eoRezo\EoAdv\EOREZO~1.DLL (file missing)
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar1.dll
O2 - BHO: EpsonToolBandKicker Class - {E99421FB-68DD-40F0-B4AC-B7027CAE2F1A} - C:\Program Files\EPSON\EPSON Web-To-Page\EPSON Web-To-Page.dll
O3 - Toolbar: EPSON Web-To-Page - {EE5D279F-081B-4404-994D-C6B60AAEBA6D} - C:\Program Files\EPSON\EPSON Web-To-Page\EPSON Web-To-Page.dll
O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar1.dll
O4 - HKLM\..\Run: [hpsysdrv] c:\windows\system\hpsysdrv.exe
O4 - HKLM\..\Run: [ATIPTA] C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe
O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe"
O4 - HKLM\..\Run: [Recguard] C:\WINDOWS\SMINST\RECGUARD.EXE
O4 - HKLM\..\Run: [AlcxMonitor] ALCXMNTR.EXE
O4 - HKLM\..\Run: [BigDog303] C:\WINDOWS\VM303_STI.EXE VIMICRO USB PC Camera (ZC0301PLH)
O4 - HKLM\..\Run: [SemanticInsight] C:\Program Files\RXToolBar\Semantic Insight\SemanticInsight.exe
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [BDSwitchAgent] "C:\PROGRA~1\Softwin\BITDEF~1\bdswitch.exe"
O4 - HKLM\..\Run: [EPSON Stylus DX4800 Series] C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\E_FATIADE.EXE /P26 "EPSON Stylus DX4800 Series" /O6 "USB001" /M "Stylus DX4800"
O4 - HKLM\..\Run: [MessengerPlus3] "C:\Program Files\MessengerPlus! 3\MsgPlus.exe"
O4 - HKLM\..\Run: [NeroFilterCheck] C:\WINDOWS\system32\NeroCheck.exe
O4 - HKLM\..\Run: [KBD] C:\HP\KBD\KBD.EXE
O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe" -osboot
O4 - HKLM\..\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
O4 - HKLM\..\Run: [!AVG Anti-Spyware] "C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\avgas.exe" /minimized
O4 - HKCU\..\Run: [MSMSGS] "C:\Program Files\Messenger\msmsgs.exe" /background
O4 - HKCU\..\Run: [MessengerPlus3] "C:\Program Files\MessengerPlus! 3\MsgPlus.exe" /WinStart
O4 - HKCU\..\Run: [eMuleAutoStart] C:\Program Files\eMule\emule.exe -AutoStart
O4 - HKCU\..\Run: [msnmsgr] "C:\Program Files\MSN Messenger\msnmsgr.exe" /background
O4 - Startup: wkcalrem.LNK = C:\Program Files\Fichiers communs\Microsoft Shared\Works Shared\WkCalRem.exe
O4 - Global Startup: Contrôleur de calendrier Ulead.lnk = C:\Program Files\Ulead Systems\Ulead Photo Express 4.0 SE\CalCheck.exe
O4 - Global Startup: Lancement rapide d'Adobe Reader.lnk = C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe
O8 - Extra context menu item: &Search - http://kt.bar.need2find.com/KT/menusearch.html?p=KT
O9 - Extra button: (no name) - {85d1f590-48f4-11d9-9669-0800200c9a66} - %windir%\bdoscandel.exe (file missing)
O9 - Extra 'Tools' menuitem: Uninstall BitDefender Online Scanner v8 - {85d1f590-48f4-11d9-9669-0800200c9a66} - %windir%\bdoscandel.exe (file missing)
O9 - Extra button: Aide à la connexion - {E2D4D26B-0180-43a4-B05F-462D6D54C789} - C:\WINDOWS\PCHEALTH\HELPCTR\Vendors\CN=Hewlett-Packard,L=Cupertino,S=Ca,C=US\IEButton\support.htm
O9 - Extra 'Tools' menuitem: Aide à la connexion - {E2D4D26B-0180-43a4-B05F-462D6D54C789} - C:\WINDOWS\PCHEALTH\HELPCTR\Vendors\CN=Hewlett-Packard,L=Cupertino,S=Ca,C=US\IEButton\support.htm
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O16 - DPF: {31B7EB4E-8B4B-11D1-A789-00A0CC6651A8} (Cult3D ActiveX Player) - https://www.cult3d.com/
O16 - DPF: {5D86DDB5-BDF9-441B-9E9E-D4730F4EE499} (BDSCANONLINE Control) - http://download.bitdefender.com/resources/scan8/oscan8.cab
O16 - DPF: {8E0D4DE5-3180-4024-A327-4DFAD1796A8D} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsClient.cab31267.cab
O16 - DPF: {AB86CE53-AC9F-449F-9399-D8ABCA09EC09} (Get_ActiveX Control) - https://h17000.www1.hp.com/ewfrf-JAVA/Secure/HPGetDownloadManager.ocx
O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - "C:\PROGRA~1\MSNMES~1\msgrapp.dll" (file missing)
O18 - Filter: text/html - {2AB289AE-4B90-4281-B2AE-1F4BB034B647} - C:\Program Files\RXToolBar\sfcont.dll
O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - Unknown owner - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\WINDOWS\system32\Ati2evxx.exe
O23 - Service: avast! Antivirus - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashServ.exe
O23 - Service: avast! Mail Scanner - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe" /service (file missing)
O23 - Service: avast! Web Scanner - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe" /service (file missing)
O23 - Service: AVG Anti-Spyware Guard - Anti-Malware Development a.s. - C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Fichiers communs\InstallShield\Driver\1050\Intel 32\IDriverT.exe
O23 - Service: iPod Service (iPodService) - Apple Computer, Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: Sunbelt Kerio Personal Firewall 4 (KPF4) - Sunbelt Software - C:\Program Files\Sunbelt Software\Personal Firewall\kpf4ss.exe

Réponse 11 / 21

^^Marie^^ Messages postés 113901 Date d'inscription mardi 6 septembre 2005 Statut Membre Dernière intervention 28 août 2020 3 275
2 janv. 2007 à 20:15

Salut

En passant

L'infection se situe dans le système de restauration XP (System Volume Information\_restore)

¤Désactive ta restauration système (uniquement si tu es sous XP):
Clic droit sur poste de travail puis,
propriété, tu cliques sur onglet restauration système
tu coches la case « désactiver la restauration » et applique.

Puis,

¤Réactive ta restauration système (uniquement si tu es sous XP):
Clic droit sur poste de travail puis,
propriété, tu cliques sur onglet restauration système
tu décoches la case « désactiver la restauration » et applique.

A++

bagot1
5 janv. 2007 à 08:29

bjrs

ok c'est fait merci

voila un nouvel hijackthis

Logfile of HijackThis v1.99.1
Scan saved at 08:22:06, on 05/01/2007
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
C:\Program Files\Alwil Software\Avast4\ashServ.exe
C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe
C:\Program Files\Sunbelt Software\Personal Firewall\kpf4ss.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Sunbelt Software\Personal Firewall\kpf4gui.exe
C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\Sunbelt Software\Personal Firewall\kpf4gui.exe
C:\windows\system\hpsysdrv.exe
C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe
C:\Program Files\iTunes\iTunesHelper.exe
C:\WINDOWS\ALCXMNTR.EXE
C:\Program Files\iPod\bin\iPodService.exe
C:\WINDOWS\VM303_STI.EXE
C:\Program Files\QuickTime\qttask.exe
C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\E_FATIADE.EXE
C:\Program Files\MessengerPlus! 3\MsgPlus.exe
C:\HP\KBD\KBD.EXE
C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\avgas.exe
C:\Program Files\Messenger\msmsgs.exe
C:\Program Files\Ulead Systems\Ulead Photo Express 4.0 SE\CalCheck.exe
C:\Program Files\Fichiers communs\Microsoft Shared\Works Shared\WkCalRem.exe
C:\Program Files\MSN Messenger\msnmsgr.exe
C:\WINDOWS\system32\wuauclt.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\eMule\emule.exe
C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe
C:\Program Files\Hijackthis Version Française\VERSION TRADUITE ORIGINALE.EXE

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Window Title = Alice ADSL
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
O2 - BHO: EoRezoBHO - {64F56FC1-1272-44CD-BA6E-39723696E350} - C:\PROGRA~1\eoRezo\EoAdv\EOREZO~1.DLL (file missing)
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar1.dll
O2 - BHO: EpsonToolBandKicker Class - {E99421FB-68DD-40F0-B4AC-B7027CAE2F1A} - C:\Program Files\EPSON\EPSON Web-To-Page\EPSON Web-To-Page.dll
O3 - Toolbar: EPSON Web-To-Page - {EE5D279F-081B-4404-994D-C6B60AAEBA6D} - C:\Program Files\EPSON\EPSON Web-To-Page\EPSON Web-To-Page.dll
O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar1.dll
O4 - HKLM\..\Run: [hpsysdrv] c:\windows\system\hpsysdrv.exe
O4 - HKLM\..\Run: [ATIPTA] C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe
O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe"
O4 - HKLM\..\Run: [Recguard] C:\WINDOWS\SMINST\RECGUARD.EXE
O4 - HKLM\..\Run: [AlcxMonitor] ALCXMNTR.EXE
O4 - HKLM\..\Run: [BigDog303] C:\WINDOWS\VM303_STI.EXE VIMICRO USB PC Camera (ZC0301PLH)
O4 - HKLM\..\Run: [SemanticInsight] C:\Program Files\RXToolBar\Semantic Insight\SemanticInsight.exe
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [BDSwitchAgent] "C:\PROGRA~1\Softwin\BITDEF~1\bdswitch.exe"
O4 - HKLM\..\Run: [EPSON Stylus DX4800 Series] C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\E_FATIADE.EXE /P26 "EPSON Stylus DX4800 Series" /O6 "USB001" /M "Stylus DX4800"
O4 - HKLM\..\Run: [MessengerPlus3] "C:\Program Files\MessengerPlus! 3\MsgPlus.exe"
O4 - HKLM\..\Run: [NeroFilterCheck] C:\WINDOWS\system32\NeroCheck.exe
O4 - HKLM\..\Run: [KBD] C:\HP\KBD\KBD.EXE
O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe" -osboot
O4 - HKLM\..\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
O4 - HKLM\..\Run: [!AVG Anti-Spyware] "C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\avgas.exe" /minimized
O4 - HKCU\..\Run: [MSMSGS] "C:\Program Files\Messenger\msmsgs.exe" /background
O4 - HKCU\..\Run: [MessengerPlus3] "C:\Program Files\MessengerPlus! 3\MsgPlus.exe" /WinStart
O4 - HKCU\..\Run: [msnmsgr] "C:\Program Files\MSN Messenger\msnmsgr.exe" /background
O4 - HKCU\..\Run: [eMuleAutoStart] C:\Program Files\eMule\emule.exe -AutoStart
O4 - Startup: wkcalrem.LNK = C:\Program Files\Fichiers communs\Microsoft Shared\Works Shared\WkCalRem.exe
O4 - Global Startup: Contrôleur de calendrier Ulead.lnk = C:\Program Files\Ulead Systems\Ulead Photo Express 4.0 SE\CalCheck.exe
O4 - Global Startup: Lancement rapide d'Adobe Reader.lnk = C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe
O8 - Extra context menu item: &Search - http://kt.bar.need2find.com/KT/menusearch.html?p=KT
O9 - Extra button: (no name) - {85d1f590-48f4-11d9-9669-0800200c9a66} - %windir%\bdoscandel.exe (file missing)
O9 - Extra 'Tools' menuitem: Uninstall BitDefender Online Scanner v8 - {85d1f590-48f4-11d9-9669-0800200c9a66} - %windir%\bdoscandel.exe (file missing)
O9 - Extra button: Aide à la connexion - {E2D4D26B-0180-43a4-B05F-462D6D54C789} - C:\WINDOWS\PCHEALTH\HELPCTR\Vendors\CN=Hewlett-Packard,L=Cupertino,S=Ca,C=US\IEButton\support.htm
O9 - Extra 'Tools' menuitem: Aide à la connexion - {E2D4D26B-0180-43a4-B05F-462D6D54C789} - C:\WINDOWS\PCHEALTH\HELPCTR\Vendors\CN=Hewlett-Packard,L=Cupertino,S=Ca,C=US\IEButton\support.htm
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O16 - DPF: {31B7EB4E-8B4B-11D1-A789-00A0CC6651A8} (Cult3D ActiveX Player) - https://www.cult3d.com/
O16 - DPF: {5D86DDB5-BDF9-441B-9E9E-D4730F4EE499} (BDSCANONLINE Control) - http://download.bitdefender.com/resources/scan8/oscan8.cab
O16 - DPF: {8E0D4DE5-3180-4024-A327-4DFAD1796A8D} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsClient.cab31267.cab
O16 - DPF: {AB86CE53-AC9F-449F-9399-D8ABCA09EC09} (Get_ActiveX Control) - https://h17000.www1.hp.com/ewfrf-JAVA/Secure/HPGetDownloadManager.ocx
O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - "C:\PROGRA~1\MSNMES~1\msgrapp.dll" (file missing)
O18 - Filter: text/html - {2AB289AE-4B90-4281-B2AE-1F4BB034B647} - C:\Program Files\RXToolBar\sfcont.dll
O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - Unknown owner - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\WINDOWS\system32\Ati2evxx.exe
O23 - Service: avast! Antivirus - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashServ.exe
O23 - Service: avast! Mail Scanner - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe" /service (file missing)
O23 - Service: avast! Web Scanner - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe" /service (file missing)
O23 - Service: AVG Anti-Spyware Guard - Anti-Malware Development a.s. - C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Fichiers communs\InstallShield\Driver\1050\Intel 32\IDriverT.exe
O23 - Service: iPod Service (iPodService) - Apple Computer, Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: Sunbelt Kerio Personal Firewall 4 (KPF4) - Sunbelt Software - C:\Program Files\Sunbelt Software\Personal Firewall\kpf4ss.exe

^^Marie^^ Messages postés 113901 Date d'inscription mardi 6 septembre 2005 Statut Membre Dernière intervention 28 août 2020 3 275 > bagot1
5 janv. 2007 à 12:15

Slt

Où en sont tes soucis ??

bagot1 > ^^Marie^^ Messages postés 113901 Date d'inscription mardi 6 septembre 2005 Statut Membre Dernière intervention 28 août 2020
6 janv. 2007 à 19:20

mare mare mare l'ordi beug tt le temps, il rame rame rameeeeee je fais analyse sur analyse, sup tous les fichiers infecté et des que je refais une analyse elle me retrouve des virus et des cookies je ne sais plus quoi faire a par peu etre formater l'ordinateur???? jr suis perdu
voila le dernier rapport d'analyse ainsi que le dernier hijckthis

---------------------------------------------------------
AVG Anti-Spyware - Rapport d'analyse
---------------------------------------------------------

+ Créé à: 08:23:03 02/01/2007

+ Résultat de l'analyse:

C:\Program Files\INSTAFINK -> Adware.404Search : Nettoyé.
C:\Program Files\INSTAFINK\Uninstall.exe -> Adware.404Search : Nettoyé.
C:\WINDOWS\Temp\Altnet -> Adware.Altnet : Nettoyé.
C:\WINDOWS\Temp\Altnet\DMinfo3.cab -> Adware.Altnet : Nettoyé.
C:\WINDOWS\Temp\Altnet\Setup.cab -> Adware.Altnet : Nettoyé.
C:\WINDOWS\Temp\Altnet\Setup.exe -> Adware.Altnet : Nettoyé.
C:\WINDOWS\Temp\Altnet\adm.exe -> Adware.Altnet : Nettoyé.
C:\WINDOWS\Temp\Altnet\adm25.dll -> Adware.Altnet : Nettoyé.
C:\WINDOWS\Temp\Altnet\adm4.dll -> Adware.Altnet : Nettoyé.
C:\WINDOWS\Temp\Altnet\admdata.dll -> Adware.Altnet : Nettoyé.
C:\WINDOWS\Temp\Altnet\admdloader.dll -> Adware.Altnet : Nettoyé.
C:\WINDOWS\Temp\Altnet\admfdi.dll -> Adware.Altnet : Nettoyé.
C:\WINDOWS\Temp\Altnet\admprog.dll -> Adware.Altnet : Nettoyé.
C:\WINDOWS\Temp\Altnet\atl.dll -> Adware.Altnet : Nettoyé.
C:\WINDOWS\Temp\Altnet\dmfiles.cab -> Adware.Altnet : Nettoyé.
C:\WINDOWS\Temp\Altnet\dminstall7.cab -> Adware.Altnet : Nettoyé.
C:\WINDOWS\Temp\Altnet\msvcirt.dll -> Adware.Altnet : Nettoyé.
C:\WINDOWS\Temp\Altnet\pmexe.cab -> Adware.Altnet : Nettoyé.
C:\WINDOWS\Temp\Altnet\pmfiles.cab -> Adware.Altnet : Nettoyé.
C:\WINDOWS\Temp\Altnet\pminstall.cab -> Adware.Altnet : Nettoyé.
HKLM\SOFTWARE\Classes\ADM25.ADM25 -> Adware.Altnet : Nettoyé.
HKLM\SOFTWARE\Classes\ADM25.ADM25.1 -> Adware.Altnet : Nettoyé.
HKLM\SOFTWARE\Classes\ADM25.ADM25\CurVer -> Adware.Altnet : Nettoyé.
HKLM\SOFTWARE\Classes\ADM4.ADM4 -> Adware.Altnet : Nettoyé.
HKLM\SOFTWARE\Classes\ADM4.ADM4.1 -> Adware.Altnet : Nettoyé.
HKLM\SOFTWARE\Classes\ADM4.ADM4\CurVer -> Adware.Altnet : Nettoyé.
HKLM\SOFTWARE\Classes\AppID\Altnet Signing Module.EXE -> Adware.Altnet : Nettoyé.
HKLM\SOFTWARE\Classes\AppID\adm.EXE -> Adware.Altnet : Nettoyé.
HKLM\SOFTWARE\Classes\TopSearch.TSLink -> Adware.Altnet : Nettoyé.
HKLM\SOFTWARE\Classes\TopSearch.TSLink.1 -> Adware.Altnet : Nettoyé.
HKLM\SOFTWARE\Classes\TopSearch.TSLink\CLSID -> Adware.Altnet : Nettoyé.
HKLM\SOFTWARE\Classes\TopSearch.TSLink\CurVer -> Adware.Altnet : Nettoyé.
C:\Program Files\Common Files\Companion Wizard\compwiz.exe -> Adware.Companion : Nettoyé.
C:\WINDOWS\system32\AdCache -> Adware.Cydoor : Nettoyé.
C:\WINDOWS\system32\cd_clint.dll -> Adware.Cydoor : Nettoyé.
HKLM\SOFTWARE\Cydoor -> Adware.Cydoor : Nettoyé.
HKU\S-1-5-21-2007538873-2367509767-3470789634-1008\Software\Cydoor -> Adware.Cydoor : Nettoyé.
HKU\S-1-5-21-2007538873-2367509767-3470789634-1008\Software\Cydoor\Adwr_329 -> Adware.Cydoor : Nettoyé.
HKU\S-1-5-21-2007538873-2367509767-3470789634-1008\Software\Cydoor\Adwr_329\Loct_0 -> Adware.Cydoor : Nettoyé.
HKU\S-1-5-21-2007538873-2367509767-3470789634-1008\Software\Cydoor\Adwr_329\Loct_1 -> Adware.Cydoor : Nettoyé.
HKU\S-1-5-21-2007538873-2367509767-3470789634-1008\Software\Cydoor\Adwr_329\Loct_2 -> Adware.Cydoor : Nettoyé.
HKU\S-1-5-21-2007538873-2367509767-3470789634-1008\Software\Cydoor\Adwr_329\Loct_3 -> Adware.Cydoor : Nettoyé.
HKU\S-1-5-21-2007538873-2367509767-3470789634-1008\Software\Cydoor\Adwr_329\Loct_4 -> Adware.Cydoor : Nettoyé.
HKU\S-1-5-21-2007538873-2367509767-3470789634-1008\Software\Cydoor\Adwr_329\Services -> Adware.Cydoor : Nettoyé.
HKU\S-1-5-21-2007538873-2367509767-3470789634-1008\Software\Cydoor\Adwr_329\Services\Queue -> Adware.Cydoor : Nettoyé.
HKLM\SOFTWARE\Classes\instafink.INSTAFINK -> Adware.InstaFinder : Nettoyé.
HKLM\SOFTWARE\Classes\instafink.INSTAFINK\Clsid -> Adware.InstaFinder : Nettoyé.
HKLM\SOFTWARE\Classes\CLSID\{59879FA4-4790-461c-A1CC-4EC4DE4CA483} -> Adware.RXToolbar : Nettoyé.
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{59879FA4-4790-461c-A1CC-4EC4DE4CA483} -> Adware.RXToolbar : Nettoyé.
HKU\S-1-5-21-2007538873-2367509767-3470789634-1008\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{59879FA4-4790-461C-A1CC-4EC4DE4CA483} -> Adware.RXToolbar : Nettoyé.
HKLM\SYSTEM\CurrentControlSet\Services\vspf -> Adware.WinAntiVirus : Nettoyé.
HKLM\SYSTEM\CurrentControlSet\Services\vspf\Enum -> Adware.WinAntiVirus : Nettoyé.
HKLM\SYSTEM\CurrentControlSet\Services\vspf\Security -> Adware.WinAntiVirus : Nettoyé.
HKLM\SYSTEM\CurrentControlSet\Services\vspf_hk -> Adware.WinAntiVirus : Nettoyé.
HKLM\SYSTEM\CurrentControlSet\Services\vspf_hk\Enum -> Adware.WinAntiVirus : Nettoyé.
HKLM\SYSTEM\CurrentControlSet\Services\vspf_hk\Security -> Adware.WinAntiVirus : Nettoyé.
HKU\S-1-5-21-2007538873-2367509767-3470789634-1008\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{2178F3FB-2560-458F-BDEE-631E2FE0DFE4} -> Adware.WinAntiVirus : Nettoyé.
HKU\S-1-5-21-2007538873-2367509767-3470789634-1008\Software\WinAntiVirus Pro 2006 -> Adware.WinAntiVirus : Nettoyé.
HKU\S-1-5-21-2007538873-2367509767-3470789634-1008\Software\WinAntiVirus Pro 2006\Settings -> Adware.WinAntiVirus : Nettoyé.
C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP240\A0044394.exe -> Downloader.Agent.aii : Nettoyé.
C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP285\A0057692.exe -> Proxy.Horst.pp : Nettoyé.
:mozilla.445:C:\Documents and Settings\Compaq_Propriétaire\Application Data\Mozilla\Firefox\Profiles\om07w5fj.default\cookies.txt -> TrackingCookie.2o7 : Nettoyé.
:mozilla.534:C:\Documents and Settings\Compaq_Propriétaire\Application Data\Mozilla\Firefox\Profiles\om07w5fj.default\cookies.txt -> TrackingCookie.2o7 : Nettoyé.
:mozilla.536:C:\Documents and Settings\Compaq_Propriétaire\Application Data\Mozilla\Firefox\Profiles\om07w5fj.default\cookies.txt -> TrackingCookie.2o7 : Nettoyé.
:mozilla.565:C:\Documents and Settings\Compaq_Propriétaire\Application Data\Mozilla\Firefox\Profiles\om07w5fj.default\cookies.txt -> TrackingCookie.2o7 : Nettoyé.
:mozilla.859:C:\Documents and Settings\Compaq_Propriétaire\Application Data\Mozilla\Firefox\Profiles\om07w5fj.default\cookies.txt -> TrackingCookie.2o7 : Nettoyé.
:mozilla.956:C:\Documents and Settings\Compaq_Propriétaire\Application Data\Mozilla\Firefox\Profiles\om07w5fj.default\cookies.txt -> TrackingCookie.2o7 : Nettoyé.
C:\Documents and Settings\Compaq_Propriétaire\Cookies\compaq_propriétaire@2o7[2].txt -> TrackingCookie.2o7 : Nettoyé.
C:\Documents and Settings\Compaq_Propriétaire\Cookies\compaq_propriétaire@aolfr.122.2o7[1].txt -> TrackingCookie.2o7 : Nettoyé.
C:\Documents and Settings\Compaq_Propriétaire\Cookies\compaq_propriétaire@boonty.122.2o7[1].txt -> TrackingCookie.2o7 : Nettoyé.
C:\Documents and Settings\Compaq_Propriétaire\Cookies\compaq_propriétaire@msnaccountservices.112.2o7[1].txt -> TrackingCookie.2o7 : Nettoyé.
C:\Documents and Settings\Compaq_Propriétaire\Cookies\compaq_propriétaire@msninvite.112.2o7[1].txt -> TrackingCookie.2o7 : Nettoyé.
C:\Documents and Settings\Compaq_Propriétaire\Cookies\compaq_propriétaire@msnportal.112.2o7[1].txt -> TrackingCookie.2o7 : Nettoyé.
C:\Documents and Settings\Compaq_Propriétaire\Cookies\compaq_propriétaire@msnservices.112.2o7[1].txt -> TrackingCookie.2o7 : Nettoyé.
:mozilla.898:C:\Documents and Settings\Compaq_Propriétaire\Application Data\Mozilla\Firefox\Profiles\om07w5fj.default\cookies.txt -> TrackingCookie.Advertising : Nettoyé.
:mozilla.899:C:\Documents and Settings\Compaq_Propriétaire\Application Data\Mozilla\Firefox\Profiles\om07w5fj.default\cookies.txt -> TrackingCookie.Advertising : Nettoyé.
:mozilla.944:C:\Documents and Settings\Compaq_Propriétaire\Application Data\Mozilla\Firefox\Profiles\om07w5fj.default\cookies.txt -> TrackingCookie.Advertising : Nettoyé.
:mozilla.945:C:\Documents and Settings\Compaq_Propriétaire\Application Data\Mozilla\Firefox\Profiles\om07w5fj.default\cookies.txt -> TrackingCookie.Advertising : Nettoyé.
C:\Documents and Settings\Compaq_Propriétaire\Cookies\compaq_propriétaire@advertising[1].txt -> TrackingCookie.Advertising : Nettoyé.
:mozilla.652:C:\Documents and Settings\Compaq_Propriétaire\Application Data\Mozilla\Firefox\Profiles\om07w5fj.default\cookies.txt -> TrackingCookie.Bluestreak : Nettoyé.
:mozilla.884:C:\Documents and Settings\Compaq_Propriétaire\Application Data\Mozilla\Firefox\Profiles\om07w5fj.default\cookies.txt -> TrackingCookie.Bluestreak : Nettoyé.
C:\Documents and Settings\Compaq_Propriétaire\Cookies\compaq_propriétaire@bluestreak[2].txt -> TrackingCookie.Bluestreak : Nettoyé.
C:\Documents and Settings\Compaq_Propriétaire\Cookies\compaq_propriétaire@iv2.bluestreak[1].txt -> TrackingCookie.Bluestreak : Nettoyé.
:mozilla.856:C:\Documents and Settings\Compaq_Propriétaire\Application Data\Mozilla\Firefox\Profiles\om07w5fj.default\cookies.txt -> TrackingCookie.Casalemedia : Nettoyé.
C:\Documents and Settings\Compaq_Propriétaire\Cookies\compaq_propriétaire@casalemedia[1].txt -> TrackingCookie.Casalemedia : Nettoyé.
:mozilla.833:C:\Documents and Settings\Compaq_Propriétaire\Application Data\Mozilla\Firefox\Profiles\om07w5fj.default\cookies.txt -> TrackingCookie.Centrport : Nettoyé.
C:\Documents and Settings\Compaq_Propriétaire\Cookies\compaq_propriétaire@centrport[1].txt -> TrackingCookie.Centrport : Nettoyé.
:mozilla.786:C:\Documents and Settings\Compaq_Propriétaire\Application Data\Mozilla\Firefox\Profiles\om07w5fj.default\cookies.txt -> TrackingCookie.Comclick : Nettoyé.
:mozilla.788:C:\Documents and Settings\Compaq_Propriétaire\Application Data\Mozilla\Firefox\Profiles\om07w5fj.default\cookies.txt -> TrackingCookie.Comclick : Nettoyé.
:mozilla.789:C:\Documents and Settings\Compaq_Propriétaire\Application Data\Mozilla\Firefox\Profiles\om07w5fj.default\cookies.txt -> TrackingCookie.Comclick : Nettoyé.
:mozilla.790:C:\Documents and Settings\Compaq_Propriétaire\Application Data\Mozilla\Firefox\Profiles\om07w5fj.default\cookies.txt -> TrackingCookie.Comclick : Nettoyé.
C:\Documents and Settings\Compaq_Propriétaire\Cookies\compaq_propriétaire@fl01.ct2.comclick[2].txt -> TrackingCookie.Comclick : Nettoyé.
:mozilla.759:C:\Documents and Settings\Compaq_Propriétaire\Application Data\Mozilla\Firefox\Profiles\om07w5fj.default\cookies.txt -> TrackingCookie.Doubleclick : Nettoyé.
C:\Documents and Settings\Compaq_Propriétaire\Cookies\compaq_propriétaire@doubleclick[2].txt -> TrackingCookie.Doubleclick : Nettoyé.
:mozilla.203:C:\Documents and Settings\Compaq_Propriétaire\Application Data\Mozilla\Firefox\Profiles\om07w5fj.default\cookies.txt -> TrackingCookie.Epilot : Nettoyé.
C:\Documents and Settings\Compaq_Propriétaire\Cookies\compaq_propriétaire@www.epilot[1].txt -> TrackingCookie.Epilot : Nettoyé.
:mozilla.739:C:\Documents and Settings\Compaq_Propriétaire\Application Data\Mozilla\Firefox\Profiles\om07w5fj.default\cookies.txt -> TrackingCookie.Estat : Nettoyé.
C:\Documents and Settings\Compaq_Propriétaire\Cookies\compaq_propriétaire@estat[1].txt -> TrackingCookie.Estat : Nettoyé.
:mozilla.774:C:\Documents and Settings\Compaq_Propriétaire\Application Data\Mozilla\Firefox\Profiles\om07w5fj.default\cookies.txt -> TrackingCookie.Fastclick : Nettoyé.
C:\Documents and Settings\Compaq_Propriétaire\Cookies\compaq_propriétaire@fastclick[1].txt -> TrackingCookie.Fastclick : Nettoyé.
C:\Documents and Settings\Compaq_Propriétaire\Cookies\compaq_propriétaire@media.fastclick[1].txt -> TrackingCookie.Fastclick : Nettoyé.
:mozilla.791:C:\Documents and Settings\Compaq_Propriétaire\Application Data\Mozilla\Firefox\Profiles\om07w5fj.default\cookies.txt -> TrackingCookie.Findwhat : Nettoyé.
C:\Documents and Settings\Compaq_Propriétaire\Cookies\compaq_propriétaire@findwhat[1].txt -> TrackingCookie.Findwhat : Nettoyé.
:mozilla.836:C:\Documents and Settings\Compaq_Propriétaire\Application Data\Mozilla\Firefox\Profiles\om07w5fj.default\cookies.txt -> TrackingCookie.Goclick : Nettoyé.
:mozilla.837:C:\Documents and Settings\Compaq_Propriétaire\Application Data\Mozilla\Firefox\Profiles\om07w5fj.default\cookies.txt -> TrackingCookie.Goclick : Nettoyé.
C:\Documents and Settings\Compaq_Propriétaire\Cookies\compaq_propriétaire@c.goclick[2].txt -> TrackingCookie.Goclick : Nettoyé.
:mozilla.583:C:\Documents and Settings\Compaq_Propriétaire\Application Data\Mozilla\Firefox\Profiles\om07w5fj.default\cookies.txt -> TrackingCookie.Hitbox : Nettoyé.
:mozilla.696:C:\Documents and Settings\Compaq_Propriétaire\Application Data\Mozilla\Firefox\Profiles\om07w5fj.default\cookies.txt -> TrackingCookie.Hitbox : Nettoyé.
:mozilla.705:C:\Documents and Settings\Compaq_Propriétaire\Application Data\Mozilla\Firefox\Profiles\om07w5fj.default\cookies.txt -> TrackingCookie.Hitbox : Nettoyé.
:mozilla.737:C:\Documents and Settings\Compaq_Propriétaire\Application Data\Mozilla\Firefox\Profiles\om07w5fj.default\cookies.txt -> TrackingCookie.Hitbox : Nettoyé.
:mozilla.772:C:\Documents and Settings\Compaq_Propriétaire\Application Data\Mozilla\Firefox\Profiles\om07w5fj.default\cookies.txt -> TrackingCookie.Hitbox : Nettoyé.
C:\Documents and Settings\Compaq_Propriétaire\Cookies\compaq_propriétaire@ehg-avanquest.hitbox[1].txt -> TrackingCookie.Hitbox : Nettoyé.
C:\Documents and Settings\Compaq_Propriétaire\Cookies\compaq_propriétaire@ehg-danieljouvance.hitbox[2].txt -> TrackingCookie.Hitbox : Nettoyé.
C:\Documents and Settings\Compaq_Propriétaire\Cookies\compaq_propriétaire@ehg-osiris.hitbox[1].txt -> TrackingCookie.Hitbox : Nettoyé.
C:\Documents and Settings\Compaq_Propriétaire\Cookies\compaq_propriétaire@ehg-telecomitalia.hitbox[1].txt -> TrackingCookie.Hitbox : Nettoyé.
C:\Documents and Settings\Compaq_Propriétaire\Cookies\compaq_propriétaire@hitbox[2].txt -> TrackingCookie.Hitbox : Nettoyé.
:mozilla.863:C:\Documents and Settings\Compaq_Propriétaire\Application Data\Mozilla\Firefox\Profiles\om07w5fj.default\cookies.txt -> TrackingCookie.Hitslink : Nettoyé.
:mozilla.864:C:\Documents and Settings\Compaq_Propriétaire\Application Data\Mozilla\Firefox\Profiles\om07w5fj.default\cookies.txt -> TrackingCookie.Hitslink : Nettoyé.
:mozilla.865:C:\Documents and Settings\Compaq_Propriétaire\Application Data\Mozilla\Firefox\Profiles\om07w5fj.default\cookies.txt -> TrackingCookie.Hitslink : Nettoyé.
:mozilla.866:C:\Documents and Settings\Compaq_Propriétaire\Application Data\Mozilla\Firefox\Profiles\om07w5fj.default\cookies.txt -> TrackingCookie.Hitslink : Nettoyé.
C:\Documents and Settings\Compaq_Propriétaire\Cookies\compaq_propriétaire@counter.hitslink[2].txt -> TrackingCookie.Hitslink : Nettoyé.
:mozilla.574:C:\Documents and Settings\Compaq_Propriétaire\Application Data\Mozilla\Firefox\Profiles\om07w5fj.default\cookies.txt -> TrackingCookie.Hotlog : Nettoyé.
C:\Documents and Settings\Compaq_Propriétaire\Cookies\compaq_propriétaire@hotlog[2].txt -> TrackingCookie.Hotlog : Nettoyé.
:mozilla.549:C:\Documents and Settings\Compaq_Propriétaire\Application Data\Mozilla\Firefox\Profiles\om07w5fj.default\cookies.txt -> TrackingCookie.Mediaplex : Nettoyé.
C:\Documents and Settings\Compaq_Propriétaire\Cookies\compaq_propriétaire@mediaplex[1].txt -> TrackingCookie.Mediaplex : Nettoyé.
C:\Documents and Settings\Compaq_Propriétaire\Cookies\compaq_propriétaire@www.myaffiliateprogram[1].txt -> TrackingCookie.Myaffiliateprogram : Nettoyé.
:mozilla.547:C:\Documents and Settings\Compaq_Propriétaire\Application Data\Mozilla\Firefox\Profiles\om07w5fj.default\cookies.txt -> TrackingCookie.Need2find : Nettoyé.
:mozilla.548:C:\Documents and Settings\Compaq_Propriétaire\Application Data\Mozilla\Firefox\Profiles\om07w5fj.default\cookies.txt -> TrackingCookie.Need2find : Nettoyé.
C:\Documents and Settings\Compaq_Propriétaire\Cookies\compaq_propriétaire@need2find[2].txt -> TrackingCookie.Need2find : Nettoyé.
:mozilla.417:C:\Documents and Settings\Compaq_Propriétaire\Application Data\Mozilla\Firefox\Profiles\om07w5fj.default\cookies.txt -> TrackingCookie.Overture : Nettoyé.
:mozilla.475:C:\Documents and Settings\Compaq_Propriétaire\Application Data\Mozilla\Firefox\Profiles\om07w5fj.default\cookies.txt -> TrackingCookie.Overture : Nettoyé.
:mozilla.476:C:\Documents and Settings\Compaq_Propriétaire\Application Data\Mozilla\Firefox\Profiles\om07w5fj.default\cookies.txt -> TrackingCookie.Overture : Nettoyé.
C:\Documents and Settings\Compaq_Propriétaire\Cookies\compaq_propriétaire@overture[2].txt -> TrackingCookie.Overture : Nettoyé.
C:\Documents and Settings\Compaq_Propriétaire\Cookies\compaq_propriétaire@perf.overture[1].txt -> TrackingCookie.Overture : Nettoyé.
:mozilla.430:C:\Documents and Settings\Compaq_Propriétaire\Application Data\Mozilla\Firefox\Profiles\om07w5fj.default\cookies.txt -> TrackingCookie.Questionmarket : Nettoyé.
:mozilla.432:C:\Documents and Settings\Compaq_Propriétaire\Application Data\Mozilla\Firefox\Profiles\om07w5fj.default\cookies.txt -> TrackingCookie.Questionmarket : Nettoyé.
C:\Documents and Settings\Compaq_Propriétaire\Cookies\compaq_propriétaire@questionmarket[2].txt -> TrackingCookie.Questionmarket : Nettoyé.
C:\Documents and Settings\Compaq_Propriétaire\Cookies\compaq_propriétaire@stats1.reliablestats[1].txt -> TrackingCookie.Reliablestats : Nettoyé.
:mozilla.438:C:\Documents and Settings\Compaq_Propriétaire\Application Data\Mozilla\Firefox\Profiles\om07w5fj.default\cookies.txt -> TrackingCookie.Revenue : Nettoyé.
C:\Documents and Settings\Compaq_Propriétaire\Cookies\compaq_propriétaire@revenue[2].txt -> TrackingCookie.Revenue : Nettoyé.
:mozilla.349:C:\Documents and Settings\Compaq_Propriétaire\Application Data\Mozilla\Firefox\Profiles\om07w5fj.default\cookies.txt -> TrackingCookie.Serving-sys : Nettoyé.
:mozilla.350:C:\Documents and Settings\Compaq_Propriétaire\Application Data\Mozilla\Firefox\Profiles\om07w5fj.default\cookies.txt -> TrackingCookie.Serving-sys : Nettoyé.
:mozilla.365:C:\Documents and Settings\Compaq_Propriétaire\Application Data\Mozilla\Firefox\Profiles\om07w5fj.default\cookies.txt -> TrackingCookie.Serving-sys : Nettoyé.
:mozilla.373:C:\Documents and Settings\Compaq_Propriétaire\Application Data\Mozilla\Firefox\Profiles\om07w5fj.default\cookies.txt -> TrackingCookie.Serving-sys : Nettoyé.
:mozilla.382:C:\Documents and Settings\Compaq_Propriétaire\Application Data\Mozilla\Firefox\Profiles\om07w5fj.default\cookies.txt -> TrackingCookie.Serving-sys : Nettoyé.
:mozilla.853:C:\Documents and Settings\Compaq_Propriétaire\Application Data\Mozilla\Firefox\Profiles\om07w5fj.default\cookies.txt -> TrackingCookie.Serving-sys : Nettoyé.
C:\Documents and Settings\Compaq_Propriétaire\Cookies\compaq_propriétaire@bs.serving-sys[1].txt -> TrackingCookie.Serving-sys : Nettoyé.
C:\Documents and Settings\Compaq_Propriétaire\Cookies\compaq_propriétaire@serving-sys[2].txt -> TrackingCookie.Serving-sys : Nettoyé.
:mozilla.839:C:\Documents and Settings\Compaq_Propriétaire\Application Data\Mozilla\Firefox\Profiles\om07w5fj.default\cookies.txt -> TrackingCookie.Sexcounter : Nettoyé.
:mozilla.840:C:\Documents and Settings\Compaq_Propriétaire\Application Data\Mozilla\Firefox\Profiles\om07w5fj.default\cookies.txt -> TrackingCookie.Sexcounter : Nettoyé.
:mozilla.841:C:\Documents and Settings\Compaq_Propriétaire\Application Data\Mozilla\Firefox\Profiles\om07w5fj.default\cookies.txt -> TrackingCookie.Sexcounter : Nettoyé.
:mozilla.842:C:\Documents and Settings\Compaq_Propriétaire\Application Data\Mozilla\Firefox\Profiles\om07w5fj.default\cookies.txt -> TrackingCookie.Sexcounter : Nettoyé.
:mozilla.848:C:\Documents and Settings\Compaq_Propriétaire\Application Data\Mozilla\Firefox\Profiles\om07w5fj.default\cookies.txt -> TrackingCookie.Sexcounter : Nettoyé.
:mozilla.850:C:\Documents and Settings\Compaq_Propriétaire\Application Data\Mozilla\Firefox\Profiles\om07w5fj.default\cookies.txt -> TrackingCookie.Sexcounter : Nettoyé.
C:\Documents and Settings\Compaq_Propriétaire\Cookies\compaq_propriétaire@cs.sexcounter[2].txt -> TrackingCookie.Sexcounter : Nettoyé.
:mozilla.882:C:\Documents and Settings\Compaq_Propriétaire\Application Data\Mozilla\Firefox\Profiles\om07w5fj.default\cookies.txt -> TrackingCookie.Sitestat : Nettoyé.
:mozilla.107:C:\Documents and Settings\Compaq_Propriétaire\Application Data\Mozilla\Firefox\Profiles\om07w5fj.default\cookies.txt -> TrackingCookie.Smartadserver : Nettoyé.
:mozilla.109:C:\Documents and Settings\Compaq_Propriétaire\Application Data\Mozilla\Firefox\Profiles\om07w5fj.default\cookies.txt -> TrackingCookie.Smartadserver : Nettoyé.
:mozilla.110:C:\Documents and Settings\Compaq_Propriétaire\Application Data\Mozilla\Firefox\Profiles\om07w5fj.default\cookies.txt -> TrackingCookie.Smartadserver : Nettoyé.
:mozilla.111:C:\Documents and Settings\Compaq_Propriétaire\Application Data\Mozilla\Firefox\Profiles\om07w5fj.default\cookies.txt -> TrackingCookie.Smartadserver : Nettoyé.
:mozilla.364:C:\Documents and Settings\Compaq_Propriétaire\Application Data\Mozilla\Firefox\Profiles\om07w5fj.default\cookies.txt -> TrackingCookie.Smartadserver : Nettoyé.
C:\Documents and Settings\Compaq_Propriétaire\Cookies\compaq_propriétaire@smartadserver[1].txt -> TrackingCookie.Smartadserver : Nettoyé.
C:\Documents and Settings\Compaq_Propriétaire\Cookies\compaq_propriétaire@www.smartadserver[2].txt -> TrackingCookie.Smartadserver : Nettoyé.
C:\Documents and Settings\Compaq_Propriétaire\Cookies\compaq_propriétaire@www.smartadserver[3].txt -> TrackingCookie.Smartadserver : Nettoyé.
C:\Documents and Settings\Compaq_Propriétaire\Cookies\compaq_propriétaire@www.smartadserver[4].txt -> TrackingCookie.Smartadserver : Nettoyé.
:mozilla.249:C:\Documents and Settings\Compaq_Propriétaire\Application Data\Mozilla\Firefox\Profiles\om07w5fj.default\cookies.txt -> TrackingCookie.Statcounter : Nettoyé.
:mozilla.250:C:\Documents and Settings\Compaq_Propriétaire\Application Data\Mozilla\Firefox\Profiles\om07w5fj.default\cookies.txt -> TrackingCookie.Statcounter : Nettoyé.
:mozilla.251:C:\Documents and Settings\Compaq_Propriétaire\Application Data\Mozilla\Firefox\Profiles\om07w5fj.default\cookies.txt -> TrackingCookie.Statcounter : Nettoyé.
C:\Documents and Settings\Compaq_Propriétaire\Cookies\compaq_propriétaire@statcounter[1].txt -> TrackingCookie.Statcounter : Nettoyé.
:mozilla.322:C:\Documents and Settings\Compaq_Propriétaire\Application Data\Mozilla\Firefox\Profiles\om07w5fj.default\cookies.txt -> TrackingCookie.Tradedoubler : Nettoyé.
:mozilla.323:C:\Documents and Settings\Compaq_Propriétaire\Application Data\Mozilla\Firefox\Profiles\om07w5fj.default\cookies.txt -> TrackingCookie.Tradedoubler : Nettoyé.
:mozilla.324:C:\Documents and Settings\Compaq_Propriétaire\Application Data\Mozilla\Firefox\Profiles\om07w5fj.default\cookies.txt -> TrackingCookie.Tradedoubler : Nettoyé.
:mozilla.325:C:\Documents and Settings\Compaq_Propriétaire\Application Data\Mozilla\Firefox\Profiles\om07w5fj.default\cookies.txt -> TrackingCookie.Tradedoubler : Nettoyé.
:mozilla.326:C:\Documents and Settings\Compaq_Propriétaire\Application Data\Mozilla\Firefox\Profiles\om07w5fj.default\cookies.txt -> TrackingCookie.Tradedoubler : Nettoyé.
C:\Documents and Settings\Compaq_Propriétaire\Cookies\compaq_propriétaire@tradedoubler[2].txt -> TrackingCookie.Tradedoubler : Nettoyé.
:mozilla.297:C:\Documents and Settings\Compaq_Propriétaire\Application Data\Mozilla\Firefox\Profiles\om07w5fj.default\cookies.txt -> TrackingCookie.Tribalfusion : Nettoyé.
C:\Documents and Settings\Compaq_Propriétaire\Cookies\compaq_propriétaire@tribalfusion[1].txt -> TrackingCookie.Tribalfusion : Nettoyé.
:mozilla.227:C:\Documents and Settings\Compaq_Propriétaire\Application Data\Mozilla\Firefox\Profiles\om07w5fj.default\cookies.txt -> TrackingCookie.Valueclick : Nettoyé.
C:\Documents and Settings\Compaq_Propriétaire\Cookies\compaq_propriétaire@valueclick[1].txt -> TrackingCookie.Valueclick : Nettoyé.
:mozilla.200:C:\Documents and Settings\Compaq_Propriétaire\Application Data\Mozilla\Firefox\Profiles\om07w5fj.default\cookies.txt -> TrackingCookie.Weborama : Nettoyé.
:mozilla.214:C:\Documents and Settings\Compaq_Propriétaire\Application Data\Mozilla\Firefox\Profiles\om07w5fj.default\cookies.txt -> TrackingCookie.Weborama : Nettoyé.
:mozilla.215:C:\Documents and Settings\Compaq_Propriétaire\Application Data\Mozilla\Firefox\Profiles\om07w5fj.default\cookies.txt -> TrackingCookie.Weborama : Nettoyé.
:mozilla.216:C:\Documents and Settings\Compaq_Propriétaire\Application Data\Mozilla\Firefox\Profiles\om07w5fj.default\cookies.txt -> TrackingCookie.Weborama : Nettoyé.
C:\Documents and Settings\Compaq_Propriétaire\Cookies\compaq_propriétaire@weborama[1].txt -> TrackingCookie.Weborama : Nettoyé.
:mozilla.283:C:\Documents and Settings\Compaq_Propriétaire\Application Data\Mozilla\Firefox\Profiles\om07w5fj.default\cookies.txt -> TrackingCookie.Webtrendslive : Nettoyé.
C:\Documents and Settings\Compaq_Propriétaire\Cookies\compaq_propriétaire@statse.webtrendslive[1].txt -> TrackingCookie.Webtrendslive : Nettoyé.
:mozilla.14:C:\Documents and Settings\Compaq_Propriétaire\Application Data\Mozilla\Firefox\Profiles\om07w5fj.default\cookies.txt -> TrackingCookie.Zedo : Nettoyé.
:mozilla.30:C:\Documents and Settings\Compaq_Propriétaire\Application Data\Mozilla\Firefox\Profiles\om07w5fj.default\cookies.txt -> TrackingCookie.Zedo : Nettoyé.
C:\Documents and Settings\Compaq_Propriétaire\Cookies\compaq_propriétaire@zedo[2].txt -> TrackingCookie.Zedo : Nettoyé.
C:\Documents and Settings\Compaq_Propriétaire\Local Settings\Temp\NI.UWA6PV_0001_N69M2803\setup.exe -> Trojan.Fakealert : Nettoyé.
C:\Documents and Settings\Compaq_Propriétaire\Local Settings\Temp\NI.UWA6PV_0001_N73M0604\setup.exe -> Trojan.Fakealert : Nettoyé.

Fin du rapport

Logfile of HijackThis v1.99.1
Scan saved at 19:14:49, on 06/01/2007
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
C:\Program Files\Alwil Software\Avast4\ashServ.exe
C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe
C:\Program Files\Sunbelt Software\Personal Firewall\kpf4ss.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Sunbelt Software\Personal Firewall\kpf4gui.exe
C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\Sunbelt Software\Personal Firewall\kpf4gui.exe
C:\windows\system\hpsysdrv.exe
C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe
C:\Program Files\iTunes\iTunesHelper.exe
C:\WINDOWS\ALCXMNTR.EXE
C:\Program Files\iPod\bin\iPodService.exe
C:\WINDOWS\VM303_STI.EXE
C:\Program Files\QuickTime\qttask.exe
C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\E_FATIADE.EXE
C:\Program Files\MessengerPlus! 3\MsgPlus.exe
C:\HP\KBD\KBD.EXE
C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\avgas.exe
C:\Program Files\Messenger\msmsgs.exe
C:\Program Files\Ulead Systems\Ulead Photo Express 4.0 SE\CalCheck.exe
C:\Program Files\Fichiers communs\Microsoft Shared\Works Shared\WkCalRem.exe
C:\WINDOWS\system32\wuauclt.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\eMule\emule.exe
C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe
C:\Program Files\MSN Messenger\msnmsgr.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Hijackthis Version Française\VERSION TRADUITE ORIGINALE.EXE

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Window Title = Alice ADSL
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
O2 - BHO: EoRezoBHO - {64F56FC1-1272-44CD-BA6E-39723696E350} - C:\PROGRA~1\eoRezo\EoAdv\EOREZO~1.DLL (file missing)
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar1.dll
O2 - BHO: EpsonToolBandKicker Class - {E99421FB-68DD-40F0-B4AC-B7027CAE2F1A} - C:\Program Files\EPSON\EPSON Web-To-Page\EPSON Web-To-Page.dll
O3 - Toolbar: EPSON Web-To-Page - {EE5D279F-081B-4404-994D-C6B60AAEBA6D} - C:\Program Files\EPSON\EPSON Web-To-Page\EPSON Web-To-Page.dll
O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar1.dll
O4 - HKLM\..\Run: [hpsysdrv] c:\windows\system\hpsysdrv.exe
O4 - HKLM\..\Run: [ATIPTA] C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe
O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe"
O4 - HKLM\..\Run: [Recguard] C:\WINDOWS\SMINST\RECGUARD.EXE
O4 - HKLM\..\Run: [AlcxMonitor] ALCXMNTR.EXE
O4 - HKLM\..\Run: [BigDog303] C:\WINDOWS\VM303_STI.EXE VIMICRO USB PC Camera (ZC0301PLH)
O4 - HKLM\..\Run: [SemanticInsight] C:\Program Files\RXToolBar\Semantic Insight\SemanticInsight.exe
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [BDSwitchAgent] "C:\PROGRA~1\Softwin\BITDEF~1\bdswitch.exe"
O4 - HKLM\..\Run: [EPSON Stylus DX4800 Series] C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\E_FATIADE.EXE /P26 "EPSON Stylus DX4800 Series" /O6 "USB001" /M "Stylus DX4800"
O4 - HKLM\..\Run: [MessengerPlus3] "C:\Program Files\MessengerPlus! 3\MsgPlus.exe"
O4 - HKLM\..\Run: [NeroFilterCheck] C:\WINDOWS\system32\NeroCheck.exe
O4 - HKLM\..\Run: [KBD] C:\HP\KBD\KBD.EXE
O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe" -osboot
O4 - HKLM\..\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
O4 - HKLM\..\Run: [!AVG Anti-Spyware] "C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\avgas.exe" /minimized
O4 - HKCU\..\Run: [MSMSGS] "C:\Program Files\Messenger\msmsgs.exe" /background
O4 - HKCU\..\Run: [MessengerPlus3] "C:\Program Files\MessengerPlus! 3\MsgPlus.exe" /WinStart
O4 - HKCU\..\Run: [msnmsgr] "C:\Program Files\MSN Messenger\msnmsgr.exe" /background
O4 - HKCU\..\Run: [eMuleAutoStart] C:\Program Files\eMule\emule.exe -AutoStart
O4 - Startup: wkcalrem.LNK = C:\Program Files\Fichiers communs\Microsoft Shared\Works Shared\WkCalRem.exe
O4 - Global Startup: Contrôleur de calendrier Ulead.lnk = C:\Program Files\Ulead Systems\Ulead Photo Express 4.0 SE\CalCheck.exe
O4 - Global Startup: Lancement rapide d'Adobe Reader.lnk = C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe
O8 - Extra context menu item: &Search - http://kt.bar.need2find.com/KT/menusearch.html?p=KT
O9 - Extra button: (no name) - {85d1f590-48f4-11d9-9669-0800200c9a66} - %windir%\bdoscandel.exe (file missing)
O9 - Extra 'Tools' menuitem: Uninstall BitDefender Online Scanner v8 - {85d1f590-48f4-11d9-9669-0800200c9a66} - %windir%\bdoscandel.exe (file missing)
O9 - Extra button: Aide à la connexion - {E2D4D26B-0180-43a4-B05F-462D6D54C789} - C:\WINDOWS\PCHEALTH\HELPCTR\Vendors\CN=Hewlett-Packard,L=Cupertino,S=Ca,C=US\IEButton\support.htm
O9 - Extra 'Tools' menuitem: Aide à la connexion - {E2D4D26B-0180-43a4-B05F-462D6D54C789} - C:\WINDOWS\PCHEALTH\HELPCTR\Vendors\CN=Hewlett-Packard,L=Cupertino,S=Ca,C=US\IEButton\support.htm
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O16 - DPF: {31B7EB4E-8B4B-11D1-A789-00A0CC6651A8} (Cult3D ActiveX Player) - https://www.cult3d.com/
O16 - DPF: {5D86DDB5-BDF9-441B-9E9E-D4730F4EE499} (BDSCANONLINE Control) - http://download.bitdefender.com/resources/scan8/oscan8.cab
O16 - DPF: {8E0D4DE5-3180-4024-A327-4DFAD1796A8D} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsClient.cab31267.cab
O16 - DPF: {AB86CE53-AC9F-449F-9399-D8ABCA09EC09} (Get_ActiveX Control) - https://h17000.www1.hp.com/ewfrf-JAVA/Secure/HPGetDownloadManager.ocx
O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - "C:\PROGRA~1\MSNMES~1\msgrapp.dll" (file missing)
O18 - Filter: text/html - {2AB289AE-4B90-4281-B2AE-1F4BB034B647} - C:\Program Files\RXToolBar\sfcont.dll
O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - Unknown owner - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\WINDOWS\system32\Ati2evxx.exe
O23 - Service: avast! Antivirus - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashServ.exe
O23 - Service: avast! Mail Scanner - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe" /service (file missing)
O23 - Service: avast! Web Scanner - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe" /service (file missing)
O23 - Service: AVG Anti-Spyware Guard - Anti-Malware Development a.s. - C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Fichiers communs\InstallShield\Driver\1050\Intel 32\IDriverT.exe
O23 - Service: iPod Service (iPodService) - Apple Computer, Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: Sunbelt Kerio Personal Firewall 4 (KPF4) - Sunbelt Software - C:\Program Files\Sunbelt Software\Personal Firewall\kpf4ss.exe

Réponse 12 / 21

green day Messages postés 26371 Date d'inscription vendredi 30 septembre 2005 Statut Modérateur, Contributeur sécurité Dernière intervention 27 décembre 2019 2 162
6 janv. 2007 à 20:15

Salut

les cookies, c'est normal d'en avoir tout le temps :)

il faut vider les fichiers temp de temps en temps !

as tu virer RXToolBar ???

fais ceci stp :

# Désactiver la Restauration du système

* Cliquez sur le bouton Démarrer.
* Cliquez avec le bouton droit de la souris sur Poste de travail puis cliquez sur Propriétés.
* Dans l'onglet Restauration du système, sélectionnez l'option Désactiver la Restauration du système ou Désactiver la Restauration du système sur tous les lecteurs

( tu pourras la réactivé à la fin de la manip )

# Relance HijackThis : choisis " do a scan only" coche la case devant les lignes ci-dessous et clique en bas sur "fix checked" :

O2 - BHO: EoRezoBHO - {64F56FC1-1272-44CD-BA6E-39723696E350} - C:\PROGRA~1\eoRezo\EoAdv\EOREZO~1.DLL (file missing)

O4 - HKLM\..\Run: [ATIPTA] C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe
O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe"
O4 - HKLM\..\Run: [Recguard] C:\WINDOWS\SMINST\RECGUARD.EXE
O4 - HKLM\..\Run: [AlcxMonitor] ALCXMNTR.EXE
O4 - HKLM\..\Run: [SemanticInsight] C:\Program Files\RXToolBar\Semantic Insight\SemanticInsight.exe
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [NeroFilterCheck] C:\WINDOWS\system32\NeroCheck.exe
O4 - HKLM\..\Run: [KBD] C:\HP\KBD\KBD.EXE
O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe" -osboot
O4 - HKCU\..\Run: [MSMSGS] "C:\Program Files\Messenger\msmsgs.exe" /background
O4 - Global Startup: Lancement rapide d'Adobe Reader.lnk = C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe

O8 - Extra context menu item: &Search - http://kt.bar.need2find.com/KT/menusearch.html?p=KT

O16 - DPF: {31B7EB4E-8B4B-11D1-A789-00A0CC6651A8} (Cult3D ActiveX Player) - https://www.cult3d.com/
O16 - DPF: {5D86DDB5-BDF9-441B-9E9E-D4730F4EE499} (BDSCANONLINE Control) - http://download.bitdefender.com/resources/scan8/oscan8.cab
O16 - DPF: {8E0D4DE5-3180-4024-A327-4DFAD1796A8D} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsClient.cab31267.cab
O16 - DPF: {AB86CE53-AC9F-449F-9399-D8ABCA09EC09} (Get_ActiveX Control) - https://h17000.www1.hp.com/ewfrf-JAVA/Secure/HPGetDownloadManager.ocx

O18 - Filter: text/html - {2AB289AE-4B90-4281-B2AE-1F4BB034B647} - C:\Program Files\RXToolBar\sfcont.dll

# ensuite, télécharge et execute ceci :

* CleanUp40 (qui élimine les fichiers temporaires + cookies : gratuit )
http://pageperso.aol.fr/Balltrap34/CleanUp40.exe

tuto : (merci à Balltrap) http://pageperso.aol.fr/balltrap34/democleanup.htm

* Ccleaner : Telecharge et installe ceci, dans la colonne de gauche clique sur "erreurs" coche toute les cases, puis clique en bas sur "chercher des erreurs" une fois finit, clique sur "reparer les erreurs" et tu aura un message pour sauvegarder ta base de registre tu dis "oui" puis tu recommences jusqu'a ce qu'il te trouve plus d'erreurs .

*Relance Ccleaner ,vas dans l'onglet "nettoyeur" present sur la gauche, decoche la derniere case (Avancé si elle
est cochée) puis clique sur "lancer le nettoyage"

ccleaner

tuto: https://www.vulgarisation-informatique.com/nettoyer-windows-ccleaner.php

ensuite :

HijackThis -> Open the misc tools sections -> open Uninstall manager -> clique sur "Save list" -> enregistre le fichier -> fais-en un copier/coller ici.

@+

On peut aussi bâtir quelque chose de beau avec les pierres qui entravent le chemin (J.W.VON GOETHE
)

bagot1
6 janv. 2007 à 21:45

voila j'ai fais tout se que tu m'as dit. que dois je faire maintenant?
encors merci pour ton aide

Adobe Flash Player 9 ActiveX
Adobe Reader 7.0.8 - Français
Archiveur WinRAR
ATI Control Panel
ATI Display Driver
avast! Antivirus
AVG Anti-Spyware 7.5
CCleaner (remove only)
CleanUp!
Codec Pack de ELISOFT v14.0
Correctif Windows XP - KB873339
Correctif Windows XP - KB883667
Correctif Windows XP - KB885250
Correctif Windows XP - KB885835
Correctif Windows XP - KB885836
Correctif Windows XP - KB886185
Correctif Windows XP - KB887472
Correctif Windows XP - KB887742
Correctif Windows XP - KB888113
Correctif Windows XP - KB888239
Correctif Windows XP - KB888302
Correctif Windows XP - KB890175
Correctif Windows XP - KB890859
Correctif Windows XP - KB891781
Correctif Windows XP - KB893066
eMule
Enhanced Multimedia Keyboard Solution
EPSON Attach To Email
EPSON Copy Utility 3
EPSON Easy Photo Print
EPSON File Manager
EPSON Image Clip Palette
EPSON Logiciel imprimante
EPSON Scan Assistant
EPSON Web-To-Page
ESDX4800_4200 Guide util.
Gekko Mahjongg
Google Toolbar for Internet Explorer
High Definition Audio - KB888111
HijackThis 1.99.1
Hijackthis Version Française
InterActual Player
InterVideo WinDVD Player
iTunes
Kit de Connexion Alice ADSL
Lecteur Windows Media 10
Memory Stick Formatter
Micro Application - Crazy Blocks
Micro Application - Super Casse-Briques 4
Microsoft .NET Framework 1.1
Microsoft .NET Framework 1.1
Microsoft .NET Framework 1.1 French Language Pack
Microsoft .NET Framework 1.1 Hotfix (KB886903)
Microsoft Office 2000 CD-ROM 2
Microsoft Windows Media Video 9
Microsoft Works
Mise à jour de sécurité pour Lecteur Windows Media (KB911564)
Mise à jour de sécurité pour Lecteur Windows Media 10 (KB911565)
Mise à jour de sécurité pour Lecteur Windows Media 10 (KB917734)
Mise à jour de sécurité pour Lecteur Windows Media 6.4 (KB925398)
Mise à jour de sécurité pour Step by Step Interactive Training (KB898458)
Mise à jour de sécurité pour Windows XP (KB883939)
Mise à jour de sécurité pour Windows XP (KB890046)
Mise à jour de sécurité pour Windows XP (KB893756)
Mise à jour de sécurité pour Windows XP (KB896358)
Mise à jour de sécurité pour Windows XP (KB896422)
Mise à jour de sécurité pour Windows XP (KB896423)
Mise à jour de sécurité pour Windows XP (KB896424)
Mise à jour de sécurité pour Windows XP (KB896428)
Mise à jour de sécurité pour Windows XP (KB899587)
Mise à jour de sécurité pour Windows XP (KB899591)
Mise à jour de sécurité pour Windows XP (KB900725)
Mise à jour de sécurité pour Windows XP (KB901017)
Mise à jour de sécurité pour Windows XP (KB901190)
Mise à jour de sécurité pour Windows XP (KB901214)
Mise à jour de sécurité pour Windows XP (KB902400)
Mise à jour de sécurité pour Windows XP (KB904706)
Mise à jour de sécurité pour Windows XP (KB905414)
Mise à jour de sécurité pour Windows XP (KB905749)
Mise à jour de sécurité pour Windows XP (KB905915)
Mise à jour de sécurité pour Windows XP (KB908519)
Mise à jour de sécurité pour Windows XP (KB908531)
Mise à jour de sécurité pour Windows XP (KB911280)
Mise à jour de sécurité pour Windows XP (KB911562)
Mise à jour de sécurité pour Windows XP (KB911567)
Mise à jour de sécurité pour Windows XP (KB911927)
Mise à jour de sécurité pour Windows XP (KB912812)
Mise à jour de sécurité pour Windows XP (KB912919)
Mise à jour de sécurité pour Windows XP (KB913446)
Mise à jour de sécurité pour Windows XP (KB913580)
Mise à jour de sécurité pour Windows XP (KB914388)
Mise à jour de sécurité pour Windows XP (KB914389)
Mise à jour de sécurité pour Windows XP (KB916281)
Mise à jour de sécurité pour Windows XP (KB917159)
Mise à jour de sécurité pour Windows XP (KB917344)
Mise à jour de sécurité pour Windows XP (KB917422)
Mise à jour de sécurité pour Windows XP (KB917953)
Mise à jour de sécurité pour Windows XP (KB918439)
Mise à jour de sécurité pour Windows XP (KB918899)
Mise à jour de sécurité pour Windows XP (KB919007)
Mise à jour de sécurité pour Windows XP (KB920213)
Mise à jour de sécurité pour Windows XP (KB920214)
Mise à jour de sécurité pour Windows XP (KB920670)
Mise à jour de sécurité pour Windows XP (KB920683)
Mise à jour de sécurité pour Windows XP (KB920685)
Mise à jour de sécurité pour Windows XP (KB921398)
Mise à jour de sécurité pour Windows XP (KB921883)
Mise à jour de sécurité pour Windows XP (KB922616)
Mise à jour de sécurité pour Windows XP (KB922760)
Mise à jour de sécurité pour Windows XP (KB922819)
Mise à jour de sécurité pour Windows XP (KB923191)
Mise à jour de sécurité pour Windows XP (KB923414)
Mise à jour de sécurité pour Windows XP (KB923689)
Mise à jour de sécurité pour Windows XP (KB923694)
Mise à jour de sécurité pour Windows XP (KB923980)
Mise à jour de sécurité pour Windows XP (KB924191)
Mise à jour de sécurité pour Windows XP (KB924270)
Mise à jour de sécurité pour Windows XP (KB924496)
Mise à jour de sécurité pour Windows XP (KB925454)
Mise à jour de sécurité pour Windows XP (KB925486)
Mise à jour de sécurité pour Windows XP (KB926255)
Mise à jour pour Windows XP (KB894391)
Mise à jour pour Windows XP (KB898461)
Mise à jour pour Windows XP (KB900485)
Mise à jour pour Windows XP (KB910437)
Mise à jour pour Windows XP (KB916595)
Mise à jour pour Windows XP (KB920872)
Mise à jour pour Windows XP (KB922582)
MSN
MSN Messenger 7.5
MSXML 4.0 SP2 (KB927978)
Nero 6 Ultra Edition
PC-Doctor 5 for Windows
PIF DESIGNER
Python 2.2 pywin32 extensions (build 203)
Python 2.2.3
QuickTime
RealPlayer
Samsung Digital Video Camera Capture Driver
Sonic Express Labeler
Sonic MyDVD Plus
Sonic RecordNow Audio
Sonic RecordNow Copy
Sonic RecordNow Data
Sonic Update Manager
Sunbelt Kerio Personal Firewall
Super Casse-briques 3
Tous les jeux de Casino
Ulead Photo Express 4.0 SE
Vimicro USB PC Camera (ZC0301PLH)
Windows Installer 3.1 (KB893803)
Windows Media Format Runtime

Réponse 13 / 21

green day Messages postés 26371 Date d'inscription vendredi 30 septembre 2005 Statut Modérateur, Contributeur sécurité Dernière intervention 27 décembre 2019 2 162
6 janv. 2007 à 21:48

re

ok, fixe cette ligne

O4 - HKLM\..\Run: [BDSwitchAgent] "C:\PROGRA~1\Softwin\BITDEF~1\bdswitch.exe"

poste un nouveau hijackthis et precise tes soucis s'il en reste

@+

Réponse 14 / 21

bagot1
6 janv. 2007 à 21:51

fixe cette ligne je n'ai pas compris comment dois je faire ?

Réponse 15 / 21

green day Messages postés 26371 Date d'inscription vendredi 30 septembre 2005 Statut Modérateur, Contributeur sécurité Dernière intervention 27 décembre 2019 2 162
6 janv. 2007 à 21:53

comme ça ;-)

Relance HijackThis : choisis " do a scan only" coche la case devant les lignes ci-dessous et clique en bas sur "fix checked" :

O4 - HKLM\..\Run: [BDSwitchAgent] "C:\PROGRA~1\Softwin\BITDEF~1\bdswitch.exe"

++

bagot1
6 janv. 2007 à 22:04

desolée, j'ai beau chercher je ne la trouve pas.

Réponse 16 / 21

green day Messages postés 26371 Date d'inscription vendredi 30 septembre 2005 Statut Modérateur, Contributeur sécurité Dernière intervention 27 décembre 2019 2 162
6 janv. 2007 à 22:07

pas grave, poste un nouveau hijackthis stp

et precise tes soucis s'il en reste !

++

On peut aussi bâtir quelque chose de beau avec les pierres qui entravent le chemin (J.W.VON GOETHE
)

bagot1
6 janv. 2007 à 22:37

Logfile of HijackThis v1.99.1
Scan saved at 22:37:25, on 06/01/2007
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 (6.00.2900.2180)

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
C:\Program Files\Alwil Software\Avast4\ashServ.exe
C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe
C:\Program Files\Sunbelt Software\Personal Firewall\kpf4ss.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Sunbelt Software\Personal Firewall\kpf4gui.exe
C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\Program Files\Sunbelt Software\Personal Firewall\kpf4gui.exe
C:\WINDOWS\Explorer.EXE
C:\windows\system\hpsysdrv.exe
C:\WINDOWS\VM303_STI.EXE
C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\E_FATIADE.EXE
C:\HP\KBD\KBD.EXE
C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\avgas.exe
C:\Program Files\eMule\emule.exe
C:\Program Files\Ulead Systems\Ulead Photo Express 4.0 SE\CalCheck.exe
C:\Program Files\Fichiers communs\Microsoft Shared\Works Shared\WkCalRem.exe
C:\WINDOWS\system32\wuauclt.exe
C:\Program Files\MSN Messenger\msnmsgr.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Hijackthis Version Française\VERSION TRADUITE ORIGINALE.EXE

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.msn.com/fr-fr/?ocid=iehp
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Window Title = Alice ADSL
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar1.dll
O2 - BHO: EpsonToolBandKicker Class - {E99421FB-68DD-40F0-B4AC-B7027CAE2F1A} - C:\Program Files\EPSON\EPSON Web-To-Page\EPSON Web-To-Page.dll
O3 - Toolbar: EPSON Web-To-Page - {EE5D279F-081B-4404-994D-C6B60AAEBA6D} - C:\Program Files\EPSON\EPSON Web-To-Page\EPSON Web-To-Page.dll
O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar1.dll
O4 - HKLM\..\Run: [hpsysdrv] c:\windows\system\hpsysdrv.exe
O4 - HKLM\..\Run: [BigDog303] C:\WINDOWS\VM303_STI.EXE VIMICRO USB PC Camera (ZC0301PLH)
O4 - HKLM\..\Run: [EPSON Stylus DX4800 Series] C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\E_FATIADE.EXE /P26 "EPSON Stylus DX4800 Series" /O6 "USB001" /M "Stylus DX4800"
O4 - HKLM\..\Run: [KBD] C:\HP\KBD\KBD.EXE
O4 - HKLM\..\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
O4 - HKLM\..\Run: [!AVG Anti-Spyware] "C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\avgas.exe" /minimized
O4 - HKLM\..\RunOnce: [NoIE4StubProcessing] C:\WINDOWS\system32\reg.exe DELETE "HKLM\SOFTWARE\Microsoft\Active Setup\Installed Components" /v "NoIE4StubProcessing" /f
O4 - HKCU\..\Run: [eMuleAutoStart] C:\Program Files\eMule\emule.exe -AutoStart
O4 - HKCU\..\Run: [msnmsgr] "C:\Program Files\MSN Messenger\msnmsgr.exe" /background
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - Startup: wkcalrem.LNK = C:\Program Files\Fichiers communs\Microsoft Shared\Works Shared\WkCalRem.exe
O4 - Global Startup: Contrôleur de calendrier Ulead.lnk = C:\Program Files\Ulead Systems\Ulead Photo Express 4.0 SE\CalCheck.exe
O4 - Global Startup: Lancement rapide d'Adobe Reader.lnk = C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe
O9 - Extra button: (no name) - {85d1f590-48f4-11d9-9669-0800200c9a66} - %windir%\bdoscandel.exe (file missing)
O9 - Extra 'Tools' menuitem: Uninstall BitDefender Online Scanner v8 - {85d1f590-48f4-11d9-9669-0800200c9a66} - %windir%\bdoscandel.exe (file missing)
O9 - Extra button: Aide à la connexion - {E2D4D26B-0180-43a4-B05F-462D6D54C789} - C:\WINDOWS\PCHEALTH\HELPCTR\Vendors\CN=Hewlett-Packard,L=Cupertino,S=Ca,C=US\IEButton\support.htm
O9 - Extra 'Tools' menuitem: Aide à la connexion - {E2D4D26B-0180-43a4-B05F-462D6D54C789} - C:\WINDOWS\PCHEALTH\HELPCTR\Vendors\CN=Hewlett-Packard,L=Cupertino,S=Ca,C=US\IEButton\support.htm
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe (file missing)
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe (file missing)
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O11 - Options group: [INTERNATIONAL] International*
O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - "C:\PROGRA~1\MSNMES~1\msgrapp.dll" (file missing)
O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - Unknown owner - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\WINDOWS\system32\Ati2evxx.exe
O23 - Service: avast! Antivirus - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashServ.exe
O23 - Service: avast! Mail Scanner - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe" /service (file missing)
O23 - Service: avast! Web Scanner - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe" /service (file missing)
O23 - Service: AVG Anti-Spyware Guard - Anti-Malware Development a.s. - C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Fichiers communs\InstallShield\Driver\1050\Intel 32\IDriverT.exe
O23 - Service: iPod Service (iPodService) - Apple Computer, Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: Sunbelt Kerio Personal Firewall 4 (KPF4) - Sunbelt Software - C:\Program Files\Sunbelt Software\Personal Firewall\kpf4ss.exe

Réponse 17 / 21

green day Messages postés 26371 Date d'inscription vendredi 30 septembre 2005 Statut Modérateur, Contributeur sécurité Dernière intervention 27 décembre 2019 2 162
6 janv. 2007 à 22:43

comment se comporet l'ordi ???

++

Réponse 18 / 21

bagot1
6 janv. 2007 à 23:00

je ne sais pas trop encore.
est ce que j'ai encore des virus??

il me met encore des message d'erreur et il redemarre

j'aimerai qu'il aille plus vite car par moment c'est tres long est ce que sa peu venir des virus?

en tout cas je te remercie beaucoup pour ton aide
mille mille merci

Réponse 19 / 21

green day Messages postés 26371 Date d'inscription vendredi 30 septembre 2005 Statut Modérateur, Contributeur sécurité Dernière intervention 27 décembre 2019 2 162
6 janv. 2007 à 23:07

ok,

il me met encore des message d'erreur et il redemarre

quel message, c'est à dire ???

combien as tu de ram ???

on verra par la suite !

++

bagot1
7 janv. 2007 à 09:35

salut

je ne sais pas si sa va repondre a ta question car je ne sais pas comment on fait pour savoir combien de rame il y a sur un ordi sur le papier de" l'ordi j'ai:

512MoSDRAM DDR
200 Go disque dur sur data (7200 tours/min)dont 6 Go reservés au systeme de restauration. C'est tout se que je sais. Pour le message d'erreur, j'attend d'en avoir un pour mieux t'expliquer

a+

^^Marie^^ Messages postés 113901 Date d'inscription mardi 6 septembre 2005 Statut Membre Dernière intervention 28 août 2020 3 275 > bagot1
7 janv. 2007 à 12:16

Salut

Avec ce logiciel tu (et nous) peux savoir au niveau matériel ce qu'il y a dans ton PC

http://www.clubic.com/telecharger-fiche12281-everest.html

babot1 > ^^Marie^^ Messages postés 113901 Date d'inscription mardi 6 septembre 2005 Statut Membre Dernière intervention 28 août 2020
11 janv. 2007 à 07:57

salut

ok j'ai telechargé le logiciel mais le souci c'est que je ni connais rien en informatique et encors moins les termes comment je fais pour savoir le rame de l'ordi

merci

^^Marie^^ Messages postés 113901 Date d'inscription mardi 6 septembre 2005 Statut Membre Dernière intervention 28 août 2020 3 275 > babot1
11 janv. 2007 à 09:43

Re,

Regarde sur le lien, c'est une fiche explicative pour Everest

http://membres.lycos.fr/logitest/ficheeverest.htm

Essaie de coller ici la rubrique matériel, c'est "résum" je crois

Regarde aussi ici ==> https://leblogdeclaude.blogspot.com/2006/11/informatique-comment-coller-un-rsum-du.html

A++

bagot1 > ^^Marie^^ Messages postés 113901 Date d'inscription mardi 6 septembre 2005 Statut Membre Dernière intervention 28 août 2020
16 janv. 2007 à 19:56

salut

avec beaucoup de retard voilà le rapport

--------[ EVEREST Home Edition (c) 2003-2005 Lavalys, Inc. ]------------------------------------------------------------

Version EVEREST v2.20.405/fr
Site web http://www.lavalys.com/
Type de rapport Générateur de rapports
Ordinateur SOPHIE (SOSO)
Générateur Compaq_Propriétaire
Système d'exploitation Microsoft Windows XP Home Edition 5.1.2600 (WinXP Retail)
Date 2007-01-16
Heure 19:54

--------[ Résumé ]------------------------------------------------------------------------------------------------------

Ordinateur:
Système d'exploitation Microsoft Windows XP Home Edition
Service Pack du système Service Pack 2
DirectX 4.09.00.0904 (DirectX 9.0c)
Nom du système SOPHIE (SOSO)
Nom de l'utilisateur Compaq_Propriétaire

Carte mère:
Type de processeur AMD Sempron, 1800 MHz (9 x 200) 3200+
Nom de la carte mère MSI RS480M2 (MS-7093) (3 PCI, 1 PCI-E x16, 4 DDR DIMM, Audio, Video, LAN, IEEE-1394)
Chipset de la carte mère ATI Radeon Xpress 200, AMD Hammer
Mémoire système 448 Mo (PC3200 DDR SDRAM)
Type de BIOS Award (10/21/05)
Port de communication Port imprimante ECP (LPT1)

Moniteur:
Carte vidéo ATI RADEON XPRESS 200 Series (256 Mo)
Carte vidéo ATI RADEON XPRESS 200 Series (256 Mo)
Accélérateur 3D ATI Radeon Xpress 200 (RS480)
Moniteur HP VS17 [17" LCD] (CNC543P01B)

Multimédia:
Carte audio ATI SB400 - AC'97 Audio Controller

Stockage:
Contrôleur IDE Contrôleur IDE standard double canal PCI
Contrôleur IDE Contrôleur IDE standard double canal PCI
Disque dur Generic USB SD Reader USB Device
Disque dur Generic USB CF Reader USB Device
Disque dur Generic USB SM Reader USB Device
Disque dur Generic USB MS Reader USB Device
Disque dur ST3200826AS (200 Go, 7200 RPM, SATA)
Lecteur optique TSSTcorp CD/DVDW TS-H552D (DVD+R9:2.4x, DVD+RW:16x/4x, DVD-RW:12x/4x, DVD-ROM:16x, CD:40x/32x/48x DVD+RW/DVD-RW)
État des disques durs SMART OK

Partitions:
C: (NTFS) 184629 Mo (150229 Mo libre)
D: (FAT32) 6130 Mo (2559 Mo libre)
Taille totale 186.3 Go (149.2 Go libre)

Entrée:
Clavier Enhanced Mulmedia PS/2 Keyboard
Souris Souris compatible PS/2

Réseau:
Carte réseau Realtek RTL8139/810x Family Fast Ethernet NIC (192.168.1.2)

Périphériques:
Imprimante EPSON Stylus DX4800 Series
Imprimante Fax
Imprimante HP DeskJet 710C
Contrôleur USB1 ATI SB400 - USB Controller
Contrôleur USB1 ATI SB400 - USB Controller
Contrôleur USB2 ATI SB400 - USB 2.0 Controller
Périphérique USB Périphérique de stockage de masse USB
Périphérique USB Vimicro USB PC Camera (ZC0301PLH)

--------[ Debug - PCI ]-------------------------------------------------------------------------------------------------

B00 D00 F00: ATI Radeon Xpress 200 (RS480) Chipset - Host Bridge

Offset 00: 02 10 50 59 06 00 20 22 10 00 00 06 00 40 00 00
Offset 10: 00 00 00 00 00 00 00 00 01 41 00 00 04 00 00 E0
Offset 20: 00 00 00 00 00 00 00 00 00 00 00 00 3C 10 24 2A
Offset 30: 00 00 00 00 C4 00 00 00 00 00 00 00 00 00 00 00
Offset 40: 00 00 00 00 00 00 00 00 00 00 00 00 42 20 06 00
Offset 50: 3C 10 24 2A 00 00 00 00 00 00 00 00 00 00 00 00
Offset 60: 7F 00 00 00 00 00 00 00 00 00 00 00 28 00 73 06
Offset 70: E0 08 00 00 00 00 00 00 20 4E 00 00 00 00 00 10
Offset 80: 10 0B 00 02 94 10 00 03 20 00 00 00 02 21 00 00
Offset 90: 00 00 00 1C 45 CB 45 EC 00 00 00 00 00 00 00 00
Offset A0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset B0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset C0: 00 00 00 00 08 00 80 01 60 00 11 11 D0 00 00 00
Offset D0: 25 05 65 00 02 00 00 00 00 00 00 00 00 00 00 00
Offset E0: 00 00 00 00 FF FF FF FF 7F 00 00 00 00 00 00 00
Offset F0: 00 00 00 00 00 80 80 00 03 00 00 00 00 00 48 01

B00 D01 F00: ATI Radeon Xpress 200 Chipset - PCI Express Root Port

Offset 00: 02 10 3F 5A 07 00 30 02 00 00 04 06 00 63 01 00
Offset 10: 00 00 00 00 00 00 00 00 00 01 01 44 E1 E1 20 22
Offset 20: D0 FD D0 FD 01 D8 F1 DF 00 00 00 00 00 00 00 00
Offset 30: 00 00 00 00 44 00 00 00 00 00 00 00 FF 00 0A 00
Offset 40: 00 00 00 00 08 B0 03 A8 00 00 00 00 3C 10 20 2A
Offset 50: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset 60: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset 70: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset 80: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset 90: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset A0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset B0: 0D 00 00 00 3C 10 20 2A 00 00 00 00 00 00 00 00
Offset C0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset D0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset E0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset F0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00

B00 D12 F00: ATI SB400 - SATA Controller

Offset 00: 02 10 79 43 07 00 B0 02 00 8F 01 01 08 40 00 00
Offset 10: 01 FE 00 00 01 FD 00 00 01 FC 00 00 01 FB 00 00
Offset 20: 01 FA 00 00 00 F0 02 FE 00 00 00 00 3C 10 24 2A
Offset 30: 00 00 00 00 60 00 00 00 00 00 00 00 16 01 00 00
Offset 40: 00 00 00 00 1C 24 03 78 00 00 00 00 00 00 00 00
Offset 50: 05 00 00 00 00 00 00 00 00 00 00 00 0E 88 00 00
Offset 60: 01 50 22 06 00 40 00 64 02 10 00 00 00 00 00 00
Offset 70: 09 00 01 00 F8 8E 51 04 08 00 20 00 00 00 00 00
Offset 80: 22 00 00 00 22 00 00 00 00 00 01 00 BE FB D4 DA
Offset 90: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset A0: 01 21 15 65 DD 62 DD 62 92 43 92 43 09 40 09 40
Offset B0: 01 21 15 65 DD 62 DD 62 92 43 92 43 09 40 09 40
Offset C0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset D0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset E0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset F0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00

B00 D13 F00: ATI SB400 - USB Controller

Offset 00: 02 10 74 43 07 00 B0 02 00 10 03 0C 08 40 80 00
Offset 10: 00 E0 02 FE 00 00 00 00 00 00 00 00 00 00 00 00
Offset 20: 00 00 00 00 00 00 00 00 00 00 00 00 3C 10 24 2A
Offset 30: 00 00 00 00 D0 00 00 00 00 00 00 00 13 01 00 00
Offset 40: 80 00 00 00 00 00 00 00 00 00 00 00 10 00 00 00
Offset 50: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset 60: 20 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset 70: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset 80: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset 90: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset A0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset B0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset C0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset D0: 05 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset E0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset F0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00

B00 D13 F01: ATI SB400 - USB Controller

Offset 00: 02 10 75 43 07 00 B0 02 00 10 03 0C 08 40 00 00
Offset 10: 00 D0 02 FE 00 00 00 00 00 00 00 00 00 00 00 00
Offset 20: 00 00 00 00 00 00 00 00 00 00 00 00 3C 10 24 2A
Offset 30: 00 00 00 00 D0 00 00 00 00 00 00 00 13 01 00 00
Offset 40: 80 00 00 00 00 00 00 00 00 00 00 00 10 00 00 00
Offset 50: 00 02 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset 60: 20 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset 70: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset 80: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset 90: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset A0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset B0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset C0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset D0: 05 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset E0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset F0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00

B00 D13 F02: ATI SB400 - USB 2.0 Controller

Offset 00: 02 10 73 43 07 00 B0 02 00 20 03 0C 08 40 00 00
Offset 10: 00 C0 02 FE 00 00 00 00 00 00 00 00 00 00 00 00
Offset 20: 00 00 00 00 00 00 00 00 00 00 00 00 3C 10 24 2A
Offset 30: 00 00 00 00 DC 00 00 00 00 00 00 00 13 01 00 00
Offset 40: 80 00 00 00 00 00 00 00 00 00 00 00 10 00 00 00
Offset 50: 00 28 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset 60: 20 20 00 00 00 20 00 00 00 20 00 00 00 20 00 00
Offset 70: 00 20 00 00 00 20 00 00 00 20 00 00 00 20 00 00
Offset 80: 00 20 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset 90: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset A0: 01 00 00 00 00 00 00 C0 00 00 00 00 00 00 00 00
Offset B0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset C0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset D0: 05 00 00 00 00 00 00 00 00 00 00 00 01 D0 02 7E
Offset E0: 00 00 40 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset F0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00

B00 D14 F00: ATI SB400 - SMBus Controller

Offset 00: 02 10 72 43 03 00 30 02 11 00 05 0C 00 00 80 00
Offset 10: 01 05 00 00 00 B0 02 FE 00 00 00 00 00 00 00 00
Offset 20: 00 00 00 00 00 00 00 00 00 00 00 00 3C 10 24 2A
Offset 30: 00 00 00 00 B0 00 00 00 00 00 00 00 00 00 00 00
Offset 40: D0 A1 00 00 00 00 00 00 0F FF 00 00 00 00 00 00
Offset 50: FF 03 00 00 FF 01 00 00 00 00 00 00 00 00 00 00
Offset 60: 01 00 07 00 BF B9 9E 8F 00 90 00 00 20 00 00 00
Offset 70: 00 00 00 00 08 00 C0 FE FF 4E 00 00 00 00 00 00
Offset 80: 0F 0B 00 00 00 00 00 00 00 00 00 00 8C 00 00 80
Offset 90: 01 05 00 00 F9 CE FF 00 00 00 00 00 00 00 00 00
Offset A0: 00 00 FF FF FF FF 00 00 00 3F 03 00 C0 0B 00 F9
Offset B0: 08 00 02 A8 00 00 00 00 00 00 00 00 F0 0F 00 00
Offset C0: FF B7 E9 FF 00 00 00 00 00 00 00 00 00 00 00 00
Offset D0: 00 00 01 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset E0: 20 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset F0: D8 0C 00 00 00 41 00 00 00 00 00 00 00 00 00 00

B00 D14 F01: ATI SB400 - IDE Controller

Offset 00: 02 10 76 43 05 00 30 02 00 8A 01 01 00 40 00 00
Offset 10: 01 00 00 00 01 00 00 00 01 00 00 00 01 00 00 00
Offset 20: 01 F8 00 00 00 00 00 00 00 00 00 00 3C 10 24 2A
Offset 30: 00 00 00 00 70 00 00 00 00 00 00 00 FF 01 00 00
Offset 40: 99 99 99 20 FF FF FF FF 00 00 00 04 00 00 00 00
Offset 50: 00 00 00 00 04 00 00 02 00 00 00 00 00 00 00 00
Offset 60: 00 00 40 01 10 2C 46 18 01 00 00 00 FF FF 0F 00
Offset 70: 05 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset 80: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset 90: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset A0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset B0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset C0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset D0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset E0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset F0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00

B00 D14 F03: ATI SB400 - PCI-ISA Bridge

Offset 00: 02 10 77 43 0F 00 20 02 00 00 01 06 00 00 80 00
Offset 10: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset 20: 00 00 00 00 00 00 00 00 00 00 00 00 3C 10 24 2A
Offset 30: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset 40: 04 00 00 00 41 00 00 FC BF FF 00 00 00 00 00 00
Offset 50: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset 60: 00 00 00 00 00 08 00 00 0E 00 0F 00 F8 FF FF FF
Offset 70: 67 45 23 01 00 00 00 00 01 00 00 00 00 00 00 00
Offset 80: 08 00 03 A8 00 00 00 00 00 00 00 00 00 00 00 00
Offset 90: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset A0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset B0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset C0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset D0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset E0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset F0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00

B00 D14 F04: ATI SB400 - PCI-PCI Bridge

Offset 00: 02 10 71 43 07 00 A0 02 00 01 04 06 00 40 81 00
Offset 10: 00 00 00 00 00 00 00 00 00 02 02 20 D1 D1 80 22
Offset 20: C0 FD C0 FD E0 FD E0 FD 00 00 00 00 00 00 00 00
Offset 30: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 02 00
Offset 40: 26 00 3C FF 00 00 00 00 04 01 3F F1 00 00 00 00
Offset 50: 01 00 00 00 08 00 03 A8 00 00 00 00 00 00 00 00
Offset 60: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset 70: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset 80: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset 90: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset A0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset B0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset C0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset D0: 00 00 00 00 00 00 00 00 00 00 00 00 01 00 02 06
Offset E0: 00 00 80 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset F0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00

B00 D14 F05: ATI SB400 - AC'97 Audio Controller

Offset 00: 02 10 70 43 07 00 30 04 02 00 01 04 08 40 80 00
Offset 10: 00 A0 02 FE 00 00 00 00 00 00 00 00 00 00 00 00
Offset 20: 00 00 00 00 00 00 00 00 00 00 00 00 3C 10 25 2A
Offset 30: 00 00 00 00 40 00 00 00 00 00 00 00 11 02 02 00
Offset 40: 05 00 00 00 00 00 00 00 00 00 00 00 04 00 00 00
Offset 50: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset 60: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset 70: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset 80: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset 90: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset A0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset B0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset C0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset D0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset E0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset F0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00

B00 D18 F00: AMD Hammer - HyperTransport Technology Configuration

Offset 00: 22 10 00 11 00 00 10 00 00 00 00 06 00 00 80 00
Offset 10: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset 20: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset 30: 00 00 00 00 80 00 00 00 00 00 00 00 00 00 00 00
Offset 40: 01 01 01 00 01 01 01 00 01 01 01 00 01 01 01 00
Offset 50: 01 01 01 00 01 01 01 00 01 01 01 00 01 01 01 00
Offset 60: 00 00 00 00 E4 00 00 00 0F CC 20 0F 0C 00 00 00
Offset 70: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset 80: 08 00 01 21 20 00 11 11 22 05 35 80 02 00 00 00
Offset 90: 78 01 70 01 00 00 02 00 07 00 00 00 00 00 00 00
Offset A0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset B0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset C0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset D0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset E0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset F0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00

B00 D18 F01: AMD Hammer - Address Map

Offset 00: 22 10 01 11 00 00 00 00 00 00 00 06 00 00 80 00
Offset 10: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset 20: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset 30: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset 40: 03 00 00 00 00 00 1F 00 00 00 00 00 01 00 00 00
Offset 50: 00 00 00 00 02 00 00 00 00 00 00 00 03 00 00 00
Offset 60: 00 00 00 00 04 00 00 00 00 00 00 00 05 00 00 00
Offset 70: 00 00 00 00 06 00 00 00 00 00 00 00 07 00 00 00
Offset 80: 03 0A 00 00 00 0B 00 00 00 00 00 00 00 00 00 00
Offset 90: 03 00 20 00 80 FF DF 00 00 00 00 00 00 00 00 00
Offset A0: 00 00 00 00 00 00 00 00 03 00 F0 00 00 02 FE 00
Offset B0: 03 00 E0 00 80 2F E0 00 00 00 00 00 00 00 00 00
Offset C0: 13 D0 00 00 00 F0 00 00 00 00 00 00 00 00 00 00
Offset D0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset E0: 03 00 00 02 00 00 00 00 00 00 00 00 00 00 00 00
Offset F0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00

B00 D18 F02: AMD Hammer - DRAM Controller

Offset 00: 22 10 02 11 00 00 00 00 00 00 00 06 00 00 80 00
Offset 10: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset 20: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset 30: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset 40: 01 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset 50: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset 60: 00 FE E0 01 00 00 00 00 00 00 00 00 00 00 00 00
Offset 70: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset 80: 04 00 00 00 00 00 00 00 42 34 82 13 21 0B 00 00
Offset 90: 80 CE 05 3E 07 07 7B 06 00 00 00 00 00 00 00 00
Offset A0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset B0: 84 AF EB C9 90 00 00 00 F3 BB E8 08 0C C5 F5 9B
Offset C0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset D0: C8 68 4D 1F 19 A5 31 2D 23 2F 46 9F 35 F1 CD 64
Offset E0: CE A0 E2 86 A4 E2 4A 2D D1 56 30 AD 94 38 6C 36
Offset F0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00

B00 D18 F03: AMD Hammer - Miscellaneous Control

Offset 00: 22 10 03 11 00 00 00 00 00 00 00 06 00 00 80 00
Offset 10: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset 20: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset 30: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset 40: FF 3B 00 00 40 00 00 00 00 00 00 00 00 00 00 00
Offset 50: 00 00 00 08 00 00 00 00 00 00 00 00 C0 FB FF 9F
Offset 60: 4D 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset 70: 11 01 32 51 21 40 70 50 00 2A 00 08 18 21 00 00
Offset 80: 00 00 07 23 13 21 13 21 00 00 00 00 00 00 00 00
Offset 90: 00 00 00 00 4F 10 00 00 80 40 44 6D 00 00 00 00
Offset A0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset B0: 00 00 00 00 00 00 00 00 3E 00 00 00 00 00 00 00
Offset C0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset D0: 00 00 00 00 01 A7 0D 00 00 00 40 00 25 00 00 00
Offset E0: 00 00 00 00 20 06 55 14 19 05 00 00 00 00 00 00
Offset F0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00

B01 D05 F00: ATI Radeon Xpress 200 (RS480) Chipset - Video Adapter

Offset 00: 02 10 54 59 07 00 B0 02 00 00 00 03 08 FF 00 00
Offset 10: 08 00 00 D8 01 EF 00 00 00 00 DF FD 00 00 00 00
Offset 20: 00 00 00 00 00 00 00 00 00 00 00 00 3C 10 24 2A
Offset 30: 00 00 00 00 50 00 00 00 00 00 00 00 11 01 08 00
Offset 40: 00 00 00 00 00 00 00 00 00 00 00 00 3C 10 24 2A
Offset 50: 01 00 02 06 00 00 00 00 02 50 20 00 30 02 00 4F
Offset 60: 00 02 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset 70: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset 80: 05 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset 90: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset A0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset B0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset C0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset D0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset E0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset F0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00

B02 D03 F00: Realtek RTL8139 PCI Fast Ethernet Adapter [A/B/C]

Offset 00: EC 10 39 81 05 00 90 02 10 00 00 02 00 40 00 00
Offset 10: 01 F9 00 00 00 F0 CF FD 00 00 00 00 00 00 00 00
Offset 20: 00 00 00 00 00 00 00 00 00 00 00 00 3C 10 24 2A
Offset 30: 00 00 00 00 50 00 00 00 00 00 00 00 14 01 20 40
Offset 40: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset 50: 01 00 C2 F7 00 00 00 00 00 00 00 00 00 00 00 00
Offset 60: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset 70: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset 80: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset 90: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset A0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset B0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset C0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset D0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset E0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset F0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00

B02 D04 F00: VIA VT6307 Fire IIM IEEE1394 Host Controller

Offset 00: 06 11 44 30 07 00 10 02 80 10 00 0C 08 40 00 00
Offset 10: 00 E0 CF FD 01 DE 00 00 00 00 00 00 00 00 00 00
Offset 20: 00 00 00 00 00 00 00 00 00 00 00 00 3C 10 24 2A
Offset 30: 00 00 00 00 50 00 00 00 00 00 00 00 15 01 00 20
Offset 40: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset 50: 01 00 02 E4 00 00 00 00 00 00 00 00 00 00 00 00
Offset 60: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset 70: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset 80: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset 90: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset A0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset B0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset C0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset D0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset E0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset F0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00

PCI-1002-5950: ATI RS4xx/RX4xx NBMCIND

Offset 00: 00000300 00000322 10A10000 00000006
Offset 04: 00000000 00000000 00000000 00000000
Offset 08: 00000000 00000000 00000000 00000000
Offset 0C: 00000000 00000000 00000000 00000001
Offset 10: 08881018 0000F09A 9999AAAA 00000000
Offset 14: FFFF0000 00000000 00000000 00000000
Offset 18: 00001000 00000000 00000020 00000000
Offset 1C: 00054204 00000000 1C000000 00000000
Offset 20: 00000000 00000000 00000000 00000000
Offset 24: 00000000 00000000 00000000 00000000
Offset 28: 00000000 00000000 00000000 42040000
Offset 2C: 00100000 00000010 00000000 00000000
Offset 30: F9FF9DF3 D3FFBFFE D5F3DD5D F6FFA5F9
Offset 34: 5FDD77BE FF7AF54F 9777A59D D2FBBFE6
Offset 38: 00000009 01400000 00000000 00000000
Offset 3C: 00000000 0009A09A 00000000 0000F0F0
Offset 40: 00000000 00000000 00000000 00000000
Offset 44: 00000000 52800000 00000000 81000000
Offset 48: 00000000 50000000 00000000 00000000
Offset 4C: 00000000 00000000 00000000 0009A09A
Offset 50: 00000000 0000F0F0 9999AAAA 00000000
Offset 54: FFFF0000 00000000 00000000 00000000
Offset 58: 00000000 00000000 00000000 00000000
Offset 5C: 00000000 00000000 00000000 02800000
Offset 60: 00000000 00000000 00000000 00000001
Offset 64: 00000000 00000000 00000000 00000000
Offset 68: 00000000 00000000 00000000 01E0FE00
Offset 6C: 00000000 00000000 00000000 00000000
Offset 70: 00000000 00000000 00000000 80000004
Offset 74: 80177000 1016000B 003000B0 000E0008
Offset 78: 01E2EE2A 00000000 0000015F 00200020
Offset 7C: 001FFFC7 00080808 00400004 00000000

--------[ Debug - Video BIOS ]------------------------------------------------------------------------------------------

C000:0000 U.h...........................IBM............... 761295520......
C000:0040 ??..............2005/07/19 13:48.....p.............@..<.$*......
C000:0080 ..RS482- BIOS 300/14 CRT/TV BR#14085...(C) 1988-2003, ATI Techno
C000:00C0 logies Inc. BK-ATI VER008.043I.008.000. ytameth.hp v611 .RS48PCI
C000:0100 EDGN1UN..OEM VER.000.000..t....+..t.q..V'.........(.....<.$*TY..
C000:0140 .......r.i..$.....-...........=...q....y....7.................d.
C000:0180 ......".....h...PCIR..TY........h.+.....ATI RADEON XPRESS 200 Se
C000:01C0 ries.a$......,.......................a$......,..................
C000:0200 ......!.................www............0 @...4 .....A.........X.
C000:0240 ........A.........G.........@............`...CD..P ....P`.......
C000:0280 .X ................X`........0A......p.M.......[. . ...`.......
C000:02C0 ....T..D..................Z..@........dM........|B..............
C000:0300 ............dM.............@.M.........D............w..M........
C000:0340 ..LL. ..LL0 8...;.<N......;.(...............g.......`......5?...
C000:0380 .....-..o.........~*.$...l...........L.....L...............H.<.B
C000:03C0 ....U...._...._...._...B.....B....H.<..m...A...5..8.b...........

------------------------------------------------------------------------------------------------------------------------

The names of actual companies and products mentioned herein may be the trademarks of their respective owners.

Réponse 20 / 21

green day Messages postés 26371 Date d'inscription vendredi 30 septembre 2005 Statut Modérateur, Contributeur sécurité Dernière intervention 27 décembre 2019 2 162
16 janv. 2007 à 23:06

Salut

merci Marie !

un petit nettoyage de printemps peut être ??? :)

windows xp mon pc rame que faire

tiens nous au courant,@+

;-))

babot1
18 janv. 2007 à 21:06

salut,

le petit nettoyage de printemps c'est OK mais mon ordi ne veut pas demarrer sans echec et on me le conseil pour la defragmantation que dois je faire

merci

Virus infecté par trojan horst gen

21 réponses

Discussions similaires